archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/winsafer/saferp.h

574 lines
16 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1997-2000 Microsoft Corporation
  5. Module Name:
  7. saferp.h
  9. Abstract:
  11. This file implements the private (internal) functions, data types,
  12. data structures, and definitions used by the other WinSAFER
  13. code implementations. All of the APIs listed in this header are
  14. not exported by ADVAPI32.DLL at all and are only callable by
  15. other code actually located within advapi.
  17. Author:
  19. Jeffrey Lawson (JLawson)
  21. Revision History:
  23. --*/
  25. #ifndef _AUTHZSAFERP_H_
  26. #define _AUTHZSAFERP_H_
  28. #include "safewild.h"
  31. #ifdef __cplusplus
  32. extern "C" {
  33. #endif
  35. // ---------------------------------------------------------
  38. //
  39. // Convenient macro for determining the number of elements in an array.
  40. //
  41. #ifndef ARRAYSIZE
  42. #define ARRAYSIZE(a) (sizeof(a)/sizeof(a[0]))
  43. #endif
  46. //
  47. // Simple inlined function to return true if a GUID is all zeros.
  48. //
  49. FORCEINLINE BOOLEAN IsZeroGUID(REFGUID rguid1)
  50. {
  51. return (
  52. ((unsigned long *) rguid1)[0] == 0 &&
  53. ((unsigned long *) rguid1)[1] == 0 &&
  54. ((unsigned long *) rguid1)[2] == 0 &&
  55. ((unsigned long *) rguid1)[3] == 0);
  56. }
  60. //
  61. // Private structure used to store a table of all of the defined
  62. // WinSafer Levels as we enumerate them to evaluate the matching one.
  63. //
  64. typedef struct _AUTHZLEVELTABLERECORD
  65. {
  66. // The user-defined integer value that controls the relative ranking
  67. // of authorization level between Code Authorization Level.
  68. DWORD dwLevelId;
  70. // Boolean indicating whether this level is a "built-in" one.
  71. BOOLEAN Builtin;
  73. // Boolean indicating whether this level is enumerable
  74. BOOLEAN isEnumerable;
  76. // The short friendly name and the description.
  77. UNICODE_STRING UnicodeFriendlyName;
  78. UNICODE_STRING UnicodeDescription;
  80. // All of the following attributes are needed for
  81. // actual creation of the restricted token.
  82. BOOL DisallowExecution; // block execution entirely
  83. BOOL DisableMaxPrivileges; // privilege options
  84. PSID DefaultOwner; // default owner SID
  85. DWORD SaferFlags; // special job execution flags
  87. BOOL InvertDisableSids; // SIDs specified are negative
  88. DWORD DisableSidCount; // number of deny-only SIDs
  89. DWORD DisableSidUsedCount; // number actually used
  90. PAUTHZ_WILDCARDSID SidsToDisable; // deny-only SIDs
  92. BOOL InvertDeletePrivs; // privileges specified are negative
  93. DWORD DeletePrivilegeCount; // number of privileges
  94. DWORD DeletePrivilegeUsedCount; // number actually used
  95. PLUID_AND_ATTRIBUTES PrivilegesToDelete; // privileges
  97. DWORD RestrictedSidsInvCount; // number of inverted restricting SIDs
  98. DWORD RestrictedSidsInvUsedCount; // number actually used
  99. PAUTHZ_WILDCARDSID RestrictedSidsInv; // list of inverted restricting SIDs
  101. DWORD RestrictedSidsAddedCount; // number of restricting SIDs
  102. DWORD RestrictedSidsAddedUsedCount; // number actually used
  103. PSID_AND_ATTRIBUTES RestrictedSidsAdded; // list of restricting SIDs
  105. }
  106. AUTHZLEVELTABLERECORD, *PAUTHZLEVELTABLERECORD;
  109. //
  110. // Private structure to store all code identifications.
  111. //
  112. #pragma warning(push)
  113. #pragma warning(disable:4201) // nonstandard extension used : nameless struct/union
  115. typedef struct _AUTHZIDENTSTABLERECORD
  116. {
  117. // unique identifier that distinguishes this code identity.
  118. GUID IdentGuid;
  120. // the following enumeration specifies what type of
  121. // code identity this record represents.
