ReactOS 0.4.15-dev-7958-gcd0bb1a
Classes | Macros | Functions | Variables
security.c File Reference
#include "btrfs_drv.h"
Include dependency graph for security.c:

Go to the source code of this file.

Classes

struct  sid_header
 
struct  dacl
 

Macros

#define SEF_DACL_AUTO_INHERIT   0x01
 
#define SEF_SACL_AUTO_INHERIT   0x02
 

Functions

void add_user_mapping (WCHAR *sidstring, ULONG sidstringlength, uint32_t uid)
 
void add_group_mapping (WCHAR *sidstring, ULONG sidstringlength, uint32_t gid)
 
NTSTATUS uid_to_sid (uint32_t uid, PSID *sid)
 
uint32_t sid_to_uid (PSID sid)
 
static void gid_to_sid (uint32_t gid, PSID *sid)
 
static ACLload_default_acl ()
 
static void get_top_level_sd (fcb *fcb)
 
void fcb_get_sd (fcb *fcb, struct _fcb *parent, bool look_for_xattr, PIRP Irp)
 
static NTSTATUS get_file_security (PFILE_OBJECT FileObject, SECURITY_DESCRIPTOR *relsd, ULONG *buflen, SECURITY_INFORMATION flags)
 
 _Dispatch_type_ (IRP_MJ_QUERY_SECURITY)
 
static NTSTATUS set_file_security (device_extension *Vcb, PFILE_OBJECT FileObject, SECURITY_DESCRIPTOR *sd, PSECURITY_INFORMATION flags, PIRP Irp)
 
 _Dispatch_type_ (IRP_MJ_SET_SECURITY)
 
static bool search_for_gid (fcb *fcb, PSID sid)
 
void find_gid (struct _fcb *fcb, struct _fcb *parfcb, PSECURITY_SUBJECT_CONTEXT subjcont)
 
NTSTATUS fcb_get_new_sd (fcb *fcb, file_ref *parfileref, ACCESS_STATE *as)
 

Variables

static sid_header sid_BA = { 1, 2, SECURITY_NT_AUTHORITY, {32, 544}}
 
static sid_header sid_SY = { 1, 1, SECURITY_NT_AUTHORITY, {18}}
 
static sid_header sid_BU = { 1, 2, SECURITY_NT_AUTHORITY, {32, 545}}
 
static sid_header sid_AU = { 1, 1, SECURITY_NT_AUTHORITY, {11}}
 
static dacl def_dacls []
 
LIST_ENTRY uid_map_list
 
LIST_ENTRY gid_map_list
 
ERESOURCE mapping_lock
 

Macro Definition Documentation

◆ SEF_DACL_AUTO_INHERIT

#define SEF_DACL_AUTO_INHERIT   0x01

Definition at line 20 of file security.c.

◆ SEF_SACL_AUTO_INHERIT

#define SEF_SACL_AUTO_INHERIT   0x02

Definition at line 21 of file security.c.

Function Documentation

◆ _Dispatch_type_() [1/2]

_Dispatch_type_ ( IRP_MJ_QUERY_SECURITY  )

Definition at line 662 of file security.c.

664 {
665 NTSTATUS Status;
666 SECURITY_DESCRIPTOR* sd;
667 PIO_STACK_LOCATION IrpSp = IoGetCurrentIrpStackLocation(Irp);
668 device_extension* Vcb = DeviceObject->DeviceExtension;
669 ULONG buflen;
670 bool top_level;
671 PFILE_OBJECT FileObject = IrpSp->FileObject;
672 ccb* ccb = FileObject ? FileObject->FsContext2 : NULL;
673
674 FsRtlEnterFileSystem();
675
676 TRACE("query security\n");
677
678 top_level = is_top_level(Irp);
679
680 if (Vcb && Vcb->type == VCB_TYPE_VOLUME) {
681 Status = STATUS_INVALID_DEVICE_REQUEST;
682 goto end;
683 } else if (!Vcb || Vcb->type != VCB_TYPE_FS) {
684 Status = STATUS_INVALID_PARAMETER;
685 goto end;
686 }
687
688 if (!ccb) {
689 ERR("no ccb\n");
690 Status = STATUS_INVALID_PARAMETER;
691 goto end;
692 }
693
694 if (Irp->RequestorMode == UserMode && !(ccb->access & READ_CONTROL)) {
695 WARN("insufficient permissions\n");
696 Status = STATUS_ACCESS_DENIED;
697 goto end;
698 }
699
700 Status = STATUS_SUCCESS;
701
702 Irp->IoStatus.Information = 0;
703
704 if (IrpSp->Parameters.QuerySecurity.SecurityInformation & OWNER_SECURITY_INFORMATION)
705 TRACE("OWNER_SECURITY_INFORMATION\n");
706
707 if (IrpSp->Parameters.QuerySecurity.SecurityInformation & GROUP_SECURITY_INFORMATION)
708 TRACE("GROUP_SECURITY_INFORMATION\n");
709
710 if (IrpSp->Parameters.QuerySecurity.SecurityInformation & DACL_SECURITY_INFORMATION)
711 TRACE("DACL_SECURITY_INFORMATION\n");
712
713 if (IrpSp->Parameters.QuerySecurity.SecurityInformation & SACL_SECURITY_INFORMATION)
714 TRACE("SACL_SECURITY_INFORMATION\n");
715
716 TRACE("length = %lu\n", IrpSp->Parameters.QuerySecurity.Length);
717
718 sd = map_user_buffer(Irp, NormalPagePriority);
719 TRACE("sd = %p\n", sd);
720
721 if (Irp->MdlAddress && !sd) {
722 ERR("MmGetSystemAddressForMdlSafe returned NULL\n");
723 Status = STATUS_INSUFFICIENT_RESOURCES;
724 goto end;
725 }
726
727 buflen = IrpSp->Parameters.QuerySecurity.Length;
728
729 Status = get_file_security(IrpSp->FileObject, sd, &buflen, IrpSp->Parameters.QuerySecurity.SecurityInformation);
730
731 if (NT_SUCCESS(Status))
732 Irp->IoStatus.Information = IrpSp->Parameters.QuerySecurity.Length;
733 else if (Status == STATUS_BUFFER_TOO_SMALL) {
734 Irp->IoStatus.Information = buflen;
735 Status = STATUS_BUFFER_OVERFLOW;
736 } else
737 Irp->IoStatus.Information = 0;
738
739end:
740 TRACE("Irp->IoStatus.Information = %Iu\n", Irp->IoStatus.Information);
741
742 Irp->IoStatus.Status = Status;
743
744 IoCompleteRequest(Irp, IO_NO_INCREMENT);
745
746 if (top_level)
747 IoSetTopLevelIrp(NULL);
748
749 TRACE("returning %08lx\n", Status);
750
751 FsRtlExitFileSystem();
752
753 return Status;
754}
IoGetCurrentIrpStackLocation
static PIO_STACK_LOCATION IoGetCurrentIrpStackLocation(PIRP Irp)
Definition: Bus_PDO_EvalMethod.c:150
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
WARN
#define WARN(fmt,...)
Definition: debug.h:112
ERR
#define ERR(fmt,...)
Definition: debug.h:110
VCB_TYPE_VOLUME
#define VCB_TYPE_VOLUME
Definition: btrfs_drv.h:689
VCB_TYPE_FS
#define VCB_TYPE_FS
Definition: btrfs_drv.h:687
map_user_buffer
static __inline void * map_user_buffer(PIRP Irp, ULONG priority)
Definition: btrfs_drv.h:977
Irp
_In_ PIRP Irp
Definition: csq.h:116
NULL
#define NULL
Definition: types.h:112
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
is_top_level
bool is_top_level(_In_ PIRP Irp)
Definition: btrfs.c:278
get_file_security
static NTSTATUS get_file_security(PFILE_OBJECT FileObject, SECURITY_DESCRIPTOR *relsd, ULONG *buflen, SECURITY_INFORMATION flags)
Definition: security.c:636
IrpSp
_In_ PIO_STACK_LOCATION IrpSp
Definition: create.c:4137
FsRtlEnterFileSystem
#define FsRtlEnterFileSystem
FsRtlExitFileSystem
#define FsRtlExitFileSystem
Status
Status
Definition: gdiplustypes.h:25
end
GLuint GLuint end
Definition: gl.h:1545
NormalPagePriority
@ NormalPagePriority
Definition: imports.h:56
sd
static const WCHAR sd[]
Definition: suminfo.c:286
UserMode
#define UserMode
Definition: asm.h:35
READ_CONTROL
#define READ_CONTROL
Definition: nt_native.h:58
IoCompleteRequest
#define IoCompleteRequest
Definition: irp.c:1240
IoSetTopLevelIrp
VOID NTAPI IoSetTopLevelIrp(IN PIRP Irp)
Definition: irp.c:2000
Vcb
#define Vcb
Definition: cdprocs.h:1415
STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65
STATUS_BUFFER_TOO_SMALL
#define STATUS_BUFFER_TOO_SMALL
Definition: shellext.h:69
STATUS_BUFFER_OVERFLOW
#define STATUS_BUFFER_OVERFLOW
Definition: shellext.h:66
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
_IO_STACK_LOCATION
Definition: Bus_PDO_EvalMethod.c:93
_IO_STACK_LOCATION::QuerySecurity
struct _IO_STACK_LOCATION::@3978::@3996 QuerySecurity
_IO_STACK_LOCATION::FileObject
PFILE_OBJECT FileObject
Definition: iotypes.h:3169
_IO_STACK_LOCATION::Parameters
union _IO_STACK_LOCATION::@1564 Parameters
_SECURITY_DESCRIPTOR
Definition: ms-dtyp.idl:301
_ccb
Definition: btrfs_drv.h:370
_ccb::access
ACCESS_MASK access
Definition: btrfs_drv.h:382
_device_extension
Definition: btrfs_drv.h:758
ULONG
uint32_t ULONG
Definition: typedefs.h:59
STATUS_INVALID_DEVICE_REQUEST
#define STATUS_INVALID_DEVICE_REQUEST
Definition: udferr_usr.h:138
STATUS_ACCESS_DENIED
#define STATUS_ACCESS_DENIED
Definition: udferr_usr.h:145
STATUS_INVALID_PARAMETER
#define STATUS_INVALID_PARAMETER
Definition: udferr_usr.h:135
STATUS_INSUFFICIENT_RESOURCES
#define STATUS_INSUFFICIENT_RESOURCES
Definition: udferr_usr.h:158
DeviceObject
_In_ PDEVICE_OBJECT DeviceObject
Definition: wdfdevice.h:2055
FileObject
_In_ WDFREQUEST _In_ WDFFILEOBJECT FileObject
Definition: wdfdevice.h:550
IO_NO_INCREMENT
#define IO_NO_INCREMENT
Definition: iotypes.h:598
PFILE_OBJECT
* PFILE_OBJECT
Definition: iotypes.h:1998
DACL_SECURITY_INFORMATION
#define DACL_SECURITY_INFORMATION
Definition: setypes.h:125
OWNER_SECURITY_INFORMATION
#define OWNER_SECURITY_INFORMATION
Definition: setypes.h:123
GROUP_SECURITY_INFORMATION
#define GROUP_SECURITY_INFORMATION
Definition: setypes.h:124
SACL_SECURITY_INFORMATION
#define SACL_SECURITY_INFORMATION
Definition: setypes.h:126

