softpub.c File Reference
#include <stdarg.h>#include "windef.h"#include "winbase.h"#include "winternl.h"#include "wintrust.h"#include "mssip.h"#include "softpub.h"#include "winnls.h"#include "wine/debug.h"
Include dependency graph for softpub.c:
Go to the source code of this file.
Function Documentation
◆ DriverCleanupPolicy()
| HRESULT WINAPI DriverCleanupPolicy | ( | CRYPT_PROVIDER_DATA * | data | ) |
◆ DriverFinalPolicy()
| HRESULT WINAPI DriverFinalPolicy | ( | CRYPT_PROVIDER_DATA * | data | ) |
◆ DriverInitializePolicy()
| HRESULT WINAPI DriverInitializePolicy | ( | CRYPT_PROVIDER_DATA * | data | ) |
◆ filetime_to_str()
Definition at line 689 of file softpub.c.
690{
692 char dateFmt[80]; /* sufficient for all versions of LOCALE_SSHORTDATE */
693 SYSTEMTIME sysTime;
694
696
701}
BOOL WINAPI FileTimeToSystemTime(IN CONST FILETIME *lpFileTime, OUT LPSYSTEMTIME lpSystemTime)
Definition: time.c:188
INT WINAPI GetLocaleInfoA(LCID lcid, LCTYPE lctype, LPSTR buffer, INT len)
Definition: locale.c:1609
INT WINAPI GetDateFormatA(LCID lcid, DWORD dwFlags, const SYSTEMTIME *lpTime, LPCSTR lpFormat, LPSTR lpDateStr, INT cchOut)
Definition: lcformat.c:944
#define LOCALE_SYSTEM_DEFAULT
Definition: minwinbase.h:255
Referenced by WINTRUST_GetTimeFromSigner().
◆ GenericChainCertificateTrust()
| HRESULT WINAPI GenericChainCertificateTrust | ( | CRYPT_PROVIDER_DATA * | data | ) |
Definition at line 1198 of file softpub.c.
1199{
1201 WTD_GENERIC_CHAIN_POLICY_DATA *policyData =
1202 data->pWintrustData->pPolicyCallbackData;
1203
1205
1208 {
1211 }
1214 else
1215 {
1217 WTD_GENERIC_CHAIN_POLICY_CREATE_INFO createInfo, *pCreateInfo;
1218 CERT_CHAIN_PARA chainPara, *pChainPara;
1219
1220 if (policyData)
1221 {
1222 pCreateInfo = policyData->pSignerChainInfo;
1223 pChainPara = pCreateInfo->pChainPara;
1224 }
1225 else
1226 {
1228 pChainPara = &chainPara;
1229 pCreateInfo = &createInfo;
1230 }
1234 pChainPara);
1235 }
1236
1237end:
1243}
static DWORD WINTRUST_CreateChainForSigner(CRYPT_PROVIDER_DATA *data, DWORD signer, PWTD_GENERIC_CHAIN_POLICY_CREATE_INFO createInfo, PCERT_CHAIN_PARA chainPara)
Definition: softpub.c:1103
static void WINTRUST_CreateChainPolicyCreateInfo(const CRYPT_PROVIDER_DATA *data, PWTD_GENERIC_CHAIN_POLICY_CREATE_INFO info, PCERT_CHAIN_PARA chainPara)
Definition: softpub.c:1077
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
Definition: wincrypt.h:1181
PCERT_CHAIN_PARA pChainPara
Definition: softpub.h:81
Definition: softpub.h:87
PWTD_GENERIC_CHAIN_POLICY_CREATE_INFO pSignerChainInfo
Definition: softpub.h:92
◆ GenericChainFinalProv()
| HRESULT WINAPI GenericChainFinalProv | ( | CRYPT_PROVIDER_DATA * | data | ) |
Definition at line 1359 of file softpub.c.
