archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
4.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/inetsrv/iis/svcs/admex/cmdline/admext.cxx

545 lines
17 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. #define INITGUID
  2. #include <windows.h>
  3. #include <stdio.h>
  4. #include <ole2.h>
  5. #define USE_CAPI2
  6. #if defined(USE_CAPI2)
  7. #include <wincrypt.h>
  8. #endif
  9. #include "admex.h"
  11. //
  12. // HRESULTTOWIN32() maps an HRESULT to a Win32 error. If the facility code
  13. // of the HRESULT is FACILITY_WIN32, then the code portion (i.e. the
  14. // original Win32 error) is returned. Otherwise, the original HRESULT is
  15. // returned unchagned.
  16. //
  18. #define HRESULTTOWIN32(hres) \
  19. ((HRESULT_FACILITY(hres) == FACILITY_WIN32) \
  20. ? HRESULT_CODE(hres) \
  21. : (hres))
  24. #define RETURNCODETOHRESULT(rc) \
  25. (((rc) < 0x10000) \
  26. ? HRESULT_FROM_WIN32(rc) \
  27. : (rc))
  29. #define PAD4(a) (((a)+3)&~3)
  31. VOID
  32. DisplayErrorMessage(
  33. DWORD dwErr,
  34. DWORD dwMsg = 0
  35. );
  37. /////////////////////////////////////////////////////
  39. VOID
  40. DisplayErrorMessage(
  41. DWORD dwErr,
  42. DWORD dwMsg
  43. )
  44. {
  45. LPSTR pErr;
  46. CHAR achMsg[2048];
  48. if ( dwMsg != 0 )
  49. {
  50. if ( LoadString( NULL, dwMsg, achMsg, sizeof(achMsg) ) )
  51. {
  52. printf( achMsg );
  53. }
  54. }
  56. if ( FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
  57. NULL,
  58. dwErr,
  59. MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT),
  60. (LPSTR)&pErr,
  61. 0,
  62. NULL ) )
  63. {
  64. puts( pErr );
  66. LocalFree( pErr );
  67. }
  68. }
  71. VOID
  72. Dump(
  73. LPSTR pszMsg,
  74. LPBYTE pb,
  75. DWORD dw
  76. )
  77. {
  78. printf( "%s size is %d\n", pszMsg, dw );
  80. for ( UINT x = 0 ; x < dw ; ++x )
  81. {
  82. printf( "%02x ", pb[x] );
  83. }
  85. if ( dw )
  86. {
  87. printf( "\n" );
  88. }
  89. }
  92. int __cdecl main( int argc, char*argv[] )
  93. {
  94. IMSAdminReplication* pIf;
  95. IMSAdminCryptoCapabilities* pIfS;
  96. IClassFactory* pcsfFactory = NULL;
  97. int iA;
  98. HRESULT hRes;
  99. COSERVERINFO csiMachineName;
  100. WCHAR awchComputer[64];
  101. BYTE abBuf[32768];
  102. DWORD dwReqSize;
  103. MULTI_QI rgmq;
  104. LPSTR pszMachineName = NULL;
  105. int arg;
  106. BOOL fDoTest = FALSE;
  107. HKEY hKey;
  108. CHAR achName[128];
  109. DWORD dwNameLen;
  110. DWORD dwValueLen;
  111. DWORD dwType;
  112. int iV, iV2;
  113. LPBYTE pbSerial;
  114. DWORD dwSerialLen, dwSerialLen2;
  115. DWORD dwErr;
  117. for ( arg = 1 ; arg < argc ; ++arg )
  118. {
  119. if ( argv[arg][0] == '-' )
  120. {
  121. switch ( argv[arg][1] )
  122. {
  123. case 'm':
  124. pszMachineName = argv[arg]+2;
  125. break;
  127. case 't':
  128. fDoTest = TRUE;
  129. break;
  130. }
  131. }
  132. }
  134. if ( argc < 1 )
  135. {
  136. CHAR achMsg[2048];
  138. if ( LoadString( NULL, 100, achMsg, sizeof(achMsg) ) )
  139. {
  140. printf( achMsg );
  141. }
  142. return 3;
  143. }
  145. //fill the structure for CoCreateInstanceEx
  146. ZeroMemory( &csiMachineName, sizeof(csiMachineName) );
  147. // csiMachineName.pAuthInfo = NULL;
  148. // csiMachineName.dwFlags = 0;
  149. // csiMachineName.pServerInfoExt = NULL;
  151. if ( pszMachineName )
  152. {
  153. if ( !MultiByteToWideChar( CP_ACP,
  154. MB_PRECOMPOSED,
  155. pszMachineName,
  156. -1,
  157. awchComputer,
  158. sizeof(awchComputer) ) )
  159. {
  160. return FALSE;
  161. }
  163. csiMachineName.pwszName = awchComputer;
  164. }
  165. else
  166. {
  167. csiMachineName.pwszName = NULL;
  168. }
  170. CoInitializeEx( NULL, COINIT_MULTITHREADED );
  172. if ( fDoTest )
  173. {
  174. hRes = CoGetClassObject(CLSID_MSCryptoAdmEx, CLSCTX_SERVER, &csiMachineName,
  175. IID_IClassFactory, (void**) &pcsfFactory);
  176. if ( SUCCEEDED( hRes ) )
  177. {
  178. hRes = pcsfFactory->CreateInstance(NULL, IID_IMSAdminReplication, (void **) &rgmq.pItf);
  179. if ( SUCCEEDED( hRes ) )
  180. {
  181. rgmq.pItf->Release();
  182. }
  183. else
  184. {
  185. DisplayErrorMessage( HRESULTTOWIN32( hRes ) );
  186. }
  187. pcsfFactory->Release();
  188. }
  189. else
  190. {
  191. DisplayErrorMessage( HRESULTTOWIN32( hRes ) );
  192. }
  194. //
  195. // call replication I/F
  196. //
  198. rgmq.pIID = &IID_IMSAdminReplication;
  199. rgmq.pItf = NULL;
  200. rgmq.hr = 0;
  202. if ( SUCCEEDED( hRes = CoCreateInstanceEx( CLSID_MSCryptoAdmEx,
  203. NULL,
  204. CLSCTX_SERVER,
  205. &csiMachineName,
  206. 1,
  207. &rgmq ) ) &&
  208. SUCCEEDED( hRes = rgmq.hr ) )
  209. {
  210. pIf = (IMSAdminReplication*)rgmq.pItf;
  212. hRes = pIf->GetSignature( sizeof(abBuf), abBuf, &dwReqSize );
  213. if ( SUCCEEDED( hRes ) )
  214. {
  215. Dump( "GetSignature:", abBuf, dwReqSize );
  217. hRes = pIf->Serialize( sizeof(abBuf), abBuf, &dwReqSize );
  218. }
  220. if ( SUCCEEDED( hRes ) )
  221. {
  222. Dump( "Serialize:", abBuf, dwReqSize );
  224. hRes = pIf->DeSerialize( dwReqSize, abBuf );
  225. }
  227. pIf->Release();
  229. if ( FAILED( hRes ) )
  230. {
  231. DisplayErrorMessage( HRESULTTOWIN32( hRes ) );
  232. }
  233. }
  234. else
  235. {
  236. DisplayErrorMessage( HRESULTTOWIN32( hRes ) );
  237. }
  239. //
  240. // call crypto capabilities I/F
  241. //
  243. rgmq.pIID = &IID_IMSAdminCryptoCapabilities;
  244. rgmq.pItf = NULL;
  245. rgmq.hr = 0;
  247. if ( SUCCEEDED( hRes = CoCreateInstanceEx( CLSID_MSCryptoAdmEx,
  248. NULL,
  249. CLSCTX_SERVER,
  250. &csiMachineName,
  251. 1,
  252. &rgmq ) ) &&
  253. SUCCEEDED( hRes = rgmq.hr ) )
  254. {
  255. pIfS = (IMSAdminCryptoCapabilities*)rgmq.pItf;
  257. hRes = pIfS->GetProtocols( sizeof(abBuf), abBuf, &dwReqSize );
  259. if ( SUCCEEDED(hRes) )
  260. {
  261. Dump( "Protocols:", abBuf, dwReqSize );
  263. hRes = pIfS->GetSupportedAlgs( sizeof(abBuf), (LPDWORD)abBuf, &dwReqSize );
  264. }
  266. if ( SUCCEEDED(hRes) )
  267. {
  268. Dump( "Algs:", abBuf, dwReqSize );
  270. hRes = pIfS->GetRootCertificates( sizeof(abBuf), abBuf, &dwReqSize );
  271. }
  273. if ( SUCCEEDED(hRes) )
  274. {
  275. Dump( "CAs:", abBuf, dwReqSize );
  277. hRes = pIfS->GetMaximumCipherStrength( &dwReqSize );
  278. }
  280. if ( SUCCEEDED(hRes) )
  281. {
  282. Dump( "Cipher strength:", (LPBYTE)&dwReqSize, sizeof(DWORD) );
  283. }
  285. pIfS->Release();
  287. if ( FAILED( hRes ) )
  288. {
  289. DisplayErrorMessage( HRESULTTOWIN32( hRes ) );
  290. }
  291. }
  292. else
  293. {
  294. DisplayErrorMessage( HRESULTTOWIN32( hRes ) );
  295. }
  296. }
  297. else
  298. {
  299. //
  300. // Check full access to registry ( granted only to administrators )
  301. //
  303. if ( (dwErr = RegOpenKeyEx( HKEY_LOCAL_MACHINE,
  304. "SYSTEM\\CurrentControlSet\\Services\\InetInfo\\Parameters",
  305. 0,
  306. KEY_ALL_ACCESS,
  307. &hKey )) == ERROR_SUCCESS )
  308. {
  309. RegCloseKey( hKey );
  310. }
  311. else
  312. {
  313. hRes = RETURNCODETOHRESULT( dwErr );
  314. }
  316. if ( SUCCEEDED( hRes ) )
  317. {
  318. hRes = CoGetClassObject(CLSID_MSCryptoAdmEx, CLSCTX_SERVER, &csiMachineName,
  319. IID_IClassFactory, (void**) &pcsfFactory);
  320. }
  322. if ( SUCCEEDED( hRes ) )
  323. {
  324. hRes = pcsfFactory->CreateInstance(NULL, IID_IMSAdminCryptoCapabilities, (void **) &pIfS);
  325. if ( FAILED( hRes ) )
  326. {
  327. DisplayErrorMessage( HRESULTTOWIN32( hRes ) );
  328. }
  329. else
  330. {
  331. //
  332. // get CA list
  333. //
  335. #if defined(USE_CAPI2)
  337. HCERTSTORE hStore = NULL;
  338. BOOL fReturn = FALSE;
  339. PCCERT_CONTEXT pCtx;
  341. hStore = CertOpenStore( CERT_STORE_PROV_SYSTEM_A,
  342. 0,
  343. NULL,
  344. CERT_SYSTEM_STORE_CURRENT_USER,
  345. "ROOT" );
  347. if ( hStore )
  348. {
  349. for ( pCtx = NULL, dwSerialLen = 0 ;
  350. pCtx = CertEnumCertificatesInStore( hStore, pCtx ) ; )
  351. {
  352. // CertDeleteCertificateFromStore, CertAddSerializedElementToStore
  353. dwValueLen = sizeof(abBuf);
  354. if ( CertSerializeCertificateStoreElement( pCtx, 0, NULL, &dwValueLen ) )
  355. {
  356. dwSerialLen += sizeof(DWORD) + PAD4(dwValueLen);
  357. }
  358. else
  359. {
  360. hRes = RETURNCODETOHRESULT( GetLastError() );
  361. break;
  362. }
  363. }
  364. }
  365. else
  366. {
  367. hRes = RETURNCODETOHRESULT( GetLastError() );
  368. }
  370. if ( SUCCEEDED( hRes ) )
  371. {
  372. if ( pbSerial = (LPBYTE)LocalAlloc( LMEM_FIXED, dwSerialLen ) )
  373. {
  374. for ( pCtx = NULL, dwSerialLen2 = 0 ;
  375. pCtx = CertEnumCertificatesInStore( hStore, pCtx ) ; )
  376. {
  377. dwValueLen = dwSerialLen - dwSerialLen2 - sizeof(DWORD);
  378. if ( CertSerializeCertificateStoreElement( pCtx, 0, pbSerial + dwSerialLen2 + sizeof(DWORD), &dwValueLen ) )
  379. {
  380. *(LPDWORD)(pbSerial+dwSerialLen2) = dwValueLen;
  381. dwSerialLen2 += sizeof(DWORD) + PAD4(dwValueLen);
  382. }
  383. else
  384. {
  385. hRes = RETURNCODETOHRESULT( GetLastError() );
  386. break;
  387. }
  388. }
  390. if ( SUCCEEDED( hRes ) )
  391. {
  392. //
  393. // call deserialize. This will be invoked in IIS SYSTEM context
  394. //
  396. hRes = pIfS->SetCAList( dwSerialLen2, pbSerial );
  397. }
  399. LocalFree( pbSerial );
  400. }
  401. else
  402. {
  403. hRes = E_OUTOFMEMORY;
  404. }
  405. }
