📄 rpc_reg.h
字号:
/* Unix SMB/Netbios implementation. Version 1.9. SMB parameters and setup Copyright (C) Andrew Tridgell 1992-1997 Copyright (C) Luke Kenneth Casson Leighton 1996-1997 Copyright (C) Paul Ashton 1997 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.*/#ifndef _RPC_REG_H /* _RPC_REG_H */#define _RPC_REG_H /* winreg pipe defines */#define REG_OPEN_HKLM 0x02#define REG_OPEN_HKU 0x04#define REG_FLUSH_KEY 0x0B#define REG_UNK_1A 0x1a#define REG_QUERY_KEY 0x10#define REG_ENUM_KEY 0x09#define REG_CREATE_KEY 0x06#define REG_DELETE_KEY 0x07#define REG_DELETE_VALUE 0x08#define REG_CREATE_VALUE 0x16#define REG_GET_KEY_SEC 0x0c#define REG_SET_KEY_SEC 0x15#define REG_ENUM_VALUE 0x0a#define REG_OPEN_ENTRY 0x0f#define REG_INFO 0x11#define REG_CLOSE 0x05#define HKEY_LOCAL_MACHINE 0x80000000#define HKEY_USERS 0x80000003/* REG_Q_OPEN_HKLM */typedef struct q_reg_open_policy_info{ uint32 ptr; uint16 unknown_0; /* 0xE084 - 16 bit unknown */ uint16 unknown_1; /* random. changes */ uint32 level; /* 0x0000 0002 - 32 bit unknown */} REG_Q_OPEN_HKLM ;/* REG_R_OPEN_HKLM */typedef struct r_reg_open_policy_info{ POLICY_HND pol; /* policy handle */ uint32 status; /* return status */} REG_R_OPEN_HKLM;/* REG_Q_OPEN_HKU */typedef struct q_reg_open_unk4_info{ uint32 ptr; uint16 unknown_0; /* 0xE084 - 16 bit unknown */ uint16 unknown_1; /* random. changes */ uint32 level; /* 0x0000 0002 - 32 bit unknown */} REG_Q_OPEN_HKU;/* REG_R_OPEN_HKU */typedef struct r_reg_open_unk4_info{ POLICY_HND pol; /* policy handle */ uint32 status; /* return status */} REG_R_OPEN_HKU;/* REG_Q_FLUSH_KEY */typedef struct q_reg_open_flush_key_info{ POLICY_HND pol; /* policy handle */} REG_Q_FLUSH_KEY;/* REG_R_FLUSH_KEY */typedef struct r_reg_open_flush_key_info{ uint32 status; /* return status */} REG_R_FLUSH_KEY;/* REG_Q_SET_KEY_SEC */typedef struct q_reg_set_key_sec_info{ POLICY_HND pol; /* policy handle */ uint32 sec_info; /* xxxx_SECURITY_INFORMATION */ uint32 ptr; /* pointer */ BUFHDR hdr_sec; /* header for security data */ SEC_DESC_BUF *data; /* security data */ } REG_Q_SET_KEY_SEC;/* REG_R_SET_KEY_SEC */typedef struct r_reg_set_key_sec_info{ uint32 status; } REG_R_SET_KEY_SEC;/* REG_Q_GET_KEY_SEC */typedef struct q_reg_get_key_sec_info{ POLICY_HND pol; /* policy handle */ uint32 sec_info; /* xxxx_SECURITY_INFORMATION */ uint32 ptr; /* pointer */ BUFHDR hdr_sec; /* header for security data */ SEC_DESC_BUF *data; /* security data */ } REG_Q_GET_KEY_SEC;/* REG_R_GET_KEY_SEC */typedef struct r_reg_get_key_sec_info{ uint32 sec_info; /* xxxx_SECURITY_INFORMATION */ uint32 ptr; /* pointer */ BUFHDR hdr_sec; /* header for security data */ SEC_DESC_BUF *data; /* security data */ uint32 status; } REG_R_GET_KEY_SEC;/* REG_Q_CREATE_VALUE */typedef struct q_reg_create_value_info{ POLICY_HND pol; /* policy handle */ UNIHDR hdr_name; /* name of value */ UNISTR2 uni_name; uint32 type; /* 1 = UNISTR, 3 = BYTES, 4 = DWORD, 7 = MULTI_UNISTR */ BUFFER3 *buf_value; /* value, in