archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/base/screg/winreg/server/predefh.c

802 lines
18 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  4. Copyright (c) 1991 Microsoft Corporation
  6. Module Name:
  8. Predefh.c
  10. Abstract:
  12. This module contains routines for opening the Win32 Registry API's
  13. predefined handles.
  15. A predefined handle is used as a root to an absolute or relative
  16. sub-tree in the real Nt Registry. An absolute predefined handle maps
  17. to a specific key within the Registry. A relative predefined handle
  18. maps to a key relative to some additional information such as the
  19. current user.
  21. Predefined handles are strictly part of the Win32 Registry API. The
  22. Nt Registry API knows nothing about them.
  24. A predefined handle can be used anywhere that a non-predefined handle
  25. (i.e. one returned from RegCreateKey(), RegOpenKey() or
  26. RegConnectRegistry()) can be used.
  28. Author:
  30. David J. Gilman (davegi) 15-Nov-1991
  32. --*/
  34. #include <rpc.h>
  35. #include "regrpc.h"
  36. #include "localreg.h"
  37. #include "regclass.h"
  38. #include "ntconreg.h"
  39. #include "regsec.h"
  40. #ifdef LOCAL
  41. #include "tsappcmp.h"
  43. #if defined(LEAK_TRACK)
  44. #include "regleak.h"
  45. #endif // LEAK_TRACK
  46. #endif
  48. //
  49. // Determine the length of a Unicode string w/o the trailing NULL.
  50. //
  52. #define LENGTH( str ) ( sizeof( str ) - sizeof( UNICODE_NULL ))
  54. //
  55. // Nt Registry name space.
  56. //
  58. #define MACHINE L"\\REGISTRY\\MACHINE"
  60. #define USER L"\\REGISTRY\\USER"
  62. #define CLASSES L"\\REGISTRY\\MACHINE\\SOFTWARE\\CLASSES"
  64. #define CURRENTCONFIG L"\\REGISTRY\\MACHINE\\SYSTEM\\CURRENTCONTROLSET\\HARDWARE PROFILES\\CURRENT"
  66. extern const
  67. UNICODE_STRING MachineStringKey = {
  68. LENGTH( MACHINE ),
  69. LENGTH( MACHINE ),
  70. MACHINE
  71. };
  73. extern const
  74. UNICODE_STRING UserStringKey = {
  75. LENGTH( USER ),
  76. LENGTH( USER ),
  77. USER
  78. };
  80. extern const
  81. UNICODE_STRING ClassesStringKey = {
  82. LENGTH( CLASSES ),
  83. LENGTH( CLASSES ),
  84. CLASSES
  85. };
  87. extern const
  88. UNICODE_STRING CurrentConfigStringKey = {
  89. LENGTH( CURRENTCONFIG ),
  90. LENGTH( CURRENTCONFIG ),
  91. CURRENTCONFIG
  92. };
  95. HANDLE RestrictedMachineHandle = NULL;
  97. NTSTATUS
  98. InitSecurityAcls(PSECURITY_DESCRIPTOR *SecurityDescriptor)
  99. /*++
  101. Routine Description:
  103. Gives GENERIC_ALL to admins and denies WRITE_OWNER | WRITE_DAC from everyone
  105. Arguments:
  108. Return Value:
  111. --*/
  112. {
  113. SID_IDENTIFIER_AUTHORITY NtAuthority = SECURITY_NT_AUTHORITY;
  114. SID_IDENTIFIER_AUTHORITY WorldAuthority = SECURITY_WORLD_SID_AUTHORITY;
  115. PSID BuiltInAdministrators = NULL;
  116. PSID Everyone = NULL;
  117. NTSTATUS Status;
