#include <stdarg.h>#include <windef.h>#include <winbase.h>#include <winreg.h>#include <ndk/cmfuncs.h>#include <ndk/exfuncs.h>#include <ndk/kefuncs.h>#include <ndk/mmfuncs.h>#include <ndk/obfuncs.h>#include <ndk/psfuncs.h>#include <ndk/rtlfuncs.h>#include <ndk/sefuncs.h>#include <ndk/ketypes.h>#include <ndk/setypes.h>#include <ntsam.h>#include <ntlsa.h>#include <sddl.h>#include <srmp.h>#include <lsass.h>#include <lsa_s.h>#include <wine/debug.h>
Include dependency graph for lsasrv.h:
This graph shows which files directly or indirectly include this file:
Go to the source code of this file.
Classes | |
| struct | _LSA_DB_OBJECT |
| struct | _LSAP_POLICY_AUDIT_EVENTS_DATA |
| struct | _LSAP_LOGON_CONTEXT |
| struct | _SAMPR_ULONG_ARRAY |
Typedefs | |
| typedef enum _LSA_DB_OBJECT_TYPE | LSA_DB_OBJECT_TYPE |
| typedef enum _LSA_DB_OBJECT_TYPE * | PLSA_DB_OBJECT_TYPE |
| typedef struct _LSA_DB_OBJECT | LSA_DB_OBJECT |
| typedef struct _LSA_DB_OBJECT * | PLSA_DB_OBJECT |
| typedef struct _LSAP_POLICY_AUDIT_EVENTS_DATA | LSAP_POLICY_AUDIT_EVENTS_DATA |
| typedef struct _LSAP_POLICY_AUDIT_EVENTS_DATA * | PLSAP_POLICY_AUDIT_EVENTS_DATA |
| typedef struct _LSAP_LOGON_CONTEXT | LSAP_LOGON_CONTEXT |
| typedef struct _LSAP_LOGON_CONTEXT * | PLSAP_LOGON_CONTEXT |
| typedef struct _SAMPR_ULONG_ARRAY | SAMPR_ULONG_ARRAY |
| typedef struct _SAMPR_ULONG_ARRAY * | PSAMPR_ULONG_ARRAY |
Enumerations | |
| enum | _LSA_DB_OBJECT_TYPE { LsaDbIgnoreObject , LsaDbPolicyObject , LsaDbAccountObject , LsaDbDomainObject , LsaDbSecretObject } |
Macro Definition Documentation
◆ _INC_WINDOWS
◆ COM_NO_WINDOWS_H
◆ LSAP_DB_SIGNATURE
◆ NTOS_MODE_USER
◆ POLICY_AUDIT_EVENT_TYPE_COUNT
| #define POLICY_AUDIT_EVENT_TYPE_COUNT (AuditCategoryAccountLogon - AuditCategorySystem + 1) |
◆ WIN32_NO_STATUS
Typedef Documentation
◆ LSA_DB_OBJECT
| typedef struct _LSA_DB_OBJECT LSA_DB_OBJECT |
◆ LSA_DB_OBJECT_TYPE
◆ LSAP_LOGON_CONTEXT
◆ LSAP_POLICY_AUDIT_EVENTS_DATA
◆ PLSA_DB_OBJECT
| typedef struct _LSA_DB_OBJECT * PLSA_DB_OBJECT |
◆ PLSA_DB_OBJECT_TYPE
| typedef enum _LSA_DB_OBJECT_TYPE * PLSA_DB_OBJECT_TYPE |
◆ PLSAP_LOGON_CONTEXT
| typedef struct _LSAP_LOGON_CONTEXT * PLSAP_LOGON_CONTEXT |
◆ PLSAP_POLICY_AUDIT_EVENTS_DATA
◆ PSAMPR_ULONG_ARRAY
| typedef struct _SAMPR_ULONG_ARRAY * PSAMPR_ULONG_ARRAY |
◆ SAMPR_ULONG_ARRAY
Enumeration Type Documentation
◆ _LSA_DB_OBJECT_TYPE
Function Documentation
◆ DsSetupInit()
Definition at line 22 of file dssetup.c.
23{
25
27 NULL,
28 NULL);
30 {
32 return;
33 }
34}
RPC_STATUS WINAPI RpcServerRegisterIf(RPC_IF_HANDLE IfSpec, UUID *MgrTypeUuid, RPC_MGR_EPV *MgrEpv)
Definition: rpc_server.c:1116
Referenced by LsarStartRpcServer().
◆ LsapAddCredential()
| NTSTATUS NTAPI LsapAddCredential | ( | _In_ PLUID | LogonId, |
| _In_ ULONG | AuthenticationPackage, | ||
| _In_ PLSA_STRING | PrimaryKeyValue, | ||
| _In_ PLSA_STRING | Credential | ||
| ) |
◆ LsapAppendRidToSid()
Definition at line 152 of file utils.c.
155{
156 ULONG Rids[8] = {0, 0, 0, 0, 0, 0, 0, 0};
157 UCHAR RidCount;
158 PSID DstSid;
160
161 RidCount = *RtlSubAuthorityCountSid(SrcSid);
162 if (RidCount >= 8)
164
167
168 Rids[RidCount] = Rid;
169 RidCount++;
170
172 RidCount,
173 Rids[0],
174 Rids[1],
175 Rids[2],
176 Rids[3],
177 Rids[4],
178 Rids[5],
179 Rids[6],
180 Rids[7],
181 &DstSid);
182
183 return DstSid;
184}
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
NTSYSAPI PULONG NTAPI RtlSubAuthoritySid(_In_ PSID Sid, _In_ ULONG SubAuthority)
NTSYSAPI PSID_IDENTIFIER_AUTHORITY NTAPI RtlIdentifierAuthoritySid(PSID Sid)
NTSYSAPI NTSTATUS NTAPI RtlAllocateAndInitializeSid(IN PSID_IDENTIFIER_AUTHORITY IdentifierAuthority, IN UCHAR SubAuthorityCount, IN ULONG SubAuthority0, IN ULONG SubAuthority1, IN ULONG SubAuthority2, IN ULONG SubAuthority3, IN ULONG SubAuthority4, IN ULONG SubAuthority5, IN ULONG SubAuthority6, IN ULONG SubAuthority7, OUT PSID *Sid)
Definition: sid.c:290
NTSYSAPI PUCHAR NTAPI RtlSubAuthorityCountSid(IN PSID Sid)
Definition: sid.c:104
Definition: ms-dtyp.idl:198
Referenced by LsapAppendSidToGroups().
◆ LsapCallAuthenticationPackage()
| NTSTATUS LsapCallAuthenticationPackage | ( | PLSA_API_MSG | RequestMsg, |
| PLSAP_LOGON_CONTEXT | LogonContext | ||
| ) |
Definition at line 564 of file authpackage.c.
566{
567 PAUTH_PACKAGE Package;
571
573
575
576 /* Get the right authentication package */
579 {
582 }
583
585 {
586 LocalBuffer = RtlAllocateHeap(RtlGetProcessHeap(),
587 HEAP_ZERO_MEMORY,
590 {
592 }
593
596 LocalBuffer,
598 NULL);
600 {
602 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalBuffer);
604 }
605 }
606
609 LocalBuffer,
615 else
617 LocalBuffer,
624 {
626 }
627
629 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalBuffer);
630
632}
static PAUTH_PACKAGE LsapGetAuthenticationPackage(IN ULONG PackageId)
Definition: authpackage.c:341
PVOID NTAPI RtlAllocateHeap(IN PVOID HeapHandle, IN ULONG Flags, IN SIZE_T Size)
Definition: heap.c:590
BOOLEAN NTAPI RtlFreeHeap(IN PVOID HeapHandle, IN ULONG Flags, IN PVOID HeapBase)
Definition: heap.c:608
Definition: nsiface.idl:2307
NTSTATUS NTAPI NtReadVirtualMemory(IN HANDLE ProcessHandle, IN PVOID BaseAddress, OUT PVOID Buffer, IN SIZE_T NumberOfBytesToRead, OUT PSIZE_T NumberOfBytesRead OPTIONAL)
Definition: virtual.c:2816
Definition: authpackage.c:92
PLSA_AP_CALL_PACKAGE_UNTRUSTED LsaApCallPackageUntrusted
Definition: authpackage.c:101
PLSA_AP_CALL_PACKAGE_INTERNAL LsaApCallPackage
Definition: authpackage.c:99
LSA_CALL_AUTHENTICATION_PACKAGE_MSG CallAuthenticationPackage
Definition: lsass.h:188
struct _LSA_CALL_AUTHENTICATION_PACKAGE_MSG::@3495::@3497 Request
struct _LSA_CALL_AUTHENTICATION_PACKAGE_MSG::@3495::@3498 Reply
Referenced by AuthPortThreadRoutine().
◆ LsapCloseDbObject()
| NTSTATUS LsapCloseDbObject | ( | IN PLSA_DB_OBJECT | DbObject | ) |
◆ LsapCreateAccountSd()
| NTSTATUS LsapCreateAccountSd | ( | PSECURITY_DESCRIPTOR * | AccountSd, |
| PULONG | AccountSdSize | ||
| ) |
Definition at line 268 of file security.c.
270{
271 SECURITY_DESCRIPTOR AbsoluteSd;
273 ULONG RelativeSdSize = 0;
280
283
284 *AccountSd = NULL;
285 *AccountSdSize = 0;
286
287 /* Initialize the SD */
292
294 2,
297 0,
298 0,
299 0,
300 0,
301 0,
302 0,
303 &AdministratorsSid);
305 goto done;
306
308 1,
309 SECURITY_WORLD_RID,
310 0,
311 0,
312 0,
313 0,
314 0,
315 0,
316 0,
317 &EveryoneSid);
319 goto done;
320
322 1,
324 0,
325 0,
326 0,
327 0,
328 0,
329 0,
330 0,
331 &LocalSystemSid);
333 goto done;
334
335 /* Allocate and initialize the DACL */
339
341 HEAP_ZERO_MEMORY,
342 DaclSize);
344 {
346 goto done;
347 }
348
350 DaclSize,
351 ACL_REVISION);
353 goto done;
354
356 ACL_REVISION,
357 ACCOUNT_ALL_ACCESS,
358 AdministratorsSid);
360 goto done;
361
363 ACL_REVISION,
364 ACCOUNT_EXECUTE,
365 EveryoneSid);
367 goto done;
368
370 TRUE,
371 Dacl,
372 FALSE);
374 goto done;
375
377 LocalSystemSid,
378 FALSE);
380 goto done;
381
383 AdministratorsSid,
384 FALSE);
386 goto done;
387
389 RelativeSd,
390 &RelativeSdSize);
392 goto done;
393
394 RelativeSd = RtlAllocateHeap(RtlGetProcessHeap(),
395 HEAP_ZERO_MEMORY,
396 RelativeSdSize);
398 {
400 goto done;
401 }
402
404 RelativeSd,
405 &RelativeSdSize);
407 goto done;
408
409 *AccountSd = RelativeSd;
410 *AccountSdSize = RelativeSdSize;
411
412done:
415
417 RtlFreeHeap(RtlGetProcessHeap(), 0, AdministratorsSid);
418
420 RtlFreeHeap(RtlGetProcessHeap(), 0, EveryoneSid);
421
424
426 {
428 RtlFreeHeap(RtlGetProcessHeap(), 0, RelativeSd);
429 }
430
432}
NTSYSAPI NTSTATUS WINAPI RtlAddAccessAllowedAce(PACL, DWORD, DWORD, PSID)
NTSYSAPI NTSTATUS WINAPI RtlSetOwnerSecurityDescriptor(PSECURITY_DESCRIPTOR, PSID, BOOLEAN)
NTSYSAPI NTSTATUS WINAPI RtlSetDaclSecurityDescriptor(PSECURITY_DESCRIPTOR, BOOLEAN, PACL, BOOLEAN)
struct _ACL ACL
struct _ACCESS_ALLOWED_ACE ACCESS_ALLOWED_ACE
_Out_writes_bytes_to_opt_ AbsoluteSecurityDescriptorSize PSECURITY_DESCRIPTOR _Inout_ PULONG _Out_writes_bytes_to_opt_ DaclSize PACL Dacl
Definition: rtlfuncs.h:1593
NTSYSAPI NTSTATUS NTAPI RtlCreateAcl(PACL Acl, ULONG AclSize, ULONG AclRevision)
NTSYSAPI NTSTATUS NTAPI RtlCreateSecurityDescriptor(_Out_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ ULONG Revision)
_Out_writes_bytes_to_opt_ AbsoluteSecurityDescriptorSize PSECURITY_DESCRIPTOR _Inout_ PULONG _Out_writes_bytes_to_opt_ DaclSize PACL _Inout_ PULONG DaclSize
Definition: rtlfuncs.h:1594
NTSYSAPI NTSTATUS NTAPI RtlSetGroupSecurityDescriptor(IN OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN PSID Group, IN BOOLEAN GroupDefaulted)
Definition: sd.c:410
NTSYSAPI NTSTATUS NTAPI RtlAbsoluteToSelfRelativeSD(IN PSECURITY_DESCRIPTOR AbsoluteSecurityDescriptor, IN OUT PSECURITY_DESCRIPTOR SelfRelativeSecurityDescriptor, IN PULONG BufferLength)
Definition: sd.c:626
Definition: ms-dtyp.idl:215
Definition: ms-dtyp.idl:293
Definition: ms-dtyp.idl:301
Referenced by LsarpCreateAccount().
◆ LsapCreateDbObject()
| NTSTATUS LsapCreateDbObject | ( | IN PLSA_DB_OBJECT | ParentObject, |
| IN LPWSTR | ContainerName, | ||
| IN LPWSTR | ObjectName, | ||
| IN LSA_DB_OBJECT_TYPE | HandleType, | ||
| IN ACCESS_MASK | DesiredAccess, | ||
| IN BOOLEAN | Trusted, | ||
| OUT PLSA_DB_OBJECT * | DbObject | ||
| ) |
Definition at line 592 of file database.c.
599{
603 HANDLE ParentKeyHandle;
607
610
612 ParentKeyHandle = SecurityKeyHandle;
613 else
614 ParentKeyHandle = ParentObject->KeyHandle;
615
617 {
618 /* Open the container key */
620 ContainerName);
621
623 &KeyName,
624 OBJ_CASE_INSENSITIVE,
625 ParentKeyHandle,
626 NULL);
627
629 KEY_ALL_ACCESS,
630 &ObjectAttributes);
632 {
634 }
635
636 /* Open the object key */
638 ObjectName);
639
641 &KeyName,
642 OBJ_CASE_INSENSITIVE,
643 ContainerKeyHandle,
644 NULL);
645
647 KEY_ALL_ACCESS,
648 &ObjectAttributes,
649 0,
650 NULL,
651 0,
652 NULL);
653
654 NtClose(ContainerKeyHandle);
655
657 {
659 }
660 }
661 else
662 {
664 ObjectName);
665
667 &KeyName,
668 OBJ_CASE_INSENSITIVE,
669 ParentKeyHandle,
670 NULL);
671
673 KEY_ALL_ACCESS,
674 &ObjectAttributes,
675 0,
676 NULL,
677 0,
678 NULL);
680 {
682 }
683 }
684
686 0,
689 {
690 NtClose(ObjectKeyHandle);
692 }
693
695 NewObject->RefCount = 1;
698 NewObject->KeyHandle = ObjectKeyHandle;
699 NewObject->ParentObject = ParentObject;
700 NewObject->Trusted = Trusted;
701
703 ParentObject->RefCount++;
704
705 *DbObject = NewObject;
706
708}
NTSYSAPI NTSTATUS NTAPI NtOpenKey(OUT PHANDLE KeyHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes)
Definition: ntapi.c:336
NTSYSAPI VOID NTAPI RtlInitUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)
NTSTATUS NTAPI NtCreateKey(OUT PHANDLE KeyHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, IN ULONG TitleIndex, IN PUNICODE_STRING Class OPTIONAL, IN ULONG CreateOptions, OUT PULONG Disposition OPTIONAL)
Definition: ntapi.c:240
Definition: lsasrv.h:57
Definition: umtypes.h:182
Definition: env_spec_w32.h:368
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2658
_Must_inspect_result_ _In_ WDFDEVICE _In_ PCUNICODE_STRING KeyName
Definition: wdfdevice.h:2699
_In_ PVOID _Out_opt_ PULONG_PTR _Outptr_opt_ PCUNICODE_STRING * ObjectName
Definition: cmfuncs.h:64
_Inout_opt_ PACCESS_STATE _In_opt_ ACCESS_MASK _In_ ULONG _Out_opt_ PVOID * NewObject
Definition: obfuncs.h:74
Referenced by LsarCreateSecret(), LsarpCreateAccount(), and LsarStorePrivateData().
