archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/termsrv/tsutil/acl.c

441 lines
10 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*
  2. * Acl.c
  3. *
  4. * Author: BreenH
  5. *
  6. * Acl utilities.
  7. */
  9. /*
  10. * Includes
  11. */
  13. #include "precomp.h"
  14. #include "tsutil.h"
  15. #include "tsutilnt.h"
  17. /*
  18. * Function Implementations
  19. */
  21. BOOL WINAPI
  22. AddSidToObjectsSecurityDescriptor(
  23. HANDLE hObject,
  24. SE_OBJECT_TYPE ObjectType,
  25. PSID pSid,
  26. DWORD dwNewAccess,
  27. ACCESS_MODE AccessMode,
  28. DWORD dwInheritance
  29. )
  30. {
  31. BOOL fRet;
  32. DWORD dwRet;
  33. EXPLICIT_ACCESS ExpAccess;
  34. PACL pNewDacl;
  35. PACL pOldDacl;
  36. PSECURITY_DESCRIPTOR pSd;
  38. //
  39. // Get the objects security descriptor and current Dacl.
  40. //
  42. pSd = NULL;
  43. pOldDacl = NULL;
  45. dwRet = GetSecurityInfo(
  46. hObject,
  47. ObjectType,
  48. DACL_SECURITY_INFORMATION,
  49. NULL,
  50. NULL,
  51. &pOldDacl,
  52. NULL,
  53. &pSd
  54. );
  56. if (dwRet != ERROR_SUCCESS)
  57. {
  58. return(FALSE);
  59. }
  61. //
  62. // Initialize an EXPLICIT_ACCESS structure for the new ace.
  63. //
  65. ZeroMemory(&ExpAccess, sizeof(EXPLICIT_ACCESS));
  66. ExpAccess.grfAccessPermissions = dwNewAccess;
  67. ExpAccess.grfAccessMode = AccessMode;
  68. ExpAccess.grfInheritance = dwInheritance;
  69. BuildTrusteeWithSid(&(ExpAccess.Trustee), pSid);
  71. //
  72. // Merge the new ace into the existing Dacl.
  73. //
  75. fRet = FALSE;
  77. dwRet = SetEntriesInAcl(
  78. 1,
  79. &ExpAccess,
  80. pOldDacl,
  81. &pNewDacl
  82. );
  84. if (dwRet == ERROR_SUCCESS)
  85. {
  87. //
  88. // Set the new security for the object.
  89. //
  91. dwRet = SetSecurityInfo(
  92. hObject,
  93. ObjectType,
  94. DACL_SECURITY_INFORMATION,
  95. NULL,
  96. NULL,
  97. pNewDacl,
  98. NULL
  99. );
  101. if (dwRet == ERROR_SUCCESS)
  102. {
  103. fRet = TRUE;
  104. }
  105. }
  107. if (pNewDacl != NULL)
  108. {
  109. LocalFree(pNewDacl);
  110. }
  112. if (pSd != NULL)
  113. {
  114. LocalFree(pSd);
  115. }
  117. return(fRet);
  118. }
  121. BOOL WINAPI
  122. AddSidToSecurityDescriptor(
  123. PSECURITY_DESCRIPTOR *ppSd,
  124. PSID pSid,
  125. DWORD dwNewAccess,
  126. ACCESS_MODE AccessMode,
  127. DWORD dwInheritance
  128. )
  129. {
  130. BOOL fAbsoluteSd;
  131. BOOL fDaclDefaulted;
  132. BOOL fDaclPresent;
  133. BOOL fRet;
  134. PACL pDacl;
  135. PSECURITY_DESCRIPTOR pAbsoluteSd;
  136. PSECURITY_DESCRIPTOR pOriginalSd;
  138. ASSERT(ppSd != NULL);
  139. ASSERT(*ppSd != NULL);
  141. //
  142. // The security descriptors should be absolute to allow the addition of
  143. // the new ace.
