archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/gina/gpext/appmgmt/server/util.cxx

314 lines
7.2 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //*************************************************************
  2. //
  3. // Copyright (c) Microsoft Corporation 1998
  4. // All rights reserved
  5. //
  6. // util.cxx
  7. //
  8. //*************************************************************
  10. #include "appmgext.hxx"
  12. SRSETRESTOREPOINTW * gpfnSRSetRetorePointW = 0;
  14. BOOL
  15. IsMemberOfAdminGroup(
  16. HANDLE hUserToken
  17. )
  18. {
  19. SID_IDENTIFIER_AUTHORITY AuthorityNT = SECURITY_NT_AUTHORITY;
  20. PSID pSidAdmin;
  21. BOOL bStatus;
  22. BOOL bIsAdmin;
  24. bIsAdmin = FALSE;
  25. pSidAdmin = 0;
  27. bStatus = AllocateAndInitializeSid( &AuthorityNT, 2, SECURITY_BUILTIN_DOMAIN_RID, DOMAIN_ALIAS_RID_ADMINS, 0, 0, 0, 0, 0, 0, &pSidAdmin );
  29. if ( bStatus )
  30. bStatus = CheckTokenMembership( hUserToken, pSidAdmin, &bIsAdmin );
  32. FreeSid( pSidAdmin );
  34. return bIsAdmin;
  35. }
  37. DWORD
  38. GetPreviousSid(
  39. HANDLE hUserToken,
  40. WCHAR * pwszCurrentScriptPath,
  41. WCHAR ** ppwszPreviousSid
  42. )
  43. {
  44. HANDLE hFind;
  45. WIN32_FIND_DATA FindData;
  46. PSID pSid;
  47. WCHAR * pwszSlash1;
  48. WCHAR * pwszSlash2;
  49. WCHAR * pwszSearchPath;
  50. DWORD Length;
  51. DWORD Status;
  52. BOOL bMember;
  53. BOOL bStatus;
  55. *ppwszPreviousSid = 0;
  57. //
  58. // Script dir paths created by GetScriptDirPath have '\' at the end.
  59. //
  60. pwszSlash1 = wcsrchr( pwszCurrentScriptPath, L'\\' );
  61. *pwszSlash1 = 0;
  62. pwszSlash2 = wcsrchr( pwszCurrentScriptPath, L'\\' );
  63. *pwszSlash2 = 0;
  65. Length = lstrlen(pwszCurrentScriptPath);
  66. pwszSearchPath = new WCHAR[Length + 3];
  68. if ( pwszSearchPath )
  69. {
  70. memcpy( pwszSearchPath, pwszCurrentScriptPath, Length * sizeof(WCHAR) );
  71. pwszSearchPath[Length] = L'\\';
  72. pwszSearchPath[Length+1] = L'*';
  73. pwszSearchPath[Length+2] = 0;
  74. }
  76. *pwszSlash1 = *pwszSlash2 = L'\\';
  78. if ( ! pwszSearchPath )
  79. return ERROR_OUTOFMEMORY;
  81. //
  82. // We've constructed a search path of %systemroot%\system32\appmgmt\*.
  83. //
  84. hFind = FindFirstFile( pwszSearchPath, &FindData );
  86. delete [] pwszSearchPath;
  88. if ( INVALID_HANDLE_VALUE == hFind )
  89. return ERROR_SUCCESS;
  91. Status = ERROR_SUCCESS;
  93. do
  94. {
  95. if ( ! (FindData.dwFileAttributes & FILE_ATTRIBUTE_DIRECTORY) )
  96. continue;
  98. if ( (0 == lstrcmp( FindData.cFileName, L"." )) ||
  99. (0 == lstrcmp( FindData.cFileName, L".." )) ||
  100. (CompareString(LOCALE_INVARIANT, NORM_IGNORECASE, FindData.cFileName, -1, L"MACHINE", -1) == CSTR_EQUAL))
  102. continue;
  104. bMember = FALSE;
  105. pSid = 0;
  106. bStatus = ConvertStringSidToSid( FindData.cFileName, &pSid );
  108. if ( bStatus )
  109. {
  110. bStatus = CheckTokenMembership( hUserToken, pSid, &bMember );
  112. if ( bStatus && bMember )
  113. bStatus = ConvertSidToStringSid( pSid, ppwszPreviousSid );
  115. LocalFree( pSid );
  116. }
  118. if ( ! bStatus )
  119. {
  120. Status = GetLastError();
  121. break;
  122. }
  124. if ( bMember )
  125. break;
  126. } while ( FindNextFile( hFind, &FindData ) );
  128. FindClose( hFind );
  130. return Status;
  131. }
  133. DWORD
  134. RenameScriptDir(
  135. WCHAR * pwszPreviousSid,
  136. WCHAR * pwszCurrentScriptPath
  137. )
  138. {
  139. WCHAR * pwszSlash1;
  140. WCHAR * pwszSlash2;
  141. WCHAR * pwszOldScriptPath;
  142. DWORD Length;
  143. BOOL bStatus;
  145. //
  146. // Script dir paths created by GetScriptDirPath have '\' at the end.
