archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 75c48ba87f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '75c48ba87f'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/ca/ocmsetup/cspenum.cpp

639 lines
14 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (C) Microsoft Corporation, 1997 - 1999
  6. //
  7. // File: cspenum.cpp
  8. //
  9. //--------------------------------------------------------------------------
  11. #include <pch.cpp>
  13. #pragma hdrstop
  15. #include <tchar.h>
  16. #include <assert.h>
  18. #include "initcert.h"
  19. #include "cscsp.h"
  20. #include "cspenum.h"
  21. #include "certmsg.h"
  24. #define __dwFILE__ __dwFILE_OCMSETUP_CSPENUM_CPP__
  27. WCHAR const g_wszRegKeyCSP[] = wszREGKEYCSP;
  28. WCHAR const g_wszRegKeyEncryptionCSP[] = wszREGKEYENCRYPTIONCSP;
  29. WCHAR const g_wszRegProviderType[] = wszREGPROVIDERTYPE;
  30. WCHAR const g_wszRegProvider[] = wszREGPROVIDER;
  31. WCHAR const g_wszRegHashAlgorithm[] = wszHASHALGORITHM;
  32. TCHAR const g_wszRegEncryptionAlgorithm[] = wszENCRYPTIONALGORITHM;
  33. WCHAR const g_wszRegMachineKeyset[] = wszMACHINEKEYSET;
  34. WCHAR const g_wszRegKeySize[] = wszREGKEYSIZE;
  37. // Hash Enumeration code begins
  38. // move point to link list top
  39. CSP_HASH*
  40. topHashInfoList(CSP_HASH *pHashInfoList)
  41. {
  42. while (pHashInfoList->last)
  43. {
  44. pHashInfoList = pHashInfoList->last;
  45. }
  46. return pHashInfoList;
  47. }
  49. // move point to link list end
  50. CSP_HASH*
  51. endHashInfoList(CSP_HASH *pHashInfoList)
  52. {
  53. while (pHashInfoList->next)
  54. {
  55. pHashInfoList = pHashInfoList->next;
  56. }
  57. return pHashInfoList;
  58. }
  60. // add one more CSP_INFO
  61. void
  62. addHashInfo(CSP_HASH *pHashInfoList, CSP_HASH *pHashInfo)
  63. {
  64. // add
  65. pHashInfoList->next = pHashInfo;
  66. pHashInfo->last = pHashInfoList;
  67. }
  69. // add one more CSP_INFO to end
  70. void
  71. addHashInfoToEnd(CSP_HASH *pHashInfoList, CSP_HASH *pHashInfo)
  72. {
  73. // go to end
  74. pHashInfoList = endHashInfoList(pHashInfoList);
  75. // add
  76. pHashInfoList->next = pHashInfo;
  77. pHashInfo->last = pHashInfoList;
  78. }
  80. CSP_HASH *
  81. newHashInfo(
  82. ALG_ID idAlg,
  83. CHAR *pszName)
  84. {
  85. CSP_HASH *pHashInfo = NULL;
  87. if (NULL != pszName)
  88. {
  89. pHashInfo = (CSP_HASH*)LocalAlloc(LMEM_FIXED, sizeof(CSP_HASH));
  90. if (NULL == pHashInfo)
  91. {
  92. SetLastError(E_OUTOFMEMORY);
  93. }
  94. else
  95. {
  96. pHashInfo->pwszName = (WCHAR*)LocalAlloc(LMEM_FIXED,
  97. (strlen(pszName)+1)*sizeof(WCHAR));
  98. if (NULL == pHashInfo->pwszName)
  99. {
  100. LocalFree(pHashInfo);
  101. SetLastError(E_OUTOFMEMORY);
  102. return NULL;
  103. }
  104. else
  105. {
  106. // create a new one
  107. pHashInfo->idAlg = idAlg;
  108. mbstowcs(pHashInfo->pwszName, pszName, strlen(pszName)+1);
  109. pHashInfo->last = NULL;
  110. pHashInfo->next = NULL;
  111. }
  112. }
  113. }
  114. return pHashInfo;
  115. }
  118. void
  119. freeHashInfo(CSP_HASH *pHashInfo)
  120. {
  121. if (pHashInfo)
  122. {
  123. if (pHashInfo->pwszName)
  124. {
  125. LocalFree(pHashInfo->pwszName);
  126. }
  127. LocalFree(pHashInfo);
  128. }
  129. }
  131. void
  132. freeHashInfoList(
  133. CSP_HASH *pHashInfoList)
  134. {
  135. CSP_HASH *pNext;
  137. if (pHashInfoList)
  138. {
  139. // go top
  140. pHashInfoList = topHashInfoList(pHashInfoList);
  141. do
  142. {
  143. pNext = pHashInfoList->next;
  144. freeHashInfo(pHashInfoList);
  145. pHashInfoList = pNext;
  146. } while (pHashInfoList);
  147. }
  148. }
  150. HRESULT
  151. GetHashList(
  152. DWORD dwProvType,
  153. WCHAR *pwszProvName,
  154. CSP_HASH **pHashInfoList)
  155. {
  156. HRESULT hr;
  157. HCRYPTPROV hProv = NULL;
  158. CHAR *pszName = NULL;
  159. DWORD i;
  160. ALG_ID idAlg;
  161. DWORD cbData;
  162. BYTE *pbData;
  163. DWORD dwFlags;
  165. BOOL fSupportSigningFlag = FALSE; // none-ms csp likely
  166. PROV_ENUMALGS_EX EnumAlgsEx;
  167. PROV_ENUMALGS EnumAlgs;
  169. CSP_HASH *pHashInfo = NULL;
  170. CSP_HASH *pHashInfoNode;
  172. if (NULL == pwszProvName)
  173. {
  174. // the reason why I check this because
  175. // NULL is a valid input for CryptAcquireContext()
  176. hr = E_INVALIDARG;
  177. _JumpError(hr, error, "no provider name");
  178. }
  179. if (!myCertSrvCryptAcquireContext(
  180. &hProv,
  181. NULL,
  182. pwszProvName,
  183. dwProvType,
  184. CRYPT_VERIFYCONTEXT,
  185. FALSE))
  186. {
  187. hr = myHLastError();
  188. if (NULL != hProv)
  189. {
  190. hProv = NULL;
  191. _PrintError(hr, "CSP returns a non-null handle");
  192. }
  193. _JumpErrorStr(hr, error, "myCertSrvCryptAcquireContext", pwszProvName);
  194. }
  196. // check if csp support signing flag
  197. if (CryptGetProvParam(hProv, PP_ENUMEX_SIGNING_PROT, NULL, &cbData, 0))
  198. {
  199. fSupportSigningFlag = TRUE;
  200. }
  202. dwFlags = CRYPT_FIRST;
  203. for (i = 0; ; dwFlags = 0, i++)
  204. {
  205. if (fSupportSigningFlag)
  206. {
  207. cbData = sizeof(EnumAlgsEx);
  208. pbData = (BYTE *) &EnumAlgsEx;
  209. }
  210. else
  211. {
  212. cbData = sizeof(EnumAlgs);
  213. pbData = (BYTE *) &EnumAlgs;
  214. }
  215. ZeroMemory(pbData, cbData);
  216. if (!CryptGetProvParam(
  217. hProv,
  218. fSupportSigningFlag?
