archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pki/rpor/init.cpp

514 lines
15 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows NT Security
  4. // Copyright (C) Microsoft Corporation, 1997 - 1999
  5. //
  6. // File: init.cpp
  7. //
  8. // Contents: Initialization for Remote Object Retrieval
  9. //
  10. // History: 23-Jul-97 kirtd Created
  11. // 01-Jan-02 philh Changed to internally use UNICODE Urls
  12. //
  13. //----------------------------------------------------------------------------
  14. #include <global.hxx>
  16. //
  17. // Remote Object Retrieval Function Set definitions
  18. //
  20. HCRYPTOIDFUNCSET hSchemeRetrieveFuncSet;
  21. HCRYPTOIDFUNCSET hContextCreateFuncSet;
  22. HCRYPTOIDFUNCSET hGetObjectUrlFuncSet;
  23. HCRYPTOIDFUNCSET hGetTimeValidObjectFuncSet;
  24. HCRYPTOIDFUNCSET hFlushTimeValidObjectFuncSet;
  26. static const CRYPT_OID_FUNC_ENTRY SchemeRetrieveFuncTable[] = {
  27. LDAP_SCHEME, LdapRetrieveEncodedObject,
  28. HTTP_SCHEME, InetRetrieveEncodedObject,
  29. FILE_SCHEME, FileRetrieveEncodedObject
  30. };
  32. static const CRYPT_OID_FUNC_ENTRY ContextCreateFuncTable[] = {
  33. CONTEXT_OID_CERTIFICATE, CertificateCreateObjectContext,
  34. CONTEXT_OID_CTL, CTLCreateObjectContext,
  35. CONTEXT_OID_CRL, CRLCreateObjectContext,
  36. CONTEXT_OID_PKCS7, Pkcs7CreateObjectContext,
  37. CONTEXT_OID_CAPI2_ANY, Capi2CreateObjectContext
  38. };
  40. static const CRYPT_OID_FUNC_ENTRY GetObjectUrlFuncTable[] = {
  41. URL_OID_CERTIFICATE_ISSUER, CertificateIssuerGetObjectUrl,
  42. URL_OID_CERTIFICATE_CRL_DIST_POINT, CertificateCrlDistPointGetObjectUrl,
  43. URL_OID_CTL_ISSUER, CtlIssuerGetObjectUrl,
  44. URL_OID_CTL_NEXT_UPDATE, CtlNextUpdateGetObjectUrl,
  45. URL_OID_CRL_ISSUER, CrlIssuerGetObjectUrl,
  46. URL_OID_CERTIFICATE_FRESHEST_CRL, CertificateFreshestCrlGetObjectUrl,
  47. URL_OID_CRL_FRESHEST_CRL, CrlFreshestCrlGetObjectUrl,
  48. URL_OID_CROSS_CERT_DIST_POINT, CertificateCrossCertDistPointGetObjectUrl
  49. };
  51. static const CRYPT_OID_FUNC_ENTRY GetTimeValidObjectFuncTable[] = {
  52. TIME_VALID_OID_GET_CTL, CtlGetTimeValidObject,
  53. TIME_VALID_OID_GET_CRL, CrlGetTimeValidObject,
  54. TIME_VALID_OID_GET_CRL_FROM_CERT, CrlFromCertGetTimeValidObject,
  55. TIME_VALID_OID_GET_FRESHEST_CRL_FROM_CERT, FreshestCrlFromCertGetTimeValidObject,
  56. TIME_VALID_OID_GET_FRESHEST_CRL_FROM_CRL, FreshestCrlFromCrlGetTimeValidObject
  57. };
  59. static const CRYPT_OID_FUNC_ENTRY FlushTimeValidObjectFuncTable[] = {
  60. TIME_VALID_OID_FLUSH_CTL, CtlFlushTimeValidObject,
  61. TIME_VALID_OID_FLUSH_CRL, CrlFlushTimeValidObject,
  62. TIME_VALID_OID_FLUSH_CRL_FROM_CERT, CrlFromCertFlushTimeValidObject,
  63. TIME_VALID_OID_FLUSH_FRESHEST_CRL_FROM_CERT, FreshestCrlFromCertFlushTimeValidObject,
  64. TIME_VALID_OID_FLUSH_FRESHEST_CRL_FROM_CRL, FreshestCrlFromCrlFlushTimeValidObject
  65. };
  67. #define SCHEME_RETRIEVE_FUNC_COUNT (sizeof(SchemeRetrieveFuncTable)/ \
  68. sizeof(SchemeRetrieveFuncTable[0]))
  70. #define CONTEXT_CREATE_FUNC_COUNT (sizeof(ContextCreateFuncTable)/ \
  71. sizeof(ContextCreateFuncTable[0]))
  73. #define GET_OBJECT_URL_FUNC_COUNT (sizeof(GetObjectUrlFuncTable)/ \
  74. sizeof(GetObjectUrlFuncTable[0]))
  76. #define GET_TIME_VALID_OBJECT_FUNC_COUNT (sizeof(GetTimeValidObjectFuncTable)/ \
  77. sizeof(GetTimeValidObjectFuncTable[0]))
  79. #define FLUSH_TIME_VALID_OBJECT_FUNC_COUNT (sizeof(FlushTimeValidObjectFuncTable)/ \
  80. sizeof(FlushTimeValidObjectFuncTable[0]))
  82. HCRYPTTLS hCryptNetCancelTls;
  84. CTVOAgent* g_pProcessTVOAgent = NULL;
  86. CRITICAL_SECTION MSCtlDefaultStoresCriticalSection;
  87. extern void MSCtlCloseDefaultStores ();
  90. static
  91. VOID
  92. WINAPI
  93. CancelRetrievalFree(
  94. IN LPVOID pv
  95. )
  96. {
  97. if (pv)
  98. free(pv);
  99. }
  101. //+---------------------------------------------------------------------------
  102. //
  103. // Function: CryptInstallCancelRetrieval
  104. //
  105. // Synopsis: Install the call back function to cancel object retrieval
  106. // by HTTP, HTTPS, GOPHER, and FTP protocols.
  107. //
  108. //----------------------------------------------------------------------------
  109. BOOL
  110. WINAPI
  111. CryptInstallCancelRetrieval(
  112. IN PFN_CRYPT_CANCEL_RETRIEVAL pfnCancel,
  113. IN const void *pvArg,
  114. IN DWORD dwFlags,
  115. IN void *pvReserved
  116. )
  117. {
  118. PCRYPTNET_CANCEL_BLOCK pCancelBlock=NULL;
  120. if(NULL == pfnCancel)
  121. {
  122. SetLastError((DWORD) E_INVALIDARG);
  123. return FALSE;
  124. }
  126. pCancelBlock = (PCRYPTNET_CANCEL_BLOCK)malloc(sizeof(CRYPTNET_CANCEL_BLOCK));
  128. if(NULL == pCancelBlock)
  129. {
  130. SetLastError((DWORD) E_OUTOFMEMORY);
  131. return FALSE;
  132. }
  134. pCancelBlock->pfnCancel=pfnCancel;
  135. pCancelBlock->pvArg=(void *)pvArg;
  137. //uninstall the previous one
  138. if(!CryptUninstallCancelRetrieval(0, NULL))
  139. {
  140. free(pCancelBlock);
  141. return FALSE;
  142. }
  144. if(!I_CryptSetTls(hCryptNetCancelTls, pCancelBlock))
  145. {
  146. free(pCancelBlock);
  147. return FALSE;
  148. }
  150. return TRUE;
  151. }
  154. //+---------------------------------------------------------------------------
  155. //
  156. // Function: CryptUninstallCancelRetrieval
  157. //
  158. // Synopsis: Uninstall the call back function to cancel object retrieval
  159. // by HTTP, HTTPS, GOPHER, and FTP protocols.
