able/windows-nt
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
windows-nt/Source/XPSP1/NT/drivers/storage/newft/espprot.cxx

86 lines
2.2 KiB
C++
Raw Permalink Normal View History

Add source files
2020-09-26 03:20:57 -05:00
extern "C" {
#include <ntosp.h>
#include <zwapi.h>
}
#include <ftdisk.h>
NTSTATUS
FtpApplyESPProtection(
IN PUNICODE_STRING PartitionName
)
{
ULONG length;
PACL acl;
NTSTATUS status;
SECURITY_DESCRIPTOR sd;
OBJECT_ATTRIBUTES oa;
HANDLE h;
IO_STATUS_BLOCK ioStatus;
//SeEnableAccessToExports();
length = sizeof(ACL) + 2*sizeof(ACCESS_ALLOWED_ACE) +
RtlLengthSid(SeExports->SeLocalSystemSid) +
RtlLengthSid(SeExports->SeAliasAdminsSid) +
8; // The 8 is just for good measure.
acl = (PACL) ExAllocatePool(PagedPool, length);
if (!acl) {
return STATUS_INSUFFICIENT_RESOURCES;
}
status = RtlCreateAcl(acl, length, ACL_REVISION2);
if (!NT_SUCCESS(status)) {
ExFreePool(acl);
return status;
}
status = RtlAddAccessAllowedAce(acl, ACL_REVISION2, GENERIC_ALL,
SeExports->SeLocalSystemSid);
if (!NT_SUCCESS(status)) {
ExFreePool(acl);
return status;
}
status = RtlAddAccessAllowedAce(acl, ACL_REVISION2, GENERIC_READ |
GENERIC_WRITE | GENERIC_EXECUTE |
READ_CONTROL, SeExports->SeAliasAdminsSid);
if (!NT_SUCCESS(status)) {
ExFreePool(acl);
return status;
}
status = RtlCreateSecurityDescriptor(&sd, SECURITY_DESCRIPTOR_REVISION);
if (!NT_SUCCESS(status)) {
ExFreePool(acl);
return status;
}
status = RtlSetDaclSecurityDescriptor(&sd, TRUE, acl, FALSE);
if (!NT_SUCCESS(status)) {
ExFreePool(acl);
return status;
}
InitializeObjectAttributes(&oa, PartitionName, OBJ_CASE_INSENSITIVE, NULL,
NULL);
status = ZwOpenFile(&h, WRITE_DAC, &oa, &ioStatus, FILE_SHARE_READ |
FILE_SHARE_WRITE | FILE_SHARE_DELETE,
FILE_SYNCHRONOUS_IO_ALERT);
if (!NT_SUCCESS(status)) {
ExFreePool(acl);
return status;
}
status = ZwSetSecurityObject(h, DACL_SECURITY_INFORMATION, &sd);
ZwClose(h);
ExFreePool(acl);
return status;
}
Reference in a new issue Copy permalink