首頁 探索 說明
登入
cturan
/
3proxy
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: a060376f1e
分支列表 標籤列表
3proxy
/
src
/
ntlm.c

ntlm.c 2.3 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889 
  1. /*
    2. 

  2.    3APA3A simpliest proxy server
    3. 

  3.    (c) 2002-2008 by ZARAZA <3APA3A@security.nnov.ru>
    4. 

  4. 

  5.    please read License Agreement
    6. 

  6. 

  7.    $Id: ntlm.c,v 1.9 2008/01/08 21:46:38 vlad Exp $
    8. 

  8. */
    9. 

  9. 

  10. #include "proxy.h"
    11. 

  11. struct ntlmchal {
    12. 

  12. 	unsigned char sig[8];
    13. 

  13. 	unsigned char messtype[4];
    14. 

  14. 	unsigned char dom_len[2];
    15. 

  15. 	unsigned char dom_max_len[2];
    16. 

  16. 	unsigned char dom_offset[4];
    17. 

  17. 	unsigned char flags[4];
    18. 

  18. 	unsigned char challenge[8];
    19. 

  19. 	unsigned char reserved[8];
    20. 

  20. 	unsigned char addr_len[2];
    21. 

  21. 	unsigned char addr_max_len[2];
    22. 

  22. 	unsigned char addr_offset[4];
    23. 

  23. 	unsigned char data[1];
    24. 

  24. };
    25. 

  25. 

  26. struct ntlmreq {
    27. 

  27. 	unsigned char sig[8];
    28. 

  28. 	unsigned char messtype[4];
    29. 

  29. 	unsigned char flags[4];
    30. 

  30. 	unsigned char dom_len[2];
    31. 

  31. 	unsigned char dom_max_len[2];
    32. 

  32. 	unsigned char dom_offset[4];
    33. 

  33. 	unsigned char pad1[2];
    34. 

  34. 	unsigned char host_len[2];
    35. 

  35. 	unsigned char host_max_len[2];
    36. 

  36. 	unsigned char host_offset[4];
    37. 

  37. 	unsigned char pad2[2];
    38. 

  38. 	unsigned char data[1];
    39. 

  39. };
    40. 

  40. 

  41. int text2unicode(const char * text, char * buf, int buflen){
    42. 

  42. 	int count = 0;
    43. 

  43. 	buflen = ((buflen>>1)<<1);
    44. 

  44. 	if(!text || !buflen) return 0;
    45. 

  45. 	do {
    46. 

  46. 		buf[count++] = toupper(*text++);
    47. 

  47. 		buf[count++] = '\0';
    48. 

  48. 	} while (*text && count < buflen);
    49. 

  49. 	return count;
    50. 

  50. }
    51. 

  51. 

  52. void unicode2text(const char *unicode, char * buf, int len){
    53. 

  53. 	int i;
    54. 

  54. 	if(!unicode || !len) return;
    55. 

  55. 	for(i=0; i<len; i++){
    56. 

  56. 		buf[i] = unicode[(i<<1)];
    57. 

  57. 	}
    58. 

  58. 	buf[i] = 0;
    59. 

  59. }
    60. 

  60. 

  61. void genchallenge(struct clientparam *param, char * challenge, char *buf){
    62. 

  62. 	struct ntlmchal *chal;
    63. 

  63. 	char tmpbuf[1024];
    64. 

  64. 	char hostname[128];
    65. 

  65. 	int len, i;
    66. 

  66. 	
    67. 

  67. 

  68. 	chal = (struct ntlmchal *)tmpbuf;
    69. 

  69. 	memset(chal, 0, 1024);
    70. 

  70. 	memcpy(chal->sig, "NTLMSSP", 8);
    71. 

  71. 	chal->messtype[0] = 2;
    72. 

  72. 	gethostname(hostname, 128);
    73. 

  73. 	hostname[15] = 0;
    74. 

  74. 	len = (((int)strlen(hostname)) << 1);
    75. 

  75. 	chal->dom_len[0] = len;
    76. 

  76. 	chal->dom_max_len[0] = len;
    77. 

  77. 	chal->dom_offset[0] =  (unsigned char)((unsigned char *)chal->data - (unsigned char *)chal);
    78. 

  78. 	chal->flags[0] = 0x03;
    79. 

  79. 	chal->flags[1] = 0x82;
    80. 

  80. 	chal->flags[2] = 0x81;
    81. 

  81. 	chal->flags[3] = 0xA0;
    82. 

  82. 	text2unicode(hostname, (char *)chal->data, 64);
    83. 

  83. 	time((time_t *)challenge);
    84. 

  84. 	memcpy(challenge+4, &param->sinc.sin_addr.s_addr, 4);
    85. 

  85. 	challenge[1]^=param->sinc.sin_port;
    86. 

  86. 	for(i = 0; i < 8; i++) challenge[i] ^= myrand(challenge, 8);
    87. 

  87. 	memcpy(chal->challenge, challenge, 8);
    88. 

  88. 	en64((unsigned char *)tmpbuf, (unsigned char *)buf, (int)((unsigned char *)chal->data - (unsigned char *)chal) + len);	
    89. 

  89. }
    90.