◆ LsapCreateLogonSession()
Definition at line 159 of file session.c.
160{
161 PLSAP_LOGON_SESSION Session;
163
165
166 /* Fail, if a session already exists */
169
170 /* Allocate a new session entry */
171 Session = RtlAllocateHeap(RtlGetProcessHeap(),
172 HEAP_ZERO_MEMORY,
176
177 /* Initialize the session entry */
179
182
183 /* Tell ntoskrnl to create a new logon session */
186 {
187 RtlFreeHeap(RtlGetProcessHeap(), 0, Session);
189 }
190
191 /* Insert the new session into the session list */
193 SessionCount++;
194
196}
static PLSAP_LOGON_SESSION LsapGetLogonSession(IN PLUID LogonId)
Definition: session.c:45
NTSYSAPI void WINAPI RtlCopyLuid(PLUID, const LUID *)
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG _Inout_ PLUID LogonId
Definition: ntifs.template.h:716
Definition: session.c:12
Referenced by LsapInitAuthPackages().
◆ LsapCreatePolicySd()
| NTSTATUS LsapCreatePolicySd | ( | PSECURITY_DESCRIPTOR * | PolicySd, |
| PULONG | PolicySdSize | ||
| ) |
Definition at line 14 of file security.c.
16{
17 SECURITY_DESCRIPTOR AbsoluteSd;
19 ULONG RelativeSdSize = 0;
29
32
33 *PolicySd = NULL;
34 *PolicySdSize = 0;
35
36 /* Initialize the SD */
41
43 1,
45 0,
46 0,
47 0,
48 0,
49 0,
50 0,
51 0,
52 &AnonymousSid);
54 goto done;
55
57 2,
60 0,
61 0,
62 0,
63 0,
64 0,
65 0,
66 &AdministratorsSid);
68 goto done;
69
71 1,
73 0,
74 0,
75 0,
76 0,
77 0,
78 0,
79 0,
80 &EveryoneSid);
82 goto done;
83
85 1,
87 0,
88 0,
89 0,
90 0,
91 0,
92 0,
93 0,
94 &LocalServiceSid);
96 goto done;
97
99 1,
101 0,
102 0,
103 0,
104 0,
105 0,
106 0,
107 0,
108 &NetworkServiceSid);
110 goto done;
111
113 1,
115 0,
116 0,
117 0,
118 0,
119 0,
120 0,
121 0,
122 &LocalSystemSid);
124 goto done;
125
126 /* Allocate and initialize the DACL */
134
136 HEAP_ZERO_MEMORY,
137 DaclSize);
139 {
141 goto done;
142 }
143
145 DaclSize,
146 ACL_REVISION);
148 goto done;
149
151 ACL_REVISION,
152 POLICY_LOOKUP_NAMES,
153 AnonymousSid);
155 goto done;
156
158 ACL_REVISION,
160 AdministratorsSid);
162 goto done;
163
165 ACL_REVISION,
166 POLICY_EXECUTE,
167 EveryoneSid);
169 goto done;
170
172 ACL_REVISION,
174 AnonymousSid);
176 goto done;
177
179 ACL_REVISION,
180 POLICY_NOTIFICATION,
181 LocalServiceSid);
183 goto done;
184
186 ACL_REVISION,
187 POLICY_NOTIFICATION,
188 NetworkServiceSid);
190 goto done;
191
193 TRUE,
194 Dacl,
195 FALSE);
197 goto done;
198
200 LocalSystemSid,
201 FALSE);
203 goto done;
204
206 AdministratorsSid,
207 FALSE);
209 goto done;
210
212 RelativeSd,
213 &RelativeSdSize);
215 goto done;
216
217 RelativeSd = RtlAllocateHeap(RtlGetProcessHeap(),
218 HEAP_ZERO_MEMORY,
219 RelativeSdSize);
221 {
223 goto done;
224 }
225
227 RelativeSd,
228 &RelativeSdSize);
230 goto done;
231
232 *PolicySd = RelativeSd;
233 *PolicySdSize = RelativeSdSize;
234
235done:
238
240 RtlFreeHeap(RtlGetProcessHeap(), 0, AnonymousSid);
241
243 RtlFreeHeap(RtlGetProcessHeap(), 0, AdministratorsSid);
244
246 RtlFreeHeap(RtlGetProcessHeap(), 0, EveryoneSid);
247
250
253
256
258 {
260 RtlFreeHeap(RtlGetProcessHeap(), 0, RelativeSd);
261 }
262
264}
NTSYSAPI NTSTATUS NTAPI RtlAddAccessDeniedAce(_Inout_ PACL Acl, _In_ ULONG Revision, _In_ ACCESS_MASK AccessMask, _In_ PSID Sid)
Definition: ms-dtyp.idl:230
Referenced by LsapCreateDatabaseObjects().
◆ LsapCreateSecretSd()
| NTSTATUS LsapCreateSecretSd | ( | PSECURITY_DESCRIPTOR * | SecretSd, |
| PULONG | SecretSdSize | ||
| ) |
Definition at line 436 of file security.c.
438{
439 SECURITY_DESCRIPTOR AbsoluteSd;
441 ULONG RelativeSdSize = 0;
448
451
452 *SecretSd = NULL;
453 *SecretSdSize = 0;
454
455 /* Initialize the SD */
460
462 2,
465 0,
466 0,
467 0,
468 0,
469 0,
470 0,
471 &AdministratorsSid);
473 goto done;
474
476 1,
477 SECURITY_WORLD_RID,
478 0,
479 0,
480 0,
481 0,
482 0,
483 0,
484 0,
485 &EveryoneSid);
487 goto done;
488
490 1,
492 0,
493 0,
494 0,
495 0,
496 0,
497 0,
498 0,
499 &LocalSystemSid);
501 goto done;
502
503 /* Allocate and initialize the DACL */
507
509 HEAP_ZERO_MEMORY,
510 DaclSize);
512 {
514 goto done;
515 }
516
518 DaclSize,
519 ACL_REVISION);
521 goto done;
522
524 ACL_REVISION,
525 SECRET_ALL_ACCESS,
526 AdministratorsSid);
528 goto done;
529
531 ACL_REVISION,
532 SECRET_EXECUTE,
533 EveryoneSid);
535 goto done;
536
538 TRUE,
539 Dacl,
540 FALSE);
542 goto done;
543
545 LocalSystemSid,
546 FALSE);
548 goto done;
549
551 AdministratorsSid,
552 FALSE);
554 goto done;
555
557 RelativeSd,
558 &RelativeSdSize);
560 goto done;
561
562 RelativeSd = RtlAllocateHeap(RtlGetProcessHeap(),
563 HEAP_ZERO_MEMORY,
564 RelativeSdSize);
566 {
568 goto done;
569 }
570
572 RelativeSd,
573 &RelativeSdSize);
575 goto done;
576
577 *SecretSd = RelativeSd;
578 *SecretSdSize = RelativeSdSize;
579
580done:
583
585 RtlFreeHeap(RtlGetProcessHeap(), 0, AdministratorsSid);
586
588 RtlFreeHeap(RtlGetProcessHeap(), 0, EveryoneSid);
589
592
594 {
596 RtlFreeHeap(RtlGetProcessHeap(), 0, RelativeSd);
597 }
598
600}
Referenced by LsarCreateSecret().
◆ LsapCreateTokenSd()
| NTSTATUS LsapCreateTokenSd | ( | _In_ const TOKEN_USER * | User, |
| _Outptr_ PSECURITY_DESCRIPTOR * | TokenSd, | ||
| _Out_ PULONG | TokenSdSize | ||
| ) |
Creates a security descriptor for the token object.
- Parameters
-
[in] User A primary user to be given to the function. This user represents the owner that is in charge of this object. [out] TokenSd A pointer to an allocated security descriptor for the token object. [out] TokenSdSize A pointer to a returned size of the descriptor.
- Returns
- STATUS_SUCCESS is returned if the function has successfully created the security descriptor. STATUS_INVALID_PARAMETER is returned if one of the parameters are not valid. STATUS_INSUFFICIENT_RESOURCES is returned if memory heap allocation for specific security buffers couldn't be done. A NTSTATUS status code is returned otherwise.
- Remarks
- Bot the local system and user are given full access rights for the token (they can open it, read and write into it, etc.) whereas admins can only read from the token. This security descriptor is TO NOT BE confused with the default DACL of the token which is another thing that serves different purpose.
Definition at line 637 of file security.c.
641{
642 SECURITY_DESCRIPTOR AbsoluteSd;
644 ULONG RelativeSdSize = 0;
650
653
654 *TokenSd = NULL;
655 *TokenSdSize = 0;
656
657 /* Initialize the SD */
662
664 1,
666 0, 0, 0, 0, 0, 0, 0,
667 &LocalSystemSid);
669 goto done;
670
672 2,
675 0, 0, 0, 0, 0, 0,
676 &AdministratorsSid);
678 goto done;
679
680 /* Allocate and initialize the DACL */
685
687 HEAP_ZERO_MEMORY,
688 DaclSize);
690 {
692 goto done;
693 }
694
696 DaclSize,
697 ACL_REVISION);
699 goto done;
700
702 ACL_REVISION,
703 TOKEN_ALL_ACCESS,
704 LocalSystemSid);
706 goto done;
707
709 ACL_REVISION,
710 TOKEN_READ,
711 AdministratorsSid);
713 goto done;
714
716 ACL_REVISION,
717 TOKEN_ALL_ACCESS,
718 User->User.Sid);
720 goto done;
721
723 TRUE,
724 Dacl,
725 FALSE);
727 goto done;
728
730 AdministratorsSid,
731 FALSE);
733 goto done;
734
736 RelativeSd,
737 &RelativeSdSize);
739 goto done;
740
741 RelativeSd = RtlAllocateHeap(RtlGetProcessHeap(),
742 HEAP_ZERO_MEMORY,
743 RelativeSdSize);
745 {
747 goto done;
748 }
749
751 RelativeSd,
752 &RelativeSdSize);
754 goto done;
755
756 *TokenSd = RelativeSd;
757 *TokenSdSize = RelativeSdSize;
758
759done:
762
764 RtlFreeHeap(RtlGetProcessHeap(), 0, AdministratorsSid);
765
768
770 {
772 RtlFreeHeap(RtlGetProcessHeap(), 0, RelativeSd);
773 }
774
776}
Referenced by LsapLogonUser().
◆ LsapDeleteCredential()
| NTSTATUS NTAPI LsapDeleteCredential | ( | _In_ PLUID | LogonId, |
| _In_ ULONG | AuthenticationPackage, | ||
| _In_ PLSA_STRING | PrimaryKeyValue | ||
| ) |
Definition at line 288 of file session.c.
Referenced by LsapInitAuthPackages().
◆ LsapDeleteDbObject()
| NTSTATUS LsapDeleteDbObject | ( | IN PLSA_DB_OBJECT | DbObject | ) |
Definition at line 901 of file database.c.
902{
907
908 DbObject->RefCount--;
909
910 if (DbObject->RefCount > 0)
912
914 {
915 Index = 0;
916
918 {
920 Index,
922 KeyName);
924 break;
925
928
930 KeyName);
932 break;
933 }
934
937
938 LsapRegDeleteKey(DbObject->KeyHandle);
939
940 NtClose(DbObject->KeyHandle);
941 }
942
944 ParentObject = DbObject->ParentObject;
945
946 RtlFreeHeap(RtlGetProcessHeap(), 0, DbObject);
947
949 {
950 ParentObject->RefCount--;
951
954 }
955
957}
NTSTATUS LsapRegDeleteSubKey(IN HANDLE ParentKeyHandle, IN LPCWSTR KeyName)
Definition: registry.c:59
NTSTATUS LsapRegEnumerateSubKey(IN HANDLE KeyHandle, IN ULONG Index, IN ULONG Length, OUT LPWSTR Buffer)
Definition: registry.c:96
Referenced by LsarDeleteObject(), and LsarStorePrivateData().
◆ LsapDeleteLogonSession()
Definition at line 201 of file session.c.
202{
203 PLSAP_LOGON_SESSION Session;
205
207
208 /* Fail, if the session does not exist */
212
215
216 /* Tell ntoskrnl to delete the logon session */
220
221 /* Notify the authentication packages */
223
224 /* Remove the session entry from the list */
226 SessionCount--;
227
228 /* Free the session data */
231
234
237
240
243
246
249
250 /* Free the session entry */
251 RtlFreeHeap(RtlGetProcessHeap(), 0, Session);
252
254}
UNICODE_STRING AuthenticationPackage
Definition: session.c:21
Referenced by LsapInitAuthPackages(), and LsapLogonUser().
◆ LsapDeleteObjectAttribute()
| NTSTATUS LsapDeleteObjectAttribute | ( | PLSA_DB_OBJECT | DbObject, |
| LPWSTR | AttributeName | ||
| ) |
Definition at line 1082 of file database.c.
1084{
1086 AttributeName);
1087}
Referenced by LsarRemovePrivilegesFromAccount().
◆ LsapEnumLogonSessions()
| NTSTATUS LsapEnumLogonSessions | ( | IN OUT PLSA_API_MSG | RequestMsg | ) |
Definition at line 299 of file session.c.
300{
303 PLIST_ENTRY SessionEntry;
304 PLSAP_LOGON_SESSION CurrentSession;
305 PLUID SessionList;
307 SIZE_T MemSize;
310
312
314 SessionList = RtlAllocateHeap(RtlGetProcessHeap(),
315 HEAP_ZERO_MEMORY,
316 Length);
319
320 i = 0;
323 {
324 CurrentSession = CONTAINING_RECORD(SessionEntry,
325 LSAP_LOGON_SESSION,
326 Entry);
327
329 &CurrentSession->LogonId);
330
331 SessionEntry = SessionEntry->Flink;
332 i++;
333 }
334
336 NULL,
337 0,
338 NULL,
339 NULL);
340
343 &ObjectAttributes,
344 &RequestMsg->h.ClientId);
346 {
348 goto done;
349 }
350
352
353 MemSize = Length;
355 &ClientBaseAddress,
356 0,
357 &MemSize,
358 MEM_COMMIT,
359 PAGE_READWRITE);
361 {
363 goto done;
364 }
365
368
370 ClientBaseAddress,
371 SessionList,
372 Length,
373 NULL);
375 {
377 goto done;
378 }
379
380 RequestMsg->EnumLogonSessions.Reply.LogonSessionCount = SessionCount;
381 RequestMsg->EnumLogonSessions.Reply.LogonSessionBuffer = ClientBaseAddress;
382
383done:
386
388 RtlFreeHeap(RtlGetProcessHeap(), 0, SessionList);
389
391}
struct _LUID LUID
NTSTATUS NTAPI NtWriteVirtualMemory(IN HANDLE ProcessHandle, IN PVOID BaseAddress, IN PVOID Buffer, IN SIZE_T NumberOfBytesToWrite, OUT PSIZE_T NumberOfBytesWritten OPTIONAL)
Definition: virtual.c:2930
NTSTATUS NTAPI NtAllocateVirtualMemory(IN HANDLE ProcessHandle, IN OUT PVOID *UBaseAddress, IN ULONG_PTR ZeroBits, IN OUT PSIZE_T URegionSize, IN ULONG AllocationType, IN ULONG Protect)
Definition: virtual.c:4492
NTSTATUS NTAPI NtOpenProcess(OUT PHANDLE ProcessHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, IN PCLIENT_ID ClientId)
Definition: process.c:1440
Definition: typedefs.h:120
Definition: devicetopology.idl:137
Referenced by AuthPortThreadRoutine().
