df/d13/sysfunc_8c_source.html

/*

 * COPYRIGHT:       See COPYING in the top level directory

 * PROJECT:         ReactOS system libraries

 * FILE:            dll/win32/advapi32/misc/sysfunc.c

 * PURPOSE:         advapi32.dll system functions (undocumented)

 * PROGRAMMER:      Emanuele Aliberti

 * UPDATE HISTORY:

 *  19990413 EA created

 *  19990415 EA

 *  20080424 Ported from WINE

 */


#include <advapi32.h>

#include <ntsecapi.h>

#include <ksecioctl.h>

#include <md4.h>

#include <md5.h>

#include <rc4.h>


static const unsigned char CRYPT_LMhash_Magic[8] =

    { 'K', 'G', 'S', '!', '@', '#', '$', '%' };

static const unsigned char DefaultSessionKey[16] =

    {'D', 'e', 'f', 'S', 'e', 's', 's', 'i', 'o', 'n', 'K', 'e', 'y', '!', '@', '#'};


/******************************************************************************

 * SystemFunction001  [ADVAPI32.@]

 *

 * Encrypts a single block of data using DES

 *

 * PARAMS

 *   data    [I] data to encrypt    (8 bytes)

 *   key     [I] key data           (7 bytes)

 *   output  [O] the encrypted data (8 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL

 *

 */

NTSTATUS

WINAPI SystemFunction001(const BYTE *data, const BYTE *key, LPBYTE output)

{

    if (!data || !output)

        return STATUS_UNSUCCESSFUL;

    CRYPT_DEShash(output, key, data);

    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction002  [ADVAPI32.@]

 *

 * Decrypts a single block of data using DES

 *

 * PARAMS

 *   data    [I] data to decrypt    (8 bytes)

 *   key     [I] key data           (7 bytes)

 *   output  [O] the decrypted data (8 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL

 *

 */

NTSTATUS

WINAPI SystemFunction002(const BYTE *data, const BYTE *key, LPBYTE output)

{

    if (!data || !output)

        return STATUS_UNSUCCESSFUL;

    CRYPT_DESunhash(output, key, data);

    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction003  [ADVAPI32.@]

 *

 * Hashes a key using DES and a fixed datablock

 *

 * PARAMS

 *   key     [I] key data    (7 bytes)

 *   output  [O] hashed key  (8 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL

 *

 */

NTSTATUS

WINAPI SystemFunction003(const BYTE *key, LPBYTE output)

{

    if (!output)

        return STATUS_UNSUCCESSFUL;

    CRYPT_DEShash(output, key, CRYPT_LMhash_Magic);

    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction004  [ADVAPI32.@]

 *

 * Encrypts a block of data with DES in ECB mode, preserving the length

 *

 * PARAMS

 *   data    [I] data to encrypt

 *   key     [I] key data (up to 7 bytes)

 *   output  [O] buffer to receive encrypted data

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_BUFFER_TOO_SMALL     if the output buffer is too small

 *  Failure: STATUS_INVALID_PARAMETER_2  if the key is zero length

 *

 * NOTES

 *  Encrypt buffer size should be input size rounded up to 8 bytes

 *   plus an extra 8 bytes.

 */

NTSTATUS

WINAPI SystemFunction004(const struct ustring *in,

                                  const struct ustring *key,

                                  struct ustring *out)

{

    union {

        unsigned char uc[8];

          unsigned int  ui[2];

    } data;

    unsigned char deskey[7];

    unsigned int crypt_len, ofs;


    if (key->Length<=0)

        return STATUS_INVALID_PARAMETER_2;


    crypt_len = ((in->Length+7)&~7);

    if (out->MaximumLength < (crypt_len+8))

    {

        out->Length = crypt_len + 8;

        return STATUS_BUFFER_TOO_SMALL;

    }


    data.ui[0] = in->Length;

    data.ui[1] = 1;


    if (key->Length<sizeof deskey)

    {

        memset(deskey, 0, sizeof deskey);

        memcpy(deskey, key->Buffer, key->Length);

    }

    else

        memcpy(deskey, key->Buffer, sizeof deskey);


    CRYPT_DEShash(out->Buffer, deskey, data.uc);


    for(ofs=0; ofs<(crypt_len-8); ofs+=8)

        CRYPT_DEShash(out->Buffer+8+ofs, deskey, in->Buffer+ofs);


    memset(data.uc, 0, sizeof data.uc);

    memcpy(data.uc, in->Buffer+ofs, in->Length +8-crypt_len);

    CRYPT_DEShash(out->Buffer+8+ofs, deskey, data.uc);


    out->Length = crypt_len+8;


    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction005  [ADVAPI32.@]

 *

 * Decrypts a block of data with DES in ECB mode

 *

 * PARAMS

 *   data    [I] data to decrypt

 *   key     [I] key data (up to 7 bytes)

 *   output  [O] buffer to receive decrypted data

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_BUFFER_TOO_SMALL     if the output buffer is too small

 *  Failure: STATUS_INVALID_PARAMETER_2  if the key is zero length

 *

 */

NTSTATUS

WINAPI SystemFunction005(const struct ustring *in,

                         const struct ustring *key,

                         struct ustring *out)

{

    union {

        unsigned char uc[8];

        unsigned int  ui[2];

    } data;

    unsigned char deskey[7];

    unsigned int ofs, crypt_len;


    if (key->Length<=0)

        return STATUS_INVALID_PARAMETER_2;


    if (key->Length<sizeof deskey)

    {

        memset(deskey, 0, sizeof deskey);

        memcpy(deskey, key->Buffer, key->Length);

    }

    else

        memcpy(deskey, key->Buffer, sizeof deskey);


    CRYPT_DESunhash(data.uc, deskey, in->Buffer);


    if (data.ui[1] != 1)

        return STATUS_UNKNOWN_REVISION;


    crypt_len = data.ui[0];

    if (crypt_len > out->MaximumLength)

    {

        out->Length = crypt_len;

        return STATUS_BUFFER_TOO_SMALL;

    }


    for (ofs=0; (ofs+8)<crypt_len; ofs+=8)

        CRYPT_DESunhash(out->Buffer+ofs, deskey, in->Buffer+ofs+8);


    if (ofs<crypt_len)

    {

        CRYPT_DESunhash(data.uc, deskey, in->Buffer+ofs+8);

        memcpy(out->Buffer+ofs, data.uc, crypt_len-ofs);

    }


    out->Length = crypt_len;


    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction007  [ADVAPI32.@]

 *

 * MD4 hash a unicode string

 *

 * PARAMS

 *   string  [I] the string to hash

 *   output  [O] the md4 hash of the string (16 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL

 *

 */

NTSTATUS

WINAPI SystemFunction007(const UNICODE_STRING *string, LPBYTE hash)

{

    MD4_CTX ctx;


    MD4Init( &ctx );

    MD4Update( &ctx, (const BYTE *)string->Buffer, string->Length );

    MD4Final( &ctx );

    memcpy( hash, ctx.digest, 0x10 );


    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction008  [ADVAPI32.@]

 *

 * Creates a LM response from a challenge and a password hash

 *

 * PARAMS

 *   challenge  [I] Challenge from authentication server

 *   hash       [I] NTLM hash (from SystemFunction006)

 *   response   [O] response to send back to the server

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL

 *

 * NOTES

 *  see http://davenport.sourceforge.net/ntlm.html#theLmResponse

 *

 */

NTSTATUS

WINAPI SystemFunction008(const BYTE *challenge, const BYTE *hash, LPBYTE response)

{

    BYTE key[7*3];


    if (!challenge || !response)

        return STATUS_UNSUCCESSFUL;


    memset(key, 0, sizeof key);

    memcpy(key, hash, 0x10);


    CRYPT_DEShash(response, key, challenge);

    CRYPT_DEShash(response+8, key+7, challenge);

    CRYPT_DEShash(response+16, key+14, challenge);


    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction009  [ADVAPI32.@]

 *

 * Seems to do the same as SystemFunction008...

 */

NTSTATUS

WINAPI SystemFunction009(const BYTE *challenge, const BYTE *hash, LPBYTE response)

{

    return SystemFunction008(challenge, hash, response);

}


/******************************************************************************

 * SystemFunction010  [ADVAPI32.@]

 * SystemFunction011  [ADVAPI32.@]

 *

 * MD4 hashes 16 bytes of data

 *

 * PARAMS

 *   unknown []  seems to have no effect on the output

 *   data    [I] pointer to data to hash (16 bytes)

 *   output  [O] the md4 hash of the data (16 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL

 *

 */

NTSTATUS

WINAPI SystemFunction010(LPVOID unknown, const BYTE *data, LPBYTE hash)

{

    MD4_CTX ctx;


    MD4Init( &ctx );

    MD4Update( &ctx, data, 0x10 );

    MD4Final( &ctx );

    memcpy( hash, ctx.digest, 0x10 );


    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction012  [ADVAPI32.@]

 * SystemFunction014  [ADVAPI32.@]

 * SystemFunction016  [ADVAPI32.@]

 * SystemFunction018  [ADVAPI32.@]

 * SystemFunction020  [ADVAPI32.@]

 * SystemFunction022  [ADVAPI32.@]

 *

 * Encrypts two DES blocks with two keys

 *

 * PARAMS

 *   data    [I] data to encrypt (16 bytes)

 *   key     [I] key data (two lots of 7 bytes)

 *   output  [O] buffer to receive encrypted data (16 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL  if the input or output buffer is NULL

 */

NTSTATUS

WINAPI SystemFunction012(const BYTE *in, const BYTE *key, LPBYTE out)

{

    if (!in || !out)

        return STATUS_UNSUCCESSFUL;


    CRYPT_DEShash(out, key, in);

    CRYPT_DEShash(out+8, key+7, in+8);

    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction013  [ADVAPI32.@]

 * SystemFunction015  [ADVAPI32.@]

 * SystemFunction017  [ADVAPI32.@]

