DBG+GUI: fixed some stuff with HandlesView

mrexodia · mrexodia · commit 57c3279c3cfd · 2016-05-27T23:24:40.000+02:00
diff --git a/src/dbg/enumhandles.cpp b/src/dbg/enumhandles.cpp
@@ -57,59 +57,46 @@ DWORD(__stdcall* NtQueryObject)(HANDLE ObjectHandle, ULONG ObjectInformationClas
 
 extern "C" DLL_EXPORT long _dbg_enumhandles(duint* handles, unsigned char* typeNumbers, unsigned int* grantedAccess, unsigned int maxcount)
 {
-    MYHANDLES* myhandles = (MYHANDLES*)emalloc(16384, "_dbg_enumhandles");
+    Memory<MYHANDLES*> myhandles(16 * 1024 * 1024, "_dbg_enumhandles");
     DWORD size = 16384;
     DWORD errcode = 0xC0000004;
     if(NtQuerySystemInformation == nullptr)
         *(FARPROC*)&NtQuerySystemInformation = GetProcAddress(GetModuleHandleW(L"ntdll.dll"), "NtQuerySystemInformation");
     while(errcode == 0xC0000004)
     {
-        errcode = NtQuerySystemInformation(16, myhandles, size, &size);
-        if(errcode == 0xC0000004)
-        {
-            myhandles = (MYHANDLES*)erealloc(myhandles, size + 16384, "_dbg_enumhandles");
-            size += 16384;
-        }
-        else
-        {
+        errcode = NtQuerySystemInformation(16, myhandles(), size, &size);
+        if(errcode != 0xC0000004)
             break;
-        }
+        myhandles.realloc(myhandles.size() * 2, "_dbg_enumhandles");
     }
     if(errcode != 0)
-    {
-        efree(myhandles, "_dbg_enumhandles");
         return 0;
-    }
-    else
+
+    unsigned int j = 0;
+    for(unsigned int i = 0; i < myhandles()->HandleCount; i++)
     {
-        unsigned int j = 0;
-        for(unsigned int i = 0; i < myhandles->HandleCount; i++)
+        DWORD pid = fdProcessInfo->dwProcessId;
+        if(myhandles()->Handles[i].ProcessId == pid)
         {
-            DWORD pid = fdProcessInfo->dwProcessId;
-            if(myhandles->Handles[i].ProcessId == pid)
-            {
-                handles[j] = myhandles->Handles[j].Handle;
-                typeNumbers[j] = myhandles->Handles[j].ObjectTypeNumber;
-                grantedAccess[j] = myhandles->Handles[j].GrantedAccess;
-                if(++j == maxcount) break;
-            }
+            handles[j] = myhandles()->Handles[j].Handle;
+            typeNumbers[j] = myhandles()->Handles[j].ObjectTypeNumber;
+            grantedAccess[j] = myhandles()->Handles[j].GrantedAccess;
+            if(++j == maxcount) break;
         }
-        efree(myhandles, "_dbg_enumhandles");
-        return j;
     }
+    return j;
 }
 
 extern "C" DLL_EXPORT bool _dbg_gethandlename(char* name, char* typeName, size_t buffersize, duint remotehandle)
 {
     HANDLE hLocalHandle;
     if(typeName && DuplicateHandle(fdProcessInfo->hProcess, (HANDLE)remotehandle, GetCurrentProcess(), &hLocalHandle, DUPLICATE_SAME_ACCESS, FALSE, 0))
     {
-        OBJECT_TYPE_INFORMATION* objectTypeInfo = (OBJECT_TYPE_INFORMATION*)emalloc(128, "_dbg_gethandlename");
+        Memory<OBJECT_TYPE_INFORMATION*> objectTypeInfo(128, "_dbg_gethandlename");
         if(NtQueryObject == nullptr)
             *(FARPROC*)&NtQueryObject = GetProcAddress(GetModuleHandleW(L"ntdll.dll"), "NtQueryObject");
-        if(NtQueryObject(hLocalHandle, 2, objectTypeInfo, 128, NULL) >= 0)
