pciutils/lib/win32-helpers.c

*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker *      The PCI Library -- Win32 helper functions
*c2e0c6b5SAndroid Build Coastguard Worker *
*c2e0c6b5SAndroid Build Coastguard Worker *      Copyright (c) 2023 Pali Rohár <[email protected]>
*c2e0c6b5SAndroid Build Coastguard Worker *
*c2e0c6b5SAndroid Build Coastguard Worker *      Can be freely distributed and used under the terms of the GNU GPL v2+
*c2e0c6b5SAndroid Build Coastguard Worker *
*c2e0c6b5SAndroid Build Coastguard Worker *      SPDX-License-Identifier: GPL-2.0-or-later
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker#include <windows.h>
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker#include <stdio.h> /* for sprintf() */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker#include "win32-helpers.h"
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/* Unfortunately i586-mingw32msvc toolchain does not provide this constant. */
*c2e0c6b5SAndroid Build Coastguard Worker#ifndef PROCESS_QUERY_LIMITED_INFORMATION
*c2e0c6b5SAndroid Build Coastguard Worker#define PROCESS_QUERY_LIMITED_INFORMATION 0x1000
*c2e0c6b5SAndroid Build Coastguard Worker#endif
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/* Unfortunately some toolchains do not provide this constant. */
*c2e0c6b5SAndroid Build Coastguard Worker#ifndef SE_IMPERSONATE_NAME
*c2e0c6b5SAndroid Build Coastguard Worker#define SE_IMPERSONATE_NAME TEXT("SeImpersonatePrivilege")
*c2e0c6b5SAndroid Build Coastguard Worker#endif
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/* Unfortunately some toolchains do not provide these constants. */
*c2e0c6b5SAndroid Build Coastguard Worker#ifndef SE_DACL_AUTO_INHERIT_REQ
*c2e0c6b5SAndroid Build Coastguard Worker#define SE_DACL_AUTO_INHERIT_REQ 0x0100
*c2e0c6b5SAndroid Build Coastguard Worker#endif
*c2e0c6b5SAndroid Build Coastguard Worker#ifndef SE_SACL_AUTO_INHERIT_REQ
*c2e0c6b5SAndroid Build Coastguard Worker#define SE_SACL_AUTO_INHERIT_REQ 0x0200
*c2e0c6b5SAndroid Build Coastguard Worker#endif
*c2e0c6b5SAndroid Build Coastguard Worker#ifndef SE_DACL_AUTO_INHERITED
*c2e0c6b5SAndroid Build Coastguard Worker#define SE_DACL_AUTO_INHERITED 0x0400
*c2e0c6b5SAndroid Build Coastguard Worker#endif
*c2e0c6b5SAndroid Build Coastguard Worker#ifndef SE_SACL_AUTO_INHERITED
*c2e0c6b5SAndroid Build Coastguard Worker#define SE_SACL_AUTO_INHERITED 0x0800
*c2e0c6b5SAndroid Build Coastguard Worker#endif
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * These psapi functions are available in kernel32.dll library with K32 prefix
*c2e0c6b5SAndroid Build Coastguard Worker * on Windows 7 and higher systems. On older Windows systems these functions are
*c2e0c6b5SAndroid Build Coastguard Worker * available in psapi.dll libary without K32 prefix. So resolve pointers to
*c2e0c6b5SAndroid Build Coastguard Worker * these functions dynamically at runtime from the available system library.
*c2e0c6b5SAndroid Build Coastguard Worker * Function GetProcessImageFileNameW() is not available on Windows 2000 and
*c2e0c6b5SAndroid Build Coastguard Worker * older systems.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workertypedef BOOL (WINAPI *EnumProcessesProt)(DWORD *lpidProcess, DWORD cb, DWORD *cbNeeded);
*c2e0c6b5SAndroid Build Coastguard Workertypedef DWORD (WINAPI *GetProcessImageFileNameWProt)(HANDLE hProcess, LPWSTR lpImageFileName, DWORD nSize);
*c2e0c6b5SAndroid Build Coastguard Workertypedef DWORD (WINAPI *GetModuleFileNameExWProt)(HANDLE hProcess, HMODULE hModule, LPWSTR lpImageFileName, DWORD nSize);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * These aclapi function is available in advapi.dll library on Windows 2000
*c2e0c6b5SAndroid Build Coastguard Worker * and higher systems.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workertypedef BOOL (WINAPI *SetSecurityDescriptorControlProt)(PSECURITY_DESCRIPTOR pSecurityDescriptor, SECURITY_DESCRIPTOR_CONTROL ControlBitsOfInterest, SECURITY_DESCRIPTOR_CONTROL ControlBitsToSet);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * This errhandlingapi function is available in kernel32.dll library on
*c2e0c6b5SAndroid Build Coastguard Worker * Windows 7 and higher systems.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workertypedef BOOL (WINAPI *SetThreadErrorModeProt)(DWORD dwNewMode, LPDWORD lpOldMode);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerstatic DWORD
*c2e0c6b5SAndroid Build Coastguard Workerformat_message_from_system(DWORD win32_error_id, DWORD lang_id, LPSTR buffer, DWORD size)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  return FormatMessageA(FORMAT_MESSAGE_FROM_SYSTEM | FORMAT_MESSAGE_IGNORE_INSERTS, NULL, win32_error_id, lang_id, buffer, size, NULL);
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerconst char *
*c2e0c6b5SAndroid Build Coastguard Workerwin32_strerror(DWORD win32_error_id)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Use static buffer which is large enough.
*c2e0c6b5SAndroid Build Coastguard Worker   * Hopefully no Win32 API error message string is longer than 4 kB.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  static char buffer[4096];
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD len;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If it is possible show error messages in US English language.
*c2e0c6b5SAndroid Build Coastguard Worker   * International Windows editions do not have to provide error
*c2e0c6b5SAndroid Build Coastguard Worker   * messages in English language, so fallback to the language
*c2e0c6b5SAndroid Build Coastguard Worker   * which system provides (neutral).
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  len = format_message_from_system(win32_error_id, MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US), buffer, sizeof(buffer));
*c2e0c6b5SAndroid Build Coastguard Worker  if (!len)
*c2e0c6b5SAndroid Build Coastguard Worker    len = format_message_from_system(win32_error_id, MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), buffer, sizeof(buffer));
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* FormatMessage() automatically appends ".\r\n" to the error message. */
*c2e0c6b5SAndroid Build Coastguard Worker  if (len && buffer[len-1] == '\n')
*c2e0c6b5SAndroid Build Coastguard Worker    buffer[--len] = '\0';
*c2e0c6b5SAndroid Build Coastguard Worker  if (len && buffer[len-1] == '\r')
*c2e0c6b5SAndroid Build Coastguard Worker    buffer[--len] = '\0';
*c2e0c6b5SAndroid Build Coastguard Worker  if (len && buffer[len-1] == '.')
*c2e0c6b5SAndroid Build Coastguard Worker    buffer[--len] = '\0';
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!len)
*c2e0c6b5SAndroid Build Coastguard Worker    sprintf(buffer, "Unknown Win32 error %lu", win32_error_id);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return buffer;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard WorkerBOOL
*c2e0c6b5SAndroid Build Coastguard Workerwin32_is_non_nt_system(void)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  OSVERSIONINFOA version;
*c2e0c6b5SAndroid Build Coastguard Worker  version.dwOSVersionInfoSize = sizeof(version);
*c2e0c6b5SAndroid Build Coastguard Worker  return GetVersionExA(&version) && version.dwPlatformId < VER_PLATFORM_WIN32_NT;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard WorkerBOOL
*c2e0c6b5SAndroid Build Coastguard Workerwin32_is_32bit_on_64bit_system(void)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL (WINAPI *MyIsWow64Process)(HANDLE, PBOOL);
*c2e0c6b5SAndroid Build Coastguard Worker  HMODULE kernel32;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL is_wow64;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Check for 64-bit system via IsWow64Process() function exported
*c2e0c6b5SAndroid Build Coastguard Worker   * from 32-bit kernel32.dll library available on the 64-bit systems.