  122. SAFER_IDENTIFICATION_TYPES dwIdentityType;
  124. // Specifies what Level this Code Identification maps to.
  125. DWORD dwLevelId;
  127. // Specifies what scope this Code Identity was loaded from.
  128. DWORD dwScopeId;
  130. // Actual details about this identity.
  131. union {
  132. struct {
  133. BOOL bExpandVars;
  134. UNICODE_STRING ImagePath;
  135. DWORD dwSaferFlags;
  136. } ImageNameInfo;
  137. struct {
  138. LARGE_INTEGER ImageSize;
  139. DWORD HashSize;
  140. BYTE ImageHash[SAFER_MAX_HASH_SIZE];
  141. ALG_ID HashAlgorithm;
  142. DWORD dwSaferFlags;
  143. } ImageHashInfo;
  144. struct {
  145. DWORD UrlZoneId;
  146. DWORD dwSaferFlags;
  147. } ImageZone;
  148. };
  149. }
  150. AUTHZIDENTSTABLERECORD, *PAUTHZIDENTSTABLERECORD;
  151. #pragma warning(pop)
  154. //
  155. // Private structure representation of a Level handle. The
  156. // typedef SAFER_LEVEL_HANDLE is an opaque reference to a structure of
  157. // this type, accessed via the RtlHandleTable functions.
  158. //
  159. typedef struct _AUTHZLEVELHANDLESTRUCT_
  160. {
  161. // This first header is required by the RTL_HANDLE_TABLE system.
  162. // All allocated handles will implicitly have bit 0 set. All other
  163. // remaining bits can be used for our own purposes if we want.
  164. RTL_HANDLE_TABLE_ENTRY HandleHeader;
  166. // The following information is redundant. It can be found by
  167. // also accessing the pLevelRecord directly.
  168. DWORD dwLevelId;
  170. // This scope identifier specifies the value that was passed to
  171. // the Win32 API SaferCreateLevel and is really only looked at
  172. // by SaferGetLevelInformation for the Identity GUID enums.
  173. DWORD dwScopeId; // (same as from pIdentRecord)
  175. // Stores the matching identity record that gave this result.
  176. // May be NULL, as in case of direct SaferCreateLevel or a
  177. // default Level match.
  178. GUID identGuid;
  180. // This value stores the Safer Flags that were derived from the
  181. // Identity Entry record when SaferIdentifyLevel finds a match.
  182. DWORD dwSaferFlags;
  184. // The sequence value indicates the "generation" at which a handle
  185. // was originally opened. If this value does not match the current
  186. // value in the global g_dwLevelHandleSequence, then this handle
  187. // should be considered a no-longer valid handle.
  188. DWORD dwHandleSequence;
  190. // Extended error information - applicable for certificate rules.
  191. DWORD dwExtendedError;
  193. // the following enumeration specifies what type of
  194. // code identity this handle represents.
  195. SAFER_IDENTIFICATION_TYPES IdentificationType;
  197. // For future use and padding purposes.
  198. DWORD dwReserved;
  199. }
  200. AUTHZLEVELHANDLESTRUCT, *PAUTHZLEVELHANDLESTRUCT;
  203. //
  204. // Private structure definition used to pass around all state
  205. // information needed during the SaferIdentifyLevel execution.
  206. //
  207. typedef struct _LOCALIDENTITYCONTEXT
  208. {
  209. // Original query request data.
  210. DWORD dwCheckFlags; // copy of original function input
  211. PSAFER_CODE_PROPERTIES CodeProps; // RO: original function input
  213. // Information about the hash that may have been computed.
  214. BOOLEAN bHaveHash;
  215. BYTE FinalHash[SAFER_MAX_HASH_SIZE];
  216. DWORD FinalHashSize;
  217. ALG_ID FinalHashAlgorithm;
  219. // File handle that may have been opened or supplied by the caller.
  220. HANDLE hFileHandle;
  222. // File handle status. If this is TRUE then hFileHandle needs to
  223. // be closed before returning.
  224. BOOLEAN bCloseFileHandle;
  226. // Fully qualified NT filename of the input file.
  227. UNICODE_STRING UnicodeFullyQualfiedLongFileName;
  229. // Information about the image that may have been mapped.
  230. LARGE_INTEGER ImageSize;
  231. PVOID pImageMemory;
  233. // Memory mapped file status. If this is TRUE then
  234. // pImageMemory needs to be unmapped before returning.
  235. BOOLEAN bImageMemoryNeedUnmap;
  236. }
  237. LOCALIDENTITYCONTEXT, *PLOCALIDENTITYCONTEXT;
  242. //
  243. // Various globals that are used for the cache of levels and
  244. // identities so that we do not need to go to the registry each time.
  245. //
  246. extern BOOLEAN g_bInitializedFirstTime;
  248. extern CRITICAL_SECTION g_TableCritSec;
  249. extern HANDLE g_hKeyCustomRoot;
  250. extern DWORD g_dwKeyOptions;
  252. extern BOOLEAN g_bNeedCacheReload;
  254. extern RTL_GENERIC_TABLE g_CodeLevelObjTable;
  255. extern RTL_GENERIC_TABLE g_CodeIdentitiesTable;
  256. extern RTL_HANDLE_TABLE g_LevelHandleTable;
  257. extern DWORD g_dwLevelHandleSequence;
  259. extern BOOLEAN g_bHonorScopeUser;
  261. extern PAUTHZLEVELTABLERECORD g_DefaultCodeLevel;
  262. extern PAUTHZLEVELTABLERECORD g_DefaultCodeLevelUser;
  263. extern PAUTHZLEVELTABLERECORD g_DefaultCodeLevelMachine;
  267. //
  268. // Private function prototypes defined within SAFEINIT.C
  269. //
  271. NTSTATUS NTAPI
  272. CodeAuthzInitializeGlobals(VOID);
  275. VOID NTAPI
  276. CodeAuthzDeinitializeGlobals(VOID);
  279. NTSTATUS NTAPI
  280. CodeAuthzReloadCacheTables(
  281. IN HANDLE hKeyCustomRoot OPTIONAL,
  282. IN DWORD dwKeyOptions,
  283. IN BOOLEAN bImmediateLoad
  284. );
  287. NTSTATUS NTAPI
  288. CodeAuthzpImmediateReloadCacheTables(
  289. VOID
  290. );
  293. NTSTATUS NTAPI
  294. CodeAuthzpDeleteKeyRecursively(
  295. IN HANDLE hBaseKey,
  296. IN PUNICODE_STRING pSubKey OPTIONAL
  297. );
  300. NTSTATUS NTAPI
  301. CodeAuthzpFormatLevelKeyPath(
  302. IN DWORD dwLevelId,
  303. IN OUT PUNICODE_STRING UnicodeSuffix
  304. );
  306. NTSTATUS NTAPI
  307. CodeAuthzpFormatIdentityKeyPath(
  308. IN DWORD dwLevelId,
  309. IN LPCWSTR szIdentityType,
  310. IN REFGUID refIdentGuid,
  311. IN OUT PUNICODE_STRING UnicodeSuffix
  312. );
  314. NTSTATUS NTAPI
  315. CodeAuthzpOpenPolicyRootKey(
  316. IN DWORD dwScopeId,
  317. IN HANDLE hKeyCustomBase OPTIONAL,
  318. IN LPCWSTR szRegistrySuffix OPTIONAL,
  319. IN ACCESS_MASK DesiredAccess,
  320. IN BOOLEAN bCreateKey,
  321. OUT HANDLE *OpenedHandle
  322. );
  324. VOID NTAPI
  325. CodeAuthzpRecomputeEffectiveDefaultLevel(VOID);
  329. //
  330. // Private function prototypes defined within SAFEHAND.C
  331. //
  334. NTSTATUS NTAPI
  335. CodeAuthzpCreateLevelHandleFromRecord(
  336. IN PAUTHZLEVELTABLERECORD pLevelRecord,
  337. IN DWORD dwScopeId,
  338. IN DWORD dwSaferFlags OPTIONAL,
  339. IN DWORD dwExtendedError,
  340. IN SAFER_IDENTIFICATION_TYPES IdentificationType,
  341. IN REFGUID refIdentGuid OPTIONAL,
  342. OUT SAFER_LEVEL_HANDLE *pLevelHandle
  343. );
  345. NTSTATUS NTAPI
  346. CodeAuthzHandleToLevelStruct(
  347. IN SAFER_LEVEL_HANDLE hLevelObject,
  348. OUT PAUTHZLEVELHANDLESTRUCT *pLevelStruct
  349. );
  351. NTSTATUS NTAPI
  352. CodeAuthzCreateLevelHandle(
  353. IN DWORD dwLevelId,
  354. IN DWORD OpenFlags,
  355. IN DWORD dwScopeId,
  356. IN DWORD dwSaferFlags OPTIONAL,
  357. OUT SAFER_LEVEL_HANDLE *pLevelHandle);
  359. NTSTATUS NTAPI
  360. CodeAuthzCloseLevelHandle(
  361. IN SAFER_LEVEL_HANDLE hLevelObject
  362. );
  367. //
  368. // Functions related to WinSafer Level enumeration (SAFEIDEP.C)
  369. //
  371. VOID NTAPI
  372. CodeAuthzLevelObjpInitializeTable(
  373. IN OUT PRTL_GENERIC_TABLE pAuthzObjTable
  374. );
  377. NTSTATUS NTAPI
  378. CodeAuthzLevelObjpLoadTable (
  379. IN OUT PRTL_GENERIC_TABLE pAuthzObjTable,
  380. IN DWORD dwScopeId,
  381. IN HANDLE hKeyCustomRoot
  382. );
  384. VOID NTAPI
  385. CodeAuthzLevelObjpEntireTableFree (
  386. IN OUT PRTL_GENERIC_TABLE pAuthzObjTable
  387. );
  389. PAUTHZLEVELTABLERECORD NTAPI
  390. CodeAuthzLevelObjpLookupByLevelId (
  391. IN PRTL_GENERIC_TABLE pAuthzObjTable,
  392. IN DWORD dwLevelId
  393. );
  397. //
  398. // Functions related to WinSafer Code Identity enumeration. (SAFEIDEP.C)
  399. //
  401. VOID NTAPI
  402. CodeAuthzGuidIdentsInitializeTable(
  403. IN OUT PRTL_GENERIC_TABLE pAuthzObjTable
  404. );
  406. NTSTATUS NTAPI
  407. CodeAuthzGuidIdentsLoadTableAll (
  408. IN PRTL_GENERIC_TABLE pAuthzLevelTable,
  409. IN OUT PRTL_GENERIC_TABLE pAuthzIdentTable,
  410. IN DWORD dwScopeId,
  411. IN HANDLE hKeyCustomBase
  412. );
  414. VOID NTAPI
  415. CodeAuthzGuidIdentsEntireTableFree (
  416. IN OUT PRTL_GENERIC_TABLE pAuthzIdentTable
  417. );
  419. PAUTHZIDENTSTABLERECORD NTAPI
  420. CodeAuthzIdentsLookupByGuid (
  421. IN PRTL_GENERIC_TABLE pAuthzIdentTable,
  422. IN REFGUID pIdentGuid
  423. );
  426. //
  427. // Helper functions that are used during actual identification (SAFEIDEP.C)
  428. //
  430. LONG NTAPI
  431. CodeAuthzpCompareImagePath(
  432. IN LPCWSTR szPathFragment,
  433. IN LPCWSTR szFullImagePath);
  435. NTSTATUS NTAPI
  436. CodeAuthzpComputeImageHash(
  437. IN PVOID pImageMemory,
  438. IN DWORD dwImageSize,
  439. OUT PBYTE pComputedHash OPTIONAL,
  440. IN OUT PDWORD pdwHashSize OPTIONAL,
  441. OUT ALG_ID *pHashAlgorithm OPTIONAL
  442. );
  446. //
  447. // Private function prototypes for low-level policy reading/writing. (SAFEPOLR.C)
  448. //
  450. NTSTATUS NTAPI
  451. CodeAuthzPol_GetInfoCached_LevelListRaw(
  452. IN DWORD dwScopeId,
  453. IN DWORD InfoBufferSize OPTIONAL,
  454. OUT PVOID InfoBuffer OPTIONAL,
  455. OUT PDWORD InfoBufferRetSize OPTIONAL
  456. );
  458. NTSTATUS NTAPI
  459. CodeAuthzPol_GetInfoCached_DefaultLevel(
  460. IN DWORD dwScopeId,
  461. IN DWORD InfoBufferSize OPTIONAL,
  462. OUT PVOID InfoBuffer OPTIONAL,
