archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/ds/security/common/cryptdll/lmwrap.c

258 lines
5.2 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  2. //
  3. //
  5. #include <nt.h>
  6. #include <ntrtl.h>
  7. #include <nturtl.h>
  8. #include <windows.h>
  10. #ifdef KERNEL_MODE
  11. #include <ntos.h>
  12. #endif
  13. #include <security.h>
  14. #include <cryptdll.h>
  15. #include <crypt.h>
  16. #include <kerbcon.h>
  17. #include <lmcons.h>
  19. typedef struct _LM_STATE_BUFFER {
  20. LM_OWF_PASSWORD Password;
  21. } LM_STATE_BUFFER, *PLM_STATE_BUFFER;
  24. NTSTATUS
  25. LmWrapInitialize(ULONG dwSeed,
  26. PCHECKSUM_BUFFER * ppcsBuffer);
  28. NTSTATUS
  29. LmWrapSum( PCHECKSUM_BUFFER pcsBuffer,
  30. ULONG cbData,
  31. PUCHAR pbData );
  33. NTSTATUS
  34. LmWrapFinalize( PCHECKSUM_BUFFER pcsBuffer,
  35. PUCHAR pbSum);
  37. NTSTATUS
  38. LmWrapFinish(PCHECKSUM_BUFFER * ppcsBuffer);
  42. CHECKSUM_FUNCTION csfLM = {
  43. KERB_CHECKSUM_LM,
  44. LM_OWF_PASSWORD_LENGTH,
  45. CKSUM_COLLISION,
  46. LmWrapInitialize,
  47. LmWrapSum,
  48. LmWrapFinalize,
  49. LmWrapFinish
  50. // Note : missing last function
  51. };
  54. #ifdef KERNEL_MODE
  55. #pragma alloc_text( PAGEMSG, LmWrapInitialize )
  56. #pragma alloc_text( PAGEMSG, LmWrapSum )
  57. #pragma alloc_text( PAGEMSG, LmWrapFinalize )
  58. #pragma alloc_text( PAGEMSG, LmWrapFinish );
  59. #endif
  61. NTSTATUS
  62. LmWrapInitialize(
  63. ULONG dwSeed,
  64. PCHECKSUM_BUFFER * ppcsBuffer)
  65. {
  66. PLM_STATE_BUFFER pContext;
  68. #ifdef KERNEL_MODE
  69. pContext = ExAllocatePool( NonPagedPool, sizeof( LM_STATE_BUFFER ) );
  70. #else
  71. pContext = LocalAlloc( LMEM_ZEROINIT, sizeof( LM_STATE_BUFFER ) );
  72. #endif
  74. if ( pContext != NULL )
  75. {
  76. *ppcsBuffer = pContext;
  78. return( SEC_E_OK );
  79. }
  81. return( STATUS_INSUFFICIENT_RESOURCES );
  82. }
  85. NTSTATUS
  86. LmCalculateLmPassword(
  87. IN PUNICODE_STRING NtPassword,
  88. OUT PCHAR *LmPasswordBuffer
  89. )
  91. /*++
  93. Routine Description:
  95. This service converts an NT password into a LM password.
  97. Parameters:
  99. NtPassword - The Nt password to be converted.
  101. LmPasswordBuffer - On successful return, points at the LM password
  102. The buffer should be freed using MIDL_user_free
  104. Return Values:
  106. STATUS_SUCCESS - LMPassword contains the LM version of the password.
  108. STATUS_NULL_LM_PASSWORD - The password is too complex to be represented
  109. by a LM password. The LM password returned is a NULL string.
  112. --*/
  113. {
  115. #define LM_BUFFER_LENGTH (LM20_PWLEN + 1)
  117. NTSTATUS NtStatus;
  118. ANSI_STRING LmPassword;
  120. //
  121. // Prepare for failure
  122. //
  124. *LmPasswordBuffer = NULL;
  127. //
  128. // Compute the Ansi version to the Unicode password.
  129. //
  130. // The Ansi version of the Cleartext password is at most 14 bytes long,
  131. // exists in a trailing zero filled 15 byte buffer,
  132. // is uppercased.
  133. //
  135. #ifdef KERNEL_MODE
  136. LmPassword.Buffer = ExAllocatePool(NonPagedPool,LM_BUFFER_LENGTH);
  137. #else
  138. LmPassword.Buffer = LocalAlloc(0,LM_BUFFER_LENGTH);
  139. #endif
  140. if (LmPassword.Buffer == NULL) {
  141. return(STATUS_INSUFFICIENT_RESOURCES);
  142. }
  144. LmPassword.MaximumLength = LmPassword.Length = LM_BUFFER_LENGTH;
  145. RtlZeroMemory( LmPassword.Buffer, LM_BUFFER_LENGTH );
  147. NtStatus = RtlUpcaseUnicodeStringToOemString( &LmPassword, NtPassword, FALSE );
  150. if ( !NT_SUCCESS(NtStatus) ) {
  152. //
  153. // The password is longer than the max LM password length
  154. //
  156. NtStatus = STATUS_NULL_LM_PASSWORD; // Informational return code
  157. RtlZeroMemory( LmPassword.Buffer, LM_BUFFER_LENGTH );
  159. }
  164. //
  165. // Return a pointer to the allocated LM password
  166. //
  168. if (NT_SUCCESS(NtStatus)) {
  170. *LmPasswordBuffer = LmPassword.Buffer;
  172. } else {
  174. #ifdef KERNEL_MODE
  175. ExFreePool(LmPassword.Buffer);
  176. #else
  177. LocalFree(LmPassword.Buffer);
  178. #endif
  179. }
  181. return(NtStatus);
  182. }
  184. NTSTATUS
  185. LmWrapSum(
  186. PCHECKSUM_BUFFER pcsBuffer,
  187. ULONG cbData,
  188. PUCHAR pbData )
  189. {
  190. PLM_STATE_BUFFER pContext = (PLM_STATE_BUFFER) pcsBuffer;
  191. UNICODE_STRING TempString;
  192. PUCHAR LmPassword;
  193. NTSTATUS Status;
  195. TempString.Length = TempString.MaximumLength = (USHORT) cbData;
  196. TempString.Buffer = (LPWSTR) pbData;
  198. Status = LmCalculateLmPassword(
  199. &TempString,
  200. &LmPassword
  201. );
  202. if (!NT_SUCCESS(Status))
  203. {
  204. return(Status);
  205. }
  207. Status = RtlCalculateLmOwfPassword(
  208. LmPassword,
  209. &pContext->Password
  210. );
  211. #ifdef KERNEL_MODE
  212. ExFreePool(LmPassword);
  213. #else
  214. LocalFree(LmPassword);
  215. #endif
  217. return( Status );
  219. }
  222. NTSTATUS
  223. LmWrapFinalize(
  224. PCHECKSUM_BUFFER pcsBuffer,
  225. PUCHAR pbSum)
  226. {
  227. PLM_STATE_BUFFER pContext = (PLM_STATE_BUFFER) pcsBuffer;
  230. RtlCopyMemory(
  231. pbSum,
  232. &pContext->Password,
  233. LM_OWF_PASSWORD_LENGTH
  234. );
  236. return( STATUS_SUCCESS );
  238. }
  240. NTSTATUS
  241. LmWrapFinish(
  242. PCHECKSUM_BUFFER * ppcsBuffer)
  243. {
  245. RtlZeroMemory( *ppcsBuffer, sizeof( PLM_STATE_BUFFER ) );
  247. #ifdef KERNEL_MODE
  248. ExFreePool( *ppcsBuffer );
  249. #else
  250. LocalFree( *ppcsBuffer );
  251. #endif
  253. *ppcsBuffer = NULL ;
  255. return( STATUS_SUCCESS );
  257. }