archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/cryptoapi/crypstub/keysvr.cpp

735 lines
20 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include <nt.h>
  2. #include <ntrtl.h>
  3. #include <nturtl.h>
  4. #include <windows.h>
  5. #include <ntsecapi.h>
  6. #include <wincrypt.h>
  7. #include <userenv.h>
  8. #include <lmcons.h>
  9. #include <certca.h>
  10. #include "keysvc.h"
  11. #include "cryptui.h"
  12. #include "lenroll.h"
  13. #include "keysvcc.h"
  15. DWORD BindLocalKeyService(handle_t *hProxy);
  19. // key service stub functions
  20. ULONG s_KeyrOpenKeyService(
  21. /* [in] */ handle_t hRPCBinding,
  22. /* [in] */ KEYSVC_TYPE OwnerType,
  23. /* [in] */ PKEYSVC_UNICODE_STRING pOwnerName,
  24. /* [in] */ ULONG ulDesiredAccess,
  25. /* [in] */ PKEYSVC_BLOB pAuthentication,
  26. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  27. /* [out] */ KEYSVC_HANDLE *phKeySvc)
  28. {
  29. RPC_BINDING_HANDLE hProxy = NULL;
  32. RPC_STATUS RpcStatus = RPC_S_OK;
  34. RpcStatus = RpcImpersonateClient(hRPCBinding);
  36. if (RPC_S_OK != RpcStatus)
  37. {
  38. return RpcStatus;
  39. }
  40. RpcStatus = BindLocalKeyService(&hProxy);
  41. if(RPC_S_OK != RpcStatus)
  42. {
  43. goto error;
  44. }
  46. __try
  47. {
  48. RpcStatus = s_KeyrOpenKeyService(
  49. hProxy,
  50. OwnerType,
  51. pOwnerName,
  52. ulDesiredAccess,
  53. pAuthentication,
  54. ppReserved,
  55. phKeySvc);
  57. }
  58. __except ( EXCEPTION_EXECUTE_HANDLER )
  59. {
  60. RpcStatus = _exception_code();
  61. }
  62. error:
  64. if(hProxy)
  65. {
  66. RpcBindingFree(&hProxy);
  67. }
  69. RpcRevertToSelf();
  71. return RpcStatus;
  73. }
  75. ULONG s_KeyrEnumerateProviders(
  76. /* [in] */ handle_t hRPCBinding,
  77. /* [in] */ KEYSVC_HANDLE hKeySvc,
  78. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  79. /* [in, out] */ ULONG *pcProviderCount,
  80. /* [in, out][size_is(,*pcProviderCount)] */
  81. PKEYSVC_PROVIDER_INFO *ppProviders)
  82. {
  83. RPC_BINDING_HANDLE hProxy = NULL;
  86. RPC_STATUS RpcStatus = RPC_S_OK;
  88. RpcStatus = RpcImpersonateClient(hRPCBinding);
  90. if (RPC_S_OK != RpcStatus)
  91. {
  92. return RpcStatus;
  93. }
  94. RpcStatus = BindLocalKeyService(&hProxy);
  95. if(RPC_S_OK != RpcStatus)
  96. {
  97. goto error;
  98. }
  100. __try
  101. {
  102. RpcStatus = s_KeyrEnumerateProviders(
  103. hProxy,
  104. hKeySvc,
  105. ppReserved,
  106. pcProviderCount,
  107. ppProviders);
  109. }
  110. __except ( EXCEPTION_EXECUTE_HANDLER )
  111. {
  112. RpcStatus = _exception_code();
  113. }
  114. error:
  116. if(hProxy)
  117. {
  118. RpcBindingFree(&hProxy);
  119. }
  121. RpcRevertToSelf();
  123. return RpcStatus;
  124. }
  126. ULONG s_KeyrEnumerateProviderTypes(
