archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/enduser/netmeeting/t120/mst120/password.cpp

3047 lines
87 KiB
Raw Normal View History

Add source files
4 years ago
  1. #include "precomp.h"
  2. DEBUG_FILEZONE(ZONE_T120_GCCNC);
  3. /*
  4. * password.cpp
  5. *
  6. * Copyright (c) 1995 by DataBeam Corporation, Lexington, KY
  7. *
  8. * Abstract:
  9. * This is the implementation file for the class CPassword. This class
  10. * manages the data associated with a Password. Passwords are used to
  11. * restrict access to conferences. A password can be one of two basic
  12. * types. The simple type consists of either a simple numeric password or
  13. * a simple textual password, or both. The "PDU" type "Password" is a
  14. * structure which must contain the numeric form of the password and may
  15. * optionally contain the textual part as well. The "PDU" type
  16. * "PasswordSelector" is a union of the numeric and textual forms of a
  17. * password and is therefore always one or the other but not both. When
  18. * the password is not the simple type it assumes the form of a
  19. * "PasswordChallengeRequestResponse". This complex structure allows a
  20. * challenge-response scheme to be used to control access to conferences.
  21. *
  22. * Protected Instance Variables:
  23. * m_fSimplePassword
  24. * Flag indicating this password does not contain "challenge" data.
  25. * m_fClearPassword
  26. * Flag used when the password assumes the "challenge" form indicating
  27. * that this password is "in the clear" meaning no true challenge
  28. * data is present.
  29. * m_pszNumeric
  30. * String holding the numeric portion of the simple password.
  31. * Text_String_Ptr
  32. * String holding the textual portion of the simple password.
  33. * m_pInternalRequest
  34. * Structure holding the data associated with a password challenge
  35. * request.
  36. * m_pInternalResponse
  37. * Structure holding the data associated with a password challenge
  38. * response.
  39. * m_pChallengeResponse
  40. * Structure holding the "API" form of a challenge password.
  41. * m_pPassword
  42. * Structure holding the "API" form of a simple password.
  43. * m_pUserDataMemory
  44. * Memory container holding the user data associated with a
  45. * challenge password.
  46. * m_pChallengeItemListMemory
  47. * Memory container holding the list of pointers to challenge items
  48. * associated with a password challenge request.
  49. * m_pObjectKeyMemory
  50. * Memory container holding the object key data associated with the
  51. * non-standard challenge response algorithm.
  52. * m_ChallengeItemMemoryList
  53. * Memory container holding the data for the challenge items
  54. * associated with a password challenge request.
  55. * m_ChallengeResponsePDU
  56. * Storage for the "PDU" form of the challenge password.
  57. * m_fValidChallengeResponsePDU
  58. * Flag indicating that memory has been allocated to hold the internal
  59. * "PDU" password.
  60. *
  61. * Caveats:
  62. * None.
  63. *
  64. * Author:
  65. * blp/jbo
  66. */
  68. #include "password.h"
  69. #include "userdata.h"
  71. /*
  72. * CPassword()
  73. *
  74. * Public Function Description:
  75. * This constructor for the CPassword class is used when creating a
  76. * CPassword object with an "API" GCCPassword structure. It saves the
  77. * password data in the internal structures.
  78. */
  79. CPassword::CPassword(PGCCPassword password,
  80. PGCCError return_value)
  81. :
  82. CRefCount(MAKE_STAMP_ID('P','a','s','w')),
  83. m_fValidChallengeResponsePDU(FALSE),
  84. m_pInternalRequest(NULL),
  85. m_pInternalResponse(NULL),
  86. m_pChallengeResponse(NULL),
  87. m_pPassword(NULL),
  88. m_pChallengeItemListMemory(NULL),
  89. m_pUserDataMemory(NULL),
  90. m_pObjectKeyMemory(NULL),
  91. m_pszNumeric(NULL),
  92. m_pwszText(NULL)
  93. {
  94. *return_value = GCC_NO_ERROR;
  96. /*
  97. * Set the flag indicating that this is a "simple" password, without the
  98. * challenge request-response information. The "clear" flag is also
  99. * initialized here but should only be needed when the password is not
  100. * "simple".
  101. */
  102. m_fSimplePassword = TRUE;
  103. m_fClearPassword = TRUE;
  105. /*
  106. * Save the numeric part of the password in the internal numeric string.
  107. */
  108. if (password->numeric_string != NULL)
  109. {
  110. if (NULL == (m_pszNumeric = ::My_strdupA(password->numeric_string)))
  111. {
  112. ERROR_OUT(("CPassword::CPassword: can't create numeric string"));
  113. *return_value = GCC_ALLOCATION_FAILURE;
  114. }
  115. }
  116. else
  117. {
  118. ERROR_OUT(("CPassword::CPassword: No valid numeric password"));
  119. *return_value = GCC_INVALID_PASSWORD;
  120. }
  122. /*
  123. * Check to see if the textual part of the password is present. If so,
  124. * save it in the internal UnicodeString. If not, set the text pointer
  125. * to NULL.
  126. */
  127. if ((password->text_string != NULL) && (*return_value == GCC_NO_ERROR))
  128. {
  129. if (NULL == (m_pwszText = ::My_strdupW(password->text_string)))
  130. {
  131. ERROR_OUT(("CPassword::CPassword: Error creating text string"));
  132. *return_value = GCC_ALLOCATION_FAILURE;
  133. }
  134. }
  135. else
  136. m_pwszText = NULL;
  137. }
  139. /*
  140. * CPassword()
  141. *
  142. * Public Function Description:
  143. * This constructor is used when a CPassword object is being created
  144. * with a "ChallengeRequestResponse" "API" structure. The password data
  145. * is saved in the internal structures.
  146. */
  147. CPassword::CPassword(PGCCChallengeRequestResponse challenge_response_data,
  148. PGCCError return_value)
  149. :
  150. CRefCount(MAKE_STAMP_ID('P','a','s','w')),
  151. m_fValidChallengeResponsePDU(FALSE),
  152. m_pInternalRequest(NULL),
  153. m_pInternalResponse(NULL),
  154. m_pChallengeResponse(NULL),
  155. m_pPassword(NULL),
  156. m_pChallengeItemListMemory(NULL),
  157. m_pUserDataMemory(NULL),
  158. m_pObjectKeyMemory(NULL),
  159. m_pszNumeric(NULL),
  160. m_pwszText(NULL)
  161. {
  162. *return_value = GCC_NO_ERROR;
  164. /*
  165. * Set the flag indicating that this is not a "simple" password, meaning
  166. * that it contains challenge request-response information. If the password
  167. * is "clear" there is no need to create the internal "Challenge" structure
  168. * used to hold the challenge request-response information.
  169. */
  170. m_fSimplePassword = FALSE;
  172. /*
  173. * Check to see if a "clear" challenge password exists or if this is a
  174. * true challenge request-response password.
  175. */
  176. if (challenge_response_data->password_challenge_type ==
  177. GCC_PASSWORD_IN_THE_CLEAR)
  178. {
  179. /*
  180. * A "clear" password is being sent so set the flag indicating so.
  181. * Also set the password type and save the numeric part of the password,
  182. * if it exists. Note that since the "clear" password contained in the
  183. * challenge is a PasswordSelector type, either the numeric or the text
  184. * form of the password should exist, but not both.
  185. */
  186. m_fClearPassword = TRUE;
  188. if (challenge_response_data->u.password_in_the_clear.
  189. numeric_string != NULL)
  190. {
  191. if (NULL == (m_pszNumeric = ::My_strdupA(
  192. challenge_response_data->u.password_in_the_clear.numeric_string)))
  193. {
  194. ERROR_OUT(("CPassword::CPassword: can't create numeric string"));
  195. *return_value = GCC_ALLOCATION_FAILURE;
  196. }
  197. }
  198. else
  199. {
  200. m_pszNumeric = NULL;
  201. }
  203. /*
  204. * Check to see if the textual part of the password is present. If it
  205. * is, save it in the internal UnicodeString.
  206. */
  207. if ((challenge_response_data->u.password_in_the_clear.
  208. text_string != NULL) && (*return_value == GCC_NO_ERROR))
  209. {
  210. if (NULL == (m_pwszText = ::My_strdupW(
  211. challenge_response_data->u.password_in_the_clear.text_string)))
  212. {
  213. ERROR_OUT(("CPassword::CPassword: Error creating text string"));
  214. *return_value = GCC_ALLOCATION_FAILURE;
  215. }
  216. }
  217. else
  218. {
  219. m_pwszText = NULL;
  220. }
  222. /*
  223. * Check to make sure at least one form (text or numeric) of the
  224. * "clear" password was saved. Report an error if neither was created.
  225. */
  226. if ((*return_value == GCC_NO_ERROR) && (m_pszNumeric == NULL)
  227. && (m_pwszText == NULL))
  228. {
  229. ERROR_OUT(("CPassword::CPassword: Error creating password"));
  230. *return_value = GCC_INVALID_PASSWORD;
  231. }
  232. }
  233. else
  234. {
  235. /*
  236. * This is a true challenge request-response password. Set the flag
  237. * indicating that the password is not "clear" and create the
  238. * "challenge" data structures to hold the password data internally.
  239. */
  240. m_fClearPassword = FALSE;
  242. /*
  243. * Check to see if a challenge request is present.
  244. */
  245. if (challenge_response_data->u.challenge_request_response.
  246. challenge_request != NULL)
  247. {
  248. /*
  249. * Create a RequestInfo stucture to hold the request data
  250. * and copy the challenge request structure internally.
  251. */
  252. DBG_SAVE_FILE_LINE
  253. m_pInternalRequest = new RequestInfo;
  254. if (m_pInternalRequest != NULL)
  255. {
  256. *return_value = ConvertAPIChallengeRequest (
  257. challenge_response_data->u.
  258. challenge_request_response.challenge_request);
  259. }
  260. else
  261. {
  262. ERROR_OUT(("CPassword::CPassword: Error creating new RequestInfo"));
  263. *return_value = GCC_ALLOCATION_FAILURE;
  264. }
  265. }
  267. /*
  268. * Check to see if a challenge response is present.
  269. */
  270. if ((challenge_response_data->u.challenge_request_response.
  271. challenge_response != NULL) &&
  272. (*return_value == GCC_NO_ERROR))
  273. {
  274. /*
  275. * Create a ResponseInfo stucture to hold the response data
  276. * and copy the challenge response structure internally.
  277. */
  278. DBG_SAVE_FILE_LINE
  279. m_pInternalResponse = new ResponseInfo;
  280. if (m_pInternalResponse != NULL)
  281. {
  282. *return_value = ConvertAPIChallengeResponse (
  283. challenge_response_data->u.
  284. challenge_request_response.challenge_response);
  285. }
  286. else
  287. {
  288. ERROR_OUT(("CPassword::CPassword: Error creating new ResponseInfo"));
  289. *return_value = GCC_ALLOCATION_FAILURE;
  290. }
  291. }
  292. }
  293. }
  295. /*
  296. * CPassword()
  297. *
  298. * Public Function Description
  299. * This constructor for the CPassword class is used when creating a
  300. * CPassword object with a "PDU" Password structure. It saves the
  301. * password data in the internal structures.
  302. */
  303. CPassword::CPassword(PPassword password_pdu,
  304. PGCCError return_value)
  305. :
  306. CRefCount(MAKE_STAMP_ID('P','a','s','w')),
  307. m_fValidChallengeResponsePDU(FALSE),
  308. m_pInternalRequest(NULL),
  309. m_pInternalResponse(NULL),
  310. m_pChallengeResponse(NULL),
  311. m_pPassword(NULL),
  312. m_pChallengeItemListMemory(NULL),
  313. m_pUserDataMemory(NULL),
  314. m_pObjectKeyMemory(NULL),
  315. m_pszNumeric(NULL),
  316. m_pwszText(NULL)
  317. {
  318. *return_value = GCC_NO_ERROR;
  320. /*
  321. * Set the flag indicating that this is a "simple" password, without the
  322. * challenge request-response information. The "clear" flag is also
  323. * initialized here but should only be needed when the password is not
  324. * "simple".
  325. */
  326. m_fSimplePassword = TRUE;
  327. m_fClearPassword = TRUE;
  329. /*
  330. * Save the numeric part of the password. The numeric portion of the
  331. * password is required to be present so report an error if it is not.
  332. */
  333. if (password_pdu->numeric != NULL)
  334. {
  335. if (NULL == (m_pszNumeric = ::My_strdupA(password_pdu->numeric)))
  336. {
  337. ERROR_OUT(("CPassword::CPassword: can't create numeric string"));
  338. *return_value = GCC_ALLOCATION_FAILURE;
  339. }
  340. }
  341. else
  342. {
  343. ERROR_OUT(("CPassword::CPassword: Error no valid numeric password in PDU"));
  344. *return_value = GCC_INVALID_PASSWORD;
  345. m_pszNumeric = NULL;
  346. }
  348. /*
  349. * Check to see if the textual part of the password is present.
  350. */
  351. if ((password_pdu->bit_mask & PASSWORD_TEXT_PRESENT) &&
  352. (*return_value == GCC_NO_ERROR))
  353. {
  354. if (NULL == (m_pwszText = ::My_strdupW2(
  355. password_pdu->password_text.length,
  356. password_pdu->password_text.value)))
  357. {
  358. ERROR_OUT(("CPassword::CPassword: Error creating password text"));
  359. *return_value = GCC_ALLOCATION_FAILURE;
  360. }
  361. }
  362. else
  363. m_pwszText = NULL;
  364. }
  366. /*
  367. * CPassword()
  368. *
  369. * Public Function Description:
  370. * This constructor for the CPassword class is used when creating a
  371. * CPassword object with a "PDU" PasswordSelector structure. It saves
  372. * the password data in it's internal structures but does not require
  373. * saving any "challenge request-response" data.
  374. */
  375. CPassword::CPassword(PPasswordSelector password_selector_pdu,
  376. PGCCError return_value)
  377. :
  378. CRefCount(MAKE_STAMP_ID('P','a','s','w')),
  379. m_fValidChallengeResponsePDU(FALSE),
  380. m_pInternalRequest(NULL),
  381. m_pInternalResponse(NULL),
  382. m_pChallengeResponse(NULL),
  383. m_pPassword(NULL),
  384. m_pChallengeItemListMemory(NULL),
  385. m_pUserDataMemory(NULL),
  386. m_pObjectKeyMemory(NULL),
  387. m_pszNumeric(NULL),
  388. m_pwszText(NULL)
  389. {
  390. *return_value = GCC_NO_ERROR;
  392. /*
  393. * Set the flag indicating that this is a "simple" password, without the
  394. * challenge request-response information.
  395. */
  396. m_fSimplePassword = TRUE;
  397. m_fClearPassword = TRUE;
  399. /*
  400. * The password selector contains either the numeric password or the
  401. * textual password but not both. Check to see if the textual password
  402. * is chosen.
  403. */
  404. if (password_selector_pdu->choice == PASSWORD_SELECTOR_TEXT_CHOSEN)
  405. {
  406. if (NULL == (m_pwszText = ::My_strdupW2(
  407. password_selector_pdu->u.password_selector_text.length,
  408. password_selector_pdu->u.password_selector_text.value)))
  409. {
  410. ERROR_OUT(("CPassword::CPassword: Error creating password selector text"));
  411. *return_value = GCC_ALLOCATION_FAILURE;
  412. }
  413. }
  414. else
  415. m_pwszText = NULL;
  417. /*
  418. * Check to see if the numeric password is chosen.
  419. */
  420. if (password_selector_pdu->choice == PASSWORD_SELECTOR_NUMERIC_CHOSEN)
  421. {
  422. if (NULL == (m_pszNumeric = ::My_strdupA(
  423. password_selector_pdu->u.password_selector_numeric)))
  424. {
  425. ERROR_OUT(("CPassword::CPassword: can't create numeric string"));
  426. *return_value = GCC_ALLOCATION_FAILURE;
  427. }
  428. }
  429. else
  430. m_pszNumeric = NULL;
  432. /*
  433. * Check to make sure at least one form (text or numeric) of the
  434. * password was saved. Report an error if neither was created.
  435. */
  436. if ((*return_value == GCC_NO_ERROR) && (m_pszNumeric == NULL)
  437. && (m_pwszText == NULL))
  438. {
  439. ERROR_OUT(("CPassword::CPassword: Error creating password selector"));
  440. *return_value = GCC_INVALID_PASSWORD;
  441. }
  442. }
  444. /*
  445. * CPassword()
  446. *
  447. * Public Function Description:
  448. * This constructor for the CPassword class is used when creating a
  449. * CPassword object with a "PDU" Challenge Request-Response structure.
  450. * The password data is saved in the internal structures.
  451. */
  452. CPassword::CPassword(PPasswordChallengeRequestResponse pdu_challenge_data,
  453. PGCCError return_value)
  454. :
  455. CRefCount(MAKE_STAMP_ID('P','a','s','w')),
  456. m_fValidChallengeResponsePDU(FALSE),
  457. m_pInternalRequest(NULL),
  458. m_pInternalResponse(NULL),
  459. m_pChallengeResponse(NULL),
  460. m_pPassword(NULL),
  461. m_pChallengeItemListMemory(NULL),
  462. m_pUserDataMemory(NULL),
  463. m_pObjectKeyMemory(NULL),
  464. m_pszNumeric(NULL),
  465. m_pwszText(NULL)
  466. {
  467. *return_value = GCC_NO_ERROR;
  469. /*
  470. * Set the flag indicating that this is not "simple" password, meaning that
  471. * it contains challenge request-response information. If the password is
  472. * "clear" there is no need to create the internal "Challenge" structure
  473. * used to hold the challenge request-response information.
  474. */
  475. m_fSimplePassword = FALSE;
  477. /*
  478. * Check to see if a "clear" challenge password exists or if this is a
  479. * true challenge request-response password.
  480. */
  481. if (pdu_challenge_data->choice == CHALLENGE_CLEAR_PASSWORD_CHOSEN)
  482. {
  483. /*
  484. * A "clear" password is being sent so set the flag indicating so.
  485. * Also set the password type and save the numeric part of the password,
  486. * if it is present.
  487. */
  488. m_fClearPassword = TRUE;
  490. if (pdu_challenge_data->u.challenge_clear_password.choice ==
  491. PASSWORD_SELECTOR_NUMERIC_CHOSEN)
  492. {
  493. if (NULL == (m_pszNumeric = ::My_strdupA(
  494. pdu_challenge_data->u.challenge_clear_password.u.password_selector_numeric)))
  495. {
  496. ERROR_OUT(("CPassword::CPassword: can't create numeric string"));
  497. *return_value = GCC_ALLOCATION_FAILURE;
  498. }
  499. }
  500. else
  501. {
  502. m_pszNumeric = NULL;
  503. }
  505. /*
  506. * Check to see if the textual part of the password is present. If it
  507. * is, save it in the internal structure.
  508. */
  509. if (pdu_challenge_data->u.challenge_clear_password.choice ==
  510. PASSWORD_SELECTOR_TEXT_CHOSEN)
  511. {
  512. if (NULL == (m_pwszText = ::My_strdupW2(
  513. pdu_challenge_data->u.challenge_clear_password.
  514. u.password_selector_text.length,
  515. pdu_challenge_data->u.challenge_clear_password.
  516. u.password_selector_text.value)))
  517. {
  518. ERROR_OUT(("CPassword::CPassword: Error creating password selector text"));
  519. *return_value = GCC_ALLOCATION_FAILURE;
  520. }
  521. }
  522. else
  523. {
  524. m_pwszText = NULL;
  525. }
  527. /*
  528. * Check to make sure at least one form (text or numeric) of the
  529. * "clear" password was saved. Report an error if neither was created.
  530. */
  531. if ((*return_value == GCC_NO_ERROR) && (m_pszNumeric == NULL)
  532. && (m_pwszText == NULL))
  533. {
  534. ERROR_OUT(("CPassword::CPassword: Error creating password"));
  535. *return_value = GCC_INVALID_PASSWORD;
  536. }
  537. }
  538. else
  539. {
  540. /*
  541. * This is a true challenge request-response password. Set the flag
  542. * indicating that the password is not "clear" and create a
  543. * "challenge data" structure to hold the password data internally.
  544. */
  545. m_fClearPassword = FALSE;
  547. /*
  548. * Check to see if a challenge request is present.
  549. */
  550. if (pdu_challenge_data->u.challenge_request_response.
  551. bit_mask & CHALLENGE_REQUEST_PRESENT)
  552. {
  553. /*
  554. * Create a RequestInfo stucture to hold the request data
  555. * and copy the challenge request structure internally.
  556. */
  557. DBG_SAVE_FILE_LINE
  558. m_pInternalRequest = new RequestInfo;
  559. if (m_pInternalRequest != NULL)
  560. {
  561. *return_value = ConvertPDUChallengeRequest (
  562. &pdu_challenge_data->u.challenge_request_response.
  563. challenge_request);
  564. }
  565. else
  566. {
  567. ERROR_OUT(("CPassword::CPassword: Error creating new RequestInfo"));
  568. *return_value = GCC_ALLOCATION_FAILURE;
  569. }
  570. }
  572. /*
  573. * Check to see if a challenge response is present.
  574. */
  575. if ((pdu_challenge_data->u.challenge_request_response.
  576. bit_mask & CHALLENGE_RESPONSE_PRESENT) &&
  577. (*return_value == GCC_NO_ERROR))
  578. {
  579. /*
  580. * Create a ResponseInfo stucture to hold the response data
  581. * and copy the challenge response structure internally.
  582. */
  583. DBG_SAVE_FILE_LINE
  584. m_pInternalResponse = new ResponseInfo;
  585. if (m_pInternalResponse != NULL)
  586. {
  587. *return_value = ConvertPDUChallengeResponse (
  588. &pdu_challenge_data->u.challenge_request_response.
  589. challenge_response);
  590. }
  591. else
  592. {
  593. ERROR_OUT(("CPassword::CPassword: Error creating new ResponseInfo"));
  594. *return_value = GCC_ALLOCATION_FAILURE;
  595. }
  596. }
  597. }
  598. }
  600. /*
  601. * ~CPassword()
  602. *
  603. * Public Function Description:
  604. * This is the destructor for the CPassword class. It will free up
  605. * any memory allocated during the life of this object.
  606. */
  607. CPassword::~CPassword(void)
  608. {
  609. PChallengeItemInfo challenge_item_info_ptr;
  611. delete m_pszNumeric;
  612. delete m_pwszText;
  614. /*
  615. * If "PDU" data has been allocated for this object, free it now.
  616. */
  617. if (m_fValidChallengeResponsePDU)
  618. {
  619. FreePasswordChallengeResponsePDU();
  620. }
  622. /*
  623. * Delete the memory associated with the "API" "simple" password
  624. * data structure.
  625. */
  626. delete m_pPassword;
  628. /*
  629. * Free any data allocated for the "API" challenge password. This would be
  630. * left around if "UnLock" was not called. Note that if the "challenge"
  631. * password is "clear", the numeric and text pointers above would contain
  632. * the "API" data so now we just need to delete the "challenge" password
  633. * structure.
  634. */
  635. if (m_pChallengeResponse != NULL)
  636. {
  637. if (m_fClearPassword == FALSE)
  638. {
  639. FreeAPIPasswordData();
  640. }
  641. else
  642. {
  643. delete m_pChallengeResponse;
  644. }
  645. }
  647. /*
  648. * Free any internal memory allocated for the challenge request information.
  649. * Iterate through the list of challenge items associated with the
  650. * challenge request, if it exists.
  651. */
  652. if (m_pInternalRequest != NULL)
  653. {
  654. m_pInternalRequest->ChallengeItemList.Reset();
  655. while (NULL != (challenge_item_info_ptr = m_pInternalRequest->ChallengeItemList.Iterate()))
  656. {
  657. /*
  658. * Delete any memory being referenced in the ChallengeItemInfo
  659. * structure.
  660. */
  661. if (NULL != challenge_item_info_ptr->algorithm.object_key)
  662. {
  663. challenge_item_info_ptr->algorithm.object_key->Release();
  664. }
  665. delete challenge_item_info_ptr->algorithm.poszOctetString;
  666. if (NULL!= challenge_item_info_ptr->challenge_data_list)
  667. {
  668. challenge_item_info_ptr->challenge_data_list->Release();
  669. }
  671. /*
  672. * Delete the challenge item contained in the list.
  673. */
  674. delete challenge_item_info_ptr;
  675. }
  677. /*
  678. * Delete the request structure.
  679. */
  680. delete m_pInternalRequest;
  681. }
  683. /*
  684. * Delete any memory allocated for the challenge response information.
  685. */
  686. if (m_pInternalResponse != NULL)
  687. {
  688. if (NULL != m_pInternalResponse->algorithm.object_key)
  689. {
  690. m_pInternalResponse->algorithm.object_key->Release();
  691. }
  692. delete m_pInternalResponse->algorithm.poszOctetString;
  693. if (NULL != m_pInternalResponse->challenge_response_item.password)
  694. {
  695. m_pInternalResponse->challenge_response_item.password->Release();
  696. }
  697. if (NULL != m_pInternalResponse->challenge_response_item.response_data_list)
  698. {
  699. m_pInternalResponse->challenge_response_item.response_data_list->Release();
  700. }
  701. delete m_pInternalResponse;
  702. }
  703. }
  706. /*
  707. * LockPasswordData ()
  708. *
  709. * Public Function Description:
  710. * This routine is called to "Lock" the password data. The first time this
  711. * routine is called, the lock count will be zero and this will result
  712. * in the password data being copied from the internal structures into an
  713. * "API" structure of the proper form. Subsequent calls to this routine
  714. * will result in the lock count being incremented.
  715. */
  716. GCCError CPassword::LockPasswordData(void)
  717. {
  718. GCCError rc;
  720. if (Lock() == 1)
  721. {
  722. rc = GCC_ALLOCATION_FAILURE;
  723. /*
  724. * Check to see whether or not the password contains "challenge"
  725. * information. Fill in the appropriate internal structure.
  726. */
  727. if (m_fSimplePassword)
  728. {
  729. if (m_pszNumeric == NULL)
  730. {
  731. ERROR_OUT(("CPassword::LockPasswordData: No valid numeric password data exists"));
  732. goto MyExit;
  733. }
  735. DBG_SAVE_FILE_LINE
  736. if (NULL == (m_pPassword = new GCCPassword))
  737. {
  738. ERROR_OUT(("CPassword::LockPasswordData: can't create GCCPassword"));
  739. goto MyExit;
  740. }
  742. /*
  743. * Fill in the numeric password string which must exist.
  744. */
  745. m_pPassword->numeric_string = (GCCNumericString) m_pszNumeric;
  747. /*
  748. * Fill in the textual password string.
  749. */
  750. m_pPassword->text_string = m_pwszText;
  751. }
  752. else
  753. {
  754. /*
  755. * The password contains challenge information so create the
  756. * structure to pass back the necessary information.
  757. */
  758. DBG_SAVE_FILE_LINE
  759. m_pChallengeResponse = new GCCChallengeRequestResponse;
  760. if (m_pChallengeResponse == NULL)
  761. {
  762. ERROR_OUT(("CPassword::LockPasswordData: can't create GCCChallengeRequestResponse"));
  763. goto MyExit;
  764. }
  765. ::ZeroMemory(m_pChallengeResponse, sizeof(GCCChallengeRequestResponse));
  767. /*
  768. * Fill in the "API" password challenge structure after
  769. * determining what type exists.
  770. */
  771. if (m_fClearPassword)
  772. {
  773. /*
  774. * This password contains no "challenge" information.
  775. */
  776. m_pChallengeResponse->password_challenge_type = GCC_PASSWORD_IN_THE_CLEAR;
  778. /*
  779. * This "clear" part of the password is a "selector" which
  780. * means the form is either numeric or text. The check to
  781. * verify that at least one form exists was done on
  782. * construction.
  783. */
  784. m_pChallengeResponse->u.password_in_the_clear.numeric_string = m_pszNumeric;
  785. m_pChallengeResponse->u.password_in_the_clear.text_string = m_pwszText;
  786. }
  787. else
  788. {
  789. /*
  790. * This password contains real "challenge" information.
  791. */
  792. m_pChallengeResponse->password_challenge_type = GCC_PASSWORD_CHALLENGE;
  794. /*
  795. * Check to see if a challenge request exists. If so,
  796. * create a GCCChallengeRequest to hold the "API" data and
  797. * fill in that structure.
  798. */
  799. if (m_pInternalRequest != NULL)
  800. {
  801. DBG_SAVE_FILE_LINE
  802. m_pChallengeResponse->u.challenge_request_response.
  803. challenge_request = new GCCChallengeRequest;
  804. if (m_pChallengeResponse->u.challenge_request_response.
  805. challenge_request == NULL)
  806. {
  807. ERROR_OUT(("CPassword::LockPasswordData: can't create GCCChallengeRequest"));
  808. goto MyExit;
  809. }
  811. if (GetGCCChallengeRequest(m_pChallengeResponse->u.
  812. challenge_request_response.challenge_request) != GCC_NO_ERROR)
  813. {
  814. ERROR_OUT(("CPassword::LockPasswordData: can't gett GCCChallengeRequest"));
  815. goto MyExit;
  816. }
  817. }
  818. else
  819. {
  820. m_pChallengeResponse->u.challenge_request_response.challenge_request = NULL;
  821. }
  823. /*
  824. * Check to see if a challenge response exists. If so,
  825. * create a GCCChallengeResponse to hold the "API" data and
  826. * fill in that structure.
  827. */
  828. if (m_pInternalResponse != NULL)
  829. {
  830. DBG_SAVE_FILE_LINE
  831. m_pChallengeResponse->u.challenge_request_response.
  832. challenge_response = new GCCChallengeResponse;
  833. if (m_pChallengeResponse->u.challenge_request_response.
  834. challenge_response == NULL)
  835. {
  836. ERROR_OUT(("CPassword::LockPasswordData: can't create new GCCChallengeResponse"));
  837. goto MyExit;
  838. }
  840. if (GetGCCChallengeResponse(m_pChallengeResponse->u.
  841. challenge_request_response.challenge_response) != GCC_NO_ERROR)
  842. {
  843. ERROR_OUT(("CPassword::LockPasswordData: can't get GCCChallengeResponse"));
  844. goto MyExit;
  845. }
  846. }
  847. else
  848. {
  849. m_pChallengeResponse->u.challenge_request_response.
  850. challenge_response = NULL;
  851. }
  852. }
  853. }
  854. }
  856. rc = GCC_NO_ERROR;
  858. MyExit:
  860. if (GCC_NO_ERROR != rc)
  861. {
  862. if (! m_fSimplePassword)
  863. {
  864. if (NULL != m_pChallengeResponse)
  865. {
  866. delete m_pChallengeResponse->u.challenge_request_response.challenge_request;
  867. delete m_pChallengeResponse->u.challenge_request_response.challenge_response;
  868. delete m_pChallengeResponse;
  869. m_pChallengeResponse = NULL;
  870. }
  871. }
  872. }
  874. return rc;
  875. }
  878. /*
  879. * GetPasswordData ()
  880. *
  881. * Public Function Description:
  882. * This routine is used to retrieve the password data in the form of
  883. * the "API" structure "GCCPassword". No "challenge" information is
  884. * returned.
  885. */
  886. GCCError CPassword::GetPasswordData(PGCCPassword *gcc_password)
  887. {
  888. GCCError return_value = GCC_NO_ERROR;
  890. /*
  891. * If the pointer to the "API" password data is valid, set the output
  892. * parameter to return a pointer to the "API" password data. Otherwise,
  893. * report that the password data has yet to be locked into the "API" form.
  894. */
  895. if (m_pPassword != NULL)
  896. {
  897. *gcc_password = m_pPassword;
  898. }
  899. else
  900. {
  901. *gcc_password = NULL;
  902. return_value = GCC_ALLOCATION_FAILURE;
  903. ERROR_OUT(("CPassword::GetPasswordData: Error Data Not Locked"));
  904. }
  906. return (return_value);
  907. }
  909. /*
  910. * GetPasswordChallengeData ()
  911. *
  912. * Public Function Description:
  913. * This routine is used to retrieve the password data in the form of
  914. * the "API" structure "GCCChallengeRequestResponse".
  915. */
  916. GCCError CPassword::GetPasswordChallengeData(PGCCChallengeRequestResponse *gcc_challenge_password)
  917. {
  918. GCCError return_value = GCC_NO_ERROR;
  920. /*
  921. * If the pointer to the "API" password challenge data is valid, set the
  922. * output parameter to return a pointer to the "API" password challenge
  923. * data. Otherwise, report that the password data has yet to be locked
  924. * into the "API" form.
  925. */
  926. if (m_pChallengeResponse != NULL)
  927. {
  928. *gcc_challenge_password = m_pChallengeResponse;
  929. }
  930. else
  931. {
  932. *gcc_challenge_password = NULL;
  933. return_value = GCC_ALLOCATION_FAILURE;
  934. ERROR_OUT(("CPassword::GetPasswordData: Error Data Not Locked"));
  935. }
  937. return (return_value);
  938. }
  940. /*
  941. * UnLockPasswordData ()
  942. *
  943. * Public Function Description
  944. * This routine decrements the lock count and frees the memory associated
  945. * with "API" password data when the lock count reaches zero.
  946. */
  947. void CPassword::UnLockPasswordData(void)
  948. {
  949. if (Unlock(FALSE) == 0)
  950. {
  951. /*
  952. * Delete the memory associated with the "API" "simple" password
  953. * data structure.
  954. */
  955. delete m_pPassword;
  956. m_pPassword = NULL;
  958. /*
  959. * Delete the memory associated with the "API" "challenge" password
  960. * data structure.
  961. */
  962. if (m_pChallengeResponse != NULL)
  963. {
  964. if (m_fClearPassword == FALSE)
  965. {
  966. FreeAPIPasswordData();
  967. }
  968. else
  969. {
  970. delete m_pChallengeResponse;
  971. m_pChallengeResponse = NULL;
  972. }
  973. }
  974. }
  976. // we have to call Release() because we used Unlock(FALSE)
  977. Release();
  978. }
  980. /*
  981. * GetPasswordPDU ()
  982. *
  983. * Public Function Description:
  984. * This routine is used to retrieve the password data in the "PDU" form
  985. * of a "Password" structure.
  986. */
  987. GCCError CPassword::GetPasswordPDU(PPassword pdu_password)
  988. {
  989. GCCError return_value = GCC_NO_ERROR;
  991. pdu_password->bit_mask = 0;
  993. /*
  994. * Fill in the numeric portion of the password which must always exist.
  995. */
  996. if (m_pszNumeric != NULL)
  997. {
  998. ::lstrcpyA(pdu_password->numeric, m_pszNumeric);
  999. }
  1000. else
  1001. return_value = GCC_ALLOCATION_FAILURE;
  1003. /*
  1004. * Fill in the optional textual portion of the password if it is present.
  1005. * Set the bitmask in the PDU structure to indicate that the text exists.
  1006. */
  1007. if (m_pwszText != NULL)
  1008. {
  1009. pdu_password->bit_mask |= PASSWORD_TEXT_PRESENT;
  1011. pdu_password->password_text.value = m_pwszText;
  1012. pdu_password->password_text.length= ::lstrlenW(m_pwszText);
  1013. }
  1015. return (return_value);
  1016. }
  1018. /*
  1019. * GetPasswordSelectorPDU ()
  1020. *
  1021. * Public Function Description:
  1022. * This routine is used to retrieve the password data in the "PDU" form
  1023. * of a "PasswordSelector" structure. In a "PasswordSelector" either the
  1024. * numeric or the text version of the password exists, but not both.
  1025. */
  1026. GCCError CPassword::GetPasswordSelectorPDU(PPasswordSelector password_selector_pdu)
  1027. {
  1028. GCCError return_value = GCC_NO_ERROR;
  1030. /*
  1031. * Fill in the version of the password which exists and set
  1032. * the "choice" to indicate what type of password this is.
  1033. */
  1034. if (m_pszNumeric != NULL)
  1035. {
  1036. password_selector_pdu->choice = PASSWORD_SELECTOR_NUMERIC_CHOSEN;
  1038. ::lstrcpyA(password_selector_pdu->u.password_selector_numeric, m_pszNumeric);
  1039. }
  1040. else if (m_pwszText != NULL)
  1041. {
  1042. password_selector_pdu->choice = PASSWORD_SELECTOR_TEXT_CHOSEN;
  1043. password_selector_pdu->u.password_selector_text.value = m_pwszText;
  1044. password_selector_pdu->u.password_selector_text.length = ::lstrlenW(m_pwszText);
  1045. }
  1046. else
  1047. {
  1048. ERROR_OUT(("CPassword::GetPasswordSelectorPDU: No valid data"));
  1049. return_value = GCC_INVALID_PASSWORD;
  1050. }
  1052. return (return_value);
  1053. }
  1055. /*
  1056. * GetPasswordChallengeResponsePDU ()
  1057. *
  1058. * Public Function Description:
  1059. * This routine fills in a password challenge request-response "PDU"
  1060. * structure with the password data.
  1061. */
  1062. GCCError CPassword::GetPasswordChallengeResponsePDU(PPasswordChallengeRequestResponse challenge_pdu)
  1063. {
  1064. GCCError return_value = GCC_NO_ERROR;
  1066. /*
  1067. * Check to see if this is a "simple" password. If it is, then this routine
  1068. * has been called in error.
  1069. */
  1070. if ((challenge_pdu == NULL) || m_fSimplePassword)
  1071. {
  1072. ERROR_OUT(("CPassword::GetPasswordChallengeResponsePDU: no challenge data"));
  1073. return (GCC_INVALID_PARAMETER);
  1074. }
  1076. /*
  1077. * If this is the first time that PDU data has been requested then we must
  1078. * fill in the internal PDU structure and copy it into the structure pointed
  1079. * to by the output parameter. On subsequent calls to "GetPDU" we can just
  1080. * copy the internal PDU structure into the structure pointed to by the
  1081. * output parameter.
  1082. */
  1083. if (m_fValidChallengeResponsePDU == FALSE)
  1084. {
  1085. m_fValidChallengeResponsePDU = TRUE;
  1087. /*
  1088. * Fill in the password challenge PDU structure.
  1089. */
  1090. if (m_fClearPassword)
  1091. {
  1092. /*
  1093. * If this is a clear password then fill in the text or
  1094. * numeric string as well as the choice. Only one form of the
  1095. * password exists for PasswordSelectors such as this.
  1096. */
  1097. m_ChallengeResponsePDU.choice = CHALLENGE_CLEAR_PASSWORD_CHOSEN;
  1099. if (m_pszNumeric != NULL)
  1100. {
  1101. m_ChallengeResponsePDU.u.challenge_clear_password.choice =
  1102. PASSWORD_SELECTOR_NUMERIC_CHOSEN;
  1104. ::lstrcpyA(m_ChallengeResponsePDU.u.challenge_clear_password.u.password_selector_numeric,
  1105. m_pszNumeric);
  1106. }
  1107. else if (m_pwszText != NULL)
  1108. {
  1109. m_ChallengeResponsePDU.u.challenge_clear_password.choice =
  1110. PASSWORD_SELECTOR_TEXT_CHOSEN;
  1112. m_ChallengeResponsePDU.u.challenge_clear_password.u.
  1113. password_selector_text.value = m_pwszText;
  1115. m_ChallengeResponsePDU.u.challenge_clear_password.u.
  1116. password_selector_text.length = ::lstrlenW(m_pwszText);
  1117. }
  1118. else
  1119. {
  1120. ERROR_OUT(("CPassword::GetPwordChallengeResPDU: No valid data"));
  1121. return_value = GCC_INVALID_PASSWORD;
  1122. }
  1123. }
  1124. else
  1125. {
  1126. /*
  1127. * The challenge password contains challenge information. Fill in
  1128. * the request and response structures if they exist.
  1129. */
  1130. m_ChallengeResponsePDU.choice = CHALLENGE_REQUEST_RESPONSE_CHOSEN;
  1131. m_ChallengeResponsePDU.u.challenge_request_response.bit_mask = 0;
  1133. /*
  1134. * Check to see if a "request" exists.
  1135. */
  1136. if (m_pInternalRequest != NULL)
  1137. {
  1138. m_ChallengeResponsePDU.u.challenge_request_response.bit_mask |=
  1139. CHALLENGE_REQUEST_PRESENT;
  1141. /*
  1142. * Call the routine which fills in the PDU form of the
  1143. * request structure.
  1144. */
  1145. return_value = GetChallengeRequestPDU (&m_ChallengeResponsePDU.
  1146. u.challenge_request_response.challenge_request);
  1147. }
  1149. /*
  1150. * Check to see if a "response" exists.
  1151. */
  1152. if ((m_pInternalResponse != NULL) && (return_value == GCC_NO_ERROR))
  1153. {
  1154. m_ChallengeResponsePDU.u.challenge_request_response.bit_mask |=
  1155. CHALLENGE_RESPONSE_PRESENT;
  1157. /*
  1158. * Call the routine which fills in the PDU form of the
  1159. * response structure.
  1160. */
  1161. return_value = GetChallengeResponsePDU (&m_ChallengeResponsePDU.
  1162. u.challenge_request_response.challenge_response);
  1163. }
  1164. }
  1165. }
  1167. /*
  1168. * Copy the internal PDU structure into the structure pointed to by the
  1169. * output parameter.
  1170. */
  1171. *challenge_pdu = m_ChallengeResponsePDU;
  1173. return (return_value);
  1174. }
  1177. /*
  1178. * FreePasswordChallengeResponsePDU ()
  1179. *
  1180. * Public Function Description:
  1181. * This routine is used to free any memory allocated to hold "PDU" data
  1182. * associated with the PasswordChallengeRequestResponse.
  1183. */
  1184. void CPassword::FreePasswordChallengeResponsePDU(void)
  1185. {
  1186. /*
  1187. * Check to see if there has been any "PDU" memory allocated which now
  1188. * needs to be freed.
  1189. */
  1190. if (m_fValidChallengeResponsePDU)
  1191. {
  1192. /*
  1193. * Set the flag indicating that PDU password data is no longer
  1194. * allocated.
  1195. */
  1196. m_fValidChallengeResponsePDU = FALSE;
  1198. /*
  1199. * Check to see what type of password PDU is to be freed. If this is a
  1200. * clear password then no data was allocated which now must be freed.
  1201. */
  1202. if (m_ChallengeResponsePDU.choice == CHALLENGE_REQUEST_RESPONSE_CHOSEN)
  1203. {
  1204. /*
  1205. * This is a challenge password so free any data which was allocated
  1206. * to hold the challenge information. Check the PDU structure
  1207. * bitmask which indicates what form of challenge exists.
  1208. */
  1209. if (m_ChallengeResponsePDU.u.challenge_request_response.bit_mask &
  1210. CHALLENGE_REQUEST_PRESENT)
  1211. {
  1212. FreeChallengeRequestPDU ();
  1213. }
  1215. if (m_ChallengeResponsePDU.u.challenge_request_response.
  1216. bit_mask & CHALLENGE_RESPONSE_PRESENT)
  1217. {
  1218. FreeChallengeResponsePDU ();
  1219. }
  1220. }
  1221. }
  1222. }
  1225. /*
  1226. * GCCError ConvertAPIChallengeRequest(
  1227. * PGCCChallengeRequest challenge_request)
  1228. *
  1229. * Private member function of CPassword.
  1230. *
  1231. * Function Description:
  1232. * This routine is used to copy an "API" challenge request structure into
  1233. * the internal structure.
  1234. *
  1235. * Formal Parameters:
  1236. * challenge_request (i) The API structure to copy internally.
  1237. *
  1238. * Return Value:
  1239. * GCC_NO_ERROR - No error.
  1240. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1241. * "new" operator.
  1242. * GCC_INVALID_PASSWORD - An invalid password passed in.
  1243. *
  1244. * Side Effects:
  1245. * None.
  1246. *
  1247. * Caveats:
  1248. * None.
  1249. */
  1250. GCCError CPassword::ConvertAPIChallengeRequest(PGCCChallengeRequest challenge_request)
  1251. {
  1252. GCCError return_value = GCC_NO_ERROR;
  1253. GCCError error_value;
  1254. Int i;
  1255. PGCCChallengeItem challenge_item_ptr;
  1256. PChallengeItemInfo challenge_item_info_ptr;
  1258. /*
  1259. * Save the challenge tag and number of challenge items in the internal
  1260. * structure.
  1261. */
  1262. m_pInternalRequest->challenge_tag = challenge_request->challenge_tag;
  1264. /*
  1265. * Save the list of challenge items in the internal Rogue Wave List.
  1266. */
  1267. for (i = 0; i < challenge_request->number_of_challenge_items; i++)
  1268. {
  1269. DBG_SAVE_FILE_LINE
  1270. challenge_item_info_ptr = new ChallengeItemInfo;
  1271. if (challenge_item_info_ptr != NULL)
  1272. {
  1273. /*
  1274. * Initialize the pointers in the challenge item info structure
  1275. * to NULL.
  1276. */
  1277. challenge_item_info_ptr->algorithm.object_key = NULL;
  1278. challenge_item_info_ptr->algorithm.poszOctetString = NULL;
  1279. challenge_item_info_ptr->challenge_data_list = NULL;
  1281. /*
  1282. * Insert the pointer to the new challenge item structure into the
  1283. * internal list.
  1284. */
  1285. m_pInternalRequest->ChallengeItemList.Append(challenge_item_info_ptr);
  1287. /*
  1288. * Retrieve the pointer to the challenge item from the input list.
  1289. */
  1290. challenge_item_ptr = challenge_request->challenge_item_list[i];
  1292. /*
  1293. * Copy the challenge response algorithm to the internal structure.
  1294. */
  1295. return_value = CopyResponseAlgorithm (
  1296. &(challenge_item_ptr->response_algorithm),
  1297. &(challenge_item_info_ptr->algorithm));
  1299. if (return_value != GCC_NO_ERROR)
  1300. {
  1301. ERROR_OUT(("Password::ConvertAPIChallengeRequest: Error copying Response Algorithm."));
  1302. break;
  1303. }
  1305. /*
  1306. * Copy the challenge data.
  1307. */
  1308. if ((challenge_item_ptr->number_of_challenge_data_members != 0) &&
  1309. (challenge_item_ptr->challenge_data_list != NULL))
  1310. {
  1311. DBG_SAVE_FILE_LINE
  1312. challenge_item_info_ptr->challenge_data_list = new CUserDataListContainer(
  1313. challenge_item_ptr->number_of_challenge_data_members,
  1314. challenge_item_ptr->challenge_data_list,
  1315. &error_value);
  1316. if ((challenge_item_info_ptr == NULL) ||
  1317. (error_value != GCC_NO_ERROR))
  1318. {
  1319. ERROR_OUT(("Password::ConvertAPIChallengeRequest: can't create CUserDataListContainer."));
  1320. return_value = GCC_ALLOCATION_FAILURE;
  1321. break;
  1322. }
  1323. }
  1324. else
  1325. {
  1326. challenge_item_info_ptr->challenge_data_list = NULL;
  1327. ERROR_OUT(("Password::ConvertAPIChallengeRequest: Error no valid user data."));
  1328. return_value = GCC_INVALID_PASSWORD;
  1329. break;
  1330. }
  1331. }
  1332. else
  1333. {
  1334. ERROR_OUT(("Password::ConvertAPIChallengeRequest: Error creating "
  1335. "new ChallengeItemInfo."));
  1336. return_value = GCC_ALLOCATION_FAILURE;
  1337. break;
  1338. }
  1339. }
  1341. return (return_value);
  1342. }
  1344. /*
  1345. * GCCError ConvertAPIChallengeResponse(
  1346. * PGCCChallengeResponse challenge_response)
  1347. *
  1348. * Private member function of CPassword.
  1349. *
  1350. * Function Description:
  1351. * This routine is used to copy an "API" challenge response structure into
  1352. * the internal structure.
  1353. *
  1354. * Formal Parameters:
  1355. * challenge_response (i) The API structure to copy internally.
  1356. *
  1357. * Return Value:
  1358. * GCC_NO_ERROR - No error.
  1359. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1360. * "new" operator.
  1361. * GCC_INVALID_PASSWORD - An invalid password passed in.
  1362. *
  1363. * Side Effects:
  1364. * None.
  1365. *
  1366. * Caveats:
  1367. * None.
  1368. */
  1369. GCCError CPassword::ConvertAPIChallengeResponse(PGCCChallengeResponse challenge_response)
  1370. {
  1371. GCCError return_value = GCC_NO_ERROR;
  1372. GCCError error_value;
  1374. /*
  1375. * Initialize the challenge response info structure pointers to NULL.
  1376. */
  1377. m_pInternalResponse->challenge_response_item.password = NULL;
  1378. m_pInternalResponse->challenge_response_item.response_data_list = NULL;
  1380. /*
  1381. * Save the challenge tag in the internal structure.
  1382. */
  1383. m_pInternalResponse->challenge_tag = challenge_response->challenge_tag;
  1385. /*
  1386. * Copy the challenge response algorithm to the internal structure.
  1387. */
  1388. return_value = CopyResponseAlgorithm (
  1389. &(challenge_response->response_algorithm),
  1390. &(m_pInternalResponse->algorithm));
  1391. if (return_value != GCC_NO_ERROR)
  1392. {
  1393. ERROR_OUT(("Password::ConvertAPIChallengeResponse: Error copying Response Algorithm."));
  1394. }
  1396. /*
  1397. * Copy the challenge response item into the internal info structure.
  1398. * The challenge response item will consist of either a password string
  1399. * or else a response user data list.
  1400. */
  1401. if (return_value == GCC_NO_ERROR)
  1402. {
  1403. if (challenge_response->response_algorithm.password_algorithm_type ==
  1404. GCC_IN_THE_CLEAR_ALGORITHM)
  1405. {
  1406. if (challenge_response->response_item.password_string != NULL)
  1407. {
  1408. DBG_SAVE_FILE_LINE
  1409. m_pInternalResponse->challenge_response_item.password = new
  1410. CPassword(challenge_response->response_item.password_string, &error_value);
  1411. if ((m_pInternalResponse->challenge_response_item.password ==
  1412. NULL)|| (error_value != GCC_NO_ERROR))
  1413. {
  1414. ERROR_OUT(("Password::ConvertAPIChallengeResp: Error creating new CPassword."));
  1415. return_value = GCC_ALLOCATION_FAILURE;
  1416. }
  1417. }
  1418. else
  1419. return_value = GCC_INVALID_PASSWORD;
  1420. }
  1421. else
  1422. {
  1423. if ((challenge_response->response_item.
  1424. number_of_response_data_members != 0) &&
  1425. (challenge_response->response_item.response_data_list != NULL))
  1426. {
  1427. /*
  1428. * Save the response data list in a CUserDataListContainer object.
  1429. */
  1430. DBG_SAVE_FILE_LINE
  1431. m_pInternalResponse->challenge_response_item.response_data_list =
  1432. new CUserDataListContainer(challenge_response->response_item.number_of_response_data_members,
  1433. challenge_response->response_item.response_data_list,
  1434. &error_value);
  1435. if ((m_pInternalResponse->challenge_response_item.response_data_list == NULL) ||
  1436. (error_value != GCC_NO_ERROR))
  1437. {
  1438. ERROR_OUT(("Password::ConvertAPIChallengeResponse: can't create CUserDataListContainer."));
  1439. return_value = GCC_ALLOCATION_FAILURE;
  1440. }
  1441. }
  1442. else
  1443. return_value = GCC_INVALID_PASSWORD;
  1444. }
  1445. }
  1447. /*
  1448. * Check to make sure one type of response item was saved.
  1449. */
  1450. if ((return_value == GCC_NO_ERROR) &&
  1451. (m_pInternalResponse->challenge_response_item.password == NULL) &&
  1452. (m_pInternalResponse->challenge_response_item.response_data_list ==
  1453. NULL))
  1454. {
  1455. ERROR_OUT(("Password::ConvertAPIChallengeResponse: Error no valid response item saved."));
  1456. return_value = GCC_ALLOCATION_FAILURE;
  1457. }
  1459. return (return_value);
  1460. }
  1462. /*
  1463. * GCCError CopyResponseAlgorithm(
  1464. * PGCCChallengeResponseAlgorithm source_algorithm,
  1465. * PResponseAlgorithmInfo destination_algorithm)
  1466. *
  1467. * Private member function of CPassword.
  1468. *
  1469. * Function Description:
  1470. * This routine is used to copy an "API" response algorithm into the
  1471. * internal storage structure.
  1472. *
  1473. * Formal Parameters:
  1474. * source_algorithm (i) The API algorithm structure to copy
  1475. * internally.
  1476. * destination_algorithm (o) Pointer to the internal algorithm structure
  1477. * which will hold the converted item.
  1478. *
  1479. * Return Value:
  1480. * GCC_NO_ERROR - No error.
  1481. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1482. * "new" operator.
  1483. * GCC_INVALID_PASSWORD - An invalid password passed in.
  1484. *
  1485. * Side Effects:
  1486. * None.
  1487. *
  1488. * Caveats:
  1489. * None.
  1490. */
  1491. GCCError CPassword::CopyResponseAlgorithm(
  1492. PGCCChallengeResponseAlgorithm source_algorithm,
  1493. PResponseAlgorithmInfo destination_algorithm)
  1494. {
  1495. GCCError return_value = GCC_NO_ERROR;
  1496. GCCError error_value;
  1498. /*
  1499. * Copy the challenge response algorithm.
  1500. */
  1501. destination_algorithm->algorithm_type = source_algorithm->
  1502. password_algorithm_type;
  1504. if (destination_algorithm->algorithm_type == GCC_NON_STANDARD_ALGORITHM)
  1505. {
  1506. /*
  1507. * Create a new CObjectKeyContainer object to hold the algorithm's object key
  1508. * internally.
  1509. */
  1510. DBG_SAVE_FILE_LINE
  1511. destination_algorithm->object_key = new CObjectKeyContainer(
  1512. &source_algorithm->non_standard_algorithm->object_key,
  1513. &error_value);
  1514. if (destination_algorithm->object_key == NULL)
  1515. {
  1516. ERROR_OUT(("CPassword::CopyResponseAlgorithm: Error creating new CObjectKeyContainer"));
  1517. return_value = GCC_ALLOCATION_FAILURE;
  1518. }
  1519. else if (error_value != GCC_NO_ERROR)
  1520. {
  1521. ERROR_OUT(("CPassword::CopyResponseAlgorithm: Error creating new CObjectKeyContainer"));
  1522. return_value = GCC_INVALID_PASSWORD;
  1523. }
  1525. if (return_value == GCC_NO_ERROR)
  1526. {
  1527. /*
  1528. * Create a new Rogue Wave string to hold the algorithm's octet
  1529. * string internally.
  1530. */
  1531. if (NULL == (destination_algorithm->poszOctetString = ::My_strdupO2(
  1532. source_algorithm->non_standard_algorithm->parameter_data.value,
  1533. source_algorithm->non_standard_algorithm->parameter_data.length)))
  1534. {
  1535. ERROR_OUT(("CPassword::CopyResponseAlgorithm: can't create octet string in algorithm"));
  1536. return_value = GCC_ALLOCATION_FAILURE;
  1537. }
  1538. }
  1539. else
  1540. destination_algorithm->poszOctetString = NULL;
  1541. }
  1542. else
  1543. {
  1544. /*
  1545. * The algorithm is a standard type so initialize to NULL the pointers
  1546. * used to hold the data associated with a non-standard algorithm.
  1547. */
  1548. destination_algorithm->object_key = NULL;
  1549. destination_algorithm->poszOctetString = NULL;
  1550. }
  1552. return (return_value);
  1553. }
  1555. /*
  1556. * GCCError ConvertPDUChallengeRequest (
  1557. * PChallengeRequest challenge_request);
  1558. *
  1559. * Private member function of CPassword.
  1560. *
  1561. * Function Description:
  1562. * This routine is used to copy a "PDU" challenge request structure into
  1563. * the internal storage structure.
  1564. *
  1565. * Formal Parameters:
  1566. * challenge_request (i) The API structure to copy internally.
  1567. *
  1568. * Return Value:
  1569. * GCC_NO_ERROR - No error.
  1570. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1571. * "new" operator.
  1572. * GCC_INVALID_PASSWORD - An invalid password passed in.
  1573. *
  1574. * Side Effects:
  1575. * None.
  1576. *
  1577. * Caveats:
  1578. * None.
  1579. */
  1580. GCCError CPassword::ConvertPDUChallengeRequest(PChallengeRequest challenge_request)
  1581. {
  1582. GCCError return_value = GCC_NO_ERROR;
  1583. PSetOfChallengeItems current_challenge_item_set;
  1584. PSetOfChallengeItems next_challenge_item_set;
  1586. /*
  1587. * Save the challenge tag in the internal structure.
  1588. */
  1589. m_pInternalRequest->challenge_tag = challenge_request->challenge_tag;
  1591. if (challenge_request->set_of_challenge_items != NULL)
  1592. {
  1593. /*
  1594. * Loop through the PDU set of challenge items, converting each into
  1595. * the internal form.
  1596. */
  1597. current_challenge_item_set = challenge_request->set_of_challenge_items;
  1598. while (1)
  1599. {
  1600. next_challenge_item_set = current_challenge_item_set->next;
  1602. /*
  1603. * The routine which converts the challenge items saves the internal
  1604. * form in a Rogue Wave list.
  1605. */
  1606. if (ConvertPDUChallengeItem (&current_challenge_item_set->value) !=
  1607. GCC_NO_ERROR)
  1608. {
  1609. return_value = GCC_ALLOCATION_FAILURE;
  1610. break;
  1611. }
  1613. if (next_challenge_item_set != NULL)
  1614. current_challenge_item_set = next_challenge_item_set;
  1615. else
  1616. break;
  1617. }
  1618. }
  1620. return (return_value);
  1621. }
  1624. /*
  1625. * GCCError ConvertPDUChallengeItem (
  1626. * PChallengeItem challenge_item_ptr);
  1627. *
  1628. * Private member function of CPassword.
  1629. *
  1630. * Function Description:
  1631. * This routine is used to copy a "PDU" ChallengeItem structure into
  1632. * the internal ChallengeItemInfo storage structure.
  1633. *
  1634. * Formal Parameters:
  1635. * challenge_item_ptr (i) The PDU structure to copy internally.
  1636. *
  1637. * Return Value:
  1638. * GCC_NO_ERROR - No error.
  1639. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1640. * "new" operator.
  1641. * GCC_INVALID_PASSWORD - An invalid password passed in.
  1642. *
  1643. * Side Effects:
  1644. * None.
  1645. *
  1646. * Caveats:
  1647. * None.
  1648. */
  1649. GCCError CPassword::ConvertPDUChallengeItem(PChallengeItem challenge_item_ptr)
  1650. {
  1651. PChallengeItemInfo challenge_item_info_ptr;
  1652. GCCError return_value = GCC_NO_ERROR;
  1653. GCCError error_value = GCC_NO_ERROR;
  1655. /*
  1656. * Create a new challenge item and save it in the internal Rogue Wave List.
  1657. */
  1658. DBG_SAVE_FILE_LINE
  1659. challenge_item_info_ptr = new ChallengeItemInfo;
  1660. if (challenge_item_info_ptr != NULL)
  1661. {
  1662. /*
  1663. * Insert the pointer to the new challenge item structure into the
  1664. * internal Rogue Wave list.
  1665. */
  1666. challenge_item_info_ptr->challenge_data_list = NULL;
  1668. m_pInternalRequest->ChallengeItemList.Append(challenge_item_info_ptr);
  1670. /*
  1671. * Convert the challenge response algorithm to the internal structure.
  1672. */
  1673. if (ConvertPDUResponseAlgorithm(
  1674. &(challenge_item_ptr->response_algorithm),
  1675. &(challenge_item_info_ptr->algorithm)) != GCC_NO_ERROR)
  1676. {
  1677. ERROR_OUT(("Password::ConvertAPIChallengeItem: Error converting Response Algorithm."));
  1678. return_value = GCC_ALLOCATION_FAILURE;
  1679. }
  1681. /*
  1682. * Convert the challenge data to internal form.
  1683. */
  1684. if ((return_value == GCC_NO_ERROR) &&
  1685. (challenge_item_ptr->set_of_challenge_data != NULL))
  1686. {
  1687. DBG_SAVE_FILE_LINE
  1688. challenge_item_info_ptr->challenge_data_list = new CUserDataListContainer(
  1689. challenge_item_ptr->set_of_challenge_data,
  1690. &error_value);
  1691. if ((challenge_item_info_ptr->challenge_data_list == NULL) ||
  1692. (error_value != GCC_NO_ERROR))
  1693. {
  1694. ERROR_OUT(("Password::ConvertAPIChallengeItem: can't create CUserDataListContainer."));
  1695. return_value = GCC_ALLOCATION_FAILURE;
  1696. }
  1697. }
  1698. else
  1699. {
  1700. ERROR_OUT(("Password::ConvertAPIChallengeItem: Error no valid user data"));
  1701. return_value = GCC_INVALID_PASSWORD;
  1702. }
  1703. }
  1704. else
  1705. {
  1706. ERROR_OUT(("Password::ConvertAPIChallengeItem: Error creating "
  1707. "new ChallengeItemInfo."));
  1708. return_value = GCC_ALLOCATION_FAILURE;
  1709. }
  1711. return (return_value);
  1712. }
  1714. /*
  1715. * GCCError ConvertPDUChallengeResponse (
  1716. * PChallengeResponse challenge_response)
  1717. *
  1718. * Private member function of CPassword.
  1719. *
  1720. * Function Description:
  1721. * This routine is used to copy a "PDU" challenge response structure into
  1722. * the internal structure.
  1723. *
  1724. * Formal Parameters:
  1725. * challenge_response (i) The API structure to copy internally.
  1726. *
  1727. * Return Value:
  1728. * GCC_NO_ERROR - No error.
  1729. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1730. * "new" operator.
  1731. *
  1732. * Side Effects:
  1733. * None.
  1734. *
  1735. * Caveats:
  1736. * None.
  1737. */
  1738. GCCError CPassword::ConvertPDUChallengeResponse(PChallengeResponse challenge_response)
  1739. {
  1740. GCCError return_value = GCC_NO_ERROR;
  1741. GCCError error_value = GCC_NO_ERROR;
  1743. /*
  1744. * Save the challenge tag in the internal structure.
  1745. */
  1746. m_pInternalResponse->challenge_tag = challenge_response->challenge_tag;
  1748. /*
  1749. * Convert the challenge response algorithm to the internal structure.
  1750. */
  1751. if (ConvertPDUResponseAlgorithm(
  1752. &(challenge_response->response_algorithm),
  1753. &(m_pInternalResponse->algorithm)) != GCC_NO_ERROR)
  1754. {
  1755. ERROR_OUT(("Password::ConvertPDUChallengeResponse: Error converting Response Algorithm."));
  1756. return_value = GCC_ALLOCATION_FAILURE;
  1757. }
  1759. /*
  1760. * Check to see what form the challenge response item has taken. Create
  1761. * the necessary object to hold the item internally.
  1762. */
  1763. if ((challenge_response->response_item.choice == PASSWORD_STRING_CHOSEN) &&
  1764. (return_value == GCC_NO_ERROR))
  1765. {
  1766. DBG_SAVE_FILE_LINE
  1767. m_pInternalResponse->challenge_response_item.password = new CPassword(
  1768. &challenge_response->response_item.u.password_string,
  1769. &error_value);
  1770. if ((m_pInternalResponse->challenge_response_item.password == NULL) ||
  1771. (error_value != GCC_NO_ERROR))
  1772. {
  1773. ERROR_OUT(("Password::ConvertPDUChallengeResponse: Error creating new CPassword."));
  1774. return_value = GCC_ALLOCATION_FAILURE;
  1775. }
  1776. }
  1777. else
  1778. m_pInternalResponse->challenge_response_item.password = NULL;
  1780. if ((challenge_response->response_item.choice ==
  1781. SET_OF_RESPONSE_DATA_CHOSEN) && (return_value == GCC_NO_ERROR))
  1782. {
  1783. DBG_SAVE_FILE_LINE
  1784. m_pInternalResponse->challenge_response_item.response_data_list =
  1785. new CUserDataListContainer(challenge_response->response_item.u.set_of_response_data,
  1786. &error_value);
  1787. if ((m_pInternalResponse->challenge_response_item.
  1788. response_data_list == NULL) || (error_value != GCC_NO_ERROR))
  1789. {
  1790. ERROR_OUT(("Password::ConvertPDUChallengeResponse: can't create CUserDataListContainer."));
  1791. return_value = GCC_ALLOCATION_FAILURE;
  1792. }
  1793. }
  1794. else
  1795. {
  1796. m_pInternalResponse->challenge_response_item.response_data_list = NULL;
  1797. }
  1799. return (return_value);
  1800. }
  1802. /*
  1803. * GCCError ConvertPDUResponseAlgorithm (
  1804. * PChallengeResponseAlgorithm source_algorithm,
  1805. * PResponseAlgorithmInfo destination_algorithm);
  1806. *
  1807. * Private member function of CPassword.
  1808. *
  1809. * Function Description:
  1810. * This routine is used to convert a "PDU" response algorithm
  1811. * structure into the internal form.
  1812. *
  1813. * Formal Parameters:
  1814. * source_algorithm (i) The PDU algorithm structure to copy
  1815. * internally.
  1816. * destination_algorithm (o) Pointer to the internal structure which will
  1817. * hold the converted item.
  1818. *
  1819. * Return Value:
  1820. * GCC_NO_ERROR - No error.
  1821. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1822. * "new" operator.
  1823. * GCC_INVALID_PARAMETER - A NULL pointer was passed in or
  1824. * the algorithm has invalid type.
  1825. * GCC_INVALID_PASSWORD - An invalid password was passed in.
  1826. *
  1827. * Side Effects:
  1828. * None.
  1829. *
  1830. * Caveats:
  1831. * None.
  1832. */
  1833. GCCError CPassword::ConvertPDUResponseAlgorithm(
  1834. PChallengeResponseAlgorithm source_algorithm,
  1835. PResponseAlgorithmInfo destination_algorithm)
  1836. {
  1837. GCCError return_value = GCC_NO_ERROR;
  1838. GCCError error_value;;
  1840. if (source_algorithm != NULL)
  1841. {
  1842. /*
  1843. * Convert the challenge response algorithm type.
  1844. */
  1845. if (source_algorithm->choice == ALGORITHM_CLEAR_PASSWORD_CHOSEN)
  1846. destination_algorithm->algorithm_type = GCC_IN_THE_CLEAR_ALGORITHM;
  1847. else if (source_algorithm->choice == NON_STANDARD_ALGORITHM_CHOSEN)
  1848. destination_algorithm->algorithm_type = GCC_NON_STANDARD_ALGORITHM;
  1849. else
  1850. {
  1851. ERROR_OUT(("CPassword::ConvertPDUResponseAlgorithm: Error: invalid password type"));
  1852. return_value = GCC_INVALID_PARAMETER;
  1853. }
  1854. }
  1855. else
  1856. {
  1857. ERROR_OUT(("CPassword::ConvertPDUResponseAlgorithm: Error: NULL source pointer."));
  1858. return_value = GCC_INVALID_PARAMETER;
  1859. }
  1861. if ((return_value == GCC_NO_ERROR) &&
  1862. (source_algorithm->choice == NON_STANDARD_ALGORITHM_CHOSEN))
  1863. {
  1864. /*
  1865. * Create a new CObjectKeyContainer object to hold the algorithm's object key
  1866. * internally.
  1867. */
  1868. DBG_SAVE_FILE_LINE
  1869. destination_algorithm->object_key = new CObjectKeyContainer(
  1870. &source_algorithm->u.non_standard_algorithm.key,
  1871. &error_value);
  1872. if (destination_algorithm->object_key == NULL)
  1873. {
  1874. ERROR_OUT(("CPassword::ConvertPDUResponseAlgorithm: Error creating new CObjectKeyContainer"));
  1875. return_value = GCC_ALLOCATION_FAILURE;
  1876. }
  1877. else if (error_value != GCC_NO_ERROR)
  1878. {
  1879. ERROR_OUT(("CPassword::ConvertPDUResponseAlgorithm: Error creating new CObjectKeyContainer"));
  1880. return_value = GCC_INVALID_PASSWORD;
  1881. }
  1882. else
  1883. {
  1884. /*
  1885. * Create a new Rogue Wave string to hold the algorithm's octet
  1886. * string internally.
  1887. */
  1888. if (NULL == (destination_algorithm->poszOctetString = ::My_strdupO2(
  1889. source_algorithm->u.non_standard_algorithm.data.value,
  1890. source_algorithm->u.non_standard_algorithm.data.length)))
  1891. {
  1892. ERROR_OUT(("CPassword::ConvertPDUResponseAlgorithm: can't create octet string in algorithm"));
  1893. return_value = GCC_ALLOCATION_FAILURE;
  1894. }
  1895. }
  1896. }
  1897. else
  1898. {
  1899. /*
  1900. * The algorithm is a standard type so initialize to NULL the pointers
  1901. * used to hold the data associated with a non-standard algorithm.
  1902. */
  1903. destination_algorithm->poszOctetString = NULL;
  1904. destination_algorithm->object_key = NULL;
  1905. }
  1907. return (return_value);
  1908. }
  1911. /*
  1912. * GCCError GetGCCChallengeRequest (
  1913. * PGCCChallengeRequest challenge_request)
  1914. *
  1915. * Private member function of CPassword.
  1916. *
  1917. * Function Description:
  1918. * This routine is used to fill in the internal "API" challenge request
  1919. * structure from the internal storage structures. This is done on a
  1920. * "lock" in order to make data available which is suitable for being
  1921. * passed back up through the API.
  1922. *
  1923. * Formal Parameters:
  1924. * challenge_request (i) The API structure to fill in with the "API"
  1925. * challenge request data.
  1926. *
  1927. * Return Value:
  1928. * GCC_NO_ERROR - No error.
  1929. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  1930. * "new" operator.
  1931. *
  1932. * Side Effects:
  1933. * None.
  1934. *
  1935. * Caveats:
  1936. * None.
  1937. */
  1938. GCCError CPassword::GetGCCChallengeRequest(PGCCChallengeRequest challenge_request)
  1939. {
  1940. GCCError return_value = GCC_NO_ERROR;
  1941. UInt i = 0;
  1942. Int j = 0;
  1943. PGCCChallengeItem api_challenge_item_ptr;
  1944. PChallengeItemInfo internal_challenge_item_ptr;
  1945. PChallengeItemMemoryInfo internal_challenge_item_memory_ptr;
  1946. UINT object_key_length;
  1947. UINT user_data_length;
  1949. /*
  1950. * Save the challenge tag and retrieve the number of challenge items.
  1951. */
  1952. challenge_request->challenge_tag = m_pInternalRequest->challenge_tag;
  1954. challenge_request->number_of_challenge_items =
  1955. (USHORT) m_pInternalRequest->ChallengeItemList.GetCount();
  1957. if (m_pInternalRequest->ChallengeItemList.GetCount() != 0)
  1958. {
  1959. /*
  1960. * Allocate the space needed for the list of pointers to GCC challenge
  1961. * items.
  1962. */
  1963. DBG_SAVE_FILE_LINE
  1964. m_pChallengeItemListMemory = new BYTE[sizeof(PGCCChallengeItem) * m_pInternalRequest->ChallengeItemList.GetCount()];
  1965. if (m_pChallengeItemListMemory != NULL)
  1966. {
  1967. PChallengeItemInfo lpChItmInfo;
  1969. /*
  1970. * Retrieve the actual pointer to memory from the Memory object
  1971. * and save it in the internal API Challenge Item list.
  1972. */
  1973. challenge_request->challenge_item_list = (GCCChallengeItem **)
  1974. m_pChallengeItemListMemory;
  1976. /*
  1977. * Initialize the pointers in the list to NULL.
  1978. */
  1979. for (i=0; i < m_pInternalRequest->ChallengeItemList.GetCount(); i++)
  1980. challenge_request->challenge_item_list[i] = NULL;
  1982. /*
  1983. * Copy the data from the internal list of "ChallengeItemInfo"
  1984. * structures into the "API" form which is a list of pointers
  1985. * to GCCChallengeItem structures.
  1986. */
  1987. m_pInternalRequest->ChallengeItemList.Reset();
  1988. while (NULL != (lpChItmInfo = m_pInternalRequest->ChallengeItemList.Iterate()))
  1989. {
  1990. /*
  1991. * Get a pointer to a new GCCChallengeItem structure.
  1992. */
  1993. DBG_SAVE_FILE_LINE
  1994. api_challenge_item_ptr = new GCCChallengeItem;
  1995. if (api_challenge_item_ptr != NULL)
  1996. {
  1997. /*
  1998. * Go ahead and put the pointer in the list and
  1999. * post-increment the loop counter.
  2000. */
  2001. challenge_request->challenge_item_list[j++] =
  2002. api_challenge_item_ptr;
  2004. /*
  2005. * Retrieve the ChallengeItemInfo structure from the Rogue
  2006. * Wave list.
  2007. */
  2008. internal_challenge_item_ptr = lpChItmInfo;
  2010. /*
  2011. * Fill in the algorithm type for the challenge response
  2012. * algorithm.
  2013. */
  2014. api_challenge_item_ptr->response_algorithm.
  2015. password_algorithm_type =
  2016. internal_challenge_item_ptr->
  2017. algorithm.algorithm_type;
  2019. /*
  2020. * The memory for the response algorithm's object key data
  2021. * and the challenge item's used data are stored in
  2022. * a ChallengeItemMemoryInfo structure so create one
  2023. * here. If the response algorithm is "clear" then the
  2024. * object key data element will not be used. The challenge
  2025. * item user data should always exist.
  2026. */
  2027. DBG_SAVE_FILE_LINE
  2028. internal_challenge_item_memory_ptr = new ChallengeItemMemoryInfo;
  2029. if (internal_challenge_item_memory_ptr != NULL)
  2030. {
  2031. /*
  2032. * Initialize the pointers in the challenge item
  2033. * memory info structure to NULL.
  2034. */
  2035. internal_challenge_item_memory_ptr->user_data_list_memory = NULL;
  2036. internal_challenge_item_memory_ptr->object_key_memory = NULL;
  2038. /*
  2039. * Insert the pointer to the new challenge item
  2040. * memory structure into the internal Rogue Wave
  2041. * list.
  2042. */
  2043. m_ChallengeItemMemoryList.Append(internal_challenge_item_memory_ptr);
  2044. }
  2045. else
  2046. {
  2047. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error creating new ChallengeItemMemoryInfo"));
  2048. return_value = GCC_ALLOCATION_FAILURE;
  2049. break;
  2050. }
  2052. if (api_challenge_item_ptr->response_algorithm.password_algorithm_type ==
  2053. GCC_NON_STANDARD_ALGORITHM)
  2054. {
  2055. /*
  2056. * Create a new GCCNonStandardParameter to put in the
  2057. * ResponseAlgorithm structure.
  2058. */
  2059. DBG_SAVE_FILE_LINE
  2060. api_challenge_item_ptr->response_algorithm.non_standard_algorithm =
  2061. new GCCNonStandardParameter;
  2063. if (api_challenge_item_ptr->response_algorithm.non_standard_algorithm == NULL)
  2064. {
  2065. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error creating new GCCNonStdParameter"));
  2066. return_value = GCC_ALLOCATION_FAILURE;
  2067. break;
  2068. }
  2070. /*
  2071. * Retrieve the API object key from the CObjectKeyContainer
  2072. * object in the ResponseAlgorithmInfo structure and
  2073. * fill in the GCCObjectKey in the non-standard
  2074. * algorithm. The CObjectKeyContainer object must be locked
  2075. * before getting the data.
  2076. */
  2077. object_key_length = internal_challenge_item_ptr->
  2078. algorithm.object_key->LockObjectKeyData ();
  2080. DBG_SAVE_FILE_LINE
  2081. internal_challenge_item_memory_ptr->object_key_memory =
  2082. new BYTE[object_key_length];
  2083. if (internal_challenge_item_memory_ptr->object_key_memory != NULL)
  2084. {
  2085. internal_challenge_item_ptr->algorithm.object_key->GetGCCObjectKeyData(
  2086. &(api_challenge_item_ptr->response_algorithm.non_standard_algorithm->object_key),
  2087. internal_challenge_item_memory_ptr->object_key_memory);
  2088. }
  2089. else
  2090. {
  2091. ERROR_OUT(("CPassword::GetGCCChallengeReq: Error Allocating Memory"));
  2092. return_value = GCC_ALLOCATION_FAILURE;
  2093. break;
  2094. }
  2096. /*
  2097. * Fill in the parameter data for the non-standard
  2098. * algorithm. This includes the octet string pointer
  2099. * and length.
  2100. */
  2101. api_challenge_item_ptr->response_algorithm.non_standard_algorithm->
  2102. parameter_data.value =
  2103. internal_challenge_item_ptr->algorithm.poszOctetString->value;
  2105. api_challenge_item_ptr->response_algorithm.non_standard_algorithm->
  2106. parameter_data.length =
  2107. internal_challenge_item_ptr->algorithm.poszOctetString->length;
  2108. }
  2109. else
  2110. {
  2111. /*
  2112. * The algorithm is not a non-standard type so set the
  2113. * non-standard pointer to NULL.
  2114. */
  2115. api_challenge_item_ptr->response_algorithm.non_standard_algorithm = NULL;
  2116. }
  2118. /*
  2119. * Retrieve the API challenge data from the CUserDataListContainer
  2120. * object. The call to GetUserDataList also returns the
  2121. * number of user data members. The CUserDataListContainer object
  2122. * must be locked before getting the data in order to
  2123. * determine how much memory to allocate to hold the data.
  2124. */
  2125. if (internal_challenge_item_ptr->challenge_data_list != NULL)
  2126. {
  2127. user_data_length = internal_challenge_item_ptr->
  2128. challenge_data_list->LockUserDataList ();
  2130. /*
  2131. * The memory for the user data is stored in the
  2132. * ChallengeItemMemoryInfo structure created above.
  2133. */
  2134. DBG_SAVE_FILE_LINE
  2135. internal_challenge_item_memory_ptr->user_data_list_memory =
  2136. new BYTE[user_data_length];
  2137. if (internal_challenge_item_memory_ptr->user_data_list_memory != NULL)
  2138. {
  2139. /*
  2140. * Retrieve the actual pointer to memory from the
  2141. * Memory object and save it in the internal user
  2142. * data memory.
  2143. */
  2144. internal_challenge_item_ptr->challenge_data_list->GetUserDataList(
  2145. &api_challenge_item_ptr->number_of_challenge_data_members,
  2146. &api_challenge_item_ptr->challenge_data_list,
  2147. internal_challenge_item_memory_ptr->user_data_list_memory);
  2148. }
  2149. else
  2150. {
  2151. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error Allocating Memory"));
  2152. return_value = GCC_ALLOCATION_FAILURE;
  2153. break;
  2154. }
  2155. }
  2156. else
  2157. {
  2158. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error no valid user data"));
  2159. return_value = GCC_ALLOCATION_FAILURE;
  2160. break;
  2161. }
  2162. }
  2163. else
  2164. {
  2165. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error creating new GCCChallengeItem"));
  2166. return_value = GCC_ALLOCATION_FAILURE;
  2167. break;
  2168. }
  2169. /*
  2170. * This is the end of the challenge item iterator loop.
  2171. */
  2172. }
  2173. }
  2174. else
  2175. {
  2176. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error Allocating Memory"));
  2177. return_value = GCC_ALLOCATION_FAILURE;
  2178. }
  2179. }
  2180. else
  2181. {
  2182. /*
  2183. * There are no challenge items in the list so set the list pointer
  2184. * to NULL.
  2185. */
  2186. challenge_request->challenge_item_list = NULL;
  2187. }
  2189. return (return_value);
  2190. }
  2192. /*
  2193. * GCCError GetGCCChallengeResponse (
  2194. * PGCCChallengeResponse challenge_response);
  2195. *
  2196. * Private member function of CPassword.
  2197. *
  2198. * Function Description:
  2199. * This routine is used to fill in the internal "API" challenge response
  2200. * structure from the internal storage structures. This is done on a
  2201. * "lock" in order to make data available which is suitable for being
  2202. * passed back up through the API.
  2203. *
  2204. * Formal Parameters:
  2205. * challenge_response (i) The API structure to fill in with the "API"
  2206. * challenge response data.
  2207. *
  2208. * Return Value:
  2209. * GCC_NO_ERROR - No error.
  2210. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  2211. * "new" operator.
  2212. *
  2213. * Side Effects:
  2214. * None.
  2215. *
  2216. * Caveats:
  2217. * None.
  2218. */
  2219. GCCError CPassword::GetGCCChallengeResponse(PGCCChallengeResponse challenge_response)
  2220. {
  2221. GCCError return_value = GCC_NO_ERROR;
  2222. UINT object_key_length;
  2223. UINT user_data_length;
  2225. challenge_response->challenge_tag = m_pInternalResponse->challenge_tag;
  2227. /*
  2228. * Fill in the algorithm type for the challenge response algorithm.
  2229. */
  2230. challenge_response->response_algorithm.password_algorithm_type =
  2231. m_pInternalResponse->algorithm.algorithm_type;
  2233. /*
  2234. * If the response algorithm is of non-standard type, create a new
  2235. * GCCNonStandardParameter to put in the ResponseAlgorithm structure.
  2236. */
  2237. if (challenge_response->response_algorithm.password_algorithm_type ==
  2238. GCC_NON_STANDARD_ALGORITHM)
  2239. {
  2240. DBG_SAVE_FILE_LINE
  2241. challenge_response->response_algorithm.non_standard_algorithm =
  2242. new GCCNonStandardParameter;
  2243. if (challenge_response->response_algorithm.non_standard_algorithm ==
  2244. NULL)
  2245. {
  2246. ERROR_OUT(("CPassword::GetGCCChallengeResponse: Error creating new GCCNonStandardParameter"));
  2247. return_value = GCC_ALLOCATION_FAILURE;
  2248. }
  2249. else
  2250. {
  2251. /*
  2252. * Retrieve the API object key from the CObjectKeyContainer object in the
  2253. * ResponseAlgorithmInfo structure and fill in the GCCObjectKey in
  2254. * the non-standard algorithm. The CObjectKeyContainer object must be
  2255. * locked before getting the data.
