archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/windows/appcompat/shims/layer/profilesregqueryvalueex.cpp

522 lines
16 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*
  3. Copyright (c) 2000 Microsoft Corporation
  5. Module Name:
  7. RegQueryValueEx.cpp
  9. Abstract:
  11. This DLL hooks RegQueryValueExA so that we can return the "all-users" location
  12. for the StartMenu, Desktop and Startup folders instead of the per-user location.
  14. We also hook RegCreateKeyA/RegCreateKeyExA to make people who add entries to the
  15. HKCU "run" and "Uninstall" keys really add them to HKLM.
  17. Notes:
  19. History:
  21. 08/07/2000 reinerf Created
  22. 02/27/2001 robkenny Converted to use CString
  24. */
  26. #include "precomp.h"
  28. // This module has been given an official blessing to use the str routines.
  29. #include "LegalStr.h"
  31. IMPLEMENT_SHIM_BEGIN(ProfilesRegQueryValueEx)
  32. #include "ShimHookMacro.h"
  34. #include <shlwapi.h> // for StrRStrIA
  36. APIHOOK_ENUM_BEGIN
  37. APIHOOK_ENUM_ENTRY(RegQueryValueExA)
  38. APIHOOK_ENUM_ENTRY(RegCreateKeyA)
  39. APIHOOK_ENUM_ENTRY(RegCreateKeyExA)
  40. APIHOOK_ENUM_ENTRY(RegOpenKeyA)
  41. APIHOOK_ENUM_ENTRY(RegOpenKeyExA)
  42. APIHOOK_ENUM_END
  45. #ifndef MAX
  46. #define MAX(x,y) (((x) > (y)) ? (x) : (y))
  47. #endif
  49. #ifndef ARRAYSIZE
  50. #define ARRAYSIZE(x) (sizeof(x)/sizeof(x[0]))
  51. #endif
  53. LPCSTR g_aBadKeys[] =
  54. {
  55. {"SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"},
  56. {"SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall"},
  57. };
  59. LPCSTR g_aBadShellFolderKeys[] =
  60. {
  61. {"SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Shell Folders"},
  62. {"SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\User Shell Folders"},
  63. };
  66. // given an hkey, call NtQueryObject to lookup its name.
  67. // returns strings in the format: "\REGISTRY\USER\S-1-5-xxxxx\Software\Microsoft\Windows\CurrentVersion"
  68. BOOL GetKeyName(HKEY hk, LPSTR pszName, DWORD cchName)
  69. {
  70. BOOL bRet = FALSE;
  71. ULONG cbSize = 0;
  73. // get the size needed for the name buffer
  74. NtQueryObject(hk, ObjectNameInformation, NULL, 0, &cbSize);
  76. if (cbSize)
  77. {
  78. POBJECT_NAME_INFORMATION pNameInfo = (POBJECT_NAME_INFORMATION)LocalAlloc(LPTR, cbSize);
  80. if (pNameInfo)
  81. {
  82. NTSTATUS status = NtQueryObject(hk, ObjectNameInformation, (void*)pNameInfo, cbSize, NULL);
  84. if (NT_SUCCESS(status) && WideCharToMultiByte(CP_ACP, 0, pNameInfo->Name.Buffer, -1, pszName, cchName, NULL, NULL))
  85. {
  86. bRet = TRUE;
  87. }
  89. LocalFree(pNameInfo);
  90. }
  91. }
  93. return bRet;
  94. }
  97. // If hk points underneath HKCU and matches pszSearchName, then return TRUE
  98. BOOL DoesKeyMatch(HKEY hk, LPCSTR pszSearchName)
  99. {
  100. BOOL bRet = FALSE;
  102. // make sure it is not one of the pre-defined keys (eg HKEY_LOCAL_MACHINE)
  103. if (!((LONG)((ULONG_PTR)hk) & 0x80000000))
  104. {
  105. CHAR szKeyName[MAX_PATH * 2]; // should be big enought to hold any registry key path
  107. if (GetKeyName(hk, szKeyName, ARRAYSIZE(szKeyName)))
  108. {
  109. // is the key under HKCU ?
