ReactOS 0.4.15-dev-7924-g5949c20
Macros | Functions | Variables
regutil.c File Reference
#include "precomp.h"
#include "filesup.h"
#include "regutil.h"
#include <debug.h>
Include dependency graph for regutil.c:

Go to the source code of this file.

Macros

#define NDEBUG
 

Functions

NTSTATUS CreateNestedKey (PHANDLE KeyHandle, ACCESS_MASK DesiredAccess, POBJECT_ATTRIBUTES ObjectAttributes, ULONG CreateOptions)
 
NTSTATUS CreateRegistryFile (IN PUNICODE_STRING NtSystemRoot, IN PCWSTR RegistryKey, IN BOOLEAN IsHiveNew, IN HANDLE ProtoKeyHandle)
 
NTSTATUS CreateSymLinkKey (IN HANDLE RootKey OPTIONAL, IN PCWSTR LinkKeyName, IN PCWSTR TargetKeyName)
 
NTSTATUS DeleteSymLinkKey (IN HANDLE RootKey OPTIONAL, IN PCWSTR LinkKeyName)
 
NTSTATUS ConnectRegistry (IN HANDLE RootKey OPTIONAL, IN PCWSTR RegMountPoint, IN PUNICODE_STRING NtSystemRoot, IN PCWSTR RegistryKey)
 
NTSTATUS DisconnectRegistry (IN HANDLE RootKey OPTIONAL, IN PCWSTR RegMountPoint, IN ULONG Flags)
 
NTSTATUS VerifyRegistryHive (IN PUNICODE_STRING NtSystemRoot, IN PCWSTR RegistryKey)
 

Variables

static UNICODE_STRING SymbolicLinkValueName
 

Macro Definition Documentation

◆ NDEBUG

#define NDEBUG

Definition at line 16 of file regutil.c.

Function Documentation

◆ ConnectRegistry()

NTSTATUS ConnectRegistry ( IN HANDLE RootKey  OPTIONAL,
IN PCWSTR  RegMountPoint,
IN PUNICODE_STRING  NtSystemRoot,
IN PCWSTR  RegistryKey 
)

Definition at line 391 of file regutil.c.

402{
403 UNICODE_STRING KeyName, FileName;
404 OBJECT_ATTRIBUTES KeyObjectAttributes;
405 OBJECT_ATTRIBUTES FileObjectAttributes;
406 WCHAR PathBuffer[MAX_PATH];
407
408 RtlInitUnicodeString(&KeyName, RegMountPoint);
409 InitializeObjectAttributes(&KeyObjectAttributes,
410 &KeyName,
411 OBJ_CASE_INSENSITIVE,
412 RootKey,
413 NULL); // Descriptor
414
415 CombinePaths(PathBuffer, ARRAYSIZE(PathBuffer), 3,
416 NtSystemRoot->Buffer, L"System32\\config", RegistryKey);
417 RtlInitUnicodeString(&FileName, PathBuffer);
418 InitializeObjectAttributes(&FileObjectAttributes,
419 &FileName,
420 OBJ_CASE_INSENSITIVE,
421 NULL, // RootDirectory,
422 NULL);
423
424 /* Mount the registry hive in the registry namespace */
425 return NtLoadKey(&KeyObjectAttributes, &FileObjectAttributes);
426}
NULL
#define NULL
Definition: types.h:112
ARRAYSIZE
#define ARRAYSIZE(array)
Definition: filtermapper.c:47
MAX_PATH
#define MAX_PATH
Definition: compat.h:34
FileName
struct _FileName FileName
Definition: fatprocs.h:896
CombinePaths
NTSTATUS CombinePaths(OUT PWSTR PathBuffer, IN SIZE_T cchPathSize, IN ULONG NumberOfPathComponents, IN ...)
Definition: filesup.c:681
OBJ_CASE_INSENSITIVE
#define OBJ_CASE_INSENSITIVE
Definition: winternl.h:228
InitializeObjectAttributes
#define InitializeObjectAttributes(p, n, a, r, s)
Definition: reg.c:106
RtlInitUnicodeString
NTSYSAPI VOID NTAPI RtlInitUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)
NtLoadKey
NTSTATUS NTAPI NtLoadKey(IN POBJECT_ATTRIBUTES KeyObjectAttributes, IN POBJECT_ATTRIBUTES FileObjectAttributes)
Definition: ntapi.c:1129
NtSystemRoot
UNICODE_STRING NtSystemRoot
Definition: init.c:76
L
#define L(x)
Definition: ntvdm.h:50
RootKey
static PMEMKEY RootKey
Definition: registry.c:55
_FileName
Definition: filecomp.c:348
_OBJECT_ATTRIBUTES
Definition: umtypes.h:182
_UNICODE_STRING
Definition: env_spec_w32.h:368
_UNICODE_STRING::Buffer
PWSTR Buffer
Definition: env_spec_w32.h:371
FileObjectAttributes
_In_ PWDFDEVICE_INIT _In_ PWDF_FILEOBJECT_CONFIG _In_opt_ PWDF_OBJECT_ATTRIBUTES FileObjectAttributes
Definition: wdfdevice.h:3400
KeyName
_Must_inspect_result_ _In_ WDFDEVICE _In_ PCUNICODE_STRING KeyName
Definition: wdfdevice.h:2699
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180

