rpms / samba

Clone
Source Code
GIT

Blame SOURCES/0014-libcli-auth-Use-samba_gnutls_arcfour_confounded_md5-.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-sig-altarch-fasttrack c7-sig-storage-samba-411 c8 c8-beta c8-sig-storage-samba-411 c8-sig-storage-samba-412 c8-sig-storage-samba-413 c8-sig-storage-samba-414 c8-sig-storage-samba-415 c8s c8s-sig-storage-samba-413 c8s-sig-storage-samba-414 c8s-sig-storage-samba-415 c8s-sig-storage-samba-416 c8s-sig-storage-samba-417 c8s-sig-storage-samba-418 c8s-sig-storage-samba-419 c8s-sig-storage-samba-420 c9 c9-beta c9s-sig-storage-samba-414 c9s-sig-storage-samba-415 c9s-sig-storage-samba-416 c9s-sig-storage-samba-417 c9s-sig-storage-samba-418 c9s-sig-storage-samba-419 c9s-sig-storage-samba-420
  1.   8683206b0a75e122dc03b497e4a663ac3491c75e
  2.   SOURCES
  3.   0014-libcli-auth-Use-samba_gnutls_arcfour_confounded_md5-.patch
Blob History Raw
b6b438 
From 15ca4ae322f88f797c571ad7801a9e44a6262d73 Mon Sep 17 00:00:00 2001
b6b438 
From: Andreas Schneider <asn@samba.org>
b6b438 
Date: Fri, 5 Jul 2019 10:09:32 +0200
b6b438 
Subject: [PATCH 014/187] libcli:auth: Use
b6b438 
 samba_gnutls_arcfour_confounded_md5() for rc4 passwd buffer
b6b438
b6b438 
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14031
b6b438
b6b438 
Signed-off-by: Andreas Schneider <asn@samba.org>
b6b438 
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
b6b438 
(cherry picked from commit dea160820a393be51985a4e761a3f73da83972e7)
b6b438 
---
b6b438 
 libcli/auth/smbencrypt.c | 39 +++++++++------------------------------
b6b438 
 1 file changed, 9 insertions(+), 30 deletions(-)
b6b438
b6b438 
diff --git a/libcli/auth/smbencrypt.c b/libcli/auth/smbencrypt.c
b6b438 
index ae97f3cc93e..17c1e1f69ff 100644
b6b438 
--- a/libcli/auth/smbencrypt.c
b6b438 
+++ b/libcli/auth/smbencrypt.c
b6b438 
@@ -846,41 +846,20 @@ bool decode_pw_buffer(TALLOC_CTX *ctx,
b6b438 
 NTSTATUS encode_or_decode_arc4_passwd_buffer(unsigned char pw_buf[532],
b6b438 
 					     const DATA_BLOB *psession_key)
b6b438 
 {
b6b438 
-	gnutls_hash_hd_t hash_hnd = NULL;
b6b438 
-	unsigned char key_out[16];
b6b438 
-	NTSTATUS status;
b6b438 
-	int rc;
b6b438 
-
b6b438 
 	/* Confounder is last 16 bytes. */
b6b438 
+	DATA_BLOB confounder = data_blob_const(&pw_buf[516], 16);
b6b438 
+	DATA_BLOB pw_data = data_blob_const(pw_buf, 516);
b6b438 
+	int rc;
b6b438
b6b438 
-	rc = gnutls_hash_init(&hash_hnd, GNUTLS_DIG_MD5);
b6b438 
+	rc = samba_gnutls_arcfour_confounded_md5(&confounder,
b6b438 
+						 psession_key,
b6b438 
+						 &pw_data,
b6b438 
+						 SAMBA_GNUTLS_DECRYPT);
b6b438 
 	if (rc < 0) {
b6b438 
-		status = gnutls_error_to_ntstatus(rc, NT_STATUS_HASH_NOT_SUPPORTED);
b6b438 
-		goto out;
b6b438 
+		return gnutls_error_to_ntstatus(rc, NT_STATUS_ACCESS_DISABLED_BY_POLICY_OTHER);
b6b438 
 	}
b6b438
b6b438 
-	rc = gnutls_hash(hash_hnd, &pw_buf[516], 16);
b6b438 
-	if (rc < 0) {
b6b438 
-		gnutls_hash_deinit(hash_hnd, NULL);
b6b438 
-		status = gnutls_error_to_ntstatus(rc, NT_STATUS_HASH_NOT_SUPPORTED);
b6b438 
-		goto out;
b6b438 
-	}
b6b438 
-	rc = gnutls_hash(hash_hnd, psession_key->data, psession_key->length);
b6b438 
-	if (rc < 0) {
b6b438 
-		gnutls_hash_deinit(hash_hnd, NULL);
b6b438 
-		status = gnutls_error_to_ntstatus(rc, NT_STATUS_HASH_NOT_SUPPORTED);
b6b438 
-		goto out;
b6b438 
-	}
b6b438 
-	gnutls_hash_deinit(hash_hnd, key_out);
b6b438 
-
b6b438 
-	/* arc4 with key_out. */
b6b438 
-	arcfour_crypt(pw_buf, key_out, 516);
b6b438 
-
b6b438 
-	ZERO_ARRAY(key_out);
b6b438 
-
b6b438 
-	status = NT_STATUS_OK;
b6b438 
-out:
b6b438 
-	return status;
b6b438 
+	return NT_STATUS_OK;
b6b438 
 }
b6b438
b6b438 
 /***********************************************************
b6b438 
--
b6b438 
2.23.0
b6b438

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation