Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

934 lines
28 KiB

  1. /*++
  2. Copyright (c) 1998 Microsoft Corporation
  3. Module Name:
  4. regbin.c
  5. Abstract:
  6. This module contains functions to check bin header and bin body consistency.
  7. Author:
  8. Dragos C. Sambotin (dragoss) 30-Dec-1998
  9. Revision History:
  10. --*/
  11. #include "chkreg.h"
  12. extern ULONG TotalKeyNode;
  13. extern ULONG TotalKeyValue;
  14. extern ULONG TotalKeyIndex;
  15. extern ULONG TotalKeySecurity;
  16. extern ULONG TotalValueIndex;
  17. extern ULONG TotalUnknown;
  18. extern ULONG CountKeyNode;
  19. extern ULONG CountKeyValue;
  20. extern ULONG CountKeyIndex;
  21. extern ULONG CountKeySecurity;
  22. extern ULONG CountValueIndex;
  23. extern ULONG CountUnknown;
  24. extern ULONG TotalFree;
  25. extern ULONG FreeCount;
  26. extern ULONG TotalUsed;
  27. extern PUCHAR Base;
  28. extern FILE *OutputFile;
  29. extern HCELL_INDEX RootCell;
  30. extern PHBIN FirstBin;
  31. extern PHBIN MaxBin;
  32. extern ULONG HiveLength;
  33. extern LONG BinIndex;
  34. extern BOOLEAN FixHive;
  35. extern BOOLEAN SpaceUsage;
  36. extern BOOLEAN CompactHive;
  37. ULONG BinFreeDisplaySize[HHIVE_FREE_DISPLAY_SIZE];
  38. ULONG BinFreeDisplayCount[HHIVE_FREE_DISPLAY_SIZE];
  39. ULONG FreeDisplaySize[HHIVE_FREE_DISPLAY_SIZE];
  40. ULONG FreeDisplayCount[HHIVE_FREE_DISPLAY_SIZE];
  41. ULONG BinUsedDisplaySize[HHIVE_FREE_DISPLAY_SIZE];
  42. ULONG BinUsedDisplayCount[HHIVE_FREE_DISPLAY_SIZE];
  43. ULONG UsedDisplaySize[HHIVE_FREE_DISPLAY_SIZE];
  44. ULONG UsedDisplayCount[HHIVE_FREE_DISPLAY_SIZE];
  45. BOOLEAN ChkAllocatedCell(HCELL_INDEX Cell);
  46. CCHAR ChkRegFindFirstSetLeft[256] = {
  47. 0, 0, 1, 1, 2, 2, 2, 2, 3, 3, 3, 3, 3, 3, 3, 3,
  48. 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4,
  49. 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5,
  50. 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5,
  51. 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6,
  52. 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6,
  53. 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6,
  54. 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6, 6,
  55. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7,
  56. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7,
  57. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7,
  58. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7,
  59. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7,
  60. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7,
  61. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7,
  62. 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7, 7};
  63. #define ComputeFreeIndex(Index, Size) \
  64. { \
  65. Index = (Size >> HHIVE_FREE_DISPLAY_SHIFT) - 1; \
  66. if (Index >= HHIVE_LINEAR_INDEX ) { \
  67. \
  68. /* \
  69. ** Too big for the linear lists, compute the exponential \
  70. ** list. \
  71. */ \
  72. \
  73. if (Index > 255) { \
  74. /* \
  75. ** Too big for all the lists, use the last index. \
  76. */ \
  77. Index = HHIVE_FREE_DISPLAY_SIZE-1; \
  78. } else { \
  79. Index = ChkRegFindFirstSetLeft[Index] + \
  80. HHIVE_FREE_DISPLAY_BIAS; \
  81. } \
  82. } \
  83. }
  84. BOOLEAN
  85. ChkBinHeader(PHBIN Bin,
  86. ULONG FileOffset,
  87. ULONG Index
  88. )
  89. /*++
  90. Routine Description:
  91. Checks the validity of the Bin header.
  92. The following tests are done:
  93. 1. the Size should not be bigger than the remaining of the file
  94. 2. the Size should not be smaller than HBLOCK_SIZE
  95. 3. the signature should be valid (HBIN_SIGNATURE)
  96. 4. the file offset should match the actual position in the hive file.
