illumos/onarm: usr/src/cmd/cmd-inet/usr.bin/pppd/chap

author	Koji Uno <koji.uno@sun.com>
date	Tue, 02 Jun 2009 18:56:50 +0900
parents
children	1a15d5aaf794

rev	line source
0 c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	1 /*
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	2 * chap_ms.c - Microsoft MS-CHAP compatible implementation.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	3 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	4 * Copyright 2007 Sun Microsystems, Inc. All rights reserved.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	5 * Use is subject to license terms.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	6 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	7 * Copyright (c) 1995 Eric Rosenquist, Strata Software Limited.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	8 * http://www.strataware.com/
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	9 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	10 * All rights reserved.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	11 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	12 * Redistribution and use in source and binary forms are permitted
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	13 * provided that the above copyright notice and this paragraph are
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	14 * duplicated in all such forms and that any documentation,
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	15 * advertising materials, and other materials related to such
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	16 * distribution and use acknowledge that the software was developed
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	17 * by Eric Rosenquist. The name of the author may not be used to
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	18 * endorse or promote products derived from this software without
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	19 * specific prior written permission.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	20 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	21 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	22 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	23 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	24 */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	25
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	26 /*
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	27 * This module implements MS-CHAPv1 (RFC 2433) and MS-CHAPv2 (RFC 2759).
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	28 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	29 * Modifications by Lauri Pesonen / lpesonen@clinet.fi, april 1997
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	30 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	31 * Implemented LANManager type password response to MS-CHAP challenges.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	32 * Now pppd provides both NT style and LANMan style blocks, and the
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	33 * prefered is set by option "ms-lanman". Default is to use NT.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	34 * The hash text (StdText) was taken from Win95 RASAPI32.DLL.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	35 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	36 * You should also use DOMAIN\\USERNAME as described in README.MSCHAP80
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	37 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	38 * Modifications by James Carlson / james.d.carlson@sun.com, June 1st, 2000.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	39 *
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	40 * Added MS-CHAPv2 support.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	41 */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	42
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	43 #pragma ident "@(#)chap_ms.c 1.2 07/12/05 SMI"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	44 #define RCSID "$Id: chap_ms.c,v 1.15 1999/08/13 06:46:12 paulus Exp $"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	45
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	46 #if defined(CHAPMS) \|\| defined(CHAPMSV2)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	47
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	48 #include <stdio.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	49 #include <stdlib.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	50 #include <string.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	51 #include <ctype.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	52 #include <sys/types.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	53 #include <sys/time.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	54 #include <unistd.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	55 #ifdef HAVE_CRYPT_H
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	56 #include <crypt.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	57 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	58
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	59 #ifdef CHAPMSV2
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	60 #include "sha1.h"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	61 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	62
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	63 #ifndef USE_CRYPT
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	64 #include <des.h>
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	65 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	66
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	67 #include "pppd.h"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	68 #include "chap.h"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	69 #include "chap_ms.h"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	70 #include "md4.h"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	71
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	72 #if !defined(lint) && !defined(_lint)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	73 static const char rcsid[] = RCSID;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	74 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	75
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	76 typedef struct {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	77 u_char LANManResp[24];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	78 u_char NTResp[24];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	79 u_char UseNT; /* If 1, ignore the LANMan response field */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	80 } MS_ChapResponse;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	81 /* We use MS_CHAP_RESPONSE_LEN, rather than sizeof(MS_ChapResponse),
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	82 in case this struct gets padded. */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	83
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	84 typedef struct {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	85 u_char PeerChallenge[16];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	86 u_char MustBeZero[8];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	87 u_char NTResp[24];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	88 u_char Flags; /* Should be zero (Win98 sends 04) */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	89 } MS_Chapv2Response;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	90 /* We use MS_CHAPV2_RESPONSE_LEN, rather than sizeof(MS_Chapv2Response),
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	91 in case this struct gets padded. */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	92
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	93 static void ChallengeResponse __P((u_char , u_char , u_char *));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	94 static void DesEncrypt __P((u_char , u_char , u_char *));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	95 static void MakeKey __P((u_char , u_char ));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	96 static u_char Get7Bits __P((u_char *, int));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	97 #ifdef CHAPMS
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	98 static void ChapMS_NT __P((u_char , char , int, MS_ChapResponse *));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	99 #ifdef MSLANMAN
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	100 static void ChapMS_LANMan __P((u_char , char , int, MS_ChapResponse *));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	101 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	102 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	103 #ifdef CHAPMSV2
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	104 static void ChapMSv2_NT __P((char , u_char , char *, int,
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	105 MS_Chapv2Response *));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	106 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	107
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	108 #ifdef USE_CRYPT
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	109 static void Expand __P((u_char , char ));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	110 static void Collapse __P((char , u_char ));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	111 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	112
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	113 #if defined(MSLANMAN) && defined(CHAPMS)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	114 bool ms_lanman = 0; /* Use LanMan password instead of NT */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	115 /* Has meaning only with MS-CHAP challenges */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	116 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	117
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	118 #ifdef CHAPMSV2
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	119 /* Specially-formatted Microsoft CHAP response message. */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	120 static char status_message[256];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	121 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	122
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	123 static void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	124 ChallengeResponse(challenge, pwHash, response)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	125 u_char challenge; / IN 8 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	126 u_char pwHash; / IN 16 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	127 u_char response; / OUT 24 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	128 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	129 u_char ZPasswordHash[21];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	130
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	131 BZERO(ZPasswordHash, sizeof(ZPasswordHash));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	132 BCOPY(pwHash, ZPasswordHash, MD4_SIGNATURE_SIZE);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	133
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	134 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	135 dbglog("ChallengeResponse - ZPasswordHash %.*B",
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	136 sizeof(ZPasswordHash), ZPasswordHash);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	137 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	138
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	139 DesEncrypt(challenge, ZPasswordHash + 0, response + 0);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	140 DesEncrypt(challenge, ZPasswordHash + 7, response + 8);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	141 DesEncrypt(challenge, ZPasswordHash + 14, response + 16);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	142
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	143 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	144 dbglog("ChallengeResponse - response %.24B", response);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	145 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	146 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	147
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	148
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	149 #ifdef USE_CRYPT
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	150 static void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	151 DesEncrypt(clear, key, cipher)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	152 u_char clear; / IN 8 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	153 u_char key; / IN 7 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	154 u_char cipher; / OUT 8 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	155 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	156 u_char des_key[8];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	157 char crypt_key[66];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	158 char des_input[66];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	159
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	160 MakeKey(key, des_key);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	161
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	162 Expand(des_key, crypt_key);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	163 setkey(crypt_key);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	164
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	165 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	166 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet input : %.8B", clear));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	167 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	168
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	169 Expand(clear, des_input);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	170 encrypt(des_input, 0);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	171 Collapse(des_input, cipher);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	172
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	173 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	174 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet output: %.8B", cipher));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	175 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	176 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	177
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	178 #else /* USE_CRYPT */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	179
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	180 static void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	181 DesEncrypt(clear, key, cipher)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	182 u_char clear; / IN 8 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	183 u_char key; / IN 7 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	184 u_char cipher; / OUT 8 octets */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	185 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	186 des_cblock des_key;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	187 des_key_schedule key_schedule;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	188
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	189 MakeKey(key, des_key);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	190
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	191 des_set_key(&des_key, key_schedule);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	192
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	193 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	194 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet input : %.8B", clear));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	195 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	196
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	197 des_ecb_encrypt((des_cblock )clear, (des_cblock )cipher, key_schedule, 1);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	198
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	199 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	200 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet output: %.8B", cipher));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	201 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	202 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	203
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	204 #endif /* USE_CRYPT */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	205
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	206
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	207 static u_char Get7Bits(input, startBit)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	208 u_char *input;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	209 int startBit;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	210 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	211 register unsigned int word;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	212
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	213 word = (unsigned)input[startBit / 8] << 8;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	214 word \|= (unsigned)input[startBit / 8 + 1];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	215
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	216 word >>= 15 - (startBit % 8 + 7);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	217
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	218 return word & 0xFE;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	219 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	220
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	221 #ifdef USE_CRYPT
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	222
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	223 /* in == 8-byte string (expanded version of the 56-bit key)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	224 * out == 64-byte string where each byte is either 1 or 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	225 * Note that the low-order "bit" is always ignored by by setkey()
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	226 */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	227 static void Expand(in, out)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	228 u_char *in;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	229 char *out;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	230 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	231 int j, c;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	232 int i;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	233
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	234 for(i = 0; i < 64; in++){
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	235 c = *in;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	236 for(j = 7; j >= 0; j--)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	237 *out++ = (c >> j) & 01;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	238 i += 8;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	239 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	240 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	241
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	242 /* The inverse of Expand
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	243 */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	244 static void Collapse(in, out)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	245 char *in;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	246 u_char *out;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	247 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	248 int j;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	249 int i;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	250 unsigned int c;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	251
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	252 for (i = 0; i < 64; i += 8, out++) {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	253 c = 0;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	254 for (j = 7; j >= 0; j--, in++)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	255 c \|= (u_char )in << j;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	256 *out = c & 0xff;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	257 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	258 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	259 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	260
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	261 static void MakeKey(key, des_key)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	262 u_char key; / IN 56 bit DES key missing parity bits */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	263 u_char des_key; / OUT 64 bit DES key with parity bits added */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	264 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	265 des_key[0] = Get7Bits(key, 0);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	266 des_key[1] = Get7Bits(key, 7);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	267 des_key[2] = Get7Bits(key, 14);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	268 des_key[3] = Get7Bits(key, 21);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	269 des_key[4] = Get7Bits(key, 28);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	270 des_key[5] = Get7Bits(key, 35);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	271 des_key[6] = Get7Bits(key, 42);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	272 des_key[7] = Get7Bits(key, 49);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	273
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	274 #ifndef USE_CRYPT
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	275 des_set_odd_parity((des_cblock *)des_key);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	276 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	277
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	278 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	279 CHAPDEBUG((LOG_INFO, "MakeKey: 56-bit input : %.7B", key));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	280 CHAPDEBUG((LOG_INFO, "MakeKey: 64-bit output: %.8B", des_key));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	281 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	282 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	283
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	284 #ifdef CHAPMS
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	285 static void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	286 ChapMS_NT(rchallenge, secret, secret_len, response)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	287 u_char *rchallenge;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	288 char *secret;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	289 int secret_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	290 MS_ChapResponse *response;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	291 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	292 int i;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	293 #if defined(__NetBSD__) \|\| defined(HAVE_LIBMD)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	294 /* NetBSD uses the libc md4 routines which take bytes instead of bits */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	295 int mdlen = secret_len * 2;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	296 #else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	297 int mdlen = secret_len * 2 * 8;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	298 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	299 MD4_CTX md4Context;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	300 u_char hash[MD4_SIGNATURE_SIZE];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	301 u_char unicodePassword[MAX_NT_PASSWORD * 2];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	302
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	303 /* Initialize the Unicode version of the secret (== password). */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	304 /* This implicitly supports 8-bit ISO8859/1 characters. */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	305 BZERO(unicodePassword, sizeof(unicodePassword));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	306 for (i = 0; i < secret_len; i++)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	307 unicodePassword[i * 2] = (u_char)secret[i];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	308
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	309 MD4Init(&md4Context);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	310 MD4Update(&md4Context, unicodePassword, mdlen);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	311
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	312 MD4Final(hash, &md4Context); /* Tell MD4 we're done */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	313
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	314 ChallengeResponse(rchallenge, hash, response->NTResp);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	315 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	316
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	317 #ifdef MSLANMAN
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	318 static u_char StdText = (u_char )"KGS!@#$%"; /* key from rasapi32.dll */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	319
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	320 static void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	321 ChapMS_LANMan(rchallenge, secret, secret_len, response)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	322 u_char *rchallenge;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	323 char *secret;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	324 int secret_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	325 MS_ChapResponse *response;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	326 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	327 int i;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	328 u_char UcasePassword[MAX_NT_PASSWORD]; /* max is actually 14 */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	329 u_char PasswordHash[MD4_SIGNATURE_SIZE];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	330
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	331 /* LANMan password is case insensitive */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	332 BZERO(UcasePassword, sizeof(UcasePassword));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	333 for (i = 0; i < secret_len; i++)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	334 UcasePassword[i] = (u_char)(
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	335 islower(secret[i]) ? toupper(secret[i]) : secret[i]);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	336 DesEncrypt( StdText, UcasePassword + 0, PasswordHash + 0 );
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	337 DesEncrypt( StdText, UcasePassword + 7, PasswordHash + 8 );
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	338 ChallengeResponse(rchallenge, PasswordHash, response->LANManResp);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	339 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	340 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	341
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	342 void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	343 ChapMS(cstate, rchallenge, rchallenge_len, secret, secret_len)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	344 chap_state *cstate;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	345 u_char *rchallenge;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	346 int rchallenge_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	347 char *secret;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	348 int secret_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	349 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	350 MS_ChapResponse response;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	351
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	352 if (rchallenge_len < 8) {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	353 cstate->resp_length = 0;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	354 return;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	355 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	356
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	357 #if 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	358 CHAPDEBUG((LOG_INFO, "ChapMS: secret is '%.*s'", secret_len, secret));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	359 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	360 BZERO(&response, sizeof(response));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	361
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	362 /* Calculate both always */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	363 ChapMS_NT(rchallenge, secret, secret_len, &response);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	364
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	365 #ifdef MSLANMAN
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	366 ChapMS_LANMan(rchallenge, secret, secret_len, &response);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	367
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	368 /* prefered method is set by option */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	369 response.UseNT = !ms_lanman;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	370 #else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	371 response.UseNT = 1;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	372 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	373
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	374 BCOPY(&response, cstate->response, MS_CHAP_RESPONSE_LEN);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	375 cstate->resp_length = MS_CHAP_RESPONSE_LEN;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	376 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	377
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	378 static int
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	379 ChapMSStatus(cstate, flag)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	380 chap_state *cstate;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	381 int flag;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	382 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	383 if (flag != 0) {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	384 cstate->stat_message = NULL;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	385 cstate->stat_length = 0;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	386 } else {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	387 cstate->stat_message = "E=691 R=0 M=\"Authentication failed\"";
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	388 cstate->stat_length = strlen(cstate->stat_message);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	389 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	390 return (flag);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	391 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	392
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	393 int
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	394 ChapMSValidate(cstate, response, response_len, secret, secret_len)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	395 chap_state *cstate;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	396 u_char *response;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	397 int response_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	398 char *secret;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	399 int secret_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	400 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	401 MS_ChapResponse ckresp;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	402
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	403 if (response_len < MS_CHAP_RESPONSE_LEN \|\| cstate->chal_len < 8)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	404 return (0);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	405
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	406 BZERO(&ckresp, sizeof(ckresp));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	407
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	408 if (response[MS_CHAP_RESPONSE_LEN-1]) {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	409 ChapMS_NT(cstate->challenge, secret, secret_len, &ckresp);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	410 return (ChapMSStatus(cstate, memcmp(ckresp.NTResp, response+24,
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	411 24) == 0));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	412 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	413
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	414 #ifdef MSLANMAN
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	415 ChapMS_LANMan(cstate->challenge, secret, secret_len, &ckresp);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	416 return (ChapMSStatus(cstate,
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	417 memcmp(ckresp.LANManResp, response, 24) == 0));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	418 #else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	419 return (ChapMSStatus(cstate, 0));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	420 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	421 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	422 #endif /* CHAPMS */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	423
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	424 #ifdef CHAPMSV2
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	425 static void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	426 ChallengeHash(peerchallenge, authenticatorchallenge, username, challenge)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	427 u_char peerchallenge, authenticatorchallenge, *challenge;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	428 char *username;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	429 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	430 uint8_t digest[20];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	431 SHA1_CTX sha1Context;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	432 char *cp;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	433
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	434 SHA1Init(&sha1Context);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	435 SHA1Update(&sha1Context, peerchallenge, 16);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	436 SHA1Update(&sha1Context, authenticatorchallenge, 16);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	437
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	438 /*
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	439 * Only the user name (as presented by the peer and
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	440 * excluding any prepended domain name)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	441 * is used as input to SHAUpdate().
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	442 */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	443 if ((cp = strchr(username,'\\')) != NULL)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	444 username = cp;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	445
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	446 SHA1Update(&sha1Context, (uint8_t *)username, strlen(username));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	447 SHA1Final(digest, &sha1Context);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	448 BCOPY(digest, challenge, 8);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	449 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	450
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	451 static void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	452 ChapMSv2_NT(username, rchallenge, secret, secret_len, response)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	453 char *username;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	454 u_char *rchallenge;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	455 char *secret;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	456 int secret_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	457 MS_Chapv2Response *response;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	458 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	459 int i;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	460 #if defined(__NetBSD__) \|\| defined(HAVE_LIBMD)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	461 /* NetBSD uses the libc md4 routines that take bytes instead of bits */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	462 int mdlen = secret_len * 2;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	463 #else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	464 int mdlen = secret_len * 2 * 8;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	465 #endif
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	466 MD4_CTX md4Context;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	467 u_char hash[MD4_SIGNATURE_SIZE];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	468 u_char challenge[8];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	469 u_char unicodePassword[MAX_NT_PASSWORD * 2];
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	470
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	471 /* Initialize the Unicode version of the secret (== password). */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	472 /* This implicitly supports 8-bit ISO8859/1 characters. */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	473 BZERO(unicodePassword, sizeof(unicodePassword));
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	474 for (i = 0; i < secret_len && i < MAX_NT_PASSWORD; i++)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	475 if ((unicodePassword[i * 2] = (u_char)secret[i]) == '\0')
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	476 break;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	477
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	478 ChallengeHash(response->PeerChallenge, rchallenge, username, challenge);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	479
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	480 MD4Init(&md4Context);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	481 MD4Update(&md4Context, unicodePassword, mdlen);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	482
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	483 MD4Final(hash, &md4Context); /* Tell MD4 we're done */
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	484
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	485 ChallengeResponse(challenge, hash, response->NTResp);
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	486 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	487
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	488 void
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	489 ChapMSv2(cstate, rchallenge, rchallenge_len, secret, secret_len)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	490 chap_state *cstate;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	491 u_char *rchallenge;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	492 int rchallenge_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	493 char *secret;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	494 int secret_len;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	495 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	496 MS_Chapv2Response response;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	497 u_char *ptr;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	498 int i;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	499
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	500 if (rchallenge_len < 8) {

0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

1 /*

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

2 * chap_ms.c - Microsoft MS-CHAP compatible implementation.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

3 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

5 * Use is subject to license terms.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

6 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

8 * http://www.strataware.com/

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

9 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

11 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

12 * Redistribution and use in source and binary forms are permitted

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

13 * provided that the above copyright notice and this paragraph are

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

14 * duplicated in all such forms and that any documentation,

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

15 * advertising materials, and other materials related to such

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

16 * distribution and use acknowledge that the software was developed

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

17 * by Eric Rosenquist. The name of the author may not be used to

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

18 * endorse or promote products derived from this software without

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

19 * specific prior written permission.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

20 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

21 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

22 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

23 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

24 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

25

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

26 /*

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

27 * This module implements MS-CHAPv1 (RFC 2433) and MS-CHAPv2 (RFC 2759).

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

28 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

29 * Modifications by Lauri Pesonen / lpesonen@clinet.fi, april 1997

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

30 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

31 * Implemented LANManager type password response to MS-CHAP challenges.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

32 * Now pppd provides both NT style and LANMan style blocks, and the

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

33 * prefered is set by option "ms-lanman". Default is to use NT.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

34 * The hash text (StdText) was taken from Win95 RASAPI32.DLL.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

35 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

36 * You should also use DOMAIN\\USERNAME as described in README.MSCHAP80

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

37 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

38 * Modifications by James Carlson / james.d.carlson@sun.com, June 1st, 2000.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

39 *

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

40 * Added MS-CHAPv2 support.

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

41 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

42

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

43 #pragma ident "@(#)chap_ms.c 1.2 07/12/05 SMI"

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

44 #define RCSID "$Id: chap_ms.c,v 1.15 1999/08/13 06:46:12 paulus Exp $"

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

45

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

46 #if defined(CHAPMS) || defined(CHAPMSV2)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

47

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

48 #include <stdio.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

49 #include <stdlib.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

50 #include <string.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

51 #include <ctype.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

52 #include <sys/types.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

53 #include <sys/time.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

54 #include <unistd.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

55 #ifdef HAVE_CRYPT_H

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

56 #include <crypt.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

57 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

58

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

59 #ifdef CHAPMSV2

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

60 #include "sha1.h"

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

61 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

62

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

63 #ifndef USE_CRYPT

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

64 #include <des.h>

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

65 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

66

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

67 #include "pppd.h"

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

68 #include "chap.h"

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

69 #include "chap_ms.h"

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

70 #include "md4.h"

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

71

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

72 #if !defined(lint) && !defined(_lint)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

73 static const char rcsid[] = RCSID;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

74 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

75

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

76 typedef struct {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

77 u_char LANManResp[24];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

78 u_char NTResp[24];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

79 u_char UseNT; /* If 1, ignore the LANMan response field */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

80 } MS_ChapResponse;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

81 /* We use MS_CHAP_RESPONSE_LEN, rather than sizeof(MS_ChapResponse),

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

82 in case this struct gets padded. */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

83

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

84 typedef struct {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

85 u_char PeerChallenge[16];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

86 u_char MustBeZero[8];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

87 u_char NTResp[24];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

88 u_char Flags; /* Should be zero (Win98 sends 04) */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

89 } MS_Chapv2Response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

90 /* We use MS_CHAPV2_RESPONSE_LEN, rather than sizeof(MS_Chapv2Response),

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

91 in case this struct gets padded. */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

92

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

93 static void ChallengeResponse __P((u_char *, u_char *, u_char *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

94 static void DesEncrypt __P((u_char *, u_char *, u_char *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

95 static void MakeKey __P((u_char *, u_char *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

96 static u_char Get7Bits __P((u_char *, int));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

97 #ifdef CHAPMS

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

98 static void ChapMS_NT __P((u_char *, char *, int, MS_ChapResponse *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

99 #ifdef MSLANMAN

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

100 static void ChapMS_LANMan __P((u_char *, char *, int, MS_ChapResponse *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

101 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

102 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

103 #ifdef CHAPMSV2

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

104 static void ChapMSv2_NT __P((char *, u_char *, char *, int,

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

105 MS_Chapv2Response *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

106 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

107

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

108 #ifdef USE_CRYPT

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

109 static void Expand __P((u_char *, char *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

110 static void Collapse __P((char *, u_char *));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

111 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

112

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

113 #if defined(MSLANMAN) && defined(CHAPMS)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

114 bool ms_lanman = 0; /* Use LanMan password instead of NT */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

115 /* Has meaning only with MS-CHAP challenges */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

116 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

117

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

118 #ifdef CHAPMSV2

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

119 /* Specially-formatted Microsoft CHAP response message. */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

120 static char status_message[256];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

121 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

122

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

123 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

124 ChallengeResponse(challenge, pwHash, response)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

125 u_char *challenge; /* IN 8 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

126 u_char *pwHash; /* IN 16 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

127 u_char *response; /* OUT 24 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

128 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

129 u_char ZPasswordHash[21];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

130

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

131 BZERO(ZPasswordHash, sizeof(ZPasswordHash));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

132 BCOPY(pwHash, ZPasswordHash, MD4_SIGNATURE_SIZE);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

133

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

134 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

135 dbglog("ChallengeResponse - ZPasswordHash %.*B",

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

136 sizeof(ZPasswordHash), ZPasswordHash);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

137 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

138

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

139 DesEncrypt(challenge, ZPasswordHash + 0, response + 0);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

140 DesEncrypt(challenge, ZPasswordHash + 7, response + 8);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

141 DesEncrypt(challenge, ZPasswordHash + 14, response + 16);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

142

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

143 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

144 dbglog("ChallengeResponse - response %.24B", response);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

145 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

146 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

147

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

148

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

149 #ifdef USE_CRYPT

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

150 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

151 DesEncrypt(clear, key, cipher)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

152 u_char *clear; /* IN 8 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

153 u_char *key; /* IN 7 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

154 u_char *cipher; /* OUT 8 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

155 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

156 u_char des_key[8];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

157 char crypt_key[66];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

158 char des_input[66];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

159

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

160 MakeKey(key, des_key);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

161

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

162 Expand(des_key, crypt_key);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

163 setkey(crypt_key);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

164

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

165 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

166 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet input : %.8B", clear));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

167 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

168

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

169 Expand(clear, des_input);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

170 encrypt(des_input, 0);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

171 Collapse(des_input, cipher);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

172

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

173 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

174 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet output: %.8B", cipher));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

175 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

176 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

177

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

178 #else /* USE_CRYPT */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

179

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

180 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

181 DesEncrypt(clear, key, cipher)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

182 u_char *clear; /* IN 8 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

183 u_char *key; /* IN 7 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

184 u_char *cipher; /* OUT 8 octets */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

185 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

186 des_cblock des_key;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

187 des_key_schedule key_schedule;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

188

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

189 MakeKey(key, des_key);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

190

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

191 des_set_key(&des_key, key_schedule);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

192

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

193 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

194 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet input : %.8B", clear));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

195 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

196

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

197 des_ecb_encrypt((des_cblock *)clear, (des_cblock *)cipher, key_schedule, 1);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

198

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

199 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

200 CHAPDEBUG((LOG_INFO, "DesEncrypt: 8 octet output: %.8B", cipher));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

201 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

202 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

203

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

204 #endif /* USE_CRYPT */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

205

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

206

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

207 static u_char Get7Bits(input, startBit)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

208 u_char *input;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

209 int startBit;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

210 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

211 register unsigned int word;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

212

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

213 word = (unsigned)input[startBit / 8] << 8;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

214 word |= (unsigned)input[startBit / 8 + 1];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

215

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

216 word >>= 15 - (startBit % 8 + 7);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

217

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

218 return word & 0xFE;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

219 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

220

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

221 #ifdef USE_CRYPT

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

222

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

223 /* in == 8-byte string (expanded version of the 56-bit key)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

224 * out == 64-byte string where each byte is either 1 or 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

225 * Note that the low-order "bit" is always ignored by by setkey()

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

226 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

227 static void Expand(in, out)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

228 u_char *in;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

229 char *out;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

230 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

231 int j, c;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

232 int i;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

233

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

234 for(i = 0; i < 64; in++){

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

235 c = *in;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

236 for(j = 7; j >= 0; j--)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

237 *out++ = (c >> j) & 01;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

238 i += 8;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

239 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

240 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

241

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

242 /* The inverse of Expand

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

243 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

244 static void Collapse(in, out)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

245 char *in;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

246 u_char *out;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

247 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

248 int j;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

249 int i;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

250 unsigned int c;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

251

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

252 for (i = 0; i < 64; i += 8, out++) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

253 c = 0;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

254 for (j = 7; j >= 0; j--, in++)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

255 c |= *(u_char *)in << j;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

256 *out = c & 0xff;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

257 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

258 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

259 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

260

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

261 static void MakeKey(key, des_key)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

262 u_char *key; /* IN 56 bit DES key missing parity bits */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

263 u_char *des_key; /* OUT 64 bit DES key with parity bits added */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

264 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

265 des_key[0] = Get7Bits(key, 0);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

266 des_key[1] = Get7Bits(key, 7);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

267 des_key[2] = Get7Bits(key, 14);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

268 des_key[3] = Get7Bits(key, 21);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

269 des_key[4] = Get7Bits(key, 28);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

270 des_key[5] = Get7Bits(key, 35);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

271 des_key[6] = Get7Bits(key, 42);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

272 des_key[7] = Get7Bits(key, 49);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

273

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

274 #ifndef USE_CRYPT

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

275 des_set_odd_parity((des_cblock *)des_key);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

276 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

277

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

278 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

279 CHAPDEBUG((LOG_INFO, "MakeKey: 56-bit input : %.7B", key));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

280 CHAPDEBUG((LOG_INFO, "MakeKey: 64-bit output: %.8B", des_key));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

281 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

282 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

283

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

284 #ifdef CHAPMS

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

285 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

286 ChapMS_NT(rchallenge, secret, secret_len, response)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

287 u_char *rchallenge;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

288 char *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

289 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

290 MS_ChapResponse *response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

291 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

292 int i;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

293 #if defined(__NetBSD__) || defined(HAVE_LIBMD)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

294 /* NetBSD uses the libc md4 routines which take bytes instead of bits */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

295 int mdlen = secret_len * 2;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

296 #else

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

297 int mdlen = secret_len * 2 * 8;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

298 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

299 MD4_CTX md4Context;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

300 u_char hash[MD4_SIGNATURE_SIZE];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

301 u_char unicodePassword[MAX_NT_PASSWORD * 2];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

302

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

303 /* Initialize the Unicode version of the secret (== password). */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

304 /* This implicitly supports 8-bit ISO8859/1 characters. */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

305 BZERO(unicodePassword, sizeof(unicodePassword));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

306 for (i = 0; i < secret_len; i++)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

307 unicodePassword[i * 2] = (u_char)secret[i];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

308

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

309 MD4Init(&md4Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

310 MD4Update(&md4Context, unicodePassword, mdlen);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

311

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

312 MD4Final(hash, &md4Context); /* Tell MD4 we're done */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

313

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

314 ChallengeResponse(rchallenge, hash, response->NTResp);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

315 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

316

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

317 #ifdef MSLANMAN

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

318 static u_char *StdText = (u_char *)"KGS!@#$%"; /* key from rasapi32.dll */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

319

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

320 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

321 ChapMS_LANMan(rchallenge, secret, secret_len, response)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

322 u_char *rchallenge;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

323 char *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

324 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

325 MS_ChapResponse *response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

326 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

327 int i;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

328 u_char UcasePassword[MAX_NT_PASSWORD]; /* max is actually 14 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

329 u_char PasswordHash[MD4_SIGNATURE_SIZE];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

330

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

331 /* LANMan password is case insensitive */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

332 BZERO(UcasePassword, sizeof(UcasePassword));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

333 for (i = 0; i < secret_len; i++)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

334 UcasePassword[i] = (u_char)(

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

335 islower(secret[i]) ? toupper(secret[i]) : secret[i]);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

336 DesEncrypt( StdText, UcasePassword + 0, PasswordHash + 0 );

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

337 DesEncrypt( StdText, UcasePassword + 7, PasswordHash + 8 );

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

338 ChallengeResponse(rchallenge, PasswordHash, response->LANManResp);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

339 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

340 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

341

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

342 void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

343 ChapMS(cstate, rchallenge, rchallenge_len, secret, secret_len)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

344 chap_state *cstate;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

345 u_char *rchallenge;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

346 int rchallenge_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

347 char *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

348 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

349 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

350 MS_ChapResponse response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

351

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

352 if (rchallenge_len < 8) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

353 cstate->resp_length = 0;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

354 return;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

355 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

356

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

357 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

358 CHAPDEBUG((LOG_INFO, "ChapMS: secret is '%.*s'", secret_len, secret));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

359 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

360 BZERO(&response, sizeof(response));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

361

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

362 /* Calculate both always */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

363 ChapMS_NT(rchallenge, secret, secret_len, &response);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

364

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

365 #ifdef MSLANMAN

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

366 ChapMS_LANMan(rchallenge, secret, secret_len, &response);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

367

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

368 /* prefered method is set by option */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

369 response.UseNT = !ms_lanman;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

370 #else

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

371 response.UseNT = 1;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

372 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

373

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

374 BCOPY(&response, cstate->response, MS_CHAP_RESPONSE_LEN);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

375 cstate->resp_length = MS_CHAP_RESPONSE_LEN;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

376 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

377

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

378 static int

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

379 ChapMSStatus(cstate, flag)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

380 chap_state *cstate;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

381 int flag;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

382 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

383 if (flag != 0) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

384 cstate->stat_message = NULL;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

385 cstate->stat_length = 0;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

386 } else {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

387 cstate->stat_message = "E=691 R=0 M=\"Authentication failed\"";

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

388 cstate->stat_length = strlen(cstate->stat_message);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

389 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

390 return (flag);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

391 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

392

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

393 int

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

394 ChapMSValidate(cstate, response, response_len, secret, secret_len)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

395 chap_state *cstate;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

396 u_char *response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

397 int response_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

398 char *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

399 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

400 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

401 MS_ChapResponse ckresp;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

402

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

403 if (response_len < MS_CHAP_RESPONSE_LEN || cstate->chal_len < 8)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

404 return (0);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

405

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

406 BZERO(&ckresp, sizeof(ckresp));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

407

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

408 if (response[MS_CHAP_RESPONSE_LEN-1]) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

409 ChapMS_NT(cstate->challenge, secret, secret_len, &ckresp);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

410 return (ChapMSStatus(cstate, memcmp(ckresp.NTResp, response+24,

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

411 24) == 0));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

412 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

413

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

414 #ifdef MSLANMAN

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

415 ChapMS_LANMan(cstate->challenge, secret, secret_len, &ckresp);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

416 return (ChapMSStatus(cstate,

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

417 memcmp(ckresp.LANManResp, response, 24) == 0));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

418 #else

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

419 return (ChapMSStatus(cstate, 0));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

420 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

421 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

422 #endif /* CHAPMS */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

423

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

424 #ifdef CHAPMSV2

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

425 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

426 ChallengeHash(peerchallenge, authenticatorchallenge, username, challenge)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

427 u_char *peerchallenge, *authenticatorchallenge, *challenge;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

428 char *username;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

429 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

430 uint8_t digest[20];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

431 SHA1_CTX sha1Context;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

432 char *cp;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

433

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

434 SHA1Init(&sha1Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

435 SHA1Update(&sha1Context, peerchallenge, 16);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

436 SHA1Update(&sha1Context, authenticatorchallenge, 16);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

437

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

438 /*

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

439 * Only the user name (as presented by the peer and

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

440 * excluding any prepended domain name)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

441 * is used as input to SHAUpdate().

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

442 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

443 if ((cp = strchr(username,'\\')) != NULL)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

444 username = cp;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

445

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

446 SHA1Update(&sha1Context, (uint8_t *)username, strlen(username));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

447 SHA1Final(digest, &sha1Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

448 BCOPY(digest, challenge, 8);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

449 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

450

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

451 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

452 ChapMSv2_NT(username, rchallenge, secret, secret_len, response)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

453 char *username;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

454 u_char *rchallenge;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

455 char *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

456 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

457 MS_Chapv2Response *response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

458 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

459 int i;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

460 #if defined(__NetBSD__) || defined(HAVE_LIBMD)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

461 /* NetBSD uses the libc md4 routines that take bytes instead of bits */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

462 int mdlen = secret_len * 2;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

463 #else

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

464 int mdlen = secret_len * 2 * 8;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

465 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

466 MD4_CTX md4Context;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

467 u_char hash[MD4_SIGNATURE_SIZE];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

468 u_char challenge[8];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

469 u_char unicodePassword[MAX_NT_PASSWORD * 2];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

470

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

471 /* Initialize the Unicode version of the secret (== password). */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

472 /* This implicitly supports 8-bit ISO8859/1 characters. */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

473 BZERO(unicodePassword, sizeof(unicodePassword));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

474 for (i = 0; i < secret_len && i < MAX_NT_PASSWORD; i++)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

475 if ((unicodePassword[i * 2] = (u_char)secret[i]) == '\0')

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

476 break;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

477

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

478 ChallengeHash(response->PeerChallenge, rchallenge, username, challenge);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

479

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

480 MD4Init(&md4Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

481 MD4Update(&md4Context, unicodePassword, mdlen);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

482

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

483 MD4Final(hash, &md4Context); /* Tell MD4 we're done */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

484

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

485 ChallengeResponse(challenge, hash, response->NTResp);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

486 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

487

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

488 void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

489 ChapMSv2(cstate, rchallenge, rchallenge_len, secret, secret_len)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

490 chap_state *cstate;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

491 u_char *rchallenge;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

492 int rchallenge_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

493 char *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

494 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

495 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

496 MS_Chapv2Response response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

497 u_char *ptr;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

498 int i;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

499

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

500 if (rchallenge_len < 8) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

501 cstate->resp_length = 0;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

502 return;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

503 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

504

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

505 BZERO(&response, sizeof(response));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

506

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

507 ptr = response.PeerChallenge;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

508 for (i = 0; i < 16; i++)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

509 *ptr++ = (u_char) (drand48() * 0xff);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

510

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

511 ChapMSv2_NT(cstate->resp_name, rchallenge, secret, secret_len, &response);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

512

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

513 BCOPY(&response, cstate->response, MS_CHAPV2_RESPONSE_LEN);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

514 cstate->resp_length = MS_CHAPV2_RESPONSE_LEN;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

515 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

516

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

517 static void

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

518 ChapMSv2Success(cstate, msresp, authchall, rhostname, secret, secret_len)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

519 chap_state *cstate;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

520 MS_Chapv2Response *msresp;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

521 u_char *authchall;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

522 char *rhostname, *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

523 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

524 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

525 static const u_char Magic1[39] = "Magic server to client signing constant";

