📄 asn1_algid.c
字号:
so if it's not a conventional encryption algorithm we process the
NULL if required and return */
if( ( queryInfo->cryptAlgo >= CRYPT_ALGO_FIRST_HASH && \
queryInfo->cryptAlgo <= CRYPT_ALGO_LAST_HASH ) || \
( queryInfo->cryptAlgo >= CRYPT_ALGO_FIRST_MAC && \
queryInfo->cryptAlgo <= CRYPT_ALGO_LAST_MAC ) )
return( ( length > 0 ) ? readNull( stream ) : CRYPT_OK );
/* If it's not a hash/MAC algorithm it has to be a conventional
encryption algorithm */
if( queryInfo->cryptAlgo < CRYPT_ALGO_FIRST_CONVENTIONAL || \
queryInfo->cryptAlgo > CRYPT_ALGO_LAST_CONVENTIONAL )
return( CRYPT_ERROR_NOTAVAIL );
/* Read the algorithm-specific parameters. In theory we should do
something with some of the values like the IV size parameter, but
since the standard never explains what to do if it's something other
than the algorithm block size (Left pad? Right pad? Sign-extend?
Repeat the data?) it's safer not to do anything ("Never check for an
error that you don't know how to handle"). In any case there are no
known cases of these strange values ever being used (probably because
all existing software would break) so we make sure that they're
present but otherwise ignore them */
switch( queryInfo->cryptAlgo )
{
case CRYPT_ALGO_3DES:
case CRYPT_ALGO_AES:
case CRYPT_ALGO_BLOWFISH:
case CRYPT_ALGO_DES:
if( queryInfo->cryptMode == CRYPT_MODE_ECB )
{
/* The NULL parameter has already been read in
readAlgoIDheader() */
return( CRYPT_OK );
}
if( ( queryInfo->cryptMode == CRYPT_MODE_CBC ) || \
( queryInfo->cryptAlgo == CRYPT_ALGO_AES && \
queryInfo->cryptMode == CRYPT_MODE_OFB ) )
{
return( readOctetString( stream, queryInfo->iv,
&queryInfo->ivLength,
( queryInfo->cryptAlgo == CRYPT_ALGO_AES ) ? \
16 : 8, CRYPT_MAX_IVSIZE ) );
}
readSequence( stream, NULL );
readOctetString( stream, queryInfo->iv, &queryInfo->ivLength,
8, CRYPT_MAX_IVSIZE );
return( readShortInteger( stream, NULL ) );
#ifdef USE_CAST
case CRYPT_ALGO_CAST:
readSequence( stream, NULL );
readOctetString( stream, queryInfo->iv, &queryInfo->ivLength,
8, CRYPT_MAX_IVSIZE );
return( readShortInteger( stream, NULL ) );
#endif /* USE_CAST */
#ifdef USE_IDEA
case CRYPT_ALGO_IDEA:
{
int paramTag;
if( queryInfo->cryptMode == CRYPT_MODE_ECB )
{
/* The NULL parameter has already been read in
readAlgoIDheader() */
return( CRYPT_OK );
}
status = readSequence( stream, NULL );
if( cryptStatusError( status ) )
return( status );
paramTag = peekTag( stream );
if( cryptStatusError( paramTag ) )
return( paramTag );
if( queryInfo->cryptMode == CRYPT_MODE_CFB )
{
int itemsProcessed;
/* Skip the CFB r, k, and j parameters */
for( itemsProcessed = 0;
( paramTag == MAKE_CTAG_PRIMITIVE( 0 ) || \
paramTag == MAKE_CTAG_PRIMITIVE( 1 ) || \
paramTag == MAKE_CTAG_PRIMITIVE( 2 ) ) && \
itemsProcessed < 4; itemsProcessed++ )
{
long value;
status = readShortIntegerTag( stream, &value, paramTag );
if( cryptStatusError( status ) )
return( status );
if( value != 64 )
return( CRYPT_ERROR_NOTAVAIL );
paramTag = peekTag( stream );
if( cryptStatusError( paramTag ) )
return( paramTag );
}
if( itemsProcessed >= 4 )
return( CRYPT_ERROR_BADDATA );
return( readOctetStringTag( stream, queryInfo->iv,
&queryInfo->ivLength,
8, CRYPT_MAX_IVSIZE, 3 ) );
}
if( queryInfo->cryptMode == CRYPT_MODE_OFB && \
paramTag == BER_INTEGER )
{
long value;
/* Skip the OFB j parameter */
status = readShortInteger( stream, &value );
if( cryptStatusError( status ) )
return( status );
if( value != 64 )
return( CRYPT_ERROR_NOTAVAIL );
}
return( readOctetString( stream, queryInfo->iv,
&queryInfo->ivLength,
8, CRYPT_MAX_IVSIZE ) );
}
#endif /* USE_CAST */
#ifdef USE_RC2
