|
ReactOS
0.4.15-dev-4853-g3a72a52
|
Go to the source code of this file.
Classes | |
| struct | _KNOWN_ACE |
| struct | _KNOWN_OBJECT_ACE |
| struct | _KNOWN_COMPOUND_ACE |
| struct | _ACCESS_CHECK_RIGHTS |
| struct | _TOKEN_AUDIT_POLICY_INFORMATION |
Macros | |
| #define | TOKEN_CREATE_METHOD 0xCUL |
| #define | TOKEN_DUPLICATE_METHOD 0xDUL |
| #define | TOKEN_FILTER_METHOD 0xFUL |
| #define | SepAcquireTokenLockExclusive(Token) |
| #define | SepAcquireTokenLockShared(Token) |
| #define | SepReleaseTokenLock(Token) |
Typedefs | |
| typedef struct _KNOWN_ACE | KNOWN_ACE |
| typedef struct _KNOWN_ACE * | PKNOWN_ACE |
| typedef struct _KNOWN_OBJECT_ACE | KNOWN_OBJECT_ACE |
| typedef struct _KNOWN_OBJECT_ACE * | PKNOWN_OBJECT_ACE |
| typedef struct _KNOWN_COMPOUND_ACE | KNOWN_COMPOUND_ACE |
| typedef struct _KNOWN_COMPOUND_ACE * | PKNOWN_COMPOUND_ACE |
| typedef struct _ACCESS_CHECK_RIGHTS | ACCESS_CHECK_RIGHTS |
| typedef struct _ACCESS_CHECK_RIGHTS * | PACCESS_CHECK_RIGHTS |
| typedef enum _ACCESS_CHECK_RIGHT_TYPE | ACCESS_CHECK_RIGHT_TYPE |
| typedef struct _TOKEN_AUDIT_POLICY_INFORMATION | TOKEN_AUDIT_POLICY_INFORMATION |
| typedef struct _TOKEN_AUDIT_POLICY_INFORMATION * | PTOKEN_AUDIT_POLICY_INFORMATION |
Enumerations | |
| enum | _ACCESS_CHECK_RIGHT_TYPE { AccessCheckMaximum, AccessCheckRegular } |
Functions | |
| FORCEINLINE PSID | SepGetGroupFromDescriptor (_Inout_ PVOID _Descriptor) |
| FORCEINLINE PSID | SepGetOwnerFromDescriptor (_Inout_ PVOID _Descriptor) |
| FORCEINLINE PACL | SepGetDaclFromDescriptor (_Inout_ PVOID _Descriptor) |
| FORCEINLINE PACL | SepGetSaclFromDescriptor (_Inout_ PVOID _Descriptor) |
| VOID NTAPI | SepInitializeTokenImplementation (VOID) |
| Internal function that initializes critical kernel data for access token implementation in SRM. More... | |
| PTOKEN NTAPI | SepCreateSystemProcessToken (VOID) |
| Creates the system process token. More... | |
| PTOKEN | SepCreateSystemAnonymousLogonToken (VOID) |
| Creates the anonymous logon token for the system. The difference between this token and the other one is the inclusion of everyone SID group (being SeWorldSid). The other token lacks such group. More... | |
| PTOKEN | SepCreateSystemAnonymousLogonTokenNoEveryone (VOID) |
| Creates the anonymous logon token for the system. This kind of token doesn't include the everyone SID group (being SeWorldSid). More... | |
| NTSTATUS NTAPI | SepDuplicateToken (_In_ PTOKEN Token, _In_opt_ POBJECT_ATTRIBUTES ObjectAttributes, _In_ BOOLEAN EffectiveOnly, _In_ TOKEN_TYPE TokenType, _In_ SECURITY_IMPERSONATION_LEVEL Level, _In_ KPROCESSOR_MODE PreviousMode, _Out_ PTOKEN *NewAccessToken) |
| Duplicates an access token, from an existing valid token. More... | |
| NTSTATUS NTAPI | SepCreateToken (_Out_ PHANDLE TokenHandle, _In_ KPROCESSOR_MODE PreviousMode, _In_ ACCESS_MASK DesiredAccess, _In_opt_ POBJECT_ATTRIBUTES ObjectAttributes, _In_ TOKEN_TYPE TokenType, _In_ SECURITY_IMPERSONATION_LEVEL ImpersonationLevel, _In_ PLUID AuthenticationId, _In_ PLARGE_INTEGER ExpirationTime, _In_ PSID_AND_ATTRIBUTES User, _In_ ULONG GroupCount, _In_ PSID_AND_ATTRIBUTES Groups, _In_ ULONG GroupsLength, _In_ ULONG PrivilegeCount, _In_ PLUID_AND_ATTRIBUTES Privileges, _In_opt_ PSID Owner, _In_ PSID PrimaryGroup, _In_opt_ PACL DefaultDacl, _In_ PTOKEN_SOURCE TokenSource, _In_ BOOLEAN SystemToken) |
| Internal function responsible for access token object creation in the kernel. A fully created token objected is inserted into the token handle, thus the handle becoming a valid handle to an access token object and ready for use. More... | |
| BOOLEAN NTAPI | SepTokenIsOwner (_In_ PACCESS_TOKEN _Token, _In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ BOOLEAN TokenLocked) |
| Checks if a token belongs to the main user, being the owner. More... | |
| NTSTATUS | SepCreateTokenLock (_Inout_ PTOKEN Token) |
| Creates a lock for the token. More... | |
| VOID | SepDeleteTokenLock (_Inout_ PTOKEN Token) |
| Deletes a lock of a token. More... | |
| VOID | SepUpdatePrivilegeFlagsToken (_Inout_ PTOKEN Token) |
| Updates the token's flags based upon the privilege that the token has been granted. The function uses the private helper, SepUpdateSinglePrivilegeFlagToken, in order to update the flags of a token. More... | |
| NTSTATUS | SepFindPrimaryGroupAndDefaultOwner (_In_ PTOKEN Token, _In_ PSID PrimaryGroup, _In_opt_ PSID DefaultOwner, _Out_opt_ PULONG PrimaryGroupIndex, _Out_opt_ PULONG DefaultOwnerIndex) |
| Finds the primary group and default owner entity based on the submitted primary group instance and an access token. More... | |
