projects / reactos.git / blob
? search:


783149c1105f75885b81eabe797c961d33db90c0
[reactos.git] / reactos / dll / win32 / crypt32 / regstore.c
1 /*
2 * Copyright 2004-2007 Juan Lang
3 *
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
8 *
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
13 *
14 * You should have received a copy of the GNU Lesser General Public
15 * License along with this library; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
17 */
18
19 #include "crypt32_private.h"
20
21 #include <shlwapi.h>
22
23 WINE_DEFAULT_DEBUG_CHANNEL(crypt);
24
25 typedef struct _WINE_HASH_TO_DELETE
26 {
27 BYTE hash[20];
28 struct list entry;
29 } WINE_HASH_TO_DELETE;
30
31 typedef struct _WINE_REGSTOREINFO
32 {
33 DWORD dwOpenFlags;
34 HCERTSTORE memStore;
35 HKEY key;
36 BOOL dirty;
37 CRITICAL_SECTION cs;
38 struct list certsToDelete;
39 struct list crlsToDelete;
40 struct list ctlsToDelete;
41 } WINE_REGSTOREINFO;
42
43 static void CRYPT_HashToStr(const BYTE *hash, LPWSTR asciiHash)
44 {
45 static const WCHAR fmt[] = { '%','0','2','X',0 };
46 DWORD i;
47
48 assert(hash);
49 assert(asciiHash);
50
51 for (i = 0; i < 20; i++)
52 wsprintfW(asciiHash + i * 2, fmt, hash[i]);
53 }
54
55 static const WCHAR CertsW[] = { 'C','e','r','t','i','f','i','c','a','t','e','s',
56 0 };
57 static const WCHAR CRLsW[] = { 'C','R','L','s',0 };
58 static const WCHAR CTLsW[] = { 'C','T','L','s',0 };
59 static const WCHAR BlobW[] = { 'B','l','o','b',0 };
60
61 static void CRYPT_RegReadSerializedFromReg(HKEY key, DWORD contextType,
62 HCERTSTORE store)
63 {
64 LONG rc;
65 DWORD index = 0;
66 WCHAR subKeyName[MAX_PATH];
67
68 do {
69 DWORD size = sizeof(subKeyName) / sizeof(WCHAR);
70
71 rc = RegEnumKeyExW(key, index++, subKeyName, &size, NULL, NULL, NULL,
72 NULL);
73 if (!rc)
74 {
75 HKEY subKey;
76
77 rc = RegOpenKeyExW(key, subKeyName, 0, KEY_READ, &subKey);
78 if (!rc)
79 {
80 LPBYTE buf = NULL;
81
82 size = 0;
83 rc = RegQueryValueExW(subKey, BlobW, NULL, NULL, NULL, &size);
84 if (!rc)
85 buf = CryptMemAlloc(size);
86 if (buf)
87 {
88 rc = RegQueryValueExW(subKey, BlobW, NULL, NULL, buf,
89 &size);
90 if (!rc)
91 {
92 const void *context;
93 DWORD addedType;
94
95 TRACE("Adding cert with hash %s\n",
96 debugstr_w(subKeyName));
97 context = CRYPT_ReadSerializedElement(buf, size,
98 contextType, &addedType);
99 if (context)
100 {
101 const WINE_CONTEXT_INTERFACE *contextInterface;
102 BYTE hash[20];
103
104 switch (addedType)
105 {
106 case CERT_STORE_CERTIFICATE_CONTEXT:
107 contextInterface = pCertInterface;
108 break;
109 case CERT_STORE_CRL_CONTEXT:
110 contextInterface = pCRLInterface;
111 break;
112 case CERT_STORE_CTL_CONTEXT:
113 contextInterface = pCTLInterface;
114 break;
115 default:
116 contextInterface = NULL;
117 }
118 if (contextInterface)
119 {
120 size = sizeof(hash);
121 if (contextInterface->getProp(context,
122 CERT_HASH_PROP_ID, hash, &size))
123 {
124 WCHAR asciiHash[20 * 2 + 1];
125
126 CRYPT_HashToStr(hash, asciiHash);
127 TRACE("comparing %s\n",
128 debugstr_w(asciiHash));
129 TRACE("with %s\n", debugstr_w(subKeyName));
130 if (!lstrcmpW(asciiHash, subKeyName))
131 {
132 TRACE("hash matches, adding\n");
133 contextInterface->addContextToStore(
134 store, context,
135 CERT_STORE_ADD_REPLACE_EXISTING, NULL);
136 }
137 else
138 TRACE("hash doesn't match, ignoring\n");
139 }
140 Context_Release(context_from_ptr(context));
141 }
142 }
143 }
144 CryptMemFree(buf);
145 }
146 RegCloseKey(subKey);
147 }
148 /* Ignore intermediate errors, continue enumerating */
149 rc = ERROR_SUCCESS;
150 }
151 } while (!rc);
152 }
153
154 static void CRYPT_RegReadFromReg(HKEY key, HCERTSTORE store)
155 {
156 static const WCHAR * const subKeys[] = { CertsW, CRLsW, CTLsW };
157 static const DWORD contextFlags[] = { CERT_STORE_CERTIFICATE_CONTEXT_FLAG,
158 CERT_STORE_CRL_CONTEXT_FLAG, CERT_STORE_CTL_CONTEXT_FLAG };
159 DWORD i;
160
161 for (i = 0; i < sizeof(subKeys) / sizeof(subKeys[0]); i++)
162 {
163 HKEY hKey;
164 LONG rc;
165
166 rc = RegCreateKeyExW(key, subKeys[i], 0, NULL, 0, KEY_READ, NULL,
167 &hKey, NULL);
168 if (!rc)
169 {
170 CRYPT_RegReadSerializedFromReg(hKey, contextFlags[i], store);
171 RegCloseKey(hKey);
172 }
173 }
174 }
175
176 /* Hash is assumed to be 20 bytes in length (a SHA-1 hash) */
177 static BOOL CRYPT_WriteSerializedToReg(HKEY key, const BYTE *hash, const BYTE *buf,
178 DWORD len)
179 {
180 WCHAR asciiHash[20 * 2 + 1];
181 LONG rc;
182 HKEY subKey;
183 BOOL ret;
184
185 CRYPT_HashToStr(hash, asciiHash);
186 rc = RegCreateKeyExW(key, asciiHash, 0, NULL, 0, KEY_ALL_ACCESS, NULL,
187 &subKey, NULL);
188 if (!rc)
189 {
190 rc = RegSetValueExW(subKey, BlobW, 0, REG_BINARY, buf, len);
191 RegCloseKey(subKey);
192 }
193 if (!rc)
194 ret = TRUE;
195 else
196 {
197 SetLastError(rc);
198 ret = FALSE;
199 }
200 return ret;
201 }
202
203 static BOOL CRYPT_SerializeContextsToReg(HKEY key,
204 const WINE_CONTEXT_INTERFACE *contextInterface, HCERTSTORE memStore)
205 {
206 const void *context = NULL;
207 BOOL ret;
208
209 do {
210 context = contextInterface->enumContextsInStore(memStore, context);
211 if (context)
212 {
213 BYTE hash[20];
214 DWORD hashSize = sizeof(hash);
215
216 ret = contextInterface->getProp(context, CERT_HASH_PROP_ID, hash,
217 &hashSize);
218 if (ret)
219 {
220 DWORD size = 0;
221 LPBYTE buf = NULL;
222
223 ret = contextInterface->serialize(context, 0, NULL, &size);
224 if (size)
225 buf = CryptMemAlloc(size);
226 if (buf)
227 {
228 ret = contextInterface->serialize(context, 0, buf, &size);
229 if (ret)
230 ret = CRYPT_WriteSerializedToReg(key, hash, buf, size);
231 }
232 CryptMemFree(buf);
233 }
234 }
235 else
236 ret = TRUE;
237 } while (ret && context != NULL);
238 if (context)
239 Context_Release(context_from_ptr(context));
240 return ret;
241 }
242
243 static BOOL CRYPT_RegWriteToReg(WINE_REGSTOREINFO *store)
244 {
245 static const WCHAR * const subKeys[] = { CertsW, CRLsW, CTLsW };
