Intravision/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2025-08-05 21:03:00 +00:00
Code Issues Projects Releases Packages Wiki Activity

Improvements to NtAdjustPrivilegesToken part 4 (last one):

Browse source 
- SEH-protect all code that writes to PreviousState as it cannot be captured.
- Add a missing ObDereferenceObject and SeReleaseLuidAndAttributesArray.

svn path=/trunk/; revision=48721
This commit is contained in:
Eric Kohl 2010-09-07 15:08:29 +00:00
parent e851b3ba21
commit 340a34cec4
1 changed files with 79 additions and 49 deletions
Download patch file Download diff file Expand all files Collapse all files

30
reactos/ntoskrnl/se/token.c
View file

@ -2117,6 +2117,15 @@ NtAdjustPrivilegesToken(IN HANDLE TokenHandle,
} }
_SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER) _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
{ {
/* Dereference the token */
ObDereferenceObject(Token);
/* Release the captured privileges */
if (CapturedPrivileges != NULL)
SeReleaseLuidAndAttributesArray(CapturedPrivileges,
PreviousMode,
TRUE);
/* Return the exception code */ /* Return the exception code */
_SEH2_YIELD(return _SEH2_GetExceptionCode()); _SEH2_YIELD(return _SEH2_GetExceptionCode());
} }
@ -2125,7 +2134,10 @@ NtAdjustPrivilegesToken(IN HANDLE TokenHandle,
/* Fail, if the buffer length is smaller than the required length */ /* Fail, if the buffer length is smaller than the required length */
if (BufferLength < RequiredLength) if (BufferLength < RequiredLength)
{ {
/* Dereference the token */
ObDereferenceObject(Token); ObDereferenceObject(Token);
/* Release the captured privileges */
if (CapturedPrivileges != NULL) if (CapturedPrivileges != NULL)
SeReleaseLuidAndAttributesArray(CapturedPrivileges, SeReleaseLuidAndAttributesArray(CapturedPrivileges,
PreviousMode, PreviousMode,
@ -2137,6 +2149,8 @@ NtAdjustPrivilegesToken(IN HANDLE TokenHandle,
/* Change the privilege attributes */ /* Change the privilege attributes */
ChangeCount = 0; ChangeCount = 0;
_SEH2_TRY
{
for (i = 0; i < Token->PrivilegeCount; i++) for (i = 0; i < Token->PrivilegeCount; i++)
{ {
if (DisableAllPrivileges == TRUE) if (DisableAllPrivileges == TRUE)
@ -2200,6 +2214,22 @@ NtAdjustPrivilegesToken(IN HANDLE TokenHandle,
/* Set the number of saved privileges */ /* Set the number of saved privileges */
if (PreviousState != NULL) if (PreviousState != NULL)
PreviousState->PrivilegeCount = ChangeCount; PreviousState->PrivilegeCount = ChangeCount;
}
_SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
{
/* Dereference the token */
ObDereferenceObject(Token);
/* Release the captured privileges */
if (CapturedPrivileges != NULL)
SeReleaseLuidAndAttributesArray(CapturedPrivileges,
PreviousMode,
TRUE);
/* Return the exception code */
_SEH2_YIELD(return _SEH2_GetExceptionCode());
}
_SEH2_END;
/* Set the status */ /* Set the status */
Status = (ChangeCount < CapturedCount) ? STATUS_NOT_ALL_ASSIGNED : STATUS_SUCCESS; Status = (ChangeCount < CapturedCount) ? STATUS_NOT_ALL_ASSIGNED : STATUS_SUCCESS;