archive
/
windows-nt-4.0
mirror of https://github.com/lianthony/NT4.0
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Windows NT 4.0 source code leak
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
184 MiB
Tree: b4a8d373d8
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b4a8d373d8'
${ noResults }
windows-nt-4.0/private/ntos/se/tokenqry.c

1612 lines
46 KiB
Raw Normal View History

initial commit
4 years ago
  1. /*++
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. Tokenqry.c
  9. Abstract:
  11. This module implements the QUERY function for the executive
  12. token object.
  14. Author:
  16. Jim Kelly (JimK) 15-June-1990
  19. Revision History:
  21. --*/
  23. #include "sep.h"
  24. #include "seopaque.h"
  25. #include "tokenp.h"
  27. #ifdef ALLOC_PRAGMA
  28. #pragma alloc_text(PAGE,NtQueryInformationToken)
  29. #pragma alloc_text(PAGE,SeQueryAuthenticationIdToken)
  30. #pragma alloc_text(PAGE,SeQueryInformationToken)
  31. #endif
  34. NTSTATUS
  35. NtQueryInformationToken (
  36. IN HANDLE TokenHandle,
  37. IN TOKEN_INFORMATION_CLASS TokenInformationClass,
  38. OUT PVOID TokenInformation,
  39. IN ULONG TokenInformationLength,
  40. OUT PULONG ReturnLength
  41. )
  43. /*++
  46. Routine Description:
  48. Retrieve information about a specified token.
  50. Arguments:
  52. TokenHandle - Provides a handle to the token to operate on.
  54. TokenInformationClass - The token information class about which
  55. to retrieve information.
  57. TokenInformation - The buffer to receive the requested class of
  58. information. The buffer must be aligned on at least a
  59. longword boundary. The actual structures returned are
  60. dependent upon the information class requested, as defined in
  61. the TokenInformationClass parameter description.
  63. TokenInformation Format By Information Class:
  65. TokenUser => TOKEN_USER data structure. TOKEN_QUERY
  66. access is needed to retrieve this information about a
  67. token.
  69. TokenGroups => TOKEN_GROUPS data structure. TOKEN_QUERY
  70. access is needed to retrieve this information about a
  71. token.
  73. TokenPrivileges => TOKEN_PRIVILEGES data structure.
  74. TOKEN_QUERY access is needed to retrieve this information
  75. about a token.
  77. TokenOwner => TOKEN_OWNER data structure. TOKEN_QUERY
  78. access is needed to retrieve this information about a
  79. token.
  81. TokenPrimaryGroup => TOKEN_PRIMARY_GROUP data structure.
  82. TOKEN_QUERY access is needed to retrieve this information
  83. about a token.
  85. TokenDefaultDacl => TOKEN_DEFAULT_DACL data structure.
  86. TOKEN_QUERY access is needed to retrieve this information
  87. about a token.
  89. TokenSource => TOKEN_SOURCE data structure.
  90. TOKEN_QUERY_SOURCE access is needed to retrieve this
  91. information about a token.
  93. TokenType => TOKEN_TYPE data structure.
  94. TOKEN_QUERY access is needed to retrieve this information
  95. about a token.
  97. TokenStatistics => TOKEN_STATISTICS data structure.
  98. TOKEN_QUERY access is needed to retrieve this
  99. information about a token.
  101. TokenInformationLength - Indicates the length, in bytes, of the
  102. TokenInformation buffer.
  104. ReturnLength - This OUT parameter receives the actual length of
  105. the requested information. If this value is larger than that
  106. provided by the TokenInformationLength parameter, then the
  107. buffer provided to receive the requested information is not
  108. large enough to hold that data and no data is returned.
  110. If the queried class is TokenDefaultDacl and there is no
  111. default Dacl established for the token, then the return
  112. length will be returned as zero, and no data will be returned.
  114. Return Value:
  116. STATUS_SUCCESS - Indicates the operation was successful.
  118. STATUS_BUFFER_TOO_SMALL - if the requested information did not
  119. fit in the provided output buffer. In this case, the
  120. ReturnLength OUT parameter contains the number of bytes
  121. actually needed to store the requested information.
  123. --*/
  124. {
  126. KPROCESSOR_MODE PreviousMode;
  127. NTSTATUS Status;
  129. PTOKEN Token;
  131. ULONG RequiredLength;
  132. ULONG Index;
  134. PTOKEN_TYPE LocalType;
  135. PTOKEN_USER LocalUser;
  136. PTOKEN_GROUPS LocalGroups;
  137. PTOKEN_PRIVILEGES LocalPrivileges;
  138. PTOKEN_OWNER LocalOwner;
  139. PTOKEN_PRIMARY_GROUP LocalPrimaryGroup;
  140. PTOKEN_DEFAULT_DACL LocalDefaultDacl;
  141. PTOKEN_SOURCE LocalSource;
  142. PSECURITY_IMPERSONATION_LEVEL LocalImpersonationLevel;
  143. PTOKEN_STATISTICS LocalStatistics;
  145. PSID PSid;
  146. PACL PAcl;
  148. PVOID Ignore;
  150. PAGED_CODE();
  152. //
  153. // Get previous processor mode and probe output argument if necessary.
  154. //
  156. PreviousMode = KeGetPreviousMode();
  157. if (PreviousMode != KernelMode) {
  158. try {
  160. ProbeForWrite(
  161. TokenInformation,
  162. TokenInformationLength,
  163. sizeof(ULONG)
  164. );
  166. ProbeForWriteUlong(ReturnLength);
  168. } except(EXCEPTION_EXECUTE_HANDLER) {
  169. return GetExceptionCode();
  170. }
  171. }
  173. //
  174. // Case on information class.
  175. //
  177. switch ( TokenInformationClass ) {
  179. case TokenUser:
  181. LocalUser = (PTOKEN_USER)TokenInformation;
  183. Status = ObReferenceObjectByHandle(
  184. TokenHandle, // Handle
  185. TOKEN_QUERY, // DesiredAccess
  186. SepTokenObjectType, // ObjectType
  187. PreviousMode, // AccessMode
  188. (PVOID *)&Token, // Object
  189. NULL // GrantedAccess
  190. );
  192. if ( !NT_SUCCESS(Status) ) {
  193. return Status;
  194. }
  196. //
  197. // Gain exclusive access to the token.
  198. //
  200. SepAcquireTokenReadLock( Token );
  204. //
  205. // Return the length required now in case not enough buffer
  206. // was provided by the caller and we have to return an error.
  207. //
  209. RequiredLength = SeLengthSid( Token->UserAndGroups[0].Sid) +
  210. (ULONG)sizeof( TOKEN_USER );
  212. try {
  214. *ReturnLength = RequiredLength;
  216. } except(EXCEPTION_EXECUTE_HANDLER) {
  218. SepReleaseTokenReadLock( Token );
  219. ObDereferenceObject( Token );
  220. return GetExceptionCode();
  221. }
  223. if ( TokenInformationLength < RequiredLength ) {
  225. SepReleaseTokenReadLock( Token );
  226. ObDereferenceObject( Token );
  227. return STATUS_BUFFER_TOO_SMALL;
  229. }
  231. //
  232. // Return the user SID
  233. //
  235. try {
  237. //
  238. // Put SID immediately following TOKEN_USER data structure
  239. //
  240. PSid = (PSID)( (ULONG)LocalUser + (ULONG)sizeof(TOKEN_USER) );
  242. RtlCopySidAndAttributesArray(
  243. 1,
  244. Token->UserAndGroups,
  245. RequiredLength,
  246. &(LocalUser->User),
  247. PSid,
  248. ((PSID *)&Ignore),
  249. ((PULONG)&Ignore)
  250. );
  252. } except(EXCEPTION_EXECUTE_HANDLER) {
  254. SepReleaseTokenReadLock( Token );
  255. ObDereferenceObject( Token );
  256. return GetExceptionCode();
  257. }
  260. SepReleaseTokenReadLock( Token );
  261. ObDereferenceObject( Token );
  262. return STATUS_SUCCESS;
  264. case TokenGroups:
  266. LocalGroups = (PTOKEN_GROUPS)TokenInformation;
  268. Status = ObReferenceObjectByHandle(
  269. TokenHandle, // Handle
  270. TOKEN_QUERY, // DesiredAccess
  271. SepTokenObjectType, // ObjectType
  272. PreviousMode, // AccessMode
  273. (PVOID *)&Token, // Object
  274. NULL // GrantedAccess
  275. );
  277. if ( !NT_SUCCESS(Status) ) {
  278. return Status;
  279. }
  281. //
  282. // Gain exclusive access to the token.
  283. //
  285. SepAcquireTokenReadLock( Token );
  287. //
  288. // Figure out how much space is needed to return the group SIDs.
  289. // That's the size of TOKEN_GROUPS (without any array entries)
  290. // plus the size of an SID_AND_ATTRIBUTES times the number of groups.
  291. // The number of groups is Token->UserAndGroups-1 (since the count
  292. // includes the user ID). Then the lengths of each individual group
  293. // must be added.
  294. //
  296. RequiredLength = (ULONG)sizeof(TOKEN_GROUPS) +
  297. ((Token->UserAndGroupCount - ANYSIZE_ARRAY - 1) *
  298. ((ULONG)sizeof(SID_AND_ATTRIBUTES)) );
  300. Index = 1;
  301. while (Index < Token->UserAndGroupCount) {
  303. RequiredLength += SeLengthSid( Token->UserAndGroups[Index].Sid );
  305. Index += 1;
  307. } // endwhile
  309. //
  310. // Return the length required now in case not enough buffer
  311. // was provided by the caller and we have to return an error.
  312. //
  314. try {
  316. *ReturnLength = RequiredLength;
  318. } except(EXCEPTION_EXECUTE_HANDLER) {
  320. SepReleaseTokenReadLock( Token );
  321. ObDereferenceObject( Token );
  322. return GetExceptionCode();
  323. }
  325. if ( TokenInformationLength < RequiredLength ) {
  327. SepReleaseTokenReadLock( Token );
  328. ObDereferenceObject( Token );
  329. return STATUS_BUFFER_TOO_SMALL;
  331. }
  333. //
  334. // Now copy the groups.
  335. //
  337. try {
  339. LocalGroups->GroupCount = Token->UserAndGroupCount - 1;
  341. PSid = (PSID)( (ULONG)LocalGroups +
  342. (ULONG)sizeof(TOKEN_GROUPS) +
  343. ( (Token->UserAndGroupCount - ANYSIZE_ARRAY - 1) *
  344. (ULONG)sizeof(SID_AND_ATTRIBUTES) )
  345. );
  347. RtlCopySidAndAttributesArray(
  348. (ULONG)(Token->UserAndGroupCount - 1),
  349. &(Token->UserAndGroups[1]),
  350. RequiredLength,
  351. LocalGroups->Groups,
  352. PSid,
  353. ((PSID *)&Ignore),
  354. ((PULONG)&Ignore)
  355. );
  357. } except(EXCEPTION_EXECUTE_HANDLER) {
  359. SepReleaseTokenReadLock( Token );
  360. ObDereferenceObject( Token );
  361. return GetExceptionCode();
  362. }
  365. SepReleaseTokenReadLock( Token );
  366. ObDereferenceObject( Token );
  367. return STATUS_SUCCESS;
  369. case TokenPrivileges:
  371. LocalPrivileges = (PTOKEN_PRIVILEGES)TokenInformation;
  373. Status = ObReferenceObjectByHandle(
  374. TokenHandle, // Handle
  375. TOKEN_QUERY, // DesiredAccess
  376. SepTokenObjectType, // ObjectType
  377. PreviousMode, // AccessMode
  378. (PVOID *)&Token, // Object
  379. NULL // GrantedAccess
  380. );
  382. if ( !NT_SUCCESS(Status) ) {
  383. return Status;
  384. }
  386. //
  387. // Gain exclusive access to the token to prevent changes
  388. // from occuring to the privileges.
  389. //
  391. SepAcquireTokenReadLock( Token );
  394. //
  395. // Return the length required now in case not enough buffer
  396. // was provided by the caller and we have to return an error.
