registry/reg_frontend.c

ソースコードを見る。

関数
static NTSTATUS	registry_access_check (SEC_DESC *sec_desc, NT_USER_TOKEN *token, uint32 access_desired, uint32 *access_granted)
static SEC_DESC *	construct_registry_sd (TALLOC_CTX *ctx)
BOOL	init_registry (void)
BOOL	store_reg_keys (REGISTRY_KEY *key, REGSUBKEY_CTR *subkeys)
BOOL	store_reg_values (REGISTRY_KEY *key, REGVAL_CTR *val)
int	fetch_reg_keys (REGISTRY_KEY *key, REGSUBKEY_CTR *subkey_ctr)
BOOL	fetch_reg_keys_specific (REGISTRY_KEY *key, char **subkey, uint32 key_index)
int	fetch_reg_values (REGISTRY_KEY *key, REGVAL_CTR *val)
BOOL	fetch_reg_values_specific (REGISTRY_KEY *key, REGISTRY_VALUE **val, uint32 val_index)
BOOL	regkey_access_check (REGISTRY_KEY *key, uint32 requested, uint32 *granted, NT_USER_TOKEN *token)
WERROR	regkey_open_internal (REGISTRY_KEY **regkey, const char *path, NT_USER_TOKEN *token, uint32 access_desired)
WERROR	regkey_close_internal (REGISTRY_KEY *key)
変数
REGISTRY_OPS	printing_ops
REGISTRY_OPS	eventlog_ops
REGISTRY_OPS	shares_reg_ops
REGISTRY_OPS	regdb_ops
REGISTRY_HOOK	reg_hooks []
static struct generic_mapping	reg_generic_map

---

関数

static NTSTATUS registry_access_check	(	SEC_DESC *	sec_desc,
		NT_USER_TOKEN *	token,
		uint32	access_desired,
		uint32 *	access_granted
	)			[static]

reg_frontend.c の 53 行で定義されています。

参照先 get_root_nt_token()・reg_generic_map・result・se_access_check()・se_map_generic()・sec_initial_uid().

参照元 regkey_access_check().

{
        NTSTATUS result;

        if ( geteuid() == sec_initial_uid() ) {
                DEBUG(5,("registry_access_check: using root's token\n"));
                token = get_root_nt_token();
        }

        se_map_generic( &access_desired, &reg_generic_map );
        se_access_check( sec_desc, token, access_desired, access_granted, &result );

        return result;
}

static SEC_DESC* construct_registry_sd

(

TALLOC_CTX *

ctx

)

[static]

reg_frontend.c の 72 行で定義されています。

参照先 global_sid_Builtin_Administrators・global_sid_World・init_sec_access()・init_sec_ace()・make_sec_acl()・make_sec_desc()・SEC_ACE_TYPE_ACCESS_ALLOWED.

参照元 regkey_access_check().

{
        SEC_ACE ace[2]; 
        SEC_ACCESS mask;
        size_t i = 0;
        SEC_DESC *sd;
        SEC_ACL *acl;
        size_t sd_size;

        /* basic access for Everyone */
        
        init_sec_access(&mask, REG_KEY_READ );
        init_sec_ace(&ace[i++], &global_sid_World, SEC_ACE_TYPE_ACCESS_ALLOWED, mask, 0);
        
        /* Full Access 'BUILTIN\Administrators' */
        
        init_sec_access(&mask, REG_KEY_ALL );
        init_sec_ace(&ace[i++], &global_sid_Builtin_Administrators, SEC_ACE_TYPE_ACCESS_ALLOWED, mask, 0);
        
        
        /* create the security descriptor */
        
        if ( !(acl = make_sec_acl(ctx, NT4_ACL_REVISION, i, ace)) )
                return NULL;

        if ( !(sd = make_sec_desc(ctx, SEC_DESC_REVISION, SEC_DESC_SELF_RELATIVE, NULL, NULL, NULL, acl, &sd_size)) )
                return NULL;

        return sd;
}

BOOL init_registry

(

void

)

reg_frontend.c の 108 行で定義されています。

参照先 DEBUGLEVEL・eventlog_init_keys()・REGISTRY_HOOK::keyname・perfcount_init_keys()・reg_hooks・regdb_close()・regdb_init()・reghook_cache_add()・reghook_cache_init()・reghook_dump_cache()・svcctl_init_keys().

参照元 main().

{
        int i;
        
        
        if ( !regdb_init() ) {
                DEBUG(0,("init_registry: failed to initialize the registry tdb!\n"));
                return False;
        }

        /* build the cache tree of registry hooks */
        
        reghook_cache_init();
        
        for ( i=0; reg_hooks[i].keyname; i++ ) {
                if ( !reghook_cache_add(&reg_hooks[i]) )
                        return False;
        }

        if ( DEBUGLEVEL >= 20 )
                reghook_dump_cache(20);

        /* add any keys for other services */

        svcctl_init_keys();
        eventlog_init_keys();
        perfcount_init_keys();

        /* close and let each smbd open up as necessary */

        regdb_close();

        return True;
}

BOOL store_reg_keys	(	REGISTRY_KEY *	key,
		REGSUBKEY_CTR *	subkeys
	)

reg_frontend.c の 147 行で定義されています。

参照先 _RegistryKey::hook・_RegistryKey::name・REGISTRY_HOOK::ops・REGISTRY_OPS::store_subkeys.

参照元 _reg_create_key_ex()・_reg_delete_key()・add_new_svc_name()・reg_load_tree().

{
        if ( key->hook && key->hook->ops && key->hook->ops->store_subkeys )
                return key->hook->ops->store_subkeys( key->name, subkeys );
                
        return False;

}

BOOL store_reg_values	(	REGISTRY_KEY *	key,
		REGVAL_CTR *	val
	)

reg_frontend.c の 160 行で定義されています。

参照先 check_dynamic_reg_values()・_RegistryKey::hook・_RegistryKey::name・REGISTRY_HOOK::ops・REGISTRY_OPS::store_values.

参照元 _reg_delete_value()・_reg_set_value()・add_new_svc_name()・reg_load_tree()・svcctl_set_secdesc().

{
        if ( check_dynamic_reg_values( key ) )
                return False;

        if ( key->hook && key->hook->ops && key->hook->ops->store_values )
                return key->hook->ops->store_values( key->name, val );

        return False;
}

int fetch_reg_keys	(	REGISTRY_KEY *	key,
		REGSUBKEY_CTR *	subkey_ctr
	)

reg_frontend.c の 177 行で定義されています。

参照先 REGISTRY_OPS::fetch_subkeys・_RegistryKey::hook・_RegistryKey::name・REGISTRY_HOOK::ops・result.

参照元 _reg_create_key_ex()・_reg_delete_key()・add_new_svc_name()・fetch_reg_keys_specific()・get_subkey_information()・reg_write_tree()・regkey_open_internal()・svcctl_init_keys().

{
        int result = -1;
        
        if ( key->hook && key->hook->ops && key->hook->ops->fetch_subkeys )
                result = key->hook->ops->fetch_subkeys( key->name, subkey_ctr );

        return result;
}

BOOL fetch_reg_keys_specific	(	REGISTRY_KEY *	key,
		char **	subkey,
		uint32	key_index
	)

reg_frontend.c の 192 行で定義されています。

参照先 fetch_reg_keys()・_RegistryKey::name・regsubkey_ctr_specific_key()・StrCaseCmp().

参照元 _reg_enum_key().

{
        static REGSUBKEY_CTR *ctr = NULL;
        static pstring save_path;
        char *s;
        
        *subkey = NULL;
        
        /* simple caching for performance; very basic heuristic */

        DEBUG(8,("fetch_reg_keys_specific: Looking for key [%d] of  [%s]\n", key_index, key->name));
        
        if ( !ctr ) {
                DEBUG(8,("fetch_reg_keys_specific: Initializing cache of subkeys for [%s]\n", key->name));

                if ( !(ctr = TALLOC_ZERO_P( NULL, REGSUBKEY_CTR )) ) {
                        DEBUG(0,("fetch_reg_keys_specific: talloc() failed!\n"));
                        return False;
                }
                
                pstrcpy( save_path, key->name );
                
                if ( fetch_reg_keys( key, ctr) == -1 )
                        return False;
                        
        }
        /* clear the cache when key_index == 0 or the path has changed */
        else if ( !key_index || StrCaseCmp( save_path, key->name) ) {

                DEBUG(8,("fetch_reg_keys_specific: Updating cache of subkeys for [%s]\n", key->name));
                
                TALLOC_FREE( ctr );

                if ( !(ctr = TALLOC_ZERO_P( NULL, REGSUBKEY_CTR )) ) {
                        DEBUG(0,("fetch_reg_keys_specific: talloc() failed!\n"));
                        return False;
                }
                
                pstrcpy( save_path, key->name );
                
                if ( fetch_reg_keys( key, ctr) == -1 )
                        return False;
        }
        
        if ( !(s = regsubkey_ctr_specific_key( ctr, key_index )) )
                return False;

        *subkey = SMB_STRDUP( s );

        return True;
}

int fetch_reg_values	(	REGISTRY_KEY *	key,
		REGVAL_CTR *	val
	)

reg_frontend.c の 248 行で定義されています。

参照先 fetch_dynamic_reg_values()・REGISTRY_OPS::fetch_values・_RegistryKey::hook・_RegistryKey::name・REGISTRY_HOOK::ops・result.

