archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/base/ntos/rtl/sysvol.c

562 lines
15 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2000 Microsoft Corporation
  5. Module Name:
  7. SysVol.c
  9. Abstract:
  11. Creation and Maintenance of the NTFS "System Volume Information"
  12. directory.
  14. Author:
  16. Norbert P. Kusters (NorbertK) 1-Nov-2000
  18. Revision History:
  20. --*/
  22. #include "ntrtlp.h"
  24. PVOID
  25. RtlpSysVolAllocate(
  26. IN ULONG Size
  27. );
  29. VOID
  30. RtlpSysVolFree(
  31. IN PVOID Buffer
  32. );
  34. NTSTATUS
  35. RtlpSysVolCreateSecurityDescriptor(
  36. OUT PSECURITY_DESCRIPTOR* SecurityDescriptor,
  37. OUT PACL* Acl
  38. );
  40. NTSTATUS
  41. RtlpSysVolCheckOwnerAndSecurity(
  42. IN HANDLE Handle,
  43. IN PACL StandardAcl
  44. );
  46. VOID
  47. RtlpSysVolAdminSid(
  48. IN OUT SID* Sid
  49. );
  51. static const SID_IDENTIFIER_AUTHORITY ntAuthority = SECURITY_NT_AUTHORITY;
  53. #if defined(ALLOC_PRAGMA) && defined(NTOS_KERNEL_RUNTIME)
  54. #pragma alloc_text(PAGE,RtlCreateSystemVolumeInformationFolder)
  55. #pragma alloc_text(PAGE,RtlpSysVolAllocate)
  56. #pragma alloc_text(PAGE,RtlpSysVolFree)
  57. #pragma alloc_text(PAGE,RtlpSysVolCreateSecurityDescriptor)
  58. #pragma alloc_text(PAGE,RtlpSysVolCheckOwnerAndSecurity)
  59. #pragma alloc_text(PAGE,RtlpSysVolAdminSid)
  60. #endif
  62. PVOID
  63. RtlpSysVolAllocate(
  64. IN ULONG Size
  65. )
  67. {
  68. PVOID p;
  70. #ifdef NTOS_KERNEL_RUNTIME
  71. p = ExAllocatePoolWithTag(PagedPool, Size, 'SloV');
  72. #else
  73. p = RtlAllocateHeap(RtlProcessHeap(), 0, Size);
  74. #endif
  76. return p;
  77. }
  79. VOID
  80. RtlpSysVolFree(
  81. IN PVOID Buffer
  82. )
  84. {
  85. #ifdef NTOS_KERNEL_RUNTIME
  86. ExFreePool(Buffer);
  87. #else
  88. RtlFreeHeap(RtlProcessHeap(), 0, Buffer);
  89. #endif
  90. }
  92. VOID
  93. RtlpSysVolAdminSid(
  94. IN OUT SID* Sid
  95. )
  97. {
  98. Sid->Revision = SID_REVISION;
  99. Sid->SubAuthorityCount = 2;
  100. Sid->IdentifierAuthority = ntAuthority;
  101. Sid->SubAuthority[0] = SECURITY_BUILTIN_DOMAIN_RID;
  102. Sid->SubAuthority[1] = DOMAIN_ALIAS_RID_ADMINS;
  103. }
  105. VOID
  106. RtlpSysVolSystemSid(
  107. IN OUT SID* Sid
  108. )
  110. {
  111. Sid->Revision = SID_REVISION;
  112. Sid->SubAuthorityCount = 1;
  113. Sid->IdentifierAuthority = ntAuthority;
  114. Sid->SubAuthority[0] = SECURITY_LOCAL_SYSTEM_RID;
