archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/admin/wmi/wbem/policman/provider/policman.cpp

377 lines
9.1 KiB
Raw Normal View History

Add source files
4 years ago
  1. #include <windows.h>
  2. #include <wbemcli.h>
  3. #include <wbemprov.h>
  4. #include <stdio.h>
  5. #include <commain.h>
  6. #include <clsfac.h>
  7. #include <wbemcomn.h>
  8. #include <ql.h>
  9. #include <sync.h>
  10. #include <Dsrole.h>
  11. #include "utility.h"
  12. #include "PolicMan.h"
  13. #include "PolicTempl.h"
  14. #include "PolicSOM.h"
  15. #include "PolicType.h"
  16. #include "PolicRange.h"
  17. #include "PolicGPO.h"
  18. #include "PolicStatus.h"
  20. #include <tchar.h>
  22. #define REG_RUN_KEY L"Software\\Microsoft\\Windows\\CurrentVersion\\Run"
  24. class CMyServer : public CComServer
  25. {
  26. public:
  27. CMyServer(void) { InitGlobalNames(); }
  28. ~CMyServer(void) { FreeGlobalNames(); }
  30. HRESULT Initialize()
  31. {
  32. AddClassInfo(CLSID_PolicySOM,
  33. new CClassFactory<CPolicySOM>(GetLifeControl()),
  34. _T("WMI Policy SOM Provider"), TRUE);
  36. AddClassInfo(CLSID_PolicyStatus,
  37. new CClassFactory<CPolicyStatus>(GetLifeControl()),
  38. _T("WMI Policy Status Provider"), TRUE);
  40. return S_OK;
  42. }
  43. HRESULT InitializeCom()
  44. {
  45. return CoInitializeEx(NULL, COINIT_MULTITHREADED);
  46. }
  48. /*
  49. void Register(void)
  50. {
  51. wchar_t
  52. swKeyValue[] = L"RUNDLL32.EXE %systemroot%\\system32\\wbem\\policman.dll,CreateADContainers",
  53. swExpandedValue[512],
  54. swRunOnceKey[] = REG_RUN_KEY ;
  56. HKEY
  57. hkRunOnce;
  59. LONG
  60. lReturnCode;
  62. lReturnCode = ExpandEnvironmentStrings(swKeyValue, swExpandedValue, 512);
  64. lReturnCode = RegOpenKeyEx(HKEY_LOCAL_MACHINE, swRunOnceKey, 0, KEY_SET_VALUE, &hkRunOnce);
  66. if(ERROR_SUCCESS != lReturnCode)
  67. {
  68. // error
  69. }
  71. lReturnCode = RegSetValueEx(hkRunOnce, L"PolicMan", 0, REG_EXPAND_SZ, (BYTE *)swExpandedValue,
  72. (lstrlen(swExpandedValue)+1) * sizeof(wchar_t));
  74. if(ERROR_SUCCESS != lReturnCode)
  75. {
  76. // error
  77. }
  79. RegCloseKey(hkRunOnce);
  80. }
  81. */
  82. } Server;
  84. HRESULT GetOrCreateObj(CComQIPtr<IADsContainer, &IID_IADsContainer> &pIADsContainer_In,
  85. CComBSTR &bstrObjName,
  86. CComQIPtr<IADsContainer, &IID_IADsContainer> &pIADsContainer_Out)
  87. {
  88. HRESULT
  89. hres = WBEM_E_FAILED;
  91. CComQIPtr<IDispatch, &IID_IDispatch>
  92. pDisp;
  94. CComQIPtr<IDirectoryObject, &IID_IDirectoryObject>
  95. pDirectoryObj;
  97. CComQIPtr<IADsObjectOptions, &IID_IADsObjectOptions>
  98. pADsObjectOptions;
  100. CComVariant
  101. vSecurityOptions;
  103. ADSVALUE
  104. AdsValue[1];
  106. ADS_ATTR_INFO
  107. attrInfo[] = { { L"ntSecurityDescriptor", ADS_ATTR_UPDATE, ADSTYPE_NT_SECURITY_DESCRIPTOR, &AdsValue[0], 1} };
  109. CNtSecurityDescriptor
  110. cSD;
  112. DWORD
  113. dwModified;
  115. ADS_OBJECT_INFO
  116. *pADsInfo = NULL;
  118. if(NULL == pIADsContainer_In.p) return WBEM_E_FAILED;
  120. // **** get/create object
  122. hres = pIADsContainer_In->GetObject(L"Container", bstrObjName, &pDisp);
  123. if(FAILED(hres) || (NULL == pDisp.p))
  124. {
  125. CComQIPtr<IADs, &IID_IADs>
  126. pIADs;
  128. hres = pIADsContainer_In->Create(L"Container", bstrObjName, &pDisp);
  129. if(FAILED(hres) || (NULL == pDisp.p))
  130. {
  131. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could create container %S : 0x%x\n", (BSTR)bstrObjName, hres));
  132. return hres;
  133. }
  135. // **** write object to AD
  137. pIADs = pDisp;
  138. hres = pIADs->SetInfo();
  139. if(FAILED(hres))
  140. {
  141. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could write container %S to DS : 0x%x\n", (BSTR)bstrObjName, hres));
  142. return hres;
  143. }
  144. }
  146. // **** set object security option
  148. pADsObjectOptions = pDisp;
  149. vSecurityOptions = (ADS_SECURITY_INFO_OWNER | ADS_SECURITY_INFO_DACL);
  150. hres = pADsObjectOptions->SetOption(ADS_OPTION_SECURITY_MASK, vSecurityOptions);
  151. if(FAILED(hres))
  152. {
  153. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could set security options on object : 0x%x\n", hres));
  154. return hres;
  155. }
  157. // **** create security descriptor
  159. hres = CreateDefaultSecurityDescriptor(cSD);
  160. if(FAILED(hres))
  161. {
  162. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could create security descriptor : 0x%x\n", hres));
  163. return hres;
  164. }
  166. // **** set object security descriptor
  168. AdsValue[0].dwType = ADSTYPE_NT_SECURITY_DESCRIPTOR;
  169. AdsValue[0].SecurityDescriptor.dwLength = cSD.GetSize();
  170. AdsValue[0].SecurityDescriptor.lpValue = (LPBYTE)cSD.GetPtr();
  172. pDirectoryObj = pDisp;
  173. hres = pDirectoryObj->SetObjectAttributes(attrInfo, 1, &dwModified);
  174. if(FAILED(hres))
  175. {
  176. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could set security on object : 0x%x\n", hres));
  177. return hres;
  178. }
  180. pIADsContainer_Out = pDirectoryObj;
  182. return WBEM_S_NO_ERROR;
  183. }
  185. #define SYSTEM_PATH L"LDAP://CN=System,"
  186. #define WMIPOLICY_PATH L"CN=WMIPolicy"
  187. #define TEMPLATE_PATH L"CN=PolicyTemplate"
  188. #define TYPE_PATH L"CN=PolicyType"
  189. #define GPO_PATH L"CN=WMIGPO"
  190. #define SOM_PATH L"CN=SOM"
  192. HRESULT InScopeOfCOM_CreateADContainers(void)
  193. {
  194. HRESULT
  195. hres = WBEM_E_FAILED;
  197. PDSROLE_PRIMARY_DOMAIN_INFO_BASIC
  198. pBasic;
  200. CComPtr<IADs>
  201. pRootDSE;
  203. CComQIPtr<IADs, &IID_IADs>
  204. pObj;
  206. CComQIPtr<IADsContainer, &IID_IADsContainer>
  207. pWMIPolicyObj,
  208. pSystemObj,
  209. pADsContainer;
  211. CComVariant
  212. vDomainName;
  214. CComBSTR
  215. bstrSystemPath(SYSTEM_PATH),
  216. bstrWMIPolicy(WMIPOLICY_PATH),
  217. bstrTemplate(TEMPLATE_PATH),
  218. bstrType(TYPE_PATH),
  219. bstrSom(SOM_PATH),
  220. bstrGPO(GPO_PATH);
  222. // **** delay until AD is up and running
  224. DWORD
  225. dwResult = DsRoleGetPrimaryDomainInformation(NULL, DsRolePrimaryDomainInfoBasic,
  226. (PBYTE *)&pBasic);
  228. if(dwResult == ERROR_SUCCESS)
  229. {
  230. // **** Check if this is a DC
  232. if((pBasic->MachineRole == DsRole_RoleBackupDomainController) ||
  233. (pBasic->MachineRole == DsRole_RolePrimaryDomainController))
  234. {
  235. HANDLE
  236. hEvent;
  238. hEvent = OpenEvent(EVENT_ALL_ACCESS, FALSE, TEXT("NtdsDelayedStartupCompletedEvent") );
  240. if(hEvent) {
  241. WaitForSingleObject(hEvent, 50000);
  242. CloseHandle (hEvent);
  243. }
  244. }
  245. }
  247. // **** get LDAP name of domain controller
  249. hres = ADsGetObject(L"LDAP://rootDSE", IID_IADs, (void**)&pRootDSE);
  250. if(FAILED(hres))
  251. {
  252. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could not get pointer to LDAP://rootDSE : 0x%x\n", hres));