  110. if (StrCmpNIA(szKeyName, "\\REGISTRY\\USER\\", ARRAYSIZE("\\REGISTRY\\USER\\")-1) == 0)
  111. {
  112. LPSTR psz = StrRStrIA(szKeyName, NULL, pszSearchName);
  114. if (psz && (lstrlenA(psz) == lstrlenA(pszSearchName)))
  115. {
  116. // we found a substring and its the same length, so our hkey matches the search!
  117. bRet = TRUE;
  118. }
  119. }
  120. }
  121. }
  123. return bRet;
  124. }
  127. BOOL IsBadHKCUKey(HKEY hk, LPCSTR* ppszNewKey)
  128. {
  129. BOOL bRet = FALSE;
  130. int i;
  132. for (i=0; i < ARRAYSIZE(g_aBadKeys); i++)
  133. {
  134. if (DoesKeyMatch(hk, g_aBadKeys[i]))
  135. {
  136. *ppszNewKey = g_aBadKeys[i];
  137. bRet = TRUE;
  138. break;
  139. }
  140. }
  142. return bRet;
  143. }
  146. BOOL IsBadShellFolderKey(HKEY hk, LPCSTR* ppszNewKey)
  147. {
  148. BOOL bRet = FALSE;
  149. int i;
  151. for (i=0; i < ARRAYSIZE(g_aBadShellFolderKeys); i++)
  152. {
  153. if (DoesKeyMatch(hk, g_aBadShellFolderKeys[i]))
  154. {
  155. *ppszNewKey = g_aBadShellFolderKeys[i];
  156. bRet = TRUE;
  157. break;
  158. }
  159. }
  161. return bRet;
  162. }
  165. LONG
  166. APIHOOK(RegCreateKeyA)(
  167. HKEY hKey,
  168. LPCSTR pszSubKey,
  169. PHKEY phkResult
  170. )
  171. {
  172. LPCSTR pszNewHKLMKey;
  173. LONG lRet = ORIGINAL_API(RegCreateKeyA)(hKey, pszSubKey, phkResult);
  175. if ((lRet == ERROR_SUCCESS) &&
  176. IsBadHKCUKey(*phkResult, &pszNewHKLMKey))
  177. {
  178. // its a bad HKCU key-- redirect to HKLM
  179. RegCloseKey(*phkResult);
  181. lRet = ORIGINAL_API(RegCreateKeyA)(HKEY_LOCAL_MACHINE, pszNewHKLMKey, phkResult);
  183. LOGN(eDbgLevelInfo, "[RegCreateKeyA] overriding \"%s\" create key request w/ HKLM value (return = %d)", pszSubKey, lRet);
  184. }
  186. return lRet;
  187. }
  190. LONG
  191. APIHOOK(RegCreateKeyExA)(
  192. HKEY hKey,
  193. LPCSTR pszSubKey,
  194. DWORD Reserved,
  195. LPSTR lpClass,
  196. DWORD dwOptions,
  197. REGSAM samDesired,
  198. LPSECURITY_ATTRIBUTES lpSecurityAttributes,
  199. PHKEY phkResult,
  200. LPDWORD lpdwDisposition
  201. )
  202. {
  203. LPCSTR pszNewHKLMKey;
  204. LONG lRet = ORIGINAL_API(RegCreateKeyExA)(hKey,
  205. pszSubKey,
  206. Reserved,
  207. lpClass,
  208. dwOptions,
  209. samDesired,
  210. lpSecurityAttributes,
  211. phkResult,
  212. lpdwDisposition);
  214. if ((lRet == ERROR_SUCCESS) &&
  215. IsBadHKCUKey(*phkResult, &pszNewHKLMKey))
  216. {
  217. // its a bad HCKU key-- redirect to HKLM
  218. RegCloseKey(*phkResult);
  220. lRet = ORIGINAL_API(RegCreateKeyExA)(HKEY_LOCAL_MACHINE,
  221. pszNewHKLMKey,
  222. Reserved,
  223. lpClass,
  224. dwOptions,
  225. samDesired,
  226. lpSecurityAttributes,
  227. phkResult,
  228. lpdwDisposition);
