archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/protocols/kerberos/kernel/ctxtmgr.cxx

812 lines
19 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+-----------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (c) Microsoft Corporation 1992 - 1996
  6. //
  7. // File: ctxtmgr.cxx
  8. //
  9. // Contents: Code for managing contexts list for the Kerberos package
  10. //
  11. //
  12. // History: 17-April-1996 Created MikeSw
  13. //
  14. //------------------------------------------------------------------------
  16. #define CTXTMGR_ALLOCATE
  17. #include <kerbkrnl.h>
  19. #ifdef ALLOC_PRAGMA
  20. #pragma alloc_text(PAGE, KerbInitContextList)
  21. #pragma alloc_text(PAGE, KerbFreeContextList)
  22. #pragma alloc_text(PAGEMSG, KerbAllocateContext)
  23. #pragma alloc_text(PAGEMSG, KerbInsertContext)
  24. #pragma alloc_text(PAGEMSG, KerbReferenceContext)
  25. #pragma alloc_text(PAGEMSG, KerbDereferenceContext)
  26. #pragma alloc_text(PAGEMSG, KerbReferenceContextByPointer)
  27. #pragma alloc_text(PAGEMSG, KerbReferenceContextByLsaHandle)
  28. #pragma alloc_text(PAGEMSG, KerbCreateKernelModeContext)
  29. #endif
  32. #define MAYBE_PAGED_CODE() \
  33. if ( KerbPoolType == PagedPool ) \
  34. { \
  35. PAGED_CODE(); \
  36. }
  38. //+-------------------------------------------------------------------------
  39. //
  40. // Function: KerbInitContextList
  41. //
  42. // Synopsis: Initializes the contexts list
  43. //
  44. // Effects: allocates a resources
  45. //
  46. // Arguments: none
  47. //
  48. // Requires:
  49. //
  50. // Returns: STATUS_SUCCESS on success, other error codes
  51. // on failure
  52. //
  53. // Notes:
  54. //
  55. //
  56. //--------------------------------------------------------------------------
  57. NTSTATUS
  58. KerbInitContextList(
  59. VOID
  60. )
  61. {
  62. NTSTATUS Status;
  64. PAGED_CODE();
  65. Status = ExInitializeResourceLite( &KerbContextResource );
  66. if (!NT_SUCCESS(Status))
  67. {
  68. return(Status);
  69. }
  71. Status = KerbInitializeList( &KerbContextList );
  73. if (!NT_SUCCESS(Status))
  74. {
  75. ExDeleteResourceLite( &KerbContextResource );
  76. goto Cleanup;
  77. }
  78. KerberosContextsInitialized = TRUE;
  80. Cleanup:
  82. return(Status);
  83. }
  85. #if 0
  86. //+-------------------------------------------------------------------------
  87. //
  88. // Function: KerbFreeContextList
  89. //
  90. // Synopsis: Frees the contexts list
  91. //
  92. // Effects:
  93. //
  94. // Arguments: none
  95. //
  96. // Requires:
  97. //
  98. // Returns: none
  99. //
  100. // Notes:
  101. //
  102. //
  103. //--------------------------------------------------------------------------
  105. VOID
  106. KerbFreeContextList(
  107. VOID
  108. )
  109. {
  110. PLIST_ENTRY ListEntry;
  111. PKERB_KERNEL_CONTEXT Context;
  113. PAGED_CODE();
  115. if (KerberosContextsInitialized)
  116. {
  117. KerbLockList(&KerbContextList);
  119. //
  120. // Go through the list of logon sessions and dereferences them all
  121. //
  123. while (!IsListEmpty(&KerbContextList.List))
  124. {
  125. Context = CONTAINING_RECORD(
  126. KerbContextList.List.Flink,
  127. KERB_KERNEL_CONTEXT,
  128. ListEntry.Next
  129. );
  131. KerbReferenceListEntry(
  132. &KerbContextList,
  133. (PKERBEROS_LIST_ENTRY) Context,
  134. TRUE
  135. );
  137. KerbDereferenceContext(Context);
  139. }
  141. KerbUnlockList(&KerbContextList);
  142. KerbFreeList(&KerbContextList);
  143. }
  144. }
  145. #endif
  147. //+-------------------------------------------------------------------------
  148. //
  149. // Function: KerbAllocateContext
  150. //
  151. // Synopsis: Allocates a Context structure
  152. //
  153. // Effects: Allocates a Context, but does not add it to the
  154. // list of Contexts
  155. //
  156. // Arguments: NewContext - receives a new Context allocated
  157. // with KerbAllocate
