archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
3.2 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/admin/wmi/wbem/providers/nteventprovider/dll/maindll.cpp

549 lines
17 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //***************************************************************************
  3. //
  5. // MAINDLL.CPP
  7. //
  9. // Module: WBEM NT EVENT PROVIDER
  11. //
  13. // Purpose: Contains the gloabal dll functions
  15. //
  17. // Copyright (c) 1996-2001 Microsoft Corporation, All Rights Reserved
  18. //
  19. //***************************************************************************
  23. #include "precomp.h"
  25. #include <olectl.h>
  27. //OK we need these globals
  28. HINSTANCE g_hInst = NULL;
  29. CEventProviderManager* g_pMgr = NULL;
  30. CCriticalSection g_ProvLock;
  31. ProvDebugLog* CNTEventProvider::g_NTEvtDebugLog = ProvDebugLog::GetProvDebugLog(LOG_EVTPROV);
  32. CDllMap CEventlogRecord::sm_dllMap;
  33. CSIDMap CEventlogRecord::sm_usersMap;
  34. CMutex* CNTEventProvider::g_secMutex = NULL;
  35. PSID CNTEventProvider::s_NetworkServiceSid = NULL;
  36. PSID CNTEventProvider::s_LocalServiceSid = NULL;
  37. PSID CNTEventProvider::s_AliasBackupOpsSid = NULL;
  38. PSID CNTEventProvider::s_AliasSystemOpsSid = NULL;
  39. PSID CNTEventProvider::s_AliasGuestsSid = NULL;
  40. PSID CNTEventProvider::s_LocalSystemSid = NULL;
  41. PSID CNTEventProvider::s_AliasAdminsSid = NULL;
  42. PSID CNTEventProvider::s_AnonymousLogonSid = NULL;
  43. PSID CNTEventProvider::s_WorldSid = NULL;
  44. IWbemClassObject *WbemTaskObject::g_ClassArray[] = { NULL, NULL, NULL, NULL, NULL };
  46. //***************************************************************************
  47. //
  48. // LibMain32
  49. //
  50. // Purpose: Entry point for DLL. Good place for initialization.
  51. // Return: TRUE if OK.
  52. //***************************************************************************
  54. BOOL APIENTRY DllMain (
  56. HINSTANCE hInstance,
  57. ULONG ulReason ,
  58. LPVOID pvReserved
  59. )
  60. {
  61. SetStructuredExceptionHandler seh;
  62. BOOL status = TRUE ;
  64. try
  65. {
  67. if ( DLL_PROCESS_DETACH == ulReason )
  68. {
  69. }
  70. else if ( DLL_PROCESS_ATTACH == ulReason )
  71. {
  72. g_hInst=hInstance;
  73. DisableThreadLibraryCalls(hInstance);
  74. }
  75. else if ( DLL_THREAD_DETACH == ulReason )
  76. {
  77. }
  78. else if ( DLL_THREAD_ATTACH == ulReason )
  79. {
  80. }
  82. }
  83. catch(Structured_Exception e_SE)
  84. {
  85. status = FALSE;
  86. }
  87. catch(Heap_Exception e_HE)
  88. {
  89. status = FALSE;
  90. }
  91. catch(...)
  92. {
  93. status = FALSE;
  94. }
  96. return status;
  97. }
  99. //***************************************************************************
  100. //
  101. // DllGetClassObject
  102. //
  103. // Purpose: Called by Ole when some client wants a a class factory. Return
  104. // one only if it is the sort of class this DLL supports.
