archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/admin/wmi/wbem/adapters/oledb/iobjaccesscontrol.cpp

356 lines
8.7 KiB
Raw Normal View History

Add source files
4 years ago
  1. //////////////////////////////////////////////////////////////////////////////////////////////////////////
  2. //
  3. // Microsoft WMIOLE DB Provider
  4. // (C) Copyright 1999 Microsoft Corporation. All Rights Reserved.
  5. //
  6. //
  7. // IObjAccessControl.cpp - IObjectAccessControl interface implementation
  8. //
  9. //////////////////////////////////////////////////////////////////////////////////////////////////////////
  11. #include "headers.h"
  13. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  14. //
  15. // CImpIObjectAccessControl::GetObjectAccessRights
  16. //
  17. // Gets a list of all access rights
  18. //
  19. // Returns one of the following values:
  21. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  22. STDMETHODIMP CImpIObjectAccessControl::GetObjectAccessRights( SEC_OBJECT *pObject,
  23. ULONG *pcAccessEntries,
  24. EXPLICIT_ACCESS_W **prgAccessEntries)
  25. {
  26. HRESULT hr = S_OK;
  27. CSetStructuredExceptionHandler seh;
  29. TRY_BLOCK;
  31. // Serialize the object
  32. CAutoBlock cab(DATASOURCE->GetCriticalSection());
  33. g_pCError->ClearErrorInfo();
  35. if (!m_pObj->m_fDSOInitialized)
  36. {
  37. hr = E_UNEXPECTED;
  38. }
  39. else
  40. if(( *pcAccessEntries != 0 && *prgAccessEntries == NULL) ||
  41. !pcAccessEntries || !prgAccessEntries )
  42. {
  43. hr = E_INVALIDARG;
  44. }
  45. else
  46. if(SUCCEEDED(hr = IfValidSecObject(pObject)))
  47. {
  48. CBSTR strTemp(pObject->prgObjects->ObjectID.uName.pwszName);
  49. if(!m_pObj->m_pWbemWrap->IsValidObject(strTemp))
  50. {
  51. hr = SEC_E_INVALIDOBJECT;
  52. }
  53. }
  55. if(SUCCEEDED(hr))
  56. {
  57. ULONG ulExplicitAccess = 0;
  58. EXPLICIT_ACCESS_W *pAccessEntriesTemp = NULL;
  60. CBSTR strTemp(pObject->prgObjects[0].ObjectID.uName.pwszName);
  62. hr = m_pObj->m_pWbemWrap->GetObjectAccessRights(strTemp,
  63. &ulExplicitAccess,
  64. &pAccessEntriesTemp,
  65. *pcAccessEntries,
  66. *prgAccessEntries);
  68. }
  70. hr = hr == S_OK ? hr :g_pCError->PostHResult(hr,&IID_IObjectAccessControl);
  72. CATCH_BLOCK_HRESULT(hr,L"IObjectAccessControl::GetObjectAccessRights");
  73. return hr;
  75. }
  77. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  78. //
  79. // CImpIObjectAccessControl::GetObjectOwner
  80. //
  81. // Get the owner of the object
  82. //
  83. // Returns one of the following values:
  85. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  86. STDMETHODIMP CImpIObjectAccessControl::GetObjectOwner( SEC_OBJECT *pObject,TRUSTEE_W ** ppOwner)
  87. {
  88. HRESULT hr = S_OK;
  89. CSetStructuredExceptionHandler seh;
  91. TRY_BLOCK;
  93. // Serialize the object
  94. CAutoBlock cab(DATASOURCE->GetCriticalSection());
  95. g_pCError->ClearErrorInfo();
  97. if (m_pObj->m_fDSOInitialized)
  98. {
  99. hr = E_UNEXPECTED;
  100. }
  101. else
  102. if( *ppOwner == NULL)
  103. {
  104. hr = E_INVALIDARG;
  105. }
  106. else
  107. if(SUCCEEDED(hr = IfValidSecObject(pObject)))
  108. {
  109. {
  110. CBSTR strTemp(pObject->prgObjects->ObjectID.uName.pwszName);
