windows-nt/Source/XPSP1/NT/admin/snapin/certmgr/cookie.cpp
2020-09-26 16:20:57 +08:00

1475 lines
38 KiB
C++

//+---------------------------------------------------------------------------
//
// Microsoft Windows
// Copyright (C) Microsoft Corporation, 1997-2001.
//
// File: Cookie.cpp
//
// Contents: Implementation of CCertMgrCookie and related classes
//
//----------------------------------------------------------------------------
#include "stdafx.h"
#include <gpedit.h>
#include "cookie.h"
#include "storegpe.h"
#pragma warning(push, 3)
#include <atlimpl.cpp>
#pragma warning(pop)
DECLARE_INFOLEVEL(CertificateManagerSnapin)
USE_HANDLE_MACROS("CERTMGR(cookie.cpp)")
#ifdef _DEBUG
#ifndef ALPHA
#define new DEBUG_NEW
#endif
#undef THIS_FILE
static char THIS_FILE[] = __FILE__;
#endif
#include "stdcooki.cpp"
#include "stdutils.cpp"
#include "certifct.h"
//
// CCertMgrCookie
//
// returns <0, 0 or >0
CCertMgrCookie::CCertMgrCookie (CertificateManagerObjectType objecttype,
LPCWSTR lpcszMachineName,
LPCWSTR objectName)
: CStoresMachineName (lpcszMachineName),
m_objecttype (objecttype),
m_objectName (objectName),
m_resultDataID (0),
m_nOpenPageCount (0)
{
ASSERT (IsValidObjectType (m_objecttype));
if ( m_objectName.IsEmpty () )
{
AFX_MANAGE_STATE (AfxGetStaticModuleState ());
VERIFY (m_objectName.LoadString (IDS_CERTIFICATE_MANAGER));
}
}
CCertMgrCookie::~CCertMgrCookie ()
{
}
HRESULT CCertMgrCookie::CompareSimilarCookies( CCookie* pOtherCookie, int* pnResult )
{
ASSERT (pOtherCookie);
CCertMgrCookie* pcookie = reinterpret_cast <CCertMgrCookie*>(pOtherCookie);
ASSERT (pcookie);
if ( pcookie && m_objecttype != pcookie->m_objecttype )
{
*pnResult = ((int)m_objecttype) - ((int)pcookie->m_objecttype); // arbitrary ordering
return S_OK;
}
return E_UNEXPECTED;
}
CCookie* CCertMgrCookie::QueryBaseCookie(int i)
{
ASSERT(!i);
return (CCookie*)this;
}
int CCertMgrCookie::QueryNumCookies()
{
return 1;
}
LPCWSTR CCertMgrCookie::GetObjectName()
{
return m_objectName;
}
HRESULT CCertMgrCookie::Commit()
{
return S_OK;
}
UINT CCertMgrCookie::IncrementOpenPageCount ()
{
m_nOpenPageCount++;
return m_nOpenPageCount;
}
UINT CCertMgrCookie::DecrementOpenPageCount ()
{
ASSERT (0 != m_nOpenPageCount);
if ( 0 != m_nOpenPageCount )
m_nOpenPageCount--;
return m_nOpenPageCount;
}
bool CCertMgrCookie::HasOpenPropertyPages () const
{
return (0 != m_nOpenPageCount) ? true : false;
}
///////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////
CCertStore::CCertStore (
CertificateManagerObjectType objecttype,
LPCSTR pszStoreProv,
DWORD dwFlags,
LPCWSTR lpcszMachineName,
LPCWSTR objectName,
const CString & pcszLogStoreName,
const CString & pcszPhysStoreName,
const SPECIAL_STORE_TYPE storeType,
const DWORD dwLocation,
IConsole* pConsole)
: CCertMgrCookie (objecttype,
lpcszMachineName,
objectName),
m_hCertStore (0),
m_dwFlags (dwFlags),
m_storeProvider (pszStoreProv),
m_pcszStoreName (pcszLogStoreName),
m_storeType (storeType),
m_bReadOnly (false),
m_bUnableToOpenMsgDisplayed (false),
m_dwLocation (dwLocation),
m_pConsole (pConsole),
m_bDirty (false),
m_fReadOnlyFlagChecked (false),
m_nCertCount (0),
m_fCertCountValid (false),
m_nLockCnt (0) // test
{
_TRACE (1, L"Entering CCertStore::CCertStore LS: %s PS: %s\n",
(LPCWSTR) pcszLogStoreName,
(LPCWSTR) pcszPhysStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
if ( CERT_STORE_PROV_COLLECTION != pszStoreProv )
{
ASSERT (!pcszLogStoreName.IsEmpty ());
if ( !pcszPhysStoreName.IsEmpty () )
m_pcszStoreName += _T("\\") + pcszPhysStoreName;
}
ASSERT (m_pConsole);
if ( m_pConsole )
m_pConsole->AddRef ();
_TRACE (-1, L"Leaving CCertStore::CCertStore - %s\n",
(LPCWSTR) m_pcszStoreName);
}
CCertStore::~CCertStore ()
{
_TRACE (1, L"Entering CCertStore::~CCertStore - %s\n",
(LPCWSTR) m_pcszStoreName);
Close (true); // force close
if ( m_pConsole )
m_pConsole->Release ();
_TRACE (-1, L"Leaving CCertStore::~CCertStore - %s\n",
(LPCWSTR) m_pcszStoreName);
}
HCERTSTORE CCertStore::GetStoreHandle (BOOL bSilent /* = FALSE*/, HRESULT* phr /* = 0*/)
{
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
DWORD dwErr = 0;
if ( !m_hCertStore )
{
void* pvPara = 0;
if ( CERT_STORE_PROV_COLLECTION != m_storeProvider )
pvPara = (void*)(LPCWSTR) m_pcszStoreName;
m_dwFlags |= CERT_STORE_SET_LOCALIZED_NAME_FLAG;
_TRACE (0, L"Opening %s store\n", (LPCWSTR) m_pcszStoreName);
m_hCertStore = ::CertOpenStore (m_storeProvider,
X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
NULL,
m_dwFlags | CERT_STORE_MAXIMUM_ALLOWED_FLAG,
pvPara);
if ( !m_hCertStore )
{
dwErr = GetLastError ();
if ( phr )
*phr = HRESULT_FROM_WIN32 (dwErr);
_TRACE (0, L"Open of %s store failed. 0x%x\n", (LPCWSTR) m_pcszStoreName,
dwErr);
_TRACE (0, L"Opening %s store (read-only)\n", (LPCWSTR) m_pcszStoreName);
m_dwFlags |= CERT_STORE_READONLY_FLAG;
m_hCertStore = ::CertOpenStore (m_storeProvider,
X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
NULL,
m_dwFlags,
pvPara);
if ( m_hCertStore )
m_bReadOnly = true;
else
{
dwErr = GetLastError ();
if ( phr )
*phr = HRESULT_FROM_WIN32 (dwErr);
_TRACE (0, L"CertOpenStore (%s) failed: 0x%x\n",
(PCWSTR) m_pcszStoreName, dwErr);
}
}
if ( !m_hCertStore )
{
dwErr = GetLastError ();
if ( phr )
*phr = HRESULT_FROM_WIN32 (dwErr);
_TRACE (0, L"Open of %s store (read-only) failed. 0x%x\n",
(LPCWSTR) m_pcszStoreName, dwErr);
if ( CERT_STORE_PROV_FILENAME_W == m_storeProvider)
{
_TRACE (0, L"Open %s store (file-based).\n", (LPCWSTR) m_pcszStoreName);
DWORD cbData = 0;
BYTE* pbData = NULL;
//get the BLOB from the file
HRESULT hr = RetrieveBLOBFromFile ((LPCWSTR) m_pcszStoreName,
&cbData, &pbData);
if ( SUCCEEDED (hr) )
{
//open a generic memory store
m_hCertStore = ::CertOpenStore (CERT_STORE_PROV_MEMORY,
0, NULL,
CERT_STORE_SET_LOCALIZED_NAME_FLAG | CERT_STORE_MAXIMUM_ALLOWED_FLAG,
NULL);
if ( m_hCertStore )
{
if ( !CertAddSerializedElementToStore (
m_hCertStore,
pbData,
cbData,
CERT_STORE_ADD_ALWAYS,
0,
CERT_STORE_ALL_CONTEXT_FLAG,
NULL,
NULL) )
{
// CertAddSerializedElementToStore failed. This means this is probably a
// base64 certificate or a store containing a base64 certificate. Open it
// up with CryptQueryObject.
_TRACE (0, L"CCertStore::GetStoreHandle () - File input is not a serialized element.\n");
DWORD dwMsgAndCertEncodingType = 0;
DWORD dwContentType = 0;
DWORD dwFormatType = 0;
PCERT_CONTEXT pCertContext = 0;
CERT_BLOB certBlob;
HCERTSTORE hCertStore = 0;
::ZeroMemory (&certBlob, sizeof (CERT_BLOB));
certBlob.cbData = cbData;
certBlob.pbData = pbData;
BOOL bResult = ::CryptQueryObject (
CERT_QUERY_OBJECT_BLOB, // CERT_QUERY_OBJECT_FILE,
(void *) &certBlob, //(LPCWSTR) m_pcszStoreName,
CERT_QUERY_CONTENT_FLAG_SERIALIZED_CERT |
CERT_QUERY_CONTENT_FLAG_CERT |
CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED |
CERT_QUERY_CONTENT_FLAG_PKCS7_UNSIGNED |
CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED_EMBED,
CERT_QUERY_FORMAT_FLAG_ALL,
0,
&dwMsgAndCertEncodingType,
&dwContentType,
&dwFormatType,
&hCertStore,
NULL,
(const void **) &pCertContext);
if ( bResult && pCertContext )
{
// The file contains a certificate context
hr = AddCertificateContext (pCertContext, 0, false);
}
else if ( bResult && hCertStore )
{
// The file contains a certificate store, so close the temporary memory store we created
// and assign the returned store handle to the global handle.
