#include <wine/test.h>
-static BOOL (WINAPI *pCertAddStoreToCollection)(HCERTSTORE,HCERTSTORE,DWORD,DWORD);
static PCCERT_CONTEXT (WINAPI *pCertCreateSelfSignCertificate)(HCRYPTPROV_OR_NCRYPT_KEY_HANDLE,PCERT_NAME_BLOB,DWORD,PCRYPT_KEY_PROV_INFO,PCRYPT_ALGORITHM_IDENTIFIER,PSYSTEMTIME,PSYSTEMTIME,PCERT_EXTENSIONS);
static BOOL (WINAPI *pCertGetValidUsages)(DWORD,PCCERT_CONTEXT*,int*,LPSTR*,DWORD*);
static BOOL (WINAPI *pCryptAcquireCertificatePrivateKey)(PCCERT_CONTEXT,DWORD,void*,HCRYPTPROV_OR_NCRYPT_KEY_HANDLE*,DWORD*,BOOL*);
if(!p ## func) \
trace("GetProcAddress(%s) failed\n", #func);
- GET_PROC(hCrypt32, CertAddStoreToCollection)
GET_PROC(hCrypt32, CertCreateSelfSignCertificate)
GET_PROC(hCrypt32, CertGetValidUsages)
GET_PROC(hCrypt32, CryptAcquireCertificatePrivateKey)
collection = CertOpenStore(CERT_STORE_PROV_COLLECTION, 0, 0,
CERT_STORE_CREATE_NEW_FLAG, NULL);
ok(collection != NULL, "CertOpenStore failed: %08x\n", GetLastError());
- if (collection && pCertAddStoreToCollection)
+ if (collection)
{
/* Add store to the collection, but disable updates */
- pCertAddStoreToCollection(collection, store, 0, 0);
+ CertAddStoreToCollection(collection, store, 0, 0);
context = CertCreateCertificateContext(X509_ASN_ENCODING, bigCert2,
sizeof(bigCert2));
ok(link->pCertInfo == context->pCertInfo, "unexpected pCertInfo\n");
CertFreeCertificateContext(link);
-
+ CertFreeCertificateContext(context);
CertCloseStore(store, 0);
}
static void testGetIssuerCert(void)
{
BOOL ret;
- PCCERT_CONTEXT parent, child, cert1, cert2;
- DWORD flags = 0xffffffff;
+ PCCERT_CONTEXT parent, child, cert1, cert2, cert3;
+ DWORD flags = 0xffffffff, size;
+ CERT_NAME_BLOB certsubject;
+ BYTE *certencoded;
+ WCHAR rootW[] = {'R', 'O', 'O', 'T', '\0'},
+ certname[] = {'C', 'N', '=', 'd', 'u', 'm', 'm', 'y', ',', ' ', 'T', '=', 'T', 'e', 's', 't', '\0'};
HCERTSTORE store = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, 0,
CERT_STORE_CREATE_NEW_FLAG, NULL);
ok(ret, "CertAddEncodedCertificateToStore failed: %08x\n", GetLastError());
parent = CertGetIssuerCertificateFromStore(store, child, NULL, &flags);
ok(parent == NULL, "Expected no issuer\n");
+ ok(GetLastError() == CRYPT_E_NOT_FOUND, "Expected CRYPT_E_NOT_FOUND, got %08X\n", GetLastError());
/* Adding an issuer allows one (and only one) issuer to be found */
ret = CertAddEncodedCertificateToStore(store, X509_ASN_ENCODING,
chain10_1, sizeof(chain10_1), CERT_STORE_ADD_ALWAYS, &cert1);
ok(parent == cert1, "Expected cert1 to be the issuer\n");
parent = CertGetIssuerCertificateFromStore(store, child, parent, &flags);
ok(parent == NULL, "Expected only one issuer\n");
+ ok(GetLastError() == CRYPT_E_NOT_FOUND, "Expected CRYPT_E_NOT_FOUND, got %08X\n", GetLastError());
/* Adding a second issuer allows two issuers to be found - and the second
* issuer is found before the first, implying certs are added to the head
* of a list.
ok(parent == cert1, "Expected cert1 to be the second issuer\n");
parent = CertGetIssuerCertificateFromStore(store, child, parent, &flags);
ok(parent == NULL, "Expected no more than two issuers\n");
+ ok(GetLastError() == CRYPT_E_NOT_FOUND, "Expected CRYPT_E_NOT_FOUND, got %08X\n", GetLastError());
CertFreeCertificateContext(child);
CertFreeCertificateContext(cert1);
CertFreeCertificateContext(cert2);
ok(ret, "CertAddEncodedCertificateToStore failed: %08x\n", GetLastError());
parent = CertGetIssuerCertificateFromStore(store, child, NULL, &flags);
ok(parent == NULL, "Expected no issuer\n");
+ ok(GetLastError() == CRYPT_E_NOT_FOUND, "Expected CRYPT_E_NOT_FOUND, got %08X\n", GetLastError());
/* Adding an issuer allows one (and only one) issuer to be found */
ret = CertAddEncodedCertificateToStore(store, X509_ASN_ENCODING,
chain10_0, sizeof(chain10_0), CERT_STORE_ADD_ALWAYS, &cert1);
ok(parent == cert1, "Expected cert1 to be the issuer\n");
parent = CertGetIssuerCertificateFromStore(store, child, parent, &flags);
ok(parent == NULL, "Expected only one issuer\n");
+ ok(GetLastError() == CRYPT_E_NOT_FOUND, "Expected CRYPT_E_NOT_FOUND, got %08X\n", GetLastError());
/* Adding a second issuer allows two issuers to be found - and the second
* issuer is found before the first, implying certs are added to the head
* of a list.
