Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

237 lines
6.0 KiB

  1. /******************************************************************************
  2. Copyright (C) Microsoft Corporation
  3. Module Name:
  4. ProcessOwner.CPP
  5. Abstract:
  6. This module deals with Query functionality of OpenFiles.exe
  7. NT command line utility.
  8. Author:
  9. Akhil Gokhale (akhil.gokhale@wipro.com) 25-APRIL-2000
  10. Revision History:
  11. Akhil Gokhale (akhil.gokhale@wipro.com) 25-APRIL-2000 : Created It.
  12. *****************************************************************************/
  13. #include "pch.h"
  14. #include "OpenFiles.h"
  15. #define SAFE_CLOSE_HANDLE(hHandle) \
  16. if(hHandle!=NULL) \
  17. {\
  18. CloseHandle(hHandle);\
  19. hHandle = NULL;\
  20. }\
  21. 1
  22. #define SAFE_FREE_GLOBAL_ALLOC(block) \
  23. if(block!=NULL)\
  24. {\
  25. delete block;\
  26. block = NULL;\
  27. }\
  28. 1
  29. #define SAFE_FREE_ARRAY(arr) \
  30. if(arr != NULL)\
  31. {\
  32. delete [] arr;\
  33. arr = NULL;\
  34. }\
  35. 1
  36. /*****************************************************************************
  37. Routine Description:
  38. Arguments:
  39. result.
  40. Return Value:
  41. ******************************************************************************/
  42. BOOL GetProcessOwner(LPTSTR pszUserName,DWORD hFile)
  43. {
  44. DWORD dwRtnCode = 0;
  45. PSID pSidOwner;
  46. BOOL bRtnBool = TRUE;
  47. LPTSTR DomainName = NULL,AcctName = NULL;
  48. DWORD dwAcctName = 1, dwDomainName = 1;
  49. SID_NAME_USE eUse = SidTypeUnknown;
  50. PSECURITY_DESCRIPTOR pSD=0;
  51. HANDLE hHandle = GetCurrentProcess();
  52. HANDLE hDynHandle = NULL;
  53. HANDLE hDynToken = NULL;
  54. LUID luidValue;
  55. BOOL bResult = FALSE;
  56. HANDLE hToken = NULL;
  57. TOKEN_PRIVILEGES tkp;
  58. bResult = OpenProcessToken(GetCurrentProcess(),TOKEN_ADJUST_PRIVILEGES|TOKEN_QUERY,&hToken);
  59. if(bResult == FALSE)
  60. {
  61. return FALSE;
  62. }
  63. bResult = LookupPrivilegeValue(NULL,SE_SECURITY_NAME,&luidValue );
  64. if(bResult == FALSE)
  65. {
  66. SAFE_CLOSE_HANDLE(hToken);
  67. return FALSE;
  68. }
  69. // Prepare the token privilege structure
  70. tkp.PrivilegeCount = 0;
  71. tkp.Privileges[0].Luid = luidValue;
  72. tkp.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED|SE_PRIVILEGE_USED_FOR_ACCESS;
  73. // Now enable the debug privileges in token
  74. bResult = AdjustTokenPrivileges(hToken,FALSE,&tkp,sizeof(TOKEN_PRIVILEGES),(PTOKEN_PRIVILEGES)NULL,
  75. (PDWORD)NULL);
  76. if(bResult == FALSE)
  77. {
  78. SAFE_CLOSE_HANDLE(hToken);
  79. return FALSE;
  80. }
  81. hDynHandle = OpenProcess(PROCESS_QUERY_INFORMATION,FALSE,hFile);; // Here you can give any valid process ids..
  82. if(hDynHandle == NULL)
  83. {
  84. return FALSE;
  85. }
  86. bResult = OpenProcessToken(hDynHandle,TOKEN_QUERY,&hDynToken);
  87. if(bResult == FALSE)
  88. {
  89. SAFE_CLOSE_HANDLE(hDynHandle);
  90. return FALSE;
  91. }
  92. TOKEN_USER * pUser = NULL;
  93. DWORD cb = 0;
  94. // determine size of the buffer needed to receive all information
  95. if (!GetTokenInformation(hToken, TokenUser, NULL, 0, &cb))
  96. {
  97. if (GetLastError() != ERROR_INSUFFICIENT_BUFFER)
  98. {
  99. SAFE_CLOSE_HANDLE(hDynHandle);
  100. SAFE_CLOSE_HANDLE(hDynToken);
  101. return FALSE;
  102. }
  103. }
  104. pUser = (TOKEN_USER *)_alloca(cb);
  105. if(pUser==NULL)
  106. {
  107. SAFE_CLOSE_HANDLE(hDynHandle);
  108. SAFE_CLOSE_HANDLE(hDynToken);
  109. return FALSE;
  110. }
  111. if (!GetTokenInformation(hDynToken, TokenUser, pUser, cb, &cb))
  112. {
  113. SAFE_CLOSE_HANDLE(hDynHandle);
  114. SAFE_CLOSE_HANDLE(hDynToken);
  115. return FALSE;
  116. }
  117. PSID pSid = pUser->User.Sid;
  118. // Allocate memory for the SID structure.
  119. pSidOwner = new SID;
  120. // Allocate memory for the security descriptor structure.
  121. pSD = new SECURITY_DESCRIPTOR;
  122. if(pSidOwner==NULL ||pSD == NULL)
  123. {
  124. SAFE_CLOSE_HANDLE(hDynHandle);
  125. SAFE_CLOSE_HANDLE(hDynToken);
  126. SAFE_FREE_GLOBAL_ALLOC(pSD);
  127. SAFE_FREE_GLOBAL_ALLOC(pSidOwner);
  128. return FALSE;
  129. }
  130. // First call to LookupAccountSid to get the buffer sizes.
  131. bRtnBool = LookupAccountSid(
  132. NULL, // local computer
  133. pUser->User.Sid,
  134. NULL, // AcctName
  135. (LPDWORD)&dwAcctName,
  136. NULL, // DomainName
  137. (LPDWORD)&dwDomainName,
  138. &eUse);
  139. AcctName = new TCHAR[dwAcctName+1];
  140. DomainName = new TCHAR[dwDomainName+1];
  141. if(AcctName==NULL || DomainName==NULL)
  142. {
  143. SAFE_FREE_ARRAY(AcctName);
  144. SAFE_FREE_ARRAY(DomainName);
  145. return FALSE;
  146. }
  147. // Second call to LookupAccountSid to get the account name.
  148. bRtnBool = LookupAccountSid(
  149. NULL, // name of local or remote computer
  150. pUser->User.Sid, // security identifier
  151. AcctName, // account name buffer
  152. (LPDWORD)&dwAcctName, // size of account name buffer
  153. DomainName, // domain name
  154. (LPDWORD)&dwDomainName, // size of domain name buffer
  155. &eUse); // SID type
  156. SAFE_CLOSE_HANDLE(hDynHandle);
  157. SAFE_CLOSE_HANDLE(hDynToken);
  158. SAFE_FREE_GLOBAL_ALLOC(pSD);
  159. SAFE_FREE_GLOBAL_ALLOC(pSidOwner);
  160. // Check GetLastError for LookupAccountSid error condition.
  161. if (bRtnBool == FALSE)
  162. {
  163. SAFE_FREE_ARRAY(AcctName);
  164. SAFE_FREE_ARRAY(DomainName);
  165. return FALSE;
  166. } else
  167. {
  168. if(lstrcmpi(DomainName,_T("NT AUTHORITY"))==0)
  169. {
  170. SAFE_FREE_ARRAY(AcctName);
  171. SAFE_FREE_ARRAY(DomainName);
  172. return FALSE;
  173. }
  174. else
  175. {
  176. lstrcpy(pszUserName,AcctName);
  177. SAFE_FREE_ARRAY(AcctName);
  178. SAFE_FREE_ARRAY(DomainName);
  179. return TRUE;
  180. }
  181. }
  182. SAFE_FREE_ARRAY(AcctName);
  183. SAFE_FREE_ARRAY(DomainName);
  184. SAFE_CLOSE_HANDLE(hDynHandle);
  185. SAFE_CLOSE_HANDLE(hDynToken);
  186. SAFE_FREE_GLOBAL_ALLOC(pSD);
  187. SAFE_FREE_GLOBAL_ALLOC(pSidOwner);
  188. return FALSE;
  189. }