Styris
/
trusted-uninstaller-cli
1
0
Fork 0
Code Issues 1 Pull Requests 0 Projects 1 Releases 10 Wiki Activity
CLI tool for running Playbooks
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10 Commits
1 Branch
55 MiB
Tree: 9f703b5e8f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9f703b5e8f'
${ noResults }
trusted-uninstaller-cli/TrustedUninstaller.Shared/Actions/RegistryValueAction.cs

336 lines
14 KiB
Raw Normal View History

Start
1 year ago
Update to v0.6.5
1 year ago
Start
1 year ago
Update to v0.6.5
1 year ago
Start
1 year ago
Update to v0.6.5
1 year ago
Start
1 year ago
Update to v0.6.5
1 year ago
Start
1 year ago
Update to v0.6.5
1 year ago
Start
1 year ago
Update to v0.6.5
1 year ago
Start
1 year ago
Update to v0.6.5
1 year ago
Start
1 year ago
 
  1. #nullable enable
  2. using System;
  3. using System.Collections.Generic;
  4. using System.IO;
  5. using System.Linq;
  6. using System.Security;
  7. using System.Text.RegularExpressions;
  8. using System.Threading;
  9. using System.Threading.Tasks;
  10. using System.Windows;
  11. using Microsoft.Win32;
  12. using TrustedUninstaller.Shared.Exceptions;
  13. using TrustedUninstaller.Shared.Tasks;
  14. using YamlDotNet.Serialization;
  15. 

  16. 

  17. namespace TrustedUninstaller.Shared.Actions
  18. {
  19.     public enum RegistryValueOperation
  20.     {
  21.         Delete = 0,
  22.         Add = 1,
  23.         // This indicates to skip the action if the specified value does not already exist

  24.         Set = 2
  25.     }
  26. 

  27.     public enum RegistryValueType
  28.     {
  29.         REG_SZ = RegistryValueKind.String,
  30.         REG_MULTI_SZ = RegistryValueKind.MultiString,
  31.         REG_EXPAND_SZ = RegistryValueKind.ExpandString,
  32.         REG_DWORD = RegistryValueKind.DWord,
  33.         REG_QWORD = RegistryValueKind.QWord,
  34.         REG_BINARY = RegistryValueKind.Binary,
  35.         REG_NONE = RegistryValueKind.None,
  36.         REG_UNKNOWN = RegistryValueKind.Unknown
  37.     }
  38. 

  39.     public class RegistryValueAction : ITaskAction
  40.     {
  41.         [YamlMember(typeof(string), Alias = "path")]
  42.         public string KeyName { get; set; }
  43. 

  44.         [YamlMember(typeof(string), Alias = "value")]
  45.         public string Value { get; set; } = "";
  46.         
  47.         [YamlMember(typeof(object), Alias = "data")]
  48.         public object? Data { get; set; }
  49.         
  50.         [YamlMember(typeof(RegistryValueType), Alias = "type")]
  51.         public RegistryValueType Type { get; set; }
  52.         
  53.         [YamlMember(typeof(Scope), Alias = "scope")]
  54.         public Scope Scope { get; set; } = Scope.AllUsers;
  55. 

  56.         [YamlMember(typeof(RegistryValueOperation), Alias = "operation")]
  57.         public RegistryValueOperation Operation { get; set; } = RegistryValueOperation.Add;
  58.         
  59.         [YamlMember(typeof(string), Alias = "weight")]
  60.         public int ProgressWeight { get; set; } = 1;
  61.         public int GetProgressWeight()
  62.         {
  63.             /*
  64.             int roots;
  65.             try
  66.             {
  67.                 roots = GetRoots().Count;
  68.             }
  69.             catch (Exception e)
  70.             {
  71. 

  72.                 roots = 1;
  73.             }
  74.             */
  75. 

  76.             return ProgressWeight;
  77.         }
  78.         
  79.         private bool InProgress { get; set; }
  80.         public void ResetProgress() => InProgress = false;
  81.         
  82.         public string ErrorString() => $"RegistryValueAction failed to {Operation.ToString().ToLower()} value '{Value}' in key '{KeyName}'";
  83.         
  84.         private List<RegistryKey> GetRoots()
  85.         {
  86.             var hive = KeyName.Split('\\').GetValue(0).ToString().ToUpper();
  87.             var list = new List<RegistryKey>();
  88. 

  89.             if (hive.Equals("HKCU") || hive.Equals("HKEY_CURRENT_USER"))
  90.             {
  91.                 RegistryKey usersKey;
  92.                 List<string> userKeys;
  93. 

  94.                 switch (Scope)
  95.                 {
  96.                     case Scope.AllUsers:
  97.                         WinUtil.RegistryManager.HookUserHives();
  98.                     
  99.                         usersKey = RegistryKey.OpenBaseKey(RegistryHive.Users, RegistryView.Default);
  100.                         userKeys = usersKey.GetSubKeyNames().
  101.                             Where(x => x.StartsWith("S-") && 
  102.                                 usersKey.OpenSubKey(x).GetSubKeyNames().Any(y => y.Equals("Volatile Environment"))).ToList();
  103.                     
  104.                         userKeys.AddRange(usersKey.GetSubKeyNames().Where(x => x.StartsWith("AME_UserHive_") && !x.EndsWith("_Classes")).ToList());
  105.                     
  106.                         userKeys.ForEach(x => list.Add(usersKey.OpenSubKey(x, true)));
  107.                         return list;
  108.                     case Scope.ActiveUsers:
  109.                         usersKey = RegistryKey.OpenBaseKey(RegistryHive.Users, RegistryView.Default);
  110.                         userKeys = usersKey.GetSubKeyNames().
  111.                             Where(x => x.StartsWith("S-") && 
  112.                                 usersKey.OpenSubKey(x).GetSubKeyNames().Any(y => y.Equals("Volatile Environment"))).ToList();
  113. 

  114.                         userKeys.ForEach(x => list.Add(usersKey.OpenSubKey(x, true)));
  115.                         return list;
  116.                     case Scope.DefaultUser:
  117.                         usersKey = RegistryKey.OpenBaseKey(RegistryHive.Users, RegistryView.Default);
  118.                         userKeys = usersKey.GetSubKeyNames().Where(x => x.Equals("AME_UserHive_Default") && !x.EndsWith("_Classes")).ToList();
  119.                         
  120.                         userKeys.ForEach(x => list.Add(usersKey.OpenSubKey(x, true)));
  121.                         return list;
  122.                 }
  123.             }
  124.             list.Add(hive switch
  125.             {
  126.                 "HKCU" => RegistryKey.OpenBaseKey(RegistryHive.CurrentUser, RegistryView.Default),
  127.                 "HKEY_CURRENT_USER" => RegistryKey.OpenBaseKey(RegistryHive.CurrentUser, RegistryView.Default),
  128.                 "HKLM" => RegistryKey.OpenBaseKey(RegistryHive.LocalMachine, RegistryView.Default),
  129.                 "HKEY_LOCAL_MACHINE" => RegistryKey.OpenBaseKey(RegistryHive.LocalMachine, RegistryView.Default),
  130.                 "HKCR" => RegistryKey.OpenBaseKey(RegistryHive.ClassesRoot, RegistryView.Default),
  131.                 "HKEY_CLASSES_ROOT" => RegistryKey.OpenBaseKey(RegistryHive.ClassesRoot, RegistryView.Default),
  132.                 "HKU" => RegistryKey.OpenBaseKey(RegistryHive.Users, RegistryView.Default),
  133.                 "HKEY_USERS" => RegistryKey.OpenBaseKey(RegistryHive.Users, RegistryView.Default),
  134.                 _ => throw new ArgumentException($"Key '{KeyName}' does not specify a valid registry hive.")
  135.             });
  136.             return list;
  137.         }
  138. 

  139.         public string GetSubKey() => KeyName.Substring(KeyName.IndexOf('\\') + 1);
  140. 

  141.         private RegistryKey? OpenSubKey(RegistryKey root)
  142.         {
  143.             var subKeyPath = GetSubKey();
  144.             
  145.             if (subKeyPath == null) throw new ArgumentException($"Key '{KeyName}' is invalid.");
  146.             
  147.             return root.OpenSubKey(subKeyPath, true);
  148.         }
  149. 

