|
|
/////////////////////////////////////////////////////////////////////////////
// FILE : nt_hash.c //
// DESCRIPTION : Crypto CP interfaces: //
// CPBeginHash //
// CPUpdateHash //
// CPDestroyHash //
// AUTHOR : //
// HISTORY : //
// Jan 25 1995 larrys Changed from Nametag //
// Feb 23 1995 larrys Changed NTag_SetLastError to SetLastError //
// May 8 1995 larrys Changes for MAC hashing //
// May 10 1995 larrys added private api calls //
// Jul 13 1995 larrys Changed MAC stuff //
// Aug 07 1995 larrys Added Auto-Inflate to CryptBeginHash //
// Aug 30 1995 larrys Removed RETURNASHVALUE from CryptGetHashValue //
// Sep 19 1995 larrys changed USERDATA to CRYPT_USERDATA //
// Oct 03 1995 larrys check for 0 on Createhash for hKey //
// Oct 05 1995 larrys Changed HashSessionKey to hash key material //
// Oct 13 1995 larrys Removed CPGetHashValue //
// Oct 17 1995 larrys Added MD2 //
// Nov 3 1995 larrys Merge for NT checkin //
// Nov 14 1995 larrys Fixed memory leak //
// Mar 01 1996 rajeshk Added check for Hash Values //
// May 15 1996 larrys Changed NTE_NO_MEMORY to ERROR_NOT_ENOUGHT... //
// Jun 6 1996 a-johnb Added support for SSL 3.0 signatures //
// Apr 25 1997 jeffspel Fix for Bug 76393, GPF on pbData = NULL //
// May 23 1997 jeffspel Added provider type checking //
// //
// Copyright (C) 1993 Microsoft Corporation All Rights Reserved //
/////////////////////////////////////////////////////////////////////////////
#include "precomp.h"
#include "nt_rsa.h"
#include "tripldes.h"
#include "mac.h"
#include "ssl3.h"
#include "aes.h"
extern BOOLFIsLegalKey( PNTAGUserList pTmpUser, PNTAGKeyList pKey, BOOL fRC2BigKeyOK);
extern DWORDInflateKey( IN PNTAGKeyList pTmpKey);
extern DWORDBlockEncrypt( void EncFun(BYTE *In, BYTE *Out, void *key, int op), PNTAGKeyList pKey, int BlockLen, BOOL Final, BYTE *pbData, DWORD *pdwDataLen, DWORD dwBufLen);
extern DWORDLocalGetHashVal( IN ALG_ID Algid, IN DWORD dwHashFlags, IN OUT BYTE *pbHashData, OUT BYTE *pbHashVal, OUT DWORD *pcbHashVal);
#ifdef CSP_USE_MD5
//
// Function : TestMD5
//
// Description : This function hashes the passed in message with the MD5 hash
// algorithm and returns the resulting hash value.
//
BOOLTestMD5( BYTE *pbMsg, DWORD cbMsg, BYTE *pbHash){ MD5_CTX MD5; BOOL fRet = FALSE;
// Check length for input data
if (0 == cbMsg) goto ErrorExit;
// Initialize MD5
MD5Init(&MD5);
// Compute MD5
MD5Update(&MD5, pbMsg, cbMsg);
MD5Final(&MD5); memcpy(pbHash, MD5.digest, MD5DIGESTLEN);
fRet = TRUE;
ErrorExit: return fRet;}#endif // CSP_USE_MD5
#ifdef CSP_USE_SHA1
//
// Function : TestSHA1
//
// Description : This function hashes the passed in message with the SHA1 hash
// algorithm and returns the resulting hash value.
