#include <ntoskrnl.h>#include <debug.h>
Include dependency graph for semgr.c:
Go to the source code of this file.
Macros | |
| #define | NDEBUG |
Functions | |
| static BOOLEAN | SepInitExports (VOID) |
| Initializes all the security exports upon initialization phase of the module. | |
| BOOLEAN NTAPI | SepInitializationPhase0 (VOID) |
| Handles the phase 0 procedure of the SRM initialization. | |
| BOOLEAN NTAPI | SepInitializationPhase1 (VOID) |
| Handles the phase 1 procedure of the SRM initialization. | |
| BOOLEAN NTAPI | SeInitSystem (VOID) |
| Main security manager initialization function. | |
| NTSTATUS NTAPI | SeDefaultObjectMethod (_In_ PVOID Object, _In_ SECURITY_OPERATION_CODE OperationType, _In_ PSECURITY_INFORMATION SecurityInformation, _Inout_ PSECURITY_DESCRIPTOR SecurityDescriptor, _Inout_opt_ PULONG ReturnLength, _Inout_ PSECURITY_DESCRIPTOR *OldSecurityDescriptor, _In_ POOL_TYPE PoolType, _In_ PGENERIC_MAPPING GenericMapping) |
| Internal function that is responsible for querying, deleting, assigning and setting a security descriptor for an object in the NT kernel. It is the default security method for objects regarding the security context of objects. | |
| VOID NTAPI | SeQuerySecurityAccessMask (_In_ SECURITY_INFORMATION SecurityInformation, _Out_ PACCESS_MASK DesiredAccess) |
| Queries the access mask from a security information context. | |
| VOID NTAPI | SeSetSecurityAccessMask (_In_ SECURITY_INFORMATION SecurityInformation, _Out_ PACCESS_MASK DesiredAccess) |
| Sets the access mask for a security information context. | |
| NTSTATUS NTAPI | SeReportSecurityEvent (_In_ ULONG Flags, _In_ PUNICODE_STRING SourceName, _In_opt_ PSID UserSid, _In_ PSE_ADT_PARAMETER_ARRAY AuditParameters) |
| Report a security event to the security manager. | |
| _Const_ NTSTATUS NTAPI | SeSetAuditParameter (_Inout_ PSE_ADT_PARAMETER_ARRAY AuditParameters, _In_ SE_ADT_PARAMETER_TYPE Type, _In_range_(<, SE_MAX_AUDIT_PARAMETERS) ULONG Index, _In_reads_(_Inexpressible_("depends on SE_ADT_PARAMETER_TYPE")) PVOID Data) |
| Sets an array of audit parameters for later security auditing use. | |
Macro Definition Documentation
◆ NDEBUG
Function Documentation
◆ SeDefaultObjectMethod()
| NTSTATUS NTAPI SeDefaultObjectMethod | ( | _In_ PVOID | Object, |
| _In_ SECURITY_OPERATION_CODE | OperationType, | ||
| _In_ PSECURITY_INFORMATION | SecurityInformation, | ||
| _Inout_ PSECURITY_DESCRIPTOR | SecurityDescriptor, | ||
| _Inout_opt_ PULONG | ReturnLength, | ||
| _Inout_ PSECURITY_DESCRIPTOR * | OldSecurityDescriptor, | ||
| _In_ POOL_TYPE | PoolType, | ||
| _In_ PGENERIC_MAPPING | GenericMapping | ||
| ) |
Internal function that is responsible for querying, deleting, assigning and setting a security descriptor for an object in the NT kernel. It is the default security method for objects regarding the security context of objects.
- Parameters
-
[in] Object The object that has the default security method, which the function has been called upon. [in] OperationType Operation type to perform to that object. [in] SecurityInformation Auxiliary security information of the object. [in,out] SecurityDescriptor A security descriptor. This SD is used accordingly to the operation type requested by the caller. [in,out] ReturnLength The length size of the queried security descriptor, in bytes. [in,out] OldSecurityDescriptor The old SD that belonged to the object, in case we're either deleting or replacing it. [in] PoolType Pool type allocation for the security descriptor. [in] GenericMapping The generic mapping of access rights masks for the object.
- Returns
- Returns STATUS_SUCCESS if the specific operation tasked has been completed. Otherwise a failure NTSTATUS code is returned.
Definition at line 351 of file semgr.c.
360{
361 PAGED_CODE();
362
363 /* Select the operation type */
364 switch (OperationType)
365 {
366 /* Setting a new descriptor */
367 case SetSecurityDescriptor:
368
369 /* Sanity check */
371
372 /* Set the information */
374 SecurityInformation,
375 SecurityDescriptor,
376 OldSecurityDescriptor,
377 PoolType,
378 GenericMapping);
379
380 case QuerySecurityDescriptor:
381
382 /* Query the information */
384 SecurityInformation,
385 SecurityDescriptor,
386 ReturnLength,
387 OldSecurityDescriptor);
388
389 case DeleteSecurityDescriptor:
390
391 /* De-assign it */
393
394 case AssignSecurityDescriptor:
395
396 /* Assign it */
399
400 default:
401
402 /* Bug check */
404 }
405
406 /* Should never reach here */
409}
_Must_inspect_result_ _In_ PFILE_OBJECT _In_ SECURITY_INFORMATION SecurityInformation
Definition: fltkernel.h:1340
NTSTATUS NTAPI ObDeassignSecurity(IN OUT PSECURITY_DESCRIPTOR *SecurityDescriptor)
Definition: obsecure.c:60
NTSTATUS NTAPI ObAssignObjectSecurityDescriptor(IN PVOID Object, IN PSECURITY_DESCRIPTOR SecurityDescriptor OPTIONAL, IN POOL_TYPE PoolType)
Definition: obsecure.c:20
NTSTATUS NTAPI ObSetSecurityDescriptorInfo(IN PVOID Object, IN PSECURITY_INFORMATION SecurityInformation, IN OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN OUT PSECURITY_DESCRIPTOR *OutputSecurityDescriptor, IN POOL_TYPE PoolType, IN PGENERIC_MAPPING GenericMapping)
Definition: obsecure.c:117
NTSTATUS NTAPI ObQuerySecurityDescriptorInfo(IN PVOID Object, IN PSECURITY_INFORMATION SecurityInformation, OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN OUT PULONG Length, IN PSECURITY_DESCRIPTOR *OutputSecurityDescriptor)
Definition: obsecure.c:85
VOID NTAPI KeBugCheckEx(_In_ ULONG BugCheckCode, _In_ ULONG_PTR BugCheckParameter1, _In_ ULONG_PTR BugCheckParameter2, _In_ ULONG_PTR BugCheckParameter3, _In_ ULONG_PTR BugCheckParameter4)
Definition: rtlcompat.c:108
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ _Strict_type_match_ POOL_TYPE PoolType
Definition: wdfdevice.h:3815
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:191
◆ SeInitSystem()
Main security manager initialization function.
- Returns
- Returns a boolean value according to the phase initialization routine that handles it. If TRUE, the routine deems the initialization phase as complete, FALSE otherwise.
Definition at line 285 of file semgr.c.
286{
287 /* Check the initialization phase */
289 {
290 case 0:
291
292 /* Do Phase 0 */
294
295 case 1:
296
297 /* Do Phase 1 */
299
300 default:
301
302 /* Don't know any other phase! Bugcheck! */
303 KeBugCheckEx(UNEXPECTED_INITIALIZATION_CALL,
304 0,
306 0,
307 0);
309 }
310}
BOOLEAN NTAPI SepInitializationPhase1(VOID)
Handles the phase 1 procedure of the SRM initialization.
Definition: semgr.c:168
BOOLEAN NTAPI SepInitializationPhase0(VOID)
Handles the phase 0 procedure of the SRM initialization.
Definition: semgr.c:115
Referenced by ExpInitializeExecutive(), and Phase1InitializationDiscard().
◆ SepInitExports()
Initializes all the security exports upon initialization phase of the module.
- Returns
- Returns TRUE.
Definition at line 41 of file semgr.c.
42{
66
91
98
101}
LUID SeIncreaseBasePriorityPrivilege
Definition: setypes.h:1205
LUID SeAssignPrimaryTokenPrivilege
Definition: setypes.h:1196
LUID SeProfileSingleProcessPrivilege
Definition: setypes.h:1208
LUID SeSystemEnvironmentPrivilege
Definition: setypes.h:1215
Referenced by SepInitializationPhase0().