◆ LsapGetCredentials()
| NTSTATUS NTAPI LsapGetCredentials | ( | _In_ PLUID | LogonId, |
| _In_ ULONG | AuthenticationPackage, | ||
| _Inout_ PULONG | QueryContext, | ||
| _In_ BOOLEAN | RetrieveAllCredentials, | ||
| _Inout_ PLSA_STRING | PrimaryKeyValue, | ||
| _Out_ PULONG | PrimaryKeyLength, | ||
| _Out_ PLSA_STRING | Credentials | ||
| ) |
Definition at line 272 of file session.c.
Referenced by LsapInitAuthPackages().
◆ LsapGetLogonSessionData()
| NTSTATUS LsapGetLogonSessionData | ( | IN OUT PLSA_API_MSG | RequestMsg | ) |
Definition at line 395 of file session.c.
396{
399 PLSAP_LOGON_SESSION Session;
400 PSECURITY_LOGON_SESSION_DATA LocalSessionData;
403 SIZE_T MemSize;
406
408
410 Session = LsapGetLogonSession(&RequestMsg->GetLogonSessionData.Request.LogonId);
413
414 /* Calculate the required buffer size */
423 {
425 TotalLength += SidLength;
426 }
428
429 /* Allocate the buffer */
430 LocalSessionData = RtlAllocateHeap(RtlGetProcessHeap(),
431 HEAP_ZERO_MEMORY,
432 TotalLength);
435
438
440
441 /* Copy the LogonId */
443 &RequestMsg->GetLogonSessionData.Request.LogonId);
444
445 /* Copy the UserName string */
449 {
452
454 }
455
456 /* Copy the LogonDomain string */
460 {
463
465 }
466
467 /* Copy the AuthenticationPackage string */
469 LocalSessionData->AuthenticationPackage.MaximumLength = Session->AuthenticationPackage.MaximumLength;
471 {
472 RtlCopyMemory(Ptr, Session->AuthenticationPackage.Buffer, Session->AuthenticationPackage.MaximumLength);
473 LocalSessionData->AuthenticationPackage.Buffer = (PWSTR)((ULONG_PTR)Ptr - (ULONG_PTR)LocalSessionData);
474
476 }
477
478 LocalSessionData->LogonType = Session->LogonType;
479 LocalSessionData->Session = 0;
480
481 /* Sid */
483 {
486
488 }
489
490 /* LogonTime */
492
493 /* Copy the LogonServer string */
497 {
500
502 }
503
504 /* Copy the DnsDomainName string */
508 {
511
513 }
514
515 /* Copy the Upn string */
519 {
522
524 }
525
527 NULL,
528 0,
529 NULL,
530 NULL);
531
534 &ObjectAttributes,
535 &RequestMsg->h.ClientId);
537 {
539 goto done;
540 }
541
542 MemSize = TotalLength;
544 &ClientBaseAddress,
545 0,
546 &MemSize,
547 MEM_COMMIT,
548 PAGE_READWRITE);
550 {
552 goto done;
553 }
554
557
559 ClientBaseAddress,
560 LocalSessionData,
561 TotalLength,
562 NULL);
564 {
566 goto done;
567 }
568
569 RequestMsg->GetLogonSessionData.Reply.SessionDataBuffer = ClientBaseAddress;
570
571done:
574
576 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalSessionData);
577
579}
struct _SECURITY_LOGON_SESSION_DATA SECURITY_LOGON_SESSION_DATA
Definition: ntsecapi.h:303
Referenced by AuthPortThreadRoutine().
◆ LsapGetObjectAttribute()
| NTSTATUS LsapGetObjectAttribute | ( | PLSA_DB_OBJECT | DbObject, |
| LPWSTR | AttributeName, | ||
| LPVOID | AttributeData, | ||
| PULONG | AttributeSize | ||
| ) |
Definition at line 1012 of file database.c.
1016{
1019 HANDLE AttributeKey;
1020 ULONG ValueSize;
1022
1024 AttributeName);
1025
1027 &KeyName,
1028 OBJ_CASE_INSENSITIVE,
1029 DbObject->KeyHandle,
1030 NULL);
1031
1033 KEY_QUERY_VALUE,
1034 &ObjectAttributes);
1036 {
1038 }
1039
1040 ValueSize = *AttributeSize;
1042 NULL,
1043 NULL,
1044 &ValueSize,
1045 0);
1047 {
1048 goto Done;
1049 }
1050
1052 {
1053 *AttributeSize = ValueSize;
1055 goto Done;
1056 }
1057 else if (*AttributeSize < ValueSize)
1058 {
1059 *AttributeSize = ValueSize;
1061 goto Done;
1062 }
1063
1065 NULL,
1066 AttributeData,
1067 &ValueSize,
1068 0);
1070 {
1071 *AttributeSize = ValueSize;
1072 }
1073
1074Done:
1075 NtClose(AttributeKey);
1076
1078}
NTSTATUS NTAPI RtlpNtQueryValueKey(IN HANDLE KeyHandle, OUT PULONG Type OPTIONAL, OUT PVOID Data OPTIONAL, IN OUT PULONG DataLength OPTIONAL, IN ULONG Unused)
Definition: registry.c:933
Referenced by LsapGetDomainInfo(), LsarAddAccountRights(), LsarAddPrivilegesToAccount(), LsarEnumeratePrivilegesAccount(), LsarGetQuotasForAccount(), LsarGetSystemAccessAccount(), LsarQueryAccountDomain(), LsarQueryAuditEvents(), LsarQueryAuditFull(), LsarQueryAuditLog(), LsarQueryDefaultQuota(), LsarQueryDnsDomain(), LsarQueryModification(), LsarQueryPrimaryDomain(), LsarQuerySecret(), LsarQuerySecurityObject(), LsarQueryServerRole(), LsarRemoveAccountRights(), LsarRemovePrivilegesFromAccount(), LsarRetrievePrivateData(), LsarSetAuditFull(), LsarSetQuotasForAccount(), and LsarSetSecurityObject().
◆ LsapGetRelativeIdFromSid()
Definition at line 1038 of file lookup.c.
1039{
1041
1044
1045 return 0;
1046}
Referenced by LsapLookupAccountDomainSids(), LsapLookupBuiltinDomainSids(), LsarLookupNames(), and LsarLookupNames2().
◆ LsapGetResourceStringLengthEx()
| INT LsapGetResourceStringLengthEx | ( | _In_ HINSTANCE | hInstance, |
| _In_ UINT | uId, | ||
| _In_ USHORT | usLanguage | ||
| ) |
Definition at line 64 of file utils.c.
68{
69 HGLOBAL hmem;
70 HRSRC hrsrc;
73
74 /* Use loword (incremented by 1) as resourceid */
75// hrsrc = FindResourceExW(hInstance,
76// MAKEINTRESOURCEW((LOWORD(uId) >> 4) + 1),
77// (LPWSTR)RT_STRING,
78// usLanguage);
82 if (!hrsrc)
83 return 0;
84
86 if (!hmem)
87 return 0;
88
90 string_num = uId & 0x000f;
93
95}
HRSRC WINAPI FindResourceW(HINSTANCE hModule, LPCWSTR name, LPCWSTR type)
Definition: res.c:176
Referenced by LsarpLookupPrivilegeDisplayName().
◆ LsapInitAuthPackages()
Definition at line 474 of file authpackage.c.
475{
476 RTL_QUERY_REGISTRY_TABLE AuthPackageTable[] = {
479
481
483 PackageId = 0;
484
485 /* Initialize the dispatch table */
497
498 /* Add registered authentication packages */
501 AuthPackageTable,
502 &PackageId,
503 NULL);
504
506}
static NTSTATUS NTAPI LsapCopyToClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest, IN ULONG Length, IN PVOID ClientBaseAddress, IN PVOID BufferToCopy)
Definition: authpackage.c:436
static NTSTATUS NTAPI LsapAddAuthPackage(IN PWSTR ValueName, IN ULONG ValueType, IN PVOID ValueData, IN ULONG ValueLength, IN PVOID Context, IN PVOID EntryContext)
Definition: authpackage.c:177
static NTSTATUS NTAPI LsapCopyFromClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest, IN ULONG Length, IN PVOID BufferToCopy, IN PVOID ClientBaseAddress)
Definition: authpackage.c:456
static NTSTATUS NTAPI LsapFreeClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest, IN PVOID ClientBaseAddress)
Definition: authpackage.c:414
static NTSTATUS NTAPI LsapAllocateClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest, IN ULONG LengthRequired, OUT PVOID *ClientBaseAddress)
Definition: authpackage.c:390
NTSTATUS NTAPI LsapAddCredential(_In_ PLUID LogonId, _In_ ULONG AuthenticationPackage, _In_ PLSA_STRING PrimaryKeyValue, _In_ PLSA_STRING Credential)
Definition: session.c:259
NTSTATUS NTAPI LsapGetCredentials(_In_ PLUID LogonId, _In_ ULONG AuthenticationPackage, _Inout_ PULONG QueryContext, _In_ BOOLEAN RetrieveAllCredentials, _Inout_ PLSA_STRING PrimaryKeyValue, _Out_ PULONG PrimaryKeyLength, _Out_ PLSA_STRING Credentials)
Definition: session.c:272
NTSTATUS NTAPI LsapCreateLogonSession(IN PLUID LogonId)
Definition: session.c:159
NTSTATUS NTAPI LsapDeleteLogonSession(IN PLUID LogonId)
Definition: session.c:201
NTSTATUS NTAPI LsapDeleteCredential(_In_ PLUID LogonId, _In_ ULONG AuthenticationPackage, _In_ PLSA_STRING PrimaryKeyValue)
Definition: session.c:288
NTSYSAPI NTSTATUS WINAPI RtlQueryRegistryValues(ULONG, PCWSTR, PRTL_QUERY_REGISTRY_TABLE, PVOID, PVOID)
Definition: nt_native.h:108
_In_ PWDFDEVICE_INIT _In_ PWDF_PDO_EVENT_CALLBACKS DispatchTable
Definition: wdfpdo.h:248
Referenced by LsapInitLsa().
◆ LsapInitDatabase()
Definition at line 539 of file database.c.
540{
542
544
547 {
550 }
551
553 {
556 {
559 }
560
563 {
566 }
567 }
568 else
569 {
572 {
575 }
576 }
577
580 {
583 }
584
586
588}
Referenced by LsapInitLsa().
◆ LsapInitLogonSessions()
Definition at line 36 of file session.c.
Referenced by LsapInitLsa().
◆ LsapInitNotificationList()
Definition at line 28 of file notify.c.
29{
32}
NTSYSAPI VOID NTAPI RtlInitializeResource(_In_ PRTL_RESOURCE Resource)
Referenced by LsapInitLsa().
◆ LsapInitSids()
Definition at line 182 of file lookup.c.
183{
184 WCHAR szAccountName[80];
185 WCHAR szDomainName[80];
186 ULONG SubAuthorities[8];
188
190
192
193 /* NT Authority */
197 0,
198 NULL,
199 szAccountName,
200 szDomainName,
201 SidTypeDomain,
202 NULL);
203
204 /* Null Sid */
206
207 SubAuthorities[0] = SECURITY_NULL_RID;
209 1,
210 SubAuthorities,
211 szAccountName,
214 NULL);
215
216 /* World Sid */
218
219 SubAuthorities[0] = SECURITY_WORLD_RID;
221 1,
222 SubAuthorities,
223 szAccountName,
226 &LsapWorldSid);
227
228 /* Local Sid */
230
231 SubAuthorities[0] = SECURITY_LOCAL_RID;
233 1,
234 SubAuthorities,
235 szAccountName,
238 NULL);
239
240 /* Creator Owner Sid */
242
243 SubAuthorities[0] = SECURITY_CREATOR_OWNER_RID;
245 1,
246 SubAuthorities,
247 szAccountName,
250 NULL);
251
252 /* Creator Group Sid */
254
255 SubAuthorities[0] = SECURITY_CREATOR_GROUP_RID;
257 1,
258 SubAuthorities,
259 szAccountName,
262 NULL);
263
264 /* Creator Owner Server Sid */
265 LsapLoadString(hInstance, IDS_CREATOR_OWNER_SERVER_RID, szAccountName, ARRAYSIZE(szAccountName));
266
267 SubAuthorities[0] = SECURITY_CREATOR_OWNER_SERVER_RID;
269 1,
270 SubAuthorities,
271 szAccountName,
274 NULL);
275
276 /* Creator Group Server Sid */
277 LsapLoadString(hInstance, IDS_CREATOR_GROUP_SERVER_RID, szAccountName, ARRAYSIZE(szAccountName));
278
279 SubAuthorities[0] = SECURITY_CREATOR_GROUP_SERVER_RID;
281 1,
282 SubAuthorities,
283 szAccountName,
286 NULL);
287
288 /* Dialup Sid */
291
292 SubAuthorities[0] = SECURITY_DIALUP_RID;
294 1,
295 SubAuthorities,
296 szAccountName,
297 szDomainName,
299 NULL);
300
301 /* Network Sid */
303
304 SubAuthorities[0] = SECURITY_NETWORK_RID;
306 1,
307 SubAuthorities,
308 szAccountName,
309 szDomainName,
311 &LsapNetworkSid);
312
313 /* Batch Sid*/
315
316 SubAuthorities[0] = SECURITY_BATCH_RID;
318 1,
319 SubAuthorities,
320 szAccountName,
321 szDomainName,
323 &LsapBatchSid);
324
325 /* Interactive Sid */
327
328 SubAuthorities[0] = SECURITY_INTERACTIVE_RID;
330 1,
331 SubAuthorities,
332 szAccountName,
333 szDomainName,
335 &LsapInteractiveSid);
336
337 /* Service Sid */
339
340 SubAuthorities[0] = SECURITY_SERVICE_RID;
342 1,
343 SubAuthorities,
344 szAccountName,
345 szDomainName,
347 &LsapServiceSid);
348
349 /* Anonymous Logon Sid */
351
352 SubAuthorities[0] = SECURITY_ANONYMOUS_LOGON_RID;
354 1,
355 SubAuthorities,
356 szAccountName,
357 szDomainName,
359 NULL);
360
361 /* Proxy Sid */
363
364 SubAuthorities[0] = SECURITY_PROXY_RID;
366 1,
367 SubAuthorities,
368 szAccountName,
369 szDomainName,
371 NULL);
372
373 /* Enterprise Controllers Sid */
374 LsapLoadString(hInstance, IDS_ENTERPRISE_CONTROLLERS_RID, szAccountName, ARRAYSIZE(szAccountName));
375
376 SubAuthorities[0] = SECURITY_ENTERPRISE_CONTROLLERS_RID;
378 1,
379 SubAuthorities,
380 szAccountName,
381 szDomainName,
383 NULL);
384
385 /* Principal Self Sid */
387
388 SubAuthorities[0] = SECURITY_PRINCIPAL_SELF_RID;
390 1,
391 SubAuthorities,
392 szAccountName,
393 szDomainName,
395 NULL);
396
397 /* Authenticated Users Sid */
399
400 SubAuthorities[0] = SECURITY_AUTHENTICATED_USER_RID;
402 1,
403 SubAuthorities,
404 szAccountName,
405 szDomainName,
407 NULL);
408
409 /* Restricted Code Sid */
411
412 SubAuthorities[0] = SECURITY_RESTRICTED_CODE_RID;
414 1,
415 SubAuthorities,
416 szAccountName,
417 szDomainName,
419 NULL);
420
421 /* Terminal Server Sid */
423
424 SubAuthorities[0] = SECURITY_TERMINAL_SERVER_RID;
426 1,
427 SubAuthorities,
428 szAccountName,
429 szDomainName,
431 NULL);
432
433 /* Remote Logon Sid */
435
436 SubAuthorities[0] = SECURITY_REMOTE_LOGON_RID;
438 1,
439 SubAuthorities,
440 szAccountName,
441 szDomainName,
443 NULL);
444
445 /* This Organization Sid */
447
448 SubAuthorities[0] = SECURITY_THIS_ORGANIZATION_RID;
450 1,
451 SubAuthorities,
452 szAccountName,
453 szDomainName,
455 NULL);
456
457 /* Local System Sid */
459
460 SubAuthorities[0] = SECURITY_LOCAL_SYSTEM_RID;
462 1,
463 SubAuthorities,
464 szAccountName,
465 szDomainName,
467 &LsapLocalSystemSid);
468
469 /* Local Service Sid */
471
472 SubAuthorities[0] = SECURITY_LOCAL_SERVICE_RID;
474 1,
475 SubAuthorities,
476 szAccountName,
477 szDomainName,
479 NULL);
480
482 1,
483 SubAuthorities,
487 NULL);
488
489 /* Network Service Sid */
491
492 SubAuthorities[0] = SECURITY_NETWORK_SERVICE_RID;
494 1,
495 SubAuthorities,
496 szAccountName,
497 szDomainName,
499 NULL);
500
502 1,
