archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/protocols/schannel/spbase/ssl2pkl.c

705 lines
20 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1992 - 1995.
  5. //
  6. // File: pickle.c
  7. //
  8. // Contents:
  9. //
  10. // Classes:
  11. //
  12. // Functions:
  13. //
  14. // History: 8-02-95 RichardW Created
  15. //
  16. //----------------------------------------------------------------------------
  18. #include <spbase.h>
  19. #include <ssl2msg.h>
  21. #define SSL_OFFSET_OF(t, v) ((DWORD)(ULONG_PTR)&(((t)NULL)->v))
  25. #define SIZEOF(pMessage) (SslRecordSize((PSSL2_MESSAGE_HEADER) pMessage ) )
  27. DWORD
  28. SslRecordSize(
  29. PSSL2_MESSAGE_HEADER pHeader)
  30. {
  31. DWORD Size;
  33. if (pHeader->Byte0 & 0x80)
  34. {
  35. Size = COMBINEBYTES(pHeader->Byte0, pHeader->Byte1) & 0x7FFF;
  36. }
  37. else
  38. {
  39. Size = COMBINEBYTES(pHeader->Byte0, pHeader->Byte1) & 0x3FFF;
  40. }
  41. return(Size);
  42. }
  46. BOOL
  47. Ssl2MapCipherToExternal(
  48. Ssl2_Cipher_Kind FastForm,
  49. PSsl2_Cipher_Tuple pTuple)
  50. {
  51. pTuple->C1 = (UCHAR)((FastForm >> 16) & 0xff);
  52. pTuple->C2 = (UCHAR)((FastForm >> 8) & 0xff);
  53. pTuple->C3 = (UCHAR)(FastForm & 0xff);
  56. return(TRUE);
  57. }
  59. Ssl2_Cipher_Kind
  60. Ssl2MapCipherFromExternal(
  61. PSsl2_Cipher_Tuple pTuple)
  62. {
  64. return SSL_MKFAST(pTuple->C1, pTuple->C2, pTuple->C3);
  65. }
  69. SP_STATUS
  70. Ssl2PackClientHello(
  71. PSsl2_Client_Hello pCanonical,
  72. PSPBuffer pCommOutput)
  73. {
  74. DWORD cbMessage;
  75. PSSL2_CLIENT_HELLO pMessage;
  76. DWORD Size;
  77. PUCHAR pBuffer;
  78. DWORD i;
  80. if(pCanonical == NULL || pCommOutput == NULL)
  81. {
  82. return SP_LOG_RESULT(PCT_INT_INTERNAL_ERROR);
  83. }
  85. pCommOutput->cbData = 0;
  87. pCommOutput->cbData = pCanonical->cbSessionID +
  88. pCanonical->cbChallenge +
  89. pCanonical->cCipherSpecs * sizeof(Ssl2_Cipher_Tuple) +
  90. SSL_OFFSET_OF(PSSL2_CLIENT_HELLO, VariantData);
  92. cbMessage = pCommOutput->cbData - sizeof(SSL2_MESSAGE_HEADER);
  94. /* are we allocating our own memory? */
  95. if(pCommOutput->pvBuffer == NULL)
  96. {
  97. pCommOutput->pvBuffer = SPExternalAlloc(pCommOutput->cbData);
  98. if (NULL == pCommOutput->pvBuffer)
  99. {
  100. return SP_LOG_RESULT(SEC_E_INSUFFICIENT_MEMORY);
  101. }
  102. pCommOutput->cbBuffer = pCommOutput->cbData;
  103. }
  104. if(pCommOutput->cbData > pCommOutput->cbBuffer)
  105. {
  106. // Required buffer size returned in pCommOutput->cbData.
  107. return SP_LOG_RESULT(PCT_INT_BUFF_TOO_SMALL);
  108. }
  110. pMessage = pCommOutput->pvBuffer;
  112. pMessage->MessageId = SSL2_MT_CLIENT_HELLO;
  114. pMessage->VersionMsb = MSBOF(pCanonical->dwVer);
  115. pMessage->VersionLsb = LSBOF(pCanonical->dwVer);
  117. pBuffer = pMessage->VariantData;
  119. cbMessage -= pCanonical->cCipherSpecs * sizeof(Ssl2_Cipher_Tuple);
  120. pCommOutput->cbData -= pCanonical->cCipherSpecs * sizeof(Ssl2_Cipher_Tuple);
  122. Size = 0;
  124. for (i = 0; i < pCanonical->cCipherSpecs ; i++ )
  125. {
  126. if (!Ssl2MapCipherToExternal(pCanonical->CipherSpecs[i],
  127. (PSsl2_Cipher_Tuple) pBuffer) )
  128. {
  129. continue;
  130. }
  132. pBuffer += sizeof(Ssl2_Cipher_Tuple);
  133. Size += sizeof(Ssl2_Cipher_Tuple);
  134. }
  136. cbMessage += Size;
  137. pCommOutput->cbData += Size;
  139. pCommOutput->cbData = cbMessage + 2;
  141. pMessage->Header.Byte0 = MSBOF(cbMessage) | 0x80;
  142. pMessage->Header.Byte1 = LSBOF(cbMessage);
  144. pMessage->CipherSpecsLenMsb = MSBOF(Size);
  145. pMessage->CipherSpecsLenLsb = LSBOF(Size);
  147. pMessage->SessionIdLenMsb = MSBOF(pCanonical->cbSessionID);
  148. pMessage->SessionIdLenLsb = LSBOF(pCanonical->cbSessionID);
  149. if (pCanonical->cbSessionID)
  150. {
  151. CopyMemory( pBuffer,
  152. pCanonical->SessionID,
  153. pCanonical->cbSessionID);
  155. pBuffer += pCanonical->cbSessionID;
  156. }
  158. pMessage->ChallengeLenMsb = MSBOF(pCanonical->cbChallenge);
  159. pMessage->ChallengeLenLsb = LSBOF(pCanonical->cbChallenge);
  160. if (pCanonical->cbChallenge)
  161. {
  162. CopyMemory( pBuffer,
  163. pCanonical->Challenge,
  164. pCanonical->cbChallenge);
  165. }
  167. return(PCT_ERR_OK);
  168. }
  171. SP_STATUS
  172. Ssl2UnpackClientHello(
  173. PSPBuffer pInput,
  174. PSsl2_Client_Hello * ppClient)
  175. {
  177. PSSL2_CLIENT_HELLO pMessage;
  178. DWORD ReportedSize;
  179. DWORD CipherSpecsSize;
  180. DWORD cCipherSpecs;
  181. PSsl2_Client_Hello pCanonical;
  182. PUCHAR pBuffer;
  183. DWORD Size;
  184. DWORD i, dwVer;
  186. pMessage = pInput->pvBuffer;
  188. if(pInput->cbData < 2)
  189. {
  190. pInput->cbData = 2;
  191. return PCT_INT_INCOMPLETE_MSG;
  192. }
  194. ReportedSize = SIZEOF(pMessage);
  195. if ((ReportedSize+2) > pInput->cbData)
  196. {
  197. pInput->cbData = ReportedSize+2;
  198. return PCT_INT_INCOMPLETE_MSG;
  199. }
  200. if(ReportedSize < SSL_OFFSET_OF(PSSL2_CLIENT_HELLO, VariantData))
  201. {
  202. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  203. }
  205. if (pMessage->MessageId != SSL2_MT_CLIENT_HELLO) {
  206. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  207. }
  209. dwVer = COMBINEBYTES(pMessage->VersionMsb, pMessage->VersionLsb);
  211. if (dwVer < 2) //VERSION 2 WILL COMPUTE TO 2 (00:02)
  212. {
  213. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  214. }
  216. CipherSpecsSize = COMBINEBYTES( pMessage->CipherSpecsLenMsb,
  217. pMessage->CipherSpecsLenLsb );
  220. *ppClient = NULL;
  221. /* check that this all fits into the message */