◆ SepInitializationPhase0()
Handles the phase 0 procedure of the SRM initialization.
- Returns
- Returns TRUE if the phase 0 initialization has succeeded and that we can proceed further with next initialization phase, FALSE otherwise.
Definition at line 115 of file semgr.c.
116{
117 PAGED_CODE();
118
123 SepInitPrivileges();
125
126 /* Initialize the subject context lock */
128
129 /* Initialize token objects */
131
132 /* Initialize logon sessions */
134
135 /* Clear impersonation info for the idle thread */
139
140 /* Initialize the boot token */
143 SepCreateSystemProcessToken());
144
145 /* Initialise the anonymous logon tokens */
149
153
155}
Definition: tokenizer.hpp:28
VOID NTAPI SepInitializeTokenImplementation(VOID)
Internal function that initializes critical kernel data for access token implementation in SRM.
Definition: token.c:1649
PTOKEN NTAPI SepCreateSystemProcessToken(VOID)
Creates the system process token.
Definition: token.c:1753
BOOLEAN NTAPI SeRmInitPhase0(VOID)
Manages the phase 0 initialization of the security reference monitoring module of the kernel.
Definition: srm.c:176
PTOKEN SepCreateSystemAnonymousLogonTokenNoEveryone(VOID)
Creates the anonymous logon token for the system. This kind of token doesn't include the everyone SID...
Definition: token.c:1938
BOOLEAN NTAPI SepInitSecurityIDs(VOID)
Initializes all the SIDs known in the system.
Definition: sid.c:115
BOOLEAN NTAPI SepInitDACLs(VOID)
Initializes known discretionary access control lists in the system upon kernel and Executive initiali...
Definition: acl.c:38
PTOKEN SepCreateSystemAnonymousLogonToken(VOID)
Creates the anonymous logon token for the system. The difference between this token and the other one...
Definition: token.c:1868
BOOLEAN NTAPI SepInitSDs(VOID)
Initializes the known security descriptors in the system.
Definition: sd.c:37
VOID NTAPI SepInitPrivileges(VOID)
Initializes the privileges during the startup phase of the security manager module....
Definition: priv.c:71
VOID FASTCALL ObInitializeFastReference(IN PEX_FAST_REF FastRef, IN PVOID Object)
Definition: obref.c:107
static BOOLEAN SepInitExports(VOID)
Initializes all the security exports upon initialization phase of the module.
Definition: semgr.c:41
Referenced by SeInitSystem().
◆ SepInitializationPhase1()
Handles the phase 1 procedure of the SRM initialization.
- Returns
- Returns TRUE if the phase 1 initialization has succeeded, FALSE otherwise.
Definition at line 168 of file semgr.c.
169{
172 HANDLE SecurityHandle;
177 ULONG DaclLength;
178
179 PAGED_CODE();
180
181 /* Insert the system token into the tree */
183 ~MAX_FAST_REFS),
184 NULL,
185 0,
186 0,
187 NULL,
188 NULL);
190
191 /* Create a security descriptor for the directory */
193
194 /* Setup the ACL */
201 {
203 }
204
207
208 /* Grant full access to SYSTEM */
210 ACL_REVISION,
211 DIRECTORY_ALL_ACCESS,
212 SeLocalSystemSid);
214
215 /* Allow admins to traverse and query */
217 ACL_REVISION,
219 SeAliasAdminsSid);
221
222 /* Allow anyone to traverse */
224 ACL_REVISION,
225 DIRECTORY_TRAVERSE,
226 SeWorldSid);
228
229 /* And link ACL and SD */
232
233 /* Create '\Security' directory */
236 &Name,
238 0,
239 &SecurityDescriptor);
