2 * Unix SMB/CIFS implementation.
4 * Copyright (C) Guenther Deschner 2007-2008
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 3 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, see <http://www.gnu.org/licenses/>.
21 #include "../libgpo/gpo_ini.h"
22 #include "../libgpo/gpo.h"
23 #include "libgpo/gpo_proto.h"
25 #define GP_EXT_NAME "registry"
27 /* more info can be found at:
28 * http://msdn2.microsoft.com/en-us/library/aa374407.aspx */
30 #define GP_REGPOL_FILE "Registry.pol"
32 #define GP_REGPOL_FILE_SIGNATURE 0x67655250 /* 'PReg' */
33 #define GP_REGPOL_FILE_VERSION 1
35 static TALLOC_CTX *ctx = NULL;
37 struct gp_registry_file_header {
42 struct gp_registry_file_entry {
45 enum winreg_Type type;
50 struct gp_registry_file {
51 struct gp_registry_file_header header;
53 struct gp_registry_entry *entries;
56 /****************************************************************
57 ****************************************************************/
59 static bool reg_parse_header(const char *desc,
60 struct gp_registry_file_header *header,
67 prs_debug(ps, depth, desc, "reg_parse_header");
70 if (!prs_uint32("signature", ps, depth, &header->signature))
73 if (!prs_uint32("version", ps, depth, &header->version))
79 /****************************************************************
80 ****************************************************************/
82 static bool reg_parse_and_verify_ucs2_char(const char *desc,
89 if (!prs_uint16(desc, ps, depth, &tmp))
92 if (tmp != UCS2_CHAR(character))
98 /****************************************************************
99 ****************************************************************/
101 static bool reg_parse_init(prs_struct *ps, int depth)
103 return reg_parse_and_verify_ucs2_char("initiator '['", '[',
107 /****************************************************************
108 ****************************************************************/
110 static bool reg_parse_sep(prs_struct *ps, int depth)
112 return reg_parse_and_verify_ucs2_char("separator ';'", ';',
116 /****************************************************************
117 ****************************************************************/
119 static bool reg_parse_term(prs_struct *ps, int depth)
121 return reg_parse_and_verify_ucs2_char("terminator ']'", ']',
126 /****************************************************************
127 * [key;value;type;size;data]
128 ****************************************************************/
130 static bool reg_parse_entry(TALLOC_CTX *mem_ctx,
132 struct gp_registry_file_entry *entry,
141 prs_debug(ps, depth, desc, "reg_parse_entry");
146 if (!reg_parse_init(ps, depth))
149 if (!prs_unistr("key", ps, depth, &entry->key))
152 if (!reg_parse_sep(ps, depth))
155 if (!prs_unistr("value", ps, depth, &entry->value))
158 if (!reg_parse_sep(ps, depth))
161 if (!prs_uint32("type", ps, depth, &entry->type))
164 if (!reg_parse_sep(ps, depth))
167 if (!prs_uint32("size", ps, depth, &size))
172 if (!reg_parse_sep(ps, depth))
176 entry->data = TALLOC_ZERO_ARRAY(mem_ctx, uint8, entry->size);
181 if (!prs_uint8s(false, "data", ps, depth, entry->data, entry->size))
184 if (!reg_parse_term(ps, depth))
190 /****************************************************************
191 ****************************************************************/
193 static bool reg_parse_value(TALLOC_CTX *mem_ctx,
195 enum gp_reg_action *action)
198 *action = GP_REG_ACTION_ADD_KEY;
202 if (strncmp(*value, "**", 2) != 0) {
203 *action = GP_REG_ACTION_ADD_VALUE;
207 if (strnequal(*value, "**DelVals.", 10)) {
208 *action = GP_REG_ACTION_DEL_ALL_VALUES;
212 if (strnequal(*value, "**Del.", 6)) {
213 *value = talloc_strdup(mem_ctx, *value + 6);
214 *action = GP_REG_ACTION_DEL_VALUE;
218 if (strnequal(*value, "**SecureKey", 11)) {
219 if (strnequal(*value, "**SecureKey=1", 13)) {
220 *action = GP_REG_ACTION_SEC_KEY_SET;
224 /*************** not tested from here on ***************/
225 if (strnequal(*value, "**SecureKey=0", 13)) {
226 smb_panic("not supported: **SecureKey=0");
227 *action = GP_REG_ACTION_SEC_KEY_RESET;
230 DEBUG(0,("unknown: SecureKey: %s\n", *value));
231 smb_panic("not supported SecureKey method");
235 if (strnequal(*value, "**DeleteValues", strlen("**DeleteValues"))) {
236 smb_panic("not supported: **DeleteValues");
237 *action = GP_REG_ACTION_DEL_VALUES;
241 if (strnequal(*value, "**DeleteKeys", strlen("**DeleteKeys"))) {
242 smb_panic("not supported: **DeleteKeys");
243 *action = GP_REG_ACTION_DEL_KEYS;
247 DEBUG(0,("unknown value: %s\n", *value));
252 /****************************************************************
253 ****************************************************************/
255 static bool gp_reg_entry_from_file_entry(TALLOC_CTX *mem_ctx,
256 struct gp_registry_file_entry *file_entry,
257 struct gp_registry_entry **reg_entry)
259 struct registry_value *data = NULL;
260 struct gp_registry_entry *entry = NULL;
263 enum gp_reg_action action = GP_REG_ACTION_NONE;
264 size_t converted_size;
266 ZERO_STRUCTP(*reg_entry);
268 data = TALLOC_ZERO_P(mem_ctx, struct registry_value);
272 if (strlen_w((const smb_ucs2_t *)file_entry->key.buffer) <= 0)
275 if (!pull_ucs2_talloc(mem_ctx, &key, file_entry->key.buffer,
281 if (strlen_w((const smb_ucs2_t *)file_entry->value.buffer) > 0 &&
282 !pull_ucs2_talloc(mem_ctx, &value, file_entry->value.buffer,
288 if (!reg_parse_value(mem_ctx, &value, &action))
291 data->type = file_entry->type;
293 switch (data->type) {
295 data->v.dword = atoi((char *)file_entry->data);
298 data->v.binary = data_blob_talloc(mem_ctx,
305 if (!pull_ucs2_talloc(mem_ctx, &data->v.sz.str,
313 case REG_DWORD_BIG_ENDIAN:
318 /* case REG_DWORD_LITTLE_ENDIAN: */
319 /* case REG_QWORD_LITTLE_ENDIAN: */
320 printf("not yet implemented: %d\n", data->type);
323 printf("invalid reg type defined: %d\n", data->type);
328 entry = TALLOC_ZERO_P(mem_ctx, struct gp_registry_entry);
333 entry->value = value;
335 entry->action = action;
342 /****************************************************************
343 * [key;value;type;size;data][key;value;type;size;data]...
344 ****************************************************************/
346 static bool reg_parse_entries(TALLOC_CTX *mem_ctx,
348 struct gp_registry_entry **entries,
354 if (!entries || !num_entries)
357 prs_debug(ps, depth, desc, "reg_parse_entries");
363 while (ps->buffer_size > ps->data_offset) {
365 struct gp_registry_file_entry f_entry;
366 struct gp_registry_entry *r_entry = NULL;
368 if (!reg_parse_entry(mem_ctx, desc, &f_entry,
372 if (!gp_reg_entry_from_file_entry(mem_ctx,
377 if (!add_gp_registry_entry_to_array(mem_ctx,
387 /****************************************************************
388 ****************************************************************/
390 static NTSTATUS reg_parse_registry(TALLOC_CTX *mem_ctx,
392 const char *filename,
393 struct gp_registry_entry **entries,
396 uint16_t *buf = NULL;
400 struct gp_registry_file *reg_file;
401 const char *real_filename = NULL;
403 reg_file = TALLOC_ZERO_P(mem_ctx, struct gp_registry_file);
404 NT_STATUS_HAVE_NO_MEMORY(reg_file);
406 status = gp_find_file(mem_ctx,
411 if (!NT_STATUS_IS_OK(status)) {
412 TALLOC_FREE(reg_file);
416 buf = (uint16 *)file_load(real_filename, &n, 0, NULL);
418 TALLOC_FREE(reg_file);
419 return NT_STATUS_CANNOT_LOAD_REGISTRY_FILE;
422 if (!prs_init(&ps, n, mem_ctx, UNMARSHALL)) {
423 status = NT_STATUS_NO_MEMORY;
427 if (!prs_copy_data_in(&ps, (char *)buf, n)) {
428 status = NT_STATUS_NO_MEMORY;
432 prs_set_offset(&ps, 0);
434 if (!reg_parse_header("header", ®_file->header, &ps, 0)) {
435 status = NT_STATUS_REGISTRY_IO_FAILED;
439 if (reg_file->header.signature != GP_REGPOL_FILE_SIGNATURE) {
440 status = NT_STATUS_INVALID_PARAMETER;
444 if (reg_file->header.version != GP_REGPOL_FILE_VERSION) {
445 status = NT_STATUS_INVALID_PARAMETER;
449 if (!reg_parse_entries(mem_ctx, "entries", ®_file->entries,
450 ®_file->num_entries, &ps, 0)) {
451 status = NT_STATUS_REGISTRY_IO_FAILED;
455 *entries = reg_file->entries;
456 *num_entries = reg_file->num_entries;
458 status = NT_STATUS_OK;
467 /****************************************************************
468 ****************************************************************/
470 static WERROR reg_apply_registry(TALLOC_CTX *mem_ctx,
471 const struct nt_user_token *token,
472 struct registry_key *root_key,
474 struct gp_registry_entry *entries,
477 struct gp_registry_context *reg_ctx = NULL;
481 if (num_entries == 0) {
486 if (flags & GPO_LIST_FLAG_MACHINE) {
487 werr = gp_init_reg_ctx(mem_ctx, KEY_HKLM, REG_KEY_WRITE,
491 werr = gp_init_reg_ctx(mem_ctx, KEY_HKCU, REG_KEY_WRITE,
495 W_ERROR_NOT_OK_RETURN(werr);
497 for (i=0; i<num_entries; i++) {
499 /* FIXME: maybe we should check here if we attempt to go beyond
500 * the 4 allowed reg keys */
502 werr = reg_apply_registry_entry(mem_ctx, root_key,
506 if (!W_ERROR_IS_OK(werr)) {
507 DEBUG(0,("failed to apply registry: %s\n",
514 gp_free_reg_ctx(reg_ctx);
519 /****************************************************************
520 ****************************************************************/
522 static NTSTATUS registry_process_group_policy(ADS_STRUCT *ads,
525 struct registry_key *root_key,
526 const struct nt_user_token *token,
527 struct GROUP_POLICY_OBJECT *gpo,
528 const char *extension_guid,
529 const char *snapin_guid)
533 struct gp_registry_entry *entries = NULL;
534 size_t num_entries = 0;
535 char *unix_path = NULL;
537 debug_gpext_header(0, "registry_process_group_policy", flags, gpo,
538 extension_guid, snapin_guid);
540 status = gpo_get_unix_path(mem_ctx, cache_path(GPO_CACHE_DIR), gpo, &unix_path);
541 NT_STATUS_NOT_OK_RETURN(status);
543 status = reg_parse_registry(mem_ctx,
548 if (!NT_STATUS_IS_OK(status)) {
549 DEBUG(0,("failed to parse registry: %s\n",
554 dump_reg_entries(flags, "READ", entries, num_entries);
556 werr = reg_apply_registry(mem_ctx, token, root_key, flags,
557 entries, num_entries);
558 if (!W_ERROR_IS_OK(werr)) {
559 DEBUG(0,("failed to apply registry: %s\n",
561 return werror_to_ntstatus(werr);
567 /****************************************************************
568 ****************************************************************/
570 static NTSTATUS registry_get_reg_config(TALLOC_CTX *mem_ctx,
571 struct gp_extension_reg_info **reg_info)
574 struct gp_extension_reg_info *info = NULL;
575 struct gp_extension_reg_table table[] = {
576 { "ProcessGroupPolicy", REG_SZ, "registry_process_group_policy" },
577 { NULL, REG_NONE, NULL }
580 info = TALLOC_ZERO_P(mem_ctx, struct gp_extension_reg_info);
581 NT_STATUS_HAVE_NO_MEMORY(info);
583 status = gp_ext_info_add_entry(mem_ctx, GP_EXT_NAME,
584 GP_EXT_GUID_REGISTRY,
586 NT_STATUS_NOT_OK_RETURN(status);
593 /****************************************************************
594 ****************************************************************/
596 static NTSTATUS registry_initialize(TALLOC_CTX *mem_ctx)
601 /****************************************************************
602 ****************************************************************/
604 static NTSTATUS registry_shutdown(void)
608 status = unregister_gp_extension(GP_EXT_NAME);
609 if (NT_STATUS_IS_OK(status)) {
618 /****************************************************************
619 ****************************************************************/
621 static struct gp_extension_methods registry_methods = {
622 .initialize = registry_initialize,
623 .process_group_policy = registry_process_group_policy,
624 .get_reg_config = registry_get_reg_config,
625 .shutdown = registry_shutdown
628 /****************************************************************
629 ****************************************************************/
631 NTSTATUS gpext_registry_init(void)
635 ctx = talloc_init("gpext_registry_init");
636 NT_STATUS_HAVE_NO_MEMORY(ctx);
638 status = register_gp_extension(ctx, SMB_GPEXT_INTERFACE_VERSION,
639 GP_EXT_NAME, GP_EXT_GUID_REGISTRY,
641 if (!NT_STATUS_IS_OK(status)) {
git.samba.org / samba.git / blob