Id:ddlZddlmZddlZddlmZmZddlmZddl m Z ddl m Z m Z mZddlmZddlmZdd lmZdd lmZmZmZmZdd lmZdd lmZdd lmZddlm Z ddl!m"Z"m#Z#m$Z$m%Z%dZ&Gdde'Z(y)N)StringIO) ndr_unpackndr_pack)preg) netcmd_finddc)create_directory_hiersmb_connection get_gpo_dn) NTSTATUSError)Number) str_regtype)NT_STATUS_OBJECT_NAME_INVALIDNT_STATUS_OBJECT_NAME_NOT_FOUNDNT_STATUS_OBJECT_PATH_NOT_FOUNDNT_STATUS_INVALID_PARAMETER) GPTIniParser) get_string)security) dsacl2fsacl) REG_BINARY REG_MULTI_SZREG_SZGUIDz [General] Version=0 creZdZddZdZdZdZddZdZdZ d Z d Z dd Z d Z d ZdZdZdZdZy)RegistryGroupPoliciesNc||_||_||_||_|jj d}dj |j d|dg|_dj |jdg|_t|j|j|_ |r|jdr|dd}n t|j|j}t|d|j|j |_tj tj"ztj$z}|jj'|jt(j*d g d } | d d } t-tj.| j1} tj2|jj5} t7| | } tj.j9| | |_y) Nrealm\Policiesz%sz Registry.polzldap://sysvol)lpcredsnTSecurityDescriptorbasescopeattrsr)gpor"r#samdbgetjoinlowerpol_dirpol_filer policy_dn startswithrr connr SECINFO_OWNER SECINFO_GROUP SECINFO_DACLsearchldb SCOPE_BASEr descriptoras_sddldom_sidget_domain_sidr from_sddlfs_sd)selfr)r"r#r*hostr dc_hostname ds_sd_flagsmsg ds_sd_ndrds_sd domain_sidsddls 0/usr/lib/python3/dist-packages/samba/policies.py__init__zRegistryGroupPolicies.__init__3s   G$yy%++-S$!GH  4<<"@A #DJJ9 DOOI.qr(K'>'=&> @@AC./2 8.. :BBD%%djj&?&?&AB 5*-((224D c ttj|jj |}|S#t $rA}|j dtttfvrtj}nYd}~|Sd}~wwxYw)Nr) rrfiler2loadfiler argsrrr)r?r/pol_dataes rH__load_registry_polz)RegistryGroupPolicies.__load_registry_polUsy !$))TYY-?-?-IJH vvay:<<>> 99; s37 B6A<<Bct|j||jj|||jj||jyN)rr2savefileset_aclr>)r?file_dir file_namedatas rH __save_filez!RegistryGroupPolicies.__save_fileas<dii2 9d+ )TZZ0rJc<|j||t|yrS)!_RegistryGroupPolicies__save_filer)r?r.r/rOs rH__save_registry_polz)RegistryGroupPolicies.__save_registry_polfs (HX,>?rJct|tk7r td|D]^}t|tk7r tdgd}|s|j ddgt |Dcgc]}||vc}rUtdycc}w)NzJSON not formatted correctly)keyname valuenameclassrXtype)ralist SyntaxErrordictextendall)r? json_inputremoveentrykeysks rH__validate_jsonz%RegistryGroupPolicies.__validate_jsonis  t #<= = BEE{d"!"@AA4D VV,-D1qU 12!"@AA B 2s" B ct|dtr|dStdD]%}t||dj k(s#|cSt d|dz)Nra zUnknown type %s) isinstancer ranger upper TypeError)r?riis rH__determine_data_typez+RegistryGroupPolicies.__determine_data_typeusb eFmV ,= 2Y q>U6]%8%8%::H )E&M9::rJc*|tk(rt|tk(r t|S|tk(r7t|tk(r%dj |dz}|j dS|tk(r#t|tk(r|j dS|S)Nzz utf-16-leutf-8) rrarbbytesrr,encoderstr)r?rtyperXs rH __set_dataz RegistryGroupPolicies.__set_data~sz J 4:#5;  l "tDzT'9==&3D;;{+ + f_ds!2;;w' ' rJc|jD]M}|j|dk(s|j|dk(s)|j|j|d|_yt j}|d|_|d|_|j||_|j|j|d|_t|j}|j|||_t||_ y)Nr^r_rX) entriesr^r_ _RegistryGroupPolicies__set_datararXrri+_RegistryGroupPolicies__determine_data_typerbappendlen num_entries)r?rOrirPr~s rH __pol_replacez#RegistryGroupPolicies.__pol_replaces!! 0AyyE),,{{eK00v?  0  Ai(AI ,AK//6AF__QVVU6];AF8++,G NN1 &H #&wt|jjddjd}|dz}|dz } |r|dz }|r| dz } | dz|z}|jj!ds|jj#d|jj%ddt'|t)5} |jj+| | j-d|j/|jd z|| j1jddddt3j4} |j6| _t3j:t'|t2j<d | d <|j>jA| y#t$r3}|jdt t tfvrt}nYd}~d}~wwxYw#1swYxYw) NzGPT.INIrGeneralVersionrwi versionNumber new_value)!r.r2rMr rNrrr GPT_EMPTYrparseini_conf has_optionintr+ry has_section add_sectionsetrzrwriteseekr[readr7Messager0dnMessageElementFLAG_MOD_REPLACEr*modify) r?machine_changed user_changedGPT_INIrXrPparserversionmachine_version user_versionout_datams rHincrement_gpt_iniz'RegistryGroupPolicies.increment_gpt_inis| ,,* 99%%g.D T ?? % %i ;&//--i.799?JG% 2O"b=L  q O  A L2%8**95 OO ' ' 2Iy#g,? Z >8 OO ! !( + MM!    T\\B.