  144. //
  146. pOriginalSd = *ppSd;
  148. fAbsoluteSd = IsSecurityDescriptorAbsolute(pOriginalSd);
  150. if (!fAbsoluteSd)
  151. {
  152. fRet = ConvertSelfRelativeToAbsolute(&pAbsoluteSd, pOriginalSd);
  154. if (!fRet)
  155. {
  156. return(FALSE);
  157. }
  158. }
  159. else
  160. {
  161. pAbsoluteSd = pOriginalSd;
  162. }
  164. //
  165. // Now that the type of security descriptor is absolute, get the Dacl.
  166. //
  168. pDacl = NULL;
  170. fRet = GetSecurityDescriptorDacl(
  171. pAbsoluteSd,
  172. &fDaclPresent,
  173. &pDacl,
  174. &fDaclDefaulted
  175. );
  177. if (fRet)
  178. {
  179. DWORD dwRet;
  180. EXPLICIT_ACCESS ExplicitAccess;
  181. PACL pNewDacl;
  183. //
  184. // Initialize an EXPLICIT_ACCESS structure for the new ace.
  185. //
  187. RtlZeroMemory(&ExplicitAccess, sizeof(EXPLICIT_ACCESS));
  188. ExplicitAccess.grfAccessPermissions = dwNewAccess;
  189. ExplicitAccess.grfAccessMode = AccessMode;
  190. ExplicitAccess.grfInheritance = dwInheritance;
  191. BuildTrusteeWithSid(&(ExplicitAccess.Trustee), pSid);
  193. //
  194. // Merge the ace into the existing Dacl. This will allocate a new
  195. // Dacl. Unfortunately this API is only available as a WINAPI.
  196. //
  198. pNewDacl = NULL;
  200. dwRet = SetEntriesInAcl(
  201. 1,
  202. &ExplicitAccess,
  203. pDacl,
  204. &pNewDacl
  205. );
  207. if (dwRet == ERROR_SUCCESS)
  208. {
  209. ASSERT(pNewDacl != NULL);
  211. //
  212. // Point the security descriptor's Dacl to the new Dacl.
  213. //
  215. fRet = SetSecurityDescriptorDacl(
  216. pAbsoluteSd,
  217. TRUE,
  218. pNewDacl,
  219. FALSE
  220. );
  222. if (fRet)
  223. {
  224. PULONG_PTR pBeginning;
  225. PULONG_PTR pEnd;
  226. PULONG_PTR pPtr;
  228. //
  229. // The new Dacl has been set, free the old. Be careful here;
  230. // the RTL folks like to put absolute security descriptors in
  231. // one big allocation, just like a self-relative security
  232. // descriptor. If the old Dacl is inside the security
  233. // descriptor allocation, it cannot be freed. Essentially,
  234. // that memory becomes unused, and the security descriptor
  235. // takes up more space than necessary.
  236. //
  238. pBeginning = (PULONG_PTR)pAbsoluteSd;
  239. pEnd = (PULONG_PTR)((PBYTE)pAbsoluteSd +
  240. LocalSize(pAbsoluteSd));
  241. pPtr = (PULONG_PTR)pDacl;
  243. if ((pPtr < pBeginning) || (pPtr > pEnd))
  244. {
  245. LocalFree(pDacl);
  246. }
  247. }
  248. else
  249. {
  251. //
  252. // A failure occurred setting the new Dacl. This should never
  253. // occur, but if it does, free the newly created Dacl.
  254. //
  256. LocalFree(pNewDacl);
  257. }
  258. }
  259. else
  260. {
  261. fRet = FALSE;
  262. }
  263. }
  265. //
  266. // The new security descriptor should be returned in the same format as
  267. // the original security descriptor. The returned security descriptor is
  268. // also dependent on the success of the function.
  269. //
  271. if (!fAbsoluteSd)
  272. {
  273. if (fRet)
  274. {
  275. PSECURITY_DESCRIPTOR pNewSd;
  277. //
  278. // The original security descriptor was self-relative, and until
  279. // now everything has succeeded. Convert the temporary absolute
  280. // security descriptor back to self-relative form. This creates a
  281. // third security descriptor (the other two being the original
  282. // and the absolute).
  283. //
  285. pNewSd = NULL;
  287. fRet = ConvertAbsoluteToSelfRelative(
  288. &pNewSd,
  289. pAbsoluteSd,
  290. NULL
  291. );
  293. if (fRet)
  294. {
  296. //
  297. // The final conversion was successful. Free the original
  298. // security descriptor. The absolute security descriptor is
  299. // freed later. The only possible error from destroying the
  300. // security descriptor is a version mismatch, but that would
  301. // have happened long ago.
  302. //
  304. *ppSd = pNewSd;
  306. (VOID)DestroySecurityDescriptor(&pOriginalSd);
  307. }
  308. else
  309. {
  311. //
  312. // The final conversion failed. At this point, the original
  313. // security descriptor is still intact. Free the absolute
  314. // security descriptor that was created earlier, and leave
  315. // the passed in security descriptor pointer alone. Note that
  316. // with the absolute security descriptor being freed later,
  317. // there is nothing to do here.
  318. //
  320. }
  321. }
  323. //
  324. // Regardless of success or failure, the absolute security descriptor
  325. // was created, so it must be freed. The only possible error from destroying the
  326. // security descriptor is a version mismatch, but that would
  327. // have happened long ago.
  328. //
  330. (VOID)DestroySecurityDescriptor(&pAbsoluteSd);
  332. }
  333. else
  334. {
  336. //
  337. // Regardless of what happened, there is nothing to do here. The
  338. // original security descriptor was absolute; therefore no copies
  339. // were made. The only data that changed was the Dacl, and whether
  340. // or not that succeeded is irrelevant, as that was handled above.
  341. //
  343. }
  345. return(fRet);
  346. }
  348. BOOL WINAPI
  349. ConvertAbsoluteToSelfRelative(
  350. PSECURITY_DESCRIPTOR *ppSelfRelativeSd,
  351. PSECURITY_DESCRIPTOR pAbsoluteSd,
  352. PDWORD pcbSelfRelativeSd
  353. )
  354. {
  355. BOOL fRet;
  356. NTSTATUS Status;
  358. Status = NtConvertAbsoluteToSelfRelative(
  359. ppSelfRelativeSd,
  360. pAbsoluteSd,
  361. pcbSelfRelativeSd
  362. );
  364. if (NT_SUCCESS(Status))
  365. {
  366. fRet = TRUE;
  367. }
  368. else
  369. {
  370. fRet = FALSE;
  371. SetLastError(RtlNtStatusToDosError(Status));
  372. }
  374. return(fRet);
  375. }
  377. BOOL WINAPI
  378. ConvertSelfRelativeToAbsolute(
  379. PSECURITY_DESCRIPTOR *ppAbsoluteSd,
  380. PSECURITY_DESCRIPTOR pSelfRelativeSd
  381. )
  382. {
  383. BOOL fRet;
  384. NTSTATUS Status;
  386. Status = NtConvertSelfRelativeToAbsolute(ppAbsoluteSd, pSelfRelativeSd);
  388. if (NT_SUCCESS(Status))
  389. {
  390. fRet = TRUE;
  391. }
  392. else
  393. {
  394. fRet = FALSE;
  395. SetLastError(RtlNtStatusToDosError(Status));
  396. }
  398. return(fRet);
  399. }
  401. BOOL WINAPI
  402. DestroySecurityDescriptor(
  403. PSECURITY_DESCRIPTOR *ppSd
  404. )
  405. {
  406. BOOL fRet;
  407. NTSTATUS Status;
  409. Status = NtDestroySecurityDescriptor(ppSd);
  411. if (NT_SUCCESS(Status))
  412. {
  413. fRet = TRUE;
  414. }
  415. else
  416. {
  417. fRet = FALSE;
  418. SetLastError(RtlNtStatusToDosError(Status));
  419. }
  421. return(fRet);
  422. }
  424. BOOL WINAPI
  425. IsSecurityDescriptorAbsolute(
  426. PSECURITY_DESCRIPTOR pSd
  427. )
  428. {
  429. BOOLEAN fAbsolute;
  430. BOOL fRet;
  431. NTSTATUS Status;
  433. fAbsolute = FALSE;
  435. Status = NtIsSecurityDescriptorAbsolute(pSd, &fAbsolute);
  437. fRet = ((NT_SUCCESS(Status)) && fAbsolute);
  439. return(fRet);
  440. }