archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
3.8 GiB
Tree: 1b390dddff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1b390dddff'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/inc/certprot.h

218 lines
7.4 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+-------------------------------------------------------------------------
  2. // Microsoft Windows
  3. //
  4. // Copyright (C) Microsoft Corporation, 1997 - 1999
  5. //
  6. // File: certprot.h
  7. //
  8. // Contents: Certificate Protection APIs
  9. //
  10. // APIs: I_CertProtectFunction
  11. // I_CertCltProtectFunction
  12. // I_CertSrvProtectFunction
  13. //
  14. // History: 27-Nov-97 philh created
  15. //--------------------------------------------------------------------------
  17. #ifndef __CERTPROT_H__
  18. #define __CERTPROT_H__
  20. #ifdef __cplusplus
  21. extern "C" {
  22. #endif
  24. //+-------------------------------------------------------------------------
  25. // Calls the services process to do a protected certificate function,
  26. // such as, add or delete a protected root certificate.
  27. //
  28. // CryptMemFree must be called to free the returned *ppbOut.
  29. //--------------------------------------------------------------------------
  30. BOOL
  31. WINAPI
  32. I_CertProtectFunction(
  33. IN DWORD dwFuncId,
  34. IN DWORD dwFlags,
  35. IN OPTIONAL LPCWSTR pwszIn,
  36. IN OPTIONAL BYTE *pbIn,
  37. IN DWORD cbIn,
  38. OUT OPTIONAL BYTE **ppbOut,
  39. OUT OPTIONAL DWORD *pcbOut
  40. );
  42. #define CERT_PROT_INIT_ROOTS_FUNC_ID 1
  43. #define CERT_PROT_PURGE_LM_ROOTS_FUNC_ID 2
  44. #define CERT_PROT_ADD_ROOT_FUNC_ID 3
  45. #define CERT_PROT_DELETE_ROOT_FUNC_ID 4
  46. #define CERT_PROT_DELETE_UNKNOWN_ROOTS_FUNC_ID 5
  47. #define CERT_PROT_ROOT_LIST_FUNC_ID 6
  48. #define CERT_PROT_ADD_ROOT_IN_CTL_FUNC_ID 7
  49. #define CERT_PROT_LOG_EVENT_FUNC_ID 8
  52. //+-------------------------------------------------------------------------
  53. // CERT_PROT_INIT_ROOTS_FUNC_ID
  54. //
  55. // Initialize the protected list of CurrentUser roots. Note, no UI.
  56. //
  57. // No IN/OUT parameters.
  58. //--------------------------------------------------------------------------
  60. //+-------------------------------------------------------------------------
  61. // CERT_PROT_PURGE_LM_ROOTS_FUNC_ID
  62. //
  63. // Purge all CurrentUser roots from the protected list that also exist
  64. // in the LocalMachine SystemRegistry "Root" store. Also removes duplicated
  65. // certificates from the CurrentUser SystemRegistry "Root" store.
  66. //
  67. // Note, no UI. Purging can be disabled by setting the
  68. // CERT_PROT_ROOT_INHIBIT_PURGE_LM_FLAG in the registry's ProtectedRootFlags
  69. // value.
  70. //
  71. // No IN/OUT parameters.
  72. //
  73. // Even if purging is disabled, the protected list of roots is still
  74. // initialized.
  75. //--------------------------------------------------------------------------
  77. //+-------------------------------------------------------------------------
  78. // CERT_PROT_ADD_ROOT_FUNC_ID
  79. //
  80. // Add the specified certificate to the CurrentUser SystemRegistry "Root"
  81. // store and the protected list of roots. The user is prompted before doing
  82. // the add.
  83. //
  84. // pbIn and cbIn must be updated with the pointer to and length of the
  85. // serialized certificate context to be added. No other IN/OUT parameters.
  86. //--------------------------------------------------------------------------
  88. //+-------------------------------------------------------------------------
  89. // CERT_PROT_DELETE_ROOT_FUNC_ID
  90. //
  91. // Delete the specified certificate from the CurrentUser SystemRegistry "Root"
  92. // store and the protected list of roots. The user is prompted before doing
  93. // the delete.
  94. //
  95. // pbIn and cbIn must be updated with the pointer to and length of the
  96. // certificate's SHA1 hash property. No other IN/OUT parameters.
  97. //--------------------------------------------------------------------------
  99. //+-------------------------------------------------------------------------
  100. // CERT_PROT_DELETE_UNKNOWN_ROOTS_FUNC_ID
  101. //
  102. // Delete all CurrentUser roots from the protected list that don't also
  103. // exist in the CurrentUser SystemRegistry "Root" store. The user is
  104. // prompted before doing the delete.
  105. //
  106. // No IN/OUT parameters.
  107. //--------------------------------------------------------------------------
  109. //+-------------------------------------------------------------------------
  110. // CERT_PROT_ROOT_LIST_FUNC_ID
  111. //
  112. // Add or remove the signed list of certificates to/from the CurrentUser
  113. // SystemRegistry "Root" store and the protected list of roots. The user
  114. // isn't prompted before doing the add or remove.
  115. //
  116. // pbIn and cbIn must be updated with the pointer to and length of the
  117. // serialized CTL containing the signed list of roots to be added or
  118. // removed. No other IN/OUT parameters.
  119. //
  120. // CURRENTLY NOT SUPPORTED!!!
  121. //--------------------------------------------------------------------------
  123. //+-------------------------------------------------------------------------
  124. // CERT_PROT_ADD_ROOT_IN_CTL_FUNC_ID
  125. //
  126. // Add the certificate in the Auto Update CTL to the HKLM AuthRoot store.
  127. //
  128. // pbIn and cbIn must be updated with the pointer to and length of the
  129. // serialized X.509 certificate immediately followed by the
  130. // serialized CTL. No other IN/OUT parameters.
  131. //--------------------------------------------------------------------------
  133. //+-------------------------------------------------------------------------
  134. // CERT_PROT_LOG_EVENT_FUNC_ID
  135. //
  136. // Logs a crypt32 event.
  137. //
  138. // pbIn and cbIn must be updated to point to the following
  139. // CERT_PROT_EVENT_LOG_PARA data structure. It contains the parameters
  140. // passed to advapi32!ReportEventW.
  141. //
  142. // wNumString NULL terminated unicode strings immediately follow. Followed by
  143. // dwDataSize binary data bytes.
  144. //
  145. // wCategory, wNumStrings and dwDataSize are optional.
  146. //--------------------------------------------------------------------------
  147. typedef struct _CERT_PROT_EVENT_LOG_PARA {
  148. WORD wType;
  149. WORD wCategory; // OPTIONAL, may be 0
  150. DWORD dwEventID;
  151. WORD wNumStrings; // OPTIONAL, may be 0
  152. WORD wPad1;
  153. DWORD dwDataSize; // OPTIONAL, may be 0
  154. } CERT_PROT_EVENT_LOG_PARA, *PCERT_PROT_EVENT_LOG_PARA;
  156. //+-------------------------------------------------------------------------
  157. // Called from the client process to do the RPC to the server process.
  158. //--------------------------------------------------------------------------
  159. BOOL
  160. WINAPI
  161. I_CertCltProtectFunction(
  162. IN DWORD dwFuncId,
  163. IN DWORD dwFlags,
  164. IN OPTIONAL LPCWSTR pwszIn,
  165. IN OPTIONAL BYTE *pbIn,
  166. IN DWORD cbIn,
  167. OUT OPTIONAL BYTE **ppbOut,
  168. OUT OPTIONAL DWORD *pcbOut
  169. );
  173. typedef void __RPC_FAR * (__RPC_USER *PFN_CERT_PROT_MIDL_USER_ALLOC)(
  174. IN size_t cb
  175. );
  176. typedef void (__RPC_USER *PFN_CERT_PROT_MIDL_USER_FREE)(
  177. IN void __RPC_FAR *pv
  178. );
  180. //+-------------------------------------------------------------------------
  181. // Called from the services process to process a protected certificate
  182. // function.
  183. //
  184. // Returns the error status, ie, not returned in LastError.
  185. //--------------------------------------------------------------------------
  186. DWORD
  187. WINAPI
  188. I_CertSrvProtectFunction(
  189. IN handle_t hRpc,
  190. IN DWORD dwFuncId,
  191. IN DWORD dwFlags,
  192. IN LPCWSTR pwszIn,
  193. IN BYTE *pbIn,
  194. IN DWORD cbIn,
  195. OUT BYTE **ppbOut,
  196. OUT DWORD *pcbOut,
  197. IN PFN_CERT_PROT_MIDL_USER_ALLOC pfnAlloc,
  198. IN PFN_CERT_PROT_MIDL_USER_FREE pfnFree
  199. );
  201. typedef DWORD (WINAPI *PFN_CERT_SRV_PROTECT_FUNCTION)(
  202. IN handle_t hRpc,
  203. IN DWORD dwFuncId,
  204. IN DWORD dwFlags,
  205. IN LPCWSTR pwszIn,
  206. IN BYTE *pbIn,
  207. IN DWORD cbIn,
  208. OUT BYTE **ppbOut,
  209. OUT DWORD *pcbOut,
  210. IN PFN_CERT_PROT_MIDL_USER_ALLOC pfnAlloc,
  211. IN PFN_CERT_PROT_MIDL_USER_FREE pfnFree
  212. );
  214. #ifdef __cplusplus
  215. } // Balance extern "C" above
  216. #endif
  218. #endif