archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/net/rras/ras/ppp/raschap/ntauth.c

999 lines
32 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /* Copyright (c) 1993, Microsoft Corporation, all rights reserved
  2. **
  3. ** ntauth.c
  4. ** Remote Access PPP Challenge Handshake Authentication Protocol
  5. ** NT Authentication routines
  6. **
  7. ** These routines are specific to the NT platform.
  8. **
  9. ** 11/05/93 Steve Cobb (from MikeSa's AMB authentication code)
  10. */
  12. #include <nt.h>
  13. #include <ntrtl.h>
  14. #include <nturtl.h>
  15. #include <ntlsa.h>
  16. #include <ntmsv1_0.h>
  18. #include <crypt.h>
  19. #include <windows.h>
  20. #include <lmcons.h>
  21. #include <lmapibuf.h>
  22. #include <lmaccess.h>
  23. #include <raserror.h>
  24. #include <string.h>
  25. #include <stdlib.h>
  27. #include <rasman.h>
  28. #include <rasppp.h>
  29. #include <pppcp.h>
  30. #include <rtutils.h>
  31. #include <rasauth.h>
  32. #define INCL_CLSA
  33. #define INCL_RASAUTHATTRIBUTES
  34. #define INCL_HOSTWIRE
  35. #define INCL_MISC
  36. #include <ppputil.h>
  37. #include "sha.h"
  38. #include "raschap.h"
  40. //**
  41. //
  42. // Call: MakeChangePasswordV1RequestAttributes
  43. //
  44. // Returns: NO_ERROR - Success
  45. // Non-zero returns - Failure
  46. //
  47. // Description:
  48. //
  49. DWORD
  50. MakeChangePasswordV1RequestAttributes(
  51. IN CHAPWB* pwb,
  52. IN BYTE bId,
  53. IN PCHAR pchIdentity,
  54. IN PBYTE Challenge,
  55. IN PENCRYPTED_LM_OWF_PASSWORD pEncryptedLmOwfOldPassword,
  56. IN PENCRYPTED_LM_OWF_PASSWORD pEncryptedLmOwfNewPassword,
  57. IN PENCRYPTED_NT_OWF_PASSWORD pEncryptedNtOwfOldPassword,
  58. IN PENCRYPTED_NT_OWF_PASSWORD pEncryptedNtOwfNewPassword,
  59. IN WORD LenPassword,
  60. IN WORD wFlags,
  61. IN DWORD cbChallenge,
  62. IN BYTE * pbChallenge
  63. )
  64. {
  65. DWORD dwRetCode;
  66. BYTE MsChapChangePw1[72+6];
  67. BYTE MsChapChallenge[MAXCHALLENGELEN+6];
  69. if ( pwb->pUserAttributes != NULL )
  70. {
  71. RasAuthAttributeDestroy( pwb->pUserAttributes );
  73. pwb->pUserAttributes = NULL;
  74. }
  76. //
  77. // Allocate the appropriate amount
  78. //
  80. if ( ( pwb->pUserAttributes = RasAuthAttributeCreate( 3 ) ) == NULL )
  81. {
  82. return( GetLastError() );
  83. }
  85. dwRetCode = RasAuthAttributeInsert( 0,
  86. pwb->pUserAttributes,
  87. raatUserName,
  88. FALSE,
  89. strlen( pchIdentity ),
  90. pchIdentity );
  92. if ( dwRetCode != NO_ERROR )
  93. {
  94. RasAuthAttributeDestroy( pwb->pUserAttributes );
  96. pwb->pUserAttributes = NULL;
  98. return( dwRetCode );
  99. }
  101. //
  102. // Build vendor specific attribute for MS-CHAP challenge
  103. //
  105. HostToWireFormat32( 311, MsChapChallenge ); // Vendor Id
  106. MsChapChallenge[4] = 11; // Vendor Type
  107. MsChapChallenge[5] = 2+(BYTE)cbChallenge; // Vendor Length
  109. CopyMemory( MsChapChallenge+6, pbChallenge, cbChallenge );
  111. dwRetCode = RasAuthAttributeInsert( 1,
  112. pwb->pUserAttributes,
  113. raatVendorSpecific,
  114. FALSE,
  115. cbChallenge+6,
  116. MsChapChallenge);
  118. if ( dwRetCode != NO_ERROR )
  119. {
  120. RasAuthAttributeDestroy( pwb->pUserAttributes );