  115. }
  117. NTSTATUS
  118. RtlpSysVolCreateSecurityDescriptor(
  119. OUT PSECURITY_DESCRIPTOR* SecurityDescriptor,
  120. OUT PACL* Acl
  121. )
  123. {
  124. PSECURITY_DESCRIPTOR sd;
  125. NTSTATUS status;
  126. PSID systemSid;
  127. UCHAR sidBuffer[2*sizeof(SID)];
  128. ULONG aclLength;
  129. PACL acl;
  131. sd = RtlpSysVolAllocate(sizeof(SECURITY_DESCRIPTOR));
  132. if (!sd) {
  133. return STATUS_INSUFFICIENT_RESOURCES;
  134. }
  136. status = RtlCreateSecurityDescriptor(sd, SECURITY_DESCRIPTOR_REVISION);
  137. if (!NT_SUCCESS(status)) {
  138. RtlpSysVolFree(sd);
  139. return status;
  140. }
  142. systemSid = (PSID) sidBuffer;
  143. RtlpSysVolSystemSid(systemSid);
  145. aclLength = sizeof(ACL) + sizeof(ACCESS_ALLOWED_ACE) +
  146. RtlLengthSid(systemSid) - sizeof(ULONG);
  148. acl = RtlpSysVolAllocate(aclLength);
  149. if (!acl) {
  150. RtlpSysVolFree(sd);
  151. return STATUS_INSUFFICIENT_RESOURCES;
  152. }
  154. status = RtlCreateAcl(acl, aclLength, ACL_REVISION);
  155. if (!NT_SUCCESS(status)) {
  156. RtlpSysVolFree(acl);
  157. RtlpSysVolFree(sd);
  158. return status;
  159. }
  161. status = RtlAddAccessAllowedAceEx(acl, ACL_REVISION, OBJECT_INHERIT_ACE |
  162. CONTAINER_INHERIT_ACE,
  163. STANDARD_RIGHTS_ALL |
  164. SPECIFIC_RIGHTS_ALL, systemSid);
  165. if (!NT_SUCCESS(status)) {
  166. RtlpSysVolFree(acl);
  167. RtlpSysVolFree(sd);
  168. return status;
  169. }
  171. status = RtlSetDaclSecurityDescriptor(sd, TRUE, acl, FALSE);
  172. if (!NT_SUCCESS(status)) {
  173. RtlpSysVolFree(acl);
  174. RtlpSysVolFree(sd);
  175. return status;
  176. }
  178. *SecurityDescriptor = sd;
  179. *Acl = acl;
  181. return STATUS_SUCCESS;
  182. }
  184. NTSTATUS
  185. RtlpSysVolCheckOwnerAndSecurity(
  186. IN HANDLE Handle,
  187. IN PACL StandardAcl
  188. )
  190. {
  191. NTSTATUS status;
  192. ULONG sdLength, sdLength2;
  193. PSECURITY_DESCRIPTOR sd, sd2;
  194. PSID sid;
  195. BOOLEAN ownerDefaulted, daclPresent, daclDefaulted;
  196. PACL acl;
  197. ULONG i;
  198. PACCESS_ALLOWED_ACE ace;
  199. PSID systemSid;
  200. UCHAR sidBuffer[2*sizeof(SID)];
  201. PSID adminSid;
  202. UCHAR sidBuffer2[2*sizeof(SID)];
  204. status = NtQuerySecurityObject(Handle, OWNER_SECURITY_INFORMATION |
  205. DACL_SECURITY_INFORMATION, NULL, 0,
  206. &sdLength);
  207. if (status != STATUS_BUFFER_TOO_SMALL) {
  208. // The file system does not support security.
