archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/base/pnp/tools/scrubber/scrubber.c

511 lines
15 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. /*
  2. Note: This program creates the following files in %systemroot%\system32\config:
  4. system.sc0 Backup at start of operations
  5. system.scc Backup if compression is on
  6. system.scb Backup after removing devnodes
  7. system.scn Temporary during replacement of system (should go away)
  8. system Updated system hive (should match system.scb)
  10. Modification History:
  11. 10/3/2000 original version from jasconc
  12. 10/4/2000 put back compression option, version 0.9
  13. 10/10/2000 if compression (no removals), save backup as .scc, else as .sc0
  14. 10/13/2000 Add version check (Win2K only, not NT4, not Whistler, etc.)
  15. 10/20/2000 Return DevicesRemoved to help with diskpart in scripts
  16. */
  18. //#include "scrubber.h"
  19. #include <windows.h>
  20. #include <setupapi.h>
  21. #include <cfgmgr32.h>
  22. #include <stdio.h>
  23. #include <stdlib.h>
  25. #include <initguid.h>
  26. #include <devguid.h>
  27. #include <winioctl.h>
  29. CONST GUID *ClassesToClean[2] = {
  30. &GUID_DEVCLASS_DISKDRIVE,
  31. &GUID_DEVCLASS_VOLUME
  32. };
  34. CONST GUID *DeviceInterfacesToClean[5] = {
  35. &DiskClassGuid,
  36. &PartitionClassGuid,
  37. &WriteOnceDiskClassGuid,
  38. &VolumeClassGuid,
  39. &StoragePortClassGuid
  40. };
  43. void PERR(void);
  45. BOOL
  46. IsUserAdmin(
  47. VOID
  48. )
  50. /*++
  52. Routine Description:
  54. This routine returns TRUE if the caller's process is a
  55. member of the Administrators local group.
  57. Caller is NOT expected to be impersonating anyone and IS
  58. expected to be able to open their own process and process
  59. token.
  61. Arguments:
  63. None.
  65. Return Value:
  67. TRUE - Caller has Administrators local group.
  69. FALSE - Caller does not have Administrators local group.
  71. --*/
  73. {
  74. BOOL b;
  75. SID_IDENTIFIER_AUTHORITY NtAuthority = SECURITY_NT_AUTHORITY;
  76. PSID AdministratorsGroup;
  78. b = AllocateAndInitializeSid(&NtAuthority,
  79. 2,
  80. SECURITY_BUILTIN_DOMAIN_RID,
  81. DOMAIN_ALIAS_RID_ADMINS,
  82. 0,
  83. 0,
  84. 0,
  85. 0,
  86. 0,
  87. 0,
  88. &AdministratorsGroup
  89. );
  91. if (b) {
  93. if (!CheckTokenMembership(NULL,
  94. AdministratorsGroup,
  95. &b
  96. )) {
  97. b = FALSE;
  98. }
  100. FreeSid(AdministratorsGroup);
  101. }
  103. return (b);
  104. }
  106. int
  107. __cdecl
  108. main(
  109. IN int argc,
  110. IN char *argv[]
  111. )
  112. {
  113. HDEVINFO DeviceInfoSet;
  114. HDEVINFO InterfaceDeviceInfoSet;
  115. SP_DEVINFO_DATA DeviceInfoData;
  116. SP_DEVICE_INTERFACE_DATA DeviceInterfaceData;
  117. int DevicesRemoved = 0;
  118. int i, InterfaceIndex;
  119. int MemberIndex, InterfaceMemberIndex;
  120. BOOL bDoRemove = TRUE, bDoCompress = FALSE;
  121. DWORD Status, Problem;
  122. CONFIGRET cr;
  123. TCHAR DeviceInstanceId[MAX_DEVICE_ID_LEN];
  124. TCHAR DirBuff[MAX_PATH], DirBuffX[MAX_PATH], BackupDir[MAX_PATH];
  125. UINT uPathLen;
  126. HKEY hKey;
  127. DWORD dwMessage;
  128. TOKEN_PRIVILEGES tp;
  129. HANDLE hToken;
  130. LUID luid;
  131. LPTSTR MachineName=NULL; // pointer to machine name
  132. DWORD dwSubKeyIndex=0; // index into key
  133. DWORD dwSubKeyLength=_MAX_FNAME; // length of SubKey buffer
  134. OSVERSIONINFO osvi;
  136. //
  137. // enable backup privilege at least
  138. //
  139. printf("SCRUBBER 0.93 Storage Device Node Cleanup\nCopyright (c) 2000 Microsoft Corp. All rights reserved.\n");
  141. //
  142. // parse parameters.
