| blob | dfa355a7ec611f84a9c69a0a12718d3672d7dc17 |
1 /*
2 Unix SMB/CIFS implementation.
3 SMB parameters and setup
4 Copyright (C) Andrew Tridgell 1992-1998
5 Modified by Jeremy Allison 1995.
6 Copyright (C) Jeremy Allison 1995-2000.
7 Copyright (C) Luke Kennethc Casson Leighton 1996-2000.
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 */
27 /*
28 This implements the X/Open SMB password encryption
29 It takes a password ('unix' string), a 8 byte "crypt key"
30 and puts 24 bytes of encrypted password into p24 */
32 {
40 #ifdef DEBUG_PASSWORD
45 #endif
46 }
48 /**
49 * Creates the MD4 Hash of the users password in NT UNICODE.
50 * @param passwd password in 'unix' charset.
51 * @param p16 return password hashed with md4, caller allocated 16 byte buffer
52 */
55 {
59 /* Password must be converted to NT unicode - null terminated. */
61 /* Calculate length in bytes */
66 }
68 /**
69 * Creates the DES forward-only Hash of the users password in DOS ASCII charset
70 * @param passwd password in 'unix' charset.
71 * @param p16 return password hashed with DES, caller allocated 16 byte buffer
72 */
75 {
80 /* Password must be converted to DOS charset - null terminated, uppercase. */
86 }
88 /**
89 * Creates the MD4 and DES (LM) Hash of the users password.
90 * MD4 is of the NT Unicode, DES is of the DOS UPPERCASE password.
91 * @param passwd password in 'unix' charset.
92 * @param nt_p16 return password hashed with md4, caller allocated 16 byte buffer
93 * @param p16 return password hashed with des, caller allocated 16 byte buffer
94 */
96 /* Does both the NT and LM owfs of a user's password */
98 {
99 /* Calculate the MD4 hash (NT compatible) of the password */
103 #ifdef DEBUG_PASSWORD
107 #endif
111 #ifdef DEBUG_PASSWORD
115 #endif
116 }
118 /* Does both the NTLMv2 owfs of a user's password */
121 {
122 pstring user_u;
123 pstring dom_u;
124 HMACMD5Context ctx;
130 push_ucs2(NULL, dom_u, domain_n, (domain_l+1)*2, STR_UNICODE|STR_NOALIGN|STR_TERMINATE|STR_UPPER);
137 #ifdef DEBUG_PASSWORD
143 #endif
144 }
146 /* Does the des encryption from the NT or LM MD4 hash. */
148 {
155 }
157 /* Does the des encryption from the FIRST 8 BYTES of the NT or LM MD4 hash. */
159 {
167 #ifdef DEBUG_PASSWORD
172 #endif
173 }
176 /* Does the NT MD4 hash then des encryption. */
179 {
187 #ifdef DEBUG_PASSWORD
192 #endif
193 }
195 BOOL make_oem_passwd_hash(char data[516], const char *passwd, uchar old_pw_hash[16], BOOL unicode)
196 {
200 {
203 }
205 /*
206 * Now setup the data area.
207 * We need to generate a random fill
208 * for this area to make it harder to
209 * decrypt. JRA.
210 */
216 #ifdef DEBUG_PASSWORD
219 #endif
223 }
225 /* Does the md5 encryption from the NT hash for NTLMv2. */
230 {
231 HMACMD5Context ctx;
238 #ifdef DEBUG_PASSWORD
243 #endif
244 }
248 {
249 HMACMD5Context ctx;
255 #ifdef DEBUG_PASSWORD
258 #endif
259 }
263 {
266 #ifdef DEBUG_PASSWORD
269 #endif
270 }
272 /***********************************************************
273 encode a password buffer. The caller gets to figure out
274 what to put in it.
275 ************************************************************/
277 {
282 /*
283 * The length of the new password is in the last 4 bytes of
284 * the data buffer.
285 */
289 }
291 /***********************************************************
292 decode a password buffer
293 *new_pw_len is the length in bytes of the possibly mulitbyte
294 returned password including termination.
295 ************************************************************/
298 {
301 /*
302 Warning !!! : This function is called from some rpc call.
303 The password IN the buffer is a UNICODE string.
304 The password IN new_pwrd is an ASCII string
305 If you reuse that code somewhere else check first.
306 */
308 /* The length of the new password is in the last 4 bytes of the data buffer. */
312 #ifdef DEBUG_PASSWORD
314 #endif
316 /* Password cannot be longer than 128 characters */
321 }
323 /* decode into the return buffer. Buffer must be a pstring */
324 *new_pw_len = pull_string(NULL, new_pwrd, &in_buffer[512 - byte_len], new_pwrd_size, byte_len, STR_UNICODE);
326 #ifdef DEBUG_PASSWORD
331 #endif
334 }
336 /***********************************************************
337 SMB signing - setup the MAC key.
338 ************************************************************/
341 {
342 /* Get first 16 bytes. */
348 /* These calls are INCONPATIBLE with SMB signing */
352 /* Reset the sequence number in case we had a previous (aborted) attempt */
354 }
356 /***********************************************************
357 SMB signing - calculate a MAC to send.
358 ************************************************************/
361 {
367 }
369 /*
370 * Firstly put the sequence number into the first 4 bytes.
371 * and zero out the next 4 bytes.
372 */
376 /* Calculate the 16 byte MAC and place first 8 bytes into the field. */
386 }