archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/base/lsa/server/ctxtapi.cxx

885 lines
26 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-----------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (c) Microsoft Corporation 1991 - 1992
  6. //
  7. // File: ctxtapi.c
  8. //
  9. // Contents: Context APIs to the SPMgr.
  10. // - LsaInitContext
  11. // - LsaAcceptContext
  12. // - LsaFinalizeContext
  13. // - LsaMapContext
  14. //
  15. // And WLsa functions
  16. //
  17. // History: 20 May 92 RichardW Commented existing code
  18. //
  19. //------------------------------------------------------------------------
  22. #include <lsapch.hxx>
  24. //+---------------------------------------------------------------------------
  25. //
  26. // Function: WLsaInitContext
  27. //
  28. // Synopsis: Worker that maps the call to the appropriate package
  29. //
  30. // Effects:
  31. //
  32. // Arguments: [phCredential] --
  33. // [phContext] --
  34. // [pTarget] --
  35. // [fContextReq] --
  36. // [dwReserved1] --
  37. // [TargetDataRep] --
  38. // [pInput] --
  39. // [dwReserved2] --
  40. // [phNewContext] --
  41. // [pOutput] --
  42. // [pfContextAttr] --
  43. // [ptsExpiry] --
  44. // [MappedContext] --
  45. // [ContextData] --
  46. //
  47. // Requires:
  48. //
  49. // Returns:
  50. //
  51. // History: 9-24-96 RichardW Created
  52. //
  53. // Notes:
  54. //
  55. //----------------------------------------------------------------------------
  56. NTSTATUS
  57. WLsaInitContext( PCredHandle phCredential,
  58. PCtxtHandle phContext,
  59. PSECURITY_STRING pTarget,
  60. DWORD fContextReq,
  61. DWORD dwReserved1,
  62. DWORD TargetDataRep,
  63. PSecBufferDesc pInput,
  64. DWORD dwReserved2,
  65. PCtxtHandle phNewContext,
  66. PSecBufferDesc pOutput,
  67. DWORD * pfContextAttr,
  68. PTimeStamp ptsExpiry,
  69. PBOOLEAN MappedContext,
  70. PSecBuffer ContextData )
  71. {
  72. NTSTATUS scRet;
  73. PLSAP_SECURITY_PACKAGE pspPackage;
  74. PSession pSession = GetCurrentSession();
  75. PLSA_CALL_INFO CallInfo = LsapGetCurrentCall();
  76. PVOID ContextKey = NULL ;
  77. PVOID CredKey = NULL ;
  79. DebugLog((DEB_TRACE_WAPI, "[%x] WLsaInitContext(%p : %p, %p : %p, %ws)\n",
  80. pSession->dwProcessID,
  81. phCredential->dwUpper,
  82. phCredential->dwLower,
  83. phContext->dwUpper,
  84. phContext->dwLower,
  85. pTarget->Buffer));
  87. #if DBG
  88. if ( pInput && pInput->cBuffers )
  89. {
  90. DsysAssert( (ULONG_PTR) pInput->pBuffers > PORT_MAXIMUM_MESSAGE_LENGTH );
  91. }
  92. if ( pOutput && pOutput->cBuffers )
  93. {
  94. DsysAssert( (ULONG_PTR) pOutput->pBuffers > PORT_MAXIMUM_MESSAGE_LENGTH );
  96. }
  97. #endif
  99. //
  100. // Reset the new handle to a known, invalid state
  101. //
  103. phNewContext->dwLower = SPMGR_ID;
  104. phNewContext->dwUpper = 0;
  106. //
  107. // Check handles against the session to make sure they're valid. If the
  108. // context handle is valid, we use that, otherwise the credential.
