archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/admin/wmi/wbem/providers/jobobjectprov/cjobobjseclimitinfoprops.cpp

876 lines
26 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. // Copyright (c) 2000-2001 Microsoft Corporation, All Rights Reserved
  2. // CJobObjSecLimitInfoProps.cpp
  4. //#define _WIN32_WINNT 0x0500
  8. #include "precomp.h"
  10. #pragma warning( disable: 4154 )
  12. #include <wbemprov.h>
  13. #include "FRQueryEx.h"
  14. #include <vector>
  15. #include "helpers.h"
  16. #include "CVARIANT.h"
  17. #include "CObjProps.h"
  18. #include "CJobObjSecLimitInfoProps.h"
  19. #include <crtdbg.h>
  22. //*****************************************************************************
  23. // BEGIN: Declaration of Win32_JobObjectSecLimitInfo class properties.
  24. //*****************************************************************************
  25. // WARNING!! MUST KEEP MEMBERS OF THE FOLLOWING ARRAY
  26. // IN SYNCH WITH THE JOB_OBJ_PROPS ENUMERATION DECLARED
  27. // IN CJobObjProps.h !!!
  28. LPCWSTR g_rgJobObjSecLimitInfoPropNames[] =
  29. {
  30. { L"SettingID" },
  31. { L"SecurityLimitFlags" },
  32. { L"SidsToDisable" },
  33. { L"PrivilegesToDelete" },
  34. { L"RestrictedSids" }
  35. };
  36. //*****************************************************************************
  37. // END: Declaration of Win32_JobObjectSecLimitInfo class properties.
  38. //*****************************************************************************
  40. CJobObjSecLimitInfoProps::CJobObjSecLimitInfoProps()
  41. : m_hJob(NULL),
  42. m_pjosli(NULL)
  43. {
  44. }
  46. CJobObjSecLimitInfoProps::CJobObjSecLimitInfoProps(CHString& chstrNamespace)
  47. : CObjProps(chstrNamespace),
  48. m_hJob(NULL),
  49. m_pjosli(NULL)
  50. {
  51. }
  54. CJobObjSecLimitInfoProps::CJobObjSecLimitInfoProps(
  55. HANDLE hJob,
  56. CHString& chstrNamespace)
  57. : CObjProps(chstrNamespace),
  58. m_hJob(hJob),
  59. m_pjosli(NULL)
  60. {
  61. }
  63. CJobObjSecLimitInfoProps::~CJobObjSecLimitInfoProps()
  64. {
  65. if(m_pjosli)
  66. {
  67. delete m_pjosli;
  68. m_pjosli = NULL;
  69. }
  70. }
  73. // Clients call this to establish which properties
  74. // were requested. This function calls a base class
  75. // helper, which calls our CheckProps function.
  76. // The base class helper finally stores the result
  77. // in the base class member m_dwReqProps.
  78. HRESULT CJobObjSecLimitInfoProps::GetWhichPropsReq(
  79. CFrameworkQuery& cfwq)
  80. {
  81. HRESULT hr = S_OK;
  83. // Call base class version for help.
  84. // Base class version will call our
  85. // CheckProps function.
  86. hr = CObjProps::GetWhichPropsReq(
  87. cfwq,
  88. CheckProps);
  90. return hr;
  91. }
  94. DWORD CJobObjSecLimitInfoProps::CheckProps(
  95. CFrameworkQuery& Query)
  96. {
  97. DWORD dwReqProps = PROP_NONE_REQUIRED;
  98. // Get the requested properties for this
  99. // specific object...
