archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/services/ca/certadm/admin.cpp

1103 lines
26 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 1999
  5. //
  6. // File: admin.cpp
  7. //
  8. // Contents: Cert Server admin implementation
  9. //
  10. // History: 24-Aug-96 vich created
  11. //
  12. //---------------------------------------------------------------------------
  14. #include "pch.cpp"
  16. #pragma hdrstop
  18. #include <objbase.h>
  19. #include "certsrvd.h"
  21. #include "certbcli.h"
  22. #include "csprop.h"
  23. #include "csdisp.h"
  24. #include "admin.h"
  25. #include "certadmp.h"
  26. #include "config.h"
  28. #define __dwFILE__ __dwFILE_CERTADM_ADMIN_CPP__
  31. //+--------------------------------------------------------------------------
  32. // CCertAdmin::~CCertAdmin -- destructor
  33. //
  34. // free memory associated with this instance
  35. //+--------------------------------------------------------------------------
  37. CCertAdmin::~CCertAdmin()
  38. {
  39. _Cleanup();
  40. }
  43. //+--------------------------------------------------------------------------
  44. // CCertAdmin::_CleanupOldConnection -- free memory
  45. //
  46. // free memory associated with this instance
  47. //+--------------------------------------------------------------------------
  49. VOID
  50. CCertAdmin::_CleanupOldConnection()
  51. {
  52. _CleanupCAPropInfo();
  53. }
  56. //+--------------------------------------------------------------------------
  57. // CCertAdmin::_Cleanup -- free memory
  58. //
  59. // free memory associated with this instance
  60. //+--------------------------------------------------------------------------
  62. VOID
  63. CCertAdmin::_Cleanup()
  64. {
  65. _CloseConnection();
  66. _CleanupOldConnection();
  67. }
  70. //+--------------------------------------------------------------------------
  71. // CCertAdmin::_OpenConnection -- get DCOM object interface
  72. //
  73. //+--------------------------------------------------------------------------
  75. HRESULT
  76. CCertAdmin::_OpenConnection(
  77. IN WCHAR const *pwszConfig,
  78. IN DWORD RequiredVersion,
  79. OUT WCHAR const **ppwszAuthority)
  80. {
  81. HRESULT hr;
  83. hr = myOpenAdminDComConnection(
  84. pwszConfig,
  85. ppwszAuthority,
  86. &m_pwszServerName,
  87. &m_dwServerVersion,
  88. &m_pICertAdminD);
  89. _JumpIfError(hr, error, "myOpenAdminDComConnection");
  91. CSASSERT(NULL != m_pICertAdminD);
  92. CSASSERT(0 != m_dwServerVersion);
  94. if (m_dwServerVersion < RequiredVersion)
  95. {
  96. hr = RPC_E_VERSION_MISMATCH;
  97. _JumpError(hr, error, "old server");
  98. }
  100. error:
  101. return(hr);
  102. }
  105. //+--------------------------------------------------------------------------
  106. // CCertAdmin::_CloseConnection -- release DCOM object
  107. //
  108. //+--------------------------------------------------------------------------
  110. VOID
  111. CCertAdmin::_CloseConnection()
  112. {
  113. myCloseDComConnection((IUnknown **) &m_pICertAdminD, &m_pwszServerName);
  114. m_dwServerVersion = 0;
  115. }
  118. //+--------------------------------------------------------------------------
  119. // CCertAdmin::IsValidCertificate -- Verify certificate validity
  120. //
  121. // ...
  122. //
  123. // Returns S_OK on success.
