archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/cryptoapi/mincrypt/lib/verfile.cpp

534 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-------------------------------------------------------------------------
  2. // Microsoft Windows
  3. //
  4. // Copyright (C) Microsoft Corporation, 2001 - 2001
  5. //
  6. // File: verfile.cpp
  7. //
  8. // Contents: Minimal Cryptographic functions to hash files and verify
  9. // Authenticode signed files.
  10. // message
  11. //
  12. // Functions: MinCryptHashFile
  13. // MinCryptVerifySignedFile
  14. //
  15. // History: 21-Jan-01 philh created
  16. //--------------------------------------------------------------------------
  18. #include "global.hxx"
  19. #include <md5.h>
  20. #include <sha.h>
  22. #define PE_EXE_HEADER_TAG "MZ"
  23. #define MIN_PE_FILE_LEN 4
  25. #define MAX_SIGNED_FILE_AUTH_ATTR_CNT 10
  27. typedef struct _DIGEST_DATA {
  28. ALG_ID AlgId;
  29. void *pvSHA1orMD5Ctx;
  30. } DIGEST_DATA, *PDIGEST_DATA;
  32. // #define SPC_INDIRECT_DATA_OBJID "1.3.6.1.4.1.311.2.1.4"
  33. const BYTE rgbSPC_INDIRECT_DATA_OBJID[] =
  34. {0x2B, 0x06, 0x01, 0x04, 0x01, 0x82, 0x37, 0x02, 0x01, 0x04};
  36. BOOL
  37. WINAPI
  38. I_DigestFunction(
  39. DIGEST_HANDLE refdata,
  40. PBYTE pbData,
  41. DWORD cbData
  42. )
  43. {
  44. PDIGEST_DATA pDigestData = (PDIGEST_DATA) refdata;
  46. switch (pDigestData->AlgId)
  47. {
  48. case CALG_MD5:
  49. MD5Update((MD5_CTX *)pDigestData->pvSHA1orMD5Ctx, pbData, cbData);
  50. return(TRUE);
  52. case CALG_SHA1:
  53. A_SHAUpdate((A_SHA_CTX *)pDigestData->pvSHA1orMD5Ctx, pbData,
  54. cbData);
  55. return(TRUE);
  56. }
  57. return FALSE;
  58. }
  60. BOOL
  61. WINAPI
  62. I_IsNtPe32File(
  63. IN PCRYPT_DATA_BLOB pFileBlob
  64. )
  65. {
  66. const BYTE *pbFile = pFileBlob->pbData;
  67. DWORD cbFile = pFileBlob->cbData;
  69. if (MIN_PE_FILE_LEN > cbFile)
  70. return FALSE;
  72. if (0 != memcmp(&pbFile[0], PE_EXE_HEADER_TAG, strlen(PE_EXE_HEADER_TAG)))
  73. return FALSE;
  75. // Make sure it is a 32 bit PE
  76. if (sizeof(IMAGE_DOS_HEADER) > cbFile)
  77. return FALSE;
  78. else {
  79. IMAGE_DOS_HEADER *pDosHead = (IMAGE_DOS_HEADER *) pbFile;
  81. if (pDosHead->e_magic != IMAGE_DOS_SIGNATURE)
  82. return FALSE;
  84. if (cbFile < (sizeof(IMAGE_DOS_HEADER) + pDosHead->e_lfanew))
  85. return FALSE;
  86. else {
  87. IMAGE_NT_HEADERS *pNTHead =
  88. (IMAGE_NT_HEADERS *)((ULONG_PTR)pDosHead + pDosHead->e_lfanew);
  90. if (pNTHead->Signature != IMAGE_NT_SIGNATURE)
  91. return FALSE;
  92. }
  93. }
  95. return TRUE;
  96. }
  98. //+-------------------------------------------------------------------------
  99. // Hashes the file according to the Hash ALG_ID.
  100. //
  101. // According to dwFileType, pvFile can be a pwszFilename, hFile or pFileBlob.
  102. // Only requires READ access.
  103. //
  104. // dwFileType:
  105. // MINCRYPT_FILE_NAME : pvFile - LPCWSTR pwszFilename
  106. // MINCRYPT_FILE_HANDLE : pvFile - HANDLE hFile
  107. // MINCRYPT_FILE_BLOB : pvFile - PCRYPT_DATA_BLOB pFileBlob
  108. //
  109. // rgbHash is updated with the resultant hash. *pcbHash is updated with
  110. // the length associated with the hash algorithm.
  111. //
  112. // If the function succeeds, the return value is ERROR_SUCCESS. Otherwise,
  113. // a nonzero error code is returned.
  114. //
  115. // Only CALG_SHA1 and CALG_MD5 are supported.
  116. //
  117. // If a NT PE 32 bit file format, hashed according to imagehlp rules, ie, skip
  118. // section containing potential signature, ... . Otherwise, the entire file
  119. // is hashed.
  120. //--------------------------------------------------------------------------
  121. LONG
  122. WINAPI
  123. MinCryptHashFile(
  124. IN DWORD dwFileType,
  125. IN const VOID *pvFile,
  126. IN ALG_ID HashAlgId,
  127. OUT BYTE rgbHash[MINCRYPT_MAX_HASH_LEN],
  128. OUT DWORD *pcbHash
  129. )
  130. {
  131. LONG lErr;
  132. CRYPT_DATA_BLOB FileBlob = {0, NULL};
  133. DIGEST_DATA DigestData;
  134. A_SHA_CTX ShaCtx;
  135. MD5_CTX Md5Ctx;
  137. __try {
  138. lErr = I_MinCryptMapFile(
  139. dwFileType,
  140. pvFile,
  141. &FileBlob
  142. );
  143. if (ERROR_SUCCESS != lErr)
  144. goto ErrorReturn;
  146. if (!I_IsNtPe32File(&FileBlob)) {
  147. // Hash the entire file
  148. lErr = MinCryptHashMemory(
  149. HashAlgId,
  150. 1, // cBlob
  151. &FileBlob,
  152. rgbHash,
  153. pcbHash
  154. );
  155. goto CommonReturn;
  156. }
  158. DigestData.AlgId = HashAlgId;
  159. switch (HashAlgId) {
  160. case CALG_MD5:
  161. DigestData.pvSHA1orMD5Ctx = &Md5Ctx;
  162. MD5Init(&Md5Ctx);
  163. break;
  165. case CALG_SHA1:
  166. DigestData.pvSHA1orMD5Ctx = &ShaCtx;
  167. A_SHAInit(&ShaCtx);
  168. break;
  170. default:
  171. goto InvalidHashAlgId;
  172. }
  174. if (!imagehack_ImageGetDigestStream(
  175. &FileBlob,
  176. 0, // DigestLevel, ignored
  177. I_DigestFunction,
  178. &DigestData
  179. ))
  180. goto DigestStreamError;
  181. else {
  182. DWORD dwPadBeforeCerts;
  184. dwPadBeforeCerts = (FileBlob.cbData + 7) & ~7;
  185. dwPadBeforeCerts -= FileBlob.cbData;
  187. if (0 < dwPadBeforeCerts) {
  188. BYTE rgb[8];
  189. // imagehlp put nulls before the signature!
  190. memset(rgb, 0x00, dwPadBeforeCerts);
  192. if (!I_DigestFunction(&DigestData, rgb, dwPadBeforeCerts))
  193. goto DigestFunctionError;
  194. }
  195. }
  197. switch (HashAlgId) {
  198. case CALG_MD5:
  199. MD5Final(&Md5Ctx);
  200. memcpy(rgbHash, Md5Ctx.digest, MD5DIGESTLEN);
  201. *pcbHash = MINCRYPT_MD5_HASH_LEN;
  202. break;
  204. case CALG_SHA1:
  205. A_SHAFinal(&ShaCtx, rgbHash);
  206. *pcbHash = MINCRYPT_SHA1_HASH_LEN;
  207. break;
  209. default:
  210. goto InvalidHashAlgId;
  211. }
  213. } __except(EXCEPTION_EXECUTE_HANDLER) {
  214. lErr = GetExceptionCode();
  215. if (ERROR_SUCCESS == lErr)
  216. lErr = E_UNEXPECTED;
  217. goto ErrorReturn;
  218. }
  220. lErr = ERROR_SUCCESS;
  222. CommonReturn:
  223. //**********************************************************************
  224. // WARNING!!!!
  225. //
  226. // UnmapViewOfFile is in another DLL, kernel32.dll.
  227. // lErr and the return hash in rgbHash[] must be protected.
