2 * Unit test suite for crypt32.dll's CryptProtectData/CryptUnprotectData
4 * Copyright 2005 Kees Cook <kees@outflux.net>
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2.1 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
28 #include "wine/test.h"
30 static BOOL (WINAPI *pCryptProtectData)(DATA_BLOB*,LPCWSTR,DATA_BLOB*,PVOID,CRYPTPROTECT_PROMPTSTRUCT*,DWORD,DATA_BLOB*);
31 static BOOL (WINAPI *pCryptUnprotectData)(DATA_BLOB*,LPWSTR*,DATA_BLOB*,PVOID,CRYPTPROTECT_PROMPTSTRUCT*,DWORD,DATA_BLOB*);
33 static char secret[] = "I am a super secret string that no one can see!";
34 static char secret2[] = "I am a super secret string indescribable string";
35 static char key[] = "Wibble wibble wibble";
36 static const WCHAR desc[] = {'U','l','t','r','a',' ','s','e','c','r','e','t',' ','t','e','s','t',' ','m','e','s','s','a','g','e',0};
37 static BOOL protected = FALSE; /* if true, the unprotect tests can run */
38 static DATA_BLOB cipher;
39 static DATA_BLOB cipher_entropy;
40 static DATA_BLOB cipher_no_desc;
42 static void test_cryptprotectdata(void)
48 plain.pbData=(void*)secret;
49 plain.cbData=strlen(secret)+1;
51 entropy.pbData=(void*)key;
52 entropy.cbData=strlen(key)+1;
54 SetLastError(0xDEADBEEF);
55 protected = pCryptProtectData(NULL,desc,NULL,NULL,NULL,0,&cipher);
56 ok(!protected, "Encrypting without plain data source.\n");
58 ok(r == ERROR_INVALID_PARAMETER, "Wrong (%u) GetLastError seen\n",r);
60 SetLastError(0xDEADBEEF);
61 protected = pCryptProtectData(&plain,desc,NULL,NULL,NULL,0,NULL);
62 ok(!protected, "Encrypting without cipher destination.\n");
64 ok(r == ERROR_INVALID_PARAMETER, "Wrong (%u) GetLastError seen\n",r);
70 SetLastError(0xDEADBEEF);
71 protected = pCryptProtectData(&plain,desc,NULL,NULL,NULL,0,&cipher);
73 broken(!protected), /* Win9x/NT4 */
74 "Encrypting without entropy.\n");
78 ok(r == ERROR_SUCCESS ||
79 r == ERROR_IO_PENDING, /* win2k */
80 "Expected ERROR_SUCCESS or ERROR_IO_PENDING, got %d\n",r);
83 cipher_entropy.pbData=NULL;
84 cipher_entropy.cbData=0;
87 SetLastError(0xDEADBEEF);
88 protected = pCryptProtectData(&plain,desc,&entropy,NULL,NULL,0,&cipher_entropy);
90 broken(!protected), /* Win9x/NT4 */
91 "Encrypting with entropy.\n");
93 cipher_no_desc.pbData=NULL;
94 cipher_no_desc.cbData=0;
96 /* with entropy but no description */
97 plain.pbData=(void*)secret2;
98 plain.cbData=strlen(secret2)+1;
99 SetLastError(0xDEADBEEF);
100 protected = pCryptProtectData(&plain,NULL,&entropy,NULL,NULL,0,&cipher_no_desc);
104 ok(GetLastError() == ERROR_INVALID_PARAMETER,
105 "Expected ERROR_INVALID_PARAMETER, got %d\n", GetLastError());
109 static void test_cryptunprotectdata(void)
117 entropy.pbData=(void*)key;
118 entropy.cbData=strlen(key)+1;
123 skip("CryptProtectData failed to run\n");
130 SetLastError(0xDEADBEEF);
131 okay = pCryptUnprotectData(&cipher,NULL,NULL,NULL,NULL,0,NULL);
132 ok(!okay,"Decrypting without destination\n");
134 ok(r == ERROR_INVALID_PARAMETER, "Wrong (%u) GetLastError seen\n",r);
136 SetLastError(0xDEADBEEF);
137 okay = pCryptUnprotectData(NULL,NULL,NULL,NULL,NULL,0,&plain);
138 ok(!okay,"Decrypting without source\n");
140 ok(r == ERROR_INVALID_PARAMETER, "Wrong (%u) GetLastError seen\n",r);
145 SetLastError(0xDEADBEEF);
146 okay = pCryptUnprotectData(&cipher_entropy,NULL,NULL,NULL,NULL,0,&plain);
147 ok(!okay,"Decrypting without needed entropy\n");
149 ok(r == ERROR_INVALID_DATA, "Wrong (%u) GetLastError seen\n", r);
155 /* without entropy */
156 SetLastError(0xDEADBEEF);
157 okay = pCryptUnprotectData(&cipher,&data_desc,NULL,NULL,NULL,0,&plain);
158 ok(okay,"Decrypting without entropy\n");
160 ok(plain.pbData!=NULL,"Plain DATA_BLOB missing data\n");
161 ok(plain.cbData==strlen(secret)+1,"Plain DATA_BLOB wrong length\n");
162 ok(!strcmp((const char*)plain.pbData,secret),"Plain does not match secret\n");
163 ok(data_desc!=NULL,"Description not allocated\n");
164 ok(!lstrcmpW(data_desc,desc),"Description does not match\n");
166 LocalFree(plain.pbData);
167 LocalFree(data_desc);
173 /* with wrong entropy */
174 SetLastError(0xDEADBEEF);
175 okay = pCryptUnprotectData(&cipher_entropy,&data_desc,&cipher_entropy,NULL,NULL,0,&plain);
176 ok(!okay,"Decrypting with wrong entropy\n");
178 ok(r == ERROR_INVALID_DATA, "Wrong (%u) GetLastError seen\n",r);
181 SetLastError(0xDEADBEEF);
182 okay = pCryptUnprotectData(&cipher_entropy,&data_desc,&entropy,NULL,NULL,0,&plain);
183 ok(okay,"Decrypting with entropy\n");
185 ok(plain.pbData!=NULL,"Plain DATA_BLOB missing data\n");
186 ok(plain.cbData==strlen(secret)+1,"Plain DATA_BLOB wrong length\n");
187 ok(!strcmp((const char*)plain.pbData,secret),"Plain does not match secret\n");
188 ok(data_desc!=NULL,"Description not allocated\n");
189 ok(!lstrcmpW(data_desc,desc),"Description does not match\n");
191 LocalFree(plain.pbData);
192 LocalFree(data_desc);
198 /* with entropy but no description */
199 SetLastError(0xDEADBEEF);
200 okay = pCryptUnprotectData(&cipher_no_desc,&data_desc,&entropy,NULL,NULL,0,&plain);
201 ok(okay,"Decrypting with entropy and no description\n");
203 ok(plain.pbData!=NULL,"Plain DATA_BLOB missing data\n");
204 ok(plain.cbData==strlen(secret2)+1,"Plain DATA_BLOB wrong length\n");
205 ok(!strcmp((const char*)plain.pbData,secret2),"Plain does not match secret\n");
206 ok(data_desc!=NULL,"Description not allocated\n");
207 ok(data_desc[0]=='\0',"Description not empty\n");
209 LocalFree(data_desc);
210 LocalFree(plain.pbData);
216 static void test_simpleroundtrip(const char *plaintext)
225 input.pbData = (unsigned char *)plaintext;
226 input.cbData = strlen(plaintext);
227 res = pCryptProtectData(&input, emptyW, NULL, NULL, NULL, 0, &encrypted);
228 ok(res != 0 || broken(!res), "can't protect\n");
231 /* Fails on Win9x, NT4 */
232 win_skip("CryptProtectData failed\n");
236 res = pCryptUnprotectData(&encrypted, NULL, NULL, NULL, NULL, 0, &output);
237 ok(res != 0, "can't unprotect; last error %u\n", GetLastError());
238 ok(output.cbData == strlen(plaintext), "output wrong length %d for input '%s', wanted %d\n", output.cbData, plaintext, lstrlenA(plaintext));
239 ok(!memcmp(plaintext, (char *)output.pbData, output.cbData), "output wrong contents for input '%s'\n", plaintext);
240 LocalFree(output.pbData);
241 LocalFree(encrypted.pbData);
244 START_TEST(protectdata)
246 HMODULE hCrypt32 = GetModuleHandleA("crypt32.dll");
247 hCrypt32 = GetModuleHandleA("crypt32.dll");
248 pCryptProtectData = (void*)GetProcAddress(hCrypt32, "CryptProtectData");
249 pCryptUnprotectData = (void*)GetProcAddress(hCrypt32, "CryptUnprotectData");
250 if (!pCryptProtectData || !pCryptUnprotectData)
252 win_skip("Crypt(Un)ProtectData() is not available\n");
257 test_cryptprotectdata();
258 test_cryptunprotectdata();
259 test_simpleroundtrip("");
260 test_simpleroundtrip("hello");
262 /* deinit globals here */
263 if (cipher.pbData) LocalFree(cipher.pbData);
264 if (cipher_entropy.pbData) LocalFree(cipher_entropy.pbData);
265 if (cipher_no_desc.pbData) LocalFree(cipher_no_desc.pbData);