  124. //+--------------------------------------------------------------------------
  126. STDMETHODIMP
  127. CCertAdmin::IsValidCertificate(
  128. /* [in] */ BSTR const strConfig,
  129. /* [in] */ BSTR const strSerialNumber,
  130. /* [out, retval] */ LONG *pDisposition)
  131. {
  132. HRESULT hr;
  133. WCHAR const *pwszAuthority;
  135. if (NULL == strSerialNumber || NULL == pDisposition)
  136. {
  137. hr = E_POINTER;
  138. _JumpError(hr, error, "NULL parm");
  139. }
  141. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  142. _JumpIfError(hr, error, "_OpenConnection");
  144. m_fRevocationReasonValid = FALSE;
  145. __try
  146. {
  147. hr = m_pICertAdminD->IsValidCertificate(
  148. pwszAuthority,
  149. strSerialNumber,
  150. &m_RevocationReason,
  151. pDisposition);
  153. if (S_OK != hr || CA_DISP_REVOKED != *pDisposition)
  154. {
  155. m_fRevocationReasonValid = FALSE;
  156. }
  157. else
  158. {
  159. m_fRevocationReasonValid = TRUE;
  160. }
  161. }
  162. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  163. {
  164. }
  165. _JumpIfError(hr, error, "IsValidCertificate");
  167. m_fRevocationReasonValid = TRUE;
  169. error:
  170. hr = myHError(hr);
  171. return(_SetErrorInfo(hr, L"CCertAdmin::IsValidCertificate"));
  172. }
  175. //+--------------------------------------------------------------------------
  176. // CCertAdmin::GetRevocationReason -- Get Revocation Reason
  177. //
  178. // ...
  179. //
  180. // Returns S_OK on success.
  181. //+--------------------------------------------------------------------------
  183. STDMETHODIMP
  184. CCertAdmin::GetRevocationReason(
  185. /* [out, retval] */ LONG *pReason)
  186. {
  187. HRESULT hr = S_OK;
  189. if (NULL == pReason)
  190. {
  191. hr = E_POINTER;
  192. _JumpError(hr, error, "NULL parm");
  193. }
  194. if (!m_fRevocationReasonValid)
  195. {
  196. hr = E_UNEXPECTED;
  197. _JumpError(hr, error, "m_fRevocationReasonValid");
  198. }
  199. *pReason = m_RevocationReason;
  201. error:
  202. return(_SetErrorInfo(hr, L"CCertAdmin::GetRevocationReason"));
  203. }
  206. //+--------------------------------------------------------------------------
  207. // CCertAdmin::RevokeCertificate -- Revoke a certificate
  208. //
  209. // ...
  210. //
  211. // Returns S_OK on success.
  212. //+--------------------------------------------------------------------------
  214. STDMETHODIMP
  215. CCertAdmin::RevokeCertificate(
  216. /* [in] */ BSTR const strConfig,
  217. /* [in] */ BSTR const strSerialNumber,
  218. /* [in] */ LONG Reason,
  219. /* [in] */ DATE Date)
  220. {
  221. HRESULT hr;
  222. WCHAR const *pwszAuthority;
  223. FILETIME ft;
  225. if (NULL == strConfig || NULL == strSerialNumber)
  226. {
  227. hr = E_POINTER;
  228. _JumpError(hr, error, "NULL parm");
  229. }
  230. hr = myDateToFileTime(&Date, &ft);
  231. _JumpIfError(hr, error, "myDateToFileTime");
  233. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  234. _JumpIfError(hr, error, "_OpenConnection");
  236. __try
  237. {
  238. hr = m_pICertAdminD->RevokeCertificate(
  239. pwszAuthority,
  240. strSerialNumber,
  241. Reason,
  242. ft);
  243. }
  244. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  245. {
  246. }
  247. _JumpIfError(hr, error, "RevokeCertificate");
  249. error:
  250. hr = myHError(hr);
  251. return(_SetErrorInfo(hr, L"CCertAdmin::RevokeCertificate"));
  252. }
  255. //+--------------------------------------------------------------------------
  256. // CCertAdmin::SetRequestAttributes -- Add request attributes
  257. //
  258. // ...
  259. //
  260. // Returns S_OK on success.
  261. //+--------------------------------------------------------------------------
  263. STDMETHODIMP
  264. CCertAdmin::SetRequestAttributes(
  265. /* [in] */ BSTR const strConfig,
  266. /* [in] */ LONG RequestId,
  267. /* [in] */ BSTR const strAttributes)
  268. {
  269. HRESULT hr;
  270. WCHAR const *pwszAuthority;
  272. if (NULL == strAttributes)
  273. {
  274. hr = E_POINTER;
  275. _JumpError(hr, error, "NULL parm");
  276. }
  277. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  278. _JumpIfError(hr, error, "_OpenConnection");
  280. __try
  281. {
  282. hr = m_pICertAdminD->SetAttributes(
  283. pwszAuthority,
  284. (DWORD) RequestId,
  285. strAttributes);
  286. }
  287. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  288. {
  289. }
  290. _JumpIfError(hr, error, "SetAttributes");
  292. error:
  293. hr = myHError(hr);
  294. return(_SetErrorInfo(hr, L"CCertAdmin::SetRequestAttributes"));
  295. }
  298. //+--------------------------------------------------------------------------
  299. // CCertAdmin::SetCertificateExtension -- Set a Certificate Extension
  300. //
  301. // ...
  302. //
  303. // Returns S_OK on success.
  304. //+--------------------------------------------------------------------------
  306. STDMETHODIMP
  307. CCertAdmin::SetCertificateExtension(
  308. /* [in] */ BSTR const strConfig,
  309. /* [in] */ LONG RequestId,
  310. /* [in] */ BSTR const strExtensionName,
  311. /* [in] */ LONG Type,
  312. /* [in] */ LONG Flags,
  313. /* [in] */ VARIANT const *pvarValue)
  314. {
  315. HRESULT hr;
  316. WCHAR const *pwszAuthority;
  317. CERTTRANSBLOB ctbValue;
  319. ctbValue.pb = NULL;
  321. if (NULL == strExtensionName || NULL == pvarValue)
  322. {
  323. hr = E_POINTER;
  324. _JumpError(hr, error, "NULL parm");
  325. }
  326. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  327. _JumpIfError(hr, error, "_OpenConnection");
  329. hr = myMarshalVariant(pvarValue, Type, &ctbValue.cb, &ctbValue.pb);
  330. _JumpIfError(hr, error, "myMarshalVariant");
  332. __try
  333. {
  334. hr = m_pICertAdminD->SetExtension(
  335. pwszAuthority,
  336. (DWORD) RequestId,
  337. strExtensionName,
  338. Type,
  339. Flags,
  340. &ctbValue);
  341. }
  342. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  343. {
  344. }
  345. _JumpIfError(hr, error, "SetExtension");
  347. error:
  348. if (NULL != ctbValue.pb)
  349. {
  350. LocalFree(ctbValue.pb);
  351. }
  352. hr = myHError(hr);
  353. return(_SetErrorInfo(hr, L"CCertAdmin::SetCertificateExtension"));
  354. }
  357. //+--------------------------------------------------------------------------
  358. // CCertAdmin::ResubmitRequest -- Resubmit a certificate request
  359. //
  360. // ...
  361. //
  362. // Returns S_OK on success.
  363. //+--------------------------------------------------------------------------
  365. STDMETHODIMP
  366. CCertAdmin::ResubmitRequest(
  367. /* [in] */ BSTR const strConfig,
  368. /* [in] */ LONG RequestId,
  369. /* [out, retval] */ LONG *pDisposition)
  370. {
  371. HRESULT hr;
  372. WCHAR const *pwszAuthority;
  374. if (NULL == pDisposition)
  375. {
  376. hr = E_POINTER;
  377. _JumpError(hr, error, "NULL parm");
  378. }
  379. *pDisposition = 0;
  381. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  382. _JumpIfError(hr, error, "_OpenConnection");
  384. __try
  385. {
  386. hr = m_pICertAdminD->ResubmitRequest(
  387. pwszAuthority,
  388. (DWORD) RequestId,
  389. (DWORD *) pDisposition);
  390. }
  391. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  392. {
  393. }
  394. _JumpIfError(hr, error, "ResubmitRequest");
  396. error:
  397. hr = myHError(hr);
  398. return(_SetErrorInfo(hr, L"CCertAdmin::ResubmitRequest"));
  399. }
  402. //+--------------------------------------------------------------------------
  403. // CCertAdmin::DenyRequest -- Deny a certificate request
  404. //
  405. // ...
  406. //
  407. // Returns S_OK on success.
  408. //+--------------------------------------------------------------------------
  410. STDMETHODIMP
  411. CCertAdmin::DenyRequest(
  412. /* [in] */ BSTR const strConfig,
  413. /* [in] */ LONG RequestId)
  414. {
  415. HRESULT hr;
  416. WCHAR const *pwszAuthority;
  418. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  419. _JumpIfError(hr, error, "_OpenConnection");
  421. __try
  422. {
  423. hr = m_pICertAdminD->DenyRequest(pwszAuthority, (DWORD) RequestId);
  424. }
  425. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  426. {
  427. }
  428. _JumpIfError(hr, error, "DenyRequest");
  430. error:
  431. hr = myHError(hr);
  432. return(_SetErrorInfo(hr, L"CCertAdmin::DenyRequest"));
  433. }
  436. //+--------------------------------------------------------------------------
  437. // CCertAdmin::PublishCRL -- Puhlish a new CRL
  438. //
  439. // ...