◆ _Dispatch_type_() [2/2]

_Dispatch_type_ ( IRP_MJ_SET_SECURITY  )

Definition at line 827 of file security.c.

829 {
830 NTSTATUS Status;
831 PIO_STACK_LOCATION IrpSp = IoGetCurrentIrpStackLocation(Irp);
832 PFILE_OBJECT FileObject = IrpSp->FileObject;
833 ccb* ccb = FileObject ? FileObject->FsContext2 : NULL;
834 device_extension* Vcb = DeviceObject->DeviceExtension;
835 ULONG access_req = 0;
836 bool top_level;
837
838 FsRtlEnterFileSystem();
839
840 TRACE("set security\n");
841
842 top_level = is_top_level(Irp);
843
844 if (Vcb && Vcb->type == VCB_TYPE_VOLUME) {
845 Status = STATUS_INVALID_DEVICE_REQUEST;
846 goto end;
847 } else if (!Vcb || Vcb->type != VCB_TYPE_FS) {
848 Status = STATUS_INVALID_PARAMETER;
849 goto end;
850 }
851
852 if (!ccb) {
853 ERR("no ccb\n");
854 Status = STATUS_INVALID_PARAMETER;
855 goto end;
856 }
857
858 Status = STATUS_SUCCESS;
859
860 Irp->IoStatus.Information = 0;
861
862 if (IrpSp->Parameters.SetSecurity.SecurityInformation & OWNER_SECURITY_INFORMATION) {
863 TRACE("OWNER_SECURITY_INFORMATION\n");
864 access_req |= WRITE_OWNER;
865 }
866
867 if (IrpSp->Parameters.SetSecurity.SecurityInformation & GROUP_SECURITY_INFORMATION) {
868 TRACE("GROUP_SECURITY_INFORMATION\n");
869 access_req |= WRITE_OWNER;
870 }
871
872 if (IrpSp->Parameters.SetSecurity.SecurityInformation & DACL_SECURITY_INFORMATION) {
873 TRACE("DACL_SECURITY_INFORMATION\n");
874 access_req |= WRITE_DAC;
875 }
876
877 if (IrpSp->Parameters.SetSecurity.SecurityInformation & SACL_SECURITY_INFORMATION) {
878 TRACE("SACL_SECURITY_INFORMATION\n");
879 access_req |= ACCESS_SYSTEM_SECURITY;
880 }
881
882 if (Irp->RequestorMode == UserMode && (ccb->access & access_req) != access_req) {
883 Status = STATUS_ACCESS_DENIED;
884 WARN("insufficient privileges\n");
885 goto end;
886 }
887
888 Status = set_file_security(DeviceObject->DeviceExtension, FileObject, IrpSp->Parameters.SetSecurity.SecurityDescriptor,
889 &IrpSp->Parameters.SetSecurity.SecurityInformation, Irp);
890
891end:
892 Irp->IoStatus.Status = Status;
893
894 IoCompleteRequest(Irp, IO_NO_INCREMENT);
895
896 TRACE("returning %08lx\n", Status);
897
898 if (top_level)
899 IoSetTopLevelIrp(NULL);
900
901 FsRtlExitFileSystem();
902
903 return Status;
904}
set_file_security
static NTSTATUS set_file_security(device_extension *Vcb, PFILE_OBJECT FileObject, SECURITY_DESCRIPTOR *sd, PSECURITY_INFORMATION flags, PIRP Irp)
Definition: security.c:756
WRITE_DAC
#define WRITE_DAC
Definition: nt_native.h:59
ACCESS_SYSTEM_SECURITY
#define ACCESS_SYSTEM_SECURITY
Definition: nt_native.h:77
WRITE_OWNER
#define WRITE_OWNER
Definition: nt_native.h:60
_IO_STACK_LOCATION::SetSecurity
struct _IO_STACK_LOCATION::@3978::@3997 SetSecurity

◆ add_group_mapping()

void add_group_mapping ( WCHAR sidstring,
ULONG  sidstringlength,
uint32_t  gid 
)

Definition at line 145 of file security.c.

