| blob | 857524c59750155f8736ba7e5064a7498bf14a0c |
1 /*
2 * dlls/rsaenh/rsaenh.c
3 * RSAENH - RSA encryption for Wine
4 *
5 * Copyright 2002 TransGaming Technologies (David Hammerton)
6 * Copyright 2004 Mike McCormack for CodeWeavers
7 * Copyright 2004, 2005 Michael Jung
8 *
9 * This library is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU Lesser General Public
11 * License as published by the Free Software Foundation; either
12 * version 2.1 of the License, or (at your option) any later version.
13 *
14 * This library is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 * Lesser General Public License for more details.
18 *
19 * You should have received a copy of the GNU Lesser General Public
20 * License along with this library; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
22 */
29 #include <stdarg.h>
30 #include <stdio.h>
42 /******************************************************************************
43 * CRYPTHASH - hash objects
44 */
45 #define RSAENH_MAGIC_HASH 0x85938417u
46 #define RSAENH_MAX_HASH_SIZE 104
47 #define RSAENH_HASHSTATE_IDLE 0
48 #define RSAENH_HASHSTATE_HASHING 1
49 #define RSAENH_HASHSTATE_FINISHED 2
51 {
52 CRYPT_DATA_BLOB blobLabel;
53 CRYPT_DATA_BLOB blobSeed;
57 {
58 OBJECTHDR header;
59 ALG_ID aiAlgid;
60 HCRYPTKEY hKey;
61 HCRYPTPROV hProv;
62 DWORD dwHashSize;
63 DWORD dwState;
64 HASH_CONTEXT context;
66 PHMAC_INFO pHMACInfo;
67 RSAENH_TLS1PRF_PARAMS tpPRFParams;
70 /******************************************************************************
71 * CRYPTKEY - key objects
72 */
73 #define RSAENH_MAGIC_KEY 0x73620457u
74 #define RSAENH_MAX_KEY_SIZE 48
75 #define RSAENH_MAX_BLOCK_SIZE 24
76 #define RSAENH_KEYSTATE_IDLE 0
77 #define RSAENH_KEYSTATE_ENCRYPTING 1
78 #define RSAENH_KEYSTATE_DECRYPTING 2
79 #define RSAENH_KEYSTATE_MASTERKEY 3
81 {
82 SCHANNEL_ALG saEncAlg;
83 SCHANNEL_ALG saMACAlg;
84 CRYPT_DATA_BLOB blobClientRandom;
85 CRYPT_DATA_BLOB blobServerRandom;
89 {
90 OBJECTHDR header;
91 ALG_ID aiAlgid;
92 HCRYPTPROV hProv;
93 DWORD dwMode;
94 DWORD dwModeBits;
95 DWORD dwPermissions;
96 DWORD dwKeyLen;
97 DWORD dwSaltLen;
98 DWORD dwBlockLen;
99 DWORD dwState;
100 KEY_CONTEXT context;
104 RSAENH_SCHANNEL_INFO siSChannelInfo;
107 /******************************************************************************
108 * KEYCONTAINER - key containers
109 */
110 #define RSAENH_PERSONALITY_BASE 0u
111 #define RSAENH_PERSONALITY_STRONG 1u
112 #define RSAENH_PERSONALITY_ENHANCED 2u
113 #define RSAENH_PERSONALITY_SCHANNEL 3u
115 #define RSAENH_MAGIC_CONTAINER 0x26384993u
117 {
118 OBJECTHDR header;
119 DWORD dwFlags;
120 DWORD dwPersonality;
121 DWORD dwEnumAlgsCtr;
122 DWORD dwEnumContainersCtr;
125 HCRYPTKEY hKeyExchangeKeyPair;
126 HCRYPTKEY hSignatureKeyPair;
129 /******************************************************************************
130 * Some magic constants
131 */
132 #define RSAENH_ENCRYPT 1
133 #define RSAENH_DECRYPT 0
134 #define RSAENH_HMAC_DEF_IPAD_CHAR 0x36
135 #define RSAENH_HMAC_DEF_OPAD_CHAR 0x5c
136 #define RSAENH_HMAC_DEF_PAD_LEN 64
137 #define RSAENH_DES_EFFECTIVE_KEYLEN 56
138 #define RSAENH_DES_STORAGE_KEYLEN 64
139 #define RSAENH_3DES112_EFFECTIVE_KEYLEN 112
140 #define RSAENH_3DES112_STORAGE_KEYLEN 128
141 #define RSAENH_3DES_EFFECTIVE_KEYLEN 168
142 #define RSAENH_3DES_STORAGE_KEYLEN 192
143 #define RSAENH_MAGIC_RSA2 0x32415352
144 #define RSAENH_MAGIC_RSA1 0x31415352
145 #define RSAENH_PKC_BLOCKTYPE 0x02
146 #define RSAENH_SSL3_VERSION_MAJOR 3
147 #define RSAENH_SSL3_VERSION_MINOR 0
148 #define RSAENH_TLS1_VERSION_MAJOR 3
149 #define RSAENH_TLS1_VERSION_MINOR 1
152 #define RSAENH_MIN(a,b) ((a)<(b)?(a):(b))
153 /******************************************************************************
154 * aProvEnumAlgsEx - Defines the capabilities of the CSP personalities.