246 const WINE_CONTEXT_INTERFACE * const interfaces[] = { pCertInterface,
247 pCRLInterface, pCTLInterface };
248 struct list *listToDelete[] = { &store->certsToDelete, &store->crlsToDelete,
249 &store->ctlsToDelete };
250 BOOL ret = TRUE;
251 DWORD i;
252
253 for (i = 0; ret && i < sizeof(subKeys) / sizeof(subKeys[0]); i++)
254 {
255 HKEY key;
256 LONG rc = RegCreateKeyExW(store->key, subKeys[i], 0, NULL, 0,
257 KEY_ALL_ACCESS, NULL, &key, NULL);
258
259 if (!rc)
260 {
261 if (listToDelete[i])
262 {
263 WINE_HASH_TO_DELETE *toDelete, *next;
264 WCHAR asciiHash[20 * 2 + 1];
265
266 EnterCriticalSection(&store->cs);
267 LIST_FOR_EACH_ENTRY_SAFE(toDelete, next, listToDelete[i],
268 WINE_HASH_TO_DELETE, entry)
269 {
270 LONG rc;
271
272 CRYPT_HashToStr(toDelete->hash, asciiHash);
273 TRACE("Removing %s\n", debugstr_w(asciiHash));
274 rc = RegDeleteKeyW(key, asciiHash);
275 if (rc != ERROR_SUCCESS && rc != ERROR_FILE_NOT_FOUND)
276 {
277 SetLastError(rc);
278 ret = FALSE;
279 }
280 list_remove(&toDelete->entry);
281 CryptMemFree(toDelete);
282 }
283 LeaveCriticalSection(&store->cs);
284 }
285 ret = CRYPT_SerializeContextsToReg(key, interfaces[i],
286 store->memStore);
287 RegCloseKey(key);
288 }
289 else
290 {
291 SetLastError(rc);
292 ret = FALSE;
293 }
294 }
295 return ret;
296 }
297
298 /* If force is true or the registry store is dirty, writes the contents of the
299 * store to the registry.
300 */
301 static BOOL CRYPT_RegFlushStore(WINE_REGSTOREINFO *store, BOOL force)
302 {
303 BOOL ret;
304
305 TRACE("(%p, %d)\n", store, force);
306
307 if (store->dirty || force)
308 ret = CRYPT_RegWriteToReg(store);
309 else
310 ret = TRUE;
311 return ret;
312 }
313
314 static void WINAPI CRYPT_RegCloseStore(HCERTSTORE hCertStore, DWORD dwFlags)
315 {
316 WINE_REGSTOREINFO *store = hCertStore;
317
318 TRACE("(%p, %08x)\n", store, dwFlags);
319 if (dwFlags)
320 FIXME("Unimplemented flags: %08x\n", dwFlags);
321
322 CRYPT_RegFlushStore(store, FALSE);
323 RegCloseKey(store->key);
324 store->cs.DebugInfo->Spare[0] = 0;
325 DeleteCriticalSection(&store->cs);
326 CryptMemFree(store);
327 }
328
329 static BOOL CRYPT_RegWriteContext(WINE_REGSTOREINFO *store,
330 const void *context, DWORD dwFlags)
331 {
332 BOOL ret;
333
334 if (dwFlags & CERT_STORE_PROV_WRITE_ADD_FLAG)
335 {
336 store->dirty = TRUE;
337 ret = TRUE;
338 }
339 else
340 ret = FALSE;
341 return ret;
342 }
343
344 static BOOL CRYPT_RegDeleteContext(WINE_REGSTOREINFO *store,
345 struct list *deleteList, const void *context,
346 const WINE_CONTEXT_INTERFACE *contextInterface)
347 {
348 BOOL ret;
349
350 if (store->dwOpenFlags & CERT_STORE_READONLY_FLAG)
351 {
352 SetLastError(ERROR_ACCESS_DENIED);
353 ret = FALSE;
354 }
355 else
356 {
357 WINE_HASH_TO_DELETE *toDelete = CryptMemAlloc(sizeof(WINE_HASH_TO_DELETE));
358
359 if (toDelete)
360 {
361 DWORD size = sizeof(toDelete->hash);
362
363 ret = contextInterface->getProp(context, CERT_HASH_PROP_ID,
364 toDelete->hash, &size);
