#include "ntos.h"
#include <ntrmlsa.h>
#include "seopaque.h"
Go to the source code of this file.
Classes | |
struct | _SEP_LSA_WORK_ITEM |
struct | _SEP_WORK_ITEM |
Defines | |
#define | IF_SE_GLOBAL(FlagName) if (FALSE) |
#define | SeDiagPrint(FlagName, _Text_) ; |
#define | SE_DIAG_SD_TRACKING ((ULONG) 0x00000001L) |
#define | SepAreFlagsSet(Mask, Bits) |
#define | SepSetFlags(Mask, Bits) |
#define | SepClearFlags(Mask, Bits) |
#define | SepPrivilegeSetSize(PrivilegeSet) |
#define | EffectiveToken(SubjectSecurityContext) |
#define | SepTokenUserSid(Token) ((PTOKEN)(Token))->UserAndGroups->Sid |
#define | SepTokenAuthenticationId(Token) (((PTOKEN)(Token))->AuthenticationId) |
#define | SepBadImpersonationLevel(IL, SIR) |
#define | IsValidElementCount(Count, STRUCTURE) |
#define | SEP_MAX_GROUP_COUNT 4096 |
#define | SEP_MAX_PRIVILEGE_COUNT 4096 |
#define | SepLockLsaQueue() |
#define | SepUnlockLsaQueue() |
#define | SepWorkListHead() ((PSEP_LSA_WORK_ITEM)(&SepLsaQueue)->Flink) |
#define | ExAllocatePool(a, b) ExAllocatePoolWithTag(a,b,' eS') |
#define | ExAllocatePoolWithQuota(a, b) ExAllocatePoolWithQuotaTag(a,b,' eS') |
Typedefs | |
typedef VOID(* | PSEP_LSA_WORKER_CLEANUP_ROUTINE )(IN PVOID Parameter) |
typedef enum _SEP_LSA_WORK_ITEM_TAG | SEP_LSA_WORK_ITEM_TAG |
typedef enum _SEP_LSA_WORK_ITEM_TAG * | PSEP_LSA_WORK_ITEM_TAG |
typedef _SEP_LSA_WORK_ITEM | SEP_LSA_WORK_ITEM |
typedef _SEP_LSA_WORK_ITEM * | PSEP_LSA_WORK_ITEM |
typedef _SEP_WORK_ITEM | SEP_WORK_ITEM |
typedef _SEP_WORK_ITEM * | PSEP_WORK_ITEM |
Enumerations | |
enum | _SEP_LSA_WORK_ITEM_TAG { SepDeleteLogon, SepAuditRecord } |
Functions | |
BOOLEAN | SepDevelopmentTest (VOID) |
BOOLEAN | SepInitializationPhase0 (VOID) |
BOOLEAN | SepInitializationPhase1 (VOID) |
BOOLEAN | SepVariableInitialization (VOID) |
NTSTATUS | SepCreateToken (OUT PHANDLE TokenHandle, IN KPROCESSOR_MODE RequestorMode, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL, IN TOKEN_TYPE TokenType, IN SECURITY_IMPERSONATION_LEVEL ImpersonationLevel OPTIONAL, IN PLUID AuthenticationId, IN PLARGE_INTEGER ExpirationTime, IN PSID_AND_ATTRIBUTES User, IN ULONG GroupCount, IN PSID_AND_ATTRIBUTES Groups, IN ULONG GroupsLength, IN ULONG PrivilegeCount, IN PLUID_AND_ATTRIBUTES Privileges, IN ULONG PrivilegesLength, IN PSID Owner OPTIONAL, IN PSID PrimaryGroup, IN PACL DefaultDacl OPTIONAL, IN PTOKEN_SOURCE TokenSource, IN BOOLEAN SystemToken, IN PSECURITY_TOKEN_PROXY_DATA ProxyData OPTIONAL, IN PSECURITY_TOKEN_AUDIT_DATA AuditData OPTIONAL) |
NTSTATUS | SepReferenceLogonSession (IN PLUID LogonId) |
VOID | SepDeReferenceLogonSession (IN PLUID LogonId) |
VOID | SepLockSubjectContext (IN PSECURITY_SUBJECT_CONTEXT SubjectContext) |
VOID | SepFreeSubjectContext (IN PSECURITY_SUBJECT_CONTEXT SubjectContext) |
VOID | SepGetDefaultsSubjectContext (IN PSECURITY_SUBJECT_CONTEXT SubjectContext, OUT PSID *Owner, OUT PSID *Group, OUT PSID *ServerOwner, OUT PSID *ServerGroup, OUT PACL *Dacl) |
BOOLEAN | SepValidOwnerSubjectContext (IN PSECURITY_SUBJECT_CONTEXT SubjectContext, IN PSID Owner, IN BOOLEAN ServerObject) |
BOOLEAN | SepIdAssignableAsGroup (IN PACCESS_TOKEN Token, IN PSID Group) |
BOOLEAN | SepCheckAcl (IN PACL Acl, IN ULONG Length) |
BOOLEAN | SepAuditAlarm (IN PUNICODE_STRING SubsystemName, IN PVOID HandleId, IN PUNICODE_STRING ObjectTypeName, IN PUNICODE_STRING ObjectName, IN PSECURITY_DESCRIPTOR SecurityDescriptor, IN ACCESS_MASK DesiredAccess, IN BOOLEAN ObjectCreation, IN ACCESS_MASK GrantedAccess, OUT PBOOLEAN GenerateOnClose) |
BOOLEAN | SepSinglePrivilegeCheck (LUID DesiredPrivilege, IN PACCESS_TOKEN EffectiveToken, IN KPROCESSOR_MODE PreviousMode) |
NTSTATUS | SepRmCallLsa (PSEP_WORK_ITEM SepWorkItem) |
BOOLEAN | SepInitializeWorkList (VOID) |
BOOLEAN | SepRmInitPhase0 () |
VOID | SepConcatenatePrivileges (IN PPRIVILEGE_SET TargetPrivilegeSet, IN ULONG TargetBufferSize, IN PPRIVILEGE_SET SourcePrivilegeSet) |
BOOLEAN | SepTokenIsOwner (IN PACCESS_TOKEN Token, IN PSECURITY_DESCRIPTOR SecurityDescriptor, IN BOOLEAN TokenLocked) |
VOID | SepPrintAcl (IN PACL Acl) |
VOID | SepPrintSid (IN PSID Sid) |
VOID | SepDumpSecurityDescriptor (IN PSECURITY_DESCRIPTOR SecurityDescriptor, IN PSZ TitleString) |
BOOLEAN | SepSidTranslation (PSID Sid, PSTRING AccountName) |
VOID | SepDumpTokenInfo (IN PACCESS_TOKEN Token) |
VOID | SepDumpString (IN PUNICODE_STRING String) |
BOOLEAN | SepSidInToken (IN PACCESS_TOKEN Token, IN PSID PrincipalSelfSid, IN PSID Sid, IN BOOLEAN DenyAce) |
VOID | SepExamineSacl (IN PACL Sacl, IN PACCESS_TOKEN Token, IN ACCESS_MASK DesiredAccess, IN BOOLEAN AccessGranted, OUT PBOOLEAN GenerateAudit, OUT PBOOLEAN GenerateAlarm) |
VOID | SepCopyString (IN PUNICODE_STRING SourceString, OUT PUNICODE_STRING *DestString) |
VOID | SepAssemblePrivileges (IN ULONG PrivilegeCount, IN BOOLEAN SystemSecurity, IN BOOLEAN WriteOwner, OUT PPRIVILEGE_SET *Privileges) |
PUNICODE_STRING | SepQueryTypeString (IN PVOID Object) |
POBJECT_NAME_INFORMATION | SepQueryNameString (IN PVOID Object) |
*++ | |
BOOLEAN | SepFilterPrivilegeAudits (IN PPRIVILEGE_SET PrivilegeSet) |
BOOLEAN | SepQueueWorkItem (IN PSEP_LSA_WORK_ITEM LsaWorkItem, IN BOOLEAN ForceQueue) |
VOID | SepAdtGenerateDiscardAudit (VOID) |
