ReactOS  0.4.15-dev-3326-ga91f5e8
Classes | Macros | Typedefs | Functions | Variables
security.c File Reference
#include <advapi32.h>
#include <sddl.h>
Include dependency graph for security.c:

Go to the source code of this file.

Classes

struct  _ACEFLAG
 
union  _MAX_SID
 
struct  WELLKNOWNSID
 
struct  WELLKNOWNRID
 

Macros

#define ADS_RIGHT_DS_CREATE_CHILD   0x0001
 
#define ADS_RIGHT_DS_DELETE_CHILD   0x0002
 
#define ADS_RIGHT_ACTRL_DS_LIST   0x0004
 
#define ADS_RIGHT_DS_SELF   0x0008
 
#define ADS_RIGHT_DS_READ_PROP   0x0010
 
#define ADS_RIGHT_DS_WRITE_PROP   0x0020
 
#define ADS_RIGHT_DS_DELETE_TREE   0x0040
 
#define ADS_RIGHT_DS_LIST_OBJECT   0x0080
 
#define ADS_RIGHT_DS_CONTROL_ACCESS   0x0100
 

Typedefs

typedef struct _ACEFLAG ACEFLAG
 
typedef struct _ACEFLAGLPACEFLAG
 
typedef struct _MAX_SID MAX_SID
 
typedef struct WELLKNOWNSID WELLKNOWNSID
 
typedef struct WELLKNOWNRID WELLKNOWNRID
 

Functions

 WINE_DEFAULT_DEBUG_CHANNEL (advapi)
 
static BOOL ParseStringSidToSid (LPCWSTR StringSid, PSID pSid, LPDWORD cBytes)
 
static const chardebugstr_sid (PSID sid)
 
static __inline BOOL set_ntstatus (NTSTATUS status)
 
static LPWSTR SERV_dup (LPCSTR str)
 
BOOL ADVAPI_IsLocalComputer (LPCWSTR ServerName)
 
BOOL ADVAPI_GetComputerSid (PSID sid)
 
BOOL WINAPI OpenProcessToken (HANDLE ProcessHandle, DWORD DesiredAccess, PHANDLE TokenHandle)
 
BOOL WINAPI OpenThreadToken (HANDLE ThreadHandle, DWORD DesiredAccess, BOOL OpenAsSelf, HANDLE *TokenHandle)
 
BOOL WINAPI AdjustTokenGroups (HANDLE TokenHandle, BOOL ResetToDefault, PTOKEN_GROUPS NewState, DWORD BufferLength, PTOKEN_GROUPS PreviousState, PDWORD ReturnLength)
 
BOOL WINAPI AdjustTokenPrivileges (HANDLE TokenHandle, BOOL DisableAllPrivileges, PTOKEN_PRIVILEGES NewState, DWORD BufferLength, PTOKEN_PRIVILEGES PreviousState, PDWORD ReturnLength)
 
BOOL WINAPI GetTokenInformation (HANDLE TokenHandle, TOKEN_INFORMATION_CLASS TokenInformationClass, LPVOID TokenInformation, DWORD TokenInformationLength, PDWORD ReturnLength)
 
BOOL WINAPI SetTokenInformation (HANDLE TokenHandle, TOKEN_INFORMATION_CLASS TokenInformationClass, LPVOID TokenInformation, DWORD TokenInformationLength)
 
BOOL WINAPI SetThreadToken (IN PHANDLE ThreadHandle OPTIONAL, IN HANDLE TokenHandle)
 
BOOL WINAPI CreateRestrictedToken (HANDLE baseToken, DWORD flags, DWORD nDisableSids, PSID_AND_ATTRIBUTES disableSids, DWORD nDeletePrivs, PLUID_AND_ATTRIBUTES deletePrivs, DWORD nRestrictSids, PSID_AND_ATTRIBUTES restrictSids, PHANDLE newToken)
 
BOOL WINAPI AllocateAndInitializeSid (PSID_IDENTIFIER_AUTHORITY pIdentifierAuthority, BYTE nSubAuthorityCount, DWORD nSubAuthority0, DWORD nSubAuthority1, DWORD nSubAuthority2, DWORD nSubAuthority3, DWORD nSubAuthority4, DWORD nSubAuthority5, DWORD nSubAuthority6, DWORD nSubAuthority7, PSID *pSid)
 
PVOID WINAPI FreeSid (PSID pSid)
 
BOOL WINAPI CopySid (DWORD nDestinationSidLength, PSID pDestinationSid, PSID pSourceSid)
 
BOOL WINAPI CreateWellKnownSid (IN WELL_KNOWN_SID_TYPE WellKnownSidType, IN PSID DomainSid OPTIONAL, OUT PSID pSid, IN OUT DWORD *cbSid)
 
BOOL WINAPI IsWellKnownSid (IN PSID pSid, IN WELL_KNOWN_SID_TYPE WellKnownSidType)
 
BOOL WINAPI IsValidSid (PSID pSid)
 
BOOL WINAPI EqualSid (PSID pSid1, PSID pSid2)
 
BOOL WINAPI EqualPrefixSid (PSID pSid1, PSID pSid2)
 
DWORD WINAPI GetSidLengthRequired (UCHAR nSubAuthorityCount)
 
BOOL WINAPI InitializeSid (PSID Sid, PSID_IDENTIFIER_AUTHORITY pIdentifierAuthority, BYTE nSubAuthorityCount)
 
PSID_IDENTIFIER_AUTHORITY WINAPI GetSidIdentifierAuthority (PSID pSid)
 
PDWORD WINAPI GetSidSubAuthority (PSID pSid, DWORD nSubAuthority)
 
PUCHAR WINAPI GetSidSubAuthorityCount (PSID pSid)
 
DWORD WINAPI GetLengthSid (PSID pSid)
 
BOOL WINAPI InitializeSecurityDescriptor (PSECURITY_DESCRIPTOR pSecurityDescriptor, DWORD dwRevision)
 
BOOL WINAPI MakeAbsoluteSD (PSECURITY_DESCRIPTOR pSelfRelativeSecurityDescriptor, PSECURITY_DESCRIPTOR pAbsoluteSecurityDescriptor, LPDWORD lpdwAbsoluteSecurityDescriptorSize, PACL pDacl, LPDWORD lpdwDaclSize, PACL pSacl, LPDWORD lpdwSaclSize, PSID pOwner, LPDWORD lpdwOwnerSize, PSID pPrimaryGroup, LPDWORD lpdwPrimaryGroupSize)
 
BOOL WINAPI GetKernelObjectSecurity (HANDLE Handle, SECURITY_INFORMATION RequestedInformation, PSECURITY_DESCRIPTOR pSecurityDescriptor, DWORD nLength, LPDWORD lpnLengthNeeded)
 
BOOL WINAPI InitializeAcl (PACL pAcl, DWORD nAclLength, DWORD dwAclRevision)
 
BOOL WINAPI ImpersonateNamedPipeClient (HANDLE hNamedPipe)
 
BOOL WINAPI AddAccessAllowedAce (PACL pAcl, DWORD dwAceRevision, DWORD AccessMask, PSID pSid)
 
BOOL WINAPI AddAccessAllowedAceEx (PACL pAcl, DWORD dwAceRevision, DWORD AceFlags, DWORD AccessMask, PSID pSid)
 
BOOL WINAPI AddAccessDeniedAce (PACL pAcl, DWORD dwAceRevision, DWORD AccessMask, PSID pSid)
 
BOOL WINAPI AddAccessDeniedAceEx (PACL pAcl, DWORD dwAceRevision, DWORD AceFlags, DWORD AccessMask, PSID pSid)
 
BOOL WINAPI AddAce (PACL pAcl, DWORD dwAceRevision, DWORD dwStartingAceIndex, LPVOID pAceList, DWORD nAceListLength)
 
BOOL WINAPI DeleteAce (PACL pAcl, DWORD dwAceIndex)
 
BOOL WINAPI FindFirstFreeAce (PACL pAcl, LPVOID *pAce)
 
BOOL WINAPI GetAce (PACL pAcl, DWORD dwAceIndex, LPVOID *pAce)
 
BOOL WINAPI GetAclInformation (PACL pAcl, LPVOID pAclInformation, DWORD nAclInformationLength, ACL_INFORMATION_CLASS dwAclInformationClass)
 
BOOL WINAPI IsValidAcl (PACL pAcl)
 
BOOL WINAPI AllocateLocallyUniqueId (PLUID Luid)
 
BOOL WINAPI LookupPrivilegeDisplayNameA (LPCSTR lpSystemName, LPCSTR lpName, LPSTR lpDisplayName, LPDWORD cchDisplayName, LPDWORD lpLanguageId)
 
BOOL WINAPI LookupPrivilegeNameA (LPCSTR lpSystemName, PLUID lpLuid, LPSTR lpName, LPDWORD cchName)
 
BOOL WINAPI GetFileSecurityA (LPCSTR lpFileName, SECURITY_INFORMATION RequestedInformation, PSECURITY_DESCRIPTOR pSecurityDescriptor, DWORD nLength, LPDWORD lpnLengthNeeded)
 
BOOL WINAPI GetFileSecurityW (LPCWSTR lpFileName, SECURITY_INFORMATION RequestedInformation, PSECURITY_DESCRIPTOR pSecurityDescriptor, DWORD nLength, LPDWORD lpnLengthNeeded)
 
BOOL WINAPI SetFileSecurityA (LPCSTR lpFileName, SECURITY_INFORMATION SecurityInformation, PSECURITY_DESCRIPTOR pSecurityDescriptor)
 
BOOL WINAPI SetFileSecurityW (LPCWSTR lpFileName, SECURITY_INFORMATION SecurityInformation, PSECURITY_DESCRIPTOR pSecurityDescriptor)
 
BOOL WINAPI QueryWindows31FilesMigration (DWORD x1)
 
BOOL WINAPI SynchronizeWindows31FilesAndWindowsNTRegistry (DWORD x1, DWORD x2, DWORD x3, DWORD x4)
 
BOOL WINAPI RevertToSelf (VOID)
 
BOOL WINAPI ImpersonateSelf (SECURITY_IMPERSONATION_LEVEL ImpersonationLevel)
 
BOOL WINAPI AccessCheck (IN PSECURITY_DESCRIPTOR pSecurityDescriptor, IN HANDLE ClientToken, IN DWORD DesiredAccess, IN PGENERIC_MAPPING GenericMapping, OUT PPRIVILEGE_SET PrivilegeSet OPTIONAL, IN OUT LPDWORD PrivilegeSetLength, OUT LPDWORD GrantedAccess, OUT LPBOOL AccessStatus)
 
BOOL WINAPI AccessCheckByType (PSECURITY_DESCRIPTOR pSecurityDescriptor, PSID PrincipalSelfSid, HANDLE ClientToken, DWORD DesiredAccess, POBJECT_TYPE_LIST ObjectTypeList, DWORD ObjectTypeListLength, PGENERIC_MAPPING GenericMapping, PPRIVILEGE_SET PrivilegeSet, LPDWORD PrivilegeSetLength, LPDWORD GrantedAccess, LPBOOL AccessStatus)
 
BOOL WINAPI SetKernelObjectSecurity (HANDLE Handle, SECURITY_INFORMATION SecurityInformation, PSECURITY_DESCRIPTOR SecurityDescriptor)
 
BOOL WINAPI AddAuditAccessAce (PACL pAcl, DWORD dwAceRevision, DWORD dwAccessMask, PSID pSid, BOOL bAuditSuccess, BOOL bAuditFailure)
 
BOOL WINAPI AddAuditAccessAceEx (PACL pAcl, DWORD dwAceRevision, DWORD AceFlags, DWORD dwAccessMask, PSID pSid, BOOL bAuditSuccess, BOOL bAuditFailure)
 
BOOL WINAPI LookupAccountNameA (LPCSTR SystemName, LPCSTR AccountName, PSID Sid, LPDWORD SidLength, LPSTR ReferencedDomainName, LPDWORD hReferencedDomainNameLength, PSID_NAME_USE SidNameUse)
 
BOOL WINAPI PrivilegeCheck (HANDLE ClientToken, PPRIVILEGE_SET RequiredPrivileges, LPBOOL pfResult)
 
DWORD WINAPI GetSecurityInfoExA (HANDLE hObject, SE_OBJECT_TYPE ObjectType, SECURITY_INFORMATION SecurityInfo, LPCSTR lpProvider, LPCSTR lpProperty, PACTRL_ACCESSA *ppAccessList, PACTRL_AUDITA *ppAuditList, LPSTR *lppOwner, LPSTR *lppGroup)
 
DWORD WINAPI GetSecurityInfoExW (HANDLE hObject, SE_OBJECT_TYPE ObjectType, SECURITY_INFORMATION SecurityInfo, LPCWSTR lpProvider, LPCWSTR lpProperty, PACTRL_ACCESSW *ppAccessList, PACTRL_AUDITW *ppAuditList, LPWSTR *lppOwner, LPWSTR *lppGroup)
 
VOID WINAPI BuildExplicitAccessWithNameA (PEXPLICIT_ACCESSA pExplicitAccess, LPSTR pTrusteeName, DWORD AccessPermissions, ACCESS_MODE AccessMode, DWORD Inheritance)
 
VOID WINAPI BuildExplicitAccessWithNameW (PEXPLICIT_ACCESSW pExplicitAccess, LPWSTR pTrusteeName, DWORD AccessPermissions, ACCESS_MODE AccessMode, DWORD Inheritance)
 
VOID WINAPI BuildTrusteeWithObjectsAndNameA (PTRUSTEEA pTrustee, POBJECTS_AND_NAME_A pObjName, SE_OBJECT_TYPE ObjectType, LPSTR ObjectTypeName, LPSTR InheritedObjectTypeName, LPSTR Name)
 
VOID WINAPI BuildTrusteeWithObjectsAndNameW (PTRUSTEEW pTrustee, POBJECTS_AND_NAME_W pObjName, SE_OBJECT_TYPE ObjectType, LPWSTR ObjectTypeName, LPWSTR InheritedObjectTypeName, LPWSTR Name)
 
VOID WINAPI BuildTrusteeWithObjectsAndSidA (PTRUSTEEA pTrustee, POBJECTS_AND_SID pObjSid, GUID *pObjectGuid, GUID *pInheritedObjectGuid, PSID pSid)
 
VOID WINAPI BuildTrusteeWithObjectsAndSidW (PTRUSTEEW pTrustee, POBJECTS_AND_SID pObjSid, GUID *pObjectGuid, GUID *pInheritedObjectGuid, PSID pSid)
 
VOID WINAPI BuildTrusteeWithSidA (PTRUSTEE_A pTrustee, PSID pSid)
 
VOID WINAPI BuildTrusteeWithSidW (PTRUSTEE_W pTrustee, PSID pSid)
 
VOID WINAPI BuildTrusteeWithNameA (PTRUSTEE_A pTrustee, LPSTR name)
 
VOID WINAPI BuildTrusteeWithNameW (PTRUSTEE_W pTrustee, LPWSTR name)
 
TRUSTEE_FORM WINAPI GetTrusteeFormA (PTRUSTEEA pTrustee)
 
TRUSTEE_FORM WINAPI GetTrusteeFormW (PTRUSTEEW pTrustee)
 
LPSTR WINAPI GetTrusteeNameA (PTRUSTEE_A pTrustee)
 
LPWSTR WINAPI GetTrusteeNameW (PTRUSTEE_W pTrustee)
 
TRUSTEE_TYPE WINAPI GetTrusteeTypeA (PTRUSTEE_A pTrustee)
 
TRUSTEE_TYPE WINAPI GetTrusteeTypeW (PTRUSTEE_W pTrustee)
 
BOOL WINAPI SetAclInformation (PACL pAcl, LPVOID pAclInformation, DWORD nAclInformationLength, ACL_INFORMATION_CLASS dwAclInformationClass)
 
DWORD WINAPI SetNamedSecurityInfoA (LPSTR pObjectName, SE_OBJECT_TYPE ObjectType, SECURITY_INFORMATION SecurityInfo, PSID psidOwner, PSID psidGroup, PACL pDacl, PACL pSacl)
 
BOOL WINAPI AreAllAccessesGranted (DWORD GrantedAccess, DWORD DesiredAccess)
 
BOOL WINAPI AreAnyAccessesGranted (DWORD GrantedAccess, DWORD DesiredAccess)
 
static DWORD ParseAclStringFlags (LPCWSTR *StringAcl)
 
static BYTE ParseAceStringType (LPCWSTR *StringAcl)
 
static BYTE ParseAceStringFlags (LPCWSTR *StringAcl)
 
static DWORD ParseAceStringRights (LPCWSTR *StringAcl)
 
static BOOL ParseStringAclToAcl (LPCWSTR StringAcl, LPDWORD lpdwFlags, PACL pAcl, LPDWORD cBytes)
 
static BOOL ParseStringSecurityDescriptorToSecurityDescriptor (LPCWSTR StringSecurityDescriptor, SECURITY_DESCRIPTOR_RELATIVE *SecurityDescriptor, LPDWORD cBytes)
 
BOOL WINAPI ConvertStringSecurityDescriptorToSecurityDescriptorA (LPCSTR StringSecurityDescriptor, DWORD StringSDRevision, PSECURITY_DESCRIPTOR *SecurityDescriptor, PULONG SecurityDescriptorSize)
 
BOOL WINAPI ConvertStringSecurityDescriptorToSecurityDescriptorW (LPCWSTR StringSecurityDescriptor, DWORD StringSDRevision, PSECURITY_DESCRIPTOR *SecurityDescriptor, PULONG SecurityDescriptorSize)
 
static void DumpString (LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
 
static BOOL DumpSidNumeric (PSID psid, WCHAR **pwptr, ULONG *plen)
 
static BOOL DumpSid (PSID psid, WCHAR **pwptr, ULONG *plen)
 
static void DumpRights (DWORD mask, WCHAR **pwptr, ULONG *plen)
 
static BOOL DumpAce (LPVOID pace, WCHAR **pwptr, ULONG *plen)
 
static BOOL DumpAcl (PACL pacl, WCHAR **pwptr, ULONG *plen, BOOL protected, BOOL autoInheritReq, BOOL autoInherited)
 
static BOOL DumpOwner (PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
 
static BOOL DumpGroup (PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
 
static BOOL DumpDacl (PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
 
static BOOL DumpSacl (PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
 
BOOL WINAPI ConvertSecurityDescriptorToStringSecurityDescriptorW (PSECURITY_DESCRIPTOR SecurityDescriptor, DWORD SDRevision, SECURITY_INFORMATION RequestedInformation, LPWSTR *OutputString, PULONG OutputLen)
 
BOOL WINAPI ConvertSecurityDescriptorToStringSecurityDescriptorA (PSECURITY_DESCRIPTOR SecurityDescriptor, DWORD SDRevision, SECURITY_INFORMATION Information, LPSTR *OutputString, PULONG OutputLen)
 
BOOL WINAPI ConvertStringSidToSidW (LPCWSTR StringSid, PSID *Sid)
 
BOOL WINAPI ConvertStringSidToSidA (LPCSTR StringSid, PSID *Sid)
 
BOOL WINAPI ConvertSidToStringSidW (PSID Sid, LPWSTR *StringSid)
 
BOOL WINAPI ConvertSidToStringSidA (PSID Sid, LPSTR *StringSid)
 
BOOL WINAPI CreateProcessWithLogonW (LPCWSTR lpUsername, LPCWSTR lpDomain, LPCWSTR lpPassword, DWORD dwLogonFlags, LPCWSTR lpApplicationName, LPWSTR lpCommandLine, DWORD dwCreationFlags, LPVOID lpEnvironment, LPCWSTR lpCurrentDirectory, LPSTARTUPINFOW lpStartupInfo, LPPROCESS_INFORMATION lpProcessInformation)
 
BOOL WINAPI CreateProcessWithTokenW (HANDLE token, DWORD logon_flags, LPCWSTR application_name, LPWSTR command_line, DWORD creation_flags, void *environment, LPCWSTR current_directory, STARTUPINFOW *startup_info, PROCESS_INFORMATION *process_information)
 
BOOL WINAPI DuplicateTokenEx (IN HANDLE ExistingTokenHandle, IN DWORD dwDesiredAccess, IN LPSECURITY_ATTRIBUTES lpTokenAttributes OPTIONAL, IN SECURITY_IMPERSONATION_LEVEL ImpersonationLevel, IN TOKEN_TYPE TokenType, OUT PHANDLE DuplicateTokenHandle)
 
BOOL WINAPI DuplicateToken (IN HANDLE ExistingTokenHandle, IN SECURITY_IMPERSONATION_LEVEL ImpersonationLevel, OUT PHANDLE DuplicateTokenHandle)
 
static DWORD ComputeStringSidSize (LPCWSTR StringSid)
 
DWORD WINAPI GetNamedSecurityInfoA (LPSTR pObjectName, SE_OBJECT_TYPE ObjectType, SECURITY_INFORMATION SecurityInfo, PSID *ppsidOwner, PSID *ppsidGroup, PACL *ppDacl, PACL *ppSacl, PSECURITY_DESCRIPTOR *ppSecurityDescriptor)
 
BOOL WINAPI GetWindowsAccountDomainSid (PSID sid, PSID domain_sid, DWORD *size)
 
BOOL WINAPI EqualDomainSid (IN PSID pSid1, IN PSID pSid2, OUT BOOL *pfEqual)
 

Variables

static const WELLKNOWNSID WellKnownSids []
 
static const WELLKNOWNRID WellKnownRids []
 
static const SID sidWorld = { SID_REVISION, 1, { SECURITY_WORLD_SID_AUTHORITY} , { SECURITY_WORLD_RID } }
 
static const WCHAR SDDL_NO_READ_UP [] = {'N','R',0}
 
static const WCHAR SDDL_NO_WRITE_UP [] = {'N','W',0}
 
static const WCHAR SDDL_NO_EXECUTE_UP [] = {'N','X',0}
 
static const WCHAR SDDL_ACCESS_ALLOWED [] = {'A',0}
 
static const WCHAR SDDL_ACCESS_DENIED [] = {'D',0}
 
static const WCHAR SDDL_OBJECT_ACCESS_ALLOWED [] = {'O','A',0}
 
static const WCHAR SDDL_OBJECT_ACCESS_DENIED [] = {'O','D',0}
 
static const WCHAR SDDL_AUDIT [] = {'A','U',0}
 
static const WCHAR SDDL_ALARM [] = {'A','L',0}
 
static const WCHAR SDDL_MANDATORY_LABEL [] = {'M','L',0}
 
static const WCHAR SDDL_OBJECT_AUDIT [] = {'O','U',0}
 
static const WCHAR SDDL_OBJECT_ALARM [] = {'O','L',0}
 
static const WCHAR SDDL_CONTAINER_INHERIT [] = {'C','I',0}
 
static const WCHAR SDDL_OBJECT_INHERIT [] = {'O','I',0}
 
static const WCHAR SDDL_NO_PROPAGATE [] = {'N','P',0}
 
static const WCHAR SDDL_INHERIT_ONLY [] = {'I','O',0}
 
static const WCHAR SDDL_INHERITED [] = {'I','D',0}
 
static const WCHAR SDDL_AUDIT_SUCCESS [] = {'S','A',0}
 
static const WCHAR SDDL_AUDIT_FAILURE [] = {'F','A',0}
 
static const ACEFLAG AceType []
 
static const ACEFLAG AceFlags []
 
static const ACEFLAG AceRights []
 
static const LPCWSTR AceRightBitNames [32]
 

Macro Definition Documentation

◆ ADS_RIGHT_ACTRL_DS_LIST

#define ADS_RIGHT_ACTRL_DS_LIST   0x0004

Definition at line 157 of file security.c.

◆ ADS_RIGHT_DS_CONTROL_ACCESS

#define ADS_RIGHT_DS_CONTROL_ACCESS   0x0100

Definition at line 163 of file security.c.

◆ ADS_RIGHT_DS_CREATE_CHILD

#define ADS_RIGHT_DS_CREATE_CHILD   0x0001

Definition at line 155 of file security.c.

◆ ADS_RIGHT_DS_DELETE_CHILD

#define ADS_RIGHT_DS_DELETE_CHILD   0x0002

Definition at line 156 of file security.c.

◆ ADS_RIGHT_DS_DELETE_TREE

#define ADS_RIGHT_DS_DELETE_TREE   0x0040

Definition at line 161 of file security.c.

◆ ADS_RIGHT_DS_LIST_OBJECT

#define ADS_RIGHT_DS_LIST_OBJECT   0x0080

Definition at line 162 of file security.c.

◆ ADS_RIGHT_DS_READ_PROP

#define ADS_RIGHT_DS_READ_PROP   0x0010

Definition at line 159 of file security.c.

◆ ADS_RIGHT_DS_SELF

#define ADS_RIGHT_DS_SELF   0x0008

Definition at line 158 of file security.c.

◆ ADS_RIGHT_DS_WRITE_PROP

#define ADS_RIGHT_DS_WRITE_PROP   0x0020

Definition at line 160 of file security.c.

Typedef Documentation

◆ ACEFLAG

typedef struct _ACEFLAG ACEFLAG

◆ LPACEFLAG

typedef struct _ACEFLAG * LPACEFLAG

◆ MAX_SID

typedef struct _MAX_SID MAX_SID

◆ WELLKNOWNRID

typedef struct WELLKNOWNRID WELLKNOWNRID

◆ WELLKNOWNSID

typedef struct WELLKNOWNSID WELLKNOWNSID

Function Documentation

◆ AccessCheck()

BOOL WINAPI AccessCheck ( IN PSECURITY_DESCRIPTOR  pSecurityDescriptor,
IN HANDLE  ClientToken,
IN DWORD  DesiredAccess,
IN PGENERIC_MAPPING  GenericMapping,
OUT PPRIVILEGE_SET PrivilegeSet  OPTIONAL,
IN OUT LPDWORD  PrivilegeSetLength,
OUT LPDWORD  GrantedAccess,
OUT LPBOOL  AccessStatus 
)

Definition at line 1529 of file security.c.

1537 {
1538  NTSTATUS Status;
1539  NTSTATUS NtAccessStatus;
1540 
1541  /* Do the access check */
1542  Status = NtAccessCheck(pSecurityDescriptor,
1543  ClientToken,
1544  DesiredAccess,
1545  GenericMapping,
1546  PrivilegeSet,
1547  (PULONG)PrivilegeSetLength,
1548  (PACCESS_MASK)GrantedAccess,
1549  &NtAccessStatus);
1550 
1551  /* See if the access check operation succeeded */
1552  if (!NT_SUCCESS(Status))
1553  {
1554  /* Check failed */
1555  SetLastError(RtlNtStatusToDosError(Status));
1556  return FALSE;
1557  }
1558 
1559  /* Now check the access status */
1560  if (!NT_SUCCESS(NtAccessStatus))
1561  {
1562  /* Access denied */
1563  SetLastError(RtlNtStatusToDosError(NtAccessStatus));
1564  *AccessStatus = FALSE;
1565  }
1566  else
1567  {
1568  /* Access granted */
1569  *AccessStatus = TRUE;
1570  }
1571 
1572  /* Check succeeded */
1573  return TRUE;
1574 }
DesiredAccess
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2654
AccessStatus
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK _Out_ PNTSTATUS AccessStatus
Definition: sefuncs.h:13
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NtAccessCheck
NTSTATUS NTAPI NtAccessCheck(_In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ HANDLE TokenHandle, _In_ ACCESS_MASK DesiredAccess, _In_ PGENERIC_MAPPING GenericMapping, _Out_opt_ PPRIVILEGE_SET PrivilegeSet, _Inout_ PULONG PrivilegeSetLength, _Out_ PACCESS_MASK GrantedAccess, _Out_ PNTSTATUS AccessStatus)
Determines whether security access rights can be given to an object depending on the security descrip...
Definition: accesschk.c:711
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SetLastError
#define SetLastError(x)
Definition: compat.h:611
GenericMapping
static GENERIC_MAPPING GenericMapping
Definition: SeInheritance.c:11
PULONG
unsigned int * PULONG
Definition: retypes.h:1
PACCESS_MASK
ACCESS_MASK * PACCESS_MASK
Definition: nt_native.h:41
GrantedAccess
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK GrantedAccess
Definition: sefuncs.h:13

Referenced by test_AccessCheck(), test_default_handle_security(), and test_FileSecurity().

◆ AccessCheckByType()

BOOL WINAPI AccessCheckByType ( PSECURITY_DESCRIPTOR  pSecurityDescriptor,
PSID  PrincipalSelfSid,
HANDLE  ClientToken,
DWORD  DesiredAccess,
POBJECT_TYPE_LIST  ObjectTypeList,
DWORD  ObjectTypeListLength,
PGENERIC_MAPPING  GenericMapping,
PPRIVILEGE_SET  PrivilegeSet,
LPDWORD  PrivilegeSetLength,
LPDWORD  GrantedAccess,
LPBOOL  AccessStatus 
)

Definition at line 1579 of file security.c.

1591 {
1592  FIXME("stub\n");
1593 
1594  *AccessStatus = TRUE;
1595 
1596  return !*AccessStatus;
1597 }
AccessStatus
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK _Out_ PNTSTATUS AccessStatus
Definition: sefuncs.h:13
TRUE
#define TRUE
Definition: types.h:120
FIXME
#define FIXME(fmt,...)
Definition: debug.h:111

◆ AddAccessAllowedAce()

BOOL WINAPI AddAccessAllowedAce ( PACL  pAcl,
DWORD  dwAceRevision,
DWORD  AccessMask,
PSID  pSid 
)

Definition at line 918 of file security.c.

922 {
923  NTSTATUS Status;
924 
925  Status = RtlAddAccessAllowedAce(pAcl,
926  dwAceRevision,
927  AccessMask,
928  pSid);
929  if (!NT_SUCCESS(Status))
930  {
931  SetLastError(RtlNtStatusToDosError(Status));
932  return FALSE;
933  }
934 
935  return TRUE;
936 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlAddAccessAllowedAce
NTSYSAPI NTSTATUS WINAPI RtlAddAccessAllowedAce(PACL, DWORD, DWORD, PSID)
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
AccessMask
_In_ ACCESS_MASK AccessMask
Definition: exfuncs.h:186
SetLastError
#define SetLastError(x)
Definition: compat.h:611
dwAceRevision
_In_ ULONG dwAceRevision
Definition: rtlfuncs.h:1114
pSid
static PSID pSid
Definition: security.c:74

Referenced by AccRewriteSetEntriesInAcl(), AddAceToDesktop(), convert_nfs4acl_2_dacl(), CreateDefaultSecurityDescriptor(), CreateWindowStationAndDesktops(), GetShellSecurityDescriptor(), test_AccessCheck(), test_AddMandatoryAce(), test_GetExplicitEntriesFromAclW(), test_process_security(), test_SetEntriesInAclA(), and test_SetEntriesInAclW().

◆ AddAccessAllowedAceEx()

BOOL WINAPI AddAccessAllowedAceEx ( PACL  pAcl,
DWORD  dwAceRevision,
DWORD  AceFlags,
DWORD  AccessMask,
PSID  pSid 
)

Definition at line 942 of file security.c.

947 {
948  NTSTATUS Status;
949 
950  Status = RtlAddAccessAllowedAceEx(pAcl,
951  dwAceRevision,
952  AceFlags,
953  AccessMask,
954  pSid);
955  if (!NT_SUCCESS(Status))
956  {
957  SetLastError(RtlNtStatusToDosError(Status));
958  return FALSE;
959  }
960 
961  return TRUE;
962 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
AccessMask
_In_ ACCESS_MASK AccessMask
Definition: exfuncs.h:186
SetLastError
#define SetLastError(x)
Definition: compat.h:611
RtlAddAccessAllowedAceEx
NTSYSAPI NTSTATUS WINAPI RtlAddAccessAllowedAceEx(PACL, DWORD, DWORD, DWORD, PSID)
dwAceRevision
_In_ ULONG dwAceRevision
Definition: rtlfuncs.h:1114
pSid
static PSID pSid
Definition: security.c:74
AceFlags
static const ACEFLAG AceFlags[]
Definition: security.c:2300

Referenced by get_sd(), and GetShellSecurityDescriptor().

◆ AddAccessDeniedAce()

BOOL WINAPI AddAccessDeniedAce ( PACL  pAcl,
DWORD  dwAceRevision,
DWORD  AccessMask,
PSID  pSid 
)

Definition at line 969 of file security.c.

973 {
974  NTSTATUS Status;
975 
976  Status = RtlAddAccessDeniedAce(pAcl,
977  dwAceRevision,
978  AccessMask,
979  pSid);
980  if (!NT_SUCCESS(Status))
981  {
982  SetLastError(RtlNtStatusToDosError(Status));
983  return FALSE;
984  }
985 
986  return TRUE;
987 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
AccessMask
_In_ ACCESS_MASK AccessMask
Definition: exfuncs.h:186
SetLastError
#define SetLastError(x)
Definition: compat.h:611
dwAceRevision
_In_ ULONG dwAceRevision
Definition: rtlfuncs.h:1114
pSid
static PSID pSid
Definition: security.c:74
RtlAddAccessDeniedAce
NTSYSAPI NTSTATUS NTAPI RtlAddAccessDeniedAce(_Inout_ PACL Acl, _In_ ULONG Revision, _In_ ACCESS_MASK AccessMask, _In_ PSID Sid)

Referenced by AccRewriteSetEntriesInAcl(), convert_nfs4acl_2_dacl(), GetShellSecurityDescriptor(), test_AccessCheck(), and test_process_security().

◆ AddAccessDeniedAceEx()

BOOL WINAPI AddAccessDeniedAceEx ( PACL  pAcl,
DWORD  dwAceRevision,
DWORD  AceFlags,
DWORD  AccessMask,
PSID  pSid 
)

Definition at line 993 of file security.c.

998 {
999  NTSTATUS Status;
1000 
1001  Status = RtlAddAccessDeniedAceEx(pAcl,
1002  dwAceRevision,
1003  AceFlags,
1004  AccessMask,
1005  pSid);
1006  if (!NT_SUCCESS(Status))
1007  {
1008  SetLastError(RtlNtStatusToDosError(Status));
1009  return FALSE;
1010  }
1011 
1012  return TRUE;
1013 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
AccessMask
_In_ ACCESS_MASK AccessMask
Definition: exfuncs.h:186
SetLastError
#define SetLastError(x)
Definition: compat.h:611
dwAceRevision
_In_ ULONG dwAceRevision
Definition: rtlfuncs.h:1114
pSid
static PSID pSid
Definition: security.c:74
RtlAddAccessDeniedAceEx
NTSYSAPI NTSTATUS NTAPI RtlAddAccessDeniedAceEx(_Inout_ PACL Acl, _In_ ULONG Revision, _In_ ULONG Flags, _In_ ACCESS_MASK AccessMask, _In_ PSID Sid)
AceFlags
static const ACEFLAG AceFlags[]
Definition: security.c:2300

Referenced by GetShellSecurityDescriptor().

◆ AddAce()

BOOL WINAPI AddAce ( PACL  pAcl,
DWORD  dwAceRevision,
DWORD  dwStartingAceIndex,
LPVOID  pAceList,
DWORD  nAceListLength 
)

Definition at line 1020 of file security.c.

1025 {
1026  NTSTATUS Status;
1027 
1028  Status = RtlAddAce(pAcl,
1029  dwAceRevision,
1030  dwStartingAceIndex,
1031  pAceList,
1032  nAceListLength);
1033  if (!NT_SUCCESS(Status))
1034  {
1035  SetLastError(RtlNtStatusToDosError(Status));
1036  return FALSE;
1037  }
1038 
1039  return TRUE;
1040 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SetLastError
#define SetLastError(x)
Definition: compat.h:611
RtlAddAce
NTSYSAPI NTSTATUS NTAPI RtlAddAce(_Inout_ PACL Acl, _In_ ULONG AceRevision, _In_ ULONG StartingAceIndex, _In_reads_bytes_(AceListLength) PVOID AceList, _In_ ULONG AceListLength)
dwAceRevision
_In_ ULONG dwAceRevision
Definition: rtlfuncs.h:1114

Referenced by AddAceToWindowStation(), and test_AddAce().

◆ AddAuditAccessAce()

BOOL WINAPI AddAuditAccessAce ( PACL  pAcl,
DWORD  dwAceRevision,
DWORD  dwAccessMask,
PSID  pSid,
BOOL  bAuditSuccess,
BOOL  bAuditFailure 
)

Definition at line 1627 of file security.c.

1633 {
1634  NTSTATUS Status;
1635 
1636  Status = RtlAddAuditAccessAce(pAcl,
1637  dwAceRevision,
1638  dwAccessMask,
1639  pSid,
1640  bAuditSuccess,
1641  bAuditFailure);
1642  if (!NT_SUCCESS(Status))
1643  {
1644  SetLastError(RtlNtStatusToDosError(Status));
1645  return FALSE;
1646  }
1647 
1648  return TRUE;
1649 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SetLastError
#define SetLastError(x)
Definition: compat.h:611
RtlAddAuditAccessAce
NTSYSAPI NTSTATUS NTAPI RtlAddAuditAccessAce(_Inout_ PACL Acl, _In_ ULONG Revision, _In_ ACCESS_MASK AccessMask, _In_ PSID Sid, _In_ BOOLEAN Success, _In_ BOOLEAN Failure)
dwAceRevision
_In_ ULONG dwAceRevision
Definition: rtlfuncs.h:1114
pSid
static PSID pSid
Definition: security.c:74

◆ AddAuditAccessAceEx()

BOOL WINAPI AddAuditAccessAceEx ( PACL  pAcl,
DWORD  dwAceRevision,
DWORD  AceFlags,
DWORD  dwAccessMask,
PSID  pSid,
BOOL  bAuditSuccess,
BOOL  bAuditFailure 
)

Definition at line 1655 of file security.c.

1662 {
1663  NTSTATUS Status;
1664 
1665  Status = RtlAddAuditAccessAceEx(pAcl,
1666  dwAceRevision,
1667  AceFlags,
1668  dwAccessMask,
1669  pSid,
1670  bAuditSuccess,
1671  bAuditFailure);
1672  if (!NT_SUCCESS(Status))
1673  {
1674  SetLastError(RtlNtStatusToDosError(Status));
1675  return FALSE;
1676  }
1677 
1678  return TRUE;
1679 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SetLastError
#define SetLastError(x)
Definition: compat.h:611
dwAceRevision
_In_ ULONG dwAceRevision
Definition: rtlfuncs.h:1114
pSid
static PSID pSid
Definition: security.c:74
RtlAddAuditAccessAceEx
NTSYSAPI NTSTATUS NTAPI RtlAddAuditAccessAceEx(_Inout_ PACL Acl, _In_ ULONG Revision, _In_ ULONG Flags, _In_ ACCESS_MASK AccessMask, _In_ PSID Sid, _In_ BOOLEAN Success, _In_ BOOLEAN Failure)
AceFlags
static const ACEFLAG AceFlags[]
Definition: security.c:2300

◆ AdjustTokenGroups()

BOOL WINAPI AdjustTokenGroups ( HANDLE  TokenHandle,
BOOL  ResetToDefault,
PTOKEN_GROUPS  NewState,
DWORD  BufferLength,
PTOKEN_GROUPS  PreviousState,
PDWORD  ReturnLength 
)

Definition at line 348 of file security.c.

354 {
355  NTSTATUS Status;
356 
357  Status = NtAdjustGroupsToken(TokenHandle,
358  ResetToDefault,
359  NewState,
360  BufferLength,
361  PreviousState,
362  (PULONG)ReturnLength);
363  if (!NT_SUCCESS(Status))
364  {
365  SetLastError(RtlNtStatusToDosError(Status));
366  return FALSE;
367  }
368 
369  return TRUE;
370 }
ReturnLength
IN CINT OUT PVOID IN ULONG OUT PULONG ReturnLength
Definition: dumpinfo.c:39
BufferLength
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ ULONG BufferLength
Definition: wdfdevice.h:3767
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
TokenHandle
_In_ ACCESS_MASK _In_ ULONG _Out_ PHANDLE TokenHandle
Definition: psfuncs.h:715
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SetLastError
#define SetLastError(x)
Definition: compat.h:611
PULONG
unsigned int * PULONG
Definition: retypes.h:1
NtAdjustGroupsToken
NTSTATUS NTAPI NtAdjustGroupsToken(_In_ HANDLE TokenHandle, _In_ BOOLEAN ResetToDefault, _In_ PTOKEN_GROUPS NewState, _In_ ULONG BufferLength, _Out_writes_bytes_to_opt_(BufferLength, *ReturnLength) PTOKEN_GROUPS PreviousState, _When_(PreviousState !=NULL, _Out_) PULONG ReturnLength)
Changes the list of groups by enabling or disabling them in an access token. Unlike NtAdjustPrivilege...
Definition: token.c:4550
PreviousState
_In_ WDF_POWER_DEVICE_STATE PreviousState
Definition: wdfdevice.h:829

◆ AdjustTokenPrivileges()

BOOL WINAPI AdjustTokenPrivileges ( HANDLE  TokenHandle,
BOOL  DisableAllPrivileges,
PTOKEN_PRIVILEGES  NewState,
DWORD  BufferLength,
PTOKEN_PRIVILEGES  PreviousState,
PDWORD  ReturnLength 
)

Definition at line 376 of file security.c.

382 {
383  NTSTATUS Status;
384 
385  Status = NtAdjustPrivilegesToken(TokenHandle,
386  DisableAllPrivileges,
387  NewState,
388  BufferLength,
389  PreviousState,
390  (PULONG)ReturnLength);
391  if (STATUS_NOT_ALL_ASSIGNED == Status)
392  {
393  SetLastError(ERROR_NOT_ALL_ASSIGNED);
394  return TRUE;
395  }
396 
397  if (!NT_SUCCESS(Status))
398  {
399  SetLastError(RtlNtStatusToDosError(Status));
400  return FALSE;
401  }
402 
403  /* AdjustTokenPrivileges is documented to do this */
404  SetLastError(ERROR_SUCCESS);
405 
406  return TRUE;
407 }
ReturnLength
IN CINT OUT PVOID IN ULONG OUT PULONG ReturnLength
Definition: dumpinfo.c:39
STATUS_NOT_ALL_ASSIGNED
#define STATUS_NOT_ALL_ASSIGNED
Definition: ntstatus.h:85
BufferLength
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ ULONG BufferLength
Definition: wdfdevice.h:3767
ERROR_SUCCESS
#define ERROR_SUCCESS
Definition: deptool.c:10
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
TokenHandle
_In_ ACCESS_MASK _In_ ULONG _Out_ PHANDLE TokenHandle
Definition: psfuncs.h:715
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SetLastError
#define SetLastError(x)
Definition: compat.h:611
PULONG
unsigned int * PULONG
Definition: retypes.h:1
ERROR_NOT_ALL_ASSIGNED
#define ERROR_NOT_ALL_ASSIGNED
Definition: winerror.h:782
NtAdjustPrivilegesToken
_Must_inspect_result_ __kernel_entry NTSTATUS NTAPI NtAdjustPrivilegesToken(_In_ HANDLE TokenHandle, _In_ BOOLEAN DisableAllPrivileges, _In_opt_ PTOKEN_PRIVILEGES NewState, _In_ ULONG BufferLength, _Out_writes_bytes_to_opt_(BufferLength, *ReturnLength) PTOKEN_PRIVILEGES PreviousState, _When_(PreviousState!=NULL, _Out_) PULONG ReturnLength)
Removes a certain amount of privileges of a token based upon the request by the caller.
Definition: token.c:4969
PreviousState
_In_ WDF_POWER_DEVICE_STATE PreviousState
Definition: wdfdevice.h:829

Referenced by AcquireRemoveRestorePrivilege(), AddDeviceW(), DisablePrivilege(), DisableTokenPrivileges(), EnablePrivilege(), EnableProcessPrivileges(), CShellCommandSACL::Execute(), FormatEx2(), InstallReactOS(), named_pipe_client_func(), PauseBalanceW(), Privilege(), pSetupEnablePrivilege(), RecvSubvolGUIW(), RecvSubvolW(), RemoveDeviceW(), ResetStatsW(), ResizeDeviceW(), ScmEnableBackupRestorePrivileges(), SendSubvolGUIW(), SendSubvolW(), set_privileges(), SetDriverLoadPrivilege(), SetPrivilege(), ShowScrubW(), ShutdownSystem(), StartBalanceW(), StartScrubW(), StopBalanceW(), StopScrubW(), SystemSetLocalTime(), SystemSetTime(), test8(), test_AdjustTokenPrivileges(), test_SetFileValidData(), test_system_security_access(), UpdateDriver(), WinMain(), and wWinMain().

