sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-25 06:04:04 +03:00
Code

libcli:auth: Use GnuTLS MD5 in encode_or_decode_arc4_passwd_buffer()

Browse Source 
Signed-off-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
This commit is contained in:
Andreas Schneider 2019-05-15 08:02:59 +02:00 committed by Andrew Bartlett
parent 45a4a9078c
commit 152cd8b426
1 changed files with 24 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
libcli/auth/smbencrypt.c
View File

@ -807,17 +807,36 @@ bool decode_pw_buffer(TALLOC_CTX *ctx,
void encode_or_decode_arc4_passwd_buffer(unsigned char pw_buf[532], const DATA_BLOB *psession_key) void encode_or_decode_arc4_passwd_buffer(unsigned char pw_buf[532], const DATA_BLOB *psession_key)
{ {
MD5_CTX tctx; gnutls_hash_hd_t hash_hnd = NULL;
unsigned char key_out[16]; unsigned char key_out[16];
int rc;
/* Confounder is last 16 bytes. */ /* Confounder is last 16 bytes. */
MD5Init(&tctx); rc = gnutls_hash_init(&hash_hnd, GNUTLS_DIG_MD5);
MD5Update(&tctx, &pw_buf[516], 16); if (rc < 0) {
MD5Update(&tctx, psession_key->data, psession_key->length); goto out;
MD5Final(key_out, &tctx); }
rc = gnutls_hash(hash_hnd, &pw_buf[516], 16);
if (rc < 0) {
gnutls_hash_deinit(hash_hnd, NULL);
goto out;
}
rc = gnutls_hash(hash_hnd, psession_key->data, psession_key->length);
if (rc < 0) {
gnutls_hash_deinit(hash_hnd, NULL);
goto out;
}
gnutls_hash_deinit(hash_hnd, key_out);
/* arc4 with key_out. */ /* arc4 with key_out. */
arcfour_crypt(pw_buf, key_out, 516); arcfour_crypt(pw_buf, key_out, 516);
ZERO_ARRAY(key_out);
out:
return;
} }
/*********************************************************** /***********************************************************