2 * Copyright (C) 2006 Maarten Lankhorst
3 * Copyright 2007 Juan Lang
5 * This library is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU Lesser General Public
7 * License as published by the Free Software Foundation; either
8 * version 2.1 of the License, or (at your option) any later version.
10 * This library is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * Lesser General Public License for more details.
15 * You should have received a copy of the GNU Lesser General Public
16 * License along with this library; if not, write to the Free Software
17 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
22 #include "wine/port.h"
24 #define NONAMELESSUNION
25 #define NONAMELESSSTRUCT
26 #define CERT_REVOCATION_PARA_HAS_EXTRA_FIELDS
38 #include "wine/debug.h"
40 WINE_DEFAULT_DEBUG_CHANNEL(cryptnet);
42 BOOL WINAPI DllMain(HINSTANCE hinstDLL, DWORD fdwReason, LPVOID lpvReserved)
44 TRACE("(0x%p, %d, %p)\n", hinstDLL, fdwReason, lpvReserved);
47 case DLL_PROCESS_ATTACH:
48 DisableThreadLibraryCalls(hinstDLL);
50 case DLL_PROCESS_DETACH:
51 /* Do uninitialisation here */
58 static const WCHAR cryptNet[] = { 'c','r','y','p','t','n','e','t','.',
60 static const WCHAR ldapProvOpenStore[] = { 'L','d','a','p','P','r','o','v',
61 'O','p','e','S','t','o','r','e',0 };
63 /***********************************************************************
64 * DllRegisterServer (CRYPTNET.@)
66 HRESULT WINAPI DllRegisterServer(void)
69 CryptRegisterDefaultOIDFunction(X509_ASN_ENCODING,
70 CRYPT_OID_VERIFY_REVOCATION_FUNC, 0, cryptNet);
71 CryptRegisterOIDFunction(0, CRYPT_OID_OPEN_STORE_PROV_FUNC, "Ldap",
72 cryptNet, "LdapProvOpenStore");
73 CryptRegisterOIDFunction(0, CRYPT_OID_OPEN_STORE_PROV_FUNC,
74 CERT_STORE_PROV_LDAP_W, cryptNet, "LdapProvOpenStore");
78 /***********************************************************************
79 * DllUnregisterServer (CRYPTNET.@)
81 HRESULT WINAPI DllUnregisterServer(void)
84 CryptUnregisterDefaultOIDFunction(X509_ASN_ENCODING,
85 CRYPT_OID_VERIFY_REVOCATION_FUNC, cryptNet);
86 CryptUnregisterOIDFunction(0, CRYPT_OID_OPEN_STORE_PROV_FUNC, "Ldap");
87 CryptUnregisterOIDFunction(0, CRYPT_OID_OPEN_STORE_PROV_FUNC,
88 CERT_STORE_PROV_LDAP_W);
92 static const char *url_oid_to_str(LPCSTR oid)
102 #define _x(oid) case LOWORD(oid): return #oid
103 _x(URL_OID_CERTIFICATE_ISSUER);
104 _x(URL_OID_CERTIFICATE_CRL_DIST_POINT);
105 _x(URL_OID_CTL_ISSUER);
106 _x(URL_OID_CTL_NEXT_UPDATE);
107 _x(URL_OID_CRL_ISSUER);
108 _x(URL_OID_CERTIFICATE_FRESHEST_CRL);
109 _x(URL_OID_CRL_FRESHEST_CRL);
110 _x(URL_OID_CROSS_CERT_DIST_POINT);
113 snprintf(buf, sizeof(buf), "%d", LOWORD(oid));
119 typedef BOOL (WINAPI *UrlDllGetObjectUrlFunc)(LPCSTR, LPVOID, DWORD,
120 PCRYPT_URL_ARRAY, DWORD *, PCRYPT_URL_INFO, DWORD *, LPVOID);
122 static BOOL WINAPI CRYPT_GetUrlFromCertificateIssuer(LPCSTR pszUrlOid,
123 LPVOID pvPara, DWORD dwFlags, PCRYPT_URL_ARRAY pUrlArray, DWORD *pcbUrlArray,
124 PCRYPT_URL_INFO pUrlInfo, DWORD *pcbUrlInfo, LPVOID pvReserved)
126 /* FIXME: This depends on the AIA (authority info access) extension being
127 * supported in crypt32.
130 SetLastError(CRYPT_E_NOT_FOUND);
134 static BOOL WINAPI CRYPT_GetUrlFromCertificateCRLDistPoint(LPCSTR pszUrlOid,
135 LPVOID pvPara, DWORD dwFlags, PCRYPT_URL_ARRAY pUrlArray, DWORD *pcbUrlArray,
136 PCRYPT_URL_INFO pUrlInfo, DWORD *pcbUrlInfo, LPVOID pvReserved)
138 PCCERT_CONTEXT cert = (PCCERT_CONTEXT)pvPara;
142 /* The only applicable flag is CRYPT_GET_URL_FROM_EXTENSION */
143 if (dwFlags && !(dwFlags & CRYPT_GET_URL_FROM_EXTENSION))
145 SetLastError(CRYPT_E_NOT_FOUND);
148 if ((ext = CertFindExtension(szOID_CRL_DIST_POINTS,
149 cert->pCertInfo->cExtension, cert->pCertInfo->rgExtension)))
151 CRL_DIST_POINTS_INFO *info;
154 ret = CryptDecodeObjectEx(X509_ASN_ENCODING, X509_CRL_DIST_POINTS,
155 ext->Value.pbData, ext->Value.cbData, CRYPT_DECODE_ALLOC_FLAG, NULL,
159 DWORD i, cUrl, bytesNeeded = sizeof(CRYPT_URL_ARRAY);
161 for (i = 0, cUrl = 0; i < info->cDistPoint; i++)
162 if (info->rgDistPoint[i].DistPointName.dwDistPointNameChoice
163 == CRL_DIST_POINT_FULL_NAME)
166 CERT_ALT_NAME_INFO *name =
167 &info->rgDistPoint[i].DistPointName.u.FullName;
169 for (j = 0; j < name->cAltEntry; j++)
170 if (name->rgAltEntry[j].dwAltNameChoice ==
173 if (name->rgAltEntry[j].u.pwszURL)
176 bytesNeeded += sizeof(LPWSTR) +
177 (lstrlenW(name->rgAltEntry[j].u.pwszURL) + 1)
184 SetLastError(E_INVALIDARG);
188 *pcbUrlArray = bytesNeeded;
189 else if (*pcbUrlArray < bytesNeeded)
191 SetLastError(ERROR_MORE_DATA);
192 *pcbUrlArray = bytesNeeded;
199 *pcbUrlArray = bytesNeeded;
201 pUrlArray->rgwszUrl =
202 (LPWSTR *)((BYTE *)pUrlArray + sizeof(CRYPT_URL_ARRAY));
203 nextUrl = (LPWSTR)((BYTE *)pUrlArray + sizeof(CRYPT_URL_ARRAY)
204 + cUrl * sizeof(LPWSTR));
205 for (i = 0; i < info->cDistPoint; i++)
206 if (info->rgDistPoint[i].DistPointName.dwDistPointNameChoice
207 == CRL_DIST_POINT_FULL_NAME)
210 CERT_ALT_NAME_INFO *name =
211 &info->rgDistPoint[i].DistPointName.u.FullName;
213 for (j = 0; j < name->cAltEntry; j++)
214 if (name->rgAltEntry[j].dwAltNameChoice ==
217 if (name->rgAltEntry[j].u.pwszURL)
220 name->rgAltEntry[j].u.pwszURL);
221 pUrlArray->rgwszUrl[pUrlArray->cUrl++] =
224 (lstrlenW(name->rgAltEntry[j].u.pwszURL) + 1);
233 FIXME("url info: stub\n");
235 *pcbUrlInfo = sizeof(CRYPT_URL_INFO);
236 else if (*pcbUrlInfo < sizeof(CRYPT_URL_INFO))
238 *pcbUrlInfo = sizeof(CRYPT_URL_INFO);
239 SetLastError(ERROR_MORE_DATA);
244 *pcbUrlInfo = sizeof(CRYPT_URL_INFO);
245 memset(pUrlInfo, 0, sizeof(CRYPT_URL_INFO));
253 SetLastError(CRYPT_E_NOT_FOUND);
257 /***********************************************************************
258 * CryptGetObjectUrl (CRYPTNET.@)
260 BOOL WINAPI CryptGetObjectUrl(LPCSTR pszUrlOid, LPVOID pvPara, DWORD dwFlags,
261 PCRYPT_URL_ARRAY pUrlArray, DWORD *pcbUrlArray, PCRYPT_URL_INFO pUrlInfo,
262 DWORD *pcbUrlInfo, LPVOID pvReserved)
264 UrlDllGetObjectUrlFunc func = NULL;
265 HCRYPTOIDFUNCADDR hFunc = NULL;
268 TRACE("(%s, %p, %08x, %p, %p, %p, %p, %p)\n", debugstr_a(pszUrlOid),
269 pvPara, dwFlags, pUrlArray, pcbUrlArray, pUrlInfo, pcbUrlInfo, pvReserved);
271 if (!HIWORD(pszUrlOid))
273 switch (LOWORD(pszUrlOid))
275 case LOWORD(URL_OID_CERTIFICATE_ISSUER):
276 func = CRYPT_GetUrlFromCertificateIssuer;
278 case LOWORD(URL_OID_CERTIFICATE_CRL_DIST_POINT):
279 func = CRYPT_GetUrlFromCertificateCRLDistPoint;
282 FIXME("unimplemented for %s\n", url_oid_to_str(pszUrlOid));
283 SetLastError(ERROR_FILE_NOT_FOUND);
288 static HCRYPTOIDFUNCSET set = NULL;
291 set = CryptInitOIDFunctionSet(URL_OID_GET_OBJECT_URL_FUNC, 0);
292 CryptGetOIDFunctionAddress(set, X509_ASN_ENCODING, pszUrlOid, 0,
293 (void **)&func, &hFunc);
296 ret = func(pszUrlOid, pvPara, dwFlags, pUrlArray, pcbUrlArray,
297 pUrlInfo, pcbUrlInfo, pvReserved);
299 CryptFreeOIDFunctionAddress(hFunc, 0);
303 /***********************************************************************
304 * CryptRetrieveObjectByUrlA (CRYPTNET.@)
306 BOOL WINAPI CryptRetrieveObjectByUrlA(LPCSTR pszURL, LPCSTR pszObjectOid,
307 DWORD dwRetrievalFlags, DWORD dwTimeout, LPVOID *ppvObject,
308 HCRYPTASYNC hAsyncRetrieve, PCRYPT_CREDENTIALS pCredentials, LPVOID pvVerify,
309 PCRYPT_RETRIEVE_AUX_INFO pAuxInfo)
314 TRACE("(%s, %s, %08x, %d, %p, %p, %p, %p, %p)\n", debugstr_a(pszURL),
315 debugstr_a(pszObjectOid), dwRetrievalFlags, dwTimeout, ppvObject,
316 hAsyncRetrieve, pCredentials, pvVerify, pAuxInfo);
320 SetLastError(ERROR_INVALID_PARAMETER);
323 len = MultiByteToWideChar(CP_ACP, 0, pszURL, -1, NULL, 0);
326 LPWSTR url = CryptMemAlloc(len * sizeof(WCHAR));
330 MultiByteToWideChar(CP_ACP, 0, pszURL, -1, url, len);
331 ret = CryptRetrieveObjectByUrlW(url, pszObjectOid,
332 dwRetrievalFlags, dwTimeout, ppvObject, hAsyncRetrieve,
333 pCredentials, pvVerify, pAuxInfo);
337 SetLastError(ERROR_OUTOFMEMORY);
342 static void WINAPI CRYPT_FreeBlob(LPCSTR pszObjectOid,
343 PCRYPT_BLOB_ARRAY pObject, void *pvFreeContext)
347 for (i = 0; i < pObject->cBlob; i++)
348 CryptMemFree(pObject->rgBlob[i].pbData);
349 CryptMemFree(pObject->rgBlob);
352 static BOOL CRYPT_GetObjectFromFile(HANDLE hFile, PCRYPT_BLOB_ARRAY pObject)
357 if ((ret = GetFileSizeEx(hFile, &size)))
361 WARN("file too big\n");
362 SetLastError(ERROR_INVALID_DATA);
367 CRYPT_DATA_BLOB blob;
369 blob.pbData = CryptMemAlloc(size.u.LowPart);
372 blob.cbData = size.u.LowPart;
373 ret = ReadFile(hFile, blob.pbData, size.u.LowPart, &blob.cbData,
377 pObject->rgBlob = CryptMemAlloc(sizeof(CRYPT_DATA_BLOB));
381 memcpy(pObject->rgBlob, &blob, sizeof(CRYPT_DATA_BLOB));
