#include <ShellCommandDACL.h>

Inheritance diagram for CShellCommandDACL:

Collaboration diagram for CShellCommandDACL:

[legend]

Public Member Functions
	CShellCommandDACL (CRegistryTree &rTree)

virtual	~CShellCommandDACL ()

virtual BOOL	Match (const TCHAR *pchCommand)

virtual int	Execute (CConsole &rConsole, CArgumentParser &rArguments)

virtual const TCHAR *	GetHelpString ()

virtual const TCHAR *	GetHelpShortDescriptionString ()

Public Member Functions inherited from CShellCommand
	CShellCommand ()

virtual	~CShellCommand ()

Private Attributes
CRegistryTree &	m_rTree

Detailed Description

Definition at line 12 of file ShellCommandDACL.h.

Constructor & Destructor Documentation

◆ CShellCommandDACL()

CShellCommandDACL::CShellCommandDACL ( CRegistryTree & rTree )

Definition at line 39 of file ShellCommandDACL.cpp.

                                                         :m_rTree(rTree)
 {
 
 }

◆ ~CShellCommandDACL()

CShellCommandDACL::~CShellCommandDACL ( )

virtual

Definition at line 44 of file ShellCommandDACL.cpp.

 {
 
 }

Member Function Documentation

◆ Execute()

int CShellCommandDACL::Execute	(	CConsole &	rConsole,
		CArgumentParser &	rArguments
	)

virtual

Implements CShellCommand.

Definition at line 62 of file ShellCommandDACL.cpp.

 {
     rArguments.ResetArgumentIteration();
 
     const TCHAR *pszKey = NULL;
     BOOL blnDo = TRUE;
     BOOL blnBadParameter = FALSE;
     BOOL blnHelp = FALSE;
     const TCHAR *pchParameter;
     const TCHAR *pchCommandItself = rArguments.GetNextArgument();
     LONG nError;
 
     if ((_tcsnicmp(pchCommandItself,DACL_CMD _T(".."),DACL_CMD_LENGTH+2*sizeof(TCHAR)) == 0)||
         (_tcsnicmp(pchCommandItself,DACL_CMD _T("\\"),DACL_CMD_LENGTH+1*sizeof(TCHAR)) == 0))
     {
         pszKey = pchCommandItself + DACL_CMD_LENGTH;
     }
     else if (_tcsnicmp(pchCommandItself,DACL_CMD _T("/"),DACL_CMD_LENGTH+1*sizeof(TCHAR)) == 0)
     {
         pchParameter = pchCommandItself + DACL_CMD_LENGTH;
         goto CheckDACLArgument;
     }
 
     while((pchParameter = rArguments.GetNextArgument()) != NULL)
     {
 CheckDACLArgument:
         blnBadParameter = FALSE;
         if ((_tcsicmp(pchParameter,_T("/?")) == 0)
             ||(_tcsicmp(pchParameter,_T("-?")) == 0))
         {
             blnHelp = TRUE;
             blnDo = pszKey != NULL;
         }
         else if (!pszKey)
         {
             pszKey = pchParameter;
             blnDo = TRUE;
         }
         else
         {
             blnBadParameter = TRUE;
         }
         if (blnBadParameter)
         {
             rConsole.Write(_T("Bad parameter: "));
             rConsole.Write(pchParameter);
             rConsole.Write(_T("\n"));
         }
     }
 
     CRegistryKey Key;
 
   if (!m_rTree.GetKey(pszKey?pszKey:_T("."),KEY_QUERY_VALUE|READ_CONTROL,Key))
   {
     rConsole.Write(m_rTree.GetLastErrorDescription());
     blnDo = FALSE;
   }
 
     if (blnHelp)
     {
         rConsole.Write(GetHelpString());
     }
 
     if (blnDo&&blnHelp) rConsole.Write(_T("\n"));
 
     if (!blnDo)
     return 0;
 
   if (Key.IsRoot())
     {   // root key
     rConsole.Write(DACL_CMD COMMAND_NA_ON_ROOT);
     return 0;
   }
 
