archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/services/ca/capesnpn/misc.cpp

593 lines
14 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (C) Microsoft Corporation, 1998 - 1999
  6. //
  7. // File: misc.cpp
  8. //
  9. //--------------------------------------------------------------------------
  11. #include <stdafx.h>
  13. // sddl.h requires this value to be at least
  14. // 0x0500. Bump it up if necessary. NOTE: This
  15. // 'bump' comes after all other H files that may
  16. // be sensitive to this value.
  17. #if(_WIN32_WINNT < 0x500)
  18. #undef _WIN32_WINNT
  19. #define _WIN32_WINNT 0x0500
  20. #endif
  22. #include "tmpllist.h"
  23. #include <sddl.h>
  24. #include <shlobj.h>
  25. #include <dsclient.h>
  26. #include <dsgetdc.h>
  27. #include <lm.h>
  28. #include <lmapibuf.h>
  29. #include <objsel.h>
  31. #define __dwFILE__ __dwFILE_CAPESNPN_MISC_CPP__
  34. CLIPFORMAT g_cfDsObjectPicker = (CLIPFORMAT)RegisterClipboardFormat(CFSTR_DSOP_DS_SELECTION_LIST);
  37. // returns (if cstr.IsEmpty()) ? NULL : cstr)
  38. LPCWSTR GetNullMachineName(CString* pcstr)
  39. {
  40. LPCWSTR szMachine = (pcstr->IsEmpty()) ? NULL : (LPCWSTR)*pcstr;
  41. return szMachine;
  42. }
  44. /////////////////////////////////////////
  45. // fxns to load/save cstrings to a streams
  46. STDMETHODIMP CStringLoad(CString& cstr, IStream *pStm)
  47. {
  48. ASSERT(pStm);
  49. HRESULT hr;
  51. DWORD cbSize=0;
  52. ULONG nBytesRead;
  54. // get cbSize (bytes)
  55. hr = pStm->Read(&cbSize, sizeof(cbSize), &nBytesRead);
  56. ASSERT(SUCCEEDED(hr) && (nBytesRead == sizeof(cbSize)) );
  58. if (FAILED(hr))
  59. return E_FAIL;
  61. // get string
  62. hr = pStm->Read(cstr.GetBuffer(cbSize), cbSize, &nBytesRead);
  63. ASSERT(SUCCEEDED(hr) && (nBytesRead == cbSize));
  65. cstr.ReleaseBuffer();
  67. return SUCCEEDED(hr) ? S_OK : E_FAIL;
  68. }
  70. STDMETHODIMP CStringSave(CString& cstr, IStream *pStm, BOOL fClearDirty)
  71. {
  72. // Write the string
  73. DWORD cbSize = (cstr.GetLength()+1)*sizeof(WCHAR);
  74. ULONG nBytesWritten;
  75. HRESULT hr;
  77. // write size in bytes
  78. hr = pStm->Write(&cbSize, sizeof(cbSize), &nBytesWritten);
  79. ASSERT(SUCCEEDED(hr) && (nBytesWritten == sizeof(cbSize)) );
  81. if (FAILED(hr))
  82. return STG_E_CANTSAVE;
  84. // write string
  85. hr = pStm->Write((LPCWSTR)cstr, cbSize, &nBytesWritten);
  86. ASSERT(SUCCEEDED(hr) && (nBytesWritten == cbSize));
  88. // Verify that the write operation succeeded
  89. return SUCCEEDED(hr) ? S_OK : STG_E_CANTSAVE;
  90. }
  92. LPSTR AllocAndCopyStr(LPCSTR psz)
  93. {
  94. LPSTR pszReturn;
  96. pszReturn = (LPSTR) new(BYTE[strlen(psz)+1]);
  97. if(pszReturn)
  98. {
  99. strcpy(pszReturn, psz);
  100. }
  101. return pszReturn;
  102. }
