Re: [PATCH 1/6] ntoskrnl.exe: Implement PsGetProcessSectionBaseAddress() function.

31 May 2020

      Hi Paul,
On 31.05.2020 16:41, Paul Gofman wrote:
...

if (!(h = OpenProcess( PROCESS_ALL_ACCESS, FALSE, process->info.UniqueProcessId)))
{
   WARN("Could not open process %#04lx.\n", process->info.UniqueProcessId);

   return NULL;

}

This should work, but ObOpenObjectByPointer() is generally used when we 
need a handle from a kernel object pointer.
Thanks,
Jacek

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

Re: [PATCH 1/6] ntoskrnl.exe: Implement PsGetProcessSectionBaseAddress() function.