ReactOS 0.4.15-dev-6056-gb29b268
Functions
NtAdjustPrivilegesToken.c File Reference
#include "precomp.h"
Include dependency graph for NtAdjustPrivilegesToken.c:

Go to the source code of this file.

Functions

static BOOL IsPrivilegeEnabled (_In_ HANDLE TokenHandle, _In_ ULONG Privilege)
 
static VOID AdjustEnableDefaultPriv (VOID)
 
 START_TEST (NtAdjustPrivilegesToken)
 

Function Documentation

◆ AdjustEnableDefaultPriv()

static VOID AdjustEnableDefaultPriv ( VOID  )
static

Definition at line 39 of file NtAdjustPrivilegesToken.c.

40{
41 NTSTATUS Status;
42 HANDLE Token;
43 TOKEN_PRIVILEGES Priv;
44 BOOL Success, IsEnabled;
45 LUID PrivLuid;
46
47 Success = OpenProcessToken(GetCurrentProcess(),
48 TOKEN_READ | TOKEN_ADJUST_PRIVILEGES,
49 &Token);
50 if (!Success)
51 {
52 skip("OpenProcessToken() has failed to get the process' token (error code: %lu)!\n", GetLastError());
53 return;
54 }
55
56 Success = LookupPrivilegeValueW(NULL, L"SeImpersonatePrivilege", &PrivLuid);
57 if (!Success)
58 {
59 skip("LookupPrivilegeValueW() has failed to locate the privilege value (error code: %lu)!\n", GetLastError());
60 return;
61 }
62
63 Priv.PrivilegeCount = 1;
64 Priv.Privileges[0].Luid = PrivLuid;
65 Priv.Privileges[0].Attributes = 0;
66
67 IsEnabled = IsPrivilegeEnabled(Token, SE_IMPERSONATE_PRIVILEGE);
68 trace("The privilege is %s!\n", IsEnabled ? "enabled" : "disabled");
69
70 Status = NtAdjustPrivilegesToken(Token,
71 FALSE,
72 &Priv,
73 0,
74 NULL,
75 NULL);
76 ok_hex(Status, STATUS_SUCCESS);
77
78 IsEnabled = IsPrivilegeEnabled(Token, SE_IMPERSONATE_PRIVILEGE);
79 trace("The privilege is %s!\n", IsEnabled ? "enabled" : "disabled");
80
81 CloseHandle(Token);
82}
IsPrivilegeEnabled
static BOOL IsPrivilegeEnabled(_In_ HANDLE TokenHandle, _In_ ULONG Privilege)
Definition: NtAdjustPrivilegesToken.c:12
ok_hex
#define ok_hex(expression, result)
Definition: atltest.h:94
trace
#define trace
Definition: atltest.h:70
skip
#define skip(...)
Definition: atltest.h:64
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
NULL
#define NULL
Definition: types.h:112
FALSE
#define FALSE
Definition: types.h:117
LookupPrivilegeValueW
BOOL WINAPI LookupPrivilegeValueW(LPCWSTR lpSystemName, LPCWSTR lpPrivilegeName, PLUID lpLuid)
Definition: misc.c:782
OpenProcessToken
BOOL WINAPI OpenProcessToken(HANDLE ProcessHandle, DWORD DesiredAccess, PHANDLE TokenHandle)
Definition: security.c:296
CloseHandle
#define CloseHandle
Definition: compat.h:739
GetCurrentProcess
#define GetCurrentProcess()
Definition: compat.h:759
Success
@ Success
Definition: eventcreate.c:712
BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94
IsEnabled
return pProvider IsEnabled(ProviderControl)
Status
Status
Definition: gdiplustypes.h:25
SE_IMPERSONATE_PRIVILEGE
#define SE_IMPERSONATE_PRIVILEGE
Definition: security.c:683
L
#define L(x)
Definition: ntvdm.h:50
STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65
_LUID_AND_ATTRIBUTES::Attributes
$ULONG Attributes
Definition: setypes.h:75
_LUID_AND_ATTRIBUTES::Luid
LUID Luid
Definition: setypes.h:74
_LUID
Definition: devicetopology.idl:137
_TOKEN_PRIVILEGES
Definition: setypes.h:1018
_TOKEN_PRIVILEGES::PrivilegeCount
$ULONG PrivilegeCount
Definition: setypes.h:1019
_TOKEN_PRIVILEGES::Privileges
LUID_AND_ATTRIBUTES Privileges[ANYSIZE_ARRAY]
Definition: setypes.h:1020
NtAdjustPrivilegesToken
_Must_inspect_result_ __kernel_entry NTSTATUS NTAPI NtAdjustPrivilegesToken(_In_ HANDLE TokenHandle, _In_ BOOLEAN DisableAllPrivileges, _In_opt_ PTOKEN_PRIVILEGES NewState, _In_ ULONG BufferLength, _Out_writes_bytes_to_opt_(BufferLength, *ReturnLength) PTOKEN_PRIVILEGES PreviousState, _When_(PreviousState!=NULL, _Out_) PULONG ReturnLength)
Removes a certain amount of privileges of a token based upon the request by the caller.
Definition: tokenadj.c:451
GetLastError
DWORD WINAPI GetLastError(void)
Definition: except.c:1040
TOKEN_ADJUST_PRIVILEGES
#define TOKEN_ADJUST_PRIVILEGES
Definition: setypes.h:926
TOKEN_READ
#define TOKEN_READ
Definition: setypes.h:947

