archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 1b390dddff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1b390dddff'
${ noResults }
windows-xp/Source/XPSP1/NT/admin/wmiprov/trustmon/domain.cpp

563 lines
16 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+----------------------------------------------------------------------------
  2. //
  3. // Windows 2000 Active Directory Service domain trust verification WMI provider
  4. //
  5. // Microsoft Windows
  6. // Copyright (C) Microsoft Corporation, 1992 - 2000
  7. //
  8. // File: domain.cpp
  9. //
  10. // Contents: domain class implementation
  11. //
  12. // Classes: CDomainInfo
  13. //
  14. // History: 27-Mar-00 EricB created
  15. //
  16. //-----------------------------------------------------------------------------
  18. #include <stdafx.h>
  20. PCWSTR CSTR_PROP_LOCAL_DNS_NAME = L"DNSname"; // String
  21. PCWSTR CSTR_PROP_LOCAL_FLAT_NAME = L"FlatName"; // String
  22. PCWSTR CSTR_PROP_LOCAL_SID = L"SID"; // String
  23. PCWSTR CSTR_PROP_LOCAL_TREE_NAME = L"TreeName"; // String
  24. PCWSTR CSTR_PROP_LOCAL_DC_NAME = L"DCname"; // String
  25. // TODO: string property listing the FSMOs owned by this DC?
  27. //Implementaion of CDomainInfo class
  29. //+----------------------------------------------------------------------------
  30. //
  31. // Class: CDomainInfo
  32. //
  33. //-----------------------------------------------------------------------------
  34. CDomainInfo::CDomainInfo()
  35. {
  36. TRACE(L"CDomainInfo::CDomainInfo\n");
  38. m_liLastEnumed.QuadPart = 0;
  39. }
  41. CDomainInfo::~CDomainInfo()
  42. {
  43. TRACE(L"CDomainInfo::~CDomainInfo\n");
  45. Reset();
  46. }
  48. //+----------------------------------------------------------------------------
  49. //
  50. // Method: CDomainInfo::Init
  51. //
  52. // Synopsis: Initializes the CDomainInfo object.
  53. //
  54. //-----------------------------------------------------------------------------
  55. HRESULT
  56. CDomainInfo::Init(IWbemClassObject * pClassDef)
  57. {
  58. TRACE(L"CDomainInfo::Init\n");
  60. NTSTATUS Status = STATUS_SUCCESS;
  61. OBJECT_ATTRIBUTES objectAttributes;
  62. CSmartPolicyHandle chPolicy;
  64. m_sipClassDefLocalDomain = pClassDef;
  66. InitializeObjectAttributes(&objectAttributes, NULL, 0L, NULL, NULL);
  68. // Get Local policy
  69. Status = LsaOpenPolicy(NULL, // Local server
  70. &objectAttributes,
  71. MAXIMUM_ALLOWED, // Needed for Rediscover
  72. &chPolicy);
  74. if (!NT_SUCCESS(Status))
  75. {
  76. TRACE(L"LsaOpenPolicy failed with error %d\n", Status);
  77. return HRESULT_FROM_WIN32(LsaNtStatusToWinError(Status));
  78. }
  80. PPOLICY_DNS_DOMAIN_INFO pDnsDomainInfo;
  82. Status = LsaQueryInformationPolicy(chPolicy,
  83. PolicyDnsDomainInformation,
  84. (PVOID *)&pDnsDomainInfo);
  86. if (!NT_SUCCESS(Status))
  87. {
  88. TRACE(L"LsaQueryInformationPolicy failed with error %d\n", Status);
  89. return HRESULT_FROM_WIN32(LsaNtStatusToWinError(Status));
  90. }
  92. m_strDomainFlatName = pDnsDomainInfo->Name.Buffer;
  93. m_strDomainDnsName = pDnsDomainInfo->DnsDomainName.Buffer;
  94. m_strForestName = pDnsDomainInfo->DnsForestName.Buffer;
  96. if (!SetSid(pDnsDomainInfo->Sid))
  97. {
  98. ASSERT(false);
  99. LsaFreeMemory(pDnsDomainInfo);
  100. return E_OUTOFMEMORY;
  101. }
  103. LsaFreeMemory(pDnsDomainInfo);
  105. DWORD dwBufSize = MAX_COMPUTERNAME_LENGTH + 1;
  107. if (!GetComputerName(m_strDcName.GetBuffer(dwBufSize), &dwBufSize))
  108. {
  109. DWORD dwErr = GetLastError();
  110. TRACE(L"GetComputerName failed with error %d\n", dwErr);
  111. return HRESULT_FROM_WIN32(dwErr);
  112. }
  114. m_strDcName.ReleaseBuffer();
  116. return S_OK;
  117. }
  119. //+----------------------------------------------------------------------------
  120. //
  121. // Method: CDomainInfo::Reset
  122. //
  123. // Synopsis: Free the contents of the trust array and re-initialize it.
