da/d6e/ntoskrnl_2se_2priv_8c_source.html

 /*
  * PROJECT:         ReactOS Kernel
  * LICENSE:         GPL-2.0-or-later (https://spdx.org/licenses/GPL-2.0-or-later)
  * PURPOSE:         Security privileges support
  * COPYRIGHT:       Copyright Alex Ionescu <alex@relsoft.net>
  *                  Copyright Timo Kreuzer <timo.kreuzer@reactos.org>
  *                  Copyright Eric Kohl
  */

 /* INCLUDES ******************************************************************/

 #include <ntoskrnl.h>
 #define NDEBUG
 #include <debug.h>

 /* GLOBALS ********************************************************************/

 #define SE_MAXIMUM_PRIVILEGE_LIMIT 0x3C

 #define CONST_LUID(x1, x2) {x1, x2}
 const LUID SeCreateTokenPrivilege = CONST_LUID(SE_CREATE_TOKEN_PRIVILEGE, 0);
 const LUID SeAssignPrimaryTokenPrivilege = CONST_LUID(SE_ASSIGNPRIMARYTOKEN_PRIVILEGE, 0);
 const LUID SeLockMemoryPrivilege = CONST_LUID(SE_LOCK_MEMORY_PRIVILEGE, 0);
 const LUID SeIncreaseQuotaPrivilege = CONST_LUID(SE_INCREASE_QUOTA_PRIVILEGE, 0);
 const LUID SeUnsolicitedInputPrivilege = CONST_LUID(6, 0);
 const LUID SeTcbPrivilege = CONST_LUID(SE_TCB_PRIVILEGE, 0);
 const LUID SeSecurityPrivilege = CONST_LUID(SE_SECURITY_PRIVILEGE, 0);
 const LUID SeTakeOwnershipPrivilege = CONST_LUID(SE_TAKE_OWNERSHIP_PRIVILEGE, 0);
 const LUID SeLoadDriverPrivilege = CONST_LUID(SE_LOAD_DRIVER_PRIVILEGE, 0);
 const LUID SeSystemProfilePrivilege = CONST_LUID(SE_SYSTEM_PROFILE_PRIVILEGE, 0);
 const LUID SeSystemtimePrivilege = CONST_LUID(SE_SYSTEMTIME_PRIVILEGE, 0);
 const LUID SeProfileSingleProcessPrivilege = CONST_LUID(SE_PROF_SINGLE_PROCESS_PRIVILEGE, 0);
 const LUID SeIncreaseBasePriorityPrivilege = CONST_LUID(SE_INC_BASE_PRIORITY_PRIVILEGE, 0);
 const LUID SeCreatePagefilePrivilege = CONST_LUID(SE_CREATE_PAGEFILE_PRIVILEGE, 0);
 const LUID SeCreatePermanentPrivilege = CONST_LUID(SE_CREATE_PERMANENT_PRIVILEGE, 0);
 const LUID SeBackupPrivilege = CONST_LUID(SE_BACKUP_PRIVILEGE, 0);
 const LUID SeRestorePrivilege = CONST_LUID(SE_RESTORE_PRIVILEGE, 0);
 const LUID SeShutdownPrivilege = CONST_LUID(SE_SHUTDOWN_PRIVILEGE, 0);
 const LUID SeDebugPrivilege = CONST_LUID(SE_DEBUG_PRIVILEGE, 0);
 const LUID SeAuditPrivilege = CONST_LUID(SE_AUDIT_PRIVILEGE, 0);
 const LUID SeSystemEnvironmentPrivilege = CONST_LUID(SE_SYSTEM_ENVIRONMENT_PRIVILEGE, 0);
 const LUID SeChangeNotifyPrivilege = CONST_LUID(SE_CHANGE_NOTIFY_PRIVILEGE, 0);
 const LUID SeRemoteShutdownPrivilege = CONST_LUID(SE_REMOTE_SHUTDOWN_PRIVILEGE, 0);
 const LUID SeUndockPrivilege = CONST_LUID(SE_UNDOCK_PRIVILEGE, 0);
 const LUID SeSyncAgentPrivilege = CONST_LUID(SE_SYNC_AGENT_PRIVILEGE, 0);
 const LUID SeEnableDelegationPrivilege = CONST_LUID(SE_ENABLE_DELEGATION_PRIVILEGE, 0);
 const LUID SeManageVolumePrivilege = CONST_LUID(SE_MANAGE_VOLUME_PRIVILEGE, 0);
 const LUID SeImpersonatePrivilege = CONST_LUID(SE_IMPERSONATE_PRIVILEGE, 0);
 const LUID SeCreateGlobalPrivilege = CONST_LUID(SE_CREATE_GLOBAL_PRIVILEGE, 0);
 const LUID SeTrustedCredmanPrivilege = CONST_LUID(SE_TRUSTED_CREDMAN_ACCESS_PRIVILEGE, 0);
 const LUID SeRelabelPrivilege = CONST_LUID(SE_RELABEL_PRIVILEGE, 0);
 const LUID SeIncreaseWorkingSetPrivilege = CONST_LUID(SE_INC_WORKING_SET_PRIVILEGE, 0);
 const LUID SeTimeZonePrivilege = CONST_LUID(SE_TIME_ZONE_PRIVILEGE, 0);
 const LUID SeCreateSymbolicLinkPrivilege = CONST_LUID(SE_CREATE_SYMBOLIC_LINK_PRIVILEGE, 0);


 /* PRIVATE FUNCTIONS **********************************************************/

 CODE_SEG("INIT")
 VOID
 NTAPI
 SepInitPrivileges(VOID)
 {

 }

 BOOLEAN
 NTAPI
 SepPrivilegeCheck(
     _In_ PTOKEN Token,
     _In_ PLUID_AND_ATTRIBUTES Privileges,
     _In_ ULONG PrivilegeCount,
     _In_ ULONG PrivilegeControl,
     _In_ KPROCESSOR_MODE PreviousMode)
 {
     ULONG i;
     ULONG j;
     ULONG Required;

     DPRINT("SepPrivilegeCheck() called\n");

     PAGED_CODE();

     if (PreviousMode == KernelMode)
         return TRUE;

     /* Get the number of privileges that are required to match */
     Required = (PrivilegeControl & PRIVILEGE_SET_ALL_NECESSARY) ? PrivilegeCount : 1;

     /* Acquire a shared token lock */
     SepAcquireTokenLockShared(Token);

     /* Loop all requested privileges until we found the required ones */
     for (i = 0; i < PrivilegeCount; i++)
     {
         /* Loop the privileges of the token */
         for (j = 0; j < Token->PrivilegeCount; j++)
         {
             /* Check if the LUIDs match */
             if (RtlEqualLuid(&Token->Privileges[j].Luid, &Privileges[i].Luid))
             {
                 DPRINT("Found privilege. Attributes: %lx\n",
                        Token->Privileges[j].Attributes);

                 /* Check if the privilege is enabled */
                 if (Token->Privileges[j].Attributes & SE_PRIVILEGE_ENABLED)
                 {
                     Privileges[i].Attributes |= SE_PRIVILEGE_USED_FOR_ACCESS;
                     Required--;

                     /* Check if we have found all privileges */
                     if (Required == 0)
                     {
                         /* We're done! */
                         SepReleaseTokenLock(Token);
                         return TRUE;
                     }
                 }

                 /* Leave the inner loop */
                 break;
             }
         }
     }

     /* Release the token lock */
     SepReleaseTokenLock(Token);

     /* When we reached this point, we did not find all privileges */
     ASSERT(Required > 0);
     return FALSE;
 }

 BOOLEAN
 NTAPI
 SepSinglePrivilegeCheck(
     _In_ LUID PrivilegeValue,
     _In_ PTOKEN Token,
     _In_ KPROCESSOR_MODE PreviousMode)
 {
     LUID_AND_ATTRIBUTES Privilege;
     PAGED_CODE();
     ASSERT(!RtlEqualLuid(&PrivilegeValue, &SeTcbPrivilege));

     Privilege.Luid = PrivilegeValue;
     Privilege.Attributes = SE_PRIVILEGE_ENABLED;
     return SepPrivilegeCheck(Token,
                              &Privilege,
                              1,
                              PRIVILEGE_SET_ALL_NECESSARY,
                              PreviousMode);
 }

 NTSTATUS
 NTAPI
 SePrivilegePolicyCheck(
     _Inout_ PACCESS_MASK DesiredAccess,
     _Inout_ PACCESS_MASK GrantedAccess,
     _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext,
     _In_ PTOKEN Token,
     _Out_opt_ PPRIVILEGE_SET *OutPrivilegeSet,
     _In_ KPROCESSOR_MODE PreviousMode)
 {
     SIZE_T PrivilegeSize;
     PPRIVILEGE_SET PrivilegeSet;
     ULONG PrivilegeCount = 0, Index = 0;
     ACCESS_MASK AccessMask = 0;
     PAGED_CODE();

     /* Check if we have a security subject context */
     if (SubjectContext != NULL)
     {
         /* Check if there is a client impersonation token */
         if (SubjectContext->ClientToken != NULL)
             Token = SubjectContext->ClientToken;
         else
             Token = SubjectContext->PrimaryToken;
     }

     /* Check if the caller wants ACCESS_SYSTEM_SECURITY access */
     if (*DesiredAccess & ACCESS_SYSTEM_SECURITY)
     {
         /* Do the privilege check */
         if (SepSinglePrivilegeCheck(SeSecurityPrivilege, Token, PreviousMode))
         {
             /* Remember this access flag */
             AccessMask |= ACCESS_SYSTEM_SECURITY;
             PrivilegeCount++;
         }
         else
         {
             return STATUS_PRIVILEGE_NOT_HELD;
         }
     }

     /* Check if the caller wants WRITE_OWNER access */
     if (*DesiredAccess & WRITE_OWNER)
     {
         /* Do the privilege check */
         if (SepSinglePrivilegeCheck(SeTakeOwnershipPrivilege, Token, PreviousMode))
         {
             /* Remember this access flag */
             AccessMask |= WRITE_OWNER;
             PrivilegeCount++;
         }
     }

     /* Update the access masks */
     *GrantedAccess |= AccessMask;
     *DesiredAccess &= ~AccessMask;

     /* Does the caller want a privilege set? */
     if (OutPrivilegeSet != NULL)
     {
         /* Do we have any privileges to report? */
         if (PrivilegeCount > 0)
         {
             /* Calculate size and allocate the structure */
             PrivilegeSize = FIELD_OFFSET(PRIVILEGE_SET, Privilege[PrivilegeCount]);
             PrivilegeSet = ExAllocatePoolWithTag(PagedPool, PrivilegeSize, TAG_PRIVILEGE_SET);
             *OutPrivilegeSet = PrivilegeSet;
             if (PrivilegeSet == NULL)
             {
                 return STATUS_INSUFFICIENT_RESOURCES;
             }

             PrivilegeSet->PrivilegeCount = PrivilegeCount;
             PrivilegeSet->Control = 0;

             if (AccessMask & WRITE_OWNER)
             {
                 PrivilegeSet->Privilege[Index].Luid = SeTakeOwnershipPrivilege;
                 PrivilegeSet->Privilege[Index].Attributes = SE_PRIVILEGE_USED_FOR_ACCESS;
                 Index++;
             }

             if (AccessMask & ACCESS_SYSTEM_SECURITY)
             {
                 PrivilegeSet->Privilege[Index].Luid = SeSecurityPrivilege;
                 PrivilegeSet->Privilege[Index].Attributes = SE_PRIVILEGE_USED_FOR_ACCESS;
             }
         }
         else
         {
             /* No privileges, no structure */
             *OutPrivilegeSet = NULL;
         }
     }

     return STATUS_SUCCESS;
 }

 BOOLEAN
 NTAPI
 SeCheckAuditPrivilege(
     _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext,
     _In_ KPROCESSOR_MODE PreviousMode)
 {
     PRIVILEGE_SET PrivilegeSet;
     BOOLEAN Result;
     PAGED_CODE();

     /* Initialize the privilege set with the single privilege */
     PrivilegeSet.PrivilegeCount = 1;
     PrivilegeSet.Control = PRIVILEGE_SET_ALL_NECESSARY;
     PrivilegeSet.Privilege[0].Luid = SeAuditPrivilege;
     PrivilegeSet.Privilege[0].Attributes = 0;

     /* Check against the primary token! */
     Result = SepPrivilegeCheck(SubjectContext->PrimaryToken,
                                &PrivilegeSet.Privilege[0],
                                1,
                                PRIVILEGE_SET_ALL_NECESSARY,
                                PreviousMode);

     if (PreviousMode != KernelMode)
     {
         SePrivilegedServiceAuditAlarm(NULL,
                                       SubjectContext,
                                       &PrivilegeSet,
                                       Result);
     }

     return Result;
 }

 NTSTATUS
 NTAPI
 SeCaptureLuidAndAttributesArray(
     _In_ PLUID_AND_ATTRIBUTES Src,
     _In_ ULONG PrivilegeCount,
     _In_ KPROCESSOR_MODE PreviousMode,
     _In_opt_ PLUID_AND_ATTRIBUTES AllocatedMem,
     _In_opt_ ULONG AllocatedLength,
     _In_ POOL_TYPE PoolType,
     _In_ BOOLEAN CaptureIfKernel,
     _Out_ PLUID_AND_ATTRIBUTES *Dest,
     _Inout_ PULONG Length)
 {
     ULONG BufferSize;
     NTSTATUS Status = STATUS_SUCCESS;

     PAGED_CODE();

     if (PrivilegeCount == 0)
     {
         *Dest = 0;
         *Length = 0;
         return STATUS_SUCCESS;
     }

     if (PrivilegeCount > SE_MAXIMUM_PRIVILEGE_LIMIT)
     {
         return STATUS_INVALID_PARAMETER;
     }

     if (PreviousMode == KernelMode && !CaptureIfKernel)
     {
         *Dest = Src;
         return STATUS_SUCCESS;
     }

     BufferSize = PrivilegeCount * sizeof(LUID_AND_ATTRIBUTES);
     *Length = ROUND_UP(BufferSize, 4); /* round up to a 4 byte alignment */

     /* probe the buffer */
     if (PreviousMode != KernelMode)
     {
         _SEH2_TRY
         {
             ProbeForRead(Src,
                          BufferSize,
                          sizeof(ULONG));
         }
         _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
         {
             /* Return the exception code */
             _SEH2_YIELD(return _SEH2_GetExceptionCode());
         }
         _SEH2_END;
     }

     /* allocate enough memory or check if the provided buffer is
      large enough to hold the array */
     if (AllocatedMem != NULL)
     {
         if (AllocatedLength < BufferSize)
         {
             return STATUS_BUFFER_TOO_SMALL;
         }

         *Dest = AllocatedMem;
     }
     else
     {
         *Dest = ExAllocatePoolWithTag(PoolType,
                                       BufferSize,
                                       TAG_LUID);
         if (*Dest == NULL)
         {
             return STATUS_INSUFFICIENT_RESOURCES;
         }
     }

     /* copy the array to the buffer */
     _SEH2_TRY
     {
         RtlCopyMemory(*Dest,
                       Src,
                       BufferSize);
     }
     _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
     {
         Status = _SEH2_GetExceptionCode();
     }
     _SEH2_END;

     if (!NT_SUCCESS(Status) && AllocatedMem == NULL)
     {
         ExFreePoolWithTag(*Dest, TAG_LUID);
     }

     return Status;
 }

 VOID
 NTAPI
 SeReleaseLuidAndAttributesArray(
     _In_ PLUID_AND_ATTRIBUTES Privilege,
     _In_ KPROCESSOR_MODE PreviousMode,
     _In_ BOOLEAN CaptureIfKernel)
 {
     PAGED_CODE();

     if (Privilege != NULL &&
         (PreviousMode != KernelMode || CaptureIfKernel))
     {
         ExFreePoolWithTag(Privilege, TAG_LUID);
     }
 }

 /* PUBLIC FUNCTIONS ***********************************************************/

 NTSTATUS
 NTAPI
 SeAppendPrivileges(
     _Inout_ PACCESS_STATE AccessState,
     _In_ PPRIVILEGE_SET Privileges)
 {
     PAUX_ACCESS_DATA AuxData;
     ULONG OldPrivilegeSetSize;
     ULONG NewPrivilegeSetSize;
     PPRIVILEGE_SET PrivilegeSet;

     PAGED_CODE();

     /* Get the Auxiliary Data */
     AuxData = AccessState->AuxData;

     /* Calculate the size of the old privilege set */
     OldPrivilegeSetSize = sizeof(PRIVILEGE_SET) +
                           (AuxData->PrivilegeSet->PrivilegeCount - 1) * sizeof(LUID_AND_ATTRIBUTES);

     if (AuxData->PrivilegeSet->PrivilegeCount +
         Privileges->PrivilegeCount > INITIAL_PRIVILEGE_COUNT)
     {
         /* Calculate the size of the new privilege set */
         NewPrivilegeSetSize = OldPrivilegeSetSize +
                               Privileges->PrivilegeCount * sizeof(LUID_AND_ATTRIBUTES);

         /* Allocate a new privilege set */
         PrivilegeSet = ExAllocatePoolWithTag(PagedPool,
                                              NewPrivilegeSetSize,
                                              TAG_PRIVILEGE_SET);
         if (PrivilegeSet == NULL)
             return STATUS_INSUFFICIENT_RESOURCES;

         /* Copy original privileges from the acess state */
         RtlCopyMemory(PrivilegeSet,
                       AuxData->PrivilegeSet,
                       OldPrivilegeSetSize);

         /* Append privileges from the privilege set*/
         RtlCopyMemory((PVOID)((ULONG_PTR)PrivilegeSet + OldPrivilegeSetSize),
                       (PVOID)((ULONG_PTR)Privileges + sizeof(PRIVILEGE_SET) - sizeof(LUID_AND_ATTRIBUTES)),
                       Privileges->PrivilegeCount * sizeof(LUID_AND_ATTRIBUTES));

         /* Adjust the number of privileges in the new privilege set */
         PrivilegeSet->PrivilegeCount += Privileges->PrivilegeCount;

         /* Free the old privilege set if it was allocated */
         if (AccessState->PrivilegesAllocated != FALSE)
             ExFreePoolWithTag(AuxData->PrivilegeSet, TAG_PRIVILEGE_SET);

         /* Now we are using an allocated privilege set */
         AccessState->PrivilegesAllocated = TRUE;

         /* Assign the new privileges to the access state */
         AuxData->PrivilegeSet = PrivilegeSet;
     }
     else
     {
         /* Append privileges */
         RtlCopyMemory((PVOID)((ULONG_PTR)AuxData->PrivilegeSet + OldPrivilegeSetSize),
                       (PVOID)((ULONG_PTR)Privileges + sizeof(PRIVILEGE_SET) - sizeof(LUID_AND_ATTRIBUTES)),
                       Privileges->PrivilegeCount * sizeof(LUID_AND_ATTRIBUTES));

         /* Adjust the number of privileges in the target privilege set */
         AuxData->PrivilegeSet->PrivilegeCount += Privileges->PrivilegeCount;
     }

     return STATUS_SUCCESS;
 }

 VOID
 NTAPI
 SeFreePrivileges(
     _In_ PPRIVILEGE_SET Privileges)
 {
     PAGED_CODE();
     ExFreePoolWithTag(Privileges, TAG_PRIVILEGE_SET);
 }

 BOOLEAN
 NTAPI
 SePrivilegeCheck(
     _In_ PPRIVILEGE_SET Privileges,
     _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext,
     _In_ KPROCESSOR_MODE PreviousMode)
 {
     PACCESS_TOKEN Token = NULL;

     PAGED_CODE();

     if (SubjectContext->ClientToken == NULL)
     {
         Token = SubjectContext->PrimaryToken;
     }
     else
     {
         Token = SubjectContext->ClientToken;
         if (SubjectContext->ImpersonationLevel < 2)
         {
             return FALSE;
         }
     }

     return SepPrivilegeCheck(Token,
                              Privileges->Privilege,
                              Privileges->PrivilegeCount,
                              Privileges->Control,
                              PreviousMode);
 }

 BOOLEAN
 NTAPI
 SeSinglePrivilegeCheck(
     _In_ LUID PrivilegeValue,
     _In_ KPROCESSOR_MODE PreviousMode)
 {
     SECURITY_SUBJECT_CONTEXT SubjectContext;
     PRIVILEGE_SET Priv;
     BOOLEAN Result;

     PAGED_CODE();

     SeCaptureSubjectContext(&SubjectContext);

     Priv.PrivilegeCount = 1;
     Priv.Control = PRIVILEGE_SET_ALL_NECESSARY;
     Priv.Privilege[0].Luid = PrivilegeValue;
     Priv.Privilege[0].Attributes = SE_PRIVILEGE_ENABLED;

     Result = SePrivilegeCheck(&Priv,
                               &SubjectContext,
                               PreviousMode);

     if (PreviousMode != KernelMode)
     {
         SePrivilegedServiceAuditAlarm(NULL,
                                       &SubjectContext,
                                       &Priv,
                                       Result);

     }

     SeReleaseSubjectContext(&SubjectContext);

     return Result;
 }

 BOOLEAN
 NTAPI
 SeCheckPrivilegedObject(
     _In_ LUID PrivilegeValue,
     _In_ HANDLE ObjectHandle,
     _In_ ACCESS_MASK DesiredAccess,
     _In_ KPROCESSOR_MODE PreviousMode)
 {
     SECURITY_SUBJECT_CONTEXT SubjectContext;
     PRIVILEGE_SET Priv;
     BOOLEAN Result;

     PAGED_CODE();

     SeCaptureSubjectContext(&SubjectContext);

     Priv.PrivilegeCount = 1;
     Priv.Control = PRIVILEGE_SET_ALL_NECESSARY;
     Priv.Privilege[0].Luid = PrivilegeValue;
     Priv.Privilege[0].Attributes = SE_PRIVILEGE_ENABLED;

     Result = SePrivilegeCheck(&Priv, &SubjectContext, PreviousMode);
     if (PreviousMode != KernelMode)
     {
 #if 0
         SePrivilegeObjectAuditAlarm(ObjectHandle,
                                     &SubjectContext,
                                     DesiredAccess,
                                     &PrivilegeValue,
                                     Result,
                                     PreviousMode);
 #endif
     }

     SeReleaseSubjectContext(&SubjectContext);

     return Result;
 }

 /* SYSTEM CALLS ***************************************************************/

 NTSTATUS
 NTAPI
 NtPrivilegeCheck(
     _In_ HANDLE ClientToken,
     _In_ PPRIVILEGE_SET RequiredPrivileges,
     _Out_ PBOOLEAN Result)
 {
     PLUID_AND_ATTRIBUTES Privileges;
     PTOKEN Token;
     ULONG PrivilegeCount = 0;
     ULONG PrivilegeControl = 0;
     ULONG Length;
     BOOLEAN CheckResult;
     KPROCESSOR_MODE PreviousMode;
     NTSTATUS Status;

     PAGED_CODE();

     PreviousMode = KeGetPreviousMode();

     /* probe the buffers */
     if (PreviousMode != KernelMode)
     {
         _SEH2_TRY
         {
             ProbeForWrite(RequiredPrivileges,
                           FIELD_OFFSET(PRIVILEGE_SET,
                                        Privilege),
                           sizeof(ULONG));

             PrivilegeCount = RequiredPrivileges->PrivilegeCount;
             PrivilegeControl = RequiredPrivileges->Control;

             /* Check PrivilegeCount to avoid an integer overflow! */
             if (FIELD_OFFSET(PRIVILEGE_SET,
                              Privilege[PrivilegeCount]) /
                 sizeof(RequiredPrivileges->Privilege[0]) != PrivilegeCount)
             {
                 _SEH2_YIELD(return STATUS_INVALID_PARAMETER);
             }

             /* probe all of the array */
             ProbeForWrite(RequiredPrivileges,
                           FIELD_OFFSET(PRIVILEGE_SET,
                                        Privilege[PrivilegeCount]),
                           sizeof(ULONG));

             ProbeForWriteBoolean(Result);
         }
         _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
         {
             /* Return the exception code */
             _SEH2_YIELD(return _SEH2_GetExceptionCode());
         }
         _SEH2_END;
     }
     else
     {
         PrivilegeCount = RequiredPrivileges->PrivilegeCount;
         PrivilegeControl = RequiredPrivileges->Control;
     }

     /* reference the token and make sure we're
      not doing an anonymous impersonation */
     Status = ObReferenceObjectByHandle(ClientToken,
                                        TOKEN_QUERY,
                                        SeTokenObjectType,
                                        PreviousMode,
                                        (PVOID*)&Token,
                                        NULL);
     if (!NT_SUCCESS(Status))
     {
         return Status;
     }

     if (Token->TokenType == TokenImpersonation &&
         Token->ImpersonationLevel < SecurityIdentification)
     {
         ObDereferenceObject(Token);
         return STATUS_BAD_IMPERSONATION_LEVEL;
     }

     /* capture the privileges */
     Status = SeCaptureLuidAndAttributesArray(RequiredPrivileges->Privilege,
                                              PrivilegeCount,
                                              PreviousMode,
                                              NULL,
                                              0,
                                              PagedPool,
                                              TRUE,
                                              &Privileges,
                                              &Length);
     if (!NT_SUCCESS(Status))
     {
         ObDereferenceObject (Token);
         return Status;
     }

