sys,dll: backup/restore privilege support

2025-06-15 08:12:45 -05:00 · 2016-10-21 19:13:05 -07:00
parent b194a33406
commit 3bf4140f91
5 changed files with 43 additions and 10 deletions
--- a/src/dll/debug.c
+++ b/src/dll/debug.c
@ -299,12 +299,16 @@ FSP_API VOID FspDebugLogRequest(FSP_FSCTL_TRANSACT_REQ *Request)
                OWNER_SECURITY_INFORMATION | GROUP_SECURITY_INFORMATION |
                DACL_SECURITY_INFORMATION | SACL_SECURITY_INFORMATION,
                &Sddl, 0);
-        FspDebugLog("%S[TID=%04lx]: %p: >>Create [%c%c%c%c] \"%S\", "
+        FspDebugLog("%S[TID=%04lx]: %p: >>Create [%c%c%c%c%c%c] \"%S\", "
            "%s, CreateOptions=%lx, FileAttributes=%lx, Security=%s%s%s, "
-            "AllocationSize=%lx:%lx, AccessToken=%p, DesiredAccess=%lx, ShareAccess=%lx\n",
+            "AllocationSize=%lx:%lx, "
+            "AccessToken=%p, DesiredAccess=%lx, GrantedAccess=%lx, "
+            "ShareAccess=%lx\n",
            FspDiagIdent(), GetCurrentThreadId(), Request->Hint,
            Request->Req.Create.UserMode ? 'U' : 'K',
            Request->Req.Create.HasTraversePrivilege ? 'T' : '-',
+            Request->Req.Create.HasBackupPrivilege ? 'B' : '-',
+            Request->Req.Create.HasRestorePrivilege ? 'R' : '-',
            Request->Req.Create.OpenTargetDirectory ? 'D' : '-',
            Request->Req.Create.CaseSensitive ? 'C' : '-',
            (PWSTR)Request->Buffer,
@ -317,6 +321,7 @@ FSP_API VOID FspDebugLogRequest(FSP_FSCTL_TRANSACT_REQ *Request)
            MAKE_UINT32_PAIR(Request->Req.Create.AllocationSize),
            (PVOID)Request->Req.Create.AccessToken,
            Request->Req.Create.DesiredAccess,
+            Request->Req.Create.GrantedAccess,
            Request->Req.Create.ShareAccess);
        LocalFree(Sddl);
        break;
--- a/src/dll/fsop.c
+++ b/src/dll/fsop.c
@ -137,7 +137,7 @@ NTSTATUS FspFileSystemCreateCheck(FSP_FILE_SYSTEM *FileSystem,
    PSECURITY_DESCRIPTOR *PSecurityDescriptor)
 {
    NTSTATUS Result;
-    UINT32 GrantedAccess;
+    UINT32 ParentDesiredAccess, GrantedAccess;

    /*
     * CreateCheck does different checks depending on whether we are
@ -161,9 +161,14 @@ NTSTATUS FspFileSystemCreateCheck(FSP_FILE_SYSTEM *FileSystem,

    if (!Request->Req.Create.NamedStream)
    {
+        if (Request->Req.Create.HasRestorePrivilege)
+            ParentDesiredAccess = 0;
+        else if (Request->Req.Create.CreateOptions & FILE_DIRECTORY_FILE)
+            ParentDesiredAccess = FILE_ADD_SUBDIRECTORY;
+        else
+            ParentDesiredAccess = FILE_ADD_FILE;
        Result = FspAccessCheckEx(FileSystem, Request, TRUE, AllowTraverseCheck,
-            (Request->Req.Create.CreateOptions & FILE_DIRECTORY_FILE) ?
-                FILE_ADD_SUBDIRECTORY : FILE_ADD_FILE,
+            ParentDesiredAccess,
            &GrantedAccess, PSecurityDescriptor);
        if (STATUS_REPARSE == Result)
            Result = FspFileSystemCallResolveReparsePoints(FileSystem, Request, Response, GrantedAccess);
@ -171,6 +176,7 @@ NTSTATUS FspFileSystemCreateCheck(FSP_FILE_SYSTEM *FileSystem,
        {
            *PGrantedAccess = (MAXIMUM_ALLOWED & Request->Req.Create.DesiredAccess) ?
                FspGetFileGenericMapping()->GenericAll : Request->Req.Create.DesiredAccess;
+            *PGrantedAccess |= Request->Req.Create.GrantedAccess;
        }
    }
    else
@ -190,6 +196,7 @@ NTSTATUS FspFileSystemCreateCheck(FSP_FILE_SYSTEM *FileSystem,
            if (0 == (Request->Req.Create.DesiredAccess & MAXIMUM_ALLOWED))
                *PGrantedAccess &= ~(DELETE | FILE_WRITE_DATA) |
                    (Request->Req.Create.DesiredAccess & (DELETE | FILE_WRITE_DATA));
+            *PGrantedAccess |= Request->Req.Create.GrantedAccess;
        }
    }

@ -225,6 +232,7 @@ NTSTATUS FspFileSystemOpenCheck(FSP_FILE_SYSTEM *FileSystem,
        *PGrantedAccess = GrantedAccess;
        if (0 == (Request->Req.Create.DesiredAccess & MAXIMUM_ALLOWED))
            *PGrantedAccess &= ~DELETE | (Request->Req.Create.DesiredAccess & DELETE);
+        *PGrantedAccess |= Request->Req.Create.GrantedAccess;
    }

    return Result;
@ -263,6 +271,7 @@ NTSTATUS FspFileSystemOverwriteCheck(FSP_FILE_SYSTEM *FileSystem,
        if (0 == (Request->Req.Create.DesiredAccess & MAXIMUM_ALLOWED))
            *PGrantedAccess &= ~(DELETE | FILE_WRITE_DATA) |
                (Request->Req.Create.DesiredAccess & (DELETE | FILE_WRITE_DATA));
+        *PGrantedAccess |= Request->Req.Create.GrantedAccess;
    }

    return Result;
@ -286,7 +295,7 @@ NTSTATUS FspFileSystemOpenTargetDirectoryCheck(FSP_FILE_SYSTEM *FileSystem,
    if (STATUS_REPARSE == Result)
        Result = FspFileSystemCallResolveReparsePoints(FileSystem, Request, Response, GrantedAccess);
    else if (NT_SUCCESS(Result))
-        *PGrantedAccess = GrantedAccess;
+        *PGrantedAccess = GrantedAccess | Request->Req.Create.GrantedAccess;

    return Result;
 }
--- a/src/dll/security.c
+++ b/src/dll/security.c
@ -193,7 +193,9 @@ FSP_API NTSTATUS FspAccessCheckEx(FSP_FILE_SYSTEM *FileSystem,

    if (Request->Req.Create.UserMode && 0 < SecurityDescriptorSize)
    {
-        if (AccessCheck(SecurityDescriptor, (HANDLE)Request->Req.Create.AccessToken, DesiredAccess,
+        if (0 == DesiredAccess)
+            Result = STATUS_SUCCESS;
+        else if (AccessCheck(SecurityDescriptor, (HANDLE)Request->Req.Create.AccessToken, DesiredAccess,
            &FspFileGenericMapping, PrivilegeSet, &PrivilegeSetLength, PGrantedAccess, &AccessStatus))
            Result = AccessStatus ? STATUS_SUCCESS : STATUS_ACCESS_DENIED;
        else