archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/cryptoapi/pki/activex/xenroll/getsig.cpp

307 lines
9.1 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /////////////////////////////////////////////////////////////////////////////
  2. // FILE : getsig.cpp //
  3. // DESCRIPTION : Crypto API interface //
  4. // AUTHOR : //
  5. // HISTORY : //
  6. // Mar 5 1998 jeffspel //
  7. // //
  8. // Copyright (C) Microsoft Corporation, 1996 - 1999All Rights Reserved //
  9. /////////////////////////////////////////////////////////////////////////////
  11. #include <windows.h>
  12. #include <wincrypt.h>
  13. #include <stdlib.h>
  14. #include <stddef.h>
  15. #include <stdio.h>
  17. // designatred resource for in file signatures
  18. #define CRYPT_SIG_RESOURCE_NUMBER "#666"
  20. /*++
  22. GetCryptSigResourcePtr:
  24. Given hInst, allocs and returns pointers to signature pulled from
  25. resource
  27. Arguments:
  29. IN hInst - Handle to the loaded file
  30. OUT ppbRsrcSig - Signature from the resource
  31. OUT pcbRsrcSig- Length of the signature from the resource
  33. Return Value:
  35. TRUE - Success
  36. FALSE - Error
  38. --*/
  39. BOOL GetCryptSigResourcePtr(
  40. HMODULE hInst,
  41. BYTE **ppbRsrcSig,
  42. DWORD *pcbRsrcSig
  43. )
  44. {
  45. HRSRC hRsrc;
  46. BOOL fRet = FALSE;
  48. // Nab resource handle for our signature
  49. if (NULL == (hRsrc = FindResource(hInst, CRYPT_SIG_RESOURCE_NUMBER,
  50. RT_RCDATA)))
  51. goto Ret;
  53. // get a pointer to the actual signature data
  54. if (NULL == (*ppbRsrcSig = (PBYTE)LoadResource(hInst, hRsrc)))
  55. goto Ret;
  57. // determine the size of the resource
  58. if (0 == (*pcbRsrcSig = SizeofResource(hInst, hRsrc)))
  59. goto Ret;
  61. fRet = TRUE;
  62. Ret:
  63. return fRet;
  64. }
  66. /*++
  68. GetCryptSignatureResource:
  70. Gets the signature from the file resource.
  72. Arguments:
  74. IN szFile - Name of the file to get the signature from
  75. OUT ppbSignature - Signature of the specified provider
  76. OUT pcbSignature- Length of the signature of the specified provider
  78. Return Value:
  80. TRUE - Success
  81. FALSE - Error
  83. --*/
  84. BOOL GetCryptSignatureResource(
  85. IN LPCSTR pszFile,
  86. OUT BYTE **ppbSig,
  87. OUT DWORD *pcbSig
  88. )
  89. {
  90. HMODULE hInst = NULL;
  91. BYTE *pbSig;
  92. DWORD cbTemp = 0;
  93. LPSTR pszDest = NULL;
  94. DWORD cbSig;
  95. BOOL fRet = FALSE;
  97. // expand the path if necessary
  98. if (0 == (cbTemp = ExpandEnvironmentStrings(pszFile, (CHAR *) &pszDest,
  99. cbTemp)))
  100. {
  101. goto Ret;
  102. }
  103. if (NULL == (pszDest = (LPSTR)LocalAlloc(LMEM_ZEROINIT,
  104. (UINT)cbTemp)))
  105. {
  106. goto Ret;
  107. }
  108. if (0 == (cbTemp = ExpandEnvironmentStrings(pszFile, pszDest,
  109. cbTemp)))
  110. {
  111. goto Ret;
  112. }
  114. // Load the file as a datafile
  115. if (NULL == (hInst = LoadLibraryEx(pszDest, NULL, LOAD_LIBRARY_AS_DATAFILE)))
  116. {
  117. goto Ret;
  118. }
  119. if (!GetCryptSigResourcePtr(hInst, &pbSig, &cbSig))
  120. {
  121. goto Ret;
  122. }
  124. *pcbSig = cbSig - (sizeof(DWORD) * 2);
  125. if (NULL == (*ppbSig = (BYTE*)LocalAlloc(LMEM_ZEROINIT, *pcbSig)))
  126. goto Ret;
  128. memcpy(*ppbSig, pbSig + (sizeof(DWORD) * 2), *pcbSig);
  130. fRet = TRUE;
  131. Ret:
  132. if (pszDest)
  133. LocalFree(pszDest);
  134. if (hInst)
  135. FreeLibrary(hInst);
  136. return fRet;
  137. }
  139. #define PROV_INITIAL_REG_PATH "Software\\Microsoft\\Cryptography\\Defaults\\Provider\\"
  141. /*++
  143. CheckForSignatureInRegistry:
  145. Check if signature is in the registry, if so then get it
  146. if it isn't then get the filename for the provider
  148. Arguments:
  150. IN hProv - Handle to the provider to get the signature of
  151. OUT ppbSignature - Signature of the specified provider if in registry
  152. OUT pcbSignature - Length of the signature of the specified provider
  153. if in the registry
  154. OUT pszProvFile - Provider file name if signature is not in registry
  155. OUT pfSigInReg - TRUE if signature is in the registry
  157. Return Value:
  159. TRUE - Success
  160. FALSE - Error
  162. --*/
  163. BOOL CheckForSignatureInRegistry(
  164. IN HCRYPTPROV hProv,
  165. OUT BYTE **ppbSignature,
  166. OUT DWORD *pcbSignature,
  167. OUT LPSTR *ppszProvFile,
  168. OUT BOOL *pfSigInReg
  169. )
  170. {
  171. HKEY hRegKey = 0;
  172. LPSTR pszProvName = NULL;
  173. DWORD cbProvName;
  174. LPSTR pszFullRegPath = NULL;
  175. DWORD cbFullRegPath;
  176. DWORD dwType;
  177. DWORD cbData;
  178. BOOL fRet = FALSE;
  180. *pfSigInReg = TRUE;
  182. // get the provider name
  183. if (!CryptGetProvParam(hProv, PP_NAME, NULL, &cbProvName, 0))
  184. goto Ret;
  185. if (NULL == (pszProvName = (LPSTR)LocalAlloc(LMEM_ZEROINIT, cbProvName)))
  186. goto Ret;
  187. if (!CryptGetProvParam(hProv, PP_NAME, (BYTE*)pszProvName,
  188. &cbProvName, 0))
  189. {
  190. goto Ret;
  191. }
  193. // open the registry key of the provider
  194. cbFullRegPath = sizeof(PROV_INITIAL_REG_PATH) + (DWORD)strlen(pszProvName) + 1;
  195. if (NULL == (pszFullRegPath = (LPSTR)LocalAlloc(LMEM_ZEROINIT,
  196. cbFullRegPath)))
  197. {
  198. goto Ret;
  199. }
  200. strcpy(pszFullRegPath, PROV_INITIAL_REG_PATH);
  201. strcat(pszFullRegPath, pszProvName);
  202. if (ERROR_SUCCESS != RegOpenKeyEx(HKEY_LOCAL_MACHINE,
  203. pszFullRegPath, 0,
  204. KEY_READ, &hRegKey))
  205. goto Ret;
  207. // Check if SigInFile entry is there
  208. // NOTE : this may change in the next couple weeks
  209. if (ERROR_SUCCESS == RegQueryValueEx(hRegKey, "SigInFile", NULL, &dwType,
  210. NULL, &cbData))
  211. {
  212. // get the file name
  213. if (ERROR_SUCCESS != RegQueryValueEx(hRegKey, "Image Path",
  214. NULL, &dwType,
  215. NULL, &cbData))
  216. goto Ret;
  217. if (NULL == (*ppszProvFile = (LPSTR)LocalAlloc(LMEM_ZEROINIT, cbData)))
  218. goto Ret;
  219. if (ERROR_SUCCESS != RegQueryValueEx(hRegKey, "Image Path",
  220. NULL, &dwType,
  221. (BYTE*)*ppszProvFile, &cbData))
  222. goto Ret;
  224. *pfSigInReg = FALSE;
  225. }
  226. else
  227. {
  228. // get signature from registry
  229. if (ERROR_SUCCESS != RegQueryValueEx(hRegKey, "Signature",
  230. NULL, &dwType,
  231. NULL, pcbSignature))
  232. goto Ret;
  233. if (NULL == (*ppbSignature = (BYTE*)LocalAlloc(LMEM_ZEROINIT,
  234. *pcbSignature)))
  235. goto Ret;
  236. if (ERROR_SUCCESS != RegQueryValueEx(hRegKey, "Signature",
  237. NULL, &dwType,
  238. *ppbSignature, pcbSignature))
  239. goto Ret;
  240. }
  242. fRet = TRUE;
  243. Ret:
  244. if (pszProvName)
  245. LocalFree(pszProvName);
  246. if (pszFullRegPath)
  247. LocalFree(pszFullRegPath);
  248. if (hRegKey)
  249. RegCloseKey(hRegKey);
  250. return fRet;
  251. }
  253. /*++
  255. GetSignatureFromHPROV:
  257. Gets the signature of a provider associated with the passed in
  258. HCRYPTPROV.
  260. Arguments:
  262. IN hProv - Handle to the provider to get the signature of
  263. OUT ppbSignature - Signature of the specified provider
  264. OUT pcbSignature- Length of the signature of the specified provider
  266. Return Value:
  268. TRUE - Success
  269. FALSE - Error
  271. --*/
  272. BOOL GetSignatureFromHPROV(
  273. IN HCRYPTPROV hProv,
  274. OUT BYTE **ppbSignature,
  275. DWORD *pcbSignature
  276. )
  277. {
  278. LPSTR pszProvFile = NULL;
  279. BOOL fSigInReg;
  280. BOOL fRet = FALSE;
  282. // Check if signature is in the registry, if so then get it
  283. // if it isn't then get the filename for the provider
  284. if (!CheckForSignatureInRegistry(hProv, ppbSignature, pcbSignature,
  285. &pszProvFile, &fSigInReg))
  286. goto Ret;
  288. if (!fSigInReg)
  289. {
  290. //
  291. // Get the signature from the resource in the file
  292. //
  294. if (!GetCryptSignatureResource(pszProvFile, ppbSignature,
  295. pcbSignature))
  296. {
  297. goto Ret;
  298. }
  299. }
  301. fRet = TRUE;
  302. Ret:
  303. if (pszProvFile)
  304. LocalFree(pszProvFile);
  305. return fRet;
  306. }