archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 75c48ba87f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '75c48ba87f'
${ noResults }
windows-xp/Source/XPSP1/NT/net/rras/dim/admindll/dsrights.c

589 lines
13 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*
  2. File: dsrights.c
  4. Implements the mechanisms needed to grant ras servers the
  5. rights in the DS that they need to operate.
  7. Paul Mayfield, 4/13/98
  8. */
  10. #include "dsrights.h"
  11. #include <mprapip.h>
  12. #include <rtutils.h>
  14. //
  15. // The character that delimits machine names from domain
  16. // names.
  17. //
  18. static const WCHAR pszMachineDelimeter[] = L"\\";
  20. CRITICAL_SECTION DsrLock;
  21. DWORD g_dwTraceId = 0;
  22. DWORD g_dwTraceCount = 0;
  24. //
  25. // Initializes the trace mechanism
  26. //
  27. DWORD
  28. DsrTraceInit()
  29. {
  30. EnterCriticalSection(&DsrLock);
  32. if (g_dwTraceCount == 0)
  33. {
  34. g_dwTraceId = TraceRegisterA("MprDomain");
  35. }
  37. g_dwTraceCount++;
  39. LeaveCriticalSection(&DsrLock);
  41. return NO_ERROR;
  42. }
  44. //
  45. // Cleans up the trace mechansim
  46. //
  47. DWORD
  48. DsrTraceCleanup()
  49. {
  50. EnterCriticalSection(&DsrLock);
  52. if (g_dwTraceCount != 0)
  53. {
  54. g_dwTraceCount--;
  56. if (g_dwTraceCount == 0)
  57. {
  58. TraceDeregisterA(g_dwTraceId);
  59. }
  60. }
  62. LeaveCriticalSection(&DsrLock);
  64. return NO_ERROR;
  65. }
  67. //
  68. // Sends debug trace and returns the given error
  69. //
  70. DWORD DsrTraceEx (
  71. IN DWORD dwErr,
  72. IN LPSTR pszTrace,
  73. IN ...)
  74. {
  75. va_list arglist;
  76. char szBuffer[1024], szTemp[1024];
  78. va_start(arglist, pszTrace);
  79. vsprintf(szTemp, pszTrace, arglist);
  80. va_end(arglist);
  82. sprintf(szBuffer, "Dsr: %s", szTemp);
  84. TracePrintfA(g_dwTraceId, szBuffer);
  86. return dwErr;
  87. }
  89. //
  90. // Allocates memory for use with dsr functions
  91. //
  92. PVOID DsrAlloc(DWORD dwSize, BOOL bZero) {
  93. return GlobalAlloc (bZero ? GPTR : GMEM_FIXED, dwSize);
  94. }
  96. //
  97. // Free memory used by dsr functions
  98. //
  99. DWORD DsrFree(PVOID pvBuf) {
  100. GlobalFree(pvBuf);
  101. return NO_ERROR;
  102. }
  104. //
  105. // Initializes the dcr library
  106. //
  107. DWORD
  108. DsrInit (
  109. OUT DSRINFO * pDsrInfo,
  110. IN PWCHAR pszMachineDomain,
  111. IN PWCHAR pszMachine,
  112. IN PWCHAR pszGroupDomain)
  113. {
  114. DWORD dwErr, dwSize;
  115. HRESULT hr;
  116. WCHAR pszBuf[1024];
  118. // Validate parameters
  119. if (pDsrInfo == NULL)
  120. return ERROR_INVALID_PARAMETER;
  121. ZeroMemory(pDsrInfo, sizeof(DSRINFO));
  123. // Initialize Com
  124. hr = CoInitialize(NULL);
  125. if (FAILED (hr)) {
  126. return DsrTraceEx(
  127. hr,
  128. "DsrInit: %x from CoInitialize",
  129. hr);
  130. }
  132. // Generate the Group DN
  133. dwErr = DsrFindRasServersGroup(
  134. pszGroupDomain,
  135. &(pDsrInfo->pszGroupDN));
  136. if (dwErr != NO_ERROR)
  137. return dwErr;
  139. // Generate the Machine DN
  140. dwErr = DsrFindDomainComputer(
  141. pszMachineDomain,
  142. pszMachine,
  143. &(pDsrInfo->pszMachineDN));
  144. if (dwErr != NO_ERROR)
  145. return dwErr;
  147. return NO_ERROR;
  148. }
  150. //
  151. // Cleans up the dsr library
  152. //
  153. DWORD
  154. DsrCleanup (DSRINFO * pDsrInfo)
  155. {
  156. if (pDsrInfo) {
  157. DSR_FREE (pDsrInfo->pszGroupDN);
  158. DSR_FREE (pDsrInfo->pszMachineDN);
  159. }
  161. CoUninitialize();
  163. return NO_ERROR;
  164. }
  166. //
  167. // Establishes the given machine as being
  168. // or not being a ras server in the domain.