365 if (ret)
366 {
367 EnterCriticalSection(&store->cs);
368 list_add_tail(deleteList, &toDelete->entry);
369 LeaveCriticalSection(&store->cs);
370 }
371 else
372 {
373 CryptMemFree(toDelete);
374 ret = FALSE;
375 }
376 }
377 else
378 ret = FALSE;
379 if (ret)
380 store->dirty = TRUE;
381 }
382 return ret;
383 }
384
385 static BOOL WINAPI CRYPT_RegWriteCert(HCERTSTORE hCertStore,
386 PCCERT_CONTEXT cert, DWORD dwFlags)
387 {
388 WINE_REGSTOREINFO *store = hCertStore;
389
390 TRACE("(%p, %p, %d)\n", hCertStore, cert, dwFlags);
391
392 return CRYPT_RegWriteContext(store, cert, dwFlags);
393 }
394
395 static BOOL WINAPI CRYPT_RegDeleteCert(HCERTSTORE hCertStore,
396 PCCERT_CONTEXT pCertContext, DWORD dwFlags)
397 {
398 WINE_REGSTOREINFO *store = hCertStore;
399
400 TRACE("(%p, %p, %08x)\n", store, pCertContext, dwFlags);
401
402 return CRYPT_RegDeleteContext(store, &store->certsToDelete, pCertContext,
403 pCertInterface);
404 }
405
406 static BOOL WINAPI CRYPT_RegWriteCRL(HCERTSTORE hCertStore,
407 PCCRL_CONTEXT crl, DWORD dwFlags)
408 {
409 WINE_REGSTOREINFO *store = hCertStore;
410
411 TRACE("(%p, %p, %d)\n", hCertStore, crl, dwFlags);
412
413 return CRYPT_RegWriteContext(store, crl, dwFlags);
414 }
415
416 static BOOL WINAPI CRYPT_RegDeleteCRL(HCERTSTORE hCertStore,
417 PCCRL_CONTEXT pCrlContext, DWORD dwFlags)
418 {
419 WINE_REGSTOREINFO *store = hCertStore;
420
421 TRACE("(%p, %p, %08x)\n", store, pCrlContext, dwFlags);
422
423 return CRYPT_RegDeleteContext(store, &store->crlsToDelete, pCrlContext,
424 pCRLInterface);
425 }
426
427 static BOOL WINAPI CRYPT_RegWriteCTL(HCERTSTORE hCertStore,
428 PCCTL_CONTEXT ctl, DWORD dwFlags)
429 {
430 WINE_REGSTOREINFO *store = hCertStore;
431
432 TRACE("(%p, %p, %d)\n", hCertStore, ctl, dwFlags);
433
434 return CRYPT_RegWriteContext(store, ctl, dwFlags);
435 }
436
437 static BOOL WINAPI CRYPT_RegDeleteCTL(HCERTSTORE hCertStore,
438 PCCTL_CONTEXT pCtlContext, DWORD dwFlags)
439 {
440 WINE_REGSTOREINFO *store = hCertStore;
441
442 TRACE("(%p, %p, %08x)\n", store, pCtlContext, dwFlags);
443
444 return CRYPT_RegDeleteContext(store, &store->ctlsToDelete, pCtlContext,
445 pCTLInterface);
446 }
447
448 static BOOL WINAPI CRYPT_RegControl(HCERTSTORE hCertStore, DWORD dwFlags,
449 DWORD dwCtrlType, void const *pvCtrlPara)
450 {
451 WINE_REGSTOREINFO *store = hCertStore;
452 BOOL ret;
453
454 TRACE("(%p, %08x, %d, %p)\n", hCertStore, dwFlags, dwCtrlType,
455 pvCtrlPara);
456
457 switch (dwCtrlType)
458 {
459 case CERT_STORE_CTRL_RESYNC:
460 {
461 HCERTSTORE memStore = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, 0,
462 CERT_STORE_CREATE_NEW_FLAG, NULL);
463
464 CRYPT_RegFlushStore(store, FALSE);
465 CRYPT_RegReadFromReg(store->key, memStore);
466 I_CertUpdateStore(store->memStore, memStore, 0, 0);
467 CertCloseStore(memStore, 0);
468 ret = TRUE;
469 break;
470 }
471 case CERT_STORE_CTRL_COMMIT:
472 ret = CRYPT_RegFlushStore(store,
473 dwFlags & CERT_STORE_CTRL_COMMIT_FORCE_FLAG);