  219. PP_ENUMALGS_EX : PP_ENUMALGS,
  220. pbData,
  221. &cbData,
  222. dwFlags))
  223. {
  224. hr = myHLastError();
  225. if (HRESULT_FROM_WIN32(ERROR_NO_MORE_ITEMS) == hr)
  226. {
  227. // out of for loop
  228. break;
  229. }
  230. _JumpError(hr, error, "CryptGetProvParam");
  231. }
  232. idAlg = fSupportSigningFlag? EnumAlgsEx.aiAlgid : EnumAlgs.aiAlgid;
  234. if (ALG_CLASS_HASH == GET_ALG_CLASS(idAlg))
  235. {
  236. if (fSupportSigningFlag)
  237. {
  238. if (0 == (EnumAlgsEx.dwProtocols & CRYPT_FLAG_SIGNING))
  239. {
  240. // this means this hash doesn't support signing
  241. continue; // skip
  242. }
  243. pszName = EnumAlgsEx.szLongName;
  245. pszName = EnumAlgsEx.szName;
  246. }
  247. else
  248. {
  249. pszName = EnumAlgs.szName;
  250. }
  252. pHashInfoNode = newHashInfo(idAlg, pszName); // 2nd parm: name
  253. if (NULL == pHashInfoNode)
  254. {
  255. hr = E_OUTOFMEMORY;
  256. _JumpError(hr, error, "newHashInfo");
  257. }
  259. if (NULL == pHashInfo)
  260. {
  261. pHashInfo = pHashInfoNode;
  262. }
  263. else
  264. {
  265. // add to temp list
  266. addHashInfoToEnd(pHashInfo, pHashInfoNode);
  267. }
  268. }
  269. }
  271. // pass it back to caller
  272. *pHashInfoList = pHashInfo;
  273. pHashInfo = NULL;
  274. hr = S_OK;
  276. error:
  277. if (NULL != pHashInfo)
  278. {
  279. freeHashInfoList(pHashInfo);
  280. }
  281. if (NULL != hProv)
  282. {
  283. CryptReleaseContext(hProv, 0);
  284. }
  285. return hr;
  286. }
  289. // CSP Enumeration code begins
  290. // move point to link list top
  291. CSP_INFO*
  292. topCSPInfoList(CSP_INFO *pCSPInfoList)
  293. {
  294. while (pCSPInfoList->last)
  295. {
  296. pCSPInfoList = pCSPInfoList->last;
  297. }
  298. return pCSPInfoList;
  299. }
  302. // move point to link list end
  303. CSP_INFO*
  304. endCSPInfoList(CSP_INFO *pCSPInfoList)
  305. {
  306. while (pCSPInfoList->next)
  307. {
  308. pCSPInfoList = pCSPInfoList->next;
  309. }
  310. return pCSPInfoList;
  311. }
  313. // find first matched csp info from the list
  314. CSP_INFO*
  315. findCSPInfoFromList(
  316. CSP_INFO *pCSPInfoList,
  317. WCHAR const *pwszProvName,
  318. const DWORD dwProvType)
  319. {
  320. while (NULL != pCSPInfoList)
  321. {
  322. if (0 == wcscmp(pCSPInfoList->pwszProvName, pwszProvName) &&
  323. pCSPInfoList->dwProvType == dwProvType)
  324. {
  325. // found it
  326. break;
  327. }
  328. pCSPInfoList = pCSPInfoList->next;
  329. }
  330. return pCSPInfoList;
  331. }
  333. // add one more CSP_INFO
  334. void
  335. addCSPInfo(CSP_INFO *pCSPInfoList, CSP_INFO *pCSPInfo)
  336. {
  337. // add
  338. pCSPInfoList->next = pCSPInfo;
  339. pCSPInfo->last = pCSPInfoList;
  340. }
  343. // add one more CSP_INFO to end
  344. void
  345. addCSPInfoToEnd(CSP_INFO *pCSPInfoList, CSP_INFO *pCSPInfo)
  346. {
  347. // go to end
  348. pCSPInfoList = endCSPInfoList(pCSPInfoList);
  349. // add
  350. pCSPInfoList->next = pCSPInfo;
  351. pCSPInfo->last = pCSPInfoList;
  352. }
  355. void
  356. freeCSPInfo(CSP_INFO *pCSPInfo)
  357. {
  358. if (pCSPInfo)
  359. {
  360. if (pCSPInfo->pwszProvName)
  361. {
  362. LocalFree(pCSPInfo->pwszProvName);
  363. }
  364. if (pCSPInfo->pHashList)
  365. {
  366. freeHashInfoList(pCSPInfo->pHashList);
  367. }
  368. LocalFree(pCSPInfo);
  369. }
  370. }
  373. CSP_INFO *
  374. newCSPInfo(
  375. DWORD dwProvType,
  376. WCHAR *pwszProvName)
  377. {
  378. CSP_INFO *pCSPInfo = NULL;
  379. CSP_HASH *pHashList = NULL;
  381. if (NULL != pwszProvName)
  382. {
  383. // get all hash algorithms under this csp
  384. if (S_OK != GetHashList(dwProvType, pwszProvName, &pHashList))
  385. {
  386. // certsrv needs csp with hash support
  387. goto done;
  388. }
  389. else
  390. {
  391. pCSPInfo = (CSP_INFO*)LocalAlloc(LMEM_FIXED, sizeof(CSP_INFO));
  392. if (NULL == pCSPInfo)
  393. {
  394. freeHashInfoList(pHashList);
  395. SetLastError(E_OUTOFMEMORY);
  396. }
  397. else
  398. {
  399. pCSPInfo->pwszProvName = (WCHAR*)LocalAlloc(LMEM_FIXED,
  400. (wcslen(pwszProvName) + 1) * sizeof(WCHAR));
  401. if (NULL == pCSPInfo->pwszProvName)
  402. {
  403. freeHashInfoList(pHashList);
  404. LocalFree(pCSPInfo);
  405. pCSPInfo = NULL;
  406. SetLastError(E_OUTOFMEMORY);
  407. goto done;
  408. }
  409. else
  410. {
  411. // create a new one
  412. pCSPInfo->dwProvType = dwProvType;
  413. pCSPInfo->fMachineKeyset = TRUE; // assume???
  414. wcscpy(pCSPInfo->pwszProvName, pwszProvName);
  415. pCSPInfo->pHashList = pHashList;
  416. pCSPInfo->last = NULL;
  417. pCSPInfo->next = NULL;
  418. }
  419. }
  420. }
  421. }
  422. done:
  423. return pCSPInfo;
  424. }
  427. void
  428. FreeCSPInfoList(CSP_INFO *pCSPInfoList)
  429. {
  430. CSP_INFO *pNext;
  432. if (pCSPInfoList)
  433. {
  434. // go top
  435. pCSPInfoList = topCSPInfoList(pCSPInfoList);
  436. do
  437. {
  438. pNext = pCSPInfoList->next;
  439. freeCSPInfo(pCSPInfoList);
  440. pCSPInfoList = pNext;
  441. } while (pCSPInfoList);
  442. }
  443. }
  445. HRESULT
  446. GetCSPInfoList(CSP_INFO **pCSPInfoList)
  447. {
  448. HRESULT hr;
  449. long i;
  450. DWORD dwProvType;
  451. WCHAR *pwszProvName = NULL;
  452. CSP_INFO *pCSPInfo = NULL;
  453. CSP_INFO *pCSPInfoNode;
  455. for (i = 0; ; i++)
  456. {
  457. // get provider name
  459. hr = myEnumProviders(
  460. i,
  461. NULL,
  462. 0,
  463. &dwProvType,
  464. &pwszProvName);
  465. if (S_OK != hr)
  466. {
  467. hr = myHLastError();
  468. CSASSERT(
  469. HRESULT_FROM_WIN32(ERROR_NO_MORE_ITEMS) == hr ||
  470. NTE_FAIL == hr);
  471. if (HRESULT_FROM_WIN32(ERROR_NO_MORE_ITEMS) == hr ||
  472. NTE_FAIL == hr)
  473. {
  474. // no more providers under type, terminate loop
  475. break;
  476. }
  478. // invalid CSP entry, skip it
  480. continue;
  481. }
  483. if (PROV_RSA_FULL == dwProvType ||
  484. PROV_RSA_SIG == dwProvType ||
  485. PROV_DSS == dwProvType ||
  486. PROV_MS_EXCHANGE == dwProvType ||
  487. PROV_SSL == dwProvType)
  488. {
  489. if (NULL == pCSPInfo)
  490. {
  491. // first csp info
  492. pCSPInfo = newCSPInfo(dwProvType, pwszProvName);
  493. }
  494. else
  495. {
  496. // create a node
  497. pCSPInfoNode = newCSPInfo(dwProvType, pwszProvName);
  498. if (NULL != pCSPInfoNode)
  499. {
  500. // add to list
  501. addCSPInfoToEnd(pCSPInfo, pCSPInfoNode);
  502. }
  503. }
  504. }
  505. LocalFree(pwszProvName);
  506. pwszProvName = NULL;
  507. }
  509. // pass back to caller
  511. *pCSPInfoList = pCSPInfo;
  512. hr = S_OK;
  514. //error:
  515. if (NULL != pwszProvName)
  516. {
  517. LocalFree(pwszProvName);
  518. }
  519. return(hr);
  520. }
  523. HRESULT
  524. SetCertSrvCSP(
  525. IN BOOL fEncryptionCSP,
  526. IN WCHAR const *pwszCAName,
  527. IN DWORD dwProvType,
  528. IN WCHAR const *pwszProvName,
  529. IN ALG_ID idAlg,
  530. IN BOOL fMachineKeyset,
  531. IN DWORD dwKeySize)
  532. {
  533. HRESULT hr;
  534. HKEY hCertSrvKey = NULL;
  535. HKEY hCertSrvCAKey = NULL;