::CertCloseStore (m_hCertStore, CERT_CLOSE_STORE_FORCE_FLAG);
m_hCertStore = hCertStore;
}
else
{
CString caption;
CString message;
int iRetVal = 0;
VERIFY (caption.LoadString (IDS_CERTIFICATE_MANAGER));
VERIFY (message.LoadString (IDS_UNKNOWN_CERT_FILE_TYPE));
if ( m_pConsole )
m_pConsole->MessageBox (message, caption, MB_ICONWARNING | MB_OK, &iRetVal);
}
}
}
else
{
dwErr = GetLastError ();
_TRACE (0, L"CertOpenStore (%s) failed: 0x%x\n",
(PCWSTR) m_pcszStoreName, dwErr);
}
}
else
{
_TRACE (0, L"CCertStore::GetStoreHandle () - Unable to retrieve BLOB from file: %x.\n", hr);
}
if ( phr )
*phr = hr;
}
}
else
{
_TRACE (0, L"Open of %s store succeeded.\n", (LPCWSTR) m_pcszStoreName);
}
}
if ( !m_hCertStore && !m_bUnableToOpenMsgDisplayed && !bSilent &&
(USERDS_STORE != GetStoreType ()) )
{
m_bUnableToOpenMsgDisplayed = true;
CString caption;
CString text;
int iRetVal = 0;
VERIFY (caption.LoadString (IDS_CERTIFICATE_MANAGER));
text.FormatMessage (IDS_UNABLE_TO_OPEN_STORE, GetStoreName (),
GetSystemMessage (dwErr));
if ( m_pConsole )
m_pConsole->MessageBox ( text, caption, MB_OK, &iRetVal);
}
return m_hCertStore;
}
//--------------------------------------------------------------------------------
//
//get the bytes from the file name
//
// Note; Memory is allocated via malloc. S_OK is returned
// via succees
//
//
//
//---------------------------------------------------------------------------------
HRESULT CCertStore::RetrieveBLOBFromFile (LPCWSTR pwszFileName, DWORD *pcb, BYTE **ppb)
{
_TRACE (1, L"Entering CCertStore::RetrieveBLOBFromFile - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
HRESULT hr = S_OK;
HANDLE hFile = NULL;
DWORD dwBytesRead = 0;
if(!pcb || !ppb || !pwszFileName)
return E_INVALIDARG;
*ppb=NULL;
*pcb=0;
hFile = ::CreateFile (pwszFileName,
GENERIC_READ,
FILE_SHARE_READ,
NULL, // lpsa
OPEN_EXISTING,
FILE_ATTRIBUTE_NORMAL,
NULL);
if (INVALID_HANDLE_VALUE != hFile )
{
*pcb = GetFileSize(hFile, NULL);
if ( 0xffffffff != *pcb )
{
*ppb = (BYTE *)malloc(*pcb);
if ( *ppb )
{
// Read the pkcs7 message
if ( !ReadFile(hFile,
*ppb,
*pcb,
&dwBytesRead,
NULL) ||
dwBytesRead != *pcb )
{
free(*ppb);
*ppb=NULL;
hr = HRESULT_FROM_WIN32(GetLastError());;
}
}
else
hr = E_OUTOFMEMORY;
}
else
hr = HRESULT_FROM_WIN32(GetLastError());
//close the file handle
CloseHandle(hFile);
}
else
hr = HRESULT_FROM_WIN32(GetLastError());
_TRACE (-1, L"Leaving CCertStore::RetrieveBLOBFromFile - %s\n",
(LPCWSTR) m_pcszStoreName);
return S_OK;
}
bool CCertStore::IsReadOnly ()
{
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
// GetCertStore () sets the read-only checked flag
// Optimization: If the flag is true, it's already been set.
if ( !m_fReadOnlyFlagChecked )
{
GetStoreHandle ();
Close ();
m_fReadOnlyFlagChecked = true;
}
return m_bReadOnly;
}
HRESULT CCertStore::Commit()
{
_TRACE (1, L"Entering CCertStore::Commit - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
HRESULT hr = CCertMgrCookie::Commit ();
if ( m_hCertStore && !m_bReadOnly && m_bDirty )
{
BOOL bResult = ::CertControlStore (m_hCertStore, 0,
CERT_STORE_CTRL_COMMIT, NULL);
if ( bResult )
m_bDirty = false;
else
{
DWORD dwErr = GetLastError ();
hr = HRESULT_FROM_WIN32 (dwErr);
if ( E_ACCESSDENIED == hr )
{
m_bReadOnly = true;
m_dwFlags |= CERT_STORE_READONLY_FLAG;
}
else
{
LPVOID lpMsgBuf = 0;
FormatMessage (FORMAT_MESSAGE_ALLOCATE_BUFFER | FORMAT_MESSAGE_FROM_SYSTEM,
NULL,
dwErr,
MAKELANGID (LANG_NEUTRAL, SUBLANG_DEFAULT), // Default language
(LPWSTR) &lpMsgBuf, 0, NULL);
// Display the string.
CString caption;
CString message;
int iRetVal = 0;
VERIFY (caption.LoadString (IDS_CERTIFICATE_MANAGER));
message.FormatMessage (IDS_CANT_SAVE_STORE, GetStoreName (), (LPWSTR) lpMsgBuf);
if ( m_pConsole )
m_pConsole->MessageBox ((LPCWSTR) message, (LPCWSTR) caption,
MB_OK, &iRetVal);
// Free the buffer.
