archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pki/chain/callctx.cpp

355 lines
10 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows NT Security
  4. // Copyright (C) Microsoft Corporation, 1997 - 1999
  5. //
  6. // File: callctx.cpp
  7. //
  8. // Contents: Certificate Chaining Infrastructure Call Context
  9. //
  10. // History: 02-Mar-98 kirtd Created
  11. //
  12. //----------------------------------------------------------------------------
  13. #include <global.hxx>
  14. //+---------------------------------------------------------------------------
  15. //
  16. // Member: CChainCallContext::CChainCallContext, public
  17. //
  18. // Synopsis: Constructor
  19. //
  20. //----------------------------------------------------------------------------
  21. CChainCallContext::CChainCallContext (
  22. IN PCCERTCHAINENGINE pChainEngine,
  23. IN OPTIONAL LPFILETIME pRequestedTime,
  24. IN OPTIONAL PCERT_CHAIN_PARA pChainPara,
  25. IN DWORD dwFlags,
  26. OUT BOOL& rfResult
  27. )
  28. {
  29. LRU_CACHE_CONFIG Config;
  31. m_hObjectCreationCache = NULL;
  32. m_pChainEngine = pChainEngine;
  33. GetSystemTimeAsFileTime(&m_CurrentTime);
  34. if (pRequestedTime)
  35. m_RequestedTime = *pRequestedTime;
  36. else
  37. m_RequestedTime = m_CurrentTime;
  38. m_dwCallFlags = dwFlags;
  39. m_dwStatus = 0;
  40. m_dwTouchEngineCount = 0;
  41. // m_RevEndTime = // Initialized by RevocationUrlRetrievalTimeout()
  43. m_dwAIAUrlRetrievalCount = 0;
  44. // m_AIAEndTime = // Initialized by AIAUrlRetrievalTimeout()
  46. memset(&m_ChainPara, 0, sizeof(m_ChainPara));
  47. if (NULL != pChainPara)
  48. memcpy(&m_ChainPara, pChainPara, min(pChainPara->cbSize,
  49. sizeof(m_ChainPara)));
  50. m_ChainPara.cbSize = sizeof(m_ChainPara);
  52. if (0 == m_ChainPara.dwUrlRetrievalTimeout) {
  53. m_ChainPara.dwUrlRetrievalTimeout =
  54. pChainEngine->UrlRetrievalTimeout();
  55. m_fDefaultUrlRetrievalTimeout =
  56. pChainEngine->HasDefaultUrlRetrievalTimeout();
  57. } else
  58. m_fDefaultUrlRetrievalTimeout = FALSE;
  61. memset( &Config, 0, sizeof( Config ) );
  63. Config.dwFlags = LRU_CACHE_NO_SERIALIZE | LRU_CACHE_NO_COPY_IDENTIFIER;
  64. Config.pfnHash = CertObjectCacheHashMd5Identifier;
  65. Config.pfnOnRemoval = CallContextOnCreationCacheObjectRemoval;
  66. Config.cBuckets = DEFAULT_CREATION_CACHE_BUCKETS;
  68. rfResult = I_CryptCreateLruCache( &Config, &m_hObjectCreationCache );
  69. }
  71. //+---------------------------------------------------------------------------
  72. //
  73. // Member: CChainCallContext::~CChainCallContext, public
  74. //
  75. // Synopsis: Destructor
  76. //
  77. //----------------------------------------------------------------------------
  78. CChainCallContext::~CChainCallContext ()
  79. {
  80. if ( m_hObjectCreationCache != NULL )
  81. {
  82. I_CryptFreeLruCache( m_hObjectCreationCache, 0, NULL );
  83. }
  84. }
  86. //+---------------------------------------------------------------------------
  87. //
  88. // Member: CChainCallContext::AddPathObjectToCreationCache, public
  89. //
  90. // Synopsis: add a path object to the creation cache
  91. //
  92. //----------------------------------------------------------------------------
  93. BOOL
  94. CChainCallContext::AddPathObjectToCreationCache (
  95. IN PCCHAINPATHOBJECT pPathObject
  96. )
  97. {
  98. BOOL fResult;
  99. CRYPT_DATA_BLOB DataBlob;
  100. HLRUENTRY hEntry;
