2 * Copyright 2007 Juan Lang
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
14 * You should have received a copy of the GNU Lesser General Public
15 * License along with this library; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
24 #include "wine/debug.h"
26 WINE_DEFAULT_DEBUG_CHANNEL(crypt
);
28 HCERTSTORE WINAPI
CryptGetMessageCertificates(DWORD dwMsgAndCertEncodingType
,
29 HCRYPTPROV_LEGACY hCryptProv
, DWORD dwFlags
, const BYTE
* pbSignedBlob
,
32 CRYPT_DATA_BLOB blob
= { cbSignedBlob
, (LPBYTE
)pbSignedBlob
};
34 TRACE("(%08x, %ld, %d08x %p, %d)\n", dwMsgAndCertEncodingType
, hCryptProv
,
35 dwFlags
, pbSignedBlob
, cbSignedBlob
);
37 return CertOpenStore(CERT_STORE_PROV_PKCS7
, dwMsgAndCertEncodingType
,
38 hCryptProv
, dwFlags
, &blob
);
41 LONG WINAPI
CryptGetMessageSignerCount(DWORD dwMsgEncodingType
,
42 const BYTE
*pbSignedBlob
, DWORD cbSignedBlob
)
47 TRACE("(%08x, %p, %d)\n", dwMsgEncodingType
, pbSignedBlob
, cbSignedBlob
);
49 msg
= CryptMsgOpenToDecode(dwMsgEncodingType
, 0, 0, 0, NULL
, NULL
);
52 if (CryptMsgUpdate(msg
, pbSignedBlob
, cbSignedBlob
, TRUE
))
54 DWORD size
= sizeof(count
);
56 CryptMsgGetParam(msg
, CMSG_SIGNER_COUNT_PARAM
, 0, &count
, &size
);
63 static BOOL
CRYPT_CopyParam(void *pvData
, DWORD
*pcbData
, const void *src
,
70 else if (*pcbData
< len
)
73 SetLastError(ERROR_MORE_DATA
);
79 memcpy(pvData
, src
, len
);
84 static CERT_INFO
*CRYPT_GetSignerCertInfoFromMsg(HCRYPTMSG msg
,
87 CERT_INFO
*certInfo
= NULL
;
90 if (CryptMsgGetParam(msg
, CMSG_SIGNER_CERT_INFO_PARAM
, dwSignerIndex
, NULL
,
93 certInfo
= CryptMemAlloc(size
);
96 if (!CryptMsgGetParam(msg
, CMSG_SIGNER_CERT_INFO_PARAM
,
97 dwSignerIndex
, certInfo
, &size
))
99 CryptMemFree(certInfo
);
107 static PCCERT_CONTEXT WINAPI
CRYPT_DefaultGetSignerCertificate(void *pvGetArg
,
108 DWORD dwCertEncodingType
, PCERT_INFO pSignerId
, HCERTSTORE hMsgCertStore
)
110 return CertFindCertificateInStore(hMsgCertStore
, dwCertEncodingType
, 0,
111 CERT_FIND_SUBJECT_CERT
, pSignerId
, NULL
);
114 static inline PCCERT_CONTEXT
CRYPT_GetSignerCertificate(HCRYPTMSG msg
,
115 PCRYPT_VERIFY_MESSAGE_PARA pVerifyPara
, PCERT_INFO certInfo
, HCERTSTORE store
)
117 PFN_CRYPT_GET_SIGNER_CERTIFICATE getCert
;
119 if (pVerifyPara
->pfnGetSignerCertificate
)
120 getCert
= pVerifyPara
->pfnGetSignerCertificate
;
122 getCert
= CRYPT_DefaultGetSignerCertificate
;
123 return getCert(pVerifyPara
->pvGetArg
,
124 pVerifyPara
->dwMsgAndCertEncodingType
, certInfo
, store
);
127 BOOL WINAPI
CryptVerifyMessageSignature(PCRYPT_VERIFY_MESSAGE_PARA pVerifyPara
,
128 DWORD dwSignerIndex
, const BYTE
* pbSignedBlob
, DWORD cbSignedBlob
,
129 BYTE
* pbDecoded
, DWORD
* pcbDecoded
, PCCERT_CONTEXT
* ppSignerCert
)
133 CRYPT_CONTENT_INFO
*contentInfo
;
135 TRACE("(%p, %d, %p, %d, %p, %p, %p)\n",
136 pVerifyPara
, dwSignerIndex
, pbSignedBlob
, cbSignedBlob
,
137 pbDecoded
, pcbDecoded
, ppSignerCert
);
140 *ppSignerCert
= NULL
;
144 pVerifyPara
->cbSize
!= sizeof(CRYPT_VERIFY_MESSAGE_PARA
) ||
145 GET_CMSG_ENCODING_TYPE(pVerifyPara