 * SystemFunction019  [ADVAPI32.@]

 * SystemFunction021  [ADVAPI32.@]

 * SystemFunction023  [ADVAPI32.@]

 *

 * Decrypts two DES blocks with two keys

 *

 * PARAMS

 *   data    [I] data to decrypt (16 bytes)

 *   key     [I] key data (two lots of 7 bytes)

 *   output  [O] buffer to receive decrypted data (16 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL  if the input or output buffer is NULL

 */

NTSTATUS

WINAPI SystemFunction013(const BYTE *in, const BYTE *key, LPBYTE out)

{

    if (!in || !out)

        return STATUS_UNSUCCESSFUL;

    CRYPT_DESunhash(out, key, in);

    CRYPT_DESunhash(out+8, key+7, in+8);

    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction024  [ADVAPI32.@]

 *

 * Encrypts two DES blocks with a 32 bit key...

 *

 * PARAMS

 *   data    [I] data to encrypt (16 bytes)

 *   key     [I] key data (4 bytes)

 *   output  [O] buffer to receive encrypted data (16 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 */

NTSTATUS

WINAPI SystemFunction024(const BYTE *in, const BYTE *key, LPBYTE out)

{

    BYTE deskey[0x10];


    memcpy(deskey, key, 4);

    memcpy(deskey+4, key, 4);

    memcpy(deskey+8, key, 4);

    memcpy(deskey+12, key, 4);


    CRYPT_DEShash(out, deskey, in);

    CRYPT_DEShash(out+8, deskey+7, in+8);


    return STATUS_SUCCESS;

}


/******************************************************************************

 * SystemFunction025  [ADVAPI32.@]

 *

 * Decrypts two DES blocks with a 32 bit key...

 *

 * PARAMS

 *   data    [I] data to encrypt (16 bytes)

 *   key     [I] key data (4 bytes)

 *   output  [O] buffer to receive encrypted data (16 bytes)

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 */

NTSTATUS

WINAPI SystemFunction025(const BYTE *in, const BYTE *key, LPBYTE out)

{

    BYTE deskey[0x10];


    memcpy(deskey, key, 4);

    memcpy(deskey+4, key, 4);

    memcpy(deskey+8, key, 4);

    memcpy(deskey+12, key, 4);


    CRYPT_DESunhash(out, deskey, in);

    CRYPT_DESunhash(out+8, deskey+7, in+8);


    return STATUS_SUCCESS;

}


/**********************************************************************

 * SystemFunction028  [ADVAPI32.@]

 *

 * Retrieves an encryption session key...

 *

 * PARAMS

 *   ContextHandle [I] RPC context handle

 *   SessionKey    [O] buffer to receive the session key (16 bytes)

 *

 * RETURNS

 *  Success: STATUS_LOCAL_USER_SESSION_KEY

 *

 * @unimplemented

 */

NTSTATUS

WINAPI

SystemFunction028(

    _In_ PVOID ContextHandle,

    _Out_ LPBYTE SessionKey)

{

    /* HACK: Always return the default key */

    memcpy(SessionKey, DefaultSessionKey, sizeof(DefaultSessionKey));

    return STATUS_LOCAL_USER_SESSION_KEY;


#if 0

    //NDRCContextBinding();

    //SystemFunction034()

    SetLastError(ERROR_CALL_NOT_IMPLEMENTED);

    return 28;

#endif

}


/**********************************************************************

 *

 * @unimplemented

 */

INT

WINAPI

SystemFunction029(INT a, INT b)

{

    //I_RpcBindingIsClientLocal()

    SetLastError(ERROR_CALL_NOT_IMPLEMENTED);

    return 29;

}


/******************************************************************************

 * SystemFunction030   (ADVAPI32.@)

 *

 * Tests if two blocks of 16 bytes are equal

 *

 * PARAMS

 *  b1,b2   [I] block of 16 bytes

 *

 * RETURNS

 *  TRUE  if blocks are the same

 *  FALSE if blocks are different

 */

BOOL

WINAPI SystemFunction030(LPCVOID b1, LPCVOID b2)

{

    return !memcmp(b1, b2, 0x10);

}


/******************************************************************************

 * SystemFunction032  [ADVAPI32.@]

 *

 * Encrypts a string data using ARC4

 *

 * PARAMS

 *   data    [I/O] data to encrypt

 *   key     [I] key data

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: STATUS_UNSUCCESSFUL

 *

 * NOTES

 *  see http://web.it.kth.se/~rom/ntsec.html#crypto-strongavail

 */

NTSTATUS

WINAPI SystemFunction032(struct ustring *data, const struct ustring *key)

{

    RC4_CONTEXT a4i;


    rc4_init(&a4i, key->Buffer, key->Length);

    rc4_crypt(&a4i, data->Buffer, data->Length);


    return STATUS_SUCCESS;

}


/**********************************************************************

 *

 * @unimplemented

 */

INT

WINAPI

SystemFunction033(INT a, INT b)

{

    SetLastError(ERROR_CALL_NOT_IMPLEMENTED);

    return 33;

}


/**********************************************************************

 *

 * @unimplemented

 */

INT

WINAPI

SystemFunction034(INT a, INT b)

{

    //RpcBindingToStringBindingW

    //I_RpcMapWin32Status

    //RpcStringBindingParseW

    //RpcStringFreeW

    SetLastError(ERROR_CALL_NOT_IMPLEMENTED);

    return 34;

}


/******************************************************************************

 * SystemFunction035   (ADVAPI32.@)

 *

 * Described here:

http://disc.server.com/discussion.cgi?disc=148775;article=942;title=Coding%2FASM%2FSystem

 *

 * NOTES

 *  Stub, always return TRUE.