1360{
1362 WTD_GENERIC_CHAIN_POLICY_DATA *policyData =
1363 data->pWintrustData->pPolicyCallbackData;
1364
1366
1369 data->pWintrustData->dwUIChoice);
1372 else
1373 {
1374 PFN_WTD_GENERIC_CHAIN_POLICY_CALLBACK policyCallback;
1375 void *policyArg;
1377
1378 if (policyData)
1379 {
1380 policyCallback = policyData->pfnPolicyCallback;
1381 policyArg = policyData->pvPolicyArg;
1382 }
1383 else
1384 {
1385 policyCallback = WINTRUST_DefaultPolicy;
1386 policyArg = NULL;
1387 }
1389 {
1391
1392 signers = data->psPfns->pfnAlloc(
1394 if (signers)
1395 {
1397 {
1409 }
1410 }
1411 else
1413 }
1417 data->psPfns->pfnFree(signers);
1418 }
1424}
static HRESULT WINAPI WINTRUST_DefaultPolicy(CRYPT_PROVIDER_DATA *pProvData, DWORD dwStepError, DWORD dwRegPolicySettings, DWORD cSigner, PWTD_GENERIC_CHAIN_POLICY_SIGNER_INFO rgpSigner, void *pvPolicyArg)
Definition: softpub.c:1331
Definition: metahost.idl:58
HRESULT(WINAPI * PFN_WTD_GENERIC_CHAIN_POLICY_CALLBACK)(PCRYPT_PROVIDER_DATA pProvData, DWORD dwStepError, DWORD dwRegPolicySettings, DWORD cSigner, PWTD_GENERIC_CHAIN_POLICY_SIGNER_INFO rgpSigner, void *pvPolicyArg)
Definition: softpub.h:69
struct _WTD_GENERIC_CHAIN_POLICY_SIGNER_INFO WTD_GENERIC_CHAIN_POLICY_SIGNER_INFO
PFN_WTD_GENERIC_CHAIN_POLICY_CALLBACK pfnPolicyCallback
Definition: softpub.h:94
PCMSG_SIGNER_INFO pMsgSignerInfo
Definition: softpub.h:63
PCCERT_CHAIN_CONTEXT pChainContext
Definition: softpub.h:61
struct _WTD_GENERIC_CHAIN_POLICY_SIGNER_INFO * rgpCounterSigner
Definition: softpub.h:66
◆ hash_file_data()
|
static |
Definition at line 212 of file softpub.c.
213{
217
221 {
223 if (!bytes_read) break;
225 size -= bytes_read;
226 }
229}
BOOL WINAPI CryptHashData(HCRYPTHASH hHash, const BYTE *pbData, DWORD dwDataLen, DWORD dwFlags)
Definition: crypt.c:1836
Definition: _hash_fun.h:40
Referenced by SOFTPUB_HashPEFile().
◆ HTTPSCertificateTrust()
| HRESULT WINAPI HTTPSCertificateTrust | ( | CRYPT_PROVIDER_DATA * | data | ) |
◆ HTTPSFinalProv()
| HRESULT WINAPI HTTPSFinalProv | ( | CRYPT_PROVIDER_DATA * | data | ) |
◆ load_secondary_signatures()
|
static |
Definition at line 832 of file softpub.c.
833{
835 CRYPT_ATTRIBUTES *attrs;
838
840 return;
841
843 {
845 return;
846 }
848 goto done;
849
851 {
853 continue;
854
855 if (!(s->rhSecondarySigs = data->psPfns->pfnAlloc(attrs->rgAttr[i].cValue * sizeof(*s->rhSecondarySigs))))
856 {
858 goto done;
859 }
860 s->cSecondarySigs = 0;
862 {
863 if (!(msg = CryptMsgOpenToDecode(X509_ASN_ENCODING | PKCS_7_ASN_ENCODING, 0, 0, 0, NULL, NULL)))
864 {
866 goto done;
867 }
868 if (!CryptMsgUpdate(msg, attrs->rgAttr[i].rgValue[j].pbData, attrs->rgAttr[i].rgValue[j].cbData, TRUE))
869 {
872 goto done;
873 }
875 ++s->cSecondarySigs;
876 }
877 break;
878 }
879done:
880 data->psPfns->pfnFree(attrs);
881}
HCRYPTMSG WINAPI CryptMsgOpenToDecode(DWORD dwMsgEncodingType, DWORD dwFlags, DWORD dwMsgType, HCRYPTPROV_LEGACY hCryptProv, PCERT_INFO pRecipientInfo, PCMSG_STREAM_INFO pStreamInfo)
Definition: msg.c:3552
BOOL WINAPI CryptMsgGetParam(HCRYPTMSG hCryptMsg, DWORD dwParamType, DWORD dwIndex, void *pvData, DWORD *pcbData)
Definition: msg.c:3626
BOOL WINAPI CryptMsgUpdate(HCRYPTMSG hCryptMsg, const BYTE *pbData, DWORD cbData, BOOL fFinal)
Definition: msg.c:3616
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint GLint GLint j
Definition: glfuncs.h:250
Definition: wincrypt.h:610
Definition: wintrust.h:398
Referenced by SoftpubLoadSignature().
◆ SOFTPUB_CreateStoreFromMessage()
|
static |
Definition at line 380 of file softpub.c.
381{
383 HCERTSTORE store;
384
387 if (store)
388 {
391 CertCloseStore(store, 0);
392 }
393 else
397}
HCERTSTORE WINAPI CertOpenStore(LPCSTR lpszStoreProvider, DWORD dwMsgAndCertEncodingType, HCRYPTPROV_LEGACY hCryptProv, DWORD dwFlags, const void *pvPara)
Definition: store.c:815
BOOL WINAPI CertCloseStore(HCERTSTORE hCertStore, DWORD dwFlags)
Definition: store.c:1127
Definition: nsiface.idl:2307
Referenced by SOFTPUB_LoadCatalogMessage(), and SOFTPUB_LoadFileMessage().
