[NTOSKRNL] Implement access check for secure open

2025-08-03 17:16:04 +00:00 · 2018-09-30 10:49:13 +02:00 · 2018-09-30 10:49:13 +02:00 · 6d0c07c44f
commit 6d0c07c44f
parent 0c122589d2
1 changed files with 64 additions and 1 deletions
--- a/ntoskrnl/io/iomgr/file.c
+++ b/ntoskrnl/io/iomgr/file.c
@ -641,7 +641,70 @@ IopParseDevice(IN PVOID ParseObject,
            ((OpenPacket->RelatedFileObject) || (RemainingName->Length)) &&
            (!VolumeOpen))
        {
-            DPRINT("Fix Secure FSD support!!!\n");
+            Privileges = NULL;
            GrantedAccess = 0;
            KeEnterCriticalRegion();
            ExAcquireResourceSharedLite(&IopSecurityResource, TRUE);
            /* Lock the subject context */
            SeLockSubjectContext(&AccessState->SubjectSecurityContext);
            /* Do access check */
            AccessGranted = SeAccessCheck(OriginalDeviceObject->SecurityDescriptor,
                                          &AccessState->SubjectSecurityContext,
                                          TRUE,
                                          DesiredAccess,
                                          0,
                                          &Privileges,
                                          &IoFileObjectType->TypeInfo.GenericMapping,
                                          UserMode,
                                          &GrantedAccess,
                                          &Status);
            if (Privileges != NULL)
            {
                /* Append and free the privileges */
                SeAppendPrivileges(AccessState, Privileges);
                SeFreePrivileges(Privileges);
            }
            /* Check if we got access */
            if (GrantedAccess)
            {
                AccessState->PreviouslyGrantedAccess |= GrantedAccess;
                AccessState->RemainingDesiredAccess &= ~(GrantedAccess | MAXIMUM_ALLOWED);
            }
            FileString.Length = 8;
            FileString.MaximumLength = 8;
            FileString.Buffer = L"File";
            /* Do Audit/Alarm for open operation
             * NOTA: we audit target device object
             */
            SeOpenObjectAuditAlarm(&FileString,
                                   DeviceObject,
                                   CompleteName,
                                   OriginalDeviceObject->SecurityDescriptor,
                                   AccessState,
                                   FALSE,
                                   AccessGranted,
                                   UserMode,
                                   &AccessState->GenerateOnClose);
            SeUnlockSubjectContext(&AccessState->SubjectSecurityContext);
            ExReleaseResourceLite(&IopSecurityResource);
            KeLeaveCriticalRegion();
            /* Check if access failed */
            if (!AccessGranted)
            {
                /* Dereference the device and fail */
                IopDereferenceDeviceObject(OriginalDeviceObject, FALSE);
                if (Vpb) IopDereferenceVpbAndFree(Vpb);
                return STATUS_ACCESS_DENIED;
            }
        }
        /* Allocate the IRP */