archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/inetsrv/iis/svcs/irtl/iiscrypt/lib/data.c

899 lines
18 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1997 Microsoft Corporation
  5. Module Name:
  7. data.c
  9. Abstract:
  11. Data encryption/decryption routines for the IIS cryptographic
  12. package.
  14. The following routines are exported by this module:
  16. IISCryptoEncryptDataBlob
  17. IISCryptoDecryptDataBlob
  19. Author:
  21. Keith Moore (keithmo) 02-Dec-1996
  23. Revision History:
  25. --*/
  28. #include "precomp.h"
  29. #pragma hdrstop
  32. //
  33. // Private constants.
  34. //
  37. //
  38. // Private types.
  39. //
  41. //
  42. // The IC_DATA structure allows us to store our own private data
  43. // along with the data we're encrypting for the application.
  44. //
  46. typedef struct _IC_DATA {
  48. DWORD RegType;
  49. // BYTE Data[];
  51. } IC_DATA;
  53. typedef UNALIGNED64 IC_DATA *PIC_DATA;
  56. //
  57. // Private globals.
  58. //
  61. //
  62. // Private prototypes.
  63. //
  66. //
  67. // Public functions.
  68. //
  71. HRESULT
  72. WINAPI
  73. IISCryptoEncryptDataBlob(
  74. OUT PIIS_CRYPTO_BLOB * ppDataBlob,
  75. IN PVOID pBuffer,
  76. IN DWORD dwBufferLength,
  77. IN DWORD dwRegType,
  78. IN HCRYPTPROV hProv,
  79. IN HCRYPTKEY hSessionKey
  80. )
  82. /*++
  84. Routine Description:
  86. This routine encrypts a block of data, resulting in a data blob.
  87. The data blob contains the encrypted data and a digital signature
  88. validating the data.
  90. Arguments:
  92. ppDataBlob - Receives a pointer to the newly created data blob if
  93. successful.
  95. pBuffer - The buffer to encrypt.
  97. dwBufferLength - The length of the buffer.
  99. dwRegType - The REG_* type to associate with this data.
  101. hProv - A handle to a crypto service provider.
  103. hSessionKey - The key used to encrypt the data.
  105. Return Value:
  107. HRESULT - Completion status, 0 if successful, !0 otherwise.
  109. --*/
  111. {
  113. HRESULT result;
  114. HCRYPTHASH hash;
  115. PIC_BLOB blob;
  116. PIC_DATA data;
  117. DWORD dataLength;
  118. DWORD hashLength;
  120. //
  121. // Sanity check.
  122. //
  124. DBG_ASSERT( IcpGlobals.Initialized );
  125. DBG_ASSERT( ppDataBlob != NULL );
  126. DBG_ASSERT( pBuffer != NULL );
  127. DBG_ASSERT( hProv != CRYPT_NULL );
  128. DBG_ASSERT( hSessionKey != CRYPT_NULL );
  130. //
  131. // Short-circuit if cryptography is disabled.
  132. //
  134. if( !IcpGlobals.EnableCryptography ) {
  135. if( hProv == DUMMY_HPROV &&
  136. hSessionKey == DUMMY_HSESSIONKEY ) {
  138. return IISCryptoCreateCleartextBlob(
  139. ppDataBlob,
  140. pBuffer,
  141. dwBufferLength
  142. );
  144. } else {
  145. return RETURNCODETOHRESULT( ERROR_INVALID_PARAMETER );
  146. }
  147. }
  149. //
  150. // Setup our locals so we know how to cleanup on exit.
  151. //
  153. blob = NULL;
  154. hash = CRYPT_NULL;
  156. //
  157. // Create a hash object.
  158. //
  160. result = IISCryptoCreateHash(
  161. &hash,
  162. hProv
  163. );
  165. if( FAILED(result) ) {
  166. goto fatal;
  167. }
  169. //
  170. // Determine the hash data length.
  171. //
  173. result = IcpGetHashLength(
  174. &hashLength,
  175. hProv
  176. );
  178. if( FAILED(result) ) {
  179. goto fatal;
  180. }
  182. //
  183. // Determine the required size of the encrypted data.
  184. //
  186. dwBufferLength += sizeof(*data);
  187. dataLength = dwBufferLength;
  189. //
  190. // session key should not be used concurrently by multiple threads
  191. //
  193. IcpAcquireGlobalLock();
  195. if( !CryptEncrypt(
  196. hSessionKey,
  197. CRYPT_NULL,
  198. TRUE,
  199. 0,
  200. NULL,
  201. &dataLength,
  202. dwBufferLength
  203. ) ) {
  205. result = IcpGetLastError();
  206. IcpReleaseGlobalLock();
  207. goto fatal;
  209. }
  211. IcpReleaseGlobalLock();
  213. //
  214. // Create a new blob.
  215. //
  217. blob = IcpCreateBlob(
  218. DATA_BLOB_SIGNATURE,
  219. dataLength,
  220. hashLength
  221. );
  223. if( blob == NULL ) {
  224. result = HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  225. goto fatal;
  226. }
  228. //
  229. // Copy the data into the blob, then encrypt it.
  230. //
  232. data = (PIC_DATA)BLOB_TO_DATA(blob);
  233. data->RegType = dwRegType;
  235. RtlCopyMemory(
  236. data + 1,
  237. pBuffer,
  238. dwBufferLength - sizeof(*data)
  239. );
  241. //
  242. // session key should not be used concurrently by multiple threads
  243. //
  245. IcpAcquireGlobalLock();
  247. if( !CryptEncrypt(
  248. hSessionKey,
  249. hash,
  250. TRUE,
  251. 0,
  252. BLOB_TO_DATA(blob),
  253. &dwBufferLength,
  254. dataLength
  255. ) ) {
  257. result = IcpGetLastError();
  258. IcpReleaseGlobalLock();
  259. goto fatal;
  260. }
  262. IcpReleaseGlobalLock();
  265. DBG_ASSERT( dataLength == blob->DataLength );
  267. //
  268. // Generate the signature.
  269. //
  271. if( !CryptSignHash(
  272. hash,
  273. AT_SIGNATURE,
  274. NULL,
  275. 0,
  276. BLOB_TO_SIGNATURE(blob),
  277. &hashLength
  278. ) ) {
  280. result = IcpGetLastError();
  281. goto fatal;
  283. }
  285. DBG_ASSERT( hashLength == blob->SignatureLength );
  287. //
  288. // Success!
  289. //
  291. DBG_ASSERT( IISCryptoIsValidBlob( (PIIS_CRYPTO_BLOB)blob ) );
  292. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  293. *ppDataBlob = (PIIS_CRYPTO_BLOB)blob;
  295. UpdateBlobsCreated();
  296. return NO_ERROR;
  298. fatal:
  300. if( hash != CRYPT_NULL ) {
  301. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  302. }
  304. if( blob != NULL ) {
  305. IcpFreeMemory( blob );
  306. }
  308. DBG_ASSERT( FAILED(result) );
  309. return result;
  311. } // IISCryptoEncryptDataBlob
  313. HRESULT
  314. WINAPI
  315. IISCryptoEncryptDataBlob2(
  316. OUT PIIS_CRYPTO_BLOB * ppDataBlob,
  317. IN PVOID pBuffer,
  318. IN DWORD dwBufferLength,
  319. IN DWORD dwRegType,
  320. IN HCRYPTPROV hProv,
  321. IN HCRYPTKEY hSessionKey
  322. )
  324. /*++
  326. Routine Description:
  328. This routine encrypts a block of data, resulting in a data blob.
  329. The data blob contains the encrypted data and a digital signature
  330. validating the data.