   DWORD dwSecurityDescriptorLength;
   rConsole.Write(_T("Key : "));
   rConsole.Write(_T("\\"));
   rConsole.Write(Key.GetKeyName());
   rConsole.Write(_T("\n"));
   PISECURITY_DESCRIPTOR pSecurityDescriptor = NULL;
   TCHAR *pchName = NULL, *pchDomainName = NULL;
   try
   {
     nError = Key.GetSecurityDescriptorLength(&dwSecurityDescriptorLength);
     if (nError != ERROR_SUCCESS)
       throw nError;
 
     pSecurityDescriptor = (PISECURITY_DESCRIPTOR) new unsigned char [dwSecurityDescriptorLength];
     DWORD dwSecurityDescriptorLength1 = dwSecurityDescriptorLength;
     nError = Key.GetSecurityDescriptor((SECURITY_INFORMATION)DACL_SECURITY_INFORMATION,pSecurityDescriptor,&dwSecurityDescriptorLength1);
     if (nError != ERROR_SUCCESS)
       throw nError;
     CSecurityDescriptor sd;
     sd.AssociateDescriptor(pSecurityDescriptor);
 
     sd.BeginDACLInteration();
     ASSERT(sd.DescriptorContainsDACL());
     if (sd.HasNULLDACL())
     {
       rConsole.Write(_T("Key has not DACL.\n(This allows all access)\n"));
     }
     else
     {
       if (!sd.HasValidDACL())
       {
         rConsole.Write(_T("Invalid DACL.\n"));
       }
       else
       {
         DWORD nACECount = sd.GetDACLEntriesCount();
         rConsole.Write(_T("DACL has "));
         TCHAR Buffer[256];
         rConsole.Write(_itoa(nACECount,Buffer,10));
         rConsole.Write(_T(" ACEs.\n"));
         if (nACECount == 0)
         {
           rConsole.Write(_T("(This denies all access)\n"));
         }
         else
         {
           for (DWORD i = 0 ; i < nACECount ; i++)
           {
             rConsole.Write(_T("\n"));
             rConsole.Write(_T("\tACE Index: "));
             rConsole.Write(_itoa(i,Buffer,10));
             rConsole.Write(_T("\n"));
             rConsole.Write(_T("\tACE Type: "));
             switch (sd.GetDACLEntry(i))
             {
             case CSecurityDescriptor::AccessAlowed:
               rConsole.Write(_T("Access-allowed\n"));
               break;
             case CSecurityDescriptor::AccessDenied:
               rConsole.Write(_T("Access-denied\n"));
               break;
             default:
               rConsole.Write(_T("Unknown.\nCannot continue dumping of the ACE list.\n"));
               goto AbortDumpDACL;
             }
             PSID pSID = sd.GetCurrentACE_SID();
             if ((pSID == NULL)||(!IsValidSid(pSID)))
             {
               rConsole.Write(_T("\tInvalid SID.\n"));
             }
             else
             {
               DWORD dwSIDStringSize = 0;
               BOOL blnRet = GetTextualSid(pSID,NULL,&dwSIDStringSize);
               ASSERT(!blnRet);
               ASSERT(GetLastError() == ERROR_INSUFFICIENT_BUFFER);
               TCHAR *pchSID = new TCHAR[dwSIDStringSize];
               if(!GetTextualSid(pSID,pchSID,&dwSIDStringSize))
               {
                 DWORD dwError = GetLastError();
                 ASSERT(dwError != ERROR_INSUFFICIENT_BUFFER);
                 rConsole.Write(_T("Error "));
                 TCHAR Buffer[256];
                 rConsole.Write(_itoa(dwError,Buffer,10));
                 rConsole.Write(_T("\nGetting string representation of SID\n"));
               }
               else
               {
                 rConsole.Write(_T("\tSID: "));
                 rConsole.Write(pchSID);
                 rConsole.Write(_T("\n"));
               }
               delete[] pchSID;
               DWORD dwNameBufferLength, dwDomainNameBufferLength;
               dwNameBufferLength = 1024;
               dwDomainNameBufferLength = 1024;
               pchName = new TCHAR [dwNameBufferLength];
               pchDomainName = new TCHAR [dwDomainNameBufferLength];
               DWORD dwNameLength = dwNameBufferLength, dwDomainNameLength = dwDomainNameBufferLength;
               SID_NAME_USE Use;
               if (!LookupAccountSid(NULL,pSID,pchName,&dwNameLength,pchDomainName,&dwDomainNameLength,&Use))
               {
                 rConsole.Write(_T("Error "));
                 TCHAR Buffer[256];
                 rConsole.Write(_itoa(GetLastError(),Buffer,10));
                 rConsole.Write(_T("\n"));
               }
               else
               {
                 rConsole.Write(_T("\tTrustee Domain: "));
                 rConsole.Write(pchDomainName);
                 rConsole.Write(_T("\n"));
                 rConsole.Write(_T("\tTrustee Name: "));
                 rConsole.Write(pchName);
                 rConsole.Write(_T("\n\tSID type: "));
                 rConsole.Write(GetSidTypeName(Use));
                 rConsole.Write(_T("\n"));
               }
               delete [] pchName;
               pchName = NULL;
               delete [] pchDomainName;
               pchDomainName = NULL;
             }
 
             BYTE bFlags;
             sd.GetCurrentACE_Flags(bFlags);
             wsprintf(Buffer,_T("\tFlags: 0x%02lX\n"),bFlags);
             rConsole.Write(Buffer);
             if (bFlags & CONTAINER_INHERIT_ACE)
             {
               rConsole.Write(_T("\t\tCONTAINER_INHERIT_ACE\n"));
             }
             if (bFlags & INHERIT_ONLY_ACE)
             {
               rConsole.Write(_T("\t\tINHERIT_ONLY_ACE\n"));
             }
             if (bFlags & INHERITED_ACE)
             {
               rConsole.Write(_T("\t\tINHERITED_ACE\n"));
             }
             if (bFlags & NO_PROPAGATE_INHERIT_ACE)
             {
               rConsole.Write(_T("\t\tNO_PROPAGATE_INHERIT_ACE\n"));
             }
             if (bFlags & OBJECT_INHERIT_ACE)
             {
               rConsole.Write(_T("\t\tOBJECT_INHERIT_ACE\n"));
             }
 
             DWORD dwAccessMask;
             sd.GetCurrentACE_AccessMask(dwAccessMask);
             wsprintf(Buffer,_T("\tAccess Mask: 0x%08lX\n"),dwAccessMask);
             rConsole.Write(Buffer);
             if (dwAccessMask & GENERIC_READ)
             {
               rConsole.Write(_T("\t\tGENERIC_READ\n"));
             }
             if (dwAccessMask & GENERIC_WRITE)
             {
               rConsole.Write(_T("\t\tGENERIC_WRITE\n"));
             }
             if (dwAccessMask & GENERIC_EXECUTE)
             {
               rConsole.Write(_T("\t\tGENERIC_EXECUTE\n"));
             }
             if (dwAccessMask & GENERIC_ALL)
             {
               rConsole.Write(_T("\t\tGENERIC_ALL\n"));
             }
             if (dwAccessMask & SYNCHRONIZE)
             {
               rConsole.Write(_T("\t\tSYNCHRONIZE\n"));
             }
             if (dwAccessMask & WRITE_OWNER)
             {
               rConsole.Write(_T("\t\tWRITE_OWNER\n"));
             }
             if (dwAccessMask & WRITE_DAC)
             {
               rConsole.Write(_T("\t\tWRITE_DAC\n"));
             }
             if (dwAccessMask & READ_CONTROL)
             {
               rConsole.Write(_T("\t\tREAD_CONTROL\n"));
             }
             if (dwAccessMask & DELETE)
             {
               rConsole.Write(_T("\t\tDELETE\n"));
             }
             if (dwAccessMask & KEY_CREATE_LINK)
             {
               rConsole.Write(_T("\t\tKEY_CREATE_LINK\n"));
             }
             if (dwAccessMask & KEY_NOTIFY)
             {
               rConsole.Write(_T("\t\tKEY_NOTIFY\n"));
             }
             if (dwAccessMask & KEY_ENUMERATE_SUB_KEYS)
             {
               rConsole.Write(_T("\t\tKEY_ENUMERATE_SUB_KEYS\n"));
             }
             if (dwAccessMask & KEY_CREATE_SUB_KEY)
             {
               rConsole.Write(_T("\t\tKEY_CREATE_SUB_KEY\n"));
             }
             if (dwAccessMask & KEY_SET_VALUE)
             {
               rConsole.Write(_T("\t\tKEY_SET_VALUE\n"));
             }
             if (dwAccessMask & KEY_QUERY_VALUE)
             {
               rConsole.Write(_T("\t\tKEY_QUERY_VALUE\n"));
             }
           } // for
         } // else (nACECount == 0)
       } // else (!sd.HasValidDACL())
     } // else (sd.HasNULLDACL())
 AbortDumpDACL:
     delete [] pSecurityDescriptor;
   }  // try
   catch (DWORD dwError)
   {
     rConsole.Write(_T("Error "));
     TCHAR Buffer[256];
     rConsole.Write(_itoa(dwError,Buffer,10));
     rConsole.Write(_T("\n"));
     if (pchName) delete [] pchName;
     if (pchDomainName) delete [] pchDomainName;
     if (pSecurityDescriptor) delete [] pSecurityDescriptor;
   }
 
