Line data Source code
1 : /*
2 : * Copyright (c) 2006 - 2008 Kungliga Tekniska Högskolan
3 : * (Royal Institute of Technology, Stockholm, Sweden).
4 : * All rights reserved.
5 : *
6 : * Portions Copyright (c) 2010 Apple Inc. All rights reserved.
7 : *
8 : * Redistribution and use in source and binary forms, with or without
9 : * modification, are permitted provided that the following conditions
10 : * are met:
11 : *
12 : * 1. Redistributions of source code must retain the above copyright
13 : * notice, this list of conditions and the following disclaimer.
14 : *
15 : * 2. Redistributions in binary form must reproduce the above copyright
16 : * notice, this list of conditions and the following disclaimer in the
17 : * documentation and/or other materials provided with the distribution.
18 : *
19 : * 3. Neither the name of the Institute nor the names of its contributors
20 : * may be used to endorse or promote products derived from this software
21 : * without specific prior written permission.
22 : *
23 : * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
24 : * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
25 : * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
26 : * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
27 : * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
28 : * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
29 : * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
30 : * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
31 : * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
32 : * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
33 : * SUCH DAMAGE.
34 : */
35 :
36 : #include <config.h>
37 :
38 : #include <stdio.h>
39 : #include <stdlib.h>
40 : #include <assert.h>
41 : #include <string.h>
42 : #include <ctype.h>
43 : #include <errno.h>
44 : #include <limits.h>
45 :
46 : #include <roken.h>
47 :
48 : #include <wind.h>
49 : #include <parse_units.h>
50 : #include <krb5.h>
51 :
52 :
53 : #define HC_DEPRECATED_CRYPTO
54 :
55 : #include "krb5-types.h"
56 : #include "crypto-headers.h"
57 :
58 : #include <heimntlm.h>
59 :
60 : /*! \mainpage Heimdal NTLM library
61 : *
62 : * \section intro Introduction
63 : *
64 : * Heimdal libheimntlm library is a implementation of the NTLM
65 : * protocol, both version 1 and 2. The GSS-API mech that uses this
66 : * library adds support for transport encryption and integrity
67 : * checking.
68 : *
69 : * NTLM is a protocol for mutual authentication, its still used in
70 : * many protocol where Kerberos is not support, one example is
71 : * EAP/X802.1x mechanism LEAP from Microsoft and Cisco.
72 : *
73 : * This is a support library for the core protocol, its used in
74 : * Heimdal to implement and GSS-API mechanism. There is also support
75 : * in the KDC to do remote digest authenticiation, this to allow
76 : * services to authenticate users w/o direct access to the users ntlm
77 : * hashes (same as Kerberos arcfour enctype keys).
78 : *
79 : * More information about the NTLM protocol can found here
80 : * http://davenport.sourceforge.net/ntlm.html .
81 : *
82 : * The Heimdal projects web page: http://www.h5l.org/
83 : *
84 : * @section ntlm_example NTLM Example
85 : *
86 : * Example to to use @ref test_ntlm.c .
87 : *
88 : * @example test_ntlm.c
89 : *
90 : * Example how to use the NTLM primitives.
91 : *
92 : */
93 :
94 : /** @defgroup ntlm_core Heimdal NTLM library
95 : *
96 : * The NTLM core functions implement the string2key generation
97 : * function, message encode and decode function, and the hash function
98 : * functions.
99 : */
100 :
101 : struct sec_buffer {
102 : uint16_t length;
103 : uint16_t allocated;
104 : uint32_t offset;
105 : };
106 :
107 : static const unsigned char ntlmsigature[8] = "NTLMSSP\x00";
108 :
109 : time_t heim_ntlm_time_skew = 300;
110 :
111 : /*
112 : *
113 : */
114 :
115 : #define CHECK(f, e) \
116 : do { \
117 : ret = f; \
118 : if (ret != (ssize_t)(e)) { \
119 : ret = HNTLM_ERR_DECODE; \
120 : goto out; \
121 : } \
122 : } while(/*CONSTCOND*/0)
123 :
124 : #define CHECK_SIZE(f, e) \
125 : do { \
126 : ssize_t sret = f; \
127 : if (sret != (ssize_t)(e)) { \
128 : ret = HNTLM_ERR_DECODE; \
129 : goto out; \
130 : } \
131 : } while(/*CONSTCOND*/0)
132 :
133 : #define CHECK_OFFSET(f, e) \
134 : do { \
135 : off_t sret = f; \
136 : if (sret != (e)) { \
137 : ret = HNTLM_ERR_DECODE; \
138 : goto out; \
139 : } \
140 : } while(/*CONSTCOND*/0)
141 :
142 :
143 : static struct units ntlm_flag_units[] = {
144 : #define ntlm_flag(x) { #x, NTLM_##x }
145 : ntlm_flag(ENC_56),
146 : ntlm_flag(NEG_KEYEX),
147 : ntlm_flag(ENC_128),
148 : ntlm_flag(MBZ1),
149 : ntlm_flag(MBZ2),
150 : ntlm_flag(MBZ3),
151 : ntlm_flag(NEG_VERSION),
152 : ntlm_flag(MBZ4),
153 : ntlm_flag(NEG_TARGET_INFO),
154 : ntlm_flag(NON_NT_SESSION_KEY),
155 : ntlm_flag(MBZ5),
156 : ntlm_flag(NEG_IDENTIFY),
157 : ntlm_flag(NEG_NTLM2),
158 : ntlm_flag(TARGET_SHARE),
159 : ntlm_flag(TARGET_SERVER),
160 : ntlm_flag(TARGET_DOMAIN),
161 : ntlm_flag(NEG_ALWAYS_SIGN),
162 : ntlm_flag(MBZ6),
163 : ntlm_flag(OEM_SUPPLIED_WORKSTATION),
164 : ntlm_flag(OEM_SUPPLIED_DOMAIN),
165 : ntlm_flag(NEG_ANONYMOUS),
166 : ntlm_flag(NEG_NT_ONLY),
167 : ntlm_flag(NEG_NTLM),
168 : ntlm_flag(MBZ8),
169 : ntlm_flag(NEG_LM_KEY),
170 : ntlm_flag(NEG_DATAGRAM),
171 : ntlm_flag(NEG_SEAL),
172 : ntlm_flag(NEG_SIGN),
173 : ntlm_flag(MBZ9),
174 : ntlm_flag(NEG_TARGET),
175 : ntlm_flag(NEG_OEM),
176 : ntlm_flag(NEG_UNICODE),
177 : #undef ntlm_flag
178 : {NULL, 0}
179 : };
180 :
181 : size_t
182 0 : heim_ntlm_unparse_flags(uint32_t flags, char *s, size_t len)
183 : {
184 0 : return unparse_flags(flags, ntlm_flag_units, s, len);
185 : }
186 :
187 :
188 : /**
189 : * heim_ntlm_free_buf frees the ntlm buffer
190 : *
191 : * @param p buffer to be freed
192 : *
193 : * @ingroup ntlm_core
194 : */
195 :
196 : void
197 0 : heim_ntlm_free_buf(struct ntlm_buf *p)
198 : {
199 0 : if (p->data)
200 0 : free(p->data);
201 0 : p->data = NULL;
202 0 : p->length = 0;
203 0 : }
204 :
205 :
206 : static int
207 0 : ascii2ucs2le(const char *string, int up, struct ntlm_buf *buf)
208 : {
209 : uint16_t *data;
210 : size_t len, n;
211 : uint8_t *p;
212 : int ret;
213 :
214 0 : ret = wind_utf8ucs2_length(string, &len);
215 0 : if (ret)
216 0 : return ret;
217 0 : if (len > UINT_MAX / sizeof(data[0]))
218 0 : return ERANGE;
219 :
220 0 : data = malloc(len * sizeof(data[0]));
221 0 : if (data == NULL)
222 0 : return ENOMEM;
223 :
224 0 : ret = wind_utf8ucs2(string, data, &len);
225 0 : if (ret) {
226 0 : free(data);
227 0 : return ret;
228 : }
229 :
230 0 : if (len == 0) {
231 0 : free(data);
232 0 : buf->data = NULL;
233 0 : buf->length = 0;
234 0 : return 0;
235 : }
236 :
237 : /* uppercase string, only handle ascii right now */
238 0 : if (up) {
239 0 : for (n = 0; n < len ; n++) {
240 0 : if (data[n] < 128)
241 0 : data[n] = toupper((int)data[n]);
242 : }
243 : }
244 :
245 0 : buf->length = len * 2;
246 0 : p = buf->data = malloc(buf->length);
247 0 : if (buf->data == NULL && len != 0) {
248 0 : free(data);
249 0 : heim_ntlm_free_buf(buf);
250 0 : return ENOMEM;
251 : }
252 :
253 0 : for (n = 0; n < len ; n++) {
254 0 : p[(n * 2) + 0] = (data[n] ) & 0xff;
255 0 : p[(n * 2) + 1] = (data[n] >> 8) & 0xff;
256 : }
257 0 : memset(data, 0, sizeof(data[0]) * len);
258 0 : free(data);
259 :
260 0 : return 0;
261 : }
262 :
263 : /*
264 : * Sizes in bytes
265 : */
266 :
267 : #define SIZE_SEC_BUFFER (2+2+4)
268 : #define SIZE_OS_VERSION (8)
269 :
270 : /*
271 : *
272 : */
273 :
274 : static krb5_error_code
275 0 : ret_sec_buffer(krb5_storage *sp, struct sec_buffer *buf)
276 : {
277 : krb5_error_code ret;
278 0 : CHECK(krb5_ret_uint16(sp, &buf->length), 0);
279 0 : CHECK(krb5_ret_uint16(sp, &buf->allocated), 0);
280 0 : CHECK(krb5_ret_uint32(sp, &buf->offset), 0);
281 0 : out:
282 0 : return ret;
283 : }
284 :
285 : static krb5_error_code
286 0 : store_sec_buffer(krb5_storage *sp, const struct sec_buffer *buf)
287 : {
288 : krb5_error_code ret;
289 0 : CHECK(krb5_store_uint16(sp, buf->length), 0);
290 0 : CHECK(krb5_store_uint16(sp, buf->allocated), 0);
291 0 : CHECK(krb5_store_uint32(sp, buf->offset), 0);
292 0 : out:
293 0 : return ret;
294 : }
295 :
296 : /*
297 : * Strings are either OEM or UNICODE. The later is encoded as ucs2 on
298 : * wire, but using utf8 in memory.
