archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
4.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/win32/ntcrypto/test/testsuit/interop.c

1593 lines
28 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. /*
  3. interop.c
  5. 6/23/00 dangriff created
  7. */
  9. #include <windows.h>
  10. #include <wincrypt.h>
  11. #include "interop.h"
  12. #include "cspstruc.h"
  13. #include "csptestsuite.h"
  15. //
  16. // Function: IsDataEqual
  17. //
  18. BOOL IsDataEqual(
  19. IN PDATA_BLOB pdb1,
  20. IN PDATA_BLOB pdb2,
  21. IN PTESTCASE ptc)
  22. {
  23. /*
  24. LOGFAILINFO LogFailInfo;
  25. InitFailInfoFromTestCase(ptc, &LogFailInfo);
  26. */
  28. if (pdb1->cbData != pdb2->cbData)
  29. {
  30. /*
  31. LogFailInfo.dwErrorType = ERROR_WRONG_SIZE;
  32. LogFail(&LogFailInfo);
  33. */
  34. LogApiFailure(
  35. API_DATACOMPARE,
  36. ERROR_WRONG_SIZE,
  37. ptc);
  39. return FALSE;
  40. }
  42. if (0 != memcmp(pdb1->pbData, pdb2->pbData, pdb1->cbData))
  43. {
  44. /*
  45. LogFailInfo.dwErrorType = ERROR_BAD_DATA;
  46. LogFail(&LogFailInfo);
  47. */
  48. LogApiFailure(
  49. API_DATACOMPARE,
  50. ERROR_BAD_DATA,
  51. ptc);
  53. return FALSE;
  54. }
  56. return TRUE;
  57. }
  59. //
  60. // Function: ExportPublicKey
  61. //
  62. BOOL ExportPublicKey(IN HCRYPTKEY hSourceKey, OUT PDATA_BLOB pdbKey, IN PTESTCASE ptc)
  63. {
  64. BOOL fSuccess = FALSE;
  66. //
  67. // Export the public key blob from the key handle
  68. //
  69. LOG_TRY(TExportKey(
  70. hSourceKey,
  71. 0,
  72. PUBLICKEYBLOB,
  73. 0,
  74. NULL,
  75. &(pdbKey->cbData),
  76. ptc));
  78. LOG_TRY(TestAlloc(&(pdbKey->pbData), pdbKey->cbData, ptc));
  80. LOG_TRY(TExportKey(
  81. hSourceKey,
  82. 0,
  83. PUBLICKEYBLOB,
  84. 0,
  85. pdbKey->pbData,
  86. &(pdbKey->cbData),
  87. ptc));
  89. fSuccess = TRUE;
  90. Cleanup:
  92. return fSuccess;
  93. }
  95. //
  96. // Function: CreateHashAndAddData
  97. //
  98. BOOL CreateHashAndAddData(
  99. IN HCRYPTPROV hProv,
  100. OUT HCRYPTHASH *phHash,
  101. IN PHASH_INFO pHashInfo,
  102. IN PTESTCASE ptc,
  103. IN HCRYPTKEY hKey /* should be 0 when not doing MAC or HMAC */,
  104. IN PHMAC_INFO pHmacInfo /* should be NULL when not doing HMAC */)
  105. {
  106. BOOL fSuccess = FALSE;
  108. LOG_TRY(TCreateHash(
  109. hProv,
  110. pHashInfo->aiHash,
  111. hKey,
  112. 0,
  113. phHash,
  114. ptc));
  116. //
  117. // This step only applies to the HMAC algorithm.
  118. //
  119. if ( (NULL != pHmacInfo) &&
  120. (CALG_HMAC == pHashInfo->aiHash))
  121. {
  122. LOG_TRY(TSetHash(
  123. *phHash,
  124. HP_HMAC_INFO,
  125. (PBYTE) pHmacInfo,
  126. 0,
  127. ptc));
  128. }
  130. LOG_TRY(THashData(
  131. *phHash,
  132. pHashInfo->dbBaseData.pbData,
  133. pHashInfo->dbBaseData.cbData,
  134. 0,
  135. ptc));
  137. fSuccess = TRUE;
  138. Cleanup:
  140. return fSuccess;
  141. }
  143. //
  144. // Function: ExportPlaintextSessionKey
  145. //
  146. BOOL ExportPlaintextSessionKey(
  147. IN HCRYPTKEY hKey,
  148. IN HCRYPTPROV hProv,
  149. OUT PDATA_BLOB pdbKey,
  150. IN PTESTCASE ptc)
  151. {
  152. BOOL fSuccess = FALSE;
  153. HCRYPTKEY hExchangeKey = 0;
  155. //
  156. // First import the private RSA key with
  157. // exponent of one.
  158. //
  159. LOG_TRY(TImportKey(
  160. hProv,
  161. PrivateKeyWithExponentOfOne,
  162. sizeof(PrivateKeyWithExponentOfOne),
  163. 0,
  164. 0,
  165. &hExchangeKey,
  166. ptc));
  168. //
  169. // Now export "encrypted" session key
  170. //
  171. LOG_TRY(TExportKey(
  172. hKey,
  173. hExchangeKey,
  174. SIMPLEBLOB,
  175. 0,
  176. NULL,
  177. &(pdbKey->cbData),
  178. ptc));
  180. LOG_TRY(TestAlloc(&(pdbKey->pbData), pdbKey->cbData, ptc));
  182. LOG_TRY(TExportKey(
  183. hKey,
  184. hExchangeKey,
  185. SIMPLEBLOB,
  186. 0,
  187. pdbKey->pbData,
  188. &(pdbKey->cbData),
  189. ptc));
  191. fSuccess = TRUE;
  192. Cleanup:
  194. if (hExchangeKey)
  195. {
  196. TDestroyKey(hExchangeKey, ptc);
  197. }
  199. return fSuccess;
  200. }
  202. //
  203. // Function: ImportPlaintextSessionKey
  204. //
  205. BOOL ImportPlaintextSessionKey(
  206. IN PDATA_BLOB pdbKey,
  207. OUT HCRYPTKEY *phKey,
  208. IN HCRYPTPROV hProv,
  209. IN PTESTCASE ptc)
  210. {
  211. BOOL fSuccess = FALSE;
  212. HCRYPTKEY hExchangeKey = 0;
  214. //
  215. // First import the private RSA key with
  216. // exponent of one.
  217. //
  218. LOG_TRY(TImportKey(
  219. hProv,
  220. PrivateKeyWithExponentOfOne,
  221. sizeof(PrivateKeyWithExponentOfOne),
  222. 0,
  223. 0,
  224. &hExchangeKey,
  225. ptc));
  227. //
  228. // Next import the "encrypted" session key
  229. //
  230. LOG_TRY(TImportKey(
  231. hProv,
  232. pdbKey->pbData,
  233. pdbKey->cbData,
  234. hExchangeKey,
  235. 0,
  236. phKey,
  237. ptc));
  239. fSuccess = TRUE;
  240. Cleanup:
  242. if (hExchangeKey)
  243. {
  244. TDestroyKey(hExchangeKey, ptc);
  245. }
  247. return fSuccess;
  248. }
  250. //
  251. // Function: CheckHashedData
  252. //
  253. BOOL CheckHashedData(
  254. IN PHASH_INFO pHashInfo,
  255. IN HCRYPTPROV hProv,
  256. IN PTESTCASE ptc,
  257. IN PTEST_MAC_INFO pTestMacInfo /* Should be NULL when not using MAC alg */)
  258. {
  259. HCRYPTKEY hKey = 0;
  260. BOOL fSuccess = FALSE;
  261. BOOL fUsingMac = FALSE;
  262. HCRYPTHASH hHash = 0;
  263. DATA_BLOB dbHash;
  265. memset(&dbHash, 0, sizeof(dbHash));
  267. if (NULL != pTestMacInfo)
  268. {
  269. fUsingMac = TRUE;
  271. LOG_TRY(ImportPlaintextSessionKey(
  272. &(pTestMacInfo->dbKey),
  273. &hKey,
  274. hProv,
  275. ptc));
  276. }
  278. //
  279. // Create a new hash object of the specified type
  280. // and add the requested data.
  281. //
  282. LOG_TRY(TCreateHash(
  283. hProv,
  284. pHashInfo->aiHash,
  285. hKey,
  286. 0,
  287. &hHash,
  288. ptc));
  290. if ( fUsingMac &&
  291. (CALG_HMAC == pHashInfo->aiHash))
  292. {
  293. LOG_TRY(TSetHash(
  294. hHash,
  295. HP_HMAC_INFO,
  296. (PBYTE) &(pTestMacInfo->HmacInfo),
  297. 0,
  298. ptc));
  299. }
  301. LOG_TRY(THashData(
  302. hHash,
  303. pHashInfo->dbBaseData.pbData,
  304. pHashInfo->dbBaseData.cbData,
  305. 0,
  306. ptc));
  308. //
  309. // Get the resulting hash value and compare it to the
  310. // expected result.
  311. //
  312. LOG_TRY(TGetHash(
  313. hHash,
  314. HP_HASHVAL,
  315. NULL,
  316. &(dbHash.cbData),
  317. 0,
  318. ptc));
  320. LOG_TRY(TestAlloc(&(dbHash.pbData), dbHash.cbData, ptc));
  322. LOG_TRY(TGetHash(
  323. hHash,
  324. HP_HASHVAL,
  325. dbHash.pbData ,
  326. &(dbHash.cbData),
  327. 0,
  328. ptc));
  330. LOG_TRY(IsDataEqual(
  331. &dbHash,
  332. &(pHashInfo->dbHashValue),
  333. ptc));
  335. fSuccess = TRUE;
  336. Cleanup:
  338. if (dbHash.pbData)
  339. {
  340. free(dbHash.pbData);
  341. }
  342. if (hKey)
  343. {
  344. TDestroyKey(hKey, ptc);
  345. }
  346. if (hHash)
  347. {
  348. TDestroyHash(hHash, ptc);
  349. }
  351. return fSuccess;
  352. }
  354. //
  355. // Function: CheckDerivedKey
  356. //
  357. BOOL CheckDerivedKey(
  358. IN PDERIVED_KEY_INFO pDerivedKeyInfo,
  359. IN HCRYPTPROV hProv,
  360. IN PTESTCASE ptc)
  361. {
  362. BOOL fSuccess = FALSE;
  363. HCRYPTKEY hSessionKey = 0;
  364. HCRYPTHASH hHash = 0;
  365. DWORD cbValidData = 0;
  366. DATA_BLOB dbSessionKey;
  368. memset(&dbSessionKey, 0, sizeof(dbSessionKey));
  370. //
  371. // Create a hash and hash the provided data
  372. //
  373. LOG_TRY(CreateHashAndAddData(
  374. hProv,
  375. &hHash,
  376. &(pDerivedKeyInfo->HashInfo),
  377. ptc,
  378. 0, NULL));
  380. // Debugging
  381. /*
  382. pDerivedKeyInfo->cbHB = sizeof(pDerivedKeyInfo->rgbHashValB);
  383. LOG_TRY(CryptGetHashParam(hHash, HP_HASHVAL, pDerivedKeyInfo->rgbHashValB, &(pDerivedKeyInfo->cbHB), 0));
  384. */
  387. //
  388. // Derive a session key from the resulting hash object
  389. //
  390. LOG_TRY(TDeriveKey(
  391. hProv,
  392. pDerivedKeyInfo->aiKey,
  393. hHash,
  394. CRYPT_EXPORTABLE | (pDerivedKeyInfo->dwKeySize) << 16,
  395. &hSessionKey,
  396. ptc));
  398. // Debug
  399. /*
  400. pDerivedKeyInfo->cbCB = 10;
  401. LOG_TRY(CryptEncrypt(hSessionKey, 0, TRUE, 0, pDerivedKeyInfo->rgbCipherB, &(pDerivedKeyInfo->cbCB), sizeof(pDerivedKeyInfo->rgbCipherA)));
  402. */
  405. //
  406. // Export the session key in plaintext form
  407. //
  408. LOG_TRY(ExportPlaintextSessionKey(hSessionKey, hProv, &dbSessionKey, ptc));
  410. // Debug
  411. /*
  412. PrintBytes(L"SessionA", pDerivedKeyInfo->dbKey.pbData, pDerivedKeyInfo->dbKey.cbData);
  413. PrintBytes(L"SessionB", dbSessionKey.pbData, dbSessionKey.cbData);
  414. */
  416. //
  417. // Fudge the data comparison slightly since the RSA cipher text blob
  418. // actually contains mostly random padding in this case (having
  419. // used ExportPlaintextSessionKey(), only the first <key length>
  420. // bytes of the cipher data are interesting).
