GitList

Browse code

Merge pull request #40646 from thaJeztah/builder_use_pkg_sys_windows

pkg/system: deprecate SetNamedSecurityInfo, GetSecurityDescriptorDacl

Tibor Vass authored on 2020/05/09 00:21:17
Showing 2 changed files

builder/dockerfile/copy_windows.go index b747518..3f0ea32 100644
pkg/system/syscall_windows.go index b668342..1588aa3 100644

@@ -67,21 +67,17 @@ func fixPermissionsWindows(source, destination, SID string) error {
                      	sddlString := system.SddlAdministratorsLocalSystem
                      	sddlString += "(A;OICI;GRGWGXRCWDSD;;;" + SID + ")"
                     -	securityDescriptor, err := winio.SddlToSecurityDescriptor(sddlString)
                     +	securityDescriptor, err := windows.SecurityDescriptorFromString(sddlString)
                      	if err != nil {
                      		return err
+                     	}
                     -	var daclPresent uint32
                     -	var daclDefaulted uint32
                     -	var dacl *byte
+                    -
                     -	err = system.GetSecurityDescriptorDacl(&securityDescriptor[0], &daclPresent, &dacl, &daclDefaulted)
                     +	dacl, _, err := securityDescriptor.DACL()
                      	if err != nil {
                      		return err
+                     	}
                     -	return system.SetNamedSecurityInfo(windows.StringToUTF16Ptr(destination), windows.SE_FILE_OBJECT, windows.OWNER_SECURITY_INFORMATION|windows.DACL_SECURITY_INFORMATION, sid, nil, dacl, nil)
                     +	return windows.SetNamedSecurityInfo(destination, windows.SE_FILE_OBJECT, windows.OWNER_SECURITY_INFORMATION|windows.DACL_SECURITY_INFORMATION, sid, nil, dacl, nil)
+                     }
                      func validateCopySourcePath(imageSource *imageMount, origPath, platform string) error {

pkg/system/syscall_windows.go

History View file @ 751d5f8

@@ -113,6 +113,7 @@ func HasWin32KSupport() bool {
                      	return ntuserApiset.Load() == nil
+                     }
                     +// Deprecated: use golang.org/x/sys/windows.SetNamedSecurityInfo()
                      func SetNamedSecurityInfo(objectName *uint16, objectType uint32, securityInformation uint32, sidOwner *windows.SID, sidGroup *windows.SID, dacl *byte, sacl *byte) (result error) {
                      	r0, _, _ := syscall.Syscall9(procSetNamedSecurityInfo.Addr(), 7, uintptr(unsafe.Pointer(objectName)), uintptr(objectType), uintptr(securityInformation), uintptr(unsafe.Pointer(sidOwner)), uintptr(unsafe.Pointer(sidGroup)), uintptr(unsafe.Pointer(dacl)), uintptr(unsafe.Pointer(sacl)), 0, 0)
                      	if r0 != 0 {
@@ -121,6 +122,7 @@ func SetNamedSecurityInfo(objectName *uint16, objectType uint32, securityInforma
                      	return
+                     }
                     +// Deprecated: uses golang.org/x/sys/windows.SecurityDescriptorFromString() and golang.org/x/sys/windows.SECURITY_DESCRIPTOR.DACL()
                      func GetSecurityDescriptorDacl(securityDescriptor *byte, daclPresent *uint32, dacl **byte, daclDefaulted *uint32) (result error) {
                      	r1, _, e1 := syscall.Syscall6(procGetSecurityDescriptorDacl.Addr(), 4, uintptr(unsafe.Pointer(securityDescriptor)), uintptr(unsafe.Pointer(daclPresent)), uintptr(unsafe.Pointer(dacl)), uintptr(unsafe.Pointer(daclDefaulted)), 0, 0)
                      	if r1 == 0 {