archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/admin/wmi/wbem/policman/provider/policstatus.cpp

386 lines
10 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. #include <unk.h>
  2. #include <wbemcli.h>
  3. #include <wbemprov.h>
  4. #include <atlbase.h>
  5. #include <sync.h>
  6. #include <activeds.h>
  7. #include <genlex.h>
  8. #include <objpath.h>
  9. #include <Utility.h>
  10. #include <comutil.h>
  11. #include <ql.h>
  13. #include "PolicStatus.h"
  15. #ifdef TIME_TRIALS
  16. #include <StopWatch.h>
  17. #pragma message("!! Including time trial code !!")
  18. StopWatch EvaluateTimer(L"Somfilter Evaluation", L"C:\\Som.Evaluate.log");
  19. #endif
  21. /******************************\
  22. **** POLICY PROVIDER HELPERS ***
  23. \******************************/
  25. // returns addref'd pointer back to WinMgmt
  26. CComPtr<IWbemServices>& CPolicyStatus::GetWMIServices()
  27. {
  28. CInCritSec lock(&m_CS);
  30. return m_pWMIMgmt;
  31. }
  33. UINT NextPattern(wchar_t *a_pString, UINT a_uOffset, wchar_t *a_pPattern);
  35. IADsContainer *CPolicyStatus::GetADServices(CComBSTR &a_bstrIPDomainName,
  36. CComBSTR &a_bstrADDomainName,
  37. HRESULT &a_hres)
  38. {
  39. CInCritSec lock(&m_CS);
  41. CComQIPtr<IADsContainer>
  42. pADsContainer;
  44. CComBSTR
  45. ObjPath;
  47. UINT
  48. uOffsetS = 0,
  49. uOffsetE = 0;
  51. // **** translate bstrIPServerName to bstrADServerName
  53. if(!a_bstrIPDomainName)
  54. return NULL;
  55. else
  56. {
  57. a_bstrADDomainName.Append(L"DC=");
  59. while((uOffsetS < a_bstrIPDomainName.Length()) &&
  60. (uOffsetE = NextPattern(a_bstrIPDomainName, uOffsetS, L".")))
  61. {
  62. if(uOffsetS && (uOffsetS == uOffsetE)) return NULL;
  64. a_bstrADDomainName.Append(a_bstrIPDomainName + uOffsetS, uOffsetE - uOffsetS);
  65. uOffsetS = uOffsetE + 1;
  66. if(uOffsetS < a_bstrIPDomainName.Length()) a_bstrADDomainName.Append(L",DC=");
  67. }
  69. if(uOffsetS < a_bstrIPDomainName.Length())
  70. a_bstrADDomainName.Append(a_bstrIPDomainName + uOffsetS);
  71. }
  73. ObjPath.Append(L"LDAP://");
  74. ObjPath.Append(a_bstrIPDomainName);
  75. ObjPath.Append(L"/");
  76. ObjPath.Append(a_bstrADDomainName);
  78. // **** try and get the AD container
  80. a_hres = ADsOpenObject(ObjPath,
  81. NULL, NULL,
  82. ADS_SECURE_AUTHENTICATION | ADS_USE_SEALING | ADS_USE_SIGNING,
  83. IID_IADsContainer, (void**) &pADsContainer);
  85. return pADsContainer.Detach();
  86. }
  88. IADsContainer *GetADSchemaContainer(CComBSTR &a_bstrIPDomainName,
  89. CComBSTR &a_bstrADDomainName,
  90. HRESULT &hres)
  91. {
  92. CComQIPtr<IADs>
  93. pRootDSE;
  95. CComVariant
  96. vSchemaPath;
  98. CComBSTR
  99. bstrRootPath(L"LDAP://"),
  100. bstrSchemaPath(L"LDAP://");
  102. bstrRootPath.Append(a_bstrIPDomainName);
  103. bstrRootPath.Append(L"/rootDSE");
  105. bstrSchemaPath.Append(a_bstrIPDomainName);
  106. bstrSchemaPath.Append(L"/");
  108. CComQIPtr<IADsContainer>
  109. pADsContainer;
  111. hres = ADsGetObject(bstrRootPath, IID_IADs, (void **)&pRootDSE);
  112. if(FAILED(hres)) return NULL;
  114. hres = pRootDSE->Get(g_bstrMISCschemaNamingContext, &vSchemaPath);
  115. if(FAILED(hres)) return NULL;
  117. bstrSchemaPath.Append(vSchemaPath.bstrVal);
  119. hres = ADsGetObject(bstrSchemaPath, IID_IADsContainer, (void **)&pADsContainer);
  120. if(FAILED(hres)) return NULL;
  122. return pADsContainer.Detach();
  123. }
  125. // returns false if services pointer has already been set
  126. bool CPolicyStatus::SetWMIServices(IWbemServices* pServices)
  127. {
  128. CInCritSec lock(&m_CS);
