archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/admin/snapin/certmgr/efsgeneralpropertypage.cpp

315 lines
11 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 2001-2002.
  5. //
  6. // File: EFSGeneralPropertyPage.cpp
  7. //
  8. // Contents: Implementation of CEFSGeneralPropertyPage
  9. //
  10. //----------------------------------------------------------------------------
  11. // EFSGeneralPropertyPage.cpp : implementation file
  12. //
  14. #include "stdafx.h"
  15. #include <gpedit.h>
  16. #include "EFSGeneralPropertyPage.h"
  17. #include "compdata.h"
  19. #ifdef _DEBUG
  20. #define new DEBUG_NEW
  21. #undef THIS_FILE
  22. static char THIS_FILE[] = __FILE__;
  23. #endif
  25. extern GUID g_guidExtension;
  26. extern GUID g_guidRegExt;
  27. extern GUID g_guidSnapin;
  29. /////////////////////////////////////////////////////////////////////////////
  30. // CEFSGeneralPropertyPage property page
  32. CEFSGeneralPropertyPage::CEFSGeneralPropertyPage(CCertMgrComponentData* pCompData, bool bIsMachine)
  33. : CHelpPropertyPage(CEFSGeneralPropertyPage::IDD),
  34. m_bIsMachine (bIsMachine),
  35. m_hGroupPolicyKey (0),
  36. m_pGPEInformation (pCompData ? pCompData->GetGPEInformation () : 0),
  37. m_pCompData (pCompData),
  38. m_bDirty (false)
  39. {
  40. //{{AFX_DATA_INIT(CEFSGeneralPropertyPage)
  41. // NOTE: the ClassWizard will add member initialization here
  42. //}}AFX_DATA_INIT
  43. if ( m_pCompData )
  44. m_pCompData->AddRef ();
  46. if ( m_pGPEInformation )
  47. {
  48. HRESULT hResult = m_pGPEInformation->GetRegistryKey (m_bIsMachine ?
  49. GPO_SECTION_MACHINE : GPO_SECTION_USER,
  50. &m_hGroupPolicyKey);
  51. ASSERT (SUCCEEDED (hResult));
  52. }
  53. }
  55. CEFSGeneralPropertyPage::~CEFSGeneralPropertyPage()
  56. {
  57. if ( m_pCompData )
  58. m_pCompData->Release ();
  59. }
  61. void CEFSGeneralPropertyPage::DoDataExchange(CDataExchange* pDX)
  62. {
  63. CHelpPropertyPage::DoDataExchange(pDX);
  64. //{{AFX_DATA_MAP(CEFSGeneralPropertyPage)
  65. // NOTE: the ClassWizard will add DDX and DDV calls here
  66. //}}AFX_DATA_MAP
  67. }
  70. BEGIN_MESSAGE_MAP(CEFSGeneralPropertyPage, CHelpPropertyPage)
  71. //{{AFX_MSG_MAP(CEFSGeneralPropertyPage)
  72. ON_BN_CLICKED(IDC_TURN_ON_EFS, OnTurnOnEfs)
  73. //}}AFX_MSG_MAP
  74. END_MESSAGE_MAP()
  76. /////////////////////////////////////////////////////////////////////////////
  77. // CEFSGeneralPropertyPage message handlers
  79. BOOL CEFSGeneralPropertyPage::OnInitDialog()
  80. {
  81. CHelpPropertyPage::OnInitDialog();
  83. // The regkey to disable EFS is:
  84. // HKLM\Software\Policies\Microsoft\Windows NT\CurrentVersion\EFS\EfsConfiguration DWORD 0x00000001 =>Disable EFS
  86. // If this is the RSOP, make it read-only
  87. if ( !m_pGPEInformation )
  88. {
  89. // Make the page read-only
  90. GetDlgItem (IDC_TURN_ON_EFS)->EnableWindow (FALSE);
  92. RSOPGetEFSFlags ();
  93. }
  94. else
  95. {
  96. GPEGetEFSFlags ();
  97. }
  99. return TRUE; // return TRUE unless you set the focus to a control
  100. // EXCEPTION: OCX Property Pages should return FALSE
  101. }
  103. void CEFSGeneralPropertyPage::GPEGetEFSFlags()
  104. {
  106. HKEY hKey = 0;
  107. LONG lResult = ::RegOpenKeyEx (m_hGroupPolicyKey, // handle to open key
  108. EFS_SETTINGS_REGPATH, // subkey name
  109. 0, // reserved
  110. KEY_READ, // security access mask
  111. &hKey); // handle to open key
  112. if ( ERROR_SUCCESS == lResult )
  113. {
  114. // Read value
  115. DWORD dwType = REG_DWORD;
  116. DWORD dwData = 0;
  117. DWORD cbData = sizeof (dwData);
  119. // security review 2/22/2002 BryanWal ok
  120. lResult = ::RegQueryValueEx (hKey, // handle of key to query
  121. EFS_SETTINGS_REGVALUE, // address of name of value to query
  122. 0, // reserved
  123. &dwType, // address of buffer for value type
  124. (LPBYTE) &dwData, // address of data buffer
  125. &cbData); // address of data buffer size);
  126. ASSERT ((ERROR_SUCCESS == lResult && REG_DWORD == dwType) || ERROR_FILE_NOT_FOUND == lResult);
  127. if ( (ERROR_SUCCESS == lResult && REG_DWORD == dwType) || ERROR_FILE_NOT_FOUND == lResult )
  128. {
  129. if ( 0 == dwData ) // 0 means enable EFS
  130. SendDlgItemMessage (IDC_TURN_ON_EFS, BM_SETCHECK, BST_CHECKED);
  131. }
  132. else
  133. DisplaySystemError (NULL, lResult);
  135. ::RegCloseKey (hKey);
  136. }
  137. else // no key means EFS enabled
  138. SendDlgItemMessage (IDC_TURN_ON_EFS, BM_SETCHECK, BST_CHECKED);
  139. }
  141. void CEFSGeneralPropertyPage::DoContextHelp (HWND hWndControl)
  142. {
  143. _TRACE (1, L"Entering CEFSGeneralPropertyPage::DoContextHelp\n");
  144. static const DWORD help_map[] =
  145. {
  146. IDC_TURN_ON_EFS, IDH_TURN_ON_EFS,
  147. 0, 0
  148. };
  150. switch (::GetDlgCtrlID (hWndControl))
  151. {
  152. case IDC_TURN_ON_EFS:
  153. if ( !::WinHelp (
  154. hWndControl,
  155. GetF1HelpFilename(),
  156. HELP_WM_HELP,
  157. (DWORD_PTR) help_map) )
  158. {
  159. _TRACE (0, L"WinHelp () failed: 0x%x\n", GetLastError ());
  160. }
  161. break;
  163. default:
  164. break;
  165. }
  166. _TRACE (-1, L"Leaving CEFSGeneralPropertyPage::DoContextHelp\n");
  167. }
  169. void CEFSGeneralPropertyPage::RSOPGetEFSFlags()
  170. {
  171. if ( m_pCompData )
  172. {
  173. const CRSOPObjectArray* pObjectArray =
  174. m_bIsMachine ? m_pCompData->GetRSOPObjectArrayComputer () :
  175. m_pCompData->GetRSOPObjectArrayUser ();
  176. int nIndex = 0;
  177. bool bFound = false;
  178. // NOTE: rsop object array is sorted first by registry key, then by precedence
  179. INT_PTR nUpperBound = pObjectArray->GetUpperBound ();
  181. while ( nUpperBound >= nIndex )
  182. {
  183. CRSOPObject* pObject = pObjectArray->GetAt (nIndex);
  184. if ( pObject )
  185. {
  186. // Consider only entries from this store
  187. // security review 2/22/2002 BryanWal ok
  188. if ( !_wcsicmp (EFS_SETTINGS_REGPATH, pObject->GetRegistryKey ()) &&
  189. !_wcsicmp (EFS_SETTINGS_REGVALUE, pObject->GetValueName ()) )
  190. {
  191. ASSERT (1 == pObject->GetPrecedence ());
  192. if ( 0 == pObject->GetDWORDValue () ) // 0 means enable EFS
  193. SendDlgItemMessage (IDC_TURN_ON_EFS, BM_SETCHECK, BST_CHECKED);
  194. bFound = true;
  195. break;
  196. }
  197. }
  198. else
  199. break;
  201. nIndex++;
  202. }
  204. if ( !bFound ) // not found means EFS enabled
  205. SendDlgItemMessage (IDC_TURN_ON_EFS, BM_SETCHECK, BST_CHECKED);
  206. }
  207. }
  209. BOOL CEFSGeneralPropertyPage::OnApply()
  210. {
  211. if ( m_bDirty && m_pGPEInformation )
  212. {
  213. // Unchecked means disable EFS - set flag to 1
  214. if ( BST_UNCHECKED == SendDlgItemMessage (IDC_TURN_ON_EFS, BM_GETCHECK) )
  215. {
  216. // Create Key
  217. HKEY hKey = 0;
