archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 9769ad7c3d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9769ad7c3d'
${ noResults }
windows-xp/Source/XPSP1/NT/shell/osshell/lmui/ntshrui/permpage.cxx

420 lines
11 KiB
Raw Normal View History

Add source files
4 years ago
  1. // PermPage.cxx : Implementation ACL Editor classes
  2. // jonn 7/10/97 copied from \nt\private\admin\snapin\filemgmt\permpage.cpp
  4. #include "headers.hxx"
  5. #pragma hdrstop
  7. #include "acl.hxx"
  8. #include "resource.h" // IDS_SHAREPERM_*
  10. #include <atlbase.h>
  11. CComModule _Module;
  12. #include <atlcom.h>
  13. #include <atlimpl.cpp>
  15. #include <sddl.h> // ConvertStringSecurityDescriptorToSecurityDescriptor
  17. // need IID_ISecurityInformation
  18. #define INITGUID
  19. #include <initguid.h>
  20. #include <aclui.h>
  22. //
  23. // I define my own implementation of ISecurityInformation
  24. //
  26. class CSecurityInformation : public ISecurityInformation, public CComObjectRoot
  27. {
  28. DECLARE_NOT_AGGREGATABLE(CSecurityInformation)
  29. BEGIN_COM_MAP(CSecurityInformation)
  30. COM_INTERFACE_ENTRY(ISecurityInformation)
  31. END_COM_MAP()
  33. // *** ISecurityInformation methods ***
  34. STDMETHOD(GetObjectInformation) (PSI_OBJECT_INFO pObjectInfo ) = 0;
  35. STDMETHOD(GetSecurity) (SECURITY_INFORMATION RequestedInformation,
  36. PSECURITY_DESCRIPTOR *ppSecurityDescriptor,
  37. BOOL fDefault ) = 0;
  38. STDMETHOD(SetSecurity) (SECURITY_INFORMATION SecurityInformation,
  39. PSECURITY_DESCRIPTOR pSecurityDescriptor ) = 0;
  40. STDMETHOD(GetAccessRights) (const GUID* pguidObjectType,
  41. DWORD dwFlags,
  42. PSI_ACCESS *ppAccess,
  43. ULONG *pcAccesses,
  44. ULONG *piDefaultAccess );
  45. STDMETHOD(MapGeneric) (const GUID *pguidObjectType,
  46. UCHAR *pAceFlags,
  47. ACCESS_MASK *pMask);
  48. STDMETHOD(GetInheritTypes) (PSI_INHERIT_TYPE *ppInheritTypes,
  49. ULONG *pcInheritTypes );
  50. STDMETHOD(PropertySheetPageCallback)(HWND hwnd, UINT uMsg, SI_PAGE_TYPE uPage );
  52. protected:
  53. HRESULT NewDefaultDescriptor(
  54. PSECURITY_DESCRIPTOR* ppsd,
  55. SECURITY_INFORMATION RequestedInformation
  56. );
  58. HRESULT MakeSelfRelativeCopy(
  59. PSECURITY_DESCRIPTOR psdOriginal,
  60. PSECURITY_DESCRIPTOR* ppsdNew );
  61. };
  63. class CShareSecurityInformation : public CSecurityInformation
  64. {
  65. private:
  66. LPWSTR m_strMachineName;
  67. LPWSTR m_strShareName;
  68. WCHAR m_szTitle[200];
  69. public:
  70. CShareSecurityInformation()
  71. {
  72. LoadString( g_hInstance, IDS_PERMPAGE_TITLE, m_szTitle, ARRAYLEN(m_szTitle) );
  73. }
  74. void SetMachineName( LPWSTR pszMachineName )
  75. {
  76. m_strMachineName = pszMachineName;
  77. }
  78. void SetShareName( LPWSTR pszShareName )
  79. {
  80. m_strShareName = pszShareName;
  81. }
  82. // note: these should be LPCTSTR but are left this way for convenience
  83. LPWSTR QueryMachineName()
  84. {
  85. return m_strMachineName;
  86. }
  87. LPWSTR QueryShareName()
  88. {
  89. return m_strShareName;
  90. }
  92. // *** ISecurityInformation methods ***