145 {
146 unsigned int i, np;
147 uint8_t numdashes;
148 uint64_t val;
149 ULONG sidsize;
150 sid_header* sid;
151 gid_map* gm;
152
153 if (sidstringlength < 4 || sidstring[0] != 'S' || sidstring[1] != '-' || sidstring[2] != '1' || sidstring[3] != '-') {
154 ERR("invalid SID\n");
155 return;
156 }
157
158 sidstring = &sidstring[4];
159 sidstringlength -= 4;
160
161 numdashes = 0;
162 for (i = 0; i < sidstringlength; i++) {
163 if (sidstring[i] == '-') {
164 numdashes++;
165 sidstring[i] = 0;
166 }
167 }
168
169 sidsize = 8 + (numdashes * 4);
170 sid = ExAllocatePoolWithTag(PagedPool, sidsize, ALLOC_TAG);
171 if (!sid) {
172 ERR("out of memory\n");
173 return;
174 }
175
176 sid->revision = 0x01;
177 sid->elements = numdashes;
178
179 np = 0;
180 while (sidstringlength > 0) {
181 val = 0;
182 i = 0;
183 while (i < sidstringlength && sidstring[i] != '-') {
184 if (sidstring[i] >= '0' && sidstring[i] <= '9') {
185 val *= 10;
186 val += sidstring[i] - '0';
187 } else
188 break;
189
190 i++;
191 }
192
193 i++;
194 TRACE("val = %u, i = %u, ssl = %lu\n", (uint32_t)val, i, sidstringlength);
195
196 if (np == 0) {
197 sid->auth[0] = (uint8_t)((val & 0xff0000000000) >> 40);
198 sid->auth[1] = (uint8_t)((val & 0xff00000000) >> 32);
199 sid->auth[2] = (uint8_t)((val & 0xff000000) >> 24);
200 sid->auth[3] = (uint8_t)((val & 0xff0000) >> 16);
201 sid->auth[4] = (uint8_t)((val & 0xff00) >> 8);
202 sid->auth[5] = val & 0xff;
203 } else
204 sid->nums[np-1] = (uint32_t)val;
205
206 np++;
207
208 if (sidstringlength > i) {
209 sidstringlength -= i;
210
211 sidstring = &sidstring[i];
212 } else
213 break;
214 }
215
216 gm = ExAllocatePoolWithTag(PagedPool, sizeof(gid_map), ALLOC_TAG);
217 if (!gm) {
218 ERR("out of memory\n");
219 ExFreePool(sid);
220 return;
221 }
222
223 gm->sid = sid;
224 gm->gid = gid;
225
226 InsertTailList(&gid_map_list, &gm->listentry);
227}
ALLOC_TAG
#define ALLOC_TAG
Definition: btrfs_drv.h:87
sid
FT_UInt sid
Definition: cffcmap.c:139
uint32_t
UINT32 uint32_t
Definition: types.h:75
uint64_t
UINT64 uint64_t
Definition: types.h:77
gid_map_list
LIST_ENTRY gid_map_list
Definition: security.c:53
InsertTailList
#define InsertTailList(ListHead, Entry)
Definition: env_spec_w32.h:1003
ExAllocatePoolWithTag
#define ExAllocatePoolWithTag(hernya, size, tag)
Definition: env_spec_w32.h:350
ExFreePool
#define ExFreePool(addr)
Definition: env_spec_w32.h:352
PagedPool
#define PagedPool
Definition: env_spec_w32.h:308
val
GLuint GLfloat * val
Definition: glext.h:7180
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
uint8_t
BYTE uint8_t
Definition: msvideo1.c:66
uint32_t
#define uint32_t
Definition: nsiface.idl:61
uint8_t
#define uint8_t
Definition: nsiface.idl:59
gid_map
Definition: btrfs_drv.h:908
gid_map::gid
uint32_t gid
Definition: btrfs_drv.h:911
gid_map::sid
PSID sid
Definition: btrfs_drv.h:910
gid_map::listentry
LIST_ENTRY listentry
Definition: btrfs_drv.h:909
sid_header
Definition: security.c:23

Referenced by read_group_mappings().

◆ add_user_mapping()

void add_user_mapping ( WCHAR sidstring,
ULONG  sidstringlength,
uint32_t  uid 
)

Definition at line 56 of file security.c.

56 {
57 unsigned int i, np;
58 uint8_t numdashes;
59 uint64_t val;
60 ULONG sidsize;
61 sid_header* sid;
62 uid_map* um;
63
64 if (sidstringlength < 4 ||
65 sidstring[0] != 'S' ||
66 sidstring[1] != '-' ||
67 sidstring[2] != '1' ||
68 sidstring[3] != '-') {
69 ERR("invalid SID\n");
70 return;
71 }
72
73 sidstring = &sidstring[4];
74 sidstringlength -= 4;
75
76 numdashes = 0;
77 for (i = 0; i < sidstringlength; i++) {
78 if (sidstring[i] == '-') {
79 numdashes++;
80 sidstring[i] = 0;
81 }
82 }
83
84 sidsize = 8 + (numdashes * 4);
85 sid = ExAllocatePoolWithTag(PagedPool, sidsize, ALLOC_TAG);
86 if (!sid) {
87 ERR("out of memory\n");
88 return;
89 }
90
91 sid->revision = 0x01;
92 sid->elements = numdashes;
93
94 np = 0;
95 while (sidstringlength > 0) {
96 val = 0;
97 i = 0;
98 while (sidstring[i] != '-' && i < sidstringlength) {
99 if (sidstring[i] >= '0' && sidstring[i] <= '9') {
100 val *= 10;
101 val += sidstring[i] - '0';
102 } else
103 break;
104
105 i++;
106 }
107
108 i++;
109 TRACE("val = %u, i = %u, ssl = %lu\n", (uint32_t)val, i, sidstringlength);
110
111 if (np == 0) {
112 sid->auth[0] = (uint8_t)((val & 0xff0000000000) >> 40);
113 sid->auth[1] = (uint8_t)((val & 0xff00000000) >> 32);
114 sid->auth[2] = (uint8_t)((val & 0xff000000) >> 24);
115 sid->auth[3] = (uint8_t)((val & 0xff0000) >> 16);
116 sid->auth[4] = (uint8_t)((val & 0xff00) >> 8);
117 sid->auth[5] = val & 0xff;
118 } else {
119 sid->nums[np-1] = (uint32_t)val;
120 }
121
122 np++;
123
124 if (sidstringlength > i) {
125 sidstringlength -= i;
126
127 sidstring = &sidstring[i];
128 } else
129 break;
130 }
131
132 um = ExAllocatePoolWithTag(PagedPool, sizeof(uid_map), ALLOC_TAG);
133 if (!um) {
134 ERR("out of memory\n");
135 ExFreePool(sid);
136 return;
137 }
138
139 um->sid = sid;
140 um->uid = uid;
141
142 InsertTailList(&uid_map_list, &um->listentry);
143}
uid_map_list
LIST_ENTRY uid_map_list
Definition: btrfs.c:68
uid_map
Definition: btrfs_drv.h:902
uid_map::listentry
LIST_ENTRY listentry
Definition: btrfs_drv.h:903
uid_map::sid
PSID sid
Definition: btrfs_drv.h:904
uid_map::uid
uint32_t uid
Definition: btrfs_drv.h:905

Referenced by read_mappings().

◆ fcb_get_new_sd()

NTSTATUS fcb_get_new_sd ( fcb fcb,
file_ref parfileref,
ACCESS_STATE as 
)

Definition at line 988 of file security.c.

988 {
989 NTSTATUS Status;
990 PSID owner;
991 BOOLEAN defaulted;
992
993 Status = SeAssignSecurityEx(parfileref ? parfileref->fcb->sd : NULL, as->SecurityDescriptor, (void**)&fcb->sd, NULL, fcb->type == BTRFS_TYPE_DIRECTORY,
994 SEF_SACL_AUTO_INHERIT, &as->SubjectSecurityContext, IoGetFileObjectGenericMapping(), PagedPool);
995
996 if (!NT_SUCCESS(Status)) {
997 ERR("SeAssignSecurityEx returned %08lx\n", Status);
998 return Status;
999 }
1000
1001 Status = RtlGetOwnerSecurityDescriptor(fcb->sd, &owner, &defaulted);
1002 if (!NT_SUCCESS(Status)) {
1003 ERR("RtlGetOwnerSecurityDescriptor returned %08lx\n", Status);
1004 fcb->inode_item.st_uid = UID_NOBODY;
1005 } else {
1006 fcb->inode_item.st_uid = sid_to_uid(owner);
1007 }
1008
1009 find_gid(fcb, parfileref ? parfileref->fcb : NULL, &as->SubjectSecurityContext);
1010
1011 return STATUS_SUCCESS;
1012}
BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185
UID_NOBODY
#define UID_NOBODY
Definition: btrfs_drv.h:90
sid_to_uid
uint32_t sid_to_uid(PSID sid)
Definition: security.c:310
find_gid
void find_gid(struct _fcb *fcb, struct _fcb *parfcb, PSECURITY_SUBJECT_CONTEXT subjcont)
Definition: security.c:924
SEF_SACL_AUTO_INHERIT
#define SEF_SACL_AUTO_INHERIT
Definition: security.c:21
RtlGetOwnerSecurityDescriptor
NTSYSAPI NTSTATUS NTAPI RtlGetOwnerSecurityDescriptor(IN PSECURITY_DESCRIPTOR SecurityDescriptor, OUT PSID *Owner, OUT PBOOLEAN OwnerDefaulted)
Definition: sd.c:257
IoGetFileObjectGenericMapping
PGENERIC_MAPPING NTAPI IoGetFileObjectGenericMapping(VOID)
Definition: file.c:3267
BTRFS_TYPE_DIRECTORY
#define BTRFS_TYPE_DIRECTORY
Definition: shellext.h:86
INODE_ITEM::st_uid
uint32_t st_uid
Definition: btrfs.h:293
_ACCESS_STATE::SecurityDescriptor
PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: setypes.h:235
_ACCESS_STATE::SubjectSecurityContext
SECURITY_SUBJECT_CONTEXT SubjectSecurityContext
Definition: setypes.h:234
_SID
Definition: ms-dtyp.idl:198
_fcb
Definition: btrfs_drv.h:282
_fcb::sd
SECURITY_DESCRIPTOR * sd
Definition: btrfs_drv.h:293
_fcb::inode_item
INODE_ITEM inode_item
Definition: btrfs_drv.h:292
_fcb::type
uint8_t type
Definition: btrfs_drv.h:291
_file_ref::fcb
fcb * fcb
Definition: btrfs_drv.h:342
SeAssignSecurityEx
NTKERNELAPI NTSTATUS NTAPI SeAssignSecurityEx(_In_opt_ PSECURITY_DESCRIPTOR ParentDescriptor, _In_opt_ PSECURITY_DESCRIPTOR ExplicitDescriptor, _Out_ PSECURITY_DESCRIPTOR *NewDescriptor, _In_opt_ GUID *ObjectType, _In_ BOOLEAN IsDirectoryObject, _In_ ULONG AutoInheritFlags, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ PGENERIC_MAPPING GenericMapping, _In_ POOL_TYPE PoolType)

Referenced by file_create2().

◆ fcb_get_sd()

void fcb_get_sd ( fcb fcb,
struct _fcb parent,
bool  look_for_xattr,
PIRP  Irp 
)

Definition at line 511 of file security.c.

511 {
512 NTSTATUS Status;
513 PSID usersid = NULL, groupsid = NULL;
514 SECURITY_SUBJECT_CONTEXT subjcont;
515 ULONG buflen;
516 PSECURITY_DESCRIPTOR* abssd;
517 PSECURITY_DESCRIPTOR newsd;
518 PACL dacl, sacl;
519 PSID owner, group;
520 ULONG abssdlen = 0, dacllen = 0, sacllen = 0, ownerlen = 0, grouplen = 0;
521 uint8_t* buf;
522
523 if (look_for_xattr && get_xattr(fcb->Vcb, fcb->subvol, fcb->inode, EA_NTACL, EA_NTACL_HASH, (uint8_t**)&fcb->sd, (uint16_t*)&buflen, Irp))
524 return;
525
526 if (!parent) {
527 get_top_level_sd(fcb);
528 return;
529 }
530
531 SeCaptureSubjectContext(&subjcont);
532
533 Status = SeAssignSecurityEx(parent->sd, NULL, (void**)&fcb->sd, NULL, fcb->type == BTRFS_TYPE_DIRECTORY, SEF_DACL_AUTO_INHERIT,
534 &subjcont, IoGetFileObjectGenericMapping(), PagedPool);
535 if (!NT_SUCCESS(Status)) {
536 ERR("SeAssignSecurityEx returned %08lx\n", Status);
537 return;
538 }
539
540 Status = RtlSelfRelativeToAbsoluteSD(fcb->sd, NULL, &abssdlen, NULL, &dacllen, NULL, &sacllen, NULL, &ownerlen,
541 NULL, &grouplen);
542 if (!NT_SUCCESS(Status) && Status != STATUS_BUFFER_TOO_SMALL) {
543 ERR("RtlSelfRelativeToAbsoluteSD returned %08lx\n", Status);
544 return;
545 }
546
547 if (abssdlen + dacllen + sacllen + ownerlen + grouplen == 0) {
548 ERR("RtlSelfRelativeToAbsoluteSD returned zero lengths\n");
549 return;
550 }
551
552 buf = (uint8_t*)ExAllocatePoolWithTag(PagedPool, abssdlen + dacllen + sacllen + ownerlen + grouplen, ALLOC_TAG);
553 if (!buf) {
554 ERR("out of memory\n");
555 return;
556 }
557
558 abssd = (PSECURITY_DESCRIPTOR)buf;
559 dacl = (PACL)(buf + abssdlen);
560 sacl = (PACL)(buf + abssdlen + dacllen);
561 owner = (PSID)(buf + abssdlen + dacllen + sacllen);
562 group = (PSID)(buf + abssdlen + dacllen + sacllen + ownerlen);
563
564 Status = RtlSelfRelativeToAbsoluteSD(fcb->sd, abssd, &abssdlen, dacl, &dacllen, sacl, &sacllen, owner, &ownerlen,
565 group, &grouplen);
566 if (!NT_SUCCESS(Status) && Status != STATUS_BUFFER_TOO_SMALL) {
567 ERR("RtlSelfRelativeToAbsoluteSD returned %08lx\n", Status);
568 ExFreePool(buf);
569 return;
570 }
571
572 Status = uid_to_sid(fcb->inode_item.st_uid, &usersid);
573 if (!NT_SUCCESS(Status)) {
574 ERR("uid_to_sid returned %08lx\n", Status);
575 ExFreePool(buf);
576 return;
577 }
578
579 RtlSetOwnerSecurityDescriptor(abssd, usersid, false);
580
581 gid_to_sid(fcb->inode_item.st_gid, &groupsid);
582 if (!groupsid) {
583 ERR("out of memory\n");
584 ExFreePool(usersid);
585 ExFreePool(buf);
586 return;
587 }
588
589 RtlSetGroupSecurityDescriptor(abssd, groupsid, false);
590
591 buflen = 0;
592
593 Status = RtlAbsoluteToSelfRelativeSD(abssd, NULL, &buflen);
594 if (!NT_SUCCESS(Status) && Status != STATUS_BUFFER_TOO_SMALL) {
595 ERR("RtlAbsoluteToSelfRelativeSD returned %08lx\n", Status);
596 ExFreePool(usersid);
597 ExFreePool(groupsid);
598 ExFreePool(buf);
599 return;
600 }
601
602 if (buflen == 0) {
603 ERR("RtlAbsoluteToSelfRelativeSD returned a buffer size of 0\n");
604 ExFreePool(usersid);
605 ExFreePool(groupsid);
606 ExFreePool(buf);
607 return;
608 }
609
610 newsd = ExAllocatePoolWithTag(PagedPool, buflen, ALLOC_TAG);
611 if (!newsd) {
612 ERR("out of memory\n");
613 ExFreePool(usersid);
614 ExFreePool(groupsid);
615 ExFreePool(buf);
616 return;
617 }
618
619 Status = RtlAbsoluteToSelfRelativeSD(abssd, newsd, &buflen);
620 if (!NT_SUCCESS(Status)) {
621 ERR("RtlAbsoluteToSelfRelativeSD returned %08lx\n", Status);
622 ExFreePool(usersid);
623 ExFreePool(groupsid);
624 ExFreePool(buf);
625 return;
626 }
627
628 ExFreePool(fcb->sd);
629 fcb->sd = newsd;
630
631 ExFreePool(usersid);
632 ExFreePool(groupsid);
633 ExFreePool(buf);
634}
uint16_t
unsigned short int uint16_t
Definition: acefiex.h:54
EA_NTACL_HASH
#define EA_NTACL_HASH
Definition: btrfs_drv.h:94
EA_NTACL
#define EA_NTACL
Definition: btrfs_drv.h:93
parent
r parent
Definition: btrfs.c:3010
uid_to_sid
NTSTATUS uid_to_sid(uint32_t uid, PSID *sid)
Definition: security.c:229
SEF_DACL_AUTO_INHERIT
#define SEF_DACL_AUTO_INHERIT
Definition: security.c:20
get_top_level_sd
static void get_top_level_sd(fcb *fcb)
Definition: security.c:415
gid_to_sid
static void gid_to_sid(uint32_t gid, PSID *sid)
Definition: security.c:341
buf
GLenum GLuint GLenum GLsizei const GLchar * buf
Definition: glext.h:7751
group
GLboolean GLuint group
Definition: glext.h:11120
RtlSetOwnerSecurityDescriptor
NTSYSAPI NTSTATUS WINAPI RtlSetOwnerSecurityDescriptor(PSECURITY_DESCRIPTOR, PSID, BOOLEAN)
RtlSelfRelativeToAbsoluteSD
NTSYSAPI NTSTATUS WINAPI RtlSelfRelativeToAbsoluteSD(PSECURITY_DESCRIPTOR, PSECURITY_DESCRIPTOR, PDWORD, PACL, PDWORD, PACL, PDWORD, PSID, PDWORD, PSID, PDWORD)
PSID
struct _SID * PSID
Definition: eventlog.c:35
PSECURITY_DESCRIPTOR
struct _SECURITY_DESCRIPTOR * PSECURITY_DESCRIPTOR
Definition: security.c:98
PACL
struct _ACL * PACL
Definition: security.c:105
RtlSetGroupSecurityDescriptor
NTSYSAPI NTSTATUS NTAPI RtlSetGroupSecurityDescriptor(IN OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN PSID Group, IN BOOLEAN GroupDefaulted)
Definition: sd.c:410
RtlAbsoluteToSelfRelativeSD
NTSYSAPI NTSTATUS NTAPI RtlAbsoluteToSelfRelativeSD(IN PSECURITY_DESCRIPTOR AbsoluteSecurityDescriptor, IN OUT PSECURITY_DESCRIPTOR SelfRelativeSecurityDescriptor, IN PULONG BufferLength)
Definition: sd.c:626
INODE_ITEM::st_gid
uint32_t st_gid
Definition: btrfs.h:294
_ACL
Definition: ms-dtyp.idl:293
_SECURITY_SUBJECT_CONTEXT
Definition: setypes.h:217
_fcb::inode
uint64_t inode
Definition: btrfs_drv.h:289
_fcb::Vcb
struct _device_extension * Vcb
Definition: btrfs_drv.h:287
_fcb::subvol
struct _root * subvol
Definition: btrfs_drv.h:288
dacl
Definition: security.c:35
SeCaptureSubjectContext
VOID NTAPI SeCaptureSubjectContext(_Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Captures the security subject context of the calling thread and calling process.
Definition: subject.c:85

Referenced by fsctl_set_xattr(), and mount_vol().

◆ find_gid()

void find_gid ( struct _fcb fcb,
struct _fcb parfcb,
PSECURITY_SUBJECT_CONTEXT  subjcont 
)

Definition at line 924 of file security.c.

924 {
925 NTSTATUS Status;
926 TOKEN_OWNER* to;
927 TOKEN_PRIMARY_GROUP* tpg;
928 TOKEN_GROUPS* tg;
929
930 if (parfcb && parfcb->inode_item.st_mode & S_ISGID) {
931 fcb->inode_item.st_gid = parfcb->inode_item.st_gid;
932 return;
933 }
934
935 ExAcquireResourceSharedLite(&mapping_lock, true);
936
937 if (!subjcont || !subjcont->PrimaryToken || IsListEmpty(&gid_map_list)) {
938 ExReleaseResourceLite(&mapping_lock);
939 return;
940 }
941
942 Status = SeQueryInformationToken(subjcont->PrimaryToken, TokenOwner, (void**)&to);
943 if (!NT_SUCCESS(Status))
944 ERR("SeQueryInformationToken returned %08lx\n", Status);
945 else {
946 if (search_for_gid(fcb, to->Owner)) {
947 ExReleaseResourceLite(&mapping_lock);
948 ExFreePool(to);
949 return;
950 }
951
952 ExFreePool(to);
953 }
954
955 Status = SeQueryInformationToken(subjcont->PrimaryToken, TokenPrimaryGroup, (void**)&tpg);
956 if (!NT_SUCCESS(Status))
957 ERR("SeQueryInformationToken returned %08lx\n", Status);
958 else {
959 if (search_for_gid(fcb, tpg->PrimaryGroup)) {
960 ExReleaseResourceLite(&mapping_lock);
961 ExFreePool(tpg);
962 return;
963 }
964
965 ExFreePool(tpg);
966 }
967
968 Status = SeQueryInformationToken(subjcont->PrimaryToken, TokenGroups, (void**)&tg);
969 if (!NT_SUCCESS(Status))
970 ERR("SeQueryInformationToken returned %08lx\n", Status);
971 else {
972 ULONG i;
973
974 for (i = 0; i < tg->GroupCount; i++) {
975 if (search_for_gid(fcb, tg->Groups[i].Sid)) {
976 ExReleaseResourceLite(&mapping_lock);
977 ExFreePool(tg);
978 return;
979 }
980 }
981
982 ExFreePool(tg);
983 }
984
985 ExReleaseResourceLite(&mapping_lock);
986}
search_for_gid
static bool search_for_gid(fcb *fcb, PSID sid)
Definition: security.c:906
mapping_lock
ERESOURCE mapping_lock
Definition: btrfs.c:103
IsListEmpty
#define IsListEmpty(ListHead)
Definition: env_spec_w32.h:954
ExAcquireResourceSharedLite
#define ExAcquireResourceSharedLite(res, wait)
Definition: env_spec_w32.h:621
ExReleaseResourceLite
VOID FASTCALL ExReleaseResourceLite(IN PERESOURCE Resource)
Definition: resource.c:1822
S_ISGID
#define S_ISGID
Definition: propsheet.h:69
INODE_ITEM::st_mode
uint32_t st_mode
Definition: btrfs.h:295
_SECURITY_SUBJECT_CONTEXT::PrimaryToken
PACCESS_TOKEN PrimaryToken
Definition: setypes.h:220
_SID_AND_ATTRIBUTES::Sid
PSID Sid
Definition: setypes.h:506
_TOKEN_GROUPS
Definition: setypes.h:1013
_TOKEN_GROUPS::Groups
SID_AND_ATTRIBUTES Groups[ANYSIZE_ARRAY]
Definition: setypes.h:1018
_TOKEN_GROUPS::GroupCount
$ULONG GroupCount
Definition: setypes.h:1014
_TOKEN_OWNER
Definition: setypes.h:1027
_TOKEN_OWNER::Owner
PSID Owner
Definition: setypes.h:1028
_TOKEN_PRIMARY_GROUP
Definition: setypes.h:1031
_TOKEN_PRIMARY_GROUP::PrimaryGroup
PSID PrimaryGroup
Definition: setypes.h:1032
SeQueryInformationToken
NTSTATUS NTAPI SeQueryInformationToken(_In_ PACCESS_TOKEN AccessToken, _In_ TOKEN_INFORMATION_CLASS TokenInformationClass, _Outptr_result_buffer_(_Inexpressible_(token-dependent)) PVOID *TokenInformation)
Queries information details about the given token to the call. The difference between NtQueryInformat...
Definition: tokencls.c:95
TokenGroups
@ TokenGroups
Definition: setypes.h:967
TokenPrimaryGroup
@ TokenPrimaryGroup
Definition: setypes.h:970
TokenOwner
@ TokenOwner
Definition: setypes.h:969

Referenced by create_directory_fcb(), create_subvol(), fcb_get_new_sd(), and mknod().

◆ get_file_security()

static NTSTATUS get_file_security ( PFILE_OBJECT  FileObject,
SECURITY_DESCRIPTOR relsd,
ULONG buflen,
SECURITY_INFORMATION  flags 
)
static

Definition at line 636 of file security.c.

