2007-08-14 18:47:08 +04:00
/*
2006-02-04 01:19:41 +03:00
* Unix SMB / CIFS implementation .
* Group Policy Object Support
2007-08-14 18:47:08 +04:00
* Copyright ( C ) Guenther Deschner 2005 - 2007
*
2006-02-04 01:19:41 +03:00
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License as published by
2007-07-09 23:25:36 +04:00
* the Free Software Foundation ; either version 3 of the License , or
2006-02-04 01:19:41 +03:00
* ( at your option ) any later version .
2007-08-14 18:47:08 +04:00
*
2006-02-04 01:19:41 +03:00
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
* GNU General Public License for more details .
2007-08-14 18:47:08 +04:00
*
2006-02-04 01:19:41 +03:00
* You should have received a copy of the GNU General Public License
2007-07-10 09:23:25 +04:00
* along with this program ; if not , see < http : //www.gnu.org/licenses/>.
2006-02-04 01:19:41 +03:00
*/
enum GPO_LINK_TYPE {
2006-09-29 03:04:17 +04:00
GP_LINK_UNKOWN = 0 ,
GP_LINK_MACHINE = 1 ,
GP_LINK_SITE = 2 ,
GP_LINK_DOMAIN = 3 ,
2008-02-29 17:46:14 +03:00
GP_LINK_OU = 4 ,
GP_LINK_LOCAL = 5 /* for convenience */
2006-02-04 01:19:41 +03:00
} ;
/* GPO_OPTIONS */
# define GPO_FLAG_DISABLE 0x00000001
# define GPO_FLAG_FORCE 0x00000002
/* GPO_LIST_FLAGS */
# define GPO_LIST_FLAG_MACHINE 0x00000001
# define GPO_LIST_FLAG_SITEONLY 0x00000002
2008-02-29 17:46:14 +03:00
/* following flags from http://support.microsoft.com/kb/312164/EN-US/ */
# define GPO_INFO_FLAG_MACHINE 0x00000001
# define GPO_INFO_FLAG_BACKGROUND 0x00000010
# define GPO_INFO_FLAG_SLOWLINK 0x00000020
# define GPO_INFO_FLAG_VERBOSE 0x00000040
# define GPO_INFO_FLAG_NOCHANGES 0x00000080
# define GPO_INFO_FLAG_LINKTRANSITION 0x00000100
# define GPO_INFO_FLAG_LOGRSOP_TRANSITION 0x00000200
# define GPO_INFO_FLAG_FORCED_REFRESH 0x00000400
# define GPO_INFO_FLAG_SAFEMODE_BOOT 0x00000800
2006-09-26 21:22:15 +04:00
# define GPO_VERSION_USER(x) (x >> 16)
# define GPO_VERSION_MACHINE(x) (x & 0xffff)
2006-02-04 01:19:41 +03:00
struct GROUP_POLICY_OBJECT {
2007-08-14 18:47:08 +04:00
uint32_t options ; /* GPFLAGS_* */
uint32_t version ;
2006-02-04 01:19:41 +03:00
const char * ds_path ;
const char * file_sys_path ;
const char * display_name ;
const char * name ;
const char * link ;
2007-07-14 03:28:12 +04:00
enum GPO_LINK_TYPE link_type ;
2006-02-04 01:19:41 +03:00
const char * user_extensions ;
const char * machine_extensions ;
2007-05-11 16:41:11 +04:00
SEC_DESC * security_descriptor ;
2006-02-04 01:19:41 +03:00
struct GROUP_POLICY_OBJECT * next , * prev ;
} ;
/* the following is seen on the DS (see adssearch.pl for details) */
/* the type field in a 'gPLink', the same as GPO_FLAG ? */
