/*
 ---------------------------------------------------------------------------
 Copyright (c) 1998-2007, Brian Gladman, Worcester, UK. All rights reserved.

 LICENSE TERMS

 The free distribution and use of this software is allowed (with or without
 changes) provided that:

  1. source code distributions include the above copyright notice, this
     list of conditions and the following disclaimer;

  2. binary distributions include the above copyright notice, this list
     of conditions and the following disclaimer in their documentation;

  3. the name of the copyright holder is not used to endorse products
     built using this software without specific written permission.

 DISCLAIMER

 This software is provided 'as is' with no explicit or implied warranties
 in respect of its properties, including, but not limited to, correctness
 and/or fitness for purpose.
 ---------------------------------------------------------------------------
 Issue Date: 20/12/2007

 This file contains the definitions required to use AES in C. See aesopt.h
 for optimisation details.
*/

/* Adapted for TrueCrypt */

#ifndef _AES_H
#define _AES_H

#include "Common/Tcdefs.h"

#ifndef EXIT_SUCCESS
#define EXIT_SUCCESS    0
#define EXIT_FAILURE    1
#endif
#define INT_RETURN   int

#if defined(__cplusplus)
extern "C"
{
#endif

// #define AES_128     /* define if AES with 128 bit keys is needed    */
// #define AES_192     /* define if AES with 192 bit keys is needed    */
#define AES_256     /* define if AES with 256 bit keys is needed    */
// #define AES_VAR     /* define if a variable key size is needed      */
// #define AES_MODES   /* define if support is needed for modes        */

/* The following must also be set in assembler files if being used  */

#define AES_ENCRYPT /* if support for encryption is needed          */
#define AES_DECRYPT /* if support for decryption is needed          */
#define AES_ERR_CHK /* for parameter checks & error return codes    */
#define AES_REV_DKS /* define to reverse decryption key schedule    */

#define AES_BLOCK_SIZE  16  /* the AES block size in bytes          */
#define N_COLS           4  /* the number of columns in the state   */

/* The key schedule length is 11, 13 or 15 16-byte blocks for 128,  */
/* 192 or 256-bit keys respectively. That is 176, 208 or 240 bytes  */
/* or 44, 52 or 60 32-bit words.                                    */

#if defined( AES_VAR ) || defined( AES_256 )
#define KS_LENGTH       60
#elif defined( AES_192 )
#define KS_LENGTH       52
#else
#define KS_LENGTH       44
#endif

#if defined( AES_ERR_CHK )
#define AES_RETURN     INT_RETURN
#else
#define AES_RETURN     VOID_RETURN
#endif

/* the character array 'inf' in the following structures is used    */
/* to hold AES context information. This AES code uses cx->inf.b[0] */
/* to hold the number of rounds multiplied by 16. The other three   */
/* elements can be used by code that implements additional modes    */

typedef union
{   uint_32t l;
    uint_8t b[4];
} aes_inf;

typedef struct
{   uint_32t ks[KS_LENGTH];
    aes_inf inf;
} aes_encrypt_ctx;

typedef struct
{   uint_32t ks[KS_LENGTH];
    aes_inf inf;
} aes_decrypt_ctx;

/* This routine must be called before first use if non-static       */
/* tables are being used                                            */

AES_RETURN aes_init(void);

/* Key lengths in the range 16 <= key_len <= 32 are given in bytes, */
/* those in the range 128 <= key_len <= 256 are given in bits       */

#if defined( AES_ENCRYPT )

#if defined(AES_128) || defined(AES_VAR)
AES_RETURN aes_encrypt_key128(const unsigned char *key, aes_encrypt_ctx cx[1]);
#endif

#if defined(AES_192) || defined(AES_VAR)
AES_RETURN aes_encrypt_key192(const unsigned char *key, aes_encrypt_ctx cx[1]);
#endif

#if defined(AES_256) || defined(AES_VAR)
AES_RETURN aes_encrypt_key256(const unsigned char *key, aes_encrypt_ctx cx[1]);
#endif

#if defined(AES_VAR)
AES_RETURN aes_encrypt_key(const unsigned char *key, int key_len, aes_encrypt_ctx cx[1]);
#endif

AES_RETURN aes_encrypt(const unsigned char *in, unsigned char *out, const aes_encrypt_ctx cx[1]);

#endif

#if defined( AES_DECRYPT )

#if defined(AES_128) || defined(AES_VAR)
AES_RETURN aes_decrypt_key128(const unsigned char *key, aes_decrypt_ctx cx[1]);
#endif

#if defined(AES_192) || defined(AES_VAR)
AES_RETURN aes_decrypt_key192(const unsigned char *key, aes_decrypt_ctx cx[1]);
#endif

#if defined(AES_256) || defined(AES_VAR)
AES_RETURN aes_decrypt_key256(const unsigned char *key, aes_decrypt_ctx cx[1]);
#endif

#if defined(AES_VAR)
AES_RETURN aes_decrypt_key(const unsigned char *key, int key_len, aes_decrypt_ctx cx[1]);
#endif

AES_RETURN aes_decrypt(const unsigned char *in, unsigned char *out, const aes_decrypt_ctx cx[1]);

#endif

#if defined(AES_MODES)

/* Multiple calls to the following subroutines for multiple block   */
/* ECB, CBC, CFB, OFB and CTR mode encryption can be used to handle */
/* long messages incremantally provided that the context AND the iv */
/* are preserved between all such calls.  For the ECB and CBC modes */
/* each individual call within a series of incremental calls must   */
/* process only full blocks (i.e. len must be a multiple of 16) but */
/* the CFB, OFB and CTR mode calls can handle multiple incremental  */
/* calls of any length. Each mode is reset when a new AES key is    */
/* set but ECB and CBC operations can be reset without setting a    */
/* new key by setting a new IV value.  To reset CFB, OFB and CTR    */
/* without setting the key, aes_mode_reset() must be called and the */
/* IV must be set.  NOTE: All these calls update the IV on exit so  */
/* this has to be reset if a new operation with the same IV as the  */
/* previous one is required (or decryption follows encryption with  */
/* the same IV array).                                              */

AES_RETURN aes_test_alignment_detection(unsigned int n);

AES_RETURN aes_ecb_encrypt(const unsigned char *ibuf, unsigned char *obuf,
                    int len, const aes_encrypt_ctx cx[1]);

AES_RETURN aes_ecb_decrypt(const unsigned char *ibuf, unsigned char *obuf,
                    int len, const aes_decrypt_ctx cx[1]);

AES_RETURN aes_cbc_encrypt(const unsigned char *ibuf, unsigned char *obuf,
                    int len, unsigned char *iv, const aes_encrypt_ctx cx[1]);

AES_RETURN aes_cbc_decrypt(const unsigned char *ibuf, unsigned char *obuf,
                    int len, unsigned char *iv, const aes_decrypt_ctx cx[1]);

AES_RETURN aes_mode_reset(aes_encrypt_ctx cx[1]);

AES_RETURN aes_cfb_encrypt(const unsigned char *ibuf, unsigned char *obuf,
                    int len, unsigned char *iv, aes_encrypt_ctx cx[1]);

AES_RETURN aes_cfb_decrypt(const unsigned char *ibuf, unsigned char *obuf,
                    int len, unsigned char *iv, aes_encrypt_ctx cx[1]);

#define aes_ofb_encrypt aes_ofb_crypt
#define aes_ofb_decrypt aes_ofb_crypt

AES_RETURN aes_ofb_crypt(const unsigned char *ibuf, unsigned char *obuf,
                    int len, unsigned char *iv, aes_encrypt_ctx cx[1]);

typedef void cbuf_inc(unsigned char *cbuf);

#define aes_ctr_encrypt aes_ctr_crypt
#define aes_ctr_decrypt aes_ctr_crypt

AES_RETURN aes_ctr_crypt(const unsigned char *ibuf, unsigned char *obuf,
            int len, unsigned char *cbuf, cbuf_inc ctr_inc, aes_encrypt_ctx cx[1]);