◆ SOFTPUB_DecodeInnerContent()
|
static |
Definition at line 399 of file softpub.c.
400{
405
407 &size);
409 {
412 }
414 if (!oid)
415 {
418 }
420 &size);
422 {
425 }
428 {
431 }
434 {
437 }
440 {
443 }
446 {
449 }
452 {
455 }
460
461error:
463 data->psPfns->pfnFree(oid);
466}
BOOL WINAPI CryptDecodeObject(DWORD dwCertEncodingType, LPCSTR lpszStructType, const BYTE *pbEncoded, DWORD cbEncoded, DWORD dwFlags, void *pvStructInfo, DWORD *pcbStructInfo)
Definition: decode.c:6278
Referenced by SOFTPUB_LoadCatalogMessage(), and SOFTPUB_LoadFileMessage().
◆ SOFTPUB_GetFileSubject()
|
static |
Definition at line 109 of file softpub.c.
110{
112
115 !data->pWintrustData->pFile->pgKnownSubject)
116 {
118 data->pWintrustData->pFile->pcwszFilePath,
119 data->pWintrustData->pFile->hFile,
120 &data->pPDSip->gSubject))
121 {
122 LARGE_INTEGER fileSize;
124
125 /* Special case for empty files: the error is expected to be
126 * TRUST_E_SUBJECT_FORM_UNKNOWN, rather than whatever
127 * CryptSIPRetrieveSubjectGuid returns.
128 */
130 && !fileSize.QuadPart)
132 else
133 err = sipError;
134 }
135 }
136 else
140}
BOOL WINAPI CryptSIPRetrieveSubjectGuid(LPCWSTR FileName, HANDLE hFileIn, GUID *pgSubject)
Definition: sip.c:310
Definition: wintrust.h:28
Definition: typedefs.h:103
Referenced by SOFTPUB_LoadFileMessage().
◆ SOFTPUB_GetMessageFromFile()
|
static |
Definition at line 164 of file softpub.c.
166{
171
172 data->pPDSip->psSipSubjectInfo =
176
180 data->pPDSip->psSipSubjectInfo->pwsFileName = filePath;
186
190
194 {
198 {
202 }
203 }
204 else
206
210}
struct SIP_SUBJECTINFO_ SIP_SUBJECTINFO
Definition: mssip.h:50
Referenced by SOFTPUB_LoadCatalogMessage(), and SOFTPUB_LoadFileMessage().
◆ SOFTPUB_GetSIP()
|
static |
Definition at line 145 of file softpub.c.
146{
148
151 {
154 }
155 else
159}
BOOL WINAPI CryptSIPLoad(const GUID *pgSubject, DWORD dwFlags, SIP_DISPATCH_INFO *pSipDispatch)
Definition: sip.c:690
Definition: mssip.h:124
Referenced by SOFTPUB_LoadCatalogMessage(), and SOFTPUB_LoadFileMessage().
◆ SOFTPUB_HashPEFile()
|
static |
Definition at line 234 of file softpub.c.
235{
238 union
239 {
240 IMAGE_NT_HEADERS32 nt32;
241 IMAGE_NT_HEADERS64 nt64;
242 } nt_header;
243 IMAGE_DATA_DIRECTORY secdir;
245 DWORD bytes_read;
247
250
255
260 if (dos_header.e_lfanew + FIELD_OFFSET(IMAGE_NT_HEADERS, OptionalHeader.MajorLinkerVersion) > file_size.QuadPart)
262
268
271
273 {
276
278 security_dir = dos_header.e_lfanew + FIELD_OFFSET(IMAGE_NT_HEADERS32, OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_SECURITY]);
280 }
282 {
285
287 security_dir = dos_header.e_lfanew + FIELD_OFFSET(IMAGE_NT_HEADERS64, OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_SECURITY]);
289 }
290 else
292
299
302 if (!hash_file_data( file, security_dir + sizeof(IMAGE_DATA_DIRECTORY), secdir.VirtualAddress, hash ))
304
306}
static cab_ULONG checksum(const cab_UBYTE *data, cab_UWORD bytes, cab_ULONG csum)
Definition: fdi.c:353
static BOOL hash_file_data(HANDLE file, DWORD start, DWORD end, HCRYPTHASH hash)
Definition: softpub.c:212
Definition: ntddk_ex.h:131
Definition: ntddk_ex.h:99
Definition: ntimage.h:393
Definition: ntddk_ex.h:181
IMAGE_DATA_DIRECTORY DataDirectory[IMAGE_NUMBEROF_DIRECTORY_ENTRIES]
Definition: ntddk_ex.h:178
Referenced by SOFTPUB_VerifyImageHash().
◆ SOFTPUB_LoadCatalogMessage()
|
static |
Definition at line 559 of file softpub.c.
560{
563
565 {
568 }
571 NULL);
575 data->pWintrustData->pCatalog->pcwszCatalogFilePath, catalog,
576 &data->pPDSip->gSubject))
577 {
580 }
585 data->pWintrustData->pCatalog->pcwszCatalogFilePath);
592 /* FIXME: this loads the catalog file, but doesn't validate the member. */
593error:
594 CloseHandle(catalog);
596}
static DWORD SOFTPUB_GetMessageFromFile(CRYPT_PROVIDER_DATA *data, HANDLE file, LPCWSTR filePath)
Definition: softpub.c:164
static DWORD SOFTPUB_DecodeInnerContent(CRYPT_PROVIDER_DATA *data)
Definition: softpub.c:399
static DWORD SOFTPUB_CreateStoreFromMessage(CRYPT_PROVIDER_DATA *data)
Definition: softpub.c:380
Referenced by SoftpubLoadMessage().
◆ SOFTPUB_LoadCertMessage()
|
static |
Definition at line 468 of file softpub.c.
469{
471
475 {
477 {
481
482 /* Add a signer with nothing but the time to verify, so we can
483 * add a cert to it
484 */
487 data->pWintrustData->pCert->psftVerifyAsOf)
489 else
490 {
491 SYSTEMTIME sysTime;
492
493 GetSystemTime(&sysTime);
495 }
498 {
500 data->pWintrustData->pCert->psCertContext);
507 }
510 }
511 }
512 else
515}
BOOL WINAPI SystemTimeToFileTime(IN CONST SYSTEMTIME *lpSystemTime, OUT LPFILETIME lpFileTime)
Definition: time.c:158
Definition: wintrust.h:69
Definition: wintrust.h:231
#define WVT_IS_CBSTRUCT_GT_MEMBEROFFSET(t, s, f)
Definition: wintrust.h:434
Referenced by SoftpubLoadMessage().
◆ SOFTPUB_LoadFileMessage()
|
static |
Definition at line 517 of file softpub.c.
518{
520
522 {
525 }
536 data->pWintrustData->pFile->pcwszFilePath);
546
547error:
549 {
550 /* The caller won't expect the file to be open on failure, so close it.
551 */
555 }
557}
static DWORD SOFTPUB_GetFileSubject(CRYPT_PROVIDER_DATA *data)
Definition: softpub.c:109
static DWORD SOFTPUB_VerifyImageHash(CRYPT_PROVIDER_DATA *data, HANDLE file)
Definition: softpub.c:308
Referenced by SoftpubLoadMessage().
◆ SOFTPUB_OpenFile()
|
static |
Definition at line 80 of file softpub.c.
81{
83
84 /* PSDK implies that all values should be initialized to NULL, so callers
85 * typically have hFile as NULL rather than INVALID_HANDLE_VALUE. Check
86 * for both.
87 */
90 {
91 data->pWintrustData->pFile->hFile =
96 else
98 }
104}
BOOL WINAPI GetFileTime(IN HANDLE hFile, OUT LPFILETIME lpCreationTime OPTIONAL, OUT LPFILETIME lpLastAccessTime OPTIONAL, OUT LPFILETIME lpLastWriteTime OPTIONAL)
Definition: fileinfo.c:880
Referenced by SOFTPUB_LoadFileMessage().
◆ SOFTPUB_VerifyImageHash()
|
static |
Definition at line 308 of file softpub.c.
309{
310 SPC_INDIRECT_DATA_CONTENT *indirect = (SPC_INDIRECT_DATA_CONTENT *)data->pPDSip->psIndirectData;
316 ALG_ID algID;
317
320 {
323 }
324
327
328 if (!prov)
329 {
330 if (!CryptAcquireContextW(&prov, NULL, MS_ENH_RSA_AES_PROV_W, PROV_RSA_AES, CRYPT_VERIFYCONTEXT))
332 release_prov = TRUE;
333 }
334
336 {
338 goto done;
339 }
340
342 {
344 goto done;
345 }
346
349 {
351 goto done;
352 }
353
355 {
357 goto done;
358 }
359
361 {
364 goto done;
365 }
366
370
371done:
374 if (release_prov)
375 CryptReleaseContext(prov, 0);
377}
BOOL WINAPI CryptCreateHash(HCRYPTPROV hProv, ALG_ID Algid, HCRYPTKEY hKey, DWORD dwFlags, HCRYPTHASH *phHash)
Definition: crypt.c:753
BOOL WINAPI CryptGetHashParam(HCRYPTHASH hHash, DWORD dwParam, BYTE *pbData, DWORD *pdwDataLen, DWORD dwFlags)
Definition: crypt.c:1675
BOOL WINAPI CryptReleaseContext(HCRYPTPROV hProv, DWORD dwFlags)
Definition: crypt.c:661
BOOL WINAPI CryptAcquireContextW(HCRYPTPROV *phProv, LPCWSTR pszContainer, LPCWSTR pszProvider, DWORD dwProvType, DWORD dwFlags)
Definition: crypt.c:358
static BOOL SOFTPUB_HashPEFile(HANDLE file, HCRYPTHASH hash)
Definition: softpub.c:234
static const struct @1805 hash_data[]
Definition: wintrust.h:556
Referenced by SOFTPUB_LoadFileMessage().
◆ SoftpubAuthenticode()
| HRESULT WINAPI SoftpubAuthenticode | ( | CRYPT_PROVIDER_DATA * | data | ) |
Definition at line 1245 of file softpub.c.
1246{
1249
1251
1254 data->pWintrustData->dwUIChoice);
1256 {
1259 }
1260 else
1261 {
1263
1266 {
1269
1270 /* First make sure cert isn't disallowed */
1274 {
1276 { 'D','i','s','a','l','l','o','w','e','d',0 };
1279 disallowedW);
1280
1282 {
1286
1287 if (found)
1288 {
1289 /* Disallowed! Can't verify it. */
1292 CertFreeCertificateContext(found);
1293 }
1295 }
1296 }
1298 {
1300
1306 policyPara.dwFlags |=
1311 policyPara.dwFlags |=
1320 }
1321 }
1322 }
1325 policyStatus.dwError;
1329}
BOOL WINAPI CertFreeCertificateContext(PCCERT_CONTEXT pCertContext)
Definition: cert.c:371
PCCERT_CONTEXT WINAPI CertFindCertificateInStore(HCERTSTORE hCertStore, DWORD dwCertEncodingType, DWORD dwFlags, DWORD dwType, const void *pvPara, PCCERT_CONTEXT pPrevCertContext)
Definition: cert.c:1765
BOOL WINAPI CertGetCertificateContextProperty(PCCERT_CONTEXT pCertContext, DWORD dwPropId, void *pvData, DWORD *pcbData)
Definition: cert.c:551
BOOL WINAPI CertVerifyCertificateChainPolicy(LPCSTR szPolicyOID, PCCERT_CHAIN_CONTEXT pChainContext, PCERT_CHAIN_POLICY_PARA pPolicyPara, PCERT_CHAIN_POLICY_STATUS pPolicyStatus)
Definition: chain.c:3716
Definition: wincrypt.h:1060
Definition: wincrypt.h:1066
Definition: wincrypt.h:487
#define CERT_CHAIN_POLICY_TRUST_TESTROOT_FLAG
Definition: wincrypt.h:1110
#define CERT_CHAIN_POLICY_IGNORE_ROOT_REV_UNKNOWN_FLAG
Definition: wincrypt.h:1100
#define CERT_CHAIN_POLICY_IGNORE_CTL_NOT_TIME_VALID_FLAG
Definition: wincrypt.h:1083
#define CERT_CHAIN_POLICY_ALLOW_TESTROOT_FLAG
Definition: wincrypt.h:1111
#define CERT_CHAIN_POLICY_IGNORE_CA_REV_UNKNOWN_FLAG
Definition: wincrypt.h:1099
#define CERT_CHAIN_POLICY_IGNORE_NOT_TIME_NESTED_FLAG
Definition: wincrypt.h:1084
#define CERT_CHAIN_POLICY_IGNORE_END_REV_UNKNOWN_FLAG
Definition: wincrypt.h:1097
#define CERT_CHAIN_POLICY_IGNORE_CTL_SIGNER_REV_UNKNOWN_FLAG
Definition: wincrypt.h:1098
#define CERT_CHAIN_POLICY_IGNORE_NOT_TIME_VALID_FLAG
Definition: wincrypt.h:1082
◆ SoftpubCheckCert()
| BOOL WINAPI SoftpubCheckCert | ( | CRYPT_PROVIDER_DATA * | data, |
| DWORD | idxSigner, | ||
| BOOL | fCounterSignerChain, | ||
| DWORD | idxCounterSigner | ||
| ) |
Definition at line 958 of file softpub.c.
960{
962
964 idxCounterSigner);
965
966 if (fCounterSignerChain)
967 {
970 }
971 else
972 {
973 PCERT_SIMPLE_CHAIN simpleChain =
974 data->pasSigners[idxSigner].pChainContext->rgpChain[0];
976
979 {
980 /* Set confidence */
984 /* Set additional flags */
992 CERT_TRUST_IS_CYCLIC)
994 }
995 }
997}
static DWORD WINTRUST_TrustStatusToConfidence(DWORD errorStatus)
Definition: softpub.c:944
Definition: wincrypt.h:1036
◆ SoftpubCleanup()
| HRESULT WINAPI SoftpubCleanup | ( | CRYPT_PROVIDER_DATA * | data | ) |
Definition at line 1426 of file softpub.c.
1427{
1429
1431 {
1437 }
1439
1443
1445 {
1451 }
1452
1454 {
1459 }
1461
1464 data->pWintrustData->pFile)
1465 {
1469 }
1470
1472}
VOID WINAPI CertFreeCertificateChain(PCCERT_CHAIN_CONTEXT pChainContext)
Definition: chain.c:2960
Definition: wintrust.h:346
◆ SoftpubDefCertInit()
| HRESULT WINAPI SoftpubDefCertInit | ( | CRYPT_PROVIDER_DATA * | data | ) |
◆ SoftpubInitialize()
| HRESULT WINAPI SoftpubInitialize | ( | CRYPT_PROVIDER_DATA * | data | ) |
◆ SoftpubLoadMessage()
| HRESULT WINAPI SoftpubLoadMessage | ( | CRYPT_PROVIDER_DATA * | data | ) |
Definition at line 598 of file softpub.c.
599{
601
603
606
608 {
611 break;
614 break;
617 break;
618 default:
621 }
622
628}
static DWORD SOFTPUB_LoadFileMessage(CRYPT_PROVIDER_DATA *data)
Definition: softpub.c:517
static DWORD SOFTPUB_LoadCatalogMessage(CRYPT_PROVIDER_DATA *data)
Definition: softpub.c:559
static DWORD SOFTPUB_LoadCertMessage(CRYPT_PROVIDER_DATA *data)
Definition: softpub.c:468
◆ SoftpubLoadSignature()
| HRESULT WINAPI SoftpubLoadSignature | ( | CRYPT_PROVIDER_DATA * | data | ) |
Definition at line 883 of file softpub.c.
884{
886
888
891
893 {
894 /* We did not initialize this, probably an unsupported usage. */
896 }
898 {
900 }
901 else
902 {
905 data->pSigState->dwCryptoPolicySupport = WSS_SIGTRUST_SUPPORT | WSS_OBJTRUST_SUPPORT | WSS_CERTTRUST_SUPPORT;
907 {
910 }
912 {
915 }
916 }
917
919 {
921
924 &signerCount, &size))
925 {
927
930 {
933 }
934 }
935 else
937 }
938
942}
static void load_secondary_signatures(CRYPT_PROVIDER_DATA *data, HCRYPTMSG msg)
Definition: softpub.c:832
static DWORD WINTRUST_SaveSigner(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
Definition: softpub.c:748
static DWORD WINTRUST_VerifySigner(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
Definition: softpub.c:797
◆ WINE_DEFAULT_DEBUG_CHANNEL()
| WINE_DEFAULT_DEBUG_CHANNEL | ( | wintrust | ) |
◆ WINTRUST_CopyChain()
|
static |
Definition at line 1044 of file softpub.c.
1045{
1047 PCERT_SIMPLE_CHAIN simpleChain =
1048 data->pasSigners[signerIdx].pChainContext->rgpChain[0];
1049
1050 data->pasSigners[signerIdx].pasCertChain[0].dwConfidence =
1053 data->pasSigners[signerIdx].pasCertChain[0].pChainElement =
1054 simpleChain->rgpElement[0];
1057 {
1060 {
1066 }
1067 else
1069 }
1071 = WINTRUST_TrustStatusToError(
1073 TrustStatus.dwErrorStatus);
1075}
static DWORD WINTRUST_TrustStatusToError(DWORD errorStatus)
Definition: softpub.c:999
Referenced by WINTRUST_CreateChainForSigner().
◆ WINTRUST_CreateChainForSigner()
|
static |
Definition at line 1103 of file softpub.c.
1106{
1109
1111 {
1114 if (store)
1115 {
1117
1120 }
1121 else
1123 }
1125 {
1126 /* Expect the end certificate for each signer to be the only cert in
1127 * the chain:
1128 */
1130 {
1132
1133 /* Create a certificate chain for each signer */
1135 data->pasSigners[signer].pasCertChain[0].pCert,
1136 &data->pasSigners[signer].sftVerifyAsOf, store,
1138 &data->pasSigners[signer].pChainContext);
1140 {
1142 {
1145 }
1146 else
1147 {
1149 {
1151 {
1153 FALSE, 0);
1156 }
1157 else
1158 TRACE(
1159 "no cert check policy, skipping policy check\n");
1160 }
1161 }
1162 }
1163 else
1165 }
1166 CertCloseStore(store, 0);
1167 }
1169}
BOOL WINAPI CertAddStoreToCollection(HCERTSTORE hCollectionStore, HCERTSTORE hSiblingStore, DWORD dwUpdateFlags, DWORD dwPriority)
Definition: collectionstore.c:489
BOOL WINAPI CertGetCertificateChain(HCERTCHAINENGINE hChainEngine, PCCERT_CONTEXT pCertContext, LPFILETIME pTime, HCERTSTORE hAdditionalStore, PCERT_CHAIN_PARA pChainPara, DWORD dwFlags, LPVOID pvReserved, PCCERT_CHAIN_CONTEXT *ppChainContext)
Definition: chain.c:2879
static DWORD WINTRUST_CopyChain(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
Definition: softpub.c:1044
HCERTCHAINENGINE hChainEngine
Definition: softpub.h:80
Referenced by GenericChainCertificateTrust(), and WintrustCertificateTrust().
◆ WINTRUST_CreateChainPolicyCreateInfo()
|
static |
Definition at line 1077 of file softpub.c.
1080{
1084 else
1085 {
1088 }
1091 info->pChainPara = chainPara;
1098 else
1099 info->dwFlags = 0;
1101}
struct _WTD_GENERIC_CHAIN_POLICY_CREATE_INFO WTD_GENERIC_CHAIN_POLICY_CREATE_INFO
Definition: notification.c:70
struct _CERT_CHAIN_PARA CERT_CHAIN_PARA
#define CERT_CHAIN_REVOCATION_CHECK_CHAIN
Definition: wincrypt.h:1170
#define CERT_CHAIN_REVOCATION_CHECK_END_CERT
Definition: wincrypt.h:1169
#define CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT
Definition: wincrypt.h:1171
#define CPD_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT
Definition: wintrust.h:390
Referenced by GenericChainCertificateTrust(), and WintrustCertificateTrust().
◆ WINTRUST_DefaultPolicy()
|
static |
◆ WINTRUST_GetSigner()
|
static |
Definition at line 630 of file softpub.c.
632{
636
640 {
642 if (signerInfo)
643 {
645 signerIdx, signerInfo, &size);
647 {
648 data->psPfns->pfnFree(signerInfo);
649 signerInfo = NULL;
650 }
651 }
652 else
654 }
655 return signerInfo;
656}
Definition: wincrypt.h:880
Referenced by WINTRUST_SaveSigner().
◆ WINTRUST_GetSignerCertInfo()
|
static |
Definition at line 769 of file softpub.c.
771{
775
779 {
781 if (certInfo)
782 {
784 signerIdx, certInfo, &size);
786 {
787 data->psPfns->pfnFree(certInfo);
788 certInfo = NULL;
789 }
790 }
791 else
793 }
794 return certInfo;
795}
Definition: wincrypt.h:249
Referenced by WINTRUST_VerifySigner().
◆ WINTRUST_GetTimeFromCounterSigner()
|
static |
Definition at line 658 of file softpub.c.
660{
663
665 {
667 szOID_RSA_signingTime))
668 {
672
674 {
676 PKCS_7_ASN_ENCODING;
678
679 foundTimeStamp = CryptDecodeObjectEx(encoding,
680 X509_CHOICE_OF_TIME,
683 }
684 }
685 }
686 return foundTimeStamp;
687}
BOOL WINAPI CryptDecodeObjectEx(DWORD dwCertEncodingType, LPCSTR lpszStructType, const BYTE *pbEncoded, DWORD cbEncoded, DWORD dwFlags, PCRYPT_DECODE_PARA pDecodePara, void *pvStructInfo, DWORD *pcbStructInfo)
Definition: decode.c:6286
struct _FILETIME FILETIME
Definition: wincrypt.h:604
Definition: cookie.c:202
Referenced by WINTRUST_GetTimeFromSigner().
◆ WINTRUST_GetTimeFromSigner()
|
static |
Definition at line 703 of file softpub.c.
705{
709
711 {
713 szOID_RSA_counterSign))
714 {
717
719 {
721 PKCS_7_ASN_ENCODING;
722 CMSG_CMS_SIGNER_INFO *counterSignerInfo;
728 {
729 /* FIXME: need to verify countersigner signature too */
730 foundTimeStamp = WINTRUST_GetTimeFromCounterSigner(
731 counterSignerInfo, &time);
732 LocalFree(counterSignerInfo);
733 }
734 }
735 }
736 }
737 if (!foundTimeStamp)
738 {
742 }
743 else
746}
static BOOL WINTRUST_GetTimeFromCounterSigner(const CMSG_CMS_SIGNER_INFO *counterSignerInfo, FILETIME *time)
Definition: softpub.c:658
Definition: wincrypt.h:4126
Definition: mapidefs.h:60
Referenced by WINTRUST_SaveSigner().
