#include <freeldr.h>#include <cmlib.h>#include "registry.h"#include <internal/cmboot.h>#include <debug.h>
Include dependency graph for registry.c:
Go to the source code of this file.
Macros | |
| #define | HCI_TO_HKEY(CellIndex) ((HKEY)(ULONG_PTR)(CellIndex)) |
| #define | GET_HHIVE(CmHive) (&((CmHive)->Hive)) |
| #define | GET_HHIVE_FROM_HKEY(hKey) GET_HHIVE(CmSystemHive) |
| #define | GET_CM_KEY_NODE(hHive, hKey) ((PCM_KEY_NODE)HvGetCell(hHive, HKEY_TO_HCI(hKey))) |
| #define | GET_HBASE_BLOCK(ChunkBase) ((PHBASE_BLOCK)ChunkBase) |
Functions | |
| DBG_DEFAULT_CHANNEL (REGISTRY) | |
| PVOID NTAPI | CmpAllocate (IN SIZE_T Size, IN BOOLEAN Paged, IN ULONG Tag) |
| VOID NTAPI | CmpFree (IN PVOID Ptr, IN ULONG Quota) |
| static BOOLEAN | RegInitializeHive (_In_ PCMHIVE CmHive, _In_ PVOID ChunkBase, _In_ BOOLEAN LoadAlternate) |
| Initializes a flat hive descriptor for the hive and validates the registry hive. Volatile data is purged during this procedure for initialization. | |
| static BOOLEAN | RegLoadHiveLog (_In_ PCSTR DirectoryPath, _In_ ULONG LogFileOffset, _In_ PCSTR LogName, _Out_ PVOID *LogData) |
| Loads and reads a hive log at specified file offset. | |
| static BOOLEAN | RegRecoverHeaderHive (_Inout_ PVOID ChunkBase, _In_ PCSTR DirectoryPath, _In_ PCSTR LogName) |
| Recovers the header base block of a flat registry hive. | |
| static BOOLEAN | RegRecoverDataHive (_Inout_ PVOID ChunkBase, _In_ PCSTR DirectoryPath, _In_ PCSTR LogName) |
| Recovers the corrupt data of a primary flat registry hive. | |
| BOOLEAN | RegImportBinaryHive (_In_ PVOID ChunkBase, _In_ ULONG ChunkSize, _In_ PCSTR SearchPath, _In_ BOOLEAN LoadAlternate) |
| Imports the SYSTEM binary hive from the registry base chunk that's been provided by the loader block. | |
| BOOLEAN | RegInitCurrentControlSet (_In_ BOOLEAN LastKnownGood) |
| static BOOLEAN | GetNextPathElement (_Out_ PUNICODE_STRING NextElement, _Inout_ PUNICODE_STRING RemainingPath) |
| LONG | RegOpenKey (_In_ HKEY ParentKey, _In_z_ PCWSTR KeyName, _Out_ PHKEY Key) |
| static VOID | RepGetValueData (_In_ PHHIVE Hive, _In_ PCM_KEY_VALUE ValueCell, _Out_opt_ PULONG Type, _Out_opt_ PUCHAR Data, _Inout_opt_ PULONG DataSize) |
| LONG | RegQueryValue (_In_ HKEY Key, _In_z_ PCWSTR ValueName, _Out_opt_ PULONG Type, _Out_opt_ PUCHAR Data, _Inout_opt_ PULONG DataSize) |
Variables | |
| static PCMHIVE | CmSystemHive |
| static HCELL_INDEX | SystemRootCell |
| PHHIVE | SystemHive = NULL |
| HKEY | CurrentControlSetKey = NULL |
Macro Definition Documentation
◆ GET_CM_KEY_NODE
| #define GET_CM_KEY_NODE | ( | hHive, | |
| hKey | |||
| ) | ((PCM_KEY_NODE)HvGetCell(hHive, HKEY_TO_HCI(hKey))) |
Definition at line 43 of file registry.c.
◆ GET_HBASE_BLOCK
| #define GET_HBASE_BLOCK | ( | ChunkBase | ) | ((PHBASE_BLOCK)ChunkBase) |
Definition at line 45 of file registry.c.
◆ GET_HHIVE
| #define GET_HHIVE | ( | CmHive | ) | (&((CmHive)->Hive)) |
Definition at line 41 of file registry.c.
◆ GET_HHIVE_FROM_HKEY
| #define GET_HHIVE_FROM_HKEY | ( | hKey | ) | GET_HHIVE(CmSystemHive) |
Definition at line 42 of file registry.c.
◆ HCI_TO_HKEY
Definition at line 36 of file registry.c.
Function Documentation
◆ CmpAllocate()
Definition at line 49 of file registry.c.
53{
54 UNREFERENCED_PARAMETER(Paged);
56}
_Must_inspect_result_ _In_ WDFDEVICE _In_ PWDF_DEVICE_PROPERTY_DATA _In_ DEVPROPTYPE _In_ ULONG Size
Definition: wdfdevice.h:4533
Referenced by RegInitializeHive().
◆ CmpFree()
Definition at line 60 of file registry.c.
Referenced by RegInitializeHive().
◆ DBG_DEFAULT_CHANNEL()
| DBG_DEFAULT_CHANNEL | ( | REGISTRY | ) |
◆ GetNextPathElement()
|
static |
Definition at line 541 of file registry.c.
544{
545 /* Check if there are any characters left */
547 {
548 /* Nothing left, bail out early */
550 }
551
552 /* The next path elements starts with the remaining path */
553 NextElement->Buffer = RemainingPath->Buffer;
554
555 /* Loop until the path element ends */
557 (RemainingPath->Buffer[0] != '\\'))
558 {
559 /* Skip this character */
560 RemainingPath->Buffer++;
562 }
563
565 NextElement->MaximumLength = NextElement->Length;
566
567 /* Check if the path element ended with a path separator */
569 {
570 /* Skip the path separator */
572 RemainingPath->Buffer++;
574 }
575
576 /* Return whether we got any characters */
578}
Referenced by RegOpenKey().
◆ RegImportBinaryHive()
| BOOLEAN RegImportBinaryHive | ( | _In_ PVOID | ChunkBase, |
| _In_ ULONG | ChunkSize, | ||
| _In_ PCSTR | SearchPath, | ||
| _In_ BOOLEAN | LoadAlternate | ||
| ) |
Imports the SYSTEM binary hive from the registry base chunk that's been provided by the loader block.
- Parameters
-
[in] ChunkBase A pointer to the registry base chunk that serves for SYSTEM hive initialization. [in] ChunkSize The size of the registry base chunk. This parameter refers to the actual size of the SYSTEM hive. This parameter is currently unused. [in] LoadAlternate If set to TRUE, the function will initialize the hive as an alternate hive, otherwise FALSE to initialize it as primary.
- Returns
- Returns TRUE if hive importing and initialization have succeeded, FALSE otherwise.
Definition at line 436 of file registry.c.
441{
443 PCM_KEY_NODE KeyNode;
444
446
447 /* Assume that we don't need boot recover, unless we have to */
449
450 /* Allocate and initialize the hive */
454 {
455 /* Free the buffer and retry again */
458
460 {
463 }
464
466 {
469 }
470
471 /* Now retry initializing the hive again */
475 {
479 }
480
481 /*
482 * Acknowledge the kernel we recovered the SYSTEM hive
483 * on our side by applying log data.
484 */
486 }
487
488 /* Save the root key node */
492
493 /* Verify it is accessible */
495 ASSERT(KeyNode);
498
500}
static BOOLEAN RegRecoverHeaderHive(_Inout_ PVOID ChunkBase, _In_ PCSTR DirectoryPath, _In_ PCSTR LogName)
Recovers the header base block of a flat registry hive.
