2 * Copyright 2002 Mike McCormack for CodeWeavers
3 * Copyright 2004-2006 Juan Lang
5 * This library is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU Lesser General Public
7 * License as published by the Free Software Foundation; either
8 * version 2.1 of the License, or (at your option) any later version.
10 * This library is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * Lesser General Public License for more details.
15 * You should have received a copy of the GNU Lesser General Public
16 * License along with this library; if not, write to the Free Software
17 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 * - As you can see in the stubs below, support for CRLs and CTLs is missing.
21 * Mostly this should be copy-paste work, and some code (e.g. extended
22 * properties) could be shared between them.
23 * - The concept of physical stores and locations isn't implemented. (This
24 * doesn't mean registry stores et al aren't implemented. See the PSDK for
25 * registering and enumerating physical stores and locations.)
26 * - Many flags, options and whatnot are unimplemented.
37 #include "wine/debug.h"
38 #include "wine/list.h"
40 #include "wine/exception.h"
41 #include "crypt32_private.h"
43 WINE_DEFAULT_DEBUG_CHANNEL(crypt);
45 #define WINE_CRYPTCERTSTORE_MAGIC 0x74726563
47 /* Some typedefs that make it easier to abstract which type of context we're
50 typedef const void *(WINAPI *CreateContextFunc)(DWORD dwCertEncodingType,
51 const BYTE *pbCertEncoded, DWORD cbCertEncoded);
52 typedef BOOL (WINAPI *AddContextToStoreFunc)(HCERTSTORE hCertStore,
53 const void *context, DWORD dwAddDisposition, const void **ppStoreContext);
54 typedef BOOL (WINAPI *AddEncodedContextToStoreFunc)(HCERTSTORE hCertStore,
55 DWORD dwCertEncodingType, const BYTE *pbEncoded, DWORD cbEncoded,
56 DWORD dwAddDisposition, const void **ppContext);
57 typedef const void *(WINAPI *EnumContextsInStoreFunc)(HCERTSTORE hCertStore,
58 const void *pPrevContext);
59 typedef BOOL (WINAPI *GetContextPropertyFunc)(const void *context,
60 DWORD dwPropID, void *pvData, DWORD *pcbData);
61 typedef BOOL (WINAPI *SetContextPropertyFunc)(const void *context,
62 DWORD dwPropID, DWORD dwFlags, const void *pvData);
63 typedef BOOL (WINAPI *SerializeElementFunc)(const void *context, DWORD dwFlags,
64 BYTE *pbElement, DWORD *pcbElement);
65 typedef BOOL (WINAPI *FreeContextFunc)(const void *context);
66 typedef BOOL (WINAPI *DeleteContextFunc)(const void *context);
68 /* An abstract context (certificate, CRL, or CTL) interface */
69 typedef struct _WINE_CONTEXT_INTERFACE
71 CreateContextFunc create;
72 AddContextToStoreFunc addContextToStore;
73 AddEncodedContextToStoreFunc addEncodedToStore;
74 EnumContextsInStoreFunc enumContextsInStore;
75 GetContextPropertyFunc getProp;
76 SetContextPropertyFunc setProp;
77 SerializeElementFunc serialize;
79 DeleteContextFunc deleteFromStore;
80 } WINE_CONTEXT_INTERFACE, *PWINE_CONTEXT_INTERFACE;
82 static const WINE_CONTEXT_INTERFACE gCertInterface = {
83 (CreateContextFunc)CertCreateCertificateContext,
84 (AddContextToStoreFunc)CertAddCertificateContextToStore,
85 (AddEncodedContextToStoreFunc)CertAddEncodedCertificateToStore,
86 (EnumContextsInStoreFunc)CertEnumCertificatesInStore,
87 (GetContextPropertyFunc)CertGetCertificateContextProperty,
88 (SetContextPropertyFunc)CertSetCertificateContextProperty,
89 (SerializeElementFunc)CertSerializeCertificateStoreElement,
90 (FreeContextFunc)CertFreeCertificateContext,
91 (DeleteContextFunc)CertDeleteCertificateFromStore,
94 static const WINE_CONTEXT_INTERFACE gCRLInterface = {
95 (CreateContextFunc)CertCreateCRLContext,
96 (AddContextToStoreFunc)CertAddCRLContextToStore,
97 (AddEncodedContextToStoreFunc)CertAddEncodedCRLToStore,
98 (EnumContextsInStoreFunc)CertEnumCRLsInStore,
99 (GetContextPropertyFunc)CertGetCRLContextProperty,
100 (SetContextPropertyFunc)CertSetCRLContextProperty,
101 (SerializeElementFunc)CertSerializeCRLStoreElement,
102 (FreeContextFunc)CertFreeCRLContext,
103 (DeleteContextFunc)CertDeleteCRLFromStore,
106 static const WINE_CONTEXT_INTERFACE gCTLInterface = {
107 (CreateContextFunc)CertCreateCTLContext,
108 (AddContextToStoreFunc)CertAddCTLContextToStore,
109 (AddEncodedContextToStoreFunc)CertAddEncodedCTLToStore,
110 (EnumContextsInStoreFunc)CertEnumCTLsInStore,
111 (GetContextPropertyFunc)CertGetCTLContextProperty,
112 (SetContextPropertyFunc)CertSetCTLContextProperty,
113 (SerializeElementFunc)CertSerializeCTLStoreElement,
114 (FreeContextFunc)CertFreeCTLContext,
115 (DeleteContextFunc)CertDeleteCTLFromStore,
118 struct WINE_CRYPTCERTSTORE;
120 typedef struct WINE_CRYPTCERTSTORE * (*StoreOpenFunc)(HCRYPTPROV hCryptProv,
121 DWORD dwFlags, const void *pvPara);
123 struct _WINE_CERT_CONTEXT;
125 /* Called to enumerate the next certificate in a store. */
126 typedef struct _WINE_CERT_CONTEXT * (*EnumCertFunc)
127 (struct WINE_CRYPTCERTSTORE *store, struct _WINE_CERT_CONTEXT *pPrev);
129 /* Called to add a new certificate context to a store. If ppStoreContext is
130 * not NULL, the added context should be returned in *ppStoreContext.
132 typedef BOOL (*AddCertFunc)(struct WINE_CRYPTCERTSTORE *store,
133 struct _WINE_CERT_CONTEXT *context, DWORD dwAddDisposition,
134 PCCERT_CONTEXT *ppStoreContext);
136 typedef enum _CertStoreType {
142 /* A cert store is polymorphic through the use of function pointers. A type
143 * is still needed to distinguish collection stores from other types.
144 * On the function pointers:
145 * - closeStore is called when the store's ref count becomes 0
146 * - control is optional, but should be implemented by any store that supports
149 typedef struct WINE_CRYPTCERTSTORE
154 HCRYPTPROV cryptProv;
156 PFN_CERT_STORE_PROV_CLOSE closeStore;
158 EnumCertFunc enumCert;
159 PFN_CERT_STORE_PROV_DELETE_CERT deleteCert;
160 PFN_CERT_STORE_PROV_CONTROL control; /* optional */
161 } WINECRYPT_CERTSTORE, *PWINECRYPT_CERTSTORE;
163 typedef enum _ContextType {
168 /* A certificate context. This is the base type, and the two real types
169 * (data and link) derive from it. Each one can be cast to a PCCERT_CONTEXT.
171 typedef struct _WINE_CERT_CONTEXT
176 } WINE_CERT_CONTEXT, *PWINE_CERT_CONTEXT;
177 typedef const struct _WINE_CERT_CONTEXT PCWINE_CERT_CONTEXT;
179 typedef struct _WINE_CERT_CONTEXT_DATA
183 ContextType type; /* always ContextTypeData */
184 PCONTEXT_PROPERTY_LIST properties;
185 } WINE_CERT_CONTEXT_DATA, *PWINE_CERT_CONTEXT_DATA;
186 typedef const struct _WINE_CERT_CONTEXT_DATA PCWINE_CERT_CONTEXT_DATA;
188 typedef struct _WINE_CERT_CONTEXT_LINK
192 ContextType type; /* always ContextTypeLink */
193 PWINE_CERT_CONTEXT linked;
194 } WINE_CERT_CONTEXT_LINK, *PWINE_CERT_CONTEXT_LINK;
195 typedef const struct _WINE_CERT_CONTEXT_LINK PCWINE_CERT_CONTEXT_LINK;
197 /* A mem store has a list of these. They're also returned by the mem store
198 * during enumeration.
200 typedef struct _WINE_CERT_LIST_ENTRY
202 WINE_CERT_CONTEXT_LINK cert;
204 } WINE_CERT_LIST_ENTRY, *PWINE_CERT_LIST_ENTRY;
206 typedef struct _WINE_MEMSTORE
208 WINECRYPT_CERTSTORE hdr;
211 } WINE_MEMSTORE, *PWINE_MEMSTORE;
213 typedef struct _WINE_HASH_TO_DELETE
217 } WINE_HASH_TO_DELETE, *PWINE_HASH_TO_DELETE;
219 typedef struct _WINE_REGSTOREINFO
222 HCRYPTPROV cryptProv;
223 PWINECRYPT_CERTSTORE memStore;
227 struct list certsToDelete;
228 } WINE_REGSTOREINFO, *PWINE_REGSTOREINFO;
230 typedef struct _WINE_STORE_LIST_ENTRY
232 PWINECRYPT_CERTSTORE store;
236 } WINE_STORE_LIST_ENTRY, *PWINE_STORE_LIST_ENTRY;
238 /* Returned by a collection store during enumeration.
239 * Note: relies on the list entry being valid after use, which a number of
240 * conditions might make untrue (reentrancy, closing a collection store before
241 * continuing an enumeration on it, ...). The tests seem to indicate this
242 * sort of unsafety is okay, since Windows isn't well-behaved in these
245 typedef struct _WINE_COLLECTION_CERT_CONTEXT
247 WINE_CERT_CONTEXT_LINK cert;
248 PWINE_STORE_LIST_ENTRY storeEntry;
249 } WINE_COLLECTION_CERT_CONTEXT, *PWINE_COLLECTION_CERT_CONTEXT;
251 typedef struct _WINE_COLLECTIONSTORE
253 WINECRYPT_CERTSTORE hdr;
256 } WINE_COLLECTIONSTORE, *PWINE_COLLECTIONSTORE;
258 typedef struct _WINE_PROVIDERSTORE
260 WINECRYPT_CERTSTORE hdr;
261 DWORD dwStoreProvFlags;
262 PWINECRYPT_CERTSTORE memStore;
263 HCERTSTOREPROV hStoreProv;
264 PFN_CERT_STORE_PROV_CLOSE provCloseStore;
265 PFN_CERT_STORE_PROV_WRITE_CERT provWriteCert;
266 PFN_CERT_STORE_PROV_DELETE_CERT provDeleteCert;
267 PFN_CERT_STORE_PROV_CONTROL provControl;
268 } WINE_PROVIDERSTORE, *PWINE_PROVIDERSTORE;
270 /* Internal version of CertGetCertificateContextProperty that gets properties
271 * directly from the context (or the context it's linked to, depending on its
272 * type.) Doesn't handle special-case properties, since they are handled by
273 * CertGetCertificateContextProperty, and are particular to the store in which
274 * the property exists (which is separate from the context.)
276 static BOOL WINAPI CRYPT_GetCertificateContextProperty(
277 PWINE_CERT_CONTEXT context, DWORD dwPropId, void *pvData, DWORD *pcbData);
279 /* Internal version of CertSetCertificateContextProperty that sets properties
280 * directly on the context (or the context it's linked to, depending on its
281 * type.) Doesn't handle special cases, since they're handled by
282 * CertSetCertificateContextProperty anyway.
284 static BOOL WINAPI CRYPT_SetCertificateContextProperty(
285 PWINE_CERT_CONTEXT context, DWORD dwPropId, DWORD dwFlags,
288 static void CRYPT_InitStore(WINECRYPT_CERTSTORE *store, HCRYPTPROV hCryptProv,
289 DWORD dwFlags, CertStoreType type)
292 store->dwMagic = WINE_CRYPTCERTSTORE_MAGIC;
296 hCryptProv = CRYPT_GetDefaultProvider();
297 dwFlags |= CERT_STORE_NO_CRYPT_RELEASE_FLAG;
299 store->cryptProv = hCryptProv;
300 store->dwOpenFlags = dwFlags;
303 /* Initializes the reference ref to point to context, and increments context's
304 * reference count. Also sets the hCertStore member of the reference to store.
306 static void CRYPT_InitCertRef(PWINE_CERT_CONTEXT_LINK ref,
307 PWINE_CERT_CONTEXT context, HCERTSTORE store)
309 TRACE("(%p, %p)\n", ref, context);
310 memcpy(&ref->cert, context, sizeof(ref->cert));
312 ref->type = ContextTypeLink;
313 ref->linked = context;
314 InterlockedIncrement(&context->ref);
315 TRACE("%p's ref count is %ld\n", context, context->ref);
316 ref->cert.hCertStore = store;
319 static BOOL CRYPT_MemAddCert(PWINECRYPT_CERTSTORE store,
320 PWINE_CERT_CONTEXT cert, DWORD dwAddDisposition,
321 PCCERT_CONTEXT *ppStoreContext)
323 WINE_MEMSTORE *ms = (WINE_MEMSTORE *)store;
324 BOOL add = FALSE, ret;
325 PCCERT_CONTEXT existing = NULL;
327 TRACE("(%p, %p, %ld, %p)\n", store, cert, dwAddDisposition, ppStoreContext);
329 if (dwAddDisposition != CERT_STORE_ADD_ALWAYS)
332 DWORD size = sizeof(hashToAdd);
334 ret = CRYPT_GetCertificateContextProperty((PWINE_CERT_CONTEXT)cert,
335 CERT_HASH_PROP_ID, hashToAdd, &size);
338 CRYPT_HASH_BLOB blob = { sizeof(hashToAdd), hashToAdd };
340 existing = CertFindCertificateInStore(store,
341 cert->cert.dwCertEncodingType, 0, CERT_FIND_SHA1_HASH, &blob,
345 switch (dwAddDisposition)
347 case CERT_STORE_ADD_ALWAYS:
350 case CERT_STORE_ADD_NEW:
354 TRACE("found matching certificate, not adding\n");
355 SetLastError(CRYPT_E_EXISTS);
362 case CERT_STORE_ADD_REPLACE_EXISTING:
367 TRACE("found matching certificate, replacing\n");
368 CertDeleteCertificateFromStore(existing);
373 FIXME("Unimplemented add disposition %ld\n", dwAddDisposition);
377 CertFreeCertificateContext(existing);
380 PWINE_CERT_LIST_ENTRY entry = CryptMemAlloc(
381 sizeof(WINE_CERT_LIST_ENTRY));
385 TRACE("adding %p\n", entry);
386 CRYPT_InitCertRef(&entry->cert, (PWINE_CERT_CONTEXT)cert, store);
387 EnterCriticalSection(&ms->cs);
388 list_add_tail(&ms->certs, &entry->entry);
389 LeaveCriticalSection(&ms->cs);
392 CertDuplicateCertificateContext((PCCERT_CONTEXT)entry);
400 TRACE("returning %d\n", ret);
404 static PWINE_CERT_CONTEXT CRYPT_MemEnumCert(PWINECRYPT_CERTSTORE store,
405 PWINE_CERT_CONTEXT pPrev)
407 WINE_MEMSTORE *ms = (WINE_MEMSTORE *)store;
408 PWINE_CERT_LIST_ENTRY prevEntry = (PWINE_CERT_LIST_ENTRY)pPrev;
409 PWINE_CERT_CONTEXT ret;
410 struct list *listNext;
412 TRACE("(%p, %p)\n", store, pPrev);
413 EnterCriticalSection(&ms->cs);
416 listNext = list_next(&ms->certs, &prevEntry->entry);
417 CertFreeCertificateContext((PCCERT_CONTEXT)pPrev);
420 listNext = list_next(&ms->certs, &ms->certs);
422 ret = (PWINE_CERT_CONTEXT)CertDuplicateCertificateContext(
423 (PCCERT_CONTEXT)LIST_ENTRY(listNext, WINE_CERT_LIST_ENTRY, entry));
426 SetLastError(CRYPT_E_NOT_FOUND);
429 LeaveCriticalSection(&ms->cs);
431 TRACE("returning %p\n", ret);
435 static BOOL WINAPI CRYPT_MemDeleteCert(HCERTSTORE hCertStore,
436 PCCERT_CONTEXT pCertContext, DWORD dwFlags)
438 WINE_MEMSTORE *store = (WINE_MEMSTORE *)hCertStore;
439 PWINE_CERT_LIST_ENTRY cert = (PWINE_CERT_LIST_ENTRY)pCertContext;
442 /* The passed-in context is itself a list entry, so just remove it. */
443 EnterCriticalSection(&store->cs);
444 list_remove(&cert->entry);
445 ret = CertFreeCertificateContext(pCertContext);
446 LeaveCriticalSection(&store->cs);
450 static void CRYPT_MemEmptyStore(PWINE_MEMSTORE store)
452 PWINE_CERT_LIST_ENTRY cert, next;
454 EnterCriticalSection(&store->cs);
455 LIST_FOR_EACH_ENTRY_SAFE(cert, next, &store->certs, WINE_CERT_LIST_ENTRY,
458 TRACE("removing %p\n", cert);
459 list_remove(&cert->entry);
460 CertFreeCertificateContext((PCCERT_CONTEXT)cert);
462 LeaveCriticalSection(&store->cs);
465 static void WINAPI CRYPT_MemCloseStore(HCERTSTORE hCertStore, DWORD dwFlags)
467 WINE_MEMSTORE *store = (WINE_MEMSTORE *)hCertStore;
469 TRACE("(%p, %08lx)\n", store, dwFlags);
471 FIXME("Unimplemented flags: %08lx\n", dwFlags);
473 CRYPT_MemEmptyStore(store);
474 DeleteCriticalSection(&store->cs);
478 static WINECRYPT_CERTSTORE *CRYPT_MemOpenStore(HCRYPTPROV hCryptProv,
479 DWORD dwFlags, const void *pvPara)
481 PWINE_MEMSTORE store;
483 TRACE("(%ld, %08lx, %p)\n", hCryptProv, dwFlags, pvPara);
485 if (dwFlags & CERT_STORE_DELETE_FLAG)
487 SetLastError(ERROR_CALL_NOT_IMPLEMENTED);
492 store = CryptMemAlloc(sizeof(WINE_MEMSTORE));
495 memset(store, 0, sizeof(WINE_MEMSTORE));
496 CRYPT_InitStore(&store->hdr, hCryptProv, dwFlags, StoreTypeMem);
497 store->hdr.closeStore = CRYPT_MemCloseStore;
498 store->hdr.addCert = CRYPT_MemAddCert;
499 store->hdr.enumCert = CRYPT_MemEnumCert;
500 store->hdr.deleteCert = CRYPT_MemDeleteCert;
501 store->hdr.control = NULL;
502 InitializeCriticalSection(&store->cs);
503 list_init(&store->certs);
506 return (PWINECRYPT_CERTSTORE)store;
509 static BOOL CRYPT_CollectionAddCert(PWINECRYPT_CERTSTORE store,
510 PWINE_CERT_CONTEXT cert, DWORD dwAddDisposition,
511 PCCERT_CONTEXT *ppStoreContext)
513 PWINE_COLLECTIONSTORE cs = (PWINE_COLLECTIONSTORE)store;
514 PWINE_STORE_LIST_ENTRY entry, next;
517 TRACE("(%p, %p, %ld, %p)\n", store, cert, dwAddDisposition, ppStoreContext);
520 EnterCriticalSection(&cs->cs);
521 LIST_FOR_EACH_ENTRY_SAFE(entry, next, &cs->stores, WINE_STORE_LIST_ENTRY,
524 if (entry->dwUpdateFlags & CERT_PHYSICAL_STORE_ADD_ENABLE_FLAG)
526 ret = entry->store->addCert(entry->store, cert, dwAddDisposition,
531 LeaveCriticalSection(&cs->cs);
532 SetLastError(ret ? ERROR_SUCCESS : HRESULT_FROM_WIN32(ERROR_ACCESS_DENIED));
536 static void WINAPI CRYPT_CollectionCloseStore(HCERTSTORE store, DWORD dwFlags)
538 PWINE_COLLECTIONSTORE cs = (PWINE_COLLECTIONSTORE)store;
539 PWINE_STORE_LIST_ENTRY entry, next;
541 TRACE("(%p, %08lx)\n", store, dwFlags);
543 LIST_FOR_EACH_ENTRY_SAFE(entry, next, &cs->stores, WINE_STORE_LIST_ENTRY,
546 TRACE("closing %p\n", entry);
547 CertCloseStore((HCERTSTORE)entry->store, dwFlags);
550 DeleteCriticalSection(&cs->cs);
554 /* Advances a collection enumeration by one cert, if possible, where advancing
556 * - calling the current store's enumeration function once, and returning
557 * the enumerated cert if one is returned
558 * - moving to the next store if the current store has no more items, and
559 * recursively calling itself to get the next item.
560 * Returns NULL if the collection contains no more items or on error.
561 * Assumes the collection store's lock is held.
563 static PWINE_COLLECTION_CERT_CONTEXT CRYPT_CollectionAdvanceEnum(
564 PWINE_COLLECTIONSTORE store, PWINE_STORE_LIST_ENTRY storeEntry,
565 PWINE_COLLECTION_CERT_CONTEXT pPrev)
567 PWINE_COLLECTION_CERT_CONTEXT ret;
568 PWINE_CERT_CONTEXT child;
569 struct list *storeNext = list_next(&store->stores, &storeEntry->entry);
571 TRACE("(%p, %p, %p)\n", store, storeEntry, pPrev);
575 /* Ref-counting funny business: "duplicate" (addref) the child, because
576 * the CertFreeCertificateContext(pPrev) below can cause the ref count
577 * to become negative. See comment below as well.
579 child = ((PWINE_COLLECTION_CERT_CONTEXT)pPrev)->cert.linked;
580 CertDuplicateCertificateContext((PCCERT_CONTEXT)child);
581 child = storeEntry->store->enumCert((HCERTSTORE)storeEntry->store,
583 CertFreeCertificateContext((PCCERT_CONTEXT)pPrev);
587 child = storeEntry->store->enumCert((HCERTSTORE)storeEntry->store,
591 ret = CryptMemAlloc(sizeof(WINE_COLLECTION_CERT_CONTEXT));
594 CRYPT_InitCertRef((PWINE_CERT_CONTEXT_LINK)ret, child, store);
595 /* enumCert already addref'd once, and CRYPT_InitCertRef does again,
596 * so free child once to get the ref count right. (Not doing so
597 * will leak memory if the caller calls CertFreeCertificateContext
598 * rather than CertEnumCertificatesInStore.)
600 CertFreeCertificateContext((PCCERT_CONTEXT)child);
601 ret->storeEntry = storeEntry;
604 CertFreeCertificateContext((PCCERT_CONTEXT)child);
610 storeEntry = LIST_ENTRY(storeNext, WINE_STORE_LIST_ENTRY, entry);
611 ret = CRYPT_CollectionAdvanceEnum(store, storeEntry, NULL);
615 SetLastError(CRYPT_E_NOT_FOUND);
619 TRACE("returning %p\n", ret);
623 static PWINE_CERT_CONTEXT CRYPT_CollectionEnumCert(PWINECRYPT_CERTSTORE store,
624 PWINE_CERT_CONTEXT pPrev)
626 PWINE_COLLECTIONSTORE cs = (PWINE_COLLECTIONSTORE)store;
627 PWINE_COLLECTION_CERT_CONTEXT prevEntry =
628 (PWINE_COLLECTION_CERT_CONTEXT)pPrev, ret;
630 TRACE("(%p, %p)\n", store, pPrev);
634 EnterCriticalSection(&cs->cs);
635 ret = CRYPT_CollectionAdvanceEnum(cs, prevEntry->storeEntry, prevEntry);
636 LeaveCriticalSection(&cs->cs);
640 EnterCriticalSection(&cs->cs);
641 if (!list_empty(&cs->stores))
643 PWINE_STORE_LIST_ENTRY storeEntry;
645 storeEntry = LIST_ENTRY(cs->stores.next, WINE_STORE_LIST_ENTRY,
647 ret = CRYPT_CollectionAdvanceEnum(cs, storeEntry, NULL);
651 SetLastError(CRYPT_E_NOT_FOUND);
654 LeaveCriticalSection(&cs->cs);
656 TRACE("returning %p\n", ret);
657 return (PWINE_CERT_CONTEXT)ret;
660 static BOOL WINAPI CRYPT_CollectionDeleteCert(HCERTSTORE hCertStore,
661 PCCERT_CONTEXT pCertContext, DWORD dwFlags)
663 PWINE_COLLECTION_CERT_CONTEXT context =
664 (PWINE_COLLECTION_CERT_CONTEXT)pCertContext;
667 TRACE("(%p, %p, %08lx)\n", hCertStore, pCertContext, dwFlags);
669 ret = CertDeleteCertificateFromStore((PCCERT_CONTEXT)context->cert.linked);
673 static WINECRYPT_CERTSTORE *CRYPT_CollectionOpenStore(HCRYPTPROV hCryptProv,
674 DWORD dwFlags, const void *pvPara)
676 PWINE_COLLECTIONSTORE store;
678 if (dwFlags & CERT_STORE_DELETE_FLAG)
680 SetLastError(ERROR_CALL_NOT_IMPLEMENTED);
685 store = CryptMemAlloc(sizeof(WINE_COLLECTIONSTORE));
688 memset(store, 0, sizeof(WINE_COLLECTIONSTORE));
689 CRYPT_InitStore(&store->hdr, hCryptProv, dwFlags,
690 StoreTypeCollection);
691 store->hdr.closeStore = CRYPT_CollectionCloseStore;
692 store->hdr.addCert = CRYPT_CollectionAddCert;
693 store->hdr.enumCert = CRYPT_CollectionEnumCert;
694 store->hdr.deleteCert = CRYPT_CollectionDeleteCert;
695 InitializeCriticalSection(&store->cs);
696 list_init(&store->stores);
699 return (PWINECRYPT_CERTSTORE)store;
702 static void WINAPI CRYPT_ProvCloseStore(HCERTSTORE hCertStore, DWORD dwFlags)
704 PWINE_PROVIDERSTORE store = (PWINE_PROVIDERSTORE)hCertStore;
706 TRACE("(%p, %08lx)\n", store, dwFlags);
708 if (store->provCloseStore)
709 store->provCloseStore(store->hStoreProv, dwFlags);
710 if (!(store->dwStoreProvFlags & CERT_STORE_PROV_EXTERNAL_FLAG))
711 CertCloseStore(store->memStore, dwFlags);
715 static BOOL CRYPT_ProvAddCert(PWINECRYPT_CERTSTORE store,
716 PWINE_CERT_CONTEXT cert, DWORD dwAddDisposition,
717 PCCERT_CONTEXT *ppStoreContext)
719 PWINE_PROVIDERSTORE ps = (PWINE_PROVIDERSTORE)store;
722 TRACE("(%p, %p, %ld, %p)\n", store, cert, dwAddDisposition, ppStoreContext);
724 if (ps->hdr.dwOpenFlags & CERT_STORE_READONLY_FLAG)
726 SetLastError(ERROR_ACCESS_DENIED);
732 if (ps->provWriteCert)
733 ret = ps->provWriteCert(ps->hStoreProv, (PCCERT_CONTEXT)cert,
734 CERT_STORE_PROV_WRITE_ADD_FLAG);
737 ret = ps->memStore->addCert(ps->memStore, cert,
738 dwAddDisposition, ppStoreContext);
739 /* dirty trick: replace the returned context's hCertStore with
743 (*(PCERT_CONTEXT *)ppStoreContext)->hCertStore = store;
749 static PWINE_CERT_CONTEXT CRYPT_ProvEnumCert(PWINECRYPT_CERTSTORE store,
750 PWINE_CERT_CONTEXT pPrev)
752 PWINE_PROVIDERSTORE ps = (PWINE_PROVIDERSTORE)store;
753 PWINE_CERT_CONTEXT ret;
755 ret = ps->memStore->enumCert(ps->memStore, pPrev);
758 /* same dirty trick: replace the returned context's hCertStore with
761 ret->cert.hCertStore = store;
766 static BOOL WINAPI CRYPT_ProvDeleteCert(HCERTSTORE hCertStore,
767 PCCERT_CONTEXT cert, DWORD dwFlags)
769 PWINE_PROVIDERSTORE store = (PWINE_PROVIDERSTORE)hCertStore;
772 TRACE("(%p, %p, %08lx)\n", hCertStore, cert, dwFlags);
774 if (store->provDeleteCert)
775 ret = store->provDeleteCert(store->hStoreProv, cert, dwFlags);
777 ret = store->memStore->deleteCert(store->memStore, cert, dwFlags);
781 static BOOL WINAPI CRYPT_ProvControl(HCERTSTORE hCertStore, DWORD dwFlags,
782 DWORD dwCtrlType, void const *pvCtrlPara)
784 PWINE_PROVIDERSTORE store = (PWINE_PROVIDERSTORE)hCertStore;
787 TRACE("(%p, %08lx, %ld, %p)\n", hCertStore, dwFlags, dwCtrlType,
790 if (store->provControl)
791 ret = store->provControl(store->hStoreProv, dwFlags, dwCtrlType,
796 static PWINECRYPT_CERTSTORE CRYPT_ProvCreateStore(HCRYPTPROV hCryptProv,
797 DWORD dwFlags, PWINECRYPT_CERTSTORE memStore, PCERT_STORE_PROV_INFO pProvInfo)
799 PWINE_PROVIDERSTORE ret = (PWINE_PROVIDERSTORE)CryptMemAlloc(
800 sizeof(WINE_PROVIDERSTORE));
804 CRYPT_InitStore(&ret->hdr, hCryptProv, dwFlags,
806 ret->dwStoreProvFlags = pProvInfo->dwStoreProvFlags;
807 if (ret->dwStoreProvFlags & CERT_STORE_PROV_EXTERNAL_FLAG)
809 CertCloseStore(memStore, 0);
810 ret->memStore = NULL;
813 ret->memStore = memStore;
814 ret->hStoreProv = pProvInfo->hStoreProv;
815 ret->hdr.closeStore = CRYPT_ProvCloseStore;
816 ret->hdr.addCert = CRYPT_ProvAddCert;
817 ret->hdr.enumCert = CRYPT_ProvEnumCert;
818 ret->hdr.deleteCert = CRYPT_ProvDeleteCert;
819 ret->hdr.control = CRYPT_ProvControl;
820 if (pProvInfo->cStoreProvFunc > CERT_STORE_PROV_CLOSE_FUNC)
821 ret->provCloseStore =
822 pProvInfo->rgpvStoreProvFunc[CERT_STORE_PROV_CLOSE_FUNC];
824 ret->provCloseStore = NULL;
825 if (pProvInfo->cStoreProvFunc >
826 CERT_STORE_PROV_WRITE_CERT_FUNC)
827 ret->provWriteCert = pProvInfo->rgpvStoreProvFunc[
828 CERT_STORE_PROV_WRITE_CERT_FUNC];
830 ret->provWriteCert = NULL;
831 if (pProvInfo->cStoreProvFunc >
832 CERT_STORE_PROV_DELETE_CERT_FUNC)
833 ret->provDeleteCert = pProvInfo->rgpvStoreProvFunc[
834 CERT_STORE_PROV_DELETE_CERT_FUNC];
836 ret->provDeleteCert = NULL;
837 if (pProvInfo->cStoreProvFunc >
838 CERT_STORE_PROV_CONTROL_FUNC)
839 ret->provControl = pProvInfo->rgpvStoreProvFunc[
840 CERT_STORE_PROV_CONTROL_FUNC];
842 ret->provControl = NULL;
844 return (PWINECRYPT_CERTSTORE)ret;
847 static PWINECRYPT_CERTSTORE CRYPT_ProvOpenStore(LPCSTR lpszStoreProvider,
848 DWORD dwEncodingType, HCRYPTPROV hCryptProv, DWORD dwFlags, const void *pvPara)
850 static HCRYPTOIDFUNCSET set = NULL;
851 PFN_CERT_DLL_OPEN_STORE_PROV_FUNC provOpenFunc;
852 HCRYPTOIDFUNCADDR hFunc;
853 PWINECRYPT_CERTSTORE ret = NULL;
856 set = CryptInitOIDFunctionSet(CRYPT_OID_OPEN_STORE_PROV_FUNC, 0);
857 CryptGetOIDFunctionAddress(set, dwEncodingType, lpszStoreProvider, 0,
858 (void **)&provOpenFunc, &hFunc);
861 CERT_STORE_PROV_INFO provInfo = { 0 };
863 provInfo.cbSize = sizeof(provInfo);
864 if (dwFlags & CERT_STORE_DELETE_FLAG)
865 provOpenFunc(lpszStoreProvider, dwEncodingType, hCryptProv,
866 dwFlags, pvPara, NULL, &provInfo);
869 PWINECRYPT_CERTSTORE memStore;
871 memStore = CRYPT_MemOpenStore(hCryptProv, dwFlags, NULL);
874 if (provOpenFunc(lpszStoreProvider, dwEncodingType, hCryptProv,
875 dwFlags, pvPara, memStore, &provInfo))
876 ret = CRYPT_ProvCreateStore(hCryptProv, dwFlags, memStore,
879 CertCloseStore(memStore, 0);
882 CryptFreeOIDFunctionAddress(hFunc, 0);
885 SetLastError(ERROR_FILE_NOT_FOUND);
889 static void CRYPT_HashToStr(LPBYTE hash, LPWSTR asciiHash)
891 static const WCHAR fmt[] = { '%','0','2','X',0 };
897 for (i = 0; i < 20; i++)
898 wsprintfW(asciiHash + i * 2, fmt, hash[i]);
901 static const WCHAR CertsW[] = { 'C','e','r','t','i','f','i','c','a','t','e','s',
903 static const WCHAR CRLsW[] = { 'C','R','L','s',0 };
904 static const WCHAR CTLsW[] = { 'C','T','L','s',0 };
905 static const WCHAR BlobW[] = { 'B','l','o','b',0 };
907 static void CRYPT_RegReadSerializedFromReg(PWINE_REGSTOREINFO store, HKEY key,
912 WCHAR subKeyName[MAX_PATH];
915 DWORD size = sizeof(subKeyName) / sizeof(WCHAR);
917 rc = RegEnumKeyExW(key, index++, subKeyName, &size, NULL, NULL, NULL,
923 rc = RegOpenKeyExW(key, subKeyName, 0, KEY_READ, &subKey);
929 rc = RegQueryValueExW(subKey, BlobW, NULL, NULL, NULL, &size);
931 buf = CryptMemAlloc(size);
934 rc = RegQueryValueExW(subKey, BlobW, NULL, NULL, buf,
941 TRACE("Adding cert with hash %s\n",
942 debugstr_w(subKeyName));
943 context = CRYPT_ReadSerializedElement(buf, size,
944 contextType, &addedType);
947 const WINE_CONTEXT_INTERFACE *contextInterface;
952 case CERT_STORE_CERTIFICATE_CONTEXT:
953 contextInterface = &gCertInterface;
955 case CERT_STORE_CRL_CONTEXT:
956 contextInterface = &gCRLInterface;
958 case CERT_STORE_CTL_CONTEXT:
959 contextInterface = &gCTLInterface;
962 contextInterface = NULL;
964 if (contextInterface)
967 if (contextInterface->getProp(context,
968 CERT_HASH_PROP_ID, hash, &size))
970 WCHAR asciiHash[20 * 2 + 1];
972 CRYPT_HashToStr(hash, asciiHash);
973 TRACE("comparing %s\n",
974 debugstr_w(asciiHash));
975 TRACE("with %s\n", debugstr_w(subKeyName));
