Intravision/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2025-02-25 01:39:30 +00:00
Code Issues Projects Releases Packages Wiki Activity

- Move ENUM_ROOT to internal/io.h, so that io/driver.c can use it too.

Browse source 
- Rewrite IopAttachFilterDrivers() to get rid of dangerous strings operations.

svn path=/trunk/; revision=31539
This commit is contained in:
Aleksey Bragin 2008-01-01 20:44:09 +00:00
parent 2df4726732
commit 3cd13713b0
3 changed files with 77 additions and 24 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
reactos/ntoskrnl/include/internal/io.h
View file

@ -46,6 +46,11 @@
#define IOTRACE(x, ...) DPRINT(__VA_ARGS__); #define IOTRACE(x, ...) DPRINT(__VA_ARGS__);
#endif #endif
//
// Registry path to the enumeration root key
//
#define ENUM_ROOT L"\\Registry\\Machine\\System\\CurrentControlSet\\Enum"
// //
// Returns the type of METHOD_ used in this IOCTL // Returns the type of METHOD_ used in this IOCTL
// //

94
reactos/ntoskrnl/io/iomgr/driver.c
View file

@ -571,16 +571,45 @@ IopAttachFilterDrivers(
PDEVICE_NODE DeviceNode, PDEVICE_NODE DeviceNode,
BOOLEAN Lower) BOOLEAN Lower)
{ {
RTL_QUERY_REGISTRY_TABLE QueryTable[2] = {{0}}; RTL_QUERY_REGISTRY_TABLE QueryTable[2] = {{0}};
PWCHAR KeyBuffer; OBJECT_ATTRIBUTES ObjectAttributes;
UNICODE_STRING Class; UNICODE_STRING Class;
WCHAR ClassBuffer[40]; WCHAR ClassBuffer[40];
UNICODE_STRING EnumRoot = RTL_CONSTANT_STRING(ENUM_ROOT);
HANDLE EnumRootKey, SubKey;
NTSTATUS Status; NTSTATUS Status;
/* Open enumeration root key */
InitializeObjectAttributes(&ObjectAttributes,
&EnumRoot,
OBJ_CASE_INSENSITIVE,
NULL,
NULL);
Status = ZwOpenKey(&EnumRootKey, KEY_READ, &ObjectAttributes);
if (!NT_SUCCESS(Status))
{
DPRINT1("ZwOpenKey() failed with Status %08X\n", Status);
return Status;
}
/* Open subkey */
InitializeObjectAttributes(&ObjectAttributes,
&DeviceNode->InstancePath,
OBJ_CASE_INSENSITIVE,
EnumRootKey,
NULL);
Status = ZwOpenKey(&SubKey, KEY_READ, &ObjectAttributes);
if (!NT_SUCCESS(Status))
{
DPRINT1("ZwOpenKey() failed with Status %08X\n", Status);
ZwClose(EnumRootKey);
return Status;
}
/* /*
* First load the device filters * First load the device filters
*/ */
QueryTable[0].QueryRoutine = IopAttachFilterDriversCallback; QueryTable[0].QueryRoutine = IopAttachFilterDriversCallback;
if (Lower) if (Lower)
QueryTable[0].Name = L"LowerFilters"; QueryTable[0].Name = L"LowerFilters";
@ -588,15 +617,9 @@ IopAttachFilterDrivers(
QueryTable[0].Name = L"UpperFilters"; QueryTable[0].Name = L"UpperFilters";
QueryTable[0].Flags = RTL_QUERY_REGISTRY_REQUIRED; QueryTable[0].Flags = RTL_QUERY_REGISTRY_REQUIRED;
KeyBuffer = ExAllocatePool(
PagedPool,
(49 * sizeof(WCHAR)) + DeviceNode->InstancePath.Length);
wcscpy(KeyBuffer, L"\\Registry\\Machine\\System\\CurrentControlSet\\Enum\\");
wcscat(KeyBuffer, DeviceNode->InstancePath.Buffer);
RtlQueryRegistryValues( RtlQueryRegistryValues(
RTL_REGISTRY_ABSOLUTE, RTL_REGISTRY_HANDLE,
KeyBuffer, (PWSTR)SubKey,
QueryTable, QueryTable,
DeviceNode, DeviceNode,
NULL); NULL);