  122. pwb->pUserAttributes = NULL;
  124. return( dwRetCode );
  125. }
  127. //
  128. // Insert change password attribute
  129. //
  131. HostToWireFormat32( 311, MsChapChangePw1 ); // Vendor Id
  132. MsChapChangePw1[4] = 3; // Vendor Type
  133. MsChapChangePw1[5] = 72; // Vendor Length
  134. MsChapChangePw1[6] = 5; // Code
  135. MsChapChangePw1[7] = bId; // Identifier
  137. CopyMemory( MsChapChangePw1+8,
  138. pEncryptedLmOwfOldPassword,
  139. 16 );
  141. CopyMemory( MsChapChangePw1+8+16,
  142. pEncryptedLmOwfNewPassword,
  143. 16 );
  145. CopyMemory( MsChapChangePw1+8+16+16,
  146. pEncryptedNtOwfOldPassword,
  147. 16 );
  149. CopyMemory( MsChapChangePw1+8+16+16+16,
  150. pEncryptedNtOwfNewPassword,
  151. 16 );
  153. HostToWireFormat16( LenPassword, MsChapChangePw1+8+16+16+16+16 );
  155. HostToWireFormat16( wFlags, MsChapChangePw1+8+16+16+16+16+2 );
  157. //
  158. // Build vendor specific attribute for MS-CHAP change password 1
  159. //
  161. dwRetCode = RasAuthAttributeInsert( 2,
  162. pwb->pUserAttributes,
  163. raatVendorSpecific,
  164. FALSE,
  165. 72+4,
  166. MsChapChangePw1);
  168. if ( dwRetCode != NO_ERROR )
  169. {
  170. RasAuthAttributeDestroy( pwb->pUserAttributes );
  172. pwb->pUserAttributes = NULL;
  174. return( dwRetCode );
  175. }
  177. return( dwRetCode );
  178. }
  180. //**
  181. //
  182. // Call: MakeChangePasswordV2RequestAttributes
  183. //
  184. // Returns: NO_ERROR - Success
  185. // Non-zero returns - Failure
  186. //
  187. // Description:
  188. //
  189. DWORD
  190. MakeChangePasswordV2RequestAttributes(
  191. IN CHAPWB* pwb,
  192. IN BYTE bId,
  193. IN CHAR* pchIdentity,
  194. IN SAMPR_ENCRYPTED_USER_PASSWORD* pNewEncryptedWithOldNtOwf,
  195. IN ENCRYPTED_NT_OWF_PASSWORD* pOldNtOwfEncryptedWithNewNtOwf,
  196. IN SAMPR_ENCRYPTED_USER_PASSWORD* pNewEncryptedWithOldLmOwf,
  197. IN ENCRYPTED_NT_OWF_PASSWORD* pOldLmOwfEncryptedWithNewNtOwf,
  198. IN DWORD cbChallenge,
  199. IN BYTE * pbChallenge,
  200. IN BYTE * pbResponse,
  201. IN WORD wFlags
  202. )
  203. {
  204. DWORD dwRetCode;
  205. BYTE MsChapChallenge[MAXCHALLENGELEN+6];
  206. BYTE MsChapChangePw2[86+4];
  207. BYTE NtPassword1[250+4];
  208. BYTE NtPassword2[250+4];
  209. BYTE NtPassword3[34+4];
  210. BYTE LmPassword1[250+4];
  211. BYTE LmPassword2[250+4];
  212. BYTE LmPassword3[34+4];
  214. if ( pwb->pUserAttributes != NULL )
  215. {
  216. RasAuthAttributeDestroy( pwb->pUserAttributes );
  218. pwb->pUserAttributes = NULL;
  219. }
  221. //
  222. // Allocate the appropriate amount
  223. //
  225. pwb->pUserAttributes = RasAuthAttributeCreate( 9 );
  227. if ( pwb->pUserAttributes == NULL )
  228. {
  229. return( GetLastError() );
  230. }
  232. dwRetCode = RasAuthAttributeInsert( 0,
  233. pwb->pUserAttributes,
  234. raatUserName,
  235. FALSE,
  236. strlen( pchIdentity ),
  237. pchIdentity );
  239. if ( dwRetCode != NO_ERROR )
  240. {
  241. RasAuthAttributeDestroy( pwb->pUserAttributes );
  243. pwb->pUserAttributes = NULL;
  245. return( dwRetCode );
  246. }
  248. //
  249. // Build vendor specific attribute for MS-CHAP challenge
  250. //
  252. HostToWireFormat32( 311, MsChapChallenge ); // Vendor Id
  253. MsChapChallenge[4] = 11; // Vendor Type
  254. MsChapChallenge[5] = 2+(BYTE)cbChallenge; // Vendor Length
  256. CopyMemory( MsChapChallenge+6, pbChallenge, cbChallenge );
  258. dwRetCode = RasAuthAttributeInsert( 1,
  259. pwb->pUserAttributes,
  260. raatVendorSpecific,
  261. FALSE,
  262. cbChallenge+6,
  263. MsChapChallenge);
  265. if ( dwRetCode != NO_ERROR )
  266. {
  267. RasAuthAttributeDestroy( pwb->pUserAttributes );
  269. pwb->pUserAttributes = NULL;
  271. return( dwRetCode );
  272. }
  274. //
  275. // Insert change password attribute
  276. //
  278. HostToWireFormat32( 311, MsChapChangePw2 ); // Vendor Id
  279. MsChapChangePw2[4] = 4; // Vendor Type
  280. MsChapChangePw2[5] = 86; // Vendor Length
  281. MsChapChangePw2[6] = 6; // Code
  282. MsChapChangePw2[7] = bId; // Identifier
  284. CopyMemory( MsChapChangePw2+8,
  285. pOldNtOwfEncryptedWithNewNtOwf,
  286. 16 );
  288. CopyMemory( MsChapChangePw2+8+16,
  289. pOldLmOwfEncryptedWithNewNtOwf,
  290. 16 );
  292. CopyMemory( MsChapChangePw2+8+16+16, pbResponse, 24+24 );
  294. HostToWireFormat16( (WORD)wFlags, MsChapChangePw2+8+16+16+24+24 );
  296. //
  297. // Build vendor specific attribute for MS-CHAP change password 2
  298. //
  300. dwRetCode = RasAuthAttributeInsert( 2,
  301. pwb->pUserAttributes,
  302. raatVendorSpecific,
  303. FALSE,
  304. 86+4,
  305. MsChapChangePw2);
  307. if ( dwRetCode != NO_ERROR )
  308. {
  309. RasAuthAttributeDestroy( pwb->pUserAttributes );
  311. pwb->pUserAttributes = NULL;
  313. return( dwRetCode );
  314. }
  316. //
  317. // Insert the new password attributes
  318. //
  320. HostToWireFormat32( 311, NtPassword1 ); // Vendor Id
  321. NtPassword1[4] = 6; // Vendor Type
  322. NtPassword1[5] = 249; // Vendor Length
  323. NtPassword1[6] = 6; // Code
  324. NtPassword1[7] = bId; // Identifier
  325. HostToWireFormat16( (WORD)1, NtPassword1+8 ); // Sequence number
  327. CopyMemory( NtPassword1+10, (PBYTE)pNewEncryptedWithOldNtOwf, 243 );
  329. dwRetCode = RasAuthAttributeInsert( 3,
  330. pwb->pUserAttributes,
  331. raatVendorSpecific,
  332. FALSE,
  333. 249+4,
  334. NtPassword1);
  336. if ( dwRetCode != NO_ERROR )
  337. {
  338. RasAuthAttributeDestroy( pwb->pUserAttributes );
  340. pwb->pUserAttributes = NULL;
  342. return( dwRetCode );
  343. }
  345. HostToWireFormat32( 311, NtPassword2 ); // Vendor Id
  346. NtPassword2[4] = 6; // Vendor Type
  347. NtPassword2[5] = 249; // Vendor Length
  348. NtPassword2[6] = 6; // Code
  349. NtPassword2[7] = bId; // Identifier
  350. HostToWireFormat16( (WORD)2, NtPassword2+8 ); // Sequence number
  352. CopyMemory( NtPassword2+10,
  353. ((PBYTE)pNewEncryptedWithOldNtOwf)+243,
  354. 243 );
  356. dwRetCode = RasAuthAttributeInsert( 4,
  357. pwb->pUserAttributes,
  358. raatVendorSpecific,
  359. FALSE,
  360. 249+4,
  361. NtPassword2 );
  363. if ( dwRetCode != NO_ERROR )
  364. {
  365. RasAuthAttributeDestroy( pwb->pUserAttributes );
  367. pwb->pUserAttributes = NULL;
  369. return( dwRetCode );
  370. }
  372. HostToWireFormat32( 311, NtPassword3 ); // Vendor Id
  373. NtPassword3[4] = 6; // Vendor Type
  374. NtPassword3[5] = 36; // Vendor Length
  375. NtPassword3[6] = 6; // Code
  376. NtPassword3[7] = bId; // Identifier