     return 0;
 }

◆ GetHelpShortDescriptionString()

const TCHAR * CShellCommandDACL::GetHelpShortDescriptionString ( )

virtual

Implements CShellCommand.

Definition at line 379 of file ShellCommandDACL.cpp.

 {
     return DACL_CMD_SHORT_DESC;
 }

◆ GetHelpString()

const TCHAR * CShellCommandDACL::GetHelpString ( )

virtual

Implements CShellCommand.

Definition at line 370 of file ShellCommandDACL.cpp.

 {
     return DACL_CMD_SHORT_DESC
             _T("Syntax: ") DACL_CMD _T(" [<KEY>] [/?]\n\n")
             _T("    <KEY> - Optional relative path of desired key.\n")
             _T("    /?    - This help.\n\n")
             _T("Without parameters, command displays DACL of current key.\n");
 }

Referenced by Execute().

◆ Match()

BOOL CShellCommandDACL::Match ( const TCHAR * pchCommand )

virtual

Implements CShellCommand.

Definition at line 49 of file ShellCommandDACL.cpp.

 {
     if (_tcsicmp(pchCommand,DACL_CMD) == 0)
         return TRUE;
     if (_tcsnicmp(pchCommand,DACL_CMD _T(".."),DACL_CMD_LENGTH+2*sizeof(TCHAR)) == 0)
         return TRUE;
     if (_tcsnicmp(pchCommand,DACL_CMD _T("/") ,DACL_CMD_LENGTH+1*sizeof(TCHAR)) == 0)
         return TRUE;
     if (_tcsnicmp(pchCommand,DACL_CMD _T("\\"),DACL_CMD_LENGTH+1*sizeof(TCHAR)) == 0)
         return TRUE;
     return FALSE;
 }

Member Data Documentation

◆ m_rTree

CRegistryTree& CShellCommandDACL::m_rTree

private

Definition at line 22 of file ShellCommandDACL.h.

Referenced by Execute().

The documentation for this class was generated from the following files:

modules/rosapps/applications/sysutils/regexpl/ShellCommandDACL.h
modules/rosapps/applications/sysutils/regexpl/ShellCommandDACL.cpp

Public Member Functions

Private Attributes

Detailed Description

Constructor & Destructor Documentation

◆ CShellCommandDACL()

◆ ~CShellCommandDACL()

Member Function Documentation

◆ Execute()

◆ GetHelpShortDescriptionString()

◆ GetHelpString()

◆ Match()

Member Data Documentation

◆ m_rTree