README File for Intel Certificate Viewer and Intel Certificate Manager Sample Applications Release 1.0 November 1996 Contents 1. Introduction 2. System Recommendations 2.1. Hardware Recommendations 2.2. Software Recommendations 3. Installation 3.1. Applications 3.2. Source Code 4. Uninstallation 5. Additional Information 5.1. Installing ODBC* Drivers 5.2. Installing MFC 4.2 and MSVCRT libraries 5.3. Installing Intel Common Security Services Manager with Intel Add-ins 5.4. Installing Intel Cryptographic Services Module 6. Known Bugs 7. Troubleshooting 8. Software License Agreement 1. Introduction NOTICE: THIS SOFTWARE CONTAINS INTEL INTELLECTUAL PROPERTY AND MAY BE SUBJECT TO US EXPORT CONTROL LAWS. BE SURE TO REVIEW SECTION 8 OF THESE NOTES CAREFULLY FOR LICENSING AND OTHER INFORMATION PRIOR TO INSTALLATION. This document contains the release notes for the Intel Certificate Manager and Intel Certificate Viewer sample applications for use with the Intel Common Security Services Manager (CSSM) with Intel Add-ins Release 1.0 and the Intel Cryptographic Service Module (CSM) Release 1.0. This release includes executable files for the Intel Certificate Manager and Intel Certificate Viewer, as well as all source code files used to generate them. 2. System Recommendations 2.1. Hardware Recommendations 1.1 M of free disk space minimum Intel Pentium™ processor 2.2. Software Requirements Windows* 95 or Windows NT* (version 3.51 or greater) operating system ODBC driver for MS Access* Databases (version 3.40.27.28 or greater) Microsoft Foundation Classes 4.2 (mfc42.dll) Microsoft Visual C* runtime library (msvcrt.dll) Intel CSSM with Intel Add-ins, Release 1.0 Intel CSM, Release 1.0 3. Installation The installation program installs two executable files, one library file, and two supporting document files. In addition, a complete set of source code for these files is installed. During the nstallation process, the installer is prompted for a destination directory. This directory will be referred to as . 3.1. Applications The executable files are installed to , in a subdirectory titled Sample_Apps. The following files are installed to \Sample_Apps: certmngr.exe Executable file for the Intel Certificate Manager application certview.exe Executable file for the Intel Certificate Viewer application In addition, shortcut icons to these applications are created on the installer's system. On Windows 95 and Windows NT 4.0 operating systems, a new program group named CDSA is added to the installer's Program menu of the Start button. Shortcuts for both applications are added to this program group. On the WindowsNT 3.51 operating system, a new program group titled CDSA is created in the Program Manager. Icons for both applications are added to this program group. The library file is installed to the installer's system directory. In Windows 95, this directory can be found under the installer's windows directory, in the subdirectory titled system. In Windows NT, this directory can be found under the installer's windows, directory in the subdirectory titled system32. The following file is installed to the installer's system directory: opencert.dll Support library for certificate operations Supporting documents relating to this release are installed to the . The following files are installed to : readmeap.wri This document app_note.doc Notes on writing applications for use with Intel CSSM 3.2. Source Code The base directory for the installation of the source code files is \appsrc. Under this directory, four subdirectories are created, one for each of the executables, one for general include files, and one for the supporting library. The following files are installed to \appsrc\certview: CERTVDOC.CPP CERTVDOC.H CERTVIEW.CNT CERTVIEW.CPP CERTVIEW.H CERTVIEW.INI CERTVIEW.MAK CERTVIEW.ODL CERTVIEW.RC CERTVIEW.REG CERTVIEW.VCP CERTVVW.CPP CERTVVW.H CMDSTRNG.CPP CMDSTRNG.H GENKEY.CPP GENKEY.H GetPWD.cpp GetPWD.h KEYFIRST.CPP KEYFIRST.H MAINFRM.CPP MAINFRM.H PICTCTRL.CPP PICTCTRL.H README.TXT resource.h SAVEFIRS.CPP SAVEFIRS.H SELECTDB.CPP SELECTDB.H SetPWD.cpp SetPWD.h SIGCHAIN.CPP SIGCHAIN.H SIGNCERT.CPP SIGNCERT.H STDAFX.CPP STDAFX.H res\CERTIMAG.BMP res\CERTVDOC.ICO res\CERTVIEW.ICO res\CERTVIEW.RC2 res\TOOLBAR.BMP The following files are installed to \appsrc\certmngr: CERTCHAN.CPP CERTCHAN.H CERTDATA.CPP CERTDATA.H CERTDBVW.CPP CERTDBVW.H CERTLIST.CPP CERTLIST.H CERTMDOC.CPP CERTMDOC.H