service: run UI at high integrity

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
author: Jason A. Donenfeld <Jason@zx2c4.com> 2019-05-11 22:13:31 +0200
committer: Jason A. Donenfeld <Jason@zx2c4.com> 2019-05-11 22:15:02 +0200
commit: fabe02d68f2e04254e5859af427e90ebc131df92 (patch)
tree: 4a5bddef7103b4339778f4678b08795eb87c92b6 /service/service_manager.go
parent: ui: allow editing existing tunnels without changing name (diff)
download: wireguard-windows-fabe02d68f2e04254e5859af427e90ebc131df92.tar.xz
wireguard-windows-fabe02d68f2e04254e5859af427e90ebc131df92.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/service/service_manager.go b/service/service_manager.go
index 109eeb8c..c1416c49 100644
--- a/service/service_manager.go
+++ b/service/service_manager.go
@@ -132,6 +132,11 @@ func (service *managerService) Execute(args []string, r <-chan svc.ChangeRequest
 			log.Printf("Unable to extract security attributes from manager token and combine them with SID from user token: %v", err)
 			return
 		}
+		err = addElevatedIntegrityToUserToken(userTokenInfo.elevatedToken, userToken)
+		if err != nil {
+			log.Printf("Unable to copy integrity level from elevated token to user token")
+			return
+		}
 		first := true
 		for {
 			if stoppingManager {
author	Jason A. Donenfeld <Jason@zx2c4.com>	2019-05-11 22:13:31 +0200
committer	Jason A. Donenfeld <Jason@zx2c4.com>	2019-05-11 22:15:02 +0200
commit	fabe02d68f2e04254e5859af427e90ebc131df92 (patch)
tree	4a5bddef7103b4339778f4678b08795eb87c92b6 /service/service_manager.go
parent	ui: allow editing existing tunnels without changing name (diff)
download	wireguard-windows-fabe02d68f2e04254e5859af427e90ebc131df92.tar.xz wireguard-windows-fabe02d68f2e04254e5859af427e90ebc131df92.zip