  332. Arguments:
  334. ppDataBlob - Receives a pointer to the newly created data blob if
  335. successful.
  337. pBuffer - The buffer to encrypt.
  339. dwBufferLength - The length of the buffer.
  341. dwRegType - The REG_* type to associate with this data.
  343. hProv - A handle to a crypto service provider.
  345. hSessionKey - The key used to encrypt the data.
  347. Return Value:
  349. HRESULT - Completion status, 0 if successful, !0 otherwise.
  351. --*/
  353. {
  355. HRESULT result;
  356. HCRYPTHASH hash;
  357. PIC_BLOB blob;
  358. PIC_DATA data;
  359. DWORD dataLength;
  360. DWORD hashLength;
  362. //
  363. // Sanity check.
  364. //
  366. DBG_ASSERT( IcpGlobals.Initialized );
  367. DBG_ASSERT( ppDataBlob != NULL );
  368. DBG_ASSERT( pBuffer != NULL );
  369. DBG_ASSERT( hProv != CRYPT_NULL );
  370. DBG_ASSERT( hSessionKey != CRYPT_NULL );
  372. //
  373. // Short-circuit if cryptography is disabled.
  374. //
  376. if( !IcpGlobals.EnableCryptography ) {
  377. if( hProv == DUMMY_HPROV &&
  378. hSessionKey == DUMMY_HSESSIONKEY ) {
  380. return IISCryptoCreateCleartextBlob(
  381. ppDataBlob,
  382. pBuffer,
  383. dwBufferLength
  384. );
  386. } else {
  387. return RETURNCODETOHRESULT( ERROR_INVALID_PARAMETER );
  388. }
  389. }
  391. //
  392. // Setup our locals so we know how to cleanup on exit.
  393. //
  395. blob = NULL;
  396. hash = CRYPT_NULL;
  398. //
  399. // Create a hash object.
  400. //
  402. result = IISCryptoCreateHash(
  403. &hash,
  404. hProv
  405. );
  407. if( FAILED(result) ) {
  408. goto fatal;
  409. }
  411. //
  412. // Determine the hash data length.
  413. //
  415. result = IcpGetHashLength(
  416. &hashLength,
  417. hProv
  418. );
  420. if( FAILED(result) ) {
  421. goto fatal;
  422. }
  424. //
  425. // Determine the required size of the encrypted data.
  426. //
  428. dwBufferLength += sizeof(*data);
  429. dataLength = dwBufferLength;
  432. //
  433. // session key should not be used concurrently by multiple threads
  434. //
  436. IcpAcquireGlobalLock();
  438. if( !CryptEncrypt(
  439. hSessionKey,
  440. CRYPT_NULL,
  441. TRUE,
  442. 0,
  443. NULL,
  444. &dataLength,
  445. dwBufferLength
  446. ) ) {
  448. result = IcpGetLastError();
  449. IcpReleaseGlobalLock();
  450. goto fatal;
  451. }
  452. IcpReleaseGlobalLock();
  454. //
  455. // Create a new blob.
  456. //
  458. blob = IcpCreateBlob(
  459. DATA_BLOB_SIGNATURE,
  460. dataLength,
  461. hashLength
  462. );
  464. if( blob == NULL ) {
  465. result = HRESULT_FROM_WIN32( ERROR_NOT_ENOUGH_MEMORY );
  466. goto fatal;
  467. }
  469. //
  470. // Copy the data into the blob, then encrypt it.
  471. //
  473. data = (PIC_DATA)BLOB_TO_DATA(blob);
  474. data->RegType = dwRegType;
  476. RtlCopyMemory(
  477. data + 1,
  478. pBuffer,
  479. dwBufferLength - sizeof(*data)
  480. );
  482. //
  483. // session key should not be used concurrently by multiple threads
  484. //
  486. IcpAcquireGlobalLock();
  488. if( !CryptEncrypt(
  489. hSessionKey,
  490. hash,
  491. TRUE,
  492. 0,
  493. BLOB_TO_DATA(blob),
  494. &dwBufferLength,
  495. dataLength
  496. ) ) {
  498. result = IcpGetLastError();
  499. IcpReleaseGlobalLock();
  500. goto fatal;
  501. }
  502. IcpReleaseGlobalLock();
  505. DBG_ASSERT( dataLength == blob->DataLength );
  507. //
  508. // Success!
  509. //
  511. DBG_ASSERT( IISCryptoIsValidBlob( (PIIS_CRYPTO_BLOB)blob ) );
  512. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  513. *ppDataBlob = (PIIS_CRYPTO_BLOB)blob;
  515. UpdateBlobsCreated();
  516. return NO_ERROR;
  518. fatal:
  520. if( hash != CRYPT_NULL ) {
  521. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  522. }
  524. if( blob != NULL ) {
  525. IcpFreeMemory( blob );
  526. }
  528. DBG_ASSERT( FAILED(result) );
  529. return result;
  531. } // IISCryptoEncryptDataBlob2
  534. HRESULT
  535. WINAPI
  536. IISCryptoDecryptDataBlob(
  537. OUT PVOID * ppBuffer,
  538. OUT LPDWORD pdwBufferLength,
  539. OUT LPDWORD pdwRegType,
  540. IN PIIS_CRYPTO_BLOB pDataBlob,
  541. IN HCRYPTPROV hProv,
  542. IN HCRYPTKEY hSessionKey,
  543. IN HCRYPTKEY hSignatureKey
  544. )
  546. /*++
  548. Routine Description:
  550. This routine validates and decrypts a data blob, resulting in a
  551. buffer containing plaintext.
  553. N.B. This routine effectively destroys the blob; once the data
  554. is decrypted, it cannot be decrypted again, as the data is
  555. decrypted "in place".
  557. N.B. The pointer returned in *ppBuffer points within the blob.
  558. This pointer will become invalid when the blob is freed. Note also
  559. that the calling application is still responsible for calling
  560. IISCryptoFreeBlob() on the data blob.
  562. Arguments:
  564. ppBuffer - Receives a pointer to the data buffer if successful.
  566. pdwBufferLength - Receives the length of the data buffer.
  568. pdwRegType - Receives the REG_* type of the data.
  570. pDataBlob - The data blob to decrypt.
  572. hProv - A handle to a crypto service provider.
  574. hSessionKey - The key used to decrypt the data.
  576. hSignatureKey - Handle to the encryption key to use when validating
  577. the digital signature.
  579. Return Value:
  581. HRESULT - Completion status, 0 if successful, !0 otherwise.
  583. --*/
  585. {
  587. HRESULT result;
  588. HCRYPTHASH hash;
  589. PIC_BLOB blob;
  590. PIC_DATA data;
  591. DWORD dataLength;
  593. //
  594. // Sanity check.
  595. //
  597. DBG_ASSERT( IcpGlobals.Initialized );
  598. DBG_ASSERT( ppBuffer != NULL );
  599. DBG_ASSERT( pdwBufferLength != NULL );
  600. DBG_ASSERT( pdwRegType != NULL );
  601. DBG_ASSERT( pDataBlob != NULL );
  602. DBG_ASSERT( IISCryptoIsValidBlob( pDataBlob ) );
  603. DBG_ASSERT( hProv != CRYPT_NULL );
  604. DBG_ASSERT( hSessionKey != CRYPT_NULL );
  605. DBG_ASSERT( hSignatureKey != CRYPT_NULL );
  607. //
  608. // Short-circuit if cryptography is disabled.
