Windows: XP do not mark rdr devices as secure

author Jeffrey Altman <jaltman@your-file-system.com>

Sat, 15 Mar 2014 16:44:09 +0000 (12:44 -0400)

committer Jeffrey Altman <jaltman@your-file-system.com>

Tue, 18 Mar 2014 00:25:28 +0000 (17:25 -0700)
author Jeffrey Altman <jaltman@your-file-system.com>
Sat, 15 Mar 2014 16:44:09 +0000 (12:44 -0400)
committer Jeffrey Altman <jaltman@your-file-system.com>
Tue, 18 Mar 2014 00:25:28 +0000 (17:25 -0700)
diff --git a/src/WINNT/afsrdr/kernel/fs/AFSInit.cpp b/src/WINNT/afsrdr/kernel/fs/AFSInit.cpp

index a2631f31953ed15d047b9f5bdd8079067bc97e6e..c06d47269cd97156e84caa67eccff005634d94d6 100644 (file)
--- a/src/WINNT/afsrdr/kernel/fs/AFSInit.cpp
+++ b/src/WINNT/afsrdr/kernel/fs/AFSInit.cpp
@@ -260,7 +260,7 @@ DriverEntry( PDRIVER_OBJECT DriverObject,
                                           sizeof( AFSDeviceExt),
                                           &uniDeviceName,
                                           FILE_DEVICE_NETWORK_FILE_SYSTEM,
-                                         FILE_DEVICE_SECURE_OPEN | FILE_REMOTE_DEVICE,
+                                        FILE_DEVICE_SECURE_OPEN | FILE_REMOTE_DEVICE,
                                           FALSE,
                                           &SDDL_DEVOBJ_SYS_ALL_ADM_RWX_WORLD_RWX_RES_RWX,
                                           (LPCGUID)&GUID_SD_AFS_REDIRECTOR_CONTROL_OBJECT,
diff --git a/src/WINNT/afsrdr/kernel/fs/AFSRDRSupport.cpp b/src/WINNT/afsrdr/kernel/fs/AFSRDRSupport.cpp

index af91123025ee4a062a7f8850222402d3c75acf30..79598dab122cbb22bf650398c43f023d749d7445 100644 (file)
--- a/src/WINNT/afsrdr/kernel/fs/AFSRDRSupport.cpp
+++ b/src/WINNT/afsrdr/kernel/fs/AFSRDRSupport.cpp
@@ -48,10 +48,19 @@ AFSInitRDRDevice()
      AFSDeviceExt  *pDeviceExt = NULL;
      UNICODE_STRING uniFsRtlRegisterUncProviderEx;
      FsRtlRegisterUncProviderEx_t pFsRtlRegisterUncProviderEx = NULL;
+    RTL_OSVERSIONINFOW sysVersion;
+    ULONG ulDeviceCharacteristics = FILE_REMOTE_DEVICE;
  
      __Enter
      {
  
+       RtlZeroMemory( &sysVersion,
+                      sizeof( RTL_OSVERSIONINFOW));
+
+       sysVersion.dwOSVersionInfoSize = sizeof( RTL_OSVERSIONINFOW);
+
+       RtlGetVersion( &sysVersion);
+
          RtlInitUnicodeString( &uniDeviceName,
                                AFS_RDR_DEVICE_NAME);
  
@@ -60,11 +69,24 @@ AFSInitRDRDevice()
  
          pFsRtlRegisterUncProviderEx = (FsRtlRegisterUncProviderEx_t)MmGetSystemRoutineAddress(&uniFsRtlRegisterUncProviderEx);
  
+       //
+       // On 32-bit Windows XP, do not set FILE_DEVICE_SECURE_OPEN
+       // flag as it interferes with initial access to \\afs from
+       // limited user accounts.
+       //
+
+       if(!(sysVersion.dwMajorVersion == 5 &&
+            sysVersion.dwMinorVersion == 1))
+       {
+
+           ulDeviceCharacteristics |= FILE_DEVICE_SECURE_OPEN;
+       }
+
          ntStatus = IoCreateDevice( AFSDriverObject,
                                     sizeof( AFSDeviceExt),
                                     pFsRtlRegisterUncProviderEx ? NULL : &uniDeviceName,
                                     FILE_DEVICE_NETWORK_FILE_SYSTEM,
-                                   FILE_DEVICE_SECURE_OPEN | FILE_REMOTE_DEVICE,
+                                  ulDeviceCharacteristics,
                                     FALSE,
                                     &AFSRDRDeviceObject);
author	Jeffrey Altman <jaltman@your-file-system.com>
	Sat, 15 Mar 2014 16:44:09 +0000 (12:44 -0400)
committer	Jeffrey Altman <jaltman@your-file-system.com>
	Tue, 18 Mar 2014 00:25:28 +0000 (17:25 -0700)
src/WINNT/afsrdr/kernel/fs/AFSInit.cpp		patch \| blob \| history
src/WINNT/afsrdr/kernel/fs/AFSRDRSupport.cpp		patch \| blob \| history