archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 75c48ba87f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '75c48ba87f'
${ noResults }
windows-xp/Source/XPSP1/NT/printscan/print/spooler/localspl/mapsd.c

292 lines
6.9 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1990 - 1995 Microsoft Corporation
  5. Module Name:
  7. mapsd.c
  9. Abstract:
  11. Mapping Security Descriptors
  14. Author:
  16. Dave Snipp (DaveSn) 15-Mar-1991
  18. Revision History:
  20. --*/
  22. #include <precomp.h>
  24. // Object types
  25. //
  28. extern GENERIC_MAPPING GenericMapping[];
  30. PSECURITY_DESCRIPTOR
  31. MapPrinterSDToShareSD(
  32. PSECURITY_DESCRIPTOR pPrinterSD
  33. );
  35. BOOL
  36. ProcessSecurityDescriptorDacl(
  37. PSECURITY_DESCRIPTOR pSourceSD,
  38. PACL *ppDacl,
  39. LPBOOL pDefaulted
  40. );
  42. DWORD
  43. MapPrinterMaskToShareMask(
  44. DWORD PrinterMask
  45. );
  47. PSECURITY_DESCRIPTOR
  48. MapPrinterSDToShareSD(
  49. PSECURITY_DESCRIPTOR pPrinterSD
  50. )
  51. {
  52. SECURITY_DESCRIPTOR AbsoluteSD;
  53. PSECURITY_DESCRIPTOR pRelative;
  54. BOOL Defaulted = FALSE;
  55. PSID pOwnerSid = NULL;
  56. PSID pGroupSid = NULL;
  57. PACL pDacl = NULL;
  58. BOOL ErrorOccurred = FALSE;
  59. DWORD SDLength = 0;
  62. if (!IsValidSecurityDescriptor(pPrinterSD)) {
  63. return(NULL);
  64. }
  65. if (!InitializeSecurityDescriptor (&AbsoluteSD ,SECURITY_DESCRIPTOR_REVISION1)) {
  66. return(NULL);
  67. }
  69. if(GetSecurityDescriptorOwner( pPrinterSD,
  70. &pOwnerSid, &Defaulted ) )
  71. SetSecurityDescriptorOwner( &AbsoluteSD,
  72. pOwnerSid, Defaulted );
  73. else
  74. ErrorOccurred = TRUE;
  76. if( GetSecurityDescriptorGroup( pPrinterSD,
  77. &pGroupSid, &Defaulted ) )
  78. SetSecurityDescriptorGroup( &AbsoluteSD,
  79. pGroupSid, Defaulted );
  80. else
  81. ErrorOccurred = TRUE;
  83. if (ProcessSecurityDescriptorDacl(pPrinterSD, &pDacl, &Defaulted)) {
  84. (VOID)SetSecurityDescriptorDacl (&AbsoluteSD, TRUE, pDacl, FALSE );
  85. }
  86. else
  87. ErrorOccurred = TRUE;
  89. if (ErrorOccurred) {
  90. if (pDacl) {
  91. LocalFree(pDacl);
  92. }
  93. return(NULL);
  94. }
  97. SDLength = GetSecurityDescriptorLength( &AbsoluteSD);
  98. pRelative = LocalAlloc(LPTR, SDLength);
  99. if (!pRelative) {
  100. LocalFree(pDacl);
  101. return(NULL);
  102. }
  103. if (!MakeSelfRelativeSD (&AbsoluteSD, pRelative, &SDLength)) {
  104. LocalFree(pRelative);
  105. LocalFree(pDacl);
  106. return(NULL);
  107. }
  108. LocalFree(pDacl);
  109. return(pRelative);
  110. }
  112. BOOL
  113. ProcessSecurityDescriptorDacl(
  114. PSECURITY_DESCRIPTOR pSourceSD,
  115. PACL *ppDacl,
  116. LPBOOL pDefaulted
  117. )
  119. {
  120. BOOL DaclPresent = FALSE;
  121. BOOL bRet = FALSE;
  122. DWORD DestAceCount = 0;
  123. DWORD DaclLength = 0;
  124. PACL TmpAcl = NULL;
  125. PACL pDacl = NULL;
  126. PSID *ppSid = NULL;
  127. ACCESS_MASK *pAccessMask = NULL;
  128. BYTE *pInheritFlags = NULL;
  129. UCHAR *pAceType = NULL;
  130. PACCESS_ALLOWED_ACE pAce = NULL;
  131. DWORD dwLengthSid = 0;
  132. PSID pSourceSid = NULL;
  133. PSID pDestSid = NULL;
  134. DWORD i = 0;
  135. PACCESS_ALLOWED_ACE TmpAce = NULL;
  136. ACL_SIZE_INFORMATION AclSizeInfo;
  139. *ppDacl = NULL;
  141. bRet = GetSecurityDescriptorDacl( pSourceSD, &DaclPresent, &pDacl, pDefaulted );
  143. if (bRet) {
  145. bRet = DaclPresent;
  146. }
  148. if (bRet) {