-            strcpy_s(typeName, buffersize, StringUtils::Utf16ToUtf8(objectTypeInfo->Name.Buffer).c_str());
-        efree(objectTypeInfo, "_dbg_gethandlename");
+        if(NtQueryObject(hLocalHandle, 2, objectTypeInfo(), 128, NULL) >= 0)
+            strcpy_s(typeName, buffersize, StringUtils::Utf16ToUtf8(objectTypeInfo()->Name.Buffer).c_str());
         CloseHandle(hLocalHandle);
     }
     wchar_t* buffer;
diff --git a/src/dbg/instruction.cpp b/src/dbg/instruction.cpp
@@ -2392,47 +2392,37 @@ CMDRESULT cbInstrMnemonicbrief(int argc, char* argv[])
     return STATUS_CONTINUE;
 }
 
-
 CMDRESULT cbGetPrivilegeState(int argc, char* argv[])
 {
-    TOKEN_PRIVILEGES* Privileges;
     DWORD returnLength;
     LUID luid;
     if(LookupPrivilegeValueW(nullptr, StringUtils::Utf8ToUtf16(argv[1]).c_str(), &luid) == 0)
     {
         varset("$result", (duint)0, false);
         return CMDRESULT::STATUS_CONTINUE;
     }
-    Privileges = (TOKEN_PRIVILEGES*)emalloc(64 * 16 + 8, "_dbg_getprivilegestate");
-    if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges, 64 * 16 + 8, &returnLength) == 0)
+    Memory <TOKEN_PRIVILEGES*> Privileges(64 * 16 + 8, "_dbg_getprivilegestate");
+    if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges(), 64 * 16 + 8, &returnLength) == 0)
     {
         if(returnLength > 4 * 1024 * 1024)
         {
             varset("$result", (duint)0, false);
             return CMDRESULT::STATUS_CONTINUE;
         }
-        Privileges = (TOKEN_PRIVILEGES*)erealloc(Privileges, returnLength, "_dbg_getprivilegestate");
-        if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges, returnLength, &returnLength) == 0)
-        {
-            efree(Privileges, "_dbg_getprivilegestate");
+        Privileges.realloc(returnLength, "_dbg_getprivilegestate");
+        if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges(), returnLength, &returnLength) == 0)
             return STATUS_ERROR;
-        }
     }
-    for(unsigned int i = 0; i < Privileges->PrivilegeCount; i++)
+    for(unsigned int i = 0; i < Privileges()->PrivilegeCount; i++)
     {
         if(4 + sizeof(LUID_AND_ATTRIBUTES) * i > returnLength)
-        {
-            efree(Privileges, "_dbg_getprivilegestate");
             return STATUS_ERROR;
-        }
-        if(memcmp(&Privileges->Privileges[i].Luid, &luid, sizeof(LUID)) == 0)
+        if(memcmp(&Privileges()->Privileges[i].Luid, &luid, sizeof(LUID)) == 0)
         {
-            efree(Privileges, "_dbg_getprivilegestate");
-            varset("$result", (duint)(Privileges->Privileges[i].Attributes + 1), false); // 2=enabled, 3=default, 1=disabled
+            varset("$result", (duint)(Privileges()->Privileges[i].Attributes + 1), false); // 2=enabled, 3=default, 1=disabled
             return STATUS_CONTINUE;
         }
     }
-    efree(Privileges, "_dbg_getprivilegestate");
     varset("$result", (duint)0, false);
     return STATUS_CONTINUE;
 }
@@ -2445,13 +2435,11 @@ CMDRESULT cbEnablePrivilege(int argc, char* argv[])
         dprintf("Could not find the specified privilege: %s\n", argv[1]);
         return CMDRESULT::STATUS_ERROR;
     }
-    TOKEN_PRIVILEGES* Privilege;
-    Privilege = (TOKEN_PRIVILEGES*)emalloc(sizeof(LUID_AND_ATTRIBUTES) + 4, "_dbg_enableprivilege");
