archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/cryptoapi/test/capi20/tstore5/tstore5.cpp

678 lines
25 KiB
Raw Normal View History

commiting as it is
4 years ago
  2. //+-------------------------------------------------------------------------
  3. //
  4. // Microsoft Windows
  5. //
  6. // Copyright (C) Microsoft Corporation, 1995 - 1996
  7. //
  8. // File: tstore5.cpp
  9. //
  10. // Contents: Test certificate store collection and context link functions
  11. //
  12. // See Usage() for a list of test options.
  13. //
  14. //
  15. // Functions: main
  16. //
  17. // History: 06-Sep-97 philh created
  18. //--------------------------------------------------------------------------
  21. #include <windows.h>
  22. #include <assert.h>
  23. #include "wincrypt.h"
  24. #include "certtest.h"
  26. #include <stdlib.h>
  27. #include <stdio.h>
  28. #include <string.h>
  29. #include <memory.h>
  30. #include <time.h>
  33. static void Usage(void)
  34. {
  35. printf("Usage: tstore5 [options] <StoreName1> <StoreName2>\n");
  36. printf("Options are:\n");
  37. printf(" -h - This message\n");
  38. printf(" -C - Collection tests (default)\n");
  39. printf(" -L - Context Link tests\n");
  40. printf(" -C -L - Context Links enumerated in Collection\n");
  41. printf(" -R - Replace contexts that exist\n");
  42. printf(" -A - Always add a new context\n");
  43. printf(" -P - Set property\n");
  44. printf(" -v - Verbose\n");
  45. printf(" -b - Brief\n");
  46. printf(" -f<number> - Open System Store Flags\n");
  47. printf("\n");
  48. printf("If <StoreName> has embedded \".\", File. Otherwise System Store\n");
  49. }
  52. int _cdecl main(int argc, char * argv[])
  53. {
  54. int status;
  55. DWORD i;
  56. DWORD dwDisplayFlags = 0;
  57. DWORD dwOpenFlags = 0;
  58. DWORD dwAddDisposition = CERT_STORE_ADD_USE_EXISTING;
  59. BOOL fVerbose = FALSE;
  60. BOOL fProperty = FALSE;
  62. #define COLLECTION_TEST_FLAG 0x1
  63. #define LINK_TEST_FLAG 0x2
  64. DWORD dwTestFlags = 0;
  66. #define MAX_STORE_CNT 32
  67. DWORD dwStoreCnt = 0;
  68. LPCSTR rgpszStore[MAX_STORE_CNT];
  69. HCERTSTORE rghStore[MAX_STORE_CNT];
  70. memset(rghStore, 0, sizeof(rghStore));
  71. HCERTSTORE hCollectionStore = NULL;
  72. HCERTSTORE hLinkStore = NULL;
  74. PCCERT_CONTEXT pSiblingCert = NULL;
  75. PCCRL_CONTEXT pSiblingCrl = NULL;
  76. PCCTL_CONTEXT pSiblingCtl = NULL;
  78. PCCERT_CONTEXT pLinkCert = NULL;
  79. PCCRL_CONTEXT pLinkCrl = NULL;
  80. PCCTL_CONTEXT pLinkCtl = NULL;
  82. DWORD dwCertAddCnt = 0;
  83. DWORD dwCrlAddCnt = 0;
  84. DWORD dwCtlAddCnt = 0;
  86. while (--argc>0) {
  87. if (**++argv == '-')
  88. {
  89. switch(argv[0][1])
  90. {
  92. case 'C':
  93. dwTestFlags |= COLLECTION_TEST_FLAG;
  94. break;
  95. case 'L':
  96. dwTestFlags |= LINK_TEST_FLAG;
  97. break;
  98. case 'v':
  99. fVerbose = TRUE;
  100. dwDisplayFlags = DISPLAY_VERBOSE_FLAG;
  101. break;
  102. case 'b':
  103. dwDisplayFlags = DISPLAY_BRIEF_FLAG;
  104. break;
  105. case 'f':
  106. dwOpenFlags = strtoul(argv[0]+2, NULL, 0);
  107. break;
  108. case 'R':
  109. dwAddDisposition = CERT_STORE_ADD_REPLACE_EXISTING;
  110. break;
  111. case 'A':
  112. dwAddDisposition = CERT_STORE_ADD_ALWAYS;
  113. break;
  114. case 'P':
  115. fProperty = TRUE;
  116. break;
  118. case 'h':
  119. default:
  120. goto BadUsage;
  121. }
  122. } else {
  123. if (MAX_STORE_CNT <= dwStoreCnt) {
  124. printf("Too many store names starting with:: %s\n", argv[0]);
  125. goto BadUsage;
  126. }
  127. rgpszStore[dwStoreCnt++] = argv[0];
  128. }
  129. }
  132. printf("command line: %s\n", GetCommandLine());
  134. if (0 == dwStoreCnt) {
  135. printf("Missing store names\n");
  136. goto BadUsage;
  137. }
  139. // Attempt to open the store names
  140. for (i = 0; i < dwStoreCnt; i++) {
  141. DWORD dwFlags;
  142. BOOL fSystemStore;
  143. LPCSTR psz;
  144. char ch;
  146. // Check if store name has an embedded ".".
  147. fSystemStore = TRUE;
  148. psz = rgpszStore[i];
  149. while (ch = *psz++) {
  150. if ('.' == ch) {
  151. fSystemStore = FALSE;
  152. break;
  153. }
  154. }
  157. if (fSystemStore &&
  158. 0 == (dwOpenFlags & CERT_SYSTEM_STORE_LOCATION_MASK))
  159. dwFlags = dwOpenFlags | CERT_SYSTEM_STORE_CURRENT_USER;
  160. else
  161. dwFlags = dwOpenFlags;
  163. rghStore[i] = OpenSystemStoreOrFile(fSystemStore, rgpszStore[i],
  164. dwOpenFlags);
  165. }
  167. if (0 == dwTestFlags)
  168. dwTestFlags = COLLECTION_TEST_FLAG;
  170. if (dwTestFlags & COLLECTION_TEST_FLAG) {
  171. // Open collection store
  172. hCollectionStore = CertOpenStore(
  173. CERT_STORE_PROV_COLLECTION,
  174. 0, // dwEncodingType
  175. 0, // hCryptProv
  176. 0, // dwFlags
  177. NULL // pvPara
  178. );
  179. if (NULL == hCollectionStore) {
  180. PrintLastError("CertOpenStore(COLLECTION)");
  181. goto ErrorReturn;
  182. }
  183. }
  185. if (dwTestFlags & LINK_TEST_FLAG) {
  186. HCERTSTORE hParentStore;
  188. // Open memory store to hold the context links
  189. hLinkStore = CertOpenStore(
  190. CERT_STORE_PROV_MEMORY,
  191. 0, // dwEncodingType
  192. 0, // hCryptProv
  193. 0, // dwFlags
  194. NULL // pvPara
  195. );
  196. if (NULL == hLinkStore) {
  197. PrintLastError("CertOpenStore(MEMORY)");
  198. goto ErrorReturn;
  199. }
  201. if (dwTestFlags & COLLECTION_TEST_FLAG) {
  202. if (!CertAddStoreToCollection(
  203. hCollectionStore,
  204. hLinkStore,
  205. CERT_PHYSICAL_STORE_ADD_ENABLE_FLAG,
  206. 0 // dwPriority
  207. )) {
  208. PrintLastError("CertAddStoreToCollection");
  209. goto ErrorReturn;
  210. }
  211. hParentStore = hCollectionStore;
  212. } else
  213. hParentStore = hLinkStore;
  215. // Loop through stores and add the certificate, CRL and CTL contexts
  216. // as links
  217. for (i = 0; i < dwStoreCnt; i++) {
  218. HCERTSTORE hStore;
  219. PCCERT_CONTEXT pCert;
  220. PCCRL_CONTEXT pCrl;
  221. PCCTL_CONTEXT pCtl;
  222. DWORD dwCrlFlags;
  224. if (NULL == (hStore = rghStore[i]))
  225. continue;
  227. pCert = NULL;
  228. while (pCert = CertEnumCertificatesInStore(hStore, pCert)) {
  229. if (!CertAddCertificateLinkToStore(
  230. hLinkStore,
  231. pCert,
  232. dwAddDisposition,
  233. (0 == dwCertAddCnt) ? &pLinkCert : NULL
  234. )) {
  235. PrintLastError("CertAddCertificateLinkToStore");
  236. goto ErrorReturn;
  237. }
  238. if (0 == dwCertAddCnt) {
  239. if (NULL == pLinkCert) {
  240. printf("failed => didn't return cert link\n");
  241. goto ErrorReturn;
  242. }
  243. pSiblingCert = CertDuplicateCertificateContext(pCert);
  244. }
  245. dwCertAddCnt++;
  247. if (CertAddCertificateLinkToStore(
  248. hLinkStore,
  249. pCert,
  250. CERT_STORE_ADD_NEW,
  251. NULL // ppStoreCert
  252. ))
  253. printf("failed => expected CertAddCertificateLinkToStore(ADD_NEW) to fail\n");
  254. else if (CRYPT_E_EXISTS != GetLastError()) {
  255. PrintLastError("CertAddCertificateLinkToStore(ADD_NEW)");
  256. printf("failed => expected CRYPT_E_EXISTS\n");
  258. }
  259. }
  261. dwCrlFlags = 0;
  262. pCrl = NULL;
  263. while (pCrl = CertGetCRLFromStore(hStore, NULL, pCrl,
  264. &dwCrlFlags)) {
  265. if (!CertAddCRLLinkToStore(
  266. hLinkStore,
  267. pCrl,
  268. dwAddDisposition,
  269. (0 == dwCrlAddCnt) ? &pLinkCrl : NULL
  270. )) {
  271. PrintLastError("CertAddCRLLinkToStore");
  272. goto ErrorReturn;
  273. }
  274. if (0 == dwCrlAddCnt) {
  275. if (NULL == pLinkCrl) {
  276. printf("failed => didn't return crl link\n");
  277. goto ErrorReturn;
  278. }
  279. pSiblingCrl = CertDuplicateCRLContext(pCrl);
  280. }
  281. dwCrlAddCnt++;
  283. if (CertAddCRLLinkToStore(
  284. hLinkStore,
  285. pCrl,
  286. CERT_STORE_ADD_NEW,
  287. NULL // ppStoreCrl
  288. ))
  289. printf("failed => expected CertAddCRLLinkToStore(ADD_NEW) to fail\n");
  290. else if (CRYPT_E_EXISTS != GetLastError()) {
  291. PrintLastError("CertAddCRLLinkToStore(ADD_NEW)");
  292. printf("failed => expected CRYPT_E_EXISTS\n");
  294. }
  295. }
  297. pCtl = NULL;
  298. while (pCtl = CertEnumCTLsInStore(hStore, pCtl)) {
  299. if (!CertAddCTLLinkToStore(
  300. hLinkStore,
  301. pCtl,
  302. dwAddDisposition,
  303. (0 == dwCtlAddCnt) ? &pLinkCtl : NULL
  304. )) {
  305. PrintLastError("CertAddCTLLinkToStore");
  306. goto ErrorReturn;
  307. }
  308. if (0 == dwCtlAddCnt) {
  309. if (NULL == pLinkCtl) {
  310. printf("failed => didn't return crl link\n");
  311. goto ErrorReturn;
  312. }
  313. pSiblingCtl = CertDuplicateCTLContext(pCtl);
  314. }
  315. dwCtlAddCnt++;
  317. if (CertAddCTLLinkToStore(
  318. hLinkStore,
  319. pCtl,
  320. CERT_STORE_ADD_NEW,
  321. NULL // ppStoreCtl
  322. ))
  323. printf("failed => expected CertAddCTLLinkToStore(ADD_NEW) to fail\n");
  324. else if (CRYPT_E_EXISTS != GetLastError()) {
  325. PrintLastError("CertAddCTLLinkToStore(ADD_NEW)");
  326. printf("failed => expected CRYPT_E_EXISTS\n");
  328. }
  329. }
  330. }
  332. printf("Added %d Certificates\n", dwCertAddCnt);
  333. printf("Added %d CRLs\n", dwCrlAddCnt);
  334. printf("Added %d CTLs\n", dwCtlAddCnt);
  336. printf("\n");
  337. printf("$$$$$ Certificate Context Links $$$$$\n");
  338. DisplayStore(hParentStore, dwDisplayFlags);
  340. if (fProperty) {
  341. CRYPT_DATA_BLOB LinkSetData;
  342. BYTE rgbLinkSet[4] = {0xDE, 0xAD, 0xBE, 0xEF};
  343. LinkSetData.pbData = rgbLinkSet;
  344. LinkSetData.cbData = sizeof(rgbLinkSet);
  345. CRYPT_DATA_BLOB SiblingSetData;
  346. BYTE rgbSiblingSet[4] = {0xDE, 0xAF, 0xCA, 0xFE};
  347. SiblingSetData.pbData = rgbSiblingSet;
  348. SiblingSetData.cbData = sizeof(rgbSiblingSet);
  349. BYTE rgbGet[4];
  350. DWORD cbData;
  352. if (pLinkCert) {
  353. printf("Setting Certificate Context Link Property\n");
  355. // First make sure the property is deleted
  356. CertSetCertificateContextProperty(
  357. pLinkCert,
  358. CERT_FIRST_USER_PROP_ID,
  359. 0, // dwFlags
  360. NULL
  361. );
  362. cbData = sizeof(rgbGet);
  363. if (CertGetCertificateContextProperty(
  364. pLinkCert,
  365. CERT_FIRST_USER_PROP_ID,
  366. rgbGet,
  367. &cbData) || CRYPT_E_NOT_FOUND != GetLastError()) {
  368. printf("failed => expected link property to be deleted\n");
  369. PrintLastError("CertGetCertificateContextProperty(LINK)");
  370. }
  372. cbData = sizeof(rgbGet);
