370 lines
11 KiB
C
370 lines
11 KiB
C
/*
|
|
* Copyright 2007 Juan Lang
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
|
|
*/
|
|
#include <stdarg.h>
|
|
#include "windef.h"
|
|
#include "winbase.h"
|
|
#include "wintrust.h"
|
|
#include "mssip.h"
|
|
#include "wine/debug.h"
|
|
|
|
WINE_DEFAULT_DEBUG_CHANNEL(wintrust);
|
|
|
|
HRESULT WINAPI SoftpubInitialize(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
HRESULT ret = S_FALSE;
|
|
|
|
TRACE("(%p)\n", data);
|
|
|
|
if (data->padwTrustStepErrors &&
|
|
!data->padwTrustStepErrors[TRUSTERROR_STEP_FINAL_WVTINIT])
|
|
ret = S_OK;
|
|
TRACE("returning %08x\n", ret);
|
|
return ret;
|
|
}
|
|
|
|
/* Assumes data->pWintrustData->pFile exists. Makes sure a file handle is
|
|
* open for the file.
|
|
*/
|
|
static BOOL SOFTPUB_OpenFile(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret = TRUE;
|
|
|
|
/* PSDK implies that all values should be initialized to NULL, so callers
|
|
* typically have hFile as NULL rather than INVALID_HANDLE_VALUE. Check
|
|
* for both.
|
|
*/
|
|
if (!data->pWintrustData->pFile->hFile ||
|
|
data->pWintrustData->pFile->hFile == INVALID_HANDLE_VALUE)
|
|
{
|
|
data->pWintrustData->pFile->hFile =
|
|
CreateFileW(data->pWintrustData->pFile->pcwszFilePath, GENERIC_READ,
|
|
FILE_SHARE_READ, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL);
|
|
if (data->pWintrustData->pFile->hFile != INVALID_HANDLE_VALUE)
|
|
data->fOpenedFile = TRUE;
|
|
else
|
|
ret = FALSE;
|
|
}
|
|
TRACE("returning %d\n", ret);
|
|
return ret;
|
|
}
|
|
|
|
/* Assumes data->pWintrustData->pFile exists. Sets data->pPDSip->gSubject to
|
|
* the file's subject GUID.
|
|
*/
|
|
static BOOL SOFTPUB_GetFileSubject(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret;
|
|
|
|
if (!data->pWintrustData->pFile->pgKnownSubject)
|
|
{
|
|
ret = CryptSIPRetrieveSubjectGuid(
|
|
data->pWintrustData->pFile->pcwszFilePath,
|
|
data->pWintrustData->pFile->hFile,
|
|
&data->pPDSip->gSubject);
|
|
}
|
|
else
|
|
{
|
|
memcpy(&data->pPDSip->gSubject,
|
|
data->pWintrustData->pFile->pgKnownSubject, sizeof(GUID));
|
|
ret = TRUE;
|
|
}
|
|
TRACE("returning %d\n", ret);
|
|
return ret;
|
|
}
|
|
|
|
/* Assumes data->pPDSip exists, and its gSubject member set.
|
|
* Allocates data->pPDSip->pSip and loads it, if possible.
|
|
*/
|
|
static BOOL SOFTPUB_GetSIP(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret;
|
|
|
|
data->pPDSip->pSip = data->psPfns->pfnAlloc(sizeof(SIP_DISPATCH_INFO));
|
|
if (data->pPDSip->pSip)
|
|
ret = CryptSIPLoad(&data->pPDSip->gSubject, 0, data->pPDSip->pSip);
|
|
else
|
|
{
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
ret = FALSE;
|
|
}
|
|
TRACE("returning %d\n", ret);
|
|
return ret;
|
|
}
|
|
|
|
/* Assumes data->pPDSip has been loaded, and data->pPDSip->pSip allocated.
|
|
* Calls data->pPDSip->pSip->pfGet to construct data->hMsg.
|
|
*/
|
|
static BOOL SOFTPUB_GetMessageFromFile(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret;
|
|
LPBYTE buf = NULL;
|
|
DWORD size = 0;
|
|
|
|
data->pPDSip->psSipSubjectInfo =
|
|
data->psPfns->pfnAlloc(sizeof(SIP_SUBJECTINFO));
|
|
if (!data->pPDSip->psSipSubjectInfo)
|
|
{
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
return FALSE;
|
|
}
|
|
|
|
data->pPDSip->psSipSubjectInfo->cbSize = sizeof(SIP_SUBJECTINFO);
|
|
data->pPDSip->psSipSubjectInfo->pgSubjectType = &data->pPDSip->gSubject;
|
|
data->pPDSip->psSipSubjectInfo->hFile = data->pWintrustData->pFile->hFile;
|
|
data->pPDSip->psSipSubjectInfo->pwsFileName =
|
|
data->pWintrustData->pFile->pcwszFilePath;
|
|
data->pPDSip->psSipSubjectInfo->hProv = data->hProv;
|
|
ret = data->pPDSip->pSip->pfGet(data->pPDSip->psSipSubjectInfo,
|
|
&data->dwEncoding, 0, &size, 0);
|
|
if (!ret)
|
|
{
|
|
SetLastError(TRUST_E_NOSIGNATURE);
|
|
return FALSE;
|
|
}
|
|
|
|
buf = data->psPfns->pfnAlloc(size);
|
|
if (!buf)
|
|
{
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
return FALSE;
|
|
}
|
|
|
|
ret = data->pPDSip->pSip->pfGet(data->pPDSip->psSipSubjectInfo,
|
|
&data->dwEncoding, 0, &size, buf);
|
|
if (ret)
|
|
{
|
|
data->hMsg = CryptMsgOpenToDecode(data->dwEncoding, 0, 0, data->hProv,
|
|
NULL, NULL);
|
|
if (data->hMsg)
|
|
ret = CryptMsgUpdate(data->hMsg, buf, size, TRUE);
|
|
}
|
|
|
|
data->psPfns->pfnFree(buf);
|
|
TRACE("returning %d\n", ret);
|
|
return ret;
|
|
}
|
|
|
|
static BOOL SOFTPUB_CreateStoreFromMessage(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret = FALSE;
|
|
HCERTSTORE store;
|
|
|
|
store = CertOpenStore(CERT_STORE_PROV_MSG, data->dwEncoding,
|
|
data->hProv, CERT_STORE_NO_CRYPT_RELEASE_FLAG, data->hMsg);
|
|
if (store)
|
|
{
|
|
data->pahStores = data->psPfns->pfnAlloc(sizeof(HCERTSTORE));
|
|
if (data->pahStores)
|
|
{
|
|
data->chStores = 1;
|
|
data->pahStores[0] = CertDuplicateStore(store);
|
|
CertCloseStore(store, 0);
|
|
ret = TRUE;
|
|
}
|
|
else
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
}
|
|
TRACE("returning %d\n", ret);
|
|
return ret;
|
|
}
|
|
|
|
static DWORD SOFTPUB_DecodeInnerContent(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret;
|
|
DWORD size;
|
|
LPBYTE buf = NULL;
|
|
|
|
ret = CryptMsgGetParam(data->hMsg, CMSG_INNER_CONTENT_TYPE_PARAM, 0, NULL,
|
|
&size);
|
|
if (!ret)
|
|
goto error;
|
|
buf = data->psPfns->pfnAlloc(size);
|
|
if (!buf)
|
|
{
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
ret = FALSE;
|
|
goto error;
|
|
}
|
|
ret = CryptMsgGetParam(data->hMsg, CMSG_INNER_CONTENT_TYPE_PARAM, 0, buf,
|
|
&size);
|
|
if (!ret)
|
|
goto error;
|
|
if (!strcmp((LPCSTR)buf, SPC_INDIRECT_DATA_OBJID))
|
|
{
|
|
data->psPfns->pfnFree(buf);
|
|
buf = NULL;
|
|
ret = CryptMsgGetParam(data->hMsg, CMSG_CONTENT_PARAM, 0, NULL, &size);
|
|
if (!ret)
|
|
goto error;
|
|
buf = data->psPfns->pfnAlloc(size);
|
|
if (!buf)
|
|
{
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
ret = FALSE;
|
|
goto error;
|
|
}
|
|
ret = CryptMsgGetParam(data->hMsg, CMSG_CONTENT_PARAM, 0, buf, &size);
|
|
if (!ret)
|
|
goto error;
|
|
ret = CryptDecodeObject(data->dwEncoding,
|
|
SPC_INDIRECT_DATA_CONTENT_STRUCT, buf, size, 0, NULL, &size);
|
|
if (!ret)
|
|
goto error;
|
|