  230. LOGN(eDbgLevelInfo, "[RegCreateKeyExA] overriding \"%s\" create key request w/ HKLM value (return = %d)", pszSubKey, lRet);
  231. }
  233. return lRet;
  234. }
  237. LONG
  238. APIHOOK(RegOpenKeyA)(
  239. HKEY hKey,
  240. LPCSTR pszSubKey,
  241. PHKEY phkResult
  242. )
  243. {
  244. LPCSTR pszNewHKLMKey;
  245. LONG lRet = ORIGINAL_API(RegOpenKeyA)(hKey, pszSubKey, phkResult);
  247. if ((lRet == ERROR_SUCCESS) &&
  248. IsBadHKCUKey(*phkResult, &pszNewHKLMKey))
  249. {
  250. // its a bad HCKU key-- redirect to HKLM
  251. RegCloseKey(*phkResult);
  253. lRet = ORIGINAL_API(RegOpenKeyA)(HKEY_LOCAL_MACHINE, pszNewHKLMKey, phkResult);
  255. LOGN(eDbgLevelInfo, "[RegOpenKeyA] overriding \"%s\" create key request w/ HKLM value (return = %d)", pszSubKey, lRet);
  256. }
  258. return lRet;
  259. }
  262. LONG
  263. APIHOOK(RegOpenKeyExA)(
  264. HKEY hKey,
  265. LPCSTR pszSubKey,
  266. DWORD ulOptions,
  267. REGSAM samDesired,
  268. PHKEY phkResult
  269. )
  270. {
  271. LPCSTR pszNewHKLMKey;
  272. LONG lRet = ORIGINAL_API(RegOpenKeyExA)(hKey, pszSubKey, ulOptions, samDesired, phkResult);
  274. if ((lRet == ERROR_SUCCESS) &&
  275. IsBadHKCUKey(*phkResult, &pszNewHKLMKey))
  276. {
  277. // its a bad HCKU key-- redirect to HKLM
  278. RegCloseKey(*phkResult);
  280. lRet = ORIGINAL_API(RegOpenKeyExA)(HKEY_LOCAL_MACHINE, pszNewHKLMKey, ulOptions, samDesired, phkResult);
  282. LOGN(eDbgLevelInfo, "[RegOpenKeyExA] overriding \"%s\" create key request w/ HKLM value (return = %d)", pszSubKey, lRet);
  283. }
  285. return lRet;
  286. }
  289. LONG
  290. GetAllUsersRegValueA(
  291. LPSTR szRegValue,
  292. DWORD cbOriginal,
  293. DWORD* pcbData,
  294. int nFolder,
  295. int nFolderCommon
  296. )
  297. {
  298. LONG lRet = ERROR_SUCCESS;
  300. if (!szRegValue)
  301. {
  302. // if the caller is querying for the necessary size, return the "worst case" since we don't know if
  303. // we are going to have to lie or not
  304. *pcbData = MAX_PATH;
  305. }
  306. else if (szRegValue[0] != '\0')
  307. {
  308. CHAR szPath[MAX_PATH];
  310. if (SUCCEEDED(SHGetFolderPathA(NULL, nFolder, NULL, SHGFP_TYPE_CURRENT, szPath))) {
  311. CHAR szShortRegPath[MAX_PATH];
  312. CHAR szShortGSFPath[MAX_PATH];
  313. BOOL bUseLFN;
  314. BOOL bSame = FALSE;
  316. if (lstrcmpiA(szPath, szRegValue) == 0) {
  317. bSame = TRUE;
  318. bUseLFN = TRUE;
  319. } else if (GetShortPathNameA(szPath, szShortGSFPath, ARRAYSIZE(szShortGSFPath)) &&
  320. GetShortPathNameA(szRegValue, szShortRegPath, ARRAYSIZE(szShortRegPath)) &&
  321. (lstrcmpiA(szShortGSFPath, szShortRegPath) == 0)) {
  322. bSame = TRUE;
  324. //
  325. // Since the sfn was returned, use that to copy over the output buffer.