->dwMsgAndCertEncodingType
) !=
148 SetLastError(E_INVALIDARG
);
152 ret
= CryptDecodeObjectEx(pVerifyPara
->dwMsgAndCertEncodingType
,
153 PKCS_CONTENT_INFO
, pbSignedBlob
, cbSignedBlob
,
154 CRYPT_DECODE_ALLOC_FLAG
| CRYPT_DECODE_NOCOPY_FLAG
, NULL
,
155 (LPBYTE
)&contentInfo
, &size
);
158 if (strcmp(contentInfo
->pszObjId
, szOID_RSA_signedData
))
160 SetLastError(CRYPT_E_UNEXPECTED_MSG_TYPE
);
165 HCRYPTMSG msg
= CryptMsgOpenToDecode(
166 pVerifyPara
->dwMsgAndCertEncodingType
, 0, CMSG_SIGNED
,
167 pVerifyPara
->hCryptProv
, NULL
, NULL
);
171 ret
= CryptMsgUpdate(msg
, contentInfo
->Content
.pbData
,
172 contentInfo
->Content
.cbData
, TRUE
);
173 if (ret
&& pcbDecoded
)
174 ret
= CRYPT_CopyParam(pbDecoded
, pcbDecoded
,
175 contentInfo
->Content
.pbData
, contentInfo
->Content
.cbData
);
178 CERT_INFO
*certInfo
= CRYPT_GetSignerCertInfoFromMsg(msg
,
184 HCERTSTORE store
= CertOpenStore(CERT_STORE_PROV_MSG
,
185 pVerifyPara
->dwMsgAndCertEncodingType
,
186 pVerifyPara
->hCryptProv
, 0, msg
);
190 PCCERT_CONTEXT cert
= CRYPT_GetSignerCertificate(
191 msg
, pVerifyPara
, certInfo
, store
);
195 ret
= CryptMsgControl(msg
, 0,
196 CMSG_CTRL_VERIFY_SIGNATURE
, cert
->pCertInfo
);
197 if (ret
&& ppSignerCert
)
198 *ppSignerCert
= cert
;
200 CertFreeCertificateContext(cert
);
202 CertCloseStore(store
, 0);
205 CryptMemFree(certInfo
);
210 LocalFree(contentInfo
);
212 TRACE("returning %d\n", ret
);
216 BOOL WINAPI
CryptHashMessage(PCRYPT_HASH_MESSAGE_PARA pHashPara
,
217 BOOL fDetachedHash
, DWORD cToBeHashed
, const BYTE
*rgpbToBeHashed
[],
218 DWORD rgcbToBeHashed
[], BYTE
*pbHashedBlob
, DWORD
*pcbHashedBlob
,
219 BYTE
*pbComputedHash
, DWORD
*pcbComputedHash
)
224 CMSG_HASHED_ENCODE_INFO info
;
226 TRACE("(%p, %d, %d, %p, %p, %p, %p, %p, %p)\n", pHashPara
, fDetachedHash
,
227 cToBeHashed
, rgpbToBeHashed
, rgcbToBeHashed
, pbHashedBlob
, pcbHashedBlob
,
228 pbComputedHash
, pcbComputedHash
);
230 if (pHashPara
->cbSize
!= sizeof(CRYPT_HASH_MESSAGE_PARA
))
232 SetLastError(E_INVALIDARG
);
235 /* Native seems to ignore any encoding type other than the expected
236 * PKCS_7_ASN_ENCODING
238 if (GET_CMSG_ENCODING_TYPE(pHashPara
->dwMsgEncodingType
) !=
241 /* Native also seems to do nothing if the output parameter isn't given */
245 flags
= fDetachedHash
? CMSG_DETACHED_FLAG
: 0;
246 memset(&info
, 0, sizeof(info
));
247 info
.cbSize
= sizeof(info
);
248 info
.hCryptProv
= pHashPara
->hCryptProv
;
249 memcpy(&info
.HashAlgorithm
, &pHashPara
->HashAlgorithm
,
250 sizeof(info
.HashAlgorithm
));
251 info
.pvHashAuxInfo
= pHashPara
->pvHashAuxInfo
;
252 msg
= CryptMsgOpenToEncode(pHashPara
->dwMsgEncodingType
, flags
, CMSG_HASHED
,
256 for (i
= 0, ret
= TRUE
; ret
&& i
< cToBeHashed
; i
++)
257 ret
= CryptMsgUpdate(msg
, rgpbToBeHashed
[i
], rgcbToBeHashed
[i
],
258 i
== cToBeHashed
- 1 ? TRUE
: FALSE
);
261 ret
= CryptMsgGetParam(msg
, CMSG_CONTENT_PARAM
, 0, pbHashedBlob
,
263 if (ret
&& pcbComputedHash
)
264 ret
= CryptMsgGetParam(msg
, CMSG_COMPUTED_HASH_PARAM
, 0,
265 pbComputedHash
, pcbComputedHash
);