diff options
author | Corinna Vinschen <corinna@vinschen.de> | 2004-04-17 01:22:13 +0400 |
---|---|---|
committer | Corinna Vinschen <corinna@vinschen.de> | 2004-04-17 01:22:13 +0400 |
commit | e859706578ba60d3fcc011dd0e5d77b10342ae3f (patch) | |
tree | f0389a758d5de16c41d4275ae53d040e09ede040 /winsup/cygwin/sec_helper.cc | |
parent | e2c248c18bcfa7ceed603f92bc8085c7e1bd10b0 (diff) |
* autoload.cc (NtCreateFile): Add.
* dir.cc (mkdir): Change set_file_attribute call to indicate that
NT security isn't used.
* fhandler.cc (fhandler_base::open_9x): New method, created from
fhandler_base::open.
(fhandler_base::open): Rearrange to use NtCreateFile instead of
CreateFile.
* fhandler.h (enum query_state): Redefine query_null_access to
query_stat_control. query_null_access isn't allowed in NtCreateFile.
(fhandler_base::open_9x): Declare.
* fhandler_disk_file.cc (fhandler_base::fstat_fs): Use
query_stat_control first, query_read_control if that fails.
(fhandler_disk_file::fchmod): Call enable_restore_privilege before
trying to open for query_write_control. Don't fall back to
opening for query_read_control.
(fhandler_disk_file::fchown): Ditto.
(fhandler_disk_file::facl): Only request restore privilege and query
access necessary for given cmd.
* fhandler_raw.cc (fhandler_dev_raw::open): Call fhandler_base::open
instead of opening device here.
* ntdll.h (NtCreateFile): Declare.
* path.cc (symlink_worker): Change set_file_attribute call to indicate
that NT security isn't used.
* sec_acl.cc (getacl): Fix bracketing.
* sec_helper.cc (enable_restore_privilege): New function.
* security.cc (str2buf2uni_cat): New function.
(write_sd): Don't request restore permission here.
* security.h (set_process_privileges): Drop stale declaration.
(str2buf2uni): Declare.
(str2buf2uni_cat): Declare.
(enable_restore_privilege): Declare.
* syscalls.cc (fchown32): Return immediate success on 9x.
Diffstat (limited to 'winsup/cygwin/sec_helper.cc')
-rw-r--r-- | winsup/cygwin/sec_helper.cc | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/winsup/cygwin/sec_helper.cc b/winsup/cygwin/sec_helper.cc index 0c44c6f7c..b97dcd028 100644 --- a/winsup/cygwin/sec_helper.cc +++ b/winsup/cygwin/sec_helper.cc @@ -375,6 +375,20 @@ out: return ret; } +/* Helper function to set the SE_RESTORE_NAME privilege once. */ +void +enable_restore_privilege () +{ + static int NO_COPY saved_res; + bool issetuid = cygheap->user.issetuid (); + if (!saved_res || issetuid) + { + int res = 2 + set_process_privilege (SE_RESTORE_NAME, true, issetuid); + if (!issetuid) + saved_res = res; + } +} + /* * Function to return a common SECURITY_DESCRIPTOR * that * allows all access. |