sandbox/win/src/nt_internals.h - Issue 1328703003: Correct PROCESS_BASIC_INFORMATION for 64 bit Windows.

Side by Side Diff: sandbox/win/src/nt_internals.h

Issue 1328703003: Correct PROCESS_BASIC_INFORMATION for 64 bit Windows. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Rebase Created 5 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
1 // Copyright 2013 The Chromium Authors. All rights reserved.	1 // Copyright 2013 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 // This file holds definitions related to the ntdll API.	5 // This file holds definitions related to the ntdll API.

6	6

7 #ifndef SANDBOX_WIN_SRC_NT_INTERNALS_H__	7 #ifndef SANDBOX_WIN_SRC_NT_INTERNALS_H__

8 #define SANDBOX_WIN_SRC_NT_INTERNALS_H__	8 #define SANDBOX_WIN_SRC_NT_INTERNALS_H__

9	9

10 #include <windows.h>	10 #include <windows.h>

(...skipping 293 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
304 // Partial definition only:	304 // Partial definition only:

305 typedef enum _PROCESSINFOCLASS {	305 typedef enum _PROCESSINFOCLASS {

306 ProcessBasicInformation = 0,	306 ProcessBasicInformation = 0,

307 ProcessExecuteFlags = 0x22	307 ProcessExecuteFlags = 0x22

308 } PROCESSINFOCLASS;	308 } PROCESSINFOCLASS;

309	309

310 typedef PVOID PPEB;	310 typedef PVOID PPEB;

311 typedef PVOID KPRIORITY;	311 typedef PVOID KPRIORITY;

312	312

313 typedef struct _PROCESS_BASIC_INFORMATION {	313 typedef struct _PROCESS_BASIC_INFORMATION {

314 NTSTATUS ExitStatus;	314 PVOID ExitStatus;
	scottmg 2015/09/03 16:18:52 This should be NTSTATUS on both x86 and x64, follo This should be NTSTATUS on both x86 and x64, followed by 4bytes padding on x64. MSDN documentation likely makes the reserved fields PVOID to imply that they're opaque/internal but to make sure the size is correct. rickyz (no longer on Chrome) 2015/09/03 19:16:29 Done. Show quoted text On 2015/09/03 16:18:52, scottmg wrote: > This should be NTSTATUS on both x86 and x64, followed by 4bytes padding on x64. > > MSDN documentation likely makes the reserved fields PVOID to imply that they're > opaque/internal but to make sure the size is correct. Done.
315 PPEB PebBaseAddress;	315 PPEB PebBaseAddress;

316 KAFFINITY AffinityMask;	316 KAFFINITY AffinityMask;

317 KPRIORITY BasePriority;	317 KPRIORITY BasePriority;
	scottmg 2015/09/03 16:18:52 KPRIORITY is also 4 bytes, so this should be follo KPRIORITY is also 4 bytes, so this should be followed by 4 bytes padding on x64... rickyz (no longer on Chrome) 2015/09/03 19:16:29 Oops, fixed the definition of KPRIORITY in the fil Show quoted text On 2015/09/03 16:18:52, scottmg wrote: > KPRIORITY is also 4 bytes, so this should be followed by 4 bytes padding on > x64... Oops, fixed the definition of KPRIORITY in the file.
318 ULONG UniqueProcessId;	318 ULONG_PTR UniqueProcessId;
	scottmg 2015/09/03 16:18:52 ... because both the ProcessIds are both ULONG_PTR ... because both the ProcessIds are both ULONG_PTR. rickyz (no longer on Chrome) 2015/09/03 19:16:29 Yeah.. the ExitStatus one I can understand - that' Show quoted text On 2015/09/03 16:18:52, scottmg wrote: > ... because both the ProcessIds are both ULONG_PTR. Yeah.. the ExitStatus one I can understand - that's just being explicit about alignment. I have no idea why they reserve 8 bytes for process ids here - it's like CLIENT_ID where the process/thread ids are HANDLEs instead of DWORDs. Anyway, I switched to the union approach that crashpad uses.
319 ULONG InheritedFromUniqueProcessId;	319 PVOID InheritedFromUniqueProcessId;

320 } PROCESS_BASIC_INFORMATION, *PPROCESS_BASIC_INFORMATION;	320 } PROCESS_BASIC_INFORMATION, *PPROCESS_BASIC_INFORMATION;

321	321

322 typedef NTSTATUS (WINAPI *NtQueryInformationProcessFunction)(	322 typedef NTSTATUS (WINAPI *NtQueryInformationProcessFunction)(

323 IN HANDLE ProcessHandle,	323 IN HANDLE ProcessHandle,

324 IN PROCESSINFOCLASS ProcessInformationClass,	324 IN PROCESSINFOCLASS ProcessInformationClass,

325 OUT PVOID ProcessInformation,	325 OUT PVOID ProcessInformation,

326 IN ULONG ProcessInformationLength,	326 IN ULONG ProcessInformationLength,

327 OUT PULONG ReturnLength OPTIONAL);	327 OUT PULONG ReturnLength OPTIONAL);

328	328

329 typedef NTSTATUS (WINAPI *NtSetInformationProcessFunction)(	329 typedef NTSTATUS (WINAPI *NtSetInformationProcessFunction)(

(...skipping 351 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
681	681

682 struct PROCESS_ACCESS_TOKEN {	682 struct PROCESS_ACCESS_TOKEN {

683 HANDLE token;	683 HANDLE token;

684 HANDLE thread;	684 HANDLE thread;

685 };	685 };

686	686

687 const unsigned int NtProcessInformationAccessToken = 9;	687 const unsigned int NtProcessInformationAccessToken = 9;

688	688

689 #endif // SANDBOX_WIN_SRC_NT_INTERNALS_H__	689 #endif // SANDBOX_WIN_SRC_NT_INTERNALS_H__

690	690

OLD	NEW

« no previous file with comments | « sandbox/win/sandbox_win.gypi ('k') | sandbox/win/src/policy_broker.h » ('j') | no next file with comments »