mirror of
git://source.winehq.org/git/wine.git
synced 2024-11-05 18:01:34 +00:00
534 lines
16 KiB
C
534 lines
16 KiB
C
/*
|
|
* Copyright 2006 Juan Lang for CodeWeavers
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
|
|
*/
|
|
#include <stdarg.h>
|
|
#include "windef.h"
|
|
#include "winbase.h"
|
|
#include "winnls.h"
|
|
#include "wincrypt.h"
|
|
#include "wine/debug.h"
|
|
|
|
WINE_DEFAULT_DEBUG_CHANNEL(crypt);
|
|
|
|
DWORD WINAPI CertRDNValueToStrA(DWORD dwValueType, PCERT_RDN_VALUE_BLOB pValue,
|
|
LPSTR psz, DWORD csz)
|
|
{
|
|
DWORD ret = 0;
|
|
|
|
TRACE("(%ld, %p, %p, %ld)\n", dwValueType, pValue, psz, csz);
|
|
|
|
switch (dwValueType)
|
|
{
|
|
case CERT_RDN_ANY_TYPE:
|
|
break;
|
|
case CERT_RDN_PRINTABLE_STRING:
|
|
case CERT_RDN_IA5_STRING:
|
|
if (!psz || !csz)
|
|
ret = pValue->cbData;
|
|
else
|
|
{
|
|
DWORD chars = min(pValue->cbData, csz - 1);
|
|
|
|
if (chars)
|
|
{
|
|
memcpy(psz, pValue->pbData, chars);
|
|
ret += chars;
|
|
csz -= chars;
|
|
}
|
|
}
|
|
break;
|
|
default:
|
|
FIXME("string type %ld unimplemented\n", dwValueType);
|
|
}
|
|
if (psz && csz)
|
|
{
|
|
*(psz + ret) = '\0';
|
|
csz--;
|
|
ret++;
|
|
}
|
|
else
|
|
ret++;
|
|
return ret;
|
|
}
|
|
|
|
DWORD WINAPI CertRDNValueToStrW(DWORD dwValueType, PCERT_RDN_VALUE_BLOB pValue,
|
|
LPWSTR psz, DWORD csz)
|
|
{
|
|
DWORD ret = 0;
|
|
|
|
TRACE("(%ld, %p, %p, %ld)\n", dwValueType, pValue, psz, csz);
|
|
|
|
switch (dwValueType)
|
|
{
|
|
case CERT_RDN_ANY_TYPE:
|
|
break;
|
|
case CERT_RDN_PRINTABLE_STRING:
|
|
case CERT_RDN_IA5_STRING:
|
|
if (!psz || !csz)
|
|
ret = pValue->cbData;
|
|
else
|
|
{
|
|
DWORD chars = min(pValue->cbData, csz - 1);
|
|
|
|
if (chars)
|
|
{
|
|
DWORD i;
|
|
|
|
for (i = 0; i < chars; i++)
|
|
psz[i] = pValue->pbData[i];
|
|
ret += chars;
|
|
csz -= chars;
|
|
}
|
|
}
|
|
break;
|
|
default:
|
|
FIXME("string type %ld unimplemented\n", dwValueType);
|
|
}
|
|
if (psz && csz)
|
|
{
|
|
*(psz + ret) = '\0';
|
|
csz--;
|
|
ret++;
|
|
}
|
|
else
|
|
ret++;
|
|
return ret;
|
|
}
|
|
|
|
/* Adds the prefix prefix to the string pointed to by psz, followed by the
|
|
* character '='. Copies no more than csz characters. Returns the number of
|
|
* characters copied. If psz is NULL, returns the number of characters that
|
|
* would be copied.
|
|
*/
|
|
static DWORD CRYPT_AddPrefixA(LPCSTR prefix, LPSTR psz, DWORD csz)
|
|
{
|
|
DWORD chars = min(lstrlenA(prefix), csz);
|
|
|
|
TRACE("(%s, %p, %ld)\n", debugstr_a(prefix), psz, csz);
|
|
|
|
if (psz && chars)
|
|
memcpy(psz, prefix, chars);
|
|
csz -= chars;
|
|
if (csz > 1)
|
|
{
|
|
if (psz)
|
|
*(psz + chars) = '=';
|
|
chars++;
|
|
csz--;
|
|
}
|
|
return chars;
|
|
}
|
|
|
|
DWORD WINAPI CertNameToStrA(DWORD dwCertEncodingType, PCERT_NAME_BLOB pName,
|
|
DWORD dwStrType, LPSTR psz, DWORD csz)
|
|
{
|
|
static const DWORD unsupportedFlags = CERT_NAME_STR_NO_QUOTING_FLAG |
|
|
CERT_NAME_STR_REVERSE_FLAG | CERT_NAME_STR_ENABLE_T61_UNICODE_FLAG;
|
|
static const char commaSep[] = ", ";
|
|
static const char semiSep[] = "; ";
|
|
static const char crlfSep[] = "\r\n";
|
|
static const char plusSep[] = " + ";
|
|
static const char spaceSep[] = " ";
|
|
DWORD ret = 0, bytes = 0;
|
|
BOOL bRet;
|
|
CERT_NAME_INFO *info;
|
|
|
|
TRACE("(%ld, %p, %08lx, %p, %ld)\n", dwCertEncodingType, pName, dwStrType,
|
|
psz, csz);
|
|
if (dwStrType & unsupportedFlags)
|
|
FIXME("unsupported flags: %08lx\n", dwStrType & unsupportedFlags);
|
|
|
|
bRet = CryptDecodeObjectEx(dwCertEncodingType, X509_NAME, pName->pbData,
|
|
pName->cbData, CRYPT_DECODE_ALLOC_FLAG, NULL, &info, &bytes);
|
|
if (bRet)
|
|
{
|
|
DWORD i, j, sepLen, rdnSepLen;
|
|
LPCSTR sep, rdnSep;
|
|
|
|
if (dwStrType & CERT_NAME_STR_SEMICOLON_FLAG)
|
|
sep = semiSep;
|
|
else if (dwStrType & CERT_NAME_STR_CRLF_FLAG)
|
|
sep = crlfSep;
|
|
else
|
|
sep = commaSep;
|
|
sepLen = strlen(sep);
|
|
if (dwStrType & CERT_NAME_STR_NO_PLUS_FLAG)
|
|
rdnSep = spaceSep;
|
|
else
|
|
rdnSep = plusSep;
|
|
rdnSepLen = strlen(rdnSep);
|
|
for (i = 0; ret < csz && i < info->cRDN; i++)
|
|
{
|
|
for (j = 0; ret < csz && j < info->rgRDN[i].cRDNAttr; j++)
|
|
{
|
|
DWORD chars;
|
|
char prefixBuf[10]; /* big enough for GivenName */
|
|
LPCSTR prefix = NULL;
|
|
|
|
if ((dwStrType & 0x000000ff) == CERT_OID_NAME_STR)
|
|
prefix = info->rgRDN[i].rgRDNAttr[j].pszObjId;
|
|
else if ((dwStrType & 0x000000ff) == CERT_X500_NAME_STR)
|
|
{
|
|
PCCRYPT_OID_INFO oidInfo = CryptFindOIDInfo(
|
|
CRYPT_OID_INFO_OID_KEY,
|
|
info->rgRDN[i].rgRDNAttr[j].pszObjId,
|
|
CRYPT_RDN_ATTR_OID_GROUP_ID);
|
|
|
|
if (oidInfo)
|
|
{
|
|
WideCharToMultiByte(CP_ACP, 0, oidInfo->pwszName, -1,
|
|
prefixBuf, sizeof(prefixBuf), NULL, NULL);
|
|
prefix = prefixBuf;
|
|
}
|
|
else
|
|
prefix = info->rgRDN[i].rgRDNAttr[j].pszObjId;
|
|
}
|
|
if (prefix)
|
|
{
|
|
/* - 1 is needed to account for the NULL terminator. */
|
|
chars = CRYPT_AddPrefixA(prefix, psz + ret, csz - ret - 1);
|
|
ret += chars;
|
|
csz -= chars;
|
|
}
|
|
/* FIXME: handle quoting */
|
|
chars = CertRDNValueToStrA(
|
|
info->rgRDN[i].rgRDNAttr[j].dwValueType,
|
|
&info->rgRDN[i].rgRDNAttr[j].Value, psz ? psz + ret : NULL,
|
|
csz - ret - 1);
|
|
if (chars)
|
|
ret += chars - 1;
|
|
if (j < info->rgRDN[i].cRDNAttr - 1)
|
|
{
|
|
if (psz && ret < csz - rdnSepLen - 1)
|
|
memcpy(psz + ret, rdnSep, rdnSepLen);
|
|
ret += rdnSepLen;
|
|
}
|
|
}
|
|
if (i < info->cRDN - 1)
|
|
{
|
|
if (psz && ret < csz - sepLen - 1)
|
|
memcpy(psz + ret, sep, sepLen);
|
|
ret += sepLen;
|
|
}
|
|
}
|
|
LocalFree(info);
|
|
}
|
|
if (psz && csz)
|
|
{
|
|
*(psz + ret) = '\0';
|
|
csz--;
|
|
ret++;
|
|
}
|
|
else
|
|
ret++;
|
|
return ret;
|
|
}
|
|
|
|
/* Adds the prefix prefix to the wide-character string pointed to by psz,
|
|
* followed by the character '='. Copies no more than csz characters. Returns
|
|
* the number of characters copied. If psz is NULL, returns the number of
|
|
* characters that would be copied.
|
|
* Assumes the characters in prefix are ASCII (not multibyte characters.)
|
|
*/
|
|
static DWORD CRYPT_AddPrefixAToW(LPCSTR prefix, LPWSTR psz, DWORD csz)
|
|
{
|
|
DWORD chars = min(lstrlenA(prefix), csz);
|
|
|
|
TRACE("(%s, %p, %ld)\n", debugstr_a(prefix), psz, csz);
|
|
|
|
if (psz && chars)
|
|
{
|
|
DWORD i;
|
|
|
|
for (i = 0; i < chars; i++)
|
|
*(psz + i) = prefix[i];
|
|
}
|
|
csz -= chars;
|
|
if (csz > 1)
|
|
{
|
|
if (psz)
|
|
*(psz + chars) = '=';
|
|
chars++;
|
|
csz--;
|
|
}
|
|
return chars;
|
|
}
|
|
|
|
/* Adds the prefix prefix to the string pointed to by psz, followed by the
|
|
* character '='. Copies no more than csz characters. Returns the number of
|
|
* characters copied. If psz is NULL, returns the number of characters that
|
|
* would be copied.
|
|
*/
|
|
static DWORD CRYPT_AddPrefixW(LPCWSTR prefix, LPWSTR psz, DWORD csz)
|
|
{
|
|
DWORD chars = min(lstrlenW(prefix), csz);
|
|
|
|
TRACE("(%s, %p, %ld)\n", debugstr_w(prefix), psz, csz);
|
|
|
|
if (psz && chars)
|
|
memcpy(psz, prefix, chars * sizeof(WCHAR));
|
|
csz -= chars;
|
|
if (csz > 1)
|
|
{
|
|
if (psz)
|
|
*(psz + chars) = '=';
|
|
chars++;
|
|
csz--;
|
|
}
|
|
return chars;
|
|
}
|
|
|
|
DWORD WINAPI CertNameToStrW(DWORD dwCertEncodingType, PCERT_NAME_BLOB pName,
|
|
DWORD dwStrType, LPWSTR psz, DWORD csz)
|
|
{
|
|
static const DWORD unsupportedFlags = CERT_NAME_STR_NO_QUOTING_FLAG |
|
|
CERT_NAME_STR_REVERSE_FLAG | CERT_NAME_STR_ENABLE_T61_UNICODE_FLAG;
|
|
static const WCHAR commaSep[] = { ',',' ',0 };
|
|
static const WCHAR semiSep[] = { ';',' ',0 };
|
|
static const WCHAR crlfSep[] = { '\r','\n',0 };
|
|
static const WCHAR plusSep[] = { ' ','+',' ',0 };
|
|
static const WCHAR spaceSep[] = { ' ',0 };
|
|
DWORD ret = 0, bytes = 0;
|
|
BOOL bRet;
|
|
CERT_NAME_INFO *info;
|
|
|
|
TRACE("(%ld, %p, %08lx, %p, %ld)\n", dwCertEncodingType, pName, dwStrType,
|
|
psz, csz);
|
|
if (dwStrType & unsupportedFlags)
|
|
FIXME("unsupported flags: %08lx\n", dwStrType & unsupportedFlags);
|
|
|
|
bRet = CryptDecodeObjectEx(dwCertEncodingType, X509_NAME, pName->pbData,
|
|
pName->cbData, CRYPT_DECODE_ALLOC_FLAG, NULL, &info, &bytes);
|
|
if (bRet)
|
|
{
|
|
DWORD i, j, sepLen, rdnSepLen;
|
|
LPCWSTR sep, rdnSep;
|
|
|
|
if (dwStrType & CERT_NAME_STR_SEMICOLON_FLAG)
|
|
sep = semiSep;
|
|
else if (dwStrType & CERT_NAME_STR_CRLF_FLAG)
|
|
sep = crlfSep;
|
|
else
|
|
sep = commaSep;
|
|
sepLen = lstrlenW(sep);
|
|
if (dwStrType & CERT_NAME_STR_NO_PLUS_FLAG)
|
|
rdnSep = spaceSep;
|
|
else
|
|
rdnSep = plusSep;
|
|
rdnSepLen = lstrlenW(rdnSep);
|
|
for (i = 0; ret < csz && i < info->cRDN; i++)
|
|
{
|
|
