archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
3.2 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/services/ca/tools/cep/setup/cepsetup.cpp

3577 lines
94 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows NT
  4. //
  5. // Copyright (C) Microsoft Corporation, 1995 - 1998
  6. //
  7. // File: cepsetup.cpp
  8. //
  9. // Contents: The setup code for MSCEP
  10. //--------------------------------------------------------------------------
  12. #include "global.hxx"
  13. #include <dbgdef.h>
  14. #include "objsel.h"
  15. #include "setuputil.h"
  16. #include "cepsetup.h"
  17. #include "resource.h"
  18. #include "wincred.h"
  19. #include "netlib.h"
  20. #include "dsrole.h"
  22. //-----------------------------------------------------------------------
  23. //
  24. // Global data
  25. //
  26. //-----------------------------------------------------------------------
  28. HMODULE g_hModule=NULL;
  29. UINT g_cfDsObjectPicker = RegisterClipboardFormat(CFSTR_DSOP_DS_SELECTION_LIST);
  31. //-----------------------------------------------------------------------
  32. //CN has to be the 1st item and O the third in the following list and C is the last item. No other requirements for
  33. //the order
  34. //-----------------------------------------------------------------------
  36. CEP_ENROLL_INFO g_rgRAEnrollInfo[RA_INFO_COUNT]=
  37. {L"CN=", IDC_ENROLL_NAME,
  38. L"E=", IDC_ENROLL_EMAIL,
  39. L"O=", IDC_ENROLL_COMPANY,
  40. L"OU=", IDC_ENROLL_DEPARTMENT,
  41. L"L=", IDC_ENROLL_CITY,
  42. L"S=", IDC_ENROLL_STATE,
  43. L"C=", IDC_ENROLL_COUNTRY,
  44. };
  47. //-----------------------------------------------------------------------
  48. //the key length table
  49. //-----------------------------------------------------------------------
  50. DWORD g_rgdwKeyLength[] =
  51. {
  52. 512,
  53. 1024,
  54. 2048,
  55. 4096,
  56. };
  58. DWORD g_dwKeyLengthCount=sizeof(g_rgdwKeyLength)/sizeof(g_rgdwKeyLength[0]);
  60. DWORD g_rgdwSmallKeyLength[] =
  61. {
  62. 128,
  63. 256,
  64. 512,
  65. 1024,
  66. };
  68. DWORD g_dwSmallKeyLengthCount=sizeof(g_rgdwSmallKeyLength)/sizeof(g_rgdwSmallKeyLength[0]);
  70. //the list of possible default key lenght in the order of preference
  71. DWORD g_rgdwDefaultKey[] =
  72. {
  73. 1024,
  74. 2048,
  75. 512,
  76. 256,
  77. 4096,
  78. 128
  79. };
  81. DWORD g_dwDefaultKeyCount=sizeof(g_rgdwDefaultKey)/sizeof(g_rgdwDefaultKey[0]);
  83. //-----------------------------------------------------------------------
  84. //
  85. //The winProc for each of the setup wizard page
  86. //
  87. //-----------------------------------------------------------------------
  90. //-----------------------------------------------------------------------
  91. //Welcome
  92. //-----------------------------------------------------------------------
  93. INT_PTR APIENTRY CEP_Welcome(HWND hwndDlg, UINT msg, WPARAM wParam, LPARAM lParam)
  94. {
  95. CEP_WIZARD_INFO *pCEPWizardInfo=NULL;
  96. PROPSHEETPAGE *pPropSheet=NULL;
  99. switch (msg)
  100. {
  101. case WM_INITDIALOG:
  102. //set the wizard information so that it can be shared
  103. pPropSheet = (PROPSHEETPAGE *) lParam;
  104. pCEPWizardInfo = (CEP_WIZARD_INFO *) (pPropSheet->lParam);
  105. SetWindowLongPtr(hwndDlg, DWLP_USER, (LONG_PTR)pCEPWizardInfo);
  107. SetControlFont(pCEPWizardInfo->hBigBold, hwndDlg,IDC_BIG_BOLD_TITLE);
  108. break;
  110. case WM_NOTIFY:
  111. switch (((NMHDR FAR *) lParam)->code)
  112. {
  114. case PSN_KILLACTIVE:
  115. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  116. return TRUE;
  118. break;
  120. case PSN_RESET:
  121. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  122. break;
  124. case PSN_SETACTIVE:
  125. PropSheet_SetWizButtons(GetParent(hwndDlg), PSWIZB_NEXT);
  126. break;
  128. case PSN_WIZBACK:
  129. break;
  131. case PSN_WIZNEXT:
  133. break;
  135. default:
  136. return FALSE;
  138. }
  139. break;
  141. default:
  142. return FALSE;
  143. }
  145. return TRUE;
  146. }
  148. //-----------------------------------------------------------------------
  149. //App_ID
  150. //-----------------------------------------------------------------------
  151. INT_PTR APIENTRY CEP_App_ID(HWND hwndDlg, UINT msg, WPARAM wParam, LPARAM lParam)
  152. {
  153. CEP_WIZARD_INFO *pCEPWizardInfo=NULL;
  154. PROPSHEETPAGE *pPropSheet=NULL;
  157. switch (msg)
  158. {
  159. case WM_INITDIALOG:
  160. //set the wizard information so that it can be shared
  161. pPropSheet = (PROPSHEETPAGE *) lParam;
  162. pCEPWizardInfo = (CEP_WIZARD_INFO *) (pPropSheet->lParam);
  164. //make sure pCertWizardInfo is a valid pointer
  165. if(NULL==pCEPWizardInfo)
  166. break;
  168. SetWindowLongPtr(hwndDlg, DWLP_USER, (LONG_PTR)pCEPWizardInfo);
  170. SetControlFont(pCEPWizardInfo->hBold, hwndDlg,IDC_BOLD_TITLE);
  172. //by default, we use local machine account
  173. SendMessage(GetDlgItem(hwndDlg, IDC_APP_ID_RADIO1), BM_SETCHECK, BST_CHECKED, 0);
  175. SendMessage(GetDlgItem(hwndDlg, IDC_APP_ID_RADIO2), BM_SETCHECK, BST_UNCHECKED, 0);
  176. break;
  178. case WM_COMMAND:
  179. if(HIWORD(wParam) == BN_CLICKED)
  180. {
  181. switch (LOWORD(wParam))
  182. {
  183. case IDC_APP_ID_RADIO1:
  184. SendMessage(GetDlgItem(hwndDlg, IDC_APP_ID_RADIO1), BM_SETCHECK, BST_CHECKED, 0);
  185. SendMessage(GetDlgItem(hwndDlg, IDC_APP_ID_RADIO2), BM_SETCHECK, BST_UNCHECKED, 0);
  186. break;
  188. case IDC_APP_ID_RADIO2:
  189. SendMessage(GetDlgItem(hwndDlg, IDC_APP_ID_RADIO1), BM_SETCHECK, BST_UNCHECKED, 0);
  190. SendMessage(GetDlgItem(hwndDlg, IDC_APP_ID_RADIO2), BM_SETCHECK, BST_CHECKED, 0);
  191. break;
  193. default:
  194. break;
  196. }
  197. }
  199. break;
  201. case WM_NOTIFY:
  202. switch (((NMHDR FAR *) lParam)->code)
  203. {
  205. case PSN_KILLACTIVE:
  206. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  207. return TRUE;
  209. break;
  211. case PSN_RESET:
  212. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  213. break;
  215. case PSN_SETACTIVE:
  216. PropSheet_SetWizButtons(GetParent(hwndDlg), PSWIZB_NEXT|PSWIZB_BACK);
  217. break;
  219. case PSN_WIZBACK:
  220. break;
  222. case PSN_WIZNEXT:
  224. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  225. break;
  227. //check for the application identity options
  228. if(BST_CHECKED==SendDlgItemMessage(hwndDlg,IDC_APP_ID_RADIO1, BM_GETCHECK, 0, 0))
  229. {
  230. pCEPWizardInfo->fLocalSystem=TRUE;
  232. //skip the account page and goes to the challege page directly
  233. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, IDD_CHALLENGE);
  234. }
  235. else
  236. {
  237. pCEPWizardInfo->fLocalSystem=FALSE;
  239. }
  241. break;
  243. default:
  244. return FALSE;
  246. }
  247. break;
  249. default:
  250. return FALSE;
  251. }
  253. return TRUE;
  254. }
  256. //-----------------------------------------------------------------------
  257. //Account
  258. //-----------------------------------------------------------------------
  259. INT_PTR APIENTRY CEP_Account(HWND hwndDlg, UINT msg, WPARAM wParam, LPARAM lParam)
  260. {
  261. CEP_WIZARD_INFO *pCEPWizardInfo=NULL;
  262. PROPSHEETPAGE *pPropSheet=NULL;
  263. WCHAR wszText[MAX_STRING_SIZE];
  264. int idsText=IDS_ACCOUNT_INTRO_STD;
  265. int idsErr=0;
  266. DWORD dwChar=0;
  267. DWORD dwDomainChar=0;
  268. DWORD dwWinStatus=0;
  269. WCHAR wszUser[CREDUI_MAX_USERNAME_LENGTH+1];
  270. WCHAR wszDomain[CREDUI_MAX_USERNAME_LENGTH+1];
  271. HRESULT hr=S_OK;
  272. int idsHrErr=0;
  273. BOOL fMember=FALSE;
  274. SID_NAME_USE SidName;
  275. PRIVILEGE_SET ps;
  276. DWORD dwPSSize=0;
  277. DWORD dwSize=0;
  278. BOOL fAccessAllowed = FALSE;
  279. DWORD grantAccess=0;
  280. GENERIC_MAPPING GenericMapping={
  281. ACTRL_DS_OPEN | ACTRL_DS_LIST | ACTRL_DS_SELF | ACTRL_DS_READ_PROP,
  282. ACTRL_DS_CREATE_CHILD | ACTRL_DS_DELETE_CHILD | ACTRL_DS_WRITE_PROP | ACTRL_DS_DELETE_TREE,
  283. ACTRL_DS_CREATE_CHILD | ACTRL_DS_DELETE_CHILD | ACTRL_DS_WRITE_PROP | ACTRL_DS_DELETE_TREE,
  284. ACTRL_DS_OPEN | ACTRL_DS_LIST | ACTRL_DS_SELF | ACTRL_DS_READ_PROP | ACTRL_DS_CREATE_CHILD | ACTRL_DS_DELETE_CHILD | ACTRL_DS_WRITE_PROP | ACTRL_DS_DELETE_TREE,
  285. };
  288. LPWSTR pwszObjectPicker=NULL;
  289. LPWSTR pwszConfirm=NULL;
  290. LPWSTR pwszAccount=NULL;
  291. LPWSTR pwszIIS=NULL; //"xiaohs4\IIS_WPG"
  292. LPWSTR pwszDomain=NULL;
  293. LPWSTR pwszComputerName=NULL;
  294. PSID pSidIIS=NULL;
  295. HCERTTYPE hCertType=NULL;
  296. PSECURITY_DESCRIPTOR pCertTypeSD=NULL;
  298. switch (msg)
  299. {
  300. case WM_INITDIALOG:
  301. //set the wizard information so that it can be shared
  302. pPropSheet = (PROPSHEETPAGE *) lParam;
  303. pCEPWizardInfo = (CEP_WIZARD_INFO *) (pPropSheet->lParam);
  305. //make sure pCertWizardInfo is a valid pointer
  306. if(NULL==pCEPWizardInfo)
  307. break;
  309. SetWindowLongPtr(hwndDlg, DWLP_USER, (LONG_PTR)pCEPWizardInfo);
  311. SetControlFont(pCEPWizardInfo->hBold, hwndDlg,IDC_BOLD_TITLE);
  313. //update the intro statement based on the type of the CA
  314. if(pCEPWizardInfo->fEnterpriseCA)
  315. idsText=IDS_ACCOUNT_INTRO_ENT;
  317. if(LoadStringU(g_hModule, idsText, wszText, MAX_STRING_SIZE))
  318. {
  319. SetDlgItemTextU(hwndDlg, IDC_ACCOUNT_INTRO, wszText);
  320. }
  323. break;
  325. case WM_COMMAND:
  326. if(HIWORD(wParam) == BN_CLICKED)
  327. {
  328. //user wants to browse for the account name
  329. if(LOWORD(wParam) == IDC_ACCOUNT_BROWSE)
  330. {
  332. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  333. break;
  335. if(CEPGetAccountNameFromPicker(hwndDlg,
  336. pCEPWizardInfo->pIDsObjectPicker,
  337. &pwszObjectPicker))
  338. {
  339. //set the account name in the edit box
  340. SetDlgItemTextU(hwndDlg, IDC_ACCOUNT_NAME, pwszObjectPicker);
  341. free(pwszObjectPicker);
  342. }
  343. }
  344. }
  345. break;
  347. case WM_NOTIFY:
  348. switch (((NMHDR FAR *) lParam)->code)
  349. {
  351. case PSN_KILLACTIVE:
  352. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  353. return TRUE;
  355. break;
  357. case PSN_RESET:
  358. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  359. break;
  361. case PSN_SETACTIVE:
  362. PropSheet_SetWizButtons(GetParent(hwndDlg), PSWIZB_NEXT|PSWIZB_BACK);
  363. break;
  365. case PSN_WIZBACK:
  366. break;
  368. case PSN_WIZNEXT:
  370. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  371. break;
  373. //free the information
  374. if(pCEPWizardInfo->pwszUserName)
  375. {
  376. free(pCEPWizardInfo->pwszUserName);
  377. pCEPWizardInfo->pwszUserName=NULL;
  378. }
  380. if(pCEPWizardInfo->pwszPassword)
  381. {
  382. SecureZeroMemory(pCEPWizardInfo->pwszPassword, sizeof(WCHAR) * wcslen(pCEPWizardInfo->pwszPassword));
  383. free(pCEPWizardInfo->pwszPassword);
  384. pCEPWizardInfo->pwszPassword=NULL;
  385. }
  387. if(pCEPWizardInfo->hAccountToken)
  388. {
  389. CloseHandle(pCEPWizardInfo->hAccountToken);
  390. pCEPWizardInfo->hAccountToken=NULL;
  391. }
  393. //get the account name
  394. if(0==(dwChar=(DWORD)SendDlgItemMessage(hwndDlg, IDC_ACCOUNT_NAME, WM_GETTEXTLENGTH, 0, 0)))
  395. {
  396. idsErr=IDS_ACCOUNT_EMPTY;
  397. goto Account_Done;
  398. }
  400. pCEPWizardInfo->pwszUserName=(LPWSTR)malloc(sizeof(WCHAR)*(dwChar+1));
  402. if(NULL==(pCEPWizardInfo->pwszUserName))
  403. goto Account_Done;
  405. GetDlgItemTextU(hwndDlg, IDC_ACCOUNT_NAME, pCEPWizardInfo->pwszUserName, dwChar+1);
  407. //get the password
  408. if(0==(dwChar=(DWORD)SendDlgItemMessage(hwndDlg, IDC_ACCOUNT_PASSWORD, WM_GETTEXTLENGTH, 0, 0)))
  409. {
  410. idsErr=IDS_PASSWORD_EMPTY;
  411. goto Account_Done;
  412. }
  414. pCEPWizardInfo->pwszPassword=(LPWSTR)malloc(sizeof(WCHAR)*(dwChar+1));
  416. if(NULL==(pCEPWizardInfo->pwszPassword))
  417. goto Account_Done;
  419. *(pCEPWizardInfo->pwszPassword)=L'\0';
  421. GetDlgItemTextU(hwndDlg, IDC_ACCOUNT_PASSWORD, pCEPWizardInfo->pwszPassword, dwChar+1);
  423. //get the confirm
  424. if(0==(dwChar=(DWORD)SendDlgItemMessage(hwndDlg, IDC_ACCOUNT_CONFIRM, WM_GETTEXTLENGTH, 0, 0)))
  425. {
  426. idsErr=IDS_PASSWORD_NO_MATCH;
  427. goto Account_Done;
  428. }
  430. pwszConfirm=(LPWSTR)malloc(sizeof(WCHAR)*(dwChar+1));
  432. if(NULL==pwszConfirm)
  433. goto Account_Done;
  435. GetDlgItemTextU(hwndDlg, IDC_ACCOUNT_CONFIRM, pwszConfirm, dwChar+1);
  437. //Verify the password match
  438. if(0 != wcscmp(pwszConfirm, pCEPWizardInfo->pwszPassword))
  439. {
  440. idsErr=IDS_PASSWORD_NO_MATCH;
  441. goto Account_Done;
  442. }
  444. //Verify the user name are correctly formatted
  445. wszDomain[0]=L'\0';
  447. if(NO_ERROR != CredUIParseUserNameW(
  448. pCEPWizardInfo->pwszUserName,
  449. wszUser,
  450. sizeof(wszUser)/sizeof(WCHAR),
  451. wszDomain,
  452. sizeof(wszDomain)/sizeof(WCHAR)))
  453. {
  454. idsErr=IDS_INVALID_NAME;
  455. goto Account_Done;
  456. }
  458. //Verify the account does exist. Obtain the account's token
  459. //Interactive logon is required on a non-dc machine
  460. if(FALSE == pCEPWizardInfo->fDC)
  461. {
  462. if(!LogonUserW(
  463. wszUser,
  464. wszDomain,
  465. pCEPWizardInfo->pwszPassword,
  466. LOGON32_LOGON_INTERACTIVE,
  467. LOGON32_PROVIDER_DEFAULT,
  468. &(pCEPWizardInfo->hAccountToken)))
  469. {
  470. idsHrErr=IDS_FAIL_LOGON_USER;
  471. goto Account_Done;
  472. }
  474. //do a network logon to obtain the impersonation handle
  475. if(pCEPWizardInfo->hAccountToken)
  476. {
  477. CloseHandle(pCEPWizardInfo->hAccountToken);
  478. pCEPWizardInfo->hAccountToken=NULL;
  479. }
  480. }
  482. //network logon to obtain the token
  483. if(!LogonUserW(
  484. wszUser,
  485. wszDomain,
  486. pCEPWizardInfo->pwszPassword,
  487. LOGON32_LOGON_NETWORK,
  488. LOGON32_PROVIDER_DEFAULT,
  489. &(pCEPWizardInfo->hAccountToken)))
  490. {
  491. idsHrErr=IDS_FAIL_LOGON_USER;
  492. goto Account_Done;
  493. }
  495. //build the account name for IIS_WPG group.
  496. //for a non-DC, it will be localhost\IIS_WPG
  497. //for a DC, it will be domain\IIS_WPG
  499. //get the domain or localhost name
  500. pwszAccount=GetAccountDomainName(pCEPWizardInfo->fDC);
  502. if(NULL==pwszAccount)
  503. {
  504. idsHrErr=IDS_FAIL_FIND_DOMAIN;
  505. goto Account_Done;
  506. }
  508. //build the IIS_WPG account
  509. pwszIIS=(LPWSTR)malloc((wcslen(pwszAccount) + 1 + wcslen(IIS_WPG) + 1)*sizeof(WCHAR));
  510. if(NULL==pwszIIS)
  511. goto Account_Done;
  513. wcscpy(pwszIIS, pwszAccount);
  514. wcscat(pwszIIS, L"\\");
  515. wcscat(pwszIIS, IIS_WPG);
  518. //Obtain the SID for the IIS_WPG group
  519. dwChar=0;
  520. dwDomainChar=0;
  522. LookupAccountNameW(
  523. NULL, //local system
  524. pwszIIS,
  525. NULL,
  526. &dwChar,
  527. NULL,
  528. &dwDomainChar,
  529. &SidName);
  531. pSidIIS=(PSID)malloc(dwChar);
  532. if(NULL==pSidIIS)
  533. goto Account_Done;
  535. pwszDomain=(LPWSTR)malloc(dwDomainChar * sizeof(WCHAR));
  536. if(NULL==pwszDomain)
  537. goto Account_Done;
  539. if(!LookupAccountNameW(
  540. NULL, //local system
  541. pwszIIS,
  542. pSidIIS,
  543. &dwChar,
  544. pwszDomain,
  545. &dwDomainChar,
  546. &SidName))
  547. {
  548. idsHrErr=IDS_FAIL_LOOK_UP;
  549. goto Account_Done;
  550. }
  552. //Verify the account is part of the local IIS_WPG group
  553. if(!CheckTokenMembership(
  554. pCEPWizardInfo->hAccountToken,
  555. pSidIIS,
  556. &fMember))
  557. {
  558. idsHrErr=IDS_FAIL_CHECK_MEMBER;
  559. goto Account_Done;
  560. }
  562. if(FALSE == fMember)
  563. {
  564. idsErr=IDS_NOT_IIS_MEMBER;
  565. goto Account_Done;
  566. }
  568. //on an enterprise CA, verify the account as READ access to the template
  569. if(pCEPWizardInfo->fEnterpriseCA)
  570. {
  571. //make sure that this is an domain account:
  572. //DOMAIN_GROUP_RID_USERS
  573. if(0 != wcslen(wszDomain))
  574. {
  575. dwSize=0;
  577. GetComputerNameExW(ComputerNamePhysicalDnsHostname,
  578. NULL,
  579. &dwSize);
  581. pwszComputerName=(LPWSTR)malloc(dwSize * sizeof(WCHAR));
  583. if(NULL==pwszComputerName)
  584. goto Account_Done;
  586. if(!GetComputerNameExW(ComputerNamePhysicalDnsHostname,
  587. pwszComputerName,
  588. &dwSize))
  589. {
  590. idsHrErr=IDS_FAIL_GET_COMPUTER_NAME;
  591. goto Account_Done;
  592. }
  595. if(0 == _wcsicmp(wszDomain, pwszComputerName))
  596. {
  597. idsErr=IDS_NO_LOCAL_ACCOUNT;
  598. goto Account_Done;
  599. }
  600. }
  602. hr=CAFindCertTypeByName(wszCERTTYPE_IPSEC_INTERMEDIATE_OFFLINE, NULL, CT_ENUM_MACHINE_TYPES, &hCertType);
  604. if(S_OK != hr)
  605. {
  606. idsHrErr=IDS_FAIL_FIND_CERT_TYPE;
  607. goto Account_Done;
  608. }
  610. //get the SD for the template
  611. hr=CACertTypeGetSecurity(hCertType, &pCertTypeSD);
  613. if(S_OK != hr)
  614. {
  615. idsHrErr=IDS_FAIL_FIND_SD_CERT_TYPE;
  616. goto Account_Done;
  617. }
  619. //check the DS_READ Access
  620. dwPSSize=sizeof(ps);
  622. if(!AccessCheck(
  623. pCertTypeSD,
  624. pCEPWizardInfo->hAccountToken,
  625. ACTRL_DS_LIST | ACTRL_DS_READ_PROP,
  626. &GenericMapping,
  627. &ps,
  628. &dwPSSize,
  629. &grantAccess,
  630. &fAccessAllowed))
  631. {
  632. idsHrErr=IDS_FAIL_DETECT_READ_ACCESS;
  633. goto Account_Done;
  634. }
  636. //make sure the account has read access to the template
  637. if(FALSE == fAccessAllowed)
  638. {
  639. idsErr=IDS_NO_READ_ACCESS_TO_TEMPLATE;
  640. goto Account_Done;
  641. }
  642. }
  644. //everything looks good
  645. idsErr=0;
  646. idsHrErr=0;
  648. Account_Done:
  650. if(pwszComputerName)
  651. {
  652. free(pwszComputerName);
  653. }
  655. if(pwszConfirm)
  656. {
  657. free(pwszConfirm);
  658. }
  660. if(pwszAccount)
  661. {
  662. NetApiBufferFree(pwszAccount);
  663. }
  665. if(pwszIIS)
  666. {
  667. free(pwszIIS);
  668. }
  670. if(pwszDomain)
  671. {
  672. free(pwszDomain);
  673. }
  675. if(pSidIIS)
  676. {
  677. free(pSidIIS);
  678. }
  680. if(pCertTypeSD)
  681. {
  682. LocalFree(pCertTypeSD);
  683. }
  685. if(hCertType)
  686. {
  687. CACloseCertType(hCertType);
  688. }
  690. if(0 != idsErr)
  691. {
  692. CEPMessageBox(hwndDlg, idsErr, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  693. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  694. }
  695. else
  696. {
  697. if(0 != idsHrErr)
  698. {
  699. if(S_OK == hr)
  700. {
  701. hr=HRESULT_FROM_WIN32(GetLastError());
  702. }
  704. CEPErrorMessageBoxEx(hwndDlg, idsHrErr, hr, MB_ICONERROR|MB_OK|MB_APPLMODAL, IDS_GEN_ERROR_MSG_HR, IDS_GEN_ERROR_MSG);
  705. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  706. }
  707. }
  709. break;
  711. default:
  712. return FALSE;
  714. }
  715. break;
  717. default:
  718. return FALSE;
  719. }
  721. return TRUE;
  722. }
  725. //-----------------------------------------------------------------------
  726. //Chanllenge
  727. //-----------------------------------------------------------------------
  728. INT_PTR APIENTRY CEP_Challenge(HWND hwndDlg, UINT msg, WPARAM wParam, LPARAM lParam)
  729. {
  730. CEP_WIZARD_INFO *pCEPWizardInfo=NULL;
  731. PROPSHEETPAGE *pPropSheet=NULL;
  734. switch (msg)
  735. {
  736. case WM_INITDIALOG:
  737. //set the wizard information so that it can be shared
  738. pPropSheet = (PROPSHEETPAGE *) lParam;
  739. pCEPWizardInfo = (CEP_WIZARD_INFO *) (pPropSheet->lParam);
  741. //make sure pCertWizardInfo is a valid pointer
  742. if(NULL==pCEPWizardInfo)
  743. break;
  745. SetWindowLongPtr(hwndDlg, DWLP_USER, (LONG_PTR)pCEPWizardInfo);
  747. SetControlFont(pCEPWizardInfo->hBold, hwndDlg,IDC_BOLD_TITLE);
  749. //by default, we should use Challenge password
  750. SendMessage(GetDlgItem(hwndDlg, IDC_CHALLENGE_CHECK), BM_SETCHECK, BST_CHECKED, 0);
  751. break;
  753. case WM_COMMAND:
  754. break;
  756. case WM_NOTIFY:
  757. switch (((NMHDR FAR *) lParam)->code)
  758. {
  760. case PSN_KILLACTIVE:
  761. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  762. return TRUE;
  764. break;
  766. case PSN_RESET:
  767. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  768. break;
  770. case PSN_SETACTIVE:
  771. PropSheet_SetWizButtons(GetParent(hwndDlg), PSWIZB_NEXT|PSWIZB_BACK);
  772. break;
  774. case PSN_WIZBACK:
  775. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  776. break;
  778. if(TRUE == (pCEPWizardInfo->fLocalSystem))
  779. {
  780. //skip the account page and goes to the application identity page
  781. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, IDD_APP_ID);
  782. }
  784. break;
  786. case PSN_WIZNEXT:
  788. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  789. break;
  791. //check for the Challenge password options
  792. if(BST_CHECKED==SendDlgItemMessage(hwndDlg,IDC_CHALLENGE_CHECK, BM_GETCHECK, 0, 0))
  793. pCEPWizardInfo->fPassword=TRUE;
  794. else
  795. pCEPWizardInfo->fPassword=FALSE;
  798. //warn users about the implication of not using a password
  799. if(FALSE == pCEPWizardInfo->fPassword)
  800. {
  801. if(IDNO==CEPMessageBox(hwndDlg, IDS_NO_CHALLENGE_PASSWORD, MB_ICONWARNING|MB_YESNO|MB_APPLMODAL))
  802. {
  803. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  804. break;
  805. }
  806. }
  808. if(!EmptyCEPStore())
  809. {
  810. CEPMessageBox(hwndDlg, IDS_EXISTING_RA, MB_ICONINFORMATION|MB_OK|MB_APPLMODAL);
  812. if(IDNO==CEPMessageBox(hwndDlg, IDS_PROCESS_PENDING, MB_ICONQUESTION|MB_YESNO|MB_APPLMODAL))
  813. {
  814. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  815. break;
  816. }
  817. }
  819. break;
  821. default:
  822. return FALSE;
  824. }
  825. break;
  827. default:
  828. return FALSE;
  829. }
  831. return TRUE;
  832. }
  835. //-----------------------------------------------------------------------
  836. // Enroll
  837. //-----------------------------------------------------------------------
  838. INT_PTR APIENTRY CEP_Enroll(HWND hwndDlg, UINT msg, WPARAM wParam, LPARAM lParam)
  839. {
  840. CEP_WIZARD_INFO *pCEPWizardInfo=NULL;
  841. PROPSHEETPAGE *pPropSheet=NULL;
  843. DWORD dwIndex=0;
  844. DWORD dwChar=0;
  847. switch (msg)
  848. {
  849. case WM_INITDIALOG:
  850. //set the wizard information so that it can be shared
  851. pPropSheet = (PROPSHEETPAGE *) lParam;
  852. pCEPWizardInfo = (CEP_WIZARD_INFO *) (pPropSheet->lParam);
  854. //make sure pCertWizardInfo is a valid pointer
  855. if(NULL==pCEPWizardInfo)
  856. break;
  858. SetWindowLongPtr(hwndDlg, DWLP_USER, (LONG_PTR)pCEPWizardInfo);
  860. SetControlFont(pCEPWizardInfo->hBold, hwndDlg,IDC_BOLD_TITLE);
  862. //by default, we do not use the advanced enrollment options
  863. SendMessage(GetDlgItem(hwndDlg, IDC_ENORLL_ADV_CHECK), BM_SETCHECK, BST_UNCHECKED, 0);
  865. //preset the country string since we only allow 2 characters
  866. SetDlgItemTextU(hwndDlg, IDC_ENROLL_COUNTRY, L"US");
  868. break;
  870. case WM_COMMAND:
  871. break;
  873. case WM_NOTIFY:
  874. switch (((NMHDR FAR *) lParam)->code)
  875. {
  877. case PSN_KILLACTIVE:
  878. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  879. return TRUE;
  881. break;
  883. case PSN_RESET:
  884. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  885. break;
  887. case PSN_SETACTIVE:
  888. PropSheet_SetWizButtons(GetParent(hwndDlg), PSWIZB_NEXT|PSWIZB_BACK);
  890. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  891. break;
  893. //if the adv selection is made, it has to stay selected
  894. if(pCEPWizardInfo->fEnrollAdv)
  895. EnableWindow(GetDlgItem(hwndDlg, IDC_ENORLL_ADV_CHECK), FALSE);
  896. break;
  898. case PSN_WIZBACK:
  899. break;
  901. case PSN_WIZNEXT:
  903. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  904. break;
  906. //gather RA subject informaton
  907. for(dwIndex=0; dwIndex < RA_INFO_COUNT; dwIndex++)
  908. {
  909. if(pCEPWizardInfo->rgpwszName[dwIndex])
  910. {
  911. free(pCEPWizardInfo->rgpwszName[dwIndex]);
  912. pCEPWizardInfo->rgpwszName[dwIndex]=NULL;
  914. }
  916. if(0!=(dwChar=(DWORD)SendDlgItemMessage(hwndDlg,
  917. g_rgRAEnrollInfo[dwIndex].dwIDC,
  918. WM_GETTEXTLENGTH, 0, 0)))
  919. {
  920. pCEPWizardInfo->rgpwszName[dwIndex]=(LPWSTR)malloc(sizeof(WCHAR)*(dwChar+1));
  922. if(NULL!=(pCEPWizardInfo->rgpwszName[dwIndex]))
  923. {
  924. GetDlgItemTextU(hwndDlg, g_rgRAEnrollInfo[dwIndex].dwIDC,
  925. pCEPWizardInfo->rgpwszName[dwIndex],
  926. dwChar+1);
  928. }
  929. }
  930. }
  932. //we require name and company
  933. if((NULL==(pCEPWizardInfo->rgpwszName[0])) ||
  934. (NULL==(pCEPWizardInfo->rgpwszName[2]))
  935. )
  936. {
  937. CEPMessageBox(hwndDlg, IDS_ENROLL_REQUIRE_NAME, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  938. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  939. break;
  940. }
  943. //we only allow 2 characeters for the country
  944. if(NULL !=(pCEPWizardInfo->rgpwszName[RA_INFO_COUNT -1]))
  945. {
  946. if(2 < wcslen(pCEPWizardInfo->rgpwszName[RA_INFO_COUNT -1]))
  947. {
  948. CEPMessageBox(hwndDlg, IDS_ENROLL_COUNTRY_TOO_LARGE, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  949. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  950. break;
  951. }
  952. }
  954. //check for the advanced options
  955. if(BST_CHECKED==SendDlgItemMessage(hwndDlg,IDC_ENORLL_ADV_CHECK, BM_GETCHECK, 0, 0))
  956. pCEPWizardInfo->fEnrollAdv=TRUE;
