2 * PROJECT: Local Security Authority Server DLL
3 * LICENSE: GPL - See COPYING in the top level directory
4 * FILE: dll/win32/lsasrv/authpackage.c
5 * PURPOSE: Authenticaton package management routines
6 * COPYRIGHT: Copyright 2013 Eric Kohl
11 typedef enum _LSA_TOKEN_INFORMATION_TYPE
13 LsaTokenInformationNull
,
15 } LSA_TOKEN_INFORMATION_TYPE
, *PLSA_TOKEN_INFORMATION_TYPE
;
17 typedef struct _LSA_TOKEN_INFORMATION_V1
19 LARGE_INTEGER ExpirationTime
;
22 TOKEN_PRIMARY_GROUP PrimaryGroup
;
23 PTOKEN_PRIVILEGES Privileges
;
25 TOKEN_DEFAULT_DACL DefaultDacl
;
26 } LSA_TOKEN_INFORMATION_V1
, *PLSA_TOKEN_INFORMATION_V1
;
28 typedef PVOID PLSA_CLIENT_REQUEST
;
30 typedef NTSTATUS (NTAPI
*PLSA_CREATE_LOGON_SESSION
)(PLUID
);
31 typedef NTSTATUS (NTAPI
*PLSA_DELETE_LOGON_SESSION
)(PLUID
);
33 typedef PVOID (NTAPI
*PLSA_ALLOCATE_LSA_HEAP
)(ULONG
);
34 typedef VOID (NTAPI
*PLSA_FREE_LSA_HEAP
)(PVOID
);
35 typedef NTSTATUS (NTAPI
*PLSA_ALLOCATE_CLIENT_BUFFER
)(PLSA_CLIENT_REQUEST
, ULONG
, PVOID
*);
36 typedef NTSTATUS (NTAPI
*PLSA_FREE_CLIENT_BUFFER
)(PLSA_CLIENT_REQUEST
, PVOID
);
37 typedef NTSTATUS (NTAPI
*PLSA_COPY_TO_CLIENT_BUFFER
)(PLSA_CLIENT_REQUEST
, ULONG
,
39 typedef NTSTATUS (NTAPI
*PLSA_COPY_FROM_CLIENT_BUFFER
)(PLSA_CLIENT_REQUEST
,
42 typedef struct LSA_DISPATCH_TABLE
44 PLSA_CREATE_LOGON_SESSION CreateLogonSession
;
45 PLSA_DELETE_LOGON_SESSION DeleteLogonSession
;
46 PVOID
/*PLSA_ADD_CREDENTIAL */ AddCredential
;
47 PVOID
/*PLSA_GET_CREDENTIALS */ GetCredentials
;
48 PVOID
/*PLSA_DELETE_CREDENTIAL */ DeleteCredential
;
49 PLSA_ALLOCATE_LSA_HEAP AllocateLsaHeap
;
50 PLSA_FREE_LSA_HEAP FreeLsaHeap
;
51 PLSA_ALLOCATE_CLIENT_BUFFER AllocateClientBuffer
;
52 PLSA_FREE_CLIENT_BUFFER FreeClientBuffer
;
53 PLSA_COPY_TO_CLIENT_BUFFER CopyToClientBuffer
;
54 PLSA_COPY_FROM_CLIENT_BUFFER CopyFromClientBuffer
;
55 } LSA_DISPATCH_TABLE
, *PLSA_DISPATCH_TABLE
;
58 typedef NTSTATUS (NTAPI
*PLSA_AP_INITIALIZE_PACKAGE
)(ULONG
, PLSA_DISPATCH_TABLE
,
59 PLSA_STRING
, PLSA_STRING
, PLSA_STRING
*);
60 typedef NTSTATUS (NTAPI
*PLSA_AP_CALL_PACKAGE_INTERNAL
)(PLSA_CLIENT_REQUEST
, PVOID
, PVOID
,
61 ULONG
, PVOID
*, PULONG
, PNTSTATUS
);
62 typedef NTSTATUS (NTAPI
*PLSA_AP_CALL_PACKAGE_PASSTHROUGH
)(PLSA_CLIENT_REQUEST
,
63 PVOID
, PVOID
, ULONG
, PVOID
*, PULONG
, PNTSTATUS
);
64 typedef NTSTATUS (NTAPI
*PLSA_AP_CALL_PACKAGE_UNTRUSTED
)(PLSA_CLIENT_REQUEST
,
65 PVOID
, PVOID
, ULONG
, PVOID
*, PULONG
, PNTSTATUS
);
66 typedef VOID (NTAPI
*PLSA_AP_LOGON_TERMINATED
)(PLUID
);
67 typedef NTSTATUS (NTAPI
*PLSA_AP_LOGON_USER_EX2
)(PLSA_CLIENT_REQUEST
,
68 SECURITY_LOGON_TYPE
, PVOID
, PVOID
, ULONG
, PVOID
*, PULONG
, PLUID
, PNTSTATUS
,
69 PLSA_TOKEN_INFORMATION_TYPE
, PVOID
*, PUNICODE_STRING
*, PUNICODE_STRING
*,
70 PUNICODE_STRING
*, PVOID
/*PSECPKG_PRIMARY_CRED*/, PVOID
/*PSECPKG_SUPPLEMENTAL_CRED_ARRAY **/);
71 typedef NTSTATUS (NTAPI
*PLSA_AP_LOGON_USER_EX
)(PLSA_CLIENT_REQUEST
,
72 SECURITY_LOGON_TYPE
, PVOID
, PVOID
, ULONG
, PVOID
*, PULONG
, PLUID
, PNTSTATUS
,
73 PLSA_TOKEN_INFORMATION_TYPE
, PVOID
*, PUNICODE_STRING
*, PUNICODE_STRING
*,
76 typedef NTSTATUS (NTAPI