参照元 _reg_delete_value()・_reg_set_value()・fetch_reg_values_specific()・get_value_information()・reg_write_tree()・svcctl_fetch_regvalues()・svcctl_get_secdesc()・svcctl_lookup_description()・svcctl_lookup_dispname()・sync_eventlog_params().

{
        int result = -1;
        
        if ( key->hook && key->hook->ops && key->hook->ops->fetch_values )
                result = key->hook->ops->fetch_values( key->name, val );
        
        /* if the backend lookup returned no data, try the dynamic overlay */
        
        if ( result == 0 ) {
                result = fetch_dynamic_reg_values( key, val );

                return ( result != -1 ) ? result : 0;
        }
        
        return result;
}

BOOL fetch_reg_values_specific	(	REGISTRY_KEY *	key,
		REGISTRY_VALUE **	val,
		uint32	val_index
	)

reg_frontend.c の 272 行で定義されています。

参照先 dup_registry_value()・fetch_reg_values()・_RegistryKey::name・regval_ctr_specific_value()・strequal().

参照元 _reg_enum_value()・_reg_query_value().

{
        static REGVAL_CTR       *ctr = NULL;
        static pstring          save_path;
        REGISTRY_VALUE          *v;
        
        *val = NULL;
        
        /* simple caching for performance; very basic heuristic */
        
        if ( !ctr ) {
                DEBUG(8,("fetch_reg_values_specific: Initializing cache of values for [%s]\n", key->name));

                if ( !(ctr = TALLOC_ZERO_P( NULL, REGVAL_CTR )) ) {
                        DEBUG(0,("fetch_reg_values_specific: talloc() failed!\n"));
                        return False;
                }

                pstrcpy( save_path, key->name );
                
                if ( fetch_reg_values( key, ctr) == -1 )
                        return False;
        }
        /* clear the cache when val_index == 0 or the path has changed */
        else if ( !val_index || !strequal(save_path, key->name) ) {

                DEBUG(8,("fetch_reg_values_specific: Updating cache of values for [%s]\n", key->name));         
                
                TALLOC_FREE( ctr );

                if ( !(ctr = TALLOC_ZERO_P( NULL, REGVAL_CTR )) ) {
                        DEBUG(0,("fetch_reg_values_specific: talloc() failed!\n"));
                        return False;
                }

                pstrcpy( save_path, key->name );
                
                if ( fetch_reg_values( key, ctr) == -1 )
                        return False;
        }
        
        if ( !(v = regval_ctr_specific_value( ctr, val_index )) )
                return False;

        *val = dup_registry_value( v );

        return True;
}

BOOL regkey_access_check	(	REGISTRY_KEY *	key,
		uint32	requested,
		uint32 *	granted,
		NT_USER_TOKEN *	token
	)

reg_frontend.c の 326 行で定義されています。

参照先 construct_registry_sd()・get_talloc_ctx()・_RegistryKey::hook・_RegistryKey::name・REGISTRY_HOOK::ops・REGISTRY_OPS::reg_access_check・registry_access_check()・status.

参照元 regkey_open_internal().

{
        /* use the default security check if the backend has not defined its own */
        
        if ( !(key->hook && key->hook->ops && key->hook->ops->reg_access_check) ) {
                SEC_DESC *sec_desc;
                NTSTATUS status;
                
                if ( !(sec_desc = construct_registry_sd( get_talloc_ctx() )) )
                        return False;
                
                status = registry_access_check( sec_desc, token, requested, granted );          
                
                return NT_STATUS_IS_OK(status);
        }
        
        return key->hook->ops->reg_access_check( key->name, requested, granted, token );
}

WERROR regkey_open_internal	(	REGISTRY_KEY **	regkey,
		const char *	path,
		NT_USER_TOKEN *	token,
		uint32	access_desired
	)

reg_frontend.c の 348 行で定義されています。

参照先 _RegistryKey::access_granted・fetch_reg_keys()・_RegistryKey::hook・_RegistryKey::name・regdb_close()・regdb_open()・reghook_cache_find()・regkey_access_check()・regkey_close_internal()・result・StrnCaseCmp()・talloc_strdup()・_RegistryKey::type.

