archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/windows/appcompat/shims/specific/koeisecuritycheck.cpp

94 lines
2.1 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2000 Microsoft Corporation
  5. Module Name:
  7. KOEISecurityCheck.cpp
  9. Abstract:
  11. This shim sets the SID for TokenOwner at the beginning of the setup.exe. It checks
  12. if the administrator group SID is enabled in current process token. If it is enabled then
  13. we set the TokenOwner SID to administrator group SID. If its not then it does nothing.
  15. History:
  17. 04/17/2001 zhongyl create
  19. --*/
  21. #include "precomp.h"
  23. IMPLEMENT_SHIM_BEGIN(KOEISecurityCheck)
  24. #include "ShimHookMacro.h"
  26. APIHOOK_ENUM_BEGIN
  27. APIHOOK_ENUM_END
  29. /*++
  31. DisableStickyKeys saves the current value for LPSTICKYKEYS and then disables the option.
  33. --*/
  35. VOID
  36. SetSidForOwner()
  37. {
  38. BYTE sidBuffer[50];
  39. PSID pSID = (PSID)sidBuffer;
  40. SID_IDENTIFIER_AUTHORITY SIDAuth = SECURITY_NT_AUTHORITY;
  41. BOOL IsMember;
  42. HANDLE hToken;
  43. TOKEN_OWNER SIDforOwner;
  45. // Open a handle to the access token for the calling process.
  46. if (!OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY | TOKEN_ADJUST_DEFAULT, &hToken ))
  47. return; //if OpenProcessToken fails, do nothing
  49. // Create a SID for the BUILTIN\Administrators group.
  50. if (!AllocateAndInitializeSid(&SIDAuth, 2, SECURITY_BUILTIN_DOMAIN_RID, DOMAIN_ALIAS_RID_ADMINS, 0, 0, 0, 0, 0, 0, &pSID))
  51. return; //if AllocateAndInitializedSid fails, do nothing
  53. // Check if the administrator group SID is enabled in current process token
  54. if (!CheckTokenMembership(NULL, pSID, &IsMember))
  55. return; //if CheckTokenMembership fails, do nothing
  57. SIDforOwner.Owner = pSID;
  59. // if the administrator group SID is enabled in current process token, call SetTokenInformation to set the SID for Owner.
  60. if (IsMember)
  61. SetTokenInformation(hToken, TokenOwner, &SIDforOwner, sizeof(SIDforOwner));
  63. return;
  65. }
  67. BOOL
  68. NOTIFY_FUNCTION(
  69. DWORD fdwReason
  70. )
  71. {
  72. if (fdwReason == SHIM_STATIC_DLLS_INITIALIZED) {
  73. SetSidForOwner();
  74. }
  76. return TRUE;
  77. }
  79. /*++
  81. Register hooked functions
  83. --*/
  86. HOOK_BEGIN
  88. CALL_NOTIFY_FUNCTION
  90. HOOK_END
  93. IMPLEMENT_SHIM_END