  377. HostToWireFormat16( (WORD)3, NtPassword3+8 ); // Sequence number
  379. CopyMemory( NtPassword3+10,
  380. ((PBYTE)pNewEncryptedWithOldNtOwf)+486,
  381. 30 );
  383. dwRetCode = RasAuthAttributeInsert( 5,
  384. pwb->pUserAttributes,
  385. raatVendorSpecific,
  386. FALSE,
  387. 36+4,
  388. NtPassword3 );
  391. if ( dwRetCode != NO_ERROR )
  392. {
  393. RasAuthAttributeDestroy( pwb->pUserAttributes );
  395. pwb->pUserAttributes = NULL;
  397. return( dwRetCode );
  398. }
  400. HostToWireFormat32( 311, LmPassword1 ); // Vendor Id
  401. LmPassword1[4] = 5; // Vendor Type
  402. LmPassword1[5] = 249; // Vendor Length
  403. LmPassword1[6] = 6; // Code
  404. LmPassword1[7] = bId; // Identifier
  405. HostToWireFormat16( (WORD)1, LmPassword1+8 ); // Sequence number
  407. CopyMemory( LmPassword1+10, pNewEncryptedWithOldLmOwf, 243 );
  409. dwRetCode = RasAuthAttributeInsert( 6,
  410. pwb->pUserAttributes,
  411. raatVendorSpecific,
  412. FALSE,
  413. 249+4,
  414. LmPassword1);
  416. if ( dwRetCode != NO_ERROR )
  417. {
  418. RasAuthAttributeDestroy( pwb->pUserAttributes );
  420. pwb->pUserAttributes = NULL;
  422. return( dwRetCode );
  423. }
  425. HostToWireFormat32( 311, LmPassword2 ); // Vendor Id
  426. LmPassword2[4] = 5; // Vendor Type
  427. LmPassword2[5] = 249; // Vendor Length
  428. LmPassword2[6] = 6; // Code
  429. LmPassword2[7] = bId; // Identifier
  430. HostToWireFormat16( (WORD)2, LmPassword2+8 ); // Sequence number
  432. CopyMemory( LmPassword2+10,
  433. ((PBYTE)pNewEncryptedWithOldLmOwf)+243,
  434. 243 );
  436. dwRetCode = RasAuthAttributeInsert( 7,
  437. pwb->pUserAttributes,
  438. raatVendorSpecific,
  439. FALSE,
  440. 249+4,
  441. LmPassword2 );
  443. if ( dwRetCode != NO_ERROR )
  444. {
  445. RasAuthAttributeDestroy( pwb->pUserAttributes );
  447. pwb->pUserAttributes = NULL;
  449. return( dwRetCode );
  450. }
  452. HostToWireFormat32( 311, LmPassword3 ); // Vendor Id
  453. LmPassword3[4] = 5; // Vendor Type
  454. LmPassword3[5] = 36; // Vendor Length
  455. LmPassword3[6] = 6; // Code
  456. LmPassword3[7] = bId; // Identifier
  457. HostToWireFormat16( (WORD)3, LmPassword3+8 ); // Sequence number
  459. CopyMemory( LmPassword3+10,
  460. ((PBYTE)pNewEncryptedWithOldLmOwf)+486,
  461. 30 );
  463. dwRetCode = RasAuthAttributeInsert( 8,
  464. pwb->pUserAttributes,
  465. raatVendorSpecific,
  466. FALSE,
  467. 36+4,
  468. LmPassword3 );
  470. if ( dwRetCode != NO_ERROR )
  471. {
  472. RasAuthAttributeDestroy( pwb->pUserAttributes );
  474. pwb->pUserAttributes = NULL;
  476. return( dwRetCode );
  477. }
  479. return( dwRetCode );
  480. }
  482. //**
  483. //
  484. // Call: MakeChangePasswordV3RequestAttributes
  485. //
  486. // Returns: NO_ERROR - Success
  487. // Non-zero returns - Failure
  488. //
  489. // Description:
  490. //
  491. DWORD
  492. MakeChangePasswordV3RequestAttributes(
  493. IN CHAPWB* pwb,
  494. IN BYTE bId,
  495. IN CHAR* pchIdentity,
  496. IN CHANGEPW3* pchangepw3,
  497. IN DWORD cbChallenge,
  498. IN BYTE * pbChallenge
  499. )
  500. {
  501. DWORD dwRetCode;
  502. BYTE MsChapChallenge[MAXCHALLENGELEN+6];
  503. BYTE MsChapChangePw3[70+4];
  504. BYTE NtPassword1[250+4];
  505. BYTE NtPassword2[250+4];
  506. BYTE NtPassword3[34+4];
  508. if ( pwb->pUserAttributes != NULL )
  509. {
  510. RasAuthAttributeDestroy( pwb->pUserAttributes );
  512. pwb->pUserAttributes = NULL;
  513. }
  515. //
  516. // Allocate the appropriate amount
  517. //
  519. pwb->pUserAttributes = RasAuthAttributeCreate( 6 );
  521. if ( pwb->pUserAttributes == NULL )
  522. {
  523. return( GetLastError() );
  524. }
  526. dwRetCode = RasAuthAttributeInsert( 0,
  527. pwb->pUserAttributes,
  528. raatUserName,
  529. FALSE,
  530. strlen( pchIdentity ),
  531. pchIdentity );
  533. if ( dwRetCode != NO_ERROR )
  534. {
  535. RasAuthAttributeDestroy( pwb->pUserAttributes );
  537. pwb->pUserAttributes = NULL;
  539. return( dwRetCode );
  540. }
  542. //
  543. // Build vendor specific attribute for MS-CHAP challenge
  544. //
  546. HostToWireFormat32( 311, MsChapChallenge ); // Vendor Id
  547. MsChapChallenge[4] = 11; // Vendor Type
  548. MsChapChallenge[5] = 2+(BYTE)cbChallenge; // Vendor Length
  550. CopyMemory( MsChapChallenge+6, pbChallenge, cbChallenge );
  552. dwRetCode = RasAuthAttributeInsert( 1,
  553. pwb->pUserAttributes,
  554. raatVendorSpecific,
  555. FALSE,
  556. cbChallenge+6,
  557. MsChapChallenge);
  559. if ( dwRetCode != NO_ERROR )
  560. {
  561. RasAuthAttributeDestroy( pwb->pUserAttributes );
  563. pwb->pUserAttributes = NULL;
  565. return( dwRetCode );
  566. }
  568. //
  569. // Insert change password attribute
  570. //
  572. HostToWireFormat32( 311, MsChapChangePw3 ); // Vendor Id
  573. MsChapChangePw3[4] = 27; // Vendor Type
  574. MsChapChangePw3[5] = 70; // Vendor Length
  575. MsChapChangePw3[6] = 7; // Code
  576. MsChapChangePw3[7] = bId; // Identifier
  578. CopyMemory( MsChapChangePw3+8, pchangepw3->abEncryptedHash, 16 );
  579. CopyMemory( MsChapChangePw3+8+16, pchangepw3->abPeerChallenge, 24 );
  580. CopyMemory( MsChapChangePw3+8+16+24, pchangepw3->abNTResponse, 24 );
  582. HostToWireFormat16( (WORD)0, MsChapChangePw3+8+16+24+24 );
  584. //
  585. // Build vendor specific attribute for MS-CHAP2-PW
  586. //
  588. dwRetCode = RasAuthAttributeInsert( 2,
  589. pwb->pUserAttributes,
  590. raatVendorSpecific,
  591. FALSE,
  592. 70+4,
  593. MsChapChangePw3);
  595. if ( dwRetCode != NO_ERROR )
  596. {
  597. RasAuthAttributeDestroy( pwb->pUserAttributes );
  599. pwb->pUserAttributes = NULL;
  601. return( dwRetCode );
  602. }
  604. //
  605. // Insert the new password attributes
  606. //
  608. HostToWireFormat32( 311, NtPassword1 ); // Vendor Id
  609. NtPassword1[4] = 6; // Vendor Type
  610. NtPassword1[5] = 249; // Vendor Length
  611. NtPassword1[6] = 6; // Code
  612. NtPassword1[7] = bId; // Identifier
  613. HostToWireFormat16( (WORD)1, NtPassword1+8 ); // Sequence number
  615. CopyMemory( NtPassword1+10, pchangepw3->abEncryptedPassword, 243 );
  617. dwRetCode = RasAuthAttributeInsert( 3,
  618. pwb->pUserAttributes,
  619. raatVendorSpecific,
  620. FALSE,
  621. 249+4,
  622. NtPassword1);
  624. if ( dwRetCode != NO_ERROR )
  625. {
  626. RasAuthAttributeDestroy( pwb->pUserAttributes );
  628. pwb->pUserAttributes = NULL;
  630. return( dwRetCode );
  631. }
  633. HostToWireFormat32( 311, NtPassword2 ); // Vendor Id
