2 Unix SMB/CIFS implementation.
3 Samba memory buffer functions
4 Copyright (C) Andrew Tridgell 1992-1997
5 Copyright (C) Luke Kenneth Casson Leighton 1996-1997
6 Copyright (C) Jeremy Allison 1999
7 Copyright (C) Andrew Bartlett 2003.
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
27 #define DBGC_CLASS DBGC_RPC_PARSE
30 * Dump a prs to a file: from the current location through to the end.
32 void prs_dump(char *name
, int v
, prs_struct
*ps
)
34 prs_dump_region(name
, v
, ps
, ps
->data_offset
, ps
->buffer_size
);
39 * Dump from the start of the prs to the current location.
41 void prs_dump_before(char *name
, int v
, prs_struct
*ps
)
43 prs_dump_region(name
, v
, ps
, 0, ps
->data_offset
);
48 * Dump everything from the start of the prs up to the current location.
50 void prs_dump_region(char *name
, int v
, prs_struct
*ps
,
51 int from_off
, int to_off
)
55 if (DEBUGLEVEL
< 50) return;
58 slprintf(fname
,sizeof(fname
)-1, "/tmp/%s_%d.%d.prs", name
, v
, i
);
60 slprintf(fname
,sizeof(fname
)-1, "/tmp/%s.%d.prs", name
, i
);
62 fd
= open(fname
, O_WRONLY
|O_CREAT
|O_EXCL
, 0644);
63 if (fd
!= -1 || errno
!= EEXIST
) break;
66 write(fd
, ps
->data_p
+ from_off
, to_off
- from_off
);
68 DEBUG(0,("created %s\n", fname
));
74 /*******************************************************************
75 debug output for parsing info.
77 XXXX side-effect of this function is to increase the debug depth XXXX
79 ********************************************************************/
80 void prs_debug(prs_struct
*ps
, int depth
, const char *desc
, const char *fn_name
)
82 DEBUG(5+depth
, ("%s%06x %s %s\n", tab_depth(depth
), ps
->data_offset
, fn_name
, desc
));
87 * Initialise an expandable parse structure.
89 * @param size Initial buffer size. If >0, a new buffer will be
90 * created with malloc().
92 * @return False if allocation fails, otherwise True.
94 BOOL
prs_init(prs_struct
*ps
, uint32 size
, TALLOC_CTX
*ctx
, BOOL io
)
98 ps
->bigendian_data
= RPC_LITTLE_ENDIAN
;
99 ps
->align
= RPC_PARSE_ALIGN
;
100 ps
->is_dynamic
= False
;
107 ps
->buffer_size
= size
;
108 if((ps
->data_p
= (char *)SMB_MALLOC((size_t)size
)) == NULL
) {
109 DEBUG(0,("prs_init: malloc fail for %u bytes.\n", (unsigned int)size
));
112 memset(ps
->data_p
, '\0', (size_t)size
);
113 ps
->is_dynamic
= True
; /* We own this memory. */
119 /*******************************************************************
120 Delete the memory in a parse structure - if we own it.
121 ********************************************************************/
123 void prs_mem_free(prs_struct
*ps
)
126 SAFE_FREE(ps
->data_p
);
127 ps
->is_dynamic
= False
;
132 /*******************************************************************
133 Clear the memory in a parse structure.
134 ********************************************************************/
136 void prs_mem_clear(prs_struct
*ps
)
139 memset(ps
->data_p
, '\0', (size_t)ps
->buffer_size
);
142 /*******************************************************************
143 Allocate memory when unmarshalling... Always zero clears.
144 ********************************************************************/
146 #if defined(PARANOID_MALLOC_CHECKER)
147 char *prs_alloc_mem_(prs_struct
*ps
, size_t size
, unsigned int count
)
149 char *prs_alloc_mem(prs_struct
*ps
, size_t size
, unsigned int count
)
155 /* We can't call the type-safe version here. */
156 ret
= _talloc_zero_array(ps
->mem_ctx
, size
, count
, "parse_prs");
161 /*******************************************************************
162 Return the current talloc context we're using.
163 ********************************************************************/
165 TALLOC_CTX
*prs_get_mem_context(prs_struct
*ps
)
170 /*******************************************************************
171 Hand some already allocated memory to a prs_struct.
172 ********************************************************************/
174 void prs_give_memory(prs_struct
*ps
, char *buf
, uint32 size
, BOOL is_dynamic
)
176 ps
->is_dynamic
= is_dynamic
;
178 ps
->buffer_size
= size
;
181 /*******************************************************************
182 Take some memory back from a prs_struct.
183 ********************************************************************/
185 char *prs_take_memory(prs_struct
*ps
, uint32
*psize
)
187 char *ret
= ps
->data_p
;
189 *psize
= ps
->buffer_size
;
190 ps
->is_dynamic
= False
;
195 /*******************************************************************
196 Set a prs_struct to exactly a given size. Will grow or tuncate if neccessary.
197 ********************************************************************/
199 BOOL
prs_set_buffer_size(prs_struct
*ps
, uint32 newsize
)
201 if (newsize
> ps
->buffer_size
)
202 return prs_force_grow(ps
, newsize
- ps
->buffer_size
);
204 if (newsize
< ps
->buffer_size
) {
205 char *new_data_p
= SMB_REALLOC(ps
->data_p
, newsize
);
206 /* if newsize is zero, Realloc acts like free() & returns NULL*/
207 if (new_data_p
== NULL
&& newsize
!= 0) {
208 DEBUG(0,("prs_set_buffer_size: Realloc failure for size %u.\n",
209 (unsigned int)newsize
));
210 DEBUG(0,("prs_set_buffer_size: Reason %s\n",strerror(errno
)));
213 ps
->data_p
= new_data_p
;
214 ps
->buffer_size
= newsize
;
220 /*******************************************************************
221 Attempt, if needed, to grow a data buffer.
222 Also depends on the data stream mode (io).
223 ********************************************************************/
225 BOOL
prs_grow(prs_struct
*ps
, uint32 extra_space
)
230 ps
->grow_size
= MAX(ps
->grow_size
, ps
->data_offset
+ extra_space
);
232 if(ps
->data_offset
+ extra_space
<= ps
->buffer_size
)
236 * We cannot grow the buffer if we're not reading
237 * into the prs_struct, or if we don't own the memory.
240 if(UNMARSHALLING(ps
) || !ps
->is_dynamic
) {
241 DEBUG(0,("prs_grow: Buffer overflow - unable to expand buffer by %u bytes.\n",
242 (unsigned int)extra_space
));
247 * Decide how much extra space we really need.
250 extra_space
-= (ps
->buffer_size
- ps
->data_offset
);
251 if(ps
->buffer_size
== 0) {
253 * Ensure we have at least a PDU's length, or extra_space, whichever
257 new_size
= MAX(MAX_PDU_FRAG_LEN
,extra_space
);
259 if((new_data
= SMB_MALLOC(new_size
)) == NULL
) {
260 DEBUG(0,("prs_grow: Malloc failure for size %u.\n", (unsigned int)new_size
));
263 memset(new_data
, '\0', (size_t)new_size
);
266 * If the current buffer size is bigger than the space needed, just
267 * double it, else add extra_space.
269 new_size
= MAX(ps
->buffer_size
*2, ps
->buffer_size
+ extra_space
);
271 if ((new_data
= SMB_REALLOC(ps
->data_p
, new_size
)) == NULL
) {
272 DEBUG(0,("prs_grow: Realloc failure for size %u.\n",
273 (unsigned int)new_size
));
277 memset(&new_data
[ps
->buffer_size
], '\0', (size_t)(new_size
- ps
->buffer_size
));
279 ps
->buffer_size
= new_size
;
280 ps
->data_p
= new_data
;
285 /*******************************************************************
286 Attempt to force a data buffer to grow by len bytes.
287 This is only used when appending more data onto a prs_struct
288 when reading an rpc reply, before unmarshalling it.
289 ********************************************************************/
291 BOOL
prs_force_grow(prs_struct
*ps
, uint32 extra_space
)
293 uint32 new_size
= ps
->buffer_size
+ extra_space
;
296 if(!UNMARSHALLING(ps
) || !ps
->is_dynamic
) {
297 DEBUG(0,("prs_force_grow: Buffer overflow - unable to expand buffer by %u bytes.\n",
298 (unsigned int)extra_space
));
302 if((new_data
= SMB_REALLOC(ps
->data_p
, new_size
)) == NULL
) {
303 DEBUG(0,("prs_force_grow: Realloc failure for size %u.\n",
304 (unsigned int)new_size
));
308 memset(&new_data
[ps
->buffer_size
], '\0', (size_t)(new_size
- ps
->buffer_size
));
310 ps
->buffer_size
= new_size
;
311 ps
->data_p
= new_data
;
316 /*******************************************************************
317 Get the data pointer (external interface).
318 ********************************************************************/
320 char *prs_data_p(prs_struct
*ps
)
325 /*******************************************************************
326 Get the current data size (external interface).
327 ********************************************************************/
329 uint32
prs_data_size(prs_struct
*ps
)
331 return ps
->buffer_size
;
334 /*******************************************************************
335 Fetch the current offset (external interface).
336 ********************************************************************/
338 uint32
prs_offset(prs_struct
*ps
)
340 return ps
->data_offset
;
343 /*******************************************************************
344 Set the current offset (external interface).
345 ********************************************************************/
347 BOOL
prs_set_offset(prs_struct
*ps
, uint32 offset
)
349 if(offset
<= ps
->data_offset
) {
350 ps
->data_offset
= offset
;
354 if(!prs_grow(ps
, offset
- ps
->data_offset
))
357 ps
->data_offset
= offset
;
361 /*******************************************************************
362 Append the data from one parse_struct into another.
363 ********************************************************************/
365 BOOL
prs_append_prs_data(prs_struct
*dst
, prs_struct
*src
)
367 if (prs_offset(src
) == 0)
370 if(!prs_grow(dst
, prs_offset(src
)))
373 memcpy(&dst
->data_p
[dst
->data_offset
], src
->data_p
, (size_t)prs_offset(src
));
374 dst
->data_offset
+= prs_offset(src
);
379 /*******************************************************************
380 Append some data from one parse_struct into another.
381 ********************************************************************/
383 BOOL
prs_append_some_prs_data(prs_struct
*dst
, prs_struct
*src
, int32 start
, uint32 len
)
388 if(!prs_grow(dst
, len
))
391 memcpy(&dst
->data_p
[dst
->data_offset
], src
->data_p
+ start
, (size_t)len
);
392 dst
->data_offset
+= len
;
397 /*******************************************************************
398 Append the data from a buffer into a parse_struct.
399 ********************************************************************/
401 BOOL
prs_copy_data_in(prs_struct
*dst
, char *src
, uint32 len
)
406 if(!prs_grow(dst
, len
))
409 memcpy(&dst
->data_p
[dst
->data_offset
], src
, (size_t)len
);
410 dst
->data_offset
+= len
;
415 /*******************************************************************
416 Copy some data from a parse_struct into a buffer.
417 ********************************************************************/
419 BOOL
prs_copy_data_out(char *dst
, prs_struct
*src
, uint32 len
)
424 if(!prs_mem_get(src
, len
))
427 memcpy(dst
, &src
->data_p
[src
->data_offset
], (size_t)len
);
428 src
->data_offset
+= len
;
433 /*******************************************************************
434 Copy all the data from a parse_struct into a buffer.
435 ********************************************************************/
437 BOOL
prs_copy_all_data_out(char *dst
, prs_struct
*src
)
439 uint32 len
= prs_offset(src
);
444 prs_set_offset(src
, 0);
445 return prs_copy_data_out(dst
, src
, len
);
448 /*******************************************************************
449 Set the data as X-endian (external interface).
450 ********************************************************************/
452 void prs_set_endian_data(prs_struct
*ps
, BOOL endian
)
454 ps
->bigendian_data
= endian
;
457 /*******************************************************************
458 Align a the data_len to a multiple of align bytes - filling with
460 ********************************************************************/
462 BOOL
prs_align(prs_struct
*ps
)
464 uint32 mod
= ps
->data_offset
& (ps
->align
-1);
466 if (ps
->align
!= 0 && mod
!= 0) {
467 uint32 extra_space
= (ps
->align
- mod
);
468 if(!prs_grow(ps
, extra_space
))
470 memset(&ps
->data_p
[ps
->data_offset
], '\0', (size_t)extra_space
);
471 ps
->data_offset
+= extra_space
;
477 /******************************************************************
478 Align on a 2 byte boundary
479 *****************************************************************/
481 BOOL
prs_align_uint16(prs_struct
*ps
)
484 uint8 old_align
= ps
->align
;
488 ps
->align
= old_align
;
493 /******************************************************************
494 Align on a 8 byte boundary
495 *****************************************************************/
497 BOOL
prs_align_uint64(prs_struct
*ps
)
500 uint8 old_align
= ps
->align
;
504 ps
->align
= old_align
;
509 /*******************************************************************
510 Align only if required (for the unistr2 string mainly)
511 ********************************************************************/
513 BOOL
prs_align_needed(prs_struct
*ps
, uint32 needed
)
518 return prs_align(ps
);
521 /*******************************************************************
522 Ensure we can read/write to a given offset.
523 ********************************************************************/
525 char *prs_mem_get(prs_struct
*ps
, uint32 extra_size
)
527 if(UNMARSHALLING(ps
)) {
529 * If reading, ensure that we can read the requested size item.
531 if (ps
->data_offset
+ extra_size
> ps
->buffer_size
) {
532 DEBUG(0,("prs_mem_get: reading data of size %u would overrun "
533 "buffer by %u bytes.\n",
534 (unsigned int)extra_size
,
535 (unsigned int)(ps
->data_offset
+ extra_size
- ps
->buffer_size
) ));
540 * Writing - grow the buffer if needed.
542 if(!prs_grow(ps
, extra_size
))
545 return &ps
->data_p
[ps
->data_offset
];
548 /*******************************************************************
549 Change the struct type.
550 ********************************************************************/
552 void prs_switch_type(prs_struct
*ps
, BOOL io
)
554 if ((ps
->io
^ io
) == True
)
558 /*******************************************************************
559 Force a prs_struct to be dynamic even when it's size is 0.
560 ********************************************************************/
562 void prs_force_dynamic(prs_struct
*ps
)
567 /*******************************************************************
569 ********************************************************************/
571 BOOL
prs_uint8(const char *name
, prs_struct
*ps
, int depth
, uint8
*data8
)
573 char *q
= prs_mem_get(ps
, 1);
577 if (UNMARSHALLING(ps
))
582 DEBUG(5,("%s%04x %s: %02x\n", tab_depth(depth
), ps
->data_offset
, name
, *data8
));
584 ps
->data_offset
+= 1;
589 /*******************************************************************
590 Stream a uint16* (allocate memory if unmarshalling)
591 ********************************************************************/
593 BOOL
prs_pointer( const char *name
, prs_struct
*ps
, int depth
,
594 void **data
, size_t data_size
,
595 BOOL(*prs_fn
)(const char*, prs_struct
*, int, void*) )
599 /* caputure the pointer value to stream */
601 data_p
= (uint32
) *data
;
603 if ( !prs_uint32("ptr", ps
, depth
, &data_p
))
606 /* we're done if there is no data */
611 if (UNMARSHALLING(ps
)) {
612 if ( !(*data
= PRS_ALLOC_MEM_VOID(ps
, data_size
)) )
616 return prs_fn(name
, ps
, depth
, *data
);
620 /*******************************************************************
622 ********************************************************************/
624 BOOL
prs_uint16(const char *name
, prs_struct
*ps
, int depth
, uint16
*data16
)
626 char *q
= prs_mem_get(ps
, sizeof(uint16
));
630 if (UNMARSHALLING(ps
)) {
631 if (ps
->bigendian_data
)
632 *data16
= RSVAL(q
,0);
636 if (ps
->bigendian_data
)
642 DEBUG(5,("%s%04x %s: %04x\n", tab_depth(depth
), ps
->data_offset
, name
, *data16
));
644 ps
->data_offset
+= sizeof(uint16
);
649 /*******************************************************************
651 ********************************************************************/
653 BOOL
prs_uint32(const char *name
, prs_struct
*ps
, int depth
, uint32
*data32
)
655 char *q
= prs_mem_get(ps
, sizeof(uint32
));
659 if (UNMARSHALLING(ps
)) {
660 if (ps
->bigendian_data
)
661 *data32
= RIVAL(q
,0);
665 if (ps
->bigendian_data
)
671 DEBUG(5,("%s%04x %s: %08x\n", tab_depth(depth
), ps
->data_offset
, name
, *data32
));
673 ps
->data_offset
+= sizeof(uint32
);
678 /*******************************************************************
680 ********************************************************************/
682 BOOL
prs_ntstatus(const char *name
, prs_struct
*ps
, int depth
, NTSTATUS
*status
)
684 char *q
= prs_mem_get(ps
, sizeof(uint32
));
688 if (UNMARSHALLING(ps
)) {
689 if (ps
->bigendian_data
)
690 *status
= NT_STATUS(RIVAL(q
,0));
692 *status
= NT_STATUS(IVAL(q
,0));
694 if (ps
->bigendian_data
)
695 RSIVAL(q
,0,NT_STATUS_V(*status
));
697 SIVAL(q
,0,NT_STATUS_V(*status
));
700 DEBUG(5,("%s%04x %s: %s\n", tab_depth(depth
), ps
->data_offset
, name
,
701 nt_errstr(*status
)));
703 ps
->data_offset
+= sizeof(uint32
);
708 /*******************************************************************
710 ********************************************************************/
712 BOOL
prs_werror(const char *name
, prs_struct
*ps
, int depth
, WERROR
*status
)
714 char *q
= prs_mem_get(ps
, sizeof(uint32
));
718 if (UNMARSHALLING(ps
)) {
719 if (ps
->bigendian_data
)
720 *status
= W_ERROR(RIVAL(q
,0));
722 *status
= W_ERROR(IVAL(q
,0));
724 if (ps
->bigendian_data
)
725 RSIVAL(q
,0,W_ERROR_V(*status
));
727 SIVAL(q
,0,W_ERROR_V(*status
));
730 DEBUG(5,("%s%04x %s: %s\n", tab_depth(depth
), ps
->data_offset
, name
,
731 dos_errstr(*status
)));
733 ps
->data_offset
+= sizeof(uint32
);