  100. if (Query.IsPropertyRequired(g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_ID]))
  101. dwReqProps |= PROP_JOSecLimitInfoID;
  103. if (Query.IsPropertyRequired(g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_SecurityLimitFlags]))
  104. dwReqProps |= PROP_SecurityLimitFlags;
  106. if (Query.IsPropertyRequired(g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_SidsToDisable]))
  107. dwReqProps |= PROP_SidsToDisable;
  109. if (Query.IsPropertyRequired(g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_PrivilegesToDelete]))
  110. dwReqProps |= PROP_PrivilagesToDelete;
  112. if (Query.IsPropertyRequired(g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_RestrictedSids]))
  113. dwReqProps |= PROP_RestrictedSids;
  115. return dwReqProps;
  116. }
  119. void CJobObjSecLimitInfoProps::SetHandle(
  120. const HANDLE hJob)
  121. {
  122. m_hJob = hJob;
  123. }
  125. HANDLE& CJobObjSecLimitInfoProps::GetHandle()
  126. {
  127. _ASSERT(m_hJob);
  128. return m_hJob;
  129. }
  131. // Sets the key properties from the ObjectPath.
  132. HRESULT CJobObjSecLimitInfoProps::SetKeysFromPath(
  133. const BSTR ObjectPath,
  134. IWbemContext __RPC_FAR *pCtx)
  135. {
  136. HRESULT hr = WBEM_S_NO_ERROR;
  138. // This array contains the key field names
  139. CHStringArray rgchstrKeys;
  140. rgchstrKeys.Add(g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_ID]);
  142. // This array contains the index numbers
  143. // in m_PropMap corresponding to the keys.
  144. short sKeyNum[1];
  145. sKeyNum[0] = JOSECLMTPROP_ID;
  147. hr = CObjProps::SetKeysFromPath(
  148. ObjectPath,
  149. pCtx,
  150. IDS_Win32_NamedJobObjectSecLimitSetting,
  151. rgchstrKeys,
  152. sKeyNum);
  154. return hr;
  155. }
  158. // Sets the key property from in supplied
  159. // parameter.
  160. HRESULT CJobObjSecLimitInfoProps::SetKeysDirect(
  161. std::vector<CVARIANT>& vecvKeys)
  162. {
  163. HRESULT hr = WBEM_S_NO_ERROR;
  165. if(vecvKeys.size() == 1)
  166. {
  167. short sKeyNum[1];
  168. sKeyNum[0] = JOSECLMTPROP_ID;
  170. hr = CObjProps::SetKeysDirect(
  171. vecvKeys,
  172. sKeyNum);
  173. }
  174. else
  175. {
  176. hr = WBEM_E_INVALID_PARAMETER;
  177. }
  179. return hr;
  180. }
  183. // Sets the non-key properties. Only those
  184. // properties requested are set (as determined
  185. // by base class member m_dwReqProps).
  186. HRESULT CJobObjSecLimitInfoProps::SetNonKeyReqProps()
  187. {
  188. HRESULT hr = WBEM_S_NO_ERROR;
  189. DWORD dwReqProps = GetReqProps();
  190. _ASSERT(m_hJob);
  191. if(!m_hJob) return WBEM_E_INVALID_PARAMETER;
  193. // Because all the properties of this class
  194. // come from the same underlying win32 job
  195. // object structure, we only need to get that
  196. // structure one time. We only need to get
  197. // it at all if at least one non-key property
  198. // was requested.
  199. if(dwReqProps != PROP_NONE_REQUIRED)
  200. {
  201. // Get the value from the underlying JO:
  202. // This is a really flakey API when used
  203. // with a JobObjectSecurityLimitInformation,
  204. // as there is no way to get the size of
  205. // the buffer beforehand. So we have to
  206. // allocate, see if it was enough, and if
  207. // not, reallocate! We'll do this 10 times
  208. // at most, and if still not enough then bail.
  209. // Remember: new's throw on allocation
  210. // failure, hence not checking their allocation
  211. // below.
  212. PBYTE pbBuff = NULL;
  213. DWORD dwSize = 128L;
  214. BOOL fQIJO = FALSE;
  216. try
  217. {
  218. for(short s = 0;
  219. s < 10 && !fQIJO;
  220. s++)
  221. {
  222. pbBuff = new BYTE[dwSize];
  223. ZeroMemory(pbBuff, dwSize);
  225. fQIJO = ::QueryInformationJobObject(
  226. m_hJob,
  227. JobObjectSecurityLimitInformation,
  228. pbBuff,
  229. dwSize,
  230. NULL);
  232. // Want to assign newly allocated
  233. // buffer to a place from which it
  234. // will be guarenteed to be cleaned
  235. // up while we are inside this try
  236. // block.
  237. if(fQIJO)
  238. {
  239. m_pjosli = (PJOBOBJECT_SECURITY_LIMIT_INFORMATION) pbBuff;
  240. }
  241. else
  242. {
  243. delete pbBuff;
  244. pbBuff = NULL;
  245. }
  247. dwSize = dwSize << 1;
  248. }
  249. }
  250. catch(...)
  251. {
  252. if(pbBuff)
  253. {
  254. delete pbBuff;
  255. pbBuff = NULL;
  256. }
  257. throw;
  258. }
  260. if(!fQIJO)
  261. {
  262. _ASSERT(0);
  263. hr = WBEM_E_FAILED;
  264. }
  265. }
  267. return hr;
  268. }
  274. HRESULT CJobObjSecLimitInfoProps::LoadPropertyValues(
  275. IWbemClassObject* pIWCO,
  276. IWbemContext* pCtx,
  277. IWbemServices* pNamespace)
  278. {
  279. HRESULT hr = WBEM_S_NO_ERROR;
  280. if(!pIWCO) return E_POINTER;
  282. // Load properties from the map...
  283. hr = CObjProps::LoadPropertyValues(
  284. g_rgJobObjSecLimitInfoPropNames,
  285. pIWCO);
  287. // Uses member josli and dwReqProps to
  288. // load properties to the instance.
  289. hr = SetInstanceFromJOSLI(
  290. pIWCO,
  291. pCtx,
  292. pNamespace);
  294. return hr;
  295. }
  299. //*****************************************************************************
  300. //
  301. // The following are a family of functions used to set information in a
  302. // Win32_NamedJobObjectSecLimitSetting instance from a
  303. // JOBOBJECT_SECURITY_LIMIT_INFORMATION structure. Called by LoadPropertyValues.
  304. //
  305. //*****************************************************************************
  307. HRESULT CJobObjSecLimitInfoProps::SetInstanceFromJOSLI(
  308. IWbemClassObject* pIWCO,
  309. IWbemContext* pCtx,
  310. IWbemServices* pNamespace)
  311. {
  312. HRESULT hr = WBEM_S_NO_ERROR;
  313. // We expect, when this function is called,
  314. // that at least the member m_pjosli has been
  315. // set (via a call to SetNonKeyReqProps).
  316. // That function will have set the other
  317. // member variables (such as m_ptgSidsToDisable)
  318. // based on which properties were requested.
  319. //
  320. // Our job in this function is to populate
  321. // only those properties of the IWbemClassObject
  322. // (which will be handed back to CIMOM) that
  323. // the user requested. We encapsulate this
  324. // work into helper fuctions for those properties
  325. // that are embedded objects.
  326. DWORD dwReqProps = GetReqProps();
  327. CVARIANT v;
  329. try // CVARIANT can throw and I want the error...
  330. {
  331. if(dwReqProps & PROP_SecurityLimitFlags)
  332. {
  333. v.SetLONG((LONG)m_pjosli->SecurityLimitFlags);
  334. hr = pIWCO->Put(
  335. g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_SecurityLimitFlags],
  336. 0,
  337. &v,
  338. NULL);
  339. }
  341. if(SUCCEEDED(hr))
  342. {
  343. if(dwReqProps & PROP_SidsToDisable)
  344. {
  345. hr = SetInstanceSidsToDisable(
  346. pIWCO,
  347. pCtx,
  348. pNamespace);
  349. }
  350. }
  352. if(SUCCEEDED(hr))
  353. {
  354. if(dwReqProps & PROP_PrivilagesToDelete)
  355. {
  356. hr = SetInstancePrivilegesToDelete(
  357. pIWCO,
  358. pCtx,
  359. pNamespace);
  360. }
  361. }
  363. if(SUCCEEDED(hr))
  364. {
  365. if(dwReqProps & PROP_RestrictedSids)
  366. {
  367. hr = SetInstanceRestrictedSids(
  368. pIWCO,
  369. pCtx,
  370. pNamespace);
  371. }
  372. }
  373. }
  374. catch(CVARIANTError& cve)
  375. {
  376. hr = cve.GetWBEMError();
  377. }
  379. return hr;
  380. }
  384. HRESULT CJobObjSecLimitInfoProps::SetInstanceSidsToDisable(
  385. IWbemClassObject* pIWCO,
  386. IWbemContext* pCtx,
  387. IWbemServices* pNamespace)
  388. {
  389. HRESULT hr = WBEM_S_NO_ERROR;
  391. // If m_ptgSidsToDisable is not null,
  392. // Create a Win32_TokenGroups instance
  393. // and call a function to populate it.