Referenced by RegInitializeRegistry(), and VerifyRegistryHive().

◆ CreateNestedKey()

NTSTATUS CreateNestedKey ( PHANDLE  KeyHandle,
ACCESS_MASK  DesiredAccess,
POBJECT_ATTRIBUTES  ObjectAttributes,
ULONG  CreateOptions 
)

Definition at line 33 of file regutil.c.

37{
38 OBJECT_ATTRIBUTES LocalObjectAttributes;
39 UNICODE_STRING LocalKeyName;
40 ULONG Disposition;
41 NTSTATUS Status;
42 USHORT FullNameLength;
43 PWCHAR Ptr;
44 HANDLE LocalKeyHandle;
45
46 Status = NtCreateKey(KeyHandle,
47 KEY_ALL_ACCESS,
48 ObjectAttributes,
49 0,
50 NULL,
51 CreateOptions,
52 &Disposition);
53 DPRINT("NtCreateKey(%wZ) called (Status %lx)\n", ObjectAttributes->ObjectName, Status);
54 if (Status != STATUS_OBJECT_NAME_NOT_FOUND)
55 {
56 if (!NT_SUCCESS(Status))
57 DPRINT1("CreateNestedKey: NtCreateKey(%wZ) failed (Status %lx)\n", ObjectAttributes->ObjectName, Status);
58
59 return Status;
60 }
61
62 /* Copy object attributes */
63 RtlCopyMemory(&LocalObjectAttributes,
64 ObjectAttributes,
65 sizeof(OBJECT_ATTRIBUTES));
66 RtlCreateUnicodeString(&LocalKeyName,
67 ObjectAttributes->ObjectName->Buffer);
68 LocalObjectAttributes.ObjectName = &LocalKeyName;
69 FullNameLength = LocalKeyName.Length;
70
71 /* Remove the last part of the key name and try to create the key again. */
72 while (Status == STATUS_OBJECT_NAME_NOT_FOUND)
73 {
74 Ptr = wcsrchr(LocalKeyName.Buffer, '\\');
75 if (Ptr == NULL || Ptr == LocalKeyName.Buffer)
76 {
77 Status = STATUS_UNSUCCESSFUL;
78 break;
79 }
80 *Ptr = (WCHAR)0;
81 LocalKeyName.Length = (Ptr - LocalKeyName.Buffer) * sizeof(WCHAR);
82
83 Status = NtCreateKey(&LocalKeyHandle,
84 KEY_CREATE_SUB_KEY,
85 &LocalObjectAttributes,
86 0,
87 NULL,
88 REG_OPTION_NON_VOLATILE, // FIXME ?
89 &Disposition);
90 DPRINT("NtCreateKey(%wZ) called (Status %lx)\n", &LocalKeyName, Status);
91 if (!NT_SUCCESS(Status) && Status != STATUS_OBJECT_NAME_NOT_FOUND)
92 DPRINT1("CreateNestedKey: NtCreateKey(%wZ) failed (Status %lx)\n", LocalObjectAttributes.ObjectName, Status);
93 }
94
95 if (!NT_SUCCESS(Status))
96 {
97 RtlFreeUnicodeString(&LocalKeyName);
98 return Status;
99 }
100
101 /* Add removed parts of the key name and create them too. */
102 while (TRUE)
103 {
104 if (LocalKeyName.Length == FullNameLength)
105 {
106 Status = STATUS_SUCCESS;
107 *KeyHandle = LocalKeyHandle;
108 break;
109 }
110 NtClose(LocalKeyHandle);
111
112 LocalKeyName.Buffer[LocalKeyName.Length / sizeof(WCHAR)] = L'\\';
113 LocalKeyName.Length = (USHORT)wcslen(LocalKeyName.Buffer) * sizeof(WCHAR);
114
115 Status = NtCreateKey(&LocalKeyHandle,
116 KEY_ALL_ACCESS,
117 &LocalObjectAttributes,
118 0,
119 NULL,
120 CreateOptions,
121 &Disposition);
122 DPRINT("NtCreateKey(%wZ) called (Status %lx)\n", &LocalKeyName, Status);