BOOLEAN | SepAdtValidateAuditBounds (ULONG Upper, ULONG Lower) |
NTSTATUS | SepAdtInitializeCrashOnFail (VOID) |
BOOLEAN | SepAdtInitializePrivilegeAuditing (VOID) |
NTSTATUS | SepCopyProxyData (OUT PSECURITY_TOKEN_PROXY_DATA *DestProxyData, IN PSECURITY_TOKEN_PROXY_DATA SourceProxyData) |
VOID | SepFreeProxyData (IN PSECURITY_TOKEN_PROXY_DATA ProxyData) |
NTSTATUS | SepProbeAndCaptureQosData (IN PSECURITY_ADVANCED_QUALITY_OF_SERVICE CapturedSecurityQos) |
PACCESS_TOKEN | SeMakeAnonymousToken () |
Variables | |
HANDLE | SepLsaHandle |
BOOLEAN | SepAuditShutdownEvents |
ERESOURCE | SepLsaQueueLock |
ULONG | SepLsaQueueLength |
LIST_ENTRY | SepLsaQueue |
SEP_WORK_ITEM | SepExWorkItem |
PSEP_LSA_WORK_ITEM | SepDequeueWorkItem (VOID) |
|
Value:
Definition at line 165 of file sep.h. Referenced by NtCloseObjectAuditAlarm(), NtDeleteObjectAuditAlarm(), SeAccessCheck(), SeAuditHandleDuplication(), SeAuditingFileOrGlobalEvents(), SeCloseObjectAuditAlarm(), SeCreateAccessState(), SeCreateObjectAuditAlarm(), SeDeleteObjectAuditAlarm(), SeObjectReferenceAuditAlarm(), SeOpenObjectAuditAlarm(), SeOpenObjectForDeleteAuditAlarm(), SepAccessCheckAndAuditAlarm(), SepGetDefaultsSubjectContext(), SePrivilegeCheck(), SePrivilegedServiceAuditAlarm(), SePrivilegePolicyCheck(), SepTokenIsOwner(), SepValidOwnerSubjectContext(), SeQueryAuthenticationIdSubjectContext(), and SeTraverseAuditAlarm(). |
|
|
|
|
|
|
|
Value:
Definition at line 242 of file sep.h. Referenced by NtOpenObjectAuditAlarm(), NtPrivilegeCheck(), NtPrivilegedServiceAuditAlarm(), NtPrivilegeObjectAuditAlarm(), SeAccessCheckByType(), SeCaptureObjectTypeList(), and SepAccessCheckAndAuditAlarm(). |
|
|
|
|
|
Definition at line 254 of file sep.h. Referenced by SeCaptureSidAndAttributesArray(). |
|
Definition at line 255 of file sep.h. Referenced by SeCaptureLuidAndAttributesArray(). |
|
Value:
|
|
Value: Definition at line 225 of file sep.h. Referenced by SepCreateClientSecurity(). |
|
Value:
|
|
Value:
Definition at line 287 of file sep.h. Referenced by SepDequeueWorkItem(), and SepQueueWorkItem(). |
|
Value:
Definition at line 147 of file sep.h. Referenced by SeAccessCheckByType(), SeAppendPrivileges(), and SepConcatenatePrivileges(). |
|
Value:
|
|
|
|
Value:
Definition at line 290 of file sep.h. Referenced by SepDequeueWorkItem(), and SepQueueWorkItem(). |
|
Definition at line 293 of file sep.h. Referenced by SepRmCallLsa(). |
|
Referenced by SepInformLsaOfDeletedLogon(). |
|
|
|
|
|
Referenced by SepRmCallLsa(). |
|
Referenced by SepAdtLogAuditRecord(), and SepInformLsaOfDeletedLogon(). |
|
|
|
|
|
Definition at line 309 of file sep.h.
