2 * Copyright 2007 Juan Lang
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
14 * You should have received a copy of the GNU Lesser General Public
15 * License along with this library; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
21 #include <sys/types.h>
22 #ifdef HAVE_SYS_STAT_H
33 #define WIN32_NO_STATUS
39 #include "wine/debug.h"
40 #include "crypt32_private.h"
42 WINE_DEFAULT_DEBUG_CHANNEL(crypt
);
44 #define INITIAL_CERT_BUFFER 1024
53 static inline void reset_buffer(struct DynamicBuffer
*buffer
)
56 if (buffer
->data
) buffer
->data
[0] = 0;
59 static BOOL
add_line_to_buffer(struct DynamicBuffer
*buffer
, LPCSTR line
)
63 if (buffer
->used
+ strlen(line
) + 1 > buffer
->allocated
)
65 if (!buffer
->allocated
)
67 buffer
->data
= CryptMemAlloc(INITIAL_CERT_BUFFER
);
71 buffer
->allocated
= INITIAL_CERT_BUFFER
;
76 DWORD new_size
= max(buffer
->allocated
* 2,
77 buffer
->used
+ strlen(line
) + 1);
79 buffer
->data
= CryptMemRealloc(buffer
->data
, new_size
);
81 buffer
->allocated
= new_size
;
86 strcpy((char *)buffer
->data
+ strlen((char *)buffer
->data
), line
);
87 /* Not strlen + 1, otherwise we'd count the NULL for every line's
88 * addition (but we overwrite the previous NULL character.) Not an
89 * overrun, we allocate strlen + 1 bytes above.
91 buffer
->used
+= strlen(line
);
99 /* Reads any base64-encoded certificates present in fp and adds them to store.
100 * Returns TRUE if any certifcates were successfully imported.
102 static BOOL
import_base64_certs_from_fp(FILE *fp
, HCERTSTORE store
)
105 BOOL in_cert
= FALSE
;
106 struct DynamicBuffer saved_cert
= { 0, 0, NULL
};
110 while (fgets(line
, sizeof(line
), fp
))
112 static const char header
[] = "-----BEGIN CERTIFICATE-----";
113 static const char trailer
[] = "-----END CERTIFICATE-----";
115 if (!strncmp(line
, header
, strlen(header
)))
117 TRACE("begin new certificate\n");
119 reset_buffer(&saved_cert
);
121 else if (!strncmp(line
, trailer
, strlen(trailer
)))
125 TRACE("end of certificate, adding cert\n");
127 if (CryptStringToBinaryA((char *)saved_cert
.data
, saved_cert
.used
,
128 CRYPT_STRING_BASE64
, NULL
, &size
, NULL
, NULL
))
130 LPBYTE buf
= CryptMemAlloc(size
);
134 CryptStringToBinaryA((char *)saved_cert
.data
,
135 saved_cert
.used
, CRYPT_STRING_BASE64
, buf
, &size
, NULL
,
137 if (CertAddEncodedCertificateToStore(store
,
138 X509_ASN_ENCODING
, buf
, size
, CERT_STORE_ADD_NEW
, NULL
))
144 add_line_to_buffer(&saved_cert
, line
);
146 CryptMemFree(saved_cert
.data
);
147 TRACE("Read %d certs\n", num_certs
);
148 return num_certs
> 0;
151 static const char *trust_status_to_str(DWORD status
)
153 static char buf
[1024];
156 if (status
& CERT_TRUST_IS_NOT_TIME_VALID
)
157 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\texpired");
158 if (status
& CERT_TRUST_IS_NOT_TIME_NESTED
)
159 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\tbad time nesting");
160 if (status
& CERT_TRUST_IS_REVOKED
)
161 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\trevoked");
162 if (status
& CERT_TRUST_IS_NOT_SIGNATURE_VALID
)
163 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\tbad signature");
164 if (status
& CERT_TRUST_IS_NOT_VALID_FOR_USAGE
)
165 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\tbad usage");
166 if (status
& CERT_TRUST_IS_UNTRUSTED_ROOT
)
167 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\tuntrusted root");
168 if (status
& CERT_TRUST_REVOCATION_STATUS_UNKNOWN
)
169 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
170 "\n\tunknown revocation status");
171 if (status
& CERT_TRUST_IS_CYCLIC
)
172 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\tcyclic chain");
173 if (status
& CERT_TRUST_INVALID_EXTENSION
)
174 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
175 "\n\tunsupported critical extension");
176 if (status
& CERT_TRUST_INVALID_POLICY_CONSTRAINTS
)
177 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
, "\n\tbad policy");
178 if (status
& CERT_TRUST_INVALID_BASIC_CONSTRAINTS
)
179 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
180 "\n\tbad basic constraints");
181 if (status
& CERT_TRUST_INVALID_NAME_CONSTRAINTS
)
182 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
183 "\n\tbad name constraints");
184 if (status
& CERT_TRUST_HAS_NOT_SUPPORTED_NAME_CONSTRAINT
)
185 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
186 "\n\tunsuported name constraint");
187 if (status
& CERT_TRUST_HAS_NOT_DEFINED_NAME_CONSTRAINT
)
188 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
189 "\n\tundefined name constraint");
190 if (status
& CERT_TRUST_HAS_NOT_PERMITTED_NAME_CONSTRAINT
)
191 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
192 "\n\tdisallowed name constraint");
193 if (status
& CERT_TRUST_HAS_EXCLUDED_NAME_CONSTRAINT
)
194 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
195 "\n\texcluded name constraint");
196 if (status
& CERT_TRUST_IS_OFFLINE_REVOCATION
)
197 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
198 "\n\trevocation server offline");
199 if (status
& CERT_TRUST_NO_ISSUANCE_CHAIN_POLICY
)
200 pos
+= snprintf(buf
+ pos
, sizeof(buf
) - pos
,
201 "\n\tno issuance policy");
205 static const char *get_cert_common_name(PCCERT_CONTEXT cert
)
207 static char buf
[1024];
208 const char *name
= NULL
;
209 CERT_NAME_INFO
*nameInfo
;
211 BOOL ret
= CryptDecodeObjectEx(X509_ASN_ENCODING
, X509_NAME
,
212 cert
->pCertInfo
->Subject
.pbData
, cert
->pCertInfo
->Subject
.cbData
,
213 CRYPT_DECODE_NOCOPY_FLAG
| CRYPT_DECODE_ALLOC_FLAG
, NULL
, &nameInfo
,
218 PCERT_RDN_ATTR commonName
= CertFindRDNAttr(szOID_COMMON_NAME
,
223 CertRDNValueToStrA(commonName
->dwValueType
,
224 &commonName
->Value
, buf
, sizeof(buf
));
232 static void check_and_store_certs(HCERTSTORE from
, HCERTSTORE to
)
234 PCCERT_CONTEXT cert
= NULL
;
235 DWORD root_count
= 0;
240 cert
= CertEnumCertificatesInStore(from
, cert
);
243 CERT_CHAIN_ENGINE_CONFIG chainEngineConfig
=
244 { sizeof(chainEngineConfig
), 0 };
245 HCERTCHAINENGINE engine
= CRYPT_CreateChainEngine(to
,
250 CERT_CHAIN_PARA chainPara
= { sizeof(chainPara
), { 0 } };
251 PCCERT_CHAIN_CONTEXT chain
;
252 BOOL ret
= CertGetCertificateChain(engine
, cert
, NULL
, from
,
253 &chainPara
, 0, NULL
, &chain
);
256 TRACE("rejecting %s: %s\n", get_cert_common_name(cert
),
257 "chain creation failed");
260 /* The only allowed error is CERT_TRUST_IS_UNTRUSTED_ROOT */
261 if (chain
->TrustStatus
.dwErrorStatus
&
262 ~CERT_TRUST_IS_UNTRUSTED_ROOT
)
263 TRACE("rejecting %s: %s\n", get_cert_common_name(cert
),
264 trust_status_to_str(chain
->TrustStatus
.dwErrorStatus
&
265 ~CERT_TRUST_IS_UNTRUSTED_ROOT
));
270 for (i
= 0; i
< chain
->cChain
; i
++)
271 for (j
= 0; j
< chain
->rgpChain
[i
]->cElement
; j
++)
272 if (CertAddCertificateContextToStore(to
,
273 chain
->rgpChain
[i
]->rgpElement
[j
]->pCertContext
,
274 CERT_STORE_ADD_NEW
, NULL
))
278 CertFreeCertificateChainEngine(engine
);
282 TRACE("Added %d root certificates\n", root_count
);
285 /* Reads the file fd, and imports any certificates in it into store.
