archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/base/lsa/crypt/dll/owf.c

438 lines
9.4 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. owf.c
  9. Abstract:
  11. Implentation of the one-way-functions used to implement password hashing.
  13. RtlCalculateLmOwfPassword
  14. RtlCalculateNtOwfPassword
  17. Author:
  19. David Chalmers (Davidc) 10-21-91
  21. Revision History:
  23. --*/
  25. #ifndef KMODE
  26. #define _ADVAPI32_
  27. #endif
  29. #include <nt.h>
  30. #include <ntrtl.h>
  31. #ifndef KMODE
  32. #include <nturtl.h>
  33. #endif
  34. #include <crypt.h>
  35. #include <engine.h>
  36. #ifndef KMODE
  37. #include <windef.h>
  38. #include <winbase.h>
  39. #include <wincrypt.h>
  40. #endif
  42. #ifndef KMODE
  43. //
  44. // Globals used for allowing the replacement of the OWF functions
  45. //
  46. HCRYPTPROV KerbGlobalStrToKeyProvider = 0;
  47. BOOLEAN KerbGlobalAvailableStrToKeyProvider = TRUE;
  49. //+-------------------------------------------------------------------------
  50. //
  51. // Function: CheckForOutsideStringToKey
  52. //
  53. // Synopsis: Call CryptoAPI to query to see if a CSP is registered
  54. // of the type PROV_REPLACE_OWF.
  55. //
  56. // Effects:
  57. //
  58. // Arguments:
  59. //
  60. // Requires:
  61. //
  62. // Returns: STATUS_SUCCESS if it succeeds, otherwise STATUS_UNSUCCESSFUL
  63. //
  64. // Notes:
  65. //
  66. //
  67. //--------------------------------------------------------------------------
  69. BOOLEAN
  70. CheckForOutsideStringToKey()
  71. {
  72. HCRYPTPROV hProv = 0;
  73. BOOLEAN fRet = FALSE;
  75. if (!KerbGlobalAvailableStrToKeyProvider)
  76. {
  77. goto Cleanup;
  78. }
  80. //
  81. // see if there is a replacement provider
  82. if (0 != KerbGlobalStrToKeyProvider)
  83. {
  84. // if there is proceed to use it
  85. fRet = TRUE;
  86. goto Cleanup;
  87. }
  88. else
  89. {
  90. //
  91. // Try to acquire a context to a CSP which is used for OWF replacement
  92. //
  93. if (!CryptAcquireContext(&hProv,
  94. NULL,
  95. NULL,
  96. PROV_REPLACE_OWF,
  97. CRYPT_VERIFYCONTEXT))
  98. {
  99. KerbGlobalAvailableStrToKeyProvider = FALSE;
  100. goto Cleanup;
  101. }
  103. //
  104. // exchange the local and the global in a safe way
  105. //
  106. if (0 != InterlockedCompareExchangePointer(
  107. (PVOID*)&KerbGlobalStrToKeyProvider,
  108. (PVOID)hProv,
  109. 0))
  110. {
  111. CryptReleaseContext(hProv, 0);
  112. }
  113. fRet = TRUE;
  114. }
  115. Cleanup:
  116. return fRet;
  117. }
  119. //+-------------------------------------------------------------------------
  120. //
  121. // Function: UseOutsideStringToKey
  122. //
  123. // Synopsis: Calls the CSP to do an outside StringToKey function
  124. // using the hashing entry points of CryptoAPI.