data->pPDSip->psIndirectData = data->psPfns->pfnAlloc(size);
|
|
if (!data->pPDSip->psIndirectData)
|
|
{
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
ret = FALSE;
|
|
goto error;
|
|
}
|
|
ret = CryptDecodeObject(data->dwEncoding,
|
|
SPC_INDIRECT_DATA_CONTENT_STRUCT, buf, size, 0,
|
|
data->pPDSip->psIndirectData, &size);
|
|
}
|
|
else
|
|
{
|
|
FIXME("unimplemented for OID %s\n", (LPCSTR)buf);
|
|
SetLastError(TRUST_E_SUBJECT_FORM_UNKNOWN);
|
|
ret = FALSE;
|
|
}
|
|
|
|
error:
|
|
TRACE("returning %d\n", ret);
|
|
return ret;
|
|
}
|
|
|
|
HRESULT WINAPI SoftpubLoadMessage(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret;
|
|
|
|
TRACE("(%p)\n", data);
|
|
|
|
if (!data->padwTrustStepErrors)
|
|
return S_FALSE;
|
|
|
|
switch (data->pWintrustData->dwUnionChoice)
|
|
{
|
|
case WTD_CHOICE_CERT:
|
|
/* Do nothing!? See the tests */
|
|
ret = TRUE;
|
|
break;
|
|
case WTD_CHOICE_FILE:
|
|
if (!data->pWintrustData->pFile)
|
|
{
|
|
SetLastError(ERROR_INVALID_PARAMETER);
|
|
ret = FALSE;
|
|
goto error;
|
|
}
|
|
ret = SOFTPUB_OpenFile(data);
|
|
if (!ret)
|
|
goto error;
|
|
ret = SOFTPUB_GetFileSubject(data);
|
|
if (!ret)
|
|
goto error;
|
|
ret = SOFTPUB_GetSIP(data);
|
|
if (!ret)
|
|
goto error;
|
|
ret = SOFTPUB_GetMessageFromFile(data);
|
|
if (!ret)
|
|
goto error;
|
|
ret = SOFTPUB_CreateStoreFromMessage(data);
|
|
if (!ret)
|
|
goto error;
|
|
ret = SOFTPUB_DecodeInnerContent(data);
|
|
break;
|
|
default:
|
|
FIXME("unimplemented for %d\n", data->pWintrustData->dwUnionChoice);
|
|
SetLastError(ERROR_INVALID_PARAMETER);
|
|
ret = FALSE;
|
|
}
|
|
|
|
error:
|
|
if (!ret)
|
|
data->padwTrustStepErrors[TRUSTERROR_STEP_FINAL_OBJPROV] =
|
|
GetLastError();
|
|
return ret ? S_OK : S_FALSE;
|
|
}
|
|
|
|
HRESULT WINAPI SoftpubLoadSignature(CRYPT_PROVIDER_DATA *data)
|
|
{
|
|
BOOL ret;
|
|
DWORD signerCount, size;
|
|
|
|
TRACE("(%p)\n", data);
|
|
|
|
if (!data->padwTrustStepErrors)
|
|
return S_FALSE;
|
|
|
|
size = sizeof(signerCount);
|
|
ret = CryptMsgGetParam(data->hMsg, CMSG_SIGNER_COUNT_PARAM, 0,
|
|
&signerCount, &size);
|
|
if (ret)
|
|
{
|
|
DWORD i;
|
|
|
|
for (i = 0; ret && i < signerCount; i++)
|
|
{
|
|
ret = CryptMsgGetParam(data->hMsg, CMSG_SIGNER_CERT_INFO_PARAM,
|
|
i, NULL, &size);
|
|
if (ret)
|
|
{
|
|
CERT_INFO *certInfo = data->psPfns->pfnAlloc(size);
|
|
|
|
if (certInfo)
|
|
{
|
|
ret = CryptMsgGetParam(data->hMsg,
|
|
CMSG_SIGNER_CERT_INFO_PARAM, i, certInfo, &size);
|
|
if (ret)
|
|
{
|
|
CMSG_CTRL_VERIFY_SIGNATURE_EX_PARA para = {
|
|
sizeof(para), 0, i, CMSG_VERIFY_SIGNER_CERT, NULL };
|
|
|
|
para.pvSigner =
|
|
(LPVOID)CertGetSubjectCertificateFromStore(
|
|
data->pahStores[0], data->dwEncoding, certInfo);
|
|
if (para.pvSigner)
|
|
{
|
|
ret = CryptMsgControl(data->hMsg, 0,
|
|
CMSG_CTRL_VERIFY_SIGNATURE_EX, ¶);
|
|
if (!ret)
|
|
SetLastError(TRUST_E_CERT_SIGNATURE);
|
|
}
|
|
else
|
|
{
|
|
SetLastError(TRUST_E_NO_SIGNER_CERT);
|
|
ret = FALSE;
|
|
}
|
|
}
|
|
data->psPfns->pfnFree(certInfo);
|
|
}
|
|
else
|
|
{
|
|
SetLastError(ERROR_OUTOFMEMORY);
|
|
ret = FALSE;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
else
|
|
SetLastError(TRUST_E_NOSIGNATURE);
|
|
if (!ret)
|
|
data->padwTrustStepErrors[TRUSTERROR_STEP_FINAL_OBJPROV] =
|
|
GetLastError();
|
|
return ret ? S_OK : S_FALSE;
|
|
}
|