archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/base/subsys/csr/server/apiinit.c

204 lines
5.9 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. apiinit.c
  9. Abstract:
  11. This module contains the code to initialize the ApiPort of the
  12. Server side of the Client-Server Runtime Subsystem to the Session
  13. Manager SubSystem.
  15. Author:
  17. Steve Wood (stevewo) 8-Oct-1990
  19. Environment:
  21. User Mode Only
  23. Revision History:
  25. --*/
  27. #include "csrsrv.h"
  29. static SID_IDENTIFIER_AUTHORITY WorldSidAuthority = SECURITY_WORLD_SID_AUTHORITY;
  30. static SID_IDENTIFIER_AUTHORITY NtAuthority = SECURITY_NT_AUTHORITY;
  32. NTSTATUS
  33. CsrApiPortInitialize( VOID )
  34. {
  35. NTSTATUS Status;
  36. OBJECT_ATTRIBUTES ObjectAttributes;
  37. HANDLE Thread;
  38. CLIENT_ID ClientId;
  39. PLIST_ENTRY ListHead, ListNext;
  40. PCSR_THREAD ServerThread;
  41. HANDLE EventHandle;
  42. ULONG Length;
  43. PSID SeWorldSid;
  44. PSID SeRestrictedSid;
  45. PSECURITY_DESCRIPTOR SecurityDescriptor;
  46. PACL Dacl;
  48. // Though this function does not seem to cleanup on failure, failure
  49. // will cause Csrss to exit, so any allocated memory will be freed and
  50. // any open handle will be closed.
  53. Length = CsrDirectoryName.Length +
  54. sizeof( CSR_API_PORT_NAME ) +
  55. sizeof( OBJ_NAME_PATH_SEPARATOR );
  56. CsrApiPortName.Buffer = RtlAllocateHeap( CsrHeap, MAKE_TAG( INIT_TAG ), Length );
  57. if (CsrApiPortName.Buffer == NULL) {
  58. return( STATUS_NO_MEMORY );
  59. }
  60. CsrApiPortName.Length = 0;
  61. CsrApiPortName.MaximumLength = (USHORT)Length;
  62. RtlAppendUnicodeStringToString( &CsrApiPortName, &CsrDirectoryName );
  63. RtlAppendUnicodeToString( &CsrApiPortName, L"\\" );
  64. RtlAppendUnicodeToString( &CsrApiPortName, CSR_API_PORT_NAME );
  66. IF_CSR_DEBUG( INIT ) {
  67. DbgPrint( "CSRSS: Creating %wZ port and associated threads\n",
  68. &CsrApiPortName );
  69. DbgPrint( "CSRSS: sizeof( CONNECTINFO ) == %ld sizeof( API_MSG ) == %ld\n",
  70. sizeof( CSR_API_CONNECTINFO ),
  71. sizeof( CSR_API_MSG )
  72. );
  73. }
  75. //
  76. // create a security descriptor that allows all access
  77. //
  79. SeWorldSid = RtlAllocateHeap( CsrHeap, MAKE_TAG( TMP_TAG ), RtlLengthRequiredSid( 1 ) );
  80. if (SeWorldSid == NULL) {
  81. return( STATUS_NO_MEMORY );
  82. }
  84. RtlInitializeSid( SeWorldSid, &WorldSidAuthority, 1 );
  85. *(RtlSubAuthoritySid( SeWorldSid, 0 )) = SECURITY_WORLD_RID;
  87. Status = RtlAllocateAndInitializeSid(&NtAuthority ,
  88. 1,
  89. SECURITY_RESTRICTED_CODE_RID,
  90. 0, 0, 0, 0, 0, 0, 0,
  91. &SeRestrictedSid);
  92. if (!NT_SUCCESS(Status)){
  93. return Status;
  94. }
  96. Length = SECURITY_DESCRIPTOR_MIN_LENGTH +