  118. ULONG AclSize;
  119. ACL *Acl;
  121. *SecurityDescriptor = NULL;
  123. Status = RtlAllocateAndInitializeSid(
  124. &WorldAuthority,
  125. 1,
  126. SECURITY_WORLD_RID,
  127. 0,0,0,0,0,0,0,
  128. &Everyone );
  129. if( !NT_SUCCESS(Status) ) {
  130. goto Exit;
  131. }
  133. Status = RtlAllocateAndInitializeSid(
  134. &NtAuthority,
  135. 2,
  136. SECURITY_BUILTIN_DOMAIN_RID,
  137. DOMAIN_ALIAS_RID_ADMINS,
  138. 0,0,0,0,0,0,
  139. &BuiltInAdministrators );
  141. if( !NT_SUCCESS(Status) ) {
  142. goto Exit;
  143. }
  147. AclSize = sizeof (ACL) +
  148. (2 * (sizeof (ACCESS_ALLOWED_ACE) - sizeof (ULONG))) +
  149. GetLengthSid(BuiltInAdministrators) +
  150. GetLengthSid(Everyone);
  152. *SecurityDescriptor = (PSECURITY_DESCRIPTOR)RtlAllocateHeap( RtlProcessHeap(), 0, SECURITY_DESCRIPTOR_MIN_LENGTH + AclSize);
  153. if (!*SecurityDescriptor) {
  154. Status = STATUS_INSUFFICIENT_RESOURCES;
  155. goto Exit;
  156. }
  158. Acl = (ACL *)((BYTE *)(*SecurityDescriptor) + SECURITY_DESCRIPTOR_MIN_LENGTH);
  160. Status = RtlCreateAcl( Acl,
  161. AclSize,
  162. ACL_REVISION);
  163. if( !NT_SUCCESS(Status) ) {
  164. goto Exit;
  165. }
  167. Status = RtlAddAccessAllowedAce(Acl,
  168. ACL_REVISION,
  169. (KEY_ALL_ACCESS & ~(WRITE_OWNER | WRITE_DAC)),
  170. Everyone);
  171. if( !NT_SUCCESS(Status) ) {
  172. goto Exit;
  173. }
  175. Status = RtlAddAccessAllowedAce(Acl,
  176. ACL_REVISION,
  177. GENERIC_ALL,
  178. BuiltInAdministrators);
  179. if( !NT_SUCCESS(Status) ) {
  180. goto Exit;
  181. }
  183. Status = RtlCreateSecurityDescriptor(
  184. *SecurityDescriptor,
  185. SECURITY_DESCRIPTOR_REVISION
  186. );
  187. if( !NT_SUCCESS(Status) ) {
  188. goto Exit;
  189. }
  191. Status = RtlSetDaclSecurityDescriptor( *SecurityDescriptor,
  192. TRUE,
  193. Acl,
  194. FALSE);
  196. Exit:
  197. if( Everyone ) {
  198. RtlFreeSid( Everyone );
  199. }
  201. if( BuiltInAdministrators ) {
  202. RtlFreeSid( BuiltInAdministrators );
  203. }
  205. return Status;
  206. }
  209. error_status_t
  210. OpenClassesRoot(
  211. IN PREGISTRY_SERVER_NAME ServerName,
  212. IN REGSAM samDesired,
  213. OUT PRPC_HKEY phKey
  214. )
  216. /*++
  218. Routine Description:
  220. Attempts to open the the HKEY_CLASSES_ROOT predefined handle.
  222. Arguments:
  224. ServerName - Not used.
  225. samDesired - This access mask describes the desired security access
  226. for the key.
  227. phKey - Returns a handle to the key \REGISTRY\MACHINE\SOFTWARE\CLASSES.
  229. Return Value:
  231. Returns ERROR_SUCCESS (0) for success; error-code for failure.
  233. --*/
  235. {
  236. PSECURITY_DESCRIPTOR SecurityDescriptor = NULL;
  237. OBJECT_ATTRIBUTES Obja;
  238. NTSTATUS Status;
  239. UNICODE_STRING UsersHive;
  240. UNICODE_STRING UsersMergedHive;
  242. UNREFERENCED_PARAMETER( ServerName );
  244. //
  245. // Impersonate the client.
