archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/inetcore/outlookexpress/mailnews/common/secutil.h

236 lines
8.8 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*
  2. ** s e c u t i l . h
  3. **
  4. ** Purpose: helper functions for message security
  5. **
  6. ** Owner: t-erikne
  7. ** Created: 1/10/97
  8. **
  9. ** Copyright (C) Microsoft Corp. 1997.
  10. */
  12. #ifndef __SECUTIL_H
  13. #define __SECUTIL_H
  15. /////////////////////////////////////////////////////////////////////////////
  16. //
  17. // Depends on
  18. //
  20. #include <mimeole.h>
  21. #include <wab.h>
  22. class CWabal;
  23. class CSecMsgService;
  24. interface IBodyObj;
  25. interface IBodyObj2;
  26. typedef CWabal *LPWABAL;
  27. typedef struct tagADRINFO ADRINFO;
  28. typedef const struct _CERT_CONTEXT *PCCERT_CONTEXT;
  29. interface IImnAccount;
  30. interface IHeaderSite;
  32. /////////////////////////////////////////////////////////////////////////////
  33. //
  34. // Structures
  35. //
  37. /* SECSTATE structure
  38. **
  39. ** type - security type
  40. ** user_validity - user set validity bits
  41. ** ro_msg_validity - mimeole set validity/trust bits
  42. ** fHaveCert - TRUE if there is a cert in the message
  43. ** szSignerEmail - points to email address of signer
  44. ** szSenderEmail - points to email address of sender
  45. */
  46. struct SECSTATEtag
  47. {
  48. ULONG type;
  49. ULONG user_validity;
  50. ULONG ro_msg_validity;
  51. BOOL fHaveCert;
  52. LPTSTR szSignerEmail;
  53. LPTSTR szSenderEmail;
  54. };
  55. typedef struct SECSTATEtag SECSTATE;
  57. // Structure for send resource ID to
  58. // signing certificate error dialog
  59. typedef struct tagErrIds
  60. {
  61. UINT idsText1;
  62. UINT idsText2;
  63. } ERRIDS;
  65. typedef struct tagCertErrParam
  66. {
  67. BOOL fForceEncryption;
  68. IMimeAddressTable *pAdrTable;
  69. } CERTERRPARAM;
  72. /* ALG_LIST/ALG_NODE struct
  73. **
  74. ** aid - CAPI algorithm id
  75. ** dwBits - number of bits in the algorithm
  76. ** szName - text name of algorithm
  77. */
  78. struct ALG_LISTtag;
  79. typedef struct ALG_LISTtag {
  80. ALG_ID aid;
  81. DWORD dwBits;
  82. char szName[20];
  83. ALG_LISTtag *next;
  84. } ALG_LIST, ALG_NODE;
  87. extern CRYPT_ENCODE_PARA CryptEncodeAlloc;
  88. extern CRYPT_DECODE_PARA CryptDecodeAlloc;
  90. /////////////////////////////////////////////////////////////////////////////
  91. //
  92. // Definitions
  93. //
  95. // in use 0x xxx xx
  96. #define ATHSEC_TRUSTED 0x00000000
  97. #define ATHSEC_NOTRUSTNOTTRUSTED 0X00000001
  98. #define ATHSEC_NOTRUSTUNKNOWN 0X00000002
  99. #define ATHSEC_TRUSTSTATEMASK 0x000000ff
  100. // these are ordered as the idsWrnSecurityTrust* in resource.h
  101. // change these, change them
  102. #define ATHSEC_NOTRUSTWRONGADDR 0X00010000
  103. #define ATHSEC_NOTRUSTREVOKED 0x00020000
  104. #define ATHSEC_NOTRUSTOTHER 0X00040000
  105. #define ATHSEC_NOTRUSTREVFAIL 0x00080000
  106. #define ATHSEC_NUMVALIDITYBITS 3 // update this if you add one
  107. #define ATHSEC_TRUSTREASONMASK 0x0fff0000
  109. // Flags for HrAddCertToWabContact & HrAddCertToWab
  110. #define WFF_SHOWUI 0x00000001 // we are allowed to show UI
  111. #define WFF_CREATE 0x00000010 // we are allowed to create an entry if not found
  114. /////////////////////////////////////////////////////////////////////////////
  115. //
  116. // Constants
  117. //
  119. extern const BYTE c_RC2_40_ALGORITHM_ID[];
  120. extern const ULONG cbRC2_40_ALGORITHM_ID;
  122. /////////////////////////////////////////////////////////////////////////////
  123. //
  124. // Prototypes
  125. //
  127. BOOL IsSecure(DWORD dwMST);
  128. BOOL IsSecure(LPMIMEMESSAGE pMsg, const HBODY hBodyToCheck = HBODY_ROOT);
  129. BOOL IsSigned(LPMIMEMESSAGE pMsg, BOOL fIncludeDescendents);
  130. BOOL IsSigned(LPMIMEMESSAGE pMsg, const HBODY hBodyToCheck, BOOL fIncludeDescendents);
  131. BOOL IsSigned(DWORD dwMST);
  132. BOOL IsSignTrusted(SECSTATE *pSecState);
  133. BOOL IsEncrypted(LPMIMEMESSAGE pMsg, BOOL fIncludeDescendents);
  134. BOOL IsEncrypted(LPMIMEMESSAGE pMsg, const HBODY hBodyToCheck, BOOL fIncludeDescendents);
  135. BOOL IsEncrypted(DWORD dwMST);
  136. BOOL IsEncryptionOK(SECSTATE *pSecState);
  138. HRESULT CommonUI_ViewSigningProperties(HWND hwnd, PCCERT_CONTEXT pCert, HCERTSTORE hcMsg, UINT nStartPage);
  139. HRESULT CommonUI_ViewSigningCertificate(HWND hwnd, PCCERT_CONTEXT pCert, HCERTSTORE hcMsg);
  140. HRESULT CommonUI_ViewSigningCertificateTrust(HWND hwnd, PCCERT_CONTEXT pCert, HCERTSTORE hcMsg);
  142. HRESULT HrHaveAnyMyCerts(void);
  144. HRESULT HrGetThumbprint(LPWABAL lpWabal, ADRINFO *pAdrInfo, THUMBBLOB *pThumbprint, BLOB * pSymCaps, FILETIME * pSigningTime);
  146. DWORD DwGetSecurityOfMessage(LPMIMEMESSAGE pMsg, const HBODY hBodyToCheck = HBODY_ROOT);
  147. HRESULT HrInitSecurityOptions(LPMIMEMESSAGE pMsg, ULONG ulSecurityType);
  149. #ifdef SMIME_V3
  150. BOOL FNameInList(LPSTR szAddr, DWORD cReceiptFromList, CERT_NAME_BLOB *rgReceiptFromList);
  151. HRESULT SendSecureMailToOutBox(IStoreCallback *pStoreCB, LPMIMEMESSAGE pMsg, BOOL fSendImmediate, BOOL fNoUI, BOOL fMail, IHeaderSite *pHeaderSite);
  152. #else
  153. HRESULT SendSecureMailToOutBox(IStoreCallback *pStoreCB, LPMIMEMESSAGE pMsg, BOOL fSendImmediate, BOOL fNoUI, BOOL fMail);
  154. #endif // SMIME_V3
  156. DWORD DwGenerateTrustedChain(HWND hwnd, IMimeMessage *pMsg, PCCERT_CONTEXT pcCertToTest, DWORD dwIgnore, BOOL fFullSearch, DWORD *pcChain, PCCERT_CONTEXT **prgChain);
  158. HRESULT HrGetSecurityState(LPMIMEMESSAGE, SECSTATE *, HBODY *phBody);
  159. VOID CleanupSECSTATE(SECSTATE *psecstate);
  160. HRESULT HandleSecurity(HWND hwndOwner, LPMIMEMESSAGE);
  162. HRESULT LoadResourceToHTMLStream(LPCTSTR szResName, IStream **ppstm);
  164. HRESULT HrGetMyCerts(PCCERT_CONTEXT ** pprgcc, ULONG * pccc);
  165. void FreeCertArray(PCCERT_CONTEXT * rgcc, ULONG ccc);
  166. HRESULT GetSigningCert(IMimeMessage * pMsg, PCCERT_CONTEXT * ppcSigningCert, THUMBBLOB * ptbSigner, BLOB * pblSymCaps, FILETIME * pftSigningTime);
  167. HRESULT GetSignerEncryptionCert(IMimeMessage * pMsg, PCCERT_CONTEXT * ppcEncryptCert,
  168. THUMBBLOB * ptbEncrypt, BLOB * pblSymCaps,
  169. FILETIME * pftSigningTime);
  170. HRESULT HrSaveCACerts(HCERTSTORE hcCA, HCERTSTORE hcMsg);
  172. BOOL IsThumbprintInMVPBin(SPropValue spv, THUMBBLOB * lpThumbprint, ULONG * lpIndex, BLOB * pblSymCaps,
  173. FILETIME * lpftSigningTime, BOOL * lpfDefault);
  174. HRESULT HrAddSenderCertToWab(HWND hwnd, LPMIMEMESSAGE pMsg, LPWABAL lpWabal, THUMBBLOB *pSenderThumbprint,
  175. BLOB *pblSymCaps, FILETIME ftSigningTime, DWORD dwFlags);
  176. HRESULT HrAddCertToWab(HWND hwnd, LPWABAL lpWabal, THUMBBLOB *pThumbprint,
  177. PCCERT_CONTEXT pcCertContext, LPWSTR lpwszEmailAddress, LPWSTR lpwszDisplayName, BLOB *pblSymCaps,
  178. FILETIME ftSigningTime, DWORD dwFlags);
  179. ULONG GetHighestEncryptionStrength(void);
  180. HRESULT HrGetHighestSymcaps(LPBYTE * ppbSymcap, LPULONG cbSymcap);
  182. HRESULT ShowSecurityPopup(HWND hwnd, DWORD cmdID, POINT *pPoint, IMimeMessage *pMsg);
  183. void ShowDigitalIDs(HWND hWnd);
  184. BOOL CheckCDPinCert(LPMIMEMESSAGE pMsg);
  185. BOOL CheckCDPinCert(PCCERT_CONTEXT pcCertToTest);
  187. HRESULT HrGetLabelString(LPMIMEMESSAGE pMsg, LPWSTR *pwStr);
  188. HRESULT CheckSecReceipt(LPMIMEMESSAGE pMsg);
  189. HRESULT HrShowSecurityProperty(HWND hwnd, LPMIMEMESSAGE pMsg);
  190. HRESULT HandleSecReceipt(LPMIMEMESSAGE pMsg, IImnAccount * pAcct, HWND hWnd, TCHAR **ppszSubject, TCHAR **ppszFrom, FILETIME *pftSentTime, FILETIME *pftSigningTime);
  191. void CreateContentIdentifier(TCHAR *pchContentID, DWORD cchSize, LPMIMEMESSAGE pMsg);
  192. HRESULT _HrFindMyCertForAccount(HWND hwnd, PCCERT_CONTEXT * ppcCertContext, IImnAccount * pAccount, BOOL fEncrypt);
  193. HRESULT CheckDecodedForReceipt(LPMIMEMESSAGE pMsg, PSMIME_RECEIPT * ppSecReceipt);
  194. HRESULT HrGetInnerLayer(LPMIMEMESSAGE pMsg, HBODY *phBody);
  196. /////////////////////////////////////////////////////////////////////////////
  197. //
  198. // Predicate wrappers
  199. //
  201. inline BOOL IsSecure(DWORD dwMst)
  202. { return (MST_NONE != dwMst); }
  204. inline BOOL IsSecure(LPMIMEMESSAGE pMsg, const HBODY hBodyToCheck)
  205. { return (MST_NONE != DwGetSecurityOfMessage(pMsg, hBodyToCheck)); }
  207. inline BOOL IsSigned(LPMIMEMESSAGE pMsg, BOOL fIncludeDescendents)
  208. { return IsSigned(pMsg, HBODY_ROOT, fIncludeDescendents); }
  210. inline BOOL IsSigned(DWORD dwMST)
  211. { return (BOOL)(dwMST & MST_SIGN_MASK); }
  213. inline BOOL IsSignTrusted(SECSTATE *pSecState)
  214. { return (BOOL)((ATHSEC_TRUSTED == pSecState->user_validity) &&
  215. (MSV_OK == (pSecState->ro_msg_validity & ~MSV_ENCRYPT_MASK))); }
  217. inline BOOL IsEncrypted(LPMIMEMESSAGE pMsg, BOOL fIncludeDescendents)
  218. { return IsEncrypted(pMsg, HBODY_ROOT, fIncludeDescendents); }
  220. inline BOOL IsEncrypted(DWORD dwMST)
  221. { return (BOOL)(dwMST & MST_ENCRYPT_MASK); }
  223. inline BOOL IsEncryptionOK(SECSTATE *pSecState)
  224. { return (BOOL) (MSV_OK == ((MSV_MSG_MASK|MSV_ENCRYPT_MASK) & pSecState->ro_msg_validity));}
  226. /////////////////////////////////////////////////////////////////////////////
  227. //
  228. // Other wrappers
  229. //
  231. inline HRESULT CommonUI_ViewSigningCertificate(HWND hwnd, PCCERT_CONTEXT pCert, HCERTSTORE hcMsg)
  232. { return CommonUI_ViewSigningProperties(hwnd, pCert, hcMsg, 0); }
  234. inline HRESULT CommonUI_ViewSigningCertificateTrust(HWND hwnd, PCCERT_CONTEXT pCert, HCERTSTORE hcMsg)
  235. { return CommonUI_ViewSigningProperties(hwnd, pCert, hcMsg, 2); }
  237. #endif // include once