  394. if(m_pjosli->SidsToDisable)
  395. {
  396. IWbemClassObjectPtr pWin32TokenGroups;
  397. hr = CreateInst(
  398. pNamespace,
  399. &pWin32TokenGroups,
  400. _bstr_t(IDS_Win32_TokenGroups),
  401. pCtx);
  403. if(SUCCEEDED(hr))
  404. {
  405. hr = SetInstanceTokenGroups(
  406. pWin32TokenGroups,
  407. m_pjosli->SidsToDisable,
  408. pCtx,
  409. pNamespace);
  410. }
  412. if(SUCCEEDED(hr))
  413. {
  414. try
  415. {
  416. CVARIANT v;
  417. v.SetUnknown(pWin32TokenGroups);
  418. hr = pIWCO->Put(
  419. g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_SidsToDisable],
  420. 0,
  421. &v,
  422. NULL);
  423. }
  424. catch(CVARIANTError& cve)
  425. {
  426. hr = cve.GetWBEMError();
  427. }
  428. }
  429. }
  431. return hr;
  432. }
  436. HRESULT CJobObjSecLimitInfoProps::SetInstancePrivilegesToDelete(
  437. IWbemClassObject* pIWCO,
  438. IWbemContext* pCtx,
  439. IWbemServices* pNamespace)
  440. {
  441. HRESULT hr = WBEM_S_NO_ERROR;
  443. // If m_ptpPrivilegesToDelete is not null,
  444. // Create a Win32_TokenPrivileges instance
  445. // and call a function to populate it.
  446. if(m_pjosli->PrivilegesToDelete)
  447. {
  448. IWbemClassObjectPtr pWin32TokenPrivileges;
  449. hr = CreateInst(
  450. pNamespace,
  451. &pWin32TokenPrivileges,
  452. _bstr_t(IDS_Win32_TokenPrivileges),
  453. pCtx);
  455. if(SUCCEEDED(hr))
  456. {
  457. hr = SetInstanceTokenPrivileges(
  458. pWin32TokenPrivileges,
  459. m_pjosli->PrivilegesToDelete,
  460. pCtx,
  461. pNamespace);
  462. }
  464. if(SUCCEEDED(hr))
  465. {
  466. try
  467. {
  468. CVARIANT v;
  469. v.SetUnknown(pWin32TokenPrivileges);
  470. hr = pIWCO->Put(
  471. g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_PrivilegesToDelete],
  472. 0,
  473. &v,
  474. NULL);
  475. }
  476. catch(CVARIANTError& cve)
  477. {
  478. hr = cve.GetWBEMError();
  479. }
  480. }
  481. }
  483. return hr;
  484. }
  488. HRESULT CJobObjSecLimitInfoProps::SetInstanceRestrictedSids(
  489. IWbemClassObject* pIWCO,
  490. IWbemContext* pCtx,
  491. IWbemServices* pNamespace)
  492. {
  493. HRESULT hr = WBEM_S_NO_ERROR;
  495. // If m_ptgRestrictedSids is not null,
  496. // Create a Win32_TokenGroups instance
  497. // and call a function to populate it.
