archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/base/fs/remotefs/dfs/lib/security/filesecurity.cxx

223 lines
4.9 KiB
Raw Normal View History

commiting as it is
4 years ago
  2. //
  3. // Copyright (C) 2000-2002, Microsoft Corporation
  4. //
  5. // File: filesecurity.c
  6. //
  7. // Contents: miscellaneous dfs functions.
  8. //
  9. // History: April 16 2002, Author: Rohanp
  10. //
  11. //-----------------------------------------------------------------------------
  13. #include <nt.h>
  14. #include <ntrtl.h>
  15. #include <nturtl.h>
  16. #include <windows.h>
  17. #include <stdio.h>
  18. #include <stdlib.h>
  19. #include <malloc.h>
  20. #include <dsgetdc.h>
  21. #include <lm.h>
  22. #include <dfsheader.h>
  23. #include <dfsmisc.h>
  24. #include <shellapi.h>
  25. #include <Aclapi.h>
  26. #include <authz.h>
  27. #include <lm.h>
  30. extern
  31. DWORD
  32. DfsIsAccessGrantedBySid(DWORD dwDesiredAccess,
  33. PSECURITY_DESCRIPTOR pSD,
  34. PSID TheSID,
  35. GENERIC_MAPPING * DfsGenericMapping);
  37. GENERIC_MAPPING DfsFileGenericMapping = {
  39. FILE_GENERIC_READ, // Generic read
  41. FILE_GENERIC_WRITE, // Generic write
  43. FILE_GENERIC_EXECUTE,
  44. FILE_ALL_ACCESS
  45. };
  55. DWORD
  56. DfsGetFileSecurityByHandle(IN HANDLE hFile,
  57. OUT PSECURITY_DESCRIPTOR *ppSD)
  58. {
  59. DWORD dwErr = ERROR_SUCCESS;
  60. NTSTATUS Status = 0;
  61. ULONG cNeeded = 0;
  62. SECURITY_INFORMATION SeInfo;
  64. SeInfo = DACL_SECURITY_INFORMATION |GROUP_SECURITY_INFORMATION |OWNER_SECURITY_INFORMATION;
  66. Status = NtQuerySecurityObject(hFile,
  67. SeInfo,
  68. *ppSD,
  69. 0,
  70. &cNeeded);
  71. if(!NT_SUCCESS(Status))
  72. {
  73. if(Status == STATUS_BUFFER_TOO_SMALL)
  74. {
  75. Status = STATUS_SUCCESS;
  76. }
  77. }
  79. dwErr = RtlNtStatusToDosError(Status);
  81. //
  82. // Now, the actual read
  83. //
  84. if(dwErr == ERROR_SUCCESS)
  85. {
  86. *ppSD = (PISECURITY_DESCRIPTOR)LocalAlloc(LMEM_FIXED, cNeeded);
  87. if(*ppSD == NULL)
  88. {
  89. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  90. }
  91. else
  92. {
  93. Status = NtQuerySecurityObject(hFile,
  94. SeInfo,
  95. *ppSD,
  96. cNeeded,
  97. &cNeeded);
  98. }
  99. }
  101. return(dwErr);
  102. }
  105. DWORD
  106. DfsGetFileSecurityByName(PUNICODE_STRING DirectoryName,
  107. PSECURITY_DESCRIPTOR *pSD2)
  108. {
  109. DWORD Status = 0;
  110. ULONG cpsd = 0;
  111. PSECURITY_DESCRIPTOR pSD = NULL;
  112. LPCTSTR pDir = NULL;
  114. pDir = &DirectoryName->Buffer[4];
  115. if (!GetFileSecurity((LPCTSTR)pDir,
  116. DACL_SECURITY_INFORMATION |
  117. GROUP_SECURITY_INFORMATION |
  118. OWNER_SECURITY_INFORMATION,
  119. NULL,
  120. 0,
  121. &cpsd) )
  122. {
  123. Status = GetLastError();
  125. if (ERROR_INSUFFICIENT_BUFFER == Status)
  126. {
  127. if ( NULL == ( pSD = (PSECURITY_DESCRIPTOR )LocalAlloc(LMEM_FIXED, cpsd)))
  128. {
  129. return(ERROR_NOT_ENOUGH_MEMORY);
  130. }
  132. Status = 0;
  134. if (!GetFileSecurity((LPCTSTR)pDir,
  135. DACL_SECURITY_INFORMATION |
  136. GROUP_SECURITY_INFORMATION |
  137. OWNER_SECURITY_INFORMATION,
  138. pSD,
  139. cpsd,
  140. &cpsd) )
  141. {
  143. Status = GetLastError();
  144. }
  145. }
  147. }
  149. *pSD2 = pSD;
  151. return Status;
  152. }
  156. DWORD
  157. DoesLocalSystemHaveWriteAccess(PSECURITY_DESCRIPTOR pSD)
  158. {
  159. DWORD SidSize = 0;
  160. DWORD Status = 0;
  161. DWORD dwError = 0;
  162. DWORD dwDesiredAccess = 0;
  163. BOOL RetVal = FALSE;
  164. PSID TheSID = NULL;
  166. SidSize = SECURITY_MAX_SID_SIZE;
  168. // Allocate enough memory for the largest possible SID
  169. TheSID = LocalAlloc(LMEM_FIXED, SidSize);
  170. if(!TheSID)
  171. {
  172. Status = GetLastError();
  173. goto Exit;
  174. }
  176. if(!CreateWellKnownSid(WinLocalSystemSid, NULL, TheSID, &SidSize))
  177. {
  178. Status = GetLastError();
  179. goto Exit;
  180. }
  183. Status = DfsIsAccessGrantedBySid(GENERIC_WRITE,
  184. pSD,
  185. TheSID,
  186. &DfsFileGenericMapping);
  189. Exit:
  191. if(TheSID)
  192. {
  193. LocalFree (TheSID);
  194. }
  196. return Status;
  197. }
  199. DWORD
  200. CheckDirectoryForLocalSystemAccess(PUNICODE_STRING DirectoryName)
  201. {
  202. DWORD Status = 0;
  203. PSECURITY_DESCRIPTOR pSD = NULL;
  205. Status = DfsGetFileSecurityByName(DirectoryName,
  206. &pSD);
  207. if(Status == ERROR_SUCCESS)
  208. {
  209. Status = DoesLocalSystemHaveWriteAccess(pSD);
  210. }
  212. if(pSD)
  213. {
  214. LocalFree(pSD);
  215. }
  217. return Status;
  218. }