  169. //
  170. // Parameters:
  171. // pszMachine Name of the machine
  172. // bEnable Whether it should or
  173. // shouldn't be a ras server
  174. //
  175. DWORD DsrEstablishComputerAsDomainRasServer (
  176. IN PWCHAR pszDomain,
  177. IN PWCHAR pszMachine,
  178. IN BOOL bEnable)
  179. {
  180. DSRINFO DsrInfo, *pDsrInfo = &DsrInfo;
  181. PWCHAR pszMachineDomain = NULL;
  182. DWORD dwErr = NO_ERROR;
  184. DsrTraceEx(
  185. 0,
  186. "DsrEstablish...: entered: %S, %S, %x",
  187. pszDomain,
  188. pszMachine,
  189. bEnable);
  191. // Parse out the machine's domain.
  192. pszMachineDomain = pszMachine;
  193. pszMachine = wcsstr(pszMachine, pszMachineDelimeter);
  194. if (pszMachine == NULL)
  195. {
  196. return ERROR_INVALID_PARAMETER;
  197. }
  198. *pszMachine = (WCHAR)0;
  199. pszMachine++;
  201. do
  202. {
  203. // Intialize the Dsr library
  204. dwErr = DsrInit(
  205. pDsrInfo,
  206. pszMachineDomain,
  207. pszMachine,
  208. pszDomain);
  209. if (dwErr != NO_ERROR)
  210. {
  211. DsrTraceEx(dwErr, "DsrEstablish...: %x from DsrInit", dwErr);
  212. break;
  213. }
  215. // Attempt to add the machine from the "Computers"
  216. // container
  217. dwErr = DsrGroupAddRemoveMember(
  218. pDsrInfo->pszGroupDN,
  219. pDsrInfo->pszMachineDN,
  220. bEnable);
  221. if (dwErr == ERROR_ALREADY_EXISTS)
  222. {
  223. dwErr = NO_ERROR;
  224. }
  225. if (dwErr != NO_ERROR)
  226. {
  227. DsrTraceEx(dwErr, "DsrEstablish...: %x from Add/Rem", dwErr);
  228. break;
  229. }
  231. } while (FALSE);
  233. // Cleanup
  234. {
  235. DsrCleanup (pDsrInfo);
  236. }
  238. return dwErr;
  239. }
  241. //
  242. // Returns whether the given machine is a member of the remote
  243. // access servers group.
  244. //
  245. DWORD
  246. DsrIsMachineRasServerInDomain(
  247. IN PWCHAR pszDomain,
  248. IN PWCHAR pszMachine,
  249. OUT PBOOL pbIsRasServer)
  250. {
  251. DSRINFO DsrInfo, *pDsrInfo = &DsrInfo;
  252. PWCHAR pszMachineDomain = NULL;
  253. DWORD dwErr = NO_ERROR;
  255. DsrTraceEx(0, "DsrIsRasServerInDomain: entered: %S", pszMachine);
  257. // Parse out the machine's domain.
  258. pszMachineDomain = pszMachine;
  259. pszMachine = wcsstr(pszMachine, pszMachineDelimeter);
  260. if (pszMachine == NULL)
  261. {
  262. return ERROR_INVALID_PARAMETER;
  263. }
  264. *pszMachine = (WCHAR)0;
  265. pszMachine++;
  267. do
  268. {
  269. // Intialize the Dsr library
  270. dwErr = DsrInit(
  271. pDsrInfo,
  272. pszMachineDomain,
  273. pszMachine,
  274. pszDomain);
  275. if (dwErr != NO_ERROR)
  276. {
  277. DsrTraceEx(dwErr, "DsrIsRasSvrInDom: %x from DsrInit", dwErr);
  278. break;
  279. }
  281. // Find out whether the machine is a member of the group
  282. dwErr = DsrGroupIsMember(
  283. pDsrInfo->pszGroupDN,
  284. pDsrInfo->pszMachineDN,
  285. pbIsRasServer);
  286. if (dwErr != NO_ERROR)
  287. {
  288. DsrTraceEx(dwErr, "DsrIsRasSrvInDom: %x from IsMemrGrp", dwErr);
  289. break;
  290. }
  292. } while (FALSE);
  294. // Cleanup
  295. {
  296. DsrCleanup (pDsrInfo);
  297. }
  299. return NO_ERROR;
  300. }
  302. //
  303. // Prepares parameters for the DSR functions. pszDomainComputer
  304. // will be in form <domain>/computer. pszDomain will point to a
  305. // valid domain.
