archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/csps/cryptoflex/slbcsp/rsakpgen.cpp

276 lines
7.3 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. // RsaKPGen.cpp -- Rsa Key Pair Generator class definition
  3. // (c) Copyright Schlumberger Technology Corp., unpublished work, created
  4. // 1999. This computer program includes Confidential, Proprietary
  5. // Information and is a Trade Secret of Schlumberger Technology Corp. All
  6. // use, disclosure, and/or reproduction is prohibited unless authorized
  7. // in writing. All Rights Reserved.
  9. #include "NoWarning.h"
  10. #include "ForceLib.h"
  12. #include <limits>
  14. #include <windows.h>
  15. #include <wincrypt.h>
  17. #include <scuOsExc.h>
  18. #include <scuArrayP.h>
  19. #include <iopPriBlob.h>
  21. #include "RsaKPGen.h"
  22. #include "Blob.h"
  23. #include "AuxContext.h"
  24. #include "MsRsaPriKB.h"
  25. #include "PublicKeyHelper.h"
  27. using namespace std;
  28. using namespace cci;
  29. using namespace scu;
  31. /////////////////////////// LOCAL/HELPER /////////////////////////////////
  32. namespace
  33. {
  34. KeyType
  35. AsKeyType(RsaKey::StrengthType st)
  36. {
  37. KeyType kt;
  39. switch (st)
  40. {
  41. case 512:
  42. kt = ktRSA512;
  43. break;
  45. case 768:
  46. kt = ktRSA768;
  47. break;
  49. case 1024:
  50. kt = ktRSA1024;
  51. break;
  53. default:
  54. throw scu::OsException(ERROR_INVALID_PARAMETER);
  55. break;
  56. }
  58. return kt;
  59. }
  61. DWORD
  62. DefaultPublicExponent()
  63. {
  64. return 0x00010001; // same as Microsoft providers
  65. }
  67. pair<CPrivateKey, CPublicKey>
  68. KeyPair(CPrivateKey const &rhprikey,
  69. Blob const &rblbOrigModulus, // little endian
  70. Blob const &rblbOrigExponent) // little endian
  71. {
  72. CPublicKey hpubkey(AsPublicKey(rblbOrigModulus,
  73. rblbOrigExponent,
  74. rhprikey->Card()));
  76. return pair<CPrivateKey, CPublicKey>(rhprikey, hpubkey);
  77. }
  79. void
  80. ValidateCard(CCard const &rhcard)
  81. {
  82. if (!rhcard)
  83. throw scu::OsException(ERROR_INVALID_PARAMETER);
  84. }
  86. void
  87. ValidateStrength(RsaKey::StrengthType strength)
  88. {
  89. if (!IsValidRsaKeyStrength(strength))
  90. throw scu::OsException(ERROR_INVALID_PARAMETER);
  91. }
  93. bool
  94. IsEmpty(std::pair<CPrivateKey, CPublicKey> const &rhs)
  95. {
  96. return !rhs.first || !rhs.second;
  97. }
  99. }
  101. /////////////////////////// PUBLIC /////////////////////////////////
  103. // Types
  104. // C'tors/D'tors
  105. RsaKeyPairGenerator::RsaKeyPairGenerator(CCard const &rhcard,
  106. RsaKey::StrengthType strength)
  107. : m_hcard(rhcard),
  108. m_kp(),
  109. m_strength(strength)
  110. {
  111. ValidateParameters();
  112. }
  114. RsaKeyPairGenerator::~RsaKeyPairGenerator()
  115. {}
  117. // Operators
  118. pair<CPrivateKey, CPublicKey>
  119. RsaKeyPairGenerator::operator()() const
  120. {
  121. if (IsEmpty(m_kp))
  122. Generate();
  124. return m_kp;
  125. }
  127. // Operations
  128. void
  129. RsaKeyPairGenerator::Card(CCard const &rhcard)
  130. {
  131. if (m_hcard != rhcard)
  132. {
  133. ValidateCard(rhcard);
  135. Reset();
  136. m_hcard = rhcard;
  137. }
  138. }
  140. void
  141. RsaKeyPairGenerator::Reset()
  142. {
  143. m_kp = pair<CPrivateKey, CPublicKey>();
  144. }
  146. void
  147. RsaKeyPairGenerator::Strength(RsaKey::StrengthType strength)
  148. {
  149. if (m_strength != strength)
  150. {
  151. ValidateStrength(strength);
  153. Reset();
  154. m_strength = strength;
  155. }
  157. }
  160. // Access
  161. CCard
  162. RsaKeyPairGenerator::Card() const
  163. {
  164. return m_hcard;
  165. }
  167. bool
  168. RsaKeyPairGenerator::OnCard() const
  169. {
  170. return m_hcard->SupportedKeyFunction(AsKeyType(m_strength),
  171. coKeyGeneration);
  172. }
  174. RsaKey::StrengthType
  175. RsaKeyPairGenerator::Strength() const
  176. {
  177. return m_strength;
  178. }
  180. // Predicates
  181. // Static Variables
  183. /////////////////////////// PROTECTED /////////////////////////////////
  185. // C'tors/D'tors
  186. // Operators
  187. // Operations
  188. // Access
  189. // Predicates
  190. // Static Variables
  193. /////////////////////////// PRIVATE /////////////////////////////////
  195. // C'tors/D'tors
  196. // Operators
  197. // Operations
  198. void
  199. RsaKeyPairGenerator::Generate() const
  200. {
  201. KeyType kt = AsKeyType(m_strength);
  203. m_kp = OnCard()
  204. ? GenerateOnCard(kt)
  205. : GenerateInSoftware();
  207. }
  209. pair<CPrivateKey, CPublicKey>
  210. RsaKeyPairGenerator::GenerateInSoftware() const
  211. {
  212. AuxContext auxcontext;
  214. DWORD dwFlags;
  215. // strength (bit length) is the high-order word
  216. dwFlags = m_strength;
  217. dwFlags = dwFlags << (numeric_limits<DWORD>::digits / 2);
  218. dwFlags |= CRYPT_EXPORTABLE;
  220. HCRYPTKEY hcryptkey;
  221. if (!CryptGenKey(auxcontext(), AT_SIGNATURE, dwFlags, &hcryptkey))
  222. throw scu::OsException(GetLastError());
  224. DWORD dwDataLength;
  225. if (!CryptExportKey(hcryptkey, NULL, PRIVATEKEYBLOB, 0, 0, &dwDataLength))
  226. throw scu::OsException(GetLastError());
  228. SecureArray<BYTE> apbData(dwDataLength);
  229. if (!CryptExportKey(hcryptkey, NULL, PRIVATEKEYBLOB, 0, apbData.data(),
  230. &dwDataLength))
  231. throw scu::OsException(GetLastError());
  233. MsRsaPrivateKeyBlob msprivatekeyblob(apbData.data(), dwDataLength);
  235. if (msprivatekeyblob.BitLength() != m_strength)
  236. throw scu::OsException(NTE_BAD_LEN);
  238. CPrivateKey hprikey(m_hcard);
  239. hprikey->Value(*(AsPCciPrivateKeyBlob(msprivatekeyblob).get()));
  241. Blob blbModulus(msprivatekeyblob.Modulus(), msprivatekeyblob.Length());
  242. MsRsaPrivateKeyBlob::PublicExponentType pet = msprivatekeyblob.PublicExponent();
  243. Blob blbExponent(reinterpret_cast<Blob::value_type const *>(&pet), sizeof pet);
  245. return KeyPair(hprikey, blbModulus, blbExponent);
  246. }
  248. pair<CPrivateKey, CPublicKey>
  249. RsaKeyPairGenerator::GenerateOnCard(KeyType kt) const
  250. {
  251. DWORD dwExponent = DefaultPublicExponent();
  252. Blob blbExponent(reinterpret_cast<Blob::value_type const *>(&dwExponent),
  253. sizeof dwExponent);
  255. pair<string, CPrivateKey>
  256. ModulusKeyPair(m_hcard->GenerateKeyPair(kt,
  257. AsString(blbExponent)));
  259. CPrivateKey hprikey(ModulusKeyPair.second);
  261. Blob blbModulus(AsBlob(ModulusKeyPair.first));
  263. return KeyPair(hprikey, blbModulus, blbExponent);
  264. }
  266. void
  267. RsaKeyPairGenerator::ValidateParameters() const
  268. {
  269. ValidateCard(m_hcard);
  270. ValidateStrength(m_strength);
  271. }
  273. // Access
  274. // Predicates
  275. // Static Variables