mirror of
https://github.com/reactos/reactos.git
synced 2025-08-05 23:03:00 +00:00
[advapi32]
Alexander Yastrebov <menone7@gmail.com> - Return proper lengths of required buffer sizes in characters (including the termination NULL character) in LookupAccountSid. Fixes 4 "advapi32_winetest security" failures. See issue #4904 for more details. svn path=/trunk/; revision=44117
This commit is contained in:
Aleksey Bragin
parent
ba319b373f
commit
14442c0a34
1 changed files with 29 additions and 40 deletions
|
|
@ -1146,6 +1146,7 @@ LookupAccountSidW(LPCWSTR pSystemName,
|
||||||
PLSA_REFERENCED_DOMAIN_LIST ReferencedDomain = NULL;
|
PLSA_REFERENCED_DOMAIN_LIST ReferencedDomain = NULL;
|
||||||
PLSA_TRANSLATED_NAME TranslatedName = NULL;
|
PLSA_TRANSLATED_NAME TranslatedName = NULL;
|
||||||
BOOL ret;
|
BOOL ret;
|
||||||
|
DWORD dwAccountName, dwDomainName;
|
||||||
|
|
||||||
RtlInitUnicodeString ( &SystemName, pSystemName );
|
RtlInitUnicodeString ( &SystemName, pSystemName );
|
||||||
Status = LsaOpenPolicy ( &SystemName, &ObjectAttributes, POLICY_LOOKUP_NAMES, &PolicyHandle );
|
Status = LsaOpenPolicy ( &SystemName, &ObjectAttributes, POLICY_LOOKUP_NAMES, &PolicyHandle );
|
||||||
|
|
@ -1166,47 +1167,35 @@ LookupAccountSidW(LPCWSTR pSystemName,
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
ret = TRUE;
|
ret = TRUE;
|
||||||
if ( TranslatedName )
|
|
||||||
{
|
|
||||||
DWORD dwSrcLen = TranslatedName->Name.Length / sizeof(WCHAR);
|
|
||||||
if ( *pdwAccountName <= dwSrcLen )
|
|
||||||
{
|
|
||||||
*pdwAccountName = dwSrcLen + 1;
|
|
||||||
ret = FALSE;
|
|
||||||
}
|
|
||||||
else
|
|
||||||
{
|
|
||||||
*pdwAccountName = dwSrcLen;
|
|
||||||
if (pAccountName)
|
|
||||||
{
|
|
||||||
RtlCopyMemory ( pAccountName, TranslatedName->Name.Buffer, TranslatedName->Name.Length );
|
|
||||||
pAccountName[TranslatedName->Name.Length / sizeof(WCHAR)] = L'\0';
|
|
||||||
}
|
|
||||||
}
|
|
||||||
if ( peUse )
|
|
||||||
*peUse = TranslatedName->Use;
|
|
||||||
}
|
|
||||||
|
|
||||||
if ( ReferencedDomain )
|
dwAccountName = TranslatedName->Name.Length / sizeof(WCHAR);
|
||||||
{
|
if (ReferencedDomain && ReferencedDomain->Entries > 0)
|
||||||
if ( ReferencedDomain->Entries > 0 )
|
dwDomainName = ReferencedDomain->Domains[0].Name.Length / sizeof(WCHAR);
|
||||||
{
|
|
||||||
DWORD dwSrcLen = ReferencedDomain->Domains[0].Name.Length / sizeof(WCHAR);
|
|
||||||
if ( *pdwDomainName <= dwSrcLen )
|
|
||||||
{
|
|
||||||
*pdwDomainName = dwSrcLen + 1;
|
|
||||||
ret = FALSE;
|
|
||||||
}
|
|
||||||
else
|
else
|
||||||
|
dwDomainName = 0;
|
||||||
|
|
||||||
|
if (*pdwAccountName <= dwAccountName || *pdwDomainName <= dwDomainName)
|
||||||
{
|
{
|
||||||
*pdwDomainName = dwSrcLen;
|
/* One or two buffers are insufficient, add up a char for NULL termination */
|
||||||
if (pDomainName)
|
*pdwAccountName = dwAccountName + 1;
|
||||||
|
*pdwDomainName = dwDomainName + 1;
|
||||||
|
ret = FALSE;
|
||||||
|
} else
|
||||||
{
|
{
|
||||||
RtlCopyMemory ( pDomainName, ReferencedDomain->Domains[0].Name.Buffer, ReferencedDomain->Domains[0].Name.Length );
|
/* Lengths are sufficient, copy the data */
|
||||||
pDomainName[ReferencedDomain->Domains[0].Name.Length / sizeof(WCHAR)] = L'\0';
|
if(dwAccountName)
|
||||||
}
|
RtlCopyMemory(pAccountName, TranslatedName->Name.Buffer, dwAccountName * sizeof(WCHAR));
|
||||||
}
|
pAccountName[dwAccountName] = L'\0';
|
||||||
}
|
|
||||||
|
if(dwDomainName)
|
||||||
|
RtlCopyMemory(pDomainName, ReferencedDomain->Domains[0].Name.Buffer, dwDomainName * sizeof(WCHAR));
|
||||||
|
pDomainName[dwDomainName] = L'\0';
|
||||||
|
|
||||||
|
*pdwAccountName = dwAccountName;
|
||||||
|
*pdwDomainName = dwDomainName;
|
||||||
|
|
||||||
|
if (peUse)
|
||||||
|
*peUse = TranslatedName->Use;
|
||||||
}
|
}
|
||||||
|
|
||||||
if ( !ret )
|
if ( !ret )
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue