|
|
//+-------------------------------------------------------------------------
//
// Microsoft Windows
//
// Copyright (C) Microsoft Corporation, 1995 - 1999
//
// File: certutil.cpp
//
//--------------------------------------------------------------------------
#include <pch.cpp>
#pragma hdrstop
#include <setupapi.h>
#include <locale.h>
#include <io.h>
#include <fcntl.h>
#include <ntverp.h>
#include <common.ver>
#include "ocmanage.h"
#include "initcert.h"
#include <winldap.h>
#include "csldap.h"
#include "setupids.h"
#include "clibres.h"
#include "csresstr.h"
#define __dwFILE__ __dwFILE_CERTUTIL_CERTUTIL_CPP__
#define WM_DOCERTUTILMAIN WM_USER+0
WCHAR const wszAppName[] = L"CertUtilApp";WCHAR const *g_pwszProg = L"CertUtil";HINSTANCE g_hInstance;
BOOL g_fIDispatch = FALSE;BOOL g_fEnterpriseRegistry = FALSE;BOOL g_fUserRegistry = FALSE;BOOL g_fUserTemplates = FALSE;BOOL g_fMachineTemplates = FALSE;BOOL g_fNoCR = FALSE;BOOL g_fFullUsage = FALSE;BOOL g_fReverse = FALSE;BOOL g_fForce = FALSE;BOOL g_fVerbose = FALSE;BOOL g_fGMT = FALSE;BOOL g_fSeconds = FALSE;DWORD g_DispatchFlags;BOOL g_fQuiet = FALSE;BOOL g_fCryptSilent = FALSE;BOOL g_fV1Interface = FALSE;BOOL g_fSplitASN = FALSE;BOOL g_fAdminInterface = FALSE;BOOL g_fProtect = FALSE;BOOL g_fWeakPFX = FALSE;BOOL g_fURLFetch = FALSE;DWORD g_EncodeFlags;DWORD g_CryptEncodeFlags;
DWORD g_dwmsTimeout = 0;
WCHAR *g_pwszConfig = NULL; // Don't free this one!
WCHAR *g_pwszConfigAlloc = NULL; // Free this one instead!
WCHAR *g_pwszDC = NULL;WCHAR *g_pwszOut = NULL;WCHAR *g_pwszPassword = NULL;WCHAR *g_pwszCSP = NULL;WCHAR *g_pwszRestrict = NULL;WCHAR *g_pwszDnsName = NULL;WCHAR *g_pwszOldName = NULL;WCHAR *g_pwszmsTimeout = NULL;
WCHAR const g_wszEmpty[] = L"";WCHAR const g_wszPad2[] = L" ";WCHAR const g_wszPad4[] = L" ";WCHAR const g_wszPad6[] = L" ";WCHAR const g_wszPad8[] = L" ";WCHAR const wszNewLine[] = L"\n";
UINT g_uiExtraErrorInfo = 0;
CRITICAL_SECTION g_DBCriticalSection;
#define CCOL_VERB 16
#define CCOL_OPTIONBARE 16
#define CCOL_OPTIONARG 24
#define AF_ZERO 0
#define AF_NEEDCOINIT 0x00000001
#define AF_ACTIVECONFIG 0x00000002 // CA must be running
#define AF_PRIVATE 0x00000004 // Undocumented, untested
#define AF_OPTIONALCONFIG 0x00000008
#define AF_RESTARTSERVER 0x00000010
#define AF_STOPATMINUSSIGNARG 0x00000020 // no more '-xxx' args
#define AF_STOPATMINUSSIGN 0x00000040 // no more '-' args
#define AF_OPTION_TIMEOUT 0x00000080
#define AF_OPTION_URLFETCH 0x00000100
#define AF_OPTION_CSP 0x00000200
#define AF_OPTION_PROTECT 0x00000400
#define AF_OPTION_WEAKPFX 0x00000800
#define AF_OPTION_DC 0x00001000
#define AF_OPTION_PASSWORD 0x00002000
#define AF_OPTION_ADMIN 0x00004000
#define AF_OPTION_CONFIG 0x00008000
#define AF_OPTION_ENTERPRISE 0x00010000
#define AF_OPTION_FORCE 0x00020000
#define AF_OPTION_GMT 0x00040000
#define AF_OPTION_IDISPATCH 0x00080000
#define AF_OPTION_MT 0x00100000
#define AF_OPTION_NOCR 0x00200000
#define AF_OPTION_OUT 0x00400000
#define AF_OPTION_RESTRICT 0x00800000
#define AF_OPTION_REVERSE 0x01000000
#define AF_OPTION_SECONDS 0x02000000
#define AF_OPTION_SILENT 0x04000000
#define AF_OPTION_SPLIT 0x08000000
#define AF_OPTION_USER 0x10000000
#define AF_OPTION_UT 0x20000000
#define AF_OPTION_V1 0x40000000
#define AF_OPTION_VERBOSE 0x80000000
#define AF_OPTION_GENERIC (AF_OPTION_SECONDS | AF_OPTION_GMT | AF_OPTION_VERBOSE)
#define AF_OPTION_MASK 0xffffff80
typedef struct _ARG{ WCHAR const *pwszArg; int idsDescription; int idsUsage; int idsArgDescription; int cArgMin; int cArgMax; DWORD Flags; BOOL *pBool; WCHAR **ppString; FNVERB *pfnVerb; WCHAR const * const *papwszUsageConstants; WCHAR const *pwszUsage; WCHAR const *pwszDescription;} ARG;
WCHAR const g_wszCACert[] = L"ca.cert";WCHAR const g_wszCAChain[] = L"ca.chain";WCHAR const g_wszGetCRL[] = L"GetCRL";WCHAR const g_wszCAInfo[] = L"CAInfo";
WCHAR const g_wszSchema[] = L"schema";WCHAR const g_wszEncode[] = L"encode";WCHAR const g_wszEncodeHex[] = L"encodehex";WCHAR const g_wszViewDelStore[] = L"viewdelstore";
WCHAR const *g_papwszUsageDeleteRow[] = { L"Request", L"Cert", L"Ext", L"Attrib", L"CRL", NULL };
WCHAR const *g_papwszUsageCRL[] = { L"republish", L"delta", NULL };WCHAR const *g_papwszUsageGetCRL[] = { L"delta", NULL };WCHAR const *g_papwszUsageSchema[] = { L"Ext", L"Attrib", L"CRL", NULL };WCHAR const *g_papwszUsageView[] = { L"Queue", L"Log", L"LogFail", L"Revoked", L"Ext", L"Attrib", L"CRL", NULL };
WCHAR const *g_papwszUsageBackup[] = { L"Incremental", L"KeepLog", NULL };WCHAR const *g_papwszUsageDSPublish[] = { L"NTAuthCA", L"RootCA", L"SubCA", L"CrossCA", L"KRA", L"User", L"Machine", L"-f", NULL };
WCHAR const *g_papwszUsageDCInfo[] = { L"Verify", L"DeleteBad", L"DeleteAll", NULL };
WCHAR const *g_papwszUsageGetCert[] = { L"ERA", L"KRA", NULL };WCHAR const *g_papwszUsageDelete[] = { L"delete", NULL };
WCHAR const *g_papwszUsageURLCache[] = { L"CRL", L"*", L"delete", L"-f", NULL };
WCHAR const *g_papwszUsageGetSetReg[] = { L"ca", L"restore", L"policy", L"exit", L"template", L"ProgId", NULL };
WCHAR g_wszDefaultLangId[cwcDWORDSPRINTF];WCHAR const *g_papwszUsageOIDName[] = { L"delete", g_wszDefaultLangId, L"-f", NULL };
WCHAR const *g_papwszUsageConvertEPF[] = { L"cast", L"cast-", NULL };
WCHAR const *g_papwszUsageRevokeCertificate[] ={ L"CRL_REASON_UNSPECIFIED", L"CRL_REASON_KEY_COMPROMISE", L"CRL_REASON_CA_COMPROMISE", L"CRL_REASON_AFFILIATION_CHANGED", L"CRL_REASON_SUPERSEDED", L"CRL_REASON_CESSATION_OF_OPERATION", L"CRL_REASON_CERTIFICATE_HOLD", L"CRL_REASON_REMOVE_FROM_CRL", L"Unrevoke", NULL};
WCHAR const *g_papwszUsageMinusf[] = { L"-f", NULL };
WCHAR const *g_papwszUsageRenew[] = { L"ReuseKeys", L"-f", NULL };
WCHAR const *g_papwszUsageStore[] = { /* %1 */ L"My", /* %2 */ L"CA", /* %3 */ L"Root", /* %4 */ L"-enterprise", /* %5 */ L"-user", /* %6 */ L"-enterprise NTAuth", /* %7 */ L"-enterprise Root 37", /* %8 */ L"-user My 26e0aaaf000000000004", /* %9 */ L"CA .11", /* %10 */ g_wszEmpty, // View Root Certificates URL
/* %11 */ g_wszEmpty, // Modify Root Certificates URL
/* %12 */ g_wszEmpty, // View CRLs
/* %13 */ g_wszEmpty, // Enterprise CA Certificates URL
NULL};
typedef struct _CUURLTEMPLATE { WCHAR const *pwszFmtPrefix; WCHAR const *pwszAttribute; WCHAR const **ppwszUsageLocation;} CUURLTEMPLATE;
CUURLTEMPLATE g_aURLTemplates[] = { { L"ldap:///CN=Certification Authorities", wszDSSEARCHAIACERTATTRIBUTE, &g_papwszUsageStore[10 - 1], }, { L"ldap:///CN=%ws,CN=Certification Authorities", wszDSSEARCHCACERTATTRIBUTE, &g_papwszUsageStore[11 - 1], }, { L"ldap:///CN=%ws,CN=%ws,CN=CDP", wszDSSEARCHBASECRLATTRIBUTE, &g_papwszUsageStore[12 - 1], }, { L"ldap:///CN=NTAuthCertificates", L"", &g_papwszUsageStore[13 - 1], },};
VOIDPatchStoreArgDescription(){ HRESULT hr; DWORD i; WCHAR const *pwszCAName = myLoadResourceString(IDS_CANAME); WCHAR const *pwszMachineName = myLoadResourceString(IDS_MACHINENAME); WCHAR const *pwszDCName = L"DC=..."; WCHAR const wszFmtURL[] = L"%ws,CN=Public Key Services,CN=Services,CN=Configuration,%ws%ws"; WCHAR *pwszPrefix = NULL; BSTR strDomainDN = NULL; LDAP *pld = NULL; static BOOL fFirst = TRUE;
if (fFirst) { fFirst = FALSE;
hr = myLdapOpen(NULL, 0, &pld, &strDomainDN, NULL); _PrintIfError2(hr, "myLdapOpen", hr); if (S_OK == hr && NULL != strDomainDN) { pwszDCName = strDomainDN; }
for (i = 0; i < ARRAYSIZE(g_aURLTemplates); i++) { DWORD cwc; WCHAR *pwsz = NULL;
if (NULL != pwszPrefix) { LocalFree(pwszPrefix); pwszPrefix = NULL; } cwc = wcslen(g_aURLTemplates[i].pwszFmtPrefix) + wcslen(pwszCAName) + wcslen(pwszMachineName);
pwszPrefix = (WCHAR *) LocalAlloc( LMEM_FIXED, (cwc + 1) * sizeof(WCHAR)); if (NULL == pwszPrefix) { _PrintError(E_OUTOFMEMORY, "LocalAlloc"); continue; } _snwprintf( pwszPrefix, cwc, g_aURLTemplates[i].pwszFmtPrefix, pwszCAName, pwszMachineName); pwszPrefix[cwc] = L'\0';
cwc += ARRAYSIZE(wszFmtURL) + wcslen(pwszDCName) + wcslen(g_aURLTemplates[i].pwszAttribute);
pwsz = (WCHAR *) LocalAlloc( LMEM_FIXED, (cwc + 1) * sizeof(WCHAR)); if (NULL == pwsz) { _PrintError(E_OUTOFMEMORY, "LocalAlloc"); }
_snwprintf( pwsz, cwc, wszFmtURL, pwszPrefix, pwszDCName, g_aURLTemplates[i].pwszAttribute); pwsz[cwc] = L'\0';
*g_aURLTemplates[i].ppwszUsageLocation = pwsz; } if (NULL != pwszPrefix) { LocalFree(pwszPrefix); } myLdapClose(pld, strDomainDN, NULL); }}
VOIDFreeStoreArgDescription(){ DWORD i;
for (i = 0; i < ARRAYSIZE(g_aURLTemplates); i++) { if (NULL != *g_aURLTemplates[i].ppwszUsageLocation && g_wszEmpty != *g_aURLTemplates[i].ppwszUsageLocation) { LocalFree(const_cast<WCHAR *>(*g_aURLTemplates[i].ppwszUsageLocation)); } }}
#define pargDEFAULT (&aarg[0]) // Default to first entry
ARG aarg[] ={ { // In first position to be the default
L"dump", // pwszArg
IDS_DUMP_DESCRIPTION, // "dump configuration information or files"
IDS_DUMP_USAGEARGS, // "[File]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_PASSWORD | AF_OPTION_SPLIT | AF_OPTION_IDISPATCH | AF_OPTION_FORCE | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbDump, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"decodehex", // pwszArg
IDS_DECODEHEX_DESCRIPTION, // "Decode hexadecimal-encoded file"
IDS_INFILEOUTFILE_USAGEARGS, // "InFile OutFile"
0, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbHexTranslate, // pfnVerb
NULL, // papwszUsageConstants
}, { g_wszEncodeHex, // pwszArg
IDS_ENCODEHEX_DESCRIPTION, // "Encode file in hexadecimal"
IDS_ENCODEHEX_USAGEARGS, // "InFile OutFile [type]"
0, // idsArgDescription
2, // cArgMin
3, // cArgMax
AF_OPTION_NOCR | AF_OPTION_FORCE | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbHexTranslate, // pfnVerb
NULL, // papwszUsageConstants
}, { L"decode", // pwszArg
IDS_DECODE_DESCRIPTION, // "Decode Base64-encoded file"
IDS_INFILEOUTFILE_USAGEARGS, // "InFile OutFile"
0, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbBase64Translate, // pfnVerb
NULL, // papwszUsageConstants
}, { g_wszEncode, // pwszArg
IDS_ENCODE_DESCRIPTION, // "Encode file to Base64"
IDS_INFILEOUTFILE_USAGEARGS, // "InFile OutFile"
0, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_NOCR | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbBase64Translate, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"deny", // pwszArg
IDS_DENY_DESCRIPTION, // "Deny pending request"
IDS_DENY_USAGEARGS, // "RequestId"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbDenyRequest, // pfnVerb
NULL, // papwszUsageConstants
}, { L"resubmit", // pwszArg
IDS_RESUBMIT_DESCRIPTION, // "Resubmit pending request"
IDS_RESUBMIT_USAGEARGS, // "RequestId"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbResubmitRequest, // pfnVerb
NULL, // papwszUsageConstants
}, { L"setattributes", // pwszArg
IDS_SETATTRIBUTES_DESCRIPTION, // "Set attributes for pending request"
IDS_SETATTRIBUTES_USAGEARGS, // "RequestId AttributeString"
IDS_SETATTRIBUTES_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbSetAttributes, // pfnVerb
NULL, // papwszUsageConstants
}, { L"setextension", // pwszArg
IDS_SETEXTENSION_DESCRIPTION, // "Set extension for pending request"
IDS_SETEXTENSION_USAGEARGS, // "RequestId ExtensionName Flags {Long | Date | String | @InFile}"
IDS_SETEXTENSION_ARGDESCRIPTION, // idsArgDescription
4, // cArgMin
4, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbSetExtension, // pfnVerb
NULL, // papwszUsageConstants
}, { L"revoke", // pwszArg
IDS_REVOKE_DESCRIPTION, // "Revoke certificate"
IDS_REVOKE_USAGEARGS, // "SerialNumber"
IDS_REVOKE_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
2, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbRevokeCertificate, // pfnVerb
g_papwszUsageRevokeCertificate, // papwszUsageConstants
}, { L"isvalid", // pwszArg
IDS_ISVALID_DESCRIPTION, // "Display current certificate disposition"
IDS_ISVALID_USAGEARGS, // "SerialNumber | CertHash"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbIsValidCertificate, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"getconfig", // pwszArg
IDS_GETCONFIG_DESCRIPTION, // "get default configuration string"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbGetConfig, // pfnVerb
NULL, // papwszUsageConstants
}, { L"getconfig2", // pwszArg
IDS_GETCONFIG2_DESCRIPTION, // "get default configuration string via ICertGetConfig"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_IDISPATCH | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbGetConfig2, // pfnVerb
NULL, // papwszUsageConstants
}, { L"getconfig3", // pwszArg
IDS_GETCONFIG3_DESCRIPTION, // "get configuration via ICertConfig"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_IDISPATCH | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbGetConfig3, // pfnVerb
NULL, // papwszUsageConstants
}, { L"ping", // pwszArg
IDS_PING_DESCRIPTION, // "Ping Certificate Server"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbPing, // pfnVerb
NULL, // papwszUsageConstants
}, { L"pingadmin", // pwszArg
IDS_PINGADMIN_DESCRIPTION, // "Ping Certificate Server Admin interface"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbPingAdmin, // pfnVerb
NULL, // papwszUsageConstants
}, { g_wszCAInfo, // pwszArg
IDS_CAINFO_DESCRIPTION, // "Display CA Information"
IDS_CAINFO_USAGEARGS, // "[InfoName [Index | ErrorCode]]"
IDS_CAINFO_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_V1 | AF_OPTION_SPLIT | AF_OPTION_FORCE | AF_OPTION_ADMIN | AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbGetCAInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { L"CAPropInfo", // pwszArg
IDS_CAPROPINFO_DESCRIPTION,// "Display CA Property Type Information"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_V1 | AF_OPTION_IDISPATCH | AF_OPTION_ADMIN | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbGetCAPropInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { g_wszCACert, // pwszArg
IDS_CACERT_DESCRIPTION, // "Retrieve the CA's certificate"
IDS_CACERT_USAGEARGS, // "OutCACertFile [Index]"
IDS_CACERT_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
2, // cArgMax
AF_OPTION_V1 | AF_OPTION_SPLIT | AF_OPTION_FORCE | AF_OPTION_ADMIN | AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbGetCACertificate, // pfnVerb
NULL, // papwszUsageConstants
}, { g_wszCAChain, // pwszArg
IDS_CACHAIN_DESCRIPTION,// "Retrieve the CA's certificate chain"
IDS_CACHAIN_USAGEARGS, // "OutCACertChainFile [Index]"
IDS_CACHAIN_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
2, // cArgMax
AF_OPTION_V1 | AF_OPTION_SPLIT | AF_OPTION_FORCE | AF_OPTION_ADMIN | AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbGetCACertificate, // pfnVerb
NULL, // papwszUsageConstants
}, { g_wszGetCRL, // pwszArg
IDS_GETCRL_DESCRIPTION, // "Get CRL"
IDS_GETCRL_USAGEARGS, // "OutFile [Index] [%1]"
IDS_GETCRL_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
3, // cArgMax
AF_OPTION_V1 | AF_OPTION_SPLIT | AF_OPTION_IDISPATCH | AF_OPTION_FORCE | AF_OPTION_ADMIN | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbGetCRL, // pfnVerb
g_papwszUsageGetCRL, // papwszUsageConstants
}, { L"CRL", // pwszArg
IDS_CRL_DESCRIPTION, // "Publish new CRL [optionally delta CRL only]"
IDS_CRL_USAGEARGS, // "[dd:hh | %1] [%2]"
IDS_CRL_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_V1 | AF_OPTION_SPLIT | AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbPublishCRL, // pfnVerb
g_papwszUsageCRL, // papwszUsageConstants
}, { L"shutdown", // pwszArg
IDS_SHUTDOWN_DESCRIPTION, // "Shutdown Certificate Server"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbShutDownServer, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"installCert", // pwszArg
IDS_INSTALLCERT_DESCRIPTION, // "Install Certification Authority certificate"
IDS_INSTALLCERT_USAGEARGS, // "CACertFile"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_SILENT | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_NEEDCOINIT | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbInstallCACert, // pfnVerb
NULL, // papwszUsageConstants
}, { L"renewCert", // pwszArg
IDS_RENEWCERT_DESCRIPTION, // "Renew Certification Authority certificate"
IDS_RENEWCERT_USAGEARGS, // "[%1] [Machine\\ParemtCAName]"
IDS_RENEWCERT_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_SILENT | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_NEEDCOINIT | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbRenewCACert, // pfnVerb
g_papwszUsageRenew, // papwszUsageConstants
}, { L"", }, { g_wszSchema, // pwszArg
IDS_SCHEMA_DESCRIPTION, // "Dump certificate schema"
IDS_SCHEMA_USAGE, // "[%1 | %2 | %3]"
IDS_SCHEMA_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_SPLIT | AF_OPTION_CONFIG | AF_OPTION_IDISPATCH | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbViewDump, // pfnVerb
g_papwszUsageSchema, // papwszUsageConstants
}, { L"view", // pwszArg
IDS_VIEW_DESCRIPTION, // "Dump certificate view"
IDS_VIEW_USAGE, // "[%1 | %2 | %3 | %4 | %5 | %6 | %7]"
IDS_VIEW_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_SILENT | AF_OPTION_SPLIT | AF_OPTION_REVERSE | AF_OPTION_IDISPATCH | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT | AF_OPTION_OUT | AF_OPTION_RESTRICT, // Flags
NULL, // pBool
NULL, // ppString
verbViewDump, // pfnVerb
g_papwszUsageView, // papwszUsageConstants
}, { L"db", // pwszArg
IDS_DB_DESCRIPTION, // "Dump Raw Database"
IDS_VIEW_USAGE, // "[%1 | %2 | %3 | %4 | %5 | %6 | %7]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_SILENT | AF_OPTION_SPLIT | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_NEEDCOINIT | AF_OPTION_OUT | AF_OPTION_RESTRICT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDBDump, // pfnVerb
g_papwszUsageView, // papwszUsageConstants
}, { L"deleterow", // pwszArg
IDS_DELETEROW_DESCRIPTION, // "Delete server database row"
IDS_DELETEROW_USAGEARGS, // "RowId | Date [%1 | %2 | %3 | %4 | %5]"
IDS_DELETEROW_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
2, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbDeleteRow, // pfnVerb
g_papwszUsageDeleteRow, // papwszUsageConstants
}, { L"", }, { L"backup", // pwszArg
IDS_BACKUP_DESCRIPTION, // "backup certificate server"
IDS_BACKUP_USAGEARGS, // "BackupDirectory [%1] [%2]"
IDS_BACKUP_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
3, // cArgMax
AF_OPTION_WEAKPFX | AF_OPTION_PASSWORD | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbBackup, // pfnVerb
g_papwszUsageBackup, // papwszUsageConstants
}, { L"backupDB", // pwszArg
IDS_BACKUPDB_DESCRIPTION, // "backup certificate server data base"
IDS_BACKUPDB_USAGEARGS, // "BackupDirectory [%1] [%2]"
IDS_BACKUPDB_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
3, // cArgMax
AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbBackupDB, // pfnVerb
g_papwszUsageBackup, // papwszUsageConstants
}, { L"backupKey", // pwszArg
IDS_BACKUPPFX_DESCRIPTION, // "backup certificate server certificate and private key"
IDS_BACKUPPFX_USAGEARGS, // "BackupDirectory"
IDS_BACKUPPFX_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_WEAKPFX | AF_OPTION_PASSWORD | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbBackupPFX, // pfnVerb
NULL, // papwszUsageConstants
}, { L"restore", // pwszArg
IDS_RESTORE_DESCRIPTION, // "restore certificate server"
IDS_RESTORE_USAGEARGS, // "BackupDirectory"
IDS_RESTORE_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_PASSWORD | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbRestore, // pfnVerb
NULL, // papwszUsageConstants
}, { L"restoreDB", // pwszArg
IDS_RESTOREDB_DESCRIPTION, // "restore certificate server data base"
IDS_RESTOREDB_USAGEARGS, // "BackupDirectory"
IDS_RESTOREDB_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_NEEDCOINIT | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbRestoreDB, // pfnVerb
NULL, // papwszUsageConstants
}, { L"restoreKey", // pwszArg
IDS_RESTOREPFX_DESCRIPTION, // "restore certificate server certificate and private key"
IDS_RESTOREPFX_USAGEARGS, // "BackupDirectory | PFXFile"
IDS_RESTOREPFX_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_PASSWORD | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_ACTIVECONFIG | AF_NEEDCOINIT | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbRestorePFX, // pfnVerb
NULL, // papwszUsageConstants
}, { L"exportPVK", // pwszArg
IDS_EXPORTPVK_DESCRIPTION, // "export certificate and private key for code signing"
IDS_EXPORTPVK_USAGEARGS, // "CertId PVKFileBaseName"
0, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_PASSWORD | AF_OPTION_USER | AF_OPTION_SPLIT | AF_OPTION_ENTERPRISE | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbExportPVK, // pfnVerb
NULL, // papwszUsageConstants
}, { L"exportPFX", // pwszArg
IDS_EXPORTPFX_DESCRIPTION, // "export certificate and private key"
IDS_EXPORTPFX_USAGEARGS, // "CertId PFXFile"
IDS_EXPORTPFX_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_WEAKPFX | AF_OPTION_PASSWORD | AF_OPTION_USER | AF_OPTION_SPLIT | AF_OPTION_FORCE | AF_OPTION_ENTERPRISE | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbExportPFX, // pfnVerb
NULL, // papwszUsageConstants
}, { L"importPFX", // pwszArg
IDS_IMPORTPFX_DESCRIPTION, // "import certificate and private key"
IDS_IMPORTPFX_USAGEARGS, // "PFXFile"
IDS_IMPORTPFX_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_CSP | AF_OPTION_PROTECT | AF_OPTION_PASSWORD | AF_OPTION_USER | AF_OPTION_FORCE | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbImportPFX, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dynamicfilelist", IDS_DYNAMICFILES_DESCRIPTION, // "Display Dynamic File List"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbDynamicFileList, // pfnVerb
NULL, // papwszUsageConstants
}, { L"databaselocations", IDS_DATABASELOCATIONS_DESCRIPTION, // "Display Database Locations"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbDatabaseLocations, // pfnVerb
NULL, // papwszUsageConstants
}, { L"hashfile", // pwszArg
IDS_HASHFILE_DESCRIPTION, // "Generates and displays cryptographic hash over a file"
IDS_HASHFILE_USAGEARGS, // "InFile"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_ZERO, // Flags
NULL, // pBool
NULL, // ppString
verbMACFile, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"store", // pwszArg
IDS_STORE_DESCRIPTION, // "dump certificate store"
IDS_STORE_USAGEARGS, // "[CertificateStoreName [CertId [OutputFile]]]"
IDS_STORE_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
3, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_SPLIT | AF_OPTION_FORCE | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbStore, // pfnVerb
g_papwszUsageStore, // papwszUsageConstants
}, { L"addstore", // pwszArg
IDS_ADDSTORE_DESCRIPTION, // "add certificate to store"
IDS_ADDSTORE_USAGEARGS, // "CertificateStoreName InFile"
IDS_ADDSTORE_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_FORCE | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbAddStore, // pfnVerb
NULL, // papwszUsageConstants
}, { L"delstore", // pwszArg
IDS_DELSTORE_DESCRIPTION, // "delete certificate from store"
IDS_DELSTORE_USAGEARGS, // "CertificateStoreName CertId"
IDS_DELSTORE_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbDelStore, // pfnVerb
NULL, // papwszUsageConstants
}, { L"verifystore", // pwszArg
IDS_VERIFYSTORE_DESCRIPTION, // "verify certificate in store"
IDS_VERIFYSTORE_USAGEARGS, // "CertificateStoreName [CertId]"
IDS_DELSTORE_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_SPLIT | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbVerifyStore, // pfnVerb
NULL, // papwszUsageConstants
}, { L"repairstore", // pwszArg
IDS_REPAIRSTORE_DESCRIPTION, // "repair certificate KeyPprovInfo in store"
IDS_REPAIRSTORE_USAGEARGS, // "CertificateStoreName CertId"
IDS_DELSTORE_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_FORCE | AF_OPTION_CSP | AF_OPTION_USER | AF_OPTION_SILENT | AF_OPTION_SPLIT | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbRepairStore, // pfnVerb
NULL, // papwszUsageConstants
}, { L"viewstore", // pwszArg
IDS_STORE_DESCRIPTION, // "view certificate store"
IDS_STORE_USAGEARGS, // "[CertificateStoreName [CertId [OutputFile]]]"
IDS_STORE_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
3, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_FORCE | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbViewOrDeleteStore, // pfnVerb
g_papwszUsageStore, // papwszUsageConstants
}, { g_wszViewDelStore, // pwszArg
IDS_DELSTORE_DESCRIPTION, // "delete certificate from store"
IDS_STORE_USAGEARGS, // "[CertificateStoreName [CertId [OutputFile]]]"
IDS_STORE_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
3, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_FORCE | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbViewOrDeleteStore, // pfnVerb
g_papwszUsageStore, // papwszUsageConstants
}, { L"getcert", // pwszArg
IDS_GETCERT_DESCRIPTION,// "select a certificate from a selection UI"
IDS_GETCERT_USAGEARGS, // "[ObjectId | %1 | %2 [CommonName]]"
0, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_SPLIT | AF_OPTION_SILENT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbGetCertFromUI, // pfnVerb
g_papwszUsageGetCert, // papwszUsageConstants
}, { L"", }, { L"ds", // pwszArg
IDS_DS_DESCRIPTION, // "Display DS DNs"
IDS_DS_USAGEARGS, // "[CN]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_FORCE | AF_OPTION_DC | AF_OPTION_SPLIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDS, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dsDel", // pwszArg
IDS_DSDEL_DESCRIPTION, // "Delete DS DNs"
IDS_DSDEL_USAGEARGS, // "CN"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_DC | AF_OPTION_SPLIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDSDel, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dsPublish", // pwszArg
IDS_DSPUBLISH_DESCRIPTION, // "Publish Certificate or CRL to DS"
IDS_DSPUBLISH_USAGEARGS, // "CertFile [%1 | %2 | %3 | %4 | %5 | %6 | %7]\nCRLFile [DSCDPContainer [DSCDPCN]]"
IDS_DSPUBLISH_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
3, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbDSPublish, // pfnVerb
g_papwszUsageDSPublish, // papwszUsageConstants
}, { L"dsCert", // pwszArg
IDS_DSCERT_DESCRIPTION, // "Display DS Certificates"
IDS_DSCERT_USAGEARGS, // "[CertId [OutFile]]"
0, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_ENTERPRISE | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDSCert, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dsCRL", // pwszArg
IDS_DSCRL_DESCRIPTION, // "Display DS CRLs"
IDS_DSCRL_USAGEARGS, // "[CRLIndex [OutFile]]"
0, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_IDISPATCH | AF_OPTION_ENTERPRISE | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDSCRL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dsDeltaCRL", // pwszArg
IDS_DSDELTACRL_DESCRIPTION, // "Display DS Delta CRLs"
IDS_DSDELTACRL_USAGEARGS, // "[CRLIndex [OutFile]]"
0, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_ENTERPRISE | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDSDeltaCRL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dsTemplate", // pwszArg
IDS_DSTEMPLATE_DESCRIPTION, // "Display DS Template Attributes"
IDS_DSTEMPLATE_USAGEARGS, // "[Template]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_SILENT | AF_OPTION_DC | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDSTemplate, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dsAddTemplate", // pwszArg
IDS_DSADDTEMPLATE_DESCRIPTION, // "Add DS Templates"
IDS_DSADDTEMPLATE_USAGEARGS, // "TemplateInfFile"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_DC | AF_PRIVATE | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbDSAddTemplate, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"Template", // pwszArg
IDS_TEMPLATE_DESCRIPTION, // "Display Templates"
IDS_TEMPLATE_USAGEARGS, // "[Template]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_FORCE | AF_OPTION_USER | AF_OPTION_UT | AF_OPTION_MT, // Flags
NULL, // pBool
NULL, // ppString
verbTemplate, // pfnVerb
NULL, // papwszUsageConstants
}, { L"TemplateCAs", // pwszArg
IDS_TEMPLATECAS_DESCRIPTION, // "Display CAs for Template"
IDS_TEMPLATECAS_USAGEARGS, // "Template"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_FORCE | AF_OPTION_DC | AF_OPTION_USER, // Flags
NULL, // pBool
NULL, // ppString
verbTemplateCAs, // pfnVerb
NULL, // papwszUsageConstants
}, { L"CATemplates", // pwszArg
IDS_CATEMPLATES_DESCRIPTION, // "Display Templates for CA"
IDS_CATEMPLATES_USAGEARGS, // "[Template]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_FORCE | AF_OPTION_DC | AF_OPTION_USER | AF_OPTION_UT | AF_OPTION_MT | AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbCATemplates, // pfnVerb
NULL, // papwszUsageConstants
}, { L"SetCATemplates", // pwszArg
IDS_SETCATEMPLATES_DESCRIPTION, // "Set Templates for CA"
IDS_SETCATEMPLATES_USAGEARGS, // "[+ | -]TemplateList"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_STOPATMINUSSIGNARG | AF_OPTION_FORCE | AF_OPTION_DC | AF_OPTION_CONFIG | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbSetCATemplates, // pfnVerb
NULL, // papwszUsageConstants
}, { L"URL", // pwszArg
IDS_URL_DESCRIPTION, // "Verify Certificate or CRL URLs"
IDS_URL_USAGEARGS, // "InFile | URL"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_SPLIT | AF_OPTION_FORCE | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbURL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"URLCache", // pwszArg
IDS_URLCACHE_DESCRIPTION, // "Display or delete URL Cache entries"
IDS_URLCACHE_USAGEARGS, // "[URL [%1]]"
IDS_URLCACHE_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_SPLIT | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbURLCache, // pfnVerb
g_papwszUsageURLCache, // papwszUsageConstants
}, { L"pulse", // pwszArg
IDS_PULSE_DESCRIPTION, // "Pulse autoenrollment events"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_ZERO, // Flags
NULL, // pBool
NULL, // ppString
verbPulse, // pfnVerb
NULL, // papwszUsageConstants
}, { L"MachineInfo", // pwszArg
IDS_MACHINEINFO_DESCRIPTION, // "Display DS machine object information"
IDS_MACHINEINFO_USAGEARGS, // "DomainName\\MachineName$"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_ZERO, // Flags
NULL, // pBool
NULL, // ppString
verbMachineInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { L"DCInfo", // pwszArg
IDS_DCINFO_DESCRIPTION, // "Display DC information"
IDS_DCINFO_USAGEARGS, // "[%1 | %2 | %3]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_URLFETCH | AF_OPTION_USER | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbDCInfo, // pfnVerb
g_papwszUsageDCInfo, // papwszUsageConstants
}, { L"EntInfo", // pwszArg
IDS_ENTINFO_DESCRIPTION, // "Display Enterprise information"
IDS_ENTINFO_USAGEARGS, // "DomainName\\MachineName$"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_USER | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbEntInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { L"TCAInfo", // pwszArg
IDS_TCAINFO_DESCRIPTION, // "Display CA information"
IDS_TCAINFO_USAGEARGS, // "[DomainDN | -]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_URLFETCH | AF_STOPATMINUSSIGN | AF_OPTION_DC | AF_OPTION_FORCE | AF_OPTION_ENTERPRISE | AF_OPTION_USER | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbTCAInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { L"SCInfo", // pwszArg
IDS_SCINFO_DESCRIPTION, // "Display Smart Card information"
IDS_SCINFO_USAGEARGS, // "[Reader Name]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_URLFETCH | AF_OPTION_SPLIT | AF_OPTION_SILENT, // Flags
NULL, // pBool
NULL, // ppString
verbSCInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"key", // pwszArg
IDS_KEY_DESCRIPTION, // "list key containers"
IDS_KEY_USAGEARGS, // "[KeyContainerName | -]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_CSP | AF_OPTION_USER | AF_OPTION_SILENT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbKey, // pfnVerb
NULL, // papwszUsageConstants
}, { L"delkey", // pwszArg
IDS_DELKEY_DESCRIPTION, // "delete named key container"
IDS_DELKEY_USAGEARGS, // "KeyContainerName"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_CSP | AF_OPTION_USER | AF_OPTION_SILENT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbDelKey, // pfnVerb
NULL, // papwszUsageConstants
}, { L"verifykeys", // pwszArg
IDS_VERIFYKEYS_DESCRIPTION, // "Verify public/private key set"
IDS_VERIFYKEYS_USAGEARGS, // "[KeyContainerName CACertFile]"
IDS_VERIFYKEYS_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
2, // cArgMax
AF_OPTION_FORCE | AF_OPTION_USER | AF_OPTION_SILENT | AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbVerifyKeys, // pfnVerb
NULL, // papwszUsageConstants
}, { L"verify", // pwszArg
IDS_VERIFY_DESCRIPTION, // "Verify certificate or chain"
IDS_VERIFY_USAGEARGS, // "CertFile [CACertFile [CrossedCACertFile]]"
IDS_VERIFY_ARGSDESCRIPTION, // idsArgDescription
1, // cArgMin
3, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_URLFETCH | AF_OPTION_SPLIT | AF_OPTION_USER | AF_OPTION_SILENT | AF_OPTION_FORCE | AF_OPTION_ENTERPRISE, // Flags
NULL, // pBool
NULL, // ppString
verbVerifyCert, // pfnVerb
NULL, // papwszUsageConstants
}, { L"csplist", // pwszArg
IDS_CSPLIST_DESCRIPTION,// "list all CSPs installed on this machine"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_USER | AF_OPTION_SILENT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbCSPList, // pfnVerb
NULL, // papwszUsageConstants
}, { L"csptest", // pwszArg
IDS_CSPTEST_DESCRIPTION,// "test one or all CSPs installed on this machine"
IDS_CSPTEST_USAGEARGS, // "[KeyContainerName]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_CSP | AF_OPTION_USER | AF_OPTION_SILENT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbCSPTest, // pfnVerb
NULL, // papwszUsageConstants
}, { L"sign", // pwszArg
IDS_SIGN_DESCRIPTION, // "Re-sign CRL or Certificate"
IDS_SIGN_USAGEARGS, // "InFile OutFile [dd:hh] [+SerialNumberList | -SerialNumberList | -ObjectIdList]"
IDS_SIGN_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
4, // cArgMax
AF_OPTION_SILENT | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbSign, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"vroot", // pwszArg
IDS_VROOT_DESCRIPTION, // "Create/Delete Web Virtual Roots and File Share"
IDS_VROOT_USAGEARGS, // "[%1]"
0, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_ZERO, // Flags
NULL, // pBool
NULL, // ppString
verbCreateVRoots, // pfnVerb
g_papwszUsageDelete, // papwszUsageConstants
}, { L"7f", // pwszArg
IDS_7F_DESCRIPTION, // "Check certificate for 0x7f length encodings"
IDS_7F_USAGEARGS, // "CertFile"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbCheck7f, // pfnVerb
NULL, // papwszUsageConstants
}, { L"oid", // pwszArg
IDS_OIDNAME_DESCRIPTION,// "Display or set ObjectId display name"
IDS_OIDNAME_USAGEARGS, // "ObjectId [DisplayName | delete [LanguageId [Type]]]"
IDS_OIDNAME_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
4, // cArgMax
AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbOIDName, // pfnVerb
g_papwszUsageOIDName, // papwszUsageConstants
}, { L"error", // pwszArg
IDS_ERRCODE_DESCRIPTION,// "Display error code message text"
IDS_ERRCODE_USAGEARGS, // "ErrorCode"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_STOPATMINUSSIGNARG, // Flags
NULL, // pBool
NULL, // ppString
verbErrorDump, // pfnVerb
NULL, // papwszUsageConstants
}, { L"getsmtpinfo", // pwszArg
IDS_GETMAPI_DESCRIPTION,// "get SMTP info"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_CONFIG | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbGetMapiInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { L"setsmtpinfo", // pwszArg
IDS_SETMAPI_DESCRIPTION, // "set SMTP info"
IDS_SETMAPI_USAGEARGS, // "LogonName"
0, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_PASSWORD | AF_OPTION_CONFIG | AF_NEEDCOINIT | AF_PRIVATE, // Flags
NULL, // pBool
NULL, // ppString
verbSetMapiInfo, // pfnVerb
NULL, // papwszUsageConstants
}, { L"getreg", IDS_GETREG_DESCRIPTION, // "Display registry value"
IDS_GETREG_USAGEARGS, // "[{%1|%2|%3|%4|%5}\\[%6\\]][RegistryValueName]"
IDS_SETREG_ARGDESCRIPTION, // idsArgDescription
0, // cArgMin
1, // cArgMax
AF_OPTION_USER | AF_NEEDCOINIT | AF_OPTIONALCONFIG, // Flags
NULL, // pBool
NULL, // ppString
verbGetReg, // pfnVerb
g_papwszUsageGetSetReg, // papwszUsageConstants
}, { L"setreg", IDS_SETREG_DESCRIPTION, // "Set registry value"