  125. //
  126. // Effects:
  127. //
  128. // Arguments:
  129. //
  130. // Requires:
  131. //
  132. // Returns:
  133. //
  134. // Notes:
  135. //
  136. //
  137. //--------------------------------------------------------------------------
  139. NTSTATUS
  140. UseOutsideStringToKey(
  141. IN PCHAR pPassword,
  142. IN USHORT cbPassword,
  143. IN ULONG ulFlags,
  144. IN ULONG cbKey,
  145. OUT PUCHAR pbKey
  146. )
  147. {
  148. HCRYPTHASH hHash = 0;
  149. ULONG cb;
  150. NTSTATUS Status = STATUS_UNSUCCESSFUL;
  152. if (!CheckForOutsideStringToKey())
  153. {
  154. // STATUS_UNSUCCESSFUL indicates not to fallback to default OWF calculation
  155. // so we don't want to use that here
  156. Status = NTE_BAD_PROVIDER;
  157. goto Cleanup;
  158. }
  161. //
  162. // create the hash
  163. //
  164. if (!CryptCreateHash(KerbGlobalStrToKeyProvider,
  165. CALG_HASH_REPLACE_OWF,
  166. 0,
  167. 0,
  168. &hHash))
  169. {
  170. goto Cleanup;
  171. }
  173. //
  174. // hash the password
  175. //
  176. if (!CryptHashData(hHash,
  177. pPassword,
  178. (ULONG)cbPassword,
  179. ulFlags))
  180. {
  181. if (NTE_BAD_DATA == GetLastError())
  182. {
  183. Status = NTE_BAD_DATA;
  184. }
  185. goto Cleanup;
  186. }
  188. //
  189. // Get the HP_HASHVAL, this is the key
  190. //
  191. cb = cbKey;
  192. if (!CryptGetHashParam(hHash,
  193. HP_HASHVAL,
  194. pbKey,
  195. &cb,
  196. 0))
  197. {
  198. if (NTE_BAD_LEN == GetLastError())
  199. {
  200. Status = NTE_BAD_DATA;
  201. }
  202. goto Cleanup;
  203. }
  205. Status = STATUS_SUCCESS;
  206. Cleanup:
  207. if (0 != hHash)
  208. {
  209. CryptDestroyHash(hHash);
  210. }
  211. return Status;
  212. }
  213. #endif
  216. NTSTATUS
  217. RtlCalculateLmOwfPassword(
  218. IN PLM_PASSWORD LmPassword,
  219. OUT PLM_OWF_PASSWORD LmOwfPassword
  220. )
  222. /*++
  224. Routine Description:
  226. Takes the passed LmPassword and performs a one-way-function on it.
  227. The current implementation does this by using the password as a key
  228. to encrypt a known block of text.
  230. Arguments:
  232. LmPassword - The password to perform the one-way-function on.
  234. LmOwfPassword - The hashed password is returned here
  236. Return Values:
  238. STATUS_SUCCESS - The function was completed successfully. The hashed
  239. password is in LmOwfPassword.
  241. STATUS_UNSUCCESSFUL - Something failed. The LmOwfPassword is undefined.
  242. --*/
  244. {
  245. NTSTATUS Status = STATUS_UNSUCCESSFUL;
  246. BLOCK_KEY Key[2];
  247. PCHAR pKey;
  249. #ifndef KMODE
  250. Status = UseOutsideStringToKey(
  251. LmPassword,
  252. (USHORT)strlen(LmPassword),
  253. sizeof(LM_OWF_PASSWORD),
  254. CRYPT_OWF_REPL_LM_HASH,
  255. (PUCHAR)&(LmOwfPassword->data[0])
  256. );
  258. //
  259. // the function will return STATUS_UNSUCCESSFUL indicates not to fall
  260. // back to the typical string to key function.
  261. //
  262. if ((NT_SUCCESS(Status)) || (STATUS_UNSUCCESSFUL == Status))
  263. {
  264. return Status;
  265. }
  266. #endif
  268. // Copy the password into our key buffer and zero pad to fill the 2 keys
  270. pKey = (PCHAR)(&Key[0]);
  272. while (*LmPassword && (pKey < (PCHAR)(&Key[2]))) {
  273. *pKey++ = *LmPassword++;
  274. }
  276. while (pKey < (PCHAR)(&Key[2])) {
  277. *pKey++ = 0;
  278. }
  280. // Use the keys to encrypt the standard text
  282. Status = RtlEncryptStdBlock(&Key[0], &(LmOwfPassword->data[0]));
  284. if (!NT_SUCCESS(Status)) {
  285. return(Status);
  286. }
  288. Status = RtlEncryptStdBlock(&Key[1], &(LmOwfPassword->data[1]));
  290. //
  291. // clear our copy of the cleartext password
  292. //
  294. pKey = (PCHAR)(&Key[0]);
  296. while (pKey < (PCHAR)(&Key[2])) {
  297. *pKey++ = 0;
  298. }
  300. RtlSecureZeroMemory( &Key, sizeof(Key) );
  302. return(Status);
  303. }
  308. NTSTATUS
  309. RtlCalculateNtOwfPassword(
  310. IN PNT_PASSWORD NtPassword,
  311. OUT PNT_OWF_PASSWORD NtOwfPassword
  312. )