  111. if(!m_pObj->m_pWbemWrap->IsValidObject(strTemp))
  112. {
  113. hr = SEC_E_INVALIDOBJECT;
  114. }
  115. }
  116. }
  118. if(SUCCEEDED(hr))
  119. {
  120. CBSTR strObj(pObject->prgObjects->ObjectID.uName.pwszName);
  121. hr = m_pObj->m_pWbemWrap->GetObjectOwner(strObj,ppOwner);
  122. }
  126. hr = hr == S_OK ? hr :g_pCError->PostHResult(hr,&IID_IObjectAccessControl);
  128. CATCH_BLOCK_HRESULT(hr,L"IObjectAccessControl::GetObjectOwner");
  129. return hr;
  131. }
  133. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  134. //
  135. // CImpIObjectAccessControl::IsObjectAccessAllowed
  136. //
  137. // Checks if the a trustee has the given access on the object
  138. //
  139. // Returns one of the following values:
  141. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  142. STDMETHODIMP CImpIObjectAccessControl::IsObjectAccessAllowed( SEC_OBJECT *pObject,
  143. EXPLICIT_ACCESS_W *pAccessEntry,
  144. BOOL *pfResult)
  145. {
  146. HRESULT hr = S_OK;
  147. CSetStructuredExceptionHandler seh;
  149. TRY_BLOCK;
  151. // Serialize the object
  152. CAutoBlock cab(DATASOURCE->GetCriticalSection());
  153. g_pCError->ClearErrorInfo();
  155. if (m_pObj->m_fDSOInitialized)
  156. {
  157. hr = E_UNEXPECTED;
  158. }
  159. else
  160. if(pAccessEntry == NULL || !pfResult)
  161. {
  162. hr = E_INVALIDARG;
  163. }
  164. else
  165. if(SUCCEEDED(hr = IfValidSecObject(pObject)))
  166. {
  167. CBSTR strTemp(pObject->prgObjects->ObjectID.uName.pwszName);
  168. if(!m_pObj->m_pWbemWrap->IsValidObject(strTemp))
  169. {
  170. hr = SEC_E_INVALIDOBJECT;
  171. }
  172. }
  174. if(SUCCEEDED(hr))
  175. {
  176. CBSTR strObj(pObject->prgObjects->ObjectID.uName.pwszName);
  177. hr = m_pObj->m_pWbemWrap->IsObjectAccessAllowed(strObj,pAccessEntry,pfResult);
  178. }
  181. hr = hr == S_OK ? hr :g_pCError->PostHResult(hr,&IID_IObjectAccessControl);
  182. CATCH_BLOCK_HRESULT(hr,L"IObjectAccessControl::IsObjectAccessAllowed");
  183. return hr;
  185. }
  187. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  188. //
  189. // CImpIObjectAccessControl::SetObjectAccessRights
  190. //
  191. // Set the AccessRights for a particular object
  192. //
  193. // Returns one of the following values:
  195. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  196. STDMETHODIMP CImpIObjectAccessControl::SetObjectAccessRights( SEC_OBJECT *pObject,
  197. ULONG cAccessEntries,
  198. EXPLICIT_ACCESS_W *prgAccessEntries)
  199. {
  200. HRESULT hr = S_OK;
  201. CSetStructuredExceptionHandler seh;
  203. TRY_BLOCK;
  205. // Serialize the object
  206. CAutoBlock cab(DATASOURCE->GetCriticalSection());
  207. g_pCError->ClearErrorInfo();
  209. if (m_pObj->m_fDSOInitialized)
  210. {
  211. hr = E_UNEXPECTED;
  212. }
  213. else
  214. if(( cAccessEntries != 0 && prgAccessEntries == NULL) ||
  215. !pObject)
  216. {
  217. hr = E_INVALIDARG;
  218. }
  219. else
  220. if(SUCCEEDED(hr = IfValidSecObject(pObject)))
  221. {
  222. if(cAccessEntries != 0)
  223. {
  224. CBSTR strTemp(pObject->prgObjects->ObjectID.uName.pwszName);
  225. if(!m_pObj->m_pWbemWrap->IsValidObject(strTemp))
  226. {
  227. hr = SEC_E_INVALIDOBJECT;
  228. }
  230. if(SUCCEEDED(hr))
  231. {
  232. ULONG ulExplicitAccess = 0;
  233. EXPLICIT_ACCESS_W *pAccessEntriesTemp = NULL;
  235. CBSTR strTemp(pObject->prgObjects[0].ObjectID.uName.pwszName);
  236. hr = m_pObj->m_pWbemWrap->SetObjectAccessRights(strTemp,
  237. cAccessEntries,
  238. prgAccessEntries);
  240. }
  241. }
  242. }
  243. hr = hr == S_OK ? hr :g_pCError->PostHResult(hr,&IID_IObjectAccessControl);
  245. CATCH_BLOCK_HRESULT(hr,L"IObjectAccessControl::SetObjectAccessRights");
  246. return hr;
  248. }
  250. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  251. //
  252. // CImpIObjectAccessControl::SetObjectOwner
  253. //
  254. // Set Owner for a particular object
  255. //
  256. // Returns one of the following values:
  258. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  259. STDMETHODIMP CImpIObjectAccessControl::SetObjectOwner( SEC_OBJECT *pObject,TRUSTEE_W *pOwner)
  260. {
  261. HRESULT hr = S_OK;
  262. CSetStructuredExceptionHandler seh;
  264. TRY_BLOCK;
  266. // Serialize the object
  267. CAutoBlock cab(DATASOURCE->GetCriticalSection());
  268. g_pCError->ClearErrorInfo();
  270. if (m_pObj->m_fDSOInitialized)
  271. {
  272. hr = E_UNEXPECTED;
  273. }
  274. else
  275. if(!pOwner)
  276. {
  277. hr = E_INVALIDARG;
  278. }
  279. else
  280. if(SUCCEEDED(hr = IfValidSecObject(pObject)))
  281. {
  282. CBSTR strTemp(pObject->prgObjects->ObjectID.uName.pwszName);
  283. if(!m_pObj->m_pWbemWrap->IsValidObject(strTemp))
  284. {
  285. hr = SEC_E_INVALIDOBJECT;
  286. }
  287. }
  289. if(SUCCEEDED(hr))
  290. {
  291. CBSTR strObj(pObject->prgObjects->ObjectID.uName.pwszName);
  292. hr = m_pObj->m_pWbemWrap->SetObjectOwner(strObj,pOwner);
  293. }
  296. hr = hr == S_OK ? hr :g_pCError->PostHResult(hr,&IID_IObjectAccessControl);
  298. CATCH_BLOCK_HRESULT(hr,L"IObjectAccessControl::SetObjectOwner");
  299. return hr;
  301. }
  303. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  304. //
  305. // CImpIObjectAccessControl::IfValidSecObject
  306. //
  307. // a function to validate SEC_OBJECT parameter
  308. //
  309. // Returns one of the following values:
  310. // E_INVALIDARG
  311. // SEC_E_INVALIDOBJECT
  313. ///////////////////////////////////////////////////////////////////////////////////////////////////////////
  314. STDMETHODIMP CImpIObjectAccessControl::IfValidSecObject(SEC_OBJECT *pObject)
  315. {
  316. HRESULT hr = S_OK;
  318. if(!pObject)
  319. {
  320. hr = E_INVALIDARG;
  321. }
  322. else
  323. if((pObject->cObjects != 0 && pObject->prgObjects == NULL) ||
  324. pObject->cObjects > 1)
  325. {
  326. hr = E_INVALIDARG;
  327. }
  328. else
  329. if(pObject->cObjects == 0 )
  330. {
  331. hr = SEC_E_INVALIDOBJECT;
  332. }
  333. else
  334. // WMIOLEDB allows setting/setting security for only one object
  335. if(pObject->cObjects != 1)
  336. {
  337. hr = E_INVALIDARG;
  338. }
  339. else if(pObject->prgObjects[0].guidObjectType != DBOBJECT_TABLE &&
  340. pObject->prgObjects[0].guidObjectType != DBOBJECT_DATABASE &&
  341. pObject->prgObjects[0].guidObjectType != DBOBJECT_WMIINSTANCE)
  342. {
  343. hr = SEC_E_INVALIDOBJECT;
  344. }
  345. else
  346. if(pObject->prgObjects->ObjectID.eKind != DBKIND_NAME)
  347. {
  348. hr = E_INVALIDARG;
  349. }
  352. return hr;
  354. }