  498. if(m_pjosli->RestrictedSids)
  499. {
  500. IWbemClassObjectPtr pWin32TokenGroups;
  501. hr = CreateInst(
  502. pNamespace,
  503. &pWin32TokenGroups,
  504. _bstr_t(IDS_Win32_TokenGroups),
  505. pCtx);
  507. if(SUCCEEDED(hr))
  508. {
  509. hr = SetInstanceTokenGroups(
  510. pWin32TokenGroups,
  511. m_pjosli->RestrictedSids,
  512. pCtx,
  513. pNamespace);
  514. }
  516. if(SUCCEEDED(hr))
  517. {
  518. try
  519. {
  520. CVARIANT v;
  521. v.SetUnknown(pWin32TokenGroups);
  522. hr = pIWCO->Put(
  523. g_rgJobObjSecLimitInfoPropNames[JOSECLMTPROP_RestrictedSids],
  524. 0,
  525. &v,
  526. NULL);
  527. }
  528. catch(CVARIANTError& cve)
  529. {
  530. hr = cve.GetWBEMError();
  531. }
  532. }
  533. }
  535. return hr;
  536. }
  540. HRESULT CJobObjSecLimitInfoProps::SetInstanceTokenGroups(
  541. IWbemClassObject* pWin32TokenGroups,
  542. PTOKEN_GROUPS ptg,
  543. IWbemContext* pCtx,
  544. IWbemServices* pNamespace)
  545. {
  546. HRESULT hr = WBEM_S_NO_ERROR;
  547. _ASSERT(ptg);
  548. if(!ptg) return hr = WBEM_E_INVALID_PARAMETER;
  550. // We need to populate the two properties of
  551. // Win32_TokenGroups (passed in as pWin32TokenGroups:
  552. // GroupCount, and Groups. If GroupCount is
  553. // zero, on the other hand, don't bother with
  554. // the Groups property.
  555. try // CVARIANT can throw and I want the error...
  556. {
  557. CVARIANT vGroupCount;
  558. LONG lSize = (LONG)ptg->GroupCount;
  560. vGroupCount.SetLONG(lSize);
  561. hr = pWin32TokenGroups->Put(
  562. IDS_GroupCount,
  563. 0,
  564. &vGroupCount,
  565. NULL);
  567. if(SUCCEEDED(hr) &&
  568. lSize > 0)
  569. {
  570. // Need to create an array for the
  571. // Win32_SidAndAttributes instances...
  572. SAFEARRAY* saSidAndAttr;
  573. SAFEARRAYBOUND rgsabound[1];
  574. long ix[1];
  576. rgsabound[0].cElements = lSize;
  577. rgsabound[0].lLbound = 0;
  578. saSidAndAttr = SafeArrayCreate(VT_UNKNOWN, 1, rgsabound);
  579. ix[0] = 0;
  581. for(long m = 0; m < lSize && SUCCEEDED(hr); m++)
  582. {
  583. IWbemClassObjectPtr pWin32SidAndAttributes;
  584. IWbemClassObjectPtr pWin32Sid;
  586. hr = CreateInst(
  587. pNamespace,
  588. &pWin32SidAndAttributes,
  589. _bstr_t(IDS_Win32_SidAndAttributes),
  590. pCtx);
  592. if(SUCCEEDED(hr))
  593. {
  594. // Set the attrubutes...
  595. CVARIANT vAttributes;
  596. vAttributes.SetLONG((LONG)ptg->Groups[m].Attributes);
  597. hr = pWin32SidAndAttributes->Put(
  598. IDS_Attributes,
  599. 0,
  600. &vAttributes,
  601. NULL);
  602. }
  604. if(SUCCEEDED(hr))
  605. {
  606. // Set the sid...
  607. hr = CreateInst(
  608. pNamespace,
  609. &pWin32Sid,
  610. _bstr_t(IDS_Win32_Sid),
  611. pCtx);
  613. if(SUCCEEDED(hr))
  614. {
  615. _bstr_t bstrtSid;
  617. StringFromSid(
  618. ptg->Groups[m].Sid,
  619. bstrtSid);
  621. // Set the SID property of the Win32_SID...