//
BOOLTestSHA1( BYTE *pbMsg, DWORD cbMsg, BYTE *pbHash){ A_SHA_CTX HashContext; BOOL fRet = FALSE;
// Check length for input data
if (0 == cbMsg) goto ErrorExit;
// Initialize SHA
A_SHAInit(&HashContext);
// Compute SHA
A_SHAUpdate(&HashContext, pbMsg, cbMsg);
A_SHAFinal(&HashContext, pbHash);
fRet = TRUE;
ErrorExit: return fRet;}#endif // CSP_USE_SHA1
BOOLValidHashAlgid( PNTAGUserList pTmpUser, ALG_ID Algid){ if ((PROV_RSA_SCHANNEL == pTmpUser->dwProvType) && ((CALG_MD2 == Algid) || (CALG_MD4 == Algid))) return FALSE; else return TRUE;}
// local function for creating hashes
DWORDLocalCreateHash( IN ALG_ID Algid, OUT BYTE **ppbHashData, OUT DWORD *pcbHashData){ DWORD dwReturn = ERROR_INTERNAL_ERROR;
switch (Algid) {#ifdef CSP_USE_MD2
case CALG_MD2: { MD2_object *pMD2Hash;
pMD2Hash = (MD2_object *)_nt_malloc(sizeof(MD2_object)); if (NULL == pMD2Hash) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
// Set up the Initial MD2 Hash State
memset ((BYTE *)pMD2Hash, 0, sizeof(MD2_object)); pMD2Hash->FinishFlag = FALSE;
*pcbHashData = sizeof(MD2_object); *ppbHashData = (LPBYTE)pMD2Hash; break; }#endif
#ifdef CSP_USE_MD4
case CALG_MD4: { MD4_object *pMD4Hash;
pMD4Hash = (MD4_object *)_nt_malloc(sizeof(MD4_object)); if (NULL == pMD4Hash) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
// Set up the Initial MD4 Hash State
memset ((BYTE *)pMD4Hash, 0, sizeof(MD4_object)); pMD4Hash->FinishFlag = FALSE; MDbegin(&pMD4Hash->MD);
*pcbHashData = sizeof(MD4_object); *ppbHashData = (BYTE*)pMD4Hash; break; }#endif
#ifdef CSP_USE_MD5
case CALG_MD5: { MD5_object *pMD5Hash;
pMD5Hash = (MD5_object *)_nt_malloc(sizeof(MD5_object)); if (NULL == pMD5Hash) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
// Set up the our state
pMD5Hash->FinishFlag = FALSE; MD5Init(pMD5Hash);
*ppbHashData = (BYTE*)pMD5Hash; *pcbHashData = sizeof(MD5_object); break; }#endif
#ifdef CSP_USE_SHA
case CALG_SHA: { A_SHA_CTX *pSHAHash;
pSHAHash = (A_SHA_CTX *)_nt_malloc(sizeof(A_SHA_CTX)); if (NULL == pSHAHash) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
// Set up our state
A_SHAInit(pSHAHash); pSHAHash->FinishFlag = FALSE;
*ppbHashData = (BYTE*)pSHAHash; *pcbHashData = sizeof(A_SHA_CTX); break; }#endif
default: dwReturn = (DWORD)NTE_BAD_ALGID; goto ErrorExit; }
dwReturn = ERROR_SUCCESS;
ErrorExit: return dwReturn;}
/*
- CPBeginHash - * Purpose: * initate the hashing of a stream of data * * * Parameters: * IN hUID - Handle to the user identifcation * IN Algid - Algorithm identifier of the hash algorithm * to be used * IN hKey - Optional key for MAC algorithms * IN dwFlags - Flags values * OUT pHash - Handle to hash object * * Returns: */
BOOL WINAPICPCreateHash( IN HCRYPTPROV hUID, IN ALG_ID Algid, IN HCRYPTKEY hKey, IN DWORD dwFlags, OUT HCRYPTHASH *phHash){ DWORD dwReturn = ERROR_INTERNAL_ERROR; PNTAGUserList pTmpUser; PNTAGHashList pCurrentHash = NULL; PNTAGKeyList pTmpKey;#ifdef CSP_USE_SSL3
PSCH_HASH pSChHash;#endif // CSP_USE_SSL3
BOOL fRet; DWORD dwSts;
EntryPoint if (dwFlags != 0) { dwReturn = (DWORD)NTE_BAD_FLAGS; goto ErrorExit; }
// check if the user handle is valid
pTmpUser = NTLCheckList(hUID, USER_HANDLE); if (NULL == pTmpUser) { dwReturn = (DWORD)NTE_BAD_UID; goto ErrorExit; }
if (!ValidHashAlgid(pTmpUser, Algid)) { dwReturn = (DWORD)NTE_BAD_ALGID; goto ErrorExit; }
// Prepare the structure to be used as the hash handle
pCurrentHash = (PNTAGHashList)_nt_malloc(sizeof(NTAGHashList)); if (NULL == pCurrentHash) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
memset(pCurrentHash, 0, sizeof(NTAGHashList)); pCurrentHash->Algid = Algid; pCurrentHash->hUID = hUID;
// determine which hash algorithm is to be used
switch (Algid) {#ifdef CSP_USE_MAC
case CALG_MAC: { MACstate *pMACVal;
if (hKey == 0) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
dwSts = NTLValidate(hKey, hUID, KEY_HANDLE, &pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_KEY : dwSts; goto ErrorExit; }
if (pTmpKey->Mode != CRYPT_MODE_CBC) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
// Check if we should do an auto-inflate
if (pTmpKey->pData == NULL) { dwSts = InflateKey(pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } }
pMACVal = (MACstate *)_nt_malloc(sizeof(MACstate)); if (NULL == pMACVal) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
pCurrentHash->pHashData = pMACVal; pCurrentHash->dwDataLen = sizeof(MACstate); pCurrentHash->hKey = hKey; pMACVal->dwBufLen = 0; pMACVal->FinishFlag = FALSE; break; }#endif
