+++ /dev/null
-/*
- * Copyright 2004-2007 Juan Lang
- *
- * This library is free software; you can redistribute it and/or
- * modify it under the terms of the GNU Lesser General Public
- * License as published by the Free Software Foundation; either
- * version 2.1 of the License, or (at your option) any later version.
- *
- * This library is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
- * Lesser General Public License for more details.
- *
- * You should have received a copy of the GNU Lesser General Public
- * License along with this library; if not, write to the Free Software
- * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
- */
-
-#include "crypt32_private.h"
-
-#include <shlwapi.h>
-
-WINE_DEFAULT_DEBUG_CHANNEL(crypt);
-
-typedef struct _WINE_HASH_TO_DELETE
-{
- BYTE hash[20];
- struct list entry;
-} WINE_HASH_TO_DELETE;
-
-typedef struct _WINE_REGSTOREINFO
-{
- DWORD dwOpenFlags;
- HCERTSTORE memStore;
- HKEY key;
- BOOL dirty;
- CRITICAL_SECTION cs;
- struct list certsToDelete;
- struct list crlsToDelete;
- struct list ctlsToDelete;
-} WINE_REGSTOREINFO;
-
-static void CRYPT_HashToStr(const BYTE *hash, LPWSTR asciiHash)
-{
- static const WCHAR fmt[] = { '%','0','2','X',0 };
- DWORD i;
-
- assert(hash);
- assert(asciiHash);
-
- for (i = 0; i < 20; i++)
- wsprintfW(asciiHash + i * 2, fmt, hash[i]);
-}
-
-static const WCHAR CertsW[] = { 'C','e','r','t','i','f','i','c','a','t','e','s',
- 0 };
-static const WCHAR CRLsW[] = { 'C','R','L','s',0 };
-static const WCHAR CTLsW[] = { 'C','T','L','s',0 };
-static const WCHAR BlobW[] = { 'B','l','o','b',0 };
-
-static void CRYPT_RegReadSerializedFromReg(HKEY key, DWORD contextType,
- HCERTSTORE store)
-{
- LONG rc;
- DWORD index = 0;
- WCHAR subKeyName[MAX_PATH];
-
- do {
- DWORD size = sizeof(subKeyName) / sizeof(WCHAR);
-
- rc = RegEnumKeyExW(key, index++, subKeyName, &size, NULL, NULL, NULL,
- NULL);
- if (!rc)
- {
- HKEY subKey;
-
- rc = RegOpenKeyExW(key, subKeyName, 0, KEY_READ, &subKey);
- if (!rc)
- {
- LPBYTE buf = NULL;
-
- size = 0;
- rc = RegQueryValueExW(subKey, BlobW, NULL, NULL, NULL, &size);
- if (!rc)
- buf = CryptMemAlloc(size);
- if (buf)
- {
- rc = RegQueryValueExW(subKey, BlobW, NULL, NULL, buf,
- &size);
- if (!rc)
- {
- const void *context;
- DWORD addedType;
-
- TRACE("Adding cert with hash %s\n",
- debugstr_w(subKeyName));
- context = CRYPT_ReadSerializedElement(buf, size,
- contextType, &addedType);
- if (context)
- {
- const WINE_CONTEXT_INTERFACE *contextInterface;
- BYTE hash[20];
-
- switch (addedType)
- {
- case CERT_STORE_CERTIFICATE_CONTEXT:
- contextInterface = pCertInterface;
- break;
- case CERT_STORE_CRL_CONTEXT:
- contextInterface = pCRLInterface;
- break;
- case CERT_STORE_CTL_CONTEXT:
- contextInterface = pCTLInterface;
- break;
- default:
- contextInterface = NULL;
- }
- if (contextInterface)
- {
- size = sizeof(hash);
- if (contextInterface->getProp(context,
- CERT_HASH_PROP_ID, hash, &size))
- {
- WCHAR asciiHash[20 * 2 + 1];
-
- CRYPT_HashToStr(hash, asciiHash);
- TRACE("comparing %s\n",
- debugstr_w(asciiHash));
- TRACE("with %s\n", debugstr_w(subKeyName));
- if (!lstrcmpW(asciiHash, subKeyName))
- {
- TRACE("hash matches, adding\n");
- contextInterface->addContextToStore(
- store, context,
- CERT_STORE_ADD_REPLACE_EXISTING, NULL);
- }
- else
- TRACE("hash doesn't match, ignoring\n");
- }
- Context_Release(context_from_ptr(context));
- }
- }
- }
- CryptMemFree(buf);
- }
- RegCloseKey(subKey);
- }
- /* Ignore intermediate errors, continue enumerating */
- rc = ERROR_SUCCESS;
- }
- } while (!rc);
-}
-
-static void CRYPT_RegReadFromReg(HKEY key, HCERTSTORE store)
-{
- static const WCHAR * const subKeys[] = { CertsW, CRLsW, CTLsW };
- static const DWORD contextFlags[] = { CERT_STORE_CERTIFICATE_CONTEXT_FLAG,
- CERT_STORE_CRL_CONTEXT_FLAG, CERT_STORE_CTL_CONTEXT_FLAG };
- DWORD i;
-
- for (i = 0; i < sizeof(subKeys) / sizeof(subKeys[0]); i++)
- {
- HKEY hKey;
- LONG rc;
-
- rc = RegCreateKeyExW(key, subKeys[i], 0, NULL, 0, KEY_READ, NULL,
- &hKey, NULL);
- if (!rc)
- {
- CRYPT_RegReadSerializedFromReg(hKey, contextFlags[i], store);
- RegCloseKey(hKey);
- }
- }
-}
-
-/* Hash is assumed to be 20 bytes in length (a SHA-1 hash) */
-static BOOL CRYPT_WriteSerializedToReg(HKEY key, DWORD flags, const BYTE *hash, const BYTE *buf,
- DWORD len)
-{
- WCHAR asciiHash[20 * 2 + 1];
- LONG rc;
- HKEY subKey;
- BOOL ret;
-
- CRYPT_HashToStr(hash, asciiHash);
- rc = RegCreateKeyExW(key, asciiHash, 0, NULL, flags, KEY_ALL_ACCESS, NULL,
- &subKey, NULL);
- if (!rc)
- {
- rc = RegSetValueExW(subKey, BlobW, 0, REG_BINARY, buf, len);
- RegCloseKey(subKey);
- }
- if (!rc)
- ret = TRUE;
- else
- {
- SetLastError(rc);
- ret = FALSE;
- }
- return ret;
-}
-
-BOOL CRYPT_SerializeContextsToReg(HKEY key, DWORD flags,
- const WINE_CONTEXT_INTERFACE *contextInterface, HCERTSTORE memStore)
-{
- const void *context = NULL;
- BOOL ret;
-
- do {
- context = contextInterface->enumContextsInStore(memStore, context);
- if (context)
- {
- BYTE hash[20];
- DWORD hashSize = sizeof(hash);
-
- ret = contextInterface->getProp(context, CERT_HASH_PROP_ID, hash,
- &hashSize);
- if (ret)
- {
- DWORD size = 0;
- LPBYTE buf = NULL;
-
- ret = contextInterface->serialize(context, 0, NULL, &size);
- if (size)
- buf = CryptMemAlloc(size);
- if (buf)
- {
- ret = contextInterface->serialize(context, 0, buf, &size);
- if (ret)
- ret = CRYPT_WriteSerializedToReg(key, flags, hash, buf, size);
- }
- CryptMemFree(buf);
- }
- }
- else
- ret = TRUE;
- } while (ret && context != NULL);
- if (context)
- Context_Release(context_from_ptr(context));