474 break;
475 case CERT_STORE_CTRL_AUTO_RESYNC:
476 FIXME("CERT_STORE_CTRL_AUTO_RESYNC: stub\n");
477 ret = TRUE;
478 break;
479 default:
480 FIXME("%d: stub\n", dwCtrlType);
481 ret = FALSE;
482 }
483 return ret;
484 }
485
486 static void *regProvFuncs[] = {
487 CRYPT_RegCloseStore,
488 NULL, /* CERT_STORE_PROV_READ_CERT_FUNC */
489 CRYPT_RegWriteCert,
490 CRYPT_RegDeleteCert,
491 NULL, /* CERT_STORE_PROV_SET_CERT_PROPERTY_FUNC */
492 NULL, /* CERT_STORE_PROV_READ_CRL_FUNC */
493 CRYPT_RegWriteCRL,
494 CRYPT_RegDeleteCRL,
495 NULL, /* CERT_STORE_PROV_SET_CRL_PROPERTY_FUNC */
496 NULL, /* CERT_STORE_PROV_READ_CTL_FUNC */
497 CRYPT_RegWriteCTL,
498 CRYPT_RegDeleteCTL,
499 NULL, /* CERT_STORE_PROV_SET_CTL_PROPERTY_FUNC */
500 CRYPT_RegControl,
501 };
502
503 WINECRYPT_CERTSTORE *CRYPT_RegOpenStore(HCRYPTPROV hCryptProv, DWORD dwFlags,
504 const void *pvPara)
505 {
506 WINECRYPT_CERTSTORE *store = NULL;
507
508 TRACE("(%ld, %08x, %p)\n", hCryptProv, dwFlags, pvPara);
509
510 if (dwFlags & CERT_STORE_DELETE_FLAG)
511 {
512 DWORD rc = RegDeleteTreeW((HKEY)pvPara, CertsW);
513
514 if (rc == ERROR_SUCCESS || rc == ERROR_NO_MORE_ITEMS)
515 rc = RegDeleteTreeW((HKEY)pvPara, CRLsW);
516 if (rc == ERROR_SUCCESS || rc == ERROR_NO_MORE_ITEMS)
517 rc = RegDeleteTreeW((HKEY)pvPara, CTLsW);
518 if (rc == ERROR_NO_MORE_ITEMS)
519 rc = ERROR_SUCCESS;
520 SetLastError(rc);
521 }
522 else
523 {
524 HKEY key;
525
526 if (DuplicateHandle(GetCurrentProcess(), (HANDLE)pvPara,
527 GetCurrentProcess(), (LPHANDLE)&key,
528 dwFlags & CERT_STORE_READONLY_FLAG ? KEY_READ : KEY_ALL_ACCESS,
529 TRUE, 0))
530 {
531 WINECRYPT_CERTSTORE *memStore;
532
533 memStore = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, hCryptProv,
534 CERT_STORE_CREATE_NEW_FLAG, NULL);
535 if (memStore)
536 {
537 WINE_REGSTOREINFO *regInfo = CryptMemAlloc(
538 sizeof(WINE_REGSTOREINFO));
539
540 if (regInfo)
541 {
542 CERT_STORE_PROV_INFO provInfo = { 0 };
543
544 regInfo->dwOpenFlags = dwFlags;
545 regInfo->memStore = memStore;
546 regInfo->key = key;
547 InitializeCriticalSection(&regInfo->cs);
548 regInfo->cs.DebugInfo->Spare[0] = (DWORD_PTR)(__FILE__ ": PWINE_REGSTOREINFO->cs");
549 list_init(&regInfo->certsToDelete);
550 list_init(&regInfo->crlsToDelete);
551 list_init(&regInfo->ctlsToDelete);
552 CRYPT_RegReadFromReg(regInfo->key, regInfo->memStore);
553 regInfo->dirty = FALSE;
554 provInfo.cbSize = sizeof(provInfo);
555 provInfo.cStoreProvFunc = sizeof(regProvFuncs) /
556 sizeof(regProvFuncs[0]);
557 provInfo.rgpvStoreProvFunc = regProvFuncs;
558 provInfo.hStoreProv = regInfo;
559 store = CRYPT_ProvCreateStore(dwFlags, memStore, &provInfo);
560 /* Reg store doesn't need crypto provider, so close it */
561 if (hCryptProv &&
562 !(dwFlags & CERT_STORE_NO_CRYPT_RELEASE_FLAG))
563 CryptReleaseContext(hCryptProv, 0);
564 }
565 }
566 }
567 }
568 TRACE("returning %p\n", store);
569 return store;
570 }
A free Windows-compatible Operating System