636 {
637 NTSTATUS Status;
638 fcb* fcb = FileObject->FsContext;
639 ccb* ccb = FileObject->FsContext2;
640 file_ref* fileref = ccb ? ccb->fileref : NULL;
641
642 if (fcb->ads) {
643 if (fileref && fileref->parent)
644 fcb = fileref->parent->fcb;
645 else {
646 ERR("could not get parent fcb for stream\n");
647 return STATUS_INTERNAL_ERROR;
648 }
649 }
650
651 // Why (void**)? Is this a bug in mingw?
652 Status = SeQuerySecurityDescriptorInfo(&flags, relsd, buflen, (void**)&fcb->sd);
653
654 if (Status == STATUS_BUFFER_TOO_SMALL)
655 TRACE("SeQuerySecurityDescriptorInfo returned %08lx\n", Status);
656 else if (!NT_SUCCESS(Status))
657 ERR("SeQuerySecurityDescriptorInfo returned %08lx\n", Status);
658
659 return Status;
660}
flags
GLbitfield flags
Definition: glext.h:7161
STATUS_INTERNAL_ERROR
#define STATUS_INTERNAL_ERROR
Definition: ntstatus.h:465
_ccb::fileref
file_ref * fileref
Definition: btrfs_drv.h:383
_fcb::ads
bool ads
Definition: btrfs_drv.h:330
_file_ref
Definition: btrfs_drv.h:341
_file_ref::parent
struct _file_ref * parent
Definition: btrfs_drv.h:352
SeQuerySecurityDescriptorInfo
NTKERNELAPI NTSTATUS NTAPI SeQuerySecurityDescriptorInfo(_In_ PSECURITY_INFORMATION SecurityInformation, _Out_writes_bytes_(*Length) PSECURITY_DESCRIPTOR SecurityDescriptor, _Inout_ PULONG Length, _Inout_ PSECURITY_DESCRIPTOR *ObjectsSecurityDescriptor)

Referenced by _Dispatch_type_().

◆ get_top_level_sd()

static void get_top_level_sd ( fcb fcb)
static

Definition at line 415 of file security.c.

415 {
416 NTSTATUS Status;
417 SECURITY_DESCRIPTOR sd;
418 ULONG buflen;
419 ACL* acl = NULL;
420 PSID usersid = NULL, groupsid = NULL;
421
422 Status = RtlCreateSecurityDescriptor(&sd, SECURITY_DESCRIPTOR_REVISION);
423
424 if (!NT_SUCCESS(Status)) {
425 ERR("RtlCreateSecurityDescriptor returned %08lx\n", Status);
426 goto end;
427 }
428
429 Status = uid_to_sid(fcb->inode_item.st_uid, &usersid);
430 if (!NT_SUCCESS(Status)) {
431 ERR("uid_to_sid returned %08lx\n", Status);
432 goto end;
433 }
434
435 Status = RtlSetOwnerSecurityDescriptor(&sd, usersid, false);
436
437 if (!NT_SUCCESS(Status)) {
438 ERR("RtlSetOwnerSecurityDescriptor returned %08lx\n", Status);
439 goto end;
440 }
441
442 gid_to_sid(fcb->inode_item.st_gid, &groupsid);
443 if (!groupsid) {
444 ERR("out of memory\n");
445 goto end;
446 }
447
448 Status = RtlSetGroupSecurityDescriptor(&sd, groupsid, false);
449
450 if (!NT_SUCCESS(Status)) {
451 ERR("RtlSetGroupSecurityDescriptor returned %08lx\n", Status);
452 goto end;
453 }
454
455 acl = load_default_acl();
456
457 if (!acl) {
458 ERR("out of memory\n");
459 goto end;
460 }
461
462 Status = RtlSetDaclSecurityDescriptor(&sd, true, acl, false);
463
464 if (!NT_SUCCESS(Status)) {
465 ERR("RtlSetDaclSecurityDescriptor returned %08lx\n", Status);
466 goto end;
467 }
468
469 // FIXME - SACL_SECURITY_INFORMATION
470
471 buflen = 0;
472
473 // get sd size
474 Status = RtlAbsoluteToSelfRelativeSD(&sd, NULL, &buflen);
475 if (Status != STATUS_SUCCESS && Status != STATUS_BUFFER_TOO_SMALL) {
476 ERR("RtlAbsoluteToSelfRelativeSD 1 returned %08lx\n", Status);
477 goto end;
478 }
479
480 if (buflen == 0 || Status == STATUS_SUCCESS) {
481 TRACE("RtlAbsoluteToSelfRelativeSD said SD is zero-length\n");
482 goto end;
483 }
484
485 fcb->sd = ExAllocatePoolWithTag(PagedPool, buflen, ALLOC_TAG);
486 if (!fcb->sd) {
487 ERR("out of memory\n");
488 goto end;
489 }
490
491 Status = RtlAbsoluteToSelfRelativeSD(&sd, fcb->sd, &buflen);
492
493 if (!NT_SUCCESS(Status)) {
494 ERR("RtlAbsoluteToSelfRelativeSD 2 returned %08lx\n", Status);
495 ExFreePool(fcb->sd);
496 fcb->sd = NULL;
497 goto end;
498 }
499
500end:
501 if (acl)
502 ExFreePool(acl);
503
504 if (usersid)
505 ExFreePool(usersid);
506
507 if (groupsid)
508 ExFreePool(groupsid);
509}
load_default_acl
static ACL * load_default_acl()
Definition: security.c:372
RtlSetDaclSecurityDescriptor
NTSYSAPI NTSTATUS WINAPI RtlSetDaclSecurityDescriptor(PSECURITY_DESCRIPTOR, BOOLEAN, PACL, BOOLEAN)
RtlCreateSecurityDescriptor
NTSYSAPI NTSTATUS NTAPI RtlCreateSecurityDescriptor(_Out_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ ULONG Revision)
SECURITY_DESCRIPTOR_REVISION
#define SECURITY_DESCRIPTOR_REVISION
Definition: setypes.h:58

Referenced by fcb_get_sd().

◆ gid_to_sid()

static void gid_to_sid ( uint32_t  gid,
PSID sid 
)
static

Definition at line 341 of file security.c.

341 {
342 sid_header* sh;
343 UCHAR els;
344
345 // FIXME - do this properly?
346
347 // fallback to S-1-22-2-X, Samba's SID scheme
348 els = 2;
349 sh = ExAllocatePoolWithTag(PagedPool, sizeof(sid_header) + ((els - 1) * sizeof(uint32_t)), ALLOC_TAG);
350 if (!sh) {
351 ERR("out of memory\n");
352 *sid = NULL;
353 return;
354 }
355
356 sh->revision = 1;
357 sh->elements = els;
358
359 sh->auth[0] = 0;
360 sh->auth[1] = 0;
361 sh->auth[2] = 0;
362 sh->auth[3] = 0;
363 sh->auth[4] = 0;
364 sh->auth[5] = 22;
365
366 sh->nums[0] = 2;
367 sh->nums[1] = gid;
368
369 *sid = sh;
370}
sh
short sh
Definition: format.c:272
UCHAR
unsigned char UCHAR
Definition: xmlstorage.h:181

Referenced by fcb_get_sd(), and get_top_level_sd().

◆ load_default_acl()

static ACL * load_default_acl ( )
static

Definition at line 372 of file security.c.

372 {
373 uint16_t size, i;
374 ACL* acl;
375 ACCESS_ALLOWED_ACE* aaa;
376
377 size = sizeof(ACL);
378 i = 0;
379 while (def_dacls[i].sid) {
380 size += sizeof(ACCESS_ALLOWED_ACE);
381 size += 8 + (def_dacls[i].sid->elements * sizeof(uint32_t)) - sizeof(ULONG);
382 i++;
383 }
384
385 acl = ExAllocatePoolWithTag(PagedPool, size, ALLOC_TAG);
386 if (!acl) {
387 ERR("out of memory\n");
388 return NULL;
389 }
390
391 acl->AclRevision = ACL_REVISION;
392 acl->Sbz1 = 0;
393 acl->AclSize = size;
394 acl->AceCount = i;
395 acl->Sbz2 = 0;
396
397 aaa = (ACCESS_ALLOWED_ACE*)&acl[1];
398 i = 0;
399 while (def_dacls[i].sid) {
400 aaa->Header.AceType = ACCESS_ALLOWED_ACE_TYPE;
401 aaa->Header.AceFlags = def_dacls[i].flags;
402 aaa->Header.AceSize = sizeof(ACCESS_ALLOWED_ACE) - sizeof(ULONG) + 8 + (def_dacls[i].sid->elements * sizeof(uint32_t));
403 aaa->Mask = def_dacls[i].mask;
404
405 RtlCopyMemory(&aaa->SidStart, def_dacls[i].sid, 8 + (def_dacls[i].sid->elements * sizeof(uint32_t)));
406
407 aaa = (ACCESS_ALLOWED_ACE*)((uint8_t*)aaa + aaa->Header.AceSize);
408
409 i++;
410 }
411
412 return acl;
413}
def_dacls
static dacl def_dacls[]
Definition: security.c:41
size
GLsizeiptr size
Definition: glext.h:5919
ACL
struct _ACL ACL
ACCESS_ALLOWED_ACE
struct _ACCESS_ALLOWED_ACE ACCESS_ALLOWED_ACE
_ACCESS_ALLOWED_ACE
Definition: ms-dtyp.idl:215
_ACCESS_ALLOWED_ACE::Header
ACE_HEADER Header
Definition: ms-dtyp.idl:216
_ACCESS_ALLOWED_ACE::SidStart
DWORD SidStart
Definition: ms-dtyp.idl:218
_ACCESS_ALLOWED_ACE::Mask
ACCESS_MASK Mask
Definition: ms-dtyp.idl:217
_ACE_HEADER::AceSize
USHORT AceSize
Definition: ms-dtyp.idl:212
_ACE_HEADER::AceFlags
UCHAR AceFlags
Definition: ms-dtyp.idl:211
_ACE_HEADER::AceType
UCHAR AceType
Definition: ms-dtyp.idl:210
_ACL::Sbz2
USHORT Sbz2
Definition: ms-dtyp.idl:298
_ACL::Sbz1
UCHAR Sbz1
Definition: ms-dtyp.idl:295
_ACL::AceCount
USHORT AceCount
Definition: ms-dtyp.idl:297
_ACL::AclSize
USHORT AclSize
Definition: ms-dtyp.idl:296
_ACL::AclRevision
UCHAR AclRevision
Definition: ms-dtyp.idl:294
dacl::flags
UCHAR flags
Definition: security.c:36
dacl::sid
sid_header * sid
Definition: security.c:38
dacl::mask
ACCESS_MASK mask
Definition: security.c:37
sid_header::elements
UCHAR elements
Definition: security.c:25
RtlCopyMemory
#define RtlCopyMemory(Destination, Source, Length)
Definition: typedefs.h:263
ACCESS_ALLOWED_ACE_TYPE
#define ACCESS_ALLOWED_ACE_TYPE
Definition: setypes.h:717
ACL_REVISION
#define ACL_REVISION
Definition: setypes.h:39

Referenced by get_top_level_sd().

◆ search_for_gid()

static bool search_for_gid ( fcb fcb,
PSID  sid 
)
static

Definition at line 906 of file security.c.

906 {
907 LIST_ENTRY* le;
908
909 le = gid_map_list.Flink;
910 while (le != &gid_map_list) {
911 gid_map* gm = CONTAINING_RECORD(le, gid_map, listentry);
912
913 if (RtlEqualSid(sid, gm->sid)) {
914 fcb->inode_item.st_gid = gm->gid;
915 return true;
916 }
917
918 le = le->Flink;
919 }
920
921 return false;
922}
RtlEqualSid
NTSYSAPI BOOLEAN NTAPI RtlEqualSid(_In_ PSID Sid1, _In_ PSID Sid2)
_LIST_ENTRY
Definition: typedefs.h:120
_LIST_ENTRY::Flink
struct _LIST_ENTRY * Flink
Definition: typedefs.h:121
CONTAINING_RECORD
#define CONTAINING_RECORD(address, type, field)
Definition: typedefs.h:260

Referenced by find_gid().

◆ set_file_security()

static NTSTATUS set_file_security ( device_extension Vcb,
PFILE_OBJECT  FileObject,
SECURITY_DESCRIPTOR sd,
PSECURITY_INFORMATION  flags,
PIRP  Irp 
)
static

Definition at line 756 of file security.c.

756 {
757 NTSTATUS Status;
758 fcb* fcb = FileObject->FsContext;
759 ccb* ccb = FileObject->FsContext2;
760 file_ref* fileref = ccb ? ccb->fileref : NULL;
761 SECURITY_DESCRIPTOR* oldsd;
762 LARGE_INTEGER time;
763 BTRFS_TIME now;
764
765 TRACE("(%p, %p, %p, %lx)\n", Vcb, FileObject, sd, *flags);
766
767 if (Vcb->readonly)
768 return STATUS_MEDIA_WRITE_PROTECTED;
769
770 if (fcb->ads) {
771 if (fileref && fileref->parent)
772 fcb = fileref->parent->fcb;
773 else {
774 ERR("could not find parent fcb for stream\n");
775 return STATUS_INTERNAL_ERROR;
776 }
777 }
778
779 if (!fcb || !ccb)
780 return STATUS_INVALID_PARAMETER;
781
782 ExAcquireResourceExclusiveLite(fcb->Header.Resource, true);
783
784 if (is_subvol_readonly(fcb->subvol, Irp)) {
785 Status = STATUS_ACCESS_DENIED;
786 goto end;
787 }
788
789 oldsd = fcb->sd;
790
791 Status = SeSetSecurityDescriptorInfo(NULL, flags, sd, (void**)&fcb->sd, PagedPool, IoGetFileObjectGenericMapping());
792
793 if (!NT_SUCCESS(Status)) {
794 ERR("SeSetSecurityDescriptorInfo returned %08lx\n", Status);
795 goto end;
796 }
797
798 ExFreePool(oldsd);
799
800 KeQuerySystemTime(&time);
801 win_time_to_unix(time, &now);
802
803 fcb->inode_item.transid = Vcb->superblock.generation;
804
805 if (!ccb->user_set_change_time)
806 fcb->inode_item.st_ctime = now;
807
808 fcb->inode_item.sequence++;
809
810 fcb->sd_dirty = true;
811 fcb->sd_deleted = false;
812 fcb->inode_item_changed = true;
813
814 fcb->subvol->root_item.ctransid = Vcb->superblock.generation;
815 fcb->subvol->root_item.ctime = now;
816
817 mark_fcb_dirty(fcb);
818
819 queue_notification_fcb(fileref, FILE_NOTIFY_CHANGE_SECURITY, FILE_ACTION_MODIFIED, NULL);
820
821end:
822 ExReleaseResourceLite(fcb->Header.Resource);
823
824 return Status;
825}
win_time_to_unix
static __inline void win_time_to_unix(LARGE_INTEGER t, BTRFS_TIME *out)
Definition: btrfs_drv.h:989
is_subvol_readonly
static __inline bool is_subvol_readonly(root *r, PIRP Irp)
Definition: btrfs_drv.h:1033
mark_fcb_dirty
void mark_fcb_dirty(_In_ fcb *fcb)
Definition: btrfs.c:1695
queue_notification_fcb
void queue_notification_fcb(_In_ file_ref *fileref, _In_ ULONG filter_match, _In_ ULONG action, _In_opt_ PUNICODE_STRING stream)
Definition: btrfs.c:1667
KeQuerySystemTime
#define KeQuerySystemTime(t)
Definition: env_spec_w32.h:570
ExAcquireResourceExclusiveLite
#define ExAcquireResourceExclusiveLite(res, wait)
Definition: env_spec_w32.h:615
now
time_t now
Definition: finger.c:65
time
__u16 time
Definition: mkdosfs.c:8
BTRFS_TIME
Definition: btrfs.h:281
INODE_ITEM::sequence
uint64_t sequence
Definition: btrfs.h:299
INODE_ITEM::st_ctime
BTRFS_TIME st_ctime
Definition: btrfs.h:302
INODE_ITEM::transid
uint64_t transid
Definition: btrfs.h:288
_ccb::user_set_change_time
bool user_set_change_time
Definition: btrfs_drv.h:390
_fcb::sd_dirty
bool sd_dirty
Definition: btrfs_drv.h:321
_fcb::sd_deleted
bool sd_deleted
Definition: btrfs_drv.h:321
_fcb::inode_item_changed
bool inode_item_changed
Definition: btrfs_drv.h:306
_fcb::Header
FSRTL_ADVANCED_FCB_HEADER Header
Definition: btrfs_drv.h:283
STATUS_MEDIA_WRITE_PROTECTED
#define STATUS_MEDIA_WRITE_PROTECTED
Definition: udferr_usr.h:161
_LARGE_INTEGER
Definition: typedefs.h:103
FILE_ACTION_MODIFIED
#define FILE_ACTION_MODIFIED
FILE_NOTIFY_CHANGE_SECURITY
#define FILE_NOTIFY_CHANGE_SECURITY
SeSetSecurityDescriptorInfo
NTKERNELAPI NTSTATUS NTAPI SeSetSecurityDescriptorInfo(_In_opt_ PVOID Object, _In_ PSECURITY_INFORMATION SecurityInformation, _In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _Inout_ PSECURITY_DESCRIPTOR *ObjectsSecurityDescriptor, _In_ POOL_TYPE PoolType, _In_ PGENERIC_MAPPING GenericMapping)

Referenced by _Dispatch_type_().