  129. bool bOldOneNull = FALSE;
  131. if (bOldOneNull = (m_pWMIMgmt == NULL))
  132. {
  133. m_pWMIMgmt = pServices;
  134. }
  136. return bOldOneNull;
  137. }
  139. void* CPolicyStatus::GetInterface(REFIID riid)
  140. {
  141. if(riid == IID_IWbemServices)
  142. return &m_XProvider;
  143. else if(riid == IID_IWbemProviderInit)
  144. return &m_XInit;
  145. else return NULL;
  146. }
  148. /*********************************\
  149. *** Specific Implementation ***
  150. \*********************************/
  152. // returns addref'd pointer to class object
  153. IWbemClassObject* CPolicyStatus::GetStatusClass(HRESULT &a_hres)
  154. {
  155. CInCritSec lock(&m_CS);
  157. a_hres = WBEM_S_NO_ERROR;
  159. if (m_pStatusClassObject == NULL)
  160. {
  161. if (m_pWMIMgmt != NULL)
  162. {
  163. a_hres = m_pWMIMgmt->GetObject(g_bstrClassSomFilterStatus, WBEM_FLAG_RETURN_WBEM_COMPLETE, NULL, &m_pStatusClassObject, NULL);
  164. }
  165. }
  167. return m_pStatusClassObject;
  168. }
  170. // returns addref'd pointer to emply class instance
  171. IWbemClassObject* CPolicyStatus::GetStatusInstance(HRESULT &a_hres)
  172. {
  173. CComPtr<IWbemClassObject>
  174. pClass, pObj;
  176. a_hres = WBEM_S_NO_ERROR;
  178. pClass = GetStatusClass(a_hres);
  180. if((pClass != NULL) && (SUCCEEDED(a_hres = pClass->SpawnInstance(0, &pObj))))
  181. return pObj.Detach();
  183. return NULL;
  184. }
  186. /*************************\
  187. *** IWbemProviderInit ***
  188. \*************************/
  190. STDMETHODIMP CPolicyStatus::XInit::Initialize(
  191. LPWSTR, LONG, LPWSTR, LPWSTR, IWbemServices* pServices, IWbemContext* pCtxt,
  192. IWbemProviderInitSink* pSink)
  193. {
  194. HRESULT
  195. hres = WBEM_S_NO_ERROR,
  196. hres2 = WBEM_S_NO_ERROR;
  198. // **** impersonate client for security
  200. hres = CoImpersonateClient();
  201. if(FAILED(hres))
  202. {
  203. ERRORTRACE((LOG_ESS, "POLICMAN: (CoImpersonateClient) could not assume client permissions, 0x%08X\n", hres));
  204. return WBEM_S_ACCESS_DENIED;
  205. }
  206. else
  207. {
  208. // **** save WMI name space pointer
  210. m_pObject->SetWMIServices(pServices);
  211. }
  213. hres2 = pSink->SetStatus(hres, 0);
  214. if(FAILED(hres2))
  215. {
  216. ERRORTRACE((LOG_ESS, "POLICMAN: could not set return status\n"));
  217. if(SUCCEEDED(hres)) hres = hres2;
  218. }
  220. CoRevertToSelf();
  222. return hres;
  223. }
  225. /*******************\
  226. *** IWbemServices ***
  227. \*******************/
  229. STDMETHODIMP CPolicyStatus::XProvider::GetObjectAsync(
  230. /* [in] */ const BSTR ObjectPath,
  231. /* [in] */ long lFlags,
  232. /* [in] */ IWbemContext __RPC_FAR *pCtx,
  233. /* [in] */ IWbemObjectSink __RPC_FAR *pResponseHandler)
  234. {
  235. HRESULT
  236. hres = WBEM_S_NO_ERROR,
  237. hres2 = WBEM_S_NO_ERROR;
  239. CComPtr<IWbemServices>
  240. pNamespace;
  242. CComPtr<IADsContainer>
  243. pADsSchemaContainer,
  244. pADsContainer;
  246. CComBSTR
  247. bstrADDomain,
  248. bstrPath1(L"CN=SOM,CN=WMIPolicy,CN=System"),
  249. bstrPath2(L"CN=ms-WMI-Som");
  251. VARIANT
  252. *pvDomain = NULL;
  254. // **** impersonate client for security
  256. hres = CoImpersonateClient();
  257. if (FAILED(hres))
  258. {
  259. ERRORTRACE((LOG_ESS, "POLICMAN: (CoImpersonateClient) could not assume callers permissions, 0x%08X\n",hres));
  260. hres = WBEM_E_ACCESS_DENIED;
  261. }
  262. else
  263. {
  264. // **** Check arguments
  266. if(ObjectPath == NULL || pResponseHandler == NULL)
  267. {
  268. ERRORTRACE((LOG_ESS, "POLICMAN: object path and/or return object are NULL\n"));
  269. hres = WBEM_E_INVALID_PARAMETER;
  270. }
  271. else
  272. {
  273. // **** parse object path
  275. CObjectPathParser
  276. ObjPath(e_ParserAcceptRelativeNamespace);
  278. ParsedObjectPath
  279. *pParsedObjectPath = NULL;
  281. if((ObjPath.NoError != ObjPath.Parse(ObjectPath, &pParsedObjectPath)) ||
  282. (0 != _wcsicmp(g_bstrClassSomFilterStatus, pParsedObjectPath->m_pClass)) ||
  283. (1 != pParsedObjectPath->m_dwNumKeys))
  284. {
  285. ERRORTRACE((LOG_ESS, "POLICMAN: Parse error for object: %S\n", ObjectPath));
  286. hres = WBEM_E_INVALID_QUERY;
  287. }
  288. else
  289. {
  290. for(int x = 0; x < pParsedObjectPath->m_dwNumKeys; x++)
  291. {
  292. if(0 == _wcsicmp((*(pParsedObjectPath->m_paKeys + x))->m_pName, g_bstrDomain))
  293. pvDomain = &((*(pParsedObjectPath->m_paKeys + x))->m_vValue);
  294. }
  296. if((!pvDomain) || (pvDomain->bstrVal == NULL))
  297. hres = WBEM_E_FAILED;
  298. else
  299. {
  300. pNamespace = m_pObject->GetWMIServices();
  302. CComBSTR
  303. bstrDomain = ((pvDomain && pvDomain->vt == VT_BSTR) ? pvDomain->bstrVal : NULL);
  305. pADsContainer.Attach(m_pObject->GetADServices(bstrDomain, bstrADDomain, hres));
  306. if(SUCCEEDED(hres)) pADsSchemaContainer.Attach(GetADSchemaContainer(bstrDomain, bstrADDomain, hres));
  307. }
  309. if((FAILED(hres)) || (pNamespace == NULL) || (pADsContainer == NULL))
  310. {
  311. ERRORTRACE((LOG_ESS, "POLICMAN: WMI and/or AD services not initialized\n"));
  312. hres = ADSIToWMIErrorCodes(hres);
  313. }
  314. else
  315. {
  316. try
  317. {
  318. CComPtr<IWbemClassObject>
  319. pStatusObj;
  321. CComQIPtr<IDispatch, &IID_IDispatch>
  322. pDisp1, pDisp2;
  324. CComQIPtr<IDirectoryObject, &IID_IDirectoryObject>
  325. pDirectoryObj;
  327. VARIANT
  328. vContainerPresent = {VT_BOOL, 0, 0, 0},
  329. vSchemaPresent = {VT_BOOL, 0, 0, 0};
  331. pStatusObj.Attach(m_pObject->GetStatusInstance(hres));
  333. if(pStatusObj != NULL)
  334. {
  335. // **** test for existence of containers
  337. hres = pADsContainer->GetObject(g_bstrMISCContainer, bstrPath1, &pDisp1);
  338. if(SUCCEEDED(hres) && (pDisp1.p != NULL)) vContainerPresent.boolVal = -1;
  340. // **** test for existence of schema object
  342. hres = pADsSchemaContainer->GetObject(g_bstrMISCclassSchema, bstrPath2, &pDisp2);
  343. if(SUCCEEDED(hres) && (pDisp2.p != NULL)) vSchemaPresent.boolVal = -1;
  345. // **** build status object
  347. hres = pStatusObj->Put(L"Domain", 0, pvDomain, 0);
  348. hres = pStatusObj->Put(L"ContainerAvailable", 0, &vContainerPresent, 0);
  349. hres = pStatusObj->Put(L"SchemaAvailable", 0, &vSchemaPresent, 0);
  351. hres = pResponseHandler->Indicate(1, &pStatusObj);
  352. }
  353. }
  354. catch(long hret)
  355. {
  356. hres = ADSIToWMIErrorCodes(hret);
  357. ERRORTRACE((LOG_ESS, "POLICMAN: Translation of Policy object from AD to WMI generated HRESULT 0x%08X\n", hres));
  358. }
  359. catch(wchar_t *swErrString)
  360. {
  361. ERRORTRACE((LOG_ESS, "POLICMAN: Caught Exception: %S\n", swErrString));
  362. hres = WBEM_E_FAILED;
  363. }
  364. catch(...)
  365. {
  366. ERRORTRACE((LOG_ESS, "POLICMAN: Caught UNKNOWN Exception\n"));
  367. hres = WBEM_E_FAILED;
  368. }
  369. }
  370. }
  372. ObjPath.Free(pParsedObjectPath);
  373. hres2 = pResponseHandler->SetStatus(0,hres, NULL, NULL);
  374. if(FAILED(hres2))
  375. {
  376. ERRORTRACE((LOG_ESS, "POLICMAN: could not set return status\n"));
  377. if(SUCCEEDED(hres)) hres = hres2;
  378. }
  379. }
  381. CoRevertToSelf();
  382. }
  384. return hres;
  385. }