googleprojectzero
diff --git a/‎NtApiDotNet/DisposableList.cs‎
Lines changed: 10 additions & 0 deletions b/‎NtApiDotNet/DisposableList.cs‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎NtApiDotNet/NtApiDotNet.csproj‎
Lines changed: 3 additions & 0 deletions b/‎NtApiDotNet/NtApiDotNet.csproj‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎NtApiDotNet/Utilities/Misc/DetachableContainer.cs‎
Lines changed: 52 additions & 0 deletions b/‎NtApiDotNet/Utilities/Misc/DetachableContainer.cs‎
Lines changed: 52 additions & 0 deletions
diff --git a/‎NtApiDotNet/Utilities/Misc/MiscUtils.cs‎
Lines changed: 35 additions & 0 deletions b/‎NtApiDotNet/Utilities/Misc/MiscUtils.cs‎
Lines changed: 35 additions & 0 deletions
diff --git a/‎NtApiDotNet/Win32/Rpc/Transport/IRpcClientTransport.cs‎
Lines changed: 102 additions & 80 deletions b/‎NtApiDotNet/Win32/Rpc/Transport/IRpcClientTransport.cs‎
Lines changed: 102 additions & 80 deletions
diff --git a/‎NtApiDotNet/Win32/Rpc/Transport/RpcAlpcClientTransport.cs‎
Lines changed: 34 additions & 0 deletions b/‎NtApiDotNet/Win32/Rpc/Transport/RpcAlpcClientTransport.cs‎
Lines changed: 34 additions & 0 deletions
@@ -86,6 +86,16 @@ public T[] ToArrayAndClear()
             return ret;
         }
 
+        /// <summary>
+        /// Detach a detachable reference and add it to the list.
+        /// </summary>
+        /// <typeparam name="R">The type of resource to detach.</typeparam>
+        /// <returns>The detached resource.</returns>
+        public R Detach<R>(DetachableContainer<R> container) where R : class, T
+        {
+            return AddResource(container.Detach());
+        }
+
         #region IDisposable Support
         private bool disposedValue = false;
 
 
@@ -247,6 +247,8 @@
     <Compile Include="Security\INtObjectSecurity.cs" />
     <Compile Include="Utilities\Collections\CollectionUtils.cs" />
     <Compile Include="Utilities\Memory\UnmanagedUtils.cs" />
+    <Compile Include="Utilities\Misc\DetachableContainer.cs" />
+    <Compile Include="Utilities\Misc\MiscUtils.cs" />
     <Compile Include="Utilities\Reflection\ReflectionUtils.cs" />
     <Compile Include="Utilities\Reflection\SDKNameAttribute.cs" />
     <Compile Include="SecurityDescriptorSid.cs" />
@@ -460,6 +462,7 @@
     <Compile Include="Win32\DirectoryService\DirectoryServiceNameFormat.cs" />
     <Compile Include="Win32\DirectoryService\DirectoryServiceNameResult.cs" />
     <Compile Include="Win32\DirectoryService\DirectoryServiceNativeMethods.cs" />
+    <Compile Include="Win32\Rpc\Transport\RpcTransportSecurityContext.cs" />
     <Compile Include="Win32\SafeHandles\SafeDirectoryServiceHandle.cs" />
     <Compile Include="Win32\DirectoryService\DirectoryServiceSecurityPrincipal.cs" />
     <Compile Include="Win32\DirectoryService\DirectoryServiceReferenceClass.cs" />
 