*c2e0c6b5SAndroid Build Coastguard Worker   * Resolve pointer to this function at runtime as this code path is
*c2e0c6b5SAndroid Build Coastguard Worker   * primary running on 32-bit systems where are not available 64-bit
*c2e0c6b5SAndroid Build Coastguard Worker   * functions.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  kernel32 = GetModuleHandle(TEXT("kernel32.dll"));
*c2e0c6b5SAndroid Build Coastguard Worker  if (!kernel32)
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  MyIsWow64Process = (void *)GetProcAddress(kernel32, "IsWow64Process");
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MyIsWow64Process)
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MyIsWow64Process(GetCurrentProcess(), &is_wow64))
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return is_wow64;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard WorkerBOOL
*c2e0c6b5SAndroid Build Coastguard Workerwin32_is_32bit_on_win8_64bit_system(void)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker#ifdef _WIN64
*c2e0c6b5SAndroid Build Coastguard Worker  return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker#else
*c2e0c6b5SAndroid Build Coastguard Worker  OSVERSIONINFOA version;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* Check for Windows 8 (NT 6.2). */
*c2e0c6b5SAndroid Build Coastguard Worker  version.dwOSVersionInfoSize = sizeof(version);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetVersionExA(&version) ||
*c2e0c6b5SAndroid Build Coastguard Worker      version.dwPlatformId != VER_PLATFORM_WIN32_NT ||
*c2e0c6b5SAndroid Build Coastguard Worker      version.dwMajorVersion < 6 ||
*c2e0c6b5SAndroid Build Coastguard Worker      (version.dwMajorVersion == 6 && version.dwMinorVersion < 2))
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return win32_is_32bit_on_64bit_system();
*c2e0c6b5SAndroid Build Coastguard Worker#endif
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Change error mode of the current thread. If it is not possible then change
*c2e0c6b5SAndroid Build Coastguard Worker * error mode of the whole process. Always returns previous error mode.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerUINT
*c2e0c6b5SAndroid Build Coastguard Workerwin32_change_error_mode(UINT new_mode)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  SetThreadErrorModeProt MySetThreadErrorMode = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker  HMODULE kernel32;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD old_mode;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Function SetThreadErrorMode() was introduced in Windows 7, so use
*c2e0c6b5SAndroid Build Coastguard Worker   * GetProcAddress() for compatibility with older systems.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  kernel32 = GetModuleHandle(TEXT("kernel32.dll"));
*c2e0c6b5SAndroid Build Coastguard Worker  if (kernel32)
*c2e0c6b5SAndroid Build Coastguard Worker    MySetThreadErrorMode = (SetThreadErrorModeProt)(LPVOID)GetProcAddress(kernel32, "SetThreadErrorMode");
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (MySetThreadErrorMode &&
*c2e0c6b5SAndroid Build Coastguard Worker      MySetThreadErrorMode(new_mode, &old_mode))
*c2e0c6b5SAndroid Build Coastguard Worker    return old_mode;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Fallback to function SetErrorMode() which modifies error mode of the
*c2e0c6b5SAndroid Build Coastguard Worker   * whole process and returns old mode.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  return SetErrorMode(new_mode);
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Check if the current thread has particular privilege in current active access
*c2e0c6b5SAndroid Build Coastguard Worker * token. Case when it not possible to determinate it (e.g. current thread does
*c2e0c6b5SAndroid Build Coastguard Worker * not have permission to open its own current active access token) is evaluated
*c2e0c6b5SAndroid Build Coastguard Worker * as thread does not have that privilege.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerBOOL
*c2e0c6b5SAndroid Build Coastguard Workerwin32_have_privilege(LUID luid_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  PRIVILEGE_SET priv;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE token;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL ret;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If the current thread does not have active access token then thread
*c2e0c6b5SAndroid Build Coastguard Worker   * uses primary process access token for all permission checks.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, TRUE, &token) &&
*c2e0c6b5SAndroid Build Coastguard Worker      (GetLastError() != ERROR_NO_TOKEN ||
*c2e0c6b5SAndroid Build Coastguard Worker       !OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &token)))
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  priv.PrivilegeCount = 1;
*c2e0c6b5SAndroid Build Coastguard Worker  priv.Control = PRIVILEGE_SET_ALL_NECESSARY;
*c2e0c6b5SAndroid Build Coastguard Worker  priv.Privilege[0].Luid = luid_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker  priv.Privilege[0].Attributes = SE_PRIVILEGE_ENABLED;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!PrivilegeCheck(token, &priv, &ret))
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return ret;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Enable or disable particular privilege in specified access token.
*c2e0c6b5SAndroid Build Coastguard Worker *
*c2e0c6b5SAndroid Build Coastguard Worker * Note that it is not possible to disable privilege in access token with
*c2e0c6b5SAndroid Build Coastguard Worker * SE_PRIVILEGE_ENABLED_BY_DEFAULT attribute. This function does not check
*c2e0c6b5SAndroid Build Coastguard Worker * this case and incorrectly returns no error even when disabling failed.
*c2e0c6b5SAndroid Build Coastguard Worker * Rationale for this decision: Simplification of this function as WinAPI
*c2e0c6b5SAndroid Build Coastguard Worker * call AdjustTokenPrivileges() does not signal error in this case too.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic BOOL
*c2e0c6b5SAndroid Build Coastguard Workerset_privilege(HANDLE token, LUID luid_privilege, BOOL enable)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  TOKEN_PRIVILEGES token_privileges;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  token_privileges.PrivilegeCount = 1;
*c2e0c6b5SAndroid Build Coastguard Worker  token_privileges.Privileges[0].Luid = luid_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker  token_privileges.Privileges[0].Attributes = enable ? SE_PRIVILEGE_ENABLED : 0;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * WinAPI function AdjustTokenPrivileges() success also when not all
*c2e0c6b5SAndroid Build Coastguard Worker   * privileges were enabled. It is always required to check for failure
*c2e0c6b5SAndroid Build Coastguard Worker   * via GetLastError() call. AdjustTokenPrivileges() always sets error
*c2e0c6b5SAndroid Build Coastguard Worker   * also when it success, as opposite to other WinAPI functions.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!AdjustTokenPrivileges(token, FALSE, &token_privileges, sizeof(token_privileges), NULL, NULL) ||
*c2e0c6b5SAndroid Build Coastguard Worker      GetLastError() != ERROR_SUCCESS)
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Change access token for the current thread to new specified access token.
*c2e0c6b5SAndroid Build Coastguard Worker * Previously active access token is stored in old_token variable and can be
*c2e0c6b5SAndroid Build Coastguard Worker * used for reverting to this access token. It is set to NULL if the current
*c2e0c6b5SAndroid Build Coastguard Worker * thread previously used primary process access token.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerBOOL
*c2e0c6b5SAndroid Build Coastguard Workerwin32_change_token(HANDLE new_token, HANDLE *old_token)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!OpenThreadToken(GetCurrentThread(), TOKEN_IMPERSONATE, TRUE, &token))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      if (GetLastError() != ERROR_NO_TOKEN)
*c2e0c6b5SAndroid Build Coastguard Worker        return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker      token = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!ImpersonateLoggedOnUser(new_token))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      if (token)
*c2e0c6b5SAndroid Build Coastguard Worker        CloseHandle(token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  *old_token = token;
*c2e0c6b5SAndroid Build Coastguard Worker  return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Change access token for the current thread to the primary process access
*c2e0c6b5SAndroid Build Coastguard Worker * token. This function fails also when the current thread already uses primary
*c2e0c6b5SAndroid Build Coastguard Worker * process access token.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic BOOL
*c2e0c6b5SAndroid Build Coastguard Workerchange_token_to_primary(HANDLE *old_token)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!OpenThreadToken(GetCurrentThread(), TOKEN_IMPERSONATE, TRUE, &token))
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  RevertToSelf();
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  *old_token = token;
*c2e0c6b5SAndroid Build Coastguard Worker  return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Revert to the specified access token for the current thread. When access
*c2e0c6b5SAndroid Build Coastguard Worker * token is specified as NULL then revert to the primary process access token.
*c2e0c6b5SAndroid Build Coastguard Worker * Use to revert after win32_change_token() or change_token_to_primary() call.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerVOID
*c2e0c6b5SAndroid Build Coastguard Workerwin32_revert_to_token(HANDLE token)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If SetThreadToken() call fails then there is no option to revert to
*c2e0c6b5SAndroid Build Coastguard Worker   * the specified previous thread access token. So in this case revert to
*c2e0c6b5SAndroid Build Coastguard Worker   * the primary process access token.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!token || !SetThreadToken(NULL, token))
*c2e0c6b5SAndroid Build Coastguard Worker    RevertToSelf();
*c2e0c6b5SAndroid Build Coastguard Worker  if (token)
*c2e0c6b5SAndroid Build Coastguard Worker    CloseHandle(token);
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Enable particular privilege for the current thread. And set method how to
*c2e0c6b5SAndroid Build Coastguard Worker * revert this privilege (if to revert whole token or only privilege).
