Minor improvements

modules/AdminImpersonate.hpp

@@ -3,6 +3,8 @@
 
 #include <windows.h>
 #include <shlobj.h>
+#include "../wine_winternl.h"
+#include <ntstatus.h>
 #include <detours.h>
 
 
@@ -10,6 +12,8 @@
 class AdminImpersonate : public ModuleBase {
     inline static decltype(&IsUserAnAdmin) TrueIsUserAnAdmin;
     inline static decltype(&CheckTokenMembership) TrueCheckTokenMembership;
+    inline static decltype(&NtOpenFile) TrueNtOpenFile;
+    inline static decltype(&NtCreateFile) TrueNtCreateFile;
 
     static
     BOOL __stdcall DetourIsUserAnAdmin() {
@@ -38,15 +42,49 @@ class AdminImpersonate : public ModuleBase {
         return bRealResult;
     }
 
+    static
+    NTSTATUS NTAPI DetourNtOpenFile(OUT PHANDLE FileHandle,
+        IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK IoStatusBlock,
+        IN ULONG ShareAccess, IN ULONG OpenOptions) {
+        DWORD iStatus = TrueNtOpenFile(FileHandle, DesiredAccess, ObjectAttributes,
+            IoStatusBlock, ShareAccess, OpenOptions);
+
+        if (iStatus == STATUS_SHARING_VIOLATION || iStatus == STATUS_ACCESS_DENIED) {
+            return STATUS_NO_SUCH_FILE;
+        }
+
+        return iStatus;
+    }
+
+    static
+    NTSTATUS NTAPI DetourNtCreateFile(OUT PHANDLE FileHandle, IN ACCESS_MASK DesiredAccess,
+        IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK IoStatusBlock,
+        IN PLARGE_INTEGER AllocationSize OPTIONAL, IN ULONG FileAttributes, IN ULONG ShareAccess,
+        IN ULONG CreateDisposition, IN ULONG CreateOptions, IN PVOID EaBuffer OPTIONAL, IN ULONG EaLength) {
+        NTSTATUS iStatus = TrueNtCreateFile(FileHandle, DesiredAccess, ObjectAttributes, IoStatusBlock, AllocationSize,
+            FileAttributes, ShareAccess, CreateDisposition, CreateOptions, EaBuffer, EaLength);
+
+        if (iStatus == STATUS_SHARING_VIOLATION || iStatus == STATUS_ACCESS_DENIED) {
+            return STATUS_DISK_FULL;
+        }
+
+        return iStatus;
+    }
 
 public:
     AdminImpersonate() {
         TrueIsUserAnAdmin = IsUserAnAdmin;
         TrueCheckTokenMembership = CheckTokenMembership;
+        TrueNtOpenFile = reinterpret_cast<decltype(&NtOpenFile)>(GetProcAddress(LoadLibraryW(L"ntdll.dll"), "NtOpenFile"));
+        TrueNtCreateFile = reinterpret_cast<decltype(&NtCreateFile)>(GetProcAddress(LoadLibraryW(L"ntdll.dll"), "NtCreateFile"));
+        DetourAttach(&reinterpret_cast<PVOID&>(TrueNtOpenFile), reinterpret_cast<void*>(DetourNtOpenFile));
+        DetourAttach(&reinterpret_cast<PVOID&>(TrueNtCreateFile), reinterpret_cast<void*>(DetourNtCreateFile));
         DetourAttach(&reinterpret_cast<PVOID&>(TrueIsUserAnAdmin), reinterpret_cast<void*>(IsUserAnAdmin));
         DetourAttach(&reinterpret_cast<PVOID&>(TrueCheckTokenMembership), reinterpret_cast<void*>(CheckTokenMembership));
     }
     ~AdminImpersonate() {
+        DetourDetach(&reinterpret_cast<PVOID&>(TrueNtOpenFile), reinterpret_cast<void*>(DetourNtOpenFile));
+        DetourDetach(&reinterpret_cast<PVOID&>(TrueNtCreateFile), reinterpret_cast<void*>(DetourNtCreateFile));
         DetourDetach(&reinterpret_cast<PVOID&>(TrueIsUserAnAdmin), reinterpret_cast<void*>(IsUserAnAdmin));
         DetourDetach(&reinterpret_cast<PVOID&>(TrueCheckTokenMembership), reinterpret_cast<void*>(CheckTokenMembership));
     }

modules/RemoteLockBreak.hpp

@@ -5,9 +5,6 @@
 #include "../wine_winternl.h"
 #include <detours.h>
 
-#define STATUS_SHARING_VIOLATION 0xC0000043
-#define STATUS_ACCESS_DENIED     0xC0000022
-
 
 
 class RemoteLockBreak : public ModuleBase {