     CheckResult = SepPrivilegeCheck(Token,
                                     Privileges,
                                     PrivilegeCount,
                                     PrivilegeControl,
                                     PreviousMode);

     ObDereferenceObject(Token);

     /* return the array */
     _SEH2_TRY
     {
         RtlCopyMemory(RequiredPrivileges->Privilege,
                       Privileges,
                       PrivilegeCount * sizeof(LUID_AND_ATTRIBUTES));
         *Result = CheckResult;
         Status = STATUS_SUCCESS;
     }
     _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
     {
         Status = _SEH2_GetExceptionCode();
     }
     _SEH2_END;

     SeReleaseLuidAndAttributesArray(Privileges,
                                     PreviousMode,
                                     TRUE);

     return Status;
 }

 /* EOF */
_SEH2_TRY
_SEH2_TRY
Definition: create.c:4226

SE_CREATE_PERMANENT_PRIVILEGE
#define SE_CREATE_PERMANENT_PRIVILEGE
Definition: security.c:670

_AUX_ACCESS_DATA::PrivilegeSet
PPRIVILEGE_SET PrivilegeSet
Definition: setypes.h:258

_LUID_AND_ATTRIBUTES
Definition: setypes.h:73

SeLoadDriverPrivilege
const LUID SeLoadDriverPrivilege
Definition: priv.c:29

SeSyncAgentPrivilege
const LUID SeSyncAgentPrivilege
Definition: priv.c:45

STATUS_PRIVILEGE_NOT_HELD
#define STATUS_PRIVILEGE_NOT_HELD
Definition: DriverTester.h:9

SubjectContext
_Inout_ PLIST_ENTRY _In_ PVOID _In_ PSTRING _In_ BOOLEAN _In_ BOOLEAN _In_ ULONG _In_ PFLT_CALLBACK_DATA _In_opt_ PCHECK_FOR_TRAVERSE_ACCESS _In_opt_ PSECURITY_SUBJECT_CONTEXT SubjectContext
Definition: fltkernel.h:2238

DesiredAccess
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2654

STATUS_BAD_IMPERSONATION_LEVEL
#define STATUS_BAD_IMPERSONATION_LEVEL
Definition: ntstatus.h:401

SeCreatePagefilePrivilege
const LUID SeCreatePagefilePrivilege
Definition: priv.c:34

STATUS_INSUFFICIENT_RESOURCES
#define STATUS_INSUFFICIENT_RESOURCES
Definition: udferr_usr.h:158

Length
_In_ ULONG _In_ ULONG _In_ ULONG Length
Definition: ntddpcm.h:101

SeTimeZonePrivilege
const LUID SeTimeZonePrivilege
Definition: priv.c:53

SE_INC_WORKING_SET_PRIVILEGE
#define SE_INC_WORKING_SET_PRIVILEGE
Definition: setypes.h:212

ROUND_UP
#define ROUND_UP(n, align)
Definition: eventvwr.h:34

_In_opt_
#define _In_opt_
Definition: ms_sal.h:309

PRIVILEGE_SET
struct _PRIVILEGE_SET PRIVILEGE_SET

_Inout_
#define _Inout_
Definition: ms_sal.h:378

ACCESS_SYSTEM_SECURITY
#define ACCESS_SYSTEM_SECURITY
Definition: nt_native.h:77

SE_CREATE_TOKEN_PRIVILEGE
#define SE_CREATE_TOKEN_PRIVILEGE
Definition: security.c:656

_Out_
#define _Out_
Definition: ms_sal.h:345

SE_CREATE_SYMBOLIC_LINK_PRIVILEGE
#define SE_CREATE_SYMBOLIC_LINK_PRIVILEGE
Definition: setypes.h:214

SE_LOCK_MEMORY_PRIVILEGE
#define SE_LOCK_MEMORY_PRIVILEGE
Definition: security.c:658

TRUE
#define TRUE
Definition: types.h:120

STATUS_INVALID_PARAMETER
#define STATUS_INVALID_PARAMETER
Definition: udferr_usr.h:135

SeRestorePrivilege
const LUID SeRestorePrivilege
Definition: priv.c:37

SeCheckPrivilegedObject
BOOLEAN NTAPI SeCheckPrivilegedObject(_In_ LUID PrivilegeValue, _In_ HANDLE ObjectHandle, _In_ ACCESS_MASK DesiredAccess, _In_ KPROCESSOR_MODE PreviousMode)
Checks a privileged object if such object has the specific privilege submitted by the caller.
Definition: priv.c:803

KeGetPreviousMode
#define KeGetPreviousMode()
Definition: ketypes.h:1108

NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26

SE_DEBUG_PRIVILEGE
#define SE_DEBUG_PRIVILEGE
Definition: security.c:674

SE_LOAD_DRIVER_PRIVILEGE
#define SE_LOAD_DRIVER_PRIVILEGE
Definition: security.c:664

SeTcbPrivilege
const LUID SeTcbPrivilege
Definition: priv.c:26

Token
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG _Inout_ PLUID _Out_ PHANDLE Token
Definition: ntifs.template.h:711

SE_RESTORE_PRIVILEGE
#define SE_RESTORE_PRIVILEGE
Definition: security.c:672

LUID_AND_ATTRIBUTES
struct _LUID_AND_ATTRIBUTES LUID_AND_ATTRIBUTES

SE_SYSTEMTIME_PRIVILEGE
#define SE_SYSTEMTIME_PRIVILEGE
Definition: security.c:666

_PRIVILEGE_SET
Definition: setypes.h:85

SE_TAKE_OWNERSHIP_PRIVILEGE
#define SE_TAKE_OWNERSHIP_PRIVILEGE
Definition: security.c:663

SE_SYNC_AGENT_PRIVILEGE
#define SE_SYNC_AGENT_PRIVILEGE
Definition: security.c:680

KernelMode
Definition: ketypes.h:11

SeAuditPrivilege
const LUID SeAuditPrivilege
Definition: priv.c:40

_PRIVILEGE_SET::Control
$ULONG Control
Definition: setypes.h:87

WRITE_OWNER
#define WRITE_OWNER
Definition: nt_native.h:60

_SEH2_END
_SEH2_END
Definition: create.c:4400

SE_TRUSTED_CREDMAN_ACCESS_PRIVILEGE
#define SE_TRUSTED_CREDMAN_ACCESS_PRIVILEGE
Definition: setypes.h:210

SeCreatePermanentPrivilege
const LUID SeCreatePermanentPrivilege
Definition: priv.c:35

SeCaptureLuidAndAttributesArray
NTSTATUS NTAPI SeCaptureLuidAndAttributesArray(_In_ PLUID_AND_ATTRIBUTES Src, _In_ ULONG PrivilegeCount, _In_ KPROCESSOR_MODE PreviousMode, _In_opt_ PLUID_AND_ATTRIBUTES AllocatedMem, _In_opt_ ULONG AllocatedLength, _In_ POOL_TYPE PoolType, _In_ BOOLEAN CaptureIfKernel, _Out_ PLUID_AND_ATTRIBUTES *Dest, _Inout_ PULONG Length)
Captures a LUID with attributes structure. This function is mainly tied in the context of privileges.
Definition: priv.c:438

ProbeForWrite
VOID NTAPI ProbeForWrite(IN PVOID Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:143

SeProfileSingleProcessPrivilege
const LUID SeProfileSingleProcessPrivilege
Definition: priv.c:32

_LUID_AND_ATTRIBUTES::Attributes
$ULONG Attributes
Definition: setypes.h:75

STATUS_BUFFER_TOO_SMALL
#define STATUS_BUFFER_TOO_SMALL
Definition: shellext.h:69

SeReleaseLuidAndAttributesArray
VOID NTAPI SeReleaseLuidAndAttributesArray(_In_ PLUID_AND_ATTRIBUTES Privilege, _In_ KPROCESSOR_MODE PreviousMode, _In_ BOOLEAN CaptureIfKernel)
Releases a LUID with attributes structure.
Definition: priv.c:554

ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65

SE_PRIVILEGE_ENABLED
#define SE_PRIVILEGE_ENABLED
Definition: setypes.h:63

SecurityIdentification
Definition: lsa.idl:56

ObReferenceObjectByHandle
NTSTATUS NTAPI ObReferenceObjectByHandle(IN HANDLE Handle, IN ACCESS_MASK DesiredAccess, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode, OUT PVOID *Object, OUT POBJECT_HANDLE_INFORMATION HandleInformation OPTIONAL)
Definition: obref.c:494

NTAPI
NTSTATUS(* NTAPI)(IN PFILE_FULL_EA_INFORMATION EaBuffer, IN ULONG EaLength, OUT PULONG ErrorOffset)
Definition: IoEaTest.cpp:117

SE_TCB_PRIVILEGE
#define SE_TCB_PRIVILEGE
Definition: security.c:661

SeImpersonatePrivilege
const LUID SeImpersonatePrivilege
Definition: priv.c:48

FALSE
#define FALSE
Definition: types.h:117

_LUID
Definition: devicetopology.idl:136

RtlEqualLuid
#define RtlEqualLuid(Luid1, Luid2)
Definition: rtlfuncs.h:301

SeShutdownPrivilege
const LUID SeShutdownPrivilege
Definition: priv.c:38

PRIVILEGE_SET_ALL_NECESSARY
#define PRIVILEGE_SET_ALL_NECESSARY
Definition: setypes.h:83

SE_CREATE_GLOBAL_PRIVILEGE
#define SE_CREATE_GLOBAL_PRIVILEGE
Definition: security.c:684

SeRemoteShutdownPrivilege
const LUID SeRemoteShutdownPrivilege
Definition: priv.c:43

BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185

SepPrivilegeCheck
BOOLEAN NTAPI SepPrivilegeCheck(_In_ PTOKEN Token, _In_ PLUID_AND_ATTRIBUTES Privileges, _In_ ULONG PrivilegeCount, _In_ ULONG PrivilegeControl, _In_ KPROCESSOR_MODE PreviousMode)
Checks the privileges pointed by Privileges array argument if they exist and match with the privilege...
Definition: priv.c:104

SeTokenObjectType
POBJECT_TYPE SeTokenObjectType
Definition: token.c:17

SE_RELABEL_PRIVILEGE
#define SE_RELABEL_PRIVILEGE
Definition: setypes.h:211

Result
_At_(*)(_In_ PWSK_CLIENT Client, _In_opt_ PUNICODE_STRING NodeName, _In_opt_ PUNICODE_STRING ServiceName, _In_opt_ ULONG NameSpace, _In_opt_ GUID *Provider, _In_opt_ PADDRINFOEXW Hints, _Outptr_ PADDRINFOEXW *Result, _In_opt_ PEPROCESS OwningProcess, _In_opt_ PETHREAD OwningThread, _Inout_ PIRP Irp Result)(Mem)) NTSTATUS(WSKAPI *PFN_WSK_GET_ADDRESS_INFO
Definition: wsk.h:426

_In_
#define _In_
Definition: ms_sal.h:308

SE_TIME_ZONE_PRIVILEGE
#define SE_TIME_ZONE_PRIVILEGE
Definition: setypes.h:213

SeUnsolicitedInputPrivilege
const LUID SeUnsolicitedInputPrivilege
Definition: priv.c:25

SE_UNDOCK_PRIVILEGE
#define SE_UNDOCK_PRIVILEGE
Definition: security.c:679

SE_SHUTDOWN_PRIVILEGE
#define SE_SHUTDOWN_PRIVILEGE
Definition: security.c:673

SE_PRIVILEGE_USED_FOR_ACCESS
#define SE_PRIVILEGE_USED_FOR_ACCESS
Definition: setypes.h:65

_PRIVILEGE_SET::PrivilegeCount
$ULONG PrivilegeCount
Definition: setypes.h:86

j
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint GLint GLint j
Definition: glfuncs.h:250

SeBackupPrivilege
const LUID SeBackupPrivilege
Definition: priv.c:36

SE_CREATE_PAGEFILE_PRIVILEGE
#define SE_CREATE_PAGEFILE_PRIVILEGE
Definition: security.c:669

Status
Status
Definition: gdiplustypes.h:24

SepSinglePrivilegeCheck
BOOLEAN NTAPI SepSinglePrivilegeCheck(_In_ LUID PrivilegeValue, _In_ PTOKEN Token, _In_ KPROCESSOR_MODE PreviousMode)
Checks only single privilege based upon the privilege pointed by a LUID and if it matches with the on...
Definition: priv.c:190

SE_INCREASE_QUOTA_PRIVILEGE
#define SE_INCREASE_QUOTA_PRIVILEGE
Definition: security.c:659

NtPrivilegeCheck
NTSTATUS NTAPI NtPrivilegeCheck(_In_ HANDLE ClientToken, _In_ PPRIVILEGE_SET RequiredPrivileges, _Out_ PBOOLEAN Result)
Checks a client access token if it has the required set of privileges.
Definition: priv.c:868

SE_CHANGE_NOTIFY_PRIVILEGE
#define SE_CHANGE_NOTIFY_PRIVILEGE
Definition: security.c:677

SeIncreaseBasePriorityPrivilege
const LUID SeIncreaseBasePriorityPrivilege
Definition: priv.c:33

SE_SECURITY_PRIVILEGE
#define SE_SECURITY_PRIVILEGE
Definition: security.c:662

PreviousMode
_In_ KPROCESSOR_MODE PreviousMode
Definition: sefuncs.h:103

_ACCESS_STATE
Definition: setypes.h:224

SeSecurityPrivilege
const LUID SeSecurityPrivilege
Definition: priv.c:27

TOKEN_QUERY
#define TOKEN_QUERY
Definition: setypes.h:924

SePrivilegePolicyCheck
NTSTATUS NTAPI SePrivilegePolicyCheck(_Inout_ PACCESS_MASK DesiredAccess, _Inout_ PACCESS_MASK GrantedAccess, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ PTOKEN Token, _Out_opt_ PPRIVILEGE_SET *OutPrivilegeSet, _In_ KPROCESSOR_MODE PreviousMode)
Checks the security policy and returns a set of privileges based upon the said security policy contex...
Definition: priv.c:244

ASSERT
#define ASSERT(a)
Definition: mode.c:44

NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32

SeSystemProfilePrivilege
const LUID SeSystemProfilePrivilege
Definition: priv.c:30

SePrivilegedServiceAuditAlarm
VOID NTAPI SePrivilegedServiceAuditAlarm(_In_opt_ PUNICODE_STRING ServiceName, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ PPRIVILEGE_SET PrivilegeSet, _In_ BOOLEAN AccessGranted)
Performs an audit alarm to a privileged service request.
Definition: audit.c:369

TAG_LUID
#define TAG_LUID
Definition: tag.h:155

POOL_TYPE
INT POOL_TYPE
Definition: typedefs.h:78

Index
_In_ WDFCOLLECTION _In_ ULONG Index
Definition: wdfcollection.h:179

EXCEPTION_EXECUTE_HANDLER
#define EXCEPTION_EXECUTE_HANDLER
Definition: excpt.h:85

ObDereferenceObject
#define ObDereferenceObject
Definition: obfuncs.h:203

AccessMask
_In_ ACCESS_MASK AccessMask
Definition: exfuncs.h:186

SE_REMOTE_SHUTDOWN_PRIVILEGE
#define SE_REMOTE_SHUTDOWN_PRIVILEGE
Definition: security.c:678

ProbeForWriteBoolean
#define ProbeForWriteBoolean(Ptr)
Definition: probe.h:31

Privilege
BOOL Privilege(LPTSTR pszPrivilege, BOOL bEnable)
Definition: user_lib.cpp:531

KPROCESSOR_MODE
CCHAR KPROCESSOR_MODE
Definition: ketypes.h:7

SeAssignPrimaryTokenPrivilege
const LUID SeAssignPrimaryTokenPrivilege
Definition: priv.c:22

SeChangeNotifyPrivilege
const LUID SeChangeNotifyPrivilege
Definition: priv.c:42

Privileges
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET * Privileges
Definition: sefuncs.h:13

CONST_LUID
#define CONST_LUID(x1, x2)
Definition: priv.c:20

AccessState
_In_opt_ PVOID _In_opt_ PUNICODE_STRING _In_ PSECURITY_DESCRIPTOR _In_ PACCESS_STATE AccessState
Definition: sefuncs.h:414

SeSystemtimePrivilege
const LUID SeSystemtimePrivilege
Definition: priv.c:31

ExAllocatePoolWithTag
#define ExAllocatePoolWithTag(hernya, size, tag)
Definition: env_spec_w32.h:350

SeCreateSymbolicLinkPrivilege
const LUID SeCreateSymbolicLinkPrivilege
Definition: priv.c:54

SeCheckAuditPrivilege
BOOLEAN NTAPI SeCheckAuditPrivilege(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ KPROCESSOR_MODE PreviousMode)
Checks a single privilege and performs an audit against a privileged service based on a security subj...
Definition: priv.c:360

PBOOLEAN
char * PBOOLEAN
Definition: retypes.h:11

ProbeForRead
VOID NTAPI ProbeForRead(IN CONST VOID *Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:102

SeCreateGlobalPrivilege
const LUID SeCreateGlobalPrivilege
Definition: priv.c:49

SepReleaseTokenLock
#define SepReleaseTokenLock(Token)
Definition: se.h:286

SeLockMemoryPrivilege
const LUID SeLockMemoryPrivilege
Definition: priv.c:23

SeIncreaseQuotaPrivilege
const LUID SeIncreaseQuotaPrivilege
Definition: priv.c:24

SE_INC_BASE_PRIORITY_PRIVILEGE
#define SE_INC_BASE_PRIORITY_PRIVILEGE
Definition: security.c:668

SePrivilegeObjectAuditAlarm
VOID NTAPI SePrivilegeObjectAuditAlarm(_In_ HANDLE Handle, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ ACCESS_MASK DesiredAccess, _In_ PPRIVILEGE_SET Privileges, _In_ BOOLEAN AccessGranted, _In_ KPROCESSOR_MODE CurrentMode)
Raises an audit with alarm notification message when an object tries to acquire this privilege.
Definition: audit.c:1321

SeUndockPrivilege
const LUID SeUndockPrivilege
Definition: priv.c:44

PagedPool
Definition: ketypes.h:867

SeFreePrivileges
VOID NTAPI SeFreePrivileges(_In_ PPRIVILEGE_SET Privileges)
Frees a set of privileges.
Definition: priv.c:669

SE_ENABLE_DELEGATION_PRIVILEGE
#define SE_ENABLE_DELEGATION_PRIVILEGE
Definition: security.c:681

SeIncreaseWorkingSetPrivilege
const LUID SeIncreaseWorkingSetPrivilege
Definition: priv.c:52

SeDebugPrivilege
const LUID SeDebugPrivilege
Definition: priv.c:39

SIZE_T
ULONG_PTR SIZE_T
Definition: typedefs.h:80

SE_IMPERSONATE_PRIVILEGE
#define SE_IMPERSONATE_PRIVILEGE
Definition: security.c:683