  609. //
  611. if( !IcpGlobals.EnableCryptography ) {
  612. if( hProv == DUMMY_HPROV &&
  613. hSessionKey == DUMMY_HSESSIONKEY &&
  614. hSignatureKey == DUMMY_HSIGNATUREKEY &&
  615. pDataBlob->BlobSignature == CLEARTEXT_BLOB_SIGNATURE
  616. ) {
  618. *ppBuffer = (PVOID)( pDataBlob + 1 );
  619. *pdwBufferLength = pDataBlob->BlobDataLength;
  620. return NO_ERROR;
  622. } else {
  623. return RETURNCODETOHRESULT( ERROR_INVALID_PARAMETER );
  624. }
  625. }
  627. //
  628. // Short-circuit for cleartext blobs.
  629. //
  631. if( pDataBlob->BlobSignature == CLEARTEXT_BLOB_SIGNATURE ) {
  632. *ppBuffer = (PVOID)( pDataBlob + 1 );
  633. *pdwBufferLength = pDataBlob->BlobDataLength;
  634. return NO_ERROR;
  635. }
  637. //
  638. // Setup our locals so we know how to cleanup on exit.
  639. //
  641. hash = CRYPT_NULL;
  642. blob = (PIC_BLOB)pDataBlob;
  644. //
  645. // Create a hash object.
  646. //
  648. result = IISCryptoCreateHash(
  649. &hash,
  650. hProv
  651. );
  653. if( FAILED(result) ) {
  654. goto fatal;
  655. }
  657. //
  658. // Decrypt the data.
  659. //
  661. dataLength = blob->DataLength;
  663. //
  664. // session key should not be used concurrently by multiple threads
  665. //
  667. IcpAcquireGlobalLock();
  669. if( !CryptDecrypt(
  670. hSessionKey,
  671. hash,
  672. TRUE,
  673. 0,
  674. BLOB_TO_DATA(blob),
  675. &dataLength
  676. ) ) {
  678. result = IcpGetLastError();
  679. IcpReleaseGlobalLock();
  680. goto fatal;
  681. }
  683. IcpReleaseGlobalLock();
  686. //
  687. // Verify the signature.
  688. //
  690. if( !CryptVerifySignature(
  691. hash,
  692. BLOB_TO_SIGNATURE(blob),
  693. blob->SignatureLength,
  694. hSignatureKey,
  695. NULL,
  696. 0
  697. ) ) {
  699. result = IcpGetLastError();
  700. goto fatal;
  702. }
  704. //
  705. // Success!
  706. //
  708. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  709. data = (PIC_DATA)BLOB_TO_DATA(blob);
  710. *ppBuffer = data + 1;
  711. *pdwBufferLength = dataLength - sizeof(*data);
  712. *pdwRegType = data->RegType;
  714. return NO_ERROR;
  716. fatal:
  718. if( hash != CRYPT_NULL ) {
  719. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  720. }
  722. DBG_ASSERT( FAILED(result) );
  723. return result;
  725. } // IISCryptoDecryptDataBlob
  727. HRESULT
  728. WINAPI
  729. IISCryptoDecryptDataBlob2(
  730. OUT PVOID * ppBuffer,
  731. OUT LPDWORD pdwBufferLength,
  732. OUT LPDWORD pdwRegType,
  733. IN PIIS_CRYPTO_BLOB pDataBlob,
  734. IN HCRYPTPROV hProv,
  735. IN HCRYPTKEY hSessionKey
  736. )
  738. /*++
  740. Routine Description:
  742. This routine validates and decrypts a data blob, resulting in a
  743. buffer containing plaintext.
  745. N.B. This routine effectively destroys the blob; once the data
  746. is decrypted, it cannot be decrypted again, as the data is
  747. decrypted "in place".
  749. N.B. The pointer returned in *ppBuffer points within the blob.
  750. This pointer will become invalid when the blob is freed. Note also
  751. that the calling application is still responsible for calling
  752. IISCryptoFreeBlob() on the data blob.
  754. Arguments:
  756. ppBuffer - Receives a pointer to the data buffer if successful.
  758. pdwBufferLength - Receives the length of the data buffer.
  760. pdwRegType - Receives the REG_* type of the data.
