-
Notifications
You must be signed in to change notification settings - Fork 3
/
ntlm.c
380 lines (321 loc) · 11.1 KB
/
ntlm.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
/**
* @file ntlm.c
*/
/* purple
*
* Copyright (C) 2005 Thomas Butter <butter@uni-mannheim.de>
*
* hashing done according to description of NTLM on
* http://www.innovation.ch/java/ntlm.html
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02111-1301 USA
*/
#include "internal.h"
#include "util.h"
#include "ntlm.h"
#include "cipher.h"
#include "debug.h"
#include <string.h>
#define NTLM_NEGOTIATE_NTLM2_KEY 0x00080000
struct type1_message {
guint8 protocol[8]; /* 'N', 'T', 'L', 'M', 'S', 'S', 'P', '\0' */
guint32 type; /* 0x00000001 */
guint32 flags; /* 0x0000b203 */
guint16 dom_len1; /* domain string length */
guint16 dom_len2; /* domain string length */
guint32 dom_off; /* domain string offset */
guint16 host_len1; /* host string length */
guint16 host_len2; /* host string length */
guint32 host_off; /* host string offset (always 0x00000020) */
#if 0
guint8 host[*]; /* host string (ASCII) */
guint8 dom[*]; /* domain string (ASCII) */
#endif
};
struct type2_message {
guint8 protocol[8]; /* 'N', 'T', 'L', 'M', 'S', 'S', 'P', '\0'*/
guint32 type; /* 0x00000002 */
guint32 zero;
guint16 msg_len1; /* target name length */
guint16 msg_len2; /* target name length */
guint32 flags; /* 0x00008201 */
guint8 nonce[8]; /* nonce */
guint8 context[8];
};
struct type3_message {
guint8 protocol[8]; /* 'N', 'T', 'L', 'M', 'S', 'S', 'P', '\0'*/
guint32 type; /* 0x00000003 */
guint16 lm_resp_len1; /* LanManager response length (always 0x18)*/
guint16 lm_resp_len2; /* LanManager response length (always 0x18)*/
guint32 lm_resp_off; /* LanManager response offset */
guint16 nt_resp_len1; /* NT response length (always 0x18) */
guint16 nt_resp_len2; /* NT response length (always 0x18) */
guint32 nt_resp_off; /* NT response offset */
guint16 dom_len1; /* domain string length */
guint16 dom_len2; /* domain string length */
guint32 dom_off; /* domain string offset (always 0x00000040) */
guint16 user_len1; /* username string length */
guint16 user_len2; /* username string length */
guint32 user_off; /* username string offset */
guint16 host_len1; /* host string length */
guint16 host_len2; /* host string length */
guint32 host_off; /* host string offset */
guint16 sess_len1;
guint16 sess_len2;
guint32 sess_off; /* message length */
guint32 flags; /* 0x00008201 */
/* guint32 flags2; */ /* unknown, used in windows messenger */
/* guint32 flags3; */
#if 0
guint8 dom[*]; /* domain string (unicode UTF-16LE) */
guint8 user[*]; /* username string (unicode UTF-16LE) */
guint8 host[*]; /* host string (unicode UTF-16LE) */
guint8 lm_resp[*]; /* LanManager response */
guint8 nt_resp[*]; /* NT response */
#endif
};
gchar *
purple_ntlm_gen_type1(const gchar *hostname, const gchar *domain)
{
int hostnamelen,host_off;
int domainlen,dom_off;
unsigned char *msg;
struct type1_message *tmsg;
gchar *tmp;
hostnamelen = strlen(hostname);
domainlen = strlen(domain);
host_off = sizeof(struct type1_message);
dom_off = sizeof(struct type1_message) + hostnamelen;
msg = g_malloc0(sizeof(struct type1_message) + hostnamelen + domainlen);
tmsg = (struct type1_message*)msg;
tmsg->protocol[0] = 'N';
tmsg->protocol[1] = 'T';
tmsg->protocol[2] = 'L';
tmsg->protocol[3] = 'M';
tmsg->protocol[4] = 'S';
tmsg->protocol[5] = 'S';
tmsg->protocol[6] = 'P';
tmsg->protocol[7] = '\0';
tmsg->type = GUINT32_TO_LE(0x00000001);
tmsg->flags = GUINT32_TO_LE(0x0000b203);
tmsg->dom_len1 = tmsg->dom_len2 = GUINT16_TO_LE(domainlen);
tmsg->dom_off = GUINT32_TO_LE(dom_off);
tmsg->host_len1 = tmsg->host_len2 = GUINT16_TO_LE(hostnamelen);
tmsg->host_off = GUINT32_TO_LE(host_off);
memcpy(msg + host_off, hostname, hostnamelen);
memcpy(msg + dom_off, domain, domainlen);
tmp = purple_base64_encode(msg, sizeof(struct type1_message) + hostnamelen + domainlen);
g_free(msg);
return tmp;
}
guint8 *
purple_ntlm_parse_type2(const gchar *type2, guint32 *flags)
{
gsize retlen;
struct type2_message *tmsg;
static guint8 nonce[8];
tmsg = (struct type2_message*)purple_base64_decode(type2, &retlen);
if (tmsg != NULL && retlen >= (sizeof(struct type2_message) - 1)) {
memcpy(nonce, tmsg->nonce, 8);
if (flags != NULL)
*flags = GUINT16_FROM_LE(tmsg->flags);
} else {
purple_debug_error("ntlm", "Unable to parse type2 message - returning empty nonce.\n");
memset(nonce, 0, 8);
}
g_free(tmsg);
return nonce;
}
/**
* Create a 64bit DES key by taking a 56bit key and adding
* a parity bit after every 7th bit.
*/
static void
setup_des_key(const guint8 key_56[], guint8 *key)
{
key[0] = key_56[0];
key[1] = ((key_56[0] << 7) & 0xFF) | (key_56[1] >> 1);
key[2] = ((key_56[1] << 6) & 0xFF) | (key_56[2] >> 2);
key[3] = ((key_56[2] << 5) & 0xFF) | (key_56[3] >> 3);
key[4] = ((key_56[3] << 4) & 0xFF) | (key_56[4] >> 4);
key[5] = ((key_56[4] << 3) & 0xFF) | (key_56[5] >> 5);
key[6] = ((key_56[5] << 2) & 0xFF) | (key_56[6] >> 6);
key[7] = (key_56[6] << 1) & 0xFF;
}
/*
* helper function for purple cipher.c
*/
static void
des_ecb_encrypt(const guint8 *plaintext, guint8 *result, const guint8 *key)
{
PurpleCipher *cipher;
PurpleCipherContext *context;
size_t outlen;
cipher = purple_ciphers_find_cipher("des");
context = purple_cipher_context_new(cipher, NULL);
purple_cipher_context_set_key(context, key);
purple_cipher_context_encrypt(context, plaintext, 8, result, &outlen);
purple_cipher_context_destroy(context);
}
/*
* takes a 21 byte array and treats it as 3 56-bit DES keys. The
* 8 byte plaintext is encrypted with each key and the resulting 24
* bytes are stored in the results array.
*/
static void
calc_resp(guint8 *keys, const guint8 *plaintext, unsigned char *results)
{
guint8 key[8];
setup_des_key(keys, key);
des_ecb_encrypt(plaintext, results, key);
setup_des_key(keys + 7, key);
des_ecb_encrypt(plaintext, results + 8, key);
setup_des_key(keys + 14, key);
des_ecb_encrypt(plaintext, results + 16, key);
}
static void
gensesskey(char *buffer, const char *oldkey)
{
int i = 0;
if(oldkey == NULL) {
for(i=0; i<16; i++) {
buffer[i] = (char)(rand() & 0xff);
}
} else {
memcpy(buffer, oldkey, 16);
}
}
gchar *
purple_ntlm_gen_type3(const gchar *username, const gchar *passw, const gchar *hostname, const gchar *domain, const guint8 *nonce, guint32 *flags)
{
char lm_pw[14];
unsigned char lm_hpw[21];
char sesskey[16];
guint8 key[8];
int domainlen;
int usernamelen;
int hostnamelen;
int msglen;
struct type3_message *tmsg;
int passwlen, lennt;
unsigned char lm_resp[24], nt_resp[24];
unsigned char magic[] = { 0x4B, 0x47, 0x53, 0x21, 0x40, 0x23, 0x24, 0x25 };
unsigned char nt_hpw[21];
char nt_pw[128];
PurpleCipher *cipher;
PurpleCipherContext *context;
char *tmp;
int idx;
gchar *ucs2le;
domainlen = strlen(domain) * 2;
usernamelen = strlen(username) * 2;
hostnamelen = strlen(hostname) * 2;
msglen = sizeof(struct type3_message) + domainlen +
usernamelen + hostnamelen + 0x18 + 0x18 + ((flags) ? 0x10 : 0);
tmsg = g_malloc0(msglen);
passwlen = strlen(passw);
/* type3 message initialization */
tmsg->protocol[0] = 'N';
tmsg->protocol[1] = 'T';
tmsg->protocol[2] = 'L';
tmsg->protocol[3] = 'M';
tmsg->protocol[4] = 'S';
tmsg->protocol[5] = 'S';
tmsg->protocol[6] = 'P';
tmsg->type = GUINT32_TO_LE(0x00000003);
tmsg->lm_resp_len1 = tmsg->lm_resp_len2 = GUINT16_TO_LE(0x18);
tmsg->lm_resp_off = GUINT32_TO_LE(sizeof(struct type3_message) + domainlen + usernamelen + hostnamelen);
tmsg->nt_resp_len1 = tmsg->nt_resp_len2 = GUINT16_TO_LE(0x18);
tmsg->nt_resp_off = GUINT32_TO_LE(sizeof(struct type3_message) + domainlen + usernamelen + hostnamelen + 0x18);
tmsg->dom_len1 = tmsg->dom_len2 = GUINT16_TO_LE(domainlen);
tmsg->dom_off = GUINT32_TO_LE(sizeof(struct type3_message));
tmsg->user_len1 = tmsg->user_len2 = GUINT16_TO_LE(usernamelen);
tmsg->user_off = GUINT32_TO_LE(sizeof(struct type3_message) + domainlen);
tmsg->host_len1 = tmsg->host_len2 = GUINT16_TO_LE(hostnamelen);
tmsg->host_off = GUINT32_TO_LE(sizeof(struct type3_message) + domainlen + usernamelen);
if(flags) {
tmsg->sess_off = GUINT32_TO_LE(sizeof(struct type3_message) + domainlen + usernamelen + hostnamelen + 0x18 + 0x18);
tmsg->sess_len1 = tmsg->sess_len2 = GUINT16_TO_LE(0x0010);
}
tmsg->flags = GUINT32_TO_LE(0x00008201);
tmp = (char *)tmsg + sizeof(struct type3_message);
ucs2le = g_convert(domain, -1, "UTF-16LE", "UTF-8", NULL, NULL, NULL);
if (ucs2le != NULL) {
memcpy(tmp, ucs2le, domainlen);
g_free(ucs2le);
tmp += domainlen;
} else {
purple_debug_info("ntlm", "Unable to encode domain in UTF-16LE.\n");
}
ucs2le = g_convert(username, -1, "UTF-16LE", "UTF-8", NULL, NULL, NULL);
if (ucs2le != NULL) {
memcpy(tmp, ucs2le, usernamelen);
g_free(ucs2le);
tmp += usernamelen;
} else {
purple_debug_info("ntlm", "Unable to encode username in UTF-16LE.\n");
}
ucs2le = g_convert(hostname, -1, "UTF-16LE", "UTF-8", NULL, NULL, NULL);
if (ucs2le != NULL) {
memcpy(tmp, ucs2le, hostnamelen);
g_free(ucs2le);
tmp += hostnamelen;
} else {
purple_debug_info("ntlm", "Unable to encode hostname in UTF-16LE.\n");
}
/* LM */
if (passwlen > 14)
passwlen = 14;
for (idx = 0; idx < passwlen; idx++)
lm_pw[idx] = g_ascii_toupper(passw[idx]);
for (; idx < 14; idx++)
lm_pw[idx] = 0;
setup_des_key((unsigned char*)lm_pw, key);
des_ecb_encrypt(magic, lm_hpw, key);
setup_des_key((unsigned char*)(lm_pw + 7), key);
des_ecb_encrypt(magic, lm_hpw + 8, key);
memset(lm_hpw + 16, 0, 5);
calc_resp(lm_hpw, nonce, lm_resp);
memcpy(tmp, lm_resp, 0x18);
tmp += 0x18;
/* NTLM */
/* Convert the password to UTF-16LE */
lennt = strlen(passw);
for (idx = 0; idx < lennt; idx++)
{
nt_pw[2 * idx] = passw[idx];
nt_pw[2 * idx + 1] = 0;
}
cipher = purple_ciphers_find_cipher("md4");
context = purple_cipher_context_new(cipher, NULL);
purple_cipher_context_append(context, (guint8 *)nt_pw, 2 * lennt);
purple_cipher_context_digest(context, 21, nt_hpw, NULL);
purple_cipher_context_destroy(context);
memset(nt_hpw + 16, 0, 5);
calc_resp(nt_hpw, nonce, nt_resp);
memcpy(tmp, nt_resp, 0x18);
tmp += 0x18;
/* LCS Stuff */
if (flags) {
tmsg->flags = GUINT32_TO_LE(0x409082d4);
gensesskey(sesskey, NULL);
memcpy(tmp, sesskey, 0x10);
}
/*tmsg->flags2 = 0x0a280105;
tmsg->flags3 = 0x0f000000;*/
tmp = purple_base64_encode((guchar *)tmsg, msglen);
g_free(tmsg);
return tmp;
}