  314. /*++
  316. Routine Description:
  318. Takes the passed NtPassword and performs a one-way-function on it.
  319. Uses the RSA MD4 function
  321. Arguments:
  323. NtPassword - The password to perform the one-way-function on.
  325. NtOwfPassword - The hashed password is returned here
  327. Return Values:
  329. STATUS_SUCCESS - The function was completed successfully. The hashed
  330. password is in NtOwfPassword.
  331. --*/
  333. {
  334. MD4_CTX MD4_Context;
  335. NTSTATUS Status = STATUS_UNSUCCESSFUL;
  337. #ifndef KMODE
  338. Status = UseOutsideStringToKey(
  339. (PCHAR)NtPassword->Buffer,
  340. (USHORT)NtPassword->Length,
  341. 0,
  342. sizeof(*NtOwfPassword),
  343. (PUCHAR)NtOwfPassword
  344. );
  346. //
  347. // the function will return STATUS_UNSUCCESSFUL indicates not to fall
  348. // back to the typical string to key function.
  349. //
  350. if ((NT_SUCCESS(Status)) || (STATUS_UNSUCCESSFUL == Status))
  351. {
  352. return Status;
  353. }
  354. #endif
  356. MD4Init(&MD4_Context);
  358. MD4Update(&MD4_Context, (PCHAR)NtPassword->Buffer, NtPassword->Length);
  360. MD4Final(&MD4_Context);
  363. // Copy the digest into our return data area
  365. ASSERT(sizeof(*NtOwfPassword) == sizeof(MD4_Context.digest));
  367. RtlCopyMemory((PVOID)NtOwfPassword, (PVOID)MD4_Context.digest,
  368. sizeof(*NtOwfPassword));
  370. RtlSecureZeroMemory( &MD4_Context, sizeof(MD4_Context) );
  372. return(STATUS_SUCCESS);
  373. }
  377. BOOLEAN
  378. RtlEqualLmOwfPassword(
  379. IN PLM_OWF_PASSWORD LmOwfPassword1,
  380. IN PLM_OWF_PASSWORD LmOwfPassword2
  381. )
  383. /*++
  385. Routine Description:
  387. Compares two Lanman One-way-function-passwords
  389. Arguments:
  391. LmOwfPassword1/2 - The one-way-functions to compare
  393. Return Values:
  395. TRUE if the one-way-functions match, otherwise FALSE
  397. --*/
  399. {
  400. return((BOOLEAN)(RtlCompareMemory(LmOwfPassword1,
  401. LmOwfPassword2,
  402. LM_OWF_PASSWORD_LENGTH)
  404. == LM_OWF_PASSWORD_LENGTH));
  405. }
  409. BOOLEAN
  410. RtlEqualNtOwfPassword(
  411. IN PNT_OWF_PASSWORD NtOwfPassword1,
  412. IN PNT_OWF_PASSWORD NtOwfPassword2
  413. )
  415. /*++
  417. Routine Description:
  419. Compares two NT One-way-function-passwords
  421. Arguments:
  423. NtOwfPassword1/2 - The one-way-functions to compare
  425. Return Values:
  427. TRUE if the one-way-functions match, otherwise FALSE
  429. --*/
  431. {
  432. return((BOOLEAN)(RtlCompareMemory(NtOwfPassword1,
  433. NtOwfPassword2,
  434. NT_OWF_PASSWORD_LENGTH)
  436. == NT_OWF_PASSWORD_LENGTH));
  437. }