LocalFree (lpMsgBuf);
}
}
}
_TRACE (-1, L"Leaving CCertStore::Commit - %s\n",
(LPCWSTR) m_pcszStoreName);
return hr;
}
bool CCertStore::ContainsCertificates()
{
_TRACE (1, L"Entering CCertStore::ContainsCertificates - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
bool bResult = false;
bResult = (GetCertCount () > 0);
_TRACE (-1, L"Leaving CCertStore::ContainsCertificates - %s\n",
(LPCWSTR) m_pcszStoreName);
return bResult;
}
bool CCertStore::ContainsCRLs()
{
_TRACE (1, L"Entering CCertStore::ContainsCRLs - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
bool bResult = false;
PCCRL_CONTEXT pCRLContext = EnumCRLs (0);
if ( !pCRLContext )
bResult = false;
else
{
::CertFreeCRLContext (pCRLContext);
bResult = true;
}
Close ();
_TRACE (-1, L"Leaving CCertStore::ContainsCRLs - %s\n",
(LPCWSTR) m_pcszStoreName);
return bResult;
}
bool CCertStore::ContainsCTLs()
{
_TRACE (1, L"Entering CCertStore::ContainsCTLs - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
bool bResult = false;
PCCTL_CONTEXT pCTLContext = EnumCTLs (0);
if ( !pCTLContext )
bResult = false;
else
{
::CertFreeCTLContext (pCTLContext);
bResult = true;
}
Close ();
_TRACE (-1, L"Leaving CCertStore::ContainsCTLs - %s\n",
(LPCWSTR) m_pcszStoreName);
return bResult;
}
LPCWSTR CCertStore::GetLocalizedName()
{
// _TRACE (1, L"Entering CCertStore::GetLocalizedName - %s\n",
// (LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
if ( m_localizedName.IsEmpty () )
{
m_localizedName = ::CryptFindLocalizedName (GetObjectName ());
if ( m_localizedName.IsEmpty () )
{
DWORD cbLocalizedName;
HCERTSTORE hStore = 0;
bool bStoreOpenedByThisMethod = false;
// NTRAID# 366562 Safer: Inconsistent drag-and-drop behavior for certificate rules
if ( m_hCertStore )
hStore = m_hCertStore;
else
{
hStore = GetStoreHandle ();
bStoreOpenedByThisMethod = true;
}
if ( hStore )
{
if ( CertGetStoreProperty(
hStore,
CERT_STORE_LOCALIZED_NAME_PROP_ID,
NULL,
&cbLocalizedName))
{
LPWSTR pwszLocalizedName = new WCHAR[cbLocalizedName/sizeof (WCHAR)];
if ( pwszLocalizedName )
{
::ZeroMemory (pwszLocalizedName, cbLocalizedName);
if ( CertGetStoreProperty(
hStore,
CERT_STORE_LOCALIZED_NAME_PROP_ID,
pwszLocalizedName,
&cbLocalizedName
))
{
m_localizedName = pwszLocalizedName;
if ( m_localizedName == m_pcszStoreName )
m_localizedName = GetObjectName ();
}
delete [] pwszLocalizedName;
}
}
if ( bStoreOpenedByThisMethod )
Close ();
}
}
// If it's still empty, get the object name
if ( m_localizedName.IsEmpty () )
m_localizedName = GetObjectName ();
}
// _TRACE (-1, L"Leaving CCertStore::GetLocalizedName - %s\n",
// (LPCWSTR) m_pcszStoreName);
return (LPCWSTR) m_localizedName;
}
CString CCertStore::GetStoreName() const
{
// _TRACE (0, L"Entering and leaving CCertStore::GetStoreName - %s\n",
// (LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
return m_pcszStoreName;
}
HRESULT CCertStore::AddCertificateContext(
PCCERT_CONTEXT pContext,
LPCONSOLE pConsole,
bool bDeletePrivateKey,
PCCERT_CONTEXT* ppNewCertContext)
{
AFX_MANAGE_STATE(AfxGetStaticModuleState());
_TRACE (1, L"Entering CCertStore::AddCertificateContext - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
ASSERT (pContext);
if ( !pContext )
return E_POINTER;
HRESULT hr = S_OK;
HCERTSTORE hCertStore = GetStoreHandle (FALSE, &hr);
if ( hCertStore )
{
PCCERT_CONTEXT pNewContext = 0;
BOOL bResult = ::CertAddCertificateContextToStore (hCertStore,
::CertDuplicateCertificateContext (pContext), CERT_STORE_ADD_NEW,
&pNewContext);
if ( !bResult )
{
DWORD dwErr = GetLastError ();
_TRACE (0, L"CertAddCertificateContextToStore () failed: 0x%x\n", dwErr);
if ( CRYPT_E_EXISTS == dwErr )
{
if ( pConsole ) // if !pConsole then no popup is desired
{
CCertificate cert (pContext, this);
CString text;
CString caption;
int iRetVal = 0;
text.FormatMessage (IDS_DUPLICATE_CERT,
(PCWSTR) GetLocalizedName (),
(PCWSTR) cert.GetFriendlyName (),
(PCWSTR) cert.GetSubjectName ());
VERIFY (caption.LoadString (IDS_CERTIFICATE_MANAGER));
hr = pConsole->MessageBox (text, caption,
MB_YESNO | MB_DEFBUTTON2, &iRetVal);
if ( IDYES == iRetVal )
{
bResult = ::CertAddCertificateContextToStore (hCertStore,
::CertDuplicateCertificateContext (pContext),
CERT_STORE_ADD_REPLACE_EXISTING,
&pNewContext);
if ( !bResult )
{
hr = HRESULT_FROM_WIN32 (GetLastError ());
}
}
else
hr = HRESULT_FROM_WIN32 (CRYPT_E_EXISTS);
}
}
else
{
hr = HRESULT_FROM_WIN32 (dwErr);
}
}
else
{
m_fCertCountValid = false;
SetDirty ();
ASSERT (pNewContext);
if ( bDeletePrivateKey )
{
::CertSetCertificateContextProperty (pNewContext,
CERT_KEY_PROV_INFO_PROP_ID, 0, NULL);
}
}
if ( pNewContext && ppNewCertContext)
*ppNewCertContext = pNewContext;
Close ();
}
else
hr = E_FAIL;
_TRACE (-1, L"Leaving CCertStore::AddCertificateContext - %s\n",
(LPCWSTR) m_pcszStoreName);
return hr;
}
void CCertStore::IncrementCertCount ()
{
m_nCertCount++;
}
int CCertStore::GetCertCount()
{
_TRACE (1, L"Entering CCertStore::GetCertCount - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
if ( !m_fCertCountValid )
{
PCCERT_CONTEXT pCertContext = 0;
m_nCertCount = 0;
while ( 1 )
{
pCertContext = EnumCertificates (pCertContext);
if ( pCertContext )
m_nCertCount++;
else
break;
}
Close ();
m_fCertCountValid = true;
}
_TRACE (-1, L"Leaving CCertStore::GetCertCount - %s\n",
(LPCWSTR) m_pcszStoreName);
return m_nCertCount;
}
BOOL CCertStore::operator ==(CCertStore &rStore)
{
_TRACE (1, L"Entering CCertStore::operator == - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
BOOL bResult = FALSE;
if ( GetStoreHandle () == rStore.GetStoreHandle () )
bResult = TRUE;
Close ();
rStore.Close ();
_TRACE (-1, L"Leaving CCertStore::operator == - %s\n",
(LPCWSTR) m_pcszStoreName);
return bResult;
}
CCertificate* CCertStore::GetSubjectCertificate(PCERT_INFO pCertId)
{
_TRACE (1, L"Entering CCertStore::GetSubjectCertificate - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
CCertificate* pCert = 0;
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
{
PCCERT_CONTEXT pSignerCert =
::CertGetSubjectCertificateFromStore (
hCertStore,
X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
pCertId);
if ( pSignerCert )
{
pCert = new CCertificate (pSignerCert, this);
}
Close ();
}
_TRACE (-1, L"Leaving CCertStore::GetSubjectCertificate - %s\n",
(LPCWSTR) m_pcszStoreName);
return pCert;
}
PCCERT_CONTEXT CCertStore::EnumCertificates(PCCERT_CONTEXT pPrevCertContext)
{
// _TRACE (1, L"Entering CCertStore::EnumCertificates - %s\n",
// (LPCWSTR) m_pcszStoreName);
PCCERT_CONTEXT pCertContext = 0;
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
pCertContext = ::CertEnumCertificatesInStore (hCertStore, pPrevCertContext);
m_fCertCountValid = false;
// _TRACE (-1, L"Leaving CCertStore::EnumCertificates - %s\n",
// (LPCWSTR) m_pcszStoreName);
return pCertContext;
}
PCCTL_CONTEXT CCertStore::EnumCTLs(PCCTL_CONTEXT pPrevCtlContext)
{
_TRACE (1, L"Entering CCertStore::EnumCTLs - %s\n",
(LPCWSTR) m_pcszStoreName);
PCCTL_CONTEXT pCTLContext = 0;
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
pCTLContext = ::CertEnumCTLsInStore (hCertStore, pPrevCtlContext);
_TRACE (-1, L"Leaving CCertStore::EnumCTLs - %s\n",
(LPCWSTR) m_pcszStoreName);
return pCTLContext;
}
PCCRL_CONTEXT CCertStore::EnumCRLs(PCCRL_CONTEXT pPrevCrlContext)
{
_TRACE (1, L"Entering CCertStore::EnumCRLs - %s\n",
(LPCWSTR) m_pcszStoreName);
PCCRL_CONTEXT pCRLContext = 0;
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
pCRLContext = ::CertEnumCRLsInStore (hCertStore, pPrevCrlContext);
_TRACE (1, L"Entering CCertStore::EnumCRLs - %s\n",
(LPCWSTR) m_pcszStoreName);
return pCRLContext;
}
PCCERT_CONTEXT CCertStore::FindCertificate(
DWORD dwFindFlags,
DWORD dwFindType,
const void * pvFindPara,
PCCERT_CONTEXT pPrevCertContext)
{
_TRACE (1, L"Entering CCertStore::FindCertificate - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
PCCERT_CONTEXT pCertContext = 0;
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
pCertContext = ::CertFindCertificateInStore (hCertStore,
X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
dwFindFlags, dwFindType, pvFindPara, pPrevCertContext);
_TRACE (-1, L"Leaving CCertStore::FindCertificate - %s\n",
(LPCWSTR) m_pcszStoreName);
return pCertContext;
}
void CCertStore::FinalCommit()
{
_TRACE (1, L"Entering CCertStore::FinalCommit - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
// Called only from destructor
if ( m_hCertStore && m_bDirty )
::CertControlStore (m_hCertStore, 0, CERT_STORE_CTRL_COMMIT, NULL);
_TRACE (-1, L"Leaving CCertStore::FinalCommit - %s\n",
(LPCWSTR) m_pcszStoreName);
}
bool CCertStore::AddCTLContext(PCCTL_CONTEXT pCtlContext)
{
_TRACE (1, L"Entering CCertStore::AddCTLContext - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
BOOL bResult = FALSE;
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
{
bResult = ::CertAddCTLContextToStore (hCertStore,
pCtlContext,
CERT_STORE_ADD_NEW,
0);
Close ();
}
if ( bResult )
SetDirty ();
_TRACE (-1, L"Leaving CCertStore::AddCTLContext - %s\n",
(LPCWSTR) m_pcszStoreName);
return bResult ? true : false;
}
bool CCertStore::AddCRLContext(PCCRL_CONTEXT pCrlContext)
{
_TRACE (1, L"Entering CCertStore::AddCRLContext - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
BOOL bResult = FALSE;
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
{
bResult = ::CertAddCRLContextToStore (hCertStore,
pCrlContext,
CERT_STORE_ADD_NEW,
0);
Close ();
}
if ( bResult )
SetDirty ();
_TRACE (-1, L"Leaving CCertStore::AddCRLContext - %s\n",
(LPCWSTR) m_pcszStoreName);
return bResult ? true : false;
}
PCCRL_CONTEXT CCertStore::GetCRL(PCCERT_CONTEXT pIssuerContext, PCCRL_CONTEXT pPrevCrlContext, DWORD * pdwFlags)
{
_TRACE (1, L"Entering CCertStore::GetCRL - %s\n",
(LPCWSTR) m_pcszStoreName);
PCCRL_CONTEXT pCRLContext = 0;
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
{
pCRLContext = ::CertGetCRLFromStore (hCertStore, pIssuerContext,
pPrevCrlContext, pdwFlags);
Close ();
}
_TRACE (-1, L"Leaving CCertStore::GetCRL - %s\n",
(LPCWSTR) m_pcszStoreName);
return pCRLContext;
}
HRESULT CCertStore::Resync()
{
_TRACE (1, L"Entering CCertStore::Resync - %s\n",
(LPCWSTR) m_pcszStoreName);
HRESULT hr = S_OK;
// 256803 CertMgr: F5 refresh of Certificates Current User - Active
// Directory User Object, overwrites UserCerificate DS object resulting
// in data loss
// Close (true);
if ( (CERT_STORE_PROV_COLLECTION != m_storeProvider) &&
!m_bReadOnly &&
CERTMGR_LOG_STORE_RSOP != m_objecttype )
{
FinalCommit ();
}
HCERTSTORE hCertStore = GetStoreHandle (FALSE);
if ( hCertStore )
{
BOOL bResult = ::CertControlStore (hCertStore, 0,
CERT_STORE_CTRL_RESYNC, NULL);
if ( !bResult )
{
DWORD dwErr = GetLastError ();
ASSERT (ERROR_NOT_SUPPORTED == dwErr);
if ( ERROR_NOT_SUPPORTED != dwErr )
hr = HRESULT_FROM_WIN32 (dwErr);
}
}
m_fCertCountValid = false;
_TRACE (-1, L"Leaving CCertStore::Resync - %s\n",
(LPCWSTR) m_pcszStoreName);
return hr;
}
int CCertStore::GetCTLCount()
{
_TRACE (1, L"Entering CCertStore::GetCTLCount - %s\n",
(LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype);
int nCTLCount = 0;
PCCTL_CONTEXT pCTLContext = 0;
while ( 1 )
{
pCTLContext = EnumCTLs (pCTLContext);
if ( pCTLContext )
nCTLCount++;
else
break;
}
_TRACE (-1, L"Leaving CCertStore::GetCTLCount - %s\n",
(LPCWSTR) m_pcszStoreName);
return nCTLCount;
}
HRESULT CCertStore::AddStoreToCollection(HCERTSTORE hSiblingStore, DWORD dwUpdateFlags, DWORD dwPriority)
{
_TRACE (1, L"Entering CCertStore::AddStoreToCollection - %s\n",
(LPCWSTR) m_pcszStoreName);
HRESULT hr = S_OK;
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore && hSiblingStore)
{
BOOL bResult = ::CertAddStoreToCollection (hCertStore,
hSiblingStore,
dwUpdateFlags,
dwPriority);
if ( bResult )
SetDirty ();
else
{
DWORD dwErr = GetLastError ();
ASSERT (ERROR_NOT_SUPPORTED == dwErr);
if ( ERROR_NOT_SUPPORTED != dwErr )
hr = HRESULT_FROM_WIN32 (dwErr);
}
}
else
hr = E_FAIL;
Close ();
_TRACE (-1, L"Leaving CCertStore::AddStoreToCollection - %s\n",
(LPCWSTR) m_pcszStoreName);