  209. return STATUS_SUCCESS;
  210. }
  212. sd = RtlpSysVolAllocate(sdLength);
  213. if (!sd) {
  214. return STATUS_INSUFFICIENT_RESOURCES;
  215. }
  217. status = NtQuerySecurityObject(Handle, OWNER_SECURITY_INFORMATION |
  218. DACL_SECURITY_INFORMATION, sd, sdLength,
  219. &sdLength);
  220. if (!NT_SUCCESS(status)) {
  221. RtlpSysVolFree(sd);
  222. return status;
  223. }
  225. status = RtlGetDaclSecurityDescriptor(sd, &daclPresent, &acl,
  226. &daclDefaulted);
  227. if (!NT_SUCCESS(status)) {
  228. RtlpSysVolFree(sd);
  229. return status;
  230. }
  232. status = RtlGetOwnerSecurityDescriptor(sd, &sid, &ownerDefaulted);
  233. if (!NT_SUCCESS(status)) {
  234. RtlpSysVolFree(sd);
  235. return status;
  236. }
  238. //
  239. // Setup well know SIDs
  240. //
  242. systemSid = (PSID) sidBuffer;
  243. adminSid = (PSID) sidBuffer2;
  245. RtlpSysVolSystemSid(systemSid);
  246. RtlpSysVolAdminSid(adminSid);
  249. if (!sid) {
  250. goto ResetSecurity;
  251. }
  253. if (!RtlEqualSid(sid, adminSid)) {
  254. goto ResetSecurity;
  255. }
  257. if (!daclPresent || (daclPresent && !acl)) {
  258. goto ResetSecurity;
  259. }
  261. for (i = 0; ; i++) {
  262. status = RtlGetAce(acl, i, &ace);
  263. if (!NT_SUCCESS(status)) {
  264. ace = NULL;
  265. }
  266. if (!ace) {
  267. break;
  268. }
  270. if (ace->Header.AceType != ACCESS_ALLOWED_ACE_TYPE) {
  271. continue;
  272. }
  274. sid = (PSID) &ace->SidStart;
  275. if (!RtlEqualSid(sid, systemSid)) {
  276. continue;
  277. }
  279. break;
  280. }
  282. if (!ace) {
  283. goto ResetSecurity;
  284. }
  286. if (!(ace->Header.AceFlags&OBJECT_INHERIT_ACE) ||
  287. !(ace->Header.AceFlags&CONTAINER_INHERIT_ACE)) {
  289. ace->Header.AceFlags |= OBJECT_INHERIT_ACE | CONTAINER_INHERIT_ACE;
  291. status = NtSetSecurityObject(Handle, DACL_SECURITY_INFORMATION, sd);
  293. } else {
  294. status = STATUS_SUCCESS;
  295. }
  297. RtlpSysVolFree(sd);
  299. return status;
  301. ResetSecurity:
  303. sdLength2 = sdLength;
  304. status = RtlSelfRelativeToAbsoluteSD2(sd, &sdLength2);
  305. if (status == STATUS_BUFFER_TOO_SMALL) {
  306. sd2 = RtlpSysVolAllocate(sdLength2);
  307. if (!sd2) {
  308. RtlpSysVolFree(sd);
  309. return STATUS_INSUFFICIENT_RESOURCES;
  310. }
  312. RtlCopyMemory(sd2, sd, sdLength);
  313. RtlpSysVolFree(sd);
  314. sd = sd2;
  315. sdLength = sdLength2;
  317. status = RtlSelfRelativeToAbsoluteSD2(sd, &sdLength);
  318. if (!NT_SUCCESS(status)) {
  319. RtlpSysVolFree(sd);
  320. return status;
  321. }
  322. }
  324. status = RtlSetOwnerSecurityDescriptor(sd, adminSid, FALSE);
  325. if (!NT_SUCCESS(status)) {
  326. RtlpSysVolFree(sd);
  327. return status;
  328. }
  330. status = RtlSetDaclSecurityDescriptor(sd, TRUE, StandardAcl, FALSE);
  331. if (!NT_SUCCESS(status)) {
  332. RtlpSysVolFree(sd);
  333. return status;
  334. }
  336. sdLength2 = 0;
  337. status = RtlMakeSelfRelativeSD(sd, NULL, &sdLength2);
  338. if (status != STATUS_BUFFER_TOO_SMALL) {
  339. RtlpSysVolFree(sd);
  340. return status;
  341. }
  343. sd2 = RtlpSysVolAllocate(sdLength2);
  344. if (!sd2) {
  345. RtlpSysVolFree(sd);
  346. return STATUS_INSUFFICIENT_RESOURCES;
  347. }
  349. status = RtlMakeSelfRelativeSD(sd, sd2, &sdLength2);
  350. RtlpSysVolFree(sd);
  351. if (!NT_SUCCESS(status)) {
  352. RtlpSysVolFree(sd2);
  353. return status;
  354. }
  356. sd = sd2;
  357. sdLength = sdLength2;
  359. status = NtSetSecurityObject(Handle, OWNER_SECURITY_INFORMATION |
  360. DACL_SECURITY_INFORMATION, sd);
  362. RtlpSysVolFree(sd);
  364. return status;
  365. }
  367. VOID
  368. RtlpSysVolTakeOwnership(
  369. IN PUNICODE_STRING DirectoryName
  370. )
  372. /*++
  374. Routine Description:
  376. This routine is called when the open for the directory failed. This
  377. routine will attempt to set the owner of the file to the caller's
  378. ownership so that another attempt to open the file can be attempted.