  440. //
  441. // Returns S_OK on success.
  442. //+--------------------------------------------------------------------------
  444. STDMETHODIMP
  445. CCertAdmin::PublishCRL(
  446. /* [in] */ BSTR const strConfig,
  447. /* [in] */ DATE Date)
  448. {
  449. HRESULT hr;
  450. WCHAR const *pwszAuthority;
  451. FILETIME ft;
  453. // Date = 0.0 means pass ft = 0 to the DCOM interface
  455. if (Date == 0.0)
  456. {
  457. ZeroMemory(&ft, sizeof(FILETIME));
  458. }
  459. else // translate date to ft
  460. {
  461. hr = myDateToFileTime(&Date, &ft);
  462. _JumpIfError(hr, error, "myDateToFileTime");
  463. }
  465. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  466. _JumpIfError(hr, error, "_OpenConnection");
  468. __try
  469. {
  470. hr = m_pICertAdminD->PublishCRL(pwszAuthority, ft);
  471. }
  472. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  473. {
  474. }
  475. _JumpIfError(hr, error, "PublishCRL");
  477. error:
  478. hr = myHError(hr);
  479. return(_SetErrorInfo(hr, L"CCertAdmin::PublishCRL"));
  480. }
  483. //+--------------------------------------------------------------------------
  484. // CCertAdmin::PublishCRLs -- Publish new base CRL, delta CRL or both
  485. //
  486. // ...
  487. //
  488. // Returns S_OK on success.
  489. //+--------------------------------------------------------------------------
  491. HRESULT
  492. CCertAdmin::PublishCRLs(
  493. /* [in] */ BSTR const strConfig,
  494. /* [in] */ DATE Date,
  495. /* [in] */ LONG CRLFlags) // CA_CRL_*
  496. {
  497. HRESULT hr;
  498. WCHAR const *pwszAuthority;
  499. FILETIME ft;
  501. // Date = 0.0 means pass ft = 0 to the DCOM interface
  503. if (Date == 0.0)
  504. {
  505. ZeroMemory(&ft, sizeof(FILETIME));
  506. }
  507. else // translate date to ft
  508. {
  509. hr = myDateToFileTime(&Date, &ft);
  510. _JumpIfError(hr, error, "myDateToFileTime");
  511. }
  513. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  514. _JumpIfError(hr, error, "_OpenConnection");
  516. __try
  517. {
  518. hr = m_pICertAdminD->PublishCRLs(pwszAuthority, ft, CRLFlags);
  519. }
  520. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  521. {
  522. }
  523. _JumpIfError(hr, error, "PublishCRLs");
  525. error:
  526. hr = myHError(hr);
  527. return(_SetErrorInfo(hr, L"CCertAdmin::PublishCRLs"));
  528. }
  531. //+--------------------------------------------------------------------------
  532. // CCertAdmin::GetCRL -- Get the latest CRL
  533. //
  534. // ...
  535. //
  536. // Returns S_OK on success.