for (j = 0; ret < csz && j < info->rgRDN[i].cRDNAttr; j++)
|
|
{
|
|
DWORD chars;
|
|
LPCSTR prefixA = NULL;
|
|
LPCWSTR prefixW = NULL;
|
|
|
|
if ((dwStrType & 0x000000ff) == CERT_OID_NAME_STR)
|
|
prefixA = info->rgRDN[i].rgRDNAttr[j].pszObjId;
|
|
else if ((dwStrType & 0x000000ff) == CERT_X500_NAME_STR)
|
|
{
|
|
PCCRYPT_OID_INFO oidInfo = CryptFindOIDInfo(
|
|
CRYPT_OID_INFO_OID_KEY,
|
|
info->rgRDN[i].rgRDNAttr[j].pszObjId,
|
|
CRYPT_RDN_ATTR_OID_GROUP_ID);
|
|
|
|
if (oidInfo)
|
|
prefixW = oidInfo->pwszName;
|
|
else
|
|
prefixA = info->rgRDN[i].rgRDNAttr[j].pszObjId;
|
|
}
|
|
if (prefixW)
|
|
{
|
|
/* - 1 is needed to account for the NULL terminator. */
|
|
chars = CRYPT_AddPrefixW(prefixW, psz + ret, csz - ret - 1);
|
|
ret += chars;
|
|
csz -= chars;
|
|
}
|
|
else if (prefixA)
|
|
{
|
|
/* - 1 is needed to account for the NULL terminator. */
|
|
chars = CRYPT_AddPrefixAToW(prefixA, psz + ret,
|
|
csz - ret - 1);
|
|
ret += chars;
|
|
csz -= chars;
|
|
}
|
|
/* FIXME: handle quoting */
|
|
chars = CertRDNValueToStrW(
|
|
info->rgRDN[i].rgRDNAttr[j].dwValueType,
|
|
&info->rgRDN[i].rgRDNAttr[j].Value, psz ? psz + ret : NULL,
|
|
csz - ret - 1);
|
|
if (chars)
|
|
ret += chars - 1;
|
|
if (j < info->rgRDN[i].cRDNAttr - 1)
|
|
{
|
|
if (psz && ret < csz - rdnSepLen - 1)
|
|
memcpy(psz + ret, rdnSep, rdnSepLen * sizeof(WCHAR));
|
|
ret += rdnSepLen;
|
|
}
|
|
}
|
|
if (i < info->cRDN - 1)
|
|
{
|
|
if (psz && ret < csz - sepLen - 1)
|
|
memcpy(psz + ret, sep, sepLen * sizeof(WCHAR));
|
|
ret += sepLen;
|
|
}
|
|
}
|
|
LocalFree(info);
|
|
}
|
|
if (psz && csz)
|
|
{
|
|
*(psz + ret) = '\0';
|
|
csz--;
|
|
ret++;
|
|
}
|
|
else
|
|
ret++;
|
|
return ret;
|
|
}
|
|
|
|
DWORD WINAPI CertGetNameStringA(PCCERT_CONTEXT pCertContext, DWORD dwType,
|
|
DWORD dwFlags, void *pvTypePara, LPSTR pszNameString, DWORD cchNameString)
|
|
{
|
|
DWORD ret;
|
|
|
|
TRACE("(%p, %ld, %08lx, %p, %p, %ld)\n", pCertContext, dwType, dwFlags,
|
|
pvTypePara, pszNameString, cchNameString);
|
|
|
|
if (pszNameString)
|
|
{
|
|
LPWSTR wideName;
|
|
DWORD nameLen;
|
|
|
|
nameLen = CertGetNameStringW(pCertContext, dwType, dwFlags, pvTypePara,
|
|
NULL, 0);
|
|
wideName = CryptMemAlloc(nameLen * sizeof(WCHAR));
|
|
if (wideName)
|
|
{
|
|
CertGetNameStringW(pCertContext, dwType, dwFlags, pvTypePara,
|
|
wideName, nameLen);
|
|
nameLen = WideCharToMultiByte(CP_ACP, 0, wideName, nameLen,
|
|
pszNameString, cchNameString, NULL, NULL);
|
|
if (nameLen <= cchNameString)
|
|
ret = nameLen;
|
|
else
|
|
{
|
|
pszNameString[cchNameString - 1] = '\0';
|
|
ret = cchNameString;
|
|
}
|
|
CryptMemFree(wideName);
|
|
}
|
|
else
|
|
{
|
|
*pszNameString = '\0';
