ReactOS
0.4.15-dev-2155-g06f57e1
|
Go to the source code of this file.
Classes | |
struct | _KNOWN_ACE |
struct | _KNOWN_OBJECT_ACE |
struct | _KNOWN_COMPOUND_ACE |
Macros | |
#define | SepAcquireTokenLockExclusive(Token) |
#define | SepAcquireTokenLockShared(Token) |
#define | SepReleaseTokenLock(Token) |
Typedefs | |
typedef struct _KNOWN_ACE | KNOWN_ACE |
typedef struct _KNOWN_ACE * | PKNOWN_ACE |
typedef struct _KNOWN_OBJECT_ACE | KNOWN_OBJECT_ACE |
typedef struct _KNOWN_OBJECT_ACE * | PKNOWN_OBJECT_ACE |
typedef struct _KNOWN_COMPOUND_ACE | KNOWN_COMPOUND_ACE |
typedef struct _KNOWN_COMPOUND_ACE * | PKNOWN_COMPOUND_ACE |
typedef struct _KNOWN_ACE KNOWN_ACE |
typedef struct _KNOWN_OBJECT_ACE KNOWN_OBJECT_ACE |
typedef struct _KNOWN_ACE * PKNOWN_ACE |
typedef struct _KNOWN_COMPOUND_ACE * PKNOWN_COMPOUND_ACE |
typedef struct _KNOWN_OBJECT_ACE * PKNOWN_OBJECT_ACE |
NTSTATUS NTAPI SeCaptureLuidAndAttributesArray | ( | PLUID_AND_ATTRIBUTES | Src, |
ULONG | PrivilegeCount, | ||
KPROCESSOR_MODE | PreviousMode, | ||
PLUID_AND_ATTRIBUTES | AllocatedMem, | ||
ULONG | AllocatedLength, | ||
POOL_TYPE | PoolType, | ||
BOOLEAN | CaptureIfKernel, | ||
PLUID_AND_ATTRIBUTES * | Dest, | ||
PULONG | Length | ||
) |
Definition at line 287 of file priv.c.
Referenced by NtAdjustPrivilegesToken(), NtCreateToken(), and NtPrivilegeCheck().
NTSTATUS NTAPI SeCaptureSidAndAttributesArray | ( | _In_ PSID_AND_ATTRIBUTES | SrcSidAndAttributes, |
_In_ ULONG | AttributeCount, | ||
_In_ KPROCESSOR_MODE | PreviousMode, | ||
_In_opt_ PVOID | AllocatedMem, | ||
_In_ ULONG | AllocatedLength, | ||
_In_ POOL_TYPE | PoolType, | ||
_In_ BOOLEAN | CaptureIfKernel, | ||
_Out_ PSID_AND_ATTRIBUTES * | CapturedSidAndAttributes, | ||
_Out_ PULONG | ResultLength | ||
) |
Definition at line 354 of file sid.c.
Referenced by NtCreateToken().
VOID NTAPI SeCaptureSubjectContextEx | ( | IN PETHREAD | Thread, |
IN PEPROCESS | Process, | ||
OUT PSECURITY_SUBJECT_CONTEXT | SubjectContext | ||
) |
Definition at line 266 of file access.c.
Referenced by SeCaptureSubjectContext(), and SeCreateAccessStateEx().
BOOLEAN NTAPI SeCheckAuditPrivilege | ( | _In_ PSECURITY_SUBJECT_CONTEXT | SubjectContext, |
_In_ KPROCESSOR_MODE | PreviousMode | ||
) |
Definition at line 253 of file priv.c.
Referenced by NtCloseObjectAuditAlarm(), NtOpenObjectAuditAlarm(), NtPrivilegedServiceAuditAlarm(), and SepAccessCheckAndAuditAlarm().
BOOLEAN NTAPI SeCheckPrivilegedObject | ( | IN LUID | PrivilegeValue, |
IN HANDLE | ObjectHandle, | ||
IN ACCESS_MASK | DesiredAccess, | ||
IN KPROCESSOR_MODE | PreviousMode | ||
) |
Definition at line 556 of file priv.c.
Referenced by NtSetInformationProcess().
NTSTATUS NTAPI SeComputeQuotaInformationSize | ( | _In_ PSECURITY_DESCRIPTOR | SecurityDescriptor, |
_Out_ PULONG | QuotaInfoSize | ||
) |
Referenced by ObpCaptureObjectCreateInformation().
NTSTATUS NTAPI SeCopyClientToken | ( | IN PACCESS_TOKEN | Token, |
IN SECURITY_IMPERSONATION_LEVEL | Level, | ||
IN KPROCESSOR_MODE | PreviousMode, | ||
OUT PACCESS_TOKEN * | NewToken | ||
) |
Definition at line 1033 of file token.c.
Referenced by SepCreateClientSecurity().
