archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/csps/cryptoflex/slbcsp/rsakpgen.cpp

275 lines
7.0 KiB
Raw Normal View History

Add source files
4 years ago
  1. // RsaKPGen.cpp -- Rsa Key Pair Generator class definition
  3. // (c) Copyright Schlumberger Technology Corp., unpublished work, created
  4. // 1999. This computer program includes Confidential, Proprietary
  5. // Information and is a Trade Secret of Schlumberger Technology Corp. All
  6. // use, disclosure, and/or reproduction is prohibited unless authorized
  7. // in writing. All Rights Reserved.
  9. #include "NoWarning.h"
  10. #include "ForceLib.h"
  12. #include <limits>
  14. #include <malloc.h> // for _alloca
  16. #include <windows.h>
  17. #include <wincrypt.h>
  19. #include <scuOsExc.h>
  21. #include "RsaKPGen.h"
  22. #include "Blob.h"
  23. #include "AuxContext.h"
  24. #include "MsRsaPriKB.h"
  25. #include "PublicKeyHelper.h"
  27. using namespace std;
  28. using namespace cci;
  30. /////////////////////////// LOCAL/HELPER /////////////////////////////////
  31. namespace
  32. {
  33. KeyType
  34. AsKeyType(RsaKey::StrengthType st)
  35. {
  36. KeyType kt;
  38. switch (st)
  39. {
  40. case 512:
  41. kt = ktRSA512;
  42. break;
  44. case 768:
  45. kt = ktRSA768;
  46. break;
  48. case 1024:
  49. kt = ktRSA1024;
  50. break;
  52. default:
  53. throw scu::OsException(ERROR_INVALID_PARAMETER);
  54. break;
  55. }
  57. return kt;
  58. }
  60. DWORD
  61. DefaultPublicExponent()
  62. {
  63. return 0x00010001; // same as Microsoft providers
  64. }
  66. pair<CPrivateKey, CPublicKey>
  67. KeyPair(CPrivateKey const &rhprikey,
  68. Blob const &rblbOrigModulus, // little endian
  69. Blob const &rblbOrigExponent) // little endian
  70. {
  71. CPublicKey hpubkey(AsPublicKey(rblbOrigModulus,
  72. rblbOrigExponent,
  73. rhprikey->Card()));
  75. return pair<CPrivateKey, CPublicKey>(rhprikey, hpubkey);
  76. }
  78. void
  79. ValidateCard(CCard const &rhcard)
  80. {
  81. if (!rhcard)
  82. throw scu::OsException(ERROR_INVALID_PARAMETER);
  83. }
  85. void
  86. ValidateStrength(RsaKey::StrengthType strength)
  87. {
  88. if (!IsValidRsaKeyStrength(strength))
  89. throw scu::OsException(ERROR_INVALID_PARAMETER);
  90. }
  92. bool
  93. IsEmpty(std::pair<CPrivateKey, CPublicKey> const &rhs)
  94. {
  95. return !rhs.first || !rhs.second;
  96. }
  98. }
  100. /////////////////////////// PUBLIC /////////////////////////////////
  102. // Types
  103. // C'tors/D'tors
  104. RsaKeyPairGenerator::RsaKeyPairGenerator(CCard const &rhcard,
  105. RsaKey::StrengthType strength)
  106. : m_hcard(rhcard),
  107. m_kp(),
  108. m_strength(strength)
  109. {
  110. ValidateParameters();
  111. }
  113. RsaKeyPairGenerator::~RsaKeyPairGenerator()
  114. {}
  116. // Operators
  117. pair<CPrivateKey, CPublicKey>
  118. RsaKeyPairGenerator::operator()() const
  119. {
  120. if (IsEmpty(m_kp))
  121. Generate();
  123. return m_kp;
  124. }
  126. // Operations
  127. void
  128. RsaKeyPairGenerator::Card(CCard const &rhcard)
  129. {
  130. if (m_hcard != rhcard)
  131. {
  132. ValidateCard(rhcard);
  134. Reset();
  135. m_hcard = rhcard;
  136. }
  137. }
  139. void
  140. RsaKeyPairGenerator::Reset()
  141. {
  142. m_kp = pair<CPrivateKey, CPublicKey>();
  143. }
  145. void
  146. RsaKeyPairGenerator::Strength(RsaKey::StrengthType strength)
  147. {
  148. if (m_strength != strength)
  149. {
  150. ValidateStrength(strength);
  152. Reset();
  153. m_strength = strength;
  154. }
  156. }
  159. // Access
  160. CCard
  161. RsaKeyPairGenerator::Card() const
  162. {
  163. return m_hcard;
  164. }
  166. bool
  167. RsaKeyPairGenerator::OnCard() const
  168. {
  169. return m_hcard->SupportedKeyFunction(AsKeyType(m_strength),
  170. coKeyGeneration);
  171. }
  173. RsaKey::StrengthType
  174. RsaKeyPairGenerator::Strength() const
  175. {
  176. return m_strength;
  177. }
  179. // Predicates
  180. // Static Variables
  182. /////////////////////////// PROTECTED /////////////////////////////////
  184. // C'tors/D'tors
  185. // Operators
  186. // Operations
  187. // Access
  188. // Predicates
  189. // Static Variables
  192. /////////////////////////// PRIVATE /////////////////////////////////
  194. // C'tors/D'tors
  195. // Operators
  196. // Operations
  197. void
  198. RsaKeyPairGenerator::Generate() const
  199. {
  200. KeyType kt = AsKeyType(m_strength);
  202. m_kp = OnCard()
  203. ? GenerateOnCard(kt)
  204. : GenerateInSoftware();
  206. }
  208. pair<CPrivateKey, CPublicKey>
  209. RsaKeyPairGenerator::GenerateInSoftware() const
  210. {
  211. AuxContext auxcontext;
  213. DWORD dwFlags;
  214. // strength (bit length) is the high-order word
  215. dwFlags = m_strength;
  216. dwFlags = dwFlags << (numeric_limits<DWORD>::digits / 2);
  217. dwFlags |= CRYPT_EXPORTABLE;
  219. HCRYPTKEY hcryptkey;
  220. if (!CryptGenKey(auxcontext(), AT_SIGNATURE, dwFlags, &hcryptkey))
  221. throw scu::OsException(GetLastError());
  223. DWORD dwDataLength;
  224. if (!CryptExportKey(hcryptkey, NULL, PRIVATEKEYBLOB, 0, 0, &dwDataLength))
  225. throw scu::OsException(GetLastError());
  227. BYTE *pbData = reinterpret_cast<BYTE *>(_alloca(dwDataLength));
  228. if (!CryptExportKey(hcryptkey, NULL, PRIVATEKEYBLOB, 0, pbData,
  229. &dwDataLength))
  230. throw scu::OsException(GetLastError());
  232. MsRsaPrivateKeyBlob msprivatekeyblob(pbData, dwDataLength);
  234. if (msprivatekeyblob.BitLength() != m_strength)
  235. throw scu::OsException(NTE_BAD_LEN);
  237. CPrivateKey hprikey(m_hcard);
  238. hprikey->Value(*(AsPCciPrivateKeyBlob(msprivatekeyblob).get()));
  240. Blob blbModulus(msprivatekeyblob.Modulus(), msprivatekeyblob.Length());
  241. MsRsaPrivateKeyBlob::PublicExponentType pet = msprivatekeyblob.PublicExponent();
  242. Blob blbExponent(reinterpret_cast<Blob::value_type const *>(&pet), sizeof pet);
  244. return KeyPair(hprikey, blbModulus, blbExponent);
  245. }
  247. pair<CPrivateKey, CPublicKey>
  248. RsaKeyPairGenerator::GenerateOnCard(KeyType kt) const
  249. {
  250. DWORD dwExponent = DefaultPublicExponent();
  251. Blob blbExponent(reinterpret_cast<Blob::value_type const *>(&dwExponent),
  252. sizeof dwExponent);
  254. pair<string, CPrivateKey>
  255. ModulusKeyPair(m_hcard->GenerateKeyPair(kt,
  256. AsString(blbExponent)));
  258. CPrivateKey hprikey(ModulusKeyPair.second);
  260. Blob blbModulus(AsBlob(ModulusKeyPair.first));
  262. return KeyPair(hprikey, blbModulus, blbExponent);
  263. }
  265. void
  266. RsaKeyPairGenerator::ValidateParameters() const
  267. {
  268. ValidateCard(m_hcard);
  269. ValidateStrength(m_strength);
  270. }
  272. // Access
  273. // Predicates
  274. // Static Variables