  150.         public object? GetCurrentValue(RegistryKey root)
  151.         {
  152.             var subkey = GetSubKey();
  153.             return Registry.GetValue(root.Name + "\\" + subkey, Value, null);
  154.         }
  155.         
  156.         public static byte[] StringToByteArray(string hex) {
  157.             return Enumerable.Range(0, hex.Length)
  158.                 .Where(x => x % 2 == 0)
  159.                 .Select(x => Convert.ToByte(hex.Substring(x, 2), 16))
  160.                 .ToArray();
  161.         }
  162. 

  163.         public UninstallTaskStatus GetStatus()
  164.         {
  165.             try
  166.             {
  167.                 var roots = GetRoots();
  168. 

  169.                 foreach (var _root in roots)
  170.                 {
  171.                     var root = _root;
  172.                     var subKey = GetSubKey();
  173.                     
  174.                     if (root.Name.Contains("AME_UserHive_") && subKey.StartsWith("SOFTWARE\\Classes", StringComparison.CurrentCultureIgnoreCase))
  175.                     {
  176.                         var usersKey = RegistryKey.OpenBaseKey(RegistryHive.Users, RegistryView.Default);
  177. 

  178.                         root = usersKey.OpenSubKey(root.Name.Substring(11) + "_Classes", true);
  179.                         subKey = Regex.Replace(subKey, @"^SOFTWARE\\*Classes\\*", "", RegexOptions.IgnoreCase);
  180. 

  181.                         if (root == null)
  182.                         {
  183.                             continue;
  184.                         }
  185.                     }
  186.                     
  187.                     var openedSubKey = root.OpenSubKey(subKey);
  188. 

  189.                     if (openedSubKey == null && (Operation == RegistryValueOperation.Set || Operation == RegistryValueOperation.Delete))
  190.                         continue;
  191.                     if (openedSubKey == null) return UninstallTaskStatus.ToDo;
  192. 

  193.                     var value = openedSubKey.GetValue(Value);
  194. 

  195.                     if (value == null)
  196.                     {
  197.                         if (Operation == RegistryValueOperation.Set || Operation == RegistryValueOperation.Delete)
  198.                             continue;
  199. 

  200.                         return UninstallTaskStatus.ToDo;
  201.                     }
  202.                     if (Operation == RegistryValueOperation.Delete) return UninstallTaskStatus.ToDo;
  203. 

  204.                     if (Data == null) return UninstallTaskStatus.ToDo;
  205. 

  206. 

  207.                     bool matches;
  208.                     try
  209.                     {
  210.                         matches = Type switch
  211.                         {
  212.                             RegistryValueType.REG_SZ =>
  213.                                 Data.ToString() == value.ToString(),
  214.                             RegistryValueType.REG_EXPAND_SZ =>
  215.                                 // RegistryValueOptions.DoNotExpandEnvironmentNames above did not seem to work.

  216.                                 Environment.ExpandEnvironmentVariables(Data.ToString()) == value.ToString(),
  217.                             RegistryValueType.REG_MULTI_SZ =>
  218.                                 Data.ToString() == "" ?
  219.                                     ((string[])value).SequenceEqual(new string[] { }) :
  220.                                     ((string[])value).SequenceEqual(Data.ToString().Split(new string[] { "\\0" }, StringSplitOptions.None)),
  221.                             RegistryValueType.REG_DWORD =>
  222.                                 unchecked((int)Convert.ToUInt32(Data)) == (int)value,
  223.                             RegistryValueType.REG_QWORD =>
  224.                                 Convert.ToUInt64(Data) == (ulong)value,
  225.                             RegistryValueType.REG_BINARY =>
  226.                                 ((byte[])value).SequenceEqual(StringToByteArray(Data.ToString())),
  227.                             RegistryValueType.REG_NONE =>
  228.                                 ((byte[])value).SequenceEqual(new byte[0]),
  229.                             RegistryValueType.REG_UNKNOWN =>
  230.                                 Data.ToString() == value.ToString(),
  231.                             _ => throw new ArgumentException("Impossible.")
  232.                         };
  233.                     }
  234.                     catch (InvalidCastException)
  235.                     {
  236.                         matches = false;
  237.                     }
  238.                     if (!matches) return UninstallTaskStatus.ToDo;
  239.                 }
  240.             }
  241.             catch (Exception e)
  242.             {
  243.                 ErrorLogger.WriteToErrorLog(e.Message,
  244.                     e.StackTrace, "RegistryValueAction Error");
  245.                 return UninstallTaskStatus.ToDo;
  246.             }
  247. 

