ToxicMushroom/Dalamud
1
0
Fork 0
mirror of https://github.com/goatcorp/Dalamud.git synced 2026-02-21 15:27:43 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

TODO SetSecurityInfo

Browse source
This commit is contained in:
Mino 2020-04-13 18:17:15 +09:00
parent 07538a0974
commit 6d7e97519a
2 changed files with 53 additions and 13 deletions
Download patch file Download diff file Expand all files Collapse all files

60
Dalamud.Bootstrap/GameProcess.cs
View file

@ -9,6 +9,8 @@ namespace Dalamud.Bootstrap
{ {
public sealed partial class GameProcess : IDisposable public sealed partial class GameProcess : IDisposable
{ {
private const uint OpenProcessRights = 0;
private IntPtr m_handle; private IntPtr m_handle;
public GameProcess(IntPtr handle) public GameProcess(IntPtr handle)
@ -51,13 +53,14 @@ namespace Dalamud.Bootstrap
public static GameProcess Open(uint pid) public static GameProcess Open(uint pid)
{ {
//
var secHandle = OpenProcessHandle(pid, (uint)(PROCESS_ACCESS_RIGHTS.READ_CONTROL | PROCESS_ACCESS_RIGHTS.WRITE_DAC)); var secHandle = OpenProcessHandle(pid, (uint)(PROCESS_ACCESS_RIGHTS.READ_CONTROL | PROCESS_ACCESS_RIGHTS.WRITE_DAC));
try try
{ {
RelaxProcessHandle(secHandle, (_) => return RelaxProcessHandle(secHandle, (_) =>
{ {
var handle = OpenProcessHandle(pid, OpenProcessRights);
return new GameProcess(handle);
}); });
} }
finally finally
@ -66,15 +69,17 @@ namespace Dalamud.Bootstrap
} }
} }
private static void RelaxProcessHandle(IntPtr handle, Action<IntPtr> scope) private static T RelaxProcessHandle<T>(IntPtr handle, Func<IntPtr, T> scope)
{ {
// relax shit // relax shit
unsafe unsafe
{ {
T result;
uint error;
SECURITY_DESCRIPTOR* pSecurityDescOrig; SECURITY_DESCRIPTOR* pSecurityDescOrig;
ACL* pDaclOrig, pDaclRelaxed; ACL* pDaclOrig;
var error = Advapi32.GetSecurityInfo( error = Advapi32.GetSecurityInfo(
handle, handle,
SE_OBJECT_TYPE.SE_KERNEL_OBJECT, SE_OBJECT_TYPE.SE_KERNEL_OBJECT,
SECURITY_INFORMATION.DACL_SECURITY_INFORMATION, SECURITY_INFORMATION.DACL_SECURITY_INFORMATION,
@ -92,18 +97,53 @@ namespace Dalamud.Bootstrap
try try
{ {
scope(handle); EXPLICIT_ACCESS_W explictAccess;
ACL* pRelaxedAcl;
Advapi32.BuildExplicitAccessWithNameW(&explictAccess, "TODO", OpenProcessRights, ACCESS_MODE.GRANT_ACCESS, 0);
error = Advapi32.SetEntriesInAclW(1, &explictAccess, null, &pRelaxedAcl);
if (error != 0)
{
throw new ProcessException();
}
error = Advapi32.SetSecurityInfo(
handle,
SE_OBJECT_TYPE.SE_KERNEL_OBJECT,
SECURITY_INFORMATION.DACL_SECURITY_INFORMATION,
null,
null,
pRelaxedAcl,
null
);
if (error != 0)
{
throw new ProcessException();
}
result = scope(handle);
} }
finally finally
{ {
// Restore permission // Restore permission; also we don't care about an error for now
Advapi32.SetSecurityInfo(
handle,
SE_OBJECT_TYPE.SE_KERNEL_OBJECT,
SECURITY_INFORMATION.DACL_SECURITY_INFORMATION,
null,
null,
pDaclOrig,
null
);
Kernel32.LocalFree(pSecurityDescOrig); Kernel32.LocalFree(pSecurityDescOrig);
} }
}
return result;
}
} }
public void GetSecurityInfo() public void GetSecurityInfo()

6
Dalamud.Bootstrap/OS/Windows/Raw/Advapi32.cs
View file

@ -11,11 +11,11 @@ namespace Dalamud.Bootstrap.OS.Windows.Raw
[return: MarshalAs(UnmanagedType.Bool)] [return: MarshalAs(UnmanagedType.Bool)]
public static extern bool InitializeSecurityDescriptor(out SECURITY_DESCRIPTOR pSecurityDescriptor, uint revision); public static extern bool InitializeSecurityDescriptor(out SECURITY_DESCRIPTOR pSecurityDescriptor, uint revision);
[DllImport(Name, CallingConvention = CallingConvention.Winapi)] [DllImport(Name, CallingConvention = CallingConvention.Winapi, ExactSpelling = true, CharSet = CharSet.Unicode)]
public static extern uint SetEntriesInAclA(ulong cCountOfExplicitEntries, ref ACL oldAcl, out ACL* NewAcl); public static extern uint SetEntriesInAclW(ulong cCountOfExplicitEntries, EXPLICIT_ACCESS_W* pListOfExplicitEntries, ACL* oldAcl, ACL** NewAcl);
[DllImport(Name, CallingConvention = CallingConvention.Winapi, ExactSpelling = true, CharSet = CharSet.Unicode)] [DllImport(Name, CallingConvention = CallingConvention.Winapi, ExactSpelling = true, CharSet = CharSet.Unicode)]
public static extern void BuildExplicitAccessWithNameW(out EXPLICIT_ACCESS_W pExplicitAccess, string pTrusteeName, uint AccessPermissions, ACCESS_MODE AccessMode, uint Inheritance); public static extern void BuildExplicitAccessWithNameW(EXPLICIT_ACCESS_W* pExplicitAccess, string pTrusteeName, uint AccessPermissions, ACCESS_MODE AccessMode, uint Inheritance);
[DllImport(Name, CallingConvention = CallingConvention.Winapi)] [DllImport(Name, CallingConvention = CallingConvention.Winapi)]
public static extern uint GetSecurityInfo(IntPtr handle, SE_OBJECT_TYPE ObjectType, SECURITY_INFORMATION SecurityInfo, SID** ppsidOwner, SID** ppsidGroup, ACL** ppDacl, ACL** ppSacl, SECURITY_DESCRIPTOR** ppSecurityDescriptor); public static extern uint GetSecurityInfo(IntPtr handle, SE_OBJECT_TYPE ObjectType, SECURITY_INFORMATION SecurityInfo, SID** ppsidOwner, SID** ppsidGroup, ACL** ppDacl, ACL** ppSacl, SECURITY_DESCRIPTOR** ppSecurityDescriptor);