|
|
|
|
Definition at line 2717 of file sepaudit.c. References ASSERT, PAGED_CODE, SeLocalSystemSid, SepAdtCountEventsDiscarded, SepAdtLogAuditRecord(), SepSetParmTypeSid, SepSetParmTypeString, SepSetParmTypeUlong, and SeSubsystemName. Referenced by SepQueueWorkItem().
|
|
Definition at line 242 of file adtinit.c. References ASSERT, CHAR, FALSE, KeyName, L, NT_SUCCESS, NtClose(), NtOpenKey(), NtQueryValueKey(), NTSTATUS(), NULL, RtlInitUnicodeString(), SepCrashOnAuditFail, Status, TRUE, and ValueName. Referenced by SeRmInitPhase1().
|
|
Definition at line 329 of file adtinit.c. References ASSERT, CHAR, FALSE, FULL_PRIVILEGE_AUDITING, KeyName, L, NT_SUCCESS, NtClose(), NtOpenKey(), NtQueryValueKey(), NTSTATUS(), NULL, PAGED_CODE, RtlInitUnicodeString(), SepInitializePrivilegeFilter(), Status, and ValueName. Referenced by SeRmInitPhase1().
|
|
Definition at line 39 of file adtinit.c. References FALSE, PAGED_CODE, and TRUE. Referenced by SepAdtInitializeBounds().
|
|
Definition at line 1071 of file seglobal.c. References ASSERT, DoublePrivilegeSetSize, ExAllocatePoolWithTag, NULL, PAGED_CODE, PagedPool, POOL_RAISE_IF_ALLOCATION_FAILURE, SepDoublePrivilegeSet, SepSystemSecurityPrivilegeSet, SepTakeOwnershipPrivilegeSet, and SinglePrivilegeSetSize. Referenced by SepAccessCheck().
|
|
|
|
Definition at line 36 of file sep.c. References FALSE, and RtlValidAcl(). Referenced by SeCaptureAcl(), and SeCaptureSecurityDescriptor().
|
|
Definition at line 543 of file seastate.c. References ASSERT, PAGED_CODE, SEP_PRIVILEGE_SET_HEADER_SIZE, and SepPrivilegeSetSize. Referenced by SeAppendPrivileges().
|
|
Definition at line 681 of file se/capture.c. References ExAllocatePoolWithTag, ExFreePool(), NULL, PAGED_CODE, PagedPool, and RtlCopyUnicodeString(). Referenced by SepCreateToken(), SepDuplicateToken(), SepFilterToken(), and SepProbeAndCaptureQosData().
|
|
|
|
Definition at line 2213 of file token.c. References ALIGN_UP, ASSERT, ExAllocateLocallyUniqueId, ExAllocatePool, ExAllocatePoolWithTag, FALSE, _OBJECT_TYPE_INITIALIZER::GenericMapping, NT_SUCCESS, NTSTATUS(), NULL, ObCreateObject(), ObDeleteCapturedInsertInfo(), ObDereferenceObject, ObInsertObject(), ObjectAttributes, Owner, PAGED_CODE, PagedPool, PTOKEN, RtlCopySid(), RtlCopySidAndAttributesArray(), RtlEqualLuid(), RtlEqualSid(), RtlLengthRequiredSid(), SeAliasAdminsSid, SeChangeNotifyPrivilege, SeCreateAccessState(), SeCreateTokenPrivilege, SeDeleteAccessState(), SepArrayGroupAttributes, SepCopyProxyData(), SepDeReferenceLogonSession(), SepReferenceLogonSession(), SepTokenObjectType, SeSinglePrivilegeCheck(), Status, Token, TOKEN_DEFAULT_DYNAMIC_CHARGE, TOKEN_HAS_ADMIN_GROUP, TOKEN_HAS_TRAVERSE_PRIVILEGE, TRUE, _OBJECT_TYPE::TypeInfo, and UserMode. Referenced by NtCreateToken(), SeMakeAnonymousLogonToken(), and SeMakeSystemToken().