  373. if (CertGetCertificateContextProperty(
  374. pSiblingCert,
  375. CERT_FIRST_USER_PROP_ID,
  376. rgbGet,
  377. &cbData) || CRYPT_E_NOT_FOUND != GetLastError()) {
  378. printf("failed => expected sibling property to be deleted\n");
  379. PrintLastError("CertGetCertificateContextProperty(SIBLING)");
  380. }
  382. // Set property in link. It should also be visible in sibling
  383. cbData = sizeof(rgbGet);
  384. memset(rgbGet, 0, sizeof(rgbGet));
  385. if (!CertSetCertificateContextProperty(
  386. pLinkCert,
  387. CERT_FIRST_USER_PROP_ID,
  388. 0, // dwFlags
  389. &LinkSetData
  390. ))
  391. PrintLastError("CertSetCertificateContextProperty(LINK)");
  392. else if (!CertGetCertificateContextProperty(
  393. pSiblingCert,
  394. CERT_FIRST_USER_PROP_ID,
  395. rgbGet,
  396. &cbData))
  397. PrintLastError("CertGetCertificateContextProperty(SIBLING)");
  398. else if (cbData != sizeof(rgbLinkSet) ||
  399. 0 != memcmp(rgbGet, rgbLinkSet, cbData))
  400. printf("failed => cert sibling not updated with link property\n");
  402. // Set property in sibling. It should also be visible in link
  403. cbData = sizeof(rgbGet);
  404. memset(rgbGet, 0, sizeof(rgbGet));
  405. if (!CertSetCertificateContextProperty(
  406. pSiblingCert,
  407. CERT_FIRST_USER_PROP_ID,
  408. 0, // dwFlags
  409. &SiblingSetData
  410. ))
  411. PrintLastError("CertSetCertificateContextProperty(SIBLING)");
  412. else if (!CertGetCertificateContextProperty(
  413. pLinkCert,
  414. CERT_FIRST_USER_PROP_ID,
  415. rgbGet,
  416. &cbData))
  417. PrintLastError("CertGetCertificateContextProperty(LINK)");
  418. else if (cbData != sizeof(rgbSiblingSet) ||
  419. 0 != memcmp(rgbGet, rgbSiblingSet, cbData))
  420. printf("failed => cert link not updated with sibling property\n");
  421. }
  423. if (pLinkCrl) {
  424. printf("Setting CRL Context Link Property\n");
  426. // First make sure the property is deleted
  427. CertSetCRLContextProperty(
  428. pLinkCrl,
  429. CERT_FIRST_USER_PROP_ID,
  430. 0, // dwFlags
  431. NULL
  432. );
  433. cbData = sizeof(rgbGet);
  434. if (CertGetCRLContextProperty(
  435. pLinkCrl,
  436. CERT_FIRST_USER_PROP_ID,
  437. rgbGet,
  438. &cbData) || CRYPT_E_NOT_FOUND != GetLastError()) {
  439. printf("failed => expected link property to be deleted\n");
  440. PrintLastError("CertGetCRLContextProperty(LINK)");
  441. }
  443. cbData = sizeof(rgbGet);
  444. if (CertGetCRLContextProperty(
  445. pSiblingCrl,
  446. CERT_FIRST_USER_PROP_ID,
  447. rgbGet,
  448. &cbData) || CRYPT_E_NOT_FOUND != GetLastError()) {
  449. printf("failed => expected sibling property to be deleted\n");
  450. PrintLastError("CertGetCRLContextProperty(SIBLING)");
  451. }
  453. // Set property in link. It should also be visible in sibling
  454. cbData = sizeof(rgbGet);
  455. memset(rgbGet, 0, sizeof(rgbGet));
  456. if (!CertSetCRLContextProperty(
  457. pLinkCrl,
  458. CERT_FIRST_USER_PROP_ID,
  459. 0, // dwFlags
  460. &LinkSetData
  461. ))
  462. PrintLastError("CertSetCRLContextProperty(LINK)");
  463. else if (!CertGetCRLContextProperty(
  464. pSiblingCrl,
  465. CERT_FIRST_USER_PROP_ID,
  466. rgbGet,
  467. &cbData))
  468. PrintLastError("CertGetCRLContextProperty(SIBLING)");
  469. else if (cbData != sizeof(rgbLinkSet) ||
  470. 0 != memcmp(rgbGet, rgbLinkSet, cbData))
  471. printf("failed => CRL sibling not updated with link property\n");
  473. // Set property in sibling. It should also be visible in link
  474. cbData = sizeof(rgbGet);
  475. memset(rgbGet, 0, sizeof(rgbGet));
  476. if (!CertSetCRLContextProperty(
  477. pSiblingCrl,
  478. CERT_FIRST_USER_PROP_ID,
  479. 0, // dwFlags
  480. &SiblingSetData
  481. ))
  482. PrintLastError("CertSetCRLContextProperty(SIBLING)");
  483. else if (!CertGetCRLContextProperty(
  484. pLinkCrl,
  485. CERT_FIRST_USER_PROP_ID,
  486. rgbGet,
  487. &cbData))
  488. PrintLastError("CertGetCRLContextProperty(LINK)");
  489. else if (cbData != sizeof(rgbSiblingSet) ||
  490. 0 != memcmp(rgbGet, rgbSiblingSet, cbData))
  491. printf("failed => CRL link not updated with sibling property\n");
  492. }
  494. if (pLinkCtl) {
  495. printf("Setting CTL Context Link Property\n");
  497. // First make sure the property is deleted
  498. CertSetCTLContextProperty(
  499. pLinkCtl,
  500. CERT_FIRST_USER_PROP_ID,
  501. 0, // dwFlags
  502. NULL
  503. );
  504. cbData = sizeof(rgbGet);
  505. if (CertGetCTLContextProperty(
  506. pLinkCtl,
  507. CERT_FIRST_USER_PROP_ID,
  508. rgbGet,
  509. &cbData) || CRYPT_E_NOT_FOUND != GetLastError()) {
  510. printf("failed => expected link property to be deleted\n");
  511. PrintLastError("CertGetCTLContextProperty(LINK)");
  512. }
  514. cbData = sizeof(rgbGet);
  515. if (CertGetCTLContextProperty(
  516. pSiblingCtl,
  517. CERT_FIRST_USER_PROP_ID,
  518. rgbGet,
  519. &cbData) || CRYPT_E_NOT_FOUND != GetLastError()) {
  520. printf("failed => expected sibling property to be deleted\n");
  521. PrintLastError("CertGetCTLContextProperty(SIBLING)");
  522. }
  524. // Set property in link. It should also be visible in sibling
  525. cbData = sizeof(rgbGet);
  526. memset(rgbGet, 0, sizeof(rgbGet));
  527. if (!CertSetCTLContextProperty(
  528. pLinkCtl,
  529. CERT_FIRST_USER_PROP_ID,
  530. 0, // dwFlags
  531. &LinkSetData
  532. ))
  533. PrintLastError("CertSetCTLContextProperty(LINK)");
  534. else if (!CertGetCTLContextProperty(
  535. pSiblingCtl,
  536. CERT_FIRST_USER_PROP_ID,
  537. rgbGet,
  538. &cbData))
  539. PrintLastError("CertGetCTLContextProperty(SIBLING)");
  540. else if (cbData != sizeof(rgbLinkSet) ||
  541. 0 != memcmp(rgbGet, rgbLinkSet, cbData))
  542. printf("failed => CTL sibling not updated with link property\n");
  544. // Set property in sibling. It should also be visible in link
  545. cbData = sizeof(rgbGet);
  546. memset(rgbGet, 0, sizeof(rgbGet));
  547. if (!CertSetCTLContextProperty(
  548. pSiblingCtl,
  549. CERT_FIRST_USER_PROP_ID,
  550. 0, // dwFlags
  551. &SiblingSetData
  552. ))
  553. PrintLastError("CertSetCTLContextProperty(SIBLING)");
  554. else if (!CertGetCTLContextProperty(
  555. pLinkCtl,
  556. CERT_FIRST_USER_PROP_ID,
  557. rgbGet,
  558. &cbData))
  559. PrintLastError("CertGetCTLContextProperty(LINK)");
  560. else if (cbData != sizeof(rgbSiblingSet) ||
  561. 0 != memcmp(rgbGet, rgbSiblingSet, cbData))