case CALG_HMAC: { if (hKey == 0) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
dwSts = NTLValidate(hKey, hUID, KEY_HANDLE, &pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = (NTE_FAIL == dwSts) ? (DWORD)NTE_BAD_KEY : dwSts; goto ErrorExit; }
pCurrentHash->hKey = hKey; break; }
#ifdef CSP_USE_SSL3SHAMD5
case CALG_SSL3_SHAMD5: { pCurrentHash->pHashData = _nt_malloc(SSL3_SHAMD5_LEN); if (NULL == pCurrentHash->pHashData) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
pCurrentHash->dwDataLen = SSL3_SHAMD5_LEN; break; }#endif
#ifdef CSP_USE_SSL3
case CALG_SCHANNEL_MASTER_HASH: { if (0 == hKey) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
dwSts = NTLValidate(hKey, hUID, KEY_HANDLE, &pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_KEY : dwSts; goto ErrorExit; }
if ((CALG_SSL3_MASTER != pTmpKey->Algid) && (CALG_PCT1_MASTER != pTmpKey->Algid) && (pTmpKey->cbKeyLen > MAX_PREMASTER_LEN)) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
pCurrentHash->dwDataLen = sizeof(SCH_HASH); pCurrentHash->pHashData = (BYTE *)_nt_malloc(pCurrentHash->dwDataLen); if (NULL == pCurrentHash->pHashData) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; } memset(pCurrentHash->pHashData, 0, pCurrentHash->dwDataLen); pSChHash = (PSCH_HASH)pCurrentHash->pHashData; pSChHash->ProtocolAlgid = pTmpKey->Algid;
dwSts = SChGenMasterKey(pTmpKey, pSChHash); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break; }
case CALG_TLS1PRF: { PRF_HASH *pPRFHash; PSCH_KEY pSChKey;
if (0 == hKey) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
dwSts = NTLValidate(hKey, hUID, KEY_HANDLE, &pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_KEY : dwSts; goto ErrorExit; }
if (CALG_TLS1_MASTER != pTmpKey->Algid) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
// check if the master key is finished
pSChKey = (PSCH_KEY)pTmpKey->pData; if ((!pSChKey->fFinished) || (TLS_MASTER_LEN != pTmpKey->cbKeyLen)) { dwReturn = (DWORD)NTE_BAD_KEY_STATE; goto ErrorExit; }
pCurrentHash->dwDataLen = sizeof(PRF_HASH); pCurrentHash->pHashData = (BYTE *)_nt_malloc(pCurrentHash->dwDataLen); if (NULL == pCurrentHash->pHashData) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; } memset(pCurrentHash->pHashData, 0, pCurrentHash->dwDataLen); pPRFHash = (PRF_HASH*)pCurrentHash->pHashData; memcpy(pPRFHash->rgbMasterKey, pTmpKey->pKeyValue, TLS_MASTER_LEN); break; }#endif // CSP_USE_SSL3
default: if (hKey != 0) { dwReturn = NTE_BAD_KEY; goto ErrorExit; }
dwSts = LocalCreateHash(Algid, (BYTE**)&pCurrentHash->pHashData, &pCurrentHash->dwDataLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } }
dwSts = NTLMakeItem(phHash, HASH_HANDLE, pCurrentHash); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
dwReturn = ERROR_SUCCESS;
ErrorExit: fRet = (ERROR_SUCCESS == dwReturn); if (!fRet) { if (NULL != pCurrentHash) { if (pCurrentHash->pHashData) _nt_free(pCurrentHash->pHashData, pCurrentHash->dwDataLen); _nt_free(pCurrentHash, sizeof(NTAGHashList)); } SetLastError(dwReturn); } return fRet;}
DWORDLocalHashData( IN ALG_ID Algid, IN OUT BYTE *pbHashData, IN BYTE *pbData, IN DWORD cbData){ DWORD dwReturn = ERROR_INTERNAL_ERROR; BYTE *ptmp; DWORD BytePos;
switch (Algid) {#ifdef CSP_USE_MD2
case CALG_MD2: { MD2_object *pMD2Hash;
// make sure the hash is updatable
pMD2Hash = (MD2_object *)pbHashData; if (pMD2Hash->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
if (0 != MD2Update(&pMD2Hash->MD, pbData, cbData)) { // This is a reasonable return code, since currently
// the only value MD2Update returns is zero.
dwReturn = (DWORD)NTE_FAIL; goto ErrorExit; }
break; }#endif
#ifdef CSP_USE_MD4
case CALG_MD4: { MD4_object *pMD4Hash; int nSts;
pMD4Hash = (MD4_object *)pbHashData;
// make sure the hash is updatable
if (pMD4Hash->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
// MD4 hashes when the size == MD4BLOCKSIZE and finishes the
// hash when the given size is < MD4BLOCKSIZE.
// So, ensure that the user always gives a full block here --
// when NTagFinishHash is called, we'll send the last bit and
// that'll finish off the hash.
ptmp = (BYTE *)pbData; for (;;) { // check if there's plenty of room in the buffer
if (cbData < (MD4BLOCKSIZE - pMD4Hash->BufLen)) { // just append to whatever's already
memcpy(pMD4Hash->Buf + pMD4Hash->BufLen, ptmp, cbData);
// set of the trailing buffer length field
pMD4Hash->BufLen += (BYTE)cbData; break; }
// determine what we need to fill the buffer, then do it.