| VOID | SepUpdateSinglePrivilegeFlagToken (_Inout_ PTOKEN Token, _In_ ULONG Index) |
| Updates the token's flags based upon the privilege that the token has been granted. The flag can either be taken out or given to the token if the attributes of the specified privilege is enabled or not. More... | |
| VOID | SepRemovePrivilegeToken (_Inout_ PTOKEN Token, _In_ ULONG Index) |
| Removes a privilege from the token. More... | |
| VOID | SepRemoveUserGroupToken (_Inout_ PTOKEN Token, _In_ ULONG Index) |
| Removes a group from the token. More... | |
| BOOLEAN NTAPI | SeTokenCanImpersonate (_In_ PTOKEN ProcessToken, _In_ PTOKEN TokenToImpersonate, _In_ SECURITY_IMPERSONATION_LEVEL ImpersonationLevel) |
| Ensures that client impersonation can occur by checking if the token we're going to assign as the impersonation token can be actually impersonated in the first place. The routine is used primarily by PsImpersonateClient. More... | |
| VOID NTAPI | SeGetTokenControlInformation (_In_ PACCESS_TOKEN _Token, _Out_ PTOKEN_CONTROL TokenControl) |
| Retrieves token control information. More... | |
| VOID NTAPI | SeDeassignPrimaryToken (_Inout_ PEPROCESS Process) |
| Removes the primary token of a process. More... | |
| NTSTATUS NTAPI | SeSubProcessToken (_In_ PTOKEN Parent, _Out_ PTOKEN *Token, _In_ BOOLEAN InUse, _In_ ULONG SessionId) |
| Subtracts a token in exchange of duplicating a new one. More... | |
| NTSTATUS NTAPI | SeIsTokenChild (_In_ PTOKEN Token, _Out_ PBOOLEAN IsChild) |
| Checks if the token is a child of the other token of the current process that the calling thread is invoking this function. More... | |
| NTSTATUS NTAPI | SeIsTokenSibling (_In_ PTOKEN Token, _Out_ PBOOLEAN IsSibling) |
| Checks if the token is a sibling of the other token of the current process that the calling thread is invoking this function. More... | |
| NTSTATUS NTAPI | SeExchangePrimaryToken (_In_ PEPROCESS Process, _In_ PACCESS_TOKEN NewAccessToken, _Out_ PACCESS_TOKEN *OldAccessToken) |
| Replaces the old access token of a process (pointed by the EPROCESS kernel structure) with a new access token. The new access token must be a primary token for use. More... | |
| NTSTATUS NTAPI | SeCopyClientToken (_In_ PACCESS_TOKEN Token, _In_ SECURITY_IMPERSONATION_LEVEL Level, _In_ KPROCESSOR_MODE PreviousMode, _Out_ PACCESS_TOKEN *NewToken) |
| Copies an existing access token (technically duplicating a new one). More... | |
| BOOLEAN NTAPI | SeTokenIsInert (_In_ PTOKEN Token) |
| Determines if a token is a sandbox inert token or not, based upon the token flags. More... | |
| ULONG | RtlLengthSidAndAttributes (_In_ ULONG Count, _In_ PSID_AND_ATTRIBUTES Src) |
| Computes the length size of a SID. More... | |
| BOOLEAN NTAPI | SeInitSystem (VOID) |
| Main security manager initialization function. More... | |
| NTSTATUS NTAPI | SeDefaultObjectMethod (_In_ PVOID Object, _In_ SECURITY_OPERATION_CODE OperationType, _In_ PSECURITY_INFORMATION SecurityInformation, _Inout_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor, _Inout_opt_ PULONG ReturnLength, _Inout_opt_ PSECURITY_DESCRIPTOR *OldSecurityDescriptor, _In_ POOL_TYPE PoolType, _In_ PGENERIC_MAPPING GenericMapping) |
| VOID NTAPI | SeQuerySecurityAccessMask (_In_ SECURITY_INFORMATION SecurityInformation, _Out_ PACCESS_MASK DesiredAccess) |
| Queries the access mask from a security information context. More... | |
| VOID NTAPI | SeSetSecurityAccessMask (_In_ SECURITY_INFORMATION SecurityInformation, _Out_ PACCESS_MASK DesiredAccess) |
| Sets the access mask for a security information context. More... | |
| VOID NTAPI | SepInitPrivileges (VOID) |
| Initializes the privileges during the startup phase of the security manager module. This function serves as a placeholder as it currently does nothing. More... | |
| BOOLEAN NTAPI | SepPrivilegeCheck (_In_ PTOKEN Token, _In_ PLUID_AND_ATTRIBUTES Privileges, _In_ ULONG PrivilegeCount, _In_ ULONG PrivilegeControl, _In_ KPROCESSOR_MODE PreviousMode) |
| Checks the privileges pointed by Privileges array argument if they exist and match with the privileges from an access token. More... | |
| NTSTATUS NTAPI | SePrivilegePolicyCheck (_Inout_ PACCESS_MASK DesiredAccess, _Inout_ PACCESS_MASK GrantedAccess, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ PTOKEN Token, _Out_opt_ PPRIVILEGE_SET *OutPrivilegeSet, _In_ KPROCESSOR_MODE PreviousMode) |
| Checks the security policy and returns a set of privileges based upon the said security policy context. More... | |
| BOOLEAN NTAPI | SeCheckAuditPrivilege (_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ KPROCESSOR_MODE PreviousMode) |