123 if (!NT_SUCCESS(Status))
124 {
125 DPRINT1("CreateNestedKey: NtCreateKey(%wZ) failed (Status %lx)\n", LocalObjectAttributes.ObjectName, Status);
126 break;
127 }
128 }
129
130 RtlFreeUnicodeString(&LocalKeyName);
131
132 return Status;
133}
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
DPRINT1
#define DPRINT1
Definition: precomp.h:8
RtlCreateUnicodeString
NTSYSAPI BOOLEAN NTAPI RtlCreateUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)
ObjectAttributes
IN PUNICODE_STRING IN POBJECT_ATTRIBUTES ObjectAttributes
Definition: conport.c:36
TRUE
#define TRUE
Definition: types.h:120
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
wcsrchr
#define wcsrchr
Definition: compat.h:16
Ptr
_Must_inspect_result_ _In_ PFSRTL_PER_STREAM_CONTEXT Ptr
Definition: fsrtlfuncs.h:898
Status
Status
Definition: gdiplustypes.h:25
wcslen
_CRTIMP size_t __cdecl wcslen(_In_z_ const wchar_t *_Str)
KeyHandle
_Must_inspect_result_ _Out_ PNDIS_STATUS _In_ NDIS_HANDLE _In_ ULONG _Out_ PNDIS_STRING _Out_ PNDIS_HANDLE KeyHandle
Definition: ndis.h:4715
Disposition
_In_ ACCESS_MASK _In_ POBJECT_ATTRIBUTES _Reserved_ ULONG _In_opt_ PUNICODE_STRING _In_ ULONG _Out_opt_ PULONG Disposition
Definition: cmfuncs.h:56
KEY_ALL_ACCESS
#define KEY_ALL_ACCESS
Definition: nt_native.h:1041
KEY_CREATE_SUB_KEY
#define KEY_CREATE_SUB_KEY
Definition: nt_native.h:1018
REG_OPTION_NON_VOLATILE
#define REG_OPTION_NON_VOLATILE
Definition: nt_native.h:1057
NtClose
NTSTATUS NTAPI NtClose(IN HANDLE Handle)
Definition: obhandle.c:3402
RtlFreeUnicodeString
NTSYSAPI VOID NTAPI RtlFreeUnicodeString(PUNICODE_STRING UnicodeString)
NtCreateKey
NTSTATUS NTAPI NtCreateKey(OUT PHANDLE KeyHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, IN ULONG TitleIndex, IN PUNICODE_STRING Class OPTIONAL, IN ULONG CreateOptions, OUT PULONG Disposition OPTIONAL)
Definition: ntapi.c:240
USHORT
unsigned short USHORT
Definition: pedump.c:61
STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65
DPRINT
#define DPRINT
Definition: sndvol32.h:71
_OBJECT_ATTRIBUTES::ObjectName
PUNICODE_STRING ObjectName
Definition: umtypes.h:185
_UNICODE_STRING::Length
USHORT Length
Definition: env_spec_w32.h:369
RtlCopyMemory
#define RtlCopyMemory(Destination, Source, Length)
Definition: typedefs.h:263
PWCHAR
uint16_t * PWCHAR
Definition: typedefs.h:56
ULONG
uint32_t ULONG
Definition: typedefs.h:59
STATUS_UNSUCCESSFUL
#define STATUS_UNSUCCESSFUL
Definition: udferr_usr.h:132
STATUS_OBJECT_NAME_NOT_FOUND
#define STATUS_OBJECT_NAME_NOT_FOUND
Definition: udferr_usr.h:149
CreateOptions
_Must_inspect_result_ _In_opt_ WDFKEY _In_ PCUNICODE_STRING _In_ ACCESS_MASK _In_ ULONG CreateOptions
Definition: wdfregistry.h:118