  105. //
  106. //***************************************************************************
  108. STDAPI DllGetClassObject (
  110. REFCLSID rclsid ,
  111. REFIID riid,
  112. void **ppv
  113. )
  114. {
  115. HRESULT status = S_OK ;
  116. SetStructuredExceptionHandler seh;
  118. try
  119. {
  120. if (g_ProvLock.Lock())
  121. {
  122. if ( rclsid == CLSID_CNTEventProviderClassFactory )
  123. {
  124. CNTEventlogEventProviderClassFactory *lpunk = new CNTEventlogEventProviderClassFactory;
  126. if ( lpunk == NULL )
  127. {
  128. status = E_OUTOFMEMORY ;
  129. }
  130. else
  131. {
  132. status = lpunk->QueryInterface ( riid , ppv ) ;
  134. if ( FAILED ( status ) )
  135. {
  136. delete lpunk ;
  137. }
  138. }
  139. }
  140. else if ( rclsid == CLSID_CNTEventInstanceProviderClassFactory )
  141. {
  142. CNTEventlogInstanceProviderClassFactory *lpunk = new CNTEventlogInstanceProviderClassFactory;
  144. if ( lpunk == NULL )
  145. {
  146. status = E_OUTOFMEMORY ;
  147. }
  148. else
  149. {
  150. status = lpunk->QueryInterface ( riid , ppv ) ;
  152. if ( FAILED ( status ) )
  153. {
  154. delete lpunk ;
  155. }
  156. }
  157. }
  158. else
  159. {
  160. status = CLASS_E_CLASSNOTAVAILABLE ;
  161. }
  163. g_ProvLock.Unlock();
  164. }
  165. else
  166. {
  167. status = E_UNEXPECTED ;
  168. }
  169. }
  170. catch(Structured_Exception e_SE)
  171. {
  172. status = E_UNEXPECTED;
  173. }
  174. catch(Heap_Exception e_HE)
  175. {
  176. status = E_OUTOFMEMORY;
  177. }
  178. catch(...)
  179. {
  180. status = E_UNEXPECTED;
  181. }
  183. return status ;
  184. }
  186. //***************************************************************************
  187. //
  188. // DllCanUnloadNow
  189. //
  190. // Purpose: Called periodically by Ole in order to determine if the
  191. // DLL can be freed.//
  192. // Return: TRUE if there are no objects in use and the class factory
  193. // isn't locked.
  194. //***************************************************************************
  196. STDAPI DllCanUnloadNow ()
  197. {
  199. /*
  200. * Place code in critical section
  201. */
  202. BOOL unload = FALSE;
  203. HRESULT status = S_OK ;
  204. SetStructuredExceptionHandler seh;
  206. try
  207. {
  208. if (g_ProvLock.Lock())
  209. {
  210. unload = (0 == CNTEventProviderClassFactory :: locksInProgress)
  211. && (0 == CNTEventProviderClassFactory :: objectsInProgress);
  213. if (unload)
  214. {
  215. for (DWORD i = 0; i < NT_EVTLOG_MAX_CLASSES; i++)
  216. {
  217. if (WbemTaskObject::g_ClassArray[i])
  218. {
  219. WbemTaskObject::g_ClassArray[i]->Release();
  220. WbemTaskObject::g_ClassArray[i] = NULL;
  221. }
  222. }
  224. CEventlogRecord::EmptyDllMap();
  225. CEventlogRecord::EmptyUsersMap();
  226. delete g_pMgr;
  227. g_pMgr = NULL;
  228. CNTEventProvider::FreeGlobalSIDs();
  231. if (CNTEventProvider::g_secMutex != NULL)
  232. {
  233. delete CNTEventProvider::g_secMutex;
  234. CNTEventProvider::g_secMutex = NULL;
  235. }
  237. }
  239. g_ProvLock.Unlock();
  240. }
  241. }
  242. catch(Structured_Exception e_SE)
  243. {
  244. unload = FALSE;
  245. }
  246. catch(Heap_Exception e_HE)
  247. {
  248. unload = FALSE;
  249. }
  250. catch(...)
