archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/gina/gpext/appmgmt/cstore/user.cxx

628 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //
  2. // Author: DebiM
  3. // Date: September 1996
  4. //
  5. // File: csuser.cxx
  6. //
  7. // Maintains a list of class containers per User SID.
  8. // Looks up this list for every IClassAccess call from OLE32/SCM.
  9. //
  10. //
  11. //---------------------------------------------------------------------
  13. #include "cstore.hxx"
  14. #include "cspath.hxx"
  15. //
  16. // Link list pointer for Class Containers Seen
  17. //
  18. extern CLASSCONTAINER *gpContainerHead;
  20. //
  21. // Link list pointer for User Profiles Seen
  22. //
  23. extern USERPROFILE *gpUserHead;
  26. // Initialzed in InitializeClassStore at startup
  28. extern CRITICAL_SECTION ClassStoreBindList;
  30. //-------------------------------------------------------------------------
  31. //
  32. // OpenUserRegKey
  33. //
  34. // Opens a key under a user's HKEY_CLASSES_ROOT registry key. On NT5
  35. // HKCR is equivalent to HKEY_USERS\{sid string}\Software\Classes.
  36. //
  37. // A SID string is used to create
  38. // the proper registry key name to open.
  39. //
  40. //-------------------------------------------------------------------------
  41. DWORD
  42. OpenUserRegKey(
  43. IN PSID pSid,
  44. IN WCHAR * pwszSubKey,
  45. OUT HKEY * phKey
  46. )
  47. {
  48. UNICODE_STRING UnicodeString;
  49. WCHAR * pwszKey = NULL;
  50. DWORD AllocSize;
  51. NTSTATUS Status;
  53. UnicodeString.Length = UnicodeString.MaximumLength = 0;
  54. UnicodeString.Buffer = 0;
  56. Status = RtlConvertSidToUnicodeString(
  57. &UnicodeString,
  58. pSid,
  59. (BOOLEAN)TRUE // Allocate
  60. );
  62. //
  63. // Don't return a raw NT status code. This is the only possible error
  64. // condition presuming our sid is valid.
  65. //
  66. if ( Status != STATUS_SUCCESS )
  67. return ERROR_OUTOFMEMORY;
  69. //
  70. // Your friendly reminder, unicode string length is in bytes and doesn't include
  71. // null terminator, if any.
  72. // Add byte for '\\' and end null.
  73. //
  74. AllocSize = UnicodeString.Length + ((1 + lstrlen(pwszSubKey) + 1) * sizeof(WCHAR));
  75. pwszKey = (WCHAR *) LocalAlloc( LPTR, AllocSize );
  76. if (NULL == pwszKey)
  77. {
  78. RtlFreeUnicodeString( &UnicodeString );
  79. return ERROR_OUTOFMEMORY;
  80. }
  82. memcpy( pwszKey, UnicodeString.Buffer, UnicodeString.Length );
  83. pwszKey[UnicodeString.Length / 2] = L'\\';
  85. HRESULT hr ;
  87. hr = StringCchCopyW( &pwszKey[(UnicodeString.Length / 2) + 1],
  88. AllocSize - ((UnicodeString.Length / 2) + 1),
  89. pwszSubKey );
  91. RtlFreeUnicodeString( &UnicodeString );
  93. if (FAILED(hr))
  94. {
  95. LocalFree(pwszKey);
  96. return HRESULT_CODE(hr);
  97. }
  99. Status = RegOpenKeyEx(
  100. HKEY_USERS,
  101. pwszKey,
  102. 0,
  103. KEY_READ,
  104. phKey );
  106. LocalFree(pwszKey);
  108. return Status;
  109. }
  111. //
  112. // GetUserSid
  113. // ----------
  114. //
  115. // Synopsis: return the user SID of the caller.