Referenced by registry_callback().

◆ CreateRegistryFile()

NTSTATUS CreateRegistryFile ( IN PUNICODE_STRING  NtSystemRoot,
IN PCWSTR  RegistryKey,
IN BOOLEAN  IsHiveNew,
IN HANDLE  ProtoKeyHandle 
)

Definition at line 140 of file regutil.c.

150{
151 /* '.old' is for old valid hives, while '.brk' is for old broken hives */
152 static PCWSTR Extensions[] = {L"old", L"brk"};
153
154 NTSTATUS Status;
155 HANDLE FileHandle;
156 UNICODE_STRING FileName;
157 OBJECT_ATTRIBUTES ObjectAttributes;
158 IO_STATUS_BLOCK IoStatusBlock;
159 PCWSTR Extension;
160 WCHAR PathBuffer[MAX_PATH];
161 WCHAR PathBuffer2[MAX_PATH];
162
163 CombinePaths(PathBuffer, ARRAYSIZE(PathBuffer), 3,
164 NtSystemRoot->Buffer, L"System32\\config", RegistryKey);
165
166 Extension = Extensions[IsHiveNew ? 0 : 1];
167
168 //
169 // FIXME: The best, actually, would be to rename (move) the existing
170 // System32\config\RegistryKey file to System32\config\RegistryKey.old,
171 // and if it already existed some System32\config\RegistryKey.old, we should
172 // first rename this one into System32\config\RegistryKey_N.old before
173 // performing the original rename.
174 //
175
176 /* Check whether the registry hive file already existed, and if so, rename it */
177 if (DoesFileExist(NULL, PathBuffer))
178 {
179 // UINT i;
180
181 DPRINT1("Registry hive '%S' already exists, rename it\n", PathBuffer);
182
183 // i = 1;
184 /* Try first by just appending the '.old' extension */
185 RtlStringCchPrintfW(PathBuffer2, ARRAYSIZE(PathBuffer2),
186 L"%s.%s", PathBuffer, Extension);
187#if 0
188 while (DoesFileExist(NULL, PathBuffer2))
189 {
190 /* An old file already exists, increments its index, but not too much */
191 if (i <= 0xFFFF)
192 {
193 /* Append '_N.old' extension */
194 RtlStringCchPrintfW(PathBuffer2, ARRAYSIZE(PathBuffer2),
195 L"%s_%lu.%s", PathBuffer, i, Extension);
196 ++i;
197 }
198 else
199 {
200 /*
201 * Too many old files exist, we will rename the file
202 * using the name of the oldest one.
203 */
204 RtlStringCchPrintfW(PathBuffer2, ARRAYSIZE(PathBuffer2),
205 L"%s.%s", PathBuffer, Extension);
206 break;
207 }
208 }
209#endif
210
211 /* Now rename the file (force the move) */
212 Status = SetupMoveFile(PathBuffer, PathBuffer2, MOVEFILE_REPLACE_EXISTING);
213 }
214
215 /* Create the file */
216 RtlInitUnicodeString(&FileName, PathBuffer);
217 InitializeObjectAttributes(&ObjectAttributes,
218 &FileName,
219 OBJ_CASE_INSENSITIVE,
220 NULL, // Could have been NtSystemRoot, etc...
221 NULL); // Descriptor
222
223 Status = NtCreateFile(&FileHandle,
224 FILE_GENERIC_WRITE,
225 &ObjectAttributes,
226 &IoStatusBlock,
227 NULL,
228 FILE_ATTRIBUTE_NORMAL,