◆ WINTRUST_SaveSigner()
|
static |
Definition at line 748 of file softpub.c.
749{
752
753 if (signerInfo)
754 {
756
757 sgnr.psSigner = signerInfo;
761 else
763 }
764 else
767}
static FILETIME WINTRUST_GetTimeFromSigner(const CRYPT_PROVIDER_DATA *data, const CMSG_SIGNER_INFO *signerInfo)
Definition: softpub.c:703
static CMSG_SIGNER_INFO * WINTRUST_GetSigner(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
Definition: softpub.c:630
Referenced by SoftpubLoadSignature().
◆ WINTRUST_TrustStatusToConfidence()
Definition at line 944 of file softpub.c.
945{
946 DWORD confidence = 0;
947
948 confidence = 0;
950 confidence |= CERT_CONFIDENCE_SIG;
952 confidence |= CERT_CONFIDENCE_TIME;
954 confidence |= CERT_CONFIDENCE_TIMENEST;
955 return confidence;
956}
#define CERT_TRUST_IS_NOT_SIGNATURE_VALID
Definition: wincrypt.h:985
Referenced by SoftpubCheckCert(), and WINTRUST_CopyChain().
◆ WINTRUST_TrustStatusToError()
Definition at line 999 of file softpub.c.
1000{
1002
1014 errorStatus & CERT_TRUST_REVOCATION_STATUS_UNKNOWN)
1027 errorStatus & CERT_TRUST_HAS_NOT_SUPPORTED_NAME_CONSTRAINT ||
1028 errorStatus & CERT_TRUST_HAS_NOT_DEFINED_NAME_CONSTRAINT ||
1029 errorStatus & CERT_TRUST_HAS_NOT_PERMITTED_NAME_CONSTRAINT ||
1030 errorStatus & CERT_TRUST_HAS_EXCLUDED_NAME_CONSTRAINT)
1034 else if (errorStatus)
1035 {
1038 }
1039 else
1042}
#define CERT_TRUST_INVALID_POLICY_CONSTRAINTS
Definition: wincrypt.h:991
#define CERT_TRUST_REVOCATION_STATUS_UNKNOWN
Definition: wincrypt.h:988
#define CERT_TRUST_INVALID_BASIC_CONSTRAINTS
Definition: wincrypt.h:992
#define CERT_TRUST_NO_ISSUANCE_CHAIN_POLICY
Definition: wincrypt.h:999
#define CERT_TRUST_HAS_NOT_PERMITTED_NAME_CONSTRAINT
Definition: wincrypt.h:996
#define CERT_TRUST_INVALID_NAME_CONSTRAINTS
Definition: wincrypt.h:993
#define CERT_TRUST_HAS_NOT_DEFINED_NAME_CONSTRAINT
Definition: wincrypt.h:995
#define CERT_TRUST_HAS_EXCLUDED_NAME_CONSTRAINT
Definition: wincrypt.h:997
#define CERT_TRUST_IS_NOT_VALID_FOR_USAGE
Definition: wincrypt.h:986
#define CERT_TRUST_HAS_NOT_SUPPORTED_NAME_CONSTRAINT
Definition: wincrypt.h:994
Referenced by WINTRUST_CopyChain().
◆ WINTRUST_VerifySigner()
|
static |
Definition at line 797 of file softpub.c.
798{
801
802 if (certInfo)
803 {
806
807 if (subject)
808 {
811
813 ¶))
815 else
816 {
818 subject);
820 }
821 CertFreeCertificateContext(subject);
822 }
823 else
825 data->psPfns->pfnFree(certInfo);
826 }
827 else
830}
PCCERT_CONTEXT WINAPI CertGetSubjectCertificateFromStore(HCERTSTORE hCertStore, DWORD dwCertEncodingType, PCERT_INFO pCertId)
Definition: cert.c:1831
BOOL WINAPI CryptMsgControl(HCRYPTMSG hCryptMsg, DWORD dwFlags, DWORD dwCtrlType, const void *pvCtrlPara)
Definition: msg.c:3636
static CERT_INFO * WINTRUST_GetSignerCertInfo(CRYPT_PROVIDER_DATA *data, DWORD signerIdx)
Definition: softpub.c:769
Referenced by SoftpubLoadSignature().
◆ WintrustCertificateTrust()
| HRESULT WINAPI WintrustCertificateTrust | ( | CRYPT_PROVIDER_DATA * | data | ) |
Definition at line 1171 of file softpub.c.
1172{
1174
1176
1179 else
1180 {
1182 WTD_GENERIC_CHAIN_POLICY_CREATE_INFO createInfo;
1183 CERT_CHAIN_PARA chainPara;
1184
1189 &chainPara);
1190 }
1196}