@@ -0,0 +1,52 @@
+//  Copyright 2021 Google LLC. All Rights Reserved.
+//
+//  Licensed under the Apache License, Version 2.0 (the "License");
+//  you may not use this file except in compliance with the License.
+//  You may obtain a copy of the License at
+//
+//  http://www.apache.org/licenses/LICENSE-2.0
+//
+//  Unless required by applicable law or agreed to in writing, software
+//  distributed under the License is distributed on an "AS IS" BASIS,
+//  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//  See the License for the specific language governing permissions and
+//  limitations under the License.
+
+using System;
+using System.Threading;
+
+namespace NtApiDotNet.Utilities.Misc
+{
+    /// <summary>
+    /// A container which can detach an innner reference.
+    /// </summary>
+    /// <typeparam name="T"></typeparam>
+    public sealed class DetachableContainer<T> : IDisposable where T : class, IDisposable
+    {
+        private T _obj;
+
+        internal DetachableContainer(T obj)
+        {
+            _obj = obj;
+        }
+
+        /// <summary>
+        /// Get the contained value.
+        /// </summary>
+        public T Value => _obj;
+
+        /// <summary>
+        /// Detach the object so the original isn't disposed.
+        /// </summary>
+        /// <returns>Detached object.</returns>
+        public T Detach()
+        {
+            return Interlocked.Exchange(ref _obj, null);
+        }
+
+        void IDisposable.Dispose()
+        {
+            _obj?.Dispose();
+        }
+    }
+}
@@ -0,0 +1,35 @@
+//  Copyright 2021 Google LLC. All Rights Reserved.
+//
+//  Licensed under the Apache License, Version 2.0 (the "License");
+//  you may not use this file except in compliance with the License.
+//  You may obtain a copy of the License at
+//
+//  http://www.apache.org/licenses/LICENSE-2.0
+//
+//  Unless required by applicable law or agreed to in writing, software
+//  distributed under the License is distributed on an "AS IS" BASIS,
+//  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//  See the License for the specific language governing permissions and
+//  limitations under the License.
+
+using System;
+
+namespace NtApiDotNet.Utilities.Misc
+{
+    /// <summary>
+    /// Miscellaneous utilities.
+    /// </summary>
+    public static class MiscUtils
+    {
+        /// <summary>
+        /// Convert a disposable object to a detachable object.
+        /// </summary>
+        /// <typeparam name="T">The disposable object type.</typeparam>
+        /// <param name="obj">The disposable object.</param>
+        /// <returns>The disposable container.</returns>
+        public static DetachableContainer<T> AsDetachable<T>(this T obj) where T : class, IDisposable
+        {
+            return new DetachableContainer<T>(obj);
+        }
+    }
+}
@@ -1,92 +1,114 @@
-//  Copyright 2019 Google Inc. All Rights Reserved.
-//
-//  Licensed under the Apache License, Version 2.0 (the "License");
-//  you may not use this file except in compliance with the License.
-//  You may obtain a copy of the License at
-//
-//  http://www.apache.org/licenses/LICENSE-2.0
-//
-//  Unless required by applicable law or agreed to in writing, software
-//  distributed under the License is distributed on an "AS IS" BASIS,
-//  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//  See the License for the specific language governing permissions and
-//  limitations under the License.
-
-using NtApiDotNet.Ndr.Marshal;
-using System;
-using System.Collections.Generic;
-
-namespace NtApiDotNet.Win32.Rpc.Transport
-{
-    /// <summary>
-    /// Interface to implement an RPC client transport.
-    /// </summary>
-    public interface IRpcClientTransport : IDisposable
-    {
-        /// <summary>
-        /// Bind the RPC transport to a specified interface.
-        /// </summary>
-        /// <param name="interface_id">The interface ID to bind to.</param>
-        /// <param name="interface_version">The interface version to bind to.</param>
-        /// <param name="transfer_syntax_id">The transfer syntax to use.</param>
-        /// <param name="transfer_syntax_version">The transfer syntax version to use.</param>
-        void Bind(Guid interface_id, Version interface_version, Guid transfer_syntax_id, Version transfer_syntax_version);
-
-        /// <summary>
-        /// Send and receive an RPC message.
-        /// </summary>
-        /// <param name="proc_num">The procedure number.</param>
-        /// <param name="objuuid">The object UUID for the call.</param>
-        /// <param name="data_representation">NDR data representation.</param>
-        /// <param name="ndr_buffer">Marshal NDR buffer for the call.</param>
-        /// <param name="handles">List of handles marshaled into the buffer.</param>
-        /// <returns>Client response from the send.</returns>