|
|
ret = 1;
|
|
}
|
|
}
|
|
else
|
|
ret = CertGetNameStringW(pCertContext, dwType, dwFlags, pvTypePara,
|
|
NULL, 0);
|
|
return ret;
|
|
}
|
|
|
|
DWORD WINAPI CertGetNameStringW(PCCERT_CONTEXT pCertContext, DWORD dwType,
|
|
DWORD dwFlags, void *pvTypePara, LPWSTR pszNameString, DWORD cchNameString)
|
|
{
|
|
DWORD ret;
|
|
PCERT_NAME_BLOB name;
|
|
LPCSTR altNameOID;
|
|
|
|
TRACE("(%p, %ld, %08lx, %p, %p, %ld)\n", pCertContext, dwType,
|
|
dwFlags, pvTypePara, pszNameString, cchNameString);
|
|
|
|
if (dwFlags & CERT_NAME_ISSUER_FLAG)
|
|
{
|
|
name = &pCertContext->pCertInfo->Issuer;
|
|
altNameOID = szOID_ISSUER_ALT_NAME;
|
|
}
|
|
else
|
|
{
|
|
name = &pCertContext->pCertInfo->Subject;
|
|
altNameOID = szOID_SUBJECT_ALT_NAME;
|
|
}
|
|
|
|
switch (dwType)
|
|
{
|
|
case CERT_NAME_SIMPLE_DISPLAY_TYPE:
|
|
{
|
|
static const LPCSTR simpleAttributeOIDs[] = { szOID_COMMON_NAME,
|
|
szOID_ORGANIZATIONAL_UNIT_NAME, szOID_ORGANIZATION_NAME,
|
|
szOID_RSA_emailAddr };
|
|
CERT_NAME_INFO *info = NULL;
|
|
PCERT_RDN_ATTR nameAttr = NULL;
|
|
DWORD bytes = 0, i;
|
|
|
|
if (CryptDecodeObjectEx(pCertContext->dwCertEncodingType, X509_NAME,
|
|
name->pbData, name->cbData, CRYPT_DECODE_ALLOC_FLAG, NULL, &info,
|
|
&bytes))
|
|
{
|
|
for (i = 0; !nameAttr && i < sizeof(simpleAttributeOIDs) /
|
|
sizeof(simpleAttributeOIDs[0]); i++)
|
|
nameAttr = CertFindRDNAttr(simpleAttributeOIDs[i], info);
|
|
}
|
|
else
|
|
ret = 0;
|
|
if (!nameAttr)
|
|
{
|
|
PCERT_EXTENSION ext = CertFindExtension(altNameOID,
|
|
pCertContext->pCertInfo->cExtension,
|
|
pCertContext->pCertInfo->rgExtension);
|
|
|
|
if (ext)
|
|
{
|
|
for (i = 0; !nameAttr && i < sizeof(simpleAttributeOIDs) /
|
|
sizeof(simpleAttributeOIDs[0]); i++)
|
|
nameAttr = CertFindRDNAttr(simpleAttributeOIDs[i], info);
|
|
if (!nameAttr)
|
|
{
|
|
/* FIXME: gotta then look for a rfc822Name choice in ext.
|
|
* Failing that, look for the first attribute.
|
|
*/
|
|
FIXME("CERT_NAME_SIMPLE_DISPLAY_TYPE: stub\n");
|
|
ret = 0;
|
|
}
|
|
}
|
|
}
|
|
ret = CertRDNValueToStrW(nameAttr->dwValueType, &nameAttr->Value,
|
|
pszNameString, cchNameString);
|
|
if (info)
|
|
LocalFree(info);
|
|
break;
|
|
}
|
|
case CERT_NAME_FRIENDLY_DISPLAY_TYPE:
|
|
{
|
|
DWORD cch = cchNameString;
|
|
|
|
if (CertGetCertificateContextProperty(pCertContext,
|
|
CERT_FRIENDLY_NAME_PROP_ID, pszNameString, &cch))
|
|
ret = cch;
|
|
else
|
|
ret = CertGetNameStringW(pCertContext,
|
|
CERT_NAME_SIMPLE_DISPLAY_TYPE, dwFlags, pvTypePara, pszNameString,
|
|
cchNameString);
|
|
break;
|
|
}
|
|
default:
|
|
FIXME("unimplemented for type %ld\n", dwType);
|
|
ret = 0;
|
|
}
|
|
return ret;
|
|
}
|