  246. //
  248. RPC_IMPERSONATE_CLIENT( NULL );
  250. #ifdef LOCAL
  251. //
  252. // Multiuser CLASSES key so each user has their own key. If opening
  253. // CLASSES in execute mode - open it under HKEY_CURRENT_USER else
  254. // just let it fall thru here and open the global one.
  255. //
  256. if (gpfnTermsrvOpenUserClasses) {
  257. Status = gpfnTermsrvOpenUserClasses(samDesired,phKey);
  258. } else {
  259. *phKey = NULL;
  260. }
  261. if (!(*phKey)) {
  262. #endif // LOCAL
  265. //
  266. // Initialize the SECURITY_DESCRIPTOR.
  267. //
  268. Status = InitSecurityAcls(&SecurityDescriptor);
  270. if( ! NT_SUCCESS( Status )) {
  271. goto error_exit;
  272. }
  275. #ifdef LOCAL
  277. if (gbCombinedClasses) {
  278. // first try for a per-user HKCR
  279. Status = OpenCombinedClassesRoot( samDesired, phKey );
  281. if ( NT_SUCCESS( Status ) ) {
  282. goto error_exit;
  283. }
  284. }
  285. #endif
  287. //
  288. // Initialize the OBJECT_ATTRIBUTES structure so that it creates
  289. // (opens) the key "\REGISTRY\MACHINE\SOFTWARE\CLASSES" with a Security
  290. // Descriptor that allows everyone complete access.
  291. //
  293. InitializeObjectAttributes(
  294. &Obja,
  295. (PUNICODE_STRING)&ClassesStringKey,
  296. OBJ_CASE_INSENSITIVE,
  297. NULL,
  298. SecurityDescriptor
  299. );
  301. Status = NtCreateKey(
  302. phKey,
  303. samDesired, // MAXIMUM_ALLOWED,
  304. &Obja,
  305. 0,
  306. NULL,
  307. REG_OPTION_NON_VOLATILE,
  308. NULL
  309. );
  310. #ifdef LOCAL
  311. }
  312. #endif // LOCAL
  314. #if DBG
  315. if( ! NT_SUCCESS( Status )) {
  316. DbgPrint(
  317. "Winreg Server: "
  318. "Creating HKEY_CLASSES_ROOT failed, status = 0x%x\n",
  319. Status
  320. );
  321. }
  322. #endif
  324. error_exit:
  326. if( SecurityDescriptor != NULL ) {
  327. RtlFreeHeap( RtlProcessHeap(), 0, SecurityDescriptor );
  328. }
  329. RPC_REVERT_TO_SELF();
  330. return (error_status_t)RtlNtStatusToDosError( Status );
  331. }
  333. error_status_t
  334. OpenCurrentUser(
  335. IN PREGISTRY_SERVER_NAME ServerName,
  336. IN REGSAM samDesired,
  337. OUT PRPC_HKEY phKey
  338. )
  340. /*++
  342. Routine Description:
  344. Attempts to open the the HKEY_CURRENT_USER predefined handle.
  346. Arguments:
  348. ServerName - Not used.
  349. samDesired - This access mask describes the desired security access
  350. for the key.
  351. phKey - Returns a handle to the key \REGISTRY\USER\*.
  353. Return Value:
  355. Returns ERROR_SUCCESS (0) for success; error-code for failure.
  357. --*/
  359. {
  360. NTSTATUS Status;
  362. UNREFERENCED_PARAMETER( ServerName );
  364. //
  365. // Impersonate the client.
  366. //
  368. RPC_IMPERSONATE_CLIENT( NULL );
  370. //
  371. // Open the registry key.
  372. //
  374. Status = RtlOpenCurrentUser( samDesired, /* MAXIMUM_ALLOWED, */ phKey );
  376. RPC_REVERT_TO_SELF();
  377. //
  378. // Map the returned status
  379. //
  381. return (error_status_t)RtlNtStatusToDosError( Status );
  382. }
  384. error_status_t
  385. OpenLocalMachine(
  386. IN PREGISTRY_SERVER_NAME ServerName,
  387. IN REGSAM samDesired,
  388. OUT PRPC_HKEY phKey
  389. )
  391. /*++
  393. Routine Description:
  395. Attempt to open the the HKEY_LOCAL_MACHINE predefined handle.
  397. Arguments:
  399. ServerName - Not used.
  400. samDesired - This access mask describes the desired security access
  401. for the key.
  402. phKey - Returns a handle to the key \REGISTRY\MACHINE.
  404. Return Value:
  406. Returns ERROR_SUCCESS (0) for success; error-code for failure.
  408. --*/
  410. {
  411. OBJECT_ATTRIBUTES Obja;
  412. NTSTATUS Status;
  414. UNREFERENCED_PARAMETER( ServerName );
  416. //
  417. // Impersonate the client.
  418. //
  420. RPC_IMPERSONATE_CLIENT( NULL );
  422. InitializeObjectAttributes(
  423. &Obja,
  424. (PUNICODE_STRING)&MachineStringKey,
  425. OBJ_CASE_INSENSITIVE,
  426. NULL,
  427. NULL
  428. );
  430. Status = NtOpenKey(
  431. phKey,
  432. samDesired, // MAXIMUM_ALLOWED,
  433. &Obja
  434. );
  435. #if DBG
  436. if( ! NT_SUCCESS( Status )) {
  437. DbgPrint(
  438. "Winreg Server: "
  439. "Opening HKEY_LOCAL_MACHINE failed, status = 0x%x\n",
  440. Status
  441. );
  442. }
  443. #endif
  445. if ( NT_SUCCESS( Status ) )
  446. {
  447. if (! REGSEC_CHECK_REMOTE( phKey ) )
  448. {
  449. ASSERT( RestrictedMachineHandle != NULL );
  450. NtClose(*phKey);
  451. *phKey = REGSEC_FLAG_HANDLE( RestrictedMachineHandle, CHECK_MACHINE_PATHS );
  452. }
  453. }
  455. RPC_REVERT_TO_SELF();
  457. return (error_status_t)RtlNtStatusToDosError( Status );
  458. }
  460. error_status_t
  461. OpenUsers(
  462. IN PREGISTRY_SERVER_NAME ServerName,
  463. IN REGSAM samDesired,
  464. OUT PRPC_HKEY phKey
  465. )
  467. /*++
  469. Routine Description:
  471. Attempts to open the the HKEY_USERS predefined handle.
  473. Arguments:
  475. ServerName - Not used.
  476. samDesired - This access mask describes the desired security access
  477. for the key.
  478. phKey - Returns a handle to the key \REGISTRY\USER.
  480. Return Value:
  482. Returns ERROR_SUCCESS (0) for success; error-code for failure.
  484. --*/
  486. {
  487. OBJECT_ATTRIBUTES Obja;
  488. NTSTATUS Status;
  490. UNREFERENCED_PARAMETER( ServerName );
  492. //
  493. // Impersonate the client.
  494. //
  496. RPC_IMPERSONATE_CLIENT( NULL );
  498. InitializeObjectAttributes(
  499. &Obja,
  500. (PUNICODE_STRING)&UserStringKey,
  501. OBJ_CASE_INSENSITIVE,
  502. NULL,
  503. NULL
  504. );
  506. Status = NtOpenKey(
  507. phKey,
  508. samDesired, // MAXIMUM_ALLOWED,
  509. &Obja
  510. );
  511. #if DBG
  512. if( ! NT_SUCCESS( Status )) {
  513. DbgPrint(
  514. "Winreg Server: "
  515. "Opening HKEY_USERS failed, status = 0x%x\n",
  516. Status
  517. );
  518. }
  519. #endif
  521. /*
  522. if ( NT_SUCCESS( Status ) )
  523. {
  524. if (! REGSEC_CHECK_REMOTE( phKey ) )
  525. {
  526. *phKey = REGSEC_FLAG_HANDLE( *phKey, CHECK_USER_PATHS );
  527. }
  528. }
  529. */
  530. RPC_REVERT_TO_SELF();
  532. return (error_status_t)RtlNtStatusToDosError( Status );
  533. }
  535. error_status_t
  536. OpenCurrentConfig(
  537. IN PREGISTRY_SERVER_NAME ServerName,
  538. IN REGSAM samDesired,
  539. OUT PRPC_HKEY phKey
  540. )
