archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/admin/pchealth/helpctr/rc/bdychannel/activex/auth.cpp

239 lines
7.3 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "stdafx.h"
  2. #include "auth.h"
  3. #include "md5.h"
  6. const CHAR g_cszADVAPI32DllName[] = "ADVAPI32.DLL";
  8. const CHAR g_cszCryptAcquireContextA[] = "CryptAcquireContextA";
  10. const CHAR g_cszCryptCreateHash[] = "CryptCreateHash";
  11. const CHAR g_cszCryptHashData[] = "CryptHashData";
  12. const CHAR g_cszCryptGetHashParam[] = "CryptGetHashParam";
  13. const CHAR g_cszCryptDestroyHash[] = "CryptDestroyHash";
  14. const CHAR g_cszCryptReleaseContext[] = "CryptReleaseContext";
  16. const CHAR g_rgchHexNumMap[] =
  17. {
  18. '0', '1', '2', '3', '4', '5', '6', '7',
  19. '8', '9', 'a', 'b', 'c', 'd', 'e', 'f'
  20. };
  22. const int MD5_HASH_LEN = 16;
  24. void
  25. hmac_md5(
  26. unsigned char* text, /* pointer to data stream */
  27. int text_len, /* length of data stream */
  28. unsigned char* key, /* pointer to authentication key */
  29. int key_len, /* length of authentication key */
  30. BYTE digest[16]) /* caller digest to be filled in */
  32. {
  33. MD5_CTX context;
  34. memset(&context, 0, sizeof(context));
  36. unsigned char k_ipad[65]; /* inner padding -
  37. * key XORd with ipad
  38. */
  39. unsigned char k_opad[65]; /* outer padding -
  40. * key XORd with opad
  41. */
  42. int i;
  43. /* if key is longer than 64 bytes reset it to key=MD5(key) */
  44. if (key_len > 64) {
  46. MD5_CTX tctx;
  47. memset(&tctx, 0, sizeof(tctx));
  49. MD5Init(&tctx);
  50. MD5Update(&tctx, key, key_len);
  51. MD5Final(&tctx);
  53. key = tctx.digest;
  54. key_len = 16;
  55. }
  57. /*
  58. * the HMAC_MD5 transform looks like:
  59. *
  60. * MD5(K XOR opad, MD5(K XOR ipad, text))
  61. *
  62. * where K is an n byte key
  63. * ipad is the byte 0x36 repeated 64 times
  65. * opad is the byte 0x5c repeated 64 times
  66. * and text is the data being protected
  67. */
  69. /* start out by storing key in pads */
  70. ZeroMemory( k_ipad, sizeof k_ipad);
  71. ZeroMemory( k_opad, sizeof k_opad);
  72. CopyMemory( k_ipad, key, key_len);
  73. CopyMemory( k_opad, key, key_len);
  75. /* XOR key with ipad and opad values */
  76. for (i=0; i<64; i++) {
  77. k_ipad[i] ^= 0x36;
  78. k_opad[i] ^= 0x5c;
  79. }
  80. /*
  81. * perform inner MD5
  82. */
  83. MD5Init(&context); /* init context for 1st
  84. * pass */
  85. MD5Update(&context, k_ipad, 64); /* start with inner pad */
  86. MD5Update(&context, text, text_len); /* then text of datagram */
  87. MD5Final(&context); /* finish up 1st pass */
  89. CopyMemory(digest, context.digest, 16);
  91. /*
  92. * perform outer MD5
  93. */
  94. MD5Init(&context); /* init context for 2nd
  95. * pass */
  96. MD5Update(&context, k_opad, 64); /* start with outer pad */
  97. MD5Update(&context, digest, 16); /* then results of 1st
  98. * hash */
  99. MD5Final(&context); /* finish up 2nd pass */
  100. CopyMemory(digest, context.digest, 16);
  101. }
  103. //------------------------------------------------------------------------------------
  104. //
  105. // Initialize the static class members.
  106. //
  107. //------------------------------------------------------------------------------------
  108. CAuthentication* CAuthentication::m_spAuthentication = NULL;
  110. PSTR CAuthentication::GetHMACMD5Result(PSTR pszChallengeInfo, PSTR pszPassword)
  111. {
  112. MD5_CTX MD5Buffer;
  113. memset(&MD5Buffer, 0, sizeof(MD5Buffer));
  115. MD5Init(&MD5Buffer);
  116. MD5Update(&MD5Buffer, (const unsigned char*)pszPassword, lstrlenA(pszPassword));
  117. MD5Final(&MD5Buffer);
  119. BYTE pbHash[16];
  121. PBYTE pbHexHash = NULL; // The MD5 result in hex string format
  122. pbHexHash = new BYTE[MD5DIGESTLEN * 2 + 1];
  123. if (pbHexHash)
  124. {
  125. hmac_md5((unsigned char *) pszChallengeInfo, lstrlenA(pszChallengeInfo), MD5Buffer.digest, sizeof(MD5Buffer.digest), pbHash);
  127. PBYTE pCurrent = pbHexHash;
  129. // Convert the hash data to hex string.