  397. //
  399. RequiredLength = (ULONG)sizeof(TOKEN_PRIVILEGES) +
  400. ((Token->PrivilegeCount - ANYSIZE_ARRAY) *
  401. ((ULONG)sizeof(LUID_AND_ATTRIBUTES)) );
  404. try {
  406. *ReturnLength = RequiredLength;
  408. } except(EXCEPTION_EXECUTE_HANDLER) {
  410. SepReleaseTokenReadLock( Token );
  411. ObDereferenceObject( Token );
  412. return GetExceptionCode();
  413. }
  415. if ( TokenInformationLength < RequiredLength ) {
  417. SepReleaseTokenReadLock( Token );
  418. ObDereferenceObject( Token );
  419. return STATUS_BUFFER_TOO_SMALL;
  421. }
  423. //
  424. // Return the token privileges.
  425. //
  427. try {
  429. LocalPrivileges->PrivilegeCount = Token->PrivilegeCount;
  431. RtlCopyLuidAndAttributesArray(
  432. Token->PrivilegeCount,
  433. Token->Privileges,
  434. LocalPrivileges->Privileges
  435. );
  437. } except(EXCEPTION_EXECUTE_HANDLER) {
  439. SepReleaseTokenReadLock( Token );
  440. ObDereferenceObject( Token );
  441. return GetExceptionCode();
  442. }
  445. SepReleaseTokenReadLock( Token );
  446. ObDereferenceObject( Token );
  447. return STATUS_SUCCESS;
  449. case TokenOwner:
  451. LocalOwner = (PTOKEN_OWNER)TokenInformation;
  453. Status = ObReferenceObjectByHandle(
  454. TokenHandle, // Handle
  455. TOKEN_QUERY, // DesiredAccess
  456. SepTokenObjectType, // ObjectType
  457. PreviousMode, // AccessMode
  458. (PVOID *)&Token, // Object
  459. NULL // GrantedAccess
  460. );
  462. if ( !NT_SUCCESS(Status) ) {
  463. return Status;
  464. }
  466. //
  467. // Gain exclusive access to the token to prevent changes
  468. // from occuring to the owner.
  469. //
  471. SepAcquireTokenReadLock( Token );
  473. //
  474. // Return the length required now in case not enough buffer
  475. // was provided by the caller and we have to return an error.
  476. //
  478. PSid = Token->UserAndGroups[Token->DefaultOwnerIndex].Sid;
  479. RequiredLength = (ULONG)sizeof(TOKEN_OWNER) +
  480. SeLengthSid( PSid );
  482. try {
  484. *ReturnLength = RequiredLength;
  486. } except(EXCEPTION_EXECUTE_HANDLER) {
  488. SepReleaseTokenReadLock( Token );
  489. ObDereferenceObject( Token );
  490. return GetExceptionCode();
  491. }
  493. if ( TokenInformationLength < RequiredLength ) {
  495. SepReleaseTokenReadLock( Token );
  496. ObDereferenceObject( Token );
  497. return STATUS_BUFFER_TOO_SMALL;
  499. }
  501. //
  502. // Return the owner SID
  503. //
  505. PSid = (PSID)((ULONG)LocalOwner +
  506. (ULONG)sizeof(TOKEN_OWNER));
  508. try {
  510. LocalOwner->Owner = PSid;
  512. Status = RtlCopySid(
  513. (RequiredLength - (ULONG)sizeof(TOKEN_OWNER)),
  514. PSid,
  515. Token->UserAndGroups[Token->DefaultOwnerIndex].Sid
  516. );
  518. ASSERT( NT_SUCCESS(Status) );
  520. } except(EXCEPTION_EXECUTE_HANDLER) {
  522. SepReleaseTokenReadLock( Token );
  523. ObDereferenceObject( Token );
  524. return GetExceptionCode();
  525. }
  528. SepReleaseTokenReadLock( Token );
  529. ObDereferenceObject( Token );
  530. return STATUS_SUCCESS;
  532. case TokenPrimaryGroup:
  534. LocalPrimaryGroup = (PTOKEN_PRIMARY_GROUP)TokenInformation;
  536. Status = ObReferenceObjectByHandle(
  537. TokenHandle, // Handle
  538. TOKEN_QUERY, // DesiredAccess
  539. SepTokenObjectType, // ObjectType
  540. PreviousMode, // AccessMode
  541. (PVOID *)&Token, // Object
  542. NULL // GrantedAccess
  543. );
  545. if ( !NT_SUCCESS(Status) ) {
  546. return Status;
  547. }
  549. //
  550. // Gain exclusive access to the token to prevent changes
  551. // from occuring to the owner.
  552. //
  554. SepAcquireTokenReadLock( Token );
  556. //
  557. // Return the length required now in case not enough buffer
  558. // was provided by the caller and we have to return an error.
  559. //
  561. RequiredLength = (ULONG)sizeof(TOKEN_PRIMARY_GROUP) +
  562. SeLengthSid( Token->PrimaryGroup );
  564. try {
  566. *ReturnLength = RequiredLength;
  568. } except(EXCEPTION_EXECUTE_HANDLER) {
  570. SepReleaseTokenReadLock( Token );
  571. ObDereferenceObject( Token );
  572. return GetExceptionCode();
  573. }
  575. if ( TokenInformationLength < RequiredLength ) {
  577. SepReleaseTokenReadLock( Token );
  578. ObDereferenceObject( Token );
  579. return STATUS_BUFFER_TOO_SMALL;
  581. }
  583. //
  584. // Return the primary group SID
  585. //
  587. PSid = (PSID)((ULONG)LocalPrimaryGroup +
  588. (ULONG)sizeof(TOKEN_PRIMARY_GROUP));
  590. try {
  592. LocalPrimaryGroup->PrimaryGroup = PSid;
  594. Status = RtlCopySid( (RequiredLength - (ULONG)sizeof(TOKEN_PRIMARY_GROUP)),
  595. PSid,
  596. Token->PrimaryGroup
  597. );
  599. ASSERT( NT_SUCCESS(Status) );
  601. } except(EXCEPTION_EXECUTE_HANDLER) {
  603. SepReleaseTokenReadLock( Token );
  604. ObDereferenceObject( Token );
  605. return GetExceptionCode();
  606. }
  609. SepReleaseTokenReadLock( Token );
  610. ObDereferenceObject( Token );
  611. return STATUS_SUCCESS;
  613. case TokenDefaultDacl:
  615. LocalDefaultDacl = (PTOKEN_DEFAULT_DACL)TokenInformation;
  617. Status = ObReferenceObjectByHandle(
  618. TokenHandle, // Handle
  619. TOKEN_QUERY, // DesiredAccess
  620. SepTokenObjectType, // ObjectType
  621. PreviousMode, // AccessMode
  622. (PVOID *)&Token, // Object
  623. NULL // GrantedAccess
  624. );
  626. if ( !NT_SUCCESS(Status) ) {
  627. return Status;
  628. }
  630. //
  631. // Gain exclusive access to the token to prevent changes
  632. // from occuring to the owner.
