ReactOS  0.4.15-dev-2354-g9e947e2
sid.c
Go to the documentation of this file.
1 /*
2  * COPYRIGHT: See COPYING in the top level directory
3  * PROJECT: ReactOS kernel
4  * FILE: ntoskrnl/se/sid.c
5  * PURPOSE: Security manager
6  *
7  * PROGRAMMERS: David Welch <welch@cwcom.net>
8  */
9 
10 /* INCLUDES *******************************************************************/
11 
12 #include <ntoskrnl.h>
13 #define NDEBUG
14 #include <debug.h>
15 
16 #define TAG_SID_AND_ATTRIBUTES 'aSeS'
17 
18 /* GLOBALS ********************************************************************/
19 
20 SID_IDENTIFIER_AUTHORITY SeNullSidAuthority = {SECURITY_NULL_SID_AUTHORITY};
21 SID_IDENTIFIER_AUTHORITY SeWorldSidAuthority = {SECURITY_WORLD_SID_AUTHORITY};
22 SID_IDENTIFIER_AUTHORITY SeLocalSidAuthority = {SECURITY_LOCAL_SID_AUTHORITY};
23 SID_IDENTIFIER_AUTHORITY SeCreatorSidAuthority = {SECURITY_CREATOR_SID_AUTHORITY};
24 SID_IDENTIFIER_AUTHORITY SeNtSidAuthority = {SECURITY_NT_AUTHORITY};
25 
26 PSID SeNullSid = NULL;
27 PSID SeWorldSid = NULL;
28 PSID SeLocalSid = NULL;
29 PSID SeCreatorOwnerSid = NULL;
30 PSID SeCreatorGroupSid = NULL;
31 PSID SeCreatorOwnerServerSid = NULL;
32 PSID SeCreatorGroupServerSid = NULL;
33 PSID SeNtAuthoritySid = NULL;
34 PSID SeDialupSid = NULL;
35 PSID SeNetworkSid = NULL;
36 PSID SeBatchSid = NULL;
37 PSID SeInteractiveSid = NULL;
38 PSID SeServiceSid = NULL;
39 PSID SePrincipalSelfSid = NULL;
40 PSID SeLocalSystemSid = NULL;
41 PSID SeAuthenticatedUserSid = NULL;
42 PSID SeRestrictedCodeSid = NULL;
43 PSID SeAliasAdminsSid = NULL;
44 PSID SeAliasUsersSid = NULL;
45 PSID SeAliasGuestsSid = NULL;
46 PSID SeAliasPowerUsersSid = NULL;
47 PSID SeAliasAccountOpsSid = NULL;
48 PSID SeAliasSystemOpsSid = NULL;
49 PSID SeAliasPrintOpsSid = NULL;
50 PSID SeAliasBackupOpsSid = NULL;
51 PSID SeAuthenticatedUsersSid = NULL;
52 PSID SeRestrictedSid = NULL;
53 PSID SeAnonymousLogonSid = NULL;
54 PSID SeLocalServiceSid = NULL;
55 PSID SeNetworkServiceSid = NULL;
56 
57 /* FUNCTIONS ******************************************************************/
58 
59 VOID
60 NTAPI
61 FreeInitializedSids(VOID)
62 {
63  if (SeNullSid) ExFreePoolWithTag(SeNullSid, TAG_SID);
64  if (SeWorldSid) ExFreePoolWithTag(SeWorldSid, TAG_SID);
65  if (SeLocalSid) ExFreePoolWithTag(SeLocalSid, TAG_SID);
66  if (SeCreatorOwnerSid) ExFreePoolWithTag(SeCreatorOwnerSid, TAG_SID);
67  if (SeCreatorGroupSid) ExFreePoolWithTag(SeCreatorGroupSid, TAG_SID);
68  if (SeCreatorOwnerServerSid) ExFreePoolWithTag(SeCreatorOwnerServerSid, TAG_SID);
69  if (SeCreatorGroupServerSid) ExFreePoolWithTag(SeCreatorGroupServerSid, TAG_SID);
70  if (SeNtAuthoritySid) ExFreePoolWithTag(SeNtAuthoritySid, TAG_SID);
71  if (SeDialupSid) ExFreePoolWithTag(SeDialupSid, TAG_SID);
72  if (SeNetworkSid) ExFreePoolWithTag(SeNetworkSid, TAG_SID);
73  if (SeBatchSid) ExFreePoolWithTag(SeBatchSid, TAG_SID);
74  if (SeInteractiveSid) ExFreePoolWithTag(SeInteractiveSid, TAG_SID);
75  if (SeServiceSid) ExFreePoolWithTag(SeServiceSid, TAG_SID);
76  if (SePrincipalSelfSid) ExFreePoolWithTag(SePrincipalSelfSid, TAG_SID);
77  if (SeLocalSystemSid) ExFreePoolWithTag(SeLocalSystemSid, TAG_SID);
78  if (SeAuthenticatedUserSid) ExFreePoolWithTag(SeAuthenticatedUserSid, TAG_SID);
79  if (SeRestrictedCodeSid) ExFreePoolWithTag(SeRestrictedCodeSid, TAG_SID);
80  if (SeAliasAdminsSid) ExFreePoolWithTag(SeAliasAdminsSid, TAG_SID);
81  if (SeAliasUsersSid) ExFreePoolWithTag(SeAliasUsersSid, TAG_SID);
82  if (SeAliasGuestsSid) ExFreePoolWithTag(SeAliasGuestsSid, TAG_SID);
83  if (SeAliasPowerUsersSid) ExFreePoolWithTag(SeAliasPowerUsersSid, TAG_SID);
84  if (SeAliasAccountOpsSid) ExFreePoolWithTag(SeAliasAccountOpsSid, TAG_SID);
85  if (SeAliasSystemOpsSid) ExFreePoolWithTag(SeAliasSystemOpsSid, TAG_SID);
86  if (SeAliasPrintOpsSid) ExFreePoolWithTag(SeAliasPrintOpsSid, TAG_SID);
87  if (SeAliasBackupOpsSid) ExFreePoolWithTag(SeAliasBackupOpsSid, TAG_SID);
88  if (SeAuthenticatedUsersSid) ExFreePoolWithTag(SeAuthenticatedUsersSid, TAG_SID);
89  if (SeRestrictedSid) ExFreePoolWithTag(SeRestrictedSid, TAG_SID);
