archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/net/config/netoc/snmpocx.cpp

567 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "pch.h"
  2. #pragma hdrstop
  3. #include <aclapi.h>
  4. #include "netoc.h"
  5. #include "ncreg.h"
  6. #include "snmpocx.h"
  9. // Under opened registry subkey hKey,
  10. // removes the registry value name who has a value data of pwszRegValData
  11. // if it exists.
  12. HRESULT HrSnmpRegDeleteValueData(
  13. IN HKEY hKey,
  14. IN LPCWSTR pwszRegValData)
  15. {
  16. HRESULT hr = S_OK;
  17. DWORD dwIndex = 0;
  18. DWORD dwNameSize;
  19. DWORD dwValueSize;
  20. DWORD dwValueType;
  21. WCHAR wszName[MAX_PATH];
  22. WCHAR wszValue[MAX_PATH];
  24. Assert (hKey);
  25. Assert (pwszRegValData);
  27. // initialize buffer sizes
  28. dwNameSize = sizeof(wszName) / sizeof(wszName[0]); // size in number of TCHARs
  29. dwValueSize = sizeof(wszValue); // size in number of bytes
  31. // loop until error, end of list, or found subagent to be removed
  32. while (S_OK == hr)
  33. {
  34. // read next value
  35. hr = HrRegEnumValue(
  36. hKey,
  37. dwIndex,
  38. wszName,
  39. &dwNameSize,
  40. &dwValueType,
  41. (LPBYTE)wszValue,
  42. &dwValueSize
  43. );
  45. // validate return code
  46. if (S_OK == hr)
  47. {
  48. // see if the subagent value data matched the one to be removed
  49. if (!wcscmp(pwszRegValData, wszValue))
  50. {
  51. hr = HrRegDeleteValue(hKey, wszName);
  52. if (S_OK != hr)
  53. {
  54. TraceTag(ttidError,
  55. "SnmpNetOc: HrRegDeleteValue: failed to delete %S. hr = %x.",
  56. wszName, hr);
  57. }
  58. break;
  59. }
  61. // re-initialize buffer sizes
  62. dwNameSize = sizeof(wszName) / sizeof(wszName[0]); // size in number of TCHARs
  63. dwValueSize = sizeof(wszValue); // size in number of bytes
  65. // next
  66. dwIndex++;
  67. }
  68. else if (HRESULT_FROM_WIN32(ERROR_NO_MORE_ITEMS) == hr)
  69. {
  70. // success
  71. break;
  72. }
  73. }
  75. return hr;
  76. }
  78. // Removes Subagent Configuration from registry according to the given
  79. // array of SUBAGENT_REMOVAL_INFO
  80. HRESULT SnmpRemoveSubAgents
  81. (
  82. IN const SUBAGENT_REMOVAL_INFO * prgSRI, // array of SUBAGENT_REMOVAL_INFO
  83. IN UINT cParams // number of elements in the arrary
  84. )
  85. {
  86. if ((NULL == prgSRI) || (0 == cParams))
  87. {
  88. TraceError( "No Subagents need to be removed.", S_FALSE);
  89. return S_FALSE;
  90. }
  91. HRESULT hr = S_OK;
  92. HRESULT hrTmp = S_OK;
  93. UINT i = 0;
  94. HKEY hKey = NULL;
  96. hr = HrRegOpenKeyEx(HKEY_LOCAL_MACHINE, REG_KEY_EXTENSION_AGENTS,
  97. KEY_READ | KEY_WRITE, &hKey);
  98. if (S_OK != hr)
  99. {
  100. TraceTag(ttidError,
  101. "SnmpNetOc: HrRegOpenKeyEx: failed to open %S. hr = %x.",
  102. REG_KEY_EXTENSION_AGENTS, hr);
  103. return hr;
  104. }
  106. for (i = 0; i < cParams; i++)
  107. {
  108. hrTmp = S_OK;
  109. if (
  110. // removal from all SKU AND has valid registry info
  111. (!prgSRI[i].pfnFRemoveSubagent && prgSRI[i].pwszRegKey
  112. && prgSRI[i].pwszRegValData)
  113. ||
  114. // removal depending on given function and has valid registry info
  115. (prgSRI[i].pfnFRemoveSubagent &&
  116. (*(prgSRI[i].pfnFRemoveSubagent))() &&
  117. prgSRI[i].pwszRegKey && prgSRI[i].pwszRegValData)
  118. )
  119. {
  120. // removes everything under subagent registry key if it exits
  121. hrTmp = HrRegDeleteKeyTree(HKEY_LOCAL_MACHINE, prgSRI[i].pwszRegKey);
  122. if (S_OK != hrTmp)
  123. {
  124. TraceTag(ttidError,
  125. "SnmpNetOc: HrRegDeleteKeyTree: failed to delete %S. hr = %x.",
  126. prgSRI[i].pwszRegKey, hrTmp);
  127. }
  129. // Under registry subkey of REG_KEY_EXTENSION_AGENTS,
  130. // removes the registry value name who has value data identical to
  131. // pwszRegKey.
  132. hrTmp = HrSnmpRegDeleteValueData(hKey, prgSRI[i].pwszRegValData);
  133. if (S_OK != hrTmp)
  134. {
  135. TraceTag(ttidError,
  136. "SnmpNetOc: HrSnmpRegDeleteValueData: failed to delete %S value data. hr = %x.",
  137. prgSRI[i].pwszRegValData, hrTmp);
  138. }
  140. }
  141. }
  142. RegSafeCloseKey(hKey);
  143. //we dont pass the error of hrTmp out of this function because
  144. //there is not much we can do with this error
  145. return hr;
  146. }
  148. // Allocates an admin ACL to be used with security descriptor
  149. PACL AllocACL()
  150. {
  151. PACL pAcl = NULL;
  152. PSID pSidAdmins = NULL;
  153. SID_IDENTIFIER_AUTHORITY Authority = SECURITY_NT_AUTHORITY;
  155. EXPLICIT_ACCESS ea[1];
  157. // Create a SID for the BUILTIN\Administrators group.
  158. if ( !AllocateAndInitializeSid( &Authority,
  159. 2,
  160. SECURITY_BUILTIN_DOMAIN_RID,
  161. DOMAIN_ALIAS_RID_ADMINS,
  162. 0, 0, 0, 0, 0, 0,
  163. &pSidAdmins ))
  164. {
  165. return NULL;
  166. }
  169. // Initialize an EXPLICIT_ACCESS structure for an ACE.
  170. ZeroMemory(&ea, 1 * sizeof(EXPLICIT_ACCESS));
  172. // The ACE will allow the Administrators group full access to the key.
  173. ea[0].grfAccessPermissions = KEY_ALL_ACCESS;
  174. ea[0].grfAccessMode = SET_ACCESS;
  175. ea[0].grfInheritance= NO_INHERITANCE;
  176. ea[0].Trustee.TrusteeForm = TRUSTEE_IS_SID;
  177. ea[0].Trustee.TrusteeType = TRUSTEE_IS_GROUP;
  178. ea[0].Trustee.ptstrName = (LPTSTR) pSidAdmins;
  180. // Create a new ACL that contains the new ACEs.
  181. if (SetEntriesInAcl(1, ea, NULL, &pAcl) != ERROR_SUCCESS)
  182. {
  183. TraceError( "SetEntriesInAcl Error", GetLastError() );
  184. FreeSid(pSidAdmins);
  185. return NULL;
  186. }
  188. FreeSid(pSidAdmins);
  190. return pAcl;
  191. }
  192. // frees a ACL
  193. void FreeACL( PACL pAcl)
  194. {
  195. if (pAcl != NULL)
  196. LocalFree(pAcl);
  197. }
  199. HRESULT SnmpAddAdminAclToKey(PWSTR pwszKey)
  200. {
  201. HKEY hKey = NULL;
  202. HRESULT hr;
  203. PACL pAcl = NULL;
  204. SECURITY_DESCRIPTOR S_Desc;
  206. if (pwszKey == NULL)
  207. return S_FALSE;
  209. // open registy key
  210. hr = HrRegOpenKeyEx(HKEY_LOCAL_MACHINE,
  211. pwszKey, // subkey name
  212. KEY_ALL_ACCESS, // want WRITE_DAC,
  213. &hKey // handle to open key
  214. );
  215. if (hr != S_OK)
  216. {
  217. TraceError("SnmpAddAdminDaclToKey::HrRegOpenKeyEx", hr);
  218. return hr;
  219. }
  221. // Initialize a security descriptor.