  253. return hres;
  254. }
  255. else
  256. {
  257. hres = pRootDSE->Get(L"defaultNamingContext", &vDomainName);
  258. if(FAILED(hres) || (V_VT(&vDomainName) != VT_BSTR) || (V_BSTR(&vDomainName) == NULL))
  259. {
  260. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) could not get defaultNamingContext : 0x%x\n", hres));
  261. return hres;
  262. }
  264. bstrSystemPath.Append(vDomainName.bstrVal);
  265. }
  267. // **** get system path
  269. hres = ADsGetObject(bstrSystemPath, IID_IADsContainer, (void **)&pSystemObj);
  270. if (FAILED(hres))
  271. {
  272. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could not get pointer to %S : 0x%x\n", (BSTR)bstrSystemPath, hres));
  273. return hres;
  274. }
  276. // **** get/create WMIPolicy containers
  278. hres = GetOrCreateObj(pSystemObj, bstrWMIPolicy, pWMIPolicyObj);
  279. if(FAILED(hres))
  280. {
  281. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could not create/get pointer to %S : 0x%x\n", (BSTR)bstrWMIPolicy, hres));
  282. return hres;
  283. }
  284. else
  285. {
  286. hres = GetOrCreateObj(pWMIPolicyObj, bstrTemplate, pADsContainer);
  287. if(FAILED(hres))
  288. {
  289. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could not create/get pointer to %S : 0x%x\n", (BSTR)bstrTemplate, hres));
  290. return hres;
  291. }
  293. hres = GetOrCreateObj(pWMIPolicyObj, bstrType, pADsContainer);
  294. if(FAILED(hres))
  295. {
  296. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could not create/get pointer to %S : 0x%x\n", (BSTR)bstrType, hres));
  297. return hres;
  298. }
  300. hres = GetOrCreateObj(pWMIPolicyObj, bstrSom, pADsContainer);
  301. if(FAILED(hres))
  302. {
  303. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could not create/get pointer to %S : 0x%x\n", (BSTR)bstrSom, hres));
  304. return hres;
  305. }
  307. hres = GetOrCreateObj(pWMIPolicyObj, bstrGPO, pADsContainer);
  308. if(FAILED(hres))
  309. {
  310. ERRORTRACE((LOG_ESS, "POLICMAN: (Container Creation) Could not create/get pointer to %S : 0x%x\n", (BSTR)bstrGPO, hres));
  311. return hres;
  312. }
  313. }
  315. return S_OK;
  316. }
  318. extern "C" STDAPI CreateADContainers(void)
  319. {
  320. HRESULT
  321. hres = WBEM_E_FAILED;
  323. // **** init process context
  325. CoInitialize(NULL);
  327. CoInitializeSecurity (NULL, -1, NULL, NULL,
  328. RPC_C_AUTHN_LEVEL_NONE, RPC_C_IMP_LEVEL_IMPERSONATE, NULL,
  329. EOAC_NONE, NULL);
  331. try
  332. {
  333. hres = InScopeOfCOM_CreateADContainers();
  334. }
  335. catch(...)
  336. {
  337. // **** error
  339. return WBEM_E_FAILED;
  340. }
  342. // **** if we returned successfully, then remove the run key
  344. if(SUCCEEDED(hres))
  345. {
  346. wchar_t
  347. swKeyValue[] = L"RUNDLL32.EXE %systemroot%\\system32\\wbem\\policman.dll,CreateADContainers",
  348. swExpandedKeyValue[512],
  349. swRunOnceKey[] = REG_RUN_KEY ;
  351. HKEY
  352. hkRunOnce;
  354. LONG
  355. lReturnCode;
  357. lReturnCode = RegOpenKeyEx(HKEY_LOCAL_MACHINE, swRunOnceKey, 0, KEY_SET_VALUE, &hkRunOnce);
  359. if(ERROR_SUCCESS != lReturnCode)
  360. {
  361. // error
  362. }
  364. lReturnCode = RegDeleteValue(hkRunOnce, L"PolicMan");
  366. if(ERROR_SUCCESS != lReturnCode)
  367. {
  368. // error
  369. }
  370. }
  372. // **** cleanup and shutdown
  374. CoUninitialize();
  376. return S_OK;
  377. }