archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/admin/cmdline/xcacls/dumpsec.cxx

217 lines
6.5 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+------------------------------------------------------------------
  2. //
  3. // Copyright (C) 1993, Microsoft Corporation.
  4. //
  5. // File: DumpSec.cxx
  6. //
  7. // Contents: class to dump file security ACL
  8. //
  9. // Classes: CDumpSecurity
  10. //
  11. // History: Nov-93 DaveMont Created.
  12. //
  13. //-------------------------------------------------------------------
  14. #include "pch.h"
  15. #include "DumpSec.hxx"
  17. //+---------------------------------------------------------------------------
  18. //
  19. // Member: CDumpSecurity::CDumpSecurity, public
  20. //
  21. // Synopsis: initialized data members, constructor will not throw
  22. //
  23. // Arguments: IN [pfilename] - name of file to dump security for
  24. //
  25. //----------------------------------------------------------------------------
  26. CDumpSecurity::CDumpSecurity(LPWSTR pfilename)
  27. : _psd(NULL),
  28. _pwfilename(pfilename),
  29. _pdacl(NULL),
  30. _pah(NULL),
  31. _psid(NULL),
  32. _cacethissid(0),
  33. _bNullDacl(FALSE)
  34. {
  35. }
  36. //+---------------------------------------------------------------------------
  37. //
  38. // Member: CDumpSecurity::Init, public
  39. //
  40. // Synopsis: Init must be called before any other methods - this
  41. // is not enforced. Init gets the security descriptor and
  42. // ACL for the file
  43. //
  44. // Arguments: none
  45. //
  46. //----------------------------------------------------------------------------
  47. ULONG CDumpSecurity::Init()
  48. {
  49. ULONG ret;
  50. ULONG cpsd;
  52. // get the size of the security buffer
  54. if (!GetFileSecurity((LPCTSTR)_pwfilename,
  55. DACL_SECURITY_INFORMATION |
  56. GROUP_SECURITY_INFORMATION |
  57. OWNER_SECURITY_INFORMATION,
  58. NULL,
  59. 0,
  60. &cpsd) )
  61. {
  62. if (ERROR_INSUFFICIENT_BUFFER == (ret = GetLastError()))
  63. {
  64. if ( NULL == ( _psd = (BYTE *)LocalAlloc(LMEM_FIXED, cpsd)))
  65. {
  66. return(ERROR_NOT_ENOUGH_MEMORY);
  67. }
  69. // actually get the buffer this time
  71. if ( GetFileSecurity((LPCTSTR)_pwfilename,
  72. DACL_SECURITY_INFORMATION |
  73. GROUP_SECURITY_INFORMATION |
  74. OWNER_SECURITY_INFORMATION,
  75. _psd,
  76. cpsd,
  77. &cpsd) )
  78. {
  79. BOOL fdaclpresent;
  80. BOOL cod;
  82. // get the ACL
  84. if ( GetSecurityDescriptorDacl(_psd,
  85. &fdaclpresent,
  86. &_pdacl,
  87. &cod) )
  89. {
  90. if (!fdaclpresent)
  91. {
  92. _pdacl = NULL;
  93. return(ERROR_NO_SECURITY_ON_OBJECT);
  94. }
  95. // save the ACL location
  96. if(_pdacl)
  97. {
  98. _pah = (ACE_HEADER *)Add2Ptr(_pdacl, sizeof(ACL));
  99. }
  100. else
  101. {
  102. _bNullDacl = TRUE;
  103. }
  104. return(ERROR_SUCCESS);
  106. } else
  107. return(GetLastError());
  108. } else
  109. return(GetLastError());
  110. }
  111. } else
  112. return(ERROR_NO_SECURITY_ON_OBJECT);
  114. return(ret);
  115. }
  116. //+---------------------------------------------------------------------------
  117. //
  118. // Member: Dtor, public
  119. //
  120. // Synopsis: frees the security descriptor
  121. //
  122. // Arguments: none
  123. //
  124. //----------------------------------------------------------------------------
  125. CDumpSecurity::~CDumpSecurity()
  126. {
  127. if (_psd)
  128. {
  129. LocalFree(_psd);
  130. }
  131. }
  132. //+---------------------------------------------------------------------------
  133. //
  134. // Member: CDumpSecurity::GetSDOwner, public
  135. //
  136. // Synopsis: returns the owner of the file
  137. //
  138. // Arguments: OUT [psid] - address of the returned sid
  139. //
  140. //----------------------------------------------------------------------------
  141. ULONG CDumpSecurity::GetSDOwner(SID **psid)
  142. {
  143. BOOL cod;
  144. if ( GetSecurityDescriptorOwner(_psd, (void **)psid, &cod) )
  145. return(0);
  146. else
  147. return(GetLastError());
  148. }
  150. //+---------------------------------------------------------------------------
  151. //
  152. // Member: CDumpSecurity::GetSDGroup, public
  153. //
  154. // Synopsis: returns the group from the file
  155. //
  156. // Arguments: OUT [pgsid] - address of the returned group sid
  157. //
  158. //----------------------------------------------------------------------------
  159. ULONG CDumpSecurity::GetSDGroup(SID **pgsid)
  160. {
  161. BOOL cod;
  162. if ( GetSecurityDescriptorGroup(_psd, (void **)pgsid, &cod) )
  163. return(0);
  164. else
  165. return(GetLastError());
  166. }
  168. //+---------------------------------------------------------------------------
  169. //
  170. // Member: CDumpSecurity::ResetAce, public
  171. //
  172. // Synopsis: sets the 'ace' index to the start of the DACL
  173. //
  174. // Arguments: IN - [psid] - the SID to find aces for
  175. //
  176. //----------------------------------------------------------------------------
  177. VOID CDumpSecurity::ResetAce(SID *psid)
  178. {
  180. _psid = psid;
  181. _cacethissid = 0;
  182. if (_pdacl)
  183. _pah = (ACE_HEADER *)Add2Ptr(_pdacl, sizeof(ACL));
  184. }
  185. //+---------------------------------------------------------------------------
  186. //
  187. // Member: CDumpSecurity::GetNextAce, public
  188. //
  189. // Synopsis: gets the next ACE from the DACL for the specified SID
  190. //
  191. // Arguments: OUT [pace] - pointer to the next ace for the SID passed
  192. // in at the last reset.
  193. //
  194. // Returns: the number of the ACE
  195. //
  196. //----------------------------------------------------------------------------
  197. LONG CDumpSecurity::GetNextAce(ACE_HEADER **paceh)
  198. {
  199. LONG ret = -1;
  201. if (_pdacl)
  202. {
  203. for (;_cacethissid < _pdacl->AceCount;
  204. _cacethissid++, _pah = (ACE_HEADER *)Add2Ptr(_pah, _pah->AceSize))
  205. {
  206. if (!_psid || EqualSid(_psid,(SID *)&((ACCESS_ALLOWED_ACE *)_pah)->SidStart) )
  207. {
  208. *paceh = _pah;
  209. ret = _cacethissid++;
  210. _pah = (ACE_HEADER *)Add2Ptr(_pah, _pah->AceSize);
  211. break;
  212. }
  213. }
  214. }
  215. return(ret);
  216. }