976 if (!lstrcmpW(asciiHash, subKeyName))
978 TRACE("hash matches, adding\n");
979 contextInterface->addContextToStore(
980 store->memStore, context,
981 CERT_STORE_ADD_REPLACE_EXISTING, NULL);
984 TRACE("hash doesn't match, ignoring\n");
986 contextInterface->free(context);
994 /* Ignore intermediate errors, continue enumerating */
1000 static void CRYPT_RegReadFromReg(PWINE_REGSTOREINFO store)
1002 static const WCHAR *subKeys[] = { CertsW, CRLsW, CTLsW };
1003 static const DWORD contextFlags[] = { CERT_STORE_CERTIFICATE_CONTEXT_FLAG,
1004 CERT_STORE_CRL_CONTEXT_FLAG, CERT_STORE_CTL_CONTEXT_FLAG };
1007 for (i = 0; i < sizeof(subKeys) / sizeof(subKeys[0]); i++)
1012 rc = RegCreateKeyExW(store->key, subKeys[i], 0, NULL, 0, KEY_READ, NULL,
1016 CRYPT_RegReadSerializedFromReg(store, key, contextFlags[i]);
1022 /* Hash is assumed to be 20 bytes in length (a SHA-1 hash) */
1023 static BOOL CRYPT_WriteSerializedToReg(HKEY key, LPBYTE hash, LPBYTE buf,
1026 WCHAR asciiHash[20 * 2 + 1];
1031 CRYPT_HashToStr(hash, asciiHash);
1032 rc = RegCreateKeyExW(key, asciiHash, 0, NULL, 0, KEY_ALL_ACCESS, NULL,
1036 rc = RegSetValueExW(subKey, BlobW, 0, REG_BINARY, buf, len);
1037 RegCloseKey(subKey);
1049 static BOOL CRYPT_SerializeContextsToReg(HKEY key,
1050 const WINE_CONTEXT_INTERFACE *contextInterface, HCERTSTORE memStore)
1052 const void *context = NULL;
1056 context = contextInterface->enumContextsInStore(memStore, context);
1060 DWORD hashSize = sizeof(hash);
1062 ret = contextInterface->getProp(context, CERT_HASH_PROP_ID, hash,
1069 ret = contextInterface->serialize(context, 0, NULL, &size);
1071 buf = CryptMemAlloc(size);
1074 ret = contextInterface->serialize(context, 0, buf, &size);
1076 ret = CRYPT_WriteSerializedToReg(key, hash, buf, size);
1083 } while (ret && context != NULL);
1085 contextInterface->free(context);
1089 static BOOL CRYPT_RegWriteToReg(PWINE_REGSTOREINFO store)
1091 static const WCHAR *subKeys[] = { CertsW, CRLsW, CTLsW };
1092 static const WINE_CONTEXT_INTERFACE *interfaces[] = { &gCertInterface,
1093 &gCRLInterface, &gCTLInterface };
1094 struct list *listToDelete[] = { &store->certsToDelete, NULL, NULL };
1098 for (i = 0; ret && i < sizeof(subKeys) / sizeof(subKeys[0]); i++)
1101 LONG rc = RegCreateKeyExW(store->key, subKeys[i], 0, NULL, 0,
1102 KEY_ALL_ACCESS, NULL, &key, NULL);
1106 if (listToDelete[i])
1108 PWINE_HASH_TO_DELETE toDelete, next;
1109 WCHAR asciiHash[20 * 2 + 1];
1111 EnterCriticalSection(&store->cs);
1112 LIST_FOR_EACH_ENTRY_SAFE(toDelete, next, listToDelete[i],
1113 WINE_HASH_TO_DELETE, entry)
1117 CRYPT_HashToStr(toDelete->hash, asciiHash);
1118 TRACE("Removing %s\n", debugstr_w(asciiHash));
1119 rc = RegDeleteKeyW(key, asciiHash);
1120 if (rc != ERROR_SUCCESS && rc != ERROR_FILE_NOT_FOUND)
1125 list_remove(&toDelete->entry);
1126 CryptMemFree(toDelete);
1128 LeaveCriticalSection(&store->cs);
1130 ret = CRYPT_SerializeContextsToReg(key, interfaces[i],
1143 /* If force is true or the registry store is dirty, writes the contents of the
1144 * store to the registry.
1146 static BOOL CRYPT_RegFlushStore(PWINE_REGSTOREINFO store, BOOL force)
1150 TRACE("(%p, %d)\n", store, force);
1152 if (store->dirty || force)
1153 ret = CRYPT_RegWriteToReg(store);
1159 static void WINAPI CRYPT_RegCloseStore(HCERTSTORE hCertStore, DWORD dwFlags)
1161 PWINE_REGSTOREINFO store = (PWINE_REGSTOREINFO)hCertStore;
1163 TRACE("(%p, %08lx)\n", store, dwFlags);
1165 FIXME("Unimplemented flags: %08lx\n", dwFlags);
1167 CRYPT_RegFlushStore(store, FALSE);
1168 RegCloseKey(store->key);
1169 DeleteCriticalSection(&store->cs);
1170 CryptMemFree(store);
1173 static BOOL WINAPI CRYPT_RegWriteCert(HCERTSTORE hCertStore,
1174 PCCERT_CONTEXT cert, DWORD dwFlags)
1176 PWINE_REGSTOREINFO store = (PWINE_REGSTOREINFO)hCertStore;
1179 TRACE("(%p, %p, %ld)\n", hCertStore, cert, dwFlags);
1181 if (dwFlags & CERT_STORE_PROV_WRITE_ADD_FLAG)
1183 store->dirty = TRUE;
1191 static BOOL WINAPI CRYPT_RegDeleteCert(HCERTSTORE hCertStore,
1192 PCCERT_CONTEXT pCertContext, DWORD dwFlags)
1194 PWINE_REGSTOREINFO store = (PWINE_REGSTOREINFO)hCertStore;
1197 TRACE("(%p, %p, %08lx)\n", store, pCertContext, dwFlags);
1199 if (store->dwOpenFlags & CERT_STORE_READONLY_FLAG)
1201 SetLastError(ERROR_ACCESS_DENIED);
1206 PWINE_HASH_TO_DELETE toDelete =
1207 CryptMemAlloc(sizeof(WINE_HASH_TO_DELETE));
1211 DWORD size = sizeof(toDelete->hash);
1213 ret = CertGetCertificateContextProperty(pCertContext,
1214 CERT_HASH_PROP_ID, toDelete->hash, &size);
1217 EnterCriticalSection(&store->cs);
1218 list_add_tail(&store->certsToDelete, &toDelete->entry);
1219 LeaveCriticalSection(&store->cs);
1223 CryptMemFree(toDelete);
1230 store->dirty = TRUE;
1235 static BOOL WINAPI CRYPT_RegControl(HCERTSTORE hCertStore, DWORD dwFlags,
1236 DWORD dwCtrlType, void const *pvCtrlPara)
1238 PWINE_REGSTOREINFO store = (PWINE_REGSTOREINFO)hCertStore;
1241 TRACE("(%p, %08lx, %ld, %p)\n", hCertStore, dwFlags, dwCtrlType,
1246 case CERT_STORE_CTRL_RESYNC:
1247 CRYPT_RegFlushStore(store, FALSE);
1248 CRYPT_MemEmptyStore((PWINE_MEMSTORE)store->memStore);
1249 CRYPT_RegReadFromReg(store);
1252 case CERT_STORE_CTRL_COMMIT:
1253 ret = CRYPT_RegFlushStore(store,
1254 dwFlags & CERT_STORE_CTRL_COMMIT_FORCE_FLAG);
1257 FIXME("%ld: stub\n", dwCtrlType);
1263 /* Copied from shlwapi's SHDeleteKeyW, and reformatted to match this file. */
1264 static DWORD CRYPT_RecurseDeleteKey(HKEY hKey, LPCWSTR lpszSubKey)
1266 DWORD dwRet, dwKeyCount = 0, dwMaxSubkeyLen = 0, dwSize, i;
1267 WCHAR szNameBuf[MAX_PATH], *lpszName = szNameBuf;
1270 TRACE("(hkey=%p,%s)\n", hKey, debugstr_w(lpszSubKey));
1272 dwRet = RegOpenKeyExW(hKey, lpszSubKey, 0, KEY_READ, &hSubKey);
1275 /* Find how many subkeys there are */
1276 dwRet = RegQueryInfoKeyW(hSubKey, NULL, NULL, NULL, &dwKeyCount,
1277 &dwMaxSubkeyLen, NULL, NULL, NULL, NULL, NULL, NULL);
1281 if (dwMaxSubkeyLen > sizeof(szNameBuf)/sizeof(WCHAR))
1283 /* Name too big: alloc a buffer for it */
1284 lpszName = CryptMemAlloc(dwMaxSubkeyLen*sizeof(WCHAR));
1288 dwRet = ERROR_NOT_ENOUGH_MEMORY;
1291 /* Recursively delete all the subkeys */
1292 for (i = 0; i < dwKeyCount && !dwRet; i++)
1294 dwSize = dwMaxSubkeyLen;
1295 dwRet = RegEnumKeyExW(hSubKey, i, lpszName, &dwSize, NULL,
1298 dwRet = CRYPT_RecurseDeleteKey(hSubKey, lpszName);
1301 if (lpszName != szNameBuf)
1303 /* Free buffer if allocated */
1304 CryptMemFree(lpszName);
1309 RegCloseKey(hSubKey);
1311 dwRet = RegDeleteKeyW(hKey, lpszSubKey);
1316 static void *regProvFuncs[] = {
1317 CRYPT_RegCloseStore,
1318 NULL, /* CERT_STORE_PROV_READ_CERT_FUNC */
1320 CRYPT_RegDeleteCert,
1321 NULL, /* CERT_STORE_PROV_SET_CERT_PROPERTY_FUNC */
1322 NULL, /* CERT_STORE_PROV_READ_CRL_FUNC */
1323 NULL, /* CERT_STORE_PROV_WRITE_CRL_FUNC */
1324 NULL, /* CERT_STORE_PROV_DELETE_CRL_FUNC */
1325 NULL, /* CERT_STORE_PROV_SET_CRL_PROPERTY_FUNC */
1326 NULL, /* CERT_STORE_PROV_READ_CTL_FUNC */
1327 NULL, /* CERT_STORE_PROV_WRITE_CTL_FUNC */
1328 NULL, /* CERT_STORE_PROV_DELETE_CTL_FUNC */
1329 NULL, /* CERT_STORE_PROV_SET_CTL_PROPERTY_FUNC */
1333 static WINECRYPT_CERTSTORE *CRYPT_RegOpenStore(HCRYPTPROV hCryptProv,
1334 DWORD dwFlags, const void *pvPara)
1336 PWINECRYPT_CERTSTORE store = NULL;
1338 TRACE("(%ld, %08lx, %p)\n", hCryptProv, dwFlags, pvPara);
1340 if (dwFlags & CERT_STORE_DELETE_FLAG)
1342 DWORD rc = CRYPT_RecurseDeleteKey((HKEY)pvPara, CertsW);
1344 if (rc == ERROR_SUCCESS || rc == ERROR_NO_MORE_ITEMS)
1345 rc = CRYPT_RecurseDeleteKey((HKEY)pvPara, CRLsW);
1346 if (rc == ERROR_SUCCESS || rc == ERROR_NO_MORE_ITEMS)
1347 rc = CRYPT_RecurseDeleteKey((HKEY)pvPara, CTLsW);
1348 if (rc == ERROR_NO_MORE_ITEMS)
1356 if (DuplicateHandle(GetCurrentProcess(), (HANDLE)pvPara,
1357 GetCurrentProcess(), (LPHANDLE)&key,
1358 dwFlags & CERT_STORE_READONLY_FLAG ? KEY_READ : KEY_ALL_ACCESS,
1361 PWINECRYPT_CERTSTORE memStore;
1363 memStore = CRYPT_MemOpenStore(hCryptProv, dwFlags, NULL);
1366 PWINE_REGSTOREINFO regInfo = CryptMemAlloc(
1367 sizeof(WINE_REGSTOREINFO));
1371 CERT_STORE_PROV_INFO provInfo = { 0 };
1373 regInfo->dwOpenFlags = dwFlags;
1374 regInfo->cryptProv = hCryptProv;
1375 regInfo->memStore = memStore;
1377 InitializeCriticalSection(®Info->cs);
1378 list_init(®Info->certsToDelete);
1379 CRYPT_RegReadFromReg(regInfo);
1380 regInfo->dirty = FALSE;
1381 provInfo.cbSize = sizeof(provInfo);
1382 provInfo.cStoreProvFunc = sizeof(regProvFuncs) /
1383 sizeof(regProvFuncs[0]);
1384 provInfo.rgpvStoreProvFunc = regProvFuncs;
1385 provInfo.hStoreProv = regInfo;
1386 store = CRYPT_ProvCreateStore(hCryptProv, dwFlags, memStore,
1392 TRACE("returning %p\n", store);
1396 /* FIXME: this isn't complete for the Root store, in which the top-level
1397 * self-signed CA certs reside. Adding a cert to the Root store should present
1398 * the user with a dialog indicating the consequences of doing so, and asking
1399 * the user to confirm whether the cert should be added.
1401 static PWINECRYPT_CERTSTORE CRYPT_SysRegOpenStoreW(HCRYPTPROV hCryptProv,
1402 DWORD dwFlags, const void *pvPara)
1404 static const WCHAR fmt[] = { '%','s','\\','%','s',0 };
1405 LPCWSTR storeName = (LPCWSTR)pvPara;
1407 PWINECRYPT_CERTSTORE store = NULL;
1412 TRACE("(%ld, %08lx, %s)\n", hCryptProv, dwFlags,
1413 debugstr_w((LPCWSTR)pvPara));
1417 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
1422 switch (dwFlags & CERT_SYSTEM_STORE_LOCATION_MASK)
1424 case CERT_SYSTEM_STORE_LOCAL_MACHINE:
1425 root = HKEY_LOCAL_MACHINE;
1426 base = CERT_LOCAL_MACHINE_SYSTEM_STORE_REGPATH;
1428 case CERT_SYSTEM_STORE_CURRENT_USER:
1429 root = HKEY_CURRENT_USER;
1430 base = CERT_LOCAL_MACHINE_SYSTEM_STORE_REGPATH;
1432 case CERT_SYSTEM_STORE_CURRENT_SERVICE:
1433 /* hklm\Software\Microsoft\Cryptography\Services\servicename\
1434 * SystemCertificates
1436 FIXME("CERT_SYSTEM_STORE_CURRENT_SERVICE, %s: stub\n",
1437 debugstr_w(storeName));
1439 case CERT_SYSTEM_STORE_SERVICES:
1440 /* hklm\Software\Microsoft\Cryptography\Services\servicename\
1441 * SystemCertificates
1443 FIXME("CERT_SYSTEM_STORE_SERVICES, %s: stub\n",
1444 debugstr_w(storeName));
1446 case CERT_SYSTEM_STORE_USERS:
1447 /* hku\user sid\Software\Microsoft\SystemCertificates */
1448 FIXME("CERT_SYSTEM_STORE_USERS, %s: stub\n",
1449 debugstr_w(storeName));
1451 case CERT_SYSTEM_STORE_CURRENT_USER_GROUP_POLICY:
1452 root = HKEY_CURRENT_USER;
1453 base = CERT_GROUP_POLICY_SYSTEM_STORE_REGPATH;
1455 case CERT_SYSTEM_STORE_LOCAL_MACHINE_GROUP_POLICY:
1456 root = HKEY_LOCAL_MACHINE;
1457 base = CERT_GROUP_POLICY_SYSTEM_STORE_REGPATH;
1459 case CERT_SYSTEM_STORE_LOCAL_MACHINE_ENTERPRISE:
1460 /* hklm\Software\Microsoft\EnterpriseCertificates */
1461 FIXME("CERT_SYSTEM_STORE_LOCAL_MACHINE_ENTERPRISE, %s: stub\n",
1462 debugstr_w(storeName));
1465 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
1469 storePath = CryptMemAlloc((lstrlenW(base) + lstrlenW(storeName) + 2) *
1475 REGSAM sam = dwFlags & CERT_STORE_READONLY_FLAG ? KEY_READ :
1478 wsprintfW(storePath, fmt, base, storeName);
1479 if (dwFlags & CERT_STORE_OPEN_EXISTING_FLAG)
1480 rc = RegOpenKeyExW(root, storePath, 0, sam, &key);
1485 rc = RegCreateKeyExW(root, storePath, 0, NULL, 0, sam, NULL,
1487 if (!rc && dwFlags & CERT_STORE_CREATE_NEW_FLAG &&
1488 disp == REG_OPENED_EXISTING_KEY)
1491 rc = ERROR_FILE_EXISTS;
1496 store = CRYPT_RegOpenStore(hCryptProv, dwFlags, key);
1501 CryptMemFree(storePath);
1506 static PWINECRYPT_CERTSTORE CRYPT_SysRegOpenStoreA(HCRYPTPROV hCryptProv,
1507 DWORD dwFlags, const void *pvPara)
1510 PWINECRYPT_CERTSTORE ret = NULL;
1512 TRACE("(%ld, %08lx, %s)\n", hCryptProv, dwFlags,
1513 debugstr_a((LPCSTR)pvPara));
1517 SetLastError(ERROR_FILE_NOT_FOUND);
1520 len = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pvPara, -1, NULL, 0);
1523 LPWSTR storeName = CryptMemAlloc(len * sizeof(WCHAR));
1527 MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pvPara, -1, storeName, len);
1528 ret = CRYPT_SysRegOpenStoreW(hCryptProv, dwFlags, storeName);
1529 CryptMemFree(storeName);
1535 static PWINECRYPT_CERTSTORE CRYPT_SysOpenStoreW(HCRYPTPROV hCryptProv,
1536 DWORD dwFlags, const void *pvPara)
1538 HCERTSTORE store = 0;
1541 TRACE("(%ld, %08lx, %s)\n", hCryptProv, dwFlags,
1542 debugstr_w((LPCWSTR)pvPara));
1546 SetLastError(ERROR_FILE_NOT_FOUND);
1549 /* This returns a different error than system registry stores if the
1550 * location is invalid.
1552 switch (dwFlags & CERT_SYSTEM_STORE_LOCATION_MASK)
1554 case CERT_SYSTEM_STORE_LOCAL_MACHINE:
1555 case CERT_SYSTEM_STORE_CURRENT_USER:
1556 case CERT_SYSTEM_STORE_CURRENT_SERVICE:
1557 case CERT_SYSTEM_STORE_SERVICES:
1558 case CERT_SYSTEM_STORE_USERS:
1559 case CERT_SYSTEM_STORE_CURRENT_USER_GROUP_POLICY:
1560 case CERT_SYSTEM_STORE_LOCAL_MACHINE_GROUP_POLICY:
1561 case CERT_SYSTEM_STORE_LOCAL_MACHINE_ENTERPRISE:
1565 SetLastError(ERROR_FILE_NOT_FOUND);
1570 HCERTSTORE regStore = CertOpenStore(CERT_STORE_PROV_SYSTEM_REGISTRY_W,
1571 0, hCryptProv, dwFlags, pvPara);
1575 store = CertOpenStore(CERT_STORE_PROV_COLLECTION, 0, 0,
1576 CERT_STORE_CREATE_NEW_FLAG, NULL);
1577 CertAddStoreToCollection(store, regStore,
1578 dwFlags & CERT_STORE_READONLY_FLAG ? 0 :
1579 CERT_PHYSICAL_STORE_ADD_ENABLE_FLAG, 0);
1580 CertCloseStore(regStore, 0);
1581 /* CERT_SYSTEM_STORE_CURRENT_USER returns both the HKCU and HKLM
1584 if ((dwFlags & CERT_SYSTEM_STORE_LOCATION_MASK) ==
1585 CERT_SYSTEM_STORE_CURRENT_USER)
1587 dwFlags &= ~CERT_SYSTEM_STORE_CURRENT_USER;
1588 dwFlags |= CERT_SYSTEM_STORE_LOCAL_MACHINE;
1589 regStore = CertOpenStore(CERT_STORE_PROV_SYSTEM_REGISTRY_W, 0,
1590 hCryptProv, dwFlags, pvPara);
1593 CertAddStoreToCollection(store, regStore,
1594 dwFlags & CERT_STORE_READONLY_FLAG ? 0 :
1595 CERT_PHYSICAL_STORE_ADD_ENABLE_FLAG, 0);
1596 CertCloseStore(regStore, 0);
1601 return (PWINECRYPT_CERTSTORE)store;
1604 static PWINECRYPT_CERTSTORE CRYPT_SysOpenStoreA(HCRYPTPROV hCryptProv,
1605 DWORD dwFlags, const void *pvPara)
1608 PWINECRYPT_CERTSTORE ret = NULL;
1610 TRACE("(%ld, %08lx, %s)\n", hCryptProv, dwFlags,
1611 debugstr_a((LPCSTR)pvPara));
1615 SetLastError(ERROR_FILE_NOT_FOUND);
1618 len = MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pvPara, -1, NULL, 0);
1621 LPWSTR storeName = CryptMemAlloc(len * sizeof(WCHAR));
1625 MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pvPara, -1, storeName, len);
1626 ret = CRYPT_SysOpenStoreW(hCryptProv, dwFlags, storeName);
1627 CryptMemFree(storeName);
1633 HCERTSTORE WINAPI CertOpenStore(LPCSTR lpszStoreProvider,
1634 DWORD dwMsgAndCertEncodingType, HCRYPTPROV hCryptProv, DWORD dwFlags,
1637 WINECRYPT_CERTSTORE *hcs;
1638 StoreOpenFunc openFunc = NULL;
1640 TRACE("(%s, %08lx, %08lx, %08lx, %p)\n", debugstr_a(lpszStoreProvider),
1641 dwMsgAndCertEncodingType, hCryptProv, dwFlags, pvPara);
1643 if (!HIWORD(lpszStoreProvider))
1645 switch (LOWORD(lpszStoreProvider))
1647 case (int)CERT_STORE_PROV_MEMORY:
1648 openFunc = CRYPT_MemOpenStore;
1650 case (int)CERT_STORE_PROV_REG:
1651 openFunc = CRYPT_RegOpenStore;
1653 case (int)CERT_STORE_PROV_COLLECTION:
1654 openFunc = CRYPT_CollectionOpenStore;
1656 case (int)CERT_STORE_PROV_SYSTEM_A:
1657 openFunc = CRYPT_SysOpenStoreA;
1659 case (int)CERT_STORE_PROV_SYSTEM_W:
1660 openFunc = CRYPT_SysOpenStoreW;
1662 case (int)CERT_STORE_PROV_SYSTEM_REGISTRY_A:
1663 openFunc = CRYPT_SysRegOpenStoreA;
1665 case (int)CERT_STORE_PROV_SYSTEM_REGISTRY_W:
1666 openFunc = CRYPT_SysRegOpenStoreW;
1669 if (LOWORD(lpszStoreProvider))
1670 FIXME("unimplemented type %d\n", LOWORD(lpszStoreProvider));
1673 else if (!strcasecmp(lpszStoreProvider, sz_CERT_STORE_PROV_MEMORY))
1674 openFunc = CRYPT_MemOpenStore;
1675 else if (!strcasecmp(lpszStoreProvider, sz_CERT_STORE_PROV_SYSTEM))
1676 openFunc = CRYPT_SysOpenStoreW;
1677 else if (!strcasecmp(lpszStoreProvider, sz_CERT_STORE_PROV_COLLECTION))
1678 openFunc = CRYPT_CollectionOpenStore;
1679 else if (!strcasecmp(lpszStoreProvider, sz_CERT_STORE_PROV_SYSTEM_REGISTRY))
1680 openFunc = CRYPT_SysRegOpenStoreW;
1683 FIXME("unimplemented type %s\n", lpszStoreProvider);
1688 hcs = CRYPT_ProvOpenStore(lpszStoreProvider, dwMsgAndCertEncodingType,
1689 hCryptProv, dwFlags, pvPara);
1691 hcs = openFunc(hCryptProv, dwFlags, pvPara);
1692 return (HCERTSTORE)hcs;
1695 HCERTSTORE WINAPI CertOpenSystemStoreA(HCRYPTPROV hProv,
1696 LPCSTR szSubSystemProtocol)
1698 if (!szSubSystemProtocol)
1700 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
1703 return CertOpenStore(CERT_STORE_PROV_SYSTEM_A, 0, hProv,
1704 CERT_SYSTEM_STORE_CURRENT_USER, szSubSystemProtocol);
1707 HCERTSTORE WINAPI CertOpenSystemStoreW(HCRYPTPROV hProv,
1708 LPCWSTR szSubSystemProtocol)
1710 if (!szSubSystemProtocol)
1712 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
1715 return CertOpenStore(CERT_STORE_PROV_SYSTEM_W, 0, hProv,
1716 CERT_SYSTEM_STORE_CURRENT_USER, szSubSystemProtocol);
1719 BOOL WINAPI CertSaveStore(HCERTSTORE hCertStore, DWORD dwMsgAndCertEncodingType,
1720 DWORD dwSaveAs, DWORD dwSaveTo, void* pvSaveToPara, DWORD dwFlags)
1722 FIXME("(%p,%ld,%ld,%ld,%p,%08lx) stub!\n", hCertStore,
1723 dwMsgAndCertEncodingType, dwSaveAs, dwSaveTo, pvSaveToPara, dwFlags);
1727 PCCRL_CONTEXT WINAPI CertCreateCRLContext( DWORD dwCertEncodingType,
1728 const BYTE* pbCrlEncoded, DWORD cbCrlEncoded)
1733 TRACE("%08lx %p %08lx\n", dwCertEncodingType, pbCrlEncoded, cbCrlEncoded);
1735 /* FIXME: semi-stub, need to use CryptDecodeObjectEx to decode the CRL. */
1736 pcrl = CryptMemAlloc( sizeof (CRL_CONTEXT) );
1740 data = CryptMemAlloc( cbCrlEncoded );
1743 CryptMemFree( pcrl );
1747 pcrl->dwCertEncodingType = dwCertEncodingType;
1748 pcrl->pbCrlEncoded = data;
1749 pcrl->cbCrlEncoded = cbCrlEncoded;
1750 pcrl->pCrlInfo = NULL;
1751 pcrl->hCertStore = 0;
1756 /* Decodes the encoded certificate and creates the certificate context for it.
1758 static PWINE_CERT_CONTEXT CRYPT_CreateCertificateContext(
1759 DWORD dwCertEncodingType, const BYTE *pbCertEncoded, DWORD cbCertEncoded)
1761 PWINE_CERT_CONTEXT_DATA cert = NULL;
1763 PCERT_SIGNED_CONTENT_INFO signedCert = NULL;
1764 PCERT_INFO certInfo = NULL;
1767 TRACE("(%08lx, %p, %ld)\n", dwCertEncodingType, pbCertEncoded,
1770 /* First try to decode it as a signed cert. */
1771 ret = CryptDecodeObjectEx(X509_ASN_ENCODING, X509_CERT, pbCertEncoded,
1772 cbCertEncoded, CRYPT_DECODE_ALLOC_FLAG, NULL, (BYTE *)&signedCert, &size);
1776 ret = CryptDecodeObjectEx(X509_ASN_ENCODING, X509_CERT_TO_BE_SIGNED,
1777 signedCert->ToBeSigned.pbData, signedCert->ToBeSigned.cbData,
1778 CRYPT_DECODE_ALLOC_FLAG, NULL, (BYTE *)&certInfo, &size);
1779 LocalFree(signedCert);
1781 /* Failing that, try it as an unsigned cert */
1785 ret = CryptDecodeObjectEx(X509_ASN_ENCODING, X509_CERT_TO_BE_SIGNED,
1786 pbCertEncoded, cbCertEncoded,
1787 CRYPT_DECODE_ALLOC_FLAG | CRYPT_DECODE_NOCOPY_FLAG, NULL,
1788 (BYTE *)&certInfo, &size);
1794 cert = CryptMemAlloc(sizeof(WINE_CERT_CONTEXT_DATA));
1797 data = CryptMemAlloc(cbCertEncoded);
1804 memcpy(data, pbCertEncoded, cbCertEncoded);
1805 cert->cert.dwCertEncodingType = dwCertEncodingType;
1806 cert->cert.pbCertEncoded = data;
1807 cert->cert.cbCertEncoded = cbCertEncoded;
1808 cert->cert.pCertInfo = certInfo;
1809 cert->cert.hCertStore = 0;
1811 cert->type = ContextTypeData;
1812 cert->properties = ContextPropertyList_Create();
1816 return (PWINE_CERT_CONTEXT)cert;
1819 PCCERT_CONTEXT WINAPI CertCreateCertificateContext(DWORD dwCertEncodingType,
1820 const BYTE *pbCertEncoded, DWORD cbCertEncoded)
1822 PWINE_CERT_CONTEXT cert;
1824 TRACE("(%08lx, %p, %ld)\n", dwCertEncodingType, pbCertEncoded,
1827 cert = CRYPT_CreateCertificateContext(dwCertEncodingType, pbCertEncoded,
1829 return (PCCERT_CONTEXT)cert;
1832 /* If context is a link, follows it to its linked context (recursively, if
1833 * necessary) and returns the data context associated with the link.
1834 * Otherwise just returns context.
1836 static inline PWINE_CERT_CONTEXT_DATA CertContext_GetDataContext(
1837 PWINE_CERT_CONTEXT context)
1839 PWINE_CERT_CONTEXT ptr = context;
1841 while (ptr && ptr->type == ContextTypeLink)
1842 ptr = ((PWINE_CERT_CONTEXT_LINK)ptr)->linked;
1843 return (ptr && ptr->type == ContextTypeData) ?
1844 (PWINE_CERT_CONTEXT_DATA)ptr : NULL;
1847 DWORD WINAPI CertEnumCertificateContextProperties(PCCERT_CONTEXT pCertContext,
1850 PWINE_CERT_CONTEXT_DATA linked = CertContext_GetDataContext(
1851 (PWINE_CERT_CONTEXT)pCertContext);
1854 TRACE("(%p, %ld)\n", pCertContext, dwPropId);
1857 ret = ContextPropertyList_EnumPropIDs(linked->properties, dwPropId);
1863 static BOOL CRYPT_GetCertHashProp(PWINE_CERT_CONTEXT context, DWORD dwPropId,
1864 ALG_ID algID, const BYTE *toHash, DWORD toHashLen, void *pvData,
1867 BOOL ret = CryptHashCertificate(0, algID, 0, toHash, toHashLen, pvData,
1871 CRYPT_DATA_BLOB blob = { *pcbData, pvData };
1873 ret = CRYPT_SetCertificateContextProperty(context, dwPropId,
1879 static BOOL WINAPI CRYPT_GetCertificateContextProperty(
1880 PWINE_CERT_CONTEXT context, DWORD dwPropId, void *pvData, DWORD *pcbData)
1882 PWINE_CERT_CONTEXT_DATA linked = CertContext_GetDataContext(context);
1884 CRYPT_DATA_BLOB blob;
1886 TRACE("(%p, %ld, %p, %p)\n", context, dwPropId, pvData, pcbData);
1889 ret = ContextPropertyList_FindProperty(linked->properties, dwPropId,
1897 *pcbData = blob.cbData;
1900 else if (*pcbData < blob.cbData)
1902 SetLastError(ERROR_MORE_DATA);
1903 *pcbData = blob.cbData;
1907 memcpy(pvData, blob.pbData, blob.cbData);
1908 *pcbData = blob.cbData;
1914 /* Implicit properties */
1917 case CERT_SHA1_HASH_PROP_ID:
1918 ret = CRYPT_GetCertHashProp(context, dwPropId, CALG_SHA1,
1919 context->cert.pbCertEncoded, context->cert.cbCertEncoded, pvData,
1922 case CERT_MD5_HASH_PROP_ID:
1923 ret = CRYPT_GetCertHashProp(context, dwPropId, CALG_MD5,
1924 context->cert.pbCertEncoded, context->cert.cbCertEncoded, pvData,
1927 case CERT_SUBJECT_NAME_MD5_HASH_PROP_ID:
1928 ret = CRYPT_GetCertHashProp(context, dwPropId, CALG_MD5,
1929 context->cert.pCertInfo->Subject.pbData,
1930 context->cert.pCertInfo->Subject.cbData,
1933 case CERT_SUBJECT_PUBLIC_KEY_MD5_HASH_PROP_ID:
1934 ret = CRYPT_GetCertHashProp(context, dwPropId, CALG_MD5,
1935 context->cert.pCertInfo->SubjectPublicKeyInfo.PublicKey.pbData,
1936 context->cert.pCertInfo->SubjectPublicKeyInfo.PublicKey.cbData,
1939 case CERT_SIGNATURE_HASH_PROP_ID:
1940 case CERT_ISSUER_SERIAL_NUMBER_MD5_HASH_PROP_ID:
1941 FIXME("implicit property %ld\n", dwPropId);
1942 SetLastError(CRYPT_E_NOT_FOUND);
1945 SetLastError(CRYPT_E_NOT_FOUND);
1948 TRACE("returning %d\n", ret);
1952 BOOL WINAPI CertGetCertificateContextProperty(PCCERT_CONTEXT pCertContext,
1953 DWORD dwPropId, void *pvData, DWORD *pcbData)
1957 TRACE("(%p, %ld, %p, %p)\n", pCertContext, dwPropId, pvData, pcbData);
1959 /* Special cases for invalid/special prop IDs.