- return ret;
-}
-
-static BOOL CRYPT_RegWriteToReg(WINE_REGSTOREINFO *store)
-{
- static const WCHAR * const subKeys[] = { CertsW, CRLsW, CTLsW };
- const WINE_CONTEXT_INTERFACE * const interfaces[] = { pCertInterface,
- pCRLInterface, pCTLInterface };
- struct list *listToDelete[] = { &store->certsToDelete, &store->crlsToDelete,
- &store->ctlsToDelete };
- BOOL ret = TRUE;
- DWORD i;
-
- for (i = 0; ret && i < sizeof(subKeys) / sizeof(subKeys[0]); i++)
- {
- HKEY key;
- LONG rc = RegCreateKeyExW(store->key, subKeys[i], 0, NULL, 0,
- KEY_ALL_ACCESS, NULL, &key, NULL);
-
- if (!rc)
- {
- if (listToDelete[i])
- {
- WINE_HASH_TO_DELETE *toDelete, *next;
- WCHAR asciiHash[20 * 2 + 1];
-
- EnterCriticalSection(&store->cs);
- LIST_FOR_EACH_ENTRY_SAFE(toDelete, next, listToDelete[i],
- WINE_HASH_TO_DELETE, entry)
- {
- LONG rc;
-
- CRYPT_HashToStr(toDelete->hash, asciiHash);
- TRACE("Removing %s\n", debugstr_w(asciiHash));
- rc = RegDeleteKeyW(key, asciiHash);
- if (rc != ERROR_SUCCESS && rc != ERROR_FILE_NOT_FOUND)
- {
- SetLastError(rc);
- ret = FALSE;
- }
- list_remove(&toDelete->entry);
- CryptMemFree(toDelete);
- }
- LeaveCriticalSection(&store->cs);
- }
- ret = CRYPT_SerializeContextsToReg(key, 0, interfaces[i], store->memStore);
- RegCloseKey(key);
- }
- else
- {
- SetLastError(rc);
- ret = FALSE;
- }
- }
- return ret;
-}
-
-/* If force is true or the registry store is dirty, writes the contents of the
- * store to the registry.
- */
-static BOOL CRYPT_RegFlushStore(WINE_REGSTOREINFO *store, BOOL force)
-{
- BOOL ret;
-
- TRACE("(%p, %d)\n", store, force);
-
- if (store->dirty || force)
- ret = CRYPT_RegWriteToReg(store);
- else
- ret = TRUE;
- return ret;
-}
-
-static void WINAPI CRYPT_RegCloseStore(HCERTSTORE hCertStore, DWORD dwFlags)
-{
- WINE_REGSTOREINFO *store = hCertStore;
-
- TRACE("(%p, %08x)\n", store, dwFlags);
- if (dwFlags)
- FIXME("Unimplemented flags: %08x\n", dwFlags);
-
- CRYPT_RegFlushStore(store, FALSE);
- RegCloseKey(store->key);
- store->cs.DebugInfo->Spare[0] = 0;
- DeleteCriticalSection(&store->cs);
- CryptMemFree(store);
-}
-
-static BOOL CRYPT_RegWriteContext(WINE_REGSTOREINFO *store,
- const void *context, DWORD dwFlags)
-{
- BOOL ret;
-
- if (dwFlags & CERT_STORE_PROV_WRITE_ADD_FLAG)
- {
- store->dirty = TRUE;
- ret = TRUE;
- }
- else
- ret = FALSE;
- return ret;
-}
-
-static BOOL CRYPT_RegDeleteContext(WINE_REGSTOREINFO *store,
- struct list *deleteList, const void *context,
- const WINE_CONTEXT_INTERFACE *contextInterface)
-{
- BOOL ret;
-
- if (store->dwOpenFlags & CERT_STORE_READONLY_FLAG)
- {
- SetLastError(ERROR_ACCESS_DENIED);
- ret = FALSE;
- }
- else
- {
- WINE_HASH_TO_DELETE *toDelete = CryptMemAlloc(sizeof(WINE_HASH_TO_DELETE));
-
- if (toDelete)
- {
- DWORD size = sizeof(toDelete->hash);
-
- ret = contextInterface->getProp(context, CERT_HASH_PROP_ID,
- toDelete->hash, &size);
- if (ret)
- {
- EnterCriticalSection(&store->cs);
- list_add_tail(deleteList, &toDelete->entry);
- LeaveCriticalSection(&store->cs);
- }
- else
- {
- CryptMemFree(toDelete);
- ret = FALSE;
- }
- }
- else
- ret = FALSE;
- if (ret)
- store->dirty = TRUE;
- }
- return ret;
-}
-
-static BOOL WINAPI CRYPT_RegWriteCert(HCERTSTORE hCertStore,
- PCCERT_CONTEXT cert, DWORD dwFlags)
-{
- WINE_REGSTOREINFO *store = hCertStore;
-
- TRACE("(%p, %p, %d)\n", hCertStore, cert, dwFlags);
-
- return CRYPT_RegWriteContext(store, cert, dwFlags);
-}
-
-static BOOL WINAPI CRYPT_RegDeleteCert(HCERTSTORE hCertStore,
- PCCERT_CONTEXT pCertContext, DWORD dwFlags)
-{
- WINE_REGSTOREINFO *store = hCertStore;
-
- TRACE("(%p, %p, %08x)\n", store, pCertContext, dwFlags);
-
- return CRYPT_RegDeleteContext(store, &store->certsToDelete, pCertContext,
- pCertInterface);
-}
-
-static BOOL WINAPI CRYPT_RegWriteCRL(HCERTSTORE hCertStore,
- PCCRL_CONTEXT crl, DWORD dwFlags)
-{
- WINE_REGSTOREINFO *store = hCertStore;
-
- TRACE("(%p, %p, %d)\n", hCertStore, crl, dwFlags);
-
- return CRYPT_RegWriteContext(store, crl, dwFlags);
-}
-
-static BOOL WINAPI CRYPT_RegDeleteCRL(HCERTSTORE hCertStore,
- PCCRL_CONTEXT pCrlContext, DWORD dwFlags)
-{
- WINE_REGSTOREINFO *store = hCertStore;
-
- TRACE("(%p, %p, %08x)\n", store, pCrlContext, dwFlags);
-
- return CRYPT_RegDeleteContext(store, &store->crlsToDelete, pCrlContext,
- pCRLInterface);
-}
-
-static BOOL WINAPI CRYPT_RegWriteCTL(HCERTSTORE hCertStore,
- PCCTL_CONTEXT ctl, DWORD dwFlags)
-{
- WINE_REGSTOREINFO *store = hCertStore;
-
- TRACE("(%p, %p, %d)\n", hCertStore, ctl, dwFlags);
-
- return CRYPT_RegWriteContext(store, ctl, dwFlags);
-}
-
-static BOOL WINAPI CRYPT_RegDeleteCTL(HCERTSTORE hCertStore,
- PCCTL_CONTEXT pCtlContext, DWORD dwFlags)
-{
- WINE_REGSTOREINFO *store = hCertStore;
-
- TRACE("(%p, %p, %08x)\n", store, pCtlContext, dwFlags);
-
- return CRYPT_RegDeleteContext(store, &store->ctlsToDelete, pCtlContext,
- pCTLInterface);
-}
-
-static BOOL WINAPI CRYPT_RegControl(HCERTSTORE hCertStore, DWORD dwFlags,
- DWORD dwCtrlType, void const *pvCtrlPara)
-{
- WINE_REGSTOREINFO *store = hCertStore;
- BOOL ret;
-
- TRACE("(%p, %08x, %d, %p)\n", hCertStore, dwFlags, dwCtrlType,
- pvCtrlPara);
-
- switch (dwCtrlType)
- {
- case CERT_STORE_CTRL_RESYNC:
- {
- HCERTSTORE memStore = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, 0,
- CERT_STORE_CREATE_NEW_FLAG, NULL);
-
- CRYPT_RegFlushStore(store, FALSE);
- CRYPT_RegReadFromReg(store->key, memStore);
- I_CertUpdateStore(store->memStore, memStore, 0, 0);
- CertCloseStore(memStore, 0);
- ret = TRUE;
- break;
- }
- case CERT_STORE_CTRL_COMMIT:
- ret = CRYPT_RegFlushStore(store,
- dwFlags & CERT_STORE_CTRL_COMMIT_FORCE_FLAG);
- break;
- case CERT_STORE_CTRL_AUTO_RESYNC:
- FIXME("CERT_STORE_CTRL_AUTO_RESYNC: stub\n");
- ret = TRUE;
- break;
- default:
- FIXME("%d: stub\n", dwCtrlType);
- ret = FALSE;
- }
- return ret;
-}
-
-static void *regProvFuncs[] = {
- CRYPT_RegCloseStore,
- NULL, /* CERT_STORE_PROV_READ_CERT_FUNC */
- CRYPT_RegWriteCert,
- CRYPT_RegDeleteCert,
- NULL, /* CERT_STORE_PROV_SET_CERT_PROPERTY_FUNC */
- NULL, /* CERT_STORE_PROV_READ_CRL_FUNC */
- CRYPT_RegWriteCRL,
- CRYPT_RegDeleteCRL,
- NULL, /* CERT_STORE_PROV_SET_CRL_PROPERTY_FUNC */
- NULL, /* CERT_STORE_PROV_READ_CTL_FUNC */
- CRYPT_RegWriteCTL,
- CRYPT_RegDeleteCTL,
- NULL, /* CERT_STORE_PROV_SET_CTL_PROPERTY_FUNC */
- CRYPT_RegControl,
-};
-
-WINECRYPT_CERTSTORE *CRYPT_RegOpenStore(HCRYPTPROV hCryptProv, DWORD dwFlags,
- const void *pvPara)
-{
- WINECRYPT_CERTSTORE *store = NULL;
-
- TRACE("(%ld, %08x, %p)\n", hCryptProv, dwFlags, pvPara);
-
- if (dwFlags & CERT_STORE_DELETE_FLAG)
- {
- DWORD rc = RegDeleteTreeW((HKEY)pvPara, CertsW);
-
- if (rc == ERROR_SUCCESS || rc == ERROR_NO_MORE_ITEMS)
- rc = RegDeleteTreeW((HKEY)pvPara, CRLsW);
- if (rc == ERROR_SUCCESS || rc == ERROR_NO_MORE_ITEMS)
- rc = RegDeleteTreeW((HKEY)pvPara, CTLsW);
- if (rc == ERROR_NO_MORE_ITEMS)
- rc = ERROR_SUCCESS;
- SetLastError(rc);
- }
- else
- {
- HKEY key;
-
- if (DuplicateHandle(GetCurrentProcess(), (HANDLE)pvPara,
- GetCurrentProcess(), (LPHANDLE)&key,
- dwFlags & CERT_STORE_READONLY_FLAG ? KEY_READ : KEY_ALL_ACCESS,
- TRUE, 0))
- {
- WINECRYPT_CERTSTORE *memStore;
-
- memStore = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, hCryptProv,
- CERT_STORE_CREATE_NEW_FLAG, NULL);
- if (memStore)
- {
- WINE_REGSTOREINFO *regInfo = CryptMemAlloc(
- sizeof(WINE_REGSTOREINFO));
-
- if (regInfo)
- {
- CERT_STORE_PROV_INFO provInfo = { 0 };
-
- regInfo->dwOpenFlags = dwFlags;
- regInfo->memStore = memStore;
- regInfo->key = key;
- InitializeCriticalSection(®Info->cs);
- regInfo->cs.DebugInfo->Spare[0] = (DWORD_PTR)(__FILE__ ": PWINE_REGSTOREINFO->cs");
- list_init(®Info->certsToDelete);
- list_init(®Info->crlsToDelete);
- list_init(®Info->ctlsToDelete);
- CRYPT_RegReadFromReg(regInfo->key, regInfo->memStore);
- regInfo->dirty = FALSE;
- provInfo.cbSize = sizeof(provInfo);
- provInfo.cStoreProvFunc = sizeof(regProvFuncs) /
- sizeof(regProvFuncs[0]);
- provInfo.rgpvStoreProvFunc = regProvFuncs;
- provInfo.hStoreProv = regInfo;
- store = CRYPT_ProvCreateStore(dwFlags, memStore, &provInfo);
- /* Reg store doesn't need crypto provider, so close it */
- if (hCryptProv &&
- !(dwFlags & CERT_STORE_NO_CRYPT_RELEASE_FLAG))
- CryptReleaseContext(hCryptProv, 0);
- }
- }
- }
- }
- TRACE("returning %p\n", store);
- return store;
-}
projects / reactos.git / blobdiff