  105. LPWSTR AllocAndCopyStr(LPCWSTR pwsz)
  106. {
  107. LPWSTR pwszReturn;
  109. pwszReturn = (LPWSTR) new(WCHAR[wcslen(pwsz)+1]);
  110. if(pwszReturn)
  111. {
  112. wcscpy(pwszReturn, pwsz);
  113. }
  114. return pwszReturn;
  115. }
  117. LPWSTR BuildErrorMessage(DWORD dwErr)
  118. {
  119. LPWSTR lpMsgBuf = NULL;
  120. FormatMessageW(
  121. FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM | FORMAT_MESSAGE_IGNORE_INSERTS,
  122. NULL,
  123. dwErr,
  124. MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT),
  125. (LPWSTR) &lpMsgBuf,
  126. 0,
  127. NULL );
  128. return lpMsgBuf;
  129. }
  131. //////////////////////////////////////////////////////////////////
  132. // given an error code and a console pointer, will pop error dlg
  133. void DisplayGenericCertSrvError(LPCONSOLE2 pConsole, DWORD dwErr)
  134. {
  135. ASSERT(pConsole);
  136. LPWSTR lpMsgBuf = BuildErrorMessage(dwErr);
  139. if(lpMsgBuf)
  140. {
  141. // ...
  142. // Display the string.
  143. pConsole->MessageBoxW(lpMsgBuf, L"Certificate Services Error", MB_OK | MB_ICONINFORMATION, NULL);
  145. // Free the buffer.
  146. LocalFree( lpMsgBuf );
  147. }
  148. }
  149. // returns localized, stringized time
  150. BOOL FileTimeToLocalTimeString(FILETIME* pftGMT, LPWSTR* ppszTmp)
  151. {
  152. FILETIME ftLocal;
  153. if (FileTimeToLocalFileTime(pftGMT, &ftLocal))
  154. {
  155. SYSTEMTIME sysLocal;
  156. if (FileTimeToSystemTime(
  157. &ftLocal,
  158. &sysLocal))
  159. {
  160. WCHAR rgTmpDate[128], rgTmpTime[128];
  161. DWORD dwLen;
  162. dwLen = GetDateFormatW(LOCALE_USER_DEFAULT, DATE_SHORTDATE, &sysLocal,
  163. NULL, rgTmpDate, ARRAYLEN(rgTmpDate));
  165. dwLen += GetTimeFormatW(LOCALE_USER_DEFAULT, TIME_NOSECONDS, &sysLocal,
  166. NULL, rgTmpTime, ARRAYLEN(rgTmpTime));
  168. dwLen += sizeof(L" ");
  170. *ppszTmp = new WCHAR[dwLen];
  171. if(*ppszTmp == NULL)
  172. {
  173. return FALSE;
  174. }
  175. wcscpy(*ppszTmp, rgTmpDate);
  176. wcscat(*ppszTmp, L" ");
  177. wcscat(*ppszTmp, rgTmpTime);
  178. }
  179. }
  181. return TRUE;
  182. }
  185. void MyErrorBox(HWND hwndParent, UINT nIDText, UINT nIDCaption, DWORD dwErrorCode)
  186. {
  187. CString cstrTitle, cstrFormatText, cstrFullText;
  188. cstrTitle.LoadString(nIDCaption);
  189. cstrFormatText.LoadString(nIDText);
  191. WCHAR const *pwszError = NULL;
  192. if (dwErrorCode != ERROR_SUCCESS)
  193. {
  194. pwszError = myGetErrorMessageText(dwErrorCode, TRUE);
  196. cstrFullText.Format(cstrFormatText, pwszError);
  198. // Free the buffer
  199. if (NULL != pwszError)
  200. {
  201. LocalFree(const_cast<WCHAR *>(pwszError));
  202. }
  203. }
  205. ::MessageBoxW(hwndParent, cstrFullText, cstrTitle, MB_OK | MB_ICONERROR);
  206. }
