|
|
/*++
Copyright (c) 1996 Microsoft Corporation
Module Name:
certcach.cxx
Abstract:
Contains class implementation for certificate cache object. This object will hold various Certificate entries.
Contents: SECURITY_CACHE_LIST_ENTRY::SECURITY_CACHE_LIST_ENTRY SECURITY_CACHE_LIST_ENTRY::~SECURITY_CACHE_LIST_ENTRY SECURITY_CACHE_LIST_ENTRY::AddRef SECURITY_CACHE_LIST_ENTRY::Release SECURITY_CACHE_LIST_ENTRY::Clear SECURITY_CACHE_LIST::Find SECURITY_CACHE_LIST::Add SECURITY_CACHE_LIST::ClearList SECURITY_CACHE_LIST::Initialize SECURITY_CACHE_LIST::Terminate
TODO: Add Cert validation. What if Cert is given but different?
Author:
Arthur L Bierer (arthurbi) 20-Apr-1996
Revision History:
20-Apr-1996 arthurbi Created
--*/#include <wininetp.h>
//
//
// List of encryption packages: PCT, SSL, etc
//
//
// BUGBUG [arthurbi] The SSL and PCT package names
// are hard coded into the stucture below. We need
// to be more flexible in case someone write a FOO security
// package.
//
// BUGBUG: Don't change the order of the packages below. some old SSL2 sites deny the UNISP
// provider, and if we walk down the list to PCT1 or SSL3, things hang.
const SEC_PROVIDER g_cSecProviders[MAX_SEC_PROVIDERS] ={ UNISP_NAME, INVALID_CRED_VALUE , ENC_CAPS_SSL | ENC_CAPS_SCHANNEL_CREDS, FALSE, SP_PROT_CLIENTS, NULL, UNISP_NAME, INVALID_CRED_VALUE , ENC_CAPS_SSL | ENC_CAPS_SCHANNEL_CREDS, FALSE, SP_PROT_SSL2_CLIENT, NULL,// PCT1SP_NAME, INVALID_CRED_VALUE , ENC_CAPS_PCT| ENC_CAPS_SCHANNEL_CREDS, FALSE, SP_PROT_PCT1_CLIENT, NULL,
// SSL3SP_NAME, INVALID_CRED_VALUE , ENC_CAPS_SSL| ENC_CAPS_SCHANNEL_CREDS, FALSE, SP_PROT_SSL3_CLIENT, NULL,
NULL, INVALID_CRED_VALUE , FALSE, FALSE, 0};
//
// private manifests
//
#define MAX_CERT_CACHE_CERTS 16
//
// private types
//
//
// SECURITY_CACHE_LIST_ENTRY member functions
//
�SECURITY_CACHE_LIST_ENTRY::SECURITY_CACHE_LIST_ENTRY( IN BOOL fNoRevert, IN LPSTR lpszHostName, IN INTERNET_PORT ServerPort )
/*++
Routine Description:
SECURITY_CACHE_LIST_ENTRY constructor. Create object; don't add it to list
Arguments:
fNoRevert - Revert any impersonation on SSL handling?
lpszHostName - name of host for which this cache entry created
Return Value:
None.
--*/
{ DEBUG_ENTER((DBG_OBJECTS, None, "SECURITY_CACHE_LIST_ENTRY::SECURITY_CACHE_LIST_ENTRY", "%q", lpszHostName ));
#if INET_DEBUG
_List.Flink = _List.Blink = NULL;#endif
_cRef = 1; _fInCache = FALSE; _ServerName = lpszHostName; _ServerPort = ServerPort; ZeroMemory(&_CertInfo, sizeof(_CertInfo)); _dwSecurityFlags = 0; _dwStatusFlags = 0; _pCertContextArray = NULL; _fNoRevert = fNoRevert;
#if INET_DEBUG
m_Signature = 0x454c4353; // 'SCLE'
#endif
DEBUG_LEAVE(0);}
�SECURITY_CACHE_LIST_ENTRY::~SECURITY_CACHE_LIST_ENTRY()
/*++
Routine Description:
SECURITY_CACHE_LIST_ENTRY destructor.
Arguments:
None.
Return Value:
None.
