archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
3.2 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pki/activex/capicom/basicconstraints.cpp

581 lines
13 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  3. Microsoft Windows, Copyright (C) Microsoft Corporation, 2000
  5. File: BasicConstraints.cpp
  7. Content: Implementation of CBasicConstraints.
  9. History: 11-15-99 dsie created
  11. ------------------------------------------------------------------------------*/
  13. #include "StdAfx.h"
  14. #include "CAPICOM.h"
  15. #include "BasicConstraints.h"
  17. #include "Common.h"
  19. ////////////////////////////////////////////////////////////////////////////////
  20. //
  21. // Exported functions.
  22. //
  24. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  26. Function : CreateBasicConstraintsObject
  28. Synopsis : Create a IBasicConstraints object and populate the porperties with
  29. data from the key usage extension of the specified certificate.
  31. Parameter: PCCERT_CONTEXT pCertContext - Pointer to CERT_CONTEXT.
  33. IBasicConstraints ** ppIBasicConstraints - Pointer to pointer
  34. IBasicConstraints
  35. object.
  37. Remark :
  39. ------------------------------------------------------------------------------*/
  41. HRESULT CreateBasicConstraintsObject (PCCERT_CONTEXT pCertContext,
  42. IBasicConstraints ** ppIBasicConstraints)
  43. {
  44. HRESULT hr = S_OK;
  45. CComObject<CBasicConstraints> * pCBasicConstraints = NULL;
  47. DebugTrace("Entering CreateBasicConstraintsObject().\n");
  49. //
  50. // Sanity check.
  51. //
  52. ATLASSERT(pCertContext);
  53. ATLASSERT(ppIBasicConstraints);
  55. try
  56. {
  57. //
  58. // Create the object. Note that the ref count will still be 0
  59. // after the object is created.
  60. //
  61. if (FAILED(hr = CComObject<CBasicConstraints>::CreateInstance(&pCBasicConstraints)))
  62. {
  63. DebugTrace("Error [%#x]: CComObject<CBasicConstraints>::CreateInstance() failed.\n", hr);
  64. goto ErrorExit;
  65. }
  67. //
  68. // Initialize object.
  69. //
  70. if (FAILED(hr = pCBasicConstraints->Init(pCertContext)))
  71. {
  72. DebugTrace("Error [%#x]: pCBasicConstraints::Init() failed.\n", hr);
  73. goto ErrorExit;
  74. }
  76. //
  77. // Return interface pointer to caller.
  78. //
  79. if (FAILED(hr = pCBasicConstraints->QueryInterface(ppIBasicConstraints)))
  80. {
  81. DebugTrace("Error [%#x]: pCBasicConstraints->QueryInterface() failed.\n", hr);
  82. goto ErrorExit;
  83. }
  84. }
  86. catch(...)
  87. {
  88. hr = E_POINTER;
  90. DebugTrace("Exception: invalid parameter.\n");
  91. goto ErrorExit;
  92. }
  94. CommonExit:
  96. DebugTrace("Entering CreateBasicConstraintsObject().\n");
  98. return hr;
  100. ErrorExit:
  101. //
  102. // Sanity check.
  103. //
  104. ATLASSERT(FAILED(hr));
  106. //
  107. // Free resource.
  108. //
  109. if (pCBasicConstraints)
  110. {
  111. delete pCBasicConstraints;
  112. }
  114. goto CommonExit;
  115. }
  117. ////////////////////////////////////////////////////////////////////////////////
  118. //
  119. // CBasicConstraints
  120. //
  122. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  124. Function : CBasicConstraints::get_IsPresent
  126. Synopsis : Check to see if the basic constraints extension is present.
  128. Parameter: VARIANT_BOOL * pVal - Pointer to VARIANT_BOOL to receive result.
  130. Remark :
  132. ------------------------------------------------------------------------------*/
  134. STDMETHODIMP CBasicConstraints::get_IsPresent (VARIANT_BOOL * pVal)
  135. {
  136. HRESULT hr = S_OK;
  138. DebugTrace("Entering CBasicConstraints::get_IsPresent().\n");
  140. try
  141. {
  142. //
  143. // Lock access to this object.
  144. //
  145. m_Lock.Lock();
  147. //
  148. // Check parameters.
  149. //
  150. if (NULL == pVal)
  151. {
  152. hr = E_INVALIDARG;
  154. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  155. goto ErrorExit;
  156. }
  158. //
  159. // Return result.
  160. //
  161. *pVal = m_bIsPresent;
  162. }
  164. catch(...)
  165. {
  166. hr = E_POINTER;
  168. DebugTrace("Exception: invalid parameter.\n");
  169. goto ErrorExit;
  170. }
  172. UnlockExit:
  173. //
  174. // Unlock access to this object.
  175. //
  176. m_Lock.Unlock();
  178. DebugTrace("Leaving CBasicConstraints::get_IsPresent().\n");
  180. return hr;
  182. ErrorExit:
  183. //
  184. // Sanity check.
  185. //
  186. ATLASSERT(FAILED(hr));
  188. ReportError(hr);
  190. goto UnlockExit;
  191. }
  193. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  195. Function : CBasicConstraints::get_IsCritical
  197. Synopsis : Check to see if the basic constraints extension is marked critical.
  199. Parameter: VARIANT_BOOL * pVal - Pointer to VARIANT_BOOL to receive result.
  201. Remark :
  203. ------------------------------------------------------------------------------*/
  205. STDMETHODIMP CBasicConstraints::get_IsCritical (VARIANT_BOOL * pVal)
  206. {
  207. HRESULT hr = S_OK;
  209. DebugTrace("Entering CBasicConstraints::get_IsCritical().\n");
  211. try
  212. {
  213. //
  214. // Lock access to this object.
  215. //
  216. m_Lock.Lock();
  218. //
  219. // Check parameters.
  220. //
  221. if (NULL == pVal)
  222. {
  223. hr = E_INVALIDARG;
  225. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  226. goto ErrorExit;
  227. }
  229. //
  230. // Return result.
  231. //
  232. *pVal = m_bIsCritical;
  233. }
  235. catch(...)
  236. {
  237. hr = E_POINTER;
  239. DebugTrace("Exception: invalid parameter.\n");
  240. goto ErrorExit;
  241. }
  243. UnlockExit:
  244. //
  245. // Unlock access to this object.
  246. //
  247. m_Lock.Unlock();
  249. DebugTrace("Leaving CBasicConstraints::get_IsCritical().\n");
  251. return hr;
  253. ErrorExit:
  254. //
  255. // Sanity check.
  256. //
  257. ATLASSERT(FAILED(hr));
  259. ReportError(hr);
  261. goto UnlockExit;
  262. }
  264. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  266. Function : CBasicConstraints::get_IsCertificateAuthority
  268. Synopsis : Check to see if the basic constraints extension contains the CA
  269. value.
  271. Parameter: VARIANT_BOOL * pVal - Pointer to VARIANT_BOOL to receive result.
  273. Remark :
  275. ------------------------------------------------------------------------------*/
  277. STDMETHODIMP CBasicConstraints::get_IsCertificateAuthority (VARIANT_BOOL * pVal)
  278. {
  279. HRESULT hr = S_OK;
  281. DebugTrace("Entering CBasicConstraints::get_IsCertificateAuthority().\n");
  283. try
  284. {
  285. //
  286. // Lock access to this object.
  287. //
  288. m_Lock.Lock();
  290. //
  291. // Check parameters.
  292. //
  293. if (NULL == pVal)
  294. {
  295. hr = E_INVALIDARG;
  297. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  298. goto ErrorExit;
  299. }
  301. //
  302. // Return result.
  303. //
  304. *pVal = m_bIsCertificateAuthority;
  305. }
  307. catch(...)
  308. {
  309. hr = E_POINTER;
  311. DebugTrace("Exception: invalid parameter.\n");
  312. goto ErrorExit;
  313. }
  315. UnlockExit:
  316. //
  317. // Unlock access to this object.
  318. //
  319. m_Lock.Unlock();
  321. DebugTrace("Leaving CBasicConstraints::get_IsCertificateAuthority().\n");
  323. return hr;
  325. ErrorExit:
  326. //
  327. // Sanity check.
  328. //
  329. ATLASSERT(FAILED(hr));
  331. ReportError(hr);
  333. goto UnlockExit;
  334. }
  336. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  338. Function : CBasicConstraints::get_IsPathLenConstraintPresent
  340. Synopsis : Check to see if the basic constraints extension contains path
  341. length constraints.
  343. Parameter: VARIANT_BOOL * pVal - Pointer to VARIANT_BOOL to receive result.
  345. Remark :
  347. ------------------------------------------------------------------------------*/
  349. STDMETHODIMP CBasicConstraints::get_IsPathLenConstraintPresent (VARIANT_BOOL * pVal)
  350. {
  351. HRESULT hr = S_OK;
  353. DebugTrace("Entering CBasicConstraints::get_IsPathLenConstraintPresent().\n");
  355. try
  356. {
  357. //
  358. // Lock access to this object.
  359. //
  360. m_Lock.Lock();
  362. //
  363. // Check parameters.
  364. //
  365. if (NULL == pVal)
  366. {
  367. hr = E_INVALIDARG;
  369. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  370. goto ErrorExit;
  371. }
  373. //
  374. // Return result.
  375. //
  376. *pVal = m_bIsPathLenConstraintPresent;
  377. }
  379. catch(...)
  380. {
  381. hr = E_POINTER;
  383. DebugTrace("Exception: invalid parameter.\n");
  384. goto ErrorExit;
  385. }
  387. UnlockExit:
  388. //
  389. // Unlock access to this object.
  390. //
  391. m_Lock.Unlock();
  393. DebugTrace("Leaving CBasicConstraints::get_IsPathLenConstraintPresent().\n");
  395. return hr;
  397. ErrorExit:
  398. //
  399. // Sanity check.
  400. //
  401. ATLASSERT(FAILED(hr));
  403. ReportError(hr);
  405. goto UnlockExit;
  406. }
  408. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  410. Function : CBasicConstraints::get_PathLenConstraint
  412. Synopsis : Return the path length constraints value.
  414. Parameter: long * pVal - Pointer to long to receive value.
  416. Remark :
  418. ------------------------------------------------------------------------------*/
  420. STDMETHODIMP CBasicConstraints::get_PathLenConstraint (long * pVal)
  421. {
  422. HRESULT hr = S_OK;
  424. DebugTrace("Entering CBasicConstraints::get_PathLenConstraint().\n");
  426. try
  427. {
  428. //
  429. // Lock access to this object.
  430. //
  431. m_Lock.Lock();
  433. //
  434. // Check parameters.
  435. //
  436. if (NULL == pVal)
  437. {
  438. hr = E_INVALIDARG;
  440. DebugTrace("Error [%#x]: Parameter pVal is NULL.\n", hr);
  441. goto ErrorExit;
  442. }
  444. //
  445. // Return result.
  446. //
  447. *pVal = m_lPathLenConstraint;
  448. }
  450. catch(...)
  451. {
  452. hr = E_POINTER;
  454. DebugTrace("Exception: invalid parameter.\n");
  455. goto ErrorExit;
  456. }
  458. UnlockExit:
  459. //
  460. // Unlock access to this object.
  461. //
  462. m_Lock.Unlock();
  464. DebugTrace("Leaving CBasicConstraints::get_PathLenConstraint().\n");
  466. return hr;
  468. ErrorExit:
  469. //
  470. // Sanity check.
  471. //
  472. ATLASSERT(FAILED(hr));
  474. ReportError(hr);
  476. goto UnlockExit;
  477. }
  479. ////////////////////////////////////////////////////////////////////////////////
  480. //
  481. // Private methods.
  482. //
  484. /*++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  486. Function : CBasicConstraints::Init
  488. Synopsis : Initialize the object.
  490. Parameter: PCCERT_CONTEXT pCertContext - Pointer to CERT_CONTEXT.
  492. Remark : This method is not part of the COM interface (it is a normal C++
  493. member function). We need it to initialize the object created
  494. internally by us with CERT_CONTEXT.
  496. Since it is only a normal C++ member function, this function can
  497. only be called from a C++ class pointer, not an interface pointer.
  499. ------------------------------------------------------------------------------*/
  501. STDMETHODIMP CBasicConstraints::Init (PCCERT_CONTEXT pCertContext)
  502. {
  503. HRESULT hr = S_OK;
  504. CRYPT_DATA_BLOB DataBlob = {0, NULL};
  505. PCERT_BASIC_CONSTRAINTS2_INFO pInfo = NULL;
  506. PCERT_EXTENSION pBasicConstraints = NULL;
  508. DebugTrace("Entering CBasicConstraints::Init().\n");
  510. //
  511. // Sanity check.
  512. //
  513. ATLASSERT(pCertContext);
  515. //
  516. // Find the basic constraints extension.
  517. //
  518. if (pBasicConstraints = ::CertFindExtension(szOID_BASIC_CONSTRAINTS2,
  519. pCertContext->pCertInfo->cExtension,
  520. pCertContext->pCertInfo->rgExtension))
  521. {
  522. //
  523. // Decode the basic constraints extension.
  524. //
  525. if (FAILED(hr = ::DecodeObject(X509_BASIC_CONSTRAINTS2,
  526. pBasicConstraints->Value.pbData,
  527. pBasicConstraints->Value.cbData,
  528. &DataBlob)))
  529. {
  530. DebugTrace("Error [%#x]: DecodeObject() failed.\n", hr);
  531. goto ErrorExit;
  532. }
  534. //
  535. // Point to CERT_BASIC_CONSTRAINTS2_INFO.
  536. //
  537. pInfo = (PCERT_BASIC_CONSTRAINTS2_INFO) DataBlob.pbData;
  539. //
  540. // Set values.
  541. //
  542. m_bIsPresent = VARIANT_TRUE;
  544. if (pBasicConstraints->fCritical)
  545. {
  546. m_bIsCritical = VARIANT_TRUE;
  547. }
  549. if (pInfo->fCA)
  550. {
  551. m_bIsCertificateAuthority = VARIANT_TRUE;
  552. }
  554. if (pInfo->fPathLenConstraint)
  555. {
  556. m_bIsPathLenConstraintPresent = VARIANT_TRUE;
  557. m_lPathLenConstraint = (long) pInfo->dwPathLenConstraint;
  558. }
  559. }
  561. CommonExit:
  562. //
  563. // Free resources.
  564. //
  565. if (DataBlob.pbData)
  566. {
  567. ::CoTaskMemFree((LPVOID) DataBlob.pbData);
  568. }
  570. DebugTrace("Leaving CBasicConstraints::Init().\n");
  572. return hr;
  574. ErrorExit:
  575. //
  576. // Sanity check.
  577. //
  578. ATLASSERT(FAILED(hr));
  580. goto CommonExit;
  581. }