◆ ADVAPI_GetComputerSid()

BOOL ADVAPI_GetComputerSid ( PSID  sid)

Definition at line 275 of file security.c.

276 {
277  static const struct /* same fields as struct SID */
278  {
279  BYTE Revision;
280  BYTE SubAuthorityCount;
281  SID_IDENTIFIER_AUTHORITY IdentifierAuthority;
282  DWORD SubAuthority[4];
283  } computer_sid =
284  { SID_REVISION, 4, { SECURITY_NT_AUTHORITY }, { SECURITY_NT_NON_UNIQUE, 0, 0, 0 } };
285 
286  memcpy( sid, &computer_sid, sizeof(computer_sid) );
287  return TRUE;
288 }
TRUE
#define TRUE
Definition: types.h:120
SID_REVISION
#define SID_REVISION
Definition: setypes.h:468
sid
FT_UInt sid
Definition: cffcmap.c:139
Revision
_In_ ULONG Revision
Definition: rtlfuncs.h:1103
SECURITY_NT_AUTHORITY
#define SECURITY_NT_AUTHORITY
Definition: setypes.h:541
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
_SID_IDENTIFIER_AUTHORITY
Definition: ms-dtyp.idl:194
memcpy
#define memcpy(s1, s2, n)
Definition: mkisofs.h:878
SubAuthorityCount
_In_ PSID_IDENTIFIER_AUTHORITY _In_ UCHAR SubAuthorityCount
Definition: rtlfuncs.h:1486
BYTE
unsigned char BYTE
Definition: xxhash.c:193
IdentifierAuthority
_In_ PSID_IDENTIFIER_AUTHORITY IdentifierAuthority
Definition: rtlfuncs.h:1486
SECURITY_NT_NON_UNIQUE
#define SECURITY_NT_NON_UNIQUE
Definition: setypes.h:564

Referenced by ComputeStringSidSize(), and ParseStringSidToSid().

◆ ADVAPI_IsLocalComputer()

BOOL ADVAPI_IsLocalComputer ( LPCWSTR  ServerName)

Definition at line 253 of file security.c.

254 {
255  DWORD dwSize = MAX_COMPUTERNAME_LENGTH + 1;
256  BOOL Result;
257  LPWSTR buf;
258 
259  if (!ServerName || !ServerName[0])
260  return TRUE;
261 
262  buf = heap_alloc(dwSize * sizeof(WCHAR));
263  Result = GetComputerNameW(buf, &dwSize);
264  if (Result && (ServerName[0] == '\\') && (ServerName[1] == '\\'))
265  ServerName += 2;
266  Result = Result && !lstrcmpW(ServerName, buf);
267  heap_free(buf);
268 
269  return Result;
270 }
TRUE
#define TRUE
Definition: types.h:120
lstrcmpW
int WINAPI lstrcmpW(LPCWSTR lpString1, LPCWSTR lpString2)
Definition: lstring.c:170
GetComputerNameW
BOOL WINAPI GetComputerNameW(LPWSTR lpBuffer, LPDWORD lpnSize)
Definition: compname.c:446
heap_alloc
static void * heap_alloc(size_t len)
Definition: appwiz.h:65
buf
GLenum GLuint GLenum GLsizei const GLchar * buf
Definition: glext.h:7751
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
Result
_At_(*)(_In_ PWSK_CLIENT Client, _In_opt_ PUNICODE_STRING NodeName, _In_opt_ PUNICODE_STRING ServiceName, _In_opt_ ULONG NameSpace, _In_opt_ GUID *Provider, _In_opt_ PADDRINFOEXW Hints, _Outptr_ PADDRINFOEXW *Result, _In_opt_ PEPROCESS OwningProcess, _In_opt_ PETHREAD OwningThread, _Inout_ PIRP Irp Result)(Mem)) NTSTATUS(WSKAPI *PFN_WSK_GET_ADDRESS_INFO
Definition: wsk.h:426
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
MAX_COMPUTERNAME_LENGTH
#define MAX_COMPUTERNAME_LENGTH
Definition: winbase.h:240
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184
dwSize
PSDBQUERYRESULT_VISTA PVOID DWORD * dwSize
Definition: env.c:56
heap_free
static BOOL heap_free(void *mem)
Definition: appwiz.h:75

◆ AllocateAndInitializeSid()

BOOL WINAPI AllocateAndInitializeSid ( PSID_IDENTIFIER_AUTHORITY  pIdentifierAuthority,
BYTE  nSubAuthorityCount,
DWORD  nSubAuthority0,
DWORD  nSubAuthority1,
DWORD  nSubAuthority2,
DWORD  nSubAuthority3,
DWORD  nSubAuthority4,
DWORD  nSubAuthority5,
DWORD  nSubAuthority6,
DWORD  nSubAuthority7,
PSID pSid 
)

Definition at line 553 of file security.c.

560 {
561  return set_ntstatus( RtlAllocateAndInitializeSid(
562  pIdentifierAuthority, nSubAuthorityCount,
563  nSubAuthority0, nSubAuthority1, nSubAuthority2, nSubAuthority3,
564  nSubAuthority4, nSubAuthority5, nSubAuthority6, nSubAuthority7,
565  pSid ));
566 }
RtlAllocateAndInitializeSid
NTSYSAPI NTSTATUS NTAPI RtlAllocateAndInitializeSid(IN PSID_IDENTIFIER_AUTHORITY IdentifierAuthority, IN UCHAR SubAuthorityCount, IN ULONG SubAuthority0, IN ULONG SubAuthority1, IN ULONG SubAuthority2, IN ULONG SubAuthority3, IN ULONG SubAuthority4, IN ULONG SubAuthority5, IN ULONG SubAuthority6, IN ULONG SubAuthority7, OUT PSID *Sid)
Definition: sid.c:290
set_ntstatus
static __inline BOOL set_ntstatus(NTSTATUS status)
Definition: security.c:229
pSid
static PSID pSid
Definition: security.c:74

Referenced by check_wellknown_name(), CheckForGuestsAndAdmins(), CreateDefaultSecurityDescriptor(), CreateLogoffSecurityAttributes(), GetShellSecurityDescriptor(), is_process_limited(), is_token_admin(), IsNTAdmin(), IsUserAdmin(), PerfDataInitialize(), pSetupIsUserAdmin(), SHTestTokenMembership(), test_AccessCheck(), test_AddMandatoryAce(), test_CreateWellKnownSid(), test_EqualSid(), test_GetExplicitEntriesFromAclW(), test_GetNamedSecurityInfoA(), test_GetSecurityInfo(), test_LookupAccountSid(), test_process_security(), test_reg_create_key(), test_reg_open_key(), test_SetEntriesInAclA(), test_SetEntriesInAclW(), test_sid(), and test_trustee().

◆ AllocateLocallyUniqueId()

BOOL WINAPI AllocateLocallyUniqueId ( PLUID  Luid)

Definition at line 1097 of file security.c.

1098 {
1099  NTSTATUS Status;
1100 
1101  Status = NtAllocateLocallyUniqueId (Luid);
1102  if (!NT_SUCCESS (Status))
1103  {
1104  SetLastError(RtlNtStatusToDosError(Status));
1105  return FALSE;
1106  }
1107 
1108  return TRUE;
1109 }
TRUE
#define TRUE
Definition: types.h:120
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
NtAllocateLocallyUniqueId
NTSTATUS NTAPI NtAllocateLocallyUniqueId(OUT LUID *LocallyUniqueId)
Definition: uuid.c:348
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SetLastError
#define SetLastError(x)
Definition: compat.h:611

Referenced by CookupNodeId(), LogonUserExW(), MyLogonUser(), and wined3d_adapter_init().

◆ AreAllAccessesGranted()

BOOL WINAPI AreAllAccessesGranted ( DWORD  GrantedAccess,
DWORD  DesiredAccess 
)

Definition at line 2208 of file security.c.

2210 {
2211  return (BOOL)RtlAreAllAccessesGranted(GrantedAccess,
2212  DesiredAccess);
2213 }
DesiredAccess
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2654
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
RtlAreAllAccessesGranted
NTSYSAPI BOOLEAN NTAPI RtlAreAllAccessesGranted(ACCESS_MASK GrantedAccess, ACCESS_MASK DesiredAccess)
GrantedAccess
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK GrantedAccess
Definition: sefuncs.h:13

◆ AreAnyAccessesGranted()

BOOL WINAPI AreAnyAccessesGranted ( DWORD  GrantedAccess,
DWORD  DesiredAccess 
)

Definition at line 2220 of file security.c.

2222 {
2223  return (BOOL)RtlAreAnyAccessesGranted(GrantedAccess,
2224  DesiredAccess);
2225 }
DesiredAccess
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2654
RtlAreAnyAccessesGranted
NTSYSAPI BOOLEAN NTAPI RtlAreAnyAccessesGranted(ACCESS_MASK GrantedAccess, ACCESS_MASK DesiredAccess)
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
GrantedAccess
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK GrantedAccess
Definition: sefuncs.h:13

◆ BuildExplicitAccessWithNameA()

VOID WINAPI BuildExplicitAccessWithNameA ( PEXPLICIT_ACCESSA  pExplicitAccess,
LPSTR  pTrusteeName,
DWORD  AccessPermissions,
ACCESS_MODE  AccessMode,
DWORD  Inheritance 
)

Definition at line 1806 of file security.c.

1811 {
1812  pExplicitAccess->grfAccessPermissions = AccessPermissions;
1813  pExplicitAccess->grfAccessMode = AccessMode;
1814  pExplicitAccess->grfInheritance = Inheritance;
1815 
1816  pExplicitAccess->Trustee.pMultipleTrustee = NULL;
1817  pExplicitAccess->Trustee.MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
1818  pExplicitAccess->Trustee.TrusteeForm = TRUSTEE_IS_NAME;
1819  pExplicitAccess->Trustee.TrusteeType = TRUSTEE_IS_UNKNOWN;
1820  pExplicitAccess->Trustee.ptstrName = pTrusteeName;
1821 }
_TRUSTEE_A::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:207
_EXPLICIT_ACCESS_A::grfAccessMode
ACCESS_MODE grfAccessMode
Definition: accctrl.h:333
_TRUSTEE_A::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:205
_TRUSTEE_A::pMultipleTrustee
struct _TRUSTEE_A * pMultipleTrustee
Definition: accctrl.h:204
_EXPLICIT_ACCESS_A::Trustee
TRUSTEE_A Trustee
Definition: accctrl.h:335
_TRUSTEE_A::ptstrName
LPSTR ptstrName
Definition: accctrl.h:208
AccessMode
_In_ PEPROCESS _In_ KPROCESSOR_MODE AccessMode
Definition: mmfuncs.h:395
_EXPLICIT_ACCESS_A::grfInheritance
DWORD grfInheritance
Definition: accctrl.h:334
NULL
#define NULL
Definition: types.h:112
_EXPLICIT_ACCESS_A::grfAccessPermissions
DWORD grfAccessPermissions
Definition: accctrl.h:332
_TRUSTEE_A::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:206

◆ BuildExplicitAccessWithNameW()

VOID WINAPI BuildExplicitAccessWithNameW ( PEXPLICIT_ACCESSW  pExplicitAccess,
LPWSTR  pTrusteeName,
DWORD  AccessPermissions,
ACCESS_MODE  AccessMode,
DWORD  Inheritance 
)

Definition at line 1828 of file security.c.

1833 {
1834  pExplicitAccess->grfAccessPermissions = AccessPermissions;
1835  pExplicitAccess->grfAccessMode = AccessMode;
1836  pExplicitAccess->grfInheritance = Inheritance;
1837 
1838  pExplicitAccess->Trustee.pMultipleTrustee = NULL;
1839  pExplicitAccess->Trustee.MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
1840  pExplicitAccess->Trustee.TrusteeForm = TRUSTEE_IS_NAME;
1841  pExplicitAccess->Trustee.TrusteeType = TRUSTEE_IS_UNKNOWN;
1842  pExplicitAccess->Trustee.ptstrName = pTrusteeName;
1843 }
_TRUSTEE_W::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:215
_TRUSTEE_W::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:216
AccessMode
_In_ PEPROCESS _In_ KPROCESSOR_MODE AccessMode
Definition: mmfuncs.h:395
_EXPLICIT_ACCESS_W::grfInheritance
DWORD grfInheritance
Definition: accctrl.h:342
_EXPLICIT_ACCESS_W::grfAccessMode
ACCESS_MODE grfAccessMode
Definition: accctrl.h:341
_TRUSTEE_W::pMultipleTrustee
struct _TRUSTEE_W * pMultipleTrustee
Definition: accctrl.h:213
_EXPLICIT_ACCESS_W::Trustee
TRUSTEE_W Trustee
Definition: accctrl.h:343
_TRUSTEE_W::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:214
_TRUSTEE_W::ptstrName
LPWSTR ptstrName
Definition: accctrl.h:217
_EXPLICIT_ACCESS_W::grfAccessPermissions
DWORD grfAccessPermissions
Definition: accctrl.h:340
NULL
#define NULL
Definition: types.h:112

◆ BuildTrusteeWithNameA()

VOID WINAPI BuildTrusteeWithNameA ( PTRUSTEE_A  pTrustee,
LPSTR  name 
)

Definition at line 2051 of file security.c.

2053 {
2054  TRACE("%p %s\n", pTrustee, name);
2055 
2056  pTrustee->pMultipleTrustee = NULL;
2057  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
2058  pTrustee->TrusteeForm = TRUSTEE_IS_NAME;
2059  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
2060  pTrustee->ptstrName = name;
2061 }
_TRUSTEE_A::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:207
_TRUSTEE_A::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:205
_TRUSTEE_A::pMultipleTrustee
struct _TRUSTEE_A * pMultipleTrustee
Definition: accctrl.h:204
_TRUSTEE_A::ptstrName
LPSTR ptstrName
Definition: accctrl.h:208
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
NULL
#define NULL
Definition: types.h:112
name
Definition: name.c:38
_TRUSTEE_A::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:206
name
GLuint const GLchar * name
Definition: glext.h:6031

◆ BuildTrusteeWithNameW()

VOID WINAPI BuildTrusteeWithNameW ( PTRUSTEE_W  pTrustee,
LPWSTR  name 
)

Definition at line 2067 of file security.c.

2069 {
2070  TRACE("%p %s\n", pTrustee, name);
2071 
2072  pTrustee->pMultipleTrustee = NULL;
2073  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
2074  pTrustee->TrusteeForm = TRUSTEE_IS_NAME;
2075  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
2076  pTrustee->ptstrName = name;
2077 }
_TRUSTEE_W::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:215
_TRUSTEE_W::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:216
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
_TRUSTEE_W::pMultipleTrustee
struct _TRUSTEE_W * pMultipleTrustee
Definition: accctrl.h:213
_TRUSTEE_W::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:214
_TRUSTEE_W::ptstrName
LPWSTR ptstrName
Definition: accctrl.h:217
NULL
#define NULL
Definition: types.h:112
name
Definition: name.c:38
name
GLuint const GLchar * name
Definition: glext.h:6031

◆ BuildTrusteeWithObjectsAndNameA()

VOID WINAPI BuildTrusteeWithObjectsAndNameA ( PTRUSTEEA  pTrustee,
POBJECTS_AND_NAME_A  pObjName,
SE_OBJECT_TYPE  ObjectType,
LPSTR  ObjectTypeName,
LPSTR  InheritedObjectTypeName,
LPSTR  Name 
)

Definition at line 1848 of file security.c.

1851 {
1852  DWORD ObjectsPresent = 0;
1853 
1854  TRACE("%p %p 0x%08x %p %p %s\n", pTrustee, pObjName,
1855  ObjectType, ObjectTypeName, InheritedObjectTypeName, debugstr_a(Name));
1856 
1857  /* Fill the OBJECTS_AND_NAME structure */
1858  pObjName->ObjectType = ObjectType;
1859  if (ObjectTypeName != NULL)
1860  {
1861  ObjectsPresent |= ACE_OBJECT_TYPE_PRESENT;
1862  }
1863 
1864  pObjName->InheritedObjectTypeName = InheritedObjectTypeName;
1865  if (InheritedObjectTypeName != NULL)
1866  {
1867  ObjectsPresent |= ACE_INHERITED_OBJECT_TYPE_PRESENT;
1868  }
1869 
1870  pObjName->ObjectsPresent = ObjectsPresent;
1871  pObjName->ptstrName = Name;
1872 
1873  /* Fill the TRUSTEE structure */
1874  pTrustee->pMultipleTrustee = NULL;
1875  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
1876  pTrustee->TrusteeForm = TRUSTEE_IS_OBJECTS_AND_NAME;
1877  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
1878  pTrustee->ptstrName = (LPSTR)pObjName;
1879 }
ObjectTypeName
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE LPSTR ObjectTypeName
Definition: security.c:77
ObjectType
ObjectType
Definition: metafile.c:80
_TRUSTEE_A::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:207
ACE_OBJECT_TYPE_PRESENT
#define ACE_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:106
InheritedObjectTypeName
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE LPSTR LPSTR InheritedObjectTypeName
Definition: security.c:77
_TRUSTEE_A::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:205
LPSTR
static LPSTR(WINAPI *pGetTrusteeNameA)(PTRUSTEEA pTrustee)
_OBJECTS_AND_NAME_A::ObjectsPresent
DWORD ObjectsPresent
Definition: accctrl.h:356
_TRUSTEE_A::pMultipleTrustee
struct _TRUSTEE_A * pMultipleTrustee
Definition: accctrl.h:204
Name
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE LPSTR LPSTR LPSTR Name
Definition: security.c:77
_TRUSTEE_A::ptstrName
LPSTR ptstrName
Definition: accctrl.h:208
ACE_INHERITED_OBJECT_TYPE_PRESENT
#define ACE_INHERITED_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:107
NameRec_
Definition: apinames.c:48
_OBJECTS_AND_NAME_A::ObjectType
SE_OBJECT_TYPE ObjectType
Definition: accctrl.h:357
pObjName
static POBJECTS_AND_NAME_A pObjName
Definition: security.c:77
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
debugstr_a
#define debugstr_a
Definition: kernel32.h:31
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
_OBJECTS_AND_NAME_A::ptstrName
LPSTR ptstrName
Definition: accctrl.h:360
ObjectType
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE ObjectType
Definition: security.c:77
NULL
#define NULL
Definition: types.h:112
_OBJECTS_AND_NAME_A::InheritedObjectTypeName
LPSTR InheritedObjectTypeName
Definition: accctrl.h:359
_TRUSTEE_A::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:206

◆ BuildTrusteeWithObjectsAndNameW()

VOID WINAPI BuildTrusteeWithObjectsAndNameW ( PTRUSTEEW  pTrustee,
POBJECTS_AND_NAME_W  pObjName,
SE_OBJECT_TYPE  ObjectType,
LPWSTR  ObjectTypeName,
LPWSTR  InheritedObjectTypeName,
LPWSTR  Name 
)

Definition at line 1884 of file security.c.

