dohertj2/mxaccess
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
34d477819bf29586acccb40248202d149eb2e97c
mxaccess/src/MxAsbClient/AsbRegistry.cs
T
Joseph Doherty fe2a6db786
rust / build / test / clippy / fmt (push) Has been cancelled
Details
Initial project state: .NET reference, design, Rust port (M0+M1), evidence 
Layout:
- src/                    .NET 10 x64 reference: MxNativeCodec, MxNativeClient,
                          MxAsbClient, probes, tests, harnesses. Executable spec.
- design/                 Architectural plan for the Rust port (M0–M6), error
                          model, protocol invariants, risks (R1–R16), adversarial
                          review log (review.md).
- rust/                   Rust workspace. M0 skeleton + M1 codec parity.
                          mxaccess-codec: 215 unit tests + 2 cross-implementation
                          parity tests (byte-identical against .NET reference).
                          Other crates are M0 stubs awaiting M2+.
- captures/               Frida + netsh + pcap evidence per CLAUDE.md
                          ("captures are evidence, not throwaway logs").
- analysis/               Decompiled C# (frida/proxy/decompiled-*),
                          Ghidra exports for native DLLs (`exports/` only —
                          working state at `projects/` and AVEVA's input
                          binaries at `input/` are gitignored).
- docs/                   Reverse-engineering reference docs.
- tools/                  Setup-LiveProbeEnv.ps1 (Infisical credential fetcher),
                          Compute-Crc.ps1 (.NET parity helper).
- .github/workflows/      Rust CI: fmt + build + test + clippy on Windows.
- LICENSE                 MIT (Joseph Doherty, 2026).

Verified:
- cargo test --workspace → 217 passed (215 unit + 2 .NET parity), 0 failed
- cargo clippy --workspace -- -D warnings → clean
- cargo fmt --all -- --check → clean
- cargo publish --dry-run -p mxaccess-codec → packages cleanly

Excluded from history (see .gitignore):
- **/bin, **/obj, **/target — build artifacts
- analysis/ghidra/projects/ — Ghidra working state (regenerable)
- analysis/ghidra/input/ — AVEVA proprietary DLLs (vendor IP)

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-05 06:21:00 -04:00

68 lines
3.2 KiB
C#
Raw Blame History

using System.Security.Cryptography;
using System.Text;
using Microsoft.Win32;
using System.Numerics;
namespace MxAsbClient;
internal static class AsbRegistry
{
private const string Entropy = "wonderware";
private static string RegistryPath => Environment.Is64BitProcess
? @"SOFTWARE\Wow6432Node\ArchestrA\ArchestrAServices"
: @"SOFTWARE\ArchestrA\ArchestrAServices";
public static string GetDefaultSolutionName()
{
return Registry.GetValue($@"HKEY_LOCAL_MACHINE\{RegistryPath}", "DefaultASBSolution", string.Empty)?.ToString() ?? string.Empty;
}
public static string GetSolutionPassphrase(string? solutionName, Action<string>? trace = null)
{
trace?.Invoke("asb.stage=registry-solution");
string effectiveSolution = string.IsNullOrWhiteSpace(solutionName) ? GetDefaultSolutionName() : solutionName!;
if (string.IsNullOrWhiteSpace(effectiveSolution))
{
throw new InvalidOperationException("ASB default solution name was not found in the registry.");
}
trace?.Invoke("asb.stage=registry-open-solution");
using RegistryKey? key = Registry.LocalMachine.OpenSubKey($@"{RegistryPath}\{effectiveSolution}", writable: false);
if (key?.GetValue("sharedsecret") is not byte[] protectedBytes)
{
throw new InvalidOperationException($"ASB sharedsecret was not found for solution '{effectiveSolution}'.");
}
trace?.Invoke("asb.stage=registry-unprotect");
byte[] clear = ProtectedData.Unprotect(protectedBytes, Encoding.Unicode.GetBytes(Entropy), DataProtectionScope.LocalMachine);
trace?.Invoke("asb.stage=registry-passphrase-ready");
return Encoding.Unicode.GetString(clear);
}
public static AsbSolutionCryptoParameters GetCryptoParameters(string? solutionName)
{
string effectiveSolution = string.IsNullOrWhiteSpace(solutionName) ? GetDefaultSolutionName() : solutionName!;
using RegistryKey? key = Registry.LocalMachine.OpenSubKey($@"{RegistryPath}\{effectiveSolution}", writable: false);
if (key is null)
{
throw new InvalidOperationException($"ASB solution registry key was not found for '{effectiveSolution}'.");
}
string primeText = key.GetValue("Prime")?.ToString() ?? AsbSolutionCryptoParameters.DefaultPrimeText;
string generatorText = key.GetValue("Generator")?.ToString() ?? "22";
string hashAlgorithm = key.GetValue("HashAlgorthim")?.ToString() ?? "MD5";
int keySize = int.TryParse(key.GetValue("keySize")?.ToString(), out int parsedKeySize) ? parsedKeySize : 256;
return new AsbSolutionCryptoParameters(
BigInteger.Parse(primeText),
BigInteger.Parse(generatorText),
hashAlgorithm,
keySize);
}
}
internal sealed record AsbSolutionCryptoParameters(BigInteger Prime, BigInteger Generator, string HashAlgorithm, int KeySize)
{
public const string DefaultPrimeText = "179769313486231590770839156793787453197860296048756011706444423684197180216158519368947833795864925541502180565485980503646440548199239100050792877003355816639229553136239076508735759914822574862575007425302077447712589550957937778424442426617334727629299387668709205606050270810842907692932019128194";
}
Reference in New Issue View Git Blame Copy Permalink