286 * Returns TRUE if any certificates were successfully imported.
288 static BOOL
import_certs_from_file(int fd
, HCERTSTORE store
)
295 fp
= fdopen(fd
, "r");
298 ret
= import_base64_certs_from_fp(fp
, store
);
304 static BOOL
import_certs_from_path(LPCSTR path
, HCERTSTORE store
,
307 /* Opens path, which must be a directory, and imports certificates from every
308 * file in the directory into store.
309 * Returns TRUE if any certificates were successfully imported.
311 static BOOL
import_certs_from_dir(LPCSTR path
, HCERTSTORE store
)
316 TRACE("(%s, %p)\n", debugstr_a(path
), store
);
321 size_t bufsize
= strlen(path
) + 1 + PATH_MAX
+ 1;
322 char *filebuf
= CryptMemAlloc(bufsize
);
326 struct dirent
*entry
;
327 while ((entry
= readdir(dir
)))
329 if (strcmp(entry
->d_name
, ".") && strcmp(entry
->d_name
, ".."))
331 snprintf(filebuf
, bufsize
, "%s/%s", path
, entry
->d_name
);
332 if (import_certs_from_path(filebuf
, store
, FALSE
) && !ret
)
337 CryptMemFree(filebuf
);
343 /* Opens path, which may be a file or a directory, and imports any certificates
344 * it finds into store.
345 * Returns TRUE if any certificates were successfully imported.
347 static BOOL
import_certs_from_path(LPCSTR path
, HCERTSTORE store
,
353 TRACE("(%s, %p, %d)\n", debugstr_a(path
), store
, allow_dir
);
355 fd
= open(path
, O_RDONLY
);
360 if (fstat(fd
, &st
) == 0)
362 if (S_ISREG(st
.st_mode
))
363 ret
= import_certs_from_file(fd
, store
);
364 else if (S_ISDIR(st
.st_mode
))
367 ret
= import_certs_from_dir(path
, store
);
369 WARN("%s is a directory and directories are disallowed\n",
373 ERR("%s: invalid file type\n", path
);
380 static BOOL WINAPI
CRYPT_RootWriteCert(HCERTSTORE hCertStore
,
381 PCCERT_CONTEXT cert
, DWORD dwFlags
)
383 /* The root store can't have certs added */
387 static BOOL WINAPI
CRYPT_RootDeleteCert(HCERTSTORE hCertStore
,
388 PCCERT_CONTEXT cert
, DWORD dwFlags
)
390 /* The root store can't have certs deleted */
394 static BOOL WINAPI
CRYPT_RootWriteCRL(HCERTSTORE hCertStore
,
395 PCCRL_CONTEXT crl
, DWORD dwFlags
)
397 /* The root store can have CRLs added. At worst, a malicious application
398 * can DoS itself, as the changes aren't persisted in any way.