  248.             return UninstallTaskStatus.Completed;
  249.         }
  250. 

  251.         public async Task<bool> RunTask()
  252.         {
  253. 

  254.             Console.WriteLine($"{Operation.ToString().TrimEnd('e')}ing value '{Value}' in key '{KeyName}'...");
  255.             
  256.             var roots = GetRoots();
  257. 

  258.             foreach (var _root in roots)
  259.             {
  260.                 var root = _root;
  261.                 var subKey = GetSubKey();
  262.                 try
  263.                 {
  264.                     if (root.Name.Contains("AME_UserHive_") && subKey.StartsWith("SOFTWARE\\Classes", StringComparison.CurrentCultureIgnoreCase))
  265.                     {
  266.                         var usersKey = RegistryKey.OpenBaseKey(RegistryHive.Users, RegistryView.Default);
  267. 

  268.                         root = usersKey.OpenSubKey(root.Name.Substring(11) + "_Classes", true);
  269.                         subKey = Regex.Replace(subKey, @"^SOFTWARE\\*Classes\\*", "", RegexOptions.IgnoreCase);
  270. 

  271.                         if (root == null)
  272.                         {
  273.                             ErrorLogger.WriteToErrorLog($"User classes hive not found for hive {_root.Name}.",
  274.                                 Environment.StackTrace, "RegistryValueAction Error");
  275.                             continue;
  276.                         }
  277.                     }
  278. 

  279.                     if (GetCurrentValue(root) == Data) continue;
  280. 

  281.                     if (root.OpenSubKey(subKey) == null && Operation == RegistryValueOperation.Set) continue;
  282.                     if (root.OpenSubKey(subKey) == null && Operation == RegistryValueOperation.Add) root.CreateSubKey(subKey);
  283. 

  284.                     if (Operation == RegistryValueOperation.Delete)
  285.                     {
  286.                         var key = root.OpenSubKey(subKey, true);
  287.                         key?.DeleteValue(Value);
  288.                         continue;
  289.                     }
  290. 

  291.                     if (Type == RegistryValueType.REG_BINARY)
  292.                     {
  293.                         var data = StringToByteArray(Data.ToString());
  294. 

  295.                         Registry.SetValue(root.Name + "\\" + subKey, Value, data, (RegistryValueKind)Type);
  296.                     }
  297.                     else if (Type == RegistryValueType.REG_DWORD)
  298.                     {
  299.                         // DWORD values using the highest bit set fail without this, for example '2962489444'.

  300.                         // See https://stackoverflow.com/questions/6608400/how-to-put-a-dword-in-the-registry-with-the-highest-bit-set;

  301.                         var value = unchecked((int)Convert.ToUInt32(Data));
  302.                         Registry.SetValue(root.Name + "\\" + subKey, Value, value, (RegistryValueKind)Type);
  303.                     }
  304.                     else if (Type == RegistryValueType.REG_QWORD)
  305.                     {
  306.                         Registry.SetValue(root.Name + "\\" + subKey, Value, Convert.ToUInt64(Data), (RegistryValueKind)Type);
  307.                     }
  308.                     else if (Type == RegistryValueType.REG_NONE)
  309.                     {
  310.                         byte[] none = new byte[0];
  311. 

  312.                         Registry.SetValue(root.Name + "\\" + subKey, Value, none, (RegistryValueKind)Type);
  313.                     }
  314.                     else if (Type == RegistryValueType.REG_MULTI_SZ)
  315.                     {
  316.                         string[] data;
  317.                         if (Data.ToString() == "") data = new string[] { };
  318.                         else data = Data.ToString().Split(new string[] { "\\0" }, StringSplitOptions.None);
  319. 

  320.                         Registry.SetValue(root.Name + "\\" + subKey, Value, data, (RegistryValueKind)Type);
  321.                     }
  322.                     else
  323.                     {
  324.                         Registry.SetValue(root.Name + "\\" + subKey, Value, Data, (RegistryValueKind)Type);
  325.                     }
  326.                 }
  327.                 catch (Exception e)
  328.                 {
  329.                     ErrorLogger.WriteToErrorLog(e.Message,
  330.                         e.StackTrace, "RegistryValueAction Error", root?.Name + "\\" + subKey);
  331.                 }
  332.             }
  333.             return true;
  334.         }
  335.     }
  336. }