  537. //+--------------------------------------------------------------------------
  539. STDMETHODIMP
  540. CCertAdmin::GetCRL(
  541. /* [in] */ BSTR const strConfig,
  542. /* [in] */ LONG Flags,
  543. /* [out, retval] */ BSTR *pstrCRL)
  544. {
  545. HRESULT hr;
  546. WCHAR const *pwszAuthority;
  547. CERTTRANSBLOB ctbCRL;
  549. ctbCRL.pb = NULL;
  551. if (NULL == pstrCRL)
  552. {
  553. hr = E_POINTER;
  554. _JumpError(hr, error, "NULL parm");
  555. }
  557. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  558. _JumpIfError(hr, error, "_OpenConnection");
  560. ctbCRL.cb = 0;
  561. __try
  562. {
  563. hr = m_pICertAdminD->GetCRL(pwszAuthority, &ctbCRL);
  564. }
  565. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  566. {
  567. }
  568. _JumpIfError(hr, error, "GetCRL");
  570. myRegisterMemAlloc(ctbCRL.pb, ctbCRL.cb, CSM_COTASKALLOC);
  572. CSASSERT(CR_OUT_BASE64HEADER == CRYPT_STRING_BASE64HEADER);
  574. if (CR_OUT_BASE64HEADER == Flags)
  575. {
  576. Flags = CRYPT_STRING_BASE64X509CRLHEADER;
  577. }
  578. hr = EncodeCertString(ctbCRL.pb, ctbCRL.cb, Flags, pstrCRL);
  579. _JumpIfError(hr, error, "EncodeCertString");
  581. error:
  582. if (NULL != ctbCRL.pb)
  583. {
  584. CoTaskMemFree(ctbCRL.pb);
  585. }
  586. hr = myHError(hr);
  587. return(_SetErrorInfo(hr, L"CCertAdmin::GetCRL"));
  588. }
  591. //+--------------------------------------------------------------------------
  592. // CCertAdmin::ImportCertificate -- Import a certificate into the database
  593. //
  594. // ...
  595. //
  596. // Returns S_OK on success.
  597. //+--------------------------------------------------------------------------
  599. STDMETHODIMP
  600. CCertAdmin::ImportCertificate(
  601. /* [in] */ BSTR const strConfig,
  602. /* [in] */ BSTR const strCertificate,
  603. /* [in] */ LONG Flags,
  604. /* [out, retval] */ LONG *pRequestId)
  605. {
  606. HRESULT hr;
  607. WCHAR const *pwszAuthority;
  608. CERTTRANSBLOB ctbCert;
  610. ctbCert.pb = NULL;
  611. if (NULL == strCertificate)
  612. {
  613. hr = E_POINTER;
  614. _JumpError(hr, error, "NULL parm");
  615. }
  617. hr = DecodeCertString(
  618. strCertificate,
  619. Flags & CR_IN_ENCODEMASK,
  620. &ctbCert.pb,
  621. &ctbCert.cb);
  622. _JumpIfError(hr, error, "DecodeCertString");
  624. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  625. _JumpIfError(hr, error, "_OpenConnection");
  627. __try
  628. {
  629. hr = m_pICertAdminD->ImportCertificate(
  630. pwszAuthority,
  631. &ctbCert,
  632. Flags,
  633. pRequestId);
  634. }
  635. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  636. {
  637. }
  638. _JumpIfError3(
  639. hr,
  640. error,
  641. "ImportCertificate",
  642. NTE_BAD_SIGNATURE,
  643. HRESULT_FROM_WIN32(ERROR_OBJECT_ALREADY_EXISTS));
  645. error:
  646. if (NULL != ctbCert.pb)
  647. {
  648. LocalFree(ctbCert.pb);
  649. }
  650. hr = myHError(hr);
  651. return(_SetErrorInfo(hr, L"CCertAdmin::ImportCertificate"));
  652. }
  655. //+--------------------------------------------------------------------------
  656. // CCertAdmin::GetArchivedKey -- Get archived, encrypted key in a PKCS7
  657. //
  658. // ...
  659. //
  660. // Returns S_OK on success.
  661. //+--------------------------------------------------------------------------
  663. STDMETHODIMP
  664. CCertAdmin::GetArchivedKey(
  665. /* [in] */ BSTR const strConfig,
  666. /* [in] */ LONG RequestId,
  667. /* [in] */ LONG Flags,
  668. /* [out, retval] */ BSTR *pstrArchivedKey)
  669. {
  670. HRESULT hr;
  671. WCHAR const *pwszAuthority;
  672. CERTTRANSBLOB ctbArchivedKey;
  674. ctbArchivedKey.pb = NULL;
  676. if (NULL == pstrArchivedKey)
  677. {
  678. hr = E_POINTER;
  679. _JumpError(hr, error, "NULL parm");
  680. }
  682. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  683. _JumpIfError(hr, error, "_OpenConnection");
  685. ctbArchivedKey.cb = 0;
  686. __try
  687. {
  688. hr = m_pICertAdminD->GetArchivedKey(
  689. pwszAuthority,
  690. RequestId,
  691. &ctbArchivedKey);
  692. }
  693. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  694. {
  695. }
  696. _JumpIfError(hr, error, "GetArchivedKey");
  698. myRegisterMemAlloc(
  699. ctbArchivedKey.pb,
  700. ctbArchivedKey.cb,
  701. CSM_COTASKALLOC);
  703. CSASSERT(CR_OUT_BASE64HEADER == CRYPT_STRING_BASE64HEADER);
  705. hr = EncodeCertString(
  706. ctbArchivedKey.pb,
  707. ctbArchivedKey.cb,
  708. Flags,
  709. pstrArchivedKey);
  710. _JumpIfError(hr, error, "EncodeCertString");
  712. error:
  713. if (NULL != ctbArchivedKey.pb)
  714. {
  715. CoTaskMemFree(ctbArchivedKey.pb);
  716. }
  717. hr = myHError(hr);
  718. return(_SetErrorInfo(hr, L"CCertAdmin::GetArchivedKey"));
  719. }
  722. //+--------------------------------------------------------------------------
  723. // CCertAdmin::GetConfigEntry -- get CA configuration entry
  724. //
  725. // ...
  726. //
  727. // Returns S_OK on success.
  728. //+--------------------------------------------------------------------------
  730. STDMETHODIMP
  731. CCertAdmin::GetConfigEntry(
  732. /* [in] */ BSTR const strConfig,
  733. /* [in] */ BSTR const strNodePath,
  734. /* [in] */ BSTR const strEntryName,
  735. /* [out, retval] */ VARIANT *pvarEntry)
  736. {
  737. HRESULT hr;
  738. WCHAR const *pwszAuthority;
  740. if (NULL == strEntryName || NULL == pvarEntry)
  741. {
  742. hr = E_POINTER;
  743. _JumpError(hr, error, "NULL parm");
  744. }
  746. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  748. __try
  749. {
  750. if(S_OK != hr)
  751. {
  752. hr = _GetConfigEntryFromRegistry(
  753. strConfig,
  754. strNodePath,
  755. strEntryName,
  756. pvarEntry);
  757. _LeaveIfError(hr, "_GetConfigEntryFromRegistry");
  758. }
  759. else
  760. {
  761. hr = m_pICertAdminD->GetConfigEntry(
  762. pwszAuthority,
  763. strNodePath,
  764. strEntryName,
  765. pvarEntry);
  766. _LeaveIfError(hr, "GetConfigEntry");
  768. myRegisterMemAlloc(pvarEntry, 0, CSM_VARIANT);
  769. }
  770. }
  771. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  772. {
  773. }
  775. _JumpIfError2(hr, error, "GetConfigEntry",
  776. HRESULT_FROM_WIN32(ERROR_FILE_NOT_FOUND));
  778. error:
  779. hr = myHError(hr);
  780. return(_SetErrorInfo(hr, L"CCertAdmin::GetConfigEntry"));
  781. }
  784. //+--------------------------------------------------------------------------
  785. // CCertAdmin::SetConfigEntry -- set CA configuration entry
  786. //
  787. // ...
  788. //
  789. // Returns S_OK on success.
  790. //+--------------------------------------------------------------------------
  792. STDMETHODIMP
  793. CCertAdmin::SetConfigEntry(
  794. /* [in] */ BSTR const strConfig,
  795. /* [in] */ BSTR const strNodePath,
  796. /* [in] */ BSTR const strEntryName,
  797. /* [in] */ VARIANT *pvarEntry)
  798. {
  799. HRESULT hr;
  800. WCHAR const *pwszAuthority;
  802. if (NULL == strEntryName || NULL == pvarEntry)
  803. {
  804. hr = E_POINTER;
  805. _JumpError(hr, error, "NULL parm");
  806. }
  808. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  810. __try
  811. {
  812. if(S_OK != hr)
  813. {
  814. hr = _SetConfigEntryFromRegistry(
  815. strConfig,
  816. strNodePath,
  817. strEntryName,
  818. pvarEntry);
  819. }
  820. else
  821. {
  822. hr = m_pICertAdminD->SetConfigEntry(
  823. pwszAuthority,
  824. strNodePath,
  825. strEntryName,
  826. pvarEntry);
  827. }
  828. }
  829. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  830. {
  831. }
  833. _JumpIfError(hr, error, "SetConfigEntry");
  835. error:
  836. hr = myHError(hr);
  837. return(_SetErrorInfo(hr, L"CCertAdmin::SetConfigEntry"));
  838. }
  841. //+--------------------------------------------------------------------------
  842. // CCertAdmin::ImportKey -- Archive Private Key
  843. //
  844. // ...
