From 34aeec9e19816444fd576aaf73016b4c8333cf8e Mon Sep 17 00:00:00 2001
From: "Jason A. Donenfeld" <Jason@zx2c4.com>
Date: Mon, 5 Aug 2019 19:51:14 +0200
Subject: elevate: consider ImageBaseAddress to be sufficiently stable

GetModuleHandle technically returns an opaque value, so comparing to the
PEB might in some theoretical sense be cleaner.
---
 elevate/loader.go | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 elevate/loader.go

(limited to 'elevate/loader.go')

diff --git a/elevate/loader.go b/elevate/loader.go
new file mode 100644
index 00000000..0bb275da
--- /dev/null
+++ b/elevate/loader.go
@@ -0,0 +1,31 @@
+/* SPDX-License-Identifier: MIT
+ *
+ * Copyright (C) 2019 WireGuard LLC. All Rights Reserved.
+ */
+
+package elevate
+
+import (
+	"unsafe"
+
+	"golang.org/x/sys/windows"
+)
+
+/* We could use the undocumented LdrFindEntryForAddress function instead, but that's undocumented, and we're trying
+ * to be as rock-solid as possible here. */
+func findCurrentDataTableEntry() (entry *cLDR_DATA_TABLE_ENTRY, err error) {
+	peb := rtlGetCurrentPeb()
+	if peb == nil || peb.Ldr == nil {
+		err = windows.ERROR_INVALID_ADDRESS
+		return
+	}
+	for cur := peb.Ldr.InMemoryOrderModuleList.Flink; cur != &peb.Ldr.InMemoryOrderModuleList; cur = cur.Flink {
+		entry = (*cLDR_DATA_TABLE_ENTRY)(unsafe.Pointer(uintptr(unsafe.Pointer(cur)) - unsafe.Offsetof(cLDR_DATA_TABLE_ENTRY{}.InMemoryOrderLinks)))
+		if entry.DllBase == peb.ImageBaseAddress {
+			return
+		}
+	}
+	entry = nil
+	err = windows.ERROR_OBJECT_NOT_FOUND
+	return
+}
-- 
cgit v1.2.3-59-g8ed1b