# define GPO_LINK_OPT_NONE 0x00000000
# define GPO_LINK_OPT_DISABLED 0x00000001
# define GPO_LINK_OPT_ENFORCED 0x00000002
/* GPO_LINK_OPT_ENFORCED takes precedence over GPOPTIONS_BLOCK_INHERITANCE */
/* 'gPOptions', maybe a bitmask as well */
enum GPO_INHERIT {
2006-09-29 03:04:17 +04:00
GPOPTIONS_INHERIT = 0 ,
GPOPTIONS_BLOCK_INHERITANCE = 1
2006-02-04 01:19:41 +03:00
} ;
/* 'flags' in a 'groupPolicyContainer' object */
# define GPFLAGS_ALL_ENABLED 0x00000000
# define GPFLAGS_USER_SETTINGS_DISABLED 0x00000001
# define GPFLAGS_MACHINE_SETTINGS_DISABLED 0x00000002
# define GPFLAGS_ALL_DISABLED (GPFLAGS_USER_SETTINGS_DISABLED | \
GPFLAGS_MACHINE_SETTINGS_DISABLED )
struct GP_LINK {
const char * gp_link ; /* raw link name */
2007-08-14 18:47:08 +04:00
uint32_t gp_opts ; /* inheritance options GPO_INHERIT */
uint32_t num_links ; /* number of links */
2006-02-04 01:19:41 +03:00
char * * link_names ; /* array of parsed link names */
2007-08-14 18:47:08 +04:00
uint32_t * link_opts ; /* array of parsed link opts GPO_LINK_OPT_* */
2006-02-04 01:19:41 +03:00
} ;
struct GP_EXT {
const char * gp_extension ; /* raw extension name */
2007-08-14 18:47:08 +04:00
uint32_t num_exts ;
2006-02-04 01:19:41 +03:00
char * * extensions ;
char * * extensions_guid ;
char * * snapins ;
char * * snapins_guid ;
2008-02-29 17:46:14 +03:00
struct GP_EXT * next , * prev ;
2006-02-04 01:19:41 +03:00
} ;
2006-09-29 05:27:54 +04:00
# define GPO_CACHE_DIR "gpo_cache"
# define GPT_INI "GPT.INI"
2008-02-29 17:46:14 +03:00
# define GPO_REFRESH_INTERVAL 60*90
# define GPO_REG_STATE_MACHINE "State\\Machine"
enum gp_reg_action {
GP_REG_ACTION_NONE = 0 ,
GP_REG_ACTION_ADD_VALUE = 1 ,
GP_REG_ACTION_ADD_KEY = 2 ,
GP_REG_ACTION_DEL_VALUES = 3 ,
GP_REG_ACTION_DEL_VALUE = 4 ,
GP_REG_ACTION_DEL_ALL_VALUES = 5 ,
GP_REG_ACTION_DEL_KEYS = 6 ,
GP_REG_ACTION_SEC_KEY_SET = 7 ,
GP_REG_ACTION_SEC_KEY_RESET = 8
} ;
struct gp_registry_entry {
enum gp_reg_action action ;
const char * key ;
const char * value ;
struct registry_value * data ;
} ;
struct gp_registry_value {
const char * value ;
struct registry_value * data ;
} ;
struct gp_registry_entry2 {
enum gp_reg_action action ;
const char * key ;
size_t num_values ;
struct gp_registry_value * * values ;
} ;
struct gp_registry_entries {
size_t num_entries ;
struct gp_registry_entry * * entries ;
} ;
struct gp_registry_context {
const struct nt_user_token * token ;
const char * path ;
struct registry_key * curr_key ;
} ;
2007-08-14 18:47:08 +04:00
2007-09-26 01:41:57 +04:00
# define GP_EXT_GUID_SECURITY "827D319E-6EAC-11D2-A4EA-00C04F79F83A"
# define GP_EXT_GUID_REGISTRY "35378EAC-683F-11D2-A89A-00C04FBBCFA2"
# define GP_EXT_GUID_SCRIPTS "42B5FAAE-6536-11D2-AE5A-0000F87571E3"