IDS_SETREG_USAGEARGS, // "[{%1|%2|%3|%4|%5}\\[%6\\]]RegistryValueName Value"
IDS_SETREG_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_FORCE | AF_OPTION_USER | AF_NEEDCOINIT | AF_OPTIONALCONFIG | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbSetReg, // pfnVerb
g_papwszUsageGetSetReg, // papwszUsageConstants
}, { L"delreg", IDS_DELREG_DESCRIPTION, // "Delete registry value"
IDS_GETREG_USAGEARGS, // "[{%1|%2|%3|%4|%5}\\[%6\\]RegistryValueName]"
IDS_SETREG_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
1, // cArgMax
AF_OPTION_FORCE | AF_OPTION_USER | AF_NEEDCOINIT | AF_OPTIONALCONFIG | AF_RESTARTSERVER, // Flags
NULL, // pBool
NULL, // ppString
verbDelReg, // pfnVerb
g_papwszUsageGetSetReg, // papwszUsageConstants
}, { L"", }, { L"ImportKMS", // pwszArg
IDS_IMPORTKMS_DESCRIPTION, // "import user keys and certificates into server database for key archival"
IDS_IMPORTKMS_USAGEARGS, // "UserKeyAndCertFile [CertId]"
IDS_IMPORTKMS_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
2, // cArgMax
AF_OPTION_PASSWORD | AF_OPTION_SPLIT | AF_OPTION_SILENT | AF_OPTION_IDISPATCH | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbImportKMS, // pfnVerb
g_papwszUsageMinusf, // papwszUsageConstants
}, { L"ImportCert", IDS_IMPORTCERT_DESCRIPTION, // "Import a certificate file into the database"
IDS_IMPORTCERT_USAGEARGS, // "Certfile"
IDS_IMPORTCERT_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
2, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_FORCE | AF_OPTION_CONFIG | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbImportCertificate, // pfnVerb
g_papwszUsageMinusf, // papwszUsageConstants
}, { L"GetKey", IDS_GETKEY_DESCRIPTION, // "Retrieve archived private key recovery blob"
IDS_GETKEY_USAGEARGS, // "SearchToken [RecoveryBlobOutFile]"
IDS_GETKEY_ARGDESCRIPTION, // idsArgDescription
1, // cArgMin
2, // cArgMax
AF_OPTION_IDISPATCH | AF_OPTION_FORCE | AF_NEEDCOINIT | AF_OPTIONALCONFIG, // Flags
NULL, // pBool
NULL, // ppString
verbGetKey, // pfnVerb
NULL, // papwszUsageConstants
}, { L"RecoverKey", IDS_RECOVERKEY_DESCRIPTION, // "Recover archived private key"
IDS_RECOVERKEY_USAGEARGS, // "RecoveryBlobInFile [PFXOutFile [RecipientIndex]]"
0, // idsArgDescription
1, // cArgMin
3, // cArgMax
AF_OPTION_TIMEOUT | AF_OPTION_WEAKPFX | AF_OPTION_USER | AF_OPTION_SPLIT | AF_OPTION_PASSWORD | AF_OPTION_FORCE | AF_NEEDCOINIT, // Flags
NULL, // pBool
NULL, // ppString
verbRecoverKey, // pfnVerb
NULL, // papwszUsageConstants
}, { L"MergePFX", IDS_MERGEPFX_DESCRIPTION, // "Merge PFX files"
IDS_MERGEPFX_USAGEARGS, // "PFXInFileList PFXOutFile"
IDS_MERGEPFX_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
2, // cArgMax
AF_OPTION_CSP | AF_OPTION_WEAKPFX | AF_OPTION_USER | AF_OPTION_SPLIT | AF_OPTION_PASSWORD | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbMergePFX, // pfnVerb
NULL, // papwszUsageConstants
}, { L"ConvertEPF", IDS_CONVERTEPF_DESCRIPTION, // "Convert PFX files to EPF file"
IDS_CONVERTEPF_USAGEARGS, // "PFXInFileList EPFOutFile [%1 | %2] [V3CACertId][,Salt]"
IDS_CONVERTPFX_ARGDESCRIPTION, // idsArgDescription
2, // cArgMin
4, // cArgMax
AF_OPTION_CSP | AF_OPTION_SPLIT | AF_OPTION_DC | AF_OPTION_SILENT | AF_OPTION_PASSWORD | AF_OPTION_FORCE, // Flags
NULL, // pBool
NULL, // ppString
verbConvertEPF, // pfnVerb
g_papwszUsageConvertEPF, // papwszUsageConstants
}, { L"?", // pwszArg
IDS_USAGE_DESCRIPTION, // "Display this usage message"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_ZERO, // Flags
NULL, // pBool
NULL, // ppString
verbUsage, // pfnVerb
NULL, // papwszUsageConstants
}, { L"", }, { L"f", // pwszArg
IDS_FORCE_DESCRIPTION, // "Force overwrite"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_FORCE, // Flags
&g_fForce, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"idispatch", // pwszArg
IDS_IDISPATCH_DESCRIPTION, // "Use IDispatch instead of COM"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_PRIVATE | AF_OPTION_IDISPATCH, // Flags
&g_fIDispatch, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"enterprise", // pwszArg
IDS_ENTERPRISE_DESCRIPTION, // "Use Enterprise certificate store"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_ENTERPRISE, // Flags
&g_fEnterpriseRegistry, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"user", // pwszArg
IDS_USER_DESCRIPTION, // "Use HKEY_CURRENT_USER certificate store"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_USER, // Flags
&g_fUserRegistry, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"ut", // pwszArg
IDS_UT_DESCRIPTION, // "Display user templates"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_UT, // Flags
&g_fUserTemplates, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"mt", // pwszArg
IDS_MT_DESCRIPTION, // "Display machine templates"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_MT, // Flags
&g_fMachineTemplates, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"nocr", // pwszArg
IDS_NOCR_DESCRIPTION, // "Encode text without CR characters"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_PRIVATE | AF_OPTION_NOCR, // Flags
&g_fNoCR, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"gmt", // pwszArg
IDS_GMT_DESCRIPTION, // "Display times as GMT"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_GMT, // Flags
&g_fGMT, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"seconds", // pwszArg
IDS_SECONDS_DESCRIPTION,// "Display times with seconds and milliseconds"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_SECONDS, // Flags
&g_fSeconds, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"silent", // pwszArg
IDS_SILENT_DESCRIPTION, // "Use silent flag to acquire crypt context"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_SILENT, // Flags
&g_fCryptSilent, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"split", // pwszArg
IDS_SPLIT_DESCRIPTION, // "Split embedded ASN.1 elements, and save to files"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_SPLIT, // Flags
&g_fSplitASN, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"v", // pwszArg
IDS_VERBOSE_DESCRIPTION, // "Verbose operation"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_VERBOSE, // Flags
&g_fVerbose, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"v1", // pwszArg
IDS_V1_DESCRIPTION, // "Use V1 COM interfaces"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_PRIVATE | AF_OPTION_V1, // Flags
&g_fV1Interface, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"protect", // pwszArg
IDS_PROTECT_DESCRIPTION, // "Protect keys with password"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_PRIVATE | AF_OPTION_PROTECT, // Flags
&g_fProtect, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"oldpfx", // pwszArg
IDS_WEAKPFX_DESCRIPTION, // "Use old PFX encryption"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_PRIVATE | AF_OPTION_WEAKPFX, // Flags
&g_fWeakPFX, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"urlfetch", // pwszArg
IDS_URLFETCH_DESCRIPTION, // "Retrieve and verify AIA Certs and CDP CRLs"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_URLFETCH, // Flags
&g_fURLFetch, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"reverse", // pwszArg
IDS_REVERSE_DESCRIPTION, // "Reverse Log and Queue columns"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_PRIVATE | AF_OPTION_REVERSE, // Flags
&g_fReverse, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"admin", // pwszArg
IDS_ADMIN_DESCRIPTION, // "Use ICertAdmin2 for CA Properties"
0, // idsUsage
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_PRIVATE | AF_OPTION_ADMIN, // Flags
&g_fAdminInterface, // pBool
NULL, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"config", // pwszArg
IDS_CONFIG_DESCRIPTION, // "CA and Machine name string"
IDS_CONFIG_USAGE, // "Machine\\CAName"
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTIONALCONFIG | AF_OPTION_CONFIG, // Flags
NULL, // pBool
&g_pwszConfig, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"dc", // pwszArg
IDS_DC_DESCRIPTION, // "Target a specific Domain Controller"
IDS_DC_USAGE, // "DCName"
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_DC, // Flags
NULL, // pBool
&g_pwszDC, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"restrict", // pwszArg
IDS_RESTRICT_DESCRIPTION, // "Comma separated Restriction List"
IDS_RESTRICT_USAGE, // "RestrictionList"
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_RESTRICT, // Flags
NULL, // pBool
&g_pwszRestrict, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"out", // pwszArg
IDS_OUT_DESCRIPTION, // "Comma separated Column List"
IDS_OUT_USAGE, // "ColumnList"
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_OUT, // Flags
NULL, // pBool
&g_pwszOut, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"p", // pwszArg
IDS_PASSWORD_DESCRIPTION, // "password"
IDS_PASSWORD_DESCRIPTION, // "password"
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_PASSWORD, // Flags
NULL, // pBool
&g_pwszPassword, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"csp", // pwszArg
IDS_CSP_DESCRIPTION, // "Provider"
IDS_CSP_DESCRIPTION, // "Provider"
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_CSP, // Flags
NULL, // pBool
&g_pwszCSP, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
}, { L"t", // pwszArg
IDS_TIMEOUT_DESCRIPTION, // "URL fetch timeout in milliseconds"
IDS_TIMEOUT_USAGE, // "Timeout"
0, // idsArgDescription
0, // cArgMin
0, // cArgMax
AF_OPTION_TIMEOUT, // Flags
NULL, // pBool
&g_pwszmsTimeout, // ppString
NULL, // pfnVerb
NULL, // papwszUsageConstants
},};
VOIDcuPrintErrorAndString( OPTIONAL IN WCHAR const *pwszProc, IN DWORD idmsg, IN HRESULT hr, OPTIONAL IN WCHAR const *pwszString){ WCHAR const *pwsz; WCHAR awchr[cwcHRESULTSTRING]; WCHAR const *pwszError = NULL;
if (NULL != pwszProc) { wprintf(L"%ws: ", pwszProc); } if (0 != idmsg) { pwsz = myLoadResourceString(idmsg); // "??? returned %ws"
if (NULL == pwsz) { pwsz = L"error %ws"; } } else { pwsz = L"%ws"; } pwszError = myGetErrorMessageText(hr, TRUE); if (NULL == pwszError) { pwszError = myHResultToString(awchr, hr); } wprintf(pwsz, pwszError); if (NULL != pwszString) { wprintf(L" -- %ws", pwszString); } wprintf(wszNewLine); if (NULL != pwszError && awchr != pwszError) { LocalFree(const_cast<WCHAR *>(pwszError)); }}
VOIDcuPrintError( IN DWORD idmsg, IN HRESULT hr){ cuPrintErrorAndString(NULL, idmsg, hr, NULL);}
VOIDcuPrintAPIError( IN WCHAR const *pwszAPIName, IN HRESULT hr){ cuPrintErrorAndString(pwszAPIName, 0, hr, NULL);}
VOIDcuPrintErrorMessageText( IN HRESULT hr){ WCHAR const *pwszMessage;
pwszMessage = myGetErrorMessageText(hr, FALSE); if (NULL != pwszMessage) { wprintf(L"%ws: %ws\n", g_pwszProg, pwszMessage); LocalFree(const_cast<WCHAR *>(pwszMessage)); }}
VOIDLoadUsage( IN OUT ARG *parg){ HRESULT hr;
if (0 != parg->idsUsage && NULL == parg->pwszUsage) { WCHAR const *pwszUsage = myLoadResourceString(parg->idsUsage);
if (NULL != pwszUsage) { if (NULL == parg->papwszUsageConstants) { parg->pwszUsage = pwszUsage; } else { if (0 == FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_STRING | FORMAT_MESSAGE_ARGUMENT_ARRAY, (VOID *) pwszUsage, 0, // dwMessageID
0, // dwLanguageID
(LPWSTR) &parg->pwszUsage, 0, (va_list *) parg->papwszUsageConstants)) { hr = myHLastError(); _PrintError(hr, "FormatMessage"); } } } }}
VOIDFreeUsage( IN OUT ARG *parg){ if (NULL != parg->pwszUsage) { if (NULL != parg->papwszUsageConstants) { LocalFree(const_cast<WCHAR *>(parg->pwszUsage)); } parg->pwszUsage = NULL; }}
BOOLDumpArgOptions( IN DWORD dwOptionFlags){ ARG *parg; BOOL fDisplayed = FALSE; WCHAR const *pwszPrefix = g_wszPad4;
dwOptionFlags |= AF_OPTION_GENERIC; dwOptionFlags &= AF_OPTION_MASK | AF_OPTIONALCONFIG; for (parg = aarg ; parg < &aarg[ARRAYSIZE(aarg)]; parg++) { if (NULL != parg->pfnVerb) { continue; } if (!g_fFullUsage && (AF_PRIVATE & parg->Flags)) { continue; } if (L'\0' == parg->pwszArg[0]) { continue; } if (1 >= g_fVerbose && (AF_OPTION_GENERIC & parg->Flags)) { continue; } if (dwOptionFlags & parg->Flags) { wprintf( L"%ws%ws-%ws", pwszPrefix, wszLBRACKET, parg->pwszArg); if (0 != parg->idsUsage) { LoadUsage(parg); wprintf(L" %ws", parg->pwszUsage); } wprintf(wszRBRACKET); pwszPrefix = L" "; fDisplayed = TRUE; } } if (fDisplayed) { wprintf(wszNewLine); } return(fDisplayed);}
VOIDDumpArgUsage( IN ARG *parg){ WCHAR const *pwsz; int *paidsUsage; if (0 != parg->idsUsage) { LoadUsage(parg); } pwsz = parg->pwszUsage; while (TRUE) { wprintf( L" %ws [%ws] %ws-%ws%ws", g_pwszProg, myLoadResourceString(IDS_USAGE_OPTIONS), pargDEFAULT == parg? wszLBRACKET : L"", parg->pwszArg, pargDEFAULT == parg? wszRBRACKET : L""); if (NULL != pwsz) { DWORD cwc = 0;
cwc = wcscspn(pwsz, L"\r\n"); if (0 != cwc) { wprintf(L" %.*ws", cwc, pwsz); pwsz += cwc; } while ('\r' == *pwsz || '\n' == *pwsz) { pwsz++; } } wprintf(wszNewLine); if (NULL == pwsz || L'\0' == *pwsz) { break; } } if (0 != parg->idsDescription && NULL == parg->pwszDescription) { parg->pwszDescription = myLoadResourceString( parg->idsDescription); } if (NULL != parg->pwszDescription) { wprintf(L" %ws\n", parg->pwszDescription); } if (0 != parg->idsArgDescription) { HRESULT hr; WCHAR const *pwszArg = myLoadResourceString(parg->idsArgDescription); WCHAR *pwszArgFormatted = NULL;
if (NULL != pwszArg && L'\0' != *pwszArg) { if (IDS_STORE_ARGDESCRIPTION == parg->idsArgDescription) { PatchStoreArgDescription(); } if (0 == FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_STRING | FORMAT_MESSAGE_ARGUMENT_ARRAY, (VOID *) pwszArg, 0, // dwMessageID
0, // dwLanguageID
(LPWSTR) &pwszArgFormatted, wcslen(pwszArg), (va_list *) parg->papwszUsageConstants)) { hr = myHLastError(); _PrintError(hr, "FormatMessage"); } pwsz = NULL != pwszArgFormatted? pwszArgFormatted : pwszArg; while (L'\0' != *pwsz) { DWORD cwc = 0;
cwc = wcscspn(pwsz, L"\r\n"); if (0 != cwc) { wprintf(L" %.*ws", cwc, pwsz); pwsz += cwc; } wprintf(wszNewLine); if ('\r' == *pwsz) { pwsz++; } if ('\n' == *pwsz) { pwsz++; } } if (NULL != pwszArgFormatted) { LocalFree(pwszArgFormatted); } } }}
VOIDUsage( IN DWORD msgid, OPTIONAL WCHAR const *pwszMsg, IN DWORD dwOption, OPTIONAL IN ARG *pargVerb){ ARG *parg; DWORD dwFlags = AF_OPTION_GENERIC; WCHAR const *pwszArg; DWORD i; DWORD adwids[] = { IDS_USAGE_LIST_VERBS, // "display verb list (command list)"
IDS_FORMAT_USAGE_ONE_HELP, // "display help for the %ws verb"
IDS_USAGE_ALL_HELP, // "display help for all verbs"
}; WCHAR const *apwszCommandLine[] = { L"%ws -?", // IDS_USAGE_LIST_VERBS
L"%ws -%ws -?", // IDS_FORMAT_USAGE_ONE_HELP
L"%ws -v -?", // IDS_USAGE_ALL_HELP
}; wsprintf(g_wszDefaultLangId, L"%u", GetSystemDefaultLangID());
// Display the error message for the detected usage error. If the error
// message requires it, point at the optional arg string to be displayed
// along with the error message.
if (0 != msgid) { if (NULL == pwszMsg && 0 != dwOption) { for (parg = aarg ; parg < &aarg[ARRAYSIZE(aarg)]; parg++) { if (NULL != parg->pfnVerb) { continue; } if (dwOption & parg->Flags) { pwszMsg = parg->pwszArg; break; } } }
// Display a command line usage error message.
wprintf(L"%ws: ", g_pwszProg); wprintf(myLoadResourceString(msgid), pwszMsg); wprintf(L"\n\n"); } else { // if no error and no verb selected, display all verbs & descriptions
if (NULL == pargVerb) { wprintf(L"\n%ws\n", myLoadResourceString(IDS_USAGE_VERBS)); for (parg = aarg ; parg < &aarg[ARRAYSIZE(aarg)]; parg++) { if (!g_fFullUsage && (AF_PRIVATE & parg->Flags)) { continue; } if (L'\0' == parg->pwszArg[0]) { wprintf(wszNewLine); continue; } if (NULL != parg->pfnVerb) { dwFlags |= parg->Flags; if (0 != parg->idsDescription && NULL == parg->pwszDescription) { parg->pwszDescription = myLoadResourceString( parg->idsDescription); } wprintf(L" -"); myConsolePrintString(CCOL_VERB, parg->pwszArg); wprintf(L" -- %ws\n", parg->pwszDescription); } } } }
// if in verbose mode, display full usage for all verbs.
// if verb was specified, display usage for one verb.
if ((0 == msgid && g_fVerbose) || NULL != pargVerb) { ARG *pargStart; ARG *pargEnd;
wprintf(L"%ws\n", myLoadResourceString(IDS_USAGE_HEADER));
if (NULL != pargVerb) { pargStart = pargVerb; // display one verb
pargEnd = &pargVerb[1]; } else { pargStart = aarg; // display all verbs
pargEnd = &aarg[ARRAYSIZE(aarg)]; }
for (parg = pargStart ; parg < pargEnd; parg++) { if (!g_fFullUsage && (AF_PRIVATE & parg->Flags) && parg != pargVerb) { continue; // skip private verbs unless specified
} if (L'\0' == parg->pwszArg[0]) { continue; // skip newline separator entries
} if (NULL != parg->pfnVerb) // if it's a verb (not an option entry)
{ dwFlags |= parg->Flags; DumpArgUsage(parg); if (g_fVerbose) { DumpArgOptions(parg->Flags); }
// Special case for CAInfo verb:
if (IDS_CAINFO_USAGEARGS == parg->idsUsage && (g_fFullUsage || (0 == msgid && g_fVerbose) || parg == pargVerb)) { cuCAInfoUsage(); } wprintf(wszNewLine); } }
// display options and descriptions for displayed verbs
wprintf(L"%ws\n", myLoadResourceString(IDS_OPTIONS_USAGEARGS)); for (parg = aarg ; parg < &aarg[ARRAYSIZE(aarg)]; parg++) { if (L'\0' == parg->pwszArg[0]) { continue; } if (NULL != parg->pfnVerb) { continue; } if (!g_fFullUsage && (AF_PRIVATE & parg->Flags)) { continue; }
// skip options for undisplayed verbs,
// unless in verbose mode and no verb was specified
if ((!g_fVerbose || NULL != pargVerb) && 0 == ((AF_OPTION_MASK | AF_OPTIONALCONFIG) & dwFlags & parg->Flags)) { continue; } wprintf(L" -"); if (0 != parg->idsUsage) { LONG ccol; LONG ccolOption = NULL != parg->ppString? CCOL_OPTIONARG : CCOL_OPTIONBARE; LoadUsage(parg); ccol = myConsolePrintString(0, parg->pwszArg); wprintf(L" "); ccol++; myConsolePrintString( ccolOption <= ccol? 0 : ccolOption - ccol, parg->pwszUsage); } else { myConsolePrintString(CCOL_OPTIONBARE, parg->pwszArg); } if (0 != parg->idsDescription && NULL == parg->pwszDescription) { parg->pwszDescription = myLoadResourceString( parg->idsDescription); } wprintf(L" -- %ws\n", parg->pwszDescription); }
for (parg = aarg ; parg < &aarg[ARRAYSIZE(aarg)]; parg++) { FreeUsage(parg); } }
pwszArg = (NULL != pargVerb && NULL != pargVerb->pwszArg)? pargVerb->pwszArg : pargDEFAULT->pwszArg;
