archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/base/fs/ntfs/seinfo.c

392 lines
9.4 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. SeInfo.c
  9. Abstract:
  11. This module implements the Security Info routines for NTFS called by the
  12. dispatch driver.
  14. Author:
  16. Gary Kimura [GaryKi] 26-Dec-1991
  18. Revision History:
  20. --*/
  22. #include "NtfsProc.h"
  24. //
  25. // The debug trace level
  26. //
  28. #define Dbg (DEBUG_TRACE_SEINFO)
  30. #ifdef ALLOC_PRAGMA
  31. #pragma alloc_text(PAGE, NtfsCommonQuerySecurityInfo)
  32. #pragma alloc_text(PAGE, NtfsCommonSetSecurityInfo)
  33. #endif
  36. NTSTATUS
  37. NtfsCommonQuerySecurityInfo (
  38. IN PIRP_CONTEXT IrpContext,
  39. IN PIRP Irp
  40. )
  42. /*++
  44. Routine Description:
  46. This is the common routine for querying security information called by
  47. both the fsd and fsp threads.
  49. Arguments:
  51. Irp - Supplies the Irp to process
  53. Return Value:
  55. NTSTATUS - the return status for the operation
  57. --*/
  59. {
  60. NTSTATUS Status;
  61. PIO_STACK_LOCATION IrpSp;
  62. PFILE_OBJECT FileObject;
  64. TYPE_OF_OPEN TypeOfOpen;
  65. PVCB Vcb;
  66. PFCB Fcb;
  67. PSCB Scb;
  68. PCCB Ccb;
  70. BOOLEAN AcquiredFcb = TRUE;
  72. ASSERT_IRP_CONTEXT( IrpContext );
  73. ASSERT_IRP( Irp );
  74. ASSERT( FlagOn( IrpContext->TopLevelIrpContext->State, IRP_CONTEXT_STATE_OWNS_TOP_LEVEL ));
  76. PAGED_CODE();
  78. //
  79. // Get the current Irp stack location
  80. //
  82. IrpSp = IoGetCurrentIrpStackLocation( Irp );
  84. DebugTrace( +1, Dbg, ("NtfsCommonQuerySecurityInfo") );
  85. DebugTrace( 0, Dbg, ("IrpContext = %08lx\n", IrpContext) );
  86. DebugTrace( 0, Dbg, ("Irp = %08lx\n", Irp) );
  88. //
  89. // Extract and decode the file object
  90. //
  92. FileObject = IrpSp->FileObject;
  93. TypeOfOpen = NtfsDecodeFileObject( IrpContext, FileObject, &Vcb, &Fcb, &Scb, &Ccb, TRUE );
  95. //
  96. // The only type of opens we accept are user file and directory opens
  97. //
  99. if ((TypeOfOpen != UserFileOpen)
  100. && (TypeOfOpen != UserDirectoryOpen)
  101. && (TypeOfOpen != UserViewIndexOpen)) {
  103. Status = STATUS_INVALID_PARAMETER;
  105. } else {
  107. //
  108. // Our operation is to acquire the fcb, do the operation and then
  109. // release the fcb. If the security descriptor for this file is
  110. // not already loaded we will release the Fcb and then acquire both
  111. // the Vcb and Fcb. We must have the Vcb to examine our parent's
  112. // security descriptor.
  113. //
  115. NtfsAcquireSharedFcb( IrpContext, Fcb, NULL, 0 );
  117. try {
  119. if (Fcb->SharedSecurity == NULL) {
  121. NtfsReleaseFcb( IrpContext, Fcb );
  122. AcquiredFcb = FALSE;
  124. NtfsAcquireExclusiveFcb( IrpContext, Fcb, NULL, 0 );
  125. AcquiredFcb = TRUE;
  126. }
  128. //
  129. // Make sure the volume is still mounted.
  130. //
  132. if (FlagOn( Scb->ScbState, SCB_STATE_VOLUME_DISMOUNTED )) {
  134. Status = STATUS_VOLUME_DISMOUNTED;
  135. leave;
  136. }
  138. Status = NtfsQuerySecurity( IrpContext,
  139. Fcb,
  140. &IrpSp->Parameters.QuerySecurity.SecurityInformation,
  141. (PSECURITY_DESCRIPTOR)Irp->UserBuffer,
  142. &IrpSp->Parameters.QuerySecurity.Length );
  144. if (NT_SUCCESS( Status )) {
  146. Irp->IoStatus.Information = IrpSp->Parameters.QuerySecurity.Length;
  148. } else if (Status == STATUS_BUFFER_TOO_SMALL) {
  150. Irp->IoStatus.Information = IrpSp->Parameters.QuerySecurity.Length;
  152. Status = STATUS_BUFFER_OVERFLOW;
  153. }
  155. //
  156. // Abort transaction on error by raising.
  157. //
  159. NtfsCleanupTransaction( IrpContext, Status, FALSE );
  161. } finally {
  163. DebugUnwind( NtfsCommonQuerySecurityInfo );
  165. if (AcquiredFcb) {
  167. NtfsReleaseFcb( IrpContext, Fcb );
  168. }
  169. }
  170. }
  172. //
  173. // Now complete the request and return to our caller
  174. //
  176. NtfsCompleteRequest( IrpContext, Irp, Status );
  178. DebugTrace( -1, Dbg, ("NtfsCommonQuerySecurityInfo -> %08lx", Status) );
  180. return Status;
  181. }
  184. NTSTATUS
  185. NtfsCommonSetSecurityInfo (
  186. IN PIRP_CONTEXT IrpContext,
  187. IN PIRP Irp
  188. )
  190. /*++
  192. Routine Description:
  194. This is the common routine for Setting security information called by
  195. both the fsd and fsp threads.
  197. Arguments:
  199. Irp - Supplies the Irp to process
  201. Return Value:
  203. NTSTATUS - the return status for the operation
  205. --*/
  207. {
  208. NTSTATUS Status;
  209. PIO_STACK_LOCATION IrpSp;
  210. PFILE_OBJECT FileObject;
  211. PQUOTA_CONTROL_BLOCK OldQuotaControl = NULL;
  212. ULONG OldOwnerId;
  213. ULONG LargeStdInfo;
  215. TYPE_OF_OPEN TypeOfOpen;
  216. PVCB Vcb;
  217. PFCB Fcb;
  218. PSCB Scb;
  219. PCCB Ccb;
  221. ASSERT_IRP_CONTEXT( IrpContext );
  222. ASSERT_IRP( Irp );
  223. ASSERT( FlagOn( IrpContext->TopLevelIrpContext->State, IRP_CONTEXT_STATE_OWNS_TOP_LEVEL ));
  225. PAGED_CODE();
  227. //
  228. // Get the current Irp stack location
  229. //
  231. IrpSp = IoGetCurrentIrpStackLocation( Irp );
  233. DebugTrace( +1, Dbg, ("NtfsCommonSetSecurityInfo") );
  234. DebugTrace( 0, Dbg, ("IrpContext = %08lx\n", IrpContext) );
  235. DebugTrace( 0, Dbg, ("Irp = %08lx\n", Irp) );
  237. //
  238. // Extract and decode the file object
  239. //
  241. FileObject = IrpSp->FileObject;
  242. TypeOfOpen = NtfsDecodeFileObject( IrpContext, FileObject, &Vcb, &Fcb, &Scb, &Ccb, TRUE );
  244. //
  245. // The only type of opens we accept are user file and directory opens
  246. //
  248. if ((TypeOfOpen != UserFileOpen)
  249. && (TypeOfOpen != UserDirectoryOpen)
  250. && (TypeOfOpen != UserViewIndexOpen)) {
  252. Status = STATUS_INVALID_PARAMETER;
  254. } else if (NtfsIsVolumeReadOnly( Vcb )) {
  256. Status = STATUS_MEDIA_WRITE_PROTECTED;
  258. } else {
  260. //
  261. // Capture the source information.