739 /******************************************************************
740 Stream an array of uint8s. Length is number of uint8s.
741 ********************************************************************/
743 BOOL
prs_uint8s(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, uint8
*data8s
, int len
)
746 char *q
= prs_mem_get(ps
, len
);
750 if (UNMARSHALLING(ps
)) {
751 for (i
= 0; i
< len
; i
++)
752 data8s
[i
] = CVAL(q
,i
);
754 for (i
= 0; i
< len
; i
++)
755 SCVAL(q
, i
, data8s
[i
]);
758 DEBUG(5,("%s%04x %s: ", tab_depth(depth
), ps
->data_offset
,name
));
760 print_asc(5, (unsigned char*)data8s
, len
);
762 for (i
= 0; i
< len
; i
++)
763 DEBUG(5,("%02x ", data8s
[i
]));
767 ps
->data_offset
+= len
;
772 /******************************************************************
773 Stream an array of uint16s. Length is number of uint16s.
774 ********************************************************************/
776 BOOL
prs_uint16s(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, uint16
*data16s
, int len
)
779 char *q
= prs_mem_get(ps
, len
* sizeof(uint16
));
783 if (UNMARSHALLING(ps
)) {
784 if (ps
->bigendian_data
) {
785 for (i
= 0; i
< len
; i
++)
786 data16s
[i
] = RSVAL(q
, 2*i
);
788 for (i
= 0; i
< len
; i
++)
789 data16s
[i
] = SVAL(q
, 2*i
);
792 if (ps
->bigendian_data
) {
793 for (i
= 0; i
< len
; i
++)
794 RSSVAL(q
, 2*i
, data16s
[i
]);
796 for (i
= 0; i
< len
; i
++)
797 SSVAL(q
, 2*i
, data16s
[i
]);
801 DEBUG(5,("%s%04x %s: ", tab_depth(depth
), ps
->data_offset
, name
));
803 print_asc(5, (unsigned char*)data16s
, 2*len
);
805 for (i
= 0; i
< len
; i
++)
806 DEBUG(5,("%04x ", data16s
[i
]));
810 ps
->data_offset
+= (len
* sizeof(uint16
));
815 /******************************************************************
816 Start using a function for streaming unicode chars. If unmarshalling,
817 output must be little-endian, if marshalling, input must be little-endian.
818 ********************************************************************/
820 static void dbg_rw_punival(BOOL charmode
, const char *name
, int depth
, prs_struct
*ps
,
821 char *in_buf
, char *out_buf
, int len
)
825 if (UNMARSHALLING(ps
)) {
826 if (ps
->bigendian_data
) {
827 for (i
= 0; i
< len
; i
++)
828 SSVAL(out_buf
,2*i
,RSVAL(in_buf
, 2*i
));
830 for (i
= 0; i
< len
; i
++)
831 SSVAL(out_buf
, 2*i
, SVAL(in_buf
, 2*i
));
834 if (ps
->bigendian_data
) {
835 for (i
= 0; i
< len
; i
++)
836 RSSVAL(in_buf
, 2*i
, SVAL(out_buf
,2*i
));
838 for (i
= 0; i
< len
; i
++)
839 SSVAL(in_buf
, 2*i
, SVAL(out_buf
,2*i
));
843 DEBUG(5,("%s%04x %s: ", tab_depth(depth
), ps
->data_offset
, name
));
845 print_asc(5, (unsigned char*)out_buf
, 2*len
);
847 for (i
= 0; i
< len
; i
++)
848 DEBUG(5,("%04x ", out_buf
[i
]));
853 /******************************************************************
854 Stream a unistr. Always little endian.
855 ********************************************************************/
857 BOOL
prs_uint16uni(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, uint16
*data16s
, int len
)
859 char *q
= prs_mem_get(ps
, len
* sizeof(uint16
));
863 dbg_rw_punival(charmode
, name
, depth
, ps
, q
, (char *)data16s
, len
);
864 ps
->data_offset
+= (len
* sizeof(uint16
));
869 /******************************************************************
870 Stream an array of uint32s. Length is number of uint32s.
871 ********************************************************************/
873 BOOL
prs_uint32s(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, uint32
*data32s
, int len
)
876 char *q
= prs_mem_get(ps
, len
* sizeof(uint32
));
880 if (UNMARSHALLING(ps
)) {
881 if (ps
->bigendian_data
) {
882 for (i
= 0; i
< len
; i
++)
883 data32s
[i
] = RIVAL(q
, 4*i
);
885 for (i
= 0; i
< len
; i
++)
886 data32s
[i
] = IVAL(q
, 4*i
);
889 if (ps
->bigendian_data
) {
890 for (i
= 0; i
< len
; i
++)
891 RSIVAL(q
, 4*i
, data32s
[i
]);
893 for (i
= 0; i
< len
; i
++)
894 SIVAL(q
, 4*i
, data32s
[i
]);
898 DEBUG(5,("%s%04x %s: ", tab_depth(depth
), ps
->data_offset
, name
));
900 print_asc(5, (unsigned char*)data32s
, 4*len
);
902 for (i
= 0; i
< len
; i
++)
903 DEBUG(5,("%08x ", data32s
[i
]));
907 ps
->data_offset
+= (len
* sizeof(uint32
));
912 /******************************************************************
913 Stream an array of unicode string, length/buffer specified separately,
914 in uint16 chars. The unicode string is already in little-endian format.
915 ********************************************************************/
917 BOOL
prs_buffer5(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, BUFFER5
*str
)
920 char *q
= prs_mem_get(ps
, str
->buf_len
* sizeof(uint16
));
924 if (UNMARSHALLING(ps
)) {
925 str
->buffer
= PRS_ALLOC_MEM(ps
,uint16
,str
->buf_len
);
926 if (str
->buffer
== NULL
)
930 /* If the string is empty, we don't have anything to stream */
934 p
= (char *)str
->buffer
;
936 dbg_rw_punival(charmode
, name
, depth
, ps
, q
, p
, str
->buf_len
);
938 ps
->data_offset
+= (str
->buf_len
* sizeof(uint16
));
943 /******************************************************************
944 Stream a "not" unicode string, length/buffer specified separately,
945 in byte chars. String is in little-endian format.
