1/* $NetBSD: smb_crypt.c,v 1.10 2008/12/19 18:49:39 cegger Exp $ */ 2 3/* 4 * Copyright (c) 2000-2001, Boris Popov 5 * All rights reserved. 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 3. All advertising materials mentioning features or use of this software 16 * must display the following acknowledgement: 17 * This product includes software developed by Boris Popov. 18 * 4. Neither the name of the author nor the names of any co-contributors 19 * may be used to endorse or promote products derived from this software 20 * without specific prior written permission. 21 * 22 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 25 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * 34 * FreeBSD: src/sys/netsmb/smb_crypt.c,v 1.3 2001/08/21 08:07:18 bp Exp 35 */ 36 37#include <sys/cdefs.h> 38__KERNEL_RCSID(0, "$NetBSD: smb_crypt.c,v 1.10 2008/12/19 18:49:39 cegger Exp $"); 39 40#include <sys/param.h> 41#include <sys/malloc.h> 42#include <sys/kernel.h> 43#include <sys/systm.h> 44#include <sys/conf.h> 45#include <sys/proc.h> 46#include <sys/fcntl.h> 47#include <sys/socket.h> 48#include <sys/socketvar.h> 49#include <sys/sysctl.h> 50 51#include <sys/md4.h> 52 53#include <netsmb/smb.h> 54#include <netsmb/smb_conn.h> 55#include <netsmb/smb_subr.h> 56#include <netsmb/smb_dev.h> 57 58/* always enable */ 59#define NETSMBCRYPTO 60 61#ifdef NETSMBCRYPTO 62 63#include <crypto/des/des.h> 64 65static const u_char N8[] = {0x4b, 0x47, 0x53, 0x21, 0x40, 0x23, 0x24, 0x25}; 66 67 68static void 69smb_E(const u_char *key, const u_char *data, u_char *dest) 70{ 71 des_key_schedule *ksp; 72 u_char kk[8]; 73 74 kk[0] = key[0] & 0xfe; 75 kk[1] = key[0] << 7 | (key[1] >> 1 & 0xfe); 76 kk[2] = key[1] << 6 | (key[2] >> 2 & 0xfe); 77 kk[3] = key[2] << 5 | (key[3] >> 3 & 0xfe); 78 kk[4] = key[3] << 4 | (key[4] >> 4 & 0xfe); 79 kk[5] = key[4] << 3 | (key[5] >> 5 & 0xfe); 80 kk[6] = key[5] << 2 | (key[6] >> 6 & 0xfe); 81 kk[7] = key[6] << 1; 82 ksp = malloc(sizeof(des_key_schedule), M_SMBTEMP, M_WAITOK); 83 des_set_key((des_cblock *)kk, *ksp); 84 /* XXXUNCONST */ 85 des_ecb_encrypt(__UNCONST(data), (des_cblock *)dest, *ksp, 1); 86 free(ksp, M_SMBTEMP); 87} 88#endif 89 90 91int 92smb_encrypt(const u_char *apwd, u_char *C8, u_char *RN) 93{ 94#ifdef NETSMBCRYPTO 95 u_char *p, *P14, *S21; 96 97 p = malloc(14 + 21, M_SMBTEMP, M_WAITOK|M_ZERO); 98 P14 = p; 99 S21 = p + 14; 100 bcopy(apwd, P14, min(14, strlen(apwd))); 101 /* 102 * S21 = concat(Ex(P14, N8), zeros(5)); 103 */ 104 smb_E(P14, N8, S21); 105 smb_E(P14 + 7, N8, S21 + 8); 106 107 smb_E(S21, C8, RN); 108 smb_E(S21 + 7, C8, RN + 8); 109 smb_E(S21 + 14, C8, RN + 16); 110 free(p, M_SMBTEMP); 111 return 0; 112#else 113 SMBERROR(("password encryption is not available\n")); 114 memset(RN, 0, 24); 115 return EAUTH; 116#endif 117} 118 119int 120smb_ntencrypt(const u_char *apwd, u_char *C8, u_char *RN) 121{ 122#ifdef NETSMBCRYPTO 123 u_char S21[21]; 124 u_int16_t *unipwd; 125 MD4_CTX *ctxp; 126 int len; 127 128 len = strlen(apwd); 129 unipwd = malloc((len + 1) * sizeof(u_int16_t), M_SMBTEMP, M_WAITOK); 130 /* 131 * S21 = concat(MD4(U(apwd)), zeros(5)); 132 */ 133 smb_strtouni(unipwd, apwd); 134 ctxp = malloc(sizeof(MD4_CTX), M_SMBTEMP, M_WAITOK); 135 MD4Init(ctxp); 136 MD4Update(ctxp, (u_char*)unipwd, len * sizeof(u_int16_t)); 137 free(unipwd, M_SMBTEMP); 138 memset(S21, 0, 21); 139 MD4Final(S21, ctxp); 140 free(ctxp, M_SMBTEMP); 141 142 smb_E(S21, C8, RN); 143 smb_E(S21 + 7, C8, RN + 8); 144 smb_E(S21 + 14, C8, RN + 16); 145 return 0; 146#else 147 SMBERROR(("password encryption is not available\n")); 148 memset(RN, 0, 24); 149 return EAUTH; 150#endif 151} 152 153