155 */
156 #define RSAENH_MAX_ENUMALGS 20
157 #define RSAENH_PCT1_SSL2_SSL3_TLS1 (CRYPT_FLAG_PCT1|CRYPT_FLAG_SSL2|CRYPT_FLAG_SSL3|CRYPT_FLAG_TLS1)
159 {
160 {
170 {CALG_RSA_SIGN, 512,384,16384,CRYPT_FLAG_SIGNING|CRYPT_FLAG_IPSEC,9,"RSA_SIGN",14,"RSA Signature"},
171 {CALG_RSA_KEYX, 512,384, 1024,CRYPT_FLAG_SIGNING|CRYPT_FLAG_IPSEC,9,"RSA_KEYX",17,"RSA Key Exchange"},
174 },
175 {
187 {CALG_RSA_SIGN,1024,384,16384,CRYPT_FLAG_SIGNING|CRYPT_FLAG_IPSEC,9,"RSA_SIGN",14,"RSA Signature"},
188 {CALG_RSA_KEYX,1024,384,16384,CRYPT_FLAG_SIGNING|CRYPT_FLAG_IPSEC,9,"RSA_KEYX",17,"RSA Key Exchange"},
191 },
192 {
204 {CALG_RSA_SIGN,1024,384,16384,CRYPT_FLAG_SIGNING|CRYPT_FLAG_IPSEC,9,"RSA_SIGN",14,"RSA Signature"},
205 {CALG_RSA_KEYX,1024,384,16384,CRYPT_FLAG_SIGNING|CRYPT_FLAG_IPSEC,9,"RSA_KEYX",17,"RSA Key Exchange"},
208 },
209 {
212 {CALG_DES, 56, 56, 56,RSAENH_PCT1_SSL2_SSL3_TLS1, 4,"DES", 31,"Data Encryption Standard (DES)"},
213 {CALG_3DES_112, 112,112, 112,RSAENH_PCT1_SSL2_SSL3_TLS1,13,"3DES TWO KEY",19,"Two Key Triple DES"},
215 {CALG_SHA,160,160,160,CRYPT_FLAG_SIGNING|RSAENH_PCT1_SSL2_SSL3_TLS1,6,"SHA-1",30,"Secure Hash Algorithm (SHA-1)"},
216 {CALG_MD5,128,128,128,CRYPT_FLAG_SIGNING|RSAENH_PCT1_SSL2_SSL3_TLS1,4,"MD5",23,"Message Digest 5 (MD5)"},
219 {CALG_RSA_SIGN,1024,384,16384,CRYPT_FLAG_SIGNING|RSAENH_PCT1_SSL2_SSL3_TLS1,9,"RSA_SIGN",14,"RSA Signature"},
220 {CALG_RSA_KEYX,1024,384,16384,CRYPT_FLAG_SIGNING|RSAENH_PCT1_SSL2_SSL3_TLS1,9,"RSA_KEYX",17,"RSA Key Exchange"},
231 }
232 };
234 /******************************************************************************
235 * API forward declarations
236 */
237 BOOL WINAPI
239 HCRYPTPROV hProv,
240 HCRYPTKEY hKey,
241 DWORD dwParam,
244 DWORD dwFlags
245 );
247 BOOL WINAPI
249 HCRYPTPROV hProv,
250 HCRYPTKEY hKey,
251 HCRYPTHASH hHash,
252 BOOL Final,
253 DWORD dwFlags,
256 DWORD dwBufLen
257 );
259 BOOL WINAPI
261 HCRYPTPROV hProv,
262 ALG_ID Algid,
263 HCRYPTKEY hKey,
264 DWORD dwFlags,
265 HCRYPTHASH *phHash
266 );
268 BOOL WINAPI
270 HCRYPTPROV hProv,
271 HCRYPTHASH hHash,
272 DWORD dwParam,
274 );
276 BOOL WINAPI
278 HCRYPTPROV hProv,
279 HCRYPTHASH hHash,
280 DWORD dwParam,
283 DWORD dwFlags
284 );
286 BOOL WINAPI
288 HCRYPTPROV hProv,
289 HCRYPTHASH hHash
290 );
292 BOOL WINAPI
294 HCRYPTPROV hProv,
295 HCRYPTKEY hKey,
296 HCRYPTKEY hPubKey,
297 DWORD dwBlobType,
298 DWORD dwFlags,
300 DWORD *pdwDataLen
301 );
303 BOOL WINAPI
305 HCRYPTPROV hProv,
307 DWORD dwDataLen,
308 HCRYPTKEY hPubKey,
309 DWORD dwFlags,
310 HCRYPTKEY *phKey
311 );
313 BOOL WINAPI
315 HCRYPTPROV hProv,
316 HCRYPTHASH hHash,
318 DWORD dwDataLen,
319 DWORD dwFlags
320 );
322 /******************************************************************************
323 * CSP's handle table (used by all acquired key containers)
324 */
327 /******************************************************************************
328 * DllMain (RSAENH.@)
329 *
330 * Initializes and destroys the handle table for the CSP's handles.
331 */
333 {
335 {
343 }
345 }
347 /******************************************************************************
348 * copy_param [Internal]
349 *
350 * Helper function that supports the standard WINAPI protocol for querying data
351 * of dynamic size.
352 *
353 * PARAMS
354 * pbBuffer [O] Buffer where the queried parameter is copied to, if it is large enough.
355 * May be NUL if the required buffer size is to be queried only.
356 * pdwBufferSize [I/O] In: Size of the buffer at pbBuffer
357 * Out: Size of parameter pbParam
358 * pbParam [I] Parameter value.
359 * dwParamSize [I] Size of pbParam
360 *
361 * RETURN
362 * Success: TRUE (pbParam was copied into pbBuffer or pbBuffer is NULL)
363 * Failure: FALSE (pbBuffer is not large enough to hold pbParam). Last error: ERROR_MORE_DATA
364 */
367 {
369 {
371 {
375 }
377 }
380 }
382 /******************************************************************************
383 * get_algid_info [Internal]
384 *
385 * Query CSP capabilities for a given crypto algorithm.
386 *
387 * PARAMS
388 * hProv [I] Handle to a key container of the CSP whose capabilities are to be queried.
389 * algid [I] Identifier of the crypto algorithm about which information is requested.
390 *
391 * RETURNS
392 * Success: Pointer to a PROV_ENUMALGS_EX struct containing information about the crypto algorithm.
393 * Failure: NULL (algid not supported)
394 */
399 if (!lookup_handle(&handle_table, hProv, RSAENH_MAGIC_CONTAINER, (OBJECTHDR**)&pKeyContainer)) {
402 }
406 }
410 }
412 /******************************************************************************
413 * copy_data_blob [Internal]
414 *
415 * deeply copies a DATA_BLOB
416 *
417 * PARAMS
418 * dst [O] That's where the blob will be copied to
419 * src [I] Source blob
420 *
421 * RETURNS
422 * Success: TRUE
423 * Failure: FALSE (GetLastError() == NTE_NO_MEMORY
424 *
425 * NOTES
426 * Use free_data_blob to release resources occupied by copy_data_blob.
427 */
433 }
437 }
439 /******************************************************************************
440 * concat_data_blobs [Internal]
441 *
442 * Concatenates two blobs
443 *
444 * PARAMS
445 * dst [O] The new blob will be copied here
446 * src1 [I] Prefix blob
447 * src2 [I] Appendix blob
448 *
449 * RETURNS
450 * Success: TRUE
451 * Failure: FALSE (GetLastError() == NTE_NO_MEMORY)
452 *
453 * NOTES
454 * Release resources occupied by concat_data_blobs with free_data_blobs
455 */
457 CONST PCRYPT_DATA_BLOB src2)
458 {
464 }
468 }
470 /******************************************************************************
471 * free_data_blob [Internal]
472 *
473 * releases resource occupied by a dynamically allocated CRYPT_DATA_BLOB
474 *
475 * PARAMS
476 * pBlob [I] Heap space occupied by pBlob->pbData is released
477 */
480 }
482 /******************************************************************************
483 * init_data_blob [Internal]
484 */
488 }
490 /******************************************************************************
491 * free_hmac_info [Internal]
492 *
493 * Deeply free an HMAC_INFO struct.
494 *
495 * PARAMS
496 * hmac_info [I] Pointer to the HMAC_INFO struct to be freed.
497 *
498 * NOTES
499 * See Internet RFC 2104 for details on the HMAC algorithm.
500 */
506 }
508 /******************************************************************************
509 * copy_hmac_info [Internal]
510 *
511 * Deeply copy an HMAC_INFO struct
512 *
513 * PARAMS
514 * dst [O] Pointer to a location where the pointer to the HMAC_INFO copy will be stored.
515 * src [I] Pointer to the HMAC_INFO struct to be copied.
516 *
517 * RETURNS
518 * Success: TRUE
519 * Failure: FALSE
520 *
521 * NOTES
522 * See Internet RFC 2104 for details on the HMAC algorithm.
523 */
536 }
539 else
546 }
549 else
552 }
554 /******************************************************************************
555 * destroy_hash [Internal]
556 *
557 * Destructor for hash objects
558 *
559 * PARAMS
560 * pCryptHash [I] Pointer to the hash object to be destroyed.
561 * Will be invalid after function returns!
562 */
564 {
571 }
573 /******************************************************************************
574 * init_hash [Internal]
575 *
576 * Initialize (or reset) a hash object
577 *
578 * PARAMS
579 * pCryptHash [I] The hash object to be initialized.
580 */
582 DWORD dwLen;
585 {
597 }
609 }
610 }
612 /******************************************************************************
613 * update_hash [Internal]
614 *
615 * Hashes the given data and updates the hash object's state accordingly
616 *
617 * PARAMS
618 * pCryptHash [I] Hash object to be updated.
619 * pbData [I] Pointer to data stream to be hashed.
620 * dwDataLen [I] Length of data stream.
621 */
626 {
644 }
645 }
647 /******************************************************************************
648 * finalize_hash [Internal]
649 *
650 * Finalizes the hash, after all data has been hashed with update_hash.
651 * No additional data can be hashed afterwards until the hash gets initialized again.
652 *
653 * PARAMS
654 * pCryptHash [I] Hash object to be finalized.
655 */
657 DWORD dwDataLen;
660 {
676 }
687 }
688 }
690 /******************************************************************************
691 * destroy_key [Internal]
692 *
693 * Destructor for key objects
694 *
695 * PARAMS
696 * pCryptKey [I] Pointer to the key object to be destroyed.
697 * Will be invalid after function returns!
698 */
700 {
707 }
709 /******************************************************************************
710 * setup_key [Internal]
711 *
712 * Initialize (or reset) a key object
713 *
714 * PARAMS
715 * pCryptKey [I] The key object to be initialized.
716 */
722 }
724 /******************************************************************************
725 * new_key [Internal]
726 *
727 * Creates a new key object without assigning the actual binary key value.
728 * This is done by CPDeriveKey, CPGenKey or CPImportKey, which call this function.
729 *
730 * PARAMS
731 * hProv [I] Handle to the provider to which the created key will belong.
732 * aiAlgid [I] The new key shall use the crypto algorithm idenfied by aiAlgid.
733 * dwFlags [I] Upper 16 bits give the key length.
734 * Lower 16 bits: CRYPT_CREATE_SALT, CRYPT_NO_SALT
735 * ppCryptKey [O] Pointer to the created key
736 *
737 * RETURNS
738 * Success: Handle to the created key.
739 * Failure: INVALID_HANDLE_VALUE
740 */
741 static HCRYPTKEY new_key(HCRYPTPROV hProv, ALG_ID aiAlgid, DWORD dwFlags, CRYPTKEY **ppCryptKey)
742 {
743 HCRYPTKEY hCryptKey;
750 /*
751 * Retrieve the CSP's capabilities for the given ALG_ID value
752 */
756 /*
757 * Assume the default key length, if none is specified explicitly
758 */
761 /*
762 * Check if the requested key length is supported by the current CSP.
763 * Adjust key length's for DES algorithms.
764 */
769 }
773 }
779 }
783 }
789 }
793 }
800 {
803 }
804 }
809 {
814 CRYPT_MAC;
818 else
826 {
849 }
852 }
855 }
857 /******************************************************************************
858 * destroy_key_container [Internal]
859 *
860 * Destructor for key containers. The user's signature and key exchange private
861 * keys are stored in the registry _IN_PLAINTEXT_.
862 *
863 * PARAMS
864 * pObjectHdr [I] Pointer to the key container to be destroyed.
865 */
867 {
872 DWORD dwLen;
876 /* On WinXP, persistent keys are stored in a file located at:
877 * $AppData$\\Microsoft\\Crypto\\RSA\\$SID$\\some_hex_string
878 */
885 }
889 {
892 {
895 {
898 {
901 {
903 }
905 }
906 }
908 RSAENH_MAGIC_KEY);
909 }
913 {
916 {
919 {
922 {
924 }
926 }
927 }
929 RSAENH_MAGIC_KEY);
930 }
933 }
934 }
937 }
939 /******************************************************************************
940 * new_key_container [Internal]
941 *
942 * Create a new key container. The personality (RSA Base, Strong or Enhanced CP)
943 * of the CSP is determined via the pVTable->pszProvName string.
944 *
945 * PARAMS
946 * pszContainerName [I] Name of the key container.
947 * pVTable [I] Callback functions and context info provided by the OS
948 *
949 * RETURNS
950 * Success: Handle to the new key container.
951 * Failure: INVALID_HANDLE_VALUE
952 */
953 static HCRYPTPROV new_key_container(PCHAR pszContainerName, DWORD dwFlags, PVTableProvStruc pVTable)
954 {
956 HCRYPTPROV hKeyContainer;
958 hKeyContainer = (HCRYPTPROV)new_object(&handle_table, sizeof(KEYCONTAINER), RSAENH_MAGIC_CONTAINER,
961 {
979 }
980 }
982 /* The new key container has to be inserted into the CSP immediately
983 * after creation to be available for CPGetProvParam's PP_ENUMCONTAINERS. */
994 }
998 }
999 }
1002 }
1004 /******************************************************************************
1005 * read_key_container [Internal]
1006 *
1007 * Tries to read the persistent state of the key container (mainly the signature
1008 * and key exchange private keys) given by pszContainerName.
1009 *
1010 * PARAMS
1011 * pszContainerName [I] Name of the key container to read from the registry
1012 * pVTable [I] Pointer to context data provided by the operating system
1013 *
1014 * RETURNS
1015 * Success: Handle to the key container read from the registry
1016 * Failure: INVALID_HANDLE_VALUE
1017 */
1018 static HCRYPTPROV read_key_container(PCHAR pszContainerName, DWORD dwFlags, PVTableProvStruc pVTable)
1019 {
1025 HCRYPTPROV hKeyContainer;
1033 }
1036 {
1039 }
1043 {
1049 ERROR_SUCCESS)
1050 {
1053 {
1055 ERROR_SUCCESS)
1056 {
1059 }
1061 }
1062 }
1065 ERROR_SUCCESS)
1066 {
1069 {
1071 ERROR_SUCCESS)
1072 {
1075 }
1077 }
1078 }
1079 }
1082 }
1084 /******************************************************************************
1085 * build_hash_signature [Internal]
1086 *
1087 * Builds a padded version of a hash to match the length of the RSA key modulus.
1088 *
1089 * PARAMS
1090 * pbSignature [O] The padded hash object is stored here.
1091 * dwLen [I] Length of the pbSignature buffer.
1092 * aiAlgid [I] Algorithm identifier of the hash to be padded.
1093 * abHashValue [I] The value of the hash object.
1094 * dwHashLen [I] Length of the hash value.
1095 * dwFlags [I] Selection of padding algorithm.
1096 *
1097 * RETURNS
1098 * Success: TRUE
1099 * Failure: FALSE (NTE_BAD_ALGID)
1100 */
1103 {
1104 /* These prefixes are meant to be concatenated with hash values of the
1105 * respective kind to form a PKCS #7 DigestInfo. */
1107 ALG_ID aiAlgid;
1108 DWORD dwLen;
1120 };
1125 }
1130 }
1132 /* Build the padded signature */
1137 }
1141 }
1150 }
1155 }
1159 }
1160 }
1163 }
1164 }
1167 }
1169 /******************************************************************************
1170 * tls1_p [Internal]
1171 *
1172 * This is an implementation of the 'P_hash' helper function for TLS1's PRF.
1173 * It is used exclusively by tls1_prf. For details see RFC 2246, chapter 5.
1174 * The pseudo random stream generated by this function is exclusive or'ed with
1175 * the data in pbBuffer.
1176 *
1177 * PARAMS
1178 * hHMAC [I] HMAC object, which will be used in pseudo random generation
1179 * pblobSeed [I] Seed value
1180 * pbBuffer [I/O] Pseudo random stream will be xor'ed to the provided data
1181 * dwBufferLen [I] Number of pseudo random bytes desired
1182 *
1183 * RETURNS
1184 * Success: TRUE
1185 * Failure: FALSE
1186 */
1187 static BOOL tls1_p(HCRYPTHASH hHMAC, CONST PCRYPT_DATA_BLOB pblobSeed, PBYTE pbBuffer, DWORD dwBufferLen)
1188 {
1196 }
1198 /* compute A_1 = HMAC(seed) */
1205 /* compute HMAC(A_i + seed) */
1211 /* pseudo random stream := CONCAT_{i=1..n} ( HMAC(A_i + seed) ) */
1215 i++;
1218 /* compute A_{i+1} = HMAC(A_i) */
1226 }
1228 /******************************************************************************
1229 * tls1_prf [Internal]
1230 *
1231 * TLS1 pseudo random function as specified in RFC 2246, chapter 5
1232 *
1233 * PARAMS
1234 * hProv [I] Key container used to compute the pseudo random stream
1235 * hSecret [I] Key that holds the (pre-)master secret
1236 * pblobLabel [I] Descriptive label
1237 * pblobSeed [I] Seed value
1238 * pbBuffer [O] Pseudo random numbers will be stored here
1239 * dwBufferLen [I] Number of pseudo random bytes desired
1240 *
1241 * RETURNS
1242 * Success: TRUE
1243 * Failure: FALSE
1244 */
1247 {
1252 DWORD dwHalfSecretLen;
1254 CRYPT_DATA_BLOB blobLabelSeed;
1256 TRACE("(hProv=%08lx, hSecret=%08lx, pblobLabel=%p, pblobSeed=%p, pbBuffer=%p, dwBufferLen=%ld)\n",
1262 }
1266 /* concatenation of the label and the seed */
1269 /* zero out the buffer, since two random streams will be xor'ed into it. */
1272 /* build a 'fake' key, to hold the secret. CALG_SSL2_MASTER is used since it provides
1273 * the biggest range of valid key lengths. */
1277 /* Derive an HMAC_MD5 hash and call the helper function. */
1284 /* Reconfigure to HMAC_SHA hash and call helper function again. */
1291 exit:
1296 }
1298 /******************************************************************************
1299 * pad_data [Internal]
1300 *
1301 * Helper function for data padding according to PKCS1 #2
1302 *
1303 * PARAMS
1304 * abData [I] The data to be padded
1305 * dwDataLen [I] Length of the data
1306 * abBuffer [O] Padded data will be stored here
1307 * dwBufferLen [I] Length of the buffer (also length of padded data)
1308 * dwFlags [I] Padding format (CRYPT_SSL2_FALLBACK)
1309 *
1310 * RETURN
1311 * Success: TRUE
1312 * Failure: FALSE (NTE_BAD_LEN, too much data to pad)
1313 */
1315 DWORD dwFlags)
1316 {
1317 DWORD i;
1319 /* Ensure there is enough space for PKCS1 #2 padding */
1323 }
1337 }
1339 /******************************************************************************
1340 * unpad_data [Internal]
1341 *
1342 * Remove the PKCS1 padding from RSA decrypted data
1343 *
1344 * PARAMS
1345 * abData [I] The padded data
1346 * dwDataLen [I] Length of the padded data
1347 * abBuffer [O] Data without padding will be stored here
1348 * dwBufferLen [I/O] I: Length of the buffer, O: Length of unpadded data
1349 * dwFlags [I] Currently none defined
1350 *
1351 * RETURNS
1352 * Success: TRUE
1353 * Failure: FALSE, (NTE_BAD_DATA, no valid PKCS1 padding or buffer too small)
1354 */
1355 static BOOL unpad_data(CONST BYTE *abData, DWORD dwDataLen, BYTE *abBuffer, DWORD *dwBufferLen,
1356 DWORD dwFlags)
1357 {
1358 DWORD i;
1366 {
1369 }
1374 }
1376 /******************************************************************************
1377 * CPAcquireContext (RSAENH.@)
1378 *
1379 * Acquire a handle to the key container specified by pszContainer
1380 *
1381 * PARAMS
1382 * phProv [O] Pointer to the location the acquired handle will be written to.
1383 * pszContainer [I] Name of the desired key container. See Notes
1384 * dwFlags [I] Flags. See Notes.
1385 * pVTable [I] Pointer to a PVTableProvStruct containing callbacks.
1386 *
1387 * RETURNS
1388 * Success: TRUE
1389 * Failure: FALSE
1390 *
1391 * NOTES
1392 * If pszContainer is NULL or points to a zero length string the user's login
1393 * name will be used as the key container name.
1394 *
1395 * If the CRYPT_NEW_KEYSET flag is set in dwFlags a new keyset will be created.
1396 * If a keyset with the given name already exists, the function fails and sets
1397 * last error to NTE_EXISTS. If CRYPT_NEW_KEYSET is not set and the specified
1398 * key container does not exist, function fails and sets last error to
1399 * NTE_BAD_KEYSET.
1400 */
1403 {
1404 DWORD dwLen;
1412 {
1415 }
1416 else
1417 {
1420 }
1423 {
1436 }
1442 {
1446 }
1454 }
1462 }
1469 }
1470 }
1472 /******************************************************************************
1473 * CPCreateHash (RSAENH.@)
1474 *
1475 * CPCreateHash creates and initalizes a new hash object.
1476 *
1477 * PARAMS
1478 * hProv [I] Handle to the key container to which the new hash will belong.
1479 * Algid [I] Identifies the hash algorithm, which will be used for the hash.
1480 * hKey [I] Handle to a session key applied for keyed hashes.
1481 * dwFlags [I] Currently no flags defined. Must be zero.