ok(parent == cert1, "Expected cert1 to be the second issuer\n");
parent = CertGetIssuerCertificateFromStore(store, child, parent, &flags);
ok(parent == NULL, "Expected no more than two issuers\n");
+ ok(GetLastError() == CRYPT_E_NOT_FOUND, "Expected CRYPT_E_NOT_FOUND, got %08X\n", GetLastError());
+
+ /* Self-sign a certificate, add to the store and test getting the issuer */
+ size = 0;
+ ok(CertStrToNameW(X509_ASN_ENCODING, certname, CERT_X500_NAME_STR, NULL, NULL, &size, NULL),
+ "CertStrToName should have worked\n");
+ certencoded = HeapAlloc(GetProcessHeap(), 0, size);
+ ok(CertStrToNameW(X509_ASN_ENCODING, certname, CERT_X500_NAME_STR, NULL, certencoded, &size, NULL),
+ "CertStrToName should have worked\n");
+ certsubject.pbData = certencoded;
+ certsubject.cbData = size;
+ cert3 = CertCreateSelfSignCertificate(0, &certsubject, 0, NULL, NULL, NULL, NULL, NULL);
+ ok(cert3 != NULL, "CertCreateSelfSignCertificate should have worked\n");
+ ret = CertAddCertificateContextToStore(store, cert3, CERT_STORE_ADD_REPLACE_EXISTING, 0);
+ ok(ret, "CertAddEncodedCertificateToStore failed: %08x\n", GetLastError());
+ CertFreeCertificateContext(cert3);
+ cert3 = CertEnumCertificatesInStore(store, NULL);
+ ok(cert3 != NULL, "CertEnumCertificatesInStore should have worked\n");
+ SetLastError(0xdeadbeef);
+ flags = 0;
+ parent = CertGetIssuerCertificateFromStore(store, cert3, NULL, &flags);
+ ok(!parent, "Expected NULL\n");
+ ok(GetLastError() == CRYPT_E_SELF_SIGNED,
+ "Expected CRYPT_E_SELF_SIGNED, got %08X\n", GetLastError());
CertFreeCertificateContext(child);
CertFreeCertificateContext(cert1);
CertFreeCertificateContext(cert2);
CertCloseStore(store, 0);
+ HeapFree(GetProcessHeap(), 0, certencoded);
+
+ /* Test root storage self-signed certificate */
+ store = CertOpenStore(CERT_STORE_PROV_SYSTEM, 0, 0, CERT_SYSTEM_STORE_CURRENT_USER, rootW);
+ ok(store != NULL, "CertOpenStore failed: %08x\n", GetLastError());
+ flags = 0;
+ cert1 = CertEnumCertificatesInStore(store, NULL);
+ ok(cert1 != NULL, "CertEnumCertificatesInStore should have worked\n");
+ SetLastError(0xdeadbeef);
+ parent = CertGetIssuerCertificateFromStore(store, cert1, NULL, &flags);
+ ok(!parent, "Expected NULL\n");
+ ok(GetLastError() == CRYPT_E_SELF_SIGNED,
+ "Expected CRYPT_E_SELF_SIGNED, got %08X\n", GetLastError());
+ CertCloseStore(store, 0);
}
static void testCryptHashCert(void)
"Expected NTE_NO_KEY, got %08x\n", GetLastError());
ret = CryptGenKey(csp, AT_KEYEXCHANGE, 0, &key);
ok(ret, "CryptGenKey failed: %08x\n", GetLastError());
+ CryptDestroyKey(key);
memset(&info,0,sizeof(info));
info.dwProvType = PROV_RSA_FULL;
oids[i]);
HeapFree(GetProcessHeap(), 0, oids);
}
- numOIDs = size = 0xdeadbeef;
+ numOIDs = 0xdeadbeef;
/* Oddly enough, this crashes when the number of contexts is not 1:
ret = pCertGetValidUsages(2, contexts, &numOIDs, NULL, &size);
* but setting size to 0 allows it to succeed:
"expected CRYPT_E_NO_REVOCATION_CHECK or CRYPT_E_REVOCATION_OFFLINE, got %08x\n",
status.dwError);
ok(status.dwIndex == 0, "expected index 0, got %d\n", status.dwIndex);
- ok(status.dwIndex == 0, "expected index 0, got %d\n", status.dwIndex);
/* Now add a CRL to the hCrlStore */
revPara.hCrlStore = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, 0,
CERT_STORE_CREATE_NEW_FLAG, NULL);
projects / reactos.git / blobdiff