  102. DataBlob.cbData = CHAINHASHLEN;
  103. DataBlob.pbData = pPathObject->CertObject()->CertHash();
  105. fResult = I_CryptCreateLruEntry(
  106. m_hObjectCreationCache,
  107. &DataBlob,
  108. pPathObject,
  109. &hEntry
  110. );
  112. if ( fResult == TRUE )
  113. {
  114. I_CryptInsertLruEntry( hEntry, pPathObject );
  115. I_CryptReleaseLruEntry( hEntry );
  116. }
  118. return( fResult );
  119. }
  121. //+---------------------------------------------------------------------------
  122. //
  123. // Member: CChainCallContext::FindPathObjectInCreationCache, public
  124. //
  125. // Synopsis: find a path object in the creation cache
  126. //
  127. //----------------------------------------------------------------------------
  128. PCCHAINPATHOBJECT
  129. CChainCallContext::FindPathObjectInCreationCache (
  130. IN BYTE rgbCertHash[ CHAINHASHLEN ]
  131. )
  132. {
  133. HLRUENTRY hFound;
  134. PCCHAINPATHOBJECT pFound = NULL;
  135. CRYPT_DATA_BLOB DataBlob;
  137. DataBlob.cbData = CHAINHASHLEN;
  138. DataBlob.pbData = rgbCertHash;
  140. hFound = I_CryptFindLruEntry( m_hObjectCreationCache, &DataBlob );
  141. if ( hFound != NULL )
  142. {
  143. pFound = (PCCHAINPATHOBJECT)I_CryptGetLruEntryData( hFound );
  145. I_CryptReleaseLruEntry( hFound );
  146. }
  148. return( pFound );
  149. }
  151. //+---------------------------------------------------------------------------
  152. //
  153. // Member: CChainCallContext::RemovePathObjectFromCreationCache, public
  154. //
  155. // Synopsis: remove the specified path object from the creation cache
  156. //
  157. //----------------------------------------------------------------------------
  158. VOID
  159. CChainCallContext::RemovePathObjectFromCreationCache (
  160. IN PCCHAINPATHOBJECT pPathObject
  161. )
  162. {
  163. HLRUENTRY hEntry;
  164. CRYPT_DATA_BLOB DataBlob;
  166. DataBlob.cbData = CHAINHASHLEN;
  167. DataBlob.pbData = pPathObject->CertObject()->CertHash();
  169. hEntry = I_CryptFindLruEntry( m_hObjectCreationCache, &DataBlob );
  170. while (NULL != hEntry) {
  171. PCCHAINPATHOBJECT pFound;
  173. pFound = (PCCHAINPATHOBJECT) I_CryptGetLruEntryData( hEntry );
  174. if (pFound == pPathObject) {
  175. I_CryptReleaseLruEntry( hEntry );
  176. I_CryptRemoveLruEntry( hEntry, 0, this );
  177. break;
  178. }
  180. hEntry = I_CryptEnumMatchingLruEntries(hEntry);
  181. }
  182. }
  185. DWORD CChainCallContext::RevocationUrlRetrievalTimeout()
  186. {
  187. DWORD dwRevTimeout;
  189. if (m_dwCallFlags & CERT_CHAIN_REVOCATION_ACCUMULATIVE_TIMEOUT)
  190. {
  191. if (m_dwStatus & CHAINCALLCONTEXT_REV_END_TIME_FLAG)
  192. {
  193. dwRevTimeout = I_CryptRemainingMilliseconds(&m_RevEndTime);
  194. if (0 == dwRevTimeout)
  195. dwRevTimeout = 1;
  196. }
  197. else
  198. {
  199. FILETIME ftCurrent;
  201. if (m_fDefaultUrlRetrievalTimeout)
  202. dwRevTimeout = DEFAULT_REV_ACCUMULATIVE_URL_RETRIEVAL_TIMEOUT;
  203. else
  204. dwRevTimeout = m_ChainPara.dwUrlRetrievalTimeout;
  206. GetSystemTimeAsFileTime(&ftCurrent);
  207. I_CryptIncrementFileTimeByMilliseconds(&ftCurrent,
  208. dwRevTimeout, &m_RevEndTime);
  209. m_dwStatus |= CHAINCALLCONTEXT_REV_END_TIME_FLAG;
  210. }
  211. }
  212. else
  213. {
  214. dwRevTimeout = m_ChainPara.dwUrlRetrievalTimeout;
  215. }
  217. return dwRevTimeout;
  218. }
  220. DWORD CChainCallContext::AIAUrlRetrievalTimeout()
  221. {
  222. DWORD dwAIATimeout;