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerBOOL
*c2e0c6b5SAndroid Build Coastguard Workerwin32_enable_privilege(LUID luid_privilege, HANDLE *revert_token, BOOL *revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE thread_token;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE new_token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (OpenThreadToken(GetCurrentThread(), TOKEN_ADJUST_PRIVILEGES, TRUE, &thread_token))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      if (set_privilege(thread_token, luid_privilege, TRUE))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          /*
*c2e0c6b5SAndroid Build Coastguard Worker           * Indicate that correct revert method is just to
*c2e0c6b5SAndroid Build Coastguard Worker           * disable privilege in access token.
*c2e0c6b5SAndroid Build Coastguard Worker           */
*c2e0c6b5SAndroid Build Coastguard Worker          if (revert_token && revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker            {
*c2e0c6b5SAndroid Build Coastguard Worker              *revert_token = thread_token;
*c2e0c6b5SAndroid Build Coastguard Worker              *revert_only_privilege = TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker            }
*c2e0c6b5SAndroid Build Coastguard Worker          else
*c2e0c6b5SAndroid Build Coastguard Worker            {
*c2e0c6b5SAndroid Build Coastguard Worker              CloseHandle(thread_token);
*c2e0c6b5SAndroid Build Coastguard Worker            }
*c2e0c6b5SAndroid Build Coastguard Worker          return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(thread_token);
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * If enabling privilege failed then try to enable it via
*c2e0c6b5SAndroid Build Coastguard Worker       * primary process access token.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If the current thread has already active thread access token then
*c2e0c6b5SAndroid Build Coastguard Worker   * open it with just impersonate right as it would be used only for
*c2e0c6b5SAndroid Build Coastguard Worker   * future revert.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (revert_token && revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      if (!OpenThreadToken(GetCurrentThread(), TOKEN_IMPERSONATE, TRUE, &thread_token))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          if (GetLastError() != ERROR_NO_TOKEN)
*c2e0c6b5SAndroid Build Coastguard Worker            return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker          thread_token = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * If current thread has no access token (and uses primary
*c2e0c6b5SAndroid Build Coastguard Worker       * process access token) or it does not have permission to
*c2e0c6b5SAndroid Build Coastguard Worker       * adjust privileges or it does not have specified privilege
*c2e0c6b5SAndroid Build Coastguard Worker       * then create a copy of the primary process access token,
*c2e0c6b5SAndroid Build Coastguard Worker       * assign it for the current thread (= impersonate self)
*c2e0c6b5SAndroid Build Coastguard Worker       * and then try adjusting privilege again.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      if (!ImpersonateSelf(SecurityImpersonation))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          if (thread_token)
*c2e0c6b5SAndroid Build Coastguard Worker            CloseHandle(thread_token);
*c2e0c6b5SAndroid Build Coastguard Worker          return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!OpenThreadToken(GetCurrentThread(), TOKEN_ADJUST_PRIVILEGES, TRUE, &new_token))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      /* thread_token is set only when we were asked for revert method. */
*c2e0c6b5SAndroid Build Coastguard Worker      if (revert_token && revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker        win32_revert_to_token(thread_token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!set_privilege(new_token, luid_privilege, TRUE))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(new_token);
*c2e0c6b5SAndroid Build Coastguard Worker      /* thread_token is set only when we were asked for revert method. */
*c2e0c6b5SAndroid Build Coastguard Worker      if (revert_token && revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker        win32_revert_to_token(thread_token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Indicate that correct revert method is to change to the previous
*c2e0c6b5SAndroid Build Coastguard Worker   * access token. Either to the primary process access token or to the
*c2e0c6b5SAndroid Build Coastguard Worker   * previous thread access token.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (revert_token && revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      *revert_token = thread_token;
*c2e0c6b5SAndroid Build Coastguard Worker      *revert_only_privilege = FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker  return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Revert particular privilege for the current thread was previously enabled by
*c2e0c6b5SAndroid Build Coastguard Worker * win32_enable_privilege() call. Either disable privilege in specified access token
*c2e0c6b5SAndroid Build Coastguard Worker * or revert to previous access token.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerVOID
*c2e0c6b5SAndroid Build Coastguard Workerwin32_revert_privilege(LUID luid_privilege, HANDLE revert_token, BOOL revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  if (revert_only_privilege)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      set_privilege(revert_token, luid_privilege, FALSE);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(revert_token);
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker  else
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      win32_revert_to_token(revert_token);
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Return owner of the access token used by the current thread. Buffer for
*c2e0c6b5SAndroid Build Coastguard Worker * returned owner needs to be released by LocalFree() call.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic TOKEN_OWNER *
*c2e0c6b5SAndroid Build Coastguard Workerget_current_token_owner(VOID)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE token;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD length;
*c2e0c6b5SAndroid Build Coastguard Worker  TOKEN_OWNER *owner;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If the current thread does not have active access token then thread
*c2e0c6b5SAndroid Build Coastguard Worker   * uses primary process access token for all permission checks.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, TRUE, &token) &&
*c2e0c6b5SAndroid Build Coastguard Worker      (GetLastError() != ERROR_NO_TOKEN ||
*c2e0c6b5SAndroid Build Coastguard Worker       !OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &token)))
*c2e0c6b5SAndroid Build Coastguard Worker    return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetTokenInformation(token, TokenOwner, NULL, 0, &length) &&
*c2e0c6b5SAndroid Build Coastguard Worker      GetLastError() != ERROR_INSUFFICIENT_BUFFER)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(token);
*c2e0c6b5SAndroid Build Coastguard Worker      return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerretry:
*c2e0c6b5SAndroid Build Coastguard Worker  owner = (TOKEN_OWNER *)LocalAlloc(LPTR, length);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!owner)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(token);
*c2e0c6b5SAndroid Build Coastguard Worker      return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetTokenInformation(token, TokenOwner, owner, length, &length))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * Length of token owner (SID) buffer between two get calls may
*c2e0c6b5SAndroid Build Coastguard Worker       * changes (e.g. by another thread of process), so retry.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      if (GetLastError() == ERROR_INSUFFICIENT_BUFFER)
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker          goto retry;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(token);
*c2e0c6b5SAndroid Build Coastguard Worker      return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  CloseHandle(token);
*c2e0c6b5SAndroid Build Coastguard Worker  return owner;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Create a new security descriptor in absolute form from relative form.
*c2e0c6b5SAndroid Build Coastguard Worker * Newly created security descriptor in absolute form is stored in linear buffer.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic PSECURITY_DESCRIPTOR
*c2e0c6b5SAndroid Build Coastguard Workercreate_relsd_from_abssd(PSECURITY_DESCRIPTOR rel_security_descriptor)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  PBYTE abs_security_descriptor_buffer;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD abs_security_descriptor_size=0, abs_dacl_size=0, abs_sacl_size=0, abs_owner_size=0, abs_primary_group_size=0;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MakeAbsoluteSD(rel_security_descriptor,
*c2e0c6b5SAndroid Build Coastguard Worker        NULL, &abs_security_descriptor_size,
*c2e0c6b5SAndroid Build Coastguard Worker        NULL, &abs_dacl_size,
*c2e0c6b5SAndroid Build Coastguard Worker        NULL, &abs_sacl_size,
*c2e0c6b5SAndroid Build Coastguard Worker        NULL, &abs_owner_size,
*c2e0c6b5SAndroid Build Coastguard Worker        NULL, &abs_primary_group_size) && GetLastError() != ERROR_INSUFFICIENT_BUFFER)
*c2e0c6b5SAndroid Build Coastguard Worker    return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  abs_security_descriptor_buffer = (PBYTE)LocalAlloc(LPTR, abs_security_descriptor_size+abs_dacl_size+abs_sacl_size+abs_owner_size+abs_primary_group_size);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!abs_security_descriptor_buffer)
*c2e0c6b5SAndroid Build Coastguard Worker    return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MakeAbsoluteSD(rel_security_descriptor,
*c2e0c6b5SAndroid Build Coastguard Worker        (PSECURITY_DESCRIPTOR)abs_security_descriptor_buffer, &abs_security_descriptor_size,
*c2e0c6b5SAndroid Build Coastguard Worker        (PACL)(abs_security_descriptor_buffer+abs_security_descriptor_size), &abs_dacl_size,
*c2e0c6b5SAndroid Build Coastguard Worker        (PACL)(abs_security_descriptor_buffer+abs_security_descriptor_size+abs_dacl_size), &abs_sacl_size,
*c2e0c6b5SAndroid Build Coastguard Worker        (PSID)(abs_security_descriptor_buffer+abs_security_descriptor_size+abs_dacl_size+abs_sacl_size), &abs_owner_size,
*c2e0c6b5SAndroid Build Coastguard Worker        (PSID)(abs_security_descriptor_buffer+abs_security_descriptor_size+abs_dacl_size+abs_sacl_size+abs_owner_size), &abs_primary_group_size))
*c2e0c6b5SAndroid Build Coastguard Worker    return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return (PSECURITY_DESCRIPTOR)abs_security_descriptor_buffer;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Prepare security descriptor obtained by GetKernelObjectSecurity() so it can be
*c2e0c6b5SAndroid Build Coastguard Worker * passed to SetKernelObjectSecurity() as identity operation. It modifies control
*c2e0c6b5SAndroid Build Coastguard Worker * flags of security descriptor, which is needed for Windows 2000 and new.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic BOOL
*c2e0c6b5SAndroid Build Coastguard Workerprepare_security_descriptor_for_set_operation(PSECURITY_DESCRIPTOR security_descriptor)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  SetSecurityDescriptorControlProt MySetSecurityDescriptorControl;
*c2e0c6b5SAndroid Build Coastguard Worker  SECURITY_DESCRIPTOR_CONTROL bits_mask;
*c2e0c6b5SAndroid Build Coastguard Worker  SECURITY_DESCRIPTOR_CONTROL bits_set;
*c2e0c6b5SAndroid Build Coastguard Worker  SECURITY_DESCRIPTOR_CONTROL control;
*c2e0c6b5SAndroid Build Coastguard Worker  OSVERSIONINFO version;
*c2e0c6b5SAndroid Build Coastguard Worker  HMODULE advapi32;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD revision;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * SE_DACL_AUTO_INHERITED and SE_SACL_AUTO_INHERITED are flags introduced in
*c2e0c6b5SAndroid Build Coastguard Worker   * Windows 2000 to control client-side automatic inheritance (client - user
*c2e0c6b5SAndroid Build Coastguard Worker   * process - is responsible for propagating inherited ACEs to subobjects).