  634. NtPassword2[4] = 6; // Vendor Type
  635. NtPassword2[5] = 249; // Vendor Length
  636. NtPassword2[6] = 6; // Code
  637. NtPassword2[7] = bId; // Identifier
  638. HostToWireFormat16( (WORD)2, NtPassword2+8 ); // Sequence number
  640. CopyMemory( NtPassword2+10,
  641. pchangepw3->abEncryptedPassword+243,
  642. 243 );
  644. dwRetCode = RasAuthAttributeInsert( 4,
  645. pwb->pUserAttributes,
  646. raatVendorSpecific,
  647. FALSE,
  648. 249+4,
  649. NtPassword2 );
  651. if ( dwRetCode != NO_ERROR )
  652. {
  653. RasAuthAttributeDestroy( pwb->pUserAttributes );
  655. pwb->pUserAttributes = NULL;
  657. return( dwRetCode );
  658. }
  660. HostToWireFormat32( 311, NtPassword3 ); // Vendor Id
  661. NtPassword3[4] = 6; // Vendor Type
  662. NtPassword3[5] = 36; // Vendor Length
  663. NtPassword3[6] = 6; // Code
  664. NtPassword3[7] = bId; // Identifier
  665. HostToWireFormat16( (WORD)3, NtPassword3+8 ); // Sequence number
  667. CopyMemory( NtPassword3+10,
  668. pchangepw3->abEncryptedPassword+486,
  669. 30 );
  671. dwRetCode = RasAuthAttributeInsert( 5,
  672. pwb->pUserAttributes,
  673. raatVendorSpecific,
  674. FALSE,
  675. 36+4,
  676. NtPassword3 );
  679. if ( dwRetCode != NO_ERROR )
  680. {
  681. RasAuthAttributeDestroy( pwb->pUserAttributes );
  683. pwb->pUserAttributes = NULL;
  685. return( dwRetCode );
  686. }
  688. return( dwRetCode );
  689. }
  691. //**
  692. //
  693. // Call: MakeAuthenticationRequestAttributes
  694. //
  695. // Returns: NO_ERROR - Success
  696. // Non-zero returns - Failure
  697. //
  698. // Description:
  699. //
  700. DWORD
  701. MakeAuthenticationRequestAttributes(
  702. IN CHAPWB * pwb,
  703. IN BOOL fMSChap,
  704. IN BYTE bAlgorithm,
  705. IN CHAR* szUserName,
  706. IN BYTE* pbChallenge,
  707. IN DWORD cbChallenge,
  708. IN BYTE* pbResponse,
  709. IN DWORD cbResponse,
  710. IN BYTE bId
  711. )
  712. {
  713. DWORD dwRetCode;
  714. BYTE abResponse[MD5RESPONSELEN+1];
  716. if ( pwb->pUserAttributes != NULL )
  717. {
  718. RasAuthAttributeDestroy( pwb->pUserAttributes );
  720. pwb->pUserAttributes = NULL;
  721. }
  723. //
  724. // Allocate the appropriate amount
  725. //
  727. if ( ( pwb->pUserAttributes = RasAuthAttributeCreate( 3 ) ) == NULL )
  728. {
  729. return( GetLastError() );
  730. }
  732. dwRetCode = RasAuthAttributeInsert( 0,
  733. pwb->pUserAttributes,
  734. raatUserName,
  735. FALSE,
  736. strlen( szUserName ),
  737. szUserName );
  739. if ( dwRetCode != NO_ERROR )
  740. {
  741. RasAuthAttributeDestroy( pwb->pUserAttributes );
  743. pwb->pUserAttributes = NULL;
  745. return( dwRetCode );
  746. }
  748. if ( fMSChap )
  749. {
  750. BYTE MsChapChallenge[MAXCHALLENGELEN+6];
  752. HostToWireFormat32( 311, MsChapChallenge ); // Vendor Id
  753. MsChapChallenge[4] = 11; // Vendor Type
  754. MsChapChallenge[5] = 2+(BYTE)cbChallenge; // Vendor Length
  756. CopyMemory( MsChapChallenge+6, pbChallenge, cbChallenge );
  758. //
  759. // Build vendor specific attribute for MS-CHAP challenge
  760. //
  762. dwRetCode = RasAuthAttributeInsert( 1,
  763. pwb->pUserAttributes,
  764. raatVendorSpecific,
  765. FALSE,
  766. cbChallenge+6,
  767. MsChapChallenge );
  768. }
  769. else
