Fix token usage

dmex · dmex · commit 41f830e5f515 · 2018-02-10T02:48:18.000+11:00
diff --git a/ProcessHacker/memlists.c b/ProcessHacker/memlists.c
@@ -170,6 +170,12 @@ INT_PTR CALLBACK PhpMemoryListsDlgProc(
     {
     case WM_INITDIALOG:
         {
+            if (NT_SUCCESS(PhOpenProcessToken(NtCurrentProcess(), TOKEN_ADJUST_PRIVILEGES, &tokenHandle)))
+            {
+                PhSetTokenPrivilege(tokenHandle, L"SeProfileSingleProcessPrivilege", NULL, SE_PRIVILEGE_ENABLED);
+                NtClose(tokenHandle);
+            }
+
             PhRegisterCallback(&PhProcessesUpdatedEvent, ProcessesUpdatedCallback, NULL, &ProcessesUpdatedRegistration);
             PhpUpdateMemoryListInfo(hwndDlg);
 
@@ -237,9 +243,9 @@ INT_PTR CALLBACK PhpMemoryListsDlgProc(
                                 HANDLE tokenHandle;
                                 MEMORY_COMBINE_INFORMATION_EX combineInfo = { 0 };
 
-                                if (NT_SUCCESS(NtOpenProcessToken(NtCurrentProcess(), TOKEN_ADJUST_PRIVILEGES, &tokenHandle)))
+                                if (NT_SUCCESS(PhOpenProcessToken(NtCurrentProcess(), TOKEN_ADJUST_PRIVILEGES, &tokenHandle)))
                                 {
-                                    PhSetTokenPrivilege(tokenHandle, SE_PROF_SINGLE_PROCESS_NAME, NULL, SE_PRIVILEGE_ENABLED);
+                                    PhSetTokenPrivilege(tokenHandle, L"SeProfileSingleProcessPrivilege", NULL, SE_PRIVILEGE_ENABLED);
                                     NtClose(tokenHandle);
                                 }
 
diff --git a/ProcessHacker/tokprp.c b/ProcessHacker/tokprp.c
@@ -669,7 +669,12 @@ INT_PTR CALLBACK PhpTokenPageProc(
 
                     if (appContainerName)
                     {
-                        SetDlgItemText(hwndDlg, IDC_USER, appContainerName->Buffer);
+                        PPH_STRING packageFamilyName;
+
+                        packageFamilyName = PhConcatStrings2(appContainerName->Buffer, L" (APP_PACKAGE)");
+                        SetDlgItemText(hwndDlg, IDC_USER, packageFamilyName->Buffer);
+
+                        PhDereferenceObject(packageFamilyName);
                         PhDereferenceObject(appContainerName);
                     }
 
diff --git a/phlib/appresolver.c b/phlib/appresolver.c
@@ -167,7 +167,7 @@ PPH_STRING PhGetAppContainerPackageName(
 
     if (SUCCEEDED(AppContainerLookupMoniker_I(AppContainerSid, &packageMonikerName)))
     {
-        packageFamilyName = PhConcatStrings2(packageMonikerName, L" (APP_PACKAGE)");
+        packageFamilyName = PhCreateString(packageMonikerName);
         AppContainerFreeMemory_I(packageMonikerName);
     }
 
diff --git a/phlib/hndlinfo.c b/phlib/hndlinfo.c
@@ -371,16 +371,10 @@ PPH_STRING PhFormatNativeKeyName(
 
     if (PhBeginInitOnce(&initOnce))
     {
-        HANDLE currentTokenHandle;
         PTOKEN_USER tokenUser;
         PPH_STRING stringSid = NULL;
 
-        currentTokenHandle = PhGetOwnTokenAttributes().TokenHandle;
-
-        if (currentTokenHandle && NT_SUCCESS(PhGetTokenUser(
-            currentTokenHandle,
-            &tokenUser
-            )))
+        if (NT_SUCCESS(PhGetTokenUser(PhGetOwnTokenAttributes().TokenHandle, &tokenUser)))
         {
             stringSid = PhSidToStringSid(tokenUser->User.Sid);
             PhFree(tokenUser);
diff --git a/phlib/native.c b/phlib/native.c
@@ -74,17 +74,24 @@ PH_TOKEN_ATTRIBUTES PhGetOwnTokenAttributes(
     )
 {
     static PH_INITONCE initOnce = PH_INITONCE_INIT;
-    static PH_TOKEN_ATTRIBUTES attributes;
+    static PH_TOKEN_ATTRIBUTES attributes = { 0 };
 
     if (PhBeginInitOnce(&initOnce))
     {
         BOOLEAN elevated = TRUE;
         TOKEN_ELEVATION_TYPE elevationType = TokenElevationTypeFull;
 
         if (WindowsVersion >= WINDOWS_8)
-            attributes.TokenHandle = NtCurrentProcessToken();           
+        {
+            attributes.TokenHandle = NtCurrentProcessToken();
+        }
         else
-            PhOpenProcessToken(NtCurrentProcess(), TOKEN_QUERY, &attributes.TokenHandle);
+        {
+            HANDLE tokenHandle;
+
+            if (NT_SUCCESS(PhOpenProcessToken(NtCurrentProcess(), TOKEN_QUERY, &tokenHandle)))
+                attributes.TokenHandle = tokenHandle;
+        }
 
         if (attributes.TokenHandle)
         {
@@ -312,14 +319,6 @@ NTSTATUS PhOpenProcessToken(
 {
     NTSTATUS status;
 