-        RpcClientResponse SendReceive(int proc_num, Guid objuuid, NdrDataRepresentation data_representation, 
-            byte[] ndr_buffer, IReadOnlyCollection<NtObject> handles);
-
-        /// <summary>
-        /// Disconnect the transport.
-        /// </summary>
-        void Disconnect();
-
-        /// <summary>
-        /// Get whether the client is connected or not.
-        /// </summary>
-        bool Connected { get; }
-
-        /// <summary>
-        /// Get the endpoint the client is connected to.
-        /// </summary>
-        string Endpoint { get; }
-
-        /// <summary>
-        /// Get the transport protocol sequence.
-        /// </summary>
-        string ProtocolSequence { get; }
-
+//  Copyright 2019 Google Inc. All Rights Reserved.
+//
+//  Licensed under the Apache License, Version 2.0 (the "License");
+//  you may not use this file except in compliance with the License.
+//  You may obtain a copy of the License at
+//
+//  http://www.apache.org/licenses/LICENSE-2.0
+//
+//  Unless required by applicable law or agreed to in writing, software
+//  distributed under the License is distributed on an "AS IS" BASIS,
+//  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//  See the License for the specific language governing permissions and
+//  limitations under the License.
+
+using NtApiDotNet.Ndr.Marshal;
+using System;
+using System.Collections.Generic;
+
+namespace NtApiDotNet.Win32.Rpc.Transport
+{
+    /// <summary>
+    /// Interface to implement an RPC client transport.
+    /// </summary>
+    public interface IRpcClientTransport : IDisposable
+    {
+        /// <summary>
+        /// Bind the RPC transport to a specified interface.
+        /// </summary>
+        /// <param name="interface_id">The interface ID to bind to.</param>
+        /// <param name="interface_version">The interface version to bind to.</param>
+        /// <param name="transfer_syntax_id">The transfer syntax to use.</param>
+        /// <param name="transfer_syntax_version">The transfer syntax version to use.</param>
+        void Bind(Guid interface_id, Version interface_version, Guid transfer_syntax_id, Version transfer_syntax_version);
+
+        /// <summary>
+        /// Send and receive an RPC message.
+        /// </summary>
+        /// <param name="proc_num">The procedure number.</param>
+        /// <param name="objuuid">The object UUID for the call.</param>
+        /// <param name="data_representation">NDR data representation.</param>
+        /// <param name="ndr_buffer">Marshal NDR buffer for the call.</param>
+        /// <param name="handles">List of handles marshaled into the buffer.</param>
+        /// <returns>Client response from the send.</returns>
+        RpcClientResponse SendReceive(int proc_num, Guid objuuid, NdrDataRepresentation data_representation, 
+            byte[] ndr_buffer, IReadOnlyCollection<NtObject> handles);
+
+        /// <summary>
+        /// Add and authenticate a new security context.
+        /// </summary>
+        /// <param name="transport_security">The transport security for the context.</param>
+        /// <returns>The created security context.</returns>
+        RpcTransportSecurityContext AddSecurityContext(RpcTransportSecurity transport_security);
+
+        /// <summary>
+        /// Disconnect the transport.
+        /// </summary>
+        void Disconnect();
+
+        /// <summary>
+        /// Get whether the client is connected or not.
+        /// </summary>
+        bool Connected { get; }
+
+        /// <summary>
+        /// Get the endpoint the client is connected to.
+        /// </summary>
+        string Endpoint { get; }
+
+        /// <summary>
+        /// Get the transport protocol sequence.
+        /// </summary>
+        string ProtocolSequence { get; }
+
         /// <summary>
         /// Get whether the client has been authenticated.
-        /// </summary>
-        bool Authenticated { get; }
-
+        /// </summary>
+        bool Authenticated { get; }
+
         /// <summary>
-        /// Get the transports authentication type.
-        /// </summary>
-        RpcAuthenticationType AuthenticationType { get; }
-
+        /// Get the transport's authentication type.
+        /// </summary>
+        RpcAuthenticationType AuthenticationType { get; }
+
         /// <summary>
-        /// Get the transports authentication level.
-        /// </summary>
-        RpcAuthenticationLevel AuthenticationLevel { get; }
-
+        /// Get the transport's authentication level.
+        /// </summary>
+        RpcAuthenticationLevel AuthenticationLevel { get; }
+
         /// <summary>
         /// Get information about the local server process, if known.
-        /// </summary>
+        /// </summary>
         RpcServerProcessInformation ServerProcess { get; }
 
         /// <summary>
         /// Get the current Call ID.
         /// </summary>
         int CallId { get; }
-    }
-}
+
+        /// <summary>
+        /// Indicates if this connection supported multiple security context.
+        /// </summary>
+        bool SupportsMultipleSecurityContexts { get; }
+
+        /// <summary>
+        /// Get the list of negotiated security context.
+        /// </summary>
+        IReadOnlyList<RpcTransportSecurityContext> SecurityContext { get; }
+
+        /// <summary>
+        /// Get or set the current security context.
+        /// </summary>
+        RpcTransportSecurityContext CurrentSecurityContext { get; set; }
+    }
+}
@@ -25,6 +25,7 @@ public class RpcAlpcClientTransport : IRpcClientTransport
     {
         #region Private Members
         private NtAlpcClient _client;
+        private readonly SecurityQualityOfService _sqos;
 
         private static AlpcPortAttributes CreatePortAttributes(SecurityQualityOfService sqos)
         {
@@ -241,6 +242,7 @@ public RpcAlpcClientTransport(string path, SecurityQualityOfService security_qua
             }
 
             _client = ConnectPort(path, security_quality_of_service);
+            _sqos = security_quality_of_service;
             Endpoint = path;
         }
         #endregion
@@ -300,6 +302,16 @@ public void Disconnect()
             Dispose();
         }
 
+        /// <summary>
+        /// Add and authenticate a new security context.
+        /// </summary>
+        /// <param name="transport_security">The transport security for the context.</param>
+        /// <returns>The created security context.</returns>
+        public RpcTransportSecurityContext AddSecurityContext(RpcTransportSecurity transport_security)
+        {
+            throw new InvalidOperationException("Transport doesn't support multiple security context.");
+        }
+
         #endregion
 
         #region Public Properties
@@ -351,6 +363,28 @@ public RpcServerProcessInformation ServerProcess
         /// </summary>
         public RpcAuthenticationLevel AuthenticationLevel => Authenticated ? RpcAuthenticationLevel.PacketPrivacy : RpcAuthenticationLevel.None;
 
+        /// <summary>
+        /// Indicates if this connection supported multiple security context.
+        /// </summary>
+        public bool SupportsMultipleSecurityContexts => false;
+
+        /// <summary>
+        /// Get the list of negotiated security context.
+        /// </summary>
+        public IReadOnlyList<RpcTransportSecurityContext> SecurityContext => 
+            new List<RpcTransportSecurityContext>() { CurrentSecurityContext }.AsReadOnly();
+
+        /// <summary>
+        /// Get or set the current security context.
+        /// </summary>
+        public RpcTransportSecurityContext CurrentSecurityContext {
+            get => new RpcTransportSecurityContext(this, new RpcTransportSecurity(_sqos)
+            {
+                AuthenticationType = AuthenticationType,
+                AuthenticationLevel = AuthenticationLevel
+            }, 0);
+            set => throw new InvalidOperationException("Transport doesn't support multiple security context."); }
+
         #endregion
     }
 }