case CRYPT_ALGO_RC2:
/* In theory we should check that the parameter value ==
RC2_KEYSIZE_MAGIC (corresponding to a 128-bit key) but in
practice this doesn't really matter, we just use whatever we
find inside the PKCS #1 padding */
readSequence( stream, NULL );
if( queryInfo->cryptMode != CRYPT_MODE_CBC )
return( readShortInteger( stream, NULL ) );
readShortInteger( stream, NULL );
return( readOctetString( stream, queryInfo->iv,
&queryInfo->ivLength,
8, CRYPT_MAX_IVSIZE ) );
#endif /* USE_RC2 */
#ifdef USE_RC4
case CRYPT_ALGO_RC4:
/* The NULL parameter has already been read in
readAlgoIDheader() */
return( CRYPT_OK );
#endif /* USE_RC4 */
#ifdef USE_RC5
case CRYPT_ALGO_RC5:
{
long val1, val2, val3;
readSequence( stream, NULL );
readShortInteger( stream, &val1 ); /* Version */
readShortInteger( stream, &val2 ); /* Rounds */
status = readShortInteger( stream, &val3 ); /* Block size */
if( cryptStatusError( status ) )
return( status );
if( val1 != 16 || val2 != 12 || val3 != 64 )
{
/* This algorithm makes enough of a feature of its variable
parameters that we do actually check to make sure that
they're sensible since it may just be possible that
someone playing with an implementation decides to use
weird values */
return( CRYPT_ERROR_NOTAVAIL );
}
return( readOctetString( stream, queryInfo->iv,
&queryInfo->ivLength,
8, CRYPT_MAX_IVSIZE ) );
}
#endif /* USE_RC5 */
#ifdef USE_SKIPJACK
case CRYPT_ALGO_SKIPJACK:
readSequence( stream, NULL );
return( readOctetString( stream, queryInfo->iv,
&queryInfo->ivLength,
8, CRYPT_MAX_IVSIZE ) );
#endif /* USE_SKIPJACK */
}
retIntError();
}
/* Get the size of an EncryptionAlgorithmIdentifier record */
CHECK_RETVAL \
int sizeofCryptContextAlgoID( IN_HANDLE const CRYPT_CONTEXT iCryptContext )
{
STREAM nullStream;
int status;
REQUIRES( isHandleRangeValid( iCryptContext ) );
/* Determine how large the algoID and associated parameters are.
Because this is a rather complex operation the easiest way to do it
is to write to a null stream and get its size */
sMemNullOpen( &nullStream );
status = writeCryptContextAlgoID( &nullStream, iCryptContext );
if( cryptStatusOK( status ) )
status = stell( &nullStream );
sMemClose( &nullStream );
return( status );
}
/* Write an EncryptionAlgorithmIdentifier record */
RETVAL STDC_NONNULL_ARG( ( 1 ) ) \
int writeCryptContextAlgoID( INOUT STREAM *stream,
IN_HANDLE const CRYPT_CONTEXT iCryptContext )
{
const BYTE *oid;
BYTE iv[ CRYPT_MAX_IVSIZE + 8 ];
CRYPT_ALGO_TYPE cryptAlgo;
CRYPT_MODE_TYPE cryptMode = DUMMY_INIT;
int oidSize, ivSize = 0, sizeofIV = 0, paramSize, status;
assert( isWritePtr( stream, sizeof( STREAM ) ) );
REQUIRES_S( isHandleRangeValid( iCryptContext ) );
/* Extract the information that we need to write the
AlgorithmIdentifier */
status = krnlSendMessage( iCryptContext, IMESSAGE_GETATTRIBUTE,
&cryptAlgo, CRYPT_CTXINFO_ALGO );
if( cryptStatusOK( status ) )
status = krnlSendMessage( iCryptContext, IMESSAGE_GETATTRIBUTE,
&cryptMode, CRYPT_CTXINFO_MODE );
if( cryptStatusOK( status ) && !isStreamCipher( cryptAlgo ) && \
needsIV( cryptMode ) )
{
MESSAGE_DATA msgData;
setMessageData( &msgData, iv, CRYPT_MAX_IVSIZE );
status = krnlSendMessage( iCryptContext, IMESSAGE_GETATTRIBUTE_S,
&msgData, CRYPT_CTXINFO_IV );
if( cryptStatusOK( status ) )
{
ivSize = msgData.length;
sizeofIV = ( int ) sizeofObject( ivSize );
}
}
if( cryptStatusError( status ) )
{
assert( DEBUG_WARN );
return( status );
}
ENSURES_S( cryptAlgo >= CRYPT_ALGO_FIRST_CONVENTIONAL && \
cryptAlgo <= CRYPT_ALGO_LAST_CONVENTIONAL );
/* Get the OID for this algorithm */
if( ( oid = algorithmToOIDcheck( cryptAlgo, cryptMode ) ) == NULL )