  130. for (int i = 0; i < MD5DIGESTLEN; i++)
  131. {
  132. *pCurrent++ = g_rgchHexNumMap[pbHash[i]/16];
  133. *pCurrent++ = g_rgchHexNumMap[pbHash[i]%16];
  134. }
  136. *pCurrent = '\0';
  137. }
  139. return (PSTR) pbHexHash;
  140. }
  143. //------------------------------------------------------------------------------------
  144. //
  145. // Method: CAuthentication::GetMD5Key()
  146. //
  147. // Synopsis: Construct the MD5 hash key based on the ChallengeInfo and password.
  148. //
  149. // Append the password to the ChallengeInfo.
  150. //
  151. //------------------------------------------------------------------------------------
  152. PSTR
  153. CAuthentication::GetMD5Key(PSTR pszChallengeInfo, PSTR pszPassword)
  154. {
  155. int cbChallengeInfo = lstrlenA(pszChallengeInfo);
  156. int cbPassword = lstrlenA(pszPassword);
  158. PBYTE pbData = new BYTE[cbChallengeInfo + cbPassword + 1];
  160. if (!pbData)
  161. {
  162. //WARNING_OUT(("CAuthentication::GetMD5Key> Out of memory"));
  163. return NULL;
  164. }
  166. PBYTE pCurrent = pbData;
  168. ::CopyMemory(pCurrent, pszChallengeInfo, cbChallengeInfo);
  169. pCurrent += cbChallengeInfo;
  170. ::CopyMemory(pCurrent, pszPassword, cbPassword);
  171. pCurrent += cbPassword;
  172. *pCurrent = '\0';
  174. return (PSTR)pbData;
  175. }
  178. //------------------------------------------------------------------------------------
  179. //
  180. // Method: CAuthentication::GetMD5Result()
  181. //
  182. // Synposis: Compute the MD5 hash result based on the clear text.
  183. //
  184. //------------------------------------------------------------------------------------
  185. PSTR
  186. CAuthentication::GetMD5Result(PCSTR pszClearText)
  187. {
  188. PBYTE pbHexHash = NULL;
  189. if (pszClearText)
  190. {
  191. MD5_CTX MD5Buffer;
  192. MD5Init(&MD5Buffer);
  193. MD5Update(&MD5Buffer, (const unsigned char*)pszClearText, lstrlenA(pszClearText));
  194. MD5Final(&MD5Buffer);
  196. PBYTE pbHash = MD5Buffer.digest;
  198. pbHexHash = new BYTE[MD5DIGESTLEN * 2 + 1];
  199. if (pbHexHash)
  200. {
  201. PBYTE pCurrent = pbHexHash;
  203. // Convert the hash data to hex string.
  204. for (int i = 0; i < MD5DIGESTLEN; i++)
  205. {
  206. *pCurrent++ = g_rgchHexNumMap[pbHash[i]/16];
  207. *pCurrent++ = g_rgchHexNumMap[pbHash[i]%16];
  208. }
  210. *pCurrent = '\0';
  211. }
  212. else
  213. {
  214. //WARNING_OUT(("CAuthentication::GetMD5Result> Out of memory"));
  215. }
  216. }
  217. return (PSTR)pbHexHash;
  218. }
  221. //------------------------------------------------------------------------------------
  222. //
  223. // Method: CAuthentication::GetMD5Result()
  224. //
  225. // Synopsis: Compute the MD5 hash result based on the ChallengeInfo and password.
  226. //
  227. //------------------------------------------------------------------------------------
  228. PSTR
  229. CAuthentication::GetMD5Result(PSTR pszChallengeInfo, PSTR pszPassword)
  230. {
  231. PSTR pbHexHash = NULL; // The MD5 result in hex string format
  232. PSTR pMD5Key = GetMD5Key(pszChallengeInfo, pszPassword);
  234. pbHexHash = GetMD5Result(pMD5Key);
  235. delete pMD5Key;
  237. return pbHexHash;
  238. }