de/dc4/ntoskrnl_2se_2access_8c_source.html

 /*
  * PROJECT:         ReactOS Kernel
  * LICENSE:         GPL-2.0-or-later (https://spdx.org/licenses/GPL-2.0-or-later)
  * PURPOSE:         Security access state functions support
  * COPYRIGHT:       Copyright Alex Ionescu <alex@relsoft.net>
  */

 /* INCLUDES *******************************************************************/

 #include <ntoskrnl.h>
 #define NDEBUG
 #include <debug.h>

 /* GLOBALS ********************************************************************/

 ERESOURCE SepSubjectContextLock;

 /* PRIVATE FUNCTIONS **********************************************************/

 BOOLEAN
 NTAPI
 SepSidInTokenEx(
     _In_ PACCESS_TOKEN _Token,
     _In_ PSID PrincipalSelfSid,
     _In_ PSID _Sid,
     _In_ BOOLEAN Deny,
     _In_ BOOLEAN Restricted)
 {
     ULONG SidIndex;
     PTOKEN Token = (PTOKEN)_Token;
     PISID TokenSid, Sid = (PISID)_Sid;
     PSID_AND_ATTRIBUTES SidAndAttributes;
     ULONG SidCount, SidLength;
     USHORT SidMetadata;
     PAGED_CODE();

     /* Check if a principal SID was given, and this is our current SID already */
     if ((PrincipalSelfSid) && (RtlEqualSid(SePrincipalSelfSid, Sid)))
     {
         /* Just use the principal SID in this case */
         Sid = PrincipalSelfSid;
     }

     /* Check if this is a restricted token or not */
     if (Restricted)
     {
         /* Use the restricted SIDs and count */
         SidAndAttributes = Token->RestrictedSids;
         SidCount = Token->RestrictedSidCount;
     }
     else
     {
         /* Use the normal SIDs and count */
         SidAndAttributes = Token->UserAndGroups;
         SidCount = Token->UserAndGroupCount;
     }

     /* Do checks here by hand instead of the usual 4 function calls */
     SidLength = FIELD_OFFSET(SID,
                              SubAuthority[Sid->SubAuthorityCount]);
     SidMetadata = *(PUSHORT)&Sid->Revision;

     /* Loop every SID */
     for (SidIndex = 0; SidIndex < SidCount; SidIndex++)
     {
         TokenSid = (PISID)SidAndAttributes->Sid;
 #if SE_SID_DEBUG
         UNICODE_STRING sidString;
         RtlConvertSidToUnicodeString(&sidString, TokenSid, TRUE);
         DPRINT1("SID in Token: %wZ\n", &sidString);
         RtlFreeUnicodeString(&sidString);
 #endif
         /* Check if the SID metadata matches */
         if (*(PUSHORT)&TokenSid->Revision == SidMetadata)
         {
             /* Check if the SID data matches */
             if (RtlEqualMemory(Sid, TokenSid, SidLength))
             {
                 /*
                  * Check if the group is enabled, or used for deny only.
                  * Otherwise we have to check if this is the first user.
                  * We understand that by looking if this SID is not
                  * restricted, this is the first element we are iterating
                  * and that it doesn't have SE_GROUP_USE_FOR_DENY_ONLY
                  * attribute.
                  */
                 if ((!Restricted && (SidIndex == 0) && !(SidAndAttributes->Attributes & SE_GROUP_USE_FOR_DENY_ONLY)) ||
                     (SidAndAttributes->Attributes & SE_GROUP_ENABLED) ||
                     ((Deny) && (SidAndAttributes->Attributes & SE_GROUP_USE_FOR_DENY_ONLY)))
                 {
                     /* SID is present */
                     return TRUE;
                 }
                 else
                 {
                     /* SID is not present */
                     return FALSE;
                 }
             }
         }

         /* Move to the next SID */
         SidAndAttributes++;
     }

     /* SID is not present */
     return FALSE;
 }

 BOOLEAN
 NTAPI
 SepSidInToken(
     _In_ PACCESS_TOKEN _Token,
     _In_ PSID Sid)
 {
     /* Call extended API */
     return SepSidInTokenEx(_Token, NULL, Sid, FALSE, FALSE);
 }

 BOOLEAN
 NTAPI
 SepTokenIsOwner(
     _In_ PACCESS_TOKEN _Token,
     _In_ PSECURITY_DESCRIPTOR SecurityDescriptor,
     _In_ BOOLEAN TokenLocked)
 {
     PSID Sid;
     BOOLEAN Result;
     PTOKEN Token = _Token;

     /* Get the owner SID */
     Sid = SepGetOwnerFromDescriptor(SecurityDescriptor);
     ASSERT(Sid != NULL);

     /* Lock the token if needed */
     if (!TokenLocked) SepAcquireTokenLockShared(Token);

