280 switch (OperationType)
283 case SetSecurityDescriptor:
292 OldSecurityDescriptor,
296 case QuerySecurityDescriptor:
303 OldSecurityDescriptor);
305 case DeleteSecurityDescriptor:
310 case AssignSecurityDescriptor:
387 (AuditParameters ==
NULL) ||
INIT_FUNCTION BOOLEAN NTAPI SepInitSDs(VOID)
const LUID SeSystemEnvironmentPrivilege
enum _SE_ADT_PARAMETER_TYPE SE_ADT_PARAMETER_TYPE
const LUID SeRemoteShutdownPrivilege
VOID NTAPI SeCaptureSubjectContext(OUT PSECURITY_SUBJECT_CONTEXT SubjectContext)
IN PUNICODE_STRING IN POBJECT_ATTRIBUTES ObjectAttributes
LUID SeEnableDelegationPrivilege
IN CINT OUT PVOID IN ULONG OUT PULONG ReturnLength
_Inout_ PLIST_ENTRY _In_ PVOID _In_ PSTRING _In_ BOOLEAN _In_ BOOLEAN _In_ ULONG _In_ PFLT_CALLBACK_DATA _In_opt_ PCHECK_FOR_TRAVERSE_ACCESS _In_opt_ PSECURITY_SUBJECT_CONTEXT SubjectContext
INIT_FUNCTION BOOLEAN NTAPI SeInitSystem(VOID)
VOID NTAPI SeReleaseSubjectContext(IN PSECURITY_SUBJECT_CONTEXT SubjectContext)
LUID SeManageVolumePrivilege
#define ExInitializeResource
const LUID SeSystemtimePrivilege
const LUID SeIncreaseQuotaPrivilege
#define ACCESS_SYSTEM_SECURITY
#define PsGetCurrentThread()
#define PspClearCrossThreadFlag(Thread, Flag)
PTOKEN NTAPI SepCreateSystemProcessToken(VOID)
const LUID SeCreateTokenPrivilege
#define SE_MAX_AUDIT_PARAMETERS
const LUID SeCreatePermanentPrivilege
const LUID SeDebugPrivilege
const LUID SeBackupPrivilege
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
#define STATUS_INVALID_PARAMETER
INIT_FUNCTION BOOLEAN NTAPI SepInitDACLs(VOID)
NTSYSAPI NTSTATUS NTAPI ZwClose(_In_ HANDLE Handle)
PSID SeAuthenticatedUsersSid
LUID SeChangeNotifyPrivilege
LUID SeLockMemoryPrivilege
const LUID SeEnableDelegationPrivilege
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG _Inout_ PLUID _Out_ PHANDLE Token
#define GROUP_SECURITY_INFORMATION
VOID NTAPI SeQuerySecurityAccessMask(IN SECURITY_INFORMATION SecurityInformation, OUT PACCESS_MASK DesiredAccess)
const LUID SeAssignPrimaryTokenPrivilege
NTSYSAPI NTSTATUS NTAPI RtlCreateSecurityDescriptor(_Out_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ ULONG Revision)
const LUID SeSystemProfilePrivilege
PSID SeAuthenticatedUsersSid
VOID INIT_FUNCTION NTAPI ExpInitLuid(VOID)
NTSYSAPI NTSTATUS WINAPI RtlAddAccessAllowedAce(PACL, DWORD, DWORD, PSID)
PSID SeAliasAccountOpsSid
const LUID SeSyncAgentPrivilege
LUID SeUnsolicitedInputPrivilege
NTSYSAPI NTSTATUS NTAPI RtlCreateAcl(PACL Acl, ULONG AclSize, ULONG AclRevision)
#define SECURITY_DESCRIPTOR_REVISION
_Must_inspect_result_ _In_ ULONG Flags
PSECURITY_DESCRIPTOR SePublicDefaultSd
NTSTATUS(* NTAPI)(IN PFILE_FULL_EA_INFORMATION EaBuffer, IN ULONG EaLength, OUT PULONG ErrorOffset)
DWORD SECURITY_INFORMATION
LUID SeLoadDriverPrivilege