-    Privilege->PrivilegeCount = 1;
-    Privilege->Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;
-    Privilege->Privileges[0].Luid = luid;
-    bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege, sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;
-    efree(Privilege, "_dbg_enableprivilege");
+    Memory<TOKEN_PRIVILEGES*> Privilege(sizeof(LUID_AND_ATTRIBUTES), "_dbg_enableprivilege");
+    Privilege()->PrivilegeCount = 1;
+    Privilege()->Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;
+    Privilege()->Privileges[0].Luid = luid;
+    bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege(), sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;
     return ret ? CMDRESULT::STATUS_CONTINUE : CMDRESULT::STATUS_CONTINUE;
 }
 
@@ -2463,12 +2451,10 @@ CMDRESULT cbDisablePrivilege(int argc, char* argv[])
         dprintf("Could not find the specified privilege: %s\n", argv[1]);
         return CMDRESULT::STATUS_ERROR;
     }
-    TOKEN_PRIVILEGES* Privilege;
-    Privilege = (TOKEN_PRIVILEGES*)emalloc(sizeof(LUID_AND_ATTRIBUTES) + 4, "_dbg_disableprivilege");
-    Privilege->PrivilegeCount = 1;
-    Privilege->Privileges[0].Attributes = 0;
-    Privilege->Privileges[0].Luid = luid;
-    bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege, sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;
-    efree(Privilege, "_dbg_disableprivilege");
+    Memory<TOKEN_PRIVILEGES*> Privilege(sizeof(LUID_AND_ATTRIBUTES), "_dbg_disableprivilege");
+    Privilege()->PrivilegeCount = 1;
+    Privilege()->Privileges[0].Attributes = 0;
+    Privilege()->Privileges[0].Luid = luid;
+    bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege(), sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;
     return ret ? CMDRESULT::STATUS_CONTINUE : CMDRESULT::STATUS_CONTINUE;
 }
diff --git a/src/dbg/x64_dbg.cpp b/src/dbg/x64_dbg.cpp
@@ -268,6 +268,9 @@ static void registercommands()
     dbgcmdnew("scriptdll\1dllscript", cbScriptDll, false); //execute a script DLL
     dbgcmdnew("mnemonichelp", cbInstrMnemonichelp, false); //mnemonic help
     dbgcmdnew("mnemonicbrief", cbInstrMnemonicbrief, false); //mnemonic brief
+    dbgcmdnew("GetPrivilegeState", cbGetPrivilegeState, true); //get priv state
+    dbgcmdnew("EnablePrivilege", cbEnablePrivilege, true); //enable priv
+    dbgcmdnew("DisablePrivilege", cbDisablePrivilege, true); //disable priv
 }
 
 static bool cbCommandProvider(char* cmd, int maxlen)
diff --git a/src/gui/Src/Gui/HandlesView.cpp b/src/gui/Src/Gui/HandlesView.cpp
@@ -275,7 +275,7 @@ void HandlesView::enumPrivileges()
 
 void HandlesView::AppendPrivilege(int row, const char* PrivilegeString)
 {
-    DbgCmdExec(QString("GetPrivilegeState \"%1\"").arg(PrivilegeString).toUtf8().constData());
+    DbgCmdExecDirect(QString("GetPrivilegeState \"%1\"").arg(PrivilegeString).toUtf8().constData());
     mPrivilegesTable->setCellContent(row, 0, QString(PrivilegeString));
     switch(DbgValFromString("$result"))
     {

Original file line number	Diff line number	Diff line change
`@@ -2392,47 +2392,37 @@ CMDRESULT cbInstrMnemonicbrief(int argc, char* argv[])`
`2392`	`2392`	`return STATUS_CONTINUE;`
`2393`	`2393`	`}`
`2394`	`2394`
