2023-06-27 02:02:02 +00:00
|
|
|
|
#include "pch.h"
|
|
|
|
|
|
#include "tunnel.h"
|
|
|
|
|
|
#include "usrerr.h"
|
|
|
|
|
|
#include "misc.h"
|
|
|
|
|
|
|
|
|
|
|
|
#include <bcrypt.h>
|
2023-08-14 01:20:25 +00:00
|
|
|
|
#include <wincrypt.h>
|
2023-06-27 02:02:02 +00:00
|
|
|
|
#include <shlwapi.h>
|
2023-08-15 07:34:54 +00:00
|
|
|
|
#include <strsafe.h>
|
|
|
|
|
|
#include <cppcodec/base64_url_unpadded.hpp>
|
2023-06-27 02:02:02 +00:00
|
|
|
|
#include <spdlog/spdlog.h>
|
|
|
|
|
|
|
|
|
|
|
|
#pragma comment(lib, "Bcrypt.lib")
|
2023-08-14 01:20:25 +00:00
|
|
|
|
#pragma comment(lib, "Crypt32.lib")
|
2023-06-27 02:02:02 +00:00
|
|
|
|
|
|
|
|
|
|
#define NT_FAILED(s) (((NTSTATUS)(s)) < 0)
|
|
|
|
|
|
|
|
|
|
|
|
static const LPCWSTR g_BcryptHash[] = {
|
|
|
|
|
|
BCRYPT_MD2_ALGORITHM,
|
|
|
|
|
|
BCRYPT_MD4_ALGORITHM,
|
|
|
|
|
|
BCRYPT_MD5_ALGORITHM,
|
|
|
|
|
|
BCRYPT_SHA1_ALGORITHM,
|
|
|
|
|
|
BCRYPT_SHA256_ALGORITHM,
|
|
|
|
|
|
BCRYPT_SHA384_ALGORITHM,
|
|
|
|
|
|
BCRYPT_SHA512_ALGORITHM,
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2023-08-14 01:20:25 +00:00
|
|
|
|
int CalcFileHash(HASH_TYPE type, const TCHAR *pPath, TCHAR outHash[]) {
|
2023-06-27 02:02:02 +00:00
|
|
|
|
HANDLE hFile;
|
|
|
|
|
|
BYTE rgbFile[1024];
|
|
|
|
|
|
DWORD cbRead = 0;
|
|
|
|
|
|
BCRYPT_ALG_HANDLE hAlg = nullptr;
|
|
|
|
|
|
BCRYPT_HASH_HANDLE hHash = nullptr;
|
|
|
|
|
|
NTSTATUS status;
|
|
|
|
|
|
DWORD cbData = 0, cbHash = 0, cbHashObject = 0;
|
|
|
|
|
|
PBYTE pbHashObject;
|
|
|
|
|
|
PBYTE pbHash;
|
|
|
|
|
|
|
|
|
|
|
|
if (pPath == nullptr) {
|
2023-07-14 09:29:02 +00:00
|
|
|
|
SPDLOG_ERROR(TEXT("Input pPath params error: {0}"), pPath);
|
2023-06-27 02:02:02 +00:00
|
|
|
|
return -ERR_INPUT_PARAMS;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (!PathFileExists(pPath)) {
|
2023-07-14 09:29:02 +00:00
|
|
|
|
SPDLOG_ERROR(TEXT("File \'{0}\' not found."), pPath);
|
2023-06-27 02:02:02 +00:00
|
|
|
|
return -ERR_ITEM_UNEXISTS;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
hFile = CreateFile(pPath,
|
|
|
|
|
|
GENERIC_READ,
|
|
|
|
|
|
FILE_SHARE_READ,
|
|
|
|
|
|
nullptr,
|
|
|
|
|
|
OPEN_EXISTING,
|
|
|
|
|
|
FILE_FLAG_SEQUENTIAL_SCAN,
|
|
|
|
|
|
nullptr);
|
|
|
|
|
|
|
|
|
|
|
|
if (INVALID_HANDLE_VALUE == hFile) {
|
2023-07-14 09:29:02 +00:00
|
|
|
|
SPDLOG_ERROR(TEXT("Error opening file %s\nError: {0}"), pPath, GetLastError());
|
2023-06-27 02:02:02 +00:00
|
|
|
|
return -ERR_OPEN_FILE;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//open an algorithm handle
|
|
|
|
|
|
if (NT_FAILED(status = BCryptOpenAlgorithmProvider(&hAlg, g_BcryptHash[type], nullptr, 0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptOpenAlgorithmProvider"), status);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
return -ERR_BCRYPT_OPEN;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//calculate the size of the buffer to hold the hash object
|
|
|
|
|
|
if (NT_FAILED(status = BCryptGetProperty(hAlg,
|
|
|
|
|
|
BCRYPT_OBJECT_LENGTH,
|
|
|
|
|
|
reinterpret_cast<PBYTE>(&cbHashObject),
|
|
|
|
|
|
sizeof(DWORD),
|
|
|
|
|
|
&cbData,
|
|
|
|
|
|
0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptGetProperty"), status);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
return -ERR_BCRYPT_GETPROPERTY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//allocate the hash object on the heap
|
|
|
|
|
|
pbHashObject = static_cast<PBYTE>(HeapAlloc(GetProcessHeap(), 0, cbHashObject));
|
|
|
|
|
|
if (nullptr == pbHashObject) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Malloc {0} bytes memory error"), cbHashObject);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
return -ERR_MALLOC_MEMORY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//calculate the length of the hash