  251. {
  252. unload = FALSE;
  253. }
  255. return unload ? ResultFromScode ( S_OK ) : ResultFromScode ( S_FALSE ) ;
  256. }
  258. //Strings used during self registeration
  260. #define REG_FORMAT2_STR L"%s%s"
  261. #define REG_FORMAT3_STR L"%s%s\\%s"
  262. #define VER_IND_STR L"VersionIndependentProgID"
  263. #define NOT_INTERT_STR L"NotInsertable"
  264. #define INPROC32_STR L"InprocServer32"
  265. #define PROGID_STR L"ProgID"
  266. #define THREADING_MODULE_STR L"ThreadingModel"
  267. #define APARTMENT_STR L"Both"
  269. #define CLSID_STR L"CLSID\\"
  271. #define PROVIDER_NAME_STR L"Microsoft WBEM NT Eventlog Event Provider"
  272. #define PROVIDER_STR L"WBEM.NT.EVENTLOG.EVENT.PROVIDER"
  273. #define H_PROVIDER_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.EVENT.PROVIDER"
  274. #define PROVIDER_CVER_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.EVENT.PROVIDER\\CurVer"
  275. #define PROVIDER_CLSID_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.EVENT.PROVIDER\\CLSID"
  276. #define PROVIDER_VER_CLSID_STR L"WBEM.NT.EVENTLOG.EVENT.PROVIDER.0\\CLSID"
  277. #define PROVIDER_VER_STR L"WBEM.NT.EVENTLOG.EVENT.PROVIDER.0"
  278. #define H_PROVIDER_VER_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.EVENT.PROVIDER.0"
  280. #define INST_PROVIDER_NAME_STR L"Microsoft WBEM NT Eventlog Instance Provider"
  281. #define INST_PROVIDER_STR L"WBEM.NT.EVENTLOG.INSTANCE.PROVIDER"
  282. #define H_INST_PROVIDER_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.INSTANCE.PROVIDER"
  283. #define INST_PROVIDER_CVER_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.INSTANCE.PROVIDER\\CurVer"
  284. #define INST_PROVIDER_CLSID_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.INSTANCE.PROVIDER\\CLSID"
  285. #define INST_PROVIDER_VER_CLSID_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.INSTANCE.PROVIDER.0\\CLSID"
  286. #define INST_PROVIDER_VER_STR L"WBEM.NT.EVENTLOG.INSTANCE.PROVIDER.0"
  287. #define H_INST_PROVIDER_VER_STR L"SOFTWARE\\Classes\\WBEM.NT.EVENTLOG.INSTANCE.PROVIDER.0"
  290. /***************************************************************************
  291. * SetKeyAndValue
  292. *
  293. * Purpose:
  294. * Private helper function for DllRegisterServer that creates
  295. * a key, sets a value, and closes that key.
  296. *
  297. * Parameters:
  298. * pszKey LPTSTR to the ame of the key
  299. * pszSubkey LPTSTR ro the name of a subkey
  300. * pszValue LPTSTR to the value to store
  301. *
  302. * Return Value:
  303. * BOOL TRUE if successful, FALSE otherwise.
  304. ***************************************************************************/
  306. BOOL SetKeyAndValue(wchar_t* pszKey, wchar_t* pszSubkey, wchar_t* pszValueName, wchar_t* pszValue)
  307. {
  308. HKEY hKey;
  309. wchar_t szKey[256];
  311. StringCchCopyW ( szKey, 256, HKEYCLASSES );
  312. if ( FAILED ( StringCchCatW ( szKey, 256, pszKey ) ) )
  313. {
  314. return FALSE;
  315. }
  317. if (NULL!=pszSubkey)
  318. {
  319. if ( FAILED ( StringCchCatW ( szKey, 256, L"\\") ) )
  320. {
  321. return FALSE;
  322. }
  324. if ( FAILED ( StringCchCatW ( szKey, 256, pszSubkey ) ) )
  325. {
  326. return FALSE;
  327. }
  328. }
  330. if (ERROR_SUCCESS!=RegCreateKeyEx(HKEY_LOCAL_MACHINE
  331. , szKey, 0, NULL, REG_OPTION_NON_VOLATILE
  332. , KEY_ALL_ACCESS, NULL, &hKey, NULL))
  333. return FALSE;
  335. if (NULL!=pszValue)
  336. {
  337. if (ERROR_SUCCESS != RegSetValueEx(hKey, pszValueName, 0, REG_SZ, (BYTE *)pszValue
  338. , (lstrlen(pszValue)+1)*sizeof(wchar_t)))
  339. return FALSE;
  340. }
  341. RegCloseKey(hKey);
  342. return TRUE;
  343. }
  345. /***************************************************************************
  346. * DllRegisterServer
  347. *
  348. * Purpose:
  349. * Instructs the server to create its own registry entries
  350. *
  351. * Parameters:
  352. * None
  353. *
  354. * Return Value:
  355. * HRESULT NOERROR if registration successful, error
  356. * otherwise.