  421. //
  422. // Therefor, compare the following number of bytes in the blobs. The
  423. // rest of it won't match.
  424. //
  425. // sizeof(BLOBHEADER) + sizeof(ALG_ID) + dwKeySize / 8
  426. //
  427. cbValidData = sizeof(BLOBHEADER) + sizeof(ALG_ID) + pDerivedKeyInfo->dwKeySize / 8;
  428. dbSessionKey.cbData = cbValidData;
  429. pDerivedKeyInfo->dbKey.cbData = cbValidData;
  431. LOG_TRY(IsDataEqual(
  432. &dbSessionKey,
  433. &(pDerivedKeyInfo->dbKey),
  434. ptc));
  436. fSuccess = TRUE;
  437. Cleanup:
  439. if (hSessionKey)
  440. {
  441. TDestroyKey(hSessionKey, ptc);
  442. }
  443. if (hHash)
  444. {
  445. TDestroyHash(hHash, ptc);
  446. }
  447. if (dbSessionKey.pbData)
  448. {
  449. free(dbSessionKey.pbData);
  450. }
  452. return fSuccess;
  453. }
  455. //
  456. // Function: CheckSignedData
  457. //
  458. BOOL CheckSignedData(
  459. IN PSIGNED_DATA_INFO pSignedDataInfo,
  460. IN HCRYPTPROV hProv,
  461. IN PTESTCASE ptc)
  462. {
  463. BOOL fSuccess = FALSE;
  464. HCRYPTHASH hHash = 0;
  465. HCRYPTKEY hPubKey = 0;
  467. //
  468. // Create a hash and hash the provided data
  469. //
  470. if (! CreateHashAndAddData(
  471. hProv,
  472. &hHash,
  473. &(pSignedDataInfo->HashInfo),
  474. ptc,
  475. 0, NULL))
  476. {
  477. goto Cleanup;
  478. }
  480. //
  481. // Import the public key corresponding to the private key
  482. // that was used to sign the hashed data.
  483. //
  484. LOG_TRY(TImportKey(
  485. hProv,
  486. pSignedDataInfo->dbPublicKey.pbData,
  487. pSignedDataInfo->dbPublicKey.cbData,
  488. 0,
  489. 0,
  490. &hPubKey,
  491. ptc));
  493. LOG_TRY(TVerifySign(
  494. hHash,
  495. pSignedDataInfo->dbSignature.pbData,
  496. pSignedDataInfo->dbSignature.cbData,
  497. hPubKey,
  498. NULL,
  499. 0,
  500. ptc));
  502. fSuccess = TRUE;
  503. Cleanup:
  505. if (hHash)
  506. {
  507. TDestroyHash(hHash, ptc);
  508. }
  509. if (hPubKey)
  510. {
  511. TDestroyKey(hPubKey, ptc);
  512. }
  514. return fSuccess;
  515. }
  517. //
  518. // Function: PrepareCipherBuffer
  519. // Purpose: Allocate a buffer to receive encrypted data based
  520. // on the size of the data to encrypt, and based on whether
  521. // the cipher is block or stream.
  522. //
  523. BOOL PrepareCipherBuffer(
  524. OUT PDATA_BLOB pdbTargetBuffer,
  525. IN PDATA_BLOB pdbSourceBuffer,
  526. IN DWORD cbBlockLen,
  527. IN BOOL fIsBlockCipher,
  528. IN PTESTCASE ptc)
  529. {
  530. BOOL fSuccess = FALSE;
  532. if (fIsBlockCipher)
  533. {
  534. //
  535. // Determine the maximum length of the cipher text for
  536. // this block cipher. The length of the cipher text is
  537. // up to block length more than the length of the plaintext.
  538. //
  539. pdbTargetBuffer->cbData =
  540. pdbSourceBuffer->cbData + cbBlockLen - (pdbSourceBuffer->cbData % cbBlockLen);
  541. }
  542. else
  543. {
  544. pdbTargetBuffer->cbData = pdbSourceBuffer->cbData;
  545. }
  547. LOG_TRY(TestAlloc(
  548. &(pdbTargetBuffer->pbData),
  549. pdbTargetBuffer->cbData,
  550. ptc));
  552. memcpy(
  553. pdbTargetBuffer->pbData,
  554. pdbSourceBuffer->pbData,
  555. pdbSourceBuffer->cbData);
  557. fSuccess = TRUE;
  558. Cleanup:
  559. return fSuccess;
  560. }
  562. //
  563. // Function: DoBlockCipherOperation
  564. // Purpose: Perform the block cipher operation indicated in the Op parameter
  565. // on the data stored in the pdbSource parameter. The processed data
  566. // will be in pdbTarget.
  567. //
  568. BOOL DoBlockCipherOperation(
  569. IN HCRYPTKEY hKey,
  570. OUT PDATA_BLOB pdbTarget,
  571. IN PDATA_BLOB pdbSource,
  572. IN DWORD cbBlockLen,
  573. IN CIPHER_OP Op,
  574. IN PTESTCASE ptc)
  575. {
  576. BOOL fSuccess = FALSE;
  577. DWORD cbCurrent = CIPHER_BLOCKS_PER_ROUND * cbBlockLen;
  578. DWORD cbProcessed = 0;
  579. BOOL fFinal = FALSE;
  580. DWORD dwKeyAlg = 0;
  581. DWORD cb = 0;
  583. switch ( Op )
  584. {
  585. case OP_Encrypt:
  586. {
  587. LOG_TRY(PrepareCipherBuffer(
  588. pdbTarget,
  589. pdbSource,
  590. cbBlockLen,
  591. TRUE,
  592. ptc));
  594. while (cbCurrent < pdbSource->cbData)
  595. {
  596. LOG_TRY(TEncrypt(
  597. hKey,
  598. 0,
  599. fFinal,
  600. 0,
  601. pdbTarget->pbData + cbProcessed,
  602. &cbCurrent,
  603. pdbTarget->cbData - cbProcessed,
  604. ptc));
  606. if (fFinal)
  607. {
  608. break;
  609. }
  611. cbProcessed += cbCurrent;
  613. if ((cbProcessed + cbCurrent) >= pdbSource->cbData)
  614. {
  615. cbCurrent = pdbSource->cbData - cbProcessed;
  616. fFinal = TRUE;
  617. }
  618. }
  620. break;
  621. }
  622. case OP_Decrypt:
  623. {
  624. //
  625. // For block decryption, the decrypted data will be no
  626. // larger than the cipher text.