  222. if (SSL_OFFSET_OF(PSSL2_CLIENT_HELLO, VariantData)
  223. - sizeof(SSL2_MESSAGE_HEADER) /* don't count the header */
  224. + CipherSpecsSize
  225. > ReportedSize)
  226. {
  227. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  228. }
  230. cCipherSpecs = CipherSpecsSize / sizeof(Ssl2_Cipher_Tuple);
  233. /* Allocate a buffer for the canonical client hello */
  234. pCanonical = (PSsl2_Client_Hello)SPExternalAlloc(
  235. sizeof(Ssl2_Client_Hello) +
  236. cCipherSpecs * sizeof(UNICipherMap));
  238. if (!pCanonical)
  239. {
  240. return(SP_LOG_RESULT(PCT_INT_INTERNAL_ERROR));
  241. }
  243. pCanonical->dwVer = COMBINEBYTES( pMessage->VersionMsb,
  244. pMessage->VersionLsb );
  246. pBuffer = pMessage->VariantData;
  249. pCanonical->cCipherSpecs = cCipherSpecs;
  251. for (i = 0 ; i < cCipherSpecs ; i++ )
  252. {
  253. pCanonical->CipherSpecs[i] = Ssl2MapCipherFromExternal((PSsl2_Cipher_Tuple)
  254. pBuffer);
  256. pBuffer += sizeof(Ssl2_Cipher_Tuple);
  257. }
  259. Size = COMBINEBYTES( pMessage->SessionIdLenMsb,
  260. pMessage->SessionIdLenLsb );
  262. if (Size <= SSL2_SESSION_ID_LEN)
  263. {
  264. CopyMemory( pCanonical->SessionID, pBuffer, Size);
  265. pBuffer += Size;
  267. }
  268. else
  269. {
  270. SPExternalFree( pCanonical );
  271. return PCT_ERR_ILLEGAL_MESSAGE;
  272. }
  274. pCanonical->cbSessionID = Size;
  276. Size = COMBINEBYTES( pMessage->ChallengeLenMsb,
  277. pMessage->ChallengeLenLsb );
  279. if ((Size > 0) && (Size <= SSL2_MAX_CHALLENGE_LEN))
  280. {
  281. CopyMemory( pCanonical->Challenge, pBuffer, Size );
  283. pBuffer += Size;
  284. }
  285. else
  286. {
  287. SPExternalFree( pCanonical );
  288. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  289. }
  291. pCanonical->cbChallenge = Size;
  293. *ppClient = pCanonical;
  294. pInput->cbData = ReportedSize + sizeof(SSL2_MESSAGE_HEADER);
  295. return( PCT_ERR_OK );
  297. }
  299. SP_STATUS
  300. Ssl2PackServerHello(
  301. PSsl2_Server_Hello pCanonical,
  302. PSPBuffer pCommOutput)
  303. {
  304. DWORD cbMessage;
  305. PSSL2_SERVER_HELLO pMessage;
  306. DWORD Size;
  307. PUCHAR pBuffer;
  308. DWORD i;
  310. if(pCanonical == NULL || pCommOutput == NULL)
  311. {
  312. return SP_LOG_RESULT(PCT_INT_INTERNAL_ERROR);
  313. }
  314. pCommOutput->cbData = 0;
  316. cbMessage = pCanonical->cbConnectionID +
  317. pCanonical->cbCertificate +
  318. pCanonical->cCipherSpecs * sizeof(Ssl2_Cipher_Tuple) +
  319. SSL_OFFSET_OF(PSSL2_SERVER_HELLO, VariantData) -
  320. sizeof(SSL2_MESSAGE_HEADER);
  322. pCommOutput->cbData = cbMessage + 2;
  325. /* are we allocating our own memory? */
  326. if(pCommOutput->pvBuffer == NULL)
  327. {
  328. pCommOutput->pvBuffer = SPExternalAlloc(pCommOutput->cbData);
  329. if (NULL == pCommOutput->pvBuffer)
  330. {
  331. return SP_LOG_RESULT(SEC_E_INSUFFICIENT_MEMORY);
  332. }
  333. pCommOutput->cbBuffer = pCommOutput->cbData;
  334. }
  335. if(pCommOutput->cbData > pCommOutput->cbBuffer)
  336. {
  337. // Required buffer size returned in pCommOutput->cbData.
  338. return SP_LOG_RESULT(PCT_INT_BUFF_TOO_SMALL);
  339. }
  341. pMessage = pCommOutput->pvBuffer;
  344. pMessage->MessageId = SSL2_MT_SERVER_HELLO;
  345. pMessage->ServerVersionMsb = SSL2_SERVER_VERSION_MSB;
  346. pMessage->ServerVersionLsb = SSL2_SERVER_VERSION_LSB;
  347. pMessage->SessionIdHit = (UCHAR) pCanonical->SessionIdHit;
  348. pMessage->CertificateType = (UCHAR) pCanonical->CertificateType;
  350. pBuffer = pMessage->VariantData;
  352. //
  353. // Pack certificate if present
  354. //
  356. pMessage->CertificateLenMsb = MSBOF(pCanonical->cbCertificate);
  357. pMessage->CertificateLenLsb = LSBOF(pCanonical->cbCertificate);
  359. if (pCanonical->cbCertificate)
  360. {
  361. CopyMemory( pBuffer,
  362. pCanonical->pCertificate,
  363. pCanonical->cbCertificate);
  365. pBuffer += pCanonical->cbCertificate ;
  366. }
  368. Size = pCanonical->cCipherSpecs * sizeof(Ssl2_Cipher_Tuple);
  370. for (i = 0; i < pCanonical->cCipherSpecs ; i++ )
  371. {
  372. if (Ssl2MapCipherToExternal(pCanonical->pCipherSpecs[i],
  373. (PSsl2_Cipher_Tuple) pBuffer) )
  374. {
  375. pBuffer += sizeof(Ssl2_Cipher_Tuple);
  376. }
  377. else
  378. {
  379. Size -= sizeof(Ssl2_Cipher_Tuple);
  380. cbMessage -= sizeof(Ssl2_Cipher_Tuple);
  381. }
  382. }
  384. pCommOutput->cbData = cbMessage + 2;
  386. pMessage->Header.Byte0 = MSBOF(cbMessage) | 0x80;
  387. pMessage->Header.Byte1 = LSBOF(cbMessage);
  389. pMessage->CipherSpecsLenMsb = MSBOF(Size);
  390. pMessage->CipherSpecsLenLsb = LSBOF(Size);
  392. pMessage->ConnectionIdLenMsb = MSBOF(pCanonical->cbConnectionID);
  393. pMessage->ConnectionIdLenLsb = LSBOF(pCanonical->cbConnectionID);
  394. if (pCanonical->cbConnectionID)
  395. {
  396. CopyMemory( pBuffer,
  397. pCanonical->ConnectionID,
  398. pCanonical->cbConnectionID);
  400. pBuffer += pCanonical->cbConnectionID;
  401. }
  404. return( PCT_ERR_OK );
  406. }
  409. SP_STATUS
  410. Ssl2UnpackServerHello(
  411. PSPBuffer pInput,
  412. PSsl2_Server_Hello * ppServer)
  413. {
  414. PSsl2_Server_Hello pCanonical;
  415. PSSL2_SERVER_HELLO pMessage;
  416. PUCHAR pBuffer;
  417. DWORD cbCertificate;
  418. DWORD cCipherSpecs;
  419. DWORD cbConnId;
  420. DWORD i;
  421. DWORD ReportedSize;
  423. pMessage = pInput->pvBuffer;
  424. if(pInput->cbData < 2)
  425. {
  426. pInput->cbData = 2;
  427. return PCT_INT_INCOMPLETE_MSG;
  428. }
  430. ReportedSize = SIZEOF(pMessage);
  431. if ((ReportedSize+2) > pInput->cbData)
  432. {
  433. pInput->cbData = ReportedSize+2;
  434. return PCT_INT_INCOMPLETE_MSG;
  435. }
  438. if(ReportedSize + 2 < SSL_OFFSET_OF(PSSL2_SERVER_HELLO, VariantData) )
  439. {
  440. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  441. }
  442. *ppServer = NULL;
  444. //
  445. // Verify Header:
  446. //
  448. if ((pMessage->MessageId != SSL2_MT_SERVER_HELLO) ||
  449. (pMessage->ServerVersionMsb != SSL2_SERVER_VERSION_MSB) ||
  450. (pMessage->ServerVersionLsb != SSL2_SERVER_VERSION_LSB) )
  451. {
  452. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  453. }
  455. cbCertificate = COMBINEBYTES( pMessage->CertificateLenMsb,
  456. pMessage->CertificateLenLsb);
  458. cCipherSpecs = COMBINEBYTES(pMessage->CipherSpecsLenMsb,
  459. pMessage->CipherSpecsLenLsb);
  461. if(cCipherSpecs % sizeof(Ssl2_Cipher_Tuple))
  462. {
  463. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  464. }
  466. cCipherSpecs /= sizeof(Ssl2_Cipher_Tuple);
  468. cbConnId = COMBINEBYTES(pMessage->ConnectionIdLenMsb,
  469. pMessage->ConnectionIdLenLsb);
  471. if(ReportedSize + 2 < SSL_OFFSET_OF(PSSL2_SERVER_HELLO, VariantData) +
  472. cbCertificate +
  473. cCipherSpecs * sizeof(Ssl2_Cipher_Tuple) +
  474. cbConnId)
  475. {
  476. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  477. }
  479. pCanonical = (PSsl2_Server_Hello)SPExternalAlloc(
  480. sizeof(Ssl2_Server_Hello) +
  481. cCipherSpecs * sizeof(Ssl2_Cipher_Kind) +
  482. cbCertificate );
  485. if (!pCanonical)
  486. {
  487. return(SP_LOG_RESULT(SEC_E_INSUFFICIENT_MEMORY));
  488. }
  490. pCanonical->pCertificate = (PUCHAR) (pCanonical + 1);
  491. pCanonical->pCipherSpecs = (PCipherSpec) (pCanonical + 1);
  492. pCanonical->pCertificate = (PUCHAR) (pCanonical->pCipherSpecs + cCipherSpecs);
  496. //
  497. // Expand out:
  498. //
  500. pCanonical->SessionIdHit = (DWORD) pMessage->SessionIdHit;
  501. pCanonical->CertificateType = (DWORD) pMessage->CertificateType;
  502. pCanonical->cbCertificate = cbCertificate;
  503. pCanonical->cCipherSpecs = cCipherSpecs;
  504. pCanonical->cbConnectionID = cbConnId;
  506. pBuffer = pMessage->VariantData;
  508. CopyMemory(pCanonical->pCertificate, pBuffer, cbCertificate);
  509. pBuffer += cbCertificate;
  511. for (i = 0 ; i < cCipherSpecs ; i++ )
  512. {
  513. pCanonical->pCipherSpecs[i] = Ssl2MapCipherFromExternal((PSsl2_Cipher_Tuple)
  514. pBuffer);
  516. pBuffer += sizeof(Ssl2_Cipher_Tuple);
  517. }
  519. if ((cbConnId) && (cbConnId <= SSL2_MAX_CONNECTION_ID_LEN))
  520. {
  521. CopyMemory(pCanonical->ConnectionID, pBuffer, cbConnId);
  522. }
  523. else
  524. {
  525. SPExternalFree(pCanonical);
  526. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  527. }
  529. *ppServer = pCanonical;
  530. pInput->cbData = ReportedSize + sizeof(SSL2_MESSAGE_HEADER);
  531. return( PCT_ERR_OK);
  533. }
  535. SP_STATUS
  536. Ssl2PackClientMasterKey(
  537. PSsl2_Client_Master_Key pCanonical,
  538. PSPBuffer pCommOutput)
  539. {
  540. DWORD cbMessage;
  541. PSSL2_CLIENT_MASTER_KEY pMessage;
  542. PUCHAR pBuffer;
  544. cbMessage = pCanonical->ClearKeyLen +
  545. pCanonical->EncryptedKeyLen +
  546. pCanonical->KeyArgLen +
  547. SSL_OFFSET_OF(PSSL2_CLIENT_MASTER_KEY, VariantData) -
  548. sizeof(SSL2_MESSAGE_HEADER);
  550. pCommOutput->cbData = cbMessage + 2;
  552. /* are we allocating our own memory? */
  553. if(pCommOutput->pvBuffer == NULL)
  554. {
  555. pCommOutput->pvBuffer = SPExternalAlloc(pCommOutput->cbData);
  556. if (NULL == pCommOutput->pvBuffer)
  557. {
  558. return SP_LOG_RESULT(SEC_E_INSUFFICIENT_MEMORY);
  559. }
  560. pCommOutput->cbBuffer = pCommOutput->cbData;
  561. }
  562. if(pCommOutput->cbData > pCommOutput->cbBuffer)
  563. {
  564. // Required buffer size returned in pCommOutput->cbData.
  565. return SP_LOG_RESULT(PCT_INT_BUFF_TOO_SMALL);
  566. }
  567. pMessage = pCommOutput->pvBuffer;
  569. pBuffer = pMessage->VariantData;
  571. pMessage->Header.Byte0 = MSBOF(cbMessage) | 0x80;
  572. pMessage->Header.Byte1 = LSBOF(cbMessage);
  574. pMessage->MessageId = SSL2_MT_CLIENT_MASTER_KEY;
  575. Ssl2MapCipherToExternal(pCanonical->CipherKind, &pMessage->CipherKind);
  577. pMessage->ClearKeyLenMsb = MSBOF(pCanonical->ClearKeyLen);
  578. pMessage->ClearKeyLenLsb = LSBOF(pCanonical->ClearKeyLen);
  580. CopyMemory(pBuffer, pCanonical->ClearKey, pCanonical->ClearKeyLen);
  581. pBuffer += pCanonical->ClearKeyLen;
  583. pMessage->EncryptedKeyLenMsb = MSBOF(pCanonical->EncryptedKeyLen);
  584. pMessage->EncryptedKeyLenLsb = LSBOF(pCanonical->EncryptedKeyLen);
  586. CopyMemory(pBuffer, pCanonical->pbEncryptedKey, pCanonical->EncryptedKeyLen);
  587. pBuffer += pCanonical->EncryptedKeyLen;
  589. pMessage->KeyArgLenMsb = MSBOF(pCanonical->KeyArgLen);
  590. pMessage->KeyArgLenLsb = LSBOF(pCanonical->KeyArgLen);
  592. CopyMemory(pBuffer, pCanonical->KeyArg, pCanonical->KeyArgLen);
  594. return(PCT_ERR_OK);
  596. }
  599. SP_STATUS
  600. Ssl2UnpackClientMasterKey(
  601. PSPBuffer pInput,
  602. PSsl2_Client_Master_Key * ppClient)
  603. {
  604. PSsl2_Client_Master_Key pCanonical;
  605. PSSL2_CLIENT_MASTER_KEY pMessage;
  606. PUCHAR pBuffer;
  607. DWORD ReportedSize;
  608. DWORD EncryptedKeyLen;
  610. pMessage = pInput->pvBuffer;