90  if (SeAnonymousLogonSid) ExFreePoolWithTag(SeAnonymousLogonSid, TAG_SID);
91 }
92 
93 CODE_SEG("INIT")
94 BOOLEAN
95 NTAPI
96 SepInitSecurityIDs(VOID)
97 {
98  ULONG SidLength0;
99  ULONG SidLength1;
100  ULONG SidLength2;
101  PULONG SubAuthority;
102 
103  SidLength0 = RtlLengthRequiredSid(0);
104  SidLength1 = RtlLengthRequiredSid(1);
105  SidLength2 = RtlLengthRequiredSid(2);
106 
107  /* create NullSid */
108  SeNullSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
109  SeWorldSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
110  SeLocalSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
111  SeCreatorOwnerSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
112  SeCreatorGroupSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
113  SeCreatorOwnerServerSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
114  SeCreatorGroupServerSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
115  SeNtAuthoritySid = ExAllocatePoolWithTag(PagedPool, SidLength0, TAG_SID);
116  SeDialupSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
117  SeNetworkSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
118  SeBatchSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
119  SeInteractiveSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
120  SeServiceSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
121  SePrincipalSelfSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
122  SeLocalSystemSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
123  SeAuthenticatedUserSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
124  SeRestrictedCodeSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
125  SeAliasAdminsSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
126  SeAliasUsersSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
127  SeAliasGuestsSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
128  SeAliasPowerUsersSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
129  SeAliasAccountOpsSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
130  SeAliasSystemOpsSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
131  SeAliasPrintOpsSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
132  SeAliasBackupOpsSid = ExAllocatePoolWithTag(PagedPool, SidLength2, TAG_SID);
133  SeAuthenticatedUsersSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
134  SeRestrictedSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
135  SeAnonymousLogonSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
136  SeLocalServiceSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
137  SeNetworkServiceSid = ExAllocatePoolWithTag(PagedPool, SidLength1, TAG_SID);
138 
139  if (SeNullSid == NULL || SeWorldSid == NULL ||
140  SeLocalSid == NULL || SeCreatorOwnerSid == NULL ||
141  SeCreatorGroupSid == NULL || SeCreatorOwnerServerSid == NULL ||
142  SeCreatorGroupServerSid == NULL || SeNtAuthoritySid == NULL ||
143  SeDialupSid == NULL || SeNetworkSid == NULL || SeBatchSid == NULL ||
144  SeInteractiveSid == NULL || SeServiceSid == NULL ||
145  SePrincipalSelfSid == NULL || SeLocalSystemSid == NULL ||
146  SeAuthenticatedUserSid == NULL || SeRestrictedCodeSid == NULL ||
147  SeAliasAdminsSid == NULL || SeAliasUsersSid == NULL ||
148  SeAliasGuestsSid == NULL || SeAliasPowerUsersSid == NULL ||
149  SeAliasAccountOpsSid == NULL || SeAliasSystemOpsSid == NULL ||
150  SeAliasPrintOpsSid == NULL || SeAliasBackupOpsSid == NULL ||
151  SeAuthenticatedUsersSid == NULL || SeRestrictedSid == NULL ||
152  SeAnonymousLogonSid == NULL || SeLocalServiceSid == NULL ||
153  SeNetworkServiceSid == NULL)
154  {
155  FreeInitializedSids();
156  return FALSE;
157  }
158 
159  RtlInitializeSid(SeNullSid, &SeNullSidAuthority, 1);
160  RtlInitializeSid(SeWorldSid, &SeWorldSidAuthority, 1);
161  RtlInitializeSid(SeLocalSid, &SeLocalSidAuthority, 1);
162  RtlInitializeSid(SeCreatorOwnerSid, &SeCreatorSidAuthority, 1);
163  RtlInitializeSid(SeCreatorGroupSid, &SeCreatorSidAuthority, 1);
164  RtlInitializeSid(SeCreatorOwnerServerSid, &SeCreatorSidAuthority, 1);
165  RtlInitializeSid(SeCreatorGroupServerSid, &SeCreatorSidAuthority, 1);
