archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/inetsrv/iis/svcs/cmp/webdav/inc/safeobj.h

285 lines
7.1 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*
  2. * S A F E O B J . H
  3. *
  4. * Implementation of safe object classes
  5. *
  6. * Copyright 1986-1997 Microsoft Corporation, All Rights Reserved
  7. */
  9. #ifndef _SAFEOBJ_H_
  10. #define _SAFEOBJ_H_
  12. #include <except.h>
  14. // safe_xxx classes ----------------------------------------------------------
  15. //
  16. class safe_bstr
  17. {
  18. BSTR bstr;
  20. // NOT IMPLEMENTED
  21. //
  22. safe_bstr(const safe_bstr& b);
  23. safe_bstr& operator=(const safe_bstr& b);
  25. public:
  27. // CONSTRUCTORS
  28. //
  29. explicit safe_bstr(BSTR b=0) : bstr(b) {}
  30. ~safe_bstr()
  31. {
  32. SysFreeString (bstr);
  33. }
  35. // MANIPULATORS
  36. //
  37. safe_bstr& operator=(BSTR b)
  38. {
  39. Assert(!bstr); // Scream on overwrite of good data.
  40. bstr = b;
  41. return *this;
  42. }
  44. // ACCESSORS
  45. //
  46. BSTR* operator&() { Assert(NULL==bstr); return &bstr; }
  47. BSTR get() const { return bstr; }
  48. BSTR relinquish() { BSTR b = bstr; bstr = 0; return b; }
  49. BSTR* load() { Assert(NULL==bstr); return &bstr; }
  50. };
  52. class safe_propvariant
  53. {
  54. PROPVARIANT var;
  56. // NOT IMPLEMENTED
  57. //
  58. safe_propvariant(const safe_propvariant& b);
  59. safe_propvariant& operator=(const safe_propvariant& b);
  61. public:
  63. // CONSTRUCTORS
  64. //
  65. explicit safe_propvariant()
  66. {
  67. // Note! we cannot simply set vt to VT_EMPTY, as when this
  68. // structure go across process, it will cause marshalling
  69. // problem if not property initialized.
  70. //
  71. ZeroMemory (&var, sizeof(PROPVARIANT) );
  72. }
  74. ~safe_propvariant()
  75. {
  76. PropVariantClear (&var);
  77. }
  79. // MANIPULATORS
  80. //
  81. safe_propvariant& operator=(PROPVARIANT v)
  82. {
  83. Assert(var.vt == VT_EMPTY); // Scream on overwrite of good data.
  84. var = v;
  85. return *this;
  86. }
  88. // ACCESSORS
  89. //
  90. PROPVARIANT* operator&() { Assert(var.vt == VT_EMPTY); return &var; }
  91. // get() accessor
  92. // NOTE that I am returning a const reference here. The reference is to
  93. // avoid creating a copy of our member var on return. The const is
  94. // because this method is a const accessor method.
  95. const PROPVARIANT& get() const { return var; }
  96. // relinquish() accessor
  97. // NOTE that I am NOT returning a reference here. The return for this
  98. // method comes off the STACK (PROPVARIANT v), so a reference would point
  99. // to that stack space, and our caller would be accessing OLD STACK frames.
  100. PROPVARIANT relinquish() { PROPVARIANT v = var; var.vt = VT_EMPTY; return v; }
  101. PROPVARIANT* addressof() { return &var; }
  102. };
  104. class safe_variant
  105. {
  106. // IMPORTANT: Do not add any other members to this class
  107. // other than the VARIANT that is to be protected. You will
  108. // break code all over the place if you do. There are places
  109. // where an array of these things are treated as an array of
  110. // VARIANT structures.
  111. //
  112. VARIANT var;
  114. // NOT IMPLEMENTED
  115. //
  116. safe_variant(const safe_variant& b);
  117. safe_variant& operator=(const safe_variant& b);
  119. public:
  121. // CONSTRUCTORS
  122. //
  123. explicit safe_variant()
  124. {
  125. // Note! we cannot simply set vt to VT_EMPTY, as when this
  126. // structure go across process, it will cause marshalling
  127. // problem if not property initialized.
  128. //
  129. ZeroMemory (&var, sizeof(VARIANT) );
  130. }
  131. ~safe_variant()
  132. {
  133. VariantClear (&var);
  134. }
  136. // MANIPULATORS
  137. //
  138. safe_variant& operator=(VARIANT v)
  139. {
  140. Assert(var.vt == VT_EMPTY); // Scream on overwrite of good data.
  141. var = v;
  142. return *this;
  143. }
  145. // ACCESSORS
  146. //
  147. VARIANT* operator&() { Assert(var.vt == VT_EMPTY); return &var; }
  148. // get() accessor
  149. // NOTE that I am returning a const reference here. The reference is to
  150. // avoid creating a copy of our member var on return. The const is
  151. // because this method is a const accessor method.
  152. const VARIANT& get() const { return var; }
  153. // relinquish() accessor
  154. // NOTE that I am NOT returning a reference here. The return for this
  155. // method comes off the STACK (PROPVARIANT v), so a reference would point
  156. // to that stack space, and our caller would be accessing OLD STACK frames.
  157. VARIANT relinquish() { VARIANT v = var; var.vt = VT_EMPTY; return v; }
  158. };
  160. // Safe impersonation --------------------------------------------------------
  161. //
  162. class safe_impersonation
  163. {
  164. BOOL m_fImpersonated;
  166. // NOT IMPLEMENTED
  167. //
  168. safe_impersonation(const safe_impersonation& b);
  169. safe_impersonation& operator=(const safe_impersonation& b);
  171. public:
  173. // CONSTRUCTORS
  174. //
  175. explicit safe_impersonation(HANDLE h = 0) : m_fImpersonated(0)
  176. {
  177. if (h != 0)
  178. m_fImpersonated = ImpersonateLoggedOnUser (h);
  179. }
  181. ~safe_impersonation()
  182. {
  183. if (m_fImpersonated)
  184. RevertToSelf();
  185. }
  187. BOOL FImpersonated() const { return m_fImpersonated; }
  188. };
  190. // ------------------------------------------------------------------------
  191. //
  192. // class safe_revert
  193. //
  194. // Turns impersonation OFF for the duration of the object's lifespan.
  195. // Unconditionally reimpersonates on exit, based on the provided handle.
  196. //
  197. // NOTE: UNCONDITIONALLY reimpersonates on exit.
  198. // (Just wanted to make that clear.)
  199. //
  200. // WARNING: the safe_revert class should only be used in very selective
  201. // situations. It is not a "quick way to get around" impersonation. If
  202. // you do need to do something like this, please see Becky -- she will then
  203. // wack you up'side the head.
  204. //
  205. class safe_revert
  206. {
  207. HANDLE m_h;
  209. safe_revert( const safe_revert& );
  210. safe_revert& operator=( const safe_revert& );
  212. public:
  214. explicit safe_revert( HANDLE h ) : m_h(h)
  215. {
  216. RevertToSelf();
  217. }
  219. ~safe_revert()
  220. {
  221. if (!ImpersonateLoggedOnUser( m_h ))
  222. {
  223. // There's not much we can do in this dtor. throw
  224. //
  225. throw CLastErrorException();
  226. }
  227. }
  228. };
  230. // -------------------------------------------------------------------------
  231. //
  232. // class safe_revert_self
  233. //
  234. // This is class is essentially the same as safe_revert except it uses
  235. // the thread handle instead of an external handle
  236. //
  237. class safe_revert_self
  238. {
  239. // Handle to hold on to the thread token
  240. // that we will want to use when we go back
  241. // to impersonating.
  242. //
  243. HANDLE m_hThreadHandle;
  245. public:
  247. // constructor will revert to self if there is
  248. // a valid thread token it can get for the current thread
  249. //
  250. safe_revert_self() :
  251. m_hThreadHandle (INVALID_HANDLE_VALUE)
  252. {
  253. if (OpenThreadToken( GetCurrentThread(),
  254. TOKEN_QUERY | TOKEN_IMPERSONATE | TOKEN_DUPLICATE,
  255. TRUE, // fOpenAsSelf
  256. &m_hThreadHandle ))
  257. {
  258. if (!RevertToSelf())
  259. DebugTrace ("Failed to revert to self \r\n");
  260. }
  261. else
  262. DebugTrace ("Failed to open thread token, last error = %d\n",
  263. GetLastError());
  264. }
  266. // destructor will impersonate again if we did a RevertToSelf above.
  267. //
  268. ~safe_revert_self()
  269. {
  270. if (m_hThreadHandle != INVALID_HANDLE_VALUE)
  271. {
  272. if (!ImpersonateLoggedOnUser(m_hThreadHandle))
  273. {
  274. DebugTrace("Failed to get back to correct user \r\n");
  276. // There's not much we can do in this dtor. throw
  277. //
  278. CloseHandle (m_hThreadHandle);
  279. throw CLastErrorException();
  280. }
  281. }
  282. }
  283. };
  285. #endif // _SAFEOBJ_H_