| Checks a single privilege and performs an audit against a privileged service based on a security subject context. More... | |
| BOOLEAN NTAPI | SeCheckPrivilegedObject (_In_ LUID PrivilegeValue, _In_ HANDLE ObjectHandle, _In_ ACCESS_MASK DesiredAccess, _In_ KPROCESSOR_MODE PreviousMode) |
| Checks a privileged object if such object has the specific privilege submitted by the caller. More... | |
| NTSTATUS NTAPI | SeCaptureLuidAndAttributesArray (_In_ PLUID_AND_ATTRIBUTES Src, _In_ ULONG PrivilegeCount, _In_ KPROCESSOR_MODE PreviousMode, _In_ PLUID_AND_ATTRIBUTES AllocatedMem, _In_ ULONG AllocatedLength, _In_ POOL_TYPE PoolType, _In_ BOOLEAN CaptureIfKernel, _Out_ PLUID_AND_ATTRIBUTES *Dest, _Inout_ PULONG Length) |
| VOID NTAPI | SeReleaseLuidAndAttributesArray (_In_ PLUID_AND_ATTRIBUTES Privilege, _In_ KPROCESSOR_MODE PreviousMode, _In_ BOOLEAN CaptureIfKernel) |
| Releases a LUID with attributes structure. More... | |
| BOOLEAN NTAPI | SepInitSecurityIDs (VOID) |
| Initializes all the SIDs known in the system. More... | |
| NTSTATUS NTAPI | SepCaptureSid (_In_ PSID InputSid, _In_ KPROCESSOR_MODE AccessMode, _In_ POOL_TYPE PoolType, _In_ BOOLEAN CaptureIfKernel, _Out_ PSID *CapturedSid) |
| Captures a SID. More... | |
| VOID NTAPI | SepReleaseSid (_In_ PSID CapturedSid, _In_ KPROCESSOR_MODE AccessMode, _In_ BOOLEAN CaptureIfKernel) |
| Releases a captured SID. More... | |
| BOOLEAN NTAPI | SepSidInToken (_In_ PACCESS_TOKEN _Token, _In_ PSID Sid) |
| Checks if a SID is present in a token. More... | |
| BOOLEAN NTAPI | SepSidInTokenEx (_In_ PACCESS_TOKEN _Token, _In_ PSID PrincipalSelfSid, _In_ PSID _Sid, _In_ BOOLEAN Deny, _In_ BOOLEAN Restricted) |
| Checks if a SID is present in a token. More... | |
| PSID NTAPI | SepGetSidFromAce (_In_ UCHAR AceType, _In_ PACE Ace) |
| Captures a security identifier from a given access control entry. This identifier is valid for the whole of its lifetime. More... | |
| NTSTATUS NTAPI | SeCaptureSidAndAttributesArray (_In_ PSID_AND_ATTRIBUTES SrcSidAndAttributes, _In_ ULONG AttributeCount, _In_ KPROCESSOR_MODE PreviousMode, _In_opt_ PVOID AllocatedMem, _In_ ULONG AllocatedLength, _In_ POOL_TYPE PoolType, _In_ BOOLEAN CaptureIfKernel, _Out_ PSID_AND_ATTRIBUTES *CapturedSidAndAttributes, _Out_ PULONG ResultLength) |
| Captures a SID with attributes. More... | |
| VOID NTAPI | SeReleaseSidAndAttributesArray (_In_ _Post_invalid_ PSID_AND_ATTRIBUTES CapturedSidAndAttributes, _In_ KPROCESSOR_MODE AccessMode, _In_ BOOLEAN CaptureIfKernel) |
| Releases a captured SID with attributes. More... | |
| BOOLEAN NTAPI | SepInitDACLs (VOID) |
| Initializes known discretionary access control lists in the system upon kernel and Executive initialization procedure. More... | |
| NTSTATUS NTAPI | SepCreateImpersonationTokenDacl (_In_ PTOKEN Token, _In_ PTOKEN PrimaryToken, _Out_ PACL *Dacl) |
| Allocates a discretionary access control list based on certain properties of a regular and primary access tokens. More... | |
| NTSTATUS NTAPI | SepCaptureAcl (_In_ PACL InputAcl, _In_ KPROCESSOR_MODE AccessMode, _In_ POOL_TYPE PoolType, _In_ BOOLEAN CaptureIfKernel, _Out_ PACL *CapturedAcl) |
| Captures an access control list from an already valid input ACL. More... | |
| VOID NTAPI | SepReleaseAcl (_In_ PACL CapturedAcl, _In_ KPROCESSOR_MODE AccessMode, _In_ BOOLEAN CaptureIfKernel) |
| Releases (frees) a captured ACL from the memory pool. More... | |
| NTSTATUS | SepPropagateAcl (_Out_writes_bytes_opt_(DaclLength) PACL AclDest, _Inout_ PULONG AclLength, _In_reads_bytes_(AclSource->AclSize) PACL AclSource, _In_ PSID Owner, _In_ PSID Group, _In_ BOOLEAN IsInherited, _In_ BOOLEAN IsDirectoryObject, _In_ PGENERIC_MAPPING GenericMapping) |
| PACL | SepSelectAcl (_In_opt_ PACL ExplicitAcl, _In_ BOOLEAN ExplicitPresent, _In_ BOOLEAN ExplicitDefaulted, _In_opt_ PACL ParentAcl, _In_opt_ PACL DefaultAcl, _Out_ PULONG AclLength, _In_ PSID Owner, _In_ PSID Group, _Out_ PBOOLEAN AclPresent, _Out_ PBOOLEAN IsInherited, _In_ BOOLEAN IsDirectoryObject, _In_ PGENERIC_MAPPING GenericMapping) |
| Selects an ACL and returns it to the caller. More... | |
| BOOLEAN NTAPI | SepInitSDs (VOID) |
| Initializes the known security descriptors in the system. More... | |
| NTSTATUS NTAPI | SeSetWorldSecurityDescriptor (_In_ SECURITY_INFORMATION SecurityInformation, _In_ PISECURITY_DESCRIPTOR SecurityDescriptor, _In_ PULONG BufferLength) |
| Sets a "World" security descriptor. More... | |
| NTSTATUS NTAPI | SeComputeQuotaInformationSize (_In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _Out_ PULONG QuotaInfoSize) |
| BOOLEAN NTAPI | SeRmInitPhase0 (VOID) |
| Manages the phase 0 initialization of the security reference monitoring module of the kernel. More... | |
| BOOLEAN NTAPI | SeRmInitPhase1 (VOID) |
| Manages the phase 1 initialization of the security reference monitoring module of the kernel. More... | |
| NTSTATUS NTAPI | SepRmInsertLogonSessionIntoToken (_Inout_ PTOKEN Token) |
| Inserts a logon session into an access token specified by the caller. More... | |
| NTSTATUS NTAPI | SepRmRemoveLogonSessionFromToken (_Inout_ PTOKEN Token) |
| Removes a logon session from an access token. More... | |
| NTSTATUS | SepRmReferenceLogonSession (_Inout_ PLUID LogonLuid) |
| NTSTATUS | SepRmDereferenceLogonSession (_Inout_ PLUID LogonLuid) |
| NTSTATUS NTAPI | SepRegQueryHelper (_In_ PCWSTR KeyName, _In_ PCWSTR ValueName, _In_ ULONG ValueType, _In_ ULONG DataLength, _Out_ PVOID ValueData) |
| A private registry helper that returns the desired value data based on the specifics requested by the caller. More... | |
| NTSTATUS NTAPI | SeGetLogonIdDeviceMap (_In_ PLUID LogonId, _Out_ PDEVICE_MAP *DeviceMap) |
| Retrieves the DOS device map from a logon session. More... | |
| NTSTATUS NTAPI | SeInitializeProcessAuditName (_In_ PFILE_OBJECT FileObject, _In_ BOOLEAN DoAudit, _Out_ POBJECT_NAME_INFORMATION *AuditInfo) |
| Initializes a process audit name and returns it to the caller. More... | |
| BOOLEAN NTAPI | SeDetailedAuditingWithToken (_In_ PTOKEN Token) |
| Peforms a detailed security auditing with an access token. More... | |
| VOID NTAPI | SeAuditProcessExit (_In_ PEPROCESS Process) |
| Peforms a security auditing against a process that is about to be terminated. More... | |
| VOID NTAPI | SeAuditProcessCreate (_In_ PEPROCESS Process) |
| Peforms a security auditing against a process that is about to be created. More... | |
| VOID NTAPI | SePrivilegedServiceAuditAlarm (_In_opt_ PUNICODE_STRING ServiceName, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ PPRIVILEGE_SET PrivilegeSet, _In_ BOOLEAN AccessGranted) |
| Performs an audit alarm to a privileged service request. More... | |
| VOID NTAPI | SeCaptureSubjectContextEx (_In_ PETHREAD Thread, _In_ PEPROCESS Process, _Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext) |
| An extended function that captures the security subject context based upon the specified thread and process. More... | |
| NTSTATUS NTAPI | SepCaptureSecurityQualityOfService (_In_opt_ POBJECT_ATTRIBUTES ObjectAttributes, _In_ KPROCESSOR_MODE AccessMode, _In_ POOL_TYPE PoolType, _In_ BOOLEAN CaptureIfKernel, _Out_ PSECURITY_QUALITY_OF_SERVICE *CapturedSecurityQualityOfService, _Out_ PBOOLEAN Present) |
| Captures the security quality of service data given the object attributes from an object. More... | |
| VOID NTAPI | SepReleaseSecurityQualityOfService (_In_opt_ PSECURITY_QUALITY_OF_SERVICE CapturedSecurityQualityOfService, _In_ KPROCESSOR_MODE AccessMode, _In_ BOOLEAN CaptureIfKernel) |
| Releases (frees) the captured SQOS data from an object in the memory pool. More... | |
| NTSTATUS | SeCaptureObjectTypeList (_In_reads_opt_(ObjectTypeListLength) POBJECT_TYPE_LIST ObjectTypeList, _In_ ULONG ObjectTypeListLength, _In_ KPROCESSOR_MODE PreviousMode, _Out_ POBJECT_TYPE_LIST *CapturedObjectTypeList) |
| Captures a list of object types. More... | |
| VOID | SeReleaseObjectTypeList (_In_ _Post_invalid_ POBJECT_TYPE_LIST CapturedObjectTypeList, _In_ KPROCESSOR_MODE PreviousMode) |
| Releases a buffer list of object types. More... | |
| NTSTATUS NTAPI | SeCreateAccessStateEx (_In_ PETHREAD Thread, _In_ PEPROCESS Process, _In_ OUT PACCESS_STATE AccessState, _In_ PAUX_ACCESS_DATA AuxData, _In_ ACCESS_MASK Access, _In_ PGENERIC_MAPPING GenericMapping) |
| BOOLEAN NTAPI | SeFastTraverseCheck (_In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ PACCESS_STATE AccessState, _In_ ACCESS_MASK DesiredAccess, _In_ KPROCESSOR_MODE AccessMode) |
| Determines whether security access rights can be given to an object depending on the security descriptor. Unlike the regular access check procedure in the NT kernel, the fast traverse check is a faster way to quickly check if access can be made into an object. More... | |
| typedef struct _KNOWN_ACE KNOWN_ACE |
| typedef struct _KNOWN_OBJECT_ACE KNOWN_OBJECT_ACE |
| typedef struct _ACCESS_CHECK_RIGHTS * PACCESS_CHECK_RIGHTS |
| typedef struct _KNOWN_ACE * PKNOWN_ACE |
| typedef struct _KNOWN_COMPOUND_ACE * PKNOWN_COMPOUND_ACE |
| typedef struct _KNOWN_OBJECT_ACE * PKNOWN_OBJECT_ACE |
| ULONG RtlLengthSidAndAttributes | ( | _In_ ULONG | Count, |
| _In_ PSID_AND_ATTRIBUTES | Src | ||
| ) |
Computes the length size of a SID.
