archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/cryptoapi/pkitrust/initpki/tcrack.cpp

380 lines
9.9 KiB
Raw Normal View History

Add source files
4 years ago
  1. //-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (C) Microsoft Corporation, 1995 - 1999
  6. //
  7. // File: tcrack.cpp
  8. //
  9. // Contents: API testing of CryptEncodeObject/CryptDecodeObject.
  10. //
  11. // History: 29-January-97 xiaohs created
  12. //
  13. //--------------------------------------------------------------------------
  14. #include "global.hxx"
  16. //--------------------------------------------------------------------------
  17. // See if the sequence "81 7f" is in the BLOB. If it is, we need to fix it
  18. //--------------------------------------------------------------------------
  19. BOOL BadCert(DWORD cbEncoded, BYTE *pbEncoded)
  20. {
  21. DWORD iIndex=0;
  22. DWORD iLimit=cbEncoded-2;
  23. BYTE rgByte[2];
  26. assert(pbEncoded);
  29. memset(rgByte, 0, 2);
  31. //set the rgByte to be the patter of 0x81 0x7F, which is 10000001 and 01111111,
  32. //whic his 129 and 127 in decimal
  33. rgByte[0]=rgByte[0]|129;
  34. rgByte[1]=rgByte[1]|127;
  37. for(iIndex=0;iIndex<=iLimit;iIndex++)
  38. {
  39. if(memcmp(rgByte,&(pbEncoded[iIndex]),2)==0)
  40. return TRUE;
  41. }
  43. return FALSE;
  45. }
  47. //--------------------------------------------------------------------------
  48. // Copy the BLOBs
  49. //--------------------------------------------------------------------------
  50. void SetData(DWORD cbNewData, BYTE *pbNewData,
  51. DWORD *pcbOldData, BYTE **ppbOldData)
  52. {
  53. assert(pcbOldData);
  54. assert(ppbOldData);
  56. *pcbOldData=cbNewData;
  57. *ppbOldData=pbNewData;
  58. }
  61. ///////////////////////////////////////////////////////////////////////////
  62. //Certificate Manipulation Functions
  63. //--------------------------------------------------------------------------
  64. // This is the functions
  65. //--------------------------------------------------------------------------
  66. BOOL Fix7FCert(DWORD cbEncoded, BYTE *pbEncoded, DWORD *pcbEncoded,
  67. BYTE **ppbEncoded)
  68. {
  70. //init
  71. *pcbEncoded=0;
  72. *ppbEncoded=NULL;
  76. if(!BadCert(cbEncoded, pbEncoded))
  77. return TRUE;
  80. if(DecodeX509_CERT(cbEncoded, pbEncoded,pcbEncoded,
  81. ppbEncoded))
  82. return TRUE;
  83. else
  84. {
  85. //release the memory
  86. SAFE_FREE(*ppbEncoded)
  87. *ppbEncoded=NULL;
  88. *pcbEncoded=0;
  89. return FALSE;
  90. }
  93. }
  95. //--------------------------------------------------------------------------
  96. // A general routine to encode a struct based on lpszStructType
  97. //--------------------------------------------------------------------------
  98. BOOL EncodeStruct(LPCSTR lpszStructType, void *pStructInfo,DWORD *pcbEncoded,
  99. BYTE **ppbEncoded)
  100. {
  101. BOOL fSucceeded=FALSE;
  102. DWORD cbEncoded=NULL;
  104. //init
  105. *pcbEncoded=0;
  106. *ppbEncoded=NULL;
  108. assert(lpszStructType);
  109. assert(pStructInfo);
  112. //length only calculation
  113. TESTC(CryptEncodeObject(CRYPT_ENCODE_TYPE,lpszStructType, pStructInfo,NULL,
  114. &cbEncoded),TRUE)
  116. //the struct has to be more than 0 byte
  117. assert(cbEncoded);
