个人中心
gpt4 book ai didi

c++ - 接收用户所属的所有成员组的 SID?

转载 作者:行者123 更新时间:2023-11-28 04:07:23 26 4
gpt4 key购买 nike

我正在使用下面的代码来检索进程所有者的 SID,这里一切正常,但我如何才能可能至少检索任何(最多每个)进程所有者所属的成员资格 SID?

PSID g_pSID;
BOOL GetCurrentProcessSID()
{
    DWORD dwSize = 0, dwError, dwResult = 0;
    HANDLE hToken;

    if (!OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hToken))
    {
        printf("OpenProcessToken Error %u\n", GetLastError());
        return FALSE;
    }

    // Call GetTokenInformation to get the buffer size.
    TOKEN_USER tU;
    if (!GetTokenInformation(hToken, TokenUser, &tU, 0, &dwSize))
    {
        dwError = GetLastError();
        if (dwError != ERROR_INSUFFICIENT_BUFFER)
        {
            std::cout << "GetTokenInformation failed, error " << dwError;
            CloseHandle(hToken);
            return 0;
        }
    }

    PTOKEN_OWNER to = (PTOKEN_OWNER)LocalAlloc(LPTR, dwSize);
    if (!to)
    {
        dwError = GetLastError();
        std::cout << "LocalAlloc failed, error " << dwError;
        CloseHandle(hToken);
        return 0;
    }

    if (!GetTokenInformation(hToken, TokenOwner, to, dwSize, &dwSize))
    {
        dwError = GetLastError();
        std::cout << "GetTokenInformation failed, error " << dwError;
        LocalFree(to);
        CloseHandle(hToken);
        return 0;
    }

    g_pSID = to->Owner;
    return TRUE;
}

此外,除了使用全局变量外,我在片段中是否有任何错误,有什么建议吗?

最佳答案

您首先使用TokenUser 获取TokenInformation 的缓冲区大小,然后在第二个调用方中使用TokenOwner。不确定你真正想要哪个。有个好explanation .

TokenOwner is the part of the token that determines the default owner of objects created by a process or thread running in the token's security context. The TokenUser is the user that the token represents.

此外,您应该在函数返回之前调用LocalFree(to)

如果想获取与token相关联的群组账户。您可以在调用GetTokenInformation 时通过TokenGroups 获取它。 

#define MAX_NAME 256
BOOL RetriveGroupSid(VOID)
{
    DWORD i, dwSize = 0, dwResult = 0;
    HANDLE hToken;
    PTOKEN_GROUPS pGroupInfo;
    SID_NAME_USE SidType;
    char lpName[MAX_NAME];
    char lpDomain[MAX_NAME];
    SID_IDENTIFIER_AUTHORITY SIDAuth = SECURITY_NT_AUTHORITY;

    // Open a handle to the access token for the calling process.

    if (!OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hToken))
    {
        printf("OpenProcessToken Error %u\n", GetLastError());
        return FALSE;
    }

    // Call GetTokenInformation to get the buffer size.

    if (!GetTokenInformation(hToken, TokenGroups, NULL, dwSize, &dwSize))
    {
        dwResult = GetLastError();
        if (dwResult != ERROR_INSUFFICIENT_BUFFER) {
            printf("GetTokenInformation Error %u\n", dwResult);
            return FALSE;
        }
    }

    // Allocate the buffer.

    pGroupInfo = (PTOKEN_GROUPS)GlobalAlloc(GPTR, dwSize);

    // Call GetTokenInformation again to get the group information.

    if (!GetTokenInformation(hToken, TokenGroups, pGroupInfo,
        dwSize, &dwSize))
    {
        printf("GetTokenInformation Error %u\n", GetLastError());
        return FALSE;
    }

    for (i = 0; i < pGroupInfo->GroupCount; i++)
    {
        dwSize = MAX_NAME;
        LPSTR sid;
        if (!ConvertSidToStringSid(pGroupInfo->Groups[i].Sid, &sid))
        {
            printf("ConvertSidToStringSid Error %u\n", GetLastError());
            return FALSE;
        }
        if (!LookupAccountSid(NULL, pGroupInfo->Groups[i].Sid,
            lpName, &dwSize, lpDomain,
            &dwSize, &SidType))
        {
            dwResult = GetLastError();
            if (dwResult == ERROR_NONE_MAPPED)
                strcpy_s(lpName, dwSize, "NONE_MAPPED");
            else
            {
                printf("LookupAccountSid Error %u\n", GetLastError());
                LocalFree(sid);
                return FALSE;
            }
        }
        printf("%s : %s\\%s \n", sid, lpDomain, lpName);


        // Find out whether the SID is enabled in the token.
        if (pGroupInfo->Groups[i].Attributes & SE_GROUP_ENABLED)
            printf("The group SID is enabled.\n");
        else if (pGroupInfo->Groups[i].Attributes &
            SE_GROUP_USE_FOR_DENY_ONLY)
            printf("The group SID is a deny-only SID.\n");
        else
            printf("The group SID is not enabled.\n");
        LocalFree(sid);

    }

    if (pGroupInfo)
        GlobalFree(pGroupInfo);
    return TRUE;
}

另一种方式,另见 retrieve all groups a user belongs to… in C++

关于c++ - 接收用户所属的所有成员组的 SID?,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/58480302/

26 4 0
文章推荐: c++ - 我的游戏引擎的 spdlog 日志记录出现奇怪的 "unresolved external symbol"错误
文章推荐: html - 无法将整个 div 移动到页面中心
文章推荐: c++ - 强制 vector 的分配器指向特定位置
文章推荐: javascript - SimpleSchema 中用于更新的 autoValue 未设置给定值
行者123
个人简介

我是一名优秀的程序员,十分优秀!

滴滴打车优惠券免费领取
滴滴打车优惠券
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com