*PLSA_AP_LOGON_USER_INTERNAL
)(PLSA_CLIENT_REQUEST
, SECURITY_LOGON_TYPE
,
77 PVOID
, PVOID
, ULONG
, PVOID
*, PULONG
, PLUID
, PNTSTATUS
, PLSA_TOKEN_INFORMATION_TYPE
,
78 PVOID
*, PUNICODE_STRING
*, PUNICODE_STRING
*);
80 typedef struct _AUTH_PACKAGE
87 PLSA_AP_INITIALIZE_PACKAGE LsaApInitializePackage
;
88 PLSA_AP_CALL_PACKAGE_INTERNAL LsaApCallPackage
;
89 PLSA_AP_CALL_PACKAGE_PASSTHROUGH LsaApCallPackagePassthrough
;
90 PLSA_AP_CALL_PACKAGE_UNTRUSTED LsaApCallPackageUntrusted
;
91 PLSA_AP_LOGON_TERMINATED LsaApLogonTerminated
;
92 PLSA_AP_LOGON_USER_EX2 LsaApLogonUserEx2
;
93 PLSA_AP_LOGON_USER_EX LsaApLogonUserEx
;
94 PLSA_AP_LOGON_USER_INTERNAL LsaApLogonUser
;
95 } AUTH_PACKAGE
, *PAUTH_PACKAGE
;
98 /* GLOBALS *****************************************************************/
100 static LIST_ENTRY PackageListHead
;
101 static ULONG PackageId
;
102 static LSA_DISPATCH_TABLE DispatchTable
;
105 /* FUNCTIONS ***************************************************************/
110 LsapAddAuthPackage(IN PWSTR ValueName
,
113 IN ULONG ValueLength
,
115 IN PVOID EntryContext
)
117 PAUTH_PACKAGE Package
= NULL
;
118 UNICODE_STRING PackageName
;
121 NTSTATUS Status
= STATUS_SUCCESS
;
123 TRACE("LsapAddAuthPackage()\n");
125 PackageName
.Length
= (USHORT
)ValueLength
- sizeof(WCHAR
);
126 PackageName
.MaximumLength
= (USHORT
)ValueLength
;
127 PackageName
.Buffer
= ValueData
;
129 Id
= (PULONG
)Context
;
131 Package
= RtlAllocateHeap(RtlGetProcessHeap(),
133 sizeof(AUTH_PACKAGE
));
135 return STATUS_INSUFFICIENT_RESOURCES
;
137 Status
= LdrLoadDll(NULL
,
140 &Package
->ModuleHandle
);
141 if (!NT_SUCCESS(Status
))
143 TRACE("LdrLoadDll failed (Status 0x%08lx)\n", Status
);
147 RtlInitAnsiString(&ProcName
, "LsaApInitializePackage");
148 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
151 (PVOID
*)&Package
->LsaApInitializePackage
);
152 if (!NT_SUCCESS(Status
))
154 TRACE("LdrGetProcedureAddress() failed (Status 0x%08lx)\n", Status
);
158 RtlInitAnsiString(&ProcName
, "LsaApCallPackage");
159 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
162 (PVOID
*)&Package
->LsaApCallPackage
);
163 if (!NT_SUCCESS(Status
))
165 TRACE("LdrGetProcedureAddress() failed (Status 0x%08lx)\n", Status
);
169 RtlInitAnsiString(&ProcName
, "LsaApCallPackagePassthrough");
170 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
173 (PVOID
*)&Package
->LsaApCallPackagePassthrough
);
174 if (!NT_SUCCESS(Status
))
176 TRACE("LdrGetProcedureAddress() failed (Status 0x%08lx)\n", Status
);
180 RtlInitAnsiString(&ProcName
, "LsaApCallPackageUntrusted");
181 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
184 (PVOID
*)&Package
->LsaApCallPackageUntrusted
);
185 if (!NT_SUCCESS(Status
))
187 TRACE("LdrGetProcedureAddress() failed (Status 0x%08lx)\n", Status
);
191 RtlInitAnsiString(&ProcName
, "LsaApLogonTerminated");
192 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
195 (PVOID
*)&Package
->LsaApLogonTerminated
);
196 if (!NT_SUCCESS(Status
))
198 TRACE("LdrGetProcedureAddress() failed (Status 0x%08lx)\n", Status
);
202 RtlInitAnsiString(&ProcName
, "LsaApLogonUserEx2");
203 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
206 (PVOID
*)&Package
->LsaApLogonUserEx2
);
207 if (!NT_SUCCESS(Status
))
209 RtlInitAnsiString(&ProcName
, "LsaApLogonUserEx");
210 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
213 (PVOID
*)&Package
->LsaApLogonUserEx
);
214 if (!NT_SUCCESS(Status
))
216 RtlInitAnsiString(&ProcName
, "LsaApLogonUser");
217 Status
= LdrGetProcedureAddress(Package
->ModuleHandle
,
220 (PVOID
*)&Package
->LsaApLogonUser
);
221 if (!NT_SUCCESS(Status
))
223 TRACE("LdrGetProcedureAddress() failed (Status 0x%08lx)\n", Status
);
229 /* Initialize the current package */
230 Status
= Package
->LsaApInitializePackage(*Id
,
235 if (!NT_SUCCESS(Status
))
237 TRACE("Package->LsaApInitializePackage() failed (Status 0x%08lx)\n", Status
);
241 TRACE("Package Name: %s\n", Package
->Name
->Buffer
);
246 InsertTailList(&PackageListHead
, &Package
->Entry
);
249 if (!NT_SUCCESS(Status
))
253 if (Package
->ModuleHandle
!= NULL
)
254 LdrUnloadDll(Package
->ModuleHandle
);
256 if (Package
->Name
!= NULL
)
258 if (Package
->Name
->Buffer
!= NULL
)
259 RtlFreeHeap(RtlGetProcessHeap(), 0, Package
->Name
->Buffer
);
261 RtlFreeHeap(RtlGetProcessHeap(), 0, Package
->Name
);
264 RtlFreeHeap(RtlGetProcessHeap(), 0, Package
);
274 LsapGetAuthenticationPackage(IN ULONG PackageId
)
276 PLIST_ENTRY ListEntry
;
277 PAUTH_PACKAGE Package
;
279 ListEntry
= PackageListHead
.Flink
;
280 while (ListEntry
!= &PackageListHead
)
282 Package
= CONTAINING_RECORD(ListEntry
, AUTH_PACKAGE
, Entry
);
284 if (Package
->Id
== PackageId
)
289 ListEntry
= ListEntry
->Flink
;
299 LsapAllocateHeap(IN ULONG Length
)
301 return RtlAllocateHeap(RtlGetProcessHeap(),
310 LsapFreeHeap(IN PVOID Base
)
312 RtlFreeHeap(RtlGetProcessHeap(),
321 LsapAllocateClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest
,
322 IN ULONG LengthRequired
,
323 OUT PVOID
*ClientBaseAddress
)
325 PLSAP_LOGON_CONTEXT LogonContext
;
328 *ClientBaseAddress
= NULL
;
330 LogonContext
= (PLSAP_LOGON_CONTEXT
)ClientRequest
;
332 Length
= LengthRequired
;
333 return NtAllocateVirtualMemory(LogonContext
->ClientProcessHandle
,
345 LsapFreeClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest
,
346 IN PVOID ClientBaseAddress
)
348 PLSAP_LOGON_CONTEXT LogonContext
;
351 if (ClientBaseAddress
== NULL
)
352 return STATUS_SUCCESS
;
354 LogonContext
= (PLSAP_LOGON_CONTEXT
)ClientRequest
;
357 return NtFreeVirtualMemory(LogonContext
->ClientProcessHandle
,
367 LsapCopyToClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest
,
369 IN PVOID ClientBaseAddress
,
370 IN PVOID BufferToCopy
)
372 PLSAP_LOGON_CONTEXT LogonContext
;
374 LogonContext
= (PLSAP_LOGON_CONTEXT
)ClientRequest
;
376 return NtWriteVirtualMemory(LogonContext
->ClientProcessHandle
,
387 LsapCopyFromClientBuffer(IN PLSA_CLIENT_REQUEST ClientRequest
,
389 IN PVOID BufferToCopy
,
390 IN PVOID ClientBaseAddress
)
392 PLSAP_LOGON_CONTEXT LogonContext
;
394 LogonContext
= (PLSAP_LOGON_CONTEXT
)ClientRequest
;
396 return NtReadVirtualMemory(LogonContext
->ClientProcessHandle
,
405 LsapInitAuthPackages(VOID
)
407 RTL_QUERY_REGISTRY_TABLE AuthPackageTable
[] = {
408 {LsapAddAuthPackage
, 0, L
"Authentication Packages", NULL
, REG_NONE
, NULL
, 0},
409 {NULL
, 0, NULL
, NULL
, REG_NONE
, NULL
, 0}};
413 InitializeListHead(&PackageListHead
);
416 /* Initialize the dispatch table */
417 DispatchTable
.CreateLogonSession
= &LsapCreateLogonSession
;
418 DispatchTable
.DeleteLogonSession
= &LsapDeleteLogonSession
;
419 DispatchTable
.AddCredential
= NULL
;
420 DispatchTable
.GetCredentials
= NULL
;
421 DispatchTable
.DeleteCredential
= NULL
;
422 DispatchTable
.AllocateLsaHeap
= &LsapAllocateHeap
;
423 DispatchTable
.FreeLsaHeap
= &LsapFreeHeap
;
424 DispatchTable
.AllocateClientBuffer
= &LsapAllocateClientBuffer
;
425 DispatchTable
.FreeClientBuffer
= &LsapFreeClientBuffer
;
426 DispatchTable
.CopyToClientBuffer
= &LsapCopyToClientBuffer
;
427 DispatchTable
.CopyFromClientBuffer
= &LsapCopyFromClientBuffer
;
429 /* Add registered authentication packages */
430 Status
= RtlQueryRegistryValues(RTL_REGISTRY_CONTROL
,
441 LsapLookupAuthenticationPackage(PLSA_API_MSG RequestMsg
,
442 PLSAP_LOGON_CONTEXT LogonContext
)
444 PLIST_ENTRY ListEntry
;
445 PAUTH_PACKAGE Package
;
446 ULONG PackageNameLength
;
449 TRACE("(%p %p)\n", RequestMsg
, LogonContext
);
451 PackageNameLength
= RequestMsg
->LookupAuthenticationPackage
.Request
.PackageNameLength
;
452 PackageName
= RequestMsg
->LookupAuthenticationPackage
.Request
.PackageName
;
454 TRACE("PackageName: %s\n", PackageName
);
456 ListEntry
= PackageListHead
.Flink
;
457 while (ListEntry
!= &PackageListHead
)
459 Package
= CONTAINING_RECORD(ListEntry
, AUTH_PACKAGE
, Entry
);
461 if ((PackageNameLength
== Package
->Name
->Length
) &&
462 (_strnicmp(PackageName
, Package
->Name
->Buffer
, Package
->Name
->Length
) == 0))
464 RequestMsg
->LookupAuthenticationPackage
.Reply
.Package
= Package
->Id
;
465 return STATUS_SUCCESS
;
468 ListEntry
= ListEntry
->Flink
;
471 return STATUS_NO_SUCH_PACKAGE
;
476 LsapCallAuthenticationPackage(PLSA_API_MSG RequestMsg
,
477 PLSAP_LOGON_CONTEXT LogonContext
)
479 PAUTH_PACKAGE Package
;
480 PVOID LocalBuffer
= NULL
;
484 TRACE("(%p %p)\n", RequestMsg
, LogonContext
);
486 PackageId
= RequestMsg
->CallAuthenticationPackage
.Request
.AuthenticationPackage
;
488 /* Get the right authentication package */
489 Package
= LsapGetAuthenticationPackage(PackageId
);
492 TRACE("LsapGetAuthenticationPackage() failed to find a package\n");
493 return STATUS_NO_SUCH_PACKAGE
;
496 if (RequestMsg
->CallAuthenticationPackage
.Request
.SubmitBufferLength
> 0)
498 LocalBuffer
= RtlAllocateHeap(RtlGetProcessHeap(),
500 RequestMsg
->CallAuthenticationPackage
.Request
.SubmitBufferLength
);
501 if (LocalBuffer
== NULL
)
503 return STATUS_INSUFFICIENT_RESOURCES
;
506 Status
= NtReadVirtualMemory(LogonContext
->ClientProcessHandle
,
507 RequestMsg
->CallAuthenticationPackage
.Request
.ProtocolSubmitBuffer
,
509 RequestMsg
->CallAuthenticationPackage
.Request
.SubmitBufferLength
,
511 if (!NT_SUCCESS(Status
))
513 TRACE("NtReadVirtualMemory() failed (Status 0x%08lx)\n", Status
);
514 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalBuffer
);
519 Status
= Package