     /* Check if the owner SID is found, handling restricted case as well */
     Result = SepSidInToken(Token, Sid);
     if ((Result) && (Token->TokenFlags & TOKEN_IS_RESTRICTED))
     {
         Result = SepSidInTokenEx(Token, NULL, Sid, FALSE, TRUE);
     }

     /* Release the lock if we had acquired it */
     if (!TokenLocked) SepReleaseTokenLock(Token);

     /* Return the result */
     return Result;
 }

 VOID
 NTAPI
 SeGetTokenControlInformation(
     _In_ PACCESS_TOKEN _Token,
     _Out_ PTOKEN_CONTROL TokenControl)
 {
     PTOKEN Token = _Token;
     PAGED_CODE();

     /* Capture the main fields */
     TokenControl->AuthenticationId = Token->AuthenticationId;
     TokenControl->TokenId = Token->TokenId;
     TokenControl->TokenSource = Token->TokenSource;

     /* Lock the token */
     SepAcquireTokenLockShared(Token);

     /* Capture the modified ID */
     TokenControl->ModifiedId = Token->ModifiedId;

     /* Unlock it */
     SepReleaseTokenLock(Token);
 }

 NTSTATUS
 NTAPI
 SepCreateClientSecurity(
     _In_ PACCESS_TOKEN Token,
     _In_ PSECURITY_QUALITY_OF_SERVICE ClientSecurityQos,
     _In_ BOOLEAN ServerIsRemote,
     _In_ TOKEN_TYPE TokenType,
     _In_ BOOLEAN ThreadEffectiveOnly,
     _In_ SECURITY_IMPERSONATION_LEVEL ImpersonationLevel,
     _Out_ PSECURITY_CLIENT_CONTEXT ClientContext)
 {
     NTSTATUS Status;
     PACCESS_TOKEN NewToken;
     PAGED_CODE();

     /* Check for bogus impersonation level */
     if (!VALID_IMPERSONATION_LEVEL(ClientSecurityQos->ImpersonationLevel))
     {
         /* Fail the call */
         return STATUS_INVALID_PARAMETER;
     }

     /* Check what kind of token this is */
     if (TokenType != TokenImpersonation)
     {
         /* On a primary token, if we do direct access, copy the flag from the QOS */
         ClientContext->DirectAccessEffectiveOnly = ClientSecurityQos->EffectiveOnly;
     }
     else
     {
         /* This is an impersonation token, is the level ok? */
         if (ClientSecurityQos->ImpersonationLevel > ImpersonationLevel)
         {
             /* Nope, fail */
             return STATUS_BAD_IMPERSONATION_LEVEL;
         }

         /* Is the level too low, or are we doing something other than delegation remotely */
         if ((ImpersonationLevel == SecurityAnonymous) ||
             (ImpersonationLevel == SecurityIdentification) ||
             ((ServerIsRemote) && (ImpersonationLevel != SecurityDelegation)))
         {
             /* Fail the call */
             return STATUS_BAD_IMPERSONATION_LEVEL;
         }

         /* Pick either the thread setting or the QOS setting */
         ClientContext->DirectAccessEffectiveOnly =
             ((ThreadEffectiveOnly) || (ClientSecurityQos->EffectiveOnly)) ? TRUE : FALSE;
     }

     /* Is this static tracking */
     if (ClientSecurityQos->ContextTrackingMode == SECURITY_STATIC_TRACKING)
     {
         /* Do not use direct access and make a copy */
         ClientContext->DirectlyAccessClientToken = FALSE;
         Status = SeCopyClientToken(Token,
                                    ClientSecurityQos->ImpersonationLevel,
                                    KernelMode,
                                    &NewToken);
         if (!NT_SUCCESS(Status))
             return Status;
     }
     else
     {
         /* Use direct access and check if this is local */
         ClientContext->DirectlyAccessClientToken = TRUE;
         if (ServerIsRemote)
         {
             /* We are doing delegation, so make a copy of the control data */
             SeGetTokenControlInformation(Token,
                                          &ClientContext->ClientTokenControl);
         }

         /* Keep the same token */
         NewToken = Token;
     }

     /* Fill out the context and return success */
     ClientContext->SecurityQos.Length = sizeof(SECURITY_QUALITY_OF_SERVICE);
     ClientContext->SecurityQos.ImpersonationLevel = ClientSecurityQos->ImpersonationLevel;
     ClientContext->SecurityQos.ContextTrackingMode = ClientSecurityQos->ContextTrackingMode;
     ClientContext->SecurityQos.EffectiveOnly = ClientSecurityQos->EffectiveOnly;
     ClientContext->ServerIsRemote = ServerIsRemote;
     ClientContext->ClientToken = NewToken;
     return STATUS_SUCCESS;
 }

 /* PUBLIC FUNCTIONS ***********************************************************/

 VOID
 NTAPI
 SeCaptureSubjectContextEx(
     _In_ PETHREAD Thread,
     _In_ PEPROCESS Process,
     _Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
 {
     BOOLEAN CopyOnOpen, EffectiveOnly;

     PAGED_CODE();