  627. //
  628. pdbTarget->cbData = pdbSource->cbData;
  630. LOG_TRY(TestAlloc(
  631. &(pdbTarget->pbData),
  632. pdbTarget->cbData,
  633. ptc));
  635. memcpy(pdbTarget->pbData, pdbSource->pbData, pdbTarget->cbData);
  637. //
  638. // Known 3DES_112 bug in Windows 2000. Specifying a 112
  639. // bit key size, rather than 128 bits, causes the last two
  640. // bytes of key data to be random.
  641. //
  642. cb = sizeof(dwKeyAlg);
  643. LOG_TRY(TGetKey(
  644. hKey,
  645. KP_ALGID,
  646. (PBYTE) &dwKeyAlg,
  647. &cb,
  648. 0,
  649. ptc));
  651. if (CALG_3DES_112 == dwKeyAlg)
  652. {
  653. ptc->KnownErrorID = KNOWN_TESTDECRYPTPROC_3DES112;
  654. ptc->pwszErrorHelp = L"Inconsistent encryption results when using a 14 byte 3DES_112 key";
  655. }
  657. while (cbCurrent < pdbTarget->cbData)
  658. {
  659. LOG_TRY(TDecrypt(
  660. hKey,
  661. 0,
  662. fFinal,
  663. 0,
  664. pdbTarget->pbData + cbProcessed,
  665. &cbCurrent,
  666. ptc));
  668. if (fFinal)
  669. {
  670. //
  671. // Set the size of the actual resulting plaintext.
  672. //
  673. pdbTarget->cbData = cbProcessed + cbCurrent;
  674. break;
  675. }
  677. cbProcessed += cbCurrent;
  679. if ((cbProcessed + cbCurrent) >= pdbTarget->cbData)
  680. {
  681. cbCurrent = pdbTarget->cbData - cbProcessed;
  682. fFinal = TRUE;
  683. }
  684. }
  686. ptc->KnownErrorID = KNOWN_ERROR_UNKNOWN;
  687. ptc->pwszErrorHelp = NULL;
  689. break;
  690. }
  691. }
  693. fSuccess = TRUE;
  694. Cleanup:
  696. return fSuccess;
  697. }
  699. //
  700. // Function: DoStreamCipherOperation
  701. // Purpose: Perform the stream cipher operation indicated in the Op parameter
  702. // on the data stored in the pdbSource parameter. The processed data
  703. // will be in pdbTarget.
  704. //
  705. BOOL DoStreamCipherOperation(
  706. IN HCRYPTKEY hKey,
  707. OUT PDATA_BLOB pdbTarget,
  708. IN PDATA_BLOB pdbSource,
  709. IN CIPHER_OP Op,
  710. IN PTESTCASE ptc)
  711. {
  712. BOOL fSuccess = FALSE;
  713. DWORD cbData = pdbSource->cbData;
  715. switch ( Op )
  716. {
  717. case OP_Encrypt:
  718. {
  719. LOG_TRY(PrepareCipherBuffer(
  720. pdbTarget,
  721. pdbSource,
  722. 0,
  723. FALSE,
  724. ptc));
  726. LOG_TRY(TEncrypt(
  727. hKey,
  728. 0,
  729. TRUE,
  730. 0,
  731. pdbTarget->pbData,
  732. &cbData,
  733. pdbTarget->cbData,
  734. ptc));
  736. break;
  737. }
  738. case OP_Decrypt:
  739. {
  740. pdbTarget->cbData = pdbSource->cbData;
  742. LOG_TRY(TestAlloc(
  743. &(pdbTarget->pbData),
  744. pdbTarget->cbData,
  745. ptc));
  747. memcpy(pdbTarget->pbData, pdbSource->pbData, pdbTarget->cbData);
  749. LOG_TRY(TDecrypt(
  750. hKey,
  751. 0,
  752. TRUE,
  753. 0,
  754. pdbTarget->pbData,
  755. &cbData,
  756. ptc));
  758. break;
  759. }
  760. }
  762. fSuccess = TRUE;
  763. Cleanup:
  765. return fSuccess;
  766. }
  768. //
  769. // Function: ProcessCipherData
  770. //
  771. BOOL ProcessCipherData(
  772. IN HCRYPTPROV hProvA,
  773. IN OUT PTEST_ENCRYPT_INFO pTestEncryptInfo,
  774. IN PTESTCASE ptc)
  775. {
  776. BOOL fSuccess = FALSE;
  777. HCRYPTKEY hKey = 0;
  778. DWORD cbData = 0;
  779. DWORD cbBlockLen = 0;
  780. //DWORD cbProcessed = 0;
  781. //DWORD cbCurrent = 0;
  782. //BOOL fFinal = FALSE;
  784. //
  785. // Create the key
  786. //
  787. LOG_TRY(TGenKey(
  788. hProvA,
  789. pTestEncryptInfo->aiKeyAlg,
  790. CRYPT_EXPORTABLE | (pTestEncryptInfo->dwKeySize << 16),
  791. &hKey,
  792. ptc));
  794. //
  795. // Generate the salt, if requested
  796. //
  797. if (pTestEncryptInfo->fUseSalt)
  798. {
  799. //
  800. // Microsoft CSP's have a maximum key + salt length of
  801. // 128 bits, but the test will set a long salt value
  802. // regardless of the key size to ensure
  803. // that possible interop issues are exposed.
  804. //
  805. LOG_TRY(TestAlloc(
  806. &(pTestEncryptInfo->dbSalt.pbData),
  807. DEFAULT_SALT_LEN,
  808. ptc));
  809. pTestEncryptInfo->dbSalt.cbData = DEFAULT_SALT_LEN;
  811. LOG_TRY(TSetKey(
  812. hKey,
  813. KP_SALT_EX,
  814. (PBYTE) &(pTestEncryptInfo->dbSalt),
  815. 0,
  816. ptc));
  817. }
  819. //
  820. // Set the cipher mode, if requested
  821. //
  822. if (pTestEncryptInfo->fSetMode)
  823. {
  824. LOG_TRY(TSetKey(
  825. hKey,
  826. KP_MODE,
  827. (PBYTE) &(pTestEncryptInfo->dwMode),
  828. 0,
  829. ptc));
  830. }
  832. //
  833. // Determine cipher block len, if applicable
  834. //
  835. if (ALG_TYPE_BLOCK & pTestEncryptInfo->aiKeyAlg)
  836. {
  837. cbData = sizeof(cbBlockLen);
  838. LOG_TRY(TGetKey(
  839. hKey,
  840. KP_BLOCKLEN,
  841. (PBYTE) &cbBlockLen,
  842. &cbData,
  843. 0,
  844. ptc));
  846. // Block length is returned in bits
  847. cbBlockLen = cbBlockLen / 8;
  848. pTestEncryptInfo->cbBlockLen = cbBlockLen;
  849. }
  851. //
  852. // Set the IV, if requested
  853. //
  854. // If caller has requested an IV for a stream cipher,
  855. // these calls may fail.
  856. //
  857. if (pTestEncryptInfo->fSetIV)
  858. {
  859. //
  860. // Size of IV must be equal to cipher block length
  861. //
  862. LOG_TRY(TestAlloc(
  863. &(pTestEncryptInfo->pbIV),
  864. cbBlockLen,
  865. ptc));
  867. LOG_TRY(TSetKey(
  868. hKey,
  869. KP_IV,
  870. pTestEncryptInfo->pbIV,
  871. 0,
  872. ptc));
  873. }
  875. //
  876. // Generate the base data
  877. //
  878. if (ALG_TYPE_BLOCK & pTestEncryptInfo->aiKeyAlg)
  879. {
  880. //
  881. // To create a "better" block cipher test scenario,
  882. // the base data will not be an exact multiple of the
  883. // block length. This will allow an interesting multi-round
  884. // encryption, with the last round requiring less than a block
  885. // length of padding.
  886. //
  887. // data len = BLOCKS_IN_BASE_DATA * cbBlockLen - 1byte
  888. //
  889. pTestEncryptInfo->dbBaseData.cbData = BLOCKS_IN_BASE_DATA * cbBlockLen - 1;
  890. }
  891. else
  892. {
  893. //
  894. // Set base data len for a stream cipher
  895. //
  896. pTestEncryptInfo->dbBaseData.cbData = STREAM_CIPHER_BASE_DATA_LEN;
  897. }
  899. LOG_TRY(TestAlloc(
  900. &(pTestEncryptInfo->dbBaseData.pbData),
  901. pTestEncryptInfo->dbBaseData.cbData,
  902. ptc));
  904. LOG_TRY(TGenRand(
  905. hProvA,
  906. pTestEncryptInfo->dbBaseData.cbData,
  907. pTestEncryptInfo->dbBaseData.pbData,
  908. ptc));
  910. //
  911. // Call DoBlockCipherOperation or DoStreamCipherOperation,
  912. // depending on the cipher algorithm, to perform the requested
  913. // operation.
  914. //
  915. if (ALG_TYPE_BLOCK & pTestEncryptInfo->aiKeyAlg)
  916. {
  917. LOG_TRY(DoBlockCipherOperation(
  918. hKey,
  919. &(pTestEncryptInfo->dbProcessedData),
  920. &(pTestEncryptInfo->dbBaseData),
  921. cbBlockLen,
  922. pTestEncryptInfo->Operation,
  923. ptc));
  924. }
  925. else
  926. {
  927. LOG_TRY(DoStreamCipherOperation(
  928. hKey,
  929. &(pTestEncryptInfo->dbProcessedData),
  930. &(pTestEncryptInfo->dbBaseData),
  931. pTestEncryptInfo->Operation,
  932. ptc));
  933. }
  935. //
  936. // Export the session key in plain text
  937. //
  938. LOG_TRY(ExportPlaintextSessionKey(
  939. hKey,
  940. hProvA,
  941. &(pTestEncryptInfo->dbKey),
  942. ptc));
  944. fSuccess = TRUE;
  945. Cleanup:
  947. if (hKey)
  948. {
  949. TDestroyKey(hKey, ptc);
  950. }
  952. return fSuccess;
  953. }
  955. //
  956. // Function: VerifyCipherData
  957. //
  958. BOOL VerifyCipherData(
  959. IN HCRYPTPROV hProvB,
  960. IN PTEST_ENCRYPT_INFO pTestEncryptInfo,
  961. IN PTESTCASE ptc)
  962. {
  963. BOOL fSuccess = FALSE;
  964. HCRYPTKEY hKey = 0;
  965. CIPHER_OP Op;
  966. DATA_BLOB dbData;
  968. memset(&dbData, 0, sizeof(dbData));
  970. //
  971. // Import the plaintext session key
  972. //
  973. LOG_TRY(ImportPlaintextSessionKey(
  974. &(pTestEncryptInfo->dbKey),
  975. &hKey,
  976. hProvB,
  977. ptc));
  979. if (pTestEncryptInfo->fUseSalt)
  980. {
  981. LOG_TRY(TSetKey(
  982. hKey,
  983. KP_SALT_EX,
  984. (PBYTE) &(pTestEncryptInfo->dbSalt),
  985. 0,
  986. ptc));
  987. }
  989. //
  990. // Set the salt value, if requested
  991. //
  992. if (pTestEncryptInfo->fUseSalt)
  993. {
  994. LOG_TRY(TSetKey(
  995. hKey,
  996. KP_SALT_EX,
  997. (PBYTE) &(pTestEncryptInfo->dbSalt),
  998. 0,
  999. ptc));
  1000. }
  1002. //
  1003. // Set the cipher mode, if requested
  1004. //
  1005. if (pTestEncryptInfo->fSetMode)
  1006. {
  1007. LOG_TRY(TSetKey(
  1008. hKey,
  1009. KP_MODE,
  1010. (PBYTE) &(pTestEncryptInfo->dwMode),
  1011. 0,
  1012. ptc));
  1013. }
  1015. //
  1016. // Set the IV, if requested
  1017. //
  1018. if (pTestEncryptInfo->fSetIV)
  1019. {
  1020. LOG_TRY(TSetKey(
  1021. hKey,
  1022. KP_IV,
  1023. pTestEncryptInfo->pbIV,
  1024. 0,
  1025. ptc));
  1026. }
  1028. //
  1029. // The verification operation should be the opposite of what
  1030. // the caller initially specified (the opposite of the operation
  1031. // performed in ProcessCipherData).
  1032. //
  1033. Op = (OP_Encrypt == pTestEncryptInfo->Operation) ? OP_Decrypt : OP_Encrypt;
  1035. //
  1036. // Call DoBlockCipherOperation or DoStreamCipherOperation,
  1037. // depending on the cipher algorithm, to perform the requested
  1038. // operation.
  1039. //
  1040. if (ALG_TYPE_BLOCK & pTestEncryptInfo->aiKeyAlg)
  1041. {
  1042. LOG_TRY(DoBlockCipherOperation(
  1043. hKey,
  1044. &dbData,
  1045. &(pTestEncryptInfo->dbProcessedData),
  1046. pTestEncryptInfo->cbBlockLen,
  1047. Op,
  1048. ptc));
  1049. }
  1050. else
  1051. {
  1052. LOG_TRY(DoStreamCipherOperation(
  1053. hKey,
  1054. &dbData,
  1055. &(pTestEncryptInfo->dbProcessedData),
  1056. Op,
  1057. ptc));
  1058. }
  1060. if (CALG_3DES_112 == pTestEncryptInfo->aiKeyAlg)
  1061. {
  1062. ptc->KnownErrorID = KNOWN_TESTDECRYPTPROC_3DES112;
  1063. }
  1065. LOG_TRY(IsDataEqual(&dbData, &(pTestEncryptInfo->dbBaseData), ptc));
  1067. ptc->KnownErrorID = KNOWN_ERROR_UNKNOWN;
  1069. fSuccess = TRUE;
  1070. Cleanup:
  1072. if (hKey)
  1073. {
  1074. TDestroyKey(hKey, ptc);
  1075. }
  1076. if (dbData.pbData)
  1077. {
  1078. free(dbData.pbData);
  1079. }
  1080. if (pTestEncryptInfo->dbBaseData.pbData)
  1081. {
  1082. free(pTestEncryptInfo->dbBaseData.pbData);
  1083. }
  1084. if (pTestEncryptInfo->dbProcessedData.pbData)
  1085. {
  1086. free(pTestEncryptInfo->dbProcessedData.pbData);
  1087. }
  1088. if (pTestEncryptInfo->dbKey.pbData)
  1089. {
  1090. free(pTestEncryptInfo->dbKey.pbData);
  1091. }
  1092. if (pTestEncryptInfo->pbIV)
  1093. {
  1094. free(pTestEncryptInfo->pbIV);
  1095. }
  1096. if (pTestEncryptInfo->dbSalt.pbData)
  1097. {
  1098. free(pTestEncryptInfo->dbSalt.pbData);
  1099. }
  1101. return fSuccess;
  1102. }
  1104. //
  1105. // Function: GetHashVal
  1106. // Purpose: Populate a data blob with the hash value from the
  1107. // provided hash handle.
  1108. //
  1109. BOOL GetHashVal(
  1110. IN HCRYPTHASH hHash,
  1111. OUT PDATA_BLOB pdb,
  1112. IN PTESTCASE ptc)
  1113. {
  1114. BOOL fSuccess = FALSE;
  1116. LOG_TRY(TGetHash(
  1117. hHash,
  1118. HP_HASHVAL,
  1119. NULL,
  1120. &(pdb->cbData),
  1121. 0,
  1122. ptc));
  1124. LOG_TRY(TestAlloc(&(pdb->pbData), pdb->cbData, ptc));
  1126. LOG_TRY(TGetHash(
  1127. hHash,
  1128. HP_HASHVAL,
  1129. pdb->pbData,
  1130. &(pdb->cbData),
  1131. 0,
  1132. ptc));
  1134. fSuccess = TRUE;
  1135. Cleanup:
  1136. return fSuccess;
  1137. }
  1139. //
  1140. // Function: CreateHashedSessionKey
  1141. //
  1142. BOOL CreateHashedSessionKey(
  1143. IN HCRYPTPROV hProv,
  1144. IN OUT PHASH_SESSION_INFO pHashSessionInfo,
  1145. IN PTESTCASE ptc)
  1146. {
  1147. BOOL fSuccess = FALSE;
  1148. HCRYPTKEY hKey = 0;
  1149. HCRYPTHASH hHash = 0;
  1151. LOG_TRY(TGenKey(
  1152. hProv,
  1153. pHashSessionInfo->aiKey,
  1154. CRYPT_EXPORTABLE | (pHashSessionInfo->dwKeySize << 16),
  1155. &hKey,
  1156. ptc));
  1158. LOG_TRY(TCreateHash(
  1159. hProv,
  1160. pHashSessionInfo->aiHash,
  1161. 0,
  1162. 0,
  1163. &hHash,
  1164. ptc));
  1166. LOG_TRY(THashSession(hHash, hKey, pHashSessionInfo->dwFlags, ptc));
  1168. LOG_TRY(GetHashVal(hHash, &(pHashSessionInfo->dbHash), ptc));
  1170. LOG_TRY(ExportPlaintextSessionKey(
  1171. hKey,
  1172. hProv,
  1173. &(pHashSessionInfo->dbKey),
  1174. ptc));
  1176. fSuccess = TRUE;
  1177. Cleanup:
  1179. if (hKey)
  1180. {
  1181. TDestroyKey(hKey, ptc);
  1182. }
  1183. if (hHash)
  1184. {
  1185. TDestroyHash(hHash, ptc);
  1186. }
  1188. return fSuccess;
  1189. }
  1191. //
  1192. // Function: VerifyHashedSessionKey
  1193. // Purpose: Import the plaintext session key into a separate CSP.
  1194. // Hash the session key with CryptHashSessionKey. Verify
  1195. // the resulting hash value.
  1196. //
  1197. BOOL VerifyHashedSessionKey(
  1198. IN HCRYPTPROV hInteropProv,
  1199. IN PHASH_SESSION_INFO pHashSessionInfo,
  1200. IN PTESTCASE ptc)
  1201. {
  1202. BOOL fSuccess = FALSE;
  1203. HCRYPTKEY hKey = 0;
  1204. HCRYPTHASH hHash = 0;
  1205. DATA_BLOB dbInteropHash;
  1207. memset(&dbInteropHash, 0, sizeof(dbInteropHash));
  1209. LOG_TRY(ImportPlaintextSessionKey(
  1210. &(pHashSessionInfo->dbKey),
  1211. &hKey,
  1212. hInteropProv,
  1213. ptc));
  1215. LOG_TRY(TCreateHash(
  1216. hInteropProv,
  1217. pHashSessionInfo->aiHash,
  1218. 0,
  1219. 0,
  1220. &hHash,
  1221. ptc));
  1223. LOG_TRY(THashSession(hHash, hKey, pHashSessionInfo->dwFlags, ptc));
  1225. LOG_TRY(GetHashVal(hHash, &dbInteropHash, ptc));
  1227. LOG_TRY(IsDataEqual(&(pHashSessionInfo->dbHash), &dbInteropHash, ptc));
  1229. fSuccess = TRUE;
  1231. Cleanup:
  1233. if (hKey)
  1234. {
  1235. TDestroyKey(hKey, ptc);
  1236. }
  1237. if (hHash)
  1238. {
  1239. TDestroyHash(hHash, ptc);
  1240. }
  1241. if (dbInteropHash.pbData)
  1242. {
  1243. free(dbInteropHash.pbData);
  1244. }
  1245. if (pHashSessionInfo->dbHash.pbData)
  1246. {
  1247. free(pHashSessionInfo->dbHash.pbData);
  1248. }
  1249. if (pHashSessionInfo->dbKey.pbData)
  1250. {
  1251. free(pHashSessionInfo->dbKey.pbData);
  1252. }
  1254. return fSuccess;
  1255. }
  1257. //
  1258. // Function: RSA1_CreateKeyPair
  1259. //
  1260. BOOL RSA1_CreateKeyPair(
  1261. IN HCRYPTPROV hProvA,
  1262. IN PKEYEXCHANGE_INFO pKeyExchangeInfo,
  1263. OUT PKEYEXCHANGE_STATE pKeyExchangeState,
  1264. IN PTESTCASE ptc)
  1265. {
  1266. BOOL fSuccess = FALSE;
  1267. HCRYPTKEY hPubKeyA = 0;
  1269. //
  1270. // Create an RSA key exchange key pair and export the public
  1271. // key.
  1272. //
  1273. LOG_TRY(TGenKey(
  1274. hProvA,
  1275. AT_KEYEXCHANGE,
  1276. (pKeyExchangeInfo->dwPubKeySize << 16) | CRYPT_EXPORTABLE,
  1277. &hPubKeyA,
  1278. ptc));
  1280. if (! ExportPublicKey(hPubKeyA, &(pKeyExchangeState->dbPubKeyA), ptc))
  1281. {
  1282. goto Cleanup;
  1283. }
  1285. fSuccess = TRUE;
  1286. Cleanup:
  1288. if (hPubKeyA)
  1289. {
  1290. TDestroyKey(hPubKeyA, ptc);
  1291. }
  1293. return fSuccess;
  1294. }
  1296. //
  1297. // Function: RSA2_EncryptPlainText
  1298. //
  1299. BOOL RSA2_EncryptPlainText(
  1300. IN HCRYPTPROV hProvB,
  1301. IN PKEYEXCHANGE_INFO pKeyExchangeInfo,
  1302. IN OUT PKEYEXCHANGE_STATE pKeyExchangeState,
  1303. IN PTESTCASE ptc)
  1304. {
  1305. BOOL fSuccess = TRUE;
  1306. HCRYPTKEY hSessionKeyB = 0;
  1307. HCRYPTKEY hPubKeyB = 0;
  1308. HCRYPTKEY hPubKeyA = 0;
  1309. HCRYPTHASH hHash = 0;
  1310. //DWORD cbBuffer = 0;
  1311. DWORD cbData = 0;
  1313. //
  1314. // User B creates an RSA signature key pair
  1315. //
  1316. LOG_TRY(TGenKey(
  1317. hProvB,
  1318. AT_SIGNATURE,
  1319. (pKeyExchangeInfo->dwPubKeySize << 16) | CRYPT_EXPORTABLE,
  1320. &hPubKeyB,
  1321. ptc));
  1323. //
  1324. // Create hash and session key
  1325. //
  1326. LOG_TRY(TCreateHash(
  1327. hProvB,
  1328. pKeyExchangeInfo->aiHash,
  1329. 0,
  1330. 0,
  1331. &hHash,
  1332. ptc));
  1334. LOG_TRY(TGenKey(
  1335. hProvB,
  1336. pKeyExchangeInfo->aiSessionKey,
  1337. (pKeyExchangeInfo->dwSessionKeySize << 16) | CRYPT_EXPORTABLE,
  1338. &hSessionKeyB,
  1339. ptc));
  1341. //
  1342. // Encrypt and hash the data simultaneously
  1343. //
  1344. cbData = pKeyExchangeState->dbCipherTextB.cbData = pKeyExchangeInfo->dbPlainText.cbData;
  1346. LOG_TRY(TEncrypt(
  1347. hSessionKeyB,
  1348. 0,
  1349. TRUE,
  1350. 0,
  1351. NULL,
  1352. &(pKeyExchangeState->dbCipherTextB.cbData),
  1353. 0,
  1354. ptc));
  1356. LOG_TRY(TestAlloc(
  1357. &(pKeyExchangeState->dbCipherTextB.pbData),
  1358. pKeyExchangeState->dbCipherTextB.cbData,
  1359. ptc));
  1361. memcpy(
  1362. pKeyExchangeState->dbCipherTextB.pbData,
  1363. pKeyExchangeInfo->dbPlainText.pbData,
  1364. cbData);
  1366. LOG_TRY(TEncrypt(
  1367. hSessionKeyB,
  1368. hHash,
  1369. TRUE,
  1370. 0,
  1371. pKeyExchangeState->dbCipherTextB.pbData,
  1372. &cbData,
  1373. pKeyExchangeState->dbCipherTextB.cbData,
  1374. ptc));
  1376. //
  1377. // Now sign the hashed plain text
  1378. //
  1379. LOG_TRY(TSignHash(
  1380. hHash,
  1381. AT_SIGNATURE,
  1382. NULL,
  1383. 0,
  1384. NULL,
  1385. &(pKeyExchangeState->dbSignatureB.cbData),
  1386. ptc));
  1388. LOG_TRY(TestAlloc(
  1389. &(pKeyExchangeState->dbSignatureB.pbData),
  1390. pKeyExchangeState->dbSignatureB.cbData,
  1391. ptc));
  1393. LOG_TRY(TSignHash(
  1394. hHash,
  1395. AT_SIGNATURE,
  1396. NULL,
  1397. 0,
  1398. pKeyExchangeState->dbSignatureB.pbData,
  1399. &(pKeyExchangeState->dbSignatureB.cbData),
  1400. ptc));
  1402. //
  1403. // Import User A's public key. Then export User B's session key encrypted
  1404. // with User A's public key.