  957. else
  958. pCEPWizardInfo->fEnrollAdv=FALSE;
  961. //If the advanced is selected, skip the CSP Page
  962. if(FALSE== pCEPWizardInfo->fEnrollAdv)
  963. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, IDD_COMPLETION);
  965. break;
  967. default:
  968. return FALSE;
  970. }
  971. break;
  973. default:
  974. return FALSE;
  975. }
  977. return TRUE;
  978. }
  980. //-----------------------------------------------------------------------
  981. // CSP
  982. //-----------------------------------------------------------------------
  983. INT_PTR APIENTRY CEP_CSP(HWND hwndDlg, UINT msg, WPARAM wParam, LPARAM lParam)
  984. {
  985. CEP_WIZARD_INFO *pCEPWizardInfo=NULL;
  986. PROPSHEETPAGE *pPropSheet=NULL;
  987. NM_LISTVIEW FAR * pnmv=NULL;
  988. BOOL fSign=FALSE;
  989. int idCombo=0;
  992. switch (msg)
  993. {
  994. case WM_INITDIALOG:
  995. //set the wizard information so that it can be shared
  996. pPropSheet = (PROPSHEETPAGE *) lParam;
  997. pCEPWizardInfo = (CEP_WIZARD_INFO *) (pPropSheet->lParam);
  999. //make sure pCertWizardInfo is a valid pointer
  1000. if(NULL==pCEPWizardInfo)
  1001. break;
  1003. SetWindowLongPtr(hwndDlg, DWLP_USER, (LONG_PTR)pCEPWizardInfo);
  1005. SetControlFont(pCEPWizardInfo->hBold, hwndDlg,IDC_BOLD_TITLE);
  1007. //populate the CSP list and key length combo box
  1008. InitCSPList(hwndDlg, IDC_CSP_SIGN_LIST, TRUE,
  1009. pCEPWizardInfo);
  1011. InitCSPList(hwndDlg, IDC_CSP_ENCRYPT_LIST, FALSE,
  1012. pCEPWizardInfo);
  1014. RefreshKeyLengthCombo(hwndDlg,
  1015. IDC_CSP_SIGN_LIST,
  1016. IDC_CSP_SIGN_COMBO,
  1017. TRUE,
  1018. pCEPWizardInfo);
  1020. RefreshKeyLengthCombo(hwndDlg,
  1021. IDC_CSP_ENCRYPT_LIST,
  1022. IDC_CSP_ENCRYPT_COMBO,
  1023. FALSE,
  1024. pCEPWizardInfo);
  1026. break;
  1028. case WM_COMMAND:
  1029. break;
  1031. case WM_NOTIFY:
  1032. switch (((NMHDR FAR *) lParam)->code)
  1033. {
  1035. case LVN_ITEMCHANGED:
  1037. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  1038. break;
  1040. pnmv = (LPNMLISTVIEW) lParam;
  1042. if(NULL==pnmv)
  1043. break;
  1045. if (pnmv->uNewState & LVIS_SELECTED)
  1046. {
  1048. if(IDC_CSP_SIGN_LIST == (pnmv->hdr).idFrom)
  1049. {
  1050. fSign=TRUE;
  1051. idCombo=IDC_CSP_SIGN_COMBO;
  1052. }
  1053. else
  1054. {
  1055. if(IDC_CSP_ENCRYPT_LIST != (pnmv->hdr).idFrom)
  1056. break;
  1058. fSign=FALSE;
  1059. idCombo=IDC_CSP_ENCRYPT_COMBO;
  1060. }
  1062. RefreshKeyLengthCombo(
  1063. hwndDlg,
  1064. (int)((pnmv->hdr).idFrom),
  1065. idCombo,
  1066. fSign,
  1067. pCEPWizardInfo);
  1068. }
  1070. break;
  1072. case PSN_KILLACTIVE:
  1073. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  1074. return TRUE;
  1076. break;
  1078. case PSN_RESET:
  1079. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  1080. break;
  1082. case PSN_SETACTIVE:
  1083. PropSheet_SetWizButtons(GetParent(hwndDlg), PSWIZB_NEXT|PSWIZB_BACK);
  1084. break;
  1086. case PSN_WIZBACK:
  1087. break;
  1089. case PSN_WIZNEXT:
  1091. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  1092. break;
  1094. //get the select CSP and key length
  1095. if(!GetSelectedCSP(hwndDlg,
  1096. IDC_CSP_SIGN_LIST,
  1097. &(pCEPWizardInfo->dwSignProvIndex)))
  1098. {
  1099. CEPMessageBox(hwndDlg, IDS_SELECT_SIGN_CSP, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  1100. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  1101. break;
  1102. }
  1104. if(!GetSelectedCSP(hwndDlg,
  1105. IDC_CSP_ENCRYPT_LIST,
  1106. &(pCEPWizardInfo->dwEncryptProvIndex)))
  1107. {
  1108. CEPMessageBox(hwndDlg, IDS_SELECT_ENCRYPT_CSP, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  1109. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  1110. break;
  1111. }
  1113. if(!GetSelectedKeyLength(hwndDlg,
  1114. IDC_CSP_SIGN_COMBO,
  1115. &(pCEPWizardInfo->dwSignKeyLength)))
  1116. {
  1117. CEPMessageBox(hwndDlg, IDS_SELECT_SIGN_KEY_LENGTH, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  1118. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  1119. break;
  1120. }
  1122. if(!GetSelectedKeyLength(hwndDlg,
  1123. IDC_CSP_ENCRYPT_COMBO,
  1124. &(pCEPWizardInfo->dwEncryptKeyLength)))
  1125. {
  1126. CEPMessageBox(hwndDlg, IDS_SELECT_ENCRYPT_KEY_LENGTH, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  1127. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, -1);
  1128. break;
  1129. }
  1131. break;
  1133. default:
  1134. return FALSE;
  1136. }
  1137. break;
  1139. default:
  1140. return FALSE;
  1141. }
  1143. return TRUE;
  1144. }
  1146. //-----------------------------------------------------------------------
  1147. //Completion
  1148. //-----------------------------------------------------------------------
  1149. INT_PTR APIENTRY CEP_Completion(HWND hwndDlg, UINT msg, WPARAM wParam, LPARAM lParam)
  1150. {
  1151. CEP_WIZARD_INFO *pCEPWizardInfo=NULL;
  1152. PROPSHEETPAGE *pPropSheet=NULL;
  1153. HWND hwndControl=NULL;
  1154. LV_COLUMNW lvC;
  1155. HCURSOR hPreCursor=NULL;
  1156. HCURSOR hWinPreCursor=NULL;
  1158. switch (msg)
  1159. {
  1160. case WM_INITDIALOG:
  1161. //set the wizard information so that it can be shared
  1162. pPropSheet = (PROPSHEETPAGE *) lParam;
  1163. pCEPWizardInfo = (CEP_WIZARD_INFO *) (pPropSheet->lParam);
  1164. //make sure pCertWizardInfo is a valid pointer
  1165. if(NULL==pCEPWizardInfo)
  1166. break;
  1168. SetWindowLongPtr(hwndDlg, DWLP_USER, (LONG_PTR)pCEPWizardInfo);
  1170. SetControlFont(pCEPWizardInfo->hBigBold, hwndDlg,IDC_BIG_BOLD_TITLE);
  1172. //insert two columns
  1173. hwndControl=GetDlgItem(hwndDlg, IDC_COMPLETION_LIST);
  1175. memset(&lvC, 0, sizeof(LV_COLUMNW));
  1177. lvC.mask = LVCF_FMT | LVCF_WIDTH | LVCF_TEXT | LVCF_SUBITEM;
  1178. lvC.fmt = LVCFMT_LEFT; // Left-align the column.
  1179. lvC.cx = 20; // Width of the column, in pixels.
  1180. lvC.pszText = L""; // The text for the column.
  1181. lvC.iSubItem=0;
  1183. if (ListView_InsertColumnU(hwndControl, 0, &lvC) == -1)
  1184. break;
  1186. //2nd column is the content
  1187. memset(&lvC, 0, sizeof(LV_COLUMNW));
  1189. lvC.mask = LVCF_FMT | LVCF_WIDTH | LVCF_TEXT | LVCF_SUBITEM;
  1190. lvC.fmt = LVCFMT_LEFT; // Left-align the column.
  1191. lvC.cx = 10; //(dwMaxSize+2)*7; // Width of the column, in pixels.
  1192. lvC.pszText = L""; // The text for the column.
  1193. lvC.iSubItem= 1;
  1195. if (ListView_InsertColumnU(hwndControl, 1, &lvC) == -1)
  1196. break;
  1199. break;
  1200. case WM_COMMAND:
  1201. break;
  1203. case WM_NOTIFY:
  1204. switch (((NMHDR FAR *) lParam)->code)
  1205. {
  1207. case PSN_KILLACTIVE:
  1208. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  1209. return TRUE;
  1211. break;
  1213. case PSN_RESET:
  1214. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, FALSE);
  1215. break;
  1217. case PSN_SETACTIVE:
  1218. PropSheet_SetWizButtons(GetParent(hwndDlg), PSWIZB_BACK|PSWIZB_FINISH);
  1220. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  1221. break;
  1223. if(hwndControl=GetDlgItem(hwndDlg, IDC_COMPLETION_LIST))
  1224. DisplayConfirmation(hwndControl, pCEPWizardInfo);
  1225. break;
  1227. case PSN_WIZBACK:
  1228. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  1229. break;
  1231. //skip CSP page if adv is not selected
  1232. if(FALSE == pCEPWizardInfo->fEnrollAdv)
  1233. SetWindowLongPtr(hwndDlg, DWLP_MSGRESULT, IDD_ENROLL);
  1235. break;
  1237. case PSN_WIZFINISH:
  1239. if(NULL==(pCEPWizardInfo=(CEP_WIZARD_INFO *)GetWindowLongPtr(hwndDlg, DWLP_USER)))
  1240. break;
  1242. //overwrite the cursor for this window class
  1243. hWinPreCursor=(HCURSOR)SetClassLongPtr(hwndDlg, GCLP_HCURSOR, (LONG_PTR)NULL);
  1244. hPreCursor=SetCursor(LoadCursor(NULL, IDC_WAIT));
  1246. //do the real setup work
  1247. I_DoSetupWork(hwndDlg, pCEPWizardInfo);
  1249. //set the cursor back
  1250. SetCursor(hPreCursor);
  1251. SetWindowLongPtr(hwndDlg, GCLP_HCURSOR, (LONG_PTR)hWinPreCursor);
  1253. break;
  1255. default:
  1256. return FALSE;
  1258. }
  1259. break;
  1261. default:
  1263. return FALSE;
  1264. }
  1266. return TRUE;
  1267. }
  1270. //--------------------------------------------------------------------------
  1271. //
  1272. // Helper Functions for the wizard pages
  1273. //
  1274. //--------------------------------------------------------------------------
  1275. //--------------------------------------------------------------------------
  1276. //
  1277. // CEPGetAccountNameFromPicker
  1278. //
  1279. //--------------------------------------------------------------------------
  1280. BOOL CEPGetAccountNameFromPicker(HWND hwndParent,
  1281. IDsObjectPicker *pIDsObjectPicker,
  1282. LPWSTR *ppwszSelectedUserSAM)
  1283. {
  1284. BOOL fResult=FALSE;
  1285. BOOL fGotStgMedium = FALSE;
  1286. LPWSTR pwszPath=NULL;
  1287. DWORD dwIndex =0 ;
  1288. DWORD dwCount=0;
  1289. WCHAR wszWinNT[]=L"WinNT://";
  1290. DWORD dwSize=0;
  1291. LPWSTR pwsz=NULL;
  1292. DWORD cCount=0;
  1294. IDataObject *pdo = NULL;
  1295. PDS_SELECTION_LIST pDsSelList=NULL;
  1296. LPWSTR pwszComputerName=NULL;
  1298. STGMEDIUM stgmedium =
  1299. {
  1300. TYMED_HGLOBAL,
  1301. NULL,
  1302. NULL
  1303. };
  1305. FORMATETC formatetc =
  1306. {
  1307. (CLIPFORMAT)g_cfDsObjectPicker,
  1308. NULL,
  1309. DVASPECT_CONTENT,
  1310. -1,
  1311. TYMED_HGLOBAL
  1312. };
  1314. //input check
  1315. if((NULL == pIDsObjectPicker) || (NULL == ppwszSelectedUserSAM))
  1316. goto CLEANUP;
  1318. *ppwszSelectedUserSAM = NULL;
  1321. if(S_OK != pIDsObjectPicker->InvokeDialog(hwndParent, &pdo))
  1322. goto CLEANUP;
  1324. if(S_OK != pdo->GetData(&formatetc, &stgmedium))
  1325. goto CLEANUP;
  1327. fGotStgMedium = TRUE;
  1329. pDsSelList = (PDS_SELECTION_LIST)GlobalLock(stgmedium.hGlobal);
  1331. if(!pDsSelList)
  1332. goto CLEANUP;
  1334. //detect if this is a domain account
  1335. //local account will be in the format of Winnt://workgroup/machine/foo
  1337. //Get the SAM name
  1338. if((pDsSelList->aDsSelection[0]).pwzADsPath == NULL)
  1339. goto CLEANUP;
  1341. //the ADsPath is in the form of "WinNT://"
  1342. if(wcslen((pDsSelList->aDsSelection[0]).pwzADsPath) <= wcslen(wszWinNT))
  1343. goto CLEANUP;
  1345. if( 0 != _wcsnicmp((pDsSelList->aDsSelection[0]).pwzADsPath, wszWinNT, wcslen(wszWinNT)))
  1346. goto CLEANUP;
  1348. pwsz = ((pDsSelList->aDsSelection[0]).pwzADsPath) + wcslen(wszWinNT);
  1350. while(L'\0' != (*pwsz))
  1351. {
  1352. if(L'/' == (*pwsz))
  1353. {
  1354. cCount++;
  1355. }
  1357. pwsz++;
  1358. }
  1360. if(1 == cCount)
  1361. {
  1362. //domain\administrator have no UPN
  1363. //if((pDsSelList->aDsSelection[0]).pwzUPN != NULL)
  1364. //if(0 != _wcsicmp(L"",(pDsSelList->aDsSelection[0]).pwzUPN))
  1365. pwszPath = ((pDsSelList->aDsSelection[0]).pwzADsPath) + wcslen(wszWinNT);
  1367. *ppwszSelectedUserSAM=(LPWSTR)malloc((wcslen(pwszPath) + 1) * sizeof(WCHAR));
  1369. if(NULL == (*ppwszSelectedUserSAM))
  1370. goto CLEANUP;
  1372. wcscpy(*ppwszSelectedUserSAM, pwszPath);
  1374. //search for the "/" and make it "\". Since the ADsPath is in the form
  1375. //of "WinNT://domain/name". We need the SAM name in the form of
  1376. //domain\name
  1377. dwCount = wcslen(*ppwszSelectedUserSAM);