  119. //allocate the correct amount of memory
  120. *ppbEncoded=(BYTE *)SAFE_ALLOC(cbEncoded);
  121. CHECK_POINTER(*ppbEncoded);
  123. //Encode the strcut with *pcbEncoded == the correct length
  124. *pcbEncoded=cbEncoded;
  126. //Encode the struct
  127. TESTC(CryptEncodeObject(CRYPT_ENCODE_TYPE,lpszStructType,pStructInfo,*ppbEncoded,
  128. pcbEncoded),TRUE)
  130. fSucceeded=TRUE;
  132. TCLEANUP:
  134. return fSucceeded;
  136. }
  138. //--------------------------------------------------------------------------
  139. // A general routine to decode a BLOB based on lpszStructType
  140. //
  141. //--------------------------------------------------------------------------
  142. BOOL DecodeBLOB(LPCSTR lpszStructType,DWORD cbEncoded, BYTE *pbEncoded,
  143. DWORD *pcbStructInfo, void **ppvStructInfo)
  144. {
  145. BOOL fSucceeded=FALSE;
  146. DWORD cbStructInfo=0;
  148. //init
  149. *pcbStructInfo=0;
  150. *ppvStructInfo=NULL;
  152. assert(lpszStructType);
  153. assert(pbEncoded);
  154. assert(cbEncoded);
  156. //Decode. Length Only Calculation
  157. TESTC(CryptDecodeObject(CRYPT_ENCODE_TYPE,lpszStructType,pbEncoded,cbEncoded,
  158. CRYPT_DECODE_FLAG,NULL,&cbStructInfo),TRUE)
  160. //the struct has to be more than 0 byte
  161. assert(cbStructInfo);
  163. *ppvStructInfo=(BYTE *)SAFE_ALLOC(cbStructInfo);
  164. CHECK_POINTER(*ppvStructInfo);
  166. //Decode the BLOB with *pcbStructInfo==correct length
  167. *pcbStructInfo=cbStructInfo;
  169. TESTC(CryptDecodeObject(CRYPT_ENCODE_TYPE,lpszStructType,pbEncoded,cbEncoded,
  170. CRYPT_DECODE_FLAG,*ppvStructInfo,pcbStructInfo),TRUE)
  173. fSucceeded=TRUE;
  175. TCLEANUP:
  177. return fSucceeded;
  179. }
  181. //--------------------------------------------------------------------------
  182. // Decode X509_CERT BLOBs
  183. //
  184. //--------------------------------------------------------------------------
  185. BOOL DecodeX509_CERT(DWORD cbEncoded, BYTE *pbEncoded,DWORD *pcbEncoded,
  186. BYTE **ppbEncoded)
  187. {
  188. BOOL fSucceeded=FALSE;
  189. DWORD cbStructInfo=0;
  190. void *pStructInfo=NULL;
  191. LPCSTR lpszStructType=NULL;
  192. DWORD cbToBeSigned=0;
  193. BYTE *pbToBeSigned=NULL;
  194. DWORD cbOldSigned=0;
  195. BYTE *pbOldSigned=NULL;
  197. //init
  198. lpszStructType=X509_CERT;
  201. //Decode the encoded BLOB
  202. TESTC(DecodeBLOB(lpszStructType,cbEncoded, pbEncoded,&cbStructInfo,
  203. &pStructInfo),TRUE)
  205. //Further Decode the X509_CERT_TO_BE_SIGNED
  206. //Notice we should use the original cbData and pbData passed in for Decode
  207. //but use ToBeSigned in CERT_SIGNED_CONTENT_INFO for encode purpose
  209. TESTC(DecodeX509_CERT_TO_BE_SIGNED(cbEncoded,
  210. pbEncoded,&cbToBeSigned,&pbToBeSigned),TRUE);
  212. //copy the new encoded BLOB
  213. SetData((((PCERT_SIGNED_CONTENT_INFO)pStructInfo)->ToBeSigned).cbData,
  214. (((PCERT_SIGNED_CONTENT_INFO)pStructInfo)->ToBeSigned).pbData,
  215. &cbOldSigned, &pbOldSigned);
  217. SetData(cbToBeSigned, pbToBeSigned,
  218. &((((PCERT_SIGNED_CONTENT_INFO)pStructInfo)->ToBeSigned).cbData),
  219. &((((PCERT_SIGNED_CONTENT_INFO)pStructInfo)->ToBeSigned).pbData));
  222. //if requested, encode the BLOB back to what it was. Make sure no data is lost
  223. //by checking the size of the encoded blob and do a memcmp.
  224. TESTC(EncodeStruct(lpszStructType, pStructInfo,pcbEncoded, ppbEncoded),TRUE);
  226. fSucceeded=TRUE;
  228. TCLEANUP:
  230. SetData(cbOldSigned, pbOldSigned,
  231. &((((PCERT_SIGNED_CONTENT_INFO)pStructInfo)->ToBeSigned).cbData),
  232. &((((PCERT_SIGNED_CONTENT_INFO)pStructInfo)->ToBeSigned).pbData));
  235. SAFE_FREE(pStructInfo)
  237. SAFE_FREE(pbToBeSigned)
  239. return fSucceeded;
  241. }
  245. //--------------------------------------------------------------------------
  246. // Decode X509_CERT_TO_BE_SIGNED BLOBs
  247. //
  248. //--------------------------------------------------------------------------
  249. BOOL DecodeX509_CERT_TO_BE_SIGNED(DWORD cbEncoded, BYTE *pbEncoded, DWORD *pcbEncoded,
  250. BYTE **ppbEncoded)
  251. {
  253. BOOL fSucceeded=FALSE;
  254. DWORD cbStructInfo=0;
  255. void *pStructInfo=NULL;
  256. LPCSTR lpszStructType=NULL;
  259. DWORD cbOldIssuer=0;
  260. BYTE *pbOldIssuer=NULL;
  261. DWORD cbIssuer=0;
  262. BYTE *pbIssuer=NULL;
  265. DWORD cbOldSubject=0;
  266. BYTE *pbOldSubject=NULL;
  267. DWORD cbSubject=0;
  268. BYTE *pbSubject=NULL;
  271. //init
  272. lpszStructType=X509_CERT_TO_BE_SIGNED;
  275. //Decode the encoded BLOB
  276. TESTC(DecodeBLOB(lpszStructType,cbEncoded, pbEncoded,&cbStructInfo,
  277. &pStructInfo),TRUE)
  280. //Decode Issuer in CERT_INFO struct
  281. TESTC(DecodeX509_NAME((((PCERT_INFO)pStructInfo)->Issuer).cbData,
  282. (((PCERT_INFO)pStructInfo)->Issuer).pbData,&cbIssuer,&pbIssuer),TRUE)
  284. SetData((((PCERT_INFO)pStructInfo)->Issuer).cbData,
  285. (((PCERT_INFO)pStructInfo)->Issuer).pbData,&cbOldIssuer,&pbOldIssuer);
  287. SetData(cbIssuer, pbIssuer,
  288. &((((PCERT_INFO)pStructInfo)->Issuer).cbData),
  289. &((((PCERT_INFO)pStructInfo)->Issuer).pbData));
  293. //Decode Subject in CERT_INFO struct
  294. TESTC(DecodeX509_NAME((((PCERT_INFO)pStructInfo)->Subject).cbData,
  295. (((PCERT_INFO)pStructInfo)->Subject).pbData,&cbSubject,&pbSubject),TRUE)
  297. SetData((((PCERT_INFO)pStructInfo)->Subject).cbData,
  298. (((PCERT_INFO)pStructInfo)->Subject).pbData,
  299. &cbOldSubject, &pbOldSubject);
  301. SetData(cbSubject, pbSubject,
  302. &((((PCERT_INFO)pStructInfo)->Subject).cbData),
  303. &((((PCERT_INFO)pStructInfo)->Subject).pbData));
  308. //if requested, encode the BLOB back to what it was. Make sure no data is lost
  309. //by checking the size of the encoded blob and do a memcmp.
  310. TESTC(EncodeStruct(lpszStructType, pStructInfo,pcbEncoded,
  311. ppbEncoded),TRUE);
  315. fSucceeded=TRUE;
  317. TCLEANUP:
  319. //copy back the old values
  320. SetData(cbOldSubject, pbOldSubject,
  321. &((((PCERT_INFO)pStructInfo)->Subject).cbData),
  322. &((((PCERT_INFO)pStructInfo)->Subject).pbData));
  325. SetData(cbOldIssuer, pbOldIssuer,
  326. &((((PCERT_INFO)pStructInfo)->Issuer).cbData),
  327. &((((PCERT_INFO)pStructInfo)->Issuer).pbData));
  331. SAFE_FREE(pStructInfo)
  333. SAFE_FREE(pbSubject)
  335. SAFE_FREE(pbIssuer)
  337. return fSucceeded;
  339. }
  341. //--------------------------------------------------------------------------
  342. // Decode X509_NAME BLOBs
  343. //
  344. //--------------------------------------------------------------------------
  345. BOOL DecodeX509_NAME(DWORD cbEncoded, BYTE *pbEncoded, DWORD *pcbEncoded,
  346. BYTE **ppbEncoded)
  347. {
  349. BOOL fSucceeded=FALSE;
  350. DWORD cbStructInfo=0;
  351. void *pStructInfo=NULL;
  352. LPCSTR lpszStructType=NULL;
  355. //init
  356. lpszStructType=X509_NAME;
  359. //Decode the encoded BLOB
  360. TESTC(DecodeBLOB(lpszStructType,cbEncoded, pbEncoded,&cbStructInfo,
  361. &pStructInfo),TRUE)
  364. //if requested, encode the BLOB back to what it was. Make sure no data is lost
  365. //by checking the size of the encoded blob and do a memcmp.
  366. TESTC(EncodeStruct(lpszStructType, pStructInfo,pcbEncoded, ppbEncoded),TRUE);
  369. fSucceeded=TRUE;
  371. TCLEANUP:
  373. SAFE_FREE(pStructInfo)
  375. return fSucceeded;
  377. }