229 0,
230 FILE_OVERWRITE_IF,
231 FILE_SYNCHRONOUS_IO_NONALERT | FILE_NON_DIRECTORY_FILE,
232 NULL,
233 0);
234 if (!NT_SUCCESS(Status))
235 {
236 DPRINT1("NtCreateFile(%wZ) failed, Status 0x%08lx\n", &FileName, Status);
237 return Status;
238 }
239
240 /* Save the selected hive into the file */
241 Status = NtSaveKeyEx(ProtoKeyHandle, FileHandle, REG_LATEST_FORMAT);
242 if (!NT_SUCCESS(Status))
243 {
244 DPRINT1("NtSaveKeyEx(%wZ) failed, Status 0x%08lx\n", &FileName, Status);
245 }
246
247 /* Close the file and return */
248 NtClose(FileHandle);
249 return Status;
250}
FILE_NON_DIRECTORY_FILE
#define FILE_NON_DIRECTORY_FILE
Definition: constants.h:492
FILE_ATTRIBUTE_NORMAL
#define FILE_ATTRIBUTE_NORMAL
Definition: compat.h:137
SetupMoveFile
NTSTATUS SetupMoveFile(IN PCWSTR ExistingFileName, IN PCWSTR NewFileName, IN ULONG Flags)
Definition: filesup.c:480
MOVEFILE_REPLACE_EXISTING
#define MOVEFILE_REPLACE_EXISTING
Definition: filesup.h:28
DoesFileExist
#define DoesFileExist(RootDirectory, FileName)
Definition: filesup.h:77
Extension
_Inout_opt_ PUNICODE_STRING Extension
Definition: fltkernel.h:1092
FileHandle
_Must_inspect_result_ _In_opt_ PFLT_INSTANCE _Out_ PHANDLE FileHandle
Definition: fltkernel.h:1231
FILE_OVERWRITE_IF
#define FILE_OVERWRITE_IF
Definition: from_kernel.h:58
FILE_SYNCHRONOUS_IO_NONALERT
#define FILE_SYNCHRONOUS_IO_NONALERT
Definition: from_kernel.h:31
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
IoStatusBlock
static OUT PIO_STATUS_BLOCK IoStatusBlock
Definition: pipe.c:75
NtCreateFile
NTSTATUS NTAPI NtCreateFile(OUT PHANDLE FileHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK IoStatusBlock, IN PLARGE_INTEGER AllocationSize OPTIONAL, IN ULONG FileAttributes, IN ULONG ShareAccess, IN ULONG CreateDisposition, IN ULONG CreateOptions, IN PVOID EaBuffer OPTIONAL, IN ULONG EaLength)
FILE_GENERIC_WRITE
#define FILE_GENERIC_WRITE
Definition: nt_native.h:660
NtSaveKeyEx
NTSTATUS NTAPI NtSaveKeyEx(IN HANDLE KeyHandle, IN HANDLE FileHandle, IN ULONG Flags)
Definition: ntapi.c:1643
RtlStringCchPrintfW
NTSTRSAFEVAPI RtlStringCchPrintfW(_Out_writes_(cchDest) _Always_(_Post_z_) NTSTRSAFE_PWSTR pszDest, _In_ size_t cchDest, _In_ _Printf_format_string_ NTSTRSAFE_PCWSTR pszFormat,...)
Definition: ntstrsafe.h:1110
_IO_STATUS_BLOCK
Definition: env_spec_w32.h:870
PCWSTR
const uint16_t * PCWSTR
Definition: typedefs.h:57
REG_LATEST_FORMAT
#define REG_LATEST_FORMAT
Definition: cmtypes.h:98

Referenced by RegInitializeRegistry().

◆ CreateSymLinkKey()

NTSTATUS CreateSymLinkKey ( IN HANDLE RootKey  OPTIONAL,
IN PCWSTR  LinkKeyName,
IN PCWSTR  TargetKeyName 
)

Definition at line 254 of file regutil.c.

