archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/base/ntos/se/rmp.h

239 lines
6.6 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1991 Microsoft Corporation
  5. Module Name:
  7. rmp.h
  9. Abstract:
  11. Security Reference Monitor Private Data Types, Functions and Defines
  13. Author:
  15. Scott Birrell (ScottBi) March 12, 1991
  17. Environment:
  19. Revision History:
  21. --*/
  23. #ifndef _RMP_H_
  24. #define _RMP_H_
  26. #include <nt.h>
  27. #include <ntlsa.h>
  28. #include "sep.h"
  31. ///////////////////////////////////////////////////////////////////////////////
  32. // //
  33. // Reference Monitor Private defines //
  34. // //
  35. ///////////////////////////////////////////////////////////////////////////////
  38. //
  39. // Used to define the bounds of the array used to track logon session
  40. // reference counts.
  41. //
  43. #define SEP_LOGON_TRACK_INDEX_MASK (0x0000000FL)
  44. #define SEP_LOGON_TRACK_ARRAY_SIZE (0x00000010L)
  50. ///////////////////////////////////////////////////////////////////////////////
  51. // //
  52. // Reference Monitor Private Macros //
  53. // //
  54. ///////////////////////////////////////////////////////////////////////////////
  56. //
  57. // acquire exclusive access to a token
  58. //
  60. #define SepRmAcquireDbReadLock() KeEnterCriticalRegion(); \
  61. ExAcquireResourceSharedLite(&SepRmDbLock, TRUE)
  63. #define SepRmAcquireDbWriteLock() KeEnterCriticalRegion(); \
  64. ExAcquireResourceExclusiveLite(&SepRmDbLock, TRUE)
  66. #define SepRmReleaseDbReadLock() ExReleaseResourceLite(&SepRmDbLock); \
  67. KeLeaveCriticalRegion()
  69. #define SepRmReleaseDbWriteLock() ExReleaseResourceLite(&SepRmDbLock); \
  70. KeLeaveCriticalRegion()
  73. ///////////////////////////////////////////////////////////////////////////////
  74. // //
  75. // Reference Monitor Private Data Types //
  76. // //
  77. ///////////////////////////////////////////////////////////////////////////////
  79. #define SEP_RM_LSA_SHARED_MEMORY_SIZE ((ULONG) PAGE_SIZE)
  81. //
  82. // Reference Monitor Private Global State Data Structure
  83. //
  85. typedef struct _SEP_RM_STATE {
  87. HANDLE LsaInitEventHandle;
  88. HANDLE LsaCommandPortHandle;
  89. HANDLE SepRmThreadHandle;
  90. HANDLE RmCommandPortHandle;
  91. HANDLE RmCommandServerPortHandle;
  92. ULONG AuditingEnabled;
  93. LSA_OPERATIONAL_MODE OperationalMode;
  94. HANDLE LsaCommandPortSectionHandle;
  95. LARGE_INTEGER LsaCommandPortSectionSize;
  96. PVOID LsaViewPortMemory;
  97. PVOID RmViewPortMemory;
  98. LONG LsaCommandPortMemoryDelta;
  99. // BOOLEAN LsaCommandPortResourceInitialized;
  100. BOOLEAN LsaCommandPortActive;
  101. // ERESOURCE LsaCommandPortResource;
  103. } SEP_RM_STATE, *PSEP_RM_STATE;
  105. //
  106. // Reference Monitor Command Port Connection Info
  107. //
  109. typedef struct _SEP_RM_CONNECT_INFO {
  110. ULONG ConnectInfo;
  111. } SEP_RM_CONNECT_INFO;
  113. typedef struct SEP_RM_CONNECT_INFO *PSEP_RM_CONNECT_INFO;
  116. //
  117. // Reference Monitor Command Table Entry Format
  118. //
  120. #define SEP_RM_COMMAND_MAX 4
  122. typedef VOID (*SEP_RM_COMMAND_WORKER)( PRM_COMMAND_MESSAGE, PRM_REPLY_MESSAGE );
  124. typedef struct _SEP_LOGON_SESSION_TOKEN {
  125. LIST_ENTRY ListEntry;
  126. PTOKEN Token;
  127. } SEP_LOGON_SESSION_TOKEN, *PSEP_LOGON_SESSION_TOKEN;
  129. //
  130. // Each logon session active in the system has a corresponding record of
  131. // the following type...
