rpms / samba

Clone
Source Code
GIT

Blame SOURCES/0105-s4-rpc_server-Remove-Heimdal-based-BackupKey-server.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-sig-altarch-fasttrack c7-sig-storage-samba-411 c8 c8-beta c8-sig-storage-samba-411 c8-sig-storage-samba-412 c8-sig-storage-samba-413 c8-sig-storage-samba-414 c8-sig-storage-samba-415 c8s c8s-sig-storage-samba-413 c8s-sig-storage-samba-414 c8s-sig-storage-samba-415 c8s-sig-storage-samba-416 c8s-sig-storage-samba-417 c8s-sig-storage-samba-418 c8s-sig-storage-samba-419 c8s-sig-storage-samba-420 c9 c9-beta c9s-sig-storage-samba-414 c9s-sig-storage-samba-415 c9s-sig-storage-samba-416 c9s-sig-storage-samba-417 c9s-sig-storage-samba-418 c9s-sig-storage-samba-419 c9s-sig-storage-samba-420
  1.   1524bce68237a310d30890f913d121753a7d972c
  2.   SOURCES
  3.   0105-s4-rpc_server-Remove-Heimdal-based-BackupKey-server.patch
Blob History Raw
1524bc 
From dc3c16cd089f6d245afc84aa0560f76346d5e4fe Mon Sep 17 00:00:00 2001
1524bc 
From: Andrew Bartlett <abartlet@samba.org>
1524bc 
Date: Wed, 31 Jul 2019 16:13:38 +1200
1524bc 
Subject: [PATCH 105/187] s4-rpc_server: Remove Heimdal-based BackupKey server
1524bc
1524bc 
We rely on a modern GnuTLS now.
1524bc
1524bc 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
1524bc 
Reviewed-by: Andreas Schneider <asn@samba.org>
1524bc 
(backported from commit 52b91cb33c281aeecc6270824cadac6cefbcb136)
1524bc 
---
1524bc 
 .../backupkey/dcesrv_backupkey_heimdal.c      | 1861 --------------
1524bc 
 source4/rpc_server/wscript_build              |   24 +-
1524bc 
 source4/torture/rpc/backupkey_heimdal.c       | 2160 -----------------
1524bc 
 source4/torture/wscript_build                 |    9 +-
1524bc 
 wscript_configure_system_gnutls               |    6 -
1524bc 
 5 files changed, 8 insertions(+), 4052 deletions(-)
1524bc 
 delete mode 100644 source4/rpc_server/backupkey/dcesrv_backupkey_heimdal.c
1524bc 
 delete mode 100644 source4/torture/rpc/backupkey_heimdal.c
1524bc
1524bc 
diff --git a/source4/rpc_server/backupkey/dcesrv_backupkey_heimdal.c b/source4/rpc_server/backupkey/dcesrv_backupkey_heimdal.c
1524bc 
deleted file mode 100644
1524bc 
index 806f144a24b..00000000000
1524bc 
--- a/source4/rpc_server/backupkey/dcesrv_backupkey_heimdal.c
1524bc 
+++ /dev/null
1524bc 
@@ -1,1861 +0,0 @@
1524bc 
-/*
1524bc 
-   Unix SMB/CIFS implementation.
1524bc 
-
1524bc 
-   endpoint server for the backupkey interface
1524bc 
-
1524bc 
-   Copyright (C) Matthieu Patou <mat@samba.org> 2010
1524bc 
-
1524bc 
-   This program is free software; you can redistribute it and/or modify
1524bc 
-   it under the terms of the GNU General Public License as published by
1524bc 
-   the Free Software Foundation; either version 3 of the License, or
1524bc 
-   (at your option) any later version.
1524bc 
-
1524bc 
-   This program is distributed in the hope that it will be useful,
1524bc 
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
1524bc 
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
1524bc 
-   GNU General Public License for more details.
1524bc 
-
1524bc 
-   You should have received a copy of the GNU General Public License
1524bc 
-   along with this program.  If not, see <http://www.gnu.org/licenses/>.
1524bc 
-*/
1524bc 
-
1524bc 
-#include "includes.h"
1524bc 
-#include "rpc_server/dcerpc_server.h"
1524bc 
-#include "rpc_server/common/common.h"
1524bc 
-#include "librpc/gen_ndr/ndr_backupkey.h"
1524bc 
-#include "dsdb/common/util.h"
1524bc 
-#include "dsdb/samdb/samdb.h"
1524bc 
-#include "lib/ldb/include/ldb_errors.h"
1524bc 
-#include "../lib/util/util_ldb.h"
1524bc 
-#include "param/param.h"
1524bc 
-#include "auth/session.h"
1524bc 
-#include "system/network.h"
1524bc 
-#include <com_err.h>
1524bc 
-#include <hx509.h>
1524bc 
-#include <hcrypto/rsa.h>
1524bc 
-#include <hcrypto/bn.h>
1524bc 
-#include <hcrypto/sha.h>
1524bc 
-#include <hcrypto/evp.h>
1524bc 
-#include <hcrypto/hmac.h>
1524bc 
-#include <der.h>
1524bc 
-#include "../lib/tsocket/tsocket.h"
1524bc 
-#include "../libcli/security/security.h"
1524bc 
-#include "librpc/gen_ndr/ndr_security.h"
1524bc 
-#include "lib/crypto/arcfour.h"
1524bc 
-#include "libds/common/roles.h"
1524bc 
-#include <gnutls/gnutls.h>
1524bc 
-#include <gnutls/x509.h>
1524bc 
-
1524bc 
-#define DCESRV_INTERFACE_BACKUPKEY_BIND(context, iface) \
1524bc 
-	dcesrv_interface_backupkey_bind(context, iface)
1524bc 
-static NTSTATUS dcesrv_interface_backupkey_bind(struct dcesrv_connection_context *context,
1524bc 
-						const struct dcesrv_interface *iface)
1524bc 
-{
1524bc 
-	return dcesrv_interface_bind_require_privacy(context, iface);
1524bc 
-}
1524bc 
-
1524bc 
-static const unsigned rsa_with_var_num[] = { 1, 2, 840, 113549, 1, 1, 1 };
1524bc 
-/* Equivalent to asn1_oid_id_pkcs1_rsaEncryption*/
1524bc 
-static const AlgorithmIdentifier _hx509_signature_rsa_with_var_num = {
1524bc 
-	{ 7, discard_const_p(unsigned, rsa_with_var_num) }, NULL
1524bc 
-};
1524bc 
-
1524bc 
-static NTSTATUS set_lsa_secret(TALLOC_CTX *mem_ctx,
1524bc 
-			       struct ldb_context *ldb,
1524bc 
-			       const char *name,
1524bc 
-			       const DATA_BLOB *lsa_secret)
1524bc 
-{
1524bc 
-	struct ldb_message *msg;
1524bc 
-	struct ldb_result *res;
1524bc 
-	struct ldb_dn *domain_dn;
1524bc 
-	struct ldb_dn *system_dn;
1524bc 
-	struct ldb_val val;
1524bc 
-	int ret;
1524bc 
-	char *name2;
1524bc 
-	struct timeval now = timeval_current();
1524bc 
-	NTTIME nt_now = timeval_to_nttime(&now;;
1524bc 
-	const char *attrs[] = {
1524bc 
-		NULL
1524bc 
-	};
1524bc 
-
1524bc 
-	domain_dn = ldb_get_default_basedn(ldb);
1524bc 
-	if (!domain_dn) {
1524bc 
-		return NT_STATUS_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	msg = ldb_msg_new(mem_ctx);
1524bc 
-	if (msg == NULL) {
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This function is a lot like dcesrv_lsa_CreateSecret
1524bc 
-	 * in the rpc_server/lsa directory
1524bc 
-	 * The reason why we duplicate the effort here is that:
1524bc 
-	 * * we want to keep the former function static
1524bc 
-	 * * we want to avoid the burden of doing LSA calls
1524bc 
-	 *   when we can just manipulate the secrets directly
1524bc 
-	 * * taillor the function to the particular needs of backup protocol
1524bc 
-	 */
1524bc 
-
1524bc 
-	system_dn = samdb_search_dn(ldb, msg, domain_dn, "(&(objectClass=container)(cn=System))");
1524bc 
-	if (system_dn == NULL) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	name2 = talloc_asprintf(msg, "%s Secret", name);
1524bc 
-	if (name2 == NULL) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = ldb_search(ldb, mem_ctx, &res, system_dn, LDB_SCOPE_SUBTREE, attrs,
1524bc 
-			   "(&(cn=%s)(objectclass=secret))",
1524bc 
-			   ldb_binary_encode_string(mem_ctx, name2));
1524bc 
-
1524bc 
-	if (ret != LDB_SUCCESS ||  res->count != 0 ) {
1524bc 
-		DEBUG(2, ("Secret %s already exists !\n", name2));
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_OBJECT_NAME_COLLISION;
1524bc 
-	}
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * We don't care about previous value as we are
1524bc 
-	 * here only if the key didn't exists before
1524bc 
-	 */
1524bc 
-
1524bc 
-	msg->dn = ldb_dn_copy(mem_ctx, system_dn);
1524bc 
-	if (msg->dn == NULL) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-	if (!ldb_dn_add_child_fmt(msg->dn, "cn=%s", name2)) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = ldb_msg_add_string(msg, "cn", name2);
1524bc 
-	if (ret != LDB_SUCCESS) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-	ret = ldb_msg_add_string(msg, "objectClass", "secret");
1524bc 
-	if (ret != LDB_SUCCESS) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-	ret = samdb_msg_add_uint64(ldb, mem_ctx, msg, "priorSetTime", nt_now);
1524bc 
-	if (ret != LDB_SUCCESS) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-	val.data = lsa_secret->data;
1524bc 
-	val.length = lsa_secret->length;
1524bc 
-	ret = ldb_msg_add_value(msg, "currentValue", &val, NULL);
1524bc 
-	if (ret != LDB_SUCCESS) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-	ret = samdb_msg_add_uint64(ldb, mem_ctx, msg, "lastSetTime", nt_now);
1524bc 
-	if (ret != LDB_SUCCESS) {
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * create the secret with DSDB_MODIFY_RELAX
1524bc 
-	 * otherwise dsdb/samdb/ldb_modules/objectclass.c forbid
1524bc 
-	 * the create of LSA secret object
1524bc 
-	 */
1524bc 
-	ret = dsdb_add(ldb, msg, DSDB_MODIFY_RELAX);
1524bc 
-	if (ret != LDB_SUCCESS) {
1524bc 
-		DEBUG(2,("Failed to create secret record %s: %s\n",
1524bc 
-			ldb_dn_get_linearized(msg->dn),
