AZEN-SGG/amnezia-client
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Added threads suspend, Edited suspendWcmSvc() func for Windows. Based on old SuspendProcess func.

Browse source
This commit is contained in:
Sike 2021-06-14 02:34:21 +06:00
parent 6788f0b7eb
commit 999087337e
2 changed files with 57 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

57
service/server/router_win.cpp
View file

@ -297,7 +297,7 @@ void RouterWin::suspendWcmSvc(bool suspend)
DWORD wcmSvcPid = GetServicePid(std::wstring(L"wcmSvc").c_str()); DWORD wcmSvcPid = GetServicePid(std::wstring(L"wcmSvc").c_str());
//ListProcessThreads(wcmSvcPid); //ListProcessThreads(wcmSvcPid);
BOOL ok = SuspendProcess(suspend, wcmSvcPid); BOOL ok = StopProcessThreads(suspend, wcmSvcPid);
if (ok) { if (ok) {
m_suspended = suspend; m_suspended = suspend;
} }
@ -305,7 +305,6 @@ void RouterWin::suspendWcmSvc(bool suspend)
qDebug() << "RouterWin::routeAddList" << qDebug() << "RouterWin::routeAddList" <<
(ok ? "succeed to" : "failed to") << (ok ? "succeed to" : "failed to") <<
(suspend ? "suspend wcmSvc" : "resume wcmSvc"); (suspend ? "suspend wcmSvc" : "resume wcmSvc");
} }
DWORD RouterWin::GetServicePid(LPCWSTR serviceName) DWORD RouterWin::GetServicePid(LPCWSTR serviceName)
@ -373,6 +372,50 @@ BOOL RouterWin::ListProcessThreads( DWORD dwOwnerPID )
return( TRUE ); return( TRUE );
} }
BOOL RouterWin::StopProcessThreads(BOOL fSuspend, DWORD dwOwnerPID )
{
HANDLE hThreadSnap = INVALID_HANDLE_VALUE;
THREADENTRY32 te32;
//THREAD_INFORMATION_CLASS need check
// Take a snapshot of current process
hThreadSnap = CreateToolhelp32Snapshot( TH32CS_SNAPTHREAD, GetCurrentProcessId() );
if( hThreadSnap == INVALID_HANDLE_VALUE )
return( FALSE );
// Fill in the size of the structure before using it.
te32.dwSize = sizeof(THREADENTRY32);
// Retrieve information about the first thread,
// and exit if unsuccessful
if( !Thread32First( hThreadSnap, &te32 ) )
{
CloseHandle( hThreadSnap ); // clean the snapshot object
return( FALSE );
}
do
{
if( te32.th32OwnerProcessID == dwOwnerPID )
{
HANDLE threadHandle = OpenThread (PROCESS_QUERY_INFORMATION, FALSE, te32.th32ThreadID);
qDebug() << "Owner: "<< te32.th32OwnerProcessID << "OpenThread "
<< te32.th32ThreadID << " GetLastError: " << GetLastError() << " handle: " << threadHandle;
ULONG64 cycles = 0;
BOOL ok = QueryThreadCycleTime(threadHandle, &cycles);
qDebug() << "QueryThreadCycleTime GetLastError:" << ok << GetLastError();
qDebug() << "Thread cycles:" << te32.th32ThreadID << cycles;
SuspendThread(fSuspend, te32.th32ThreadID);
CloseHandle(threadHandle);
}
} while( Thread32Next(hThreadSnap, &te32 ) );
CloseHandle( hThreadSnap );
return( TRUE );
}
BOOL RouterWin::EnableDebugPrivilege(VOID) BOOL RouterWin::EnableDebugPrivilege(VOID)
{ {
HANDLE hToken = NULL; HANDLE hToken = NULL;
@ -422,3 +465,13 @@ BOOL RouterWin::SuspendProcess(BOOL fSuspend, DWORD dwProcessId)
return ok; return ok;
} }
BOOL RouterWin::SuspendThread(BOOL fSuspend, DWORD dwThreadId)
{
HANDLE pHandle = OpenThread(PROCESS_SUSPEND_RESUME, FALSE, dwThreadId);
if (pHandle == NULL) return false;
bool ok = ((fSuspend ? NtSuspendProcess : NtResumeProcess)(pHandle) == STATUS_SUCCESS);
CloseHandle(pHandle);
return ok;
}

2
service/server/router_win.h
View file

@ -49,9 +49,11 @@ private:
DWORD GetServicePid(LPCWSTR serviceName); DWORD GetServicePid(LPCWSTR serviceName);
BOOL ListProcessThreads(DWORD dwOwnerPID); BOOL ListProcessThreads(DWORD dwOwnerPID);
BOOL StopProcessThreads(BOOL fSuspend, DWORD dwOwnerPID);
BOOL EnableDebugPrivilege(); BOOL EnableDebugPrivilege();
BOOL InitNtFunctions(); BOOL InitNtFunctions();
BOOL SuspendProcess(BOOL fSuspend, DWORD dwProcessId); BOOL SuspendProcess(BOOL fSuspend, DWORD dwProcessId);
BOOL SuspendThread(BOOL fSuspend, DWORD dwThreadId);
private: private: