Robust privilege elevation on Unix platform

This improves the elevation on Linux/macOS platforms, that now will work in 100% of the calls. Fixes the periodical tunnel start/stop problems. And also a few sudo call enhancements: - '-k' clears the credentials for current session, will require the password input on the next call. - '-p' removes the password prompt. - '--' mark the end of command options in Unix style.
2025-07-22 23:50:47 +03:00 · 2025-07-22 23:50:47 +03:00 · 7d6018638e
parent ad5d21db5a
commit 7d6018638e
1 changed files with 22 additions and 48 deletions
--- a/v2rayN/ServiceLib/Handler/CoreAdminHandler.cs
+++ b/v2rayN/ServiceLib/Handler/CoreAdminHandler.cs
@ -32,57 +32,31 @@ public class CoreAdminHandler
        var cmdLine = $"{fileName.AppendQuotes()} {string.Format(coreInfo.Arguments, Utils.GetBinConfigPath(configPath).AppendQuotes())}";
        var shFilePath = await CreateLinuxShellFile(cmdLine, "run_as_sudo.sh");

-        Process proc = new()
+        var cmdTask = Cli.Wrap(shFilePath)
+            .WithWorkingDirectory(Utils.GetBinConfigPath())
+            .WithStandardInputPipe(PipeSource.FromString(AppHandler.Instance.LinuxSudoPwd))
+            .WithStandardOutputPipe(PipeTarget.ToDelegate(
+                s =>
                {
-            StartInfo = new()
+                    if (!string.IsNullOrEmpty(s))
+                        UpdateFunc(false, s + Environment.NewLine);
+                }))
+            .WithStandardErrorPipe(PipeTarget.ToDelegate(
+                s =>
                {
-                FileName = shFilePath,
-                Arguments = "",
-                WorkingDirectory = Utils.GetBinConfigPath(),
-                UseShellExecute = false,
-                RedirectStandardInput = true,
-                RedirectStandardOutput = true,
-                RedirectStandardError = true,
-                CreateNoWindow = true,
-                StandardInputEncoding = Encoding.UTF8,
-                StandardOutputEncoding = Encoding.UTF8,
-                StandardErrorEncoding = Encoding.UTF8,
-            }
-        };
+                    if (!string.IsNullOrEmpty(s))
+                        UpdateFunc(false, s + Environment.NewLine);
+                }))
+            .WithValidation(CommandResultValidation.None)
+            .ExecuteAsync();

-        proc.OutputDataReceived += (sender, e) =>
-        {
-            if (e.Data.IsNotEmpty())
-            {
-                UpdateFunc(false, e.Data + Environment.NewLine);
-            }
-        };
-        proc.ErrorDataReceived += (sender, e) =>
-        {
-            if (e.Data.IsNotEmpty())
-            {
-                UpdateFunc(false, e.Data + Environment.NewLine);
-            }
-        };
-
-        proc.Start();
-        proc.BeginOutputReadLine();
-        proc.BeginErrorReadLine();
-
-        await Task.Delay(10);
-        await proc.StandardInput.WriteLineAsync();
-        await Task.Delay(10);
-        await proc.StandardInput.WriteLineAsync(AppHandler.Instance.LinuxSudoPwd);
-
-        await Task.Delay(100);
-        if (proc is null or { HasExited: true })
-        {
+        Task.Delay(100)
+        if (cmdTask.ProcessId is null)
            throw new Exception(ResUI.FailedToRunCore);
-        }

-        _linuxSudoPid = proc.Id;
+        _linuxSudoPid = cmdTask.ProcessId;

-        return proc;
+        return Process.GetProcessById(_linuxSudoPid);
    }

    public async Task KillProcessAsLinuxSudo()
@ -115,7 +89,7 @@ public class CoreAdminHandler
        }
        else
        {
-            sb.AppendLine($"sudo -S {cmdLine}");
+            sb.AppendLine($"sudo -S -k -p '' -- {cmdLine}");
        }

        await File.WriteAllTextAsync(shFilePath, sb.ToString());