改写一个C++程序碰到的问题(50分)

AM_WJ · 2003-04-27

这是我在VC知识库里找到的一段C++关机程序，我用DP改写 TOKEN_PRIVILEGES tkp; HANDLE hToken;    if (!OpenProcessToken(GetCurrentProcess(),TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, &hToken))    {       MessageBox("OpenProcessToken failed!");    }    LookupPrivilegeValue(NULL, SE_SHUTDOWN_NAME,&tkp.Privileges[0].Luid); //获得本地机唯一的标识    tkp.PrivilegeCount = 1;      tkp.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;    AdjustTokenPrivileges(hToken, FALSE, &tkp, 0,(PTOKEN_PRIVILEGES) NULL, 0); //调整获得的权限    if (GetLastError() != ERROR_SUCCESS)   {     MessageBox("AdjustTokenPrivileges enable failed!");   }   fResult =InitiateSystemShutdown(              NULL,                 // 要关的计算机用户名,可在局域网网中关掉对方的机器，NULL表示关本机              "由于系统不稳定，WINDOWS将在上面的时间内关机，请做好保存工作!",  // 显示的消息              10,                                // 关机所需的时间              TRUE,                                              TRUE);                             //设为TRUE为重起，设为FALSE为关机   if(!fResult)   {       MessageBox("InitiateSystemShutdown failed.");   }   tkp.Privileges[0].Attributes = 0;   AdjustTokenPrivileges(hToken, FALSE, &tkp, 0,(PTOKEN_PRIVILEGES) NULL, 0);   if (GetLastError() != ERROR_SUCCESS)  {      MessageBox("AdjustTokenPrivileges disable failed.");  }      ExitWindowsEx(EWX_SHUTDOWN,0);     //开始关机 改成dp版时 procedure TForm1.Button1Click(Sender: TObject); var   tkp: _TOKEN_PRIVILEGES;   hToken: Cardinal; begin   if not OpenProcessToken(GetCurrentProcess(),TOKEN_ADJUST_PRIVILEGES or TOKEN_QUERY,hToken) then //创建一个进程     MessageDlg('OpenProcessToken failed!',mtError,[mbOK],0);   LookupPrivilegeValue(nil,'SE_SECURITY_NAME',tkp.Privileges[0].Luid); //获得本地机唯一的标识   tkp.PrivilegeCount:= 1; tkp.Privileges[0].Attributes:= SE_PRIVILEGE_ENABLED;   AdjustTokenPrivileges(hToken, false, tkp, 0, (_TOKEN_PRIVILEGES)nil, 0); end; AdjustTokenPrivileges这个函数的PreviousState这个参数我(_TOKEN_PRIVILEGES)nil写不行应该怎么写呢？看API帮助说这里是 为null的，我直接写nil也不行. 那位大哥能把这段代码完整的翻成DP的吗?

jimmyl · 2003-04-28

AdjustTokenPrivileges(hToken, false, tkp, 0, nil, 0) 最后一个参数传错了，必须传递一个变量，另外该函数 有两种声明， function AdjustTokenPrivileges(TokenHandle: THandle; DisableAllPrivileges: BOOL;   const NewState: TTokenPrivileges; BufferLength: DWORD;   var PreviousState: TTokenPrivileges; var ReturnLength: DWORD): BOOL; stdcall; overload; {$EXTERNALSYM AdjustTokenPrivileges} function AdjustTokenPrivileges(TokenHandle: THandle; DisableAllPrivileges: BOOL;   const NewState: TTokenPrivileges; BufferLength: DWORD;   PreviousState: PTokenPrivileges; var ReturnLength: DWORD): BOOL; stdcall; overload;

