31#define DACL_CMD _T("DACL")
32#define DACL_CMD_LENGTH COMMAND_LENGTH(DACL_CMD)
33#define DACL_CMD_SHORT_DESC DACL_CMD _T(" command is used to view")
_T(" key's DACL.\n")
70 const TCHAR *pchParameter;
82 goto CheckDACLArgument;
88 blnBadParameter =
FALSE;
93 blnDo = pszKey !=
NULL;
97 pszKey = pchParameter;
102 blnBadParameter =
TRUE;
106 rConsole.
Write(
_T(
"Bad parameter: "));
107 rConsole.
Write(pchParameter);
125 if (blnDo&&blnHelp) rConsole.
Write(
_T(
"\n"));
136 DWORD dwSecurityDescriptorLength;
145 nError =
Key.GetSecurityDescriptorLength(&dwSecurityDescriptorLength);
150 DWORD dwSecurityDescriptorLength1 = dwSecurityDescriptorLength;
155 sd.AssociateDescriptor(pSecurityDescriptor);
157 sd.BeginDACLInteration();
158 ASSERT(
sd.DescriptorContainsDACL());
159 if (
sd.HasNULLDACL())
161 rConsole.
Write(
_T(
"Key has not DACL.\n(This allows all access)\n"));
165 if (!
sd.HasValidDACL())
167 rConsole.
Write(
_T(
"Invalid DACL.\n"));
171 DWORD nACECount =
sd.GetDACLEntriesCount();
172 rConsole.
Write(
_T(
"DACL has "));
175 rConsole.
Write(
_T(
" ACEs.\n"));
178 rConsole.
Write(
_T(
"(This denies all access)\n"));
182 for (
DWORD i = 0 ;
i < nACECount ;
i++)
185 rConsole.
Write(
_T(
"\tACE Index: "));
188 rConsole.
Write(
_T(
"\tACE Type: "));
189 switch (
sd.GetDACLEntry(
i))
192 rConsole.
Write(
_T(
"Access-allowed\n"));
195 rConsole.
Write(
_T(
"Access-denied\n"));
198 rConsole.
Write(
_T(
"Unknown.\nCannot continue dumping of the ACE list.\n"));
201 PSID pSID =
sd.GetCurrentACE_SID();
204 rConsole.
Write(
_T(
"\tInvalid SID.\n"));
208 DWORD dwSIDStringSize = 0;
220 rConsole.
Write(
_T(
"\nGetting string representation of SID\n"));
225 rConsole.
Write(pchSID);
229 DWORD dwNameBufferLength, dwDomainNameBufferLength;
230 dwNameBufferLength = 1024;
231 dwDomainNameBufferLength = 1024;
232 pchName =
new TCHAR [dwNameBufferLength];
233 pchDomainName =
new TCHAR [dwDomainNameBufferLength];
234 DWORD dwNameLength = dwNameBufferLength, dwDomainNameLength = dwDomainNameBufferLength;
245 rConsole.
Write(
_T(
"\tTrustee Domain: "));
246 rConsole.
Write(pchDomainName);
248 rConsole.
Write(
_T(
"\tTrustee Name: "));
249 rConsole.
Write(pchName);
250 rConsole.
Write(
_T(
"\n\tSID type: "));
256 delete [] pchDomainName;
257 pchDomainName =
NULL;
261 sd.GetCurrentACE_Flags(bFlags);
266 rConsole.
Write(
_T(
"\t\tCONTAINER_INHERIT_ACE\n"));
270 rConsole.
Write(
_T(
"\t\tINHERIT_ONLY_ACE\n"));
274 rConsole.
Write(
_T(
"\t\tINHERITED_ACE\n"));
278 rConsole.
Write(
_T(
"\t\tNO_PROPAGATE_INHERIT_ACE\n"));
282 rConsole.
Write(
_T(
"\t\tOBJECT_INHERIT_ACE\n"));
286 sd.GetCurrentACE_AccessMask(dwAccessMask);
291 rConsole.
Write(
_T(
"\t\tGENERIC_READ\n"));
295 rConsole.
Write(
_T(
"\t\tGENERIC_WRITE\n"));
299 rConsole.
Write(
_T(
"\t\tGENERIC_EXECUTE\n"));
303 rConsole.
Write(
_T(
"\t\tGENERIC_ALL\n"));
307 rConsole.
Write(
_T(
"\t\tSYNCHRONIZE\n"));
311 rConsole.
Write(
_T(
"\t\tWRITE_OWNER\n"));
315 rConsole.
Write(
_T(
"\t\tWRITE_DAC\n"));
319 rConsole.
Write(
_T(
"\t\tREAD_CONTROL\n"));
321 if (dwAccessMask &
DELETE)
323 rConsole.
Write(
_T(
"\t\tDELETE\n"));
327 rConsole.
Write(
_T(
"\t\tKEY_CREATE_LINK\n"));
331 rConsole.
Write(
_T(
"\t\tKEY_NOTIFY\n"));
335 rConsole.
Write(
_T(
"\t\tKEY_ENUMERATE_SUB_KEYS\n"));
339 rConsole.
Write(
_T(
"\t\tKEY_CREATE_SUB_KEY\n"));
343 rConsole.
Write(
_T(
"\t\tKEY_SET_VALUE\n"));
347 rConsole.
Write(
_T(
"\t\tKEY_QUERY_VALUE\n"));
354 delete [] pSecurityDescriptor;
356 catch (
DWORD dwError)
362 if (pchName)
delete [] pchName;
363 if (pchDomainName)
delete [] pchDomainName;
364 if (pSecurityDescriptor)
delete [] pSecurityDescriptor;
374 _T(
" <KEY> - Optional relative path of desired key.\n")
375 _T(
" /? - This help.\n\n")
376 _T(
"Without parameters, command displays DACL of current key.\n");
#define COMMAND_NA_ON_ROOT
const TCHAR * GetSidTypeName(SID_NAME_USE Use)
BOOL GetTextualSid(PSID pSid, LPTSTR TextualSid, LPDWORD lpdwBufferLen)
#define DACL_CMD_SHORT_DESC
void ResetArgumentIteration()
TCHAR * GetNextArgument()
BOOL Write(const TCHAR *p, DWORD dwChars=0)
BOOL GetKey(const TCHAR *pchRelativePath, REGSAM DesiredAccess, CRegistryKey &rKey)
const TCHAR * GetLastErrorDescription()
CShellCommandDACL(CRegistryTree &rTree)
virtual BOOL Match(const TCHAR *pchCommand)
virtual ~CShellCommandDACL()
virtual int Execute(CConsole &rConsole, CArgumentParser &rArguments)
virtual const TCHAR * GetHelpString()
virtual const TCHAR * GetHelpShortDescriptionString()
#define ERROR_INSUFFICIENT_BUFFER
BOOL WINAPI IsValidSid(PSID pSid)
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
enum _SID_NAME_USE SID_NAME_USE
DWORD SECURITY_INFORMATION
#define KEY_CREATE_SUB_KEY
#define KEY_ENUMERATE_SUB_KEYS
DWORD WINAPI GetLastError(void)
#define CONTAINER_INHERIT_ACE
#define DACL_SECURITY_INFORMATION
struct _SECURITY_DESCRIPTOR * PISECURITY_DESCRIPTOR
#define OBJECT_INHERIT_ACE
#define NO_PROPAGATE_INHERIT_ACE