  326. //
  327. bUseLFN = FALSE;
  328. }
  330. if (bSame && SUCCEEDED(SHGetFolderPathA(NULL, nFolderCommon, NULL, SHGFP_TYPE_CURRENT, szPath))) {
  331. if (bUseLFN) {
  332. if ((lstrlenA(szPath) + 1) <= (int)cbOriginal) {
  333. LOGN(
  334. eDbgLevelInfo,
  335. "[GetAllUsersRegValueA] overriding per-user reg value w/ common value");
  336. lstrcpyA(szRegValue, szPath);
  337. } else {
  338. LOGN(
  339. eDbgLevelInfo,
  340. "[GetAllUsersRegValueA] returning ERROR_MORE_DATA for special folder value");
  341. lRet = ERROR_MORE_DATA;
  342. }
  344. //
  345. // Either we used this much room, or this is how much we need to have.
  346. //
  347. *pcbData = lstrlenA(szPath) + 1;
  349. } else if (GetShortPathNameA(szPath, szShortGSFPath, ARRAYSIZE(szShortGSFPath))) {
  351. if ((lstrlenA(szShortGSFPath) + 1) <= (int)cbOriginal) {
  352. LOGN(
  353. eDbgLevelInfo,
  354. "[GetAllUsersRegValueA] overriding per-user reg value w/ common value");
  356. lstrcpyA(szRegValue, szShortGSFPath);
  357. } else {
  358. LOGN(
  359. eDbgLevelInfo,
  360. "[GetAllUsersRegValueA] returning ERROR_MORE_DATA for special folder value");
  361. lRet = ERROR_MORE_DATA;
  362. }
  364. //
  365. // Either we used this much room, or this is how much we need to have.
  366. //
  367. *pcbData = lstrlenA(szShortGSFPath) + 1;
  368. }
  369. }
  370. }
  371. }
  373. return lRet;
  374. }
  377. //
  378. // If the app is asking for the per-user "Desktop", "Start Menu" or "Startup" values by
  379. // groveling the registry, then redirect it to the proper per-machine values.
  380. //
  381. LONG
  382. APIHOOK(RegQueryValueExA)(
  383. HKEY hKey, // handle to key
  384. LPCSTR lpValueName, // value name
  385. LPDWORD lpReserved, // reserved
  386. LPDWORD lpType, // type buffer
  387. LPBYTE lpData, // data buffer
  388. LPDWORD lpcbData // size of data buffer
  389. )
  390. {
  391. DWORD cbOriginal = (lpcbData ? *lpcbData : 0); // save off the original buffer size
  392. LPCSTR pszNewHKLMKey;
  393. LONG lRet = ORIGINAL_API(RegQueryValueExA)(hKey,
  394. lpValueName,
  395. lpReserved,
  396. lpType,
  397. lpData,
  398. lpcbData);
  400. if ((lpValueName && lpcbData) && // (not simply checking for existance of the value...)
  401. IsBadShellFolderKey(hKey, &pszNewHKLMKey))
  402. {
  403. CHAR szTemp[MAX_PATH];
  405. if (lstrcmpiA(lpValueName, "Desktop") == 0) {
  407. DPFN(
  408. eDbgLevelInfo,
  409. "[RegQueryValueExA] querying for 'Desktop' value\n");
  411. if (lRet == ERROR_SUCCESS) {
  412. lRet = GetAllUsersRegValueA((LPSTR)lpData,
  413. cbOriginal,
  414. lpcbData,
  415. CSIDL_DESKTOP,
  416. CSIDL_COMMON_DESKTOPDIRECTORY);
  418. } else if (lRet == ERROR_MORE_DATA) {
  420. if (SUCCEEDED(SHGetFolderPathA(NULL, CSIDL_COMMON_DESKTOPDIRECTORY, NULL, SHGFP_TYPE_CURRENT, szTemp))) {
  421. *lpcbData = MAX(*lpcbData, (DWORD)((lstrlenA(szTemp) + 1) * sizeof(CHAR)));
  422. }
  423. }
  424. } else if (lstrcmpiA(lpValueName, "Start Menu") == 0) {
  426. DPFN(
  427. eDbgLevelInfo,
  428. "[RegQueryValueExA] querying for 'Start Menu' value\n");
  430. if (lRet == ERROR_SUCCESS) {
  431. lRet = GetAllUsersRegValueA((LPSTR)lpData,
  432. cbOriginal,
  433. lpcbData,
  434. CSIDL_STARTMENU,
  435. CSIDL_COMMON_STARTMENU);
  437. } else if (lRet == ERROR_MORE_DATA) {
  439. if (SUCCEEDED(SHGetFolderPathA(NULL, CSIDL_COMMON_STARTMENU, NULL, SHGFP_TYPE_CURRENT, szTemp))) {
  440. *lpcbData = MAX(*lpcbData, (DWORD)((lstrlenA(szTemp) + 1) * sizeof(CHAR)));
  441. }
  442. }
  444. } else if (lstrcmpiA(lpValueName, "Startup") == 0) {
  446. DPFN(
  447. eDbgLevelInfo,
  448. "[RegQueryValueExA] querying for 'Startup' value\n");
  450. if (lRet == ERROR_SUCCESS) {
  451. lRet = GetAllUsersRegValueA((LPSTR)lpData, cbOriginal, lpcbData, CSIDL_STARTUP, CSIDL_COMMON_STARTUP);
  453. } else if (lRet == ERROR_MORE_DATA) {
  455. if (SUCCEEDED(SHGetFolderPathA(NULL, CSIDL_COMMON_STARTUP, NULL, SHGFP_TYPE_CURRENT, szTemp))) {
  456. *lpcbData = MAX(*lpcbData, (DWORD)((lstrlenA(szTemp) + 1) * sizeof(CHAR)));
  457. }
  458. }
  460. } else if (lstrcmpiA(lpValueName, "Programs") == 0) {
  462. DPFN(
  463. eDbgLevelInfo,
  464. "[RegQueryValueExA] querying for 'Programs' value\n");
  466. if (lRet == ERROR_SUCCESS) {
  467. lRet = GetAllUsersRegValueA((LPSTR)lpData, cbOriginal, lpcbData, CSIDL_PROGRAMS, CSIDL_COMMON_PROGRAMS);
  469. } else if (lRet == ERROR_MORE_DATA) {
  471. if (SUCCEEDED(SHGetFolderPathA(NULL, CSIDL_COMMON_PROGRAMS, NULL, SHGFP_TYPE_CURRENT, szTemp))) {
  472. *lpcbData = MAX(*lpcbData, (DWORD)((lstrlenA(szTemp) + 1) * sizeof(CHAR)));
  473. }
  474. }
  475. }
  476. }
  478. return lRet;
  479. }
  482. BOOL
  483. NOTIFY_FUNCTION(
  484. DWORD fdwReason
  485. )
  486. {
  487. if (fdwReason == DLL_PROCESS_ATTACH) {
  488. OSVERSIONINFOEX osvi = {0};
  490. osvi.dwOSVersionInfoSize = sizeof(OSVERSIONINFOEX);
  492. if (GetVersionEx((OSVERSIONINFO*)&osvi)) {
  494. if (!((VER_SUITE_TERMINAL & osvi.wSuiteMask) &&
  495. !(VER_SUITE_SINGLEUSERTS & osvi.wSuiteMask))) {
  496. //
  497. // Only install hooks if we are not on a "Terminal Server"
  498. // (aka "Application Server") machine.
  499. //
  500. APIHOOK_ENTRY(ADVAPI32.DLL, RegQueryValueExA);
  501. APIHOOK_ENTRY(ADVAPI32.DLL, RegCreateKeyA);
  502. APIHOOK_ENTRY(ADVAPI32.DLL, RegCreateKeyExA);
  503. APIHOOK_ENTRY(ADVAPI32.DLL, RegOpenKeyA);
  504. APIHOOK_ENTRY(ADVAPI32.DLL, RegOpenKeyExA);
  505. }
  506. }
  507. }
  509. return TRUE;
  510. }
  513. HOOK_BEGIN
  515. CALL_NOTIFY_FUNCTION
  517. HOOK_END
  520. IMPLEMENT_SHIM_END