#endif

#if defined(__cplusplus)
}
#endif

#endif
f='#n121'>121</a>
<a id='n122' href='#n122'>122</a>
<a id='n123' href='#n123'>123</a>
<a id='n124' href='#n124'>124</a>
<a id='n125' href='#n125'>125</a>
<a id='n126' href='#n126'>126</a>
<a id='n127' href='#n127'>127</a>
<a id='n128' href='#n128'>128</a>
<a id='n129' href='#n129'>129</a>
<a id='n130' href='#n130'>130</a>
<a id='n131' href='#n131'>131</a>
<a id='n132' href='#n132'>132</a>
<a id='n133' href='#n133'>133</a>
<a id='n134' href='#n134'>134</a>
<a id='n135' href='#n135'>135</a>
<a id='n136' href='#n136'>136</a>
<a id='n137' href='#n137'>137</a>
<a id='n138' href='#n138'>138</a>
<a id='n139' href='#n139'>139</a>
<a id='n140' href='#n140'>140</a>
<a id='n141' href='#n141'>141</a>
<a id='n142' href='#n142'>142</a>
<a id='n143' href='#n143'>143</a>
<a id='n144' href='#n144'>144</a>
<a id='n145' href='#n145'>145</a>
<a id='n146' href='#n146'>146</a>
<a id='n147' href='#n147'>147</a>
<a id='n148' href='#n148'>148</a>
<a id='n149' href='#n149'>149</a>
<a id='n150' href='#n150'>150</a>
<a id='n151' href='#n151'>151</a>
<a id='n152' href='#n152'>152</a>
<a id='n153' href='#n153'>153</a>
<a id='n154' href='#n154'>154</a>
<a id='n155' href='#n155'>155</a>
<a id='n156' href='#n156'>156</a>
<a id='n157' href='#n157'>157</a>
<a id='n158' href='#n158'>158</a>
<a id='n159' href='#n159'>159</a>
<a id='n160' href='#n160'>160</a>
<a id='n161' href='#n161'>161</a>
<a id='n162' href='#n162'>162</a>
<a id='n163' href='#n163'>163</a>
<a id='n164' href='#n164'>164</a>
<a id='n165' href='#n165'>165</a>
<a id='n166' href='#n166'>166</a>
<a id='n167' href='#n167'>167</a>
<a id='n168' href='#n168'>168</a>
<a id='n169' href='#n169'>169</a>
<a id='n170' href='#n170'>170</a>
<a id='n171' href='#n171'>171</a>
<a id='n172' href='#n172'>172</a>
<a id='n173' href='#n173'>173</a>
<a id='n174' href='#n174'>174</a>
<a id='n175' href='#n175'>175</a>
<a id='n176' href='#n176'>176</a>
<a id='n177' href='#n177'>177</a>
<a id='n178' href='#n178'>178</a>
<a id='n179' href='#n179'>179</a>
<a id='n180' href='#n180'>180</a>
<a id='n181' href='#n181'>181</a>
<a id='n182' href='#n182'>182</a>
<a id='n183' href='#n183'>183</a>
<a id='n184' href='#n184'>184</a>
<a id='n185' href='#n185'>185</a>
<a id='n186' href='#n186'>186</a>
<a id='n187' href='#n187'>187</a>
<a id='n188' href='#n188'>188</a>
<a id='n189' href='#n189'>189</a>
<a id='n190' href='#n190'>190</a>
<a id='n191' href='#n191'>191</a>
<a id='n192' href='#n192'>192</a>
<a id='n193' href='#n193'>193</a>
<a id='n194' href='#n194'>194</a>
<a id='n195' href='#n195'>195</a>
<a id='n196' href='#n196'>196</a>
<a id='n197' href='#n197'>197</a>
<a id='n198' href='#n198'>198</a>
<a id='n199' href='#n199'>199</a>
<a id='n200' href='#n200'>200</a>
<a id='n201' href='#n201'>201</a>
<a id='n202' href='#n202'>202</a>
<a id='n203' href='#n203'>203</a>
<a id='n204' href='#n204'>204</a>
<a id='n205' href='#n205'>205</a>
<a id='n206' href='#n206'>206</a>
<a id='n207' href='#n207'>207</a>
<a id='n208' href='#n208'>208</a>
<a id='n209' href='#n209'>209</a>
<a id='n210' href='#n210'>210</a>
<a id='n211' href='#n211'>211</a>
<a id='n212' href='#n212'>212</a>
<a id='n213' href='#n213'>213</a>
<a id='n214' href='#n214'>214</a>
<a id='n215' href='#n215'>215</a>
<a id='n216' href='#n216'>216</a>
<a id='n217' href='#n217'>217</a>
<a id='n218' href='#n218'>218</a>
<a id='n219' href='#n219'>219</a>
<a id='n220' href='#n220'>220</a>
<a id='n221' href='#n221'>221</a>
<a id='n222' href='#n222'>222</a>
<a id='n223' href='#n223'>223</a>
<a id='n224' href='#n224'>224</a>
<a id='n225' href='#n225'>225</a>
<a id='n226' href='#n226'>226</a>
<a id='n227' href='#n227'>227</a>
<a id='n228' href='#n228'>228</a>
<a id='n229' href='#n229'>229</a>
<a id='n230' href='#n230'>230</a>
<a id='n231' href='#n231'>231</a>
<a id='n232' href='#n232'>232</a>
<a id='n233' href='#n233'>233</a>
<a id='n234' href='#n234'>234</a>
<a id='n235' href='#n235'>235</a>
<a id='n236' href='#n236'>236</a>
<a id='n237' href='#n237'>237</a>
<a id='n238' href='#n238'>238</a>
<a id='n239' href='#n239'>239</a>
<a id='n240' href='#n240'>240</a>
<a id='n241' href='#n241'>241</a>
<a id='n242' href='#n242'>242</a>
<a id='n243' href='#n243'>243</a>
<a id='n244' href='#n244'>244</a>
<a id='n245' href='#n245'>245</a>
<a id='n246' href='#n246'>246</a>
<a id='n247' href='#n247'>247</a>
<a id='n248' href='#n248'>248</a>
<a id='n249' href='#n249'>249</a>
<a id='n250' href='#n250'>250</a>
<a id='n251' href='#n251'>251</a>
<a id='n252' href='#n252'>252</a>
<a id='n253' href='#n253'>253</a>
<a id='n254' href='#n254'>254</a>
<a id='n255' href='#n255'>255</a>
<a id='n256' href='#n256'>256</a>
<a id='n257' href='#n257'>257</a>
<a id='n258' href='#n258'>258</a>
<a id='n259' href='#n259'>259</a>
<a id='n260' href='#n260'>260</a>
<a id='n261' href='#n261'>261</a>
<a id='n262' href='#n262'>262</a>
<a id='n263' href='#n263'>263</a>
<a id='n264' href='#n264'>264</a>
<a id='n265' href='#n265'>265</a>
<a id='n266' href='#n266'>266</a>
<a id='n267' href='#n267'>267</a>
<a id='n268' href='#n268'>268</a>
<a id='n269' href='#n269'>269</a>
<a id='n270' href='#n270'>270</a>
<a id='n271' href='#n271'>271</a>
<a id='n272' href='#n272'>272</a>
<a id='n273' href='#n273'>273</a>
<a id='n274' href='#n274'>274</a>
<a id='n275' href='#n275'>275</a>
<a id='n276' href='#n276'>276</a>
<a id='n277' href='#n277'>277</a>
<a id='n278' href='#n278'>278</a>
<a id='n279' href='#n279'>279</a>
<a id='n280' href='#n280'>280</a>
<a id='n281' href='#n281'>281</a>
<a id='n282' href='#n282'>282</a>
<a id='n283' href='#n283'>283</a>
<a id='n284' href='#n284'>284</a>
<a id='n285' href='#n285'>285</a>
<a id='n286' href='#n286'>286</a>
<a id='n287' href='#n287'>287</a>
<a id='n288' href='#n288'>288</a>
<a id='n289' href='#n289'>289</a>
<a id='n290' href='#n290'>290</a>
<a id='n291' href='#n291'>291</a>
<a id='n292' href='#n292'>292</a>
<a id='n293' href='#n293'>293</a>
<a id='n294' href='#n294'>294</a>
<a id='n295' href='#n295'>295</a>
<a id='n296' href='#n296'>296</a>
<a id='n297' href='#n297'>297</a>
<a id='n298' href='#n298'>298</a>
<a id='n299' href='#n299'>299</a>
<a id='n300' href='#n300'>300</a>
<a id='n301' href='#n301'>301</a>
<a id='n302' href='#n302'>302</a>
<a id='n303' href='#n303'>303</a>
<a id='n304' href='#n304'>304</a>
<a id='n305' href='#n305'>305</a>
<a id='n306' href='#n306'>306</a>
<a id='n307' href='#n307'>307</a>
<a id='n308' href='#n308'>308</a>
<a id='n309' href='#n309'>309</a>
<a id='n310' href='#n310'>310</a>
<a id='n311' href='#n311'>311</a>
<a id='n312' href='#n312'>312</a>
<a id='n313' href='#n313'>313</a>
<a id='n314' href='#n314'>314</a>
<a id='n315' href='#n315'>315</a>
<a id='n316' href='#n316'>316</a>
<a id='n317' href='#n317'>317</a>
<a id='n318' href='#n318'>318</a>
<a id='n319' href='#n319'>319</a>
<a id='n320' href='#n320'>320</a>
<a id='n321' href='#n321'>321</a>
<a id='n322' href='#n322'>322</a>
<a id='n323' href='#n323'>323</a>
<a id='n324' href='#n324'>324</a>
<a id='n325' href='#n325'>325</a>
<a id='n326' href='#n326'>326</a>
<a id='n327' href='#n327'>327</a>
<a id='n328' href='#n328'>328</a>
<a id='n329' href='#n329'>329</a>
<a id='n330' href='#n330'>330</a>
<a id='n331' href='#n331'>331</a>
<a id='n332' href='#n332'>332</a>
<a id='n333' href='#n333'>333</a>
<a id='n334' href='#n334'>334</a>
<a id='n335' href='#n335'>335</a>
<a id='n336' href='#n336'>336</a>
<a id='n337' href='#n337'>337</a>
<a id='n338' href='#n338'>338</a>
<a id='n339' href='#n339'>339</a>
<a id='n340' href='#n340'>340</a>
<a id='n341' href='#n341'>341</a>
<a id='n342' href='#n342'>342</a>
<a id='n343' href='#n343'>343</a>
<a id='n344' href='#n344'>344</a>
<a id='n345' href='#n345'>345</a>
<a id='n346' href='#n346'>346</a>
<a id='n347' href='#n347'>347</a>
<a id='n348' href='#n348'>348</a>
<a id='n349' href='#n349'>349</a>
<a id='n350' href='#n350'>350</a>
<a id='n351' href='#n351'>351</a>
<a id='n352' href='#n352'>352</a>
<a id='n353' href='#n353'>353</a>
<a id='n354' href='#n354'>354</a>
<a id='n355' href='#n355'>355</a>
<a id='n356' href='#n356'>356</a>
<a id='n357' href='#n357'>357</a>
<a id='n358' href='#n358'>358</a>
<a id='n359' href='#n359'>359</a>
<a id='n360' href='#n360'>360</a>
<a id='n361' href='#n361'>361</a>
<a id='n362' href='#n362'>362</a>
<a id='n363' href='#n363'>363</a>
<a id='n364' href='#n364'>364</a>
<a id='n365' href='#n365'>365</a>
<a id='n366' href='#n366'>366</a>
<a id='n367' href='#n367'>367</a>
<a id='n368' href='#n368'>368</a>
<a id='n369' href='#n369'>369</a>
<a id='n370' href='#n370'>370</a>
<a id='n371' href='#n371'>371</a>
<a id='n372' href='#n372'>372</a>
<a id='n373' href='#n373'>373</a>
<a id='n374' href='#n374'>374</a>
<a id='n375' href='#n375'>375</a>
<a id='n376' href='#n376'>376</a>
<a id='n377' href='#n377'>377</a>
<a id='n378' href='#n378'>378</a>
<a id='n379' href='#n379'>379</a>
<a id='n380' href='#n380'>380</a>
<a id='n381' href='#n381'>381</a>
<a id='n382' href='#n382'>382</a>
<a id='n383' href='#n383'>383</a>
<a id='n384' href='#n384'>384</a>
<a id='n385' href='#n385'>385</a>
<a id='n386' href='#n386'>386</a>
<a id='n387' href='#n387'>387</a>
<a id='n388' href='#n388'>388</a>
<a id='n389' href='#n389'>389</a>
<a id='n390' href='#n390'>390</a>
<a id='n391' href='#n391'>391</a>
<a id='n392' href='#n392'>392</a>
<a id='n393' href='#n393'>393</a>
<a id='n394' href='#n394'>394</a>
<a id='n395' href='#n395'>395</a>
<a id='n396' href='#n396'>396</a>
<a id='n397' href='#n397'>397</a>
<a id='n398' href='#n398'>398</a>
<a id='n399' href='#n399'>399</a>
<a id='n400' href='#n400'>400</a>
<a id='n401' href='#n401'>401</a>
<a id='n402' href='#n402'>402</a>
<a id='n403' href='#n403'>403</a>
<a id='n404' href='#n404'>404</a>
<a id='n405' href='#n405'>405</a>
<a id='n406' href='#n406'>406</a>
<a id='n407' href='#n407'>407</a>
<a id='n408' href='#n408'>408</a>
<a id='n409' href='#n409'>409</a>
<a id='n410' href='#n410'>410</a>
<a id='n411' href='#n411'>411</a>
<a id='n412' href='#n412'>412</a>
<a id='n413' href='#n413'>413</a>
<a id='n414' href='#n414'>414</a>
<a id='n415' href='#n415'>415</a>
<a id='n416' href='#n416'>416</a>
<a id='n417' href='#n417'>417</a>
<a id='n418' href='#n418'>418</a>
<a id='n419' href='#n419'>419</a>
<a id='n420' href='#n420'>420</a>
<a id='n421' href='#n421'>421</a>
<a id='n422' href='#n422'>422</a>
<a id='n423' href='#n423'>423</a>
<a id='n424' href='#n424'>424</a>
<a id='n425' href='#n425'>425</a>
<a id='n426' href='#n426'>426</a>
<a id='n427' href='#n427'>427</a>
<a id='n428' href='#n428'>428</a>
<a id='n429' href='#n429'>429</a>
<a id='n430' href='#n430'>430</a>
<a id='n431' href='#n431'>431</a>
<a id='n432' href='#n432'>432</a>
<a id='n433' href='#n433'>433</a>
<a id='n434' href='#n434'>434</a>
<a id='n435' href='#n435'>435</a>
<a id='n436' href='#n436'>436</a>
<a id='n437' href='#n437'>437</a>
<a id='n438' href='#n438'>438</a>
<a id='n439' href='#n439'>439</a>
<a id='n440' href='#n440'>440</a>
<a id='n441' href='#n441'>441</a>
<a id='n442' href='#n442'>442</a>
<a id='n443' href='#n443'>443</a>
<a id='n444' href='#n444'>444</a>
<a id='n445' href='#n445'>445</a>
<a id='n446' href='#n446'>446</a>
<a id='n447' href='#n447'>447</a>
<a id='n448' href='#n448'>448</a>
<a id='n449' href='#n449'>449</a>
<a id='n450' href='#n450'>450</a>
<a id='n451' href='#n451'>451</a>
<a id='n452' href='#n452'>452</a>
<a id='n453' href='#n453'>453</a>
<a id='n454' href='#n454'>454</a>
<a id='n455' href='#n455'>455</a>
<a id='n456' href='#n456'>456</a>
<a id='n457' href='#n457'>457</a>
<a id='n458' href='#n458'>458</a>
<a id='n459' href='#n459'>459</a>
<a id='n460' href='#n460'>460</a>
<a id='n461' href='#n461'>461</a>
<a id='n462' href='#n462'>462</a>
<a id='n463' href='#n463'>463</a>
<a id='n464' href='#n464'>464</a>
<a id='n465' href='#n465'>465</a>
<a id='n466' href='#n466'>466</a>
<a id='n467' href='#n467'>467</a>
<a id='n468' href='#n468'>468</a>
<a id='n469' href='#n469'>469</a>
<a id='n470' href='#n470'>470</a>
<a id='n471' href='#n471'>471</a>
<a id='n472' href='#n472'>472</a>
<a id='n473' href='#n473'>473</a>
<a id='n474' href='#n474'>474</a>
<a id='n475' href='#n475'>475</a>
<a id='n476' href='#n476'>476</a>
<a id='n477' href='#n477'>477</a>
<a id='n478' href='#n478'>478</a>
<a id='n479' href='#n479'>479</a>
<a id='n480' href='#n480'>480</a>
<a id='n481' href='#n481'>481</a>
<a id='n482' href='#n482'>482</a>
<a id='n483' href='#n483'>483</a>
<a id='n484' href='#n484'>484</a>
<a id='n485' href='#n485'>485</a>
<a id='n486' href='#n486'>486</a>
<a id='n487' href='#n487'>487</a>
<a id='n488' href='#n488'>488</a>
<a id='n489' href='#n489'>489</a>
<a id='n490' href='#n490'>490</a>
<a id='n491' href='#n491'>491</a>
</pre></td>
<td class='lines'><pre><code><style>.highlight .hll { background-color: #ffffcc }
.highlight .c { color: #888888 } /* Comment */
.highlight .err { color: #a61717; background-color: #e3d2d2 } /* Error */
.highlight .k { color: #008800; font-weight: bold } /* Keyword */
.highlight .ch { color: #888888 } /* Comment.Hashbang */
.highlight .cm { color: #888888 } /* Comment.Multiline */
.highlight .cp { color: #cc0000; font-weight: bold } /* Comment.Preproc */
.highlight .cpf { color: #888888 } /* Comment.PreprocFile */
.highlight .c1 { color: #888888 } /* Comment.Single */
.highlight .cs { color: #cc0000; font-weight: bold; background-color: #fff0f0 } /* Comment.Special */
.highlight .gd { color: #000000; background-color: #ffdddd } /* Generic.Deleted */
.highlight .ge { font-style: italic } /* Generic.Emph */
.highlight .gr { color: #aa0000 } /* Generic.Error */
.highlight .gh { color: #333333 } /* Generic.Heading */
.highlight .gi { color: #000000; background-color: #ddffdd } /* Generic.Inserted */
.highlight .go { color: #888888 } /* Generic.Output */
.highlight .gp { color: #555555 } /* Generic.Prompt */
.highlight .gs { font-weight: bold } /* Generic.Strong */
.highlight .gu { color: #666666 } /* Generic.Subheading */
.highlight .gt { color: #aa0000 } /* Generic.Traceback */
.highlight .kc { color: #008800; font-weight: bold } /* Keyword.Constant */
.highlight .kd { color: #008800; font-weight: bold } /* Keyword.Declaration */
.highlight .kn { color: #008800; font-weight: bold } /* Keyword.Namespace */
.highlight .kp { color: #008800 } /* Keyword.Pseudo */
.highlight .kr { color: #008800; font-weight: bold } /* Keyword.Reserved */
.highlight .kt { color: #888888; font-weight: bold } /* Keyword.Type */
.highlight .m { color: #0000DD; font-weight: bold } /* Literal.Number */
.highlight .s { color: #dd2200; background-color: #fff0f0 } /* Literal.String */
.highlight .na { color: #336699 } /* Name.Attribute */
.highlight .nb { color: #003388 } /* Name.Builtin */
.highlight .nc { color: #bb0066; font-weight: bold } /* Name.Class */
.highlight .no { color: #003366; font-weight: bold } /* Name.Constant */
.highlight .nd { color: #555555 } /* Name.Decorator */
.highlight .ne { color: #bb0066; font-weight: bold } /* Name.Exception */
.highlight .nf { color: #0066bb; font-weight: bold } /* Name.Function */
.highlight .nl { color: #336699; font-style: italic } /* Name.Label */
.highlight .nn { color: #bb0066; font-weight: bold } /* Name.Namespace */
.highlight .py { color: #336699; font-weight: bold } /* Name.Property */
.highlight .nt { color: #bb0066; font-weight: bold } /* Name.Tag */
.highlight .nv { color: #336699 } /* Name.Variable */
.highlight .ow { color: #008800 } /* Operator.Word */
.highlight .w { color: #bbbbbb } /* Text.Whitespace */
.highlight .mb { color: #0000DD; font-weight: bold } /* Literal.Number.Bin */
.highlight .mf { color: #0000DD; font-weight: bold } /* Literal.Number.Float */
.highlight .mh { color: #0000DD; font-weight: bold } /* Literal.Number.Hex */
.highlight .mi { color: #0000DD; font-weight: bold } /* Literal.Number.Integer */
.highlight .mo { color: #0000DD; font-weight: bold } /* Literal.Number.Oct */
.highlight .sa { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Affix */
.highlight .sb { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Backtick */
.highlight .sc { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Char */
.highlight .dl { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Delimiter */
.highlight .sd { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Doc */
.highlight .s2 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Double */
.highlight .se { color: #0044dd; background-color: #fff0f0 } /* Literal.String.Escape */
.highlight .sh { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Heredoc */
.highlight .si { color: #3333bb; background-color: #fff0f0 } /* Literal.String.Interpol */
.highlight .sx { color: #22bb22; background-color: #f0fff0 } /* Literal.String.Other */
.highlight .sr { color: #008800; background-color: #fff0ff } /* Literal.String.Regex */
.highlight .s1 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Single */
.highlight .ss { color: #aa6600; background-color: #fff0f0 } /* Literal.String.Symbol */
.highlight .bp { color: #003388 } /* Name.Builtin.Pseudo */
.highlight .fm { color: #0066bb; font-weight: bold } /* Name.Function.Magic */
.highlight .vc { color: #336699 } /* Name.Variable.Class */
.highlight .vg { color: #dd7700 } /* Name.Variable.Global */
.highlight .vi { color: #3333bb } /* Name.Variable.Instance */
.highlight .vm { color: #336699 } /* Name.Variable.Magic */
.highlight .il { color: #0000DD; font-weight: bold } /* Literal.Number.Integer.Long */</style><div class="highlight"><pre><span></span><span class="cm">/*</span>
<span class="cm"> Legal Notice: Some portions of the source code contained in this file were</span>
<span class="cm"> derived from the source code of TrueCrypt 7.1a, which is </span>
<span class="cm"> Copyright (c) 2003-2012 TrueCrypt Developers Association and which is </span>
<span class="cm"> governed by the TrueCrypt License 3.0, also from the source code of</span>
<span class="cm"> Encryption for the Masses 2.02a, which is Copyright (c) 1998-2000 Paul Le Roux</span>
<span class="cm"> and which is governed by the &#39;License Agreement for Encryption for the Masses&#39; </span>
<span class="cm"> Modifications and additions to the original source code (contained in this file) </span>
<span class="cm"> and all other portions of this file are Copyright (c) 2013-2016 IDRIX</span>
<span class="cm"> and are governed by the Apache License 2.0 the full text of which is</span>
<span class="cm"> contained in the file License.txt included in VeraCrypt binary and source</span>
<span class="cm"> code distribution packages. */</span>

<span class="cp">#include</span> <span class="cpf">&quot;Tcdefs.h&quot;</span><span class="cp"></span>

<span class="cp">#include</span> <span class="cpf">&quot;Crypto.h&quot;</span><span class="cp"></span>
<span class="cp">#include</span> <span class="cpf">&quot;Volumes.h&quot;</span><span class="cp"></span>
<span class="cp">#include</span> <span class="cpf">&quot;Password.h&quot;</span><span class="cp"></span>
<span class="cp">#include</span> <span class="cpf">&quot;Dlgcode.h&quot;</span><span class="cp"></span>
<span class="cp">#include</span> <span class="cpf">&quot;Language.h&quot;</span><span class="cp"></span>
<span class="cp">#include</span> <span class="cpf">&quot;Pkcs5.h&quot;</span><span class="cp"></span>
<span class="cp">#include</span> <span class="cpf">&quot;Endian.h&quot;</span><span class="cp"></span>
<span class="cp">#include</span> <span class="cpf">&quot;Random.h&quot;</span><span class="cp"></span>

<span class="cp">#include</span> <span class="cpf">&lt;io.h&gt;</span><span class="cp"></span>

<span class="cp">#ifndef SRC_POS</span>
<span class="cp">#define SRC_POS (__FUNCTION__ &quot;:&quot; TC_TO_STRING(__LINE__))</span>
<span class="cp">#endif</span>

<span class="kt">void</span> <span class="nf">VerifyPasswordAndUpdate</span> <span class="p">(</span><span class="n">HWND</span> <span class="n">hwndDlg</span><span class="p">,</span> <span class="n">HWND</span> <span class="n">hButton</span><span class="p">,</span> <span class="n">HWND</span> <span class="n">hPassword</span><span class="p">,</span>
			 <span class="n">HWND</span> <span class="n">hVerify</span><span class="p">,</span> <span class="kt">unsigned</span> <span class="kt">char</span> <span class="o">*</span><span class="n">szPassword</span><span class="p">,</span>
			 <span class="kt">char</span> <span class="o">*</span><span class="n">szVerify</span><span class="p">,</span>
			 <span class="n">BOOL</span> <span class="n">keyFilesEnabled</span><span class="p">)</span>
<span class="p">{</span>
	<span class="kt">wchar_t</span> <span class="n">szTmp1</span><span class="p">[</span><span class="n">MAX_PASSWORD</span> <span class="o">+</span> <span class="mi">1</span><span class="p">];</span>
	<span class="kt">wchar_t</span> <span class="n">szTmp2</span><span class="p">[</span><span class="n">MAX_PASSWORD</span> <span class="o">+</span> <span class="mi">1</span><span class="p">];</span>
	<span class="kt">char</span> <span class="n">szTmp1Utf8</span><span class="p">[</span><span class="n">MAX_PASSWORD</span> <span class="o">+</span> <span class="mi">1</span><span class="p">];</span>
	<span class="kt">char</span> <span class="n">szTmp2Utf8</span><span class="p">[</span><span class="n">MAX_PASSWORD</span> <span class="o">+</span> <span class="mi">1</span><span class="p">];</span>
	<span class="kt">int</span> <span class="n">k</span> <span class="o">=</span> <span class="n">GetWindowTextLength</span> <span class="p">(</span><span class="n">hPassword</span><span class="p">);</span>
	<span class="n">BOOL</span> <span class="n">bEnable</span> <span class="o">=</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="kt">int</span> <span class="n">utf8Len1</span><span class="p">,</span> <span class="n">utf8Len2</span><span class="p">;</span>

	<span class="n">UNREFERENCED_PARAMETER</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">);</span>		<span class="cm">/* Remove warning */</span>

	<span class="n">GetWindowText</span> <span class="p">(</span><span class="n">hPassword</span><span class="p">,</span> <span class="n">szTmp1</span><span class="p">,</span> <span class="n">ARRAYSIZE</span> <span class="p">(</span><span class="n">szTmp1</span><span class="p">));</span>
	<span class="n">GetWindowText</span> <span class="p">(</span><span class="n">hVerify</span><span class="p">,</span> <span class="n">szTmp2</span><span class="p">,</span> <span class="n">ARRAYSIZE</span> <span class="p">(</span><span class="n">szTmp2</span><span class="p">));</span>

	<span class="n">utf8Len1</span> <span class="o">=</span> <span class="n">WideCharToMultiByte</span> <span class="p">(</span><span class="n">CP_UTF8</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="n">szTmp1</span><span class="p">,</span> <span class="o">-</span><span class="mi">1</span><span class="p">,</span> <span class="n">szTmp1Utf8</span><span class="p">,</span> <span class="n">MAX_PASSWORD</span> <span class="o">+</span> <span class="mi">1</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>
	<span class="n">utf8Len2</span> <span class="o">=</span> <span class="n">WideCharToMultiByte</span> <span class="p">(</span><span class="n">CP_UTF8</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="n">szTmp2</span><span class="p">,</span> <span class="o">-</span><span class="mi">1</span><span class="p">,</span> <span class="n">szTmp2Utf8</span><span class="p">,</span> <span class="n">MAX_PASSWORD</span> <span class="o">+</span> <span class="mi">1</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">wcscmp</span> <span class="p">(</span><span class="n">szTmp1</span><span class="p">,</span> <span class="n">szTmp2</span><span class="p">)</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span>
		<span class="n">bEnable</span> <span class="o">=</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="k">else</span> <span class="k">if</span> <span class="p">(</span><span class="n">utf8Len1</span> <span class="o">&lt;=</span> <span class="mi">0</span><span class="p">)</span>
		<span class="n">bEnable</span> <span class="o">=</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="k">else</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">k</span> <span class="o">&gt;=</span> <span class="n">MIN_PASSWORD</span> <span class="o">||</span> <span class="n">keyFilesEnabled</span><span class="p">)</span>
			<span class="n">bEnable</span> <span class="o">=</span> <span class="n">TRUE</span><span class="p">;</span>
		<span class="k">else</span>
			<span class="n">bEnable</span> <span class="o">=</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">szPassword</span> <span class="o">!=</span> <span class="nb">NULL</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">utf8Len1</span> <span class="o">&gt;</span> <span class="mi">0</span><span class="p">)</span>
			<span class="n">memcpy</span> <span class="p">(</span><span class="n">szPassword</span><span class="p">,</span> <span class="n">szTmp1Utf8</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">szTmp1Utf8</span><span class="p">));</span>
		<span class="k">else</span>
			<span class="n">szPassword</span> <span class="p">[</span><span class="mi">0</span><span class="p">]</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">szVerify</span> <span class="o">!=</span> <span class="nb">NULL</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">utf8Len2</span> <span class="o">&gt;</span> <span class="mi">0</span><span class="p">)</span>
			<span class="n">memcpy</span> <span class="p">(</span><span class="n">szVerify</span><span class="p">,</span> <span class="n">szTmp2Utf8</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">szTmp2Utf8</span><span class="p">));</span>
		<span class="k">else</span>
			<span class="n">szVerify</span> <span class="p">[</span><span class="mi">0</span><span class="p">]</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="n">burn</span> <span class="p">(</span><span class="n">szTmp1</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">szTmp1</span><span class="p">));</span>
	<span class="n">burn</span> <span class="p">(</span><span class="n">szTmp2</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">szTmp2</span><span class="p">));</span>
	<span class="n">burn</span> <span class="p">(</span><span class="n">szTmp1Utf8</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">szTmp1Utf8</span><span class="p">));</span>
	<span class="n">burn</span> <span class="p">(</span><span class="n">szTmp2Utf8</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">szTmp2Utf8</span><span class="p">));</span>

	<span class="n">EnableWindow</span> <span class="p">(</span><span class="n">hButton</span><span class="p">,</span> <span class="n">bEnable</span><span class="p">);</span>
<span class="p">}</span>


<span class="n">BOOL</span> <span class="nf">CheckPasswordCharEncoding</span> <span class="p">(</span><span class="n">HWND</span> <span class="n">hPassword</span><span class="p">,</span> <span class="n">Password</span> <span class="o">*</span><span class="n">ptrPw</span><span class="p">)</span>
<span class="p">{</span>
	<span class="kt">int</span> <span class="n">i</span><span class="p">,</span> <span class="n">len</span><span class="p">;</span>
	
	<span class="k">if</span> <span class="p">(</span><span class="n">hPassword</span> <span class="o">==</span> <span class="nb">NULL</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">ptrPw</span><span class="p">)</span>
		<span class="p">{</span>
			<span class="kt">unsigned</span> <span class="kt">char</span> <span class="o">*</span><span class="n">pw</span><span class="p">;</span>
			<span class="n">len</span> <span class="o">=</span> <span class="n">ptrPw</span><span class="o">-&gt;</span><span class="n">Length</span><span class="p">;</span>
			<span class="n">pw</span> <span class="o">=</span> <span class="p">(</span><span class="kt">unsigned</span> <span class="kt">char</span> <span class="o">*</span><span class="p">)</span> <span class="n">ptrPw</span><span class="o">-&gt;</span><span class="n">Text</span><span class="p">;</span>

			<span class="k">for</span> <span class="p">(</span><span class="n">i</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="n">len</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span><span class="p">)</span>
			<span class="p">{</span>
				<span class="k">if</span> <span class="p">(</span><span class="n">pw</span><span class="p">[</span><span class="n">i</span><span class="p">]</span> <span class="o">&gt;=</span> <span class="mh">0x7f</span> <span class="o">||</span> <span class="n">pw</span><span class="p">[</span><span class="n">i</span><span class="p">]</span> <span class="o">&lt;</span> <span class="mh">0x20</span><span class="p">)</span>	<span class="c1">// A non-ASCII or non-printable character?</span>
					<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span>
			<span class="p">}</span>
		<span class="p">}</span>
		<span class="k">else</span>
			<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="p">}</span>
	<span class="k">else</span>
	<span class="p">{</span>
		<span class="kt">wchar_t</span> <span class="n">s</span><span class="p">[</span><span class="n">MAX_PASSWORD</span> <span class="o">+</span> <span class="mi">1</span><span class="p">];</span>
		<span class="n">len</span> <span class="o">=</span> <span class="n">GetWindowTextLength</span> <span class="p">(</span><span class="n">hPassword</span><span class="p">);</span>

		<span class="k">if</span> <span class="p">(</span><span class="n">len</span> <span class="o">&gt;</span> <span class="n">MAX_PASSWORD</span><span class="p">)</span>
			<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span> 

		<span class="n">GetWindowTextW</span> <span class="p">(</span><span class="n">hPassword</span><span class="p">,</span> <span class="n">s</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">s</span><span class="p">)</span> <span class="o">/</span> <span class="k">sizeof</span> <span class="p">(</span><span class="kt">wchar_t</span><span class="p">));</span>

		<span class="k">for</span> <span class="p">(</span><span class="n">i</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="n">len</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span><span class="p">)</span>
		<span class="p">{</span>
			<span class="k">if</span> <span class="p">(</span><span class="n">s</span><span class="p">[</span><span class="n">i</span><span class="p">]</span> <span class="o">&gt;=</span> <span class="mh">0x7f</span> <span class="o">||</span> <span class="n">s</span><span class="p">[</span><span class="n">i</span><span class="p">]</span> <span class="o">&lt;</span> <span class="mh">0x20</span><span class="p">)</span>	<span class="c1">// A non-ASCII or non-printable character?</span>
				<span class="k">break</span><span class="p">;</span>
		<span class="p">}</span>

		<span class="n">burn</span> <span class="p">(</span><span class="n">s</span><span class="p">,</span> <span class="k">sizeof</span><span class="p">(</span><span class="n">s</span><span class="p">));</span>

		<span class="k">if</span> <span class="p">(</span><span class="n">i</span> <span class="o">&lt;</span> <span class="n">len</span><span class="p">)</span>
			<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span> 
	<span class="p">}</span>

	<span class="k">return</span> <span class="n">TRUE</span><span class="p">;</span>
<span class="p">}</span>


<span class="n">BOOL</span> <span class="nf">CheckPasswordLength</span> <span class="p">(</span><span class="n">HWND</span> <span class="n">hwndDlg</span><span class="p">,</span> <span class="kt">unsigned</span> <span class="kr">__int32</span> <span class="n">passwordLength</span><span class="p">,</span> <span class="kt">int</span> <span class="n">pim</span><span class="p">,</span> <span class="n">BOOL</span> <span class="n">bForBoot</span><span class="p">,</span> <span class="n">BOOL</span> <span class="n">bSkipPasswordWarning</span><span class="p">,</span> <span class="n">BOOL</span> <span class="n">bSkipPimWarning</span><span class="p">)</span>
<span class="p">{</span>
	<span class="n">BOOL</span> <span class="n">bCustomPimSmall</span> <span class="o">=</span> <span class="p">((</span><span class="n">pim</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="n">pim</span> <span class="o">&lt;</span> <span class="p">(</span><span class="n">bForBoot</span><span class="o">?</span> <span class="mi">98</span> <span class="o">:</span> <span class="mi">485</span><span class="p">)))</span><span class="o">?</span> <span class="nl">TRUE</span> <span class="p">:</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="k">if</span> <span class="p">(</span><span class="n">passwordLength</span> <span class="o">&lt;</span> <span class="n">PASSWORD_LEN_WARNING</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">bCustomPimSmall</span><span class="p">)</span>
		<span class="p">{</span>
			<span class="n">Error</span> <span class="p">(</span><span class="n">bForBoot</span><span class="o">?</span> <span class="s">&quot;BOOT_PIM_REQUIRE_LONG_PASSWORD&quot;</span><span class="o">:</span> <span class="s">&quot;PIM_REQUIRE_LONG_PASSWORD&quot;</span><span class="p">,</span> <span class="n">hwndDlg</span><span class="p">);</span>
			<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span>						
		<span class="p">}</span>

<span class="cp">#ifndef _DEBUG</span>
		<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">bSkipPasswordWarning</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="n">MessageBoxW</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">,</span> <span class="n">GetString</span> <span class="p">(</span><span class="s">&quot;PASSWORD_LENGTH_WARNING&quot;</span><span class="p">),</span> <span class="n">lpszTitle</span><span class="p">,</span> <span class="n">MB_YESNO</span><span class="o">|</span><span class="n">MB_ICONWARNING</span><span class="o">|</span><span class="n">MB_DEFBUTTON2</span><span class="p">)</span> <span class="o">!=</span> <span class="n">IDYES</span><span class="p">))</span>
			<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span>
<span class="cp">#endif</span>
	<span class="p">}</span>
<span class="cp">#ifndef _DEBUG</span>
	<span class="k">else</span> <span class="k">if</span> <span class="p">(</span><span class="n">bCustomPimSmall</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">bSkipPimWarning</span> <span class="o">&amp;&amp;</span> <span class="n">AskWarnNoYes</span> <span class="p">(</span><span class="s">&quot;PIM_SMALL_WARNING&quot;</span><span class="p">,</span> <span class="n">hwndDlg</span><span class="p">)</span> <span class="o">!=</span> <span class="n">IDYES</span><span class="p">)</span>
			<span class="k">return</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="p">}</span>
<span class="cp">#endif</span>

	<span class="k">if</span> <span class="p">((</span><span class="n">pim</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="n">pim</span> <span class="o">&gt;</span> <span class="p">(</span><span class="n">bForBoot</span><span class="o">?</span> <span class="mi">98</span> <span class="o">:</span> <span class="mi">485</span><span class="p">)))</span>
	<span class="p">{</span>
		<span class="c1">// warn that mount/boot will take more time</span>
		<span class="n">Warning</span> <span class="p">(</span><span class="s">&quot;PIM_LARGE_WARNING&quot;</span><span class="p">,</span> <span class="n">hwndDlg</span><span class="p">);</span>

	<span class="p">}</span>
	<span class="k">return</span> <span class="n">TRUE</span><span class="p">;</span>
<span class="p">}</span>

<span class="kt">int</span> <span class="nf">ChangePwd</span> <span class="p">(</span><span class="k">const</span> <span class="kt">wchar_t</span> <span class="o">*</span><span class="n">lpszVolume</span><span class="p">,</span> <span class="n">Password</span> <span class="o">*</span><span class="n">oldPassword</span><span class="p">,</span> <span class="kt">int</span> <span class="n">old_pkcs5</span><span class="p">,</span> <span class="kt">int</span> <span class="n">old_pim</span><span class="p">,</span> <span class="n">BOOL</span> <span class="n">truecryptMode</span><span class="p">,</span> <span class="n">Password</span> <span class="o">*</span><span class="n">newPassword</span><span class="p">,</span> <span class="kt">int</span> <span class="n">pkcs5</span><span class="p">,</span> <span class="kt">int</span> <span class="n">pim</span><span class="p">,</span> <span class="kt">int</span> <span class="n">wipePassCount</span><span class="p">,</span> <span class="n">HWND</span> <span class="n">hwndDlg</span><span class="p">)</span>
<span class="p">{</span>
	<span class="kt">int</span> <span class="n">nDosLinkCreated</span> <span class="o">=</span> <span class="mi">1</span><span class="p">,</span> <span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_OS_ERROR</span><span class="p">;</span>
	<span class="kt">wchar_t</span> <span class="n">szDiskFile</span><span class="p">[</span><span class="n">TC_MAX_PATH</span><span class="p">],</span> <span class="n">szCFDevice</span><span class="p">[</span><span class="n">TC_MAX_PATH</span><span class="p">];</span>
	<span class="kt">wchar_t</span> <span class="n">szDosDevice</span><span class="p">[</span><span class="n">TC_MAX_PATH</span><span class="p">];</span>
	<span class="kt">char</span> <span class="n">buffer</span><span class="p">[</span><span class="n">TC_VOLUME_HEADER_EFFECTIVE_SIZE</span><span class="p">];</span>
	<span class="n">PCRYPTO_INFO</span> <span class="n">cryptoInfo</span> <span class="o">=</span> <span class="nb">NULL</span><span class="p">,</span> <span class="n">ci</span> <span class="o">=</span> <span class="nb">NULL</span><span class="p">;</span>
	<span class="kt">void</span> <span class="o">*</span><span class="n">dev</span> <span class="o">=</span> <span class="n">INVALID_HANDLE_VALUE</span><span class="p">;</span>
	<span class="n">DWORD</span> <span class="n">dwError</span><span class="p">;</span>
	<span class="n">DWORD</span> <span class="n">bytesRead</span><span class="p">;</span>
	<span class="n">BOOL</span> <span class="n">bDevice</span><span class="p">;</span>
	<span class="kt">unsigned</span> <span class="kr">__int64</span> <span class="n">hostSize</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span>
	<span class="kt">int</span> <span class="n">volumeType</span><span class="p">;</span>
	<span class="kt">int</span> <span class="n">wipePass</span><span class="p">;</span>
	<span class="n">FILETIME</span> <span class="n">ftCreationTime</span><span class="p">;</span>
	<span class="n">FILETIME</span> <span class="n">ftLastWriteTime</span><span class="p">;</span>
	<span class="n">FILETIME</span> <span class="n">ftLastAccessTime</span><span class="p">;</span>
	<span class="n">BOOL</span> <span class="n">bTimeStampValid</span> <span class="o">=</span> <span class="n">FALSE</span><span class="p">;</span>
	<span class="n">LARGE_INTEGER</span> <span class="n">headerOffset</span><span class="p">;</span>
	<span class="n">BOOL</span> <span class="n">backupHeader</span><span class="p">;</span>
	<span class="n">DISK_GEOMETRY</span> <span class="n">driveInfo</span><span class="p">;</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">oldPassword</span><span class="o">-&gt;</span><span class="n">Length</span> <span class="o">==</span> <span class="mi">0</span> <span class="o">||</span> <span class="n">newPassword</span><span class="o">-&gt;</span><span class="n">Length</span> <span class="o">==</span> <span class="mi">0</span><span class="p">)</span> <span class="k">return</span> <span class="o">-</span><span class="mi">1</span><span class="p">;</span>

	<span class="k">if</span> <span class="p">((</span><span class="n">wipePassCount</span> <span class="o">&lt;=</span> <span class="mi">0</span><span class="p">)</span> <span class="o">||</span> <span class="p">(</span><span class="n">truecryptMode</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="n">old_pkcs5</span> <span class="o">==</span> <span class="n">SHA256</span><span class="p">)))</span>
	<span class="p">{</span>
      <span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_PARAMETER_INCORRECT</span><span class="p">;</span>
      <span class="n">handleError</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">,</span> <span class="n">nStatus</span><span class="p">,</span> <span class="n">SRC_POS</span><span class="p">);</span>
      <span class="k">return</span> <span class="n">nStatus</span><span class="p">;</span>
	<span class="p">}</span>

   <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">lpszVolume</span><span class="p">)</span>
   <span class="p">{</span>
      <span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_OUTOFMEMORY</span><span class="p">;</span>
      <span class="n">handleError</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">,</span> <span class="n">nStatus</span><span class="p">,</span> <span class="n">SRC_POS</span><span class="p">);</span>
      <span class="k">return</span> <span class="n">nStatus</span><span class="p">;</span>
   <span class="p">}</span>

	<span class="n">WaitCursor</span> <span class="p">();</span>

	<span class="n">CreateFullVolumePath</span> <span class="p">(</span><span class="n">szDiskFile</span><span class="p">,</span> <span class="k">sizeof</span><span class="p">(</span><span class="n">szDiskFile</span><span class="p">),</span> <span class="n">lpszVolume</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">bDevice</span><span class="p">);</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">bDevice</span> <span class="o">==</span> <span class="n">FALSE</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="n">wcscpy</span> <span class="p">(</span><span class="n">szCFDevice</span><span class="p">,</span> <span class="n">szDiskFile</span><span class="p">);</span>
	<span class="p">}</span>
	<span class="k">else</span>
	<span class="p">{</span>
		<span class="n">nDosLinkCreated</span> <span class="o">=</span> <span class="n">FakeDosNameForDevice</span> <span class="p">(</span><span class="n">szDiskFile</span><span class="p">,</span> <span class="n">szDosDevice</span><span class="p">,</span> <span class="k">sizeof</span><span class="p">(</span><span class="n">szDosDevice</span><span class="p">),</span> <span class="n">szCFDevice</span><span class="p">,</span> <span class="k">sizeof</span><span class="p">(</span><span class="n">szCFDevice</span><span class="p">),</span><span class="n">FALSE</span><span class="p">);</span>
		
		<span class="k">if</span> <span class="p">(</span><span class="n">nDosLinkCreated</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span>
			<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="n">dev</span> <span class="o">=</span> <span class="n">CreateFile</span> <span class="p">(</span><span class="n">szCFDevice</span><span class="p">,</span> <span class="n">GENERIC_READ</span> <span class="o">|</span> <span class="n">GENERIC_WRITE</span><span class="p">,</span> <span class="n">FILE_SHARE_READ</span> <span class="o">|</span> <span class="n">FILE_SHARE_WRITE</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">,</span> <span class="n">OPEN_EXISTING</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">dev</span> <span class="o">==</span> <span class="n">INVALID_HANDLE_VALUE</span><span class="p">)</span> 
		<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">bDevice</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="cm">/* This is necessary to determine the hidden volume header offset */</span>

		<span class="k">if</span> <span class="p">(</span><span class="n">dev</span> <span class="o">==</span> <span class="n">INVALID_HANDLE_VALUE</span><span class="p">)</span>
		<span class="p">{</span>
			<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
		<span class="p">}</span>
		<span class="k">else</span>
		<span class="p">{</span>
			<span class="n">PARTITION_INFORMATION</span> <span class="n">diskInfo</span><span class="p">;</span>
			<span class="n">DWORD</span> <span class="n">dwResult</span><span class="p">;</span>
			<span class="n">BOOL</span> <span class="n">bResult</span><span class="p">;</span>

			<span class="n">bResult</span> <span class="o">=</span> <span class="n">DeviceIoControl</span> <span class="p">(</span><span class="n">dev</span><span class="p">,</span> <span class="n">IOCTL_DISK_GET_DRIVE_GEOMETRY</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span>
				<span class="o">&amp;</span><span class="n">driveInfo</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">driveInfo</span><span class="p">),</span> <span class="o">&amp;</span><span class="n">dwResult</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>

			<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">bResult</span><span class="p">)</span>
				<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>

			<span class="n">bResult</span> <span class="o">=</span> <span class="n">GetPartitionInfo</span> <span class="p">(</span><span class="n">lpszVolume</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">diskInfo</span><span class="p">);</span>