  542. /*++
  544. Routine Description:
  546. Attempts to open the the HKEY_CURRENT_CONFIG predefined handle.
  548. Arguments:
  550. ServerName - Not used.
  551. samDesired - This access mask describes the desired security access
  552. for the key.
  553. phKey - Returns a handle to the key \REGISTRY\MACHINE\SYSTEM\CURRENTCONTROLSET\HARDWARE PROFILES\CURRENT
  555. Return Value:
  557. Returns ERROR_SUCCESS (0) for success; error-code for failure.
  559. --*/
  561. {
  562. OBJECT_ATTRIBUTES Obja;
  563. NTSTATUS Status;
  565. UNREFERENCED_PARAMETER( ServerName );
  567. //
  568. // Impersonate the client.
  569. //
  571. RPC_IMPERSONATE_CLIENT( NULL );
  573. InitializeObjectAttributes(
  574. &Obja,
  575. (PUNICODE_STRING)&CurrentConfigStringKey,
  576. OBJ_CASE_INSENSITIVE,
  577. NULL,
  578. NULL
  579. );
  581. Status = NtOpenKey(
  582. phKey,
  583. samDesired, // MAXIMUM_ALLOWED,
  584. &Obja
  585. );
  586. #if DBG
  587. if( ! NT_SUCCESS( Status )) {
  588. DbgPrint(
  589. "Winreg Server: "
  590. "Opening HKEY_CURRENT_CONFIG failed, status = 0x%x\n",
  591. Status
  592. );
  593. }
  594. #endif
  595. RPC_REVERT_TO_SELF();
  597. return (error_status_t)RtlNtStatusToDosError( Status );
  598. }
  599. error_status_t
  600. OpenPerformanceData(
  601. IN PREGISTRY_SERVER_NAME ServerName,
  602. IN REGSAM samDesired,
  603. OUT PRPC_HKEY phKey
  604. )
  606. /*++
  608. Routine Description:
  610. Attempts to open the the HKEY_PERFORMANCE_DATA predefined handle.
  612. Arguments:
  614. ServerName - Not used.
  615. samDesired - Not used.
  616. phKey - Returns a the predefined handle HKEY_PERFORMANCE_DATA.
  618. Return Value:
  620. Returns ERROR_SUCCESS (0) for success;
  621. or a DOS (not NT) error-code for failure.
  623. --*/
  625. {
  626. NTSTATUS status;
  628. if ( 0 ) {
  629. DBG_UNREFERENCED_PARAMETER(ServerName);
  630. DBG_UNREFERENCED_PARAMETER(samDesired);
  631. }
  633. //
  634. // Impersonate the client.
  635. //
  637. RPC_IMPERSONATE_CLIENT( NULL );
  639. if ( ! REGSEC_CHECK_PERF( phKey ) )
  640. {
  641. RPC_REVERT_TO_SELF();
  642. return( ERROR_ACCESS_DENIED );
  643. }
  645. // Move lodctr/unlodctr access check to part of PerfOpenKey()
  647. status = PerfOpenKey( HKEY_PERFORMANCE_DATA );
  649. RPC_REVERT_TO_SELF();
  651. *phKey = (RPC_HKEY) HKEY_PERFORMANCE_DATA;
  652. return ERROR_SUCCESS;
  654. }
  656. error_status_t
  657. OpenPerformanceText(
  658. IN PREGISTRY_SERVER_NAME ServerName,
  659. IN REGSAM samDesired,
  660. OUT PRPC_HKEY phKey
  661. )
  663. /*++
  665. Routine Description:
  667. Attempts to open the the HKEY_PERFORMANCE_TEXT predefined handle.
  669. Arguments:
  671. ServerName - Not used.
  672. samDesired - Not used.
  673. phKey - Returns the predefined handle HKEY_PERFORMANCE_TEXT.
  675. Return Value:
  677. Returns ERROR_SUCCESS (0) for success;
  678. or a DOS (not NT) error-code for failure.
  680. --*/
  682. {
  683. error_status_t Status = ERROR_SUCCESS;
  685. // No need to call OpenPerformanceData for getting text (HWC 4/1994)
  686. // Status = OpenPerformanceData(ServerName, samDesired, phKey);
  687. // if (Status==ERROR_SUCCESS) {
  688. *phKey = HKEY_PERFORMANCE_TEXT;
  689. // }
  690. return(Status);
  691. }
  693. error_status_t
  694. OpenPerformanceNlsText(
  695. IN PREGISTRY_SERVER_NAME ServerName,
  696. IN REGSAM samDesired,
  697. OUT PRPC_HKEY phKey
  698. )
  700. /*++
  702. Routine Description:
  704. Attempts to open the the HKEY_PERFORMANCE_TEXT predefined handle.
  706. Arguments:
  708. ServerName - Not used.
  709. samDesired - Not used.
  710. phKey - Returns the predefined handle HKEY_PERFORMANCE_NLSTEXT.
  712. Return Value:
  714. Returns ERROR_SUCCESS (0) for success;
  715. or a DOS (not NT) error-code for failure.
  717. --*/
  719. {
  720. error_status_t Status = ERROR_SUCCESS;
  722. // No need to call OpenPerformanceData for getting text (HWC 4/1994)
  723. // Status = OpenPerformanceData(ServerName, samDesired, phKey);
  724. // if (Status==ERROR_SUCCESS) {
  725. *phKey = HKEY_PERFORMANCE_NLSTEXT;
  726. // }
  727. return(Status);
  728. }
  731. error_status_t
  732. OpenDynData(
  733. IN PREGISTRY_SERVER_NAME ServerName,
  734. IN REGSAM samDesired,
  735. OUT PRPC_HKEY phKey
  736. )
  737. /*++
  739. Routine Description:
  741. Attempts to open the the HKEY_DYN_DATA predefined handle.
  743. There is currently no HKEY_DYN_DATA on NT, thus this
  744. function always returns ERROR_CALL_NOT_IMPLEMENTED.
  746. Arguments:
  748. ServerName - Not used.
  749. samDesired - This access mask describes the desired security access
  750. for the key.
  751. phKey - Returns a handle to the key HKEY_DYN_DATA
  753. Return Value:
  755. Returns ERROR_SUCCESS (0) for success; error-code for failure.
  757. --*/
  759. {
  760. return((error_status_t)ERROR_CALL_NOT_IMPLEMENTED);
  761. }
  763. //
  764. // Default ("fake") handle returned to all check_machine_paths-like connections
  765. //
  766. NTSTATUS
  767. OpenMachineKey(PHANDLE phKey)
  768. {
  769. OBJECT_ATTRIBUTES Obja;
  770. NTSTATUS Status;
  772. InitializeObjectAttributes(
  773. &Obja,
  774. (PUNICODE_STRING)&MachineStringKey,
  775. OBJ_CASE_INSENSITIVE,
  776. NULL,
  777. NULL
  778. );
  780. Status = NtOpenKey(
  781. phKey,
  782. MAXIMUM_ALLOWED,
  783. &Obja
  784. );
  786. return Status;
  787. }
  789. NTSTATUS
  790. InitRestrictedMachineHandle()
  791. {
  792. return OpenMachineKey(&RestrictedMachineHandle);
  793. }
  795. VOID
  796. CleanupRestrictedMachineHandle()
  797. {
  798. if( RestrictedMachineHandle != NULL ) {
  799. NtClose(RestrictedMachineHandle);
  800. RestrictedMachineHandle = NULL;
  801. }
  802. }