  762. pDataBlob - The data blob to decrypt.
  764. hProv - A handle to a crypto service provider.
  766. hSessionKey - The key used to decrypt the data.
  768. Return Value:
  770. HRESULT - Completion status, 0 if successful, !0 otherwise.
  772. --*/
  774. {
  776. HRESULT result;
  777. HCRYPTHASH hash;
  778. PIC_BLOB blob;
  779. PIC_DATA data;
  780. DWORD dataLength;
  782. //
  783. // Sanity check.
  784. //
  786. DBG_ASSERT( IcpGlobals.Initialized );
  787. DBG_ASSERT( ppBuffer != NULL );
  788. DBG_ASSERT( pdwBufferLength != NULL );
  789. DBG_ASSERT( pdwRegType != NULL );
  790. DBG_ASSERT( pDataBlob != NULL );
  791. DBG_ASSERT( IISCryptoIsValidBlob( pDataBlob ) );
  792. DBG_ASSERT( hProv != CRYPT_NULL );
  793. DBG_ASSERT( hSessionKey != CRYPT_NULL );
  795. //
  796. // Short-circuit if cryptography is disabled.
  797. //
  799. if( !IcpGlobals.EnableCryptography ) {
  800. if( hProv == DUMMY_HPROV &&
  801. hSessionKey == DUMMY_HSESSIONKEY &&
  802. pDataBlob->BlobSignature == CLEARTEXT_BLOB_SIGNATURE
  803. ) {
  805. *ppBuffer = (PVOID)( pDataBlob + 1 );
  806. *pdwBufferLength = pDataBlob->BlobDataLength;
  807. return NO_ERROR;
  809. } else {
  810. return RETURNCODETOHRESULT( ERROR_INVALID_PARAMETER );
  811. }
  812. }
  814. //
  815. // Short-circuit for cleartext blobs.
  816. //
  818. if( pDataBlob->BlobSignature == CLEARTEXT_BLOB_SIGNATURE ) {
  819. *ppBuffer = (PVOID)( pDataBlob + 1 );
  820. *pdwBufferLength = pDataBlob->BlobDataLength;
  821. return NO_ERROR;
  822. }
  824. //
  825. // Setup our locals so we know how to cleanup on exit.
  826. //
  828. hash = CRYPT_NULL;
  829. blob = (PIC_BLOB)pDataBlob;
  831. //
  832. // Create a hash object.
  833. //
  835. result = IISCryptoCreateHash(
  836. &hash,
  837. hProv
  838. );
  840. if( FAILED(result) ) {
  841. goto fatal;
  842. }
  844. //
  845. // Decrypt the data.
  846. //
  848. dataLength = blob->DataLength;
  851. //
  852. // session key should not be used concurrently by multiple threads
  853. //
  855. IcpAcquireGlobalLock();
  857. if( !CryptDecrypt(
  858. hSessionKey,
  859. hash,
  860. TRUE,
  861. 0,
  862. BLOB_TO_DATA(blob),
  863. &dataLength
  864. ) ) {
  866. result = IcpGetLastError();
  867. IcpReleaseGlobalLock();
  868. goto fatal;
  869. }
  870. IcpReleaseGlobalLock();
  872. //
  873. // Success!
  874. //
  876. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  877. data = (PIC_DATA)BLOB_TO_DATA(blob);
  878. *ppBuffer = data + 1;
  879. *pdwBufferLength = dataLength - sizeof(*data);
  880. *pdwRegType = data->RegType;
  882. return NO_ERROR;
  884. fatal:
  886. if( hash != CRYPT_NULL ) {
  887. DBG_REQUIRE( SUCCEEDED( IISCryptoDestroyHash( hash ) ) );
  888. }
  890. DBG_ASSERT( FAILED(result) );
  891. return result;
  893. } // IISCryptoDecryptDataBlob2
  896. //
  897. // Private functions.
  898. //