| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | hivex: Const-correctness fix on header_checksum (thanks Jim Meyering). | Richard Jones | 2010-01-28 | 1 | -1/+1 |
| | | |||||
| * | hivex: Update some previously unknown nk-record fields. | Richard Jones | 2010-01-28 | 1 | -5/+11 |
| | | | | | | | Update these fields with what we found out from reverse engineering the file. Also bring the unknownX field names into line with visualizer.ml. | ||||
| * | hivex: Fix calculation of block size for vk data blocks. | Richard Jones | 2010-01-28 | 1 | -1/+1 |
| | | |||||
| * | hivex: Display incorrect block size as unsigned in an error message. | Richard Jones | 2010-01-28 | 1 | -1/+1 |
| | | |||||
| * | hivex: display bad block offset in hex | Richard Jones | 2010-01-28 | 1 | -1/+1 |
| | | |||||
| * | hivex: hive type in vk-record is an unsigned 32 bit int | Richard Jones | 2010-01-28 | 1 | -1/+1 |
| | | |||||
| * | hivex: Add missing le32toh conversion around field access. | Richard Jones | 2010-01-28 | 1 | -3/+3 |
| | | | | | | This was missing. It only worked because we test on a little endian platform. | ||||
| * | hivex: Clarify some more fields. | Richard Jones | 2010-01-28 | 1 | -2/+3 |
| | | | | | Taken from sentinelchicken.com documentation. | ||||
| * | hivex: Modify children/values functions to return intermediate blocks. | Richard Jones | 2010-01-28 | 1 | -70/+168 |
| | | | | | | | | | | | | Modify the functions that return child subnodes and values so they can also be used to return a list of the intermediate blocks. This is so we can delete those intermediate blocks (in a later commit). We also introduce an offset_list structure which is used for collecting lists of offsets, ie. lists of nodes, values or blocks. Note that this commit should not change the semantics of the code. | ||||
| * | hivex: Add value_any callback to the visitor. | Richard Jones | 2010-01-28 | 3 | -83/+101 |
| | | | | | | | | | | | The visitor currently contains lots of value_* callbacks, such as value_string which is called back when the value has type string. This is fine but it makes it complicated to deal with the case where you just want to see 'a value', and don't care about its type. The value_any callback allows visitors to see values generically. | ||||
| * | hivex: Move header checksum code into a function. | Richard Jones | 2010-01-28 | 1 | -8/+16 |
| | | | | | This function can be reused later. | ||||
| * | hivex: page 'offset_next' field is really 'page_size'. | Richard Jones | 2010-01-28 | 1 | -8/+8 |
| | | | | | | | | | The documentation, as usual, is contradictory. However this field is definitely the page size in all observed registries. Furthermore the following field marked 'unknown' is always zero, although this contradicts what the sentinelchicken.com paper says. | ||||
| * | hivex: Collect more statistics about registries. | Richard Jones | 2010-01-28 | 1 | -20/+31 |
| | | |||||
| * | hivex: Store filename in hive handle. | Richard Jones | 2010-01-28 | 1 | -0/+7 |
| | | |||||
| * | hivex: Various improvements in header parsing, thanks to better documentation. | Richard Jones | 2010-01-15 | 1 | -22/+74 |
| | | |||||
| * | hivex: Print header fields. Print all offsets in hex (in debug output). | Richard Jones | 2010-01-15 | 1 | -16/+26 |
| | | |||||
| * | hivex: Reenable checksum calculations, but don't check result. | Richard Jones | 2010-01-15 | 1 | -3/+4 |
| | | |||||
| * | hivex: Update documentation. | Richard Jones | 2010-01-15 | 1 | -0/+4 |
| | | |||||
| * | hivex: Send all debug messages to stderr. | Richard Jones | 2010-01-14 | 1 | -55/+55 |
| | | |||||
| * | hivex: Remove stray debugging message. | Richard Jones | 2010-01-14 | 1 | -1/+0 |
| | | |||||
| * | hivex: Documentation: Add environment variables section. | Richard Jones | 2010-01-14 | 1 | -0/+11 |
| | | |||||
| * | hivex: Whitespace change. | Richard Jones | 2010-01-14 | 1 | -1/+1 |
| | | |||||
| * | hivex: Move STR* macros into C file. | Richard Jones | 2010-01-14 | 2 | -10/+10 |
| | | | | | Don't pollute the public header file with these macros. | ||||
| * | hivex: Small updates to the documentation. | Richard Jones | 2010-01-14 | 2 | -8/+92 |
| | | |||||
| * | maint: use EXIT_* symbol (not constant, 2) to indicate key/path not found | Jim Meyering | 2009-11-20 | 1 | -2/+4 |
| | | | | | | * hivex/hivexget.c (EXIT_NOT_FOUND): Define. (main): Use exit (EXIT_NOT_FOUND), not "exit (2)". | ||||
| * | maint: use EXIT_SUCCESS and EXIT_FAILURE, not 0 and 1 to exit | Jim Meyering | 2009-11-20 | 2 | -13/+13 |
| | | | | | | | | | | | | | | | | Convert all uses automatically, via these two commands: git grep -l '\<exit *(1)' \ | grep -vEf .x-sc_prohibit_magic_number_exit \ | xargs --no-run-if-empty \ perl -pi -e 's/\b(exit ?)\(1\)/$1(EXIT_FAILURE)/' git grep -l '\<exit *(0)' \ | grep -vEf .x-sc_prohibit_magic_number_exit \ | xargs --no-run-if-empty \ perl -pi -e 's/\b(exit ?)\(0\)/$1(EXIT_SUCCESS)/' * .x-sc_prohibit_magic_number_exit: New file. Edit (RWMJ): Don't change Java code. | ||||
| * | use STREQ, not strcmp: part 1 | Jim Meyering | 2009-11-09 | 1 | -1/+1 |
| | | | | | | git grep -l 'strcmp *([^=]*== *0'|xargs \ perl -pi -e 's/\bstrcmp( *\(.*?\)) *== *0/STREQ$1/g' | ||||
| * | change strncmp() == 0 to STREQLEN() | Jim Meyering | 2009-11-09 | 1 | -1/+1 |
| | | | | | | git grep -l 'strncmp *([^=]*== *0'|xargs \ perl -pi -e 's/\bstrncmp( *\(.*?\)) *== *0\b/STREQLEN$1/g' | ||||
| * | convert uses of strcasecmp to STRCASEEQ | Jim Meyering | 2009-11-09 | 1 | -2/+2 |
| | | | | | | git grep -l 'strcasecmp *([^=]*== *0'| xargs \ perl -pi -e 's/\bstrcasecmp( *\(.*?\)) *== *0/STRCASEEQ$1/' | ||||
| * | define STREQ, STRNEQ, STREQLEN, STRCASEQ, etc. | Jim Meyering | 2009-11-09 | 1 | -0/+10 |
| | | | | | | | * src/guestfs.h: Define STREQ and company. * daemon/daemon.h: Likewise. * hivex/hivex.h: Likewise. | ||||
| * | indent with spaces, not TABs | Jim Meyering | 2009-11-09 | 1 | -6/+6 |
| | | | | | | | | | | | | * HACKING: Expand indentation TABs. * configure.ac: Likewise. * daemon/daemon.h: Likewise. * daemon/guestfsd.c: Likewise. * fuse/guestmount.c: Likewise. * hivex/LICENSE: Likewise. * src/generator.ml: Likewise. * tools/virt-win-reg: Likewise. | ||||
| * | placate 'make syntax-check' | Jim Meyering | 2009-11-09 | 1 | -1/+0 |
| | | | | | * hivex/hivex.c: Remove unused "#include <assert.h>". | ||||
| * | hivex: fail upon integer overflow | Jim Meyering | 2009-11-04 | 1 | -0/+3 |
| | | | | | | * hivex/hivex.c (windows_utf16_to_utf8): Avoid overflow and a potential infloop. | ||||
| * | hivex: Check unchecked calloc (Jim Meyering). | Richard Jones | 2009-11-04 | 1 | -0/+2 |
| | | |||||
| * | Add HTML documentation to website. | Richard Jones | 2009-10-29 | 1 | -0/+29 |
| | | |||||
| * | Fix misspelling in previous commit. | Richard Jones | 2009-10-29 | 1 | -2/+2 |
| | | |||||
| * | RHEL 5: Also add le{16,64}toh functions | Richard Jones | 2009-10-29 | 1 | -0/+12 |
| | | |||||
| * | RHEL 5: Detect endianness functions and supply them. | Richard Jones | 2009-10-29 | 3 | -1/+34 |
| | | |||||
| * | Prepare for version 1.0.75. | Richard Jones | 2009-10-29 | 1 | -1/+1 |
| | | |||||
| * | Support for Windows Registry. | Richard Jones | 2009-10-29 | 10 | -0/+3271 |
| In hivex/: This mini-library allows us to extract Windows Registry binary files ("hives"). There are also two tools: hivexml converts a hive to a self-describing XML format. hivexget can be used to extract single subkeys from a hive. New tool: virt-win-reg. This is a wrapper around the library functionality allowing you to pull out data from the registries of Windows guests. | |||||
 |
index : libguestfs.git | |
| [MIRROR] library for accessing and modifying guest disk images | FAS Richard W.M. Jones |
| summaryrefslogtreecommitdiffstats |