166  RtlInitializeSid(SeNtAuthoritySid, &SeNtSidAuthority, 0);
167  RtlInitializeSid(SeDialupSid, &SeNtSidAuthority, 1);
168  RtlInitializeSid(SeNetworkSid, &SeNtSidAuthority, 1);
169  RtlInitializeSid(SeBatchSid, &SeNtSidAuthority, 1);
170  RtlInitializeSid(SeInteractiveSid, &SeNtSidAuthority, 1);
171  RtlInitializeSid(SeServiceSid, &SeNtSidAuthority, 1);
172  RtlInitializeSid(SePrincipalSelfSid, &SeNtSidAuthority, 1);
173  RtlInitializeSid(SeLocalSystemSid, &SeNtSidAuthority, 1);
174  RtlInitializeSid(SeAuthenticatedUserSid, &SeNtSidAuthority, 1);
175  RtlInitializeSid(SeRestrictedCodeSid, &SeNtSidAuthority, 1);
176  RtlInitializeSid(SeAliasAdminsSid, &SeNtSidAuthority, 2);
177  RtlInitializeSid(SeAliasUsersSid, &SeNtSidAuthority, 2);
178  RtlInitializeSid(SeAliasGuestsSid, &SeNtSidAuthority, 2);
179  RtlInitializeSid(SeAliasPowerUsersSid, &SeNtSidAuthority, 2);
180  RtlInitializeSid(SeAliasAccountOpsSid, &SeNtSidAuthority, 2);
181  RtlInitializeSid(SeAliasSystemOpsSid, &SeNtSidAuthority, 2);
182  RtlInitializeSid(SeAliasPrintOpsSid, &SeNtSidAuthority, 2);
183  RtlInitializeSid(SeAliasBackupOpsSid, &SeNtSidAuthority, 2);
184  RtlInitializeSid(SeAuthenticatedUsersSid, &SeNtSidAuthority, 1);
185  RtlInitializeSid(SeRestrictedSid, &SeNtSidAuthority, 1);
186  RtlInitializeSid(SeAnonymousLogonSid, &SeNtSidAuthority, 1);
187  RtlInitializeSid(SeLocalServiceSid, &SeNtSidAuthority, 1);
188  RtlInitializeSid(SeNetworkServiceSid, &SeNtSidAuthority, 1);
189 
190  SubAuthority = RtlSubAuthoritySid(SeNullSid, 0);
191  *SubAuthority = SECURITY_NULL_RID;
192  SubAuthority = RtlSubAuthoritySid(SeWorldSid, 0);
193  *SubAuthority = SECURITY_WORLD_RID;
194  SubAuthority = RtlSubAuthoritySid(SeLocalSid, 0);
195  *SubAuthority = SECURITY_LOCAL_RID;
196  SubAuthority = RtlSubAuthoritySid(SeCreatorOwnerSid, 0);
197  *SubAuthority = SECURITY_CREATOR_OWNER_RID;
198  SubAuthority = RtlSubAuthoritySid(SeCreatorGroupSid, 0);
199  *SubAuthority = SECURITY_CREATOR_GROUP_RID;
200  SubAuthority = RtlSubAuthoritySid(SeCreatorOwnerServerSid, 0);
201  *SubAuthority = SECURITY_CREATOR_OWNER_SERVER_RID;
202  SubAuthority = RtlSubAuthoritySid(SeCreatorGroupServerSid, 0);
203  *SubAuthority = SECURITY_CREATOR_GROUP_SERVER_RID;
204  SubAuthority = RtlSubAuthoritySid(SeDialupSid, 0);
205  *SubAuthority = SECURITY_DIALUP_RID;
206  SubAuthority = RtlSubAuthoritySid(SeNetworkSid, 0);
207  *SubAuthority = SECURITY_NETWORK_RID;
208  SubAuthority = RtlSubAuthoritySid(SeBatchSid, 0);
209  *SubAuthority = SECURITY_BATCH_RID;
210  SubAuthority = RtlSubAuthoritySid(SeInteractiveSid, 0);
211  *SubAuthority = SECURITY_INTERACTIVE_RID;
212  SubAuthority = RtlSubAuthoritySid(SeServiceSid, 0);
213  *SubAuthority = SECURITY_SERVICE_RID;
214  SubAuthority = RtlSubAuthoritySid(SePrincipalSelfSid, 0);
215  *SubAuthority = SECURITY_PRINCIPAL_SELF_RID;
216  SubAuthority = RtlSubAuthoritySid(SeLocalSystemSid, 0);
217  *SubAuthority = SECURITY_LOCAL_SYSTEM_RID;
218  SubAuthority = RtlSubAuthoritySid(SeAuthenticatedUserSid, 0);
219  *SubAuthority = SECURITY_AUTHENTICATED_USER_RID;
220  SubAuthority = RtlSubAuthoritySid(SeRestrictedCodeSid, 0);
221  *SubAuthority = SECURITY_RESTRICTED_CODE_RID;
222  SubAuthority = RtlSubAuthoritySid(SeAliasAdminsSid, 0);
223  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
224  SubAuthority = RtlSubAuthoritySid(SeAliasAdminsSid, 1);
225  *SubAuthority = DOMAIN_ALIAS_RID_ADMINS;
226  SubAuthority = RtlSubAuthoritySid(SeAliasUsersSid, 0);
227  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
228  SubAuthority = RtlSubAuthoritySid(SeAliasUsersSid, 1);
229  *SubAuthority = DOMAIN_ALIAS_RID_USERS;
230  SubAuthority = RtlSubAuthoritySid(SeAliasGuestsSid, 0);
231  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
232  SubAuthority = RtlSubAuthoritySid(SeAliasGuestsSid, 1);
233  *SubAuthority = DOMAIN_ALIAS_RID_GUESTS;
234  SubAuthority = RtlSubAuthoritySid(SeAliasPowerUsersSid, 0);
235  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
236  SubAuthority = RtlSubAuthoritySid(SeAliasPowerUsersSid, 1);
237  *SubAuthority = DOMAIN_ALIAS_RID_POWER_USERS;
238  SubAuthority = RtlSubAuthoritySid(SeAliasAccountOpsSid, 0);