  224. if (m_dwStatus & CHAINCALLCONTEXT_AIA_END_TIME_FLAG)
  225. {
  226. dwAIATimeout = I_CryptRemainingMilliseconds(&m_AIAEndTime) / 2;
  227. if (0 == dwAIATimeout)
  228. dwAIATimeout = 1;
  229. }
  230. else
  231. {
  232. FILETIME ftCurrent;
  234. dwAIATimeout = m_ChainPara.dwUrlRetrievalTimeout;
  236. GetSystemTimeAsFileTime(&ftCurrent);
  237. I_CryptIncrementFileTimeByMilliseconds(&ftCurrent,
  238. dwAIATimeout * 2, &m_AIAEndTime);
  239. m_dwStatus |= CHAINCALLCONTEXT_AIA_END_TIME_FLAG;
  240. }
  242. return dwAIATimeout;
  243. }
  246. BOOL
  247. CChainCallContext::IsOnline ()
  248. {
  249. if ( !(m_dwStatus & CHAINCALLCONTEXT_CHECKED_ONLINE_FLAG) )
  250. {
  251. if (!(m_pChainEngine->Flags() & CERT_CHAIN_CACHE_ONLY_URL_RETRIEVAL) &&
  252. !(m_dwCallFlags & CERT_CHAIN_CACHE_ONLY_URL_RETRIEVAL))
  253. {
  254. if ( ChainIsConnected() )
  255. {
  256. m_dwStatus |= CHAINCALLCONTEXT_ONLINE_FLAG;
  257. }
  258. }
  259. m_dwStatus |= CHAINCALLCONTEXT_CHECKED_ONLINE_FLAG;
  260. }
  262. if (m_dwStatus & CHAINCALLCONTEXT_ONLINE_FLAG)
  263. {
  264. return TRUE;
  265. }
  266. else
  267. {
  268. return FALSE;
  269. }
  270. }
  272. BOOL
  273. CChainCallContext::IsTouchedEngine ()
  274. {
  275. if (m_dwTouchEngineCount == m_pChainEngine->TouchEngineCount())
  276. return FALSE;
  277. else
  278. return TRUE;
  279. }
  281. //+---------------------------------------------------------------------------
  282. //
  283. // Function: CallContextCreateCallObject
  284. //
  285. // Synopsis: create a chain call context object
  286. //
  287. //----------------------------------------------------------------------------
  288. BOOL WINAPI
  289. CallContextCreateCallObject (
  290. IN PCCERTCHAINENGINE pChainEngine,
  291. IN OPTIONAL LPFILETIME pRequestedTime,
  292. IN OPTIONAL PCERT_CHAIN_PARA pChainPara,
  293. IN DWORD dwFlags,
  294. OUT PCCHAINCALLCONTEXT* ppCallContext
  295. )
  296. {
  297. BOOL fResult = FALSE;
  298. PCCHAINCALLCONTEXT pCallContext;
  300. pCallContext = new CChainCallContext(
  301. pChainEngine,
  302. pRequestedTime,
  303. pChainPara,
  304. dwFlags,
  305. fResult
  306. );
  307. if ( pCallContext == NULL )
  308. {
  309. SetLastError( (DWORD) E_OUTOFMEMORY );
  310. return( FALSE );
  311. }
  313. if ( fResult == TRUE )
  314. {
  315. *ppCallContext = pCallContext;
  316. }
  317. else
  318. {
  319. CallContextFreeCallObject( pCallContext );
  320. }
  322. return( fResult );
  323. }
  325. //+---------------------------------------------------------------------------
  326. //
  327. // Function: CallContextFreeCallObject
  328. //
  329. // Synopsis: free the chain call context object
  330. //
  331. //----------------------------------------------------------------------------
  332. VOID WINAPI
  333. CallContextFreeCallObject (
  334. IN PCCHAINCALLCONTEXT pCallContext
  335. )
  336. {
  337. delete pCallContext;
  338. }
  340. //+---------------------------------------------------------------------------
  341. //
  342. // Function: CallContextOnCreationCacheObjectRemoval
  343. //
  344. // Synopsis: removal notification callback
  345. //
  346. //----------------------------------------------------------------------------
  347. VOID WINAPI
  348. CallContextOnCreationCacheObjectRemoval (
  349. IN LPVOID pv,
  350. IN LPVOID pvRemovalContext
  351. )
  352. {
  353. delete (PCCHAINPATHOBJECT) pv;
  354. }