mirror of
https://github.com/klzgrad/naiveproxy.git
synced 2024-12-01 09:46:09 +03:00
100 lines
3.1 KiB
C++
100 lines
3.1 KiB
C++
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
|
||
|
// Use of this source code is governed by a BSD-style license that can be
|
||
|
// found in the LICENSE file.
|
||
|
|
||
|
#include "base/process/process_info.h"
|
||
|
|
||
|
#include <windows.h>
|
||
|
|
||
|
#include "base/logging.h"
|
||
|
#include "base/memory/ptr_util.h"
|
||
|
#include "base/time/time.h"
|
||
|
#include "base/win/scoped_handle.h"
|
||
|
|
||
|
namespace base {
|
||
|
|
||
|
namespace {
|
||
|
|
||
|
base::win::ScopedHandle GetCurrentProcessToken() {
|
||
|
HANDLE process_token;
|
||
|
BOOL result =
|
||
|
OpenProcessToken(::GetCurrentProcess(), TOKEN_QUERY, &process_token);
|
||
|
// These checks are turned on in release builds to debug
|
||
|
// https://bugs.chromium.org/p/chromium/issues/detail?id=748431.
|
||
|
PCHECK(result);
|
||
|
CHECK(process_token != NULL);
|
||
|
CHECK(process_token != INVALID_HANDLE_VALUE);
|
||
|
return base::win::ScopedHandle(process_token);
|
||
|
}
|
||
|
|
||
|
} // namespace
|
||
|
|
||
|
// static
|
||
|
const Time CurrentProcessInfo::CreationTime() {
|
||
|
FILETIME creation_time = {};
|
||
|
FILETIME ignore1 = {};
|
||
|
FILETIME ignore2 = {};
|
||
|
FILETIME ignore3 = {};
|
||
|
if (!::GetProcessTimes(::GetCurrentProcess(), &creation_time, &ignore1,
|
||
|
&ignore2, &ignore3)) {
|
||
|
return Time();
|
||
|
}
|
||
|
return Time::FromFileTime(creation_time);
|
||
|
}
|
||
|
|
||
|
IntegrityLevel GetCurrentProcessIntegrityLevel() {
|
||
|
base::win::ScopedHandle scoped_process_token(GetCurrentProcessToken());
|
||
|
|
||
|
DWORD token_info_length = 0;
|
||
|
if (::GetTokenInformation(scoped_process_token.Get(), TokenIntegrityLevel,
|
||
|
nullptr, 0, &token_info_length) ||
|
||
|
::GetLastError() != ERROR_INSUFFICIENT_BUFFER) {
|
||
|
return INTEGRITY_UNKNOWN;
|
||
|
}
|
||
|
|
||
|
auto token_label_bytes = std::make_unique<char[]>(token_info_length);
|
||
|
TOKEN_MANDATORY_LABEL* token_label =
|
||
|
reinterpret_cast<TOKEN_MANDATORY_LABEL*>(token_label_bytes.get());
|
||
|
if (!::GetTokenInformation(scoped_process_token.Get(), TokenIntegrityLevel,
|
||
|
token_label, token_info_length,
|
||
|
&token_info_length)) {
|
||
|
return INTEGRITY_UNKNOWN;
|
||
|
}
|
||
|
|
||
|
DWORD integrity_level = *::GetSidSubAuthority(
|
||
|
token_label->Label.Sid,
|
||
|
static_cast<DWORD>(*::GetSidSubAuthorityCount(token_label->Label.Sid) -
|
||
|
1));
|
||
|
|
||
|
if (integrity_level < SECURITY_MANDATORY_MEDIUM_RID)
|
||
|
return LOW_INTEGRITY;
|
||
|
|
||
|
if (integrity_level >= SECURITY_MANDATORY_MEDIUM_RID &&
|
||
|
integrity_level < SECURITY_MANDATORY_HIGH_RID) {
|
||
|
return MEDIUM_INTEGRITY;
|
||
|
}
|
||
|
|
||
|
if (integrity_level >= SECURITY_MANDATORY_HIGH_RID)
|
||
|
return HIGH_INTEGRITY;
|
||
|
|
||
|
NOTREACHED();
|
||
|
return INTEGRITY_UNKNOWN;
|
||
|
}
|
||
|
|
||
|
bool IsCurrentProcessElevated() {
|
||
|
base::win::ScopedHandle scoped_process_token(GetCurrentProcessToken());
|
||
|
|
||
|
// Unlike TOKEN_ELEVATION_TYPE which returns TokenElevationTypeDefault when
|
||
|
// UAC is turned off, TOKEN_ELEVATION returns whether the process is elevated.
|
||
|
DWORD size;
|
||
|
TOKEN_ELEVATION elevation;
|
||
|
if (!GetTokenInformation(scoped_process_token.Get(), TokenElevation,
|
||
|
&elevation, sizeof(elevation), &size)) {
|
||
|
PLOG(ERROR) << "GetTokenInformation() failed";
|
||
|
return false;
|
||
|
}
|
||
|
return !!elevation.TokenIsElevated;
|
||
|
}
|
||
|
|
||
|
} // namespace base
|