239  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
240  SubAuthority = RtlSubAuthoritySid(SeAliasAccountOpsSid, 1);
241  *SubAuthority = DOMAIN_ALIAS_RID_ACCOUNT_OPS;
242  SubAuthority = RtlSubAuthoritySid(SeAliasSystemOpsSid, 0);
243  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
244  SubAuthority = RtlSubAuthoritySid(SeAliasSystemOpsSid, 1);
245  *SubAuthority = DOMAIN_ALIAS_RID_SYSTEM_OPS;
246  SubAuthority = RtlSubAuthoritySid(SeAliasPrintOpsSid, 0);
247  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
248  SubAuthority = RtlSubAuthoritySid(SeAliasPrintOpsSid, 1);
249  *SubAuthority = DOMAIN_ALIAS_RID_PRINT_OPS;
250  SubAuthority = RtlSubAuthoritySid(SeAliasBackupOpsSid, 0);
251  *SubAuthority = SECURITY_BUILTIN_DOMAIN_RID;
252  SubAuthority = RtlSubAuthoritySid(SeAliasBackupOpsSid, 1);
253  *SubAuthority = DOMAIN_ALIAS_RID_BACKUP_OPS;
254  SubAuthority = RtlSubAuthoritySid(SeAuthenticatedUsersSid, 0);
255  *SubAuthority = SECURITY_AUTHENTICATED_USER_RID;
256  SubAuthority = RtlSubAuthoritySid(SeRestrictedSid, 0);
257  *SubAuthority = SECURITY_RESTRICTED_CODE_RID;
258  SubAuthority = RtlSubAuthoritySid(SeAnonymousLogonSid, 0);
259  *SubAuthority = SECURITY_ANONYMOUS_LOGON_RID;
260  SubAuthority = RtlSubAuthoritySid(SeLocalServiceSid, 0);
261  *SubAuthority = SECURITY_LOCAL_SERVICE_RID;
262  SubAuthority = RtlSubAuthoritySid(SeNetworkServiceSid, 0);
263  *SubAuthority = SECURITY_NETWORK_SERVICE_RID;
264 
265  return TRUE;
266 }
267 
268 NTSTATUS
269 NTAPI
270 SepCaptureSid(IN PSID InputSid,
271  IN KPROCESSOR_MODE AccessMode,
272  IN POOL_TYPE PoolType,
273  IN BOOLEAN CaptureIfKernel,
274  OUT PSID *CapturedSid)
275 {
276  ULONG SidSize = 0;
277  PISID NewSid, Sid = (PISID)InputSid;
278 
279  PAGED_CODE();
280 
281  if (AccessMode != KernelMode)
282  {
283  _SEH2_TRY
284  {
285  ProbeForRead(Sid, FIELD_OFFSET(SID, SubAuthority), sizeof(UCHAR));
286  SidSize = RtlLengthRequiredSid(Sid->SubAuthorityCount);
287  ProbeForRead(Sid, SidSize, sizeof(UCHAR));
288  }
289  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
290  {
291  /* Return the exception code */
292  _SEH2_YIELD(return _SEH2_GetExceptionCode());
293  }
294  _SEH2_END;
295 
296  /* Allocate a SID and copy it */
297  NewSid = ExAllocatePoolWithTag(PoolType, SidSize, TAG_SID);
298  if (!NewSid)
299  return STATUS_INSUFFICIENT_RESOURCES;
300 
301  _SEH2_TRY
302  {
303  RtlCopyMemory(NewSid, Sid, SidSize);
304 
305  *CapturedSid = NewSid;
306  }
307  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
308  {
309  /* Free the SID and return the exception code */
310  ExFreePoolWithTag(NewSid, TAG_SID);
311  _SEH2_YIELD(return _SEH2_GetExceptionCode());
312  }
313  _SEH2_END;
314  }
315  else if (!CaptureIfKernel)
316  {
317  *CapturedSid = InputSid;
318  }
319  else
320  {
321  SidSize = RtlLengthRequiredSid(Sid->SubAuthorityCount);
322 
323  /* Allocate a SID and copy it */
324  NewSid = ExAllocatePoolWithTag(PoolType, SidSize, TAG_SID);
325  if (NewSid == NULL)
326  return STATUS_INSUFFICIENT_RESOURCES;
327 
328  RtlCopyMemory(NewSid, Sid, SidSize);
329 
330  *CapturedSid = NewSid;
331  }
332 
333  return STATUS_SUCCESS;
334 }
335 
336 VOID
337 NTAPI
338 SepReleaseSid(IN PSID CapturedSid,
339  IN KPROCESSOR_MODE AccessMode,
340  IN BOOLEAN CaptureIfKernel)
341 {
342  PAGED_CODE();
343 
344  if (CapturedSid != NULL &&
345  (AccessMode != KernelMode ||
346  (AccessMode == KernelMode && CaptureIfKernel)))
347  {
348  ExFreePoolWithTag(CapturedSid, TAG_SID);
349  }
350 }
351 
352 NTSTATUS
353 NTAPI
354 SeCaptureSidAndAttributesArray(
355  _In_ PSID_AND_ATTRIBUTES SrcSidAndAttributes,
356  _In_ ULONG AttributeCount,
357  _In_ KPROCESSOR_MODE PreviousMode,
358  _In_opt_ PVOID AllocatedMem,
359  _In_ ULONG AllocatedLength,
360  _In_ POOL_TYPE PoolType,
361  _In_ BOOLEAN CaptureIfKernel,
362  _Out_ PSID_AND_ATTRIBUTES *CapturedSidAndAttributes,
363  _Out_ PULONG ResultLength)
364 {
365  ULONG ArraySize, RequiredLength, SidLength, i;
366  PSID_AND_ATTRIBUTES SidAndAttributes;
367  PUCHAR CurrentDest;
368  PISID Sid;
369  NTSTATUS Status;
370  PAGED_CODE();
371 
372  *CapturedSidAndAttributes = NULL;
373  *ResultLength = 0;
374 
375  if (AttributeCount == 0)
376  {
377  return STATUS_SUCCESS;
378  }
379 
380  if (AttributeCount > 0x1000)
381  {
382  return STATUS_INVALID_PARAMETER;
383  }
384 
385  if ((PreviousMode == KernelMode) && !CaptureIfKernel)
386  {
387  *CapturedSidAndAttributes = SrcSidAndAttributes;
388  return STATUS_SUCCESS;
389  }
390 
391  ArraySize = AttributeCount * sizeof(SID_AND_ATTRIBUTES);
392  RequiredLength = ALIGN_UP_BY(ArraySize, sizeof(ULONG));
393 
394  /* Check for user mode data */
395  if (PreviousMode != KernelMode)
396  {
397  _SEH2_TRY
398  {
399  /* First probe the whole array */
400  ProbeForRead(SrcSidAndAttributes, ArraySize, sizeof(ULONG));
401 
402  /* Loop the array elements */
403  for (i = 0; i < AttributeCount; i++)
404  {
405  /* Get the SID and probe the minimal structure */
406  Sid = SrcSidAndAttributes[i].Sid;
407  ProbeForRead(Sid, sizeof(*Sid), sizeof(ULONG));
408 
409  /* Verify that the SID is valid */
410  if (((Sid->Revision & 0xF) != SID_REVISION) ||
411  (Sid->SubAuthorityCount > SID_MAX_SUB_AUTHORITIES))
412  {
413  _SEH2_YIELD(return STATUS_INVALID_SID);
414  }
415 
416  /* Calculate the SID length and probe the full SID */
417  SidLength = RtlLengthRequiredSid(Sid->SubAuthorityCount);
418  ProbeForRead(Sid, SidLength, sizeof(ULONG));
419 
420  /* Add the aligned length to the required length */
421  RequiredLength += ALIGN_UP_BY(SidLength, sizeof(ULONG));
422  }
423  }
424  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
425  {
426  _SEH2_YIELD(return _SEH2_GetExceptionCode());
427  }
428  _SEH2_END;
429  }
430  else
431  {
432  /* Loop the array elements */
433  for (i = 0; i < AttributeCount; i++)
434  {
435  /* Get the SID and it's length */
436  Sid = SrcSidAndAttributes[i].Sid;
437  SidLength = RtlLengthRequiredSid(Sid->SubAuthorityCount);
438 
439  /* Add the aligned length to the required length */
440  RequiredLength += ALIGN_UP_BY(SidLength, sizeof(ULONG));
441  }
442  }
443 
444  /* Assume success */
445  Status = STATUS_SUCCESS;
446  *ResultLength = RequiredLength;
447 
448  /* Check if we have no buffer */
449  if (AllocatedMem == NULL)
450  {
451  /* Allocate a new buffer */
452  SidAndAttributes = ExAllocatePoolWithTag(PoolType,
453  RequiredLength,
454  TAG_SID_AND_ATTRIBUTES);
455  if (SidAndAttributes == NULL)
456  {
457  return STATUS_INSUFFICIENT_RESOURCES;
458  }
459  }
460  /* Otherwise check if the buffer is large enough */
461  else if (AllocatedLength >= RequiredLength)
462  {
463  /* Buffer is large enough, use it */
464  SidAndAttributes = AllocatedMem;
465  }
466  else
467  {
468  /* Buffer is too small, fail */
469  return STATUS_BUFFER_TOO_SMALL;
470  }
471 
472  *CapturedSidAndAttributes = SidAndAttributes;
473 
474  /* Check again for user mode */
475  if (PreviousMode != KernelMode)
476  {
477  _SEH2_TRY
478  {
479  /* The rest of the data starts after the array */
480  CurrentDest = (PUCHAR)SidAndAttributes;
481  CurrentDest += ALIGN_UP_BY(ArraySize, sizeof(ULONG));
482 
483  /* Loop the array elements */
484  for (i = 0; i < AttributeCount; i++)
485  {
486  /* Get the SID and it's length */
487  Sid = SrcSidAndAttributes[i].Sid;
488  SidLength = RtlLengthRequiredSid(Sid->SubAuthorityCount);
489 
490  /* Copy attributes */
491  SidAndAttributes[i].Attributes = SrcSidAndAttributes[i].Attributes;
492 
493  /* Copy the SID to the current destination address */
494  SidAndAttributes[i].Sid = (PSID)CurrentDest;
495  RtlCopyMemory(CurrentDest, SrcSidAndAttributes[i].Sid, SidLength);
496 
497  /* Sanity checks */
498  ASSERT(RtlLengthSid(SidAndAttributes[i].Sid) == SidLength);
499  ASSERT(RtlValidSid(SidAndAttributes[i].Sid));
500 
501  /* Update the current destination address */
502  CurrentDest += ALIGN_UP_BY(SidLength, sizeof(ULONG));
503  }
504  }
505  _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
506  {
507  Status = _SEH2_GetExceptionCode();
508  }
509  _SEH2_END;
510  }
511  else
512  {
513  /* The rest of the data starts after the array */
514  CurrentDest = (PUCHAR)SidAndAttributes;