  116. //
  117. // Arguments: &PSID - Where to store the caller's PSID
  118. //
  119. // Returns: HRESULT - S_OK if successful
  120. // E_FAIL otherwise
  121. //
  122. SID LocalSystemSid = { SID_REVISION, 1, SECURITY_NT_AUTHORITY, SECURITY_LOCAL_SYSTEM_RID };
  125. HRESULT GetUserSid(PSID *ppUserSid, UINT *pCallType)
  126. {
  127. BYTE achBuffer[100];
  128. PTOKEN_USER pUser = (PTOKEN_USER) &(achBuffer[0]);
  129. PSID pSid;
  130. DWORD dwBytesRequired;
  131. BOOL fAllocatedBuffer = FALSE;
  132. HRESULT hr = S_OK;
  133. HANDLE hUserToken = NULL;
  134. BOOL fImpersonated = TRUE;
  137. *pCallType = CS_CALL_USERPROCESS;
  139. // Initialize
  140. *ppUserSid = NULL;
  142. dwBytesRequired = 0;
  144. // Get caller's token while impersonating
  146. if (!OpenThreadToken(GetCurrentThread(),
  147. TOKEN_DUPLICATE | TOKEN_QUERY,
  148. TRUE,
  149. &hUserToken))
  150. {
  151. fImpersonated = FALSE;
  152. if (ERROR_NO_TOKEN != GetLastError())
  153. return HRESULT_FROM_WIN32(GetLastError());
  155. if (!OpenProcessToken(GetCurrentProcess(),
  156. TOKEN_DUPLICATE | TOKEN_QUERY,
  157. &hUserToken))
  158. {
  159. return HRESULT_FROM_WIN32(GetLastError());
  160. }
  161. }
  163. if (SUCCEEDED(hr))
  164. {
  165. if (!GetTokenInformation(
  166. hUserToken, // Handle
  167. TokenUser, // TokenInformationClass
  168. pUser, // TokenInformation
  169. sizeof(achBuffer), // TokenInformationLength
  170. &dwBytesRequired // ReturnLength
  171. ))
  172. {
  174. //
  175. // Need to handle the case of insufficient buffer size.
  176. //
  178. if (sizeof(achBuffer) >= dwBytesRequired)
  179. {
  180. hr = HRESULT_FROM_WIN32(GetLastError());
  181. }
  184. if (SUCCEEDED(hr))
  185. {
  186. //
  187. // Allocate space for the user info
  188. //
  190. pUser = (PTOKEN_USER) CsMemAlloc(dwBytesRequired);
  191. if (pUser == NULL)
  192. {
  193. hr = E_OUTOFMEMORY;
  194. }
  195. }
  197. if (SUCCEEDED(hr))
  198. {
  199. fAllocatedBuffer = TRUE;
  201. //
  202. // Read in the UserInfo
  203. //
  206. if (!GetTokenInformation(
  207. hUserToken, // Handle
  208. TokenUser, // TokenInformationClass
  209. pUser, // TokenInformation
  210. dwBytesRequired, // TokenInformationLength
  211. &dwBytesRequired // ReturnLength
  212. ))
  213. {
  214. hr = HRESULT_FROM_WIN32(GetLastError());
  215. }
  216. }
  217. }
  219. }
  221. if (hUserToken)
  222. {
  223. CloseHandle( hUserToken );
  224. hUserToken = NULL;
  225. }
  227. if (SUCCEEDED(hr))
  228. {
  230. //
  231. // Distinguish between
  232. // a) LOCAL_SYSTEM,
  233. // b) Impersonated Call from a LOCAL_SYSTEM
  234. // and c) In_proc call from a user process
  235. //
  236. // For case (c) make the SID null.
  237. //
  239. if (EqualSid(pUser->User.Sid, &LocalSystemSid))
  240. {
  241. *pCallType = CS_CALL_LOCALSYSTEM;
  242. }
  243. else
  244. {
  245. if (fImpersonated)
  246. {
  247. *pCallType = CS_CALL_IMPERSONATED;
  248. }
  249. else
  250. {
  251. *pCallType = CS_CALL_USERPROCESS;
  252. }
  253. }
  255. // Alloc buffer for copy of SID
  257. dwBytesRequired = GetLengthSid(pUser->User.Sid);
  258. *ppUserSid = CsMemAlloc(dwBytesRequired);
  259. if (*ppUserSid == NULL)
  260. {
  261. hr = E_OUTOFMEMORY;
  262. }
  263. else
  264. {
  265. // Copy SID
  267. if (!CopySid(dwBytesRequired, *ppUserSid, pUser->User.Sid))
  268. {
  269. hr = HRESULT_FROM_WIN32(GetLastError());
  270. CsMemFree(*ppUserSid);
  271. *ppUserSid = NULL;
  272. }
  273. }
  274. }
  276. if (fAllocatedBuffer == TRUE)
  277. {
  278. CsMemFree(pUser);
  279. }
  281. return hr;
  282. }
  284. PCLASSCONTAINER
  285. GetClassStore (LPOLESTR pszPath)
  286. {
  288. PCLASSCONTAINER pCS = NULL;
  289. HRESULT hr;
  291. pCS = (CLASSCONTAINER *) CsMemAlloc (sizeof(CLASSCONTAINER));
  292. if (!pCS)
  293. return NULL;
  295. pCS->pszClassStorePath = (LPOLESTR)CsMemAlloc
  296. (sizeof(WCHAR) * (wcslen(pszPath)+1));
  297. if (!(pCS->pszClassStorePath))
  298. {
  299. CsMemFree(pCS);
  300. return NULL;
  301. }
  303. hr = StringCchCopy (pCS->pszClassStorePath, wcslen(pszPath)+1, pszPath);
  304. if (FAILED(hr))
  305. {
  306. CsMemFree(pCS->pszClassStorePath);
  307. CsMemFree(pCS);
  308. return NULL;
  309. }
  311. return pCS;
  312. }
  315. extern WCHAR pwszDebugPath [];
  316. extern BOOL fDebugPath;
  318. //
  319. // GetPerUserClassStore
  320. // ---------------------
  321. //
  322. // Synopsis: Gets the ADT Class Store List from the
  323. // per-user Registry.