     /* Save the unique ID */
     SubjectContext->ProcessAuditId = Process->UniqueProcessId;

     /* Check if we have a thread */
     if (!Thread)
     {
         /* We don't, so no token */
         SubjectContext->ClientToken = NULL;
     }
     else
     {
         /* Get the impersonation token */
         SubjectContext->ClientToken = PsReferenceImpersonationToken(Thread,
                                                                     &CopyOnOpen,
                                                                     &EffectiveOnly,
                                                                     &SubjectContext->ImpersonationLevel);
     }

     /* Get the primary token */
     SubjectContext->PrimaryToken = PsReferencePrimaryToken(Process);
 }

 VOID
 NTAPI
 SeCaptureSubjectContext(
     _Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
 {
     /* Call the extended API */
     SeCaptureSubjectContextEx(PsGetCurrentThread(),
                               PsGetCurrentProcess(),
                               SubjectContext);
 }

 VOID
 NTAPI
 SeLockSubjectContext(
     _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
 {
     PTOKEN PrimaryToken, ClientToken;
     PAGED_CODE();

     /* Read both tokens */
     PrimaryToken = SubjectContext->PrimaryToken;
     ClientToken = SubjectContext->ClientToken;

     /* Always lock the primary */
     SepAcquireTokenLockShared(PrimaryToken);

     /* Lock the impersonation one if it's there */
     if (!ClientToken) return;
     SepAcquireTokenLockShared(ClientToken);
 }

 VOID
 NTAPI
 SeUnlockSubjectContext(
     _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
 {
     PTOKEN PrimaryToken, ClientToken;
     PAGED_CODE();

     /* Read both tokens */
     PrimaryToken = SubjectContext->PrimaryToken;
     ClientToken = SubjectContext->ClientToken;

     /* Unlock the impersonation one if it's there */
     if (ClientToken)
     {
         SepReleaseTokenLock(ClientToken);
     }

     /* Always unlock the primary one */
     SepReleaseTokenLock(PrimaryToken);
 }

 VOID
 NTAPI
 SeReleaseSubjectContext(
     _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
 {
     PAGED_CODE();

     /* Drop reference on the primary */
     ObFastDereferenceObject(&PsGetCurrentProcess()->Token, SubjectContext->PrimaryToken);
     SubjectContext->PrimaryToken = NULL;

     /* Drop reference on the impersonation, if there was one */
     PsDereferenceImpersonationToken(SubjectContext->ClientToken);
     SubjectContext->ClientToken = NULL;
 }

 NTSTATUS
 NTAPI
 SeCreateAccessStateEx(
     _In_ PETHREAD Thread,
     _In_ PEPROCESS Process,
     _Inout_ PACCESS_STATE AccessState,
     _In_ PAUX_ACCESS_DATA AuxData,
     _In_ ACCESS_MASK Access,
     _In_ PGENERIC_MAPPING GenericMapping)
 {
     ACCESS_MASK AccessMask = Access;
     PTOKEN Token;
     PAGED_CODE();

     /* Map the Generic Acess to Specific Access if we have a Mapping */
     if ((Access & GENERIC_ACCESS) && (GenericMapping))
     {
         RtlMapGenericMask(&AccessMask, GenericMapping);
     }

     /* Initialize the Access State */
     RtlZeroMemory(AccessState, sizeof(ACCESS_STATE));
     ASSERT(AccessState->SecurityDescriptor == NULL);
     ASSERT(AccessState->PrivilegesAllocated == FALSE);

     /* Initialize and save aux data */
     RtlZeroMemory(AuxData, sizeof(AUX_ACCESS_DATA));
     AccessState->AuxData = AuxData;

     /* Capture the Subject Context */
     SeCaptureSubjectContextEx(Thread,
                               Process,
                               &AccessState->SubjectSecurityContext);

     /* Set Access State Data */
     AccessState->RemainingDesiredAccess = AccessMask;
     AccessState->OriginalDesiredAccess = AccessMask;
     ExAllocateLocallyUniqueId(&AccessState->OperationID);

     /* Get the Token to use */
     Token = SeQuerySubjectContextToken(&AccessState->SubjectSecurityContext);

     /* Check for Travers Privilege */
     if (Token->TokenFlags & TOKEN_HAS_TRAVERSE_PRIVILEGE)
     {
         /* Preserve the Traverse Privilege */
         AccessState->Flags = TOKEN_HAS_TRAVERSE_PRIVILEGE;
     }

     /* Set the Auxiliary Data */
     AuxData->PrivilegeSet = (PPRIVILEGE_SET)((ULONG_PTR)AccessState +
                                              FIELD_OFFSET(ACCESS_STATE,
                                                           Privileges));
     if (GenericMapping) AuxData->GenericMapping = *GenericMapping;

     /* Return Sucess */
     return STATUS_SUCCESS;
 }

 NTSTATUS
 NTAPI
 SeCreateAccessState(
     _Inout_ PACCESS_STATE AccessState,
     _In_ PAUX_ACCESS_DATA AuxData,
     _In_ ACCESS_MASK Access,
     _In_ PGENERIC_MAPPING GenericMapping)
 {
     PAGED_CODE();

     /* Call the extended API */
     return SeCreateAccessStateEx(PsGetCurrentThread(),
                                  PsGetCurrentProcess(),
                                  AccessState,
                                  AuxData,
                                  Access,
                                  GenericMapping);
 }

 VOID
 NTAPI
 SeDeleteAccessState(
     _In_ PACCESS_STATE AccessState)
 {
     PAUX_ACCESS_DATA AuxData;
     PAGED_CODE();

     /* Get the Auxiliary Data */
     AuxData = AccessState->AuxData;

     /* Deallocate Privileges */
     if (AccessState->PrivilegesAllocated)
         ExFreePoolWithTag(AuxData->PrivilegeSet, TAG_PRIVILEGE_SET);

     /* Deallocate Name and Type Name */
     if (AccessState->ObjectName.Buffer)
     {
         ExFreePool(AccessState->ObjectName.Buffer);
     }

     if (AccessState->ObjectTypeName.Buffer)
     {
         ExFreePool(AccessState->ObjectTypeName.Buffer);
     }

     /* Release the Subject Context */
     SeReleaseSubjectContext(&AccessState->SubjectSecurityContext);
 }

 VOID
 NTAPI
 SeSetAccessStateGenericMapping(
     _In_ PACCESS_STATE AccessState,
     _In_ PGENERIC_MAPPING GenericMapping)
 {
     PAGED_CODE();

     /* Set the Generic Mapping */
     ((PAUX_ACCESS_DATA)AccessState->AuxData)->GenericMapping = *GenericMapping;
 }

 NTSTATUS
 NTAPI
 SeCreateClientSecurity(
     _In_ PETHREAD Thread,
     _In_ PSECURITY_QUALITY_OF_SERVICE Qos,
     _In_ BOOLEAN RemoteClient,
     _Out_ PSECURITY_CLIENT_CONTEXT ClientContext)
 {
     TOKEN_TYPE TokenType;
     BOOLEAN ThreadEffectiveOnly;
     SECURITY_IMPERSONATION_LEVEL ImpersonationLevel;
     PACCESS_TOKEN Token;
     NTSTATUS Status;
     PAGED_CODE();

     /* Reference the correct token */
     Token = PsReferenceEffectiveToken(Thread,
                                       &TokenType,
                                       &ThreadEffectiveOnly,
                                       &ImpersonationLevel);

     /* Create client security from it */
     Status = SepCreateClientSecurity(Token,
                                      Qos,
                                      RemoteClient,
                                      TokenType,
                                      ThreadEffectiveOnly,
                                      ImpersonationLevel,
                                      ClientContext);

     /* Check if we failed or static tracking was used */
     if (!(NT_SUCCESS(Status)) || (Qos->ContextTrackingMode == SECURITY_STATIC_TRACKING))
     {
         /* Dereference our copy since it's not being used */
         ObDereferenceObject(Token);
     }

     /* Return status */
     return Status;
 }

 NTSTATUS
 NTAPI
 SeCreateClientSecurityFromSubjectContext(
     _In_ PSECURITY_SUBJECT_CONTEXT SubjectContext,
     _In_ PSECURITY_QUALITY_OF_SERVICE ClientSecurityQos,
     _In_ BOOLEAN ServerIsRemote,
     _Out_ PSECURITY_CLIENT_CONTEXT ClientContext)
 {
     PACCESS_TOKEN Token;
     NTSTATUS Status;
     PAGED_CODE();

     /* Get the right token and reference it */
     Token = SeQuerySubjectContextToken(SubjectContext);
     ObReferenceObject(Token);

     /* Create the context */
     Status = SepCreateClientSecurity(Token,
                                      ClientSecurityQos,
                                      ServerIsRemote,
                                      SubjectContext->ClientToken ?
                                      TokenImpersonation : TokenPrimary,
                                      FALSE,
                                      SubjectContext->ImpersonationLevel,
                                      ClientContext);

     /* Check if we failed or static tracking was used */
     if (!(NT_SUCCESS(Status)) ||
         (ClientSecurityQos->ContextTrackingMode == SECURITY_STATIC_TRACKING))
     {
         /* Dereference our copy since it's not being used */
         ObDereferenceObject(Token);
     }

     /* Return status */
     return Status;
 }

 NTSTATUS
 NTAPI
 SeImpersonateClientEx(
     _In_ PSECURITY_CLIENT_CONTEXT ClientContext,
     _In_opt_ PETHREAD ServerThread)
 {
     BOOLEAN EffectiveOnly;
     PAGED_CODE();

     /* Check if direct access is requested */
     if (!ClientContext->DirectlyAccessClientToken)
     {
         /* No, so get the flag from QOS */
         EffectiveOnly = ClientContext->SecurityQos.EffectiveOnly;
     }
     else
     {
         /* Yes, so see if direct access should be effective only */
         EffectiveOnly = ClientContext->DirectAccessEffectiveOnly;
     }

