fix: use GetVolumeInformationW for NTFS detection (no admin required)

githubrobbi · githubrobbi · commit 94fa978df741 · 2026-01-16T22:41:05.000-08:00
The previous approach used FSCTL_GET_NTFS_VOLUME_DATA which requires
elevated privileges just to detect if a drive is NTFS.

Now uses GetVolumeInformationW which works without admin rights.
Admin is still required for actual MFT reading, but detection works
for everyone.

Also added is_elevated() export and better error message in CLI.
diff --git a/crates/uffs-cli/src/commands.rs b/crates/uffs-cli/src/commands.rs
@@ -79,6 +79,18 @@ pub async fn search(
             // No drive specified - search ALL available NTFS drives
             #[cfg(windows)]
             {
+                // Check for admin privileges first - MFT reading requires elevation
+                if !uffs_mft::is_elevated() {
+                    bail!(
+                        "Administrator privileges required.\n\
+                         \n\
+                         UFFS reads the NTFS Master File Table directly, which requires elevated access.\n\
+                         \n\
+                         Solutions:\n\
+                         1. Run PowerShell/Terminal as Administrator\n\
+                         2. Use a pre-built index: uffs search --index <file.parquet> \"*.txt\""
+                    );
+                }
                 let all_drives = uffs_mft::detect_ntfs_drives();
                 if all_drives.is_empty() {
                     bail!("No NTFS drives found on this system");
diff --git a/crates/uffs-mft/src/lib.rs b/crates/uffs-mft/src/lib.rs
@@ -113,7 +113,9 @@ pub use ntfs::{
 };
 // Re-export platform types
 #[cfg(windows)]
-pub use platform::{MftBitmap, MftExtent, NtfsVolumeData, VolumeHandle, detect_ntfs_drives};
+pub use platform::{
+    MftBitmap, MftExtent, NtfsVolumeData, VolumeHandle, detect_ntfs_drives, is_elevated,
+};
 pub use raw::{
     LoadRawOptions, RawMftData, RawMftHeader, SaveRawOptions, load_raw_mft, load_raw_mft_header,
     save_raw_mft,
diff --git a/crates/uffs-mft/src/platform.rs b/crates/uffs-mft/src/platform.rs
@@ -973,19 +973,19 @@ pub fn detect_ntfs_drives() -> Vec<char> {
 
 /// Checks if a drive is an NTFS volume.
 ///
-/// This attempts to get NTFS volume data from the drive. If successful,
-/// the drive is NTFS formatted.
-#[allow(unsafe_code)] // Required: Windows FFI (GetDriveTypeW, CreateFileW, DeviceIoControl)
+/// Uses `GetVolumeInformationW` to check the filesystem name, which doesn't
+/// require elevated privileges.
+#[allow(unsafe_code)] // Required: Windows FFI (GetDriveTypeW, GetVolumeInformationW)
 fn is_ntfs_volume(drive_letter: char) -> bool {
-    use windows::Win32::Storage::FileSystem::GetDriveTypeW;
+    use windows::Win32::Storage::FileSystem::{GetDriveTypeW, GetVolumeInformationW};
 
     // First check if it's a fixed or removable drive (skip network, CD-ROM, etc.)
-    let path: Vec<u16> = format!("{}:\\", drive_letter.to_ascii_uppercase())
+    let root_path: Vec<u16> = format!("{}:\\", drive_letter.to_ascii_uppercase())
         .encode_utf16()
         .chain(std::iter::once(0))
         .collect();
 
-    let drive_type = unsafe { GetDriveTypeW(PCWSTR(path.as_ptr())) };
+    let drive_type = unsafe { GetDriveTypeW(PCWSTR(root_path.as_ptr())) };
 
     // DRIVE_FIXED = 3, DRIVE_REMOVABLE = 2
     // Skip DRIVE_UNKNOWN (0), DRIVE_NO_ROOT_DIR (1), DRIVE_REMOTE (4), DRIVE_CDROM
@@ -994,50 +994,29 @@ fn is_ntfs_volume(drive_letter: char) -> bool {
         return false;
     }
 
-    // Try to open the volume and get NTFS data
-    let volume_path: Vec<u16> = format!("\\\\.\\{}:", drive_letter.to_ascii_uppercase())
-        .encode_utf16()
-        .chain(std::iter::once(0))
-        .collect();
+    // Get filesystem name using GetVolumeInformationW (no admin required)
+    let mut fs_name_buffer: [u16; 32] = [0; 32];
 
-    let handle = unsafe {
-        CreateFileW(
-            PCWSTR(volume_path.as_ptr()),
-            FILE_READ_ATTRIBUTES.0,
-            FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,
-            None,
-            OPEN_EXISTING,
-            FILE_FLAG_BACKUP_SEMANTICS,
-            None,
+    let result = unsafe {
+        GetVolumeInformationW(
+            PCWSTR(root_path.as_ptr()),
+            None,                                   // Volume name buffer (not needed)
+            None,                                   // Volume serial number (not needed)
+            None,                                   // Max component length (not needed)
+            None,                                   // File system flags (not needed)
+            Some(&mut fs_name_buffer),              // File system name buffer
         )
     };
 
-    let Ok(handle) = handle else {
+    if result.is_err() {
         return false;
-    };
-
-    // Try to get NTFS volume data
-    use windows::Win32::System::IO::DeviceIoControl;
-
-    let mut buffer = NTFS_VOLUME_DATA_BUFFER::default();
-    let mut bytes_returned: u32 = 0;
-
-    let result = unsafe {
-        DeviceIoControl(
-            handle,
-            FSCTL_GET_NTFS_VOLUME_DATA,
-            None,
-            0,
-            Some(core::ptr::from_mut(&mut buffer).cast()),
-            size_of::<NTFS_VOLUME_DATA_BUFFER>() as u32,
-            Some(&mut bytes_returned),
-            None,
-        )
-    };
+    }
 
-    let _ = unsafe { CloseHandle(handle) };
+    // Convert filesystem name to string and check if it's NTFS
+    let fs_name = String::from_utf16_lossy(&fs_name_buffer);
+    let fs_name = fs_name.trim_end_matches('\0');
 
-    result.is_ok()
+    fs_name == "NTFS"
 }
 
 #[cfg(test)]