  1379. for(dwIndex = 0; dwIndex < dwCount; dwIndex++)
  1380. {
  1381. if((*ppwszSelectedUserSAM)[dwIndex] == L'/')
  1382. {
  1383. (*ppwszSelectedUserSAM)[dwIndex] = L'\\';
  1384. break;
  1385. }
  1386. }
  1387. }
  1389. //use the format of localMachine\\account for local account
  1390. if(NULL == (*ppwszSelectedUserSAM))
  1391. {
  1392. if(NULL == (pDsSelList->aDsSelection[0]).pwzName)
  1393. goto CLEANUP;
  1395. //Get the computer name
  1396. dwSize=0;
  1398. GetComputerNameExW(ComputerNamePhysicalDnsHostname,
  1399. NULL,
  1400. &dwSize);
  1402. pwszComputerName=(LPWSTR)malloc(dwSize * sizeof(WCHAR));
  1404. if(NULL==pwszComputerName)
  1405. goto CLEANUP;
  1408. if(!GetComputerNameExW(ComputerNamePhysicalDnsHostname,
  1409. pwszComputerName,
  1410. &dwSize))
  1411. goto CLEANUP;
  1414. *ppwszSelectedUserSAM=(LPWSTR)malloc((wcslen(pwszComputerName) + wcslen((pDsSelList->aDsSelection[0]).pwzName) + wcslen(L"\\") + 1) * sizeof(WCHAR));
  1416. if(NULL == (*ppwszSelectedUserSAM))
  1417. goto CLEANUP;
  1419. wcscpy(*ppwszSelectedUserSAM, pwszComputerName);
  1420. wcscat(*ppwszSelectedUserSAM, L"\\");
  1421. wcscat(*ppwszSelectedUserSAM, (pDsSelList->aDsSelection[0]).pwzName);
  1422. }
  1424. fResult=TRUE;
  1426. CLEANUP:
  1428. if(pwszComputerName)
  1429. free(pwszComputerName);
  1431. if(pDsSelList)
  1432. GlobalUnlock(stgmedium.hGlobal);
  1434. if (TRUE == fGotStgMedium)
  1435. ReleaseStgMedium(&stgmedium);
  1437. if(pdo)
  1438. pdo->Release();
  1440. return fResult;
  1442. }
  1444. //--------------------------------------------------------------------------
  1445. //
  1446. // RefreshKeyLengthCombo
  1447. //
  1448. //--------------------------------------------------------------------------
  1449. BOOL WINAPI RefreshKeyLengthCombo(HWND hwndDlg,
  1450. int idsList,
  1451. int idsCombo,
  1452. BOOL fSign,
  1453. CEP_WIZARD_INFO *pCEPWizardInfo)
  1454. {
  1455. BOOL fResult=FALSE;
  1456. DWORD dwDefaultKeyLength=0;
  1457. DWORD *pdwList=NULL;
  1458. DWORD dwListCount=0;
  1459. DWORD dwMax=0;
  1460. DWORD dwMin=0;
  1461. DWORD dwIndex=0;
  1462. DWORD dwCSPIndex=0;
  1463. CEP_CSP_INFO *pCSPInfo=NULL;
  1464. int iInsertedIndex=0;
  1465. WCHAR wszKeyLength[CEP_KEY_LENGTH_STRING];
  1466. BOOL fSelected=FALSE;
  1468. //get the selected list view item
  1469. if(!GetSelectedCSP(hwndDlg,idsList,&dwCSPIndex))
  1470. goto CLEANUP;
  1472. pCSPInfo= &(pCEPWizardInfo->rgCSPInfo[dwCSPIndex]);
  1474. if(fSign)
  1475. {
  1476. dwDefaultKeyLength=pCSPInfo->dwDefaultSign;
  1477. pdwList=pCSPInfo->pdwSignList;
  1478. dwListCount= pCSPInfo->dwSignCount;
  1479. dwMax=pCSPInfo->dwMaxSign;
  1480. dwMin=pCSPInfo->dwMinSign;
  1481. }
  1482. else
  1483. {
  1484. dwDefaultKeyLength=pCSPInfo->dwDefaultEncrypt;
  1485. pdwList=pCSPInfo->pdwEncryptList;
  1486. dwListCount=pCSPInfo->dwEncryptCount;
  1487. dwMax=pCSPInfo->dwMaxEncrypt;
  1488. dwMin=pCSPInfo->dwMinEncrypt;
  1489. }
  1491. //clear out the combo box
  1492. SendDlgItemMessageU(hwndDlg, idsCombo, CB_RESETCONTENT, 0, 0);
  1495. for(dwIndex=0; dwIndex < dwListCount; dwIndex++)
  1496. {
  1497. if((pdwList[dwIndex] >= dwMin) && (pdwList[dwIndex] <= dwMax))
  1498. {
  1499. _ltow(pdwList[dwIndex], wszKeyLength, 10);
  1501. // 64 bit- will never insert more than 1B entries, so INT is fine
  1502. iInsertedIndex=(int)SendDlgItemMessageU(hwndDlg, idsCombo, CB_ADDSTRING,
  1503. 0, (LPARAM)wszKeyLength);
  1505. if((iInsertedIndex != CB_ERR) && (iInsertedIndex != CB_ERRSPACE))
  1506. {
  1507. SendDlgItemMessage(hwndDlg, idsCombo, CB_SETITEMDATA,
  1508. (WPARAM)iInsertedIndex, (LPARAM)pdwList[dwIndex]);
  1510. if(dwDefaultKeyLength==pdwList[dwIndex])
  1511. {
  1512. SendDlgItemMessageU(hwndDlg, idsCombo, CB_SETCURSEL, iInsertedIndex, 0);
  1513. fSelected=TRUE;
  1514. }
  1515. }
  1516. }
  1518. }
  1520. if(fSelected==FALSE)
  1521. SendDlgItemMessageU(hwndDlg, idsCombo, CB_SETCURSEL, 0, 0);
  1523. fResult=TRUE;
  1525. CLEANUP:
  1527. return fResult;
  1528. }
  1531. //--------------------------------------------------------------------------
  1532. //
  1533. // InitCSPList
  1534. //
  1535. //--------------------------------------------------------------------------
  1536. BOOL WINAPI InitCSPList(HWND hwndDlg,
  1537. int idControl,
  1538. BOOL fSign,
  1539. CEP_WIZARD_INFO *pCEPWizardInfo)
  1540. {
  1541. BOOL fResult=FALSE;
  1542. DWORD dwIndex=0;
  1543. CEP_CSP_INFO *pCSPInfo=NULL;
  1544. int iInsertedIndex=0;
  1545. HWND hwndList=NULL;
  1546. LV_ITEMW lvItem;
  1547. LV_COLUMNW lvC;
  1548. BOOL fSelected=FALSE;
  1550. if(NULL==(hwndList=GetDlgItem(hwndDlg, idControl)))
  1551. goto CLEANUP;
  1553. //insert a column into the list view
  1554. memset(&lvC, 0, sizeof(LV_COLUMNW));
  1556. lvC.mask = LVCF_FMT | LVCF_WIDTH | LVCF_TEXT | LVCF_SUBITEM;
  1557. lvC.fmt = LVCFMT_LEFT; // Left-align the column.
  1558. lvC.cx = 20; //(dwMaxSize+2)*7; // Width of the column, in pixels.
  1559. lvC.pszText = L""; // The text for the column.
  1560. lvC.iSubItem=0;
  1562. if (-1 == ListView_InsertColumnU(hwndList, 0, &lvC))
  1563. goto CLEANUP;
  1565. // set up the fields in the list view item struct that don't change from item to item
  1566. memset(&lvItem, 0, sizeof(LV_ITEMW));
  1567. lvItem.mask = LVIF_TEXT | LVIF_STATE |LVIF_PARAM ;
  1569. for(dwIndex=0; dwIndex < pCEPWizardInfo->dwCSPCount; dwIndex++)
  1570. {
  1571. fSelected=FALSE;
  1573. pCSPInfo= &(pCEPWizardInfo->rgCSPInfo[dwIndex]);
  1575. if(fSign)
  1576. {
  1577. if(!(pCSPInfo->fSignature))
  1578. continue;
  1580. if(dwIndex==pCEPWizardInfo->dwSignProvIndex)
  1581. fSelected=TRUE;
  1582. }
  1583. else
  1584. {
  1585. if(!(pCSPInfo->fEncryption))
  1586. continue;
  1588. if(dwIndex==pCEPWizardInfo->dwEncryptProvIndex)
  1589. fSelected=TRUE;
  1590. }
  1592. lvItem.iItem=dwIndex;
  1593. lvItem.lParam = (LPARAM)dwIndex;
  1594. lvItem.pszText=pCSPInfo->pwszCSPName;
  1596. iInsertedIndex=ListView_InsertItemU(hwndList, &lvItem);
  1598. if(fSelected)
  1599. {
  1600. ListView_SetItemState(
  1601. hwndList,
  1602. iInsertedIndex,
  1603. LVIS_SELECTED,
  1604. LVIS_SELECTED);
  1605. }
  1607. }
  1609. //make the column autosize
  1610. ListView_SetColumnWidth(hwndList, 0, LVSCW_AUTOSIZE);
  1612. fResult=TRUE;
  1614. CLEANUP:
  1616. return fResult;
  1617. }
  1620. //--------------------------------------------------------------------------
  1621. //
  1622. // GetSelectedCSP
  1623. //
  1624. //--------------------------------------------------------------------------
  1625. BOOL WINAPI GetSelectedCSP(HWND hwndDlg,
  1626. int idControl,
  1627. DWORD *pdwCSPIndex)
  1628. {
  1629. BOOL fResult=FALSE;
  1630. HWND hwndControl=NULL;
  1631. LV_ITEM lvItem;
  1632. int iIndex=0;
  1634. //get the window handle of the list view
  1635. if(NULL==(hwndControl=GetDlgItem(hwndDlg, idControl)))
  1636. goto CLEANUP;
  1638. //now, mark the one that is selected
  1639. if(-1 == (iIndex= ListView_GetNextItem(
  1640. hwndControl,
  1641. -1,
  1642. LVNI_SELECTED
  1643. )))
  1644. goto CLEANUP;
  1647. memset(&lvItem, 0, sizeof(LV_ITEM));
  1648. lvItem.mask=LVIF_PARAM;
  1649. lvItem.iItem=iIndex;
  1651. if(!ListView_GetItem(hwndControl, &lvItem))
  1652. goto CLEANUP;
  1654. // will never have more than 1B CSPs, so this is fine
  1655. *pdwCSPIndex=(DWORD)(lvItem.lParam);
  1657. fResult=TRUE;
  1659. CLEANUP:
  1661. return fResult;
  1663. }
  1664. //--------------------------------------------------------------------------
  1665. //
  1666. // GetSelectedKeyLength
  1667. //
  1668. //--------------------------------------------------------------------------
  1669. BOOL WINAPI GetSelectedKeyLength(HWND hwndDlg,
  1670. int idControl,
  1671. DWORD *pdwKeyLength)
  1672. {
  1674. int iIndex=0;
  1675. BOOL fResult=FALSE;
  1677. iIndex=(int)SendDlgItemMessage(hwndDlg, idControl, CB_GETCURSEL, 0, 0);
  1679. if(CB_ERR==iIndex)
  1680. goto CLEANUP;
  1682. // will never be > 1B bits long, so this is ok
  1683. *pdwKeyLength=(DWORD)SendDlgItemMessage(hwndDlg, idControl, CB_GETITEMDATA, iIndex, 0);
  1685. fResult=TRUE;
  1687. CLEANUP:
  1689. return fResult;
  1691. }
  1693. //--------------------------------------------------------------------------
  1694. //
  1695. // FormatMessageStr
  1696. //
  1697. //--------------------------------------------------------------------------
  1698. int ListView_InsertItemU_IDS(HWND hwndList,
  1699. LV_ITEMW *plvItem,
  1700. UINT idsString,
  1701. LPWSTR pwszText)
  1702. {
  1703. WCHAR wszText[MAX_STRING_SIZE];
  1706. if(pwszText)
  1707. plvItem->pszText=pwszText;
  1708. else
  1709. {
  1710. if(!LoadStringU(g_hModule, idsString, wszText, MAX_STRING_SIZE))
  1711. return -1;
  1713. plvItem->pszText=wszText;
  1714. }
  1716. return ListView_InsertItemU(hwndList, plvItem);
  1717. }
  1719. //-------------------------------------------------------------------------
  1720. //
  1721. // populate the wizards's confirmation page in the order of Challenge,
  1722. // RA informaton, and CSPs
  1723. //
  1724. //-------------------------------------------------------------------------
  1725. void WINAPI DisplayConfirmation(HWND hwndControl,
  1726. CEP_WIZARD_INFO *pCEPWizardInfo)
  1727. {
  1728. WCHAR wszYes[MAX_TITLE_LENGTH];
  1729. DWORD dwIndex=0;
  1730. UINT ids=0;
  1731. BOOL fNewItem=FALSE;
  1732. WCHAR wszLength[CEP_KEY_LENGTH_STRING];
  1734. LV_COLUMNW lvC;
  1735. LV_ITEMW lvItem;
  1737. //delete all the old items in the listView
  1738. ListView_DeleteAllItems(hwndControl);
  1740. //insert row by row
  1741. memset(&lvItem, 0, sizeof(LV_ITEMW));
  1743. // set up the fields in the list view item struct that don't change from item to item
  1744. lvItem.mask = LVIF_TEXT | LVIF_STATE ;
  1745. lvItem.state = 0;
  1746. lvItem.stateMask = 0;
  1748. //*******************************************************************
  1749. //account information
  1750. lvItem.iItem=0;
  1751. lvItem.iSubItem=0;
  1753. ListView_InsertItemU_IDS(hwndControl, &lvItem, IDS_ACCOUNT_INFORMATION, NULL);
  1755. //content
  1756. (lvItem.iSubItem)++;
  1758. if(FALSE == (pCEPWizardInfo->fLocalSystem))
  1759. {
  1760. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem, pCEPWizardInfo->pwszUserName);
  1761. }
  1762. else
  1763. {
  1764. if(LoadStringU(g_hModule, IDS_LOCAL_SYSTEM, wszYes, MAX_TITLE_LENGTH))
  1765. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem, wszYes);
  1766. }
  1769. //*******************************************************************
  1770. //challenge
  1771. lvItem.iItem++;
  1772. lvItem.iSubItem=0;
  1774. ListView_InsertItemU_IDS(hwndControl, &lvItem, IDS_CHALLENGE_PHRASE, NULL);
  1776. //content
  1777. (lvItem.iSubItem)++;
  1779. if(pCEPWizardInfo->fPassword)
  1780. ids=IDS_YES;
  1781. else
  1782. ids=IDS_NO;
  1784. if(LoadStringU(g_hModule, ids, wszYes, MAX_TITLE_LENGTH))
  1785. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem,wszYes);
  1787. //***************************************************************************
  1788. // RA credentials
  1790. lvItem.iItem++;
  1791. lvItem.iSubItem=0;
  1793. ListView_InsertItemU_IDS(hwndControl, &lvItem, IDS_RA_CREDENTIAL, NULL);
  1795. //content
  1796. for(dwIndex=0; dwIndex<RA_INFO_COUNT; dwIndex++)
  1797. {
  1798. if(pCEPWizardInfo->rgpwszName[dwIndex])
  1799. {
  1800. if(TRUE==fNewItem)
  1801. {
  1802. //increase the row
  1803. lvItem.iItem++;
  1804. lvItem.pszText=L"";
  1805. lvItem.iSubItem=0;
  1807. ListView_InsertItemU(hwndControl, &lvItem);
  1808. }
  1809. else
  1810. fNewItem=TRUE;
  1812. lvItem.iSubItem++;
  1813. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem, pCEPWizardInfo->rgpwszName[dwIndex]);
  1814. }
  1815. }
  1817. //***************************************************************************
  1818. //CSPInfo
  1819. if(pCEPWizardInfo->fEnrollAdv)
  1820. {
  1821. //signature CSP Name
  1822. lvItem.iItem++;
  1823. lvItem.iSubItem=0;
  1825. ListView_InsertItemU_IDS(hwndControl, &lvItem, IDS_SIGN_CSP, NULL);
  1827. lvItem.iSubItem++;
  1829. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem,
  1830. pCEPWizardInfo->rgCSPInfo[pCEPWizardInfo->dwSignProvIndex].pwszCSPName);
  1833. //signaure key length
  1834. lvItem.iItem++;
  1835. lvItem.iSubItem=0;
  1837. ListView_InsertItemU_IDS(hwndControl, &lvItem, IDS_SIGN_KEY_LENGTH, NULL);
  1839. lvItem.iSubItem++;
  1841. _ltow(pCEPWizardInfo->dwSignKeyLength, wszLength, 10);
  1843. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem, wszLength);
  1845. //encryption CSP name
  1846. lvItem.iItem++;
  1847. lvItem.iSubItem=0;
  1849. ListView_InsertItemU_IDS(hwndControl, &lvItem, IDS_ENCRYPT_CSP, NULL);
  1851. lvItem.iSubItem++;
  1853. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem,
  1854. pCEPWizardInfo->rgCSPInfo[pCEPWizardInfo->dwEncryptProvIndex].pwszCSPName);
  1856. //encryption key length
  1857. lvItem.iItem++;
  1858. lvItem.iSubItem=0;
  1860. ListView_InsertItemU_IDS(hwndControl, &lvItem, IDS_ENCRYPT_KEY_LENGTH, NULL);
  1862. lvItem.iSubItem++;
  1864. _ltow(pCEPWizardInfo->dwEncryptKeyLength, wszLength, 10);
  1866. ListView_SetItemTextU(hwndControl, lvItem.iItem, lvItem.iSubItem, wszLength);
  1867. }
  1869. //autosize the columns
  1870. ListView_SetColumnWidth(hwndControl, 0, LVSCW_AUTOSIZE);
  1871. ListView_SetColumnWidth(hwndControl, 1, LVSCW_AUTOSIZE);
  1874. return;
  1875. }
  1877. //--------------------------------------------------------------------
  1878. //
  1879. // GetServiceWaitPeriod
  1880. //
  1881. // Obtain the value from the registry
  1882. //
  1883. //--------------------------------------------------------------------------
  1884. void GetServiceWaitPeriod(DWORD *pdwServiceWait)
  1885. {
  1886. DWORD cbData=0;
  1887. DWORD dwData=0;
  1888. DWORD dwType=0;
  1890. HKEY hKeyCEP=NULL;
  1892. //set the default value
  1893. *pdwServiceWait=SCEP_SERVICE_WAIT_PERIOD;
  1895. //get the CA's type from the registry
  1896. cbData=sizeof(dwData);
  1898. //we have to have the knowledge of the ca type
  1899. if(ERROR_SUCCESS == RegOpenKeyExU(
  1900. HKEY_LOCAL_MACHINE,
  1901. MSCEP_LOCATION,
  1902. 0,
  1903. KEY_READ,
  1904. &hKeyCEP))
  1905. {
  1906. if(ERROR_SUCCESS == RegQueryValueExU(
  1907. hKeyCEP,
  1908. MSCEP_KEY_SERVICE_WAIT,
  1909. NULL,
  1910. &dwType,
  1911. (BYTE *)&dwData,
  1912. &cbData))
  1913. {
  1914. if ((dwType == REG_DWORD) || (dwType == REG_BINARY))
  1915. {
  1916. *pdwServiceWait=dwData;
  1917. }
  1918. }
  1919. }
  1921. if(hKeyCEP)
  1922. RegCloseKey(hKeyCEP);
  1924. return;
  1925. }
  1928. //--------------------------------------------------------------------
  1929. //
  1930. // Main Function
  1931. //
  1932. //--------------------------------------------------------------------------
  1933. extern "C" int _cdecl wmain(int nArgs, WCHAR ** rgwszArgs)
  1934. {
  1935. BOOL fResult=FALSE;
  1936. UINT idsMsg=IDS_FAIL_INIT_WIZARD;
  1937. HRESULT hr=E_FAIL;
  1938. PROPSHEETPAGEW rgCEPSheet[CEP_PROP_SHEET];
  1939. PROPSHEETHEADERW cepHeader;
  1940. CEP_PAGE_INFO rgCEPPageInfo[CEP_PROP_SHEET]=
  1941. {(LPCWSTR)MAKEINTRESOURCE(IDD_WELCOME), CEP_Welcome,
  1942. (LPCWSTR)MAKEINTRESOURCE(IDD_APP_ID), CEP_App_ID,
  1943. (LPCWSTR)MAKEINTRESOURCE(IDD_ACCOUNT), CEP_Account,
  1944. (LPCWSTR)MAKEINTRESOURCE(IDD_CHALLENGE), CEP_Challenge,
  1945. (LPCWSTR)MAKEINTRESOURCE(IDD_ENROLL), CEP_Enroll,
  1946. (LPCWSTR)MAKEINTRESOURCE(IDD_CSP), CEP_CSP,
  1947. (LPCWSTR)MAKEINTRESOURCE(IDD_COMPLETION), CEP_Completion,
  1948. };
  1949. DWORD dwIndex=0;
  1950. WCHAR wszTitle[MAX_TITLE_LENGTH];
  1951. INT_PTR iReturn=-1;
  1952. ENUM_CATYPES catype;
  1953. DWORD dwWaitCounter=0;
  1954. BOOL fEnterpriseCA=FALSE;
  1955. DSOP_SCOPE_INIT_INFO ScopeInit;
  1956. DSOP_INIT_INFO InitInfo;
  1957. DWORD dwServiceWait=SCEP_SERVICE_WAIT_PERIOD;
  1958. OSVERSIONINFOEXW versionInfo;
  1961. CEP_WIZARD_INFO CEPWizardInfo;
  1962. DSROLE_PRIMARY_DOMAIN_INFO_BASIC *pDomainInfo=NULL;
  1964. memset(rgCEPSheet, 0, sizeof(PROPSHEETPAGEW)*CEP_PROP_SHEET);
  1965. memset(&cepHeader, 0, sizeof(PROPSHEETHEADERW));
  1966. memset(&CEPWizardInfo, 0, sizeof(CEP_WIZARD_INFO));
  1968. if(FAILED(CoInitialize(NULL)))
  1969. return FALSE;
  1971. if(NULL==(g_hModule=GetModuleHandle(NULL)))
  1972. goto CommonReturn;
  1974. if(!IsValidInstallation(&idsMsg))
  1975. goto ErrorReturn;
  1977. //get the wait period for start/stop service account
  1978. GetServiceWaitPeriod(&dwServiceWait);
  1980. if(!IsCaRunning())
  1981. {
  1982. if(S_OK != (hr=CepStartService(CERTSVC_NAME)))
  1983. {
  1984. idsMsg=IDS_NO_CA_RUNNING;
  1985. goto ErrorWithHResultReturn;
  1986. }
  1987. }
  1989. //make sure the CA is up running
  1990. for (dwWaitCounter=0; dwWaitCounter < dwServiceWait; dwWaitCounter++)
  1991. {
  1992. if (!IsCaRunning())
  1993. Sleep(1000);
  1994. else
  1995. break;
  1996. }
  1999. if (dwServiceWait == dwWaitCounter)
  2000. {
  2001. idsMsg=IDS_CAN_NOT_START_CA;
  2002. goto ErrorWithHResultReturn;
  2003. }
  2006. //make sure we have the correct admin rights based on the CA type
  2007. if(S_OK != (hr=GetCaType(&catype)))
  2008. {
  2009. idsMsg=IDS_FAIL_GET_CA_TYPE;
  2010. goto ErrorWithHResultReturn;
  2011. }
  2013. //some cisco routers only work with root CA
  2014. if((ENUM_ENTERPRISE_ROOTCA != catype) && (ENUM_STANDALONE_ROOTCA != catype))
  2015. {
  2016. if(IDNO==CEPMessageBox(NULL, IDS_CAN_NOT_ROOT_CA, MB_ICONWARNING|MB_YESNO|MB_APPLMODAL))
  2017. {
  2018. fResult=FALSE;
  2019. goto CommonReturn;
  2020. }
  2021. }
  2023. //for either Enteprise CA or Standalone CA, the user has to be the local machine admin
  2024. // check for machine admin
  2025. if(!IsUserInAdminGroup(FALSE))
  2026. {
  2027. idsMsg=IDS_NOT_MACHINE_ADMIN;
  2028. goto ErrorReturn;
  2029. }
  2032. if (ENUM_ENTERPRISE_ROOTCA==catype || ENUM_ENTERPRISE_SUBCA==catype)
  2033. {
  2034. fEnterpriseCA=TRUE;
  2036. // check for enterprise admin
  2037. if(!IsUserInAdminGroup(TRUE))
  2038. {
  2039. idsMsg=IDS_NOT_ENT_ADMIN;
  2040. goto ErrorReturn;
  2041. }
  2042. }
  2044. //everything looks good. We start the wizard page
  2045. if(!CEPWizardInit())
  2046. goto ErrorWithWin32Return;
  2048. CEPWizardInfo.fEnrollAdv=FALSE;
  2049. CEPWizardInfo.fPassword=FALSE;
  2050. CEPWizardInfo.fEnterpriseCA=fEnterpriseCA;
  2051. CEPWizardInfo.fDC=FALSE;
  2052. CEPWizardInfo.fDomain=TRUE; //defeult to assume the machine is on a domain
  2053. CEPWizardInfo.dwServiceWait=dwServiceWait;
  2055. //detect if the machine is a DC
  2056. versionInfo.dwOSVersionInfoSize = sizeof(versionInfo);
  2058. if(GetVersionEx(reinterpret_cast<OSVERSIONINFOW *>(&versionInfo)))
  2059. {
  2060. CEPWizardInfo.fDC = (versionInfo.wProductType == VER_NT_DOMAIN_CONTROLLER);
  2061. }
  2064. //detect if the machine is on a domain
  2065. if(ERROR_SUCCESS != DsRoleGetPrimaryDomainInformation(
  2066. NULL,
  2067. DsRolePrimaryDomainInfoBasic,
  2068. (PBYTE*)&pDomainInfo))
  2069. {
  2070. idsMsg=IDS_FAIL_DOMAIN_INFO;
  2071. goto ErrorReturn;
  2072. }
  2074. if((DsRole_RoleStandaloneWorkstation == (pDomainInfo->MachineRole)) ||
  2075. (DsRole_RoleStandaloneServer == (pDomainInfo->MachineRole))
  2076. )
  2077. {
  2078. CEPWizardInfo.fDomain=FALSE;
  2079. }
  2081. //initialize the object picker object
  2082. //init for the user selection dialogue
  2083. memset(&ScopeInit, 0, sizeof(DSOP_SCOPE_INIT_INFO));
  2084. memset(&InitInfo, 0, sizeof(InitInfo));
  2086. ScopeInit.cbSize = sizeof(DSOP_SCOPE_INIT_INFO);
  2088. //only domain account for enterprise CA
  2089. if(fEnterpriseCA)
  2090. {
  2091. ScopeInit.flType = DSOP_SCOPE_TYPE_ENTERPRISE_DOMAIN|DSOP_SCOPE_TYPE_GLOBAL_CATALOG;
  2092. }
  2093. else
  2094. {
  2095. ScopeInit.flType = DSOP_SCOPE_TYPE_ENTERPRISE_DOMAIN|DSOP_SCOPE_TYPE_GLOBAL_CATALOG|DSOP_SCOPE_TYPE_TARGET_COMPUTER;
  2096. }
  2098. ScopeInit.flScope = DSOP_SCOPE_FLAG_WANT_PROVIDER_WINNT; //this will give us the SAM name for the user
  2099. ScopeInit.FilterFlags.flDownlevel = DSOP_DOWNLEVEL_FILTER_USERS;
  2100. ScopeInit.FilterFlags.Uplevel.flBothModes = DSOP_FILTER_USERS;
  2102. InitInfo.cbSize = sizeof(InitInfo);
  2103. InitInfo.pwzTargetComputer = NULL; // NULL == local machine
  2104. InitInfo.cDsScopeInfos = 1;
  2105. InitInfo.aDsScopeInfos = &ScopeInit;
  2106. InitInfo.flOptions = 0; //we are doing single select
  2108. //create the COM object
  2109. if(S_OK != (hr=CoCreateInstance
  2110. (CLSID_DsObjectPicker,
  2111. NULL,
  2112. CLSCTX_INPROC_SERVER,
  2113. IID_IDsObjectPicker,
  2114. (void **) &(CEPWizardInfo.pIDsObjectPicker))))
  2115. {
  2116. idsMsg=IDS_FAIL_GET_OBJECT_PICKER;
  2117. goto ErrorWithHResultReturn;
  2119. }
  2121. if(S_OK != (hr=CEPWizardInfo.pIDsObjectPicker->Initialize(&InitInfo)))
  2122. {
  2123. idsMsg=IDS_FAIL_GET_OBJECT_PICKER;
  2124. goto ErrorWithHResultReturn;
  2125. }
  2127. //initialize the CSP information
  2128. if(!CEPGetCSPInformation(&CEPWizardInfo))
  2129. {
  2130. idsMsg=IDS_FAIL_GET_CSP_INFO;
  2131. goto ErrorWithWin32Return;
  2132. }
  2134. for(dwIndex=0; dwIndex<RA_INFO_COUNT; dwIndex++)
  2135. {
  2136. CEPWizardInfo.rgpwszName[dwIndex]=NULL;
  2137. }
  2139. if(!SetupFonts(
  2140. g_hModule,
  2141. NULL,
  2142. &(CEPWizardInfo.hBigBold),
  2143. &(CEPWizardInfo.hBold)))
  2144. goto ErrorReturn;
  2147. for(dwIndex=0; dwIndex<CEP_PROP_SHEET; dwIndex++)
  2148. {
  2149. rgCEPSheet[dwIndex].dwSize=sizeof(rgCEPSheet[dwIndex]);
  2151. rgCEPSheet[dwIndex].hInstance=g_hModule;
  2153. rgCEPSheet[dwIndex].pszTemplate=rgCEPPageInfo[dwIndex].pszTemplate;
  2155. rgCEPSheet[dwIndex].pfnDlgProc=rgCEPPageInfo[dwIndex].pfnDlgProc;
  2157. rgCEPSheet[dwIndex].lParam=(LPARAM)&CEPWizardInfo;
  2158. }
  2160. //set up the header information
  2161. cepHeader.dwSize=sizeof(cepHeader);
  2162. cepHeader.dwFlags=PSH_PROPSHEETPAGE | PSH_WIZARD | PSH_NOAPPLYNOW;
  2163. cepHeader.hwndParent=NULL;
  2164. cepHeader.hInstance=g_hModule;
  2166. if(LoadStringU(g_hModule, IDS_WIZARD_CAPTION, wszTitle, sizeof(wszTitle)/sizeof(wszTitle[0])))
  2167. cepHeader.pszCaption=wszTitle;
  2169. cepHeader.nPages=CEP_PROP_SHEET;
  2170. cepHeader.nStartPage=0;
  2171. cepHeader.ppsp=rgCEPSheet;
  2173. //create the wizard
  2174. iReturn = PropertySheetU(&cepHeader);
  2176. if(-1 == iReturn)
  2177. goto ErrorWithWin32Return;
  2179. if(0 == iReturn)
  2180. {
  2181. //cancel button is pushed. We return FALSE so that
  2182. //the reboot will not happen.
  2183. fResult=FALSE;
  2184. goto CommonReturn;
  2185. }
  2187. fResult=TRUE;
  2189. CommonReturn:
  2191. if(pDomainInfo)
  2192. {
  2193. DsRoleFreeMemory(pDomainInfo);
  2194. }
  2196. FreeCEPWizardInfo(&CEPWizardInfo);
  2198. CoUninitialize();
  2200. return fResult;
  2202. ErrorReturn:
  2204. fResult=FALSE;
  2206. CEPMessageBox(NULL, idsMsg, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  2208. goto CommonReturn;
  2210. ErrorWithHResultReturn:
  2212. fResult=FALSE;
  2214. CEPErrorMessageBox(NULL, idsMsg, hr, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  2216. goto CommonReturn;
  2218. ErrorWithWin32Return:
  2220. fResult=FALSE;
  2222. hr=HRESULT_FROM_WIN32(GetLastError());
  2224. CEPErrorMessageBox(NULL, idsMsg, hr, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  2226. goto CommonReturn;
  2227. }
  2229. //**********************************************************************
  2230. //
  2231. // Helper functions
  2232. //
  2233. //**********************************************************************
  2234. //-----------------------------------------------------------------------
  2235. //
  2236. // I_DoSetupWork
  2237. //
  2238. // we are ready to do the real work
  2239. //-----------------------------------------------------------------------
  2240. BOOL WINAPI I_DoSetupWork(HWND hWnd, CEP_WIZARD_INFO *pCEPWizardInfo)
  2241. {
  2242. BOOL fResult=FALSE;
  2243. UINT idsMsg=IDS_FAIL_INIT_WIZARD;
  2244. HRESULT hr=E_FAIL;
  2245. DWORD dwWaitCounter=0;
  2246. DWORD dwIndex=0;
  2247. BOOL bStart=FALSE;
  2248. DWORD dwSize=0;
  2249. WCHAR wszTitle[MAX_TITLE_LENGTH];
  2250. DWORD cbUserInfo = 0;
  2252. PTOKEN_USER pUserInfo = NULL;
  2253. LPWSTR pwszRADN=NULL;
  2254. LPWSTR pwszComputerName=NULL;
  2255. LPWSTR pwszText=NULL;
  2257. //************************************************************************************
  2258. //delete all existing CEP certificates
  2259. if(!RemoveRACertificates())
  2260. {
  2261. idsMsg=IDS_FAIL_DELETE_RA;
  2262. goto ErrorWithWin32Return;
  2263. }
  2265. //************************************************************************************
  2266. //CEP policy registry
  2267. if(!UpdateCEPRegistry(pCEPWizardInfo->fPassword,
  2268. pCEPWizardInfo->fEnterpriseCA))
  2269. {
  2270. idsMsg=IDS_FAIL_UPDATE_REGISTRY;
  2271. goto ErrorWithWin32Return;
  2272. }
  2274. //************************************************************************************
  2275. // Add the virtual root
  2276. if(S_OK != (hr=AddVDir(pCEPWizardInfo->fDC, CEP_DIR_NAME, SCEP_APPLICATION_POOL, pCEPWizardInfo->fLocalSystem, pCEPWizardInfo->pwszUserName, pCEPWizardInfo->pwszPassword)))
  2277. {
  2278. idsMsg=IDS_FAIL_ADD_VROOT;
  2279. goto ErrorWithHResultReturn;
  2280. }
  2282. //************************************************************************************
  2283. // Stop and Start W3SVC service for the change to take effect
  2284. CepStopService(pCEPWizardInfo->dwServiceWait,IIS_NAME, &bStart);
  2286. if(S_OK != (hr=CepStartService(IIS_NAME)))
  2287. {
  2288. idsMsg=IDS_FAIL_START_IIS;
  2289. goto ErrorWithHResultReturn;
  2290. }
  2292. //make sure the w3svc is up running
  2293. for (dwWaitCounter=0; dwWaitCounter < pCEPWizardInfo->dwServiceWait; dwWaitCounter++)
  2294. {
  2295. if (!IsServiceRunning(IIS_NAME))
  2296. Sleep(1000);
  2297. else
  2298. break;
  2299. }
  2301. if (pCEPWizardInfo->dwServiceWait == dwWaitCounter)
  2302. {
  2303. idsMsg=IDS_FAIL_START_IIS;
  2304. goto ErrorWithHResultReturn;
  2305. }
  2307. //************************************************************************************
  2308. //Get the security ID for the account
  2309. //get the account's SID
  2310. if(FALSE == (pCEPWizardInfo->fLocalSystem))
  2311. {
  2312. if(NULL == pCEPWizardInfo->hAccountToken)
  2313. {
  2314. idsMsg=IDS_FAIL_SID_FROM_ACCOUNT;
  2315. hr=E_INVALIDARG;
  2316. goto ErrorWithHResultReturn;
  2317. }
  2319. GetTokenInformation(pCEPWizardInfo->hAccountToken, TokenUser, NULL, 0, &cbUserInfo);
  2320. if(cbUserInfo == 0)
  2321. {
  2322. idsMsg=IDS_FAIL_SID_FROM_ACCOUNT;
  2323. goto ErrorWithWin32Return;
  2324. }
  2326. pUserInfo = (PTOKEN_USER)LocalAlloc(LPTR, cbUserInfo);
  2327. if(pUserInfo == NULL)
  2328. {
  2329. idsMsg=IDS_FAIL_SID_FROM_ACCOUNT;
  2330. hr=E_OUTOFMEMORY;
  2331. goto ErrorWithHResultReturn;
  2332. }
  2334. if(!GetTokenInformation(pCEPWizardInfo->hAccountToken, TokenUser, pUserInfo, cbUserInfo, &cbUserInfo))
  2335. {
  2336. idsMsg=IDS_FAIL_SID_FROM_ACCOUNT;
  2337. goto ErrorWithWin32Return;
  2338. }
  2339. }
  2341. //************************************************************************************
  2342. //Update the certificate template and its ACLs for enterprise CA
  2343. if (pCEPWizardInfo->fEnterpriseCA)
  2344. {
  2345. // get the templates and permisisons right
  2346. if(S_OK != (hr=DoCertSrvEnterpriseChanges(pCEPWizardInfo->fLocalSystem ? NULL : (SID *)((pUserInfo->User).Sid))))
  2347. {
  2348. idsMsg=IDS_FAIL_ADD_TEMPLATE;
  2349. goto ErrorWithHResultReturn;
  2350. }
  2351. }
  2354. //************************************************************************************
  2355. //Enroll for the RA certificate
  2357. //build the name in the form of L"C=US;S=Washington;CN=TestSetupUtil"
  2358. pwszRADN=(LPWSTR)malloc(sizeof(WCHAR));
  2359. if(NULL==pwszRADN)
  2360. {
  2361. idsMsg=IDS_NO_MEMORY;
  2362. goto ErrorReturn;
  2363. }
  2364. *pwszRADN=L'\0';
  2366. for(dwIndex=0; dwIndex<RA_INFO_COUNT; dwIndex++)
  2367. {
  2368. if((pCEPWizardInfo->rgpwszName)[dwIndex])
  2369. {
  2370. if(0 != wcslen(pwszRADN))
  2371. wcscat(pwszRADN, L";");
  2373. pwszRADN=(LPWSTR)realloc(pwszRADN,
  2374. sizeof(WCHAR) * (wcslen(pwszRADN) +
  2375. wcslen((pCEPWizardInfo->rgpwszName)[dwIndex]) +
  2376. wcslen(L";") +
  2377. wcslen(g_rgRAEnrollInfo[dwIndex].pwszPreFix) +
  2378. 1));
  2380. if(NULL==pwszRADN)
  2381. {
  2382. idsMsg=IDS_NO_MEMORY;
  2383. goto ErrorReturn;
  2384. }
  2386. wcscat(pwszRADN,g_rgRAEnrollInfo[dwIndex].pwszPreFix);
  2387. wcscat(pwszRADN,(pCEPWizardInfo->rgpwszName)[dwIndex]);
  2388. }
  2389. }
  2391. if(S_OK != (hr=EnrollForRACertificates(
  2392. pwszRADN,
  2393. (pCEPWizardInfo->rgCSPInfo)[pCEPWizardInfo->dwSignProvIndex].pwszCSPName,
  2394. (pCEPWizardInfo->rgCSPInfo)[pCEPWizardInfo->dwSignProvIndex].dwCSPType,
  2395. pCEPWizardInfo->dwSignKeyLength,
  2396. (pCEPWizardInfo->rgCSPInfo)[pCEPWizardInfo->dwEncryptProvIndex].pwszCSPName,
  2397. (pCEPWizardInfo->rgCSPInfo)[pCEPWizardInfo->dwEncryptProvIndex].dwCSPType,
  2398. pCEPWizardInfo->dwEncryptKeyLength,
  2399. pCEPWizardInfo->fLocalSystem ? NULL : (SID *)((pUserInfo->User).Sid))))
  2400. {
  2401. idsMsg=IDS_FAIL_ENROLL_RA_CERT;
  2402. goto ErrorWithHResultReturn;
  2403. }
  2405. //************************************************************************************
  2406. //CA policy registry
  2408. CepStopService(pCEPWizardInfo->dwServiceWait, CERTSVC_NAME, &bStart);
  2410. if(S_OK != (hr=DoCertSrvRegChanges(FALSE)))
  2411. {
  2412. idsMsg=IDS_FAIL_UPDATE_CERTSVC;
  2413. goto ErrorWithHResultReturn;
  2414. }
  2416. if(S_OK != (hr=CepStartService(CERTSVC_NAME)))
  2417. {
  2418. idsMsg=IDS_FAIL_START_CERTSVC;
  2419. goto ErrorWithHResultReturn;
  2420. }
  2422. //make sure the CA is up running
  2423. for (dwWaitCounter=0; dwWaitCounter < pCEPWizardInfo->dwServiceWait; dwWaitCounter++)
  2424. {
  2425. if (!IsCaRunning())
  2426. Sleep(1000);
  2427. else
  2428. break;
  2429. }
  2431. if (pCEPWizardInfo->dwServiceWait == dwWaitCounter)
  2432. {
  2433. idsMsg=IDS_CAN_NOT_START_CA;
  2434. goto ErrorWithHResultReturn;
  2435. }
  2437. //************************************************************************************
  2438. //Add the EventLog Source
  2439. if(S_OK != AddLogSourceToRegistry(L"%SystemRoot%\\System32\\Certsrv\\Mscep\\mscep.dll"))
  2440. {
  2441. idsMsg=IDS_FAIL_REG_EVENT_LOG;
  2442. goto ErrorWithHResultReturn;
  2443. }
  2446. //************************************************************************************
  2447. //success
  2448. //inform the user of the password location and URL
  2449. dwSize=0;
  2451. GetComputerNameExW(ComputerNamePhysicalDnsHostname,
  2452. NULL,
  2453. &dwSize);
  2455. pwszComputerName=(LPWSTR)malloc(dwSize * sizeof(WCHAR));
  2457. if(NULL==pwszComputerName)
  2458. {
  2459. idsMsg=IDS_NO_MEMORY;
  2460. goto ErrorReturn;
  2461. }
  2464. if(!GetComputerNameExW(ComputerNamePhysicalDnsHostname,
  2465. pwszComputerName,
  2466. &dwSize))
  2467. {
  2468. idsMsg=IDS_FAIL_GET_COMPUTER_NAME;
  2469. goto ErrorWithWin32Return;
  2470. }
  2472. if(!FormatMessageUnicode(&pwszText, IDS_CEP_SUCCESS_INFO, pwszComputerName, CEP_DIR_NAME, CEP_DLL_NAME))
  2473. {
  2474. idsMsg=IDS_NO_MEMORY;
  2475. goto ErrorWithWin32Return;
  2476. }
  2478. wszTitle[0]=L'\0';
  2480. LoadStringU(g_hModule, IDS_WIZARD_CAPTION, wszTitle, sizeof(wszTitle)/sizeof(wszTitle[0]));
  2482. MessageBoxU(hWnd, pwszText, wszTitle, MB_OK | MB_APPLMODAL);
  2484. fResult=TRUE;
  2486. CommonReturn:
  2488. if(pUserInfo)
  2489. {
  2490. LocalFree(pUserInfo);
  2491. }
  2493. if(pwszText)
  2494. LocalFree((HLOCAL)pwszText);
  2496. if(pwszComputerName)
  2497. free(pwszComputerName);
  2499. if(pwszRADN)
  2500. free(pwszRADN);
  2502. return fResult;
  2504. ErrorReturn:
  2506. fResult=FALSE;
  2508. CEPMessageBox(hWnd, idsMsg, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  2510. goto CommonReturn;
  2512. ErrorWithHResultReturn:
  2514. fResult=FALSE;
  2516. CEPErrorMessageBox(hWnd, idsMsg, hr, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  2518. goto CommonReturn;
  2520. ErrorWithWin32Return:
  2522. fResult=FALSE;
  2524. hr=HRESULT_FROM_WIN32(GetLastError());
  2526. CEPErrorMessageBox(hWnd, idsMsg, hr, MB_ICONERROR|MB_OK|MB_APPLMODAL);
  2528. goto CommonReturn;
  2529. }
  2531. //-----------------------------------------------------------------------
  2532. //
  2533. // CEPGetCSPInformation
  2534. //
  2535. // We initialize the following members of CEP_WIZARD_INFO:
  2536. //
  2537. // CEP_CSP_INFO *rgCSPInfo;
  2538. // DWORD dwCSPCount;
  2539. // DWORD dwSignProvIndex;
  2540. // DWORD dwSignKeySize;
  2541. // DWORD dwEncryptProvIndex;
  2542. // DWORD dwEncryptKeySize;
  2543. //
  2544. //
  2545. // typedef struct _CEP_CSP_INFO
  2546. //{
  2547. // LPWSTR pwszCSPName;
  2548. // DWORD dwCSPType;
  2549. // BOOL fSignature;
  2550. // BOOL fExchange;
  2551. // DWORD dwMaxSign; //Max key length of signature
  2552. // DWORD dwMinSign; //Min key length of signature
  2553. // DWORD dwDefaultSign; //default key length of signature
  2554. // DWORD dwMaxEncrypt;
  2555. // DWORD dwMinEncrypt;
  2556. // DWORD dwDefaultEncrypt;
  2557. // DWORD *pdwSignList; //the table of possible signing key length
  2558. // DWORD dwSignCount; //the count of entries in the table
  2559. // DWORD *pdwEncryptList;
  2560. // DWORD dwEncryptCount;
  2561. //}CEP_CSP_INFO;
  2562. //
  2563. //
  2564. //------------------------------------------------------------------------
  2565. BOOL WINAPI CEPGetCSPInformation(CEP_WIZARD_INFO *pCEPWizardInfo)
  2566. {
  2567. BOOL fResult=FALSE;
  2568. DWORD dwCSPIndex=0;
  2569. DWORD dwProviderType=0;
  2570. DWORD cbSize=0;
  2571. DWORD dwFlags=0;
  2572. DWORD dwIndex=0;
  2573. int iDefaultSignature=-1;
  2574. int iDefaultEncryption=-1;
  2575. PROV_ENUMALGS_EX paramData;
  2577. CEP_CSP_INFO *pCSPInfo=NULL;
  2578. HCRYPTPROV hProv = NULL;
  2580. //enum all the providers on the system
  2581. while(CryptEnumProvidersU(
  2582. dwCSPIndex,
  2583. NULL,
  2584. 0,
  2585. &dwProviderType,
  2586. NULL,
  2587. &cbSize))
  2588. {
  2590. pCSPInfo=(CEP_CSP_INFO *)malloc(sizeof(CEP_CSP_INFO));
  2592. if(NULL == pCSPInfo)
  2593. goto MemoryErr;
  2595. memset(pCSPInfo, 0, sizeof(CEP_CSP_INFO));
  2597. pCSPInfo->pwszCSPName=(LPWSTR)malloc(cbSize);
  2599. if(NULL==(pCSPInfo->pwszCSPName))
  2600. goto MemoryErr;
  2602. //get the CSP name and the type