  218. DWORD dwDisposition = 0;
  219. LONG lResult = ::RegCreateKeyEx (m_hGroupPolicyKey, // handle of an open key
  220. EFS_SETTINGS_REGPATH, // address of subkey name
  221. 0, // reserved
  222. L"", // address of class string
  223. REG_OPTION_NON_VOLATILE, // special options flag
  224. // security review 2/22/2002 BryanWal ok
  225. KEY_SET_VALUE, // desired security access
  226. NULL, // address of key security structure
  227. &hKey, // address of buffer for opened handle
  228. &dwDisposition); // address of disposition value buffer
  229. ASSERT (lResult == ERROR_SUCCESS);
  230. if ( lResult == ERROR_SUCCESS )
  231. {
  232. DWORD dwData = 0x01; // 0 means disable EFS
  233. DWORD cbData = sizeof (dwData);
  234. lResult = ::RegSetValueEx (hKey,
  235. EFS_SETTINGS_REGVALUE, // address of value to set
  236. 0, // reserved
  237. REG_DWORD, // flag for value type
  238. (CONST BYTE *) &dwData, // address of value data
  239. cbData); // size of value data);
  240. ASSERT (ERROR_SUCCESS == lResult);
  241. if ( ERROR_SUCCESS == lResult )
  242. {
  243. // TRUE means we're changing the machine policy only
  244. m_pGPEInformation->PolicyChanged (m_bIsMachine ? TRUE : FALSE,
  245. TRUE, &g_guidExtension, &g_guidSnapin);
  246. m_pGPEInformation->PolicyChanged (m_bIsMachine ? TRUE : FALSE,
  247. TRUE, &g_guidRegExt, &g_guidSnapin);
  248. }
  249. else
  250. DisplaySystemError (m_hWnd, lResult);
  252. ::RegCloseKey (hKey);
  253. }
  254. }
  255. else
  256. {
  257. // Delete Key
  258. HKEY hKey = 0;
  259. LONG lResult = ::RegOpenKeyEx (m_hGroupPolicyKey, // handle to open key
  260. EFS_SETTINGS_REGPATH, // subkey name
  261. 0, // reserved
  262. // security review 2/22/2002 BryanWal ok KEY_ALL_ACCESS required to delete
  263. KEY_ALL_ACCESS, // security access mask
  264. &hKey); // handle to open key
  265. if ( ERROR_SUCCESS == lResult )
  266. {
  267. lResult = ::RegDeleteValue (hKey, // handle of key to query
  268. EFS_SETTINGS_REGVALUE);
  269. ASSERT (ERROR_SUCCESS == lResult);
  270. if ( ERROR_SUCCESS == lResult )
  271. {
  272. // TRUE means we're changing the machine policy only
  273. m_pGPEInformation->PolicyChanged (m_bIsMachine ? TRUE : FALSE,
  274. TRUE, &g_guidExtension, &g_guidSnapin);
  275. m_pGPEInformation->PolicyChanged (m_bIsMachine ? TRUE : FALSE,
  276. TRUE, &g_guidRegExt, &g_guidSnapin);
  277. }
  278. else if ( ERROR_FILE_NOT_FOUND != lResult )
  279. {
  280. CString text;
  281. CString caption;
  283. // security review 2/22/2002 BryanWal ok
  284. text.FormatMessage (IDS_CANNOT_SET_EFS_VALUE, lResult);
  285. VERIFY (caption.LoadString (IDS_PUBLIC_KEY_POLICIES_NODE_NAME));
  287. MessageBox (text, caption, MB_OK | MB_ICONWARNING);
  288. return FALSE;
  289. }
  291. ::RegCloseKey (hKey);
  292. }
  293. else if ( ERROR_FILE_NOT_FOUND != lResult ) // expected error
  294. {
  295. CString text;
  296. CString caption;
  298. // security review 2/22/2002 BryanWal ok
  299. text.FormatMessage (IDS_CANNOT_SET_EFS_VALUE, lResult);
  300. VERIFY (caption.LoadString (IDS_PUBLIC_KEY_POLICIES_NODE_NAME));
  302. MessageBox (text, caption, MB_OK | MB_ICONWARNING);
  303. return FALSE;
  304. }
  305. }
  306. }
  308. return CHelpPropertyPage::OnApply();
  309. }
  311. void CEFSGeneralPropertyPage::OnTurnOnEfs()
  312. {
  313. SetModified ();
  314. m_bDirty = true;
  315. }