archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
4.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/inetsrv/iis/ui/admin/comprop/setperm.cpp

300 lines
7.4 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1994-1999 Microsoft Corporation
  5. Module Name :
  7. setperm.cpp
  9. Abstract:
  11. IIS Security Wizard helper file
  13. Author:
  15. Sergei Antonov (sergeia)
  17. Project:
  19. Internet Services Manager
  21. Revision History:
  22. 7/12/99 created
  23. --*/
  25. //
  26. // Include Files
  27. //
  28. #include "stdafx.h"
  29. #include "comprop.h"
  30. #include <aclapi.h>
  31. #include <ntseapi.h>
  32. #include <shlwapi.h>
  34. static HRESULT
  35. SetSecurityDeep(
  36. LPTSTR *ppszBuffer,
  37. UINT * pcchBuffer,
  38. DWORD dwAttributes,
  39. SECURITY_INFORMATION si,
  40. PACL pDacl,
  41. PACL pSacl
  42. );
  44. static BOOL
  45. PathIsDotOrDotDot(LPCTSTR pszPath)
  46. {
  47. if (TEXT('.') == *pszPath++)
  48. {
  49. if (TEXT('\0') == *pszPath || (TEXT('.') == *pszPath && TEXT('\0') == *(pszPath + 1)))
  50. return TRUE;
  51. }
  52. return FALSE;
  53. }
  55. HRESULT
  56. CPWSummary::SetPermToChildren(
  57. IN CString& FileName,
  58. IN SECURITY_INFORMATION si,
  59. IN PACL pDacl,
  60. IN PACL pSacl
  61. )
  62. {
  63. HRESULT hr = S_OK;
  64. LPTSTR pszBuffer = NULL;
  65. UINT cchBuffer = 0, cchFolder;
  66. HANDLE hFind;
  67. WIN32_FIND_DATA fd;
  69. pszBuffer = (LPTSTR)LocalAlloc(LMEM_FIXED, 2 * MAX_PATH * sizeof(TCHAR));
  70. if (pszBuffer == NULL)
  71. return E_OUTOFMEMORY;
  72. cchBuffer = (UINT)LocalSize(pszBuffer) / sizeof(TCHAR);
  73. lstrcpy(pszBuffer, FileName);
  74. cchFolder = lstrlen(pszBuffer);
  75. // Append a backslash if it's not there already
  76. if (pszBuffer[cchFolder-1] != TEXT('\\'))
  77. {
  78. pszBuffer[cchFolder] = TEXT('\\');
  79. cchFolder++;
  80. }
  82. // Append the '*' wildcard
  83. pszBuffer[cchFolder] = TEXT('*');
  84. pszBuffer[cchFolder+1] = TEXT('\0');
  86. if (INVALID_HANDLE_VALUE != (hFind = FindFirstFile(pszBuffer, &fd)))
  87. {
  88. do
  89. {
  90. if (PathIsDotOrDotDot(fd.cFileName))
  91. continue;
  92. //
  93. // Build full path name and recurse
  94. //
  95. lstrcpyn(pszBuffer + cchFolder, fd.cFileName, cchBuffer - cchFolder);
  96. if (fd.dwFileAttributes == FILE_ATTRIBUTE_DIRECTORY)
  97. {
  98. hr = SetSecurityDeep(&pszBuffer,
  99. &cchBuffer,
  100. fd.dwFileAttributes,
  101. si,
  102. pDacl,
  103. pSacl);
  104. }
  105. else
  106. {
  107. hr = HRESULT_FROM_WIN32(SetNamedSecurityInfo(
  108. pszBuffer,
  109. SE_FILE_OBJECT,
  110. si,
  111. NULL,
  112. NULL,
  113. pDacl,
  114. pSacl));
  115. }
  116. }
  117. while (S_OK == hr && FindNextFile(hFind, &fd));
  118. FindClose(hFind);
  119. }
  120. if (pszBuffer != NULL)
  121. LocalFree(pszBuffer);
  122. return hr;
  123. }
  125. static HRESULT
  126. SetSecurityDeep(
  127. LPTSTR *ppszBuffer,
  128. UINT * pcchBuffer,
  129. DWORD dwAttributes,
  130. SECURITY_INFORMATION si,
  131. PACL pDacl,
  132. PACL pSacl
  133. )
  134. {
  135. HRESULT hr = S_OK;
  136. DWORD dwErr = NOERROR;
  137. LPTSTR pszBuffer;
  138. BOOL bWriteDone = FALSE;
  140. pszBuffer = *ppszBuffer;
  141. //
  142. // Recursively apply the new SD to subfolders
  143. //
  144. if (dwAttributes & FILE_ATTRIBUTE_DIRECTORY)
  145. {
  146. HANDLE hFind;
  147. WIN32_FIND_DATA fd;
  148. UINT cchFolder;
  149. UINT cchSizeRequired;
  151. cchFolder = lstrlen(pszBuffer);
  153. //
  154. // If the buffer is getting tight, realloc
  155. //