  2603. if(!CryptEnumProvidersU(
  2604. dwCSPIndex,
  2605. NULL,
  2606. 0,
  2607. &(pCSPInfo->dwCSPType),
  2608. pCSPInfo->pwszCSPName,
  2609. &cbSize))
  2610. goto TryNext;
  2612. if(!CryptAcquireContextU(&hProv,
  2613. NULL,
  2614. pCSPInfo->pwszCSPName,
  2615. pCSPInfo->dwCSPType,
  2616. CRYPT_VERIFYCONTEXT))
  2617. goto TryNext;
  2619. //get the max/min of key length for both signature and encryption
  2620. dwFlags=CRYPT_FIRST;
  2621. cbSize=sizeof(paramData);
  2622. memset(&paramData, 0, sizeof(PROV_ENUMALGS_EX));
  2624. while(CryptGetProvParam(
  2625. hProv,
  2626. PP_ENUMALGS_EX,
  2627. (BYTE *) &paramData,
  2628. &cbSize,
  2629. dwFlags))
  2630. {
  2631. if (ALG_CLASS_SIGNATURE == GET_ALG_CLASS(paramData.aiAlgid))
  2632. {
  2633. pCSPInfo->fSignature=TRUE;
  2634. pCSPInfo->dwMaxSign = paramData.dwMaxLen;
  2635. pCSPInfo->dwMinSign = paramData.dwMinLen;
  2636. }
  2638. if (ALG_CLASS_KEY_EXCHANGE == GET_ALG_CLASS(paramData.aiAlgid))
  2639. {
  2640. pCSPInfo->fEncryption=TRUE;
  2641. pCSPInfo->dwMaxEncrypt = paramData.dwMaxLen;
  2642. pCSPInfo->dwMinEncrypt = paramData.dwMinLen;
  2643. }
  2645. dwFlags=0;
  2646. cbSize=sizeof(paramData);
  2647. memset(&paramData, 0, sizeof(PROV_ENUMALGS_EX));
  2648. }
  2650. //the min/max has to within the limit
  2651. if(pCSPInfo->fSignature)
  2652. {
  2653. if(pCSPInfo->dwMaxSign < g_rgdwSmallKeyLength[0])
  2654. pCSPInfo->fSignature=FALSE;
  2656. if(pCSPInfo->dwMinSign > g_rgdwKeyLength[g_dwKeyLengthCount-1])
  2657. pCSPInfo->fSignature=FALSE;
  2659. }
  2661. if(pCSPInfo->fEncryption)
  2662. {
  2663. if(pCSPInfo->dwMaxEncrypt < g_rgdwSmallKeyLength[0])
  2664. pCSPInfo->fEncryption=FALSE;
  2666. if(pCSPInfo->dwMinEncrypt > g_rgdwKeyLength[g_dwKeyLengthCount-1])
  2667. pCSPInfo->fEncryption=FALSE;
  2668. }
  2670. if((FALSE == pCSPInfo->fEncryption) && (FALSE==pCSPInfo->fSignature))
  2671. goto TryNext;
  2673. //decide the default key length
  2674. for(dwIndex=0; dwIndex<g_dwDefaultKeyCount; dwIndex++)
  2675. {
  2676. if((pCSPInfo->fSignature) && (0==pCSPInfo->dwDefaultSign))
  2677. {
  2678. if((g_rgdwDefaultKey[dwIndex] >= pCSPInfo->dwMinSign) &&
  2679. (g_rgdwDefaultKey[dwIndex] <= pCSPInfo->dwMaxSign)
  2680. )
  2681. pCSPInfo->dwDefaultSign=g_rgdwDefaultKey[dwIndex];
  2682. }
  2684. if((pCSPInfo->fEncryption) && (0==pCSPInfo->dwDefaultEncrypt))
  2685. {
  2686. if((g_rgdwDefaultKey[dwIndex] >= pCSPInfo->dwMinEncrypt) &&
  2687. (g_rgdwDefaultKey[dwIndex] <= pCSPInfo->dwMaxEncrypt)
  2688. )
  2689. pCSPInfo->dwDefaultEncrypt=g_rgdwDefaultKey[dwIndex];
  2690. }
  2691. }
  2693. //make sure that we have find a default
  2694. if((pCSPInfo->fSignature) && (0==pCSPInfo->dwDefaultSign))
  2695. goto TryNext;
  2697. if((pCSPInfo->fEncryption) && (0==pCSPInfo->dwDefaultEncrypt))
  2698. goto TryNext;
  2700. //decide the display list
  2701. if(pCSPInfo->fSignature)
  2702. {
  2703. if(pCSPInfo->dwMaxSign <= g_rgdwSmallKeyLength[g_dwSmallKeyLengthCount-1])
  2704. {
  2705. pCSPInfo->pdwSignList=g_rgdwSmallKeyLength;
  2706. pCSPInfo->dwSignCount=g_dwSmallKeyLengthCount;
  2707. }
  2708. else
  2709. {
  2710. pCSPInfo->pdwSignList=g_rgdwKeyLength;
  2711. pCSPInfo->dwSignCount=g_dwKeyLengthCount;
  2712. }
  2713. }
  2716. if(pCSPInfo->fEncryption)
  2717. {
  2718. if(pCSPInfo->dwMaxEncrypt <= g_rgdwSmallKeyLength[g_dwSmallKeyLengthCount-1])
  2719. {
  2720. pCSPInfo->pdwEncryptList=g_rgdwSmallKeyLength;
  2721. pCSPInfo->dwEncryptCount=g_dwSmallKeyLengthCount;
  2722. }
  2723. else
  2724. {
  2725. pCSPInfo->pdwEncryptList=g_rgdwKeyLength;
  2726. pCSPInfo->dwEncryptCount=g_dwKeyLengthCount;
  2727. }
  2728. }
  2731. //the CSP looks good
  2732. (pCEPWizardInfo->dwCSPCount)++;
  2734. //realloc to mapped to LocalRealloc which does not take NULL
  2735. if(1 == pCEPWizardInfo->dwCSPCount)
  2736. pCEPWizardInfo->rgCSPInfo=(CEP_CSP_INFO *)malloc(sizeof(CEP_CSP_INFO));
  2737. else
  2738. pCEPWizardInfo->rgCSPInfo=(CEP_CSP_INFO *)realloc(pCEPWizardInfo->rgCSPInfo,
  2739. (pCEPWizardInfo->dwCSPCount) * sizeof(CEP_CSP_INFO));
  2741. if(NULL==pCEPWizardInfo->rgCSPInfo)
  2742. {
  2743. pCEPWizardInfo->dwCSPCount=0;
  2744. goto MemoryErr;
  2745. }
  2747. memcpy(&(pCEPWizardInfo->rgCSPInfo[(pCEPWizardInfo->dwCSPCount)-1]),
  2748. pCSPInfo, sizeof(CEP_CSP_INFO));
  2750. free(pCSPInfo);
  2752. pCSPInfo=NULL;
  2754. //we default to use RSA_FULL
  2755. if(0 == _wcsicmp(pCEPWizardInfo->rgCSPInfo[pCEPWizardInfo->dwCSPCount-1].pwszCSPName,
  2756. MS_DEF_PROV_W))
  2757. {
  2758. if(pCEPWizardInfo->rgCSPInfo[pCEPWizardInfo->dwCSPCount-1].fSignature)
  2759. {
  2760. iDefaultSignature=pCEPWizardInfo->dwCSPCount-1;
  2761. }
  2763. if(pCEPWizardInfo->rgCSPInfo[pCEPWizardInfo->dwCSPCount-1].fEncryption)
  2764. {
  2765. iDefaultEncryption=pCEPWizardInfo->dwCSPCount-1;
  2766. }
  2767. }
  2770. TryNext:
  2771. cbSize=0;
  2773. dwCSPIndex++;
  2775. if(pCSPInfo)
  2776. {
  2777. if(pCSPInfo->pwszCSPName)
  2778. free(pCSPInfo->pwszCSPName);
  2780. free(pCSPInfo);
  2781. }
  2783. pCSPInfo=NULL;
  2785. if(hProv)
  2786. CryptReleaseContext(hProv, 0);
  2788. hProv=NULL;
  2789. }
  2792. //we need to have some valid data
  2793. if((0==pCEPWizardInfo->dwCSPCount) || (NULL==pCEPWizardInfo->rgCSPInfo))
  2794. goto InvalidArgErr;
  2796. //get the default CSP selection
  2797. if(-1 != iDefaultSignature)
  2798. pCEPWizardInfo->dwSignProvIndex=iDefaultSignature;
  2799. else
  2800. {
  2801. //find the 1st signature CSP
  2802. for(dwIndex=0; dwIndex < pCEPWizardInfo->dwCSPCount; dwIndex++)
  2803. {
  2804. if(pCEPWizardInfo->rgCSPInfo[dwIndex].fSignature)
  2805. {
  2806. pCEPWizardInfo->dwSignProvIndex=dwIndex;
  2807. break;
  2808. }
  2810. //we do no have signature CSPs
  2811. if(dwIndex == pCEPWizardInfo->dwCSPCount)
  2812. goto InvalidArgErr;
  2814. }
  2815. }
  2817. pCEPWizardInfo->dwSignKeyLength=pCEPWizardInfo->rgCSPInfo[pCEPWizardInfo->dwSignProvIndex].dwDefaultSign;
  2819. if(-1 != iDefaultEncryption)
  2820. pCEPWizardInfo->dwEncryptProvIndex=iDefaultEncryption;
  2821. else
  2822. {
  2823. //find the 1st exchange CSP
  2824. for(dwIndex=0; dwIndex < pCEPWizardInfo->dwCSPCount; dwIndex++)
  2825. {
  2826. if(pCEPWizardInfo->rgCSPInfo[dwIndex].fEncryption)
  2827. {
  2828. pCEPWizardInfo->dwEncryptProvIndex=dwIndex;
  2829. break;
  2830. }
  2832. //we do no have encryption CSPs
  2833. if(dwIndex == pCEPWizardInfo->dwCSPCount)
  2834. goto InvalidArgErr;
  2835. }
  2836. }
  2838. pCEPWizardInfo->dwEncryptKeyLength=pCEPWizardInfo->rgCSPInfo[pCEPWizardInfo->dwEncryptProvIndex].dwDefaultEncrypt;
  2841. fResult=TRUE;
  2843. CommonReturn:
  2845. return fResult;
  2847. ErrorReturn:
  2849. if(pCSPInfo)
  2850. {
  2851. if(pCSPInfo->pwszCSPName)
  2852. free(pCSPInfo->pwszCSPName);
  2854. free(pCSPInfo);
  2855. }
  2857. if(hProv)
  2858. CryptReleaseContext(hProv, 0);
  2860. if(pCEPWizardInfo->rgCSPInfo)
  2861. {
  2862. for(dwIndex=0; dwIndex < pCEPWizardInfo->dwCSPCount; dwIndex++)
  2863. {
  2864. if(pCEPWizardInfo->rgCSPInfo[dwIndex].pwszCSPName)
  2865. free(pCEPWizardInfo->rgCSPInfo[dwIndex].pwszCSPName);
  2866. }
  2868. free(pCEPWizardInfo->rgCSPInfo);
  2869. }
  2871. pCEPWizardInfo->dwCSPCount=0;
  2873. pCEPWizardInfo->rgCSPInfo=NULL;
  2875. fResult=FALSE;
  2876. goto CommonReturn;
  2878. SET_ERROR(MemoryErr, E_OUTOFMEMORY);
  2879. SET_ERROR(InvalidArgErr, E_INVALIDARG);
  2880. }
  2882. //-----------------------------------------------------------------------
  2883. //
  2884. // UpdateCEPRegistry
  2885. //
  2886. //------------------------------------------------------------------------
  2887. BOOL WINAPI UpdateCEPRegistry(BOOL fPassword, BOOL fEnterpriseCA)
  2888. {
  2889. BOOL fResult=FALSE;
  2890. DWORD dwDisposition=0;
  2891. LPWSTR pwszReg[]={MSCEP_REFRESH_LOCATION,
  2892. MSCEP_PASSWORD_LOCATION,
  2893. MSCEP_PASSWORD_MAX_LOCATION,
  2894. MSCEP_PASSWORD_VALIDITY_LOCATION,
  2895. MSCEP_CACHE_REQUEST_LOCATION,
  2896. MSCEP_CATYPE_LOCATION};
  2897. DWORD dwRegCount=0;
  2898. DWORD dwRegIndex=0;
  2901. HKEY hKey=NULL;
  2904. //we delete all existing CEP related registry keys
  2905. dwRegCount=sizeof(pwszReg)/sizeof(pwszReg[0]);
  2907. for(dwRegIndex=0; dwRegIndex < dwRegCount; dwRegIndex++)
  2908. {
  2909. RegDeleteKeyU(HKEY_LOCAL_MACHINE, pwszReg[dwRegIndex]);
  2910. }
  2912. //password
  2913. if (ERROR_SUCCESS != RegCreateKeyExU(
  2914. HKEY_LOCAL_MACHINE,
  2915. MSCEP_PASSWORD_LOCATION,
  2916. 0,
  2917. NULL,
  2918. REG_OPTION_NON_VOLATILE,
  2919. KEY_WRITE,
  2920. NULL,
  2921. &hKey,
  2922. &dwDisposition))
  2923. goto RegErr;
  2925. if(fPassword)
  2926. dwDisposition=1;
  2927. else
  2928. dwDisposition=0;
  2930. if(ERROR_SUCCESS != RegSetValueExU(
  2931. hKey,
  2932. MSCEP_KEY_PASSWORD,
  2933. 0,
  2934. REG_DWORD,
  2935. (BYTE *)&dwDisposition,
  2936. sizeof(dwDisposition)))
  2937. goto RegErr;
  2939. if(hKey)
  2940. RegCloseKey(hKey);
  2942. hKey=NULL;
  2944. //caType
  2945. dwDisposition=0;
  2947. if (ERROR_SUCCESS != RegCreateKeyExU(
  2948. HKEY_LOCAL_MACHINE,
  2949. MSCEP_CATYPE_LOCATION,
  2950. 0,
  2951. NULL,
  2952. REG_OPTION_NON_VOLATILE,
  2953. KEY_WRITE,
  2954. NULL,
  2955. &hKey,
  2956. &dwDisposition))
  2957. goto RegErr;
  2959. if(fEnterpriseCA)
  2960. dwDisposition=1;
  2961. else
  2962. dwDisposition=0;
  2964. if(ERROR_SUCCESS != RegSetValueExU(
  2965. hKey,
  2966. MSCEP_KEY_CATYPE,
  2967. 0,
  2968. REG_DWORD,
  2969. (BYTE *)&dwDisposition,
  2970. sizeof(dwDisposition)))
  2971. goto RegErr;
  2973. fResult=TRUE;
  2975. CommonReturn:
  2977. if(hKey)
  2978. RegCloseKey(hKey);
  2980. return fResult;
  2982. ErrorReturn:
  2984. fResult=FALSE;
  2985. goto CommonReturn;
  2987. TRACE_ERROR(RegErr);
  2988. }
  2990. //-----------------------------------------------------------------------
  2991. //
  2992. // EmptyCEPStore
  2993. //
  2994. //------------------------------------------------------------------------
  2995. BOOL WINAPI EmptyCEPStore()
  2996. {
  2997. BOOL fResult=TRUE;
  2999. HCERTSTORE hCEPStore=NULL;
  3000. PCCERT_CONTEXT pCurCert=NULL;
  3002. if(NULL == (hCEPStore=CertOpenStore(CERT_STORE_PROV_SYSTEM_W,
  3003. ENCODE_TYPE,
  3004. NULL,
  3005. CERT_SYSTEM_STORE_LOCAL_MACHINE | CERT_STORE_READONLY_FLAG | CERT_STORE_OPEN_EXISTING_FLAG,
  3006. CEP_STORE_NAME)))
  3007. return TRUE;
  3010. if(NULL != (pCurCert=CertEnumCertificatesInStore(hCEPStore, NULL)))
  3011. {
  3012. CertFreeCertificateContext(pCurCert);
  3013. fResult=FALSE;
  3014. }
  3016. CertCloseStore(hCEPStore, 0);
  3018. return fResult;
  3019. }
  3021. //-----------------------------------------------------------------------
  3022. //
  3023. // RemoveRACertificates
  3024. //
  3025. //------------------------------------------------------------------------
  3026. BOOL WINAPI RemoveRACertificates()
  3027. {
  3028. PCCERT_CONTEXT pCurCert=NULL;
  3029. PCCERT_CONTEXT pPreCert=NULL;
  3030. PCCERT_CONTEXT pDupCert=NULL;
  3031. BOOL fResult=TRUE;
  3033. HCERTSTORE hCEPStore=NULL;
  3036. if(hCEPStore=CertOpenStore(CERT_STORE_PROV_SYSTEM_W,
  3037. ENCODE_TYPE,
  3038. NULL,
  3039. CERT_SYSTEM_STORE_LOCAL_MACHINE | CERT_STORE_OPEN_EXISTING_FLAG,
  3040. CEP_STORE_NAME))
  3041. {
  3042. while(pCurCert=CertEnumCertificatesInStore(hCEPStore,
  3043. pPreCert))
  3044. {
  3046. if(pDupCert=CertDuplicateCertificateContext(pCurCert))
  3047. {
  3048. if(!CertDeleteCertificateFromStore(pDupCert))
  3049. {
  3050. fResult=FALSE;
  3051. }
  3053. pDupCert=NULL;
  3054. }
  3055. else
  3056. fResult=FALSE;
  3058. pPreCert=pCurCert;
  3059. }
  3061. CertCloseStore(hCEPStore, 0);
  3062. }
  3064. return fResult;
  3065. }
  3068. //-----------------------------------------------------------------------
  3069. //
  3070. // FreeCEPWizardInfo
  3071. //
  3072. //------------------------------------------------------------------------
  3073. void WINAPI FreeCEPWizardInfo(CEP_WIZARD_INFO *pCEPWizardInfo)
  3074. {
  3075. DWORD dwIndex=0;
  3077. if(pCEPWizardInfo)
