diff options
| author |   Jason A. Donenfeld <Jason@zx2c4.com> | 2019-05-07 20:34:01 +0200 |
|---|---|---|
| committer | Jason A. Donenfeld <Jason@zx2c4.com> | 2019-05-08 08:31:00 +0200 |
| commit | 052102e402d53ec6961aecd09c933e43c71aa999 (patch) | |
| tree | 0b39272e651d7d6da8809a0228248b6cd32a7540 /service/service_manager.go | |
| parent | installer: silence LGHT1056 warning (diff) | |
| download | wireguard-windows-052102e402d53ec6961aecd09c933e43c71aa999.tar.xz wireguard-windows-052102e402d53ec6961aecd09c933e43c71aa999.zip | |
service: give process elevated security attributes plus logon session ID with minimal permissions
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Diffstat (limited to 'service/service_manager.go')
| -rw-r--r-- | service/service_manager.go | 27 |
1 files changed, 8 insertions, 19 deletions
diff --git a/service/service_manager.go b/service/service_manager.go index aae11daf..2862c729 100644 --- a/service/service_manager.go +++ b/service/service_manager.go @@ -54,12 +54,6 @@ func (service *managerService) Execute(args []string, r <-chan svc.ChangeRequest serviceError = ErrorDetermineExecutablePath return } - securityAttributes, err := getCurrentSecurityAttributes() - if err != nil { - serviceError = ErrorCreateSecurityDescriptor - return - } - defer windows.LocalFree(windows.Handle(securityAttributes.SecurityDescriptor)) devNull, err := os.OpenFile(os.DevNull, os.O_RDWR, 0) if err != nil { @@ -124,6 +118,11 @@ func (service *managerService) Execute(args []string, r <-chan svc.ChangeRequest log.Printf("Unable to determine elevated environment: %v", err) return } + securityAttributes, err := getSecurityAttributes(userTokenInfo.elevatedToken, userToken) + if err != nil { + log.Printf("Unable to extract security attributes from elevated token and combine them with SID from user token: %v", err) + return + } for { if stoppingManager { return @@ -153,19 +152,9 @@ func (service *managerService) Execute(args []string, r <-chan svc.ChangeRequest log.Printf("Starting UI process for user: '%s@%s'", username, domain) attr := &os.ProcAttr{ Sys: &syscall.SysProcAttr{ - Token: syscall.Token(userToken), - - /* TODO: XXX: BUG: HACK: DO NOT SHIP WITH THIS COMMENT: - * These next two lines are commented out, because: - * - We're uncertain of their correctness, especially with regards to integrity level. - * - The permissions are too tight and they interfere with some UI things like notification - * balloon icons. - * These will be reenabled once we've figured out the right way to do it, and this - * program should not ship until we've done so. - - ProcessAttributes: &securityAttributes, - ThreadAttributes: &securityAttributes, - */ + Token: syscall.Token(userToken), + ProcessAttributes: sliceToSecurityAttributes(securityAttributes), + ThreadAttributes: sliceToSecurityAttributes(securityAttributes), }, Files: []*os.File{devNull, devNull, devNull}, Env: env, |