2005-05-02 18:17:19 +04:00
/*
Unix SMB / CIFS implementation .
smbpasswd file format routines
Copyright ( C ) Andrew Tridgell 1992 - 1998
Modified by Jeremy Allison 1995.
Modified by Gerald ( Jerry ) Carter 2000 - 2001
Copyright ( C ) Tim Potter 2001
Copyright ( C ) Andrew Bartlett < abartlet @ samba . org > 2005
2005-08-30 02:01:18 +04:00
Copyright ( C ) Jelmer Vernooij < jelmer @ samba . org > 2005
2005-05-02 18:17:19 +04:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
2007-07-10 06:07:03 +04:00
the Free Software Foundation ; either version 3 of the License , or
2005-05-02 18:17:19 +04:00
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
2007-07-10 06:07:03 +04:00
along with this program . If not , see < http : //www.gnu.org/licenses/>.
2005-05-02 18:17:19 +04:00
*/
/*! \file lib/smbpasswd.c
The smbpasswd file is used to store encrypted passwords in a similar
fashion to the / etc / passwd file . The format is colon separated fields
with one user per line like so :
< username > : < uid > : < lanman hash > : < nt hash > : < acb info > : < last change time >
The username and uid must correspond to an entry in the / etc / passwd
file . The lanman and nt password hashes are 32 hex digits corresponding
to the 16 - byte lanman and nt hashes respectively .
The password last change time is stored as a string of the format
LCD - < change time > where the change time is expressed as an
' N ' No password
' D ' Disabled
' H ' Homedir required
' T ' Temp account .
' U ' User account ( normal )
' M ' MNS logon user account - what is this ?
' W ' Workstation account
' S ' Server account
' L ' Locked account
' X ' No Xpiry on password
' I ' Interdomain trust account
*/
# include "includes.h"
2006-05-13 23:14:12 +04:00
# include "system/locale.h"
2005-08-30 02:01:18 +04:00
# include "lib/samba3/samba3.h"
2005-05-02 18:17:19 +04:00
/*! Convert 32 hex characters into a 16 byte array. */
2005-07-09 05:53:01 +04:00
struct samr_Password * smbpasswd_gethexpwd ( TALLOC_CTX * mem_ctx , const char * p )
2005-05-02 18:17:19 +04:00
{
int i ;
unsigned char lonybble , hinybble ;
const char * hexchars = " 0123456789ABCDEF " ;
2005-07-09 05:53:01 +04:00
const char * p1 , * p2 ;
2005-05-02 18:17:19 +04:00
struct samr_Password * pwd = talloc ( mem_ctx , struct samr_Password ) ;
if ( ! p ) return NULL ;
for ( i = 0 ; i < ( sizeof ( pwd - > hash ) * 2 ) ; i + = 2 )
{
hinybble = toupper ( p [ i ] ) ;
lonybble = toupper ( p [ i + 1 ] ) ;
p1 = strchr_m ( hexchars , hinybble ) ;
p2 = strchr_m ( hexchars , lonybble ) ;
2006-09-10 14:30:10 +04:00
if ( ! p1 | | ! p2 ) {
return NULL ;
2005-05-02 18:17:19 +04:00
}
hinybble = PTR_DIFF ( p1 , hexchars ) ;
lonybble = PTR_DIFF ( p2 , hexchars ) ;
pwd - > hash [ i / 2 ] = ( hinybble < < 4 ) | lonybble ;
}
return pwd ;
}
/*! Convert a 16-byte array into 32 hex characters. */
char * smbpasswd_sethexpwd ( TALLOC_CTX * mem_ctx , struct samr_Password * pwd , uint16_t acb_info )
{
char * p ;
if ( pwd ! = NULL ) {
int i ;
p = talloc_array ( mem_ctx , char , 33 ) ;
if ( ! p ) {
return NULL ;
}
for ( i = 0 ; i < sizeof ( pwd - > hash ) ; i + + )
slprintf ( & p [ i * 2 ] , 3 , " %02X " , pwd - > hash [ i ] ) ;
} else {
if ( acb_info & ACB_PWNOTREQ )
p = talloc_strdup ( mem_ctx , " NO PASSWORDXXXXXXXXXXXXXXXXXXXXX " ) ;
else
p = talloc_strdup ( mem_ctx , " XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX " ) ;
}
return p ;
}