385 SetLastError(ERROR_OUTOFMEMORY);
390 CryptMemFree(blob.pbData);
394 SetLastError(ERROR_OUTOFMEMORY);
402 /* FIXME: should make wininet cache all downloads instead */
403 static BOOL CRYPT_GetObjectFromCache(LPCWSTR pszURL, PCRYPT_BLOB_ARRAY pObject,
404 PCRYPT_RETRIEVE_AUX_INFO pAuxInfo)
407 INTERNET_CACHE_ENTRY_INFOW cacheInfo = { sizeof(cacheInfo), 0 };
408 DWORD size = sizeof(cacheInfo);
410 TRACE("(%s, %p, %p)\n", debugstr_w(pszURL), pObject, pAuxInfo);
412 if (GetUrlCacheEntryInfoW(pszURL, &cacheInfo, &size) ||
413 GetLastError() == ERROR_INSUFFICIENT_BUFFER)
417 GetSystemTimeAsFileTime(&ft);
418 if (CompareFileTime(&cacheInfo.ExpireTime, &ft) >= 0)
420 LPINTERNET_CACHE_ENTRY_INFOW pCacheInfo = CryptMemAlloc(size);
424 if (GetUrlCacheEntryInfoW(pszURL, pCacheInfo, &size))
426 HANDLE hFile = CreateFileW(pCacheInfo->lpszLocalFileName,
427 GENERIC_READ, 0, NULL, OPEN_EXISTING,
428 FILE_ATTRIBUTE_NORMAL, NULL);
430 if (hFile != INVALID_HANDLE_VALUE)
432 if ((ret = CRYPT_GetObjectFromFile(hFile, pObject)))
434 if (pAuxInfo && pAuxInfo->cbSize >=
435 offsetof(CRYPT_RETRIEVE_AUX_INFO,
436 pLastSyncTime) + sizeof(PFILETIME) &&
437 pAuxInfo->pLastSyncTime)
438 memcpy(pAuxInfo->pLastSyncTime,
439 &pCacheInfo->LastSyncTime,
445 CryptMemFree(pCacheInfo);
448 SetLastError(ERROR_OUTOFMEMORY);
451 DeleteUrlCacheEntryW(pszURL);
453 TRACE("returning %d\n", ret);
457 /* Parses the URL, and sets components's lpszHostName and lpszUrlPath members
458 * to NULL-terminated copies of those portions of the URL (to be freed with
461 static BOOL CRYPT_CrackUrl(LPCWSTR pszURL, URL_COMPONENTSW *components)
465 TRACE("(%s, %p)\n", debugstr_w(pszURL), components);
467 memset(components, 0, sizeof(*components));
468 components->dwStructSize = sizeof(*components);
469 components->lpszHostName = CryptMemAlloc(MAX_PATH * sizeof(WCHAR));
470 components->dwHostNameLength = MAX_PATH;
471 components->lpszUrlPath = CryptMemAlloc(MAX_PATH * 2 * sizeof(WCHAR));
472 components->dwUrlPathLength = 2 * MAX_PATH;
473 ret = InternetCrackUrlW(pszURL, 0, ICU_DECODE, components);
476 if ((components->dwUrlPathLength == 2 * MAX_PATH - 1) ||
477 (components->dwHostNameLength == MAX_PATH - 1))
478 FIXME("Buffers are too small\n");
479 switch (components->nScheme)
481 case INTERNET_SCHEME_FTP:
482 if (!components->nPort)
483 components->nPort = INTERNET_DEFAULT_FTP_PORT;
485 case INTERNET_SCHEME_HTTP:
486 if (!components->nPort)
487 components->nPort = INTERNET_DEFAULT_HTTP_PORT;
493 TRACE("returning %d\n", ret);
504 static struct InetContext *CRYPT_MakeInetContext(DWORD dwTimeout)
506 struct InetContext *context = CryptMemAlloc(sizeof(struct InetContext));
510 context->event = CreateEventW(NULL, FALSE, FALSE, NULL);
513 CryptMemFree(context);
518 context->timeout = dwTimeout;
519 context->error = ERROR_SUCCESS;
525 static BOOL CRYPT_DownloadObject(DWORD dwRetrievalFlags, HINTERNET hHttp,
526 struct InetContext *context, PCRYPT_BLOB_ARRAY pObject,
527 PCRYPT_RETRIEVE_AUX_INFO pAuxInfo)
529 CRYPT_DATA_BLOB object = { 0, NULL };
530 DWORD bytesAvailable;
534 if ((ret = InternetQueryDataAvailable(hHttp, &bytesAvailable, 0, 0)))
539 object.pbData = CryptMemRealloc(object.pbData,
540 object.cbData + bytesAvailable);
542 object.pbData = CryptMemAlloc(bytesAvailable);
545 INTERNET_BUFFERSA buffer = { sizeof(buffer), 0 };
547 buffer.dwBufferLength = bytesAvailable;
548 buffer.lpvBuffer = object.pbData + object.cbData;
549 if (!(ret = InternetReadFileExA(hHttp, &buffer, IRF_NO_WAIT,
550 (DWORD_PTR)context)))
552 if (GetLastError() == ERROR_IO_PENDING)
554 if (WaitForSingleObject(context->event,
555 context->timeout) == WAIT_TIMEOUT)
556 SetLastError(ERROR_TIMEOUT);
557 else if (context->error)
558 SetLastError(context->error);
564 object.cbData += bytesAvailable;
568 SetLastError(ERROR_OUTOFMEMORY);
573 else if (GetLastError() == ERROR_IO_PENDING)
575 if (WaitForSingleObject(context->event, context->timeout) ==
577 SetLastError(ERROR_TIMEOUT);
581 } while (ret && bytesAvailable);
584 pObject->rgBlob = CryptMemAlloc(sizeof(CRYPT_DATA_BLOB));
585 if (!pObject->rgBlob)
587 CryptMemFree(object.pbData);
588 SetLastError(ERROR_OUTOFMEMORY);
593 pObject->rgBlob[0].cbData = object.cbData;
594 pObject->rgBlob[0].pbData = object.pbData;
598 TRACE("returning %d\n", ret);
602 static void CRYPT_CacheURL(LPCWSTR pszURL, PCRYPT_BLOB_ARRAY pObject,
603 DWORD dwRetrievalFlags, FILETIME expires)
605 WCHAR cacheFileName[MAX_PATH];
607 /* FIXME: let wininet directly cache instead */
608 if (CreateUrlCacheEntryW(pszURL, pObject->rgBlob[0].cbData, NULL,
611 HANDLE hCacheFile = CreateFileW(cacheFileName, GENERIC_WRITE, 0, NULL,
612 CREATE_ALWAYS, FILE_ATTRIBUTE_NORMAL, NULL);
614 if (hCacheFile != INVALID_HANDLE_VALUE)
616 DWORD bytesWritten, entryType;
619 if (!(dwRetrievalFlags & CRYPT_STICKY_CACHE_RETRIEVAL))
620 entryType = NORMAL_CACHE_ENTRY;
622 entryType = STICKY_CACHE_ENTRY;
623 WriteFile(hCacheFile, pObject->rgBlob[0].pbData,
624 pObject->rgBlob[0].cbData, &bytesWritten, NULL);
625 CloseHandle(hCacheFile);
626 CommitUrlCacheEntryW(pszURL, cacheFileName, expires, ft, entryType,
627 NULL, 0, NULL, NULL);
632 static void CALLBACK CRYPT_InetStatusCallback(HINTERNET hInt,
633 DWORD_PTR dwContext, DWORD status, void *statusInfo, DWORD statusInfoLen)
635 struct InetContext *context = (struct InetContext *)dwContext;
636 LPINTERNET_ASYNC_RESULT result;
640 case INTERNET_STATUS_REQUEST_COMPLETE:
641 result = (LPINTERNET_ASYNC_RESULT)statusInfo;
642 context->error = result->dwError;
643 SetEvent(context->event);
647 static BOOL CRYPT_Connect(URL_COMPONENTSW *components,
648 struct InetContext *context, PCRYPT_CREDENTIALS pCredentials,
649 HINTERNET *phInt, HINTERNET *phHost)
653 TRACE("(%s:%d, %p, %p, %p, %p)\n", debugstr_w(components->lpszHostName),
654 components->nPort, context, pCredentials, phInt, phInt);
657 *phInt = InternetOpenW(NULL, INTERNET_OPEN_TYPE_DIRECT, NULL, NULL,
658 context ? INTERNET_FLAG_ASYNC : 0);
664 InternetSetStatusCallbackW(*phInt, CRYPT_InetStatusCallback);
665 switch (components->nScheme)
667 case INTERNET_SCHEME_FTP:
668 service = INTERNET_SERVICE_FTP;
670 case INTERNET_SCHEME_HTTP:
671 service = INTERNET_SERVICE_HTTP;
676 /* FIXME: use pCredentials for username/password */
677 *phHost = InternetConnectW(*phInt, components->lpszHostName,
678 components->nPort, NULL, NULL, service, 0, (DWORD_PTR)context);
681 InternetCloseHandle(*phInt);
690 TRACE("returning %d\n", ret);
694 static BOOL WINAPI FTP_RetrieveEncodedObjectW(LPCWSTR pszURL,
695 LPCSTR pszObjectOid, DWORD dwRetrievalFlags, DWORD dwTimeout,
696 PCRYPT_BLOB_ARRAY pObject, PFN_FREE_ENCODED_OBJECT_FUNC *ppfnFreeObject,
697 void **ppvFreeContext, HCRYPTASYNC hAsyncRetrieve,
698 PCRYPT_CREDENTIALS pCredentials, PCRYPT_RETRIEVE_AUX_INFO pAuxInfo)
700 FIXME("(%s, %s, %08x, %d, %p, %p, %p, %p, %p, %p)\n", debugstr_w(pszURL),
701 debugstr_a(pszObjectOid), dwRetrievalFlags, dwTimeout, pObject,
702 ppfnFreeObject, ppvFreeContext, hAsyncRetrieve, pCredentials, pAuxInfo);
705 pObject->rgBlob = NULL;
706 *ppfnFreeObject = CRYPT_FreeBlob;
707 *ppvFreeContext = NULL;
711 static const WCHAR x509cacert[] = { 'a','p','p','l','i','c','a','t','i','o','n',
712 '/','x','-','x','5','0','9','-','c','a','-','c','e','r','t',0 };
713 static const WCHAR x509emailcert[] = { 'a','p','p','l','i','c','a','t','i','o',
714 'n','/','x','-','x','5','0','9','-','e','m','a','i','l','-','c','e','r','t',
716 static const WCHAR x509servercert[] = { 'a','p','p','l','i','c','a','t','i','o',
717 'n','/','x','-','x','5','0','9','-','s','e','r','v','e','r','-','c','e','r',
719 static const WCHAR x509usercert[] = { 'a','p','p','l','i','c','a','t','i','o',
720 'n','/','x','-','x','5','0','9','-','u','s','e','r','-','c','e','r','t',0 };
721 static const WCHAR pkcs7cert[] = { 'a','p','p','l','i','c','a','t','i','o','n',
722 '/','x','-','p','k','c','s','7','-','c','e','r','t','i','f','c','a','t','e',
724 static const WCHAR pkixCRL[] = { 'a','p','p','l','i','c','a','t','i','o','n',
725 '/','p','k','i','x','-','c','r','l',0 };
726 static const WCHAR pkcs7CRL[] = { 'a','p','p','l','i','c','a','t','i','o','n',
727 '/','x','-','p','k','c','s','7','-','c','r','l',0 };
728 static const WCHAR pkcs7sig[] = { 'a','p','p','l','i','c','a','t','i','o','n',
729 '/','x','-','p','k','c','s','7','-','s','i','g','n','a','t','u','r','e',0 };
730 static const WCHAR pkcs7mime[] = { 'a','p','p','l','i','c','a','t','i','o','n',
731 '/','x','-','p','k','c','s','7','-','m','i','m','e',0 };
733 static BOOL WINAPI HTTP_RetrieveEncodedObjectW(LPCWSTR pszURL,
734 LPCSTR pszObjectOid, DWORD dwRetrievalFlags, DWORD dwTimeout,
735 PCRYPT_BLOB_ARRAY pObject, PFN_FREE_ENCODED_OBJECT_FUNC *ppfnFreeObject,
736 void **ppvFreeContext, HCRYPTASYNC hAsyncRetrieve,
737 PCRYPT_CREDENTIALS pCredentials, PCRYPT_RETRIEVE_AUX_INFO pAuxInfo)
741 TRACE("(%s, %s, %08x, %d, %p, %p, %p, %p, %p, %p)\n", debugstr_w(pszURL),
742 debugstr_a(pszObjectOid), dwRetrievalFlags, dwTimeout, pObject,
743 ppfnFreeObject, ppvFreeContext, hAsyncRetrieve, pCredentials, pAuxInfo);
746 pObject->rgBlob = NULL;
747 *ppfnFreeObject = CRYPT_FreeBlob;
748 *ppvFreeContext = NULL;
750 if (!(dwRetrievalFlags & CRYPT_WIRE_ONLY_RETRIEVAL))
751 ret = CRYPT_GetObjectFromCache(pszURL, pObject, pAuxInfo);
752 if (!ret && (!(dwRetrievalFlags & CRYPT_CACHE_ONLY_RETRIEVAL) ||
753 (dwRetrievalFlags & CRYPT_WIRE_ONLY_RETRIEVAL)))
755 URL_COMPONENTSW components;
757 if ((ret = CRYPT_CrackUrl(pszURL, &components)))
759 HINTERNET hInt, hHost;
760 struct InetContext *context = NULL;
763 context = CRYPT_MakeInetContext(dwTimeout);
764 ret = CRYPT_Connect(&components, context, pCredentials, &hInt,
768 static LPCWSTR types[] = { x509cacert, x509emailcert,
769 x509servercert, x509usercert, pkcs7cert, pkixCRL, pkcs7CRL,
770 pkcs7sig, pkcs7mime, NULL };
771 HINTERNET hHttp = HttpOpenRequestW(hHost, NULL,
772 components.lpszUrlPath, NULL, NULL, types,
773 INTERNET_FLAG_NO_COOKIES | INTERNET_FLAG_NO_UI,
780 InternetSetOptionW(hHttp,
781 INTERNET_OPTION_RECEIVE_TIMEOUT, &dwTimeout,
783 InternetSetOptionW(hHttp, INTERNET_OPTION_SEND_TIMEOUT,
784 &dwTimeout, sizeof(dwTimeout));
786 ret = HttpSendRequestExW(hHttp, NULL, NULL, 0,
788 if (!ret && GetLastError() == ERROR_IO_PENDING)
790 if (WaitForSingleObject(context->event,
791 context->timeout) == WAIT_TIMEOUT)
792 SetLastError(ERROR_TIMEOUT);
796 /* We don't set ret to TRUE in this block to avoid masking
797 * an error from HttpSendRequestExW.
799 if (!HttpEndRequestW(hHttp, NULL, 0, (DWORD_PTR)context) &&
800 GetLastError() == ERROR_IO_PENDING)
802 if (WaitForSingleObject(context->event,
803 context->timeout) == WAIT_TIMEOUT)
805 SetLastError(ERROR_TIMEOUT);
810 ret = CRYPT_DownloadObject(dwRetrievalFlags, hHttp,
811 context, pObject, pAuxInfo);
812 if (ret && !(dwRetrievalFlags & CRYPT_DONT_CACHE_RESULT))
815 DWORD len = sizeof(st);
817 if (HttpQueryInfoW(hHttp,
818 HTTP_QUERY_EXPIRES | HTTP_QUERY_FLAG_SYSTEMTIME, &st,
823 SystemTimeToFileTime(&st, &ft);
824 CRYPT_CacheURL(pszURL, pObject, dwRetrievalFlags,
828 InternetCloseHandle(hHttp);
830 InternetCloseHandle(hHost);
831 InternetCloseHandle(hInt);
835 CloseHandle(context->event);
836 CryptMemFree(context);
838 CryptMemFree(components.lpszUrlPath);
839 CryptMemFree(components.lpszHostName);
842 TRACE("returning %d\n", ret);
846 static BOOL WINAPI File_RetrieveEncodedObjectW(LPCWSTR pszURL,
847 LPCSTR pszObjectOid, DWORD dwRetrievalFlags, DWORD dwTimeout,
848 PCRYPT_BLOB_ARRAY pObject, PFN_FREE_ENCODED_OBJECT_FUNC *ppfnFreeObject,
849 void **ppvFreeContext, HCRYPTASYNC hAsyncRetrieve,
850 PCRYPT_CREDENTIALS pCredentials, PCRYPT_RETRIEVE_AUX_INFO pAuxInfo)
852 URL_COMPONENTSW components = { sizeof(components), 0 };
855 TRACE("(%s, %s, %08x, %d, %p, %p, %p, %p, %p, %p)\n", debugstr_w(pszURL),
856 debugstr_a(pszObjectOid), dwRetrievalFlags, dwTimeout, pObject,
857 ppfnFreeObject, ppvFreeContext, hAsyncRetrieve, pCredentials, pAuxInfo);
860 pObject->rgBlob = NULL;
861 *ppfnFreeObject = CRYPT_FreeBlob;
862 *ppvFreeContext = NULL;
864 components.lpszUrlPath = CryptMemAlloc(MAX_PATH * 2 * sizeof(WCHAR));
865 components.dwUrlPathLength = 2 * MAX_PATH;
866 ret = InternetCrackUrlW(pszURL, 0, ICU_DECODE, &components);
871 if (components.dwUrlPathLength == 2 * MAX_PATH - 1)
872 FIXME("Buffers are too small\n");
874 /* 3 == lstrlenW(L"c:") + 1 */
875 path = CryptMemAlloc((components.dwUrlPathLength + 3) * sizeof(WCHAR));
880 /* Try to create the file directly - Wine handles / in pathnames */
881 lstrcpynW(path, components.lpszUrlPath,
882 components.dwUrlPathLength + 1);
883 hFile = CreateFileW(path, GENERIC_READ, 0, NULL, OPEN_EXISTING,
884 FILE_ATTRIBUTE_NORMAL, NULL);
885 if (hFile == INVALID_HANDLE_VALUE)
887 /* Try again on the current drive */
888 GetCurrentDirectoryW(components.dwUrlPathLength, path);