  222. if (InitializeSecurityDescriptor (&S_Desc, SECURITY_DESCRIPTOR_REVISION) == 0)
  223. {
  224. RegSafeCloseKey(hKey);
  225. TraceError("SnmpAddAdminDaclToKey::InitializeSecurityDescriptor", GetLastError());
  226. return S_FALSE;
  227. }
  229. // get the ACL and put it into the security descriptor
  230. if ( (pAcl = AllocACL()) != NULL )
  231. {
  232. if (!SetSecurityDescriptorDacl (&S_Desc, TRUE, pAcl, FALSE))
  233. {
  234. FreeACL(pAcl);
  235. RegSafeCloseKey(hKey);
  236. TraceError("SnmpAddAdminDaclToKey::SetSecurityDescriptorDacl Failed.", GetLastError());
  237. return S_FALSE;
  238. }
  239. }
  240. else
  241. {
  242. RegSafeCloseKey(hKey);
  243. TraceError("SnmpAddAdminAclToKey::AllocACL Failed.", GetLastError());
  244. return S_FALSE;
  245. }
  248. if (RegSetKeySecurity (hKey, DACL_SECURITY_INFORMATION, &S_Desc) != ERROR_SUCCESS)
  249. {
  250. FreeACL(pAcl);
  251. RegSafeCloseKey(hKey);
  252. TraceError("SnmpAddAdminDaclToKey::RegSetKeySecurity", GetLastError());
  253. return S_FALSE;
  254. }
  256. FreeACL(pAcl);
  257. RegSafeCloseKey(hKey);
  259. return S_OK;
  260. }
  262. HRESULT
  263. SnmpRegWriteDword(PWSTR pszRegKey,
  264. PWSTR pszValueName,
  265. DWORD dwValueData)
  266. {
  267. HRESULT hr;
  268. HKEY hKey;
  270. hr = HrRegCreateKeyEx(HKEY_LOCAL_MACHINE,
  271. pszRegKey,
  272. 0,
  273. KEY_QUERY_VALUE | KEY_SET_VALUE,
  274. NULL,
  275. &hKey,
  276. NULL);
  277. if (hr != S_OK)
  278. {
  279. return hr;
  280. }
  282. hr = HrRegSetDword(hKey, pszValueName, dwValueData);
  284. RegSafeCloseKey(hKey);
  286. return hr;
  287. }
  289. HRESULT
  290. SnmpRegUpgEnableAuthTraps()
  291. {
  292. HRESULT hr = S_OK;
  293. HKEY hKey;
  295. // open the ..SNMP\Parameters registry key
  296. hr = HrRegOpenKeyEx(HKEY_LOCAL_MACHINE,
  297. REG_KEY_AUTHENTICATION_TRAPS,
  298. KEY_QUERY_VALUE,
  299. &hKey);
  301. // if successful, look for EnableAuthenticationTrap switch
  302. // in the old registry location
  303. if (hr == S_OK)
  304. {
  305. DWORD dwAuthTrap;
  307. // get the value of the old 'switch' parameter
  308. hr = HrRegQueryDword(hKey,
  309. REG_VALUE_SWITCH,
  310. &dwAuthTrap);
  312. // if successful transfer the value to the new location
  313. // if this fails, it means the SNMP service worked with the default value
  314. // which is already installed through the inf file.