  306. //
  307. DWORD
  308. GenerateDsrParameters(
  309. IN PWCHAR pszDomain,
  310. IN PWCHAR pszMachine,
  311. OUT PWCHAR *ppszDomainComputer,
  312. OUT PWCHAR *ppszGroupDomain)
  313. {
  314. DWORD dwLen, dwErr = NO_ERROR;
  315. PWCHAR pszSlash = NULL;
  316. PDOMAIN_CONTROLLER_INFO pInfo = NULL;
  317. WCHAR pszTemp[MAX_COMPUTERNAME_LENGTH + 1];
  319. // Initailize
  320. *ppszDomainComputer = pszMachine;
  321. *ppszGroupDomain = pszDomain;
  323. do {
  324. // Lookup the current domain if none was specifed
  325. if ((pszDomain == NULL) || (wcslen(pszDomain) == 0)) {
  326. dwErr = DsGetDcName(
  327. NULL,
  328. NULL,
  329. NULL,
  330. NULL,
  331. DS_DIRECTORY_SERVICE_REQUIRED,
  332. &pInfo);
  333. if (dwErr != NO_ERROR)
  334. break;
  336. // Copy the given domain name
  337. dwLen = wcslen(pInfo->DomainName) + 1;
  338. dwLen *= sizeof (WCHAR);
  339. *ppszGroupDomain = (PWCHAR) DsrAlloc(dwLen, FALSE);
  340. if (*ppszGroupDomain == NULL) {
  341. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  342. break;
  343. }
  344. wcscpy(*ppszGroupDomain, pInfo->DomainName);
  345. }
  347. // Make sure that the machine name is in the form
  348. // domain/computer
  349. if (pszMachine)
  350. pszSlash = wcsstr(pszMachine, pszMachineDelimeter);
  351. if (!pszMachine || !pszSlash) {
  352. // Get the domain name if it isn't already
  353. // gotten
  354. if (!pInfo) {
  355. dwErr = DsGetDcName(
  356. NULL,
  357. NULL,
  358. NULL,
  359. NULL,
  360. DS_DIRECTORY_SERVICE_REQUIRED,
  361. &pInfo);
  362. if (dwErr != NO_ERROR)
  363. break;
  364. }
  366. // Get the local computer name if no computer
  367. // name was specified
  368. if ((!pszMachine) || (wcslen(pszMachine) == 0)) {
  369. dwLen = sizeof(pszTemp) / sizeof(WCHAR);
  370. if (! GetComputerName(pszTemp, &dwLen)) {
  371. dwErr = GetLastError();
  372. break;
  373. }
  374. pszMachine = pszTemp;
  375. }
  377. // Allocate the buffer to return the computer name
  378. dwLen = wcslen(pInfo->DomainName) + wcslen(pszMachine) + 2;
  379. dwLen *= sizeof(WCHAR);
  380. *ppszDomainComputer = (PWCHAR) DsrAlloc(dwLen, FALSE);
  381. if (*ppszDomainComputer == NULL) {
  382. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  383. break;
  384. }
  385. wsprintfW(
  386. *ppszDomainComputer,
  387. L"%s%s%s",
  388. pInfo->DomainName,
  389. pszMachineDelimeter,
  390. pszMachine);
  391. }
  393. } while (FALSE);
  395. // Cleanup
  396. {
  397. if (pInfo)
  398. NetApiBufferFree(pInfo);
  399. }
  401. return dwErr;
  402. }
  404. //
  405. // Establishes the given computer as a server in the domain.
  406. // This function must be run under the context of a domain
  407. // admin.