  150. GetAclInformation(pDacl, &AclSizeInfo, sizeof(ACL_SIZE_INFORMATION), AclSizeInformation);
  152. ppSid = LocalAlloc(LPTR, sizeof(PSID)* AclSizeInfo.AceCount);
  153. pAccessMask = LocalAlloc(LPTR, sizeof(ACCESS_MASK)* AclSizeInfo.AceCount);
  154. pInheritFlags = LocalAlloc(LPTR, sizeof(BYTE)*AclSizeInfo.AceCount);
  155. pAceType = LocalAlloc(LPTR, sizeof(UCHAR)*AclSizeInfo.AceCount);
  157. bRet = ppSid && pAccessMask && pInheritFlags && pAceType;
  158. }
  160. for (i = 0 ; bRet && i < AclSizeInfo.AceCount; i++) {
  161. GetAce(pDacl, i, (LPVOID *)&pAce);
  162. //
  163. // Skip the Ace if it is inherit only
  164. //
  165. if ( ((PACE_HEADER)pAce)->AceFlags & INHERIT_ONLY_ACE ) {
  166. continue;
  167. }
  169. *(pAceType + DestAceCount) = ((PACE_HEADER)pAce)->AceType;
  170. *(pAccessMask + DestAceCount) = MapPrinterMaskToShareMask(((PACCESS_ALLOWED_ACE)pAce)->Mask);
  171. *(pInheritFlags + DestAceCount) = ((PACE_HEADER)pAce)->AceFlags;
  172. //
  173. // Copy the sid information
  174. //
  175. pSourceSid = (PSID)(&(((PACCESS_ALLOWED_ACE)pAce)->SidStart));
  176. dwLengthSid = GetLengthSid(pSourceSid);
  177. pDestSid = (LPBYTE)LocalAlloc(LPTR, dwLengthSid);
  179. if (pDestSid) {
  181. CopySid(dwLengthSid, pDestSid, pSourceSid);
  183. *(ppSid + DestAceCount) = pDestSid;
  185. } else {
  187. //
  188. // We failed to allocate the memory, we signal that we failed and
  189. // fall down to the cleanup code below.
  190. //
  191. bRet = FALSE;
  193. break;
  194. }
  196. DestAceCount++;
  197. }
  199. //
  200. // Compute size of the Dacl
  201. //
  202. if (bRet) {
  204. DaclLength = (DWORD)sizeof(ACL);
  205. for (i = 0; i < DestAceCount; i++) {
  207. DaclLength += GetLengthSid( *(ppSid + i)) +
  208. (DWORD)sizeof(ACCESS_ALLOWED_ACE) -
  209. (DWORD)sizeof(DWORD); //Subtract out SidStart field length
  210. }
  212. TmpAcl = LocalAlloc(LPTR, DaclLength);
  214. bRet = (TmpAcl != NULL);
  215. }
  217. if (bRet) {
  219. bRet = InitializeAcl(TmpAcl, DaclLength, ACL_REVISION2);
  220. }
  222. for (i = 0; bRet && i < DestAceCount; i++) {
  223. if( *(pAceType +i) == ACCESS_ALLOWED_ACE_TYPE )
  224. (VOID)AddAccessAllowedAce ( TmpAcl, ACL_REVISION2, *(pAccessMask + i), *(ppSid + i));
  225. else
  226. (VOID)AddAccessDeniedAce ( TmpAcl, ACL_REVISION2, *(pAccessMask + i), *(ppSid + i));
  227. if (*(pInheritFlags + i) != 0) {
  228. (VOID)GetAce( TmpAcl, i, (LPVOID *)&TmpAce );
  229. TmpAce->Header.AceFlags = *(pInheritFlags + i);
  230. }
  231. }
  233. //
  234. // Write the Dacl back from the TmpAcl.
  235. //
  236. if (bRet) {
  238. *ppDacl = TmpAcl;
  240. TmpAcl = NULL;
  241. }
  243. //
  244. // Free all of our temporary space.
  245. //
  246. if (ppSid) {
  248. for (i = 0; i < DestAceCount; i++) {
  249. LocalFree(*(ppSid + i));
  250. }
  252. LocalFree(ppSid);
  253. }
  255. if (pAccessMask) {
  257. LocalFree(pAccessMask);
  258. }
  260. if (pInheritFlags) {
  262. LocalFree(pInheritFlags);
  263. }
  265. if (pAceType) {
  267. LocalFree(pAceType);
  268. }
  270. if (TmpAcl) {
  272. LocalFree(TmpAcl);
  273. }
  275. return bRet;
  276. }
  278. DWORD
  279. MapPrinterMaskToShareMask(
  280. DWORD PrinterMask
  281. )
  282. {
  283. DWORD ReturnMask = 0;
  285. MapGenericMask(&PrinterMask, &GenericMapping[SPOOLER_OBJECT_PRINTER]);
  287. if ((PrinterMask & PRINTER_ACCESS_ADMINISTER)
  288. || (PrinterMask & PRINTER_ACCESS_USE)) {
  289. ReturnMask |= GENERIC_ALL;
  290. }
  291. return(ReturnMask);
  292. }