archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/ca/certadm/admin.cpp

1099 lines
25 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 1999
  5. //
  6. // File: admin.cpp
  7. //
  8. // Contents: Cert Server admin implementation
  9. //
  10. // History: 24-Aug-96 vich created
  11. //
  12. //---------------------------------------------------------------------------
  14. #include "pch.cpp"
  16. #pragma hdrstop
  18. #include <objbase.h>
  19. #include "certsrvd.h"
  21. #include "certbcli.h"
  22. #include "csprop.h"
  23. #include "csdisp.h"
  24. #include "admin.h"
  25. #include "certadmp.h"
  26. #include "config.h"
  28. #define __dwFILE__ __dwFILE_CERTADM_ADMIN_CPP__
  31. //+--------------------------------------------------------------------------
  32. // CCertAdmin::~CCertAdmin -- destructor
  33. //
  34. // free memory associated with this instance
  35. //+--------------------------------------------------------------------------
  37. CCertAdmin::~CCertAdmin()
  38. {
  39. _Cleanup();
  40. }
  43. //+--------------------------------------------------------------------------
  44. // CCertAdmin::_CleanupOldConnection -- free memory
  45. //
  46. // free memory associated with this instance
  47. //+--------------------------------------------------------------------------
  49. VOID
  50. CCertAdmin::_CleanupOldConnection()
  51. {
  52. _CleanupCAPropInfo();
  53. }
  56. //+--------------------------------------------------------------------------
  57. // CCertAdmin::_Cleanup -- free memory
  58. //
  59. // free memory associated with this instance
  60. //+--------------------------------------------------------------------------
  62. VOID
  63. CCertAdmin::_Cleanup()
  64. {
  65. _CloseConnection();
  66. _CleanupOldConnection();
  67. }
  70. //+--------------------------------------------------------------------------
  71. // CCertAdmin::_OpenConnection -- get DCOM object interface
  72. //
  73. //+--------------------------------------------------------------------------
  75. HRESULT
  76. CCertAdmin::_OpenConnection(
  77. IN WCHAR const *pwszConfig,
  78. IN DWORD RequiredVersion,
  79. OUT WCHAR const **ppwszAuthority)
  80. {
  81. HRESULT hr;
  83. hr = myOpenAdminDComConnection(
  84. pwszConfig,
  85. ppwszAuthority,
  86. &m_pwszServerName,
  87. &m_dwServerVersion,
  88. &m_pICertAdminD);
  89. _JumpIfError(hr, error, "myOpenAdminDComConnection");
  91. CSASSERT(NULL != m_pICertAdminD);
  92. CSASSERT(0 != m_dwServerVersion);
  94. if (m_dwServerVersion < RequiredVersion)
  95. {
  96. hr = RPC_E_VERSION_MISMATCH;
  97. _JumpError(hr, error, "old server");
  98. }
  100. error:
  101. return(hr);
  102. }
  105. //+--------------------------------------------------------------------------
  106. // CCertAdmin::_CloseConnection -- release DCOM object
  107. //
  108. //+--------------------------------------------------------------------------
  110. VOID
  111. CCertAdmin::_CloseConnection()
  112. {
  113. myCloseDComConnection((IUnknown **) &m_pICertAdminD, &m_pwszServerName);
  114. m_dwServerVersion = 0;
  115. }
  118. //+--------------------------------------------------------------------------
  119. // CCertAdmin::IsValidCertificate -- Verify certificate validity
  120. //
  121. // ...
  122. //
  123. // Returns S_OK on success.
