Search in sources :

Example 1 with CtxtHandle

use of com.sun.jna.platform.win32.Sspi.CtxtHandle in project jna by java-native-access.

the class Secur32Test method testInitializeSecurityContext.

public void testInitializeSecurityContext() {
    CredHandle phCredential = new CredHandle();
    TimeStamp ptsExpiry = new TimeStamp();
    // acquire a credentials handle
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_OUTBOUND, null, null, null, null, phCredential, ptsExpiry));
    // initialize security context
    CtxtHandle phNewContext = new CtxtHandle();
    SecBufferDesc pbToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
    IntByReference pfContextAttr = new IntByReference();
    int rc = Secur32.INSTANCE.InitializeSecurityContext(phCredential, null, Advapi32Util.getUserName(), Sspi.ISC_REQ_CONNECTION, 0, Sspi.SECURITY_NATIVE_DREP, null, 0, phNewContext, pbToken, pfContextAttr, null);
    assertTrue(rc == W32Errors.SEC_I_CONTINUE_NEEDED || rc == W32Errors.SEC_E_OK);
    assertTrue(phNewContext.dwLower != null);
    assertTrue(phNewContext.dwUpper != null);
    assertTrue(pbToken.pBuffers[0].getBytes().length > 0);
    // release
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phNewContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phCredential));
}
Also used : IntByReference(com.sun.jna.ptr.IntByReference) CtxtHandle(com.sun.jna.platform.win32.Sspi.CtxtHandle) CredHandle(com.sun.jna.platform.win32.Sspi.CredHandle) TimeStamp(com.sun.jna.platform.win32.Sspi.TimeStamp) SecBufferDesc(com.sun.jna.platform.win32.Sspi.SecBufferDesc)

Example 2 with CtxtHandle

use of com.sun.jna.platform.win32.Sspi.CtxtHandle in project jna by java-native-access.

the class Secur32Test method testQueryContextAttributes.

public void testQueryContextAttributes() {
    // client ----------- acquire outbound credential handle
    CredHandle phClientCredential = new CredHandle();
    TimeStamp ptsClientExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_OUTBOUND, null, null, null, null, phClientCredential, ptsClientExpiry));
    // client ----------- security context
    CtxtHandle phClientContext = new CtxtHandle();
    IntByReference pfClientContextAttr = new IntByReference();
    // server ----------- acquire inbound credential handle
    CredHandle phServerCredential = new CredHandle();
    TimeStamp ptsServerExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_INBOUND, null, null, null, null, phServerCredential, ptsServerExpiry));
    // server ----------- security context
    CtxtHandle phServerContext = new CtxtHandle();
    SecBufferDesc pbServerToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
    IntByReference pfServerContextAttr = new IntByReference();
    int clientRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    int serverRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    do {
        // client token returned is always new
        SecBufferDesc pbClientToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
        // token
        if (clientRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            // server token is empty the first time
            clientRc = Secur32.INSTANCE.InitializeSecurityContext(phClientCredential, phClientContext.isNull() ? null : phClientContext, Advapi32Util.getUserName(), Sspi.ISC_REQ_CONNECTION, 0, Sspi.SECURITY_NATIVE_DREP, pbServerToken, 0, phClientContext, pbClientToken, pfClientContextAttr, null);
            assertTrue(clientRc == W32Errors.SEC_I_CONTINUE_NEEDED || clientRc == W32Errors.SEC_E_OK);
        }
        // token
        if (serverRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            serverRc = Secur32.INSTANCE.AcceptSecurityContext(phServerCredential, phServerContext.isNull() ? null : phServerContext, pbClientToken, Sspi.ISC_REQ_CONNECTION, Sspi.SECURITY_NATIVE_DREP, phServerContext, pbServerToken, pfServerContextAttr, ptsServerExpiry);
            assertTrue(serverRc == W32Errors.SEC_I_CONTINUE_NEEDED || serverRc == W32Errors.SEC_E_OK);
        }
    } while (serverRc != W32Errors.SEC_E_OK || clientRc != W32Errors.SEC_E_OK);
    // query context attributes
    SecPkgContext_PackageInfo packageinfo = new SecPkgContext_PackageInfo();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.QueryContextAttributes(phServerContext, Sspi.SECPKG_ATTR_PACKAGE_INFO, packageinfo));
    ByReference info = packageinfo.PackageInfo;
    assertNotNull(info.Name);
    assertNotNull(info.Comment);
    assertTrue(!info.Name.isEmpty());
    assertTrue(!info.Comment.isEmpty());
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeContextBuffer(info.getPointer()));
    // release server context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phServerContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phServerCredential));
    // release client context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phClientContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phClientCredential));
}
Also used : IntByReference(com.sun.jna.ptr.IntByReference) CtxtHandle(com.sun.jna.platform.win32.Sspi.CtxtHandle) SecPkgContext_PackageInfo(com.sun.jna.platform.win32.Sspi.SecPkgContext_PackageInfo) CredHandle(com.sun.jna.platform.win32.Sspi.CredHandle) HANDLEByReference(com.sun.jna.platform.win32.WinNT.HANDLEByReference) IntByReference(com.sun.jna.ptr.IntByReference) ByReference(com.sun.jna.platform.win32.Sspi.SecPkgInfo.ByReference) TimeStamp(com.sun.jna.platform.win32.Sspi.TimeStamp) SecBufferDesc(com.sun.jna.platform.win32.Sspi.SecBufferDesc)