1964 case CERT_CERT_PROP_ID:
1965 case CERT_CRL_PROP_ID:
1966 case CERT_CTL_PROP_ID:
1967 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
1969 case CERT_ACCESS_STATE_PROP_ID:
1972 *pcbData = sizeof(DWORD);
1975 else if (*pcbData < sizeof(DWORD))
1977 SetLastError(ERROR_MORE_DATA);
1978 *pcbData = sizeof(DWORD);
1985 if (pCertContext->hCertStore)
1987 PWINECRYPT_CERTSTORE store =
1988 (PWINECRYPT_CERTSTORE)pCertContext->hCertStore;
1990 if (!(store->dwOpenFlags & CERT_STORE_READONLY_FLAG))
1991 state |= CERT_ACCESS_STATE_WRITE_PERSIST_FLAG;
1993 *(DWORD *)pvData = state;
1998 ret = CRYPT_GetCertificateContextProperty((PWINE_CERT_CONTEXT)pCertContext,
1999 dwPropId, pvData, pcbData);
2000 TRACE("returning %d\n", ret);
2004 static BOOL WINAPI CRYPT_SetCertificateContextProperty(
2005 PWINE_CERT_CONTEXT context, DWORD dwPropId, DWORD dwFlags, const void *pvData)
2007 PWINE_CERT_CONTEXT_DATA linked = CertContext_GetDataContext(context);
2010 TRACE("(%p, %ld, %08lx, %p)\n", context, dwPropId, dwFlags, pvData);
2016 ContextPropertyList_RemoveProperty(linked->properties, dwPropId);
2023 case CERT_AUTO_ENROLL_PROP_ID:
2024 case CERT_CTL_USAGE_PROP_ID: /* same as CERT_ENHKEY_USAGE_PROP_ID */
2025 case CERT_DESCRIPTION_PROP_ID:
2026 case CERT_FRIENDLY_NAME_PROP_ID:
2027 case CERT_HASH_PROP_ID:
2028 case CERT_KEY_IDENTIFIER_PROP_ID:
2029 case CERT_MD5_HASH_PROP_ID:
2030 case CERT_NEXT_UPDATE_LOCATION_PROP_ID:
2031 case CERT_PUBKEY_ALG_PARA_PROP_ID:
2032 case CERT_PVK_FILE_PROP_ID:
2033 case CERT_SIGNATURE_HASH_PROP_ID:
2034 case CERT_ISSUER_PUBLIC_KEY_MD5_HASH_PROP_ID:
2035 case CERT_SUBJECT_NAME_MD5_HASH_PROP_ID:
2036 case CERT_SUBJECT_PUBLIC_KEY_MD5_HASH_PROP_ID:
2037 case CERT_ENROLLMENT_PROP_ID:
2038 case CERT_CROSS_CERT_DIST_POINTS_PROP_ID:
2039 case CERT_RENEWAL_PROP_ID:
2041 PCRYPT_DATA_BLOB blob = (PCRYPT_DATA_BLOB)pvData;
2043 ret = ContextPropertyList_SetProperty(linked->properties, dwPropId,
2044 blob->pbData, blob->cbData);
2047 case CERT_DATE_STAMP_PROP_ID:
2048 ret = ContextPropertyList_SetProperty(linked->properties, dwPropId,
2049 pvData, sizeof(FILETIME));
2052 FIXME("%ld: stub\n", dwPropId);
2056 TRACE("returning %d\n", ret);
2060 BOOL WINAPI CertSetCertificateContextProperty(PCCERT_CONTEXT pCertContext,
2061 DWORD dwPropId, DWORD dwFlags, const void *pvData)
2065 TRACE("(%p, %ld, %08lx, %p)\n", pCertContext, dwPropId, dwFlags, pvData);
2067 /* Handle special cases for "read-only"/invalid prop IDs. Windows just
2068 * crashes on most of these, I'll be safer.
2073 case CERT_ACCESS_STATE_PROP_ID:
2074 case CERT_CERT_PROP_ID:
2075 case CERT_CRL_PROP_ID:
2076 case CERT_CTL_PROP_ID:
2077 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
2080 ret = CRYPT_SetCertificateContextProperty((PWINE_CERT_CONTEXT)pCertContext,
2081 dwPropId, dwFlags, pvData);
2082 TRACE("returning %d\n", ret);
2086 PCCERT_CONTEXT WINAPI CertDuplicateCertificateContext(
2087 PCCERT_CONTEXT pCertContext)
2089 PWINE_CERT_CONTEXT context = (PWINE_CERT_CONTEXT)pCertContext;
2091 TRACE("(%p)\n", pCertContext);
2092 InterlockedIncrement(&context->ref);
2093 return pCertContext;
2096 BOOL WINAPI CertAddCertificateContextToStore(HCERTSTORE hCertStore,
2097 PCCERT_CONTEXT pCertContext, DWORD dwAddDisposition,
2098 PCCERT_CONTEXT *ppStoreContext)
2100 PWINECRYPT_CERTSTORE store = (PWINECRYPT_CERTSTORE)hCertStore;
2101 PWINE_CERT_CONTEXT_DATA linked = CertContext_GetDataContext(
2102 (PWINE_CERT_CONTEXT)pCertContext);
2103 PWINE_CERT_CONTEXT cert;
2106 TRACE("(%p, %p, %08lx, %p)\n", hCertStore, pCertContext,
2107 dwAddDisposition, ppStoreContext);
2109 /* FIXME: some tests needed to verify return codes */
2112 SetLastError(ERROR_INVALID_PARAMETER);
2115 if (store->dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2117 SetLastError(ERROR_INVALID_PARAMETER);
2121 cert = CRYPT_CreateCertificateContext(pCertContext->dwCertEncodingType,
2122 pCertContext->pbCertEncoded, pCertContext->cbCertEncoded);
2125 PWINE_CERT_CONTEXT_DATA certData = CertContext_GetDataContext(cert);
2127 ContextPropertyList_Copy(certData->properties, linked->properties);
2128 ret = store->addCert(store, cert, dwAddDisposition, ppStoreContext);
2129 CertFreeCertificateContext((PCCERT_CONTEXT)cert);
2136 BOOL WINAPI CertAddEncodedCertificateToStore(HCERTSTORE hCertStore,
2137 DWORD dwCertEncodingType, const BYTE *pbCertEncoded, DWORD cbCertEncoded,
2138 DWORD dwAddDisposition, PCCERT_CONTEXT *ppCertContext)
2140 WINECRYPT_CERTSTORE *hcs = (WINECRYPT_CERTSTORE *)hCertStore;
2143 TRACE("(%p, %08lx, %p, %ld, %08lx, %p)\n", hCertStore, dwCertEncodingType,
2144 pbCertEncoded, cbCertEncoded, dwAddDisposition, ppCertContext);
2148 else if (hcs->dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2152 PWINE_CERT_CONTEXT cert = CRYPT_CreateCertificateContext(
2153 dwCertEncodingType, pbCertEncoded, cbCertEncoded);
2157 ret = hcs->addCert(hcs, cert, dwAddDisposition, ppCertContext);
2158 CertFreeCertificateContext((PCCERT_CONTEXT)cert);
2166 PCCERT_CONTEXT WINAPI CertEnumCertificatesInStore(HCERTSTORE hCertStore,
2167 PCCERT_CONTEXT pPrev)
2169 WINECRYPT_CERTSTORE *hcs = (WINECRYPT_CERTSTORE *)hCertStore;
2172 TRACE("(%p, %p)\n", hCertStore, pPrev);
2175 else if (hcs->dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2178 ret = (PCCERT_CONTEXT)hcs->enumCert(hcs, (PWINE_CERT_CONTEXT)pPrev);
2182 BOOL WINAPI CertDeleteCertificateFromStore(PCCERT_CONTEXT pCertContext)
2186 TRACE("(%p)\n", pCertContext);
2190 else if (!pCertContext->hCertStore)
2193 CertFreeCertificateContext(pCertContext);
2197 PWINECRYPT_CERTSTORE hcs =
2198 (PWINECRYPT_CERTSTORE)pCertContext->hCertStore;
2200 if (hcs->dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2203 ret = hcs->deleteCert(hcs, pCertContext, 0);
2204 CertFreeCertificateContext(pCertContext);
2209 BOOL WINAPI CertAddEncodedCRLToStore(HCERTSTORE hCertStore,
2210 DWORD dwCertEncodingType, const BYTE *pbCrlEncoded, DWORD cbCrlEncoded,
2211 DWORD dwAddDisposition, PCCRL_CONTEXT *ppCrlContext)
2213 FIXME("(%p, %08lx, %p, %ld, %08lx, %p): stub\n", hCertStore,
2214 dwCertEncodingType, pbCrlEncoded, cbCrlEncoded, dwAddDisposition,
2219 BOOL WINAPI CertAddCRLContextToStore( HCERTSTORE hCertStore,
2220 PCCRL_CONTEXT pCrlContext, DWORD dwAddDisposition,
2221 PCCRL_CONTEXT* ppStoreContext )
2223 FIXME("%p %p %08lx %p\n", hCertStore, pCrlContext,
2224 dwAddDisposition, ppStoreContext);
2228 BOOL WINAPI CertFreeCRLContext( PCCRL_CONTEXT pCrlContext)
2230 FIXME("%p\n", pCrlContext );
2235 BOOL WINAPI CertDeleteCRLFromStore(PCCRL_CONTEXT pCrlContext)
2237 FIXME("(%p): stub\n", pCrlContext);
2241 PCCRL_CONTEXT WINAPI CertEnumCRLsInStore(HCERTSTORE hCertStore,
2242 PCCRL_CONTEXT pPrev)
2244 FIXME("(%p, %p): stub\n", hCertStore, pPrev);
2248 PCCTL_CONTEXT WINAPI CertCreateCTLContext(DWORD dwCertEncodingType,
2249 const BYTE* pbCtlEncoded, DWORD cbCtlEncoded)
2251 FIXME("(%08lx, %p, %08lx): stub\n", dwCertEncodingType, pbCtlEncoded,
2256 BOOL WINAPI CertAddEncodedCTLToStore(HCERTSTORE hCertStore,
2257 DWORD dwMsgAndCertEncodingType, const BYTE *pbCtlEncoded, DWORD cbCtlEncoded,
2258 DWORD dwAddDisposition, PCCTL_CONTEXT *ppCtlContext)
2260 FIXME("(%p, %08lx, %p, %ld, %08lx, %p): stub\n", hCertStore,
2261 dwMsgAndCertEncodingType, pbCtlEncoded, cbCtlEncoded, dwAddDisposition,
2266 BOOL WINAPI CertAddCTLContextToStore(HCERTSTORE hCertStore,
2267 PCCTL_CONTEXT pCtlContext, DWORD dwAddDisposition,
2268 PCCTL_CONTEXT* ppStoreContext)
2270 FIXME("(%p, %p, %08lx, %p): stub\n", hCertStore, pCtlContext,
2271 dwAddDisposition, ppStoreContext);
2275 BOOL WINAPI CertFreeCTLContext(PCCTL_CONTEXT pCtlContext)
2277 FIXME("(%p): stub\n", pCtlContext );
2281 BOOL WINAPI CertDeleteCTLFromStore(PCCTL_CONTEXT pCtlContext)
2283 FIXME("(%p): stub\n", pCtlContext);
2287 PCCTL_CONTEXT WINAPI CertEnumCTLsInStore(HCERTSTORE hCertStore,
2288 PCCTL_CONTEXT pPrev)
2290 FIXME("(%p, %p): stub\n", hCertStore, pPrev);
2294 HCERTSTORE WINAPI CertDuplicateStore(HCERTSTORE hCertStore)
2296 WINECRYPT_CERTSTORE *hcs = (WINECRYPT_CERTSTORE *)hCertStore;
2298 TRACE("(%p)\n", hCertStore);
2300 if (hcs && hcs->dwMagic == WINE_CRYPTCERTSTORE_MAGIC)
2301 InterlockedIncrement(&hcs->ref);
2305 BOOL WINAPI CertCloseStore(HCERTSTORE hCertStore, DWORD dwFlags)
2307 WINECRYPT_CERTSTORE *hcs = (WINECRYPT_CERTSTORE *) hCertStore;
