sync: merge systeminformer/6a372fc(winsiderss/systeminformer@6a372fc)

MiroKaku · Sep 28, 2024 · f6cab1e · f6cab1e
1 parent 928b0e1
commit f6cab1e
Show file tree

Hide file tree

Showing 16 changed files with 2,161 additions and 155 deletions.
diff --git a/VERSION b/VERSION
@@ -1,3 +1,5 @@
+2024-09-28:
+https://github.com/winsiderss/systeminformer/commit/6a372fc5167e3c27230dee84644817c5e54ef5ed
 
 2024-07-18:
 https://github.com/winsiderss/systeminformer/commit/c2e84fb8ac3bd33ce63c5d55f9e5fb6720d382e0
diff --git a/Veil.Test/Veil.Project.props b/Veil.Test/Veil.Project.props
@@ -3,8 +3,8 @@
 
     <!-- General -->
     <PropertyGroup>
-    <OutDir>$(SolutionDir)Output\Binaries\$(Configuration)\$(PlatformShortName)\</OutDir>
-    <IntDir>$(SolutionDir)Output\Objects\$(MSBuildProjectName)\$(Configuration)\$(PlatformShortName)\</IntDir>
+        <OutDir>$(SolutionDir)Output\Binaries\$(Configuration)\$(PlatformShortName)\</OutDir>
+        <IntDir>$(SolutionDir)Output\Objects\$(MSBuildProjectName)\$(Configuration)\$(PlatformShortName)\</IntDir>
     </PropertyGroup>
 
     <!-- Global -->
@@ -22,4 +22,8 @@
         </ClCompile>
     </ItemDefinitionGroup>
 
+    <PropertyGroup Label="Configuration">
+        <SpectreMitigation>false</SpectreMitigation>
+        <Driver_SpectreMitigation>false</Driver_SpectreMitigation>
+    </PropertyGroup>
 </Project>
diff --git a/Veil/Veil.System.ALPC.h b/Veil/Veil.System.ALPC.h
@@ -84,10 +84,10 @@ typedef struct _PORT_DATA_INFORMATION
 #define LPC_DEBUG_EVENT 8
 #define LPC_ERROR_EVENT 9
 #define LPC_CONNECTION_REQUEST 10
-#define LPC_CONTINUATION_REQUIRED 0x2000
 
-#define LPC_KERNELMODE_MESSAGE  (CSHORT)0x8000
-#define LPC_NO_IMPERSONATE      (CSHORT)0x4000
+#define LPC_CONTINUATION_REQUIRED 0x2000
+#define LPC_NO_IMPERSONATE        0x4000
+#define LPC_KERNELMODE_MESSAGE    0x8000
 
 #define PORT_VALID_OBJECT_ATTRIBUTES OBJ_CASE_INSENSITIVE
 
@@ -605,10 +605,10 @@ typedef struct _ALPC_PORT_ATTRIBUTES
 } ALPC_PORT_ATTRIBUTES, * PALPC_PORT_ATTRIBUTES;
 
 // begin_rev
-#define ALPC_MESSAGE_SECURITY_ATTRIBUTE 0x80000000
-#define ALPC_MESSAGE_VIEW_ATTRIBUTE     0x40000000
-#define ALPC_MESSAGE_CONTEXT_ATTRIBUTE  0x20000000
 #define ALPC_MESSAGE_HANDLE_ATTRIBUTE   0x10000000
+#define ALPC_MESSAGE_CONTEXT_ATTRIBUTE  0x20000000
+#define ALPC_MESSAGE_VIEW_ATTRIBUTE     0x40000000
+#define ALPC_MESSAGE_SECURITY_ATTRIBUTE 0x80000000
 // end_rev
 
 // symbols
@@ -711,8 +711,9 @@ typedef struct _ALPC_HANDLE_ATTR
     ACCESS_MASK GrantedAccess;
 } ALPC_HANDLE_ATTR, * PALPC_HANDLE_ATTR;
 
-#define ALPC_SECFLG_CREATE_HANDLE   0x20000 // dbg
-#define ALPC_SECFLG_NOSECTIONHANDLE 0x40000
+#define ALPC_SECFLG_CREATE_HANDLE       0x20000 // dbg
+#define ALPC_SECFLG_NOSECTIONHANDLE     0x40000
+
 // private
 typedef struct _ALPC_SECURITY_ATTR
 {
@@ -722,7 +723,9 @@ typedef struct _ALPC_SECURITY_ATTR
 } ALPC_SECURITY_ATTR, * PALPC_SECURITY_ATTR;
 
 // begin_rev
-#define ALPC_VIEWFLG_NOT_SECURE 0x40000
+#define ALPC_VIEWFLG_UNMAP_EXISTING     0x10000
+#define ALPC_VIEWFLG_AUTO_RELEASE       0x20000
+#define ALPC_VIEWFLG_NOT_SECURE         0x40000
 // end_rev
 
 // private
@@ -1381,17 +1384,17 @@ AlpcMaxAllowedMessageLength(
     VOID
 );
 
+#define ALPC_ATTRFLG_ALLOCATEDATTR   0x20000000
+#define ALPC_ATTRFLG_VALIDATTR       0x40000000
+#define ALPC_ATTRFLG_KEEPRUNNINGATTR 0x60000000
+
 NTSYSAPI
 ULONG
 NTAPI
 AlpcGetHeaderSize(
     _In_ ULONG Flags
 );
 
-#define ALPC_ATTRFLG_ALLOCATEDATTR 0x20000000
-#define ALPC_ATTRFLG_VALIDATTR 0x40000000
-#define ALPC_ATTRFLG_KEEPRUNNINGATTR 0x60000000
-
 NTSYSAPI
 NTSTATUS
 NTAPI