Definition: registry.c:277
static BOOLEAN RegInitializeHive(_In_ PCMHIVE CmHive, _In_ PVOID ChunkBase, _In_ BOOLEAN LoadAlternate)
Initializes a flat hive descriptor for the hive and validates the registry hive. Volatile data is pur...
Definition: registry.c:96
static BOOLEAN RegRecoverDataHive(_Inout_ PVOID ChunkBase, _In_ PCSTR DirectoryPath, _In_ PCSTR LogName)
Recovers the corrupt data of a primary flat registry hive.
Definition: registry.c:350
struct _CM_KEY_NODE * PCM_KEY_NODE
struct _HBASE_BLOCK * PHBASE_BLOCK
Definition: cmlib.h:316
Definition: cmdata.h:91
Referenced by WinLdrInitSystemHive().
◆ RegInitCurrentControlSet()
Definition at line 503 of file registry.c.
505{
506 UNICODE_STRING ControlSetName;
507 HCELL_INDEX ControlCell;
508 PCM_KEY_NODE KeyNode;
509 BOOLEAN AutoSelect;
510
512
513 /* Choose which control set to open and set it as the new "Current" */
514 RtlInitUnicodeString(&ControlSetName,
517
519 SystemRootCell,
520 &ControlSetName,
521 &AutoSelect);
523 {
526 }
527
529
530 /* Verify it is accessible */
532 ASSERT(KeyNode);
535
537}
HCELL_INDEX NTAPI CmpFindControlSet(_In_ PHHIVE SystemHive, _In_ HCELL_INDEX RootCell, _In_ PCUNICODE_STRING SelectKeyName, _Out_ PBOOLEAN AutoSelect)
Finds the corresponding "HKLM\SYSTEM\ControlSetXXX" system control set registry key,...
Definition: cmboot.c:84
NTSYSAPI VOID NTAPI RtlInitUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)
Definition: env_spec_w32.h:368
Referenced by WinLdrInitSystemHive().
◆ RegInitializeHive()
|
static |
Initializes a flat hive descriptor for the hive and validates the registry hive. Volatile data is purged during this procedure for initialization.
- Parameters
-
[in] CmHive A pointer to a CM (in-memory) hive descriptor containing the hive descriptor to be initialized. [in] ChunkBase An arbitrary pointer that points to the registry chunk base. This pointer serves as the base block containing the hive file header data. [in] LoadAlternate If set to TRUE, the function will initialize the hive as an alternate hive, otherwise FALSE to initialize it as primary.
- Returns
- Returns TRUE if the hive has been initialized and registry data inside the hive is valid, FALSE otherwise.
Definition at line 96 of file registry.c.
100{
102 CM_CHECK_REGISTRY_STATUS CmStatusCode;
103
104 /* Initialize the hive */
107 0,
109 ChunkBase,
110 CmpAllocate,
111 CmpFree,
112 NULL,
113 NULL,
114 NULL,
115 NULL,
116 1,
117 NULL);
119 {
122 }
123
124 /* Now check the hive and purge volatile data */
125 CmStatusCode = CmCheckRegistry(CmHive, CM_CHECK_REGISTRY_BOOTLOADER_PURGE_VOLATILES | CM_CHECK_REGISTRY_VALIDATE_HIVE);
127 {
128 ERR("CmCheckRegistry detected problems with the loaded flat hive (check code %lu)\n", CmStatusCode);
130 }
131
133}
PVOID NTAPI CmpAllocate(IN SIZE_T Size, IN BOOLEAN Paged, IN ULONG Tag)
Definition: registry.c:49
CM_CHECK_REGISTRY_STATUS NTAPI CmCheckRegistry(_In_ PCMHIVE RegistryHive, _In_ ULONG Flags)
Checks the registry that is consistent and its contents valid and not corrupted. More specifically th...
Definition: cmcheck.c:1634
NTSTATUS CMAPI HvInitialize(PHHIVE RegistryHive, ULONG OperationType, ULONG HiveFlags, ULONG FileType, PVOID HiveData OPTIONAL, PALLOCATE_ROUTINE Allocate, PFREE_ROUTINE Free, PFILE_SET_SIZE_ROUTINE FileSetSize, PFILE_WRITE_ROUTINE FileWrite, PFILE_READ_ROUTINE FileRead, PFILE_FLUSH_ROUTINE FileFlush, ULONG Cluster OPTIONAL, PCUNICODE_STRING FileName OPTIONAL)
#define CM_CHECK_REGISTRY_BOOTLOADER_PURGE_VOLATILES
Definition: cmlib.h:230
Referenced by RegImportBinaryHive().
◆ RegLoadHiveLog()
|
static |
Loads and reads a hive log at specified file offset.
- Parameters
-
[in] DirectoryPath A pointer to a string that denotes the directory path of the hives and logs location. [in] LogFileOffset The file offset of which this function uses to seek at specific position during read. [in] LogName A pointer to a string that denotes the name of the desired hive log (e.g. "SYSTEM"). [out] LogData A pointer to the returned hive log data that was read. The following data varies depending on the specified offset set up by the caller, that is used to where to start reading from the hive log.
- Returns
- Returns TRUE if the hive log was loaded and read successfully, FALSE otherwise.
- Remarks
- The returned log data pointer to the caller is a virtual address. You must use VaToPa that converts the address to a physical one in order to actually use it!
Definition at line 170 of file registry.c.
175{
177 ULONG LogId;
179 ULONG LogFileSize;
183 PVOID LogDataVirtual;
184 PVOID LogDataPhysical;
185
186 /* Build the full path to the hive log */
189
190 /* Open the file */
193 {
196 }
197
198 /* Get the file length */
201 {
203 ArcClose(LogId);
205 }
206
207 /* Capture the size of the hive log file */
208 LogFileSize = FileInfo.EndingAddress.LowPart;
209 if (LogFileSize == 0)
210 {
212 ArcClose(LogId);
214 }
215
216 /* Allocate memory blocks for our log data */
217 LogDataPhysical = MmAllocateMemoryWithType(
218 MM_SIZE_TO_PAGES(LogFileSize + MM_PAGE_SIZE - 1) << MM_PAGE_SHIFT,
219 LoaderRegistryData);
221 {
223 ArcClose(LogId);
225 }
226
227 /* Convert the address to virtual so that it can be useable */
228 LogDataVirtual = PaToVa(LogDataPhysical);
229
230 /* Seek within the log file at desired position */
231 Position.QuadPart = LogFileOffset;
234 {
236 ArcClose(LogId);
238 }
239
240 /* And read the actual data from the log */
243 {
245 ArcClose(LogId);
247 }
248
249 *LogData = LogDataVirtual;
250 ArcClose(LogId);
252}
ARC_STATUS ArcGetFileInformation(ULONG FileId, FILEINFORMATION *Information)
Definition: fs.c:462
ARC_STATUS ArcSeek(ULONG FileId, LARGE_INTEGER *Position, SEEKMODE SeekMode)
Definition: fs.c:455
PVOID MmAllocateMemoryWithType(SIZE_T MemorySize, TYPE_OF_MEMORY MemoryType)
Definition: mm.c:31
Definition: nsiface.idl:2307
NTSTRSAFEAPI RtlStringCbCatA(_Inout_updates_bytes_(cbDest) _Always_(_Post_z_) NTSTRSAFE_PSTR pszDest, _In_ size_t cbDest, _In_ NTSTRSAFE_PCSTR pszSrc)
Definition: ntstrsafe.h:625
NTSTRSAFEAPI RtlStringCbCopyA(_Out_writes_bytes_(cbDest) _Always_(_Post_z_) NTSTRSAFE_PSTR pszDest, _In_ size_t cbDest, _In_ NTSTRSAFE_PCSTR pszSrc)
Definition: ntstrsafe.h:156
Definition: DriveVolume.h:53
Definition: arc.h:573
Definition: typedefs.h:103
_Must_inspect_result_ _In_ WDFIOTARGET _In_opt_ WDFREQUEST _In_opt_ PWDF_MEMORY_DESCRIPTOR _In_opt_ PLONGLONG _In_opt_ PWDF_REQUEST_SEND_OPTIONS _Out_opt_ PULONG_PTR BytesRead
Definition: wdfiotarget.h:870
Referenced by RegRecoverDataHive(), and RegRecoverHeaderHive().
◆ RegOpenKey()
Definition at line 654 of file registry.c.
658{
662 PCM_KEY_NODE KeyNode;
663 HCELL_INDEX CellIndex;
664
666
667 /* Initialize the remaining path name */
669
670 /* Check if we have a parent key */
672 {
673 UNICODE_STRING SubKeyName1, SubKeyName2, SubKeyName3;
677
679
682 {
683 /* The key path is not absolute */
686 }
687
688 /* Skip initial path separator */
689 RemainingPath.Buffer++;
691
692 /* Get the first 3 path elements */
693 GetNextPathElement(&SubKeyName1, &RemainingPath);
694 GetNextPathElement(&SubKeyName2, &RemainingPath);
695 GetNextPathElement(&SubKeyName3, &RemainingPath);
697
698 /* Check if we have the correct path */
702 {
703 /* The key path is not inside HKLM\Machine\System */
706 }
707
708 /* Use the root key */
709 CellIndex = SystemRootCell;
710 }
711 else
712 {
713 /* Use the parent key */
715 }
716
717 /* Check if this is the root key */
719 {
720 UNICODE_STRING TempPath = RemainingPath;
721
722 /* Get the first path element */
724
725 /* Check if this is CurrentControlSet */
727 {
728 /* Use the CurrentControlSetKey and update the remaining path */
730 RemainingPath = TempPath;
731 }
732 }
733
734 /* Get the key node */
736 ASSERT(KeyNode);
738
740
741 /* Loop while there are path elements */
743 {
744 HCELL_INDEX NextCellIndex;
745
747
748 /* Get the next sub key */
750 HvReleaseCell(Hive, CellIndex);
751 CellIndex = NextCellIndex;
753 {
756 }
757
758 /* Get the found key */
760 ASSERT(KeyNode);
762 }
763
764 HvReleaseCell(Hive, CellIndex);
766
768}
static BOOLEAN GetNextPathElement(_Out_ PUNICODE_STRING NextElement, _Inout_ PUNICODE_STRING RemainingPath)
Definition: registry.c:541
HCELL_INDEX NTAPI CmpFindSubKeyByName(IN PHHIVE Hive, IN PCM_KEY_NODE Parent, IN PCUNICODE_STRING SearchName)
Definition: cmindex.c:683
_Must_inspect_result_ _Out_ PNDIS_STATUS _In_ NDIS_HANDLE _In_ PNDIS_STRING SubKeyName
Definition: ndis.h:4725
NTSYSAPI BOOLEAN NTAPI RtlEqualUnicodeString(PUNICODE_STRING String1, PUNICODE_STRING String2, BOOLEAN CaseInSensitive)
Definition: find_test.cpp:52
Definition: hivedata.h:311
_Must_inspect_result_ _In_ WDFDEVICE _In_ PCUNICODE_STRING KeyName
Definition: wdfdevice.h:2699
_Must_inspect_result_ _In_ PDRIVER_OBJECT _In_ PCUNICODE_STRING RegistryPath
Definition: wdfdriver.h:215
◆ RegQueryValue()
| LONG RegQueryValue | ( | _In_ HKEY | Key, |
| _In_z_ PCWSTR | ValueName, | ||
| _Out_opt_ PULONG | Type, | ||
| _Out_opt_ PUCHAR | Data, | ||
| _Inout_opt_ PULONG | DataSize | ||
| ) |
Definition at line 809 of file registry.c.