  109. //
  111. if (phCredential->dwUpper)
  112. {
  113. scRet = ValidateCredHandle(
  114. pSession,
  115. phCredential,
  116. &CredKey );
  118. if ( !NT_SUCCESS( scRet ) )
  119. {
  120. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  122. //
  123. // null out the dwUpper since the handle is invalid, do not want to
  124. // bail it out here for app compat reasons: the credential handle
  125. // is ignored when the context handle is valid
  126. //
  128. DebugLog((DEB_WARN, "[%#x] InitContext null out invalid credential handle %#x.%#x\n",
  129. pSession->dwProcessID, phCredential->dwLower, phCredential->dwUpper));
  131. phCredential->dwUpper = NULL;
  132. }
  133. }
  135. if (phContext->dwUpper)
  136. {
  137. scRet = ValidateContextHandle(
  138. pSession,
  139. phContext,
  140. &ContextKey );
  142. if ( !NT_SUCCESS( scRet ) )
  143. {
  144. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  146. //
  147. // null out the dwUpper since the handle is invalid
  148. //
  150. DebugLog((DEB_WARN, "[%#x] InitContext null out invalid context handle %#x.%#x\n",
  151. pSession->dwProcessID, phContext->dwLower, phContext->dwUpper));
  153. phContext->dwUpper = NULL;
  154. }
  155. else
  156. {
  157. //
  158. // Tricky stuff: if the context handle is valid, but does not
  159. // come from the same package as the credential, null out the cred
  160. // handle:
  161. //
  163. if ( phCredential->dwLower != phContext->dwLower )
  164. {
  165. phCredential->dwLower = 0;
  166. phCredential->dwUpper = 0;
  167. }
  168. }
  169. }
  171. if ((phContext->dwUpper == NULL) && (phCredential->dwUpper == NULL))
  172. {
  173. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  175. scRet = SEC_E_INVALID_HANDLE;
  176. goto Cleanup;
  177. }
  179. //
  180. // log the call info using the context handle if it is valid, otherwise use
  181. // the credential handle
  182. //
  184. LsapLogCallInfo( CallInfo, pSession, phContext->dwUpper ? *phContext : *phCredential );
  186. //
  187. // if the context handle is non null and valid, use its package value, otherwise
  188. // use the package value from the credential handle
  189. //
  191. pspPackage = SpmpValidRequest( phContext->dwUpper ? phContext->dwLower : phCredential->dwLower,
  192. SP_ORDINAL_INITLSAMODECTXT );
  194. if ( !pspPackage )
  195. {
  196. scRet = SEC_E_INVALID_HANDLE;
  197. goto Cleanup;
  198. }
  200. SetCurrentPackageId( pspPackage->dwPackageID );
  202. StartCallToPackage( pspPackage );
  204. DebugLog((DEB_TRACE_VERB, "\tContext Req = 0x%08x\n", fContextReq));
  206. DebugLog((DEB_TRACE_VERB, "\tPackage = %ws\n", pspPackage->Name.Buffer));
  208. __try
  209. {
  210. scRet = pspPackage->FunctionTable.InitLsaModeContext(
  211. phCredential->dwUpper,
  212. phContext->dwUpper,
  213. pTarget,
  214. fContextReq,
  215. TargetDataRep,
  216. pInput,
  217. &phNewContext->dwUpper,
  218. pOutput,
  219. pfContextAttr,
  220. ptsExpiry,
  221. MappedContext,
  222. ContextData );
  223. }
  224. __except (SP_EXCEPTION)
  225. {
  226. scRet = GetExceptionCode();
  227. scRet = SPException(scRet, pspPackage->dwPackageID);
  228. }
  230. EndCallToPackage( pspPackage );
  232. DebugLog((DEB_TRACE_WAPI, "InitResult = %x\n", scRet));
  233. DebugLog((DEB_TRACE_VERB, "\tFlags = %08x\n", *pfContextAttr));
  235. //
  236. // Only add a new context if the old one didn't exist.
  237. // Otherwise copy the old context over the new context.
  238. //
  240. if ( NT_SUCCESS( scRet ) )
  241. {
  242. if ( (phNewContext->dwUpper != 0) &&
  243. (phNewContext->dwUpper != phContext->dwUpper) )
  244. {
  245. //
  246. // If the package ID is unchanged, set it to the current package
  247. // id. This is so that if package changes the ID through
  248. // LsapChangeHandle, we can catch it.
  249. //
  251. if ( phNewContext->dwLower == SPMGR_ID )
  252. {
  253. phNewContext->dwLower = pspPackage->dwPackageID ;
  255. if (!AddContextHandle( pSession, phNewContext, 0 ))
  256. {
  257. DebugLog(( DEB_ERROR, "Failed adding context handle %p:%p to session %p\n",
  258. phNewContext->dwUpper, phNewContext->dwLower,
  259. pSession ));
  261. pspPackage = SpmpValidRequest(
  262. phNewContext->dwLower,
  263. SP_ORDINAL_DELETECTXT
  264. );
  266. if ( pspPackage )
  267. {
  268. //
  269. // remove the handle from the underlying package.
  270. //
  272. StartCallToPackage( pspPackage );
  274. __try
  275. {
  276. pspPackage->FunctionTable.DeleteContext(
  277. phNewContext->dwUpper
  278. );
  279. }
  280. __except (SP_EXCEPTION)
  281. {
  282. NOTHING;
  283. }
  285. EndCallToPackage( pspPackage );
  286. }
  288. phNewContext->dwLower = 0;
  289. phNewContext->dwUpper = 0;
  291. scRet = SEC_E_INSUFFICIENT_MEMORY;
  292. }
  293. }
  294. }
  295. else
  296. {
  297. *phNewContext = *phContext;
  298. }
  299. }
  300. else
  301. {
  302. *phNewContext = *phContext ;
  303. }
  305. DebugLog(( DEB_TRACE_WAPI, "Init New Context = %p : %p to session %p\n",
  306. phNewContext->dwUpper , phNewContext->dwLower, pSession ));
  308. SetCurrentPackageId( SPMGR_ID );
  310. Cleanup:
  312. if ( ContextKey )
  313. {
  314. DerefContextHandle( pSession, NULL, ContextKey );
  315. }
  317. if ( CredKey )
  318. {
  319. DerefCredHandle( pSession, NULL, CredKey );
  320. }
  322. return(scRet);
  323. }
  325. //+-------------------------------------------------------------------------
  326. //
  327. // Function: WLsaAcceptContext()
  328. //
  329. // Synopsis: Worker function for AcceptSecurityContext()
  330. //
  331. // Effects: Creates a server-side security context
  332. //
  333. // Arguments: See LsaAcceptContext()
  334. //
  335. // Requires:
  336. //
  337. // Returns:
  338. //
  339. // Notes:
  340. //
  341. //--------------------------------------------------------------------------
  343. NTSTATUS
  344. WLsaAcceptContext( PCredHandle phCredential,
  345. PCtxtHandle phContext,
  346. PSecBufferDesc pInput,
  347. DWORD fContextReq,
  348. DWORD TargetDataRep,
  349. PCtxtHandle phNewContext,
  350. PSecBufferDesc pOutput,
  351. DWORD * pfContextAttr,
  352. PTimeStamp ptsExpiry,
  353. PBOOLEAN MappedContext,
  354. PSecBuffer ContextData)
  355. {
  356. NTSTATUS scRet;
  357. PLSAP_SECURITY_PACKAGE pspPackage;
  358. PSession pSession;
  359. PVOID ContextKey = NULL ;
  360. PVOID CredKey = NULL ;
  361. PLSA_CALL_INFO CallInfo = LsapGetCurrentCall();
  363. //
  364. // Clear out the handle
  365. //
  367. phNewContext->dwLower = SPMGR_ID;
  368. phNewContext->dwUpper = 0;
  370. #if DBG
  371. if ( pInput && pInput->cBuffers )
  372. {
  373. DsysAssert( (ULONG_PTR) pInput->pBuffers > PORT_MAXIMUM_MESSAGE_LENGTH );
  374. }
  375. if ( pOutput && pOutput->cBuffers )
  376. {
  377. DsysAssert( (ULONG_PTR) pOutput->pBuffers > PORT_MAXIMUM_MESSAGE_LENGTH );
  379. }
  380. #endif
  381. //
  382. // Get our session
  383. //
  385. pSession = GetCurrentSession();
  387. DebugLog((DEB_TRACE_WAPI, "[%x] WLsaAcceptContext(%p : %p)\n",
  388. pSession->dwProcessID,
  389. phCredential->dwUpper, phCredential->dwLower));
  391. //
  392. // Check handles against the session to make sure they're valid. If the
  393. // context handle is valid, we use that, otherwise the credential.
  394. //
  396. if (phCredential->dwUpper)
  397. {
  398. scRet = ValidateCredHandle(
  399. pSession,
  400. phCredential,
  401. &CredKey );
  403. if ( !NT_SUCCESS( scRet ) )
  404. {
  405. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  407. //
  408. // null out the dwUpper since the handle is invalid, do not want to
  409. // bail it out here for app compat reasons: the credential handle
  410. // is ignored when the context handle is valid
  411. //
  413. DebugLog((DEB_WARN, "[%#x] AcceptContext null out invalid credential handle %#x.%#x\n",
  414. pSession->dwProcessID, phCredential->dwLower, phCredential->dwUpper));
  416. phCredential->dwUpper = NULL;
  417. }
  418. }
  420. if (phContext->dwUpper)
  421. {
  422. scRet = ValidateContextHandle(
  423. pSession,
  424. phContext,
  425. &ContextKey );
  427. if ( !NT_SUCCESS( scRet ) )
  428. {
  429. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  431. //
  432. // null out the dwUpper since the handle is invalid
  433. //
  435. DebugLog((DEB_WARN, "[%#x] AcceptContext null out invalid context handle %#x.%#x\n",
  436. pSession->dwProcessID, phContext->dwLower, phContext->dwUpper));
  438. phContext->dwUpper = NULL;
  439. }
  440. else
  441. {
  442. //
  443. // Tricky stuff: if the context handle is valid, but does not
  444. // come from the same package as the credential, null out the cred
  445. // handle:
  446. //
  448. if ( phCredential->dwLower != phContext->dwLower )
  449. {
  450. phCredential->dwLower = 0;
  451. phCredential->dwUpper = 0;
  452. }
  453. }
  454. }
  456. if ((phContext->dwUpper == NULL) && (phCredential->dwUpper == NULL))
  457. {
  458. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  460. scRet = SEC_E_INVALID_HANDLE;
  461. goto Cleanup;
  462. }
  464. //
  465. // log the call info using the context handle if it is valid, otherwise use
  466. // the credential handle
  467. //
  469. LsapLogCallInfo( CallInfo, pSession, phContext->dwUpper ? *phContext : *phCredential );
  471. //
  472. // if the context handle is non null and valid, use its package value, otherwise
  473. // use the package value from the credential handle
  474. //
  476. pspPackage = SpmpValidRequest( phContext->dwUpper ? phContext->dwLower : phCredential->dwLower,
  477. SP_ORDINAL_ACCEPTLSAMODECTXT );
  479. if ( !pspPackage )
  480. {
  481. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  483. scRet = SEC_E_INVALID_HANDLE;
  484. goto Cleanup;
  485. }
  487. SetCurrentPackageId( pspPackage->dwPackageID );
  489. StartCallToPackage( pspPackage );
  491. __try
  492. {
  493. scRet = pspPackage->FunctionTable.AcceptLsaModeContext(
  494. phCredential->dwUpper,
  495. phContext->dwUpper,
  496. pInput,
  497. fContextReq,
  498. TargetDataRep,
  499. &phNewContext->dwUpper,
  500. pOutput,
  501. pfContextAttr,
  502. ptsExpiry,
  503. MappedContext,
  504. ContextData );
  505. }
  506. __except (SP_EXCEPTION)
  507. {
  508. scRet = GetExceptionCode();
  509. scRet = SPException(scRet, pspPackage->dwPackageID);
  510. }
  512. EndCallToPackage( pspPackage );
  514. DebugLog((DEB_TRACE_WAPI, "[%x] Result = %x\n", pSession->dwProcessID, scRet));
  516. //
  517. // Only add a new context if the old one didn't exist.
  518. // Otherwise copy the old context over the new context.
  519. //
  521. if ( NT_SUCCESS( scRet ) || ( scRet == SEC_E_INCOMPLETE_MESSAGE ) )
  522. {
  523. if ( (phNewContext->dwUpper != 0) &&
  524. (phNewContext->dwUpper != phContext->dwUpper) )
  525. {
  526. //
  527. // If the package ID is unchanged, set it to the current package
  528. // id. This is so that if package changes the ID through
  529. //
  531. if ( phNewContext->dwLower == SPMGR_ID )
  532. {
  533. phNewContext->dwLower = pspPackage->dwPackageID ;
  535. if (!AddContextHandle( pSession, phNewContext, 0 ))
  536. {
  537. DebugLog(( DEB_ERROR, "Failed adding context handle %p:%p to session %p\n",
  538. phNewContext->dwUpper, phNewContext->dwLower,
  539. pSession ));
  541. pspPackage = SpmpValidRequest(
  542. phNewContext->dwLower,
  543. SP_ORDINAL_DELETECTXT
  544. );
  546. if ( pspPackage )
  547. {
  548. //
  549. // remove the handle from the underlying package.
  550. //
  552. StartCallToPackage( pspPackage );
  554. __try
  555. {
  556. pspPackage->FunctionTable.DeleteContext(
  557. phNewContext->dwUpper
  558. );
  559. }
  560. __except (SP_EXCEPTION)
  561. {
  562. NOTHING;
  563. }
  565. EndCallToPackage( pspPackage );
  566. }
  568. phNewContext->dwLower = 0;
  569. phNewContext->dwUpper = 0;
  571. scRet = SEC_E_INSUFFICIENT_MEMORY;
  572. }
  573. }
  575. }
  576. else
  577. {
  578. *phNewContext = *phContext;
  579. }
  580. }
  581. else
  582. {
  583. *phNewContext = *phContext ;
  584. }
  586. DebugLog(( DEB_TRACE_WAPI, "Accept new context = %p : %p \n",
  587. phNewContext->dwUpper, phNewContext->dwLower ));
  589. SetCurrentPackageId( SPMGR_ID );
  591. Cleanup:
  593. if ( ContextKey )
  594. {
  595. DerefContextHandle( pSession, NULL, ContextKey );
  596. }
  598. if ( CredKey )
  599. {
  600. DerefCredHandle( pSession, NULL, CredKey );
  601. }
  603. return(scRet);
  604. }
  606. //+-------------------------------------------------------------------------
  607. //
  608. // Function: WLsaDeleteContext
  609. //
  610. // Synopsis: Worker function for deleting a context
  611. //
  612. // Effects:
  613. //
  614. // Arguments:
  615. //
  616. // Requires:
  617. //
  618. // Returns:
  619. //
  620. // Notes:
  621. //
  622. //--------------------------------------------------------------------------
  623. NTSTATUS
  624. WLsaDeleteContext( PCtxtHandle phContext)
  625. {
  626. NTSTATUS scRet;
  627. PSession pSession = GetCurrentSession();
  628. PLSA_CALL_INFO CallInfo = LsapGetCurrentCall();
  631. DebugLog((DEB_TRACE_WAPI, "[%x] WDeleteContext(%p : %p)\n",
  632. pSession->dwProcessID,
  633. phContext->dwUpper, phContext->dwLower));
  636. scRet = ValidateAndDerefContextHandle(
  637. pSession,
  638. phContext );
  640. if ( (CallInfo->Flags & CALL_FLAG_NO_HANDLE_CHK) == 0 )
  641. {
  642. if ( !NT_SUCCESS( scRet ) )
  643. {
  644. DebugLog((DEB_ERROR,"[%x] Invalid handle passed to DeleteContext: %p:%p\n",
  645. pSession->dwProcessID,
  646. phContext->dwUpper,phContext->dwLower));
  648. /// DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  650. }
  651. }
  653. LsapLogCallInfo( CallInfo, pSession, *phContext );
  655. if (SUCCEEDED(scRet))
  656. {
  657. phContext->dwUpper = phContext->dwLower = 0xFFFFFFFF;
  658. }
  661. return(scRet);
  663. }
  668. //+-------------------------------------------------------------------------
  669. //
  670. // Function: WLsaApplyControlToken
  671. //
  672. // Synopsis: Worker function for applying a control token
  673. //
  674. // Effects:
  675. //
  676. // Arguments:
  677. //
  678. // Requires:
  679. //
  680. // Returns:
  681. //
  682. // Notes:
  683. //
  684. //--------------------------------------------------------------------------
  685. NTSTATUS
  686. WLsaApplyControlToken( PCtxtHandle phContext,
  687. PSecBufferDesc pInput)
  688. {
  689. NTSTATUS scRet;
  690. PLSAP_SECURITY_PACKAGE pspPackage;
  691. PSession pSession = GetCurrentSession();
  692. PLSA_CALL_INFO CallInfo = LsapGetCurrentCall();
  693. PVOID ContextKey ;
  696. DebugLog((DEB_TRACE_WAPI, "[%x] WApplyControlToken(%p : %p)\n",
  697. pSession->dwProcessID,
  698. phContext->dwUpper, phContext->dwLower));
  700. LsapLogCallInfo( CallInfo, pSession, *phContext );
  702. scRet = ValidateContextHandle(
  703. pSession,
  704. phContext,
  705. &ContextKey );
  707. if ( !NT_SUCCESS( scRet ) )
  708. {
  709. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  711. return( scRet );
  713. }
  715. pspPackage = SpmpValidRequest( phContext->dwLower,
  716. SP_ORDINAL_APPLYCONTROLTOKEN);
  718. if ( !pspPackage )
  719. {
  720. return SEC_E_INVALID_HANDLE ;
  721. }
  723. SetCurrentPackageId(phContext->dwLower);
  725. StartCallToPackage( pspPackage );
  727. __try
  728. {
  729. scRet = pspPackage->FunctionTable.ApplyControlToken(
  730. phContext->dwUpper,
  731. pInput);
  732. }
  733. __except (SP_EXCEPTION)
  734. {
  735. scRet = GetExceptionCode();
  736. scRet = SPException(scRet, pspPackage->dwPackageID);
  737. }
  739. EndCallToPackage( pspPackage );
  741. SetCurrentPackageId( SPMGR_ID );
  743. DerefContextHandle( pSession, NULL, ContextKey );
  745. return(scRet);
  747. }
  751. NTSTATUS
  752. WLsaQueryContextAttributes(
  753. PCtxtHandle phContext,
  754. ULONG ulAttribute,
  755. PVOID pvBuffer
  756. )
  757. {
  758. NTSTATUS scRet;
  759. PLSAP_SECURITY_PACKAGE pspPackage = NULL ;
  760. PSession pSession = GetCurrentSession();
  761. PLSA_CALL_INFO CallInfo = LsapGetCurrentCall();
  762. PVOID ContextKey ;
  765. DebugLog((DEB_TRACE_WAPI, "[%x] WLsaQueryContextAttributes(%p : %p)\n",
  766. pSession->dwProcessID,
  767. phContext->dwUpper, phContext->dwLower));
  769. LsapLogCallInfo( CallInfo, pSession, *phContext );
  771. scRet = ValidateContextHandle(
  772. pSession,
  773. phContext,
  774. &ContextKey );
  777. if ( NT_SUCCESS( scRet ) )
  778. {
  779. pspPackage = SpmpValidRequest( phContext->dwLower,
  780. SP_ORDINAL_QUERYCONTEXTATTRIBUTES);
  781. }
  782. if (( !pspPackage ) ||
  783. !NT_SUCCESS( scRet ) )
  784. {
  785. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  787. return(SEC_E_INVALID_HANDLE);
  788. }
  790. StartCallToPackage( pspPackage );
  792. SetCurrentPackageId(phContext->dwLower);
  794. __try
  795. {
  796. scRet = pspPackage->FunctionTable.QueryContextAttributes(
  797. phContext->dwUpper,
  798. ulAttribute,
  799. pvBuffer );
  800. }
  801. __except (SP_EXCEPTION)
  802. {
  803. scRet = GetExceptionCode();
  804. scRet = SPException(scRet, pspPackage->dwPackageID);
  805. }
  807. EndCallToPackage( pspPackage );
  809. SetCurrentPackageId( SPMGR_ID );
  811. DerefContextHandle( pSession, NULL, ContextKey );
  813. return(scRet);
  815. }
  819. NTSTATUS
  820. WLsaSetContextAttributes(
  821. PCtxtHandle phContext,
  822. ULONG ulAttribute,
  823. PVOID pvBuffer,
  824. ULONG cbBuffer
  825. )
  826. {
  827. NTSTATUS scRet;
  828. PLSAP_SECURITY_PACKAGE pspPackage = NULL ;
  829. PSession pSession = GetCurrentSession();
  830. PLSA_CALL_INFO CallInfo = LsapGetCurrentCall();
  831. PVOID ContextKey ;
  834. DebugLog((DEB_TRACE_WAPI, "[%x] WLsaSetContextAttributes(%p : %p)\n",
  835. pSession->dwProcessID,
  836. phContext->dwUpper, phContext->dwLower));
  838. LsapLogCallInfo( CallInfo, pSession, *phContext );
  840. scRet = ValidateContextHandle(
  841. pSession,
  842. phContext,
  843. &ContextKey );
  846. if ( NT_SUCCESS( scRet ) )
  847. {
  848. pspPackage = SpmpValidRequest( phContext->dwLower,
  849. SP_ORDINAL_SETCONTEXTATTRIBUTES);
  850. }
  851. if (( !pspPackage ) ||
  852. !NT_SUCCESS( scRet ) )
  853. {
  854. DsysAssert( (pSession->fSession & SESFLAG_KERNEL) == 0 );
  856. return(SEC_E_INVALID_HANDLE);
  857. }
  859. StartCallToPackage( pspPackage );
  861. SetCurrentPackageId(phContext->dwLower);
  863. __try
  864. {
  865. scRet = pspPackage->FunctionTable.SetContextAttributes(
  866. phContext->dwUpper,
  867. ulAttribute,
  868. pvBuffer,
  869. cbBuffer );
  870. }
  871. __except (SP_EXCEPTION)
  872. {
  873. scRet = GetExceptionCode();
  874. scRet = SPException(scRet, pspPackage->dwPackageID);
  875. }
  877. EndCallToPackage( pspPackage );
  879. SetCurrentPackageId( SPMGR_ID );
  881. DerefContextHandle( pSession, NULL, ContextKey );
  883. return(scRet);
  885. }