从一个非常简单的c#或c ++ gui程序执行时,PsExec挂起,编译为"windows应用程序"

Question

我从一个非常简单的c#或c ++ gui程序执行编译为"windows应用程序"(而不是"控制台应用程序")时遇到PsExec挂起.在下面的C)部分,我已粘贴代码以重现问题,并在D)部分我已粘贴c ++代码以重现相同的问题.

当psexec挂起时,将本地附加到psexec后的windbg输出粘贴在B)部分下.

转储粘贴在A)部分下面的输出后,我的程序挂起.

如果你用任何本地替换psexec命令,程序工作正常,例如ProcessStartInfo("cmd.exe","/ c dir c:\ windows\*.*");

我想知道是否有人经历过它并找到了解决方案.将非常感谢帮助.

谢谢,Sharrajesh

---

A)psexec挂起时我的c#程序输出

PsExec v1.98 - 远程执行过程版权所有(C)2001-2010 Mark Russinovich Sysinternals - www.sysinternals.com

驱动器C中的卷没有标签.

---

B)挂起时psexec的Windbg输出

3 Id:1614.15e4暂停:1 Teb:7efac000 Unfrozen ChildEBP RetAddr Args to Child
02a3fe68 75a6d0c5 00000180 00000000 00000000 ntdll!NtReadFile + 0x15(FPO:[9,0,0])02a3fecc 75cb18aa 00000180 02a3ff44 00010000 KERNELBASE!ReadFile + 0x118(FPO :[SEH])02a3ff14 00403bde 00000180 02a3ff44 00010000 kernel32!ReadFileImplementation + 0xf0(FPO:[SEH])警告:堆栈展开信息不可用.以下框架可能是错误的.02a3ff2c 00000000 00291e48 00000000 02a5ff80 psexec + 0x3bde

---

C)重现问题的c#代码

using System;
using System.Windows.Forms;
using System.Diagnostics;

namespace WindowsFormsApplication1 {
  static class Program {
    static void DataReceiveHandler(object sender, DataReceivedEventArgs e) {
      Debug.WriteLine(e.Data);
    }

    public static void NotWorkingPsExec() {
      ProcessStartInfo startInfo = new ProcessStartInfo("psexec.exe",
        "\\\\raj-2k3-32 cmd.exe /c dir c:\\windows\\*.*");
      startInfo.UseShellExecute        = false;
      startInfo.CreateNoWindow         = true;
      startInfo.RedirectStandardOutput = true;
      startInfo.RedirectStandardError  = true;

      Process proc = new Process();
      proc.StartInfo           = startInfo;
      proc.ErrorDataReceived  += new DataReceivedEventHandler(DataReceiveHandler);
      proc.OutputDataReceived += new DataReceivedEventHandler(DataReceiveHandler);
      proc.Start();
      proc.BeginErrorReadLine();
      proc.BeginOutputReadLine();
      proc.WaitForExit();
      Debug.WriteLine("Exit code = {0}", proc.ExitCode);
    }

    public static void WorkingPsExec() {
      ProcessStartInfo startInfo = new ProcessStartInfo("psexec.exe", 
        "\\\\raj-2k3-32 cmd.exe /c dir c:\\windows\\*.*");
      startInfo.UseShellExecute = false;

      Process proc = new Process();
      proc.StartInfo = startInfo;
      proc.Start();
      proc.WaitForExit();
      Debug.WriteLine("Exit code = {0}", proc.ExitCode);
    }

    static void Main() {
      NotWorkingPsExec();
      //WorkingPsExec(); //If uncommented will work 
    }
  }
}

---

D)重现问题的c ++代码

#include <windows.h>
#include <tchar.h>
#include <stdio.h>
#include <strsafe.h>

HANDLE g_hStdoutRd = NULL;
HANDLE g_hStdoutWr = NULL;

void StartCommand(TCHAR *szCmdline);
void ReadOutput();
void ErrorExit(PTSTR);

int APIENTRY _tWinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPTSTR lpCmdLine, int nCmdShow) {
  SECURITY_ATTRIBUTES saAttr;
  saAttr.nLength              = sizeof(SECURITY_ATTRIBUTES);
  saAttr.bInheritHandle       = TRUE;
  saAttr.lpSecurityDescriptor = NULL;
  if (!CreatePipe(&g_hStdoutRd, &g_hStdoutWr, &saAttr, 0))
    ErrorExit(TEXT("Stdout SetHandleInformation"));
  if (!SetHandleInformation(g_hStdoutRd, HANDLE_FLAG_INHERIT, 0))
    ErrorExit(TEXT("Stdout SetHandleInformation"));
  TCHAR szCmdline[] = TEXT("psexec.exe \\\\raj-2k3-32 cmd.exe /c dir /s c:\\windows\\*.*"); // Not Working
  //TCHAR szCmdline[] = TEXT("cmd.exe /c dir /s c:\\windows\\*.*"); // Working
  StartCommand(szCmdline);
  ReadOutput();
  return 0;
}

void StartCommand(TCHAR *szCmdline) {
  PROCESS_INFORMATION piProcInfo  = {0};
  STARTUPINFO         siStartInfo = {0};
  siStartInfo.cb         = sizeof(STARTUPINFO);
  siStartInfo.hStdError  = g_hStdoutWr;
  siStartInfo.hStdOutput = g_hStdoutWr;
  siStartInfo.dwFlags   |= STARTF_USESTDHANDLES;
  BOOL bSuccess = CreateProcess(NULL, szCmdline, NULL, NULL, TRUE, 0, NULL, NULL, &siStartInfo, &piProcInfo);
  if (!bSuccess)
    ErrorExit(TEXT("CreateProcess"));
  else {
    CloseHandle(piProcInfo.hProcess);
    CloseHandle(piProcInfo.hThread);
  }
}

void ReadOutput() {
  if (!CloseHandle(g_hStdoutWr))
    ErrorExit(TEXT("StdOutWr CloseHandle"));
  for (;; ) {
    CHAR    chBuf[4096] = {0};
    DWORD   dwRead;
    BOOLEAN bSuccess    = ReadFile(g_hStdoutRd, chBuf, ARRAYSIZE(chBuf), &dwRead, NULL);
    if (!bSuccess || dwRead == 0)
      break;
    OutputDebugStringA(chBuf);
  }
}

void ErrorExit(PTSTR lpszFunction) {
  OutputDebugString(lpszFunction);
  ExitProcess(1);
}

Answer 1

PSExec对我来说太随意了.我没有努力以你的方式重新创造问题,但我通过使用"PAExec"避免了我的麻烦,这是一个看似有价值的继任者:http: //www.poweradmin.com/PAExec/

Answer 2

还请在startInfo 上设置WorkingDirectory 属性，因为Sysinternals 实用程序使用文件的运行时解包，并且内核无法找到解包的（真正的）可执行文件。