2
Unix SMB/Netbios implementation.
4
handle NLTMSSP, server side
6
Copyright (C) Andrew Tridgell 2001
7
Copyright (C) Andrew Bartlett 2001-2003
8
Copyright (C) Andrew Bartlett 2005 (Updated from gensec).
10
This program is free software; you can redistribute it and/or modify
11
it under the terms of the GNU General Public License as published by
12
the Free Software Foundation; either version 3 of the License, or
13
(at your option) any later version.
15
This program is distributed in the hope that it will be useful,
16
but WITHOUT ANY WARRANTY; without even the implied warranty of
17
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18
GNU General Public License for more details.
20
You should have received a copy of the GNU General Public License
21
along with this program. If not, see <http://www.gnu.org/licenses/>.
26
static NTSTATUS ntlmssp_client_initial(struct ntlmssp_state *ntlmssp_state,
27
DATA_BLOB reply, DATA_BLOB *next_request);
28
static NTSTATUS ntlmssp_server_negotiate(struct ntlmssp_state *ntlmssp_state,
29
const DATA_BLOB in, DATA_BLOB *out);
30
static NTSTATUS ntlmssp_client_challenge(struct ntlmssp_state *ntlmssp_state,
31
const DATA_BLOB reply, DATA_BLOB *next_request);
32
static NTSTATUS ntlmssp_server_auth(struct ntlmssp_state *ntlmssp_state,
33
const DATA_BLOB request, DATA_BLOB *reply);
36
* Callbacks for NTLMSSP - for both client and server operating modes
40
static const struct ntlmssp_callbacks {
41
enum NTLMSSP_ROLE role;
42
enum NTLM_MESSAGE_TYPE ntlmssp_command;
43
NTSTATUS (*fn)(struct ntlmssp_state *ntlmssp_state,
44
DATA_BLOB in, DATA_BLOB *out);
45
} ntlmssp_callbacks[] = {
46
{NTLMSSP_CLIENT, NTLMSSP_INITIAL, ntlmssp_client_initial},
47
{NTLMSSP_SERVER, NTLMSSP_NEGOTIATE, ntlmssp_server_negotiate},
48
{NTLMSSP_CLIENT, NTLMSSP_CHALLENGE, ntlmssp_client_challenge},
49
{NTLMSSP_SERVER, NTLMSSP_AUTH, ntlmssp_server_auth},
50
{NTLMSSP_CLIENT, NTLMSSP_UNKNOWN, NULL},
51
{NTLMSSP_SERVER, NTLMSSP_UNKNOWN, NULL}
56
* Print out the NTLMSSP flags for debugging
57
* @param neg_flags The flags from the packet
60
void debug_ntlmssp_flags(uint32 neg_flags)
62
DEBUG(3,("Got NTLMSSP neg_flags=0x%08x\n", neg_flags));
64
if (neg_flags & NTLMSSP_NEGOTIATE_UNICODE)
65
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_UNICODE\n"));
66
if (neg_flags & NTLMSSP_NEGOTIATE_OEM)
67
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_OEM\n"));
68
if (neg_flags & NTLMSSP_REQUEST_TARGET)
69
DEBUGADD(4, (" NTLMSSP_REQUEST_TARGET\n"));
70
if (neg_flags & NTLMSSP_NEGOTIATE_SIGN)
71
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_SIGN\n"));
72
if (neg_flags & NTLMSSP_NEGOTIATE_SEAL)
73
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_SEAL\n"));
74
if (neg_flags & NTLMSSP_NEGOTIATE_DATAGRAM_STYLE)
75
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_DATAGRAM_STYLE\n"));
76
if (neg_flags & NTLMSSP_NEGOTIATE_LM_KEY)
77
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_LM_KEY\n"));
78
if (neg_flags & NTLMSSP_NEGOTIATE_NETWARE)
79
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_NETWARE\n"));
80
if (neg_flags & NTLMSSP_NEGOTIATE_NTLM)
81
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_NTLM\n"));
82
if (neg_flags & NTLMSSP_NEGOTIATE_DOMAIN_SUPPLIED)
83
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_DOMAIN_SUPPLIED\n"));
84
if (neg_flags & NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED)
85
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED\n"));
86
if (neg_flags & NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL)
87
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL\n"));
88
if (neg_flags & NTLMSSP_NEGOTIATE_ALWAYS_SIGN)
89
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_ALWAYS_SIGN\n"));
90
if (neg_flags & NTLMSSP_CHAL_ACCEPT_RESPONSE)
91
DEBUGADD(4, (" NTLMSSP_CHAL_ACCEPT_RESPONSE\n"));
92
if (neg_flags & NTLMSSP_CHAL_NON_NT_SESSION_KEY)
93
DEBUGADD(4, (" NTLMSSP_CHAL_NON_NT_SESSION_KEY\n"));
94
if (neg_flags & NTLMSSP_NEGOTIATE_NTLM2)
95
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_NTLM2\n"));
96
if (neg_flags & NTLMSSP_CHAL_TARGET_INFO)
97
DEBUGADD(4, (" NTLMSSP_CHAL_TARGET_INFO\n"));
98
if (neg_flags & NTLMSSP_NEGOTIATE_VERSION)
99
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_VERSION\n"));
100
if (neg_flags & NTLMSSP_NEGOTIATE_128)
101
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_128\n"));
102
if (neg_flags & NTLMSSP_NEGOTIATE_KEY_EXCH)
103
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_KEY_EXCH\n"));
104
if (neg_flags & NTLMSSP_NEGOTIATE_56)
105
DEBUGADD(4, (" NTLMSSP_NEGOTIATE_56\n"));
109
* Default challenge generation code.
113
static void get_challenge(const struct ntlmssp_state *ntlmssp_state,
116
generate_random_buffer(chal, 8);
120
* Default 'we can set the challenge to anything we like' implementation
124
static bool may_set_challenge(const struct ntlmssp_state *ntlmssp_state)
130
* Default 'we can set the challenge to anything we like' implementation
132
* Does not actually do anything, as the value is always in the structure anyway.
136
static NTSTATUS set_challenge(struct ntlmssp_state *ntlmssp_state, DATA_BLOB *challenge)
138
SMB_ASSERT(challenge->length == 8);
143
* Set a username on an NTLMSSP context - ensures it is talloc()ed
147
NTSTATUS ntlmssp_set_username(NTLMSSP_STATE *ntlmssp_state, const char *user)
149
ntlmssp_state->user = talloc_strdup(ntlmssp_state, user ? user : "" );
150
if (!ntlmssp_state->user) {
151
return NT_STATUS_NO_MEMORY;
157
* Store NT and LM hashes on an NTLMSSP context - ensures they are talloc()ed
160
NTSTATUS ntlmssp_set_hashes(NTLMSSP_STATE *ntlmssp_state,
161
const unsigned char lm_hash[16],
162
const unsigned char nt_hash[16])
164
ntlmssp_state->lm_hash = (unsigned char *)
165
TALLOC_MEMDUP(ntlmssp_state, lm_hash, 16);
166
ntlmssp_state->nt_hash = (unsigned char *)
167
TALLOC_MEMDUP(ntlmssp_state, nt_hash, 16);
168
if (!ntlmssp_state->lm_hash || !ntlmssp_state->nt_hash) {
169
TALLOC_FREE(ntlmssp_state->lm_hash);
170
TALLOC_FREE(ntlmssp_state->nt_hash);
171
return NT_STATUS_NO_MEMORY;
177
* Converts a password to the hashes on an NTLMSSP context.
180
NTSTATUS ntlmssp_set_password(NTLMSSP_STATE *ntlmssp_state, const char *password)
183
ntlmssp_state->lm_hash = NULL;
184
ntlmssp_state->nt_hash = NULL;
186
unsigned char lm_hash[16];
187
unsigned char nt_hash[16];
189
E_deshash(password, lm_hash);
190
E_md4hash(password, nt_hash);
191
return ntlmssp_set_hashes(ntlmssp_state, lm_hash, nt_hash);
197
* Set a domain on an NTLMSSP context - ensures it is talloc()ed
200
NTSTATUS ntlmssp_set_domain(NTLMSSP_STATE *ntlmssp_state, const char *domain)
202
ntlmssp_state->domain = talloc_strdup(ntlmssp_state,
203
domain ? domain : "" );
204
if (!ntlmssp_state->domain) {
205
return NT_STATUS_NO_MEMORY;
211
* Set a workstation on an NTLMSSP context - ensures it is talloc()ed
214
NTSTATUS ntlmssp_set_workstation(NTLMSSP_STATE *ntlmssp_state, const char *workstation)
216
ntlmssp_state->workstation = talloc_strdup(ntlmssp_state, workstation);
217
if (!ntlmssp_state->workstation) {
218
return NT_STATUS_NO_MEMORY;
224
* Store a DATA_BLOB containing an NTLMSSP response, for use later.
225
* This copies the data blob
228
NTSTATUS ntlmssp_store_response(NTLMSSP_STATE *ntlmssp_state,
231
ntlmssp_state->stored_response = data_blob_talloc(ntlmssp_state,
238
* Request features for the NTLMSSP negotiation
240
* @param ntlmssp_state NTLMSSP state
241
* @param feature_list List of space seperated features requested from NTLMSSP.
243
void ntlmssp_want_feature_list(NTLMSSP_STATE *ntlmssp_state, char *feature_list)
246
* We need to set this to allow a later SetPassword
247
* via the SAMR pipe to succeed. Strange.... We could
248
* also add NTLMSSP_NEGOTIATE_SEAL here. JRA.
250
if (in_list("NTLMSSP_FEATURE_SESSION_KEY", feature_list, True)) {
251
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_SIGN;
253
if (in_list("NTLMSSP_FEATURE_SIGN", feature_list, True)) {
254
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_SIGN;
256
if(in_list("NTLMSSP_FEATURE_SEAL", feature_list, True)) {
257
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_SEAL;
262
* Request a feature for the NTLMSSP negotiation
264
* @param ntlmssp_state NTLMSSP state
265
* @param feature Bit flag specifying the requested feature
267
void ntlmssp_want_feature(NTLMSSP_STATE *ntlmssp_state, uint32 feature)
269
/* As per JRA's comment above */
270
if (feature & NTLMSSP_FEATURE_SESSION_KEY) {
271
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_SIGN;
273
if (feature & NTLMSSP_FEATURE_SIGN) {
274
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_SIGN;
276
if (feature & NTLMSSP_FEATURE_SEAL) {
277
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_SEAL;
282
* Next state function for the NTLMSSP state machine
284
* @param ntlmssp_state NTLMSSP State
285
* @param in The packet in from the NTLMSSP partner, as a DATA_BLOB
286
* @param out The reply, as an allocated DATA_BLOB, caller to free.
287
* @return Errors, NT_STATUS_MORE_PROCESSING_REQUIRED or NT_STATUS_OK.
290
NTSTATUS ntlmssp_update(NTLMSSP_STATE *ntlmssp_state,
291
const DATA_BLOB in, DATA_BLOB *out)
294
uint32 ntlmssp_command;
297
if (ntlmssp_state->expected_state == NTLMSSP_DONE) {
298
/* Called update after negotiations finished. */
299
DEBUG(1, ("Called NTLMSSP after state machine was 'done'\n"));
300
return NT_STATUS_INVALID_PARAMETER;
303
*out = data_blob_null;
305
if (!in.length && ntlmssp_state->stored_response.length) {
306
input = ntlmssp_state->stored_response;
308
/* we only want to read the stored response once - overwrite it */
309
ntlmssp_state->stored_response = data_blob_null;
315
switch (ntlmssp_state->role) {
317
ntlmssp_command = NTLMSSP_INITIAL;
320
/* 'datagram' mode - no neg packet */
321
ntlmssp_command = NTLMSSP_NEGOTIATE;
325
if (!msrpc_parse(&input, "Cd",
328
DEBUG(1, ("Failed to parse NTLMSSP packet, could not extract NTLMSSP command\n"));
329
dump_data(2, input.data, input.length);
330
return NT_STATUS_INVALID_PARAMETER;
334
if (ntlmssp_command != ntlmssp_state->expected_state) {
335
DEBUG(1, ("got NTLMSSP command %u, expected %u\n", ntlmssp_command, ntlmssp_state->expected_state));
336
return NT_STATUS_INVALID_PARAMETER;
339
for (i=0; ntlmssp_callbacks[i].fn; i++) {
340
if (ntlmssp_callbacks[i].role == ntlmssp_state->role
341
&& ntlmssp_callbacks[i].ntlmssp_command == ntlmssp_command) {
342
return ntlmssp_callbacks[i].fn(ntlmssp_state, input, out);
346
DEBUG(1, ("failed to find NTLMSSP callback for NTLMSSP mode %u, command %u\n",
347
ntlmssp_state->role, ntlmssp_command));
349
return NT_STATUS_INVALID_PARAMETER;
353
* End an NTLMSSP state machine
355
* @param ntlmssp_state NTLMSSP State, free()ed by this function
358
void ntlmssp_end(NTLMSSP_STATE **ntlmssp_state)
360
(*ntlmssp_state)->ref_count--;
362
if ((*ntlmssp_state)->ref_count == 0) {
363
data_blob_free(&(*ntlmssp_state)->chal);
364
data_blob_free(&(*ntlmssp_state)->lm_resp);
365
data_blob_free(&(*ntlmssp_state)->nt_resp);
366
TALLOC_FREE(*ntlmssp_state);
369
*ntlmssp_state = NULL;
374
* Determine correct target name flags for reply, given server role
375
* and negotiated flags
377
* @param ntlmssp_state NTLMSSP State
378
* @param neg_flags The flags from the packet
379
* @param chal_flags The flags to be set in the reply packet
380
* @return The 'target name' string.
383
static const char *ntlmssp_target_name(struct ntlmssp_state *ntlmssp_state,
384
uint32 neg_flags, uint32 *chal_flags)
386
if (neg_flags & NTLMSSP_REQUEST_TARGET) {
387
*chal_flags |= NTLMSSP_CHAL_TARGET_INFO;
388
*chal_flags |= NTLMSSP_REQUEST_TARGET;
389
if (ntlmssp_state->server_role == ROLE_STANDALONE) {
390
*chal_flags |= NTLMSSP_TARGET_TYPE_SERVER;
391
return ntlmssp_state->get_global_myname();
393
*chal_flags |= NTLMSSP_TARGET_TYPE_DOMAIN;
394
return ntlmssp_state->get_domain();
401
static void ntlmssp_handle_neg_flags(struct ntlmssp_state *ntlmssp_state,
402
uint32 neg_flags, bool allow_lm) {
403
if (neg_flags & NTLMSSP_NEGOTIATE_UNICODE) {
404
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_UNICODE;
405
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_OEM;
406
ntlmssp_state->unicode = True;
408
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_UNICODE;
409
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_OEM;
410
ntlmssp_state->unicode = False;
413
if ((neg_flags & NTLMSSP_NEGOTIATE_LM_KEY) && allow_lm) {
414
/* other end forcing us to use LM */
415
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_LM_KEY;
416
ntlmssp_state->use_ntlmv2 = False;
418
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_LM_KEY;
421
if (!(neg_flags & NTLMSSP_NEGOTIATE_ALWAYS_SIGN)) {
422
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_ALWAYS_SIGN;
425
if (!(neg_flags & NTLMSSP_NEGOTIATE_NTLM2)) {
426
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_NTLM2;
429
if (!(neg_flags & NTLMSSP_NEGOTIATE_128)) {
430
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_128;
433
if (!(neg_flags & NTLMSSP_NEGOTIATE_56)) {
434
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_56;
437
if (!(neg_flags & NTLMSSP_NEGOTIATE_KEY_EXCH)) {
438
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_KEY_EXCH;
441
if (!(neg_flags & NTLMSSP_NEGOTIATE_SIGN)) {
442
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_SIGN;
445
if (!(neg_flags & NTLMSSP_NEGOTIATE_SEAL)) {
446
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_SEAL;
449
/* Woop Woop - unknown flag for Windows compatibility...
450
What does this really do ? JRA. */
451
if (!(neg_flags & NTLMSSP_NEGOTIATE_VERSION)) {
452
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_VERSION;
455
if ((neg_flags & NTLMSSP_REQUEST_TARGET)) {
456
ntlmssp_state->neg_flags |= NTLMSSP_REQUEST_TARGET;
461
Weaken NTLMSSP keys to cope with down-level clients and servers.
463
We probably should have some parameters to control this, but as
464
it only occours for LM_KEY connections, and this is controlled
465
by the client lanman auth/lanman auth parameters, it isn't too bad.
468
DATA_BLOB ntlmssp_weaken_keys(NTLMSSP_STATE *ntlmssp_state, TALLOC_CTX *mem_ctx)
470
DATA_BLOB weakened_key = data_blob_talloc(mem_ctx,
471
ntlmssp_state->session_key.data,
472
ntlmssp_state->session_key.length);
474
/* Nothing to weaken. We certainly don't want to 'extend' the length... */
475
if (weakened_key.length < 16) {
476
/* perhaps there was no key? */
480
/* Key weakening not performed on the master key for NTLM2
481
and does not occour for NTLM1. Therefore we only need
482
to do this for the LM_KEY.
485
if (ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_LM_KEY) {
486
/* LM key doesn't support 128 bit crypto, so this is
487
* the best we can do. If you negotiate 128 bit, but
488
* not 56, you end up with 40 bit... */
489
if (ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_56) {
490
weakened_key.data[7] = 0xa0;
491
} else { /* forty bits */
492
weakened_key.data[5] = 0xe5;
493
weakened_key.data[6] = 0x38;
494
weakened_key.data[7] = 0xb0;
496
weakened_key.length = 8;
502
* Next state function for the Negotiate packet
504
* @param ntlmssp_state NTLMSSP State
505
* @param request The request, as a DATA_BLOB
506
* @param request The reply, as an allocated DATA_BLOB, caller to free.
507
* @return Errors or MORE_PROCESSING_REQUIRED if a reply is sent.
510
static NTSTATUS ntlmssp_server_negotiate(struct ntlmssp_state *ntlmssp_state,
511
const DATA_BLOB request, DATA_BLOB *reply)
513
DATA_BLOB struct_blob;
515
char *dnsdomname = NULL;
516
uint32 neg_flags = 0;
517
uint32 ntlmssp_command, chal_flags;
519
const char *target_name;
521
/* parse the NTLMSSP packet */
523
file_save("ntlmssp_negotiate.dat", request.data, request.length);
526
if (request.length) {
527
if ((request.length < 16) || !msrpc_parse(&request, "Cdd",
531
DEBUG(1, ("ntlmssp_server_negotiate: failed to parse NTLMSSP Negotiate of length %u\n",
532
(unsigned int)request.length));
533
dump_data(2, request.data, request.length);
534
return NT_STATUS_INVALID_PARAMETER;
536
debug_ntlmssp_flags(neg_flags);
539
ntlmssp_handle_neg_flags(ntlmssp_state, neg_flags, lp_lanman_auth());
541
/* Ask our caller what challenge they would like in the packet */
542
ntlmssp_state->get_challenge(ntlmssp_state, cryptkey);
544
/* Check if we may set the challenge */
545
if (!ntlmssp_state->may_set_challenge(ntlmssp_state)) {
546
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_NTLM2;
549
/* The flags we send back are not just the negotiated flags,
550
* they are also 'what is in this packet'. Therfore, we
551
* operate on 'chal_flags' from here on
554
chal_flags = ntlmssp_state->neg_flags;
556
/* get the right name to fill in as 'target' */
557
target_name = ntlmssp_target_name(ntlmssp_state,
558
neg_flags, &chal_flags);
559
if (target_name == NULL)
560
return NT_STATUS_INVALID_PARAMETER;
562
ntlmssp_state->chal = data_blob_talloc(ntlmssp_state, cryptkey, 8);
563
ntlmssp_state->internal_chal = data_blob_talloc(ntlmssp_state,
566
/* This should be a 'netbios domain -> DNS domain' mapping */
567
dnsdomname = get_mydnsdomname(ntlmssp_state);
569
dnsdomname = talloc_strdup(ntlmssp_state, "");
572
return NT_STATUS_NO_MEMORY;
574
strlower_m(dnsdomname);
576
dnsname = get_mydnsfullname();
581
/* This creates the 'blob' of names that appears at the end of the packet */
582
if (chal_flags & NTLMSSP_CHAL_TARGET_INFO)
584
msrpc_gen(&struct_blob, "aaaaa",
585
NTLMSSP_NAME_TYPE_DOMAIN, target_name,
586
NTLMSSP_NAME_TYPE_SERVER, ntlmssp_state->get_global_myname(),
587
NTLMSSP_NAME_TYPE_DOMAIN_DNS, dnsdomname,
588
NTLMSSP_NAME_TYPE_SERVER_DNS, dnsname,
591
struct_blob = data_blob_null;
595
/* Marshel the packet in the right format, be it unicode or ASCII */
596
const char *gen_string;
597
if (ntlmssp_state->unicode) {
598
gen_string = "CdUdbddB";
600
gen_string = "CdAdbddB";
603
msrpc_gen(reply, gen_string,
610
struct_blob.data, struct_blob.length);
613
data_blob_free(&struct_blob);
615
ntlmssp_state->expected_state = NTLMSSP_AUTH;
617
return NT_STATUS_MORE_PROCESSING_REQUIRED;
621
* Next state function for the Authenticate packet
623
* @param ntlmssp_state NTLMSSP State
624
* @param request The request, as a DATA_BLOB
625
* @param request The reply, as an allocated DATA_BLOB, caller to free.
626
* @return Errors or NT_STATUS_OK.
629
static NTSTATUS ntlmssp_server_auth(struct ntlmssp_state *ntlmssp_state,
630
const DATA_BLOB request, DATA_BLOB *reply)
632
DATA_BLOB encrypted_session_key = data_blob_null;
633
DATA_BLOB user_session_key = data_blob_null;
634
DATA_BLOB lm_session_key = data_blob_null;
635
DATA_BLOB session_key = data_blob_null;
636
uint32 ntlmssp_command, auth_flags;
637
NTSTATUS nt_status = NT_STATUS_OK;
640
bool doing_ntlm2 = False;
642
uchar session_nonce[16];
643
uchar session_nonce_hash[16];
645
const char *parse_string;
648
char *workstation = NULL;
650
/* parse the NTLMSSP packet */
651
*reply = data_blob_null;
654
file_save("ntlmssp_auth.dat", request.data, request.length);
657
if (ntlmssp_state->unicode) {
658
parse_string = "CdBBUUUBd";
660
parse_string = "CdBBAAABd";
663
data_blob_free(&ntlmssp_state->lm_resp);
664
data_blob_free(&ntlmssp_state->nt_resp);
666
ntlmssp_state->user = NULL;
667
ntlmssp_state->domain = NULL;
668
ntlmssp_state->workstation = NULL;
670
/* now the NTLMSSP encoded auth hashes */
671
if (!msrpc_parse(&request, parse_string,
674
&ntlmssp_state->lm_resp,
675
&ntlmssp_state->nt_resp,
679
&encrypted_session_key,
683
SAFE_FREE(workstation);
684
data_blob_free(&encrypted_session_key);
687
/* Try again with a shorter string (Win9X truncates this packet) */
688
if (ntlmssp_state->unicode) {
689
parse_string = "CdBBUUU";
691
parse_string = "CdBBAAA";
694
/* now the NTLMSSP encoded auth hashes */
695
if (!msrpc_parse(&request, parse_string,
698
&ntlmssp_state->lm_resp,
699
&ntlmssp_state->nt_resp,
703
DEBUG(1, ("ntlmssp_server_auth: failed to parse NTLMSSP (tried both formats):\n"));
704
dump_data(2, request.data, request.length);
707
SAFE_FREE(workstation);
709
return NT_STATUS_INVALID_PARAMETER;
714
ntlmssp_handle_neg_flags(ntlmssp_state, auth_flags, lp_lanman_auth());
716
if (!NT_STATUS_IS_OK(nt_status = ntlmssp_set_domain(ntlmssp_state, domain))) {
719
SAFE_FREE(workstation);
720
data_blob_free(&encrypted_session_key);
724
if (!NT_STATUS_IS_OK(nt_status = ntlmssp_set_username(ntlmssp_state, user))) {
727
SAFE_FREE(workstation);
728
data_blob_free(&encrypted_session_key);
732
if (!NT_STATUS_IS_OK(nt_status = ntlmssp_set_workstation(ntlmssp_state, workstation))) {
735
SAFE_FREE(workstation);
736
data_blob_free(&encrypted_session_key);
742
SAFE_FREE(workstation);
744
DEBUG(3,("Got user=[%s] domain=[%s] workstation=[%s] len1=%lu len2=%lu\n",
745
ntlmssp_state->user, ntlmssp_state->domain, ntlmssp_state->workstation, (unsigned long)ntlmssp_state->lm_resp.length, (unsigned long)ntlmssp_state->nt_resp.length));
748
file_save("nthash1.dat", &ntlmssp_state->nt_resp.data, &ntlmssp_state->nt_resp.length);
749
file_save("lmhash1.dat", &ntlmssp_state->lm_resp.data, &ntlmssp_state->lm_resp.length);
752
/* NTLM2 uses a 'challenge' that is made of up both the server challenge, and a
755
However, the NTLM2 flag may still be set for the real NTLMv2 logins, be careful.
757
if (ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_NTLM2) {
758
if (ntlmssp_state->nt_resp.length == 24 && ntlmssp_state->lm_resp.length == 24) {
759
struct MD5Context md5_session_nonce_ctx;
760
SMB_ASSERT(ntlmssp_state->internal_chal.data && ntlmssp_state->internal_chal.length == 8);
764
memcpy(session_nonce, ntlmssp_state->internal_chal.data, 8);
765
memcpy(&session_nonce[8], ntlmssp_state->lm_resp.data, 8);
767
MD5Init(&md5_session_nonce_ctx);
768
MD5Update(&md5_session_nonce_ctx, session_nonce, 16);
769
MD5Final(session_nonce_hash, &md5_session_nonce_ctx);
771
ntlmssp_state->chal = data_blob_talloc(
772
ntlmssp_state, session_nonce_hash, 8);
774
/* LM response is no longer useful */
775
data_blob_free(&ntlmssp_state->lm_resp);
777
/* We changed the effective challenge - set it */
778
if (!NT_STATUS_IS_OK(nt_status = ntlmssp_state->set_challenge(ntlmssp_state, &ntlmssp_state->chal))) {
779
data_blob_free(&encrypted_session_key);
783
/* LM Key is incompatible. */
784
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_LM_KEY;
789
* Note we don't check here for NTLMv2 auth settings. If NTLMv2 auth
790
* is required (by "ntlm auth = no" and "lm auth = no" being set in the
791
* smb.conf file) and no NTLMv2 response was sent then the password check
792
* will fail here. JRA.
795
/* Finally, actually ask if the password is OK */
797
if (!NT_STATUS_IS_OK(nt_status = ntlmssp_state->check_password(ntlmssp_state,
798
&user_session_key, &lm_session_key))) {
799
data_blob_free(&encrypted_session_key);
803
dump_data_pw("NT session key:\n", user_session_key.data, user_session_key.length);
804
dump_data_pw("LM first-8:\n", lm_session_key.data, lm_session_key.length);
806
/* Handle the different session key derivation for NTLM2 */
808
if (user_session_key.data && user_session_key.length == 16) {
809
session_key = data_blob_talloc(ntlmssp_state,
811
hmac_md5(user_session_key.data, session_nonce,
812
sizeof(session_nonce), session_key.data);
813
DEBUG(10,("ntlmssp_server_auth: Created NTLM2 session key.\n"));
814
dump_data_pw("NTLM2 session key:\n", session_key.data, session_key.length);
817
DEBUG(10,("ntlmssp_server_auth: Failed to create NTLM2 session key.\n"));
818
session_key = data_blob_null;
820
} else if (ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_LM_KEY) {
821
if (lm_session_key.data && lm_session_key.length >= 8) {
822
if (ntlmssp_state->lm_resp.data && ntlmssp_state->lm_resp.length == 24) {
823
session_key = data_blob_talloc(ntlmssp_state,
825
if (session_key.data == NULL) {
826
return NT_STATUS_NO_MEMORY;
828
SMBsesskeygen_lm_sess_key(lm_session_key.data, ntlmssp_state->lm_resp.data,
830
DEBUG(10,("ntlmssp_server_auth: Created NTLM session key.\n"));
834
session_key = data_blob_talloc(
835
ntlmssp_state, NULL, 16);
836
if (session_key.data == NULL) {
837
return NT_STATUS_NO_MEMORY;
839
SMBsesskeygen_lm_sess_key(
840
lm_session_key.data, zeros,
843
dump_data_pw("LM session key:\n", session_key.data,
846
DEBUG(10,("ntlmssp_server_auth: Failed to create NTLM session key.\n"));
847
session_key = data_blob_null;
849
} else if (user_session_key.data) {
850
session_key = user_session_key;
851
DEBUG(10,("ntlmssp_server_auth: Using unmodified nt session key.\n"));
852
dump_data_pw("unmodified session key:\n", session_key.data, session_key.length);
853
} else if (lm_session_key.data) {
854
session_key = lm_session_key;
855
DEBUG(10,("ntlmssp_server_auth: Using unmodified lm session key.\n"));
856
dump_data_pw("unmodified session key:\n", session_key.data, session_key.length);
858
DEBUG(10,("ntlmssp_server_auth: Failed to create unmodified session key.\n"));
859
session_key = data_blob_null;
862
/* With KEY_EXCH, the client supplies the proposed session key,
863
but encrypts it with the long-term key */
864
if (ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_KEY_EXCH) {
865
if (!encrypted_session_key.data || encrypted_session_key.length != 16) {
866
data_blob_free(&encrypted_session_key);
867
DEBUG(1, ("Client-supplied KEY_EXCH session key was of invalid length (%u)!\n",
868
(unsigned int)encrypted_session_key.length));
869
return NT_STATUS_INVALID_PARAMETER;
870
} else if (!session_key.data || session_key.length != 16) {
871
DEBUG(5, ("server session key is invalid (len == %u), cannot do KEY_EXCH!\n",
872
(unsigned int)session_key.length));
873
ntlmssp_state->session_key = session_key;
875
dump_data_pw("KEY_EXCH session key (enc):\n", encrypted_session_key.data, encrypted_session_key.length);
876
SamOEMhash(encrypted_session_key.data,
878
encrypted_session_key.length);
879
ntlmssp_state->session_key = data_blob_talloc(
880
ntlmssp_state, encrypted_session_key.data,
881
encrypted_session_key.length);
882
dump_data_pw("KEY_EXCH session key:\n", encrypted_session_key.data,
883
encrypted_session_key.length);
886
ntlmssp_state->session_key = session_key;
889
if (!NT_STATUS_IS_OK(nt_status)) {
890
ntlmssp_state->session_key = data_blob_null;
891
} else if (ntlmssp_state->session_key.length) {
892
nt_status = ntlmssp_sign_init(ntlmssp_state);
895
data_blob_free(&encrypted_session_key);
897
/* Only one authentication allowed per server state. */
898
ntlmssp_state->expected_state = NTLMSSP_DONE;
904
* Create an NTLMSSP state machine
906
* @param ntlmssp_state NTLMSSP State, allocated by this function
909
NTSTATUS ntlmssp_server_start(NTLMSSP_STATE **ntlmssp_state)
911
*ntlmssp_state = TALLOC_ZERO_P(NULL, NTLMSSP_STATE);
912
if (!*ntlmssp_state) {
913
DEBUG(0,("ntlmssp_server_start: talloc failed!\n"));
914
talloc_destroy(*ntlmssp_state);
915
return NT_STATUS_NO_MEMORY;
918
(*ntlmssp_state)->role = NTLMSSP_SERVER;
920
(*ntlmssp_state)->get_challenge = get_challenge;
921
(*ntlmssp_state)->set_challenge = set_challenge;
922
(*ntlmssp_state)->may_set_challenge = may_set_challenge;
924
(*ntlmssp_state)->get_global_myname = global_myname;
925
(*ntlmssp_state)->get_domain = lp_workgroup;
926
(*ntlmssp_state)->server_role = ROLE_DOMAIN_MEMBER; /* a good default */
928
(*ntlmssp_state)->expected_state = NTLMSSP_NEGOTIATE;
930
(*ntlmssp_state)->ref_count = 1;
932
(*ntlmssp_state)->neg_flags =
933
NTLMSSP_NEGOTIATE_128 |
934
NTLMSSP_NEGOTIATE_56 |
935
NTLMSSP_NEGOTIATE_VERSION |
936
NTLMSSP_NEGOTIATE_ALWAYS_SIGN |
937
NTLMSSP_NEGOTIATE_NTLM |
938
NTLMSSP_NEGOTIATE_NTLM2 |
939
NTLMSSP_NEGOTIATE_KEY_EXCH |
940
NTLMSSP_NEGOTIATE_SIGN |
941
NTLMSSP_NEGOTIATE_SEAL;
946
/*********************************************************************
948
*********************************************************************/
951
* Next state function for the Initial packet
953
* @param ntlmssp_state NTLMSSP State
954
* @param request The request, as a DATA_BLOB. reply.data must be NULL
955
* @param request The reply, as an allocated DATA_BLOB, caller to free.
956
* @return Errors or NT_STATUS_OK.
959
static NTSTATUS ntlmssp_client_initial(struct ntlmssp_state *ntlmssp_state,
960
DATA_BLOB reply, DATA_BLOB *next_request)
962
if (ntlmssp_state->unicode) {
963
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_UNICODE;
965
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_OEM;
968
if (ntlmssp_state->use_ntlmv2) {
969
ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_NTLM2;
972
/* generate the ntlmssp negotiate packet */
973
msrpc_gen(next_request, "CddAA",
976
ntlmssp_state->neg_flags,
977
ntlmssp_state->get_domain(),
978
ntlmssp_state->get_global_myname());
980
ntlmssp_state->expected_state = NTLMSSP_CHALLENGE;
982
return NT_STATUS_MORE_PROCESSING_REQUIRED;
986
* Next state function for the Challenge Packet. Generate an auth packet.
988
* @param ntlmssp_state NTLMSSP State
989
* @param request The request, as a DATA_BLOB. reply.data must be NULL
990
* @param request The reply, as an allocated DATA_BLOB, caller to free.
991
* @return Errors or NT_STATUS_OK.
994
static NTSTATUS ntlmssp_client_challenge(struct ntlmssp_state *ntlmssp_state,
995
const DATA_BLOB reply, DATA_BLOB *next_request)
997
uint32 chal_flags, ntlmssp_command, unkn1, unkn2;
998
DATA_BLOB server_domain_blob;
999
DATA_BLOB challenge_blob;
1000
DATA_BLOB struct_blob = data_blob_null;
1001
char *server_domain;
1002
const char *chal_parse_string;
1003
const char *auth_gen_string;
1004
DATA_BLOB lm_response = data_blob_null;
1005
DATA_BLOB nt_response = data_blob_null;
1006
DATA_BLOB session_key = data_blob_null;
1007
DATA_BLOB encrypted_session_key = data_blob_null;
1008
NTSTATUS nt_status = NT_STATUS_OK;
1010
if (!msrpc_parse(&reply, "CdBd",
1013
&server_domain_blob,
1015
DEBUG(1, ("Failed to parse the NTLMSSP Challenge: (#1)\n"));
1016
dump_data(2, reply.data, reply.length);
1018
return NT_STATUS_INVALID_PARAMETER;
1021
data_blob_free(&server_domain_blob);
1023
DEBUG(3, ("Got challenge flags:\n"));
1024
debug_ntlmssp_flags(chal_flags);
1026
ntlmssp_handle_neg_flags(ntlmssp_state, chal_flags, lp_client_lanman_auth());
1028
if (ntlmssp_state->unicode) {
1029
if (chal_flags & NTLMSSP_CHAL_TARGET_INFO) {
1030
chal_parse_string = "CdUdbddB";
1032
chal_parse_string = "CdUdbdd";
1034
auth_gen_string = "CdBBUUUBd";
1036
if (chal_flags & NTLMSSP_CHAL_TARGET_INFO) {
1037
chal_parse_string = "CdAdbddB";
1039
chal_parse_string = "CdAdbdd";
1042
auth_gen_string = "CdBBAAABd";
1045
DEBUG(3, ("NTLMSSP: Set final flags:\n"));
1046
debug_ntlmssp_flags(ntlmssp_state->neg_flags);
1048
if (!msrpc_parse(&reply, chal_parse_string,
1056
DEBUG(1, ("Failed to parse the NTLMSSP Challenge: (#2)\n"));
1057
dump_data(2, reply.data, reply.length);
1058
return NT_STATUS_INVALID_PARAMETER;
1061
ntlmssp_state->server_domain = talloc_strdup(ntlmssp_state,
1064
SAFE_FREE(server_domain);
1065
if (challenge_blob.length != 8) {
1066
data_blob_free(&struct_blob);
1067
return NT_STATUS_INVALID_PARAMETER;
1070
if (!ntlmssp_state->nt_hash || !ntlmssp_state->lm_hash) {
1072
/* do nothing - blobs are zero length */
1076
/* session key is all zeros */
1077
session_key = data_blob_talloc(ntlmssp_state, zeros, 16);
1079
/* not doing NLTM2 without a password */
1080
ntlmssp_state->neg_flags &= ~NTLMSSP_NEGOTIATE_NTLM2;
1081
} else if (ntlmssp_state->use_ntlmv2) {
1083
if (!struct_blob.length) {
1084
/* be lazy, match win2k - we can't do NTLMv2 without it */
1085
DEBUG(1, ("Server did not provide 'target information', required for NTLMv2\n"));
1086
return NT_STATUS_INVALID_PARAMETER;
1089
/* TODO: if the remote server is standalone, then we should replace 'domain'
1090
with the server name as supplied above */
1092
if (!SMBNTLMv2encrypt_hash(ntlmssp_state->user,
1093
ntlmssp_state->domain,
1094
ntlmssp_state->nt_hash, &challenge_blob,
1096
&lm_response, &nt_response, &session_key)) {
1097
data_blob_free(&challenge_blob);
1098
data_blob_free(&struct_blob);
1099
return NT_STATUS_NO_MEMORY;
1101
} else if (ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_NTLM2) {
1102
struct MD5Context md5_session_nonce_ctx;
1103
uchar session_nonce[16];
1104
uchar session_nonce_hash[16];
1105
uchar user_session_key[16];
1107
lm_response = data_blob_talloc(ntlmssp_state, NULL, 24);
1108
generate_random_buffer(lm_response.data, 8);
1109
memset(lm_response.data+8, 0, 16);
1111
memcpy(session_nonce, challenge_blob.data, 8);
1112
memcpy(&session_nonce[8], lm_response.data, 8);
1114
MD5Init(&md5_session_nonce_ctx);
1115
MD5Update(&md5_session_nonce_ctx, challenge_blob.data, 8);
1116
MD5Update(&md5_session_nonce_ctx, lm_response.data, 8);
1117
MD5Final(session_nonce_hash, &md5_session_nonce_ctx);
1119
DEBUG(5, ("NTLMSSP challenge set by NTLM2\n"));
1120
DEBUG(5, ("challenge is: \n"));
1121
dump_data(5, session_nonce_hash, 8);
1123
nt_response = data_blob_talloc(ntlmssp_state, NULL, 24);
1124
SMBNTencrypt_hash(ntlmssp_state->nt_hash,
1128
session_key = data_blob_talloc(ntlmssp_state, NULL, 16);
1130
SMBsesskeygen_ntv1(ntlmssp_state->nt_hash, NULL, user_session_key);
1131
hmac_md5(user_session_key, session_nonce, sizeof(session_nonce), session_key.data);
1132
dump_data_pw("NTLM2 session key:\n", session_key.data, session_key.length);
1134
/* lanman auth is insecure, it may be disabled */
1135
if (lp_client_lanman_auth()) {
1136
lm_response = data_blob_talloc(ntlmssp_state,
1138
SMBencrypt_hash(ntlmssp_state->lm_hash,challenge_blob.data,
1142
nt_response = data_blob_talloc(ntlmssp_state, NULL, 24);
1143
SMBNTencrypt_hash(ntlmssp_state->nt_hash,challenge_blob.data,
1146
session_key = data_blob_talloc(ntlmssp_state, NULL, 16);
1147
if ((ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_LM_KEY)
1148
&& lp_client_lanman_auth()) {
1149
SMBsesskeygen_lm_sess_key(ntlmssp_state->lm_hash, lm_response.data,
1151
dump_data_pw("LM session key\n", session_key.data, session_key.length);
1153
SMBsesskeygen_ntv1(ntlmssp_state->nt_hash, NULL, session_key.data);
1154
dump_data_pw("NT session key:\n", session_key.data, session_key.length);
1157
data_blob_free(&struct_blob);
1159
/* Key exchange encryptes a new client-generated session key with
1160
the password-derived key */
1161
if (ntlmssp_state->neg_flags & NTLMSSP_NEGOTIATE_KEY_EXCH) {
1162
/* Make up a new session key */
1163
uint8 client_session_key[16];
1164
generate_random_buffer(client_session_key, sizeof(client_session_key));
1166
/* Encrypt the new session key with the old one */
1167
encrypted_session_key = data_blob(client_session_key, sizeof(client_session_key));
1168
dump_data_pw("KEY_EXCH session key:\n", encrypted_session_key.data, encrypted_session_key.length);
1169
SamOEMhash(encrypted_session_key.data, session_key.data, encrypted_session_key.length);
1170
dump_data_pw("KEY_EXCH session key (enc):\n", encrypted_session_key.data, encrypted_session_key.length);
1172
/* Mark the new session key as the 'real' session key */
1173
data_blob_free(&session_key);
1174
session_key = data_blob_talloc(ntlmssp_state,
1176
sizeof(client_session_key));
1179
/* this generates the actual auth packet */
1180
if (!msrpc_gen(next_request, auth_gen_string,
1183
lm_response.data, lm_response.length,
1184
nt_response.data, nt_response.length,
1185
ntlmssp_state->domain,
1186
ntlmssp_state->user,
1187
ntlmssp_state->get_global_myname(),
1188
encrypted_session_key.data, encrypted_session_key.length,
1189
ntlmssp_state->neg_flags)) {
1191
return NT_STATUS_NO_MEMORY;
1194
data_blob_free(&encrypted_session_key);
1196
data_blob_free(&ntlmssp_state->chal);
1198
ntlmssp_state->session_key = session_key;
1200
ntlmssp_state->chal = challenge_blob;
1201
ntlmssp_state->lm_resp = lm_response;
1202
ntlmssp_state->nt_resp = nt_response;
1204
ntlmssp_state->expected_state = NTLMSSP_DONE;
1206
if (!NT_STATUS_IS_OK(nt_status = ntlmssp_sign_init(ntlmssp_state))) {
1207
DEBUG(1, ("Could not setup NTLMSSP signing/sealing system (error was: %s)\n", nt_errstr(nt_status)));
1213
NTSTATUS ntlmssp_client_start(NTLMSSP_STATE **ntlmssp_state)
1215
*ntlmssp_state = TALLOC_ZERO_P(NULL, NTLMSSP_STATE);
1216
if (!*ntlmssp_state) {
1217
DEBUG(0,("ntlmssp_client_start: talloc failed!\n"));
1218
talloc_destroy(*ntlmssp_state);
1219
return NT_STATUS_NO_MEMORY;
1222
(*ntlmssp_state)->role = NTLMSSP_CLIENT;
1224
(*ntlmssp_state)->get_global_myname = global_myname;
1225
(*ntlmssp_state)->get_domain = lp_workgroup;
1227
(*ntlmssp_state)->unicode = True;
1229
(*ntlmssp_state)->use_ntlmv2 = lp_client_ntlmv2_auth();
1231
(*ntlmssp_state)->expected_state = NTLMSSP_INITIAL;
1233
(*ntlmssp_state)->ref_count = 1;
1235
(*ntlmssp_state)->neg_flags =
1236
NTLMSSP_NEGOTIATE_128 |
1237
NTLMSSP_NEGOTIATE_ALWAYS_SIGN |
1238
NTLMSSP_NEGOTIATE_NTLM |
1239
NTLMSSP_NEGOTIATE_NTLM2 |
1240
NTLMSSP_NEGOTIATE_KEY_EXCH |
1241
NTLMSSP_REQUEST_TARGET;
1243
return NT_STATUS_OK;