Intravision/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2025-05-06 18:31:26 +00:00
Code Issues Projects Releases Packages Wiki Activity

[NTOS:SE]

Browse source 
- Fail in SeAccessCheck if the resulting access would be zero.
CORE-10587 #resolve

svn path=/trunk/; revision=70151
This commit is contained in:
Thomas Faber 2015-11-27 12:06:59 +00:00
parent 2c5b452770
commit b73ac49f8c
1 changed files with 11 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
reactos/ntoskrnl/se/accesschk.c
View file

@ -425,8 +425,17 @@ SeAccessCheck(IN PSECURITY_DESCRIPTOR SecurityDescriptor,
if (DesiredAccess == 0)
{
*GrantedAccess = PreviouslyGrantedAccess;
*AccessStatus = STATUS_SUCCESS;
ret = TRUE;
if (PreviouslyGrantedAccess == 0)
{
DPRINT1("Request for zero access to an object. Denying.\n");
*AccessStatus = STATUS_ACCESS_DENIED;
ret = FALSE;
}
else
{
*AccessStatus = STATUS_SUCCESS;
ret = TRUE;
}
}
else
{