  93. STDMETHOD(GetObjectInformation) (PSI_OBJECT_INFO pObjectInfo );
  94. };
  96. class CSMBSecurityInformation : public CShareSecurityInformation
  97. {
  98. STDMETHOD(GetSecurity) (SECURITY_INFORMATION RequestedInformation,
  99. PSECURITY_DESCRIPTOR *ppSecurityDescriptor,
  100. BOOL fDefault );
  101. STDMETHOD(SetSecurity) (SECURITY_INFORMATION SecurityInformation,
  102. PSECURITY_DESCRIPTOR pSecurityDescriptor );
  103. public:
  104. PSECURITY_DESCRIPTOR m_pInitialDescriptor;
  105. PSECURITY_DESCRIPTOR* m_ppCurrentDescriptor;
  106. CSMBSecurityInformation();
  107. ~CSMBSecurityInformation();
  108. };
  112. // ISecurityInformation interface implementation
  114. SI_ACCESS siShareAccesses[] =
  115. {
  116. { &GUID_NULL,
  117. FILE_ALL_ACCESS,
  118. MAKEINTRESOURCE(IDS_SHAREPERM_ALL),
  119. SI_ACCESS_GENERAL },
  120. { &GUID_NULL,
  121. FILE_GENERIC_READ | FILE_EXECUTE | FILE_GENERIC_WRITE | DELETE,
  122. MAKEINTRESOURCE(IDS_SHAREPERM_MODIFY),
  123. SI_ACCESS_GENERAL },
  124. { &GUID_NULL,
  125. FILE_GENERIC_READ | FILE_EXECUTE,
  126. MAKEINTRESOURCE(IDS_SHAREPERM_READ),
  127. SI_ACCESS_GENERAL }
  128. };
  129. #define iShareDefAccess 2 // FILE_GEN_READ
  130. #ifndef ARRAYSIZE
  131. #define ARRAYSIZE(x) (sizeof(x)/sizeof(x[0]))
  132. #endif
  134. STDMETHODIMP CSecurityInformation::GetAccessRights (
  135. const GUID* pguidObjectType,
  136. DWORD dwFlags,
  137. PSI_ACCESS *ppAccess,
  138. ULONG *pcAccesses,
  139. ULONG *piDefaultAccess )
  140. {
  141. appAssert(ppAccess != NULL);
  142. appAssert(pcAccesses != NULL);
  143. appAssert(piDefaultAccess != NULL);
  145. *ppAccess = siShareAccesses;
  146. *pcAccesses = ARRAYSIZE(siShareAccesses);
  147. *piDefaultAccess = iShareDefAccess;
  149. return S_OK;
  150. }
  152. // This is consistent with the NETUI code
  153. GENERIC_MAPPING ShareMap =
  154. {
  155. FILE_GENERIC_READ,
  156. FILE_GENERIC_WRITE,
  157. FILE_GENERIC_EXECUTE,
  158. FILE_ALL_ACCESS
  159. };
  161. STDMETHODIMP CSecurityInformation::MapGeneric (
  162. const GUID *pguidObjectType,
  163. UCHAR *pAceFlags,
  164. ACCESS_MASK *pMask)
  165. {
  166. appAssert(pMask != NULL);
  168. MapGenericMask(pMask, &ShareMap);
  170. return S_OK;
  171. }
  173. STDMETHODIMP CSecurityInformation::GetInheritTypes (
  174. PSI_INHERIT_TYPE *ppInheritTypes,
  175. ULONG *pcInheritTypes )
  176. {
  177. appAssert(FALSE);
  178. return E_NOTIMPL;
  179. }
  180. STDMETHODIMP CSecurityInformation::PropertySheetPageCallback(HWND hwnd, UINT uMsg, SI_PAGE_TYPE uPage )
  181. {
  182. return S_OK;
  183. }
  185. /*
  186. JeffreyS 1/24/97:
  187. If you don't set the SI_RESET flag in
  188. ISecurityInformation::GetObjectInformation, then fDefault should never be TRUE
  189. so you can ignore it. Returning E_NOTIMPL in this case is OK too.
  191. If you want the user to be able to reset the ACL to some default state
  192. (defined by you) then turn on SI_RESET and return your default ACL
  193. when fDefault is TRUE. This happens if/when the user pushes a button
  194. that is only visible when SI_RESET is on.