AM_WJ · 2003-04-28

我改写了是可以通过了但是调整权限却失败了,我现在改写的如下: procedure TForm1.Button1Click(Sender: TObject); var   tkp: _TOKEN_PRIVILEGES;   hToken: Cardinal;   temp: Cardinal;   fResult: LongBool; begin   if not OpenProcessToken(GetCurrentProcess(),TOKEN_ADJUST_PRIVILEGES or TOKEN_QUERY,hToken) then //创建一个进程     MessageDlg('OpenProcessToken failed!',mtError,[mbOK],0);   LookupPrivilegeValue(nil,'SE_SECURITY_NAME',tkp.Privileges[0].Luid); //获得本地机唯一的标识   tkp.PrivilegeCount:= 1; tkp.Privileges[0].Attributes:= SE_PRIVILEGE_ENABLED;   AdjustTokenPrivileges(hToken, false, tkp, 0, nil, temp);   if GetLastError() <> ERROR_SUCCESS then     MessageDlg('AdjustTokenPrivileges enable failed',mtError,[mbOK],0);   fResult:= InitiateSystemShutdown(nil,'关机',10,true,true);   if not fResult then     MessageDlg('InitiateSystemShutdown failed!',mtError,[mbOK],0);   tkp.Privileges[0].Attributes:= 0;   AdjustTokenPrivileges(hToken,false,tkp,0,nil,temp);   if GetLastError() <> ERROR_SUCCESS then     MessageDlg('AdjustTokenPrivileges disable failed!',mtError,[mbOK],0);   ExitWindowsEx(EWX_SHUTDOWN,0); end; 那位能指出错在哪里吗？ 运行时出现提示MessageDlg('AdjustTokenPrivileges enable failed',mtError,[mbOK],0); 说明函数AdjustTokenPrivileges没有成功，没有获得权限.

LiChaoHui · 2003-04-29

给你一段 SetPrivilege 的源代码 function TMain.SetPrivilege(sPrivilegeName: string;   bEnabled: boolean): boolean; var   TPPrev,TP : TTokenPrivileges;   Token : THandle;   dwRetLen : DWord; begin     Result := False;     OpenProcessToken(GetCurrentProcess,     TOKEN_ADJUST_PRIVILEGES or TOKEN_QUERY, Token);     TP.PrivilegeCount := 1;     if( LookupPrivilegeValue(     Nil, PChar( sPrivilegeName ), TP.Privileges[ 0 ].LUID ))then     begin         if( bEnabled )then         begin           TP.Privileges[ 0 ].Attributes := SE_PRIVILEGE_ENABLED;         end         else begin           TP.Privileges[ 0 ].Attributes := 0;         end;         dwRetLen := 0;         Result := AdjustTokenPrivileges(Token, False,         TP, SizeOf( TPPrev ), TPPrev, dwRetLen);     end;     CloseHandle( Token ); end;

AM_WJ · 2003-04-30

不行呀,我引用楼上的这个函数 SetPrivilege('SE_SECURITY_NAME',true) 返回是false不能得到权限 我自己写的那个在这里就已经出问题了 LookupPrivilegeValue(nil,PChar('SE_SECURITY_NAME'),tkp.Privileges[0].Luid); 得到当前局域网的SE_SECURITY_NAME权限的Luid返回为False 后面的代码自然就不能实现了

LiChaoHui · 2003-04-30

这样调用，老兄，你的参数有问题啊，根本就没有你写的那个权限 应该是 SeSecurityPrivilege 给你搜索了一下相关的东西： 附在后面 begin     Result := True;     if( SetPrivilege( 'SeShutdownPrivilege', True ) )then     begin         if(not ExitWindowsEx( iFlags, 0)) then         begin             Result := False;         end;         SetPrivilege( 'SeShutdownPrivilege', False );     end     else begin         SendResult(Socket,false,'SetPrivilege failed!');         Result := False;     end;     if Result then SendResult(Socket,true,'ShutDown Execute!'); end; SeCreateTokenPrivilege 1 wbemPrivilegeCreateToken Required to create a primary token. SeAssignPrimaryTokenPrivilege 2 wbemPrivilegePrimaryToken Required to assign the primary token of a process. SeLockMemoryPrivilege 3 wbemPrivilegeLockMemory Required to lock physical pages in memory. SeIncreaseQuotaPrivilege 4 wbemPrivilegeIncreaseQuota Required to increase the quota assigned to a process. SeMachineAccountPrivilege 5 wbemPrivilegeMachineAccount Required to create a computer account. SeTcbPrivilege 6 wbemPrivilegeTcb Identifies its holder as part of the trusted computer base. Some trusted, protected subsystems are granted this privilege. SeSecurityPrivilege 7 wbemPrivilegeSecurity Required to perform a number of security-related functions, such as controlling and viewing audit messages. This privilege identifies its holder as a security operator. SeTakeOwnershipPrivilege 8 wbemPrivilegeTakeOwnership Required to take ownership of an object without being granted discretionary access. This privilege allows the owner value to be set only to those values that the holder may legitimately assign as the owner of an object. SeLoadDriverPrivilege 9 wbemPrivilegeLoadDriver Required to load or unload a device driver. SeSystemProfilePrivilege 10 wbemPrivilegeSystemProfile Required to gather profiling information for the entire system. SeSystemtimePrivilege 11 wbemPrivilegeSystemtime Required to modify the system time. SeProfileSingleProcessPrivilege 12 wbemPrivilegeProfileSingleProcess Required to gather profiling information for one process. SeIncreaseBasePriorityPrivilege 13 wbemPrivilegeIncreaseBasePriority Required to increase the base priority of a process. SeCreatePagefilePrivilege 14 wbemPrivilegeCreatePagefile Required to create a paging file. SeCreatePermanentPrivilege 15 wbemPrivilegeCreatePermanent Required to create a permanent object. SeBackupPrivilege 16 wbemPrivilegeBackup Required to perform backup operations. SeRestorePrivilege 17 wbemPrivilegeRestore Required to perform restore operations. This privilege enables you to set any valid user or group security identifier (SID) as the owner of an object. SeShutdownPrivilege 18 wbemPrivilegeShutdown Required to shut down a local system. SeDebugPrivilege 19 wbemPrivilegeDebug Required to debug a process. SeAuditPrivilege 20 wbemPrivilegeAudit Required to generate audit-log entries. SeSystemEnvironmentPrivilege 21 wbemPrivilegeSystemEnvironment Required to modify the nonvolatile RAM of systems that use this type of memory to store configuration information. SeChangeNotifyPrivilege 22 wbemPrivilegeChangeNotify Required to receive notifications of changes to files or directories. This privilege also causes the system to skip all traversal access checks. It is enabled by default for all users. SeRemoteShutdownPrivilege 23 wbemPrivilegeRemoteShutdown Required to shut down a system using a network request. SeUndockPrivilege 24 wbemPrivilegeUndock Required to remove a computer from a docking station. SeSyncAgentPrivilege 25 wbemPrivilegeSyncAgent Required to synchronize directory service data. SeEnableDelegationPrivilege 26 wbemPrivilegeEnableDelegation Required to enable computer and user accounts to be trusted for delegation.

AM_WJ · 2003-04-30

再问一下,我查了一下SDK帮助有关Privileges的定义 The following privileges are defined by Windows NT SE_SECURITY_NAME Required to perform a number of security-related functions, such as controlling and viewing audit messages. This privilege identifies its holder as a security operator. 是有这个权限的呀,那张权限表和你给的怎么大不一样呀?

AM_WJ · 2003-04-30

看明白了是一样的只是写法不同,VC里面写SE_REMOTE_SHUTDOWN_NAME = 这里的 SeRemotePrivilege

AM_WJ · 2003-04-30

给分咯

改写一个C++程序碰到的问题(50分)

AM_WJ

Unregistered / Unconfirmed

jimmyl

Unregistered / Unconfirmed

AM_WJ

Unregistered / Unconfirmed

LiChaoHui

Unregistered / Unconfirmed

AM_WJ

Unregistered / Unconfirmed

LiChaoHui

Unregistered / Unconfirmed

AM_WJ

Unregistered / Unconfirmed

AM_WJ

Unregistered / Unconfirmed

AM_WJ

Unregistered / Unconfirmed

Similar threads