891 lstrcpynW(path + 2, components.lpszUrlPath,
892 components.dwUrlPathLength + 1);
893 hFile = CreateFileW(path, GENERIC_READ, 0, NULL,
894 OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL);
896 if (hFile == INVALID_HANDLE_VALUE)
898 /* Try again on the Windows drive */
899 GetWindowsDirectoryW(path, components.dwUrlPathLength);
902 lstrcpynW(path + 2, components.lpszUrlPath,
903 components.dwUrlPathLength + 1);
904 hFile = CreateFileW(path, GENERIC_READ, 0, NULL,
905 OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL);
909 if (hFile != INVALID_HANDLE_VALUE)
911 if ((ret = CRYPT_GetObjectFromFile(hFile, pObject)))
913 if (pAuxInfo && pAuxInfo->cbSize >=
914 offsetof(CRYPT_RETRIEVE_AUX_INFO,
915 pLastSyncTime) + sizeof(PFILETIME) &&
916 pAuxInfo->pLastSyncTime)
917 GetFileTime(hFile, NULL, NULL,
918 pAuxInfo->pLastSyncTime);
927 CryptMemFree(components.lpszUrlPath);
931 typedef BOOL (WINAPI *SchemeDllRetrieveEncodedObjectW)(LPCWSTR pwszUrl,
932 LPCSTR pszObjectOid, DWORD dwRetrievalFlags, DWORD dwTimeout,
933 PCRYPT_BLOB_ARRAY pObject, PFN_FREE_ENCODED_OBJECT_FUNC *ppfnFreeObject,
934 void **ppvFreeContext, HCRYPTASYNC hAsyncRetrieve,
935 PCRYPT_CREDENTIALS pCredentials, PCRYPT_RETRIEVE_AUX_INFO pAuxInfo);
937 static BOOL CRYPT_GetRetrieveFunction(LPCWSTR pszURL,
938 SchemeDllRetrieveEncodedObjectW *pFunc, HCRYPTOIDFUNCADDR *phFunc)
940 URL_COMPONENTSW components = { sizeof(components), 0 };
943 TRACE("(%s, %p, %p)\n", debugstr_w(pszURL), pFunc, phFunc);
947 components.dwSchemeLength = 1;
948 ret = InternetCrackUrlW(pszURL, 0, 0, &components);
951 /* Microsoft always uses CryptInitOIDFunctionSet/
952 * CryptGetOIDFunctionAddress, but there doesn't seem to be a pressing
953 * reason to do so for builtin schemes.
955 switch (components.nScheme)
957 case INTERNET_SCHEME_FTP:
958 *pFunc = FTP_RetrieveEncodedObjectW;
960 case INTERNET_SCHEME_HTTP:
961 *pFunc = HTTP_RetrieveEncodedObjectW;
963 case INTERNET_SCHEME_FILE:
964 *pFunc = File_RetrieveEncodedObjectW;
968 int len = WideCharToMultiByte(CP_ACP, 0, components.lpszScheme,
969 components.dwSchemeLength, NULL, 0, NULL, NULL);
973 LPSTR scheme = CryptMemAlloc(len);
977 static HCRYPTOIDFUNCSET set = NULL;
980 set = CryptInitOIDFunctionSet(
981 SCHEME_OID_RETRIEVE_ENCODED_OBJECTW_FUNC, 0);
982 WideCharToMultiByte(CP_ACP, 0, components.lpszScheme,
983 components.dwSchemeLength, scheme, len, NULL, NULL);
984 ret = CryptGetOIDFunctionAddress(set, X509_ASN_ENCODING,
985 scheme, 0, (void **)pFunc, phFunc);
986 CryptMemFree(scheme);
990 SetLastError(ERROR_OUTOFMEMORY);
999 TRACE("returning %d\n", ret);
1003 static BOOL WINAPI CRYPT_CreateBlob(LPCSTR pszObjectOid,
1004 DWORD dwRetrievalFlags, PCRYPT_BLOB_ARRAY pObject, void **ppvContext)
1007 CRYPT_BLOB_ARRAY *context;
1010 size = sizeof(CRYPT_BLOB_ARRAY) + pObject->cBlob * sizeof(CRYPT_DATA_BLOB);
1011 for (i = 0; i < pObject->cBlob; i++)
1012 size += pObject->rgBlob[i].cbData;
1013 context = CryptMemAlloc(size);
1020 (CRYPT_DATA_BLOB *)((LPBYTE)context + sizeof(CRYPT_BLOB_ARRAY));
1022 (LPBYTE)context->rgBlob + pObject->cBlob * sizeof(CRYPT_DATA_BLOB);
1023 for (i = 0; i < pObject->cBlob; i++)
1025 memcpy(nextData, pObject->rgBlob[i].pbData,
1026 pObject->rgBlob[i].cbData);
1027 context->rgBlob[i].pbData = nextData;
1028 context->rgBlob[i].cbData = pObject->rgBlob[i].cbData;
1029 nextData += pObject->rgBlob[i].cbData;
1032 *ppvContext = context;
1038 typedef BOOL (WINAPI *AddContextToStore)(HCERTSTORE hCertStore,
1039 const void *pContext, DWORD dwAddDisposition, const void **ppStoreContext);
1041 static BOOL CRYPT_CreateContext(PCRYPT_BLOB_ARRAY pObject,
1042 DWORD dwExpectedContentTypeFlags, AddContextToStore addFunc, void **ppvContext)
1046 if (!pObject->cBlob)
1048 SetLastError(ERROR_INVALID_DATA);
1052 else if (pObject->cBlob == 1)
1054 if (!CryptQueryObject(CERT_QUERY_OBJECT_BLOB, &pObject->rgBlob[0],
1055 dwExpectedContentTypeFlags, CERT_QUERY_FORMAT_FLAG_BINARY, 0, NULL,
1056 NULL, NULL, NULL, NULL, (const void **)ppvContext))
1058 SetLastError(CRYPT_E_NO_MATCH);
1064 HCERTSTORE store = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, 0,
1065 CERT_STORE_CREATE_NEW_FLAG, NULL);
1070 const void *context;
1072 for (i = 0; i < pObject->cBlob; i++)
1074 if (CryptQueryObject(CERT_QUERY_OBJECT_BLOB,
1075 &pObject->rgBlob[i], dwExpectedContentTypeFlags,
1076 CERT_QUERY_FORMAT_FLAG_BINARY, 0, NULL, NULL, NULL, NULL,
1079 if (!addFunc(store, context, CERT_STORE_ADD_ALWAYS, NULL))
1084 SetLastError(CRYPT_E_NO_MATCH);
1091 *ppvContext = store;
1096 static BOOL WINAPI CRYPT_CreateCert(LPCSTR pszObjectOid,
1097 DWORD dwRetrievalFlags, PCRYPT_BLOB_ARRAY pObject, void **ppvContext)
1099 return CRYPT_CreateContext(pObject, CERT_QUERY_CONTENT_FLAG_CERT,
1100 (AddContextToStore)CertAddCertificateContextToStore, ppvContext);
1103 static BOOL WINAPI CRYPT_CreateCRL(LPCSTR pszObjectOid,
1104 DWORD dwRetrievalFlags, PCRYPT_BLOB_ARRAY pObject, void **ppvContext)
1106 return CRYPT_CreateContext(pObject, CERT_QUERY_CONTENT_FLAG_CRL,
1107 (AddContextToStore)CertAddCRLContextToStore, ppvContext);
1110 static BOOL WINAPI CRYPT_CreateCTL(LPCSTR pszObjectOid,
1111 DWORD dwRetrievalFlags, PCRYPT_BLOB_ARRAY pObject, void **ppvContext)
1113 return CRYPT_CreateContext(pObject, CERT_QUERY_CONTENT_FLAG_CTL,
1114 (AddContextToStore)CertAddCTLContextToStore, ppvContext);
1117 static BOOL WINAPI CRYPT_CreatePKCS7(LPCSTR pszObjectOid,
1118 DWORD dwRetrievalFlags, PCRYPT_BLOB_ARRAY pObject, void **ppvContext)
1122 if (!pObject->cBlob)
1124 SetLastError(ERROR_INVALID_DATA);
1128 else if (pObject->cBlob == 1)
1129 ret = CryptQueryObject(CERT_QUERY_OBJECT_BLOB, &pObject->rgBlob[0],
1130 CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED |
1131 CERT_QUERY_CONTENT_FLAG_PKCS7_UNSIGNED, CERT_QUERY_FORMAT_FLAG_BINARY,
1132 0, NULL, NULL, NULL, ppvContext, NULL, NULL);
1135 FIXME("multiple messages unimplemented\n");
1141 static BOOL WINAPI CRYPT_CreateAny(LPCSTR pszObjectOid,
1142 DWORD dwRetrievalFlags, PCRYPT_BLOB_ARRAY pObject, void **ppvContext)
1146 if (!pObject->cBlob)
1148 SetLastError(ERROR_INVALID_DATA);
1154 HCERTSTORE store = CertOpenStore(CERT_STORE_PROV_COLLECTION, 0, 0,
1155 CERT_STORE_CREATE_NEW_FLAG, NULL);
1159 HCERTSTORE memStore = CertOpenStore(CERT_STORE_PROV_MEMORY, 0, 0,
1160 CERT_STORE_CREATE_NEW_FLAG, NULL);
1164 CertAddStoreToCollection(store, memStore,
1165 CERT_PHYSICAL_STORE_ADD_ENABLE_FLAG, 0);
1166 CertCloseStore(memStore, 0);
1170 CertCloseStore(store, 0);
1179 for (i = 0; i < pObject->cBlob; i++)
1181 DWORD contentType, expectedContentTypes =
1182 CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED |
1183 CERT_QUERY_CONTENT_FLAG_PKCS7_UNSIGNED |
1184 CERT_QUERY_CONTENT_FLAG_CERT |
1185 CERT_QUERY_CONTENT_FLAG_CRL |
1186 CERT_QUERY_CONTENT_FLAG_CTL;
1187 HCERTSTORE contextStore;
1188 const void *context;
1190 if (CryptQueryObject(CERT_QUERY_OBJECT_BLOB,
1191 &pObject->rgBlob[i], expectedContentTypes,
1192 CERT_QUERY_FORMAT_FLAG_BINARY, 0, NULL, &contentType, NULL,
1193 &contextStore, NULL, &context))
1195 switch (contentType)
1197 case CERT_QUERY_CONTENT_CERT:
1198 if (!CertAddCertificateContextToStore(store,
1199 (PCCERT_CONTEXT)context, CERT_STORE_ADD_ALWAYS, NULL))
1202 case CERT_QUERY_CONTENT_CRL:
1203 if (!CertAddCRLContextToStore(store,
1204 (PCCRL_CONTEXT)context, CERT_STORE_ADD_ALWAYS, NULL))
1207 case CERT_QUERY_CONTENT_CTL:
1208 if (!CertAddCTLContextToStore(store,
1209 (PCCTL_CONTEXT)context, CERT_STORE_ADD_ALWAYS, NULL))
1213 CertAddStoreToCollection(store, contextStore, 0, 0);
1222 *ppvContext = store;
1227 typedef BOOL (WINAPI *ContextDllCreateObjectContext)(LPCSTR pszObjectOid,
1228 DWORD dwRetrievalFlags, PCRYPT_BLOB_ARRAY pObject, void **ppvContext);
1230 static BOOL CRYPT_GetCreateFunction(LPCSTR pszObjectOid,
1231 ContextDllCreateObjectContext *pFunc, HCRYPTOIDFUNCADDR *phFunc)
1235 TRACE("(%s, %p, %p)\n", debugstr_a(pszObjectOid), pFunc, phFunc);
1239 if (!HIWORD(pszObjectOid))
1241 switch (LOWORD(pszObjectOid))
1244 *pFunc = CRYPT_CreateBlob;
1246 case LOWORD(CONTEXT_OID_CERTIFICATE):
1247 *pFunc = CRYPT_CreateCert;
1249 case LOWORD(CONTEXT_OID_CRL):
1250 *pFunc = CRYPT_CreateCRL;
1252 case LOWORD(CONTEXT_OID_CTL):
1253 *pFunc = CRYPT_CreateCTL;
1255 case LOWORD(CONTEXT_OID_PKCS7):
1256 *pFunc = CRYPT_CreatePKCS7;
1258 case LOWORD(CONTEXT_OID_CAPI2_ANY):
1259 *pFunc = CRYPT_CreateAny;
1265 static HCRYPTOIDFUNCSET set = NULL;
1268 set = CryptInitOIDFunctionSet(
1269 CONTEXT_OID_CREATE_OBJECT_CONTEXT_FUNC, 0);
