2 Unix SMB/Netbios implementation.
4 NT Domain Authentication SMB / MSRPC client
5 Copyright (C) Andrew Tridgell 1994-1997
6 Copyright (C) Luke Kenneth Casson Leighton 1996-1997
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program; if not, write to the Free Software
20 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
32 extern int DEBUGLEVEL;
34 extern struct cli_state *smb_cli;
40 /****************************************************************************
42 ****************************************************************************/
43 void cmd_reg_enum(struct client_info *info)
58 uint32 max_class_len = 0;
61 uint32 max_subkeysize;
63 uint32 max_valnamelen;
64 uint32 max_valbufsize;
69 * unknown 0x1a request
72 uint32 unk_1a_response;
74 DEBUG(5, ("cmd_reg_enum: smb_cli->fd:%d\n", smb_cli->fd));
76 if (!next_token(NULL, key_name, NULL, sizeof(key_name)))
78 fprintf(out_hnd, "regenum key_name\n");
82 /* open WINREG session. */
83 res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG) : False;
85 /* open registry receive a policy handle */
86 res = res ? do_reg_open_policy(smb_cli,
88 &info->dom.reg_pol_connect) : False;
91 res1 = res ? do_reg_open_entry(smb_cli, &info->dom.reg_pol_connect,
92 key_name, 0x02000000, &key_pol) : False;
94 res1 = res1 ? do_reg_query_key(smb_cli,
96 key_class, &max_class_len,
97 &num_subkeys, &max_subkeylen, &max_subkeysize,
98 &num_values, &max_valnamelen, &max_valbufsize,
99 &sec_desc, &mod_time) : False;
101 for (i = 0; i < num_subkeys; i++)
113 res2 = res1 ? do_reg_unknown_1a(smb_cli, &key_pol,
114 &unk_1a_response) : False;
116 if (res2 && unk_1a_response != 5)
118 fprintf(out_hnd,"Unknown 1a response: %x\n", unk_1a_response);
122 res2 = res2 ? do_reg_enum_key(smb_cli, &key_pol,
124 &enum_unk1, &enum_unk2,
125 &key_mod_time) : False;
129 display_reg_key_info(out_hnd, ACTION_HEADER , enum_name, key_mod_time);
130 display_reg_key_info(out_hnd, ACTION_ENUMERATE, enum_name, key_mod_time);
131 display_reg_key_info(out_hnd, ACTION_FOOTER , enum_name, key_mod_time);
136 for (i = 0; i < num_values; i++)
147 res2 = res1 ? do_reg_unknown_1a(smb_cli, &key_pol,
148 &unk_1a_response) : False;
150 if (res2 && unk_1a_response != 5)
152 fprintf(out_hnd,"Unknown 1a response: %x\n", unk_1a_response);
156 res2 = res2 ? do_reg_enum_val(smb_cli, &key_pol,
157 i, max_valnamelen, max_valbufsize,
158 val_name, &val_type, &value) : False;
162 display_reg_value_info(out_hnd, ACTION_HEADER , val_name, val_type, &value);
163 display_reg_value_info(out_hnd, ACTION_ENUMERATE, val_name, val_type, &value);
164 display_reg_value_info(out_hnd, ACTION_FOOTER , val_name, val_type, &value);
168 /* close the handles */
169 res1 = res1 ? do_reg_close(smb_cli, &key_pol) : False;
170 res = res ? do_reg_close(smb_cli, &info->dom.reg_pol_connect) : False;
172 /* close the session */
173 cli_nt_session_close(smb_cli);
175 if (res && res1 && res2)
177 DEBUG(5,("cmd_reg_enum: query succeeded\n"));
181 DEBUG(5,("cmd_reg_enum: query failed\n"));
185 /****************************************************************************
186 nt registry query key
187 ****************************************************************************/
188 void cmd_reg_query_key(struct client_info *info)
201 uint32 key_class_len = 0;
203 uint32 max_subkeylen;
204 uint32 max_subkeysize;
206 uint32 max_valnamelen;
207 uint32 max_valbufsize;
211 DEBUG(5, ("cmd_reg_enum: smb_cli->fd:%d\n", smb_cli->fd));
213 if (!next_token(NULL, key_name, NULL, sizeof(key_name)))
215 fprintf(out_hnd, "regquery key_name\n");
219 /* open WINREG session. */
220 res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG) : False;
222 /* open registry receive a policy handle */
223 res = res ? do_reg_open_policy(smb_cli,
225 &info->dom.reg_pol_connect) : False;
228 res1 = res ? do_reg_open_entry(smb_cli, &info->dom.reg_pol_connect,
229 key_name, 0x02000000, &key_pol) : False;
231 res1 = res1 ? do_reg_query_key(smb_cli,
233 key_class, &key_class_len,
234 &num_subkeys, &max_subkeylen, &max_subkeysize,
235 &num_values, &max_valnamelen, &max_valbufsize,
236 &sec_desc, &mod_time) : False;
238 if (res1 && key_class_len != 0)
240 res1 = res1 ? do_reg_query_key(smb_cli,
242 key_class, &key_class_len,
243 &num_subkeys, &max_subkeylen, &max_subkeysize,
244 &num_values, &max_valnamelen, &max_valbufsize,
245 &sec_desc, &mod_time) : False;
250 fprintf(out_hnd,"Registry Query Info Key\n");
251 fprintf(out_hnd,"key class: %s\n", key_class);
252 fprintf(out_hnd,"subkeys, max_len, max_size: %d %d %d\n", num_subkeys, max_subkeylen, max_subkeysize);
253 fprintf(out_hnd,"vals, max_len, max_size: 0x%x 0x%x 0x%x\n", num_values, max_valnamelen, max_valbufsize);
254 fprintf(out_hnd,"sec desc: 0x%x\n", sec_desc);
255 fprintf(out_hnd,"mod time: %s\n", http_timestring(nt_time_to_unix(&mod_time)));
258 /* close the handles */
259 res1 = res1 ? do_reg_close(smb_cli, &key_pol) : False;
260 res = res ? do_reg_close(smb_cli, &info->dom.reg_pol_connect) : False;
262 /* close the session */
263 cli_nt_session_close(smb_cli);
267 DEBUG(5,("cmd_reg_query: query succeeded\n"));
271 DEBUG(5,("cmd_reg_query: query failed\n"));
275 /****************************************************************************
277 ****************************************************************************/
278 void cmd_reg_test2(struct client_info *info)
292 uint32 max_class_len;
294 uint32 max_subkeylen;
295 uint32 max_subkeysize;
297 uint32 max_valnamelen;
298 uint32 max_valbufsize;
303 * unknown 0x1a request
306 uint32 unk_1a_response;
317 DEBUG(5, ("cmd_reg_test: smb_cli->fd:%d\n", smb_cli->fd));
319 /* open WINREG session. */
320 res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG) : False;
322 /* open registry receive a policy handle */
323 res = res ? do_reg_open_policy(smb_cli,
325 &info->dom.reg_pol_connect) : False;
327 res1 = res ? do_reg_open_unk_4(smb_cli,
329 &info->dom.reg_pol_unk_4 ) : False;
331 res2 = res1 ? do_reg_query_key(smb_cli,
333 key_class, &max_class_len,
334 &num_subkeys, &max_subkeylen, &max_subkeysize,
335 &num_values, &max_valnamelen, &max_valbufsize,
336 &sec_desc, &mod_time) : False;
338 for (i = 0; i < num_subkeys; i++)
341 res3 = res2 ? do_reg_unknown_1a(smb_cli, &info->dom.reg_pol_connect,
342 &unk_1a_response) : False;
346 fprintf(out_hnd,"Unknown 1a response: %x\n", unk_1a_response);
350 res3 = res3 ? do_reg_enum_key(smb_cli, &info->dom.reg_pol_connect,
352 &enum_unk1, &enum_unk2,
353 &key_mod_time) : False;
357 fprintf(out_hnd,"Enum Key: %s ", enum_name);
358 fprintf(out_hnd,"unk (%08x %08x) ", enum_unk1, enum_unk2);
359 fprintf(out_hnd,"mod time: %s\n", http_timestring(key_mod_time));
363 /* close the handles */
364 res2 = res2 ? do_reg_close(smb_cli, &key_pol ) : False;
365 res1 = res1 ? do_reg_close(smb_cli, &info->dom.reg_pol_unk_4 ) : False;
366 res = res ? do_reg_close(smb_cli, &info->dom.reg_pol_connect) : False;
368 /* close the session */
369 cli_nt_session_close(smb_cli);
371 if (res && res1 && res2)
373 DEBUG(5,("cmd_reg_test2: query succeeded\n"));
374 fprintf(out_hnd,"Registry Test2\n");
378 DEBUG(5,("cmd_reg_test2: query failed\n"));
382 /****************************************************************************
383 nt registry create value
384 ****************************************************************************/
385 void cmd_reg_create_val(struct client_info *info)
391 POLICY_HND parent_pol;
402 res1 = res1 ? do_reg_query_info(smb_cli, &val_pol,
403 type, &unk_0, &unk_1) : False;
406 DEBUG(5, ("cmd_reg_get_val_sec: smb_cli->fd:%d\n", smb_cli->fd));
408 if (!next_token(NULL, parent_name, NULL, sizeof(parent_name)))
410 fprintf(out_hnd, "regcreate <parent val name> <val_name> <val_type> <val>\n");
414 if (!next_token(NULL, val_name , NULL, sizeof(val_name )))
416 fprintf(out_hnd, "regcreate <parent val name> <val_name> <val_type> <val>\n");
420 if (!next_token(NULL, tmp, NULL, sizeof(tmp)))
422 fprintf(out_hnd, "regcreate <parent val name> <val_name> <val_type (1|4)> <val>\n");
426 val_type = atoi(tmp);
428 if (val_type != 1 && val_type != 3 && val_type != 4)
430 fprintf(out_hnd, "val_type 1=UNISTR, 3=BYTES, 4=DWORD supported\n");
434 if (!next_token(NULL, tmp, NULL, sizeof(tmp)))
436 fprintf(out_hnd, "regcreate <parent val name> <val_name> <val_type (1|4)> <val>\n");
442 case 0x01: /* UNISTR */
444 make_buffer3_str(&value, tmp, strlen(tmp)+1);
447 case 0x03: /* BYTES */
449 make_buffer3_hex(&value, tmp);
452 case 0x04: /* DWORD */
455 if (strnequal(tmp, "0x", 2))
457 tmp_val = strtol(tmp, (char**)NULL, 16);
461 tmp_val = strtol(tmp, (char**)NULL, 10);
463 make_buffer3_uint32(&value, tmp_val);
468 fprintf(out_hnd, "i told you i only deal with UNISTR, DWORD and BYTES!\n");
473 DEBUG(10,("key data:\n"));
474 dump_data(10, value.buffer, value.buf_len);
476 /* open WINREG session. */
477 res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG) : False;
479 /* open registry receive a policy handle */
480 res = res ? do_reg_open_policy(smb_cli,
482 &info->dom.reg_pol_connect) : False;
485 res3 = res ? do_reg_open_entry(smb_cli, &info->dom.reg_pol_connect,
486 parent_name, 0x02000000, &parent_pol) : False;
488 /* create an entry */
489 res4 = res3 ? do_reg_create_val(smb_cli, &parent_pol,
490 val_name, val_type, &value) : False;
492 /* close the val handle */
493 res3 = res3 ? do_reg_close(smb_cli, &parent_pol) : False;
495 /* close the registry handles */
496 res = res ? do_reg_close(smb_cli, &info->dom.reg_pol_connect) : False;
498 /* close the session */
499 cli_nt_session_close(smb_cli);
501 if (res && res3 && res4)
503 DEBUG(5,("cmd_reg_create_val: query succeeded\n"));
504 fprintf(out_hnd,"OK\n");
508 DEBUG(5,("cmd_reg_create_val: query failed\n"));
512 /****************************************************************************
513 nt registry create key
514 ****************************************************************************/
515 void cmd_reg_create_key(struct client_info *info)
521 POLICY_HND parent_pol;
532 res1 = res1 ? do_reg_query_info(smb_cli, &key_pol,
533 type, &unk_0, &unk_1) : False;
536 DEBUG(5, ("cmd_reg_create_key: smb_cli->fd:%d\n", smb_cli->fd));
538 if (!next_token(NULL, parent_name, NULL, sizeof(parent_name)))
540 fprintf(out_hnd, "regcreate <parent key name> <key_name> [key_class]\n");
544 if (!next_token(NULL, key_name , NULL, sizeof(key_name )))
546 fprintf(out_hnd, "regcreate <parent key name> <key_name> [key_class]\n");
550 if (!next_token(NULL, key_class, NULL, sizeof(key_class)))
552 memset(key_class, 0, sizeof(key_class));
555 /* set access permissions */
556 sam_access.perms = SEC_RIGHTS_READ;
558 /* open WINREG session. */
559 res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG) : False;
561 /* open registry receive a policy handle */
562 res = res ? do_reg_open_policy(smb_cli,
564 &info->dom.reg_pol_connect) : False;
567 res3 = res ? do_reg_open_entry(smb_cli, &info->dom.reg_pol_connect,
568 parent_name, 0x02000000, &parent_pol) : False;
570 /* create an entry */
571 res4 = res3 ? do_reg_create_key(smb_cli, &parent_pol,
572 key_name, key_class, &sam_access, &key_pol) : False;
574 /* close the key handle */
575 res4 = res4 ? do_reg_close(smb_cli, &key_pol) : False;
577 /* close the key handle */
578 res3 = res3 ? do_reg_close(smb_cli, &parent_pol) : False;
580 /* close the registry handles */
581 res = res ? do_reg_close(smb_cli, &info->dom.reg_pol_connect) : False;
583 /* close the session */
584 cli_nt_session_close(smb_cli);
586 if (res && res3 && res4)
588 DEBUG(5,("cmd_reg_create_key: query succeeded\n"));
589 fprintf(out_hnd,"OK\n");
593 DEBUG(5,("cmd_reg_create_key: query failed\n"));
597 /****************************************************************************
598 nt registry security info
599 ****************************************************************************/
600 void cmd_reg_get_key_sec(struct client_info *info)
614 SEC_DESC_BUF sec_buf;
616 DEBUG(5, ("cmd_reg_get_key_sec: smb_cli->fd:%d\n", smb_cli->fd));
618 if (!next_token(NULL, key_name, NULL, sizeof(key_name)))
620 fprintf(out_hnd, "regtest key_name\n");
624 /* open WINREG session. */
625 res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG) : False;
627 /* open registry receive a policy handle */
628 res = res ? do_reg_open_policy(smb_cli,
630 &info->dom.reg_pol_connect) : False;
633 res3 = res ? do_reg_open_entry(smb_cli, &info->dom.reg_pol_connect,
634 key_name, 0x02000000, &key_pol) : False;
636 /* query key sec info. first call sets sec_buf_size. */
638 res4 = res3 ? do_reg_get_key_sec(smb_cli, &key_pol,
639 &sec_buf_size, &sec_buf) : False;
641 res4 = res4 ? do_reg_get_key_sec(smb_cli, &key_pol,
642 &sec_buf_size, &sec_buf) : False;
644 if (res4 && sec_buf.len > 0)
646 fprintf(out_hnd, "Security Info for %s: (%d)\n",
647 key_name, sec_buf_size);
648 display_sec_desc(out_hnd, ACTION_HEADER , &sec_buf.sec);
649 display_sec_desc(out_hnd, ACTION_ENUMERATE, &sec_buf.sec);
650 display_sec_desc(out_hnd, ACTION_FOOTER , &sec_buf.sec);
653 /* close the key handle */
654 res3 = res3 ? do_reg_close(smb_cli, &key_pol) : False;
656 /* close the registry handles */
657 res = res ? do_reg_close(smb_cli, &info->dom.reg_pol_connect) : False;
659 /* close the session */
660 cli_nt_session_close(smb_cli);
662 if (res && res3 && res4)
664 DEBUG(5,("cmd_reg_test2: query succeeded\n"));
665 fprintf(out_hnd,"Registry Test2\n");
669 DEBUG(5,("cmd_reg_test2: query failed\n"));