240
242 DIRECTORY_ALL_ACCESS,
243 &ObjectAttributes);
245
246 /* Free the DACL */
248
249 /* Create 'LSA_AUTHENTICATION_INITIALIZED' event */
252 &Name,
254 SecurityHandle,
255 SePublicDefaultSd);
256
258 GENERIC_WRITE,
259 &ObjectAttributes,
260 NotificationEvent,
261 FALSE);
263
266
269
271}
NTSYSAPI NTSTATUS WINAPI RtlAddAccessAllowedAce(PACL, DWORD, DWORD, PSID)
NTSYSAPI NTSTATUS WINAPI RtlSetDaclSecurityDescriptor(PSECURITY_DESCRIPTOR, BOOLEAN, PACL, BOOLEAN)
Definition: nsiface.idl:2307
struct _ACL ACL
NTSYSAPI NTSTATUS NTAPI ZwClose(_In_ HANDLE Handle)
NTSYSAPI NTSTATUS NTAPI ZwCreateDirectoryObject(_Out_ PHANDLE DirectoryHandle, _In_ ACCESS_MASK DesiredAccess, _In_ POBJECT_ATTRIBUTES ObjectAttributes)
_Out_writes_bytes_to_opt_ AbsoluteSecurityDescriptorSize PSECURITY_DESCRIPTOR _Inout_ PULONG _Out_writes_bytes_to_opt_ DaclSize PACL Dacl
Definition: rtlfuncs.h:1593
NTSYSAPI NTSTATUS NTAPI RtlCreateAcl(PACL Acl, ULONG AclSize, ULONG AclRevision)
NTSYSAPI NTSTATUS NTAPI RtlCreateSecurityDescriptor(_Out_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ ULONG Revision)
NTSYSAPI VOID NTAPI RtlInitUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)
NTSTATUS NTAPI ObInsertObject(IN PVOID Object, IN PACCESS_STATE AccessState OPTIONAL, IN ACCESS_MASK DesiredAccess, IN ULONG ObjectPointerBias, OUT PVOID *NewObject OPTIONAL, OUT PHANDLE Handle)
Definition: obhandle.c:2935
Definition: apinames.c:49
Definition: ms-dtyp.idl:215
Definition: ms-dtyp.idl:293
Definition: umtypes.h:182
Definition: ms-dtyp.idl:301
Definition: env_spec_w32.h:368
Referenced by SeInitSystem().
◆ SeQuerySecurityAccessMask()
| VOID NTAPI SeQuerySecurityAccessMask | ( | _In_ SECURITY_INFORMATION | SecurityInformation, |
| _Out_ PACCESS_MASK | DesiredAccess | ||
| ) |
Queries the access mask from a security information context.
- Parameters
-
[in] SecurityInformation The security information context where the access mask is to be gathered. [out] DesiredAccess The queried access mask right.
- Returns
- Nothing.
Definition at line 427 of file semgr.c.
430{
431 *DesiredAccess = 0;
432
435 {
437 }
438
440 {
442 }
443}
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2658
Referenced by NtQuerySecurityObject().
◆ SeReportSecurityEvent()
| NTSTATUS NTAPI SeReportSecurityEvent | ( | _In_ ULONG | Flags, |
| _In_ PUNICODE_STRING | SourceName, | ||
| _In_opt_ PSID | UserSid, | ||
| _In_ PSE_ADT_PARAMETER_ARRAY | AuditParameters | ||
| ) |
Report a security event to the security manager.
@unimplemented
- Parameters
-
[in] Flags Flags that influence how the event should be reported. [in] SourceName A Unicode string that represents the source name of the event. [in] UserSid The SID that represents a user that initiated the reporting. [in] AuditParameters An array of parameters for auditing purposes. This is used for reporting the event which the security manager will take care subsequently of doing eventual security auditing.
- Returns
- Returns STATUS_SUCCESS if the security event has been reported. STATUS_INVALID_PARAMETER is returned if one of the parameters do not satisfy the requirements expected by the function.
Definition at line 508 of file semgr.c.