503 SubAuthorities,
507 NULL);
508
509 /* Builtin Domain Sid */
512
513 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
515 1,
516 SubAuthorities,
517 szAccountName,
518 szDomainName,
519 SidTypeDomain,
520 NULL);
521
522 /* Administrators Alias Sid */
524
525 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
526 SubAuthorities[1] = DOMAIN_ALIAS_RID_ADMINS;
528 2,
529 SubAuthorities,
530 szAccountName,
531 szDomainName,
532 SidTypeAlias,
533 &LsapAdministratorsSid);
534
535 /* Users Alias Sid */
537
538 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
539 SubAuthorities[1] = DOMAIN_ALIAS_RID_USERS;
541 2,
542 SubAuthorities,
543 szAccountName,
544 szDomainName,
545 SidTypeAlias,
546 NULL);
547
548 /* Guests Alias Sid */
550
551 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
552 SubAuthorities[1] = DOMAIN_ALIAS_RID_GUESTS;
554 2,
555 SubAuthorities,
556 szAccountName,
557 szDomainName,
558 SidTypeAlias,
559 NULL);
560
561 /* Power User Alias Sid */
563
564 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
565 SubAuthorities[1] = DOMAIN_ALIAS_RID_POWER_USERS;
567 2,
568 SubAuthorities,
569 szAccountName,
570 szDomainName,
571 SidTypeAlias,
572 NULL);
573
574 /* Account Operators Alias Sid */
576
577 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
578 SubAuthorities[1] = DOMAIN_ALIAS_RID_ACCOUNT_OPS;
580 2,
581 SubAuthorities,
582 szAccountName,
583 szDomainName,
584 SidTypeAlias,
585 NULL);
586
587 /* System Operators Alias Sid */
589
590 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
591 SubAuthorities[1] = DOMAIN_ALIAS_RID_SYSTEM_OPS;
593 2,
594 SubAuthorities,
595 szAccountName,
596 szDomainName,
597 SidTypeAlias,
598 NULL);
599
600 /* Print Operators Alias Sid */
602
603 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
604 SubAuthorities[1] = DOMAIN_ALIAS_RID_PRINT_OPS;
606 2,
607 SubAuthorities,
608 szAccountName,
609 szDomainName,
610 SidTypeAlias,
611 NULL);
612
613 /* Backup Operators Alias Sid */
615
616 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
617 SubAuthorities[1] = DOMAIN_ALIAS_RID_BACKUP_OPS;
619 2,
620 SubAuthorities,
621 szAccountName,
622 szDomainName,
623 SidTypeAlias,
624 NULL);
625
626 /* Replicators Alias Sid */
628
629 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
630 SubAuthorities[1] = DOMAIN_ALIAS_RID_REPLICATOR;
632 2,
633 SubAuthorities,
634 szAccountName,
635 szDomainName,
636 SidTypeAlias,
637 NULL);
638
639 /* RAS Servers Alias Sid */
641
642 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
643 SubAuthorities[1] = DOMAIN_ALIAS_RID_RAS_SERVERS;
645 2,
646 SubAuthorities,
647 szAccountName,
648 szDomainName,
649 SidTypeAlias,
650 NULL);
651
652 /* Pre-Windows 2000 Compatible Access Alias Sid */
653 LsapLoadString(hInstance, IDS_ALIAS_RID_PREW2KCOMPACCESS, szAccountName, ARRAYSIZE(szAccountName));
654
655 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
656 SubAuthorities[1] = DOMAIN_ALIAS_RID_PREW2KCOMPACCESS;
658 2,
659 SubAuthorities,
660 szAccountName,
661 szDomainName,
662 SidTypeAlias,
663 NULL);
664
665 /* Remote Desktop Users Alias Sid */
666 LsapLoadString(hInstance, IDS_ALIAS_RID_REMOTE_DESKTOP_USERS, szAccountName, ARRAYSIZE(szAccountName));
667
668 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
669 SubAuthorities[1] = DOMAIN_ALIAS_RID_REMOTE_DESKTOP_USERS;
671 2,
672 SubAuthorities,
673 szAccountName,
674 szDomainName,
675 SidTypeAlias,
676 NULL);
677
678 /* Network Configuration Operators Alias Sid */
679 LsapLoadString(hInstance, IDS_ALIAS_RID_NETWORK_CONFIGURATION_OPS, szAccountName, ARRAYSIZE(szAccountName));
680
681 SubAuthorities[0] = SECURITY_BUILTIN_DOMAIN_RID;
682 SubAuthorities[1] = DOMAIN_ALIAS_RID_NETWORK_CONFIGURATION_OPS;
684 2,
685 SubAuthorities,
686 szAccountName,
687 szDomainName,
688 SidTypeAlias,
689 NULL);
690
691 /* FIXME: Add more well known sids */
692
694}
BOOLEAN LsapCreateSid(PSID_IDENTIFIER_AUTHORITY IdentifierAuthority, UCHAR SubAuthorityCount, PULONG SubAuthorities, PWSTR AccountName, PWSTR DomainName, SID_NAME_USE Use, PSID *SidPtr)
Definition: lookup.c:90
INT LsapLoadString(HINSTANCE hInstance, UINT uId, LPWSTR lpBuffer, INT nBufferMax)
Definition: utils.c:17
#define IDS_ALIAS_RID_REMOTE_DESKTOP_USERS
Definition: resources.h:49
#define IDS_ALIAS_RID_NETWORK_CONFIGURATION_OPS
Definition: resources.h:50
#define DOMAIN_ALIAS_RID_NETWORK_CONFIGURATION_OPS
Definition: setypes.h:666
#define DOMAIN_ALIAS_RID_REMOTE_DESKTOP_USERS
Definition: setypes.h:665
#define SECURITY_ENTERPRISE_CONTROLLERS_RID
Definition: setypes.h:565
Referenced by LsapInitLsa().
◆ LsapLoadString()
Definition at line 17 of file utils.c.
21{
22 HGLOBAL hmem;
23 HRSRC hrsrc;
25 int string_num;
27
28 /* Use loword (incremented by 1) as resourceid */
32 if (!hrsrc)
33 return 0;
34
36 if (!hmem)
37 return 0;
38
40 string_num = uId & 0x000f;
43
46 {
49 }
50 else
51 {
52 if (nBufferMax > 1)
53 {
54 lpBuffer[0] = 0;
55 return 0;
56 }
57 }
58
60}
Referenced by LsapInitSids().
◆ LsapLoadStringEx()
| INT LsapLoadStringEx | ( | _In_ HINSTANCE | hInstance, |
| _In_ UINT | uId, | ||
| _In_ USHORT | usLanguage, | ||
| _Out_ LPWSTR | lpBuffer, | ||
| _Out_ INT | nBufferMax | ||
| ) |
Definition at line 99 of file utils.c.
105{
106 HGLOBAL hmem;
107 HRSRC hrsrc;
109 int string_num;
111
112 /* Use loword (incremented by 1) as resourceid */
113// hrsrc = FindResourceExW(hInstance,
114// MAKEINTRESOURCEW((LOWORD(uId) >> 4) + 1),
115// (LPWSTR)RT_STRING,
116// usLanguage);
120 if (!hrsrc)
121 return 0;
122
124 if (!hmem)
125 return 0;
126
128 string_num = uId & 0x000f;
131
134 {
137 }
138 else
139 {
140 if (nBufferMax > 1)
141 {
142 lpBuffer[0] = 0;
143 return 0;
144 }
145 }
146
148}
Referenced by LsarpLookupPrivilegeDisplayName().
◆ LsapLogonUser()
| NTSTATUS LsapLogonUser | ( | PLSA_API_MSG | RequestMsg, |
| PLSAP_LOGON_CONTEXT | LogonContext | ||
| ) |
Definition at line 1394 of file authpackage.c.
1396{
1397 PAUTH_PACKAGE Package;
1399 SECURITY_QUALITY_OF_SERVICE Qos;
1400 LSA_TOKEN_INFORMATION_TYPE TokenInformationType;
1414
1417// UNICODE_STRING LogonServer;
1418
1419
1421
1424
1425 /* Get the right authentication package */
1428 {
1431 }
1432
1434 {
1435 /* Allocate the local authentication info buffer */
1436 LocalAuthInfo = RtlAllocateHeap(RtlGetProcessHeap(),
1437 HEAP_ZERO_MEMORY,
1440 {
1443 }
1444
1445 /* Read the authentication info from the callers address space */
1448 LocalAuthInfo,
1450 NULL);
1452 {
1454 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalAuthInfo);
1456 }
1457 }
1458
1460 {
1464 &LocalGroups);
1466 {
1468 goto done;
1469 }
1470
1472 }
1473
1475 {
1478 LocalAuthInfo,
1485 &TokenInformationType,
1486 &TokenInformation,
1487 &AccountName,
1488 &AuthenticatingAuthority,
1489 &MachineName,
1492 }
1494 {
1497 LocalAuthInfo,
1504 &TokenInformationType,
1505 &TokenInformation,
1506 &AccountName,
1507 &AuthenticatingAuthority,
1508 &MachineName);
1509 }
1510 else
1511 {
1514 LocalAuthInfo,
1521 &TokenInformationType,
1522 &TokenInformation,
1523 &AccountName,
1524 &AuthenticatingAuthority);
1525 }
1526
1528 {
1530 goto done;
1531 }
1532
1534 {
1535 /* Add local groups to the token information */
1537 TokenInformationType,
1538 LocalGroups);
1540 {
1542 goto done;
1543 }
1544 }
1545
1547 TokenInformationType,
1548 LogonType);
1550 {
1552 goto done;
1553 }
1554
1556 TokenInformationType);
1558 {
1560 goto done;
1561 }
1562
1564 TokenInformationType);
1566 {
1568 goto done;
1569 }
1570
1572 TokenInformationType);
1574 {
1576 goto done;
1577 }
1578
1580 TokenInformationType);
1582 {
1584 goto done;
1585 }
1586
1588 {
1591 TOKEN_GROUPS NoGroups = {0};
1592 TOKEN_PRIVILEGES NoPrivileges = {0};
1593
1594 TokenInfo0 = (PLSA_TOKEN_INFORMATION_NULL)TokenInformation;
1595
1597 TokenUser.User.Attributes = 0;
1599
1604
1608 ObjectAttributes.Attributes = 0;
1610 ObjectAttributes.SecurityQualityOfService = &Qos;
1611
1612 /* Create the logon token */
1614 TOKEN_ALL_ACCESS,
1615 &ObjectAttributes,
1616 TokenImpersonation,
1618 &TokenInfo0->ExpirationTime,
1619 &TokenUser,
1620 &NoGroups,
1621 &NoPrivileges,
1622 NULL,
1623 &TokenPrimaryGroup,
1624 NULL,
1626 }
1628 {
1629 TOKEN_PRIVILEGES NoPrivileges = {0};
1630 PSECURITY_DESCRIPTOR TokenSd;
1631 ULONG TokenSdSize;
1632
1633 TokenInfo1 = (PLSA_TOKEN_INFORMATION_V1)TokenInformation;
1634
1635 /* Set up a security descriptor for token object itself */
1638 {
1639 TokenSd = NULL;
1640 }
1641
1646
1650 ObjectAttributes.Attributes = 0;
1651 ObjectAttributes.SecurityDescriptor = TokenSd;
1652 ObjectAttributes.SecurityQualityOfService = &Qos;
1653
1654 /* Create the logon token */
1656 TOKEN_ALL_ACCESS,
1657 &ObjectAttributes,
1660 &TokenInfo1->ExpirationTime,
1661 &TokenInfo1->User,
1662 TokenInfo1->Groups,
1664 &TokenInfo1->Owner,
1665 &TokenInfo1->PrimaryGroup,
1666 &TokenInfo1->DefaultDacl,
1668
1669 /* Free the allocated security descriptor */
1670 RtlFreeHeap(RtlGetProcessHeap(), 0, TokenSd);
1671
1673 {
1675 goto done;
1676 }
1677 }
1678 else
1679 {
1682 goto done;
1683 }
1684
1688 {
1689 UserName = &((PMSV1_0_INTERACTIVE_LOGON)LocalAuthInfo)->UserName;
1690 LogonDomainName = &((PMSV1_0_INTERACTIVE_LOGON)LocalAuthInfo)->LogonDomainName;
1691 }
1692 else
1693 {
1695 }
1696
1698 LogonType,
1699 UserName,
1700 LogonDomainName,
1703 {
1705 goto done;
1706 }
1707
1708 /*
1709 * Duplicate the token handle into the client process.
1710 * This must be the last step because we cannot
1711 * close the duplicated token handle in case something fails.
1712 */
1714 TokenHandle,
1715 LogonContext->ClientProcessHandle,
1717 0,
1718 0,
1721 {
1723 goto done;
1724 }
1725
1726done:
1728 {
1729 /* Notify the authentification package of the failure */
1731
1732 /* Delete the logon session */
1734
1735 /* Release the profile buffer */
1739 }
1740
1743
1744 /* Free the local groups */
1746 {
1748 {
1751 }
1752
1754 }
1755
1756 /* Free the local authentication info buffer */
1758 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalAuthInfo);
1759
1760 /* Free the token information */
1762 {
1764 {
1765 TokenInfo0 = (PLSA_TOKEN_INFORMATION_NULL)TokenInformation;
1766
1768 {
1770 {
1772 {
1775 }
1776
1778 }
1779
1780 LsapFreeHeap(TokenInfo0);
1781 }
1782 }
1784 {
1785 TokenInfo1 = (PLSA_TOKEN_INFORMATION_V1)TokenInformation;
1786
1788 {
1791
1793 {
1795 {
1798 }
1799
1801 }
1802
1805
1808
1811
1814
1815 LsapFreeHeap(TokenInfo1);
1816 }
1817 }
1818 else
1819 {
1821 }
1822 }
1823
1824 /* Free the account name */
1826 {
1829
1830 LsapFreeHeap(AccountName);
1831 }
1832
1833 /* Free the authentication authority */
1835 {
1838
1839 LsapFreeHeap(AuthenticatingAuthority);
1840 }
1841
1842 /* Free the machine name */
1844 {
1847
1849 }
1850
1852
1854}
static NTSTATUS LsapAddDefaultGroups(IN PVOID TokenInformation, IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType, IN SECURITY_LOGON_TYPE LogonType)
Definition: authpackage.c:828
static NTSTATUS LsapAddSamGroups(IN PVOID TokenInformation, IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType)
Definition: authpackage.c:1034
enum _LSA_TOKEN_INFORMATION_TYPE LSA_TOKEN_INFORMATION_TYPE
struct _LSA_TOKEN_INFORMATION_V1 * PLSA_TOKEN_INFORMATION_V1
static NTSTATUS LsapAddLocalGroups(IN PVOID TokenInformation, IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType, IN PTOKEN_GROUPS LocalGroups)
Definition: authpackage.c:745
static NTSTATUS LsapSetTokenOwner(IN PVOID TokenInformation, IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType)
Definition: authpackage.c:1169
static NTSTATUS LsapAddTokenDefaultDacl(IN PVOID TokenInformation, IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType)
Definition: authpackage.c:1211
struct _LSA_TOKEN_INFORMATION_NULL * PLSA_TOKEN_INFORMATION_NULL
static NTSTATUS LsapCopyLocalGroups(IN PLSAP_LOGON_CONTEXT LogonContext, IN PTOKEN_GROUPS ClientGroups, IN ULONG ClientGroupsCount, OUT PTOKEN_GROUPS *TokenGroups)
Definition: authpackage.c:637
static NTSTATUS LsapSetPrivileges(IN PVOID TokenInformation, IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType)
Definition: authpackage.c:1316
NTSTATUS LsapSetLogonSessionData(_In_ PLUID LogonId, _In_ ULONG LogonType, _In_ PUNICODE_STRING UserName, _In_ PUNICODE_STRING LogonDomain, _In_ PSID Sid)
Definition: session.c:67
NTSTATUS LsapCreateTokenSd(_In_ const TOKEN_USER *User, _Outptr_ PSECURITY_DESCRIPTOR *TokenSd, _Out_ PULONG TokenSdSize)
Creates a security descriptor for the token object.
Definition: security.c:637
struct _SECURITY_QUALITY_OF_SERVICE SECURITY_QUALITY_OF_SERVICE
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE LogonType
Definition: ntifs.template.h:708
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS LocalGroups
Definition: ntifs.template.h:712
enum _SECURITY_LOGON_TYPE SECURITY_LOGON_TYPE
struct _MSV1_0_INTERACTIVE_LOGON * PMSV1_0_INTERACTIVE_LOGON
NTSTATUS NTAPI NtDuplicateObject(IN HANDLE SourceProcessHandle, IN HANDLE SourceHandle, IN HANDLE TargetProcessHandle OPTIONAL, OUT PHANDLE TargetHandle OPTIONAL, IN ACCESS_MASK DesiredAccess, IN ULONG HandleAttributes, IN ULONG Options)
Definition: obhandle.c:3410
PLSA_AP_LOGON_USER_EX2 LsaApLogonUserEx2
Definition: authpackage.c:103
PLSA_AP_LOGON_USER_INTERNAL LsaApLogonUser
Definition: authpackage.c:105
PLSA_AP_LOGON_TERMINATED LsaApLogonTerminated
Definition: authpackage.c:102
struct _LSA_LOGON_USER_MSG::@3491::@3493 Request
struct _LSA_LOGON_USER_MSG::@3491::@3494 Reply
Definition: authpackage.c:21
Definition: authpackage.c:27
Definition: lsa.idl:63
SECURITY_CONTEXT_TRACKING_MODE ContextTrackingMode
Definition: lsa.idl:66
SECURITY_IMPERSONATION_LEVEL ImpersonationLevel
Definition: lsa.idl:65
Definition: setypes.h:1013
Definition: setypes.h:1031
Definition: setypes.h:1022
Definition: setypes.h:1009
__kernel_entry NTSTATUS NTAPI NtCreateToken(_Out_ PHANDLE TokenHandle, _In_ ACCESS_MASK DesiredAccess, _In_opt_ POBJECT_ATTRIBUTES ObjectAttributes, _In_ TOKEN_TYPE TokenType, _In_ PLUID AuthenticationId, _In_ PLARGE_INTEGER ExpirationTime, _In_ PTOKEN_USER TokenUser, _In_ PTOKEN_GROUPS TokenGroups, _In_ PTOKEN_PRIVILEGES TokenPrivileges, _In_opt_ PTOKEN_OWNER TokenOwner, _In_ PTOKEN_PRIMARY_GROUP TokenPrimaryGroup, _In_opt_ PTOKEN_DEFAULT_DACL TokenDefaultDacl, _In_ PTOKEN_SOURCE TokenSource)
Creates an access token.
Definition: tokenlif.c:1558
struct _OBJECT_ATTRIBUTES OBJECT_ATTRIBUTES
#define DUPLICATE_SAME_ACCESS
#define DUPLICATE_CLOSE_SOURCE
Referenced by AuthPortThreadRoutine().
◆ LsapLookupAccountRightName()
| NTSTATUS LsapLookupAccountRightName | ( | ULONG | RightValue, |
| PRPC_UNICODE_STRING * | Name | ||
| ) |
Definition at line 343 of file privileges.c.
345{
346 PRPC_UNICODE_STRING NameBuffer;
348
350 {
352 {
356
359
362 {
363 MIDL_user_free(NameBuffer);
365 }
366
368
369 *Name = NameBuffer;
370
372 }
373 }
374
376}
_CRTIMP size_t __cdecl wcslen(_In_z_ const wchar_t *_Str)
_CRTIMP wchar_t *__cdecl wcscpy(_Out_writes_z_(_String_length_(_Source)+1) wchar_t *_Dest, _In_z_ const wchar_t *_Source)
Definition: xml2sdb.h:80
Definition: apinames.c:49
Definition: msv1_0.h:21
Referenced by LsarEnumerateAccountRights().
◆ LsapLookupAccountRightValue()
| ACCESS_MASK LsapLookupAccountRightValue | ( | IN PRPC_UNICODE_STRING | Name | ) |
Definition at line 380 of file privileges.c.
382{
384
386 return 0;
387
389 {
392 }
393
394 return 0;
395}
_Check_return_ _CRTIMP int __cdecl _wcsicmp(_In_z_ const wchar_t *_Str1, _In_z_ const wchar_t *_Str2)
Referenced by LsarAddAccountRights(), LsarEnumerateAccountsWithUserRight(), and LsarRemoveAccountRights().
◆ LsapLookupAuthenticationPackage()
| NTSTATUS LsapLookupAuthenticationPackage | ( | PLSA_API_MSG | RequestMsg, |
| PLSAP_LOGON_CONTEXT | LogonContext | ||
| ) |
Definition at line 510 of file authpackage.c.
512{
513 PLIST_ENTRY ListEntry;
514 PAUTH_PACKAGE Package;
515 ULONG PackageNameLength;
516 PCHAR PackageName;
517
519
522
524
527 {
529
532 {
535 }
536
537 ListEntry = ListEntry->Flink;
538 }
539
541}
LSA_LOOKUP_AUTHENTICATION_PACKAGE_MSG LookupAuthenticationPackage
Definition: lsass.h:190
struct _LSA_LOOKUP_AUTHENTICATION_PACKAGE_MSG::@3503::@3506 Reply
struct _LSA_LOOKUP_AUTHENTICATION_PACKAGE_MSG::@3503::@3505 Request
Referenced by AuthPortThreadRoutine().
◆ LsapLookupNames()
| NTSTATUS LsapLookupNames | ( | DWORD | Count, |
| PRPC_UNICODE_STRING | Names, | ||
| PLSAPR_REFERENCED_DOMAIN_LIST * | ReferencedDomains, | ||
| PLSAPR_TRANSLATED_SIDS_EX2 | TranslatedSids, | ||
| LSAP_LOOKUP_LEVEL | LookupLevel, | ||
| DWORD * | MappedCount, | ||
| DWORD | LookupOptions, | ||
| DWORD | ClientRevision | ||
| ) |
Definition at line 1813 of file lookup.c.
1821{
1826 ULONG SidsBufferLength;
1828 ULONG Mapped = 0;
1830
1831//TRACE("()\n");
1832
1833 TranslatedSids->Entries = 0;
1835 *ReferencedDomains = NULL;
1836
1838 SidsBuffer = MIDL_user_allocate(SidsBufferLength);
1840 {
1841//TRACE("\n");
1843 goto done;
1844 }
1845
1848 {
1849//TRACE("\n");
1851 goto done;
1852 }
1853
1856 {
1857//TRACE("\n");
1859 goto done;
1860 }
1861 DomainsBuffer->Entries = 0;
1863
1865 {
1870 }
1871
1873 Names,
1874 &DomainNames,
1875 &AccountNames);
1877 {
1879 goto done;
1880 }
1881
1882
1884 DomainNames,
1885 AccountNames,
1886 DomainsBuffer,
1887 SidsBuffer,
1888 &Mapped);
1892 {
1894 goto done;
1895 }
1896
1898 goto done;
1899
1900
1902 DomainNames,
1903 AccountNames,
1904 DomainsBuffer,
1905 SidsBuffer,
1906 &Mapped);
1910 {
1912 goto done;
1913 }
1914
1916 goto done;
1917
1918
1920 DomainNames,
1921 AccountNames,
1922 DomainsBuffer,
1923 SidsBuffer,
1924 &Mapped);
1928 {
1930 goto done;
1931 }
1932
1934 goto done;
1935
1937 DomainNames,
1938 AccountNames,
1939 DomainsBuffer,
1940 SidsBuffer,
1941 &Mapped);
1945 {
1947 goto done;
1948 }
1949
1951 goto done;
1952
1954 DomainNames,
1955 AccountNames,
1956 DomainsBuffer,
1957 SidsBuffer,
1958 &Mapped);
1962 {
1964 goto done;
1965 }
1966
1968 goto done;
1969
1970
1972 DomainNames,
1973 AccountNames,
1974 DomainsBuffer,
1975 SidsBuffer,
1976 &Mapped);
1980 {
1982 goto done;
1983 }
1984
1986 goto done;
1987
1988done:
1989// TRACE("done: Status %lx\n", Status);
1990
1992 {
1993//TRACE("Free DomainNames\n");
1995 {
1998 }
1999
2000 MIDL_user_free(DomainNames);
2001 }
2002
2004 {
2005//TRACE("Free AccountNames\n");
2007 {
2008//TRACE("i: %lu\n", i);
2010 {
2012 }
2013 }
2014
2015 MIDL_user_free(AccountNames);
2016 }
2017
2019 {
2020//TRACE("Failure!\n");
2021
2022//TRACE("Free DomainsBuffer\n");
2024 {
2027
2028 MIDL_user_free(DomainsBuffer);
2029 }
2030
2031//TRACE("Free SidsBuffer\n");
2033 MIDL_user_free(SidsBuffer);
2034 }
2035 else
2036 {
2037//TRACE("Success!\n");
2038
2039 *ReferencedDomains = DomainsBuffer;
2041 TranslatedSids->Sids = SidsBuffer;
2042 *MappedCount = Mapped;
2043
2044 if (Mapped == 0)
2048 }
2049
2050// TRACE("done: Status %lx\n", Status);
2051
2053}
Definition: bufpool.h:45
static NTSTATUS LsapLookupBuiltinNames(DWORD Count, PRPC_UNICODE_STRING DomainNames, PRPC_UNICODE_STRING AccountNames, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PLSAPR_TRANSLATED_SID_EX2 SidsBuffer, PULONG Mapped)
Definition: lookup.c:1620
static NTSTATUS LsapLookupFullyQualifiedWellKnownNames(DWORD Count, PRPC_UNICODE_STRING DomainNames, PRPC_UNICODE_STRING AccountNames, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PLSAPR_TRANSLATED_SID_EX2 SidsBuffer, PULONG Mapped)
Definition: lookup.c:1512
static NTSTATUS LsapSplitNames(DWORD Count, PRPC_UNICODE_STRING Names, PRPC_UNICODE_STRING *DomainNames, PRPC_UNICODE_STRING *AccountNames)
Definition: lookup.c:773
static NTSTATUS LsapLookupAccountNames(DWORD Count, PRPC_UNICODE_STRING DomainNames, PRPC_UNICODE_STRING AccountNames, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PLSAPR_TRANSLATED_SID_EX2 SidsBuffer, PULONG Mapped)
Definition: lookup.c:1717
static NTSTATUS LsapLookupIsolatedAccountNames(DWORD Count, PRPC_UNICODE_STRING DomainNames, PRPC_UNICODE_STRING AccountNames, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PLSAPR_TRANSLATED_SID_EX2 SidsBuffer, PULONG Mapped)
Definition: lookup.c:1414
static NTSTATUS LsapLookupIsolatedNames(DWORD Count, PRPC_UNICODE_STRING DomainNames, PRPC_UNICODE_STRING AccountNames, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PLSAPR_TRANSLATED_SID_EX2 SidsBuffer, PULONG Mapped)
Definition: lookup.c:1154
static NTSTATUS LsapLookupIsolatedBuiltinNames(DWORD Count, PRPC_UNICODE_STRING DomainNames, PRPC_UNICODE_STRING AccountNames, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PLSAPR_TRANSLATED_SID_EX2 SidsBuffer, PULONG Mapped)
Definition: lookup.c:1318
struct _LSAPR_TRANSLATED_SID_EX2 LSAPR_TRANSLATED_SID_EX2
Definition: lsa.idl:109
Definition: lsa.idl:201
Definition: ntsecapi.h:402
Referenced by LsarLookupNames(), LsarLookupNames2(), LsarLookupNames3(), and LsarLookupNames4().
◆ LsapLookupSids()
| NTSTATUS LsapLookupSids | ( | PLSAPR_SID_ENUM_BUFFER | SidEnumBuffer, |
| PLSAPR_REFERENCED_DOMAIN_LIST * | ReferencedDomains, | ||
| PLSAPR_TRANSLATED_NAMES_EX | TranslatedNames, | ||
| LSAP_LOOKUP_LEVEL | LookupLevel, | ||
| DWORD * | MappedCount, | ||
| DWORD | LookupOptions, | ||
| DWORD | ClientRevision | ||
| ) |
Definition at line 2412 of file lookup.c.
2419{
2422 ULONG NamesBufferLength;
2424 ULONG Mapped = 0;
2426
2428 NamesBuffer = MIDL_user_allocate(NamesBufferLength);
2430 {
2432 goto done;
2433 }
2434
2437 {
2439 goto done;
2440 }
2441
2442 DomainsBuffer->Domains = MIDL_user_allocate(SidEnumBuffer->Entries * sizeof(LSA_TRUST_INFORMATION));
2444 {
2446 goto done;
2447 }
2448
2449 DomainsBuffer->Entries = 0;
2451
2452 /* Initialize all name entries */
2454 {
2461 }
2462
2463 /* Look-up well-known SIDs */
2465 NamesBuffer,
2466 DomainsBuffer,
2467 &Mapped);
2471 goto done;
2472
2474 goto done;
2475
2476 /* Look-up builtin domain SIDs */
2478 NamesBuffer,
2479 DomainsBuffer,
2480 &Mapped);
2484 goto done;
2485
2487 goto done;
2488
2489 /* Look-up account domain SIDs */
2491 NamesBuffer,
2492 DomainsBuffer,
2493 &Mapped);
2497 goto done;
2498
2500 goto done;
2501
2502done:
2504
2506 {
2508 {
2511
2512 MIDL_user_free(DomainsBuffer);
2513 }
2514
2516 MIDL_user_free(NamesBuffer);
2517 }
2518 else
2519 {
2520 *ReferencedDomains = DomainsBuffer;
2522 TranslatedNames->Names = NamesBuffer;
2523 *MappedCount = Mapped;
2524
2525 if (Mapped == 0)
2529 }
2530
2532}
static NTSTATUS LsapLookupWellKnownSids(PLSAPR_SID_ENUM_BUFFER SidEnumBuffer, PLSAPR_TRANSLATED_NAME_EX NamesBuffer, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PULONG Mapped)
Definition: lookup.c:2057
static NTSTATUS LsapLookupBuiltinDomainSids(PLSAPR_SID_ENUM_BUFFER SidEnumBuffer, PLSAPR_TRANSLATED_NAME_EX NamesBuffer, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PULONG Mapped)
Definition: lookup.c:2134
static NTSTATUS LsapLookupAccountDomainSids(PLSAPR_SID_ENUM_BUFFER SidEnumBuffer, PLSAPR_TRANSLATED_NAME_EX NamesBuffer, PLSAPR_REFERENCED_DOMAIN_LIST DomainsBuffer, PULONG Mapped)
Definition: lookup.c:2273
struct _LSAPR_TRANSLATED_NAME_EX LSAPR_TRANSLATED_NAME_EX
Definition: lsa.idl:177
Referenced by LsarLookupSids(), LsarLookupSids2(), and LsarLookupSids3().
◆ LsapNotifyPolicyChange()
| VOID LsapNotifyPolicyChange | ( | POLICY_NOTIFICATION_INFORMATION_CLASS | InformationClass | ) |
Definition at line 188 of file notify.c.
