server: Use the security descriptor passed in when creating events.

commit: dd9e392796d9a1e7ae1f38c74b2e5a77c6786d65 [log] [tgz]
author: Rob Shearman <rob@codeweavers.com> Wed Oct 24 16:04:42 2007 +0100
committer: Alexandre Julliard <julliard@winehq.org> Thu Oct 25 12:47:22 2007 +0200
tree: 649a25e27ae7bc316abac0d940a25bf7067fdc38
parent: 87b15db6172af0497cfea4f1c9baaaec0b94ed1b [diff] [blame]
diff --git a/server/token.c b/server/token.c
index 38877fe..b6ba50d 100644
--- a/server/token.c
+++ b/server/token.c

@@ -305,6 +305,29 @@
     return TRUE;
 }
 
+/* determines whether an object_attributes struct is valid in a buffer
+ * and calls set_error appropriately */
+int objattr_is_valid( const struct object_attributes *objattr, data_size_t size )
+{
+    if ((size < sizeof(*objattr)) || (size - sizeof(*objattr) < objattr->sd_len))
+    {
+        set_error( STATUS_ACCESS_VIOLATION );
+        return FALSE;
+    }
+
+    if (objattr->sd_len)
+    {
+        const struct security_descriptor *sd = (const struct security_descriptor *)(objattr + 1);
+        if (!sd_is_valid( sd, objattr->sd_len ))
+        {
+            set_error( STATUS_INVALID_SECURITY_DESCR );
+            return FALSE;
+        }
+    }
+
+    return TRUE;
+}
+
 /* maps from generic rights to specific rights as given by a mapping */
 static inline void map_generic_mask(unsigned int *mask, const GENERIC_MAPPING *mapping)
 {
commit	dd9e392796d9a1e7ae1f38c74b2e5a77c6786d65	[log] [tgz]
author	Rob Shearman <rob@codeweavers.com>	Wed Oct 24 16:04:42 2007 +0100
committer	Alexandre Julliard <julliard@winehq.org>	Thu Oct 25 12:47:22 2007 +0200
tree	649a25e27ae7bc316abac0d940a25bf7067fdc38
parent	87b15db6172af0497cfea4f1c9baaaec0b94ed1b [diff] [blame]