Module org.cryptomator.frontend.dokany

Package org.cryptomator.frontend.dokany.internal.structure.filesecurity

Class SelfRelativeSecurityDescriptor

java.lang.Object

org.cryptomator.frontend.dokany.internal.structure.filesecurity.SelfRelativeSecurityDescriptor

All Implemented Interfaces:

Byteable

public class SelfRelativeSecurityDescriptor
extends Object
implements Byteable

Class implementing the self-relative SelfRelativeSecurityDescriptor structure described in the Microsoft documentation. The following is a copy of the documentation:

The SECURITY_DESCRIPTOR structure defines the security attributes of an object. These attributes specify who owns the object; who can access the object and what they can do with it; what level of audit logging can be applied to the object; and what kind of restrictions apply to the use of the security descriptor.

Security descriptors appear in one of two forms, absolute or self-relative.

A security descriptor is said to be in absolute format if it stores all of its security information via pointer fields, as specified in the RPC representation in section 2.4.6.1.

A security descriptor is said to be in self-relative format if it stores all of its security information in a contiguous block of memory and expresses all of its pointer fields as offsets from its beginning. The order of appearance of pointer target fields is not required to be in any particular order; the location of the OwnerSid, GroupSid, Sacl, and/or Dacl is only based on OffsetOwner, OffsetGroup, OffsetSacl, and/or OffsetDacl pointers found in the fixed portion of the relative security descriptor.<69>

The self-relative form of the security descriptor is required if one wants to transmit the SECURITY_DESCRIPTOR structure as an opaque data structure for transmission in communication protocols over a wire, or for storage on secondary media; the absolute form cannot be transmitted because it contains pointers to objects that are generally not accessible to the recipient.

When a self-relative security descriptor is transmitted over a wire, it is sent in little-endian format and requires no padding.

Method Summary

Modifier and Type	Method	Description
static SelfRelativeSecurityDescriptor	createEmptySD(EnumIntegerSet<SecurityDescriptorControlFlag> flags)
static SelfRelativeSecurityDescriptor	createSD(EnumIntegerSet<SecurityDescriptorControlFlag> flags, SecurityIdentifier owner, SecurityIdentifier group, AccessControlList sacl, AccessControlList dacl)
int	sizeOfByteArray()
byte[]	toByteArray()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Details

toByteArray

public byte[] toByteArray()

Specified by:

toByteArray in interface Byteable

sizeOfByteArray

public int sizeOfByteArray()

Specified by:

sizeOfByteArray in interface Byteable

createEmptySD

public static SelfRelativeSecurityDescriptor createEmptySD(EnumIntegerSet<SecurityDescriptorControlFlag> flags)

createSD

public static SelfRelativeSecurityDescriptor createSD(EnumIntegerSet<SecurityDescriptorControlFlag> flags,
 SecurityIdentifier owner,
 SecurityIdentifier group,
 AccessControlList sacl,
 AccessControlList dacl)