815{
817 PCM_KEY_NODE KeyNode;
818 PCM_KEY_VALUE ValueCell;
819 HCELL_INDEX CellIndex;
820 UNICODE_STRING ValueNameString;
821
824
825 /* Get the key node */
827 ASSERT(KeyNode);
829
830 /* Initialize value name string */
832 CellIndex = CmpFindValueByName(Hive, KeyNode, &ValueNameString);
834 {
839 }
841
842 /* Get the value cell */
845
847
848 HvReleaseCell(Hive, CellIndex);
849
851}
struct _CM_KEY_VALUE * PCM_KEY_VALUE
HCELL_INDEX NTAPI CmpFindValueByName(IN PHHIVE Hive, IN PCM_KEY_NODE KeyNode, IN PCUNICODE_STRING Name)
Definition: cmvalue.c:99
_In_ NDIS_STATUS _In_ ULONG _In_ USHORT _In_opt_ PVOID _In_ ULONG DataSize
Definition: ndis.h:4755
static VOID RepGetValueData(IN PHHIVE Hive, IN PCM_KEY_VALUE ValueCell, OUT PULONG Type OPTIONAL, OUT PUCHAR Data OPTIONAL, IN OUT PULONG DataSize OPTIONAL)
Definition: registry.c:824
Definition: sort_test.cpp:77
Definition: cmdata.h:123
_Must_inspect_result_ _In_ WDFKEY _In_ PCUNICODE_STRING ValueName
Definition: wdfregistry.h:243
◆ RegRecoverDataHive()
|
static |
Recovers the corrupt data of a primary flat registry hive.
- Parameters
-
[in] ChunkBase A pointer to the registry hive chunk base of which the damaged hive data is to be replaced with healthy data from the corresponding hive log. [in] DirectoryPath A pointer to a string that denotes the directory path of the hives and logs location. [in] LogName A pointer to a string that denotes the name of the desired hive log (e.g. "SYSTEM").
- Returns
- Returns TRUE if the hive data was successfully recovered, FALSE otherwise.
- Remarks
- Data recovery of the target hive does not always guarantee the primary hive is fully recovered. It could happen a block from a hive log is not marked dirty (pending to be written to disk) that has healthy data therefore the following bad block would still remain in corrupt state in the main primary hive. In such scenarios an alternate hive must be replayed.
Definition at line 350 of file registry.c.
354{
356 ULONG StorageLength;
357 ULONG BlockIndex, LogIndex;
358 PUCHAR BlockPtr, BlockDest;
360 PVOID LogData;
361 PUCHAR LogDataPhysical;
362 PHBASE_BLOCK HiveBaseBlock;
363
364 /* Build the complete path of the hive log */
369 {
372 }
373
374 /* Make sure the dirty vector signature is there otherwise the hive log is corrupt */
377 {
380 }
381
382 /* Copy the dirty data into the primary hive */
383 LogIndex = 0;
384 BlockIndex = 0;
385 HiveBaseBlock = GET_HBASE_BLOCK(ChunkBase);
387 for (; BlockIndex < StorageLength; ++BlockIndex)
388 {
389 /* Skip this block if it's not dirty and go to the next one */
391 {
392 continue;
393 }
394
395 /* Read the dirty block and copy it at right offsets */
399
400 /* Increment the index in log as we continue further */
401 LogIndex++;
402 }
403
404 /* Fix the secondary sequence of the primary hive and compute a new checksum */
408}
static BOOLEAN RegLoadHiveLog(_In_ PCSTR DirectoryPath, _In_ ULONG LogFileOffset, _In_ PCSTR LogName, _Out_ PVOID *LogData)
Loads and reads a hive log at specified file offset.