|
|
Definition at line 384 of file rmlogon.c. References DbgPrint, ExFreePool(), _SEP_LOGON_SESSION_REFERENCES::Flags, KeBugCheck(), _SEP_LOGON_SESSION_REFERENCES::LogonId, _SEP_LOGON_SESSION_REFERENCES::Next, NULL, PAGED_CODE, PsGetCurrentThread, _SEP_LOGON_SESSION_REFERENCES::ReferenceCount, RtlEqualLuid(), SEP_TERMINATION_NOTIFY, SepInformFileSystemsOfDeletedLogon(), SepInformLsaOfDeletedLogon(), SepLogonSessionIndex, SepLogonSessions, SepRmAcquireDbWriteLock, and SepRmReleaseDbWriteLock. Referenced by SepCreateToken(), SepDuplicateToken(), SepFilterToken(), and SepTokenDeleteMethod().
|
|
Referenced by SepInitializationPhase1(). |
|
Definition at line 650 of file seassign.c. References Dacl, DbgPrint, Group, Owner, PAGED_CODE, SepPrintAcl(), and SepPrintSid(). Referenced by SeAccessCheck(), SeAssignSecurity(), SeAssignSecurityEx(), and SepAccessCheck().
|
|
Definition at line 36 of file adtutil.c. References NULL, PAGED_CODE, and String.
|
|
Definition at line 995 of file seassign.c. References DbgPrint, PAGED_CODE, PTOKEN, SepPrintSid(), and Token. Referenced by SeAccessCheck(), SepAccessCheck(), SepSidInToken(), and SepSidInTokenEx().
|
|
Definition at line 3952 of file seaudit.c. References FALSE, FirstAce, NextAce, NULL, PAGED_CODE, SepSidInToken(), Token, and TRUE. Referenced by NtOpenObjectAuditAlarm(), SeCreateObjectAuditAlarm(), SeObjectReferenceAuditAlarm(), SeOpenObjectAuditAlarm(), SeOpenObjectForDeleteAuditAlarm(), and SeTraverseAuditAlarm().
|
|
Definition at line 4587 of file seaudit.c. References FALSE, NULL, PAGED_CODE, RtlEqualLuid(), SepFilterPrivileges, and TRUE. Referenced by SeOpenObjectAuditAlarm(), SeOpenObjectForDeleteAuditAlarm(), SepAdtPrivilegeObjectAuditAlarm(), and SePrivilegedServiceAuditAlarm().
|
|
Definition at line 737 of file se/capture.c. References ExFreePool(), NULL, and PAGED_CODE. Referenced by SeCaptureSecurityQos(), SeFreeCapturedSecurityQos(), SepDuplicateToken(), SepFilterToken(), SepProbeAndCaptureQosData(), and SepTokenDeleteMethod().
|
|
|
|
Definition at line 234 of file subject.c. References EffectiveToken, PAGED_CODE, PrimaryToken, and PTOKEN. Referenced by RtlpNewSecurityObject(), and RtlpSetSecurityObject().
|
|
Definition at line 306 of file subject.c. References FALSE, Group, Index, NULL, PAGED_CODE, PTOKEN, RtlEqualSid(), SepAcquireTokenReadLock, SepReleaseTokenReadLock, and Token. Referenced by NtSetInformationToken().
|
|
Definition at line 78 of file seinit.c. References ExLuidInitialization(), FALSE, NULL, PAGED_CODE, PsGetCurrentProcess, PsGetCurrentThread, SeMakeSystemToken(), SepInitializeWorkList(), SepRmInitPhase0(), SepTokenInitialization(), and SepVariableInitialization(). Referenced by SeInitSystem().