1482 * phHash [O] Points to the location where a handle to the new hash will be stored.
1483 *
1484 * RETURNS
1485 * Success: TRUE
1486 * Failure: FALSE
1487 *
1488 * NOTES
1489 * hKey is a handle to a session key applied in keyed hashes like MAC and HMAC.
1490 * If a normal hash object is to be created (like e.g. MD2 or SHA1) hKey must be zero.
1491 */
1494 {
1506 {
1509 }
1513 {
1517 }
1522 }
1526 {
1529 }
1534 }
1535 }
1557 /* See RFC 2246, chapter 8.1 */
1561 {
1563 }
1568 }
1570 /* See RFC 2246, chapter 6.3 */
1574 {
1576 }
1578 RSAENH_MAX_HASH_SIZE);
1580 }
1583 }
1585 /******************************************************************************
1586 * CPDestroyHash (RSAENH.@)
1587 *
1588 * Releases the handle to a hash object. The object is destroyed if it's reference
1589 * count reaches zero.
1590 *
1591 * PARAMS
1592 * hProv [I] Handle to the key container to which the hash object belongs.
1593 * hHash [I] Handle to the hash object to be released.
1594 *
1595 * RETURNS
1596 * Success: TRUE
1597 * Failure: FALSE
1598 */
1600 {
1604 {
1607 }
1610 {
1613 }
1616 }
1618 /******************************************************************************
1619 * CPDestroyKey (RSAENH.@)
1620 *
1621 * Releases the handle to a key object. The object is destroyed if it's reference
1622 * count reaches zero.
1623 *
1624 * PARAMS
1625 * hProv [I] Handle to the key container to which the key object belongs.
1626 * hKey [I] Handle to the key object to be released.
1627 *
1628 * RETURNS
1629 * Success: TRUE
1630 * Failure: FALSE
1631 */
1633 {
1637 {
1640 }
1643 {
1646 }
1649 }
1651 /******************************************************************************
1652 * CPDuplicateHash (RSAENH.@)
1653 *
1654 * Clones a hash object including it's current state.
1655 *
1656 * PARAMS
1657 * hUID [I] Handle to the key container the hash belongs to.
1658 * hHash [I] Handle to the hash object to be cloned.
1659 * pdwReserved [I] Reserved. Must be NULL.
1660 * dwFlags [I] No flags are currently defined. Must be 0.
1661 * phHash [O] Handle to the cloned hash object.
1662 *
1663 * RETURNS
1664 * Success: TRUE.
1665 * Failure: FALSE.
1666 */
1669 {
1676 {
1679 }
1682 {
1685 }
1688 {
1691 }
1696 {
1702 }
1705 }
1707 /******************************************************************************
1708 * CPDuplicateKey (RSAENH.@)
1709 *
1710 * Clones a key object including it's current state.
1711 *
1712 * PARAMS
1713 * hUID [I] Handle to the key container the hash belongs to.
1714 * hKey [I] Handle to the key object to be cloned.
1715 * pdwReserved [I] Reserved. Must be NULL.
1716 * dwFlags [I] No flags are currently defined. Must be 0.
1717 * phHash [O] Handle to the cloned key object.
1718 *
1719 * RETURNS
1720 * Success: TRUE.
1721 * Failure: FALSE.
1722 */
1725 {
1732 {
1735 }
1738 {
1741 }
1744 {
1747 }
1752 {
1760 }
1761 else
1762 {
1764 }
1765 }
1767 /******************************************************************************
1768 * CPEncrypt (RSAENH.@)
1769 *
1770 * Encrypt data.
1771 *
1772 * PARAMS
1773 * hProv [I] The key container hKey and hHash belong to.
1774 * hKey [I] The key used to encrypt the data.
1775 * hHash [I] An optional hash object for parallel hashing. See notes.
1776 * Final [I] Indicates if this is the last block of data to encrypt.
1777 * dwFlags [I] Currently no flags defined. Must be zero.
1778 * pbData [I/O] Pointer to the data to encrypt. Encrypted data will also be stored there.
1779 * pdwDataLen [I/O] I: Length of data to encrypt, O: Length of encrypted data.
1780 * dwBufLen [I] Size of the buffer at pbData.
1781 *
1782 * RETURNS
1783 * Success: TRUE.
1784 * Failure: FALSE.
1785 *
1786 * NOTES
1787 * If a hash object handle is provided in hHash, it will be updated with the plaintext.
1788 * This is useful for message signatures.
1789 *
1790 * This function uses the standard WINAPI protocol for querying data of dynamic length.
1791 */
1794 {
1801 dwBufLen);
1804 {
1807 }
1810 {
1813 }
1816 {
1819 }
1825 {
1828 }
1832 }
1838 }
1845 {
1848 }
1854 RSAENH_ENCRYPT);
1860 RSAENH_ENCRYPT);
1872 }
1878 }
1880 }
1887 }
1891 }
1899 }
1904 }
1906 /******************************************************************************
1907 * CPDecrypt (RSAENH.@)
1908 *
1909 * Decrypt data.
1910 *
1911 * PARAMS
1912 * hProv [I] The key container hKey and hHash belong to.
1913 * hKey [I] The key used to decrypt the data.
1914 * hHash [I] An optional hash object for parallel hashing. See notes.
1915 * Final [I] Indicates if this is the last block of data to decrypt.
1916 * dwFlags [I] Currently no flags defined. Must be zero.
1917 * pbData [I/O] Pointer to the data to decrypt. Plaintext will also be stored there.
1918 * pdwDataLen [I/O] I: Length of ciphertext, O: Length of plaintext.
1919 *
1920 * RETURNS
1921 * Success: TRUE.
1922 * Failure: FALSE.
1923 *
1924 * NOTES
1925 * If a hash object handle is provided in hHash, it will be updated with the plaintext.
1926 * This is useful for message signatures.
1927 *
1928 * This function uses the standard WINAPI protocol for querying data of dynamic length.
1929 */
1932 {
1941 {
1944 }
1947 {
1950 }
1953 {
1956 }
1962 {
1965 }
1972 RSAENH_DECRYPT);
1977 RSAENH_DECRYPT);
1990 }
1996 }
1998 }
2007 }
2014 }
2020 }
2023 }
2025 /******************************************************************************
2026 * CPExportKey (RSAENH.@)
2027 *
2028 * Export a key into a binary large object (BLOB).
2029 *
2030 * PARAMS
2031 * hProv [I] Key container from which a key is to be exported.
2032 * hKey [I] Key to be exported.
2033 * hPubKey [I] Key used to encrypt sensitive BLOB data.
2034 * dwBlobType [I] SIMPLEBLOB, PUBLICKEYBLOB or PRIVATEKEYBLOB.
2035 * dwFlags [I] Currently none defined.
2036 * pbData [O] Pointer to a buffer where the BLOB will be written to.
2037 * pdwDataLen [I/O] I: Size of buffer at pbData, O: Size of BLOB
2038 *
2039 * RETURNS
2040 * Success: TRUE.
2041 * Failure: FALSE.
