SSPIHelper: Added GetUserName and GetSessionKey methods

2025-08-02 14:01:50 +02:00 · 2017-03-01 22:14:15 +02:00 · 2017-03-01 22:14:15 +02:00 · 104d18b81b
commit 104d18b81b
parent d3c46361d2
1 changed files with 61 additions and 5 deletions
--- a/SMBLibrary/Win32/Security/SSPIHelper.cs
+++ b/SMBLibrary/Win32/Security/SSPIHelper.cs
@ -47,6 +47,8 @@ namespace SMBLibrary.Win32.Security
        private const uint SEC_WINNT_AUTH_IDENTITY_ANSI = 1;
        private const uint SEC_WINNT_AUTH_IDENTITY_UNICODE = 2;

+        private const uint SECPKG_ATTR_NAME = 1; // Username
+        private const uint SECPKG_ATTR_SESSION_KEY = 9;
        private const uint SECPKG_ATTR_ACCESS_TOKEN = 18;
        
        [StructLayout(LayoutKind.Sequential)]
@ -71,6 +73,13 @@ namespace SMBLibrary.Win32.Security
            public uint Flags;
        };

+        [StructLayout(LayoutKind.Sequential)]
+        public struct SecPkgContext_SessionKey
+        {
+            public uint SessionKeyLength;
+            public IntPtr SessionKey;
+        }
+
        [DllImport("secur32.dll", SetLastError = true)]
        private static extern uint AcquireCredentialsHandle(
          string pszPrincipal,
@ -141,7 +150,19 @@ namespace SMBLibrary.Win32.Security
        private static extern uint QueryContextAttributes(
            ref SecHandle phContext,
            uint ulAttribute,
-            out IntPtr pBuffer);
+            out string value);
+
+        [DllImport("secur32.Dll", SetLastError = true)]
+        private static extern uint QueryContextAttributes(
+            ref SecHandle phContext,
+            uint ulAttribute,
+            out IntPtr value);
+
+        [DllImport("secur32.Dll", SetLastError = true)]
+        private static extern uint QueryContextAttributes(
+            ref SecHandle phContext,
+            uint ulAttribute,
+            out SecPkgContext_SessionKey value);

        [DllImport("Secur32.dll")]
        private extern static uint FreeContextBuffer(
@ -378,13 +399,48 @@ namespace SMBLibrary.Win32.Security
            }
        }

-        public static IntPtr GetAccessToken(SecHandle serverContext)
+        public static string GetUserName(SecHandle context)
        {
-            IntPtr pBuffer;
-            uint result = QueryContextAttributes(ref serverContext, SECPKG_ATTR_ACCESS_TOKEN, out pBuffer);
+            string userName;
+            uint result = QueryContextAttributes(ref context, SECPKG_ATTR_NAME, out userName);
            if (result == SEC_E_OK)
            {
-                return pBuffer;
+                return userName;
+            }
+            else
+            {
+                return null;
+            }
+        }
+
+        /// <summary>
+        /// Windows Vista or newer is required for SECPKG_ATTR_SESSION_KEY to work.
+        /// Windows XP / Server 2003 will return SEC_E_INVALID_TOKEN.
+        /// </summary>
+        public static byte[] GetSessionKey(SecHandle context)
+        {
+            SecPkgContext_SessionKey sessionKey;
+            uint result = QueryContextAttributes(ref context, SECPKG_ATTR_SESSION_KEY, out sessionKey);
+            if (result == SEC_E_OK)
+            {
+                int length = (int)sessionKey.SessionKeyLength;
+                byte[] sessionKeyBytes = new byte[length];
+                Marshal.Copy(sessionKey.SessionKey, sessionKeyBytes, 0, length);
+                return sessionKeyBytes;
+            }
+            else
+            {
+                return null;
+            }
+        }
+
+        public static IntPtr GetAccessToken(SecHandle serverContext)
+        {
+            IntPtr accessToken;
+            uint result = QueryContextAttributes(ref serverContext, SECPKG_ATTR_ACCESS_TOKEN, out accessToken);
+            if (result == SEC_E_OK)
+            {
+                return accessToken;
            }
            else
            {