  262. //
  264. IrpContext->SourceInfo = Ccb->UsnSourceInfo;
  266. //
  267. // Our operation is to acquire the fcb, do the operation and then
  268. // release the fcb
  269. //
  271. NtfsAcquireExclusiveFcb( IrpContext, Fcb, NULL, 0 );
  273. try {
  275. //
  276. // Make sure the volume is still mounted.
  277. //
  279. if (FlagOn( Scb->ScbState, SCB_STATE_VOLUME_DISMOUNTED )) {
  281. Status = STATUS_VOLUME_DISMOUNTED;
  282. leave;
  283. }
  285. //
  286. // Post the change to the Usn Journal.
  287. //
  289. NtfsPostUsnChange( IrpContext, Scb, USN_REASON_SECURITY_CHANGE );
  291. //
  292. // Capture the current OwnerId, Qutoa Control Block and
  293. // size of standard information.
  294. //
  296. OldQuotaControl = Fcb->QuotaControl;
  297. OldOwnerId = Fcb->OwnerId;
  298. LargeStdInfo = Fcb->FcbState & FCB_STATE_LARGE_STD_INFO;
  300. Status = NtfsModifySecurity( IrpContext,
  301. Fcb,
  302. &IrpSp->Parameters.SetSecurity.SecurityInformation,
  303. IrpSp->Parameters.SetSecurity.SecurityDescriptor );
  305. if (NT_SUCCESS( Status )) {
  307. //
  308. // Make sure the new security descriptor Id is written out.
  309. //
  311. NtfsUpdateStandardInformation( IrpContext, Fcb );
  312. }
  314. //
  315. // Abort transaction on error by raising.
  316. //
  318. NtfsCleanupTransaction( IrpContext, Status, FALSE );
  320. //
  321. // Set the flag in the Ccb to indicate this change occurred.
  322. //
  324. if (!IsDirectory( &Fcb->Info )) {
  325. SetFlag( Ccb->Flags, CCB_FLAG_UPDATE_LAST_CHANGE | CCB_FLAG_SET_ARCHIVE );
  326. }
  328. } finally {
  330. DebugUnwind( NtfsCommonSetSecurityInfo );
  332. if (AbnormalTermination()) {
  334. //
  335. // The request failed. Restore the owner and
  336. // QuotaControl are restored.
  337. //
  339. if ((Fcb->QuotaControl != OldQuotaControl) &&
  340. (Fcb->QuotaControl != NULL)) {
  342. //
  343. // A new quota control block was assigned.
  344. // Dereference it.
  345. //
  347. NtfsDereferenceQuotaControlBlock( Fcb->Vcb,
  348. &Fcb->QuotaControl );
  349. }
  351. Fcb->QuotaControl = OldQuotaControl;
  352. Fcb->OwnerId = OldOwnerId;
  354. if (LargeStdInfo == 0) {
  356. //
  357. // The standard information has be returned to
  358. // its orginal size.
  359. //
  361. ClearFlag( Fcb->FcbState, FCB_STATE_LARGE_STD_INFO );
  362. }
  364. } else {
  366. //
  367. // The request succeed. If the quota control block was
  368. // changed then derefence the old block.
  369. //
  371. if ((Fcb->QuotaControl != OldQuotaControl) &&
  372. (OldQuotaControl != NULL)) {
  374. NtfsDereferenceQuotaControlBlock( Fcb->Vcb,
  375. &OldQuotaControl);
  376. }
  377. }
  379. }
  380. }
  382. //
  383. // Now complete the request and return to our caller
  384. //
  386. NtfsCompleteRequest( IrpContext, Irp, Status );
  388. DebugTrace( -1, Dbg, ("NtfsCommonSetSecurityInfo -> %08lx", Status) );
  390. return Status;
  391. }