`2395`		`-`
`2396`	`2395`	`CMDRESULT cbGetPrivilegeState(int argc, char* argv[])`
`2397`	`2396`	`{`
`2398`		`- TOKEN_PRIVILEGES* Privileges;`
`2399`	`2397`	`DWORD returnLength;`
`2400`	`2398`	`LUID luid;`
`2401`	`2399`	`if(LookupPrivilegeValueW(nullptr, StringUtils::Utf8ToUtf16(argv[1]).c_str(), &luid) == 0)`
`2402`	`2400`	`{`
`2403`	`2401`	`varset("$result", (duint)0, false);`
`2404`	`2402`	`return CMDRESULT::STATUS_CONTINUE;`
`2405`	`2403`	`}`
`2406`		`- Privileges = (TOKEN_PRIVILEGES)emalloc(64 16 + 8, "_dbg_getprivilegestate");`
`2407`		`- if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges, 64 * 16 + 8, &returnLength) == 0)`
	`2404`	`+ Memory <TOKEN_PRIVILEGES> Privileges(64 16 + 8, "_dbg_getprivilegestate");`
	`2405`	`+ if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges(), 64 * 16 + 8, &returnLength) == 0)`
`2408`	`2406`	`{`
`2409`	`2407`	`if(returnLength > 4 * 1024 * 1024)`
`2410`	`2408`	`{`
`2411`	`2409`	`varset("$result", (duint)0, false);`
`2412`	`2410`	`return CMDRESULT::STATUS_CONTINUE;`
`2413`	`2411`	`}`
`2414`		`- Privileges = (TOKEN_PRIVILEGES*)erealloc(Privileges, returnLength, "_dbg_getprivilegestate");`
`2415`		`- if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges, returnLength, &returnLength) == 0)`
`2416`		`- {`
`2417`		`- efree(Privileges, "_dbg_getprivilegestate");`
	`2412`	`+ Privileges.realloc(returnLength, "_dbg_getprivilegestate");`
	`2413`	`+ if(GetTokenInformation(hProcessToken, TokenPrivileges, Privileges(), returnLength, &returnLength) == 0)`
`2418`	`2414`	`return STATUS_ERROR;`
`2419`		`- }`
`2420`	`2415`	`}`
`2421`		`- for(unsigned int i = 0; i < Privileges->PrivilegeCount; i++)`
	`2416`	`+ for(unsigned int i = 0; i < Privileges()->PrivilegeCount; i++)`
`2422`	`2417`	`{`
`2423`	`2418`	`if(4 + sizeof(LUID_AND_ATTRIBUTES) * i > returnLength)`
`2424`		`- {`
`2425`		`- efree(Privileges, "_dbg_getprivilegestate");`
`2426`	`2419`	`return STATUS_ERROR;`
`2427`		`- }`
`2428`		`- if(memcmp(&Privileges->Privileges[i].Luid, &luid, sizeof(LUID)) == 0)`
	`2420`	`+ if(memcmp(&Privileges()->Privileges[i].Luid, &luid, sizeof(LUID)) == 0)`
`2429`	`2421`	`{`
`2430`		`- efree(Privileges, "_dbg_getprivilegestate");`
`2431`		`- varset("$result", (duint)(Privileges->Privileges[i].Attributes + 1), false); // 2=enabled, 3=default, 1=disabled`
	`2422`	`+ varset("$result", (duint)(Privileges()->Privileges[i].Attributes + 1), false); // 2=enabled, 3=default, 1=disabled`
`2432`	`2423`	`return STATUS_CONTINUE;`
`2433`	`2424`	`}`
`2434`	`2425`	`}`
`2435`		`- efree(Privileges, "_dbg_getprivilegestate");`
`2436`	`2426`	`varset("$result", (duint)0, false);`
`2437`	`2427`	`return STATUS_CONTINUE;`
`2438`	`2428`	`}`
`@@ -2445,13 +2435,11 @@ CMDRESULT cbEnablePrivilege(int argc, char* argv[])`
`2445`	`2435`	`dprintf("Could not find the specified privilege: %s\n", argv[1]);`
`2446`	`2436`	`return CMDRESULT::STATUS_ERROR;`
`2447`	`2437`	`}`
`2448`		`- TOKEN_PRIVILEGES* Privilege;`
`2449`		`- Privilege = (TOKEN_PRIVILEGES*)emalloc(sizeof(LUID_AND_ATTRIBUTES) + 4, "_dbg_enableprivilege");`
`2450`		`- Privilege->PrivilegeCount = 1;`
`2451`		`- Privilege->Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;`
`2452`		`- Privilege->Privileges[0].Luid = luid;`