Example 3 with CtxtHandle

use of com.sun.jna.platform.win32.Sspi.CtxtHandle in project jna by java-native-access.

the class Secur32Test method testQuerySecurityContextToken.

public void testQuerySecurityContextToken() {
    // client ----------- acquire outbound credential handle
    CredHandle phClientCredential = new CredHandle();
    TimeStamp ptsClientExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_OUTBOUND, null, null, null, null, phClientCredential, ptsClientExpiry));
    // client ----------- security context
    CtxtHandle phClientContext = new CtxtHandle();
    IntByReference pfClientContextAttr = new IntByReference();
    // server ----------- acquire inbound credential handle
    CredHandle phServerCredential = new CredHandle();
    TimeStamp ptsServerExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_INBOUND, null, null, null, null, phServerCredential, ptsServerExpiry));
    // server ----------- security context
    CtxtHandle phServerContext = new CtxtHandle();
    SecBufferDesc pbServerToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
    IntByReference pfServerContextAttr = new IntByReference();
    int clientRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    int serverRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    do {
        // client token returned is always new
        SecBufferDesc pbClientToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
        // client ----------- initialize security context, produce a client token
        if (clientRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            // server token is empty the first time
            clientRc = Secur32.INSTANCE.InitializeSecurityContext(phClientCredential, phClientContext.isNull() ? null : phClientContext, Advapi32Util.getUserName(), Sspi.ISC_REQ_CONNECTION, 0, Sspi.SECURITY_NATIVE_DREP, pbServerToken, 0, phClientContext, pbClientToken, pfClientContextAttr, null);
            assertTrue(clientRc == W32Errors.SEC_I_CONTINUE_NEEDED || clientRc == W32Errors.SEC_E_OK);
        }
        // server ----------- accept security context, produce a server token
        if (serverRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            serverRc = Secur32.INSTANCE.AcceptSecurityContext(phServerCredential, phServerContext.isNull() ? null : phServerContext, pbClientToken, Sspi.ISC_REQ_CONNECTION, Sspi.SECURITY_NATIVE_DREP, phServerContext, pbServerToken, pfServerContextAttr, ptsServerExpiry);
            assertTrue(serverRc == W32Errors.SEC_I_CONTINUE_NEEDED || serverRc == W32Errors.SEC_E_OK);
        }
    } while (serverRc != W32Errors.SEC_E_OK || clientRc != W32Errors.SEC_E_OK);
    // query security context token
    HANDLEByReference phContextToken = new HANDLEByReference();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.QuerySecurityContextToken(phServerContext, phContextToken));
    // release security context token
    Kernel32Util.closeHandleRef(phContextToken);
    // release server context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phServerContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phServerCredential));
    // release client context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phClientContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phClientCredential));
}
Also used : IntByReference(com.sun.jna.ptr.IntByReference) CtxtHandle(com.sun.jna.platform.win32.Sspi.CtxtHandle) CredHandle(com.sun.jna.platform.win32.Sspi.CredHandle) HANDLEByReference(com.sun.jna.platform.win32.WinNT.HANDLEByReference) TimeStamp(com.sun.jna.platform.win32.Sspi.TimeStamp) SecBufferDesc(com.sun.jna.platform.win32.Sspi.SecBufferDesc)