  195. */
  196. STDMETHODIMP CShareSecurityInformation::GetObjectInformation (
  197. PSI_OBJECT_INFO pObjectInfo )
  198. {
  199. appAssert(pObjectInfo != NULL &&
  200. !IsBadWritePtr(pObjectInfo, sizeof(*pObjectInfo)));
  202. pObjectInfo->dwFlags = SI_EDIT_ALL | SI_NO_ACL_PROTECT | SI_PAGE_TITLE;
  203. pObjectInfo->hInstance = g_hInstance;
  204. pObjectInfo->pszServerName = QueryMachineName();
  205. pObjectInfo->pszObjectName = QueryShareName();
  207. // page title added JonN 3/8/99 per 115196
  208. pObjectInfo->pszPageTitle = m_szTitle;
  210. return S_OK;
  211. }
  213. //
  214. // caller must free using LocalFree()
  215. //
  216. // jeffreys 10/11/2000: Replaced all of the old ACL goop with a
  217. // call to ConvertStringSecurityDescriptorToSecurityDescriptor.
  218. //
  220. const WCHAR c_szDefaultShareSD[] = L"O:BAG:BAD:(A;;GA;;;WD)";
  222. HRESULT CSecurityInformation::NewDefaultDescriptor(
  223. PSECURITY_DESCRIPTOR* ppsd,
  224. SECURITY_INFORMATION RequestedInformation
  225. )
  226. {
  227. HRESULT hr = S_OK;
  229. *ppsd = NULL;
  231. if (!ConvertStringSecurityDescriptorToSecurityDescriptorW(
  232. c_szDefaultShareSD,
  233. SDDL_REVISION_1,
  234. ppsd,
  235. NULL))
  236. {
  237. DWORD err = GetLastError();
  238. hr = HRESULT_FROM_WIN32(err);
  239. }
  241. return hr;
  242. }
  244. HRESULT CSecurityInformation::MakeSelfRelativeCopy(
  245. PSECURITY_DESCRIPTOR psdOriginal,
  246. PSECURITY_DESCRIPTOR* ppsdNew )
  247. {
  248. appAssert( NULL != psdOriginal );
  250. // we have to find out whether the original is already self-relative
  251. SECURITY_DESCRIPTOR_CONTROL sdc = 0;
  252. DWORD dwRevision = 0;
  253. if ( !::GetSecurityDescriptorControl( psdOriginal, &sdc, &dwRevision ) )
  254. {
  255. appAssert( FALSE );
  256. DWORD err = ::GetLastError();
  257. return HRESULT_FROM_WIN32( err );
  258. }
  260. DWORD cb = ::GetSecurityDescriptorLength( psdOriginal ) + 20;
  261. PSECURITY_DESCRIPTOR psdSelfRelativeCopy = reinterpret_cast<PSECURITY_DESCRIPTOR>(
  262. ::LocalAlloc(LMEM_ZEROINIT, cb) );
  263. if (NULL == psdSelfRelativeCopy)
  264. {
  265. return HRESULT_FROM_WIN32(ERROR_NOT_ENOUGH_MEMORY);
  266. }
  268. if ( sdc & SE_SELF_RELATIVE )
  269. // the original is in self-relative format, just byte-copy it
  270. {
  271. ::memcpy( psdSelfRelativeCopy, psdOriginal, cb - 20 );
  272. }
  273. else if ( !::MakeSelfRelativeSD( psdOriginal, psdSelfRelativeCopy, &cb ) )
  274. // the original is in absolute format, convert-copy it
  275. {
  276. appAssert( FALSE );
  277. if( NULL != ::LocalFree( psdSelfRelativeCopy ) )
  278. {
  279. appAssert(FALSE);
  280. }
  281. DWORD err = ::GetLastError();
  282. return HRESULT_FROM_WIN32( err );
  283. }
  284. *ppsdNew = psdSelfRelativeCopy;
  285. return S_OK;
  286. }
  288. CSMBSecurityInformation::CSMBSecurityInformation()
  289. : CShareSecurityInformation()
  290. , m_pInitialDescriptor( NULL )
  291. , m_ppCurrentDescriptor( NULL )
  292. {
  293. }
  295. CSMBSecurityInformation::~CSMBSecurityInformation()
  296. {
  297. }
  299. STDMETHODIMP CSMBSecurityInformation::GetSecurity (
  300. SECURITY_INFORMATION RequestedInformation,
  301. PSECURITY_DESCRIPTOR *ppSecurityDescriptor,
  302. BOOL fDefault )
