2c11aaa2aa
Fixed the range of valid subauthority counts in a SID
...
ntfs_valid_sid() required that the subauthority count be between 1 and 8
inclusively. However, Windows permits more than 8 subauthorities as well
as 0 subauthorities:
- The install.wim file for the latest Windows 10 build contains a file
whose DACL contains a SID with 10 subauthorities.
ntfs_set_ntfs_acl() was failing on this file.
- The IsValidSid() function on Windows returns true for subauthority
less than or equal to 15, including 0.
There was actually already a another SID validation function that had the
Windows-compatible behavior, so I merged the two together.
Contributed by Eric Biggers
2015-07-14 08:37:01 +02:00
0f8ef123ea
Added inheritance of the set-group-id flag
...
So far the set-group-id flag could be set in a chmod. This patch enables
the inheritance of the group to files and subdirectories, and the
inheritance of the set-group-id flag to subdirectories.
2012-06-18 12:53:25 +02:00
f219d2e07e
Fixed inconsistent interface to ntfs_initialize_file_security()
...
The "flags" argument of ntfs_initialize_file_security() is intended to
feed the one to ntfs_mount(). Having the same type for both may avoid
future problems.
2011-03-23 09:20:10 +01:00
3160203c97
Defined option acl to request the use of Posix ACLs
2011-02-08 13:52:12 +01:00
48caa7a45e
Took care of alignments needed on some processors
2010-11-09 09:43:31 +01:00
dd4910b935
Forced alignment on cached structs
2010-10-26 08:59:51 +02:00
07e686a744
Made sure Posix ACLs are not padded by compiler
2010-10-01 10:38:35 +02:00
2e86428fc0
redefined a default user mapping (a few changes in mount options)
2010-05-25 10:05:10 +02:00
9dd9daeb6d
Implemented low-level interface to fuse
2009-12-18 08:43:45 +00:00
41a371f4a7
Redesigned caches for indexing cached entries
2009-12-17 17:36:06 +00:00
c5c51ec1fe
Simplified interfaces for checking permissions
2009-12-14 17:23:12 +00:00
06e553b04d
Fixed permissions of created files when parent directory has a default ACL
2009-07-04 19:14:56 +00:00
3ddbce3ea6
Changed conditions to activate protection modes
2009-07-01 19:35:04 +00:00
d898b64a04
Changed interface for translating permissions to avoid a version dependency
2009-04-10 07:10:04 +00:00
9b996d31b9
Relocated code for setting/retrieving NTFS attribs
2009-01-17 08:37:17 +00:00
ca6466c6bb
Mapped a few NTFS internal data to extended attributes
2009-01-05 13:56:05 +00:00
50702ea690
add --disable-posix-acl configure option
2008-12-06 12:34:37 +00:00
c4c3c8f90f
Fixed inclusion of two functions whatever ACL option selected
2008-12-01 15:07:49 +00:00
cb59654f39
Implemented an extended attribute interface to get/set NTFS ACLs
2008-09-01 16:24:54 +00:00
d3da724466
Redefined the options to activate the levels of permissions checking
2008-08-25 09:11:43 +00:00
62780e137b
Cleaned and fixed endianness conversions
2008-08-21 11:02:35 +00:00
713e6349c8
Redefined the options to activate the levels of checking
2008-08-21 10:42:03 +00:00
7f42da0b07
Reorganized and split the security source file, a few interfaces changed
2008-08-21 10:27:46 +00:00
6a47056d18
Merged the Posix ACL code, now it is a compile-time option
2008-08-21 10:08:20 +00:00
ca9e62559a
Added entries in security API to process user mappings and Win32 attribs
2008-08-16 15:15:28 +00:00
5e30e6f204
Extended cacheing to any variable type
2008-04-17 13:26:52 +00:00
be365af93b
Made implicit user mapping more general and improved checks
2008-03-12 16:15:52 +00:00
3fb950c590
Implemented dynamic groups and a generic user mapping
2008-03-11 15:36:40 +00:00
31d414ca1d
Implemented an option to designate a user mapping file
2008-01-15 17:41:46 +00:00
038156ba82
Reengineered LRU caches, made generic, and applied to finding inode numbers
2008-01-10 17:32:55 +00:00
59a21e6110
Reengineered permissions cache
2007-12-13 09:14:51 +00:00
0f40622012
Developped processing of static supplementary groups
2007-12-07 20:07:17 +00:00
d78230bb7f
Fixed audit functions
2007-11-24 09:25:22 +00:00
7f9fd9f4ea
Reorganized file creation to avoid temporary settings (continued)
2007-10-31 07:29:56 +00:00
b31b4cb124
Returned the securid and size even if short buffer in security API
2007-10-24 06:37:52 +00:00
0c15d089ef
Implemented cache extension for legacy directories
2007-10-20 12:40:22 +00:00
a597c1c608
Implemented special protection modes : sticky, setuid, setgid
2007-10-19 15:18:55 +00:00
6886650afc
Fixed several endianness errors
2007-10-19 07:16:21 +00:00
86084908e2
Reorganized ACL inheritance to allow inheritance in directories with a
...
2007-10-18 14:56:18 +00:00
eb1839d187
Defined a security API
...
2007-10-12 12:49:58 +00:00
a8a33f0bc3
Reverted back relay for free() and consequences on const ptrs
2007-10-09 13:33:11 +00:00
f5b7ac0905
Cleaned code
...
2007-10-09 07:32:12 +00:00
006d0aad79
New structs for two-way cacheing
2007-10-06 14:27:25 +00:00
7006a9452c
Fixed and improved comments
2007-09-28 06:59:53 +00:00
99b4aba970
*** empty log message ***
2007-09-27 13:29:52 +00:00
c9172f66cf
add ntfs_security_hash(): hash of a security descriptor (Anton Altaparmakov)
2007-09-02 12:38:29 +00:00
ba63b7daca
initial CVS import
2006-10-30 22:32:48 +00:00
Jean-Pierre André
jpandre
szaka