archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 75c48ba87f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '75c48ba87f'
${ noResults }
windows-xp/Source/XPSP1/NT/base/tools/kdexts2/token.c

261 lines
6.3 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1992 Microsoft Corporation
  5. Module Name:
  7. token.c
  9. Abstract:
  11. WinDbg Extension Api
  13. Author:
  15. Ramon J San Andres (ramonsa) 8-Nov-1993
  17. Environment:
  19. User Mode.
  21. Revision History:
  23. --*/
  26. #include "precomp.h"
  27. #pragma hdrstop
  30. BOOL
  31. DumpToken (
  32. IN char *Pad,
  33. IN ULONG64 RealTokenBase,
  34. IN ULONG Flags
  35. );
  39. DECLARE_API( token )
  41. /*++
  43. Routine Description:
  45. Dump token at specified address
  47. Arguments:
  49. args - Address Flags
  51. Return Value:
  53. None
  55. --*/
  57. {
  58. ULONG64 Address;
  59. ULONG Flags;
  60. ULONG result;
  62. Address = 0;
  63. Flags = 6;
  65. if (GetExpressionEx(args,&Address,&args)) {
  66. if (args && *args) {
  67. Flags = (ULONG) GetExpression(args);
  68. }
  69. }
  71. if (Address == 0) {
  72. dprintf("usage: !token <token-address>\n");
  73. return E_INVALIDARG;
  74. }
  76. //
  77. // Dump token with no pad
  78. //
  80. DumpToken ("", Address, Flags);
  81. EXPRLastDump = Address;
  82. return S_OK;
  83. }
  87. DECLARE_API( tokenfields )
  89. /*++
  91. Routine Description:
  93. Displays the field offsets for TOKEN type.
  95. Arguments:
  97. args -
  99. Return Value:
  101. None
  103. --*/
  105. {
  106. dprintf("Use : dt TOKEN\n");
  108. return S_OK;
  109. /*
  110. dprintf(" TOKEN structure offsets:\n");
  111. dprintf(" TokenSource: 0x%lx\n", FIELD_OFFSET(TOKEN, TokenSource) );
  112. dprintf(" AuthenticationId: 0x%lx\n", FIELD_OFFSET(TOKEN, AuthenticationId) );
  113. dprintf(" ExpirationTime: 0x%lx\n", FIELD_OFFSET(TOKEN, ExpirationTime) );
  114. dprintf(" ModifiedId: 0x%lx\n", FIELD_OFFSET(TOKEN, ModifiedId) );
  115. dprintf(" UserAndGroupCount: 0x%lx\n", FIELD_OFFSET(TOKEN, UserAndGroupCount) );
  116. dprintf(" PrivilegeCount: 0x%lx\n", FIELD_OFFSET(TOKEN, PrivilegeCount) );
  117. dprintf(" VariableLength: 0x%lx\n", FIELD_OFFSET(TOKEN, VariableLength) );
  118. dprintf(" DynamicCharged: 0x%lx\n", FIELD_OFFSET(TOKEN, DynamicCharged) );
  119. dprintf(" DynamicAvailable: 0x%lx\n", FIELD_OFFSET(TOKEN, DynamicAvailable) );
  120. dprintf(" DefaultOwnerIndex: 0x%lx\n", FIELD_OFFSET(TOKEN, DefaultOwnerIndex) );
  121. dprintf(" DefaultDacl: 0x%lx\n", FIELD_OFFSET(TOKEN, DefaultDacl) );
  122. dprintf(" TokenType: 0x%lx\n", FIELD_OFFSET(TOKEN, TokenType) );
  123. dprintf(" ImpersonationLevel: 0x%lx\n", FIELD_OFFSET(TOKEN, ImpersonationLevel) );
  124. dprintf(" TokenFlags: 0x%lx\n", FIELD_OFFSET(TOKEN, TokenFlags) );
  125. dprintf(" TokenInUse: 0x%lx\n", FIELD_OFFSET(TOKEN, TokenInUse) );
  126. dprintf(" ProxyData: 0x%lx\n", FIELD_OFFSET(TOKEN, ProxyData) );
  127. dprintf(" AuditData: 0x%lx\n", FIELD_OFFSET(TOKEN, AuditData) );
  128. dprintf(" VariablePart: 0x%lx\n", FIELD_OFFSET(TOKEN, VariablePart) );
  130. return;
  131. */
  132. }
  138. BOOL
  139. DumpToken (
  140. IN char *Pad,
  141. IN ULONG64 RealTokenBase,
  142. IN ULONG Flags
  143. )
  144. {
  145. ULONG TokenType, TokenFlags, TokenInUse, UserAndGroupCount;
  146. ULONG RestrictedSidCount, PrivilegeCount;
  147. ULONG64 AuthenticationId, TokenId, ParentTokenId, ModifiedId, UserAndGroups;
  148. ULONG64 RestrictedSids, Privileges, ImpersonationLevel;
  149. CHAR SourceName[16];
  151. #define TokFld(F) GetFieldValue(RealTokenBase, "TOKEN", #F, F)
  152. #define TokSubFld(F,N) GetFieldValue(RealTokenBase, "TOKEN", #F, N)
  154. if (TokFld(TokenType)) {
  155. dprintf("%sUnable to read TOKEN at %p.\n", Pad, RealTokenBase);
  156. return FALSE;
  157. }
  159. //
  160. // It would be worth sticking a check in here to see if we
  161. // are really being asked to dump a token, but I don't have
  162. // time just now.
  163. //
  165. if (TokenType != TokenPrimary &&
  166. TokenType != TokenImpersonation) {
  167. dprintf("%sUNKNOWN token type - probably is not a token\n", Pad);
  168. return FALSE;
  169. }
  171. TokSubFld(TokenSource.SourceName, SourceName);
  172. TokFld(TokenFlags); TokFld(AuthenticationId); TokFld(TokenInUse);
  173. TokFld(ImpersonationLevel); TokFld(TokenId), TokFld(ParentTokenId);
  174. TokFld(ModifiedId); TokFld(RestrictedSids); TokFld(RestrictedSidCount);
  175. TokFld(PrivilegeCount); TokFld(Privileges); TokFld(UserAndGroupCount);
  176. TokFld(UserAndGroups);
  178. dprintf("%sTOKEN %p Flags: %x Source %8s AuthentId (%lx, %lx)\n",
  179. Pad,
  180. RealTokenBase,
  181. TokenFlags,
  182. &(SourceName[0]),
  183. (ULONG) ((AuthenticationId >> 32) & 0xffffffff),
  184. (ULONG) AuthenticationId & 0xffffffff
  185. );
  187. //
  188. // Token type
  189. //
  190. if (TokenType == TokenPrimary) {
  191. dprintf("%s Type: Primary", Pad);
  193. if (TokenInUse) {
  194. dprintf(" (IN USE)\n");
  195. } else {
  196. dprintf(" (NOT in use)\n");
  197. }
  199. } else {
  200. dprintf("%s Type: Impersonation (level: ", Pad);
  201. switch (ImpersonationLevel) {
  202. case SecurityAnonymous:
  203. dprintf(" Anonymous)\n");
  204. break;
  206. case SecurityIdentification:
  207. dprintf(" Identification)\n");
  208. break;
  210. case SecurityImpersonation:
  211. dprintf(" Impersonation)\n");
  212. break;
  214. case SecurityDelegation:
  215. dprintf(" Delegation)\n");
  216. break;
  218. default:
  219. dprintf(" UNKNOWN)\n");
  220. break;
  221. }
  222. }
  224. //
  225. // Token ID and modified ID
  226. //
  227. dprintf("%s Token ID: %I64lx\n",
  228. Pad, TokenId );
  230. dprintf("%s ParentToken ID: %I64lx\n",
  231. Pad, ParentTokenId );
  233. dprintf("%s Modified ID: (%lx, %lx)\n",
  234. Pad, (ULONG) (ModifiedId >> 32) & 0xffffffff, (ULONG) (ModifiedId & 0xffffffff));
  236. dprintf("%s TokenFlags: 0x%x\n",
  237. Pad, TokenFlags );
  239. dprintf("%s SidCount: %d\n",
  240. Pad, UserAndGroupCount );
  242. dprintf("%s Sids: %p\n",
  243. Pad, UserAndGroups );
  245. dprintf("%s RestrictedSidCount: %d\n",
  246. Pad, RestrictedSidCount );
  248. dprintf("%s RestrictedSids: %p\n",
  249. Pad, RestrictedSids );
  251. dprintf("%s PrivilegeCount: %d\n",
  252. Pad, PrivilegeCount );
  254. dprintf("%s Privileges: %p\n",
  255. Pad, Privileges );
  257. dprintf("\n");
  258. #undef TokFld
  259. #undef TokSubFld
  260. return TRUE;
  261. }