  97. Arguments:
  98. Bin - supplies a pointer to the bin to be checked.
  99. FileOffset - provides the actual pposition within the file
  100. Index - the index of the bin within the bin list of the hive
  101. Return Value:
  102. FALSE - the bin header is corrupted and was not fixed. Either this is a
  103. critical corruption, or the /R argument was not present in the
  104. command line.
  105. TRUE - The bin header is OK, or it was successfully recovered.
  106. --*/
  107. {
  108. BOOLEAN bRez = TRUE;
  109. PHCELL p;
  110. p = (PHCELL)((PUCHAR)Bin + sizeof(HBIN));
  111. if(Bin->Size > (HiveLength - FileOffset)) {
  112. bRez = FALSE;
  113. fprintf(stderr, "Size too big (%lu) in Bin header of Bin (%lu)\n",Bin->Size,Index);
  114. if(FixHive) {
  115. //
  116. // REPAIR: set the actual size to HiveLength-FileOffset
  117. //
  118. Bin->Size = HiveLength-FileOffset;
  119. p->Size = Bin->Size -sizeof(HBIN);
  120. bRez = TRUE;
  121. } else {
  122. if(CompactHive) {
  123. // any attempt to compact a corrupted hive will fail
  124. CompactHive = FALSE;
  125. fprintf(stderr, "Run chkreg /R to fix.\n");
  126. }
  127. }
  128. }
  129. if((Bin->Size < HBLOCK_SIZE) || ((Bin->Size % HBLOCK_SIZE) != 0)) {
  130. bRez = FALSE;
  131. fprintf(stderr, "Size too small (%lu) in Bin header of Bin (%lu)\n",Bin->Size,Index);
  132. if(FixHive) {
  133. //
  134. // REPAIR: set the actual size to minimmum possible size HBLOCK_SIZE
  135. //
  136. Bin->Size = HBLOCK_SIZE;
  137. p->Size = Bin->Size -sizeof(HBIN);
  138. bRez = TRUE;
  139. } else {
  140. if(CompactHive) {
  141. // any attempt to compact a corrupted hive will fail
  142. CompactHive = FALSE;
  143. fprintf(stderr, "Run chkreg /R to fix.\n");
  144. }
  145. }
  146. }
  147. if(Bin->Signature != HBIN_SIGNATURE) {
  148. bRez = FALSE;
  149. fprintf(stderr, "Invalid signature (%lx) in Bin header of Bin (%lu)\n",Bin->Signature,Index);
  150. if(FixHive) {
  151. //
  152. // REPAIR: reset the bin signature
  153. //
  154. Bin->Signature = HBIN_SIGNATURE;
  155. bRez = TRUE;
  156. } else {
  157. if(CompactHive) {
  158. // any attempt to compact a corrupted hive will fail
  159. CompactHive = FALSE;
  160. fprintf(stderr, "Run chkreg /R to fix.\n");
  161. }
  162. }
  163. }
  164. if(Bin->FileOffset != FileOffset) {
  165. bRez = FALSE;
  166. fprintf(stderr, "Actual FileOffset [%lx] and Bin FileOffset [%lx] do not match in Bin (%lu); Size = (%lx)\n",FileOffset,Bin->FileOffset,Index,Bin->Size);
  167. if(FixHive) {
  168. //
  169. // REPAIR: reset the bin FileOffset
  170. //
  171. Bin->FileOffset = FileOffset;
  172. bRez = TRUE;
  173. } else {
  174. if(CompactHive) {
  175. // any attempt to compact a corrupted hive will fail
  176. CompactHive = FALSE;
  177. fprintf(stderr, "Run chkreg /R to fix.\n");
  178. }
  179. }
  180. }
  181. return bRez;
  182. }
  183. BOOLEAN
  184. ChkBin(
  185. PHBIN Bin,
  186. ULONG IndexBin,
  187. ULONG Starting,
  188. double *Rate
  189. )
  190. /*++
  191. Routine Description:
  192. Steps through all of the cells in the bin. Make sure that
  193. they are consistent with each other, and with the bin header.