     /* Use the current thread if one was not passed */
     if (!ServerThread) ServerThread = PsGetCurrentThread();

     /* Call the lower layer routine */
     return PsImpersonateClient(ServerThread,
                                ClientContext->ClientToken,
                                TRUE,
                                EffectiveOnly,
                                ClientContext->SecurityQos.ImpersonationLevel);
 }

 VOID
 NTAPI
 SeImpersonateClient(
     _In_ PSECURITY_CLIENT_CONTEXT ClientContext,
     _In_opt_ PETHREAD ServerThread)
 {
     PAGED_CODE();

     /* Call the new API */
     SeImpersonateClientEx(ClientContext, ServerThread);
 }

 /* EOF */
_SECURITY_DESCRIPTOR
Definition: ms-dtyp.idl:301

_AUX_ACCESS_DATA::PrivilegeSet
PPRIVILEGE_SET PrivilegeSet
Definition: setypes.h:258

PsImpersonateClient
NTSTATUS NTAPI PsImpersonateClient(IN PETHREAD Thread, IN PACCESS_TOKEN Token, IN BOOLEAN CopyOnOpen, IN BOOLEAN EffectiveOnly, IN SECURITY_IMPERSONATION_LEVEL ImpersonationLevel)
Definition: security.c:610

SubjectContext
_Inout_ PLIST_ENTRY _In_ PVOID _In_ PSTRING _In_ BOOLEAN _In_ BOOLEAN _In_ ULONG _In_ PFLT_CALLBACK_DATA _In_opt_ PCHECK_FOR_TRAVERSE_ACCESS _In_opt_ PSECURITY_SUBJECT_CONTEXT SubjectContext
Definition: fltkernel.h:2238

SepSidInTokenEx
BOOLEAN NTAPI SepSidInTokenEx(_In_ PACCESS_TOKEN _Token, _In_ PSID PrincipalSelfSid, _In_ PSID _Sid, _In_ BOOLEAN Deny, _In_ BOOLEAN Restricted)
Checks if a SID is present in a token.
Definition: access.c:48

STATUS_BAD_IMPERSONATION_LEVEL
#define STATUS_BAD_IMPERSONATION_LEVEL
Definition: ntstatus.h:401

_SID_AND_ATTRIBUTES::Sid
PSID Sid
Definition: setypes.h:506

VALID_IMPERSONATION_LEVEL
#define VALID_IMPERSONATION_LEVEL(Level)
Definition: setypes.h:101

_In_opt_
#define _In_opt_
Definition: ms_sal.h:309

_Inout_
#define _Inout_
Definition: ms_sal.h:378

_SID
Definition: ms-dtyp.idl:198

PsGetCurrentThread
#define PsGetCurrentThread()
Definition: env_spec_w32.h:81

SeCaptureSubjectContextEx
VOID NTAPI SeCaptureSubjectContextEx(_In_ PETHREAD Thread, _In_ PEPROCESS Process, _Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
An extended function that captures the security subject context based upon the specified thread and p...
Definition: access.c:393

_Out_
#define _Out_
Definition: ms_sal.h:345

SepSidInToken
BOOLEAN NTAPI SepSidInToken(_In_ PACCESS_TOKEN _Token, _In_ PSID Sid)
Checks if a SID is present in a token.
Definition: access.c:152

TRUE
#define TRUE
Definition: types.h:120

SecurityDescriptor
_In_ USHORT _In_ ULONG _In_ PSOCKADDR _In_ PSOCKADDR _Reserved_ ULONG _In_opt_ PVOID _In_opt_ const WSK_CLIENT_CONNECTION_DISPATCH _In_opt_ PEPROCESS _In_opt_ PETHREAD _In_opt_ PSECURITY_DESCRIPTOR SecurityDescriptor
Definition: wsk.h:182

STATUS_INVALID_PARAMETER
#define STATUS_INVALID_PARAMETER
Definition: udferr_usr.h:135

SeGetTokenControlInformation
VOID NTAPI SeGetTokenControlInformation(_In_ PACCESS_TOKEN _Token, _Out_ PTOKEN_CONTROL TokenControl)
Retrieves token control information.
Definition: access.c:225

NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26

Token
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG _Inout_ PLUID _Out_ PHANDLE Token
Definition: ntifs.template.h:711

CopyOnOpen
_Out_ PBOOLEAN CopyOnOpen
Definition: psfuncs.h:154

TOKEN_HAS_TRAVERSE_PRIVILEGE
#define TOKEN_HAS_TRAVERSE_PRIVILEGE
Definition: setypes.h:1174

_EPROCESS
Definition: pstypes.h:1260

KernelMode
Definition: ketypes.h:11

SepGetOwnerFromDescriptor
FORCEINLINE PSID SepGetOwnerFromDescriptor(_Inout_ PVOID _Descriptor)
Definition: se.h:76