  147. //
  148. pwszSlash1 = wcsrchr( pwszCurrentScriptPath, L'\\' );
  149. *pwszSlash1 = 0;
  150. pwszSlash2 = wcsrchr( pwszCurrentScriptPath, L'\\' );
  151. *pwszSlash2 = 0;
  153. Length = lstrlen( pwszCurrentScriptPath );
  155. pwszOldScriptPath = new WCHAR[Length + 1 + lstrlen(pwszPreviousSid) + 1];
  157. if ( pwszOldScriptPath )
  158. {
  159. HRESULT hr;
  161. memcpy( pwszOldScriptPath, pwszCurrentScriptPath, Length * sizeof(WCHAR) );
  162. pwszOldScriptPath[Length] = L'\\';
  163. hr = StringCchCopy( &pwszOldScriptPath[Length+1], lstrlen(pwszPreviousSid) + 1, pwszPreviousSid );
  164. if (FAILED(hr))
  165. {
  166. delete [] pwszOldScriptPath;
  167. return hr;
  168. }
  169. }
  171. *pwszSlash1 = *pwszSlash2 = L'\\';
  173. if ( ! pwszOldScriptPath )
  174. return ERROR_OUTOFMEMORY;
  176. bStatus = MoveFileEx( pwszOldScriptPath, pwszCurrentScriptPath, 0 );
  178. delete [] pwszOldScriptPath;
  180. if ( ! bStatus )
  181. return GetLastError();
  183. return ERROR_SUCCESS;
  184. }
  186. DWORD
  187. GetCurrentUserGPOList(
  188. OUT PGROUP_POLICY_OBJECT* ppGpoList // Free this with the FreeGPOList API
  189. )
  190. {
  191. GUID AppmgmtExtension = {0xc6dc5466, 0x785a, 0x11d2,
  192. 0x84, 0xd0,
  193. 0x00, 0xc0, 0x4f, 0xb1, 0x69, 0xf7};
  195. return GetAppliedGPOList(
  196. 0,
  197. NULL,
  198. NULL,
  199. &AppmgmtExtension,
  200. ppGpoList);
  201. }
  204. DWORD GetWin32ErrFromHResult( HRESULT hr )
  205. {
  206. DWORD Status = ERROR_SUCCESS;
  208. if (S_OK != hr)
  209. {
  210. if (FACILITY_WIN32 == HRESULT_FACILITY(hr))
  211. {
  212. Status = HRESULT_CODE(hr);
  213. }
  214. else
  215. {
  216. Status = GetLastError();
  217. if (ERROR_SUCCESS == Status)
  218. {
  219. //an error had occurred but nobody called SetLastError
  220. //should not be mistaken as a success.
  221. Status = (DWORD) hr;
  222. }
  223. }
  224. }
  226. return Status;
  227. }
  229. void ClearManagedApp( MANAGED_APP* pManagedApp )
  230. {
  231. if (pManagedApp->pszPackageName)
  232. {
  233. midl_user_free(pManagedApp->pszPackageName);
  234. }
  236. if (pManagedApp->pszSupportUrl)
  237. {
  238. midl_user_free(pManagedApp->pszSupportUrl);
  239. }
  241. if (pManagedApp->pszPolicyName)
  242. {
  243. midl_user_free(pManagedApp->pszPolicyName);
  244. }
  246. if (pManagedApp->pszPublisher)
  247. {
  248. midl_user_free(pManagedApp->pszPublisher);
  249. }
  251. //
  252. // Make sure to clear the structure if there is a failure
  253. // so we won't try to marshal bogus data
  254. //
  255. memset(pManagedApp, 0, sizeof(*pManagedApp));
  256. }
  258. CLoadSfc::CLoadSfc( DWORD &Status )
  259. {
  260. hSfc = LoadLibrary( L"sfc.dll" );
  262. if ( ! hSfc )
  263. {
  264. Status = GetLastError();
  265. return;
  266. }
  268. gpfnSRSetRetorePointW = (SRSETRESTOREPOINTW *) GetProcAddress( hSfc, "SRSetRestorePointW" );
  270. if ( ! gpfnSRSetRetorePointW )
  271. {
  272. Status = ERROR_PROC_NOT_FOUND;
  273. return;
  274. }
  276. Status = ERROR_SUCCESS;
  277. }
  279. CLoadSfc::~CLoadSfc()
  280. {
  281. if ( hSfc )
  282. FreeLibrary( hSfc );
  283. }
  285. //
  286. // Force policy to be synchronous at next refresh --
  287. // use a token for user policy, NULL for machine policy
  288. //
  289. DWORD ForceSynchronousRefresh( HANDLE hUserToken )
  290. {
  291. LONG Status;
  292. UNICODE_STRING SidString;
  294. Status = GetSidString( hUserToken, &SidString );
  296. if ( ERROR_SUCCESS == Status )
  297. {
  298. //
  299. // Inform the gp engine to give us a sync refresh
  300. //
  301. Status = ForceSyncFgPolicy( SidString.Buffer );
  303. RtlFreeUnicodeString( &SidString );
  304. }
  306. return Status;
  307. }