Skip to content

Commit

Permalink
Add -dont_restart_as_admin to command line when restarting as admin
Browse files Browse the repository at this point in the history 
This prevents endless loop of RestartAsAdministrator() if we fail to
enable SeDebugPrivilege after the first restart.

See issue #94
  • Loading branch information
@JeffersonMontgomery-Intel
JeffersonMontgomery-Intel committed Dec 11, 2020
1 parent a83ac5d commit b7e0c8d
Show file tree
Hide file tree
Showing 2 changed files with 46 additions and 22 deletions.
5 changes: 5 additions & 0 deletions PresentMon/OutputThread.cpp
View file
Original file line number Diff line number Diff line change
Expand Up @@ -163,6 +163,11 @@ static ProcessInfo* GetProcessInfo(uint32_t processId)
// In ETL capture, we should have gotten an NTProcessEvent for this
// process updated via UpdateNTProcesses(), so this path should only
// happen in realtime capture.
//
// Try to open a limited handle into the process in order to query its
// name and also periodically check if it has terminated. This will
// fail (with GetLastError() == ERROR_ACCESS_DENIED) if the process was
// run on another account, unless we're running with SeDebugPrivilege.
auto const& args = GetCommandLineArgs();
HANDLE handle = NULL;
char const* processName = "<error>";
Expand Down
63 changes: 41 additions & 22 deletions PresentMon/Privilege.cpp
View file
Original file line number Diff line number Diff line change
Expand Up @@ -121,32 +121,60 @@ int RestartAsAdministrator(
int argc,
char** argv)
{
// Get the exe path
char exe_path[MAX_PATH] = {};
GetModuleFileNameA(NULL, exe_path, sizeof(exe_path));

// Combine arguments into single array
char args[1024] = {};
for (int idx = 0, i = 1; i < argc && (size_t) idx < sizeof(args); ++i) {
if (idx >= sizeof(args)) {
fprintf(stderr, "internal error: command line arguments too long.\n");
return false; // was truncated
// Combine arguments into single char* and add -dont_restart_as_admin to
// prevent an endless loop if the escalation fails.
char* args = nullptr;
{
static char const* const extra_args = "-dont_restart_as_admin";
size_t idx = strlen(extra_args);
size_t len = idx + 1;
for (int i = 1; i < argc; ++i) {
len += strlen(argv[i]) + 2 + 1; // +2 for possible quotes, +1 for space or null
}

if (argv[i][0] != '\"' && strchr(argv[i], ' ')) {
idx += snprintf(args + idx, sizeof(args) - idx, " \"%s\"", argv[i]);
} else {
idx += snprintf(args + idx, sizeof(args) - idx, " %s", argv[i]);
args = new char [len];
memcpy(args, extra_args, idx + 1);
for (int i = 1; i < argc; ++i) {
auto addQuotes = argv[i][0] != '\"' && strchr(argv[i], ' ') != nullptr;
auto n = strlen(argv[i]);

args[idx] = ' ';

if (addQuotes) {
args[idx + 1] = '\"';
memcpy(args + idx + 2, argv[i], n);
args[idx + n + 2] = '\"';
args[idx + n + 3] = '\0';
idx += 2;
} else {
memcpy(args + idx + 1, argv[i], n + 1);
}

idx += n + 1;
}
}

// Re-run the process with the runas verb
DWORD code = 2;

SHELLEXECUTEINFOA info = {};
info.cbSize = sizeof(info);
info.fMask = SEE_MASK_NOCLOSEPROCESS;
info.fMask = SEE_MASK_NOCLOSEPROCESS; // return info.hProcess for explicit wait
info.lpVerb = "runas";
info.lpFile = exe_path;
info.lpParameters = args;
info.nShow = SW_SHOW;
if (!ShellExecuteExA(&info) || info.hProcess == NULL) {
info.nShow = SW_SHOWDEFAULT;
auto ok = ShellExecuteExA(&info);
delete[] args;
if (ok) {
WaitForSingleObject(info.hProcess, INFINITE);
GetExitCodeProcess(info.hProcess, &code);
CloseHandle(info.hProcess);
} else {
fprintf(stderr, "error: failed to elevate privilege ");
int e = GetLastError();
switch (e) {
Expand All @@ -159,17 +187,8 @@ int RestartAsAdministrator(
case ERROR_SHARING_VIOLATION: fprintf(stderr, "(sharing violation).\n"); break;
default: fprintf(stderr, "(%u).\n", e); break;
}
return 2;
}

WaitForSingleObject(info.hProcess, INFINITE);

DWORD code = 0;
GetExitCodeProcess(info.hProcess, &code);
int e = GetLastError();
(void) e;
CloseHandle(info.hProcess);

return code;
}

Expand Down

0 comments on commit b7e0c8d

Please sign in to comment.