  124. //
  125. //-----------------------------------------------------------------------------
  126. void
  127. CDomainInfo::Reset(void)
  128. {
  129. TRACE(L"CDomainInfo::Reset\n");
  131. CTrustInfo * pTrustInfo = NULL;
  133. if (IsEnumerated())
  134. {
  135. // Empty cache
  136. for (UINT i = 0; i < m_vectTrustInfo.size(); ++i)
  137. {
  138. pTrustInfo = m_vectTrustInfo[i];
  139. if (pTrustInfo)
  140. delete pTrustInfo;
  141. }
  142. m_vectTrustInfo.clear();
  143. }
  144. }
  146. //+----------------------------------------------------------------------------
  147. //
  148. // Method: CDomainInfo::SetSid
  149. //
  150. //-----------------------------------------------------------------------------
  151. BOOL
  152. CDomainInfo::SetSid(PSID pSid)
  153. {
  154. if (!pSid)
  155. {
  156. return TRUE;
  157. }
  159. #if !defined(NT4_BUILD)
  160. PWSTR buffer;
  162. BOOL fRet = ConvertSidToStringSid(pSid, &buffer);
  164. if (fRet)
  165. {
  166. m_strSid = buffer;
  167. LocalFree(buffer);
  168. }
  170. return fRet;
  171. #else
  172. // TODO: Code for NT4 ??
  173. #endif
  174. }
  176. //+----------------------------------------------------------------------------
  177. //
  178. // Method: CDomainInfo::EnumerateTrusts
  179. //
  180. // Synopsis: List the trusts for this domain.
  181. //
  182. //-----------------------------------------------------------------------------
  183. #if !defined(NT4_BUILD)
  184. HRESULT
  185. CDomainInfo::EnumerateTrusts(void)
  186. {
  187. TRACE(L"CDomainInfo::EnumerateTrusts\n");
  189. DWORD dwRet = ERROR_SUCCESS;
  190. CTrustInfo * pTrustInfo = NULL;
  191. PDS_DOMAIN_TRUSTS rgTrusts = NULL;
  192. ULONG nTrustCount = 0;
  194. Reset();
  196. dwRet = DsEnumerateDomainTrusts(NULL,
  197. DS_DOMAIN_DIRECT_OUTBOUND |
  198. DS_DOMAIN_DIRECT_INBOUND,
  199. &rgTrusts,
  200. &nTrustCount);
  202. if (ERROR_SUCCESS != dwRet)
  203. {
  204. TRACE(L"DsEnumerateDomainTrusts failed with error %d\n", dwRet);
  205. return HRESULT_FROM_WIN32(dwRet);
  206. }
  208. for (ULONG i = 0; i < nTrustCount; i++)
  209. {
  210. pTrustInfo = new CTrustInfo();
  211. BREAK_ON_NULL(pTrustInfo);
  212. if (rgTrusts[i].DnsDomainName)
  213. {
  214. // Downlevel domains don't have a DNS name.
  215. //
  216. pTrustInfo->SetTrustedDomain(rgTrusts[i].DnsDomainName);
  217. }
  218. else
  219. {
  220. // So use the flat name instead.
