archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/base/lsa/server/spinit.cxx

785 lines
20 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-----------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (c) Microsoft Corporation 1991 - 1992
  6. //
  7. // File: SPInit.cxx
  8. //
  9. // Contents: Initialization code for SPMgr/LSA
  10. //
  11. // Functions: LoadPackages -- Loads all the packages
  12. // InitThreadData -- Creates TLS values
  13. // InitSystemLogon -- Initializes the System logon
  14. // LsapEnableCreateTokenPrivilege -- Enables the privilege
  15. // InitLocatorAndOle -- Initializes Locator cache, Ole
  16. // InitKDCData -- Initializes knowledge about KDC
  17. //
  18. //
  19. // History: 08 Sep 92, RichardW Created from spmgr.c, etc.
  20. // 26 Mar 93, MikeSw Converted from C->C++
  21. //
  22. //------------------------------------------------------------------------
  24. //
  25. // precompiled headers
  26. //
  28. #include <lsapch.hxx>
  29. extern "C"
  30. {
  31. #include "spinit.h"
  32. #include <lmcons.h>
  33. #include <crypt.h>
  34. #include <logonmsv.h>
  35. #include <ssi.h>
  36. #include <lsads.h>
  37. }
  40. //+-------------------------------------------------------------------------
  41. //
  42. // Function: LoadPackages
  43. //
  44. // Synopsis: Loads all the specified security packages
  45. //
  46. // Effects: Packages loaded, global structures updated
  47. //
  48. // Arguments: comma-separated list of package names (DLL names)
  49. //
  50. // Requires:
  51. //
  52. // Returns: SUCCESS, or some failures
  53. //
  54. // Notes: This is run during SPM Init, while the process is still
  55. // single threaded, and not handling any calls.
  56. //
  57. //--------------------------------------------------------------------------
  59. extern "C"
  60. NTSTATUS
  61. LoadPackages( PWSTR * ppszPackages,
  62. PWSTR * ppszOldPkgs,
  63. PWSTR pszPreferred)
  64. {
  65. PWSTR pszPackage;
  66. NTSTATUS scRet;
  67. SECURITY_STRING sStr;
  68. SECPKG_PARAMETERS Parameters;
  69. ULONG iPackage = 0;
  70. ULONG iOldPkg = 0;
  71. ULONG LoadCount = 0;
  72. ULONG NewCount = 0;
  73. ULONG PreferredPackage = 0;
  74. PLSAPR_POLICY_DNS_DOMAIN_INFO DnsDomainInfo = NULL;
  75. PLSAP_SECURITY_PACKAGE Package;
  76. SECPKG_EVENT_PACKAGE_CHANGE Event;
  77. NT_PRODUCT_TYPE ProductType ;
  79. if (!SpmpInitializePackageControl())
  80. {
  81. return( STATUS_INSUFFICIENT_RESOURCES );
  82. }
  84. //
  85. // Build up the initialization message, to give the packages a better idea
  86. // of what is going on, and reduce their later calls for the same info.
  87. //
  89. Parameters.MachineState = SECPKG_STATE_ENCRYPTION_PERMITTED;
  90. Parameters.MachineState |= SECPKG_STATE_STRONG_ENCRYPTION_PERMITTED;
  92. Parameters.SetupMode = SetupPhase;
  94. scRet = LsaIQueryInformationPolicyTrusted(
  95. PolicyDnsDomainInformation,
  96. (PLSAPR_POLICY_INFORMATION *) &DnsDomainInfo
  97. );
  99. if (!NT_SUCCESS(scRet))
  100. {
  101. DebugLog((DEB_ERROR,"Failed to get primary domain info: 0x%x\n",scRet));
  102. return(scRet);
  103. }
  105. Parameters.DomainName = * (PUNICODE_STRING) &DnsDomainInfo->Name;
  106. Parameters.DnsDomainName = * (PUNICODE_STRING) &DnsDomainInfo->DnsDomainName;
  107. Parameters.DomainSid = (PSID) DnsDomainInfo->Sid;
  108. Parameters.DomainGuid = (GUID) DnsDomainInfo->DomainGuid;
  110. if ( RtlGetNtProductType( &ProductType ) )
  111. {
  112. if ( ProductType == NtProductLanManNt )
  113. {
  114. Parameters.MachineState |= SECPKG_STATE_DOMAIN_CONTROLLER ;
  115. }
  116. else
  117. {
  118. if (Parameters.DomainSid != NULL)
  119. {
  120. Parameters.MachineState |= SECPKG_STATE_WORKSTATION;
  121. }
  122. else
  123. {
  124. Parameters.MachineState |= SECPKG_STATE_STANDALONE;
  125. }
  126. }
  127. }
  128. else
  129. {
  130. Parameters.MachineState |= SECPKG_STATE_STANDALONE;
  131. }
  133. LoadCount = 0;
  134. NewCount = 0;
  136. DebugLog((DEB_TRACE_INIT, "Init Parameters = %d, %s\n",
  137. Parameters.MachineState,
  138. (Parameters.SetupMode ? "Setup" : "Normal") ));
  140. //
  141. // Add the built in Negotiate package first. It will hook all subsequent
  142. // package loads and unloads, so that it can keep a table running of all
  143. // the packages and their negotiate options.
  144. //
  146. if ( SpmpLoadBuiltin( 0, &NegTable, &Parameters ) )
  147. {
  148. LoadCount ++ ;
  149. }
  151. //
  152. // Set the preferred package to be the first non-negotiate package
  153. //
  155. PreferredPackage = LoadCount;
  157. //
  158. // Now load the new DLLs:
  159. //
  161. while (pszPackage = ppszPackages[iPackage])
  162. {
  163. if (SpmpLoadDll( pszPackage, &Parameters ))
  164. {
  165. LoadCount++;
  166. NewCount++;
  167. }
  169. iPackage++;
  170. }
  172. //
  173. // Now, load old style packages, or just the MSV package for now.
  174. //
  176. while (pszPackage = ppszOldPkgs[iOldPkg])
  177. {
  178. if (SpmpLoadAuthPkgDll( pszPackage ))
  179. {
  180. LoadCount++;
  181. }
  183. iOldPkg++;
  184. }
  186. //
  187. // Select the preferred package.
  188. //
  190. if ( pszPreferred == NULL )
  191. {
  192. Package = SpmpLocatePackage( PreferredPackage );
  193. }
  194. else
  195. {
  196. RtlInitUnicodeString( &sStr, pszPreferred );
  198. Package = SpmpLookupPackage( &sStr );
  199. }
  201. //
  202. // If there are no new packages, do not enabled a preferred
  203. // package. It will mess up the negotiate package
  204. //
  206. if ( NewCount == 0 )
  207. {
  208. Package = NULL ;
  209. }
  211. if ( Package )
  212. {
  213. Package->fPackage |= SP_PREFERRED ;
  215. Event.PackageId = Package->dwPackageID;
  216. Event.PackageName = Package->Name;
  217. Event.ChangeType = SECPKG_PACKAGE_CHANGE_SELECT ;
  219. LsapEventNotify(
  220. NOTIFY_CLASS_PACKAGE_CHANGE,
  221. 0,
  222. sizeof( Event ),
  223. &Event );
  224. }
  226. //
  227. // All the strings are actually offsets from the zeroth string
  228. //
  230. if (ppszPackages[0] != NULL)
  231. {
  232. LsapFreeLsaHeap(ppszPackages[0]);
  233. }
  235. //
  236. // Finally, free the array:
  237. //
  239. LsapFreeLsaHeap(ppszPackages);
  241. //
  242. // Get rid of the old package array, as well:
  243. //
  245. if (ppszOldPkgs[0] != NULL)
  246. {
  247. LsapFreeLsaHeap(ppszOldPkgs[0]);
  248. }
  250. LsapFreeLsaHeap(ppszOldPkgs);
  252. #if DBG
  253. SpmpLoadBuiltinAuthPkg( &DbgTable );
  254. #endif
  256. //
  257. // Free the primary domain info
  258. //
  260. LsaIFree_LSAPR_POLICY_INFORMATION(
  261. PolicyDnsDomainInformation,
  262. (PLSAPR_POLICY_INFORMATION) DnsDomainInfo
  263. );
  265. //
  266. // If at least the primary loaded, then return OK. If not that,
  267. // then return an error:
  268. //
  270. if ( LoadCount )
  271. {
  272. return(S_OK);
  273. }
  274. else
  275. {
  276. return(SEC_E_CANNOT_INSTALL);
  277. }
  278. }
  281. //+-------------------------------------------------------------------------
  282. //
  283. // Function: InitThreadData
  284. //
  285. // Synopsis: Initializes Tls* data slots
  286. //
  287. // Effects:
  288. //
  289. // Arguments:
  290. //
  291. // Requires:
  292. //
  293. // Returns:
  294. //
  295. // Notes:
  296. //
  297. //--------------------------------------------------------------------------
  298. extern "C"
  299. void
  300. InitThreadData(void)
  301. {
  302. dwSession = TlsAlloc();
  303. dwExceptionInfo = TlsAlloc();
  304. dwCallInfo = TlsAlloc();
  305. dwThreadPackage = TlsAlloc();
  306. LsapDsThreadState = TlsAlloc();
  307. dwThreadHeap = TlsAlloc();
  309. #ifdef DBG
  310. //
  311. // See dbp.h for the number of locks parameter
  312. //
  313. SafeLockInit( 12, TRUE );
  314. #endif
  315. }
  317. #ifdef LSAP_VERIFY_PACKAGE_ID
  318. BOOL RefSetCurrentPackageId(ULONG_PTR dwPackageId)
  319. {
  320. ULONG_PTR dwCurId;
  321. char szTmp[32];
  322. WCHAR szw[64];
  324. dwCurId = (ULONG_PTR) TlsGetValue(dwThreadPackage);
  326. _snprintf(szTmp, sizeof( szTmp ), "%ld (%ld)", dwPackageId, dwCurId);
  328. // wsprintf(szw, L"*** %x ==> %d\n", GetCurrentThreadId(), dwPackageId);
  329. // OutputDebugString(szw);
  331. if (dwCurId == SPMGR_ID)
  332. {
  333. DsysAssertMsg(dwPackageId != SPMGR_ID, szTmp);
  334. }
  336. return TlsSetValue(dwThreadPackage, (PVOID)dwPackageId);
  337. }
  338. #endif // LSAP_VERIFY_PACKAGE_ID
  341. //+-------------------------------------------------------------------------
  342. //
  343. // Function: InitSystemLogon
  344. //
  345. // Synopsis: Creates system logon credentials
  346. //
  347. // Effects: Creates credentials for NTLM and Kerberos for the Machine
  348. // in the system logon.
  349. //
  350. // Arguments:
  351. //
  352. // Requires:
  353. //
  354. // Returns:
  355. //
  356. // Notes:
  357. //
  358. //--------------------------------------------------------------------------
  360. extern "C"
  361. void
  362. InitSystemLogon(void)
  363. {
  364. UNICODE_STRING ComputerPrincipalName;
  365. PLSAP_SECURITY_PACKAGE pAuxPackage;
  366. PSession pSession = GetCurrentSession();
  367. UNICODE_STRING SecretName;
  368. ULONG_PTR iPackage;
  369. NTSTATUS scRet;
  370. SECPKG_PRIMARY_CRED PrimaryCred;
  371. PLSAPR_POLICY_INFORMATION PolicyInfo = NULL;
  372. PLSAPR_POLICY_INFORMATION DnsPolicyInfo = NULL;
  373. PLSAPR_CR_CIPHER_VALUE CrWkstaPassword = NULL;
  374. PLSAPR_CR_CIPHER_VALUE CrWkstaOldPassword = NULL;
  375. SID SystemSid = {SID_REVISION, 1,
  376. SECURITY_NT_AUTHORITY,
  377. SECURITY_LOCAL_SYSTEM_RID};
  378. LSAPR_HANDLE SecretHandle = NULL;
  379. UNICODE_STRING DomainCopy ;
  380. UNICODE_STRING MachineCopy ;
  381. PSID SidCopy ;
  383. RtlZeroMemory(
  384. &PrimaryCred,
  385. sizeof(PrimaryCred)
  386. );
  388. ComputerPrincipalName.Buffer = NULL;
  390. //
  391. // Build the computer principal name, which is the computer name followed
  392. // by a '$'
  393. //
  395. ComputerPrincipalName.Length = MachineName.Length + sizeof(WCHAR);
  396. ComputerPrincipalName.MaximumLength = MachineName.Length + 2 * sizeof(WCHAR);
  398. SafeAllocaAllocate(ComputerPrincipalName.Buffer, ComputerPrincipalName.MaximumLength);
  400. if (ComputerPrincipalName.Buffer == NULL)
  401. {
  402. goto Cleanup;
  403. }
  405. RtlCopyMemory(
  406. ComputerPrincipalName.Buffer,
  407. MachineName.Buffer,
  408. MachineName.Length
  409. );