SecurityAnonymous
Definition: lsa.idl:55

SeDeleteAccessState
VOID NTAPI SeDeleteAccessState(_In_ PACCESS_STATE AccessState)
Deletes an allocated access state from the memory.
Definition: access.c:671

SeSetAccessStateGenericMapping
VOID NTAPI SeSetAccessStateGenericMapping(_In_ PACCESS_STATE AccessState, _In_ PGENERIC_MAPPING GenericMapping)
Sets a new generic mapping for an allocated access state.
Definition: access.c:714

SepCreateClientSecurity
NTSTATUS NTAPI SepCreateClientSecurity(_In_ PACCESS_TOKEN Token, _In_ PSECURITY_QUALITY_OF_SERVICE ClientSecurityQos, _In_ BOOLEAN ServerIsRemote, _In_ TOKEN_TYPE TokenType, _In_ BOOLEAN ThreadEffectiveOnly, _In_ SECURITY_IMPERSONATION_LEVEL ImpersonationLevel, _Out_ PSECURITY_CLIENT_CONTEXT ClientContext)
Creates a client security context based upon an access token.
Definition: access.c:284

SepSubjectContextLock
ERESOURCE SepSubjectContextLock
Definition: access.c:16

ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65

TokenPrimary
Definition: imports.h:273

SeCreateAccessState
NTSTATUS NTAPI SeCreateAccessState(_Inout_ PACCESS_STATE AccessState, _In_ PAUX_ACCESS_DATA AuxData, _In_ ACCESS_MASK Access, _In_ PGENERIC_MAPPING GenericMapping)
Creates an access state.
Definition: access.c:642

SecurityIdentification
Definition: lsa.idl:56

NTAPI
NTSTATUS(* NTAPI)(IN PFILE_FULL_EA_INFORMATION EaBuffer, IN ULONG EaLength, OUT PULONG ErrorOffset)
Definition: IoEaTest.cpp:117

SeLockSubjectContext
VOID NTAPI SeLockSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Locks both the referenced primary and client access tokens of a security subject context.
Definition: access.c:459

FALSE
#define FALSE
Definition: types.h:117

_SECURITY_CLIENT_CONTEXT
Definition: imports.h:289

SECURITY_IMPERSONATION_LEVEL
enum _SECURITY_IMPERSONATION_LEVEL SECURITY_IMPERSONATION_LEVEL

SePrincipalSelfSid
PSID SePrincipalSelfSid
Definition: sid.c:37

PISID
struct _SID * PISID

PsGetCurrentProcess
#define PsGetCurrentProcess
Definition: psfuncs.h:17

SeCreateClientSecurityFromSubjectContext
NTSTATUS NTAPI SeCreateClientSecurityFromSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext, _In_ PSECURITY_QUALITY_OF_SERVICE ClientSecurityQos, _In_ BOOLEAN ServerIsRemote, _Out_ PSECURITY_CLIENT_CONTEXT ClientContext)
Creates a client security context based upon the captured security subject context.
Definition: access.c:807

BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185

ServerThread
UINT CALLBACK ServerThread(_Inout_ PVOID Parameter)
Definition: NtAcceptConnectPort.c:33

Result
_At_(*)(_In_ PWSK_CLIENT Client, _In_opt_ PUNICODE_STRING NodeName, _In_opt_ PUNICODE_STRING ServiceName, _In_opt_ ULONG NameSpace, _In_opt_ GUID *Provider, _In_opt_ PADDRINFOEXW Hints, _Outptr_ PADDRINFOEXW *Result, _In_opt_ PEPROCESS OwningProcess, _In_opt_ PETHREAD OwningThread, _Inout_ PIRP Irp Result)(Mem)) NTSTATUS(WSKAPI *PFN_WSK_GET_ADDRESS_INFO
Definition: wsk.h:426

_In_
#define _In_
Definition: ms_sal.h:308

Sid
_In_ ULONG _In_ ACCESS_MASK _In_ PSID Sid
Definition: rtlfuncs.h:1103

_ETHREAD
Definition: pstypes.h:1101

SeUnlockSubjectContext
VOID NTAPI SeUnlockSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Unlocks both the referenced primary and client access tokens of a security subject context.
Definition: access.c:490

Restricted
UNICODE_STRING Restricted
Definition: utils.c:24

Status
Status
Definition: gdiplustypes.h:24

SeCreateClientSecurity
NTSTATUS NTAPI SeCreateClientSecurity(_In_ PETHREAD Thread, _In_ PSECURITY_QUALITY_OF_SERVICE Qos, _In_ BOOLEAN RemoteClient, _Out_ PSECURITY_CLIENT_CONTEXT ClientContext)
Creates a client security context.
Definition: access.c:745

SepTokenIsOwner
BOOLEAN NTAPI SepTokenIsOwner(_In_ PACCESS_TOKEN _Token, _In_ PSECURITY_DESCRIPTOR SecurityDescriptor, _In_ BOOLEAN TokenLocked)
Checks if a token belongs to the main user, being the owner.
Definition: access.c:180