|
|
|
|
|
|
if (NT_FAILED(status = BCryptGetProperty(hAlg,
|
|
|
|
|
|
BCRYPT_HASH_LENGTH,
|
|
|
|
|
|
reinterpret_cast<PBYTE>(&cbHash),
|
|
|
|
|
|
sizeof(DWORD),
|
|
|
|
|
|
&cbData,
|
|
|
|
|
|
0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptGetProperty"), status);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
return -ERR_BCRYPT_GETPROPERTY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//allocate the hash buffer on the heap
|
|
|
|
|
|
pbHash = static_cast<PBYTE>(HeapAlloc(GetProcessHeap(), 0, cbHash));
|
|
|
|
|
|
if (nullptr == pbHash) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Malloc {0} bytes memory error"), cbHash);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
return -ERR_MALLOC_MEMORY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//create a hash
|
|
|
|
|
|
if (NT_FAILED(status = BCryptCreateHash(hAlg, &hHash, pbHashObject, cbHashObject, nullptr, 0, 0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptCreateHash"), status);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
return -ERR_BCRYPT_CREATEHASH;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
while (ReadFile(hFile, rgbFile, 1024, &cbRead, nullptr)) {
|
|
|
|
|
|
if (0 == cbRead) {
|
|
|
|
|
|
break;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (NT_FAILED(status = BCryptHashData(hHash, rgbFile, cbRead, 0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptHashData"), status);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
BCryptDestroyHash(hHash);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
return -ERR_BCRYPT_HASHDATA;
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//close the hash
|
|
|
|
|
|
if (NT_FAILED(status = BCryptFinishHash(hHash, pbHash, cbHash, 0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptFinishHash"), status);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
BCryptDestroyHash(hHash);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
return -ERR_BCRYPT_FINISHHASH;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
binToHexString(outHash, pbHash, cbHash);
|
|
|
|
|
|
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
BCryptDestroyHash(hHash);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
CloseHandle(hFile);
|
|
|
|
|
|
|
2023-08-14 01:20:25 +00:00
|
|
|
|
return ERR_SUCCESS;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* @brief 计算 HMAC HASH 值
|
|
|
|
|
|
* @param[in] type Hash 类型 @see HASH_TYPE
|
|
|
|
|
|
* @param[in] pHashData 需要计算 Hash 值的数据
|
|
|
|
|
|
* @param[in] inSize 需要计算 Hash 值的数据大小(字节数)
|
|
|
|
|
|
* @param[in] pKey HMAC Hash 秘钥
|
|
|
|
|
|
* @param[in] keySize HMAC Hash 秘钥大小(字节数)
|
|
|
|
|
|
* @param[out] outHash 计算结果
|
|
|
|
|
|
* @param[in] outBase64 是否以 BASE64 字符串输出
|
|
|
|
|
|
* @return 函数执行结果 0: 成功, 小于0 失败 @see USER_ERRNO
|
|
|
|
|
|
* - -ERR_INPUT_PARAMS 输入参数错误
|
|
|
|
|
|
* - -ERR_ITEM_UNEXISTS 文件不存在
|
|
|
|
|
|
* - -ERR_OPEN_FILE 打开文件失败
|
|
|
|
|
|
* - -ERR_BCRYPT_OPEN 创建加解密算法失败
|
|
|
|
|
|
* - -ERR_BCRYPT_GETPROPERTY 获取加解密算法属性失败
|
|
|
|
|
|
* - -ERR_BCRYPT_CREATEHASH 创建 Hash 算法失败
|
|
|
|
|
|
* - -ERR_BCRYPT_HASHDATA 计算 Hash 数据失败
|
|
|
|
|
|
* - -ERR_BCRYPT_FINISHHASH 计算 Hash 结果失败
|
|
|
|
|
|
* - ERR_SUCCESS 成功
|
|
|
|
|
|
*/
|
|
|
|
|
|
int CalcHmacHash(HASH_TYPE type,
|
|
|
|
|
|
PUCHAR pHashData,
|
|
|
|
|
|
int inSize,
|
|
|
|
|
|
PUCHAR pKey,
|
|
|
|
|
|
int keySize,
|
|
|
|
|
|
TCHAR outHash[],
|
|
|
|
|
|
bool outBase64) {
|
|
|
|
|
|
BCRYPT_ALG_HANDLE hAlg = nullptr;
|
|
|
|
|
|
BCRYPT_HASH_HANDLE hHash = nullptr;
|
|
|
|
|
|
NTSTATUS status;
|
|
|
|
|
|
DWORD cbData = 0, cbHash = 0, cbHashObject = 0;
|
|
|
|
|
|
PBYTE pbHashObject;
|
|
|
|
|
|
PBYTE pbHash;
|
|
|
|
|
|
|
|
|
|
|
|
//open an algorithm handle
|
|
|
|
|
|