Example 4 with CtxtHandle

use of com.sun.jna.platform.win32.Sspi.CtxtHandle in project jna by java-native-access.

the class Secur32Test method testAcceptSecurityContext.

public void testAcceptSecurityContext() {
    // client ----------- acquire outbound credential handle
    CredHandle phClientCredential = new CredHandle();
    TimeStamp ptsClientExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_OUTBOUND, null, null, null, null, phClientCredential, ptsClientExpiry));
    // client ----------- security context
    CtxtHandle phClientContext = new CtxtHandle();
    IntByReference pfClientContextAttr = new IntByReference();
    // server ----------- acquire inbound credential handle
    CredHandle phServerCredential = new CredHandle();
    TimeStamp ptsServerExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_INBOUND, null, null, null, null, phServerCredential, ptsServerExpiry));
    // server ----------- security context
    CtxtHandle phServerContext = new CtxtHandle();
    SecBufferDesc pbServerToken = null;
    IntByReference pfServerContextAttr = new IntByReference();
    int clientRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    int serverRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    do {
        // client ----------- initialize security context, produce a client token
        // client token returned is always new
        SecBufferDesc pbClientToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
        if (clientRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            // server token is empty the first time
            SecBufferDesc pbServerTokenCopy = pbServerToken == null ? null : new SecBufferDesc(Sspi.SECBUFFER_TOKEN, pbServerToken.getBytes());
            clientRc = Secur32.INSTANCE.InitializeSecurityContext(phClientCredential, phClientContext.isNull() ? null : phClientContext, Advapi32Util.getUserName(), Sspi.ISC_REQ_CONNECTION, 0, Sspi.SECURITY_NATIVE_DREP, pbServerTokenCopy, 0, phClientContext, pbClientToken, pfClientContextAttr, null);
            assertTrue(clientRc == W32Errors.SEC_I_CONTINUE_NEEDED || clientRc == W32Errors.SEC_E_OK);
        }
        // server ----------- accept security context, produce a server token
        if (serverRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            pbServerToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
            SecBufferDesc pbClientTokenByValue = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, pbClientToken.getBytes());
            serverRc = Secur32.INSTANCE.AcceptSecurityContext(phServerCredential, phServerContext.isNull() ? null : phServerContext, pbClientTokenByValue, Sspi.ISC_REQ_CONNECTION, Sspi.SECURITY_NATIVE_DREP, phServerContext, pbServerToken, pfServerContextAttr, ptsServerExpiry);
            assertTrue(serverRc == W32Errors.SEC_I_CONTINUE_NEEDED || serverRc == W32Errors.SEC_E_OK);
        }
    } while (serverRc != W32Errors.SEC_E_OK || clientRc != W32Errors.SEC_E_OK);
    // release server context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phServerContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phServerCredential));
    // release client context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phClientContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phClientCredential));
}
Also used : IntByReference(com.sun.jna.ptr.IntByReference) CtxtHandle(com.sun.jna.platform.win32.Sspi.CtxtHandle) CredHandle(com.sun.jna.platform.win32.Sspi.CredHandle) TimeStamp(com.sun.jna.platform.win32.Sspi.TimeStamp) SecBufferDesc(com.sun.jna.platform.win32.Sspi.SecBufferDesc)

Example 5 with CtxtHandle

use of com.sun.jna.platform.win32.Sspi.CtxtHandle in project jna by java-native-access.

the class Secur32Test method testImpersonateRevertSecurityContext.