  221. //
  222. pTrustInfo->SetTrustedDomain(rgTrusts[i].NetbiosDomainName);
  223. }
  224. pTrustInfo->SetFlatName(rgTrusts[i].NetbiosDomainName);
  225. BREAK_ON_NULL(pTrustInfo->SetSid(rgTrusts[i].DomainSid));
  226. pTrustInfo->SetTrustType(rgTrusts[i].TrustType);
  227. pTrustInfo->SetTrustDirectionFromFlags(rgTrusts[i].Flags);
  228. pTrustInfo->SetTrustAttributes(rgTrusts[i].TrustAttributes);
  229. pTrustInfo->SetFlags(rgTrusts[i].Flags);
  231. m_vectTrustInfo.push_back(pTrustInfo);
  233. pTrustInfo = NULL;
  234. }
  236. if (rgTrusts)
  237. {
  238. NetApiBufferFree(rgTrusts);
  239. }
  241. if (ERROR_SUCCESS == dwRet)
  242. {
  243. SYSTEMTIME st;
  245. GetSystemTime(&st);
  246. SystemTimeToFileTime(&st, (LPFILETIME)&m_liLastEnumed);
  247. }
  249. return HRESULT_FROM_WIN32(dwRet);
  250. }
  252. #else // NT4_BUILD
  254. HRESULT
  255. CDomainInfo::EnumerateTrusts(void)
  256. {
  257. TRACE(L"CDomainInfo::EnumerateTrusts\n");
  259. NTSTATUS Status = STATUS_SUCCESS;
  260. DWORD dwErr = ERROR_SUCCESS;
  261. ULONG i = 0;
  262. CTrustInfo * pTrustInfo = NULL;
  264. Reset();
  266. LSA_ENUMERATION_HANDLE hEnumContext = NULL;
  267. ULONG nTrustCount = 0;
  268. ULONG nTotalCount = 0;
  269. ULONG j = 0;
  270. PLSA_TRUST_INFORMATION pTrustDomainInfo = NULL;
  271. DWORD hResumeHandle = 0;
  272. LPUSER_INFO_0 pUserList = NULL;
  273. CTrustInfo * pTempTrustInfo = NULL;
  274. LPWSTR Lop = NULL;
  275. CSmartPolicyHandle chPolicy;
  276. OBJECT_ATTRIBUTES objectAttributes;
  278. InitializeObjectAttributes(&objectAttributes, NULL, 0L, NULL, NULL);
  280. //
  281. // We'll have to do this the old fashioned way. That means that we'll enumerate all of
  282. // the trust directly, save them off in a list, and then go through and enumerate all
  283. // of the interdomain trust accounts and merge those into the list.
  284. //
  285. do
  286. {
  287. Status = LsaOpenPolicy(NULL, // Local server
  288. &objectAttributes,
  289. MAXIMUM_ALLOWED, // Needed for Rediscover
  290. &chPolicy);
  292. Status = LsaEnumerateTrustedDomains(chPolicy,
  293. &hEnumContext,
  294. (void**)&pTrustDomainInfo,
  295. ULONG_MAX,
  296. &nTrustCount );
  298. if (NT_SUCCESS(Status) || Status == STATUS_MORE_ENTRIES)
  299. {
  300. dwErr = ERROR_SUCCESS;
  301. for ( i = 0; i < nTrustCount; i++ )
  302. {
  303. pTrustInfo = new CTrustInfo();
  304. CHECK_NULL( pTrustInfo, CLEAN_RETURN );
  305. pTrustInfo->SetTrustedDomain( pTrustDomainInfo[i].Name.Buffer );
  306. pTrustInfo->SetFlatName( pTrustDomainInfo[i].Name.Buffer );
  307. pTrustInfo->SetSid( pTrustDomainInfo[i].Sid );
  308. pTrustInfo->SetTrustType( TRUST_TYPE_DOWNLEVEL );
  309. pTrustInfo->SetTrustDirection( TRUST_DIRECTION_OUTBOUND );
  310. m_vectTrustInfo.push_back( pTrustInfo );
  311. pTrustInfo = NULL;
  312. }
  313. LsaFreeMemory( pTrustDomainInfo );
  314. pTrustDomainInfo = NULL;
  315. }
  316. else
  317. dwErr = LsaNtStatusToWinError(Status);
  318. } while (Status == STATUS_MORE_ENTRIES);
  320. if( Status == STATUS_NO_MORE_ENTRIES )
  321. dwErr = ERROR_SUCCESS;
  322. //
  323. // Now, let's add in the user accounts
  324. //
  325. if ( dwErr == ERROR_SUCCESS )
  326. {
  327. do
  328. {
  329. nTrustCount = 0;
  330. nTotalCount = 0;
  332. dwErr = NetUserEnum(NULL,
  333. 0,
  334. FILTER_INTERDOMAIN_TRUST_ACCOUNT,
  335. (LPBYTE *)&pUserList,
  336. MAX_PREFERRED_LENGTH,
  337. &nTrustCount,
  338. &nTotalCount,
  339. &hResumeHandle);
  341. if ( dwErr == ERROR_SUCCESS || dwErr == ERROR_MORE_DATA )
  342. {
  343. dwErr = ERROR_SUCCESS;
  344. for ( i = 0; i < nTrustCount; i++ )
  345. {
  346. Lop = wcsrchr( pUserList[ i ].usri0_name, L'$' );
  347. if ( Lop )
  348. {
  349. *Lop = UNICODE_NULL;
  350. }
  352. for ( j = 0; j < m_vectTrustInfo.size(); j++ )
  353. {
  354. pTempTrustInfo = m_vectTrustInfo[j];
  355. if ( _wcsicmp( pUserList[ i ].usri0_name, pTempTrustInfo->GetTrustedDomain() ) == 0 )
  356. {
  357. pTempTrustInfo->SetTrustDirection( TRUST_DIRECTION_INBOUND | TRUST_DIRECTION_OUTBOUND );
  358. break;
  359. }
  360. }
  362. // If it wasn't found, add it...
  363. if ( j == m_vectTrustInfo.size() )
  364. {
  365. pTrustInfo = new CTrustInfo();
  366. CHECK_NULL( pTrustInfo, CLEAN_RETURN );
  367. pTrustInfo->SetTrustedDomain( pUserList[ i ].usri0_name );
  368. pTrustInfo->SetFlatName( pUserList[ i ].usri0_name );
  369. pTrustInfo->SetTrustType( TRUST_TYPE_DOWNLEVEL );
  370. pTrustInfo->SetTrustDirection( TRUST_DIRECTION_INBOUND );
  372. m_vectTrustInfo.push_back( pTrustInfo );
  374. pTrustInfo = NULL;
  375. }
  377. if ( Lop )
  378. {
  379. *Lop = L'$';
  380. }
  381. }
  383. NetApiBufferFree( pUserList );
  384. pUserList = NULL;
  385. }
  387. } while ( dwErr == ERROR_MORE_DATA );
  388. }
  390. CLEAN_RETURN:
  391. if( pUserList )
  392. NetApiBufferFree( pUserList );
  393. if( pTrustDomainInfo )
  394. LsaFreeMemory( pTrustDomainInfo );
  396. if (ERROR_SUCCESS == dwErr)
  397. {
  398. SYSTEMTIME st;
  400. GetSystemTime(&st);
  401. SystemTimeToFileTime(&st, (LPFILETIME)&m_liLastEnumed);
  402. }
  404. return HRESULT_FROM_WIN32(dwErr);
  405. }
  406. #endif // NT4_BUILD
  408. //+----------------------------------------------------------------------------
  409. //
  410. // Method: CDomainInfo::FindTrust
  411. //
  412. // Synopsis: Find a trust by trusted Domain Name
  413. //
  414. //-----------------------------------------------------------------------------
  415. CTrustInfo *
  416. CDomainInfo::FindTrust(PCWSTR pwzTrust)
  417. {
  418. TRACE(L"CDomainInfo::FindTrust\n");
  419. TRACE(L"\nlooking for domain %s\n", pwzTrust);
  420. ASSERT(IsEnumerated());
  422. ULONG i = 0;
  423. for( i = 0; i < m_vectTrustInfo.size(); ++i )
  424. {
  425. int nStrComp = CompareString(LOCALE_SYSTEM_DEFAULT,
  426. NORM_IGNORECASE,
  427. (m_vectTrustInfo[i])->GetTrustedDomain(), -1,
  428. pwzTrust, -1 );
  429. ASSERT( nStrComp );
  431. if( CSTR_EQUAL == nStrComp )
  432. {
  433. TRACE(L"Trust found!\n");
  434. return m_vectTrustInfo[i];
  435. }
  436. }
  438. return NULL; // Not Found
  439. }
  441. //+----------------------------------------------------------------------------
  442. //
  443. // Method: CDomainInfo::GetTrustByIndex
  444. //
  445. // Synopsis: Get trust info by Index
  446. //
  447. //-----------------------------------------------------------------------------
  448. CTrustInfo *
  449. CDomainInfo::GetTrustByIndex(size_t index)
  450. {
  451. ASSERT(IsEnumerated());
  453. if (index < Size())
  454. {
  455. return m_vectTrustInfo[index];
  456. }
  457. else
  458. {
  459. ASSERT(FALSE);
  460. return NULL;
  461. }
  462. }
  464. //+----------------------------------------------------------------------------
  465. //
  466. // Method: CDomainInfo::IsTrustListStale
  467. //
  468. // Synopsis: Checks to see if the last emumeration time is older than the
  469. // passed in criteria.