299 : */
300 :
301 : static size_t
302 0 : len_string(int ucs2, const char *s)
303 : {
304 0 : if (ucs2) {
305 : size_t len;
306 : int ret;
307 :
308 0 : ret = wind_utf8ucs2_length(s, &len);
309 0 : if (ret == 0)
310 0 : return len * 2;
311 0 : return strlen(s) * 5 * 2;
312 : } else {
313 0 : return strlen(s);
314 : }
315 : }
316 :
317 : /*
318 : *
319 : */
320 :
321 : static krb5_error_code
322 0 : ret_string(krb5_storage *sp, int ucs2, size_t len, char **s)
323 : {
324 : krb5_error_code ret;
325 0 : uint16_t *data = NULL;
326 :
327 0 : *s = malloc(len + 1);
328 0 : if (*s == NULL)
329 0 : return ENOMEM;
330 0 : CHECK_SIZE(krb5_storage_read(sp, *s, len), len);
331 :
332 0 : (*s)[len] = '\0';
333 :
334 0 : if (ucs2) {
335 0 : unsigned int flags = WIND_RW_LE;
336 0 : size_t utf16len = len / 2;
337 : size_t utf8len;
338 :
339 0 : data = malloc(utf16len * sizeof(data[0]));
340 0 : if (data == NULL) {
341 0 : free(*s); *s = NULL;
342 0 : ret = ENOMEM;
343 0 : goto out;
344 : }
345 :
346 0 : ret = wind_ucs2read(*s, len, &flags, data, &utf16len);
347 0 : free(*s); *s = NULL;
348 0 : if (ret) {
349 0 : goto out;
350 : }
351 :
352 0 : CHECK(wind_ucs2utf8_length(data, utf16len, &utf8len), 0);
353 :
354 0 : utf8len += 1;
355 :
356 0 : *s = malloc(utf8len);
357 0 : if (*s == NULL) {
358 0 : ret = ENOMEM;
359 0 : goto out;
360 : }
361 :
362 0 : CHECK(wind_ucs2utf8(data, utf16len, *s, &utf8len), 0);
363 : }
364 0 : ret = 0;
365 0 : out:
366 0 : if (data)
367 0 : free(data);
368 :
369 0 : return ret;
370 : }
371 :
372 :
373 :
374 : static krb5_error_code
375 0 : ret_sec_string(krb5_storage *sp, int ucs2, struct sec_buffer *desc, char **s)
376 : {
377 0 : krb5_error_code ret = 0;
378 0 : CHECK_OFFSET(krb5_storage_seek(sp, desc->offset, SEEK_SET), desc->offset);
379 0 : CHECK(ret_string(sp, ucs2, desc->length, s), 0);
380 0 : out:
381 0 : return ret;
382 : }
383 :
384 : static krb5_error_code
385 0 : put_string(krb5_storage *sp, int ucs2, const char *s)
386 : {
387 : krb5_error_code ret;
388 : struct ntlm_buf buf;
389 :
390 0 : if (ucs2) {
391 0 : ret = ascii2ucs2le(s, 0, &buf);
392 0 : if (ret)
393 0 : return ret;
394 : } else {
395 0 : buf.data = rk_UNCONST(s);
396 0 : buf.length = strlen(s);
397 : }
398 :
399 0 : CHECK_SIZE(krb5_storage_write(sp, buf.data, buf.length), buf.length);
400 0 : if (ucs2)
401 0 : heim_ntlm_free_buf(&buf);
402 0 : ret = 0;
403 0 : out:
404 0 : return ret;
405 : }
406 :
407 : /*
408 : *
409 : */
410 :
411 : static krb5_error_code
412 0 : ret_buf(krb5_storage *sp, struct sec_buffer *desc, struct ntlm_buf *buf)
413 : {
414 : krb5_error_code ret;
415 :
416 0 : buf->data = malloc(desc->length);
417 0 : buf->length = desc->length;
418 0 : CHECK_OFFSET(krb5_storage_seek(sp, desc->offset, SEEK_SET), desc->offset);
419 0 : CHECK_SIZE(krb5_storage_read(sp, buf->data, buf->length), buf->length);
420 0 : ret = 0;
421 0 : out:
422 0 : return ret;
423 : }
424 :
425 : static krb5_error_code
426 0 : put_buf(krb5_storage *sp, const struct ntlm_buf *buf)
427 : {
428 : krb5_error_code ret;
429 0 : CHECK_SIZE(krb5_storage_write(sp, buf->data, buf->length), buf->length);
430 0 : ret = 0;
431 0 : out:
432 0 : return ret;
433 : }
434 :
435 : /**
436 : * Frees the ntlm_targetinfo message
437 : *
438 : * @param ti targetinfo to be freed
439 : *
440 : * @ingroup ntlm_core
441 : */
442 :
443 : void
444 0 : heim_ntlm_free_targetinfo(struct ntlm_targetinfo *ti)
445 : {
446 0 : free(ti->servername);
447 0 : free(ti->domainname);
448 0 : free(ti->dnsdomainname);
449 0 : free(ti->dnsservername);
450 0 : free(ti->dnstreename);
451 0 : free(ti->targetname);
452 0 : heim_ntlm_free_buf(&ti->channel_bindings);
453 0 : memset(ti, 0, sizeof(*ti));
454 0 : }
455 :
456 : static int
457 0 : encode_ti_string(krb5_storage *out, uint16_t type, int ucs2, char *s)
458 : {
459 : krb5_error_code ret;
460 0 : CHECK(krb5_store_uint16(out, type), 0);
461 0 : CHECK(krb5_store_uint16(out, len_string(ucs2, s)), 0);
462 0 : CHECK(put_string(out, ucs2, s), 0);
463 0 : out:
464 0 : return ret;
465 : }
466 :
467 : /**
468 : * Encodes a ntlm_targetinfo message.
469 : *
470 : * @param ti the ntlm_targetinfo message to encode.
471 : * @param ucs2 ignored
472 : * @param data is the return buffer with the encoded message, should be
473 : * freed with heim_ntlm_free_buf().
474 : *
475 : * @return In case of success 0 is return, an errors, a errno in what
476 : * went wrong.
477 : *
478 : * @ingroup ntlm_core
479 : */
480 :
481 : int
482 0 : heim_ntlm_encode_targetinfo(const struct ntlm_targetinfo *ti,
483 : int ucs2,
484 : struct ntlm_buf *data)
485 : {
486 : krb5_error_code ret;
487 : krb5_storage *out;
488 :
489 0 : data->data = NULL;
490 0 : data->length = 0;
491 :
492 0 : out = krb5_storage_emem();
493 0 : if (out == NULL)
494 0 : return ENOMEM;
495 :
496 0 : krb5_storage_set_byteorder(out, KRB5_STORAGE_BYTEORDER_LE);
497 :
498 0 : if (ti->servername)
499 0 : CHECK(encode_ti_string(out, 1, ucs2, ti->servername), 0);
500 0 : if (ti->domainname)
501 0 : CHECK(encode_ti_string(out, 2, ucs2, ti->domainname), 0);
502 0 : if (ti->dnsservername)
503 0 : CHECK(encode_ti_string(out, 3, ucs2, ti->dnsservername), 0);
504 0 : if (ti->dnsdomainname)
505 0 : CHECK(encode_ti_string(out, 4, ucs2, ti->dnsdomainname), 0);
506 0 : if (ti->dnstreename)
507 0 : CHECK(encode_ti_string(out, 5, ucs2, ti->dnstreename), 0);
508 0 : if (ti->avflags) {
509 0 : CHECK(krb5_store_uint16(out, 6), 0);
510 0 : CHECK(krb5_store_uint16(out, 4), 0);
511 0 : CHECK(krb5_store_uint32(out, ti->avflags), 0);
512 : }
513 0 : if (ti->timestamp) {
514 0 : CHECK(krb5_store_uint16(out, 7), 0);
515 0 : CHECK(krb5_store_uint16(out, 8), 0);
516 0 : CHECK(krb5_store_uint32(out, ti->timestamp & 0xffffffff), 0);
517 0 : CHECK(krb5_store_uint32(out, (ti->timestamp >> 32) & 0xffffffff), 0);
518 : }
519 0 : if (ti->targetname) {
520 0 : CHECK(encode_ti_string(out, 9, ucs2, ti->targetname), 0);
521 : }
522 0 : if (ti->channel_bindings.length) {
523 0 : CHECK(krb5_store_uint16(out, 10), 0);
524 0 : CHECK(krb5_store_uint16(out, ti->channel_bindings.length), 0);
525 0 : CHECK_SIZE(krb5_storage_write(out, ti->channel_bindings.data, ti->channel_bindings.length), ti->channel_bindings.length);
526 : }
527 :
528 : /* end tag */
529 0 : CHECK(krb5_store_int16(out, 0), 0);
530 0 : CHECK(krb5_store_int16(out, 0), 0);
531 :
532 : {
533 : krb5_data d;
534 0 : ret = krb5_storage_to_data(out, &d);
535 0 : data->data = d.data;
536 0 : data->length = d.length;
537 : }
538 0 : out:
539 0 : krb5_storage_free(out);
540 0 : return ret;
541 : }
542 :
543 : /**
544 : * Decodes an NTLM targetinfo message
545 : *
546 : * @param data input data buffer with the encode NTLM targetinfo message
547 : * @param ucs2 if the strings should be encoded with ucs2 (selected by flag in message).
548 : * @param ti the decoded target info, should be freed with heim_ntlm_free_targetinfo().
549 : *
550 : * @return In case of success 0 is return, an errors, a errno in what
551 : * went wrong.
552 : *
553 : * @ingroup ntlm_core
554 : */
555 :
556 : int
557 0 : heim_ntlm_decode_targetinfo(const struct ntlm_buf *data,
558 : int ucs2,
559 : struct ntlm_targetinfo *ti)
560 : {
561 : uint16_t type, len;
562 : krb5_storage *in;
563 0 : int ret = 0, done = 0;
564 :
565 0 : memset(ti, 0, sizeof(*ti));
566 :
567 0 : if (data->length == 0)
568 0 : return 0;
569 :
570 0 : in = krb5_storage_from_readonly_mem(data->data, data->length);
571 0 : if (in == NULL)
572 0 : return ENOMEM;
573 0 : krb5_storage_set_byteorder(in, KRB5_STORAGE_BYTEORDER_LE);
574 :
575 0 : while (!done) {
576 0 : CHECK(krb5_ret_uint16(in, &type), 0);
577 0 : CHECK(krb5_ret_uint16(in, &len), 0);
578 :
579 0 : switch (type) {
580 0 : case 0:
581 0 : done = 1;
582 0 : break;
583 0 : case 1:
584 0 : CHECK(ret_string(in, ucs2, len, &ti->servername), 0);
585 0 : break;
586 0 : case 2:
587 0 : CHECK(ret_string(in, ucs2, len, &ti->domainname), 0);
588 0 : break;
589 0 : case 3:
590 0 : CHECK(ret_string(in, ucs2, len, &ti->dnsservername), 0);
591 0 : break;
592 0 : case 4:
593 0 : CHECK(ret_string(in, ucs2, len, &ti->dnsdomainname), 0);
594 0 : break;
595 0 : case 5:
596 0 : CHECK(ret_string(in, ucs2, len, &ti->dnstreename), 0);
597 0 : break;
598 0 : case 6:
599 0 : CHECK(krb5_ret_uint32(in, &ti->avflags), 0);
600 0 : break;
601 0 : case 7: {
602 : uint32_t tmp;
603 0 : CHECK(krb5_ret_uint32(in, &tmp), 0);
604 0 : ti->timestamp = tmp;
605 0 : CHECK(krb5_ret_uint32(in, &tmp), 0);
606 0 : ti->timestamp |= ((uint64_t)tmp) << 32;
607 0 : break;
608 : }
609 0 : case 9:
610 0 : CHECK(ret_string(in, 1, len, &ti->targetname), 0);
611 0 : break;
612 0 : case 10:
613 0 : ti->channel_bindings.data = malloc(len);
614 0 : if (ti->channel_bindings.data == NULL) {
615 0 : ret = ENOMEM;
616 0 : goto out;
617 : }
618 0 : ti->channel_bindings.length = len;
619 0 : CHECK_SIZE(krb5_storage_read(in, ti->channel_bindings.data, len), len);
620 0 : break;
621 0 : default:
622 0 : krb5_storage_seek(in, len, SEEK_CUR);
623 0 : break;
624 : }
625 : }
626 0 : out:
627 0 : if (in)
628 0 : krb5_storage_free(in);
629 0 : return ret;
630 : }
631 :
632 : static krb5_error_code
633 0 : encode_os_version(krb5_storage *out)
634 : {
635 : krb5_error_code ret;
636 0 : CHECK(krb5_store_uint8(out, 0x06), 0);
637 0 : CHECK(krb5_store_uint8(out, 0x01), 0);
638 0 : CHECK(krb5_store_uint16(out, 0x1db0), 0);
639 0 : CHECK(krb5_store_uint8(out, 0x00), 0);
640 0 : CHECK(krb5_store_uint8(out, 0x00), 0);
641 0 : CHECK(krb5_store_uint8(out, 0x00), 0);
642 0 : CHECK(krb5_store_uint8(out, 0x0f), 0); /* ntlm version 15 */
643 0 : out:
644 0 : return ret;
645 : }
646 :
647 : /**
648 : * Frees the ntlm_type1 message
649 : *
650 : * @param data message to be freed
651 : *
652 : * @ingroup ntlm_core
653 : */
654 :
655 : void
656 0 : heim_ntlm_free_type1(struct ntlm_type1 *data)
657 : {
658 0 : if (data->domain)
659 0 : free(data->domain);
660 0 : if (data->hostname)
661 0 : free(data->hostname);
662 0 : memset(data, 0, sizeof(*data));
663 0 : }
664 :
665 : int
666 0 : heim_ntlm_decode_type1(const struct ntlm_buf *buf, struct ntlm_type1 *data)
667 : {
668 : krb5_error_code ret;
669 : unsigned char sig[8];
670 : uint32_t type;
671 : struct sec_buffer domain, hostname;
672 : krb5_storage *in;
673 : int ucs2;
674 :
675 0 : memset(data, 0, sizeof(*data));
676 :
677 0 : in = krb5_storage_from_readonly_mem(buf->data, buf->length);
678 0 : if (in == NULL) {
679 0 : ret = ENOMEM;
680 0 : goto out;
681 : }
682 0 : krb5_storage_set_byteorder(in, KRB5_STORAGE_BYTEORDER_LE);
683 :
684 0 : CHECK_SIZE(krb5_storage_read(in, sig, sizeof(sig)), sizeof(sig));
685 0 : CHECK(ct_memcmp(ntlmsigature, sig, sizeof(ntlmsigature)), 0);
686 0 : CHECK(krb5_ret_uint32(in, &type), 0);
687 0 : CHECK(type, 1);
688 0 : CHECK(krb5_ret_uint32(in, &data->flags), 0);
689 :
690 0 : ucs2 = !!(data->flags & NTLM_NEG_UNICODE);
691 :
692 : /*
693 : * domain and hostname are unconditionally encoded regardless of
694 : * NTLMSSP_NEGOTIATE_OEM_{HOSTNAME,WORKSTATION}_SUPPLIED flag
695 : */
696 0 : CHECK(ret_sec_buffer(in, &domain), 0);
697 0 : CHECK(ret_sec_buffer(in, &hostname), 0);
698 :
699 0 : if (data->flags & NTLM_NEG_VERSION) {
700 0 : CHECK(krb5_ret_uint32(in, &data->os[0]), 0);
701 0 : CHECK(krb5_ret_uint32(in, &data->os[1]), 0);
702 : }
703 :
704 0 : if (data->flags & NTLM_OEM_SUPPLIED_DOMAIN)
705 0 : CHECK(ret_sec_string(in, ucs2, &domain, &data->domain), 0);
706 0 : if (data->flags & NTLM_OEM_SUPPLIED_WORKSTATION)
707 0 : CHECK(ret_sec_string(in, ucs2, &hostname, &data->hostname), 0);
708 :
709 0 : out:
710 0 : if (in)
711 0 : krb5_storage_free(in);
712 0 : if (ret)
713 0 : heim_ntlm_free_type1(data);
714 :
715 0 : return ret;
716 : }
717 :
718 : /**
719 : * Encodes an ntlm_type1 message.
720 : *
721 : * @param type1 the ntlm_type1 message to encode.
722 : * @param data is the return buffer with the encoded message, should be
723 : * freed with heim_ntlm_free_buf().
724 : *
725 : * @return In case of success 0 is return, an errors, a errno in what
726 : * went wrong.
727 : *
728 : * @ingroup ntlm_core
729 : */
730 :
731 : int
732 0 : heim_ntlm_encode_type1(const struct ntlm_type1 *type1, struct ntlm_buf *data)
733 : {
734 : krb5_error_code ret;
735 : struct sec_buffer domain, hostname;
736 : krb5_storage *out;
737 : uint32_t base, flags;
738 0 : int ucs2 = 0;
739 :
740 0 : flags = type1->flags;
741 0 : base = 16;
742 :
743 0 : if (flags & NTLM_NEG_UNICODE)
744 0 : ucs2 = 1;
745 :
746 0 : if (type1->domain) {
747 0 : base += SIZE_SEC_BUFFER;
748 0 : flags |= NTLM_OEM_SUPPLIED_DOMAIN;
749 : }
750 0 : if (type1->hostname) {
751 0 : base += SIZE_SEC_BUFFER;
752 0 : flags |= NTLM_OEM_SUPPLIED_WORKSTATION;
753 : }
754 0 : if (flags & NTLM_NEG_VERSION)
755 0 : base += SIZE_OS_VERSION; /* os */
756 :
757 0 : if (type1->domain) {
758 0 : domain.offset = base;
759 0 : domain.length = len_string(ucs2, type1->domain);
760 0 : domain.allocated = domain.length;
761 : } else {
762 0 : domain.offset = 0;
763 0 : domain.length = 0;
764 0 : domain.allocated = 0;
765 : }
766 :
767 0 : if (type1->hostname) {
768 0 : hostname.offset = domain.allocated + domain.offset;
769 0 : hostname.length = len_string(ucs2, type1->hostname);
770 0 : hostname.allocated = hostname.length;
771 : } else {
772 0 : hostname.offset = 0;
773 0 : hostname.length = 0;
774 0 : hostname.allocated = 0;
775 : }
776 :
777 0 : out = krb5_storage_emem();
778 0 : if (out == NULL)
779 0 : return ENOMEM;
780 :
781 0 : krb5_storage_set_byteorder(out, KRB5_STORAGE_BYTEORDER_LE);
782 0 : CHECK_SIZE(krb5_storage_write(out, ntlmsigature, sizeof(ntlmsigature)),
783 : sizeof(ntlmsigature));
784 0 : CHECK(krb5_store_uint32(out, 1), 0);
785 0 : CHECK(krb5_store_uint32(out, flags), 0);
786 :
787 0 : CHECK(store_sec_buffer(out, &domain), 0);
788 0 : CHECK(store_sec_buffer(out, &hostname), 0);
789 :
790 0 : if (flags & NTLM_NEG_VERSION) {
791 0 : CHECK(encode_os_version(out), 0);
792 : }
793 0 : if (type1->domain)
794 0 : CHECK(put_string(out, ucs2, type1->domain), 0);
795 0 : if (type1->hostname)
796 0 : CHECK(put_string(out, ucs2, type1->hostname), 0);
797 :
798 : {
799 : krb5_data d;
800 0 : ret = krb5_storage_to_data(out, &d);
801 0 : data->data = d.data;
802 0 : data->length = d.length;
803 : }
804 0 : out:
805 0 : krb5_storage_free(out);
806 :
807 0 : return ret;
808 : }
809 :
810 : /**
811 : * Frees the ntlm_type2 message
812 : *
813 : * @param data message to be freed
814 : *
815 : * @ingroup ntlm_core
816 : */
817 :
818 : void
819 0 : heim_ntlm_free_type2(struct ntlm_type2 *data)
820 : {
821 0 : if (data->targetname)
822 0 : free(data->targetname);
823 0 : heim_ntlm_free_buf(&data->targetinfo);
824 0 : memset(data, 0, sizeof(*data));
825 0 : }
826 :
827 : int
828 0 : heim_ntlm_decode_type2(const struct ntlm_buf *buf, struct ntlm_type2 *type2)
829 : {
830 : krb5_error_code ret;
831 : unsigned char sig[8];
832 : uint32_t type, ctx[2];
833 : struct sec_buffer targetname, targetinfo;
834 : krb5_storage *in;
835 0 : int ucs2 = 0;
836 :
837 0 : memset(type2, 0, sizeof(*type2));
838 :
839 0 : in = krb5_storage_from_readonly_mem(buf->data, buf->length);
840 0 : if (in == NULL) {
841 0 : ret = ENOMEM;
842 0 : goto out;
843 : }
844 0 : krb5_storage_set_byteorder(in, KRB5_STORAGE_BYTEORDER_LE);
845 :
846 0 : CHECK_SIZE(krb5_storage_read(in, sig, sizeof(sig)), sizeof(sig));
847 0 : CHECK(ct_memcmp(ntlmsigature, sig, sizeof(ntlmsigature)), 0);
848 0 : CHECK(krb5_ret_uint32(in, &type), 0);
849 0 : CHECK(type, 2);
850 :
851 0 : CHECK(ret_sec_buffer(in, &targetname), 0);
852 0 : CHECK(krb5_ret_uint32(in, &type2->flags), 0);
853 0 : if (type2->flags & NTLM_NEG_UNICODE)
854 0 : ucs2 = 1;
855 0 : CHECK_SIZE(krb5_storage_read(in, type2->challenge, sizeof(type2->challenge)),
856 : sizeof(type2->challenge));
857 0 : CHECK(krb5_ret_uint32(in, &ctx[0]), 0); /* context */
858 0 : CHECK(krb5_ret_uint32(in, &ctx[1]), 0);
859 0 : CHECK(ret_sec_buffer(in, &targetinfo), 0);
860 : /* os version */
861 0 : if (type2->flags & NTLM_NEG_VERSION) {
862 0 : CHECK(krb5_ret_uint32(in, &type2->os[0]), 0);
863 0 : CHECK(krb5_ret_uint32(in, &type2->os[1]), 0);
864 : }
865 :
866 0 : CHECK(ret_sec_string(in, ucs2, &targetname, &type2->targetname), 0);
867 0 : CHECK(ret_buf(in, &targetinfo, &type2->targetinfo), 0);
868 0 : ret = 0;
869 :
870 0 : out:
871 0 : if (in)
872 0 : krb5_storage_free(in);
873 0 : if (ret)
874 0 : heim_ntlm_free_type2(type2);
875 :
876 0 : return ret;
877 : }
878 :
879 : /**
880 : * Encodes an ntlm_type2 message.