403 static BOOL WINAPI
CRYPT_RootDeleteCRL(HCERTSTORE hCertStore
,
404 PCCRL_CONTEXT crl
, DWORD dwFlags
)
406 /* The root store can't have CRLs deleted */
410 static void *rootProvFuncs
[] = {
411 NULL
, /* CERT_STORE_PROV_CLOSE_FUNC */
412 NULL
, /* CERT_STORE_PROV_READ_CERT_FUNC */
414 CRYPT_RootDeleteCert
,
415 NULL
, /* CERT_STORE_PROV_SET_CERT_PROPERTY_FUNC */
416 NULL
, /* CERT_STORE_PROV_READ_CRL_FUNC */
419 NULL
, /* CERT_STORE_PROV_SET_CRL_PROPERTY_FUNC */
420 NULL
, /* CERT_STORE_PROV_READ_CTL_FUNC */
421 NULL
, /* CERT_STORE_PROV_WRITE_CTL_FUNC */
422 NULL
, /* CERT_STORE_PROV_DELETE_CTL_FUNC */
423 NULL
, /* CERT_STORE_PROV_SET_CTL_PROPERTY_FUNC */
424 NULL
, /* CERT_STORE_PROV_CONTROL_FUNC */
427 static const char * const CRYPT_knownLocations
[] = {
428 "/etc/ssl/certs/ca-certificates.crt",
430 "/etc/pki/tls/certs/ca-bundle.crt",
433 /* Reads certificates from the list of known locations. Stops when any
434 * location contains any certificates, to prevent spending unnecessary time
435 * adding redundant certificates, e.g. when both a certificate bundle and
436 * individual certificates exist in the same directory.
438 static PWINECRYPT_CERTSTORE
CRYPT_RootOpenStoreFromKnownLocations(void)
440 HCERTSTORE root
= NULL
;
441 HCERTSTORE from
= CertOpenStore(CERT_STORE_PROV_MEMORY
,
442 X509_ASN_ENCODING
, 0, CERT_STORE_CREATE_NEW_FLAG
, NULL
);
443 HCERTSTORE to
= CertOpenStore(CERT_STORE_PROV_MEMORY
,
444 X509_ASN_ENCODING
, 0, CERT_STORE_CREATE_NEW_FLAG
, NULL
);
448 CERT_STORE_PROV_INFO provInfo
= {
449 sizeof(CERT_STORE_PROV_INFO
),
450 sizeof(rootProvFuncs
) / sizeof(rootProvFuncs
[0]),
460 i
< sizeof(CRYPT_knownLocations
) / sizeof(CRYPT_knownLocations
[0]);
462 ret
= import_certs_from_path(CRYPT_knownLocations
[i
], from
, TRUE
);
463 check_and_store_certs(from
, to
);
464 root
= CRYPT_ProvCreateStore(0, to
, &provInfo
);
466 CertCloseStore(from
, 0);
467 TRACE("returning %p\n", root
);
471 static PWINECRYPT_CERTSTORE CRYPT_rootStore
;
473 PWINECRYPT_CERTSTORE
CRYPT_RootOpenStore(HCRYPTPROV hCryptProv
, DWORD dwFlags
)
475 TRACE("(%ld, %08x)\n", hCryptProv
, dwFlags
);
477 if (dwFlags
& CERT_STORE_DELETE_FLAG
)
479 WARN("root store can't be deleted\n");
480 SetLastError(ERROR_ACCESS_DENIED
);
483 switch (dwFlags
& CERT_SYSTEM_STORE_LOCATION_MASK
)
485 case CERT_SYSTEM_STORE_LOCAL_MACHINE
:
486 case CERT_SYSTEM_STORE_CURRENT_USER
:
489 TRACE("location %08x unsupported\n",
490 dwFlags
& CERT_SYSTEM_STORE_LOCATION_MASK
);
491 SetLastError(E_INVALIDARG
);
494 if (!CRYPT_rootStore
)
496 HCERTSTORE root
= CRYPT_RootOpenStoreFromKnownLocations();
498 InterlockedCompareExchangePointer((PVOID
*)&CRYPT_rootStore
, root
,
500 if (CRYPT_rootStore
!= root
)
501 CertCloseStore(root
, 0);
503 CertDuplicateStore(CRYPT_rootStore
);
504 return CRYPT_rootStore
;