wprintf(wszNewLine); for (i = 0; i < ARRAYSIZE(adwids); i++) { LONG ccol; WCHAR wsz[128]; _snwprintf( wsz, ARRAYSIZE(wsz) - 1, apwszCommandLine[i], g_pwszProg, pwszArg); wsz[ARRAYSIZE(wsz) - 1] = L'\0'; myConsolePrintString(CCOL_OPTIONARG, wsz); wprintf(L" -- "); wprintf(myLoadResourceString(adwids[i]), pwszArg); wprintf(wszNewLine); } wprintf(wszNewLine);}
HRESULTverbUsage( IN WCHAR const *pwszOption, IN WCHAR const *pwszError, IN WCHAR const *pwszArg2, IN WCHAR const *pwszArg3, IN WCHAR const *pwszArg4){ Usage(0, NULL, 0, NULL); return(S_OK);}
VOIDcuUnloadCert( IN OUT CERT_CONTEXT const **ppCertContext){ if (NULL != *ppCertContext) { CertFreeCertificateContext(*ppCertContext); *ppCertContext = NULL; }}
HRESULTcuLoadCert( IN WCHAR const *pwszfnCert, OUT CERT_CONTEXT const **ppCertContext){ HRESULT hr; BYTE *pbCert = NULL; DWORD cbCert; CERT_INFO *pCertInfo = NULL; DWORD cbCertInfo;
*ppCertContext = NULL;
hr = DecodeFileW(pwszfnCert, &pbCert, &cbCert, CRYPT_STRING_ANY); if (S_OK != hr) { cuPrintError(IDS_ERR_FORMAT_DECODEFILE, hr); goto error; }
// Decode certificate
cbCertInfo = 0; if (!myDecodeObject( X509_ASN_ENCODING, X509_CERT_TO_BE_SIGNED, pbCert, cbCert, CERTLIB_USE_LOCALALLOC, (VOID **) &pCertInfo, &cbCertInfo)) { hr = myHLastError(); _JumpError2(hr, error, "myDecodeObject", CRYPT_E_ASN1_BADTAG); }
*ppCertContext = CertCreateCertificateContext( X509_ASN_ENCODING, pbCert, cbCert); if (NULL == *ppCertContext) { hr = myHLastError(); _JumpError(hr, error, "CertCreateCertificateContext"); }
error: if (NULL != pCertInfo) { LocalFree(pCertInfo); } if (NULL != pbCert) { LocalFree(pbCert); } return(hr);}
VOIDcuUnloadCRL( IN OUT CRL_CONTEXT const **ppCRLContext){ if (NULL != *ppCRLContext) { CertFreeCRLContext(*ppCRLContext); *ppCRLContext = NULL; }}
HRESULTcuLoadCRL( IN WCHAR const *pwszfnCRL, OUT CRL_CONTEXT const **ppCRLContext){ HRESULT hr; BYTE *pbCRL = NULL; DWORD cbCRL; CRL_INFO *pCRLInfo = NULL; DWORD cbCRLInfo;
*ppCRLContext = NULL;
hr = DecodeFileW(pwszfnCRL, &pbCRL, &cbCRL, CRYPT_STRING_ANY); if (S_OK != hr) { cuPrintError(IDS_ERR_FORMAT_DECODEFILE, hr); goto error; }
// Decode CRL
cbCRLInfo = 0; if (!myDecodeObject( X509_ASN_ENCODING, X509_CERT_CRL_TO_BE_SIGNED, pbCRL, cbCRL, CERTLIB_USE_LOCALALLOC, (VOID **) &pCRLInfo, &cbCRLInfo)) { hr = myHLastError(); _JumpError2(hr, error, "myDecodeObject", CRYPT_E_ASN1_BADTAG); }
*ppCRLContext = CertCreateCRLContext( X509_ASN_ENCODING, pbCRL, cbCRL); if (NULL == *ppCRLContext) { hr = myHLastError(); _JumpError(hr, error, "CertCreateCRLContext"); }
error: if (NULL != pCRLInfo) { LocalFree(pCRLInfo); } if (NULL != pbCRL) { LocalFree(pbCRL); } return(hr);}
HRESULTcuSetConfig(){ HRESULT hr;
if (NULL == g_pwszConfig) { hr = myGetConfig(CC_LOCALCONFIG, &g_pwszConfigAlloc); if (HRESULT_FROM_WIN32(ERROR_NO_MORE_ITEMS) == hr) { wprintf( myLoadResourceString(IDS_ERR_FORMAT_NO_LOCAL_CONFIG), // "%ws: No local Certification Authority; use -config option"
g_pwszProg); wprintf(wszNewLine); } _JumpIfError(hr, error, "myGetConfig"); } else if (myIsMinusSignString(g_pwszConfig)) { hr = myGetConfig(CC_UIPICKCONFIG, &g_pwszConfigAlloc); if (S_OK != hr) { cuPrintError(IDS_ERR_CONFIGGETCONFIG, hr); goto error; } } if (NULL != g_pwszConfigAlloc) { g_pwszConfig = g_pwszConfigAlloc; } hr = S_OK;
error: return(hr);}
HRESULTArgvMain( int argc, WCHAR *argv[], HWND hWndOwner){ WCHAR const *pwszArg1 = NULL; WCHAR const *pwszArg2 = NULL; WCHAR const *pwszArg3 = NULL; WCHAR const *pwszArg4 = NULL; BOOL fDlgResult; ARG *pargVerb = NULL; DWORD dwOptionFlags = 0; DWORD dwExtraOptions; ARG *parg; HRESULT hr; BOOL fCoInit = FALSE; DWORD VerbFlags = 0; BOOL fInitCS = FALSE; __try { InitializeCriticalSection(&g_DBCriticalSection); fInitCS = TRUE; hr = S_OK; } __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER) { } _JumpIfError(hr, error, "InitializeCriticalSection");
myVerifyResourceStrings(g_hInstance);
#ifdef TESTUUENCODE
RunTests();#endif
while (1 < argc && myIsSwitchChar(argv[1][0])) { if (0 == LSTRCMPIS(&argv[1][1], L"stdio")) { myConsolePrintfDisable(TRUE); } else if (0 == lstrcmp(&argv[1][1], L"uSAGE")) { g_fFullUsage = TRUE; Usage(0, NULL, 0, pargVerb); hr = S_OK; goto error; } else { if (myIsMinusSign(argv[1][0]) && (((AF_STOPATMINUSSIGN & VerbFlags) && L'\0' == argv[1][1]) || ((AF_STOPATMINUSSIGNARG & VerbFlags) && L'\0' != argv[1][1] && 0 != LSTRCMPIS(&argv[1][1], L"?")))) { break; } for (parg = aarg; ; parg++) { if (parg >= &aarg[ARRAYSIZE(aarg)]) { Usage( IDS_FORMAT_USAGE_UNKNOWNARG, // "Unknown arg: %ws"
argv[1], 0, pargVerb); hr = S_FALSE; goto error; } if (0 == mylstrcmpiS(&argv[1][1], parg->pwszArg)) { break; } } if (NULL != parg->pBool) { (*parg->pBool)++; dwOptionFlags |= parg->Flags; } if (NULL != parg->ppString) { if (2 >= argc) { Usage(IDS_FORMAT_USAGE_MISSINGNAMEDARG, parg->pwszArg, 0, pargVerb); // "Missing %ws argument"
hr = S_FALSE; goto error; } if (NULL != *parg->ppString) { Usage(IDS_FORMAT_USAGE_REPEATEDNAMEDARG, parg->pwszArg, 0, pargVerb); // "Repeated %ws option"
hr = S_FALSE; goto error; } *parg->ppString = argv[2]; dwOptionFlags |= parg->Flags; argc--; argv++; } if (NULL != parg->pfnVerb) { if (NULL != pargVerb) { Usage( verbUsage == parg->pfnVerb? 0 : IDS_FORMAT_USAGE_MULTIPLEVERBARGS, // "Multiple verb args: %ws"
argv[1], 0, pargVerb); hr = S_FALSE; goto error; } pargVerb = parg; VerbFlags = pargVerb->Flags; } } argc--; argv++; } if (NULL == pargVerb) { pargVerb = pargDEFAULT; } if (pargVerb->cArgMin > argc - 1) { wprintf( myLoadResourceString(IDS_ERR_FORMAT_SHOW_TOO_FEW_ARGS), // "Expected at least %u args, received %u"
pargVerb->cArgMin, argc - 1); wprintf(wszNewLine);
Usage(IDS_USAGE_MISSINGARG, NULL, 0, pargVerb); // "missing argument"
hr = S_FALSE; goto error; } if (pargVerb->cArgMax < argc - 1) { wprintf( myLoadResourceString(IDS_ERR_FORMAT_SHOW_TOO_MANY_ARGS), // "Expected no more than %u args, received %u"
pargVerb->cArgMax, argc - 1);
wprintf(wszNewLine);
Usage(IDS_USAGE_TOOMANYARGS, NULL, 0, pargVerb); // "too many arguments"
hr = S_FALSE; goto error; }
g_DispatchFlags = DISPSETUP_COM; if (g_fIDispatch) { g_DispatchFlags = DISPSETUP_IDISPATCH; if (1 < g_fIDispatch) { g_DispatchFlags = DISPSETUP_COMFIRST; } } if (g_fForce) { g_EncodeFlags = DECF_FORCEOVERWRITE; } if (g_fNoCR) { g_CryptEncodeFlags = CRYPT_STRING_NOCR; } if (NULL != g_pwszmsTimeout) { hr = myGetLong(g_pwszmsTimeout, (LONG *) &g_dwmsTimeout); _JumpIfError(hr, error, "Timeout must be a number");
// zero implies a 15 second timeout in CAPI.
// If the timeut was explicitly set to 0, get as close as we can (1ms).
if (0 == g_dwmsTimeout) { g_dwmsTimeout = 1; } }#if 0
wprintf( L"-%ws: %ws %ws carg=%u-%u Flags=%x pfn=%x\n", pargVerb->pwszArg, pargVerb->pwszUsage, pargVerb->pwszDescription, pargVerb->cArgMin, pargVerb->cArgMax, pargVerb->Flags, pargVerb->pfnVerb);#endif
hr = myGetComputerNames(&g_pwszDnsName, &g_pwszOldName); _JumpIfError(hr, error, "myGetComputerNames");
if (AF_NEEDCOINIT & pargVerb->Flags) { hr = CoInitialize(NULL); if (S_OK != hr && S_FALSE != hr) { _JumpError(hr, error, "CoInitialize"); } fCoInit = TRUE; }
if (AF_OPTION_CONFIG & pargVerb->Flags) { if (0 == (AF_NEEDCOINIT & pargVerb->Flags)) { Usage(IDS_USAGE_INTERNALVERBTABLEERROR, NULL, 0, pargVerb); // "Missing fCoInit flag"
hr = S_FALSE; goto error; } hr = cuSetConfig(); _JumpIfError(hr, error, "cuSetConfig"); } else if (0 == (AF_OPTIONALCONFIG & pargVerb->Flags)) { if (NULL != g_pwszConfig) { Usage(IDS_FORMAT_USAGE_EXTRAOPTION, NULL, AF_OPTION_CONFIG, pargVerb); // "Unexpected -%ws"
hr = S_FALSE; goto error; } } if (NULL != g_pwszOut && 0 == (AF_OPTION_OUT & pargVerb->Flags)) { Usage(IDS_FORMAT_USAGE_EXTRAOPTION, NULL, AF_OPTION_OUT, pargVerb); // "Unexpected %ws option"
hr = S_FALSE; goto error; } if (NULL != g_pwszRestrict && 0 == (AF_OPTION_RESTRICT & pargVerb->Flags)) { Usage(IDS_FORMAT_USAGE_EXTRAOPTION, NULL, AF_OPTION_RESTRICT, pargVerb); // "Unexpected %ws option"
hr = S_FALSE; goto error; } dwExtraOptions = AF_OPTION_MASK & ~AF_OPTION_GENERIC & dwOptionFlags & ~pargVerb->Flags;
if ((AF_OPTION_CONFIG & dwExtraOptions) && (AF_OPTIONALCONFIG & pargVerb->Flags)) { dwExtraOptions &= ~AF_OPTION_CONFIG; } if (0 != dwExtraOptions) { DBGPRINT(( DBG_SS_CERTUTIL, "Extra options: 0x%x\n", dwExtraOptions)); Usage(IDS_FORMAT_USAGE_EXTRAOPTION, NULL, dwExtraOptions, pargVerb); // "Unexpected %ws option"
hr = S_FALSE; goto error; }
if (1 < argc) { pwszArg1 = argv[1]; if (2 < argc) { pwszArg2 = argv[2]; if (3 < argc) { pwszArg3 = argv[3]; if (4 < argc) { pwszArg4 = argv[4]; } } } }
__try { hr = (*pargVerb->pfnVerb)( pargVerb->pwszArg, pwszArg1, pwszArg2, pwszArg3, pwszArg4); } __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER) { } if (S_OK != hr) { WCHAR awchr[cwcHRESULTSTRING];
wprintf( myLoadResourceString(IDS_ERR_FORMAT_COMMAND_FAILED), // "%ws: -%ws command FAILED: %ws"
g_pwszProg, pargVerb->pwszArg, myHResultToString(awchr, hr)); wprintf(wszNewLine); goto error; } if (!g_fCryptSilent) { wprintf( myLoadResourceString(IDS_FORMAT_COMMAND_SUCCEEDED), // "%ws: -%ws command completed successfully."