  143. //
  144. for (i = 1; i < argc; i++)
  145. {
  146. //
  147. // Check for help
  148. //
  149. if ( (lstrcmpi(argv[i], TEXT("-?")) == 0) ||
  150. (lstrcmpi(argv[i], TEXT("/?")) == 0) ){
  152. printf("\nSCRUBBER will remove phantom storage device nodes from this machine.\n\n");
  153. printf("Usage: scrubber [/n] [/c]\n");
  154. printf("\twhere /n displays but does not remove the phantom devnodes.\n");
  155. printf("\t and /c will compress the registry hive even if no changes are made.\n");
  156. printf("\nBackup and Restore privileges are required to run this utility.\n");
  157. printf("A copy of the registry will saved in %%systemroot%%\\system32\\config\\system.sc0\n");
  158. return 0;
  159. }
  161. //
  162. // Check for -n which means just list the devices that
  163. // we will remove.
  164. //
  165. if ( (lstrcmpi(argv[i], TEXT("-n")) == 0) ||
  166. (lstrcmpi(argv[i], TEXT("/n")) == 0) ) {
  167. bDoRemove = FALSE;
  168. }
  170. //
  171. // Force compress mode?
  172. //
  173. if ( (lstrcmpi(argv[i], TEXT("-c")) == 0) ||
  174. (lstrcmpi(argv[i], TEXT("/c")) == 0) ){
  175. bDoCompress = TRUE;
  176. }
  177. }
  179. //
  180. // Only run on Windows 2000 (not Whistler, etc.) Initialize the OSVERSIONINFOEX structure.
  181. //
  182. ZeroMemory(&osvi, sizeof(OSVERSIONINFO));
  183. osvi.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);
  184. if (!GetVersionEx(&osvi))
  185. {
  186. fprintf(stderr, "SCRUBBER: Unable to verify Windows version, exiting...\n");
  187. return -1;
  188. }
  189. if ( (osvi.dwMajorVersion != 5) || (osvi.dwMinorVersion != 0) )
  190. {
  191. fprintf(stderr, "SCRUBBER: This utility is only designed to run on Windows 2000\n");
  192. return -1;
  193. }
  195. //
  196. // The process must have admin credentials.
  197. //
  198. if (!IsUserAdmin()) {
  199. fprintf(stderr, "SCRUBBER: You must be an administrator to run this utility.\n");
  200. return -1;
  201. }
  203. //
  204. // see if we can do the task, need backup privelege.
  205. //
  206. if(!OpenProcessToken(GetCurrentProcess(),
  207. TOKEN_ADJUST_PRIVILEGES,
  208. &hToken ))
  209. {
  210. fprintf(stderr, "SCRUBBER: Unable to obtain process token.\nCheck privileges.\n");
  211. return -1;
  212. }
  214. if(!LookupPrivilegeValue(MachineName, SE_BACKUP_NAME, &luid))
  216. {
  217. fprintf(stderr, "SCRUBBER: Backup Privilege is required to save the registry.\n"
  218. "Please rerun from a privileged account\n");
  219. return -1;
  220. }
  222. tp.PrivilegeCount = 1;
  223. tp.Privileges[0].Luid = luid;
  224. tp.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;
  226. if (!AdjustTokenPrivileges(hToken, FALSE, &tp, sizeof(TOKEN_PRIVILEGES),
  227. NULL, NULL ))
  228. {
  229. fprintf(stderr, "SCRUBBER: Unable to set Backup Privilege.\n");
  230. return -1;
  231. }
  233. // Backup the file if we aren't doing a dry run
  234. if ( bDoCompress || bDoRemove)
  235. {
  236. if(!LookupPrivilegeValue(MachineName, SE_RESTORE_NAME, &luid))
  238. {
  239. fprintf(stderr, "SCRUBBER: Restore Privilege is required to make changes to the registry.\n"
  240. "Please rerun from a privileged account\n");
  241. return -1;
  242. }
  244. tp.Privileges[0].Luid = luid;