1887 {
1888  DWORD ObjectsPresent = 0;
1889 
1890  TRACE("%p %p 0x%08x %p %p %s\n", pTrustee, pObjName,
1891  ObjectType, ObjectTypeName, InheritedObjectTypeName, debugstr_w(Name));
1892 
1893  /* Fill the OBJECTS_AND_NAME structure */
1894  pObjName->ObjectType = ObjectType;
1895  if (ObjectTypeName != NULL)
1896  {
1897  ObjectsPresent |= ACE_OBJECT_TYPE_PRESENT;
1898  }
1899 
1900  pObjName->InheritedObjectTypeName = InheritedObjectTypeName;
1901  if (InheritedObjectTypeName != NULL)
1902  {
1903  ObjectsPresent |= ACE_INHERITED_OBJECT_TYPE_PRESENT;
1904  }
1905 
1906  pObjName->ObjectsPresent = ObjectsPresent;
1907  pObjName->ptstrName = Name;
1908 
1909  /* Fill the TRUSTEE structure */
1910  pTrustee->pMultipleTrustee = NULL;
1911  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
1912  pTrustee->TrusteeForm = TRUSTEE_IS_OBJECTS_AND_NAME;
1913  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
1914  pTrustee->ptstrName = (LPWSTR)pObjName;
1915 }
ObjectTypeName
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE LPSTR ObjectTypeName
Definition: security.c:77
ObjectType
ObjectType
Definition: metafile.c:80
ACE_OBJECT_TYPE_PRESENT
#define ACE_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:106
_TRUSTEE_W::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:215
InheritedObjectTypeName
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE LPSTR LPSTR InheritedObjectTypeName
Definition: security.c:77
_OBJECTS_AND_NAME_A::ObjectsPresent
DWORD ObjectsPresent
Definition: accctrl.h:356
_TRUSTEE_W::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:216
Name
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE LPSTR LPSTR LPSTR Name
Definition: security.c:77
debugstr_w
#define debugstr_w
Definition: kernel32.h:32
ACE_INHERITED_OBJECT_TYPE_PRESENT
#define ACE_INHERITED_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:107
NameRec_
Definition: apinames.c:48
_OBJECTS_AND_NAME_A::ObjectType
SE_OBJECT_TYPE ObjectType
Definition: accctrl.h:357
pObjName
static POBJECTS_AND_NAME_A pObjName
Definition: security.c:77
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
_TRUSTEE_W::pMultipleTrustee
struct _TRUSTEE_W * pMultipleTrustee
Definition: accctrl.h:213
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
_OBJECTS_AND_NAME_A::ptstrName
LPSTR ptstrName
Definition: accctrl.h:360
ObjectType
static POBJECTS_AND_NAME_A SE_OBJECT_TYPE ObjectType
Definition: security.c:77
_TRUSTEE_W::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:214
_TRUSTEE_W::ptstrName
LPWSTR ptstrName
Definition: accctrl.h:217
NULL
#define NULL
Definition: types.h:112
_OBJECTS_AND_NAME_A::InheritedObjectTypeName
LPSTR InheritedObjectTypeName
Definition: accctrl.h:359
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184

◆ BuildTrusteeWithObjectsAndSidA()

VOID WINAPI BuildTrusteeWithObjectsAndSidA ( PTRUSTEEA  pTrustee,
POBJECTS_AND_SID  pObjSid,
GUID pObjectGuid,
GUID pInheritedObjectGuid,
PSID  pSid 
)

Definition at line 1921 of file security.c.

1926 {
1927  DWORD ObjectsPresent = 0;
1928 
1929  TRACE("%p %p %p %p %p\n", pTrustee, pObjSid, pObjectGuid, pInheritedObjectGuid, pSid);
1930 
1931  /* Fill the OBJECTS_AND_SID structure */
1932  if (pObjectGuid != NULL)
1933  {
1934  pObjSid->ObjectTypeGuid = *pObjectGuid;
1935  ObjectsPresent |= ACE_OBJECT_TYPE_PRESENT;
1936  }
1937  else
1938  {
1939  ZeroMemory(&pObjSid->ObjectTypeGuid,
1940  sizeof(GUID));
1941  }
1942 
1943  if (pInheritedObjectGuid != NULL)
1944  {
1945  pObjSid->InheritedObjectTypeGuid = *pInheritedObjectGuid;
1946  ObjectsPresent |= ACE_INHERITED_OBJECT_TYPE_PRESENT;
1947  }
1948  else
1949  {
1950  ZeroMemory(&pObjSid->InheritedObjectTypeGuid,
1951  sizeof(GUID));
1952  }
1953 
1954  pObjSid->ObjectsPresent = ObjectsPresent;
1955  pObjSid->pSid = pSid;
1956 
1957  /* Fill the TRUSTEE structure */
1958  pTrustee->pMultipleTrustee = NULL;
1959  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
1960  pTrustee->TrusteeForm = TRUSTEE_IS_OBJECTS_AND_SID;
1961  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
1962  pTrustee->ptstrName = (LPSTR) pObjSid;
1963 }
_OBJECTS_AND_SID::ObjectTypeGuid
GUID ObjectTypeGuid
Definition: accctrl.h:349
_TRUSTEE_A::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:207
ACE_OBJECT_TYPE_PRESENT
#define ACE_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:106
_OBJECTS_AND_SID::pSid
SID * pSid
Definition: accctrl.h:351
_TRUSTEE_A::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:205
LPSTR
static LPSTR(WINAPI *pGetTrusteeNameA)(PTRUSTEEA pTrustee)
_TRUSTEE_A::pMultipleTrustee
struct _TRUSTEE_A * pMultipleTrustee
Definition: accctrl.h:204
ZeroMemory
#define ZeroMemory
Definition: winbase.h:1664
_TRUSTEE_A::ptstrName
LPSTR ptstrName
Definition: accctrl.h:208
ACE_INHERITED_OBJECT_TYPE_PRESENT
#define ACE_INHERITED_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:107
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
pObjSid
static POBJECTS_AND_SID pObjSid
Definition: security.c:83
pInheritedObjectGuid
static POBJECTS_AND_SID GUID GUID * pInheritedObjectGuid
Definition: security.c:83
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
pObjectGuid
static POBJECTS_AND_SID GUID * pObjectGuid
Definition: security.c:83
NULL
#define NULL
Definition: types.h:112
pSid
static PSID pSid
Definition: security.c:74
_OBJECTS_AND_SID::InheritedObjectTypeGuid
GUID InheritedObjectTypeGuid
Definition: accctrl.h:350
_OBJECTS_AND_SID::ObjectsPresent
DWORD ObjectsPresent
Definition: accctrl.h:348
_TRUSTEE_A::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:206

◆ BuildTrusteeWithObjectsAndSidW()

VOID WINAPI BuildTrusteeWithObjectsAndSidW ( PTRUSTEEW  pTrustee,
POBJECTS_AND_SID  pObjSid,
GUID pObjectGuid,
GUID pInheritedObjectGuid,
PSID  pSid 
)

Definition at line 1970 of file security.c.

1975 {
1976  DWORD ObjectsPresent = 0;
1977 
1978  TRACE("%p %p %p %p %p\n", pTrustee, pObjSid, pObjectGuid, pInheritedObjectGuid, pSid);
1979 
1980  /* Fill the OBJECTS_AND_SID structure */
1981  if (pObjectGuid != NULL)
1982  {
1983  pObjSid->ObjectTypeGuid = *pObjectGuid;
1984  ObjectsPresent |= ACE_OBJECT_TYPE_PRESENT;
1985  }
1986  else
1987  {
1988  ZeroMemory(&pObjSid->ObjectTypeGuid,
1989  sizeof(GUID));
1990  }
1991 
1992  if (pInheritedObjectGuid != NULL)
1993  {
1994  pObjSid->InheritedObjectTypeGuid = *pInheritedObjectGuid;
1995  ObjectsPresent |= ACE_INHERITED_OBJECT_TYPE_PRESENT;
1996  }
1997  else
1998  {
1999  ZeroMemory(&pObjSid->InheritedObjectTypeGuid,
2000  sizeof(GUID));
2001  }
2002 
2003  pObjSid->ObjectsPresent = ObjectsPresent;
2004  pObjSid->pSid = pSid;
2005 
2006  /* Fill the TRUSTEE structure */
2007  pTrustee->pMultipleTrustee = NULL;
2008  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
2009  pTrustee->TrusteeForm = TRUSTEE_IS_OBJECTS_AND_SID;
2010  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
2011  pTrustee->ptstrName = (LPWSTR) pObjSid;
2012 }
_OBJECTS_AND_SID::ObjectTypeGuid
GUID ObjectTypeGuid
Definition: accctrl.h:349
ACE_OBJECT_TYPE_PRESENT
#define ACE_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:106
_TRUSTEE_W::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:215
_OBJECTS_AND_SID::pSid
SID * pSid
Definition: accctrl.h:351
ZeroMemory
#define ZeroMemory
Definition: winbase.h:1664
_TRUSTEE_W::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:216
ACE_INHERITED_OBJECT_TYPE_PRESENT
#define ACE_INHERITED_OBJECT_TYPE_PRESENT
Definition: winnt_old.h:107
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
pObjSid
static POBJECTS_AND_SID pObjSid
Definition: security.c:83
pInheritedObjectGuid
static POBJECTS_AND_SID GUID GUID * pInheritedObjectGuid
Definition: security.c:83
_TRUSTEE_W::pMultipleTrustee
struct _TRUSTEE_W * pMultipleTrustee
Definition: accctrl.h:213
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
_TRUSTEE_W::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:214
_TRUSTEE_W::ptstrName
LPWSTR ptstrName
Definition: accctrl.h:217
pObjectGuid
static POBJECTS_AND_SID GUID * pObjectGuid
Definition: security.c:83
NULL
#define NULL
Definition: types.h:112
pSid
static PSID pSid
Definition: security.c:74
_OBJECTS_AND_SID::InheritedObjectTypeGuid
GUID InheritedObjectTypeGuid
Definition: accctrl.h:350
_OBJECTS_AND_SID::ObjectsPresent
DWORD ObjectsPresent
Definition: accctrl.h:348
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184

◆ BuildTrusteeWithSidA()

VOID WINAPI BuildTrusteeWithSidA ( PTRUSTEE_A  pTrustee,
PSID  pSid 
)

Definition at line 2018 of file security.c.

2020 {
2021  TRACE("%p %p\n", pTrustee, pSid);
2022 
2023  pTrustee->pMultipleTrustee = NULL;
2024  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
2025  pTrustee->TrusteeForm = TRUSTEE_IS_SID;
2026  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
2027  pTrustee->ptstrName = (LPSTR) pSid;
2028 }
_TRUSTEE_A::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:207
_TRUSTEE_A::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:205
LPSTR
static LPSTR(WINAPI *pGetTrusteeNameA)(PTRUSTEEA pTrustee)
_TRUSTEE_A::pMultipleTrustee
struct _TRUSTEE_A * pMultipleTrustee
Definition: accctrl.h:204
_TRUSTEE_A::ptstrName
LPSTR ptstrName
Definition: accctrl.h:208
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
NULL
#define NULL
Definition: types.h:112
pSid
static PSID pSid
Definition: security.c:74
_TRUSTEE_A::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:206

◆ BuildTrusteeWithSidW()

VOID WINAPI BuildTrusteeWithSidW ( PTRUSTEE_W  pTrustee,
PSID  pSid 
)

Definition at line 2035 of file security.c.

2037 {
2038  TRACE("%p %p\n", pTrustee, pSid);
2039 
2040  pTrustee->pMultipleTrustee = NULL;
2041  pTrustee->MultipleTrusteeOperation = NO_MULTIPLE_TRUSTEE;
2042  pTrustee->TrusteeForm = TRUSTEE_IS_SID;
2043  pTrustee->TrusteeType = TRUSTEE_IS_UNKNOWN;
2044  pTrustee->ptstrName = (LPWSTR) pSid;
2045 }
_TRUSTEE_W::TrusteeForm
TRUSTEE_FORM TrusteeForm
Definition: accctrl.h:215
_TRUSTEE_W::TrusteeType
TRUSTEE_TYPE TrusteeType
Definition: accctrl.h:216
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
_TRUSTEE_W::pMultipleTrustee
struct _TRUSTEE_W * pMultipleTrustee
Definition: accctrl.h:213
_TRUSTEE_W::MultipleTrusteeOperation
MULTIPLE_TRUSTEE_OPERATION MultipleTrusteeOperation
Definition: accctrl.h:214
_TRUSTEE_W::ptstrName
LPWSTR ptstrName
Definition: accctrl.h:217
NULL
#define NULL
Definition: types.h:112
pSid
static PSID pSid
Definition: security.c:74
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184

◆ ComputeStringSidSize()

static DWORD ComputeStringSidSize ( LPCWSTR  StringSid)
static

Definition at line 3469 of file security.c.

3470 {
3471  if (StringSid[0] == 'S' && StringSid[1] == '-') /* S-R-I(-S)+ */
3472  {
3473  int ctok = 0;
3474  while (*StringSid)
3475  {
3476  if (*StringSid == '-')
3477  ctok++;
3478  StringSid++;
3479  }
3480 
3481  if (ctok >= 3)
3482  return GetSidLengthRequired(ctok - 2);
3483  }
3484  else /* String constant format - Only available in winxp and above */
3485  {
3486  unsigned int i;
3487 
3488  for (i = 0; i < sizeof(WellKnownSids)/sizeof(WellKnownSids[0]); i++)
3489  if (!strncmpW(WellKnownSids[i].wstr, StringSid, 2))
3490  return GetSidLengthRequired(WellKnownSids[i].Sid.SubAuthorityCount);
3491 
3492  for (i = 0; i < sizeof(WellKnownRids)/sizeof(WellKnownRids[0]); i++)
3493  if (!strncmpW(WellKnownRids[i].wstr, StringSid, 2))
3494  {
3495  MAX_SID local;
3496  ADVAPI_GetComputerSid(&local);
3497  return GetSidLengthRequired(*GetSidSubAuthorityCount(&local) + 1);
3498  }
3499 
3500  }
3501 
3502  return GetSidLengthRequired(0);
3503 }
_MAX_SID
Definition: security.c:31
WellKnownSids
static const WELLKNOWNSID WellKnownSids[]
Definition: security.c:47
GetSidLengthRequired
DWORD WINAPI GetSidLengthRequired(UCHAR nSubAuthorityCount)
Definition: security.c:731
strncmpW
WINE_UNICODE_INLINE int strncmpW(const WCHAR *str1, const WCHAR *str2, int n)
Definition: unicode.h:235
ADVAPI_GetComputerSid
BOOL ADVAPI_GetComputerSid(PSID sid)
Definition: security.c:275
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
GetSidSubAuthorityCount
PUCHAR WINAPI GetSidSubAuthorityCount(PSID pSid)
Definition: security.c:787
local
#define local
Definition: zutil.h:30
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
_SID::SubAuthorityCount
BYTE SubAuthorityCount
Definition: ms-dtyp.idl:200
WellKnownRids
static const WELLKNOWNRID WellKnownRids[]
Definition: security.c:111

Referenced by ParseStringSidToSid().

◆ ConvertSecurityDescriptorToStringSecurityDescriptorA()

BOOL WINAPI ConvertSecurityDescriptorToStringSecurityDescriptorA ( PSECURITY_DESCRIPTOR  SecurityDescriptor,
DWORD  SDRevision,
SECURITY_INFORMATION  Information,
LPSTR OutputString,
PULONG  OutputLen 
)

Definition at line 3175 of file security.c.

3176 {
3177  LPWSTR wstr;
3178  ULONG len;
3179  if (ConvertSecurityDescriptorToStringSecurityDescriptorW(SecurityDescriptor, SDRevision, Information, &wstr, &len))
3180  {
3181  int lenA;
3182 
3183  lenA = WideCharToMultiByte(CP_ACP, 0, wstr, len, NULL, 0, NULL, NULL);
3184  *OutputString = heap_alloc(lenA);
3185 #ifdef __REACTOS__
3186  if (*OutputString == NULL)
3187  {
3188  LocalFree(wstr);
3189  *OutputLen = 0;
3190  return FALSE;
3191  }
3192 #endif
3193  WideCharToMultiByte(CP_ACP, 0, wstr, len, *OutputString, lenA, NULL, NULL);
3194  LocalFree(wstr);
3195 
3196  if (OutputLen != NULL)
3197  *OutputLen = lenA;
3198  return TRUE;
3199  }
3200  else
3201  {
3202  *OutputString = NULL;
3203  if (OutputLen)
3204  *OutputLen = 0;
3205  return FALSE;
3206  }
3207 }
WideCharToMultiByte
#define WideCharToMultiByte
Definition: compat.h:111
TRUE
#define TRUE
Definition: types.h:120
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
CP_ACP
#define CP_ACP
Definition: compat.h:109
ConvertSecurityDescriptorToStringSecurityDescriptorW
BOOL WINAPI ConvertSecurityDescriptorToStringSecurityDescriptorW(PSECURITY_DESCRIPTOR SecurityDescriptor, DWORD SDRevision, SECURITY_INFORMATION RequestedInformation, LPWSTR *OutputString, PULONG OutputLen)
Definition: security.c:3111
Information
_In_ WDFREQUEST _In_ NTSTATUS _In_ ULONG_PTR Information
Definition: wdfrequest.h:1044
heap_alloc
static void * heap_alloc(size_t len)
Definition: appwiz.h:65
FALSE
#define FALSE
Definition: types.h:117
len
GLenum GLsizei len
Definition: glext.h:6722
LocalFree
HLOCAL NTAPI LocalFree(HLOCAL hMem)
Definition: heapmem.c:1577
NULL
#define NULL
Definition: types.h:112
ULONG
unsigned int ULONG
Definition: retypes.h:1
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184

◆ ConvertSecurityDescriptorToStringSecurityDescriptorW()

BOOL WINAPI ConvertSecurityDescriptorToStringSecurityDescriptorW ( PSECURITY_DESCRIPTOR  SecurityDescriptor,
DWORD  SDRevision,
SECURITY_INFORMATION  RequestedInformation,
LPWSTR OutputString,
PULONG  OutputLen 
)

Definition at line 3111 of file security.c.

3112 {
3113  ULONG len;
3114  WCHAR *wptr, *wstr;
3115 
3116  if (SDRevision != SDDL_REVISION_1)
3117  {
3118  ERR("Program requested unknown SDDL revision %d\n", SDRevision);
3119  SetLastError(ERROR_UNKNOWN_REVISION);
3120  return FALSE;
3121  }
3122 
3123  len = 0;
3124  if (RequestedInformation & OWNER_SECURITY_INFORMATION)
3125  if (!DumpOwner(SecurityDescriptor, NULL, &len))
3126  return FALSE;
3127  if (RequestedInformation & GROUP_SECURITY_INFORMATION)
3128  if (!DumpGroup(SecurityDescriptor, NULL, &len))
3129  return FALSE;
3130  if (RequestedInformation & DACL_SECURITY_INFORMATION)
3131  if (!DumpDacl(SecurityDescriptor, NULL, &len))
3132  return FALSE;
3133  if (RequestedInformation & SACL_SECURITY_INFORMATION)
3134  if (!DumpSacl(SecurityDescriptor, NULL, &len))
3135  return FALSE;
3136 
3137  wstr = wptr = LocalAlloc(0, (len + 1)*sizeof(WCHAR));
3138 #ifdef __REACTOS__
3139  if (wstr == NULL)
3140  return FALSE;
3141 #endif
3142 
3143  if (RequestedInformation & OWNER_SECURITY_INFORMATION)
3144  if (!DumpOwner(SecurityDescriptor, &wptr, NULL)) {
3145  LocalFree (wstr);
3146  return FALSE;
3147  }
3148  if (RequestedInformation & GROUP_SECURITY_INFORMATION)
3149  if (!DumpGroup(SecurityDescriptor, &wptr, NULL)) {
3150  LocalFree (wstr);
3151  return FALSE;
3152  }
3153  if (RequestedInformation & DACL_SECURITY_INFORMATION)
3154  if (!DumpDacl(SecurityDescriptor, &wptr, NULL)) {
3155  LocalFree (wstr);
3156  return FALSE;
3157  }
3158  if (RequestedInformation & SACL_SECURITY_INFORMATION)
3159  if (!DumpSacl(SecurityDescriptor, &wptr, NULL)) {
3160  LocalFree (wstr);
3161  return FALSE;
3162  }
3163  *wptr = 0;
3164 
3165  TRACE("ret: %s, %d\n", wine_dbgstr_w(wstr), len);
3166  *OutputString = wstr;
3167  if (OutputLen)
3168  *OutputLen = strlenW(*OutputString)+1;
3169  return TRUE;
3170 }
strlenW
WINE_UNICODE_INLINE unsigned int strlenW(const WCHAR *str)
Definition: unicode.h:212
DumpOwner
static BOOL DumpOwner(PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
Definition: security.c:3026
TRUE
#define TRUE
Definition: types.h:120
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
wine_dbgstr_w
char * wine_dbgstr_w(const wchar_t *wstr)
Definition: atltest.h:87
DumpSacl
static BOOL DumpSacl(PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
Definition: security.c:3085
GROUP_SECURITY_INFORMATION
#define GROUP_SECURITY_INFORMATION
Definition: setypes.h:124
FALSE
#define FALSE
Definition: types.h:117
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
SACL_SECURITY_INFORMATION
#define SACL_SECURITY_INFORMATION
Definition: setypes.h:126
SetLastError
#define SetLastError(x)
Definition: compat.h:611
DumpDacl
static BOOL DumpDacl(PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
Definition: security.c:3062
len
GLenum GLsizei len
Definition: glext.h:6722
ERR
#define ERR(fmt,...)
Definition: debug.h:110
ERROR_UNKNOWN_REVISION
#define ERROR_UNKNOWN_REVISION
Definition: winerror.h:787
LocalFree
HLOCAL NTAPI LocalFree(HLOCAL hMem)
Definition: heapmem.c:1577
OWNER_SECURITY_INFORMATION
#define OWNER_SECURITY_INFORMATION
Definition: setypes.h:123
NULL
#define NULL
Definition: types.h:112
ULONG
unsigned int ULONG
Definition: retypes.h:1
LocalAlloc
HLOCAL NTAPI LocalAlloc(UINT uFlags, SIZE_T dwBytes)
Definition: heapmem.c:1373
DumpGroup
static BOOL DumpGroup(PSECURITY_DESCRIPTOR SecurityDescriptor, WCHAR **pwptr, ULONG *plen)
Definition: security.c:3044
DACL_SECURITY_INFORMATION
#define DACL_SECURITY_INFORMATION
Definition: setypes.h:125
SDDL_REVISION_1
#define SDDL_REVISION_1
Definition: sddl.h:30

Referenced by ConvertSecurityDescriptorToStringSecurityDescriptorA().