|
|
Definition at line 184 of file seinit.c. References ASSERT, ASSERTMSG, Dacl, ExAllocatePool, ExFreePool(), FALSE, Name, NonPagedPool, NT_SUCCESS, NtClose(), NtCreateDirectoryObject(), NtCreateEvent(), NTSTATUS(), NULL, ObjectAttributes, PAGED_CODE, RtlAddAccessAllowedAce(), RtlAnsiStringToUnicodeString(), RtlCreateAcl(), RtlCreateSecurityDescriptor(), RtlFreeUnicodeString(), RtlInitString(), RtlSetDaclSecurityDescriptor(), SeAliasAdminsSid, SeAnonymousLogonToken, SeLocalSystemSid, SeMakeAnonymousLogonToken(), SepAdtInitializePhase1(), SepDevelopmentTest(), SePublicDefaultSd, SeWorldSid, Status, and TRUE. Referenced by SeInitSystem().
|
|
Definition at line 1152 of file seglobal.c. References ExInitializeResource, PAGED_CODE, SepLsaQueue, SepLsaQueueLock, and TRUE. Referenced by SepInitializationPhase0().
|
|
|
|
Definition at line 762 of file seassign.c. References DbgPrint, FALSE, FirstAce, NextAce, NULL, PAGED_CODE, SepPrintSid(), and TRUE. Referenced by SepDumpSecurityDescriptor().
|
|
Definition at line 916 of file seassign.c. References Buffer, DbgPrint, NULL, PAGED_CODE, SepSidTranslation(), and USHORT. Referenced by SepDumpSecurityDescriptor(), SepDumpTokenInfo(), and SepPrintAcl().
|
|
Definition at line 773 of file se/capture.c. References ExAllocatePool, ExFreePool(), NT_SUCCESS, NTSTATUS(), NULL, PAGED_CODE, PagedPool, ProbeForRead, SepCopyProxyData(), SepFreeProxyData(), and Status. Referenced by SeCaptureSecurityQos().
|
|
*++
Definition at line 2324 of file sepaudit.c. References ExAllocatePoolWithTag, ExFreePool(), NT_SUCCESS, NTSTATUS(), NULL, ObQueryNameString(), PAGED_CODE, PagedPool, and Status. Referenced by SeCreateObjectAuditAlarm(), SeOpenObjectAuditAlarm(), SeOpenObjectForDeleteAuditAlarm(), and SepAdtObjectReferenceAuditAlarm().
|
|
Definition at line 2400 of file sepaudit.c. References ExAllocatePoolWithTag, NT_SUCCESS, NTSTATUS(), NULL, ObQueryTypeName(), PAGED_CODE, PagedPool, and Status. Referenced by SeOpenObjectAuditAlarm(), SeOpenObjectForDeleteAuditAlarm(), and SepAdtObjectReferenceAuditAlarm().
|
|
Definition at line 600 of file adtlog.c. References DbgPrint, DelayedWorkQueue, ExInitializeWorkItem, ExQueueWorkItem(), FALSE, PAGED_CODE, PWORKER_THREAD_ROUTINE, SepAdtCountEventsDiscarded, SepAdtCurrentListLength, SepAdtDiscardingAudits, SepAdtGenerateDiscardAudit(), SepAdtMaxListLength, SepAdtMinListLength, SepExWorkItem, SepLockLsaQueue, SepLsaQueue, SepRmCallLsa(), SepUnlockLsaQueue, TRUE, and _SEP_WORK_ITEM::WorkItem. Referenced by SepAdtLogAuditRecord(), and SepInformLsaOfDeletedLogon().
|
|
Definition at line 278 of file rmlogon.c. References DbgPrint, _SEP_LOGON_SESSION_REFERENCES::LogonId, _SEP_LOGON_SESSION_REFERENCES::Next, NULL, PAGED_CODE, PSEP_LOGON_SESSION_REFERENCES, PsGetCurrentThread, _SEP_LOGON_SESSION_REFERENCES::ReferenceCount, RtlEqualLuid(), SepLogonSessionIndex, SepLogonSessions, SepRmAcquireDbWriteLock, and SepRmReleaseDbWriteLock. Referenced by SepCreateToken(), SepDuplicateToken(), and SepFilterToken().
|
|
Definition at line 907 of file rmmain.c. References ASSERT, _SEP_LSA_WORK_ITEM::CleanupFunction, _SEP_LSA_WORK_ITEM::CleanupParameter, _SEP_LSA_WORK_ITEM::CommandNumber, _SEP_LSA_WORK_ITEM::CommandParams, _SEP_LSA_WORK_ITEM::CommandParamsLength, _SEP_LSA_WORK_ITEM::CommandParamsMemoryType, DbgPrint, ExFreePool(), KeAttachProcess(), KeDetachProcess(), _SEP_RM_STATE::LsaCommandPortHandle, _SEP_RM_STATE::LsaViewPortMemory, NT_SUCCESS, NTSTATUS(), NULL, PAGED_CODE, _EPROCESS::Pcb, PSEP_WORK_ITEM, _SEP_LSA_WORK_ITEM::ReplyBuffer, _SEP_LSA_WORK_ITEM::ReplyBufferLength, ReplyMessage(), _SEP_RM_STATE::RmViewPortMemory, SEP_RM_LSA_SHARED_MEMORY_SIZE, SepAdtCopyToLsaSharedMemory(), SepDequeueWorkItem(), SepLsaHandle, SepLsaQueueLength, SepRmLsaCallProcess, SepRmState, SepWorkListHead, and Status. Referenced by SepQueueWorkItem().
|
|
Definition at line 1275 of file rmmain.c. References PAGED_CODE, and SepRmDbInitialization(). Referenced by SepInitializationPhase0().
|
|
Definition at line 733 of file accessck.c. References FALSE, NULL, PAGED_CODE, PTOKEN, RtlEqualSid(), SepDumpTokenInfo(), SePrincipalSelfSid, Token, and TRUE. Referenced by SepAccessCheck(), SepExamineSacl(), SepExamineSaclEx(), and SepTokenIsOwner().
|
|
Definition at line 1065 of file seassign.c. References FALSE, PAGED_CODE, RtlEqualSid(), RtlInitString(), SeBatchSid, SeCreatorGroupServerSid, SeCreatorGroupSid, SeCreatorOwnerServerSid, SeCreatorOwnerSid, SeInteractiveSid, SeLocalSid, SeLocalSystemSid, SeNetworkSid, SeWorldSid, and TRUE. Referenced by SepPrintSid().
|
|
Definition at line 143 of file seaudit.c. References ASSERT, PAGED_CODE, SepPrivilegeCheck(), SeTcbPrivilege, and Token. Referenced by SepAccessCheck(), and SePrivilegePolicyCheck().
|
|
Definition at line 3796 of file accessck.c. References ASSERT, EffectiveToken, FALSE, NULL, Owner, PAGED_CODE, PTOKEN, SepAcquireTokenReadLock, SepReleaseTokenReadLock, SepSidInToken(), SepSidInTokenEx(), Token, TOKEN_IS_RESTRICTED, and TRUE. Referenced by SeAccessCheck(), SeAccessCheckByType(), and SepAccessCheckAndAuditAlarm().
|
|
Definition at line 381 of file subject.c. References EffectiveToken, exit, FALSE, Index, NULL, Owner, PAGED_CODE, PTOKEN, RtlEqualSid(), SepAcquireTokenReadLock, SepIdAssignableAsOwner(), SepReleaseTokenReadLock, SeRestorePrivilege, SeSinglePrivilegeCheck(), TRUE, and UserMode. Referenced by RtlpNewSecurityObject(), and RtlpSetSecurityObject().
|
|
|
|
|
|
|
|
Definition at line 376 of file sep.h. Referenced by SepQueueWorkItem(). |
|
Definition at line 265 of file sep.h. Referenced by SepRmCallLsa(), and SepRmCommandServerThreadInit(). |
|
Definition at line 281 of file sep.h. Referenced by SepDequeueWorkItem(), SepInitializeWorkList(), and SepQueueWorkItem(). |
|
Definition at line 275 of file sep.h. Referenced by SepRmCallLsa(). |
|
Definition at line 273 of file sep.h. Referenced by SepInitializeWorkList(). |