  160. //
  161. //----------------------------------------------------------------------------
  162. BOOL
  163. WINAPI
  164. CryptUninstallCancelRetrieval(
  165. IN DWORD dwFlags,
  166. IN void *pvReserved
  167. )
  168. {
  169. PCRYPTNET_CANCEL_BLOCK pCancelBlock=NULL;
  171. //we just free the memory if there is one
  172. pCancelBlock = (PCRYPTNET_CANCEL_BLOCK)I_CryptGetTls(hCryptNetCancelTls);
  174. if(pCancelBlock)
  175. {
  176. free(pCancelBlock);
  177. I_CryptSetTls(hCryptNetCancelTls, NULL);
  178. }
  180. return TRUE;
  181. }
  184. //+---------------------------------------------------------------------------
  185. //
  186. // Function: RPORDllMain
  187. //
  188. // Synopsis: DLL Main like initialization of Remote PKI object retrieval
  189. //
  190. //----------------------------------------------------------------------------
  191. BOOL WINAPI RPORDllMain (
  192. HMODULE hModule,
  193. ULONG ulReason,
  194. LPVOID pvReserved
  195. )
  196. {
  197. switch ( ulReason )
  198. {
  199. case DLL_PROCESS_ATTACH:
  201. hSchemeRetrieveFuncSet = CryptInitOIDFunctionSet(
  202. SCHEME_OID_RETRIEVE_ENCODED_OBJECTW_FUNC,
  203. 0
  204. );
  206. hContextCreateFuncSet = CryptInitOIDFunctionSet(
  207. CONTEXT_OID_CREATE_OBJECT_CONTEXT_FUNC,
  208. 0
  209. );
  211. hGetObjectUrlFuncSet = CryptInitOIDFunctionSet(
  212. URL_OID_GET_OBJECT_URL_FUNC,
  213. 0
  214. );
  216. hGetTimeValidObjectFuncSet = CryptInitOIDFunctionSet(
  217. TIME_VALID_OID_GET_OBJECT_FUNC,
  218. 0
  219. );
  221. hFlushTimeValidObjectFuncSet = CryptInitOIDFunctionSet(
  222. TIME_VALID_OID_FLUSH_OBJECT_FUNC,
  223. 0
  224. );
  226. if ( ( hSchemeRetrieveFuncSet == NULL ) ||
  227. ( hContextCreateFuncSet == NULL ) ||
  228. ( hGetObjectUrlFuncSet == NULL ) ||
  229. ( hGetTimeValidObjectFuncSet == NULL ) ||
  230. ( hFlushTimeValidObjectFuncSet == NULL ) )
  231. {
  232. return( FALSE );
  233. }
  235. if ( CryptInstallOIDFunctionAddress(
  236. hModule,
  237. X509_ASN_ENCODING,
  238. SCHEME_OID_RETRIEVE_ENCODED_OBJECTW_FUNC,
  239. SCHEME_RETRIEVE_FUNC_COUNT,
  240. SchemeRetrieveFuncTable,
  241. 0
  242. ) == FALSE )
  243. {
  244. return( FALSE );
  245. }
  247. if ( CryptInstallOIDFunctionAddress(
  248. hModule,
  249. X509_ASN_ENCODING,
  250. CONTEXT_OID_CREATE_OBJECT_CONTEXT_FUNC,
  251. CONTEXT_CREATE_FUNC_COUNT,
  252. ContextCreateFuncTable,
  253. 0
  254. ) == FALSE )
  255. {
  256. return( FALSE );
  257. }
  259. if ( CryptInstallOIDFunctionAddress(
  260. hModule,
  261. X509_ASN_ENCODING,
  262. URL_OID_GET_OBJECT_URL_FUNC,
  263. GET_OBJECT_URL_FUNC_COUNT,
  264. GetObjectUrlFuncTable,
  265. 0
  266. ) == FALSE )
  267. {
  268. return( FALSE );
  269. }
  271. if ( CryptInstallOIDFunctionAddress(
  272. hModule,
  273. X509_ASN_ENCODING,
  274. TIME_VALID_OID_GET_OBJECT_FUNC,
  275. GET_TIME_VALID_OBJECT_FUNC_COUNT,
  276. GetTimeValidObjectFuncTable,
  277. 0
  278. ) == FALSE )
  279. {
  280. return( FALSE );
  281. }
  283. if ( CryptInstallOIDFunctionAddress(
  284. hModule,
  285. X509_ASN_ENCODING,
  286. TIME_VALID_OID_FLUSH_OBJECT_FUNC,
  287. FLUSH_TIME_VALID_OBJECT_FUNC_COUNT,
  288. FlushTimeValidObjectFuncTable,
  289. 0
  290. ) == FALSE )
  291. {
  292. return( FALSE );
  293. }
  295. hCryptNetCancelTls = I_CryptAllocTls();
  297. if (hCryptNetCancelTls == NULL )
  298. return( FALSE );
  300. InitializeOfflineUrlCache();
  302. InitializeCryptRetrieveObjectByUrl(hModule);
  304. if ( CreateProcessTVOAgent( &g_pProcessTVOAgent ) == FALSE )
  305. {
  306. return( FALSE );
  307. }
  309. if ( !Pki_InitializeCriticalSection(
  310. &MSCtlDefaultStoresCriticalSection ) )
  311. {
  312. return( FALSE );
  313. }
  315. return( TRUE );
  316. break;
  317. case DLL_THREAD_ATTACH:
  318. break;
  319. case DLL_PROCESS_DETACH:
  320. I_CryptFreeTls( hCryptNetCancelTls, CancelRetrievalFree );
  321. delete g_pProcessTVOAgent;
  323. DeleteCryptRetrieveObjectByUrl();
  325. DeleteOfflineUrlCache();
  327. MSCtlCloseDefaultStores();
  328. DeleteCriticalSection( &MSCtlDefaultStoresCriticalSection );
  329. break;
  331. case DLL_THREAD_DETACH:
  332. CancelRetrievalFree(I_CryptDetachTls(hCryptNetCancelTls));
  334. break;
  335. }
  337. return( TRUE );
  338. }
  340. //+---------------------------------------------------------------------------
  341. //
  342. // Function: RPORDllRegisterServer
  343. //
  344. // Synopsis: DllRegisterServer like registration of RPOR functions
  345. //
  346. //----------------------------------------------------------------------------
  347. STDAPI RPORDllRegisterServer (HMODULE hModule)
  348. {
  349. CHAR pszDll[MAX_PATH+1];
  350. WCHAR pwszDll[MAX_PATH+1];
  351. LPSTR pszDllRel = NULL;
  353. if ( GetModuleFileNameA( hModule, pszDll, MAX_PATH ) == 0 )
  354. {
  355. return( HRESULT_FROM_WIN32( GetLastError() ) );
  356. }
  357. pszDll[MAX_PATH] = '\0';
  359. pszDllRel = strrchr( pszDll, '\\' );
  361. assert( pszDllRel != NULL );
  363. pszDllRel += 1;
  365. if ( MultiByteToWideChar(
  366. CP_ACP,
  367. 0,
  368. pszDllRel,
  369. -1,
  370. pwszDll,
  371. MAX_PATH+1
  372. ) == 0 )
  373. {
  374. return( HRESULT_FROM_WIN32( GetLastError() ) );
  375. }
  377. if ( ( CryptRegisterDefaultOIDFunction(
  378. X509_ASN_ENCODING,
  379. CRYPT_OID_VERIFY_REVOCATION_FUNC,
  380. CRYPT_REGISTER_FIRST_INDEX,
  381. pwszDll
  382. ) == FALSE ) && ( GetLastError() != ERROR_FILE_EXISTS ) )
  383. {
  384. return( HRESULT_FROM_WIN32( GetLastError() ) );
  385. }
  387. if ( ( CryptRegisterDefaultOIDFunction(
  388. X509_ASN_ENCODING,
  389. CRYPT_OID_VERIFY_CTL_USAGE_FUNC,
  390. CRYPT_REGISTER_FIRST_INDEX,
  391. pwszDll
  392. ) == FALSE ) && ( GetLastError() != ERROR_FILE_EXISTS ) )
  393. {
  394. return( HRESULT_FROM_WIN32( GetLastError() ) );
  395. }
  397. if ( ( CryptRegisterOIDFunction(
  398. 0,
  399. CRYPT_OID_OPEN_STORE_PROV_FUNC,
  400. sz_CERT_STORE_PROV_LDAP,
  401. pwszDll,
  402. LDAP_OPEN_STORE_PROV_FUNC