@ -604,7 +627,6 @@ IopAttachFilterDrivers(
/* /*
* Now get the class GUID * Now get the class GUID
*/ */
Class.Length = 0; Class.Length = 0;
Class.MaximumLength = 40 * sizeof(WCHAR); Class.MaximumLength = 40 * sizeof(WCHAR);
Class.Buffer = ClassBuffer; Class.Buffer = ClassBuffer;
@ -614,13 +636,15 @@ IopAttachFilterDrivers(
QueryTable[0].Flags = RTL_QUERY_REGISTRY_REQUIRED | RTL_QUERY_REGISTRY_DIRECT; QueryTable[0].Flags = RTL_QUERY_REGISTRY_REQUIRED | RTL_QUERY_REGISTRY_DIRECT;
Status = RtlQueryRegistryValues( Status = RtlQueryRegistryValues(
RTL_REGISTRY_ABSOLUTE, RTL_REGISTRY_HANDLE,
KeyBuffer, (PWSTR)SubKey,
QueryTable, QueryTable,
DeviceNode, DeviceNode,
NULL); NULL);
ExFreePool(KeyBuffer); /* Close handles */
ZwClose(SubKey);
ZwClose(EnumRootKey);
/* /*
* Load the class filter driver * Load the class filter driver
@ -628,6 +652,34 @@ IopAttachFilterDrivers(
if (NT_SUCCESS(Status)) if (NT_SUCCESS(Status))
{ {
UNICODE_STRING ControlClass = RTL_CONSTANT_STRING(L"\\Registry\\Machine\\System\\CurrentControlSet\\Control\\Class");
InitializeObjectAttributes(&ObjectAttributes,
&ControlClass,
OBJ_CASE_INSENSITIVE,
NULL,
NULL);
Status = ZwOpenKey(&EnumRootKey, KEY_READ, &ObjectAttributes);
if (!NT_SUCCESS(Status))
{
DPRINT1("ZwOpenKey() failed with Status %08X\n", Status);
return Status;
}
/* Open subkey */
InitializeObjectAttributes(&ObjectAttributes,
&Class,
OBJ_CASE_INSENSITIVE,
EnumRootKey,
NULL);
Status = ZwOpenKey(&SubKey, KEY_READ, &ObjectAttributes);
if (!NT_SUCCESS(Status))
{
DPRINT1("ZwOpenKey() failed with Status %08X\n", Status);
ZwClose(EnumRootKey);
return Status;
}
QueryTable[0].QueryRoutine = IopAttachFilterDriversCallback; QueryTable[0].QueryRoutine = IopAttachFilterDriversCallback;
if (Lower) if (Lower)
QueryTable[0].Name = L"LowerFilters"; QueryTable[0].Name = L"LowerFilters";
@ -636,18 +688,16 @@ IopAttachFilterDrivers(
QueryTable[0].EntryContext = NULL; QueryTable[0].EntryContext = NULL;
QueryTable[0].Flags = RTL_QUERY_REGISTRY_REQUIRED; QueryTable[0].Flags = RTL_QUERY_REGISTRY_REQUIRED;
KeyBuffer = ExAllocatePool(PagedPool, (58 * sizeof(WCHAR)) + Class.Length);
wcscpy(KeyBuffer, L"\\Registry\\Machine\\System\\CurrentControlSet\\Control\\Class\\");
wcscat(KeyBuffer, ClassBuffer);
RtlQueryRegistryValues( RtlQueryRegistryValues(
RTL_REGISTRY_ABSOLUTE, RTL_REGISTRY_HANDLE,
KeyBuffer, (PWSTR)SubKey,
QueryTable, QueryTable,
DeviceNode, DeviceNode,
NULL); NULL);
ExFreePool(KeyBuffer); /* Clean up */
ZwClose(SubKey);
ZwClose(EnumRootKey);
} }
return STATUS_SUCCESS; return STATUS_SUCCESS;

2
reactos/ntoskrnl/io/pnpmgr/pnpmgr.c
View file

@ -19,8 +19,6 @@
/* GLOBALS *******************************************************************/ /* GLOBALS *******************************************************************/
#define ENUM_ROOT L"\\Registry\\Machine\\System\\CurrentControlSet\\Enum"
PDEVICE_NODE IopRootDeviceNode; PDEVICE_NODE IopRootDeviceNode;
KSPIN_LOCK IopDeviceTreeLock; KSPIN_LOCK IopDeviceTreeLock;
ERESOURCE PpRegistryDeviceResource; ERESOURCE PpRegistryDeviceResource;