Merge pull request #2149 from davidsh/winhttphandler

Initial open source WinHttpHandler

Author: davidsh

src/Common/src/Interop/Windows/Crypt32/Interop.certificates.cs

@@ -0,0 +1,26 @@
+// Copyright (c) Microsoft. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+using System;
+using System.Runtime.InteropServices;
+using System.Security.Cryptography.X509Certificates;
+
+using Microsoft.Win32.SafeHandles;
+
+internal static partial class Interop
+{
+    internal static partial class Crypt32
+    {
+        [DllImport(Interop.Libraries.Crypt32, CharSet = CharSet.Unicode, SetLastError = true)]
+        [return: MarshalAs(UnmanagedType.Bool)]
+        internal static extern bool CertFreeCertificateContext(IntPtr pCertContext);
+
+        [DllImport(Interop.Libraries.Crypt32, CharSet = CharSet.Unicode, SetLastError = true)]
+        [return: MarshalAs(UnmanagedType.Bool)]
+        internal static extern bool CertVerifyCertificateChainPolicy(
+            IntPtr pszPolicyOID,
+            SafeX509ChainHandle pChainContext,
+            [In] ref CERT_CHAIN_POLICY_PARA pPolicyPara,
+            [In, Out] ref CERT_CHAIN_POLICY_STATUS pPolicyStatus);
+    }
+}

src/Common/src/Interop/Windows/Crypt32/Interop.certificates_types.cs

@@ -0,0 +1,129 @@
+// Copyright (c) Microsoft. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+using System;
+using System.Runtime.InteropServices;
+using System.Security.Cryptography.X509Certificates;
+
+using Microsoft.Win32.SafeHandles;
+
+internal static partial class Interop
+{
+    internal static partial class Crypt32
+    {
+        internal static partial class AuthType
+        {
+            internal const uint AUTHTYPE_CLIENT = 1;
+            internal const uint AUTHTYPE_SERVER = 2;
+        }
+        
+        internal static partial class CertChainPolicyIgnoreFlags
+        {
+            internal const uint CERT_CHAIN_POLICY_IGNORE_NOT_TIME_VALID_FLAG = 0x00000001;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_CTL_NOT_TIME_VALID_FLAG  = 0x00000002;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_NOT_TIME_NESTED_FLAG  = 0x00000004;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_INVALID_BASIC_CONSTRAINTS_FLAG = 0x00000008;
+            internal const uint CERT_CHAIN_POLICY_ALLOW_UNKNOWN_CA_FLAG = 0x00000010;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_WRONG_USAGE_FLAG = 0x00000020;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_INVALID_NAME_FLAG = 0x00000040;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_INVALID_POLICY_FLAG = 0x00000080;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_END_REV_UNKNOWN_FLAG = 0x00000100;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_CTL_SIGNER_REV_UNKNOWN_FLAG = 0x00000200;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_CA_REV_UNKNOWN_FLAG = 0x00000400;
+            internal const uint CERT_CHAIN_POLICY_IGNORE_ROOT_REV_UNKNOWN_FLAG = 0x00000800;
+
+            internal const uint CERT_CHAIN_POLICY_IGNORE_ALL =
+                CERT_CHAIN_POLICY_IGNORE_NOT_TIME_VALID_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_CTL_NOT_TIME_VALID_FLAG  |
+                CERT_CHAIN_POLICY_IGNORE_NOT_TIME_NESTED_FLAG  |
+                CERT_CHAIN_POLICY_IGNORE_INVALID_BASIC_CONSTRAINTS_FLAG |
+                CERT_CHAIN_POLICY_ALLOW_UNKNOWN_CA_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_WRONG_USAGE_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_INVALID_NAME_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_INVALID_POLICY_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_END_REV_UNKNOWN_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_CTL_SIGNER_REV_UNKNOWN_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_CA_REV_UNKNOWN_FLAG |
+                CERT_CHAIN_POLICY_IGNORE_ROOT_REV_UNKNOWN_FLAG;
+        }
+
+        internal static partial class CertChainPolicy
+        {
+            internal const int CERT_CHAIN_POLICY_BASE = 1;
+            internal const int CERT_CHAIN_POLICY_AUTHENTICODE = 2;
+            internal const int CERT_CHAIN_POLICY_AUTHENTICODE_TS = 3;
+            internal const int CERT_CHAIN_POLICY_SSL = 4;
+            internal const int CERT_CHAIN_POLICY_BASIC_CONSTRAINTS = 5;
+            internal const int CERT_CHAIN_POLICY_NT_AUTH = 6;
+            internal const int CERT_CHAIN_POLICY_MICROSOFT_ROOT = 7;
+            internal const int CERT_CHAIN_POLICY_EV = 8;
+        }
+        
+        internal static partial class CertChainPolicyErrors
+        {
+            // Base Policy errors (CERT_CHAIN_POLICY_BASE).
+            internal const uint TRUST_E_CERT_SIGNATURE = 0x80096004;
+            internal const uint CRYPT_E_REVOKED = 0x80092010;
+            internal const uint CERT_E_UNTRUSTEDROOT = 0x800B0109;
+            internal const uint CERT_E_UNTRUSTEDTESTROOT = 0x800B010D;
+            internal const uint CERT_E_CHAINING = 0x800B010A;
+            internal const uint CERT_E_WRONG_USAGE = 0x800B0110;
+            internal const uint CERT_E_EXPIRE = 0x800B0101;
+            internal const uint CERT_E_INVALID_NAME = 0x800B0114;
+            internal const uint CERT_E_INVALID_POLICY = 0x800B0113;
+
+            // Basic Constraints Policy errors (CERT_CHAIN_POLICY_BASIC_CONSTRAINTS).
+            internal const uint TRUST_E_BASIC_CONSTRAINTS = 0x80096019;
+ 
+            // Authenticode Policy errors (CERT_CHAIN_POLICY_AUTHENTICODE and CERT_CHAIN_POLICY_AUTHENTICODE_TS).
+            internal const uint CERT_E_CRITICAL = 0x800B0105;
+            internal const uint CERT_E_VALIDITYPERIODNESTING = 0x800B0102;
+            internal const uint CRYPT_E_NO_REVOCATION_CHECK = 0x80092012;
+            internal const uint CRYPT_E_REVOCATION_OFFLINE = 0x80092013;
+            internal const uint CERT_E_PURPOSE = 0x800B0106;
+            internal const uint CERT_E_REVOKED = 0x800B010C;
+            internal const uint CERT_E_REVOCATION_FAILURE = 0x800B010E;
+ 
+            // SSL Policy errors (CERT_CHAIN_POLICY_SSL).
+            internal const uint CERT_E_CN_NO_MATCH = 0x800B010F;
+            internal const uint CERT_E_ROLE = 0x800B0103;
+        }
+        
+        [StructLayout(LayoutKind.Sequential, CharSet = CharSet.Unicode)]
+        internal struct CERT_CONTEXT
+        {
+            internal uint dwCertEncodingType;
+            internal IntPtr pbCertEncoded;
+            internal uint cbCertEncoded;
+            internal IntPtr pCertInfo;
+            internal IntPtr hCertStore;
+        }
+
+        [StructLayout(LayoutKind.Sequential, CharSet = CharSet.Unicode)]
+        internal unsafe struct SSL_EXTRA_CERT_CHAIN_POLICY_PARA
+        {
+            internal uint cbSize;
+            internal uint dwAuthType;
+            internal uint fdwChecks;
+            internal char* pwszServerName;
+        }
+
+        [StructLayout(LayoutKind.Sequential, CharSet = CharSet.Unicode)]
+        internal unsafe struct CERT_CHAIN_POLICY_PARA
+        {
+            public uint cbSize;
+            public uint dwFlags;
+            public SSL_EXTRA_CERT_CHAIN_POLICY_PARA* pvExtraPolicyPara;
+        }
+       
+        [StructLayout(LayoutKind.Sequential, CharSet = CharSet.Unicode)]
+        internal unsafe struct CERT_CHAIN_POLICY_STATUS
+        {
+            public uint cbSize;
+            public uint dwError;
+            public int lChainIndex;
+            public int lElementIndex;
+            public void* pvExtraPolicyStatus;
+        }
+    }
+}

src/Common/src/Interop/Windows/Interop.Libraries.cs

@@ -3,7 +3,7 @@
 
 internal static partial class Interop
 {
-    private static class Libraries
+    internal static class Libraries
     {
         internal const string BCrypt = "BCrypt.dll";
         internal const string Console_L1 = "api-ms-win-core-console-l1-1-0.dll";
@@ -19,6 +19,7 @@ private static class Libraries
         internal const string Kernel32 = "kernel32.dll";
         internal const string Kernel32_L1 = "api-ms-win-core-kernel32-legacy-l1-1-1.dll";
         internal const string Kernel32_L2 = "api-ms-win-core-kernel32-legacy-l1-1-0.dll";
+        internal const string LibraryLoader = "api-ms-win-core-libraryloader-l1-1-0.dll";
         internal const string Localization = "api-ms-win-core-localization-l1-2-0.dll";
         internal const string Memory_L1_0 = "api-ms-win-core-memory-l1-1-0.dll";
         internal const string Memory_L1_1 = "api-ms-win-core-memory-l1-1-1.dll";
@@ -50,6 +51,7 @@ private static class Libraries
         internal const string SystemInfo = "api-ms-win-core-sysinfo-l1-1-0.dll";
         internal const string User32 = "user32.dll";
         internal const string Version = "api-ms-win-core-version-l1-1-0.dll";
+        internal const string WinHttp = "winhttp.dll";
         internal const string Wow64 = "api-ms-win-core-wow64-l1-1-0.dll";
         internal const string Zlib = "clrcompression.dll";
     }

src/Common/src/Interop/Windows/mincore/Interop.FormatMessage.cs

@@ -10,15 +10,17 @@ internal partial class Interop
     internal partial class mincore
     {
         private const int FORMAT_MESSAGE_IGNORE_INSERTS = 0x00000200;
+        private const int FORMAT_MESSAGE_FROM_HMODULE = 0x00000800;
         private const int FORMAT_MESSAGE_FROM_SYSTEM = 0x00001000;
         private const int FORMAT_MESSAGE_ARGUMENT_ARRAY = 0x00002000;
 
+        
         private const int ERROR_INSUFFICIENT_BUFFER = 0x7A;
 
         [DllImport(Libraries.Localization, CharSet = CharSet.Unicode, EntryPoint = "FormatMessageW", SetLastError = true, BestFitMapping = true)]
         private static extern int FormatMessage(
             int dwFlags,
-            IntPtr lpSource_mustBeNull, 
+            IntPtr lpSource, 
             uint dwMessageId,
             int dwLanguageId,
             StringBuilder lpBuffer,
@@ -29,12 +31,17 @@ private static extern int FormatMessage(
         ///     Returns a string message for the specified Win32 error code.
         /// </summary>
         internal static string GetMessage(int errorCode)
+        {
+            return GetMessage(IntPtr.Zero, errorCode);
+        }
+        
+        internal static string GetMessage(IntPtr moduleHandle, int errorCode)
         {
             var sb = new StringBuilder(InitialBufferSize);
             do
             {
                 string errorMsg;
-                if (TryGetErrorMessage(errorCode, sb, out errorMsg))
+                if (TryGetErrorMessage(moduleHandle, errorCode, sb, out errorMsg))
                 {
                     return errorMsg;
                 }
@@ -50,15 +57,17 @@ internal static string GetMessage(int errorCode)
             return string.Format("Unknown error (0x{0:x})", errorCode);
         }
 
-        private static bool TryGetErrorMessage(int errorCode, StringBuilder sb, out string errorMsg)
+        private static bool TryGetErrorMessage(IntPtr moduleHandle, int errorCode, StringBuilder sb, out string errorMsg)
         {
             errorMsg = "";
 
-            int result = FormatMessage(FORMAT_MESSAGE_IGNORE_INSERTS |
-                                       FORMAT_MESSAGE_FROM_SYSTEM |
-                                       FORMAT_MESSAGE_ARGUMENT_ARRAY,
-                                       IntPtr.Zero, (uint)errorCode, 0, sb, sb.Capacity,
-                                       null);
+            int flags = FORMAT_MESSAGE_IGNORE_INSERTS | FORMAT_MESSAGE_FROM_SYSTEM | FORMAT_MESSAGE_ARGUMENT_ARRAY;
+            if (moduleHandle != IntPtr.Zero)
+            {
+                flags |= FORMAT_MESSAGE_FROM_HMODULE;
+            }
+            
+            int result = FormatMessage(flags, moduleHandle, (uint)errorCode, 0, sb, sb.Capacity, null);
             if (result != 0)
             {
                 int i = sb.Length;
@@ -82,19 +91,19 @@ private static bool TryGetErrorMessage(int errorCode, StringBuilder sb, out stri
             return true;
         }
 
-        // Windows API FormatMessage lets you format a message string given an errocode.
+        // Windows API FormatMessage lets you format a message string given an errorcode.
         // Unlike other APIs this API does not support a way to query it for the total message size.
         //
         // So the API can only be used in one of these two ways.
         // a. You pass a buffer of appropriate size and get the resource.
-        // b. Windows creates a buffer and passes the address back and the onus of releasing the bugffer lies on the caller.
+        // b. Windows creates a buffer and passes the address back and the onus of releasing the buffer lies on the caller.
         //
         // Since the error code is coming from the user, it is not possible to know the size in advance.
         // Unfortunately we can't use option b. since the buffer can only be freed using LocalFree and it is a private API on onecore.
-        // Also, using option b is ugly for the manged code and could cause memory leak in situations where freeing is unsuccessful.
+        // Also, using option b is ugly for the managed code and could cause memory leak in situations where freeing is unsuccessful.
         // 
         // As a result we use the following approach.
-        // We initially call the API with a buffer size of 256 and then gradually increase the size in case of failure until we reach the maxiumum allowed limit of 65K.
+        // We initially call the API with a buffer size of 256 and then gradually increase the size in case of failure until we reach the maximum allowed limit of 65K.
         private const int InitialBufferSize = 256;
         private const int BufferSizeIncreaseFactor = 4;
         private const int MaxAllowedBufferSize = 65 * 1024;

src/Common/src/Interop/Windows/mincore/Interop.GetModuleHandle.cs

@@ -0,0 +1,16 @@
+// Copyright (c) Microsoft. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+using Microsoft.Win32.SafeHandles;
+using System;
+using System.Runtime.InteropServices;
+using System.Text;
+
+internal partial class Interop
+{
+    internal partial class mincore
+    {
+        [DllImport(Libraries.LibraryLoader, EntryPoint = "GetModuleHandleW", CharSet = CharSet.Unicode, SetLastError = true)]
+        internal static extern IntPtr GetModuleHandle(string moduleName);        
+    }
+}

src/Common/src/Interop/Windows/winhttp/Interop.SafeWinHttpHandle.cs

@@ -0,0 +1,47 @@
+// Copyright (c) Microsoft. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+using System;
+using System.Runtime.InteropServices;
+
+internal partial class Interop
+{
+    internal partial class WinHttp
+    {
+        // TODO: Move SafeHandleZeroOrMinusOneIsInvalid class to Common
+        internal abstract class SafeHandleZeroOrMinusOneIsInvalid : SafeHandle
+        {
+            protected SafeHandleZeroOrMinusOneIsInvalid(bool ownsHandle)
+                : base(IntPtr.Zero, ownsHandle)
+            {
+            }
+
+            public override bool IsInvalid
+            {
+                get { return this.handle == IntPtr.Zero || this.handle == (IntPtr)(-1); }
+            }
+        }
+
+        internal class SafeWinHttpHandle : SafeHandleZeroOrMinusOneIsInvalid
+        {
+            public SafeWinHttpHandle() : base(true)
+            {
+            }
+
+            public static void DisposeAndClearHandle(ref SafeWinHttpHandle handle)
+            {
+                if (handle != null)
+                {
+                    handle.Dispose();
+                    handle = null;
+                }
+            }
+
+            protected override bool ReleaseHandle()
+            {
+                // TODO: Add logging so we know when the handle gets closed.
+                return Interop.WinHttp.WinHttpCloseHandle(this.handle);
+            }
+        }
+    }
+}