archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/termsrv/license/lkplite/lkplite.cpp

788 lines
19 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Copyright (c) 1997-2000 Microsoft Corporation
  4. //
  5. // File:
  6. //
  7. // Contents:
  8. //
  9. // History:
  10. //
  11. //---------------------------------------------------------------------------
  13. #ifndef _WIN32_WINNT
  14. #define _WIN32_WINNT 0x0400
  15. #endif
  16. #include <windows.h>
  17. #include <wincrypt.h>
  18. #include <stdio.h>
  19. #include <tchar.h>
  20. #include "Shortsig.h"
  21. #include "base24.h"
  22. #include "lkplite.h"
  23. #include "rc4.h"
  24. #include "md5.h"
  26. //internal functions
  27. #define LKPLITE_PID_LEN _tcslen(_TEXT("12345-123-1234567-12345"))
  29. #define SIGNATURE_LEN 104
  31. #define LKPLITE_PID_FIRSTCOPYOFFSET 10
  32. #define LKPLITE_PID_SECONDCOPYOFFSET 18
  33. #define LKPLITE_SPK_BITSTUFF 0x00000000000000FF
  35. #define LKPLITE_RAWDATALEN 20
  37. DWORD ValidatePID ( LPTSTR lpszPID );
  38. __int64 GetSPKIDFromPID ( LPTSTR lpszPID );
  41. BYTE abLKPPublicKey0[] =
  42. {
  43. 0x6c, 0x01, 0x00, 0x00, 0x07, 0x00, 0x00, 0x00, 0xb7, 0x1e,
  44. 0x79, 0x64, 0xae, 0xdf, 0x30, 0x01, 0x0c, 0x00, 0x00, 0x00,
  45. 0x23, 0x00, 0x00, 0x00, 0x45, 0x00, 0x00, 0x00, 0xf1, 0x89,
  46. 0x3e, 0xb9, 0x7f, 0x5e, 0xc9, 0x40, 0x4f, 0x0d, 0x64, 0x2c,
  47. 0x9e, 0x1c, 0x5b, 0xd7, 0x43, 0xb3, 0x51, 0x59, 0x27, 0x81,
  48. 0xfb, 0x16, 0x86, 0xa7, 0xb5, 0x9d, 0x89, 0xdb, 0x52, 0xf6,
  49. 0x3e, 0x95, 0xc9, 0x4c, 0x7b, 0x34, 0x54, 0x01, 0xab, 0x3c,
  50. 0x10, 0xb9, 0x35, 0x40, 0x64, 0xba, 0x01, 0x00, 0x00, 0x00,
  51. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  52. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  53. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  54. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  55. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  56. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  57. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  58. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  59. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  60. 0x00, 0x00, 0x39, 0x4d, 0x13, 0xde, 0xe2, 0xc9, 0x68, 0xb5,
  61. 0xef, 0x45, 0x67, 0x94, 0xde, 0x01, 0xdd, 0x35, 0x56, 0x30,
  62. 0x7b, 0xcd, 0xbc, 0xd5, 0x88, 0x77, 0xee, 0xf9, 0x5d, 0xa1,
  63. 0xaf, 0xab, 0xc2, 0xdf, 0xf8, 0x6c, 0x8c, 0x3d, 0xce, 0x4d,
  64. 0xab, 0x27, 0x6b, 0xcc, 0x64, 0x77, 0x8b, 0xbd, 0x71, 0x7b,
  65. 0xdd, 0x93, 0x05, 0xe5, 0xeb, 0xf1, 0xe0, 0x7c, 0xe8, 0x35,
