factor/basis/io/backend/windows/nt/privileges/privileges.factor

USING: alien alien.c-types alien.syntax arrays continuations
destructors generic io.mmap io.ports io.backend.windows io.files.windows
kernel libc math math.bitwise namespaces quotations sequences windows
windows.advapi32 windows.kernel32 io.backend system accessors
io.backend.windows.privileges windows.errors ;
IN: io.backend.windows.nt.privileges

TYPEDEF: TOKEN_PRIVILEGES* PTOKEN_PRIVILEGES

! Security tokens
!  http://msdn.microsoft.com/msdnmag/issues/05/03/TokenPrivileges/

: (open-process-token) ( handle -- handle )
    { TOKEN_ADJUST_PRIVILEGES TOKEN_QUERY } flags "PHANDLE" <c-object>
    [ OpenProcessToken win32-error=0/f ] keep *void* ;

: open-process-token ( -- handle )
    #! remember to CloseHandle
    GetCurrentProcess (open-process-token) ;

: with-process-token ( quot -- )
    #! quot: ( token-handle -- token-handle )
    [ open-process-token ] dip
    [ keep ] curry
    [ CloseHandle drop ] [ ] cleanup ; inline

: lookup-privilege ( string -- luid )
    [ f ] dip "LUID" <c-object>
    [ LookupPrivilegeValue win32-error=0/f ] keep ;

: make-token-privileges ( name ? -- obj )
    "TOKEN_PRIVILEGES" <c-object>
    1 [ over set-TOKEN_PRIVILEGES-PrivilegeCount ] keep
    "LUID_AND_ATTRIBUTES" malloc-array &free
    over set-TOKEN_PRIVILEGES-Privileges

    swap [
        SE_PRIVILEGE_ENABLED over TOKEN_PRIVILEGES-Privileges
        set-LUID_AND_ATTRIBUTES-Attributes
    ] when

    [ lookup-privilege ] dip
    [
        TOKEN_PRIVILEGES-Privileges
        set-LUID_AND_ATTRIBUTES-Luid
    ] keep ;

M: winnt set-privilege ( name ? -- )
    [
        -rot 0 -rot make-token-privileges
        dup length f f AdjustTokenPrivileges win32-error=0/f
    ] with-process-token ;
$U-SLAVA-DFB8FF805\Slava$ Major overhaul of Windows I/O code: simpler, more readable, more efficient, more robust 2008-05-15 06:20:42 -04:00			`USING: alien alien.c-types alien.syntax arrays continuations`
io.files split up and general refactoring work in progress 2008-12-14 21:03:00 -05:00			`destructors generic io.mmap io.ports io.backend.windows io.files.windows`
Fixing basis -> extra dependencies 2008-09-05 20:29:14 -04:00			`kernel libc math math.bitwise namespaces quotations sequences windows`
$U-SLAVA-DFB8FF805\Slava$ Major overhaul of Windows I/O code: simpler, more readable, more efficient, more robust 2008-05-15 06:20:42 -04:00			`windows.advapi32 windows.kernel32 io.backend system accessors`
finish fixing the using list for windows.errors, more ffi bindings 2009-04-30 11:25:59 -04:00			`io.backend.windows.privileges windows.errors ;`
io.files split up and general refactoring work in progress 2008-12-14 21:03:00 -05:00			`IN: io.backend.windows.nt.privileges`
$U-SLAVA-DFB8FF805\Slava$ Major overhaul of Windows I/O code: simpler, more readable, more efficient, more robust 2008-05-15 06:20:42 -04:00
			`TYPEDEF: TOKEN_PRIVILEGES* PTOKEN_PRIVILEGES`

			`! Security tokens`
			`! http://msdn.microsoft.com/msdnmag/issues/05/03/TokenPrivileges/`

			`: (open-process-token) ( handle -- handle )`
			`{ TOKEN_ADJUST_PRIVILEGES TOKEN_QUERY } flags "PHANDLE" <c-object>`
			`[ OpenProcessToken win32-error=0/f ] keep void ;`

			`: open-process-token ( -- handle )`
			`#! remember to CloseHandle`
			`GetCurrentProcess (open-process-token) ;`

			`: with-process-token ( quot -- )`
			`#! quot: ( token-handle -- token-handle )`
Update cpu.x86.basis/io to use dip instead of >r/r> 2008-12-02 04:10:13 -05:00			`[ open-process-token ] dip`
$U-SLAVA-DFB8FF805\Slava$ Major overhaul of Windows I/O code: simpler, more readable, more efficient, more robust 2008-05-15 06:20:42 -04:00			`[ keep ] curry`
			`[ CloseHandle drop ] [ ] cleanup ; inline`

			`: lookup-privilege ( string -- luid )`
Update cpu.x86.basis/io to use dip instead of >r/r> 2008-12-02 04:10:13 -05:00			`[ f ] dip "LUID" <c-object>`
$U-SLAVA-DFB8FF805\Slava$ Major overhaul of Windows I/O code: simpler, more readable, more efficient, more robust 2008-05-15 06:20:42 -04:00			`[ LookupPrivilegeValue win32-error=0/f ] keep ;`

			`: make-token-privileges ( name ? -- obj )`
			`"TOKEN_PRIVILEGES" <c-object>`
			`1 [ over set-TOKEN_PRIVILEGES-PrivilegeCount ] keep`
			`"LUID_AND_ATTRIBUTES" malloc-array &free`
			`over set-TOKEN_PRIVILEGES-Privileges`

			`swap [`
			`SE_PRIVILEGE_ENABLED over TOKEN_PRIVILEGES-Privileges`
			`set-LUID_AND_ATTRIBUTES-Attributes`
			`] when`

Update cpu.x86.basis/io to use dip instead of >r/r> 2008-12-02 04:10:13 -05:00			`[ lookup-privilege ] dip`
$U-SLAVA-DFB8FF805\Slava$ Major overhaul of Windows I/O code: simpler, more readable, more efficient, more robust 2008-05-15 06:20:42 -04:00			`[`
			`TOKEN_PRIVILEGES-Privileges`
			`set-LUID_AND_ATTRIBUTES-Luid`
			`] keep ;`

			`M: winnt set-privilege ( name ? -- )`
			`[`
			`-rot 0 -rot make-token-privileges`
			`dup length f f AdjustTokenPrivileges win32-error=0/f`
			`] with-process-token ;`