 */

BOOL WINAPI SystemFunction035(LPCSTR lpszDllFilePath)

{

    //FIXME("%s: stub\n", debugstr_a(lpszDllFilePath));

    return TRUE;

}


/******************************************************************************

 * SystemFunction036   (ADVAPI32.@)

 *

 * MSDN documents this function as RtlGenRandom and declares it in ntsecapi.h

 *

 * PARAMS

 *  pbBuffer [O] Pointer to memory to receive random bytes.

 *  dwLen    [I] Number of random bytes to fetch.

 *

 * RETURNS

 *  Always TRUE in my tests

 */

BOOLEAN

WINAPI

SystemFunction036(PVOID pbBuffer, ULONG dwLen)

{

    // This function will output numbers based on the tick count. //

    // It will NOT OUTPUT CRYPTOGRAPHIC-SAFE RANDOM NUMBERS !!!    //


    DWORD dwSeed;

    PBYTE pBuffer;

    ULONG uPseudoRandom;

    LARGE_INTEGER time;

    static ULONG uCounter = 17;


    if(!pbBuffer || !dwLen)

    {

        /* This function always returns TRUE, even if invalid parameters were passed. (verified under WinXP SP2) */

        return TRUE;

    }


    /* Get the first seed from the performance counter */

    QueryPerformanceCounter(&time);

    dwSeed = time.LowPart ^ time.HighPart ^ RtlUlongByteSwap(uCounter++);


    /* We will access the buffer bytewise */

    pBuffer = (PBYTE)pbBuffer;


    do

    {

        /* Use the pseudo random number generator RtlRandom, which outputs a 4-byte value and a new seed */

        uPseudoRandom = RtlRandom(&dwSeed);


        do

        {

            /* Get each byte from the pseudo random number and store it in the buffer */

            *pBuffer = (BYTE)(uPseudoRandom >> 8 * (dwLen % 3) & 0xFF);

            ++pBuffer;

        } while(--dwLen % 3);

    } while(dwLen);


    return TRUE;

}


HANDLE KsecDeviceHandle;


static

NTSTATUS

KsecOpenDevice()

{

    UNICODE_STRING DeviceName = RTL_CONSTANT_STRING(L"\\Device\\KsecDD");

    OBJECT_ATTRIBUTES ObjectAttributes;

    IO_STATUS_BLOCK IoStatusBlock;

    HANDLE DeviceHandle;

    NTSTATUS Status;


    InitializeObjectAttributes(&ObjectAttributes,

                               &DeviceName,

                               OBJ_CASE_INSENSITIVE,

                               NULL,

                               NULL);

    Status = NtOpenFile(&DeviceHandle,

                        FILE_READ_DATA | SYNCHRONIZE,

                        &ObjectAttributes,

                        &IoStatusBlock,

                        FILE_SHARE_READ | FILE_SHARE_WRITE | FILE_SHARE_DELETE,

                        FILE_SYNCHRONOUS_IO_NONALERT);

    if (!NT_SUCCESS(Status))

    {

        return Status;

    }


    if (InterlockedCompareExchangePointer(&KsecDeviceHandle, DeviceHandle, NULL) != NULL)

    {

        NtClose(DeviceHandle);

    }


    return STATUS_SUCCESS;

}


VOID

CloseKsecDdHandle(VOID)

{

    /* Check if we already opened a handle to ksecdd */

    if (KsecDeviceHandle != NULL)

    {

        /* Close it */

        CloseHandle(KsecDeviceHandle);

        KsecDeviceHandle = NULL;

    }

}


static

NTSTATUS

KsecDeviceIoControl(

    ULONG IoControlCode,

    PVOID InputBuffer,

    SIZE_T InputBufferLength,

    PVOID OutputBuffer,

    SIZE_T OutputBufferLength)

{

    IO_STATUS_BLOCK IoStatusBlock;

    NTSTATUS Status;


    /* Check if we already have a handle */

    if (KsecDeviceHandle == NULL)

    {

        /* Try to open the device */

        Status = KsecOpenDevice();

        if (!NT_SUCCESS(Status))

        {

            //ERR("Failed to open handle to KsecDd driver!\n");

            return Status;

        }

    }


    /* Call the driver */

    Status = NtDeviceIoControlFile(KsecDeviceHandle,

                                   NULL,

                                   NULL,

                                   NULL,

                                   &IoStatusBlock,

                                   IoControlCode,

                                   InputBuffer,

                                   InputBufferLength,

                                   OutputBuffer,

                                   OutputBufferLength);


    return Status;

}


/*

   These functions have nearly identical prototypes to CryptProtectMemory and CryptUnprotectMemory,

   in crypt32.dll.

 */


/******************************************************************************

 * SystemFunction040   (ADVAPI32.@)

 *

 * MSDN documents this function as RtlEncryptMemory and declares it in ntsecapi.h.

 *

 * PARAMS

 *  memory [I/O] Pointer to memory to encrypt.

 *  length [I] Length of region to encrypt in bytes.

 *  flags  [I] Control whether other processes are able to decrypt the memory.

 *    RTL_ENCRYPT_OPTION_SAME_PROCESS

 *    RTL_ENCRYPT_OPTION_CROSS_PROCESS

 *    RTL_ENCRYPT_OPTION_SAME_LOGON

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: NTSTATUS error code

 *

 * NOTES

 *  length must be a multiple of RTL_ENCRYPT_MEMORY_SIZE.

 *  If flags are specified when encrypting, the same flag value must be given

 *  when decrypting the memory.

 */

NTSTATUS

WINAPI

SystemFunction040(

    _Inout_ PVOID Memory,

    _In_ ULONG MemoryLength,

    _In_ ULONG OptionFlags)

{

    ULONG IoControlCode;


    if (OptionFlags == RTL_ENCRYPT_OPTION_SAME_PROCESS)

    {

        IoControlCode = IOCTL_KSEC_ENCRYPT_SAME_PROCESS;

    }

    else if (OptionFlags == RTL_ENCRYPT_OPTION_CROSS_PROCESS)

    {

        IoControlCode = IOCTL_KSEC_ENCRYPT_CROSS_PROCESS;

    }

    else if (OptionFlags == RTL_ENCRYPT_OPTION_SAME_LOGON)

    {

        IoControlCode = IOCTL_KSEC_ENCRYPT_SAME_LOGON;

    }

    else

    {

        return STATUS_INVALID_PARAMETER;

    }


    return KsecDeviceIoControl(IoControlCode, Memory, MemoryLength, Memory, MemoryLength);

}


/******************************************************************************

 * SystemFunction041  (ADVAPI32.@)

 *

 * MSDN documents this function as RtlDecryptMemory and declares it in ntsecapi.h.

 *

 * PARAMS

 *  memory [I/O] Pointer to memory to decrypt.

 *  length [I] Length of region to decrypt in bytes.

 *  flags  [I] Control whether other processes are able to decrypt the memory.

 *    RTL_ENCRYPT_OPTION_SAME_PROCESS

 *    RTL_ENCRYPT_OPTION_CROSS_PROCESS

 *    RTL_ENCRYPT_OPTION_SAME_LOGON

 *

 * RETURNS

 *  Success: STATUS_SUCCESS

 *  Failure: NTSTATUS error code

 *

 * NOTES

 *  length must be a multiple of RTL_ENCRYPT_MEMORY_SIZE.

 *  If flags are specified when encrypting, the same flag value must be given

 *  when decrypting the memory.

 */

NTSTATUS

WINAPI

SystemFunction041(

    _Inout_ PVOID Memory,

    _In_ ULONG MemoryLength,

    _In_ ULONG OptionFlags)

{

    ULONG IoControlCode;


    if (OptionFlags == RTL_ENCRYPT_OPTION_SAME_PROCESS)

    {

        IoControlCode = IOCTL_KSEC_DECRYPT_SAME_PROCESS;

    }

    else if (OptionFlags == RTL_ENCRYPT_OPTION_CROSS_PROCESS)

    {

        IoControlCode = IOCTL_KSEC_DECRYPT_CROSS_PROCESS;

    }

    else if (OptionFlags == RTL_ENCRYPT_OPTION_SAME_LOGON)

    {

        IoControlCode = IOCTL_KSEC_DECRYPT_SAME_LOGON;

    }

    else

    {

        return STATUS_INVALID_PARAMETER;

    }


    return KsecDeviceIoControl(IoControlCode, Memory, MemoryLength, Memory, MemoryLength);

}


/* EOF */

BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185

memcmp
int memcmp(void *Buffer1, void *Buffer2, ACPI_SIZE Count)
Definition: utclib.c:112

advapi32.h

NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26

basic_string< char, char_traits< char >, allocator< char > >

ObjectAttributes
IN PUNICODE_STRING IN POBJECT_ATTRIBUTES ObjectAttributes
Definition: conport.c:36

NULL
#define NULL
Definition: types.h:112

TRUE
#define TRUE
Definition: types.h:120

NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32

CRYPT_DESunhash
unsigned char * CRYPT_DESunhash(unsigned char *dst, const unsigned char *key, const unsigned char *src) DECLSPEC_HIDDEN
Definition: crypt_des.c:299

CRYPT_DEShash
unsigned char * CRYPT_DEShash(unsigned char *dst, const unsigned char *key, const unsigned char *src) DECLSPEC_HIDDEN
Definition: crypt_des.c:259

unknown
static WCHAR unknown[MAX_STRING_RESOURCE_LEN]
Definition: object.c:1605

CloseHandle
#define CloseHandle
Definition: compat.h:739

ERROR_CALL_NOT_IMPLEMENTED
#define ERROR_CALL_NOT_IMPLEMENTED
Definition: compat.h:102

RtlUlongByteSwap
#define RtlUlongByteSwap(_x)
Definition: compat.h:815

SetLastError
#define SetLastError(x)
Definition: compat.h:752

FILE_SHARE_READ
#define FILE_SHARE_READ
Definition: compat.h:136

QueryPerformanceCounter
BOOL WINAPI QueryPerformanceCounter(OUT PLARGE_INTEGER lpPerformanceCount)
Definition: perfcnt.c:23

deskey
static void deskey(const unsigned char *key, short edf, ulong32 *keyout)
Definition: des.c:1285

BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94

DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95

FILE_SYNCHRONOUS_IO_NONALERT
#define FILE_SYNCHRONOUS_IO_NONALERT
Definition: from_kernel.h:31

Status
Status
Definition: gdiplustypes.h:25

data
GLint GLenum GLsizei GLsizei GLsizei GLint GLsizei const GLvoid * data
Definition: gl.h:1950

b
GLboolean GLboolean GLboolean b
Definition: glext.h:6204

in
GLuint in
Definition: glext.h:9616

a
GLboolean GLboolean GLboolean GLboolean a
Definition: glext.h:6204

DeviceHandle
_Inout_ PUSB_DEVICE_HANDLE DeviceHandle
Definition: hubbusif.h:121

MD4Final
VOID WINAPI MD4Final(MD4_CTX *ctx)
Definition: md4.c:113

MD4Update
VOID WINAPI MD4Update(MD4_CTX *ctx, const unsigned char *buf, unsigned int len)
Definition: md4.c:59

MD4Init
VOID WINAPI MD4Init(MD4_CTX *ctx)
Definition: md4.c:45

OBJ_CASE_INSENSITIVE
#define OBJ_CASE_INSENSITIVE
Definition: winternl.h:228

void
Definition: nsiface.idl:2307

InterlockedCompareExchangePointer
#define InterlockedCompareExchangePointer
Definition: interlocked.h:129

RTL_ENCRYPT_OPTION_SAME_LOGON
#define RTL_ENCRYPT_OPTION_SAME_LOGON
Definition: ksecdd.h:27

RTL_ENCRYPT_OPTION_SAME_PROCESS
#define RTL_ENCRYPT_OPTION_SAME_PROCESS
Definition: ksecdd.h:25

RTL_ENCRYPT_OPTION_CROSS_PROCESS
#define RTL_ENCRYPT_OPTION_CROSS_PROCESS
Definition: ksecdd.h:26

ksecioctl.h

IOCTL_KSEC_ENCRYPT_CROSS_PROCESS
#define IOCTL_KSEC_ENCRYPT_CROSS_PROCESS
Definition: ksecioctl.h:26

IOCTL_KSEC_DECRYPT_SAME_LOGON
#define IOCTL_KSEC_DECRYPT_SAME_LOGON
Definition: ksecioctl.h:38

IOCTL_KSEC_DECRYPT_CROSS_PROCESS
#define IOCTL_KSEC_DECRYPT_CROSS_PROCESS
Definition: ksecioctl.h:30

IOCTL_KSEC_ENCRYPT_SAME_PROCESS
#define IOCTL_KSEC_ENCRYPT_SAME_PROCESS
Definition: ksecioctl.h:18

IOCTL_KSEC_ENCRYPT_SAME_LOGON
#define IOCTL_KSEC_ENCRYPT_SAME_LOGON
Definition: ksecioctl.h:34

IOCTL_KSEC_DECRYPT_SAME_PROCESS
#define IOCTL_KSEC_DECRYPT_SAME_PROCESS
Definition: ksecioctl.h:22

time
__u16 time
Definition: mkdosfs.c:8

memcpy
#define memcpy(s1, s2, n)
Definition: mkisofs.h:878

b2
static CRYPT_DATA_BLOB b2[]
Definition: msg.c:582

b1
static CRYPT_DATA_BLOB b1[]
Definition: msg.c:573

IoStatusBlock
static OUT PIO_STATUS_BLOCK IoStatusBlock
Definition: pipe.c:75

InitializeObjectAttributes
#define InitializeObjectAttributes(p, n, a, r, s)
Definition: reg.c:106

_Inout_
#define _Inout_
Definition: ms_sal.h:378

_Out_
#define _Out_
Definition: ms_sal.h:345

_In_
#define _In_
Definition: ms_sal.h:308

RtlRandom
NTSYSAPI ULONG NTAPI RtlRandom(_Inout_ PULONG Seed)

NtOpenFile
NTSYSAPI NTSTATUS NTAPI NtOpenFile(OUT PHANDLE phFile, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, OUT PIO_STATUS_BLOCK pIoStatusBlock, IN ULONG ShareMode, IN ULONG OpenMode)
Definition: file.c:3952

FILE_SHARE_WRITE
#define FILE_SHARE_WRITE
Definition: nt_native.h:681

SYNCHRONIZE
#define SYNCHRONIZE
Definition: nt_native.h:61

FILE_READ_DATA
#define FILE_READ_DATA
Definition: nt_native.h:628

NtDeviceIoControlFile
NTSYSAPI NTSTATUS NTAPI NtDeviceIoControlFile(IN HANDLE hFile, IN HANDLE hEvent OPTIONAL, IN PIO_APC_ROUTINE IoApcRoutine OPTIONAL, IN PVOID IoApcContext OPTIONAL, OUT PIO_STATUS_BLOCK pIoStatusBlock, IN ULONG DeviceIoControlCode, IN PVOID InBuffer OPTIONAL, IN ULONG InBufferLength, OUT PVOID OutBuffer OPTIONAL, IN ULONG OutBufferLength)

FILE_SHARE_DELETE
#define FILE_SHARE_DELETE
Definition: nt_native.h:682

NtClose
NTSTATUS NTAPI NtClose(IN HANDLE Handle)
Definition: obhandle.c:3402

ntsecapi.h

STATUS_UNKNOWN_REVISION
#define STATUS_UNKNOWN_REVISION
Definition: ntstatus.h:324

STATUS_INVALID_PARAMETER_2
#define STATUS_INVALID_PARAMETER_2
Definition: ntstatus.h:476

STATUS_LOCAL_USER_SESSION_KEY
#define STATUS_LOCAL_USER_SESSION_KEY
Definition: ntstatus.h:120

L
#define L(x)
Definition: ntvdm.h:50

ui
UINT ui
Definition: oleauto.h:49

PBYTE
BYTE * PBYTE
Definition: pedump.c:66

rc4.h

pBuffer
PVOID pBuffer
Definition: rdesktop-core-tester.cpp:188

out
static FILE * out
Definition: regtests2xml.c:44

rc4_init
void rc4_init(RC4_CONTEXT *a4i, const unsigned char *key, unsigned int keyLen)
Definition: rc4.c:25

rc4_crypt
void rc4_crypt(RC4_CONTEXT *a4i, unsigned char *inoutString, unsigned int length)
Definition: rc4.c:47

memset
#define memset(x, y, z)
Definition: compat.h:39

STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65

STATUS_BUFFER_TOO_SMALL
#define STATUS_BUFFER_TOO_SMALL
Definition: shellext.h:69

MD4_CTX
Definition: util.c:82

_IO_STATUS_BLOCK
Definition: env_spec_w32.h:870

_OBJECT_ATTRIBUTES
Definition: umtypes.h:182

_RC4_CONTEXT
Definition: rc4.h:5

_UNICODE_STRING
Definition: env_spec_w32.h:368

hash
Definition: _hash_fun.h:40

key
Definition: copy.c:22

ustring
Definition: config.c:19

KsecDeviceHandle
HANDLE KsecDeviceHandle
Definition: sysfunc.c:645

SystemFunction012
NTSTATUS WINAPI SystemFunction012(const BYTE *in, const BYTE *key, LPBYTE out)
Definition: sysfunc.c:353

SystemFunction035
BOOL WINAPI SystemFunction035(LPCSTR lpszDllFilePath)
Definition: sysfunc.c:582

DefaultSessionKey
static const unsigned char DefaultSessionKey[16]
Definition: sysfunc.c:22

SystemFunction034
INT WINAPI SystemFunction034(INT a, INT b)
Definition: sysfunc.c:562

SystemFunction040
NTSTATUS WINAPI SystemFunction040(_Inout_ PVOID Memory, _In_ ULONG MemoryLength, _In_ ULONG OptionFlags)
Definition: sysfunc.c:761

KsecDeviceIoControl
static NTSTATUS KsecDeviceIoControl(ULONG IoControlCode, PVOID InputBuffer, SIZE_T InputBufferLength, PVOID OutputBuffer, SIZE_T OutputBufferLength)
Definition: sysfunc.c:695

SystemFunction029
INT WINAPI SystemFunction029(INT a, INT b)
Definition: sysfunc.c:489

CloseKsecDdHandle
VOID CloseKsecDdHandle(VOID)
Definition: sysfunc.c:682

SystemFunction024
NTSTATUS WINAPI SystemFunction024(const BYTE *in, const BYTE *key, LPBYTE out)
Definition: sysfunc.c:406

SystemFunction041
NTSTATUS WINAPI SystemFunction041(_Inout_ PVOID Memory, _In_ ULONG MemoryLength, _In_ ULONG OptionFlags)
Definition: sysfunc.c:812

SystemFunction013
NTSTATUS WINAPI SystemFunction013(const BYTE *in, const BYTE *key, LPBYTE out)
Definition: sysfunc.c:383

SystemFunction010
NTSTATUS WINAPI SystemFunction010(LPVOID unknown, const BYTE *data, LPBYTE hash)
Definition: sysfunc.c:321

SystemFunction032
NTSTATUS WINAPI SystemFunction032(struct ustring *data, const struct ustring *key)
Definition: sysfunc.c:533

SystemFunction025
NTSTATUS WINAPI SystemFunction025(const BYTE *in, const BYTE *key, LPBYTE out)
Definition: sysfunc.c:435

SystemFunction033
INT WINAPI SystemFunction033(INT a, INT b)
Definition: sysfunc.c:550

CRYPT_LMhash_Magic
static const unsigned char CRYPT_LMhash_Magic[8]
Definition: sysfunc.c:20

SystemFunction030
BOOL WINAPI SystemFunction030(LPCVOID b1, LPCVOID b2)
Definition: sysfunc.c:510

SystemFunction008
NTSTATUS WINAPI SystemFunction008(const BYTE *challenge, const BYTE *hash, LPBYTE response)
Definition: sysfunc.c:276

SystemFunction007
NTSTATUS WINAPI SystemFunction007(const UNICODE_STRING *string, LPBYTE hash)
Definition: sysfunc.c:245

SystemFunction001
NTSTATUS WINAPI SystemFunction001(const BYTE *data, const BYTE *key, LPBYTE output)
Definition: sysfunc.c:41

SystemFunction028
NTSTATUS WINAPI SystemFunction028(_In_ PVOID ContextHandle, _Out_ LPBYTE SessionKey)
Definition: sysfunc.c:466

SystemFunction005
NTSTATUS WINAPI SystemFunction005(const struct ustring *in, const struct ustring *key, struct ustring *out)
Definition: sysfunc.c:182

SystemFunction002
NTSTATUS WINAPI SystemFunction002(const BYTE *data, const BYTE *key, LPBYTE output)
Definition: sysfunc.c:66

SystemFunction004
NTSTATUS WINAPI SystemFunction004(const struct ustring *in, const struct ustring *key, struct ustring *out)
Definition: sysfunc.c:119

SystemFunction036
BOOLEAN WINAPI SystemFunction036(PVOID pbBuffer, ULONG dwLen)
Definition: sysfunc.c:602

SystemFunction009
NTSTATUS WINAPI SystemFunction009(const BYTE *challenge, const BYTE *hash, LPBYTE response)
Definition: sysfunc.c:299

KsecOpenDevice
static NTSTATUS KsecOpenDevice()
Definition: sysfunc.c:649

SystemFunction003
NTSTATUS WINAPI SystemFunction003(const BYTE *key, LPBYTE output)
Definition: sysfunc.c:90

RTL_CONSTANT_STRING
#define RTL_CONSTANT_STRING(s)
Definition: tunneltest.c:14

LPBYTE
unsigned char * LPBYTE
Definition: typedefs.h:53

SIZE_T
ULONG_PTR SIZE_T
Definition: typedefs.h:80

INT
int32_t INT
Definition: typedefs.h:58

ULONG
uint32_t ULONG
Definition: typedefs.h:59

STATUS_INVALID_PARAMETER
#define STATUS_INVALID_PARAMETER
Definition: udferr_usr.h:135

STATUS_UNSUCCESSFUL
#define STATUS_UNSUCCESSFUL
Definition: udferr_usr.h:132

_LARGE_INTEGER
Definition: typedefs.h:103

ctx
Definition: dbghelp_private.h:571

DeviceName
_Must_inspect_result_ _In_ PWDFDEVICE_INIT _In_opt_ PCUNICODE_STRING DeviceName
Definition: wdfdevice.h:3275

IoControlCode
_In_ WDFREQUEST _In_ size_t _In_ size_t _In_ ULONG IoControlCode
Definition: wdfio.h:325

OutputBufferLength
_In_ WDFREQUEST _In_ size_t OutputBufferLength
Definition: wdfio.h:320

InputBufferLength
_In_ WDFREQUEST _In_ size_t _In_ size_t InputBufferLength
Definition: wdfio.h:322

OutputBuffer
_Must_inspect_result_ _In_ WDFIOTARGET _In_opt_ WDFREQUEST _In_opt_ PWDF_MEMORY_DESCRIPTOR OutputBuffer
Definition: wdfiotarget.h:863

InputBuffer
_Must_inspect_result_ _In_ WDFIOTARGET _In_opt_ WDFREQUEST _In_opt_ PWDF_MEMORY_DESCRIPTOR InputBuffer
Definition: wdfiotarget.h:953

Memory
_Must_inspect_result_ _In_opt_ PWDF_OBJECT_ATTRIBUTES _In_ _Strict_type_match_ POOL_TYPE _In_opt_ ULONG _In_ _Out_ WDFMEMORY * Memory
Definition: wdfmemory.h:169

LPCVOID
CONST void * LPCVOID
Definition: windef.h:191

WINAPI
#define WINAPI
Definition: msvc.h:6

LPCSTR
const char * LPCSTR
Definition: xmlstorage.h:183

BYTE
unsigned char BYTE
Definition: xxhash.c:193