summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorbryner@chromium.org <bryner@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>2011-11-15 19:44:43 +0000
committerbryner@chromium.org <bryner@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>2011-11-15 19:44:43 +0000
commit453bd5e766fc0a01fe24c7d870816925d79fb26f (patch)
tree645a720f52a824d49793f8f79cef17ad5c252108
parent1ab1354c476229ad194c3665f35ef6d733f5c8cd (diff)
downloadchromium_src-453bd5e766fc0a01fe24c7d870816925d79fb26f.zip
chromium_src-453bd5e766fc0a01fe24c7d870816925d79fb26f.tar.gz
chromium_src-453bd5e766fc0a01fe24c7d870816925d79fb26f.tar.bz2
Get all of the certificate data for downloads from the WinVerifyTrust result.
This should speed up the certificate extraction significantly. BUG=102540 TEST=SignatureUtilWinTest.* pass Review URL: http://codereview.chromium.org/8528043 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@110151 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat
-rw-r--r--chrome/browser/safe_browsing/signature_util_win.cc182
-rw-r--r--chrome/browser/safe_browsing/signature_util_win_unittest.cc5
2 files changed, 39 insertions, 148 deletions
diff --git a/chrome/browser/safe_browsing/signature_util_win.cc b/chrome/browser/safe_browsing/signature_util_win.cc
index 148e75a..06ab48e 100644
--- a/chrome/browser/safe_browsing/signature_util_win.cc
+++ b/chrome/browser/safe_browsing/signature_util_win.cc
@@ -6,152 +6,25 @@
#include <windows.h>
#include <softpub.h>
-#include <wincrypt.h>
#include <wintrust.h>
#include "base/file_path.h"
#include "base/logging.h"
-#include "base/scoped_ptr.h"
-#include "crypto/scoped_capi_types.h"
#include "chrome/common/safe_browsing/csd.pb.h"
-#pragma comment(lib, "crypt32.lib")
#pragma comment(lib, "wintrust.lib")
namespace safe_browsing {
-namespace {
-using crypto::ScopedCAPIHandle;
-using crypto::CAPIDestroyer;
-using crypto::CAPIDestroyerWithFlags;
-// Free functors for scoped_ptr_malloc.
-class FreeConstCertContext {
- public:
- void operator()(const CERT_CONTEXT* cert_context) const {
- if (cert_context) {
- CertFreeCertificateContext(cert_context);
- }
- }
-};
+SignatureUtil::SignatureUtil() {}
-class FreeConstCertChainContext {
- public:
- void operator()(const CERT_CHAIN_CONTEXT* cert_chain_context) const {
- if (cert_chain_context) {
- CertFreeCertificateChain(cert_chain_context);
- }
- }
-};
+SignatureUtil::~SignatureUtil() {}
-// Tries to extract the signing certificate from |file_path|. On success,
-// the |certificate_contents| field of |signature_info| is populated with the
-// DER-encoded X.509 certificate.
-void GetCertificateContents(
+void SignatureUtil::CheckSignature(
const FilePath& file_path,
ClientDownloadRequest_SignatureInfo* signature_info) {
- // Largely based on http://support.microsoft.com/kb/323809
- // Get message handle and store handle from the signed file.
- typedef CAPIDestroyer<HCRYPTMSG, CryptMsgClose> CryptMsgDestroyer;
- ScopedCAPIHandle<HCRYPTMSG, CryptMsgDestroyer> crypt_msg;
- typedef CAPIDestroyerWithFlags<
- HCERTSTORE, CertCloseStore, 0> CertStoreDestroyer;
- ScopedCAPIHandle<HCERTSTORE, CertStoreDestroyer> cert_store;
-
- VLOG(2) << "Looking for signature in: " << file_path.value();
- if (!CryptQueryObject(CERT_QUERY_OBJECT_FILE,
- file_path.value().c_str(),
- CERT_QUERY_CONTENT_FLAG_PKCS7_SIGNED_EMBED,
- CERT_QUERY_FORMAT_FLAG_BINARY,
- 0, // flags
- NULL, // encoding
- NULL, // content type
- NULL, // format type
- cert_store.receive(),
- crypt_msg.receive(),
- NULL)) { // context
- VLOG(2) << "No signature found.";
- return;
- }
-
- // Get the signer information size.
- DWORD signer_info_size;
- if (!CryptMsgGetParam(crypt_msg.get(),
- CMSG_SIGNER_INFO_PARAM,
- 0, // index
- NULL, // no buffer when checking the size
- &signer_info_size)) {
- VLOG(2) << "Failed to get signer info size";
- return;
- }
-
- // Get the signer information.
- scoped_array<BYTE> signer_info_buffer(new BYTE[signer_info_size]);
- CMSG_SIGNER_INFO* signer_info =
- reinterpret_cast<CMSG_SIGNER_INFO*>(signer_info_buffer.get());
- if (!CryptMsgGetParam(crypt_msg.get(),
- CMSG_SIGNER_INFO_PARAM,
- 0, // index
- signer_info,
- &signer_info_size)) {
- VLOG(2) << "Failed to get signer info";
- return;
- }
-
- // Search for the signer certificate in the temporary certificate store.
- CERT_INFO cert_info;
- cert_info.Issuer = signer_info->Issuer;
- cert_info.SerialNumber = signer_info->SerialNumber;
-
- scoped_ptr_malloc<const CERT_CONTEXT, FreeConstCertContext> cert_context(
- CertFindCertificateInStore(
- cert_store.get(),
- X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
- 0, // flags
- CERT_FIND_SUBJECT_CERT,
- &cert_info,
- NULL)); // no previous context
- if (!cert_context.get()) {
- VLOG(2) << "Failed to get CERT_CONTEXT";
- return;
- }
-
- // Follow the chain of certificates to a trusted root.
- CERT_CHAIN_PARA cert_chain_params;
- memset(&cert_chain_params, 0, sizeof(cert_chain_params));
- cert_chain_params.cbSize = sizeof(cert_chain_params);
+ VLOG(2) << "Checking signature for " << file_path.value();
- const CERT_CHAIN_CONTEXT* cert_chain_context = NULL;
- if (!CertGetCertificateChain(NULL, // default chain engine
- cert_context.get(),
- // TODO(bryner): should this verify at the
- // executable's embedded timestamp?
- NULL, // verify at the current time
- NULL, // no additional store
- &cert_chain_params,
- 0, // default flags
- NULL, // reserved parameter
- &cert_chain_context)) {
- VLOG(2) << "Failed to get certificate chain.";
- return;
- }
-
- typedef scoped_ptr_malloc<const CERT_CHAIN_CONTEXT,
- FreeConstCertChainContext> ScopedCertChainContext;
- ScopedCertChainContext scoped_cert_chain_context(cert_chain_context);
- for (size_t i = 0; i < cert_chain_context->cChain; ++i) {
- CERT_SIMPLE_CHAIN* simple_chain = cert_chain_context->rgpChain[i];
- ClientDownloadRequest_CertificateChain* chain =
- signature_info->add_certificate_chain();
- for (size_t j = 0; j < simple_chain->cElement; ++j) {
- CERT_CHAIN_ELEMENT* element = simple_chain->rgpElement[j];
- chain->add_element()->set_certificate(
- element->pCertContext->pbCertEncoded,
- element->pCertContext->cbCertEncoded);
- }
- }
-}
-
-bool CheckTrust(const FilePath& file_path) {
WINTRUST_FILE_INFO file_info;
file_info.cbStruct = sizeof(file_info);
file_info.pcwszFilePath = file_path.value().c_str();
@@ -166,10 +39,11 @@ bool CheckTrust(const FilePath& file_path) {
wintrust_data.fdwRevocationChecks = WTD_REVOKE_NONE;
wintrust_data.dwUnionChoice = WTD_CHOICE_FILE;
wintrust_data.pFile = &file_info;
- wintrust_data.dwStateAction = WTD_STATEACTION_IGNORE;
+ wintrust_data.dwStateAction = WTD_STATEACTION_VERIFY;
wintrust_data.hWVTStateData = NULL;
wintrust_data.pwszURLReference = NULL;
- wintrust_data.dwProvFlags = 0; // don't set any flags
+ // Disallow revocation checks over the network.
+ wintrust_data.dwProvFlags = WTD_CACHE_ONLY_URL_RETRIEVAL;
wintrust_data.dwUIContext = WTD_UICONTEXT_EXECUTE;
// The WINTRUST_ACTION_GENERIC_VERIFY_V2 policy verifies that the certificate
@@ -177,21 +51,37 @@ bool CheckTrust(const FilePath& file_path) {
// sign code.
GUID policy_guid = WINTRUST_ACTION_GENERIC_VERIFY_V2;
- return (WinVerifyTrust(static_cast<HWND>(INVALID_HANDLE_VALUE),
- &policy_guid,
- &wintrust_data) == ERROR_SUCCESS);
-}
-} // namespace
-
-SignatureUtil::SignatureUtil() {}
+ LONG result = WinVerifyTrust(static_cast<HWND>(INVALID_HANDLE_VALUE),
+ &policy_guid,
+ &wintrust_data);
-SignatureUtil::~SignatureUtil() {}
+ CRYPT_PROVIDER_DATA* prov_data = WTHelperProvDataFromStateData(
+ wintrust_data.hWVTStateData);
+ if (prov_data) {
+ if (prov_data->csSigners > 0) {
+ signature_info->set_trusted(result == ERROR_SUCCESS);
+ }
+ for (DWORD i = 0; i < prov_data->csSigners; ++i) {
+ const CERT_CHAIN_CONTEXT* cert_chain_context =
+ prov_data->pasSigners[i].pChainContext;
+ for (DWORD j = 0; j < cert_chain_context->cChain; ++j) {
+ CERT_SIMPLE_CHAIN* simple_chain = cert_chain_context->rgpChain[j];
+ ClientDownloadRequest_CertificateChain* chain =
+ signature_info->add_certificate_chain();
+ for (DWORD k = 0; k < simple_chain->cElement; ++k) {
+ CERT_CHAIN_ELEMENT* element = simple_chain->rgpElement[k];
+ chain->add_element()->set_certificate(
+ element->pCertContext->pbCertEncoded,
+ element->pCertContext->cbCertEncoded);
+ }
+ }
+ }
-void SignatureUtil::CheckSignature(
- const FilePath& file_path,
- ClientDownloadRequest_SignatureInfo* signature_info) {
- GetCertificateContents(file_path, signature_info);
- signature_info->set_trusted(CheckTrust(file_path));
+ // Free the provider data.
+ wintrust_data.dwStateAction = WTD_STATEACTION_CLOSE;
+ WinVerifyTrust(static_cast<HWND>(INVALID_HANDLE_VALUE),
+ &policy_guid, &wintrust_data);
+ }
}
} // namespace safe_browsing
diff --git a/chrome/browser/safe_browsing/signature_util_win_unittest.cc b/chrome/browser/safe_browsing/signature_util_win_unittest.cc
index 86b78c6..501fefa 100644
--- a/chrome/browser/safe_browsing/signature_util_win_unittest.cc
+++ b/chrome/browser/safe_browsing/signature_util_win_unittest.cc
@@ -59,6 +59,7 @@ TEST_F(SignatureUtilWinTest, UntrustedSignedBinary) {
EXPECT_EQ("Joe's-Software-Emporium", certs[0]->subject().common_name);
EXPECT_EQ("Root Agency", certs[1]->subject().common_name);
+ EXPECT_TRUE(signature_info.has_trusted());
EXPECT_FALSE(signature_info.trusted());
}
@@ -89,7 +90,7 @@ TEST_F(SignatureUtilWinTest, UnsignedBinary) {
signature_util->CheckSignature(testdata_path_.Append(L"unsigned.exe"),
&signature_info);
EXPECT_EQ(0, signature_info.certificate_chain_size());
- EXPECT_FALSE(signature_info.trusted());
+ EXPECT_FALSE(signature_info.has_trusted());
}
TEST_F(SignatureUtilWinTest, NonExistentBinary) {
@@ -99,7 +100,7 @@ TEST_F(SignatureUtilWinTest, NonExistentBinary) {
signature_util->CheckSignature(testdata_path_.Append(L"doesnotexist.exe"),
&signature_info);
EXPECT_EQ(0, signature_info.certificate_chain_size());
- EXPECT_FALSE(signature_info.trusted());
+ EXPECT_FALSE(signature_info.has_trusted());
}
} // namespace safe_browsing
generated by cgit v1.1 at 2025-03-28 03:43:33 +0000