946 ********************************************************************/
948 BOOL
prs_regval_buffer(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, REGVAL_BUFFER
*buf
)
951 char *q
= prs_mem_get(ps
, buf
->buf_len
);
955 if (UNMARSHALLING(ps
)) {
956 if (buf
->buf_len
> buf
->buf_max_len
) {
959 if ( buf
->buf_max_len
) {
960 buf
->buffer
= PRS_ALLOC_MEM(ps
, uint16
, buf
->buf_max_len
);
961 if ( buf
->buffer
== NULL
)
966 p
= (char *)buf
->buffer
;
968 dbg_rw_punival(charmode
, name
, depth
, ps
, q
, p
, buf
->buf_len
/2);
969 ps
->data_offset
+= buf
->buf_len
;
974 /******************************************************************
975 Stream a string, length/buffer specified separately,
977 ********************************************************************/
979 BOOL
prs_string2(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, STRING2
*str
)
982 char *q
= prs_mem_get(ps
, str
->str_str_len
);
986 if (UNMARSHALLING(ps
)) {
987 if (str
->str_str_len
> str
->str_max_len
) {
990 str
->buffer
= PRS_ALLOC_MEM(ps
,unsigned char, str
->str_max_len
);
991 if (str
->buffer
== NULL
)
995 if (UNMARSHALLING(ps
)) {
996 for (i
= 0; i
< str
->str_str_len
; i
++)
997 str
->buffer
[i
] = CVAL(q
,i
);
999 for (i
= 0; i
< str
->str_str_len
; i
++)
1000 SCVAL(q
, i
, str
->buffer
[i
]);
1003 DEBUG(5,("%s%04x %s: ", tab_depth(depth
), ps
->data_offset
, name
));
1005 print_asc(5, (unsigned char*)str
->buffer
, str
->str_str_len
);
1007 for (i
= 0; i
< str
->str_str_len
; i
++)
1008 DEBUG(5,("%02x ", str
->buffer
[i
]));
1012 ps
->data_offset
+= str
->str_str_len
;
1017 /******************************************************************
1018 Stream a unicode string, length/buffer specified separately,
1019 in uint16 chars. The unicode string is already in little-endian format.
1020 ********************************************************************/
1022 BOOL
prs_unistr2(BOOL charmode
, const char *name
, prs_struct
*ps
, int depth
, UNISTR2
*str
)
1025 char *q
= prs_mem_get(ps
, str
->uni_str_len
* sizeof(uint16
));
1029 /* If the string is empty, we don't have anything to stream */
1030 if (str
->uni_str_len
==0)
1033 if (UNMARSHALLING(ps
)) {
1034 if (str
->uni_str_len
> str
->uni_max_len
) {
1037 str
->buffer
= PRS_ALLOC_MEM(ps
,uint16
,str
->uni_max_len
);
1038 if (str
->buffer
== NULL
)
1042 p
= (char *)str
->buffer
;
1044 dbg_rw_punival(charmode
, name
, depth
, ps
, q
, p
, str
->uni_str_len
);
1046 ps
->data_offset
+= (str
->uni_str_len
* sizeof(uint16
));
1051 /******************************************************************
1052 Stream a unicode string, length/buffer specified separately,
1053 in uint16 chars. The unicode string is already in little-endian format.
1054 ********************************************************************/
1056 BOOL
prs_unistr3(BOOL charmode
, const char *name
, UNISTR3
*str
, prs_struct
*ps
, int depth
)
1059 char *q
= prs_mem_get(ps
, str
->uni_str_len
* sizeof(uint16
));
1063 if (UNMARSHALLING(ps
)) {
1064 str
->str
.buffer
= PRS_ALLOC_MEM(ps
,uint16
,str
->uni_str_len
);
1065 if (str
->str
.buffer
== NULL
)
1069 p
= (char *)str
->str
.buffer
;
1071 dbg_rw_punival(charmode
, name
, depth
, ps
, q
, p
, str
->uni_str_len
);
1072 ps
->data_offset
+= (str
->uni_str_len
* sizeof(uint16
));
1077 /*******************************************************************
1078 Stream a unicode null-terminated string. As the string is already
1079 in little-endian format then do it as a stream of bytes.
1080 ********************************************************************/
1082 BOOL
prs_unistr(const char *name
, prs_struct
*ps
, int depth
, UNISTR
*str
)
1084 unsigned int len
= 0;
1085 unsigned char *p
= (unsigned char *)str
->buffer
;
1091 if (MARSHALLING(ps
)) {
1093 for(len
= 0; str
->buffer
[len
] != 0; len
++)
1096 q
= prs_mem_get(ps
, (len
+1)*2);
1102 for(len
= 0; str
->buffer
[len
] != 0; len
++) {
1103 if(ps
->bigendian_data
) {
1104 /* swap bytes - p is little endian, q is big endian. */
1120 * even if the string is 'empty' (only an \0 char)
1121 * at this point the leading \0 hasn't been parsed.
1131 DEBUG(5,("%s%04x %s: ", tab_depth(depth
), ps
->data_offset
, name
));
1132 print_asc(5, (unsigned char*)start
, 2*len
);
1135 else { /* unmarshalling */
1137 uint32 alloc_len
= 0;
1138 q
= ps
->data_p
+ prs_offset(ps
);
1141 * Work out how much space we need and talloc it.
1143 max_len
= (ps
->buffer_size
- ps
->data_offset
)/sizeof(uint16
);
1145 /* the test of the value of *ptr helps to catch the circumstance
1146 where we have an emtpty (non-existent) string in the buffer */
1147 for ( ptr
= (uint16
*)q
; *ptr
++ && (alloc_len
<= max_len
); alloc_len
++)
1151 if (alloc_len
< max_len
)
1154 /* should we allocate anything at all? */
1155 str
->buffer
= PRS_ALLOC_MEM(ps
,uint16
,alloc_len
);
1156 if ((str
->buffer
== NULL
) && (alloc_len
> 0))
1159 p
= (unsigned char *)str
->buffer
;
1162 /* the (len < alloc_len) test is to prevent us from overwriting
1163 memory that is not ours...if we get that far, we have a non-null
1164 terminated string in the buffer and have messed up somewhere */
1165 while ((len
< alloc_len
) && (*(uint16
*)q
!= 0)) {
1166 if(ps
->bigendian_data
)
1168 /* swap bytes - q is big endian, p is little endian. */
1169 p
[0] = (unsigned char)q
[1];
1170 p
[1] = (unsigned char)q
[0];
1175 p
[0] = (unsigned char)q
[0];
1176 p
[1] = (unsigned char)q
[1];
1183 if (len
< alloc_len
) {
1184 /* NULL terminate the UNISTR */
1185 str
->buffer
[len
++] = '\0';
1188 DEBUG(5,("%s%04x %s: ", tab_depth(depth
), ps
->data_offset
, name
));
1189 print_asc(5, (unsigned char*)str
->buffer
, 2*len
);
1193 /* set the offset in the prs_struct; 'len' points to the
1194 terminiating NULL in the UNISTR so we need to go one more
1196 ps
->data_offset
+= (len
)*2;
1202 /*******************************************************************
1203 Stream a null-terminated string. len is strlen, and therefore does
1204 not include the null-termination character.
