From fe34d3f23158b283f796f31b7d14c289f2645403 Mon Sep 17 00:00:00 2001
From: jpandre <jpandre>
Date: Fri, 23 Nov 2007 10:50:15 +0000
Subject: [PATCH] Extended security API for auditing security data

---
 libntfs-3g/security.c | 74 +++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 74 insertions(+)

diff --git a/libntfs-3g/security.c b/libntfs-3g/security.c
index 993d0770..2f0502d4 100644
--- a/libntfs-3g/security.c
+++ b/libntfs-3g/security.c
@@ -4798,6 +4798,80 @@ ok = TRUE; /* clarification needed */
 	return (ok);
 }
 
+/*
+ *		read $SDS (for auditing security data)
+ */
+
+int ntfs_read_sds(struct SECURITY_API *scapi,
+		char *buf, u32 size, u32 offset)
+{
+	int got;
+
+	got = 0; /* default return */
+	if (scapi && (scapi->magic == MAGIC_API)) {
+		got = ntfs_local_read(scapi->security.vol->secure_ni,
+			STREAM_SDS, 4, buf, size, offset);
+	} else
+		errno = EINVAL;
+	return (got);
+}
+
+/*
+ *		read $SII (for auditing security data)
+ */
+
+INDEX_ENTRY *ntfs_read_sii(struct SECURITY_API *scapi,
+		INDEX_ENTRY *entry)
+{
+	le32 keyid;
+	ntfs_index_context *xsii;
+
+	if (scapi && (scapi->magic == MAGIC_API)) {
+		xsii = scapi->security.vol->secure_xsii;
+		if (!entry) {
+			keyid = cpu_to_le32(0);
+			ntfs_index_lookup((char*)&keyid,
+				sizeof(SII_INDEX_KEY), xsii);
+			entry = xsii->entry;
+		} else
+			entry = ntfs_index_next(entry,xsii);
+		if (!entry)
+			errno = ENODATA;
+	} else {
+		entry = (INDEX_ENTRY*)NULL;
+		errno = EINVAL;
+	}
+	return (entry);
+}
+
+/*
+ *		read $SDH (for auditing security data)
+ */
+
+INDEX_ENTRY *ntfs_read_sdh(struct SECURITY_API *scapi,
+		INDEX_ENTRY *entry)
+{
+	le32 keyid;
+	ntfs_index_context *xsdh;
+
+	if (scapi && (scapi->magic == MAGIC_API)) {
+		xsdh = scapi->security.vol->secure_xsdh;
+		if (!entry) {
+			keyid = cpu_to_le32(0);
+			ntfs_index_lookup((char*)&keyid,
+				sizeof(SDH_INDEX_KEY), xsdh);
+			entry = xsdh->entry;
+		} else
+			entry = ntfs_index_next(entry,xsdh);
+		if (!entry)
+			errno = ENODATA;
+	} else {
+		entry = (INDEX_ENTRY*)NULL;
+		errno = EINVAL;
+	}
+	return (entry);
+}
+
 /*
  *		Initializations before calling ntfs_get_file_security()
  *	ntfs_set_file_security() and ntfs_read_directory()