2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
Unix SMB / CIFS implementation .
Winbind status program .
Copyright ( C ) Tim Potter 2000 - 2003
Copyright ( C ) Andrew Bartlett < abartlet @ samba . org > 2003 - 2004
2024-10-17 16:12:02 +03:00
Copyright ( C ) Francesco Chemolli < kinkie @ kame . usr . dsi . unimi . it > 2000
2004-04-12 18:19:48 +04:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-09 23:25:36 +04:00
the Free Software Foundation ; either version 3 of the License , or
2004-04-12 18:19:48 +04:00
( at your option ) any later version .
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
You should have received a copy of the GNU General Public License
2007-07-10 04:52:41 +04:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2004-04-12 18:19:48 +04:00
*/
# include "includes.h"
2004-10-07 08:01:18 +04:00
# include "utils/ntlm_auth.h"
2009-03-16 13:27:58 +03:00
# include "../libcli/auth/libcli_auth.h"
2010-08-18 14:42:49 +04:00
# include "nsswitch/winbind_client.h"
2004-04-12 18:19:48 +04:00
# undef DBGC_CLASS
# define DBGC_CLASS DBGC_WINBIND
enum ntlm_break {
BREAK_NONE ,
BREAK_LM ,
BREAK_NT ,
NO_LM ,
NO_NT
} ;
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
Authenticate a user with a challenge / response , checking session key
and valid authentication types
*/
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the normal ' LM and NTLM ' combination
*/
2022-02-17 07:50:43 +03:00
static bool test_lm_ntlm_broken ( enum ntlm_break break_which ,
bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2007-10-19 04:40:25 +04:00
bool pass = True ;
2004-04-12 18:19:48 +04:00
NTSTATUS nt_status ;
2015-05-07 03:00:06 +03:00
uint32_t flags = 0 ;
2004-04-12 18:19:48 +04:00
DATA_BLOB lm_response = data_blob ( NULL , 24 ) ;
DATA_BLOB nt_response = data_blob ( NULL , 24 ) ;
DATA_BLOB session_key = data_blob ( NULL , 16 ) ;
2021-10-26 18:42:41 +03:00
uint8_t authoritative = 1 ;
2004-04-12 18:19:48 +04:00
uchar lm_key [ 8 ] ;
uchar user_session_key [ 16 ] ;
uchar lm_hash [ 16 ] ;
uchar nt_hash [ 16 ] ;
DATA_BLOB chall = get_challenge ( ) ;
char * error_string ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
ZERO_STRUCT ( lm_key ) ;
ZERO_STRUCT ( user_session_key ) ;
flags | = WBFLAG_PAM_LMKEY ;
flags | = WBFLAG_PAM_USER_SESSION_KEY ;
SMBencrypt ( opt_password , chall . data , lm_response . data ) ;
2024-10-17 16:12:02 +03:00
E_deshash ( opt_password , lm_hash ) ;
2004-04-12 18:19:48 +04:00
SMBNTencrypt ( opt_password , chall . data , nt_response . data ) ;
E_md4hash ( opt_password , nt_hash ) ;
2009-03-16 13:27:58 +03:00
SMBsesskeygen_ntv1 ( nt_hash , session_key . data ) ;
2004-04-12 18:19:48 +04:00
switch ( break_which ) {
case BREAK_NONE :
break ;
case BREAK_LM :
lm_response . data [ 0 ] + + ;
break ;
case BREAK_NT :
nt_response . data [ 0 ] + + ;
break ;
case NO_LM :
data_blob_free ( & lm_response ) ;
break ;
case NO_NT :
data_blob_free ( & nt_response ) ;
break ;
}
2024-10-17 16:12:02 +03:00
nt_status = contact_winbind_auth_crap ( opt_username , opt_domain ,
2004-04-12 18:19:48 +04:00
opt_workstation ,
& chall ,
& lm_response ,
& nt_response ,
2012-02-19 03:56:12 +04:00
flags , 0 ,
2024-10-17 16:12:02 +03:00
lm_key ,
2004-04-12 18:19:48 +04:00
user_session_key ,
2017-03-17 13:49:40 +03:00
& authoritative ,
2004-04-12 18:19:48 +04:00
& error_string , NULL ) ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
data_blob_free ( & lm_response ) ;
2024-10-17 16:10:22 +03:00
data_blob_free ( & nt_response ) ;
2004-04-12 18:19:48 +04:00
if ( ! NT_STATUS_IS_OK ( nt_status ) ) {
2024-10-17 16:12:02 +03:00
d_printf ( " %s (0x%x) \n " ,
2004-04-12 18:19:48 +04:00
error_string ,
NT_STATUS_V ( nt_status ) ) ;
SAFE_FREE ( error_string ) ;
2024-10-17 16:10:22 +03:00
data_blob_free ( & session_key ) ;
2004-04-12 18:19:48 +04:00
return break_which = = BREAK_NT ;
}
2022-02-17 07:50:43 +03:00
/* If we are told the DC is Samba4, expect an LM key of zeros */
if ( ! lanman_support_expected ) {
if ( ! all_zero ( lm_key ,
sizeof ( lm_key ) ) ) {
DEBUG ( 1 , ( " LM Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " lm_key: \n " ) ) ;
dump_data ( 1 , lm_key , 8 ) ;
DEBUG ( 1 , ( " expected: all zeros \n " ) ) ;
pass = False ;
}
} else {
if ( memcmp ( lm_hash , lm_key ,
sizeof ( lm_key ) ) ! = 0 ) {
DEBUG ( 1 , ( " LM Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " lm_key: \n " ) ) ;
dump_data ( 1 , lm_key , 8 ) ;
DEBUG ( 1 , ( " expected: \n " ) ) ;
dump_data ( 1 , lm_hash , 8 ) ;
pass = False ;
}
2004-04-12 18:19:48 +04:00
}
if ( break_which = = NO_NT ) {
2024-10-17 16:12:02 +03:00
if ( memcmp ( lm_hash , user_session_key ,
2004-04-12 18:19:48 +04:00
8 ) ! = 0 ) {
DEBUG ( 1 , ( " NT Session Key does not match expectations (should be LM hash)! \n " ) ) ;
DEBUG ( 1 , ( " user_session_key: \n " ) ) ;
2007-03-28 17:34:59 +04:00
dump_data ( 1 , user_session_key , sizeof ( user_session_key ) ) ;
2004-04-12 18:19:48 +04:00
DEBUG ( 1 , ( " expected: \n " ) ) ;
2007-03-28 17:34:59 +04:00
dump_data ( 1 , lm_hash , sizeof ( lm_hash ) ) ;
2004-04-12 18:19:48 +04:00
pass = False ;
}
2024-10-17 16:12:02 +03:00
} else {
if ( memcmp ( session_key . data , user_session_key ,
2004-04-12 18:19:48 +04:00
sizeof ( user_session_key ) ) ! = 0 ) {
DEBUG ( 1 , ( " NT Session Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " user_session_key: \n " ) ) ;
2007-03-28 17:34:59 +04:00
dump_data ( 1 , user_session_key , 16 ) ;
2004-04-12 18:19:48 +04:00
DEBUG ( 1 , ( " expected: \n " ) ) ;
2007-03-28 17:34:59 +04:00
dump_data ( 1 , session_key . data , session_key . length ) ;
2004-04-12 18:19:48 +04:00
pass = False ;
}
}
2024-10-17 16:10:22 +03:00
data_blob_free ( & session_key ) ;
2004-04-12 18:19:48 +04:00
return pass ;
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test LM authentication , no NT response supplied
*/
2022-02-17 07:50:43 +03:00
static bool test_lm ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2022-02-17 07:50:43 +03:00
return test_lm_ntlm_broken ( NO_NT , lanman_support_expected ) ;
2004-04-12 18:19:48 +04:00
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the NTLM response only , no LM .
*/
2022-02-17 07:50:43 +03:00
static bool test_ntlm ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2022-02-17 07:50:43 +03:00
return test_lm_ntlm_broken ( NO_LM , lanman_support_expected ) ;
2004-04-12 18:19:48 +04:00
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the NTLM response only , but in the LM field .
*/
2022-02-17 07:50:43 +03:00
static bool test_ntlm_in_lm ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2007-10-19 04:40:25 +04:00
bool pass = True ;
2004-04-12 18:19:48 +04:00
NTSTATUS nt_status ;
2015-05-07 03:00:06 +03:00
uint32_t flags = 0 ;
2004-04-12 18:19:48 +04:00
DATA_BLOB nt_response = data_blob ( NULL , 24 ) ;
2021-10-26 18:42:41 +03:00
uint8_t authoritative = 1 ;
2004-04-12 18:19:48 +04:00
uchar lm_key [ 8 ] ;
uchar lm_hash [ 16 ] ;
uchar user_session_key [ 16 ] ;
DATA_BLOB chall = get_challenge ( ) ;
2024-11-14 23:03:02 +03:00
char * error_string = NULL ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
ZERO_STRUCT ( user_session_key ) ;
flags | = WBFLAG_PAM_LMKEY ;
flags | = WBFLAG_PAM_USER_SESSION_KEY ;
SMBNTencrypt ( opt_password , chall . data , nt_response . data ) ;
2024-10-17 16:12:02 +03:00
E_deshash ( opt_password , lm_hash ) ;
2004-04-12 18:19:48 +04:00
2024-10-17 16:12:02 +03:00
nt_status = contact_winbind_auth_crap ( opt_username , opt_domain ,
2004-04-12 18:19:48 +04:00
opt_workstation ,
& chall ,
& nt_response ,
NULL ,
2012-02-19 03:56:12 +04:00
flags , 0 ,
2004-04-12 18:19:48 +04:00
lm_key ,
user_session_key ,
2017-03-17 13:49:40 +03:00
& authoritative ,
2004-04-12 18:19:48 +04:00
& error_string , NULL ) ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
data_blob_free ( & nt_response ) ;
if ( ! NT_STATUS_IS_OK ( nt_status ) ) {
2024-10-17 16:12:02 +03:00
d_printf ( " %s (0x%x) \n " ,
2004-04-12 18:19:48 +04:00
error_string ,
NT_STATUS_V ( nt_status ) ) ;
SAFE_FREE ( error_string ) ;
return False ;
}
2024-11-14 23:03:02 +03:00
SAFE_FREE ( error_string ) ;
2004-04-12 18:19:48 +04:00
2022-02-17 07:50:43 +03:00
/* If we are told the DC is Samba4, expect an LM key of zeros */
if ( ! lanman_support_expected ) {
if ( ! all_zero ( lm_key ,
sizeof ( lm_key ) ) ) {
DEBUG ( 1 , ( " LM Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " lm_key: \n " ) ) ;
dump_data ( 1 , lm_key , 8 ) ;
DEBUG ( 1 , ( " expected: all zeros \n " ) ) ;
pass = False ;
}
if ( ! all_zero ( user_session_key ,
sizeof ( user_session_key ) ) ) {
DEBUG ( 1 , ( " Session Key (normally first 8 lm hash) does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " user_session_key: \n " ) ) ;
dump_data ( 1 , user_session_key , 16 ) ;
DEBUG ( 1 , ( " expected all zeros: \n " ) ) ;
pass = False ;
}
} else {
if ( memcmp ( lm_hash , lm_key ,
sizeof ( lm_key ) ) ! = 0 ) {
DEBUG ( 1 , ( " LM Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " lm_key: \n " ) ) ;
dump_data ( 1 , lm_key , 8 ) ;
DEBUG ( 1 , ( " expected: \n " ) ) ;
dump_data ( 1 , lm_hash , 8 ) ;
pass = False ;
}
if ( memcmp ( lm_hash , user_session_key , 8 ) ! = 0 ) {
DEBUG ( 1 , ( " Session Key (first 8 lm hash) does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " user_session_key: \n " ) ) ;
dump_data ( 1 , user_session_key , 16 ) ;
DEBUG ( 1 , ( " expected: \n " ) ) ;
dump_data ( 1 , lm_hash , 8 ) ;
pass = False ;
}
2004-04-12 18:19:48 +04:00
}
return pass ;
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the NTLM response only , but in the both the NT and LM fields .
*/
2022-02-17 07:50:43 +03:00
static bool test_ntlm_in_both ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2007-10-19 04:40:25 +04:00
bool pass = True ;
2004-04-12 18:19:48 +04:00
NTSTATUS nt_status ;
2015-05-07 03:00:06 +03:00
uint32_t flags = 0 ;
2004-04-12 18:19:48 +04:00
DATA_BLOB nt_response = data_blob ( NULL , 24 ) ;
DATA_BLOB session_key = data_blob ( NULL , 16 ) ;
2021-10-26 18:42:41 +03:00
uint8_t authoritative = 1 ;
2015-05-07 03:00:06 +03:00
uint8_t lm_key [ 8 ] ;
uint8_t lm_hash [ 16 ] ;
uint8_t user_session_key [ 16 ] ;
uint8_t nt_hash [ 16 ] ;
2004-04-12 18:19:48 +04:00
DATA_BLOB chall = get_challenge ( ) ;
2024-11-14 23:02:09 +03:00
char * error_string = NULL ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
ZERO_STRUCT ( lm_key ) ;
ZERO_STRUCT ( user_session_key ) ;
flags | = WBFLAG_PAM_LMKEY ;
flags | = WBFLAG_PAM_USER_SESSION_KEY ;
SMBNTencrypt ( opt_password , chall . data , nt_response . data ) ;
2007-03-28 17:31:52 +04:00
E_md4hash ( opt_password , nt_hash ) ;
2009-03-16 13:27:58 +03:00
SMBsesskeygen_ntv1 ( nt_hash , session_key . data ) ;
2004-04-12 18:19:48 +04:00
2024-10-17 16:12:02 +03:00
E_deshash ( opt_password , lm_hash ) ;
2004-04-12 18:19:48 +04:00
2024-10-17 16:12:02 +03:00
nt_status = contact_winbind_auth_crap ( opt_username , opt_domain ,
2004-04-12 18:19:48 +04:00
opt_workstation ,
& chall ,
& nt_response ,
& nt_response ,
2012-02-19 03:56:12 +04:00
flags , 0 ,
2007-03-28 17:31:52 +04:00
lm_key ,
user_session_key ,
2017-03-17 13:49:40 +03:00
& authoritative ,
2004-04-12 18:19:48 +04:00
& error_string , NULL ) ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
data_blob_free ( & nt_response ) ;
if ( ! NT_STATUS_IS_OK ( nt_status ) ) {
2024-10-17 16:12:02 +03:00
d_printf ( " %s (0x%x) \n " ,
2004-04-12 18:19:48 +04:00
error_string ,
NT_STATUS_V ( nt_status ) ) ;
SAFE_FREE ( error_string ) ;
return False ;
}
2024-11-14 23:02:09 +03:00
SAFE_FREE ( error_string ) ;
2004-04-12 18:19:48 +04:00
2022-02-17 07:50:43 +03:00
/* If we are told the DC is Samba4, expect an LM key of zeros */
if ( ! lanman_support_expected ) {
if ( ! all_zero ( lm_key ,
sizeof ( lm_key ) ) ) {
DEBUG ( 1 , ( " LM Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " lm_key: \n " ) ) ;
dump_data ( 1 , lm_key , 8 ) ;
DEBUG ( 1 , ( " expected: all zeros \n " ) ) ;
pass = False ;
}
} else {
if ( memcmp ( lm_hash , lm_key ,
sizeof ( lm_key ) ) ! = 0 ) {
DEBUG ( 1 , ( " LM Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " lm_key: \n " ) ) ;
dump_data ( 1 , lm_key , 8 ) ;
DEBUG ( 1 , ( " expected: \n " ) ) ;
dump_data ( 1 , lm_hash , 8 ) ;
pass = False ;
}
2004-04-12 18:19:48 +04:00
}
2024-10-17 16:12:02 +03:00
if ( memcmp ( session_key . data , user_session_key ,
2004-04-12 18:19:48 +04:00
sizeof ( user_session_key ) ) ! = 0 ) {
DEBUG ( 1 , ( " NT Session Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " user_session_key: \n " ) ) ;
dump_data ( 1 , user_session_key , 16 ) ;
DEBUG ( 1 , ( " expected: \n " ) ) ;
2007-03-28 17:34:59 +04:00
dump_data ( 1 , session_key . data , session_key . length ) ;
2004-04-12 18:19:48 +04:00
pass = False ;
}
return pass ;
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the NTLMv2 and LMv2 responses
*/
2024-10-17 16:12:02 +03:00
static bool test_lmv2_ntlmv2_broken ( enum ntlm_break break_which )
2004-04-12 18:19:48 +04:00
{
2007-10-19 04:40:25 +04:00
bool pass = True ;
2004-04-12 18:19:48 +04:00
NTSTATUS nt_status ;
2015-05-07 03:00:06 +03:00
uint32_t flags = 0 ;
2007-05-14 16:16:20 +04:00
DATA_BLOB ntlmv2_response = data_blob_null ;
DATA_BLOB lmv2_response = data_blob_null ;
DATA_BLOB ntlmv2_session_key = data_blob_null ;
2009-03-16 13:27:58 +03:00
DATA_BLOB names_blob = NTLMv2_generate_names_blob ( NULL , get_winbind_netbios_name ( ) , get_winbind_domain ( ) ) ;
2021-10-26 18:42:41 +03:00
uint8_t authoritative = 1 ;
2004-04-12 18:19:48 +04:00
uchar user_session_key [ 16 ] ;
DATA_BLOB chall = get_challenge ( ) ;
2024-11-14 23:00:07 +03:00
char * error_string = NULL ;
2004-04-12 18:19:48 +04:00
ZERO_STRUCT ( user_session_key ) ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
flags | = WBFLAG_PAM_USER_SESSION_KEY ;
2009-03-16 13:27:58 +03:00
if ( ! SMBNTLMv2encrypt ( NULL , opt_username , opt_domain , opt_password , & chall ,
2004-04-12 18:19:48 +04:00
& names_blob ,
2009-03-16 13:27:58 +03:00
& lmv2_response , & ntlmv2_response , NULL ,
2004-04-12 18:19:48 +04:00
& ntlmv2_session_key ) ) {
data_blob_free ( & names_blob ) ;
return False ;
}
data_blob_free ( & names_blob ) ;
switch ( break_which ) {
case BREAK_NONE :
break ;
case BREAK_LM :
lmv2_response . data [ 0 ] + + ;
break ;
case BREAK_NT :
ntlmv2_response . data [ 0 ] + + ;
break ;
case NO_LM :
data_blob_free ( & lmv2_response ) ;
break ;
case NO_NT :
data_blob_free ( & ntlmv2_response ) ;
break ;
}
2024-10-17 16:12:02 +03:00
nt_status = contact_winbind_auth_crap ( opt_username , opt_domain ,
2004-04-12 18:19:48 +04:00
opt_workstation ,
& chall ,
& lmv2_response ,
& ntlmv2_response ,
2012-02-19 03:56:12 +04:00
flags , 0 ,
2024-10-17 16:12:02 +03:00
NULL ,
2004-04-12 18:19:48 +04:00
user_session_key ,
2017-03-17 13:49:40 +03:00
& authoritative ,
2004-04-12 18:19:48 +04:00
& error_string , NULL ) ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
data_blob_free ( & lmv2_response ) ;
data_blob_free ( & ntlmv2_response ) ;
if ( ! NT_STATUS_IS_OK ( nt_status ) ) {
2024-10-17 16:12:02 +03:00
d_printf ( " %s (0x%x) \n " ,
2004-04-12 18:19:48 +04:00
error_string ,
NT_STATUS_V ( nt_status ) ) ;
SAFE_FREE ( error_string ) ;
return break_which = = BREAK_NT ;
}
2024-11-14 23:00:07 +03:00
SAFE_FREE ( error_string ) ;
2024-10-17 16:12:02 +03:00
if ( break_which ! = NO_NT & & break_which ! = BREAK_NT & & memcmp ( ntlmv2_session_key . data , user_session_key ,
2004-04-12 18:19:48 +04:00
sizeof ( user_session_key ) ) ! = 0 ) {
DEBUG ( 1 , ( " USER (NTLMv2) Session Key does not match expectations! \n " ) ) ;
DEBUG ( 1 , ( " user_session_key: \n " ) ) ;
2007-03-28 17:34:59 +04:00
dump_data ( 1 , user_session_key , 16 ) ;
2004-04-12 18:19:48 +04:00
DEBUG ( 1 , ( " expected: \n " ) ) ;
2007-03-28 17:34:59 +04:00