  470. //
  471. // Returns: TRUE if older.
  472. //
  473. // Notes: If the trusts haven't been enumerated (m_liLastEnumed == 0),
  474. // then the enumeration is defined to be stale.
  475. //
  476. //-----------------------------------------------------------------------------
  477. BOOL
  478. CDomainInfo::IsTrustListStale(LARGE_INTEGER liMaxAge)
  479. {
  480. TRACE(L"CDomainInfo::IsTrustListStale(0x%08x), MaxAge = %d\n",
  481. this, liMaxAge.QuadPart / TRUSTMON_FILETIMES_PER_MINUTE);
  482. BOOL fStale = FALSE;
  483. LARGE_INTEGER liCurrentTime;
  484. SYSTEMTIME st;
  486. GetSystemTime(&st);
  487. SystemTimeToFileTime(&st, (LPFILETIME)&liCurrentTime);
  489. fStale = (m_liLastEnumed.QuadPart + liMaxAge.QuadPart) < liCurrentTime.QuadPart;
  491. return fStale;
  492. }
  494. //+----------------------------------------------------------------------------
  495. //
  496. // Method: CDomainInfo::CreateAndSendInst
  497. //
  498. // Synopsis: Returns a copy of the current instance back to WMI
  499. //
  500. //-----------------------------------------------------------------------------
  501. HRESULT
  502. CDomainInfo::CreateAndSendInst(IWbemObjectSink * pResponseHandler)
  503. {
  504. TRACE(L"CDomainInfo::CreateAndSendInst\n");
  505. HRESULT hr = WBEM_S_NO_ERROR;
  507. do
  508. {
  509. CComPtr<IWbemClassObject> ipNewInst;
  510. CComVariant var;
  512. //
  513. // Create a new instance of the WMI class object
  514. //
  515. hr = m_sipClassDefLocalDomain->SpawnInstance(0, &ipNewInst);
  517. BREAK_ON_FAIL;
  519. // Set the DNS property value
  520. var = GetDnsName();
  521. hr = ipNewInst->Put(CSTR_PROP_LOCAL_DNS_NAME, 0, &var, 0);
  522. TRACE(L"\tCreating instance %s\n", var.bstrVal);
  523. BREAK_ON_FAIL;
  525. // Set the flat name property value
  526. var = GetFlatName();
  527. hr = ipNewInst->Put(CSTR_PROP_LOCAL_FLAT_NAME, 0, &var, 0);
  528. TRACE(L"\twith flat name %s\n", var.bstrVal);
  529. BREAK_ON_FAIL;
  531. // Set the SID property value
  532. var = GetSid();
  533. hr = ipNewInst->Put(CSTR_PROP_LOCAL_SID, 0, &var, 0);
  534. TRACE(L"\twith SID %s\n", var.bstrVal);
  535. BREAK_ON_FAIL;
  537. // Set the forest name property value
  538. var = GetForestName();
  539. hr = ipNewInst->Put(CSTR_PROP_LOCAL_TREE_NAME, 0, &var, 0);
  540. TRACE(L"\twith forest name %s\n", var.bstrVal);
  541. BREAK_ON_FAIL;
  543. // Set the DC name property value
  544. var = GetDcName();
  545. hr = ipNewInst->Put(CSTR_PROP_LOCAL_DC_NAME, 0, &var, 0);
  546. TRACE(L"\ton DC %s\n", var.bstrVal);
  547. BREAK_ON_FAIL;
  549. //
  550. // Send the object to the caller
  551. //
  552. // [In] param, no need to addref.
  554. IWbemClassObject * pNewInstance = ipNewInst;
  556. hr = pResponseHandler->Indicate(1, &pNewInstance);
  558. BREAK_ON_FAIL;
  560. } while(FALSE);
  562. return hr;
  563. }