  845. //
  846. // Returns S_OK on success.
  847. //+--------------------------------------------------------------------------
  849. STDMETHODIMP
  850. CCertAdmin::ImportKey(
  851. /* [in] */ BSTR const strConfig,
  852. /* [in] */ LONG RequestId,
  853. /* [in] */ BSTR const strCertHash,
  854. /* [in] */ LONG Flags,
  855. /* [in] */ BSTR const strKey)
  856. {
  857. HRESULT hr;
  858. WCHAR const *pwszAuthority;
  859. CERTTRANSBLOB ctbKey;
  861. ctbKey.pb = NULL;
  862. if (NULL == strKey)
  863. {
  864. hr = E_POINTER;
  865. _JumpError(hr, error, "NULL parm");
  866. }
  868. hr = DecodeCertString(
  869. strKey,
  870. Flags & CR_IN_ENCODEMASK,
  871. &ctbKey.pb,
  872. &ctbKey.cb);
  873. _JumpIfError(hr, error, "DecodeCertString");
  875. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  876. _JumpIfError(hr, error, "_OpenConnection");
  878. __try
  879. {
  880. hr = m_pICertAdminD->ImportKey(
  881. pwszAuthority,
  882. RequestId,
  883. strCertHash,
  884. Flags,
  885. &ctbKey);
  886. }
  887. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  888. {
  889. }
  890. _JumpIfError2(
  891. hr,
  892. error,
  893. "ImportKey",
  894. HRESULT_FROM_WIN32(ERROR_OBJECT_ALREADY_EXISTS));
  896. error:
  897. if (NULL != ctbKey.pb)
  898. {
  899. LocalFree(ctbKey.pb);
  900. }
  901. hr = myHError(hr);
  902. return(_SetErrorInfo(hr, L"CCertAdmin::ImportKey"));
  903. }
  906. HRESULT
  907. CCertAdmin::_SetErrorInfo(
  908. IN HRESULT hrError,
  909. IN WCHAR const *pwszDescription)
  910. {
  911. CSASSERT(FAILED(hrError) || S_OK == hrError || S_FALSE == hrError);
  912. if (FAILED(hrError))
  913. {
  914. HRESULT hr;
  916. hr = DispatchSetErrorInfo(
  917. hrError,
  918. pwszDescription,
  919. wszCLASS_CERTADMIN,
  920. &IID_ICertAdmin);
  921. CSASSERT(hr == hrError);
  922. }
  923. return(hrError);
  924. }
  926. //+--------------------------------------------------------------------------
  927. // CCertAdmin::GetMyRoles -- Gets current user roles
  928. //
  929. // ...
  930. //
  931. // Returns S_OK on success.
  932. //+--------------------------------------------------------------------------
  934. STDMETHODIMP
  935. CCertAdmin::GetMyRoles(
  936. /* [in] */ BSTR const strConfig,
  937. /* [out, retval] */ LONG *pRoles)
  938. {
  939. HRESULT hr;
  940. WCHAR const *pwszAuthority;
  942. if (NULL == strConfig || NULL == pRoles)
  943. {
  944. hr = E_POINTER;
  945. _JumpError(hr, error, "NULL parm");
  946. }
  948. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  949. _JumpIfError(hr, error, "_OpenConnection");
  951. __try
  952. {
  953. hr = m_pICertAdminD->GetMyRoles(
  954. pwszAuthority,
  955. pRoles);
  956. }
  957. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  958. {
  959. }
  960. _JumpIfError(hr, error, "GetMyRoles");
  962. error:
  963. hr = myHError(hr);
  964. return(_SetErrorInfo(hr, L"CCertAdmin::GetMyRoles"));
  965. }
  968. //+--------------------------------------------------------------------------
  969. // CCertAdmin::DeleteRow -- Delete row from database
  970. //
  971. // ...
  972. //
  973. // Returns S_OK on success.
  974. //+--------------------------------------------------------------------------
  976. STDMETHODIMP
  977. CCertAdmin::DeleteRow(
  978. /* [in] */ BSTR const strConfig,
  979. /* [in] */ LONG Flags, // CDR_*
  980. /* [in] */ DATE Date,
  981. /* [in] */ LONG Table, // CVRC_TABLE_*
  982. /* [in] */ LONG RowId,
  983. /* [out, retval]*/ LONG *pcDeleted)
  984. {
  985. HRESULT hr;
  986. FILETIME ft;
  987. WCHAR const *pwszAuthority;
  989. if (NULL == strConfig)
  990. {
  991. hr = E_POINTER;
  992. _JumpError(hr, error, "NULL parm");
  993. }
  995. // Date = 0.0 means pass ft = 0 to the DCOM interface
  997. if (Date == 0.0)
  998. {
  999. ZeroMemory(&ft, sizeof(FILETIME));
  1000. }
  1001. else // translate date to ft
  1002. {
  1003. hr = myDateToFileTime(&Date, &ft);
  1004. _JumpIfError(hr, error, "myDateToFileTime");
  1005. }
  1007. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  1008. _JumpIfError(hr, error, "_OpenConnection");
  1010. __try
  1011. {
  1012. hr = m_pICertAdminD->DeleteRow(
  1013. pwszAuthority,
  1014. Flags,
  1015. ft,
  1016. Table,
  1017. RowId,
  1018. pcDeleted);
  1019. }
  1020. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  1021. {
  1022. }
  1023. _JumpIfError(hr, error, "DeleteRow");
  1025. error:
  1026. hr = myHError(hr);
  1027. return(_SetErrorInfo(hr, L"CCertAdmin::DeleteRow"));
  1028. }
  1031. HRESULT
  1032. CCertAdmin::_GetConfigEntryFromRegistry(
  1033. IN BSTR const strConfig,
  1034. IN BSTR const strNodePath,
  1035. IN BSTR const strEntryName,
  1036. IN OUT VARIANT *pvarEntry)
  1037. {
  1038. HRESULT hr;
  1039. CertSrv::CConfigStorage stg;
  1040. LPWSTR pwszMachine = NULL;
  1041. LPWSTR pwszCAName = NULL;
  1043. hr = mySplitConfigString(
  1044. strConfig,
  1045. &pwszMachine,
  1046. &pwszCAName);
  1047. _JumpIfErrorStr(hr, error, "mySplitConfigString", strConfig);
  1049. hr = stg.InitMachine(pwszMachine);
  1050. _JumpIfError(hr, error, "CConfigStorage::InitMachine");
  1052. hr = stg.GetEntry(
  1053. pwszCAName,
  1054. strNodePath,
  1055. strEntryName,
  1056. pvarEntry);
  1057. _JumpIfError(hr, error, "CConfigStorage::GetEntry");
  1059. error:
  1060. LOCAL_FREE(pwszMachine);
  1061. LOCAL_FREE(pwszCAName);
  1062. return hr;
  1063. }
  1065. HRESULT
  1066. CCertAdmin::_SetConfigEntryFromRegistry(
  1067. IN BSTR const strConfig,
  1068. IN BSTR const strNodePath,
  1069. IN BSTR const strEntryName,
  1070. IN const VARIANT *pvarEntry)
  1071. {
  1072. HRESULT hr;
  1073. CertSrv::CConfigStorage stg;
  1074. LPWSTR pwszMachine = NULL;
  1075. LPWSTR pwszCAName = NULL;
  1077. hr = mySplitConfigString(
  1078. strConfig,
  1079. &pwszMachine,
  1080. &pwszCAName);
  1081. _JumpIfErrorStr(hr, error, "mySplitConfigString", strConfig);
  1083. hr = stg.InitMachine(pwszMachine);
  1084. _JumpIfError(hr, error, "CConfigStorage::InitMachine");
  1086. hr = stg.SetEntry(
  1087. pwszCAName,
  1088. strNodePath,
  1089. strEntryName,
  1090. const_cast<VARIANT*>(pvarEntry));
  1091. _JumpIfError(hr, error, "CConfigStorage::GetEntry");
  1093. error:
  1094. LOCAL_FREE(pwszMachine);
  1095. LOCAL_FREE(pwszCAName);
  1096. return hr;
  1097. }
  1100. #undef __DIR__
  1101. #undef __dwFILE__
  1102. #define CCERTADMIN
  1103. #include "csprop2.cpp"