2309 TRACE("(%p, %08lx)\n", hCertStore, dwFlags);
2314 if ( hcs->dwMagic != WINE_CRYPTCERTSTORE_MAGIC )
2317 if (InterlockedDecrement(&hcs->ref) == 0)
2319 TRACE("%p's ref count is 0, freeing\n", hcs);
2321 if (!(hcs->dwOpenFlags & CERT_STORE_NO_CRYPT_RELEASE_FLAG))
2322 CryptReleaseContext(hcs->cryptProv, 0);
2323 hcs->closeStore(hcs, dwFlags);
2326 TRACE("%p's ref count is %ld\n", hcs, hcs->ref);
2330 BOOL WINAPI CertControlStore(HCERTSTORE hCertStore, DWORD dwFlags,
2331 DWORD dwCtrlType, void const *pvCtrlPara)
2333 WINECRYPT_CERTSTORE *hcs = (WINECRYPT_CERTSTORE *)hCertStore;
2336 TRACE("(%p, %08lx, %ld, %p)\n", hCertStore, dwFlags, dwCtrlType,
2341 else if (hcs->dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2346 ret = hcs->control(hCertStore, dwFlags, dwCtrlType, pvCtrlPara);
2353 BOOL WINAPI CertGetCRLContextProperty(PCCRL_CONTEXT pCRLContext,
2354 DWORD dwPropId, void *pvData, DWORD *pcbData)
2356 FIXME("(%p, %ld, %p, %p): stub\n", pCRLContext, dwPropId, pvData, pcbData);
2360 BOOL WINAPI CertSetCRLContextProperty(PCCRL_CONTEXT pCRLContext,
2361 DWORD dwPropId, DWORD dwFlags, const void *pvData)
2363 FIXME("(%p, %ld, %08lx, %p): stub\n", pCRLContext, dwPropId, dwFlags,
2368 BOOL WINAPI CertGetCTLContextProperty(PCCTL_CONTEXT pCTLContext,
2369 DWORD dwPropId, void *pvData, DWORD *pcbData)
2371 FIXME("(%p, %ld, %p, %p): stub\n", pCTLContext, dwPropId, pvData, pcbData);
2375 BOOL WINAPI CertSetCTLContextProperty(PCCTL_CONTEXT pCTLContext,
2376 DWORD dwPropId, DWORD dwFlags, const void *pvData)
2378 FIXME("(%p, %ld, %08lx, %p): stub\n", pCTLContext, dwPropId, dwFlags,
2383 static void CertDataContext_Free(PWINE_CERT_CONTEXT_DATA context)
2385 CryptMemFree(context->cert.pbCertEncoded);
2386 LocalFree(context->cert.pCertInfo);
2387 ContextPropertyList_Free(context->properties);
2388 CryptMemFree(context);
2391 static void CertLinkContext_Free(PWINE_CERT_CONTEXT_LINK context)
2393 CertFreeCertificateContext((PCCERT_CONTEXT)context->linked);
2394 CryptMemFree(context);
2397 static void CertContext_Release(PWINE_CERT_CONTEXT context)
2399 if (InterlockedDecrement(&context->ref) == 0)
2401 TRACE("freeing %p\n", context);
2402 switch (context->type)
2404 case ContextTypeData:
2405 CertDataContext_Free((PWINE_CERT_CONTEXT_DATA)context);
2407 case ContextTypeLink:
2408 CertLinkContext_Free((PWINE_CERT_CONTEXT_LINK)context);
2415 TRACE("%p's ref count is %ld\n", context, context->ref);
2418 BOOL WINAPI CertFreeCertificateContext(PCCERT_CONTEXT pCertContext)
2420 TRACE("(%p)\n", pCertContext);
2423 CertContext_Release((PWINE_CERT_CONTEXT)pCertContext);
2427 typedef BOOL (*CertCompareFunc)(PCCERT_CONTEXT pCertContext, DWORD dwType,
2428 DWORD dwFlags, const void *pvPara);
2430 static BOOL compare_cert_any(PCCERT_CONTEXT pCertContext, DWORD dwType,
2431 DWORD dwFlags, const void *pvPara)
2436 static BOOL compare_cert_by_md5_hash(PCCERT_CONTEXT pCertContext, DWORD dwType,
2437 DWORD dwFlags, const void *pvPara)
2441 DWORD size = sizeof(hash);
2443 ret = CertGetCertificateContextProperty(pCertContext,
2444 CERT_MD5_HASH_PROP_ID, hash, &size);
2447 const CRYPT_HASH_BLOB *pHash = (const CRYPT_HASH_BLOB *)pvPara;
2449 if (size == pHash->cbData)
2450 ret = !memcmp(pHash->pbData, hash, size);
2457 static BOOL compare_cert_by_sha1_hash(PCCERT_CONTEXT pCertContext, DWORD dwType,
2458 DWORD dwFlags, const void *pvPara)
2462 DWORD size = sizeof(hash);
2464 ret = CertGetCertificateContextProperty(pCertContext,
2465 CERT_SHA1_HASH_PROP_ID, hash, &size);
2468 const CRYPT_HASH_BLOB *pHash = (const CRYPT_HASH_BLOB *)pvPara;
2470 if (size == pHash->cbData)
2471 ret = !memcmp(pHash->pbData, hash, size);
2478 static BOOL compare_cert_by_name(PCCERT_CONTEXT pCertContext, DWORD dwType,
2479 DWORD dwFlags, const void *pvPara)
2481 const CERT_NAME_BLOB *blob = (const CERT_NAME_BLOB *)pvPara, *toCompare;
2484 if (dwType & CERT_INFO_SUBJECT_FLAG)
2485 toCompare = &pCertContext->pCertInfo->Subject;
2487 toCompare = &pCertContext->pCertInfo->Issuer;
2488 if (toCompare->cbData == blob->cbData)
2489 ret = !memcmp(toCompare->pbData, blob->pbData, blob->cbData);
2495 static BOOL compare_cert_by_subject_cert(PCCERT_CONTEXT pCertContext,
2496 DWORD dwType, DWORD dwFlags, const void *pvPara)
2498 const CERT_INFO *pCertInfo = (const CERT_INFO *)pvPara;
2501 if (pCertInfo->Issuer.cbData == pCertContext->pCertInfo->Subject.cbData)
2502 ret = !memcmp(pCertInfo->Issuer.pbData,
2503 pCertContext->pCertInfo->Subject.pbData, pCertInfo->Issuer.cbData);
2509 PCCERT_CONTEXT WINAPI CertFindCertificateInStore(HCERTSTORE hCertStore,
2510 DWORD dwCertEncodingType, DWORD dwFlags, DWORD dwType,
2511 const void *pvPara, PCCERT_CONTEXT pPrevCertContext)
2514 CertCompareFunc compare;
2516 TRACE("(%p, %ld, %ld, %ld, %p, %p)\n", hCertStore, dwCertEncodingType,
2517 dwFlags, dwType, pvPara, pPrevCertContext);
2519 switch (dwType >> CERT_COMPARE_SHIFT)
2521 case CERT_COMPARE_ANY:
2522 compare = compare_cert_any;
2524 case CERT_COMPARE_MD5_HASH:
2525 compare = compare_cert_by_md5_hash;
2527 case CERT_COMPARE_SHA1_HASH:
2528 compare = compare_cert_by_sha1_hash;
2530 case CERT_COMPARE_NAME:
2531 compare = compare_cert_by_name;
2533 case CERT_COMPARE_SUBJECT_CERT:
2534 compare = compare_cert_by_subject_cert;
2537 FIXME("find type %08lx unimplemented\n", dwType);
2543 BOOL matches = FALSE;
2545 ret = pPrevCertContext;
2547 ret = CertEnumCertificatesInStore(hCertStore, ret);
2549 matches = compare(ret, dwType, dwFlags, pvPara);
2550 } while (ret != NULL && !matches);
2552 SetLastError(CRYPT_E_NOT_FOUND);
2556 SetLastError(CRYPT_E_NOT_FOUND);
2562 BOOL WINAPI CertAddStoreToCollection(HCERTSTORE hCollectionStore,
2563 HCERTSTORE hSiblingStore, DWORD dwUpdateFlags, DWORD dwPriority)
2565 PWINE_COLLECTIONSTORE collection = (PWINE_COLLECTIONSTORE)hCollectionStore;
2566 WINECRYPT_CERTSTORE *sibling = (WINECRYPT_CERTSTORE *)hSiblingStore;
2567 PWINE_STORE_LIST_ENTRY entry;
2570 TRACE("(%p, %p, %08lx, %ld)\n", hCollectionStore, hSiblingStore,
2571 dwUpdateFlags, dwPriority);
2573 if (!collection || !sibling)
2575 if (collection->hdr.dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2577 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
2580 if (collection->hdr.type != StoreTypeCollection)
2582 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
2585 if (sibling->dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2587 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
2591 entry = CryptMemAlloc(sizeof(WINE_STORE_LIST_ENTRY));
2594 InterlockedIncrement(&sibling->ref);
2595 TRACE("sibling %p's ref count is %ld\n", sibling, sibling->ref);
2596 entry->store = sibling;
2597 entry->dwUpdateFlags = dwUpdateFlags;
2598 entry->dwPriority = dwPriority;
2599 list_init(&entry->entry);
2600 TRACE("%p: adding %p, priority %ld\n", collection, entry, dwPriority);
2601 EnterCriticalSection(&collection->cs);
2604 PWINE_STORE_LIST_ENTRY cursor;
2607 LIST_FOR_EACH_ENTRY(cursor, &collection->stores,
2608 WINE_STORE_LIST_ENTRY, entry)
2610 if (cursor->dwPriority < dwPriority)
2612 list_add_before(&cursor->entry, &entry->entry);
2618 list_add_tail(&collection->stores, &entry->entry);
2621 list_add_tail(&collection->stores, &entry->entry);
2622 LeaveCriticalSection(&collection->cs);
2630 void WINAPI CertRemoveStoreFromCollection(HCERTSTORE hCollectionStore,
2631 HCERTSTORE hSiblingStore)
2633 PWINE_COLLECTIONSTORE collection = (PWINE_COLLECTIONSTORE)hCollectionStore;
2634 WINECRYPT_CERTSTORE *sibling = (WINECRYPT_CERTSTORE *)hSiblingStore;
2635 PWINE_STORE_LIST_ENTRY store, next;
2637 TRACE("(%p, %p)\n", hCollectionStore, hSiblingStore);
2639 if (!collection || !sibling)
2641 if (collection->hdr.dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2643 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
2646 if (collection->hdr.type != StoreTypeCollection)
2648 if (sibling->dwMagic != WINE_CRYPTCERTSTORE_MAGIC)
2650 SetLastError(HRESULT_FROM_WIN32(ERROR_INVALID_PARAMETER));
2653 EnterCriticalSection(&collection->cs);
2654 LIST_FOR_EACH_ENTRY_SAFE(store, next, &collection->stores,
2655 WINE_STORE_LIST_ENTRY, entry)
2657 if (store->store == sibling)
2659 list_remove(&store->entry);
2660 CertCloseStore(store->store, 0);
2661 CryptMemFree(store);
2665 LeaveCriticalSection(&collection->cs);
projects / wine / blob