archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/termsrv/newclient/core/capienc.cpp

1010 lines
30 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /****************************************************************************/
  2. /* capienc.cpp */
  3. /* */
  4. /* FIPS encrpt/decrypt */
  5. /* */
  6. /* Copyright (C) 2002-2004 Microsoft Corporation */
  7. /****************************************************************************/
  11. #include <adcg.h>
  13. extern "C" {
  14. #define TRC_GROUP TRC_GROUP_CORE
  15. #define TRC_FILE "capienc"
  16. #include <atrcapi.h>
  17. }
  19. #include "capienc.h"
  20. #include "sl.h"
  22. #define TERMSRV_NAME L"terminal_server_client"
  24. const BYTE DESParityTable[] = {0x00,0x01,0x01,0x02,0x01,0x02,0x02,0x03,
  25. 0x01,0x02,0x02,0x03,0x02,0x03,0x03,0x04};
  26. // IV for all block ciphers
  27. BYTE rgbIV[] = {0x12, 0x34, 0x56, 0x78, 0x90, 0xAB, 0xCD, 0xEF};
  30. //
  31. // Name: PrintData
  32. //
  33. // Purpose: Print out the data in debugger
  34. //
  35. // Returns: No
  36. //
  37. // Params: IN pKeyData: point to the data to be printed
  38. // IN cbSize: the size of the key
  40. void PrintData(BYTE *pKeyData, DWORD cbSize)
  41. {
  42. DWORD dwIndex;
  43. TCHAR Buffer[128];
  45. for( dwIndex = 0; dwIndex<cbSize; dwIndex++ ) {
  47. StringCchPrintf(Buffer, 128, TEXT("0x%x "), pKeyData[dwIndex]);
  48. OutputDebugString(Buffer);
  49. if( dwIndex > 0 && (dwIndex+1) % 8 == 0 )
  50. OutputDebugString((TEXT("\n")));
  51. }
  52. }
  56. //
  57. // Name: Is_WinXP_or_Later
  58. //
  59. // Purpose: Tell if the OS is WinXP or later
  60. //
  61. // Returns: TRUE if it's WinXP or later
  62. //
  63. // Params: No
  65. BOOL Is_WinXP_or_Later ()
  66. {
  67. OSVERSIONINFO osvi;
  68. BOOL bIsWinXPorLater = FALSE;
  70. ZeroMemory(&osvi, sizeof(OSVERSIONINFO));
  72. osvi.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);
  73. if (GetVersionEx(&osvi)) {
  74. bIsWinXPorLater = ((osvi.dwMajorVersion >= 5) && (osvi.dwMinorVersion >= 1));
  75. }
  76. return bIsWinXPorLater;
  77. }
  80. //
  81. // Name: Mydesparityonkey
  82. //
  83. // Purpose: Set the parity on the DES key to be odd
  84. //
  85. // Returns: No
  86. //
  87. // Params: IN/OUT pbKey: point to the key
  88. // IN cbKey: the size of the key
  90. void Mydesparityonkey(
  91. BYTE *pbKey,
  92. DWORD cbKey
  93. )
  94. {
  95. DWORD i;
  97. for (i=0;i<cbKey;i++)
  98. {
  99. if (!((DESParityTable[pbKey[i]>>4] + DESParityTable[pbKey[i]&0x0F]) % 2))
  100. pbKey[i] = pbKey[i] ^ 0x01;
  101. }
  102. }
  106. //
  107. // Name: Expandkey
  108. //
  109. // Purpose: Expand a 21-byte 3DES key to a 24-byte 3DES key (including parity bit)
  110. // by inserting a parity bit after every 7 bits in the 21-byte DES
  111. //
  112. // Returns: No
  113. //
  114. // Params: IN/OUT pbKey: point to the key
  115. //
  117. #define PARITY_UNIT 7
  118. void Expandkey(
  119. BYTE *pbKey
  120. )
  121. {
  122. BYTE pbTemp[DES3_KEYLEN];
  123. DWORD i, dwCount;
  124. UINT16 shortTemp;
  125. BYTE *pbIn, *pbOut;
  127. memcpy(pbTemp, pbKey, sizeof(pbTemp));
  128. dwCount = (DES3_KEYLEN * 8) / PARITY_UNIT;
  130. pbOut = pbKey;
  131. for (i=0; i<dwCount; i++) {
  132. pbIn = ((pbTemp + (PARITY_UNIT * i) / 8));
  133. //shortTemp = *(pbIn + 1);
  134. shortTemp = *pbIn + (((UINT16)*(pbIn + 1)) << 8);
  135. shortTemp = shortTemp >> ((PARITY_UNIT * i) % 8);
  136. //shortTemp = (*(unsigned short *)((pbTemp + (PARITY_UNIT * i) / 8))) >> ((PARITY_UNIT * i) % 8);
  137. *pbOut = (BYTE)(shortTemp & 0x7F);
  138. pbOut++;
  139. }
  140. }
  144. // Name: HashData
  145. //
  146. // Purpose: Hash the data using SHA.