  3078. {
  3079. DestroyFonts(pCEPWizardInfo->hBigBold,
  3080. pCEPWizardInfo->hBold);
  3082. for(dwIndex=0; dwIndex<RA_INFO_COUNT; dwIndex++)
  3083. {
  3084. if(pCEPWizardInfo->rgpwszName[dwIndex])
  3085. free(pCEPWizardInfo->rgpwszName[dwIndex]);
  3086. }
  3088. if(pCEPWizardInfo->rgCSPInfo)
  3089. {
  3090. for(dwIndex=0; dwIndex < pCEPWizardInfo->dwCSPCount; dwIndex++)
  3091. {
  3092. if(pCEPWizardInfo->rgCSPInfo[dwIndex].pwszCSPName)
  3093. free(pCEPWizardInfo->rgCSPInfo[dwIndex].pwszCSPName);
  3094. }
  3096. free(pCEPWizardInfo->rgCSPInfo);
  3097. }
  3099. if(pCEPWizardInfo->pwszUserName)
  3100. {
  3101. free(pCEPWizardInfo->pwszUserName);
  3102. }
  3104. if(pCEPWizardInfo->pwszPassword)
  3105. {
  3106. SecureZeroMemory(pCEPWizardInfo->pwszPassword, sizeof(WCHAR) * wcslen(pCEPWizardInfo->pwszPassword));
  3107. free(pCEPWizardInfo->pwszPassword);
  3108. }
  3110. if(pCEPWizardInfo->hAccountToken)
  3111. {
  3112. CloseHandle(pCEPWizardInfo->hAccountToken);
  3113. }
  3115. if(pCEPWizardInfo->pIDsObjectPicker)
  3116. {
  3117. (pCEPWizardInfo->pIDsObjectPicker)->Release();
  3118. }
  3120. memset(pCEPWizardInfo, 0, sizeof(CEP_WIZARD_INFO));
  3121. }
  3122. }
  3125. //-----------------------------------------------------------------------
  3126. //
  3127. // CEPWizardInit
  3128. //
  3129. //------------------------------------------------------------------------
  3130. BOOL WINAPI CEPWizardInit()
  3131. {
  3132. INITCOMMONCONTROLSEX initcomm = {
  3133. sizeof(initcomm), ICC_NATIVEFNTCTL_CLASS | ICC_LISTVIEW_CLASSES
  3134. };
  3136. return InitCommonControlsEx(&initcomm);
  3137. }
  3139. //-----------------------------------------------------------------------
  3140. //
  3141. // IsValidInstallation
  3142. //
  3143. //------------------------------------------------------------------------
  3144. BOOL WINAPI IsValidInstallation(UINT *pidsMsg)
  3145. {
  3146. if(!IsNT5())
  3147. {
  3148. *pidsMsg=IDS_NO_NT5;
  3149. return FALSE;
  3150. }
  3152. if(!IsIISInstalled())
  3153. {
  3154. *pidsMsg=IDS_NO_IIS;
  3155. return FALSE;
  3156. }
  3158. if(!IsGoodCaInstalled())
  3159. {
  3160. *pidsMsg=IDS_NO_GOOD_CA;
  3161. return FALSE;
  3162. }
  3164. return TRUE;
  3165. }
  3167. //-----------------------------------------------------------------------
  3168. //
  3169. // CEPErrorMessageBox
  3170. //
  3171. //------------------------------------------------------------------------
  3172. int WINAPI CEPErrorMessageBox(
  3173. HWND hWnd,
  3174. UINT idsReason,
  3175. HRESULT hr,
  3176. UINT uType
  3177. )
  3178. {
  3179. return CEPErrorMessageBoxEx(hWnd,
  3180. idsReason,
  3181. hr,
  3182. uType,
  3183. IDS_CEP_ERROR_MSG_HR,
  3184. IDS_CEP_ERROR_MSG);
  3185. }
  3187. //-----------------------------------------------------------------------
  3188. //
  3189. // CEPErrorMessageBoxEx
  3190. //
  3191. //------------------------------------------------------------------------
  3192. int WINAPI CEPErrorMessageBoxEx(
  3193. HWND hWnd,
  3194. UINT idsReason,
  3195. HRESULT hr,
  3196. UINT uType,
  3197. UINT idsFormat1,
  3198. UINT idsFormat2
  3199. )
  3200. {
  3202. WCHAR wszReason[MAX_STRING_SIZE];
  3203. WCHAR wszCaption[MAX_STRING_SIZE];
  3204. UINT intReturn=0;
  3206. LPWSTR pwszText=NULL;
  3207. LPWSTR pwszErrorMsg=NULL;
  3209. if(!LoadStringU(g_hModule, IDS_MEG_CAPTION, wszCaption, sizeof(wszCaption)/sizeof(WCHAR)))
  3210. goto CLEANUP;
  3212. if(!LoadStringU(g_hModule, idsReason, wszReason, sizeof(wszReason)/sizeof(WCHAR)))
  3213. goto CLEANUP;
  3215. if(!FAILED(hr))
  3216. hr=E_FAIL;
  3218. //using W version because this is a NT5 only function call
  3219. if(FormatMessageW(FORMAT_MESSAGE_ALLOCATE_BUFFER |
  3220. FORMAT_MESSAGE_FROM_SYSTEM |
  3221. FORMAT_MESSAGE_IGNORE_INSERTS,
  3222. NULL,
  3223. hr,
  3224. MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
  3225. (LPWSTR) &pwszErrorMsg,
  3226. 0,
  3227. NULL))
  3228. {
  3230. if(!FormatMessageUnicode(&pwszText, idsFormat1, wszReason, pwszErrorMsg))
  3231. goto CLEANUP;
  3233. }
  3234. else
  3235. {
  3236. if(!FormatMessageUnicode(&pwszText, idsFormat2, wszReason))
  3237. goto CLEANUP;
  3238. }
  3240. intReturn=MessageBoxU(hWnd, pwszText, wszCaption, uType);
  3243. CLEANUP:
  3245. if(pwszText)
  3246. LocalFree((HLOCAL)pwszText);
  3248. if(pwszErrorMsg)
  3249. LocalFree((HLOCAL)pwszErrorMsg);
  3251. return intReturn;
  3252. }
  3255. //-----------------------------------------------------------------------
  3256. //
  3257. // CEPMessageBox
  3258. //
  3259. //------------------------------------------------------------------------
  3260. int WINAPI CEPMessageBox(
  3261. HWND hWnd,
  3262. UINT idsText,
  3263. UINT uType
  3264. )
  3265. {
  3267. WCHAR wszText[MAX_STRING_SIZE];
  3268. WCHAR wszCaption[MAX_STRING_SIZE];
  3269. UINT intReturn=0;
  3271. if(!LoadStringU(g_hModule, IDS_MEG_CAPTION, wszCaption, sizeof(wszCaption)/sizeof(WCHAR)))
  3272. return 0;
  3274. if(!LoadStringU(g_hModule, idsText, wszText, sizeof(wszText)/sizeof(WCHAR)))
  3275. return 0;
  3277. intReturn=MessageBoxU(hWnd, wszText, wszCaption, uType);
  3279. return intReturn;
  3280. }
  3282. //--------------------------------------------------------------------------
  3283. //
  3284. // SetControlFont
  3285. //
  3286. //--------------------------------------------------------------------------
  3287. void WINAPI SetControlFont(
  3288. IN HFONT hFont,
  3289. IN HWND hwnd,
  3290. IN INT nId
  3291. )
  3292. {
  3293. if( hFont )
  3294. {
  3295. HWND hwndControl = GetDlgItem(hwnd, nId);
  3297. if( hwndControl )
  3298. {
  3299. SetWindowFont(hwndControl, hFont, TRUE);
  3300. }
  3301. }
  3302. }
  3305. //--------------------------------------------------------------------------
  3306. //
  3307. // SetupFonts
  3308. //
  3309. //--------------------------------------------------------------------------
  3310. BOOL WINAPI SetupFonts(
  3311. IN HINSTANCE hInstance,
  3312. IN HWND hwnd,
  3313. IN HFONT *pBigBoldFont,
  3314. IN HFONT *pBoldFont
  3315. )
  3316. {
  3317. //
  3318. // Create the fonts we need based on the dialog font
  3319. //
  3320. NONCLIENTMETRICS ncm = {0};
  3321. ncm.cbSize = sizeof(ncm);
  3323. if(!SystemParametersInfo(SPI_GETNONCLIENTMETRICS, 0, &ncm, 0))
  3324. return FALSE;
  3326. LOGFONT BigBoldLogFont = ncm.lfMessageFont;
  3327. LOGFONT BoldLogFont = ncm.lfMessageFont;
  3329. //
  3330. // Create Big Bold Font and Bold Font
  3331. //
  3332. BigBoldLogFont.lfWeight = FW_BOLD;
  3333. BoldLogFont.lfWeight = FW_BOLD;
  3335. INT BigBoldFontSize = 12;
  3337. HDC hdc = GetDC( hwnd );
  3339. if( hdc )
  3340. {
  3341. BigBoldLogFont.lfHeight = 0 - (GetDeviceCaps(hdc,LOGPIXELSY) * BigBoldFontSize / 72);
  3343. *pBigBoldFont = CreateFontIndirect(&BigBoldLogFont);
  3344. *pBoldFont = CreateFontIndirect(&BoldLogFont);
  3346. ReleaseDC(hwnd,hdc);
  3348. if(*pBigBoldFont && *pBoldFont)
  3349. return TRUE;
  3350. else
  3351. {
  3352. if( *pBigBoldFont )
  3353. {
  3354. DeleteObject(*pBigBoldFont);
  3355. *pBigBoldFont=NULL;
  3356. }
  3358. if( *pBoldFont )
  3359. {
  3360. DeleteObject(*pBoldFont);
  3361. *pBoldFont=NULL;
  3362. }
  3363. return FALSE;
  3364. }
  3365. }
  3367. return FALSE;
  3368. }
  3371. //--------------------------------------------------------------------------
  3372. //
  3373. // DestroyFonts
  3374. //
  3375. //--------------------------------------------------------------------------
  3376. void WINAPI DestroyFonts(
  3377. IN HFONT hBigBoldFont,
  3378. IN HFONT hBoldFont
  3379. )
  3380. {
  3381. if( hBigBoldFont )
  3382. {
  3383. DeleteObject( hBigBoldFont );
  3384. }
  3386. if( hBoldFont )
  3387. {
  3388. DeleteObject( hBoldFont );
  3389. }
  3390. }
  3394. //--------------------------------------------------------------------------
  3395. //
  3396. // FormatMessageUnicode
  3397. //
  3398. //--------------------------------------------------------------------------
  3399. BOOL WINAPI FormatMessageUnicode(LPWSTR *ppwszFormat,UINT ids,...)
  3400. {
  3401. // get format string from resources
  3402. WCHAR wszFormat[1000];
  3403. va_list argList;
  3404. DWORD cbMsg=0;
  3405. BOOL fResult=FALSE;
  3406. HRESULT hr=S_OK;
  3408. if(NULL == ppwszFormat)
  3409. goto InvalidArgErr;
  3411. if(!LoadStringU(g_hModule, ids, wszFormat, sizeof(wszFormat)/sizeof(WCHAR)))
  3412. goto LoadStringError;
  3414. // format message into requested buffer
  3415. va_start(argList, ids);
  3417. cbMsg = FormatMessageU(
  3418. FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_STRING,
  3419. wszFormat,
  3420. 0, // dwMessageId
  3421. 0, // dwLanguageId
  3422. (LPWSTR) (ppwszFormat),
  3423. 0, // minimum size to allocate
  3424. &argList);
  3426. va_end(argList);
  3428. if(!cbMsg)
  3429. goto FormatMessageError;
  3431. fResult=TRUE;
  3433. CommonReturn:
  3435. return fResult;
  3437. ErrorReturn:
  3438. fResult=FALSE;
  3440. goto CommonReturn;
  3443. TRACE_ERROR(LoadStringError);
  3444. TRACE_ERROR(FormatMessageError);
  3445. SET_ERROR(InvalidArgErr, E_INVALIDARG);
  3446. }
  3449. //--------------------------------------------------------------------------
  3450. //
  3451. // AddLogSourceToRegistry
  3452. //
  3453. //--------------------------------------------------------------------------
  3454. HRESULT WINAPI AddLogSourceToRegistry(LPWSTR pwszMsgDLL)
  3455. {
  3456. DWORD dwError=ERROR_SUCCESS;
  3457. DWORD dwData=0;
  3458. WCHAR const *pwszRegPath = L"SYSTEM\\CurrentControlSet\\Services\\EventLog\\Application\\";
  3459. WCHAR NameBuf[MAX_STRING_SIZE];
  3461. HKEY hkey = NULL;
  3464. wcscpy(NameBuf, pwszRegPath);
  3465. wcscat(NameBuf, MSCEP_EVENT_LOG);
  3467. // Create a new key for our application
  3468. if(ERROR_SUCCESS != RegOpenKey(HKEY_LOCAL_MACHINE, NameBuf, &hkey))
  3469. {
  3470. if(ERROR_SUCCESS != (dwError = RegCreateKey(HKEY_LOCAL_MACHINE, NameBuf, &hkey)))
  3471. goto CLEANUP;
  3472. }
  3474. // Add the Event-ID message-file name to the subkey
  3476. dwError = RegSetValueEx(
  3477. hkey,
  3478. L"EventMessageFile",
  3479. 0,
  3480. REG_EXPAND_SZ,
  3481. (const BYTE *) pwszMsgDLL,
  3482. (wcslen(pwszMsgDLL) + 1) * sizeof(WCHAR));
  3484. if(ERROR_SUCCESS != dwError)
  3485. goto CLEANUP;
  3487. // Set the supported types flags and add it to the subkey
  3489. dwData = EVENTLOG_ERROR_TYPE |
  3490. EVENTLOG_WARNING_TYPE |
  3491. EVENTLOG_INFORMATION_TYPE;
  3493. dwError = RegSetValueEx(
  3494. hkey,
  3495. L"TypesSupported",
  3496. 0,
  3497. REG_DWORD,
  3498. (LPBYTE) &dwData,
  3499. sizeof(DWORD));
  3500. if(ERROR_SUCCESS != dwError)
  3501. goto CLEANUP;
  3503. dwError=ERROR_SUCCESS;
  3505. CLEANUP:
  3507. if (NULL != hkey)
  3508. {
  3509. RegCloseKey(hkey);
  3510. }
  3511. return(HRESULT_FROM_WIN32(dwError));
  3512. }
  3515. LPWSTR
  3516. GetAccountDomainName(BOOL fDC)
  3517. /*++
  3519. Routine Description:
  3521. Returns the name of the account domain for this machine.
  3523. For workstatations, the account domain is the netbios computer name.
  3524. For DCs, the account domain is the netbios domain name.
  3526. Arguments:
  3528. None.
  3530. Return Values:
  3532. Returns a pointer to the name. The name should be free using NetApiBufferFree.
  3534. NULL - on error.
  3536. --*/
  3537. {
  3538. DWORD WinStatus;
  3540. LPWSTR AllocatedName = NULL;
  3543. //
  3544. // If this machine is a domain controller,
  3545. // get the domain name.
  3546. //
  3548. if ( fDC )
  3549. {
  3551. WinStatus = NetpGetDomainName( &AllocatedName );
  3553. if ( WinStatus != NO_ERROR )
  3554. {
  3555. SetLastError(WinStatus);
  3556. return NULL;
  3557. }
  3559. //
  3560. // Otherwise, the 'account domain' is the computername
  3561. //
  3563. }
  3564. else
  3565. {
  3567. WinStatus = NetpGetComputerName( &AllocatedName );
  3569. if ( WinStatus != NO_ERROR )
  3570. {
  3571. SetLastError(WinStatus);
  3572. return NULL;
  3573. }
  3575. }
  3577. return AllocatedName;
  3578. }