  407. if ( hStore )
  408. {
  409. CertCloseStore( hStore, CERT_CLOSE_STORE_FORCE_FLAG );
  410. }
  412. #else
  414. if ( (dwErr = RegOpenKeyEx( HKEY_CURRENT_USER,
  415. "Software\\Microsoft\\SystemCertificates\\ROOT\\Certificates",
  416. 0,
  417. KEY_READ,
  418. &hKey )) == ERROR_SUCCESS )
  419. {
  420. //
  421. // compute length of serialized CA list
  422. //
  424. for ( iV = 0, dwSerialLen = 0 ; ; ++iV )
  425. {
  426. dwNameLen = sizeof( achName );
  427. dwValueLen = sizeof(abBuf);
  428. if ( RegEnumValue( hKey,
  429. iV,
  430. achName,
  431. &dwNameLen,
  432. NULL,
  433. &dwType,
  434. abBuf,
  435. &dwValueLen ) != ERROR_SUCCESS )
  436. {
  437. break;
  438. }
  439. ++dwNameLen;
  440. dwSerialLen += sizeof(DWORD) + PAD4(dwNameLen) + sizeof(DWORD) + PAD4(dwValueLen);
  441. }
  443. if ( pbSerial = (LPBYTE)LocalAlloc( LMEM_FIXED, dwSerialLen ) )
  444. {
  445. //
  446. // build serialized list
  447. //
  449. for ( iV2 = 0, dwSerialLen2 = 0 ;; ++iV2 )
  450. {
  451. dwNameLen = sizeof( achName );
  452. dwValueLen = sizeof(abBuf);
  453. if ( RegEnumValue( hKey,
  454. iV2,
  455. achName,
  456. &dwNameLen,
  457. NULL,
  458. &dwType,
  459. abBuf,
  460. &dwValueLen ) != ERROR_SUCCESS )
  461. {
  462. break;
  463. }
  464. ++dwNameLen;
  466. if ( iV2 == iV ||
  467. dwSerialLen2 + sizeof(DWORD) + PAD4(dwNameLen) + sizeof(DWORD) + PAD4(dwValueLen) > dwSerialLen )
  468. {
  469. hRes = E_OUTOFMEMORY;
  470. break;
  471. }
  473. // each element ( name or content ) is stored prefixed by
  474. // a DWORD length. element actual storage is padded
  475. // so that length is multiple of 4, to make sure following
  476. // DWORDs are DWORD aligned.
  478. // store value name ( includes zero byte delimiter )
  480. *(LPDWORD)(pbSerial+dwSerialLen2) = dwNameLen;
  481. dwSerialLen2 += sizeof(DWORD);
  482. memcpy( pbSerial+dwSerialLen2, achName, dwNameLen );
  483. dwSerialLen2 += PAD4(dwNameLen);
  485. // store value content
  487. *(LPDWORD)(pbSerial+dwSerialLen2) = dwValueLen;
  488. dwSerialLen2 += sizeof(DWORD);
  489. memcpy( pbSerial+dwSerialLen2, abBuf, dwValueLen );
  490. dwSerialLen2 += PAD4(dwValueLen);
  491. }
  493. if ( SUCCEEDED( hRes ) )
  494. {
  495. //
  496. // call deserialize. This will be invoked in IIS SYSTEM context
  497. //
  499. hRes = pIfS->SetCAList( dwSerialLen2, pbSerial );
  500. }
  502. LocalFree( pbSerial );
  503. }
  504. else
  505. {
  506. hRes = E_OUTOFMEMORY;
  507. }
  509. RegCloseKey( hKey );
  510. }
  511. else
  512. {
  513. hRes = RETURNCODETOHRESULT( dwErr );
  514. }
  516. #endif
  517. if ( FAILED(hRes) )
  518. {
  519. DisplayErrorMessage( HRESULTTOWIN32( hRes ), 102 );
  520. }
  521. else
  522. {
  523. CHAR achMsg[2048];
  525. if ( LoadString( NULL, 101, achMsg, sizeof(achMsg) ) )
  526. {
  527. printf( achMsg );
  528. }
  529. }
  531. pIfS->Release();
  532. }
  533. pcsfFactory->Release();
  534. }
  535. else
  536. {
  537. DisplayErrorMessage( HRESULTTOWIN32( hRes ), 102 );
  538. }
  540. }
  542. CoUninitialize();
  544. return SUCCEEDED(hRes) ? 0 : 1;
  545. }