[PATCH 05/10] ntoskrnl.exe: Implement PsLookupProcessByProcessId.
Derek Lesho
dereklesho52 at gmail.com
Tue Apr 9 13:10:38 CDT 2019
Signed-off-by: Derek Lesho <dereklesho52 at Gmail.com>
---
dlls/ntoskrnl.exe/ntoskrnl.c | 15 ++++++++++++---
include/ddk/ntifs.h | 1 +
2 files changed, 13 insertions(+), 3 deletions(-)
diff --git a/dlls/ntoskrnl.exe/ntoskrnl.c b/dlls/ntoskrnl.exe/ntoskrnl.c
index 869edef458..bf7378b968 100644
--- a/dlls/ntoskrnl.exe/ntoskrnl.c
+++ b/dlls/ntoskrnl.exe/ntoskrnl.c
@@ -3255,9 +3255,18 @@ NTSTATUS WINAPI PsSetLoadImageNotifyRoutine(PLOAD_IMAGE_NOTIFY_ROUTINE routine)
*/
NTSTATUS WINAPI PsLookupProcessByProcessId(HANDLE processid, PEPROCESS *process)
{
- static int once;
- if (!once++) FIXME("(%p %p) stub\n", processid, process);
- return STATUS_NOT_IMPLEMENTED;
+ NTSTATUS status;
+ HANDLE hProcess = OpenProcess( PROCESS_ALL_ACCESS, FALSE, HandleToUlong(processid) );
+
+ if (!hProcess)
+ return STATUS_INVALID_PARAMETER;
+
+ status = kernel_object_from_handle( hProcess, PsProcessType, (void**)process );
+
+ ObReferenceObject( *process );
+
+ NtClose( hProcess );
+ return status;
}
diff --git a/include/ddk/ntifs.h b/include/ddk/ntifs.h
index abe357fbc9..ffa103bcc5 100644
--- a/include/ddk/ntifs.h
+++ b/include/ddk/ntifs.h
@@ -132,5 +132,6 @@ typedef struct _FS_FILTER_CALLBACKS
BOOLEAN WINAPI FsRtlIsNameInExpression(PUNICODE_STRING, PUNICODE_STRING, BOOLEAN, PWCH);
NTSTATUS WINAPI ObQueryNameString(PVOID,POBJECT_NAME_INFORMATION,ULONG,PULONG);
void WINAPI PsRevertToSelf(void);
+NTSTATUS WINAPI PsLookupProcessByProcessId(HANDLE,PEPROCESS*);
#endif
--
2.20.1
More information about the wine-devel
mailing list