aboutsummaryrefslogtreecommitdiffstats
path: root/driver/undocumented.h (follow)
Commit message (Collapse)AuthorAgeFilesLines
* driver: ioctl: remove force closing of handlesJason A. Donenfeld2021-10-061-33/+0
| | | | | | | | | | | | | | | | This driver has never actually made successful use of it, because we've been wrongly matching against the FunctionalDeviceObject instead of Stack->FileObject->DeviceObject. Yet, things seem to have worked fine enough because of smart notification to the logger thread. Furthermore, SwDevice calls halt immediately, because it constitutes a surprise removal, which means we don't really even have time for the fuse to go off. And finally, dereferencing Table[i]->Object can race with the destruction of that object, which is a UaF. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* driver: undocumented: use better SAL for ZwQuerySystemInformationJason A. Donenfeld2021-08-081-12/+9
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* driver: device: chicken out on NSI hijack, and revert to pollingJason A. Donenfeld2021-08-051-32/+0
| | | | | | | | | | | This reverts commit 217922afde75df527cada3224df8930264375fa1. The NSI hijack works so well! But video game anti-cheat stuff make this annoying. At least GetIpInterfaceEntry only takes 70,000 cycles... Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* driver: device: hack around broken IP notifier by hijacking \Device\NsiJason A. Donenfeld2021-08-051-0/+32
| | | | | | | This is very dirty and reverse engineered, but it seems to work, and it's a stop-gap solution until Windows patches ship. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* Introduce WireGuardNTJason A. Donenfeld2021-08-021-0/+52
Co-authored-by: Simon Rozman <simon@rozman.si> Signed-off-by: Simon Rozman <simon@rozman.si> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.