sys: WIP

2025-06-14 15:52:47 -05:00 · 2015-11-22 16:08:13 -08:00
parent 80d6afc7b6
commit cb72cad355
4 changed files with 21 additions and 11 deletions
--- a/src/sys/driver.c
+++ b/src/sys/driver.c
@ -24,18 +24,20 @@ DriverEntry(
    /* create the file system control device objects */
    UNICODE_STRING DeviceSddl;
    UNICODE_STRING DeviceName;
-    RtlInitUnicodeString(&DeviceSddl, L"" DEVICE_SDDL);
+    RtlInitUnicodeString(&DeviceSddl, L"" FSP_FSCTL_DEVICE_SDDL);
    RtlInitUnicodeString(&DeviceName, L"\\Device\\" FSP_FSCTL_DISK_DEVICE_NAME);
    Result = IoCreateDeviceSecure(DriverObject,
-        sizeof(FSP_FSCTL_DEVICE_EXTENSION), &DeviceName, FILE_DEVICE_DISK_FILE_SYSTEM, 0, FALSE,
-        &DeviceSddl, &FspDeviceClassGuid,
+        sizeof(FSP_FSCTL_DEVICE_EXTENSION), &DeviceName, FILE_DEVICE_DISK_FILE_SYSTEM,
+        FILE_DEVICE_SECURE_OPEN, FALSE,
+        &DeviceSddl, &FspFsctlDeviceClassGuid,
        &FspFsctlDiskDeviceObject);
    if (!NT_SUCCESS(Result))
        FSP_RETURN();
    RtlInitUnicodeString(&DeviceName, L"\\Device\\" FSP_FSCTL_NET_DEVICE_NAME);
    Result = IoCreateDeviceSecure(DriverObject,
-        sizeof(FSP_FSCTL_DEVICE_EXTENSION), &DeviceName, FILE_DEVICE_NETWORK_FILE_SYSTEM, 0, FALSE,
-        &DeviceSddl, &FspDeviceClassGuid,
+        sizeof(FSP_FSCTL_DEVICE_EXTENSION), &DeviceName, FILE_DEVICE_NETWORK_FILE_SYSTEM,
+        FILE_DEVICE_SECURE_OPEN, FALSE,
+        &DeviceSddl, &FspFsctlDeviceClassGuid,
        &FspFsctlNetDeviceObject);
    if (!NT_SUCCESS(Result))
        FSP_RETURN(IoDeleteDevice(FspFsctlDiskDeviceObject));
--- a/src/sys/driver.h
+++ b/src/sys/driver.h
@ -13,8 +13,10 @@
 #include <winfsp/fsctl.h>

 #define DRIVER_NAME                     "WinFsp"
-#define DEVICE_SDDL                     "D:P(A;;GA;;;SY)(A;;GA;;;BA)"
-    /* system and builtin administrators have full access */
+#define FSP_FSCTL_DEVICE_SDDL           "D:P(A;;GA;;;SY)(A;;GA;;;BA)(A;;GRGW;;;WD)"
+    /* System:GENERIC_ALL, Administrators:GENERIC_ALL, World:GENERIC_READ|GENERIC_WRITE */
+#define FSP_FSVRT_DEVICE_SDDL           "D:P(A;;GA;;;SY)(A;;GA;;;BA)(A;;GRGW;;;WD)"
+    /* System:GENERIC_ALL, Administrators:GENERIC_ALL, World:GENERIC_READ|GENERIC_WRITE */

 /* DEBUGLOG */
 #if DBG
--- a/src/sys/fsctl.c
+++ b/src/sys/fsctl.c
@ -43,11 +43,13 @@ static NTSTATUS FspFsctlCreateVolume(
    if (!NT_SUCCESS(Result))
        return Result;

+    /* create the virtual volume device */
    PDEVICE_OBJECT FsvrtDeviceObject;
    UNICODE_STRING DeviceSddl;
    UNICODE_STRING DeviceName;
-    RtlInitUnicodeString(&DeviceSddl, L"" DEVICE_SDDL);
-    RtlInitEmptyUnicodeString(&DeviceName, Irp->AssociatedIrp.SystemBuffer, FSP_FSCTL_CREATE_BUFFER_SIZEMAX);
+    RtlInitUnicodeString(&DeviceSddl, L"" FSP_FSVRT_DEVICE_SDDL);
+    RtlInitEmptyUnicodeString(&DeviceName,
+        Irp->AssociatedIrp.SystemBuffer, FSP_FSCTL_CREATE_BUFFER_SIZEMAX);
    Result = RtlUnicodeStringPrintf(&DeviceName,
        L"\\Device\\Volume{%08lx-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x}",
        Guid.Data1, Guid.Data2, Guid.Data3,
@ -55,7 +57,8 @@ static NTSTATUS FspFsctlCreateVolume(
        Guid.Data4[4], Guid.Data4[5], Guid.Data4[6], Guid.Data4[7]);
    ASSERT(NT_SUCCESS(Result));
    Result = IoCreateDeviceSecure(DeviceObject->DriverObject,
-        sizeof(FSP_FSVRT_DEVICE_EXTENSION), &DeviceName, DeviceObject->DeviceType, 0, FALSE,
+        sizeof(FSP_FSVRT_DEVICE_EXTENSION), &DeviceName, FILE_DEVICE_VIRTUAL_DISK,
+        FILE_DEVICE_SECURE_OPEN, FALSE,
        &DeviceSddl, 0,
        &FsvrtDeviceObject);
    if (!NT_SUCCESS(Result))