byte buffer */} REG_Q_CREATE_VALUE;/* REG_R_CREATE_VALUE */typedef struct r_reg_create_value_info{ uint32 status; /* return status */} REG_R_CREATE_VALUE;/* REG_Q_ENUM_VALUE */typedef struct q_reg_query_value_info{ POLICY_HND pol; /* policy handle */ uint32 val_index; /* index */ UNIHDR hdr_name; /* name of value */ UNISTR2 uni_name; uint32 ptr_type; /* pointer */ uint32 type; /* 1 = UNISTR, 3 = BYTES, 4 = DWORD, 7 = MULTI_UNISTR */ uint32 ptr_value; /* pointer */ BUFFER2 buf_value; /* value, in byte buffer */ uint32 ptr1; /* pointer */ uint32 len_value1; /* */ uint32 ptr2; /* pointer */ uint32 len_value2; /* */} REG_Q_ENUM_VALUE;/* REG_R_ENUM_VALUE */typedef struct r_reg_enum_value_info{ UNIHDR hdr_name; /* name of value */ UNISTR2 uni_name; uint32 ptr_type; /* pointer */ uint32 type; /* 1 = UNISTR, 3 = BYTES, 4 = DWORD, 7 = MULTI_UNISTR */ uint32 ptr_value; /* pointer */ BUFFER2 *buf_value; /* value, in byte buffer */ uint32 ptr1; /* pointer */ uint32 len_value1; /* */ uint32 ptr2; /* pointer */ uint32 len_value2; /* */ uint32 status; /* return status */} REG_R_ENUM_VALUE;/* REG_Q_CREATE_KEY */typedef struct q_reg_create_key_info{ POLICY_HND pnt_pol; /* parent key policy handle */ UNIHDR hdr_name; UNISTR2 uni_name; UNIHDR hdr_class; UNISTR2 uni_class; uint32 reserved; /* 0x0000 0000 */ SEC_ACCESS sam_access; /* access rights flags, see rpc_secdes.h */ uint32 ptr1; uint32 sec_info; /* xxxx_SECURITY_INFORMATION */ uint32 ptr2; /* pointer */ BUFHDR hdr_sec; /* header for security data */ uint32 ptr3; /* pointer */ SEC_DESC_BUF *data; uint32 unknown_2; /* 0x0000 0000 */} REG_Q_CREATE_KEY;/* REG_R_CREATE_KEY */typedef struct r_reg_create_key_info{ POLICY_HND key_pol; /* policy handle */ uint32 unknown; /* 0x0000 0000 */ uint32 status; /* return status */} REG_R_CREATE_KEY;/* REG_Q_DELETE_KEY */typedef struct q_reg_delete_key_info{ POLICY_HND pnt_pol; /* parent key policy handle */ UNIHDR hdr_name; UNISTR2 uni_name;} REG_Q_DELETE_KEY;/* REG_R_DELETE_KEY */typedef struct r_reg_delete_key_info{ POLICY_HND key_pol; /* policy handle */ uint32 status; /* return status */} REG_R_DELETE_KEY;/* REG_Q_DELETE_VALUE */typedef struct q_reg_delete_val_info{ POLICY_HND pnt_pol; /* parent key policy handle */ UNIHDR hdr_name; UNISTR2 uni_name;} REG_Q_DELETE_VALUE;/* REG_R_DELETE_VALUE */typedef struct r_reg_delete_val_info{ POLICY_HND key_pol; /* policy handle */ uint32 status; /* return status */} REG_R_DELETE_VALUE;/* REG_Q_QUERY_KEY */typedef struct q_reg_query_info{ POLICY_HND pol; /* policy handle */ UNIHDR hdr_class; UNISTR2 uni_class;} REG_Q_QUERY_KEY;/* REG_R_QUERY_KEY */typedef struct r_reg_query_key_info{ UNIHDR hdr_class; UNISTR2 uni_class; uint32 num_subkeys; uint32 max_subkeylen; uint32 max_subkeysize; /* 0x0000 0000 */ uint32 num_values; uint32 max_valnamelen; uint32 max_valbufsize; uint32 sec_desc; /* 0x0000 0078 */ NTTIME mod_time; /* modified time */ uint32 status; /* return status */} REG_R_QUERY_KEY;/* REG_Q_UNK_1A */typedef struct q_reg_unk_1a_info{ POLICY_HND pol; /* policy handle */} REG_Q_UNK_1A;/* REG_R_UNK_1A */typedef struct r_reg_unk_1a_info{ uint32 unknown; /* 0x0500 0000 */ uint32 status; /* return status */} REG_R_UNK_1A;/* REG_Q_CLOSE */typedef struct reg_q_close_info{ POLICY_HND pol; /* policy handle */} REG_Q_CLOSE;/* REG_R_CLOSE */typedef struct reg_r_close_info{ POLICY_HND pol; /* policy handle. should be all zeros. */ uint32 status; /* return code */} REG_R_CLOSE;/* REG_Q_ENUM_KEY */typedef struct q_reg_enum_value_info{ POLICY_HND pol; /* policy handle */ uint32 key_index; uint16 key_name_len; /* 0x0000 */ uint16 unknown_1; /* 0x0414 */ uint32 ptr1; /* pointer */ uint32 unknown_2; /* 0x0000 020A */ uint8 pad1[8]; /* padding - zeros */ uint32 ptr2; /* pointer */ uint8 pad2[8]; /* padding - zeros */ uint32 ptr3; /* pointer */ NTTIME time; /* current time? */} REG_Q_ENUM_KEY;/* REG_R_ENUM_KEY */typedef struct r_reg_enum_key_info{ uint16 key_name_len; /* number of bytes in key name */ uint16 unknown_1; /* 0x0414 - matches with query unknown_1 */ uint32 ptr1; /* pointer */ uint32 unknown_2; /* 0x0000 020A */ uint32 unknown_3; /* 0x0000 0000 */ UNISTR3 key_name; uint32 ptr2; /* pointer */ uint8 pad2[8]; /* padding - zeros */ uint32 ptr3; /* pointer */ NTTIME time; /* current time? */ uint32 status; /* return status */} REG_R_ENUM_KEY;/* REG_Q_INFO */typedef struct q_reg_info_info{ POLICY_HND pol; /* policy handle */ UNIHDR hdr_type; /* unicode product type header */ UNISTR2 uni_type; /* unicode product type - "ProductType" */ uint32 ptr1; /* pointer */ NTTIME time; /* current time? */ uint8 major_version1; /* 0x4 - os major version? */ uint8 minor_version1; /* 0x1 - os minor version? */ uint8 pad1[10]; /* padding - zeros */ uint32 ptr2; /* pointer */ uint8 major_version2; /* 0x4 - os major version? */ uint8 minor_version2; /* 0x1 - os minor version? */ uint8 pad2[2]; /* padding - zeros */ uint32 ptr3; /* pointer */ uint32 unknown; /* 0x0000 0000 */} REG_Q_INFO;/* REG_R_INFO */typedef struct r_reg_info_info{ uint32 ptr1; /* buffer pointer */ uint32 level; /* 0x1 - info level? */ uint32 ptr_type; /* pointer to o/s type */ BUFFER2 uni_type; /* unicode string o/s type - "LanmanNT" */ uint32 ptr2; /* pointer to unknown_0 */ uint32 unknown_0; /* 0x12 */ uint32 ptr3; /* pointer to unknown_1 */ uint32 unknown_1; /* 0x12 */ uint32 status; /* return status */} REG_R_INFO;/* REG_Q_OPEN_ENTRY */typedef struct q_reg_open_entry_info{ POLICY_HND pol; /* policy handle */ UNIHDR hdr_name; /* unicode registry string header */ UNISTR2 uni_name; /* unicode registry string name */ uint32 unknown_0; /* 32 bit unknown - 0x0000 0000 */ uint32 unknown_1; /* 32 bit unknown - 0x0200 0000 */} REG_Q_OPEN_ENTRY;/* REG_R_OPEN_ENTRY */typedef struct r_reg_open_entry_info{ POLICY_HND pol; /* policy handle */ uint32 status; /* return status */} REG_R_OPEN_ENTRY;#endif /* _RPC_REG_H */⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -