Alexandre wrote:
I don't think a non null-terminated MULTI_SZ string is very useful. Do you really have an app that depends on this?
http://www.xpregistrycleaner.com/embedded-null-characters/ claims "some software vendors use the embedded-null registry key technique as a way to enforce the software license agreement and to reduce the ability of users to tamper with the license information stored in these registry keys."
http://forum.sysinternals.com/forum_posts.asp?TID=6030 claims "iuVCR (www.iulabs.com) 4.11.0.374" might be such an app.
http://forum.sysinternals.com/forum_posts.asp?TID=2628 says "The Aladdin Privilege Software Commerce Platform (SCP) may be a common denominator for instances of Registry keys with embedded nulls detected by RKR. ... [One app that seemed to use them was] a free trial of Adobe Acrobat Professional 6.0."
http://forum.sysinternals.com/forum_posts.asp?TID=8882&PN=1 mentions that Windows itself uses keys with trailing nulls for some things.
And of course there's all that splendid malware. - Dan
"Dan Kegel" dank@kegel.com writes:
Alexandre wrote:
I don't think a non null-terminated MULTI_SZ string is very useful. Do you really have an app that depends on this?
http://www.xpregistrycleaner.com/embedded-null-characters/ claims "some software vendors use the embedded-null registry key technique as a way to enforce the software license agreement and to reduce the ability of users to tamper with the license information stored in these registry keys."
Embedded nulls should work just fine. The case that doesn't work is string values that aren't properly null-terminated.
On 07/01/2008, Alexandre Julliard julliard@winehq.org wrote:
"Dan Kegel" dank@kegel.com writes:
Alexandre wrote:
I don't think a non null-terminated MULTI_SZ string is very useful. Do you really have an app that depends on this?
http://www.xpregistrycleaner.com/embedded-null-characters/ claims "some software vendors use the embedded-null registry key technique as a way to enforce the software license agreement and to reduce the ability of users to tamper with the license information stored in these registry keys."
Embedded nulls should work just fine. The case that doesn't work is string values that aren't properly null-terminated.
Is it possible to use a format like:
Message="Hello"
[using the quotes to determine the start/end of the string - this would require processing on the string data, though]
or
Message=(5)Hello
[encoding the length in the stored data - this does not need any processing, and counts any nulls if there are any]
- Reece
-
Alexandre Julliard -
Dan Kegel -
Reece Dunn