Move advapi-Revert_DACL patchset after server-Stored_ACLs.

2025-12-15 08:03:15 -08:00 · 2015-03-30 03:51:23 +02:00
parent 7fb4b8cfc8
commit 5309fe6cb0
8 changed files with 172 additions and 206 deletions
--- a/patches/advapi32-Revert_DACL/0001-Revert-advapi32-Add-DACL-inheritance-support-in-SetS.patch
+++ b/patches/advapi32-Revert_DACL/0001-Revert-advapi32-Add-DACL-inheritance-support-in-SetS.patch
@@ -1,4 +1,4 @@
-From 8ce7a8b0f7ea6a94ae8327b4a3d07a10c12a2c9e Mon Sep 17 00:00:00 2001
+From 4cf7d2d6cdb9836ef549bcb5fcb1764e587ff01f Mon Sep 17 00:00:00 2001
 From: Sebastian Lackner <sebastian@fds-team.de>
 Date: Fri, 27 Mar 2015 15:32:04 +0100
 Subject: Revert "advapi32: Add DACL inheritance support in SetSecurityInfo."
@@ -6,8 +6,8 @@ Subject: Revert "advapi32: Add DACL inheritance support in SetSecurityInfo."
 This reverts commit f974d726720eff4fcd7371bca95e6cdcc4b4a848.
 ---
 dlls/advapi32/security.c       | 130 +----------------------------------------
- dlls/advapi32/tests/security.c |  23 ++++----
- 2 files changed, 14 insertions(+), 139 deletions(-)
+ dlls/advapi32/tests/security.c |  27 +++++----
+ 2 files changed, 16 insertions(+), 141 deletions(-)

 diff --git a/dlls/advapi32/security.c b/dlls/advapi32/security.c
 index 71a8c92..e8cdcc5 100644
@@ -172,10 +172,10 @@ index 71a8c92..e8cdcc5 100644
 }
 
 diff --git a/dlls/advapi32/tests/security.c b/dlls/advapi32/tests/security.c
-index 15c3b1d..6d3f9ac 100644
+index c256753..c0d518f 100644
 --- a/dlls/advapi32/tests/security.c
 +++ b/dlls/advapi32/tests/security.c
-@@ -3417,22 +3417,25 @@ static void test_GetNamedSecurityInfoA(void)
+@@ -3416,22 +3416,25 @@ static void test_GetNamedSecurityInfoA(void)
 
     error = pGetNamedSecurityInfoA(tmpfile, SE_FILE_OBJECT, DACL_SECURITY_INFORMATION,
             NULL, NULL, &pDacl, NULL, &pSD);
@@ -189,8 +189,8 @@ index 15c3b1d..6d3f9ac 100644
     {
 -        bret = pGetAce(pDacl, 0, (VOID **)&ace);
 -        ok(bret, "Failed to get ACE.\n");
-        todo_wine ok(((ACE_HEADER *)ace)->AceFlags & INHERITED_ACE,
-                "ACE has unexpected flags: 0x%x\n", ((ACE_HEADER *)ace)->AceFlags);
+-        ok(((ACE_HEADER *)ace)->AceFlags & INHERITED_ACE,
+-           "ACE has unexpected flags: 0x%x\n", ((ACE_HEADER *)ace)->AceFlags);
 +        bret = pGetAclInformation(pDacl, &acl_size, sizeof(acl_size), AclSizeInformation);
 +        ok(bret, "GetAclInformation failed\n");
 +        if (acl_size.AceCount > 0)
@@ -211,6 +211,24 @@ index 15c3b1d..6d3f9ac 100644
     CloseHandle(h);
 
     /* NtSetSecurityObject doesn't inherit DACL entries */
+@@ -4147,7 +4150,7 @@ static void test_GetSecurityInfo(void)
+         bret = pGetAce(pDacl, 0, (VOID **)&ace);
+         ok(bret, "Failed to get Current User ACE.\n");
+         bret = EqualSid(&ace->SidStart, user_sid);
+-        todo_wine ok(bret, "Current User ACE != Current User SID.\n");
+        ok(bret, "Current User ACE != Current User SID.\n");
+         ok(((ACE_HEADER *)ace)->AceFlags == 0,
+            "Current User ACE has unexpected flags (0x%x != 0x0)\n", ((ACE_HEADER *)ace)->AceFlags);
+         ok(ace->Mask == 0x1f01ff, "Current User ACE has unexpected mask (0x%x != 0x1f01ff)\n",
+@@ -4158,7 +4161,7 @@ static void test_GetSecurityInfo(void)
+         bret = pGetAce(pDacl, 1, (VOID **)&ace);
+         ok(bret, "Failed to get Administators Group ACE.\n");
+         bret = EqualSid(&ace->SidStart, admin_sid);
+-        todo_wine ok(bret, "Administators Group ACE != Administators Group SID.\n");
+        ok(bret, "Administators Group ACE != Administators Group SID.\n");
+         ok(((ACE_HEADER *)ace)->AceFlags == 0,
+            "Administators Group ACE has unexpected flags (0x%x != 0x0)\n", ((ACE_HEADER *)ace)->AceFlags);
+         ok(ace->Mask == 0x1f01ff, "Administators Group ACE has unexpected mask (0x%x != 0x1f01ff)\n",
 -- 
 2.3.3

--- a/patches/advapi32-Revert_DACL/0004-Revert-server-Make-directory-DACL-entries-inheritabl.patch
+++ b/patches/advapi32-Revert_DACL/0004-Revert-server-Make-directory-DACL-entries-inheritabl.patch
@@ -1,49 +1,18 @@
-From e2eaeb0bfc7411c74f1387e59c121f5cee6c013a Mon Sep 17 00:00:00 2001
+From 6b421f438ddf208d025318671e81f123e6ca59a3 Mon Sep 17 00:00:00 2001
 From: Sebastian Lackner <sebastian@fds-team.de>
 Date: Fri, 27 Mar 2015 15:32:44 +0100
 Subject: Revert "server: Make directory DACL entries inheritable."

 This reverts commit 3eb448cf33b6b6635bac4e06ea7fddd190e26450.
 ---
- dlls/advapi32/tests/security.c | 12 ++++++------
- server/file.c                  |  8 ++++----
- 2 files changed, 10 insertions(+), 10 deletions(-)
+ server/file.c | 8 ++++----
+ 1 file changed, 4 insertions(+), 4 deletions(-)

-diff --git a/dlls/advapi32/tests/security.c b/dlls/advapi32/tests/security.c
-index e3c1659..04a88ae 100644
--- a/dlls/advapi32/tests/security.c
-+++ b/dlls/advapi32/tests/security.c
-@@ -3192,9 +3192,9 @@ static void test_CreateDirectoryA(void)
-         ok(bret, "Failed to get Current User ACE.\n");
-         bret = EqualSid(&ace->SidStart, user_sid);
-         todo_wine ok(bret, "Current User ACE != Current User SID.\n");
-        ok(((ACE_HEADER *)ace)->AceFlags == (OBJECT_INHERIT_ACE|CONTAINER_INHERIT_ACE),
-                "Current User ACE has unexpected flags (0x%x != 0x03)\n",
-                ((ACE_HEADER *)ace)->AceFlags);
-+        todo_wine ok(((ACE_HEADER *)ace)->AceFlags == (OBJECT_INHERIT_ACE|CONTAINER_INHERIT_ACE),
-+                     "Current User ACE has unexpected flags (0x%x != 0x03)\n",
-+                     ((ACE_HEADER *)ace)->AceFlags);
-         ok(ace->Mask == 0x1f01ff, "Current User ACE has unexpected mask (0x%x != 0x1f01ff)\n",
-                                   ace->Mask);
-     }
-@@ -3204,9 +3204,9 @@ static void test_CreateDirectoryA(void)
-         ok(bret, "Failed to get Administators Group ACE.\n");
-         bret = EqualSid(&ace->SidStart, admin_sid);
-         todo_wine ok(bret, "Administators Group ACE != Administators Group SID.\n");
-        ok(((ACE_HEADER *)ace)->AceFlags == (OBJECT_INHERIT_ACE|CONTAINER_INHERIT_ACE),
-                "Administators Group ACE has unexpected flags (0x%x != 0x03)\n",
-                ((ACE_HEADER *)ace)->AceFlags);
-+        todo_wine ok(((ACE_HEADER *)ace)->AceFlags == (OBJECT_INHERIT_ACE|CONTAINER_INHERIT_ACE),
-+                     "Administators Group ACE has unexpected flags (0x%x != 0x03)\n",
-+                     ((ACE_HEADER *)ace)->AceFlags);
-         ok(ace->Mask == 0x1f01ff, "Administators Group ACE has unexpected mask (0x%x != 0x1f01ff)\n",
-                                   ace->Mask);
-     }
 diff --git a/server/file.c b/server/file.c
-index f565f5a..abda2c3 100644
+index a50276e..09b7811 100644
 --- a/server/file.c
 +++ b/server/file.c
-@@ -367,7 +367,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
+@@ -442,7 +442,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
     aaa = (ACCESS_ALLOWED_ACE *)(dacl + 1);
     current_ace = &aaa->Header;
     aaa->Header.AceType = ACCESS_ALLOWED_ACE_TYPE;
@@ -52,7 +21,7 @@ index f565f5a..abda2c3 100644
     aaa->Header.AceSize = FIELD_OFFSET(ACCESS_ALLOWED_ACE, SidStart) + security_sid_len( local_system_sid );
     aaa->Mask = FILE_ALL_ACCESS;
     sid = (SID *)&aaa->SidStart;
-@@ -379,7 +379,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
+@@ -454,7 +454,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
         aaa = (ACCESS_ALLOWED_ACE *)ace_next( current_ace );
         current_ace = &aaa->Header;
         aaa->Header.AceType = ACCESS_ALLOWED_ACE_TYPE;
@@ -61,7 +30,7 @@ index f565f5a..abda2c3 100644
         aaa->Header.AceSize = FIELD_OFFSET(ACCESS_ALLOWED_ACE, SidStart) + security_sid_len( user );
         aaa->Mask = WRITE_DAC | WRITE_OWNER;
         if (mode & S_IRUSR)
-@@ -397,7 +397,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
+@@ -472,7 +472,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
         ACCESS_DENIED_ACE *ada = (ACCESS_DENIED_ACE *)ace_next( current_ace );
         current_ace = &ada->Header;
         ada->Header.AceType = ACCESS_DENIED_ACE_TYPE;
@@ -70,7 +39,7 @@ index f565f5a..abda2c3 100644
         ada->Header.AceSize = FIELD_OFFSET(ACCESS_DENIED_ACE, SidStart) + security_sid_len( user );
         ada->Mask = 0;
         if (!(mode & S_IRUSR) && (mode & (S_IRGRP|S_IROTH)))
-@@ -414,7 +414,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
+@@ -489,7 +489,7 @@ struct security_descriptor *mode_to_sd( mode_t mode, const SID *user, const SID
         aaa = (ACCESS_ALLOWED_ACE *)ace_next( current_ace );
         current_ace = &aaa->Header;
         aaa->Header.AceType = ACCESS_ALLOWED_ACE_TYPE;
--- a/patches/advapi32-Revert_DACL/0005-Revert-advapi-Don-t-use-CreateFile-when-opening-file.patch
+++ b/patches/advapi32-Revert_DACL/0005-Revert-advapi-Don-t-use-CreateFile-when-opening-file.patch
@@ -1,4 +1,4 @@
-From 59067deb0ad4afb77deca29300133bff9d49f9f7 Mon Sep 17 00:00:00 2001
+From 394aefa9d53684678f645bac131735630d910e8b Mon Sep 17 00:00:00 2001
 From: Sebastian Lackner <sebastian@fds-team.de>
 Date: Fri, 27 Mar 2015 15:32:56 +0100
 Subject: Revert "advapi: Don't use CreateFile when opening file with possibly