/********************************************************/

/*  ntapi: Native API core library                      */

/*  Copyright (C) 2013--2017  Z. Gilboa                 */

/*  Released under GPLv2 and GPLv3; see COPYING.NTAPI.  */

/********************************************************/

#include <psxtypes/psxtypes.h>

#include <ntapi/nt_object.h>

#include <ntapi/nt_token.h>

#include <ntapi/ntapi.h>

#include "ntapi_impl.h"

static int32_t __stdcall __set_token_privilege(

	__in	void *		htoken,

	__in	uint32_t	privilege,

	__in	int		attribute)

{

	uintptr_t		buffer[64];

	nt_token_privileges *	tokprivs;

	/* reasonable scope */

	if (privilege > 255)

		return NT_STATUS_INVALID_PARAMETER;

	/* buffer */

	__ntapi->tt_aligned_block_memset(

		buffer,0,sizeof(buffer));

	tokprivs = (nt_token_privileges *)buffer;

	/* token privileges */

	tokprivs->privilege_count = 1;

	tokprivs->privileges[0].attributes = attribute;

	tokprivs->privileges[0].luid.low   = privilege;

	tokprivs->privileges[0].luid.high  = 0;

	/* set */

	return __ntapi->zw_adjust_privileges_token(

		htoken,0,

		tokprivs,sizeof(buffer),

		0,0);

}

int32_t __stdcall __ntapi_tt_enable_token_privilege(

	__in	void *		htoken,

	__in	uint32_t	privilege)

{

	return __set_token_privilege(

		htoken,

		privilege,

		NT_SE_ENABLE_PRIVILEGE);

}

int32_t __stdcall __ntapi_tt_disable_token_privilege(

	__in	void *		htoken,

	__in	uint32_t	privilege)

{

	return __set_token_privilege(

		htoken,

		privilege,

		NT_SE_DISABLE_PRIVILEGE);

}