515  CurrentDest += ALIGN_UP_BY(ArraySize, sizeof(ULONG));
516 
517  /* Loop the array elements */
518  for (i = 0; i < AttributeCount; i++)
519  {
520  /* Get the SID and it's length */
521  Sid = SrcSidAndAttributes[i].Sid;
522  SidLength = RtlLengthRequiredSid(Sid->SubAuthorityCount);
523 
524  /* Copy attributes */
525  SidAndAttributes[i].Attributes = SrcSidAndAttributes[i].Attributes;
526 
527  /* Copy the SID to the current destination address */
528  SidAndAttributes[i].Sid = (PSID)CurrentDest;
529  RtlCopyMemory(CurrentDest, SrcSidAndAttributes[i].Sid, SidLength);
530 
531  /* Update the current destination address */
532  CurrentDest += ALIGN_UP_BY(SidLength, sizeof(ULONG));
533  }
534  }
535 
536  /* Check for failure */
537  if (!NT_SUCCESS(Status))
538  {
539  /* Check if we allocated a new array */
540  if (SidAndAttributes != AllocatedMem)
541  {
542  /* Free the array */
543  ExFreePoolWithTag(SidAndAttributes, TAG_SID_AND_ATTRIBUTES);
544  }
545 
546  /* Set returned address to NULL */
547  *CapturedSidAndAttributes = NULL ;
548  }
549 
550  return Status;
551 }
552 
553 VOID
554 NTAPI
555 SeReleaseSidAndAttributesArray(
556  _In_ _Post_invalid_ PSID_AND_ATTRIBUTES CapturedSidAndAttributes,
557  _In_ KPROCESSOR_MODE AccessMode,
558  _In_ BOOLEAN CaptureIfKernel)
559 {
560  PAGED_CODE();
561 
562  if ((CapturedSidAndAttributes != NULL) &&
563  ((AccessMode != KernelMode) || CaptureIfKernel))
564  {
565  ExFreePoolWithTag(CapturedSidAndAttributes, TAG_SID_AND_ATTRIBUTES);
566  }
567 }
568 
569 
570 /* EOF */
SeLocalServiceSid
PSID SeLocalServiceSid
Definition: sid.c:54
SECURITY_BATCH_RID
#define SECURITY_BATCH_RID
Definition: setypes.h:530
IN
#define IN
Definition: typedefs.h:39
SECURITY_AUTHENTICATED_USER_RID
#define SECURITY_AUTHENTICATED_USER_RID
Definition: setypes.h:540
SECURITY_LOCAL_SYSTEM_RID
#define SECURITY_LOCAL_SYSTEM_RID
Definition: setypes.h:546
DOMAIN_ALIAS_RID_GUESTS
#define DOMAIN_ALIAS_RID_GUESTS
Definition: setypes.h:626
SeAliasPrintOpsSid
PSID SeAliasPrintOpsSid
Definition: sid.c:49
STATUS_INSUFFICIENT_RESOURCES
#define STATUS_INSUFFICIENT_RESOURCES
Definition: udferr_usr.h:158
_SID_AND_ATTRIBUTES::Sid
PSID Sid
Definition: setypes.h:478
_Post_invalid_
#define _Post_invalid_
Definition: no_sal2.h:524
FreeInitializedSids
VOID NTAPI FreeInitializedSids(VOID)
Definition: sid.c:61
_SID
Definition: ms-dtyp.idl:198
SeAnonymousLogonSid
PSID SeAnonymousLogonSid
Definition: sid.c:53
SeBatchSid
PSID SeBatchSid
Definition: sid.c:36
TRUE
#define TRUE
Definition: types.h:120
STATUS_INVALID_PARAMETER
#define STATUS_INVALID_PARAMETER
Definition: udferr_usr.h:135
SeLocalSystemSid
PSID SeLocalSystemSid
Definition: sid.c:40
SeAliasAdminsSid
PSID SeAliasAdminsSid
Definition: sid.c:43
DOMAIN_ALIAS_RID_ACCOUNT_OPS
#define DOMAIN_ALIAS_RID_ACCOUNT_OPS
Definition: setypes.h:629
SeDialupSid
PSID SeDialupSid
Definition: sid.c:34
SECURITY_DIALUP_RID
#define SECURITY_DIALUP_RID
Definition: setypes.h:528
PUCHAR
unsigned char * PUCHAR
Definition: retypes.h:3
SID_REVISION
#define SID_REVISION
Definition: setypes.h:453
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
SeReleaseSidAndAttributesArray
VOID NTAPI SeReleaseSidAndAttributesArray(_In_ _Post_invalid_ PSID_AND_ATTRIBUTES CapturedSidAndAttributes, _In_ KPROCESSOR_MODE AccessMode, _In_ BOOLEAN CaptureIfKernel)
Definition: sid.c:555
SECURITY_NETWORK_RID
#define SECURITY_NETWORK_RID
Definition: setypes.h:529
TAG_SID
#define TAG_SID
Definition: sid.c:15
DOMAIN_ALIAS_RID_POWER_USERS
#define DOMAIN_ALIAS_RID_POWER_USERS
Definition: setypes.h:627
SECURITY_INTERACTIVE_RID
#define SECURITY_INTERACTIVE_RID
Definition: setypes.h:531
SECURITY_NULL_SID_AUTHORITY
#define SECURITY_NULL_SID_AUTHORITY
Definition: setypes.h:496
SeAliasBackupOpsSid
PSID SeAliasBackupOpsSid
Definition: sid.c:50
_In_opt_
#define _In_opt_
Definition: no_sal2.h:212
STATUS_BUFFER_TOO_SMALL
#define STATUS_BUFFER_TOO_SMALL
Definition: shellext.h:69
_SEH2_TRY
_SEH2_TRY
Definition: create.c:4226
SePrincipalSelfSid
PSID SePrincipalSelfSid
Definition: sid.c:39
RtlSubAuthoritySid