  147. //
  148. // Returns: TRUE if succeeded
  149. //
  150. // Params: IN pCapiFunctionTable: CAPI function table
  151. // IN hProv: Handle of the cript provider
  152. // IN pbData: point to the data to be hashed
  153. // IN dwDataLen: the size of the data to be hashed
  154. // OUT phHash: point to the hash
  156. BOOL HashData(PCAPI_FUNCTION_TABLE pCapiFunctionTable, HCRYPTPROV hProv, PBYTE pbData, DWORD dwDataLen, HCRYPTHASH* phHash)
  157. {
  158. BOOL rc = FALSE;
  160. DC_BEGIN_FN("HashData");
  162. //
  163. // Create a hash object.
  164. //
  165. if(!pCapiFunctionTable->pfnCryptCreateHash(hProv, CALG_SHA1, 0, 0, phHash)) {
  166. TRC_ERR((TB, _T("Error %x during CryptCreateHash!\n"), GetLastError()));
  167. goto done;
  168. }
  170. //
  171. // Hash in the data.
  172. //
  173. if(!pCapiFunctionTable->pfnCryptHashData(*phHash, pbData, dwDataLen, 0)) {
  174. TRC_ERR((TB, _T("Error %x during CryptHashData!\n"), GetLastError()));
  175. goto done;
  176. }
  177. rc = TRUE;
  178. done:
  179. DC_END_FN();
  180. return rc;
  181. }
  185. // Name: HashDataEx
  186. //
  187. // Purpose: Hash 2 set of data using SHA.
  188. //
  189. // Returns: TRUE if succeeded
  190. //
  191. // Params: IN pCapiFunctionTable: CAPI function table
  192. // IN hProv: Handle of the cript provider
  193. // IN pbData: point to the data to be hashed
  194. // IN dwDataLen: the size of the data to be hashed
  195. // IN pbData2: point to the data to be hashed
  196. // IN dwDataLen2: the size of the data to be hashed
  197. // OUT phHash: point to the hash
  199. BOOL HashDataEx(PCAPI_FUNCTION_TABLE pCapiFunctionTable, HCRYPTPROV hProv, PBYTE pbData, DWORD dwDataLen,
  200. PBYTE pbData2, DWORD dwDataLen2, HCRYPTHASH* phHash)
  201. {
  202. BOOL rc = FALSE;
  204. DC_BEGIN_FN("HashDataEx");
  206. //
  207. // Create a hash object.
  208. //
  209. if(!pCapiFunctionTable->pfnCryptCreateHash(hProv, CALG_SHA1, 0, 0, phHash)) {
  210. printf("Error %x during CryptCreateHash!\n", GetLastError());
  211. goto done;
  212. }
  214. //
  215. // Hash in the data.
  216. //
  217. if(!pCapiFunctionTable->pfnCryptHashData(*phHash, pbData, dwDataLen, 0)) {
  218. printf("Error %x during CryptHashData!\n", GetLastError());
  219. goto done;
  220. }
  221. if(!pCapiFunctionTable->pfnCryptHashData(*phHash, pbData2, dwDataLen2, 0)) {
  222. printf("Error %x during CryptHashData!\n", GetLastError());
  223. goto done;
  224. }
  225. rc = TRUE;
  226. done:
  227. DC_END_FN();
  229. return rc;
  230. }
  233. // Name: HmacHashData
  234. //
  235. // Purpose: Hash the data using HmacSHA.
  236. //
  237. // Returns: TRUE if succeeded
  238. //
  239. // Params: IN pCapiFunctionTable: CAPI function table
  240. // IN hProv: Handle of the cript provider
  241. // IN pbData: point to the data to be hashed
  242. // IN dwDataLen: the size of the data to be hashed
  243. // IN hKey: handle to the key
  244. // OUT phHash: point to the hash
  246. BOOL HmacHashData(PCAPI_FUNCTION_TABLE pCapiFunctionTable, HCRYPTPROV hProv, PBYTE pbData, DWORD dwDataLen,
  247. HCRYPTKEY hKey, HCRYPTHASH* phHash)
  248. {
  249. BOOL rc = FALSE;
  250. BYTE bmacinfo[sizeof(HMAC_INFO)];
  251. HMAC_INFO* pmac;
  252. memset(bmacinfo, 0, sizeof(bmacinfo));
  254. pmac = (HMAC_INFO*)bmacinfo;
  255. pmac->HashAlgid = CALG_SHA1;
  257. DC_BEGIN_FN("HmacHashData");
  259. //
  260. // Create a hash object.
  261. //
  262. if(!pCapiFunctionTable->pfnCryptCreateHash(hProv, CALG_HMAC, hKey, 0, phHash)) {
  263. TRC_ERR((TB, _T("Error %x during CryptCreateHash!\n"), GetLastError()));
  264. goto done;
  265. }
  267. rc = pCapiFunctionTable->pfnCryptSetHashParam(*phHash, HP_HMAC_INFO, bmacinfo, 0);
  269. //
  270. // Hash in the data.
