archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 1b390dddff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1b390dddff'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/ca/certclib/ctnotify.cpp

335 lines
9.1 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 2000
  5. //
  6. // File: ctnotify.cpp
  7. //
  8. // Contents: Cert Type Change Notification APIS
  9. //
  10. //---------------------------------------------------------------------------
  11. #include "pch.cpp"
  13. #pragma hdrstop
  15. #include <winldap.h>
  16. #include <ntldap.h>
  17. #include <cainfop.h>
  18. #include <ctnotify.h>
  19. #include <certca.h>
  20. #include "csldap.h"
  22. static WCHAR * s_wszLocation = L"CN=Certificate Templates,CN=Public Key Services,CN=Services,";
  24. //-----------------------------------------------------------------------
  25. //
  26. // CertTypeQueryProc
  27. //
  28. // The thread to recieve change notification from DS
  29. //
  30. //-----------------------------------------------------------------------
  31. DWORD WINAPI CertTypeQueryProc(LPVOID lpParameter)
  32. {
  33. CERTTYPE_QUERY_INFO *pCertTypeQueryInfo=NULL;
  34. ULONG ldaperr=0;
  36. LDAPMessage *results = NULL;
  38. if(NULL==lpParameter)
  39. return FALSE;
  41. pCertTypeQueryInfo = (CERTTYPE_QUERY_INFO *)lpParameter;
  43. //we wait for the notifications
  44. while(TRUE)
  45. {
  46. ldaperr = ldap_result(
  47. pCertTypeQueryInfo->pldap,
  48. pCertTypeQueryInfo->msgID, // message identifier
  49. LDAP_MSG_ONE, // retrieve one message at a time
  50. NULL, // no timeout
  51. &results); // receives the search results
  53. if ((ldaperr == (ULONG) -1) || ((results) == NULL))
  54. {
  55. //the result failed
  56. break;
  57. }
  59. //some change has happened.
  60. (pCertTypeQueryInfo->dwChangeSequence)++;
  62. //make sure that we will never return 0
  63. if(0 == (pCertTypeQueryInfo->dwChangeSequence))
  64. {
  65. (pCertTypeQueryInfo->dwChangeSequence)++;
  66. }
  68. ldap_msgfree(results);
  69. results=NULL;
  70. }
  72. return TRUE;
  73. }
  75. //---------------------------------------------------------------------------
  76. //
  77. // CACertTypeRegisterQuery
  78. //
  79. //---------------------------------------------------------------------------
  80. HRESULT
  81. CACertTypeRegisterQuery(
  82. IN DWORD dwFlag,
  83. IN LPVOID pvldap,
  84. OUT HCERTTYPEQUERY *phCertTypeQuery)
  85. {
  88. HRESULT hr=E_INVALIDARG;
  89. LDAPControl simpleControl;
  90. PLDAPControl controlArray[2];
  91. LPWSTR rgwszAttribs[2];
  92. ULONG ldaperr=0;
  93. DWORD dwThreadID=0;
  94. LDAP *pldap=NULL;
  96. CERTSTR bstrConfig = NULL;
  97. CERTSTR bstrCertTemplatesContainer = NULL;
  98. //memory is freed via the thread proc
  99. CERTTYPE_QUERY_INFO *pCertTypeQueryInfo=NULL;
  102. //assign the input parameter
  103. pldap = (LDAP *)pvldap;
  106. if(NULL==phCertTypeQuery)
  107. _JumpError(hr, error, "NULL param");
  109. pCertTypeQueryInfo=(CERTTYPE_QUERY_INFO *)LocalAlloc(LPTR, sizeof(CERTTYPE_QUERY_INFO));
  111. if(NULL==pCertTypeQueryInfo)
  112. {
  113. hr=E_OUTOFMEMORY;
  114. _JumpError(hr, error, "LocalAlloc");
  115. }
  117. memset(pCertTypeQueryInfo, 0, sizeof(CERTTYPE_QUERY_INFO));
  119. //we start the change sequence as 1
  120. pCertTypeQueryInfo->dwChangeSequence = 1;
  122. //bind to DS
  123. if(pldap)
  124. {
  125. pCertTypeQueryInfo->pldap=pldap;
  126. }
  127. else
  128. {
  129. //retrieve the ldap handle
  130. if(S_OK != (hr = myDoesDSExist(TRUE)))
  131. _JumpError(hr , error, "myDoesDSExist");
  133. hr = myRobustLdapBindEx(
  134. FALSE, // fGC
  135. FALSE, // fRediscover
  136. LDAP_VERSION3, // uVersion
  137. NULL, // pwszDomainName
  138. &pCertTypeQueryInfo->pldap,
  139. NULL); // ppwszForestDNSName
  140. _JumpIfError(hr , error, "myRobustLdapBindEx");
  142. pCertTypeQueryInfo->fUnbind=TRUE;
  143. }
  145. //retrieve the config string
  146. hr = CAGetAuthoritativeDomainDn(pCertTypeQueryInfo->pldap, NULL, &bstrConfig);
  147. if(S_OK != hr)
  148. {
  149. _JumpError(hr , error, "CAGetAuthoritativeDomainDn");
  150. }
  152. //build the template container DN
  153. bstrCertTemplatesContainer = CertAllocStringLen(NULL, wcslen(bstrConfig) + wcslen(s_wszLocation));
  154. if(bstrCertTemplatesContainer == NULL)
  155. {
  156. hr = E_OUTOFMEMORY;
  157. _JumpError(hr, error, "CertAllocStringLen");
  158. }
  159. wcscpy(bstrCertTemplatesContainer, s_wszLocation);
  160. wcscat(bstrCertTemplatesContainer, bstrConfig);
  162. // Set up the change notification control.
  163. simpleControl.ldctl_oid = LDAP_SERVER_NOTIFICATION_OID_W;
  164. simpleControl.ldctl_iscritical = TRUE;
  165. simpleControl.ldctl_value.bv_len = 0;
  166. simpleControl.ldctl_value.bv_val = NULL;
  167. controlArray[0] = &simpleControl;
  168. controlArray[1] = NULL;
  170. rgwszAttribs[0] = L"cn";
  171. rgwszAttribs[1] = NULL;
  174. // Start a persistent asynchronous search.
  175. ldaperr = ldap_search_ext(
  176. pCertTypeQueryInfo->pldap,
  177. (PWCHAR) bstrCertTemplatesContainer, // Template container DN
  178. LDAP_SCOPE_ONELEVEL,
  179. L"ObjectClass=*",
  180. rgwszAttribs, // Attributes to retrieve
  181. 1, // Retrieve attributes only
  182. (PLDAPControl *) &controlArray, // Server size controls
  183. NULL, // Client controls
  184. 0, // Timeout
  185. 0, // Sizelimit
  186. (PULONG)&(pCertTypeQueryInfo->msgID) // Receives identifier for results
  187. );
  189. if (LDAP_SUCCESS != ldaperr)
  190. {
  191. hr = myHLdapError(pCertTypeQueryInfo->pldap, ldaperr, NULL);
  192. _JumpError(hr, error, "ldap_search_ext");
  193. }
  195. //start a thread to wait for the notification
  196. pCertTypeQueryInfo->hThread = CreateThread(
  197. NULL,
  198. 0,
  199. CertTypeQueryProc,
  200. pCertTypeQueryInfo,
  201. 0, //execute immediately
  202. &dwThreadID);
  204. if(NULL == pCertTypeQueryInfo->hThread)
  205. {
  206. hr=myHError(GetLastError());
  207. _JumpError(hr, error, "CreateThread");
  208. }
  210. *phCertTypeQuery=pCertTypeQueryInfo;
  212. pCertTypeQueryInfo=NULL;
  214. hr=S_OK;
  216. error:
  218. if(bstrConfig)
  219. CertFreeString(bstrConfig);
  221. if(bstrCertTemplatesContainer)
  222. {
  223. CertFreeString(bstrCertTemplatesContainer);
  224. }
  226. if(pCertTypeQueryInfo)
  227. {
  228. if(pCertTypeQueryInfo->fUnbind)
  229. {
  230. if(pCertTypeQueryInfo->pldap)
  231. ldap_unbind(pCertTypeQueryInfo->pldap);
  232. }
  234. if(pCertTypeQueryInfo->hThread)
  235. CloseHandle(pCertTypeQueryInfo->hThread);
  237. LocalFree(pCertTypeQueryInfo);
  239. pCertTypeQueryInfo=NULL;
  240. }
  242. return hr;
  244. }
  248. //---------------------------------------------------------------------------
  249. //
  250. // CACertTypeQuery
  251. //
  252. //---------------------------------------------------------------------------
  253. HRESULT
  254. CACertTypeQuery(
  255. IN HCERTTYPEQUERY hCertTypeQuery,
  256. OUT DWORD *pdwChangeSequence)
  257. {
  258. CERTTYPE_QUERY_INFO *pCertTypeQueryInfo=NULL;
  260. if((NULL==pdwChangeSequence) || (NULL==hCertTypeQuery))
  261. return E_INVALIDARG;
  263. pCertTypeQueryInfo = (CERTTYPE_QUERY_INFO *)hCertTypeQuery;
  265. *pdwChangeSequence = pCertTypeQueryInfo->dwChangeSequence;
  267. return S_OK;
  268. }
  272. //---------------------------------------------------------------------------
  273. //
  274. // CACertTypeUnregisterQuery
  275. //
  276. //---------------------------------------------------------------------------
  277. HRESULT
  278. CACertTypeUnregisterQuery(
  279. IN HCERTTYPEQUERY hCertTypeQuery)
  280. {
  281. CERTTYPE_QUERY_INFO *pCertTypeQueryInfo=NULL;
  282. ULONG ldaperr=0;
  283. HRESULT hr=E_INVALIDARG;
  284. DWORD dwWait=0;
  286. if(NULL==hCertTypeQuery)
  287. _JumpError(hr, error, "NULL param");
  289. pCertTypeQueryInfo = (CERTTYPE_QUERY_INFO *)hCertTypeQuery;
  291. if(NULL == (pCertTypeQueryInfo->pldap))
  292. _JumpError(hr, error, "NULL pldap");
  294. //abandom the in-progress asynchronous ldap_result call
  295. ldaperr=ldap_abandon(pCertTypeQueryInfo->pldap, pCertTypeQueryInfo->msgID);
  297. if(LDAP_SUCCESS != ldaperr)
  298. {
  299. hr = myHLdapError(pCertTypeQueryInfo->pldap, ldaperr, NULL);
  300. _JumpError(hr, error, "ldap_abandon");
  301. }
  303. //wait for the thread to finish
  304. dwWait = WaitForSingleObject(pCertTypeQueryInfo->hThread, INFINITE);
  306. if(WAIT_OBJECT_0 != dwWait)
  307. {
  308. hr = myHError(GetLastError());
  309. _JumpError(hr, error, "WaitForSingleObject");
  310. }
  312. hr=S_OK;
  314. error:
  316. //free the memory
  317. if(pCertTypeQueryInfo)
  318. {
  319. if(pCertTypeQueryInfo->fUnbind)
  320. {
  321. if(pCertTypeQueryInfo->pldap)
  322. ldap_unbind(pCertTypeQueryInfo->pldap);
  323. }
  325. if(pCertTypeQueryInfo->hThread)
  326. CloseHandle(pCertTypeQueryInfo->hThread);
  328. LocalFree(pCertTypeQueryInfo);
  330. pCertTypeQueryInfo=NULL;
  331. }
  333. return hr;
  334. }