summaryrefslogtreecommitdiffstats
path: root/winsup/cygwin/sec_helper.cc
diff options
context:
space:
mode:
Diffstat (limited to 'winsup/cygwin/sec_helper.cc')
-rw-r--r--winsup/cygwin/sec_helper.cc33
1 files changed, 33 insertions, 0 deletions
diff --git a/winsup/cygwin/sec_helper.cc b/winsup/cygwin/sec_helper.cc
index 089bb99c8..13fc56ddd 100644
--- a/winsup/cygwin/sec_helper.cc
+++ b/winsup/cygwin/sec_helper.cc
@@ -518,3 +518,36 @@ __sec_user (PVOID sa_buf, PSID sid1, PSID sid2, DWORD access2, BOOL inherit)
psa->bInheritHandle = inherit;
return psa;
}
+
+/* Helper function to create an event security descriptor which only allows
+ specific access to everyone. Only the creating process has all access
+ rights. */
+
+PSECURITY_DESCRIPTOR
+_everyone_sd (void *buf, ACCESS_MASK access)
+{
+ PSECURITY_DESCRIPTOR psd = (PSECURITY_DESCRIPTOR) buf;
+
+ if (psd)
+ {
+ InitializeSecurityDescriptor (psd, SECURITY_DESCRIPTOR_REVISION);
+ PACL dacl = (PACL) (psd + 1);
+ InitializeAcl (dacl, MAX_DACL_LEN (1), ACL_REVISION);
+ if (!AddAccessAllowedAce (dacl, ACL_REVISION, access,
+ well_known_world_sid))
+ {
+ debug_printf ("AddAccessAllowedAce: %lu", GetLastError ());
+ return NULL;
+ }
+ LPVOID ace;
+ if (!FindFirstFreeAce (dacl, &ace))
+ {
+ debug_printf ("FindFirstFreeAce: %lu", GetLastError ());
+ return NULL;
+ }
+ dacl->AclSize = (char *) ace - (char *) dacl;
+ SetSecurityDescriptorDacl (psd, TRUE, dacl, FALSE);
+ }
+ return psd;
+}
+
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-02 11:56:42 +0000