_AUX_ACCESS_DATA
Definition: setypes.h:256

SE_MANAGE_VOLUME_PRIVILEGE
#define SE_MANAGE_VOLUME_PRIVILEGE
Definition: security.c:682

SeCreateTokenPrivilege
const LUID SeCreateTokenPrivilege
Definition: priv.c:21

SeCaptureSubjectContext
VOID NTAPI SeCaptureSubjectContext(_Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Captures the security subject context of the calling thread and calling process.
Definition: subject.c:85

i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248

SeTakeOwnershipPrivilege
const LUID SeTakeOwnershipPrivilege
Definition: priv.c:28

SE_MAXIMUM_PRIVILEGE_LIMIT
#define SE_MAXIMUM_PRIVILEGE_LIMIT
Definition: priv.c:18

FIELD_OFFSET
#define FIELD_OFFSET(t, f)
Definition: typedefs.h:255

_Out_opt_
#define _Out_opt_
Definition: ms_sal.h:346

SE_SYSTEM_PROFILE_PRIVILEGE
#define SE_SYSTEM_PROFILE_PRIVILEGE
Definition: security.c:665

SeManageVolumePrivilege
const LUID SeManageVolumePrivilege
Definition: priv.c:47

PULONG
unsigned int * PULONG
Definition: retypes.h:1

NULL
#define NULL
Definition: types.h:112

INITIAL_PRIVILEGE_COUNT
#define INITIAL_PRIVILEGE_COUNT
Definition: setypes.h:172

SE_PROF_SINGLE_PROCESS_PRIVILEGE
#define SE_PROF_SINGLE_PROCESS_PRIVILEGE
Definition: security.c:667

SePrivilegeCheck
BOOLEAN NTAPI SePrivilegeCheck(_In_ PPRIVILEGE_SET Privileges, _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ KPROCESSOR_MODE PreviousMode)
Checks if a set of privileges exist and match within a security subject context.
Definition: priv.c:698

_SECURITY_SUBJECT_CONTEXT
Definition: setypes.h:217

SeSinglePrivilegeCheck
BOOLEAN NTAPI SeSinglePrivilegeCheck(_In_ LUID PrivilegeValue, _In_ KPROCESSOR_MODE PreviousMode)
Checks if a single privilege is present in the context of the calling thread.
Definition: priv.c:744

SepAcquireTokenLockShared
#define SepAcquireTokenLockShared(Token)
Definition: se.h:280

SE_SYSTEM_ENVIRONMENT_PRIVILEGE
#define SE_SYSTEM_ENVIRONMENT_PRIVILEGE
Definition: security.c:676

_PRIVILEGE_SET::Privilege
LUID_AND_ATTRIBUTES Privilege[ANYSIZE_ARRAY]
Definition: setypes.h:88

PoolType
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ _Strict_type_match_ POOL_TYPE PoolType
Definition: wdfdevice.h:3810

TokenImpersonation
Definition: imports.h:274

SE_ASSIGNPRIMARYTOKEN_PRIVILEGE
#define SE_ASSIGNPRIMARYTOKEN_PRIVILEGE
Definition: security.c:657

Token
Definition: tokenizer.hpp:27

ULONG
unsigned int ULONG
Definition: retypes.h:1

PACCESS_MASK
ACCESS_MASK * PACCESS_MASK
Definition: nt_native.h:41

SE_BACKUP_PRIVILEGE
#define SE_BACKUP_PRIVILEGE
Definition: security.c:671

RtlCopyMemory
#define RtlCopyMemory(Destination, Source, Length)
Definition: typedefs.h:263

SeReleaseSubjectContext
VOID NTAPI SeReleaseSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Releases both the primary and client tokens of a security subject context.
Definition: subject.c:171

SeEnableDelegationPrivilege
const LUID SeEnableDelegationPrivilege
Definition: priv.c:46

_SEH2_EXCEPT
#define _SEH2_EXCEPT(...)
Definition: pseh2_64.h:40

_LUID_AND_ATTRIBUTES::Luid
LUID Luid
Definition: setypes.h:74

TAG_PRIVILEGE_SET
#define TAG_PRIVILEGE_SET
Definition: tag.h:157

STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65

_SEH2_GetExceptionCode
#define _SEH2_GetExceptionCode()
Definition: pseh2_64.h:165

_SEH2_YIELD
#define _SEH2_YIELD(__stmt)
Definition: pseh2_64.h:168

SeRelabelPrivilege
const LUID SeRelabelPrivilege
Definition: priv.c:51

Required
struct _MEMORY_AREA struct _MM_REQUIRED_RESOURCES * Required
Definition: newmm.h:38

DPRINT
#define DPRINT
Definition: sndvol32.h:71

void
Definition: nsiface.idl:2306

SeSystemEnvironmentPrivilege
const LUID SeSystemEnvironmentPrivilege
Definition: priv.c:41

GrantedAccess
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET _In_ PGENERIC_MAPPING _In_ KPROCESSOR_MODE _Out_ PACCESS_MASK GrantedAccess
Definition: sefuncs.h:13

_TOKEN
Definition: setypes.h:215

ExFreePoolWithTag
#define ExFreePoolWithTag(_P, _T)
Definition: module.h:1099

SepInitPrivileges
VOID NTAPI SepInitPrivileges(VOID)
Initializes the privileges during the startup phase of the security manager module....
Definition: priv.c:71

SE_AUDIT_PRIVILEGE
#define SE_AUDIT_PRIVILEGE
Definition: security.c:675

CODE_SEG
static CODE_SEG("PAGE")
Definition: isapnp.c:1482

SeAppendPrivileges
NTSTATUS NTAPI SeAppendPrivileges(_Inout_ PACCESS_STATE AccessState, _In_ PPRIVILEGE_SET Privileges)
Appends additional privileges.
Definition: priv.c:588

ACCESS_MASK
ULONG ACCESS_MASK
Definition: nt_native.h:40

BufferSize
#define BufferSize
Definition: mmc.h:75

BufferSize
_In_ WDFMEMORY _Out_opt_ size_t * BufferSize
Definition: wdfmemory.h:251

SeTrustedCredmanPrivilege
const LUID SeTrustedCredmanPrivilege
Definition: priv.c:50

PAGED_CODE
#define PAGED_CODE()
Definition: Bus_PDO_QueryResourceRequirements.c:89