  194. Compute the usage rate for the current bin.
  195. Add all used cells to the unknown list (candidates to lost cells).
  196. Compute the used space and allocated cells by cell signature.
  197. Compute the free space size and number of cells.
  198. Test the cell size for reasonable limits. A cell should be smaller
  199. than the containing bin and should not exceed the bin boundaries.
  200. A cell should fit in only one contiguos bin!!!
  201. Arguments:
  202. Bin - supplies a pointer to the bin to be checked.
  203. Index - the index of the bin within the bin list of the hive
  204. Starting - starting address of the in-memory hive representation.
  205. Rate - usage rate for this bin
  206. Return Value:
  207. FALSE - the bin is corrupted and was not fixed. Either this is a
  208. critical corruption, or the /R argument was not present in the
  209. command line.
  210. TRUE - The bin is OK, or it was successfully recovered.
  211. --*/
  212. {
  213. ULONG freespace = 0L;
  214. ULONG allocated = 0L;
  215. BOOLEAN bRez = TRUE;
  216. HCELL_INDEX cellindex;
  217. PHCELL p;
  218. ULONG Size;
  219. ULONG Index;
  220. double TmpRate;
  221. p = (PHCELL)((PUCHAR)Bin + sizeof(HBIN));
  222. while (p < (PHCELL)((PUCHAR)Bin + Bin->Size)) {
  223. cellindex = (HCELL_INDEX)((PUCHAR)p - Base);
  224. if (p->Size >= 0) {
  225. //
  226. // It is a free cell.
  227. //
  228. Size = (ULONG)p->Size;
  229. if ( (Size > Bin->Size) ||
  230. ( (PHCELL)(Size + (PUCHAR)p) >
  231. (PHCELL)((PUCHAR)Bin + Bin->Size) )
  232. ) {
  233. bRez = FALSE;
  234. fprintf(stderr, "Impossible cell size in free cell (%lu) in Bin header of Bin (%lu)\n",Size,IndexBin);
  235. if(FixHive) {
  236. //
  237. // REPAIR: set the cell size to the largest possible hereon (ie. Bin + Bin->Size - p ); reset the Size too!!!
  238. //
  239. bRez = TRUE;
  240. p->Size = (ULONG)((PUCHAR)Bin + Bin->Size - (PUCHAR)p);
  241. } else {
  242. if(CompactHive) {
  243. // any attempt to compact a corrupted hive will fail
  244. CompactHive = FALSE;
  245. fprintf(stderr, "Run chkreg /R to fix.\n");
  246. }
  247. }
  248. }
  249. freespace += Size;
  250. TotalFree += Size;
  251. FreeCount++;
  252. if( SpaceUsage ) {
  253. // only if we are interested in the usage map
  254. // store the length of this free cell
  255. ComputeFreeIndex(Index, Size);
  256. BinFreeDisplaySize[Index] += Size;
  257. // and increment the count of free cells of this particular size
  258. BinFreeDisplayCount[Index]++;
  259. }
  260. }else{
  261. //
  262. // It is used cell. Check for signature
  263. //
  264. UCHAR *C;
  265. USHORT Sig;
  266. int i,j;
  267. // All used cells are leak candidates
  268. AddCellToUnknownList(cellindex);
  269. Size = (ULONG)(p->Size * -1);
  270. if ( (Size > Bin->Size) ||
  271. ( (PHCELL)(Size + (PUCHAR)p) >
  272. (PHCELL)((PUCHAR)Bin + Bin->Size) )
  273. ) {
  274. bRez = FALSE;
  275. fprintf(stderr, "Impossible cell size in allocated cell (%lu) in Bin header of Bin (%lu)\n",Size,IndexBin);
  276. if(FixHive) {
  277. //
  278. // REPAIR: set the cell size to the largest possible hereon (ie. Bin + Bin->Size - p ); reset the Size too!!!
  279. //
  280. bRez = TRUE;
  281. p->Size = (LONG)((PUCHAR)Bin + Bin->Size - (PUCHAR)p);
  282. // it's a used cell, remember ?
  283. p->Size *= -1;
  284. } else {
  285. if(CompactHive) {
  286. // any attempt to compact a corrupted hive will fail
  287. CompactHive = FALSE;
  288. fprintf(stderr, "Run chkreg /R to fix.\n");
  289. }
  290. }
  291. }
  292. allocated += Size;
  293. if( SpaceUsage ) {
  294. // only if we are interested in the usage map
  295. // store the length of this used cell
  296. ComputeFreeIndex(Index, Size);
  297. BinUsedDisplaySize[Index] += Size;
  298. // and increment the count of used cells of this particular size
  299. BinUsedDisplayCount[Index]++;
  300. }
  301. TotalUsed=TotalUsed+Size;
  302. C= (UCHAR *) &(p->u.NewCell.u.UserData);
  303. Sig=(USHORT) p->u.NewCell.u.UserData;
  304. switch(Sig){
  305. case CM_LINK_NODE_SIGNATURE:
  306. printf("Link Node !\n");
  307. TotalKeyNode=TotalKeyNode+Size;
  308. CountKeyNode++;
  309. break;
  310. case CM_KEY_NODE_SIGNATURE:
  311. {
  312. PCM_KEY_NODE Pcan;
  313. TotalKeyNode=TotalKeyNode+Size;
  314. CountKeyNode++;
  315. Pcan = (PCM_KEY_NODE)C;
  316. if(Pcan->ValueList.Count){
  317. PHCELL TmpP;
  318. TmpP = (PHCELL) (Starting + Pcan->ValueList.List);
  319. TotalValueIndex=TotalValueIndex - TmpP->Size;
  320. CountValueIndex++;
  321. }
  322. }
  323. break;
  324. case CM_KEY_VALUE_SIGNATURE:
  325. TotalKeyValue=TotalKeyValue+Size;
  326. CountKeyValue++;
  327. break;
  328. case CM_KEY_FAST_LEAF:
  329. case CM_KEY_HASH_LEAF:
  330. case CM_KEY_INDEX_LEAF:
  331. case CM_KEY_INDEX_ROOT:
  332. TotalKeyIndex=TotalKeyIndex+Size;
  333. CountKeyIndex++;
  334. break;
  335. case CM_KEY_SECURITY_SIGNATURE:
  336. TotalKeySecurity=TotalKeySecurity+Size;
  337. CountKeySecurity++;
  338. break;
  339. default:
  340. //
  341. // No signature, it can be data or index cells.
  342. // Or there must be some registry leak here.
  343. //
  344. TotalUnknown=TotalUnknown+Size;
  345. CountUnknown++;
  346. break;
  347. }
  348. }
  349. p = (PHCELL)((PUCHAR)p + Size);
  350. }
  351. *Rate = TmpRate = (double)(((double)allocated)/((double)(allocated+freespace)));
  352. TmpRate *= 100.00;
  353. fprintf(OutputFile,"Bin [%5lu], usage %.2f%%\r",IndexBin,(float)TmpRate);
  354. return bRez;
  355. }
  356. BOOLEAN ChkPhysicalHive()
  357. /*++
  358. Routine Description:
  359. Checks the integrity of the hive by stepping through all of the cells
  360. in the hive. Collects and displays statistics, according to the command
  361. line parameters.
  362. Arguments:
  363. None.
  364. Return Value:
  365. FALSE - the hive is corrupted and was not fixed. Either this is a
  366. critical corruption, or the /R argument was not present in the
  367. command line.
  368. TRUE - The hive is OK, or it was successfully recovered.
  369. --*/
  370. {
  371. ULONG Starting;
  372. PHBIN Bin = FirstBin;
  373. LONG Index;
  374. ULONG FileOffset;
  375. double Rate,RateTotal = 0.0;
  376. BOOLEAN bRez = TRUE;
  377. int i;
  378. Starting=(ULONG) Bin;
  379. Index=0;
  380. FileOffset = 0;
  381. for(i=0;i<HHIVE_FREE_DISPLAY_SIZE;i++) {
  382. FreeDisplaySize[i] = 0;
  383. FreeDisplayCount[i] = 0;
  384. UsedDisplaySize[i] = 0;
  385. UsedDisplayCount[i] = 0;
  386. }
  387. while(Bin < MaxBin){
  388. if( SpaceUsage ) {
  389. // only if we are interested in the usage map
  390. for(i=0;i<HHIVE_FREE_DISPLAY_SIZE;i++) {
  391. BinFreeDisplaySize[i] = 0;
  392. BinFreeDisplayCount[i] = 0;
  393. BinUsedDisplaySize[i] = 0;
  394. BinUsedDisplayCount[i] = 0;
  395. }
  396. }
  397. bRez = (bRez && ChkBinHeader(Bin,FileOffset,Index));
  398. bRez = (bRez && ChkBin(Bin,Index,Starting,&Rate));
  399. RateTotal += Rate;
  400. if( SpaceUsage ) {
  401. // only if we are interested in the usage map
  402. if( BinIndex == Index ) {
  403. // summary wanted for this particular bin
  404. fprintf(OutputFile,"\nBin[%5lu] Display Map: Free Cells, Free Size\t Used Cells, Used Size\n",(ULONG)Index);
  405. for(i=0;i<HHIVE_FREE_DISPLAY_SIZE;i++) {
  406. fprintf(OutputFile,"Display[%2d] : %8lu , %8lu \t %8lu , %8lu \n",i,BinFreeDisplayCount[i],BinFreeDisplaySize[i],BinUsedDisplayCount[i],BinUsedDisplaySize[i]);
  407. }
  408. }
  409. for(i=0;i<HHIVE_FREE_DISPLAY_SIZE;i++) {
  410. FreeDisplaySize[i] += BinFreeDisplaySize[i];
  411. FreeDisplayCount[i] += BinFreeDisplayCount[i];
  412. UsedDisplaySize[i] += BinUsedDisplaySize[i];
  413. UsedDisplayCount[i] += BinUsedDisplayCount[i];
  414. }
  415. }
  416. if( Bin<MaxBin) {
  417. FileOffset += Bin->Size;
  418. }
  419. Bin = (PHBIN)((ULONG)Bin + Bin->Size);
  420. Index++;
  421. }
  422. RateTotal *= 100.00;
  423. RateTotal /= (double)Index;
  424. fprintf(OutputFile,"Number of Bins in hive: %lu \n",Index);
  425. fprintf(OutputFile,"Total Hive space usage: %.2f%% \n",(float)RateTotal);
  426. if( SpaceUsage ) {
  427. // only if we are interested in the usage map
  428. if( BinIndex == -1 ) {
  429. // space usage display per entire hive
  430. fprintf(OutputFile,"\nHive Display Map: Free Cells, Free Size\t\t Used Cells, Used Size\n");
  431. for(i=0;i<HHIVE_FREE_DISPLAY_SIZE;i++) {
  432. fprintf(OutputFile,"Display[%2d] : %8lu , %8lu \t %8lu , %8lu \n",i,FreeDisplayCount[i],FreeDisplaySize[i],UsedDisplayCount[i],UsedDisplaySize[i]);
  433. }
  434. }
  435. }
  436. return bRez;
  437. }
  438. ULONG
  439. ComputeHeaderCheckSum(
  440. PHBASE_BLOCK BaseBlock
  441. )
  442. /*++
  443. Routine Description:
  444. Compute the checksum for a hive disk header.
  445. Arguments:
  446. BaseBlock - supplies pointer to the header to checksum
  447. Return Value:
  448. the check sum.
  449. --*/
  450. {
  451. ULONG sum;
  452. ULONG i;
  453. sum = 0;
  454. for (i = 0; i < 127; i++) {
  455. sum ^= ((PULONG)BaseBlock)[i];
  456. }
  457. if (sum == (ULONG)-1) {
  458. sum = (ULONG)-2;
  459. }
  460. if (sum == 0) {
  461. sum = 1;
  462. }
  463. return sum;
  464. }
  465. BOOLEAN
  466. ChkBaseBlock(PHBASE_BLOCK BaseBlock,
  467. DWORD dwFileSize)
  468. /*++
  469. Routine Description:
  470. Checks the integrity of the base block of a hive.
  471. Eventually makes the following corrections:
  472. 1. enforce Sequence1 == Sequence2
  473. 2. recalculate the header checksum
  474. Arguments:
  475. BaseBlock - the BaseBlock in-memory mapped image.
  476. dwFileSize - the actual size of the hive file
  477. Return Value:
  478. FALSE - the BaseBlock is corrupted and was not fixed. Either this is a
  479. critical corruption, or the /R argument was not present in the
  480. command line.
  481. TRUE - The BaseBlock is OK, or it was successfully recovered.
  482. --*/
  483. {
  484. BOOLEAN bRez = TRUE;
  485. ULONG CheckSum;
  486. if(BaseBlock->Signature != HBASE_BLOCK_SIGNATURE) {
  487. fprintf(stderr, "Fatal: Invalid Base Block signature (0x%lx)",BaseBlock->Signature);
  488. bRez = FALSE;
  489. if(FixHive) {
  490. //
  491. // REPAIR: reset the signature
  492. //
  493. fprintf(stderr, " ... unable to fix");
  494. } else {
  495. if(CompactHive) {
  496. // any attempt to compact a corrupted hive will fail
  497. CompactHive = FALSE;
  498. }
  499. }
  500. fprintf(stderr, "\n");
  501. }
  502. if(BaseBlock->Major != HSYS_MAJOR) {
  503. bRez = FALSE;
  504. fprintf(stderr, "Fatal: Invalid hive file Major version (%lu)",BaseBlock->Major);
  505. if(FixHive) {
  506. //
  507. // Fatal: unable to fix this
  508. //
  509. fprintf(stderr, " ... unable to fix");
  510. } else {
  511. if(CompactHive) {
  512. // any attempt to compact a corrupted hive will fail
  513. CompactHive = FALSE;
  514. }
  515. }
  516. fprintf(stderr, "\n");
  517. }
  518. if(BaseBlock->Minor > HSYS_MINOR_SUPPORTED) {
  519. bRez = FALSE;
  520. fprintf(stderr, "Fatal: Invalid hive file Minor version (%lu)",BaseBlock->Minor);
  521. if(FixHive) {
  522. //
  523. // Fatal: unable to fix this
  524. //
  525. fprintf(stderr, " ... unable to fix");
  526. } else {
  527. if(CompactHive) {
  528. // any attempt to compact a corrupted hive will fail
  529. CompactHive = FALSE;
  530. }
  531. }
  532. fprintf(stderr, "\n");
  533. }
  534. if(BaseBlock->Format != HBASE_FORMAT_MEMORY) {
  535. bRez = FALSE;
  536. fprintf(stderr, "Fatal: Invalid hive memory format (%lu)",BaseBlock->Format);
  537. if(FixHive) {
  538. //
  539. // Fatal: unable to fix this
  540. //
  541. fprintf(stderr, " ... unable to fix");
  542. } else {
  543. if(CompactHive) {
  544. // any attempt to compact a corrupted hive will fail
  545. CompactHive = FALSE;
  546. }
  547. }
  548. fprintf(stderr, "\n");
  549. }
  550. if((BaseBlock->Length + HBLOCK_SIZE) > dwFileSize) {
  551. fprintf(stderr, "Fatal: Invalid Hive file Length (%lu)",BaseBlock->Length);
  552. bRez = FALSE;
  553. if(FixHive) {
  554. //
  555. // REPAIR: unable to fix this
  556. //
  557. fprintf(stderr, " ... unable to fix");
  558. } else {
  559. if(CompactHive) {
  560. // any attempt to compact a corrupted hive will fail
  561. CompactHive = FALSE;
  562. }
  563. }
  564. fprintf(stderr, "\n");
  565. }
  566. if(!bRez) {
  567. //
  568. // Fatal Base Block corruption; no point to continue.