->LsaApCallPackage((PLSA_CLIENT_REQUEST
)LogonContext
,
521 RequestMsg
->CallAuthenticationPackage
.Request
.ProtocolSubmitBuffer
,
522 RequestMsg
->CallAuthenticationPackage
.Request
.SubmitBufferLength
,
523 &RequestMsg
->CallAuthenticationPackage
.Reply
.ProtocolReturnBuffer
,
524 &RequestMsg
->CallAuthenticationPackage
.Reply
.ReturnBufferLength
,
525 &RequestMsg
->CallAuthenticationPackage
.Reply
.ProtocolStatus
);
526 if (!NT_SUCCESS(Status
))
528 TRACE("Package->LsaApCallPackage() failed (Status 0x%08lx)\n", Status
);
531 if (LocalBuffer
!= NULL
)
532 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalBuffer
);
541 IN PLSAP_LOGON_CONTEXT LogonContext
,
542 IN PTOKEN_GROUPS ClientGroups
,
543 IN ULONG ClientGroupsCount
,
544 OUT PTOKEN_GROUPS
*TokenGroups
)
546 ULONG LocalGroupsLength
= 0;
547 PTOKEN_GROUPS LocalGroups
= NULL
;
548 ULONG SidHeaderLength
= 0;
549 PSID SidHeader
= NULL
;
552 ULONG AllocatedSids
= 0;
556 LocalGroupsLength
= sizeof(TOKEN_GROUPS
) +
557 (ClientGroupsCount
- ANYSIZE_ARRAY
) * sizeof(SID_AND_ATTRIBUTES
);
558 LocalGroups
= RtlAllocateHeap(RtlGetProcessHeap(),
561 if (LocalGroups
== NULL
)
563 TRACE("RtlAllocateHeap() failed\n");
564 return STATUS_INSUFFICIENT_RESOURCES
;
567 Status
= NtReadVirtualMemory(LogonContext
->ClientProcessHandle
,
572 if (!NT_SUCCESS(Status
))
576 SidHeaderLength
= RtlLengthRequiredSid(0);
577 SidHeader
= RtlAllocateHeap(RtlGetProcessHeap(),
580 if (SidHeader
== NULL
)
582 Status
= STATUS_INSUFFICIENT_RESOURCES
;
586 for (i
= 0; i
< ClientGroupsCount
; i
++)
588 SrcSid
= LocalGroups
->Groups
[i
].Sid
;
590 Status
= NtReadVirtualMemory(LogonContext
->ClientProcessHandle
,
595 if (!NT_SUCCESS(Status
))
598 SidLength
= RtlLengthSid(SidHeader
);
599 TRACE("Sid %lu: Length %lu\n", i
, SidLength
);
601 DstSid
= RtlAllocateHeap(RtlGetProcessHeap(),
606 Status
= STATUS_INSUFFICIENT_RESOURCES
;
610 Status
= NtReadVirtualMemory(LogonContext
->ClientProcessHandle
,
615 if (!NT_SUCCESS(Status
))
617 RtlFreeHeap(RtlGetProcessHeap(), 0, DstSid
);
621 LocalGroups
->Groups
[i
].Sid
= DstSid
;
625 *TokenGroups
= LocalGroups
;
628 if (SidHeader
!= NULL
)
629 RtlFreeHeap(RtlGetProcessHeap(), 0, SidHeader
);
631 if (!NT_SUCCESS(Status
))
633 if (LocalGroups
!= NULL
)
635 for (i
= 0; i
< AllocatedSids
; i
++)
636 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalGroups
->Groups
[i
].Sid
);
638 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalGroups
);
649 IN PVOID TokenInformation
,
650 IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType
)
652 PLSA_TOKEN_INFORMATION_V1 TokenInfo1
;
653 PSID OwnerSid
= NULL
;
656 if (TokenInformationType
== LsaTokenInformationV1
)
658 TokenInfo1
= (PLSA_TOKEN_INFORMATION_V1
)TokenInformation
;
660 if (TokenInfo1
->Owner
.Owner
!= NULL
)
661 return STATUS_SUCCESS
;
663 OwnerSid
= TokenInfo1
->User
.User
.Sid
;
664 for (i
= 0; i
< TokenInfo1
->Groups
->GroupCount
; i
++)
666 if (EqualSid(TokenInfo1
->Groups
->Groups
[i
].Sid
, LsapAdministratorsSid
))
668 OwnerSid
= LsapAdministratorsSid
;
673 Length
= RtlLengthSid(OwnerSid
);
674 TokenInfo1
->Owner
.Owner
= DispatchTable