--*/
{ DEBUG_ENTER((DBG_OBJECTS, None, "~SECURITY_CACHE_LIST_ENTRY", "{%#x [%q]}", this, _ServerName.StringAddress() ));
INET_ASSERT((_List.Flink == NULL) && (_List.Blink == NULL));
Clear();
DEBUG_LEAVE(0);}
�LONGSECURITY_CACHE_LIST_ENTRY::AddRef( VOID )
/*++
Routine Description:
Increment reference count of SECURITY_CACHE_LIST_ENTRY
Arguments:
None.
Return Value:
LONG - reference count after increment
--*/
{ DEBUG_ENTER((DBG_OBJECTS, Int, "SECURITY_CACHE_LIST_ENTRY::AddRef", "{%#x [%q, %d]}", this, _ServerName.StringAddress(), _cRef ));
InterlockedIncrement(&_cRef);
DEBUG_LEAVE(_cRef);
return _cRef;}
�LONGSECURITY_CACHE_LIST_ENTRY::Release( VOID )
/*++
Routine Description:
Decrement reference count and destroy object if (<=) zero
Arguments:
None.
Return Value:
LONG - reference count after decrement
--*/
{ DEBUG_ENTER((DBG_OBJECTS, Int, "SECURITY_CACHE_LIST_ENTRY::Release", "{%q [%d]}", _ServerName.StringAddress(), _cRef ));
LONG cRet;
if (0 >= (cRet = InterlockedDecrement(&_cRef))) { delete this; }
DEBUG_LEAVE(cRet);
return cRet;}
�VOIDSECURITY_CACHE_LIST_ENTRY::Clear()
/*++
Routine Description:
Clear out SECURITY_CACHE_LIST_ENTRY
Arguments:
Clear -
Return Value:
None.
--*/
{ if (_CertInfo.pCertificate != NULL) { SAFE_WRAP_REVERT_USER_VOID((*g_pfnCertFreeCertificateContext), _fNoRevert, (_CertInfo.pCertificate)); _CertInfo.pCertificate = NULL; }
ZeroMemory(&_CertInfo, sizeof(_CertInfo)); _CertInfo.dwSize = sizeof(_CertInfo);
_dwSecurityFlags = 0; _dwStatusFlags = 0; _ServerName = NULL; if( _pCertContextArray ) { delete _pCertContextArray; _pCertContextArray = NULL; }}
//
// SECURITY_CACHE_LIST member functions
//
�VOIDSECURITY_CACHE_LIST::ClearList( VOID )
/*++
Routine Description:
description-of-function.
Arguments:
None.
Return Value:
None.
--*/
{ DEBUG_ENTER((DBG_OBJECTS, None, "SECURITY_CACHE_LIST::ClearList", NULL ));
if (!LockSerializedList(&_List)) { DEBUG_PRINT(OBJECTS, ERROR, ("Failed to obtain lock -- SECURITY_CACHE_LIST potentially leaked\n" )); goto quit; }
while (!IsSerializedListEmpty(&_List)) {
SECURITY_CACHE_LIST_ENTRY * CacheEntry;
//
// remove the PROXY_SERVER_LIST_ENTRY at the head of the serialized
// list
//
LPVOID entry = SlDequeueHead(&_List);
//
// entry should not be NULL - IsSerializedListEmpty() told us we
// could expect something
//
INET_ASSERT(entry != NULL);
//
// get the address of the object (should be the same as entry) and
// delete it
//
CacheEntry = CONTAINING_RECORD(entry, SECURITY_CACHE_LIST_ENTRY, _List);
DEBUG_PRINT(OBJECTS, INFO, ("releasing %q (%d)\n", CacheEntry->_ServerName.StringAddress(), CacheEntry->_cRef ));
CacheEntry->Release(); }
UnlockSerializedList(&_List);
quit: DEBUG_LEAVE(0);}
�DWORDSECURITY_CACHE_LIST::Add( IN SECURITY_CACHE_LIST_ENTRY * entry )
/*++
Routine Description:
Adds a CertInfo Structure to the list front of the list.
Arguments:
lpszHost - Hostname to add.
Return Value:
DWORD Success - ERROR_SUCCESS
Failure - ERROR_NOT_ENOUGH_MEMORY
--*/
{ DEBUG_ENTER((DBG_HTTP, Dword, "SECURITY_CACHE_LIST::Add", "%#x [%q, %d]", entry, entry ? entry->_ServerName.StringAddress() : "", entry ? entry->_cRef : 0 ));
DWORD error = ERROR_SUCCESS;
INET_ASSERT(entry != NULL);
if (entry != NULL) { if (LockSerializedList(&_List)) {
//
// If we've grown too much, nuke the oldest one.