PULONG NTAPI RtlSubAuthoritySid(IN PSID Sid_, IN ULONG SubAuthority)
Definition: sid.c:89
SepCaptureSid
NTSTATUS NTAPI SepCaptureSid(IN PSID InputSid, IN KPROCESSOR_MODE AccessMode, IN POOL_TYPE PoolType, IN BOOLEAN CaptureIfKernel, OUT PSID *CapturedSid)
Definition: sid.c:270
SECURITY_PRINCIPAL_SELF_RID
#define SECURITY_PRINCIPAL_SELF_RID
Definition: setypes.h:539
SeCreatorOwnerServerSid
PSID SeCreatorOwnerServerSid
Definition: sid.c:31
NTAPI
NTSTATUS(* NTAPI)(IN PFILE_FULL_EA_INFORMATION EaBuffer, IN ULONG EaLength, OUT PULONG ErrorOffset)
Definition: IoEaTest.cpp:117
FALSE
#define FALSE
Definition: types.h:117
SeCreatorSidAuthority
SID_IDENTIFIER_AUTHORITY SeCreatorSidAuthority
Definition: sid.c:23
SECURITY_LOCAL_SID_AUTHORITY
#define SECURITY_LOCAL_SID_AUTHORITY
Definition: setypes.h:502
PISID
struct _SID * PISID
SepInitSecurityIDs
BOOLEAN NTAPI SepInitSecurityIDs(VOID)
Definition: sid.c:96
AccessMode
_In_ PEPROCESS _In_ KPROCESSOR_MODE AccessMode
Definition: mmfuncs.h:395
EXCEPTION_EXECUTE_HANDLER
#define EXCEPTION_EXECUTE_HANDLER
Definition: excpt.h:85
BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185
SID_MAX_SUB_AUTHORITIES
#define SID_MAX_SUB_AUTHORITIES
Definition: setypes.h:454
RtlLengthSid
ULONG NTAPI RtlLengthSid(IN PSID Sid_)
Definition: sid.c:150
_Out_
#define _Out_
Definition: no_sal2.h:160
Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103
STATUS_INVALID_SID
#define STATUS_INVALID_SID
Definition: ntstatus.h:356
SECURITY_LOCAL_SERVICE_RID
#define SECURITY_LOCAL_SERVICE_RID
Definition: setypes.h:547
SepReleaseSid
VOID NTAPI SepReleaseSid(IN PSID CapturedSid, IN KPROCESSOR_MODE AccessMode, IN BOOLEAN CaptureIfKernel)
Definition: sid.c:338
SECURITY_NT_AUTHORITY
#define SECURITY_NT_AUTHORITY
Definition: setypes.h:526
RtlValidSid
BOOLEAN NTAPI RtlValidSid(IN PSID Sid_)
Definition: sid.c:21
Status
Status
Definition: gdiplustypes.h:24
TAG_SID_AND_ATTRIBUTES
#define TAG_SID_AND_ATTRIBUTES
Definition: sid.c:16
PreviousMode
_In_ KPROCESSOR_MODE PreviousMode
Definition: sefuncs.h:103
SECURITY_CREATOR_GROUP_SERVER_RID
#define SECURITY_CREATOR_GROUP_SERVER_RID
Definition: setypes.h:520
SECURITY_BUILTIN_DOMAIN_RID
#define SECURITY_BUILTIN_DOMAIN_RID
Definition: setypes.h:553
_SEH2_YIELD
#define _SEH2_YIELD(STMT_)
Definition: pseh2_64.h:8
ASSERT
#define ASSERT(a)
Definition: mode.c:45
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
DOMAIN_ALIAS_RID_BACKUP_OPS
#define DOMAIN_ALIAS_RID_BACKUP_OPS
Definition: setypes.h:632
SECURITY_WORLD_SID_AUTHORITY
#define SECURITY_WORLD_SID_AUTHORITY
Definition: setypes.h:499
POOL_TYPE
INT POOL_TYPE
Definition: typedefs.h:78
SeServiceSid
PSID SeServiceSid
Definition: sid.c:38
_SID_AND_ATTRIBUTES
Definition: setypes.h:474
SID_AND_ATTRIBUTES
struct _SID_AND_ATTRIBUTES SID_AND_ATTRIBUTES
DOMAIN_ALIAS_RID_SYSTEM_OPS
#define DOMAIN_ALIAS_RID_SYSTEM_OPS
Definition: setypes.h:630
SECURITY_LOCAL_RID
#define SECURITY_LOCAL_RID
Definition: setypes.h:514
SeWorldSidAuthority
SID_IDENTIFIER_AUTHORITY SeWorldSidAuthority
Definition: sid.c:21
CODE_SEG
CODE_SEG("INIT")
Definition: fsrtlpc.c:19
KPROCESSOR_MODE
CCHAR KPROCESSOR_MODE
Definition: ketypes.h:7
SECURITY_WORLD_RID
#define SECURITY_WORLD_RID
Definition: setypes.h:513
SeCaptureSidAndAttributesArray
NTSTATUS NTAPI SeCaptureSidAndAttributesArray(_In_ PSID_AND_ATTRIBUTES SrcSidAndAttributes, _In_ ULONG AttributeCount, _In_ KPROCESSOR_MODE PreviousMode, _In_opt_ PVOID AllocatedMem, _In_ ULONG AllocatedLength, _In_ POOL_TYPE PoolType, _In_ BOOLEAN CaptureIfKernel, _Out_ PSID_AND_ATTRIBUTES *CapturedSidAndAttributes, _Out_ PULONG ResultLength)
Definition: sid.c:354
SECURITY_ANONYMOUS_LOGON_RID
#define SECURITY_ANONYMOUS_LOGON_RID
Definition: setypes.h:535
SeAliasUsersSid
PSID SeAliasUsersSid
Definition: sid.c:44
SeAliasGuestsSid
PSID SeAliasGuestsSid
Definition: sid.c:45
PSID
struct _SID * PSID
Definition: eventlog.c:35
SECURITY_CREATOR_OWNER_RID
#define SECURITY_CREATOR_OWNER_RID
Definition: setypes.h:517
ExAllocatePoolWithTag
#define ExAllocatePoolWithTag(hernya, size, tag)
Definition: env_spec_w32.h:350
SECURITY_NULL_RID
#define SECURITY_NULL_RID
Definition: setypes.h:512
UCHAR