g_pwszProg, pargVerb->pwszArg); wprintf(wszNewLine); if (AF_RESTARTSERVER & pargVerb->Flags) { wprintf( myLoadResourceString(IDS_FORMAT_RESTART_SERVER), // "The %ws service may need to be restarted for changes to take effect."
wszSERVICE_NAME); wprintf(wszNewLine); } } error: if (S_OK != hr && S_FALSE != hr) { cuPrintErrorMessageText(hr); if (0 != g_uiExtraErrorInfo) { wprintf(myLoadResourceString(g_uiExtraErrorInfo)); wprintf(wszNewLine); } if (NULL != g_pwszPassword) { myZeroDataString(g_pwszPassword); // password data
} } if (fCoInit) { CoUninitialize(); } if (fInitCS) { DeleteCriticalSection(&g_DBCriticalSection); } return(hr);}
//**************************************************************************
// FUNCTION: CertUtilPreMain
// NOTES: Based on vich's MkRootMain function; takes an LPSTR command
// line and chews it up into argc/argv form so that it can be
// passed on to a traditional C style main.
//**************************************************************************
#define ISBLANK(wc) (L' ' == (wc) || L'\t' == (wc))
HRESULT CertUtilPreMain( IN WCHAR const *pwszCmdLine, IN HWND hWndOwner){ HRESULT hr; WCHAR const *pwszCmdLineT; WCHAR *pbuf; WCHAR *apwszArg[20]; DWORD i; DWORD cwc; DWORD cArg = 0; WCHAR *p; WCHAR const *pchQuote; WCHAR *pwszLog = NULL; int carg; BOOL fMainCompleted = FALSE; UINT idsError = 0; WCHAR wcQuote;
pbuf = (WCHAR *) LocalAlloc( LMEM_FIXED, (wcslen(pwszCmdLine) + 1) * sizeof(WCHAR)); if (NULL == pbuf) { hr = E_OUTOFMEMORY; _JumpError(hr, error, "LocalAlloc"); } p = pbuf;
apwszArg[cArg++] = TEXT("CertUtil"); pwszCmdLineT = pwszCmdLine; while (*pwszCmdLineT != TEXT('\0')) { while (ISBLANK(*pwszCmdLineT)) { pwszCmdLineT++; } if (*pwszCmdLineT != TEXT('\0')) { apwszArg[cArg++] = p; if (sizeof(apwszArg)/sizeof(apwszArg[0]) <= cArg) { idsError = IDS_USAGE_TOOMANYARGS; hr = E_INVALIDARG; _JumpError(hr, error, "Too many args"); } pchQuote = NULL; while (*pwszCmdLineT != L'\0') { if (NULL != pchQuote) { if (*pwszCmdLineT == *pchQuote) { pwszCmdLineT++; pchQuote = NULL; continue; } } else { if (ISBLANK(*pwszCmdLineT)) { break; } if (L'"' == *pwszCmdLineT) { pchQuote = pwszCmdLineT++; continue; }#define wcLENQUOTE (WCHAR) 0x201c
#define wcRENQUOTE (WCHAR) 0x201d
else if (wcLENQUOTE == *pwszCmdLineT) { pwszCmdLineT++; wcQuote = wcRENQUOTE; pchQuote = &wcQuote; continue; } } *p++ = *pwszCmdLineT++; } *p++ = TEXT('\0'); if (*pwszCmdLineT != TEXT('\0')) { pwszCmdLineT++; // skip whitespace or quote character
} } } apwszArg[cArg] = NULL;
// Don't log passwords!
cwc = 0; for (i = 0; i < cArg; i++) { cwc += 1 + wcslen(apwszArg[i]); if (NULL != wcschr(apwszArg[i], L' ')) { cwc += 2; } } pwszLog = (WCHAR *) LocalAlloc(LMEM_FIXED, (cwc + 1) * sizeof(WCHAR)); if (NULL == pwszLog) { hr = E_OUTOFMEMORY; _JumpError(hr, error, "LocalAlloc"); } *pwszLog = L'\0'; for (i = 0; i < cArg; i++) { BOOL fQuote = NULL != wcschr(apwszArg[i], L' '); if (0 != i) { wcscat(pwszLog, L" "); } if (0 == i || !myIsSwitchChar(apwszArg[i - 1][0]) || 0 != LSTRCMPIS(&apwszArg[i - 1][1], L"p")) { if (fQuote) { wcscat(pwszLog, L"\""); } wcscat(pwszLog, apwszArg[i]); if (fQuote) { wcscat(pwszLog, L"\""); } } else { WCHAR const *pwc = apwszArg[i]; while (TRUE) { WCHAR const *pwszCat = L"-"; switch (*pwc) { case L'*': if (L'\0' == pwc[1]) { pwszCat = L"*"; } break;
case L',': pwszCat = L""; // avoid buffer overflow
break; } wcscat(pwszLog, pwszCat); pwc = wcschr(pwc, L','); if (NULL == pwc) { break; } pwc++; wcscat(pwszLog, L","); } } } CSASSERT(wcslen(pwszLog) <= cwc);
CSILOG(S_OK, IDS_LOG_COMMANDLINE, pwszLog, NULL, NULL);
hr = ArgvMain(cArg, apwszArg, hWndOwner); fMainCompleted = TRUE; _JumpIfError2(hr, error, "ArgvMain", S_FALSE);
error: if (S_OK != hr && !fMainCompleted) { cuPrintErrorAndString(L"CertUtil", idsError, hr, pwszCmdLine); } if (NULL != pwszLog) { LocalFree(pwszLog); } if (NULL != pbuf) { LocalFree(pbuf); } CSILOG(hr, S_OK != hr? IDS_LOG_STATUS : IDS_LOG_STATUSOK, NULL, NULL, NULL); return(hr);}
//**************************************************************************
// FUNCTION: MainWndProc(...)
// ARGUMENTS:
//**************************************************************************
LRESULT APIENTRYMainWndProc(HWND hWnd, UINT msg, WPARAM wParam, LPARAM lParam){ HRESULT hr; LRESULT lr = 0; WCHAR *pwszCmdLine;
switch (msg) { case WM_CREATE: case WM_SIZE: break;
case WM_DESTROY: PostQuitMessage(0); break;
case WM_DOCERTUTILMAIN: pwszCmdLine = (WCHAR*)lParam; hr = CertUtilPreMain(pwszCmdLine, hWnd);
PostQuitMessage(hr); break;
default: lr = DefWindowProc(hWnd, msg, wParam, lParam); break; } return(lr);}
//+------------------------------------------------------------------------
//
// Function: wWinMain()
//
// Synopsis: Entry Point
//
// Arguments: [hInstance] -- Instance handle
// [hPrevInstance] -- Obsolete
// [pwszCmdLine] -- App command line
// [nCmdShow] -- Starting show state
//
// History: 12/07/96 JerryK Added this Comment
//
//-------------------------------------------------------------------------
extern "C" int APIENTRYwWinMain( HINSTANCE hInstance, HINSTANCE hPrevInstance, LPWSTR pwszCmdLine, int nCmdShow){ int ret; MSG msg; WNDCLASS wcApp; HWND hWndMain;
_setmode(_fileno(stdout), _O_TEXT); _wsetlocale(LC_ALL, L".OCP"); mySetThreadUILanguage(0);
// Save the current instance
g_hInstance = hInstance;
csiLogOpen("+certutil.log"); CSILOGFILEVERSION(0, L"certutil.exe", szCSVER_STR);
// Set up the application's window class
wcApp.style = 0; wcApp.lpfnWndProc = MainWndProc; wcApp.cbClsExtra = 0; wcApp.cbWndExtra = 0; wcApp.hInstance = hInstance; wcApp.hIcon = LoadIcon(NULL,IDI_APPLICATION); wcApp.hCursor = LoadCursor(NULL,IDC_ARROW); wcApp.hbrBackground = (HBRUSH)GetStockObject(WHITE_BRUSH); wcApp.lpszMenuName = NULL; wcApp.lpszClassName = wszAppName;
if (!RegisterClass(&wcApp)) { ret = GetLastError(); goto error; }
// Create Main Window
hWndMain = CreateWindow( wszAppName, L"CertUtil Application", WS_OVERLAPPEDWINDOW, CW_USEDEFAULT, CW_USEDEFAULT, CW_USEDEFAULT, CW_USEDEFAULT, NULL, NULL, hInstance, NULL); if (NULL == hWndMain) { ret = GetLastError(); goto error; }
// Make window visible
// ShowWindow(hWndMain, nCmdShow);
// Update window client area
UpdateWindow(hWndMain);
// Send off the message to get things started
PostMessage(hWndMain, WM_DOCERTUTILMAIN, 0, (LPARAM) pwszCmdLine);
// Message Loop
while (GetMessage(&msg, NULL, 0, 0)) { TranslateMessage(&msg); DispatchMessage(&msg); } ret = (int) msg.wParam;
error: if (NULL != g_pwszDnsName) { LocalFree(g_pwszDnsName); } if (NULL != g_pwszOldName) { LocalFree(g_pwszOldName); } if (NULL != g_pwszConfigAlloc) { LocalFree(g_pwszConfigAlloc); } FreeStoreArgDescription(); myFreeResourceStrings("certutil.exe"); myFreeColumnDisplayNames(); myRegisterMemDump(); csiLogClose(); return(ret);}
|
