archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/admin/admt/common/commonlib/sdhelper.cpp

105 lines
3.0 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. #include <windows.h>
  2. #include <objbase.h>
  3. #include "sdhelper.h"
  4. #include "commalog.hpp"
  6. #define ADMINISTRATORS 1
  7. #define ACCOUNT_OPERATORS 2
  8. #define BACKUP_OPERATORS 3
  9. #define DOMAIN_ADMINS 4
  10. #define CREATOR_OWNER 5
  11. #define USERS 6
  12. #define SYSTEM 7
  14. PSID ConvertSID(PSID originalSid)
  15. {
  16. DWORD sidLen = GetLengthSid(originalSid);
  17. PSID copiedSid = (PSID) malloc(sidLen);
  18. if (copiedSid)
  19. {
  20. if (!CopySid(sidLen, copiedSid, originalSid))
  21. {
  22. free(copiedSid);
  23. copiedSid = NULL;
  24. }
  25. }
  26. return copiedSid;
  27. }
  29. TSD* BuildAdminsAndSystemSDForCOM()
  30. {
  31. return BuildAdminsAndSystemSD(COM_RIGHTS_EXECUTE);
  32. }
  34. TSD* BuildAdminsAndSystemSD(DWORD accessMask)
  35. {
  36. TSD* builtSD = NULL;
  37. PSID adminsSid = GetWellKnownSid(ADMINISTRATORS);
  38. PSID systemSid = GetWellKnownSid(SYSTEM);
  39. if (adminsSid && systemSid)
  40. {
  41. PSID copiedAdminsSid = ConvertSID(adminsSid);
  42. PSID groupSid = ConvertSID(adminsSid);
  43. builtSD = new TSD(McsUnknownSD);
  44. BOOL bSuccess = FALSE;
  45. if (copiedAdminsSid && groupSid && builtSD)
  46. {
  47. TACE adminsAce(ACCESS_ALLOWED_ACE_TYPE,0,accessMask,copiedAdminsSid);
  48. TACE systemAce(ACCESS_ALLOWED_ACE_TYPE,0,accessMask,systemSid);
  50. // see if both TACE objects get allocated properly
  51. if (adminsAce.GetBuffer() && systemAce.GetBuffer())
  52. {
  53. PACL acl = NULL; // start with an empty ACL
  54. PACL tempAcl;
  56. builtSD->ACLAddAce(&acl,&adminsAce,-1);
  57. if (acl != NULL)
  58. {
  59. tempAcl = acl;
  60. builtSD->ACLAddAce(&acl,&systemAce,-1);
  61. if (acl != tempAcl)
  62. free(tempAcl);
  63. }
  65. if (acl != NULL)
  66. {
  67. // need to set the owner
  68. builtSD->SetOwner(copiedAdminsSid);
  69. copiedAdminsSid = NULL; // memory is taken care of by builtSD destructor
  71. // need to set the group
  72. builtSD->SetGroup(groupSid);
  73. groupSid = NULL; // memory is taken care of by builtSD destructor
  75. // set the DACL part
  76. builtSD->SetDacl(acl,TRUE); // builtSD destructor will take care of acl
  78. bSuccess = TRUE;
  79. }
  80. }
  81. }
  83. if (!bSuccess)
  84. {
  85. if (copiedAdminsSid)
  86. free(copiedAdminsSid);
  87. if (groupSid)
  88. free(groupSid);
  89. if (builtSD)
  90. {
  91. delete builtSD;
  92. builtSD = NULL;
  93. }
  94. }
  95. }
  97. if (adminsSid)
  98. FreeSid(adminsSid);
  100. if (systemSid)
  101. FreeSid(systemSid);
  103. return builtSD;
  104. }