  315. if (hr == S_OK)
  316. {
  317. hr = SnmpRegWriteDword(REG_KEY_SNMP_PARAMETERS,
  318. REG_VALUE_AUTHENTICATION_TRAPS,
  319. dwAuthTrap);
  320. }
  322. // close and delete the old registry key as it is obsolete
  323. RegSafeCloseKey(hKey);
  324. HrRegDeleteKey (HKEY_LOCAL_MACHINE,
  325. REG_KEY_AUTHENTICATION_TRAPS);
  326. }
  328. return hr;
  330. }
  332. HRESULT
  333. SnmpRegWriteCommunities(PWSTR pszCommArray)
  334. {
  335. HRESULT hr;
  336. HKEY hKey;
  337. PWSTR pszComm, pszAccess;
  338. DWORD dwAccess;
  340. hr = HrRegDeleteKey(HKEY_LOCAL_MACHINE,
  341. REG_KEY_VALID_COMMUNITIES);
  343. if (hr != S_OK)
  344. {
  345. return hr;
  346. }
  349. hr = HrRegCreateKeyEx(HKEY_LOCAL_MACHINE,
  350. REG_KEY_VALID_COMMUNITIES,
  351. 0,
  352. KEY_QUERY_VALUE | KEY_SET_VALUE,
  353. NULL,
  354. &hKey,
  355. NULL);
  357. if (hr != S_OK)
  358. {
  359. return hr;
  360. }
  363. pszComm = pszCommArray;
  364. while (*pszComm != L'\0')
  365. {
  366. dwAccess = SEC_READ_ONLY_VALUE;
  367. pszAccess = wcschr(pszComm, L':');
  368. if (pszAccess != NULL)
  369. {
  370. *pszAccess = L'\0';
  371. pszAccess++;
  373. if (_wcsicmp(pszAccess, SEC_NONE_NAME)==0)
  374. {
  375. dwAccess = SEC_NONE_VALUE;
  376. }
  377. if (_wcsicmp(pszAccess, SEC_NOTIFY_NAME)==0)
  378. {
  379. dwAccess = SEC_NOTIFY_VALUE;
  380. }
  381. if (_wcsicmp(pszAccess, SEC_READ_ONLY_NAME)==0)
  382. {
  383. dwAccess = SEC_READ_ONLY_VALUE;
  384. }
  385. if (_wcsicmp(pszAccess, SEC_READ_WRITE_NAME)==0)
  386. {
  387. dwAccess = SEC_READ_WRITE_VALUE;
  388. }
  389. if (_wcsicmp(pszAccess, SEC_READ_CREATE_NAME)==0)
  390. {
  391. dwAccess = SEC_READ_CREATE_VALUE;
  392. }
  393. }
  395. hr = HrRegSetDword(hKey, pszComm, dwAccess);
  396. if (hr != S_OK)
  397. {
  398. break;
  399. }
  400. if (pszAccess != NULL)
  401. {
  402. pszComm = pszAccess;
  403. }
  404. pszComm += (wcslen(pszComm) + 1);
  405. }
  407. RegSafeCloseKey(hKey);
  409. return hr;
  410. }
  412. HRESULT SnmpRegWritePermittedMgrs(BOOL bAnyHost,
  413. PWSTR pMgrsList)
  414. {
  415. HRESULT hr;
  416. HKEY hKey;
  417. UINT nMgr = 1;
  418. WCHAR szMgr[16];
  420. hr = HrRegDeleteKey(HKEY_LOCAL_MACHINE,
  421. REG_KEY_PERMITTED_MANAGERS);
  423. if (hr != S_OK)
  424. {
  425. return hr;
  426. }
  428. hr = HrRegCreateKeyEx(HKEY_LOCAL_MACHINE,
  429. REG_KEY_PERMITTED_MANAGERS,
  430. 0,
  431. KEY_QUERY_VALUE | KEY_SET_VALUE,
  432. NULL,
  433. &hKey,
  434. NULL);
  436. if (hr != S_OK)
  437. {
  438. return hr;
  439. }
  441. if (bAnyHost)
  442. {
  443. RegSafeCloseKey(hKey);
  444. return hr;
  445. }
  447. AssertSz(pMgrsList, "pMgrsList is NULL and bAnyHost is FALSE in SnmpRegWritePermittedMgrs");
  448. while(*pMgrsList != L'\0')
  449. {
  450. swprintf(szMgr, L"%d", nMgr++);
  451. hr = HrRegSetSz(hKey, szMgr, pMgrsList);
  452. if (hr != S_OK)
  453. break;
  454. pMgrsList += wcslen(pMgrsList) + 1;
  455. }
  457. RegSafeCloseKey(hKey);
  459. return hr;
  460. }
  462. HRESULT
  463. SnmpRegWriteTraps(tstring tstrVariable,
  464. PWSTR pTstrArray)
  465. {
  466. HKEY hKey, hKeyTrap;
  467. HRESULT hr = S_OK;
  468. UINT nTrap = 1;
  469. WCHAR szTrap[16];
  471. hr = HrRegDeleteKeyTree(HKEY_LOCAL_MACHINE,
  472. REG_KEY_TRAP_DESTINATIONS);
  474. if (hr != S_OK)
  475. return hr;
  477. hr = HrRegCreateKeyEx(HKEY_LOCAL_MACHINE,
  478. REG_KEY_TRAP_DESTINATIONS,
  479. 0,
  480. KEY_QUERY_VALUE | KEY_SET_VALUE,
  481. NULL,
  482. &hKey,
  483. NULL);
  485. if (hr != S_OK)
  486. return hr;
  488. hr = HrRegCreateKeyEx(hKey,
  489. tstrVariable.c_str(),
  490. 0,
  491. KEY_QUERY_VALUE | KEY_SET_VALUE,
  492. NULL,
  493. &hKeyTrap,
  494. NULL);
  495. if (hr == S_OK)
  496. {
  497. // it might just happen that you want to create a
  498. // community but you don't have the trap destination
  499. // addresses yet. We should let this happen.
  500. if (pTstrArray != NULL)
  501. {
  502. while(*pTstrArray != L'\0')
  503. {
  504. swprintf(szTrap, L"%d", nTrap++);
  505. hr = HrRegSetSz(hKeyTrap, szTrap, pTstrArray);
  506. if (hr != S_OK)
  507. break;
  508. pTstrArray += wcslen(pTstrArray) + 1;
  509. }
  510. }
  512. RegSafeCloseKey(hKeyTrap);
  513. }
  515. RegSafeCloseKey(hKey);
  517. return hr;
  518. }
  520. HRESULT
  521. SnmpRegWriteTstring(PWSTR pRegKey,
  522. PWSTR pValueName,
  523. tstring tstrValueData)
  524. {
  525. HRESULT hr = S_OK;
  526. HKEY hKey;
  528. hr = HrRegCreateKeyEx(HKEY_LOCAL_MACHINE,
  529. pRegKey,
  530. 0,
  531. KEY_QUERY_VALUE | KEY_SET_VALUE,
  532. NULL,
  533. &hKey,
  534. NULL);
  535. if (hr != S_OK)
  536. return hr;
  538. hr = HrRegSetString(hKey, pValueName, tstrValueData);
  540. RegSafeCloseKey(hKey);
  542. return hr;
  543. }
  545. DWORD
  546. SnmpStrArrayToServices(PWSTR pSrvArray)
  547. {
  548. DWORD dwServices = 0;
  550. while(*pSrvArray)
  551. {
  552. if(_wcsicmp(pSrvArray, SRV_AGNT_PHYSICAL_NAME)==0)
  553. dwServices |= SRV_AGNT_PHYSICAL_VALUE;
  554. if(_wcsicmp(pSrvArray, SRV_AGNT_DATALINK_NAME)==0)
  555. dwServices |= SRV_AGNT_DATALINK_VALUE;
  556. if(_wcsicmp(pSrvArray, SRV_AGNT_ENDTOEND_NAME)==0)
  557. dwServices |= SRV_AGNT_ENDTOEND_VALUE;
  558. if(_wcsicmp(pSrvArray, SRV_AGNT_INTERNET_NAME)==0)
  559. dwServices |= SRV_AGNT_INTERNET_VALUE;
  560. if(_wcsicmp(pSrvArray, SRV_AGNT_APPLICATIONS_NAME)==0)
  561. dwServices |= SRV_AGNT_APPLICATIONS_VALUE;
  563. pSrvArray += wcslen(pSrvArray) + 1;
  564. }
  565. return dwServices;
  566. }