archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/shell/shell32/securent.cpp

405 lines
11 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. #include "shellprv.h"
  2. #include "TokenUtil.h"
  3. #pragma hdrstop
  6. // Gets the current process's user token and returns
  7. // it. It can later be free'd with LocalFree.
  8. //
  9. // NOTE: This code is duped in shlwapi\shellacl.c. If you change it, modify
  10. // it there as well.
  12. STDAPI_(PTOKEN_USER) GetUserToken(HANDLE hUser)
  13. {
  14. DWORD dwSize = 64;
  15. HANDLE hToClose = NULL;
  17. if (hUser == NULL)
  18. {
  19. OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hUser);
  20. hToClose = hUser;
  21. }
  23. PTOKEN_USER pUser = (PTOKEN_USER)LocalAlloc(LPTR, dwSize);
  24. if (pUser)
  25. {
  26. DWORD dwNewSize;
  27. BOOL fOk = GetTokenInformation(hUser, TokenUser, pUser, dwSize, &dwNewSize);
  28. if (!fOk && (GetLastError() == ERROR_INSUFFICIENT_BUFFER))
  29. {
  30. LocalFree((HLOCAL)pUser);
  32. pUser = (PTOKEN_USER)LocalAlloc(LPTR, dwNewSize);
  33. if (pUser)
  34. {
  35. fOk = GetTokenInformation(hUser, TokenUser, pUser, dwNewSize, &dwNewSize);
  36. }
  37. }
  38. if (!fOk)
  39. {
  40. LocalFree((HLOCAL)pUser);
  41. pUser = NULL;
  42. }
  43. }
  45. if (hToClose)
  46. {
  47. CloseHandle(hToClose);
  48. }
  50. return pUser;
  51. }
  53. // Returns a localalloc'd string containing the text version of the current user's SID.
  55. STDAPI_(LPTSTR) GetUserSid(HANDLE hToken)
  56. {
  57. LPTSTR pString = NULL;
  58. PTOKEN_USER pUser = GetUserToken(hToken);
  59. if (pUser)
  60. {
  61. UNICODE_STRING UnicodeString;
  62. if (STATUS_SUCCESS == RtlConvertSidToUnicodeString(&UnicodeString, pUser->User.Sid, TRUE))
  63. {
  64. UINT nChars = (UnicodeString.Length / 2) + 1;
  65. pString = (LPTSTR)LocalAlloc(LPTR, nChars * sizeof(TCHAR));
  66. if (pString)
  67. {
  68. SHUnicodeToTChar(UnicodeString.Buffer, pString, nChars);
  69. }
  70. RtlFreeUnicodeString(&UnicodeString);
  71. }
  72. LocalFree((HLOCAL)pUser);
  73. }
  74. return pString;
  75. }
  78. /*++
  80. sets the security attributes for a given privilege.
  82. Arguments:
  84. PrivilegeName - Name of the privilege we are manipulating.
  86. NewPrivilegeAttribute - The new attribute value to use.
  88. OldPrivilegeAttribute - Pointer to receive the old privilege value. OPTIONAL
  90. Return value:
  92. NO_ERROR or WIN32 error.
  94. --*/
  96. DWORD SetPrivilegeAttribute(LPCTSTR PrivilegeName, DWORD NewPrivilegeAttribute, DWORD *OldPrivilegeAttribute)
  97. {
  98. LUID PrivilegeValue;
  99. TOKEN_PRIVILEGES TokenPrivileges, OldTokenPrivileges;
  100. DWORD ReturnLength;
  101. HANDLE TokenHandle;
  103. //
  104. // First, find out the LUID Value of the privilege
  105. //
  107. if (!LookupPrivilegeValue(NULL, PrivilegeName, &PrivilegeValue))
  108. {
  109. return GetLastError();
  110. }
  112. //
  113. // Get the token handle
  114. //
  115. if (!OpenProcessToken(GetCurrentProcess(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, &TokenHandle))
  116. {
  117. return GetLastError();
  118. }
  120. //
  121. // Set up the privilege set we will need
  122. //
  124. TokenPrivileges.PrivilegeCount = 1;
  125. TokenPrivileges.Privileges[0].Luid = PrivilegeValue;
  126. TokenPrivileges.Privileges[0].Attributes = NewPrivilegeAttribute;
  128. ReturnLength = sizeof( TOKEN_PRIVILEGES );
  129. if (!AdjustTokenPrivileges (
  130. TokenHandle,
  131. FALSE,
  132. &TokenPrivileges,
  133. sizeof( TOKEN_PRIVILEGES ),
  134. &OldTokenPrivileges,
  135. &ReturnLength
  136. ))
  137. {
  138. CloseHandle(TokenHandle);
  139. return GetLastError();
  140. }
  141. else
  142. {
  143. if (OldPrivilegeAttribute != NULL)
  144. {
  145. *OldPrivilegeAttribute = OldTokenPrivileges.Privileges[0].Attributes;
  146. }
  147. CloseHandle(TokenHandle);
  148. return NO_ERROR;
  149. }
  150. }
  152. //
  153. // Purpose: Determines if the user is a member of the administrators group.
  154. //
  155. // Parameters: void
  156. //
  157. // Return: TRUE if user is a admin
  158. // FALSE if not
  159. // Comments:
  160. //
  161. // History: Date Author Comment
  162. // 4/12/95 ericflo Created
  163. // 11/4/99 jeffreys Use CheckTokenMembership
  164. //
  166. STDAPI_(BOOL) IsUserAnAdmin()
  167. {
  168. return SHTestTokenMembership(NULL, DOMAIN_ALIAS_RID_ADMINS);
  169. }
  171. // is user a guest but not a full user?
  172. STDAPI_(BOOL) IsUserAGuest()
  173. {
  174. return SHTestTokenMembership(NULL, DOMAIN_ALIAS_RID_GUESTS);
  175. }
  177. STDAPI_(BOOL) GetUserProfileKey(HANDLE hToken, REGSAM samDesired, HKEY *phkey)
  178. {
  179. LPTSTR pUserSid = GetUserSid(hToken);
  180. if (pUserSid)
  181. {
  182. LONG err = RegOpenKeyEx(HKEY_USERS, pUserSid, 0, samDesired, phkey);
  184. LocalFree(pUserSid);
  185. return err == ERROR_SUCCESS;
  186. }
  187. return FALSE;
  188. }
  190. //
  191. // Arguments: phToken = Handle to token.
  192. //
  193. // Returns: BOOL
  194. //
  195. // Purpose: Opens the thread token. If no thread impersonation token is
  196. // present open the process token.
  197. //
  198. // History: 2000-02-28 vtan created
  201. STDAPI_(BOOL) SHOpenEffectiveToken(HANDLE *phToken)
  202. {
  203. return OpenEffectiveToken(TOKEN_QUERY | TOKEN_ADJUST_PRIVILEGES, phToken);
  204. }
  206. //
  207. // Arguments: hToken = Handle to token (may be NULL).
  208. // pszPrivilegeName = Name of privilege to check for.
  209. //
  210. // Returns: BOOL
  211. //
  212. // Purpose: Uses the given token or if no token is specified the effective
  213. // token and looks through the list of privileges contained in
  214. // token for a match against the given privilege being checked.
  215. //
  216. // History: 2000-02-28 vtan created
  219. STDAPI_(BOOL) SHTestTokenPrivilege(HANDLE hToken, LPCTSTR pszPrivilegeName)
  220. {
  221. // Validate privilege name.
  223. if (pszPrivilegeName == NULL)
  224. {
  225. return FALSE;
  226. }
  228. BOOL fResult = FALSE;
  229. HANDLE hTokenToFree = NULL;
  230. if (hToken == NULL)
  231. {
  232. if (SHOpenEffectiveToken(&hTokenToFree) != FALSE)
  233. {
  234. hToken = hTokenToFree;
  235. }
  236. }
  237. if (hToken != NULL)
  238. {
  239. LUID luidPrivilege;
  241. if (LookupPrivilegeValue(NULL, pszPrivilegeName, &luidPrivilege) != FALSE)
  242. {
  243. DWORD dwTokenPrivilegesSize = 0;
  244. GetTokenInformation(hToken, TokenPrivileges, NULL, 0, &dwTokenPrivilegesSize);
  245. TOKEN_PRIVILEGES *pTokenPrivileges = static_cast<TOKEN_PRIVILEGES*>(LocalAlloc(LMEM_FIXED, dwTokenPrivilegesSize));
  246. if (pTokenPrivileges != NULL)
  247. {
  248. DWORD dwReturnLength;
  250. if (GetTokenInformation(hToken, TokenPrivileges, pTokenPrivileges, dwTokenPrivilegesSize, &dwReturnLength) != FALSE)
  251. {
  252. DWORD dwIndex;
  254. for (dwIndex = 0; !fResult && (dwIndex < pTokenPrivileges->PrivilegeCount); ++dwIndex)
  255. {
  256. fResult = (RtlEqualLuid(&luidPrivilege, &pTokenPrivileges->Privileges[dwIndex].Luid));
  257. }
  258. }
  259. (HLOCAL)LocalFree(pTokenPrivileges);
  260. }
  261. }
  262. }
  263. if (hTokenToFree != NULL)
  264. {
  265. TBOOL(CloseHandle(hTokenToFree));
  266. }
  267. return fResult;
  268. }
  270. //
  271. // Arguments: hToken = Handle to token (may be NULL).
  272. // ulRID = RID of local group to test membership of.
  273. //
  274. // Returns: BOOL
  275. //
  276. // Purpose: Uses advapi32!CheckTokenMembership to test whether the given
  277. // token is a member of the local group with the specified RID.
  278. // This function wraps CheckTokenMember and only checks local
  279. // groups.
  280. //
  281. // History: 2000-03-22 vtan created
  284. STDAPI_(BOOL) SHTestTokenMembership(HANDLE hToken, ULONG ulRID)
  285. {
  286. static SID_IDENTIFIER_AUTHORITY sSystemSidAuthority = SECURITY_NT_AUTHORITY;
  288. PSID pSIDLocalGroup;
  289. BOOL fResult = FALSE;
  290. if (AllocateAndInitializeSid(&sSystemSidAuthority,
  291. 2,
  292. SECURITY_BUILTIN_DOMAIN_RID,
  293. ulRID,
  294. 0, 0, 0, 0, 0, 0,
  295. &pSIDLocalGroup) != FALSE)
  296. {
  297. if (CheckTokenMembership(hToken, pSIDLocalGroup, &fResult) == FALSE)
  298. {
  299. TraceMsg(TF_WARNING, "shell32: SHTestTokenMembership call to advapi32!CheckTokenMembership failed with error %d", GetLastError());
  300. fResult = FALSE;
  301. }
  302. FreeSid(pSIDLocalGroup);
  303. }
  304. return fResult;
  305. }
  307. //
  308. // Arguments: pszPrivilegeName = Name of privilege to be enabled.
  309. // pfnPrivilegedFunction = Pointer to function to invoke.
  310. // pv = Caller supplied data.
  311. //
  312. // Returns: HRESULT
  313. //
  314. // Purpose: Enables the given privilege in the current thread's
  315. // impersonation or primary process' token, invokes the given
  316. // function pointer with the caller supplied data and then
  317. // restores the privilege back to its previous state.
  318. //
  319. // History: 2000-03-13 vtan created
  322. STDAPI SHInvokePrivilegedFunction(LPCTSTR pszPrivilegeName, PFNPRIVILEGEDFUNCTION pfnPrivilegedFunction, void *pv)
  323. {
  324. if ((pszPrivilegeName == NULL) || (pfnPrivilegedFunction == NULL))
  325. {
  326. return E_INVALIDARG;
  327. }
  329. CPrivilegeEnable privilege(pszPrivilegeName);
  331. return pfnPrivilegedFunction(pv);
  332. }
  334. //
  335. // Arguments: <none>
  336. //
  337. // Returns: DWORD
  338. //
  339. // Purpose: Returns the ID of the active console session.
  340. //
  341. // History: 2000-03-13 vtan created
  344. STDAPI_(DWORD) SHGetActiveConsoleSessionId (void)
  346. {
  347. return static_cast<DWORD>(USER_SHARED_DATA->ActiveConsoleId);
  348. }
  350. //
  351. // Arguments: hToken = Handle to the user token.
  352. //
  353. // Returns: DWORD
  354. //
  355. // Purpose: Returns the session ID associated with the given token. If no
  356. // token is specified the effective token is used. This will
  357. // allow a service to call this function when impersonating a
  358. // client.
  359. //
  360. // The token must have TOKEN_QUERY access.
  361. //
  362. // History: 2000-03-13 vtan created
  365. STDAPI_(DWORD) SHGetUserSessionId(HANDLE hToken)
  366. {
  367. ULONG ulUserSessionID = 0; // default to session 0
  368. HANDLE hTokenToFree = NULL;
  369. if (hToken == NULL)
  370. {
  371. TBOOL(SHOpenEffectiveToken(&hTokenToFree));
  372. hToken = hTokenToFree;
  373. }
  374. if (hToken != NULL)
  375. {
  376. DWORD dwReturnLength;
  377. TBOOL(GetTokenInformation(hToken,
  378. TokenSessionId,
  379. &ulUserSessionID,
  380. sizeof(ulUserSessionID),
  381. &dwReturnLength));
  382. }
  383. if (hTokenToFree != NULL)
  384. {
  385. TBOOL(CloseHandle(hTokenToFree));
  386. }
  387. return ulUserSessionID;
  388. }
  391. //
  392. // Arguments: <none>
  393. //
  394. // Returns: BOOL
  395. //
  396. // Purpose: Returns whether the current process is the console session.
  397. //
  398. // History: 2000-03-27 vtan created
  401. STDAPI_(BOOL) SHIsCurrentProcessConsoleSession(void)
  403. {
  404. return USER_SHARED_DATA->ActiveConsoleId == NtCurrentPeb()->SessionId;
  405. }