  612. if(pInput->cbData < 2)
  613. {
  614. pInput->cbData = 2;
  615. return PCT_INT_INCOMPLETE_MSG;
  616. }
  617. ReportedSize = SIZEOF(pMessage);
  619. if ((ReportedSize+2) > pInput->cbData)
  620. {
  621. pInput->cbData = ReportedSize+2;
  622. return PCT_INT_INCOMPLETE_MSG;
  623. }
  625. if(ReportedSize + 2 < SSL_OFFSET_OF(PSSL2_CLIENT_MASTER_KEY, VariantData))
  626. {
  627. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  628. }
  630. *ppClient = NULL;
  632. if ((pMessage->MessageId != SSL2_MT_CLIENT_MASTER_KEY))
  633. {
  634. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  635. }
  637. EncryptedKeyLen = COMBINEBYTES( pMessage->EncryptedKeyLenMsb,
  638. pMessage->EncryptedKeyLenLsb );
  641. if(ReportedSize + 2 < SSL_OFFSET_OF(PSSL2_CLIENT_MASTER_KEY, VariantData) +
  642. EncryptedKeyLen)
  643. {
  644. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  645. }
  647. pCanonical = (PSsl2_Client_Master_Key)SPExternalAlloc(
  648. sizeof(Ssl2_Client_Master_Key) +
  649. EncryptedKeyLen);
  651. if (!pCanonical)
  652. {
  653. return SP_LOG_RESULT( PCT_INT_INTERNAL_ERROR );
  654. }
  656. pCanonical->CipherKind = Ssl2MapCipherFromExternal( &pMessage->CipherKind );
  657. pCanonical->ClearKeyLen = COMBINEBYTES( pMessage->ClearKeyLenMsb,
  658. pMessage->ClearKeyLenLsb );
  660. pCanonical->EncryptedKeyLen = EncryptedKeyLen;
  662. pCanonical->KeyArgLen = COMBINEBYTES( pMessage->KeyArgLenMsb,
  663. pMessage->KeyArgLenLsb );
  666. //
  667. // Validate
  668. //
  669. if ((pCanonical->ClearKeyLen > SSL2_MASTER_KEY_SIZE) ||
  670. (pCanonical->KeyArgLen > SSL2_MAX_KEY_ARGS))
  671. {
  672. SPExternalFree(pCanonical);
  673. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  674. }
  677. if ((SSL_OFFSET_OF(PSSL2_CLIENT_MASTER_KEY, VariantData) -
  678. sizeof(SSL2_MESSAGE_HEADER) +
  679. pCanonical->ClearKeyLen +
  680. pCanonical->EncryptedKeyLen +
  681. pCanonical->KeyArgLen ) !=
  682. ReportedSize)
  683. {
  684. SPExternalFree(pCanonical);
  685. return SP_LOG_RESULT(PCT_ERR_ILLEGAL_MESSAGE);
  686. }
  688. pBuffer = pMessage->VariantData;
  690. CopyMemory(pCanonical->ClearKey, pBuffer, pCanonical->ClearKeyLen );
  692. pBuffer += pCanonical->ClearKeyLen;
  694. pCanonical->pbEncryptedKey = (PBYTE)(pCanonical + 1);
  695. CopyMemory(pCanonical->pbEncryptedKey, pBuffer, pCanonical->EncryptedKeyLen );
  697. pBuffer += pCanonical->EncryptedKeyLen;
  699. CopyMemory( pCanonical->KeyArg, pBuffer, pCanonical->KeyArgLen );
  701. *ppClient = pCanonical;
  703. return( PCT_ERR_OK );
  704. }