`2453`		`- bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege, sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;`
`2454`		`- efree(Privilege, "_dbg_enableprivilege");`
	`2438`	`+ Memory<TOKEN_PRIVILEGES*> Privilege(sizeof(LUID_AND_ATTRIBUTES), "_dbg_enableprivilege");`
	`2439`	`+ Privilege()->PrivilegeCount = 1;`
	`2440`	`+ Privilege()->Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;`
	`2441`	`+ Privilege()->Privileges[0].Luid = luid;`
	`2442`	`+ bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege(), sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;`
`2455`	`2443`	`return ret ? CMDRESULT::STATUS_CONTINUE : CMDRESULT::STATUS_CONTINUE;`
`2456`	`2444`	`}`
`2457`	`2445`
`@@ -2463,12 +2451,10 @@ CMDRESULT cbDisablePrivilege(int argc, char* argv[])`
`2463`	`2451`	`dprintf("Could not find the specified privilege: %s\n", argv[1]);`
`2464`	`2452`	`return CMDRESULT::STATUS_ERROR;`
`2465`	`2453`	`}`
`2466`		`- TOKEN_PRIVILEGES* Privilege;`
`2467`		`- Privilege = (TOKEN_PRIVILEGES*)emalloc(sizeof(LUID_AND_ATTRIBUTES) + 4, "_dbg_disableprivilege");`
`2468`		`- Privilege->PrivilegeCount = 1;`
`2469`		`- Privilege->Privileges[0].Attributes = 0;`
`2470`		`- Privilege->Privileges[0].Luid = luid;`
`2471`		`- bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege, sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;`
`2472`		`- efree(Privilege, "_dbg_disableprivilege");`
	`2454`	`+ Memory<TOKEN_PRIVILEGES*> Privilege(sizeof(LUID_AND_ATTRIBUTES), "_dbg_disableprivilege");`
	`2455`	`+ Privilege()->PrivilegeCount = 1;`
	`2456`	`+ Privilege()->Privileges[0].Attributes = 0;`
	`2457`	`+ Privilege()->Privileges[0].Luid = luid;`
	`2458`	`+ bool ret = AdjustTokenPrivileges(hProcessToken, FALSE, Privilege(), sizeof(LUID_AND_ATTRIBUTES) + 4, nullptr, nullptr) != NO_ERROR;`
`2473`	`2459`	`return ret ? CMDRESULT::STATUS_CONTINUE : CMDRESULT::STATUS_CONTINUE;`
`2474`	`2460`	`}`
Original file line number	Diff line number	Diff line change
`@@ -268,6 +268,9 @@ static void registercommands()`
`268`	`268`	`dbgcmdnew("scriptdll\1dllscript", cbScriptDll, false); //execute a script DLL`
`269`	`269`	`dbgcmdnew("mnemonichelp", cbInstrMnemonichelp, false); //mnemonic help`
`270`	`270`	`dbgcmdnew("mnemonicbrief", cbInstrMnemonicbrief, false); //mnemonic brief`
	`271`	`+ dbgcmdnew("GetPrivilegeState", cbGetPrivilegeState, true); //get priv state`
	`272`	`+ dbgcmdnew("EnablePrivilege", cbEnablePrivilege, true); //enable priv`
	`273`	`+ dbgcmdnew("DisablePrivilege", cbDisablePrivilege, true); //disable priv`
`271`	`274`	`}`
`272`	`275`
`273`	`276`	`static bool cbCommandProvider(char* cmd, int maxlen)`
Original file line number	Diff line number	Diff line change
`@@ -275,7 +275,7 @@ void HandlesView::enumPrivileges()`
`275`	`275`
`276`	`276`	`void HandlesView::AppendPrivilege(int row, const char* PrivilegeString)`
`277`	`277`	`{`
`278`		`- DbgCmdExec(QString("GetPrivilegeState \"%1\"").arg(PrivilegeString).toUtf8().constData());`
	`278`	`+ DbgCmdExecDirect(QString("GetPrivilegeState \"%1\"").arg(PrivilegeString).toUtf8().constData());`
`279`	`279`	`mPrivilegesTable->setCellContent(row, 0, QString(PrivilegeString));`
`280`	`280`	`switch(DbgValFromString("$result"))`
`281`	`281`	`{`