2042 */
2045 {
2050 DWORD dwDataLen;
2056 {
2059 }
2062 {
2065 }
2071 }
2072 }
2075 {
2080 }
2085 }
2093 }
2104 {
2106 }
2110 }
2118 }
2123 }
2131 }
2143 }
2151 }
2160 }
2172 }
2179 }
2180 }
2182 /******************************************************************************
2183 * CPImportKey (RSAENH.@)
2184 *
2185 * Import a BLOB'ed key into a key container.
2186 *
2187 * PARAMS
2188 * hProv [I] Key container into which the key is to be imported.
2189 * pbData [I] Pointer to a buffer which holds the BLOB.
2190 * dwDataLen [I] Length of data in buffer at pbData.
2191 * hPubKey [I] Key used to decrypt sensitive BLOB data.
2192 * dwFlags [I] Currently none defined.
2193 * phKey [O] Handle to the imported key.
2194 *
2195 * RETURNS
2196 * Success: TRUE.
2197 * Failure: FALSE.
2198 */
2201 {
2208 DWORD dwKeyLen;
2214 {
2217 }
2222 {
2225 }
2228 {
2234 {
2237 }
2249 {
2252 }
2263 {
2266 }
2269 {
2272 }
2277 RSAENH_DECRYPT);
2283 }
2287 {
2290 }
2299 }
2300 }
2302 /******************************************************************************
2303 * CPGenKey (RSAENH.@)
2304 *
2305 * Generate a key in the key container
2306 *
2307 * PARAMS
2308 * hProv [I] Key container for which a key is to be generated.
2309 * Algid [I] Crypto algorithm identifier for the key to be generated.
2310 * dwFlags [I] Upper 16 bits: Binary length of key. Lower 16 bits: Flags. See Notes
2311 * phKey [O] Handle to the generated key.
2312 *
2313 * RETURNS
2314 * Success: TRUE.
2315 * Failure: FALSE.
2316 *
2317 * FIXME
2318 * Flags currently not considered.
2319 *
2320 * NOTES
2321 * Private key-exchange- and signature-keys can be generated with Algid AT_KEYEXCHANGE
2322 * and AT_SIGNATURE values.
2323 */
2325 {
2333 {
2334 /* MSDN: hProv not containing valid context handle */
2337 }
2340 {
2351 }
2352 }
2365 }
2366 }
2391 }
2393 }
2397 /* MSDN: Algorithm not supported specified by Algid */
2400 }
2403 }
2405 /******************************************************************************
2406 * CPGenRandom (RSAENH.@)
2407 *
2408 * Generate a random byte stream.
2409 *
2410 * PARAMS
2411 * hProv [I] Key container that is used to generate random bytes.
2412 * dwLen [I] Specifies the number of requested random data bytes.
2413 * pbBuffer [O] Random bytes will be stored here.
2414 *
2415 * RETURNS
2416 * Success: TRUE
2417 * Failure: FALSE
2418 */
2420 {
2424 {
2425 /* MSDN: hProv not containing valid context handle */
2428 }
2431 }
2433 /******************************************************************************
2434 * CPGetHashParam (RSAENH.@)
2435 *
2436 * Query parameters of an hash object.
2437 *
2438 * PARAMS
2439 * hProv [I] The kea container, which the hash belongs to.
2440 * hHash [I] The hash object that is to be queried.
2441 * dwParam [I] Specifies the parameter that is to be queried.
2442 * pbData [I] Pointer to the buffer where the parameter value will be stored.
2443 * pdwDataLen [I/O] I: Buffer length at pbData, O: Length of the parameter value.
2444 * dwFlags [I] None currently defined.
2445 *
2446 * RETURNS
2447 * Success: TRUE
2448 * Failure: FALSE
2449 *
2450 * NOTES
2451 * Valid dwParams are: HP_ALGID, HP_HASHSIZE, HP_HASHVALUE. The hash will be
2452 * finalized if HP_HASHVALUE is queried.
2453 */
2454 BOOL WINAPI RSAENH_CPGetHashParam(HCRYPTPROV hProv, HCRYPTHASH hHash, DWORD dwParam, BYTE *pbData,
2456 {
2463 {
2466 }
2469 {
2472 }
2476 {
2479 }
2482 {
2485 }
2488 {
2501 }
2506 }
2509 {
2512 }
2520 }
2521 }
2523 /******************************************************************************
2524 * CPSetKeyParam (RSAENH.@)
2525 *
2526 * Set a parameter of a key object
2527 *
2528 * PARAMS
2529 * hProv [I] The key container to which the key belongs.
2530 * hKey [I] The key for which a parameter is to be set.
2531 * dwParam [I] Parameter type. See Notes.
2532 * pbData [I] Pointer to the parameter value.
2533 * dwFlags [I] Currently none defined.
2534 *
2535 * RETURNS
2536 * Success: TRUE.
2537 * Failure: FALSE.
2538 *
2539 * NOTES:
2540 * Defined dwParam types are:
2541 * - KP_MODE: Values MODE_CBC, MODE_ECB, MODE_CFB.
2542 * - KP_MODE_BITS: Shift width for cipher feedback mode. (Currently ignored by MS CSP's)
2543 * - KP_PERMISSIONS: Or'ed combination of CRYPT_ENCRYPT, CRYPT_DECRYPT,
2544 * CRYPT_EXPORT, CRYPT_READ, CRYPT_WRITE, CRYPT_MAC
2545 * - KP_IV: Initialization vector
2546 */
2547 BOOL WINAPI RSAENH_CPSetKeyParam(HCRYPTPROV hProv, HCRYPTKEY hKey, DWORD dwParam, BYTE *pbData,
2548 DWORD dwFlags)
2549 {
2556 {
2559 }
2564 }
2566 if (!lookup_handle(&handle_table, (unsigned int)hKey, RSAENH_MAGIC_KEY, (OBJECTHDR**)&pCryptKey))
2567 {
2570 }
2602 }
2614 }
2615 }
2617 /******************************************************************************
2618 * CPGetKeyParam (RSAENH.@)
2619 *
2620 * Query a key parameter.
2621 *
2622 * PARAMS
2623 * hProv [I] The key container, which the key belongs to.
2624 * hHash [I] The key object that is to be queried.
2625 * dwParam [I] Specifies the parameter that is to be queried.
2626 * pbData [I] Pointer to the buffer where the parameter value will be stored.
2627 * pdwDataLen [I/O] I: Buffer length at pbData, O: Length of the parameter value.
2628 * dwFlags [I] None currently defined.
2629 *
2630 * RETURNS
2631 * Success: TRUE
2632 * Failure: FALSE
2633 *
2634 * NOTES
2635 * Defined dwParam types are:
2636 * - KP_MODE: Values MODE_CBC, MODE_ECB, MODE_CFB.
2637 * - KP_MODE_BITS: Shift width for cipher feedback mode.