  380. Arguments:
  382. DirectoryName - Supplies the directory name.
  384. Return Value:
  386. None.
  388. --*/
  390. {
  391. NTSTATUS status;
  392. HANDLE tokenHandle, fileHandle;
  393. TOKEN_PRIVILEGES tokenPrivileges;
  394. OBJECT_ATTRIBUTES oa;
  395. IO_STATUS_BLOCK ioStatus;
  396. SECURITY_DESCRIPTOR sd;
  397. PSID adminSid;
  398. UCHAR sidBuffer[2*sizeof(SID)];
  400. status = NtOpenProcessToken(NtCurrentProcess(), TOKEN_ADJUST_PRIVILEGES |
  401. TOKEN_QUERY, &tokenHandle);
  402. if (!NT_SUCCESS(status)) {
  403. return;
  404. }
  406. tokenPrivileges.PrivilegeCount = 1;
  407. tokenPrivileges.Privileges[0].Luid =
  408. RtlConvertLongToLuid(SE_TAKE_OWNERSHIP_PRIVILEGE);
  409. tokenPrivileges.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;
  411. status = NtAdjustPrivilegesToken(tokenHandle, FALSE, &tokenPrivileges,
  412. sizeof(tokenPrivileges), NULL, NULL);
  413. if (!NT_SUCCESS(status)) {
  414. NtClose(tokenHandle);
  415. return;
  416. }
  418. InitializeObjectAttributes(&oa, DirectoryName, OBJ_CASE_INSENSITIVE, NULL,
  419. NULL);
  420. status = NtOpenFile(&fileHandle, WRITE_OWNER | SYNCHRONIZE, &oa, &ioStatus,
  421. FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,
  422. FILE_SYNCHRONOUS_IO_NONALERT | FILE_DIRECTORY_FILE);
  423. if (!NT_SUCCESS(status)) {
  424. NtClose(tokenHandle);
  425. return;
  426. }
  428. RtlCreateSecurityDescriptor(&sd, SECURITY_DESCRIPTOR_REVISION);
  429. adminSid = (PSID) sidBuffer;
  430. RtlpSysVolAdminSid(adminSid);
  432. status = RtlSetOwnerSecurityDescriptor(&sd, adminSid, FALSE);
  433. if (!NT_SUCCESS(status)) {
  434. NtClose(fileHandle);
  435. NtClose(tokenHandle);
  436. return;
  437. }
  439. status = NtSetSecurityObject(fileHandle, OWNER_SECURITY_INFORMATION, &sd);
  440. if (!NT_SUCCESS(status)) {
  441. NtClose(fileHandle);
  442. NtClose(tokenHandle);
  443. return;
  444. }
  446. NtClose(fileHandle);
  447. NtClose(tokenHandle);
  448. }
  450. NTSTATUS
  451. RtlCreateSystemVolumeInformationFolder(
  452. IN PUNICODE_STRING VolumeRootPath
  453. )
  455. /*++
  457. Routine Description:
  459. This routine verifies the existence of the "System Volume Information"
  460. folder on the given volume. If the folder is not present, then the
  461. folder is created with one ACE indicating full access for SYSTEM. The ACE
  462. will have the inheritance bits set. The folder will be created with
  463. the HIDDEN and SYSTEM attributes set.
  465. If the folder is already present, the ACE that indicates full control
  466. for SYSTEM will be checked and if necessary modified to have the
  467. inheritance bits set.
