Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Major
Fix Version/s: 0.4.3
Component/s: NTCore
Labels:
- PATCH

Module:
- ex
- ntoskrnl
Sprint:
October 2016

Description

Hello,

I've been hunting zombie processes in ReactOS and I noticed that we do not protect at all a process when enumerating in QsiSystemProcessInformation(...):

do

            SpiCurrent = (PSYSTEM_PROCESS_INFORMATION) Current;

            if ((Process->ProcessExiting) &&

                (Process->Pcb.Header.SignalState) &&

                !(Process->ActiveThreads) &&

                (IsListEmpty(&Process->Pcb.ThreadListHead)))

                DPRINT1("Process %p (%s:%p) is a zombie\n",

                        Process, Process->ImageFileName, Process->UniqueProcessId);

                CurrentSize = 0;

                ImageNameMaximumLength = 0;

                goto Skip;

and also when checking condition for initialized ThreadListEntry in PspDeleteThread(...):

/* Check if the thread list is valid */

    if (Thread->ThreadListEntry.Flink)

        /* Lock the thread's process */

        KeEnterCriticalRegion();

        ExAcquirePushLockExclusive(&Process->ProcessLock);

        /* Remove us from the list */

        RemoveEntryList(&Thread->ThreadListEntry);

        /* Release the lock */

        ExReleasePushLockExclusive(&Process->ProcessLock);

        KeLeaveCriticalRegion();

The attached patch fixes both problems.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

V2_sync_PEPROCESS.patch
1 kB
2016-09-19 12:20
sync_PEPROCESS.patch
2 kB
2016-09-18 18:07

Activity

People

Assignee:: ThFabba

Reporter:: vshcherbyna

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2016-09-18 18:07

Updated:: 2016-10-01 09:11

Resolved:: 2016-10-01 09:11