  1405. //
  1406. LOG_TRY(TImportKey(
  1407. hProvB,
  1408. pKeyExchangeState->dbPubKeyA.pbData,
  1409. pKeyExchangeState->dbPubKeyA.cbData,
  1410. 0,
  1411. 0,
  1412. &hPubKeyA,
  1413. ptc));
  1415. LOG_TRY(TExportKey(
  1416. hSessionKeyB,
  1417. hPubKeyA,
  1418. SIMPLEBLOB,
  1419. 0,
  1420. NULL,
  1421. &(pKeyExchangeState->dbEncryptedSessionKeyB.cbData),
  1422. ptc));
  1424. LOG_TRY(TestAlloc(
  1425. &(pKeyExchangeState->dbEncryptedSessionKeyB.pbData),
  1426. pKeyExchangeState->dbEncryptedSessionKeyB.cbData,
  1427. ptc));
  1429. LOG_TRY(TExportKey(
  1430. hSessionKeyB,
  1431. hPubKeyA,
  1432. SIMPLEBLOB,
  1433. 0,
  1434. pKeyExchangeState->dbEncryptedSessionKeyB.pbData,
  1435. &(pKeyExchangeState->dbEncryptedSessionKeyB.cbData),
  1436. ptc));
  1438. //
  1439. // Export User B's public key so that User A can verify the signed data
  1440. //
  1441. if (! ExportPublicKey(hPubKeyB, &(pKeyExchangeState->dbPubKeyB), ptc))
  1442. {
  1443. goto Cleanup;
  1444. }
  1446. fSuccess = TRUE;
  1447. Cleanup:
  1449. if (hSessionKeyB)
  1450. {
  1451. TDestroyKey(hSessionKeyB, ptc);
  1452. }
  1453. if (hPubKeyB)
  1454. {
  1455. TDestroyKey(hPubKeyB, ptc);
  1456. }
  1457. if (hPubKeyA)
  1458. {
  1459. TDestroyKey(hPubKeyA, ptc);
  1460. }
  1461. if (hHash)
  1462. {
  1463. TDestroyHash(hHash, ptc);
  1464. }
  1466. return fSuccess;
  1467. }
  1469. //
  1470. // Function: RSA3_DecryptAndCheck
  1471. //
  1472. BOOL RSA3_DecryptAndCheck(
  1473. IN HCRYPTPROV hProvA,
  1474. IN PKEYEXCHANGE_INFO pKeyExchangeInfo,
  1475. IN PKEYEXCHANGE_STATE pKeyExchangeState,
  1476. IN PTESTCASE ptc)
  1477. {
  1478. BOOL fSuccess = FALSE;
  1479. HCRYPTKEY hPubKeyA = 0;
  1480. HCRYPTKEY hPubKeyB = 0;
  1481. HCRYPTKEY hSessionKey = 0;
  1482. HCRYPTHASH hHash = 0;
  1484. //
  1485. // Get User A's RSA key exchange key handle
  1486. //
  1487. LOG_TRY(TGetUser(
  1488. hProvA,
  1489. AT_KEYEXCHANGE,
  1490. &hPubKeyA,
  1491. ptc));
  1493. //
  1494. // Import and decrypt the session key from User B
  1495. //
  1496. LOG_TRY(TImportKey(
  1497. hProvA,
  1498. pKeyExchangeState->dbEncryptedSessionKeyB.pbData,
  1499. pKeyExchangeState->dbEncryptedSessionKeyB.cbData,
  1500. hPubKeyA,
  1501. 0,
  1502. &hSessionKey,
  1503. ptc));
  1505. //
  1506. // Create a hash. Then simultaneously decrypt the cipher text and
  1507. // hash the resulting plain text.
  1508. //
  1509. LOG_TRY(TCreateHash(
  1510. hProvA,
  1511. pKeyExchangeInfo->aiHash,
  1512. 0,
  1513. 0,
  1514. &hHash,
  1515. ptc));
  1517. LOG_TRY(TDecrypt(
  1518. hSessionKey,
  1519. hHash,
  1520. TRUE,
  1521. 0,
  1522. pKeyExchangeState->dbCipherTextB.pbData,
  1523. &(pKeyExchangeState->dbCipherTextB.cbData),
  1524. ptc));
  1526. //
  1527. // Import User B's signature public key.
  1528. //
  1529. LOG_TRY(TImportKey(
  1530. hProvA,
  1531. pKeyExchangeState->dbPubKeyB.pbData,
  1532. pKeyExchangeState->dbPubKeyB.cbData,
  1533. 0,
  1534. 0,
  1535. &hPubKeyB,
  1536. ptc));
  1538. //
  1539. // Verify the signature blob
  1540. //
  1541. LOG_TRY(TVerifySign(
  1542. hHash,
  1543. pKeyExchangeState->dbSignatureB.pbData,
  1544. pKeyExchangeState->dbSignatureB.cbData,
  1545. hPubKeyB,
  1546. NULL,
  1547. 0,
  1548. ptc));
  1550. fSuccess = TRUE;
  1551. Cleanup:
  1553. if (hSessionKey)
  1554. {
  1555. TDestroyKey(hSessionKey, ptc);
  1556. }
  1557. if (hPubKeyA)
  1558. {
  1559. TDestroyKey(hPubKeyA, ptc);
  1560. }
  1561. if (hPubKeyB)
  1562. {
  1563. TDestroyKey(hPubKeyB, ptc);
  1564. }
  1565. if (hHash)
  1566. {
  1567. TDestroyHash(hHash, ptc);
  1568. }
  1569. if (pKeyExchangeState->dbCipherTextB.pbData)
  1570. {
  1571. free(pKeyExchangeState->dbCipherTextB.pbData);
  1572. }
  1573. if (pKeyExchangeState->dbPubKeyA.pbData)
  1574. {
  1575. free(pKeyExchangeState->dbPubKeyA.pbData);
  1576. }
  1577. if (pKeyExchangeState->dbPubKeyB.pbData)
  1578. {
  1579. free(pKeyExchangeState->dbPubKeyB.pbData);
  1580. }
  1581. if (pKeyExchangeState->dbSignatureB.pbData)
  1582. {
  1583. free(pKeyExchangeState->dbSignatureB.pbData);
  1584. }
  1585. if (pKeyExchangeState->dbEncryptedSessionKeyB.pbData)
  1586. {
  1587. free(pKeyExchangeState->dbEncryptedSessionKeyB.pbData);
  1588. }
  1590. return fSuccess;
  1591. }