  66. 0x0d, 0x4e, 0x31, 0x22, 0x23, 0x42, 0xaf, 0x33, 0x9f, 0x72,
  67. 0xda, 0xc9, 0x77, 0xa6, 0xe9, 0xcf, 0xac, 0x26, 0xe0, 0xb7,
  68. 0x6e, 0x50, 0xbb, 0x32, 0x71, 0x35, 0x32, 0xc2, 0x41, 0xdf,
  69. 0x76, 0x24, 0xbe, 0xdf, 0x4a, 0x90, 0xff, 0x2e, 0xdc, 0x16,
  70. 0x02, 0x6c, 0xd0, 0x85, 0xf5, 0xdd, 0xf0, 0x0d, 0xe6, 0x01,
  71. 0x75, 0x05, 0x75, 0x87, 0x3b, 0xb6, 0xc8, 0x51, 0x7f, 0x66,
  72. 0xcd, 0x2b, 0x52, 0x0b, 0x09, 0xec, 0xa5, 0x4a, 0xdf, 0x2b,
  73. 0xf0, 0xbd, 0x0e, 0x83, 0x2f, 0xa9, 0xbb, 0xde, 0x43, 0x6e,
  74. 0x4f, 0x38, 0x13, 0xa3, 0x70, 0x2e, 0x5e, 0x7f, 0xf2, 0x84,
  75. 0xaa, 0xfe, 0x12, 0x7d, 0x4e, 0x17, 0xad, 0x7a, 0x3c, 0x05,
  76. 0x40, 0x92, 0xf8, 0x34, 0x97, 0x43, 0x88, 0x93, 0xf1, 0x78,
  77. 0xe4, 0xe9, 0xe6, 0x4c, 0x2d, 0xf9, 0xcf, 0xf8, 0xb5, 0x34,
  78. 0x8c, 0x98, 0x56, 0x8d, 0x89, 0x9d, 0x34, 0xf5, 0xfa, 0xb6,
  79. 0x78, 0xfa, 0x5a, 0x85
  80. };
  84. BYTE abLSIDPublicKey0[] =
  85. {
  86. 0x6c, 0x01, 0x00, 0x00, 0x07, 0x00, 0x00, 0x00, 0x83, 0xa1,
  87. 0xc9, 0xb1, 0xae, 0xdf, 0x30, 0x01, 0x0c, 0x00, 0x00, 0x00,
  88. 0x23, 0x00, 0x00, 0x00, 0x45, 0x00, 0x00, 0x00, 0x31, 0x07,
  89. 0xcb, 0x01, 0x1e, 0x92, 0x74, 0x0b, 0x1e, 0x2b, 0x2d, 0x07,
  90. 0x68, 0xc5, 0xff, 0x21, 0xc5, 0x5c, 0x32, 0xb6, 0x44, 0xdb,
  91. 0x02, 0x09, 0xde, 0x2e, 0xc6, 0x6d, 0xb5, 0xc4, 0xd4, 0x44,
  92. 0x6f, 0xc7, 0x0d, 0xba, 0x4e, 0xe5, 0x0b, 0x0f, 0x92, 0xb1,
  93. 0x22, 0x25, 0xab, 0xdd, 0x86, 0x8d, 0x01, 0x00, 0x00, 0x00,
  94. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  95. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  96. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  97. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  98. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  99. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  100. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  101. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  102. 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
  103. 0x00, 0x00, 0xdb, 0x86, 0x67, 0xfb, 0x5c, 0x8c, 0x53, 0x72,
  104. 0x0e, 0x49, 0x94, 0x97, 0x94, 0x15, 0xfc, 0x25, 0x0d, 0xdd,
  105. 0xa1, 0xe4, 0xa0, 0xf0, 0xc3, 0x17, 0xf6, 0x98, 0xce, 0x9c,
  106. 0x07, 0x31, 0x10, 0xb7, 0x73, 0x16, 0x4f, 0x91, 0xbb, 0xfa,
  107. 0x01, 0xde, 0x9e, 0x79, 0xf2, 0x66, 0x58, 0xf5, 0x77, 0x45,
  108. 0x55, 0xf0, 0xa8, 0xb8, 0x0c, 0x2c, 0x0f, 0x15, 0xc7, 0x28,
  109. 0xce, 0x81, 0x69, 0x4e, 0x55, 0xd5, 0xf3, 0x89, 0xdc, 0x11,
  110. 0x34, 0x09, 0x40, 0x94, 0x5c, 0xaa, 0xd0, 0x6a, 0x5a, 0x06,
  111. 0x8e, 0x62, 0x6e, 0x5f, 0x7e, 0x35, 0x44, 0x5f, 0x06, 0xb2,
  112. 0xa5, 0xe8, 0x3c, 0x1b, 0x4d, 0xb8, 0xc6, 0x5e, 0xe0, 0xe4,