_ACCESS_STATE
Definition: setypes.h:224

ASSERT
#define ASSERT(a)
Definition: mode.c:44

RtlEqualMemory
NTSYSAPI ULONG NTAPI RtlEqualMemory(CONST VOID *Source1, CONST VOID *Source2, ULONG Length)

_GENERIC_MAPPING
Definition: nt_native.h:564

RtlMapGenericMask
VOID NTAPI RtlMapGenericMask(IN OUT PACCESS_MASK AccessMask, IN PGENERIC_MAPPING GenericMapping)
Definition: access.c:50

SeImpersonateClient
VOID NTAPI SeImpersonateClient(_In_ PSECURITY_CLIENT_CONTEXT ClientContext, _In_opt_ PETHREAD ServerThread)
Impersonates a client user.
Definition: access.c:904

NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32

SE_GROUP_ENABLED
#define SE_GROUP_ENABLED
Definition: setypes.h:92

ClientContext
_In_ PVOID ClientContext
Definition: netioddk.h:55

SeCaptureSubjectContext
VOID NTAPI SeCaptureSubjectContext(_Out_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Captures the security subject context of the calling thread and calling process.
Definition: access.c:437

_SID_AND_ATTRIBUTES
Definition: setypes.h:502

_LSA_STRING::Length
USHORT Length
Definition: ntsecapi.h:172

ImpersonationLevel
_Out_ PBOOLEAN _Out_ PBOOLEAN _Out_ PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel
Definition: psfuncs.h:154

ObDereferenceObject
#define ObDereferenceObject
Definition: obfuncs.h:203

AccessMask
_In_ ACCESS_MASK AccessMask
Definition: exfuncs.h:186

for
#define for
Definition: utility.h:88

Thread
_In_opt_ PFILE_OBJECT _In_opt_ PETHREAD Thread
Definition: fltkernel.h:2652

RtlFreeUnicodeString
NTSYSAPI VOID NTAPI RtlFreeUnicodeString(PUNICODE_STRING UnicodeString)

_SECURITY_QUALITY_OF_SERVICE
Definition: lsa.idl:63

Privileges
_In_ PSECURITY_SUBJECT_CONTEXT _In_ BOOLEAN _In_ ACCESS_MASK _In_ ACCESS_MASK _Outptr_opt_ PPRIVILEGE_SET * Privileges
Definition: sefuncs.h:13

RtlConvertSidToUnicodeString
NTSYSAPI NTSTATUS NTAPI RtlConvertSidToUnicodeString(OUT PUNICODE_STRING DestinationString, IN PVOID Sid, IN BOOLEAN AllocateDestinationString)

AccessState
_In_opt_ PVOID _In_opt_ PUNICODE_STRING _In_ PSECURITY_DESCRIPTOR _In_ PACCESS_STATE AccessState
Definition: sefuncs.h:414

SepReleaseTokenLock
#define SepReleaseTokenLock(Token)
Definition: se.h:248

SE_GROUP_USE_FOR_DENY_ONLY
#define SE_GROUP_USE_FOR_DENY_ONLY
Definition: setypes.h:94

_TOKEN_CONTROL
Definition: imports.h:282

PsReferenceEffectiveToken
PACCESS_TOKEN NTAPI PsReferenceEffectiveToken(IN PETHREAD Thread, OUT IN PTOKEN_TYPE TokenType, OUT PBOOLEAN EffectiveOnly, OUT PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel)
Definition: security.c:780

PsReferencePrimaryToken
PACCESS_TOKEN NTAPI PsReferencePrimaryToken(PEPROCESS Process)
Definition: security.c:440

SeQuerySubjectContextToken
#define SeQuerySubjectContextToken(SubjectContext)
Definition: sefuncs.h:583

TOKEN_TYPE
enum _TOKEN_TYPE TOKEN_TYPE

PsReferenceImpersonationToken
PACCESS_TOKEN NTAPI PsReferenceImpersonationToken(IN PETHREAD Thread, OUT PBOOLEAN CopyOnOpen, OUT PBOOLEAN EffectiveOnly, OUT PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel)
Definition: security.c:849

GenericMapping
static GENERIC_MAPPING GenericMapping
Definition: SeInheritance.c:11

SeCopyClientToken
NTSTATUS NTAPI SeCopyClientToken(_In_ PACCESS_TOKEN Token, _In_ SECURITY_IMPERSONATION_LEVEL Level, _In_ KPROCESSOR_MODE PreviousMode, _Out_ PACCESS_TOKEN *NewToken)
Copies an existing access token (technically duplicating a new one).
Definition: token.c:1501