  2256. */
  2257. object_key_length = m_pInternalResponse->algorithm.object_key->
  2258. LockObjectKeyData ();
  2260. DBG_SAVE_FILE_LINE
  2261. m_pObjectKeyMemory = new BYTE[object_key_length];
  2262. if (m_pObjectKeyMemory != NULL)
  2263. {
  2264. m_pInternalResponse->algorithm.object_key->
  2265. GetGCCObjectKeyData (&(challenge_response->
  2266. response_algorithm.non_standard_algorithm->
  2267. object_key),
  2268. m_pObjectKeyMemory);
  2269. }
  2270. else
  2271. {
  2272. ERROR_OUT(("CPassword::GetGCCChallengeResponse: Error Allocating Memory"));
  2273. return_value = GCC_ALLOCATION_FAILURE;
  2274. }
  2276. /*
  2277. * Fill in the parameter data for the non-standard algorithm.
  2278. */
  2279. if (return_value == GCC_NO_ERROR)
  2280. {
  2281. /*
  2282. * Fill in the octet string pointer and length.
  2283. */
  2284. challenge_response->response_algorithm.non_standard_algorithm->
  2285. parameter_data.value =
  2286. m_pInternalResponse->algorithm.poszOctetString->value;
  2288. challenge_response->response_algorithm.non_standard_algorithm->
  2289. parameter_data.length =
  2290. m_pInternalResponse->algorithm.poszOctetString->length;
  2291. }
  2292. else
  2293. {
  2294. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error getting GCCObjectKeyData"));
  2295. return_value = GCC_ALLOCATION_FAILURE;
  2296. }
  2297. }
  2298. }
  2299. else
  2300. {
  2301. /*
  2302. * The algorithm in not non-standard so set the non-standard algorithm
  2303. * pointer to NULL.
  2304. */
  2305. challenge_response->response_algorithm.non_standard_algorithm = NULL;
  2306. }
  2308. /*
  2309. * Now fill in the challenge response item in the challenge response
  2310. * structure.
  2311. */
  2312. if (return_value == GCC_NO_ERROR)
  2313. {
  2314. /*
  2315. * Check to see whether the challenge response item consists of a
  2316. * password string or a set of user data. Fill in the appropriate
  2317. * part.
  2318. */
  2319. if (m_pInternalResponse->challenge_response_item.password != NULL)
  2320. {
  2321. /*
  2322. * Set the number of user data members to zero to avoid any
  2323. * confusion at the application. This should match up with the
  2324. * algorithm being set to "in the clear".
  2325. */
  2326. challenge_response->response_item.
  2327. number_of_response_data_members = 0;
  2328. challenge_response->response_item.
  2329. response_data_list = NULL;
  2331. /*
  2332. * Retrieve the API GCCPassword from the CPassword object. The
  2333. * CPassword object must be locked before getting the data.
  2334. */
  2335. if (m_pInternalResponse->challenge_response_item.
  2336. password->LockPasswordData () == GCC_NO_ERROR)
  2337. {
  2338. return_value = m_pInternalResponse->challenge_response_item.
  2339. password->GetPasswordData (&(challenge_response->
  2340. response_item.password_string));
  2341. }
  2342. else
  2343. {
  2344. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error locking CPassword"));
  2345. return_value = GCC_ALLOCATION_FAILURE;
  2346. }
  2347. }
  2348. else if (m_pInternalResponse->challenge_response_item.response_data_list != NULL)
  2349. {
  2350. /*
  2351. * Set the password string to NULL to avoid any confusion at the
  2352. * application. This should match up with the algorithm set to
  2353. * non-standard.
  2354. */
  2355. challenge_response->response_item.password_string = NULL;
  2357. /*
  2358. * Retrieve the API challenge data from the CUserDataListContainer
  2359. * object. The call to GetUserDataList also returns the
  2360. * number of user data members. The CUserDataListContainer object
  2361. * must be locked before getting the data in order to
  2362. * determine how much memory to allocate to hold the data.
  2363. */
  2364. user_data_length = m_pInternalResponse->challenge_response_item.
  2365. response_data_list->LockUserDataList ();
  2367. DBG_SAVE_FILE_LINE
  2368. m_pUserDataMemory = new BYTE[user_data_length];
  2369. if (m_pUserDataMemory != NULL)
  2370. {
  2371. /*
  2372. * Retrieve the actual pointer to memory from the Memory
  2373. * object and save it in the internal user data memory.
  2374. */
  2375. m_pInternalResponse->challenge_response_item.response_data_list->
  2376. GetUserDataList (
  2377. &challenge_response->response_item.
  2378. number_of_response_data_members,
  2379. &challenge_response->response_item.
  2380. response_data_list,
  2381. m_pUserDataMemory);
  2382. }
  2383. else
  2384. {
  2385. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error allocating memory"));
  2386. return_value = GCC_ALLOCATION_FAILURE;
  2387. }
  2388. }
  2389. else
  2390. {
  2391. ERROR_OUT(("CPassword::GetGCCChallengeRequest: Error saving response item"));
  2392. return_value = GCC_ALLOCATION_FAILURE;
  2393. }
  2394. }
  2396. return (return_value);
  2397. }
  2399. /*
  2400. * GCCError GetChallengeRequestPDU (
  2401. * PChallengeRequest challenge_request);
  2402. *
  2403. * Private member function of CPassword.
  2404. *
  2405. * Function Description:
  2406. * This routine converts internal challenge request data to "PDU" form.
  2407. *
  2408. * Formal Parameters:
  2409. * challenge_request (i) The PDU structure to fill in with the
  2410. * challenge request data.
  2411. *
  2412. * Return Value:
  2413. * GCC_NO_ERROR - No error.
  2414. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  2415. * "new" operator.
  2416. * GCC_INVALID_PARAMETER - The algorithm type was not set
  2417. * properly.
  2418. *
  2419. * Side Effects:
  2420. * None.
  2421. *
  2422. * Caveats:
  2423. * None.
  2424. */
  2425. GCCError CPassword::GetChallengeRequestPDU(PChallengeRequest challenge_request)
  2426. {
  2427. GCCError return_value = GCC_NO_ERROR;
  2428. PSetOfChallengeItems new_set_of_challenge_items;
  2429. PSetOfChallengeItems old_set_of_challenge_items;
  2430. DWORD number_of_items;
  2431. PChallengeItemInfo internal_challenge_item_ptr;
  2433. /*
  2434. * Fill in the challenge tag.
  2435. */
  2436. challenge_request->challenge_tag = m_pInternalRequest->challenge_tag;
  2438. /*
  2439. * Initialize the set pointers to NULL in order to detect the first time
  2440. * through the iterator loop.
  2441. */
  2442. challenge_request->set_of_challenge_items = NULL;
  2443. old_set_of_challenge_items = NULL;
  2445. /*
  2446. * Retrieve the number of challenge items in the internal list.
  2447. */
  2448. number_of_items = m_pInternalRequest->ChallengeItemList.GetCount();
  2450. if (number_of_items > 0)
  2451. {
  2452. PChallengeItemInfo lpChItmInfo;
  2453. /*
  2454. * Iterate through the internal list of challenge items, creating a
  2455. * new "PDU" SetOfChallengeItems for each and filling it in.
  2456. */
  2457. m_pInternalRequest->ChallengeItemList.Reset();
  2458. while (NULL != (lpChItmInfo = m_pInternalRequest->ChallengeItemList.Iterate()))
  2459. {
  2460. DBG_SAVE_FILE_LINE
  2461. new_set_of_challenge_items = new SetOfChallengeItems;
  2463. /*
  2464. * If an allocation failure occurs, call the routine which will
  2465. * iterate through the list freeing any data which had been
  2466. * allocated.
  2467. */
  2468. if (new_set_of_challenge_items == NULL)
  2469. {
  2470. ERROR_OUT(("CPassword::GetChallengeRequestPDU: Allocation error, cleaning up"));
  2471. return_value = GCC_ALLOCATION_FAILURE;
  2472. FreeChallengeRequestPDU ();
  2473. break;
  2474. }
  2476. /*
  2477. * The first time through, set the PDU structure pointer equal
  2478. * to the first SetOfChallengeItems created. On subsequent loops,
  2479. * set the structure's "next" pointer equal to the new structure.
  2480. */
  2481. if (challenge_request->set_of_challenge_items == NULL)
  2482. {
  2483. challenge_request->set_of_challenge_items =
  2484. new_set_of_challenge_items;
  2485. }
  2486. else
  2487. old_set_of_challenge_items->next = new_set_of_challenge_items;
  2489. /*
  2490. * Save the newly created set and initialize the new "next"
  2491. * pointer to NULL in case this is the last time through the loop.
  2492. */
  2493. old_set_of_challenge_items = new_set_of_challenge_items;
  2494. new_set_of_challenge_items->next = NULL;
  2496. /*
  2497. * Retrieve the ChallengeItemInfo structure from the Rogue
  2498. * Wave list and fill in the "PDU" challenge item structure from
  2499. * the internal challenge item structure.
  2500. */
  2501. internal_challenge_item_ptr = lpChItmInfo;
  2503. return_value = ConvertInternalChallengeItemToPDU (
  2504. internal_challenge_item_ptr,
  2505. &new_set_of_challenge_items->value);
  2507. /*
  2508. * Cleanup if an error has occurred.
  2509. */
  2510. if (return_value != GCC_NO_ERROR)
  2511. {
  2512. FreeChallengeRequestPDU ();
  2513. }
  2514. }
  2515. }
  2516. else
  2517. {
  2518. ERROR_OUT(("CPassword::GetChallengeRequestPDU: Error no items"));
  2519. }
  2521. return (return_value);
  2522. }
  2524. /*
  2525. * GCCError ConvertInternalChallengeItemToPDU(
  2526. * PChallengeItemInfo internal_challenge_item,
  2527. * PChallengeItem pdu_challenge_item)
  2528. *
  2529. * Private member function of CPassword.
  2530. *
  2531. * Function Description:
  2532. * This routine converts an internal ChallengeItemInfo structure into
  2533. * the "PDU" form of a ChallengeItem structure.
  2534. *
  2535. * Formal Parameters:
  2536. * internal_challenge_item (i) The internal challenge item to convert.
  2537. * pdu_challenge_item (o) The output PDU form of the challenge
  2538. * item.
  2539. *
  2540. * Return Value:
  2541. * GCC_NO_ERROR - No error.
  2542. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  2543. * "new" operator.
  2544. * GCC_INVALID_PARAMETER - The algorithm type was not set
  2545. * properly.
  2546. *
  2547. * Side Effects:
  2548. * None.
  2549. *
  2550. * Caveats:
  2551. * None.
  2552. */
  2553. GCCError CPassword::ConvertInternalChallengeItemToPDU(
  2554. PChallengeItemInfo internal_challenge_item,
  2555. PChallengeItem pdu_challenge_item)
  2556. {
  2557. GCCError return_value = GCC_NO_ERROR;
  2559. /*
  2560. * First convert the algorithm.
  2561. */
  2562. if (internal_challenge_item->algorithm.algorithm_type ==
  2563. GCC_IN_THE_CLEAR_ALGORITHM)
  2564. {
  2565. pdu_challenge_item->response_algorithm.choice =
  2566. ALGORITHM_CLEAR_PASSWORD_CHOSEN;
  2567. }
  2568. else if (internal_challenge_item->algorithm.algorithm_type ==
  2569. GCC_NON_STANDARD_ALGORITHM)
  2570. {
  2571. pdu_challenge_item->response_algorithm.choice =
  2572. NON_STANDARD_ALGORITHM_CHOSEN;
  2574. /*
  2575. * Retrieve the "PDU" object key data from the internal CObjectKeyContainer
  2576. * object.
  2577. */
  2578. if (internal_challenge_item->algorithm.object_key->
  2579. GetObjectKeyDataPDU (
  2580. &pdu_challenge_item->response_algorithm.u.
  2581. non_standard_algorithm.key) == GCC_NO_ERROR)
  2582. {
  2583. /*
  2584. * Retrieve the non-standard parameter data from the internal
  2585. * algorithm octet string.
  2586. */
  2587. pdu_challenge_item->response_algorithm.u.non_standard_algorithm.data.value =
  2588. internal_challenge_item->algorithm.poszOctetString->value;
  2590. pdu_challenge_item->response_algorithm.u.non_standard_algorithm.data.length =
  2591. internal_challenge_item->algorithm.poszOctetString->length;
  2592. }
  2593. else
  2594. {
  2595. ERROR_OUT(("CPassword::ConvertInternalChallengeItemToPDU: Error getting ObjKeyData"));
  2596. return_value = GCC_ALLOCATION_FAILURE;
  2597. }
  2598. }
  2599. else
  2600. {
  2601. ERROR_OUT(("CPassword::ConvertInternalChallengeItemToPDU: Error bad algorithm type"));
  2602. return_value = GCC_INVALID_PARAMETER;
  2603. }
  2605. /*
  2606. * Now retrieve the set of user data.
  2607. */
  2608. if (return_value == GCC_NO_ERROR)
  2609. {
  2610. return_value = internal_challenge_item->challenge_data_list->
  2611. GetUserDataPDU (&pdu_challenge_item->set_of_challenge_data);
  2612. }
  2614. return (return_value);
  2615. }
  2617. /*
  2618. * GCCError GetChallengeResponsePDU (
  2619. * PChallengeResponse challenge_response);
  2620. *
  2621. * Private member function of CPassword.
  2622. *
  2623. * Function Description:
  2624. * This routine converts internal challenge response data to "PDU" form.
  2625. *
  2626. * Formal Parameters:
  2627. * challenge_response (i) The PDU structure to fill in with the
  2628. * challenge response data.
  2629. *
  2630. * Return Value:
  2631. * GCC_NO_ERROR - No error.
  2632. * GCC_ALLOCATION_FAILURE - Error creating an object using the
  2633. * "new" operator.
  2634. * GCC_INVALID_PASSWORD - The form of the password is not
  2635. * valid.
  2636. * GCC_INVALID_PARAMETER - The algorithm type was not set
  2637. * properly.
  2638. *
  2639. * Side Effects:
  2640. * None.
  2641. *
  2642. * Caveats:
  2643. * None.
  2644. */
  2645. GCCError CPassword::GetChallengeResponsePDU(PChallengeResponse challenge_response)
  2646. {
  2647. GCCError return_value = GCC_NO_ERROR;
  2649. /*
  2650. * Fill in the challenge tag.
  2651. */
  2652. challenge_response->challenge_tag = m_pInternalResponse->challenge_tag;
  2654. /*
  2655. * Fill in the response algorithm.
  2656. */
  2657. if (m_pInternalResponse->algorithm.algorithm_type ==
  2658. GCC_IN_THE_CLEAR_ALGORITHM)
  2659. {
  2660. challenge_response->response_algorithm.choice =
  2661. ALGORITHM_CLEAR_PASSWORD_CHOSEN;
  2663. /*
  2664. * Now convert the challenge response item. The challenge response item
  2665. * will consist of either a password string or a set of user data.
  2666. */
  2667. if (m_pInternalResponse->challenge_response_item.password != NULL)
  2668. {
  2669. /*
  2670. * If the password string exists, set the "PDU" choice and retrieve
  2671. * the password selector data from the internal CPassword object.
  2672. */
  2673. challenge_response->response_item.choice = PASSWORD_STRING_CHOSEN;
  2675. return_value= m_pInternalResponse->challenge_response_item.password->
  2676. GetPasswordSelectorPDU (&challenge_response->response_item.
  2677. u.password_string);
  2678. }
  2679. else
  2680. return_value = GCC_INVALID_PASSWORD;
  2681. }
  2682. else if (m_pInternalResponse->algorithm.algorithm_type ==
  2683. GCC_NON_STANDARD_ALGORITHM)
  2684. {
  2685. challenge_response->response_algorithm.choice =
  2686. NON_STANDARD_ALGORITHM_CHOSEN;
  2688. /*
  2689. * Retrieve the "PDU" object key data from the internal CObjectKeyContainer
  2690. * object.
  2691. */
  2692. if (m_pInternalResponse->algorithm.object_key->
  2693. GetObjectKeyDataPDU (
  2694. &challenge_response->response_algorithm.u.
  2695. non_standard_algorithm.key) == GCC_NO_ERROR)
  2696. {
  2697. /*
  2698. * Retrieve the non-standard parameter data from the internal
  2699. * algorithm octet string.
  2700. */
  2701. challenge_response->response_algorithm.u.non_standard_algorithm.data.value =
  2702. m_pInternalResponse->algorithm.poszOctetString->value;
  2704. challenge_response->response_algorithm.u.non_standard_algorithm.data.length =
  2705. m_pInternalResponse->algorithm.poszOctetString->length;
  2707. if (m_pInternalResponse->challenge_response_item.response_data_list != NULL)
  2708. {
  2709. /*
  2710. * If the response data list exists, set the "PDU" choice and
  2711. * retrieve the response data from the internal
  2712. * CUserDataListContainer object.
  2713. */
  2714. challenge_response->response_item.choice =
  2715. SET_OF_RESPONSE_DATA_CHOSEN;
  2717. return_value = m_pInternalResponse->challenge_response_item.
  2718. response_data_list->GetUserDataPDU (
  2719. &challenge_response->response_item.u.
  2720. set_of_response_data);
  2721. }
  2722. else
  2723. return_value = GCC_INVALID_PASSWORD;
  2724. }
  2725. else
  2726. {
  2727. return_value = GCC_ALLOCATION_FAILURE;
  2728. ERROR_OUT(("CPassword::GetChallengeResponsePDU: Error getting ObjKeyData"));
  2729. }
  2730. }
  2731. else
  2732. {
  2733. ERROR_OUT(("CPassword::GetChallengeResponsePDU: Error bad algorithm type"));
  2734. return_value = GCC_INVALID_PARAMETER;
  2735. }
  2737. return (return_value);
  2738. }
  2740. /*
  2741. * void FreeChallengeRequestPDU ();
  2742. *
  2743. * Private member function of CPassword.
  2744. *
  2745. * Function Description:
  2746. * This routine is used to free any "PDU" data allocated for the
  2747. * challenge request structure.
  2748. *
  2749. * Formal Parameters:
  2750. * None.
  2751. *
  2752. * Return Value:
  2753. * None.
  2754. *
  2755. * Side Effects:
  2756. * None.
  2757. *
  2758. * Caveats:
  2759. * None.
  2760. */
  2761. void CPassword::FreeChallengeRequestPDU(void)
  2762. {
  2763. PSetOfChallengeItems set_of_challenge_items;
  2764. PSetOfChallengeItems next_set_of_challenge_items;
  2765. PChallengeItemInfo challenge_item_ptr;
  2766. PChallengeRequest challenge_request;
  2768. /*
  2769. * Retrieve the challenge request pointer from the internally maintained
  2770. * PasswordChallengeRequestResponse structure and delete each set of
  2771. * challenge items which was created.
  2772. */
  2773. challenge_request = &m_ChallengeResponsePDU.u.challenge_request_response.
  2774. challenge_request;
  2776. if (challenge_request != NULL)
  2777. {
  2778. if (challenge_request->set_of_challenge_items == NULL)
  2779. {
  2780. ERROR_OUT(("CPassword::FreeChallengeRequestPDU: NULL ptr passed"));
  2781. }
  2782. else
  2783. {
  2784. set_of_challenge_items = challenge_request->set_of_challenge_items;
  2786. while (1)
  2787. {
  2788. if (set_of_challenge_items == NULL)
  2789. break;
  2791. next_set_of_challenge_items = set_of_challenge_items->next;
  2793. delete set_of_challenge_items;
  2795. set_of_challenge_items = next_set_of_challenge_items;
  2796. }
  2797. }
  2798. }
  2799. else
  2800. {
  2801. WARNING_OUT(("CPassword::FreeChallengeRequestPDU: NULL pointer passed"));
  2802. }
  2804. /*
  2805. * Loop through the internal list of challenge items, freeing the data
  2806. * associated with each challenge item structure contained in the list.
  2807. */
  2808. m_pInternalRequest->ChallengeItemList.Reset();
  2809. while (NULL != (challenge_item_ptr = m_pInternalRequest->ChallengeItemList.Iterate()))
  2810. {
  2811. /*
  2812. * Retrieve the ChallengeItemInfo structure from the Rogue
  2813. * Wave list and use the CUserDataListContainer object contained in the
  2814. * structure to free the PDU user data. Also use the CObjectKeyContainer
  2815. * object contained in the algorithm structure to free the PDU
  2816. * data associated with the object key.
  2817. */
  2818. if (challenge_item_ptr != NULL)
  2819. {
  2820. if (challenge_item_ptr->algorithm.object_key != NULL)
  2821. {
  2822. challenge_item_ptr->algorithm.object_key->FreeObjectKeyDataPDU();
  2823. }
  2824. if (challenge_item_ptr->challenge_data_list != NULL)
  2825. {
  2826. challenge_item_ptr->challenge_data_list->FreeUserDataListPDU();
  2827. }
  2828. }
  2829. }
  2830. }
  2832. /*
  2833. * void FreeChallengeResponsePDU ();
  2834. *
  2835. * Private member function of CPassword.
  2836. *
  2837. * Function Description:
  2838. * This routine is used to free any "PDU" data allocated for the
  2839. * challenge response structure.
  2840. *
  2841. * Formal Parameters:
  2842. * None.
  2843. *
  2844. * Return Value:
  2845. * None.
  2846. *
  2847. * Side Effects:
  2848. * None.
  2849. *
  2850. * Caveats:
  2851. * None.
  2852. */
  2853. void CPassword::FreeChallengeResponsePDU(void)
  2854. {
  2855. PChallengeResponse challenge_response;
  2857. /*
  2858. * Retrieve the challenge response pointer from the internally maintained
  2859. * PasswordChallengeRequestResponse structure. If it is not equal to NULL
  2860. * then we know PDU response data has been allocated which must be freed.
  2861. */
  2862. challenge_response = &m_ChallengeResponsePDU.u.challenge_request_response.
  2863. challenge_response;
  2865. if ((challenge_response != NULL) && (m_pInternalResponse != NULL))
  2866. {
  2867. if (m_pInternalResponse->algorithm.object_key != NULL)
  2868. m_pInternalResponse->algorithm.object_key->FreeObjectKeyDataPDU ();
  2870. if (m_pInternalResponse->challenge_response_item.password != NULL)
  2871. {
  2872. m_pInternalResponse->challenge_response_item.
  2873. password->FreePasswordChallengeResponsePDU ();
  2874. }
  2876. if (m_pInternalResponse->challenge_response_item.
  2877. response_data_list != NULL)
  2878. {
  2879. m_pInternalResponse->challenge_response_item.
  2880. response_data_list->FreeUserDataListPDU ();
  2881. }
  2882. }
  2883. }
  2885. /*
  2886. * void FreeAPIPasswordData ();
  2887. *
  2888. * Private member function of CPassword.
  2889. *
  2890. * Function Description:
  2891. * This routine is used to free any data allocated by this container to
  2892. * hold "API" data.
  2893. *
  2894. * Formal Parameters:
  2895. * None.
  2896. *
  2897. * Return Value:
  2898. * None.
  2899. *
  2900. * Side Effects:
  2901. * None.
  2902. *
  2903. * Caveats:
  2904. * None.
  2905. */
  2906. void CPassword::FreeAPIPasswordData(void)
  2907. {
  2908. PGCCChallengeItem challenge_item_ptr;
  2909. PChallengeItemInfo challenge_item_info_ptr;
  2910. PChallengeItemMemoryInfo challenge_item_memory_info;
  2911. USHORT i;
  2913. /*
  2914. * Delete any "API" memory associated with the challenge request if
  2915. * it exists.
  2916. */
  2917. if (m_pChallengeResponse->u.challenge_request_response.
  2918. challenge_request != NULL)
  2919. {
  2920. for (i=0; i<m_pChallengeResponse->u.
  2921. challenge_request_response.challenge_request->
  2922. number_of_challenge_items; i++)
  2923. {
  2924. challenge_item_ptr = m_pChallengeResponse->u.
  2925. challenge_request_response.challenge_request->
  2926. challenge_item_list[i];
  2928. if (challenge_item_ptr != NULL)
  2929. {
  2930. /*
  2931. * Delete the non-standard algorithm memory.
  2932. */
  2933. delete challenge_item_ptr->response_algorithm.non_standard_algorithm;
  2934. delete challenge_item_ptr;
  2935. }
  2936. }
  2938. delete m_pChallengeResponse->u.challenge_request_response.
  2939. challenge_request;
  2940. }
  2942. /*
  2943. * Unlock any memory locked for the challenge request information.
  2944. */
  2945. if (m_pInternalRequest != NULL)
  2946. {
  2947. /*
  2948. * Set up an iterator in order to loop through the list of challenge
  2949. * items, freeing up any allocated memory.
  2950. */
  2951. m_pInternalRequest->ChallengeItemList.Reset();
  2952. while (NULL != (challenge_item_info_ptr = m_pInternalRequest->ChallengeItemList.Iterate()))
  2953. {
  2954. /*
  2955. * Unlock any memory being referenced in the ChallengeItemInfo
  2956. * structure.
  2957. */
  2958. if (challenge_item_info_ptr->algorithm.object_key != NULL)
  2959. {
  2960. challenge_item_info_ptr->algorithm.object_key->
  2961. UnLockObjectKeyData ();
  2962. }
  2964. if (challenge_item_info_ptr->challenge_data_list != NULL)
  2965. {
  2966. challenge_item_info_ptr->challenge_data_list->
  2967. UnLockUserDataList ();
  2968. }
  2969. }
  2970. }
  2972. /*
  2973. * Call the Memory Manager to free the memory allocated to hold the
  2974. * challenge request data.
  2975. */
  2976. while (NULL != (challenge_item_memory_info = m_ChallengeItemMemoryList.Get()))
  2977. {
  2978. delete challenge_item_memory_info->user_data_list_memory;
  2979. delete challenge_item_memory_info->object_key_memory;
  2980. delete challenge_item_memory_info;
  2981. }
  2983. /*
  2984. * Delete any memory associated with the challenge response if
  2985. * it exists.
  2986. */
  2987. if (m_pChallengeResponse->u.challenge_request_response.
  2988. challenge_response != NULL)
  2989. {
  2990. /*
  2991. * Delete any memory associated with the non-standard algorithm and
  2992. * then delete the challenge response structure.
  2993. */
  2994. delete m_pChallengeResponse->u.challenge_request_response.
  2995. challenge_response->response_algorithm.non_standard_algorithm;
  2997. delete m_pChallengeResponse->u.challenge_request_response.
  2998. challenge_response;
  2999. }
  3001. /*
  3002. * Unlock any memory allocated for the challenge response information.
  3003. */
  3004. if (m_pInternalResponse != NULL)
  3005. {
  3006. if (m_pInternalResponse->algorithm.object_key != NULL)
  3007. {
  3008. m_pInternalResponse->algorithm.object_key->UnLockObjectKeyData();
  3009. }
  3011. if (m_pInternalResponse->challenge_response_item.password != NULL)
  3012. {
  3013. m_pInternalResponse->challenge_response_item.password->
  3014. UnLockPasswordData ();
  3015. }
  3017. if (m_pInternalResponse->challenge_response_item.
  3018. response_data_list != NULL)
  3019. {
  3020. m_pInternalResponse->challenge_response_item.response_data_list->
  3021. UnLockUserDataList ();
  3022. }
  3023. }
  3025. /*
  3026. * Call the Memory Manager to free the memory allocated to hold the
  3027. * challenge response data.
  3028. */
  3029. delete m_pUserDataMemory;
  3030. m_pUserDataMemory = NULL;
  3032. delete m_pObjectKeyMemory;
  3033. m_pObjectKeyMemory = NULL;
  3035. /*
  3036. * Call the Memory Manager to free the memory allocated to hold the
  3037. * challenge request challenge item pointers.
  3038. */
  3039. delete m_pChallengeItemListMemory;
  3040. m_pChallengeItemListMemory = NULL;
  3042. /*
  3043. * Delete the challenge password structure and set the pointer to NULL.
  3044. */
  3045. delete m_pChallengeResponse;
  3046. m_pChallengeResponse = NULL;
  3047. }