  569. //
  570. return bRez;
  571. }
  572. if(BaseBlock->Sequence1 != BaseBlock->Sequence2) {
  573. fprintf(stderr, "Sequence numbers do not match (%lu,%lu)",BaseBlock->Sequence1,BaseBlock->Sequence2);
  574. bRez = FALSE;
  575. if(FixHive) {
  576. //
  577. // REPAIR: enforce Sequence2 to Sequence1
  578. //
  579. bRez = TRUE;
  580. BaseBlock->Sequence2 = BaseBlock->Sequence1;
  581. fprintf(stderr, " ... fixed");
  582. } else {
  583. if(CompactHive) {
  584. // any attempt to compact a corrupted hive will fail
  585. CompactHive = FALSE;
  586. fprintf(stderr, "\nRun chkreg /R to fix.");
  587. }
  588. }
  589. fprintf(stderr, "\n");
  590. }
  591. CheckSum = ComputeHeaderCheckSum(BaseBlock);
  592. if(BaseBlock->CheckSum != CheckSum) {
  593. fprintf(stderr, "Invalid Base Block CheckSum (0x%lx)",BaseBlock->CheckSum);
  594. bRez = FALSE;
  595. if(FixHive) {
  596. //
  597. // REPAIR: reset the signature
  598. //
  599. bRez = TRUE;
  600. BaseBlock->CheckSum = CheckSum;
  601. fprintf(stderr, " ... fixed");
  602. } else {
  603. if(CompactHive) {
  604. // any attempt to compact a corrupted hive will fail
  605. CompactHive = FALSE;
  606. fprintf(stderr, "\nRun chkreg /R to fix.");
  607. }
  608. }
  609. fprintf(stderr, "\n");
  610. }
  611. return bRez;
  612. }
  613. BOOLEAN
  614. ChkSecurityDescriptors( )
  615. /*++
  616. Routine Description:
  617. Walks the list of security descriptors present in the hive and passes
  618. each security descriptor to RtlValidSecurityDescriptor.
  619. Also checks the validity of the FLink <==> BLink relationship between cells.
  620. Arguments:
  621. Return Value:
  622. TRUE - All security descriptors are valid
  623. FALSE - At least one security descriptor is invalid, and/or cannot be fixed
  624. --*/
  625. {
  626. PCM_KEY_NODE RootNode;
  627. PCM_KEY_SECURITY SecurityCell;
  628. HCELL_INDEX ListAnchor;
  629. HCELL_INDEX NextCell;
  630. HCELL_INDEX LastCell;
  631. BOOLEAN bRez = TRUE;
  632. // check/fix the root cell (is allocated?)
  633. ChkAllocatedCell(RootCell);
  634. RootNode = (PCM_KEY_NODE) GetCell(RootCell);
  635. ListAnchor = NextCell = RootNode->Security;
  636. do {
  637. // is the next cell allocated?
  638. ChkAllocatedCell(NextCell);
  639. SecurityCell = (PCM_KEY_SECURITY) GetCell(NextCell);
  640. if (SecurityCell->Signature != CM_KEY_SECURITY_SIGNATURE) {
  641. bRez = FALSE;
  642. fprintf(stderr, "Fatal: Invalid signature (0x%lx) in Security cell 0x%lx ",SecurityCell->Signature,NextCell);
  643. if(FixHive) {
  644. //
  645. // REPAIR:
  646. // FATAL: Mismatched signature cannot be fixed. Unable to fix this.
  647. //
  648. fprintf(stderr, " ... unable to fix");
  649. } else {
  650. if(CompactHive) {
  651. // any attempt to compact a corrupted hive will fail
  652. CompactHive = FALSE;
  653. }
  654. }
  655. fprintf(stderr, "\n");
  656. return bRez;
  657. }
  658. if (NextCell != ListAnchor) {
  659. //
  660. // Check to make sure that our Blink points to where we just
  661. // came from.
  662. //
  663. if (SecurityCell->Blink != LastCell) {
  664. fprintf(stderr, "Invalid backward link in security cell (0x%lx)",NextCell);
  665. if(FixHive) {
  666. //
  667. // REPAIR: reset the link
  668. //
  669. SecurityCell->Blink = LastCell;
  670. fprintf(stderr, " ... fixed");
  671. } else {
  672. bRez = FALSE;
  673. if(CompactHive) {
  674. // any attempt to compact a corrupted hive will fail
  675. CompactHive = FALSE;
  676. fprintf(stderr, "\nRun chkreg /R to fix.");
  677. }
  678. }
  679. fprintf(stderr, "\n");
  680. }
  681. }
  682. if (!RtlValidSecurityDescriptor(&SecurityCell->Descriptor)) {
  683. bRez = FALSE;
  684. fprintf(stderr, "Invalid security descriptor in Security cell 0x%lx ",NextCell);
  685. if(FixHive) {
  686. //
  687. // REPAIR: remove the cell from the list and delete it!