_UNICODE_STRING
Definition: env_spec_w32.h:368

_AUX_ACCESS_DATA
Definition: setypes.h:256

SeImpersonateClientEx
NTSTATUS NTAPI SeImpersonateClientEx(_In_ PSECURITY_CLIENT_CONTEXT ClientContext, _In_opt_ PETHREAD ServerThread)
Extended function that impersonates a client.
Definition: access.c:859

USHORT
unsigned short USHORT
Definition: pedump.c:61

PTOKEN
struct _TOKEN * PTOKEN

_SID_AND_ATTRIBUTES::Attributes
$ULONG Attributes
Definition: setypes.h:508

SeCreateAccessStateEx
NTSTATUS NTAPI SeCreateAccessStateEx(_In_ PETHREAD Thread, _In_ PEPROCESS Process, _Inout_ PACCESS_STATE AccessState, _In_ PAUX_ACCESS_DATA AuxData, _In_ ACCESS_MASK Access, _In_ PGENERIC_MAPPING GenericMapping)
An extended function that creates an access state.
Definition: access.c:564

PPRIVILEGE_SET
struct _PRIVILEGE_SET * PPRIVILEGE_SET

ExAllocateLocallyUniqueId
VOID NTAPI ExAllocateLocallyUniqueId(OUT LUID *LocallyUniqueId)
Definition: uuid.c:335

SECURITY_STATIC_TRACKING
#define SECURITY_STATIC_TRACKING
Definition: setypes.h:104

FIELD_OFFSET
#define FIELD_OFFSET(t, f)
Definition: typedefs.h:255

SECURITY_QUALITY_OF_SERVICE
struct _SECURITY_QUALITY_OF_SERVICE SECURITY_QUALITY_OF_SERVICE

_SID::SubAuthorityCount
BYTE SubAuthorityCount
Definition: ms-dtyp.idl:200

NULL
#define NULL
Definition: types.h:112

SeReleaseSubjectContext
VOID NTAPI SeReleaseSubjectContext(_In_ PSECURITY_SUBJECT_CONTEXT SubjectContext)
Releases both the primary and client tokens of a security subject context.
Definition: access.c:523

_SECURITY_SUBJECT_CONTEXT
Definition: setypes.h:217

PAUX_ACCESS_DATA
struct _AUX_ACCESS_DATA * PAUX_ACCESS_DATA

GENERIC_ACCESS
#define GENERIC_ACCESS
Definition: security.c:35

DPRINT1
#define DPRINT1
Definition: precomp.h:8

SecurityDelegation
Definition: lsa.idl:58

ObFastDereferenceObject
VOID FASTCALL ObFastDereferenceObject(IN PEX_FAST_REF FastRef, IN PVOID Object)
Definition: obref.c:167

Process
_Must_inspect_result_ _In_ PLARGE_INTEGER _In_ PLARGE_INTEGER _In_ ULONG _In_ PFILE_OBJECT _In_ PVOID Process
Definition: fsrtlfuncs.h:219

SepAcquireTokenLockShared
#define SepAcquireTokenLockShared(Token)
Definition: se.h:242

ObReferenceObject
#define ObReferenceObject
Definition: obfuncs.h:204

TokenImpersonation
Definition: imports.h:274

ERESOURCE
ULONG ERESOURCE
Definition: env_spec_w32.h:594

ULONG
unsigned int ULONG
Definition: retypes.h:1

RtlZeroMemory
#define RtlZeroMemory(Destination, Length)
Definition: typedefs.h:262

_SID::Revision
BYTE Revision
Definition: ms-dtyp.idl:199

TAG_PRIVILEGE_SET
#define TAG_PRIVILEGE_SET
Definition: tag.h:152

STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65

void
Definition: nsiface.idl:2306

EffectiveOnly
_In_ ACCESS_MASK _In_opt_ POBJECT_ATTRIBUTES _In_ BOOLEAN EffectiveOnly
Definition: sefuncs.h:401

_TOKEN
Definition: setypes.h:215

ExFreePoolWithTag
#define ExFreePoolWithTag(_P, _T)
Definition: module.h:1099

PUSHORT
unsigned short * PUSHORT
Definition: retypes.h:2

ACCESS_MASK
ULONG ACCESS_MASK
Definition: nt_native.h:40

ExFreePool
#define ExFreePool(addr)
Definition: env_spec_w32.h:352

RtlEqualSid
NTSYSAPI BOOLEAN NTAPI RtlEqualSid(_In_ PSID Sid1, _In_ PSID Sid2)

TokenType
_In_ ACCESS_MASK _In_opt_ POBJECT_ATTRIBUTES _In_ BOOLEAN _In_ TOKEN_TYPE TokenType
Definition: sefuncs.h:401

TOKEN_IS_RESTRICTED
#define TOKEN_IS_RESTRICTED
Definition: setypes.h:1179

PAGED_CODE
#define PAGED_CODE()
Definition: Bus_PDO_QueryResourceRequirements.c:89

PsDereferenceImpersonationToken
VOID NTAPI PsDereferenceImpersonationToken(IN PACCESS_TOKEN ImpersonationToken)
Definition: security.c:888