|
|
//+---------------------------------------------------------------------------
//
// Microsoft Windows
// Copyright (C) Microsoft Corporation, 1992 - 1995.
//
// File: ssl3msg.h
//
// Contents:
//
// Classes:
//
// Functions:
//
// History: 8-02-95 RichardW Created
//
//----------------------------------------------------------------------------
#ifndef __SSL3MSG_H__
#define __SSL3MSG_H__
#define CB_SSL3_CHANGE_CIPHER_SPEC (sizeof(SWRAP) + 1)
#define CB_SSL3_CHANGE_CIPHER_SPEC_ONLY 1
#define CB_SSL3_FINISHED_MSG (sizeof(FMWIRE))
#define CB_SSL3_FINISHED_MSG_ONLY (sizeof(SHSH) + CB_MD5_DIGEST_LEN + CB_SHA_DIGEST_LEN)
#define CB_SSL3_ALERT (sizeof(SWRAP) +2)
#define CB_SSL3_ALERT_ONLY 2
#define SSL3_CHANGE_CIPHER_MSG { 0x14, 0x03, 0x00, 0x00, 0x01, 0x01 }
#define FSsl3CipherClient() (0 != pContext->wS3CipherSuiteClient)
#define FSsl3CipherServer() (0 != pContext->wS3CipherSuiteServer)
#define FSsl3Cipher(fClient) ((fClient ? pContext->wS3CipherSuiteClient : pContext->wS3CipherSuiteServer))
#define MS24BOF(x) ((UCHAR) ((x >> 16) & 0xFF) )
//#define CbChecksum(f, cb) (cb + (FSsl3Cipher(f) ? pContext->pCheck->cbCheckSum : 0))
#define CHECK_PCT_RET(Ret) if (PCT_ERR_OK != Ret) \
LOG_RESULT(Ret);
#define CHECK_PCT_RET_BREAK(Ret) if(PCT_ERR_OK != Ret) \
{ \ LOG_RESULT(Ret); \ break; \ }
typedef struct _OIDPROVMAP{ LPSTR szOid; DWORD dwExchSpec; DWORD dwCertType; // used for SSL 3.0 client auth
} OIDPROVMAP, *POIDPROVMAP;
extern OIDPROVMAP g_CertTypes[];extern DWORD g_cCertTypes;
typedef struct _shsh //Structure hand shake header
{ UCHAR typHS; UCHAR bcb24; UCHAR bcbMSB; UCHAR bcbLSB;} SHSH;
typedef struct _swrap{ UCHAR bCType; UCHAR bMajor; UCHAR bMinor; UCHAR bcbMSBSize; UCHAR bcbLSBSize;// UCHAR rgb[];
} SWRAP;
typedef struct _ssh{ SHSH; UCHAR bMajor; UCHAR bMinor; UCHAR rgbRandom[CB_SSL3_RANDOM]; UCHAR cbSessionId; UCHAR rgbSessionId[CB_SSL3_SESSION_ID]; UCHAR wCipherSelectedMSB; UCHAR wCipherSelectedLSB; UCHAR bCMSelected;} SSH;
typedef struct _alrt{ SWRAP; UCHAR bAlertLevel; UCHAR bAlertDesc;} ALRT;
typedef struct _fm{ UCHAR rgbMD5[CB_MD5_DIGEST_LEN]; UCHAR rgbSHA[CB_SHA_DIGEST_LEN];} FM; //finished message
typedef struct _fmwire{ SWRAP; SHSH; FM;} FMWIRE;
typedef struct _clh{ SHSH; UCHAR bMajor; UCHAR bMinor; UCHAR rgbRandom[CB_SSL3_RANDOM]; UCHAR cbSessionId; UCHAR rgbSessionId[CB_SSL3_SESSION_ID]; UCHAR bMSBCipher; UCHAR bLSBCipher; // short rgbCipher[0]; // ALignment problem, but never used.
//UCHAR bCM;
//UCHAR rgbCM[bCM];
} CLH ; //CLient Hello
typedef struct _cert{ SHSH; UCHAR bcbClist24; UCHAR bcbMSBClist; UCHAR bcbLSBClist; UCHAR bcbCert24; UCHAR bcbMSBCert; UCHAR bcbLSBCert; UCHAR rgbCert[]; /* followed by the real cert */} CERT;
typedef struct _certReq{ SHSH; UCHAR bcbCertType; //This value be just 1 byte
UCHAR bCertType; //This will be Only one for quite sometime
UCHAR bcbMSBList; UCHAR bcbLSBList; UCHAR rgbIss[];} CERTREQ;
typedef struct _shwire{ PUCHAR pcbCipher; PUCHAR pCiperSpec; PUCHAR pcbCompM; PUCHAR pCompM; PUCHAR pcbCert; PUCHAR pCert; PUCHAR pHelloDone;} SHWIRE ;
SP_STATUS WINAPISsl3DecryptHandler( PSPContext pContext, PSPBuffer pCommInput, PSPBuffer pAppOutput);
SP_STATUS WINAPISsl3GetHeaderSize( PSPContext pContext, PSPBuffer pCommInput, DWORD * pcbHeaderSize);
SP_STATUS WINAPIGenerateSsl3ClientHello( PSPContext pContext, PSPBuffer pOutput);
SP_STATUS WINAPIGenerateTls1ClientHello( PSPContext pContext, PSPBuffer pOutput, DWORD dwProtocol);
SP_STATUSSsl3PackClientHello(PSPContext pContext, PSsl2_Client_Hello pCanonical, PSPBuffer pCommOutput);
SP_STATUS Ssl3CliHandleServerHello(PSPContext pContext, PUCHAR pSrvHello, DWORD cbMessage, PSPBuffer pCommOutput);SP_STATUS Ssl3HandleServerFinish(PSPContext pContext, PUCHAR pSrvHello );
SP_STATUS Ssl3SrvHandleCMKey(PSPContext pContext, PUCHAR pCommInput, DWORD cbMsg, PSPBuffer pCommOutput);
BOOL FVerifyFinishedMessage(PSPContext pContext, PUCHAR pb, BOOL fClient);
SP_STATUSParseAlertMessage(PSPContext pContext,PUCHAR pSrvHello,DWORD cbMessage);
SP_STATUS SPAllocOutMemChk(DWORD cbMessage, PSPBuffer pCommOutput);
SP_STATUSSsl3SelectCipher ( PSPContext pContext, WORD wCipher);
SP_STATUSSsl3SelectCipherEx( PSPContext pContext, DWORD *pCipherSpecs, DWORD cCipherSpecs);
void BuildAlertMessage(PBYTE pb, UCHAR bAlertLevel, UCHAR bAlertDesc);
SP_STATUSSsl3BuildFinishMessage( PSPContext pContext, BYTE *pbMd5Digest, BYTE *pbSHADigest, BOOL fClient);
SP_STATUSTls1BuildFinishMessage( PSPContext pContext, // in
PBYTE pbVerifyData, // out
DWORD cbVerifyData, // in
BOOL fClient); // in
SP_STATUSSPSetWrap(PSPContext pContext, PUCHAR pb, UCHAR bCType, DWORD wT, BOOL fClient, DWORD *pcbMessage);void SetHandshake(PUCHAR pb, BYTE bHandshake, PUCHAR pbData, DWORD dwSize);
SP_STATUSUpdateHandshakeHash( PSPContext pContext, PUCHAR pb, DWORD dwcb, BOOL fInit);
SP_STATUSSPBuildS3FinalFinish(PSPContext pContext, PSPBuffer pBuffer, BOOL fClient);
SP_STATUSVerifyCCSAndFinishMsg(PSPContext pContext, PBYTE pbMsg, DWORD cbMessage, BOOL fClient);
SP_STATUS SPAllocOutMem(DWORD cbMessage, PSPBuffer pCommOutput);
SP_STATUSSsl3ComputeCertVerifyHashes( PSPContext pContext, // in
PBYTE pbMD5, // out
PBYTE pbSHA); // out
SP_STATUSTls1ComputeCertVerifyHashes( PSPContext pContext, // in
PBYTE pbMD5, // out
PBYTE pbSHA); // out
void BuildCertificateMessage(PBYTE pb, PBYTE rgbCert, DWORD dwCert);
SP_STATUSBuildCCSAndFinishMessage( PSPContext pContext, PSPBuffer pBuffer, BOOL fClient);
SP_STATUSProcessCertificateMessage( PSPContext pContext, BOOL fServer, DWORD dwCipher, CERT * pcert, DWORD dwCert, Ssl2_Client_Master_Key *pKey);
void Ssl3GetCipherSpec( short wCipherSuite, // in
PINT pwKeySize, // out
PINT pwMacSize) ; // out
VOID ComputeServerExchangeHashes( PSPContext pContext, PBYTE pbServerParams, // in
INT iServerParamsLen, // in
PBYTE pbMd5HashVal, // out
PBYTE pbShaHashVal) ; // out
DWORD Ssl3CiphertextLen( PSPContext pContext, DWORD cbMessage, BOOL fClientIsSender);
DWORD Ssl3PendingCiphertextLen( PSPContext pContext, DWORD cbMessage, BOOL fClientIsSender);
SP_STATUSUnwrapSsl3Message(PSPContext pContext,PSPBuffer MsgInput);
DWORD Ssl3CiphertextLen( PSPContext pContext, DWORD cbMessage, BOOL fClientIsSender);
DWORD Ssl3PendingCiphertextLen( PSPContext pContext, DWORD cbMessage, BOOL fClientIsSender);
void SetWrapNoEncrypt(PUCHAR pb, UCHAR bCType, DWORD wT);
SP_STATUS Ssl3HandleCCS(PSPContext pContext, PUCHAR pb, DWORD cbMessage);SP_STATUSVerifyFinishMsg(PSPContext pContext, PBYTE pbMsg, DWORD cbMessage, BOOL fClient);
BOOL Ssl3ParseClientHello( PSPContext pContext, PBYTE pbMessage, INT iMessageLen, BOOL fAttemptRestart, BOOL * pfRestart);
SP_STATUSSPBuildTlsAlertMessage( PSPContext pContext, PSPBuffer pCommOutput);
voidSetTls1Alert( PSPContext pContext, BYTE bAlertLevel, BYTE bAlertNumber);
SP_STATUSSsl3CheckForExistingCred(PSPContext pContext);
#endif //__SSL3MSG_H__
|