  688. //
  689. PCM_KEY_SECURITY Before = (PCM_KEY_SECURITY) GetCell(SecurityCell->Blink);
  690. PCM_KEY_SECURITY After = (PCM_KEY_SECURITY) GetCell(SecurityCell->Flink);
  691. if( Before != After ) {
  692. // make sure the list will not remain empty
  693. Before->Flink = SecurityCell->Flink;
  694. After->Blink = SecurityCell->Blink;
  695. }
  696. FreeCell(NextCell);
  697. NextCell = SecurityCell->Flink;
  698. fprintf(stderr, " ... deleted");
  699. } else {
  700. bRez = FALSE;
  701. if(CompactHive) {
  702. // any attempt to compact a corrupted hive will fail
  703. CompactHive = FALSE;
  704. fprintf(stderr, "\nRun chkreg /R to fix.");
  705. }
  706. }
  707. fprintf(stderr, "\n");
  708. } else {
  709. // validate the next one
  710. LastCell = NextCell;
  711. NextCell = SecurityCell->Flink;
  712. }
  713. } while ( NextCell != ListAnchor );
  714. return bRez;
  715. }
  716. BOOLEAN
  717. ChkSecurityCellInList(HCELL_INDEX Security)
  718. /*++
  719. Routine Description:
  720. Searches the specified cell within the security descriptors list
  721. Arguments:
  722. Security - Provides the current cell
  723. Return Value:
  724. TRUE - the current cell was found in the security list
  725. FALSE - the current cell is not present in the security list and it couldn't be added.
  726. --*/
  727. {
  728. PCM_KEY_NODE RootNode;
  729. PCM_KEY_SECURITY SecurityCell;
  730. PCM_KEY_SECURITY SecurityCellCurrent;
  731. PCM_KEY_SECURITY SecurityCellAfter;
  732. HCELL_INDEX ListAnchor;
  733. HCELL_INDEX NextCell;
  734. BOOLEAN bRez = TRUE;
  735. RootNode = (PCM_KEY_NODE) GetCell(RootCell);
  736. ListAnchor = NextCell = RootNode->Security;
  737. do {
  738. if( NextCell == Security) {
  739. // found it!
  740. return bRez;
  741. }
  742. SecurityCell = (PCM_KEY_SECURITY) GetCell(NextCell);
  743. NextCell = SecurityCell->Flink;
  744. } while ( NextCell != ListAnchor );
  745. // cell not found; try to fix it
  746. bRez = FALSE;
  747. fprintf(stderr, "Security Cell (0x%lx) not in security descriptors list",Security);
  748. if(FixHive) {
  749. //
  750. // REPAIR: Add the security cell at the begining of the list
  751. //
  752. bRez = TRUE;
  753. SecurityCell = (PCM_KEY_SECURITY) GetCell(ListAnchor);
  754. SecurityCellCurrent = (PCM_KEY_SECURITY) GetCell(Security);
  755. SecurityCellAfter = (PCM_KEY_SECURITY) GetCell(SecurityCell->Flink);
  756. // restore the connections
  757. SecurityCellCurrent->Flink = SecurityCell->Flink;
  758. SecurityCellCurrent->Blink = ListAnchor;
  759. SecurityCell->Flink = Security;
  760. SecurityCellAfter->Blink = Security;
  761. fprintf(stderr, " ... security cell added to the list");
  762. } else {
  763. if(CompactHive) {
  764. // any attempt to compact a corrupted hive will fail
  765. CompactHive = FALSE;
  766. fprintf(stderr, "\nRun chkreg /R to fix.");
  767. }
  768. }
  769. fprintf(stderr, "\n");
  770. return bRez;
  771. }