*c2e0c6b5SAndroid Build Coastguard Worker   * To prevent applications which do not understand client-side automatic
*c2e0c6b5SAndroid Build Coastguard Worker   * inheritance (applications created prior Windows 2000 or which use low
*c2e0c6b5SAndroid Build Coastguard Worker   * level API like SetKernelObjectSecurity()) to unintentionally set those
*c2e0c6b5SAndroid Build Coastguard Worker   * SE_DACL_AUTO_INHERITED and SE_SACL_AUTO_INHERITED control flags when
*c2e0c6b5SAndroid Build Coastguard Worker   * coping them from other security descriptor.
*c2e0c6b5SAndroid Build Coastguard Worker   *
*c2e0c6b5SAndroid Build Coastguard Worker   * As we are not modifying existing ACEs, we are compatible with Windows 2000
*c2e0c6b5SAndroid Build Coastguard Worker   * client-side automatic inheritance model and therefore prepare security
*c2e0c6b5SAndroid Build Coastguard Worker   * descriptor for SetKernelObjectSecurity() to not clear existing automatic
*c2e0c6b5SAndroid Build Coastguard Worker   * inheritance control flags.
*c2e0c6b5SAndroid Build Coastguard Worker   *
*c2e0c6b5SAndroid Build Coastguard Worker   * Control flags SE_DACL_AUTO_INHERITED and SE_SACL_AUTO_INHERITED are set
*c2e0c6b5SAndroid Build Coastguard Worker   * into security object only when they are set together with set-only flags
*c2e0c6b5SAndroid Build Coastguard Worker   * SE_DACL_AUTO_INHERIT_REQ and SE_SACL_AUTO_INHERIT_REQ. Those flags are
*c2e0c6b5SAndroid Build Coastguard Worker   * never received by GetKernelObjectSecurity() and are just commands for
*c2e0c6b5SAndroid Build Coastguard Worker   * SetKernelObjectSecurity() how to interpret SE_DACL_AUTO_INHERITED and
*c2e0c6b5SAndroid Build Coastguard Worker   * SE_SACL_AUTO_INHERITED flags.
*c2e0c6b5SAndroid Build Coastguard Worker   *
*c2e0c6b5SAndroid Build Coastguard Worker   * Function symbol SetSecurityDescriptorControl is not available in the
*c2e0c6b5SAndroid Build Coastguard Worker   * older versions of advapi32.dll library, so resolve it at runtime.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  version.dwOSVersionInfoSize = sizeof(version);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetVersionEx(&version) ||
*c2e0c6b5SAndroid Build Coastguard Worker      version.dwPlatformId != VER_PLATFORM_WIN32_NT ||
*c2e0c6b5SAndroid Build Coastguard Worker      version.dwMajorVersion < 5)
*c2e0c6b5SAndroid Build Coastguard Worker    return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetSecurityDescriptorControl(security_descriptor, &control, &revision))
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  bits_mask = 0;
*c2e0c6b5SAndroid Build Coastguard Worker  bits_set = 0;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (control & SE_DACL_AUTO_INHERITED)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      bits_mask |= SE_DACL_AUTO_INHERIT_REQ;
*c2e0c6b5SAndroid Build Coastguard Worker      bits_set |= SE_DACL_AUTO_INHERIT_REQ;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (control & SE_SACL_AUTO_INHERITED)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      bits_mask |= SE_SACL_AUTO_INHERIT_REQ;
*c2e0c6b5SAndroid Build Coastguard Worker      bits_set |= SE_SACL_AUTO_INHERIT_REQ;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!bits_mask)
*c2e0c6b5SAndroid Build Coastguard Worker    return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  advapi32 = GetModuleHandle(TEXT("advapi32.dll"));
*c2e0c6b5SAndroid Build Coastguard Worker  if (!advapi32)
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  MySetSecurityDescriptorControl = (SetSecurityDescriptorControlProt)(LPVOID)GetProcAddress(advapi32, "SetSecurityDescriptorControl");
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MySetSecurityDescriptorControl)
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MySetSecurityDescriptorControl(security_descriptor, bits_mask, bits_set))
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Grant particular permissions in the primary access token of the specified
*c2e0c6b5SAndroid Build Coastguard Worker * process for the owner of current thread token and set old DACL of the
*c2e0c6b5SAndroid Build Coastguard Worker * process access token for reverting permissions. Security descriptor is
*c2e0c6b5SAndroid Build Coastguard Worker * just memory buffer for old DACL.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic BOOL
*c2e0c6b5SAndroid Build Coastguard Workergrant_process_token_dacl_permissions(HANDLE process, DWORD permissions, HANDLE *token, PSECURITY_DESCRIPTOR *old_security_descriptor)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  TOKEN_OWNER *owner;
*c2e0c6b5SAndroid Build Coastguard Worker  PACL old_dacl;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL old_dacl_present;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL old_dacl_defaulted;
*c2e0c6b5SAndroid Build Coastguard Worker  PACL new_dacl;
*c2e0c6b5SAndroid Build Coastguard Worker  WORD new_dacl_size;
*c2e0c6b5SAndroid Build Coastguard Worker  PSECURITY_DESCRIPTOR new_security_descriptor;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD length;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  owner = get_current_token_owner();
*c2e0c6b5SAndroid Build Coastguard Worker  if (!owner)
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * READ_CONTROL is required for GetSecurityInfo(DACL_SECURITY_INFORMATION)
*c2e0c6b5SAndroid Build Coastguard Worker   * and WRITE_DAC is required for SetSecurityInfo(DACL_SECURITY_INFORMATION).
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!OpenProcessToken(process, READ_CONTROL | WRITE_DAC, token))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetKernelObjectSecurity(*token, DACL_SECURITY_INFORMATION, NULL, 0, &length) && GetLastError() != ERROR_INSUFFICIENT_BUFFER)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerretry:
*c2e0c6b5SAndroid Build Coastguard Worker  *old_security_descriptor = (PSECURITY_DESCRIPTOR)LocalAlloc(LPTR, length);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!*old_security_descriptor)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetKernelObjectSecurity(*token, DACL_SECURITY_INFORMATION, *old_security_descriptor, length, &length))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * Length of the security descriptor between two get calls
*c2e0c6b5SAndroid Build Coastguard Worker       * may changes (e.g. by another thread of process), so retry.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      if (GetLastError() == ERROR_INSUFFICIENT_BUFFER)
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker          goto retry;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!prepare_security_descriptor_for_set_operation(*old_security_descriptor))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* Retrieve the current DACL from security descriptor including present and defaulted properties. */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!GetSecurityDescriptorDacl(*old_security_descriptor, &old_dacl_present, &old_dacl, &old_dacl_defaulted))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If DACL is not present then system grants full access to everyone. It this
*c2e0c6b5SAndroid Build Coastguard Worker   * case do not modify DACL as it just adds one ACL allow rule for us, which
*c2e0c6b5SAndroid Build Coastguard Worker   * automatically disallow access to anybody else which had access before.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!old_dacl_present || !old_dacl)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      *old_security_descriptor = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker      return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* Create new DACL which would be copy of the current old one. */
*c2e0c6b5SAndroid Build Coastguard Worker  new_dacl_size = old_dacl->AclSize + sizeof(ACCESS_ALLOWED_ACE) + GetLengthSid(owner->Owner) - sizeof(DWORD);
*c2e0c6b5SAndroid Build Coastguard Worker  new_dacl = (PACL)LocalAlloc(LPTR, new_dacl_size);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!new_dacl)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Initialize new DACL structure to the same format as was the old one.
*c2e0c6b5SAndroid Build Coastguard Worker   * Set new explicit access for the owner of the current thread access
*c2e0c6b5SAndroid Build Coastguard Worker   * token with non-inherited granting access to specified permissions.
*c2e0c6b5SAndroid Build Coastguard Worker   * This permission is added in the first ACE, so has the highest priority.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!InitializeAcl(new_dacl, new_dacl_size, old_dacl->AclRevision) ||
*c2e0c6b5SAndroid Build Coastguard Worker      !AddAccessAllowedAce(new_dacl, ACL_REVISION2, permissions, owner->Owner))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(new_dacl);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Now (after setting our new permissions) append all ACE entries from the
*c2e0c6b5SAndroid Build Coastguard Worker   * old DACL to the new DACL, which preserve all other existing permissions.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (old_dacl->AceCount > 0)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      WORD ace_index;
*c2e0c6b5SAndroid Build Coastguard Worker      LPVOID ace;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      for (ace_index = 0; ace_index < old_dacl->AceCount; ace_index++)
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          if (!GetAce(old_dacl, ace_index, &ace) ||
*c2e0c6b5SAndroid Build Coastguard Worker              !AddAce(new_dacl, old_dacl->AclRevision, MAXDWORD, ace, ((PACE_HEADER)ace)->AceSize))
*c2e0c6b5SAndroid Build Coastguard Worker            {
*c2e0c6b5SAndroid Build Coastguard Worker              LocalFree(new_dacl);
*c2e0c6b5SAndroid Build Coastguard Worker              LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker              LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker              CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker              return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker            }
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Create copy of the old security descriptor, so we can modify its DACL.
*c2e0c6b5SAndroid Build Coastguard Worker   * Function SetSecurityDescriptorDacl() works only with security descriptors
*c2e0c6b5SAndroid Build Coastguard Worker   * in absolute format. So use our helper function create_relsd_from_abssd()
*c2e0c6b5SAndroid Build Coastguard Worker   * for converting security descriptor from relative format (which is returned
*c2e0c6b5SAndroid Build Coastguard Worker   * by GetKernelObjectSecurity() function) to the absolute format.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  new_security_descriptor = create_relsd_from_abssd(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!new_security_descriptor)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(new_dacl);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * In the new security descriptor replace old DACL by the new DACL (which has
*c2e0c6b5SAndroid Build Coastguard Worker   * new permissions) and then set this new security descriptor to the token,
*c2e0c6b5SAndroid Build Coastguard Worker   * so token would have new access permissions.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!SetSecurityDescriptorDacl(new_security_descriptor, TRUE, new_dacl, FALSE) ||
*c2e0c6b5SAndroid Build Coastguard Worker      !SetKernelObjectSecurity(*token, DACL_SECURITY_INFORMATION, new_security_descriptor))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(new_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(new_dacl);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(*old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(*token);
*c2e0c6b5SAndroid Build Coastguard Worker      return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  LocalFree(new_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker  LocalFree(new_dacl);
*c2e0c6b5SAndroid Build Coastguard Worker  LocalFree(owner);
*c2e0c6b5SAndroid Build Coastguard Worker  return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Revert particular granted permissions in specified access token done by
*c2e0c6b5SAndroid Build Coastguard Worker * grant_process_token_dacl_permissions() call.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic VOID
*c2e0c6b5SAndroid Build Coastguard Workerrevert_token_dacl_permissions(HANDLE token, PSECURITY_DESCRIPTOR old_security_descriptor)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  SetKernelObjectSecurity(token, DACL_SECURITY_INFORMATION, old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker  LocalFree(old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker  CloseHandle(token);
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Open process handle specified by the process id with the query right and
*c2e0c6b5SAndroid Build Coastguard Worker * optionally also with vm read right.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic HANDLE
*c2e0c6b5SAndroid Build Coastguard Workeropen_process_for_query(DWORD pid, BOOL with_vm_read)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL revert_only_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker  LUID luid_debug_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker  OSVERSIONINFO version;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD process_right;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE revert_token;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE process;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Some processes on Windows Vista and higher systems can be opened only
*c2e0c6b5SAndroid Build Coastguard Worker   * with PROCESS_QUERY_LIMITED_INFORMATION right. This right is enough
*c2e0c6b5SAndroid Build Coastguard Worker   * for accessing primary process token. But this right is not supported
*c2e0c6b5SAndroid Build Coastguard Worker   * on older pre-Vista systems. When the current thread on these older
*c2e0c6b5SAndroid Build Coastguard Worker   * systems does not have Debug privilege then OpenProcess() fails with
*c2e0c6b5SAndroid Build Coastguard Worker   * ERROR_ACCESS_DENIED. If the current thread has Debug privilege then
*c2e0c6b5SAndroid Build Coastguard Worker   * OpenProcess() success and returns handle to requested process.
*c2e0c6b5SAndroid Build Coastguard Worker   * Problem is that this handle does not have PROCESS_QUERY_INFORMATION
*c2e0c6b5SAndroid Build Coastguard Worker   * right and so cannot be used for accessing primary process token
*c2e0c6b5SAndroid Build Coastguard Worker   * on those older systems. Moreover it has zero rights and therefore
*c2e0c6b5SAndroid Build Coastguard Worker   * such handle is fully useless. So never try to use open process with
*c2e0c6b5SAndroid Build Coastguard Worker   * PROCESS_QUERY_LIMITED_INFORMATION right on older systems than
*c2e0c6b5SAndroid Build Coastguard Worker   * Windows Vista (NT 6.0).
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  version.dwOSVersionInfoSize = sizeof(version);
*c2e0c6b5SAndroid Build Coastguard Worker  if (GetVersionEx(&version) &&
*c2e0c6b5SAndroid Build Coastguard Worker      version.dwPlatformId == VER_PLATFORM_WIN32_NT &&
*c2e0c6b5SAndroid Build Coastguard Worker      version.dwMajorVersion >= 6)
*c2e0c6b5SAndroid Build Coastguard Worker    process_right = PROCESS_QUERY_LIMITED_INFORMATION;
*c2e0c6b5SAndroid Build Coastguard Worker  else
*c2e0c6b5SAndroid Build Coastguard Worker    process_right = PROCESS_QUERY_INFORMATION;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (with_vm_read)
*c2e0c6b5SAndroid Build Coastguard Worker    process_right |= PROCESS_VM_READ;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  process = OpenProcess(process_right, FALSE, pid);
*c2e0c6b5SAndroid Build Coastguard Worker  if (process)
*c2e0c6b5SAndroid Build Coastguard Worker    return process;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * It is possible to open only processes to which owner of the current
*c2e0c6b5SAndroid Build Coastguard Worker   * thread access token has permissions. For opening other processing it
*c2e0c6b5SAndroid Build Coastguard Worker   * is required to have Debug privilege enabled. By default local
*c2e0c6b5SAndroid Build Coastguard Worker   * administrators have this privilege, but it is disabled. So try to
*c2e0c6b5SAndroid Build Coastguard Worker   * enable it and then try to open process again.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!LookupPrivilegeValue(NULL, SE_DEBUG_NAME, &luid_debug_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker    return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!win32_enable_privilege(luid_debug_privilege, &revert_token, &revert_only_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker    return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  process = OpenProcess(process_right, FALSE, pid);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  win32_revert_privilege(luid_debug_privilege, revert_token, revert_only_privilege);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return process;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Check if process image path name (wide string) matches exe file name
*c2e0c6b5SAndroid Build Coastguard Worker * (7-bit ASCII string). Do case-insensitive string comparison. Process
*c2e0c6b5SAndroid Build Coastguard Worker * image path name can be in any namespace format (DOS, Win32, UNC, ...).
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic BOOL
*c2e0c6b5SAndroid Build Coastguard Workercheck_process_name(LPCWSTR path, DWORD path_length, LPCSTR exe_file)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD exe_file_length;
*c2e0c6b5SAndroid Build Coastguard Worker  WCHAR c1;
*c2e0c6b5SAndroid Build Coastguard Worker  UCHAR c2;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD i;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  exe_file_length = 0;
*c2e0c6b5SAndroid Build Coastguard Worker  while (exe_file[exe_file_length] != '\0')
*c2e0c6b5SAndroid Build Coastguard Worker    exe_file_length++;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* Path must have backslash before exe file name. */
*c2e0c6b5SAndroid Build Coastguard Worker  if (exe_file_length >= path_length ||
*c2e0c6b5SAndroid Build Coastguard Worker      path[path_length-exe_file_length-1] != L'\\')
*c2e0c6b5SAndroid Build Coastguard Worker    return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  for (i = 0; i < exe_file_length; i++)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      c1 = path[path_length-exe_file_length+i];
*c2e0c6b5SAndroid Build Coastguard Worker      c2 = exe_file[i];
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * Input string for comparison is 7-bit ASCII and file name part
*c2e0c6b5SAndroid Build Coastguard Worker       * of path must not contain backslash as it is path separator.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      if (c1 >= 0x80 || c2 >= 0x80 || c1 == L'\\')
*c2e0c6b5SAndroid Build Coastguard Worker        return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker      if (c1 >= L'a' && c1 <= L'z')
*c2e0c6b5SAndroid Build Coastguard Worker        c1 -= L'a' - L'A';
*c2e0c6b5SAndroid Build Coastguard Worker      if (c2 >= 'a' && c2 <= 'z')
*c2e0c6b5SAndroid Build Coastguard Worker        c2 -= 'a' - 'A';
*c2e0c6b5SAndroid Build Coastguard Worker      if (c1 != c2)
*c2e0c6b5SAndroid Build Coastguard Worker        return FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/* Open process handle with the query right specified by process exe file. */
*c2e0c6b5SAndroid Build Coastguard WorkerHANDLE
*c2e0c6b5SAndroid Build Coastguard Workerwin32_find_and_open_process_for_query(LPCSTR exe_file)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  GetProcessImageFileNameWProt MyGetProcessImageFileNameW;
*c2e0c6b5SAndroid Build Coastguard Worker  GetModuleFileNameExWProt MyGetModuleFileNameExW;
*c2e0c6b5SAndroid Build Coastguard Worker  EnumProcessesProt MyEnumProcesses;
*c2e0c6b5SAndroid Build Coastguard Worker  HMODULE kernel32, psapi;
*c2e0c6b5SAndroid Build Coastguard Worker  UINT prev_error_mode;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD partial_retry;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL found_process;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD size, length;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD *processes;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE process;
*c2e0c6b5SAndroid Build Coastguard Worker  LPWSTR path;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD error;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD count;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD i;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  psapi = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker  kernel32 = GetModuleHandle(TEXT("kernel32.dll"));
*c2e0c6b5SAndroid Build Coastguard Worker  if (!kernel32)
*c2e0c6b5SAndroid Build Coastguard Worker    return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * On Windows 7 and higher systems these functions are available in
*c2e0c6b5SAndroid Build Coastguard Worker   * kernel32.dll library with K32 prefix.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  MyGetModuleFileNameExW = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker  MyGetProcessImageFileNameW = (GetProcessImageFileNameWProt)(LPVOID)GetProcAddress(kernel32, "K32GetProcessImageFileNameW");
*c2e0c6b5SAndroid Build Coastguard Worker  MyEnumProcesses = (EnumProcessesProt)(LPVOID)GetProcAddress(kernel32, "K32EnumProcesses");
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MyGetProcessImageFileNameW || !MyEnumProcesses)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * On older NT-based systems these functions are available in
*c2e0c6b5SAndroid Build Coastguard Worker       * psapi.dll library without K32 prefix.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      prev_error_mode = win32_change_error_mode(SEM_FAILCRITICALERRORS | SEM_NOOPENFILEERRORBOX);
*c2e0c6b5SAndroid Build Coastguard Worker      psapi = LoadLibrary(TEXT("psapi.dll"));
*c2e0c6b5SAndroid Build Coastguard Worker      win32_change_error_mode(prev_error_mode);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      if (!psapi)
*c2e0c6b5SAndroid Build Coastguard Worker        return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * Function GetProcessImageFileNameW() is available in
*c2e0c6b5SAndroid Build Coastguard Worker       * Windows XP and higher systems. On older versions is
*c2e0c6b5SAndroid Build Coastguard Worker       * available function GetModuleFileNameExW().
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      MyGetProcessImageFileNameW = (GetProcessImageFileNameWProt)(LPVOID)GetProcAddress(psapi, "GetProcessImageFileNameW");
*c2e0c6b5SAndroid Build Coastguard Worker      MyGetModuleFileNameExW = (GetModuleFileNameExWProt)(LPVOID)GetProcAddress(psapi, "GetModuleFileNameExW");
*c2e0c6b5SAndroid Build Coastguard Worker      MyEnumProcesses = (EnumProcessesProt)(LPVOID)GetProcAddress(psapi, "EnumProcesses");
*c2e0c6b5SAndroid Build Coastguard Worker      if ((!MyGetProcessImageFileNameW && !MyGetModuleFileNameExW) || !MyEnumProcesses)
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          FreeLibrary(psapi);
*c2e0c6b5SAndroid Build Coastguard Worker          return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* Make initial buffer size for 1024 processes. */
*c2e0c6b5SAndroid Build Coastguard Worker  size = 1024 * sizeof(*processes);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerretry:
*c2e0c6b5SAndroid Build Coastguard Worker  processes = (DWORD *)LocalAlloc(LPTR, size);
*c2e0c6b5SAndroid Build Coastguard Worker  if (!processes)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      if (psapi)
*c2e0c6b5SAndroid Build Coastguard Worker        FreeLibrary(psapi);
*c2e0c6b5SAndroid Build Coastguard Worker      return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!MyEnumProcesses(processes, size, &length))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(processes);
*c2e0c6b5SAndroid Build Coastguard Worker      if (psapi)
*c2e0c6b5SAndroid Build Coastguard Worker        FreeLibrary(psapi);
*c2e0c6b5SAndroid Build Coastguard Worker      return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker  else if (size == length)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * There is no indication given when the buffer is too small to
*c2e0c6b5SAndroid Build Coastguard Worker       * store all process identifiers. Therefore if returned length
*c2e0c6b5SAndroid Build Coastguard Worker       * is same as buffer size there can be more processes. Call
*c2e0c6b5SAndroid Build Coastguard Worker       * again with larger buffer.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      LocalFree(processes);
*c2e0c6b5SAndroid Build Coastguard Worker      size *= 2;
*c2e0c6b5SAndroid Build Coastguard Worker      goto retry;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  process = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker  count = length / sizeof(*processes);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  for (i = 0; i < count; i++)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      /* Skip System Idle Process. */
*c2e0c6b5SAndroid Build Coastguard Worker      if (processes[i] == 0)
*c2e0c6b5SAndroid Build Coastguard Worker        continue;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * Function GetModuleFileNameExW() requires additional
*c2e0c6b5SAndroid Build Coastguard Worker       * PROCESS_VM_READ right as opposite to function
*c2e0c6b5SAndroid Build Coastguard Worker       * GetProcessImageFileNameW() which does not need it.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      process = open_process_for_query(processes[i], MyGetProcessImageFileNameW ? FALSE : TRUE);
*c2e0c6b5SAndroid Build Coastguard Worker      if (!process)
*c2e0c6b5SAndroid Build Coastguard Worker        continue;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * Set initial buffer size to 256 (wide) characters.
*c2e0c6b5SAndroid Build Coastguard Worker       * Final path length on the modern NT-based systems can be also larger.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      size = 256;
*c2e0c6b5SAndroid Build Coastguard Worker      found_process = FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker      partial_retry = 0;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerretry_path:
*c2e0c6b5SAndroid Build Coastguard Worker      path = (LPWSTR)LocalAlloc(LPTR, size * sizeof(*path));
*c2e0c6b5SAndroid Build Coastguard Worker      if (!path)
*c2e0c6b5SAndroid Build Coastguard Worker        goto end_path;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      if (MyGetProcessImageFileNameW)
*c2e0c6b5SAndroid Build Coastguard Worker        length = MyGetProcessImageFileNameW(process, path, size);
*c2e0c6b5SAndroid Build Coastguard Worker      else
*c2e0c6b5SAndroid Build Coastguard Worker        length = MyGetModuleFileNameExW(process, NULL, path, size);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      error = GetLastError();
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * GetModuleFileNameEx() returns zero and signal error ERROR_PARTIAL_COPY
*c2e0c6b5SAndroid Build Coastguard Worker       * when remote process is in the middle of updating its module table.
*c2e0c6b5SAndroid Build Coastguard Worker       * Sleep 10 ms and try again, max 10 attempts.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      if (!MyGetProcessImageFileNameW)
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          if (length == 0 && error == ERROR_PARTIAL_COPY && partial_retry++ < 10)
*c2e0c6b5SAndroid Build Coastguard Worker            {
*c2e0c6b5SAndroid Build Coastguard Worker              Sleep(10);
*c2e0c6b5SAndroid Build Coastguard Worker              goto retry_path;
*c2e0c6b5SAndroid Build Coastguard Worker            }
*c2e0c6b5SAndroid Build Coastguard Worker          partial_retry = 0;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * When buffer is too small then function GetModuleFileNameEx() returns
*c2e0c6b5SAndroid Build Coastguard Worker       * its size argument on older systems (Windows XP) or its size minus
*c2e0c6b5SAndroid Build Coastguard Worker       * argument one on new systems (Windows 10) without signalling any error.
*c2e0c6b5SAndroid Build Coastguard Worker       * Function GetProcessImageFileNameW() on the other hand returns zero
*c2e0c6b5SAndroid Build Coastguard Worker       * value and signals error ERROR_INSUFFICIENT_BUFFER. So in all these
*c2e0c6b5SAndroid Build Coastguard Worker       * cases call function again with larger buffer.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      if (MyGetProcessImageFileNameW && length == 0 && error != ERROR_INSUFFICIENT_BUFFER)
*c2e0c6b5SAndroid Build Coastguard Worker        goto end_path;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      if ((MyGetProcessImageFileNameW && length == 0) ||
*c2e0c6b5SAndroid Build Coastguard Worker          (!MyGetProcessImageFileNameW && (length == size || length == size-1)))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          LocalFree(path);
*c2e0c6b5SAndroid Build Coastguard Worker          size *= 2;
*c2e0c6b5SAndroid Build Coastguard Worker          goto retry_path;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      if (length && check_process_name(path, length, exe_file))
*c2e0c6b5SAndroid Build Coastguard Worker        found_process = TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerend_path:
*c2e0c6b5SAndroid Build Coastguard Worker      if (path)
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          LocalFree(path);
*c2e0c6b5SAndroid Build Coastguard Worker          path = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      if (found_process)
*c2e0c6b5SAndroid Build Coastguard Worker        break;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      CloseHandle(process);
*c2e0c6b5SAndroid Build Coastguard Worker      process = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  LocalFree(processes);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (psapi)
*c2e0c6b5SAndroid Build Coastguard Worker    FreeLibrary(psapi);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return process;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Try to open primary access token of the particular process with specified
*c2e0c6b5SAndroid Build Coastguard Worker * rights. Before opening access token try to adjust DACL permissions of the
*c2e0c6b5SAndroid Build Coastguard Worker * primary process access token, so following open does not fail on error
*c2e0c6b5SAndroid Build Coastguard Worker * related to no open permissions. Revert DACL permissions after open attempt.
*c2e0c6b5SAndroid Build Coastguard Worker * As following steps are not atomic, try to execute them more times in case
*c2e0c6b5SAndroid Build Coastguard Worker * of possible race conditions caused by other threads or processes.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard Workerstatic HANDLE
*c2e0c6b5SAndroid Build Coastguard Workertry_grant_permissions_and_open_process_token(HANDLE process, DWORD rights)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  PSECURITY_DESCRIPTOR old_security_descriptor;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE grant_token;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE token;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD retry;
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD error;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * This code is not atomic. Between grant and open calls can other
*c2e0c6b5SAndroid Build Coastguard Worker   * thread or process change or revert permissions. So try to execute
*c2e0c6b5SAndroid Build Coastguard Worker   * it more times.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  for (retry = 0; retry < 10; retry++)
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      if (!grant_process_token_dacl_permissions(process, rights, &grant_token, &old_security_descriptor))
*c2e0c6b5SAndroid Build Coastguard Worker        return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker      if (!OpenProcessToken(process, rights, &token))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          token = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker          error = GetLastError();
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker      if (old_security_descriptor)
*c2e0c6b5SAndroid Build Coastguard Worker        revert_token_dacl_permissions(grant_token, old_security_descriptor);
*c2e0c6b5SAndroid Build Coastguard Worker      if (token)
*c2e0c6b5SAndroid Build Coastguard Worker        return token;
*c2e0c6b5SAndroid Build Coastguard Worker      else if (error != ERROR_ACCESS_DENIED)
*c2e0c6b5SAndroid Build Coastguard Worker        return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Open primary access token of particular process handle with specified rights.
*c2e0c6b5SAndroid Build Coastguard Worker * If permissions for specified rights are missing then try to grant them.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerHANDLE
*c2e0c6b5SAndroid Build Coastguard Workerwin32_open_process_token_with_rights(HANDLE process, DWORD rights)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE old_token;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* First try to open primary access token of process handle directly. */
*c2e0c6b5SAndroid Build Coastguard Worker  if (OpenProcessToken(process, rights, &token))
*c2e0c6b5SAndroid Build Coastguard Worker    return token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If opening failed then it means that owner of the current thread
*c2e0c6b5SAndroid Build Coastguard Worker   * access token does not have permission for it. Try it again with
*c2e0c6b5SAndroid Build Coastguard Worker   * primary process access token.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (change_token_to_primary(&old_token))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      if (!OpenProcessToken(process, rights, &token))
*c2e0c6b5SAndroid Build Coastguard Worker        token = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker      win32_revert_to_token(old_token);
*c2e0c6b5SAndroid Build Coastguard Worker      if (token)
*c2e0c6b5SAndroid Build Coastguard Worker        return token;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If opening is still failing then try to grant specified permissions
*c2e0c6b5SAndroid Build Coastguard Worker   * for the current thread and try to open it again.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  token = try_grant_permissions_and_open_process_token(process, rights);
*c2e0c6b5SAndroid Build Coastguard Worker  if (token)
*c2e0c6b5SAndroid Build Coastguard Worker    return token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * And if it is still failing then try it again with granting
*c2e0c6b5SAndroid Build Coastguard Worker   * permissions for the primary process token of the current process.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (change_token_to_primary(&old_token))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      token = try_grant_permissions_and_open_process_token(process, rights);
*c2e0c6b5SAndroid Build Coastguard Worker      win32_revert_to_token(old_token);
*c2e0c6b5SAndroid Build Coastguard Worker      if (token)
*c2e0c6b5SAndroid Build Coastguard Worker        return token;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * TODO: Sorry, no other option for now...
*c2e0c6b5SAndroid Build Coastguard Worker   * It could be possible to use Take Ownership Name privilege to
*c2e0c6b5SAndroid Build Coastguard Worker   * temporary change token owner of specified process to the owner of
*c2e0c6b5SAndroid Build Coastguard Worker   * the current thread token, grant permissions for current thread in
*c2e0c6b5SAndroid Build Coastguard Worker   * that process token, change ownership back to original one, open
*c2e0c6b5SAndroid Build Coastguard Worker   * that process token and revert granted permissions. But this is
*c2e0c6b5SAndroid Build Coastguard Worker   * not implemented yet.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  return NULL;
*c2e0c6b5SAndroid Build Coastguard Worker}
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker/*
*c2e0c6b5SAndroid Build Coastguard Worker * Call supplied function with its argument and if it fails with
*c2e0c6b5SAndroid Build Coastguard Worker * ERROR_PRIVILEGE_NOT_HELD then try to enable Tcb privilege and
*c2e0c6b5SAndroid Build Coastguard Worker * call function with its argument again.