1205 ********************************************************************/
1207 BOOL
prs_string(const char *name
, prs_struct
*ps
, int depth
, char *str
, int max_buf_size
)
1213 if (UNMARSHALLING(ps
))
1214 len
= strlen(&ps
->data_p
[ps
->data_offset
]);
1218 len
= MIN(len
, (max_buf_size
-1));
1220 q
= prs_mem_get(ps
, len
+1);
1224 for(i
= 0; i
< len
; i
++) {
1225 if (UNMARSHALLING(ps
))
1231 /* The terminating null. */
1234 if (MARSHALLING(ps
)) {
1238 ps
->data_offset
+= len
+1;
1240 dump_data(5+depth
, q
, len
);
1245 BOOL
prs_string_alloc(const char *name
, prs_struct
*ps
, int depth
,
1251 if (UNMARSHALLING(ps
))
1252 len
= strlen(&ps
->data_p
[ps
->data_offset
]);
1256 tmp_str
= PRS_ALLOC_MEM(ps
, char, len
+1);
1258 if (tmp_str
== NULL
)
1261 if (MARSHALLING(ps
))
1262 strncpy(tmp_str
, *str
, len
);
1264 if (!prs_string(name
, ps
, depth
, tmp_str
, len
+1))
1271 /*******************************************************************
1272 prs_uint16 wrapper. Call this and it sets up a pointer to where the
1273 uint16 should be stored, or gets the size if reading.
1274 ********************************************************************/
1276 BOOL
prs_uint16_pre(const char *name
, prs_struct
*ps
, int depth
, uint16
*data16
, uint32
*offset
)
1278 *offset
= ps
->data_offset
;
1279 if (UNMARSHALLING(ps
)) {
1281 return prs_uint16(name
, ps
, depth
, data16
);
1283 char *q
= prs_mem_get(ps
, sizeof(uint16
));
1286 ps
->data_offset
+= sizeof(uint16
);
1291 /*******************************************************************
1292 prs_uint16 wrapper. call this and it retrospectively stores the size.
1293 does nothing on reading, as that is already handled by ...._pre()
1294 ********************************************************************/
1296 BOOL
prs_uint16_post(const char *name
, prs_struct
*ps
, int depth
, uint16
*data16
,
1297 uint32 ptr_uint16
, uint32 start_offset
)
1299 if (MARSHALLING(ps
)) {
1301 * Writing - temporarily move the offset pointer.
1303 uint16 data_size
= ps
->data_offset
- start_offset
;
1304 uint32 old_offset
= ps
->data_offset
;
1306 ps
->data_offset
= ptr_uint16
;
1307 if(!prs_uint16(name
, ps
, depth
, &data_size
)) {
1308 ps
->data_offset
= old_offset
;
1311 ps
->data_offset
= old_offset
;
1313 ps
->data_offset
= start_offset
+ (uint32
)(*data16
);
1318 /*******************************************************************
1319 prs_uint32 wrapper. Call this and it sets up a pointer to where the
1320 uint32 should be stored, or gets the size if reading.
1321 ********************************************************************/
1323 BOOL
prs_uint32_pre(const char *name
, prs_struct
*ps
, int depth
, uint32
*data32
, uint32
*offset
)
1325 *offset
= ps
->data_offset
;
1326 if (UNMARSHALLING(ps
) && (data32
!= NULL
)) {
1328 return prs_uint32(name
, ps
, depth
, data32
);
1330 ps
->data_offset
+= sizeof(uint32
);
1335 /*******************************************************************
1336 prs_uint32 wrapper. call this and it retrospectively stores the size.
1337 does nothing on reading, as that is already handled by ...._pre()
1338 ********************************************************************/
1340 BOOL
prs_uint32_post(const char *name
, prs_struct
*ps
, int depth
, uint32
*data32
,
1341 uint32 ptr_uint32
, uint32 data_size
)
1343 if (MARSHALLING(ps
)) {
1345 * Writing - temporarily move the offset pointer.
1347 uint32 old_offset
= ps
->data_offset
;
1348 ps
->data_offset
= ptr_uint32
;
1349 if(!prs_uint32(name
, ps
, depth
, &data_size
)) {
1350 ps
->data_offset
= old_offset
;
1353 ps
->data_offset
= old_offset
;
1358 /* useful function to store a structure in rpc wire format */
1359 int tdb_prs_store(TDB_CONTEXT
*tdb
, char *keystr
, prs_struct
*ps
)
1361 TDB_DATA kbuf
, dbuf
;
1363 kbuf
.dsize
= strlen(keystr
)+1;
1364 dbuf
.dptr
= ps
->data_p
;
1365 dbuf
.dsize
= prs_offset(ps
);
1366 return tdb_store(tdb
, kbuf
, dbuf
, TDB_REPLACE
);
1369 /* useful function to fetch a structure into rpc wire format */
1370 int tdb_prs_fetch(TDB_CONTEXT
*tdb
, char *keystr
, prs_struct
*ps
, TALLOC_CTX
*mem_ctx
)
1372 TDB_DATA kbuf
, dbuf
;
1374 kbuf
.dsize
= strlen(keystr
)+1;
1376 dbuf
= tdb_fetch(tdb
, kbuf
);
1380 prs_init(ps
, 0, mem_ctx
, UNMARSHALL
);
1381 prs_give_memory(ps
, dbuf
.dptr
, dbuf
.dsize
, True
);
1386 /*******************************************************************
1388 ********************************************************************/
1390 BOOL
prs_hash1(prs_struct
*ps
, uint32 offset
, uint8 sess_key
[16], int len
)
1397 #ifdef DEBUG_PASSWORD
1398 DEBUG(100, ("prs_hash1\n"));
1399 dump_data(100, sess_key
, 16);
1400 dump_data(100, q
, len
);
1402 SamOEMhash((uchar
*) q
, sess_key
, len
);
1404 #ifdef DEBUG_PASSWORD
1405 dump_data(100, q
, len
);
1411 /*******************************************************************
1412 Create a digest over the entire packet (including the data), and
1413 MD5 it with the session key.
1414 ********************************************************************/
1416 static void netsec_digest(struct netsec_auth_struct
*a
,
1418 RPC_AUTH_NETSEC_CHK
* verf
,
1419 char *data
, size_t data_len
,
1420 uchar digest_final
[16])
1422 uchar whole_packet_digest
[16];
1423 static uchar zeros
[4];
1424 struct MD5Context ctx3
;
1426 /* verfiy the signature on the packet by MD5 over various bits */
1428 /* use our sequence number, which ensures the packet is not
1430 MD5Update(&ctx3
, zeros
, sizeof(zeros
));
1431 MD5Update(&ctx3
, verf
->sig
, sizeof(verf
->sig
));
1432 if (auth_flags
& AUTH_PIPE_SEAL
) {
1433 MD5Update(&ctx3
, verf
->confounder
, sizeof(verf
->confounder
));
1435 MD5Update(&ctx3
, (const unsigned char *)data
, data_len
);
1436 MD5Final(whole_packet_digest
, &ctx3
);
1437 dump_data_pw("whole_packet_digest:\n", whole_packet_digest
, sizeof(whole_packet_digest
));
1439 /* MD5 this result and the session key, to prove that
1440 only a valid client could had produced this */
1441 hmac_md5(a
->sess_key
, whole_packet_digest
, sizeof(whole_packet_digest
), digest_final
);
1444 /*******************************************************************
1445 Calculate the key with which to encode the data payload
1446 ********************************************************************/
1448 static void netsec_get_sealing_key(struct netsec_auth_struct
*a
,
1449 RPC_AUTH_NETSEC_CHK
*verf
,
1450 uchar sealing_key
[16])
1452 static uchar zeros
[4];
1457 for (i
= 0; i
< sizeof(sess_kf0
); i
++) {
1458 sess_kf0
[i
] = a
->sess_key
[i
] ^ 0xf0;
1461 dump_data_pw("sess_kf0:\n", sess_kf0
, sizeof(sess_kf0
));
1463 /* MD5 of sess_kf0 and 4 zero bytes */
1464 hmac_md5(sess_kf0
, zeros
, 0x4, digest2
);
1465 dump_data_pw("digest2:\n", digest2
, sizeof(digest2
));
1467 /* MD5 of the above result, plus 8 bytes of sequence number */
1468 hmac_md5(digest2
, verf
->seq_num
, sizeof(verf
->seq_num
), sealing_key
);
1469 dump_data_pw("sealing_key:\n", sealing_key
, 16);
1472 /*******************************************************************
1473 Encode or Decode the sequence number (which is symmetric)
1474 ********************************************************************/
1476 static void netsec_deal_with_seq_num(struct netsec_auth_struct
*a
,
1477 RPC_AUTH_NETSEC_CHK
*verf
)
1479 static uchar zeros
[4];
1480 uchar sequence_key
[16];
1483 hmac_md5(a
->sess_key
, zeros
, sizeof(zeros
), digest1
);
1484 dump_data_pw("(sequence key) digest1:\n", digest1
, sizeof(digest1
));
1486 hmac_md5(digest1
, verf
->packet_digest
, 8, sequence_key
);
1488 dump_data_pw("sequence_key:\n", sequence_key
, sizeof(sequence_key
));
1490 dump_data_pw("seq_num (before):\n", verf
->seq_num
, sizeof(verf
->seq_num
));
1491 SamOEMhash(verf
->seq_num
, sequence_key
, 8);
1492 dump_data_pw("seq_num (after):\n", verf
->seq_num
, sizeof(verf
->seq_num
));
1495 /*******************************************************************
1496 creates an RPC_AUTH_NETSEC_CHK structure.
1497 ********************************************************************/
1499 static BOOL
init_rpc_auth_netsec_chk(RPC_AUTH_NETSEC_CHK
* chk
,
1501 const uchar packet_digest
[8],
1502 const uchar seq_num
[8], const uchar confounder
[8])
1507 memcpy(chk
->sig
, sig
, sizeof(chk
->sig
));
1508 memcpy(chk
->packet_digest
, packet_digest
, sizeof(chk
->packet_digest
));
1509 memcpy(chk
->seq_num
, seq_num
, sizeof(chk
->seq_num
));
1510 memcpy(chk
->confounder
, confounder
, sizeof(chk
->confounder
));
1515 /*******************************************************************
1516 Encode a blob of data using the netsec (schannel) alogrithm, also produceing
1517 a checksum over the original data. We currently only support
1518 signing and sealing togeather - the signing-only code is close, but not
1519 quite compatible with what MS does.
1520 ********************************************************************/
1522 void netsec_encode(struct netsec_auth_struct
*a
, int auth_flags
,
1523 enum netsec_direction direction
,
1524 RPC_AUTH_NETSEC_CHK
* verf
,
1525 char *data
, size_t data_len
)
1527 uchar digest_final
[16];
1528 uchar confounder
[8];
1530 static const uchar nullbytes
[8];
1532 static const uchar netsec_seal_sig
[8] = NETSEC_SEAL_SIGNATURE
;
1533 static const uchar netsec_sign_sig
[8] = NETSEC_SIGN_SIGNATURE
;
1534 const uchar
*netsec_sig
= NULL
;
1536 DEBUG(10,("SCHANNEL: netsec_encode seq_num=%d data_len=%lu\n", a
->seq_num
, (unsigned long)data_len
));
1538 if (auth_flags
& AUTH_PIPE_SEAL
) {
1539 netsec_sig
= netsec_seal_sig
;
1540 } else if (auth_flags
& AUTH_PIPE_SIGN
) {
1541 netsec_sig
= netsec_sign_sig
;
1544 /* fill the 'confounder' with random data */
1545 generate_random_buffer(confounder
, sizeof(confounder
));
1547 dump_data_pw("a->sess_key:\n", a
->sess_key
, sizeof(a
->sess_key
));
1549 RSIVAL(seq_num
, 0, a
->seq_num
);
1551 switch (direction
) {
1552 case SENDER_IS_INITIATOR
:
1553 SIVAL(seq_num
, 4, 0x80);
1555 case SENDER_IS_ACCEPTOR
:
1556 SIVAL(seq_num
, 4, 0x0);
1560 dump_data_pw("verf->seq_num:\n", seq_num
, sizeof(verf
->seq_num
));
1562 init_rpc_auth_netsec_chk(verf
, netsec_sig
, nullbytes
,
1563 seq_num
, confounder
);
1565 /* produce a digest of the packet to prove it's legit (before we seal it) */
1566 netsec_digest(a
, auth_flags
, verf
, data
, data_len
, digest_final
);
1567 memcpy(verf
->packet_digest
, digest_final
, sizeof(verf
->packet_digest
));
1569 if (auth_flags
& AUTH_PIPE_SEAL
) {
1570 uchar sealing_key
[16];
1572 /* get the key to encode the data with */
1573 netsec_get_sealing_key(a
, verf
, sealing_key
);
1575 /* encode the verification data */
1576 dump_data_pw("verf->confounder:\n", verf
->confounder
, sizeof(verf
->confounder
));
1577 SamOEMhash(verf
->confounder
, sealing_key
, 8);
1579 dump_data_pw("verf->confounder_enc:\n", verf
->confounder
, sizeof(verf
->confounder
));
1581 /* encode the packet payload */
1582 dump_data_pw("data:\n", (const unsigned char *)data
, data_len
);
1583 SamOEMhash((unsigned char *)data
, sealing_key
, data_len
);
1584 dump_data_pw("data_enc:\n", (const unsigned char *)data
, data_len
);
1587 /* encode the sequence number (key based on packet digest) */
1588 /* needs to be done after the sealing, as the original version
1589 is used in the sealing stuff... */
1590 netsec_deal_with_seq_num(a
, verf
);
1595 /*******************************************************************
1596 Decode a blob of data using the netsec (schannel) alogrithm, also verifiying
1597 a checksum over the original data. We currently can verify signed messages,
1598 as well as decode sealed messages
1599 ********************************************************************/
1601 BOOL
netsec_decode(struct netsec_auth_struct
*a
, int auth_flags
,
1602 enum netsec_direction direction
,
1603 RPC_AUTH_NETSEC_CHK
* verf
, char *data
, size_t data_len
)
1605 uchar digest_final
[16];
1607 static const uchar netsec_seal_sig
[8] = NETSEC_SEAL_SIGNATURE
;
1608 static const uchar netsec_sign_sig
[8] = NETSEC_SIGN_SIGNATURE
;
1609 const uchar
*netsec_sig
= NULL
;
1613 DEBUG(10,("SCHANNEL: netsec_encode seq_num=%d data_len=%lu\n", a
->seq_num
, (unsigned long)data_len
));
1615 if (auth_flags
& AUTH_PIPE_SEAL
) {
1616 netsec_sig
= netsec_seal_sig
;
1617 } else if (auth_flags
& AUTH_PIPE_SIGN
) {
1618 netsec_sig
= netsec_sign_sig
;
1621 /* Create the expected sequence number for comparison */
1622 RSIVAL(seq_num
, 0, a
->seq_num
);
1624 switch (direction
) {
1625 case SENDER_IS_INITIATOR
:
1626 SIVAL(seq_num
, 4, 0x80);
1628 case SENDER_IS_ACCEPTOR
:
1629 SIVAL(seq_num
, 4, 0x0);
1633 DEBUG(10,("SCHANNEL: netsec_decode seq_num=%d data_len=%lu\n", a
->seq_num
, (unsigned long)data_len
));
1634 dump_data_pw("a->sess_key:\n", a
->sess_key
, sizeof(a
->sess_key
));
1636 dump_data_pw("seq_num:\n", seq_num
, sizeof(seq_num
));
1638 /* extract the sequence number (key based on supplied packet digest) */
1639 /* needs to be done before the sealing, as the original version
1640 is used in the sealing stuff... */
1641 netsec_deal_with_seq_num(a
, verf
);
1643 if (memcmp(verf
->seq_num
, seq_num
, sizeof(seq_num
))) {
1644 /* don't even bother with the below if the sequence number is out */
1645 /* The sequence number is MD5'ed with a key based on the whole-packet
1646 digest, as supplied by the client. We check that it's a valid
1647 checksum after the decode, below
1649 DEBUG(2, ("netsec_decode: FAILED: packet sequence number:\n"));
1650 dump_data(2, (const char*)verf
->seq_num
, sizeof(verf
->seq_num
));
1651 DEBUG(2, ("should be:\n"));
1652 dump_data(2, (const char*)seq_num
, sizeof(seq_num
));
1657 if (memcmp(verf
->sig
, netsec_sig
, sizeof(verf
->sig
))) {
1658 /* Validate that the other end sent the expected header */
1659 DEBUG(2, ("netsec_decode: FAILED: packet header:\n"));
1660 dump_data(2, (const char*)verf
->sig
, sizeof(verf
->sig
));
1661 DEBUG(2, ("should be:\n"));
1662 dump_data(2, (const char*)netsec_sig
, sizeof(netsec_sig
));
1666 if (auth_flags
& AUTH_PIPE_SEAL
) {
1667 uchar sealing_key
[16];
1669 /* get the key to extract the data with */
1670 netsec_get_sealing_key(a
, verf
, sealing_key
);
1672 /* extract the verification data */
1673 dump_data_pw("verf->confounder:\n", verf
->confounder
,
1674 sizeof(verf
->confounder
));
1675 SamOEMhash(verf
->confounder
, sealing_key
, 8);
1677 dump_data_pw("verf->confounder_dec:\n", verf
->confounder
,
1678 sizeof(verf
->confounder
));
1680 /* extract the packet payload */
1681 dump_data_pw("data :\n", (const unsigned char *)data
, data_len
);
1682 SamOEMhash((unsigned char *)data
, sealing_key
, data_len
);
1683 dump_data_pw("datadec:\n", (const unsigned char *)data
, data_len
);
1686 /* digest includes 'data' after unsealing */
1687 netsec_digest(a
, auth_flags
, verf
, data
, data_len
, digest_final
);
1689 dump_data_pw("Calculated digest:\n", digest_final
,
1690 sizeof(digest_final
));
1691 dump_data_pw("verf->packet_digest:\n", verf
->packet_digest
,
1692 sizeof(verf
->packet_digest
));
1694 /* compare - if the client got the same result as us, then
1695 it must know the session key */
1696 return (memcmp(digest_final
, verf
->packet_digest
,
1697 sizeof(verf
->packet_digest
)) == 0);