  324. // Returns error if none defined,
  325. //
  326. // Arguments:
  327. // [out] ppStoreList : where to store list of class container
  328. // serial numbers
  329. // [out] pcStores : where to store number of class containers
  330. //
  331. // Returns: S_OK,
  332. //
  333. // History: Changed by (DebiM)
  334. // 2/24/97
  335. // return a NULL list of Class Stores when none defined.
  336. //
  338. HRESULT GetPerUserClassStore(
  339. LPOLESTR pszClassStorePath,
  340. PSID pSid,
  341. UINT CallType,
  342. LPOLESTR **ppStoreList,
  343. DWORD *pcStores)
  345. {
  346. LONG lErrorCode;
  347. DWORD dwDataLen = 0;
  348. DWORD dwType;
  349. HKEY hKey = NULL;
  350. HRESULT hr = S_OK;
  351. LPOLESTR pszPath, pszStart;
  352. LPOLESTR *ppszPath;
  353. LPWSTR pszPathList=NULL;
  355. *pcStores = 0;
  356. *ppStoreList = NULL;
  358. {
  359. switch (CallType)
  360. {
  361. case CS_CALL_LOCALSYSTEM :
  363. CSDBGPrint((DM_WARNING,
  364. IDS_CSTORE_MACHINE));
  365. break;
  367. case CS_CALL_IMPERSONATED :
  369. CSDBGPrint((DM_WARNING,
  370. IDS_CSTORE_IMPERSONATED));
  371. break;
  373. case CS_CALL_USERPROCESS :
  375. CSDBGPrint((DM_WARNING,
  376. IDS_CSTORE_USER));
  377. break;
  379. default:
  380. return E_FAIL;
  381. }
  383. HRESULT hrCSPath;
  385. if ( ! pszClassStorePath )
  386. {
  387. hrCSPath = ReadClassStorePath(
  388. CallType != CS_CALL_LOCALSYSTEM ? pSid : NULL,
  389. &pszPathList);
  390. }
  391. else
  392. {
  393. hrCSPath = S_OK;
  395. pszPathList = pszClassStorePath;
  397. if ( ! *pszPathList )
  398. {
  399. hrCSPath = E_FAIL;
  400. }
  401. }
  403. if ( FAILED(hrCSPath) )
  404. {
  405. // treat as NULL list of Class Stores
  406. if ( ! pszClassStorePath )
  407. {
  408. delete [] pszPathList;
  409. }
  411. return S_OK;
  412. }
  413. }
  415. // counting the number of ';'s and the number of class stores.
  416. // assuming that it ends with a ;
  418. DWORD cTentativeStores = 0;
  420. for (pszPath = pszPathList, cTentativeStores = 0;
  421. (pszPath = wcschr(pszPath, L';'));)
  422. {
  423. ++(cTentativeStores); pszPath++;
  424. }
  426. ++(cTentativeStores);
  428. pszPath = pszPathList;
  430. ppszPath = *ppStoreList = (LPOLESTR *) CsMemAlloc
  431. (sizeof(LPOLESTR) * (cTentativeStores));
  433. if (*ppStoreList == NULL)
  434. {
  435. return E_OUTOFMEMORY;
  436. }
  438. memset (*ppStoreList, 0, sizeof(LPOLESTR) * (cTentativeStores));
  440. //
  441. // Parse the list to separate different class containers
  442. //
  444. while (*pszPath)
  445. {
  446. while (*pszPath == L' ')
  447. ++pszPath;
  448. pszStart = pszPath;
  450. if (!*pszPath)
  451. break;
  452. if (*pszPath == L';')
  453. {
  454. ++pszPath;
  455. continue;
  456. }
  458. while (*pszPath && (*pszPath != L';'))
  459. ++pszPath;
  461. //
  462. // got one. save it.