unsigned char UCHAR
Definition: xmlstorage.h:181
SeAuthenticatedUserSid
PSID SeAuthenticatedUserSid
Definition: sid.c:41
ProbeForRead
VOID NTAPI ProbeForRead(IN CONST VOID *Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:102
SeWorldSid
PSID SeWorldSid
Definition: sid.c:27
RtlLengthRequiredSid
ULONG NTAPI RtlLengthRequiredSid(IN ULONG SubAuthorityCount)
Definition: sid.c:54
SeLocalSid
PSID SeLocalSid
Definition: sid.c:28
_SID_IDENTIFIER_AUTHORITY
Definition: ms-dtyp.idl:194
SeAuthenticatedUsersSid
PSID SeAuthenticatedUsersSid
Definition: sid.c:51
SeAliasPowerUsersSid
PSID SeAliasPowerUsersSid
Definition: sid.c:46
SECURITY_NETWORK_SERVICE_RID
#define SECURITY_NETWORK_SERVICE_RID
Definition: setypes.h:548
_In_
#define _In_
Definition: no_sal2.h:158
SeNetworkSid
PSID SeNetworkSid
Definition: sid.c:35
SeNullSidAuthority
SID_IDENTIFIER_AUTHORITY SeNullSidAuthority
Definition: sid.c:20
SECURITY_CREATOR_GROUP_RID
#define SECURITY_CREATOR_GROUP_RID
Definition: setypes.h:518
_SEH2_END
_SEH2_END
Definition: create.c:4400
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
RtlInitializeSid
NTSTATUS NTAPI RtlInitializeSid(IN PSID Sid_, IN PSID_IDENTIFIER_AUTHORITY IdentifierAuthority, IN UCHAR SubAuthorityCount)
Definition: sid.c:68
DOMAIN_ALIAS_RID_USERS
#define DOMAIN_ALIAS_RID_USERS
Definition: setypes.h:625
_SID_AND_ATTRIBUTES::Attributes
$ULONG Attributes
Definition: setypes.h:480
FIELD_OFFSET
#define FIELD_OFFSET(t, f)
Definition: typedefs.h:255
RequiredLength
_In_ ULONG _Out_opt_ PULONG RequiredLength
Definition: wmifuncs.h:29
_SID::SubAuthorityCount
BYTE SubAuthorityCount
Definition: ms-dtyp.idl:200
PULONG
unsigned int * PULONG
Definition: retypes.h:1
SECURITY_RESTRICTED_CODE_RID
#define SECURITY_RESTRICTED_CODE_RID
Definition: setypes.h:541
NULL
#define NULL
Definition: types.h:112
SeCreatorGroupSid
PSID SeCreatorGroupSid
Definition: sid.c:30
SeRestrictedSid
PSID SeRestrictedSid
Definition: sid.c:52
SeCreatorGroupServerSid
PSID SeCreatorGroupServerSid
Definition: sid.c:32
SeNetworkServiceSid
PSID SeNetworkServiceSid
Definition: sid.c:55
SECURITY_CREATOR_OWNER_SERVER_RID
#define SECURITY_CREATOR_OWNER_SERVER_RID
Definition: setypes.h:519
SeRestrictedCodeSid
PSID SeRestrictedCodeSid
Definition: sid.c:42
DOMAIN_ALIAS_RID_PRINT_OPS
#define DOMAIN_ALIAS_RID_PRINT_OPS
Definition: setypes.h:631
OUT
#define OUT
Definition: typedefs.h:40
SECURITY_SERVICE_RID
#define SECURITY_SERVICE_RID
Definition: setypes.h:534
PoolType
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ _Strict_type_match_ POOL_TYPE PoolType
Definition: wdfdevice.h:3810
ULONG
unsigned int ULONG
Definition: retypes.h:1
ALIGN_UP_BY
#define ALIGN_UP_BY(size, align)
Definition: GetWindowPlacement.c:13
SeLocalSidAuthority
SID_IDENTIFIER_AUTHORITY SeLocalSidAuthority
Definition: sid.c:22
RtlCopyMemory
#define RtlCopyMemory(Destination, Source, Length)
Definition: typedefs.h:263
ResultLength
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ ULONG _Out_ PULONG ResultLength
Definition: wdfdevice.h:3776
_SEH2_EXCEPT
#define _SEH2_EXCEPT(...)
Definition: pseh2_64.h:6
_SID::Revision
BYTE Revision
Definition: ms-dtyp.idl:199
SeCreatorOwnerSid
PSID SeCreatorOwnerSid
Definition: sid.c:29
SeAliasSystemOpsSid
PSID SeAliasSystemOpsSid
Definition: sid.c:48
STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65
ExFreePoolWithTag
#define ExFreePoolWithTag(_P, _T)
Definition: module.h:1099
_SEH2_GetExceptionCode
#define _SEH2_GetExceptionCode()
Definition: pseh2_64.h:12
SeInteractiveSid
PSID SeInteractiveSid
Definition: sid.c:37
SeNullSid
PSID SeNullSid
Definition: sid.c:26
SeNtSidAuthority
SID_IDENTIFIER_AUTHORITY SeNtSidAuthority
Definition: sid.c:24
NewSid
_In_ PSID _In_ PSID NewSid
Definition: rtlfuncs.h:2815
DOMAIN_ALIAS_RID_ADMINS
#define DOMAIN_ALIAS_RID_ADMINS
Definition: setypes.h:624
SECURITY_CREATOR_SID_AUTHORITY
#define SECURITY_CREATOR_SID_AUTHORITY
Definition: setypes.h:505
SeNtAuthoritySid
PSID SeNtAuthoritySid
Definition: sid.c:33
PAGED_CODE
#define PAGED_CODE()
Definition: Bus_PDO_QueryResourceRequirements.c:89
SeAliasAccountOpsSid
PSID SeAliasAccountOpsSid
Definition: sid.c:47