mirror of https://github.com/tongzx/nt5src
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
711 lines
23 KiB
711 lines
23 KiB
/////////////////////////////////////////////////////////////////////////////////
|
|
//
|
|
// Microsoft Windows
|
|
// Copyright (C) Microsoft Corporation, 2000-2001.
|
|
//
|
|
// File: TemplateV2RequestPropertyPage.cpp
|
|
//
|
|
// Contents: Implementation of CTemplateV2RequestPropertyPage
|
|
//
|
|
//----------------------------------------------------------------------------
|
|
// TemplateV2RequestPropertyPage.cpp : implementation file
|
|
//
|
|
|
|
#include "stdafx.h"
|
|
#include "TemplateV2RequestPropertyPage.h"
|
|
|
|
#ifdef _DEBUG
|
|
#define new DEBUG_NEW
|
|
#undef THIS_FILE
|
|
static char THIS_FILE[] = __FILE__;
|
|
#endif
|
|
|
|
/////////////////////////////////////////////////////////////////////////////
|
|
// CTemplateV2RequestPropertyPage property page
|
|
enum {
|
|
REQUEST_PURPOSE_SIGNATURE = 0,
|
|
REQUEST_PURPOSE_ENCRYPTION,
|
|
REQUEST_PURPOSE_SIGNATURE_AND_ENCRYPTION
|
|
};
|
|
|
|
|
|
CTemplateV2RequestPropertyPage::CTemplateV2RequestPropertyPage(
|
|
CCertTemplate& rCertTemplate, bool& rbIsDirty) :
|
|
CHelpPropertyPage(CTemplateV2RequestPropertyPage::IDD),
|
|
m_rCertTemplate (rCertTemplate),
|
|
m_rbIsDirty (rbIsDirty),
|
|
m_nProvDSSCnt (0)
|
|
{
|
|
_TRACE (1, L"Entering CTemplateV2RequestPropertyPage::CTemplateV2RequestPropertyPage ()\n");
|
|
//{{AFX_DATA_INIT(CTemplateV2RequestPropertyPage)
|
|
//}}AFX_DATA_INIT
|
|
m_rCertTemplate.AddRef ();
|
|
|
|
_TRACE (-1, L"Leaving CTemplateV2RequestPropertyPage::CTemplateV2RequestPropertyPage ()\n");
|
|
}
|
|
|
|
CTemplateV2RequestPropertyPage::~CTemplateV2RequestPropertyPage()
|
|
{
|
|
_TRACE (1, L"Entering CTemplateV2RequestPropertyPage::~CTemplateV2RequestPropertyPage ()\n");
|
|
|
|
while ( !m_CSPList.IsEmpty () )
|
|
{
|
|
CT_CSP_DATA* pCSPData = m_CSPList.RemoveHead ();
|
|
if ( pCSPData )
|
|
delete pCSPData;
|
|
}
|
|
|
|
m_rCertTemplate.Release ();
|
|
_TRACE (-1, L"Leaving CTemplateV2RequestPropertyPage::~CTemplateV2RequestPropertyPage ()\n");
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::DoDataExchange(CDataExchange* pDX)
|
|
{
|
|
CHelpPropertyPage::DoDataExchange(pDX);
|
|
//{{AFX_DATA_MAP(CTemplateV2RequestPropertyPage)
|
|
DDX_Control(pDX, IDC_MINIMUM_KEYSIZE_VALUE, m_minKeySizeCombo);
|
|
DDX_Control(pDX, IDC_PURPOSE_COMBO, m_purposeCombo);
|
|
DDX_Control(pDX, IDC_CSP_LIST, m_CSPListbox);
|
|
//}}AFX_DATA_MAP
|
|
}
|
|
|
|
|
|
BEGIN_MESSAGE_MAP(CTemplateV2RequestPropertyPage, CHelpPropertyPage)
|
|
//{{AFX_MSG_MAP(CTemplateV2RequestPropertyPage)
|
|
ON_CBN_SELCHANGE(IDC_PURPOSE_COMBO, OnSelchangePurposeCombo)
|
|
ON_BN_CLICKED(IDC_EXPORT_PRIVATE_KEY, OnExportPrivateKey)
|
|
ON_BN_CLICKED(IDC_ARCHIVE_KEY_CHECK, OnArchiveKeyCheck)
|
|
ON_BN_CLICKED(IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK, OnIncludeSymmetricAlgorithmsCheck)
|
|
ON_CBN_SELCHANGE(IDC_MINIMUM_KEYSIZE_VALUE, OnSelchangeMinimumKeysizeValue)
|
|
ON_BN_CLICKED(IDC_USER_INPUT_REQUIRED_FOR_AUTOENROLLMENT, OnUserInputRequiredForAutoenrollment)
|
|
ON_BN_CLICKED(IDC_DELETE_PERMANENTLY, OnDeletePermanently)
|
|
//}}AFX_MSG_MAP
|
|
ON_CONTROL(CLBN_CHKCHANGE, IDC_CSP_LIST, OnCheckChange)
|
|
END_MESSAGE_MAP()
|
|
|
|
/////////////////////////////////////////////////////////////////////////////
|
|
// CTemplateV2RequestPropertyPage message handlers
|
|
|
|
|
|
BOOL CTemplateV2RequestPropertyPage::OnInitDialog()
|
|
{
|
|
_TRACE (1, L"Entering CTemplateV2RequestPropertyPage::OnInitDialog ()\n");
|
|
CHelpPropertyPage::OnInitDialog();
|
|
|
|
CString text;
|
|
|
|
VERIFY (text.LoadString (IDS_SIGNATURE));
|
|
int nIndex = m_purposeCombo.AddString (text);
|
|
if ( nIndex >= 0 )
|
|
{
|
|
m_purposeCombo.SetItemData (nIndex, (DWORD_PTR) REQUEST_PURPOSE_SIGNATURE);
|
|
if ( m_rCertTemplate.HasKeySpecSignature () )
|
|
m_purposeCombo.SetCurSel (nIndex);
|
|
}
|
|
|
|
VERIFY (text.LoadString (IDS_ENCRYPTION));
|
|
nIndex = m_purposeCombo.AddString (text);
|
|
if ( nIndex >= 0 )
|
|
{
|
|
m_purposeCombo.SetItemData (nIndex, (DWORD_PTR) REQUEST_PURPOSE_ENCRYPTION);
|
|
if ( m_rCertTemplate.HasEncryptionSignature () )
|
|
m_purposeCombo.SetCurSel (nIndex);
|
|
}
|
|
|
|
VERIFY (text.LoadString (IDS_SIGNATURE_AND_ENCRYPTION));
|
|
nIndex = m_purposeCombo.AddString (text);
|
|
if ( nIndex >= 0 )
|
|
{
|
|
// NTRAID# 278356 CertSRV: No CSPs in mmc certificate snapin advanced
|
|
// option list with v2 templates that have ENC and SIG as purpose.
|
|
bool bHasDigitalSignature = false;
|
|
|
|
m_rCertTemplate.GetDigitalSignature (bHasDigitalSignature);
|
|
|
|
m_purposeCombo.SetItemData (nIndex, (DWORD_PTR) REQUEST_PURPOSE_SIGNATURE_AND_ENCRYPTION);
|
|
if ( m_rCertTemplate.HasEncryptionSignature () &&
|
|
(bHasDigitalSignature || m_rCertTemplate.HasKeySpecSignature ()) )
|
|
m_purposeCombo.SetCurSel (nIndex);
|
|
}
|
|
|
|
|
|
|
|
// Initialize minimum key size combo box- values in powers of 2 from 512 to 16384
|
|
DWORD dwMinKeySize = 0;
|
|
m_rCertTemplate.GetMinimumKeySize (dwMinKeySize);
|
|
AddKeySizeToCombo(512, L"512", dwMinKeySize);
|
|
AddKeySizeToCombo(768, L"768", dwMinKeySize);
|
|
AddKeySizeToCombo(1024, L"1024", dwMinKeySize);
|
|
AddKeySizeToCombo(2048, L"2048", dwMinKeySize);
|
|
AddKeySizeToCombo(4096, L"4096", dwMinKeySize);
|
|
AddKeySizeToCombo(8192, L"8192", dwMinKeySize);
|
|
AddKeySizeToCombo(16384, L"16384", dwMinKeySize);
|
|
|
|
if ( SUCCEEDED (EnumerateCSPs (dwMinKeySize)) )
|
|
{
|
|
|
|
}
|
|
|
|
if ( m_rCertTemplate.PrivateKeyIsExportable () )
|
|
SendDlgItemMessage (IDC_EXPORT_PRIVATE_KEY, BM_SETCHECK, BST_CHECKED);
|
|
|
|
if ( m_rCertTemplate.AllowPrivateKeyArchival () )
|
|
SendDlgItemMessage (IDC_ARCHIVE_KEY_CHECK, BM_SETCHECK, BST_CHECKED);
|
|
|
|
if ( m_rCertTemplate.IncludeSymmetricAlgorithms () )
|
|
SendDlgItemMessage (IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK, BM_SETCHECK, BST_CHECKED);
|
|
|
|
GetDlgItem (IDC_ARCHIVE_KEY_CHECK)->ShowWindow (SW_SHOW);
|
|
GetDlgItem (IDC_MINIMUM_KEYSIZE_VALUE)->ShowWindow (SW_SHOW);
|
|
GetDlgItem (IDC_MINIMUM_KEYSIZE_LABEL)->ShowWindow (SW_SHOW);
|
|
GetDlgItem (IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK)->ShowWindow (SW_SHOW);
|
|
|
|
|
|
if ( m_rCertTemplate.UserInteractionRequired () )
|
|
SendDlgItemMessage (IDC_USER_INPUT_REQUIRED_FOR_AUTOENROLLMENT, BM_SETCHECK, BST_CHECKED);
|
|
|
|
if ( m_rCertTemplate.IsMachineType () || m_rCertTemplate.SubjectIsCA () ||
|
|
m_rCertTemplate.SubjectIsCrossCA () )
|
|
{
|
|
GetDlgItem (IDC_USER_INPUT_REQUIRED_FOR_AUTOENROLLMENT)->EnableWindow (FALSE);
|
|
}
|
|
|
|
if ( m_rCertTemplate.RemoveInvalidCertFromPersonalStore () )
|
|
SendDlgItemMessage (IDC_DELETE_PERMANENTLY, BM_SETCHECK, BST_CHECKED);
|
|
|
|
EnableControls ();
|
|
|
|
_TRACE (-1, L"Leaving CTemplateV2RequestPropertyPage::OnInitDialog ()\n");
|
|
return TRUE; // return TRUE unless you set the focus to a control
|
|
// EXCEPTION: OCX Property Pages should return FALSE
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::EnableControls ()
|
|
{
|
|
if ( m_rCertTemplate.ReadOnly () )
|
|
{
|
|
GetDlgItem (IDC_PURPOSE_COMBO)->EnableWindow (FALSE);
|
|
|
|
int nCnt = m_CSPListbox.GetCount ();
|
|
for (int nIndex = 0; nIndex < nCnt; nIndex++)
|
|
m_CSPListbox.Enable (nIndex, FALSE);
|
|
|
|
GetDlgItem (IDC_EXPORT_PRIVATE_KEY)->EnableWindow (FALSE);
|
|
|
|
//version 2 fields
|
|
GetDlgItem (IDC_ARCHIVE_KEY_CHECK)->EnableWindow (FALSE);
|
|
GetDlgItem (IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK)->EnableWindow (FALSE);
|
|
SendDlgItemMessage (IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK, BM_SETCHECK, BST_UNCHECKED);
|
|
GetDlgItem (IDC_MINIMUM_KEYSIZE_LABEL)->EnableWindow (FALSE);
|
|
GetDlgItem (IDC_MINIMUM_KEYSIZE_VALUE)->EnableWindow (FALSE);
|
|
GetDlgItem (IDC_USER_INPUT_REQUIRED_FOR_AUTOENROLLMENT)->EnableWindow (FALSE);
|
|
GetDlgItem (IDC_DELETE_PERMANENTLY)->EnableWindow (FALSE);
|
|
}
|
|
else
|
|
{
|
|
BOOL bEncryptionSelected = FALSE;
|
|
int nIndex = m_purposeCombo.GetCurSel ();
|
|
|
|
if ( nIndex >= 0 )
|
|
{
|
|
switch (m_purposeCombo.GetItemData (nIndex))
|
|
{
|
|
case REQUEST_PURPOSE_SIGNATURE:
|
|
bEncryptionSelected = FALSE;
|
|
break;
|
|
|
|
case REQUEST_PURPOSE_SIGNATURE_AND_ENCRYPTION:
|
|
case REQUEST_PURPOSE_ENCRYPTION:
|
|
bEncryptionSelected = TRUE;
|
|
break;
|
|
|
|
default:
|
|
_ASSERT (0);
|
|
break;
|
|
}
|
|
}
|
|
|
|
GetDlgItem (IDC_DELETE_PERMANENTLY)->EnableWindow (!bEncryptionSelected);
|
|
if ( bEncryptionSelected &&
|
|
BST_CHECKED == SendDlgItemMessage (IDC_DELETE_PERMANENTLY, BM_GETCHECK) )
|
|
{
|
|
SendDlgItemMessage (IDC_DELETE_PERMANENTLY, BM_SETCHECK, BST_UNCHECKED);
|
|
m_rCertTemplate.SetRemoveInvalidCertFromPersonalStore (false);
|
|
}
|
|
|
|
GetDlgItem (IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK)->EnableWindow (bEncryptionSelected);
|
|
if ( !bEncryptionSelected )
|
|
SendDlgItemMessage (IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK, BM_SETCHECK, BST_UNCHECKED);
|
|
|
|
BOOL bEnableArchiveKeyCheck = bEncryptionSelected;
|
|
|
|
if ( m_nProvDSSCnt > 0 )
|
|
bEnableArchiveKeyCheck = FALSE;
|
|
|
|
if ( bEnableArchiveKeyCheck )
|
|
{
|
|
GetDlgItem (IDC_ARCHIVE_KEY_CHECK)->EnableWindow (TRUE);
|
|
}
|
|
else
|
|
{
|
|
SendDlgItemMessage (IDC_ARCHIVE_KEY_CHECK, BM_SETCHECK, BST_UNCHECKED);
|
|
OnArchiveKeyCheck (); // clear flag
|
|
GetDlgItem (IDC_ARCHIVE_KEY_CHECK)->EnableWindow (FALSE);
|
|
}
|
|
}
|
|
}
|
|
|
|
|
|
HRESULT CTemplateV2RequestPropertyPage::EnumerateCSPs(DWORD dwMinKeySize)
|
|
{
|
|
_TRACE (1, L"Entering CTemplateV2RequestPropertyPage::EnumerateCSPs\n");
|
|
HRESULT hr = S_OK;
|
|
for (DWORD dwIndex = 0; ;dwIndex++)
|
|
{
|
|
DWORD cbName = 0;
|
|
DWORD dwProvType = 0;
|
|
|
|
if ( CryptEnumProviders (dwIndex, NULL, 0, &dwProvType, NULL, &cbName) )
|
|
{
|
|
PWSTR pszTypeName = new WCHAR[cbName];
|
|
if ( pszTypeName )
|
|
{
|
|
if ( CryptEnumProviders (dwIndex, NULL, 0, &dwProvType,
|
|
pszTypeName, &cbName) )
|
|
{
|
|
DWORD dwSigMaxKey = (DWORD) -1;
|
|
DWORD dwKeyExMaxKey = (DWORD) -1;
|
|
|
|
CSPGetMaxKeySupported (pszTypeName, dwProvType, dwSigMaxKey, dwKeyExMaxKey);
|
|
// If either of these values is still -1, then it was not
|
|
// set. Set to 0.