  127. /* [in] */ handle_t hRPCBinding,
  128. /* [in] */ KEYSVC_HANDLE hKeySvc,
  129. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  130. /* [in, out] */ ULONG *pcProviderCount,
  131. /* [in, out][size_is(,*pcProviderCount)] */
  132. PKEYSVC_PROVIDER_INFO *ppProviders)
  133. {
  134. return ERROR_CALL_NOT_IMPLEMENTED;
  135. }
  138. ULONG s_KeyrEnumerateProvContainers(
  139. /* [in] */ handle_t hRPCBinding,
  140. /* [in] */ KEYSVC_HANDLE hKeySvc,
  141. /* [in] */ KEYSVC_PROVIDER_INFO Provider,
  142. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  143. /* [in, out] */ ULONG *pcContainerCount,
  144. /* [in, out][size_is(,*pcContainerCount)] */
  145. PKEYSVC_UNICODE_STRING *ppContainers)
  146. {
  147. return ERROR_CALL_NOT_IMPLEMENTED;
  148. }
  151. ULONG s_KeyrCloseKeyService(
  152. /* [in] */ handle_t hRPCBinding,
  153. /* [in] */ KEYSVC_HANDLE hKeySvc,
  154. /* [in, out] */ PKEYSVC_BLOB *ppReserved)
  155. {
  156. RPC_BINDING_HANDLE hProxy = NULL;
  159. RPC_STATUS RpcStatus = RPC_S_OK;
  161. RpcStatus = RpcImpersonateClient(hRPCBinding);
  163. if (RPC_S_OK != RpcStatus)
  164. {
  165. return RpcStatus;
  166. }
  167. RpcStatus = BindLocalKeyService(&hProxy);
  168. if(RPC_S_OK != RpcStatus)
  169. {
  170. goto error;
  171. }
  173. __try
  174. {
  175. RpcStatus = s_KeyrCloseKeyService(
  176. hProxy,
  177. hKeySvc,
  178. ppReserved);
  180. }
  181. __except ( EXCEPTION_EXECUTE_HANDLER )
  182. {
  183. RpcStatus = _exception_code();
  184. }
  185. error:
  187. if(hProxy)
  188. {
  189. RpcBindingFree(&hProxy);
  190. }
  192. RpcRevertToSelf();
  194. return RpcStatus;
  195. }
  197. ULONG s_KeyrGetDefaultProvider(
  198. /* [in] */ handle_t hRPCBinding,
  199. /* [in] */ KEYSVC_HANDLE hKeySvc,
  200. /* [in] */ ULONG ulProvType,
  201. /* [in] */ ULONG ulFlags,
  202. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  203. /* [out] */ ULONG *pulDefType,
  204. /* [out] */ PKEYSVC_PROVIDER_INFO *ppProvider)
  205. {
  206. RPC_BINDING_HANDLE hProxy = NULL;
  209. RPC_STATUS RpcStatus = RPC_S_OK;
  211. RpcStatus = RpcImpersonateClient(hRPCBinding);
  213. if (RPC_S_OK != RpcStatus)
  214. {
  215. return RpcStatus;
  216. }
  217. RpcStatus = BindLocalKeyService(&hProxy);
  218. if(RPC_S_OK != RpcStatus)
  219. {
  220. goto error;
  221. }
  223. __try
  224. {
  225. RpcStatus = s_KeyrGetDefaultProvider(
  226. hProxy,
  227. hKeySvc,
  228. ulProvType,
  229. ulFlags,
  230. ppReserved,
  231. pulDefType,
  232. ppProvider);
  234. }
  235. __except ( EXCEPTION_EXECUTE_HANDLER )
  236. {
  237. RpcStatus = _exception_code();
  238. }
  239. error:
  241. if(hProxy)
  242. {
  243. RpcBindingFree(&hProxy);
  244. }
  246. RpcRevertToSelf();