◆ ConvertSidToStringSidA()

BOOL WINAPI ConvertSidToStringSidA ( PSID  Sid,
LPSTR StringSid 
)

Definition at line 3313 of file security.c.

3315 {
3316  LPWSTR StringSidW;
3317  int Len;
3318 
3319  if (!ConvertSidToStringSidW(Sid, &StringSidW))
3320  {
3321  return FALSE;
3322  }
3323 
3324  Len = WideCharToMultiByte(CP_ACP, 0, StringSidW, -1, NULL, 0, NULL, NULL);
3325  if (Len <= 0)
3326  {
3327  LocalFree(StringSidW);
3328  SetLastError(ERROR_NOT_ENOUGH_MEMORY);
3329  return FALSE;
3330  }
3331 
3332  *StringSid = LocalAlloc(LMEM_FIXED, Len);
3333  if (NULL == *StringSid)
3334  {
3335  LocalFree(StringSidW);
3336  SetLastError(ERROR_NOT_ENOUGH_MEMORY);
3337  return FALSE;
3338  }
3339 
3340  if (!WideCharToMultiByte(CP_ACP, 0, StringSidW, -1, *StringSid, Len, NULL, NULL))
3341  {
3342  LocalFree(StringSid);
3343  LocalFree(StringSidW);
3344  return FALSE;
3345  }
3346 
3347  LocalFree(StringSidW);
3348 
3349  return TRUE;
3350 }
WideCharToMultiByte
#define WideCharToMultiByte
Definition: compat.h:111
TRUE
#define TRUE
Definition: types.h:120
CP_ACP
#define CP_ACP
Definition: compat.h:109
ERROR_NOT_ENOUGH_MEMORY
#define ERROR_NOT_ENOUGH_MEMORY
Definition: dderror.h:7
ConvertSidToStringSidW
BOOL WINAPI ConvertSidToStringSidW(PSID Sid, LPWSTR *StringSid)
Definition: security.c:3259
FALSE
#define FALSE
Definition: types.h:117
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
LMEM_FIXED
#define LMEM_FIXED
Definition: winbase.h:365
Len
#define Len
Definition: deflate.h:82
SetLastError
#define SetLastError(x)
Definition: compat.h:611
LocalFree
HLOCAL NTAPI LocalFree(HLOCAL hMem)
Definition: heapmem.c:1577
NULL
#define NULL
Definition: types.h:112
LocalAlloc
HLOCAL NTAPI LocalAlloc(UINT uFlags, SIZE_T dwBytes)
Definition: heapmem.c:1373
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184

Referenced by debugstr_sid(), init_functionpointers(), map_name_2_sid(), test_CreateWellKnownSid(), test_LookupAccountSid(), test_lsa(), test_sid(), test_sid_str(), test_token_attr(), and test_token_label().

◆ ConvertSidToStringSidW()

BOOL WINAPI ConvertSidToStringSidW ( PSID  Sid,
LPWSTR StringSid 
)

Definition at line 3259 of file security.c.

3261 {
3262  NTSTATUS Status;
3263  UNICODE_STRING UnicodeString;
3264  WCHAR FixedBuffer[64];
3265 
3266  if (!RtlValidSid(Sid))
3267  {
3268  SetLastError(ERROR_INVALID_SID);
3269  return FALSE;
3270  }
3271 
3272  UnicodeString.Length = 0;
3273  UnicodeString.MaximumLength = sizeof(FixedBuffer);
3274  UnicodeString.Buffer = FixedBuffer;
3275  Status = RtlConvertSidToUnicodeString(&UnicodeString, Sid, FALSE);
3276  if (STATUS_BUFFER_TOO_SMALL == Status)
3277  {
3278  Status = RtlConvertSidToUnicodeString(&UnicodeString, Sid, TRUE);
3279  }
3280 
3281  if (!NT_SUCCESS(Status))
3282  {
3283  SetLastError(RtlNtStatusToDosError(Status));
3284  return FALSE;
3285  }
3286 
3287  *StringSid = LocalAlloc(LMEM_FIXED, UnicodeString.Length + sizeof(WCHAR));
3288  if (NULL == *StringSid)
3289  {
3290  if (UnicodeString.Buffer != FixedBuffer)
3291  {
3292  RtlFreeUnicodeString(&UnicodeString);
3293  }
3294  SetLastError(ERROR_NOT_ENOUGH_MEMORY);
3295  return FALSE;
3296  }
3297 
3298  MoveMemory(*StringSid, UnicodeString.Buffer, UnicodeString.Length);
3299  ZeroMemory((PCHAR) *StringSid + UnicodeString.Length, sizeof(WCHAR));
3300  if (UnicodeString.Buffer != FixedBuffer)
3301  {
3302  RtlFreeUnicodeString(&UnicodeString);
3303  }
3304 
3305  return TRUE;
3306 }
PCHAR
signed char * PCHAR
Definition: retypes.h:7
TRUE
#define TRUE
Definition: types.h:120
ERROR_INVALID_SID
#define ERROR_INVALID_SID
Definition: winerror.h:819
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
ERROR_NOT_ENOUGH_MEMORY
#define ERROR_NOT_ENOUGH_MEMORY
Definition: dderror.h:7
ZeroMemory
#define ZeroMemory
Definition: winbase.h:1664
UnicodeString
WDF_EXTERN_C_START typedef _Must_inspect_result_ _In_opt_ PCUNICODE_STRING UnicodeString
Definition: wdfstring.h:64
MoveMemory
#define MoveMemory
Definition: winbase.h:1661
STATUS_BUFFER_TOO_SMALL
#define STATUS_BUFFER_TOO_SMALL
Definition: shellext.h:69
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
RtlValidSid
NTSYSAPI BOOLEAN NTAPI RtlValidSid(IN PSID Sid)
Definition: sid.c:21
LMEM_FIXED
#define LMEM_FIXED
Definition: winbase.h:365
Status
Status
Definition: gdiplustypes.h:24
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
RtlFreeUnicodeString
NTSYSAPI VOID NTAPI RtlFreeUnicodeString(PUNICODE_STRING UnicodeString)
SetLastError
#define SetLastError(x)
Definition: compat.h:611
RtlConvertSidToUnicodeString
NTSYSAPI NTSTATUS NTAPI RtlConvertSidToUnicodeString(OUT PUNICODE_STRING DestinationString, IN PVOID Sid, IN BOOLEAN AllocateDestinationString)
_UNICODE_STRING
Definition: env_spec_w32.h:368
NULL
#define NULL
Definition: types.h:112
LocalAlloc
HLOCAL NTAPI LocalAlloc(UINT uFlags, SIZE_T dwBytes)
Definition: heapmem.c:1373

Referenced by _GetUserSidStringFromToken(), AddUserProfiles(), ConvertSidToStringSidA(), CreateUserProfileExW(), get_user_sid(), GetEventUserName(), GetPrincipalDisplayString(), LsapGetDomainInfo(), LsapLookupAccountDomainSids(), LsapLookupBuiltinDomainSids(), LsapLookupWellKnownSids(), MsiSourceListAddSourceW(), RecycleBin5_Constructor(), SampAddMemberToAlias(), SampRemoveMemberFromAlias(), SampRemoveMemberFromAllAliases(), SampSetupAddMemberToAlias(), set_user_sid_prop(), START_TEST(), UpdatePrincipalInfo(), WhoamiGroups(), WhoamiLogonId(), and WhoamiUser().

◆ ConvertStringSecurityDescriptorToSecurityDescriptorA()

BOOL WINAPI ConvertStringSecurityDescriptorToSecurityDescriptorA ( LPCSTR  StringSecurityDescriptor,
DWORD  StringSDRevision,
PSECURITY_DESCRIPTOR SecurityDescriptor,
PULONG  SecurityDescriptorSize 
)

Definition at line 2708 of file security.c.

2712 {
2713  UINT len;
2714  BOOL ret = FALSE;
2715  LPWSTR StringSecurityDescriptorW;
2716 
2717  len = MultiByteToWideChar(CP_ACP, 0, StringSecurityDescriptor, -1, NULL, 0);
2718  StringSecurityDescriptorW = HeapAlloc(GetProcessHeap(), 0, len * sizeof(WCHAR));
2719 
2720  if (StringSecurityDescriptorW)
2721  {
2722  MultiByteToWideChar(CP_ACP, 0, StringSecurityDescriptor, -1, StringSecurityDescriptorW, len);
2723 
2724  ret = ConvertStringSecurityDescriptorToSecurityDescriptorW(StringSecurityDescriptorW,
2725  StringSDRevision, SecurityDescriptor,
2726  SecurityDescriptorSize);
2727  HeapFree(GetProcessHeap(), 0, StringSecurityDescriptorW);
2728  }
2729 
2730  return ret;
2731 }
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
CP_ACP
#define CP_ACP
Definition: compat.h:109
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
GetProcessHeap
#define GetProcessHeap()
Definition: compat.h:595
HeapAlloc
PVOID WINAPI HeapAlloc(HANDLE, DWORD, SIZE_T)
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
ret
int ret
Definition: wcstombs-tests.c:31
len
GLenum GLsizei len
Definition: glext.h:6722
UINT
unsigned int UINT
Definition: ndis.h:50
NULL
#define NULL
Definition: types.h:112
MultiByteToWideChar
#define MultiByteToWideChar
Definition: compat.h:110
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184
HeapFree
#define HeapFree(x, y, z)
Definition: compat.h:594
ConvertStringSecurityDescriptorToSecurityDescriptorW
BOOL WINAPI ConvertStringSecurityDescriptorToSecurityDescriptorW(LPCWSTR StringSecurityDescriptor, DWORD StringSDRevision, PSECURITY_DESCRIPTOR *SecurityDescriptor, PULONG SecurityDescriptorSize)
Definition: security.c:2738

Referenced by test_profile_directory_readonly().

◆ ConvertStringSecurityDescriptorToSecurityDescriptorW()

BOOL WINAPI ConvertStringSecurityDescriptorToSecurityDescriptorW ( LPCWSTR  StringSecurityDescriptor,
DWORD  StringSDRevision,
PSECURITY_DESCRIPTOR SecurityDescriptor,
PULONG  SecurityDescriptorSize 
)

Definition at line 2738 of file security.c.

2742 {
2743  DWORD cBytes;
2744  SECURITY_DESCRIPTOR* psd;
2745  BOOL bret = FALSE;
2746 
2747  TRACE("%s\n", debugstr_w(StringSecurityDescriptor));
2748 
2749  if (GetVersion() & 0x80000000)
2750  {
2751  SetLastError(ERROR_CALL_NOT_IMPLEMENTED);
2752  goto lend;
2753  }
2754  else if (!StringSecurityDescriptor || !SecurityDescriptor)
2755  {
2756  SetLastError(ERROR_INVALID_PARAMETER);
2757  goto lend;
2758  }
2759  else if (StringSDRevision != SID_REVISION)
2760  {
2761  SetLastError(ERROR_UNKNOWN_REVISION);
2762  goto lend;
2763  }
2764 
2765  /* Compute security descriptor length */
2766  if (!ParseStringSecurityDescriptorToSecurityDescriptor(StringSecurityDescriptor,
2767  NULL, &cBytes))
2768  goto lend;
2769 
2770  psd = *SecurityDescriptor = LocalAlloc(GMEM_ZEROINIT, cBytes);
2771  if (!psd) goto lend;
2772 
2773  psd->Revision = SID_REVISION;
2774  psd->Control |= SE_SELF_RELATIVE;
2775 
2776  if (!ParseStringSecurityDescriptorToSecurityDescriptor(StringSecurityDescriptor,
2777  (SECURITY_DESCRIPTOR_RELATIVE *)psd, &cBytes))
2778  {
2779  LocalFree(psd);
2780  goto lend;
2781  }
2782 
2783  if (SecurityDescriptorSize)
2784  *SecurityDescriptorSize = cBytes;
2785 
2786  bret = TRUE;
2787 
2788 lend:
2789  TRACE(" ret=%d\n", bret);
2790  return bret;
2791 }
_SECURITY_DESCRIPTOR
Definition: ms-dtyp.idl:301
ERROR_INVALID_PARAMETER
#define ERROR_INVALID_PARAMETER
Definition: compat.h:101
ParseStringSecurityDescriptorToSecurityDescriptor
static BOOL ParseStringSecurityDescriptorToSecurityDescriptor(LPCWSTR StringSecurityDescriptor, SECURITY_DESCRIPTOR_RELATIVE *SecurityDescriptor, LPDWORD cBytes)
Definition: security.c:2560
SE_SELF_RELATIVE
#define SE_SELF_RELATIVE
Definition: setypes.h:799
_SECURITY_DESCRIPTOR_RELATIVE
Definition: setypes.h:801
TRUE
#define TRUE
Definition: types.h:120
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
SID_REVISION
#define SID_REVISION
Definition: setypes.h:468
GetVersion
DWORD WINAPI GetVersion(VOID)
Definition: version.c:22
_SECURITY_DESCRIPTOR::Control
USHORT Control
Definition: ms-dtyp.idl:304
_SECURITY_DESCRIPTOR::Revision
UCHAR Revision
Definition: ms-dtyp.idl:302
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
debugstr_w
#define debugstr_w
Definition: kernel32.h:32
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
SetLastError
#define SetLastError(x)
Definition: compat.h:611
ERROR_UNKNOWN_REVISION
#define ERROR_UNKNOWN_REVISION
Definition: winerror.h:787
LocalFree
HLOCAL NTAPI LocalFree(HLOCAL hMem)
Definition: heapmem.c:1577
NULL
#define NULL
Definition: types.h:112
ERROR_CALL_NOT_IMPLEMENTED
#define ERROR_CALL_NOT_IMPLEMENTED
Definition: compat.h:102
LocalAlloc
HLOCAL NTAPI LocalAlloc(UINT uFlags, SIZE_T dwBytes)
Definition: heapmem.c:1373
GMEM_ZEROINIT
#define GMEM_ZEROINIT
Definition: winbase.h:303

Referenced by ConvertStringSecurityDescriptorToSecurityDescriptorA(), InstallOneService(), registry_callback(), and SetupQueueCopyIndirectW().

◆ ConvertStringSidToSidA()

BOOL WINAPI ConvertStringSidToSidA ( LPCSTR  StringSid,
PSID Sid 
)

Definition at line 3236 of file security.c.

3237 {
3238  BOOL bret = FALSE;
3239 
3240  TRACE("%s, %p\n", debugstr_a(StringSid), Sid);
3241  if (GetVersion() & 0x80000000)
3242  SetLastError(ERROR_CALL_NOT_IMPLEMENTED);
3243  else if (!StringSid || !Sid)
3244  SetLastError(ERROR_INVALID_PARAMETER);
3245  else
3246  {
3247  WCHAR *wStringSid = SERV_dup(StringSid);
3248  bret = ConvertStringSidToSidW(wStringSid, Sid);
3249  heap_free(wStringSid);
3250  }
3251  return bret;
3252 }
ERROR_INVALID_PARAMETER
#define ERROR_INVALID_PARAMETER
Definition: compat.h:101
ConvertStringSidToSidW
BOOL WINAPI ConvertStringSidToSidW(LPCWSTR StringSid, PSID *Sid)
Definition: security.c:3212
GetVersion
DWORD WINAPI GetVersion(VOID)
Definition: version.c:22
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
debugstr_a
#define debugstr_a
Definition: kernel32.h:31
SetLastError
#define SetLastError(x)
Definition: compat.h:611
SERV_dup
static LPWSTR SERV_dup(LPCSTR str)
Definition: security.c:235
ERROR_CALL_NOT_IMPLEMENTED
#define ERROR_CALL_NOT_IMPLEMENTED
Definition: compat.h:102
heap_free
static BOOL heap_free(void *mem)
Definition: appwiz.h:75

Referenced by test_LsaLookupSids().

◆ ConvertStringSidToSidW()

BOOL WINAPI ConvertStringSidToSidW ( LPCWSTR  StringSid,
PSID Sid 
)

Definition at line 3212 of file security.c.

3213 {
3214  BOOL bret = FALSE;
3215  DWORD cBytes;
3216 
3217  TRACE("%s, %p\n", debugstr_w(StringSid), Sid);
3218  if (GetVersion() & 0x80000000)
3219  SetLastError(ERROR_CALL_NOT_IMPLEMENTED);
3220  else if (!StringSid || !Sid)
3221  SetLastError(ERROR_INVALID_PARAMETER);
3222  else if (ParseStringSidToSid(StringSid, NULL, &cBytes))
3223  {
3224  PSID pSid = *Sid = LocalAlloc(0, cBytes);
3225 
3226  bret = ParseStringSidToSid(StringSid, pSid, &cBytes);
3227  if (!bret)
3228  LocalFree(*Sid);
3229  }
3230  return bret;
3231 }
ERROR_INVALID_PARAMETER
#define ERROR_INVALID_PARAMETER
Definition: compat.h:101
_SID
Definition: ms-dtyp.idl:198
GetVersion
DWORD WINAPI GetVersion(VOID)
Definition: version.c:22
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
debugstr_w
#define debugstr_w
Definition: kernel32.h:32
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
SetLastError
#define SetLastError(x)
Definition: compat.h:611
LocalFree
HLOCAL NTAPI LocalFree(HLOCAL hMem)
Definition: heapmem.c:1577
NULL
#define NULL
Definition: types.h:112
pSid
static PSID pSid
Definition: security.c:74
ERROR_CALL_NOT_IMPLEMENTED
#define ERROR_CALL_NOT_IMPLEMENTED
Definition: compat.h:102
ParseStringSidToSid
static BOOL ParseStringSidToSid(LPCWSTR StringSid, PSID pSid, LPDWORD cBytes)
Definition: security.c:3508
LocalAlloc
HLOCAL NTAPI LocalAlloc(UINT uFlags, SIZE_T dwBytes)
Definition: heapmem.c:1373

Referenced by ConvertStringSidToSidA(), and fill_sid().

◆ CopySid()

BOOL WINAPI CopySid ( DWORD  nDestinationSidLength,
PSID  pDestinationSid,
PSID  pSourceSid 
)

Definition at line 591 of file security.c.

592 {
593  return set_ntstatus(RtlCopySid(nDestinationSidLength, pDestinationSid, pSourceSid));
594 }
RtlCopySid
NTSYSAPI BOOLEAN WINAPI RtlCopySid(DWORD, PSID, PSID)
set_ntstatus
static __inline BOOL set_ntstatus(NTSTATUS status)
Definition: security.c:229

Referenced by AccpLookupSidByName(), AccRewriteGetExplicitEntriesFromAcl(), AddAceToWindowStation(), AddPrincipalToList(), AuthzGetInformationFromContext(), AuthzInitializeContextFromSid(), BuildDefaultPrincipalAce(), CachedGetUserFromSid(), CacheLookupResults(), GetUserSid(), LookupAccountNameW(), QueueSidLookup(), ReloadPrincipalsList(), and test_LookupAccountSid().

◆ CreateProcessWithLogonW()

BOOL WINAPI CreateProcessWithLogonW ( LPCWSTR  lpUsername,
LPCWSTR  lpDomain,
LPCWSTR  lpPassword,
DWORD  dwLogonFlags,
LPCWSTR  lpApplicationName,
LPWSTR  lpCommandLine,
DWORD  dwCreationFlags,
LPVOID  lpEnvironment,
LPCWSTR  lpCurrentDirectory,
LPSTARTUPINFOW  lpStartupInfo,
LPPROCESS_INFORMATION  lpProcessInformation 
)

Definition at line 3356 of file security.c.

3367 {
3368  FIXME("%s %s %s 0x%08x %s %s 0x%08x %p %s %p %p stub\n", debugstr_w(lpUsername), debugstr_w(lpDomain),
3369  debugstr_w(lpPassword), dwLogonFlags, debugstr_w(lpApplicationName),
3370  debugstr_w(lpCommandLine), dwCreationFlags, lpEnvironment, debugstr_w(lpCurrentDirectory),
3371  lpStartupInfo, lpProcessInformation);
3372 
3373  return FALSE;
3374 }
FALSE
#define FALSE
Definition: types.h:117
debugstr_w
#define debugstr_w
Definition: kernel32.h:32
FIXME
#define FIXME(fmt,...)
Definition: debug.h:111

◆ CreateProcessWithTokenW()

BOOL WINAPI CreateProcessWithTokenW ( HANDLE  token,
DWORD  logon_flags,
LPCWSTR  application_name,
LPWSTR  command_line,
DWORD  creation_flags,
void environment,
LPCWSTR  current_directory,
STARTUPINFOW startup_info,
PROCESS_INFORMATION process_information 
)

Definition at line 3376 of file security.c.

3379 {
3380  FIXME("%p 0x%08x %s %s 0x%08x %p %s %p %p - semi-stub\n", token,
3381  logon_flags, debugstr_w(application_name), debugstr_w(command_line),
3382  creation_flags, environment, debugstr_w(current_directory),
3383  startup_info, process_information);
3384 
3385  /* FIXME: check if handles should be inherited */
3386  return CreateProcessW( application_name, command_line, NULL, NULL, FALSE, creation_flags, environment,
3387  current_directory, startup_info, process_information );
3388 }
FALSE
#define FALSE
Definition: types.h:117
token
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat token
Definition: glfuncs.h:210
debugstr_w
#define debugstr_w
Definition: kernel32.h:32
FIXME
#define FIXME(fmt,...)
Definition: debug.h:111
CreateProcessW
BOOL WINAPI DECLSPEC_HOTPATCH CreateProcessW(LPCWSTR lpApplicationName, LPWSTR lpCommandLine, LPSECURITY_ATTRIBUTES lpProcessAttributes, LPSECURITY_ATTRIBUTES lpThreadAttributes, BOOL bInheritHandles, DWORD dwCreationFlags, LPVOID lpEnvironment, LPCWSTR lpCurrentDirectory, LPSTARTUPINFOW lpStartupInfo, LPPROCESS_INFORMATION lpProcessInformation)
Definition: proc.c:4594
NULL
#define NULL
Definition: types.h:112

◆ CreateRestrictedToken()

BOOL WINAPI CreateRestrictedToken ( HANDLE  baseToken,
DWORD  flags,
DWORD  nDisableSids,
PSID_AND_ATTRIBUTES  disableSids,
DWORD  nDeletePrivs,
PLUID_AND_ATTRIBUTES  deletePrivs,
DWORD  nRestrictSids,
PSID_AND_ATTRIBUTES  restrictSids,
PHANDLE  newToken 
)

Definition at line 504 of file security.c.

514 {
515  TOKEN_TYPE type;
516  SECURITY_IMPERSONATION_LEVEL level = SecurityAnonymous;
517  DWORD size;
518 
519  FIXME("(%p, 0x%x, %u, %p, %u, %p, %u, %p, %p): stub\n",
520  baseToken, flags, nDisableSids, disableSids,
521  nDeletePrivs, deletePrivs,
522  nRestrictSids, restrictSids,
523  newToken);
524 
525  size = sizeof(type);
526  if (!GetTokenInformation( baseToken, TokenType, &type, size, &size )) return FALSE;
527  if (type == TokenImpersonation)
528  {
529  size = sizeof(level);
530  if (!GetTokenInformation( baseToken, TokenImpersonationLevel, &level, size, &size ))
531  return FALSE;
532  }
533  return DuplicateTokenEx( baseToken, MAXIMUM_ALLOWED, NULL, level, type, newToken );
534 }
MAXIMUM_ALLOWED
#define MAXIMUM_ALLOWED
Definition: nt_native.h:83
level
GLint level
Definition: gl.h:1546
FALSE
#define FALSE
Definition: types.h:117
SECURITY_IMPERSONATION_LEVEL
enum _SECURITY_IMPERSONATION_LEVEL SECURITY_IMPERSONATION_LEVEL
FIXME
#define FIXME(fmt,...)
Definition: debug.h:111
size
GLsizeiptr size
Definition: glext.h:5919
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
DuplicateTokenEx
BOOL WINAPI DuplicateTokenEx(IN HANDLE ExistingTokenHandle, IN DWORD dwDesiredAccess, IN LPSECURITY_ATTRIBUTES lpTokenAttributes OPTIONAL, IN SECURITY_IMPERSONATION_LEVEL ImpersonationLevel, IN TOKEN_TYPE TokenType, OUT PHANDLE DuplicateTokenHandle)
Definition: security.c:3394
flags
GLbitfield flags
Definition: glext.h:7161
TOKEN_TYPE
enum _TOKEN_TYPE TOKEN_TYPE
NULL
#define NULL
Definition: types.h:112
GetTokenInformation
BOOL WINAPI GetTokenInformation(HANDLE TokenHandle, TOKEN_INFORMATION_CLASS TokenInformationClass, LPVOID TokenInformation, DWORD TokenInformationLength, PDWORD ReturnLength)
Definition: security.c:413
type
GLuint GLuint GLsizei GLenum type
Definition: gl.h:1545
TokenType
_In_ ACCESS_MASK _In_opt_ POBJECT_ATTRIBUTES _In_ BOOLEAN _In_ TOKEN_TYPE TokenType
Definition: sefuncs.h:388

Referenced by test_token_security_descriptor().

◆ CreateWellKnownSid()

BOOL WINAPI CreateWellKnownSid ( IN WELL_KNOWN_SID_TYPE  WellKnownSidType,
IN PSID DomainSid  OPTIONAL,
OUT PSID  pSid,
IN OUT DWORD cbSid 
)

Definition at line 601 of file security.c.

605 {
606  unsigned int i;
607  TRACE("(%d, %s, %p, %p)\n", WellKnownSidType, debugstr_sid(DomainSid), pSid, cbSid);
608 
609  if (cbSid == NULL || (DomainSid && !IsValidSid(DomainSid)))
610  {
611  SetLastError(ERROR_INVALID_PARAMETER);
612  return FALSE;
613  }
614 
615  for (i = 0; i < sizeof(WellKnownSids)/sizeof(WellKnownSids[0]); i++) {
616  if (WellKnownSids[i].Type == WellKnownSidType) {
617  DWORD length = GetSidLengthRequired(WellKnownSids[i].Sid.SubAuthorityCount);
618 
619  if (*cbSid < length)
620  {
621  *cbSid = length;
622  SetLastError(ERROR_INSUFFICIENT_BUFFER);
623  return FALSE;
624  }
625  if (!pSid)
626  {
627  SetLastError(ERROR_INVALID_PARAMETER);
628  return FALSE;
629  }
630  CopyMemory(pSid, &WellKnownSids[i].Sid.Revision, length);
631  *cbSid = length;
632  return TRUE;
633  }
634  }
635 
636  if (DomainSid == NULL || *GetSidSubAuthorityCount(DomainSid) == SID_MAX_SUB_AUTHORITIES)
637  {
638  SetLastError(ERROR_INVALID_PARAMETER);
639  return FALSE;
640  }
641 
642  for (i = 0; i < sizeof(WellKnownRids)/sizeof(WellKnownRids[0]); i++)
643  if (WellKnownRids[i].Type == WellKnownSidType) {
644  UCHAR domain_subauth = *GetSidSubAuthorityCount(DomainSid);
645  DWORD domain_sid_length = GetSidLengthRequired(domain_subauth);
646  DWORD output_sid_length = GetSidLengthRequired(domain_subauth + 1);
647 
648  if (*cbSid < output_sid_length)
649  {
650  *cbSid = output_sid_length;
651  SetLastError(ERROR_INSUFFICIENT_BUFFER);
652  return FALSE;
653  }
654  if (!pSid)
655  {
656  SetLastError(ERROR_INVALID_PARAMETER);
657  return FALSE;
658  }
659  CopyMemory(pSid, DomainSid, domain_sid_length);
660  (*GetSidSubAuthorityCount(pSid))++;
661  (*GetSidSubAuthority(pSid, domain_subauth)) = WellKnownRids[i].Rid;
662  *cbSid = output_sid_length;
663  return TRUE;
664  }
665 
666  SetLastError(ERROR_INVALID_PARAMETER);
667  return FALSE;
668 }
ERROR_INVALID_PARAMETER
#define ERROR_INVALID_PARAMETER
Definition: compat.h:101
TRUE
#define TRUE
Definition: types.h:120
WellKnownSids
static const WELLKNOWNSID WellKnownSids[]
Definition: security.c:47
GetSidLengthRequired
DWORD WINAPI GetSidLengthRequired(UCHAR nSubAuthorityCount)
Definition: security.c:731
GetSidSubAuthority
PDWORD WINAPI GetSidSubAuthority(PSID pSid, DWORD nSubAuthority)
Definition: security.c:775
debugstr_sid
static const char * debugstr_sid(PSID sid)
Definition: security.c:176
FALSE
#define FALSE
Definition: types.h:117
length
GLenum GLuint GLenum GLsizei length
Definition: glext.h:5579
SID_MAX_SUB_AUTHORITIES
#define SID_MAX_SUB_AUTHORITIES
Definition: setypes.h:469
cbSid
_In_ LPCSTR _Out_writes_bytes_to_opt_ cbSid PSID _Inout_ LPDWORD cbSid
Definition: winbase.h:2721
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
CopyMemory
#define CopyMemory
Definition: winbase.h:1662
Type
Type
Definition: Type.h:6
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
SetLastError
#define SetLastError(x)
Definition: compat.h:611
UCHAR
unsigned char UCHAR
Definition: xmlstorage.h:181
GetSidSubAuthorityCount
PUCHAR WINAPI GetSidSubAuthorityCount(PSID pSid)
Definition: security.c:787
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
_SID::SubAuthorityCount
BYTE SubAuthorityCount
Definition: ms-dtyp.idl:200
NULL
#define NULL
Definition: types.h:112
pSid
static PSID pSid
Definition: security.c:74
IsValidSid
BOOL WINAPI IsValidSid(PSID pSid)
Definition: security.c:698
_SID::Revision
BYTE Revision
Definition: ms-dtyp.idl:199
WellKnownRids
static const WELLKNOWNRID WellKnownRids[]
Definition: security.c:111
ERROR_INSUFFICIENT_BUFFER
#define ERROR_INSUFFICIENT_BUFFER
Definition: dderror.h:10

Referenced by create_unknownsid(), CreateWindowStationAndDesktops(), get_sd(), test_SystemSecurity(), and well_known_sid().

◆ debugstr_sid()

static const char* debugstr_sid ( PSID  sid)
static

Definition at line 176 of file security.c.

177 {
178  int auth = 0;
179  SID * psid = (SID *)sid;
180 
181  if (psid == NULL)
182  return "(null)";
183 
184  auth = psid->IdentifierAuthority.Value[5] +
185  (psid->IdentifierAuthority.Value[4] << 8) +
186  (psid->IdentifierAuthority.Value[3] << 16) +
187  (psid->IdentifierAuthority.Value[2] << 24);
188 
189  switch (psid->SubAuthorityCount) {
190  case 0:
191  return wine_dbg_sprintf("S-%d-%d", psid->Revision, auth);
192  case 1:
193  return wine_dbg_sprintf("S-%d-%d-%lu", psid->Revision, auth,
194  psid->SubAuthority[0]);
195  case 2:
196  return wine_dbg_sprintf("S-%d-%d-%lu-%lu", psid->Revision, auth,
197  psid->SubAuthority[0], psid->SubAuthority[1]);
198  case 3:
199  return wine_dbg_sprintf("S-%d-%d-%lu-%lu-%lu", psid->Revision, auth,
200  psid->SubAuthority[0], psid->SubAuthority[1], psid->SubAuthority[2]);
201  case 4:
202  return wine_dbg_sprintf("S-%d-%d-%lu-%lu-%lu-%lu", psid->Revision, auth,
203  psid->SubAuthority[0], psid->SubAuthority[1], psid->SubAuthority[2],
204  psid->SubAuthority[3]);
205  case 5:
206  return wine_dbg_sprintf("S-%d-%d-%lu-%lu-%lu-%lu-%lu", psid->Revision, auth,
207  psid->SubAuthority[0], psid->SubAuthority[1], psid->SubAuthority[2],
208  psid->SubAuthority[3], psid->SubAuthority[4]);
209  case 6:
210  return wine_dbg_sprintf("S-%d-%d-%lu-%lu-%lu-%lu-%lu-%lu", psid->Revision, auth,
211  psid->SubAuthority[3], psid->SubAuthority[1], psid->SubAuthority[2],
212  psid->SubAuthority[0], psid->SubAuthority[4], psid->SubAuthority[5]);
213  case 7:
214  return wine_dbg_sprintf("S-%d-%d-%lu-%lu-%lu-%lu-%lu-%lu-%lu", psid->Revision, auth,
215  psid->SubAuthority[0], psid->SubAuthority[1], psid->SubAuthority[2],
216  psid->SubAuthority[3], psid->SubAuthority[4], psid->SubAuthority[5],
217  psid->SubAuthority[6]);
218  case 8:
219  return wine_dbg_sprintf("S-%d-%d-%lu-%lu-%lu-%lu-%lu-%lu-%lu-%lu", psid->Revision, auth,
220  psid->SubAuthority[0], psid->SubAuthority[1], psid->SubAuthority[2],
221  psid->SubAuthority[3], psid->SubAuthority[4], psid->SubAuthority[5],
222  psid->SubAuthority[6], psid->SubAuthority[7]);
223  }
224  return "(too-big)";
225 }
_SID_IDENTIFIER_AUTHORITY::Value
BYTE Value[6]
Definition: ms-dtyp.idl:195
_SID
Definition: ms-dtyp.idl:198
sid
FT_UInt sid
Definition: cffcmap.c:139
wine_dbg_sprintf
const char * wine_dbg_sprintf(const char *format,...)
Definition: compat.c:296
_SID::SubAuthority
DWORD SubAuthority[*]
Definition: ms-dtyp.idl:202
_SID::SubAuthorityCount
BYTE SubAuthorityCount
Definition: ms-dtyp.idl:200
NULL
#define NULL
Definition: types.h:112
_SID::IdentifierAuthority
SID_IDENTIFIER_AUTHORITY IdentifierAuthority
Definition: ms-dtyp.idl:201
_SID::Revision
BYTE Revision
Definition: ms-dtyp.idl:199

Referenced by CreateWellKnownSid(), and IsWellKnownSid().

◆ DeleteAce()

BOOL WINAPI DeleteAce ( PACL  pAcl,
DWORD  dwAceIndex 
)

Definition at line 1045 of file security.c.

1046 {
1047  return set_ntstatus(RtlDeleteAce(pAcl, dwAceIndex));
1048 }
set_ntstatus
static __inline BOOL set_ntstatus(NTSTATUS status)
Definition: security.c:229
RtlDeleteAce
NTSYSAPI NTSTATUS NTAPI RtlDeleteAce(PACL Acl, ULONG AceIndex)

◆ DumpAce()

static BOOL DumpAce ( LPVOID  pace,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 2936 of file security.c.

2937 {
2938  ACCESS_ALLOWED_ACE *piace; /* all the supported ACEs have the same memory layout */
2939  static const WCHAR openbr = '(';
2940  static const WCHAR closebr = ')';
2941  static const WCHAR semicolon = ';';
2942 
2943  if (((PACE_HEADER)pace)->AceType > SYSTEM_ALARM_ACE_TYPE || ((PACE_HEADER)pace)->AceSize < sizeof(ACCESS_ALLOWED_ACE))
2944  {
2945  SetLastError(ERROR_INVALID_ACL);
2946  return FALSE;
2947  }
2948 
2949  piace = pace;
2950  DumpString(&openbr, 1, pwptr, plen);
2951  switch (piace->Header.AceType)
2952  {
2953  case ACCESS_ALLOWED_ACE_TYPE:
2954  DumpString(SDDL_ACCESS_ALLOWED, -1, pwptr, plen);
2955  break;
2956  case ACCESS_DENIED_ACE_TYPE:
2957  DumpString(SDDL_ACCESS_DENIED, -1, pwptr, plen);
2958  break;
2959  case SYSTEM_AUDIT_ACE_TYPE:
2960  DumpString(SDDL_AUDIT, -1, pwptr, plen);
2961  break;
2962  case SYSTEM_ALARM_ACE_TYPE:
2963  DumpString(SDDL_ALARM, -1, pwptr, plen);
2964  break;
2965  }
2966  DumpString(&semicolon, 1, pwptr, plen);
2967 
2968  if (piace->Header.AceFlags & OBJECT_INHERIT_ACE)
2969  DumpString(SDDL_OBJECT_INHERIT, -1, pwptr, plen);
2970  if (piace->Header.AceFlags & CONTAINER_INHERIT_ACE)
2971  DumpString(SDDL_CONTAINER_INHERIT, -1, pwptr, plen);
2972  if (piace->Header.AceFlags & NO_PROPAGATE_INHERIT_ACE)
2973  DumpString(SDDL_NO_PROPAGATE, -1, pwptr, plen);
2974  if (piace->Header.AceFlags & INHERIT_ONLY_ACE)
2975  DumpString(SDDL_INHERIT_ONLY, -1, pwptr, plen);
2976  if (piace->Header.AceFlags & INHERITED_ACE)
2977  DumpString(SDDL_INHERITED, -1, pwptr, plen);
2978  if (piace->Header.AceFlags & SUCCESSFUL_ACCESS_ACE_FLAG)
2979  DumpString(SDDL_AUDIT_SUCCESS, -1, pwptr, plen);
2980  if (piace->Header.AceFlags & FAILED_ACCESS_ACE_FLAG)
2981  DumpString(SDDL_AUDIT_FAILURE, -1, pwptr, plen);
2982  DumpString(&semicolon, 1, pwptr, plen);
2983  DumpRights(piace->Mask, pwptr, plen);
2984  DumpString(&semicolon, 1, pwptr, plen);
2985  /* objects not supported */
2986  DumpString(&semicolon, 1, pwptr, plen);
2987  /* objects not supported */
2988  DumpString(&semicolon, 1, pwptr, plen);
2989  if (!DumpSid((PSID)&piace->SidStart, pwptr, plen))
2990  return FALSE;
2991  DumpString(&closebr, 1, pwptr, plen);
2992  return TRUE;
2993 }
SDDL_OBJECT_INHERIT
static const WCHAR SDDL_OBJECT_INHERIT[]
Definition: security.c:169
_ACE_HEADER::AceFlags
UCHAR AceFlags
Definition: ms-dtyp.idl:211
_ACCESS_ALLOWED_ACE::SidStart
DWORD SidStart
Definition: ms-dtyp.idl:218
SDDL_INHERITED
static const WCHAR SDDL_INHERITED[]
Definition: security.c:172
_SID
Definition: ms-dtyp.idl:198
_ACCESS_ALLOWED_ACE
Definition: ms-dtyp.idl:215
SDDL_CONTAINER_INHERIT
static const WCHAR SDDL_CONTAINER_INHERIT[]
Definition: security.c:168
TRUE
#define TRUE
Definition: types.h:120
DumpSid
static BOOL DumpSid(PSID psid, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2847
NO_PROPAGATE_INHERIT_ACE
#define NO_PROPAGATE_INHERIT_ACE
Definition: setypes.h:735
_ACCESS_ALLOWED_ACE::Header
ACE_HEADER Header
Definition: ms-dtyp.idl:216
SDDL_NO_PROPAGATE
static const WCHAR SDDL_NO_PROPAGATE[]
Definition: security.c:170
SDDL_ACCESS_ALLOWED
static const WCHAR SDDL_ACCESS_ALLOWED[]
Definition: security.c:138
SUCCESSFUL_ACCESS_ACE_FLAG
#define SUCCESSFUL_ACCESS_ACE_FLAG
Definition: setypes.h:740
FAILED_ACCESS_ACE_FLAG
#define FAILED_ACCESS_ACE_FLAG
Definition: setypes.h:741
SDDL_AUDIT_FAILURE
static const WCHAR SDDL_AUDIT_FAILURE[]
Definition: security.c:174
FALSE
#define FALSE
Definition: types.h:117
_ACE_HEADER
Definition: ms-dtyp.idl:209
CONTAINER_INHERIT_ACE
#define CONTAINER_INHERIT_ACE
Definition: setypes.h:734
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
SDDL_AUDIT
static const WCHAR SDDL_AUDIT[]
Definition: security.c:144
ACCESS_ALLOWED_ACE_TYPE
#define ACCESS_ALLOWED_ACE_TYPE
Definition: setypes.h:704
DumpRights
static void DumpRights(DWORD mask, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2897
SetLastError
#define SetLastError(x)
Definition: compat.h:611
ACCESS_DENIED_ACE_TYPE
#define ACCESS_DENIED_ACE_TYPE
Definition: setypes.h:705
_ACE_HEADER::AceType
UCHAR AceType
Definition: ms-dtyp.idl:210
SDDL_INHERIT_ONLY
static const WCHAR SDDL_INHERIT_ONLY[]
Definition: security.c:171
SDDL_ALARM
static const WCHAR SDDL_ALARM[]
Definition: security.c:145
AceType
static const ACEFLAG AceType[]
Definition: security.c:2259
SYSTEM_ALARM_ACE_TYPE
#define SYSTEM_ALARM_ACE_TYPE
Definition: setypes.h:707
_ACCESS_ALLOWED_ACE::Mask
ACCESS_MASK Mask
Definition: ms-dtyp.idl:217
INHERITED_ACE
#define INHERITED_ACE
Definition: ph.h:47
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793
SYSTEM_AUDIT_ACE_TYPE
#define SYSTEM_AUDIT_ACE_TYPE
Definition: setypes.h:706
INHERIT_ONLY_ACE
#define INHERIT_ONLY_ACE
Definition: setypes.h:736
OBJECT_INHERIT_ACE
#define OBJECT_INHERIT_ACE
Definition: setypes.h:733
SDDL_ACCESS_DENIED
static const WCHAR SDDL_ACCESS_DENIED[]
Definition: security.c:139
SDDL_AUDIT_SUCCESS
static const WCHAR SDDL_AUDIT_SUCCESS[]
Definition: security.c:173
ERROR_INVALID_ACL
#define ERROR_INVALID_ACL
Definition: winerror.h:818

Referenced by DumpAcl().

◆ DumpAcl()

static BOOL DumpAcl ( PACL  pacl,
WCHAR **  pwptr,
ULONG plen,
BOOL  protected,
BOOL  autoInheritReq,
BOOL  autoInherited 
)
static

Definition at line 2995 of file security.c.

2996 {
2997  WORD count;
2998  int i;
2999 
3000  if (protected)
3001  DumpString(SDDL_PROTECTED, -1, pwptr, plen);
3002  if (autoInheritReq)
3003  DumpString(SDDL_AUTO_INHERIT_REQ, -1, pwptr, plen);
3004  if (autoInherited)
3005  DumpString(SDDL_AUTO_INHERITED, -1, pwptr, plen);
3006 
3007  if (pacl == NULL)
3008  return TRUE;
3009 
3010  if (!IsValidAcl(pacl))
3011  return FALSE;
3012 
3013  count = pacl->AceCount;
3014  for (i = 0; i < count; i++)
3015  {
3016  LPVOID ace;
3017  if (!GetAce(pacl, i, &ace))
3018  return FALSE;
3019  if (!DumpAce(ace, pwptr, plen))
3020  return FALSE;
3021  }
3022 
3023  return TRUE;
3024 }
TRUE
#define TRUE
Definition: types.h:120
SDDL_AUTO_INHERITED
#define SDDL_AUTO_INHERITED
Definition: sddl.h:46
count
GLuint GLuint GLsizei count
Definition: gl.h:1545
IsValidAcl
BOOL WINAPI IsValidAcl(PACL pAcl)
Definition: security.c:1088
_ACL::AceCount
USHORT AceCount
Definition: ms-dtyp.idl:297
FALSE
#define FALSE
Definition: types.h:117
WORD
unsigned short WORD
Definition: ntddk_ex.h:93
SDDL_AUTO_INHERIT_REQ
#define SDDL_AUTO_INHERIT_REQ
Definition: sddl.h:45
DumpAce
static BOOL DumpAce(LPVOID pace, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2936
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
GetAce
BOOL WINAPI GetAce(PACL pAcl, DWORD dwAceIndex, LPVOID *pAce)
Definition: security.c:1065
NULL
#define NULL
Definition: types.h:112
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793
SDDL_PROTECTED
#define SDDL_PROTECTED
Definition: sddl.h:44

Referenced by DumpDacl(), and DumpSacl().

◆ DumpDacl()

static BOOL DumpDacl ( PSECURITY_DESCRIPTOR  SecurityDescriptor,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 3062 of file security.c.

3063 {
3064  static const WCHAR dacl[] = {'D',':',0};
3065  SECURITY_DESCRIPTOR_CONTROL control;
3066  BOOL present, defaulted;
3067  DWORD revision;
3068  PACL pacl;
3069 
3070  if (!GetSecurityDescriptorDacl(SecurityDescriptor, &present, &pacl, &defaulted))
3071  return FALSE;
3072 
3073  if (!GetSecurityDescriptorControl(SecurityDescriptor, &control, &revision))
3074  return FALSE;
3075 
3076  if (!present)
3077  return TRUE;
3078 
3079  DumpString(dacl, 2, pwptr, plen);
3080  if (!DumpAcl(pacl, pwptr, plen, control & SE_DACL_PROTECTED, control & SE_DACL_AUTO_INHERIT_REQ, control & SE_DACL_AUTO_INHERITED))
3081  return FALSE;
3082  return TRUE;
3083 }
GetSecurityDescriptorControl
BOOL WINAPI GetSecurityDescriptorControl(PSECURITY_DESCRIPTOR pSecurityDescriptor, PSECURITY_DESCRIPTOR_CONTROL pControl, LPDWORD lpdwRevision)
Definition: sec.c:21
TRUE
#define TRUE
Definition: types.h:120
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
_ACL
Definition: ms-dtyp.idl:293
SE_DACL_AUTO_INHERITED
#define SE_DACL_AUTO_INHERITED
Definition: setypes.h:794
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
SECURITY_DESCRIPTOR_CONTROL
WORD SECURITY_DESCRIPTOR_CONTROL
Definition: lsa.idl:37
GetSecurityDescriptorDacl
BOOL WINAPI GetSecurityDescriptorDacl(PSECURITY_DESCRIPTOR pSecurityDescriptor, LPBOOL lpbDaclPresent, PACL *pDacl, LPBOOL lpbDaclDefaulted)
Definition: sec.c:45
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
dacl
Definition: security.c:35
SE_DACL_PROTECTED
#define SE_DACL_PROTECTED
Definition: setypes.h:796
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793
SE_DACL_AUTO_INHERIT_REQ
#define SE_DACL_AUTO_INHERIT_REQ
Definition: setypes.h:792
DumpAcl
static BOOL DumpAcl(PACL pacl, WCHAR **pwptr, ULONG *plen, BOOL protected, BOOL autoInheritReq, BOOL autoInherited)
Definition: security.c:2995

Referenced by ConvertSecurityDescriptorToStringSecurityDescriptorW().

◆ DumpGroup()

static BOOL DumpGroup ( PSECURITY_DESCRIPTOR  SecurityDescriptor,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 3044 of file security.c.

3045 {
3046  static const WCHAR prefix[] = {'G',':',0};
3047  BOOL bDefaulted;
3048  PSID psid;
3049 
3050  if (!GetSecurityDescriptorGroup(SecurityDescriptor, &psid, &bDefaulted))
3051  return FALSE;
3052 
3053  if (psid == NULL)
3054  return TRUE;
3055 
3056  DumpString(prefix, -1, pwptr, plen);
3057  if (!DumpSid(psid, pwptr, plen))
3058  return FALSE;
3059  return TRUE;
3060 }
_SID
Definition: ms-dtyp.idl:198
TRUE
#define TRUE
Definition: types.h:120
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
DumpSid
static BOOL DumpSid(PSID psid, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2847
GetSecurityDescriptorGroup
BOOL WINAPI GetSecurityDescriptorGroup(PSECURITY_DESCRIPTOR pSecurityDescriptor, PSID *pGroup, LPBOOL lpbGroupDefaulted)
Definition: sec.c:76
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
NULL
#define NULL
Definition: types.h:112
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793

Referenced by ConvertSecurityDescriptorToStringSecurityDescriptorW().

◆ DumpOwner()

static BOOL DumpOwner ( PSECURITY_DESCRIPTOR  SecurityDescriptor,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 3026 of file security.c.

3027 {
3028  static const WCHAR prefix[] = {'O',':',0};
3029  BOOL bDefaulted;
3030  PSID psid;
3031 
3032  if (!GetSecurityDescriptorOwner(SecurityDescriptor, &psid, &bDefaulted))
3033  return FALSE;
3034 
3035  if (psid == NULL)
3036  return TRUE;
3037 
3038  DumpString(prefix, -1, pwptr, plen);
3039  if (!DumpSid(psid, pwptr, plen))
3040  return FALSE;
3041  return TRUE;
3042 }
_SID
Definition: ms-dtyp.idl:198
TRUE
#define TRUE
Definition: types.h:120
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
DumpSid
static BOOL DumpSid(PSID psid, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2847
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
GetSecurityDescriptorOwner
BOOL WINAPI GetSecurityDescriptorOwner(PSECURITY_DESCRIPTOR pSecurityDescriptor, PSID *pOwner, LPBOOL lpbOwnerDefaulted)
Definition: sec.c:103
NULL
#define NULL
Definition: types.h:112
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793

Referenced by ConvertSecurityDescriptorToStringSecurityDescriptorW().

◆ DumpRights()

static void DumpRights ( DWORD  mask,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 2897 of file security.c.

2898 {
2899  static const WCHAR fmtW[] = {'0','x','%','x',0};
2900  WCHAR buf[15];
2901  size_t i;
2902 
2903  if (mask == 0)
2904  return;
2905 
2906  /* first check if the right have name */
2907  for (i = 0; i < sizeof(AceRights)/sizeof(AceRights[0]); i++)
2908  {
2909  if (AceRights[i].wstr == NULL)
2910  break;
2911  if (mask == AceRights[i].value)
2912  {
2913  DumpString(AceRights[i].wstr, -1, pwptr, plen);
2914  return;
2915  }
2916  }
2917 
2918  /* then check if it can be built from bit names */
2919  for (i = 0; i < 32; i++)
2920  {
2921  if ((mask & (1 << i)) && (AceRightBitNames[i] == NULL))
2922  {
2923  /* can't be built from bit names */
2924  sprintfW(buf, fmtW, mask);
2925  DumpString(buf, -1, pwptr, plen);
2926  return;
2927  }
2928  }
2929 
2930  /* build from bit names */
2931  for (i = 0; i < 32; i++)
2932  if (mask & (1 << i))
2933  DumpString(AceRightBitNames[i], -1, pwptr, plen);
2934 }
value
Definition: pdh_main.c:93
buf
GLenum GLuint GLenum GLsizei const GLchar * buf
Definition: glext.h:7751
mask
GLenum GLint GLuint mask
Definition: glext.h:6028
AceRights
static const ACEFLAG AceRights[]
Definition: security.c:2345
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
AceRightBitNames
static const LPCWSTR AceRightBitNames[32]
Definition: security.c:2862
sprintfW
#define sprintfW
Definition: unicode.h:58
NULL
#define NULL
Definition: types.h:112
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793

Referenced by DumpAce().

◆ DumpSacl()

static BOOL DumpSacl ( PSECURITY_DESCRIPTOR  SecurityDescriptor,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 3085 of file security.c.

3086 {
3087  static const WCHAR sacl[] = {'S',':',0};
3088  SECURITY_DESCRIPTOR_CONTROL control;
3089  BOOL present, defaulted;
3090  DWORD revision;
3091  PACL pacl;
3092 
3093  if (!GetSecurityDescriptorSacl(SecurityDescriptor, &present, &pacl, &defaulted))
3094  return FALSE;
3095 
3096  if (!GetSecurityDescriptorControl(SecurityDescriptor, &control, &revision))
3097  return FALSE;
3098 
3099  if (!present)
3100  return TRUE;
3101 
3102  DumpString(sacl, 2, pwptr, plen);
3103  if (!DumpAcl(pacl, pwptr, plen, control & SE_SACL_PROTECTED, control & SE_SACL_AUTO_INHERIT_REQ, control & SE_SACL_AUTO_INHERITED))
3104  return FALSE;
3105  return TRUE;
3106 }
GetSecurityDescriptorControl
BOOL WINAPI GetSecurityDescriptorControl(PSECURITY_DESCRIPTOR pSecurityDescriptor, PSECURITY_DESCRIPTOR_CONTROL pControl, LPDWORD lpdwRevision)
Definition: sec.c:21
GetSecurityDescriptorSacl
BOOL WINAPI GetSecurityDescriptorSacl(PSECURITY_DESCRIPTOR pSecurityDescriptor, LPBOOL lpbSaclPresent, PACL *pSacl, LPBOOL lpbSaclDefaulted)
Definition: sec.c:146
TRUE
#define TRUE
Definition: types.h:120
SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182
_ACL
Definition: ms-dtyp.idl:293
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
SECURITY_DESCRIPTOR_CONTROL
WORD SECURITY_DESCRIPTOR_CONTROL
Definition: lsa.idl:37
SE_SACL_AUTO_INHERIT_REQ
#define SE_SACL_AUTO_INHERIT_REQ
Definition: setypes.h:793
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
SE_SACL_PROTECTED
#define SE_SACL_PROTECTED
Definition: setypes.h:797
SE_SACL_AUTO_INHERITED
#define SE_SACL_AUTO_INHERITED
Definition: setypes.h:795
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793
DumpAcl
static BOOL DumpAcl(PACL pacl, WCHAR **pwptr, ULONG *plen, BOOL protected, BOOL autoInheritReq, BOOL autoInherited)
Definition: security.c:2995

Referenced by ConvertSecurityDescriptorToStringSecurityDescriptorW().

◆ DumpSid()

static BOOL DumpSid ( PSID  psid,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 2847 of file security.c.

2848 {
2849  size_t i;
2850  for (i = 0; i < sizeof(WellKnownSids) / sizeof(WellKnownSids[0]); i++)
2851  {
2852  if (WellKnownSids[i].wstr[0] && EqualSid(psid, (PSID)&(WellKnownSids[i].Sid.Revision)))
2853  {
2854  DumpString(WellKnownSids[i].wstr, 2, pwptr, plen);
2855  return TRUE;
2856  }
2857  }
2858 
2859  return DumpSidNumeric(psid, pwptr, plen);
2860 }
_SID
Definition: ms-dtyp.idl:198
TRUE
#define TRUE
Definition: types.h:120
WellKnownSids
static const WELLKNOWNSID WellKnownSids[]
Definition: security.c:47
EqualSid
BOOL WINAPI EqualSid(PSID pSid1, PSID pSid2)
Definition: security.c:708
DumpSidNumeric
static BOOL DumpSidNumeric(PSID psid, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2808
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793
_SID::Revision
BYTE Revision
Definition: ms-dtyp.idl:199

Referenced by DumpAce(), DumpGroup(), and DumpOwner().

◆ DumpSidNumeric()

static BOOL DumpSidNumeric ( PSID  psid,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 2808 of file security.c.

2809 {
2810  DWORD i;
2811  WCHAR fmt[] = { 'S','-','%','u','-','%','d',0 };
2812  WCHAR subauthfmt[] = { '-','%','u',0 };
2813  WCHAR buf[26];
2814  SID *pisid = psid;
2815 
2816  if( !IsValidSid( psid ) || pisid->Revision != SDDL_REVISION)
2817  {
2818  SetLastError(ERROR_INVALID_SID);
2819  return FALSE;
2820  }
2821 
2822  if (pisid->IdentifierAuthority.Value[0] ||
2823  pisid->IdentifierAuthority.Value[1])
2824  {
2825  FIXME("not matching MS' bugs\n");
2826  SetLastError(ERROR_INVALID_SID);
2827  return FALSE;
2828  }
2829 
2830  sprintfW( buf, fmt, pisid->Revision,
2831  MAKELONG(
2832  MAKEWORD( pisid->IdentifierAuthority.Value[5],
2833  pisid->IdentifierAuthority.Value[4] ),
2834  MAKEWORD( pisid->IdentifierAuthority.Value[3],
2835  pisid->IdentifierAuthority.Value[2] )
2836  ) );
2837  DumpString(buf, -1, pwptr, plen);
2838 
2839  for( i=0; i<pisid->SubAuthorityCount; i++ )
2840  {
2841  sprintfW( buf, subauthfmt, pisid->SubAuthority[i] );
2842  DumpString(buf, -1, pwptr, plen);
2843  }
2844  return TRUE;
2845 }
_SID_IDENTIFIER_AUTHORITY::Value
BYTE Value[6]
Definition: ms-dtyp.idl:195
_SID
Definition: ms-dtyp.idl:198
MAKEWORD
#define MAKEWORD(a, b)
Definition: typedefs.h:248
TRUE
#define TRUE
Definition: types.h:120
ERROR_INVALID_SID
#define ERROR_INVALID_SID
Definition: winerror.h:819
buf
GLenum GLuint GLenum GLsizei const GLchar * buf
Definition: glext.h:7751
FALSE
#define FALSE
Definition: types.h:117
FIXME
#define FIXME(fmt,...)
Definition: debug.h:111
MAKELONG
#define MAKELONG(a, b)
Definition: typedefs.h:249
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
SetLastError
#define SetLastError(x)
Definition: compat.h:611
_SID::SubAuthority
DWORD SubAuthority[*]
Definition: ms-dtyp.idl:202
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
sprintfW
#define sprintfW
Definition: unicode.h:58
_SID::SubAuthorityCount
BYTE SubAuthorityCount
Definition: ms-dtyp.idl:200
DumpString
static void DumpString(LPCWSTR string, int cch, WCHAR **pwptr, ULONG *plen)
Definition: security.c:2793
SDDL_REVISION
#define SDDL_REVISION
Definition: sddl.h:31
IsValidSid
BOOL WINAPI IsValidSid(PSID pSid)
Definition: security.c:698
_SID::IdentifierAuthority
SID_IDENTIFIER_AUTHORITY IdentifierAuthority
Definition: ms-dtyp.idl:201
_SID::Revision
BYTE Revision
Definition: ms-dtyp.idl:199
fmt
Definition: dsound.c:943

Referenced by DumpSid().

◆ DumpString()

static void DumpString ( LPCWSTR  string,
int  cch,
WCHAR **  pwptr,
ULONG plen 
)
static

Definition at line 2793 of file security.c.

2794 {
2795  if (cch == -1)
2796  cch = strlenW(string);
2797 
2798  if (plen)
2799  *plen += cch;
2800 
2801  if (pwptr)
2802  {
2803  memcpy(*pwptr, string, sizeof(WCHAR)*cch);
2804  *pwptr += cch;
2805  }
2806 }
strlenW
WINE_UNICODE_INLINE unsigned int strlenW(const WCHAR *str)
Definition: unicode.h:212
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
memcpy
#define memcpy(s1, s2, n)
Definition: mkisofs.h:878
cch
IN PCTCH IN DWORD cch
Definition: pager.h:36

Referenced by DumpAce(), DumpAcl(), DumpDacl(), DumpGroup(), DumpOwner(), DumpRights(), DumpSacl(), DumpSid(), and DumpSidNumeric().

◆ DuplicateToken()

BOOL WINAPI DuplicateToken ( IN HANDLE  ExistingTokenHandle,
IN SECURITY_IMPERSONATION_LEVEL  ImpersonationLevel,
OUT PHANDLE  DuplicateTokenHandle 
)

Definition at line 3454 of file security.c.

3457 {
3458  return DuplicateTokenEx(ExistingTokenHandle,
3459  TOKEN_IMPERSONATE | TOKEN_QUERY,
3460  NULL,
3461  ImpersonationLevel,
3462  TokenImpersonation,
3463  DuplicateTokenHandle);
3464 }
TOKEN_IMPERSONATE
#define TOKEN_IMPERSONATE
Definition: setypes.h:892
TOKEN_QUERY
#define TOKEN_QUERY
Definition: setypes.h:893
ImpersonationLevel
_Out_ PBOOLEAN _Out_ PBOOLEAN _Out_ PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel
Definition: psfuncs.h:154
DuplicateTokenEx
BOOL WINAPI DuplicateTokenEx(IN HANDLE ExistingTokenHandle, IN DWORD dwDesiredAccess, IN LPSECURITY_ATTRIBUTES lpTokenAttributes OPTIONAL, IN SECURITY_IMPERSONATION_LEVEL ImpersonationLevel, IN TOKEN_TYPE TokenType, OUT PHANDLE DuplicateTokenHandle)
Definition: security.c:3394
NULL
#define NULL
Definition: types.h:112

Referenced by GetDuplicateToken(), test_AccessCheck(), test_CheckTokenMembership(), test_impersonation_level(), test_kernel_objects_security(), and test_token_attr().

◆ DuplicateTokenEx()

BOOL WINAPI DuplicateTokenEx ( IN HANDLE  ExistingTokenHandle,
IN DWORD  dwDesiredAccess,
IN LPSECURITY_ATTRIBUTES lpTokenAttributes  OPTIONAL,
IN SECURITY_IMPERSONATION_LEVEL  ImpersonationLevel,
IN TOKEN_TYPE  TokenType,
OUT PHANDLE  DuplicateTokenHandle 
)

Definition at line 3394 of file security.c.

3400 {
3401  OBJECT_ATTRIBUTES ObjectAttributes;
3402  NTSTATUS Status;
3403  SECURITY_QUALITY_OF_SERVICE Sqos;
3404 
3405  TRACE("%p 0x%08x 0x%08x 0x%08x %p\n", ExistingTokenHandle, dwDesiredAccess,
3406  ImpersonationLevel, TokenType, DuplicateTokenHandle);
3407 
3408  Sqos.Length = sizeof(SECURITY_QUALITY_OF_SERVICE);
3409  Sqos.ImpersonationLevel = ImpersonationLevel;
3410  Sqos.ContextTrackingMode = 0;
3411  Sqos.EffectiveOnly = FALSE;
3412 
3413  if (lpTokenAttributes != NULL)
3414  {
3415  InitializeObjectAttributes(&ObjectAttributes,
3416  NULL,
3417  lpTokenAttributes->bInheritHandle ? OBJ_INHERIT : 0,
3418  NULL,
3419  lpTokenAttributes->lpSecurityDescriptor);
3420  }
3421  else
3422  {
3423  InitializeObjectAttributes(&ObjectAttributes,
3424  NULL,
3425  0,
3426  NULL,
3427  NULL);
3428  }
3429 
3430  ObjectAttributes.SecurityQualityOfService = &Sqos;
3431 
3432  Status = NtDuplicateToken(ExistingTokenHandle,
3433  dwDesiredAccess,
3434  &ObjectAttributes,
3435  FALSE,
3436  TokenType,
3437  DuplicateTokenHandle);
3438  if (!NT_SUCCESS(Status))
3439  {
3440  ERR("NtDuplicateToken failed: Status %08x\n", Status);
3441  SetLastError(RtlNtStatusToDosError(Status));
3442  return FALSE;
3443  }
3444 
3445  TRACE("Returning token %p.\n", *DuplicateTokenHandle);
3446 
3447  return TRUE;
3448 }
ObjectAttributes
IN PUNICODE_STRING IN POBJECT_ATTRIBUTES ObjectAttributes
Definition: conport.c:35
TRUE
#define TRUE
Definition: types.h:120
_OBJECT_ATTRIBUTES
Definition: umtypes.h:181
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
_SECURITY_QUALITY_OF_SERVICE::ContextTrackingMode
SECURITY_CONTEXT_TRACKING_MODE ContextTrackingMode
Definition: lsa.idl:66
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
Status
Status
Definition: gdiplustypes.h:24
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
OBJ_INHERIT
#define OBJ_INHERIT
Definition: winternl.h:225
ImpersonationLevel
_Out_ PBOOLEAN _Out_ PBOOLEAN _Out_ PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel
Definition: psfuncs.h:154
SetLastError
#define SetLastError(x)
Definition: compat.h:611
_SECURITY_QUALITY_OF_SERVICE
Definition: lsa.idl:63
_SECURITY_QUALITY_OF_SERVICE::Length
DWORD Length
Definition: lsa.idl:64
ERR
#define ERR(fmt,...)
Definition: debug.h:110
SECURITY_QUALITY_OF_SERVICE
struct _SECURITY_QUALITY_OF_SERVICE SECURITY_QUALITY_OF_SERVICE
_SECURITY_QUALITY_OF_SERVICE::ImpersonationLevel
SECURITY_IMPERSONATION_LEVEL ImpersonationLevel
Definition: lsa.idl:65
NULL
#define NULL
Definition: types.h:112
_SECURITY_QUALITY_OF_SERVICE::EffectiveOnly
BOOLEAN EffectiveOnly
Definition: lsa.idl:67
InitializeObjectAttributes
#define InitializeObjectAttributes(p, n, a, r, s)
Definition: reg.c:106
NtDuplicateToken
_Must_inspect_result_ __kernel_entry NTSTATUS NTAPI NtDuplicateToken(_In_ HANDLE ExistingTokenHandle, _In_ ACCESS_MASK DesiredAccess, _In_opt_ POBJECT_ATTRIBUTES ObjectAttributes, _In_ BOOLEAN EffectiveOnly, _In_ TOKEN_TYPE TokenType, _Out_ PHANDLE NewTokenHandle)
Duplicates a token.
Definition: token.c:4127
TokenType
_In_ ACCESS_MASK _In_opt_ POBJECT_ATTRIBUTES _In_ BOOLEAN _In_ TOKEN_TYPE TokenType
Definition: sefuncs.h:388

Referenced by CheckTokenMembership(), CreateRestrictedToken(), DuplicateToken(), LaunchProcess(), START_TEST(), test_CreateRestrictedToken(), test_token_security_descriptor(), and WlxStartApplication().