|
|
if ( -1 == dwSigMaxKey )
|
|
dwSigMaxKey = 0;
|
|
if ( -1 == dwKeyExMaxKey )
|
|
dwKeyExMaxKey = 0;
|
|
CT_CSP_DATA* pNewData = new CT_CSP_DATA (pszTypeName,
|
|
dwProvType, dwSigMaxKey, dwKeyExMaxKey);
|
|
if ( pNewData )
|
|
{
|
|
m_CSPList.AddTail (pNewData);
|
|
}
|
|
}
|
|
else
|
|
{
|
|
hr = HRESULT_FROM_WIN32 (GetLastError ());
|
|
_TRACE (0, L"CryptEnumProviderTypes () failed: 0x%x\n", hr);
|
|
break;
|
|
}
|
|
|
|
delete [] pszTypeName;
|
|
}
|
|
else
|
|
hr = E_OUTOFMEMORY;
|
|
}
|
|
else
|
|
{
|
|
hr = HRESULT_FROM_WIN32 (GetLastError ());
|
|
_TRACE (0, L"CryptEnumProviderTypes () failed: 0x%x\n", hr);
|
|
break;
|
|
}
|
|
}
|
|
|
|
|
|
int nCSPIndex = 0;
|
|
CString szCSP;
|
|
|
|
NormalizeCSPListBox (dwMinKeySize, false);
|
|
|
|
CStringList invalidCSPs; // CSPs selected but not supporting the key size
|
|
// Set the checks
|
|
m_nProvDSSCnt = 0;
|
|
nCSPIndex = 0;
|
|
while ( SUCCEEDED (m_rCertTemplate.GetCSP (nCSPIndex, szCSP)) )
|
|
{
|
|
int nIndex = m_CSPListbox.FindString (-1, szCSP);
|
|
if ( LB_ERR != nIndex )
|
|
{
|
|
m_CSPListbox.SetCheck (nIndex, BST_CHECKED);
|
|
CT_CSP_DATA* pCSPData = (CT_CSP_DATA*) m_CSPListbox.GetItemData (nIndex);
|
|
if ( pCSPData )
|
|
{
|
|
if ( PROV_DSS == pCSPData->m_dwProvType ||
|
|
PROV_DSS_DH == pCSPData->m_dwProvType )
|
|
{
|
|
m_nProvDSSCnt++;
|
|
}
|
|
}
|
|
}
|
|
else
|
|
{
|
|
invalidCSPs.AddTail (szCSP);
|
|
}
|
|
nCSPIndex++;
|
|
}
|
|
|
|
for (POSITION nextPos = invalidCSPs.GetHeadPosition (); nextPos;)
|
|
{
|
|
CString szInvalidCSP = invalidCSPs.GetNext (nextPos);
|
|
if ( !szInvalidCSP.IsEmpty () )
|
|
{
|
|
m_rCertTemplate.ModifyCSPList (szInvalidCSP, false); // remove
|
|
}
|
|
}
|
|
|
|
EnableControls ();
|
|
|
|
_TRACE (-1, L"Entering CTemplateV2RequestPropertyPage::EnumerateCSPs: 0x%x\n", hr);
|
|
return hr;
|
|
}
|
|
|
|
|
|
|
|
void CTemplateV2RequestPropertyPage::OnSelchangePurposeCombo()
|
|
{
|
|
int nIndex = m_purposeCombo.GetCurSel ();
|
|
if ( nIndex >= 0 )
|
|
{
|
|
// NTRAID# 278356 CertSRV: No CSPs in mmc certificate snapin advanced
|
|
// option list with v2 templates that have ENC and SIG as purpose.
|
|
switch (m_purposeCombo.GetItemData (nIndex))
|
|
{
|
|
case REQUEST_PURPOSE_SIGNATURE:
|
|
m_rCertTemplate.SetEncryptionSignature (false);
|
|
m_rCertTemplate.SetKeySpecSignature (true);
|
|
break;
|
|
|
|
case REQUEST_PURPOSE_ENCRYPTION:
|
|
m_rCertTemplate.SetEncryptionSignature (true);
|
|
m_rCertTemplate.SetKeySpecSignature (false);
|
|
m_rCertTemplate.SetDigitalSignature (false);
|
|
break;
|
|
|
|
case REQUEST_PURPOSE_SIGNATURE_AND_ENCRYPTION:
|
|
m_rCertTemplate.SetEncryptionSignature (true);
|
|
m_rCertTemplate.SetKeySpecSignature (false);
|
|
m_rCertTemplate.SetDigitalSignature (true);
|
|
break;
|
|
|
|
default:
|
|
_ASSERT (0);
|
|
break;
|
|
}
|
|
}
|
|
|
|
int nSel = m_minKeySizeCombo.GetCurSel ();
|
|
ASSERT (nSel >= 0);
|
|
if ( nSel >= 0 )
|
|
{
|
|
DWORD dwMinKeySize = (DWORD) m_minKeySizeCombo.GetItemData (nSel);
|
|
ASSERT (dwMinKeySize > 0);
|
|
|
|
