archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
 
 
 
 
 
 
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/admin/admt/common/commonlib/sdhelper.cpp

105 lines
3.0 KiB
Raw Permalink Blame History

#include <windows.h>
#include <objbase.h>
#include "sdhelper.h"
#include "commalog.hpp"
#define ADMINISTRATORS 1
#define ACCOUNT_OPERATORS 2
#define BACKUP_OPERATORS 3
#define DOMAIN_ADMINS 4
#define CREATOR_OWNER 5
#define USERS 6
#define SYSTEM 7
PSID ConvertSID(PSID originalSid)
{
DWORD sidLen = GetLengthSid(originalSid);
PSID copiedSid = (PSID) malloc(sidLen);
if (copiedSid)
{
if (!CopySid(sidLen, copiedSid, originalSid))
{
free(copiedSid);
copiedSid = NULL;
}
}
return copiedSid;
}
TSD* BuildAdminsAndSystemSDForCOM()
{
return BuildAdminsAndSystemSD(COM_RIGHTS_EXECUTE);
}
TSD* BuildAdminsAndSystemSD(DWORD accessMask)
{
TSD* builtSD = NULL;
PSID adminsSid = GetWellKnownSid(ADMINISTRATORS);
PSID systemSid = GetWellKnownSid(SYSTEM);
if (adminsSid && systemSid)
{
PSID copiedAdminsSid = ConvertSID(adminsSid);
PSID groupSid = ConvertSID(adminsSid);
builtSD = new TSD(McsUnknownSD);
BOOL bSuccess = FALSE;
if (copiedAdminsSid && groupSid && builtSD)
{
TACE adminsAce(ACCESS_ALLOWED_ACE_TYPE,0,accessMask,copiedAdminsSid);
TACE systemAce(ACCESS_ALLOWED_ACE_TYPE,0,accessMask,systemSid);
// see if both TACE objects get allocated properly
if (adminsAce.GetBuffer() && systemAce.GetBuffer())
{
PACL acl = NULL; // start with an empty ACL
PACL tempAcl;
builtSD->ACLAddAce(&acl,&adminsAce,-1);
if (acl != NULL)
{
tempAcl = acl;
builtSD->ACLAddAce(&acl,&systemAce,-1);
if (acl != tempAcl)
free(tempAcl);
}
if (acl != NULL)
{
// need to set the owner
builtSD->SetOwner(copiedAdminsSid);
copiedAdminsSid = NULL; // memory is taken care of by builtSD destructor
// need to set the group
builtSD->SetGroup(groupSid);
groupSid = NULL; // memory is taken care of by builtSD destructor
// set the DACL part
builtSD->SetDacl(acl,TRUE); // builtSD destructor will take care of acl
bSuccess = TRUE;
}
}
}
if (!bSuccess)
{
if (copiedAdminsSid)
free(copiedAdminsSid);
if (groupSid)
free(groupSid);
if (builtSD)
{
delete builtSD;
builtSD = NULL;
}
}
}
if (adminsSid)
FreeSid(adminsSid);
if (systemSid)
FreeSid(systemSid);
return builtSD;
}