//
if (ElementsOnSerializedList(&_List) >= MAX_CERT_CACHE_CERTS) {
SECURITY_CACHE_LIST_ENTRY *pOld; LPVOID old_entry = SlDequeueTail(&_List);
INET_ASSERT(old_entry != NULL);
pOld = CONTAINING_RECORD(old_entry, SECURITY_CACHE_LIST_ENTRY, _List);
//
// entry should not be NULL - IsSerializedListEmpty() told us we
// could expect something
//
pOld->_fInCache = FALSE;
//
// Clean Our old object, and reinstatiate with a new name.
//
pOld->Release(); } if (InsertAtHeadOfSerializedList(&_List, &entry->_List)) { entry->AddRef(); entry->_fInCache = TRUE; } UnlockSerializedList(&_List); } else error = ERROR_NOT_ENOUGH_MEMORY; }
DEBUG_LEAVE(error);
return error;}
�SECURITY_CACHE_LIST_ENTRY *SECURITY_CACHE_LIST::Find( IN LPSTR lpszHost, IN INTERNET_PORT HostPort )
/*++
Routine Description:
Searches the linked list for the Cert, and returns the found entry, or NULL if not found.
Arguments:
lpszHost - Hostname to search on.
Return Value:
CERT_CACHE_LIST_ENTRY * Success - Pointer to found entry.
Failure - NULL, not found.
--*/
{ DEBUG_ENTER((DBG_HTTP, Pointer, "SECURITY_CACHE_LIST::Find", "%q", lpszHost ));
SECURITY_CACHE_LIST_ENTRY * info = NULL;
//
// BUGBUG need to validate against Server Certifcate on every
// connection, this Find only validates by Hostname.
// What about DNS spoofing? Won't we be hosed?
//
//
// TODO if found, need to push to front of list.
//
if (LockSerializedList(&_List)) { for (PLIST_ENTRY entry = HeadOfSerializedList(&_List); entry != (PLIST_ENTRY)SlSelf(&_List); entry = entry->Flink) { info = CONTAINING_RECORD(entry, SECURITY_CACHE_LIST_ENTRY, _List);
//
// check to see if they match.
//
if ((info->_ServerName.Stricmp(lpszHost) == 0) && info->_ServerPort == HostPort) { info->AddRef(); break; // match.
} info = NULL; } UnlockSerializedList(&_List); }
DEBUG_LEAVE(info);
return info;}
BOOL SECURITY_CACHE_LIST::Initialize( VOID ){ if (!InitializeSerializedList(&_List)) return FALSE;
#if INET_DEBUG
m_Signature = 0x4c436553; // "SeCL"
#endif
// Fill in default starting values, will enumerate and acquire handles
// during the first SSL handshake for the session.
CopyMemory((LPVOID)_SecProviders, (CONST VOID *)g_cSecProviders, sizeof(SEC_PROVIDER) * MAX_SEC_PROVIDERS);
_dwEncFlags = 0; _dwSecureProtocols = DEFAULT_SECURE_PROTOCOLS;
return TRUE;}
VOID SECURITY_CACHE_LIST::Terminate( VOID ){
DEBUG_ENTER((DBG_OBJECTS, None, "SECURITY_CACHE_LIST::Terminate", "{%#x}", this ));
ClearList();
//
// free all security pkg credential handles
//
for (DWORD i = 0; _SecProviders[i].pszName != NULL ; i++) { if (_SecProviders[i].fEnabled) { if (_SecProviders[i].pCertCtxt == NULL && !IsCredClear(_SecProviders[i].hCreds)) { // Beta1 Hack. Because of some circular dependency between dlls
// both crypt32 and schannel's PROCESS_DETACH gets called before wininet.
// This is catastrophic if we have a cert context attached to the credentials
// handle. In this case we will just leak the handle since the process is dying
// anyway. We really need to fix this.
WRAP_REVERT_USER_VOID(g_FreeCredentialsHandle, IsImpersonationEnabled(), (&_SecProviders[i].hCreds)); } }#if 0 // See comments above.
if (_SecProviders[i].pCertCtxt != NULL) { (*g_pfnCertFreeCertificateContext)(_SecProviders[i].pCertCtxt); _SecProviders[i].pCertCtxt = NULL; }#endif
}
TerminateSerializedList(&_List);
DEBUG_LEAVE(0);}
|