  248. return RpcStatus;
  249. }
  251. ULONG s_KeyrSetDefaultProvider(
  252. /* [in] */ handle_t hRPCBinding,
  253. /* [in] */ KEYSVC_HANDLE hKeySvc,
  254. /* [in] */ ULONG ulFlags,
  255. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  256. /* [in] */ KEYSVC_PROVIDER_INFO Provider)
  257. {
  258. return ERROR_CALL_NOT_IMPLEMENTED;
  259. }
  261. ULONG s_KeyrEnroll(
  262. /* [in] */ handle_t hRPCBinding,
  263. /* [in] */ BOOL fKeyService,
  264. /* [in] */ ULONG ulPurpose,
  265. /* [in] */ PKEYSVC_UNICODE_STRING pAcctName,
  266. /* [in] */ PKEYSVC_UNICODE_STRING pCALocation,
  267. /* [in] */ PKEYSVC_UNICODE_STRING pCAName,
  268. /* [in] */ BOOL fNewKey,
  269. /* [in] */ PKEYSVC_CERT_REQUEST_PVK_NEW pKeyNew,
  270. /* [in] */ PKEYSVC_BLOB __RPC_FAR pCert,
  271. /* [in] */ PKEYSVC_CERT_REQUEST_PVK_NEW pRenewKey,
  272. /* [in] */ PKEYSVC_UNICODE_STRING pHashAlg,
  273. /* [in] */ PKEYSVC_UNICODE_STRING pDesStore,
  274. /* [in] */ ULONG ulStoreFlags,
  275. /* [in] */ PKEYSVC_CERT_ENROLL_INFO pRequestInfo,
  276. /* [in] */ ULONG ulFlags,
  277. /* [out][in] */ PKEYSVC_BLOB __RPC_FAR *ppReserved,
  278. /* [out] */ PKEYSVC_BLOB __RPC_FAR *ppPKCS7Blob,
  279. /* [out] */ PKEYSVC_BLOB __RPC_FAR *ppHashBlob,
  280. /* [out] */ ULONG __RPC_FAR *pulStatus)
  281. {
  282. RPC_BINDING_HANDLE hProxy = NULL;
  285. RPC_STATUS RpcStatus = RPC_S_OK;
  287. RpcStatus = RpcImpersonateClient(hRPCBinding);
  289. if (RPC_S_OK != RpcStatus)
  290. {
  291. return RpcStatus;
  292. }
  293. RpcStatus = BindLocalKeyService(&hProxy);
  294. if(RPC_S_OK != RpcStatus)
  295. {
  296. goto error;
  297. }
  299. __try
  300. {
  301. RpcStatus = s_KeyrEnroll(
  302. hProxy,
  303. fKeyService,
  304. ulPurpose,
  305. pAcctName,
  306. pCALocation,
  307. pCAName,
  308. fNewKey,
  309. pKeyNew,
  310. pCert,
  311. pRenewKey,
  312. pHashAlg,
  313. pDesStore,
  314. ulStoreFlags,
  315. pRequestInfo,
  316. ulFlags,
  317. ppReserved,
  318. ppPKCS7Blob,
  319. ppHashBlob,
  320. pulStatus);
  322. }
  323. __except ( EXCEPTION_EXECUTE_HANDLER )
  324. {
  325. RpcStatus = _exception_code();
  326. }
  327. error:
  329. if(hProxy)
  330. {
  331. RpcBindingFree(&hProxy);
  332. }
  334. RpcRevertToSelf();
  336. return RpcStatus;
  337. }
  340. ULONG s_KeyrExportCert(
  341. /* [in] */ handle_t hRPCBinding,
  342. /* [in] */ KEYSVC_HANDLE hKeySvc,
  343. /* [in] */ PKEYSVC_UNICODE_STRING pPassword,
  344. /* [in] */ PKEYSVC_UNICODE_STRING pCertStore,
  345. /* [in] */ ULONG cHashCount,
  346. /* [size_is][in] */
  347. KEYSVC_CERT_HASH *pHashes,
  348. /* [in] */ ULONG ulFlags,
  349. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  350. /* [out] */ PKEYSVC_BLOB *ppPFXBlob)
  351. {
  352. return ERROR_CALL_NOT_IMPLEMENTED;
  353. }
  356. ULONG s_KeyrImportCert(
  357. /* [in] */ handle_t hRPCBinding,
  358. /* [in] */ KEYSVC_HANDLE hKeySvc,
  359. /* [in] */ PKEYSVC_UNICODE_STRING pPassword,
  360. /* [in] */ KEYSVC_UNICODE_STRING *pCertStore,
  361. /* [in] */ PKEYSVC_BLOB pPFXBlob,
  362. /* [in] */ ULONG ulFlags,
  363. /* [in, out] */ PKEYSVC_BLOB *ppReserved)
  364. {
  365. return ERROR_CALL_NOT_IMPLEMENTED;
  366. }
  368. ULONG s_KeyrEnumerateAvailableCertTypes(
  370. /* [in] */ handle_t hRPCBinding,
  371. /* [in] */ KEYSVC_HANDLE hKeySvc,
  372. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  373. /* [out][in] */ ULONG *pcCertTypeCount,
  374. /* [in, out][size_is(,*pcCertTypeCount)] */
  375. PKEYSVC_UNICODE_STRING *ppCertTypes)
  377. {
  378. RPC_BINDING_HANDLE hProxy = NULL;
  381. RPC_STATUS RpcStatus = RPC_S_OK;
  383. RpcStatus = RpcImpersonateClient(hRPCBinding);
  385. if (RPC_S_OK != RpcStatus)
  386. {
  387. return RpcStatus;
  388. }
  389. RpcStatus = BindLocalKeyService(&hProxy);
  390. if(RPC_S_OK != RpcStatus)
  391. {
  392. goto error;
  393. }
  395. __try
  396. {
  397. RpcStatus = s_KeyrEnumerateAvailableCertTypes(
  398. hProxy,
  399. hKeySvc,
  400. ppReserved,
  401. pcCertTypeCount,
  402. ppCertTypes);
  404. }
  405. __except ( EXCEPTION_EXECUTE_HANDLER )
  406. {
  407. RpcStatus = _exception_code();
  408. }
  409. error:
  411. if(hProxy)
  412. {
  413. RpcBindingFree(&hProxy);
  414. }
  416. RpcRevertToSelf();
  418. return RpcStatus;
  419. }
  424. ULONG s_KeyrEnumerateCAs(
  426. /* [in] */ handle_t hRPCBinding,
  427. /* [in] */ KEYSVC_HANDLE hKeySvc,
  428. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  429. /* [in] */ ULONG ulFlags,
  430. /* [out][in] */ ULONG *pcCACount,
  431. /* [in, out][size_is(,*pcCACount)] */
  432. PKEYSVC_UNICODE_STRING *ppCAs)
  434. {
  435. RPC_BINDING_HANDLE hProxy = NULL;
  438. RPC_STATUS RpcStatus = RPC_S_OK;
  440. RpcStatus = RpcImpersonateClient(hRPCBinding);
  442. if (RPC_S_OK != RpcStatus)
  443. {
  444. return RpcStatus;
  445. }
  446. RpcStatus = BindLocalKeyService(&hProxy);
  447. if(RPC_S_OK != RpcStatus)
  448. {
  449. goto error;
  450. }
  452. __try
  453. {
  454. RpcStatus = s_KeyrEnumerateCAs(
  455. hProxy,
  456. hKeySvc,
  457. ppReserved,
  458. ulFlags,
  459. pcCACount,
  460. ppCAs);
  462. }
  463. __except ( EXCEPTION_EXECUTE_HANDLER )
  464. {
  465. RpcStatus = _exception_code();
  466. }
  467. error:
  469. if(hProxy)
  470. {
  471. RpcBindingFree(&hProxy);
  472. }
  474. RpcRevertToSelf();
  476. return RpcStatus;
  477. }
  480. DWORD BindLocalKeyService(handle_t *hProxy)
  481. {
  483. WCHAR *pStringBinding = NULL;
  484. *hProxy = NULL;
  486. RPC_STATUS RpcStatus = RPC_S_OK;
  488. RpcStatus = RpcStringBindingComposeW(
  489. NULL,
  490. KEYSVC_LOCAL_PROT_SEQ,
  491. NULL,
  492. KEYSVC_LOCAL_ENDPOINT,
  493. NULL,
  494. &pStringBinding);
  495. if (RPC_S_OK != RpcStatus)
  496. {
  497. goto error;
  498. }
  500. RpcStatus = RpcBindingFromStringBindingW(
  501. pStringBinding,
  502. hProxy);
  504. if (RPC_S_OK != RpcStatus)
  505. {
  506. goto error;
  507. }
  509. RpcStatus = RpcEpResolveBinding(
  510. *hProxy,
  511. IKeySvc_v1_0_c_ifspec);
  512. if (RPC_S_OK != RpcStatus)
  513. {
  514. if(*hProxy)
  515. {
  516. RpcBindingFree(hProxy);
  517. *hProxy = NULL;
  518. }
  519. goto error;
  521. }
  523. error:
  524. if (NULL != pStringBinding)
  525. {
  526. RpcStringFreeW(&pStringBinding);
  527. }
  528. return RpcStatus;
  529. }
  531. ULONG s_KeyrEnroll_V2
  532. (/* [in] */ handle_t hRPCBinding,
  533. /* [in] */ BOOL fKeyService,
  534. /* [in] */ ULONG ulPurpose,
  535. /* [in] */ ULONG ulFlags,
  536. /* [in] */ PKEYSVC_UNICODE_STRING pAcctName,
  537. /* [in] */ PKEYSVC_UNICODE_STRING pCALocation,
  538. /* [in] */ PKEYSVC_UNICODE_STRING pCAName,
  539. /* [in] */ BOOL fNewKey,
  540. /* [in] */ PKEYSVC_CERT_REQUEST_PVK_NEW_V2 pKeyNew,
  541. /* [in] */ PKEYSVC_BLOB __RPC_FAR pCert,
  542. /* [in] */ PKEYSVC_CERT_REQUEST_PVK_NEW_V2 pRenewKey,
  543. /* [in] */ PKEYSVC_UNICODE_STRING pHashAlg,
  544. /* [in] */ PKEYSVC_UNICODE_STRING pDesStore,
  545. /* [in] */ ULONG ulStoreFlags,
  546. /* [in] */ PKEYSVC_CERT_ENROLL_INFO pRequestInfo,
  547. /* [in] */ ULONG ulReservedFlags,
  548. /* [out][in] */ PKEYSVC_BLOB __RPC_FAR *ppReserved,
  549. /* [out][in] */ PKEYSVC_BLOB __RPC_FAR *ppRequest,
  550. /* [out] */ PKEYSVC_BLOB __RPC_FAR *ppPKCS7Blob,
  551. /* [out] */ PKEYSVC_BLOB __RPC_FAR *ppHashBlob,
  552. /* [out] */ ULONG __RPC_FAR *pulStatus)
  553. {
  554. RPC_BINDING_HANDLE hProxy = NULL;
  557. RPC_STATUS RpcStatus = RPC_S_OK;
  559. RpcStatus = RpcImpersonateClient(hRPCBinding);
  561. if (RPC_S_OK != RpcStatus)
  562. {
  563. return RpcStatus;
  564. }
  565. RpcStatus = BindLocalKeyService(&hProxy);
  566. if(RPC_S_OK != RpcStatus)
  567. {
  568. goto error;
  569. }
  571. __try
  572. {
  573. RpcStatus = s_KeyrEnroll_V2(
  574. hProxy,
  575. fKeyService,
  576. ulPurpose,
  577. ulFlags,
  578. pAcctName,
  579. pCALocation,
  580. pCAName,
  581. fNewKey,
  582. pKeyNew,
  583. pCert,
  584. pRenewKey,
  585. pHashAlg,
  586. pDesStore,
  587. ulStoreFlags,
  588. pRequestInfo,
  589. ulReservedFlags,
  590. ppReserved,
  591. ppRequest,
  592. ppPKCS7Blob,
  593. ppHashBlob,
  594. pulStatus);
  596. }
  597. __except ( EXCEPTION_EXECUTE_HANDLER )
  598. {
  599. RpcStatus = _exception_code();
  600. }
  601. error:
  603. if(hProxy)
  604. {
  605. RpcBindingFree(&hProxy);
  606. }
  608. RpcRevertToSelf();
  610. return RpcStatus;
  611. }
  613. ULONG s_KeyrQueryRequestStatus
  614. (/* [in] */ handle_t hRPCBinding,
  615. /* [in] */ unsigned __int64 u64Request,
  616. /* [out, ref] */ KEYSVC_QUERY_CERT_REQUEST_INFO *pQueryInfo)
  617. {
  618. RPC_BINDING_HANDLE hProxy = NULL;
  621. RPC_STATUS RpcStatus = RPC_S_OK;
  623. RpcStatus = RpcImpersonateClient(hRPCBinding);
  625. if (RPC_S_OK != RpcStatus)
  626. {
  627. return RpcStatus;
  628. }
  629. RpcStatus = BindLocalKeyService(&hProxy);
  630. if(RPC_S_OK != RpcStatus)
  631. {
  632. goto error;
  633. }
  635. __try
  636. {
  637. RpcStatus = s_KeyrQueryRequestStatus(
  638. hProxy,
  639. u64Request,
  640. pQueryInfo);
  641. }
  642. __except ( EXCEPTION_EXECUTE_HANDLER )
  643. {
  644. RpcStatus = _exception_code();
  645. }
  646. error:
  648. if(hProxy)
  649. {
  650. RpcBindingFree(&hProxy);
  651. }
  653. RpcRevertToSelf();
  655. return RpcStatus;
  656. }
  658. ULONG s_RKeyrPFXInstall
  659. (/* [in] */ handle_t hRPCBinding,
  660. /* [in] */ PKEYSVC_BLOB pPFX,
  661. /* [in] */ PKEYSVC_UNICODE_STRING pPassword,
  662. /* [in] */ ULONG ulFlags)
  663. {
  664. RPC_BINDING_HANDLE hProxy = NULL;
  667. RPC_STATUS RpcStatus = RPC_S_OK;
  669. RpcStatus = RpcImpersonateClient(hRPCBinding);
  671. if (RPC_S_OK != RpcStatus)
  672. {
  673. return RpcStatus;
  674. }
  675. RpcStatus = BindLocalKeyService(&hProxy);
  676. if(RPC_S_OK != RpcStatus)
  677. {
  678. goto error;
  679. }
  681. __try
  682. {
  683. RpcStatus = s_RKeyrPFXInstall(
  684. hProxy,
  685. pPFX,
  686. pPassword,
  687. ulFlags);
  689. }
  690. __except ( EXCEPTION_EXECUTE_HANDLER )
  691. {
  692. RpcStatus = _exception_code();
  693. }
  694. error:
  696. if(hProxy)
  697. {
  698. RpcBindingFree(&hProxy);
  699. }
  701. RpcRevertToSelf();
  703. return RpcStatus;
  704. }
  707. ULONG s_RKeyrOpenKeyService(
  708. /* [in] */ handle_t hRPCBinding,
  709. /* [in] */ KEYSVC_TYPE OwnerType,
  710. /* [in] */ PKEYSVC_UNICODE_STRING pOwnerName,
  711. /* [in] */ ULONG ulDesiredAccess,
  712. /* [in] */ PKEYSVC_BLOB pAuthentication,
  713. /* [in, out] */ PKEYSVC_BLOB *ppReserved,
  714. /* [out] */ KEYSVC_HANDLE *phKeySvc)
  715. {
  716. return s_KeyrOpenKeyService
  717. (hRPCBinding,
  718. OwnerType,
  719. pOwnerName,
  720. ulDesiredAccess,
  721. pAuthentication,
  722. ppReserved,
  723. phKeySvc);
  724. }
  726. ULONG s_RKeyrCloseKeyService(
  727. /* [in] */ handle_t hRPCBinding,
  728. /* [in] */ KEYSVC_HANDLE hKeySvc,
  729. /* [in, out] */ PKEYSVC_BLOB *ppReserved)
  730. {
  731. return s_KeyrCloseKeyService
  732. (hRPCBinding,
  733. hKeySvc,
  734. ppReserved);
  735. }