*c2e0c6b5SAndroid Build Coastguard Worker */
*c2e0c6b5SAndroid Build Coastguard WorkerBOOL
*c2e0c6b5SAndroid Build Coastguard Workerwin32_call_func_with_tcb_privilege(BOOL (*function)(LPVOID), LPVOID argument)
*c2e0c6b5SAndroid Build Coastguard Worker{
*c2e0c6b5SAndroid Build Coastguard Worker  LUID luid_tcb_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker  LUID luid_impersonate_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE revert_token_tcb_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL revert_only_tcb_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE revert_token_impersonate_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL revert_only_impersonate_privilege;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL impersonate_privilege_enabled;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL revert_to_old_token;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE old_token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE lsass_process;
*c2e0c6b5SAndroid Build Coastguard Worker  HANDLE lsass_token;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  DWORD error;
*c2e0c6b5SAndroid Build Coastguard Worker  BOOL ret;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  impersonate_privilege_enabled = FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker  revert_to_old_token = FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker  lsass_token = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker  old_token = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* Call supplied function. */
*c2e0c6b5SAndroid Build Coastguard Worker  ret = function(argument);
*c2e0c6b5SAndroid Build Coastguard Worker  if (ret || GetLastError() != ERROR_PRIVILEGE_NOT_HELD)
*c2e0c6b5SAndroid Build Coastguard Worker    goto ret;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If function call failed with ERROR_PRIVILEGE_NOT_HELD
*c2e0c6b5SAndroid Build Coastguard Worker   * error then it means that the current thread token does not have
*c2e0c6b5SAndroid Build Coastguard Worker   * Tcb privilege enabled. Try to enable it.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!LookupPrivilegeValue(NULL, SE_TCB_NAME, &luid_tcb_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker    goto err_privilege_not_held;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If the current thread has already Tcb privilege enabled then there
*c2e0c6b5SAndroid Build Coastguard Worker   * is some additional unhanded restriction.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (win32_have_privilege(luid_tcb_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker    goto err_privilege_not_held;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /* Try to enable Tcb privilege and try function call again. */
*c2e0c6b5SAndroid Build Coastguard Worker  if (win32_enable_privilege(luid_tcb_privilege, &revert_token_tcb_privilege, &revert_only_tcb_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      ret = function(argument);
*c2e0c6b5SAndroid Build Coastguard Worker      win32_revert_privilege(luid_tcb_privilege, revert_token_tcb_privilege, revert_only_tcb_privilege);
*c2e0c6b5SAndroid Build Coastguard Worker      goto ret;
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If enabling of Tcb privilege failed then it means that current thread
*c2e0c6b5SAndroid Build Coastguard Worker   * does not have this privilege. But current process may have it. So try it
*c2e0c6b5SAndroid Build Coastguard Worker   * again with primary process access token.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If system supports Impersonate privilege (Windows 2000 SP4 or higher) then
*c2e0c6b5SAndroid Build Coastguard Worker   * all future actions in this function require this Impersonate privilege.
*c2e0c6b5SAndroid Build Coastguard Worker   * So try to enable it in case it is currently disabled.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (LookupPrivilegeValue(NULL, SE_IMPERSONATE_NAME, &luid_impersonate_privilege) &&
*c2e0c6b5SAndroid Build Coastguard Worker      !win32_have_privilege(luid_impersonate_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker    {
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * If current thread does not have Impersonate privilege enabled
*c2e0c6b5SAndroid Build Coastguard Worker       * then first try to enable it just for the current thread. If
*c2e0c6b5SAndroid Build Coastguard Worker       * it is not possible to enable it just for the current thread
*c2e0c6b5SAndroid Build Coastguard Worker       * then try it to enable globally for whole process (which
*c2e0c6b5SAndroid Build Coastguard Worker       * affects all process threads). Both actions will be reverted
*c2e0c6b5SAndroid Build Coastguard Worker       * at the end of this function.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      if (win32_enable_privilege(luid_impersonate_privilege, &revert_token_impersonate_privilege, &revert_only_impersonate_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          impersonate_privilege_enabled = TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker      else if (win32_enable_privilege(luid_impersonate_privilege, NULL, NULL))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          impersonate_privilege_enabled = TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker          revert_token_impersonate_privilege = NULL;
*c2e0c6b5SAndroid Build Coastguard Worker          revert_only_impersonate_privilege = TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker      else
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          goto err_privilege_not_held;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker      /*
*c2e0c6b5SAndroid Build Coastguard Worker       * Now when Impersonate privilege is enabled, try to enable Tcb
*c2e0c6b5SAndroid Build Coastguard Worker       * privilege again. Enabling other privileges for the current
*c2e0c6b5SAndroid Build Coastguard Worker       * thread requires Impersonate privilege, so enabling Tcb again
*c2e0c6b5SAndroid Build Coastguard Worker       * could now pass.
*c2e0c6b5SAndroid Build Coastguard Worker       */
*c2e0c6b5SAndroid Build Coastguard Worker      if (win32_enable_privilege(luid_tcb_privilege, &revert_token_tcb_privilege, &revert_only_tcb_privilege))
*c2e0c6b5SAndroid Build Coastguard Worker        {
*c2e0c6b5SAndroid Build Coastguard Worker          ret = function(argument);
*c2e0c6b5SAndroid Build Coastguard Worker          win32_revert_privilege(luid_tcb_privilege, revert_token_tcb_privilege, revert_only_tcb_privilege);
*c2e0c6b5SAndroid Build Coastguard Worker          goto ret;
*c2e0c6b5SAndroid Build Coastguard Worker        }
*c2e0c6b5SAndroid Build Coastguard Worker    }
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * If enabling Tcb privilege failed then it means that the current
*c2e0c6b5SAndroid Build Coastguard Worker   * thread access token does not have this privilege or does not
*c2e0c6b5SAndroid Build Coastguard Worker   * have permission to adjust privileges.
*c2e0c6b5SAndroid Build Coastguard Worker   *
*c2e0c6b5SAndroid Build Coastguard Worker   * Try to use more privileged token from Local Security Authority
*c2e0c6b5SAndroid Build Coastguard Worker   * Subsystem Service process (lsass.exe) which has Tcb privilege.
*c2e0c6b5SAndroid Build Coastguard Worker   * Retrieving this more privileged token is possible for local
*c2e0c6b5SAndroid Build Coastguard Worker   * administrators (unless it was disabled by local administrators).
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  lsass_process = win32_find_and_open_process_for_query("lsass.exe");
*c2e0c6b5SAndroid Build Coastguard Worker  if (!lsass_process)
*c2e0c6b5SAndroid Build Coastguard Worker    goto err_privilege_not_held;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Open primary lsass.exe process access token with query and duplicate
*c2e0c6b5SAndroid Build Coastguard Worker   * rights. Just these two rights are required for impersonating other
*c2e0c6b5SAndroid Build Coastguard Worker   * primary process token (impersonate right is really not required!).
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  lsass_token = win32_open_process_token_with_rights(lsass_process, TOKEN_QUERY | TOKEN_DUPLICATE);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  CloseHandle(lsass_process);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (!lsass_token)
*c2e0c6b5SAndroid Build Coastguard Worker    goto err_privilege_not_held;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * After successful open of the primary lsass.exe process access token,
*c2e0c6b5SAndroid Build Coastguard Worker   * assign its copy for the current thread.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (!win32_change_token(lsass_token, &old_token))
*c2e0c6b5SAndroid Build Coastguard Worker    goto err_privilege_not_held;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  revert_to_old_token = TRUE;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  ret = function(argument);
*c2e0c6b5SAndroid Build Coastguard Worker  if (ret || GetLastError() != ERROR_PRIVILEGE_NOT_HELD)
*c2e0c6b5SAndroid Build Coastguard Worker    goto ret;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  /*
*c2e0c6b5SAndroid Build Coastguard Worker   * Now current thread is not using primary process token anymore
*c2e0c6b5SAndroid Build Coastguard Worker   * but is using custom access token. There is no need to revert
*c2e0c6b5SAndroid Build Coastguard Worker   * enabled Tcb privilege as the whole custom access token would
*c2e0c6b5SAndroid Build Coastguard Worker   * be reverted. So there is no need to setup revert method for
*c2e0c6b5SAndroid Build Coastguard Worker   * enabling privilege.
*c2e0c6b5SAndroid Build Coastguard Worker   */
*c2e0c6b5SAndroid Build Coastguard Worker  if (win32_have_privilege(luid_tcb_privilege) ||
*c2e0c6b5SAndroid Build Coastguard Worker      !win32_enable_privilege(luid_tcb_privilege, NULL, NULL))
*c2e0c6b5SAndroid Build Coastguard Worker    goto err_privilege_not_held;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  ret = function(argument);
*c2e0c6b5SAndroid Build Coastguard Worker  goto ret;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workererr_privilege_not_held:
*c2e0c6b5SAndroid Build Coastguard Worker  SetLastError(ERROR_PRIVILEGE_NOT_HELD);
*c2e0c6b5SAndroid Build Coastguard Worker  ret = FALSE;
*c2e0c6b5SAndroid Build Coastguard Worker  goto ret;
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Workerret:
*c2e0c6b5SAndroid Build Coastguard Worker  error = GetLastError();
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (revert_to_old_token)
*c2e0c6b5SAndroid Build Coastguard Worker    win32_revert_to_token(old_token);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (impersonate_privilege_enabled)
*c2e0c6b5SAndroid Build Coastguard Worker    win32_revert_privilege(luid_impersonate_privilege, revert_token_impersonate_privilege, revert_only_impersonate_privilege);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  if (lsass_token)
*c2e0c6b5SAndroid Build Coastguard Worker    CloseHandle(lsass_token);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  SetLastError(error);
*c2e0c6b5SAndroid Build Coastguard Worker
*c2e0c6b5SAndroid Build Coastguard Worker  return ret;
*c2e0c6b5SAndroid Build Coastguard Worker}