  209. BOOL MyGetOIDInfo(LPWSTR string, DWORD stringSize, LPSTR pszObjId)
  210. {
  211. PCCRYPT_OID_INFO pOIDInfo;
  213. pOIDInfo = CryptFindOIDInfo(
  214. CRYPT_OID_INFO_OID_KEY,
  215. pszObjId,
  216. 0);
  218. if (pOIDInfo != NULL)
  219. {
  220. if (wcslen(pOIDInfo->pwszName)+1 <= stringSize)
  221. {
  222. wcscpy(string, pOIDInfo->pwszName);
  223. }
  224. else
  225. {
  226. return FALSE;
  227. }
  228. }
  229. else
  230. {
  231. return (MultiByteToWideChar(CP_ACP, 0, pszObjId, -1, string, stringSize) != 0);
  232. }
  233. return TRUE;
  234. }
  237. BOOL MyGetEnhancedKeyUsages(HCERTTYPE hCertType, CString **aszUsages, DWORD *cUsages, BOOL *pfCritical, BOOL fGetOIDSNotNames)
  238. {
  239. PCERT_EXTENSIONS pCertExtensions;
  240. CERT_ENHKEY_USAGE *pehku;
  241. DWORD cb = 0;
  242. WCHAR OIDName[256];
  243. unsigned int i;
  244. LPWSTR pwszOID;
  245. HRESULT hr;
  247. CSASSERT(cUsages);
  249. if(aszUsages)
  250. *aszUsages = NULL;
  252. hr = CAGetCertTypeExtensionsEx(hCertType, CT_EXTENSION_EKU, NULL, &pCertExtensions);
  254. if(hr != S_OK)
  255. {
  256. return FALSE;
  257. }
  259. if(1 != pCertExtensions->cExtension)
  260. {
  261. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  262. return FALSE;
  263. }
  265. i = 0;
  267. if (pfCritical != NULL)
  268. {
  269. *pfCritical = pCertExtensions->rgExtension[i].fCritical;
  270. }
  272. CryptDecodeObject(
  273. X509_ASN_ENCODING,
  274. X509_ENHANCED_KEY_USAGE,
  275. pCertExtensions->rgExtension[i].Value.pbData,
  276. pCertExtensions->rgExtension[i].Value.cbData,
  277. 0,
  278. NULL,
  279. &cb);
  281. if (NULL == (pehku = (CERT_ENHKEY_USAGE *) new(BYTE[cb])))
  282. {
  283. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  284. return FALSE;
  285. }
  287. CryptDecodeObject(
  288. X509_ASN_ENCODING,
  289. X509_ENHANCED_KEY_USAGE,
  290. pCertExtensions->rgExtension[i].Value.pbData,
  291. pCertExtensions->rgExtension[i].Value.cbData,
  292. 0,
  293. pehku,
  294. &cb);
  296. if(!aszUsages)
  297. {
  298. // only retrieving the usage count
  299. *cUsages = pehku->cUsageIdentifier;
  300. }
  301. else
  302. {
  303. // retrieving usage strings, count better match
  304. CSASSERT(*cUsages == pehku->cUsageIdentifier);
  306. for (i=0; i<pehku->cUsageIdentifier; i++)
  307. {
  308. if (fGetOIDSNotNames)
  309. {
  310. pwszOID = MyMkWStr(pehku->rgpszUsageIdentifier[i]);
  311. aszUsages[i]= new CString(pwszOID);
  312. delete(pwszOID);
  313. if(aszUsages[i] == NULL)
  314. {
  315. return FALSE;
  316. }
  318. }
  319. else
  320. {
  321. MyGetOIDInfo(OIDName, sizeof(OIDName)/sizeof(WCHAR), pehku->rgpszUsageIdentifier[i]);
  322. aszUsages[i]= new CString(OIDName);
  323. if(aszUsages[i] == NULL)
  324. {
  325. return FALSE;
  326. }
  327. }
  328. }
  329. }