  463. //
  464. *ppszPath = (LPOLESTR) CsMemAlloc (sizeof(WCHAR) * (ULONG) (pszPath - pszStart + 1));
  466. if (!(*ppszPath))
  467. ERROR_ON_FAILURE(hr=E_OUTOFMEMORY);
  469. memcpy (*ppszPath, pszStart, sizeof (WCHAR) * (ULONG) (pszPath - pszStart));
  470. *((*ppszPath)+(pszPath - pszStart)) = NULL;
  472. (ppszPath)++;
  474. if (*pszPath == L';')
  475. {
  476. ++pszPath;
  477. }
  479. (*pcStores)++;
  481. if ((*pcStores) == cTentativeStores)
  482. break;
  483. }
  485. if (!pszClassStorePath)
  486. {
  487. delete [] pszPathList;
  488. }
  490. return S_OK;
  492. Error_Cleanup:
  493. DWORD i;
  494. for (i = 0; i < (*pcStores); i++)
  495. {
  496. if (ppszPath[i])
  497. CsMemFree(ppszPath[i]);
  498. }
  499. CsMemFree(ppszPath);
  501. ppStoreList = NULL;
  503. (*pcStores) = 0;
  504. if (pszPathList && !pszClassStorePath)
  505. CsMemFree(pszPathList);
  507. return hr;
  508. }
  511. //
  512. // GetUserClassStores
  513. // ------------------
  514. //
  515. // Synopsis: This routine reads the Class Store list and parses it.
  516. // If it has prior knowledge it reurns the parsed list.
  517. // Arguments:
  518. // [out] pcStores: Number of Class Stores
  519. // [out] ppStoreIdList: Class Store Id List,
  520. //
  521. // Returns: S_OK
  522. // May return a NULL list of Class Stores.
  523. //
  524. //
  527. HRESULT GetUserClassStores(
  528. LPOLESTR pszClassStorePath,
  529. PCLASSCONTAINER **ppStoreList,
  530. DWORD *pcStores,
  531. BOOL *pfCache,
  532. PSID *ppUserSid)
  533. {
  534. HRESULT hr = S_OK;
  535. UINT CallType;
  536. PCLASSCONTAINER *pList = NULL;
  537. DWORD i;
  539. //
  540. // Get the SID of the calling process
  541. //
  543. hr = GetUserSid(ppUserSid, &CallType);
  545. if (FAILED(hr))
  546. {
  547. *ppUserSid = NULL;
  548. hr = S_OK;
  549. }
  551. *pfCache = (CallType == CS_CALL_IMPERSONATED);
  553. EnterCriticalSection (&ClassStoreBindList);
  555. //
  556. // Get the Class Store List
  557. //
  558. LPOLESTR *ppStoreNameList = NULL;
  560. hr = GetPerUserClassStore(
  561. pszClassStorePath,
  562. *ppUserSid, CallType, &ppStoreNameList, pcStores);
  564. //
  565. // Note that the above may return a NULL list of Class Stores
  566. //
  568. CSDBGPrint((DM_WARNING,
  569. IDS_CSTORE_STORE_COUNT,
  570. (*pcStores)));
  572. if (SUCCEEDED(hr))
  573. {
  574. *ppStoreList = pList = (PCLASSCONTAINER *)
  575. CsMemAlloc (sizeof(PCLASSCONTAINER) * (*pcStores));
  577. if (!(*ppStoreList))
  578. hr = E_OUTOFMEMORY;
  579. else
  580. memset(pList, 0, sizeof(PCLASSCONTAINER) * (*pcStores));
  581. }
  583. if (SUCCEEDED(hr))
  584. {
  585. for (i=0; i < (*pcStores); i++)
  586. {
  587. *pList = GetClassStore (ppStoreNameList[i]);
  588. if (!(*pList))
  589. {
  590. // free all the ones that have been allocated.
  591. DWORD j;
  592. for (j = 0; j < (*pcStores); j++)
  593. if (*pList)
  594. {
  595. if ((*pList)->pszClassStorePath)
  596. CsMemFree((*pList)->pszClassStorePath);
  597. CsMemFree(*pList);
  598. }
  600. hr = E_OUTOFMEMORY;
  601. (*pcStores) = 0;
  602. break;
  603. }
  605. pList++;
  606. }
  607. }
  609. if (ppStoreNameList)
  610. {
  611. for (i=0; i < (*pcStores); ++i)
  612. {
  613. if (ppStoreNameList[i])
  614. CsMemFree (ppStoreNameList[i]);
  615. }
  616. }
  618. if (ppStoreNameList)
  619. CsMemFree (ppStoreNameList);
  621. LeaveCriticalSection (&ClassStoreBindList);
  623. return hr;
  624. }
  628.