RtlCreateSecurityDescriptorRelative function

The RtlCreateSecurityDescriptorRelative routine initializes a new security descriptor in self-relative format. On return, the security descriptor is initialized with no system ACL (SACL), no discretionary ACL (DACL), no owner, no primary group, and all control flags set to zero.

Syntax

NTSYSAPI NTSTATUS RtlCreateSecurityDescriptorRelative(
  PISECURITY_DESCRIPTOR_RELATIVE SecurityDescriptor,
  ULONG                          Revision
);

Parameters

SecurityDescriptor

Pointer to a caller-allocated buffer, which must be at least sizeof(SECURITY_DESCRIPTOR_RELATIVE), to receive the initialized security descriptor.

Revision

Revision level to assign to the security descriptor. This parameter must be SECURITY_DESCRIPTOR_REVISION.

Return Value

RtlCreateSecurityDescriptorRelative can return one of the following:

Return code Description
STATUS_SUCCESS
The call completed successfully.
STATUS_UNKNOWN_REVISION
The given Revision is not known or is not supported.

Remarks

In effect, a successful call to this routine initializes a security descriptor without security constraints.

For more information about security and access control, see the documentation on these topics in the Microsoft Windows SDK.

Requirements

   
Windows version This routine is available on Microsoft Windows 2000 and later.
Target Platform Desktop
Header ntifs.h (include Ntifs.h)
Library NtosKrnl.lib
DLL NtosKrnl.exe
IRQL PASSIVE_LEVEL

See Also

ACL

RtlCreateSecurityDescriptor

RtlLengthSecurityDescriptor

RtlSetDaclSecurityDescriptor

RtlSetOwnerSecurityDescriptor

RtlValidSecurityDescriptor