  770. {
  771. dwRetCode = RasAuthAttributeInsert( 1,
  772. pwb->pUserAttributes,
  773. raatMD5CHAPChallenge,
  774. FALSE,
  775. cbChallenge,
  776. pbChallenge );
  777. }
  779. if ( dwRetCode != NO_ERROR )
  780. {
  781. RasAuthAttributeDestroy( pwb->pUserAttributes );
  783. pwb->pUserAttributes = NULL;
  785. return( dwRetCode );
  786. }
  788. if ( fMSChap && ( bAlgorithm == PPP_CHAP_DIGEST_MSEXT ) )
  789. {
  790. BYTE MsChapResponse[56];
  792. HostToWireFormat32( 311, MsChapResponse ); // Vendor Id
  793. MsChapResponse[4] = 1; // Vendor Type
  794. MsChapResponse[5] = (BYTE)52; // Vendor Length
  795. MsChapResponse[6] = bId; // Ident
  796. MsChapResponse[7] = pbResponse[cbResponse-1]; // Flags
  798. CopyMemory( MsChapResponse+8, pbResponse, cbResponse-1 );
  800. dwRetCode = RasAuthAttributeInsert( 2,
  801. pwb->pUserAttributes,
  802. raatVendorSpecific,
  803. FALSE,
  804. 56,
  805. MsChapResponse);
  806. }
  807. else if ( fMSChap && ( bAlgorithm == PPP_CHAP_DIGEST_MSEXT_NEW ) )
  808. {
  809. BYTE MsChap2Response[56];
  811. HostToWireFormat32( 311, MsChap2Response ); // Vendor Id
  812. MsChap2Response[4] = 25; // Vendor Type
  813. MsChap2Response[5] = (BYTE)52; // Vendor Length
  814. MsChap2Response[6] = bId; // Ident
  815. MsChap2Response[7] = 0; // Flags
  817. CopyMemory( MsChap2Response+8, pbResponse, cbResponse-1 );
  819. dwRetCode = RasAuthAttributeInsert( 2,
  820. pwb->pUserAttributes,
  821. raatVendorSpecific,
  822. FALSE,
  823. 56,
  824. MsChap2Response);
  825. }
  826. else
  827. {
  828. abResponse[0] = bId;
  830. CopyMemory( abResponse+1, pbResponse, cbResponse );
  832. dwRetCode = RasAuthAttributeInsert( 2,
  833. pwb->pUserAttributes,
  834. raatMD5CHAPPassword,
  835. FALSE,
  836. cbResponse+1,
  837. abResponse );
  838. }
  840. if ( dwRetCode != NO_ERROR )
  841. {
  842. RasAuthAttributeDestroy( pwb->pUserAttributes );
  844. pwb->pUserAttributes = NULL;
  846. return( dwRetCode );
  847. }
  849. return( dwRetCode );
  850. }
  852. //**
  853. //
  854. // Call: GetErrorCodeFromAttributes
  855. //
  856. // Returns: NO_ERROR - Success
  857. // Non-zero returns - Failure
  858. //
  859. // Description: Will extract the error code returned from the authentication
  860. // provider and insert it into the reponse sent to the client
  861. //
  862. DWORD
  863. GetErrorCodeFromAttributes(
  864. IN CHAPWB* pwb
  865. )
  866. {
  867. RAS_AUTH_ATTRIBUTE * pAttribute;
  868. RAS_AUTH_ATTRIBUTE * pAttributes = pwb->pAttributesFromAuthenticator;
  869. DWORD dwRetCode = NO_ERROR;
  871. //
  872. // Search for MS-CHAP Error attributes
  873. //
  875. pAttribute = RasAuthAttributeGetVendorSpecific( 311, 2, pAttributes );
  877. if ( pAttribute != NULL )
  878. {
  879. CHAR chErrorBuffer[150];
  880. CHAR* pszValue;
  881. DWORD cbError = (DWORD)*(((PBYTE)(pAttribute->Value))+5);
  883. //
  884. // Leave one byte for NULL terminator
  885. //
  887. if ( cbError > sizeof( chErrorBuffer ) - 1 )
  888. {
  889. cbError = sizeof( chErrorBuffer ) - 1;
  890. }
  892. ZeroMemory( chErrorBuffer, sizeof( chErrorBuffer ) );
  894. //
  895. // We do -2 below to account for the size of the vendor
  896. // attribute itself and the id.
