Home
My Posts

Archive
Login
Signup

Recent Posts

Free subdomains

Want your own xyz.kpaste.net sub-domain for your community? Just type the address into your browser address bar (foo.xyz.kpaste.net is also supported).

Suggestions/Bugs?

Email us at . Try to include as much info as possible.

About

Pastebin is a tool for collaborative debugging or editing.

 

sidunixuser1.c
Posted by Anonymous on Thu 5th Oct 2023 09:10
raw | new post
modification of post by Anonymous (view diff)

Submit a correction or amendment below (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.

Syntax highlighting: None Bash C C++ CSS Diff HTML mIRC Script Perl PHP Python Smarty XML ---------------------------- ABAP Actionscript ADA Apache Log AppleScript APT sources.list ASM ASP AutoIT Bash C C# C++ C++ (with QT) CSS Diff HTML INI (Config Files) Java Javascript Lua Make mIRC Script MySQL NSIS Perl PHP Python Q(uick)BASIC robots Ruby Ruby on Rails SDLBasic Smarty SQL TCL Text VB.NET Visual BASIC Visual Fox Pro Visual Prolog Windows Registry Files XML Xorg.conf

To highlight particular lines, prefix each line with {%HIGHLIGHT}
/* * sidunixuser1.c - test for Unix_User+$UID SIDs * * * Test with: * $ gcc -g -Wall sidunixuser1.c -o sidunixuser1 && gdb -ex=r --args ./sidunixuser1 * * * Written by Roland Mainz <roland.mainz@nrubsig.org> */ #include <windows.h> #include <stdlib.h> #include <stdio.h> #include <sddl.h> /* * Allocate a SID from SECURITY_SAMBA_UNIX_AUTHORITY, which encodes an * UNIX/POSIX uid directly into a SID. * * Example: * UID 1616 gets mapped to "Unix_User+1616", encoding the UID into the * SID as "S-1-22-1-1616" * $ getent passwd Unix_User+1616 * Unix_User+1616:*:4278191696:4278191696:U-Unix_User\1616,S-1-22-1-1616:/:/sbin/nologin * */ /* S-1-22-1-0 for uid 0 */ #define SECURITY_SAMBA_UNIX_AUTHORITY { { 0,0,0,0,0,22 } } SID_IDENTIFIER_AUTHORITY sid_id_auth = SECURITY_SAMBA_UNIX_AUTHORITY; BOOL AllocateUnixUserSID(unsigned long uid, PSID *pSid) { PSID sid = NULL; PSID malloced_sid = NULL; DWORD sid_len; if (AllocateAndInitializeSid(&sid_id_auth, 2, 1, (DWORD)uid, 0, 0, 0, 0, 0, 0, &sid)) { sid_len = GetLengthSid(sid); malloced_sid = malloc(sid_len); if (malloced_sid) { /* * |AllocateAndInitializeSid()| has an own memory * allocator, but we need the sid in memory from * |malloc()| */ if (CopySid(sid_len, malloced_sid, sid)) { FreeSid(sid); *pSid = malloced_sid; (void)printf("AllocateUnixUserSID(): Allocated Unix_User+%lu: success, len=%ld\n", uid, (long)sid_len); return TRUE; } } } FreeSid(sid); free(malloced_sid); (void)printf("AllocateUnixUserSID(): Failed to allocate Unix_User+%lu: error code %d\n", uid, GetLastError()); return FALSE; } int fput_sidstr(FILE *f, PSID *sid) { LPSTR string_sid = NULL; int res; if (!ConvertSidToStringSidA(*sid, &string_sid)) { (void)printf("fput_sidstr: Failed to convert to string: error code %d\n", GetLastError()); return -1; } res = fputs(string_sid, f); LocalFree(string_sid); return res; } int main(int ac, char *av[]) { // S-1-22-1-1 PSID sid = NULL; PSID new_sid = NULL; LPSTR string_sid = NULL; (void)puts("#start."); #if 1 // Create a new SID with the given ID authority and no sub-authorities if (!AllocateUnixUserSID(1616, &sid)) { (void)printf("Failed to allocate SID: error code %d\n", GetLastError()); return 1; } (void)printf("sid='"); (void)fput_sidstr(stdout, &sid); (void)printf("'\n"); free(sid); sid = NULL; // Create a new SID with the given ID authority and no sub-authorities if (!AllocateUnixUserSID(1818, &sid)) { (void)printf("Failed to allocate SID: error code %d\n", GetLastError()); return 1; } (void)printf("sid='"); (void)fput_sidstr(stdout, &sid); (void)printf("'\n"); // Stringify and print if (!ConvertSidToStringSidA(sid, &string_sid)) { printf("Failed to convert to string: error code %d\n", GetLastError()); free(sid); return 2; } (void)printf("string_sid='%s'\n", string_sid); // Destringify and print if (ConvertStringSidToSidA(string_sid, &new_sid)) { (void)printf("Success\n"); } else { (void)printf("Failed: error code %d\n", GetLastError()); } #endif /* Part 2 */ (void)printf("# Part 2, custom ID\n"); LocalFree(string_sid); LocalFree(new_sid); free(sid); sid = NULL; new_sid = NULL; string_sid = NULL; char sid_unix_user_buf[64]; snprintf(sid_unix_user_buf, sizeof(sid_unix_user_buf), "S-1-22-1-%lu", 1616UL); if (ConvertStringSidToSidA(sid_unix_user_buf, &sid)) { (void)printf("Success\n"); } else { (void)printf("ConvertStringSidToSidA() Failed error code %d\n", GetLastError()); } if (!ConvertSidToStringSidA(sid, &string_sid)) { (void)printf("ConvertSidToStringSidA() failed error code %d\n", GetLastError()); FreeSid(sid); return 2; } (void)printf("string_sid='%s'\n", string_sid); // Destringify and print if (ConvertStringSidToSidA(string_sid, &new_sid)) { (void)printf("Success\n"); } else { (void)printf("Failed: error code %d\n", GetLastError()); } if (!ConvertSidToStringSidA(new_sid, &string_sid)) { (void)printf("ConvertSidToStringSidA() failed error code %d\n", GetLastError()); FreeSid(sid); return 2; } (void)printf("string_sid='%s'\n", string_sid); // Clean up LocalFree(string_sid); LocalFree(new_sid); FreeSid(sid); (void)puts("#done."); return EXIT_SUCCESS; }

Title:

Privacy: Public Private

How long should your post be retained?

15 mins an hour a day a week a month forever

All content is user-submitted.
The administrators of this site (kpaste.net) are not responsible for their content.
Abuse reports should be emailed to us at