  271. //
  272. if(!pCapiFunctionTable->pfnCryptHashData(*phHash, pbData, dwDataLen, 0)) {
  273. TRC_ERR((TB, _T("Error %x during CryptHashData!\n"), GetLastError()));
  274. goto done;
  275. }
  276. rc = TRUE;
  277. done:
  278. DC_END_FN();
  280. return rc;
  281. }
  285. // Name: HmacHashDataEx
  286. //
  287. // Purpose: Hash 2 set of data using HmacSHA.
  288. //
  289. // Returns: TRUE if succeeded
  290. //
  291. // Params: IN pCapiFunctionTable: CAPI function table
  292. // IN hProv: Handle of the cript provider
  293. // IN pbData: point to the data to be hashed
  294. // IN dwDataLen: the size of the data to be hashed
  295. // IN pbData2: point to the data to be hashed
  296. // IN dwDataLen2: the size of the data to be hashed
  297. // IN hKey: handle to the key
  298. // OUT phHash: point to the hash
  300. BOOL HmacHashDataEx(PCAPI_FUNCTION_TABLE pCapiFunctionTable, HCRYPTPROV hProv, PBYTE pbData, DWORD dwDataLen,
  301. PBYTE pbData2, DWORD dwDataLen2, HCRYPTKEY hKey, HCRYPTHASH* phHash)
  302. {
  303. BOOL rc = FALSE;
  304. BYTE bmacinfo[sizeof(HMAC_INFO)];
  305. HMAC_INFO* pmac;
  306. memset(bmacinfo, 0, sizeof(bmacinfo));
  308. pmac = (HMAC_INFO*)bmacinfo;
  309. pmac->HashAlgid = CALG_SHA1;
  311. DC_BEGIN_FN("HmacHashDataEx");
  313. //
  314. // Create a hash object.
  315. //
  316. if(!pCapiFunctionTable->pfnCryptCreateHash(hProv, CALG_HMAC, hKey, 0, phHash)) {
  317. TRC_ERR((TB, _T("Error %x during CryptCreateHash!\n"), GetLastError()));
  318. goto done;
  319. }
  321. rc = pCapiFunctionTable->pfnCryptSetHashParam(*phHash, HP_HMAC_INFO, bmacinfo, 0);
  323. //
  324. // Hash in the data.
  325. //
  326. if(!pCapiFunctionTable->pfnCryptHashData(*phHash, pbData, dwDataLen, 0)) {
  327. TRC_ERR((TB, _T("Error %x during CryptHashData!\n"), GetLastError()));
  328. goto done;
  329. }
  331. if(!pCapiFunctionTable->pfnCryptHashData(*phHash, pbData2, dwDataLen2, 0)) {
  332. TRC_ERR((TB, _T("Error %x during CryptHashData!\n"), GetLastError()));
  333. goto done;
  334. }
  335. rc = TRUE;
  336. done:
  337. DC_END_FN();
  339. return rc;
  340. }
  345. // Name: DumpHashes
  346. //
  347. // Purpose: Get the hash bits from hash handle
  348. //
  349. // Returns: TRUE if succeeded
  350. //
  351. // Params: IN pCapiFunctionTable: CAPI function table
  352. // IN phHash: point to hash handle
  353. // OUT pbBytes: point data buffer to get hash
  354. // IN dwTotal: len of the data buffer
  356. BOOL DumpHashes(PCAPI_FUNCTION_TABLE pCapiFunctionTable, HCRYPTHASH* phHash, PBYTE pbBytes, DWORD dwTotal)
  357. {
  358. BOOL rc = FALSE;
  360. DC_BEGIN_FN("DumpHashes");
  362. if (!pCapiFunctionTable->pfnCryptGetHashParam(*phHash, HP_HASHVAL, pbBytes, &dwTotal , 0)) {
  363. TRC_ERR((TB, _T("Error %x during CryptGetHashParam!\n"), GetLastError()));
  364. goto done;
  365. }
  367. //
  368. //destroy the hash, we don't need it anymore
  369. //
  370. if(*phHash) {
  371. pCapiFunctionTable->pfnCryptDestroyHash(*phHash);
  372. *phHash = 0;
  373. }
  375. rc = TRUE;
  376. done:
  377. DC_END_FN();
  378. return rc;
  379. }
  382. // Name: TSCAPI_Init
  383. //
  384. // Purpose: Initialize the CAPI function table.
  385. //
  386. // Returns: TRUE - succeeded
  387. // FALSE - failed
  388. //
  389. // Params: IN pCapiData: CAPI data
  391. BOOL TSCAPI_Init(PCAPIData pCapiData)
  392. {
  393. BOOL rc = FALSE;
  395. // FIPS is only available on WinXP and later
  396. if (!Is_WinXP_or_Later()) {
  397. goto done;
  398. }
  400. pCapiData->hAdvapi32 = LoadLibrary(L"advapi32.dll");
  402. if (pCapiData->hAdvapi32 == NULL) {
  403. goto done;
  404. }
  406. if ((pCapiData->CapiFunctionTable.pfnCryptAcquireContext = (CRYPTACQUIRECONTEXT *)GetProcAddress(
  407. pCapiData->hAdvapi32, "CryptAcquireContextW")) == NULL) {
  408. goto done;
  409. }
  410. if ((pCapiData->CapiFunctionTable.pfnCryptReleaseContext = (CRYPTRELEASECONTEXT *)GetProcAddress(
  411. pCapiData->hAdvapi32, "CryptReleaseContext")) == NULL) {
  412. goto done;
  413. }
  414. if ((pCapiData->CapiFunctionTable.pfnCryptGenRandom = (CRYPTGENRANDOM *)GetProcAddress(
  415. pCapiData->hAdvapi32, "CryptGenRandom")) == NULL) {
  416. goto done;
  417. }
  418. if ((pCapiData->CapiFunctionTable.pfnCryptEncrypt = (CRYPTENCRYPT *)GetProcAddress(
  419. pCapiData->hAdvapi32, "CryptEncrypt")) == NULL) {
  420. goto done;
  421. }
  422. if ((pCapiData->CapiFunctionTable.pfnCryptDecrypt = (CRYPTDECRYPT *)GetProcAddress(
  423. pCapiData->hAdvapi32, "CryptDecrypt")) == NULL) {
  424. goto done;
  425. }
  426. if ((pCapiData->CapiFunctionTable.pfnCryptImportKey = (CRYPTIMPORTKEY *)GetProcAddress(
  427. pCapiData->hAdvapi32, "CryptImportKey")) == NULL) {
  428. goto done;
  429. }
  430. if ((pCapiData->CapiFunctionTable.pfnCryptSetKeyParam = (CRYPTSETKEYPARAM *)GetProcAddress(
  431. pCapiData->hAdvapi32, "CryptSetKeyParam")) == NULL) {
  432. goto done;
  433. }
  434. if ((pCapiData->CapiFunctionTable.pfnCryptDestroyKey = (CRYPTDESTROYKEY *)GetProcAddress(
  435. pCapiData->hAdvapi32, "CryptDestroyKey")) == NULL) {
  436. goto done;
  437. }
  438. if ((pCapiData->CapiFunctionTable.pfnCryptCreateHash = (CRYPTCREATEHASH *)GetProcAddress(
  439. pCapiData->hAdvapi32, "CryptCreateHash")) == NULL) {
  440. goto done;
  441. }
  442. if ((pCapiData->CapiFunctionTable.pfnCryptHashData = (CRYPTHASHDATA *)GetProcAddress(
  443. pCapiData->hAdvapi32, "CryptHashData")) == NULL) {
  444. goto done;
  445. }
  446. if ((pCapiData->CapiFunctionTable.pfnCryptSetHashParam = (CRYPTSETHASHPARAM *)GetProcAddress(
  447. pCapiData->hAdvapi32, "CryptSetHashParam")) == NULL) {
  448. goto done;
  449. }
  450. if ((pCapiData->CapiFunctionTable.pfnCryptGetHashParam = (CRYPTGETHASHPARAM *)GetProcAddress(
  451. pCapiData->hAdvapi32, "CryptGetHashParam")) == NULL) {
  452. goto done;
  453. }
  454. if ((pCapiData->CapiFunctionTable.pfnCryptDestroyHash = (CRYPTDESTROYHASH *)GetProcAddress(
  455. pCapiData->hAdvapi32, "CryptDestroyHash")) == NULL) {
  456. goto done;
  457. }
  460. rc = TRUE;
  461. done:
  462. return rc;
  463. }
  466. // Name: TSCAPI_Enable
  467. //
  468. // Purpose: Some CAPI initialization
  469. //
  470. // Returns: TRUE - succeeded
  471. // FALSE - failed
  472. //
  473. // Params: IN pCapiData: CAPI data
  475. BOOL TSCAPI_Enable(PCAPIData pCapiData)
  476. {
  477. BOOL rc = FALSE;
  478. DWORD Error;
  479. DWORD dwExtraFlags = 0;
  480. HRESULT hr;
  482. DC_BEGIN_FN("TSCAPI_Enable");
  484. // Get handle to the default provider.
  485. if(!pCapiData->CapiFunctionTable.pfnCryptAcquireContext(&(pCapiData->hProv),
  486. TERMSRV_NAME, MS_ENHANCED_PROV, PROV_RSA_FULL, dwExtraFlags)) {
  488. // Could not acquire a crypt context, get the reason of failure
  489. Error = GetLastError();
  490. hr = HRESULT_FROM_WIN32(Error);
  492. if (hr == NTE_BAD_KEYSET) {
  493. //
  494. //create a new keyset
  495. //
  496. if(!pCapiData->CapiFunctionTable.pfnCryptAcquireContext(&(pCapiData->hProv), TERMSRV_NAME,
  497. MS_ENHANCED_PROV, PROV_RSA_FULL, dwExtraFlags | CRYPT_NEWKEYSET)) {
  498. Error = GetLastError();
  499. TRC_ERR((TB, _T("Error %x during CryptAcquireContext!\n"), GetLastError()));
  500. goto done;
  501. }
  502. }
  503. else {
  504. goto done;
  505. }
  506. }
  507. rc = TRUE;
  508. done:
  509. DC_END_FN();
  510. return rc;
  511. }
  515. // Name: TSCAPI_Term
  516. //
  517. // Purpose: Terminate the CAPI .
