archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/base/fs/rdr2/csc/record.mgr/cscsec.h

163 lines
4.6 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. cscsec.h
  9. Abstract:
  11. This module implements all security related definitions for disconnected
  12. operation of Client Side Caching
  14. Revision History:
  16. Balan Sethu Raman [SethuR] 6-October-1997
  18. Notes:
  20. --*/
  22. #ifndef _SECURITY_H_
  23. #define _SECURITY_H_
  25. // The following functions are used to store/retrieve the access rights information
  26. // for the various files/directories cached in the CSC database.
  28. // routines to initialize/teardown the access rights infrastructure in CSC
  30. extern DWORD
  31. CscInitializeSecurity(
  32. LPVOID ShadowDatabaseName);
  34. extern DWORD
  35. CscTearDownSecurity(LPSTR s);
  37. extern DWORD
  38. CscInitializeSecurityDescriptor();
  40. extern DWORD
  41. CscUninitializeSecurityDescriptor();
  43. //
  44. // The CSC access rights database is organized around SIDs. SIDs uniquely identify
  45. // an user across reboots, i.e., they are persistent.
  46. //
  48. typedef USHORT CSC_SID_INDEX, *PCSC_SID_INDEX;
  50. extern DWORD
  51. CscAddSidToDatabase(
  52. PVOID pSid,
  53. ULONG SidLength,
  54. PCSC_SID_INDEX pSidindex);
  56. extern DWORD
  57. CscRemoveSidFromDatabase(
  58. PVOID pSid,
  59. ULONG SidLength);
  61. typedef struct _CSC_SID_ACCESS_RIGHTS_ {
  62. PVOID pSid;
  63. ULONG SidLength;
  64. ULONG MaximalAccessRights;
  65. } CSC_SID_ACCESS_RIGHTS, *PCSC_SID_ACCESS_RIGHTS;
  67. extern DWORD
  68. CscAddMaximalAccessRightsForSids(
  69. HSHADOW hParent,
  70. HSHADOW hShadow,
  71. ULONG NumberOfSids,
  72. PCSC_SID_ACCESS_RIGHTS pSidAccessRights);
  74. extern DWORD
  75. CscAddMaximalAccessRightsForShare(
  76. HSERVER hServer,
  77. ULONG NumberOfSids,
  78. PCSC_SID_ACCESS_RIGHTS pSidAccessRights);
  80. extern DWORD
  81. CscRemoveMaximalAccessRightsForSid(
  82. HSHADOW hParent,
  83. HSHADOW hShadow,
  84. PVOID pSid,
  85. ULONG SidLength);
  87. //
  88. // Since there are large number of files cached for a given SID the access rights
  89. // are stored corresponding to a SID index. The SIDs are stored persistently in
  90. // a special SID mapping file in the CSC database. Currently the SIDs are
  91. // stored as an array and linear comparions are made. Since the number of SIDs
  92. // will be typically less than 10 in any given system this organization suffices.
  93. // The length of the SID is cached to facilitate quicker comparisons and avoid
  94. // recomputation using the security API's.
  95. //
  97. typedef struct _CSC_SID_ {
  98. ULONG SidLength;
  99. PVOID pSid;
  100. } CSC_SID, *PCSC_SID;
  102. typedef struct _CSC_SIDS_ {
  103. ULONG MaximumNumberOfSids;
  104. ULONG NumberOfSids;
  105. CSC_SID Sids[];
  106. } CSC_SIDS, *PCSC_SIDS;
  108. // Two special indexes are distinguished, the CSC_GUEST_SID_INDEX which is used as
  109. // the default access rights indicator when the SID does not map to a valid
  110. // index and CSC_INVALID_SID_INDEX to indicate an invalid SID mapping.
  111. //
  113. #define CSC_GUEST_SID (PVOID)(0x11111111)
  114. #define CSC_GUEST_SID_LENGTH (0x4)
  116. // Achtung !!! these should match with those in shdcom.h
  117. #define CSC_GUEST_SID_INDEX (0xfffe)
  118. #define CSC_INVALID_SID_INDEX (0x0)
  120. // Achtung !!! this should match with that in shdcom.h
  121. #define CSC_MAXIMUM_NUMBER_OF_CACHED_SID_INDEXES (0x4)
  123. #define CSC_SID_QUANTUM (0x2)
  125. extern CSC_SID_INDEX
  126. CscMapSidToIndex(
  127. PVOID pSid,
  128. ULONG SidLength);
  130. //
  131. // Currently access rights for upto four users are cached with any given file in
  132. // the CSC database. This is based upon the fact that 4 DWORDs have been allocated
  133. // for the security information in the CSC database. The file system specific
  134. // access rights are 9 bits long ( it has been rounded off to 16 bits) and 16
  135. // bits are used for the SID index. It is possible to increase this to 8 by
  136. // squeezing in the SID index to the 7 bits in the 16 bits allocated for
  137. // access rights.
  138. //
  140. #define MAXIMUM_NUMBER_OF_USERS (0x4)
  142. typedef struct _ACCESS_RIGHTS_ {
  143. CSC_SID_INDEX SidIndex;
  144. USHORT MaximalRights;
  145. } ACCESS_RIGHTS, *PACCESS_RIGHTS;
  147. typedef struct _CACHED_ACCESS_RIGHTS_ {
  148. ACCESS_RIGHTS AccessRights[MAXIMUM_NUMBER_OF_USERS];
  149. } CACHED_SECURITY_INFORMATION, *PCACHED_SECURITY_INFORMATION;
  151. //
  152. // All the global variables used in mapping/evaluating access rights are aggregated
  153. // in the CSC_SECURITY data structure. Currently it contains the sid mapping file
  154. // in the CSC database and the in memory data structure used.
  155. //
  157. typedef struct _CSC_SECURITY_ {
  158. CSCHFILE hSidMappingsFile;
  159. PCSC_SIDS pCscSids;
  160. LPVOID ShadowDatabaseName;
  161. } CSC_SECURITY, *PCSC_SECURITY;
  163. #endif
  164.