archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/base/win32/fusion/tools/catinfo/catinfo.cpp

338 lines
11 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "windows.h"
  2. #include "wincrypt.h"
  3. #include "mscat.h"
  4. #include <stdio.h>
  5. #include <stdlib.h>
  6. #include <vector>
  8. VOID
  9. DumpBytes(PBYTE pbBuffer, DWORD dwLength)
  10. {
  11. for (DWORD dw = 0; dw < dwLength; dw++)
  12. {
  13. if ((dw % 4 == 0) && (dw != 0))
  14. ::wprintf(L" ");
  15. if ((dw % 32 == 0) && (dw != 0))
  16. ::wprintf(L"\n");
  17. ::wprintf(L"%02x", pbBuffer[dw]);
  18. }
  19. }
  22. #pragma pack(1)
  23. typedef struct _PublicKeyBlob
  24. {
  25. unsigned int SigAlgID;
  26. unsigned int HashAlgID;
  27. ULONG cbPublicKey;
  28. BYTE PublicKey[1];
  29. } PublicKeyBlob, *PPublicKeyBlob;
  31. VOID
  32. GenerateFusionStrongNameAndKeyFromCertificate(PCCERT_CONTEXT pContext)
  33. {
  34. HCRYPTPROV hProvider = NULL;
  35. HCRYPTKEY hKey = NULL;
  36. std::vector<BYTE> pbBlobData;
  37. DWORD cbBlobData = 8192;
  38. pbBlobData.resize(cbBlobData);
  39. DWORD cbFusionKeyBlob = 0;
  40. DWORD dwTemp = 0;
  41. PPublicKeyBlob pFusionKeyStruct = NULL;
  43. if (!::CryptAcquireContextW(
  44. &hProvider,
  45. NULL,
  46. NULL,
  47. PROV_RSA_FULL,
  48. CRYPT_VERIFYCONTEXT))
  49. {
  50. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  51. // will format the win32 last error.
  52. ::wprintf(L"Failed opening the crypt context: 0x%08x", ::GetLastError());
  53. return;
  54. }
  56. //
  57. // Load the public key info into a key to start with
  58. //
  59. if (!::CryptImportPublicKeyInfo(
  60. hProvider,
  61. X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
  62. &pContext->pCertInfo->SubjectPublicKeyInfo,
  63. &hKey))
  64. {
  65. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  66. // will format the win32 last error.
  67. ::wprintf(L"Failed importing public key info from the cert-context, 0x%08x", ::GetLastError());
  68. return;
  69. }
  71. //
  72. // Export the key info to a public-key blob
  73. //
  74. if (!::CryptExportKey(
  75. hKey,
  76. NULL,
  77. PUBLICKEYBLOB,
  78. 0,
  79. &pbBlobData[0],
  80. &cbBlobData))
  81. {
  82. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  83. // will format the win32 last error.
  84. ::wprintf(L"Failed exporting public key info back from an hcryptkey: 0x%08x\n", ::GetLastError());
  85. return;
  86. }
  88. //
  89. // Allocate the Fusion public key blob
  90. //
  91. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - use of -1 here obscure; use offsetof instead
  92. cbFusionKeyBlob = sizeof(PublicKeyBlob) + cbBlobData - 1;
  93. pFusionKeyStruct = (PPublicKeyBlob)HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, cbFusionKeyBlob);
  94. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - missing allocation failure check
  96. //
  97. // Key parameter for the signing algorithm
  98. //
  99. dwTemp = sizeof(pFusionKeyStruct->SigAlgID);
  100. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - missing return status check; missing
  101. // verification of dwTemp
  102. ::CryptGetKeyParam(hKey, KP_ALGID, (PBYTE)&pFusionKeyStruct->SigAlgID, &dwTemp, 0);
  104. //
  105. // Move over the public key bits from CryptExportKey
  106. //
  107. pFusionKeyStruct->cbPublicKey = cbBlobData;
  108. pFusionKeyStruct->HashAlgID = CALG_SHA1;
  109. ::memcpy(pFusionKeyStruct->PublicKey, &pbBlobData[0], cbBlobData);
  111. ::wprintf(L"\n Public key structure:\n");
  112. ::DumpBytes((PBYTE)pFusionKeyStruct, cbFusionKeyBlob);
  114. //
  115. // Now let's go hash it.
  116. //
  117. {
  118. HCRYPTHASH hKeyHash = NULL;
  119. DWORD cbHashedKeyInfo = 8192;
  120. std::vector<BYTE> bHashedKeyInfo;
  121. bHashedKeyInfo.resize(cbHashedKeyInfo);
  123. if (!::CryptCreateHash(hProvider, pFusionKeyStruct->HashAlgID, NULL, 0, &hKeyHash))
  124. {
  125. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  126. // will format the win32 last error.
  127. ::wprintf(L"Failed creating a hash for this key: 0x%08x\n", ::GetLastError());
  128. return;
  129. }
  131. if (!::CryptHashData(hKeyHash, (PBYTE)pFusionKeyStruct, cbFusionKeyBlob, 0))
  132. {
  133. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  134. // will format the win32 last error.
  135. ::wprintf(L"Failed hashing data: 0x%08x\n", ::GetLastError());
  136. return;
  137. }
  139. if (!::CryptGetHashParam(hKeyHash, HP_HASHVAL, &bHashedKeyInfo[0], &cbHashedKeyInfo, 0))
  140. {
  141. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  142. // will format the win32 last error.
  143. ::wprintf(L"Can't get hashed key info 0x%08x\n", ::GetLastError());
  144. return;
  145. }
  147. ::CryptDestroyHash(hKeyHash);
  148. hKeyHash = NULL;
  150. ::wprintf(L"\n Hash of public key bits: ");
  151. ::DumpBytes(&bHashedKeyInfo[0], cbHashedKeyInfo);
  152. ::wprintf(L"\n Fusion-compatible strong name: ");
  153. ::DumpBytes(&bHashedKeyInfo[0] + (cbHashedKeyInfo - 8), 8);
  154. }
  155. }
  159. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - this function should be static
  160. VOID
  161. PrintKeyContextInfo(PCCERT_CONTEXT pContext)
  162. {
  163. DWORD cbHash = 0;
  164. std::vector<BYTE> bHash;
  165. const SIZE_T sizeof_bHash = 8192;
  166. bHash.resize(sizeof_bHash);
  168. DWORD cchBuffer = 8192;
  169. std::vector<WCHAR> wszBuffer;
  170. wszBuffer.resize(cchBuffer);
  172. ::wprintf(L"\n\n");
  174. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - missing error check
  175. ::CertGetNameStringW(pContext, CERT_NAME_FRIENDLY_DISPLAY_TYPE,
  176. 0, NULL, &wszBuffer[0], cchBuffer);
  178. ::wprintf(L"Certificate owner: %ls\n", &wszBuffer[0]);
  180. //
  181. // Spit out the key bits
  182. //
  183. ::wprintf(L"Found key info:\n");
  184. ::DumpBytes(
  185. pContext->pCertInfo->SubjectPublicKeyInfo.PublicKey.pbData,
  186. pContext->pCertInfo->SubjectPublicKeyInfo.PublicKey.cbData);
  188. //
  189. // And now the "strong name" (ie: sha1 hash) of the public key bits
  190. //
  191. if (::CryptHashPublicKeyInfo(
  192. NULL,
  193. CALG_SHA1,
  194. 0,
  195. X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
  196. &pContext->pCertInfo->SubjectPublicKeyInfo,
  197. &bHash[0],
  198. &(cbHash = sizeof_bHash)))
  199. {
  200. ::wprintf(L"\nPublic key hash: ");
  201. ::DumpBytes(&bHash[0], cbHash);
  202. ::wprintf(L"\nStrong name is: ");
  203. ::DumpBytes(&bHash[0], cbHash < 8 ? cbHash : 8);
  204. }
  205. else
  206. {
  207. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  208. // will format the win32 last error.
  209. ::wprintf(L"Unable to hash public key info: 0x%08x\n", ::GetLastError());
  210. }
  212. ::GenerateFusionStrongNameAndKeyFromCertificate(pContext);
  214. ::wprintf(L"\n\n");
  215. }
  217. int __cdecl wmain(int argc, WCHAR* argv[])
  218. {
  219. HANDLE hCatalog = NULL;
  220. HANDLE hMapping = NULL;
  221. PBYTE pByte = NULL;
  222. SIZE_T cBytes = 0;
  223. PCCTL_CONTEXT pContext = NULL;
  225. hCatalog = ::CreateFileW(argv[1], GENERIC_READ,
  226. FILE_SHARE_READ, NULL,
  227. OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL);
  229. if (hCatalog == INVALID_HANDLE_VALUE)
  230. {
  231. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  232. // will format the win32 last error.
  233. ::wprintf(L"Ensure that %ls exists.\n", argv[1]);
  234. return 0;
  235. }
  237. hMapping = ::CreateFileMappingW(hCatalog, NULL, PAGE_READONLY, 0, 0, NULL);
  238. if (!hMapping || (hMapping == INVALID_HANDLE_VALUE))
  239. {
  240. ::CloseHandle(hCatalog);
  241. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  242. // will format the win32 last error. Don't forget that calling CloseHandle
  243. // may have overwritten the last error
  244. ::wprintf(L"Unable to map file into address space.\n");
  245. return 1;
  246. }
  248. pByte = (PBYTE) ::MapViewOfFile(hMapping, FILE_MAP_READ, 0, 0, 0);
  249. ::CloseHandle(hMapping);
  250. hMapping = INVALID_HANDLE_VALUE;
  252. if (pByte == NULL)
  253. {
  254. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - MapViewOfFile failure cause not reported;
  255. // don't forget that above call to CloseHandle may have lost the last error
  256. ::wprintf(L"Unable to open view of file.\n");
  257. ::CloseHandle(hCatalog);
  258. return 2;
  259. }
  261. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - GetFileSize error cause not reported
  262. if (((cBytes = ::GetFileSize(hCatalog, NULL)) == -1) || (cBytes < 1))
  263. {
  264. ::wprintf(L"Bad file size %d\n", cBytes);
  265. return 3;
  266. }
  268. if (pByte[0] != 0x30)
  269. {
  270. ::wprintf(L"File is not a catalog.\n");
  271. return 4;
  272. }
  274. pContext = (PCCTL_CONTEXT) ::CertCreateCTLContext(
  275. X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
  276. pByte,
  277. (DWORD)cBytes);
  279. if (pContext != NULL)
  280. {
  281. BYTE bIdent[8192];
  282. DWORD cbIdent = 0;
  283. PCERT_ID cIdent = NULL;
  285. if (!::CryptMsgGetParam(
  286. pContext->hCryptMsg,
  287. CMSG_SIGNER_CERT_ID_PARAM,
  288. 0,
  289. bIdent,
  290. &(cbIdent = sizeof(bIdent))))
  291. {
  292. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  293. // will format the win32 last error.
  294. ::wprintf(L"Unable to get top-level signer's certificate ID: 0x%08x\n", ::GetLastError());
  295. return 6;
  296. }
  299. cIdent = (PCERT_ID)bIdent;
  300. HCERTSTORE hStore = NULL;
  302. //
  303. // Maybe it's there in the message?
  304. //
  305. {
  306. PCCERT_CONTEXT pThisContext = NULL;
  308. hStore = ::CertOpenStore(
  309. CERT_STORE_PROV_MSG,
  310. X509_ASN_ENCODING | PKCS_7_ASN_ENCODING,
  311. NULL,
  312. 0,
  313. pContext->hCryptMsg);
  315. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - What does hStore == NULL indicate?
  316. // There seems to be a lack of error path handling here.
  317. if ((hStore != NULL) && (hStore != INVALID_HANDLE_VALUE))
  318. {
  319. while (pThisContext = ::CertEnumCertificatesInStore(hStore, pThisContext))
  320. {
  321. ::PrintKeyContextInfo(pThisContext);
  322. }
  324. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - CertEnumCertificatesInStore could
  325. // fail for reasons other than end-of-list.
  326. }
  327. }
  329. }
  330. else
  331. {
  332. // NTRAID#NTBUG9 - 590964 - 2002/03/30 - mgrier - Use common error reporting function that
  333. // will format the win32 last error.
  334. ::wprintf(L"Failed creating certificate context: 0x%08x\n", ::GetLastError());
  335. return 5;
  336. }
  337. }