  357. ***************************************************************************/
  358. STDAPI DllRegisterServer()
  359. {
  360. HRESULT status = S_OK ;
  361. SetStructuredExceptionHandler seh;
  363. try
  364. {
  365. wchar_t szModule[MAX_PATH + 1];
  366. DWORD t_Status = GetModuleFileName(g_hInst,(wchar_t*)szModule, MAX_PATH + 1);
  367. if ( t_Status == 0 )
  368. {
  369. return E_UNEXPECTED ;
  370. }
  372. wchar_t szProviderClassID[128];
  373. wchar_t szProviderCLSIDClassID[128];
  374. StringFromGUID2(CLSID_CNTEventProviderClassFactory,szProviderClassID, 128);
  376. StringCchCopyW ( szProviderCLSIDClassID, 128, CLSID_STR );
  377. if ( FAILED ( StringCchCatW ( szProviderCLSIDClassID, 128, szProviderClassID ) ) )
  378. {
  379. return SELFREG_E_CLASS;
  380. }
  382. //Create entries under CLSID
  383. if (FALSE ==SetKeyAndValue(szProviderCLSIDClassID, NULL, NULL, PROVIDER_NAME_STR))
  384. return SELFREG_E_CLASS;
  385. if (FALSE ==SetKeyAndValue(szProviderCLSIDClassID, PROGID_STR, NULL, PROVIDER_VER_STR))
  386. return SELFREG_E_CLASS;
  387. if (FALSE ==SetKeyAndValue(szProviderCLSIDClassID, VER_IND_STR, NULL, PROVIDER_STR))
  388. return SELFREG_E_CLASS;
  389. if (FALSE ==SetKeyAndValue(szProviderCLSIDClassID, NOT_INTERT_STR, NULL, NULL))
  390. return SELFREG_E_CLASS;
  391. if (FALSE ==SetKeyAndValue(szProviderCLSIDClassID, INPROC32_STR, NULL,szModule))
  392. return SELFREG_E_CLASS;
  393. if (FALSE ==SetKeyAndValue(szProviderCLSIDClassID, INPROC32_STR,THREADING_MODULE_STR, APARTMENT_STR))
  394. return SELFREG_E_CLASS;
  396. wchar_t szInstProviderClassID[128];
  397. wchar_t szInstProviderCLSIDClassID[128];
  398. StringFromGUID2(CLSID_CNTEventInstanceProviderClassFactory,szInstProviderClassID, 128);
  400. StringCchCopyW ( szInstProviderCLSIDClassID, 128, CLSID_STR );
  401. if ( FAILED ( StringCchCatW ( szInstProviderCLSIDClassID, 128, szInstProviderClassID ) ) )
  402. {
  403. return SELFREG_E_CLASS;
  404. }
  406. //Create entries under CLSID
  407. if (FALSE ==SetKeyAndValue(szInstProviderCLSIDClassID, NULL, NULL, INST_PROVIDER_NAME_STR))
  408. return SELFREG_E_CLASS;
  409. if (FALSE ==SetKeyAndValue(szInstProviderCLSIDClassID, PROGID_STR, NULL, INST_PROVIDER_VER_STR))
  410. return SELFREG_E_CLASS;
  411. if (FALSE ==SetKeyAndValue(szInstProviderCLSIDClassID, VER_IND_STR, NULL, INST_PROVIDER_STR))
  412. return SELFREG_E_CLASS;
  413. if (FALSE ==SetKeyAndValue(szInstProviderCLSIDClassID, NOT_INTERT_STR, NULL, NULL))
  414. return SELFREG_E_CLASS;
  415. if (FALSE ==SetKeyAndValue(szInstProviderCLSIDClassID, INPROC32_STR, NULL,szModule))
  416. return SELFREG_E_CLASS;
  417. if (FALSE ==SetKeyAndValue(szInstProviderCLSIDClassID, INPROC32_STR,THREADING_MODULE_STR, APARTMENT_STR))
  418. return SELFREG_E_CLASS;
  419. }
  420. catch(Structured_Exception e_SE)
  421. {
  422. status = E_UNEXPECTED;
  423. }
  424. catch(Heap_Exception e_HE)
  425. {
  426. status = E_OUTOFMEMORY;
  427. }
  428. catch(...)
  429. {
  430. status = E_UNEXPECTED;
  431. }
  433. return status ;
  434. }
  436. /***************************************************************************
  437. * DllUnregisterServer
  438. *
  439. * Purpose:
  440. * Instructs the server to remove its own registry entries
  441. *
  442. * Parameters:
  443. * None
  444. *
  445. * Return Value:
  446. * HRESULT NOERROR if registration successful, error
  447. * otherwise.