certmngr.cnt CERTMNGR.CPP Certmngr.GID CERTMNGR.H CERTMNGR.INI CERTMNGR.MAK CERTMNGR.ODL Certmngr.RC CERTMNGR.REG CERTMNGR.VCP CERTMVW.CPP CERTMVW.H certpkg.cpp certpkg.h DBLIST.CPP DBLIST.H GetPWD.cpp GetPWD.h IMAGES.BMP MAINFRM.CPP MAINFRM.H NewDBNam.cpp NewDBNam.h OPTNDLG.CPP OPTNDLG.H README.TXT resource.h SELECTDB.CPP SELECTDB.H SIGNCERT.CPP SIGNCERT.H STDAFX.CPP STDAFX.H STDAFX.obj res\CERTIMAG.BMP res\CERTMDOC.ICO res\CERTMNGR.ICO res\CERTMNGR.RC2 res\TOOLBAR.BMP The following files are installed to \appsrc\inc: certext.h certific.h certkey.h certsig.h certutil.h OCERTAPI.H certext.cpp certific.cpp certkey.cpp certsig.cpp certutil.c The following files are installed to \appsrc\opencert: IMAGES.BMP OCERTAPI.H OPENCERT.APS OPENCERT.CLW OPENCERT.CPP OPENCERT.DEF OPENCERT.H OPENCERT.MAK OPENCERT.RC OPENCERT.RC2 RESOURCE.H STDAFX.CPP STDAFX.H res\OPENCERT.RC2 4. Uninstallation This installation can be removed by clicking the Uninstall Sample Apps icon, found in the Intel CDSA 1.0 program group from the Start button or in the Program Manager. 5. Additional Information 5.1. Installing ODBC Drivers This release requires ODBC driver pack version 3.40.27.28 or greater. If a message was issued during installation concerning the ODBC drivers, compatible ODBC drivers will need to be installed. These drivers can be downloaded from: http://developer.intel.com/ial/security/download 5.2. Installing MFC 4.2 and MSVCRT This release requires two supporting binary libraries, mfc42.dll and msvcrt.dll. These libraries must be installed in the windows system directory. If a message was issued during installation concerning either of these libraries, one or both of these libraries will need to be installed or reinstalled. These libraries can be downloaded from: http://developer.intel.com/ial/security/download 5.3. Installing Intel CSSM with Intel Add-ins, Release 1.0 This release requires the Intel Common Security Services Manager with Intel Add-ins, Release 1.0, in order to install and operate properly. Intel CSSM with Intel Add-ins 1.0 can be downloaded from: http://developer.intel.com/ial/security/download 5.4. Installing Intel CSM, Release 1.0 This release requires the Intel Cryptographic Services Module, Release 1.0, in order to operate properly. Intel CSM 1.0 can be downloaded from: http://developer.intel.com/ial/security/doiwnload 6. Known Bugs Below is a listing of known bugs at the time of this release. To get technical support and/or report bugs, call 1-800-628-8686, or send email to IAL_Support@intel.com. Windows 95, OLE, and ODBC: Leads to application failure The Intel Data Storage Module (DSM), Release 1.0, uses ODBC to store digital certificates in a database. A potentially bad interaction between Windows 95 ODBC drivers and OLE has been observed during the testing of this release. Applications using the Intel DSM 1.0 and OLE sometimes become unresponsive to user input and can require that the system be powered down before normal operations can resume. This behavior is recurrent, but not reproducable. This behavior was eliminated when all OLE code was removed from sample applications. In particular, the Microsoft Foundation Classes's (MFC) implementation of an OLE automation server seems to be highly suspect in this interaction. This behavior has been seen in other non-CDSA applications that use MFC OLE classes and the Microsoft Access Driver (either through ODBC or DAO). Until corroboration can be obtained from Microsoft, it is recommended that CDSA application developers avoid using MFC OLE components, especially OLE automation. It is not known whether non-MFC implementations of OLE have the same problems. This problem with ODBC and OLE has been observed only in Windows 95. Windows NT 4.0 memory management: Leads to lack of virtual memory and, eventually, to application failure When the Intel Certificate Viewer is launched from within the Intel Certificate Manager, the virtual memory used is not always freed when the instance of the Viewer is closed. Over an extended period of use in this manner, the Intel Certificate Manager will give warnings about the lack of available virtual memory and eventually fail. Closing the Certificate Manager application and restarting it will free the virtual memory and prevent application failure. This behavior has only been observed in Windows NT 4.0. 