513{
515 PTOKEN EffectiveToken;
518
519 /* Validate parameters */
523 (SourceName->Length == 0) ||
524 (AuditParameters == NULL) ||
525 (AuditParameters->ParameterCount > SE_MAX_AUDIT_PARAMETERS - 4))
526 {
528 }
529
530 /* Validate the source name */
533 {
535 }
536
537 /* Check if we have a user SID */
539 {
540 /* Validate it */
542 {
544 }
545
546 /* Use the user SID */
547 Sid = UserSid;
548 }
549 else
550 {
551 /* No user SID, capture the security subject context */
553
554 /* Extract the effective token */
555 EffectiveToken = SubjectContext.ClientToken ?
557
558 /* Use the user-and-groups SID */
560 }
561
562 UNIMPLEMENTED;
563
564 /* Check if we captured the subject context */
566 {
567 /* Release it */
569 }
570
571 /* Return success */
573}
_Inout_ PLIST_ENTRY _In_ PVOID _In_ PSTRING _In_ BOOLEAN _In_ BOOLEAN _In_ ULONG _In_ PFLT_CALLBACK_DATA _In_opt_ PCHECK_FOR_TRAVERSE_ACCESS _In_opt_ PSECURITY_SUBJECT_CONTEXT SubjectContext
Definition: fltkernel.h:2246
NTSYSAPI NTSTATUS NTAPI RtlValidateUnicodeString(_In_ ULONG Flags, _In_ PCUNICODE_STRING String)
Definition: unicode.c:2605
Definition: setypes.h:217
Definition: ms-dtyp.idl:198
Definition: setypes.h:216
VOID NTAPI SeReleaseSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Releases both the primary and client tokens of a security subject context.
Definition: subject.c:171
VOID NTAPI SeCaptureSubjectContext(_Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Captures the security subject context of the calling thread and calling process.
Definition: subject.c:85
◆ SeSetAuditParameter()
| _Const_ NTSTATUS NTAPI SeSetAuditParameter | ( | _Inout_ PSE_ADT_PARAMETER_ARRAY | AuditParameters, |
| _In_ SE_ADT_PARAMETER_TYPE | Type, | ||
| _In_range_(<, SE_MAX_AUDIT_PARAMETERS) ULONG | Index, | ||
| _In_reads_(_Inexpressible_("depends on SE_ADT_PARAMETER_TYPE")) PVOID | Data | ||
| ) |
Sets an array of audit parameters for later security auditing use.
@unimplemented
- Parameters
-
[in,out] AuditParameters An array of audit parameters to be set. [in] Type The type of audit parameters to be set. [in] Index Index number that represents an instance of an audit parameters. Such index must be within the maximum range of audit parameters. [in] Data An arbitrary buffer data that is bounds to what kind of audit parameter type must be set.
- Returns
- To be added...
◆ SeSetSecurityAccessMask()
| VOID NTAPI SeSetSecurityAccessMask | ( | _In_ SECURITY_INFORMATION | SecurityInformation, |
| _Out_ PACCESS_MASK | DesiredAccess | ||
| ) |
Sets the access mask for a security information context.
- Parameters
-
[in] SecurityInformation The security information context to apply a new access right. [out] DesiredAccess The returned access mask right.
- Returns
- Nothing.
Definition at line 460 of file semgr.c.
Referenced by NtSetSecurityObject().
Variable Documentation
◆ ExpInitializationPhase
|
extern |
Definition at line 68 of file init.c.
Referenced by ExInitSystem(), ExpInitializeExecutive(), ExpInitNls(), IopMountVolume(), MiReloadBootLoadedDrivers(), Phase1InitializationDiscard(), and SeInitSystem().
◆ SeAnonymousLogonToken
Definition at line 19 of file semgr.c.
Referenced by SepImpersonateAnonymousToken(), and SepInitializationPhase0().
◆ SeAnonymousLogonTokenNoEveryone
Definition at line 20 of file semgr.c.
Referenced by SepImpersonateAnonymousToken(), and SepInitializationPhase0().
◆ SeExports
| PSE_EXPORTS SeExports = NULL |
Definition at line 21 of file semgr.c.
Referenced by CheckKeySecurity__(), FatCreateRestrictEveryoneToken(), FilterToken(), IntCreateServiceSecurity(), SepInitExports(), SePrivilegedServiceAuditAlarm(), START_TEST(), TestObRootSecurity(), TestSeAssignSecurity(), TiCreateSecurityDescriptor(), UDFCheckAccessRights(), and UDFCommonCreate().
◆ SepExports
| SE_EXPORTS SepExports |
Definition at line 22 of file semgr.c.
Referenced by SepInitExports().
◆ SepSubjectContextLock
|
extern |
Definition at line 16 of file subject.c.
Referenced by SepInitializationPhase0().