  897. //
  898. CopyMemory( chErrorBuffer,
  899. (CHAR *)((PBYTE)(pAttribute->Value) + 7),
  900. cbError - 2 );
  902. pszValue = strstr( chErrorBuffer, "E=" );
  904. if ( pszValue )
  905. {
  906. pwb->result.dwError = (DWORD )atol( pszValue + 2 );
  907. }
  909. pszValue = strstr( chErrorBuffer, "R=1" );
  911. if ( pszValue )
  912. {
  913. pwb->dwTriesLeft = 1;
  914. }
  915. }
  916. else
  917. {
  918. //
  919. // If we did not get an error code attribute back then assume an
  920. // access denied
  921. //
  923. TRACE("No error code attribute returned, assuming access denied");
  925. pwb->result.dwError = ERROR_AUTHENTICATION_FAILURE;
  926. }
  928. return( dwRetCode );
  929. }
  931. //**
  932. //
  933. // Call: GetEncryptedPasswordsForChangePassword2
  934. //
  935. // Returns: NO_ERROR - Success
  936. // Non-zero returns - Failure
  937. //
  938. // Description:
  939. //
  940. DWORD
  941. GetEncryptedPasswordsForChangePassword2(
  942. IN CHAR* pszOldPassword,
  943. IN CHAR* pszNewPassword,
  944. OUT SAMPR_ENCRYPTED_USER_PASSWORD* pNewEncryptedWithOldNtOwf,
  945. OUT ENCRYPTED_NT_OWF_PASSWORD* pOldNtOwfEncryptedWithNewNtOwf,
  946. OUT SAMPR_ENCRYPTED_USER_PASSWORD* pNewEncryptedWithOldLmOwf,
  947. OUT ENCRYPTED_NT_OWF_PASSWORD* pOldLmOwfEncryptedWithNewNtOwf,
  948. OUT BOOLEAN* pfLmPresent )
  949. {
  950. DWORD dwErr;
  951. BOOL fLmPresent;
  952. UNICODE_STRING uniOldPassword;
  953. UNICODE_STRING uniNewPassword;
  955. TRACE("GetEncryptedPasswordsForChangePassword2...");
  957. uniOldPassword.Buffer = NULL;
  958. uniNewPassword.Buffer = NULL;
  960. if (!RtlCreateUnicodeStringFromAsciiz(
  961. &uniOldPassword, pszOldPassword )
  962. || !RtlCreateUnicodeStringFromAsciiz(
  963. &uniNewPassword, pszNewPassword ))
  964. {
  965. dwErr = ERROR_NOT_ENOUGH_MEMORY;
  966. }
  967. else
  968. {
  969. dwErr =
  970. SamiEncryptPasswords(
  971. &uniOldPassword,
  972. &uniNewPassword,
  973. pNewEncryptedWithOldNtOwf,
  974. pOldNtOwfEncryptedWithNewNtOwf,
  975. pfLmPresent,
  976. pNewEncryptedWithOldLmOwf,
  977. pOldLmOwfEncryptedWithNewNtOwf );
  978. }
  980. /* Erase password buffers.
  981. */
  982. if (uniOldPassword.Buffer)
  983. {
  984. ZeroMemory( uniOldPassword.Buffer,
  985. lstrlenW( uniOldPassword.Buffer ) * sizeof( WCHAR ) );
  986. }
  988. if (uniNewPassword.Buffer)
  989. {
  990. ZeroMemory( uniNewPassword.Buffer,
  991. lstrlenW( uniNewPassword.Buffer ) * sizeof( WCHAR ) );
  992. }
  994. RtlFreeUnicodeString( &uniOldPassword );
  995. RtlFreeUnicodeString( &uniNewPassword );
  997. TRACE1("GetEncryptedPasswordsForChangePassword2 done(%d)",dwErr);
  998. return dwErr;
  999. }