  403. ) == FALSE ) && ( GetLastError() != ERROR_FILE_EXISTS ) )
  404. {
  405. return( GetLastError() );
  406. }
  408. if ( ( CryptRegisterOIDFunction(
  409. 0,
  410. CRYPT_OID_OPEN_STORE_PROV_FUNC,
  411. CERT_STORE_PROV_LDAP,
  412. pwszDll,
  413. LDAP_OPEN_STORE_PROV_FUNC
  414. ) == FALSE ) && ( GetLastError() != ERROR_FILE_EXISTS ) )
  415. {
  416. return( GetLastError() );
  417. }
  419. return( S_OK );
  420. }
  422. //+---------------------------------------------------------------------------
  423. //
  424. // Function: RPORDllUnregisterServer
  425. //
  426. // Synopsis: DllUnregisterServer like registration of RPOR functions
  427. //
  428. //----------------------------------------------------------------------------
  429. STDAPI RPORDllUnregisterServer (HMODULE hModule)
  430. {
  431. CHAR pszDll[MAX_PATH+1];
  432. WCHAR pwszDll[MAX_PATH+1];
  433. LPSTR pszDllRel = NULL;
  435. if ( GetModuleFileNameA( hModule, pszDll, MAX_PATH ) == 0 )
  436. {
  437. return( HRESULT_FROM_WIN32( GetLastError() ) );
  438. }
  439. pszDll[MAX_PATH] = '\0';
  441. pszDllRel = strrchr( pszDll, '\\' );
  443. assert( pszDllRel != NULL );
  445. pszDllRel += 1;
  447. if ( MultiByteToWideChar(
  448. CP_ACP,
  449. 0,
  450. pszDllRel,
  451. -1,
  452. pwszDll,
  453. MAX_PATH+1
  454. ) == 0 )
  455. {
  456. return( HRESULT_FROM_WIN32( GetLastError() ) );
  457. }
  459. if ( ( CryptUnregisterDefaultOIDFunction(
  460. X509_ASN_ENCODING,
  461. CRYPT_OID_VERIFY_REVOCATION_FUNC,
  462. pwszDll
  463. ) == FALSE ) && ( GetLastError() != ERROR_FILE_NOT_FOUND ) )
  464. {
  465. return( HRESULT_FROM_WIN32( GetLastError() ) );
  466. }
  468. if ( ( CryptUnregisterDefaultOIDFunction(
  469. X509_ASN_ENCODING,
  470. CRYPT_OID_VERIFY_CTL_USAGE_FUNC,
  471. pwszDll
  472. ) == FALSE ) && ( GetLastError() != ERROR_FILE_NOT_FOUND ) )
  473. {
  474. return( HRESULT_FROM_WIN32( GetLastError() ) );
  475. }
  477. if ( ( CryptUnregisterOIDFunction(
  478. 0,
  479. CRYPT_OID_OPEN_STORE_PROV_FUNC,
  480. sz_CERT_STORE_PROV_LDAP
  481. ) == FALSE ) && ( GetLastError() != ERROR_FILE_NOT_FOUND ) )
  482. {
  483. return( GetLastError() );
  484. }
  486. if ( ( CryptUnregisterOIDFunction(
  487. 0,
  488. CRYPT_OID_OPEN_STORE_PROV_FUNC,
  489. CERT_STORE_PROV_LDAP
  490. ) == FALSE ) && ( GetLastError() != ERROR_FILE_NOT_FOUND ) )
  491. {
  492. return( GetLastError() );
  493. }
  495. return( S_OK );
  496. }
  498. //+---------------------------------------------------------------------------
  499. //
  500. // Function: RPORDllRegUnregServer
  501. //
  502. // Synopsis: reg unreg server entry point for RPOR
  503. //
  504. //----------------------------------------------------------------------------
  505. HRESULT WINAPI RPORDllRegUnregServer (HMODULE hModule, BOOL fRegUnreg)
  506. {
  507. if ( fRegUnreg == TRUE )
  508. {
  509. return( RPORDllRegisterServer( hModule ) );
  510. }
  512. return( RPORDllUnregisterServer( hModule ) );
  513. }