Implement NtAccessCheck.

commit: 4ad93416a84bfab3bdc76ebd088df0f97c70db32 [log] [tgz]
author: Robert Shearman <rob@codeweavers.com> Tue May 24 12:32:18 2005 +0000
committer: Alexandre Julliard <julliard@winehq.org> Tue May 24 12:32:18 2005 +0000
tree: c913668dba5e3e5d759596e5ef6458d03bb3dbbb
parent: 3889d950bcd575be327ff359b74d5af44b40c315 [diff] [blame]
diff --git a/server/protocol.def b/server/protocol.def
index 2dd38c6..bbf2213 100644
--- a/server/protocol.def
+++ b/server/protocol.def

@@ -2344,6 +2344,20 @@
     obj_handle_t  new_handle; /* duplicated handle */
 @END
 
+@REQ(access_check)
+    obj_handle_t    handle; /* handle to the token */
+    unsigned int    desired_access; /* desired access to the object */
+    unsigned int    mapping_read; /* mapping from generic read to specific rights */
+    unsigned int    mapping_write; /* mapping from generic write to specific rights */
+    unsigned int    mapping_execute; /* mapping from generic execute to specific rights */
+    unsigned int    mapping_all; /* mapping from generic all to specific rights */
+    VARARG(sd,security_descriptor); /* security descriptor to check */
+@REPLY
+    unsigned int    access_granted; /* access rights actually granted */
+    unsigned int    access_status; /* was access granted? */
+    unsigned int    privileges_len; /* length needed to store privileges */
+    VARARG(privileges,LUID_AND_ATTRIBUTES); /* privileges used during access check */
+@END
 
 /* Create a mailslot */
 @REQ(create_mailslot)
commit	4ad93416a84bfab3bdc76ebd088df0f97c70db32	[log] [tgz]
author	Robert Shearman <rob@codeweavers.com>	Tue May 24 12:32:18 2005 +0000
committer	Alexandre Julliard <julliard@winehq.org>	Tue May 24 12:32:18 2005 +0000
tree	c913668dba5e3e5d759596e5ef6458d03bb3dbbb
parent	3889d950bcd575be327ff359b74d5af44b40c315 [diff] [blame]