search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
makefiles: Generate the dependencies line to avoid some code duplication.
[wine.git] / dlls / crypt32 / serialize.c
blob8d25eaa06e8472500e68e7c1e225881154c9d197
1 /*
2 * Copyright 2004-2006 Juan Lang
3 *
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
8 *
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
13 *
14 * You should have received a copy of the GNU Lesser General Public
15 * License along with this library; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
17 */
18 #include <stdarg.h>
19 #include "windef.h"
20 #include "winbase.h"
21 #include "wincrypt.h"
22 #include "wine/debug.h"
23 #include "excpt.h"
24 #include "wine/exception.h"
25 #include "crypt32_private.h"
26
27 WINE_DEFAULT_DEBUG_CHANNEL(crypt);
28
29 /* An extended certificate property in serialized form is prefixed by this
30 * header.
31 */
32 typedef struct _WINE_CERT_PROP_HEADER
33 {
34 DWORD propID;
35 DWORD unknown; /* always 1 */
36 DWORD cb;
37 } WINE_CERT_PROP_HEADER, *PWINE_CERT_PROP_HEADER;
38
39 static BOOL CRYPT_SerializeStoreElement(const void *context,
40 const BYTE *encodedContext, DWORD cbEncodedContext, DWORD contextPropID,
41 PCWINE_CONTEXT_INTERFACE contextInterface, DWORD dwFlags, BOOL omitHashes,
42 BYTE *pbElement, DWORD *pcbElement)
43 {
44 BOOL ret;
45
46 TRACE("(%p, %p, %08lx, %d, %p, %p)\n", context, contextInterface, dwFlags,
47 omitHashes, pbElement, pcbElement);
48
49 if (context)
50 {
51 DWORD bytesNeeded = sizeof(WINE_CERT_PROP_HEADER) + cbEncodedContext;
52 DWORD prop = 0;
53
54 ret = TRUE;
55 do {
56 prop = contextInterface->enumProps(context, prop);
57 if (prop && (!omitHashes || !IS_CERT_HASH_PROP_ID(prop)))
58 {
59 DWORD propSize = 0;
60
61 ret = contextInterface->getProp(context, prop, NULL, &propSize);
62 if (ret)
63 bytesNeeded += sizeof(WINE_CERT_PROP_HEADER) + propSize;
64 }
65 } while (ret && prop != 0);
66
67 if (!pbElement)
68 {
69 *pcbElement = bytesNeeded;
70 ret = TRUE;
71 }
72 else if (*pcbElement < bytesNeeded)
73 {
74 *pcbElement = bytesNeeded;
75 SetLastError(ERROR_MORE_DATA);
76 ret = FALSE;
77 }
78 else
79 {
80 PWINE_CERT_PROP_HEADER hdr;
81 DWORD bufSize = 0;
82 LPBYTE buf = NULL;
83
84 prop = 0;
85 do {
86 prop = contextInterface->enumProps(context, prop);
87 if (prop && (!omitHashes || !IS_CERT_HASH_PROP_ID(prop)))
88 {
89 DWORD propSize = 0;
90
91 ret = contextInterface->getProp(context, prop, NULL,
92 &propSize);
93 if (ret)
94 {
95 if (bufSize < propSize)
96 {
97 if (buf)
98 buf = CryptMemRealloc(buf, propSize);
99 else
100 buf = CryptMemAlloc(propSize);
101 bufSize = propSize;
102 }
103 if (buf)
104 {
105 ret = contextInterface->getProp(context, prop, buf,
106 &propSize);
107 if (ret)
108 {
109 hdr = (PWINE_CERT_PROP_HEADER)pbElement;
110 hdr->propID = prop;
111 hdr->unknown = 1;
112 hdr->cb = propSize;
113 pbElement += sizeof(WINE_CERT_PROP_HEADER);
114 if (propSize)
115 {
116 memcpy(pbElement, buf, propSize);
117 pbElement += propSize;
118 }
119 }
120 }
121 else
122 ret = FALSE;
123 }
124 }
125 } while (ret && prop != 0);
126 CryptMemFree(buf);
127
