mirror of
https://github.com/samba-team/samba.git
synced 2025-01-25 06:04:04 +03:00
1956d13494
(This used to be commit 39fbeb04ae938594c380d97ebe67c012fa0dd51a)
203 lines
4.4 KiB
C
203 lines
4.4 KiB
C
#ifdef SMB_PASSWD
|
|
/*
|
|
Unix SMB/Netbios implementation.
|
|
Version 1.9.
|
|
SMB parameters and setup
|
|
Copyright (C) Andrew Tridgell 1992-1995
|
|
Modified by Jeremy Allison 1995.
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program; if not, write to the Free Software
|
|
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
|
|
*/
|
|
|
|
#include "includes.h"
|
|
#include "loadparm.h"
|
|
#include "des.h"
|
|
#include "md4.h"
|
|
|
|
extern int DEBUGLEVEL;
|
|
|
|
#ifndef uchar
|
|
#define uchar unsigned char
|
|
#endif
|
|
#ifndef int16
|
|
#define int16 unsigned short
|
|
#endif
|
|
#ifndef uint16
|
|
#define uint16 unsigned short
|
|
#endif
|
|
#ifndef uint32
|
|
#define uint32 unsigned int
|
|
#endif
|
|
|
|
#include "byteorder.h"
|
|
|
|
void str_to_key(uchar *str,uchar *key)
|
|
{
|
|
void des_set_odd_parity(des_cblock *);
|
|
int i;
|
|
|
|
key[0] = str[0]>>1;
|
|
key[1] = ((str[0]&0x01)<<6) | (str[1]>>2);
|
|
key[2] = ((str[1]&0x03)<<5) | (str[2]>>3);
|
|
key[3] = ((str[2]&0x07)<<4) | (str[3]>>4);
|
|
key[4] = ((str[3]&0x0F)<<3) | (str[4]>>5);
|
|
key[5] = ((str[4]&0x1F)<<2) | (str[5]>>6);
|
|
key[6] = ((str[5]&0x3F)<<1) | (str[6]>>7);
|
|
key[7] = str[6]&0x7F;
|
|
for (i=0;i<8;i++) {
|
|
key[i] = (key[i]<<1);
|
|
}
|
|
des_set_odd_parity((des_cblock *)key);
|
|
}
|
|
|
|
void D1(uchar *k, uchar *d, uchar *out)
|
|
{
|
|
des_key_schedule ks;
|
|
des_cblock deskey;
|
|
|
|
str_to_key(k,(uchar *)deskey);
|
|
des_set_key(deskey,ks);
|
|
des_ecb_encrypt(d, out, ks, DES_DECRYPT);
|
|
}
|
|
|
|
void E1(uchar *k, uchar *d, uchar *out)
|
|
{
|
|
des_key_schedule ks;
|
|
des_cblock deskey;
|
|
|
|
str_to_key(k,(uchar *)deskey);
|
|
des_set_key(deskey,ks);
|
|
des_ecb_encrypt(d, out, ks, DES_ENCRYPT);
|
|
}
|
|
|
|
void E_P16(uchar *p14,uchar *p16)
|
|
{
|
|
uchar sp7[7];
|
|
/* the following constant makes us compatible with other
|
|
implementations. Note that publishing this constant does not reduce the
|
|
security of the encryption mechanism */
|
|
uchar sp8[] = {0xAA,0xD3,0xB4,0x35,0xB5,0x14,0x4,0xEE};
|
|
uchar x[8];
|
|
|
|
memset(sp7,'\0',7);
|
|
|
|
D1(sp7, sp8, x);
|
|
E1(p14, x, p16);
|
|
E1(p14+7, x, p16+8);
|
|
}
|
|
|
|
void E_P24(uchar *p21, uchar *c8, uchar *p24)
|
|
{
|
|
E1(p21, c8, p24);
|
|
E1(p21+7, c8, p24+8);
|
|
E1(p21+14, c8, p24+16);
|
|
}
|
|
|
|
|
|
/*
|
|
This implements the X/Open SMB password encryption
|
|
It takes a password, a 8 byte "crypt key" and puts 24 bytes of
|
|
encrypted password into p24 */
|
|
void SMBencrypt(uchar *passwd, uchar *c8, uchar *p24)
|
|
{
|
|
uchar p14[15], p21[21];
|
|
|
|
memset(p21,'\0',21);
|
|
memset(p14,'\0',14);
|
|
StrnCpy((char *)p14,(char *)passwd,14);
|
|
|
|
strupper((char *)p14);
|
|
E_P16(p14, p21);
|
|
E_P24(p21, c8, p24);
|
|
}
|
|
|
|
/* Routines for Windows NT MD4 Hash functions. */
|
|
static int _my_wcslen(int16 *str)
|
|
{
|
|
int len = 0;
|
|
while(*str++ != 0)
|
|
len++;
|
|
return len;
|
|
}
|
|
|
|
/*
|
|
* Convert a string into an NT UNICODE string.
|
|
* Note that regardless of processor type
|
|
* this must be in intel (little-endian)
|
|
* format.
|
|
*/
|
|
|
|
static int _my_mbstowcs(int16 *dst, uchar *src, int len)
|
|
{
|
|
int i;
|
|
int16 val;
|
|
|
|
for(i = 0; i < len; i++) {
|
|
val = *src;
|
|
SSVAL(dst,0,val);
|
|
dst++;
|
|
src++;
|
|
if(val == 0)
|
|
break;
|
|
}
|
|
return i;
|
|
}
|
|
|
|
/*
|
|
* Creates the MD4 Hash of the users password in NT UNICODE.
|
|
*/
|
|
|
|
void E_md4hash(uchar *passwd, uchar *p16)
|
|
{
|
|
int i, len;
|
|
int16 wpwd[129];
|
|
MDstruct MD;
|
|
|
|
/* Password cannot be longer than 128 characters */
|
|
len = strlen((char *)passwd);
|
|
if(len > 128)
|
|
len = 128;
|
|
/* Password must be converted to NT unicode */
|
|
_my_mbstowcs( wpwd, passwd, len);
|
|
wpwd[len] = 0; /* Ensure string is null terminated */
|
|
/* Calculate length in bytes */
|
|
len = _my_wcslen(wpwd) * sizeof(int16);
|
|
|
|
MDbegin(&MD);
|
|
for(i = 0; i + 64 <= len; i += 64)
|
|
MDupdate(&MD,wpwd + (i/2), 512);
|
|
MDupdate(&MD,wpwd + (i/2),(len-i)*8);
|
|
SIVAL(p16,0,MD.buffer[0]);
|
|
SIVAL(p16,4,MD.buffer[1]);
|
|
SIVAL(p16,8,MD.buffer[2]);
|
|
SIVAL(p16,12,MD.buffer[3]);
|
|
}
|
|
|
|
/* Does the NT MD4 hash then des encryption. */
|
|
|
|
void SMBNTencrypt(uchar *passwd, uchar *c8, uchar *p24)
|
|
{
|
|
uchar p21[21];
|
|
|
|
memset(p21,'\0',21);
|
|
|
|
E_md4hash(passwd, p21);
|
|
E_P24(p21, c8, p24);
|
|
}
|
|
|
|
#else
|
|
void smbencrypt_dummy(void){}
|
|
#endif
|