if (NT_FAILED(
|
|
|
|
|
|
status = BCryptOpenAlgorithmProvider(&hAlg, g_BcryptHash[type], nullptr, BCRYPT_ALG_HANDLE_HMAC_FLAG))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptOpenAlgorithmProvider"), status);
|
|
|
|
|
|
return -ERR_BCRYPT_OPEN;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//calculate the size of the buffer to hold the hash object
|
|
|
|
|
|
if (NT_FAILED(status = BCryptGetProperty(hAlg,
|
|
|
|
|
|
BCRYPT_OBJECT_LENGTH,
|
|
|
|
|
|
reinterpret_cast<PBYTE>(&cbHashObject),
|
|
|
|
|
|
sizeof(DWORD),
|
|
|
|
|
|
&cbData,
|
|
|
|
|
|
0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptGetProperty"), status);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
return -ERR_BCRYPT_GETPROPERTY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//allocate the hash object on the heap
|
|
|
|
|
|
pbHashObject = static_cast<PBYTE>(HeapAlloc(GetProcessHeap(), 0, cbHashObject));
|
|
|
|
|
|
if (nullptr == pbHashObject) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Malloc {0} bytes memory error"), cbHashObject);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
return -ERR_MALLOC_MEMORY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//calculate the length of the hash
|
|
|
|
|
|
if (NT_FAILED(status = BCryptGetProperty(hAlg,
|
|
|
|
|
|
BCRYPT_HASH_LENGTH,
|
|
|
|
|
|
reinterpret_cast<PBYTE>(&cbHash),
|
|
|
|
|
|
sizeof(DWORD),
|
|
|
|
|
|
&cbData,
|
|
|
|
|
|
0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptGetProperty"), status);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
return -ERR_BCRYPT_GETPROPERTY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//allocate the hash buffer on the heap
|
|
|
|
|
|
pbHash = static_cast<PBYTE>(HeapAlloc(GetProcessHeap(), 0, cbHash));
|
|
|
|
|
|
if (nullptr == pbHash) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Malloc {0} bytes memory error"), cbHash);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
return -ERR_MALLOC_MEMORY;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//create a hash
|
|
|
|
|
|
if (NT_FAILED(status = BCryptCreateHash(hAlg, &hHash, pbHashObject, cbHashObject, pKey, keySize, 0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptCreateHash"), status);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
return -ERR_BCRYPT_CREATEHASH;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//hash some data
|
|
|
|
|
|
if (NT_FAILED(status = BCryptHashData(hHash, pHashData, inSize, 0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptHashData"), status);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
BCryptDestroyHash(hHash);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
return -ERR_BCRYPT_HASHDATA;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
//close the hash
|
|
|
|
|
|
if (NT_FAILED(status = BCryptFinishHash(hHash, pbHash, cbHash, 0))) {
|
|
|
|
|
|
SPDLOG_ERROR(TEXT("Error {0} returned by BCryptFinishHash"), status);
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
BCryptDestroyHash(hHash);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
return -ERR_BCRYPT_FINISHHASH;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (outBase64) {
|
2023-08-15 07:34:54 +00:00
|
|
|
|
using base64 = cppcodec::base64_url_unpadded;
|
|
|
|
|
|
StringCbCopy(outHash, 256, base64::encode(pbHash, cbHash).c_str());
|
2023-08-14 01:20:25 +00:00
|
|
|
|
} else {
|
|
|
|
|
|
binToHexString(outHash, pbHash, cbHash);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
BCryptCloseAlgorithmProvider(hAlg, 0);
|
|
|
|
|
|
BCryptDestroyHash(hHash);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHashObject);
|
|
|
|
|
|
HeapFree(GetProcessHeap(), 0, pbHash);
|
|
|
|
|
|
|
2023-06-27 02:02:02 +00:00
|
|
|
|
return ERR_SUCCESS;
|
|
|
|
|
|
}
|