◆ EqualDomainSid()

BOOL WINAPI EqualDomainSid ( IN PSID  pSid1,
IN PSID  pSid2,
OUT BOOL pfEqual 
)

Definition at line 3719 of file security.c.

3722 {
3723  UNIMPLEMENTED;
3724  return FALSE;
3725 }
FALSE
#define FALSE
Definition: types.h:117
UNIMPLEMENTED
#define UNIMPLEMENTED
Definition: debug.h:115

◆ EqualPrefixSid()

BOOL WINAPI EqualPrefixSid ( PSID  pSid1,
PSID  pSid2 
)

Definition at line 720 of file security.c.

722 {
723  return RtlEqualPrefixSid (pSid1, pSid2);
724 }
RtlEqualPrefixSid
NTSYSAPI BOOLEAN NTAPI RtlEqualPrefixSid(PSID Sid1, PSID Sid2)

Referenced by test_process_security().

◆ EqualSid()

BOOL WINAPI EqualSid ( PSID  pSid1,
PSID  pSid2 
)

Definition at line 708 of file security.c.

710 {
711  SetLastError(ERROR_SUCCESS);
712  return RtlEqualSid (pSid1, pSid2);
713 }
ERROR_SUCCESS
#define ERROR_SUCCESS
Definition: deptool.c:10
SetLastError
#define SetLastError(x)
Definition: compat.h:611
RtlEqualSid
NTSYSAPI BOOLEAN NTAPI RtlEqualSid(_In_ PSID Sid1, _In_ PSID Sid2)

Referenced by _test_group(), CachedGetUserFromSid(), check_wellknown_name(), CheckForGuestsAndAdmins(), DequeueSidLookup(), DumpSid(), FindSidInCache(), FindSidInPrincipalsListAddAce(), GetEventUserName(), is_token_admin(), IsNTAdmin(), IsUserAdmin(), IsWellKnownSid(), LsapSetTokenOwner(), map_nfs4ace_who(), PrintSid(), QueueSidLookup(), RunningAsSYSTEM(), test_AddMandatoryAce(), test_child_token_sd(), test_child_token_sd_medium(), test_child_token_sd_restricted(), test_CreateRestrictedToken(), test_default_dacl_owner_sid(), test_EqualSid(), test_GetExplicitEntriesFromAclW(), test_GetNamedSecurityInfoA(), test_GetSecurityInfo(), test_GetWindowsAccountDomainSid(), test_group_equal(), test_inherited_dacl(), test_owner_equal(), test_SystemSecurity(), test_token_label(), test_token_security_descriptor(), test_TokenIntegrityLevel(), and UpdatePrincipalInfo().

◆ FindFirstFreeAce()

BOOL WINAPI FindFirstFreeAce ( PACL  pAcl,
LPVOID pAce 
)

Definition at line 1055 of file security.c.

1057 {
1058  return RtlFirstFreeAce(pAcl,
1059  (PACE*)pAce);
1060 }
RtlFirstFreeAce
NTSYSAPI BOOLEAN NTAPI RtlFirstFreeAce(PACL Acl, PACE *Ace)
_ACE
Definition: rtltypes.h:990

◆ FreeSid()

PVOID WINAPI FreeSid ( PSID  pSid)

Definition at line 577 of file security.c.

578 {
579  return RtlFreeSid(pSid);
580 }
RtlFreeSid
NTSYSAPI PVOID NTAPI RtlFreeSid(_In_ _Post_invalid_ PSID Sid)
pSid
static PSID pSid
Definition: security.c:74

Referenced by check_wellknown_name(), CheckForGuestsAndAdmins(), CreateDefaultSecurityDescriptor(), GetShellSecurityDescriptor(), is_process_limited(), is_token_admin(), IsNTAdmin(), IsUserAdmin(), PerfDataUninitialize(), pSetupIsUserAdmin(), SHTestTokenMembership(), test_AccessCheck(), test_AddMandatoryAce(), test_CreateWellKnownSid(), test_EqualSid(), test_GetExplicitEntriesFromAclW(), test_GetNamedSecurityInfoA(), test_GetSecurityInfo(), test_LookupAccountSid(), test_LsaLookupSids(), test_process_security(), test_reg_create_key(), test_reg_open_key(), test_SetEntriesInAclA(), test_SetEntriesInAclW(), test_sid(), and test_trustee().

◆ GetAce()

BOOL WINAPI GetAce ( PACL  pAcl,
DWORD  dwAceIndex,
LPVOID pAce 
)

Definition at line 1065 of file security.c.

1066 {
1067  return set_ntstatus(RtlGetAce(pAcl, dwAceIndex, pAce));
1068 }
RtlGetAce
NTSYSAPI NTSTATUS NTAPI RtlGetAce(PACL Acl, ULONG AceIndex, PVOID *Ace)
set_ntstatus
static __inline BOOL set_ntstatus(NTSTATUS status)
Definition: security.c:229

Referenced by AccRewriteGetExplicitEntriesFromAcl(), AccRewriteSetEntriesInAcl(), DumpAcl(), CSecurityDescriptor::GetDACLEntry(), CSecurityDescriptor::GetSACLEntry(), map_dacl_2_nfs4acl(), PrintFileDacl(), ReloadPrincipalsList(), and test_GetShellSecurityDescriptor().

◆ GetAclInformation()

BOOL WINAPI GetAclInformation ( PACL  pAcl,
LPVOID  pAclInformation,
DWORD  nAclInformationLength,
ACL_INFORMATION_CLASS  dwAclInformationClass 
)

Definition at line 1073 of file security.c.

1078 {
1079  return set_ntstatus(RtlQueryInformationAcl(pAcl, pAclInformation,
1080  nAclInformationLength, dwAclInformationClass));
1081 }
RtlQueryInformationAcl
NTSYSAPI NTSTATUS WINAPI RtlQueryInformationAcl(PACL, LPVOID, DWORD, ACL_INFORMATION_CLASS)
set_ntstatus
static __inline BOOL set_ntstatus(NTSTATUS status)
Definition: security.c:229

Referenced by AccRewriteSetEntriesInAcl(), CSecurityDescriptor::GetDACLEntriesCount(), CSecurityDescriptor::GetSACLEntriesCount(), and test_GetShellSecurityDescriptor().

◆ GetFileSecurityA()

BOOL WINAPI GetFileSecurityA ( LPCSTR  lpFileName,
SECURITY_INFORMATION  RequestedInformation,
PSECURITY_DESCRIPTOR  pSecurityDescriptor,
DWORD  nLength,
LPDWORD  lpnLengthNeeded 
)

Definition at line 1252 of file security.c.

1257 {
1258  UNICODE_STRING FileName;
1259  BOOL bResult;
1260 
1261  if (!RtlCreateUnicodeStringFromAsciiz(&FileName, lpFileName))
1262  {
1263  SetLastError(ERROR_NOT_ENOUGH_MEMORY);
1264  return FALSE;
1265  }
1266 
1267  bResult = GetFileSecurityW(FileName.Buffer,
1268  RequestedInformation,
1269  pSecurityDescriptor,
1270  nLength,
1271  lpnLengthNeeded);
1272 
1273  RtlFreeUnicodeString(&FileName);
1274 
1275  return bResult;
1276 }
nLength
_In_ DWORD nLength
Definition: wincon.h:473
ERROR_NOT_ENOUGH_MEMORY
#define ERROR_NOT_ENOUGH_MEMORY
Definition: dderror.h:7
FALSE
#define FALSE
Definition: types.h:117
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
RtlCreateUnicodeStringFromAsciiz
NTSYSAPI BOOLEAN NTAPI RtlCreateUnicodeStringFromAsciiz(_Out_ PUNICODE_STRING Destination, _In_ PCSZ Source)
_FileName
Definition: filecomp.c:347
RtlFreeUnicodeString
NTSYSAPI VOID NTAPI RtlFreeUnicodeString(PUNICODE_STRING UnicodeString)
SetLastError
#define SetLastError(x)
Definition: compat.h:611
GetFileSecurityW
BOOL WINAPI GetFileSecurityW(LPCWSTR lpFileName, SECURITY_INFORMATION RequestedInformation, PSECURITY_DESCRIPTOR pSecurityDescriptor, DWORD nLength, LPDWORD lpnLengthNeeded)
Definition: security.c:1283
_UNICODE_STRING
Definition: env_spec_w32.h:368
FileName
struct _FileName FileName
Definition: fatprocs.h:893
lpFileName
_In_ LPCSTR lpFileName
Definition: winbase.h:3050

Referenced by test_FileSecurity().

◆ GetFileSecurityW()

BOOL WINAPI GetFileSecurityW ( LPCWSTR  lpFileName,
SECURITY_INFORMATION  RequestedInformation,
PSECURITY_DESCRIPTOR  pSecurityDescriptor,
DWORD  nLength,
LPDWORD  lpnLengthNeeded 
)

Definition at line 1283 of file security.c.

1288 {
1289  OBJECT_ATTRIBUTES ObjectAttributes;
1290  IO_STATUS_BLOCK StatusBlock;
1291  UNICODE_STRING FileName;
1292  ULONG AccessMask = 0;
1293  HANDLE FileHandle;
1294  NTSTATUS Status;
1295 
1296  TRACE("GetFileSecurityW() called\n");
1297 
1298  QuerySecurityAccessMask(RequestedInformation, &AccessMask);
1299 
1300  if (!RtlDosPathNameToNtPathName_U(lpFileName,
1301  &FileName,
1302  NULL,
1303  NULL))
1304  {
1305  ERR("Invalid path\n");
1306  SetLastError(ERROR_INVALID_NAME);
1307  return FALSE;
1308  }
1309 
1310  InitializeObjectAttributes(&ObjectAttributes,
1311  &FileName,
1312  OBJ_CASE_INSENSITIVE,
1313  NULL,
1314  NULL);
1315 
1316  Status = NtOpenFile(&FileHandle,
1317  AccessMask,
1318  &ObjectAttributes,
1319  &StatusBlock,
1320  FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,
1321  0);
1322 
1323  RtlFreeHeap(RtlGetProcessHeap(),
1324  0,
1325  FileName.Buffer);
1326 
1327  if (!NT_SUCCESS(Status))
1328  {
1329  ERR("NtOpenFile() failed (Status %lx)\n", Status);
1330  SetLastError(RtlNtStatusToDosError(Status));
1331  return FALSE;
1332  }
1333 
1334  Status = NtQuerySecurityObject(FileHandle,
1335  RequestedInformation,
1336  pSecurityDescriptor,
1337  nLength,
1338  lpnLengthNeeded);
1339  NtClose(FileHandle);
1340  if (!NT_SUCCESS(Status))
1341  {
1342  ERR("NtQuerySecurityObject() failed (Status %lx)\n", Status);
1343  SetLastError(RtlNtStatusToDosError(Status));
1344  return FALSE;
1345  }
1346 
1347  return TRUE;
1348 }
ObjectAttributes
IN PUNICODE_STRING IN POBJECT_ATTRIBUTES ObjectAttributes
Definition: conport.c:35
OBJ_CASE_INSENSITIVE
#define OBJ_CASE_INSENSITIVE
Definition: winternl.h:228
TRUE
#define TRUE
Definition: types.h:120
_OBJECT_ATTRIBUTES
Definition: umtypes.h:181
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RtlFreeHeap
BOOLEAN NTAPI RtlFreeHeap(IN PVOID HeapHandle, IN ULONG Flags, IN PVOID HeapBase)
Definition: heap.c:606
nLength
_In_ DWORD nLength
Definition: wincon.h:473
FILE_SHARE_WRITE
#define FILE_SHARE_WRITE
Definition: nt_native.h:681
FILE_SHARE_READ
#define FILE_SHARE_READ
Definition: compat.h:136
FileHandle
HANDLE FileHandle
Definition: stats.c:38
RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)
FALSE
#define FALSE
Definition: types.h:117
_FileName
Definition: filecomp.c:347
Status
Status
Definition: gdiplustypes.h:24
NtOpenFile
NTSYSAPI NTSTATUS NTAPI NtOpenFile(OUT PHANDLE phFile, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK pIoStatusBlock, IN ULONG ShareMode, IN ULONG OpenMode)
Definition: file.c:3951
NtQuerySecurityObject
NTSTATUS NTAPI NtQuerySecurityObject(IN HANDLE Handle, IN SECURITY_INFORMATION SecurityInformation, OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN ULONG Length, OUT PULONG ResultLength)
Definition: obsecure.c:803
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
QuerySecurityAccessMask
VOID WINAPI QuerySecurityAccessMask(IN SECURITY_INFORMATION SecurityInformation, OUT LPDWORD DesiredAccess)
Definition: sec.c:377
AccessMask
_In_ ACCESS_MASK AccessMask
Definition: exfuncs.h:186
SetLastError
#define SetLastError(x)
Definition: compat.h:611
NtClose
NTSTATUS NTAPI NtClose(IN HANDLE Handle)
Definition: obhandle.c:3398
FILE_SHARE_DELETE
#define FILE_SHARE_DELETE
Definition: nt_native.h:682
ERR
#define ERR(fmt,...)
Definition: debug.h:110
_IO_STATUS_BLOCK
Definition: env_spec_w32.h:870
_UNICODE_STRING
Definition: env_spec_w32.h:368
FileName
struct _FileName FileName
Definition: fatprocs.h:893
NULL
#define NULL
Definition: types.h:112
ULONG
unsigned int ULONG
Definition: retypes.h:1
InitializeObjectAttributes
#define InitializeObjectAttributes(p, n, a, r, s)
Definition: reg.c:106
ERROR_INVALID_NAME
#define ERROR_INVALID_NAME
Definition: compat.h:103
RtlDosPathNameToNtPathName_U
NTSYSAPI BOOLEAN NTAPI RtlDosPathNameToNtPathName_U(_In_opt_z_ PCWSTR DosPathName, _Out_ PUNICODE_STRING NtPathName, _Out_opt_ PCWSTR *NtFileNamePart, _Out_opt_ PRTL_RELATIVE_NAME_U DirectoryInfo)
lpFileName
_In_ LPCSTR lpFileName
Definition: winbase.h:3050

Referenced by GetFileSecurityA(), and RetreiveFileSecurity().

◆ GetKernelObjectSecurity()

BOOL WINAPI GetKernelObjectSecurity ( HANDLE  Handle,
SECURITY_INFORMATION  RequestedInformation,
PSECURITY_DESCRIPTOR  pSecurityDescriptor,
DWORD  nLength,
LPDWORD  lpnLengthNeeded 
)

Definition at line 866 of file security.c.

872 {
873  TRACE("(%p,0x%08x,%p,0x%08x,%p)\n", Handle, RequestedInformation,
874  pSecurityDescriptor, nLength, lpnLengthNeeded);
875 
876  return set_ntstatus( NtQuerySecurityObject(Handle, RequestedInformation, pSecurityDescriptor,
877  nLength, lpnLengthNeeded ));
878 }
nLength
_In_ DWORD nLength
Definition: wincon.h:473
NtQuerySecurityObject
NTSTATUS NTAPI NtQuerySecurityObject(IN HANDLE Handle, IN SECURITY_INFORMATION SecurityInformation, OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN ULONG Length, OUT PULONG ResultLength)
Definition: obsecure.c:803
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
set_ntstatus
static __inline BOOL set_ntstatus(NTSTATUS status)
Definition: security.c:229
Handle
_In_ HANDLE Handle
Definition: extypes.h:390

Referenced by test_AddMandatoryAce(), test_child_token_sd(), test_child_token_sd_medium(), test_child_token_sd_restricted(), test_default_dacl_owner_sid(), test_get_security_descriptor(), test_token_label(), and test_token_security_descriptor().

◆ GetLengthSid()

DWORD WINAPI GetLengthSid ( PSID  pSid)

Definition at line 798 of file security.c.

799 {
800  return (DWORD)RtlLengthSid(pSid);
801 }
RtlLengthSid
NTSYSAPI ULONG NTAPI RtlLengthSid(IN PSID Sid)
Definition: sid.c:150
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
pSid
static PSID pSid
Definition: security.c:74

Referenced by AccpCalcNeededAceSize(), AccpLookupCurrentUser(), AccpLookupSidByName(), AccRewriteGetExplicitEntriesFromAcl(), AddAceToDesktop(), AddAceToWindowStation(), AddPrincipalToList(), AllowWinstaAccess(), AuthzGetInformationFromContext(), AuthzInitializeContextFromSid(), AuthzpQueryToken(), BuildDefaultPrincipalAce(), CachedGetUserFromSid(), CacheLookupResults(), CreateDefaultSecurityDescriptor(), CreateUserProfileExW(), CreateWindowStationAndDesktops(), fill_sid(), GetShellSecurityDescriptor(), GetUserSid(), LsarpCreateAccount(), QueueSidLookup(), ReloadPrincipalsList(), and test_LookupAccountName().

◆ GetNamedSecurityInfoA()

DWORD WINAPI GetNamedSecurityInfoA ( LPSTR  pObjectName,
SE_OBJECT_TYPE  ObjectType,
SECURITY_INFORMATION  SecurityInfo,
PSID ppsidOwner,
PSID ppsidGroup,
PACL ppDacl,
PACL ppSacl,
PSECURITY_DESCRIPTOR ppSecurityDescriptor 
)

Definition at line 3637 of file security.c.

3645 {
3646  DWORD len;
3647  LPWSTR wstr = NULL;
3648  DWORD r;
3649 
3650  TRACE("%s %d %d %p %p %p %p %p\n", pObjectName, ObjectType, SecurityInfo,
3651  ppsidOwner, ppsidGroup, ppDacl, ppSacl, ppSecurityDescriptor);
3652 
3653  if( pObjectName )
3654  {
3655  len = MultiByteToWideChar( CP_ACP, 0, pObjectName, -1, NULL, 0 );
3656  wstr = HeapAlloc( GetProcessHeap(), 0, len*sizeof(WCHAR));
3657  MultiByteToWideChar( CP_ACP, 0, pObjectName, -1, wstr, len );
3658  }
3659 
3660  r = GetNamedSecurityInfoW( wstr, ObjectType, SecurityInfo, ppsidOwner,
3661  ppsidGroup, ppDacl, ppSacl, ppSecurityDescriptor );
3662 
3663  HeapFree( GetProcessHeap(), 0, wstr );
3664 
3665  return r;
3666 }
GetNamedSecurityInfoW
DWORD WINAPI GetNamedSecurityInfoW(LPWSTR pObjectName, SE_OBJECT_TYPE ObjectType, SECURITY_INFORMATION SecurityInfo, PSID *ppsidOwner, PSID *ppsidGroup, PACL *ppDacl, PACL *ppSacl, PSECURITY_DESCRIPTOR *ppSecurityDescriptor)
Definition: misc.c:1147
ObjectType
ObjectType
Definition: metafile.c:80
r
GLdouble GLdouble GLdouble r
Definition: gl.h:2055
CP_ACP
#define CP_ACP
Definition: compat.h:109
TRACE
#define TRACE(s)
Definition: solgame.cpp:4
GetProcessHeap
#define GetProcessHeap()
Definition: compat.h:595
HeapAlloc
PVOID WINAPI HeapAlloc(HANDLE, DWORD, SIZE_T)
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95
len
GLenum GLsizei len
Definition: glext.h:6722
NULL
#define NULL
Definition: types.h:112
MultiByteToWideChar
#define MultiByteToWideChar
Definition: compat.h:110
LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184
HeapFree
#define HeapFree(x, y, z)
Definition: compat.h:594

◆ GetSecurityInfoExA()

DWORD WINAPI GetSecurityInfoExA ( HANDLE  hObject,
SE_OBJECT_TYPE  ObjectType,
SECURITY_INFORMATION  SecurityInfo,
LPCSTR  lpProvider,
LPCSTR  lpProperty,
PACTRL_ACCESSA ppAccessList,
PACTRL_AUDITA ppAuditList,
LPSTR lppOwner,
LPSTR lppGroup 
)

Definition at line 1768 of file security.c.

1777 {
1778  FIXME("%s() not implemented!\n", __FUNCTION__);
1779  return ERROR_BAD_PROVIDER;
1780 }
ERROR_BAD_PROVIDER
#define ERROR_BAD_PROVIDER
Definition: winerror.h:707
FIXME
#define FIXME(fmt,...)
Definition: debug.h:111
__FUNCTION__
#define __FUNCTION__
Definition: types.h:112

◆ GetSecurityInfoExW()

DWORD WINAPI GetSecurityInfoExW ( HANDLE  hObject,
SE_OBJECT_TYPE  ObjectType,
SECURITY_INFORMATION  SecurityInfo,
LPCWSTR  lpProvider,
LPCWSTR