Definition: registry.c:170
ULONG CMAPI HvpHiveHeaderChecksum(PHBASE_BLOCK HiveHeader)
Definition: hivesum.c:17
Definition: hivedata.h:142
Referenced by RegImportBinaryHive().
◆ RegRecoverHeaderHive()
|
static |
Recovers the header base block of a flat registry hive.
- Parameters
-
[in] ChunkBase A pointer to the registry hive chunk base of which the damaged header block is to be recovered. [in] DirectoryPath A pointer to a string that denotes the directory path of the hives and logs location. [in] LogName A pointer to a string that denotes the name of the desired hive log (e.g. "SYSTEM").
- Returns
- Returns TRUE if the header base block was successfully recovered, FALSE otherwise.
Definition at line 277 of file registry.c.
281{
284 PVOID LogData;
285 PHBASE_BLOCK HiveBaseBlock;
286 PHBASE_BLOCK LogBaseBlock;
287
288 /* Build the complete path of the hive log */
293 {
296 }
297
298 /* Make sure the header from the hive log is actually sane */
299 LogData = VaToPa(LogData);
300 LogBaseBlock = GET_HBASE_BLOCK(LogData);
302 {
305 }
306
307 /* Copy the healthy header base block into the primary hive */
308 HiveBaseBlock = GET_HBASE_BLOCK(ChunkBase);
310 RtlCopyMemory(HiveBaseBlock,
311 LogBaseBlock,
315}
BOOLEAN CMAPI HvpVerifyHiveHeader(_In_ PHBASE_BLOCK BaseBlock, _In_ ULONG FileType)
Validates the base block header of a registry file (hive or log).
Definition: hiveinit.c:49
Referenced by RegImportBinaryHive().
◆ RepGetValueData()
|
static |
Definition at line 772 of file registry.c.
778{
780 PVOID DataCell;
781
782 /* Does the caller want the type? */
784 *Type = ValueCell->Type;
785
786 /* Does the caller provide DataSize? */
788 {
789 // NOTE: CmpValueToData doesn't support big data (the function will
790 // bugcheck if so), FreeLdr is not supposed to read such data.
791 // If big data is needed, use instead CmpGetValueData.
792 // CmpGetValueData(Hive, ValueCell, DataSize, &DataCell, ...);
794
795 /* Does the caller want the data? */
797 {
799 DataCell,
801 }
802
803 /* Return the actual data length */
805 }
806}
_In_ ULONG _In_opt_ WDFREQUEST _In_opt_ PVOID _In_ size_t _In_ PVOID _In_ size_t _Out_ size_t * DataLength
Definition: cdrom.h:1444
PCELL_DATA NTAPI CmpValueToData(IN PHHIVE Hive, IN PCM_KEY_VALUE Value, OUT PULONG Length)
Definition: cmvalue.c:167
Referenced by RegQueryValue(), and RegQueryValueExW().
Variable Documentation
◆ CmSystemHive
|
static |
Definition at line 30 of file registry.c.
Referenced by RegImportBinaryHive(), and RegOpenKey().
◆ CurrentControlSetKey
Definition at line 34 of file registry.c.
Referenced by RegInitCurrentControlSet(), RegOpenKey(), WinLdrDetectVersion(), WinLdrInitErrataInf(), WinLdrScanRegistry(), and WinLdrScanSystemHive().
◆ SystemHive
Definition at line 33 of file registry.c.
Referenced by CmGetSystemControlValues(), CmpFindControlSet(), CmpInitializeSystemHive(), CmpWalkPath(), RegImportBinaryHive(), RegInitCurrentControlSet(), and WinLdrScanRegistry().
◆ SystemRootCell
|
static |
Definition at line 31 of file registry.c.
Referenced by RegImportBinaryHive(), RegInitCurrentControlSet(), and RegOpenKey().