return hr;
}
HRESULT CCertStore::AddStoreToCollection(CCertStore& siblingStore, DWORD dwUpdateFlags, DWORD dwPriority)
{
_TRACE (1, L"Entering CCertStore::AddStoreToCollection - %s\n",
(LPCWSTR) m_pcszStoreName);
HRESULT hr = S_OK;
HCERTSTORE hSiblingStore = siblingStore.GetStoreHandle ();
if ( hSiblingStore)
{
hr = AddStoreToCollection (hSiblingStore, dwUpdateFlags, dwPriority);
}
else
hr = E_FAIL;
_TRACE (-1, L"Leaving CCertStore::AddStoreToCollection - %s\n",
(LPCWSTR) m_pcszStoreName);
return hr;
}
void CCertStore::SetDirty()
{
_TRACE (1, L"Entering CCertStore::SetDirty - %s\n",
(LPCWSTR) m_pcszStoreName);
m_bDirty = true;
_TRACE (-1, L"Leaving CCertStore::SetDirty - %s\n",
(LPCWSTR) m_pcszStoreName);
}
void CCertStore::Close(bool bForceClose)
{
// _TRACE (1, L"Entering CCertStore::Close - %s\n",
// (LPCWSTR) m_pcszStoreName);
ASSERT (CERTMGR_LOG_STORE_GPE == m_objecttype ||
CERTMGR_LOG_STORE_RSOP == m_objecttype ||
CERTMGR_LOG_STORE == m_objecttype ||
CERTMGR_PHYS_STORE == m_objecttype);
if ( CERTMGR_LOG_STORE_GPE == m_objecttype || bForceClose )
{
if ( m_hCertStore && m_nLockCnt <= 0 )
{
if ( (CERT_STORE_PROV_COLLECTION != m_storeProvider) &&
!m_bReadOnly &&
CERTMGR_LOG_STORE_RSOP != m_objecttype )
{
FinalCommit ();
}
::CertCloseStore (m_hCertStore, 0);
_TRACE (-1, L"Leaving%s store closed\n", (LPCWSTR) m_pcszStoreName);
m_hCertStore = 0;
m_bDirty = false;
}
}
// _TRACE (-1, L"Leaving CCertStore::Close - %s\n",
// (LPCWSTR) m_pcszStoreName);
}
BOOL CCertStore::AddEncodedCTL(DWORD dwMsgAndCertEncodingType, const BYTE *pbCtlEncoded, DWORD cbCtlEncoded, DWORD dwAddDisposition, PCCTL_CONTEXT *ppCtlContext)
{
BOOL bResult = FALSE;
HCERTSTORE hCertStore = GetStoreHandle ();
if ( hCertStore )
{
bResult = ::CertAddEncodedCTLToStore (hCertStore,
dwMsgAndCertEncodingType,
pbCtlEncoded,
cbCtlEncoded,
dwAddDisposition, ppCtlContext);
if ( bResult )
{
m_bDirty = true;
Commit ();
}
Close ();
}
return bResult;
}
void CCertStore::InvalidateCertCount()
{
m_fCertCountValid = false;
}
void CCertStore::Lock()
{
m_nLockCnt++;
}
void CCertStore::Unlock()
{
ASSERT (m_nLockCnt > 0);
m_nLockCnt--;
}
///////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////
CContainerCookie::CContainerCookie (CCertStore& rStore,
CertificateManagerObjectType objectType,
LPCWSTR lpcszMachineName,
LPCWSTR objectName)
: CCertMgrCookie (objectType, lpcszMachineName, objectName),
m_rCertStore (rStore)
{
m_rCertStore.AddRef ();
ASSERT (CERTMGR_CRL_CONTAINER == m_objecttype ||
CERTMGR_CTL_CONTAINER == m_objecttype ||
CERTMGR_CERT_CONTAINER == m_objecttype);
}
CContainerCookie::~CContainerCookie ()
{
ASSERT (CERTMGR_CRL_CONTAINER == m_objecttype ||
CERTMGR_CTL_CONTAINER == m_objecttype ||
CERTMGR_CERT_CONTAINER == m_objecttype);
m_rCertStore.Release ();
}
CCertStore& CContainerCookie::GetCertStore () const
{
ASSERT (CERTMGR_CRL_CONTAINER == m_objecttype ||
CERTMGR_CTL_CONTAINER == m_objecttype ||
CERTMGR_CERT_CONTAINER == m_objecttype);
return m_rCertStore;
}
HRESULT CContainerCookie::Commit()
{
ASSERT (CERTMGR_CRL_CONTAINER == m_objecttype ||
CERTMGR_CTL_CONTAINER == m_objecttype ||
CERTMGR_CERT_CONTAINER == m_objecttype);
CCertMgrCookie::Commit ();
return m_rCertStore.Commit ();
}
///////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////
CUsageCookie::CUsageCookie (
CertificateManagerObjectType objecttype,
LPCWSTR lpcszMachineName,
LPCWSTR objectName)
: CCertMgrCookie (objecttype, lpcszMachineName, objectName),
m_OIDListPos (0),
m_nCertCount (0)
{
ASSERT (CERTMGR_USAGE == m_objecttype);
}
CUsageCookie::~CUsageCookie ()
{
ASSERT (CERTMGR_USAGE == m_objecttype);
LPSTR pszOID = 0;
while ( !m_OIDList.IsEmpty () )
{
pszOID = m_OIDList.RemoveHead ();
ASSERT (pszOID);
if ( pszOID )
delete [] pszOID;
}
}
void CUsageCookie::AddOID (LPCSTR pszNewOID)
{
ASSERT (CERTMGR_USAGE == m_objecttype);
LPSTR pszOID = new char[strlen (pszNewOID)+1];
if ( pszOID )
{
::ZeroMemory (pszOID, strlen (pszNewOID) + 1);
strcpy (pszOID, pszNewOID);
m_OIDList.AddTail (pszOID);