| [in] | Count | Total count of entries that have SIDs in them (that being PSID_AND_ATTRIBUTES in this context). |
| [in] | Src | Source that points to the attributes and SID entry structure. |
Definition at line 824 of file token.c.
Referenced by NtQueryInformationToken(), SepPerformTokenFiltering(), and SeQueryInformationToken().
Peforms a security auditing against a process that is about to be created.
@unimplemented
| [in] | Process | An object that points to a process which is in process of creation. |
Definition at line 56 of file audit.c.
Referenced by PspCreateProcess().
Peforms a security auditing against a process that is about to be terminated.
@unimplemented
| [in] | Process | An object that points to a process which is in process of termination. |
Definition at line 77 of file audit.c.
Referenced by PspExitThread().
| NTSTATUS NTAPI SeCaptureLuidAndAttributesArray | ( | _In_ PLUID_AND_ATTRIBUTES | Src, |
| _In_ ULONG | PrivilegeCount, | ||
| _In_ KPROCESSOR_MODE | PreviousMode, | ||
| _In_ PLUID_AND_ATTRIBUTES | AllocatedMem, | ||
| _In_ ULONG | AllocatedLength, | ||
| _In_ POOL_TYPE | PoolType, | ||
| _In_ BOOLEAN | CaptureIfKernel, | ||
| _Out_ PLUID_AND_ATTRIBUTES * | Dest, | ||
| _Inout_ PULONG | Length | ||
| ) |
Referenced by NtAdjustPrivilegesToken(), NtCreateToken(), and NtFilterToken().
| NTSTATUS SeCaptureObjectTypeList | ( | _In_reads_opt_(ObjectTypeListLength) POBJECT_TYPE_LIST | ObjectTypeList, |
| _In_ ULONG | ObjectTypeListLength, | ||
| _In_ KPROCESSOR_MODE | PreviousMode, | ||
| _Out_ POBJECT_TYPE_LIST * | CapturedObjectTypeList | ||
| ) |
Captures a list of object types.
| [in] | ObjectTypeList | An existing list of object types. |
| [in] | ObjectTypeListLength | The length size of the list. |
| [in] | PreviousMode | Processor access level mode. |
| [out] | CapturedObjectTypeList | The captured list of object types. |
Definition at line 39 of file objtype.c.
Referenced by SepAccessCheckAndAuditAlarm().
| NTSTATUS NTAPI SeCaptureSidAndAttributesArray | ( | _In_ PSID_AND_ATTRIBUTES | SrcSidAndAttributes, |
| _In_ ULONG | AttributeCount, | ||
| _In_ KPROCESSOR_MODE | PreviousMode, | ||
| _In_opt_ PVOID | AllocatedMem, | ||
| _In_ ULONG | AllocatedLength, | ||
| _In_ POOL_TYPE | PoolType, | ||
| _In_ BOOLEAN | CaptureIfKernel, | ||
| _Out_ PSID_AND_ATTRIBUTES * | CapturedSidAndAttributes, | ||
| _Out_ PULONG | ResultLength | ||
| ) |
Captures a SID with attributes.
| [in] | SrcSidAndAttributes | Source of the SID with attributes to be captured. |
| [in] | AttributeCount | The number count of attributes, in total. |
| [in] | PreviousMode | Processor access level mode. |
| [in] | AllocatedMem | The allocated memory buffer for the captured SID. If the caller supplies no allocated block of memory then the function will allocate some buffer block of memory for the captured SID automatically. |
| [in] | AllocatedLength | The length of the buffer that points to the allocated memory, in bytes. |
| [in] | PoolType | The pool type for the captured SID and attributes to assign. |
| [in] | CaptureIfKernel | If set to TRUE, the capturing is done within the kernel. Otherwise the capturing is done in a kernel mode driver. |
| [out] | CapturedSidAndAttributes | The captured SID and attributes. |
| [out] | ResultLength | The length of the captured SID and attributes, in bytes. |
For this reason, the logic of copying the SIDs and their attributes into a new buffer goes like this: first, allocate a buffer array that just holds the lengths and subauthority count of each SID. Such information is copied in the first loop. Then in a second loop, iterate over the array with SID provided and copy them into the final array. The moment we're doing this, validate the lengths of each SID basing upon the captured lengths we've got before. In this way we ensure that the SIDs have remained intact. The validation checks are done in user mode as a general rule that we just cannot trust UM and whatever data is coming from it.
Definition at line 696 of file sid.c.
Referenced by NtAdjustGroupsToken(), NtCreateToken(), and NtFilterToken().
| VOID NTAPI SeCaptureSubjectContextEx | ( | _In_ PETHREAD | Thread, |
| _In_ PEPROCESS | Process, | ||
| _Out_ PSECURITY_SUBJECT_CONTEXT | SubjectContext | ||
| ) |
An extended function that captures the security subject context based upon the specified thread and process.
| [in] | Thread | A thread where the calling thread's token is to be referenced for the security context. |
| [in] | Process | A process where the main process' token is to be referenced for the security context. |
| [out] | SubjectContext | The returned security subject context. |
Definition at line 41 of file subject.c.
Referenced by SeCaptureSubjectContext(), and SeCreateAccessStateEx().
| BOOLEAN NTAPI SeCheckAuditPrivilege | ( | _In_ PSECURITY_SUBJECT_CONTEXT | SubjectContext, |
| _In_ KPROCESSOR_MODE | PreviousMode | ||
| ) |
Checks a single privilege and performs an audit against a privileged service based on a security subject context.
| [in] | DesiredAccess | Security subject context used for privileged service auditing. |
| [in] | PreviousMode | Processor level access mode. |
Definition at line 360 of file priv.c.
Referenced by NtCloseObjectAuditAlarm(), NtOpenObjectAuditAlarm(), NtPrivilegedServiceAuditAlarm(), and SepAccessCheckAndAuditAlarm().
| BOOLEAN NTAPI SeCheckPrivilegedObject | ( | _In_ LUID | PrivilegeValue, |
| _In_ HANDLE | ObjectHandle, | ||
| _In_ ACCESS_MASK | DesiredAccess, | ||
| _In_ KPROCESSOR_MODE | PreviousMode | ||
| ) |
Checks a privileged object if such object has the specific privilege submitted by the caller.
| [in] | PrivilegeValue | A privilege to be checked against the one from the object. |
| [in] | ObjectHandle | A handle to any kind of object. |
| [in] | DesiredAccess | Desired access right mask requested by the caller. |
| [in] | PreviousMode | Processor level access mode. |
Definition at line 803 of file priv.c.
Referenced by NtSetInformationProcess(), and NtSetInformationThread().
| NTSTATUS NTAPI SeComputeQuotaInformationSize | ( | _In_ PSECURITY_DESCRIPTOR | SecurityDescriptor, |
| _Out_ PULONG | QuotaInfoSize | ||
| ) |
Referenced by ObpCaptureObjectCreateInformation().
| NTSTATUS NTAPI SeCopyClientToken | ( | _In_ PACCESS_TOKEN | Token, |
| _In_ SECURITY_IMPERSONATION_LEVEL | Level, | ||
| _In_ KPROCESSOR_MODE | PreviousMode, | ||
| _Out_ PACCESS_TOKEN * | NewToken | ||
| ) |
Copies an existing access token (technically duplicating a new one).
| [in] | Token | Token to copy. |
| [in] | Level | Impersonation security level to assign to the newly copied token. |
| [in] | PreviousMode | Processor request level mode. |
| [out] | NewToken | The newly copied token. |
Definition at line 1155 of file token.c.
Referenced by PsImpersonateClient(), and SepCreateClientSecurity().
| NTSTATUS NTAPI SeCreateAccessStateEx | ( | _In_ PETHREAD | Thread, |
| _In_ PEPROCESS | Process, | ||
| _In_ OUT PACCESS_STATE | AccessState, | ||
| _In_ PAUX_ACCESS_DATA | AuxData, | ||
| _In_ ACCESS_MASK | Access, | ||
| _In_ PGENERIC_MAPPING | GenericMapping | ||
| ) |
Referenced by PspCreateProcess(), and PspCreateThread().
Removes the primary token of a process.
| [in,out] | Process | The process instance with the access token to be removed. |
Definition at line 795 of file token.c.
Referenced by PspDeleteProcessSecurity(), and SeAssignPrimaryToken().
| NTSTATUS NTAPI SeDefaultObjectMethod | ( | _In_ PVOID | Object, |
| _In_ SECURITY_OPERATION_CODE | OperationType, | ||
| _In_ PSECURITY_INFORMATION | SecurityInformation, | ||
| _Inout_opt_ PSECURITY_DESCRIPTOR | SecurityDescriptor, | ||
| _Inout_opt_ PULONG | ReturnLength, | ||
| _Inout_opt_ PSECURITY_DESCRIPTOR * | OldSecurityDescriptor, | ||
| _In_ POOL_TYPE | PoolType, | ||
| _In_ PGENERIC_MAPPING | GenericMapping | ||
| ) |
Peforms a detailed security auditing with an access token.
@unimplemented
| [in] | Token | A valid token object. |
Definition at line 34 of file audit.c.
Referenced by ObInitProcess(), PspCreateProcess(), and PspExitThread().
| NTSTATUS NTAPI SeExchangePrimaryToken | ( | _In_ PEPROCESS | Process, |
| _In_ PACCESS_TOKEN | NewAccessToken, | ||
| _Out_ PACCESS_TOKEN * | OldAccessToken | ||
| ) |
Replaces the old access token of a process (pointed by the EPROCESS kernel structure) with a new access token. The new access token must be a primary token for use.
| [in] | Process | The process instance where its access token is about to be replaced. |
| [in] | NewAccessToken | The new token that it's going to replace the old one. |
| [out] | OldAccessToken | The returned old token that's been replaced, which the caller can do anything. |
Definition at line 705 of file token.c.
Referenced by PspAssignPrimaryToken().
| BOOLEAN NTAPI SeFastTraverseCheck | ( | _In_ PSECURITY_DESCRIPTOR | SecurityDescriptor, |
| _In_ PACCESS_STATE | AccessState, | ||
| _In_ ACCESS_MASK | DesiredAccess, | ||
| _In_ KPROCESSOR_MODE | AccessMode | ||
| ) |
Determines whether security access rights can be given to an object depending on the security descriptor. Unlike the regular access check procedure in the NT kernel, the fast traverse check is a faster way to quickly check if access can be made into an object.
| [in] | SecurityDescriptor | Security descriptor of the object that is being accessed. |
| [in] | AccessState | An access state to determine if the access token in the current security context of the object is an restricted token. |
| [in] | DesiredAccess | The access right bitmask where the calling thread wants to acquire. |
| [in] | AccessMode | Process level request mode. |
Definition at line 1047 of file accesschk.c.
Referenced by IopParseDevice(), and ObpCheckTraverseAccess().
Retrieves the DOS device map from a logon session.
| [in] | LogonId | A valid logon session ID. |
| [out] | DeviceMap | The returned device map buffer from the logon session. |
Definition at line 1347 of file srm.c.
Referenced by ObpReferenceDeviceMap(), and ObpSetCurrentProcessDeviceMap().
| VOID NTAPI SeGetTokenControlInformation | ( | _In_ PACCESS_TOKEN | _Token, |
| _Out_ PTOKEN_CONTROL | TokenControl | ||
| ) |
Retrieves token control information.
| [in] | _Token | A valid token object. |
| [out] | SecurityDescriptor | The returned token control information. |
Definition at line 1333 of file token.c.
Referenced by SepCreateClientSecurity().
| NTSTATUS NTAPI SeInitializeProcessAuditName | ( | _In_ PFILE_OBJECT | FileObject, |
| _In_ BOOLEAN | DoAudit, | ||
| _Out_ POBJECT_NAME_INFORMATION * | AuditInfo | ||
| ) |
Initializes a process audit name and returns it to the caller.
| [in] | FileObject | File object that points to a name to be queried. |
| [in] | DoAudit | If set to TRUE, the function will perform various security auditing onto the audit name. |
| [out] | AuditInfo | The returned audit info data. |
Definition at line 105 of file audit.c.
Referenced by MmInitializeProcessAddressSpace(), and SeLocateProcessImageName().
Main security manager initialization function.
Definition at line 285 of file semgr.c.
Referenced by ExpInitializeExecutive(), and Phase1InitializationDiscard().
Checks if the token is a child of the other token of the current process that the calling thread is invoking this function.
| [in] | Token | An access token to determine if it's a child or not. |
| [out] | IsChild | The returned boolean result. |
Definition at line 1046 of file token.c.
Referenced by PspSetPrimaryToken().
Checks if the token is a sibling of the other token of the current process that the calling thread is invoking this function.
| [in] | Token | An access token to determine if it's a sibling or not. |
| [out] | IsSibling | The returned boolean result. |
Definition at line 1095 of file token.c.
Referenced by PspSetPrimaryToken().
| NTSTATUS NTAPI SepCaptureAcl | ( | _In_ PACL | InputAcl, |
| _In_ KPROCESSOR_MODE | AccessMode, | ||
| _In_ POOL_TYPE | PoolType, | ||
| _In_ BOOLEAN | CaptureIfKernel, | ||
| _Out_ PACL * | CapturedAcl | ||
| ) |
Captures an access control list from an already valid input ACL.
| [in] | InputAcl | A valid ACL. |
| [in] | AccessMode | Processor level access mode. The processor mode determines how the input arguments are probed. |
| [in] | PoolType | Pool type for new captured ACL for creation. The pool type determines in which memory pool the ACL data should reside. |
| [in] | CaptureIfKernel | If set to TRUE and the processor access mode being KernelMode, we are capturing an ACL directly in the kernel. Otherwise we are capturing within a kernel mode driver. |
| [out] | CapturedAcl | The returned and allocated captured ACL. |
Definition at line 352 of file acl.c.
Referenced by NtCreateToken(), and NtSetInformationToken().
| NTSTATUS NTAPI SepCaptureSecurityQualityOfService | ( | _In_opt_ POBJECT_ATTRIBUTES | ObjectAttributes, |
| _In_ KPROCESSOR_MODE | AccessMode, | ||
| _In_ POOL_TYPE | PoolType, | ||
| _In_ BOOLEAN | CaptureIfKernel, | ||
| _Out_ PSECURITY_QUALITY_OF_SERVICE * | CapturedSecurityQualityOfService, | ||
| _Out_ PBOOLEAN | Present | ||
| ) |
Captures the security quality of service data given the object attributes from an object.
| [in] | ObjectAttributes | Attributes of an object where SQOS is to be retrieved. If the caller doesn't fill object attributes to the function, it automatically assumes SQOS is not present, or if, there's no SQOS present in the object attributes list of the object itself. |
| [in] | AccessMode | Processor access mode. |
| [in] | PoolType | The pool type for the captured SQOS to be used for allocation. |
| [in] | CaptureIfKernel | Capture access condition. To be set to TRUE if the capture is done within the kernel, FALSE if the capture is done in a kernel mode driver or user mode otherwise. |
| [out] | CapturedSecurityQualityOfService | The captured SQOS data from the object. |
| [out] | Present | Returns TRUE if SQOS is present in an object, FALSE otherwise. FALSE is also immediately returned if no object attributes is given to the call. |
Definition at line 52 of file sqos.c.
Referenced by NtDuplicateToken().
| NTSTATUS NTAPI SepCaptureSid | ( | _In_ PSID | InputSid, |
| _In_ KPROCESSOR_MODE | AccessMode, | ||
| _In_ POOL_TYPE | PoolType, | ||
| _In_ BOOLEAN | CaptureIfKernel, | ||
| _Out_ PSID * | CapturedSid | ||
| ) |
Captures a SID.
| [in] | InputSid | A valid security identifier to be captured. |
| [in] | AccessMode | Processor level access mode. |
| [in] | PoolType | Pool memory type for the captured SID to assign upon allocation. |
| [in] | CaptureIfKernel | If set to TRUE, the capturing is done within the kernel. Otherwise the capturing is done in a kernel mode driver. |
| [out] | CapturedSid | The captured security identifier, returned to the caller. |
Definition at line 314 of file sid.c.
