sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-06 13:18:07 +03:00
Code
5b4353cc60
samba-mirror/lib/crypto/py_crypto.c
Joseph Sutton b7351888e8 CVE-2021-20251 lib:crypto: Add md4_hash_blob() for hashing data with MD4 
This lets us access MD4, which might not be available in hashlib, from
Python. This function is used in a following commit for hashing a
password to obtain the verifier for a SAMR password change.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14611

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
(cherry picked from commit 17b8d164f6)
2022-09-18 16:46:09 +00:00

231 lines
5.5 KiB
C
Raw Blame History

/*
Unix SMB/CIFS implementation.
Samba crypto functions
Copyright (C) Alexander Bokovoy <ab@samba.org> 2017
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#include <Python.h>
#include "includes.h"
#include "python/py3compat.h"
#include <gnutls/gnutls.h>
#include <gnutls/crypto.h>
#include "lib/crypto/gnutls_helpers.h"
#include "lib/crypto/md4.h"
#include "libcli/auth/libcli_auth.h"
static PyObject *py_crypto_arcfour_crypt_blob(PyObject *module, PyObject *args)
{
DATA_BLOB data;
PyObject *py_data, *py_key, *result;
TALLOC_CTX *ctx;
gnutls_cipher_hd_t cipher_hnd = NULL;
gnutls_datum_t key;
int rc;
if (!PyArg_ParseTuple(args, "OO", &py_data, &py_key))
return NULL;
if (!PyBytes_Check(py_data)) {
PyErr_Format(PyExc_TypeError, "bytes expected");
return NULL;
}
if (!PyBytes_Check(py_key)) {
PyErr_Format(PyExc_TypeError, "bytes expected");
return NULL;
}
ctx = talloc_new(NULL);
data.length = PyBytes_Size(py_data);
data.data = talloc_memdup(ctx, PyBytes_AsString(py_data), data.length);
if (!data.data) {
talloc_free(ctx);
return PyErr_NoMemory();
}
key = (gnutls_datum_t) {
.data = (uint8_t *)PyBytes_AsString(py_key),
.size = PyBytes_Size(py_key),
};
rc = gnutls_cipher_init(&cipher_hnd,
GNUTLS_CIPHER_ARCFOUR_128,
&key,
NULL);
if (rc < 0) {
talloc_free(ctx);
PyErr_Format(PyExc_OSError, "encryption failed");
return NULL;
}
rc = gnutls_cipher_encrypt(cipher_hnd,
data.data,
data.length);
gnutls_cipher_deinit(cipher_hnd);
if (rc < 0) {
talloc_free(ctx);
PyErr_Format(PyExc_OSError, "encryption failed");
return NULL;
}
result = PyBytes_FromStringAndSize((const char*) data.data, data.length);
talloc_free(ctx);
return result;
}
static PyObject *py_crypto_set_relax_mode(PyObject *module)
{
GNUTLS_FIPS140_SET_LAX_MODE();
Py_RETURN_NONE;
}
static PyObject *py_crypto_set_strict_mode(PyObject *module)
{
GNUTLS_FIPS140_SET_STRICT_MODE();
Py_RETURN_NONE;
}
static PyObject *py_crypto_des_crypt_blob_16(PyObject *self, PyObject *args)
{
PyObject *py_data = NULL;
uint8_t *data = NULL;
Py_ssize_t data_size;
PyObject *py_key = NULL;
uint8_t *key = NULL;
Py_ssize_t key_size;
uint8_t result[16];
bool ok;
int ret;
ok = PyArg_ParseTuple(args, "SS",
&py_data, &py_key);
if (!ok) {
return NULL;
}
ret = PyBytes_AsStringAndSize(py_data,
(char **)&data,
&data_size);
if (ret != 0) {
return NULL;
}
ret = PyBytes_AsStringAndSize(py_key,
(char **)&key,
&key_size);
if (ret != 0) {
return NULL;
}
if (data_size != 16) {
return PyErr_Format(PyExc_ValueError,
"Expected data size of 16 bytes; got %zd",
data_size);
}
if (key_size != 14) {
return PyErr_Format(PyExc_ValueError,
"Expected key size of 14 bytes; got %zd",
key_size);
}
ret = des_crypt112_16(result, data, key,
SAMBA_GNUTLS_ENCRYPT);
if (ret != 0) {
return PyErr_Format(PyExc_RuntimeError,
"des_crypt112_16() failed: %d",
ret);
}
return PyBytes_FromStringAndSize((const char *)result,
sizeof(result));
}
static PyObject *py_crypto_md4_hash_blob(PyObject *self, PyObject *args)
{
PyObject *py_data = NULL;
uint8_t *data = NULL;
Py_ssize_t data_size;
uint8_t result[16];
bool ok;
int ret;
ok = PyArg_ParseTuple(args, "S",
&py_data);
if (!ok) {
return NULL;
}
ret = PyBytes_AsStringAndSize(py_data,
(char **)&data,
&data_size);
if (ret != 0) {
return NULL;
}
mdfour(result, data, data_size);
return PyBytes_FromStringAndSize((const char *)result,
sizeof(result));
}
static const char py_crypto_arcfour_crypt_blob_doc[] = "arcfour_crypt_blob(data, key)\n"
"Encrypt the data with RC4 algorithm using the key";
static const char py_crypto_des_crypt_blob_16_doc[] = "des_crypt_blob_16(data, key) -> bytes\n"
"Encrypt the 16-byte data with DES using "
"the 14-byte key";
static const char py_crypto_md4_hash_blob_doc[] = "md4_hash_blob(data) -> bytes\n"
"Hash the data with MD4 algorithm";
static PyMethodDef py_crypto_methods[] = {
{ "arcfour_crypt_blob", (PyCFunction)py_crypto_arcfour_crypt_blob, METH_VARARGS, py_crypto_arcfour_crypt_blob_doc },
{ "set_relax_mode", (PyCFunction)py_crypto_set_relax_mode, METH_NOARGS, "Set fips to relax mode" },
{ "set_strict_mode", (PyCFunction)py_crypto_set_strict_mode, METH_NOARGS, "Set fips to strict mode" },
{ "des_crypt_blob_16", (PyCFunction)py_crypto_des_crypt_blob_16, METH_VARARGS, py_crypto_des_crypt_blob_16_doc },
{ "md4_hash_blob", (PyCFunction)py_crypto_md4_hash_blob, METH_VARARGS, py_crypto_md4_hash_blob_doc },
{0},
};
static struct PyModuleDef moduledef = {
PyModuleDef_HEAD_INIT,
.m_name = "crypto",
.m_doc = "Crypto functions required for SMB",
.m_size = -1,
.m_methods = py_crypto_methods,
};
MODULE_INIT_FUNC(crypto)
{
PyObject *m;
m = PyModule_Create(&moduledef);
if (m == NULL)
return NULL;
return m;
}
View Git Blame Copy Permalink