◆ sid_to_uid()

uint32_t sid_to_uid ( PSID  sid)

Definition at line 310 of file security.c.

310 {
311 LIST_ENTRY* le;
312 sid_header* sh = sid;
313
314 ExAcquireResourceSharedLite(&mapping_lock, true);
315
316 le = uid_map_list.Flink;
317 while (le != &uid_map_list) {
318 uid_map* um = CONTAINING_RECORD(le, uid_map, listentry);
319
320 if (RtlEqualSid(sid, um->sid)) {
321 ExReleaseResourceLite(&mapping_lock);
322 return um->uid;
323 }
324
325 le = le->Flink;
326 }
327
328 ExReleaseResourceLite(&mapping_lock);
329
330 if (RtlEqualSid(sid, &sid_SY))
331 return 0; // root
332
333 // Samba's SID scheme: S-1-22-1-X
334 if (sh->revision == 1 && sh->elements == 2 && sh->auth[0] == 0 && sh->auth[1] == 0 && sh->auth[2] == 0 && sh->auth[3] == 0 &&
335 sh->auth[4] == 0 && sh->auth[5] == 22 && sh->nums[0] == 1)
336 return sh->nums[1];
337
338 return UID_NOBODY;
339}
sid_SY
static sid_header sid_SY
Definition: security.c:31

Referenced by create_directory_fcb(), create_subvol(), fcb_get_new_sd(), and mknod().

◆ uid_to_sid()

NTSTATUS uid_to_sid ( uint32_t  uid,
PSID sid 
)

Definition at line 229 of file security.c.

229 {
230 LIST_ENTRY* le;
231 sid_header* sh;
232 UCHAR els;
233
234 ExAcquireResourceSharedLite(&mapping_lock, true);
235
236 le = uid_map_list.Flink;
237 while (le != &uid_map_list) {
238 uid_map* um = CONTAINING_RECORD(le, uid_map, listentry);
239
240 if (um->uid == uid) {
241 *sid = ExAllocatePoolWithTag(PagedPool, RtlLengthSid(um->sid), ALLOC_TAG);
242 if (!*sid) {
243 ERR("out of memory\n");
244 ExReleaseResourceLite(&mapping_lock);
245 return STATUS_INSUFFICIENT_RESOURCES;
246 }
247
248 RtlCopyMemory(*sid, um->sid, RtlLengthSid(um->sid));
249 ExReleaseResourceLite(&mapping_lock);
250 return STATUS_SUCCESS;
251 }
252
253 le = le->Flink;
254 }
255
256 ExReleaseResourceLite(&mapping_lock);
257
258 if (uid == 0) { // root
259 // FIXME - find actual Administrator account, rather than SYSTEM (S-1-5-18)
260 // (of form S-1-5-21-...-500)
261
262 els = 1;
263
264 sh = ExAllocatePoolWithTag(PagedPool, sizeof(sid_header) + ((els - 1) * sizeof(uint32_t)), ALLOC_TAG);
265 if (!sh) {
266 ERR("out of memory\n");
267 *sid = NULL;
268 return STATUS_INSUFFICIENT_RESOURCES;
269 }
270
271 sh->revision = 1;
272 sh->elements = els;
273
274 sh->auth[0] = 0;
275 sh->auth[1] = 0;
276 sh->auth[2] = 0;
277 sh->auth[3] = 0;
278 sh->auth[4] = 0;
279 sh->auth[5] = 5;
280
281 sh->nums[0] = 18;
282 } else {
283 // fallback to S-1-22-1-X, Samba's SID scheme
284 sh = ExAllocatePoolWithTag(PagedPool, sizeof(sid_header), ALLOC_TAG);
285 if (!sh) {
286 ERR("out of memory\n");
287 *sid = NULL;
288 return STATUS_INSUFFICIENT_RESOURCES;
289 }
290
291 sh->revision = 1;
292 sh->elements = 2;
293
294 sh->auth[0] = 0;
295 sh->auth[1] = 0;
296 sh->auth[2] = 0;
297 sh->auth[3] = 0;
298 sh->auth[4] = 0;
299 sh->auth[5] = 22;
300
301 sh->nums[0] = 1;
302 sh->nums[1] = uid;
303 }
304
305 *sid = sh;
306
307 return STATUS_SUCCESS;
308}
RtlLengthSid
NTSYSAPI ULONG NTAPI RtlLengthSid(IN PSID Sid)
Definition: sid.c:150

Referenced by fcb_get_sd(), and get_top_level_sd().

Variable Documentation

◆ def_dacls

dacl def_dacls[]
static
Initial value:
= {
{ 0, FILE_ALL_ACCESS, &sid_BA },
{ OBJECT_INHERIT_ACE | CONTAINER_INHERIT_ACE | INHERIT_ONLY_ACE, FILE_ALL_ACCESS, &sid_BA },
{ 0, FILE_ALL_ACCESS, &sid_SY },
{ OBJECT_INHERIT_ACE | CONTAINER_INHERIT_ACE | INHERIT_ONLY_ACE, FILE_ALL_ACCESS, &sid_SY },
{ OBJECT_INHERIT_ACE | CONTAINER_INHERIT_ACE, FILE_GENERIC_READ | FILE_GENERIC_EXECUTE, &sid_BU },
{ OBJECT_INHERIT_ACE | CONTAINER_INHERIT_ACE | INHERIT_ONLY_ACE, FILE_GENERIC_READ | FILE_GENERIC_WRITE | FILE_GENERIC_EXECUTE | DELETE, &sid_AU },
{ 0, FILE_GENERIC_READ | FILE_GENERIC_WRITE | FILE_GENERIC_EXECUTE | DELETE, &sid_AU },
{ 0, 0, NULL }
}
sid_BA
static sid_header sid_BA
Definition: security.c:30
sid_AU
static sid_header sid_AU
Definition: security.c:33
sid_BU
static sid_header sid_BU
Definition: security.c:32
FILE_GENERIC_EXECUTE
#define FILE_GENERIC_EXECUTE
Definition: nt_native.h:668
DELETE
#define DELETE
Definition: nt_native.h:57
FILE_ALL_ACCESS
#define FILE_ALL_ACCESS
Definition: nt_native.h:651
FILE_GENERIC_READ
#define FILE_GENERIC_READ
Definition: nt_native.h:653
FILE_GENERIC_WRITE
#define FILE_GENERIC_WRITE
Definition: nt_native.h:660
CONTAINER_INHERIT_ACE
#define CONTAINER_INHERIT_ACE
Definition: setypes.h:747
INHERIT_ONLY_ACE
#define INHERIT_ONLY_ACE
Definition: setypes.h:749
OBJECT_INHERIT_ACE
#define OBJECT_INHERIT_ACE
Definition: setypes.h:746

Definition at line 41 of file security.c.

Referenced by load_default_acl().

◆ gid_map_list

LIST_ENTRY gid_map_list

Definition at line 53 of file security.c.

Referenced by add_group_mapping(), find_gid(), and search_for_gid().

◆ mapping_lock

ERESOURCE mapping_lock
extern

Definition at line 103 of file btrfs.c.

Referenced by _Function_class_(), find_gid(), sid_to_uid(), and uid_to_sid().

◆ sid_AU

sid_header sid_AU = { 1, 1, SECURITY_NT_AUTHORITY, {11}}
static

Definition at line 33 of file security.c.

◆ sid_BA

sid_header sid_BA = { 1, 2, SECURITY_NT_AUTHORITY, {32, 544}}
static

Definition at line 30 of file security.c.

◆ sid_BU

sid_header sid_BU = { 1, 2, SECURITY_NT_AUTHORITY, {32, 545}}
static

Definition at line 32 of file security.c.

◆ sid_SY

sid_header sid_SY = { 1, 1, SECURITY_NT_AUTHORITY, {18}}
static

Definition at line 31 of file security.c.

Referenced by sid_to_uid().

◆ uid_map_list

LIST_ENTRY uid_map_list
extern

Definition at line 68 of file btrfs.c.

Referenced by _Function_class_(), add_user_mapping(), sid_to_uid(), and uid_to_sid().