128 hdr = (PWINE_CERT_PROP_HEADER)pbElement;
129 hdr->propID = contextPropID;
130 hdr->unknown = 1;
131 hdr->cb = cbEncodedContext;
132 memcpy(pbElement + sizeof(WINE_CERT_PROP_HEADER),
133 encodedContext, cbEncodedContext);
134 }
135 }
136 else
137 ret = FALSE;
138 return ret;
139 }
140
141 BOOL WINAPI CertSerializeCertificateStoreElement(PCCERT_CONTEXT pCertContext,
142 DWORD dwFlags, BYTE *pbElement, DWORD *pcbElement)
143 {
144 return CRYPT_SerializeStoreElement(pCertContext,
145 pCertContext->pbCertEncoded, pCertContext->cbCertEncoded,
146 CERT_CERT_PROP_ID, pCertInterface, dwFlags, FALSE, pbElement, pcbElement);
147 }
148
149 BOOL WINAPI CertSerializeCRLStoreElement(PCCRL_CONTEXT pCrlContext,
150 DWORD dwFlags, BYTE *pbElement, DWORD *pcbElement)
151 {
152 return CRYPT_SerializeStoreElement(pCrlContext,
153 pCrlContext->pbCrlEncoded, pCrlContext->cbCrlEncoded,
154 CERT_CRL_PROP_ID, pCRLInterface, dwFlags, FALSE, pbElement, pcbElement);
155 }
156
157 BOOL WINAPI CertSerializeCTLStoreElement(PCCTL_CONTEXT pCtlContext,
158 DWORD dwFlags, BYTE *pbElement, DWORD *pcbElement)
159 {
160 return CRYPT_SerializeStoreElement(pCtlContext,
161 pCtlContext->pbCtlEncoded, pCtlContext->cbCtlEncoded,
162 CERT_CTL_PROP_ID, pCTLInterface, dwFlags, FALSE, pbElement, pcbElement);
163 }
164
165 /* Looks for the property with ID propID in the buffer buf. Returns a pointer
166 * to its header if a valid header is found, NULL if not. Valid means the
167 * length of thte property won't overrun buf, and the unknown field is 1.
168 */
169 static const WINE_CERT_PROP_HEADER *CRYPT_findPropID(const BYTE *buf,
170 DWORD size, DWORD propID)
171 {
172 const WINE_CERT_PROP_HEADER *ret = NULL;
173 BOOL done = FALSE;
174
175 while (size && !ret && !done)
176 {
177 if (size < sizeof(WINE_CERT_PROP_HEADER))
178 {
179 SetLastError(CRYPT_E_FILE_ERROR);
180 done = TRUE;
181 }
182 else
183 {
184 const WINE_CERT_PROP_HEADER *hdr =
185 (const WINE_CERT_PROP_HEADER *)buf;
186
187 size -= sizeof(WINE_CERT_PROP_HEADER);
188 buf += sizeof(WINE_CERT_PROP_HEADER);
189 if (size < hdr->cb)
190 {
191 SetLastError(E_INVALIDARG);
192 done = TRUE;
193 }
194 else if (!hdr->propID)
195 {
196 /* assume a zero prop ID means the data are uninitialized, so
197 * stop looking.
198 */
199 done = TRUE;
200 }
201 else if (hdr->unknown != 1)
202 {
203 SetLastError(ERROR_FILE_NOT_FOUND);
204 done = TRUE;
205 }
206 else if (hdr->propID == propID)
207 ret = hdr;
208 else
209 {
210 buf += hdr->cb;
211 size -= hdr->cb;
212 }
213 }
214 }
215 return ret;
216 }
217
218 static BOOL CRYPT_ReadContextProp(
219 const WINE_CONTEXT_INTERFACE *contextInterface, const void *context,
220 const WINE_CERT_PROP_HEADER *hdr, const BYTE *pbElement, DWORD cbElement)
221 {
222 BOOL ret;
223
224 if (cbElement < hdr->cb)
225 {
226 SetLastError(E_INVALIDARG);
227 ret = FALSE;
228 }
229 else if (hdr->unknown != 1)
230 {
231 SetLastError(ERROR_FILE_NOT_FOUND);
232 ret = FALSE;
233 }
234 else if (hdr->propID != CERT_CERT_PROP_ID &&
235 hdr->propID != CERT_CRL_PROP_ID && hdr->propID != CERT_CTL_PROP_ID)
236 {
237 /* Have to create a blob for most types, but not
238 * for all.. arghh.
239 */
240 switch (hdr->propID)
241 {
242 case CERT_AUTO_ENROLL_PROP_ID:
243 case CERT_CTL_USAGE_PROP_ID:
244 case CERT_DESCRIPTION_PROP_ID:
245 case CERT_FRIENDLY_NAME_PROP_ID:
246 case CERT_HASH_PROP_ID:
247 case CERT_KEY_IDENTIFIER_PROP_ID:
248 case CERT_MD5_HASH_PROP_ID:
249 case CERT_NEXT_UPDATE_LOCATION_PROP_ID:
250 case CERT_PUBKEY_ALG_PARA_PROP_ID:
251 case CERT_PVK_FILE_PROP_ID:
252 case CERT_SIGNATURE_HASH_PROP_ID:
253 case CERT_ISSUER_PUBLIC_KEY_MD5_HASH_PROP_ID:
254 case CERT_SUBJECT_PUBLIC_KEY_MD5_HASH_PROP_ID:
255 case CERT_ENROLLMENT_PROP_ID:
256 case CERT_CROSS_CERT_DIST_POINTS_PROP_ID:
257 case CERT_RENEWAL_PROP_ID:
258 {
259 CRYPT_DATA_BLOB blob = { hdr->cb,
260 (LPBYTE)pbElement };
261
262 ret = contextInterface->setProp(context,
263 hdr->propID, 0, &blob);
264 break;
265 }
266 case CERT_DATE_STAMP_PROP_ID:
267 ret = contextInterface->setProp(context,
268 hdr->propID, 0, pbElement);
269 break;
270 case CERT_KEY_PROV_INFO_PROP_ID:
271 {
272 PCRYPT_KEY_PROV_INFO info =
273 (PCRYPT_KEY_PROV_INFO)pbElement;
274
275 CRYPT_FixKeyProvInfoPointers(info);
276 ret = contextInterface->setProp(context,
277 hdr->propID, 0, pbElement);
278 break;
279 }
280 default:
281 ret = FALSE;
282 }
283 }
284 else
285 {
286 /* ignore the context itself */
287 ret = TRUE;
288 }
289 return ret;
290 }
291
292 const void *CRYPT_ReadSerializedElement(const BYTE *pbElement, DWORD cbElement,
293 DWORD dwContextTypeFlags, DWORD *pdwContentType)
294 {
295 const void *context;
296
297 TRACE("(%p, %ld, %08lx, %p)\n", pbElement, cbElement, dwContextTypeFlags,
298 pdwContentType);
299
300 if (!cbElement)
301 {
302 SetLastError(ERROR_END_OF_MEDIA);
303 return NULL;
304 }
305
306 __TRY
307 {
308 const WINE_CONTEXT_INTERFACE *contextInterface = NULL;
309 const WINE_CERT_PROP_HEADER *hdr = NULL;
310 DWORD type = 0;
311 BOOL ret;
312
313 ret = TRUE;
314 context = NULL;
315 if (dwContextTypeFlags == CERT_STORE_ALL_CONTEXT_FLAG)
316 {
317 hdr = CRYPT_findPropID(pbElement, cbElement, CERT_CERT_PROP_ID);
318 if (hdr)
319 type = CERT_STORE_CERTIFICATE_CONTEXT;
320 else
321 {
322 hdr = CRYPT_findPropID(pbElement, cbElement, CERT_CRL_PROP_ID);
323 if (hdr)
324 type = CERT_STORE_CRL_CONTEXT;
325 else
326 {
327 hdr = CRYPT_findPropID(pbElement, cbElement,
328 CERT_CTL_PROP_ID);
329 if (hdr)
330 type = CERT_STORE_CTL_CONTEXT;
331 }
332 }
333 }
334 else if (dwContextTypeFlags & CERT_STORE_CERTIFICATE_CONTEXT_FLAG)
335 {
336 hdr = CRYPT_findPropID(pbElement, cbElement, CERT_CERT_PROP_ID);
337 type = CERT_STORE_CERTIFICATE_CONTEXT;
338 }
339 else if (dwContextTypeFlags & CERT_STORE_CRL_CONTEXT_FLAG)
340 {
341 hdr = CRYPT_findPropID(pbElement, cbElement, CERT_CRL_PROP_ID);
342 type = CERT_STORE_CRL_CONTEXT;
343 }
344 else if (dwContextTypeFlags & CERT_STORE_CTL_CONTEXT_FLAG)
345 {
