1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
|
/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this file,
* You can obtain one at http://mozilla.org/MPL/2.0/. */
import { XPCOMUtils } from "resource://gre/modules/XPCOMUtils.sys.mjs";
const PREF_LOGLEVEL = "browser.policies.loglevel";
const lazy = {};
XPCOMUtils.defineLazyGetter(lazy, "log", () => {
let { ConsoleAPI } = ChromeUtils.importESModule(
"resource://gre/modules/Console.sys.mjs"
);
return new ConsoleAPI({
prefix: "GPOParser.jsm",
// tip: set maxLogLevel to "debug" and use log.debug() to create detailed
// messages during development. See LOG_LEVELS in Console.sys.mjs for details.
maxLogLevel: "error",
maxLogLevelPref: PREF_LOGLEVEL,
});
});
export var WindowsGPOParser = {
readPolicies(wrk, policies) {
let childWrk = wrk.openChild(
"Mozilla\\" + Services.appinfo.name,
wrk.ACCESS_READ
);
if (!policies) {
policies = {};
}
try {
policies = registryToObject(childWrk, policies);
} catch (e) {
lazy.log.error(e);
} finally {
childWrk.close();
}
// Need an extra check here so we don't
// JSON.stringify if we aren't in debug mode
if (lazy.log._maxLogLevel == "debug") {
lazy.log.debug(JSON.stringify(policies, null, 2));
}
return policies;
},
};
function registryToObject(wrk, policies) {
if (!policies) {
policies = {};
}
if (wrk.valueCount > 0) {
if (wrk.getValueName(0) == "1") {
// If the first item is 1, just assume it is an array
let array = [];
for (let i = 0; i < wrk.valueCount; i++) {
array.push(readRegistryValue(wrk, wrk.getValueName(i)));
}
// If it's an array, it shouldn't have any children
return array;
}
for (let i = 0; i < wrk.valueCount; i++) {
let name = wrk.getValueName(i);
let value = readRegistryValue(wrk, name);
if (value != undefined) {
policies[name] = value;
}
}
}
if (wrk.childCount > 0) {
if (wrk.getChildName(0) == "1") {
// If the first item is 1, it's an array of objects
let array = [];
for (let i = 0; i < wrk.childCount; i++) {
let name = wrk.getChildName(i);
let childWrk = wrk.openChild(name, wrk.ACCESS_READ);
array.push(registryToObject(childWrk));
childWrk.close();
}
// If it's an array, it shouldn't have any children
return array;
}
for (let i = 0; i < wrk.childCount; i++) {
let name = wrk.getChildName(i);
let childWrk = wrk.openChild(name, wrk.ACCESS_READ);
policies[name] = registryToObject(childWrk);
childWrk.close();
}
}
return policies;
}
function readRegistryValue(wrk, value) {
switch (wrk.getValueType(value)) {
case 7: // REG_MULTI_SZ
// While we support JSON in REG_SZ and REG_MULTI_SZ, if it's REG_MULTI_SZ,
// we know it must be JSON. So we go ahead and JSON.parse it here so it goes
// through the schema validator.
try {
return JSON.parse(wrk.readStringValue(value).replace(/\0/g, "\n"));
} catch (e) {
lazy.log.error(`Unable to parse JSON for ${value}`);
return undefined;
}
case 2: // REG_EXPAND_SZ
case wrk.TYPE_STRING:
return wrk.readStringValue(value);
case wrk.TYPE_BINARY:
return wrk.readBinaryValue(value);
case wrk.TYPE_INT:
return wrk.readIntValue(value);
case wrk.TYPE_INT64:
return wrk.readInt64Value(value);
}
// unknown type
return null;
}
|
