archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/termsrv/admtools/c2config/c2acls/c2regacl.c

334 lines
9.1 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1994 Microsoft Corporation
  5. Module Name:
  7. c2RegAcl.c
  9. Abstract:
  11. Registry ACL processing and display functions
  13. Author:
  15. Bob Watson (a-robw)
  17. Revision History:
  19. 23 Dec 94
  21. --*/
  22. #include <windows.h>
  23. #include <tchar.h>
  24. #include <stdio.h>
  25. #include <c2dll.h>
  26. #include <c2inc.h>
  27. #include <c2utils.h>
  28. #include <strings.h>
  29. #include "c2acls.h"
  30. #include "c2aclres.h"
  33. // define action codes here. They are only meaningful in the
  34. // context of this module.
  36. #define AC_REG_ACLS_MAKE_C2 1
  37. #define AC_REG_ACLS_MAKE_NOTC2 2
  39. #define SECURE C2DLL_C2
  41. static
  42. LONG
  43. ProcessRegistryInf (
  44. IN LPCTSTR szInfFileName
  45. )
  46. /*++
  48. Routine Description:
  50. Read the Registry INF file and update the registry key security
  53. Return Value:
  55. WIN32 status of function
  57. --*/
  58. {
  59. LONG lReturn;
  60. LONG lStatus;
  62. LPTSTR mszRegKeyList;
  63. DWORD dwKeyListSize;
  64. DWORD dwReturnSize;
  66. LPTSTR szThisKey;
  67. TCHAR mszThisSection[SMALL_BUFFER_SIZE];
  69. LPCTSTR szRegKey;
  70. BOOL bDoSubKeys;
  71. PACL paclKey;
  72. SECURITY_DESCRIPTOR sdKey;
  74. if (FileExists(szInfFileName)) {
  75. // file found, so continue
  76. dwReturnSize = 0;
  77. dwKeyListSize = 0;
  78. mszRegKeyList = NULL;
  79. do {
  80. // allocate buffer to hold key list
  81. dwKeyListSize += MAX_PATH * 1024; // add room for 1K keys
  83. // free any previous allocations
  84. GLOBAL_FREE_IF_ALLOC (mszRegKeyList);
  86. mszRegKeyList = (LPTSTR)GLOBAL_ALLOC(dwKeyListSize * sizeof(TCHAR));
  88. // read the keys to process (i.e. get a list of the section
  89. // headers in the .ini file.
  91. dwReturnSize = GetPrivateProfileString (
  92. NULL, // list all sections
  93. NULL, // not used
  94. cmszEmptyString, // empty string for default,
  95. mszRegKeyList,
  96. dwKeyListSize, // buffer size in characters
  97. szInfFileName); // file name
  99. } while (dwReturnSize == (dwKeyListSize -2)); // this value indicates truncation
  101. if (dwReturnSize != 0) {
  102. // process all keys in list
  103. for (szThisKey = mszRegKeyList;
  104. *szThisKey != 0;
  105. szThisKey += lstrlen(szThisKey)+1) {
  107. // read in all the ACEs for this key
  108. dwReturnSize = GetPrivateProfileSection (
  109. szThisKey,
  110. mszThisSection,
  111. SMALL_BUFFER_SIZE,
  112. szInfFileName);
  114. if (dwReturnSize != 0) {
  115. paclKey = (PACL)GLOBAL_ALLOC(SMALL_BUFFER_SIZE);
  116. if (paclKey != NULL) {
  117. InitializeSecurityDescriptor (&sdKey,
  118. SECURITY_DESCRIPTOR_REVISION);
  119. if (InitializeAcl(paclKey, SMALL_BUFFER_SIZE, ACL_REVISION)) {
  120. // make ACL from section
  121. lStatus = MakeAclFromRegSection (
  122. mszThisSection,
  123. paclKey);
  125. // add ACL to Security Descriptor
  126. if (SetSecurityDescriptorDacl (
  127. &sdKey,
  128. TRUE,
  129. paclKey,
  130. FALSE)) {
  132. // DACL built now update key
  134. szRegKey = GetKeyPath (szThisKey, &bDoSubKeys);
  136. lStatus = SetRegistryKeySecurity (
  137. GetRootKey(szThisKey),
  138. szRegKey,
  139. bDoSubKeys,
  140. &sdKey);
  141. } else {
  142. // unable to set securityDesc.
  143. }
  144. } else {
  145. // unable to initialize ACL
  146. }
  147. GLOBAL_FREE_IF_ALLOC (paclKey);
  148. } else {
  149. // unable to allocate ACL buffer
  150. }
  151. } else {
  152. // no entries found in this section
  153. }
  154. } // end while scanning list of sections
  155. } else {
  156. // no section list returned
  157. }
  158. GLOBAL_FREE_IF_ALLOC (mszRegKeyList);
  159. } else {
  160. lReturn = ERROR_FILE_NOT_FOUND;
  161. }
  162. return lReturn;
  163. }
  165. LONG
  166. C2QueryRegistryAcls (
  167. IN LPARAM lParam
  168. )
  169. /*++
  171. Routine Description:
  173. Function called to find out the current state of this configuration
  174. item. This function reads the current state of the item and
  175. sets the C2 Compliance flag and the Status string to reflect
  176. the current value of the configuration item.
