/* Unix SMB/Netbios implementation. Version 1.9. NT Domain Authentication SMB / MSRPC client Copyright (C) Andrew Tridgell 1994-1999 Copyright (C) Luke Kenneth Casson Leighton 1996-1999 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. */ #ifdef SYSLOG #undef SYSLOG #endif #include "includes.h" #include "nterr.h" extern int DEBUGLEVEL; extern struct cli_state *smb_cli; extern int smb_tidx; extern FILE* out_hnd; /* * keys. of the form: * ---- * * [HKLM]|[HKU]\[parent_keyname_components]\[subkey]|[value] * * reg_getsubkey() splits this down into: * [HKLM]|[HKU]\[parent_keyname_components] and [subkey]|[value] * * do_reg_connect() splits the left side down further into: * [HKLM]|[HKU] and [parent_keyname_components]. * * HKLM is short for HKEY_LOCAL_MACHINE * HKU is short for HKEY_USERS * * oh, and HKEY stands for "Hive Key". * */ static void reg_display_key(int val, const char *full_keyname, int num) { switch (val) { case 0: { /* initialsation */ report(out_hnd, "Key Name:\t%s\n", full_keyname); break; } case 1: { /* subkeys initialisation */ if (num > 0) { report(out_hnd,"Subkeys\n"); report(out_hnd,"-------\n"); } break; } case 2: { /* values initialisation */ if (num > 0) { report(out_hnd,"Key Values\n"); report(out_hnd,"----------\n"); } break; } case 3: { /* clean-up */ break; } default: { break; } } } /**************************************************************************** nt registry enum ****************************************************************************/ BOOL msrpc_reg_enum_key(struct cli_state *cli, const char* full_keyname, REG_FN(reg_fn), REG_KEY_FN(reg_key_fn), REG_VAL_FN(reg_val_fn)) { uint16 fnum; BOOL res = True; BOOL res1 = True; BOOL res2 = True; int i; POLICY_HND key_pol; POLICY_HND pol_con; fstring key_name; /* * query key info */ fstring key_class; uint32 max_class_len = 0; uint32 num_subkeys; uint32 max_subkeylen; uint32 max_subkeysize; uint32 num_values; uint32 max_valnamelen; uint32 max_valbufsize; uint32 sec_desc; NTTIME mod_time; /* * unknown 0x1a request */ uint32 unk_1a_response; DEBUG(5, ("reg_enum_key: %s\n", full_keyname)); /* open WINREG session. */ res = res ? cli_nt_session_open(cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(cli, fnum, full_keyname, key_name, &pol_con) : False; if ((*key_name) != 0) { /* open an entry */ res1 = res ? do_reg_open_entry(cli, fnum, &pol_con, key_name, 0x02000000, &key_pol) : False; } else { memcpy(&key_pol, &pol_con, sizeof(key_pol)); } res1 = res1 ? do_reg_query_key(cli, fnum, &key_pol, key_class, &max_class_len, &num_subkeys, &max_subkeylen, &max_subkeysize, &num_values, &max_valnamelen, &max_valbufsize, &sec_desc, &mod_time) : False; if (res1 && reg_fn != NULL) { reg_fn(0, full_keyname, 0); reg_fn(1, full_keyname, num_subkeys); } for (i = 0; i < num_subkeys && reg_key_fn != NULL; i++) { /* * enumerate key */ fstring enum_name; uint32 enum_unk1; uint32 enum_unk2; time_t key_mod_time; /* unknown 1a it */ res2 = res1 ? do_reg_unknown_1a(cli, fnum, &key_pol, &unk_1a_response) : False; if (res2 && unk_1a_response != 5) { report(out_hnd,"Unknown 1a response: %x\n", unk_1a_response); } /* enum key */ res2 = res2 ? do_reg_enum_key(cli, fnum, &key_pol, i, enum_name, &enum_unk1, &enum_unk2, &key_mod_time) : False; if (res2) { reg_key_fn(full_keyname, enum_name, key_mod_time); } } if (reg_fn != NULL) { reg_fn(2, full_keyname, num_values); } for (i = 0; i < num_values && reg_val_fn != NULL; i++) { /* * enumerate key */ uint32 val_type; BUFFER2 value; fstring val_name; /* unknown 1a it */ res2 = res1 ? do_reg_unknown_1a(cli, fnum, &key_pol, &unk_1a_response) : False; if (res2 && unk_1a_response != 5) { report(out_hnd,"Unknown 1a response: %x\n", unk_1a_response); } /* enum key */ res2 = res2 ? do_reg_enum_val(cli, fnum, &key_pol, i, max_valnamelen, max_valbufsize, val_name, &val_type, &value) : False; if (res2) { reg_val_fn(full_keyname, val_name, val_type, &value); } } if (res1 && reg_fn != NULL) { reg_fn(3, full_keyname, 0); } /* close the handles */ if ((*key_name) != 0) { res1 = res1 ? do_reg_close(cli, fnum, &key_pol) : False; } res = res ? do_reg_close(cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(cli, fnum); if (res && res1 && res2) { DEBUG(5,("msrpc_reg_enum_key: query succeeded\n")); } else { DEBUG(5,("msrpc_reg_enum_key: query failed\n")); } return res1; } static void reg_display_key_info(const char *full_name, const char *name, time_t key_mod_time) { display_reg_key_info(out_hnd, ACTION_HEADER , name, key_mod_time); display_reg_key_info(out_hnd, ACTION_ENUMERATE, name, key_mod_time); display_reg_key_info(out_hnd, ACTION_FOOTER , name, key_mod_time); } static void reg_display_val_info(const char *full_name, const char* name, uint32 type, const BUFFER2 *const value) { display_reg_value_info(out_hnd, ACTION_HEADER , name, type, value); display_reg_value_info(out_hnd, ACTION_ENUMERATE, name, type, value); display_reg_value_info(out_hnd, ACTION_FOOTER , name, type, value); } /**************************************************************************** nt registry enum ****************************************************************************/ void cmd_reg_enum(struct client_info *info) { fstring full_keyname; if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "regenum \n"); return; } if (msrpc_reg_enum_key(smb_cli, full_keyname, reg_display_key, reg_display_key_info, reg_display_val_info)) { pstrcpy(info->cur_dir, full_keyname); } } /**************************************************************************** nt registry query value info ****************************************************************************/ void cmd_reg_query_info(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res1 = True; POLICY_HND key_pol; POLICY_HND pol_con; fstring full_keyname; fstring key_name; fstring keyname; fstring val_name; /* * query value info */ BUFFER2 buf; uint32 type; DEBUG(5, ("cmd_reg_enum: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "regvalinfo value_name\n"); return; } reg_get_subkey(full_keyname, keyname, val_name); if (keyname[0] == 0 || val_name[0] == 0) { report(out_hnd, "invalid value name\n"); return; } /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, keyname, key_name, &pol_con) : False; if ((*key_name) != 0) { /* open an entry */ res1 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, key_name, 0x02000000, &key_pol) : False; } else { memcpy(&key_pol, &pol_con, sizeof(key_pol)); } /* query it */ res1 = res1 ? do_reg_query_info(smb_cli, fnum, &key_pol, val_name, &type, &buf) : False; if (res1) { reg_display_val_info(full_keyname, val_name, type, &buf); } /* close the handles */ if ((*key_name) != 0) { res1 = res1 ? do_reg_close(smb_cli, fnum, &key_pol) : False; } res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res1) { DEBUG(5,("cmd_reg_query: query succeeded\n")); } else { DEBUG(5,("cmd_reg_query: query failed\n")); } } /**************************************************************************** nt registry query key ****************************************************************************/ void cmd_reg_query_key(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res1 = True; POLICY_HND key_pol; POLICY_HND pol_con; fstring full_keyname; fstring key_name; /* * query key info */ fstring key_class; uint32 key_class_len = 0; uint32 num_subkeys; uint32 max_subkeylen; uint32 max_subkeysize; uint32 num_values; uint32 max_valnamelen; uint32 max_valbufsize; uint32 sec_desc; NTTIME mod_time; DEBUG(5, ("cmd_reg_enum: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "regquery key_name\n"); return; } /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, full_keyname, key_name, &pol_con) : False; if ((*key_name) != 0) { /* open an entry */ res1 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, key_name, 0x02000000, &key_pol) : False; } else { memcpy(&key_pol, &pol_con, sizeof(key_pol)); } res1 = res1 ? do_reg_query_key(smb_cli, fnum, &key_pol, key_class, &key_class_len, &num_subkeys, &max_subkeylen, &max_subkeysize, &num_values, &max_valnamelen, &max_valbufsize, &sec_desc, &mod_time) : False; if (res1 && key_class_len != 0) { res1 = res1 ? do_reg_query_key(smb_cli, fnum, &key_pol, key_class, &key_class_len, &num_subkeys, &max_subkeylen, &max_subkeysize, &num_values, &max_valnamelen, &max_valbufsize, &sec_desc, &mod_time) : False; } if (res1) { report(out_hnd,"Registry Query Info Key\n"); report(out_hnd,"key class: %s\n", key_class); report(out_hnd,"subkeys, max_len, max_size: %d %d %d\n", num_subkeys, max_subkeylen, max_subkeysize); report(out_hnd,"vals, max_len, max_size: 0x%x 0x%x 0x%x\n", num_values, max_valnamelen, max_valbufsize); report(out_hnd,"sec desc: 0x%x\n", sec_desc); report(out_hnd,"mod time: %s\n", http_timestring(nt_time_to_unix(&mod_time))); } /* close the handles */ if ((*key_name) != 0) { res1 = res1 ? do_reg_close(smb_cli, fnum, &key_pol) : False; } res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res1) { DEBUG(5,("cmd_reg_query: query succeeded\n")); } else { DEBUG(5,("cmd_reg_query: query failed\n")); } } /**************************************************************************** nt registry create value ****************************************************************************/ void cmd_reg_create_val(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res3 = True; BOOL res4 = True; POLICY_HND parent_pol; POLICY_HND pol_con; fstring full_keyname; fstring keyname; fstring parent_name; fstring val_name; fstring tmp; uint32 val_type; BUFFER3 value; #if 0 uint32 unk_0; uint32 unk_1; /* query it */ res1 = res1 ? do_reg_query_info(smb_cli, fnum, &val_pol, type, &unk_0, &unk_1) : False; #endif DEBUG(5, ("cmd_reg_create_val: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "regcreate \n"); return; } reg_get_subkey(full_keyname, keyname, val_name); if (keyname[0] == 0 || val_name[0] == 0) { report(out_hnd, "invalid key name\n"); return; } if (!next_token(NULL, tmp, NULL, sizeof(tmp))) { report(out_hnd, "regcreate \n"); return; } val_type = atoi(tmp); if (val_type != 1 && val_type != 3 && val_type != 4) { report(out_hnd, "val_type 1=UNISTR, 3=BYTES, 4=DWORD supported\n"); return; } if (!next_token(NULL, tmp, NULL, sizeof(tmp))) { report(out_hnd, "regcreate \n"); return; } switch (val_type) { case 0x01: /* UNISTR */ { make_buffer3_str(&value, tmp, strlen(tmp)+1); break; } case 0x03: /* BYTES */ { make_buffer3_hex(&value, tmp); break; } case 0x04: /* DWORD */ { uint32 tmp_val; if (strnequal(tmp, "0x", 2)) { tmp_val = strtol(tmp, (char**)NULL, 16); } else { tmp_val = strtol(tmp, (char**)NULL, 10); } make_buffer3_uint32(&value, tmp_val); break; } default: { report(out_hnd, "i told you i only deal with UNISTR, DWORD and BYTES!\n"); return; } } DEBUG(10,("key data:\n")); dump_data(10, (char *)value.buffer, value.buf_len); /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, keyname, parent_name, &pol_con) : False; if ((*val_name) != 0) { /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, parent_name, 0x02000000, &parent_pol) : False; } else { memcpy(&parent_pol, &pol_con, sizeof(parent_pol)); } /* create an entry */ res4 = res3 ? do_reg_create_val(smb_cli, fnum, &parent_pol, val_name, val_type, &value) : False; /* flush the modified key */ res4 = res4 ? do_reg_flush_key(smb_cli, fnum, &parent_pol) : False; /* close the val handle */ if ((*val_name) != 0) { res3 = res3 ? do_reg_close(smb_cli, fnum, &parent_pol) : False; } /* close the registry handles */ res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res3 && res4) { DEBUG(5,("cmd_reg_create_val: query succeeded\n")); report(out_hnd,"OK\n"); } else { DEBUG(5,("cmd_reg_create_val: query failed\n")); } } /**************************************************************************** nt registry delete value ****************************************************************************/ void cmd_reg_delete_val(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res3 = True; BOOL res4 = True; POLICY_HND parent_pol; POLICY_HND pol_con; fstring full_keyname; fstring keyname; fstring parent_name; fstring val_name; DEBUG(5, ("cmd_reg_delete_val: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "regdelete \n"); return; } reg_get_subkey(full_keyname, keyname, val_name); if (keyname[0] == 0 || val_name[0] == 0) { report(out_hnd, "invalid key name\n"); return; } /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, keyname, parent_name, &pol_con) : False; if ((*val_name) != 0) { /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, parent_name, 0x02000000, &parent_pol) : False; } else { memcpy(&parent_pol, &pol_con, sizeof(parent_pol)); } /* delete an entry */ res4 = res3 ? do_reg_delete_val(smb_cli, fnum, &parent_pol, val_name) : False; /* flush the modified key */ res4 = res4 ? do_reg_flush_key(smb_cli, fnum, &parent_pol) : False; /* close the key handle */ res3 = res3 ? do_reg_close(smb_cli, fnum, &parent_pol) : False; /* close the registry handles */ res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res3 && res4) { DEBUG(5,("cmd_reg_delete_val: query succeeded\n")); report(out_hnd,"OK\n"); } else { DEBUG(5,("cmd_reg_delete_val: query failed\n")); } } /**************************************************************************** nt registry delete key ****************************************************************************/ void cmd_reg_delete_key(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res3 = True; BOOL res4 = True; POLICY_HND parent_pol; POLICY_HND pol_con; fstring full_keyname; fstring parent_name; fstring key_name; fstring subkey_name; DEBUG(5, ("cmd_reg_delete_key: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "regdeletekey \n"); return; } reg_get_subkey(full_keyname, parent_name, subkey_name); if (parent_name[0] == 0 || subkey_name[0] == 0) { report(out_hnd, "invalid key name\n"); return; } /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, parent_name, key_name, &pol_con) : False; if ((*key_name) != 0) { /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, key_name, 0x02000000, &parent_pol) : False; } else { memcpy(&parent_pol, &pol_con, sizeof(parent_pol)); } /* create an entry */ res4 = res3 ? do_reg_delete_key(smb_cli, fnum, &parent_pol, subkey_name) : False; /* flush the modified key */ res4 = res4 ? do_reg_flush_key(smb_cli, fnum, &parent_pol) : False; /* close the key handle */ if ((*key_name) != 0) { res3 = res3 ? do_reg_close(smb_cli, fnum, &parent_pol) : False; } /* close the registry handles */ res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res3 && res4) { DEBUG(5,("cmd_reg_delete_key: query succeeded\n")); report(out_hnd,"OK\n"); } else { DEBUG(5,("cmd_reg_delete_key: query failed\n")); } } /**************************************************************************** nt registry create key ****************************************************************************/ void cmd_reg_create_key(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res3 = True; BOOL res4 = True; POLICY_HND parent_pol; POLICY_HND key_pol; POLICY_HND pol_con; fstring full_keyname; fstring parent_key; fstring parent_name; fstring key_name; fstring key_class; SEC_ACCESS sam_access; DEBUG(5, ("cmd_reg_create_key: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "regcreate [key_class]\n"); return; } reg_get_subkey(full_keyname, parent_key, key_name); if (parent_key[0] == 0 || key_name[0] == 0) { report(out_hnd, "invalid key name\n"); return; } if (!next_token(NULL, key_class, NULL, sizeof(key_class))) { memset(key_class, 0, sizeof(key_class)); } /* set access permissions */ sam_access.mask = SEC_RIGHTS_READ; /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, parent_key, parent_name, &pol_con) : False; if ((*parent_name) != 0) { /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, parent_name, 0x02000000, &parent_pol) : False; } else { memcpy(&parent_pol, &pol_con, sizeof(parent_pol)); } /* create an entry */ res4 = res3 ? do_reg_create_key(smb_cli, fnum, &parent_pol, key_name, key_class, &sam_access, &key_pol) : False; /* flush the modified key */ res4 = res4 ? do_reg_flush_key(smb_cli, fnum, &parent_pol) : False; /* close the key handle */ res4 = res4 ? do_reg_close(smb_cli, fnum, &key_pol) : False; /* close the key handle */ if ((*parent_name) != 0) { res3 = res3 ? do_reg_close(smb_cli, fnum, &parent_pol) : False; } /* close the registry handles */ res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res3 && res4) { DEBUG(5,("cmd_reg_create_key: query succeeded\n")); report(out_hnd,"OK\n"); } else { DEBUG(5,("cmd_reg_create_key: query failed\n")); } } /**************************************************************************** nt registry security info ****************************************************************************/ void cmd_reg_test_key_sec(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res3 = True; BOOL res4 = True; POLICY_HND key_pol; POLICY_HND pol_con; fstring full_keyname; fstring key_name; /* * security info */ uint32 sec_buf_size; SEC_DESC_BUF sec_buf; DEBUG(5, ("cmd_reg_get_key_sec: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "reggetsec \n"); return; } /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, full_keyname, key_name, &pol_con) : False; if ((*key_name) != 0) { /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, key_name, 0x02000000, &key_pol) : False; } else { memcpy(&key_pol, &pol_con, sizeof(key_pol)); } /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, key_name, 0x02000000, &key_pol) : False; /* query key sec info. first call sets sec_buf_size. */ sec_buf_size = 0; ZERO_STRUCT(sec_buf); res4 = res3 ? do_reg_get_key_sec(smb_cli, fnum, &key_pol, &sec_buf_size, &sec_buf) : False; if (res4) { free_sec_desc_buf(&sec_buf); } res4 = res4 ? do_reg_get_key_sec(smb_cli, fnum, &key_pol, &sec_buf_size, &sec_buf) : False; if (res4 && sec_buf.len > 0 && sec_buf.sec != NULL) { display_sec_desc(out_hnd, ACTION_HEADER , sec_buf.sec); display_sec_desc(out_hnd, ACTION_ENUMERATE, sec_buf.sec); display_sec_desc(out_hnd, ACTION_FOOTER , sec_buf.sec); res4 = res4 ? do_reg_set_key_sec(smb_cli, fnum, &key_pol, sec_buf_size, sec_buf.sec) : False; free_sec_desc_buf(&sec_buf); } /* close the key handle */ if ((*key_name) != 0) { res3 = res3 ? do_reg_close(smb_cli, fnum, &key_pol) : False; } /* close the registry handles */ res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res3 && res4) { DEBUG(5,("cmd_reg_test2: query succeeded\n")); report(out_hnd,"Registry Test2\n"); } else { DEBUG(5,("cmd_reg_test2: query failed\n")); } } /**************************************************************************** nt registry security info ****************************************************************************/ void cmd_reg_get_key_sec(struct client_info *info) { uint16 fnum; BOOL res = True; BOOL res3 = True; BOOL res4 = True; POLICY_HND key_pol; POLICY_HND pol_con; fstring full_keyname; fstring key_name; /* * security info */ uint32 sec_buf_size; SEC_DESC_BUF sec_buf; DEBUG(5, ("cmd_reg_get_key_sec: smb_cli->fd:%d\n", smb_cli->fd)); if (!next_token(NULL, full_keyname, NULL, sizeof(full_keyname))) { report(out_hnd, "reggetsec \n"); return; } /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* open registry receive a policy handle */ res = res ? do_reg_connect(smb_cli, fnum, full_keyname, key_name, &pol_con) : False; if ((*key_name) != 0) { /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, key_name, 0x02000000, &key_pol) : False; } else { memcpy(&key_pol, &pol_con, sizeof(key_pol)); } /* open an entry */ res3 = res ? do_reg_open_entry(smb_cli, fnum, &pol_con, key_name, 0x02000000, &key_pol) : False; /* query key sec info. first call sets sec_buf_size. */ sec_buf_size = 0; ZERO_STRUCT(sec_buf); res4 = res3 ? do_reg_get_key_sec(smb_cli, fnum, &key_pol, &sec_buf_size, &sec_buf) : False; if (res4) { free_sec_desc_buf(&sec_buf); } res4 = res4 ? do_reg_get_key_sec(smb_cli, fnum, &key_pol, &sec_buf_size, &sec_buf) : False; if (res4 && sec_buf.len > 0 && sec_buf.sec != NULL) { display_sec_desc(out_hnd, ACTION_HEADER , sec_buf.sec); display_sec_desc(out_hnd, ACTION_ENUMERATE, sec_buf.sec); display_sec_desc(out_hnd, ACTION_FOOTER , sec_buf.sec); free(sec_buf.sec); } /* close the key handle */ if ((*key_name) != 0) { res3 = res3 ? do_reg_close(smb_cli, fnum, &key_pol) : False; } /* close the registry handles */ res = res ? do_reg_close(smb_cli, fnum, &pol_con) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res && res3 && res4) { DEBUG(5,("cmd_reg_get_key_sec: query succeeded\n")); } else { DEBUG(5,("cmd_reg_get_key_sec: query failed\n")); } } /**************************************************************************** nt registry shutdown ****************************************************************************/ void cmd_reg_shutdown(struct client_info *info) { uint16 fnum; BOOL res = True; fstring msg; fstring tmp; uint32 timeout = 20; uint16 flgs = 0; DEBUG(5, ("cmd_reg_shutdown: smb_cli->fd:%d\n", smb_cli->fd)); while (next_token(NULL, tmp, NULL, sizeof(tmp))) { if (strequal(tmp, "-m")) { if (next_token(NULL, msg, NULL, sizeof(msg))) { continue; } } else if (strequal(tmp, "-t")) { if (next_token(NULL, tmp, NULL, sizeof(tmp))) { timeout = atoi(tmp); continue; } } else if (strequal(tmp, "-r") || strequal(tmp, "--reboot")) { flgs = 0x100; continue; } report(out_hnd,"shutdown [-m msg] [-t timeout] [-r or --reboot]\n"); } /* open WINREG session. */ res = res ? cli_nt_session_open(smb_cli, PIPE_WINREG, &fnum) : False; /* create an entry */ res = res ? do_reg_shutdown(smb_cli, fnum, msg, timeout, flgs) : False; /* close the session */ cli_nt_session_close(smb_cli, fnum); if (res) { DEBUG(5,("cmd_reg_shutdown: query succeeded\n")); report(out_hnd,"OK\n"); } else { DEBUG(5,("cmd_reg_shutdown: query failed\n")); report(out_hnd,"Failed\n"); } }