ReactOS 0.4.16-dev-401-g45b008d
|
#include <ntoskrnl.h>
#include <debug.h>
Go to the source code of this file.
Macros | |
#define | NDEBUG |
Functions | |
static BOOLEAN | SepInitExports (VOID) |
Initializes all the security exports upon initialization phase of the module. | |
BOOLEAN NTAPI | SepInitializationPhase0 (VOID) |
Handles the phase 0 procedure of the SRM initialization. | |
BOOLEAN NTAPI | SepInitializationPhase1 (VOID) |
Handles the phase 1 procedure of the SRM initialization. | |
BOOLEAN NTAPI | SeInitSystem (VOID) |
Main security manager initialization function. | |
NTSTATUS NTAPI | SeDefaultObjectMethod (_In_ PVOID Object, _In_ SECURITY_OPERATION_CODE OperationType, _In_ PSECURITY_INFORMATION SecurityInformation, _Inout_ PSECURITY_DESCRIPTOR SecurityDescriptor, _Inout_opt_ PULONG ReturnLength, _Inout_ PSECURITY_DESCRIPTOR *OldSecurityDescriptor, _In_ POOL_TYPE PoolType, _In_ PGENERIC_MAPPING GenericMapping) |
Internal function that is responsible for querying, deleting, assigning and setting a security descriptor for an object in the NT kernel. It is the default security method for objects regarding the security context of objects. | |
VOID NTAPI | SeQuerySecurityAccessMask (_In_ SECURITY_INFORMATION SecurityInformation, _Out_ PACCESS_MASK DesiredAccess) |
Queries the access mask from a security information context. | |
VOID NTAPI | SeSetSecurityAccessMask (_In_ SECURITY_INFORMATION SecurityInformation, _Out_ PACCESS_MASK DesiredAccess) |
Sets the access mask for a security information context. | |
NTSTATUS NTAPI | SeReportSecurityEvent (_In_ ULONG Flags, _In_ PUNICODE_STRING SourceName, _In_opt_ PSID UserSid, _In_ PSE_ADT_PARAMETER_ARRAY AuditParameters) |
Report a security event to the security manager. | |
_Const_ NTSTATUS NTAPI | SeSetAuditParameter (_Inout_ PSE_ADT_PARAMETER_ARRAY AuditParameters, _In_ SE_ADT_PARAMETER_TYPE Type, _In_range_(<, SE_MAX_AUDIT_PARAMETERS) ULONG Index, _In_reads_(_Inexpressible_("depends on SE_ADT_PARAMETER_TYPE")) PVOID Data) |
Sets an array of audit parameters for later security auditing use. | |
NTSTATUS NTAPI SeDefaultObjectMethod | ( | _In_ PVOID | Object, |
_In_ SECURITY_OPERATION_CODE | OperationType, | ||
_In_ PSECURITY_INFORMATION | SecurityInformation, | ||
_Inout_ PSECURITY_DESCRIPTOR | SecurityDescriptor, | ||
_Inout_opt_ PULONG | ReturnLength, | ||
_Inout_ PSECURITY_DESCRIPTOR * | OldSecurityDescriptor, | ||
_In_ POOL_TYPE | PoolType, | ||
_In_ PGENERIC_MAPPING | GenericMapping | ||
) |
Internal function that is responsible for querying, deleting, assigning and setting a security descriptor for an object in the NT kernel. It is the default security method for objects regarding the security context of objects.
[in] | Object | The object that has the default security method, which the function has been called upon. |
[in] | OperationType | Operation type to perform to that object. |
[in] | SecurityInformation | Auxiliary security information of the object. |
[in,out] | SecurityDescriptor | A security descriptor. This SD is used accordingly to the operation type requested by the caller. |
[in,out] | ReturnLength | The length size of the queried security descriptor, in bytes. |
[in,out] | OldSecurityDescriptor | The old SD that belonged to the object, in case we're either deleting or replacing it. |
[in] | PoolType | Pool type allocation for the security descriptor. |
[in] | GenericMapping | The generic mapping of access rights masks for the object. |
Definition at line 351 of file semgr.c.
Main security manager initialization function.
Definition at line 285 of file semgr.c.
Referenced by ExpInitializeExecutive(), and Phase1InitializationDiscard().
Initializes all the security exports upon initialization phase of the module.
Definition at line 41 of file semgr.c.
Referenced by SepInitializationPhase0().
Handles the phase 0 procedure of the SRM initialization.
Definition at line 115 of file semgr.c.
Referenced by SeInitSystem().
Handles the phase 1 procedure of the SRM initialization.
Definition at line 168 of file semgr.c.
Referenced by SeInitSystem().
VOID NTAPI SeQuerySecurityAccessMask | ( | _In_ SECURITY_INFORMATION | SecurityInformation, |
_Out_ PACCESS_MASK | DesiredAccess | ||
) |
Queries the access mask from a security information context.
[in] | SecurityInformation | The security information context where the access mask is to be gathered. |
[out] | DesiredAccess | The queried access mask right. |
Definition at line 427 of file semgr.c.
Referenced by NtQuerySecurityObject().
NTSTATUS NTAPI SeReportSecurityEvent | ( | _In_ ULONG | Flags, |
_In_ PUNICODE_STRING | SourceName, | ||
_In_opt_ PSID | UserSid, | ||
_In_ PSE_ADT_PARAMETER_ARRAY | AuditParameters | ||
) |
Report a security event to the security manager.
@unimplemented
[in] | Flags | Flags that influence how the event should be reported. |
[in] | SourceName | A Unicode string that represents the source name of the event. |
[in] | UserSid | The SID that represents a user that initiated the reporting. |
[in] | AuditParameters | An array of parameters for auditing purposes. This is used for reporting the event which the security manager will take care subsequently of doing eventual security auditing. |
Definition at line 508 of file semgr.c.
_Const_ NTSTATUS NTAPI SeSetAuditParameter | ( | _Inout_ PSE_ADT_PARAMETER_ARRAY | AuditParameters, |
_In_ SE_ADT_PARAMETER_TYPE | Type, | ||
_In_range_(<, SE_MAX_AUDIT_PARAMETERS) ULONG | Index, | ||
_In_reads_(_Inexpressible_("depends on SE_ADT_PARAMETER_TYPE")) PVOID | Data | ||
) |
Sets an array of audit parameters for later security auditing use.
@unimplemented
[in,out] | AuditParameters | An array of audit parameters to be set. |
[in] | Type | The type of audit parameters to be set. |
[in] | Index | Index number that represents an instance of an audit parameters. Such index must be within the maximum range of audit parameters. |
[in] | Data | An arbitrary buffer data that is bounds to what kind of audit parameter type must be set. |
VOID NTAPI SeSetSecurityAccessMask | ( | _In_ SECURITY_INFORMATION | SecurityInformation, |
_Out_ PACCESS_MASK | DesiredAccess | ||
) |
Sets the access mask for a security information context.
[in] | SecurityInformation | The security information context to apply a new access right. |
[out] | DesiredAccess | The returned access mask right. |
Definition at line 460 of file semgr.c.
Referenced by NtSetSecurityObject().
|
extern |
Definition at line 68 of file init.c.
Referenced by ExInitSystem(), ExpInitializeExecutive(), ExpInitNls(), IopMountVolume(), MiReloadBootLoadedDrivers(), Phase1InitializationDiscard(), and SeInitSystem().
Definition at line 19 of file semgr.c.
Referenced by SepImpersonateAnonymousToken(), and SepInitializationPhase0().
Definition at line 20 of file semgr.c.
Referenced by SepImpersonateAnonymousToken(), and SepInitializationPhase0().
PSE_EXPORTS SeExports = NULL |
Definition at line 21 of file semgr.c.
Referenced by CheckKeySecurity__(), FatCreateRestrictEveryoneToken(), FilterToken(), IntCreateServiceSecurity(), SepInitExports(), SePrivilegedServiceAuditAlarm(), START_TEST(), TestObRootSecurity(), TestSeAssignSecurity(), TiCreateSecurityDescriptor(), UDFCheckAccessRights(), and UDFCommonCreate().
SE_EXPORTS SepExports |
Definition at line 22 of file semgr.c.
Referenced by SepInitExports().
|
extern |
Definition at line 16 of file subject.c.
Referenced by SepInitializationPhase0().