881 : *
882 : * @param type2 the ntlm_type2 message to encode.
883 : * @param data is the return buffer with the encoded message, should be
884 : * freed with heim_ntlm_free_buf().
885 : *
886 : * @return In case of success 0 is return, an errors, a errno in what
887 : * went wrong.
888 : *
889 : * @ingroup ntlm_core
890 : */
891 :
892 : int
893 0 : heim_ntlm_encode_type2(const struct ntlm_type2 *type2, struct ntlm_buf *data)
894 : {
895 : struct sec_buffer targetname, targetinfo;
896 : krb5_error_code ret;
897 0 : krb5_storage *out = NULL;
898 : uint32_t base;
899 0 : int ucs2 = 0;
900 :
901 0 : base = 48;
902 :
903 0 : if (type2->flags & NTLM_NEG_VERSION)
904 0 : base += SIZE_OS_VERSION;
905 :
906 0 : if (type2->flags & NTLM_NEG_UNICODE)
907 0 : ucs2 = 1;
908 :
909 0 : targetname.offset = base;
910 0 : targetname.length = len_string(ucs2, type2->targetname);
911 0 : targetname.allocated = targetname.length;
912 :
913 0 : targetinfo.offset = targetname.allocated + targetname.offset;
914 0 : targetinfo.length = type2->targetinfo.length;
915 0 : targetinfo.allocated = type2->targetinfo.length;
916 :
917 0 : out = krb5_storage_emem();
918 0 : if (out == NULL)
919 0 : return ENOMEM;
920 :
921 0 : krb5_storage_set_byteorder(out, KRB5_STORAGE_BYTEORDER_LE);
922 0 : CHECK_SIZE(krb5_storage_write(out, ntlmsigature, sizeof(ntlmsigature)),
923 : sizeof(ntlmsigature));
924 0 : CHECK(krb5_store_uint32(out, 2), 0);
925 0 : CHECK(store_sec_buffer(out, &targetname), 0);
926 0 : CHECK(krb5_store_uint32(out, type2->flags), 0);
927 0 : CHECK_SIZE(krb5_storage_write(out, type2->challenge, sizeof(type2->challenge)),
928 : sizeof(type2->challenge));
929 0 : CHECK(krb5_store_uint32(out, 0), 0); /* context */
930 0 : CHECK(krb5_store_uint32(out, 0), 0);
931 0 : CHECK(store_sec_buffer(out, &targetinfo), 0);
932 : /* os version */
933 0 : if (type2->flags & NTLM_NEG_VERSION) {
934 0 : CHECK(encode_os_version(out), 0);
935 : }
936 0 : CHECK(put_string(out, ucs2, type2->targetname), 0);
937 0 : CHECK_SIZE(krb5_storage_write(out, type2->targetinfo.data,
938 : type2->targetinfo.length),
939 : type2->targetinfo.length);
940 :
941 : {
942 : krb5_data d;
943 0 : ret = krb5_storage_to_data(out, &d);
944 0 : data->data = d.data;
945 0 : data->length = d.length;
946 : }
947 :
948 0 : out:
949 0 : krb5_storage_free(out);
950 :
951 0 : return ret;
952 : }
953 :
954 : /**
955 : * Frees the ntlm_type3 message
956 : *
957 : * @param data message to be freed
958 : *
959 : * @ingroup ntlm_core
960 : */
961 :
962 : void
963 0 : heim_ntlm_free_type3(struct ntlm_type3 *data)
964 : {
965 0 : heim_ntlm_free_buf(&data->lm);
966 0 : heim_ntlm_free_buf(&data->ntlm);
967 0 : if (data->targetname)
968 0 : free(data->targetname);
969 0 : if (data->username)
970 0 : free(data->username);
971 0 : if (data->ws)
972 0 : free(data->ws);
973 0 : heim_ntlm_free_buf(&data->sessionkey);
974 0 : memset(data, 0, sizeof(*data));
975 0 : }
976 :
977 : /*
978 : *
979 : */
980 :
981 : int
982 0 : heim_ntlm_decode_type3(const struct ntlm_buf *buf,
983 : int ucs2,
984 : struct ntlm_type3 *type3)
985 : {
986 : krb5_error_code ret;
987 : unsigned char sig[8];
988 : uint32_t type;
989 : krb5_storage *in;
990 : struct sec_buffer lm, ntlm, target, username, sessionkey, ws;
991 0 : uint32_t min_offset = 0xffffffff;
992 :
993 0 : memset(type3, 0, sizeof(*type3));
994 0 : memset(&sessionkey, 0, sizeof(sessionkey));
995 :
996 0 : in = krb5_storage_from_readonly_mem(buf->data, buf->length);
997 0 : if (in == NULL) {
998 0 : ret = ENOMEM;
999 0 : goto out;
1000 : }
1001 0 : krb5_storage_set_byteorder(in, KRB5_STORAGE_BYTEORDER_LE);
1002 :
1003 0 : CHECK_SIZE(krb5_storage_read(in, sig, sizeof(sig)), sizeof(sig));
1004 0 : CHECK(ct_memcmp(ntlmsigature, sig, sizeof(ntlmsigature)), 0);
1005 0 : CHECK(krb5_ret_uint32(in, &type), 0);
1006 0 : CHECK(type, 3);
1007 0 : CHECK(ret_sec_buffer(in, &lm), 0);
1008 0 : if (lm.allocated)
1009 0 : min_offset = min(min_offset, lm.offset);
1010 0 : CHECK(ret_sec_buffer(in, &ntlm), 0);
1011 0 : if (ntlm.allocated)
1012 0 : min_offset = min(min_offset, ntlm.offset);
1013 0 : CHECK(ret_sec_buffer(in, &target), 0);
1014 0 : min_offset = min(min_offset, target.offset);
1015 0 : CHECK(ret_sec_buffer(in, &username), 0);
1016 0 : min_offset = min(min_offset, username.offset);
1017 0 : CHECK(ret_sec_buffer(in, &ws), 0);
1018 0 : if (ws.allocated)
1019 0 : min_offset = min(min_offset, ws.offset);
1020 :
1021 0 : if (min_offset >= 52) {
1022 0 : CHECK(ret_sec_buffer(in, &sessionkey), 0);
1023 0 : min_offset = min(min_offset, sessionkey.offset);
1024 0 : CHECK(krb5_ret_uint32(in, &type3->flags), 0);
1025 : }
1026 0 : if (min_offset >= 52 + SIZE_SEC_BUFFER + 4 + SIZE_OS_VERSION) {
1027 0 : CHECK(krb5_ret_uint32(in, &type3->os[0]), 0);
1028 0 : CHECK(krb5_ret_uint32(in, &type3->os[1]), 0);
1029 : }
1030 0 : if (min_offset >= 52 + SIZE_SEC_BUFFER + 4 + SIZE_OS_VERSION + 16) {
1031 0 : type3->mic_offset = 52 + SIZE_SEC_BUFFER + 4 + SIZE_OS_VERSION;
1032 0 : CHECK_SIZE(krb5_storage_read(in, type3->mic, sizeof(type3->mic)), sizeof(type3->mic));
1033 : } else
1034 0 : type3->mic_offset = 0;
1035 0 : CHECK(ret_buf(in, &lm, &type3->lm), 0);
1036 0 : CHECK(ret_buf(in, &ntlm, &type3->ntlm), 0);
1037 0 : CHECK(ret_sec_string(in, ucs2, &target, &type3->targetname), 0);
1038 0 : CHECK(ret_sec_string(in, ucs2, &username, &type3->username), 0);
1039 0 : CHECK(ret_sec_string(in, ucs2, &ws, &type3->ws), 0);
1040 0 : if (sessionkey.offset)
1041 0 : CHECK(ret_buf(in, &sessionkey, &type3->sessionkey), 0);
1042 :
1043 0 : out:
1044 0 : if (in)
1045 0 : krb5_storage_free(in);
1046 0 : if (ret)
1047 0 : heim_ntlm_free_type3(type3);
1048 :
1049 0 : return ret;
1050 : }
1051 :
1052 : /**
1053 : * Encodes an ntlm_type3 message.