  448. ***************************************************************************/
  450. STDAPI DllUnregisterServer(void)
  451. {
  452. HRESULT status = S_OK ;
  453. SetStructuredExceptionHandler seh;
  455. try
  456. {
  457. wchar_t szTemp[128];
  458. wchar_t szProviderClassID[128];
  459. wchar_t szProviderCLSIDClassID[128];
  461. //event provider
  462. StringFromGUID2(CLSID_CNTEventProviderClassFactory,szProviderClassID, 128);
  464. StringCchCopyW ( szProviderCLSIDClassID, 128, CLSID_STR );
  465. if ( FAILED ( StringCchCatW ( szProviderCLSIDClassID, 128, szProviderClassID ) ) )
  466. {
  467. return SELFREG_E_CLASS ;
  468. }
  470. //Delete ProgID keys
  471. RegDeleteKey(HKEY_LOCAL_MACHINE, PROVIDER_CVER_STR);
  472. RegDeleteKey(HKEY_LOCAL_MACHINE, PROVIDER_CLSID_STR);
  473. RegDeleteKey(HKEY_LOCAL_MACHINE, H_PROVIDER_STR);
  475. //Delete VersionIndependentProgID keys
  476. RegDeleteKey(HKEY_LOCAL_MACHINE, PROVIDER_VER_CLSID_STR);
  477. RegDeleteKey(HKEY_LOCAL_MACHINE, H_PROVIDER_VER_STR);
  479. //Delete entries under CLSID
  481. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szProviderCLSIDClassID, PROGID_STR);
  482. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  484. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szProviderCLSIDClassID, VER_IND_STR);
  485. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  487. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szProviderCLSIDClassID, NOT_INTERT_STR);
  488. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  490. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szProviderCLSIDClassID, INPROC32_STR);
  491. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  493. StringCchPrintf(szTemp, 128, REG_FORMAT2_STR, HKEYCLASSES, szProviderCLSIDClassID);
  494. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  496. wchar_t szInstProviderClassID[128];
  497. wchar_t szInstProviderCLSIDClassID[128];
  499. //instance provider
  500. StringFromGUID2(CLSID_CNTEventInstanceProviderClassFactory, szInstProviderClassID, 128);
  502. StringCchCopyW ( szInstProviderCLSIDClassID, 128, CLSID_STR );
  503. if ( FAILED ( StringCchCatW ( szInstProviderCLSIDClassID, 128, szInstProviderClassID ) ) )
  504. {
  505. return SELFREG_E_CLASS ;
  506. }
  508. //Delete ProgID keys
  509. RegDeleteKey(HKEY_LOCAL_MACHINE, INST_PROVIDER_CVER_STR);
  510. RegDeleteKey(HKEY_LOCAL_MACHINE, INST_PROVIDER_CLSID_STR);
  511. RegDeleteKey(HKEY_LOCAL_MACHINE, H_INST_PROVIDER_STR);
  513. //Delete VersionIndependentProgID keys
  514. RegDeleteKey(HKEY_LOCAL_MACHINE, INST_PROVIDER_VER_CLSID_STR);
  515. RegDeleteKey(HKEY_LOCAL_MACHINE, H_INST_PROVIDER_VER_STR);
  517. //Delete entries under CLSID
  519. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szInstProviderCLSIDClassID, PROGID_STR);
  520. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  522. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szInstProviderCLSIDClassID, VER_IND_STR);
  523. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  525. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szInstProviderCLSIDClassID, NOT_INTERT_STR);
  526. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  528. StringCchPrintf(szTemp, 128, REG_FORMAT3_STR, HKEYCLASSES, szInstProviderCLSIDClassID, INPROC32_STR);
  529. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  531. StringCchPrintf(szTemp, 128, REG_FORMAT2_STR, HKEYCLASSES, szInstProviderCLSIDClassID);
  532. RegDeleteKey(HKEY_LOCAL_MACHINE, szTemp);
  533. }
  534. catch(Structured_Exception e_SE)
  535. {
  536. status = E_UNEXPECTED;
  537. }
  538. catch(Heap_Exception e_HE)
  539. {
  540. status = E_OUTOFMEMORY;
  541. }
  542. catch(...)
  543. {
  544. status = E_UNEXPECTED;
  545. }
  547. return status ;
  548. }