[NTDLL/LDR]

- Fix wrong loop condition which would often lead to heap underread. - Fix wrong subkey string length calculation, which would result in an incorrect string being used to open an image specific key. - Don't close the key handle in LdrQueryImageFileKeyOption() because it's used more than once and closed after it's not needed anymore. - Use Zw* functions instead of Nt* where necessary in LdrQueryImageFileKeyOption(). - Per-image execution options work now (e.g. enabling DPH). svn path=/trunk/; revision=53446
2025-04-27 00:50:23 +00:00 · 2011-08-25 22:25:25 +00:00 · 2011-08-25 22:25:25 +00:00 · 2d9edcdec1
commit 2d9edcdec1
parent 0834f5fa79
1 changed files with 5 additions and 6 deletions
--- a/reactos/dll/ntdll/ldr/ldrinit.c
+++ b/reactos/dll/ntdll/ldr/ldrinit.c
@ -144,14 +144,14 @@ LdrOpenImageFileOptionsKey(IN PUNICODE_STRING SubKey,
        /* Extract the name */
        SubKeyString = *SubKey;
        p1 = (PWCHAR)((ULONG_PTR)SubKeyString.Buffer + SubKeyString.Length);
-        while (SubKey->Length)
+        while (SubKeyString.Length)
        {
            if (p1[-1] == L'\\') break;
            p1--;
            SubKeyString.Length -= sizeof(*p1);
        }
        SubKeyString.Buffer = p1;
-        SubKeyString.Length = SubKeyString.MaximumLength - SubKeyString.Length - sizeof(WCHAR);
+        SubKeyString.Length = SubKey->Length - SubKeyString.Length;

        /* Setup the object attributes */
        InitializeObjectAttributes(&ObjectAttributes,
@ -192,7 +192,7 @@ LdrQueryImageFileKeyOption(IN HKEY KeyHandle,
    if (!NT_SUCCESS(Status)) return Status;

    /* Query the value */
-    Status = NtQueryValueKey(KeyHandle,
+    Status = ZwQueryValueKey(KeyHandle,
                             &ValueNameString,
                             KeyValuePartialInformation,
                             KeyValueInformation,
@ -213,7 +213,7 @@ LdrQueryImageFileKeyOption(IN HKEY KeyHandle,
        }

        /* Try again */
-        Status = NtQueryValueKey(KeyHandle,
+        Status = ZwQueryValueKey(KeyHandle,
                                 &ValueNameString,
                                 KeyValuePartialInformation,
                                 KeyValueInformation,
@ -326,8 +326,7 @@ LdrQueryImageFileKeyOption(IN HKEY KeyHandle,
    /* Check if buffer was in heap */
    if (FreeHeap) RtlFreeHeap(RtlGetProcessHeap(), 0, KeyValueInformation);

-    /* Close key and return */
-    NtClose(KeyHandle);
+    /* Return status */
    return Status;
 }