  246. AdjustTokenPrivileges(hToken, FALSE, &tp, sizeof(TOKEN_PRIVILEGES),
  247. NULL, NULL );
  249. if (GetLastError() != ERROR_SUCCESS)
  250. {
  251. fprintf(stderr, "SCRUBBER: Unable to set Restore Privilege.\n");
  252. return -1;
  253. }
  256. if (RegOpenKey(HKEY_LOCAL_MACHINE, "System", &hKey) == ERROR_SUCCESS)
  257. {
  258. uPathLen = GetSystemDirectory(DirBuffX, sizeof(DirBuffX));
  259. if (uPathLen < MAX_PATH - strlen("\\config\\system.scx") - 1)
  260. {
  261. strcat(DirBuffX, "\\config\\system.scx");
  263. dwMessage = RegSaveKey(hKey, DirBuffX, NULL);
  265. if (dwMessage == ERROR_ALREADY_EXISTS)
  266. {
  267. DeleteFile(DirBuffX);
  268. dwMessage = RegSaveKey(hKey, DirBuffX, NULL);
  269. }
  270. RegCloseKey(hKey);
  272. if (dwMessage != ERROR_SUCCESS)
  273. {
  274. fprintf(stderr, "Unable to save a backup copy of the system hive.\n"
  275. "No changes have been made.\n\n");
  276. return -1;
  277. }
  278. }
  279. }
  280. }
  282. for (i=0; (i<sizeof(ClassesToClean)) && (bDoRemove || !bDoCompress); i++) {
  284. DeviceInfoSet = SetupDiGetClassDevs(ClassesToClean[i],
  285. NULL,
  286. NULL,
  287. 0
  288. );
  290. if (DeviceInfoSet != INVALID_HANDLE_VALUE) {
  292. DeviceInfoData.cbSize = sizeof(DeviceInfoData);
  293. MemberIndex = 0;
  295. while (SetupDiEnumDeviceInfo(DeviceInfoSet,
  296. MemberIndex++,
  297. &DeviceInfoData
  298. )) {
  300. //
  301. // Check if this device is a Phantom
  302. //
  303. cr = CM_Get_DevNode_Status(&Status,
  304. &Problem,
  305. DeviceInfoData.DevInst,
  306. 0
  307. );
  309. if ((cr == CR_NO_SUCH_DEVINST) ||
  310. (cr == CR_NO_SUCH_VALUE)) {
  312. //
  313. // This is a phantom. Now get the DeviceInstanceId so we
  314. // can display this as output.
  315. //
  316. if (CM_Get_Device_ID(DeviceInfoData.DevInst,
  317. DeviceInstanceId,
  318. sizeof(DeviceInstanceId) / sizeof(TCHAR),
  319. 0) == CR_SUCCESS) {
  322. if (bDoRemove) {
  324. printf("SCRUBBER: %s will be removed.\n",
  325. DeviceInstanceId
  326. );
  328. //
  329. // Since DeviceRemoval doesn't always clean out all
  330. // of the device's interfaces (this is the case for
  331. // RAW devnodes) then we need to manually build up
  332. // a list of device interfaces that we care about
  333. // that are associated with this DeviceInfoData and
  334. // manually remove them.
  335. //
  336. for (InterfaceIndex = 0;
  337. InterfaceIndex < sizeof(DeviceInterfacesToClean);
  338. InterfaceIndex++) {
  340. //
  341. // Build up a list of the interfaces for this specific
  342. // device.
  343. //
  344. InterfaceDeviceInfoSet =
  345. SetupDiGetClassDevs(DeviceInterfacesToClean[InterfaceIndex],
  346. DeviceInstanceId,
  347. NULL,
  348. DIGCF_DEVICEINTERFACE
  349. );
  351. if (InterfaceDeviceInfoSet != INVALID_HANDLE_VALUE) {
  353. //
  354. // Enumerate through the interfaces that we just
  355. // built up.
  356. //
  357. DeviceInterfaceData.cbSize = sizeof(DeviceInterfaceData);
  358. InterfaceMemberIndex = 0;
  359. while (SetupDiEnumDeviceInterfaces(InterfaceDeviceInfoSet,
  360. NULL,
  361. DeviceInterfacesToClean[InterfaceIndex],
  362. InterfaceMemberIndex++,
  363. &DeviceInterfaceData
  364. )) {
  366. //
  367. // Remove this Interface from the registry.
  368. //
  369. SetupDiRemoveDeviceInterface(InterfaceDeviceInfoSet,
  370. &DeviceInterfaceData
  371. );
  372. }
  374. //
  375. // Destroy the list of Interfaces that we built up.
  376. //
  377. SetupDiDestroyDeviceInfoList(InterfaceDeviceInfoSet);
  378. }
  379. }
  382. //
  383. // Call DIF_REMOVE to remove the device's hardware
  384. // and software registry keys.
  385. //
  386. if (SetupDiCallClassInstaller(DIF_REMOVE,
  387. DeviceInfoSet,
  388. &DeviceInfoData
  389. )) {
  391. DevicesRemoved++;
  393. } else {
  395. fprintf(stderr, "SCRUBBER: Error 0x%X removing phantom\n",
  396. GetLastError());
  397. }
  400. } else {
  402. printf("SCRUBBER: %s would have been removed.\n",
  403. DeviceInstanceId
  404. );
  405. }
  406. }
  407. }
  408. }
  411. SetupDiDestroyDeviceInfoList(DeviceInfoSet);
  412. }
  413. }
  415. // compress registry now
  416. if (DevicesRemoved || bDoCompress)
  417. {
  418. uPathLen = GetSystemDirectory(DirBuff, sizeof(DirBuff));
  419. SetLastError(0);
  420. if (uPathLen < MAX_PATH - strlen("\\config\\system.scn") - 1)
  421. {
  422. // Rename our backup copy
  423. if (!DevicesRemoved)
  424. {
  425. strcat(DirBuff, "\\config\\system.scc");
  426. }
  427. else
  428. {
  429. strcat(DirBuff, "\\config\\system.sc0");
  430. }
  431. DeleteFile(DirBuff);
  432. if (rename(DirBuffX, DirBuff))
  433. {
  434. fprintf(stderr, "SCRUBBER: Failed to rename backup file (system.scx)\n");
  435. }
  436. else
  437. {
  438. printf("System hive backup saved in %s\n", DirBuff);
  439. }
  440. }
  441. else
  442. {
  443. fprintf(stderr, "SCRUBBER: Path name too long. Registry not compressed.\n");
  444. }
  446. if (RegOpenKey(HKEY_LOCAL_MACHINE, "System", &hKey) == ERROR_SUCCESS)
  447. {
  448. // Make an additional copy now because it gets blown away on replace
  449. uPathLen = GetSystemDirectory(DirBuff, sizeof(DirBuff));
  450. strcat(DirBuff, "\\config\\system.scn");
  451. dwMessage = RegSaveKey(hKey, DirBuff, NULL);
  453. if (dwMessage == ERROR_ALREADY_EXISTS)
  454. {
  455. DeleteFile(DirBuff);
  456. dwMessage = RegSaveKey(hKey, DirBuff, NULL);
  457. }
  459. if (dwMessage == ERROR_SUCCESS)
  460. {
  461. if (bDoCompress) {
  463. TCHAR *tcPtr;
  466. sprintf(BackupDir, DirBuff);
  467. tcPtr = strstr(BackupDir, ".scn");
  468. strcpy(tcPtr, ".scb");
  469. if (!DeleteFile(BackupDir))
  470. {
  471. dwMessage = GetLastError();
  472. }
  474. dwMessage = RegReplaceKey(hKey, NULL, DirBuff, BackupDir);
  476. if (dwMessage != ERROR_SUCCESS)
  477. PERR();
  478. else
  479. printf("Saved new system hive.\n");
  480. }
  481. }
  482. else
  483. {
  484. PERR();
  485. }
  486. RegCloseKey(hKey);
  487. }
  488. }
  489. else
  490. DeleteFile(DirBuffX);
  492. return DevicesRemoved;
  493. }
  495. void PERR(void)
  496. {
  497. LPVOID lpMsgBuf;
  499. FormatMessage(
  500. FORMAT_MESSAGE_ALLOCATE_BUFFER |
  501. FORMAT_MESSAGE_FROM_SYSTEM |
  502. FORMAT_MESSAGE_IGNORE_INSERTS,
  503. NULL,
  504. GetLastError(),
  505. MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
  506. (LPTSTR) &lpMsgBuf,
  507. 0,
  508. NULL);
  509. fprintf(stderr, lpMsgBuf);
  510. LocalFree(lpMsgBuf);
  511. }