dump_data ( 1 , ntlmv2_session_key . data , ntlmv2_session_key . length ) ;
2004-04-12 18:19:48 +04:00
pass = False ;
}
2024-10-18 16:32:58 +03:00
data_blob_free ( & ntlmv2_session_key ) ;
2004-04-12 18:19:48 +04:00
return pass ;
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the NTLMv2 and LMv2 responses
*/
2022-02-17 07:50:43 +03:00
static bool test_lmv2_ntlmv2 ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
return test_lmv2_ntlmv2_broken ( BREAK_NONE ) ;
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the LMv2 response only
*/
2022-02-17 07:50:43 +03:00
static bool test_lmv2 ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
return test_lmv2_ntlmv2_broken ( NO_NT ) ;
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
* Test the NTLMv2 response only
*/
2022-02-17 07:50:43 +03:00
static bool test_ntlmv2 ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
return test_lmv2_ntlmv2_broken ( NO_LM ) ;
}
2022-02-17 07:50:43 +03:00
static bool test_lm_ntlm ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2022-02-17 07:50:43 +03:00
return test_lm_ntlm_broken ( BREAK_NONE , lanman_support_expected ) ;
2004-04-12 18:19:48 +04:00
}
2022-02-17 07:50:43 +03:00
static bool test_ntlm_lm_broken ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2022-02-17 07:50:43 +03:00
return test_lm_ntlm_broken ( BREAK_LM , lanman_support_expected ) ;
2004-04-12 18:19:48 +04:00
}
2022-02-17 07:50:43 +03:00
static bool test_ntlm_ntlm_broken ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
2022-02-17 07:50:43 +03:00
return test_lm_ntlm_broken ( BREAK_NT , lanman_support_expected ) ;
2004-04-12 18:19:48 +04:00
}
2022-02-17 07:50:43 +03:00
static bool test_ntlmv2_lmv2_broken ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
return test_lmv2_ntlmv2_broken ( BREAK_LM ) ;
}
2022-02-17 07:50:43 +03:00
static bool test_ntlmv2_ntlmv2_broken ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
return test_lmv2_ntlmv2_broken ( BREAK_NT ) ;
}
2007-10-19 04:40:25 +04:00
static bool test_plaintext ( enum ntlm_break break_which )
2004-04-12 18:19:48 +04:00
{
NTSTATUS nt_status ;
2015-05-07 03:00:06 +03:00
uint32_t flags = 0 ;
2007-05-14 16:16:20 +04:00
DATA_BLOB nt_response = data_blob_null ;
DATA_BLOB lm_response = data_blob_null ;
2004-04-12 18:19:48 +04:00
char * password ;
2006-07-11 22:01:26 +04:00
smb_ucs2_t * nt_response_ucs2 ;
2008-04-30 01:36:24 +04:00
size_t converted_size ;
2021-10-26 18:42:41 +03:00
uint8_t authoritative = 1 ;
2004-04-12 18:19:48 +04:00
uchar user_session_key [ 16 ] ;
uchar lm_key [ 16 ] ;
2006-09-04 13:51:47 +04:00
static const uchar zeros [ 8 ] = { 0 , } ;
2004-04-12 18:19:48 +04:00
DATA_BLOB chall = data_blob ( zeros , sizeof ( zeros ) ) ;
2024-11-14 23:04:02 +03:00
char * error_string = NULL ;
2004-04-12 18:19:48 +04:00
ZERO_STRUCT ( user_session_key ) ;
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
flags | = WBFLAG_PAM_LMKEY ;
flags | = WBFLAG_PAM_USER_SESSION_KEY ;
2009-04-14 06:43:34 +04:00
if ( ! push_ucs2_talloc ( talloc_tos ( ) , & nt_response_ucs2 , opt_password ,
2008-04-30 01:36:24 +04:00
& converted_size ) )
{
2009-03-19 04:20:11 +03:00
DEBUG ( 0 , ( " push_ucs2_talloc failed! \n " ) ) ;
2004-04-12 18:19:48 +04:00
exit ( 1 ) ;
}
2006-07-11 22:01:26 +04:00
nt_response . data = ( unsigned char * ) nt_response_ucs2 ;
nt_response . length = strlen_w ( nt_response_ucs2 ) * sizeof ( smb_ucs2_t ) ;
2004-04-12 18:19:48 +04:00
2009-04-14 06:43:34 +04:00
if ( ( password = strupper_talloc ( talloc_tos ( ) , opt_password ) ) = = NULL ) {
2009-03-19 04:20:11 +03:00
DEBUG ( 0 , ( " strupper_talloc() failed! \n " ) ) ;
2006-06-20 00:00:51 +04:00
exit ( 1 ) ;
}
2004-04-12 18:19:48 +04:00
2009-04-14 06:43:34 +04:00
if ( ! convert_string_talloc ( talloc_tos ( ) , CH_UNIX ,
2009-03-19 04:20:11 +03:00
CH_DOS , password ,
2024-10-17 16:12:02 +03:00
strlen ( password ) + 1 ,
2009-03-19 04:20:11 +03:00
& lm_response . data ,
2011-03-24 02:59:41 +03:00
& lm_response . length ) ) {
2009-03-19 04:20:11 +03:00
DEBUG ( 0 , ( " convert_string_talloc failed! \n " ) ) ;
2004-04-12 18:19:48 +04:00
exit ( 1 ) ;
}
2009-03-19 04:20:11 +03:00
TALLOC_FREE ( password ) ;
2004-04-12 18:19:48 +04:00
switch ( break_which ) {
case BREAK_NONE :
break ;
case BREAK_LM :
lm_response . data [ 0 ] + + ;
break ;
case BREAK_NT :
nt_response . data [ 0 ] + + ;
break ;
case NO_LM :
2009-09-04 01:49:50 +04:00
TALLOC_FREE ( lm_response . data ) ;
2004-04-12 18:19:48 +04:00
lm_response . length = 0 ;
break ;
case NO_NT :
2009-09-04 01:49:50 +04:00
TALLOC_FREE ( nt_response . data ) ;
2004-04-12 18:19:48 +04:00
nt_response . length = 0 ;
break ;
}
2024-10-17 16:12:02 +03:00
nt_status = contact_winbind_auth_crap ( opt_username , opt_domain ,
2004-04-12 18:19:48 +04:00
opt_workstation ,
& chall ,
& lm_response ,
& nt_response ,
2012-02-19 03:56:12 +04:00
flags , MSV1_0_CLEARTEXT_PASSWORD_ALLOWED ,
2004-04-12 18:19:48 +04:00
lm_key ,
user_session_key ,
2017-03-17 13:49:40 +03:00
& authoritative ,
2004-04-12 18:19:48 +04:00
& error_string , NULL ) ;
2024-10-17 16:12:02 +03:00
2009-03-19 04:20:11 +03:00
TALLOC_FREE ( nt_response . data ) ;
TALLOC_FREE ( lm_response . data ) ;
2004-04-12 18:19:48 +04:00
data_blob_free ( & chall ) ;
if ( ! NT_STATUS_IS_OK ( nt_status ) ) {
2024-10-17 16:12:02 +03:00
d_printf ( " %s (0x%x) \n " ,
2004-04-12 18:19:48 +04:00
error_string ,
NT_STATUS_V ( nt_status ) ) ;
SAFE_FREE ( error_string ) ;
return break_which = = BREAK_NT ;
}
2024-11-14 23:04:02 +03:00
SAFE_FREE ( error_string ) ;
2004-04-12 18:19:48 +04:00
return break_which ! = BREAK_NT ;
}
2022-02-17 07:50:43 +03:00
static bool test_plaintext_none_broken ( bool lanman_support_expected ) {
2004-04-12 18:19:48 +04:00
return test_plaintext ( BREAK_NONE ) ;
}
2022-02-17 07:50:43 +03:00
static bool test_plaintext_lm_broken ( bool lanman_support_expected ) {
2004-04-12 18:19:48 +04:00
return test_plaintext ( BREAK_LM ) ;
}
2022-02-17 07:50:43 +03:00
static bool test_plaintext_nt_broken ( bool lanman_support_expected ) {
2004-04-12 18:19:48 +04:00
return test_plaintext ( BREAK_NT ) ;
}
2022-02-17 07:50:43 +03:00
static bool test_plaintext_nt_only ( bool lanman_support_expected ) {