1054 : *
1055 : * @param type3 the ntlm_type3 message to encode.
1056 : * @param data is the return buffer with the encoded message, should be
1057 : * @param[out] mic_offset offset of message integrity code
1058 : * freed with heim_ntlm_free_buf().
1059 : *
1060 : * @return In case of success 0 is return, an errors, a errno in what
1061 : * went wrong.
1062 : *
1063 : * @ingroup ntlm_core
1064 : */
1065 :
1066 : int
1067 0 : heim_ntlm_encode_type3(const struct ntlm_type3 *type3, struct ntlm_buf *data, size_t *mic_offset)
1068 : {
1069 : struct sec_buffer lm, ntlm, target, username, sessionkey, ws;
1070 : krb5_error_code ret;
1071 0 : krb5_storage *out = NULL;
1072 : uint32_t base;
1073 0 : int ucs2 = 0;
1074 :
1075 0 : memset(&lm, 0, sizeof(lm));
1076 0 : memset(&ntlm, 0, sizeof(ntlm));
1077 0 : memset(&target, 0, sizeof(target));
1078 0 : memset(&username, 0, sizeof(username));
1079 0 : memset(&ws, 0, sizeof(ws));
1080 0 : memset(&sessionkey, 0, sizeof(sessionkey));
1081 :
1082 0 : base = 52;
1083 :
1084 0 : base += 8; /* sessionkey sec buf */
1085 0 : base += 4; /* flags */
1086 0 : if (type3->flags & NTLM_NEG_VERSION)
1087 0 : base += SIZE_OS_VERSION; /* os flags */
1088 :
1089 0 : if (mic_offset) {
1090 0 : *mic_offset = base;
1091 0 : base += 16;
1092 : }
1093 :
1094 0 : if (type3->flags & NTLM_NEG_UNICODE)
1095 0 : ucs2 = 1;
1096 :
1097 0 : target.offset = base;
1098 0 : target.length = len_string(ucs2, type3->targetname);
1099 0 : target.allocated = target.length;
1100 :
1101 0 : username.offset = target.offset + target.allocated;
1102 0 : username.length = len_string(ucs2, type3->username);
1103 0 : username.allocated = username.length;
1104 :
1105 0 : ws.offset = username.offset + username.allocated;
1106 0 : ws.length = len_string(ucs2, type3->ws);
1107 0 : ws.allocated = ws.length;
1108 :
1109 0 : lm.offset = ws.offset + ws.allocated;
1110 0 : lm.length = type3->lm.length;
1111 0 : lm.allocated = type3->lm.length;
1112 :
1113 0 : ntlm.offset = lm.offset + lm.allocated;
1114 0 : ntlm.length = type3->ntlm.length;
1115 0 : ntlm.allocated = ntlm.length;
1116 :
1117 0 : sessionkey.offset = ntlm.offset + ntlm.allocated;
1118 0 : sessionkey.length = type3->sessionkey.length;
1119 0 : sessionkey.allocated = type3->sessionkey.length;
1120 :
1121 0 : out = krb5_storage_emem();
1122 0 : if (out == NULL)
1123 0 : return ENOMEM;
1124 :
1125 0 : krb5_storage_set_byteorder(out, KRB5_STORAGE_BYTEORDER_LE);
1126 0 : CHECK_SIZE(krb5_storage_write(out, ntlmsigature, sizeof(ntlmsigature)),
1127 : sizeof(ntlmsigature));
1128 0 : CHECK(krb5_store_uint32(out, 3), 0);
1129 :
1130 0 : CHECK(store_sec_buffer(out, &lm), 0);
1131 0 : CHECK(store_sec_buffer(out, &ntlm), 0);
1132 0 : CHECK(store_sec_buffer(out, &target), 0);
1133 0 : CHECK(store_sec_buffer(out, &username), 0);
1134 0 : CHECK(store_sec_buffer(out, &ws), 0);
1135 0 : CHECK(store_sec_buffer(out, &sessionkey), 0);
1136 0 : CHECK(krb5_store_uint32(out, type3->flags), 0);
1137 :
1138 : /* os version */
1139 0 : if (type3->flags & NTLM_NEG_VERSION) {
1140 0 : CHECK(encode_os_version(out), 0);
1141 : }
1142 :
1143 0 : if (mic_offset) {
1144 : static const uint8_t buf[16] = { 0 };
1145 0 : CHECK_SIZE(krb5_storage_write(out, buf, sizeof(buf)), sizeof(buf));
1146 : }
1147 :
1148 0 : CHECK(put_string(out, ucs2, type3->targetname), 0);
1149 0 : CHECK(put_string(out, ucs2, type3->username), 0);
1150 0 : CHECK(put_string(out, ucs2, type3->ws), 0);
1151 0 : CHECK(put_buf(out, &type3->lm), 0);
1152 0 : CHECK(put_buf(out, &type3->ntlm), 0);
1153 0 : CHECK(put_buf(out, &type3->sessionkey), 0);
1154 :
1155 : {
1156 : krb5_data d;
1157 0 : ret = krb5_storage_to_data(out, &d);
1158 0 : data->data = d.data;
1159 0 : data->length = d.length;
1160 : }
1161 :
1162 0 : out:
1163 0 : krb5_storage_free(out);
1164 :
1165 0 : return ret;
1166 : }
1167 :
1168 :
1169 : /*
1170 : *
1171 : */
1172 :
1173 : static void
1174 0 : splitandenc(unsigned char *hash,
1175 : unsigned char *challenge,
1176 : unsigned char *answer)
1177 : {
1178 : EVP_CIPHER_CTX ctx;
1179 : unsigned char key[8];
1180 :
1181 0 : key[0] = hash[0];
1182 0 : key[1] = (hash[0] << 7) | (hash[1] >> 1);
1183 0 : key[2] = (hash[1] << 6) | (hash[2] >> 2);
1184 0 : key[3] = (hash[2] << 5) | (hash[3] >> 3);
1185 0 : key[4] = (hash[3] << 4) | (hash[4] >> 4);
1186 0 : key[5] = (hash[4] << 3) | (hash[5] >> 5);
1187 0 : key[6] = (hash[5] << 2) | (hash[6] >> 6);
1188 0 : key[7] = (hash[6] << 1);
1189 :
1190 0 : EVP_CIPHER_CTX_init(&ctx);
1191 :
1192 0 : EVP_CipherInit_ex(&ctx, EVP_des_cbc(), NULL, key, NULL, 1);
1193 0 : EVP_Cipher(&ctx, answer, challenge, 8);
1194 0 : EVP_CIPHER_CTX_cleanup(&ctx);
1195 0 : memset_s(key, sizeof(key), 0, sizeof(key));
1196 0 : }
1197 :
1198 : /**
1199 : * Calculate the NTLM key, the password is assumed to be in UTF8.
1200 : *
1201 : * @param password password to calcute the key for.
1202 : * @param key calcuted key, should be freed with heim_ntlm_free_buf().
1203 : *
1204 : * @return In case of success 0 is return, an errors, a errno in what
1205 : * went wrong.
1206 : *
1207 : * @ingroup ntlm_core
1208 : */
1209 :
1210 : int
1211 0 : heim_ntlm_nt_key(const char *password, struct ntlm_buf *key)
1212 : {
1213 : struct ntlm_buf buf;
1214 : EVP_MD_CTX *m;
1215 : int ret;
1216 :
1217 0 : key->data = malloc(MD4_DIGEST_LENGTH);
1218 0 : if (key->data == NULL)
1219 0 : return ENOMEM;
1220 0 : key->length = MD4_DIGEST_LENGTH;
1221 :
1222 0 : ret = ascii2ucs2le(password, 0, &buf);
1223 0 : if (ret) {
1224 0 : heim_ntlm_free_buf(key);
1225 0 : return ret;
1226 : }
1227 :
1228 0 : m = EVP_MD_CTX_create();
1229 0 : if (m == NULL) {
1230 0 : heim_ntlm_free_buf(key);
1231 0 : heim_ntlm_free_buf(&buf);
1232 0 : return ENOMEM;
1233 : }
1234 :
1235 0 : EVP_DigestInit_ex(m, EVP_md4(), NULL);
1236 0 : EVP_DigestUpdate(m, buf.data, buf.length);
1237 0 : EVP_DigestFinal_ex(m, key->data, NULL);
1238 0 : EVP_MD_CTX_destroy(m);
1239 :
1240 0 : heim_ntlm_free_buf(&buf);
1241 0 : return 0;
1242 : }
1243 :
1244 : /**
1245 : * Calculate NTLMv1 response hash
1246 : *
1247 : * @param key the ntlm v1 key
1248 : * @param len length of key
1249 : * @param challenge sent by the server
1250 : * @param answer calculated answer, should be freed with heim_ntlm_free_buf().
1251 : *
1252 : * @return In case of success 0 is return, an errors, a errno in what
1253 : * went wrong.
1254 : *
1255 : * @ingroup ntlm_core
1256 : */
1257 :
1258 : int
1259 0 : heim_ntlm_calculate_ntlm1(void *key, size_t len,
1260 : unsigned char challenge[8],
1261 : struct ntlm_buf *answer)
1262 : {
1263 : unsigned char res[21];
1264 :
1265 0 : if (len != MD4_DIGEST_LENGTH)
1266 0 : return HNTLM_ERR_INVALID_LENGTH;
1267 :
1268 0 : memcpy(res, key, len);
1269 0 : memset(&res[MD4_DIGEST_LENGTH], 0, sizeof(res) - MD4_DIGEST_LENGTH);
1270 :
1271 0 : answer->data = malloc(24);
1272 0 : if (answer->data == NULL)
1273 0 : return ENOMEM;
1274 0 : answer->length = 24;
1275 :
1276 0 : splitandenc(&res[0], challenge, ((unsigned char *)answer->data) + 0);
1277 0 : splitandenc(&res[7], challenge, ((unsigned char *)answer->data) + 8);
1278 0 : splitandenc(&res[14], challenge, ((unsigned char *)answer->data) + 16);
1279 :
1280 0 : return 0;
1281 : }
1282 :
1283 : int
1284 0 : heim_ntlm_v1_base_session(void *key, size_t len,
1285 : struct ntlm_buf *session)
1286 : {
1287 : EVP_MD_CTX *m;
1288 :
1289 0 : session->length = MD4_DIGEST_LENGTH;
1290 0 : session->data = malloc(session->length);
1291 0 : if (session->data == NULL) {
1292 0 : session->length = 0;
1293 0 : return ENOMEM;
1294 : }
1295 :
1296 0 : m = EVP_MD_CTX_create();
1297 0 : if (m == NULL) {
1298 0 : heim_ntlm_free_buf(session);
1299 0 : return ENOMEM;
1300 : }
1301 0 : EVP_DigestInit_ex(m, EVP_md4(), NULL);
1302 0 : EVP_DigestUpdate(m, key, len);
1303 0 : EVP_DigestFinal_ex(m, session->data, NULL);
1304 0 : EVP_MD_CTX_destroy(m);
1305 :
1306 0 : return 0;
1307 : }
1308 :
1309 : int
1310 0 : heim_ntlm_v2_base_session(void *key, size_t len,
1311 : struct ntlm_buf *ntlmResponse,
1312 : struct ntlm_buf *session)
1313 : {
1314 : unsigned int hmaclen;
1315 : HMAC_CTX c;
1316 :
1317 0 : if (ntlmResponse->length <= 16)
1318 0 : return HNTLM_ERR_INVALID_LENGTH;
1319 :
1320 0 : session->data = malloc(16);
1321 0 : if (session->data == NULL)
1322 0 : return ENOMEM;
1323 0 : session->length = 16;
1324 :
1325 : /* Note: key is the NTLMv2 key */
1326 0 : HMAC_CTX_init(&c);
1327 0 : if (HMAC_Init_ex(&c, key, len, EVP_md5(), NULL) == 0) {
1328 0 : HMAC_CTX_cleanup(&c);
1329 0 : return ENOMEM;
1330 : }
1331 0 : HMAC_Update(&c, ntlmResponse->data, 16);
1332 0 : HMAC_Final(&c, session->data, &hmaclen);
1333 0 : HMAC_CTX_cleanup(&c);
1334 :
1335 0 : return 0;
1336 : }
1337 :
1338 :
1339 : int
1340 0 : heim_ntlm_keyex_wrap(struct ntlm_buf *base_session,
1341 : struct ntlm_buf *session,
1342 : struct ntlm_buf *encryptedSession)
1343 : {
1344 : EVP_CIPHER_CTX c;
1345 : int ret;
1346 :
1347 0 : if (base_session->length != MD4_DIGEST_LENGTH)
1348 0 : return HNTLM_ERR_INVALID_LENGTH;
1349 :
1350 0 : session->length = MD4_DIGEST_LENGTH;
1351 0 : session->data = malloc(session->length);
1352 0 : if (session->data == NULL) {
1353 0 : session->length = 0;
1354 0 : return ENOMEM;
1355 : }
1356 0 : encryptedSession->length = MD4_DIGEST_LENGTH;
1357 0 : encryptedSession->data = malloc(encryptedSession->length);
1358 0 : if (encryptedSession->data == NULL) {
1359 0 : heim_ntlm_free_buf(session);
1360 0 : encryptedSession->length = 0;
1361 0 : return ENOMEM;
1362 : }
1363 :
1364 0 : EVP_CIPHER_CTX_init(&c);
1365 :
1366 0 : ret = EVP_CipherInit_ex(&c, EVP_rc4(), NULL, base_session->data, NULL, 1);
1367 0 : if (ret != 1) {
1368 0 : EVP_CIPHER_CTX_cleanup(&c);
1369 0 : heim_ntlm_free_buf(encryptedSession);
1370 0 : heim_ntlm_free_buf(session);
1371 0 : return HNTLM_ERR_CRYPTO;
1372 : }
1373 :
1374 0 : if (RAND_bytes(session->data, session->length) != 1) {
1375 0 : EVP_CIPHER_CTX_cleanup(&c);
1376 0 : heim_ntlm_free_buf(encryptedSession);
1377 0 : heim_ntlm_free_buf(session);
1378 0 : return HNTLM_ERR_RAND;
1379 : }
1380 :
1381 0 : EVP_Cipher(&c, encryptedSession->data, session->data, encryptedSession->length);
1382 0 : EVP_CIPHER_CTX_cleanup(&c);
1383 :
1384 0 : return 0;
1385 :
1386 :
1387 :
1388 : }
1389 :
1390 : /**
1391 : * Generates an NTLMv1 session random with assosited session master key.
1392 : *
1393 : * @param key the ntlm v1 key
1394 : * @param len length of key
1395 : * @param session generated session nonce, should be freed with heim_ntlm_free_buf().
1396 : * @param master calculated session master key, should be freed with heim_ntlm_free_buf().
1397 : *
1398 : * @return In case of success 0 is return, an errors, a errno in what
1399 : * went wrong.
1400 : *
1401 : * @ingroup ntlm_core
1402 : */
1403 :
1404 : int
1405 0 : heim_ntlm_build_ntlm1_master(void *key, size_t len,
1406 : struct ntlm_buf *session,
1407 : struct ntlm_buf *master)
1408 : {
1409 : struct ntlm_buf sess;
1410 : int ret;
1411 :
1412 0 : ret = heim_ntlm_v1_base_session(key, len, &sess);
1413 0 : if (ret)
1414 0 : return ret;
1415 :
1416 0 : ret = heim_ntlm_keyex_wrap(&sess, session, master);
1417 0 : heim_ntlm_free_buf(&sess);
1418 :
1419 0 : return ret;
1420 : }
1421 :
1422 : /**
1423 : * Generates an NTLMv2 session random with associated session master key.
1424 : *
1425 : * @param key the NTLMv2 key
1426 : * @param len length of key
1427 : * @param blob the NTLMv2 "blob"
1428 : * @param session generated session nonce, should be freed with heim_ntlm_free_buf().
1429 : * @param master calculated session master key, should be freed with heim_ntlm_free_buf().
1430 : *
1431 : * @return In case of success 0 is return, an errors, a errno in what
1432 : * went wrong.
1433 : *
1434 : * @ingroup ntlm_core
1435 : */
1436 :
1437 :
1438 : int
1439 0 : heim_ntlm_build_ntlm2_master(void *key, size_t len,
1440 : struct ntlm_buf *blob,
1441 : struct ntlm_buf *session,
1442 : struct ntlm_buf *master)
1443 : {
1444 : struct ntlm_buf sess;
1445 : int ret;
1446 :
1447 0 : ret = heim_ntlm_v2_base_session(key, len, blob, &sess);
1448 0 : if (ret)
1449 0 : return ret;
1450 :
1451 0 : ret = heim_ntlm_keyex_wrap(&sess, session, master);
1452 0 : heim_ntlm_free_buf(&sess);
1453 :
1454 0 : return ret;
1455 : }
1456 :
1457 : /**
1458 : * Given a key and encrypted session, unwrap the session key
1459 : *
1460 : * @param baseKey the sessionBaseKey
1461 : * @param encryptedSession encrypted session, type3.session field.
1462 : * @param session generated session nonce, should be freed with heim_ntlm_free_buf().
1463 : *
1464 : * @return In case of success 0 is return, an errors, a errno in what
1465 : * went wrong.
1466 : *
1467 : * @ingroup ntlm_core
1468 : */
1469 :
1470 : int
1471 0 : heim_ntlm_keyex_unwrap(struct ntlm_buf *baseKey,
1472 : struct ntlm_buf *encryptedSession,
1473 : struct ntlm_buf *session)
1474 : {
1475 : EVP_CIPHER_CTX c;
1476 :
1477 0 : memset(session, 0, sizeof(*session));
1478 :
1479 0 : if (encryptedSession->length != MD4_DIGEST_LENGTH)
1480 0 : return HNTLM_ERR_INVALID_LENGTH;
1481 0 : if (baseKey->length != MD4_DIGEST_LENGTH)
1482 0 : return HNTLM_ERR_INVALID_LENGTH;
1483 :
1484 0 : session->length = MD4_DIGEST_LENGTH;
1485 0 : session->data = malloc(session->length);
1486 0 : if (session->data == NULL) {
1487 0 : session->length = 0;
1488 0 : return ENOMEM;
1489 : }
1490 0 : EVP_CIPHER_CTX_init(&c);
1491 :
1492 0 : if (EVP_CipherInit_ex(&c, EVP_rc4(), NULL, baseKey->data, NULL, 0) != 1) {
1493 0 : EVP_CIPHER_CTX_cleanup(&c);
1494 0 : heim_ntlm_free_buf(session);
1495 0 : return HNTLM_ERR_CRYPTO;
1496 : }
1497 :
1498 0 : EVP_Cipher(&c, session->data, encryptedSession->data, session->length);
1499 0 : EVP_CIPHER_CTX_cleanup(&c);
1500 :
1501 0 : return 0;
1502 : }
1503 :
1504 :
1505 : /**
1506 : * Generates an NTLMv2 session key.
1507 : *
1508 : * @param key the ntlm key
1509 : * @param len length of key
1510 : * @param username name of the user, as sent in the message, assumed to be in UTF8.
1511 : * @param target the name of the target, assumed to be in UTF8.
1512 : * @param upper_case_target upper case the target, should not be used only for legacy systems
1513 : * @param ntlmv2 the ntlmv2 session key
1514 : *
1515 : * @return 0 on success, or an error code on failure.