NTSTATUS NTAPI SeCreateAccessStateEx | ( | IN PETHREAD | Thread, |
IN PEPROCESS | Process, | ||
IN OUT PACCESS_STATE | AccessState, | ||
IN PAUX_ACCESS_DATA | AuxData, | ||
IN ACCESS_MASK | Access, | ||
IN PGENERIC_MAPPING | GenericMapping | ||
) |
Definition at line 378 of file access.c.
Referenced by PspCreateProcess(), PspCreateThread(), and SeCreateAccessState().
Referenced by PspDeleteProcessSecurity().
NTSTATUS NTAPI SeDefaultObjectMethod | ( | PVOID | Object, |
SECURITY_OPERATION_CODE | OperationType, | ||
PSECURITY_INFORMATION | SecurityInformation, | ||
PSECURITY_DESCRIPTOR | NewSecurityDescriptor, | ||
PULONG | ReturnLength, | ||
PSECURITY_DESCRIPTOR * | OldSecurityDescriptor, | ||
POOL_TYPE | PoolType, | ||
PGENERIC_MAPPING | GenericMapping | ||
) |
Definition at line 25 of file audit.c.
Referenced by ObInitProcess(), PspCreateProcess(), and PspExitThread().
NTSTATUS NTAPI SeExchangePrimaryToken | ( | _In_ PEPROCESS | Process, |
_In_ PACCESS_TOKEN | NewAccessToken, | ||
_Out_ PACCESS_TOKEN * | OldAccessToken | ||
) |
Definition at line 474 of file token.c.
Referenced by PspAssignPrimaryToken().
BOOLEAN NTAPI SeFastTraverseCheck | ( | IN PSECURITY_DESCRIPTOR | SecurityDescriptor, |
IN PACCESS_STATE | AccessState, | ||
IN ACCESS_MASK | DesiredAccess, | ||
IN KPROCESSOR_MODE | AccessMode | ||
) |
Definition at line 460 of file accesschk.c.
Referenced by IopParseDevice(), and ObpCheckTraverseAccess().
Definition at line 966 of file srm.c.
Referenced by ObpReferenceDeviceMap(), and ObpSetCurrentProcessDeviceMap().
NTSTATUS NTAPI SeInitializeProcessAuditName | ( | IN PFILE_OBJECT | FileObject, |
IN BOOLEAN | DoAudit, | ||
OUT POBJECT_NAME_INFORMATION * | AuditInfo | ||
) |
Definition at line 47 of file audit.c.
Referenced by MmInitializeProcessAddressSpace(), and SeLocateProcessImageName().
Definition at line 239 of file semgr.c.
Referenced by ExpInitializeExecutive(), and Phase1InitializationDiscard().
Definition at line 961 of file token.c.
Referenced by PspSetPrimaryToken().
Definition at line 994 of file token.c.
Referenced by PspSetPrimaryToken().
NTSTATUS NTAPI SepCaptureAcl | ( | IN PACL | InputAcl, |
IN KPROCESSOR_MODE | AccessMode, | ||
IN POOL_TYPE | PoolType, | ||
IN BOOLEAN | CaptureIfKernel, | ||
OUT PACL * | CapturedAcl | ||
) |
Definition at line 273 of file acl.c.
Referenced by NtCreateToken(), and NtSetInformationToken().
NTSTATUS NTAPI SepCaptureSecurityQualityOfService | ( | IN POBJECT_ATTRIBUTES ObjectAttributes | OPTIONAL, |
IN KPROCESSOR_MODE | AccessMode, | ||
IN POOL_TYPE | PoolType, | ||
IN BOOLEAN | CaptureIfKernel, | ||
OUT PSECURITY_QUALITY_OF_SERVICE * | CapturedSecurityQualityOfService, | ||
OUT PBOOLEAN | Present | ||
) |
Definition at line 207 of file sd.c.
Referenced by NtDuplicateToken().
NTSTATUS NTAPI SepCaptureSid | ( | IN PSID | InputSid, |
IN KPROCESSOR_MODE | AccessMode, | ||
IN POOL_TYPE | PoolType, | ||
IN BOOLEAN | CaptureIfKernel, | ||
OUT PSID * | CapturedSid | ||
) |
Definition at line 270 of file sid.c.
Referenced by NtCreateToken(), NtSecureConnectPort(), NtSetInformationToken(), and SepAccessCheckAndAuditAlarm().
NTSTATUS NTAPI SepCreateImpersonationTokenDacl | ( | _In_ PTOKEN | Token, |
_In_ PTOKEN | PrimaryToken, | ||
_Out_ PACL * | Dacl | ||
) |
Definition at line 225 of file acl.c.
Referenced by NtOpenThreadTokenEx().
Definition at line 1395 of file token.c.
Referenced by SepInitializationPhase0().
NTSTATUS NTAPI SepDuplicateToken | ( | _In_ PTOKEN | Token, |
_In_opt_ POBJECT_ATTRIBUTES | ObjectAttributes, | ||
_In_ BOOLEAN | EffectiveOnly, | ||
_In_ TOKEN_TYPE | TokenType, | ||
_In_ SECURITY_IMPERSONATION_LEVEL | Level, | ||
_In_ KPROCESSOR_MODE | PreviousMode, | ||
_Out_ PTOKEN * | NewAccessToken | ||
) |
Definition at line 681 of file token.c.
Referenced by NtDuplicateToken(), NtOpenThreadTokenEx(), SeCopyClientToken(), and SeSubProcessToken().
FORCEINLINE PACL SepGetDaclFromDescriptor | ( | PVOID | _Descriptor | ) |
Definition at line 67 of file se.h.
Referenced by _IRQL_requires_max_(), RtlGetDaclSecurityDescriptor(), RtlLengthSecurityDescriptor(), RtlpQuerySecurityDescriptor(), RtlValidSecurityDescriptor(), SeCaptureSecurityDescriptor(), and SeFastTraverseCheck().
FORCEINLINE PSID SepGetGroupFromDescriptor | ( | PVOID | _Descriptor | ) |
Definition at line 29 of file se.h.
Referenced by _IRQL_requires_max_(), RtlGetGroupSecurityDescriptor(), RtlLengthSecurityDescriptor(), RtlpQuerySecurityDescriptor(), RtlValidSecurityDescriptor(), SeCaptureSecurityDescriptor(), and SepAccessCheckAndAuditAlarm().
FORCEINLINE PSID SepGetOwnerFromDescriptor | ( | PVOID | _Descriptor | ) |
Definition at line 48 of file se.h.
Referenced by _IRQL_requires_max_(), RtlGetOwnerSecurityDescriptor(), RtlLengthSecurityDescriptor(), RtlpQuerySecurityDescriptor(), RtlValidSecurityDescriptor(), SeCaptureSecurityDescriptor(), SepAccessCheckAndAuditAlarm(), and SepTokenIsOwner().
FORCEINLINE PACL SepGetSaclFromDescriptor | ( | PVOID | _Descriptor | ) |
Definition at line 88 of file se.h.
Referenced by _IRQL_requires_max_(), RtlGetSaclSecurityDescriptor(), RtlLengthSecurityDescriptor(), RtlpQuerySecurityDescriptor(), RtlValidSecurityDescriptor(), and SeCaptureSecurityDescriptor().
Definition at line 30 of file acl.c.
Referenced by SepInitializationPhase0().
Definition at line 1085 of file token.c.
Referenced by SepInitializationPhase0().
Definition at line 30 of file sd.c.
Referenced by SepInitializationPhase0().
Definition at line 96 of file sid.c.
Referenced by SepInitializationPhase0().
BOOLEAN NTAPI SepPrivilegeCheck | ( | PTOKEN | Token, |
PLUID_AND_ATTRIBUTES | Privileges, | ||
ULONG | PrivilegeCount, | ||
ULONG | PrivilegeControl, | ||
KPROCESSOR_MODE | PreviousMode | ||
) |
Definition at line 68 of file priv.c.
Referenced by NtPrivilegeCheck(), SeCheckAuditPrivilege(), SePrivilegeCheck(), and SepSinglePrivilegeCheck().
NTSTATUS SepPropagateAcl | ( | _Out_writes_bytes_opt_(DaclLength) PACL | AclDest, |
_Inout_ PULONG | AclLength, | ||
_In_reads_bytes_(AclSource->AclSize) PACL | AclSource, | ||
_In_ PSID | Owner, | ||
_In_ PSID | Group, | ||
_In_ BOOLEAN | IsInherited, | ||
_In_ BOOLEAN | IsDirectoryObject, | ||
_In_ PGENERIC_MAPPING | GenericMapping | ||
) |
VOID NTAPI SepReleaseAcl | ( | IN PACL | CapturedAcl, |
IN KPROCESSOR_MODE | AccessMode, | ||
IN BOOLEAN | CaptureIfKernel | ||
) |
VOID NTAPI SepReleaseSecurityQualityOfService | ( | IN PSECURITY_QUALITY_OF_SERVICE CapturedSecurityQualityOfService | OPTIONAL, |
IN KPROCESSOR_MODE | AccessMode, | ||
IN BOOLEAN | CaptureIfKernel | ||
) |
VOID NTAPI SepReleaseSid | ( | IN PSID | CapturedSid, |
IN KPROCESSOR_MODE | AccessMode, | ||
IN BOOLEAN | CaptureIfKernel | ||
) |
Definition at line 338 of file sid.c.
Referenced by NtCreateToken(), NtSecureConnectPort(), NtSetInformationToken(), and SepAccessCheckAndAuditAlarm().
VOID NTAPI SePrivilegedServiceAuditAlarm | ( | _In_opt_ PUNICODE_STRING | ServiceName, |
_In_ PSECURITY_SUBJECT_CONTEXT | SubjectContext, | ||
_In_ PPRIVILEGE_SET | PrivilegeSet, | ||
_In_ BOOLEAN | AccessGranted | ||
) |