2638 * (Currently ignored by MS CSP's - always eight)
2639 * - KP_PERMISSIONS: Or'ed combination of CRYPT_ENCRYPT, CRYPT_DECRYPT,
2640 * CRYPT_EXPORT, CRYPT_READ, CRYPT_WRITE, CRYPT_MAC
2641 * - KP_IV: Initialization vector.
2642 * - KP_KEYLEN: Bitwidth of the key.
2643 * - KP_BLOCKLEN: Size of a block cipher block.
2644 * - KP_SALT: Salt value.
2645 */
2646 BOOL WINAPI RSAENH_CPGetKeyParam(HCRYPTPROV hProv, HCRYPTKEY hKey, DWORD dwParam, BYTE *pbData,
2648 {
2650 DWORD dwBitLen;
2656 {
2659 }
2664 }
2666 if (!lookup_handle(&handle_table, (unsigned int)hKey, RSAENH_MAGIC_KEY, (OBJECTHDR**)&pCryptKey))
2667 {
2670 }
2673 {
2707 }
2708 }
2710 /******************************************************************************
2711 * CPGetProvParam (RSAENH.@)
2712 *
2713 * Query a CSP parameter.
2714 *
2715 * PARAMS
2716 * hProv [I] The key container that is to be queried.
2717 * dwParam [I] Specifies the parameter that is to be queried.
2718 * pbData [I] Pointer to the buffer where the parameter value will be stored.
2719 * pdwDataLen [I/O] I: Buffer length at pbData, O: Length of the parameter value.
2720 * dwFlags [I] CRYPT_FIRST: Start enumeration (for PP_ENUMALGS{_EX}).
2721 *
2722 * RETURNS
2723 * Success: TRUE
2724 * Failure: FALSE
2725 * NOTES:
2726 * Defined dwParam types:
2727 * - PP_CONTAINER: Name of the key container.
2728 * - PP_NAME: Name of the cryptographic service provider.
2729 * - PP_SIG_KEYSIZE_INC: RSA signature keywidth granularity in bits.
2730 * - PP_KEYX_KEYSIZE_INC: RSA key-exchange keywidth granularity in bits.
2731 * - PP_ENUMALGS{_EX}: Query provider capabilities.
2732 */
2735 {
2737 PROV_ENUMALGS provEnumalgs;
2738 DWORD dwTemp;
2742 /* This is for dwParam 41, which does not seem to be documented
2743 * on MSDN. IE6 SP1 asks for it in the 'About' dialog, however.
2744 * Returning this BLOB seems to satisfy IE. The marked 0x00 seem
2745 * to be 'don't care's. If you know anything more specific about
2746 * provider parameter 41, please report to wine-devel@winehq.org */
2760 };
2767 {
2768 /* MSDN: hProv not containing valid context handle */
2771 }
2774 {
2794 }
2802 }
2805 {
2808 }
2813 {
2827 }
2835 {
2838 }
2866 }
2872 /* MSDN: Unknown parameter number in dwParam */
2875 }
2876 }
2878 /******************************************************************************
2879 * CPDeriveKey (RSAENH.@)
2880 *
2881 * Derives a key from a hash value.
2882 *
2883 * PARAMS
2884 * hProv [I] Key container for which a key is to be generated.
2885 * Algid [I] Crypto algorithm identifier for the key to be generated.
2886 * hBaseData [I] Hash from whose value the key will be derived.
2887 * dwFlags [I] See Notes.
2888 * phKey [O] The generated key.
2889 *
2890 * RETURNS
2891 * Success: TRUE
2892 * Failure: FALSE
2893 *
2894 * NOTES
2895 * Defined flags:
2896 * - CRYPT_EXPORTABLE: Key can be exported.
2897 * - CRYPT_NO_SALT: No salt is used for 40 bit keys.
2898 * - CRYPT_CREATE_SALT: Use remaining bits as salt value.
2899 */
2902 {
2906 DWORD dwLen;
2912 {
2915 }
2919 {
2922 }
2925 {
2928 }
2931 {
2936 /*
2937 * We derive the key material from the hash.
2938 * If the hash value is not large enough for the claimed key, we have to construct
2939 * a larger binary value based on the hash. This is documented in MSDN: CryptDeriveKey.
2940 */
2947 DWORD i;
2954 }
2968 }
2977 {
2980 }
2983 {
2984 /* See RFC 2246, chapter 6.3 Key calculation */
3018 }
3024 }
3028 }
3030 /******************************************************************************
3031 * CPGetUserKey (RSAENH.@)
3032 *
3033 * Returns a handle to the user's private key-exchange- or signature-key.
3034 *
3035 * PARAMS
3036 * hProv [I] The key container from which a user key is requested.
3037 * dwKeySpec [I] AT_KEYEXCHANGE or AT_SIGNATURE
3038 * phUserKey [O] Handle to the requested key or INVALID_HANDLE_VALUE in case of failure.
3039 *
3040 * RETURNS
3041 * Success: TRUE.
3042 * Failure: FALSE.
3043 *
3044 * NOTE
3045 * A newly created key container does not contain private user key. Create them with CPGenKey.
3046 */
3048 {
3055 {
3056 /* MSDN: hProv not containing valid context handle */
3059 }
3062 {
3075 }
3078 {
3079 /* MSDN: dwKeySpec parameter specifies nonexistent key */
3082 }
3085 }
3087 /******************************************************************************
3088 * CPHashData (RSAENH.@)
3089 *
3090 * Updates a hash object with the given data.
3091 *
3092 * PARAMS
3093 * hProv [I] Key container to which the hash object belongs.
3094 * hHash [I] Hash object which is to be updated.
3095 * pbData [I] Pointer to data with which the hash object is to be updated.
3096 * dwDataLen [I] Length of the data.
3097 * dwFlags [I] Currently none defined.
3098 *
3099 * RETURNS
3100 * Success: TRUE.
3101 * Failure: FALSE.
3102 *
3103 * NOTES
3104 * The actual hash value is queried with CPGetHashParam, which will finalize
3105 * the hash. Updating a finalized hash will fail with a last error NTE_BAD_HASH_STATE.
3106 */
3109 {
3116 {
3119 }
3123 {
3126 }
3129 {
3132 }
3138 {
3141 }
3145 }
3147 /******************************************************************************
3148 * CPHashSessionKey (RSAENH.@)
3149 *
3150 * Updates a hash object with the binary representation of a symmetric key.
3151 *
3152 * PARAMS
3153 * hProv [I] Key container to which the hash object belongs.
3154 * hHash [I] Hash object which is to be updated.
3155 * hKey [I] The symmetric key, whose binary value will be added to the hash.
3156 * dwFlags [I] CRYPT_LITTLE_ENDIAN, if the binary key value shall be interpreted as little endian.
3157 *
3158 * RETURNS
3159 * Success: TRUE.
3160 * Failure: FALSE.
3161 */
3163 DWORD dwFlags)
3164 {
3167 DWORD i;
3173 {
3176 }
3181 }
3189 }
3190 }
3193 }
3195 /******************************************************************************
3196 * CPReleaseContext (RSAENH.@)
3197 *
3198 * Release a key container.
3199 *
3200 * PARAMS
3201 * hProv [I] Key container to be released.
3202 * dwFlags [I] Currently none defined.
3203 *
3204 * RETURNS
3205 * Success: TRUE
3206 * Failure: FALSE
3207 */
3209 {
3213 {
3214 /* MSDN: hProv not containing valid context handle */
3217 }
3222 }
3225 }
3227 /******************************************************************************
3228 * CPSetHashParam (RSAENH.@)
3229 *
3230 * Set a parameter of a hash object
3231 *
3232 * PARAMS
3233 * hProv [I] The key container to which the key belongs.
3234 * hHash [I] The hash object for which a parameter is to be set.
3235 * dwParam [I] Parameter type. See Notes.
3236 * pbData [I] Pointer to the parameter value.
3237 * dwFlags [I] Currently none defined.
3238 *
3239 * RETURNS
3240 * Success: TRUE.
3241 * Failure: FALSE.
3242 *
3243 * NOTES
3244 * Currently only the HP_HMAC_INFO dwParam type is defined.
3245 * The HMAC_INFO struct will be deep copied into the hash object.
3246 * See Internet RFC 2104 for details on the HMAC algorithm.
3247 */
3250 {
3259 {
3262 }
3267 }
3271 {
3274 }
3283 {
3286 }
3290 }
3293 }
3312 }
3313 }
3315 /******************************************************************************
3316 * CPSetProvParam (RSAENH.@)
3317 */
3318 BOOL WINAPI RSAENH_CPSetProvParam(HCRYPTPROV hProv, DWORD dwParam, BYTE *pbData, DWORD dwFlags)
3319 {
3322 }
3324 /******************************************************************************
3325 * CPSignHash (RSAENH.@)
3326 *
3327 * Sign a hash object
3328 *
3329 * PARAMS
3330 * hProv [I] The key container, to which the hash object belongs.
3331 * hHash [I] The hash object to be signed.
3332 * dwKeySpec [I] AT_SIGNATURE or AT_KEYEXCHANGE: Key used to generate the signature.
3333 * sDescription [I] Should be NULL for security reasons.
3334 * dwFlags [I] 0, CRYPT_NOHASHOID or CRYPT_X931_FORMAT: Format of the signature.
3335 * pbSignature [O] Buffer, to which the signature will be stored. May be NULL to query SigLen.
3336 * pdwSigLen [I/O] Size of the buffer (in), Length of the signature (out)
3337 *
3338 * RETURNS
3339 * Success: TRUE
3340 * Failure: FALSE
3341 */
3345 {
3346 HCRYPTKEY hCryptKey;
3348 DWORD dwHashLen;
3350 ALG_ID aiAlgid;
3359 }
3365 {
3368 }
3373 }
3375 {
3379 }
3385 {
3387 }
3388 }
3391 if (!RSAENH_CPGetHashParam(hProv, hHash, HP_ALGID, (BYTE*)&aiAlgid, &dwHashLen, 0)) return FALSE;
3394 if (!RSAENH_CPGetHashParam(hProv, hHash, HP_HASHVAL, abHashValue, &dwHashLen, 0)) return FALSE;
3397 if (!build_hash_signature(pbSignature, *pdwSigLen, aiAlgid, abHashValue, dwHashLen, dwFlags)) {
3399 }
3401 return encrypt_block_impl(pCryptKey->aiAlgid, &pCryptKey->context, pbSignature, pbSignature, RSAENH_ENCRYPT);
3402 }
3404 /******************************************************************************
3405 * CPVerifySignature (RSAENH.@)
3406 *
3407 * Verify the signature of a hash object.
3408 *
3409 * PARAMS
3410 * hProv [I] The key container, to which the hash belongs.
3411 * hHash [I] The hash for which the signature is verified.
3412 * pbSignature [I] The binary signature.
3413 * dwSigLen [I] Length of the signature BLOB.
3414 * hPubKey [I] Public key used to verify the signature.
3415 * sDescription [I] Should be NULL for security reasons.
3416 * dwFlags [I] 0, CRYPT_NOHASHOID or CRYPT_X931_FORMAT: Format of the signature.
3417 *
3418 * RETURNS
3419 * Success: TRUE (Signature is valid)
3420 * Failure: FALSE (GetLastError() == NTE_BAD_SIGNATURE, if signature is invalid)
3421 */
3422 BOOL WINAPI RSAENH_CPVerifySignature(HCRYPTPROV hProv, HCRYPTHASH hHash, CONST BYTE *pbSignature,
3424 DWORD dwFlags)
3425 {
3428 DWORD dwHashLen;
3429 ALG_ID aiAlgid;
3433 TRACE("(hProv=%08lx, hHash=%08lx, pbSignature=%p, dwSigLen=%ld, hPubKey=%08lx, sDescription=%s, "
3435 dwFlags);
3440 }
3443 {
3446 }
3450 {
3453 }
3458 {
3460 }
3461 }
3464 if (!RSAENH_CPGetHashParam(hProv, hHash, HP_ALGID, (BYTE*)&aiAlgid, &dwHashLen, 0)) return FALSE;
3467 if (!RSAENH_CPGetHashParam(hProv, hHash, HP_HASHVAL, abHashValue, &dwHashLen, 0)) return FALSE;
3473 }
3479 }
3482 RSAENH_DECRYPT))
3483 {
3485 }
3487 if (!build_hash_signature(pbConstructed, dwSigLen, aiAlgid, abHashValue, dwHashLen, dwFlags)) {
3489 }
3494 }
3497 cleanup:
3501 }
3528 };
3538 };
3541 /******************************************************************************
3542 * DllRegisterServer (RSAENH.@)
3543 *
3544 * Dll self registration.
3545 *
3546 * PARAMS
3547 *
3548 * RETURNS
3549 * Success: S_OK.
3550 * Failure: != S_OK
3551 *
3552 * NOTES
3553 * Registers the following keys:
3554 * - HKLM\Software\Microsoft\Cryptography\Defaults\Provider\
3555 * Microsoft Base Cryptographic Provider v1.0
3556 * - HKLM\Software\Microsoft\Cryptography\Defaults\Provider\
3557 * Microsoft Enhanced Cryptographic Provider
3558 * - HKLM\Software\Microsoft\Cryptography\Defaults\Provider\
3559 * Microsoft Strong Cryptographpic Provider
3560 * - HKLM\Software\Microsoft\Cryptography\Defaults\Provider Types\Type 001
3561 */
3563 {
3564 HKEY key;
3565 DWORD dp;
3574 {
3576 {
3587 }
3589 }
3590 }
3596 {
3598 {
3618 }
3619 }
3621 }
3624 }
3626 /******************************************************************************
3627 * DllUnregisterServer (RSAENH.@)
3628 *
3629 * Dll self unregistration.
3630 *
3631 * PARAMS
3632 *
3633 * RETURNS
3634 * Success: S_OK
3635 *
3636 * NOTES
3637 * For the relevant keys see DllRegisterServer.
3638 */
3640 {
3648 }