BytePos = MD4BLOCKSIZE - pMD4Hash->BufLen; ASSERT(BytePos <= dwTmpLen); memcpy(pMD4Hash->Buf + pMD4Hash->BufLen, ptmp, BytePos);
// The buffer is now full, process it.
nSts = MDupdate(&pMD4Hash->MD, pMD4Hash->Buf, MD4BYTESTOBITS(MD4BLOCKSIZE)); if (MD4_SUCCESS != nSts) { dwReturn = (DWORD)NTE_FAIL; goto ErrorExit; }
// now it's empty.
pMD4Hash->BufLen = 0;
// we processed some bytes, so reflect that and try again
cbData -= BytePos; ptmp += BytePos;
if (cbData == 0) break; } break; }#endif
#ifdef CSP_USE_MD5
case CALG_MD5: { MD5_object *pMD5Hash;
// make sure the hash is updatable
pMD5Hash = (MD5_object *)pbHashData; if (pMD5Hash->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
MD5Update(pMD5Hash, pbData, cbData); break; }#endif
#ifdef CSP_USE_SHA
case CALG_SHA: { A_SHA_CTX *pSHAHash;
// make sure the hash is updatable
pSHAHash = (A_SHA_CTX *)pbHashData; if (pSHAHash->FinishFlag) { dwReturn = (DWORD) NTE_BAD_HASH_STATE; goto ErrorExit; }
A_SHAUpdate(pSHAHash, pbData, cbData); break; }#endif
default: dwReturn = (DWORD)NTE_BAD_ALGID; goto ErrorExit; }
dwReturn = ERROR_SUCCESS;
ErrorExit: return dwReturn;}
/*static*/ DWORDLocalMACData( IN HCRYPTPROV hUID, IN PNTAGHashList pTmpHash, IN CONST BYTE *pbData, IN DWORD cbData){ DWORD dwReturn = ERROR_INTERNAL_ERROR; MACstate *pMAC; PNTAGKeyList pTmpKey; BYTE *pbTmp; DWORD dwTmpLen; BYTE *pb = NULL; DWORD cb; DWORD i; BYTE *pbJunk = NULL; DWORD dwBufSlop; DWORD dwEncLen; DWORD dwSts; PBYTE pbKeyHash = NULL; DWORD cbKeyHash = 0; dwTmpLen = cbData; pbTmp = (BYTE *) pbData;
switch (pTmpHash->Algid) {#ifdef CSP_USE_MAC
case CALG_MAC: { pMAC = (MACstate *)pTmpHash->pHashData;
// make sure the hash is updatable
if (pMAC->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
dwSts = NTLValidate(pTmpHash->hKey, hUID, KEY_HANDLE, &pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_KEY : dwSts; goto ErrorExit; }
if (pMAC->dwBufLen + dwTmpLen <= pTmpKey->dwBlockLen) { memcpy(pMAC->Buffer + pMAC->dwBufLen, pbTmp, dwTmpLen); pMAC->dwBufLen += dwTmpLen; dwReturn = ERROR_SUCCESS; goto ErrorExit; }
memcpy(pMAC->Buffer+pMAC->dwBufLen, pbTmp, (pTmpKey->dwBlockLen - pMAC->dwBufLen));
dwTmpLen -= (pTmpKey->dwBlockLen - pMAC->dwBufLen); pbTmp += (pTmpKey->dwBlockLen - pMAC->dwBufLen);
pMAC->dwBufLen = pTmpKey->dwBlockLen;
switch (pTmpKey->Algid) { case CALG_RC2: dwSts = BlockEncrypt(RC2, pTmpKey, RC2_BLOCKLEN, FALSE, pMAC->Buffer, &pMAC->dwBufLen, MAX_BLOCKLEN); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;
case CALG_DES: dwSts = BlockEncrypt(des, pTmpKey, DES_BLOCKLEN, FALSE, pMAC->Buffer, &pMAC->dwBufLen, MAX_BLOCKLEN); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;
#ifdef CSP_USE_3DES
case CALG_3DES_112: case CALG_3DES: dwSts = BlockEncrypt(tripledes, pTmpKey, DES_BLOCKLEN, FALSE, pMAC->Buffer, &pMAC->dwBufLen, MAX_BLOCKLEN); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;#endif
#ifdef CSP_USE_AES
case CALG_AES_128: case CALG_AES_192: case CALG_AES_256: dwSts = BlockEncrypt(aes, pTmpKey, pTmpKey->dwBlockLen, FALSE, pMAC->Buffer, &pMAC->dwBufLen, MAX_BLOCKLEN); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;#endif
}
pMAC->dwBufLen = 0;
dwBufSlop = dwTmpLen % pTmpKey->dwBlockLen; if (dwBufSlop == 0) { dwBufSlop = pTmpKey->dwBlockLen; }
pbJunk = _nt_malloc(dwTmpLen); if (NULL == pbJunk) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
memcpy(pbJunk, pbTmp, dwTmpLen - dwBufSlop); dwEncLen = dwTmpLen - dwBufSlop;
switch (pTmpKey->Algid) { case CALG_RC2: dwSts = BlockEncrypt(RC2, pTmpKey, RC2_BLOCKLEN, FALSE, pbJunk, &dwEncLen, dwTmpLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;
case CALG_DES: dwSts = BlockEncrypt(des, pTmpKey, DES_BLOCKLEN, FALSE, pbJunk, &dwEncLen, dwTmpLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;
#ifdef CSP_USE_3DES
case CALG_3DES_112: case CALG_3DES: dwSts = BlockEncrypt(tripledes, pTmpKey, DES_BLOCKLEN, FALSE, pbJunk, &dwEncLen, dwTmpLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;#endif
#ifdef CSP_USE_AES
case CALG_AES_128: case CALG_AES_192: case CALG_AES_256: dwSts = BlockEncrypt(aes, pTmpKey, pTmpKey->dwBlockLen, FALSE, pbJunk, &dwEncLen, dwTmpLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;#endif
}
memcpy(pMAC->Buffer, pbTmp + dwEncLen, dwBufSlop); pMAC->dwBufLen = dwBufSlop; break; }#endif
case CALG_HMAC: { if (!(pTmpHash->HMACState & HMAC_STARTED)) { dwSts = NTLValidate(pTmpHash->hKey, hUID, KEY_HANDLE, &pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_KEY : dwSts; goto ErrorExit; }
// If key is longer than block length, hash the key
// data first
if (pTmpKey->cbKeyLen > HMAC_DEFAULT_STRING_LEN) { dwSts = LocalCreateHash(pTmpHash->HMACAlgid, &pbKeyHash, &cbKeyHash); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
dwSts = LocalHashData(pTmpHash->HMACAlgid, pbKeyHash, pTmpKey->pKeyValue, pTmpKey->cbKeyLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } pb = (BYTE *)_nt_malloc(HMAC_DEFAULT_STRING_LEN); if (NULL == pb) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
cb = HMAC_DEFAULT_STRING_LEN; dwSts = LocalGetHashVal(pTmpHash->HMACAlgid, 0, pbKeyHash, pb, &cb); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
for (i = 0; i < HMAC_DEFAULT_STRING_LEN; i++) pb[i] ^= (pTmpHash->pbHMACInner)[i];
cb = HMAC_DEFAULT_STRING_LEN; } else { if (pTmpKey->cbKeyLen < pTmpHash->cbHMACInner) cb = pTmpHash->cbHMACInner; else cb = pTmpKey->cbKeyLen; pb = (BYTE *)_nt_malloc(cb); if (NULL == pb) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; } memcpy(pb, pTmpHash->pbHMACInner, pTmpHash->cbHMACInner); // currently no support for byte reversed keys with HMAC
for (i=0;i<pTmpKey->cbKeyLen;i++) pb[i] ^= (pTmpKey->pKeyValue)[i]; }
dwSts = LocalHashData(pTmpHash->HMACAlgid, pTmpHash->pHashData, pb, cb); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
pTmpHash->HMACState |= HMAC_STARTED; memnuke(pb, cb); memnuke(pbKeyHash, cbKeyHash); }
dwSts = LocalHashData(pTmpHash->HMACAlgid, pTmpHash->pHashData, (BYTE*)pbData, cbData); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
break; }
default: dwReturn = (DWORD)NTE_BAD_ALGID; goto ErrorExit; }
dwReturn = ERROR_SUCCESS;
ErrorExit: if (pbJunk) _nt_free(pbJunk, dwTmpLen); if (pb) _nt_free(pb, cb); if (pbKeyHash) _nt_free(pbKeyHash, cbKeyHash); return dwReturn;}
/*
- CPHashData - * Purpose: * Compute the cryptograghic hash on a stream of data * * * Parameters: * IN hUID - Handle to the user identifcation * IN hHash - Handle to hash object * IN pbData - Pointer to data to be hashed * IN dwDataLen - Length of the data to be hashed * IN dwFlags - Flags values * * Returns: */
BOOL WINAPICPHashData( IN HCRYPTPROV hUID, IN HCRYPTHASH hHash, IN CONST BYTE *pbData, IN DWORD dwDataLen, IN DWORD dwFlags){ DWORD dwReturn = ERROR_INTERNAL_ERROR; PNTAGHashList pTmpHash; PNTAGUserList pUser; BOOL fRet; DWORD dwSts;
EntryPoint if (0 != (dwFlags & ~(CRYPT_USERDATA))) { dwReturn = (DWORD)NTE_BAD_FLAGS; goto ErrorExit; }
pUser = (PNTAGUserList)NTLCheckList(hUID, USER_HANDLE); if (NULL == pUser) { dwReturn = (DWORD)NTE_BAD_UID; goto ErrorExit; }
if (0 == dwDataLen) { dwReturn = ERROR_SUCCESS; goto ErrorExit; }
if (NULL == pbData) { dwReturn = (DWORD)NTE_BAD_DATA; goto ErrorExit; }
dwSts = NTLValidate(hHash, hUID, HASH_HANDLE, &pTmpHash); if (ERROR_SUCCESS != dwSts) { // NTLValidate doesn't know what error to set
// so it set NTE_FAIL -- fix it up.
dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_HASH : dwSts; goto ErrorExit; }
if (pTmpHash->HashFlags & HF_VALUE_SET) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
switch (pTmpHash->Algid) {#ifdef CSP_USE_MAC
case CALG_MAC:#endif // CSP_USE_MAC
case CALG_HMAC: dwSts = LocalMACData(hUID, pTmpHash, pbData, dwDataLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;
default: dwSts = LocalHashData(pTmpHash->Algid, pTmpHash->pHashData, (BYTE*)pbData, dwDataLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } }
pTmpHash->dwHashState |= DATA_IN_HASH;
dwReturn = ERROR_SUCCESS;
ErrorExit: fRet = (ERROR_SUCCESS == dwReturn); if (!fRet) SetLastError(dwReturn); return fRet;}
/*static*/ DWORDSetupKeyToBeHashed( PNTAGKeyList pKey, BYTE **ppbData, DWORD *pcbData, DWORD dwFlags){ DWORD dwReturn = ERROR_INTERNAL_ERROR; DWORD cb; DWORD i;
*ppbData = NULL; cb = pKey->cbKeyLen;
*ppbData = (BYTE *)_nt_malloc(cb); if (NULL == *ppbData) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
if (CRYPT_LITTLE_ENDIAN & dwFlags) { memcpy(*ppbData, pKey->pKeyValue, cb); } else { // Reverse the session key bytes
for (i = 0; i < cb; i++) (*ppbData)[i] = (pKey->pKeyValue)[cb - i - 1]; }
*pcbData = cb; dwReturn = ERROR_SUCCESS;
ErrorExit: return dwReturn;}
/*
- CPHashSessionKey - * Purpose: * Compute the cryptograghic hash on a key object. * * * Parameters: * IN hUID - Handle to the user identifcation * IN hHash - Handle to hash object * IN hKey - Handle to a key object * IN dwFlags - Flags values * * Returns: * CRYPT_FAILED * CRYPT_SUCCEED */
BOOL WINAPICPHashSessionKey( IN HCRYPTPROV hUID, IN HCRYPTHASH hHash, IN HCRYPTKEY hKey, IN DWORD dwFlags){ DWORD dwReturn = ERROR_INTERNAL_ERROR; PNTAGHashList pTmpHash; PNTAGKeyList pTmpKey; PNTAGUserList pTmpUser; DWORD dwDataLen; BYTE *pbData = NULL; DWORD BytePos;#ifdef CSP_USE_SSL3
PSCH_KEY pSChKey;#endif // CSP_USE_SSL3
BOOL fRet; DWORD dwSts;
EntryPoint if (dwFlags & ~(CRYPT_LITTLE_ENDIAN)) { dwReturn = (DWORD)NTE_BAD_FLAGS; goto ErrorExit; }
// check the user identification
pTmpUser = (PNTAGUserList)NTLCheckList(hUID, USER_HANDLE); if (NULL == pTmpUser) { dwReturn = (DWORD)NTE_BAD_UID; goto ErrorExit; }
dwSts = NTLValidate(hHash, hUID, HASH_HANDLE, &pTmpHash); if (ERROR_SUCCESS != dwSts) { dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_HASH : dwSts; goto ErrorExit; }
if (pTmpHash->HashFlags & HF_VALUE_SET) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
dwSts = NTLValidate((HNTAG)hKey, hUID, KEY_HANDLE, &pTmpKey); if (ERROR_SUCCESS != dwSts) { dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_KEY : dwSts; goto ErrorExit; }
if (!FIsLegalKey(pTmpUser, pTmpKey, FALSE)) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; }
#ifdef CSP_USE_SSL3
if ((CALG_SSL3_MASTER == pTmpKey->Algid) || (CALG_TLS1_MASTER == pTmpKey->Algid) || (CALG_PCT1_MASTER == pTmpKey->Algid)) { if (NULL == pTmpKey->pData) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; } pSChKey = (PSCH_KEY)pTmpKey->pData; if (!pSChKey->fFinished) { dwReturn = (DWORD)NTE_BAD_KEY; goto ErrorExit; } }#endif // CSP_USE_SSL3
#if 0
// Check if we should do an auto-inflate
if (pTmpKey->pData == NULL) { if (NTAG_FAILED(CPInflateKey(pTmpKey))) { dwReturn = GetLastError(); goto ErrorExit; } }#endif
if ((CALG_DES == pTmpKey->Algid) || (CALG_3DES == pTmpKey->Algid) || (CALG_3DES_112 == pTmpKey->Algid)) { if (PROV_RSA_SCHANNEL != pTmpUser->dwProvType) { if ((POLICY_MS_STRONG == pTmpUser->dwCspTypeId) || (!(pTmpUser->Rights & CRYPT_DES_HASHKEY_BACKWARDS))) { desparityonkey(pTmpKey->pKeyValue, pTmpKey->cbKeyLen); } } }
dwSts = SetupKeyToBeHashed(pTmpKey, &pbData, &dwDataLen, dwFlags); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
switch (pTmpHash->Algid) {#ifdef CSP_USE_MD2
case CALG_MD2: { MD2_object *pMD2Hash;
pMD2Hash = (MD2_object *)pTmpHash->pHashData;
// make sure the hash is updatable
if (pMD2Hash->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
if (0 != MD2Update(&pMD2Hash->MD, pbData, dwDataLen)) { // This is reasonable, since MD2Update only returns zero.
dwReturn = (DWORD)NTE_FAIL; goto ErrorExit; } break; }#endif
#ifdef CSP_USE_MD4
case CALG_MD4: { MD4_object *pMD4Hash; int nSts;
pMD4Hash = (MD4_object *)pTmpHash->pHashData;
// make sure the hash is updatable
if (pMD4Hash->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
for (;;) { // check if there's plenty of room in the buffer
if ((pMD4Hash->BufLen + dwDataLen) < MD4BLOCKSIZE) { // just append to whatever's already
memcpy(pMD4Hash->Buf + pMD4Hash->BufLen, pbData, dwDataLen);
// set of the trailing buffer length field
pMD4Hash->BufLen += (BYTE)dwDataLen; break; }
// determine what we need to fill the buffer, then do it.
BytePos = MD4BLOCKSIZE - pMD4Hash->BufLen; memcpy(pMD4Hash->Buf + pMD4Hash->BufLen, pbData, BytePos);
// The buffer is now full, process it.
nSts = MDupdate(&pMD4Hash->MD, pMD4Hash->Buf, MD4BYTESTOBITS(MD4BLOCKSIZE)); if (MD4_SUCCESS != nSts) { dwReturn = (DWORD)NTE_FAIL; goto ErrorExit; }
// now it's empty.
pMD4Hash->BufLen = 0;
// we processed some bytes, so reflect that and try again
dwDataLen -= BytePos; if (dwDataLen == 0) break; } break; }#endif
#ifdef CSP_USE_MD5
case CALG_MD5: { MD5_object *pMD5Hash;
pMD5Hash = (MD5_object *)pTmpHash->pHashData;
// make sure the hash is updatable
if (pMD5Hash->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
MD5Update(pMD5Hash, pbData, dwDataLen); break; }#endif
#ifdef CSP_USE_SHA
case CALG_SHA: { A_SHA_CTX *pSHAHash;
pSHAHash = (A_SHA_CTX *)pTmpHash->pHashData;
// make sure the hash is updatable
if (pSHAHash->FinishFlag) { dwReturn = (DWORD)NTE_BAD_HASH_STATE; goto ErrorExit; }
A_SHAUpdate(pSHAHash, (BYTE *)pbData, dwDataLen); break; }#endif
#ifdef CSP_USE_MAC
case CALG_MAC:#endif // CSP_USE_MAC
case CALG_HMAC: dwSts = LocalMACData(hUID, pTmpHash, pbData, dwDataLen); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; } break;
default: dwReturn = (DWORD)NTE_BAD_ALGID; goto ErrorExit; }
pTmpHash->dwHashState |= DATA_IN_HASH;
dwReturn = ERROR_SUCCESS;
ErrorExit: fRet = (ERROR_SUCCESS == dwReturn); if (pbData) _nt_free(pbData, dwDataLen); if (!fRet) SetLastError(dwReturn); return fRet;}
/*static*/ voidFreeHash( IN PNTAGHashList pHash){ if (pHash) { if (pHash->pHashData) _nt_free(pHash->pHashData, pHash->dwDataLen); if (pHash->pbHMACInner) _nt_free(pHash->pbHMACInner, pHash->cbHMACInner); if (pHash->pbHMACOuter) _nt_free(pHash->pbHMACOuter, pHash->cbHMACOuter); if (pHash->fTempKey) CPDestroyKey(pHash->hUID, pHash->hKey); _nt_free(pHash, sizeof(NTAGHashList)); }}
/*
- CPDestroyHash-* Purpose:* Destory the hash object*** Parameters:* IN hUID - Handle to the user identifcation* IN hHash - Handle to hash object** Returns:*/
BOOL WINAPICPDestroyHash( IN HCRYPTPROV hUID, IN HCRYPTHASH hHash){ DWORD dwReturn = ERROR_INTERNAL_ERROR; PNTAGHashList pTmpHash; BOOL fRet; DWORD dwSts;
EntryPoint // check the user identification
if (NULL == NTLCheckList(hUID, USER_HANDLE)) { dwReturn = (DWORD)NTE_BAD_UID; goto ErrorExit; }
dwSts = NTLValidate(hHash, hUID, HASH_HANDLE, &pTmpHash); if (ERROR_SUCCESS != dwSts) { // NTLValidate doesn't know what error to set
// so it set NTE_FAIL -- fix it up.
dwReturn = (dwSts == NTE_FAIL) ? (DWORD)NTE_BAD_HASH : dwSts; goto ErrorExit; }
switch (pTmpHash->Algid) {#ifdef CSP_USE_MD2
case CALG_MD2:#endif
#ifdef CSP_USE_MD4
case CALG_MD4:#endif
#ifdef CSP_USE_MD5
case CALG_MD5:#endif
#ifdef CSP_USE_SHA
case CALG_SHA:#endif
#ifdef CSP_USE_SSL3SHAMD5
case CALG_SSL3_SHAMD5:#endif
#ifdef CSP_USE_MAC
case CALG_MAC: case CALG_HMAC:#endif
#ifdef CSP_USE_SSL3
case CALG_SCHANNEL_MASTER_HASH: case CALG_TLS1PRF:#endif
if (CALG_SCHANNEL_MASTER_HASH == pTmpHash->Algid) { FreeSChHash((PSCH_HASH)pTmpHash->pHashData); } memnuke(pTmpHash->pHashData, pTmpHash->dwDataLen); break;
default: dwReturn = (DWORD)NTE_BAD_ALGID; goto ErrorExit; }
// Remove from internal list first so others can't get to it, then free.
NTLDelete(hHash); FreeHash(pTmpHash);
dwReturn = ERROR_SUCCESS;
ErrorExit: fRet = (ERROR_SUCCESS == dwReturn); if (!fRet) SetLastError(dwReturn); return fRet;}
/*static*/ DWORDCopyHash( IN PNTAGHashList pOldHash, OUT PNTAGHashList *ppNewHash){ DWORD dwReturn = ERROR_INTERNAL_ERROR; PNTAGHashList pNewHash; BOOL fSts;
pNewHash = (PNTAGHashList)_nt_malloc(sizeof(NTAGHashList)); if (NULL == pNewHash) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
memcpy(pNewHash, pOldHash, sizeof(NTAGHashList)); pNewHash->fTempKey = FALSE; pNewHash->hKey = 0; pNewHash->dwDataLen = 0; pNewHash->pHashData = NULL; pNewHash->cbHMACInner = 0; pNewHash->pbHMACInner = NULL; pNewHash->cbHMACOuter = 0; pNewHash->pbHMACOuter = NULL;
//
// Duplicate the associated key.
//
if (0 != pOldHash->hKey) { fSts = CPDuplicateKey(pNewHash->hUID, pOldHash->hKey, NULL, 0, &pNewHash->hKey); if (!fSts) { dwReturn = GetLastError(); goto ErrorExit; }
pNewHash->fTempKey = TRUE; }
//
// Duplicate the hash data.
//
if (0 < pOldHash->dwDataLen) { pNewHash->pHashData = (BYTE*)_nt_malloc(pOldHash->dwDataLen); if (NULL == pNewHash->pHashData) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
pNewHash->dwDataLen = pOldHash->dwDataLen; memcpy(pNewHash->pHashData, pOldHash->pHashData, pOldHash->dwDataLen); }
//
// Duplicate HMAC Inner.
//
if (0 < pOldHash->cbHMACInner) { pNewHash->pbHMACInner = (LPBYTE)_nt_malloc(pOldHash->cbHMACInner); if (NULL == pNewHash->pbHMACInner) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
pNewHash->cbHMACInner = pOldHash->cbHMACInner; memcpy(pNewHash->pbHMACInner, pOldHash->pbHMACInner, pOldHash->cbHMACInner); }
//
// Duplicate HMAC Outer.
//
if (0 < pOldHash->cbHMACOuter) { pNewHash->pbHMACOuter = (LPBYTE)_nt_malloc(pOldHash->cbHMACOuter); if (NULL == pNewHash->pbHMACOuter) { dwReturn = ERROR_NOT_ENOUGH_MEMORY; goto ErrorExit; }
pNewHash->cbHMACOuter = pOldHash->cbHMACOuter; memcpy(pNewHash->pbHMACOuter, pOldHash->pbHMACOuter, pOldHash->cbHMACOuter); }
//
// Return to the caller.
//
*ppNewHash = pNewHash; return ERROR_SUCCESS;
ErrorExit: FreeHash(pNewHash); return dwReturn;}
/*
- CPDuplicateHash - * Purpose: * Duplicates the state of a hash and returns a handle to it * * Parameters: * IN hUID - Handle to a CSP * IN hHash - Handle to a hash * IN pdwReserved - Reserved * IN dwFlags - Flags * IN phHash - Handle to the new hash * * Returns: */
BOOL WINAPICPDuplicateHash( IN HCRYPTPROV hUID, IN HCRYPTHASH hHash, IN DWORD *pdwReserved, IN DWORD dwFlags, IN HCRYPTHASH *phHash){ DWORD dwReturn = ERROR_INTERNAL_ERROR; PNTAGHashList pTmpHash; PNTAGHashList pNewHash = NULL; BOOL fRet; DWORD dwSts;
EntryPoint if (NULL != pdwReserved) { dwReturn = ERROR_INVALID_PARAMETER; goto ErrorExit; }
if (0 != dwFlags) { dwReturn = (DWORD)NTE_BAD_FLAGS; goto ErrorExit; }
dwSts = NTLValidate((HNTAG)hHash, hUID, HASH_HANDLE, &pTmpHash); if (ERROR_SUCCESS != dwSts) { dwReturn = (NTE_FAIL == dwSts) ? (DWORD)NTE_BAD_HASH : dwSts; goto ErrorExit; }
dwSts = CopyHash(pTmpHash, &pNewHash); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
dwSts = NTLMakeItem(phHash, HASH_HANDLE, (void *)pNewHash); if (ERROR_SUCCESS != dwSts) { dwReturn = dwSts; goto ErrorExit; }
dwReturn = ERROR_SUCCESS;
ErrorExit: fRet = (ERROR_SUCCESS == dwReturn); if (!fRet) { FreeHash(pNewHash); SetLastError(dwReturn); } return fRet;}
|