#define PsGetCurrentProcess
NTSYSAPI NTSTATUS NTAPI RtlValidateUnicodeString(_In_ ULONG Flags, _In_ PCUNICODE_STRING String)
NTSYSAPI NTSTATUS NTAPI ZwCreateDirectoryObject(_Out_ PHANDLE DirectoryHandle, _In_ ACCESS_MASK DesiredAccess, _In_ POBJECT_ATTRIBUTES ObjectAttributes)
INIT_FUNCTION BOOLEAN NTAPI SepInitSecurityIDs(VOID)
NTSTATUS NTAPI ObSetSecurityDescriptorInfo(IN PVOID Object, IN PSECURITY_INFORMATION SecurityInformation, IN OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN OUT PSECURITY_DESCRIPTOR *OutputSecurityDescriptor, IN POOL_TYPE PoolType, IN PGENERIC_MAPPING GenericMapping)
const LUID SeLoadDriverPrivilege
const LUID SeManageVolumePrivilege
NTSYSAPI NTSTATUS WINAPI RtlSetDaclSecurityDescriptor(PSECURITY_DESCRIPTOR, BOOLEAN, PACL, BOOLEAN)
const LUID SeTakeOwnershipPrivilege
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
PSID SeAliasPowerUsersSid
_Must_inspect_result_ _In_ PFILE_OBJECT _In_ SECURITY_INFORMATION SecurityInformation
LUID SeSystemEnvironmentPrivilege
LUID SeProfileSingleProcessPrivilege
NTSYSAPI ULONG NTAPI RtlLengthSid(IN PSID Sid)
NTSYSAPI BOOLEAN NTAPI RtlValidSid(IN PSID Sid)
#define DIRECTORY_TRAVERSE
INIT_FUNCTION BOOLEAN NTAPI SepInitializationPhase1(VOID)
PSID SeAliasAccountOpsSid
ULONG ExpInitializationPhase
const LUID SeCreatePagefilePrivilege
LUID SeImpersonatePrivilege
LUID SeRemoteShutdownPrivilege
const LUID SeRestorePrivilege
#define NT_SUCCESS(StatCode)
DWORD * PSECURITY_INFORMATION
NTSTATUS NTAPI SeDefaultObjectMethod(IN PVOID Object, IN SECURITY_OPERATION_CODE OperationType, IN PSECURITY_INFORMATION SecurityInformation, IN OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN OUT PULONG ReturnLength OPTIONAL, IN OUT PSECURITY_DESCRIPTOR *OldSecurityDescriptor, IN POOL_TYPE PoolType, IN PGENERIC_MAPPING GenericMapping)
LUID SeCreatePermanentPrivilege
static const UCHAR Index[8]
#define SACL_SECURITY_INFORMATION
static const LUID SeChangeNotifyPrivilege
VOID FASTCALL ObInitializeFastReference(IN PEX_FAST_REF FastRef, IN PVOID Object)
INIT_FUNCTION BOOLEAN NTAPI SepInitializationPhase0(VOID)
#define OBJ_CASE_INSENSITIVE
static const LUID SeCreateGlobalPrivilege
ASSERT((InvokeOnSuccess||InvokeOnError||InvokeOnCancel) ?(CompletionRoutine !=NULL) :TRUE)
#define ExAllocatePoolWithTag(hernya, size, tag)
_Out_writes_bytes_to_opt_ AbsoluteSecurityDescriptorSize PSECURITY_DESCRIPTOR _Inout_ PULONG _Out_writes_bytes_to_opt_ DaclSize PACL Dacl
VOID NTAPI SeSetSecurityAccessMask(IN SECURITY_INFORMATION SecurityInformation, OUT PACCESS_MASK DesiredAccess)
BOOLEAN NTAPI SeRmInitPhase0(VOID)
NTSTATUS NTAPI ObQuerySecurityDescriptorInfo(IN PVOID Object, IN PSECURITY_INFORMATION SecurityInformation, OUT PSECURITY_DESCRIPTOR SecurityDescriptor, IN OUT PULONG Length, IN PSECURITY_DESCRIPTOR *OutputSecurityDescriptor)
const LUID SeLockMemoryPrivilege
const LUID SeProfileSingleProcessPrivilege
const LUID SeIncreaseBasePriorityPrivilege
NTSTATUS NTAPI SeReportSecurityEvent(_In_ ULONG Flags, _In_ PUNICODE_STRING SourceName, _In_opt_ PSID UserSid, _In_ PSE_ADT_PARAMETER_ARRAY AuditParameters)
const LUID SeTcbPrivilege
NTSTATUS NTAPI ObDeassignSecurity(IN OUT PSECURITY_DESCRIPTOR *SecurityDescriptor)
LUID SeCreateGlobalPrivilege
static GENERIC_MAPPING GenericMapping
LUID SeIncreaseBasePriorityPrivilege
const LUID SeShutdownPrivilege
NTSTATUS NTAPI ObInsertObject(IN PVOID Object, IN PACCESS_STATE AccessState OPTIONAL, IN ACCESS_MASK DesiredAccess, IN ULONG ObjectPointerBias, OUT PVOID *NewObject OPTIONAL, OUT PHANDLE Handle)
PSID SeAliasPowerUsersSid
LUID SeSystemtimePrivilege
#define DIRECTORY_ALL_ACCESS
LUID SeSyncAgentPrivilege
_In_ PIO_STACK_LOCATION _Inout_ PFILE_OBJECT _Inout_ PVCB _Outptr_result_maybenull_ PDCB _In_ PDCB _In_ PDIRENT _In_ ULONG _In_ ULONG _In_ PUNICODE_STRING _In_ PACCESS_MASK DesiredAccess
#define OWNER_SECURITY_INFORMATION
NTSTATUS NTAPI ObAssignObjectSecurityDescriptor(IN PVOID Object, IN PSECURITY_DESCRIPTOR SecurityDescriptor OPTIONAL, IN POOL_TYPE PoolType)
const LUID SeSecurityPrivilege
INIT_FUNCTION VOID NTAPI SepInitPrivileges(VOID)
#define CT_ACTIVE_IMPERSONATION_INFO_BIT
_Const_ NTSTATUS NTAPI SeSetAuditParameter(_Inout_ PSE_ADT_PARAMETER_ARRAY AuditParameters, _In_ SE_ADT_PARAMETER_TYPE Type, _In_range_(<, SE_MAX_AUDIT_PARAMETERS) ULONG Index, _In_reads_(_Inexpressible_("depends on SE_ADT_PARAMETER_TYPE")) PVOID Data)
ACCESS_MASK * PACCESS_MASK
NTSYSAPI VOID NTAPI RtlInitUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)
INIT_FUNCTION VOID NTAPI SepInitializeTokenImplementation(VOID)
#define InitializeObjectAttributes(p, n, a, r, s)
PSID_AND_ATTRIBUTES UserAndGroups
const LUID SeUnsolicitedInputPrivilege
LUID SeIncreaseQuotaPrivilege
LUID SeTakeOwnershipPrivilege
LUID SeAssignPrimaryTokenPrivilege
#define ExFreePoolWithTag(_P, _T)
const LUID SeUndockPrivilege
#define _In_range_(lb, ub)
_Must_inspect_result_ _In_ FLT_CONTEXT_TYPE _In_ SIZE_T _In_ POOL_TYPE PoolType
ERESOURCE SepSubjectContextLock
const LUID SeAuditPrivilege
LUID SeSystemProfilePrivilege
LUID SeCreatePagefilePrivilege
VOID NTAPI KeBugCheckEx(_In_ ULONG BugCheckCode, _In_ ULONG_PTR BugCheckParameter1, _In_ ULONG_PTR BugCheckParameter2, _In_ ULONG_PTR BugCheckParameter3, _In_ ULONG_PTR BugCheckParameter4)
#define DACL_SECURITY_INFORMATION
static INIT_FUNCTION BOOLEAN SepInitExports(VOID)
static const LUID SeImpersonatePrivilege
LUID SeCreateTokenPrivilege
_Out_ PHANDLE EventHandle
PULONG MinorVersion OPTIONAL