Strona główna Odkrywaj Pomoc
Zaloguj się
mirrors
/
optimizer
kopia lustrzana https://github.com/hellzerg/optimizer
2
0
Forkuj 0
Pliki Problemy 0 Wiki
Drzewo: e849a66487
Gałęzie Tagi
optimizer
/
Optimizer
/
TokenPrivilegeHelper.cs

TokenPrivilegeHelper.cs 4.1 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899 
  1. using System;
    2. 

  2. using System.Runtime.InteropServices;
    3. 

  3. using System.Security;
    4. 

  4. 

  5. namespace Optimizer {
    6. 

  6.     /*
    7. 

  7.      *  Allows clients to obtain a Windows token privilege for a well-defined scope simply by "using" an instance of this class.
    8. 

  8.      */
    9. 

  9.     sealed class TokenPrivilegeHelper : IDisposable {
    10. 

  10.         private enum PrivilegeAction : uint {
    11. 

  11.             Disable = 0x0,
    12. 

  12.             Enable = 0x2
    13. 

  13.         }
    14. 

  14. 

  15.         public static TokenPrivilegeHelper Backup => new TokenPrivilegeHelper("SeBackupPrivilege");
    16. 

  16.         public static TokenPrivilegeHelper Restore => new TokenPrivilegeHelper("SeRestorePrivilege");
    17. 

  17.         public static TokenPrivilegeHelper TakeOwnership => new TokenPrivilegeHelper("SeTakeOwnershipPrivilege");
    18. 

  18. 

  19.         private readonly string privilegeName;
    20. 

  20. 

  21.         private TokenPrivilegeHelper(string privilegeName) {
    22. 

  22.             this.privilegeName = privilegeName;
    23. 

  23.             Apply(PrivilegeAction.Enable);
    24. 

  24.         }
    25. 

  25. 

  26.         private void Apply(PrivilegeAction action) {
    27. 

  27.             OpenProcessToken(GetCurrentProcess(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, out IntPtr tokenHandle);
    28. 

  28.             LookupPrivilegeValue(null, privilegeName, out Luid luid);
    29. 

  29.             var tokenPrivilege = new TokenPrivileges(luid, (uint)action);
    30. 

  30.             UpdateTokenPrivileges(tokenHandle, tokenPrivilege);
    31. 

  31.         }
    32. 

  32. 

  33.         private void UpdateTokenPrivileges(IntPtr tokenHandle, TokenPrivileges privilegeInfo) {
    34. 

  34.             bool successful = AdjustTokenPrivileges(tokenHandle, false, ref privilegeInfo, 0, IntPtr.Zero, IntPtr.Zero);
    35. 

  35.             if (!successful || Marshal.GetLastWin32Error() == ERROR_NOT_ALL_ASSIGNED)
    36. 

  36.                 throw new SecurityException($"Can't adjust token privilege {privilegeName}");
    37. 

  37.         }
    38. 

  38. 

  39.         public void Dispose() {
    40. 

  40.             Apply(PrivilegeAction.Disable);
    41. 

  41.         }
    42. 

  42. 

  43.         #region P/Invoke structs and methods
    44. 

  44.         private const int ERROR_NOT_ALL_ASSIGNED = 1300;
    45. 

  45. 

  46.         [StructLayout(LayoutKind.Sequential)]
    47. 

  47.         private struct TokenPrivileges {
    48. 

  48.             // We can use this struct only with one privilege since CLR doesn't support marshalling dynamic-sized arrays
    49. 

  49.             public TokenPrivileges(Luid luid, uint attributes) {
    50. 

  50.                 Count = 1;
    51. 

  51.                 Privileges = new[] {
    52. 

  52.                     new LuidAndAttributes(luid, attributes)
    53. 

  53.                 };
    54. 

  54.             }
    55. 

  55. 

  56.             private uint Count;
    57. 

  57.             [MarshalAs(UnmanagedType.ByValArray, SizeConst = 1)]
    58. 

  58.             private LuidAndAttributes[] Privileges;
    59. 

  59.         }
    60. 

  60. 

  61.         [StructLayout(LayoutKind.Sequential)]
    62. 

  62.         private readonly struct LuidAndAttributes {
    63. 

  63.             public LuidAndAttributes(Luid luid, uint attributes) {
    64. 

  64.                 Luid = luid;
    65. 

  65.                 Attributes = attributes;
    66. 

  66.             }
    67. 

  67. 

  68.             private readonly Luid Luid;
    69. 

  69.             private readonly uint Attributes;
    70. 

  70.         }
    71. 

  71. 

  72.         [StructLayout(LayoutKind.Sequential)]
    73. 

  73.         private readonly struct Luid {
    74. 

  74.             private readonly uint LowPart;
    75. 

  75.             private readonly int HighPart;
    76. 

  76.         }
    77. 

  77. 

  78.         private const int TOKEN_QUERY = 0x8;
    79. 

  79.         private const int TOKEN_ADJUST_PRIVILEGES = 0x20;
    80. 

  80. 

  81.         [DllImport("advapi32.dll", SetLastError = true)]
    82. 

  82.         private static extern bool AdjustTokenPrivileges(IntPtr tokenHandle,
    83. 

  83.                                                          bool disableAllPrivileges,
    84. 

  84.                                                          ref TokenPrivileges newState,
    85. 

  85.                                                          int bufferLength,
    86. 

  86.                                                          IntPtr previousState,
    87. 

  87.                                                          IntPtr returnLength);
    88. 

  88. 

  89.         [DllImport("kernel32.dll")]
    90. 

  90.         private static extern IntPtr GetCurrentProcess();
    91. 

  91. 

  92.         [DllImport("advapi32.dll", SetLastError = true)]
    93. 

  93.         private static extern bool OpenProcessToken(IntPtr processHandle, int desiredAccess, out IntPtr tokenHandle);
    94. 

  94. 

  95.         [DllImport("advapi32.dll", SetLastError = true)]
    96. 

  96.         private static extern bool LookupPrivilegeValue(string systemName, string privilegeName, out Luid privilegeLuid);
    97. 

  97.         #endregion
    98. 

  98.     }
    99. 

  99. }
    100.