.AllocateLsaHeap(Length
);
675 if (TokenInfo1
->Owner
.Owner
== NULL
)
676 return STATUS_INSUFFICIENT_RESOURCES
;
678 RtlCopyMemory(TokenInfo1
->Owner
.Owner
,
683 return STATUS_SUCCESS
;
689 LsapAddTokenDefaultDacl(
690 IN PVOID TokenInformation
,
691 IN LSA_TOKEN_INFORMATION_TYPE TokenInformationType
)
693 PLSA_TOKEN_INFORMATION_V1 TokenInfo1
;
697 if (TokenInformationType
== LsaTokenInformationV1
)
699 TokenInfo1
= (PLSA_TOKEN_INFORMATION_V1
)TokenInformation
;
701 if (TokenInfo1
->DefaultDacl
.DefaultDacl
!= NULL
)
702 return STATUS_SUCCESS
;
704 Length
= sizeof(ACL
) +
705 (2 * sizeof(ACCESS_ALLOWED_ACE
)) +
706 RtlLengthSid(TokenInfo1
->Owner
.Owner
) +
707 RtlLengthSid(LsapLocalSystemSid
);
709 Dacl
= DispatchTable
.AllocateLsaHeap(Length
);
711 return STATUS_INSUFFICIENT_RESOURCES
;
713 RtlCreateAcl(Dacl
, Length
, ACL_REVISION
);
715 RtlAddAccessAllowedAce(Dacl
,
718 TokenInfo1
->Owner
.Owner
);
721 RtlAddAccessAllowedAce(Dacl
,
726 TokenInfo1
->DefaultDacl
.DefaultDacl
= Dacl
;
729 return STATUS_SUCCESS
;
734 LsapLogonUser(PLSA_API_MSG RequestMsg
,
735 PLSAP_LOGON_CONTEXT LogonContext
)
737 PAUTH_PACKAGE Package
;
738 OBJECT_ATTRIBUTES ObjectAttributes
;
739 SECURITY_QUALITY_OF_SERVICE Qos
;
740 LSA_TOKEN_INFORMATION_TYPE TokenInformationType
;
741 PVOID TokenInformation
= NULL
;
742 PLSA_TOKEN_INFORMATION_V1 TokenInfo1
= NULL
;
743 PUNICODE_STRING AccountName
= NULL
;
744 PUNICODE_STRING AuthenticatingAuthority
= NULL
;
745 PUNICODE_STRING MachineName
= NULL
;
746 PVOID LocalAuthInfo
= NULL
;
747 PTOKEN_GROUPS LocalGroups
= NULL
;
748 HANDLE TokenHandle
= NULL
;
753 TRACE("(%p %p)\n", RequestMsg
, LogonContext
);
755 PackageId
= RequestMsg
->LogonUser
.Request
.AuthenticationPackage
;
757 /* Get the right authentication package */
758 Package
= LsapGetAuthenticationPackage(PackageId
);
761 ERR("LsapGetAuthenticationPackage() failed to find a package\n");
762 return STATUS_NO_SUCH_PACKAGE
;
765 if (RequestMsg
->LogonUser
.Request
.AuthenticationInformationLength
> 0)
767 /* Allocate the local authentication info buffer */
768 LocalAuthInfo
= RtlAllocateHeap(RtlGetProcessHeap(),
770 RequestMsg
->LogonUser
.Request
.AuthenticationInformationLength
);
771 if (LocalAuthInfo
== NULL
)
773 ERR("RtlAllocateHeap() failed\n");
774 return STATUS_INSUFFICIENT_RESOURCES
;
777 /* Read the authentication info from the callers adress space */
778 Status
= NtReadVirtualMemory(LogonContext
->ClientProcessHandle
,
779 RequestMsg
->LogonUser
.Request
.AuthenticationInformation
,
781 RequestMsg
->LogonUser
.Request
.AuthenticationInformationLength
,
783 if (!NT_SUCCESS(Status
))
785 ERR("NtReadVirtualMemory() failed (Status 0x%08lx)\n", Status
);
786 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalAuthInfo
);
791 if (RequestMsg
->LogonUser
.Request
.LocalGroupsCount
> 0)
793 Status
= LsapCopyLocalGroups(LogonContext
,
794 RequestMsg
->LogonUser
.Request
.LocalGroups
,
795 RequestMsg
->LogonUser
.Request
.LocalGroupsCount
,
797 if (!NT_SUCCESS(Status
))
799 ERR("LsapCopyLocalGroups failed (Status 0x%08lx)\n", Status
);
803 TRACE("GroupCount: %lu\n", LocalGroups
->GroupCount
);