2004-04-12 18:19:48 +04:00
return test_plaintext ( NO_LM ) ;
}
2022-02-17 07:50:43 +03:00
static bool test_plaintext_lm_only ( bool lanman_support_expected ) {
2004-04-12 18:19:48 +04:00
return test_plaintext ( NO_NT ) ;
}
2024-10-17 16:12:02 +03:00
/*
2004-04-12 18:19:48 +04:00
Tests :
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
- LM only
2024-10-17 16:12:02 +03:00
- NT and LM
2004-04-12 18:19:48 +04:00
- NT
- NT in LM field
- NT in both fields
- NTLMv2
- NTLMv2 and LMv2
- LMv2
2023-09-05 07:04:18 +03:00
- plaintext tests ( in challenge - response fields )
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
check we get the correct session key in each case
check what values we get for the LM session key
2024-10-17 16:12:02 +03:00
2004-04-12 18:19:48 +04:00
*/
static const struct ntlm_tests {
2022-02-17 07:50:43 +03:00
bool ( * fn ) ( bool lanman_support_expected ) ;
2004-04-12 18:19:48 +04:00
const char * name ;
2022-02-17 07:50:43 +03:00
bool lanman ;
2004-04-12 18:19:48 +04:00
} test_table [ ] = {
2022-02-17 00:48:54 +03:00
{
. fn = test_lm ,
. name = " LM " ,
2022-02-17 07:50:43 +03:00
. lanman = true
2022-02-17 00:48:54 +03:00
} ,
{
. fn = test_lm_ntlm ,
. name = " LM and NTLM "
} ,
{
. fn = test_ntlm ,
. name = " NTLM "
} ,
{
. fn = test_ntlm_in_lm ,
. name = " NTLM in LM "
} ,
{
. fn = test_ntlm_in_both ,
. name = " NTLM in both "
} ,
{
. fn = test_ntlmv2 ,
. name = " NTLMv2 "
} ,
{
. fn = test_lmv2_ntlmv2 ,
. name = " NTLMv2 and LMv2 "
} ,
{
. fn = test_lmv2 ,
. name = " LMv2 "
} ,
{
. fn = test_ntlmv2_lmv2_broken ,
. name = " NTLMv2 and LMv2, LMv2 broken "
} ,
{
. fn = test_ntlmv2_ntlmv2_broken ,
. name = " NTLMv2 and LMv2, NTLMv2 broken "
} ,
{
. fn = test_ntlm_lm_broken ,
. name = " NTLM and LM, LM broken "
} ,
{
. fn = test_ntlm_ntlm_broken ,
. name = " NTLM and LM, NTLM broken "
} ,
{
. fn = test_plaintext_none_broken ,
. name = " Plaintext "
} ,
{
. fn = test_plaintext_lm_broken ,
. name = " Plaintext LM broken "
} ,
{
. fn = test_plaintext_nt_broken ,
. name = " Plaintext NT broken "
} ,
{
. fn = test_plaintext_nt_only ,
. name = " Plaintext NT only "
} ,
{
. fn = test_plaintext_lm_only ,
2022-02-17 07:50:43 +03:00
. name = " Plaintext LM only " ,
. lanman = true
2022-02-17 00:48:54 +03:00
} ,
2022-02-17 07:50:43 +03:00
{
. fn = NULL
}
2004-04-12 18:19:48 +04:00
} ;
2022-02-17 07:50:43 +03:00
bool diagnose_ntlm_auth ( bool lanman_support_expected )
2004-04-12 18:19:48 +04:00
{
unsigned int i ;
2007-10-19 04:40:25 +04:00
bool pass = True ;
2004-04-12 18:19:48 +04:00
for ( i = 0 ; test_table [ i ] . fn ; i + + ) {
2022-02-17 07:50:43 +03:00
bool test_pass = test_table [ i ] . fn ( lanman_support_expected ) ;
if ( ! lanman_support_expected
& & test_table [ i ] . lanman ) {
if ( test_pass ) {
DBG_ERR ( " Test %s unexpectedly passed "
" (server should have rejected LM)! \n " ,
test_table [ i ] . name ) ;
pass = false ;
}
} else if ( ! test_pass ) {
DBG_ERR ( " Test %s failed! \n " , test_table [ i ] . name ) ;
2004-04-12 18:19:48 +04:00
pass = False ;
}
}
return pass ;
}