1270 ret = CryptGetOIDFunctionAddress(set, X509_ASN_ENCODING, pszObjectOid,
1271 0, (void **)pFunc, phFunc);
1273 TRACE("returning %d\n", ret);
1277 /***********************************************************************
1278 * CryptRetrieveObjectByUrlW (CRYPTNET.@)
1280 BOOL WINAPI CryptRetrieveObjectByUrlW(LPCWSTR pszURL, LPCSTR pszObjectOid,
1281 DWORD dwRetrievalFlags, DWORD dwTimeout, LPVOID *ppvObject,
1282 HCRYPTASYNC hAsyncRetrieve, PCRYPT_CREDENTIALS pCredentials, LPVOID pvVerify,
1283 PCRYPT_RETRIEVE_AUX_INFO pAuxInfo)
1286 SchemeDllRetrieveEncodedObjectW retrieve;
1287 ContextDllCreateObjectContext create;
1288 HCRYPTOIDFUNCADDR hRetrieve = 0, hCreate = 0;
1290 TRACE("(%s, %s, %08x, %d, %p, %p, %p, %p, %p)\n", debugstr_w(pszURL),
1291 debugstr_a(pszObjectOid), dwRetrievalFlags, dwTimeout, ppvObject,
1292 hAsyncRetrieve, pCredentials, pvVerify, pAuxInfo);
1296 SetLastError(ERROR_INVALID_PARAMETER);
1299 ret = CRYPT_GetRetrieveFunction(pszURL, &retrieve, &hRetrieve);
1301 ret = CRYPT_GetCreateFunction(pszObjectOid, &create, &hCreate);
1304 CRYPT_BLOB_ARRAY object = { 0, NULL };
1305 PFN_FREE_ENCODED_OBJECT_FUNC freeObject;
1308 ret = retrieve(pszURL, pszObjectOid, dwRetrievalFlags, dwTimeout,
1309 &object, &freeObject, &freeContext, hAsyncRetrieve, pCredentials,
1313 ret = create(pszObjectOid, dwRetrievalFlags, &object, ppvObject);
1314 freeObject(pszObjectOid, &object, freeContext);
1318 CryptFreeOIDFunctionAddress(hCreate, 0);
1320 CryptFreeOIDFunctionAddress(hRetrieve, 0);
1321 TRACE("returning %d\n", ret);
1325 typedef struct _OLD_CERT_REVOCATION_STATUS {
1330 } OLD_CERT_REVOCATION_STATUS, *POLD_CERT_REVOCATION_STATUS;
1332 /***********************************************************************
1333 * CertDllVerifyRevocation (CRYPTNET.@)
1335 BOOL WINAPI CertDllVerifyRevocation(DWORD dwEncodingType, DWORD dwRevType,
1336 DWORD cContext, PVOID rgpvContext[], DWORD dwFlags,
1337 PCERT_REVOCATION_PARA pRevPara, PCERT_REVOCATION_STATUS pRevStatus)
1342 TRACE("(%08x, %d, %d, %p, %08x, %p, %p)\n", dwEncodingType, dwRevType,
1343 cContext, rgpvContext, dwFlags, pRevPara, pRevStatus);
1345 if (pRevStatus->cbSize != sizeof(OLD_CERT_REVOCATION_STATUS) &&
1346 pRevStatus->cbSize != sizeof(CERT_REVOCATION_STATUS))
1348 SetLastError(E_INVALIDARG);
1351 memset(&pRevStatus->dwIndex, 0, pRevStatus->cbSize - sizeof(DWORD));
1352 if (dwRevType != CERT_CONTEXT_REVOCATION_TYPE)
1354 error = CRYPT_E_NO_REVOCATION_CHECK;
1360 for (i = 0; ret && i < cContext; i++)
1364 ret = CryptGetObjectUrl(URL_OID_CERTIFICATE_CRL_DIST_POINT,
1365 rgpvContext[i], 0, NULL, &cbUrlArray, NULL, NULL, NULL);
1366 if (!ret && GetLastError() == CRYPT_E_NOT_FOUND)
1368 error = CRYPT_E_NO_REVOCATION_CHECK;
1369 pRevStatus->dwIndex = i;
1373 CRYPT_URL_ARRAY *urlArray = CryptMemAlloc(cbUrlArray);
1377 DWORD j, retrievalFlags = 0, startTime, endTime, timeout;
1379 ret = CryptGetObjectUrl(URL_OID_CERTIFICATE_CRL_DIST_POINT,
1380 rgpvContext[i], 0, urlArray, &cbUrlArray, NULL, NULL,
1382 if (dwFlags & CERT_VERIFY_CACHE_ONLY_BASED_REVOCATION)
1383 retrievalFlags |= CRYPT_CACHE_ONLY_RETRIEVAL;
1384 if (dwFlags & CERT_VERIFY_REV_ACCUMULATIVE_TIMEOUT_FLAG &&
1385 pRevPara->cbSize >= offsetof(CERT_REVOCATION_PARA,
1386 dwUrlRetrievalTimeout) + sizeof(DWORD))
1388 startTime = GetTickCount();
1389 endTime = startTime + pRevPara->dwUrlRetrievalTimeout;
1390 timeout = pRevPara->dwUrlRetrievalTimeout;
1393 endTime = timeout = 0;
1394 for (j = 0; ret && j < urlArray->cUrl; j++)
1398 ret = CryptRetrieveObjectByUrlW(urlArray->rgwszUrl[j],
1399 CONTEXT_OID_CRL, retrievalFlags, timeout,
1400 (void **)&crl, NULL, NULL, NULL, NULL);
1403 PCRL_ENTRY entry = NULL;
1405 CertFindCertificateInCRL(
1406 (PCCERT_CONTEXT)rgpvContext[i], crl, 0, NULL,
1410 error = CRYPT_E_REVOKED;
1411 pRevStatus->dwIndex = i;
1416 DWORD time = GetTickCount();
1418 if ((int)(endTime - time) <= 0)
1420 error = ERROR_TIMEOUT;
1421 pRevStatus->dwIndex = i;
1425 timeout = endTime - time;
1427 CertFreeCRLContext(crl);
1430 error = CRYPT_E_REVOCATION_OFFLINE;
1432 CryptMemFree(urlArray);
1436 error = ERROR_OUTOFMEMORY;
1437 pRevStatus->dwIndex = i;
1442 pRevStatus->dwIndex = i;
1448 SetLastError(error);
1449 pRevStatus->dwError = error;
1451 TRACE("returning %d (%08x)\n", ret, error);
projects / wine / blob