806 if (Package
->LsaApLogonUserEx2
!= NULL
)
808 Status
= Package
->LsaApLogonUserEx2((PLSA_CLIENT_REQUEST
)LogonContext
,
809 RequestMsg
->LogonUser
.Request
.LogonType
,
811 RequestMsg
->LogonUser
.Request
.AuthenticationInformation
,
812 RequestMsg
->LogonUser
.Request
.AuthenticationInformationLength
,
813 &RequestMsg
->LogonUser
.Reply
.ProfileBuffer
,
814 &RequestMsg
->LogonUser
.Reply
.ProfileBufferLength
,
815 &RequestMsg
->LogonUser
.Reply
.LogonId
,
816 &RequestMsg
->LogonUser
.Reply
.SubStatus
,
817 &TokenInformationType
,
820 &AuthenticatingAuthority
,
822 NULL
, /* FIXME: PSECPKG_PRIMARY_CRED PrimaryCredentials */
823 NULL
); /* FIXME: PSECPKG_SUPPLEMENTAL_CRED_ARRAY *SupplementalCredentials */
825 else if (Package
->LsaApLogonUserEx
!= NULL
)
827 Status
= Package
->LsaApLogonUserEx((PLSA_CLIENT_REQUEST
)LogonContext
,
828 RequestMsg
->LogonUser
.Request
.LogonType
,
830 RequestMsg
->LogonUser
.Request
.AuthenticationInformation
,
831 RequestMsg
->LogonUser
.Request
.AuthenticationInformationLength
,
832 &RequestMsg
->LogonUser
.Reply
.ProfileBuffer
,
833 &RequestMsg
->LogonUser
.Reply
.ProfileBufferLength
,
834 &RequestMsg
->LogonUser
.Reply
.LogonId
,
835 &RequestMsg
->LogonUser
.Reply
.SubStatus
,
836 &TokenInformationType
,
839 &AuthenticatingAuthority
,
844 Status
= Package
->LsaApLogonUser((PLSA_CLIENT_REQUEST
)LogonContext
,
845 RequestMsg
->LogonUser
.Request
.LogonType
,
847 RequestMsg
->LogonUser
.Request
.AuthenticationInformation
,
848 RequestMsg
->LogonUser
.Request
.AuthenticationInformationLength
,
849 &RequestMsg
->LogonUser
.Reply
.ProfileBuffer
,
850 &RequestMsg
->LogonUser
.Reply
.ProfileBufferLength
,
851 &RequestMsg
->LogonUser
.Reply
.LogonId
,
852 &RequestMsg
->LogonUser
.Reply
.SubStatus
,
853 &TokenInformationType
,
856 &AuthenticatingAuthority
);
859 if (!NT_SUCCESS(Status
))
861 ERR("LsaApLogonUser/Ex/2 failed (Status 0x%08lx)\n", Status
);
865 Status
= LsapSetTokenOwner(TokenInformation
,
866 TokenInformationType
);
867 if (!NT_SUCCESS(Status
))
869 ERR("LsapSetTokenOwner() failed (Status 0x%08lx)\n", Status
);
873 Status
= LsapAddTokenDefaultDacl(TokenInformation
,
874 TokenInformationType
);
875 if (!NT_SUCCESS(Status
))
877 ERR("LsapAddTokenDefaultDacl() failed (Status 0x%08lx)\n", Status
);
881 if (TokenInformationType
== LsaTokenInformationV1
)
883 TokenInfo1
= (PLSA_TOKEN_INFORMATION_V1
)TokenInformation
;
885 Qos
.Length
= sizeof(SECURITY_QUALITY_OF_SERVICE
);
886 Qos
.ImpersonationLevel
= SecurityImpersonation
;
887 Qos
.ContextTrackingMode
= SECURITY_DYNAMIC_TRACKING
;
888 Qos
.EffectiveOnly
= FALSE
;
890 ObjectAttributes
.Length
= sizeof(OBJECT_ATTRIBUTES
);
891 ObjectAttributes
.RootDirectory
= NULL
;
892 ObjectAttributes
.ObjectName
= NULL
;
893 ObjectAttributes
.Attributes
= 0;
894 ObjectAttributes
.SecurityDescriptor
= NULL
;
895 ObjectAttributes
.SecurityQualityOfService
= &Qos
;
897 /* Create the logon token */
898 Status
= NtCreateToken(&TokenHandle
,
902 &RequestMsg
->LogonUser
.Reply
.LogonId
,
903 &TokenInfo1
->ExpirationTime
,
906 TokenInfo1
->Privileges
,
908 &TokenInfo1
->PrimaryGroup
,
909 &TokenInfo1