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

526 static const u_char Magic2[41] =

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

527 "Pad to make it do more than one iteration";

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

528 #if defined(__NetBSD__) || defined(HAVE_LIBMD)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

529 /* NetBSD uses the libc md4 routines that take bytes instead of bits */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

530 int mdlen = 1;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

531 #else

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

532 int mdlen = 8;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

533 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

534 u_char unicodePassword[MAX_NT_PASSWORD * 2];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

535 MD4_CTX md4Context;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

536 u_char hash[MD4_SIGNATURE_SIZE];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

537 u_char hashhash[MD4_SIGNATURE_SIZE];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

538 SHA1_CTX sha1Context;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

539 uint8_t digest[20];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

540 u_char challenge[8];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

541 char *cp;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

542 static const char hexdig[] = "0123456789ABCDEF";

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

543 int i;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

544

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

545 /* Initialize the Unicode version of the secret (== password). */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

546 /* This implicitly supports 8-bit ISO8859/1 characters. */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

547 BZERO(unicodePassword, sizeof(unicodePassword));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

548 for (i = 0; i < secret_len && i < MAX_NT_PASSWORD; i++)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

549 if ((unicodePassword[i * 2] = (u_char)secret[i]) == '\0')

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

550 break;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

551

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

552 /* Hash the password with MD4 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

553 MD4Init(&md4Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

554 MD4Update(&md4Context, unicodePassword, secret_len * 2 * mdlen);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

555 MD4Final(hash, &md4Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

556

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

557 /* Now hash the hash */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

558 MD4Init(&md4Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

559 MD4Update(&md4Context, hash, MD4_SIGNATURE_SIZE * mdlen);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

560 MD4Final(hashhash, &md4Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

561

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

562 SHA1Init(&sha1Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

563 SHA1Update(&sha1Context, hashhash, MD4_SIGNATURE_SIZE);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

564 SHA1Update(&sha1Context, msresp->NTResp, sizeof (msresp->NTResp));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

565 SHA1Update(&sha1Context, Magic1, 39);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

566 SHA1Final(digest, &sha1Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

567

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

568 ChallengeHash(msresp->PeerChallenge, authchall, rhostname, challenge);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

569

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

570 SHA1Init(&sha1Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

571 SHA1Update(&sha1Context, digest, 20);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

572 SHA1Update(&sha1Context, challenge, 8);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

573 SHA1Update(&sha1Context, Magic2, 41);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

574 SHA1Final(digest, &sha1Context);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

575

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

576 cp = status_message;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

577 *cp++ = 'S';

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

578 *cp++ = '=';

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

579 for (i = 0; i < 20; i++) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

580 *cp++ = hexdig[digest[i]>>4];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

581 *cp++ = hexdig[digest[i]&15];

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

582 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

583 /*

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

584 * RFC 2759 says that a M=<string> greeting message is possible

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

585 * here. It lies. Any such greeting causes Windoze-98 to give

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

586 * error number 742, "Dial-Up Networking was unable to complete

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

587 * the connection. The computer you're dialing in to does not

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

588 * support the data encryption requirements specified. Please

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

589 * check your encryption settings in the properties of the

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

590 * connection. If this problem persists, contact your network

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

591 * administrator."

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

592 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

593 *cp = '\0';

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

594 #if 0

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

595 slprintf(cp, sizeof (status_message) - (cp-status_message),

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

596 "M=\"Welcome to %s.\"", hostname);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

597 #endif

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

598 cstate->stat_message = status_message;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

599 cstate->stat_length = strlen(status_message);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

600 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

601

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

602 int

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

603 ChapMSv2Validate(cstate, rhostname, response, response_len, secret, secret_len)

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

604 chap_state *cstate;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

605 char *rhostname;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

606 u_char *response;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

607 int response_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

608 char *secret;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

609 int secret_len;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

610 {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

611 MS_Chapv2Response ckresp;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

612

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

613 if (response_len < MS_CHAPV2_RESPONSE_LEN ||

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

614 /* response[MS_CHAPV2_RESPONSE_LEN-1] != 0 || */cstate->chal_len < 8) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

615 cstate->stat_message = NULL;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

616 cstate->stat_length = 0;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

617 return 0;

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

618 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

619

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

620 BZERO(&ckresp, sizeof(ckresp));

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

621

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

622 BCOPY(response, ckresp.PeerChallenge, 16);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

623

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

624 ChapMSv2_NT(rhostname, cstate->challenge, secret, secret_len, &ckresp);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

625 if (memcmp(ckresp.NTResp, response+24, 24) != 0) {

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

626 cstate->stat_message = "E=691 R=0 C=11111111111111111111111111111111 V=3 M=\"Authentication failed\"";

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

627 cstate->stat_length = strlen(cstate->stat_message);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

628 return (0);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

629 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

630 ChapMSv2Success(cstate, (MS_Chapv2Response *)response, cstate->challenge,

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

631 rhostname, secret, secret_len);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

632 return (1);

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

633 }

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

634 #endif /* CHAPMSV2 */

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

635

c9caec207d52 Initial porting based on b86

Koji Uno <koji.uno@sun.com>

parents:

diff changeset

636 #endif /* CHAPMS or CHAPMSV2 */

Mercurial > illumos > onarm

annotate usr/src/cmd/cmd-inet/usr.bin/pppd/chap_ms.c @ 0:c9caec207d52 b86