  331. delete[](pehku);
  333. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  334. return TRUE;
  335. }
  338. BOOL GetIntendedUsagesString(HCERTTYPE hCertType, CString *pUsageString)
  339. {
  340. CString **aszUsages = NULL;
  341. DWORD cNumUsages = 0;
  342. unsigned int i;
  344. if(!MyGetEnhancedKeyUsages(hCertType, NULL, &cNumUsages, NULL, FALSE))
  345. return FALSE;
  347. if(0==cNumUsages)
  348. {
  349. *pUsageString = "";
  350. return TRUE;
  351. }
  353. aszUsages = new CString*[cNumUsages];
  354. if(!aszUsages)
  355. return FALSE;
  357. if(!MyGetEnhancedKeyUsages(hCertType, aszUsages, &cNumUsages, NULL, FALSE))
  358. {
  359. delete[] aszUsages;
  360. return FALSE;
  361. }
  363. *pUsageString = "";
  365. for (i=0; i<cNumUsages; i++)
  366. {
  367. if (i != 0)
  368. {
  369. *pUsageString += ", ";
  370. }
  371. *pUsageString += *(aszUsages[i]);
  373. delete(aszUsages[i]);
  374. }
  376. delete[] aszUsages;
  378. return TRUE;
  379. }
  382. BOOL MyGetKeyUsages(HCERTTYPE hCertType, CRYPT_BIT_BLOB **ppBitBlob, BOOL *pfPublicKeyUsageCritical)
  383. {
  384. PCERT_EXTENSIONS pCertExtensions;
  385. DWORD cb = 0;
  386. unsigned int i;
  388. HRESULT hr;
  389. hr = CAGetCertTypeExtensionsEx(hCertType, CT_EXTENSION_KEY_USAGE, NULL, &pCertExtensions);
  391. if(hr != S_OK)
  392. {
  393. return FALSE;
  394. }
  396. if(1 != pCertExtensions->cExtension)
  397. {
  398. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  399. return FALSE;
  400. }
  402. i = 0;
  404. if (pfPublicKeyUsageCritical != NULL)
  405. {
  406. *pfPublicKeyUsageCritical = pCertExtensions->rgExtension[i].fCritical;
  407. }
  409. CryptDecodeObject(
  410. X509_ASN_ENCODING,
  411. X509_KEY_USAGE,
  412. pCertExtensions->rgExtension[i].Value.pbData,
  413. pCertExtensions->rgExtension[i].Value.cbData,
  414. 0,
  415. NULL,
  416. &cb);
  418. if (NULL == (*ppBitBlob = (CRYPT_BIT_BLOB *) new(BYTE[cb])))
  419. {
  420. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  421. return FALSE;
  422. }
  424. CryptDecodeObject(
  425. X509_ASN_ENCODING,
  426. X509_KEY_USAGE,
  427. pCertExtensions->rgExtension[i].Value.pbData,
  428. pCertExtensions->rgExtension[i].Value.cbData,
  429. 0,
  430. *ppBitBlob,
  431. &cb);
  433. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  434. return TRUE;
  435. }
  437. BOOL MyGetBasicConstraintInfo(HCERTTYPE hCertType, BOOL *pfCA, BOOL *pfPathLenConstraint, DWORD *pdwPathLenConstraint)
  438. {
  439. PCERT_EXTENSIONS pCertExtensions;
  440. DWORD cb = sizeof(CERT_BASIC_CONSTRAINTS2_INFO);
  441. unsigned int i;
  442. CERT_BASIC_CONSTRAINTS2_INFO basicConstraintsInfo;
  444. HRESULT hr;
  445. hr = CAGetCertTypeExtensionsEx(hCertType, CT_EXTENSION_BASIC_CONTRAINTS, NULL, &pCertExtensions);
  447. if(hr != S_OK)
  448. {
  449. return FALSE;
  450. }
  452. if(1 != pCertExtensions->cExtension)
  453. {
  454. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  455. return FALSE;
  456. }
  458. i = 0;
  460. CryptDecodeObject(
  461. X509_ASN_ENCODING,
  462. X509_BASIC_CONSTRAINTS2,
  463. pCertExtensions->rgExtension[i].Value.pbData,
  464. pCertExtensions->rgExtension[i].Value.cbData,
  465. 0,
  466. &basicConstraintsInfo,
  467. &cb);
  469. *pfCA = basicConstraintsInfo.fCA;
  470. *pfPathLenConstraint = basicConstraintsInfo.fPathLenConstraint;
  471. *pdwPathLenConstraint = basicConstraintsInfo.dwPathLenConstraint;
  473. CAFreeCertTypeExtensions(hCertType, pCertExtensions);
  474. return TRUE;
  475. }
  478. LPSTR MyMkMBStr(LPCWSTR pwsz)
  479. {
  480. int cb;
  481. LPSTR psz;
  483. if (pwsz == NULL)
  484. {
  485. return NULL;
  486. }
  488. cb = WideCharToMultiByte(
  489. 0,
  490. 0,
  491. pwsz,
  492. -1,
  493. NULL,
  494. 0,
  495. NULL,
  496. NULL);
  498. if (NULL == (psz = (LPSTR) new BYTE[cb]))
  499. {
  500. return NULL;
  501. }
  503. cb = WideCharToMultiByte(
  504. 0,
  505. 0,
  506. pwsz,
  507. -1,
  508. psz,
  509. cb,
  510. NULL,
  511. NULL);
  513. if (cb==0)
  514. {
  515. delete [] psz;
  516. return NULL;
  517. }
  518. return(psz);
  519. }
  521. LPWSTR MyMkWStr(LPCSTR psz)
  522. {
  523. int cWChars;
  524. LPWSTR pwsz;
  526. if (psz == NULL)
  527. {
  528. return NULL;
  529. }
  531. cWChars = MultiByteToWideChar(
  532. 0,
  533. 0,
  534. psz,
  535. -1,
  536. NULL,
  537. 0);
  539. if (NULL == (pwsz = (LPWSTR) new BYTE[cWChars * sizeof(WCHAR)] ))
  540. {
  541. return NULL;
  542. }
  544. cWChars = MultiByteToWideChar(
  545. 0,
  546. 0,
  547. psz,
  548. -1,
  549. pwsz,
  550. cWChars);
  552. if (cWChars == 0)
  553. {
  554. delete [] pwsz;
  555. return NULL;
  556. }
  557. return(pwsz);
  558. }
  561. HRESULT
  562. UpdateCATemplateList(
  563. HWND hwndParent,
  564. HCAINFO hCAInfo,
  565. const CTemplateList& list)
  566. {
  567. HRESULT hr = myUpdateCATemplateListToCA(hCAInfo, list);
  568. if(S_OK != hr)
  569. {
  570. // if failed to update through the CA for any reason, try
  571. // writing directly to DS
  573. CString cstrMsg, cstrTitle, cstrFormat;
  574. cstrFormat.LoadString(IDS_ERROR_CANNOT_SAVE_TEMPLATES);
  575. cstrTitle.LoadString(IDS_TITLE_CANNOT_SAVE_TEMPLATES);
  577. CAutoLPWSTR pwszError;
  578. pwszError.Attach((LPWSTR)myGetErrorMessageText(hr, TRUE));
  580. cstrMsg.Format(cstrFormat, (LPCWSTR)pwszError);
  582. if (IDYES != MessageBox(
  583. hwndParent,
  584. (LPCWSTR)cstrMsg,
  585. (LPCWSTR)cstrTitle,
  586. MB_YESNO))
  587. return ERROR_CANCELLED;
  589. hr = myUpdateCATemplateListToDS(hCAInfo);
  590. }
  592. return hr;
  593. }