}
}
LPSTR CUsageCookie::GetFirstOID ()
{
ASSERT (CERTMGR_USAGE == m_objecttype);
LPSTR pszOID = 0;
m_OIDListPos = m_OIDList.GetHeadPosition ();
if ( m_OIDListPos )
pszOID = m_OIDList.GetNext (m_OIDListPos);
return pszOID;
}
LPSTR CUsageCookie::GetNextOID ()
{
ASSERT (CERTMGR_USAGE == m_objecttype);
LPSTR pszOID = 0;
if ( m_OIDListPos )
pszOID = m_OIDList.GetNext (m_OIDListPos);
return pszOID;
}
int CUsageCookie::GetOIDCount () const
{
ASSERT (CERTMGR_USAGE == m_objecttype);
return (int)m_OIDList.GetCount ();
}
void CUsageCookie::SetCertCount(int nCertCount)
{
m_nCertCount = nCertCount;
}
int CUsageCookie::GetCertCount() const
{
return m_nCertCount;
}
///////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////
SPECIAL_STORE_TYPE GetSpecialStoreType(LPWSTR pwszStoreName)
{
SPECIAL_STORE_TYPE storeType = NO_SPECIAL_TYPE;
if ( !_wcsicmp (pwszStoreName, MY_SYSTEM_STORE_NAME) )
storeType = MY_STORE;
else if ( !_wcsicmp (pwszStoreName, CA_SYSTEM_STORE_NAME) )
storeType = CA_STORE;
else if ( !_wcsicmp (pwszStoreName, ROOT_SYSTEM_STORE_NAME) )
storeType = ROOT_STORE;
else if ( !_wcsicmp (pwszStoreName, TRUST_SYSTEM_STORE_NAME) )
storeType = TRUST_STORE;
else if ( !_wcsicmp (pwszStoreName, USERDS_SYSTEM_STORE_NAME) )
storeType = USERDS_STORE;
else if ( !_wcsicmp (pwszStoreName, ACRS_SYSTEM_STORE_NAME) )
storeType = ACRS_STORE;
else if ( !_wcsicmp (pwszStoreName, REQUEST_SYSTEM_STORE_NAME) )
storeType = REQUEST_STORE;
else
{
// The stores might be concatenated with machine or services names.
// Check for the token preceded by a slash.
CString revStoreName (pwszStoreName);
revStoreName.MakeReverse ();
revStoreName.MakeUpper ();
CString revToken (MY_SYSTEM_STORE_NAME);
revToken.MakeReverse ();
revToken += L"\\";
if ( 0 == revStoreName.Find (revToken) )
{
storeType = MY_STORE;
goto Found;
}
revToken = CA_SYSTEM_STORE_NAME;
revToken.MakeReverse ();
revToken += L"\\";
if ( 0 == revStoreName.Find (revToken) )
{
storeType = CA_STORE;
goto Found;
}
revToken = ROOT_SYSTEM_STORE_NAME;
revToken.MakeReverse ();
revToken += L"\\";
if ( 0 == revStoreName.Find (revToken) )
{
storeType = ROOT_STORE;
goto Found;
}
revToken = TRUST_SYSTEM_STORE_NAME;
revToken.MakeReverse ();
revToken += L"\\";
if ( 0 == revStoreName.Find (revToken) )
{
storeType = TRUST_STORE;
goto Found;
}
revToken = USERDS_SYSTEM_STORE_NAME;
revToken.MakeReverse ();
revToken += L"\\";
if ( 0 == revStoreName.Find (revToken) )
{
storeType = USERDS_STORE;
goto Found;
}
revToken = ACRS_SYSTEM_STORE_NAME;
revToken.MakeReverse ();
revToken += L"\\";
if ( 0 == revStoreName.Find (revToken) )
{
storeType = ACRS_STORE;
goto Found;
}
revToken = REQUEST_SYSTEM_STORE_NAME;
revToken.MakeReverse ();
revToken += L"\\";
if ( 0 == revStoreName.Find (revToken) )
{
storeType = REQUEST_STORE;
goto Found;
}
}
Found:
return storeType;
}
///////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////
CEnrollmentNodeCookie::CEnrollmentNodeCookie (
CertificateManagerObjectType objecttype,
LPCWSTR objectName,
IGPEInformation* pGPEInformation)
: CCertMgrCookie (objecttype, 0, objectName),
m_pGPEInformation (pGPEInformation)
{
if ( m_pGPEInformation )
m_pGPEInformation->AddRef ();
}
CEnrollmentNodeCookie::~CEnrollmentNodeCookie ()
{
if ( m_pGPEInformation )
m_pGPEInformation->Release ();
}
IGPEInformation* CEnrollmentNodeCookie::GetGPEInformation ()
{
return m_pGPEInformation;
}
void CCertMgrCookie::Refresh()
{
}
SPECIAL_STORE_TYPE StoreNameToType (const CString& szStoreName)
{
SPECIAL_STORE_TYPE type = NO_SPECIAL_TYPE;
if ( szStoreName == ACRS_SYSTEM_STORE_NAME )
type = ACRS_STORE;
else if ( szStoreName == ROOT_SYSTEM_STORE_NAME )
type = ROOT_STORE;
else if ( szStoreName == TRUST_SYSTEM_STORE_NAME )
type = TRUST_STORE;
else if ( szStoreName == EFS_SYSTEM_STORE_NAME )
type = EFS_STORE;
else if ( szStoreName == SAFER_TRUSTED_PUBLISHER_STORE_NAME )
type = SAFER_TRUSTED_PUBLISHER_STORE;
else if ( szStoreName == SAFER_DISALLOWED_STORE_NAME )
type = SAFER_DISALLOWED_STORE;
return type;
}