1 /* 2 * Copyright (c) 2000-2001, Boris Popov 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 3. All advertising materials mentioning features or use of this software 14 * must display the following acknowledgement: 15 * This product includes software developed by Boris Popov. 16 * 4. Neither the name of the author nor the names of any co-contributors 17 * may be used to endorse or promote products derived from this software 18 * without specific prior written permission. 19 * 20 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 23 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 30 * SUCH DAMAGE. 31 */ 32 33 #include <sys/cdefs.h> 34 __FBSDID("$FreeBSD$"); 35 36 #include <sys/param.h> 37 #include <sys/malloc.h> 38 #include <sys/kernel.h> 39 #include <sys/systm.h> 40 #include <sys/conf.h> 41 #include <sys/proc.h> 42 #include <sys/fcntl.h> 43 #include <sys/socket.h> 44 #include <sys/socketvar.h> 45 #include <sys/sysctl.h> 46 47 #include <sys/md4.h> 48 #include <sys/iconv.h> 49 50 #include <netsmb/smb.h> 51 #include <netsmb/smb_conn.h> 52 #include <netsmb/smb_subr.h> 53 #include <netsmb/smb_dev.h> 54 55 #include "opt_netsmb.h" 56 57 #ifdef NETSMBCRYPTO 58 59 #include <crypto/des/des.h> 60 61 static u_char N8[] = {0x4b, 0x47, 0x53, 0x21, 0x40, 0x23, 0x24, 0x25}; 62 63 64 static void 65 smb_E(const u_char *key, u_char *data, u_char *dest) 66 { 67 des_key_schedule *ksp; 68 u_char kk[8]; 69 70 kk[0] = key[0] & 0xfe; 71 kk[1] = key[0] << 7 | (key[1] >> 1 & 0xfe); 72 kk[2] = key[1] << 6 | (key[2] >> 2 & 0xfe); 73 kk[3] = key[2] << 5 | (key[3] >> 3 & 0xfe); 74 kk[4] = key[3] << 4 | (key[4] >> 4 & 0xfe); 75 kk[5] = key[4] << 3 | (key[5] >> 5 & 0xfe); 76 kk[6] = key[5] << 2 | (key[6] >> 6 & 0xfe); 77 kk[7] = key[6] << 1; 78 ksp = malloc(sizeof(des_key_schedule), M_SMBTEMP, M_WAITOK); 79 des_set_key((des_cblock *)kk, *ksp); 80 des_ecb_encrypt((des_cblock *)data, (des_cblock *)dest, *ksp, 1); 81 free(ksp, M_SMBTEMP); 82 } 83 #endif 84 85 86 int 87 smb_encrypt(const u_char *apwd, u_char *C8, u_char *RN) 88 { 89 #ifdef NETSMBCRYPTO 90 u_char *p, *P14, *S21; 91 92 p = malloc(14 + 21, M_SMBTEMP, M_WAITOK); 93 bzero(p, 14 + 21); 94 P14 = p; 95 S21 = p + 14; 96 bcopy(apwd, P14, min(14, strlen(apwd))); 97 /* 98 * S21 = concat(Ex(P14, N8), zeros(5)); 99 */ 100 smb_E(P14, N8, S21); 101 smb_E(P14 + 7, N8, S21 + 8); 102 103 smb_E(S21, C8, RN); 104 smb_E(S21 + 7, C8, RN + 8); 105 smb_E(S21 + 14, C8, RN + 16); 106 free(p, M_SMBTEMP); 107 return 0; 108 #else 109 SMBERROR("password encryption is not available\n"); 110 bzero(RN, 24); 111 return EAUTH; 112 #endif 113 } 114 115 int 116 smb_ntencrypt(const u_char *apwd, u_char *C8, u_char *RN) 117 { 118 #ifdef NETSMBCRYPTO 119 u_char S21[21]; 120 u_int16_t *unipwd; 121 MD4_CTX *ctxp; 122 int len; 123 124 len = strlen(apwd); 125 unipwd = malloc((len + 1) * sizeof(u_int16_t), M_SMBTEMP, M_WAITOK); 126 /* 127 * S21 = concat(MD4(U(apwd)), zeros(5)); 128 */ 129 smb_strtouni(unipwd, apwd); 130 ctxp = malloc(sizeof(MD4_CTX), M_SMBTEMP, M_WAITOK); 131 MD4Init(ctxp); 132 MD4Update(ctxp, (u_char*)unipwd, len * sizeof(u_int16_t)); 133 free(unipwd, M_SMBTEMP); 134 bzero(S21, 21); 135 MD4Final(S21, ctxp); 136 free(ctxp, M_SMBTEMP); 137 138 smb_E(S21, C8, RN); 139 smb_E(S21 + 7, C8, RN + 8); 140 smb_E(S21 + 14, C8, RN + 16); 141 return 0; 142 #else 143 SMBERROR("password encryption is not available\n"); 144 bzero(RN, 24); 145 return EAUTH; 146 #endif 147 } 148 149