  97. (ULONG)sizeof(ACL) +
  98. 2 * (ULONG)sizeof(ACCESS_ALLOWED_ACE) +
  99. RtlLengthSid( SeWorldSid ) +
  100. RtlLengthSid( SeRestrictedSid ) +
  101. 8; // The 8 is just for good measure
  102. SecurityDescriptor = RtlAllocateHeap( CsrHeap, MAKE_TAG( TMP_TAG ), Length);
  103. if (SecurityDescriptor == NULL) {
  104. return( STATUS_NO_MEMORY );
  105. }
  107. Dacl = (PACL)((PCHAR)SecurityDescriptor + SECURITY_DESCRIPTOR_MIN_LENGTH);
  109. RtlCreateSecurityDescriptor(SecurityDescriptor, SECURITY_DESCRIPTOR_REVISION);
  110. RtlCreateAcl( Dacl, Length - SECURITY_DESCRIPTOR_MIN_LENGTH, ACL_REVISION2);
  112. RtlAddAccessAllowedAce (
  113. Dacl,
  114. ACL_REVISION2,
  115. PORT_ALL_ACCESS,
  116. SeWorldSid
  117. );
  119. RtlAddAccessAllowedAce (
  120. Dacl,
  121. ACL_REVISION2,
  122. PORT_ALL_ACCESS,
  123. SeRestrictedSid
  124. );
  126. RtlSetDaclSecurityDescriptor (
  127. SecurityDescriptor,
  128. TRUE,
  129. Dacl,
  130. FALSE
  131. );
  133. InitializeObjectAttributes( &ObjectAttributes, &CsrApiPortName, 0,
  134. NULL, SecurityDescriptor );
  135. Status = NtCreatePort( &CsrApiPort,
  136. &ObjectAttributes,
  137. sizeof( CSR_API_CONNECTINFO ),
  138. sizeof( CSR_API_MSG ),
  139. 4096 * 16
  140. );
  141. if (!NT_SUCCESS(Status)){
  142. return Status;
  143. }
  144. //
  145. // clean up security stuff
  146. //
  148. RtlFreeHeap( CsrHeap, 0, SeWorldSid );
  149. RtlFreeHeap( CsrHeap, 0, SeRestrictedSid );
  150. RtlFreeHeap( CsrHeap, 0, SecurityDescriptor );
  152. Status = NtCreateEvent(&EventHandle,
  153. EVENT_ALL_ACCESS,
  154. NULL,
  155. SynchronizationEvent,
  156. FALSE
  157. );
  158. if (!NT_SUCCESS(Status)){
  159. return Status;
  160. }
  161. //
  162. // Create the inital request thread
  163. //
  165. Status = RtlCreateUserThread( NtCurrentProcess(),
  166. NULL,
  167. TRUE,
  168. 0,
  169. 0,
  170. 0,
  171. CsrApiRequestThread,
  172. (PVOID)EventHandle,
  173. &Thread,
  174. &ClientId
  175. );
  176. if (!NT_SUCCESS(Status)){
  177. return Status;
  178. }
  180. CsrAddStaticServerThread(Thread,&ClientId,CSR_STATIC_API_THREAD);
  182. ListHead = &CsrRootProcess->ThreadList;
  183. ListNext = ListHead->Flink;
  184. while (ListNext != ListHead) {
  185. ServerThread = CONTAINING_RECORD( ListNext, CSR_THREAD, Link );
  186. Status = NtResumeThread( ServerThread->ThreadHandle, NULL );
  187. if (ServerThread->Flags & CSR_STATIC_API_THREAD) {
  188. Status = NtWaitForSingleObject(EventHandle,FALSE,NULL);
  189. ASSERT( NT_SUCCESS( Status ) );
  190. }
  191. ListNext = ListNext->Flink;
  192. }
  193. NtClose(EventHandle);
  196. return( Status );
  197. }
  199. HANDLE
  200. CsrQueryApiPort(VOID)
  201. {
  202. return CsrApiPort;
  203. }