[GITHUB][NT:EX] Temporarily support old Windows SDK to fix GitHub action build

RatinCN · RatinCN · commit 9f7b0db97315 · 2026-02-04T16:45:38.000+08:00
diff --git a/Source/Include/KNSoft/NDK/NT/Ex/SysInfo.h b/Source/Include/KNSoft/NDK/NT/Ex/SysInfo.h
@@ -3963,6 +3963,326 @@ typedef struct _SYSTEM_HANDLECOUNT_INFORMATION
     ULONG HandleCount;
 } SYSTEM_HANDLECOUNT_INFORMATION, *PSYSTEM_HANDLECOUNT_INFORMATION;
 
+#pragma region RUNTIME_REPORT_HEADER
+
+#ifndef RUNTIME_REPORT_PACKAGE_MAGIC
+
+#define RUNTIME_REPORT_PACKAGE_MAGIC    0x52545250  // = "RTRP"
+#define RUNTIME_REPORT_PACKAGE_VERSION_CURRENT  (1)
+#define RUNTIME_REPORT_NONCE_SIZE   32
+#define RUNTIME_REPORT_DIGEST_MAX_SIZE  64
+#define RUNTIME_REPORT_SIGNATURE_SCHEME_SHA512_RSA_PSS_SHA512   (1)
+
+//
+// Runtime Report Type Enumeration
+//
+
+typedef enum _RUNTIME_REPORT_TYPE
+{
+    RuntimeReportTypeDriver = 0,
+    RuntimeReportTypeCodeIntegrity = 1,
+    RuntimeReportTypeMax
+} RUNTIME_REPORT_TYPE;
+
+//
+// Macro to convert a report type enum value to a bitmap mask
+//
+
+#define RUNTIME_REPORT_TYPE_TO_MASK(type) (1ULL << (type))
+
+//
+// Bitmap mask containing all valid report types
+//
+
+#define RUNTIME_REPORT_TYPE_MASK_ALL ((1ULL << RuntimeReportTypeMax) - 1)
+
+typedef struct _RUNTIME_REPORT_PACKAGE_HEADER
+{
+    //
+    // Set to RUNTIME_REPORT_PACKAGE_MAGIC = 0x52545250 ("RTRP")
+    //
+
+    ULONG Magic;
+
+    //
+    // The version of the package format
+    //
+
+    USHORT PackageVersion;
+
+    //
+    // Number of different report types contained in the package.
+    //
+
+    USHORT NumberOfReports;
+
+    //
+    // A bitmap of all the report types in the package.
+    //
+    // Use RUNTIME_REPORT_TYPE_TO_MASK macro to convert enum values to bitmap masks.
+    // Current valid report types:
+    //      RuntimeReportTypeDriver = 0
+    //      RuntimeReportTypeCodeIntegrity = 1
+    //
+
+    ULONG_PTR ReportTypesBitmap;
+
+    //
+    // The size of the total package including the package header,
+    // various runtime reports, their digests, and the signature blob.
+    //
+
+    ULONG PackageSize;
+
+    //
+    // The type of digest contained in the report digest headers.
+    //
+    // Current valid values:
+    //      CALG_SHA_512 (see wincrypt.h)
+    //
+
+    USHORT ReportDigestType;
+
+    //
+    // Total size of the signed runtime report digest headers
+    // following the package header.
+    //
+
+    USHORT TotalReportDigestsSize;
+
+    //
+    // Reserved field. Must be set to zero.
+    //
+
+    USHORT Reserved;
+
+    //
+    // The signature scheme used to sign the runtime reports.
+    //
+    // Current valid values:
+    //      RUNTIME_REPORT_SIGNATURE_SCHEME_SHA512_RSA_PSS_SHA512 = 1
+    //
+
+    USHORT SignatureScheme;
+
+    //
+    // Size of the signature blob following the runtime report digests.
+    //
+
+    ULONG SignatureSize;
+
+    //
+    // Total size of the authenticated (but unsigned) runtime reports
+    // following the signature blob.
+    //
+
+    ULONG TotalAuthenticatedReportsSize;
+
+} RUNTIME_REPORT_PACKAGE_HEADER, *PRUNTIME_REPORT_PACKAGE_HEADER;
+
+typedef struct _RUNTIME_REPORT_DIGEST_HEADER
+{
+    //
+    // Indicates the type of report that was hashed.
+    //
+    // Current valid values:
+    //      RuntimeReportTypeDriver = 0
+    //      RuntimeReportTypeCodeIntegrity = 1
+    //
+
+    USHORT ReportType;
+
+    //
+    // Reserved field.
+    //
+
+    USHORT Reserved;
+
+    //
+    // Digest of the report including the report header.
+    // This is a SHA-512 digest.
+    //
+
+    UCHAR ReportDigest[RUNTIME_REPORT_DIGEST_MAX_SIZE];
+
+} RUNTIME_REPORT_DIGEST_HEADER, *PRUNTIME_REPORT_DIGEST_HEADER;
+
+typedef struct _RUNTIME_REPORT_HEADER
+{
+    //
+    // Indicates the type of report.
