Intravision/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2024-10-02 15:34:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

[LSASRV]

Browse source 
LsarQueryInfromationPolicy: Check desired access depending on the information class.

svn path=/trunk/; revision=57340
This commit is contained in:
Eric Kohl 2012-09-19 15:33:48 +00:00
parent 66359ba4e8
commit 0d0764b28d
1 changed files with 28 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
reactos/dll/win32/lsasrv/lsarpc.c
View file

@ -188,6 +188,7 @@ NTSTATUS WINAPI LsarQueryInformationPolicy(
PLSAPR_POLICY_INFORMATION *PolicyInformation)
{
PLSA_DB_OBJECT DbObject;
ACCESS_MASK DesiredAccess = 0;
NTSTATUS Status;
TRACE("LsarQueryInformationPolicy(%p,0x%08x,%p)\n",
@ -198,9 +199,34 @@ NTSTATUS WINAPI LsarQueryInformationPolicy(
TRACE("*PolicyInformation %p\n", *PolicyInformation);
}
switch (InformationClass)
{
case PolicyAuditLogInformation:
case PolicyAuditEventsInformation:
case PolicyAuditFullQueryInformation:
DesiredAccess = POLICY_VIEW_AUDIT_INFORMATION;
break;
case PolicyPrimaryDomainInformation:
case PolicyAccountDomainInformation:
case PolicyLsaServerRoleInformation:
case PolicyReplicaSourceInformation:
case PolicyDefaultQuotaInformation:
DesiredAccess = POLICY_VIEW_LOCAL_INFORMATION;
break;
case PolicyPdAccountInformation:
DesiredAccess = POLICY_GET_PRIVATE_INFORMATION;
break;
default:
ERR("Invalid InformationClass!\n");
return STATUS_INVALID_PARAMETER;
}
Status = LsapValidateDbObject(PolicyHandle,
LsaDbPolicyObject,
0, /* FIXME */
DesiredAccess,
&DbObject);
if (!NT_SUCCESS(Status))
return Status;
@ -236,7 +262,7 @@ NTSTATUS WINAPI LsarQueryInformationPolicy(
case PolicyAuditFullSetInformation:
case PolicyAuditFullQueryInformation:
case PolicyEfsInformation:
FIXME("category not implemented\n");
FIXME("Information class not implemented\n");
Status = STATUS_UNSUCCESSFUL;
break;
}