mirror of
https://github.com/reactos/reactos.git
synced 2024-10-05 00:43:21 +00:00
7f9282927b
- SeIsTokenChild(): Correctly check whether a caller-provided token is a child from the current process' primary token by looking at its ParentTokenId member. - Add a SeIsTokenSibling() helper to determine whether a caller-provided token and the current process' primary token are siblings, by comparing their ParentTokenId's and AuthenticationId's. NOTE: Children tokens are created through CreateRestrictedToken(); sibling tokens are created through DuplicateToken() (amongst others). See slide 49 of https://www.slideshare.net/Shakacon/social-engineering-the-windows-kernel-by-james-forshaw or https://googleprojectzero.blogspot.com/2016/01/raising-dead.html for some details. |
||
---|---|---|
.. | ||
amd64 | ||
arch | ||
arm | ||
i386 | ||
powerpc | ||
cc.h | ||
cm.h | ||
cm_x.h | ||
dbgk.h | ||
ex.h | ||
fsrtl.h | ||
hal.h | ||
hdl.h | ||
inbv.h | ||
io.h | ||
io_i.h | ||
io_x.h | ||
kd.h | ||
kd64.h | ||
ke.h | ||
ke_x.h | ||
ldr.h | ||
lpc.h | ||
lpc_x.h | ||
mm.h | ||
napi.h | ||
ntoskrnl.h | ||
ob.h | ||
ob_x.h | ||
po.h | ||
probe.h | ||
ps.h | ||
ps_i.h | ||
ps_x.h | ||
rtl.h | ||
se.h | ||
spinlock.h | ||
tag.h | ||
test.h | ||
vdm.h |