archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pki/rpor/ctxpvdr.cpp

281 lines
9.5 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows NT Security
  4. // Copyright (C) Microsoft Corporation, 1997 - 1999
  5. //
  6. // File: ctxpvdr.cpp
  7. //
  8. // Contents: Context Providers for Remote Object Retrieval
  9. //
  10. // History: 23-Jul-97 kirtd Created
  11. //
  12. //----------------------------------------------------------------------------
  13. #include <global.hxx>
  15. //+---------------------------------------------------------------------------
  16. // Function: CreateObjectContext
  17. //
  18. // Synopsis: create single context or store containing multiple contexts
  19. //----------------------------------------------------------------------------
  20. BOOL WINAPI CreateObjectContext (
  21. IN DWORD dwRetrievalFlags,
  22. IN PCRYPT_BLOB_ARRAY pObject,
  23. IN DWORD dwExpectedContentTypeFlags,
  24. IN BOOL fQuerySingleContext,
  25. OUT LPVOID* ppvContext
  26. )
  27. {
  28. BOOL fResult = TRUE;
  29. HCERTSTORE hStore;
  30. DWORD cCount;
  31. int iQueryResult;
  32. DWORD dwQueryErr = 0;
  34. if ( !( dwRetrievalFlags & CRYPT_RETRIEVE_MULTIPLE_OBJECTS ) )
  35. {
  36. assert( pObject->cBlob > 0 );
  38. return( CryptQueryObject(
  39. CERT_QUERY_OBJECT_BLOB,
  40. (const void *)&(pObject->rgBlob[0]),
  41. fQuerySingleContext ?
  42. (dwExpectedContentTypeFlags &
  43. ( CERT_QUERY_CONTENT_FLAG_CERT |
  44. CERT_QUERY_CONTENT_FLAG_CTL |
  45. CERT_QUERY_CONTENT_FLAG_CRL ))
  46. : dwExpectedContentTypeFlags,
  47. CERT_QUERY_FORMAT_FLAG_ALL,
  48. 0,
  49. NULL,
  50. NULL,
  51. NULL,
  52. fQuerySingleContext ? NULL : (HCERTSTORE *) ppvContext,
  53. NULL,
  54. fQuerySingleContext ? (const void **) ppvContext : NULL
  55. ) );
  56. }
  58. if ( ( hStore = CertOpenStore(
  59. CERT_STORE_PROV_MEMORY,
  60. 0,
  61. NULL,
  62. 0,
  63. NULL
  64. ) ) == NULL )
  65. {
  66. return( FALSE );
  67. }
  69. // 0 => no CryptQueryObject()
  70. // 1 => 1 successful CryptQueryObject()
  71. // -1 => all CryptQueryObject()'s failed
  72. iQueryResult = 0;
  74. for ( cCount = 0;
  75. ( fResult == TRUE ) && ( cCount < pObject->cBlob );
  76. cCount++ )
  77. {
  78. PCERT_BLOB pBlob = &pObject->rgBlob[cCount];
  79. HCERTSTORE hChildStore;
  81. // Skip empty blobs. I have seen empty LDAP attributes containing
  82. // a single byte set to 0.
  83. if (0 == pBlob->cbData ||
  84. (1 == pBlob->cbData && 0 == pBlob->pbData[0]))
  85. {
  86. continue;
  87. }
  89. if (CryptQueryObject(
  90. CERT_QUERY_OBJECT_BLOB,
  91. (LPVOID) pBlob,
  92. dwExpectedContentTypeFlags,
  93. CERT_QUERY_FORMAT_FLAG_ALL,
  94. 0,
  95. NULL,
  96. NULL,
  97. NULL,
  98. &hChildStore,
  99. NULL,
  100. NULL
  101. ))
  102. {
  103. if (fQuerySingleContext)
  104. {
  105. if (0 == (dwExpectedContentTypeFlags &
  106. CERT_QUERY_CONTENT_FLAG_CERT))
  107. {
  108. PCCERT_CONTEXT pDeleteCert;
  109. while (pDeleteCert = CertEnumCertificatesInStore(
  110. hChildStore, NULL))
  111. {
  112. CertDeleteCertificateFromStore(pDeleteCert);
  113. }
  114. }
  116. if (0 == (dwExpectedContentTypeFlags &
  117. CERT_QUERY_CONTENT_FLAG_CRL))
  118. {
  119. PCCRL_CONTEXT pDeleteCrl;
  120. while (pDeleteCrl = CertEnumCRLsInStore(
  121. hChildStore, NULL))
  122. {
  123. CertDeleteCRLFromStore(pDeleteCrl);
  124. }
  125. }
  126. }
  128. fResult = I_CertUpdateStore( hStore, hChildStore, 0, NULL );
  129. CertCloseStore( hChildStore, 0 );
  130. iQueryResult = 1;
  131. }
  132. else if (iQueryResult == 0)
  133. {
  134. iQueryResult = -1;
  135. dwQueryErr = GetLastError();
  136. }
  137. }
  139. if ( fResult == TRUE && iQueryResult < 0)
  140. {
  141. fResult = FALSE;
  142. SetLastError(dwQueryErr);
  143. }
  145. if ( fResult == TRUE )
  146. {
  147. *ppvContext = (LPVOID)hStore;
  148. }
  149. else
  150. {
  151. CertCloseStore( hStore, 0 );
  152. }
  154. return( fResult );
  155. }
  157. //+---------------------------------------------------------------------------
  158. //
  159. // Function: CertificateCreateObjectContext
  160. //
  161. // Synopsis: creates a certificate context from encoded certificate bits
  162. //
  163. //----------------------------------------------------------------------------
  164. BOOL WINAPI CertificateCreateObjectContext (
  165. IN LPCSTR pszObjectOid,
  166. IN DWORD dwRetrievalFlags,
  167. IN PCRYPT_BLOB_ARRAY pObject,
  168. OUT LPVOID* ppvContext
  169. )
  170. {
  171. return CreateObjectContext (
  172. dwRetrievalFlags,
  173. pObject,
  174. CERT_QUERY_CONTENT_FLAG_CERT |
  175. CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED |
  176. CERT_QUERY_CONTENT_FLAG_CERT_PAIR,
  177. TRUE, // fQuerySingleContext
  178. ppvContext
  179. );
  180. }
  182. //+---------------------------------------------------------------------------
  183. //
  184. // Function: CTLCreateObjectContext
  185. //
  186. // Synopsis: creates a CTL context from encoded CTL bits
  187. //
  188. //----------------------------------------------------------------------------
  189. BOOL WINAPI CTLCreateObjectContext (
  190. IN LPCSTR pszObjectOid,
  191. IN DWORD dwRetrievalFlags,
  192. IN PCRYPT_BLOB_ARRAY pObject,
  193. OUT LPVOID* ppvContext
  194. )
  195. {
  196. return CreateObjectContext (
  197. dwRetrievalFlags,
  198. pObject,
  199. CERT_QUERY_CONTENT_FLAG_CTL,
  200. TRUE, // fQuerySingleContext
  201. ppvContext
  202. );
  203. }
  205. //+---------------------------------------------------------------------------
  206. //
  207. // Function: CRLCreateObjectContext
  208. //
  209. // Synopsis: creates a CRL context from encoded CRL bits
  210. //
  211. //----------------------------------------------------------------------------
  212. BOOL WINAPI CRLCreateObjectContext (
  213. IN LPCSTR pszObjectOid,
  214. IN DWORD dwRetrievalFlags,
  215. IN PCRYPT_BLOB_ARRAY pObject,
  216. OUT LPVOID* ppvContext
  217. )
  218. {
  219. return CreateObjectContext (
  220. dwRetrievalFlags,
  221. pObject,
  222. CERT_QUERY_CONTENT_FLAG_CRL |
  223. CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED,
  224. TRUE, // fQuerySingleContext
  225. ppvContext
  226. );
  227. }
  229. //+---------------------------------------------------------------------------
  230. //
  231. // Function: Pkcs7CreateObjectContext
  232. //
  233. // Synopsis: creates a certificate store context from a PKCS7 message
  234. //
  235. //----------------------------------------------------------------------------
  236. BOOL WINAPI Pkcs7CreateObjectContext (
  237. IN LPCSTR pszObjectOid,
  238. IN DWORD dwRetrievalFlags,
  239. IN PCRYPT_BLOB_ARRAY pObject,
  240. OUT LPVOID* ppvContext
  241. )
  242. {
  243. return CreateObjectContext (
  244. dwRetrievalFlags,
  245. pObject,
  246. CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED,
  247. FALSE, // fQuerySingleContext
  248. ppvContext
  249. );
  250. }
  252. //+---------------------------------------------------------------------------
  253. //
  254. // Function: Capi2CreateObjectContext
  255. //
  256. // Synopsis: create a store of CAPI objects
  257. //
  258. //----------------------------------------------------------------------------
  259. BOOL WINAPI Capi2CreateObjectContext (
  260. IN LPCSTR pszObjectOid,
  261. IN DWORD dwRetrievalFlags,
  262. IN PCRYPT_BLOB_ARRAY pObject,
  263. OUT LPVOID* ppvContext
  264. )
  265. {
  266. return CreateObjectContext (
  267. dwRetrievalFlags,
  268. pObject,
  269. CERT_QUERY_CONTENT_FLAG_CERT |
  270. CERT_QUERY_CONTENT_FLAG_CTL |
  271. CERT_QUERY_CONTENT_FLAG_CRL |
  272. CERT_QUERY_CONTENT_FLAG_SERIALIZED_STORE |
  273. CERT_QUERY_CONTENT_FLAG_SERIALIZED_CERT |
  274. CERT_QUERY_CONTENT_FLAG_SERIALIZED_CTL |
  275. CERT_QUERY_CONTENT_FLAG_SERIALIZED_CRL |
  276. CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED |
  277. CERT_QUERY_CONTENT_FLAG_CERT_PAIR,
  278. FALSE, // fQuerySingleContext
  279. ppvContext
  280. );
  281. }