  132. //
  134. typedef struct _SEP_LOGON_SESSION_REFERENCES {
  135. struct _SEP_LOGON_SESSION_REFERENCES *Next;
  136. LUID LogonId;
  137. ULONG ReferenceCount;
  138. ULONG Flags;
  139. PDEVICE_MAP pDeviceMap;
  140. #if DBG || TOKEN_LEAK_MONITOR
  141. LIST_ENTRY TokenList;
  142. #endif
  143. } SEP_LOGON_SESSION_REFERENCES, *PSEP_LOGON_SESSION_REFERENCES;
  145. #define SEP_TERMINATION_NOTIFY 0x1
  147. //
  148. // File systems interested in being notified when a logon session is being
  149. // terminated register a callback routine. The following data structure
  150. // describes the callback routines.
  151. //
  152. // The global list of callback routines is pointed to by SeFileSystemNotifyRoutines.
  153. // This list is protected by the RM database lock.
  154. //
  156. typedef struct _SEP_LOGON_SESSION_TERMINATED_NOTIFICATION {
  157. struct _SEP_LOGON_SESSION_TERMINATED_NOTIFICATION *Next;
  158. PSE_LOGON_SESSION_TERMINATED_ROUTINE CallbackRoutine;
  159. } SEP_LOGON_SESSION_TERMINATED_NOTIFICATION, *PSEP_LOGON_SESSION_TERMINATED_NOTIFICATION;
  161. extern SEP_LOGON_SESSION_TERMINATED_NOTIFICATION
  162. SeFileSystemNotifyRoutinesHead;
  165. ///////////////////////////////////////////////////////////////////////////////
  166. // //
  167. // Reference Monitor Private Function Prototypes //
  168. // //
  169. ///////////////////////////////////////////////////////////////////////////////
  171. BOOLEAN
  172. SepRmDbInitialization(
  173. VOID
  174. );
  176. VOID
  177. SepRmCommandServerThread(
  178. IN PVOID StartContext
  179. );
  181. BOOLEAN SepRmCommandServerThreadInit(
  182. );
  184. VOID
  185. SepRmComponentTestCommandWrkr(
  186. IN PRM_COMMAND_MESSAGE CommandMessage,
  187. OUT PRM_REPLY_MESSAGE ReplyMessage
  188. );
  190. VOID
  191. SepRmSetAuditEventWrkr(
  192. IN PRM_COMMAND_MESSAGE CommandMessage,
  193. OUT PRM_REPLY_MESSAGE ReplyMessage
  194. );
  196. VOID
  197. SepRmSendCommandToLsaWrkr(
  198. IN PRM_COMMAND_MESSAGE CommandMessage,
  199. OUT PRM_REPLY_MESSAGE ReplyMessage
  200. );
  202. VOID
  203. SepRmCreateLogonSessionWrkr(
  204. IN PRM_COMMAND_MESSAGE CommandMessage,
  205. OUT PRM_REPLY_MESSAGE ReplyMessage
  206. );
  208. VOID
  209. SepRmDeleteLogonSessionWrkr(
  210. IN PRM_COMMAND_MESSAGE CommandMessage,
  211. OUT PRM_REPLY_MESSAGE ReplyMessage
  212. ) ;
  215. NTSTATUS
  216. SepCreateLogonSessionTrack(
  217. IN PLUID LogonId
  218. );
  220. NTSTATUS
  221. SepDeleteLogonSessionTrack(
  222. IN PLUID LogonId
  223. );
  227. ///////////////////////////////////////////////////////////////////////////////
  228. // //
  229. // Reference Monitor Private Variables Declarations //
  230. // These variables are defined in rmvars.c //
  231. // //
  232. ///////////////////////////////////////////////////////////////////////////////
  234. extern PEPROCESS SepRmLsaCallProcess;
  235. extern SEP_RM_STATE SepRmState;
  236. extern ERESOURCE SepRmDbLock;
  237. extern PSEP_LOGON_SESSION_REFERENCES *SepLogonSessions;
  239. #endif // _RMP_H_