  408. //
  409. DWORD
  410. WINAPI
  411. MprAdminEstablishDomainRasServer (
  412. IN PWCHAR pszDomain,
  413. IN PWCHAR pszMachine,
  414. IN BOOL bEnable)
  415. {
  416. return MprDomainRegisterRasServer(
  417. pszDomain,
  418. pszMachine,
  419. bEnable);
  420. }
  422. DWORD
  423. WINAPI
  424. MprAdminIsDomainRasServer (
  425. IN PWCHAR pszDomain,
  426. IN PWCHAR pszMachine,
  427. OUT PBOOL pbIsRasServer)
  428. {
  429. return MprDomainQueryRasServer(
  430. pszDomain,
  431. pszMachine,
  432. pbIsRasServer);
  433. }
  435. //
  436. // Establishes the given computer as a server in the domain.
  437. // This function must be run under the context of a domain
  438. // admin.
  439. //
  440. DWORD
  441. WINAPI
  442. MprDomainRegisterRasServer (
  443. IN PWCHAR pszDomain,
  444. IN PWCHAR pszMachine,
  445. IN BOOL bEnable)
  446. {
  447. PWCHAR pszDomainComputer, pszGroupDomain;
  448. DWORD dwErr;
  450. do
  451. {
  452. DsrTraceInit();
  454. // Generate the parameters formatted so that
  455. // the dsr functions will accept them.
  456. dwErr = GenerateDsrParameters(
  457. pszDomain,
  458. pszMachine,
  459. &pszDomainComputer,
  460. &pszGroupDomain);
  461. if (dwErr != NO_ERROR)
  462. {
  463. break;
  464. }
  466. dwErr = DsrEstablishComputerAsDomainRasServer (
  467. pszGroupDomain,
  468. pszDomainComputer,
  469. bEnable);
  471. } while (FALSE);
  473. // Cleanup
  474. {
  475. if ((pszDomainComputer) &&
  476. (pszDomainComputer != pszMachine))
  477. {
  478. DsrFree(pszDomainComputer);
  479. }
  480. if ((pszGroupDomain) &&
  481. (pszGroupDomain != pszDomain))
  482. {
  483. DsrFree(pszGroupDomain);
  484. }
  486. DsrTraceCleanup();
  487. }
  489. return dwErr;
  490. }
  492. //
  493. // Determines whether the given machine is an authorized ras
  494. // server in the domain
  495. //
  496. DWORD
  497. WINAPI
  498. MprDomainQueryRasServer (
  499. IN PWCHAR pszDomain,
  500. IN PWCHAR pszMachine,
  501. OUT PBOOL pbIsRasServer)
  502. {
  503. PWCHAR pszDomainComputer, pszGroupDomain;
  504. DWORD dwErr;
  506. do
  507. {
  508. DsrTraceInit();
  510. // Generate the parameters formatted so that
  511. // the dsr functions will accept them.
  512. dwErr = GenerateDsrParameters(
  513. pszDomain,
  514. pszMachine,
  515. &pszDomainComputer,
  516. &pszGroupDomain);
  517. if (dwErr != NO_ERROR)
  518. {
  519. break;
  520. }
  522. // Check the group membership
  523. dwErr = DsrIsMachineRasServerInDomain(
  524. pszGroupDomain,
  525. pszDomainComputer,
  526. pbIsRasServer);
  528. } while (FALSE);
  530. // Cleanup
  531. {
  532. if ((pszDomainComputer) &&
  533. (pszDomainComputer != pszMachine))
  534. {
  535. DsrFree(pszDomainComputer);
  536. }
  537. if ((pszGroupDomain) &&
  538. (pszGroupDomain != pszDomain))
  539. {
  540. DsrFree(pszGroupDomain);
  541. }
  543. DsrTraceCleanup();
  544. }
  546. return dwErr;
  547. }
  549. //
  550. // Enables NT4 Servers in the given domain
  551. //
  552. DWORD
  553. WINAPI
  554. MprDomainSetAccess(
  555. IN PWCHAR pszDomain,
  556. IN DWORD dwAccessFlags)
  557. {
  558. DWORD dwErr;
  560. DsrTraceInit();
  562. dwErr = DsrDomainSetAccess(pszDomain, dwAccessFlags);
  564. DsrTraceCleanup();
  566. return dwErr;
  567. }
  569. //
  570. // Discovers whether NT4 Servers in the given domain
  571. // are enabled.
  572. //
  573. DWORD
  574. WINAPI
  575. MprDomainQueryAccess(
  576. IN PWCHAR pszDomain,
  577. IN LPDWORD lpdwAccessFlags)
  578. {
  579. DWORD dwErr;
  581. DsrTraceInit();
  583. dwErr = DsrDomainQueryAccess(pszDomain, lpdwAccessFlags);
  585. DsrTraceCleanup();
  587. return dwErr;
  588. }