mirror of
https://github.com/samba-team/samba.git
synced 2025-03-12 20:58:37 +03:00
57c2578cb2
- move routines about a bit between smbencrypt.c and smbdes.c. Ensure that there is no entry point for normal DES operation - add the following comment: This code is NOT a complete DES implementation. It implements only the minimum necessary for SMB authentication, as used by all SMB products (including every copy of Microsoft Windows95 ever sold) In particular, it can only do a unchained forward DES pass. This means it is not possible to use this code for encryption/decryption of data, instead it is only useful as a "hash" algorithm. There is no entry point into this code that allows normal DES operation. I believe this means that this code does not come under ITAR regulations but this is NOT a legal opinion. If you are concerned about the applicability of ITAR regulations to this code then you should confirm it for yourself (and maybe let me know if you come up with a different answer to the one above) (This used to be commit 35b92e725f351c9a9f2846a6b55f71c234f187c7)
112 lines
2.5 KiB
C
112 lines
2.5 KiB
C
/*
|
|
Unix SMB/Netbios implementation.
|
|
Version 1.9.
|
|
SMB parameters and setup
|
|
Copyright (C) Andrew Tridgell 1992-1997
|
|
Modified by Jeremy Allison 1995.
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program; if not, write to the Free Software
|
|
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
|
|
*/
|
|
|
|
#include "includes.h"
|
|
|
|
extern int DEBUGLEVEL;
|
|
|
|
#include "byteorder.h"
|
|
|
|
/*
|
|
This implements the X/Open SMB password encryption
|
|
It takes a password, a 8 byte "crypt key" and puts 24 bytes of
|
|
encrypted password into p24 */
|
|
void SMBencrypt(uchar *passwd, uchar *c8, uchar *p24)
|
|
{
|
|
uchar p14[15], p21[21];
|
|
|
|
memset(p21,'\0',21);
|
|
memset(p14,'\0',14);
|
|
StrnCpy((char *)p14,(char *)passwd,14);
|
|
|
|
strupper((char *)p14);
|
|
E_P16(p14, p21);
|
|
E_P24(p21, c8, p24);
|
|
}
|
|
|
|
/* Routines for Windows NT MD4 Hash functions. */
|
|
static int _my_wcslen(int16 *str)
|
|
{
|
|
int len = 0;
|
|
while(*str++ != 0)
|
|
len++;
|
|
return len;
|
|
}
|
|
|
|
/*
|
|
* Convert a string into an NT UNICODE string.
|
|
* Note that regardless of processor type
|
|
* this must be in intel (little-endian)
|
|
* format.
|
|
*/
|
|
|
|
static int _my_mbstowcs(int16 *dst, uchar *src, int len)
|
|
{
|
|
int i;
|
|
int16 val;
|
|
|
|
for(i = 0; i < len; i++) {
|
|
val = *src;
|
|
SSVAL(dst,0,val);
|
|
dst++;
|
|
src++;
|
|
if(val == 0)
|
|
break;
|
|
}
|
|
return i;
|
|
}
|
|
|
|
/*
|
|
* Creates the MD4 Hash of the users password in NT UNICODE.
|
|
*/
|
|
|
|
void E_md4hash(uchar *passwd, uchar *p16)
|
|
{
|
|
int len;
|
|
int16 wpwd[129];
|
|
|
|
/* Password cannot be longer than 128 characters */
|
|
len = strlen((char *)passwd);
|
|
if(len > 128)
|
|
len = 128;
|
|
/* Password must be converted to NT unicode */
|
|
_my_mbstowcs(wpwd, passwd, len);
|
|
wpwd[len] = 0; /* Ensure string is null terminated */
|
|
/* Calculate length in bytes */
|
|
len = _my_wcslen(wpwd) * sizeof(int16);
|
|
|
|
mdfour(p16, (unsigned char *)wpwd, len);
|
|
}
|
|
|
|
/* Does the NT MD4 hash then des encryption. */
|
|
|
|
void SMBNTencrypt(uchar *passwd, uchar *c8, uchar *p24)
|
|
{
|
|
uchar p21[21];
|
|
|
|
memset(p21,'\0',21);
|
|
|
|
E_md4hash(passwd, p21);
|
|
E_P24(p21, c8, p24);
|
|
}
|
|
|