  562. printf("failed => CTL link not updated with sibling property\n");
  563. }
  564. }
  566. if (pLinkCert) {
  567. CertDeleteCertificateFromStore(pLinkCert);
  568. pLinkCert = NULL;
  569. }
  570. if (pLinkCrl) {
  571. CertDeleteCRLFromStore(pLinkCrl);
  572. pLinkCrl = NULL;
  573. }
  574. if (pLinkCtl) {
  575. CertDeleteCTLFromStore(pLinkCtl);
  576. pLinkCtl = NULL;
  577. }
  578. } else {
  579. PCCERT_CONTEXT pCert;
  581. for (i = 0; i < dwStoreCnt; i++) {
  582. if (NULL == rghStore[i])
  583. continue;
  584. if (!CertAddStoreToCollection(
  585. hCollectionStore,
  586. rghStore[i],
  587. 0, // dwUpdateFlags
  588. i // dwPriority
  589. )) {
  590. PrintLastError("CertAddStoreToCollection");
  591. goto ErrorReturn;
  592. }
  593. }
  594. printf("\n");
  595. printf("$$$$$ Collection Stores $$$$$\n");
  596. DisplayStore(hCollectionStore, dwDisplayFlags);
  599. // Get first cert and duplicate. It should be in last store.
  600. // Remove the last store and the second to last store. Continue
  601. // the enumeration.
  602. if (pCert = CertEnumCertificatesInStore(hCollectionStore, NULL)) {
  603. pLinkCert = CertDuplicateCertificateContext(pCert);
  604. if (0 < dwStoreCnt && rghStore[dwStoreCnt - 1]) {
  605. CertRemoveStoreFromCollection(
  606. hCollectionStore,
  607. rghStore[dwStoreCnt - 1]
  608. );
  609. // Also close the last store
  610. CertCloseStore(rghStore[dwStoreCnt - 1], 0);
  611. rghStore[dwStoreCnt - 1] = NULL;
  612. }
  613. if (1 < dwStoreCnt && rghStore[dwStoreCnt - 2])
  614. CertRemoveStoreFromCollection(
  615. hCollectionStore,
  616. rghStore[dwStoreCnt - 2]
  617. );
  619. printf("$$$$$ Collection Certificates after removing last 2 stores $$$$$\n");
  620. i = 0;
  621. while (pCert = CertEnumCertificatesInStore(hCollectionStore,
  622. pCert)) {
  623. printf("===== %d =====\n", i);
  624. DisplayCert(pCert, DISPLAY_BRIEF_FLAG);
  625. i++;
  626. }
  627. }
  628. }
  630. status = 0;
  632. CommonReturn:
  633. if (pSiblingCert)
  634. CertFreeCertificateContext(pSiblingCert);
  635. if (pLinkCert)
  636. CertFreeCertificateContext(pLinkCert);
  637. if (pLinkCrl)
  638. CertFreeCRLContext(pLinkCrl);
  639. if (pSiblingCrl)
  640. CertFreeCRLContext(pSiblingCrl);
  641. if (pLinkCtl)
  642. CertFreeCTLContext(pLinkCtl);
  643. if (pSiblingCtl)
  644. CertFreeCTLContext(pSiblingCtl);
  646. for (i = 1; i < dwStoreCnt; i++) {
  647. if (rghStore[i])
  648. CertCloseStore(rghStore[i], 0);
  649. }
  651. if (hCollectionStore) {
  652. if (!CertCloseStore(hCollectionStore, CERT_CLOSE_STORE_CHECK_FLAG))
  653. PrintLastError("CertCloseStore(COLLECTION)");
  654. }
  655. if (hLinkStore) {
  656. if (!CertCloseStore(hLinkStore, CERT_CLOSE_STORE_CHECK_FLAG))
  657. PrintLastError("CertCloseStore(LINK)");
  658. }
  660. if (0 < dwStoreCnt) {
  661. if (rghStore[0]) {
  662. if (!CertCloseStore(rghStore[0], CERT_CLOSE_STORE_CHECK_FLAG))
  663. PrintLastError("CertCloseStore(SIBLING[0])");
  664. }
  665. }
  667. return status;
  669. BadUsage:
  670. Usage();
  671. status = -1;
  672. goto CommonReturn;
  674. ErrorReturn:
  675. status = -1;
  676. goto CommonReturn;
  677. }