258{
259 NTSTATUS Status;
260 OBJECT_ATTRIBUTES ObjectAttributes;
261 UNICODE_STRING KeyName;
262 HANDLE LinkKeyHandle;
263 ULONG Disposition;
264
265 /* Initialize the object attributes */
266 RtlInitUnicodeString(&KeyName, LinkKeyName);
267 InitializeObjectAttributes(&ObjectAttributes,
268 &KeyName,
269 OBJ_CASE_INSENSITIVE,
270 RootKey,
271 NULL);
272
273 /* Create the link key */
274 Status = NtCreateKey(&LinkKeyHandle,
275 KEY_SET_VALUE | KEY_CREATE_LINK,
276 &ObjectAttributes,
277 0,
278 NULL,
279 REG_OPTION_VOLATILE | REG_OPTION_CREATE_LINK,
280 &Disposition);
281 if (!NT_SUCCESS(Status))
282 {
283 DPRINT1("CreateSymLinkKey: couldn't create '%S', Status = 0x%08lx\n",
284 LinkKeyName, Status);
285 return Status;
286 }
287
288 /* Check if the new key was actually created */
289 if (Disposition != REG_CREATED_NEW_KEY)
290 {
291 DPRINT1("CreateSymLinkKey: %S already exists!\n", LinkKeyName);
292 NtClose(LinkKeyHandle);
293 return STATUS_OBJECT_NAME_EXISTS; // STATUS_OBJECT_NAME_COLLISION;
294 }
295
296 /* Set the target key name as link target */
297 RtlInitUnicodeString(&KeyName, TargetKeyName);
298 Status = NtSetValueKey(LinkKeyHandle,
299 &SymbolicLinkValueName,
300 0,
301 REG_LINK,
302 KeyName.Buffer,
303 KeyName.Length);
304
305 /* Close the link key handle */
306 NtClose(LinkKeyHandle);
307
308 if (!NT_SUCCESS(Status))
309 {
310 DPRINT1("CreateSymLinkKey: couldn't create symbolic link '%S' for '%S', Status = 0x%08lx\n",
311 LinkKeyName, TargetKeyName, Status);
312 }
313
314 return Status;
315}
NtSetValueKey
NTSYSAPI NTSTATUS NTAPI NtSetValueKey(IN HANDLE KeyHandle, IN PUNICODE_STRING ValueName, IN ULONG TitleIndex OPTIONAL, IN ULONG Type, IN PVOID Data, IN ULONG DataSize)
Definition: ntapi.c:859
REG_OPTION_CREATE_LINK
#define REG_OPTION_CREATE_LINK
Definition: nt_native.h:1063
REG_CREATED_NEW_KEY
#define REG_CREATED_NEW_KEY
Definition: nt_native.h:1084
REG_LINK
#define REG_LINK
Definition: nt_native.h:1500
KEY_CREATE_LINK
#define KEY_CREATE_LINK
Definition: nt_native.h:1021
REG_OPTION_VOLATILE
#define REG_OPTION_VOLATILE
Definition: nt_native.h:1060
KEY_SET_VALUE
#define KEY_SET_VALUE
Definition: nt_native.h:1017
STATUS_OBJECT_NAME_EXISTS
#define STATUS_OBJECT_NAME_EXISTS
Definition: ntstatus.h:114
SymbolicLinkValueName
static UNICODE_STRING SymbolicLinkValueName
Definition: regutil.c:21

Referenced by RegInitializeRegistry().

◆ DeleteSymLinkKey()

NTSTATUS DeleteSymLinkKey ( IN HANDLE RootKey  OPTIONAL,
IN PCWSTR  LinkKeyName 
)

Definition at line 318 of file regutil.c.

