kenobi-windows 0.1.0

A Windows Negotiate implementation.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185

use std::{ffi::c_void, fmt::Display, ops::Deref};

use windows::Win32::{
    Foundation::{SEC_E_INVALID_TOKEN, SEC_E_MESSAGE_ALTERED, SEC_E_OK},
    Security::Authentication::Identity::{
        DecryptMessage, EncryptMessage, QueryContextAttributesW, SECBUFFER_DATA, SECBUFFER_PADDING, SECBUFFER_STREAM,
        SECBUFFER_TOKEN, SECBUFFER_VERSION, SECPKG_ATTR_SIZES, SECQOP_WRAP_NO_ENCRYPT, SecBuffer, SecBufferDesc,
        SecPkgContext_Sizes,
    },
};
use windows_result::HRESULT;

use crate::context::ContextHandle;

impl ContextHandle {
    fn wrap_raw(&self, encrypt: bool, message: &[u8]) -> windows_result::Result<Vec<u8>> {
        let sizes = get_context_sizes(self).expect("Failed to get context info");

        let mut header = vec![0u8; sizes.cbSecurityTrailer as usize];
        let mut signature = message.to_vec();
        let mut trailer = vec![0u8; sizes.cbBlockSize as usize];

        let mut buffers = vec![
            SecBuffer {
                cbBuffer: sizes.cbSecurityTrailer,
                BufferType: SECBUFFER_TOKEN,
                pvBuffer: header.as_mut_ptr() as *mut c_void,
            },
            SecBuffer {
                cbBuffer: message.len() as u32,
                BufferType: SECBUFFER_DATA,
                pvBuffer: signature.as_mut_ptr() as *mut c_void,
            },
            SecBuffer {
                cbBuffer: sizes.cbBlockSize,
                BufferType: SECBUFFER_PADDING,
                pvBuffer: trailer.as_mut_ptr() as *mut c_void,
            },
        ];
        let sec_buffer = SecBufferDesc {
            ulVersion: SECBUFFER_VERSION,
            cBuffers: buffers.len() as u32,
            pBuffers: buffers.as_mut_ptr(),
        };
        let res = unsafe {
            EncryptMessage(
                self.as_ptr(),
                if encrypt { 0 } else { SECQOP_WRAP_NO_ENCRYPT },
                &sec_buffer,
                0,
            )
        };
        match res {
            HRESULT(0) => {
                let header_sl = &header[..buffers[0].cbBuffer as usize];
                assert_eq!(message.len(), buffers[1].cbBuffer as usize);
                let trailer_sl = &trailer[..buffers[2].cbBuffer as usize];
                let out = [header_sl, &signature, trailer_sl].concat();
                Ok(out)
            }
            err => Err(windows_result::Error::new(err, "")),
        }
    }
    /// ONLY USE WITH FINISHED CONTEXT
    pub(crate) fn wrap_sign(&self, message: &[u8]) -> windows_result::Result<Signature> {
        self.wrap_raw(false, message).map(Signature)
    }
    /// ONLY USED IN A FINISHED, ENCRYPTION-ALLOWED CONTEXT
    pub(crate) fn wrap_encrypt(&self, message: &[u8]) -> windows_result::Result<Encrypted> {
        self.wrap_raw(true, message).map(Encrypted)
    }

    pub(crate) fn unwrap(&self, message: &[u8]) -> Result<Plaintext, Altered> {
        let mut input = message.to_vec();

        let mut buffers = vec![
            SecBuffer {
                BufferType: SECBUFFER_STREAM,
                cbBuffer: message.len() as u32,
                pvBuffer: input.as_mut_ptr() as *mut c_void,
            },
            SecBuffer {
                BufferType: SECBUFFER_DATA,
                cbBuffer: 0,
                pvBuffer: std::ptr::null_mut(),
            },
        ];
        let buffer_desc = SecBufferDesc {
            ulVersion: SECBUFFER_VERSION,
            cBuffers: buffers.len() as u32,
            pBuffers: buffers.as_mut_ptr(),
        };
        let mut pfqop = 0;
        let res = unsafe { DecryptMessage(self.as_ptr(), &buffer_desc, 0, Some(&mut pfqop)) };
        match res {
            SEC_E_OK => {
                let header_length = buffers[1].pvBuffer as usize - buffers[0].pvBuffer as usize;
                let data_length = buffers[1].cbBuffer as usize;
                let buffer = input[header_length..header_length + data_length].to_vec();
                Ok(Plaintext {
                    buffer,
                    was_encrypted: pfqop != SECQOP_WRAP_NO_ENCRYPT,
                })
            }
            SEC_E_MESSAGE_ALTERED | SEC_E_INVALID_TOKEN => Err(Altered),
            err => panic!("Unexpected error code: {} (\"{}\")", err.0, err.message()),
        }
    }
}

fn get_context_sizes(ctx: &ContextHandle) -> windows_result::Result<SecPkgContext_Sizes> {
    let mut sizes = SecPkgContext_Sizes::default();
    unsafe {
        QueryContextAttributesW(
            ctx.as_ptr(),
            SECPKG_ATTR_SIZES,
            std::ptr::from_mut(&mut sizes) as *mut c_void,
        )?
    };
    Ok(sizes)
}

#[derive(Debug)]
pub struct WrapError(pub(crate) windows_result::Error);
impl std::error::Error for WrapError {
    fn cause(&self) -> Option<&dyn std::error::Error> {
        Some(&self.0)
    }
}
impl Display for WrapError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        self.0.fmt(f)
    }
}

pub struct Plaintext {
    buffer: Vec<u8>,
    was_encrypted: bool,
}
impl Plaintext {
    pub fn was_encrypted(&self) -> bool {
        self.was_encrypted
    }
}
impl Deref for Plaintext {
    type Target = [u8];
    fn deref(&self) -> &Self::Target {
        &self.buffer
    }
}

#[derive(Clone, Debug, PartialEq)]
pub struct Signature(Vec<u8>);
impl Signature {
    pub fn new(sig: &[u8]) -> Self {
        Self(sig.to_vec())
    }
}
impl Deref for Signature {
    type Target = [u8];
    fn deref(&self) -> &Self::Target {
        &self.0
    }
}
#[derive(Clone, Debug, PartialEq)]
pub struct Encrypted(Vec<u8>);
impl Encrypted {
    pub fn new(sig: &[u8]) -> Self {
        Self(sig.to_vec())
    }
}
impl Deref for Encrypted {
    type Target = [u8];
    fn deref(&self) -> &Self::Target {
        &self.0
    }
}
#[derive(Debug)]
pub struct Altered;
impl std::error::Error for Altered {}
impl std::fmt::Display for Altered {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "the input message has been altered or the signature is invalid")
    }
}