archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
3.3 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/inetsrv/pop3/smtp/storedriver/adjusttokenprivileges.cpp

214 lines
7.5 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. // AdjustTokenPrivileges.cpp: implementation of the CAdjustTokenPrivileges class.
  2. //
  3. //////////////////////////////////////////////////////////////////////
  5. #include "stdafx.h"
  6. #include "AdjustTokenPrivileges.h"
  8. //////////////////////////////////////////////////////////////////////
  9. // Construction/Destruction
  10. //////////////////////////////////////////////////////////////////////
  12. CAdjustTokenPrivileges::CAdjustTokenPrivileges() :
  13. m_dwAttributesPrev(0), m_bImpersonation(false), m_hToken(INVALID_HANDLE_VALUE), m_hTokenDuplicate(INVALID_HANDLE_VALUE)
  14. {
  15. }
  17. CAdjustTokenPrivileges::~CAdjustTokenPrivileges()
  18. {
  19. if ( m_bImpersonation )
  20. RevertToSelf(); // Deletes the thread token so there is no need to reset the TokenPrivilege
  21. else if ( INVALID_HANDLE_VALUE != m_hToken )
  22. {
  23. TOKEN_PRIVILEGES TokenPrivileges;
  24. DWORD dwRC = GetLastError();
  26. TokenPrivileges.PrivilegeCount = 1;
  27. TokenPrivileges.Privileges[0].Luid = m_luid;
  28. TokenPrivileges.Privileges[0].Attributes = m_dwAttributesPrev;
  29. //adjust the privlige to this new privilege
  30. AdjustTokenPrivileges( m_hToken, FALSE, &TokenPrivileges, sizeof( TOKEN_PRIVILEGES ), NULL, NULL );
  31. CloseHandle( m_hToken );
  32. if ( ERROR_SUCCESS != dwRC ) // Preserve any error code
  33. SetLastError( dwRC );
  34. }
  35. if ( INVALID_HANDLE_VALUE != m_hTokenDuplicate )
  36. CloseHandle( m_hTokenDuplicate );
  37. }
  39. //////////////////////////////////////////////////////////////////////
  40. // Implementation : public
  41. //////////////////////////////////////////////////////////////////////
  43. DWORD CAdjustTokenPrivileges::AdjustPrivileges( LPCTSTR lpPrivelegeName, DWORD dwAttributes )
  44. {
  45. //local variables
  46. TOKEN_PRIVILEGES TokenPrivileges, TokenPrivilegesOld;
  47. DWORD dwRC = ERROR_SUCCESS, dwSize = sizeof( TokenPrivilegesOld );
  49. if ( !LookupPrivilegeValue( NULL, lpPrivelegeName, &m_luid ))
  50. dwRC = GetLastError();
  51. if ( ERROR_SUCCESS == dwRC )
  52. { // open the token of the current process
  53. if ( !OpenThreadToken( GetCurrentThread(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, FALSE, &m_hToken ))
  54. {
  55. dwRC = GetLastError();
  56. if ( ERROR_NO_TOKEN == dwRC )
  57. {// There's no impersonation let's impersonate self so we can make this work
  58. if ( ImpersonateSelf( SecurityImpersonation ))
  59. {
  60. if ( OpenThreadToken( GetCurrentThread(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, FALSE, &m_hToken ))
  61. {
  62. dwRC = ERROR_SUCCESS;
  63. m_bImpersonation = true;
  64. }
  65. else
  66. {
  67. dwRC = GetLastError();
  68. RevertToSelf(); // Already have an error, don't want to overwrite if this fails
  69. }
  70. }
  71. else
  72. dwRC = GetLastError();
  73. }
  74. }
  75. }
  76. if ( ERROR_SUCCESS == dwRC )
  77. { // Set up the privilege set we will need
  78. TokenPrivileges.PrivilegeCount = 1;
  79. TokenPrivileges.Privileges[0].Luid = m_luid;
  80. TokenPrivileges.Privileges[0].Attributes = dwAttributes;
  81. //adjust the privlige to this new privilege
  82. if ( AdjustTokenPrivileges( m_hToken, FALSE, &TokenPrivileges, sizeof( TOKEN_PRIVILEGES ), &TokenPrivilegesOld, &dwSize ))
  83. m_dwAttributesPrev = TokenPrivilegesOld.Privileges[0].Attributes;
  84. dwRC = GetLastError(); // We need to check the return code regardless of what AdjustTokenPrivileges returns
  85. // AdjustTokenPrivileges set last error to ERROR_SUCCESS if it set all specified privileges!
  86. }
  87. if ( dwRC != ERROR_SUCCESS )
  88. {
  89. CloseHandle( m_hToken );
  90. m_hToken = INVALID_HANDLE_VALUE;
  91. }
  93. return dwRC;
  94. }
  97. DWORD CAdjustTokenPrivileges::DuplicateProcessToken( LPCTSTR lpPrivelegeName, DWORD dwAttributes )
  98. {
  99. DWORD dwRC = ERROR_SUCCESS;
  100. HANDLE hToken;
  101. HANDLE hTokenThread = INVALID_HANDLE_VALUE;
  103. if ( !OpenProcessToken( GetCurrentProcess(), TOKEN_DUPLICATE, &hToken ))
  104. dwRC = GetLastError();
  105. if ( ERROR_SUCCESS == dwRC )
  106. {
  107. if ( !DuplicateToken( hToken, SecurityImpersonation, &m_hTokenDuplicate ))
  108. dwRC = GetLastError();
  109. CloseHandle( hToken );
  110. }
  111. if ( ERROR_SUCCESS == dwRC )
  112. {
  113. if ( !OpenThreadToken( GetCurrentThread(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, FALSE, &hTokenThread ))
  114. {
  115. dwRC = GetLastError();
  116. if ( ERROR_NO_TOKEN == dwRC )
  117. {
  118. dwRC = ERROR_SUCCESS;
  119. hTokenThread = INVALID_HANDLE_VALUE;
  120. }
  121. }
  122. }
  123. if ( ERROR_SUCCESS == dwRC )
  124. {
  125. if ( SetThreadToken( NULL, m_hTokenDuplicate ))
  126. {
  127. dwRC = AdjustPrivileges( SE_RESTORE_NAME, SE_PRIVILEGE_ENABLED );
  128. m_hToken = INVALID_HANDLE_VALUE; // This is really the m_hTokenDuplicate, don't want to Close in the destructor
  129. if ( !SetThreadToken( NULL, NULL ))
  130. {
  131. if ( ERROR_SUCCESS == dwRC ) // Don't overwrite existing error code
  132. dwRC = GetLastError();
  133. }
  134. }
  135. else
  136. dwRC = GetLastError();
  137. }
  138. if ( INVALID_HANDLE_VALUE != hTokenThread )
  139. {
  140. if ( !SetThreadToken( NULL, hTokenThread ))
  141. dwRC = GetLastError();
  142. CloseHandle( hTokenThread );
  143. }
  145. return dwRC;
  146. }
  148. /////////////////////////////////////////////////////////////////////////////
  149. // ResetThreadToken, public
  150. //
  151. // Purpose:
  152. // Use the Duplicate process token to enable privileges for the thread.
  153. // If the Thread already has a token (unexpected) then adjust the privileges.
  154. //
  155. // Arguments:
  156. //
  157. // Returns: TRUE on success, FALSE otherwise
  158. DWORD CAdjustTokenPrivileges::ResetToken()
  159. {
  160. DWORD dwRC = ERROR_SUCCESS;
  161. HANDLE hToken;
  163. if ( INVALID_HANDLE_VALUE != m_hTokenDuplicate && INVALID_HANDLE_VALUE == m_hToken )
  164. {
  165. if ( !SetThreadToken( NULL, NULL ))
  166. dwRC = GetLastError();
  167. }
  168. else
  169. dwRC = ERROR_NO_TOKEN;
  171. return dwRC;
  172. }
  175. /////////////////////////////////////////////////////////////////////////////
  176. // SetThreadToken, public
  177. //
  178. // Purpose:
  179. // Use the Duplicated process token to enable privileges for the thread.
  180. // If the Thread already has a token (unexpected) then adjust the privileges.
  181. //
  182. // Arguments:
  183. //
  184. // Returns: TRUE on success, FALSE otherwise
  185. DWORD CAdjustTokenPrivileges::SetToken()
  186. {
  187. DWORD dwRC = ERROR_SUCCESS;
  188. HANDLE hToken;
  190. if ( INVALID_HANDLE_VALUE != m_hTokenDuplicate )
  191. {
  192. if ( OpenThreadToken( GetCurrentThread(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, FALSE, &hToken ))
  193. { // The thread already has a token, let's work with it
  194. CloseHandle( hToken );
  195. dwRC = AdjustPrivileges( SE_RESTORE_NAME, SE_PRIVILEGE_ENABLED );
  196. }
  197. else
  198. { // Let's use are duplicate token
  199. if ( ERROR_NO_TOKEN == GetLastError() )
  200. {
  201. if ( !SetThreadToken( NULL, m_hTokenDuplicate ))
  202. dwRC = GetLastError();
  203. }
  204. else
  205. dwRC = GetLastError();
  206. }
  207. }
  208. else
  209. dwRC = ERROR_NO_TOKEN;
  211. return dwRC;
  212. }