sidunixuser1.c
Posted by Anonymous on Wed 4th Oct 2023 21:06
raw | new post
view followups (newest first): sidunixuser1.c by Anonymous
modification of post by Anonymous (view diff)


#include <windows.h>
#include <stdlib.h>
#include <stdio.h>
#include <sddl.h>

BOOL AllocateUnixUserSID(unsigned long uid, PSID *pSid)
{
    // S-1-22-1-1
#define SECURITY_SAMBA_UNIX_AUTHORITY {0,0,0,0,0,22}
    SID_IDENTIFIER_AUTHORITY sid_id_auth = SECURITY_SAMBA_UNIX_AUTHORITY;

    /*
     *
     * $ getent passwd Unix_User+0
     * Unix_User+0:*:4278190080:4278190080:U-Unix_User\0,S-1-22-1-0:/:/sbin/nologin
     *
     */
    // Create a new SID with the given ID authority and no sub-authorities
    if (AllocateAndInitializeSid(&sid_id_auth, 2, 1, (DWORD)uid, 0, 0, 0, 0, 0, 0, pSid)) {
        DWORD sid_len = GetLengthSid(*pSid);
        PSID malloced_sid;
        (void)printf("AllocateUnixUserSID(): Allocated Unix_User+%lu: success, len=%ld\n",
            uid, (long)sid_len);
        malloced_sid = malloc(sid_len);
        CopySid(sid_len, malloced_sid, *pSid);
        FreeSid(*pSid);
        *pSid = malloced_sid;
        return TRUE;
    }
    else
    {
        (void)printf("AllocateUnixUserSID(): Failed to allocate Unix_User+%lu: error code %d\n",
            uid, GetLastError());
        return FALSE;
    }
}

int fput_sidstr(FILE *f, PSID *sid)
{
    LPSTR string_sid = NULL;
    int res;
    if (!ConvertSidToStringSidA(*sid, &string_sid)) {
        (void)printf("fput_sidstr: Failed to convert to string: error code %d\n", GetLastError());
        return -1;
    }
    res = fputs(string_sid, f);
    LocalFree(string_sid);
    return res;
}

int main(int ac, char *av[])
{
    // S-1-22-1-1
    PSID sid = 0;
    PSID new_sid = 0;
    LPSTR string_sid = NULL;

#if 1
    // Create a new SID with the given ID authority and no sub-authorities
    if (!AllocateUnixUserSID(1616, &sid)) {
        (void)printf("Failed to allocate SID: error code %d\n", GetLastError());
        return 1;
    }

    (void)printf("sid='");
    (void)fput_sidstr(stdout, &sid);
    (void)printf("'\n");

    // Stringify and print
    if (!ConvertSidToStringSidA(sid, &string_sid)) {
        printf("Failed to convert to string: error code %d\n", GetLastError());
        FreeSid(sid);
        return 2;
    }
    (void)printf("string_sid='%s'\n", string_sid);

    // Destringify and print
    if (ConvertStringSidToSidA(string_sid, &new_sid)) {
        (void)printf("Success\n");
    }
    else {
        (void)printf("Failed: error code %d\n", GetLastError());
    }
#endif
    /* Part 2 */
    (void)printf("# Part 2, custom ID\n");

    LocalFree(string_sid);
    LocalFree(new_sid);
    free(sid);
    sid = NULL;
    new_sid = NULL;
    string_sid = NULL;

    char sid_unix_user_buf[256];
    snprintf(sid_unix_user_buf, sizeof(sid_unix_user_buf), "S-1-22-1-%lu", 1616UL);

    if (ConvertStringSidToSidA(sid_unix_user_buf, &sid)) {
        (void)printf("Success\n");
    }
    else {
        (void)printf("ConvertStringSidToSidA() Failed error code %d\n", GetLastError());
    }
    if (!ConvertSidToStringSidA(sid, &string_sid)) {
        (void)printf("ConvertSidToStringSidA() failed error code %d\n", GetLastError());
        FreeSid(sid);
        return 2;
    }
    (void)printf("string_sid='%s'\n", string_sid);

    // Destringify and print
    if (ConvertStringSidToSidA(string_sid, &new_sid)) {
        (void)printf("Success\n");
    }
    else {
        (void)printf("Failed: error code %d\n", GetLastError());
    }

    if (!ConvertSidToStringSidA(new_sid, &string_sid)) {
        (void)printf("ConvertSidToStringSidA() failed error code %d\n", GetLastError());
        FreeSid(sid);
        return 2;
    }
    (void)printf("string_sid='%s'\n", string_sid);

    // Clean up
    LocalFree(string_sid);
    LocalFree(new_sid);
    FreeSid(sid);
}