->DefaultDacl
,
910 &RequestMsg
->LogonUser
.Request
.SourceContext
);
911 if (!NT_SUCCESS(Status
))
913 ERR("NtCreateToken failed (Status 0x%08lx)\n", Status
);
919 FIXME("TokenInformationType %d is not supported!\n", TokenInformationType
);
920 Status
= STATUS_NOT_IMPLEMENTED
;
924 /* Duplicate the token handle into the client process */
925 Status
= NtDuplicateObject(NtCurrentProcess(),
927 LogonContext
->ClientProcessHandle
,
928 &RequestMsg
->LogonUser
.Reply
.Token
,
931 DUPLICATE_SAME_ACCESS
| DUPLICATE_SAME_ATTRIBUTES
| DUPLICATE_CLOSE_SOURCE
);
932 if (!NT_SUCCESS(Status
))
934 ERR("NtDuplicateObject failed (Status 0x%08lx)\n", Status
);
940 Status
= LsapSetLogonSessionData(&RequestMsg
->LogonUser
.Reply
.LogonId
);
941 if (!NT_SUCCESS(Status
))
943 ERR("LsapSetLogonSessionData failed (Status 0x%08lx)\n", Status
);
948 if (!NT_SUCCESS(Status
))
950 if (TokenHandle
!= NULL
)
951 NtClose(TokenHandle
);
954 /* Free the local groups */
955 if (LocalGroups
!= NULL
)
957 for (i
= 0; i
< LocalGroups
->GroupCount
; i
++)
959 if (LocalGroups
->Groups
[i
].Sid
!= NULL
)
960 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalGroups
->Groups
[i
].Sid
);
963 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalGroups
);
966 /* Free the local authentication info buffer */
967 if (LocalAuthInfo
!= NULL
)
968 RtlFreeHeap(RtlGetProcessHeap(), 0, LocalAuthInfo
);
970 /* Free the token information */
971 if (TokenInformation
!= NULL
)
973 if (TokenInformationType
== LsaTokenInformationV1
)
975 TokenInfo1
= (PLSA_TOKEN_INFORMATION_V1
)TokenInformation
;
977 if (TokenInfo1
!= NULL
)
979 if (TokenInfo1
->User
.User
.Sid
!= NULL
)
980 LsapFreeHeap(TokenInfo1
->User
.User
.Sid
);
982 if (TokenInfo1
->Groups
!= NULL
)
984 for (i
= 0; i
< TokenInfo1
->Groups
->GroupCount
; i
++)
986 if (TokenInfo1
->Groups
->Groups
[i
].Sid
!= NULL
)
987 LsapFreeHeap(TokenInfo1
->Groups
->Groups
[i
].Sid
);
990 LsapFreeHeap(TokenInfo1
->Groups
);
993 if (TokenInfo1
->PrimaryGroup
.PrimaryGroup
!= NULL
)
994 LsapFreeHeap(TokenInfo1
->PrimaryGroup
.PrimaryGroup
);
996 if (TokenInfo1
->Privileges
!= NULL
)
997 LsapFreeHeap(TokenInfo1
->Privileges
);
999 if (TokenInfo1
->Owner
.Owner
!= NULL
)
1000 LsapFreeHeap(TokenInfo1
->Owner
.Owner
);
1002 if (TokenInfo1
->DefaultDacl
.DefaultDacl
!= NULL
)
1003 LsapFreeHeap(TokenInfo1
->DefaultDacl
.DefaultDacl
);
1005 LsapFreeHeap(TokenInfo1
);
1010 FIXME("TokenInformationType %d is not supported!\n", TokenInformationType
);
1014 /* Free the account name */
1015 if (AccountName
!= NULL
)
1017 if (AccountName
->Buffer
!= NULL
)
1018 LsapFreeHeap(AccountName
->Buffer
);
1020 LsapFreeHeap(AccountName
);
1023 /* Free the authentication authority */
1024 if (AuthenticatingAuthority
!= NULL
)
1026 if (AuthenticatingAuthority
!= NULL
)
1027 LsapFreeHeap(AuthenticatingAuthority
->Buffer
);
1029 LsapFreeHeap(AuthenticatingAuthority
);
1032 /* Free the machine name */
1033 if (MachineName
!= NULL
)
1035 if (MachineName
->Buffer
!= NULL
)
1036 LsapFreeHeap(MachineName
->Buffer
);
1038 LsapFreeHeap(MachineName
);
1041 TRACE("LsapLogonUser done (Status 0x%08lx)\n", Status
);