  518. //
  519. // Returns: TRUE if succeeded
  520. //
  521. //
  522. // Params: IN pCapiData: CAPI data
  524. BOOL TSCAPI_Term(PCAPIData pCapiData)
  525. {
  526. BOOL rc = TRUE;
  528. DC_BEGIN_FN("TSCAPI_Enable");
  530. if (pCapiData->hEncKey) {
  531. rc = pCapiData->CapiFunctionTable.pfnCryptDestroyKey(pCapiData->hEncKey);
  532. pCapiData->hEncKey = NULL;
  533. }
  535. if (pCapiData->hDecKey) {
  536. rc = pCapiData->CapiFunctionTable.pfnCryptDestroyKey(pCapiData->hDecKey);
  537. pCapiData->hDecKey = NULL;
  538. }
  540. if (pCapiData->hProv) {
  541. rc = pCapiData->CapiFunctionTable.pfnCryptReleaseContext(pCapiData->hProv, 0);
  542. pCapiData->hProv = NULL;
  543. }
  545. DC_END_FN();
  547. return rc;
  548. }
  551. // Name: TSCAPI_GenerateRandomNumber
  552. //
  553. // Purpose: Generates random number using CAPI in user mode
  554. //
  555. // Returns: TRUE if succeeded
  556. //
  557. //
  558. // Params: IN pCapiData: CAPI data
  559. // OUT pbRandomBits: pointer to a buffer where a random key is returned.
  560. // IN cbLen: length of the random key required.
  562. BOOL TSCAPI_GenerateRandomNumber(
  563. PCAPIData pCapiData,
  564. LPBYTE pbRandomBits,
  565. DWORD cbLen)
  566. {
  567. BOOL rc = FALSE;
  569. DC_BEGIN_FN("TSCAPI_GenerateRandomNumber");
  571. if (pCapiData->CapiFunctionTable.pfnCryptGenRandom(pCapiData->hProv, cbLen, pbRandomBits)) {
  572. rc = TRUE;
  573. }
  574. done:
  575. DC_END_FN();
  577. return rc;
  578. }
  583. // Name: ImportKey
  584. //
  585. // Purpose: Import the key in bits to crypt provider
  586. //
  587. // Returns: TRUE if succeeded
  588. //
  589. //
  590. // Params: IN pCapiData: CAPI data
  591. // IN hProv: handle to the crypt provider
  592. // IN Algid: Algorithm identifier
  593. // IN pbKey: point to the buffer contain the key bits
  594. // IN dwKeyLen: length of the key.
  595. // IN dwFlags: dwFlags used in CryptImportKey
  596. // OUT phKey: point to the key handle
  598. BOOL ImportKey(PCAPI_FUNCTION_TABLE pCapiFunctionTable, HCRYPTPROV hProv, ALG_ID Algid, PBYTE pbKey, DWORD dwKeyLen, DWORD dwFlags, HCRYPTKEY* phKey)
  599. {
  600. BOOL rc = FALSE;
  601. PBYTE pbData = NULL;
  602. DWORD cbLen = 0;
  603. DWORD Error;
  604. //
  605. //create blob header first
  606. //
  607. BLOBHEADER blobHead;
  608. blobHead.bType = PLAINTEXTKEYBLOB;
  609. blobHead.bVersion = 2;
  610. blobHead.reserved = 0;
  611. blobHead.aiKeyAlg = Algid;
  613. DC_BEGIN_FN("ImportKey");
  615. //
  616. //calculate the length
  617. //
  618. cbLen = sizeof(blobHead) + sizeof(dwKeyLen) + dwKeyLen;
  620. pbData = (PBYTE)LocalAlloc(LPTR, cbLen);
  622. if(NULL == pbData) {
  623. TRC_ERR((TB, _T("Out of memory\n")));
  624. goto done;
  625. }
  627. //
  628. //copy data. First data must be header, then the size of the key, then the key
  629. //
  630. memcpy( pbData, &blobHead, sizeof(blobHead));
  631. memcpy( pbData + sizeof(blobHead), &dwKeyLen, sizeof(dwKeyLen));
  632. memcpy( pbData + sizeof(blobHead) + sizeof(dwKeyLen), pbKey, dwKeyLen);
  634. if( !pCapiFunctionTable->pfnCryptImportKey( hProv, pbData, cbLen, 0, dwFlags, phKey)) {
  635. Error = GetLastError();
  636. TRC_ERR((TB, _T("Failed to import plaint text key Error = 0x%x\n"), Error));
  637. *phKey = 0;
  638. goto done;
  639. }
  641. rc = TRUE;
  642. done:
  643. DC_END_FN();
  645. if(pbData) {
  646. LocalFree(pbData);
  647. }
  648. return rc;
  649. }
  654. // Name: TSCAPI_DeriveKey
  655. //
  656. // Purpose: Derive the key from the hash.
  657. //
  658. // Returns: TRUE if succeeded
  659. //
  660. // Params: IN pCapiFunctionTable: CAPI function table
  661. // IN hProv: crypt provider handle
  662. // OUT phKey: point to key handle
  663. // IN rgbSHABase: base data used to derive the key
  664. // IN cbSHABase: size of the base data
  665. // OUT pbKey: point to the derived DESkey
  666. // OUT pdwKeyLen: point to the key length
  668. BOOL TSCAPI_DeriveKey(
  669. PCAPI_FUNCTION_TABLE pCapiFunctionTable,
  670. HCRYPTPROV hProv,
  671. HCRYPTKEY *phKey,
  672. BYTE *rgbSHABase,
  673. DWORD cbSHABase,
  674. BYTE *pbKey,
  675. DWORD *pdwKeyLen)
  676. {
  677. BOOL rc = FALSE;
  678. BOOL fRet = FALSE;
  679. BYTE rgb3DESKey[MAX_FIPS_SESSION_KEY_SIZE];
  681. DC_BEGIN_FN("TSCAPI_DeriveKey");
  683. //
  684. //Generate the key as follows
  685. //1. Hash the secret. Call the result H1 (rgbSHABase in our case)
  686. //2. Use 1st 21 bytes of [H1|H1] as the 3DES key
  687. //3. Expand the 21-byte 3DES key to a 24-byte 3DES key (including parity bit), which
  688. // will be used by CryptAPI
  689. //4. Set the parity on the 3DES key to be odd
  691. //
  692. //Step 2 - [H1|H1]
  693. //
  695. memcpy(rgb3DESKey, rgbSHABase, cbSHABase);
  696. memcpy(rgb3DESKey + cbSHABase, rgbSHABase, DES3_KEYLEN - cbSHABase);
  698. //
  699. //Step 3 - Expand the key
  700. //
  702. Expandkey(rgb3DESKey);
  704. //
  705. //Step 4 - Set parity
  706. //
  708. Mydesparityonkey(rgb3DESKey, sizeof(rgb3DESKey));
  710. //
  711. //import the key as PLAINTEXT into the csp
  712. //
  713. rc = ImportKey(pCapiFunctionTable, hProv, CALG_3DES, rgb3DESKey, sizeof(rgb3DESKey), 0, phKey);
  714. if (!rc) {
  715. goto done;
  716. }
  718. //give the key to the caller
  719. //
  720. memcpy(pbKey, rgb3DESKey, sizeof(rgb3DESKey));
  721. *pdwKeyLen = sizeof(rgb3DESKey);
  723. rc = TRUE;
  724. done:
  725. DC_END_FN();
  727. return rc;
  728. }
  732. // Name: TSCAPI_MakeSessionKeys
  733. //
  734. // Purpose: Make the key from client/server random numbers
  735. //
  736. // Returns: TRUE if succeeded
  737. //
  738. // Params: IN pCapiData: CAPI Data
  739. // IN pKeyPair: Randow numbers used to generate key
  740. // IN pEnumMethod: To generate Encrypt or Decrypt key, If NULL, both keys
  742. BOOL TSCAPI_MakeSessionKeys(
  743. PCAPIData pCapiData,
  744. RANDOM_KEYS_PAIR *pKeyPair,
  745. CryptMethod *pEnumMethod)
  746. {
  747. BOOL rc = FALSE;
  748. HCRYPTHASH hHash;
  749. DWORD dwKeyLen;
  750. BYTE rgbSHABase1[A_SHA_DIGEST_LEN];
  751. BYTE rgbSHABase2[A_SHA_DIGEST_LEN];
  753. DC_BEGIN_FN("TSCAPI_MakeSessionKeys");
  755. memset(rgbSHABase1, 0, sizeof(rgbSHABase1));
  756. memset(rgbSHABase2, 0, sizeof(rgbSHABase2));
  758. //
  759. // Client Encrypt/Server Decrypt key
  760. //
  761. if ((pEnumMethod == NULL) ||
  762. (*pEnumMethod == Encrypt)) {
  763. if (!pCapiData->CapiFunctionTable.pfnCryptCreateHash(pCapiData->hProv, CALG_SHA1, 0, 0, &hHash)) {
  764. TRC_ERR((TB, _T("CryptCreateHash failed with %u"), GetLastError()));
  765. goto done;
  766. }
  767. if (!pCapiData->CapiFunctionTable.pfnCryptHashData(hHash, pKeyPair->clientRandom + RANDOM_KEY_LENGTH/2, RANDOM_KEY_LENGTH/2, 0)) {
  768. TRC_ERR((TB, _T("CryptHashData failed with %u"), GetLastError()));
  769. goto done;
  770. }
  771. if (!pCapiData->CapiFunctionTable.pfnCryptHashData(hHash, pKeyPair->serverRandom + RANDOM_KEY_LENGTH/2, RANDOM_KEY_LENGTH/2, 0)) {
  772. TRC_ERR((TB, _T("CryptHashData failed with %u"), GetLastError()));
  773. goto done;
  774. }
  776. if (!DumpHashes(&(pCapiData->CapiFunctionTable), &hHash, rgbSHABase1, sizeof(rgbSHABase1))) {
  777. goto done;
  778. }
  779. dwKeyLen = sizeof(pCapiData->bEncKey);
  780. if (!TSCAPI_DeriveKey(&(pCapiData->CapiFunctionTable), pCapiData->hProv, &(pCapiData->hEncKey), rgbSHABase1,
  781. sizeof(rgbSHABase1), pCapiData->bEncKey, &dwKeyLen)) {
  782. goto done;
  783. }
  785. //
  786. //set the IV
  787. //
  788. if(!pCapiData->CapiFunctionTable.pfnCryptSetKeyParam(pCapiData->hEncKey, KP_IV, rgbIV, 0 )) {
  789. TRC_ERR((TB, _T("Error %x during CryptSetKeyParam!\n"), GetLastError()));
  790. goto done;
  791. }
  792. }
  794. //
  795. // Server Encrypt/Client Decrypt key
  796. //
  797. if ((pEnumMethod == NULL) ||
  798. (*pEnumMethod == Decrypt)) {
  799. if (!pCapiData->CapiFunctionTable.pfnCryptCreateHash(pCapiData->hProv, CALG_SHA1, 0, 0, &hHash)) {
  800. TRC_ERR((TB, _T("CryptCreateHash failed with %u"), GetLastError()));
  801. goto done;
  802. }
  803. if (!pCapiData->CapiFunctionTable.pfnCryptHashData(hHash, pKeyPair->clientRandom, RANDOM_KEY_LENGTH/2, 0)) {
  804. TRC_ERR((TB, _T("CryptHashData failed with %u"), GetLastError()));
  805. goto done;
  806. }
  807. if (!pCapiData->CapiFunctionTable.pfnCryptHashData(hHash, pKeyPair->serverRandom, RANDOM_KEY_LENGTH/2, 0)) {
  808. TRC_ERR((TB, _T("CryptHashData failed with %u"), GetLastError()));
  809. goto done;
  810. }
  812. if (!DumpHashes(&(pCapiData->CapiFunctionTable), &hHash, rgbSHABase2, sizeof(rgbSHABase2))) {
  813. goto done;
  814. }
  815. dwKeyLen = sizeof(pCapiData->bDecKey);
  816. if (!TSCAPI_DeriveKey(&(pCapiData->CapiFunctionTable), pCapiData->hProv, &(pCapiData->hDecKey), rgbSHABase2,
  817. sizeof(rgbSHABase2), pCapiData->bDecKey, &dwKeyLen)) {
  818. goto done;
  819. }
  821. //
  822. //set the IV
  823. //
  824. if(!pCapiData->CapiFunctionTable.pfnCryptSetKeyParam(pCapiData->hDecKey, KP_IV, rgbIV, 0 )) {
  825. TRC_ERR((TB, _T("Error %x during CryptSetKeyParam!\n"), GetLastError()));
  826. goto done;
  827. }
  828. }
  830. //
  831. // Get the signing key
  832. // The signing key is SHA(rgbSHABase2|rgbSHABase1)
  833. //
  834. if (pEnumMethod == NULL) {
  835. if (!HashDataEx(&(pCapiData->CapiFunctionTable), pCapiData->hProv, rgbSHABase2, sizeof(rgbSHABase2),
  836. rgbSHABase1, sizeof(rgbSHABase1), &hHash)) {
  837. goto done;
  838. }
  839. if (!DumpHashes(&(pCapiData->CapiFunctionTable), &hHash, pCapiData->bSignKey, sizeof(pCapiData->bSignKey))) {
  840. goto done;
  841. }
  842. rc = ImportKey(&(pCapiData->CapiFunctionTable), pCapiData->hProv, CALG_RC2, pCapiData->bSignKey, sizeof(pCapiData->bSignKey), CRYPT_IPSEC_HMAC_KEY, &(pCapiData->hSignKey));
  843. if (!rc) {
  844. goto done;
  845. }
  846. }
  848. rc = TRUE;
  849. done:
  850. DC_END_FN();
  852. return rc;
  853. }
  858. // Name: TSCAPI_AdjustDataLen
  859. //
  860. // Purpose: In Block encryption mode, adjust the data len to multiple of blocks
  861. //
  862. // Returns: Adjusted data length
  863. //
  864. // Params: IN dataLen: Data length needed to be encrypted
  866. DCUINT TSCAPI_AdjustDataLen(DCUINT dataLen)
  867. {
  868. return (dataLen - dataLen % FIPS_BLOCK_LEN + FIPS_BLOCK_LEN);
  869. }
  873. // Name: TSCAPI_EncryptData
  874. //
  875. // Purpose: Encrypt the data and compute the signature
  876. //
  877. // Returns: No
  878. //
  879. // Params: IN pCapiData: CAPI Data
  880. // IN/OUT pbData: pointer to the data buffer being encrypted, encrypted data is
  881. // returned in the same buffer.
  882. // IN/OUT pdwDataLen: data length to be encrypted, and returns encrypted data length
  883. // IN dwPadLen: padding length in the data buffer
  884. // OUT pbSignature: pointer to a signature buffer where the data signature is returned.
  885. // IN dwEncryptionCount: running counter of all encryptions
  887. BOOL TSCAPI_EncryptData(
  888. PCAPIData pCapiData,
  889. LPBYTE pbData,
  890. DWORD *pdwDataLen,
  891. DWORD dwBufLen,
  892. LPBYTE pbSignature,
  893. DWORD dwEncryptionCount)
  894. {
  895. BOOL rc = FALSE;
  896. DWORD Error;
  897. HCRYPTHASH hHash;
  898. BYTE rgbSHA[A_SHA_DIGEST_LEN];
  899. BYTE pbHmac[A_SHA_DIGEST_LEN];
  900. DWORD dwTemp = dwBufLen;
  902. DC_BEGIN_FN("TSCAPI_EncryptData");
  904. // Compute signature
  905. if (!HmacHashDataEx(&(pCapiData->CapiFunctionTable), pCapiData->hProv, pbData, *pdwDataLen, (BYTE *)&dwEncryptionCount,
  906. sizeof(dwEncryptionCount), pCapiData->hSignKey, &hHash)) {
  907. goto done;
  908. }
  910. if (!DumpHashes(&(pCapiData->CapiFunctionTable), &hHash, pbHmac, sizeof(pbHmac))) {
  911. goto done;
  912. }
  913. // Take the 1st 8 bytes of Hmac as signature
  914. memcpy(pbSignature, pbHmac, MAX_SIGN_SIZE);
  916. rc = pCapiData->CapiFunctionTable.pfnCryptEncrypt(pCapiData->hEncKey,
  917. NULL, //Hash
  918. FALSE, //Final
  919. 0,
  920. pbData,
  921. &dwTemp,
  922. dwBufLen);
  924. if (!rc) {
  925. TRC_ERR((TB, _T("Error %x during CryptEncrypt!\n"), GetLastError()));
  926. goto done;
  927. }
  929. rc = TRUE;
  930. done:
  931. DC_END_FN();
  933. return rc;
  934. }
  938. // Name: TSCAPI_DecryptData
  939. //
  940. // Purpose: Decrypt the data and compare the signature
  941. //
  942. // Returns: TRUE if successfully decrypted the data
  943. //
  944. // Params: IN PCAPIData: CAPI Data
  945. // IN/OUT pbData: pointer to the data buffer being decrypted, decrypted data is
  946. // returned in the same buffer.
  947. // IN dwDataLen: data length to be decrypted
  948. // IN dwPadLen: padding length in the data buffer
  949. // IN pbSignature: pointer to a signature buffer
  950. // IN dwDecryptionCount: running counter of all encryptions
  952. BOOL TSCAPI_DecryptData(
  953. PCAPIData pCapiData,
  954. LPBYTE pbData,
  955. DWORD dwDataLen,
  956. DWORD dwPadLen,
  957. LPBYTE pbSignature,
  958. DWORD dwDecryptionCount)
  959. {
  960. BOOL rc = FALSE;
  961. DWORD dwLen = dwDataLen;
  962. DWORD Error;
  963. HCRYPTHASH hHash;
  964. BYTE abSignature[A_SHA_DIGEST_LEN];
  965. BYTE rgbSHA[A_SHA_DIGEST_LEN];
  967. DC_BEGIN_FN("TSCAPI_DecryptData");
  969. // data length check
  970. if (dwDataLen <= dwPadLen) {
  971. TRC_ERR((TB, _T("Bad data length, padLen %d is larger than DataLen %d"),
  972. dwPadLen, dwDataLen));
  973. goto done;
  974. }
  976. rc = pCapiData->CapiFunctionTable.pfnCryptDecrypt(pCapiData->hDecKey,
  977. NULL, //Hash
  978. FALSE, //Final
  979. 0,
  980. pbData,
  981. &dwLen);
  982. if (!rc) {
  983. TRC_ERR((TB, _T("Error %x during CryptDecrypt!\n"), GetLastError()));
  984. goto done;
  985. }
  987. // Compute signature
  988. if (!HmacHashDataEx(&(pCapiData->CapiFunctionTable), pCapiData->hProv, pbData, dwDataLen - dwPadLen, (BYTE *)&dwDecryptionCount,
  989. sizeof(dwDecryptionCount), pCapiData->hSignKey, &hHash)) {
  990. goto done;
  991. }
  993. if (!DumpHashes(&(pCapiData->CapiFunctionTable), &hHash, abSignature, sizeof(abSignature))) {
  994. goto done;
  995. }
  996. //
  997. // check to see the sigature match.
  998. //
  1000. if(!memcmp(
  1001. (LPBYTE)abSignature,
  1002. pbSignature,
  1003. MAX_SIGN_SIZE)) {
  1004. rc = TRUE;;
  1005. }
  1006. done:
  1007. DC_END_FN();
  1009. return rc;
  1010. }