[Bug 48981] New: Riot Vanguard (Riot Games) needs Microsoft Kernel Mode Cryptographic Primitives Library 'cng.sys'

WineHQ Bugzilla wine-bugs at winehq.org
Mon Apr 20 18:27:17 CDT 2020 

https://bugs.winehq.org/show_bug.cgi?id=48981

            Bug ID: 48981
           Summary: Riot Vanguard (Riot Games) needs Microsoft Kernel Mode
                    Cryptographic Primitives Library 'cng.sys'
           Product: Wine
           Version: 5.6
          Hardware: x86-64
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: -unknown
          Assignee: wine-bugs at winehq.org
          Reporter: focht at gmx.net
      Distribution: ---

Hello folks,

as it says. There are some fixes required prior to come to this place. I'll
create/reference more bug reports later for them.

There is a public document which describes the module and the API:

https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp1328.pdf

--- quote ---
Microsoft Windows7 Kernel Mode Cryptographic Primitives Library (cng.sys)

Microsoft Windows 7 Operating System

FIPS 140-2 Security Policy Document 

This document specifies the security policy for the Microsoft Kernel Mode
Cryptographic Primitives Library (CNG.SYS) as described in FIPS PUB 140-2. 

January 16, 2013 

Document Version: 2.2
--- quote ---

--- snip ---
...
The vgk service is starting.
002d:trace:loaddll:load_native_dll Loaded
L"C:\\windows\\system32\\kernelbase.dll" at 0x7b000000: PE builtin
002d:trace:loaddll:load_so_dll Loaded L"C:\\windows\\system32\\kernel32.dll" at
0x7b410000: builtin
002d:trace:loaddll:load_native_dll Loaded
L"C:\\windows\\system32\\winedevice.exe" at 0x140000000: PE builtin
002d:trace:loaddll:load_so_dll Loaded L"C:\\windows\\system32\\advapi32.dll" at
0x7f39a2c80000: builtin
002d:trace:loaddll:load_so_dll Loaded L"C:\\windows\\system32\\msvcrt.dll" at
0x7f39a2aa0000: builtin
002d:trace:loaddll:load_native_dll Loaded
L"C:\\windows\\system32\\ntoskrnl.exe" at 0x180000000: PE builtin
002d:trace:loaddll:load_so_dll Loaded L"C:\\windows\\system32\\ucrtbase.dll" at
0x7f39a2970000: builtin
002d:trace:loaddll:load_native_dll Loaded L"C:\\windows\\system32\\rpcrt4.dll"
at 0x9b0000: PE builtin
002f:trace:ntoskrnl:ZwLoadDriver
(L"\\Registry\\Machine\\System\\CurrentControlSet\\Services\\vgk")
002f:trace:ntoskrnl:open_driver opened service for driver
L"\\Registry\\Machine\\System\\CurrentControlSet\\Services\\vgk"
002f:trace:ntoskrnl:IoCreateDriver (L"\\Driver\\vgk", 00000001800132F0)
002f:trace:ntoskrnl:load_driver loading driver L"C:\\Program Files\\Riot
Vanguard\\vgk.sys"
002f:err:module:import_dll Library cng.sys (which is needed by L"C:\\Program
Files\\Riot Vanguard\\vgk.sys") not found
002f:trace:ntoskrnl:IoDeleteDriver (0000000000723070)
002f:trace:ntoskrnl:ObDereferenceObject (0000000000723070) ref=0
002f:err:ntoskrnl:ZwLoadDriver failed to create driver
L"\\Registry\\Machine\\System\\CurrentControlSet\\Services\\vgk": c0000142
DLL initialization failed.
--- snip ---

Only two 'cng.sys' functions are currently imported:

--- snip ---
$ winedump -j import vgk.sys
Contents of vgk.sys: 3196560 bytes

Import Table size: 00000050
  offset 0001e090 cng.sys
  Hint/Name Table: 00022108
  TimeDateStamp:   00000000 (Thu Jan  1 01:00:00 1970)
  ForwarderChain:  00000000
  First thunk RVA: 0001B028
   Thunk    Ordn  Name
  0001b028     8  BCryptDestroyHash
  0001b030     1  BCryptCloseAlgorithmProvider

...

Done dumping vgk.sys
--- snip ---

$ wine --version
wine-5.6-258-gf31a29b8d1

Regards

-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

More information about the wine-bugs mailing list