search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
winegstreamer: Move the "flip" field to struct wg_parser_stream.
[wine/zf.git] / dlls / crypt32 / pfx.c
blobecb783107501c99f15fde342b8806b63f8491ba6
1 /*
2 * Copyright 2019 Hans Leidekker for CodeWeavers
3 *
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
8 *
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
13 *
14 * You should have received a copy of the GNU Lesser General Public
15 * License along with this library; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
17 */
18
19 #include <stdarg.h>
20
21 #include "windef.h"
22 #include "winbase.h"
23 #include "wincrypt.h"
24 #include "snmp.h"
25 #include "crypt32_private.h"
26
27 #include "wine/debug.h"
28 #include "wine/heap.h"
29
30 WINE_DEFAULT_DEBUG_CHANNEL(crypt);
31
32 static HCRYPTPROV import_key( void *key, DWORD flags )
33 {
34 HCRYPTPROV prov = 0;
35 HCRYPTKEY cryptkey;
36 DWORD size, acquire_flags;
37
38 size = HeapSize( GetProcessHeap(), 0, key );
39 acquire_flags = (flags & CRYPT_MACHINE_KEYSET) | CRYPT_NEWKEYSET;
40 if (!CryptAcquireContextW( &prov, NULL, MS_ENHANCED_PROV_W, PROV_RSA_FULL, acquire_flags ))
41 {
42 if (GetLastError() != NTE_EXISTS) return 0;
43
44 acquire_flags &= ~CRYPT_NEWKEYSET;
45 if (!CryptAcquireContextW( &prov, NULL, MS_ENHANCED_PROV_W, PROV_RSA_FULL, acquire_flags ))
46 {
47 WARN( "CryptAcquireContextW failed %08x\n", GetLastError() );
48 return 0;
49 }
50 }
51
52 if (!CryptImportKey( prov, key, size, 0, flags & CRYPT_EXPORTABLE, &cryptkey ))
53 {
54 WARN( "CryptImportKey failed %08x\n", GetLastError() );
55 CryptReleaseContext( prov, 0 );
56 return 0;
57 }
58 CryptDestroyKey( cryptkey );
59 return prov;
60 }
61
62 static BOOL set_key_context( const void *ctx, HCRYPTPROV prov )
63 {
64 CERT_KEY_CONTEXT key_ctx;
65 key_ctx.cbSize = sizeof(key_ctx);
66 key_ctx.hCryptProv = prov;
67 key_ctx.dwKeySpec = AT_KEYEXCHANGE;
68 return CertSetCertificateContextProperty( ctx, CERT_KEY_CONTEXT_PROP_ID, 0, &key_ctx );
69 }
70
71 static WCHAR *get_provider_property( HCRYPTPROV prov, DWORD prop_id, DWORD *len )
72 {
73 DWORD size = 0;
74 WCHAR *ret;
75 char *str;
76
77 CryptGetProvParam( prov, prop_id, NULL, &size, 0 );
78 if (!size) return NULL;
79 if (!(str = CryptMemAlloc( size ))) return NULL;
80 CryptGetProvParam( prov, prop_id, (BYTE *)str, &size, 0 );
81
82 *len = MultiByteToWideChar( CP_ACP, 0, str, -1, NULL, 0 );
83 if ((ret = CryptMemAlloc( *len * sizeof(WCHAR) ))) MultiByteToWideChar( CP_ACP, 0, str, -1, ret, *len );
84 CryptMemFree( str );
85 return ret;
86 }
87
88 static BOOL set_key_prov_info( const void *ctx, HCRYPTPROV prov )
89 {
90 CRYPT_KEY_PROV_INFO *prov_info;
91 DWORD size, len_container, len_name;
92 WCHAR *ptr, *container, *name;
93 BOOL ret;
94
95 if (!(container = get_provider_property( prov, PP_CONTAINER, &len_container ))) return FALSE;
96 if (!(name = get_provider_property( prov, PP_NAME, &len_name )))
97 {
98 CryptMemFree( container );
99 return FALSE;
100 }
101 if (!(prov_info = CryptMemAlloc( sizeof(*prov_info) + (len_container + len_name) * sizeof(WCHAR) )))
102 {
103 CryptMemFree( container );
104 CryptMemFree( name );
105 return FALSE;
106 }
107
108 ptr = (WCHAR *)(prov_info + 1);
109 prov_info->pwszContainerName = ptr;
110 lstrcpyW( prov_info->pwszContainerName, container );
111
112 ptr += len_container;
113 prov_info->pwszProvName = ptr;
114 lstrcpyW( prov_info->pwszProvName, name );
115
116 size = sizeof(prov_info->dwProvType);
117 CryptGetProvParam( prov, PP_PROVTYPE, (BYTE *)&prov_info->dwProvType, &size, 0 );
118
119 prov_info->dwFlags = 0;
120 prov_info->cProvParam = 0;
121 prov_info->rgProvParam = NULL;
122 size = sizeof(prov_info->dwKeySpec);
123 CryptGetProvParam( prov, PP_KEYSPEC, (BYTE *)&prov_info->dwKeySpec, &size, 0 );
124
125 ret = CertSetCertificateContextProperty( ctx, CERT_KEY_PROV_INFO_PROP_ID, 0, prov_info );
126
127 CryptMemFree( prov_info );
128 CryptMemFree( name );
129 CryptMemFree( container );
130 return ret;
131 }
132
133 HCERTSTORE WINAPI PFXImportCertStore( CRYPT_DATA_BLOB *pfx, const WCHAR *password, DWORD flags )
134 {
135 void *key, **chain;
136 DWORD i, chain_len = 0;
137 HCERTSTORE store = NULL;
138 HCRYPTPROV prov = 0;
139
140 if (!pfx)
141 {
142 SetLastError( ERROR_INVALID_PARAMETER );
143 return NULL;
144 }
145 if (flags & ~(CRYPT_EXPORTABLE|CRYPT_USER_KEYSET|CRYPT_MACHINE_KEYSET|PKCS12_NO_PERSIST_KEY))
146 {
147 FIXME( "flags %08x not supported\n", flags );
148 return NULL;
149 }
150 if (!unix_funcs->import_cert_store)
151 {
152 FIXME( "(%p, %p, %08x)\n", pfx, password, flags );
153 return NULL;
154 }
155 if (!unix_funcs->import_cert_store( pfx, password, flags, &key, &chain, &chain_len )) return NULL;
156
157 prov = import_key( key, flags );
158 heap_free( key );
159 if (!prov) goto error;
160
161 if (!(store = CertOpenStore( CERT_STORE_PROV_MEMORY, 0, 0, 0, NULL )))
162 {
163 WARN( "CertOpenStore failed %08x\n", GetLastError() );
164 goto error;
165 }
166
167 if (chain_len > 1) FIXME( "handle certificate chain\n" );
168 for (i = 0; i < chain_len; i++)
169 {
170 const void *ctx;
171 size_t size = HeapSize( GetProcessHeap(), 0, chain[i] );
172
173 if (!(ctx = CertCreateContext( CERT_STORE_CERTIFICATE_CONTEXT, X509_ASN_ENCODING,
174 chain[i], size, 0, NULL )))
175 {
176 WARN( "CertCreateContext failed %08x\n", GetLastError() );
177 goto error;
178 }
179 if (flags & PKCS12_NO_PERSIST_KEY)
180 {
181 if (!set_key_context( ctx, prov ))
182 {
183 WARN( "failed to set context property %08x\n", GetLastError() );
184 CertFreeCertificateContext( ctx );
185 goto error;
186 }
187 }
188 else if (!set_key_prov_info( ctx, prov ))
189 {
190 WARN( "failed to set provider info property %08x\n", GetLastError() );
191 CertFreeCertificateContext( ctx );
192 goto error;
193 }
194 if (!CertAddCertificateContextToStore( store, ctx, CERT_STORE_ADD_ALWAYS, NULL ))
195 {
196 WARN( "CertAddCertificateContextToStore failed %08x\n", GetLastError() );
197 CertFreeCertificateContext( ctx );
198 goto error;
199 }
200 CertFreeCertificateContext( ctx );
201 }
202 while (chain_len) heap_free( chain[--chain_len] );
203 heap_free( chain );
204 return store;
205
206 error:
207 CryptReleaseContext( prov, 0 );
208 CertCloseStore( store, 0 );
209 while (chain_len) heap_free( chain[--chain_len] );
210 heap_free( chain );
211 return NULL;
212 }
213
214 BOOL WINAPI PFXVerifyPassword( CRYPT_DATA_BLOB *pfx, const WCHAR *password, DWORD flags )
215 {
216 FIXME( "(%p, %p, %08x): stub\n", pfx, password, flags );
217 return FALSE;
218 }
219
220 BOOL WINAPI PFXExportCertStore( HCERTSTORE store, CRYPT_DATA_BLOB *pfx, const WCHAR *password, DWORD flags )
221 {
222 return PFXExportCertStoreEx( store, pfx, password, NULL, flags );
223 }
224
225 BOOL WINAPI PFXExportCertStoreEx( HCERTSTORE store, CRYPT_DATA_BLOB *pfx, const WCHAR *password, void *reserved,
226 DWORD flags )
227 {
228 FIXME( "(%p, %p, %p, %p, %08x): stub\n", store, pfx, password, reserved, flags );
229 return FALSE;
230 }
Zebediah Figura's local tree