  463. OUT PDWORD InfoBufferRetSize OPTIONAL
  464. );
  466. NTSTATUS NTAPI
  467. CodeAuthzPol_GetInfoRegistry_DefaultLevel(
  468. IN DWORD dwScopeId,
  469. IN DWORD InfoBufferSize OPTIONAL,
  470. OUT PVOID InfoBuffer OPTIONAL,
  471. OUT PDWORD InfoBufferRetSize OPTIONAL
  472. );
  474. NTSTATUS NTAPI
  475. CodeAuthzPol_SetInfoDual_DefaultLevel(
  476. IN DWORD dwScopeId,
  477. IN DWORD InfoBufferSize,
  478. OUT PVOID InfoBuffer
  479. );
  481. NTSTATUS NTAPI
  482. CodeAuthzPol_GetInfoCached_HonorUserIdentities(
  483. IN DWORD dwScopeId,
  484. IN DWORD InfoBufferSize OPTIONAL,
  485. OUT PVOID InfoBuffer OPTIONAL,
  486. OUT PDWORD InfoBufferRetSize OPTIONAL
  487. );
  489. NTSTATUS NTAPI
  490. CodeAuthzPol_GetInfoRegistry_HonorUserIdentities(
  491. IN DWORD dwScopeId,
  492. IN DWORD InfoBufferSize OPTIONAL,
  493. OUT PVOID InfoBuffer OPTIONAL,
  494. OUT PDWORD InfoBufferRetSize OPTIONAL
  495. );
  497. NTSTATUS NTAPI
  498. CodeAuthzPol_SetInfoDual_HonorUserIdentities(
  499. IN DWORD dwScopeId,
  500. IN DWORD InfoBufferSize,
  501. IN PVOID InfoBuffer
  502. );
  504. NTSTATUS NTAPI
  505. CodeAuthzPol_GetInfoRegistry_TransparentEnabled(
  506. IN DWORD dwScopeId,
  507. IN DWORD InfoBufferSize OPTIONAL,
  508. OUT PVOID InfoBuffer OPTIONAL,
  509. OUT PDWORD InfoBufferRetSize OPTIONAL
  510. );
  512. NTSTATUS NTAPI
  513. CodeAuthzPol_SetInfoRegistry_TransparentEnabled(
  514. IN DWORD dwScopeId,
  515. IN DWORD InfoBufferSize,
  516. IN PVOID InfoBuffer
  517. );
  519. NTSTATUS NTAPI
  520. CodeAuthzPol_GetInfoRegistry_ScopeFlags(
  521. IN DWORD dwScopeId,
  522. IN DWORD InfoBufferSize OPTIONAL,
  523. OUT PVOID InfoBuffer OPTIONAL,
  524. OUT PDWORD InfoBufferRetSize OPTIONAL
  525. );
  527. NTSTATUS NTAPI
  528. CodeAuthzPol_SetInfoRegistry_ScopeFlags(
  529. IN DWORD dwScopeId,
  530. IN DWORD InfoBufferSize,
  531. IN PVOID InfoBuffer
  532. );
  535. //
  536. // Private function prototypes defined elsewhere.
  537. //
  539. LPVOID NTAPI
  540. CodeAuthzpGetTokenInformation(
  541. IN HANDLE TokenHandle,
  542. IN TOKEN_INFORMATION_CLASS TokenInformationClass
  543. );
  545. NTSTATUS NTAPI
  546. CodeAuthzIsExecutableFileType(
  547. IN PUNICODE_STRING szFullPathname,
  548. IN BOOLEAN bFromShellExecute,
  549. OUT PBOOLEAN pbResult
  550. );
  552. NTSTATUS NTAPI
  553. CodeAuthzFullyQualifyFilename(
  554. IN HANDLE hFileHandle OPTIONAL,
  555. IN BOOLEAN bSourceIsNtPath,
  556. IN LPCWSTR szSourceFilePath,
  557. OUT PUNICODE_STRING pUnicodeResult
  558. );
  560. BOOL NTAPI
  561. SaferpLoadUnicodeResourceString(
  562. IN HANDLE hModule,
  563. IN UINT wID,
  564. OUT PUNICODE_STRING pUnicodeString,
  565. IN WORD wLangId
  566. );
  569. #ifdef __cplusplus
  570. }
  571. #endif
  573. #endif