+    //
+    // Current valid values:
+    //      RuntimeReportTypeDriver = 0
+    //      RuntimeReportTypeCodeIntegrity = 1
+    //
+
+    USHORT ReportType;
+
+    //
+    // Reserved field.
+    //
+
+    USHORT Reserved;
+
+    //
+    // The number of bytes consumed by this report, including the header.
+    //
+
+    ULONG ReportSize;
+
+} RUNTIME_REPORT_HEADER, *PRUNTIME_REPORT_HEADER;
+
+//
+//  Driver Report Definitions
+//
+
+#define DRIVER_REPORT_DIGEST_MAX_SIZE   RUNTIME_REPORT_DIGEST_MAX_SIZE
+#define DRIVER_REPORT_NAME_MAX_LENGTH   32
+
+typedef struct _DRIVER_INFO_ENTRY
+{
+    //
+    // Internal name of the driver from the resource section.
+    //
+
+    CHAR InternalName[DRIVER_REPORT_NAME_MAX_LENGTH];
+
+    //
+    // Hash algorithm used to calculate the image digest.
+    //
+
+    USHORT ImageHashAlgorithm;
+
+    //
+    // Hash algorithm used to calculate the thumbprint of the leaf certificate
+    // that validates the entire image.
+    //
+
+    USHORT PublisherThumbprintHashAlgorithm;
+
+    //
+    // Offset from the start of the driver report to a buffer containing the
+    // digest of the driver image on disk.
+    //
+
+    ULONG ImageHashOffset;
+
+    //
+    // Offset from the start of the driver report to a buffer containing the
+    // thumbprint of the leaf certificate validating the entire image
+    //
+
+    ULONG PublisherThumbprintOffset;
+
+    //
+    // Number of times that this driver image has been loaded into the system.
+    //
+
+    USHORT NumberOfLoadingTimes;
+
+    //
+    // Size and Offset of a string indicating the OEM name stored in the
+    // authenticated OPUS block of the image digital signature.
+    // There is no OEM name for inbox Windows signed drivers. The size does *NOT*
+    // include the NULL terminator (even though the string is NULL-terminated).
+    //
+
+    USHORT OemNameSize;
+    ULONG OemNameOffset;
+
+    //
+    // Flags indicating various properties of the current driver image:
+    //      - Unloaded - Set to 1 in case the driver is current unloaded.
+    //
+    //      - BootDriver - Set to 1 in case the image is a Boot Driver;
+    //           0 otherwise (the image is a Runtime driver).
+    //
+    //      - HotPatch - Set to 1 in case the image can be also loaded as Hotpatch;
+    //
+    //      - Reserved - Reserved flags bits.
+    //
+
+    union
+    {
+        struct
+        {
+            USHORT Unloaded : 1;
+            USHORT BootDriver : 1;
+            USHORT HotPatch : 1;
+            USHORT Reserved : 13;
+        };
+        USHORT AsUInt16;
+    } Flags;
+
+    USHORT Padding;
+} DRIVER_INFO_ENTRY, *PDRIVER_INFO_ENTRY;
+
+typedef struct _DRIVER_RUNTIME_REPORT
+{
+    //
+    // The driver runtime report header.
+    //
+
+    RUNTIME_REPORT_HEADER Header;
+
+    //
+    // The current number of unique drivers in the report.
+    //
+
+    USHORT NumberOfDrivers;
+
+    //
+    // Flags indicating various properties of the report:
+    //      - ReportOverflowed - Secure Kernel places a limit on the number of
+    //          drivers it can list in the report. If this is set, it indicates
+    //          that some loaded drivers might be missing from the report.
+    //
+    //      - PartialReport - Indicates whether the report contains only a
+    //          subset of NT loaded drivers.
+    //
+    //      - IncludeBootDrivers - Set to 1 in case the report includes
+    //          boot-loaded drivers; 0 otherwise (in that case the information
+    //          is stored in the TCG Log).
+    //
+    //      - Reserved - Reserved flags bits.
+    //
+
+    union
+    {
+        struct
+        {
+            USHORT ReportOverflowed : 1;
+            USHORT PartialReport : 1;
+            USHORT IncludeBootDrivers : 1;
+            USHORT Reserved : 13;
+        };
+        USHORT AsUInt16;
+    } Flags;
+
+    //
+    // A list, of size zero up to MaximumDriversRecorded, containing driver entries.
+    // Unloaded drivers are not removed from the list.
+    //
+
+    DRIVER_INFO_ENTRY DriverEntries[ANYSIZE_ARRAY];
+
+    //
+    // After the driver info array the driver runtime report store hashes,
+    // strings and information that are dynamic in size.
+    //
+    // BYTE DynamicBuffer[ANYSIZE_ARRAY];
+    //
+    // The dynamic buffer, for each driver is composed off:
+    // ImageHash - PublisherHash - OemName.
+    //
+
+} DRIVER_RUNTIME_REPORT, *PDRIVER_RUNTIME_REPORT;
+
+#endif
+
+#pragma endregion TODO: Remove this block when GitHub Action Update Windows SDK, this will be defined in winnt.h
+
 //
 // Code Integrity Report Definitions.
 //