  303. {
  304. appAssert( NULL != m_ppCurrentDescriptor );
  306. // NOTE: we allow NULL == ppSecurityDescriptor, see SetSecurity
  307. if (0 == RequestedInformation )
  308. {
  309. appAssert(FALSE);
  310. return E_INVALIDARG;
  311. }
  313. if (fDefault)
  314. return E_NOTIMPL;
  316. if ( NULL == ppSecurityDescriptor )
  317. return S_OK;
  319. *ppSecurityDescriptor = NULL;
  321. HRESULT hr = S_OK;
  322. if (NULL != *m_ppCurrentDescriptor)
  323. {
  324. hr = MakeSelfRelativeCopy(
  325. *m_ppCurrentDescriptor,
  326. ppSecurityDescriptor );
  327. appAssert( SUCCEEDED(hr) && NULL != *ppSecurityDescriptor );
  328. }
  329. else if (NULL != m_pInitialDescriptor)
  330. {
  331. hr = MakeSelfRelativeCopy(
  332. m_pInitialDescriptor,
  333. ppSecurityDescriptor );
  334. appAssert( SUCCEEDED(hr) && NULL != *ppSecurityDescriptor );
  335. }
  336. else
  337. {
  338. hr = NewDefaultDescriptor(
  339. ppSecurityDescriptor,
  340. RequestedInformation );
  341. appAssert( SUCCEEDED(hr) && NULL != *ppSecurityDescriptor );
  342. }
  343. return hr;
  344. }
  346. STDMETHODIMP CSMBSecurityInformation::SetSecurity (
  347. SECURITY_INFORMATION SecurityInformation,
  348. PSECURITY_DESCRIPTOR pSecurityDescriptor )
  349. {
  350. appAssert( NULL != m_ppCurrentDescriptor );
  352. if (NULL != *m_ppCurrentDescriptor)
  353. {
  354. ::LocalFree(*m_ppCurrentDescriptor);
  355. *m_ppCurrentDescriptor = NULL;
  356. }
  357. HRESULT hr = MakeSelfRelativeCopy(
  358. pSecurityDescriptor,
  359. m_ppCurrentDescriptor );
  360. appAssert( SUCCEEDED(hr) && NULL != *m_ppCurrentDescriptor );
  361. return hr;
  362. }
  364. HMODULE g_hlibACLUI = NULL;
  365. typedef BOOL (*EDIT_SECURITY_PROC) ( HWND, LPSECURITYINFO );
  366. EDIT_SECURITY_PROC g_pfnEditSecurityProc;
  368. LONG
  369. EditShareAcl(
  370. IN HWND hwndParent,
  371. IN LPWSTR pszServerName,
  372. IN TCHAR * pszShareName,
  373. IN PSECURITY_DESCRIPTOR pSecDesc,
  374. OUT BOOL* pfSecDescModified,
  375. OUT PSECURITY_DESCRIPTOR* ppSecDesc
  376. )
  377. {
  378. appAssert( ppSecDesc != NULL );
  379. *ppSecDesc = NULL;
  381. if (NULL == g_hlibACLUI)
  382. {
  383. g_hlibACLUI = ::LoadLibrary(L"ACLUI.DLL");
  384. if (NULL == g_hlibACLUI)
  385. {
  386. appAssert(FALSE); // ACLUI.DLL isn't installed?
  387. return 0;
  388. }
  389. }
  391. if (NULL == g_pfnEditSecurityProc)
  392. {
  393. g_pfnEditSecurityProc = reinterpret_cast<EDIT_SECURITY_PROC>(
  394. ::GetProcAddress(g_hlibACLUI,"EditSecurity") );
  395. if (NULL == g_pfnEditSecurityProc)
  396. {
  397. appAssert(FALSE); // ACLUI.DLL is invalid?
  398. return 0;
  399. }
  400. }
  402. CComObject<CSMBSecurityInformation>* psecinfo = NULL;
  403. HRESULT hRes = CComObject<CSMBSecurityInformation>::CreateInstance(&psecinfo);
  404. if ( FAILED(hRes) )
  405. return 0;
  407. psecinfo->AddRef();
  408. psecinfo->SetMachineName( pszServerName );
  409. psecinfo->SetShareName( pszShareName );
  410. psecinfo->m_pInitialDescriptor = pSecDesc;
  411. psecinfo->m_ppCurrentDescriptor = ppSecDesc;
  412. (g_pfnEditSecurityProc)(hwndParent,psecinfo);
  414. if (NULL != pfSecDescModified)
  415. *pfSecDescModified = (NULL != *ppSecDesc);
  417. psecinfo->Release();
  419. return 0;
  420. }