参照元 add_new_svc_name()・open_registry_key()・svcctl_fetch_regvalues()・svcctl_get_secdesc()・svcctl_init_keys()・svcctl_lookup_description()・svcctl_lookup_dispname()・svcctl_set_secdesc()・sync_eventlog_params().

{
        WERROR          result = WERR_OK;
        REGISTRY_KEY    *keyinfo;
        REGSUBKEY_CTR   *subkeys = NULL;
        uint32 access_granted;
        
        if ( !(W_ERROR_IS_OK(result = regdb_open()) ) )
                return result;

        DEBUG(7,("regkey_open_internal: name = [%s]\n", path));

        if ( !(*regkey = TALLOC_ZERO_P(NULL, REGISTRY_KEY)) ) {
                regdb_close();
                return WERR_NOMEM;
        }
                
        keyinfo = *regkey;
                
        /* initialization */
        
        keyinfo->type = REG_KEY_GENERIC;
        if (!(keyinfo->name = talloc_strdup(keyinfo, path))) {
                result = WERR_NOMEM;
                goto done;
        }

        /* Tag this as a Performance Counter Key */

        if( StrnCaseCmp(path, KEY_HKPD, strlen(KEY_HKPD)) == 0 )
                keyinfo->type = REG_KEY_HKPD;
        
        /* Look up the table of registry I/O operations */

        if ( !(keyinfo->hook = reghook_cache_find( keyinfo->name )) ) {
                DEBUG(0,("open_registry_key: Failed to assigned a REGISTRY_HOOK to [%s]\n",
                        keyinfo->name ));
                result = WERR_BADFILE;
                goto done;
        }
        
        /* check if the path really exists; failed is indicated by -1 */
        /* if the subkey count failed, bail out */

        if ( !(subkeys = TALLOC_ZERO_P( keyinfo, REGSUBKEY_CTR )) ) {
                result = WERR_NOMEM;
                goto done;
        }

        if ( fetch_reg_keys( keyinfo, subkeys ) == -1 )  {
                result = WERR_BADFILE;
                goto done;
        }
        
        TALLOC_FREE( subkeys );

        if ( !regkey_access_check( keyinfo, access_desired, &access_granted, token ) ) {
                result = WERR_ACCESS_DENIED;
                goto done;
        }
        
        keyinfo->access_granted = access_granted;

done:
        if ( !W_ERROR_IS_OK(result) ) {
                regkey_close_internal( *regkey );
        }

        return result;
}

WERROR regkey_close_internal

(

REGISTRY_KEY *

key

)

reg_frontend.c の 423 行で定義されています。

参照先 regdb_close().

参照元 add_new_svc_name()・free_regkey_info()・open_registry_key()・regkey_open_internal()・svcctl_fetch_regvalues()・svcctl_get_secdesc()・svcctl_init_keys()・svcctl_lookup_description()・svcctl_lookup_dispname()・svcctl_set_secdesc()・sync_eventlog_params().

{
        TALLOC_FREE( key );
        regdb_close();

        return WERR_OK;
}

---

変数

REGISTRY_OPS printing_ops

reg_printing.c の 1237 行で定義されています。

REGISTRY_OPS eventlog_ops

REGISTRY_OPS shares_reg_ops

reg_shares.c の 158 行で定義されています。

REGISTRY_OPS regdb_ops

reg_db.c の 656 行で定義されています。

REGISTRY_HOOK reg_hooks[]

初期値:

 {
#ifndef REG_TDB_ONLY 
  { KEY_PRINTING,               &printing_ops },
  { KEY_PRINTING_2K,            &printing_ops },
  { KEY_PRINTING_PORTS,         &printing_ops },
  { KEY_SHARES,                 &shares_reg_ops },
#endif
  { NULL, NULL }
}

reg_frontend.c の 36 行で定義されています。

参照元 init_registry().

struct generic_mapping reg_generic_map [static]

初期値:

 
        { REG_KEY_READ, REG_KEY_WRITE, REG_KEY_EXECUTE, REG_KEY_ALL }

reg_frontend.c の 47 行で定義されています。

参照元 make_default_reg_sd()・registry_access_check().

---