{
/* Some algorithm+mode combinations can't be encoded using the
available PKCS #7 OIDs, the best that we can do in this case is
alert the user in debug mode and return a CRYPT_ERROR_NOTAVAIL */
assert( DEBUG_WARN );
return( CRYPT_ERROR_NOTAVAIL );
}
oidSize = sizeofOID( oid );
ENSURES_S( oidSize >= MIN_OID_SIZE && oidSize <= MAX_OID_SIZE );
/* Write the algorithm-specific parameters */
switch( cryptAlgo )
{
case CRYPT_ALGO_3DES:
case CRYPT_ALGO_AES:
case CRYPT_ALGO_BLOWFISH:
case CRYPT_ALGO_DES:
{
const int noBits = ( cryptAlgo == CRYPT_ALGO_AES ) ? 128 : 64;
paramSize = \
( cryptMode == CRYPT_MODE_ECB ) ? \
sizeofNull() : \
( ( cryptMode == CRYPT_MODE_CBC ) || \
( cryptAlgo == CRYPT_ALGO_AES && cryptMode == CRYPT_MODE_OFB ) ) ? \
sizeofIV : \
( int ) sizeofObject( sizeofIV + sizeofShortInteger( noBits ) );
writeSequence( stream, oidSize + paramSize );
if( cryptAlgo == CRYPT_ALGO_AES )
{
int keySize;
/* AES uses a somewhat odd encoding in which the last byte
of the OID jumps in steps of 20 depending on the key
size, so we adjust the OID that we actually write based
on the key size. It's somewhat unlikely that any
implementation actually cares about this since the size
information is always communicated anderswhere, but we do
it just in case */
status = krnlSendMessage( iCryptContext, IMESSAGE_GETATTRIBUTE,
&keySize, CRYPT_CTXINFO_KEYSIZE );
if( cryptStatusError( status ) )
return( status );
swrite( stream, oid, oidSize - 1 );
sputc( stream, oid[ oidSize - 1 ] + \
( ( keySize == 16 ) ? 0 : \
( keySize == 24 ) ? 20 : 40 ) );
}
else
swrite( stream, oid, oidSize );
if( cryptMode == CRYPT_MODE_ECB )
return( writeNull( stream, DEFAULT_TAG ) );
if( ( cryptMode == CRYPT_MODE_CBC ) || \
( cryptAlgo == CRYPT_ALGO_AES && cryptMode == CRYPT_MODE_OFB ) )
return( writeOctetString( stream, iv, ivSize, DEFAULT_TAG ) );
writeSequence( stream, sizeofIV + sizeofShortInteger( noBits ) );
writeOctetString( stream, iv, ivSize, DEFAULT_TAG );
return( writeShortInteger( stream, noBits, DEFAULT_TAG ) );
}
#ifdef USE_CAST
case CRYPT_ALGO_CAST:
paramSize = sizeofIV + sizeofShortInteger( 128 );
writeSequence( stream, oidSize + \
( int ) sizeofObject( paramSize ) );
swrite( stream, oid, oidSize );
writeSequence( stream, paramSize );
writeOctetString( stream, iv, ivSize, DEFAULT_TAG );
return( writeShortInteger( stream, 128, DEFAULT_TAG ) );
#endif /* USE_CAST */
#ifdef USE_IDEA
case CRYPT_ALGO_IDEA:
paramSize = ( cryptMode == CRYPT_MODE_ECB ) ? \
sizeofNull() : \
( int ) sizeofObject( sizeofIV );
writeSequence( stream, oidSize + paramSize );
swrite( stream, oid, oidSize );
if( cryptMode == CRYPT_MODE_ECB )
return( writeNull( stream, DEFAULT_TAG ) );
writeSequence( stream, sizeofIV );
return( writeOctetString( stream, iv, ivSize, \
( cryptMode == CRYPT_MODE_CFB ) ? \
3 : DEFAULT_TAG ) );
#endif /* USE_IDEA */
#ifdef USE_RC2
case CRYPT_ALGO_RC2:
paramSize = ( ( cryptMode == CRYPT_MODE_ECB ) ? 0 : sizeofIV ) + \
sizeofShortInteger( RC2_KEYSIZE_MAGIC );
writeSequence( stream, oidSize + \
( int ) sizeofObject( paramSize ) );
swrite( stream, oid, oidSize );
writeSequence( stream, paramSize );
if( cryptMode != CRYPT_MODE_CBC )
{
return( writeShortInteger( stream, RC2_KEYSIZE_MAGIC,
DEFAULT_TAG ) );
}
writeShortInteger( stream, RC2_KEYSIZE_MAGIC, DEFAULT_TAG );
return( writeOctetString( stream, iv, ivSize, DEFAULT_TAG ) );
#endif /* USE_RC2 */
#ifdef USE_RC4
case CRYPT_ALGO_RC4:
writeSequence( stream, oidSize + sizeofNull() );
swrite( stream, oid, oidSize );
return( writeNull( stream, DEFAULT_TAG ) );
#endif /* USE_RC4 */
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -