Remove a hack from NtAccessCheck(). Bug #4169.

svn path=/trunk/; revision=41610
2024-06-29 01:12:06 +00:00 · 2009-06-25 13:29:58 +00:00 · 2009-06-25 13:29:58 +00:00 · ff37974bba
parent d53c35b02b
commit ff37974bba
1 changed files with 85 additions and 93 deletions
--- a/reactos/ntoskrnl/se/semgr.c
+++ b/reactos/ntoskrnl/se/semgr.c
@ -688,32 +688,24 @@ NtAccessCheck(IN PSECURITY_DESCRIPTOR SecurityDescriptor,
    SubjectSecurityContext.ProcessAuditId = NULL;
    SeLockSubjectContext(&SubjectSecurityContext);

-    /* FIXME */
    /* Now perform the access check */
-    if (SeAccessCheck(SecurityDescriptor,
-                      &SubjectSecurityContext,
-                      TRUE,
-                      DesiredAccess,
-                      0,
-                      &PrivilegeSet, //FIXME
-                      GenericMapping,
-                      PreviousMode,
-                      GrantedAccess,
-                      AccessStatus))
-    {
-        Status = *AccessStatus;
-    }
-    else
-    {
-        Status = STATUS_ACCESS_DENIED;
-    }
+    SeAccessCheck(SecurityDescriptor,
+                  &SubjectSecurityContext,
+                  TRUE,
+                  DesiredAccess,
+                  0,
+                  &PrivilegeSet, //FIXME
+                  GenericMapping,
+                  PreviousMode,
+                  GrantedAccess,
+                  AccessStatus);

    /* Unlock subject context and dereference the token */
    SeUnlockSubjectContext(&SubjectSecurityContext);
    ObDereferenceObject(Token);

-    /* Check succeeded? */
-    return Status;
+    /* Check succeeded */
+    return STATUS_SUCCESS;
 }