archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/termsrv/syslib/dumpsd.c

332 lines
7.9 KiB
Raw Normal View History

Add source files
4 years ago
  2. // Include NT headers
  3. #include <nt.h>
  4. #include <ntrtl.h>
  5. #include <nturtl.h>
  6. #include <ntseapi.h>
  8. #include "windows.h"
  10. void CtxDumpSid( PSID, PCHAR, PULONG );
  11. void DumpAcl( PACL, PCHAR, PULONG );
  12. void DumpAce( PACE_HEADER, PCHAR, PULONG );
  14. #if DBG
  15. void
  16. DumpSecurityDescriptor(
  17. PSECURITY_DESCRIPTOR pSD
  18. )
  19. {
  20. PISECURITY_DESCRIPTOR p = (PISECURITY_DESCRIPTOR)pSD;
  21. PSID pSid;
  22. PACL pAcl;
  23. PCHAR pTmp;
  24. ULONG Size;
  26. //
  27. // This is done under an exception handler in case someone passes in
  28. // a totally bogus security descriptor
  29. //
  30. try {
  32. DbgPrint("DUMP_SECURITY_DESCRIPTOR: Revision %d, Sbz1 %d, Control 0x%x\n",
  33. p->Revision, p->Sbz1, p->Control );
  35. if ( p->Control & SE_SELF_RELATIVE ) {
  36. DbgPrint("Self Relative\n");
  37. }
  39. DbgPrint("PSID Owner 0x%x\n",p->Owner);
  41. // If this is self relative, must offset the pointers
  42. if( p->Owner != NULL ) {
  43. if( p->Control & SE_SELF_RELATIVE ) {
  44. pTmp = (PCHAR)pSD;
  45. pTmp += (UINT_PTR)p->Owner;
  46. CtxDumpSid( (PSID)pTmp, (PCHAR)p, &Size );
  47. }
  48. else {
  49. // can reference it directly
  50. CtxDumpSid( p->Owner, (PCHAR)p, &Size );
  51. }
  52. }
  55. DbgPrint("PSID Group 0x%x\n",p->Group);
  57. // If this is self relative, must offset the pointers
  58. if( p->Group != NULL ) {
  59. if( p->Control & SE_SELF_RELATIVE ) {
  60. pTmp = (PCHAR)pSD;
  61. pTmp += (UINT_PTR)p->Group;
  62. CtxDumpSid( (PSID)pTmp, (PCHAR)p, &Size );
  63. }
  64. else {
  65. // can reference it directly
  66. CtxDumpSid( p->Group, (PCHAR)p, &Size );
  67. }
  68. }
  70. DbgPrint("\n");
  72. DbgPrint("PACL Sacl 0x%x\n",p->Sacl);
  74. // If this is self relative, must offset the pointers
  75. if( p->Sacl != NULL ) {
  76. if( p->Control & SE_SELF_RELATIVE ) {
  77. pTmp = (PCHAR)pSD;
  78. pTmp += (UINT_PTR)p->Sacl;
  79. DumpAcl( (PSID)pTmp, (PCHAR)p, &Size );
  80. }
  81. else {
  82. // can reference it directly
  83. DumpAcl( p->Sacl, (PCHAR)p, &Size );
  84. }
  85. }
  87. DbgPrint("\n");
  89. DbgPrint("PACL Dacl 0x%x\n",p->Dacl);
  91. // If this is self relative, must offset the pointers
  92. if( p->Dacl != NULL ) {
  93. if( p->Control & SE_SELF_RELATIVE ) {
  94. pTmp = (PCHAR)pSD;
  95. pTmp += (UINT_PTR)p->Dacl;
  96. DumpAcl( (PSID)pTmp, (PCHAR)p, &Size );
  97. }
  98. else {
  99. // can reference it directly
  100. DumpAcl( p->Dacl, (PCHAR)p, &Size );
  101. }
  102. }
  105. } except( EXCEPTION_EXECUTE_HANDLER) {
  106. DbgPrint("DUMP_SECURITY_DESCRIPTOR: Exception %d accessing descriptor\n",GetExceptionCode());
  107. return;
  108. }
  109. }
  110. #endif
  112. #if DBG
  113. void
  114. CtxDumpSid(
  115. PSID pSid,
  116. PCHAR pBase,
  117. PULONG pSize
  118. )
  119. {
  120. PISID p;
  121. ULONG i;
  122. BOOL OK;
  123. DWORD szUserName;
  124. DWORD szDomain;
  125. SID_NAME_USE UserSidType;
  126. WCHAR UserName[256];
  127. WCHAR Domain[256];
  128. ULONG Size = 0;
  130. p = (PISID)pSid;
  132. DbgPrint("Revision %d, SubAuthorityCount %d\n", p->Revision, p->SubAuthorityCount);
  134. Size += 2; // Revision, SubAuthorityCount
  136. DbgPrint("IdentifierAuthority: %x %x %x %x %x %x\n",
  137. p->IdentifierAuthority.Value[0],
  138. p->IdentifierAuthority.Value[1],
  139. p->IdentifierAuthority.Value[2],
  140. p->IdentifierAuthority.Value[3],
  141. p->IdentifierAuthority.Value[4],
  142. p->IdentifierAuthority.Value[5] );
  144. Size += 6; // IdentifierAuthority
  146. for( i=0; i < p->SubAuthorityCount; i++ ) {
  148. DbgPrint("SubAuthority[%d] 0x%x\n", i, p->SubAuthority[i]);
  150. Size += sizeof(ULONG);
  151. }
  153. if( pSize ) {
  154. *pSize = Size;
  155. }
  157. szUserName = sizeof(UserName);
  158. szDomain = sizeof(Domain);
  160. // Now print its account
  161. OK = LookupAccountSidW(
  162. NULL, // Computer Name
  163. pSid,
  164. UserName,
  165. &szUserName,
  166. Domain,
  167. &szDomain,
  168. &UserSidType
  169. );
  171. if( OK ) {
  172. DbgPrint("Account Name %ws, Domain %ws, Type %d, SidSize %d\n",UserName,Domain,UserSidType,Size);
  173. }
  174. else {
  175. DbgPrint("Error looking up account name %d, SizeSid %d\n",GetLastError(),Size);
  176. }
  178. }
  179. #endif
  181. #if DBG
  182. void
  183. DumpAcl(
  184. PACL pAcl,
  185. PCHAR pBase,
  186. PULONG pSize
  187. )
  188. {
  189. USHORT i;
  190. PCHAR pTmp;
  191. ULONG Size, MySize;
  192. PACL p = pAcl;
  193. PCHAR pCur = (PCHAR)pAcl;
  195. MySize = 0;
  197. DbgPrint("AclRevision %d, Sbz1 %d, AclSize %d, AceCount %d, Sbz2 %d\n",
  198. p->AclRevision, p->Sbz1, p->AclSize, p->AceCount, p->Sbz2 );
  200. // bump over the ACL header to point to the first ACE
  201. pCur += sizeof( ACL );
  203. MySize += sizeof( ACL );
  205. for( i=0; i < p->AceCount; i++ ) {
  207. DumpAce( (PACE_HEADER)pCur, pBase, &Size );
  209. pCur += Size;
  210. MySize += Size;
  211. }
  213. // ACL consistency check
  214. if( p->AclSize != MySize ) {
  215. DbgPrint("Inconsistent ACL Entry! p->AclSize %d, RealSize %d\n",p->AclSize,MySize);
  216. }
  218. // return the size of this ACL
  219. *pSize = MySize;
  220. return;
  221. }
  222. #endif
  224. #if DBG
  225. void
  226. DumpAce(
  227. PACE_HEADER pAce,
  228. PCHAR pBase,
  229. PULONG pSize
  230. )
  231. {
  232. PACE_HEADER p = pAce;
  233. PACCESS_ALLOWED_ACE pAl;
  234. PACCESS_DENIED_ACE pAd;
  235. PSYSTEM_AUDIT_ACE pSa;
  236. PSYSTEM_ALARM_ACE pSl;
  237. PCHAR pTmp;
  238. ULONG MySize, Size;
  241. DbgPrint("ACE_HEADER: Type %d, Flags 0x%x, Size %d\n",
  242. p->AceType, p->AceFlags, p->AceSize );
  245. switch( p->AceType ) {
  247. case ACCESS_ALLOWED_ACE_TYPE:
  248. pAl = (PACCESS_ALLOWED_ACE)p;
  249. DbgPrint("ACCESS_ALLOWED_ACE: AccessMask 0x%x, Sid 0x%x\n",pAl->Mask,pAl->SidStart);
  251. MySize = sizeof(ACCESS_ALLOWED_ACE);
  253. if( pAl->SidStart ) {
  254. pTmp = (PCHAR)&pAl->SidStart;
  255. CtxDumpSid( (PSID)pTmp, pBase, &Size );
  256. MySize += Size;
  257. // Adjust for the first ULONG of the ACE
  258. // being part of the Sid
  259. MySize -= sizeof(ULONG);
  260. }
  262. break;
  264. case ACCESS_DENIED_ACE_TYPE:
  265. pAd = (PACCESS_DENIED_ACE)p;
  266. DbgPrint("ACCESS_DENIED_ACE: AccessMask 0x%x, Sid 0x%x\n",pAd->Mask,pAd->SidStart);
  268. MySize = sizeof(ACCESS_DENIED_ACE);
  270. if( pAd->SidStart ) {
  271. pTmp = (PCHAR)&pAd->SidStart;
  272. CtxDumpSid( (PSID)pTmp, pBase, &Size );
  273. MySize += Size;
  274. // Adjust for the first ULONG of the ACE
  275. // being part of the Sid
  276. MySize -= sizeof(ULONG);
  277. }
  279. break;
  281. case SYSTEM_AUDIT_ACE_TYPE:
  282. pSa = (PSYSTEM_AUDIT_ACE)p;
  283. DbgPrint("SYSTEM_AUDIT_ACE: AccessMask 0x%x, Sid 0x%x\n",pSa->Mask,pSa->SidStart);
  285. MySize = sizeof(SYSTEM_AUDIT_ACE);
  287. if( pSa->SidStart ) {
  288. pTmp = (PCHAR)&pSa->SidStart;
  289. CtxDumpSid( (PSID)pTmp, pBase, &Size );
  290. MySize += Size;
  291. // Adjust for the first ULONG of the ACE
  292. // being part of the Sid
  293. MySize -= sizeof(ULONG);
  294. }
  296. break;
  298. case SYSTEM_ALARM_ACE_TYPE:
  299. pSl = (PSYSTEM_ALARM_ACE)p;
  300. DbgPrint("SYSTEM_ALARM_ACE: AccessMask 0x%x, Sid 0x%x\n",pSl->Mask,pSl->SidStart);
  302. MySize = sizeof(SYSTEM_ALARM_ACE);
  304. if( pSl->SidStart ) {
  305. pTmp = (PCHAR)&pSl->SidStart;
  306. CtxDumpSid( (PSID)pTmp, pBase, &Size );
  307. MySize += Size;
  308. // Adjust for the first ULONG of the ACE
  309. // being part of the Sid
  310. MySize -= sizeof(ULONG);
  311. }
  313. break;
  315. default:
  316. DbgPrint("Unknown ACE type %d\n", p->AceType);
  317. }
  319. // Check its consistency
  320. if( p->AceSize != MySize ) {
  321. DbgPrint("Inconsistent ACE Entry! p->AceSize %d, RealSize %d\n",p->AceSize,MySize);
  322. }
  324. // return the size so the caller can update the pointer
  325. *pSize = p->AceSize;
  327. DbgPrint("\n");
  329. return;
  330. }
  331. #endif
  333.