-#ifdef _DEBUG
-    if (WINDOWS_HAS_IMMERSIVE && ProcessHandle == NtCurrentProcess())
-    {
-        *TokenHandle = NtCurrentProcessToken();
-        return STATUS_SUCCESS;
-    }
-#endif
-
     if (KphIsVerified() && (DesiredAccess & KPH_TOKEN_READ_ACCESS) == DesiredAccess)
     {
         status = KphOpenProcessToken(
diff --git a/plugins/DotNetTools/counters.c b/plugins/DotNetTools/counters.c
@@ -557,7 +557,7 @@ BOOLEAN OpenDotNetPublicControlBlock_V4(
 
     if (WINDOWS_HAS_IMMERSIVE && IsImmersive)
     {
-        if (NT_SUCCESS(NtOpenProcessToken(&tokenHandle, TOKEN_QUERY, ProcessHandle)))
+        if (NT_SUCCESS(NtOpenProcessToken(ProcessHandle, TOKEN_QUERY, &tokenHandle)))
         {
             ULONG returnLength = 0;
 

Original file line number	Diff line number	Diff line change
`@@ -170,6 +170,12 @@ INT_PTR CALLBACK PhpMemoryListsDlgProc(`
`170`	`170`	`{`
`171`	`171`	`case WM_INITDIALOG:`
`172`	`172`	`{`
	`173`	`+ if (NT_SUCCESS(PhOpenProcessToken(NtCurrentProcess(), TOKEN_ADJUST_PRIVILEGES, &tokenHandle)))`
	`174`	`+ {`
	`175`	`+ PhSetTokenPrivilege(tokenHandle, L"SeProfileSingleProcessPrivilege", NULL, SE_PRIVILEGE_ENABLED);`
	`176`	`+ NtClose(tokenHandle);`
	`177`	`+ }`
	`178`	`+`
`173`	`179`	`PhRegisterCallback(&PhProcessesUpdatedEvent, ProcessesUpdatedCallback, NULL, &ProcessesUpdatedRegistration);`
`174`	`180`	`PhpUpdateMemoryListInfo(hwndDlg);`
`175`	`181`
`@@ -237,9 +243,9 @@ INT_PTR CALLBACK PhpMemoryListsDlgProc(`
`237`	`243`	`HANDLE tokenHandle;`
`238`	`244`	`MEMORY_COMBINE_INFORMATION_EX combineInfo = { 0 };`
`239`	`245`
`240`		`- if (NT_SUCCESS(NtOpenProcessToken(NtCurrentProcess(), TOKEN_ADJUST_PRIVILEGES, &tokenHandle)))`
	`246`	`+ if (NT_SUCCESS(PhOpenProcessToken(NtCurrentProcess(), TOKEN_ADJUST_PRIVILEGES, &tokenHandle)))`
`241`	`247`	`{`
`242`		`- PhSetTokenPrivilege(tokenHandle, SE_PROF_SINGLE_PROCESS_NAME, NULL, SE_PRIVILEGE_ENABLED);`
	`248`	`+ PhSetTokenPrivilege(tokenHandle, L"SeProfileSingleProcessPrivilege", NULL, SE_PRIVILEGE_ENABLED);`
`243`	`249`	`NtClose(tokenHandle);`
`244`	`250`	`}`
`245`	`251`
Original file line number	Diff line number	Diff line change
`@@ -669,7 +669,12 @@ INT_PTR CALLBACK PhpTokenPageProc(`
`669`	`669`
`670`	`670`	`if (appContainerName)`
`671`	`671`	`{`
`672`		`- SetDlgItemText(hwndDlg, IDC_USER, appContainerName->Buffer);`
	`672`	`+ PPH_STRING packageFamilyName;`
	`673`	`+`
	`674`	`+ packageFamilyName = PhConcatStrings2(appContainerName->Buffer, L" (APP_PACKAGE)");`
	`675`	`+ SetDlgItemText(hwndDlg, IDC_USER, packageFamilyName->Buffer);`
	`676`	`+`
	`677`	`+ PhDereferenceObject(packageFamilyName);`
`673`	`678`	`PhDereferenceObject(appContainerName);`
`674`	`679`	`}`
`675`	`680`
Original file line number	Diff line number	Diff line change
`@@ -167,7 +167,7 @@ PPH_STRING PhGetAppContainerPackageName(`
`167`	`167`
`168`	`168`	`if (SUCCEEDED(AppContainerLookupMoniker_I(AppContainerSid, &packageMonikerName)))`
`169`	`169`	`{`
`170`		`- packageFamilyName = PhConcatStrings2(packageMonikerName, L" (APP_PACKAGE)");`
	`170`	`+ packageFamilyName = PhCreateString(packageMonikerName);`
`171`	`171`	`AppContainerFreeMemory_I(packageMonikerName);`
`172`	`172`	`}`
`173`	`173`
Original file line number	Diff line number	Diff line change
`@@ -557,7 +557,7 @@ BOOLEAN OpenDotNetPublicControlBlock_V4(`
`557`	`557`
`558`	`558`	`if (WINDOWS_HAS_IMMERSIVE && IsImmersive)`
`559`	`559`	`{`
`560`		`- if (NT_SUCCESS(NtOpenProcessToken(&tokenHandle, TOKEN_QUERY, ProcessHandle)))`
	`560`	`+ if (NT_SUCCESS(NtOpenProcessToken(ProcessHandle, TOKEN_QUERY, &tokenHandle)))`
`561`	`561`	`{`
`562`	`562`	`ULONG returnLength = 0;`
`563`	`563`