			<span class="k">if</span> <span class="p">(</span><span class="n">bResult</span><span class="p">)</span>
			<span class="p">{</span>
				<span class="n">hostSize</span> <span class="o">=</span> <span class="n">diskInfo</span><span class="p">.</span><span class="n">PartitionLength</span><span class="p">.</span><span class="n">QuadPart</span><span class="p">;</span>
			<span class="p">}</span>
			<span class="k">else</span>
			<span class="p">{</span>
				<span class="n">hostSize</span> <span class="o">=</span> <span class="n">driveInfo</span><span class="p">.</span><span class="n">Cylinders</span><span class="p">.</span><span class="n">QuadPart</span> <span class="o">*</span> <span class="n">driveInfo</span><span class="p">.</span><span class="n">BytesPerSector</span> <span class="o">*</span>
					<span class="n">driveInfo</span><span class="p">.</span><span class="n">SectorsPerTrack</span> <span class="o">*</span> <span class="n">driveInfo</span><span class="p">.</span><span class="n">TracksPerCylinder</span><span class="p">;</span>
			<span class="p">}</span>

			<span class="k">if</span> <span class="p">(</span><span class="n">hostSize</span> <span class="o">==</span> <span class="mi">0</span><span class="p">)</span>
			<span class="p">{</span>
				<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_VOL_SIZE_WRONG</span><span class="p">;</span>
				<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
			<span class="p">}</span>
		<span class="p">}</span>
	<span class="p">}</span>
	<span class="k">else</span>
	<span class="p">{</span>
		<span class="n">LARGE_INTEGER</span> <span class="n">fileSize</span><span class="p">;</span>
		<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">GetFileSizeEx</span> <span class="p">(</span><span class="n">dev</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">fileSize</span><span class="p">))</span>
		<span class="p">{</span>
			<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_OS_ERROR</span><span class="p">;</span>
			<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
		<span class="p">}</span>

		<span class="n">hostSize</span> <span class="o">=</span> <span class="n">fileSize</span><span class="p">.</span><span class="n">QuadPart</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">Randinit</span> <span class="p">())</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">CryptoAPILastError</span> <span class="o">==</span> <span class="n">ERROR_SUCCESS</span><span class="p">)</span>
			<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_RAND_INIT_FAILED</span><span class="p">;</span>
		<span class="k">else</span>
			<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_CAPI_INIT_FAILED</span><span class="p">;</span>
		<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="n">SetRandomPoolEnrichedByUserStatus</span> <span class="p">(</span><span class="n">FALSE</span><span class="p">);</span> <span class="cm">/* force the display of the random enriching dialog */</span>

	<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">bDevice</span> <span class="o">&amp;&amp;</span> <span class="n">bPreserveTimestamp</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">GetFileTime</span> <span class="p">((</span><span class="n">HANDLE</span><span class="p">)</span> <span class="n">dev</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">ftCreationTime</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">ftLastAccessTime</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">ftLastWriteTime</span><span class="p">)</span> <span class="o">==</span> <span class="mi">0</span><span class="p">)</span>
			<span class="n">bTimeStampValid</span> <span class="o">=</span> <span class="n">FALSE</span><span class="p">;</span>
		<span class="k">else</span>
			<span class="n">bTimeStampValid</span> <span class="o">=</span> <span class="n">TRUE</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="k">for</span> <span class="p">(</span><span class="n">volumeType</span> <span class="o">=</span> <span class="n">TC_VOLUME_TYPE_NORMAL</span><span class="p">;</span> <span class="n">volumeType</span> <span class="o">&lt;</span> <span class="n">TC_VOLUME_TYPE_COUNT</span><span class="p">;</span> <span class="n">volumeType</span><span class="o">++</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="c1">// Seek the volume header</span>
		<span class="k">switch</span> <span class="p">(</span><span class="n">volumeType</span><span class="p">)</span>
		<span class="p">{</span>
		<span class="k">case</span> <span class="nl">TC_VOLUME_TYPE_NORMAL</span><span class="p">:</span>
			<span class="n">headerOffset</span><span class="p">.</span><span class="n">QuadPart</span> <span class="o">=</span> <span class="n">TC_VOLUME_HEADER_OFFSET</span><span class="p">;</span>
			<span class="k">break</span><span class="p">;</span>

		<span class="k">case</span> <span class="nl">TC_VOLUME_TYPE_HIDDEN</span><span class="p">:</span>
			<span class="k">if</span> <span class="p">(</span><span class="n">TC_HIDDEN_VOLUME_HEADER_OFFSET</span> <span class="o">+</span> <span class="n">TC_VOLUME_HEADER_SIZE</span> <span class="o">&gt;</span> <span class="n">hostSize</span><span class="p">)</span>
				<span class="k">continue</span><span class="p">;</span>

			<span class="n">headerOffset</span><span class="p">.</span><span class="n">QuadPart</span> <span class="o">=</span> <span class="n">TC_HIDDEN_VOLUME_HEADER_OFFSET</span><span class="p">;</span>
			<span class="k">break</span><span class="p">;</span>

		<span class="p">}</span>

		<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">SetFilePointerEx</span> <span class="p">((</span><span class="n">HANDLE</span><span class="p">)</span> <span class="n">dev</span><span class="p">,</span> <span class="n">headerOffset</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">,</span> <span class="n">FILE_BEGIN</span><span class="p">))</span>
		<span class="p">{</span>
			<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_OS_ERROR</span><span class="p">;</span>
			<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
		<span class="p">}</span>

		<span class="cm">/* Read in volume header */</span>
		<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">ReadEffectiveVolumeHeader</span> <span class="p">(</span><span class="n">bDevice</span><span class="p">,</span> <span class="n">dev</span><span class="p">,</span> <span class="n">buffer</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">bytesRead</span><span class="p">))</span>
		<span class="p">{</span>
			<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_OS_ERROR</span><span class="p">;</span>
			<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
		<span class="p">}</span>

		<span class="k">if</span> <span class="p">(</span><span class="n">bytesRead</span> <span class="o">!=</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">buffer</span><span class="p">))</span>
		<span class="p">{</span>
			<span class="c1">// Windows may report EOF when reading sectors from the last cluster of a device formatted as NTFS </span>
			<span class="n">memset</span> <span class="p">(</span><span class="n">buffer</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">buffer</span><span class="p">));</span>
		<span class="p">}</span>

		<span class="cm">/* Try to decrypt the header */</span>

		<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ReadVolumeHeader</span> <span class="p">(</span><span class="n">FALSE</span><span class="p">,</span> <span class="n">buffer</span><span class="p">,</span> <span class="n">oldPassword</span><span class="p">,</span> <span class="n">old_pkcs5</span><span class="p">,</span> <span class="n">old_pim</span><span class="p">,</span> <span class="n">truecryptMode</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">cryptoInfo</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">);</span>
		<span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">==</span> <span class="n">ERR_CIPHER_INIT_WEAK_KEY</span><span class="p">)</span>
			<span class="n">nStatus</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span>	<span class="c1">// We can ignore this error here</span>

		<span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">==</span> <span class="n">ERR_PASSWORD_WRONG</span><span class="p">)</span>
		<span class="p">{</span>
			<span class="k">continue</span><span class="p">;</span>		<span class="c1">// Try next volume type</span>
		<span class="p">}</span>
		<span class="k">else</span> <span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span>
		<span class="p">{</span>
			<span class="n">cryptoInfo</span> <span class="o">=</span> <span class="nb">NULL</span><span class="p">;</span>
			<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
		<span class="p">}</span>
		<span class="k">else</span> 
			<span class="k">break</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="n">cryptoInfo</span> <span class="o">=</span> <span class="nb">NULL</span><span class="p">;</span>
		<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">HeaderFlags</span> <span class="o">&amp;</span> <span class="n">TC_HEADER_FLAG_ENCRYPTED_SYSTEM</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_SYS_HIDVOL_HEAD_REENC_MODE_WRONG</span><span class="p">;</span>
		<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="c1">// Change the PKCS-5 PRF if requested by user</span>
	<span class="k">if</span> <span class="p">(</span><span class="n">pkcs5</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span>
		<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">pkcs5</span> <span class="o">=</span> <span class="n">pkcs5</span><span class="p">;</span>

	<span class="n">RandSetHashFunction</span> <span class="p">(</span><span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">pkcs5</span><span class="p">);</span>

	<span class="n">NormalCursor</span><span class="p">();</span>
	<span class="n">UserEnrichRandomPool</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">);</span>
	<span class="n">EnableElevatedCursorChange</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">);</span>
	<span class="n">WaitCursor</span><span class="p">();</span>

	<span class="cm">/* Re-encrypt the volume header */</span> 
	<span class="n">backupHeader</span> <span class="o">=</span> <span class="n">FALSE</span><span class="p">;</span>

	<span class="k">while</span> <span class="p">(</span><span class="n">TRUE</span><span class="p">)</span>
	<span class="p">{</span>
		<span class="cm">/* The header will be re-encrypted wipePassCount times to prevent adversaries from using </span>
<span class="cm">		techniques such as magnetic force microscopy or magnetic force scanning tunnelling microscopy</span>
<span class="cm">		to recover the overwritten header. According to Peter Gutmann, data should be overwritten 22</span>
<span class="cm">		times (ideally, 35 times) using non-random patterns and pseudorandom data. However, as users might</span>
<span class="cm">		impatiently interupt the process (etc.) we will not use the Gutmann&#39;s patterns but will write the</span>
<span class="cm">		valid re-encrypted header, i.e. pseudorandom data, and there will be many more passes than Guttman</span>
<span class="cm">		recommends. During each pass we will write a valid working header. Each pass will use the same master</span>
<span class="cm">		key, and also the same header key, secondary key (XTS), etc., derived from the new password. The only</span>
<span class="cm">		item that will be different for each pass will be the salt. This is sufficient to cause each &quot;version&quot;</span>
<span class="cm">		of the header to differ substantially and in a random manner from the versions written during the</span>
<span class="cm">		other passes. */</span>

		<span class="k">for</span> <span class="p">(</span><span class="n">wipePass</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="n">wipePass</span> <span class="o">&lt;</span> <span class="n">wipePassCount</span><span class="p">;</span> <span class="n">wipePass</span><span class="o">++</span><span class="p">)</span>
		<span class="p">{</span>
			<span class="c1">// Prepare new volume header</span>
			<span class="n">nStatus</span> <span class="o">=</span> <span class="n">CreateVolumeHeaderInMemory</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">,</span> <span class="n">FALSE</span><span class="p">,</span>
				<span class="n">buffer</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">ea</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">mode</span><span class="p">,</span>
				<span class="n">newPassword</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">pkcs5</span><span class="p">,</span>
				<span class="n">pim</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">master_keydata</span><span class="p">,</span>
				<span class="o">&amp;</span><span class="n">ci</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">VolumeSize</span><span class="p">.</span><span class="n">Value</span><span class="p">,</span>
				<span class="p">(</span><span class="n">volumeType</span> <span class="o">==</span> <span class="n">TC_VOLUME_TYPE_HIDDEN</span><span class="p">)</span> <span class="o">?</span> <span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="nl">hiddenVolumeSize</span> <span class="p">:</span> <span class="mi">0</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">EncryptedAreaStart</span><span class="p">.</span><span class="n">Value</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">EncryptedAreaLength</span><span class="p">.</span><span class="n">Value</span><span class="p">,</span>
				<span class="n">truecryptMode</span><span class="o">?</span> <span class="mi">0</span> <span class="o">:</span> <span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">RequiredProgramVersion</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">HeaderFlags</span><span class="p">,</span>
				<span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">SectorSize</span><span class="p">,</span>
				<span class="n">wipePass</span> <span class="o">&lt;</span> <span class="n">wipePassCount</span> <span class="o">-</span> <span class="mi">1</span><span class="p">);</span>

			<span class="k">if</span> <span class="p">(</span><span class="n">ci</span> <span class="o">!=</span> <span class="nb">NULL</span><span class="p">)</span>
				<span class="n">crypto_close</span> <span class="p">(</span><span class="n">ci</span><span class="p">);</span>

			<span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span>
				<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>

			<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">SetFilePointerEx</span> <span class="p">((</span><span class="n">HANDLE</span><span class="p">)</span> <span class="n">dev</span><span class="p">,</span> <span class="n">headerOffset</span><span class="p">,</span> <span class="nb">NULL</span><span class="p">,</span> <span class="n">FILE_BEGIN</span><span class="p">))</span>
			<span class="p">{</span>
				<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_OS_ERROR</span><span class="p">;</span>
				<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
			<span class="p">}</span>

			<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="n">WriteEffectiveVolumeHeader</span> <span class="p">(</span><span class="n">bDevice</span><span class="p">,</span> <span class="n">dev</span><span class="p">,</span> <span class="n">buffer</span><span class="p">))</span>
			<span class="p">{</span>
				<span class="n">nStatus</span> <span class="o">=</span> <span class="n">ERR_OS_ERROR</span><span class="p">;</span>
				<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
			<span class="p">}</span>

			<span class="k">if</span> <span class="p">(</span><span class="n">bDevice</span>
				<span class="o">&amp;&amp;</span> <span class="o">!</span><span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">LegacyVolume</span>
				<span class="o">&amp;&amp;</span> <span class="o">!</span><span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">hiddenVolume</span>
				<span class="o">&amp;&amp;</span> <span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">HeaderVersion</span> <span class="o">==</span> <span class="mi">4</span>
				<span class="o">&amp;&amp;</span> <span class="p">(</span><span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">HeaderFlags</span> <span class="o">&amp;</span> <span class="n">TC_HEADER_FLAG_NONSYS_INPLACE_ENC</span><span class="p">)</span> <span class="o">!=</span> <span class="mi">0</span>
				<span class="o">&amp;&amp;</span> <span class="p">(</span><span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">HeaderFlags</span> <span class="o">&amp;</span> <span class="o">~</span><span class="n">TC_HEADER_FLAG_NONSYS_INPLACE_ENC</span><span class="p">)</span> <span class="o">==</span> <span class="mi">0</span><span class="p">)</span>
			<span class="p">{</span>
				<span class="n">nStatus</span> <span class="o">=</span> <span class="n">WriteRandomDataToReservedHeaderAreas</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">,</span> <span class="n">dev</span><span class="p">,</span> <span class="n">cryptoInfo</span><span class="p">,</span> <span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">VolumeSize</span><span class="p">.</span><span class="n">Value</span><span class="p">,</span> <span class="o">!</span><span class="n">backupHeader</span><span class="p">,</span> <span class="n">backupHeader</span><span class="p">);</span>
				<span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">!=</span> <span class="n">ERR_SUCCESS</span><span class="p">)</span>
					<span class="k">goto</span> <span class="n">error</span><span class="p">;</span>
			<span class="p">}</span>

			<span class="n">FlushFileBuffers</span> <span class="p">(</span><span class="n">dev</span><span class="p">);</span>
		<span class="p">}</span>

		<span class="k">if</span> <span class="p">(</span><span class="n">backupHeader</span> <span class="o">||</span> <span class="n">cryptoInfo</span><span class="o">-&gt;</span><span class="n">LegacyVolume</span><span class="p">)</span>
			<span class="k">break</span><span class="p">;</span>
			
		<span class="n">backupHeader</span> <span class="o">=</span> <span class="n">TRUE</span><span class="p">;</span>
		<span class="n">headerOffset</span><span class="p">.</span><span class="n">QuadPart</span> <span class="o">+=</span> <span class="n">hostSize</span> <span class="o">-</span> <span class="n">TC_VOLUME_HEADER_GROUP_SIZE</span><span class="p">;</span>
	<span class="p">}</span>

	<span class="cm">/* Password successfully changed */</span>
	<span class="n">nStatus</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span>

<span class="nl">error</span><span class="p">:</span>
	<span class="n">dwError</span> <span class="o">=</span> <span class="n">GetLastError</span> <span class="p">();</span>

	<span class="n">burn</span> <span class="p">(</span><span class="n">buffer</span><span class="p">,</span> <span class="k">sizeof</span> <span class="p">(</span><span class="n">buffer</span><span class="p">));</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">cryptoInfo</span> <span class="o">!=</span> <span class="nb">NULL</span><span class="p">)</span>
		<span class="n">crypto_close</span> <span class="p">(</span><span class="n">cryptoInfo</span><span class="p">);</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">bTimeStampValid</span><span class="p">)</span>
		<span class="n">SetFileTime</span> <span class="p">(</span><span class="n">dev</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">ftCreationTime</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">ftLastAccessTime</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">ftLastWriteTime</span><span class="p">);</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">dev</span> <span class="o">!=</span> <span class="n">INVALID_HANDLE_VALUE</span><span class="p">)</span>
		<span class="n">CloseHandle</span> <span class="p">((</span><span class="n">HANDLE</span><span class="p">)</span> <span class="n">dev</span><span class="p">);</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">nDosLinkCreated</span> <span class="o">==</span> <span class="mi">0</span><span class="p">)</span>
		<span class="n">RemoveFakeDosName</span> <span class="p">(</span><span class="n">szDiskFile</span><span class="p">,</span> <span class="n">szDosDevice</span><span class="p">);</span>

	<span class="n">RandStop</span> <span class="p">(</span><span class="n">FALSE</span><span class="p">);</span>
	<span class="n">NormalCursor</span> <span class="p">();</span>

	<span class="n">SetLastError</span> <span class="p">(</span><span class="n">dwError</span><span class="p">);</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">==</span> <span class="n">ERR_OS_ERROR</span> <span class="o">&amp;&amp;</span> <span class="n">dwError</span> <span class="o">==</span> <span class="n">ERROR_ACCESS_DENIED</span>
		<span class="o">&amp;&amp;</span> <span class="n">bDevice</span>
		<span class="o">&amp;&amp;</span> <span class="o">!</span><span class="n">UacElevated</span>
		<span class="o">&amp;&amp;</span> <span class="n">IsUacSupported</span> <span class="p">())</span>
		<span class="k">return</span> <span class="n">nStatus</span><span class="p">;</span>

	<span class="k">if</span> <span class="p">(</span><span class="n">nStatus</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">)</span>
		<span class="n">handleError</span> <span class="p">(</span><span class="n">hwndDlg</span><span class="p">,</span> <span class="n">nStatus</span><span class="p">,</span> <span class="n">SRC_POS</span><span class="p">);</span>

	<span class="k">return</span> <span class="n">nStatus</span><span class="p">;</span>
<span class="p">}</span>
</pre></div>
</code></pre></td></tr></table>
</div> <!-- class=content -->
</div> <!-- id=cgit -->
</body></html>