  158. //
  159. // Requires:
  160. //
  161. // Returns: STATUS_SUCCESS on success
  162. // STATUS_INSUFFICIENT_RESOURCES if the allocation fails
  163. //
  164. // Notes:
  165. //
  166. //
  167. //--------------------------------------------------------------------------
  168. NTSTATUS
  169. KerbAllocateContext(
  170. PKERB_KERNEL_CONTEXT * NewContext
  171. )
  172. {
  173. PKERB_KERNEL_CONTEXT Context;
  174. NTSTATUS Status;
  176. MAYBE_PAGED_CODE();
  178. //
  179. // Get the client process ID if we are running in the LSA
  180. //
  183. Context = (PKERB_KERNEL_CONTEXT) KerbAllocate(
  184. sizeof(KERB_KERNEL_CONTEXT) );
  186. if (Context == NULL)
  187. {
  188. return(STATUS_INSUFFICIENT_RESOURCES);
  189. }
  190. RtlZeroMemory(
  191. Context,
  192. sizeof(KERB_KERNEL_CONTEXT)
  193. );
  195. KsecInitializeListEntry( &Context->List, KERB_CONTEXT_SIGNATURE );
  197. *NewContext = Context;
  199. return(STATUS_SUCCESS);
  200. }
  203. //+-------------------------------------------------------------------------
  204. //
  205. // Function: KerbInsertContext
  206. //
  207. // Synopsis: Inserts a logon session into the list of logon sessions
  208. //
  209. // Effects: bumps reference count on logon session
  210. //
  211. // Arguments: Context - Context to insert
  212. //
  213. // Requires:
  214. //
  215. // Returns: STATUS_SUCCESS always
  216. //
  217. // Notes:
  218. //
  219. //
  220. //--------------------------------------------------------------------------
  223. NTSTATUS
  224. KerbInsertContext(
  225. IN PKERB_KERNEL_CONTEXT Context
  226. )
  227. {
  228. MAYBE_PAGED_CODE();
  230. KSecInsertListEntry(
  231. KerbActiveList,
  232. (PKSEC_LIST_ENTRY) Context
  233. );
  235. return(STATUS_SUCCESS);
  236. }
  238. #if 0
  239. //+-------------------------------------------------------------------------
  240. //
  241. // Function: KerbReferenceContextByLsaHandle
  242. //
  243. // Synopsis: Locates a context by lsa handle and references it
  244. //
  245. // Effects: Increments reference count and possible unlinks it from list
  246. //
  247. // Arguments: ContextHandle - Handle of context to reference.
  248. // RemoveFromList - If TRUE, context will be delinked.
  249. //
  250. // Requires:
  251. //
  252. // Returns:
  253. //
  254. // Notes:
  255. //
  256. //
  257. //--------------------------------------------------------------------------
  260. PKERB_KERNEL_CONTEXT
  261. KerbReferenceContextByLsaHandle(
  262. IN LSA_SEC_HANDLE ContextHandle,
  263. IN BOOLEAN RemoveFromList
  264. )
  265. {
  266. PLIST_ENTRY ListEntry;
  267. PKERB_KERNEL_CONTEXT Context = NULL;
  268. BOOLEAN Found = FALSE;
  269. SECPKG_CLIENT_INFO ClientInfo;
  270. NTSTATUS Status;
  272. PAGED_CODE();
  274. KerbLockList(&KerbContextList);
  276. //
  277. // Go through the list of logon sessions looking for the correct
  278. // LUID
  279. //
  281. for (ListEntry = KerbContextList.List.Flink ;
  282. ListEntry != &KerbContextList.List ;
  283. ListEntry = ListEntry->Flink )
  284. {
  285. Context = CONTAINING_RECORD(ListEntry, KERB_KERNEL_CONTEXT, ListEntry.Next);
  286. if (ContextHandle == Context->LsaContextHandle)
  287. {
  290. KerbReferenceListEntry(
  291. &KerbContextList,
  292. (PKERBEROS_LIST_ENTRY) Context,
  293. RemoveFromList
  294. );
  297. Found = TRUE;
  298. break;
  299. }
  301. }
  303. if (!Found)
  304. {
  305. Context = NULL;
  306. }
  307. KerbUnlockList(&KerbContextList);
  308. return(Context);
  309. }
  310. #endif
  313. //+-------------------------------------------------------------------------
  314. //
  315. // Function: KerbReferenceContext
  316. //
  317. // Synopsis: Locates a context and references it
  318. //
  319. // Effects: Increments reference count and possible unlinks it from list
  320. //
  321. // Arguments: ContextHandle - Lsa Handle of context to reference.
  322. // RemoveFromList - If TRUE, context will be delinked.
  323. //
  324. // Requires:
  325. //
  326. // Returns:
  327. //
  328. // Notes:
  329. //
  330. //
  331. //--------------------------------------------------------------------------
  334. PKERB_KERNEL_CONTEXT
  335. KerbReferenceContext(
  336. IN LSA_SEC_HANDLE ContextHandle,
  337. IN BOOLEAN RemoveFromList
  338. )
  339. {
  340. PKERB_KERNEL_CONTEXT Context = NULL;
  341. NTSTATUS Status;
  343. MAYBE_PAGED_CODE();
  345. Status = KSecReferenceListEntry(
  346. (PKSEC_LIST_ENTRY) ContextHandle,
  347. KERB_CONTEXT_SIGNATURE,
  348. RemoveFromList );
  350. if ( NT_SUCCESS( Status ) )
  351. {
  352. Context = (PKERB_KERNEL_CONTEXT) ContextHandle ;
  353. }
  355. //
  356. // In kernel mode we trust the caller to provide a valid pointer, but
  357. // make sure it is a kernel mode pointer.
  358. //
  361. return(Context);
  362. }
  364. #if 0
  365. //+-------------------------------------------------------------------------
  366. //
  367. // Function: KerbReferenceContextByPointer
  368. //
  369. // Synopsis: References a context by the context pointer itself.
  370. //
  371. // Effects: Increments reference count and possible unlinks it from list
  372. //
  373. // Arguments: Context - The context to reference.
  374. // RemoveFromList - If TRUE, context will be delinked
  375. //
  376. // Requires:
  377. //
  378. // Returns:
  379. //
  380. // Notes:
  381. //
  382. //
  383. //--------------------------------------------------------------------------
  386. VOID
  387. KerbReferenceContextByPointer(
  388. IN PKERB_KERNEL_CONTEXT Context,
  389. IN BOOLEAN RemoveFromList
  390. )
  391. {
  392. PAGED_CODE();
  394. KerbLockList(&KerbContextList);
  396. KerbReferenceListEntry(
  397. &KerbContextList,
  398. (PKERBEROS_LIST_ENTRY) Context,
  399. RemoveFromList
  400. );
  402. if (RemoveFromList)
  403. {
  404. Context->ContextSignature = KERB_CONTEXT_DELETED_SIGNATURE;
  405. }
  407. KerbUnlockList(&KerbContextList);
  408. }
  409. #endif
  412. //+-------------------------------------------------------------------------
  413. //
  414. // Function: KerbFreeContext
  415. //
  416. // Synopsis: Frees a context that is unlinked
  417. //
  418. // Effects: frees all storage associated with the context
  419. //
  420. // Arguments: Context - context to free
  421. //
  422. // Requires:
  423. //
  424. // Returns: none
  425. //
  426. // Notes:
  427. //
  428. //
  429. //--------------------------------------------------------------------------
  432. VOID
  433. KerbFreeContext(
  434. IN PKERB_KERNEL_CONTEXT Context
  435. )
  436. {
  437. PAGED_CODE();
  439. if (Context->TokenHandle != NULL)
  440. {
  441. NtClose(Context->TokenHandle);
  442. }
  443. if (Context->AccessToken != NULL)
  444. {
  445. ObDereferenceObject( Context->AccessToken );
  446. }
  448. if (Context->FullName.Buffer != NULL)
  449. {
  450. KerbFree(Context->FullName.Buffer);
  451. }
  452. if (Context->SessionKey.keyvalue.value != NULL)
  453. {
  454. KerbFree(Context->SessionKey.keyvalue.value);
  455. }
  457. if (Context->pbMarshalledTargetInfo != NULL)
  458. {
  459. KerbFree(Context->pbMarshalledTargetInfo);
  460. }
  461. KerbFree(Context);
  463. }
  465. //+-------------------------------------------------------------------------
  466. //
  467. // Function: KerbDereferenceContext
  468. //
  469. // Synopsis: Dereferences a logon session - if reference count goes
  470. // to zero it frees the logon session
  471. //
  472. // Effects: decrements reference count
  473. //
  474. // Arguments: Context - Logon session to dereference
  475. //
  476. // Requires:
  477. //
  478. // Returns: none
  479. //
  480. // Notes:
  481. //
  482. //
  483. //--------------------------------------------------------------------------
  486. VOID
  487. KerbDereferenceContext(
  488. IN PKERB_KERNEL_CONTEXT Context
  489. )
  490. {
  491. BOOLEAN Delete ;
  493. MAYBE_PAGED_CODE();
  495. KSecDereferenceListEntry(
  496. (PKSEC_LIST_ENTRY) Context,
  497. &Delete );
  499. if ( Delete )
  500. {
  501. KerbFreeContext( Context );
  502. }
  503. }
  506. //+-------------------------------------------------------------------------
  507. //
  508. // Function: KerbCreateKernelModeContext
  509. //
  510. // Synopsis: Creates a kernel-mode context to support impersonation and
  511. // message integrity and privacy
  512. //
  513. // Effects:
  514. //
  515. // Arguments:
  516. //
  517. // Requires:
  518. //
  519. // Returns:
  520. //
  521. // Notes:
  522. //
  523. //
  524. //--------------------------------------------------------------------------
  526. NTSTATUS
  527. KerbCreateKernelModeContext(
  528. IN LSA_SEC_HANDLE ContextHandle,
  529. IN PSecBuffer MarshalledContext,
  530. OUT PKERB_KERNEL_CONTEXT * NewContext
  531. )
  532. {
  533. NTSTATUS Status;
  534. PKERB_KERNEL_CONTEXT Context = NULL;
  535. PKERB_PACKED_CONTEXT PackedContext ;
  536. PUCHAR Where;
  538. PAGED_CODE();
  540. if (MarshalledContext->cbBuffer < sizeof(KERB_PACKED_CONTEXT))
  541. {
  542. DebugLog((DEB_ERROR,"Invalid buffer size for marshalled context: was 0x%x, needed 0x%x\n",
  543. MarshalledContext->cbBuffer, sizeof(KERB_CONTEXT)));
  544. return(STATUS_INVALID_PARAMETER);
  545. }
  547. PackedContext = (PKERB_PACKED_CONTEXT) MarshalledContext->pvBuffer;
  549. Status = KerbAllocateContext( &Context );
  550. if (!NT_SUCCESS(Status))
  551. {
  552. goto Cleanup;
  553. }
  555. KsecInitializeListEntry( &Context->List, KERB_CONTEXT_SIGNATURE );
  557. Context->Lifetime = PackedContext->Lifetime;
  558. Context->RenewTime = PackedContext->RenewTime;
  559. Context->Nonce = PackedContext->Nonce;
  560. Context->ReceiveNonce = PackedContext->ReceiveNonce;
  561. Context->ContextFlags = PackedContext->ContextFlags;
  562. Context->ContextAttributes = PackedContext->ContextAttributes;
  563. Context->EncryptionType = PackedContext->EncryptionType;
  565. Context->LsaContextHandle = ContextHandle;
  566. Context->ReceiveNonce = Context->Nonce;
  567. Context->TokenHandle = (HANDLE) ULongToPtr(PackedContext->TokenHandle);
  569. //
  570. // Fill in the full name, which is the concatenation of the client name
  571. // and client realm with a '\\' separator
  572. //
  574. Context->FullName.MaximumLength = PackedContext->ClientName.Length +
  575. PackedContext->ClientRealm.Length +
  576. sizeof(WCHAR);
  577. Context->FullName.Buffer = (LPWSTR) KerbAllocate(Context->FullName.MaximumLength);
  578. if (Context->FullName.Buffer == NULL)
  579. {
  580. Status = STATUS_INSUFFICIENT_RESOURCES;
  581. goto Cleanup;
  582. }
  584. Where = (PUCHAR) Context->FullName.Buffer;
  585. if (PackedContext->ClientRealm.Length != 0)
  586. {
  587. RtlCopyMemory(
  588. Where,
  589. (PUCHAR) PackedContext + (ULONG_PTR) PackedContext->ClientRealm.Buffer,
  590. PackedContext->ClientRealm.Length
  591. );
  592. Where += PackedContext->ClientRealm.Length;
  593. *(LPWSTR) Where = L'\\';
  594. Where += sizeof(WCHAR);
  595. }
  597. if (PackedContext->ClientName.Length != 0)
  598. {
  599. RtlCopyMemory(
  600. Where,
  601. (PUCHAR) PackedContext + (ULONG_PTR) PackedContext->ClientName.Buffer,
  602. PackedContext->ClientName.Length
  603. );
  604. Where += PackedContext->ClientName.Length;
  605. }
  607. Context->FullName.Length = (USHORT) (Where - (PUCHAR) Context->FullName.Buffer);
  609. //
  610. // Copy in the session key
  611. //
  615. Context->SessionKey.keytype = PackedContext->SessionKeyType;
  616. Context->SessionKey.keyvalue.length = PackedContext->SessionKeyLength;
  617. if (Context->SessionKey.keyvalue.length != 0)
  618. {
  619. Context->SessionKey.keyvalue.value = (PUCHAR) KerbAllocate( Context->SessionKey.keyvalue.length );
  620. if (Context->SessionKey.keyvalue.value == NULL)
  621. {
  622. Status = STATUS_INSUFFICIENT_RESOURCES;
  623. goto Cleanup;
  624. }
  625. RtlCopyMemory(
  626. Context->SessionKey.keyvalue.value,
  627. (PUCHAR) PackedContext + PackedContext->SessionKeyOffset,
  628. Context->SessionKey.keyvalue.length
  629. );
  631. }
  634. //
  635. // copy in the marshalled target info.
  636. //
  638. Context->cbMarshalledTargetInfo = PackedContext->MarshalledTargetInfoLength;
  639. if (PackedContext->MarshalledTargetInfo)
  640. {
  641. Context->pbMarshalledTargetInfo = (PUCHAR) KerbAllocate( Context->cbMarshalledTargetInfo );
  642. if (Context->pbMarshalledTargetInfo == NULL)
  643. {
  644. Status = STATUS_INSUFFICIENT_RESOURCES;
  645. goto Cleanup;
  646. }
  647. RtlCopyMemory(
  648. Context->pbMarshalledTargetInfo,
  649. (PUCHAR) PackedContext + PackedContext->MarshalledTargetInfo,
  650. Context->cbMarshalledTargetInfo
  651. );
  653. } else {
  654. Context->pbMarshalledTargetInfo = NULL;
  655. }
  657. Status = KerbInsertContext(
  658. Context
  659. );
  660. if (!NT_SUCCESS(Status))
  661. {
  662. DebugLog((DEB_ERROR,"Failed to insert context: 0x%x\n",Status));
  663. goto Cleanup;
  664. }
  667. *NewContext = Context;
  669. Cleanup:
  670. if (!NT_SUCCESS(Status))
  671. {
  672. if (Context != NULL)
  673. {
  674. KerbFreeContext(Context);
  675. }
  676. }
  677. return(Status);
  679. }
  680. #if 0
  681. NTSTATUS
  682. KerbCreateKernelModeContext(
  683. IN LSA_SEC_HANDLE ContextHandle,
  684. IN PSecBuffer MarshalledContext,
  685. OUT PKERB_KERNEL_CONTEXT * NewContext
  686. )
  687. {
  688. NTSTATUS Status;
  689. PKERB_KERNEL_CONTEXT Context = NULL;
  690. PKERB_CONTEXT LsaContext;
  691. PUCHAR Where;
  693. PAGED_CODE();
  695. if (MarshalledContext->cbBuffer < sizeof(KERB_CONTEXT))
  696. {
  697. DebugLog((DEB_ERROR,"Invalid buffer size for marshalled context: was 0x%x, needed 0x%x\n",
  698. MarshalledContext->cbBuffer, sizeof(KERB_CONTEXT)));
  699. return(STATUS_INVALID_PARAMETER);
  700. }
  702. LsaContext = (PKERB_CONTEXT) MarshalledContext->pvBuffer;
  704. Status = KerbAllocateContext( &Context );
  705. if (!NT_SUCCESS(Status))
  706. {
  707. goto Cleanup;
  708. }
  710. KsecInitializeListEntry( &Context->List, KERB_CONTEXT_SIGNATURE );
  712. Context->Lifetime = LsaContext->Lifetime;
  713. Context->RenewTime = LsaContext->RenewTime;
  714. Context->Nonce = LsaContext->Nonce;
  715. Context->ReceiveNonce = LsaContext->ReceiveNonce;
  716. Context->ContextFlags = LsaContext->ContextFlags;
  717. Context->ContextAttributes = LsaContext->ContextAttributes;
  718. Context->EncryptionType = LsaContext->EncryptionType;
  720. Context->LsaContextHandle = ContextHandle;
  721. Context->ReceiveNonce = Context->Nonce;
  722. Context->TokenHandle = LsaContext->TokenHandle;
  724. //
  725. // Fill in the full name, which is the concatenation of the client name
  726. // and client realm with a '\\' separator
  727. //
  729. Context->FullName.MaximumLength = LsaContext->ClientName.Length +
  730. LsaContext->ClientRealm.Length +
  731. sizeof(WCHAR);
  732. Context->FullName.Buffer = (LPWSTR) KerbAllocate(Context->FullName.MaximumLength);
  733. if (Context->FullName.Buffer == NULL)
  734. {
  735. Status = STATUS_INSUFFICIENT_RESOURCES;
  736. goto Cleanup;
  737. }
  739. Where = (PUCHAR) Context->FullName.Buffer;
  740. if (LsaContext->ClientRealm.Length != 0)
  741. {
  742. RtlCopyMemory(
  743. Where,
  744. (PUCHAR) LsaContext + (ULONG_PTR) LsaContext->ClientRealm.Buffer,
  745. LsaContext->ClientRealm.Length
  746. );
  747. Where += LsaContext->ClientRealm.Length;
  748. *(LPWSTR) Where = L'\\';
  749. Where += sizeof(WCHAR);
  750. }
  752. if (LsaContext->ClientName.Length != 0)
  753. {
  754. RtlCopyMemory(
  755. Where,
  756. (PUCHAR) LsaContext + (ULONG_PTR) LsaContext->ClientName.Buffer,
  757. LsaContext->ClientName.Length
  758. );
  759. Where += LsaContext->ClientName.Length;
  760. }
  762. Context->FullName.Length = (USHORT) (Where - (PUCHAR) Context->FullName.Buffer);
  764. //
  765. // Copy in the session key
  766. //
  769. LsaContext->SessionKey.keyvalue.value = (PUCHAR) LsaContext->SessionKey.keyvalue.value + (ULONG_PTR) LsaContext;
  771. Context->SessionKey.keytype = LsaContext->SessionKey.keytype;
  772. Context->SessionKey.keyvalue.length = LsaContext->SessionKey.keyvalue.length;
  773. if (Context->SessionKey.keyvalue.length != 0)
  774. {
  775. Context->SessionKey.keyvalue.value = (PUCHAR) KerbAllocate(LsaContext->SessionKey.keyvalue.length);
  776. if (Context->SessionKey.keyvalue.value == NULL)
  777. {
  778. Status = STATUS_INSUFFICIENT_RESOURCES;
  779. goto Cleanup;
  780. }
  781. RtlCopyMemory(
  782. Context->SessionKey.keyvalue.value,
  783. LsaContext->SessionKey.keyvalue.value,
  784. LsaContext->SessionKey.keyvalue.length
  785. );
  787. }
  789. Status = KerbInsertContext(
  790. Context
  791. );
  792. if (!NT_SUCCESS(Status))
  793. {
  794. DebugLog((DEB_ERROR,"Failed to insert context: 0x%x\n",Status));
  795. goto Cleanup;
  796. }
  799. *NewContext = Context;
  801. Cleanup:
  802. if (!NT_SUCCESS(Status))
  803. {
  804. if (Context != NULL)
  805. {
  806. KerbFreeContext(Context);
  807. }
  808. }
  809. return(Status);
  811. }
  812. #endif