Referenced by NtCreateToken(), NtSecureConnectPort(), NtSetInformationToken(), and SepAccessCheckAndAuditAlarm().
| NTSTATUS NTAPI SepCreateImpersonationTokenDacl | ( | _In_ PTOKEN | Token, |
| _In_ PTOKEN | PrimaryToken, | ||
| _Out_ PACL * | Dacl | ||
| ) |
Allocates a discretionary access control list based on certain properties of a regular and primary access tokens.
| [in] | Token | An access token. |
| [in] | PrimaryToken | A primary access token. |
| [out] | Dacl | The returned allocated DACL. |
Definition at line 277 of file acl.c.
Referenced by NtOpenThreadTokenEx().
Creates the anonymous logon token for the system. The difference between this token and the other one is the inclusion of everyone SID group (being SeWorldSid). The other token lacks such group.
Definition at line 1516 of file token.c.
Referenced by SepInitializationPhase0().
Creates the anonymous logon token for the system. This kind of token doesn't include the everyone SID group (being SeWorldSid).
Definition at line 1584 of file token.c.
Referenced by SepInitializationPhase0().
Creates the system process token.
Definition at line 1366 of file token.c.
Referenced by SepInitializationPhase0().
| NTSTATUS NTAPI SepCreateToken | ( | _Out_ PHANDLE | TokenHandle, |
| _In_ KPROCESSOR_MODE | PreviousMode, | ||
| _In_ ACCESS_MASK | DesiredAccess, | ||
| _In_opt_ POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| _In_ TOKEN_TYPE | TokenType, | ||
| _In_ SECURITY_IMPERSONATION_LEVEL | ImpersonationLevel, | ||
| _In_ PLUID | AuthenticationId, | ||
| _In_ PLARGE_INTEGER | ExpirationTime, | ||
| _In_ PSID_AND_ATTRIBUTES | User, | ||
| _In_ ULONG | GroupCount, | ||
| _In_ PSID_AND_ATTRIBUTES | Groups, | ||
| _In_ ULONG | GroupsLength, | ||
| _In_ ULONG | PrivilegeCount, | ||
| _In_ PLUID_AND_ATTRIBUTES | Privileges, | ||
| _In_opt_ PSID | Owner, | ||
| _In_ PSID | PrimaryGroup, | ||
| _In_opt_ PACL | DefaultDacl, | ||
| _In_ PTOKEN_SOURCE | TokenSource, | ||
| _In_ BOOLEAN | SystemToken | ||
| ) |
Internal function responsible for access token object creation in the kernel. A fully created token objected is inserted into the token handle, thus the handle becoming a valid handle to an access token object and ready for use.
| [out] | TokenHandle | Valid token handle that's ready for use after token creation and object insertion. |
| [in] | PreviousMode | Processor request level mode. |
| [in] | DesiredAccess | Desired access right for the token object to be granted. This kind of access right impacts how the token can be used and who. |
| [in] | ObjectAttributes | Object attributes for the token to be created. |
| [in] | TokenType | Type of token to assign upon creation. |
| [in] | ImpersonationLevel | Security impersonation level of token to assign upon creation. |
| [in] | AuthenticationId | Authentication ID that represents the authentication information of the token. |
| [in] | ExpirationTime | Expiration time of the token to assign. A value of -1 means that the token never expires and its life depends upon the amount of references this token object has. |
| [in] | User | User entry to assign to the token. |
| [in] | GroupCount | The total number of groups count for the token. |
| [in] | Groups | The group entries for the token. |
| [in] | GroupsLength | The length size of the groups array, pointed by the Groups parameter. |
| [in] | PrivilegeCount | The total number of priivleges that the newly created token has. |
| [in] | Privileges | The privileges for the token. |
| [in] | Owner | The main user (or also owner) that represents the token that we create. |
| [in] | PrimaryGroup | The main group that represents the token that we create. |
| [in] | DefaultDacl | A discretionary access control list for the token. |
| [in] | TokenSource | Source (or the origin) of the access token that creates it. |
| [in] | SystemToken | If set to TRUE, the newly created token is a system token and only in charge by the internal system. The function directly returns a pointer to the created token object for system kernel use. Otherwise if set to FALSE, the function inserts the object to a handle making it a regular access token. |
Definition at line 93 of file tokenlif.c.
Referenced by NtCreateToken(), SepCreateSystemAnonymousLogonToken(), SepCreateSystemAnonymousLogonTokenNoEveryone(), and SepCreateSystemProcessToken().
Creates a lock for the token.
| [in,out] | Token | A token which lock has to be created. |
Definition at line 45 of file token.c.
Referenced by SepCreateToken(), SepDuplicateToken(), and SepPerformTokenFiltering().
Deletes a lock of a token.
| [in,out] | Token | A token which contains the lock. |
Definition at line 74 of file token.c.
Referenced by SepDeleteToken().
| NTSTATUS NTAPI SepDuplicateToken | ( | _In_ PTOKEN | Token, |
| _In_opt_ POBJECT_ATTRIBUTES | ObjectAttributes, | ||
| _In_ BOOLEAN | EffectiveOnly, | ||
| _In_ TOKEN_TYPE | TokenType, | ||
| _In_ SECURITY_IMPERSONATION_LEVEL | Level, | ||
| _In_ KPROCESSOR_MODE | PreviousMode, | ||
| _Out_ PTOKEN * | NewAccessToken | ||
| ) |
Duplicates an access token, from an existing valid token.
| [in] | Token | Access token to duplicate. |
| [in] | ObjectAttributes | Object attributes for the new token. |
| [in] | EffectiveOnly | If set to TRUE, the function removes all the disabled privileges and groups of the token to duplicate. |
| [in] | TokenType | Type of token. |
| [in] | Level | Security impersonation level of a token. |
| [in] | PreviousMode | The processor request level mode. |
| [out] | NewAccessToken | The duplicated token. |
Definition at line 423 of file tokenlif.c.
Referenced by NtDuplicateToken(), NtOpenThreadTokenEx(), SeCopyClientToken(), and SeSubProcessToken().