  469. Arguments:
  471. VolumeRootPath - Supplies a path to the root of an NTFS volume.
  473. Return Value:
  475. NTSTATUS
  477. --*/
  479. {
  480. UNICODE_STRING sysVolName;
  481. UNICODE_STRING dirName;
  482. BOOLEAN needBackslash;
  483. NTSTATUS status;
  484. PSECURITY_DESCRIPTOR securityDescriptor;
  485. PACL acl;
  486. OBJECT_ATTRIBUTES oa;
  487. HANDLE h;
  488. IO_STATUS_BLOCK ioStatus;
  490. RtlInitUnicodeString(&sysVolName, RTL_SYSTEM_VOLUME_INFORMATION_FOLDER);
  492. dirName.Length = VolumeRootPath->Length + sysVolName.Length;
  493. if (VolumeRootPath->Buffer[VolumeRootPath->Length/sizeof(WCHAR) - 1] !=
  494. '\\') {
  496. dirName.Length += sizeof(WCHAR);
  497. needBackslash = TRUE;
  498. } else {
  499. needBackslash = FALSE;
  500. }
  501. dirName.MaximumLength = dirName.Length + sizeof(WCHAR);
  502. dirName.Buffer = RtlpSysVolAllocate(dirName.MaximumLength);
  503. if (!dirName.Buffer) {
  504. return STATUS_INSUFFICIENT_RESOURCES;
  505. }
  507. RtlCopyMemory(dirName.Buffer, VolumeRootPath->Buffer,
  508. VolumeRootPath->Length);
  509. dirName.Length = VolumeRootPath->Length;
  510. if (needBackslash) {
  511. dirName.Buffer[VolumeRootPath->Length/sizeof(WCHAR)] = '\\';
  512. dirName.Length += sizeof(WCHAR);
  513. }
  514. RtlCopyMemory((PCHAR) dirName.Buffer + dirName.Length,
  515. sysVolName.Buffer, sysVolName.Length);
  516. dirName.Length += sysVolName.Length;
  517. dirName.Buffer[dirName.Length/sizeof(WCHAR)] = 0;
  519. status = RtlpSysVolCreateSecurityDescriptor(&securityDescriptor, &acl);
  520. if (!NT_SUCCESS(status)) {
  521. RtlpSysVolFree(dirName.Buffer);
  522. return status;
  523. }
  525. InitializeObjectAttributes(&oa, &dirName, OBJ_CASE_INSENSITIVE, NULL,
  526. securityDescriptor);
  528. status = NtCreateFile(&h, READ_CONTROL | WRITE_DAC | WRITE_OWNER |
  529. SYNCHRONIZE, &oa, &ioStatus, NULL,
  530. FILE_ATTRIBUTE_HIDDEN | FILE_ATTRIBUTE_SYSTEM,
  531. FILE_SHARE_READ | FILE_SHARE_WRITE |
  532. FILE_SHARE_DELETE, FILE_OPEN_IF,
  533. FILE_SYNCHRONOUS_IO_NONALERT | FILE_DIRECTORY_FILE,
  534. NULL, 0);
  535. if (!NT_SUCCESS(status)) {
  536. RtlpSysVolTakeOwnership(&dirName);
  537. status = NtCreateFile(&h, READ_CONTROL | WRITE_DAC | WRITE_OWNER |
  538. SYNCHRONIZE, &oa, &ioStatus, NULL,
  539. FILE_ATTRIBUTE_HIDDEN | FILE_ATTRIBUTE_SYSTEM,
  540. FILE_SHARE_READ | FILE_SHARE_WRITE |
  541. FILE_SHARE_DELETE, FILE_OPEN_IF,
  542. FILE_SYNCHRONOUS_IO_NONALERT |
  543. FILE_DIRECTORY_FILE, NULL, 0);
  544. }
  546. RtlpSysVolFree(dirName.Buffer);
  548. if (!NT_SUCCESS(status)) {
  549. RtlpSysVolFree(acl);
  550. RtlpSysVolFree(securityDescriptor);
  551. return status;
  552. }
  554. RtlpSysVolFree(securityDescriptor);
  556. status = RtlpSysVolCheckOwnerAndSecurity(h, acl);
  558. NtClose(h);
  559. RtlpSysVolFree(acl);
  561. return status;
  562. }