2a292c3984
Make it possible to build curl for Windows CE using the CeGCC toolchain.
With both CMake and autotools, including tests and examples, also in CI.
The build configuration is the default one with Schannel enabled. No
3rd-party dependencies have been tested.
Also revive old code to make Schannel build with Windows CE, including
certificate verification.
Builds have been throughougly tested. But, I've made no functional tests
for this PR. Some parts (esp. file operations, like truncate and seek)
are stubbed out and likely broken as a result. Test servers build, but
they do not work on Windows CE. This patch substitutes `fstat()` calls
with `stat()`, which operate on filenames, not file handles. This may or
may not work and/or may not be secure.
About CeGCC: I used the latest available macOS binary build v0.59.1
r1397 from 2009, in native `mingw32ce` build mode. CeGCC is in effect
MinGW + GCC 4.4.0 + old/classic-mingw Windows headers. It targets
Windows CE v3.0 according to its `_WIN32_WCE` value. It means this PR
restores portions of old/classic-mingw support. It makes the Windows CE
codepath compatible with GCC 4.4.0. It also adds workaround for CMake,
which cannot identify and configure this toolchain out of the box.
Notes:
- CMake doesn't recognize CeGCC/mingw32ce, necessitating tricks as seen
with Amiga and MS-DOS.
- CMake doesn't set `MINGW` for mingw32ce. Set it and `MINGW32CE`
manually as a helper variable, in addition to `WINCE` which CMake sets
based on `CMAKE_SYSTEM_NAME`.
- CMake fails to create an implib for `libcurl.dll`, due to not
recognizing the platform as a Windowsy one. This patch adds the
necessary workaround to make it work.
- headers shipping with CeGCC miss some things curl needs for Schannel
support. Fixed by restoring and renovating code previously deleted
old-mingw code.
- it's sometime non-trivial to figure out if a fallout is WinCE,
mingw32ce, old-mingw, or GCC version-specific.
- WinCE is always Unicode. With exceptions: no `wmain`,
`GetProcAddress()`.
- `_fileno()` is said to convert from `FILE *` to `void *` which is
a Win32 file `HANDLE`. (This patch doesn't use this, but with further
effort it probably could be.)
https://stackoverflow.com/questions/3989545/how-do-i-get-the-file-handle-from-the-fopen-file-structure
- WinCE has no signals, current directory, stdio/CRT file handles, no
`_get_osfhandle()`, no `errno`, no `errno.h`. Some of this stuff is
standard C89, yet missing from this platform. Microsoft expects
Windows CE apps to use Win32 file API and `FILE *` exclusively.
- revived CeGCC here (not tested for this PR):
https://building.enlyze.com/posts/a-new-windows-ce-x86-compiler-in-2024/
On `UNDER_CE` vs. `_WIN32_WCE`: (This patch settled on `UNDER_CE`)
- A custom VS2008 WinCE toolchain does not set any of these.
The compiler binaries don't contain these strings, and has no compiler
option for targeting WinCE, hinting that a vanilla toolchain isn't
setting any of them either.
- `UNDER_CE` is automatically defined by the CeGCC compiler.
https://cegcc.sourceforge.net/docs/details.html
- `UNDER_CE` is similar to `_WIN32`, except it's not set automatically
by all compilers. It's not supposed to have any value, like a version.
(Though e.g. OpenSSL sets it to a version)
- `_WIN32_WCE` is the CE counterpart of the non-CE `_WIN32_WINNT` macro.
That does return the targeted Windows CE version.
- `_WIN32_WCE` is not defined by compilers, and relies on a header
setting it to a default, or the build to set it to the desired target
version. This is also how `_WIN32_WINNT` works.
- `_WIN32_WCE` default is set by `windef.h` in CeGCC.
- `_WIN32_WCE` isn't set to a default by MSVC Windows CE headers (the
ones I checked at least).
- CMake sets `_WIN32_WCE=<ver>`, `UNDER_CE`, `WINCE` for MSVC WinCE.
- `_WIN32_WCE` seems more popular in other projects, including CeGCC
itself. `zlib` is a notable exception amongst curl dependencies,
which uses `UNDER_CE`.
- Since `_WIN32_WCE` needs "certain" headers to have it defined, it's
undefined depending on headers included beforehand.
- `curl/curl.h` re-uses `_WIN32_WCE`'s as a self-guard, relying on
its not-(necessarily)-defined-by-default property:
25b445e479/include/curl/curl.h (L77)
Toolchain downloads:
- Windows:
https://downloads.sourceforge.net/cegcc/cegcc/0.59.1/cegcc_mingw32ce_cygwin1.7_r1399.tar.bz2
- macOS Intel:
https://downloads.sourceforge.net/cegcc/cegcc/0.59.1/cegcc_mingw32ce_snowleopard_r1397.tar.bz2
Closes #15975
240 lines
7.0 KiB
C
240 lines
7.0 KiB
C
/***************************************************************************
|
|
* _ _ ____ _
|
|
* Project ___| | | | _ \| |
|
|
* / __| | | | |_) | |
|
|
* | (__| |_| | _ <| |___
|
|
* \___|\___/|_| \_\_____|
|
|
*
|
|
* Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
*
|
|
* This software is licensed as described in the file COPYING, which
|
|
* you should have received as part of this distribution. The terms
|
|
* are also available at https://curl.se/docs/copyright.html.
|
|
*
|
|
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
|
|
* copies of the Software, and permit persons to whom the Software is
|
|
* furnished to do so, under the terms of the COPYING file.
|
|
*
|
|
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
|
|
* KIND, either express or implied.
|
|
*
|
|
* SPDX-License-Identifier: curl
|
|
*
|
|
***************************************************************************/
|
|
|
|
#include "curl_setup.h"
|
|
|
|
#ifdef USE_WINDOWS_SSPI
|
|
|
|
#include <curl/curl.h>
|
|
#include "curl_sspi.h"
|
|
#include "curl_multibyte.h"
|
|
#include "system_win32.h"
|
|
#include "version_win32.h"
|
|
#include "warnless.h"
|
|
|
|
/* The last #include files should be: */
|
|
#include "curl_memory.h"
|
|
#include "memdebug.h"
|
|
|
|
/* We use our own typedef here since some headers might lack these */
|
|
typedef PSecurityFunctionTable (APIENTRY *INITSECURITYINTERFACE_FN)(VOID);
|
|
|
|
/* See definition of SECURITY_ENTRYPOINT in sspi.h */
|
|
#ifdef UNICODE
|
|
# ifdef UNDER_CE
|
|
# define SECURITYENTRYPOINT L"InitSecurityInterfaceW"
|
|
# else
|
|
# define SECURITYENTRYPOINT "InitSecurityInterfaceW"
|
|
# endif
|
|
#else
|
|
# define SECURITYENTRYPOINT "InitSecurityInterfaceA"
|
|
#endif
|
|
|
|
/* Handle of security.dll or secur32.dll, depending on Windows version */
|
|
HMODULE Curl_hSecDll = NULL;
|
|
|
|
/* Pointer to SSPI dispatch table */
|
|
PSecurityFunctionTable Curl_pSecFn = NULL;
|
|
|
|
/*
|
|
* Curl_sspi_global_init()
|
|
*
|
|
* This is used to load the Security Service Provider Interface (SSPI)
|
|
* dynamic link library portably across all Windows versions, without
|
|
* the need to directly link libcurl, nor the application using it, at
|
|
* build time.
|
|
*
|
|
* Once this function has been executed, Windows SSPI functions can be
|
|
* called through the Security Service Provider Interface dispatch table.
|
|
*
|
|
* Parameters:
|
|
*
|
|
* None.
|
|
*
|
|
* Returns CURLE_OK on success.
|
|
*/
|
|
CURLcode Curl_sspi_global_init(void)
|
|
{
|
|
INITSECURITYINTERFACE_FN pInitSecurityInterface;
|
|
|
|
/* If security interface is not yet initialized try to do this */
|
|
if(!Curl_hSecDll) {
|
|
/* Security Service Provider Interface (SSPI) functions are located in
|
|
* security.dll on WinNT 4.0 and in secur32.dll on Win9x. Win2K and XP
|
|
* have both these DLLs (security.dll forwards calls to secur32.dll) */
|
|
|
|
/* Load SSPI dll into the address space of the calling process */
|
|
if(curlx_verify_windows_version(4, 0, 0, PLATFORM_WINNT, VERSION_EQUAL))
|
|
Curl_hSecDll = Curl_load_library(TEXT("security.dll"));
|
|
else
|
|
Curl_hSecDll = Curl_load_library(TEXT("secur32.dll"));
|
|
if(!Curl_hSecDll)
|
|
return CURLE_FAILED_INIT;
|
|
|
|
/* Get address of the InitSecurityInterfaceA function from the SSPI dll */
|
|
pInitSecurityInterface =
|
|
CURLX_FUNCTION_CAST(INITSECURITYINTERFACE_FN,
|
|
(GetProcAddress(Curl_hSecDll, SECURITYENTRYPOINT)));
|
|
if(!pInitSecurityInterface)
|
|
return CURLE_FAILED_INIT;
|
|
|
|
/* Get pointer to Security Service Provider Interface dispatch table */
|
|
Curl_pSecFn = pInitSecurityInterface();
|
|
if(!Curl_pSecFn)
|
|
return CURLE_FAILED_INIT;
|
|
}
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
/*
|
|
* Curl_sspi_global_cleanup()
|
|
*
|
|
* This deinitializes the Security Service Provider Interface from libcurl.
|
|
*
|
|
* Parameters:
|
|
*
|
|
* None.
|
|
*/
|
|
void Curl_sspi_global_cleanup(void)
|
|
{
|
|
if(Curl_hSecDll) {
|
|
FreeLibrary(Curl_hSecDll);
|
|
Curl_hSecDll = NULL;
|
|
Curl_pSecFn = NULL;
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Curl_create_sspi_identity()
|
|
*
|
|
* This is used to populate a SSPI identity structure based on the supplied
|
|
* username and password.
|
|
*
|
|
* Parameters:
|
|
*
|
|
* userp [in] - The username in the format User or Domain\User.
|
|
* passwdp [in] - The user's password.
|
|
* identity [in/out] - The identity structure.
|
|
*
|
|
* Returns CURLE_OK on success.
|
|
*/
|
|
CURLcode Curl_create_sspi_identity(const char *userp, const char *passwdp,
|
|
SEC_WINNT_AUTH_IDENTITY *identity)
|
|
{
|
|
xcharp_u useranddomain;
|
|
xcharp_u user, dup_user;
|
|
xcharp_u domain, dup_domain;
|
|
xcharp_u passwd, dup_passwd;
|
|
size_t domlen = 0;
|
|
|
|
domain.const_tchar_ptr = TEXT("");
|
|
|
|
/* Initialize the identity */
|
|
memset(identity, 0, sizeof(*identity));
|
|
|
|
useranddomain.tchar_ptr = curlx_convert_UTF8_to_tchar((char *)userp);
|
|
if(!useranddomain.tchar_ptr)
|
|
return CURLE_OUT_OF_MEMORY;
|
|
|
|
user.const_tchar_ptr = _tcschr(useranddomain.const_tchar_ptr, TEXT('\\'));
|
|
if(!user.const_tchar_ptr)
|
|
user.const_tchar_ptr = _tcschr(useranddomain.const_tchar_ptr, TEXT('/'));
|
|
|
|
if(user.tchar_ptr) {
|
|
domain.tchar_ptr = useranddomain.tchar_ptr;
|
|
domlen = user.tchar_ptr - useranddomain.tchar_ptr;
|
|
user.tchar_ptr++;
|
|
}
|
|
else {
|
|
user.tchar_ptr = useranddomain.tchar_ptr;
|
|
domain.const_tchar_ptr = TEXT("");
|
|
domlen = 0;
|
|
}
|
|
|
|
/* Setup the identity's user and length */
|
|
dup_user.tchar_ptr = _tcsdup(user.tchar_ptr);
|
|
if(!dup_user.tchar_ptr) {
|
|
curlx_unicodefree(useranddomain.tchar_ptr);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
identity->User = dup_user.tbyte_ptr;
|
|
identity->UserLength = curlx_uztoul(_tcslen(dup_user.tchar_ptr));
|
|
dup_user.tchar_ptr = NULL;
|
|
|
|
/* Setup the identity's domain and length */
|
|
dup_domain.tchar_ptr = malloc(sizeof(TCHAR) * (domlen + 1));
|
|
if(!dup_domain.tchar_ptr) {
|
|
curlx_unicodefree(useranddomain.tchar_ptr);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
_tcsncpy(dup_domain.tchar_ptr, domain.tchar_ptr, domlen);
|
|
*(dup_domain.tchar_ptr + domlen) = TEXT('\0');
|
|
identity->Domain = dup_domain.tbyte_ptr;
|
|
identity->DomainLength = curlx_uztoul(domlen);
|
|
dup_domain.tchar_ptr = NULL;
|
|
|
|
curlx_unicodefree(useranddomain.tchar_ptr);
|
|
|
|
/* Setup the identity's password and length */
|
|
passwd.tchar_ptr = curlx_convert_UTF8_to_tchar((char *)passwdp);
|
|
if(!passwd.tchar_ptr)
|
|
return CURLE_OUT_OF_MEMORY;
|
|
dup_passwd.tchar_ptr = _tcsdup(passwd.tchar_ptr);
|
|
if(!dup_passwd.tchar_ptr) {
|
|
curlx_unicodefree(passwd.tchar_ptr);
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
identity->Password = dup_passwd.tbyte_ptr;
|
|
identity->PasswordLength = curlx_uztoul(_tcslen(dup_passwd.tchar_ptr));
|
|
dup_passwd.tchar_ptr = NULL;
|
|
|
|
curlx_unicodefree(passwd.tchar_ptr);
|
|
|
|
/* Setup the identity's flags */
|
|
identity->Flags = SECFLAG_WINNT_AUTH_IDENTITY;
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
/*
|
|
* Curl_sspi_free_identity()
|
|
*
|
|
* This is used to free the contents of a SSPI identifier structure.
|
|
*
|
|
* Parameters:
|
|
*
|
|
* identity [in/out] - The identity structure.
|
|
*/
|
|
void Curl_sspi_free_identity(SEC_WINNT_AUTH_IDENTITY *identity)
|
|
{
|
|
if(identity) {
|
|
Curl_safefree(identity->User);
|
|
Curl_safefree(identity->Password);
|
|
Curl_safefree(identity->Domain);
|
|
}
|
|
}
|
|
|
|
#endif /* USE_WINDOWS_SSPI */
|