  536. HKEY hCertSrvCSPKey = NULL;
  537. DWORD dwDisposition;
  539. hr = RegCreateKeyEx(
  540. HKEY_LOCAL_MACHINE,
  541. wszREGKEYCONFIGPATH,
  542. 0,
  543. NULL,
  544. REG_OPTION_NON_VOLATILE,
  545. KEY_ALL_ACCESS,
  546. NULL,
  547. &hCertSrvKey,
  548. &dwDisposition);
  549. _JumpIfErrorStr(hr, error, "RegCreateKeyEx", wszREGKEYCONFIGPATH);
  551. hr = RegCreateKeyEx(
  552. hCertSrvKey,
  553. pwszCAName,
  554. 0,
  555. NULL,
  556. REG_OPTION_NON_VOLATILE,
  557. KEY_ALL_ACCESS,
  558. NULL,
  559. &hCertSrvCAKey,
  560. &dwDisposition);
  561. _JumpIfErrorStr(hr, error, "RegCreateKeyEx", pwszCAName);
  563. hr = RegCreateKeyEx(
  564. hCertSrvCAKey,
  565. fEncryptionCSP? g_wszRegKeyEncryptionCSP : g_wszRegKeyCSP,
  566. 0,
  567. NULL,
  568. REG_OPTION_NON_VOLATILE,
  569. KEY_ALL_ACCESS,
  570. NULL,
  571. &hCertSrvCSPKey,
  572. &dwDisposition);
  573. _JumpIfErrorStr(hr, error, "RegCreateKeyEx", g_wszRegKeyCSP);
  575. hr = RegSetValueEx(
  576. hCertSrvCSPKey,
  577. g_wszRegProviderType,
  578. 0,
  579. REG_DWORD,
  580. (BYTE const *) &dwProvType,
  581. sizeof(dwProvType));
  582. _JumpIfErrorStr(hr, error, "RegSetValueEx", g_wszRegProviderType);
  584. hr = RegSetValueEx(
  585. hCertSrvCSPKey,
  586. g_wszRegProvider,
  587. 0,
  588. REG_SZ,
  589. (BYTE const *) pwszProvName,
  590. wcslen(pwszProvName) * sizeof(WCHAR));
  591. _JumpIfErrorStr(hr, error, "RegSetValueEx", g_wszRegProvider);
  593. hr = RegSetValueEx(
  594. hCertSrvCSPKey,
  595. fEncryptionCSP?
  596. g_wszRegEncryptionAlgorithm :
  597. g_wszRegHashAlgorithm,
  598. 0,
  599. REG_DWORD, // questionable???
  600. (BYTE const *) &idAlg,
  601. sizeof(idAlg));
  602. _JumpIfErrorStr(hr, error, "RegSetValueEx", g_wszRegHashAlgorithm);
  604. hr = RegSetValueEx(
  605. hCertSrvCSPKey,
  606. g_wszRegMachineKeyset,
  607. 0,
  608. REG_DWORD,
  609. (BYTE const *) &fMachineKeyset,
  610. sizeof(fMachineKeyset));
  611. _JumpIfErrorStr(hr, error, "RegSetValueEx", g_wszRegMachineKeyset);
  613. if (0 != dwKeySize)
  614. {
  615. hr = RegSetValueEx(
  616. hCertSrvCSPKey,
  617. g_wszRegKeySize,
  618. 0,
  619. REG_DWORD,
  620. (BYTE const *) &dwKeySize,
  621. sizeof(dwKeySize));
  622. _JumpIfErrorStr(hr, error, "RegSetValueEx", g_wszRegKeySize);
  623. }
  625. error:
  626. if (NULL != hCertSrvCSPKey)
  627. {
  628. RegCloseKey(hCertSrvCSPKey);
  629. }
  630. if (NULL != hCertSrvCAKey)
  631. {
  632. RegCloseKey(hCertSrvCAKey);
  633. }
  634. if (NULL != hCertSrvKey)
  635. {
  636. RegCloseKey(hCertSrvKey);
  637. }
  638. return(myHError(hr));
  639. }