// Clear CSP list and add only values that correspond, saving checks
|
|
NormalizeCSPListBox (dwMinKeySize, true);
|
|
}
|
|
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
EnableControls ();
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::AddKeySizeToCombo(DWORD dwValue, PCWSTR strValue, DWORD dwSizeToSelect)
|
|
{
|
|
int nIndex = m_minKeySizeCombo.AddString (strValue);
|
|
if ( nIndex >= 0 )
|
|
{
|
|
m_minKeySizeCombo.SetItemData (nIndex, dwValue);
|
|
if ( dwSizeToSelect == dwValue )
|
|
m_minKeySizeCombo.SetCurSel (nIndex);
|
|
}
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::OnExportPrivateKey()
|
|
{
|
|
bool bMakeExportable = (BST_CHECKED == SendDlgItemMessage (IDC_EXPORT_PRIVATE_KEY, BM_GETCHECK));
|
|
|
|
m_rCertTemplate.MakePrivateKeyExportable (bMakeExportable);
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::OnArchiveKeyCheck()
|
|
{
|
|
bool bAllowKeyArchival = (BST_CHECKED == SendDlgItemMessage (IDC_ARCHIVE_KEY_CHECK, BM_GETCHECK));
|
|
|
|
m_rCertTemplate.AllowPrivateKeyArchival (bAllowKeyArchival);
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::OnIncludeSymmetricAlgorithmsCheck()
|
|
{
|
|
bool bInclude =
|
|
(BST_CHECKED == SendDlgItemMessage (IDC_INCLUDE_SYMMETRIC_ALGORITHMS_CHECK, BM_GETCHECK));
|
|
|
|
m_rCertTemplate.IncludeSymmetricAlgorithems (bInclude);
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::OnSelchangeMinimumKeysizeValue()
|
|
{
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
|
|
int nSel = m_minKeySizeCombo.GetCurSel ();
|
|
ASSERT (nSel >= 0);
|
|
if ( nSel >= 0 )
|
|
{
|
|
DWORD dwMinKeySize = (DWORD) m_minKeySizeCombo.GetItemData (nSel);
|
|
ASSERT (dwMinKeySize > 0);
|
|
HRESULT hr = m_rCertTemplate.SetMinimumKeySizeValue (dwMinKeySize);
|
|
if ( FAILED (hr) )
|
|
{
|
|
CString text;
|
|
CString caption;
|
|
CThemeContextActivator activator;
|
|
|
|
VERIFY (caption.LoadString (IDS_CERTTMPL));
|
|
text.FormatMessage (IDS_CANNOT_WRITE_MINKEYSIZE, hr);
|
|
|
|
MessageBox (text, caption, MB_OK | MB_ICONWARNING);
|
|
}
|
|
|
|
// Clear CSP list and add only values that correspond, saving checks
|
|
NormalizeCSPListBox (dwMinKeySize, true);
|
|
}
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::OnCheckChange()
|
|
{
|
|
int nSel = m_CSPListbox.GetCurSel ();
|
|
if ( nSel >= 0 )
|
|
{
|
|
CString szCSPName;
|
|
|
|
m_CSPListbox.GetText (nSel, szCSPName);
|
|
|
|
if ( !szCSPName.IsEmpty () )
|
|
{
|
|
HRESULT hr = S_OK;
|
|
if ( BST_CHECKED == m_CSPListbox.GetCheck (nSel) )
|
|
{
|
|
hr = m_rCertTemplate.ModifyCSPList (szCSPName, true); // add
|
|
CT_CSP_DATA* pData = (CT_CSP_DATA*) m_CSPListbox.GetItemData (nSel);
|
|
if ( pData )
|
|
{
|
|
if ( PROV_DSS == pData->m_dwProvType || PROV_DSS_DH == pData->m_dwProvType )
|
|
m_nProvDSSCnt++;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
hr = m_rCertTemplate.ModifyCSPList (szCSPName, false); // remove
|
|
CT_CSP_DATA* pData = (CT_CSP_DATA*) m_CSPListbox.GetItemData (nSel);
|
|
if ( pData )
|
|
{
|
|
if ( PROV_DSS == pData->m_dwProvType || PROV_DSS_DH == pData->m_dwProvType )
|
|
m_nProvDSSCnt--;
|
|
}
|
|
}
|
|
if ( SUCCEEDED (hr) )
|
|
{
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
}
|
|
}
|
|
}
|
|
EnableControls ();
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::DoContextHelp (HWND hWndControl)
|
|
{
|
|
_TRACE(1, L"Entering CTemplateV2RequestPropertyPage::DoContextHelp\n");
|
|
|
|
switch (::GetDlgCtrlID (hWndControl))
|
|
{
|
|
case IDC_STATIC:
|
|
case IDC_MINIMUM_KEYSIZE_LABEL:
|
|
break;
|
|
|
|
default:
|
|
// Display context help for a control
|
|
if ( !::WinHelp (
|
|
hWndControl,
|
|
GetContextHelpFile (),
|
|
HELP_WM_HELP,
|
|
(DWORD_PTR) g_aHelpIDs_IDD_TEMPLATE_V2_REQUEST) )
|
|
{
|
|
_TRACE(0, L"WinHelp () failed: 0x%x\n", GetLastError ());
|
|
}
|
|
break;
|
|
}
|
|
_TRACE(-1, L"Leaving CTemplateV2RequestPropertyPage::DoContextHelp\n");
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::OnUserInputRequiredForAutoenrollment()
|
|
{
|
|
bool bSet = BST_CHECKED == SendDlgItemMessage (
|
|
IDC_USER_INPUT_REQUIRED_FOR_AUTOENROLLMENT, BM_GETCHECK);
|
|
|
|
m_rCertTemplate.SetUserInteractionRequired (bSet);
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
}
|
|
|
|
void CTemplateV2RequestPropertyPage::OnDeletePermanently()
|
|
{
|
|
m_rCertTemplate.SetRemoveInvalidCertFromPersonalStore (
|
|
BST_CHECKED == SendDlgItemMessage (IDC_DELETE_PERMANENTLY, BM_GETCHECK));
|
|
SetModified ();
|
|
m_rbIsDirty = true;
|
|
}
|
|
|
|
|
|
HRESULT CTemplateV2RequestPropertyPage::CSPGetMaxKeySupported (
|
|
PCWSTR pszProvider,
|
|
DWORD dwProvType,
|
|
DWORD& rdwSigMaxKey,
|
|
DWORD& rdwKeyExMaxKey)
|
|
{
|
|
_TRACE (1, L"Entering CTemplateV2RequestPropertyPage::CSPGetMaxKeySupported (%s)\n",
|
|
pszProvider);
|
|
HRESULT hr = S_OK;
|
|
HCRYPTPROV hProv = 0;
|
|
|
|
BOOL bResult = ::CryptAcquireContext (&hProv,
|
|
NULL,
|
|
pszProvider,
|
|
dwProvType,
|
|
CRYPT_VERIFYCONTEXT | CRYPT_SILENT);
|
|
if ( bResult )
|
|
{
|
|
PROV_ENUMALGS_EX EnumAlgs; // Structure to hold information on
|
|
// a supported algorithm
|
|
DWORD dFlag = CRYPT_FIRST; // Flag indicating that the first
|
|
// supported algorithm is to be
|
|
// enumerated. Changed to 0 after the
|
|
// first call to the function.
|
|
DWORD cbData = sizeof(PROV_ENUMALGS_EX);
|
|
|
|
while (CryptGetProvParam(
|
|
hProv, // handle to an open cryptographic provider
|
|
PP_ENUMALGS_EX,
|
|
(BYTE *)&EnumAlgs, // information on the next algorithm
|
|
&cbData, // number of bytes in the PROV_ENUMALGS_EX
|
|
dFlag)) // flag to indicate whether this is a first or
|
|
// subsequent algorithm supported by the
|
|
// CSP.
|
|
{
|
|
if ( ALG_CLASS_SIGNATURE == GET_ALG_CLASS (EnumAlgs.aiAlgid) )
|
|
rdwSigMaxKey = EnumAlgs.dwMaxLen;
|
|
|
|
if ( ALG_CLASS_KEY_EXCHANGE == GET_ALG_CLASS (EnumAlgs.aiAlgid) )
|
|
rdwKeyExMaxKey = EnumAlgs.dwMaxLen;
|
|
|
|
if ( -1 != rdwSigMaxKey && -1 != rdwKeyExMaxKey )
|
|
break; // both have been set
|
|
|
|
dFlag = 0; // Set to 0 after the first call,
|
|
} // end of while loop. When all of the supported algorithms have
|
|
// been enumerated, the function returns FALSE.
|
|
|
|
::CryptReleaseContext (hProv, 0);
|
|
}
|
|
else
|
|
{
|
|
DWORD dwErr = GetLastError ();
|
|
_TRACE (0, L"CryptAcquireContext () failed: 0x%x\n", dwErr);
|
|
hr = HRESULT_FROM_WIN32 (dwErr);
|
|
}
|
|
|
|
_TRACE (-1, L"Leaving CTemplateV2RequestPropertyPage::CSPGetMaxKeySupported (%s)\n",
|
|
pszProvider);
|
|
return hr;
|
|
}
|
|
|
|
// NTRAID# 313348 Cert Template UI: Need to warn the user if the template
|
|
// minimum key length is not supported by the CSPs
|
|
void CTemplateV2RequestPropertyPage::NormalizeCSPListBox (DWORD dwMinKeySize, bool bSetChecks)
|
|
{
|
|
// Save the checked CSPs
|
|
CStringList checkedCSPList;
|
|
|
|
if ( bSetChecks )
|
|
{
|
|
int nCnt = m_CSPListbox.GetCount ();
|
|
while (nCnt > 0)
|
|
{
|
|
nCnt--;
|
|
if ( BST_CHECKED == m_CSPListbox.GetCheck (nCnt) )
|
|
{
|
|
CString szText;
|
|
m_CSPListbox.GetText (nCnt, szText);
|
|
checkedCSPList.AddTail (szText);
|
|
m_rCertTemplate.ModifyCSPList (szText, false); // remove
|
|
}
|
|
}
|
|
}
|
|
|
|
// Remove all CSPs
|
|
m_CSPListbox.ResetContent ();
|
|
|
|
bool bSignatureOnly = false;
|
|
int nIndex = m_purposeCombo.GetCurSel ();
|
|
if ( nIndex >= 0 )
|
|
bSignatureOnly = (REQUEST_PURPOSE_SIGNATURE == m_purposeCombo.GetItemData (nIndex));
|
|
|
|
// Fill the listbox with conforming CSPs
|
|
for (POSITION nextPos = m_CSPList.GetHeadPosition (); nextPos; )
|
|
{
|
|
CT_CSP_DATA* pCSPData = m_CSPList.GetNext (nextPos);
|
|
if ( pCSPData )
|
|
{
|
|
bool bAddString = false;
|
|
|
|
if ( bSignatureOnly && pCSPData->m_dwSigMaxKeySize >= dwMinKeySize )
|
|
bAddString = true;
|
|
else if ( pCSPData->m_dwKeyExMaxKeySize >= dwMinKeySize )
|
|
bAddString = true;
|
|
|
|
if ( bAddString )
|
|
{
|
|
nIndex = m_CSPListbox.AddString (pCSPData->m_szName);
|
|
if ( nIndex < 0 )
|
|
{
|
|
_TRACE (0, L"AddString (%s) failed: %d\n", nIndex);
|
|
break;
|
|
}
|
|
else
|
|
{
|
|
m_CSPListbox.SetItemData (nIndex, (DWORD_PTR) pCSPData);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if ( bSetChecks )
|
|
{
|
|
m_nProvDSSCnt = 0;
|
|
// Restore saved checks, where possible
|
|
for (POSITION nextPos = checkedCSPList.GetHeadPosition (); nextPos; )
|
|
{
|
|
CString szText = checkedCSPList.GetNext (nextPos);
|
|
nIndex = m_CSPListbox.FindStringExact (-1, szText);
|
|
if ( LB_ERR != nIndex )
|
|
{
|
|
m_CSPListbox.SetCheck (nIndex, BST_CHECKED);
|
|
m_rCertTemplate.ModifyCSPList (szText, true); // add
|
|
CT_CSP_DATA* pCSPData = (CT_CSP_DATA*) m_CSPListbox.GetItemData (nIndex);
|
|
if ( pCSPData )
|
|
{
|
|
if ( PROV_DSS == pCSPData->m_dwProvType ||
|
|
PROV_DSS_DH == pCSPData->m_dwProvType )
|
|
{
|
|
m_nProvDSSCnt++;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|