  113. 0xa6, 0xac, 0x80, 0xef, 0x8c, 0x99, 0x23, 0x06, 0x70, 0xd6,
  114. 0x6c, 0x62, 0x01, 0xb6, 0xde, 0x3b, 0x0c, 0x5e, 0x2a, 0x96,
  115. 0x9e, 0x63, 0x58, 0x9f, 0xdf, 0xf1, 0xaf, 0x5d, 0x02, 0xb6,
  116. 0x84, 0xc1, 0x52, 0x1f, 0xbc, 0xb8, 0x0c, 0x72, 0x3c, 0x1b,
  117. 0xb4, 0x58, 0x51, 0xab, 0x73, 0x19, 0x65, 0xbb, 0xc6, 0xb4,
  118. 0xb2, 0x53, 0xeb, 0x17, 0x4c, 0x42, 0xc9, 0xc2, 0xcd, 0x7f,
  119. 0x88, 0x0f, 0xb8, 0xaa, 0xc4, 0xca, 0xaa, 0xe0, 0xa0, 0xe1,
  120. 0x5f, 0xdb, 0x6e, 0xb8, 0x26, 0xf9, 0x8d, 0x4a, 0xe7, 0xdb,
  121. 0x1e, 0xdc, 0xc7, 0xdf, 0xf0, 0x35, 0x88, 0xec, 0x1d, 0xbe,
  122. 0xab, 0xa4, 0x8d, 0x39
  123. };
  126. DWORD LKPLiteVerifySPK (
  127. LPTSTR pszPID, //PID to validate against
  128. LPTSTR pszSPK,
  129. DWORD * pdwVerifyResult
  130. )
  131. {
  132. DWORD dwRetCode = ERROR_SUCCESS;
  133. PBYTE pbDecodedSPK = NULL;
  134. __int64 n64SPK = 0;
  135. __int64 n64SPKPID =0;
  136. __int64 n64SPKVerifyPID =0;
  138. //common validations
  139. if ( NULL == pszPID || NULL == pszSPK ||
  140. NULL == pdwVerifyResult )
  141. {
  142. dwRetCode = ERROR_INVALID_PARAMETER;
  143. goto done;
  144. }
  146. if ((dwRetCode = ValidatePID ( pszPID ))!= ERROR_SUCCESS)
  147. {
  148. goto done;
  149. }
  151. //now decode the stuff comming in
  152. //base24 expects a string so we need to do this conversion
  155. dwRetCode = B24DecodeMSID(pszSPK , &pbDecodedSPK);
  156. if ( ERROR_SUCCESS != dwRetCode )
  157. {
  158. goto done;
  159. }
  162. dwRetCode = LKPLiteDecryptUsingPID(pszPID,
  163. pbDecodedSPK,
  164. LKPLITE_RAWDATALEN);
  165. if (dwRetCode != ERROR_SUCCESS)
  166. {
  167. goto done;
  168. }
  170. //Call function to verify signature on SPK
  171. dwRetCode = CryptVerifySig(7, pbDecodedSPK, sizeof(abLSIDPublicKey0),
  172. abLSIDPublicKey0, SIGNATURE_LEN, pbDecodedSPK+7);
  173. if (dwRetCode != SS_OK)
  174. {
  175. *pdwVerifyResult = LKPLITE_SPK_INVALID;
  176. goto done;
  177. }
  180. memcpy ( ((BYTE *) &n64SPK) + 1, pbDecodedSPK, sizeof(n64SPK) -1 );
  182. //now get the contents of SPK and then see if it matches with
  183. //the PID passed in
  184. //extract bits 20 - 56 and then move them right 8 bits
  185. n64SPKPID = n64SPK & LKPLITE_SPK_PID_MASK;
  186. n64SPKPID >>= 8;
  187. n64SPKVerifyPID = GetSPKIDFromPID ( pszPID );
  188. if ( n64SPKVerifyPID != n64SPKPID )
  189. {
  190. *pdwVerifyResult = LKPLITE_SPK_INVALID;
  191. }
  192. else
  193. {
  194. *pdwVerifyResult = LKPLITE_SPK_VALID;
  195. }
  197. done:
  198. if ( pbDecodedSPK )
  199. HeapFree (GetProcessHeap(),0,pbDecodedSPK );
  200. return dwRetCode;
  201. }
  204. //This function has to verify the LKP by decrypting it
  205. //and matching the signature
  206. DWORD LKPLiteVerifyLKP (
  207. LPTSTR lpszPID, //PID for verifying the LKP lite blob
  208. LPTSTR pszLKPLite, //B24 encoded LKP
  209. DWORD * pdwVerifyResult
  210. )
  211. {
  212. DWORD dwRetCode = ERROR_SUCCESS;
  213. PBYTE pbDecodedLKP = NULL;
  214. *pdwVerifyResult = LKPLITE_LKP_VALID;
  216. //decode the SPK here
  217. dwRetCode = B24DecodeMSID(pszLKPLite, &pbDecodedLKP);
  218. if ( ERROR_SUCCESS != dwRetCode )
  219. {
  220. goto done;
  221. }
  223. dwRetCode = LKPLiteDecryptUsingPID(lpszPID,
  224. pbDecodedLKP,
  225. LKPLITE_RAWDATALEN);
  226. if (dwRetCode != ERROR_SUCCESS)
  227. {
  228. goto done;
  229. }
  231. //Call function to verify signature on SPK
  232. dwRetCode = CryptVerifySig(7, pbDecodedLKP, sizeof(abLKPPublicKey0),
  233. abLKPPublicKey0, SIGNATURE_LEN, pbDecodedLKP+7);
  234. if (dwRetCode != SS_OK)
  235. {
  236. *pdwVerifyResult = LKPLITE_SPK_INVALID;
  237. }
  239. done:
  240. if (pbDecodedLKP != NULL)
  241. {
  242. HeapFree(GetProcessHeap(), 0, pbDecodedLKP);
  243. }
  245. return dwRetCode;
  246. }
  249. DWORD LKPLiteCrackLKP (
  250. LPTSTR lpszPID,
  251. LPTSTR pszLKPLite,
  252. LPTSTR lpszProductCode,
  253. DWORD * pdwQuantity,
  254. DWORD * pdwSerialNum,
  255. DWORD * pdwExpirationMos,
  256. DWORD * pdwVersion,
  257. DWORD * pdwUpgrade,
  258. DWORD * pdwProgramType
  259. )
  260. {
  261. DWORD dwRetCode = ERROR_SUCCESS;
  262. PBYTE pbDecodedLKP = NULL;
  263. __int64 n64LKPLite = 0;
  264. __int64 n64ProductCode = 0;
  265. __int64 n64Qty = 0;
  266. __int64 n64SerialNo = 0;
  267. __int64 n64dtOfExp = 0;
  268. __int64 n64Version = 0;
  269. __int64 n64Upgrade = 0;
  270. __int64 n64Program = 0;
  272. if ( NULL == lpszPID || NULL == pszLKPLite ||
  273. NULL == lpszProductCode || NULL == pdwQuantity ||
  274. NULL == pdwSerialNum || NULL == pdwExpirationMos ||
  275. NULL == pdwVersion || NULL == pdwUpgrade ||
  276. NULL == pdwProgramType || NULL == pdwProgramType
  277. )
  278. {
  279. dwRetCode = ERROR_INVALID_PARAMETER;
  280. goto done;
  281. }
  283. //decode and decrypt the lkp here
  285. dwRetCode = B24DecodeMSID(pszLKPLite, &pbDecodedLKP);
  286. if ( ERROR_SUCCESS != dwRetCode )
  287. {
  288. goto done;
  289. }
  291. dwRetCode = LKPLiteDecryptUsingPID(lpszPID,
  292. pbDecodedLKP,
  293. LKPLITE_RAWDATALEN);
  294. if (dwRetCode != ERROR_SUCCESS)
  295. {
  296. goto done;
  297. }
  299. //copy all the stuff into int64 type
  301. memcpy ( ((BYTE *) &n64LKPLite) + 1, pbDecodedLKP, sizeof(n64LKPLite ) - 1 );
  303. // Decrypt it using the PID
  304. n64ProductCode = n64LKPLite & LKPLITE_LKP_PRODUCT_MASK;
  305. n64ProductCode >>= 54;
  307. //move the quantity to position
  308. n64Qty = n64LKPLite & LKPLITE_LKP_QUANTITY_MASK;
  309. n64Qty >>= 40;
  311. //move Serial number into position
  312. n64SerialNo = n64LKPLite & LKPLITE_LKP_SERAIL_NO_MASK;
  313. n64SerialNo >>= 28;
  315. //move Program Type into position
  316. n64Program = n64LKPLite & LKPLITE_LKP_PROGRAM_MASK;
  317. n64Program >>= 26;
  319. //move dt of expitration into position
  320. n64dtOfExp = n64LKPLite & LKPLITE_LKP_EXP_DATE_MASK;
  321. n64dtOfExp >>= 18;
  323. //move Version into place
  324. n64Version = n64LKPLite & LKPLITE_LKP_VERSION_MASK;
  325. n64Version >>= 11;
  327. //move upgrade in place
  328. n64Upgrade = n64LKPLite & LKPLITE_LKP_UPG_FULL_MASK;
  329. n64Upgrade >>= 8;
  331. done:
  333. if ( ERROR_SUCCESS == dwRetCode )
  334. {
  335. _stprintf(lpszProductCode, _T("%03d"), n64ProductCode);
  336. // _i64tot ( n64ProductCode, lpszProductCode, 10 );
  337. *pdwQuantity = (DWORD)n64Qty;
  338. *pdwSerialNum = (DWORD)n64SerialNo;
  339. *pdwExpirationMos = (DWORD)n64dtOfExp;
  340. *pdwVersion = (DWORD)n64Version;
  341. *pdwUpgrade = (DWORD)n64Upgrade;
  342. *pdwProgramType = (DWORD)n64Program;
  343. }
  344. if ( pbDecodedLKP )
  345. HeapFree ( GetProcessHeap(),0, pbDecodedLKP );
  347. return dwRetCode;
  348. }
  352. //internal functions
  353. DWORD ValidatePID ( LPTSTR lpszPID )
  354. {
  355. DWORD dwRetCode = ERROR_SUCCESS;
  356. DWORD dwPIDLen = _tcslen( lpszPID );
  357. DWORD dwCounter =0;
  359. if ( dwPIDLen != LKPLITE_PID_LEN )
  360. {
  361. dwRetCode = ERROR_INVALID_PARAMETER;
  362. }
  363. else
  364. {
  365. //check for syntax
  366. for ( dwCounter = 0; dwCounter < dwPIDLen; dwCounter ++ )
  367. {
  368. if ( !_istdigit ( *(lpszPID + dwCounter ) ) )
  369. {
  370. switch(dwCounter)
  371. {
  372. case 5:
  373. if (*(lpszPID + dwCounter ) != _T('-') )
  374. dwRetCode = ERROR_INVALID_PARAMETER;
  375. break;
  376. case 6:
  377. if (*(lpszPID + dwCounter ) != _T('O') && *(lpszPID + dwCounter ) != _T('o') )
  378. dwRetCode = ERROR_INVALID_PARAMETER;
  379. break;
  380. case 7:
  381. if (*(lpszPID + dwCounter ) != _T('E') && *(lpszPID + dwCounter ) != _T('e') )
  382. dwRetCode = ERROR_INVALID_PARAMETER;
  383. break;
  384. case 8:
  385. if (*(lpszPID + dwCounter ) != _T('M') && *(lpszPID + dwCounter ) != _T('m') )
  386. dwRetCode = ERROR_INVALID_PARAMETER;
  387. break;
  388. case 9:
  389. if (*(lpszPID + dwCounter ) != _T('-') )
  390. dwRetCode = ERROR_INVALID_PARAMETER;
  391. break;
  392. case 17:
  393. if (*(lpszPID + dwCounter ) != _T('-') )
  394. dwRetCode = ERROR_INVALID_PARAMETER;
  395. break;
  396. default:
  397. dwRetCode = ERROR_INVALID_PARAMETER;
  398. }
  399. }
  400. else
  401. {
  402. switch(dwCounter)
  403. {
  404. case 5:
  405. case 9:
  406. case 17:
  407. dwRetCode = ERROR_INVALID_PARAMETER;
  408. break;
  409. }
  410. }
  411. }
  412. }
  413. //can check here for mod 7 thing too but for now assume its OK.
  414. return dwRetCode;
  415. }
  417. //Assume that the PID comming in has aleady been validated
  418. __int64 GetSPKIDFromPID ( LPTSTR lpszPID )
  419. {
  420. __int64 n64PID;
  421. TCHAR szPID[12] = {0};
  423. memcpy ( szPID, lpszPID + 10, 6 * sizeof(TCHAR));
  424. memcpy ( szPID + 6, lpszPID+ 18, 5 * sizeof(TCHAR));
  425. n64PID = _ttoi64(szPID);
  426. return n64PID;
  427. }
  430. DWORD LKPLiteValConfNumber(LPTSTR lpszLSID,
  431. LPTSTR lpszPID,
  432. LPTSTR lpszConfirmation)
  433. {
  434. BYTE * pbDecodedLSID = NULL;
  435. BYTE * pbDecodedConf = NULL;
  436. DWORD dwRetCode = ERROR_SUCCESS;
  438. // lpszLSID is base 24 encoded, so decode it first
  439. dwRetCode = B24DecodeMSID(lpszLSID, &pbDecodedLSID);
  440. if (dwRetCode != ERROR_SUCCESS)
  441. {
  442. goto done;
  443. }
  445. // Decode Confirmation Number
  446. dwRetCode = B24DecodeCNumber(lpszConfirmation, &pbDecodedConf);
  447. if (dwRetCode != ERROR_SUCCESS)
  448. {
  449. goto done;
  450. }
  452. // Decrypt the leading 4 bytes
  453. dwRetCode = LKPLiteDecryptUsingPID(lpszPID, pbDecodedConf, sizeof(DWORD));
  454. if (dwRetCode != ERROR_SUCCESS)
  455. {
  456. goto done;
  457. }
  460. if (memcmp(pbDecodedLSID, pbDecodedConf, sizeof(DWORD)) != 0)
  461. {
  462. // does not match
  463. dwRetCode = LKPLITE_INVALID_CONFNUM;
  464. }
  466. done:
  467. if (pbDecodedLSID)
  468. {
  469. HeapFree(GetProcessHeap(), 0, pbDecodedLSID);
  470. }
  472. if (pbDecodedConf)
  473. {
  474. HeapFree(GetProcessHeap(), 0, pbDecodedConf);
  475. }
  477. return dwRetCode;
  478. }
  481. /////////////////////////////////////////////////////////
  483. DWORD WINAPI
  484. EncryptDecryptData(
  485. IN PBYTE pbParm,
  486. IN DWORD cbParm,
  487. IN OUT PBYTE pbData,
  488. IN DWORD cbData
  489. )
  490. /*++
  492. Abstract:
  494. Internal routine to encrypt/decrypt a blob of data
  496. Parameter:
  498. pbParm : binary blob to generate encrypt/decrypt key.
  499. cbParm : size of binary blob.
  500. pbData : data to be encrypt/decrypt.
  501. cbData : size of data to be encrypt/decrypt.
  503. Returns:
  505. ERROR_SUCCESS or error code.
  507. Remark:
  510. --*/
  511. {
  512. DWORD dwRetCode = ERROR_SUCCESS;
  513. MD5_CTX md5Ctx;
  514. RC4_KEYSTRUCT rc4KS;
  515. BYTE key[16];
  516. int i;
  518. if(NULL == pbParm || 0 == cbParm)
  519. {
  520. SetLastError(dwRetCode = ERROR_INVALID_PARAMETER);
  521. return dwRetCode;
  522. }
  524. MD5Init(&md5Ctx);
  525. MD5Update(
  526. &md5Ctx,
  527. pbParm,
  528. cbParm
  529. );
  531. MD5Final(&md5Ctx);
  533. memset(key, 0, sizeof(key));
  535. for(i=0; i < 5; i++)
  536. {
  537. key[i] = md5Ctx.digest[i];
  538. }
  540. //
  541. // Call RC4 to encrypt/decrypt data
  542. //
  543. rc4_key(
  544. &rc4KS,
  545. sizeof(key),
  546. key
  547. );
  549. rc4(&rc4KS, cbData, pbData);
  551. return dwRetCode;
  552. }
  554. DWORD LKPLiteEncryptUsingPID(LPTSTR lpszPID,
  555. BYTE * pbBufferToEncrypt,
  556. DWORD dwLength)
  557. {
  558. DWORD dwRetCode = ERROR_SUCCESS;
  560. #if 1
  562. dwRetCode = EncryptDecryptData(
  563. (PBYTE) lpszPID,
  564. lstrlen(lpszPID)*sizeof(TCHAR),
  565. pbBufferToEncrypt,
  566. dwLength
  567. );
  570. #else
  572. BOOL bRet;
  573. HCRYPTPROV hProv = NULL;
  574. HCRYPTKEY hCKey = NULL;
  575. HCRYPTHASH hHash = NULL;
  577. bRet = CryptAcquireContext(&hProv,
  578. NULL,
  579. NULL,
  580. PROV_RSA_FULL,
  581. CRYPT_VERIFYCONTEXT);
  583. if (!bRet)
  584. {
  585. dwRetCode = GetLastError();
  586. goto done;
  587. }
  590. bRet = CryptCreateHash(hProv,
  591. CALG_MD5,
  592. 0,
  593. 0,
  594. &hHash);
  595. if (!bRet)
  596. {
  597. dwRetCode = GetLastError();
  598. goto done;
  599. }
  601. bRet = CryptHashData(hHash,
  602. (BYTE *) lpszPID,
  603. lstrlen(lpszPID)*sizeof(TCHAR),
  604. 0);
  605. if (!bRet)
  606. {
  607. dwRetCode = GetLastError();
  608. goto done;
  609. }
  611. bRet = CryptDeriveKey(hProv,
  612. CALG_RC4,
  613. hHash,
  614. 0,
  615. &hCKey);
  616. if (!bRet)
  617. {
  618. dwRetCode = GetLastError();
  619. goto done;
  620. }
  622. bRet = CryptEncrypt(hCKey,
  623. 0,
  624. TRUE,
  625. 0,
  626. pbBufferToEncrypt,
  627. &dwLength,
  628. dwLength);
  630. if (!bRet)
  631. {
  632. dwRetCode = GetLastError();
  633. goto done;
  634. }
  636. done:
  637. if (hCKey != NULL)
  638. {
  639. bRet = CryptDestroyKey(hCKey);
  640. if (!bRet)
  641. {
  642. dwRetCode = GetLastError();
  643. }
  644. }
  646. if (hHash != NULL)
  647. {
  648. bRet = CryptDestroyHash(hHash);
  649. if (!bRet)
  650. {
  651. dwRetCode = GetLastError();
  652. }
  653. }
  655. if (hProv != NULL)
  656. {
  657. bRet = CryptReleaseContext( hProv, 0 );
  659. if (!bRet)
  660. {
  661. dwRetCode = GetLastError();
  662. }
  663. }
  665. #endif
  667. return dwRetCode;
  668. }
  674. DWORD LKPLiteDecryptUsingPID(LPTSTR lpszPID,
  675. BYTE * pbBufferToDecrypt,
  676. DWORD dwLength)
  677. {
  678. DWORD dwRetCode = ERROR_SUCCESS;
  680. #if 1
  682. dwRetCode = EncryptDecryptData(
  683. (PBYTE) lpszPID,
  684. lstrlen(lpszPID)*sizeof(TCHAR),
  685. pbBufferToDecrypt,
  686. dwLength
  687. );
  688. #else
  690. BOOL bRet;
  691. HCRYPTPROV hProv = NULL;
  692. HCRYPTKEY hCKey = NULL;
  693. HCRYPTHASH hHash = NULL;
  695. bRet = CryptAcquireContext(&hProv,
  696. NULL,
  697. NULL,
  698. PROV_RSA_FULL,
  699. CRYPT_VERIFYCONTEXT);
  701. if (!bRet)
  702. {
  703. dwRetCode = GetLastError();
  704. goto done;
  705. }
  708. bRet = CryptCreateHash(hProv,
  709. CALG_MD5,
  710. 0,
  711. 0,
  712. &hHash);
  713. if (!bRet)
  714. {
  715. dwRetCode = GetLastError();
  716. goto done;
  717. }
  719. bRet = CryptHashData(hHash,
  720. (BYTE *) lpszPID,
  721. lstrlen(lpszPID)*sizeof(TCHAR),
  722. 0);
  723. if (!bRet)
  724. {
  725. dwRetCode = GetLastError();
  726. goto done;
  727. }
  729. bRet = CryptDeriveKey(hProv,
  730. CALG_RC4,
  731. hHash,
  732. 0,
  733. &hCKey);
  734. if (!bRet)
  735. {
  736. dwRetCode = GetLastError();
  737. goto done;
  738. }
  740. bRet = CryptDecrypt(hCKey,
  741. 0,
  742. TRUE,
  743. 0,
  744. (BYTE *) pbBufferToDecrypt,
  745. &dwLength);
  746. if (!bRet)
  747. {
  748. dwRetCode = GetLastError();
  749. goto done;
  750. }
  752. done:
  753. if (hCKey != NULL)
  754. {
  755. bRet = CryptDestroyKey(hCKey);
  756. if (!bRet)
  757. {
  758. dwRetCode = GetLastError();
  759. }
  760. }
  762. if (hHash != NULL)
  763. {
  764. bRet = CryptDestroyHash(hHash);
  765. if (!bRet)
  766. {
  767. dwRetCode = GetLastError();
  768. }
  769. }
  771. if (hProv != NULL)
  772. {
  773. bRet = CryptReleaseContext( hProv, 0 );
  775. if (!bRet)
  776. {
  777. dwRetCode = GetLastError();
  778. }
  779. }
  781. #endif
  783. return dwRetCode;
  784. }