archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/base/win32/fusion/tools/buildtool/hasheditor.cpp

400 lines
9.8 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. #include "stdinc.h"
  3. #define SHA1_HASH_SIZE_BYTES ( 160 / 8 )
  4. #define HASHFLAG_AUTODETECT ( 0x0001 )
  5. #define HASHFLAG_STRAIGHT_HASH ( 0x0002 )
  6. #define HASHFLAG_PROCESS_IMAGE ( 0x0004 )
  9. const wstring XML_ATTRIBUTE_NAME = (L"name");
  11. HRESULT FreshenFileNodeHashes( PVOID, int argc, WCHAR *argv[] );
  12. HRESULT ProcessSingleFileNode( ISXSManifestPtr pDocument, IXMLDOMNode *pDocNode );
  14. BOOL
  15. SxspCreateFileHash(
  16. DWORD dwFlags,
  17. ALG_ID PreferredAlgorithm,
  18. wstring pwsFileName,
  19. wstring &HashBytes
  20. );
  22. const wstring p_bstHashAlgName = (L"SHA1");
  24. wstring
  25. ConvertHashToString( std::vector<BYTE> Hash )
  26. {
  27. wstringstream output;
  28. output << hex;
  29. output.fill(L'0');
  30. output.width(2);
  32. for ( std::vector<BYTE>::const_iterator it = Hash.begin(); it != Hash.end(); it++ )
  33. {
  34. output << *it;
  35. }
  37. return output.str();
  38. }
  41. HRESULT
  42. ProcessSingleFileNode(
  43. ISXSManifestPtr Document,
  44. ::ATL::CComPtr<IXMLDOMNode> DocNode
  45. )
  46. {
  47. //
  48. // Here, we're dealing with a single file. So, we have to go and see if
  49. // there's a Verification subtag of this file, and process it properly.
  50. //
  52. wstring bstFileName;
  53. wstring bstNamespace, bstPrefix;
  54. ::ATL::CComPtr<IXMLDOMNamedNodeMap> Attributes;
  55. ::ATL::CComPtr<IXMLDOMNode> Dump;
  56. HRESULT hr;
  57. wstring Hash;
  59. //
  60. // So we get the attributes of this node, which should contain the file
  61. // name and hash information.
  62. //
  63. if ( FAILED( hr = DocNode->get_attributes( &Attributes ) ) )
  64. goto lblGetOut;
  66. //
  67. // Now just the values out
  68. //
  69. SxspSimplifyGetAttribute( Attributes, XML_ATTRIBUTE_NAME, bstFileName, ASM_NAMESPACE_URI );
  71. //
  72. // Now we use this to gather information about the file, and to fix
  73. // the values in the hash entry if need be.
  74. //
  75. if (::SxspCreateFileHash(HASHFLAG_AUTODETECT, CALG_SHA1, bstFileName, Hash))
  76. {
  77. //
  78. // Write the data back into the node, don't change the file name at all
  79. //
  80. ::ATL::CComPtr<IXMLDOMNode> Dump;
  81. Attributes->removeNamedItem( _bstr_t(L"hash"), &Dump );
  82. Attributes->removeNamedItem( _bstr_t(L"hashalg"), &Dump );
  83. SxspSimplifyPutAttribute( Document, Attributes, L"hash", Hash );
  84. SxspSimplifyPutAttribute( Document, Attributes, L"hashalg", p_bstHashAlgName );
  85. {
  86. wstringstream ss;
  87. ss << bstFileName.c_str() << wstring(L" hashed to ") << Hash.c_str();
  88. ReportError( ErrorSpew, ss );
  89. }
  90. }
  91. else
  92. {
  93. wstringstream ss;
  94. ss << wstring(L"Unable to create hash for file ") << bstFileName.c_str();
  95. ReportError( ErrorWarning, ss );
  96. goto lblGetOut;
  97. }
  99. lblGetOut:
  100. return hr;
  102. }
  104. wstring AssemblyFileXSLPattern = (L"/assembly/file");
  106. bool UpdateManifestHashes( const CPostbuildProcessListEntry& item )
  107. {
  108. ISXSManifestPtr document;
  109. ::ATL::CComPtr<IXMLDOMElement> rootElement;
  110. ::ATL::CComPtr<IXMLDOMNodeList> fileTags;
  111. ::ATL::CComPtr<IXMLDOMNode> fileNode;
  112. HRESULT hr = S_OK;
  114. if ( FAILED(hr = ConstructXMLDOMObject( item.getManifestFullPath(), document )) )
  115. {
  116. wstringstream ss;
  117. ss << wstring(L"Failed opening the manifest ") << item.getManifestFullPath()
  118. << wstring(L" for input under the DOM.");
  119. ReportError( ErrorFatal, ss );
  120. return false;
  121. }
  123. if ( FAILED(document->get_documentElement( &rootElement ) ) )
  124. {
  125. wstringstream ss;
  126. ss << wstring(L"The manifest ") << item.getManifestFullPath() << wstring(L" may be malformed,")
  127. << wstring(L" as we were unable to load the root element!");
  128. ReportError( ErrorFatal, ss );
  129. return false;
  130. }
  132. //
  133. // Now, let's select all the 'file' nodes under 'assembly' tags:
  134. //
  135. hr = document->selectNodes( _bstr_t(AssemblyFileXSLPattern.c_str()), &fileTags );
  136. if ( FAILED(hr) )
  137. {
  138. wstringstream ss;
  139. ss << wstring(L"Unable to select the file nodes under this assembly tag, can't proceed.");
  140. ReportError( ErrorFatal, ss );
  141. }
  143. long length;
  144. fileTags->get_length( &length );
  146. //
  147. // And for each, process it
  148. //
  149. fileTags->reset();
  150. while ( SUCCEEDED(fileTags->nextNode( &fileNode ) ) )
  151. {
  152. //
  153. // All done
  154. //
  155. if ( fileNode == NULL )
  156. {
  157. break;
  158. }
  160. SetCurrentDirectoryW( item.getManifestPathOnly().c_str() );
  161. ProcessSingleFileNode( document, fileNode );
  162. }
  164. if ( FAILED( hr = document->save( _variant_t(_bstr_t(item.getManifestFullPath().c_str())) ) ) )
  165. {
  166. wstringstream ss;
  167. ss << wstring(L"Unable to save manifest ") << item.getManifestFullPath()
  168. << wstring(L" back after updating hashes! Changes will be lost.");
  169. ReportError( ErrorFatal, ss );
  170. }
  172. return true;
  173. }
  176. //
  177. // HUGE HACKHACK
  178. //
  179. // There has to be some nice way of including this code (which otherwise lives
  180. // in hashfile.cpp in the fusion\dll\whistler tree) other than just glomping
  181. // it here.
  182. //
  184. BOOL
  185. ImageDigesterFunc(
  186. DIGEST_HANDLE hSomething,
  187. PBYTE pbDataBlock,
  188. DWORD dwLength
  189. )
  190. {
  191. return CryptHashData( (HCRYPTHASH)hSomething, pbDataBlock, dwLength, 0 );
  192. }
  195. BOOL
  196. pSimpleHashRoutine(
  197. HCRYPTHASH hHash,
  198. HANDLE hFile
  199. )
  200. {
  201. static const DWORD FILE_BUFFER = 64 * 1024;
  202. BYTE pbBuffer[FILE_BUFFER];
  203. DWORD dwDataRead;
  204. BOOL b = FALSE;
  205. BOOL bKeepReading = TRUE;
  207. while ( bKeepReading )
  208. {
  209. b = ReadFile( hFile, pbBuffer, FILE_BUFFER, &dwDataRead, NULL );
  210. if ( b && ( dwDataRead == 0 ) )
  211. {
  212. bKeepReading = FALSE;
  213. b = TRUE;
  214. continue;
  215. }
  216. else if ( !b )
  217. {
  218. WCHAR ws[8192];
  219. FormatMessageW(
  220. FORMAT_MESSAGE_FROM_SYSTEM,
  221. NULL,
  222. ::GetLastError(),
  223. MAKELANGID( LANG_NEUTRAL, SUBLANG_DEFAULT ),
  224. ws,
  225. 0,
  226. NULL
  227. );
  228. bKeepReading = FALSE;
  229. continue;
  230. }
  232. if ( CryptHashData( hHash, pbBuffer, dwDataRead, 0 ) == 0 )
  233. {
  234. b = FALSE;
  235. break;
  236. }
  237. }
  239. return b;
  240. }
  243. BOOL
  244. pImageHashRoutine(
  245. HCRYPTHASH hHash,
  246. HANDLE hFile
  247. )
  248. {
  249. return ImageGetDigestStream(
  250. hFile,
  251. CERT_PE_IMAGE_DIGEST_ALL_IMPORT_INFO,
  252. ImageDigesterFunc,
  253. (DIGEST_HANDLE)hHash
  254. );
  255. }
  257. BOOL
  258. SxspCreateFileHash(DWORD dwFlags,
  259. ALG_ID PreferredAlgorithm,
  260. wstring pwsFileName,
  261. wstring &HashBytes
  262. )
  263. {
  264. BOOL fSuccessCode = FALSE;
  265. HCRYPTPROV hProvider;
  266. HCRYPTHASH hCurrentHash;
  267. HANDLE hFile;
  269. // Initialization
  270. hProvider = (HCRYPTPROV)INVALID_HANDLE_VALUE;
  271. hCurrentHash = (HCRYPTHASH)INVALID_HANDLE_VALUE;
  272. hFile = INVALID_HANDLE_VALUE;
  274. //
  275. // First try and open the file. No sense in doing anything else if we
  276. // can't get to the data to start with. Use a very friendly set of
  277. // rights to check the file. Future users might want to be sure that
  278. // you're in the right security context before doing this - system
  279. // level to check system files, etc.
  280. //
  281. hFile = CreateFileW(
  282. pwsFileName.c_str(),
  283. GENERIC_READ,
  284. FILE_SHARE_READ,
  285. NULL,
  286. OPEN_EXISTING,
  287. FILE_FLAG_SEQUENTIAL_SCAN,
  288. NULL
  289. );
  291. if ( hFile == INVALID_HANDLE_VALUE ) {
  292. return FALSE;
  293. }
  295. //
  296. // Create a cryptological provider that supports everything RSA needs.
  297. //
  298. if (!CryptAcquireContextW(&hProvider, NULL, NULL, PROV_RSA_FULL, CRYPT_VERIFYCONTEXT))
  299. goto lblCleanup;
  301. //
  302. // We'll be using SHA1 for the file hash
  303. //
  304. if ( !CryptCreateHash( hProvider, PreferredAlgorithm, 0, 0, &hCurrentHash ) )
  305. goto lblCleanup;
  308. //
  309. // So first try hashing it via the image, and if that fails, try the
  310. // normal file-reading hash routine instead.
  311. //
  312. if ( dwFlags & HASHFLAG_AUTODETECT )
  313. {
  314. if ( !pImageHashRoutine( hCurrentHash, hFile ) )
  315. {
  316. //
  317. // Oops, the image-hasher wasn't happy. Let's try the straight
  318. // hasher instead.
  319. //
  320. if ( !pSimpleHashRoutine( hCurrentHash, hFile ) )
  321. {
  322. goto lblCleanup;
  323. }
  324. else
  325. {
  326. fSuccessCode = TRUE;
  327. }
  328. }
  329. else
  330. {
  331. fSuccessCode = TRUE;
  332. }
  334. }
  335. else if ( dwFlags & HASHFLAG_STRAIGHT_HASH )
  336. {
  337. fSuccessCode = pSimpleHashRoutine( hCurrentHash, hFile );
  338. }
  339. else if ( dwFlags & HASHFLAG_PROCESS_IMAGE )
  340. {
  341. fSuccessCode = pImageHashRoutine( hCurrentHash, hFile );
  342. }
  343. else
  344. {
  345. ::SetLastError( ERROR_INVALID_PARAMETER );
  346. goto lblCleanup;
  347. }
  350. //
  351. // We know the buffer is the right size, so we just call down to the hash parameter
  352. // getter, which will be smart and bop out (setting the pdwDestinationSize parameter)
  353. // if the user passed an invalid parameter.
  354. //
  355. if ( fSuccessCode )
  356. {
  357. wstringstream ss;
  358. DWORD dwSize, dwDump;
  359. BYTE *pb = NULL;
  360. fSuccessCode = CryptGetHashParam( hCurrentHash, HP_HASHSIZE, (BYTE*)&dwSize, &(dwDump=sizeof(dwSize)), 0 );
  361. if ( !fSuccessCode || ( pb = new BYTE[dwSize] ) == NULL ) {
  362. goto lblCleanup;
  363. }
  364. fSuccessCode = CryptGetHashParam( hCurrentHash, HP_HASHVAL, pb, &dwSize, 0);
  365. if ( !fSuccessCode ) {
  366. delete[] pb;
  367. goto lblCleanup;
  368. }
  371. for ( dwDump = 0; dwDump < dwSize; dwDump++ ) {
  372. ss << hex;
  373. ss.fill('0');
  374. ss.width(2);
  375. ss << (unsigned int)pb[dwDump];
  376. }
  378. HashBytes = ss.str();
  379. delete[] pb;
  380. }
  383. lblCleanup:
  384. DWORD dwLastError = ::GetLastError();
  385. if ( hFile != INVALID_HANDLE_VALUE )
  386. {
  387. CloseHandle( hFile );
  388. }
  390. //
  391. // We just destroy the hash and the crypto context blindly. If they were
  392. // invalid before, the release and destroy would just return with a failure,
  393. // not an exception or fault.
  394. //
  395. CryptDestroyHash( hCurrentHash );
  396. CryptReleaseContext( hProvider, 0 );
  398. ::SetLastError( dwLastError );
  399. return fSuccessCode;
  400. }