  633. //
  635. SepAcquireTokenReadLock( Token );
  638. //
  639. // Return the length required now in case not enough buffer
  640. // was provided by the caller and we have to return an error.
  641. //
  643. RequiredLength = (ULONG)sizeof(TOKEN_DEFAULT_DACL);
  645. if (ARGUMENT_PRESENT(Token->DefaultDacl)) {
  647. RequiredLength += Token->DefaultDacl->AclSize;
  649. }
  651. try {
  653. *ReturnLength = RequiredLength;
  655. } except(EXCEPTION_EXECUTE_HANDLER) {
  657. SepReleaseTokenReadLock( Token );
  658. ObDereferenceObject( Token );
  659. return GetExceptionCode();
  660. }
  662. if ( TokenInformationLength < RequiredLength ) {
  664. SepReleaseTokenReadLock( Token );
  665. ObDereferenceObject( Token );
  666. return STATUS_BUFFER_TOO_SMALL;
  668. }
  670. //
  671. // Return the default Dacl
  672. //
  674. PAcl = (PACL)((ULONG)LocalDefaultDacl +
  675. (ULONG)sizeof(TOKEN_DEFAULT_DACL));
  677. try {
  679. if (ARGUMENT_PRESENT(Token->DefaultDacl)) {
  681. LocalDefaultDacl->DefaultDacl = PAcl;
  683. RtlMoveMemory( (PVOID)PAcl,
  684. (PVOID)Token->DefaultDacl,
  685. Token->DefaultDacl->AclSize
  686. );
  687. } else {
  689. LocalDefaultDacl->DefaultDacl = NULL;
  691. }
  693. } except(EXCEPTION_EXECUTE_HANDLER) {
  695. SepReleaseTokenReadLock( Token );
  696. ObDereferenceObject( Token );
  697. return GetExceptionCode();
  698. }
  701. SepReleaseTokenReadLock( Token );
  702. ObDereferenceObject( Token );
  703. return STATUS_SUCCESS;
  707. case TokenSource:
  709. LocalSource = (PTOKEN_SOURCE)TokenInformation;
  711. Status = ObReferenceObjectByHandle(
  712. TokenHandle, // Handle
  713. TOKEN_QUERY_SOURCE, // DesiredAccess
  714. SepTokenObjectType, // ObjectType
  715. PreviousMode, // AccessMode
  716. (PVOID *)&Token, // Object
  717. NULL // GrantedAccess
  718. );
  720. if ( !NT_SUCCESS(Status) ) {
  721. return Status;
  722. }
  724. //
  725. // The type of a token can not be changed, so
  726. // exclusive access to the token is not necessary.
  727. //
  729. //
  730. // Return the length required now in case not enough buffer
  731. // was provided by the caller and we have to return an error.
  732. //
  734. RequiredLength = (ULONG) sizeof(TOKEN_SOURCE);
  736. try {
  738. *ReturnLength = RequiredLength;
  740. } except(EXCEPTION_EXECUTE_HANDLER) {
  742. ObDereferenceObject( Token );
  743. return GetExceptionCode();
  744. }
  746. if ( TokenInformationLength < RequiredLength ) {
  748. ObDereferenceObject( Token );
  749. return STATUS_BUFFER_TOO_SMALL;
  751. }
  754. //
  755. // Return the token source
  756. //
  758. try {
  760. (*LocalSource) = Token->TokenSource;
  762. } except(EXCEPTION_EXECUTE_HANDLER) {
  764. ObDereferenceObject( Token );
  765. return GetExceptionCode();
  766. }
  769. ObDereferenceObject( Token );
  770. return STATUS_SUCCESS;
  772. case TokenType:
  774. LocalType = (PTOKEN_TYPE)TokenInformation;
  776. Status = ObReferenceObjectByHandle(
  777. TokenHandle, // Handle
  778. TOKEN_QUERY, // DesiredAccess
  779. SepTokenObjectType, // ObjectType
  780. PreviousMode, // AccessMode
  781. (PVOID *)&Token, // Object
  782. NULL // GrantedAccess
  783. );
  785. if ( !NT_SUCCESS(Status) ) {
  786. return Status;
  787. }
  789. //
  790. // The type of a token can not be changed, so
  791. // exclusive access to the token is not necessary.
  792. //
  794. //
  795. // Return the length required now in case not enough buffer
  796. // was provided by the caller and we have to return an error.
  797. //
  799. RequiredLength = (ULONG) sizeof(TOKEN_TYPE);
  801. try {
  803. *ReturnLength = RequiredLength;
  805. } except(EXCEPTION_EXECUTE_HANDLER) {
  807. ObDereferenceObject( Token );
  808. return GetExceptionCode();
  809. }
  811. if ( TokenInformationLength < RequiredLength ) {
  813. ObDereferenceObject( Token );
  814. return STATUS_BUFFER_TOO_SMALL;
  816. }
  819. //
  820. // Return the token type
  821. //
  823. try {
  825. (*LocalType) = Token->TokenType;
  827. } except(EXCEPTION_EXECUTE_HANDLER) {
  829. ObDereferenceObject( Token );
  830. return GetExceptionCode();
  831. }
  834. ObDereferenceObject( Token );
  835. return STATUS_SUCCESS;
  838. case TokenImpersonationLevel:
  840. LocalImpersonationLevel = (PSECURITY_IMPERSONATION_LEVEL)TokenInformation;
  842. Status = ObReferenceObjectByHandle(
  843. TokenHandle, // Handle
  844. TOKEN_QUERY, // DesiredAccess
  845. SepTokenObjectType, // ObjectType
  846. PreviousMode, // AccessMode
  847. (PVOID *)&Token, // Object
  848. NULL // GrantedAccess
  849. );
  851. if ( !NT_SUCCESS(Status) ) {
  852. return Status;
  853. }
  855. //
  856. // The impersonation level of a token can not be changed, so
  857. // exclusive access to the token is not necessary.
  858. //
  860. //
  861. // Make sure the token is an appropriate type to be retrieving
  862. // the impersonation level from.
  863. //
  865. if (Token->TokenType != TokenImpersonation) {
  867. ObDereferenceObject( Token );
  868. return STATUS_INVALID_INFO_CLASS;
  870. }
  872. //
  873. // Return the length required now in case not enough buffer
  874. // was provided by the caller and we have to return an error.
  875. //
  877. RequiredLength = (ULONG) sizeof(SECURITY_IMPERSONATION_LEVEL);
  879. try {
  881. *ReturnLength = RequiredLength;
  883. } except(EXCEPTION_EXECUTE_HANDLER) {
  885. ObDereferenceObject( Token );
  886. return GetExceptionCode();
  887. }
  889. if ( TokenInformationLength < RequiredLength ) {
  891. ObDereferenceObject( Token );
  892. return STATUS_BUFFER_TOO_SMALL;
  894. }
  897. //
  898. // Return the impersonation level
  899. //
  901. try {
  903. (*LocalImpersonationLevel) = Token->ImpersonationLevel;
  905. } except(EXCEPTION_EXECUTE_HANDLER) {
  907. ObDereferenceObject( Token );
  908. return GetExceptionCode();
  909. }
  912. ObDereferenceObject( Token );
  913. return STATUS_SUCCESS;
  916. case TokenStatistics:
  918. LocalStatistics = (PTOKEN_STATISTICS)TokenInformation;
  920. Status = ObReferenceObjectByHandle(
  921. TokenHandle, // Handle
  922. TOKEN_QUERY, // DesiredAccess
  923. SepTokenObjectType, // ObjectType
  924. PreviousMode, // AccessMode
  925. (PVOID *)&Token, // Object
  926. NULL // GrantedAccess
  927. );
  929. if ( !NT_SUCCESS(Status) ) {
  930. return Status;
  931. }
  933. //
  934. // Gain exclusive access to the token.
  935. //
  937. SepAcquireTokenReadLock( Token );
  941. //
  942. // Return the length required now in case not enough buffer
  943. // was provided by the caller and we have to return an error.
  944. //
  946. RequiredLength = (ULONG)sizeof( TOKEN_STATISTICS );
  948. try {
  950. *ReturnLength = RequiredLength;
  952. } except(EXCEPTION_EXECUTE_HANDLER) {
  954. SepReleaseTokenReadLock( Token );
  955. ObDereferenceObject( Token );
  956. return GetExceptionCode();
  957. }
  959. if ( TokenInformationLength < RequiredLength ) {
  961. SepReleaseTokenReadLock( Token );
  962. ObDereferenceObject( Token );
  963. return STATUS_BUFFER_TOO_SMALL;
  965. }
  967. //
  968. // Return the statistics
  969. //
  971. try {
  973. LocalStatistics->TokenId = Token->TokenId;
  974. LocalStatistics->AuthenticationId = Token->AuthenticationId;
  975. LocalStatistics->ExpirationTime = Token->ExpirationTime;
  976. LocalStatistics->TokenType = Token->TokenType;
  977. LocalStatistics->ImpersonationLevel = Token->ImpersonationLevel;
  978. LocalStatistics->DynamicCharged = Token->DynamicCharged;
  979. LocalStatistics->DynamicAvailable = Token->DynamicAvailable;
  980. LocalStatistics->GroupCount = Token->UserAndGroupCount-1;
  981. LocalStatistics->PrivilegeCount = Token->PrivilegeCount;
  982. LocalStatistics->ModifiedId = Token->ModifiedId;
  984. } except(EXCEPTION_EXECUTE_HANDLER) {
  986. SepReleaseTokenReadLock( Token );
  987. ObDereferenceObject( Token );
  988. return GetExceptionCode();
  989. }
  992. SepReleaseTokenReadLock( Token );
  993. ObDereferenceObject( Token );
  994. return STATUS_SUCCESS;
  996. default:
  998. return STATUS_INVALID_INFO_CLASS;
  999. }
  1000. }
  1003. NTSTATUS
  1004. SeQueryAuthenticationIdToken(
  1005. IN PACCESS_TOKEN Token,
  1006. OUT PLUID AuthenticationId
  1007. )
  1009. /*++
  1012. Routine Description:
  1014. Retrieve authentication ID out of the token.
  1016. Arguments:
  1018. Token - Referenced pointer to a token.
  1020. AutenticationId - Receives the token's authentication ID.
  1022. Return Value:
  1024. STATUS_SUCCESS - Indicates the operation was successful.
  1026. This is the only expected status.
  1028. --*/
  1029. {
  1030. PAGED_CODE();
  1032. SepAcquireTokenReadLock( ((PTOKEN)Token) );
  1033. (*AuthenticationId) = ((PTOKEN)Token)->AuthenticationId;
  1034. SepReleaseTokenReadLock( ((PTOKEN)Token) );
  1035. return(STATUS_SUCCESS);
  1036. }
  1040. NTSTATUS
  1041. SeQueryInformationToken (
  1042. IN PACCESS_TOKEN AccessToken,
  1043. IN TOKEN_INFORMATION_CLASS TokenInformationClass,
  1044. OUT PVOID *TokenInformation
  1045. )
  1047. /*++
  1050. Routine Description:
  1052. Retrieve information about a specified token.
  1054. Arguments:
  1056. TokenHandle - Provides a handle to the token to operate on.
  1058. TokenInformationClass - The token information class about which
  1059. to retrieve information.
  1061. TokenInformation - Receives a pointer to the requested information.
  1062. The actual structures returned are dependent upon the information
  1063. class requested, as defined in the TokenInformationClass parameter
  1064. description.
  1066. TokenInformation Format By Information Class:
  1068. TokenUser => TOKEN_USER data structure. TOKEN_QUERY
  1069. access is needed to retrieve this information about a
  1070. token.
  1072. TokenGroups => TOKEN_GROUPS data structure. TOKEN_QUERY
  1073. access is needed to retrieve this information about a
  1074. token.
  1076. TokenPrivileges => TOKEN_PRIVILEGES data structure.
  1077. TOKEN_QUERY access is needed to retrieve this information
  1078. about a token.
  1080. TokenOwner => TOKEN_OWNER data structure. TOKEN_QUERY
  1081. access is needed to retrieve this information about a
  1082. token.
  1084. TokenPrimaryGroup => TOKEN_PRIMARY_GROUP data structure.
  1085. TOKEN_QUERY access is needed to retrieve this information
  1086. about a token.
  1088. TokenDefaultDacl => TOKEN_DEFAULT_DACL data structure.
  1089. TOKEN_QUERY access is needed to retrieve this information
  1090. about a token.
  1092. TokenSource => TOKEN_SOURCE data structure.
  1093. TOKEN_QUERY_SOURCE access is needed to retrieve this
  1094. information about a token.
  1096. TokenType => TOKEN_TYPE data structure.
  1097. TOKEN_QUERY access is needed to retrieve this information
  1098. about a token.
  1100. TokenStatistics => TOKEN_STATISTICS data structure.
  1101. TOKEN_QUERY access is needed to retrieve this
  1102. information about a token.
  1104. Return Value:
  1106. STATUS_SUCCESS - Indicates the operation was successful.
  1108. --*/
  1109. {
  1111. NTSTATUS Status;
  1113. ULONG RequiredLength;
  1114. ULONG Index;
  1116. PSID PSid;
  1117. PACL PAcl;
  1119. PVOID Ignore;
  1120. PTOKEN Token = (PTOKEN)AccessToken;
  1122. PAGED_CODE();
  1124. //
  1125. // Case on information class.
  1126. //
  1128. switch ( TokenInformationClass ) {
  1130. case TokenUser:
  1131. {
  1132. PTOKEN_USER LocalUser;
  1134. LocalUser = (PTOKEN_USER)(*TokenInformation);
  1136. //
  1137. // Gain exclusive access to the token.
  1138. //
  1140. SepAcquireTokenReadLock( Token );
  1142. //
  1143. // Return the length required now in case not enough buffer
  1144. // was provided by the caller and we have to return an error.
  1145. //
  1147. RequiredLength = SeLengthSid( Token->UserAndGroups[0].Sid) +
  1148. (ULONG)sizeof( TOKEN_USER );
  1150. LocalUser = ExAllocatePool( PagedPool, RequiredLength );
  1152. if (LocalUser == NULL) {
  1153. SepReleaseTokenReadLock( Token );
  1154. return( STATUS_INSUFFICIENT_RESOURCES );
  1155. }
  1157. //
  1158. // Return the user SID
  1159. //
  1160. // Put SID immediately following TOKEN_USER data structure
  1161. //
  1163. PSid = (PSID)( (ULONG)LocalUser + (ULONG)sizeof(TOKEN_USER) );
  1165. RtlCopySidAndAttributesArray(
  1166. 1,
  1167. Token->UserAndGroups,
  1168. RequiredLength,
  1169. &(LocalUser->User),
  1170. PSid,
  1171. ((PSID *)&Ignore),
  1172. ((PULONG)&Ignore)
  1173. );
  1175. SepReleaseTokenReadLock( Token );
  1176. return STATUS_SUCCESS;
  1177. }
  1180. case TokenGroups:
  1181. {
  1182. PTOKEN_GROUPS LocalGroups;
  1184. LocalGroups = (PTOKEN_GROUPS)(*TokenInformation);
  1186. //
  1187. // Gain exclusive access to the token.
  1188. //
  1190. SepAcquireTokenReadLock( Token );
  1192. //
  1193. // Figure out how much space is needed to return the group SIDs.
  1194. // That's the size of TOKEN_GROUPS (without any array entries)
  1195. // plus the size of an SID_AND_ATTRIBUTES times the number of groups.
  1196. // The number of groups is Token->UserAndGroups-1 (since the count
  1197. // includes the user ID). Then the lengths of each individual group
  1198. // must be added.
  1199. //
  1201. RequiredLength = (ULONG)sizeof(TOKEN_GROUPS) +
  1202. ((Token->UserAndGroupCount - ANYSIZE_ARRAY - 1) *
  1203. ((ULONG)sizeof(SID_AND_ATTRIBUTES)) );
  1205. Index = 1;
  1206. while (Index < Token->UserAndGroupCount) {
  1208. RequiredLength += SeLengthSid( Token->UserAndGroups[Index].Sid );
  1210. Index += 1;
  1212. } // endwhile
  1214. LocalGroups = ExAllocatePool( PagedPool, RequiredLength );
  1216. if (LocalGroups == NULL) {
  1217. SepReleaseTokenReadLock( Token );
  1218. return( STATUS_INSUFFICIENT_RESOURCES );
  1219. }
  1221. //
  1222. // Now copy the groups.
  1223. //
  1225. LocalGroups->GroupCount = Token->UserAndGroupCount - 1;
  1227. PSid = (PSID)( (ULONG)LocalGroups +
  1228. (ULONG)sizeof(TOKEN_GROUPS) +
  1229. ( (Token->UserAndGroupCount - ANYSIZE_ARRAY - 1) *
  1230. (ULONG)sizeof(SID_AND_ATTRIBUTES) )
  1231. );
  1233. RtlCopySidAndAttributesArray(
  1234. (ULONG)(Token->UserAndGroupCount - 1),
  1235. &(Token->UserAndGroups[1]),
  1236. RequiredLength,
  1237. LocalGroups->Groups,
  1238. PSid,
  1239. ((PSID *)&Ignore),
  1240. ((PULONG)&Ignore)
  1241. );
  1243. SepReleaseTokenReadLock( Token );
  1244. return STATUS_SUCCESS;
  1245. }
  1248. case TokenPrivileges:
  1249. {
  1250. PTOKEN_PRIVILEGES LocalPrivileges;
  1252. LocalPrivileges = (PTOKEN_PRIVILEGES)(*TokenInformation);
  1254. //
  1255. // Gain exclusive access to the token to prevent changes
  1256. // from occuring to the privileges.