Referenced by START_TEST().

◆ IsPrivilegeEnabled()

static BOOL IsPrivilegeEnabled ( _In_ HANDLE  TokenHandle,
_In_ ULONG  Privilege 
)
static

Definition at line 12 of file NtAdjustPrivilegesToken.c.

15{
16 PRIVILEGE_SET PrivSet;
17 BOOL Result, Success;
18 LUID Priv;
19
20 ConvertPrivLongToLuid(Privilege, &Priv);
21
22 PrivSet.PrivilegeCount = 1;
23 PrivSet.Control = PRIVILEGE_SET_ALL_NECESSARY;
24 PrivSet.Privilege[0].Luid = Priv;
25 PrivSet.Privilege[0].Attributes = 0;
26
27 Success = PrivilegeCheck(TokenHandle, &PrivSet, &Result);
28 if (!Success)
29 {
30 skip("Failed to check the privilege (error code: %lu)\n", GetLastError());
31 return FALSE;
32 }
33
34 return Result;
35}
PrivilegeCheck
BOOL WINAPI PrivilegeCheck(HANDLE ClientToken, PPRIVILEGE_SET RequiredPrivileges, LPBOOL pfResult)
Definition: security.c:1865
ConvertPrivLongToLuid
#define ConvertPrivLongToLuid(PrivilegeVal, ConvertedPrivLuid)
Definition: precomp.h:44
TokenHandle
_In_ ACCESS_MASK _In_ ULONG _Out_ PHANDLE TokenHandle
Definition: psfuncs.h:718
_PRIVILEGE_SET
Definition: setypes.h:85
_PRIVILEGE_SET::Privilege
LUID_AND_ATTRIBUTES Privilege[ANYSIZE_ARRAY]
Definition: setypes.h:88
_PRIVILEGE_SET::Control
$ULONG Control
Definition: setypes.h:87
_PRIVILEGE_SET::PrivilegeCount
$ULONG PrivilegeCount
Definition: setypes.h:86
Privilege
BOOL Privilege(LPTSTR pszPrivilege, BOOL bEnable)
Definition: user_lib.cpp:531
Result
_At_(*)(_In_ PWSK_CLIENT Client, _In_opt_ PUNICODE_STRING NodeName, _In_opt_ PUNICODE_STRING ServiceName, _In_opt_ ULONG NameSpace, _In_opt_ GUID *Provider, _In_opt_ PADDRINFOEXW Hints, _Outptr_ PADDRINFOEXW *Result, _In_opt_ PEPROCESS OwningProcess, _In_opt_ PETHREAD OwningThread, _Inout_ PIRP Irp Result)(Mem)) NTSTATUS(WSKAPI *PFN_WSK_GET_ADDRESS_INFO
Definition: wsk.h:426
PRIVILEGE_SET_ALL_NECESSARY
#define PRIVILEGE_SET_ALL_NECESSARY
Definition: setypes.h:83

Referenced by AdjustEnableDefaultPriv().

◆ START_TEST()

START_TEST ( NtAdjustPrivilegesToken  )

Definition at line 84 of file NtAdjustPrivilegesToken.c.

85{
86 AdjustEnableDefaultPriv();
87}
AdjustEnableDefaultPriv
static VOID AdjustEnableDefaultPriv(VOID)
Definition: NtAdjustPrivilegesToken.c:39