%]]_33G< > > KKM~~++CL#:N:N,;=+ !M vvay:<<>>!  6 > >s$H (A*I  I(II Ic t|}|dvr t dd|zS#tj$r'}|jdtk(r t dd}~wwxYw)Nrz&Extension name not formatted correctly)gPCMachineExtensionNamesgPCUserExtensionNameszExtension attribute incorrectz{%s})rsambar rNrrc)r?ext_nameext_attr ext_name_guidrPs rH!__validate_extension_registrationz7RegistryGroupPolicies.__validate_extension_registrationsn  NM 5 5=> > %%"" vvay77!"JKK  s !A"AAc|j||}|jj|jtj |g}t |dk(s||dvrd}nt|d|d}||vrd|jdz|zdz}nyt j}|j|_ t j|tj||d<|jj|y)Nr%rz[][]r)7_RegistryGroupPolicies__validate_extension_registrationr*r6r0r7r8rrstriprrrrrr?rrres ext_namesrs rHregister_extension_namez-RegistryGroupPolicies.register_extension_names99(HMjjT^^3>>'/j 2 s8q=HCF2I"3q6(#3B#78I 9 $iood33h>DI  KKM~~++Is7K7K,46+ !rJc|j||}|jj|jtj |g}t |dk(s||dvryt|d|d}||vr|j|d}nyt j}|j|_ t j|tj||d<|jj|y)Nr%rrrr)rr*r6r0r7r8rrreplacerrrrrrs rHunregister_extension_namez/RegistryGroupPolicies.unregister_extension_names99(HMjjT^^3>>'/j 2 s8q=HCF2 "3q6(#3B#78I y !))(B7I  KKM~~++Is7K7K,46+ !rJc8|j|d|j|jdz}|j|jdz}d}d}|D]R}|dj}|dk(s|dk(rd}|j |||d k(s|dk(s?d}|j ||T|r-|j |j dz|jdz||r-|j |j dz|jdz||j||y ) aremove_s json_input: JSON list of entries to remove from GPO Example json_input: [ { "keyname": "Software\Policies\Mozilla\Firefox\Homepage", "valuename": "StartPage", "class": "USER", }, { "keyname": "Software\Policies\Mozilla\Firefox\Homepage", "valuename": "URL", "class": "USER", }, ] T)rhUserMachineFr`machinebothuserN)%_RegistryGroupPolicies__validate_json)_RegistryGroupPolicies__load_registry_polr/r-"_RegistryGroupPolicies__pol_remove)_RegistryGroupPolicies__save_registry_polr.rr?rg user_pol_datamachine_pol_datarrriclss rHremove_szRegistryGroupPolicies.remove_ss'$ Z5001GH 33DMMI4MN  8E.&&(Ci3&="&!!"2E:f}v # !!-7 8   $ $T\\F%:%)]]V%;%2 4   $ $T\\I%=%)]]Y%>%5 7  =rJc4|j||j|jdz}|j|jdz}d}d}|D]R}|dj}|dk(s|dk(rd}|j |||dk(s|dk(s?d}|j ||T|r-|j |j dz|jdz||r-|j |j dz|jdz||j||y ) admerge_s json_input: JSON list of entries to merge into GPO Example json_input: [ { "keyname": "Software\Policies\Mozilla\Firefox\Homepage", "valuename": "StartPage", "class": "USER", "type": "REG_SZ", "data": "homepage" }, { "keyname": "Software\Policies\Mozilla\Firefox\Homepage", "valuename": "URL", "class": "USER", "type": "REG_SZ", "data": "google.com" }, ] rrFr`rrTrN)rrr/r-#_RegistryGroupPolicies__pol_replacerr.rrs rHmerge_szRegistryGroupPolicies.merge_s-s", Z(001GH 33DMMI4MN  9E.&&(Ci3&="&""#3U;f}v # ""=%8 9   $ $T\\F%:%)]]V%;%2 4   $ $T\\I%=%)]]Y%>%5 7  =rJc |j|tj}tj}d}d}|D]R}|dj}|dk(s|dk(rd}|j |||dk(s|dk(s?d}|j ||T|r-|j |j dz|jdz||r-|j |j dz|jdz||j||y ) a*replace_s json_input: JSON list of entries to replace entries in GPO Example json_input: [ { "keyname": "Software\Policies\Mozilla\Firefox\Homepage", "valuename": "StartPage", "class": "USER", "data": "homepage" }, { "keyname": "Software\Policies\Mozilla\Firefox\Homepage", "valuename": "URL", "class": "USER", "data": "google.com" }, ] Fr`rrTrrrN) rrrLr-rrr.r/rrs rH replace_szRegistryGroupPolicies.replace_s[s( Z( 99;  9E.&&(Ci3&="&""#3U;f}v # ""=%8 9   $ $T\\F%:%)]]V%;%2 4   $ $T\\I%=%)]]Y%>%5 7  =rJrS)F)FF)__name__ __module__ __qualname__rIrr[rrrrrrrrrrrrrrJrHrr2sY ED 1 @ B; 0",,\ &&&(>T,>\*>rJr))jsoniorr7 samba.ndrrr samba.dcerpcrsamba.netcmd.commonrsamba.netcmd.gpcommonrr r rr numbersr samba.registryr samba.ntstatusrrrrsamba.gp_parse.gp_inir samba.commonrr samba.ntaclsrsamba.dcerpc.miscrrrrrobjectrrrJrHrsd$  *-  & /#!$DD S>FS>rJ