190{
192 PLSA_NOTIFICATION_ENTRY CurrentNotification;
193
195
196 /* Acquire the notification list lock shared */
198
201 {
203
205 {
208 }
209
211 }
212
213 /* Release the notification list lock */
215}
NTSYSAPI BOOLEAN NTAPI RtlAcquireResourceShared(_In_ PRTL_RESOURCE Resource, _In_ BOOLEAN Wait)
NTSYSAPI VOID NTAPI RtlReleaseResource(_In_ PRTL_RESOURCE Resource)
NTSTATUS NTAPI NtSetEvent(IN HANDLE EventHandle, OUT PLONG PreviousState OPTIONAL)
Definition: event.c:455
Definition: notify.c:11
POLICY_NOTIFICATION_INFORMATION_CLASS InformationClass
Definition: notify.c:13
_In_ ULONG _In_opt_ PVOID _In_ PDRIVER_OBJECT _In_ PDRIVER_NOTIFICATION_CALLBACK_ROUTINE _Inout_opt_ __drv_aliasesMem PVOID _Outptr_result_nullonfailure_ _At_ * NotificationEntry(return==0, __drv_allocatesMem(Mem))) PVOID *NotificationEntry
Referenced by LsarSetInformationPolicy().
◆ LsapOpenDbObject()
| NTSTATUS LsapOpenDbObject | ( | IN PLSA_DB_OBJECT | ParentObject, |
| IN LPWSTR | ContainerName, | ||
| IN LPWSTR | ObjectName, | ||
| IN LSA_DB_OBJECT_TYPE | ObjectType, | ||
| IN ACCESS_MASK | DesiredAccess, | ||
| IN BOOLEAN | Trusted, | ||
| OUT PLSA_DB_OBJECT * | DbObject | ||
| ) |
Definition at line 712 of file database.c.
719{
723 HANDLE ParentKeyHandle;
727
730
732 ParentKeyHandle = SecurityKeyHandle;
733 else
734 ParentKeyHandle = ParentObject->KeyHandle;
735
737 {
738 /* Open the container key */
740 ContainerName);
741
743 &KeyName,
744 OBJ_CASE_INSENSITIVE,
745 ParentKeyHandle,
746 NULL);
747
749 KEY_ALL_ACCESS,
750 &ObjectAttributes);
752 {
754 }
755
756 /* Open the object key */
758 ObjectName);
759
761 &KeyName,
762 OBJ_CASE_INSENSITIVE,
763 ContainerKeyHandle,
764 NULL);
765
767 KEY_ALL_ACCESS,
768 &ObjectAttributes);
769
770 NtClose(ContainerKeyHandle);
771
773 {
775 }
776 }
777 else
778 {
779 /* Open the object key */
781 ObjectName);
782
784 &KeyName,
785 OBJ_CASE_INSENSITIVE,
786 ParentKeyHandle,
787 NULL);
788
790 KEY_ALL_ACCESS,
791 &ObjectAttributes);
793 {
795 }
796 }
797
799 0,
802 {
803 NtClose(ObjectKeyHandle);
805 }
806
808 NewObject->RefCount = 1;
811 NewObject->KeyHandle = ObjectKeyHandle;
812 NewObject->ParentObject = ParentObject;
813 NewObject->Trusted = Trusted;
814
816 ParentObject->RefCount++;
817
818 *DbObject = NewObject;
819
821}
Referenced by LsaIOpenPolicyTrusted(), LsapCreateDatabaseObjects(), LsapGetDomainInfo(), LsarOpenPolicy(), LsarOpenSecret(), LsarpOpenAccount(), LsarRetrievePrivateData(), and LsarStorePrivateData().
◆ LsapRegCloseKey()
Definition at line 23 of file registry.c.
24{
26}
_Must_inspect_result_ _Out_ PNDIS_STATUS _In_ NDIS_HANDLE _In_ ULONG _Out_ PNDIS_STRING _Out_ PNDIS_HANDLE KeyHandle
Definition: ndis.h:4715
Referenced by LsarEnumerateAccounts(), and LsarEnumerateAccountsWithUserRight().
◆ LsapRegCreateKey()
| NTSTATUS LsapRegCreateKey | ( | IN HANDLE | ParentKeyHandle, |
| IN LPCWSTR | KeyName, | ||
| IN ACCESS_MASK | DesiredAccess, | ||
| OUT HANDLE | KeyHandle | ||
| ) |
Definition at line 30 of file registry.c.
34{
38
40
42 &Name,
44 ParentKeyHandle,
45 NULL);
46
47 /* Create the key */
49 DesiredAccess,
50 &ObjectAttributes,
51 0,
52 NULL,
53 0,
54 &Disposition);
55}
_In_ ACCESS_MASK _In_ POBJECT_ATTRIBUTES _Reserved_ ULONG _In_opt_ PUNICODE_STRING _In_ ULONG _Out_opt_ PULONG Disposition
Definition: cmfuncs.h:56
◆ LsapRegDeleteKey()
◆ LsapRegDeleteSubKey()
Definition at line 59 of file registry.c.
61{
64 HANDLE TargetKey;
66
70 &SubKeyName,
72 ParentKeyHandle,
73 NULL);
75 DELETE,
76 &ObjectAttributes);
79
81
82 NtClose(TargetKey);
83
85}
_Must_inspect_result_ _Out_ PNDIS_STATUS _In_ NDIS_HANDLE _In_ PNDIS_STRING SubKeyName
Definition: ndis.h:4725
Referenced by LsapDeleteDbObject(), and LsapDeleteObjectAttribute().
◆ LsapRegDeleteValue()
Definition at line 211 of file registry.c.
213{
215
217 ValueName);
218
220 &Name);
221}
NTSYSAPI NTSTATUS NTAPI NtDeleteValueKey(IN HANDLE KeyHandle, IN PUNICODE_STRING ValueName)
Definition: ntapi.c:1014
_Must_inspect_result_ _In_ WDFKEY _In_ PCUNICODE_STRING ValueName
Definition: wdfregistry.h:243
◆ LsapRegEnumerateSubKey()
| NTSTATUS LsapRegEnumerateSubKey | ( | IN HANDLE | KeyHandle, |
| IN ULONG | Index, | ||
| IN ULONG | Length, | ||
| OUT LPWSTR | Buffer | ||
| ) |
Definition at line 96 of file registry.c.
100{
105
106 /* Check if we have a name */
108 {
109 /* Allocate a buffer for it */
111
115 }
116
117 /* Enumerate the key */
119 Index,
120 KeyBasicInformation,
121 KeyInfo,
122 BufferLength,
123 &ReturnedLength);
125 {
126 /* Check if the name fits */
128 {
129 /* Copy it */
131 KeyInfo->Name,
132 KeyInfo->NameLength);
133
134 /* Terminate the string */
136 }
137 else
138 {
139 /* Otherwise, we ran out of buffer space */
141 }
142 }
143
144 /* Free the buffer and return status */
145 if (KeyInfo)
146 RtlFreeHeap(RtlGetProcessHeap(), 0, KeyInfo);
147
149}
_In_ ULONG _In_ BATTERY_QUERY_INFORMATION_LEVEL _In_ LONG _In_ ULONG _Out_ PULONG ReturnedLength
Definition: batclass.h:188
struct _KEY_BASIC_INFORMATION KEY_BASIC_INFORMATION
#define UNICODE_NULL
Definition: nt_native.h:1099
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ ULONG BufferLength
Definition: wdfdevice.h:3771
Referenced by LsapDeleteDbObject(), LsarEnumerateAccounts(), and LsarEnumerateAccountsWithUserRight().
◆ LsapRegEnumerateValue()
| NTSTATUS LsapRegEnumerateValue | ( | IN HANDLE | KeyHandle, |
| IN ULONG | Index, | ||
| OUT LPWSTR | Name, | ||
| IN OUT PULONG | NameLength, | ||
| OUT PULONG Type | OPTIONAL, | ||
| OUT PVOID Data | OPTIONAL, | ||
| IN OUT PULONG DataLength | OPTIONAL | ||
| ) |
Definition at line 225 of file registry.c.
232{
237
239
240 /* Calculate the required buffer length */
245
246 /* Allocate the value buffer */
250
251 /* Enumerate the value*/
253 Index,
255 ValueInfo,
256 BufferLength,
257 &ReturnedLength);
259 {
261 {
262 /* Check if the name fits */
264 {
265 /* Copy it */
267 ValueInfo->Name,
268 ValueInfo->NameLength);
269
270 /* Terminate the string */
272 }
273 else
274 {
275 /* Otherwise, we ran out of buffer space */
277 goto done;
278 }
279 }
280
282 {
283 /* Check if the data fits */
285 {
286 /* Copy it */
289 ValueInfo->DataLength);
290
291 /* if the type is REG_SZ and data is not 0-terminated
292 * and there is enough space in the buffer NT appends a \0 */
295 {
299 }
300 }
301 else
302 {
304 goto done;
305 }
306 }
307 }
308
309done:
311 {
314
316 *NameLength = ValueInfo->NameLength;
317
320 }
321
322 /* Free the buffer and return status */
323 if (ValueInfo)
324 RtlFreeHeap(RtlGetProcessHeap(), 0, ValueInfo);
325
327}
_In_ ULONG _In_opt_ WDFREQUEST _In_opt_ PVOID _In_ size_t _In_ PVOID _In_ size_t _Out_ size_t * DataLength
Definition: cdrom.h:1444
Definition: sort_test.cpp:77
Definition: nt_native.h:1155
◆ LsapRegisterNotification()
| NTSTATUS LsapRegisterNotification | ( | PLSA_API_MSG | RequestMsg | ) |
Definition at line 159 of file notify.c.
161{
163
165
166 /* Acquire the notification list lock exclusively */
168
169 if (pRequestMsg->PolicyChangeNotify.Request.Register)
170 {
171 /* Register the notification event */
173 }
174 else
175 {
176 /* Unregister the notification event */
178 }
179
180 /* Release the notification list lock */
182
184}
static NTSTATUS LsapAddNotification(PLSA_API_MSG pRequestMsg)
Definition: notify.c:63
static NTSTATUS LsapRemoveNotification(PLSA_API_MSG pRequestMsg)
Definition: notify.c:132
NTSYSAPI BOOLEAN NTAPI RtlAcquireResourceExclusive(_In_ PRTL_RESOURCE Resource, _In_ BOOLEAN Wait)
Referenced by AuthPortThreadRoutine().
◆ LsapRegOpenKey()
| NTSTATUS LsapRegOpenKey | ( | IN HANDLE | ParentKeyHandle, |
| IN LPCWSTR | KeyName, | ||
| IN ACCESS_MASK | DesiredAccess, | ||
| OUT HANDLE | KeyHandle | ||
| ) |
Definition at line 153 of file registry.c.
157{
160
162
164 &Name,
165 OBJ_CASE_INSENSITIVE,
166 ParentKeyHandle,
167 NULL);
168
170 DesiredAccess,
171 &ObjectAttributes);
172}
Referenced by LsarEnumerateAccounts(), and LsarEnumerateAccountsWithUserRight().
◆ LsapRegQueryKeyInfo()
| NTSTATUS LsapRegQueryKeyInfo | ( | IN HANDLE | KeyHandle, |
| OUT PULONG | SubKeyCount, | ||
| OUT PULONG | MaxSubKeyNameLength, | ||
| OUT PULONG | ValueCount | ||
| ) |
Definition at line 176 of file registry.c.
180{
181 KEY_FULL_INFORMATION FullInfoBuffer;
184
185 FullInfoBuffer.ClassLength = 0;
187
189 KeyFullInformation,
190 &FullInfoBuffer,
192 &Length);
196
198 *SubKeyCount = FullInfoBuffer.SubKeys;
199
201 *MaxSubKeyNameLength = FullInfoBuffer.MaxNameLen;
202
204 *ValueCount = FullInfoBuffer.Values;
205
207}
Definition: mfunptr_test.cpp:53
NTSTATUS NTAPI NtQueryKey(IN HANDLE KeyHandle, IN KEY_INFORMATION_CLASS KeyInformationClass, OUT PVOID KeyInformation, IN ULONG Length, OUT PULONG ResultLength)
Definition: ntapi.c:632
Definition: nt_native.h:1116
Referenced by LsarEnumerateAccounts(), and LsarEnumerateAccountsWithUserRight().
◆ LsapRegQueryValue()
| NTSTATUS LsapRegQueryValue | ( | IN HANDLE | KeyHandle, |
| IN LPWSTR | ValueName, | ||
| OUT PULONG Type | OPTIONAL, | ||
| OUT LPVOID Data | OPTIONAL, | ||
| IN OUT PULONG DataLength | OPTIONAL | ||
| ) |
Definition at line 331 of file registry.c.
336{
337 PKEY_VALUE_PARTIAL_INFORMATION ValueInfo;
341
343 ValueName);
344
347
349
350 /* Allocate memory for the value */
354
355 /* Query the value */
357 &Name,
359 ValueInfo,
360 BufferLength,
361 &BufferLength);
363 {
366
369 }
370
371 /* Check if the caller wanted data back, and we got it */
373 {
374 /* Copy it */
376 ValueInfo->Data,
377 ValueInfo->DataLength);
378
379 /* if the type is REG_SZ and data is not 0-terminated
380 * and there is enough space in the buffer NT appends a \0 */
383 {
387 }
388 }
389
390 /* Free the memory and return status */
391 RtlFreeHeap(RtlGetProcessHeap(), 0, ValueInfo);
392
395
397}
Definition: nt_native.h:1165
Referenced by LsarEnumerateAccounts(), and LsarEnumerateAccountsWithUserRight().
◆ LsapRegSetValue()
| NTSTATUS LsapRegSetValue | ( | IN HANDLE | KeyHandle, |
| IN LPWSTR | ValueName, | ||
| IN ULONG | Type, | ||
| IN LPVOID | Data, | ||
| IN ULONG | DataLength | ||
| ) |
◆ LsapRmCreateLogonSession()
Definition at line 245 of file srm.c.
247{
248 SEP_RM_API_MESSAGE RequestMessage;
251
253
254 RequestMessage.Header.u2.ZeroInit = 0;
255 RequestMessage.Header.u1.s1.TotalLength =
257 RequestMessage.Header.u1.s1.DataLength =
258 RequestMessage.Header.u1.s1.TotalLength -
260
263
264 ReplyMessage.Header.u2.ZeroInit = 0;
265 ReplyMessage.Header.u1.s1.TotalLength =
267 ReplyMessage.Header.u1.s1.DataLength =
268 ReplyMessage.Header.u1.s1.TotalLength -
270
272
274 (PPORT_MESSAGE)&RequestMessage,
277 {
279 }
280
282}
NTSTATUS NTAPI NtRequestWaitReplyPort(IN HANDLE PortHandle, IN PPORT_MESSAGE LpcRequest, IN OUT PPORT_MESSAGE LpcReply)
Definition: send.c:696
Definition: winternl.h:1746
Definition: srmp.h:12
union _SEP_RM_API_MESSAGE::@3482 u
BOOL WINAPI ReplyMessage(_In_ LRESULT)
Referenced by LsapCreateLogonSession().
◆ LsapRmDeleteLogonSession()
Definition at line 285 of file srm.c.
287{
288 SEP_RM_API_MESSAGE RequestMessage;
291
293
294 RequestMessage.Header.u2.ZeroInit = 0;
295 RequestMessage.Header.u1.s1.TotalLength =
297 RequestMessage.Header.u1.s1.DataLength =
298 RequestMessage.Header.u1.s1.TotalLength -
300
303
304 ReplyMessage.Header.u2.ZeroInit = 0;
305 ReplyMessage.Header.u1.s1.TotalLength =
307 ReplyMessage.Header.u1.s1.DataLength =
308 ReplyMessage.Header.u1.s1.TotalLength -
310
312
314 (PPORT_MESSAGE)&RequestMessage,
317 {
319 }
320
322}
Referenced by LsapDeleteLogonSession().
◆ LsapRmInitializeServer()
Definition at line 167 of file srm.c.
168{
171 SECURITY_QUALITY_OF_SERVICE SecurityQos;
172 HANDLE InitEvent;
173 HANDLE ThreadHandle;
174 DWORD ThreadId;
176
177 /* Create the LSA command port */
181 &ObjectAttributes,
182 0,
184 2 * PAGE_SIZE);
186 {
189 }
190
191 /* Open the LSA init event */
196 {
199 }
200
201 /* Signal the kernel, that we are ready */
204 {
207 }
208
209 /* Setup the QoS structure */
213
214 /* Connect to the kernel server */
217 &Name,
218 &SecurityQos,
219 NULL,
220 NULL,
221 NULL,
222 NULL,
223 NULL);
225 {
228 }
229
230 /* Create the server thread */
233 {
236 }
237
238 /* Close the server thread handle */
239 CloseHandle(ThreadHandle);
240
242}
HANDLE WINAPI DECLSPEC_HOTPATCH CreateThread(IN LPSECURITY_ATTRIBUTES lpThreadAttributes, IN DWORD dwStackSize, IN LPTHREAD_START_ROUTINE lpStartAddress, IN LPVOID lpParameter, IN DWORD dwCreationFlags, OUT LPDWORD lpThreadId)
Definition: thread.c:137
NTSTATUS NTAPI NtOpenEvent(OUT PHANDLE EventHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes)
Definition: event.c:181
NTSTATUS NTAPI NtConnectPort(OUT PHANDLE PortHandle, IN PUNICODE_STRING PortName, IN PSECURITY_QUALITY_OF_SERVICE SecurityQos, IN OUT PPORT_VIEW ClientView OPTIONAL, IN OUT PREMOTE_PORT_VIEW ServerView OPTIONAL, OUT PULONG MaxMessageLength OPTIONAL, IN OUT PVOID ConnectionInformation OPTIONAL, IN OUT PULONG ConnectionInformationLength OPTIONAL)
Definition: connect.c:777
NTSTATUS NTAPI NtCreatePort(OUT PHANDLE PortHandle, IN POBJECT_ATTRIBUTES ObjectAttributes, IN ULONG MaxConnectInfoLength, IN ULONG MaxDataLength, IN ULONG MaxPoolUsage)
Definition: create.c:222
Referenced by LsapInitLsa().
◆ LsapSetLogonSessionData()
| NTSTATUS LsapSetLogonSessionData | ( | _In_ PLUID | LogonId, |
| _In_ ULONG | LogonType, | ||
| _In_ PUNICODE_STRING | UserName, | ||
| _In_ PUNICODE_STRING | LogonDomain, | ||
| _In_ PSID | Sid | ||
| ) |
Definition at line 67 of file session.c.
73{
75 PLSAP_LOGON_SESSION Session;
77
79
83
86
90
91 /* UserName is mandatory and cannot be an empty string */
94 HEAP_ZERO_MEMORY,
95 UserName->MaximumLength);
98
102
105 {
106 /* Cleanup and fail */
109
111 }
112
113 /* LogonDomain is optional and can be an empty string */
115 if (LogonDomain->Length)
116 {
118 HEAP_ZERO_MEMORY,
119 LogonDomain->MaximumLength);
121 {
122 /* Cleanup and fail */
125
127 }
128
132 }
133 else
134 {
136 }
137
141 {
142 /* Cleanup and fail */
147
149 }
150
152
154}
NTSYSAPI NTSTATUS NTAPI RtlValidateUnicodeString(_In_ ULONG Flags, _In_ PCUNICODE_STRING String)
Definition: unicode.c:2605
Referenced by LsapLogonUser().
◆ LsapSetObjectAttribute()
| NTSTATUS LsapSetObjectAttribute | ( | PLSA_DB_OBJECT | DbObject, |
| LPWSTR | AttributeName, | ||
| LPVOID | AttributeData, | ||
| ULONG | AttributeSize | ||
| ) |
Definition at line 961 of file database.c.
965{
968 HANDLE AttributeKey;
970
972 AttributeName);
973
975 &KeyName,
976 OBJ_CASE_INSENSITIVE,
977 DbObject->KeyHandle,
978 NULL);
979
981 KEY_SET_VALUE,
982 &ObjectAttributes,
983 0,
984 NULL,
986 NULL);
988 {
990 AttributeName, Status);
992 }
993
995 REG_NONE,
996 AttributeData,
997 AttributeSize);
998
999 NtClose(AttributeKey);
1000
1002 {
1004 AttributeName, Status);
1005 }
1006
1008}
NTSTATUS NTAPI RtlpNtSetValueKey(IN HANDLE KeyHandle, IN ULONG Type, IN PVOID Data, IN ULONG DataLength)
Definition: registry.c:988
Referenced by LsapCreateDatabaseObjects(), LsarAddAccountRights(), LsarAddPrivilegesToAccount(), LsarCreateSecret(), LsarpCreateAccount(), LsarRemoveAccountRights(), LsarRemovePrivilegesFromAccount(), LsarSetAccountDomain(), LsarSetAuditEvents(), LsarSetAuditFull(), LsarSetAuditLog(), LsarSetDefaultQuota(), LsarSetModification(), LsarSetPrimaryDomain(), LsarSetQuotasForAccount(), LsarSetSecret(), LsarSetSecurityObject(), LsarSetServerRole(), LsarSetSystemAccessAccount(), and LsarStorePrivateData().
◆ LsapTerminateLogon()
Definition at line 545 of file authpackage.c.
547{
548 PLIST_ENTRY ListEntry;
549 PAUTH_PACKAGE Package;
550
553 {
555
557
558 ListEntry = ListEntry->Flink;
559 }
560}
Referenced by LsapDeleteLogonSession().
◆ LsapValidateDbObject()
| NTSTATUS LsapValidateDbObject | ( | IN LSAPR_HANDLE | Handle, |
| IN LSA_DB_OBJECT_TYPE | HandleType, | ||
| IN ACCESS_MASK | GrantedAccess, | ||
| OUT PLSA_DB_OBJECT * | DbObject | ||
| ) |
◆ LsarpEnumeratePrivileges()
| NTSTATUS LsarpEnumeratePrivileges | ( | DWORD * | EnumerationContext, |
| PLSAPR_PRIVILEGE_ENUM_BUFFER | EnumerationBuffer, | ||
| DWORD | PreferedMaximumLength | ||
| ) |
Definition at line 246 of file privileges.c.
249{
251 ULONG EnumIndex;
252 ULONG EnumCount = 0;
257
258 EnumIndex = *EnumerationContext;
259
261 {
265
270 {
271 MoreEntries = TRUE;
272 break;
273 }
274
277 EnumCount++;
278 }
279
282
283 if (EnumCount == 0)
284 goto done;
285
288 {
290 goto done;
291 }
292
293 EnumIndex = *EnumerationContext;
294
296 {
298
299 Privileges[i].Name.Length = (USHORT)wcslen(WellKnownPrivileges[EnumIndex].Name) * sizeof(WCHAR);
301
304 {
306 goto done;
307 }
308
312 }
313
314done:
316 {
317 EnumerationBuffer->Entries = EnumCount;
319 *EnumerationContext += EnumCount;
320 }
321 else
322 {
324 {
326 {
329 }
330
332 }
333 }
334
337
339}
struct _LSAPR_POLICY_PRIVILEGE_DEF LSAPR_POLICY_PRIVILEGE_DEF
Definition: lsa.idl:81
PLSAPR_POLICY_PRIVILEGE_DEF Privileges
Definition: lsa.idl:88
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET * Privileges
Definition: sefuncs.h:17
Referenced by LsarEnumeratePrivileges().
◆ LsarpLookupPrivilegeDisplayName()
| NTSTATUS LsarpLookupPrivilegeDisplayName | ( | PRPC_UNICODE_STRING | Name, |
| USHORT | ClientLanguage, | ||
| USHORT | ClientSystemDefaultLanguage, | ||
| PRPC_UNICODE_STRING * | DisplayName, | ||
| USHORT * | LanguageReturned | ||
| ) |
Definition at line 125 of file privileges.c.
130{
131 PRPC_UNICODE_STRING DisplayNameBuffer;
135
137 Name, ClientLanguage, ClientSystemDefaultLanguage, DisplayName, LanguageReturned);
138
141
143
145 {
147 {
151 ClientLanguage);
153 {
157
160
163 {
164 MIDL_user_free(DisplayNameBuffer);
166 }
167
170 ClientLanguage,
171 DisplayNameBuffer->Buffer,
172 nLength);
173
174 *DisplayName = DisplayNameBuffer;
175 *LanguageReturned = ClientLanguage;
176 }
177 else
178 {
181 ClientSystemDefaultLanguage);
183 {
187
190
193 {
194 MIDL_user_free(DisplayNameBuffer);
196 }
197
200 ClientSystemDefaultLanguage,
201 DisplayNameBuffer->Buffer,
202 nLength);
203
204 *DisplayName = DisplayNameBuffer;
205 *LanguageReturned = ClientSystemDefaultLanguage;
206 }
207 else
208 {
210#if 0
213 0x409);
214#endif
215 }
216 }
217
219 }
220 }
221
223}
INT LsapLoadStringEx(_In_ HINSTANCE hInstance, _In_ UINT uId, _In_ USHORT usLanguage, _Out_ LPWSTR lpBuffer, _Out_ INT nBufferMax)
Definition: utils.c:99
INT LsapGetResourceStringLengthEx(_In_ HINSTANCE hInstance, _In_ UINT uId, _In_ USHORT usLanguage)
Definition: utils.c:64
Referenced by LsarLookupPrivilegeDisplayName().
◆ LsarpLookupPrivilegeName()
| NTSTATUS LsarpLookupPrivilegeName | ( | PLUID | Value, |
| PRPC_UNICODE_STRING * | Name | ||
| ) |
Definition at line 80 of file privileges.c.
82{
83 PRPC_UNICODE_STRING NameBuffer;
84 ULONG Priv;
85
89 {
91 }
92
94 {
97 {
101
104
107 {
108 MIDL_user_free(NameBuffer);
110 }
111
113
114 *Name = NameBuffer;
115
117 }
118 }
119
121}
_Must_inspect_result_ _In_ WDFKEY _In_ PCUNICODE_STRING _Out_opt_ PUSHORT _Inout_opt_ PUNICODE_STRING Value
Definition: wdfregistry.h:413
Referenced by LsarLookupPrivilegeName().
◆ LsarpLookupPrivilegeValue()
| PLUID LsarpLookupPrivilegeValue | ( | IN PRPC_UNICODE_STRING | Name | ) |
Definition at line 227 of file privileges.c.
Referenced by LsarAddAccountRights(), LsarEnumerateAccountsWithUserRight(), LsarLookupPrivilegeValue(), and LsarRemoveAccountRights().
◆ LsarQueryAccountDomain()
| NTSTATUS LsarQueryAccountDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 289 of file policy.c.
291{
293 PUNICODE_STRING DomainName;
294 ULONG AttributeSize = 0;
296
297 *PolicyInformation = NULL;
298
302
303 /* Domain Name */
306 NULL,
307 &AttributeSize);
309 {
310 goto Done;
311 }
312
313 if (AttributeSize > 0)
314 {
315 DomainName = MIDL_user_allocate(AttributeSize);
317 {
319 goto Done;
320 }
321
324 DomainName,
325 &AttributeSize);
327 {
329
331
334 {
335 MIDL_user_free(DomainName);
337 goto Done;
338 }
339
343 DomainName->Buffer,
344 DomainName->MaximumLength);
345 }
346
347 MIDL_user_free(DomainName);
348 }
349
350 /* Domain SID */
351 AttributeSize = 0;
354 NULL,
355 &AttributeSize);
357 {
358 goto Done;
359 }
360
361 if (AttributeSize > 0)
362 {
365 {
367 goto Done;
368 }
369
372 p->Sid,
373 &AttributeSize);
374 }
375
377
378Done:
380 {
382 {
385
388
390 }
391 }
392
394}
NTSTATUS LsapGetObjectAttribute(PLSA_DB_OBJECT DbObject, LPWSTR AttributeName, LPVOID AttributeData, PULONG AttributeSize)
Definition: database.c:1012
union _LSAPR_POLICY_INFORMATION * PLSAPR_POLICY_INFORMATION
Definition: msv1_0.h:245
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryAuditEvents()
| NTSTATUS LsarQueryAuditEvents | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 70 of file policy.c.
72{
75 ULONG AttributeSize;
77
78 *PolicyInformation = NULL;
79
80 AttributeSize = 0;
83 NULL,
84 &AttributeSize);
87
89 if (AttributeSize > 0)
90 {
91 AuditData = MIDL_user_allocate(AttributeSize);
94
97 AuditData,
98 &AttributeSize);
100 goto done;
101 }
102
105 {
107 goto done;
108 }
109
111 {
113 p->MaximumAuditEventCount = 0;
115 }
116 else
117 {
120
121 p->EventAuditingOptions = MIDL_user_allocate(AuditData->MaximumAuditEventCount * sizeof(DWORD));
123 {
125 goto done;
126 }
127
129 &(AuditData->AuditEvents[0]),
131 }
132
134
135done:
137
139 {
141 {
144
146 }
147 }
148
150 MIDL_user_free(AuditData);
151
153}
Definition: msv1_0.h:232
Definition: lsasrv.h:71
DWORD MaximumAuditEventCount
Definition: lsasrv.h:74
DWORD AuditEvents[POLICY_AUDIT_EVENT_TYPE_COUNT]
Definition: lsasrv.h:73
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryAuditFull()
| NTSTATUS LsarQueryAuditFull | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 510 of file policy.c.
512{
514 ULONG AttributeSize;
516
517 *PolicyInformation = NULL;
518
520 AuditFullInfo = MIDL_user_allocate(AttributeSize);
523
526 AuditFullInfo,
527 &AttributeSize);
529 {
530 MIDL_user_free(AuditFullInfo);
531 }
532 else
533 {
534 *PolicyInformation = (PLSAPR_POLICY_INFORMATION)AuditFullInfo;
535 }
536
538}
struct _POLICY_AUDIT_FULL_QUERY_INFO POLICY_AUDIT_FULL_QUERY_INFO
Definition: ntsecapi.h:600
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryAuditLog()
| NTSTATUS LsarQueryAuditLog | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 38 of file policy.c.
40{
42 ULONG AttributeSize;
44
45 *PolicyInformation = NULL;
46
48 AuditLogInfo = MIDL_user_allocate(AttributeSize);
51
54 AuditLogInfo,
55 &AttributeSize);
57 {
58 MIDL_user_free(AuditLogInfo);
59 }
60 else
61 {
62 *PolicyInformation = (PLSAPR_POLICY_INFORMATION)AuditLogInfo;
63 }
64
66}
struct _POLICY_AUDIT_LOG_INFO POLICY_AUDIT_LOG_INFO
Definition: ntsecapi.h:552
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryDefaultQuota()
| NTSTATUS LsarQueryDefaultQuota | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 446 of file policy.c.
448{
450 ULONG AttributeSize;
452
453 *PolicyInformation = NULL;
454
456 QuotaInfo = MIDL_user_allocate(AttributeSize);
459
462 QuotaInfo,
463 &AttributeSize);
465 {
466 MIDL_user_free(QuotaInfo);
467 }
468 else
469 {
470 *PolicyInformation = (PLSAPR_POLICY_INFORMATION)QuotaInfo;
471 }
472
474}
struct _POLICY_DEFAULT_QUOTA_INFO POLICY_DEFAULT_QUOTA_INFO
Definition: ntsecapi.h:590
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryDnsDomain()
| NTSTATUS LsarQueryDnsDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 542 of file policy.c.
544{
546 PUNICODE_STRING DomainName;
547 ULONG AttributeSize;
549
550 *PolicyInformation = NULL;
551
555
556 /* Primary Domain Name */
557 AttributeSize = 0;
560 NULL,
561 &AttributeSize);
563 {
564 goto done;
565 }
566
567 if (AttributeSize > 0)
568 {
569 DomainName = MIDL_user_allocate(AttributeSize);
571 {
573 goto done;
574 }
575
578 DomainName,
579 &AttributeSize);
581 {
583
585
588 {
589 MIDL_user_free(DomainName);
591 goto done;
592 }
593
597 DomainName->Buffer,
598 DomainName->MaximumLength);
599 }
600
601 MIDL_user_free(DomainName);
602 }
603
604 /* Primary Domain SID */
605 AttributeSize = 0;
608 NULL,
609 &AttributeSize);
611 {
612 goto done;
613 }
614
615 if (AttributeSize > 0)
616 {
619 {
621 goto done;
622 }
623
626 p->Sid,
627 &AttributeSize);
628 }
629
630 /* DNS Domain Name */
631 AttributeSize = 0;
634 NULL,
635 &AttributeSize);
637 goto done;
638
639 if (AttributeSize > 0)
640 {
641 DomainName = MIDL_user_allocate(AttributeSize);
643 {
645 goto done;
646 }
647
650 DomainName,
651 &AttributeSize);
653 {
655
657
660 {
661 MIDL_user_free(DomainName);
663 goto done;
664 }
665
669 DomainName->Buffer,
670 DomainName->MaximumLength);
671 }
672
673 MIDL_user_free(DomainName);
674 }
675
676 /* DNS Forest Name */
677 AttributeSize = 0;
680 NULL,
681 &AttributeSize);
683 goto done;
684
685 if (AttributeSize > 0)
686 {
687 DomainName = MIDL_user_allocate(AttributeSize);
689 {
691 goto done;
692 }
693
696 DomainName,
697 &AttributeSize);
699 {
701
703
706 {
707 MIDL_user_free(DomainName);
709 goto done;
710 }
711
715 DomainName->Buffer,
716 DomainName->MaximumLength);
717 }
718
719 MIDL_user_free(DomainName);
720 }
721
722 /* DNS Domain GUID */
726 &(p->DomainGuid),
727 &AttributeSize);
729 goto done;
730
732
733done:
735 {
737 {
740
743
746
749
751 }
752 }
753
755}
Definition: shobjidl.idl:2913
Definition: msv1_0.h:262
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryDnsDomainInt()
| NTSTATUS LsarQueryDnsDomainInt | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 759 of file policy.c.
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryLocalAccountDomain()
| NTSTATUS LsarQueryLocalAccountDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 769 of file policy.c.
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryModification()
| NTSTATUS LsarQueryModification | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 478 of file policy.c.
480{
482 ULONG AttributeSize;
484
485 *PolicyInformation = NULL;
486
491
494 Info,
495 &AttributeSize);
497 {
499 }
500 else
501 {
503 }
504
506}
struct _POLICY_MODIFICATION_INFO POLICY_MODIFICATION_INFO
Definition: ntsecapi.h:593
_Must_inspect_result_ _In_ WDFCHILDLIST _In_ PWDF_CHILD_LIST_ITERATOR _Out_ WDFDEVICE _Inout_opt_ PWDF_CHILD_RETRIEVE_INFO Info
Definition: wdfchildlist.h:690
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryPdAccount()
| NTSTATUS LsarQueryPdAccount | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 267 of file policy.c.
269{
271
272 *PolicyInformation = NULL;
273
277
281
282 *PolicyInformation = (PLSAPR_POLICY_INFORMATION)PdAccountInfo;
283
285}
Definition: msv1_0.h:251
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryPrimaryDomain()
| NTSTATUS LsarQueryPrimaryDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 157 of file policy.c.
159{
161 PUNICODE_STRING DomainName;
162 ULONG AttributeSize;
164
165 *PolicyInformation = NULL;
166
170
171 /* Domain Name */
172 AttributeSize = 0;
175 NULL,
176 &AttributeSize);
178 {
179 goto Done;
180 }
181
182 if (AttributeSize > 0)
183 {
184 DomainName = MIDL_user_allocate(AttributeSize);
186 {
188 goto Done;
189 }
190
193 DomainName,
194 &AttributeSize);
196 {
198
200
203 {
204 MIDL_user_free(DomainName);
206 goto Done;
207 }
208
212 DomainName->Buffer,
213 DomainName->MaximumLength);
214 }
215
216 MIDL_user_free(DomainName);
217 }
218
219 /* Domain SID */
220 AttributeSize = 0;
223 NULL,
224 &AttributeSize);
226 {
227 goto Done;
228 }
229
230 if (AttributeSize > 0)
231 {
234 {
236 goto Done;
237 }
238
241 p->Sid,
242 &AttributeSize);
243 }
244
246
247Done:
249 {
251 {
254
257
259 }
260 }
261
263}
Definition: msv1_0.h:239
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryReplicaSource()
| NTSTATUS LsarQueryReplicaSource | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 436 of file policy.c.
Referenced by LsarQueryInformationPolicy().
◆ LsarQueryServerRole()
| NTSTATUS LsarQueryServerRole | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_INFORMATION * | PolicyInformation | ||
| ) |
Definition at line 398 of file policy.c.
400{
402 ULONG AttributeSize;
404
405 *PolicyInformation = NULL;
406
408 ServerRoleInfo = MIDL_user_allocate(AttributeSize);
411
414 ServerRoleInfo,
415 &AttributeSize);
417 {
420 }
421
423 {
424 MIDL_user_free(ServerRoleInfo);
425 }
426 else
427 {
428 *PolicyInformation = (PLSAPR_POLICY_INFORMATION)ServerRoleInfo;
429 }
430
432}
struct _POLICY_LSA_SERVER_ROLE_INFO POLICY_LSA_SERVER_ROLE_INFO
Definition: ntsecapi.h:583
POLICY_LSA_SERVER_ROLE LsaServerRole
Definition: ntsecapi.h:584
Referenced by LsarQueryInformationPolicy().
◆ LsarSetAccountDomain()
| NTSTATUS LsarSetAccountDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_ACCOUNT_DOM_INFO | Info | ||
| ) |
Definition at line 876 of file policy.c.
878{
883
885
888 0,
889 Length);
892
898
901 Buffer,
902 Length);
903
905
908
909 Length = 0;
912
916 Length);
917
919}
NTSTATUS LsapSetObjectAttribute(PLSA_DB_OBJECT DbObject, LPWSTR AttributeName, LPVOID AttributeData, ULONG AttributeSize)
Definition: database.c:961
struct _UNICODE_STRING UNICODE_STRING
Referenced by LsarSetInformationPolicy().
◆ LsarSetAuditEvents()
| NTSTATUS LsarSetAuditEvents | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_AUDIT_EVENTS_INFO | Info | ||
| ) |
Definition at line 792 of file policy.c.
794{
796 ULONG AttributeSize;
798
800
803
804 AuditData = RtlAllocateHeap(RtlGetProcessHeap(),
805 HEAP_ZERO_MEMORY,
806 AttributeSize);
809
812
814 Info->EventAuditingOptions,
816
819 AuditData,
820 AttributeSize);
821
822 RtlFreeHeap(RtlGetProcessHeap(), 0, AuditData);
823
825}
struct _LSAP_POLICY_AUDIT_EVENTS_DATA LSAP_POLICY_AUDIT_EVENTS_DATA
Referenced by LsarSetInformationPolicy().
◆ LsarSetAuditFull()
| NTSTATUS LsarSetAuditFull | ( | PLSA_DB_OBJECT | PolicyObject, |
| PPOLICY_AUDIT_FULL_QUERY_INFO | Info | ||
| ) |
Definition at line 971 of file policy.c.
973{
975 ULONG AttributeSize;
977
979
981 AuditFullInfo = MIDL_user_allocate(AttributeSize);
984
987 AuditFullInfo,
988 &AttributeSize);
990 goto done;
991
993
996 AuditFullInfo,
997 AttributeSize);
998
999done:
1001 MIDL_user_free(AuditFullInfo);
1002
1004}
Referenced by LsarSetInformationPolicy().
◆ LsarSetAuditLog()
| NTSTATUS LsarSetAuditLog | ( | PLSA_DB_OBJECT | PolicyObject, |
| PPOLICY_AUDIT_LOG_INFO | Info | ||
| ) |
Definition at line 779 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarSetDefaultQuota()
| NTSTATUS LsarSetDefaultQuota | ( | PLSA_DB_OBJECT | PolicyObject, |
| PPOLICY_DEFAULT_QUOTA_INFO | Info | ||
| ) |
Definition at line 945 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarSetDnsDomain()
| NTSTATUS LsarSetDnsDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_DNS_DOMAIN_INFO | Info | ||
| ) |
Definition at line 1008 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarSetDnsDomainInt()
| NTSTATUS LsarSetDnsDomainInt | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_DNS_DOMAIN_INFO | Info | ||
| ) |
Definition at line 1017 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarSetLocalAccountDomain()
| NTSTATUS LsarSetLocalAccountDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_ACCOUNT_DOM_INFO | Info | ||
| ) |
Definition at line 1026 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarSetModification()
| NTSTATUS LsarSetModification | ( | PLSA_DB_OBJECT | PolicyObject, |
| PPOLICY_MODIFICATION_INFO | Info | ||
| ) |
Definition at line 958 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarSetPrimaryDomain()
| NTSTATUS LsarSetPrimaryDomain | ( | PLSA_DB_OBJECT | PolicyObject, |
| PLSAPR_POLICY_PRIMARY_DOM_INFO | Info | ||
| ) |
◆ LsarSetReplicaSource()
| NTSTATUS LsarSetReplicaSource | ( | PLSA_DB_OBJECT | PolicyObject, |
| PPOLICY_LSA_REPLICA_SRCE_INFO | Info | ||
| ) |
Definition at line 936 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarSetServerRole()
| NTSTATUS LsarSetServerRole | ( | PLSA_DB_OBJECT | PolicyObject, |
| PPOLICY_LSA_SERVER_ROLE_INFO | Info | ||
| ) |
Definition at line 923 of file policy.c.
Referenced by LsarSetInformationPolicy().
◆ LsarStartRpcServer()
Definition at line 40 of file lsarpc.c.
41{
43 DWORD dwError;
45
47
49
53 NULL);
55 {
58 }
59
61 NULL,
62 NULL);
64 {
67 }
68
69 DsSetupInit();
70
73 {
76 }
77
78 /* Notify the service manager */
81 TRUE,
82 FALSE,
85 {
86 dwError = GetLastError();
88#if 0
90 {
92 FALSE,
95 {
98 }
99 }
100#endif
102 }
103
106
107 /* NOTE: Do not close the event handle, as it must remain alive! */
108
111}
NTSYSAPI NTSTATUS NTAPI RtlInitializeCriticalSection(_In_ PRTL_CRITICAL_SECTION CriticalSection)
RPC_STATUS WINAPI RpcServerListen(UINT MinimumCallThreads, UINT MaxCalls, UINT DontWait)
Definition: rpc_server.c:1520
RPC_STATUS WINAPI RpcServerUseProtseqEpW(RPC_WSTR Protseq, UINT MaxCalls, RPC_WSTR Endpoint, LPVOID SecurityDescriptor)
Definition: rpc_server.c:927
HANDLE WINAPI DECLSPEC_HOTPATCH OpenEventW(IN DWORD dwDesiredAccess, IN BOOL bInheritHandle, IN LPCWSTR lpName)
Definition: synch.c:682
HANDLE WINAPI DECLSPEC_HOTPATCH CreateEventW(IN LPSECURITY_ATTRIBUTES lpEventAttributes OPTIONAL, IN BOOL bManualReset, IN BOOL bInitialState, IN LPCWSTR lpName OPTIONAL)
Definition: synch.c:651
Referenced by LsapInitLsa().
◆ StartAuthenticationPort()
Definition at line 327 of file authport.c.
328{
331 DWORD ThreadId;
332 UNICODE_STRING EventName;
335
337
338 /* Initialize the logon context list */
340
343
345 &PortName,
346 0,
347 NULL,
348 NULL);
349
351 &ObjectAttributes,
356 {
359 }
360
361 RtlInitUnicodeString(&EventName,
364 &EventName,
366 NULL,
367 NULL);
369 EVENT_MODIFY_STATE,
370 &ObjectAttributes);
372 {
374
376 EVENT_MODIFY_STATE,
377 &ObjectAttributes,
378 NotificationEvent,
379 FALSE);
381 {
384 }
385 }
386
390 {
393 }
394
396 0x1000,
398 NULL,
399 0,
400 &ThreadId);
401
402
404}
NTSTATUS NTAPI NtCreateEvent(OUT PHANDLE EventHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL, IN EVENT_TYPE EventType, IN BOOLEAN InitialState)
Definition: event.c:96
Definition: lsass.h:176
Definition: lsass.h:32
Referenced by LsapInitLsa().
◆ WINE_DEFAULT_DEBUG_CHANNEL()
| WINE_DEFAULT_DEBUG_CHANNEL | ( | lsasrv | ) |
Variable Documentation
◆ AccountDomainName
|
extern |
Definition at line 26 of file database.c.
Referenced by LsapGetDomainInfo(), LsapLookupAccountDomainSids(), LsapLookupAccountNames(), LsapLookupIsolatedAccountNames(), and LsapLookupIsolatedNames().
◆ AccountDomainSid
|
extern |
Definition at line 24 of file database.c.
Referenced by BuildTokenGroups(), BuildTokenInformationBuffer(), BuildTokenPrimaryGroup(), BuildTokenUser(), BuildUserInfoBuffer(), GetAccountDomainSid(), GetUserPrivileges(), LsaApLogonUserEx2(), LsapAddSamGroups(), LsapCreateDatabaseObjects(), LsapGetDomainInfo(), LsapLookupAccountDomainSids(), LsapLookupAccountNames(), LsapLookupIsolatedAccountNames(), LsapLookupIsolatedNames(), NetUserGetGroups(), NetUserGetInfo(), NetUserGetLocalGroups(), and SamValidateNormalUser().
◆ BuiltinDomainName
|
extern |
Definition at line 25 of file database.c.
Referenced by LsapGetDomainInfo(), LsapLookupBuiltinDomainSids(), LsapLookupBuiltinNames(), LsapLookupIsolatedBuiltinNames(), and LsapLookupIsolatedNames().
◆ BuiltinDomainSid
|
extern |
Definition at line 16 of file globals.c.
Referenced by GetBuiltinDomainSid(), LsapAddSamGroups(), LsapGetDomainInfo(), LsapLookupBuiltinDomainSids(), LsapLookupBuiltinNames(), LsapLookupIsolatedBuiltinNames(), LsapLookupIsolatedNames(), NetUserGetInfo(), ScCreateWellKnownSids(), and SvchostBuildSharedGlobals().
◆ CreatorSidAuthority
|
extern |
Definition at line 20 of file database.c.
Referenced by LsapInitSids().
◆ LocalSidAuthority
|
extern |
Definition at line 19 of file database.c.
Referenced by LsapInitSids().
◆ LsapAdministratorsSid
|
extern |
Definition at line 84 of file lookup.c.
Referenced by LsapInitSids(), and LsapSetTokenOwner().
◆ LsapBatchSid
|
extern |
Definition at line 80 of file lookup.c.
Referenced by LsapAddDefaultGroups(), and LsapInitSids().
◆ LsapInteractiveSid
|
extern |
Definition at line 81 of file lookup.c.
Referenced by LsapAddDefaultGroups(), and LsapInitSids().
◆ LsapLocalSystemSid
|
extern |
Definition at line 83 of file lookup.c.
Referenced by LsapAddTokenDefaultDacl(), and LsapInitSids().
◆ LsapNetworkSid
|
extern |
Definition at line 79 of file lookup.c.
Referenced by LsapAddDefaultGroups(), and LsapInitSids().
◆ LsapProductType
|
extern |
Definition at line 13 of file lsasrv.c.
Referenced by LsapInitLsa(), LsarCreateTrustedDomain(), LsarCreateTrustedDomainEx(), LsarCreateTrustedDomainEx2(), LsarDeleteTrustedDomain(), LsarEnumerateTrustedDomainsEx(), LsarOpenTrustedDomain(), LsarOpenTrustedDomainByName(), LsarQueryTrustedDomainInfo(), LsarQueryTrustedDomainInfoByName(), LsarSetTrustedDomainInfo(), and LsarSetTrustedDomainInfoByName().
◆ LsapServiceSid
|
extern |
Definition at line 82 of file lookup.c.
Referenced by LsapAddDefaultGroups(), and LsapInitSids().
◆ LsapWorldSid
|
extern |
Definition at line 78 of file lookup.c.
Referenced by LsapAddDefaultGroups(), LsapInitSids(), and LsapLogonUser().
◆ NtAuthority
|
extern |
Definition at line 21 of file database.c.
Referenced by LsapCreateRandomDomainSid(), and LsapGetDomainInfo().
◆ NullSidAuthority
|
extern |
Definition at line 17 of file database.c.
Referenced by LsapInitSids().
◆ WorldSidAuthority
|
extern |
Definition at line 18 of file database.c.
Referenced by LsapCreateAccountSd(), LsapCreatePolicySd(), LsapCreateSecretSd(), and LsapInitSids().