321{
322 NTSTATUS Status;
323 OBJECT_ATTRIBUTES ObjectAttributes;
324 UNICODE_STRING KeyName;
325 HANDLE LinkKeyHandle;
326 // ULONG Disposition;
327
328 /* Initialize the object attributes */
329 RtlInitUnicodeString(&KeyName, LinkKeyName);
330 InitializeObjectAttributes(&ObjectAttributes,
331 &KeyName,
332 /* Open the symlink key itself if it exists, and not its target */
333 OBJ_CASE_INSENSITIVE | OBJ_OPENIF | OBJ_OPENLINK,
334 RootKey,
335 NULL);
336
337 /*
338 * Note: We could use here NtOpenKey() but it does not allow to pass
339 * opening options. NtOpenKeyEx() could do it but is Windows 7+.
340 * So we use the good old NtCreateKey() that can open the key.
341 */
342#if 0
343 Status = NtCreateKey(&LinkKeyHandle,
344 DELETE | KEY_SET_VALUE | KEY_CREATE_LINK,
345 &ObjectAttributes,
346 0,
347 NULL,
348 /*REG_OPTION_VOLATILE |*/ REG_OPTION_OPEN_LINK,
349 &Disposition);
350#else
351 Status = NtOpenKey(&LinkKeyHandle,
352 DELETE | KEY_SET_VALUE | KEY_CREATE_LINK,
353 &ObjectAttributes);
354#endif
355 if (!NT_SUCCESS(Status))
356 {
357 DPRINT1("NtOpenKey(%wZ) failed (Status %lx)\n", &KeyName, Status);
358 return Status;
359 }
360
361 /*
362 * Delete the special "SymbolicLinkValue" value.
363 * This is technically not needed since we are going to remove
364 * the key anyways, but it is good practice to do it.
365 */
366 Status = NtDeleteValueKey(LinkKeyHandle, &SymbolicLinkValueName);
367 if (!NT_SUCCESS(Status))
368 {
369 DPRINT1("NtDeleteValueKey(%wZ) failed (Status %lx)\n", &KeyName, Status);
370 NtClose(LinkKeyHandle);
371 return Status;
372 }
373
374 /* Finally delete the key itself and close the link key handle */
375 Status = NtDeleteKey(LinkKeyHandle);
376 NtClose(LinkKeyHandle);
377
378 if (!NT_SUCCESS(Status))
379 {
380 DPRINT1("DeleteSymLinkKey: couldn't delete symbolic link '%S', Status = 0x%08lx\n",
381 LinkKeyName, Status);
382 }
383
384 return Status;
385}
OBJ_OPENIF
#define OBJ_OPENIF
Definition: winternl.h:229
OBJ_OPENLINK
#define OBJ_OPENLINK
Definition: winternl.h:230
NtOpenKey
NTSYSAPI NTSTATUS NTAPI NtOpenKey(OUT PHANDLE KeyHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes)
Definition: ntapi.c:336
REG_OPTION_OPEN_LINK
#define REG_OPTION_OPEN_LINK
Definition: nt_native.h:1070
NtDeleteValueKey
NTSYSAPI NTSTATUS NTAPI NtDeleteValueKey(IN HANDLE KeyHandle, IN PUNICODE_STRING ValueName)
Definition: ntapi.c:1014
DELETE
#define DELETE
Definition: nt_native.h:57
NtDeleteKey
NTSTATUS NTAPI NtDeleteKey(IN HANDLE KeyHandle)
Definition: ntapi.c:408

Referenced by RegCleanupRegistry().

◆ DisconnectRegistry()

NTSTATUS DisconnectRegistry ( IN HANDLE RootKey  OPTIONAL,
IN PCWSTR  RegMountPoint,
IN ULONG  Flags 
)

Definition at line 432 of file regutil.c.

436{
437 UNICODE_STRING KeyName;
438 OBJECT_ATTRIBUTES ObjectAttributes;
439
440 RtlInitUnicodeString(&KeyName, RegMountPoint);
441 InitializeObjectAttributes(&ObjectAttributes,
442 &KeyName,
443 OBJ_CASE_INSENSITIVE,
444 RootKey,
445 NULL);
446
447 // NOTE: NtUnloadKey == NtUnloadKey2 with Flags == 0.
448 return NtUnloadKey2(&ObjectAttributes, Flags);
449}
NtUnloadKey2
NTSTATUS NTAPI NtUnloadKey2(IN POBJECT_ATTRIBUTES TargetKey, IN ULONG Flags)
Definition: ntapi.c:1796
Flags
_Must_inspect_result_ _In_ ULONG Flags
Definition: wsk.h:170

Referenced by RegCleanupRegistry(), and VerifyRegistryHive().

◆ VerifyRegistryHive()

NTSTATUS VerifyRegistryHive ( IN PUNICODE_STRING  NtSystemRoot,
IN PCWSTR  RegistryKey 
)

Definition at line 455 of file regutil.c.

461{
462 NTSTATUS Status;
463
464 /* Try to mount the specified registry hive */
465 Status = ConnectRegistry(NULL,
466 L"\\Registry\\Machine\\USetup_VerifyHive",
467 NtSystemRoot,
468 RegistryKey
469 /* NULL, 0 */);
470 if (!NT_SUCCESS(Status))
471 {
472 DPRINT1("ConnectRegistry(%S) failed, Status 0x%08lx\n", RegistryKey, Status);
473 }
474
475 DPRINT1("VerifyRegistryHive: ConnectRegistry(%S) returns Status 0x%08lx\n", RegistryKey, Status);
476
477 //
478 // TODO: Check the Status error codes: STATUS_SUCCESS, STATUS_REGISTRY_RECOVERED,
479 // STATUS_REGISTRY_HIVE_RECOVERED, STATUS_REGISTRY_CORRUPT, STATUS_REGISTRY_IO_FAILED,
480 // STATUS_NOT_REGISTRY_FILE, STATUS_CANNOT_LOAD_REGISTRY_FILE ;
481 //(STATUS_HIVE_UNLOADED) ; STATUS_SYSTEM_HIVE_TOO_LARGE
482 //
483
484 if (Status == STATUS_REGISTRY_HIVE_RECOVERED) // NT_SUCCESS is still FALSE in this case!
485 DPRINT1("VerifyRegistryHive: Registry hive %S was recovered but some data may be lost (Status 0x%08lx)\n", RegistryKey, Status);
486
487 if (!NT_SUCCESS(Status))
488 {
489 DPRINT1("VerifyRegistryHive: Registry hive %S is corrupted (Status 0x%08lx)\n", RegistryKey, Status);
490 return Status;
491 }
492
493 if (Status == STATUS_REGISTRY_RECOVERED)
494 DPRINT1("VerifyRegistryHive: Registry hive %S succeeded recovered (Status 0x%08lx)\n", RegistryKey, Status);
495
496 /* Unmount the hive */
497 Status = DisconnectRegistry(NULL,
498 L"\\Registry\\Machine\\USetup_VerifyHive",
499 0);
500 if (!NT_SUCCESS(Status))
501 {
502 DPRINT1("DisconnectRegistry(%S) failed, Status 0x%08lx\n", RegistryKey, Status);
503 }
504
505 return Status;
506}
STATUS_REGISTRY_RECOVERED
#define STATUS_REGISTRY_RECOVERED
Definition: ntstatus.h:123
STATUS_REGISTRY_HIVE_RECOVERED
#define STATUS_REGISTRY_HIVE_RECOVERED
Definition: ntstatus.h:221
DisconnectRegistry
NTSTATUS DisconnectRegistry(IN HANDLE RootKey OPTIONAL, IN PCWSTR RegMountPoint, IN ULONG Flags)
Definition: regutil.c:432
ConnectRegistry
NTSTATUS ConnectRegistry(IN HANDLE RootKey OPTIONAL, IN PCWSTR RegMountPoint, IN PUNICODE_STRING NtSystemRoot, IN PCWSTR RegistryKey)
Definition: regutil.c:391

Referenced by VerifyRegistryHives().

Variable Documentation

◆ SymbolicLinkValueName

UNICODE_STRING SymbolicLinkValueName
static
Initial value:
=
RTL_CONSTANT_STRING(L"SymbolicLinkValue")
RTL_CONSTANT_STRING
#define RTL_CONSTANT_STRING(s)
Definition: tunneltest.c:14

Definition at line 21 of file regutil.c.

Referenced by CreateSymLinkKey(), and DeleteSymLinkKey().