  178. For the moment, the registry is not read and compared so no status
  179. is returned.
  181. Arguments:
  183. Pointer to the Dll data block passed as an LPARAM.
  185. ReturnValue:
  187. ERROR_SUCCESS if the function succeeds otherwise a
  188. WIN32 error is returned if an error occurs
  190. --*/
  191. {
  192. PC2DLL_DATA pC2Data;
  194. if (lParam != 0) {
  195. pC2Data = (PC2DLL_DATA)lParam;
  196. // return message based on flag for now
  197. pC2Data->lC2Compliance = C2DLL_UNKNOWN;
  198. lstrcpy (pC2Data->szStatusName,
  199. GetStringResource (GetDllInstance(), IDS_UNABLE_READ));
  200. return ERROR_SUCCESS;
  201. } else {
  202. return ERROR_BAD_ARGUMENTS;
  203. }
  204. }
  206. LONG
  207. C2SetRegistryAcls (
  208. IN LPARAM lParam
  209. )
  210. /*++
  212. Routine Description:
  214. Function called to change the current state of this configuration
  215. item based on an action code passed in the DLL data block. If
  216. this function successfully sets the state of the configuration
  217. item, then the C2 Compliance flag and the Status string to reflect
  218. the new value of the configuration item.
  220. Arguments:
  222. Pointer to the Dll data block passed as an LPARAM.
  224. ReturnValue:
  226. ERROR_SUCCESS if the function succeeds otherwise a
  227. WIN32 error is returned if an error occurs
  229. --*/
  230. {
  231. PC2DLL_DATA pC2Data;
  232. TCHAR szInfFileName[MAX_PATH];
  234. if (lParam != 0) {
  235. pC2Data = (PC2DLL_DATA)lParam;
  236. switch (pC2Data->lActionCode ) {
  237. case AC_REG_ACLS_MAKE_C2:
  238. if (DisplayDllMessageBox(
  239. pC2Data->hWnd,
  240. IDS_REG_ACLS_CONFIRM,
  241. IDS_REG_ACLS_CAPTION,
  242. MBOKCANCEL_QUESTION) == IDOK) {
  244. SET_WAIT_CURSOR;
  246. if (GetFilePath(
  247. GetStringResource(GetDllInstance(), IDS_REGISTRY_ACL_INF),
  248. szInfFileName)) {
  249. if (ProcessRegistryInf(szInfFileName) == ERROR_SUCCESS) {
  250. pC2Data->lC2Compliance = SECURE;
  251. lstrcpy (pC2Data->szStatusName,
  252. GetStringResource(GetDllInstance(), IDS_REG_ACLS_COMPLY));
  253. } else {
  254. // unable to set acl security
  255. }
  256. } else {
  257. // unable to get acl file path
  258. }
  259. SET_ARROW_CURSOR;
  260. } else {
  261. // user opted not to set acls
  262. }
  263. break;
  265. default:
  266. // no change;
  267. break;
  268. }
  269. } else {
  270. return ERROR_BAD_ARGUMENTS;
  271. }
  273. return ERROR_SUCCESS;
  274. }
  276. LONG
  277. C2DisplayRegistryAcls (
  278. IN LPARAM lParam
  279. )
  280. /*++
  282. Routine Description:
  284. Function called to display more information on the configuration
  285. item and provide the user with the option to change the current
  286. setting (if appropriate). If the User "OK's" out of the UI,
  287. then the action code field in the DLL data block is set to the
  288. appropriate (and configuration item-specific) action code so the
  289. "Set" function can be called to perform the desired action. If
  290. the user Cancels out of the UI, then the Action code field is
  291. set to 0 (no action) and no action is performed.
  293. Arguments:
  295. Pointer to the Dll data block passed as an LPARAM.
  297. ReturnValue:
  299. ERROR_SUCCESS if the function succeeds otherwise a
  300. WIN32 error is returned if an error occurs
  302. --*/
  303. {
  304. PC2DLL_DATA pC2Data;
  306. if (lParam != 0) {
  307. pC2Data = (PC2DLL_DATA)lParam;
  308. } else {
  309. return ERROR_BAD_ARGUMENTS;
  310. }
  312. if (pC2Data->lC2Compliance == SECURE) {
  313. DisplayDllMessageBox (
  314. pC2Data->hWnd,
  315. IDS_REG_ACLS_COMPLY,
  316. IDS_REG_ACLS_CAPTION,
  317. MBOK_INFO);
  318. } else {
  319. if (DisplayDllMessageBox (
  320. pC2Data->hWnd,
  321. IDS_REG_ACLS_QUERY_SET,
  322. IDS_REG_ACLS_CAPTION,
  323. MBOKCANCEL_QUESTION) == IDOK) {
  324. pC2Data->lActionCode = AC_REG_ACLS_MAKE_C2;
  325. pC2Data->lActionValue = 0; // not used
  326. } else {
  327. pC2Data->lActionCode = 0; // no action
  328. pC2Data->lActionValue = 0; // not used
  329. }
  330. }
  332. return ERROR_SUCCESS;
  333. }