  156. cchSizeRequired = cchFolder + 1 + sizeof(fd.cFileName) / sizeof(TCHAR); // 1 for backslash
  157. if (cchSizeRequired > *pcchBuffer)
  158. {
  159. cchSizeRequired += MAX_PATH; // so we don't realloc as often
  160. pszBuffer = (LPTSTR)LocalReAlloc(*ppszBuffer, cchSizeRequired * sizeof(TCHAR), LMEM_MOVEABLE);
  161. if (pszBuffer)
  162. {
  163. *ppszBuffer = pszBuffer;
  164. *pcchBuffer = cchSizeRequired;
  165. }
  166. else
  167. {
  168. // fd.cFileName typically has some empty space, so we
  169. // may be able to continue
  170. pszBuffer = *ppszBuffer;
  171. if (*pcchBuffer < cchFolder + 3) // backslash, '*', and NULL
  172. return E_OUTOFMEMORY;
  173. }
  174. }
  176. // Append a backslash if it's not there already
  177. if (pszBuffer[cchFolder-1] != TEXT('\\'))
  178. {
  179. pszBuffer[cchFolder] = TEXT('\\');
  180. cchFolder++;
  181. }
  183. // Append the '*' wildcard
  184. pszBuffer[cchFolder] = TEXT('*');
  185. pszBuffer[cchFolder+1] = TEXT('\0');
  187. //
  188. // Enumerate the folder contents
  189. //
  190. hFind = FindFirstFile(pszBuffer, &fd);
  192. if (INVALID_HANDLE_VALUE == hFind)
  193. {
  194. dwErr = GetLastError();
  196. if (ERROR_ACCESS_DENIED == dwErr)
  197. {
  198. // Remove the '*' wildcard
  199. pszBuffer[cchFolder-1] = TEXT('\0');
  201. if (si & DACL_SECURITY_INFORMATION)
  202. {
  203. //
  204. // The user may be granting themselves access, so call
  205. // WriteObjectSecurity and retry FindFirstFile.
  206. //
  207. // Don't blindly call WriteObjectSecurity before FindFirstFile
  208. // since it's possible the user has access now but is removing
  209. // their own access.
  210. //
  211. bWriteDone = TRUE;
  212. hr = HRESULT_FROM_WIN32(SetNamedSecurityInfo(
  213. pszBuffer,
  214. SE_FILE_OBJECT,
  215. si,
  216. NULL,
  217. NULL,
  218. pDacl,
  219. pSacl));
  220. if (SUCCEEDED(hr))
  221. {
  222. // Retry FindFirstFile
  223. pszBuffer[cchFolder-1] = TEXT('\\');
  224. hFind = FindFirstFile(pszBuffer, &fd);
  225. }
  226. }
  227. }
  228. }
  230. if (hFind != INVALID_HANDLE_VALUE)
  231. {
  232. do
  233. {
  234. if (PathIsDotOrDotDot(fd.cFileName))
  235. continue;
  237. //
  238. // Build full path name and recurse
  239. //
  240. lstrcpyn(pszBuffer + cchFolder, fd.cFileName, *pcchBuffer - cchFolder);
  241. hr = SetSecurityDeep(ppszBuffer,
  242. pcchBuffer,
  243. fd.dwFileAttributes,
  244. si,
  245. pDacl,
  246. pSacl);
  248. // In case the buffer was reallocated
  249. pszBuffer = *ppszBuffer;
  250. }
  251. while (S_OK == hr && FindNextFile(hFind, &fd));
  253. FindClose(hFind);
  254. }
  255. else if (NOERROR != dwErr)
  256. {
  257. hr = S_FALSE; // abort
  258. }
  260. // Truncate the path back to the original length (sans backslash)
  261. pszBuffer[cchFolder-1] = TEXT('\0');
  262. }
  264. //
  265. // Finally, write out the new security descriptor
  266. //
  267. if (!bWriteDone)
  268. {
  269. hr = HRESULT_FROM_WIN32(SetNamedSecurityInfo(
  270. pszBuffer,
  271. SE_FILE_OBJECT,
  272. si,
  273. NULL,
  274. NULL,
  275. pDacl,
  276. pSacl));
  277. }
  278. if (SUCCEEDED(hr))
  279. {
  280. //
  281. // Notify the shell if we change permissions on a folder (48220)
  282. //
  283. if ( (dwAttributes & FILE_ATTRIBUTE_DIRECTORY)
  284. && (si & DACL_SECURITY_INFORMATION)
  285. )
  286. {
  287. SHChangeNotify(
  288. SHCNE_UPDATEDIR,
  289. SHCNF_PATH | SHCNF_FLUSH | SHCNF_FLUSHNOWAIT,
  290. pszBuffer,
  291. NULL);
  292. }
  293. }
  294. else
  295. {
  296. hr = S_FALSE; // abort
  297. }
  298. return hr;
  299. }