1516 : *
1517 : * @ingroup ntlm_core
1518 : */
1519 :
1520 : int
1521 0 : heim_ntlm_ntlmv2_key(const void *key, size_t len,
1522 : const char *username,
1523 : const char *target,
1524 : int upper_case_target,
1525 : unsigned char ntlmv2[16])
1526 : {
1527 : int ret;
1528 : unsigned int hmaclen;
1529 : struct ntlm_buf buf;
1530 : HMAC_CTX c;
1531 :
1532 0 : HMAC_CTX_init(&c);
1533 0 : if (HMAC_Init_ex(&c, key, len, EVP_md5(), NULL) == 0) {
1534 0 : ret = ENOMEM;
1535 0 : goto out;
1536 : }
1537 : /* uppercase username and turn it into ucs2-le */
1538 0 : ret = ascii2ucs2le(username, 1, &buf);
1539 0 : if (ret)
1540 0 : goto out;
1541 0 : HMAC_Update(&c, buf.data, buf.length);
1542 0 : free(buf.data);
1543 : /* turn target into ucs2-le */
1544 0 : ret = ascii2ucs2le(target, upper_case_target, &buf);
1545 0 : if (ret)
1546 0 : goto out;
1547 0 : HMAC_Update(&c, buf.data, buf.length);
1548 0 : free(buf.data);
1549 0 : HMAC_Final(&c, ntlmv2, &hmaclen);
1550 0 : out:
1551 0 : HMAC_CTX_cleanup(&c);
1552 0 : memset(&c, 0, sizeof(c));
1553 :
1554 0 : return ret;
1555 : }
1556 :
1557 : /*
1558 : *
1559 : */
1560 :
1561 : #define NTTIME_EPOCH 0x019DB1DED53E8000LL
1562 :
1563 : uint64_t
1564 0 : heim_ntlm_unix2ts_time(time_t unix_time)
1565 : {
1566 : long long wt;
1567 0 : wt = unix_time * (uint64_t)10000000 + (uint64_t)NTTIME_EPOCH;
1568 0 : return wt;
1569 : }
1570 :
1571 : time_t
1572 0 : heim_ntlm_ts2unixtime(uint64_t t)
1573 : {
1574 0 : t = ((t - (uint64_t)NTTIME_EPOCH) / (uint64_t)10000000);
1575 0 : if (t > (((uint64_t)(time_t)(~(uint64_t)0)) >> 1))
1576 0 : return 0;
1577 0 : return (time_t)t;
1578 : }
1579 :
1580 : /**
1581 : * Calculate LMv2 response
1582 : *
1583 : * @param key the ntlm key
1584 : * @param len length of key
1585 : * @param username name of the user, as sent in the message, assumed to be in UTF8.
1586 : * @param target the name of the target, assumed to be in UTF8.
1587 : * @param serverchallenge challenge as sent by the server in the type2 message.
1588 : * @param ntlmv2 calculated session key
1589 : * @param answer ntlm response answer, should be freed with heim_ntlm_free_buf().
1590 : *
1591 : * @return In case of success 0 is return, an errors, a errno in what
1592 : * went wrong.
1593 : *
1594 : * @ingroup ntlm_core
1595 : */
1596 :
1597 : int
1598 0 : heim_ntlm_calculate_lm2(const void *key, size_t len,
1599 : const char *username,
1600 : const char *target,
1601 : const unsigned char serverchallenge[8],
1602 : unsigned char ntlmv2[16],
1603 : struct ntlm_buf *answer)
1604 : {
1605 : unsigned char clientchallenge[8];
1606 : krb5_error_code ret;
1607 :
1608 0 : if (RAND_bytes(clientchallenge, sizeof(clientchallenge)) != 1)
1609 0 : return HNTLM_ERR_RAND;
1610 :
1611 : /* calculate ntlmv2 key */
1612 :
1613 0 : heim_ntlm_ntlmv2_key(key, len, username, target, 0, ntlmv2);
1614 :
1615 0 : answer->data = malloc(24);
1616 0 : if (answer->data == NULL)
1617 0 : return ENOMEM;
1618 0 : answer->length = 24;
1619 :
1620 0 : ret = heim_ntlm_derive_ntlm2_sess(ntlmv2, clientchallenge, 8,
1621 0 : serverchallenge, answer->data);
1622 0 : if (ret == 0)
1623 0 : memcpy(((unsigned char *)answer->data) + 16, clientchallenge, 8);
1624 :
1625 0 : return ret;
1626 : }
1627 :
1628 :
1629 : /**
1630 : * Calculate NTLMv2 response
1631 : *
1632 : * @param key the ntlm key
1633 : * @param len length of key
1634 : * @param username name of the user, as sent in the message, assumed to be in UTF8.
1635 : * @param target the name of the target, assumed to be in UTF8.
1636 : * @param serverchallenge challenge as sent by the server in the type2 message.
1637 : * @param infotarget infotarget as sent by the server in the type2 message.
1638 : * @param ntlmv2 calculated session key
1639 : * @param answer ntlm response answer, should be freed with heim_ntlm_free_buf().
1640 : *
1641 : * @return In case of success 0 is return, an errors, a errno in what
1642 : * went wrong.
1643 : *
1644 : * @ingroup ntlm_core
1645 : */
1646 :
1647 : int
1648 0 : heim_ntlm_calculate_ntlm2(const void *key, size_t len,
1649 : const char *username,
1650 : const char *target,
1651 : const unsigned char serverchallenge[8],
1652 : const struct ntlm_buf *infotarget,
1653 : unsigned char ntlmv2[16],
1654 : struct ntlm_buf *answer)
1655 : {
1656 : krb5_error_code ret;
1657 : krb5_data data;
1658 : unsigned char ntlmv2answer[16];
1659 : krb5_storage *sp;
1660 : unsigned char clientchallenge[8];
1661 : uint64_t t;
1662 :
1663 0 : t = heim_ntlm_unix2ts_time(time(NULL));
1664 :
1665 0 : if (RAND_bytes(clientchallenge, sizeof(clientchallenge)) != 1)
1666 0 : return HNTLM_ERR_RAND;
1667 :
1668 : /* calculate ntlmv2 key */
1669 :
1670 0 : heim_ntlm_ntlmv2_key(key, len, username, target, 0, ntlmv2);
1671 :
1672 : /* calculate and build ntlmv2 answer */
1673 :
1674 0 : sp = krb5_storage_emem();
1675 0 : if (sp == NULL)
1676 0 : return ENOMEM;
1677 0 : krb5_storage_set_flags(sp, KRB5_STORAGE_BYTEORDER_LE);
1678 :
1679 0 : CHECK(krb5_store_uint32(sp, 0x00000101), 0);
1680 0 : CHECK(krb5_store_uint32(sp, 0), 0);
1681 : /* timestamp le 64 bit ts */
1682 0 : CHECK(krb5_store_uint32(sp, t & 0xffffffff), 0);
1683 0 : CHECK(krb5_store_uint32(sp, t >> 32), 0);
1684 :
1685 0 : CHECK_SIZE(krb5_storage_write(sp, clientchallenge, 8), 8);
1686 :
1687 0 : CHECK(krb5_store_uint32(sp, 0), 0); /* Z(4) */
1688 0 : CHECK_SIZE(krb5_storage_write(sp, infotarget->data, infotarget->length),
1689 : infotarget->length);
1690 :
1691 : /*
1692 : * These last 4 bytes(Z(4)) are not documented by MicroSoft and
1693 : * SnowLeopard doesn't send them, Lion expected them to be there,
1694 : * so we have to continue to send them. That is ok, since everyone
1695 : * else (except Snow) seems to do that too.
1696 : */
1697 0 : CHECK(krb5_store_uint32(sp, 0), 0); /* Z(4) */
1698 :
1699 0 : CHECK(krb5_storage_to_data(sp, &data), 0);
1700 0 : krb5_storage_free(sp);
1701 0 : sp = NULL;
1702 :
1703 0 : ret = heim_ntlm_derive_ntlm2_sess(ntlmv2, data.data, data.length,
1704 : serverchallenge, ntlmv2answer);
1705 0 : if (ret)
1706 0 : return ret;
1707 :
1708 0 : sp = krb5_storage_emem();
1709 0 : if (sp == NULL) {
1710 0 : krb5_data_free(&data);
1711 0 : return ENOMEM;
1712 : }
1713 :
1714 0 : CHECK_SIZE(krb5_storage_write(sp, ntlmv2answer, 16), 16);
1715 0 : CHECK_SIZE(krb5_storage_write(sp, data.data, data.length), data.length);
1716 0 : krb5_data_free(&data);
1717 :
1718 0 : CHECK(krb5_storage_to_data(sp, &data), 0);
1719 0 : krb5_storage_free(sp);
1720 0 : sp = NULL;
1721 :
1722 0 : answer->data = data.data;
1723 0 : answer->length = data.length;
1724 :
1725 0 : return 0;
1726 0 : out:
1727 0 : if (sp)
1728 0 : krb5_storage_free(sp);
1729 0 : return ret;
1730 : }
1731 :
1732 : static const int authtimediff = 3600 * 2; /* 2 hours */
1733 :
1734 : static int
1735 0 : verify_ntlm2(const void *key, size_t len,
1736 : const char *username,
1737 : const char *target,
1738 : int upper_case_target,
1739 : time_t now,
1740 : const unsigned char serverchallenge[8],
1741 : const struct ntlm_buf *answer,
1742 : struct ntlm_buf *infotarget,
1743 : unsigned char ntlmv2[16])
1744 : {
1745 : krb5_error_code ret;
1746 : unsigned char clientanswer[16];
1747 : unsigned char clientnonce[8];
1748 : unsigned char serveranswer[16];
1749 : krb5_storage *sp;
1750 : uint64_t t;
1751 : time_t authtime;
1752 : uint32_t temp;
1753 :
1754 0 : infotarget->length = 0;
1755 0 : infotarget->data = NULL;
1756 :
1757 0 : if (answer->length < 16)
1758 0 : return HNTLM_ERR_INVALID_LENGTH;
1759 :
1760 0 : if (now == 0)
1761 0 : now = time(NULL);
1762 :
1763 : /* calculate ntlmv2 key */
1764 :
1765 0 : heim_ntlm_ntlmv2_key(key, len, username, target, upper_case_target, ntlmv2);
1766 :
1767 : /* calculate and build ntlmv2 answer */
1768 :
1769 0 : sp = krb5_storage_from_readonly_mem(answer->data, answer->length);
1770 0 : if (sp == NULL)
1771 0 : return ENOMEM;
1772 0 : krb5_storage_set_flags(sp, KRB5_STORAGE_BYTEORDER_LE);
1773 :
1774 0 : CHECK_SIZE(krb5_storage_read(sp, clientanswer, 16), 16);
1775 :
1776 0 : CHECK(krb5_ret_uint32(sp, &temp), 0);
1777 0 : CHECK(temp, 0x00000101);
1778 0 : CHECK(krb5_ret_uint32(sp, &temp), 0);
1779 0 : CHECK(temp, 0);
1780 : /* timestamp le 64 bit ts */
1781 0 : CHECK(krb5_ret_uint32(sp, &temp), 0);
1782 0 : t = temp;
1783 0 : CHECK(krb5_ret_uint32(sp, &temp), 0);
1784 0 : t |= ((uint64_t)temp)<< 32;
1785 :
1786 0 : authtime = heim_ntlm_ts2unixtime(t);
1787 :
1788 0 : if (labs((int)(authtime - now)) > authtimediff) {
1789 0 : ret = HNTLM_ERR_TIME_SKEW;
1790 0 : goto out;
1791 : }
1792 :
1793 : /* client challenge */
1794 0 : CHECK_SIZE(krb5_storage_read(sp, clientnonce, 8), 8);
1795 :
1796 0 : CHECK(krb5_ret_uint32(sp, &temp), 0); /* Z(4) */
1797 :
1798 : /* let pick up targetinfo */
1799 0 : infotarget->length = answer->length - (size_t)krb5_storage_seek(sp, 0, SEEK_CUR);
1800 0 : if (infotarget->length < 4) {
1801 0 : ret = HNTLM_ERR_INVALID_LENGTH;
1802 0 : goto out;
1803 : }
1804 0 : infotarget->data = malloc(infotarget->length);
1805 0 : if (infotarget->data == NULL) {
1806 0 : ret = ENOMEM;
1807 0 : goto out;
1808 : }
1809 0 : CHECK_SIZE(krb5_storage_read(sp, infotarget->data, infotarget->length),
1810 : infotarget->length);
1811 :
1812 0 : krb5_storage_free(sp);
1813 0 : sp = NULL;
1814 :
1815 0 : if (answer->length < 16) {
1816 0 : ret = HNTLM_ERR_INVALID_LENGTH;
1817 0 : goto out;
1818 : }
1819 :
1820 0 : ret = heim_ntlm_derive_ntlm2_sess(ntlmv2,
1821 0 : ((unsigned char *)answer->data) + 16,
1822 0 : answer->length - 16,
1823 : serverchallenge,
1824 : serveranswer);
1825 0 : if (ret)
1826 0 : goto out;
1827 :
1828 0 : if (ct_memcmp(serveranswer, clientanswer, 16) != 0) {
1829 0 : heim_ntlm_free_buf(infotarget);
1830 0 : return HNTLM_ERR_AUTH;
1831 : }
1832 :
1833 0 : return 0;
1834 0 : out:
1835 0 : heim_ntlm_free_buf(infotarget);
1836 0 : if (sp)
1837 0 : krb5_storage_free(sp);
1838 0 : return ret;
1839 : }
1840 :
1841 : /**
1842 : * Verify NTLMv2 response.
1843 : *
1844 : * @param key the ntlm key
1845 : * @param len length of key
1846 : * @param username name of the user, as sent in the message, assumed to be in UTF8.
1847 : * @param target the name of the target, assumed to be in UTF8.
1848 : * @param now the time now (0 if the library should pick it up itself)
1849 : * @param serverchallenge challenge as sent by the server in the type2 message.
1850 : * @param answer ntlm response answer, should be freed with heim_ntlm_free_buf().
1851 : * @param infotarget infotarget as sent by the server in the type2 message.
1852 : * @param ntlmv2 calculated session key
1853 : *
1854 : * @return In case of success 0 is return, an errors, a errno in what
1855 : * went wrong.
1856 : *
1857 : * @ingroup ntlm_core
1858 : */
1859 :
1860 : int
1861 0 : heim_ntlm_verify_ntlm2(const void *key, size_t len,
1862 : const char *username,
1863 : const char *target,
1864 : time_t now,
1865 : const unsigned char serverchallenge[8],
1866 : const struct ntlm_buf *answer,
1867 : struct ntlm_buf *infotarget,
1868 : unsigned char ntlmv2[16])
1869 : {
1870 : int ret;
1871 :
1872 : /**
1873 : * First check with the domain as the client passed it to the function.
1874 : */
1875 :
1876 0 : ret = verify_ntlm2(key, len, username, target, 0, now,
1877 : serverchallenge, answer, infotarget, ntlmv2);
1878 :
1879 : /**
1880 : * Second check with domain uppercased.
1881 : */
1882 :
1883 0 : if (ret)
1884 0 : ret = verify_ntlm2(key, len, username, target, 1, now,
1885 : serverchallenge, answer, infotarget, ntlmv2);
1886 :
1887 : /**
1888 : * Third check with empty domain.
1889 : */
1890 0 : if (ret)
1891 0 : ret = verify_ntlm2(key, len, username, "", 0, now,
1892 : serverchallenge, answer, infotarget, ntlmv2);
1893 0 : return ret;
1894 : }
1895 :
1896 : /*
1897 : * Calculate the NTLM2 Session Response
1898 : *
1899 : * @param clnt_nonce client nonce
1900 : * @param svr_chal server challage
1901 : * @param ntlm2_hash ntlm hash
1902 : * @param lm The LM response, should be freed with heim_ntlm_free_buf().
1903 : * @param ntlm The NTLM response, should be freed with heim_ntlm_free_buf().
1904 : *
1905 : * @return In case of success 0 is return, an errors, a errno in what
1906 : * went wrong.
1907 : *
1908 : * @ingroup ntlm_core
1909 : */
1910 :
1911 : int
1912 0 : heim_ntlm_calculate_ntlm2_sess(const unsigned char clnt_nonce[8],
1913 : const unsigned char svr_chal[8],
1914 : const unsigned char ntlm_hash[16],
1915 : struct ntlm_buf *lm,
1916 : struct ntlm_buf *ntlm)
1917 : {
1918 : unsigned char ntlm2_sess_hash[8];
1919 : unsigned char res[21], *resp;
1920 : int code;
1921 :
1922 0 : code = heim_ntlm_calculate_ntlm2_sess_hash(clnt_nonce, svr_chal,
1923 : ntlm2_sess_hash);
1924 0 : if (code) {
1925 0 : return code;
1926 : }
1927 :
1928 0 : lm->data = malloc(24);
1929 0 : if (lm->data == NULL) {
1930 0 : return ENOMEM;
1931 : }
1932 0 : lm->length = 24;
1933 :
1934 0 : ntlm->data = malloc(24);
1935 0 : if (ntlm->data == NULL) {
1936 0 : free(lm->data);
1937 0 : lm->data = NULL;
1938 0 : return ENOMEM;
1939 : }
1940 0 : ntlm->length = 24;
1941 :
1942 : /* first setup the lm resp */
1943 0 : memset(lm->data, 0, 24);
1944 0 : memcpy(lm->data, clnt_nonce, 8);
1945 :
1946 0 : memset(res, 0, sizeof(res));
1947 0 : memcpy(res, ntlm_hash, 16);
1948 :
1949 0 : resp = ntlm->data;
1950 0 : splitandenc(&res[0], ntlm2_sess_hash, resp + 0);
1951 0 : splitandenc(&res[7], ntlm2_sess_hash, resp + 8);
1952 0 : splitandenc(&res[14], ntlm2_sess_hash, resp + 16);
1953 :
1954 0 : return 0;
1955 : }
1956 :
1957 :
1958 : /*
1959 : * Calculate the NTLM2 Session "Verifier"
1960 : *
1961 : * @param clnt_nonce client nonce
1962 : * @param svr_chal server challage
1963 : * @param hash The NTLM session verifier
1964 : *
1965 : * @return In case of success 0 is return, an errors, a errno in what
1966 : * went wrong.
1967 : *
1968 : * @ingroup ntlm_core
1969 : */
1970 :
1971 : int
1972 0 : heim_ntlm_calculate_ntlm2_sess_hash(const unsigned char clnt_nonce[8],
1973 : const unsigned char svr_chal[8],
1974 : unsigned char verifier[8])
1975 : {
1976 : unsigned char ntlm2_sess_hash[MD5_DIGEST_LENGTH];
1977 : EVP_MD_CTX *m;
1978 :
1979 0 : m = EVP_MD_CTX_create();
1980 0 : if (m == NULL)
1981 0 : return ENOMEM;
1982 :
1983 0 : EVP_DigestInit_ex(m, EVP_md5(), NULL);
1984 0 : EVP_DigestUpdate(m, svr_chal, 8); /* session nonce part 1 */
1985 0 : EVP_DigestUpdate(m, clnt_nonce, 8); /* session nonce part 2 */
1986 0 : EVP_DigestFinal_ex(m, ntlm2_sess_hash, NULL); /* will only use first 8 bytes */
1987 0 : EVP_MD_CTX_destroy(m);
1988 :
1989 0 : memcpy(verifier, ntlm2_sess_hash, 8);
1990 :
1991 0 : return 0;
1992 : }
1993 :
1994 :
1995 : /*
1996 : * Derive a NTLM2 session key
1997 : *
1998 : * @param sessionkey session key from domain controller
1999 : * @param clnt_nonce client nonce
2000 : * @param svr_chal server challenge
2001 : * @param derivedkey salted session key
2002 : *
2003 : * @return In case of success 0 is return, an errors, a errno in what
2004 : * went wrong.
2005 : *
2006 : * @ingroup ntlm_core
2007 : */
2008 :
2009 : int
2010 0 : heim_ntlm_derive_ntlm2_sess(const unsigned char sessionkey[16],
2011 : const unsigned char *clnt_nonce, size_t clnt_nonce_length,
2012 : const unsigned char svr_chal[8],
2013 : unsigned char derivedkey[16])
2014 : {
2015 : unsigned int hmaclen;
2016 : HMAC_CTX c;
2017 :
2018 : /* HMAC(Ksession, serverchallenge || clientchallenge) */
2019 0 : HMAC_CTX_init(&c);
2020 0 : if (HMAC_Init_ex(&c, sessionkey, 16, EVP_md5(), NULL) == 0) {
2021 0 : HMAC_CTX_cleanup(&c);
2022 0 : return ENOMEM;
2023 : }
2024 0 : HMAC_Update(&c, svr_chal, 8);
2025 0 : HMAC_Update(&c, clnt_nonce, clnt_nonce_length);
2026 0 : HMAC_Final(&c, derivedkey, &hmaclen);
2027 0 : HMAC_CTX_cleanup(&c);
2028 0 : memset(&c, 0, sizeof(c));
2029 0 : return 0;
2030 : }
|