7. Troubleshooting To get technical support and/or report bugs, call 1-800-628-8686, or send email to IAL_Support@intel.com. Default database passphrases The passphrases for the certificates in the example db are: Cert: Passphrase: Mtel mtel MESA mesa Our Bank our_bank Bob Smith bob Bob Smith bob Bob Smith bob Building and running debug versions The CSSM sample applications CERTMNGR.EXE and CERTVIEW.EXE both use OPENCERT.DLL to find certificates in a certificate database. The installer for CSSM applications installs the release version of these two applications and the release version of the opencert DLL. To build and run a debug version of either the certificate manager or viewer, a debug version of the opencert DLL must also be built and used in place of the release version. Likewise, when running the release version of the applications, you must use the release version of the opencert DLL. The symptom of a release/debug mismatch is that your application will crash as soon as it brings up the opencert dialog. Use of semicolons in certificate fields Semicolons should not be used in any of the six main fields that describe the subject and the issuer of a certificate. This includes the First Name, Last Name, Department, Company, City, and Country fields. Semicolons are used internally to the certificate viewer as delimiters between these fields. Adding semicolons to these fields will result in incorrect certificate generation. 8. Software License Agreement NOTE: This is "beta" software which is in preliminary release form and may not be fully functional. This software will expire on April 30, 1997, and will thereafter become inoperable. LICENSE: Intel grants you a non-exclusive, non-transferable, royalty-free, copyright license subject to the terms of this Agreement. You may copy the software and materials associated with this agreement ("Materials") onto a single computer for your personal noncommercial use. You may not make other copies or sell or transfer any part of the Materials to any other party. You will not reverse engineer, decompile, modify, or disassemble the Materials. Your license expires upon the software expiration date of April 30, 1997. OWNERSHIP AND COPYRIGHT OF MATERIALS: Title to the Materials and all copies thereof remains with Intel or its suppliers. The Materials are copyrighted and are protected by United States laws and international treaty provisions. You will not remove the copyright notice from the Materials. You agree to prevent any unauthorized copying of the Materials. Except as expressly provided herein, Intel does not grant any express or implied right to you under Intel patents, copyrights, trademarks, or trade secret information. LIMITATION OF LIABILITY: THE MATERIALS ARE PROVIDED "AS IS" WITHOUT ANY EXPRESS OR IMPLIED WARRANTY OF ANY KIND INCLUDING WARRANTIES OF MERCHANTABILITY, NONINFRINGEMENT OF THIRD-PARTY INTELLECTUAL PROPERTY, OR FITNESS FOR ANY PARTICULAR PURPOSE. IN NO EVENT SHALL INTEL OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION, LOSS OF INFORMATION) ARISING OUT OF THE USE OF OR INABILITY TO USE THE MATERIALS, EVEN IF INTEL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. BECAUSE SOME JURISDICTIONS PROHIBIT THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES, THE ABOVE LIMITATION MAY NOT APPLY TO YOU. U.S. GOVERNMENT RESTRICTED RIGHTS: The Materials and documentation are provided with "RESTRICTED RIGHTS." Use, duplication, or disclosure by the Government is subject to restrictions as set forth in FAR52.227-14 and DFAR252.227-7013 et seq. or its successor. Use of the Materials by the Government constitutes acknowledgment of Intel's proprietary rights in them. TERMINATION OF THIS LICENSE: Intel may terminate this license at any time if you are in breach of the terms of this Agreement. Upon termination, you will immediately destroy the Materials. ENTIRE AGREEMENT: This Agreement constitutes the entire agreement between the parties and supersedes any prior or contemporaneous oral or written agreements. APPLICABLE LAWS: Any claim arising under or relating to this Agreement shall be governed by the laws of the State of Delaware, without regard to conflict of laws principles. You may not export the Materials in violation of applicable export laws and regulations. Copyright © 1996, 1997 Intel Corporation. All rights reserved. *Other product and corporate names may be trademarks of other companies and are used only for explanation and to the owner's benefit, without intent to infringe.