  124. //+--------------------------------------------------------------------------
  126. STDMETHODIMP
  127. CCertAdmin::IsValidCertificate(
  128. /* [in] */ BSTR const strConfig,
  129. /* [in] */ BSTR const strSerialNumber,
  130. /* [out, retval] */ LONG *pDisposition)
  131. {
  132. HRESULT hr;
  133. WCHAR const *pwszAuthority;
  135. if (NULL == strSerialNumber || NULL == pDisposition)
  136. {
  137. hr = E_POINTER;
  138. _JumpError(hr, error, "NULL parm");
  139. }
  141. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  142. _JumpIfError(hr, error, "_OpenConnection");
  144. m_fRevocationReasonValid = FALSE;
  145. __try
  146. {
  147. hr = m_pICertAdminD->IsValidCertificate(
  148. pwszAuthority,
  149. strSerialNumber,
  150. &m_RevocationReason,
  151. pDisposition);
  153. if (S_OK != hr || CA_DISP_REVOKED != *pDisposition)
  154. {
  155. m_fRevocationReasonValid = FALSE;
  156. }
  157. else
  158. {
  159. m_fRevocationReasonValid = TRUE;
  160. }
  161. }
  162. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  163. {
  164. }
  165. _JumpIfError(hr, error, "IsValidCertificate");
  167. m_fRevocationReasonValid = TRUE;
  169. error:
  170. hr = myHError(hr);
  171. return(_SetErrorInfo(hr, L"CCertAdmin::IsValidCertificate"));
  172. }
  175. //+--------------------------------------------------------------------------
  176. // CCertAdmin::GetRevocationReason -- Get Revocation Reason
  177. //
  178. // ...
  179. //
  180. // Returns S_OK on success.
  181. //+--------------------------------------------------------------------------
  183. STDMETHODIMP
  184. CCertAdmin::GetRevocationReason(
  185. /* [out, retval] */ LONG *pReason)
  186. {
  187. HRESULT hr = S_OK;
  189. if (NULL == pReason)
  190. {
  191. hr = E_POINTER;
  192. _JumpError(hr, error, "NULL parm");
  193. }
  194. if (!m_fRevocationReasonValid)
  195. {
  196. hr = E_UNEXPECTED;
  197. _JumpError(hr, error, "m_fRevocationReasonValid");
  198. }
  199. *pReason = m_RevocationReason;
  201. error:
  202. return(_SetErrorInfo(hr, L"CCertAdmin::GetRevocationReason"));
  203. }
  206. //+--------------------------------------------------------------------------
  207. // CCertAdmin::RevokeCertificate -- Revoke a certificate
  208. //
  209. // ...
  210. //
  211. // Returns S_OK on success.
  212. //+--------------------------------------------------------------------------
  214. STDMETHODIMP
  215. CCertAdmin::RevokeCertificate(
  216. /* [in] */ BSTR const strConfig,
  217. /* [in] */ BSTR const strSerialNumber,
  218. /* [in] */ LONG Reason,
  219. /* [in] */ DATE Date)
  220. {
  221. HRESULT hr;
  222. WCHAR const *pwszAuthority;
  223. FILETIME ft;
  225. if (NULL == strConfig || NULL == strSerialNumber)
  226. {
  227. hr = E_POINTER;
  228. _JumpError(hr, error, "NULL parm");
  229. }
  230. hr = myDateToFileTime(&Date, &ft);
  231. _JumpIfError(hr, error, "myDateToFileTime");
  233. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  234. _JumpIfError(hr, error, "_OpenConnection");
  236. __try
  237. {
  238. hr = m_pICertAdminD->RevokeCertificate(
  239. pwszAuthority,
  240. strSerialNumber,
  241. Reason,
  242. ft);
  243. }
  244. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  245. {
  246. }
  247. _JumpIfError(hr, error, "RevokeCertificate");
  249. error:
  250. hr = myHError(hr);
  251. return(_SetErrorInfo(hr, L"CCertAdmin::RevokeCertificate"));
  252. }
  255. //+--------------------------------------------------------------------------
  256. // CCertAdmin::SetRequestAttributes -- Add request attributes
  257. //
  258. // ...
  259. //
  260. // Returns S_OK on success.
  261. //+--------------------------------------------------------------------------
  263. STDMETHODIMP
  264. CCertAdmin::SetRequestAttributes(
  265. /* [in] */ BSTR const strConfig,
  266. /* [in] */ LONG RequestId,
  267. /* [in] */ BSTR const strAttributes)
  268. {
  269. HRESULT hr;
  270. WCHAR const *pwszAuthority;
  272. if (NULL == strAttributes)
  273. {
  274. hr = E_POINTER;
  275. _JumpError(hr, error, "NULL parm");
  276. }
  277. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  278. _JumpIfError(hr, error, "_OpenConnection");
  280. __try
  281. {
  282. hr = m_pICertAdminD->SetAttributes(
  283. pwszAuthority,
  284. (DWORD) RequestId,
  285. strAttributes);
  286. }
  287. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  288. {
  289. }
  290. _JumpIfError(hr, error, "SetAttributes");
  292. error:
  293. hr = myHError(hr);
  294. return(_SetErrorInfo(hr, L"CCertAdmin::SetRequestAttributes"));
  295. }
  298. //+--------------------------------------------------------------------------
  299. // CCertAdmin::SetCertificateExtension -- Set a Certificate Extension
  300. //
  301. // ...
  302. //
  303. // Returns S_OK on success.
  304. //+--------------------------------------------------------------------------
  306. STDMETHODIMP
  307. CCertAdmin::SetCertificateExtension(
  308. /* [in] */ BSTR const strConfig,
  309. /* [in] */ LONG RequestId,
  310. /* [in] */ BSTR const strExtensionName,
  311. /* [in] */ LONG Type,
  312. /* [in] */ LONG Flags,
  313. /* [in] */ VARIANT const *pvarValue)
  314. {
  315. HRESULT hr;
  316. WCHAR const *pwszAuthority;
  317. BSTR str;
  318. CERTTRANSBLOB ctbValue;
  319. LONG lval;
  321. ctbValue.pb = NULL;
  323. if (NULL == strExtensionName || NULL == pvarValue)
  324. {
  325. hr = E_POINTER;
  326. _JumpError(hr, error, "NULL parm");
  327. }
  328. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  329. _JumpIfError(hr, error, "_OpenConnection");
  331. hr = myMarshalVariant(pvarValue, Type, &ctbValue.cb, &ctbValue.pb);
  332. _JumpIfError(hr, error, "myMarshalVariant");
  334. __try
  335. {
  336. hr = m_pICertAdminD->SetExtension(
  337. pwszAuthority,
  338. (DWORD) RequestId,
  339. strExtensionName,
  340. Type,
  341. Flags,
  342. &ctbValue);
  343. }
  344. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  345. {
  346. }
  347. _JumpIfError(hr, error, "SetExtension");
  349. error:
  350. if (NULL != ctbValue.pb)
  351. {
  352. LocalFree(ctbValue.pb);
  353. }
  354. hr = myHError(hr);
  355. return(_SetErrorInfo(hr, L"CCertAdmin::SetCertificateExtension"));
  356. }
  359. //+--------------------------------------------------------------------------
  360. // CCertAdmin::ResubmitRequest -- Resubmit a certificate request
  361. //
  362. // ...
  363. //
  364. // Returns S_OK on success.
  365. //+--------------------------------------------------------------------------
  367. STDMETHODIMP
  368. CCertAdmin::ResubmitRequest(
  369. /* [in] */ BSTR const strConfig,
  370. /* [in] */ LONG RequestId,
  371. /* [out, retval] */ LONG *pDisposition)
  372. {
  373. HRESULT hr;
  374. WCHAR const *pwszAuthority;
  376. if (NULL == pDisposition)
  377. {
  378. hr = E_POINTER;
  379. _JumpError(hr, error, "NULL parm");
  380. }
  381. *pDisposition = 0;
  383. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  384. _JumpIfError(hr, error, "_OpenConnection");
  386. __try
  387. {
  388. hr = m_pICertAdminD->ResubmitRequest(
  389. pwszAuthority,
  390. (DWORD) RequestId,
  391. (DWORD *) pDisposition);
  392. }
  393. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  394. {
  395. }
  396. _JumpIfError(hr, error, "ResubmitRequest");
  398. error:
  399. hr = myHError(hr);
  400. return(_SetErrorInfo(hr, L"CCertAdmin::ResubmitRequest"));
  401. }
  404. //+--------------------------------------------------------------------------
  405. // CCertAdmin::DenyRequest -- Deny a certificate request
  406. //
  407. // ...
  408. //
  409. // Returns S_OK on success.
  410. //+--------------------------------------------------------------------------
  412. STDMETHODIMP
  413. CCertAdmin::DenyRequest(
  414. /* [in] */ BSTR const strConfig,
  415. /* [in] */ LONG RequestId)
  416. {
  417. HRESULT hr;
  418. WCHAR const *pwszAuthority;
  420. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  421. _JumpIfError(hr, error, "_OpenConnection");
  423. __try
  424. {
  425. hr = m_pICertAdminD->DenyRequest(pwszAuthority, (DWORD) RequestId);
  426. }
  427. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  428. {
  429. }
  430. _JumpIfError(hr, error, "DenyRequest");
  432. error:
  433. hr = myHError(hr);
  434. return(_SetErrorInfo(hr, L"CCertAdmin::DenyRequest"));
  435. }
  438. //+--------------------------------------------------------------------------
  439. // CCertAdmin::PublishCRL -- Puhlish a new CRL
  440. //
  441. // ...
  442. //
  443. // Returns S_OK on success.
  444. //+--------------------------------------------------------------------------
  446. STDMETHODIMP
  447. CCertAdmin::PublishCRL(
  448. /* [in] */ BSTR const strConfig,
  449. /* [in] */ DATE Date)
  450. {
  451. HRESULT hr;
  452. WCHAR const *pwszAuthority;
  453. FILETIME ft;
  455. // Date = 0.0 means pass ft = 0 to the DCOM interface
  457. if (Date == 0.0)
  458. {
  459. ZeroMemory(&ft, sizeof(FILETIME));
  460. }
  461. else // translate date to ft
  462. {
  463. hr = myDateToFileTime(&Date, &ft);
  464. _JumpIfError(hr, error, "myDateToFileTime");
  465. }
  467. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  468. _JumpIfError(hr, error, "_OpenConnection");
  470. __try
  471. {
  472. hr = m_pICertAdminD->PublishCRL(pwszAuthority, ft);
  473. }
  474. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  475. {
  476. }
  477. _JumpIfError(hr, error, "PublishCRL");
  479. error:
  480. hr = myHError(hr);
  481. return(_SetErrorInfo(hr, L"CCertAdmin::PublishCRL"));
  482. }
  485. //+--------------------------------------------------------------------------
  486. // CCertAdmin::PublishCRLs -- Publish new base CRL, delta CRL or both
  487. //
  488. // ...
  489. //
  490. // Returns S_OK on success.
  491. //+--------------------------------------------------------------------------
  493. HRESULT
  494. CCertAdmin::PublishCRLs(
  495. /* [in] */ BSTR const strConfig,
  496. /* [in] */ DATE Date,
  497. /* [in] */ LONG CRLFlags) // CA_CRL_*
  498. {
  499. HRESULT hr;
  500. WCHAR const *pwszAuthority;
  501. FILETIME ft;
  503. // Date = 0.0 means pass ft = 0 to the DCOM interface
  505. if (Date == 0.0)
  506. {
  507. ZeroMemory(&ft, sizeof(FILETIME));
  508. }
  509. else // translate date to ft
  510. {
  511. hr = myDateToFileTime(&Date, &ft);
  512. _JumpIfError(hr, error, "myDateToFileTime");
  513. }
  515. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  516. _JumpIfError(hr, error, "_OpenConnection");
  518. __try
  519. {
  520. hr = m_pICertAdminD->PublishCRLs(pwszAuthority, ft, CRLFlags);
  521. }
  522. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  523. {
  524. }
  525. _JumpIfError(hr, error, "PublishCRLs");
  527. error:
  528. hr = myHError(hr);
  529. return(_SetErrorInfo(hr, L"CCertAdmin::PublishCRLs"));
  530. }
  533. //+--------------------------------------------------------------------------
  534. // CCertAdmin::GetCRL -- Get the latest CRL
  535. //
  536. // ...
  537. //
  538. // Returns S_OK on success.
  539. //+--------------------------------------------------------------------------
  541. STDMETHODIMP
  542. CCertAdmin::GetCRL(
  543. /* [in] */ BSTR const strConfig,
  544. /* [in] */ LONG Flags,
  545. /* [out, retval] */ BSTR *pstrCRL)
  546. {
  547. HRESULT hr;
  548. WCHAR const *pwszAuthority;
  549. CERTTRANSBLOB ctbCRL;
  551. ctbCRL.pb = NULL;
  553. if (NULL == pstrCRL)
  554. {
  555. hr = E_POINTER;
  556. _JumpError(hr, error, "NULL parm");
  557. }
  559. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  560. _JumpIfError(hr, error, "_OpenConnection");
  562. __try
  563. {
  564. hr = m_pICertAdminD->GetCRL(pwszAuthority, &ctbCRL);
  565. }
  566. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  567. {
  568. }
  569. _JumpIfError(hr, error, "GetCRL");
  571. myRegisterMemAlloc(ctbCRL.pb, ctbCRL.cb, CSM_COTASKALLOC);
  573. CSASSERT(CR_OUT_BASE64HEADER == CRYPT_STRING_BASE64HEADER);
  575. if (CR_OUT_BASE64HEADER == Flags)
  576. {
  577. Flags = CRYPT_STRING_BASE64X509CRLHEADER;
  578. }
  579. hr = EncodeCertString(ctbCRL.pb, ctbCRL.cb, Flags, pstrCRL);
  580. _JumpIfError(hr, error, "EncodeCertString");
  582. error:
  583. if (NULL != ctbCRL.pb)
  584. {
  585. CoTaskMemFree(ctbCRL.pb);
  586. }
  587. hr = myHError(hr);
  588. return(_SetErrorInfo(hr, L"CCertAdmin::GetCRL"));
  589. }
  592. #define CCERTADMIN
  593. #include "csprop2.cpp"
  596. //+--------------------------------------------------------------------------
  597. // CCertAdmin::ImportCertificate -- Import a certificate into the database
  598. //
  599. // ...
  600. //
  601. // Returns S_OK on success.
  602. //+--------------------------------------------------------------------------
  604. STDMETHODIMP
  605. CCertAdmin::ImportCertificate(
  606. /* [in] */ BSTR const strConfig,
  607. /* [in] */ BSTR const strCertificate,
  608. /* [in] */ LONG Flags,
  609. /* [out, retval] */ LONG *pRequestId)
  610. {
  611. HRESULT hr;
  612. WCHAR const *pwszAuthority;
  613. CERTTRANSBLOB ctbCert;
  615. ctbCert.pb = NULL;
  616. if (NULL == strCertificate)
  617. {
  618. hr = E_POINTER;
  619. _JumpError(hr, error, "NULL parm");
  620. }
  622. hr = DecodeCertString(
  623. strCertificate,
  624. Flags & CR_IN_ENCODEMASK,
  625. &ctbCert.pb,
  626. &ctbCert.cb);
  627. _JumpIfError(hr, error, "DecodeCertString");
  629. hr = _OpenConnection(strConfig, 1, &pwszAuthority);
  630. _JumpIfError(hr, error, "_OpenConnection");
  632. __try
  633. {
  634. hr = m_pICertAdminD->ImportCertificate(
  635. pwszAuthority,
  636. &ctbCert,
  637. Flags,
  638. pRequestId);
  639. }
  640. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  641. {
  642. }
  643. _JumpIfError3(
  644. hr,
  645. error,
  646. "ImportCertificate",
  647. NTE_BAD_SIGNATURE,
  648. HRESULT_FROM_WIN32(ERROR_OBJECT_ALREADY_EXISTS));
  650. error:
  651. if (NULL != ctbCert.pb)
  652. {
  653. LocalFree(ctbCert.pb);
  654. }
  655. hr = myHError(hr);
  656. return(_SetErrorInfo(hr, L"CCertAdmin::ImportCertificate"));
  657. }
  660. //+--------------------------------------------------------------------------
  661. // CCertAdmin::GetArchivedKey -- Get archived, encrypted key in a PKCS7
  662. //
  663. // ...
  664. //
  665. // Returns S_OK on success.
  666. //+--------------------------------------------------------------------------
  668. STDMETHODIMP
  669. CCertAdmin::GetArchivedKey(
  670. /* [in] */ BSTR const strConfig,
  671. /* [in] */ LONG RequestId,
  672. /* [in] */ LONG Flags,
  673. /* [out, retval] */ BSTR *pstrArchivedKey)
  674. {
  675. HRESULT hr;
  676. WCHAR const *pwszAuthority;
  677. CERTTRANSBLOB ctbArchivedKey;
  679. ctbArchivedKey.pb = NULL;
  681. if (NULL == pstrArchivedKey)
  682. {
  683. hr = E_POINTER;
  684. _JumpError(hr, error, "NULL parm");
  685. }
  687. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  688. _JumpIfError(hr, error, "_OpenConnection");
  690. __try
  691. {
  692. hr = m_pICertAdminD->GetArchivedKey(
  693. pwszAuthority,
  694. RequestId,
  695. &ctbArchivedKey);
  696. }
  697. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  698. {
  699. }
  700. _JumpIfError(hr, error, "GetArchivedKey");
  702. myRegisterMemAlloc(
  703. ctbArchivedKey.pb,
  704. ctbArchivedKey.cb,
  705. CSM_COTASKALLOC);
  707. CSASSERT(CR_OUT_BASE64HEADER == CRYPT_STRING_BASE64HEADER);
  709. hr = EncodeCertString(
  710. ctbArchivedKey.pb,
  711. ctbArchivedKey.cb,
  712. Flags,
  713. pstrArchivedKey);
  714. _JumpIfError(hr, error, "EncodeCertString");
  716. error:
  717. if (NULL != ctbArchivedKey.pb)
  718. {
  719. CoTaskMemFree(ctbArchivedKey.pb);
  720. }
  721. hr = myHError(hr);
  722. return(_SetErrorInfo(hr, L"CCertAdmin::GetArchivedKey"));
  723. }
  726. //+--------------------------------------------------------------------------
  727. // CCertAdmin::GetConfigEntry -- get CA configuration entry
  728. //
  729. // ...
  730. //
  731. // Returns S_OK on success.
  732. //+--------------------------------------------------------------------------
  734. STDMETHODIMP
  735. CCertAdmin::GetConfigEntry(
  736. /* [in] */ BSTR const strConfig,
  737. /* [in] */ BSTR const strNodePath,
  738. /* [in] */ BSTR const strEntryName,
  739. /* [out, retval] */ VARIANT *pvarEntry)
  740. {
  741. HRESULT hr;
  742. WCHAR const *pwszAuthority;
  744. if (NULL == strEntryName || NULL == pvarEntry)
  745. {
  746. hr = E_POINTER;
  747. _JumpError(hr, error, "NULL parm");
  748. }
  750. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  752. __try
  753. {
  754. if(S_OK != hr)
  755. {
  756. hr = _GetConfigEntryFromRegistry(
  757. strConfig,
  758. strNodePath,
  759. strEntryName,
  760. pvarEntry);
  761. _JumpIfError(hr, error, "_GetConfigEntryFromRegistry");
  762. }
  763. else
  764. {
  765. hr = m_pICertAdminD->GetConfigEntry(
  766. pwszAuthority,
  767. strNodePath,
  768. strEntryName,
  769. pvarEntry);
  770. }
  771. }
  772. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  773. {
  774. }
  776. _JumpIfError2(hr, error, "GetConfigEntry",
  777. HRESULT_FROM_WIN32(ERROR_FILE_NOT_FOUND));
  779. error:
  780. hr = myHError(hr);
  781. return(_SetErrorInfo(hr, L"CCertAdmin::GetConfigEntry"));
  782. }
  785. //+--------------------------------------------------------------------------
  786. // CCertAdmin::SetConfigEntry -- set CA configuration entry
  787. //
  788. // ...
  789. //
  790. // Returns S_OK on success.
  791. //+--------------------------------------------------------------------------
  793. STDMETHODIMP
  794. CCertAdmin::SetConfigEntry(
  795. /* [in] */ BSTR const strConfig,
  796. /* [in] */ BSTR const strNodePath,
  797. /* [in] */ BSTR const strEntryName,
  798. /* [in] */ VARIANT *pvarEntry)
  799. {
  800. HRESULT hr;
  801. WCHAR const *pwszAuthority;
  803. if (NULL == strEntryName || NULL == pvarEntry)
  804. {
  805. hr = E_POINTER;
  806. _JumpError(hr, error, "NULL parm");
  807. }
  809. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  811. __try
  812. {
  813. if(S_OK != hr)
  814. {
  815. hr = _SetConfigEntryFromRegistry(
  816. strConfig,
  817. strNodePath,
  818. strEntryName,
  819. pvarEntry);
  820. }
  821. else
  822. {
  823. hr = m_pICertAdminD->SetConfigEntry(
  824. pwszAuthority,
  825. strNodePath,
  826. strEntryName,
  827. pvarEntry);
  828. }
  829. }
  830. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  831. {
  832. }
  834. _JumpIfError(hr, error, "SetConfigEntry");
  836. error:
  837. hr = myHError(hr);
  838. return(_SetErrorInfo(hr, L"CCertAdmin::SetConfigEntry"));
  839. }
  842. //+--------------------------------------------------------------------------
  843. // CCertAdmin::ImportKey -- Archive Private Key
  844. //
  845. // ...
  846. //
  847. // Returns S_OK on success.
  848. //+--------------------------------------------------------------------------
  850. STDMETHODIMP
  851. CCertAdmin::ImportKey(
  852. /* [in] */ BSTR const strConfig,
  853. /* [in] */ LONG RequestId,
  854. /* [in] */ BSTR const strCertHash,
  855. /* [in] */ LONG Flags,
  856. /* [in] */ BSTR const strKey)
  857. {
  858. HRESULT hr;
  859. WCHAR const *pwszAuthority;
  860. CERTTRANSBLOB ctbKey;
  862. ctbKey.pb = NULL;
  863. if (NULL == strKey)
  864. {
  865. hr = E_POINTER;
  866. _JumpError(hr, error, "NULL parm");
  867. }
  869. hr = DecodeCertString(
  870. strKey,
  871. Flags & CR_IN_ENCODEMASK,
  872. &ctbKey.pb,
  873. &ctbKey.cb);
  874. _JumpIfError(hr, error, "DecodeCertString");
  876. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  877. _JumpIfError(hr, error, "_OpenConnection");
  879. __try
  880. {
  881. hr = m_pICertAdminD->ImportKey(
  882. pwszAuthority,
  883. RequestId,
  884. strCertHash,
  885. Flags,
  886. &ctbKey);
  887. }
  888. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  889. {
  890. }
  891. _JumpIfError2(
  892. hr,
  893. error,
  894. "ImportKey",
  895. HRESULT_FROM_WIN32(ERROR_OBJECT_ALREADY_EXISTS));
  897. error:
  898. if (NULL != ctbKey.pb)
  899. {
  900. LocalFree(ctbKey.pb);
  901. }
  902. hr = myHError(hr);
  903. return(_SetErrorInfo(hr, L"CCertAdmin::ImportKey"));
  904. }
  907. HRESULT
  908. CCertAdmin::_SetErrorInfo(
  909. IN HRESULT hrError,
  910. IN WCHAR const *pwszDescription)
  911. {
  912. CSASSERT(FAILED(hrError) || S_OK == hrError || S_FALSE == hrError);
  913. if (FAILED(hrError))
  914. {
  915. HRESULT hr;
  917. hr = DispatchSetErrorInfo(
  918. hrError,
  919. pwszDescription,
  920. wszCLASS_CERTADMIN,
  921. &IID_ICertAdmin);
  922. CSASSERT(hr == hrError);
  923. }
  924. return(hrError);
  925. }
  927. //+--------------------------------------------------------------------------
  928. // CCertAdmin::GetMyRoles -- Gets current user roles
  929. //
  930. // ...
  931. //
  932. // Returns S_OK on success.
  933. //+--------------------------------------------------------------------------
  935. STDMETHODIMP
  936. CCertAdmin::GetMyRoles(
  937. /* [in] */ BSTR const strConfig,
  938. /* [out, retval] */ LONG *pRoles)
  939. {
  940. HRESULT hr;
  941. WCHAR const *pwszAuthority;
  942. LONG Roles = 0;
  944. if (NULL == strConfig || NULL == pRoles)
  945. {
  946. hr = E_POINTER;
  947. _JumpError(hr, error, "NULL parm");
  948. }
  950. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  951. _JumpIfError(hr, error, "_OpenConnection");
  953. __try
  954. {
  955. hr = m_pICertAdminD->GetMyRoles(
  956. pwszAuthority,
  957. pRoles);
  958. }
  959. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  960. {
  961. }
  962. _JumpIfError(hr, error, "GetMyRoles");
  964. error:
  965. hr = myHError(hr);
  966. return(_SetErrorInfo(hr, L"CCertAdmin::GetMyRoles"));
  967. }
  970. //+--------------------------------------------------------------------------
  971. // CCertAdmin::DeleteRow -- Delete row from database
  972. //
  973. // ...
  974. //
  975. // Returns S_OK on success.
  976. //+--------------------------------------------------------------------------
  978. STDMETHODIMP
  979. CCertAdmin::DeleteRow(
  980. /* [in] */ BSTR const strConfig,
  981. /* [in] */ LONG Flags, // CDR_*
  982. /* [in] */ DATE Date,
  983. /* [in] */ LONG Table, // CVRC_TABLE_*
  984. /* [in] */ LONG RowId,
  985. /* [out, retval]*/ LONG *pcDeleted)
  986. {
  987. HRESULT hr;
  988. FILETIME ft;
  989. WCHAR const *pwszAuthority;
  991. if (NULL == strConfig)
  992. {
  993. hr = E_POINTER;
  994. _JumpError(hr, error, "NULL parm");
  995. }
  997. // Date = 0.0 means pass ft = 0 to the DCOM interface
  999. if (Date == 0.0)
  1000. {
  1001. ZeroMemory(&ft, sizeof(FILETIME));
  1002. }
  1003. else // translate date to ft
  1004. {
  1005. hr = myDateToFileTime(&Date, &ft);
  1006. _JumpIfError(hr, error, "myDateToFileTime");
  1007. }
  1009. hr = _OpenConnection(strConfig, 2, &pwszAuthority);
  1010. _JumpIfError(hr, error, "_OpenConnection");
  1012. __try
  1013. {
  1014. hr = m_pICertAdminD->DeleteRow(
  1015. pwszAuthority,
  1016. Flags,
  1017. ft,
  1018. Table,
  1019. RowId,
  1020. pcDeleted);
  1021. }
  1022. __except(hr = myHEXCEPTIONCODE(), EXCEPTION_EXECUTE_HANDLER)
  1023. {
  1024. }
  1025. _JumpIfError(hr, error, "DeleteRow");
  1027. error:
  1028. hr = myHError(hr);
  1029. return(_SetErrorInfo(hr, L"CCertAdmin::DeleteRow"));
  1030. }
  1033. HRESULT
  1034. CCertAdmin::_GetConfigEntryFromRegistry(
  1035. IN BSTR const strConfig,
  1036. IN BSTR const strNodePath,
  1037. IN BSTR const strEntryName,
  1038. IN OUT VARIANT *pvarEntry)
  1039. {
  1040. HRESULT hr;
  1041. CertSrv::CConfigStorage stg;
  1042. LPWSTR pwszMachine = NULL;
  1043. LPWSTR pwszCAName = NULL;
  1045. hr = mySplitConfigString(
  1046. strConfig,
  1047. &pwszMachine,
  1048. &pwszCAName);
  1049. _JumpIfErrorStr(hr, error, "mySplitConfigString", strConfig);
  1051. hr = stg.InitMachine(pwszMachine);
  1052. _JumpIfError(hr, error, "CConfigStorage::InitMachine");
  1054. hr = stg.GetEntry(
  1055. pwszCAName,
  1056. strNodePath,
  1057. strEntryName,
  1058. pvarEntry);
  1059. _JumpIfError(hr, error, "CConfigStorage::GetEntry");
  1061. error:
  1062. LOCAL_FREE(pwszMachine);
  1063. LOCAL_FREE(pwszCAName);
  1064. return hr;
  1065. }
  1067. HRESULT
  1068. CCertAdmin::_SetConfigEntryFromRegistry(
  1069. IN BSTR const strConfig,
  1070. IN BSTR const strNodePath,
  1071. IN BSTR const strEntryName,
  1072. IN const VARIANT *pvarEntry)
  1073. {
  1074. HRESULT hr;
  1075. CertSrv::CConfigStorage stg;
  1076. LPWSTR pwszMachine = NULL;
  1077. LPWSTR pwszCAName = NULL;
  1079. hr = mySplitConfigString(
  1080. strConfig,
  1081. &pwszMachine,
  1082. &pwszCAName);
  1083. _JumpIfErrorStr(hr, error, "mySplitConfigString", strConfig);
  1085. hr = stg.InitMachine(pwszMachine);
  1086. _JumpIfError(hr, error, "CConfigStorage::InitMachine");
  1088. hr = stg.SetEntry(
  1089. pwszCAName,
  1090. strNodePath,
  1091. strEntryName,
  1092. const_cast<VARIANT*>(pvarEntry));
  1093. _JumpIfError(hr, error, "CConfigStorage::GetEntry");
  1095. error:
  1096. LOCAL_FREE(pwszMachine);
  1097. LOCAL_FREE(pwszCAName);
  1098. return hr;
  1099. }