public void testImpersonateRevertSecurityContext() {
    // client ----------- acquire outbound credential handle
    CredHandle phClientCredential = new CredHandle();
    TimeStamp ptsClientExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_OUTBOUND, null, null, null, null, phClientCredential, ptsClientExpiry));
    // client ----------- security context
    CtxtHandle phClientContext = new CtxtHandle();
    IntByReference pfClientContextAttr = new IntByReference();
    // server ----------- acquire inbound credential handle
    CredHandle phServerCredential = new CredHandle();
    TimeStamp ptsServerExpiry = new TimeStamp();
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.AcquireCredentialsHandle(null, "Negotiate", Sspi.SECPKG_CRED_INBOUND, null, null, null, null, phServerCredential, ptsServerExpiry));
    // server ----------- security context
    CtxtHandle phServerContext = new CtxtHandle();
    SecBufferDesc pbServerToken = null;
    IntByReference pfServerContextAttr = new IntByReference();
    int clientRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    int serverRc = W32Errors.SEC_I_CONTINUE_NEEDED;
    do {
        // client ----------- initialize security context, produce a client token
        // client token returned is always new
        SecBufferDesc pbClientToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
        if (clientRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            // server token is empty the first time
            SecBufferDesc pbServerTokenCopy = pbServerToken == null ? null : new SecBufferDesc(Sspi.SECBUFFER_TOKEN, pbServerToken.getBytes());
            clientRc = Secur32.INSTANCE.InitializeSecurityContext(phClientCredential, phClientContext.isNull() ? null : phClientContext, Advapi32Util.getUserName(), Sspi.ISC_REQ_CONNECTION, 0, Sspi.SECURITY_NATIVE_DREP, pbServerTokenCopy, 0, phClientContext, pbClientToken, pfClientContextAttr, null);
            assertTrue(clientRc == W32Errors.SEC_I_CONTINUE_NEEDED || clientRc == W32Errors.SEC_E_OK);
        }
        // server ----------- accept security context, produce a server token
        if (serverRc == W32Errors.SEC_I_CONTINUE_NEEDED) {
            pbServerToken = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, Sspi.MAX_TOKEN_SIZE);
            SecBufferDesc pbClientTokenByValue = new SecBufferDesc(Sspi.SECBUFFER_TOKEN, pbClientToken.getBytes());
            serverRc = Secur32.INSTANCE.AcceptSecurityContext(phServerCredential, phServerContext.isNull() ? null : phServerContext, pbClientTokenByValue, Sspi.ISC_REQ_CONNECTION, Sspi.SECURITY_NATIVE_DREP, phServerContext, pbServerToken, pfServerContextAttr, ptsServerExpiry);
            assertTrue(serverRc == W32Errors.SEC_I_CONTINUE_NEEDED || serverRc == W32Errors.SEC_E_OK);
        }
    } while (serverRc != W32Errors.SEC_E_OK || clientRc != W32Errors.SEC_E_OK);
    // impersonate
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.ImpersonateSecurityContext(phServerContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.RevertSecurityContext(phServerContext));
    // release server context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phServerContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phServerCredential));
    // release client context
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.DeleteSecurityContext(phClientContext));
    assertEquals(W32Errors.SEC_E_OK, Secur32.INSTANCE.FreeCredentialsHandle(phClientCredential));
}
Also used : IntByReference(com.sun.jna.ptr.IntByReference) CtxtHandle(com.sun.jna.platform.win32.Sspi.CtxtHandle) CredHandle(com.sun.jna.platform.win32.Sspi.CredHandle) TimeStamp(com.sun.jna.platform.win32.Sspi.TimeStamp) SecBufferDesc(com.sun.jna.platform.win32.Sspi.SecBufferDesc)

Aggregations

CredHandle (com.sun.jna.platform.win32.Sspi.CredHandle)5 CtxtHandle (com.sun.jna.platform.win32.Sspi.CtxtHandle)5 SecBufferDesc (com.sun.jna.platform.win32.Sspi.SecBufferDesc)5 TimeStamp (com.sun.jna.platform.win32.Sspi.TimeStamp)5 IntByReference (com.sun.jna.ptr.IntByReference)5 HANDLEByReference (com.sun.jna.platform.win32.WinNT.HANDLEByReference)2 SecPkgContext_PackageInfo (com.sun.jna.platform.win32.Sspi.SecPkgContext_PackageInfo)1 ByReference (com.sun.jna.platform.win32.Sspi.SecPkgInfo.ByReference)1