  410. ComputerPrincipalName.Buffer[MachineName.Length/sizeof(WCHAR)] =
  411. SSI_ACCOUNT_NAME_POSTFIX_CHAR;
  412. ComputerPrincipalName.Buffer[1+MachineName.Length/sizeof(WCHAR)] =
  413. L'\0';
  415. PrimaryCred.LogonId = SystemLogonId;
  416. PrimaryCred.UserSid = &SystemSid;
  417. PrimaryCred.DownlevelName.Buffer = wcsrchr(ComputerPrincipalName.Buffer,L'\\');
  418. if (PrimaryCred.DownlevelName.Buffer == NULL)
  419. {
  420. PrimaryCred.DownlevelName = ComputerPrincipalName;
  421. }
  422. else
  423. {
  424. PrimaryCred.DownlevelName.Buffer++;
  425. RtlInitUnicodeString(
  426. &PrimaryCred.DownlevelName,
  427. PrimaryCred.DownlevelName.Buffer
  428. );
  429. }
  431. //
  432. // Get the machine account password, if there is one
  433. //
  435. RtlInitUnicodeString(
  436. &SecretName,
  437. SSI_SECRET_NAME
  438. );
  440. scRet = LsarOpenSecret(
  441. LsapPolicyHandle,
  442. (PLSAPR_UNICODE_STRING) &SecretName,
  443. SECRET_ALL_ACCESS,
  444. &SecretHandle
  445. );
  447. if (NT_SUCCESS(scRet))
  448. {
  449. scRet = LsarQuerySecret(
  450. SecretHandle,
  451. &CrWkstaPassword,
  452. NULL, // we don't want current val set time
  453. &CrWkstaOldPassword,
  454. NULL // ditto for old val
  455. );
  456. }
  458. //
  459. // We don't want to fail to boot if we don't have a password, so continue
  460. // after an error
  461. //
  463. if (NT_SUCCESS(scRet) && (CrWkstaPassword != NULL))
  464. {
  465. PrimaryCred.Password.Buffer = (LPWSTR) CrWkstaPassword->Buffer;
  466. PrimaryCred.Password.Length = (USHORT) CrWkstaPassword->Length;
  467. PrimaryCred.Password.MaximumLength = (USHORT) CrWkstaPassword->MaximumLength;
  468. PrimaryCred.Flags = PRIMARY_CRED_CLEAR_PASSWORD;
  470. if (CrWkstaOldPassword != NULL)
  471. {
  472. PrimaryCred.OldPassword.Buffer = (LPWSTR) CrWkstaOldPassword->Buffer;
  473. PrimaryCred.OldPassword.Length = (USHORT) CrWkstaOldPassword->Length;
  474. PrimaryCred.OldPassword.MaximumLength = (USHORT) CrWkstaOldPassword->MaximumLength;
  475. }
  476. }
  478. scRet = LsaIQueryInformationPolicyTrusted(
  479. PolicyDnsDomainInformation,
  480. &DnsPolicyInfo
  481. );
  483. if(!NT_SUCCESS(scRet))
  484. {
  485. scRet = LsaIQueryInformationPolicyTrusted(
  486. PolicyPrimaryDomainInformation,
  487. &PolicyInfo
  488. );
  490. if (NT_SUCCESS(scRet))
  491. {
  492. PrimaryCred.DomainName = *(PUNICODE_STRING) &PolicyInfo->PolicyPrimaryDomainInfo.Name;
  493. }
  495. } else {
  497. PrimaryCred.DomainName = *(PUNICODE_STRING) &DnsPolicyInfo->PolicyDnsDomainInfo.Name;
  498. PrimaryCred.DnsDomainName = *(PUNICODE_STRING) &DnsPolicyInfo->PolicyDnsDomainInfo.DnsDomainName;
  499. }
  501. //
  502. // Update the logon session with the "real" name:
  503. //
  505. scRet = LsapDuplicateString(
  506. &DomainCopy,
  507. &PrimaryCred.DomainName );
  509. if ( NT_SUCCESS( scRet ) )
  510. {
  511. scRet = LsapDuplicateString(
  512. &MachineCopy,
  513. &PrimaryCred.DownlevelName );
  515. if ( NT_SUCCESS( scRet ) )
  516. {
  517. scRet = LsapDuplicateSid(