346 hdr = CRYPT_findPropID(pbElement, cbElement, CERT_CTL_PROP_ID);
347 type = CERT_STORE_CTL_CONTEXT;
348 }
349
350 switch (type)
351 {
352 case CERT_STORE_CERTIFICATE_CONTEXT:
353 contextInterface = pCertInterface;
354 break;
355 case CERT_STORE_CRL_CONTEXT:
356 contextInterface = pCRLInterface;
357 break;
358 case CERT_STORE_CTL_CONTEXT:
359 contextInterface = pCTLInterface;
360 break;
361 default:
362 SetLastError(E_INVALIDARG);
363 ret = FALSE;
364 }
365 if (!hdr)
366 ret = FALSE;
367
368 if (ret)
369 context = contextInterface->create(X509_ASN_ENCODING,
370 (BYTE *)hdr + sizeof(WINE_CERT_PROP_HEADER), hdr->cb);
371 if (ret && context)
372 {
373 BOOL noMoreProps = FALSE;
374
375 while (!noMoreProps && ret)
376 {
377 if (cbElement < sizeof(WINE_CERT_PROP_HEADER))
378 ret = FALSE;
379 else
380 {
381 const WINE_CERT_PROP_HEADER *hdr =
382 (const WINE_CERT_PROP_HEADER *)pbElement;
383
384 TRACE("prop is %ld\n", hdr->propID);
385 cbElement -= sizeof(WINE_CERT_PROP_HEADER);
386 pbElement += sizeof(WINE_CERT_PROP_HEADER);
387 if (!hdr->propID)
388 {
389 /* Like in CRYPT_findPropID, stop if the propID is zero
390 */
391 noMoreProps = TRUE;
392 }
393 else
394 ret = CRYPT_ReadContextProp(contextInterface, context,
395 hdr, pbElement, cbElement);
396 pbElement += hdr->cb;
397 cbElement -= hdr->cb;
398 if (!cbElement)
399 noMoreProps = TRUE;
400 }
401 }
402 if (ret)
403 {
404 if (pdwContentType)
405 *pdwContentType = type;
406 }
407 else
408 {
409 contextInterface->free(context);
410 context = NULL;
411 }
412 }
413 }
414 __EXCEPT_PAGE_FAULT
415 {
416 SetLastError(STATUS_ACCESS_VIOLATION);
417 context = NULL;
418 }
419 __ENDTRY
420 return context;
421 }
422
423 static const BYTE fileHeader[] = { 0, 0, 0, 0, 'C','E','R','T' };
424
425 BOOL CRYPT_ReadSerializedFile(HANDLE file, HCERTSTORE store)
426 {
427 BYTE fileHeaderBuf[sizeof(fileHeader)];
428 DWORD read;
429 BOOL ret;
430
431 /* Failure reading is non-critical, we'll leave the store empty */
432 ret = ReadFile(file, fileHeaderBuf, sizeof(fileHeaderBuf), &read, NULL);
433 if (ret)
434 {
435 if (!memcmp(fileHeaderBuf, fileHeader, read))
436 {
437 WINE_CERT_PROP_HEADER propHdr;
438 const void *context = NULL;
439 const WINE_CONTEXT_INTERFACE *contextInterface = NULL;
440 LPBYTE buf = NULL;
441 DWORD bufSize = 0;
442
443 do {
444 ret = ReadFile(file, &propHdr, sizeof(propHdr), &read, NULL);
445 if (ret && read == sizeof(propHdr))
446 {
447 if (contextInterface && context &&
448 (propHdr.propID == CERT_CERT_PROP_ID ||
449 propHdr.propID == CERT_CRL_PROP_ID ||
450 propHdr.propID == CERT_CTL_PROP_ID))
451 {
452 /* We have a new context, so free the existing one */
453 contextInterface->free(context);
454 }
455 if (propHdr.cb > bufSize)
456 {
457 /* Not reusing realloc, because the old data aren't
458 * needed any longer.
459 */
460 CryptMemFree(buf);
461 buf = CryptMemAlloc(propHdr.cb);
462 bufSize = propHdr.cb;
463 }
464 if (buf)
465 {
466 ret = ReadFile(file, buf, propHdr.cb, &read, NULL);
467 if (ret && read == propHdr.cb)
468 {
469 if (propHdr.propID == CERT_CERT_PROP_ID)
470 {
471 contextInterface = pCertInterface;
472 ret = contextInterface->addEncodedToStore(store,
473 X509_ASN_ENCODING, buf, read,
474 CERT_STORE_ADD_NEW, &context);
475 }
476 else if (propHdr.propID == CERT_CRL_PROP_ID)
477 {
478 contextInterface = pCRLInterface;
479 ret = contextInterface->addEncodedToStore(store,
480 X509_ASN_ENCODING, buf, read,
481 CERT_STORE_ADD_NEW, &context);
482 }
483 else if (propHdr.propID == CERT_CTL_PROP_ID)
484 {
485 contextInterface = pCTLInterface;
486 ret = contextInterface->addEncodedToStore(store,
487 X509_ASN_ENCODING, buf, read,
488 CERT_STORE_ADD_NEW, &context);
489 }
490 else
491 ret = CRYPT_ReadContextProp(contextInterface,
492 context, &propHdr, buf, read);
493 }
494 }
495 else
496 ret = FALSE;
497 }
498 } while (ret && read > 0);
499 if (contextInterface && context)
500 {
501 /* Free the last context added */
502 contextInterface->free(context);
503 }
504 CryptMemFree(buf);
505 ret = TRUE;
506 }
507 }
508 else
509 ret = TRUE;
510 return ret;
511 }
512
513 static BOOL WINAPI CRYPT_SerializeCertNoHash(PCCERT_CONTEXT pCertContext,
514 DWORD dwFlags, BYTE *pbElement, DWORD *pcbElement)
515 {
516 return CRYPT_SerializeStoreElement(pCertContext,
517 pCertContext->pbCertEncoded, pCertContext->cbCertEncoded,
518 CERT_CERT_PROP_ID, pCertInterface, dwFlags, TRUE, pbElement, pcbElement);
519 }
520
521 static BOOL WINAPI CRYPT_SerializeCRLNoHash(PCCRL_CONTEXT pCrlContext,
522 DWORD dwFlags, BYTE *pbElement, DWORD *pcbElement)
523 {
524 return CRYPT_SerializeStoreElement(pCrlContext,
525 pCrlContext->pbCrlEncoded, pCrlContext->cbCrlEncoded,
526 CERT_CRL_PROP_ID, pCRLInterface, dwFlags, TRUE, pbElement, pcbElement);
527 }
528
529 static BOOL WINAPI CRYPT_SerializeCTLNoHash(PCCTL_CONTEXT pCtlContext,
530 DWORD dwFlags, BYTE *pbElement, DWORD *pcbElement)
531 {
532 return CRYPT_SerializeStoreElement(pCtlContext,
533 pCtlContext->pbCtlEncoded, pCtlContext->cbCtlEncoded,
534 CERT_CTL_PROP_ID, pCTLInterface, dwFlags, TRUE, pbElement, pcbElement);
535 }
536
537 static BOOL CRYPT_SerializeContextsToFile(HANDLE file,
538 const WINE_CONTEXT_INTERFACE *contextInterface, HCERTSTORE store)
539 {
540 const void *context = NULL;
541 BOOL ret;
542
543 do {
544 context = contextInterface->enumContextsInStore(store, context);
545 if (context)
546 {
547 DWORD size = 0;
548 LPBYTE buf = NULL;
549
550 ret = contextInterface->serialize(context, 0, NULL, &size);
551 if (size)
552 buf = CryptMemAlloc(size);
553 if (buf)
554 {
555 ret = contextInterface->serialize(context, 0, buf, &size);
556 if (ret)
557 ret = WriteFile(file, buf, size, &size, NULL);
558 }
559 CryptMemFree(buf);
560 }
561 else
562 ret = TRUE;
563 } while (ret && context != NULL);
564 if (context)
565 contextInterface->free(context);
566 return ret;
567 }
568
569 BOOL CRYPT_WriteSerializedFile(HANDLE file, HCERTSTORE store)
570 {
571 static const BYTE fileTrailer[12] = { 0 };
572 WINE_CONTEXT_INTERFACE interface;
573 BOOL ret;
574 DWORD size;
575
576 SetFilePointer(file, 0, NULL, FILE_BEGIN);
577 ret = WriteFile(file, fileHeader, sizeof(fileHeader), &size, NULL);
578 if (ret)
579 {
580 memcpy(&interface, pCertInterface, sizeof(interface));
581 interface.serialize = (SerializeElementFunc)CRYPT_SerializeCertNoHash;
582 ret = CRYPT_SerializeContextsToFile(file, &interface, store);
583 }
584 if (ret)
585 {
586 memcpy(&interface, pCRLInterface, sizeof(interface));
587 interface.serialize = (SerializeElementFunc)CRYPT_SerializeCRLNoHash;
588 ret = CRYPT_SerializeContextsToFile(file, &interface, store);
589 }
590 if (ret)
591 {
592 memcpy(&interface, pCTLInterface, sizeof(interface));
593 interface.serialize = (SerializeElementFunc)CRYPT_SerializeCTLNoHash;
594 ret = CRYPT_SerializeContextsToFile(file, &interface, store);
595 }
596 if (ret)
597 ret = WriteFile(file, fileTrailer, sizeof(fileTrailer), &size, NULL);
598 return ret;
599 }
600
601 BOOL WINAPI CertAddSerializedElementToStore(HCERTSTORE hCertStore,
602 const BYTE *pbElement, DWORD cbElement, DWORD dwAddDisposition, DWORD dwFlags,
603 DWORD dwContextTypeFlags, DWORD *pdwContentType, const void **ppvContext)
604 {
605 const void *context;
606 DWORD type;
607 BOOL ret;
608
609 TRACE("(%p, %p, %ld, %08lx, %08lx, %08lx, %p, %p)\n", hCertStore,
610 pbElement, cbElement, dwAddDisposition, dwFlags, dwContextTypeFlags,
611 pdwContentType, ppvContext);
612
613 /* Call the internal function, then delete the hashes. Tests show this
614 * function uses real hash values, not whatever's stored in the hash
615 * property.
616 */
617 context = CRYPT_ReadSerializedElement(pbElement, cbElement,
618 dwContextTypeFlags, &type);
619 if (context)
620 {
621 const WINE_CONTEXT_INTERFACE *contextInterface = NULL;
622
623 switch (type)
624 {
625 case CERT_STORE_CERTIFICATE_CONTEXT:
626 contextInterface = pCertInterface;
627 break;
628 case CERT_STORE_CRL_CONTEXT:
629 contextInterface = pCRLInterface;
630 break;
631 case CERT_STORE_CTL_CONTEXT:
632 contextInterface = pCTLInterface;
633 break;
634 default:
635 SetLastError(E_INVALIDARG);
636 }
637 if (contextInterface)
638 {
639 contextInterface->setProp(context, CERT_HASH_PROP_ID, 0, NULL);
640 contextInterface->setProp(context, CERT_MD5_HASH_PROP_ID, 0, NULL);
641 contextInterface->setProp(context, CERT_SIGNATURE_HASH_PROP_ID, 0,
642 NULL);
643 if (pdwContentType)
644 *pdwContentType = type;
645 ret = contextInterface->addContextToStore(hCertStore, context,
646 dwAddDisposition, ppvContext);
647 contextInterface->free(context);
648 }
649 else
650 ret = FALSE;
651 }
652 else
653 ret = FALSE;
654 return ret;
655 }
Windows API implementation