  228. //
  229. //**********************************************************************
  230. if (MINCRYPT_FILE_BLOB != dwFileType && NULL != FileBlob.pbData)
  231. UnmapViewOfFile(FileBlob.pbData);
  232. return lErr;
  234. ErrorReturn:
  235. *pcbHash = 0;
  236. goto CommonReturn;
  238. InvalidHashAlgId:
  239. lErr = NTE_BAD_ALGID;
  240. goto ErrorReturn;
  242. DigestStreamError:
  243. DigestFunctionError:
  244. lErr = NTE_BAD_HASH;
  245. goto ErrorReturn;
  246. }
  249. // Only called when cAttrOID != 0
  250. LONG
  251. WINAPI
  252. I_GetAuthAttributes(
  253. IN PCRYPT_DER_BLOB pAttrsValueBlob,
  254. IN DWORD cAttrOID,
  255. IN CRYPT_DER_BLOB rgAttrEncodedOIDBlob[],
  256. // CRYPT_DER_BLOB rgAttrBlob[cAttrOID] header is at beginning
  257. // with the bytes pointed to immediately following
  258. OUT OPTIONAL CRYPT_DER_BLOB *rgAttrValueBlob,
  259. IN OUT DWORD *pcbAttr
  260. )
  261. {
  262. LONG lErr;
  263. DWORD i;
  264. LONG lRemainExtra;
  265. BYTE *pbExtra;
  266. DWORD cbAttr;
  268. CRYPT_DER_BLOB rgrgAttrBlob[MAX_SIGNED_FILE_AUTH_ATTR_CNT][MINASN1_ATTR_BLOB_CNT];
  269. DWORD cAttr;
  271. assert(0 != cAttrOID);
  273. if (rgAttrValueBlob)
  274. cbAttr = *pcbAttr;
  275. else
  276. cbAttr = 0;
  278. lRemainExtra = cbAttr - sizeof(CRYPT_DER_BLOB) * cAttrOID;
  279. if (0 <= lRemainExtra) {
  280. memset(rgAttrValueBlob, 0, sizeof(CRYPT_DER_BLOB) * cAttrOID);
  281. pbExtra = (BYTE *) &rgAttrValueBlob[cAttrOID];
  282. } else
  283. pbExtra = NULL;
  285. // Parse the authenticated attributes
  286. cAttr = MAX_SIGNED_FILE_AUTH_ATTR_CNT;
  287. if (0 >= MinAsn1ParseAttributes(
  288. pAttrsValueBlob,
  289. &cAttr,
  290. rgrgAttrBlob))
  291. cAttr = 0;
  293. for (i = 0; i < cAttrOID; i++) {
  294. PCRYPT_DER_BLOB rgFindAttrBlob;
  296. rgFindAttrBlob = MinAsn1FindAttribute(
  297. &rgAttrEncodedOIDBlob[i],
  298. cAttr,
  299. rgrgAttrBlob
  300. );
  301. if (rgFindAttrBlob) {
  302. PCRYPT_DER_BLOB pFindAttrValue =
  303. &rgFindAttrBlob[MINASN1_ATTR_VALUE_IDX];
  304. const BYTE *pbFindValue = pFindAttrValue->pbData;
  305. DWORD cbFindValue = pFindAttrValue->cbData;
  307. if (0 < cbFindValue) {
  308. lRemainExtra -= cbFindValue;
  309. if (0 <= lRemainExtra) {
  310. rgAttrValueBlob[i].pbData = pbExtra;
  311. rgAttrValueBlob[i].cbData = cbFindValue;
  313. memcpy(pbExtra, pbFindValue, cbFindValue);
  314. pbExtra += cbFindValue;
  315. }
  316. }
  317. }
  318. }
  320. if (0 <= lRemainExtra) {
  321. *pcbAttr = cbAttr - (DWORD) lRemainExtra;
  322. lErr = ERROR_SUCCESS;
  323. } else {
  324. *pcbAttr = cbAttr + (DWORD) -lRemainExtra;
  325. lErr = ERROR_INSUFFICIENT_BUFFER;
  326. }
  328. return lErr;
  329. }
  331. //+-------------------------------------------------------------------------
  332. // Verifies a previously signed file.
  333. //
  334. // According to dwFileType, pvFile can be a pwszFilename, hFile or pFileBlob.
  335. // Only requires READ access.
  336. //
  337. // dwFileType:
  338. // MINCRYPT_FILE_NAME : pvFile - LPCWSTR pwszFilename
  339. // MINCRYPT_FILE_HANDLE : pvFile - HANDLE hFile
  340. // MINCRYPT_FILE_BLOB : pvFile - PCRYPT_DATA_BLOB pFileBlob
  341. //
  342. // Checks if the file has an embedded PKCS #7 Signed Data message containing
  343. // Indirect Data. The PKCS #7 is verified via MinCryptVerifySignedData().
  344. // The Indirect Data is parsed via MinAsn1ParseIndirectData() to get the
  345. // HashAlgId and the file hash. MinCryptHashFile() is called to hash the
  346. // file. The returned hash is compared against the Indirect Data's hash.
  347. //
  348. // The caller can request one or more signer authenticated attribute values
  349. // to be returned. The still encoded values are returned in the
  350. // caller allocated memory. The beginning of this returned memory will
  351. // be set to an array of attribute value blobs pointing to these
  352. // encoded values. The caller should make every attempt to allow for a
  353. // single pass call. The necessary memory size is:
  354. // (cAttrOID * sizeof(CRYPT_DER_BLOB)) +
  355. // total length of encoded attribute values.
  356. //
  357. // *pcbAttr will be updated with the number of bytes required to contain
  358. // the attribute blobs and values. If the input memory is insufficient,
  359. // ERROR_INSUFFICIENT_BUFFER will be returned if no other error.
  360. //
  361. // For the multi-valued attributes, only the first value is returned.
  362. //
  363. // If the function succeeds, the return value is ERROR_SUCCESS. Otherwise,
  364. // a nonzero error code is returned.
  365. //
  366. // Only NT, PE 32 bit file formats are supported.
  367. //--------------------------------------------------------------------------
  368. LONG
  369. WINAPI
  370. MinCryptVerifySignedFile(
  371. IN DWORD dwFileType,
  372. IN const VOID *pvFile,
  374. IN OPTIONAL DWORD cAttrOID,
  375. IN OPTIONAL CRYPT_DER_BLOB rgAttrEncodedOIDBlob[],
  376. // CRYPT_DER_BLOB rgAttrBlob[cAttrOID] header is at beginning
  377. // with the bytes pointed to immediately following
  378. OUT OPTIONAL CRYPT_DER_BLOB *rgAttrValueBlob,
  379. IN OUT OPTIONAL DWORD *pcbAttr
  380. )
  381. {
  382. LONG lErr;
  383. CRYPT_DATA_BLOB FileBlob = {0, NULL};
  385. __try {
  386. LPWIN_CERTIFICATE pCertHdr = NULL;
  387. const BYTE *pbEncodedSignedData;
  388. DWORD cbEncodedSignedData;
  389. CRYPT_DER_BLOB rgVerSignedDataBlob[MINCRYPT_VER_SIGNED_DATA_BLOB_CNT];
  390. CRYPT_DER_BLOB rgIndirectDataBlob[MINASN1_INDIRECT_DATA_BLOB_CNT];
  391. ALG_ID HashAlgId;
  392. BYTE rgbHash[MINCRYPT_MAX_HASH_LEN];
  393. DWORD cbHash;
  395. lErr = I_MinCryptMapFile(
  396. dwFileType,
  397. pvFile,
  398. &FileBlob
  399. );
  400. if (ERROR_SUCCESS != lErr)
  401. goto ErrorReturn;
  403. if (!I_IsNtPe32File(&FileBlob))
  404. goto NotNtPe32File;
  406. if (!imagehack_ImageGetCertificateData(
  407. &FileBlob,
  408. 0, // CertificateIndex
  409. &pCertHdr
  410. ))
  411. goto NoSignature;
  413. if (WIN_CERT_REVISION_2_0 != pCertHdr->wRevision ||
  414. WIN_CERT_TYPE_PKCS_SIGNED_DATA != pCertHdr->wCertificateType)
  415. goto UnsupportedSignature;
  417. if (offsetof(WIN_CERTIFICATE, bCertificate) > pCertHdr->dwLength)
  418. goto InvalidSignature;
  420. cbEncodedSignedData = pCertHdr->dwLength -
  421. offsetof(WIN_CERTIFICATE, bCertificate);
  422. pbEncodedSignedData = pCertHdr->bCertificate;
  424. lErr = MinCryptVerifySignedData(
  425. pbEncodedSignedData,
  426. cbEncodedSignedData,
  427. rgVerSignedDataBlob
  428. );
  429. if (ERROR_SUCCESS != lErr)
  430. goto ErrorReturn;
  432. // The data content should be Indirect Data
  433. if (sizeof(rgbSPC_INDIRECT_DATA_OBJID) !=
  434. rgVerSignedDataBlob[
  435. MINCRYPT_VER_SIGNED_DATA_CONTENT_OID_IDX].cbData
  436. ||
  437. 0 != memcmp(rgbSPC_INDIRECT_DATA_OBJID,
  438. rgVerSignedDataBlob[
  439. MINCRYPT_VER_SIGNED_DATA_CONTENT_OID_IDX].pbData,
  440. sizeof(rgbSPC_INDIRECT_DATA_OBJID)))
  441. goto NotIndirectDataOID;
  443. if (0 >= MinAsn1ParseIndirectData(
  444. &rgVerSignedDataBlob[MINCRYPT_VER_SIGNED_DATA_CONTENT_DATA_IDX],
  445. rgIndirectDataBlob
  446. ))
  447. goto ParseIndirectDataError;
  449. HashAlgId = MinCryptDecodeHashAlgorithmIdentifier(
  450. &rgIndirectDataBlob[MINASN1_INDIRECT_DATA_DIGEST_ALGID_IDX]
  451. );
  452. if (0 == HashAlgId)
  453. goto UnknownHashAlgId;
  455. lErr = MinCryptHashFile(
  456. MINCRYPT_FILE_BLOB,
  457. (const VOID *) &FileBlob,
  458. HashAlgId,
  459. rgbHash,
  460. &cbHash
  461. );
  462. if (ERROR_SUCCESS != lErr)
  463. goto ErrorReturn;
  465. // Check that the hash in the indirect data matches the file hash
  466. if (cbHash !=
  467. rgIndirectDataBlob[MINASN1_INDIRECT_DATA_DIGEST_IDX].cbData
  468. ||
  469. 0 != memcmp(rgbHash,
  470. rgIndirectDataBlob[MINASN1_INDIRECT_DATA_DIGEST_IDX].pbData,
  471. cbHash))
  472. goto InvalidFileHash;
  474. if (cAttrOID)
  475. lErr = I_GetAuthAttributes(
  476. &rgVerSignedDataBlob[MINCRYPT_VER_SIGNED_DATA_AUTH_ATTRS_IDX],
  477. cAttrOID,
  478. rgAttrEncodedOIDBlob,
  479. rgAttrValueBlob,
  480. pcbAttr
  481. );
  482. else
  483. lErr = ERROR_SUCCESS;
  485. } __except(EXCEPTION_EXECUTE_HANDLER) {
  486. lErr = GetExceptionCode();
  487. if (ERROR_SUCCESS == lErr)
  488. lErr = E_UNEXPECTED;
  489. goto ErrorReturn;
  490. }
  492. CommonReturn:
  493. //**********************************************************************
  494. // WARNING!!!!
  495. //
  496. // UnmapViewOfFile is in another DLL, kernel32.dll.
  497. // lErr must be protected.
  498. //
  499. //**********************************************************************
  500. if (MINCRYPT_FILE_BLOB != dwFileType && NULL != FileBlob.pbData)
  501. UnmapViewOfFile(FileBlob.pbData);
  502. return lErr;
  504. ErrorReturn:
  505. assert(ERROR_SUCCESS != lErr);
  506. if (ERROR_INSUFFICIENT_BUFFER == lErr)
  507. // This error can only be set when we determine that the attribute
  508. // buffer isn't big enough.
  509. lErr = E_UNEXPECTED;
  510. goto CommonReturn;
  512. NotNtPe32File:
  513. lErr = ERROR_NOT_SUPPORTED;
  514. goto ErrorReturn;
  516. NoSignature:
  517. UnsupportedSignature:
  518. InvalidSignature:
  519. lErr = TRUST_E_NOSIGNATURE;
  520. goto ErrorReturn;
  522. NotIndirectDataOID:
  523. ParseIndirectDataError:
  524. lErr = CRYPT_E_BAD_MSG;
  525. goto ErrorReturn;
  527. UnknownHashAlgId:
  528. lErr = CRYPT_E_UNKNOWN_ALGO;
  529. goto ErrorReturn;
  531. InvalidFileHash:
  532. lErr = CRYPT_E_HASH_VALUE;
  533. goto ErrorReturn;
  534. }