  1257. //
  1259. SepAcquireTokenReadLock( Token );
  1261. //
  1262. // Return the length required now in case not enough buffer
  1263. // was provided by the caller and we have to return an error.
  1264. //
  1266. RequiredLength = (ULONG)sizeof(TOKEN_PRIVILEGES) +
  1267. ((Token->PrivilegeCount - ANYSIZE_ARRAY) *
  1268. ((ULONG)sizeof(LUID_AND_ATTRIBUTES)) );
  1270. LocalPrivileges = ExAllocatePool( PagedPool, RequiredLength );
  1272. if (LocalPrivileges == NULL) {
  1273. SepReleaseTokenReadLock( Token );
  1274. return( STATUS_INSUFFICIENT_RESOURCES );
  1275. }
  1277. //
  1278. // Return the token privileges.
  1279. //
  1281. LocalPrivileges->PrivilegeCount = Token->PrivilegeCount;
  1283. RtlCopyLuidAndAttributesArray(
  1284. Token->PrivilegeCount,
  1285. Token->Privileges,
  1286. LocalPrivileges->Privileges
  1287. );
  1289. SepReleaseTokenReadLock( Token );
  1290. return STATUS_SUCCESS;
  1291. }
  1294. case TokenOwner:
  1295. {
  1296. PTOKEN_OWNER LocalOwner;
  1298. LocalOwner = (PTOKEN_OWNER)(*TokenInformation);
  1300. //
  1301. // Gain exclusive access to the token to prevent changes
  1302. // from occuring to the owner.
  1303. //
  1305. SepAcquireTokenReadLock( Token );
  1307. //
  1308. // Return the length required now in case not enough buffer
  1309. // was provided by the caller and we have to return an error.
  1310. //
  1312. PSid = Token->UserAndGroups[Token->DefaultOwnerIndex].Sid;
  1313. RequiredLength = (ULONG)sizeof(TOKEN_OWNER) +
  1314. SeLengthSid( PSid );
  1316. LocalOwner = ExAllocatePool( PagedPool, RequiredLength );
  1318. if (LocalOwner == NULL) {
  1319. SepReleaseTokenReadLock( Token );
  1320. return( STATUS_INSUFFICIENT_RESOURCES );
  1321. }
  1323. //
  1324. // Return the owner SID
  1325. //
  1327. PSid = (PSID)((ULONG)LocalOwner +
  1328. (ULONG)sizeof(TOKEN_OWNER));
  1330. LocalOwner->Owner = PSid;
  1332. Status = RtlCopySid(
  1333. (RequiredLength - (ULONG)sizeof(TOKEN_OWNER)),
  1334. PSid,
  1335. Token->UserAndGroups[Token->DefaultOwnerIndex].Sid
  1336. );
  1338. ASSERT( NT_SUCCESS(Status) );
  1340. SepReleaseTokenReadLock( Token );
  1341. return STATUS_SUCCESS;
  1342. }
  1345. case TokenPrimaryGroup:
  1346. {
  1347. PTOKEN_PRIMARY_GROUP LocalPrimaryGroup;
  1349. LocalPrimaryGroup = (PTOKEN_PRIMARY_GROUP)(*TokenInformation);
  1351. //
  1352. // Gain exclusive access to the token to prevent changes
  1353. // from occuring to the owner.
  1354. //
  1356. SepAcquireTokenReadLock( Token );
  1358. //
  1359. // Return the length required now in case not enough buffer
  1360. // was provided by the caller and we have to return an error.
  1361. //
  1363. RequiredLength = (ULONG)sizeof(TOKEN_PRIMARY_GROUP) +
  1364. SeLengthSid( Token->PrimaryGroup );
  1366. LocalPrimaryGroup = ExAllocatePool( PagedPool, RequiredLength );
  1368. if (LocalPrimaryGroup == NULL) {
  1369. SepReleaseTokenReadLock( Token );
  1370. return( STATUS_INSUFFICIENT_RESOURCES );
  1371. }
  1373. //
  1374. // Return the primary group SID
  1375. //
  1377. PSid = (PSID)((ULONG)LocalPrimaryGroup +
  1378. (ULONG)sizeof(TOKEN_PRIMARY_GROUP));
  1380. LocalPrimaryGroup->PrimaryGroup = PSid;
  1382. Status = RtlCopySid( (RequiredLength - (ULONG)sizeof(TOKEN_PRIMARY_GROUP)),
  1383. PSid,
  1384. Token->PrimaryGroup
  1385. );
  1387. ASSERT( NT_SUCCESS(Status) );
  1389. SepReleaseTokenReadLock( Token );
  1390. return STATUS_SUCCESS;
  1391. }
  1394. case TokenDefaultDacl:
  1395. {
  1396. PTOKEN_DEFAULT_DACL LocalDefaultDacl;
  1398. LocalDefaultDacl = (PTOKEN_DEFAULT_DACL)(*TokenInformation);
  1400. //
  1401. // Gain exclusive access to the token to prevent changes
  1402. // from occuring to the owner.
  1403. //
  1405. SepAcquireTokenReadLock( Token );
  1407. //
  1408. // Return the length required now in case not enough buffer
  1409. // was provided by the caller and we have to return an error.