  518. &SidCopy,
  519. PrimaryCred.UserSid );
  521. if ( NT_SUCCESS( scRet ) )
  522. {
  523. LsapSetLogonSessionAccountInfo(
  524. &SystemLogonId,
  525. &MachineCopy,
  526. &DomainCopy,
  527. NULL,
  528. &SidCopy,
  529. (SECURITY_LOGON_TYPE) 0,
  530. &PrimaryCred
  531. );
  533. //
  534. // If successful, LsapSetLogonSessionAccountInfo will have taken
  535. // ownership of UserSid
  536. //
  538. if ( SidCopy != NULL ) {
  539. LsapFreeLsaHeap( SidCopy );
  540. }
  541. }
  542. }
  543. }
  545. DebugLog((DEB_TRACE_INIT, "Establishing credentials for machine %ws\n", MachineName.Buffer));
  547. pAuxPackage = SpmpIteratePackagesByRequest( NULL, SP_ORDINAL_ACCEPTCREDS );
  549. while (pAuxPackage)
  550. {
  551. iPackage = pAuxPackage->dwPackageID;
  553. DebugLog((DEB_TRACE_INIT, "Whacking package %ws with %x:%x = %ws\n",
  554. pAuxPackage->Name.Buffer,
  555. SystemLogonId.HighPart, SystemLogonId.LowPart,
  556. MachineName.Buffer));
  558. SetCurrentPackageId(iPackage);
  560. __try
  561. {
  562. scRet = pAuxPackage->FunctionTable.AcceptCredentials(
  563. Interactive,
  564. &ComputerPrincipalName,
  565. &PrimaryCred,
  566. NULL // no supplemental credentials
  567. );
  568. }
  569. __except (EXCEPTION_EXECUTE_HANDLER)
  570. {
  571. scRet = (NTSTATUS) GetExceptionCode();
  572. scRet = SPException(scRet, iPackage);
  573. }
  575. // Note: if an exception occurs, we don't fail the logon, we just
  576. // do the magic on the package that blew. If the package blows,
  577. // the other packages may succeed, and so the user may not be able
  578. // to use that provider.
  580. pAuxPackage = SpmpIteratePackagesByRequest( pAuxPackage,
  581. SP_ORDINAL_ACCEPTCREDS );
  582. }
  584. Cleanup:
  586. //
  587. // Finally, set this thread back to being a SPM thread:
  588. //
  590. SetCurrentPackageId( SPMGR_ID );
  592. if (CrWkstaPassword != NULL)
  593. {
  594. LsaIFree_LSAPR_CR_CIPHER_VALUE(
  595. CrWkstaPassword
  596. );
  597. }
  598. if (CrWkstaOldPassword != NULL)
  599. {
  600. LsaIFree_LSAPR_CR_CIPHER_VALUE(
  601. CrWkstaOldPassword
  602. );
  603. }
  604. if (SecretHandle != NULL)
  605. {
  606. LsarClose(&SecretHandle);
  607. }
  608. if (PolicyInfo != NULL)
  609. {
  610. LsaIFree_LSAPR_POLICY_INFORMATION(
  611. PolicyPrimaryDomainInformation,
  612. PolicyInfo
  613. );
  614. }
  615. if (DnsPolicyInfo != NULL)
  616. {
  617. LsaIFree_LSAPR_POLICY_INFORMATION(
  618. PolicyDnsDomainInformation,
  619. DnsPolicyInfo
  620. );
  621. }
  623. SafeAllocaFree(ComputerPrincipalName.Buffer);
  624. }
  627. HANDLE
  628. SpmpOpenEvent( IN PWSTR EventName )
  629. {
  630. NTSTATUS NtStatus;
  631. HANDLE InstallationEvent;
  632. OBJECT_ATTRIBUTES EventAttributes;
  633. UNICODE_STRING UnicodeEventName;
  635. //
  636. // If the following event exists, it is an indication that
  637. // installation is in progress and that further security
  638. // initialization should be delayed until the event is
  639. // signalled. This is expected to be a NOTIFICATION event.
  640. //
  642. RtlInitUnicodeString( &UnicodeEventName, EventName);
  643. InitializeObjectAttributes( &EventAttributes, &UnicodeEventName, 0, 0, NULL );
  645. NtStatus = NtOpenEvent(
  646. &InstallationEvent,
  647. SYNCHRONIZE,
  648. &EventAttributes
  649. );
  651. if (NT_SUCCESS(NtStatus))
  652. {
  653. return(InstallationEvent);
  654. }
  655. else
  656. {
  657. return(NULL);
  658. }
  659. }
  662. HANDLE
  663. SpmpOpenSetupEvent( VOID )
  664. {
  665. return( SpmpOpenEvent(L"\\INSTALLATION_SECURITY_HOLD"));
  666. }
  669. extern "C"
  670. BOOLEAN
  671. SpmpIsSetupPass( VOID )
  672. {
  673. HANDLE hEvent;
  675. if (hEvent = SpmpOpenSetupEvent())
  676. {
  677. NtClose(hEvent);
  678. return(TRUE);
  679. }
  681. return(FALSE);
  682. }
  685. extern "C"
  686. BOOLEAN
  687. SpmpIsMiniSetupPass( VOID )
  688. {
  689. DWORD rc;
  690. DWORD d = 0;
  691. DWORD Type;
  692. HKEY hKey;
  694. //
  695. // See if this is a "mini" setup, in which case we
  696. // don't need to generate the domain SID.
  697. //
  698. rc = RegOpenKeyExW( HKEY_LOCAL_MACHINE,
  699. L"System\\Setup",
  700. 0,
  701. KEY_READ,
  702. &hKey );
  703. if( rc == ERROR_SUCCESS ) {
  705. //
  706. // Just get the size (ALPHA workaround). All
  707. // we care about is if the key exists...
  708. //
  709. rc = RegQueryValueExW( hKey,
  710. L"MiniSetupInProgress",
  711. NULL,
  712. &Type,
  713. (LPBYTE)NULL,
  714. &d );
  716. RegCloseKey( hKey );
  718. if( rc == ERROR_SUCCESS ) {
  719. return( TRUE );
  720. }
  721. }
  722. return( FALSE );
  723. }
  726. NTSTATUS
  727. LsapInstallationPause( VOID )
  729. /*++
  731. Routine Description:
  733. This function checks to see if the system is in an
  734. installation state. If so, it suspends further initialization
  735. until the installation state is complete.
  737. Installation state is signified by the existance of a well known
  738. event.
  741. Arguments:
  743. None.
  745. Return Value:
  747. STATUS_SUCCESS - Proceed with initialization.
  749. Other status values are unexpected.
  751. --*/
  753. {
  754. HANDLE InstallationEvent;
  755. NTSTATUS NtStatus;
  756. NTSTATUS TmpStatus;
  758. InstallationEvent = SpmpOpenSetupEvent();
  760. if ( InstallationEvent ) {
  762. //
  763. // The event exists - installation created it and will signal it
  764. // when it is ok to proceed with security initialization.
  765. // Installation code is responsible for deleting the event after
  766. // signalling it.
  767. //
  769. NtStatus = NtWaitForSingleObject( InstallationEvent, TRUE, 0 );
  770. TmpStatus = NtClose( InstallationEvent );
  771. ASSERT(NT_SUCCESS(TmpStatus));
  773. //
  774. // Now, strobe the state changed event, to indicate to the
  775. // rest of the threads that life has changed
  776. //
  778. SpmSetEvent(hStateChangeEvent);
  780. } else {
  781. NtStatus = STATUS_SUCCESS; // Indicate everything is as expected
  782. }
  784. return(NtStatus);
  785. }