  622. CVARIANT vSID;
  623. vSID.SetStr(bstrtSid);
  624. hr = pWin32Sid->Put(
  625. IDS_SID,
  626. 0,
  627. &vSID,
  628. NULL);
  630. // As a courtesy, set the domain and
  631. // account name props of win32_sid;
  632. // don't care about failures.
  633. {
  634. CHString chstrName;
  635. CHString chstrDom;
  637. GetNameAndDomainFromPSID(
  638. ptg->Groups[m].Sid,
  639. chstrName,
  640. chstrDom);
  642. vSID.SetStr(chstrName);
  643. pWin32Sid->Put(
  644. IDS_AccountName,
  645. 0,
  646. &vSID,
  647. NULL);
  649. vSID.SetStr(chstrDom);
  650. pWin32Sid->Put(
  651. IDS_ReferencedDomainName,
  652. 0,
  653. &vSID,
  654. NULL);
  655. }
  656. }
  658. // Set the SID property of the
  659. // Win32_SidAndAttributes...
  660. if(SUCCEEDED(hr))
  661. {
  662. CVARIANT vSAndASid;
  663. vSAndASid.SetUnknown(pWin32Sid);
  664. hr = pWin32SidAndAttributes->Put(
  665. IDS_SID,
  666. 0,
  667. &vSAndASid,
  668. NULL);
  669. }
  670. }
  672. // Now we need to add the Win32_SidAndAttributes
  673. // instance to the safearray. We need to make
  674. // sure that the instances we add to the safearray
  675. // don't go away as soon as pWin32SidAndAttributes
  676. // and pWin32Sid go out of scope (being smart
  677. // pointers, they will Release when they do), so
  678. // we must addref both interfaces...
  679. if(SUCCEEDED(hr))
  680. {
  681. pWin32Sid.AddRef();
  682. pWin32SidAndAttributes.AddRef();
  684. SafeArrayPutElement(
  685. saSidAndAttr,
  686. ix,
  687. pWin32SidAndAttributes);
  688. }
  690. ix[0]++;
  691. }
  693. // We now have a populated safe array.
  694. // Now we must set the Groups property
  695. // of the pWin32TokenGroups that was
  696. // passed into this function...
  697. if(SUCCEEDED(hr))
  698. {
  699. CVARIANT vGroups;
  700. vGroups.SetArray(
  701. saSidAndAttr,
  702. VT_UNKNOWN | VT_ARRAY);
  704. hr = pWin32TokenGroups->Put(
  705. IDS_Groups,
  706. 0,
  707. &vGroups,
  708. NULL);
  709. }
  710. }
  711. }
  712. catch(CVARIANTError& cve)
  713. {
  714. hr = cve.GetWBEMError();
  715. }
  717. return hr;
  718. }
  721. HRESULT CJobObjSecLimitInfoProps::SetInstanceTokenPrivileges(
  722. IWbemClassObject* pWin32TokenPrivileges,
  723. PTOKEN_PRIVILEGES ptp,
  724. IWbemContext* pCtx,
  725. IWbemServices* pNamespace)
  726. {
  727. HRESULT hr = WBEM_S_NO_ERROR;
  728. _ASSERT(ptp);
  729. if(!ptp) return hr = WBEM_E_INVALID_PARAMETER;
  731. // We need to populate the two properties of
  732. // Win32_TokenGroups (passed in as pWin32TokenGroups:
  733. // GroupCount, and Groups. If GroupCount is
  734. // zero, on the other hand, don't bother with
  735. // the Groups property.
  737. try // CVARIANT can throw and I want the error...
  738. {
  739. CVARIANT vPrivilegeCount;
  740. LONG lSize = (LONG)ptp->PrivilegeCount;
  741. vPrivilegeCount.SetLONG(lSize);
  742. hr = pWin32TokenPrivileges->Put(
  743. IDS_PrivilegeCount,
  744. 0,
  745. &vPrivilegeCount,
  746. NULL);
  748. if(SUCCEEDED(hr) &&
  749. lSize > 0)
  750. {
  751. // Need to create an array for the
  752. // Win32_LUIDAndAttributes instances...
  753. SAFEARRAY* saLUIDAndAttr;
  754. SAFEARRAYBOUND rgsabound[1];
  755. long ix[1];
  757. rgsabound[0].cElements = lSize;
  758. rgsabound[0].lLbound = 0;
  759. saLUIDAndAttr = SafeArrayCreate(VT_UNKNOWN, 1, rgsabound);
  760. ix[0] = 0;
  762. for(long m = 0; m < lSize && SUCCEEDED(hr); m++)
  763. {
  764. IWbemClassObjectPtr pWin32LUIDAndAttributes;
  765. IWbemClassObjectPtr pWin32LUID;
  766. hr = CreateInst(
  767. pNamespace,
  768. &pWin32LUIDAndAttributes,
  769. _bstr_t(IDS_Win32_LUIDAndAttributes),
  770. pCtx);
  772. if(SUCCEEDED(hr))
  773. {
  774. // Set the attrubutes...
  775. CVARIANT vAttributes;
  776. vAttributes.SetLONG((LONG)ptp->Privileges[m].Attributes);
  777. hr = pWin32LUIDAndAttributes->Put(
  778. IDS_Attributes,
  779. 0,
  780. &vAttributes,
  781. NULL);
  782. }
  784. if(SUCCEEDED(hr))
  785. {
  786. // Set the luid...
  787. hr = CreateInst(
  788. pNamespace,
  789. &pWin32LUID,
  790. _bstr_t(IDS_Win32_LUID),
  791. pCtx);
  793. if(SUCCEEDED(hr))
  794. {
  795. // Set the HighPart and LowPart properties
  796. // of the Win32_LUID...
  797. CVARIANT vHighPart;
  798. vHighPart.SetLONG(ptp->Privileges[m].Luid.HighPart);
  799. hr = pWin32LUID->Put(
  800. IDS_HighPart,
  801. 0,
  802. &vHighPart,
  803. NULL);
  805. if(SUCCEEDED(hr))
  806. {
  807. CVARIANT vLowPart;
  808. vLowPart.SetLONG((LONG)ptp->Privileges[m].Luid.LowPart);
  809. hr = pWin32LUID->Put(
  810. IDS_LowPart,
  811. 0,
  812. &vLowPart,
  813. NULL);
  814. }
  815. }
  817. // Set the LUID property of the
  818. // Win32_LUIDAndAttributes...
  819. if(SUCCEEDED(hr))
  820. {
  821. CVARIANT vLAndALUID;
  822. vLAndALUID.SetUnknown(pWin32LUID);
  823. hr = pWin32LUIDAndAttributes->Put(
  824. IDS_LUID,
  825. 0,
  826. &vLAndALUID,
  827. NULL);
  828. }
  829. }
  831. // Now we need to add the Win32_LUIDAndAttributes
  832. // instance to the safearray. We need to make
  833. // sure that the instances we add to the safearray
  834. // don't go away as soon as pWin32SidAndAttributes
  835. // goes out of scope (being a smart
  836. // pointer, it will Release when it does), so
  837. // we must addref the interface...
  838. if(SUCCEEDED(hr))
  839. {
  840. pWin32LUIDAndAttributes.AddRef();
  841. pWin32LUID.AddRef();
  843. SafeArrayPutElement(
  844. saLUIDAndAttr,
  845. ix,
  846. pWin32LUIDAndAttributes);
  847. }
  849. ix[0]++;
  850. }
  852. // We now have a populated safe array.
  853. // Now we must set the Privileges property
  854. // of the pWin32TokenPrivileges that was
  855. // passed into this function...
  856. if(SUCCEEDED(hr))
  857. {
  858. CVARIANT vPrivileges;
  859. vPrivileges.SetArray(
  860. saLUIDAndAttr,
  861. VT_UNKNOWN | VT_ARRAY);
  863. hr = pWin32TokenPrivileges->Put(
  864. IDS_Privileges,
  865. 0,
  866. &vPrivileges,
  867. NULL);
  868. }
  869. }
  870. }
  871. catch(CVARIANTError& cve)
  872. {
  873. hr = cve.GetWBEMError();
  874. }
  876. return hr;
  877. }