  1410. //
  1412. RequiredLength = (ULONG)sizeof(TOKEN_DEFAULT_DACL);
  1414. if (ARGUMENT_PRESENT(Token->DefaultDacl)) {
  1416. RequiredLength += Token->DefaultDacl->AclSize;
  1417. }
  1419. LocalDefaultDacl = ExAllocatePool( PagedPool, RequiredLength );
  1421. if (LocalDefaultDacl == NULL) {
  1422. SepReleaseTokenReadLock( Token );
  1423. return( STATUS_INSUFFICIENT_RESOURCES );
  1424. }
  1426. //
  1427. // Return the default Dacl
  1428. //
  1430. PAcl = (PACL)((ULONG)LocalDefaultDacl +
  1431. (ULONG)sizeof(TOKEN_DEFAULT_DACL));
  1433. if (ARGUMENT_PRESENT(Token->DefaultDacl)) {
  1435. LocalDefaultDacl->DefaultDacl = PAcl;
  1437. RtlMoveMemory( (PVOID)PAcl,
  1438. (PVOID)Token->DefaultDacl,
  1439. Token->DefaultDacl->AclSize
  1440. );
  1441. } else {
  1443. LocalDefaultDacl->DefaultDacl = NULL;
  1444. }
  1446. SepReleaseTokenReadLock( Token );
  1447. return STATUS_SUCCESS;
  1448. }
  1451. case TokenSource:
  1452. {
  1453. PTOKEN_SOURCE LocalSource;
  1455. LocalSource = (PTOKEN_SOURCE)(*TokenInformation);
  1457. //
  1458. // The type of a token can not be changed, so
  1459. // exclusive access to the token is not necessary.
  1460. //
  1462. //
  1463. // Return the length required now in case not enough buffer
  1464. // was provided by the caller and we have to return an error.
  1465. //
  1467. RequiredLength = (ULONG) sizeof(TOKEN_SOURCE);
  1469. LocalSource = ExAllocatePool( PagedPool, RequiredLength );
  1471. if (LocalSource == NULL) {
  1472. return( STATUS_INSUFFICIENT_RESOURCES );
  1473. }
  1475. //
  1476. // Return the token source
  1477. //
  1479. (*LocalSource) = Token->TokenSource;
  1481. return STATUS_SUCCESS;
  1482. }
  1485. case TokenType:
  1486. {
  1487. PTOKEN_TYPE LocalType;
  1489. LocalType = (PTOKEN_TYPE)(*TokenInformation);
  1491. //
  1492. // The type of a token can not be changed, so
  1493. // exclusive access to the token is not necessary.
  1494. //
  1496. //
  1497. // Return the length required now in case not enough buffer
  1498. // was provided by the caller and we have to return an error.
  1499. //
  1501. RequiredLength = (ULONG) sizeof(TOKEN_TYPE);
  1503. LocalType = ExAllocatePool( PagedPool, RequiredLength );
  1505. if (LocalType == NULL) {
  1506. return( STATUS_INSUFFICIENT_RESOURCES );
  1507. }
  1509. //
  1510. // Return the token type
  1511. //
  1513. (*LocalType) = Token->TokenType;
  1515. return STATUS_SUCCESS;
  1516. }
  1519. case TokenImpersonationLevel:
  1520. {
  1521. PSECURITY_IMPERSONATION_LEVEL LocalImpersonationLevel;
  1523. LocalImpersonationLevel = (PSECURITY_IMPERSONATION_LEVEL)(*TokenInformation);
  1525. //
  1526. // The impersonation level of a token can not be changed, so
  1527. // exclusive access to the token is not necessary.
  1528. //
  1530. //
  1531. // Make sure the token is an appropriate type to be retrieving
  1532. // the impersonation level from.
  1533. //
  1535. if (Token->TokenType != TokenImpersonation) {
  1537. return STATUS_INVALID_INFO_CLASS;
  1538. }
  1540. //
  1541. // Return the length required now in case not enough buffer
  1542. // was provided by the caller and we have to return an error.
  1543. //
  1545. RequiredLength = (ULONG) sizeof(SECURITY_IMPERSONATION_LEVEL);
  1547. LocalImpersonationLevel = ExAllocatePool( PagedPool, RequiredLength );
  1549. if (LocalImpersonationLevel == NULL) {
  1550. return( STATUS_INSUFFICIENT_RESOURCES );
  1551. }
  1553. //
  1554. // Return the impersonation level
  1555. //
  1557. (*LocalImpersonationLevel) = Token->ImpersonationLevel;
  1559. return STATUS_SUCCESS;
  1560. }
  1563. case TokenStatistics:
  1564. {
  1565. PTOKEN_STATISTICS LocalStatistics;
  1567. LocalStatistics = (PTOKEN_STATISTICS)(*TokenInformation);
  1569. //
  1570. // Gain exclusive access to the token.
  1571. //
  1573. SepAcquireTokenReadLock( Token );
  1575. //
  1576. // Return the length required now in case not enough buffer
  1577. // was provided by the caller and we have to return an error.
  1578. //
  1580. RequiredLength = (ULONG)sizeof( TOKEN_STATISTICS );
  1582. LocalStatistics = ExAllocatePool( PagedPool, RequiredLength );
  1584. if (LocalStatistics == NULL) {
  1585. SepReleaseTokenReadLock( Token );
  1586. return( STATUS_INSUFFICIENT_RESOURCES );
  1587. }
  1589. //
  1590. // Return the statistics
  1591. //
  1593. LocalStatistics->TokenId = Token->TokenId;
  1594. LocalStatistics->AuthenticationId = Token->AuthenticationId;
  1595. LocalStatistics->ExpirationTime = Token->ExpirationTime;
  1596. LocalStatistics->TokenType = Token->TokenType;
  1597. LocalStatistics->ImpersonationLevel = Token->ImpersonationLevel;
  1598. LocalStatistics->DynamicCharged = Token->DynamicCharged;
  1599. LocalStatistics->DynamicAvailable = Token->DynamicAvailable;
  1600. LocalStatistics->GroupCount = Token->UserAndGroupCount-1;
  1601. LocalStatistics->PrivilegeCount = Token->PrivilegeCount;
  1602. LocalStatistics->ModifiedId = Token->ModifiedId;
  1604. SepReleaseTokenReadLock( Token );
  1605. return STATUS_SUCCESS;
  1606. }
  1608. default:
  1610. return STATUS_INVALID_INFO_CLASS;
  1611. }
  1612. }