1524bc 
-			ldb_errstring(ldb)));
1524bc 
-		talloc_free(msg);
1524bc 
-		return NT_STATUS_ACCESS_DENIED;
1524bc 
-	}
1524bc 
-
1524bc 
-	talloc_free(msg);
1524bc 
-	return NT_STATUS_OK;
1524bc 
-}
1524bc 
-
1524bc 
-/* This function is pretty much like dcesrv_lsa_QuerySecret */
1524bc 
-static NTSTATUS get_lsa_secret(TALLOC_CTX *mem_ctx,
1524bc 
-			       struct ldb_context *ldb,
1524bc 
-			       const char *name,
1524bc 
-			       DATA_BLOB *lsa_secret)
1524bc 
-{
1524bc 
-	TALLOC_CTX *tmp_mem;
1524bc 
-	struct ldb_result *res;
1524bc 
-	struct ldb_dn *domain_dn;
1524bc 
-	struct ldb_dn *system_dn;
1524bc 
-	const struct ldb_val *val;
1524bc 
-	uint8_t *data;
1524bc 
-	const char *attrs[] = {
1524bc 
-		"currentValue",
1524bc 
-		NULL
1524bc 
-	};
1524bc 
-	int ret;
1524bc 
-
1524bc 
-	lsa_secret->data = NULL;
1524bc 
-	lsa_secret->length = 0;
1524bc 
-
1524bc 
-	domain_dn = ldb_get_default_basedn(ldb);
1524bc 
-	if (!domain_dn) {
1524bc 
-		return NT_STATUS_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp_mem = talloc_new(mem_ctx);
1524bc 
-	if (tmp_mem == NULL) {
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	system_dn = samdb_search_dn(ldb, tmp_mem, domain_dn, "(&(objectClass=container)(cn=System))");
1524bc 
-	if (system_dn == NULL) {
1524bc 
-		talloc_free(tmp_mem);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = ldb_search(ldb, mem_ctx, &res, system_dn, LDB_SCOPE_SUBTREE, attrs,
1524bc 
-			   "(&(cn=%s Secret)(objectclass=secret))",
1524bc 
-			   ldb_binary_encode_string(tmp_mem, name));
1524bc 
-
1524bc 
-	if (ret != LDB_SUCCESS) {
1524bc 
-		talloc_free(tmp_mem);
1524bc 
-		return NT_STATUS_INTERNAL_DB_CORRUPTION;
1524bc 
-	}
1524bc 
-	if (res->count == 0) {
1524bc 
-		talloc_free(tmp_mem);
1524bc 
-		return NT_STATUS_RESOURCE_NAME_NOT_FOUND;
1524bc 
-	}
1524bc 
-	if (res->count > 1) {
1524bc 
-		DEBUG(2, ("Secret %s collision\n", name));
1524bc 
-		talloc_free(tmp_mem);
1524bc 
-		return NT_STATUS_INTERNAL_DB_CORRUPTION;
1524bc 
-	}
1524bc 
-
1524bc 
-	val = ldb_msg_find_ldb_val(res->msgs[0], "currentValue");
1524bc 
-	if (val == NULL) {
1524bc 
-		/*
1524bc 
-		 * The secret object is here but we don't have the secret value
1524bc 
-		 * The most common case is a RODC
1524bc 
-		 */
1524bc 
-		*lsa_secret = data_blob_null;
1524bc 
-		talloc_free(tmp_mem);
1524bc 
-		return NT_STATUS_OK;
1524bc 
-	}
1524bc 
-
1524bc 
-	data = val->data;
1524bc 
-	lsa_secret->data = talloc_move(mem_ctx, &data);
1524bc 
-	lsa_secret->length = val->length;
1524bc 
-
1524bc 
-	talloc_free(tmp_mem);
1524bc 
-	return NT_STATUS_OK;
1524bc 
-}
1524bc 
-
1524bc 
-static DATA_BLOB *reverse_and_get_blob(TALLOC_CTX *mem_ctx, BIGNUM *bn)
1524bc 
-{
1524bc 
-	DATA_BLOB blob;
1524bc 
-	DATA_BLOB *rev = talloc(mem_ctx, DATA_BLOB);
1524bc 
-	uint32_t i;
1524bc 
-
1524bc 
-	blob.length = BN_num_bytes(bn);
1524bc 
-	blob.data = talloc_array(mem_ctx, uint8_t, blob.length);
1524bc 
-
1524bc 
-	if (blob.data == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	BN_bn2bin(bn, blob.data);
1524bc 
-
1524bc 
-	rev->data = talloc_array(mem_ctx, uint8_t, blob.length);
1524bc 
-	if (rev->data == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	for(i=0; i < blob.length; i++) {
1524bc 
-		rev->data[i] = blob.data[blob.length - i -1];
1524bc 
-	}
1524bc 
-	rev->length = blob.length;
1524bc 
-	talloc_free(blob.data);
1524bc 
-	return rev;
1524bc 
-}
1524bc 
-
1524bc 
-static BIGNUM *reverse_and_get_bignum(TALLOC_CTX *mem_ctx, DATA_BLOB *blob)
1524bc 
-{
1524bc 
-	BIGNUM *ret;
1524bc 
-	DATA_BLOB rev;
1524bc 
-	uint32_t i;
1524bc 
-
1524bc 
-	rev.data = talloc_array(mem_ctx, uint8_t, blob->length);
1524bc 
-	if (rev.data == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	for(i=0; i < blob->length; i++) {
1524bc 
-		rev.data[i] = blob->data[blob->length - i -1];
1524bc 
-	}
1524bc 
-	rev.length = blob->length;
1524bc 
-
1524bc 
-	ret = BN_bin2bn(rev.data, rev.length, NULL);
1524bc 
-	talloc_free(rev.data);
1524bc 
-
1524bc 
-	return ret;
1524bc 
-}
1524bc 
-
1524bc 
-static NTSTATUS get_pk_from_raw_keypair_params(TALLOC_CTX *ctx,
1524bc 
-				struct bkrp_exported_RSA_key_pair *keypair,
1524bc 
-				hx509_private_key *pk)
1524bc 
-{
1524bc 
-	hx509_context hctx;
1524bc 
-	RSA *rsa;
1524bc 
-	struct hx509_private_key_ops *ops;
1524bc 
-	hx509_private_key privkey = NULL;
1524bc 
-
1524bc 
-	hx509_context_init(&hctx);
1524bc 
-	ops = hx509_find_private_alg(&_hx509_signature_rsa_with_var_num.algorithm);
1524bc 
-	if (ops == NULL) {
1524bc 
-		DEBUG(2, ("Not supported algorithm\n"));
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (hx509_private_key_init(&privkey, ops, NULL) != 0) {
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_NO_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	rsa = RSA_new();
1524bc 
-	if (rsa ==NULL) {
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	rsa->n = reverse_and_get_bignum(ctx, &(keypair->modulus));
1524bc 
-	if (rsa->n == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-	rsa->d = reverse_and_get_bignum(ctx, &(keypair->private_exponent));
1524bc 
-	if (rsa->d == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-	rsa->p = reverse_and_get_bignum(ctx, &(keypair->prime1));
1524bc 
-	if (rsa->p == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-	rsa->q = reverse_and_get_bignum(ctx, &(keypair->prime2));
1524bc 
-	if (rsa->q == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-	rsa->dmp1 = reverse_and_get_bignum(ctx, &(keypair->exponent1));
1524bc 
-	if (rsa->dmp1 == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-	rsa->dmq1 = reverse_and_get_bignum(ctx, &(keypair->exponent2));
1524bc 
-	if (rsa->dmq1 == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-	rsa->iqmp = reverse_and_get_bignum(ctx, &(keypair->coefficient));
1524bc 
-	if (rsa->iqmp == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-	rsa->e = reverse_and_get_bignum(ctx, &(keypair->public_exponent));
1524bc 
-	if (rsa->e == NULL) {
1524bc 
-		RSA_free(rsa);
1524bc 
-		hx509_private_key_free(&privkey);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NT_STATUS_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	*pk = privkey;
1524bc 
-
1524bc 
-	hx509_private_key_assign_rsa(*pk, rsa);
1524bc 
-
1524bc 
-	hx509_context_free(&hctx);
1524bc 
-	return NT_STATUS_OK;
1524bc 
-}
1524bc 
-
1524bc 
-static WERROR get_and_verify_access_check(TALLOC_CTX *sub_ctx,
1524bc 
-					  uint32_t version,
1524bc 
-					  uint8_t *key_and_iv,
1524bc 
-					  uint8_t *access_check,
1524bc 
-					  uint32_t access_check_len,
1524bc 
-					  struct auth_session_info *session_info)
1524bc 
-{
1524bc 
-	heim_octet_string iv;
1524bc 
-	heim_octet_string access_check_os;
1524bc 
-	hx509_crypto crypto;
1524bc 
-
1524bc 
-	DATA_BLOB blob_us;
1524bc 
-	uint32_t key_len;
1524bc 
-	uint32_t iv_len;
1524bc 
-	int res;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	hx509_context hctx;
1524bc 
-
1524bc 
-	struct dom_sid *access_sid = NULL;
1524bc 
-	struct dom_sid *caller_sid = NULL;
1524bc 
-
1524bc 
-	/* This one should not be freed */
1524bc 
-	const AlgorithmIdentifier *alg;
1524bc 
-
1524bc 
-	switch (version) {
1524bc 
-	case 2:
1524bc 
-		key_len = 24;
1524bc 
-		iv_len = 8;
1524bc 
-		alg = hx509_crypto_des_rsdi_ede3_cbc();
1524bc 
-		break;
1524bc 
-
1524bc 
-	case 3:
1524bc 
-		key_len = 32;
1524bc 
-		iv_len = 16;
1524bc 
-		alg =hx509_crypto_aes256_cbc();
1524bc 
-		break;
1524bc 
-
1524bc 
-	default:
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	hx509_context_init(&hctx);
1524bc 
-	res = hx509_crypto_init(hctx, NULL,
1524bc 
-				&(alg->algorithm),
1524bc 
-				&crypto);
1524bc 
-	hx509_context_free(&hctx);
1524bc 
-
1524bc 
-	if (res != 0) {
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	res = hx509_crypto_set_key_data(crypto, key_and_iv, key_len);
1524bc 
-
1524bc 
-	iv.data = talloc_memdup(sub_ctx, key_len + key_and_iv, iv_len);
1524bc 
-	iv.length = iv_len;
1524bc 
-
1524bc 
-	if (res != 0) {
1524bc 
-		hx509_crypto_destroy(crypto);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	hx509_crypto_set_padding(crypto, HX509_CRYPTO_PADDING_NONE);
1524bc 
-	res = hx509_crypto_decrypt(crypto,
1524bc 
-		access_check,
1524bc 
-		access_check_len,
1524bc 
-		&iv,
1524bc 
-		&access_check_os);
1524bc 
-
1524bc 
-	if (res != 0) {
1524bc 
-		hx509_crypto_destroy(crypto);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	blob_us.data = access_check_os.data;
1524bc 
-	blob_us.length = access_check_os.length;
1524bc 
-
1524bc 
-	hx509_crypto_destroy(crypto);
1524bc 
-
1524bc 
-	switch (version) {
1524bc 
-	case 2:
1524bc 
-	{
1524bc 
-		uint32_t hash_size = 20;
1524bc 
-		uint8_t hash[hash_size];
1524bc 
-		struct sha sctx;
1524bc 
-		struct bkrp_access_check_v2 uncrypted_accesscheckv2;
1524bc 
-
1524bc 
-		ndr_err = ndr_pull_struct_blob(&blob_us, sub_ctx, &uncrypted_accesscheckv2,
1524bc 
-					(ndr_pull_flags_fn_t)ndr_pull_bkrp_access_check_v2);
1524bc 
-		if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-			/* Unable to unmarshall */
1524bc 
-			der_free_octet_string(&access_check_os);
1524bc 
-			return WERR_INVALID_DATA;
1524bc 
-		}
1524bc 
-		if (uncrypted_accesscheckv2.magic != 0x1) {
1524bc 
-			/* wrong magic */
1524bc 
-			der_free_octet_string(&access_check_os);
1524bc 
-			return WERR_INVALID_DATA;
1524bc 
-		}
1524bc 
-
1524bc 
-		SHA1_Init(&sctx);
1524bc 
-		SHA1_Update(&sctx, blob_us.data, blob_us.length - hash_size);
1524bc 
-		SHA1_Final(hash, &sctx);
1524bc 
-		der_free_octet_string(&access_check_os);
1524bc 
-		/*
1524bc 
-		 * We free it after the sha1 calculation because blob.data
1524bc 
-		 * point to the same area
1524bc 
-		 */
1524bc 
-
1524bc 
-		if (memcmp(hash, uncrypted_accesscheckv2.hash, hash_size) != 0) {
1524bc 
-			DEBUG(2, ("Wrong hash value in the access check in backup key remote protocol\n"));
1524bc 
-			return WERR_INVALID_DATA;
1524bc 
-		}
1524bc 
-		access_sid = &(uncrypted_accesscheckv2.sid);
1524bc 
-		break;
1524bc 
-	}
1524bc 
-	case 3:
1524bc 
-	{
1524bc 
-		uint32_t hash_size = 64;
1524bc 
-		uint8_t hash[hash_size];
1524bc 
-		struct hc_sha512state sctx;
1524bc 
-		struct bkrp_access_check_v3 uncrypted_accesscheckv3;
1524bc 
-
1524bc 
-		ndr_err = ndr_pull_struct_blob(&blob_us, sub_ctx, &uncrypted_accesscheckv3,
1524bc 
-					(ndr_pull_flags_fn_t)ndr_pull_bkrp_access_check_v3);
1524bc 
-		if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-			/* Unable to unmarshall */
1524bc 
-			der_free_octet_string(&access_check_os);
1524bc 
-			return WERR_INVALID_DATA;
1524bc 
-		}
1524bc 
-		if (uncrypted_accesscheckv3.magic != 0x1) {
1524bc 
-			/* wrong magic */
1524bc 
-			der_free_octet_string(&access_check_os);
1524bc 
-			return WERR_INVALID_DATA;
1524bc 
-		}
1524bc 
-
1524bc 
-		SHA512_Init(&sctx);
1524bc 
-		SHA512_Update(&sctx, blob_us.data, blob_us.length - hash_size);
1524bc 
-		SHA512_Final(hash, &sctx);
1524bc 
-		der_free_octet_string(&access_check_os);
1524bc 
-		/*
1524bc 
-		 * We free it after the sha1 calculation because blob.data
1524bc 
-		 * point to the same area
1524bc 
-		 */
1524bc 
-
1524bc 
-		if (memcmp(hash, uncrypted_accesscheckv3.hash, hash_size) != 0) {
1524bc 
-			DEBUG(2, ("Wrong hash value in the access check in backup key remote protocol\n"));
1524bc 
-			return WERR_INVALID_DATA;
1524bc 
-		}
1524bc 
-		access_sid = &(uncrypted_accesscheckv3.sid);
1524bc 
-		break;
1524bc 
-	}
1524bc 
-	default:
1524bc 
-		/* Never reached normally as we filtered at the switch / case level */
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	caller_sid = &session_info->security_token->sids[PRIMARY_USER_SID_INDEX];
1524bc 
-
1524bc 
-	if (!dom_sid_equal(caller_sid, access_sid)) {
1524bc 
-		return WERR_INVALID_ACCESS;
1524bc 
-	}
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * We have some data, such as saved website or IMAP passwords that the
1524bc 
- * client has in profile on-disk.  This needs to be decrypted.  This
1524bc 
- * version gives the server the data over the network (protected by
1524bc 
- * the X.509 certificate and public key encryption, and asks that it
1524bc 
- * be decrypted returned for short-term use, protected only by the
1524bc 
- * negotiated transport encryption.
1524bc 
- *
1524bc 
- * The data is NOT stored in the LSA, but a X.509 certificate, public
1524bc 
- * and private keys used to encrypt the data will be stored.  There is
1524bc 
- * only one active encryption key pair and certificate per domain, it
1524bc 
- * is pointed at with G$BCKUPKEY_PREFERRED in the LSA secrets store.
1524bc 
- *
1524bc 
- * The potentially multiple valid decrypting key pairs are in turn
1524bc 
- * stored in the LSA secrets store as G$BCKUPKEY_keyGuidString.
1524bc 
- *
1524bc 
- */
1524bc 
-static WERROR bkrp_client_wrap_decrypt_data(struct dcesrv_call_state *dce_call,
1524bc 
-					    TALLOC_CTX *mem_ctx,
1524bc 
-					    struct bkrp_BackupKey *r,
1524bc 
-					    struct ldb_context *ldb_ctx)
1524bc 
-{
1524bc 
-	struct auth_session_info *session_info =
1524bc 
-		dcesrv_call_session_info(dce_call);
1524bc 
-	struct bkrp_client_side_wrapped uncrypt_request;
1524bc 
-	DATA_BLOB blob;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	char *guid_string;
1524bc 
-	char *cert_secret_name;
1524bc 
-	DATA_BLOB lsa_secret;
1524bc 
-	DATA_BLOB *uncrypted_data = NULL;
1524bc 
-	NTSTATUS status;
1524bc 
-	uint32_t requested_version;
1524bc 
-
1524bc 
-	blob.data = r->in.data_in;
1524bc 
-	blob.length = r->in.data_in_len;
1524bc 
-
1524bc 
-	if (r->in.data_in_len < 4 || r->in.data_in == NULL) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * We check for the version here, so we can actually print the
1524bc 
-	 * message as we are unlikely to parse it with NDR.
1524bc 
-	 */
1524bc 
-	requested_version = IVAL(r->in.data_in, 0);
1524bc 
-	if ((requested_version != BACKUPKEY_CLIENT_WRAP_VERSION2)
1524bc 
-	    && (requested_version != BACKUPKEY_CLIENT_WRAP_VERSION3)) {
1524bc 
-		DEBUG(1, ("Request for unknown BackupKey sub-protocol %d\n", requested_version));
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	ndr_err = ndr_pull_struct_blob(&blob, mem_ctx, &uncrypt_request,
1524bc 
-				       (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_wrapped);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	if ((uncrypt_request.version != BACKUPKEY_CLIENT_WRAP_VERSION2)
1524bc 
-	    && (uncrypt_request.version != BACKUPKEY_CLIENT_WRAP_VERSION3)) {
1524bc 
-		DEBUG(1, ("Request for unknown BackupKey sub-protocol %d\n", uncrypt_request.version));
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	guid_string = GUID_string(mem_ctx, &uncrypt_request.guid);
1524bc 
-	if (guid_string == NULL) {
1524bc 
-		return WERR_NOT_ENOUGH_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	cert_secret_name = talloc_asprintf(mem_ctx,
1524bc 
-					   "BCKUPKEY_%s",
1524bc 
-					   guid_string);
1524bc 
-	if (cert_secret_name == NULL) {
1524bc 
-		return WERR_NOT_ENOUGH_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = get_lsa_secret(mem_ctx,
1524bc 
-				ldb_ctx,
1524bc 
-				cert_secret_name,
1524bc 
-				&lsa_secret);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(10, ("Error while fetching secret %s\n", cert_secret_name));
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	} else if (lsa_secret.length == 0) {
1524bc 
-		/* we do not have the real secret attribute, like if we are an RODC */
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	} else {
1524bc 
-		hx509_context hctx;
1524bc 
-		struct bkrp_exported_RSA_key_pair keypair;
1524bc 
-		hx509_private_key pk;
1524bc 
-		uint32_t i, res;
1524bc 
-		heim_octet_string reversed_secret;
1524bc 
-		heim_octet_string uncrypted_secret;
1524bc 
-		AlgorithmIdentifier alg;
1524bc 
-		DATA_BLOB blob_us;
1524bc 
-		WERROR werr;
1524bc 
-
1524bc 
-		ndr_err = ndr_pull_struct_blob(&lsa_secret, mem_ctx, &keypair, (ndr_pull_flags_fn_t)ndr_pull_bkrp_exported_RSA_key_pair);
1524bc 
-		if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-			DEBUG(2, ("Unable to parse the ndr encoded cert in key %s\n", cert_secret_name));
1524bc 
-			return WERR_FILE_NOT_FOUND;
1524bc 
-		}
1524bc 
-
1524bc 
-		status = get_pk_from_raw_keypair_params(mem_ctx, &keypair, &pk;;
1524bc 
-		if (!NT_STATUS_IS_OK(status)) {
1524bc 
-			return WERR_INTERNAL_ERROR;
1524bc 
-		}
1524bc 
-
1524bc 
-		reversed_secret.data = talloc_array(mem_ctx, uint8_t,
1524bc 
-						    uncrypt_request.encrypted_secret_len);
1524bc 
-		if (reversed_secret.data == NULL) {
1524bc 
-			hx509_private_key_free(&pk;;
1524bc 
-			return WERR_NOT_ENOUGH_MEMORY;
1524bc 
-		}
1524bc 
-
1524bc 
-		/* The secret has to be reversed ... */
1524bc 
-		for(i=0; i< uncrypt_request.encrypted_secret_len; i++) {
1524bc 
-			uint8_t *reversed = (uint8_t *)reversed_secret.data;
1524bc 
-			uint8_t *uncrypt = uncrypt_request.encrypted_secret;
1524bc 
-			reversed[i] = uncrypt[uncrypt_request.encrypted_secret_len - 1 - i];
1524bc 
-		}
1524bc 
-		reversed_secret.length = uncrypt_request.encrypted_secret_len;
1524bc 
-
1524bc 
-		/*
1524bc 
-		 * Let's try to decrypt the secret now that
1524bc 
-		 * we have the private key ...
1524bc 
-		 */
1524bc 
-		hx509_context_init(&hctx);
1524bc 
-		res = hx509_private_key_private_decrypt(hctx, &reversed_secret,
1524bc 
-							 &alg.algorithm, pk,
1524bc 
-							 &uncrypted_secret);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		hx509_private_key_free(&pk;;
1524bc 
-		if (res != 0) {
1524bc 
-			/* We are not able to decrypt the secret, looks like something is wrong */
1524bc 
-			return WERR_INVALID_PARAMETER;
1524bc 
-		}
1524bc 
-		blob_us.data = uncrypted_secret.data;
1524bc 
-		blob_us.length = uncrypted_secret.length;
1524bc 
-
1524bc 
-		if (uncrypt_request.version == 2) {
1524bc 
-			struct bkrp_encrypted_secret_v2 uncrypted_secretv2;
1524bc 
-
1524bc 
-			ndr_err = ndr_pull_struct_blob(&blob_us, mem_ctx, &uncrypted_secretv2,
1524bc 
-					(ndr_pull_flags_fn_t)ndr_pull_bkrp_encrypted_secret_v2);
1524bc 
-			der_free_octet_string(&uncrypted_secret);
1524bc 
-			if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-				/* Unable to unmarshall */
1524bc 
-				return WERR_INVALID_DATA;
1524bc 
-			}
1524bc 
-			if (uncrypted_secretv2.magic != 0x20) {
1524bc 
-				/* wrong magic */
1524bc 
-				return WERR_INVALID_DATA;
1524bc 
-			}
1524bc 
-
1524bc 
-			werr = get_and_verify_access_check(mem_ctx, 2,
1524bc 
-							   uncrypted_secretv2.payload_key,
1524bc 
-							   uncrypt_request.access_check,
1524bc 
-							   uncrypt_request.access_check_len,
1524bc 
-							   session_info);
1524bc 
-			if (!W_ERROR_IS_OK(werr)) {
1524bc 
-				return werr;
1524bc 
-			}
1524bc 
-			uncrypted_data = talloc(mem_ctx, DATA_BLOB);
1524bc 
-			if (uncrypted_data == NULL) {
1524bc 
-				return WERR_INVALID_DATA;
1524bc 
-			}
1524bc 
-
1524bc 
-			uncrypted_data->data = uncrypted_secretv2.secret;
1524bc 
-			uncrypted_data->length = uncrypted_secretv2.secret_len;
1524bc 
-		}
1524bc 
-		if (uncrypt_request.version == 3) {
1524bc 
-			struct bkrp_encrypted_secret_v3 uncrypted_secretv3;
1524bc 
-
1524bc 
-			ndr_err = ndr_pull_struct_blob(&blob_us, mem_ctx, &uncrypted_secretv3,
1524bc 
-					(ndr_pull_flags_fn_t)ndr_pull_bkrp_encrypted_secret_v3);
1524bc 
-
1524bc 
-			der_free_octet_string(&uncrypted_secret);
1524bc 
-			if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-				/* Unable to unmarshall */
1524bc 
-				return WERR_INVALID_DATA;
1524bc 
-			}
1524bc 
-
1524bc 
-			if (uncrypted_secretv3.magic1 != 0x30  ||
1524bc 
-			    uncrypted_secretv3.magic2 != 0x6610 ||
1524bc 
-			    uncrypted_secretv3.magic3 != 0x800e) {
1524bc 
-				/* wrong magic */
1524bc 
-				return WERR_INVALID_DATA;
1524bc 
-			}
1524bc 
-
1524bc 
-			/*
1524bc 
-			 * Confirm that the caller is permitted to
1524bc 
-			 * read this particular data.  Because one key
1524bc 
-			 * pair is used per domain, the caller could
1524bc 
-			 * have stolen the profile data on-disk and
1524bc 
-			 * would otherwise be able to read the
1524bc 
-			 * passwords.
1524bc 
-			 */
1524bc 
-
1524bc 
-			werr = get_and_verify_access_check(mem_ctx, 3,
1524bc 
-							   uncrypted_secretv3.payload_key,
1524bc 
-							   uncrypt_request.access_check,
1524bc 
-							   uncrypt_request.access_check_len,
1524bc 
-							   session_info);
1524bc 
-			if (!W_ERROR_IS_OK(werr)) {
1524bc 
-				return werr;
1524bc 
-			}
1524bc 
-
1524bc 
-			uncrypted_data = talloc(mem_ctx, DATA_BLOB);
1524bc 
-			if (uncrypted_data == NULL) {
1524bc 
-				return WERR_INVALID_DATA;
1524bc 
-			}
1524bc 
-
1524bc 
-			uncrypted_data->data = uncrypted_secretv3.secret;
1524bc 
-			uncrypted_data->length = uncrypted_secretv3.secret_len;
1524bc 
-		}
1524bc 
-
1524bc 
-		/*
1524bc 
-		 * Yeah if we are here all looks pretty good:
1524bc 
-		 * - hash is ok
1524bc 
-		 * - user sid is the same as the one in access check
1524bc 
-		 * - we were able to decrypt the whole stuff
1524bc 
-		 */
1524bc 
-	}
1524bc 
-
1524bc 
-	if (uncrypted_data->data == NULL) {
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* There is a magic value a the beginning of the data
1524bc 
-	 * we can use an adhoc structure but as the
1524bc 
-	 * parent structure is just an array of bytes it a lot of work
1524bc 
-	 * work just prepending 4 bytes
1524bc 
-	 */
1524bc 
-	*(r->out.data_out) = talloc_zero_array(mem_ctx, uint8_t, uncrypted_data->length + 4);
1524bc 
-	W_ERROR_HAVE_NO_MEMORY(*(r->out.data_out));
1524bc 
-	memcpy(4+*(r->out.data_out), uncrypted_data->data, uncrypted_data->length);
1524bc 
-	*(r->out.data_out_len) = uncrypted_data->length + 4;
1524bc 
-
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Strictly, this function no longer uses Heimdal in order to generate an RSA
1524bc 
- * key, but GnuTLS.
1524bc 
- *
1524bc 
- * The resulting key is then imported into Heimdal's RSA structure.
1524bc 
- *
1524bc 
- * We use GnuTLS because it can reliably generate 2048 bit keys every time.
1524bc 
- * Windows clients strictly require 2048, no more since it won't fit and no
1524bc 
- * less either. Heimdal would almost always generate a smaller key.
1524bc 
- */
1524bc 
-static WERROR create_heimdal_rsa_key(TALLOC_CTX *ctx, hx509_context *hctx,
1524bc 
-				     hx509_private_key *pk, RSA **rsa)
1524bc 
-{
1524bc 
-	int ret;
1524bc 
-	uint8_t *p0 = NULL;
1524bc 
-	const uint8_t *p;
1524bc 
-	size_t len;
1524bc 
-	int bits = 2048;
1524bc 
-	int RSA_returned_bits;
1524bc 
-	gnutls_x509_privkey_t gtls_key;
1524bc 
-	WERROR werr;
1524bc 
-
1524bc 
-	*rsa = NULL;
1524bc 
-
1524bc 
-	ret = gnutls_global_init();
1524bc 
-	if (ret != GNUTLS_E_SUCCESS) {
1524bc 
-		DBG_ERR("TLS error: %s\n", gnutls_strerror(ret));
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = gnutls_x509_privkey_init(&gtls_key);
1524bc 
-	if (ret != 0) {
1524bc 
-		gnutls_global_deinit();
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * Unlike Heimdal's RSA_generate_key_ex(), this generates a
1524bc 
-	 * 2048 bit key 100% of the time.  The heimdal code had a ~1/8
1524bc 
-	 * chance of doing so, chewing vast quantities of computation
1524bc 
-	 * and entropy in the process.
1524bc 
-	 */
1524bc 
-
1524bc 
-	ret = gnutls_x509_privkey_generate(gtls_key, GNUTLS_PK_RSA, bits, 0);
1524bc 
-	if (ret != 0) {
1524bc 
-		werr = WERR_INTERNAL_ERROR;
1524bc 
-		goto done;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* No need to check error code, this SHOULD fail */
1524bc 
-	gnutls_x509_privkey_export(gtls_key, GNUTLS_X509_FMT_DER, NULL, &len;;
1524bc 
-
1524bc 
-	if (len < 1) {
1524bc 
-		werr = WERR_INTERNAL_ERROR;
1524bc 
-		goto done;
1524bc 
-	}
1524bc 
-
1524bc 
-	p0 = talloc_size(ctx, len);
1524bc 
-	if (p0 == NULL) {
1524bc 
-		werr = WERR_NOT_ENOUGH_MEMORY;
1524bc 
-		goto done;
1524bc 
-	}
1524bc 
-	p = p0;
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * Only this GnuTLS export function correctly exports the key,
1524bc 
-	 * we can't use gnutls_rsa_params_export_raw() because while
1524bc 
-	 * it appears to be fixed in more recent versions, in the
1524bc 
-	 * Ubuntu 14.04 version 2.12.23 (at least) it incorrectly
1524bc 
-	 * exports one of the key parameters (qInv).  Additionally, we
1524bc 
-	 * would have to work around subtle differences in big number
1524bc 
-	 * representations.
1524bc 
-	 *
1524bc 
-	 * We need access to the RSA parameters directly (in the
1524bc 
-	 * parameter RSA **rsa) as the caller has to manually encode
1524bc 
-	 * them in a non-standard data structure.
1524bc 
-	 */
1524bc 
-	ret = gnutls_x509_privkey_export(gtls_key, GNUTLS_X509_FMT_DER, p0, &len;;
1524bc 
-
1524bc 
-	if (ret != 0) {
1524bc 
-		werr = WERR_INTERNAL_ERROR;
1524bc 
-		goto done;
1524bc 
-	}
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * To dump the key we can use :
1524bc 
-	 * rk_dumpdata("h5lkey", p0, len);
1524bc 
-	 */
1524bc 
-	ret = hx509_parse_private_key(*hctx, &_hx509_signature_rsa_with_var_num ,
1524bc 
-				       p0, len, HX509_KEY_FORMAT_DER, pk);
1524bc 
-
1524bc 
-	if (ret != 0) {
1524bc 
-		werr = WERR_INTERNAL_ERROR;
1524bc 
-		goto done;
1524bc 
-	}
1524bc 
-
1524bc 
-	*rsa = d2i_RSAPrivateKey(NULL, &p, len);
1524bc 
-	TALLOC_FREE(p0);
1524bc 
-
1524bc 
-	if (*rsa == NULL) {
1524bc 
-		hx509_private_key_free(pk);
1524bc 
-		werr = WERR_INTERNAL_ERROR;
1524bc 
-		goto done;
1524bc 
-	}
1524bc 
-
1524bc 
-	RSA_returned_bits = BN_num_bits((*rsa)->n);
1524bc 
-	DEBUG(6, ("GnuTLS returned an RSA private key with %d bits\n", RSA_returned_bits));
1524bc 
-
1524bc 
-	if (RSA_returned_bits != bits) {
1524bc 
-		DEBUG(0, ("GnuTLS unexpectedly returned an RSA private key with %d bits, needed %d\n", RSA_returned_bits, bits));
1524bc 
-		hx509_private_key_free(pk);
1524bc 
-		werr = WERR_INTERNAL_ERROR;
1524bc 
-		goto done;
1524bc 
-	}
1524bc 
-
1524bc 
-	werr = WERR_OK;
1524bc 
-
1524bc 
-done:
1524bc 
-	if (p0 != NULL) {
1524bc 
-		memset(p0, 0, len);
1524bc 
-		TALLOC_FREE(p0);
1524bc 
-	}
1524bc 
-
1524bc 
-	gnutls_x509_privkey_deinit(gtls_key);
1524bc 
-	gnutls_global_deinit();
1524bc 
-	return werr;
1524bc 
-}
1524bc 
-
1524bc 
-static WERROR self_sign_cert(TALLOC_CTX *ctx, hx509_context *hctx, hx509_request *req,
1524bc 
-				time_t lifetime, hx509_private_key *private_key,
1524bc 
-				hx509_cert *cert, DATA_BLOB *guidblob)
1524bc 
-{
1524bc 
-	SubjectPublicKeyInfo spki;
1524bc 
-	hx509_name subject = NULL;
1524bc 
-	hx509_ca_tbs tbs;
1524bc 
-	struct heim_bit_string uniqueid;
1524bc 
-	struct heim_integer serialnumber;
1524bc 
-	int ret, i;
1524bc 
-
1524bc 
-	uniqueid.data = talloc_memdup(ctx, guidblob->data, guidblob->length);
1524bc 
-	if (uniqueid.data == NULL) {
1524bc 
-		return WERR_NOT_ENOUGH_MEMORY;
1524bc 
-	}
1524bc 
-	/* uniqueid is a bit string in which each byte represent 1 bit (1 or 0)
1524bc 
-	 * so as 1 byte is 8 bits we need to provision 8 times more space as in the
1524bc 
-	 * blob
1524bc 
-	 */
1524bc 
-	uniqueid.length = 8 * guidblob->length;
1524bc 
-
1524bc 
-	serialnumber.data = talloc_array(ctx, uint8_t,
1524bc 
-					    guidblob->length);
1524bc 
-	if (serialnumber.data == NULL) {
1524bc 
-		talloc_free(uniqueid.data);
1524bc 
-		return WERR_NOT_ENOUGH_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* Native AD generates certificates with serialnumber in reversed notation */
1524bc 
-	for (i = 0; i < guidblob->length; i++) {
1524bc 
-		uint8_t *reversed = (uint8_t *)serialnumber.data;
1524bc 
-		uint8_t *uncrypt = guidblob->data;
1524bc 
-		reversed[i] = uncrypt[guidblob->length - 1 - i];
1524bc 
-	}
1524bc 
-	serialnumber.length = guidblob->length;
1524bc 
-	serialnumber.negative = 0;
1524bc 
-
1524bc 
-	memset(&spki, 0, sizeof(spki));
1524bc 
-
1524bc 
-	ret = hx509_request_get_name(*hctx, *req, &subject);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail_subject;
1524bc 
-	}
1524bc 
-	ret = hx509_request_get_SubjectPublicKeyInfo(*hctx, *req, &spki);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail_spki;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = hx509_ca_tbs_init(*hctx, &tbs;;
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail_tbs;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = hx509_ca_tbs_set_spki(*hctx, tbs, &spki);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail;
1524bc 
-	}
1524bc 
-	ret = hx509_ca_tbs_set_subject(*hctx, tbs, subject);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail;
1524bc 
-	}
1524bc 
-	ret = hx509_ca_tbs_set_notAfter_lifetime(*hctx, tbs, lifetime);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail;
1524bc 
-	}
1524bc 
-	ret = hx509_ca_tbs_set_unique(*hctx, tbs, &uniqueid, &uniqueid);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail;
1524bc 
-	}
1524bc 
-	ret = hx509_ca_tbs_set_serialnumber(*hctx, tbs, &serialnumber);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail;
1524bc 
-	}
1524bc 
-	ret = hx509_ca_sign_self(*hctx, tbs, *private_key, cert);
1524bc 
-	if (ret !=0) {
1524bc 
-		goto fail;
1524bc 
-	}
1524bc 
-	hx509_name_free(&subject);
1524bc 
-	free_SubjectPublicKeyInfo(&spki);
1524bc 
-	hx509_ca_tbs_free(&tbs;;
1524bc 
-
1524bc 
-	return WERR_OK;
1524bc 
-
1524bc 
-fail:
1524bc 
-	hx509_ca_tbs_free(&tbs;;
1524bc 
-fail_tbs:
1524bc 
-	free_SubjectPublicKeyInfo(&spki);
1524bc 
-fail_spki:
1524bc 
-	hx509_name_free(&subject);
1524bc 
-fail_subject:
1524bc 
-	talloc_free(uniqueid.data);
1524bc 
-	talloc_free(serialnumber.data);
1524bc 
-	return WERR_INTERNAL_ERROR;
1524bc 
-}
1524bc 
-
1524bc 
-static WERROR create_req(TALLOC_CTX *ctx, hx509_context *hctx, hx509_request *req,
1524bc 
-			 hx509_private_key *signer,RSA **rsa, const char *dn)
1524bc 
-{
1524bc 
-	int ret;
1524bc 
-	SubjectPublicKeyInfo key;
1524bc 
-
1524bc 
-	hx509_name name;
1524bc 
-	WERROR werr;
1524bc 
-
1524bc 
-	werr = create_heimdal_rsa_key(ctx, hctx, signer, rsa);
1524bc 
-	if (!W_ERROR_IS_OK(werr)) {
1524bc 
-		return werr;
1524bc 
-	}
1524bc 
-
1524bc 
-	hx509_request_init(*hctx, req);
1524bc 
-	ret = hx509_parse_name(*hctx, dn, &name);
1524bc 
-	if (ret != 0) {
1524bc 
-		RSA_free(*rsa);
1524bc 
-		hx509_private_key_free(signer);
1524bc 
-		hx509_request_free(req);
1524bc 
-		hx509_name_free(&name);
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = hx509_request_set_name(*hctx, *req, name);
1524bc 
-	if (ret != 0) {
1524bc 
-		RSA_free(*rsa);
1524bc 
-		hx509_private_key_free(signer);
1524bc 
-		hx509_request_free(req);
1524bc 
-		hx509_name_free(&name);
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-	hx509_name_free(&name);
1524bc 
-
1524bc 
-	ret = hx509_private_key2SPKI(*hctx, *signer, &key);
1524bc 
-	if (ret != 0) {
1524bc 
-		RSA_free(*rsa);
1524bc 
-		hx509_private_key_free(signer);
1524bc 
-		hx509_request_free(req);
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-	ret = hx509_request_set_SubjectPublicKeyInfo(*hctx, *req, &key);
1524bc 
-	if (ret != 0) {
1524bc 
-		RSA_free(*rsa);
1524bc 
-		hx509_private_key_free(signer);
1524bc 
-		free_SubjectPublicKeyInfo(&key);
1524bc 
-		hx509_request_free(req);
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	free_SubjectPublicKeyInfo(&key);
1524bc 
-
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-/* Return an error when we fail to generate a certificate */
1524bc 
-static WERROR generate_bkrp_cert(TALLOC_CTX *ctx, struct dcesrv_call_state *dce_call, struct ldb_context *ldb_ctx, const char *dn)
1524bc 
-{
1524bc 
-	heim_octet_string data;
1524bc 
-	WERROR werr;
1524bc 
-	RSA *rsa;
1524bc 
-	hx509_context hctx;
1524bc 
-	hx509_private_key pk;
1524bc 
-	hx509_request req;
1524bc 
-	hx509_cert cert;
1524bc 
-	DATA_BLOB blob;
1524bc 
-	DATA_BLOB blobkeypair;
1524bc 
-	DATA_BLOB *tmp;
1524bc 
-	int ret;
1524bc 
-	bool ok = true;
1524bc 
-	struct GUID guid = GUID_random();
1524bc 
-	NTSTATUS status;
1524bc 
-	char *secret_name;
1524bc 
-	struct bkrp_exported_RSA_key_pair keypair;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	uint32_t nb_seconds_validity = 3600 * 24 * 365;
1524bc 
-
1524bc 
-	DEBUG(6, ("Trying to generate a certificate\n"));
1524bc 
-	hx509_context_init(&hctx);
1524bc 
-	werr = create_req(ctx, &hctx, &req, &pk, &rsa, dn);
1524bc 
-	if (!W_ERROR_IS_OK(werr)) {
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return werr;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = GUID_to_ndr_blob(&guid, ctx, &blob;;
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		hx509_private_key_free(&pk;;
1524bc 
-		RSA_free(rsa);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	werr = self_sign_cert(ctx, &hctx, &req, nb_seconds_validity, &pk, &cert, &blob;;
1524bc 
-	if (!W_ERROR_IS_OK(werr)) {
1524bc 
-		hx509_private_key_free(&pk;;
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	ret = hx509_cert_binary(hctx, cert, &data);
1524bc 
-	if (ret !=0) {
1524bc 
-		hx509_cert_free(cert);
1524bc 
-		hx509_private_key_free(&pk;;
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	keypair.cert.data = talloc_memdup(ctx, data.data, data.length);
1524bc 
-	keypair.cert.length = data.length;
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * Heimdal's bignum are big endian and the
1524bc 
-	 * structure expect it to be in little endian
1524bc 
-	 * so we reverse the buffer to make it work
1524bc 
-	 */
1524bc 
-	tmp = reverse_and_get_blob(ctx, rsa->e);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.public_exponent = *tmp;
1524bc 
-		SMB_ASSERT(tmp->length <= 4);
1524bc 
-		/*
1524bc 
-		 * The value is now in little endian but if can happen that the length is
1524bc 
-		 * less than 4 bytes.
1524bc 
-		 * So if we have less than 4 bytes we pad with zeros so that it correctly
1524bc 
-		 * fit into the structure.
1524bc 
-		 */
1524bc 
-		if (tmp->length < 4) {
1524bc 
-			/*
1524bc 
-			 * We need the expo to fit 4 bytes
1524bc 
-			 */
1524bc 
-			keypair.public_exponent.data = talloc_zero_array(ctx, uint8_t, 4);
1524bc 
-			memcpy(keypair.public_exponent.data, tmp->data, tmp->length);
1524bc 
-			keypair.public_exponent.length = 4;
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp = reverse_and_get_blob(ctx,rsa->d);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.private_exponent = *tmp;
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp = reverse_and_get_blob(ctx,rsa->n);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.modulus = *tmp;
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp = reverse_and_get_blob(ctx,rsa->p);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.prime1 = *tmp;
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp = reverse_and_get_blob(ctx,rsa->q);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.prime2 = *tmp;
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp = reverse_and_get_blob(ctx,rsa->dmp1);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.exponent1 = *tmp;
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp = reverse_and_get_blob(ctx,rsa->dmq1);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.exponent2 = *tmp;
1524bc 
-	}
1524bc 
-
1524bc 
-	tmp = reverse_and_get_blob(ctx,rsa->iqmp);
1524bc 
-	if (tmp == NULL) {
1524bc 
-		ok = false;
1524bc 
-	} else {
1524bc 
-		keypair.coefficient = *tmp;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* One of the keypair allocation was wrong */
1524bc 
-	if (ok == false) {
1524bc 
-		der_free_octet_string(&data);
1524bc 
-		hx509_cert_free(cert);
1524bc 
-		hx509_private_key_free(&pk;;
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		RSA_free(rsa);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-	keypair.certificate_len = keypair.cert.length;
1524bc 
-	ndr_err = ndr_push_struct_blob(&blobkeypair, ctx, &keypair, (ndr_push_flags_fn_t)ndr_push_bkrp_exported_RSA_key_pair);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		der_free_octet_string(&data);
1524bc 
-		hx509_cert_free(cert);
1524bc 
-		hx509_private_key_free(&pk;;
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		RSA_free(rsa);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	secret_name = talloc_asprintf(ctx, "BCKUPKEY_%s", GUID_string(ctx, &guid));
1524bc 
-	if (secret_name == NULL) {
1524bc 
-		der_free_octet_string(&data);
1524bc 
-		hx509_cert_free(cert);
1524bc 
-		hx509_private_key_free(&pk;;
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		RSA_free(rsa);
1524bc 
-		return WERR_OUTOFMEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = set_lsa_secret(ctx, ldb_ctx, secret_name, &blobkeypair);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(2, ("Failed to save the secret %s\n", secret_name));
1524bc 
-	}
1524bc 
-	talloc_free(secret_name);
1524bc 
-
1524bc 
-	GUID_to_ndr_blob(&guid, ctx, &blob;;
1524bc 
-	status = set_lsa_secret(ctx, ldb_ctx, "BCKUPKEY_PREFERRED", &blob;;
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(2, ("Failed to save the secret BCKUPKEY_PREFERRED\n"));
1524bc 
-	}
1524bc 
-
1524bc 
-	der_free_octet_string(&data);
1524bc 
-	hx509_cert_free(cert);
1524bc 
-	hx509_private_key_free(&pk;;
1524bc 
-	hx509_context_free(&hctx);
1524bc 
-	RSA_free(rsa);
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-static WERROR bkrp_retrieve_client_wrap_key(struct dcesrv_call_state *dce_call, TALLOC_CTX *mem_ctx,
1524bc 
-					    struct bkrp_BackupKey *r, struct ldb_context *ldb_ctx)
1524bc 
-{
1524bc 
-	struct GUID guid;
1524bc 
-	char *guid_string;
1524bc 
-	DATA_BLOB lsa_secret;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	NTSTATUS status;
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * here we basicaly need to return our certificate
1524bc 
-	 * search for lsa secret BCKUPKEY_PREFERRED first
1524bc 
-	 */
1524bc 
-
1524bc 
-	status = get_lsa_secret(mem_ctx,
1524bc 
-				ldb_ctx,
1524bc 
-				"BCKUPKEY_PREFERRED",
1524bc 
-				&lsa_secret);
1524bc 
-	if (NT_STATUS_EQUAL(status, NT_STATUS_RESOURCE_NAME_NOT_FOUND)) {
1524bc 
-		/* Ok we can be in this case if there was no certs */
1524bc 
-		struct loadparm_context *lp_ctx = dce_call->conn->dce_ctx->lp_ctx;
1524bc 
-		char *dn = talloc_asprintf(mem_ctx, "CN=%s",
1524bc 
-					   lpcfg_realm(lp_ctx));
1524bc 
-
1524bc 
-		WERROR werr =  generate_bkrp_cert(mem_ctx, dce_call, ldb_ctx, dn);
1524bc 
-		if (!W_ERROR_IS_OK(werr)) {
1524bc 
-			return WERR_INVALID_PARAMETER;
1524bc 
-		}
1524bc 
-		status = get_lsa_secret(mem_ctx,
1524bc 
-					ldb_ctx,
1524bc 
-					"BCKUPKEY_PREFERRED",
1524bc 
-					&lsa_secret);
1524bc 
-
1524bc 
-		if (!NT_STATUS_IS_OK(status)) {
1524bc 
-			/* Ok we really don't manage to get this certs ...*/
1524bc 
-			DEBUG(2, ("Unable to locate BCKUPKEY_PREFERRED after cert generation\n"));
1524bc 
-			return WERR_FILE_NOT_FOUND;
1524bc 
-		}
1524bc 
-	} else if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (lsa_secret.length == 0) {
1524bc 
-		DEBUG(1, ("No secret in BCKUPKEY_PREFERRED, are we an undetected RODC?\n"));
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	} else {
1524bc 
-		char *cert_secret_name;
1524bc 
-
1524bc 
-		status = GUID_from_ndr_blob(&lsa_secret, &guid);
1524bc 
-		if (!NT_STATUS_IS_OK(status)) {
1524bc 
-			return WERR_FILE_NOT_FOUND;
1524bc 
-		}
1524bc 
-
1524bc 
-		guid_string = GUID_string(mem_ctx, &guid);
1524bc 
-		if (guid_string == NULL) {
1524bc 
-			/* We return file not found because the client
1524bc 
-			 * expect this error
1524bc 
-			 */
1524bc 
-			return WERR_FILE_NOT_FOUND;
1524bc 
-		}
1524bc 
-
1524bc 
-		cert_secret_name = talloc_asprintf(mem_ctx,
1524bc 
-							"BCKUPKEY_%s",
1524bc 
-							guid_string);
1524bc 
-		status = get_lsa_secret(mem_ctx,
1524bc 
-					ldb_ctx,
1524bc 
-					cert_secret_name,
1524bc 
-					&lsa_secret);
1524bc 
-		if (!NT_STATUS_IS_OK(status)) {
1524bc 
-			return WERR_FILE_NOT_FOUND;
1524bc 
-		}
1524bc 
-
1524bc 
-		if (lsa_secret.length != 0) {
1524bc 
-			struct bkrp_exported_RSA_key_pair keypair;
1524bc 
-			ndr_err = ndr_pull_struct_blob(&lsa_secret, mem_ctx, &keypair,
1524bc 
-					(ndr_pull_flags_fn_t)ndr_pull_bkrp_exported_RSA_key_pair);
1524bc 
-			if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-				return WERR_FILE_NOT_FOUND;
1524bc 
-			}
1524bc 
-			*(r->out.data_out_len) = keypair.cert.length;
1524bc 
-			*(r->out.data_out) = talloc_memdup(mem_ctx, keypair.cert.data, keypair.cert.length);
1524bc 
-			W_ERROR_HAVE_NO_MEMORY(*(r->out.data_out));
1524bc 
-			return WERR_OK;
1524bc 
-		} else {
1524bc 
-			DEBUG(1, ("No or broken secret called %s\n", cert_secret_name));
1524bc 
-			return WERR_INTERNAL_ERROR;
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	return WERR_NOT_SUPPORTED;
1524bc 
-}
1524bc 
-
1524bc 
-static WERROR generate_bkrp_server_wrap_key(TALLOC_CTX *ctx, struct ldb_context *ldb_ctx)
1524bc 
-{
1524bc 
-	struct GUID guid = GUID_random();
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	DATA_BLOB blob_wrap_key, guid_blob;
1524bc 
-	struct bkrp_dc_serverwrap_key wrap_key;
1524bc 
-	NTSTATUS status;
1524bc 
-	char *secret_name;
1524bc 
-	TALLOC_CTX *frame = talloc_stackframe();
1524bc 
-
1524bc 
-	generate_random_buffer(wrap_key.key, sizeof(wrap_key.key));
1524bc 
-
1524bc 
-	ndr_err = ndr_push_struct_blob(&blob_wrap_key, ctx, &wrap_key, (ndr_push_flags_fn_t)ndr_push_bkrp_dc_serverwrap_key);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		TALLOC_FREE(frame);
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	secret_name = talloc_asprintf(frame, "BCKUPKEY_%s", GUID_string(ctx, &guid));
1524bc 
-	if (secret_name == NULL) {
1524bc 
-		TALLOC_FREE(frame);
1524bc 
-		return WERR_NOT_ENOUGH_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = set_lsa_secret(frame, ldb_ctx, secret_name, &blob_wrap_key);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(2, ("Failed to save the secret %s\n", secret_name));
1524bc 
-		TALLOC_FREE(frame);
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = GUID_to_ndr_blob(&guid, frame, &guid_blob);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(2, ("Failed to save the secret %s\n", secret_name));
1524bc 
-		TALLOC_FREE(frame);
1524bc 
-	}
1524bc 
-
1524bc 
-	status = set_lsa_secret(frame, ldb_ctx, "BCKUPKEY_P", &guid_blob);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(2, ("Failed to save the secret %s\n", secret_name));
1524bc 
-		TALLOC_FREE(frame);
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	TALLOC_FREE(frame);
1524bc 
-
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Find the specified decryption keys from the LSA secrets store as
1524bc 
- * G$BCKUPKEY_keyGuidString.
1524bc 
- */
1524bc 
-
1524bc 
-static WERROR bkrp_do_retrieve_server_wrap_key(TALLOC_CTX *mem_ctx, struct ldb_context *ldb_ctx,
1524bc 
-					       struct bkrp_dc_serverwrap_key *server_key,
1524bc 
-					       struct GUID *guid)
1524bc 
-{
1524bc 
-	NTSTATUS status;
1524bc 
-	DATA_BLOB lsa_secret;
1524bc 
-	char *secret_name;
1524bc 
-	char *guid_string;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-
1524bc 
-	guid_string = GUID_string(mem_ctx, guid);
1524bc 
-	if (guid_string == NULL) {
1524bc 
-		/* We return file not found because the client
1524bc 
-		 * expect this error
1524bc 
-		 */
1524bc 
-		return WERR_FILE_NOT_FOUND;
1524bc 
-	}
1524bc 
-
1524bc 
-	secret_name = talloc_asprintf(mem_ctx, "BCKUPKEY_%s", guid_string);
1524bc 
-	if (secret_name == NULL) {
1524bc 
-		return WERR_NOT_ENOUGH_MEMORY;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = get_lsa_secret(mem_ctx, ldb_ctx, secret_name, &lsa_secret);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(10, ("Error while fetching secret %s\n", secret_name));
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-	if (lsa_secret.length == 0) {
1524bc 
-		/* RODC case, we do not have secrets locally */
1524bc 
-		DEBUG(1, ("Unable to fetch value for secret %s, are we an undetected RODC?\n",
1524bc 
-			  secret_name));
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-	ndr_err = ndr_pull_struct_blob(&lsa_secret, mem_ctx, server_key,
1524bc 
-				       (ndr_pull_flags_fn_t)ndr_pull_bkrp_dc_serverwrap_key);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		DEBUG(2, ("Unable to parse the ndr encoded server wrap key %s\n", secret_name));
1524bc 
-		return WERR_INVALID_DATA;
1524bc 
-	}
1524bc 
-
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Find the current, preferred ServerWrap Key by looking at
1524bc 
- * G$BCKUPKEY_P in the LSA secrets store.
1524bc 
- *
1524bc 
- * Then find the current decryption keys from the LSA secrets store as
1524bc 
- * G$BCKUPKEY_keyGuidString.
1524bc 
- */
1524bc 
-
1524bc 
-static WERROR bkrp_do_retrieve_default_server_wrap_key(TALLOC_CTX *mem_ctx,
1524bc 
-						       struct ldb_context *ldb_ctx,
1524bc 
-						       struct bkrp_dc_serverwrap_key *server_key,
1524bc 
-						       struct GUID *returned_guid)
1524bc 
-{
1524bc 
-	NTSTATUS status;
1524bc 
-	DATA_BLOB guid_binary;
1524bc 
-
1524bc 
-	status = get_lsa_secret(mem_ctx, ldb_ctx, "BCKUPKEY_P", &guid_binary);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		DEBUG(10, ("Error while fetching secret BCKUPKEY_P to find current GUID\n"));
1524bc 
-		return WERR_FILE_NOT_FOUND;
1524bc 
-	} else if (guid_binary.length == 0) {
1524bc 
-		/* RODC case, we do not have secrets locally */
1524bc 
-		DEBUG(1, ("Unable to fetch value for secret BCKUPKEY_P, are we an undetected RODC?\n"));
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = GUID_from_ndr_blob(&guid_binary, returned_guid);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		return WERR_FILE_NOT_FOUND;
1524bc 
-	}
1524bc 
-
1524bc 
-	return bkrp_do_retrieve_server_wrap_key(mem_ctx, ldb_ctx,
1524bc 
-						server_key, returned_guid);
1524bc 
-}
1524bc 
-
1524bc 
-static WERROR bkrp_server_wrap_decrypt_data(struct dcesrv_call_state *dce_call, TALLOC_CTX *mem_ctx,
1524bc 
-					    struct bkrp_BackupKey *r ,struct ldb_context *ldb_ctx)
1524bc 
-{
1524bc 
-	struct auth_session_info *session_info =
1524bc 
-		dcesrv_call_session_info(dce_call);
1524bc 
-	WERROR werr;
1524bc 
-	struct bkrp_server_side_wrapped decrypt_request;
1524bc 
-	DATA_BLOB sid_blob, encrypted_blob, symkey_blob;
1524bc 
-	DATA_BLOB blob;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct bkrp_dc_serverwrap_key server_key;
1524bc 
-	struct bkrp_rc4encryptedpayload rc4payload;
1524bc 
-	struct dom_sid *caller_sid;
1524bc 
-	uint8_t symkey[20]; /* SHA-1 hash len */
1524bc 
-	uint8_t mackey[20]; /* SHA-1 hash len */
1524bc 
-	uint8_t mac[20]; /* SHA-1 hash len */
1524bc 
-	unsigned int hash_len;
1524bc 
-	HMAC_CTX ctx;
1524bc 
-
1524bc 
-	blob.data = r->in.data_in;
1524bc 
-	blob.length = r->in.data_in_len;
1524bc 
-
1524bc 
-	if (r->in.data_in_len == 0 || r->in.data_in == NULL) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	ndr_err = ndr_pull_struct_blob_all(&blob, mem_ctx, &decrypt_request,
1524bc 
-					   (ndr_pull_flags_fn_t)ndr_pull_bkrp_server_side_wrapped);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (decrypt_request.magic != BACKUPKEY_SERVER_WRAP_VERSION) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	werr = bkrp_do_retrieve_server_wrap_key(mem_ctx, ldb_ctx, &server_key,
1524bc 
-						&decrypt_request.guid);
1524bc 
-	if (!W_ERROR_IS_OK(werr)) {
1524bc 
-		return werr;
1524bc 
-	}
1524bc 
-
1524bc 
-	dump_data_pw("server_key: \n", server_key.key, sizeof(server_key.key));
1524bc 
-
1524bc 
-	dump_data_pw("r2: \n", decrypt_request.r2, sizeof(decrypt_request.r2));
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This is *not* the leading 64 bytes, as indicated in MS-BKRP 3.1.4.1.1
1524bc 
-	 * BACKUPKEY_BACKUP_GUID, it really is the whole key
1524bc 
-	 */
1524bc 
-	HMAC(EVP_sha1(), server_key.key, sizeof(server_key.key),
1524bc 
-	     decrypt_request.r2, sizeof(decrypt_request.r2),
1524bc 
-	     symkey, &hash_len);
1524bc 
-
1524bc 
-	dump_data_pw("symkey: \n", symkey, hash_len);
1524bc 
-
1524bc 
-	/* rc4 decrypt sid and secret using sym key */
1524bc 
-	symkey_blob = data_blob_const(symkey, sizeof(symkey));
1524bc 
-
1524bc 
-	encrypted_blob = data_blob_const(decrypt_request.rc4encryptedpayload,
1524bc 
-					 decrypt_request.ciphertext_length);
1524bc 
-
1524bc 
-	arcfour_crypt_blob(encrypted_blob.data, encrypted_blob.length, &symkey_blob);
1524bc 
-
1524bc 
-	ndr_err = ndr_pull_struct_blob_all(&encrypted_blob, mem_ctx, &rc4payload,
1524bc 
-					   (ndr_pull_flags_fn_t)ndr_pull_bkrp_rc4encryptedpayload);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (decrypt_request.payload_length != rc4payload.secret_data.length) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	dump_data_pw("r3: \n", rc4payload.r3, sizeof(rc4payload.r3));
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This is *not* the leading 64 bytes, as indicated in MS-BKRP 3.1.4.1.1
1524bc 
-	 * BACKUPKEY_BACKUP_GUID, it really is the whole key
1524bc 
-	 */
1524bc 
-	HMAC(EVP_sha1(), server_key.key, sizeof(server_key.key),
1524bc 
-	     rc4payload.r3, sizeof(rc4payload.r3),
1524bc 
-	     mackey, &hash_len);
1524bc 
-
1524bc 
-	dump_data_pw("mackey: \n", mackey, sizeof(mackey));
1524bc 
-
1524bc 
-	ndr_err = ndr_push_struct_blob(&sid_blob, mem_ctx, &rc4payload.sid,
1524bc 
-				       (ndr_push_flags_fn_t)ndr_push_dom_sid);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	HMAC_CTX_init(&ctx;;
1524bc 
-	HMAC_Init_ex(&ctx, mackey, hash_len, EVP_sha1(), NULL);
1524bc 
-	/* SID field */
1524bc 
-	HMAC_Update(&ctx, sid_blob.data, sid_blob.length);
1524bc 
-	/* Secret field */
1524bc 
-	HMAC_Update(&ctx, rc4payload.secret_data.data, rc4payload.secret_data.length);
1524bc 
-	HMAC_Final(&ctx, mac, &hash_len);
1524bc 
-	HMAC_CTX_cleanup(&ctx;;
1524bc 
-
1524bc 
-	dump_data_pw("mac: \n", mac, sizeof(mac));
1524bc 
-	dump_data_pw("rc4payload.mac: \n", rc4payload.mac, sizeof(rc4payload.mac));
1524bc 
-
1524bc 
-	if (memcmp(mac, rc4payload.mac, sizeof(mac)) != 0) {
1524bc 
-		return WERR_INVALID_ACCESS;
1524bc 
-	}
1524bc 
-
1524bc 
-	caller_sid = &session_info->security_token->sids[PRIMARY_USER_SID_INDEX];
1524bc 
-
1524bc 
-	if (!dom_sid_equal(&rc4payload.sid, caller_sid)) {
1524bc 
-		return WERR_INVALID_ACCESS;
1524bc 
-	}
1524bc 
-
1524bc 
-	*(r->out.data_out) = rc4payload.secret_data.data;
1524bc 
-	*(r->out.data_out_len) = rc4payload.secret_data.length;
1524bc 
-
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * For BACKUPKEY_RESTORE_GUID we need to check the first 4 bytes to
1524bc 
- * determine what type of restore is wanted.
1524bc 
- *
1524bc 
- * See MS-BKRP 3.1.4.1.4 BACKUPKEY_RESTORE_GUID point 1.
1524bc 
- */
1524bc 
-
1524bc 
-static WERROR bkrp_generic_decrypt_data(struct dcesrv_call_state *dce_call, TALLOC_CTX *mem_ctx,
1524bc 
-					struct bkrp_BackupKey *r, struct ldb_context *ldb_ctx)
1524bc 
-{
1524bc 
-	if (r->in.data_in_len < 4 || r->in.data_in == NULL) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (IVAL(r->in.data_in, 0) == BACKUPKEY_SERVER_WRAP_VERSION) {
1524bc 
-		return bkrp_server_wrap_decrypt_data(dce_call, mem_ctx, r, ldb_ctx);
1524bc 
-	}
1524bc 
-
1524bc 
-	return bkrp_client_wrap_decrypt_data(dce_call, mem_ctx, r, ldb_ctx);
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * We have some data, such as saved website or IMAP passwords that the
1524bc 
- * client would like to put into the profile on-disk.  This needs to
1524bc 
- * be encrypted.  This version gives the server the data over the
1524bc 
- * network (protected only by the negotiated transport encryption),
1524bc 
- * and asks that it be encrypted and returned for long-term storage.
1524bc 
- *
1524bc 
- * The data is NOT stored in the LSA, but a key to encrypt the data
1524bc 
- * will be stored.  There is only one active encryption key per domain,
1524bc 
- * it is pointed at with G$BCKUPKEY_P in the LSA secrets store.
1524bc 
- *
1524bc 
- * The potentially multiple valid decryptiong keys (and the encryption
1524bc 
- * key) are in turn stored in the LSA secrets store as
1524bc 
- * G$BCKUPKEY_keyGuidString.
1524bc 
- *
1524bc 
- */
1524bc 
-
1524bc 
-static WERROR bkrp_server_wrap_encrypt_data(struct dcesrv_call_state *dce_call, TALLOC_CTX *mem_ctx,
1524bc 
-					    struct bkrp_BackupKey *r ,struct ldb_context *ldb_ctx)
1524bc 
-{
1524bc 
-	struct auth_session_info *session_info =
1524bc 
-		dcesrv_call_session_info(dce_call);
1524bc 
-	DATA_BLOB sid_blob, encrypted_blob, symkey_blob, server_wrapped_blob;
1524bc 
-	WERROR werr;
1524bc 
-	struct dom_sid *caller_sid;
1524bc 
-	uint8_t symkey[20]; /* SHA-1 hash len */
1524bc 
-	uint8_t mackey[20]; /* SHA-1 hash len */
1524bc 
-	unsigned int hash_len;
1524bc 
-	struct bkrp_rc4encryptedpayload rc4payload;
1524bc 
-	HMAC_CTX ctx;
1524bc 
-	struct bkrp_dc_serverwrap_key server_key;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct bkrp_server_side_wrapped server_side_wrapped;
1524bc 
-	struct GUID guid;
1524bc 
-
1524bc 
-	if (r->in.data_in_len == 0 || r->in.data_in == NULL) {
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	werr = bkrp_do_retrieve_default_server_wrap_key(mem_ctx,
1524bc 
-							ldb_ctx, &server_key,
1524bc 
-							&guid);
1524bc 
-
1524bc 
-	if (!W_ERROR_IS_OK(werr)) {
1524bc 
-		if (W_ERROR_EQUAL(werr, WERR_FILE_NOT_FOUND)) {
1524bc 
-			/* Generate the server wrap key since one wasn't found */
1524bc 
-			werr =  generate_bkrp_server_wrap_key(mem_ctx,
1524bc 
-							      ldb_ctx);
1524bc 
-			if (!W_ERROR_IS_OK(werr)) {
1524bc 
-				return WERR_INVALID_PARAMETER;
1524bc 
-			}
1524bc 
-			werr = bkrp_do_retrieve_default_server_wrap_key(mem_ctx,
1524bc 
-									ldb_ctx,
1524bc 
-									&server_key,
1524bc 
-									&guid);
1524bc 
-
1524bc 
-			if (W_ERROR_EQUAL(werr, WERR_FILE_NOT_FOUND)) {
1524bc 
-				/* Ok we really don't manage to get this secret ...*/
1524bc 
-				return WERR_FILE_NOT_FOUND;
1524bc 
-			}
1524bc 
-		} else {
1524bc 
-			/* In theory we should NEVER reach this point as it
1524bc 
-			   should only appear in a rodc server */
1524bc 
-			/* we do not have the real secret attribute */
1524bc 
-			return WERR_INVALID_PARAMETER;
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	caller_sid = &session_info->security_token->sids[PRIMARY_USER_SID_INDEX];
1524bc 
-
1524bc 
-	dump_data_pw("server_key: \n", server_key.key, sizeof(server_key.key));
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This is the key derivation step, so that the HMAC and RC4
1524bc 
-	 * operations over the user-supplied data are not able to
1524bc 
-	 * disclose the master key.  By using random data, the symkey
1524bc 
-	 * and mackey values are unique for this operation, and
1524bc 
-	 * discovering these (by reversing the RC4 over the
1524bc 
-	 * attacker-controlled data) does not return something able to
1524bc 
-	 * be used to decyrpt the encrypted data of other users
1524bc 
-	 */
1524bc 
-	generate_random_buffer(server_side_wrapped.r2, sizeof(server_side_wrapped.r2));
1524bc 
-
1524bc 
-	dump_data_pw("r2: \n", server_side_wrapped.r2, sizeof(server_side_wrapped.r2));
1524bc 
-
1524bc 
-	generate_random_buffer(rc4payload.r3, sizeof(rc4payload.r3));
1524bc 
-
1524bc 
-	dump_data_pw("r3: \n", rc4payload.r3, sizeof(rc4payload.r3));
1524bc 
-
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This is *not* the leading 64 bytes, as indicated in MS-BKRP 3.1.4.1.1
1524bc 
-	 * BACKUPKEY_BACKUP_GUID, it really is the whole key
1524bc 
-	 */
1524bc 
-	HMAC(EVP_sha1(), server_key.key, sizeof(server_key.key),
1524bc 
-	     server_side_wrapped.r2, sizeof(server_side_wrapped.r2),
1524bc 
-	     symkey, &hash_len);
1524bc 
-
1524bc 
-	dump_data_pw("symkey: \n", symkey, hash_len);
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This is *not* the leading 64 bytes, as indicated in MS-BKRP 3.1.4.1.1
1524bc 
-	 * BACKUPKEY_BACKUP_GUID, it really is the whole key
1524bc 
-	 */
1524bc 
-	HMAC(EVP_sha1(), server_key.key, sizeof(server_key.key),
1524bc 
-	     rc4payload.r3, sizeof(rc4payload.r3),
1524bc 
-	     mackey, &hash_len);
1524bc 
-
1524bc 
-	dump_data_pw("mackey: \n", mackey, sizeof(mackey));
1524bc 
-
1524bc 
-	ndr_err = ndr_push_struct_blob(&sid_blob, mem_ctx, caller_sid,
1524bc 
-				       (ndr_push_flags_fn_t)ndr_push_dom_sid);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	rc4payload.secret_data.data = r->in.data_in;
1524bc 
-	rc4payload.secret_data.length = r->in.data_in_len;
1524bc 
-
1524bc 
-	HMAC_CTX_init(&ctx;;
1524bc 
-	HMAC_Init_ex(&ctx, mackey, 20, EVP_sha1(), NULL);
1524bc 
-	/* SID field */
1524bc 
-	HMAC_Update(&ctx, sid_blob.data, sid_blob.length);
1524bc 
-	/* Secret field */
1524bc 
-	HMAC_Update(&ctx, rc4payload.secret_data.data, rc4payload.secret_data.length);
1524bc 
-	HMAC_Final(&ctx, rc4payload.mac, &hash_len);
1524bc 
-	HMAC_CTX_cleanup(&ctx;;
1524bc 
-
1524bc 
-	dump_data_pw("rc4payload.mac: \n", rc4payload.mac, sizeof(rc4payload.mac));
1524bc 
-
1524bc 
-	rc4payload.sid = *caller_sid;
1524bc 
-
1524bc 
-	ndr_err = ndr_push_struct_blob(&encrypted_blob, mem_ctx, &rc4payload,
1524bc 
-				       (ndr_push_flags_fn_t)ndr_push_bkrp_rc4encryptedpayload);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* rc4 encrypt sid and secret using sym key */
1524bc 
-	symkey_blob = data_blob_const(symkey, sizeof(symkey));
1524bc 
-	arcfour_crypt_blob(encrypted_blob.data, encrypted_blob.length, &symkey_blob);
1524bc 
-
1524bc 
-	/* create server wrap structure */
1524bc 
-
1524bc 
-	server_side_wrapped.payload_length = rc4payload.secret_data.length;
1524bc 
-	server_side_wrapped.ciphertext_length = encrypted_blob.length;
1524bc 
-	server_side_wrapped.guid = guid;
1524bc 
-	server_side_wrapped.rc4encryptedpayload = encrypted_blob.data;
1524bc 
-
1524bc 
-	ndr_err = ndr_push_struct_blob(&server_wrapped_blob, mem_ctx, &server_side_wrapped,
1524bc 
-				       (ndr_push_flags_fn_t)ndr_push_bkrp_server_side_wrapped);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return WERR_INTERNAL_ERROR;
1524bc 
-	}
1524bc 
-
1524bc 
-	*(r->out.data_out) = server_wrapped_blob.data;
1524bc 
-	*(r->out.data_out_len) = server_wrapped_blob.length;
1524bc 
-
1524bc 
-	return WERR_OK;
1524bc 
-}
1524bc 
-
1524bc 
-static WERROR dcesrv_bkrp_BackupKey(struct dcesrv_call_state *dce_call,
1524bc 
-				    TALLOC_CTX *mem_ctx, struct bkrp_BackupKey *r)
1524bc 
-{
1524bc 
-	WERROR error = WERR_INVALID_PARAMETER;
1524bc 
-	struct ldb_context *ldb_ctx;
1524bc 
-	bool is_rodc;
1524bc 
-	const char *addr = "unknown";
1524bc 
-	/* At which level we start to add more debug of what is done in the protocol */
1524bc 
-	const int debuglevel = 4;
1524bc 
-
1524bc 
-	if (DEBUGLVL(debuglevel)) {
1524bc 
-		const struct tsocket_address *remote_address;
1524bc 
-		remote_address = dcesrv_connection_get_remote_address(dce_call->conn);
1524bc 
-		if (tsocket_address_is_inet(remote_address, "ip")) {
1524bc 
-			addr = tsocket_address_inet_addr_string(remote_address, mem_ctx);
1524bc 
-			W_ERROR_HAVE_NO_MEMORY(addr);
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	if (lpcfg_server_role(dce_call->conn->dce_ctx->lp_ctx) != ROLE_ACTIVE_DIRECTORY_DC) {
1524bc 
-		return WERR_NOT_SUPPORTED;
1524bc 
-	}
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * Save the current remote session details so they can used by the
1524bc 
-	 * audit logging module. This allows the audit logging to report the
1524bc 
-	 * remote users details, rather than the system users details.
1524bc 
-	 */
1524bc 
-	ldb_ctx = dcesrv_samdb_connect_as_system(mem_ctx, dce_call);
1524bc 
-	if (samdb_rodc(ldb_ctx, &is_rodc) != LDB_SUCCESS) {
1524bc 
-		talloc_unlink(mem_ctx, ldb_ctx);
1524bc 
-		return WERR_INVALID_PARAMETER;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (!is_rodc) {
1524bc 
-		if(strncasecmp(GUID_string(mem_ctx, r->in.guidActionAgent),
1524bc 
-			BACKUPKEY_RESTORE_GUID, strlen(BACKUPKEY_RESTORE_GUID)) == 0) {
1524bc 
-			DEBUG(debuglevel, ("Client %s requested to decrypt a wrapped secret\n", addr));
1524bc 
-			error = bkrp_generic_decrypt_data(dce_call, mem_ctx, r, ldb_ctx);
1524bc 
-		}
1524bc 
-
1524bc 
-		if (strncasecmp(GUID_string(mem_ctx, r->in.guidActionAgent),
1524bc 
-			BACKUPKEY_RETRIEVE_BACKUP_KEY_GUID, strlen(BACKUPKEY_RETRIEVE_BACKUP_KEY_GUID)) == 0) {
1524bc 
-			DEBUG(debuglevel, ("Client %s requested certificate for client wrapped secret\n", addr));
1524bc 
-			error = bkrp_retrieve_client_wrap_key(dce_call, mem_ctx, r, ldb_ctx);
1524bc 
-		}
1524bc 
-
1524bc 
-		if (strncasecmp(GUID_string(mem_ctx, r->in.guidActionAgent),
1524bc 
-			BACKUPKEY_RESTORE_GUID_WIN2K, strlen(BACKUPKEY_RESTORE_GUID_WIN2K)) == 0) {
1524bc 
-			DEBUG(debuglevel, ("Client %s requested to decrypt a server side wrapped secret\n", addr));
1524bc 
-			error = bkrp_server_wrap_decrypt_data(dce_call, mem_ctx, r, ldb_ctx);
1524bc 
-		}
1524bc 
-
1524bc 
-		if (strncasecmp(GUID_string(mem_ctx, r->in.guidActionAgent),
1524bc 
-			BACKUPKEY_BACKUP_GUID, strlen(BACKUPKEY_BACKUP_GUID)) == 0) {
1524bc 
-			DEBUG(debuglevel, ("Client %s requested a server wrapped secret\n", addr));
1524bc 
-			error = bkrp_server_wrap_encrypt_data(dce_call, mem_ctx, r, ldb_ctx);
1524bc 
-		}
1524bc 
-	}
1524bc 
-	/*else: I am a RODC so I don't handle backup key protocol */
1524bc 
-
1524bc 
-	talloc_unlink(mem_ctx, ldb_ctx);
1524bc 
-	return error;
1524bc 
-}
1524bc 
-
1524bc 
-/* include the generated boilerplate */
1524bc 
-#include "librpc/gen_ndr/ndr_backupkey_s.c"
1524bc 
diff --git a/source4/rpc_server/wscript_build b/source4/rpc_server/wscript_build
1524bc 
index a7459d6b851..a5c1c1d9a2c 100644
1524bc 
--- a/source4/rpc_server/wscript_build
1524bc 
+++ b/source4/rpc_server/wscript_build
1524bc 
@@ -119,23 +119,13 @@ bld.SAMBA_MODULE('dcerpc_lsarpc',
1524bc 
 	)
1524bc
1524bc
1524bc 
-if (bld.CONFIG_SET('HAVE_GNUTLS_PRIVKEY_EXPORT_X509') and
1524bc 
-    bld.CONFIG_SET('HAVE_GNUTLS_X509_CRT_SET_SUBJECT_UNIQUE_ID')):
1524bc 
-	bld.SAMBA_MODULE('dcerpc_backupkey',
1524bc 
-		source='backupkey/dcesrv_backupkey.c ',
1524bc 
-		autoproto='backupkey/proto.h',
1524bc 
-		subsystem='dcerpc_server',
1524bc 
-		init_function='dcerpc_server_backupkey_init',
1524bc 
-		deps='samdb DCERPC_COMMON NDR_BACKUPKEY RPC_NDR_BACKUPKEY gnutls',
1524bc 
-		)
1524bc 
-else:
1524bc 
-	bld.SAMBA_MODULE('dcerpc_backupkey',
1524bc 
-		source='backupkey/dcesrv_backupkey_heimdal.c ',
1524bc 
-		autoproto='backupkey/proto.h',
1524bc 
-		subsystem='dcerpc_server',
1524bc 
-		init_function='dcerpc_server_backupkey_init',
1524bc 
-		deps='samdb DCERPC_COMMON NDR_BACKUPKEY RPC_NDR_BACKUPKEY krb5 hx509 hcrypto gnutls DCERPC_COMMON',
1524bc 
-		)
1524bc 
+bld.SAMBA_MODULE('dcerpc_backupkey',
1524bc 
+		 source='backupkey/dcesrv_backupkey.c ',
1524bc 
+		 autoproto='backupkey/proto.h',
1524bc 
+		 subsystem='dcerpc_server',
1524bc 
+		 init_function='dcerpc_server_backupkey_init',
1524bc 
+		 deps='samdb DCERPC_COMMON NDR_BACKUPKEY RPC_NDR_BACKUPKEY gnutls',
1524bc 
+		 )
1524bc
1524bc
1524bc 
 bld.SAMBA_MODULE('dcerpc_drsuapi',
1524bc 
diff --git a/source4/torture/rpc/backupkey_heimdal.c b/source4/torture/rpc/backupkey_heimdal.c
1524bc 
deleted file mode 100644
1524bc 
index 79b45e7aab8..00000000000
1524bc 
--- a/source4/torture/rpc/backupkey_heimdal.c
1524bc 
+++ /dev/null
1524bc 
@@ -1,2160 +0,0 @@
1524bc 
-/*
1524bc 
-   Unix SMB/CIFS implementation.
1524bc 
-   test suite for backupkey remote protocol rpc operations
1524bc 
-
1524bc 
-   Copyright (C) Matthieu Patou 2010-2011
1524bc 
-
1524bc 
-   This program is free software; you can redistribute it and/or modify
1524bc 
-   it under the terms of the GNU General Public License as published by
1524bc 
-   the Free Software Foundation; either version 3 of the License, or
1524bc 
-   (at your option) any later version.
1524bc 
-
1524bc 
-   This program is distributed in the hope that it will be useful,
1524bc 
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
1524bc 
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
1524bc 
-   GNU General Public License for more details.
1524bc 
-
1524bc 
-   You should have received a copy of the GNU General Public License
1524bc 
-   along with this program.  If not, see <http://www.gnu.org/licenses/>.
1524bc 
-*/
1524bc 
-
1524bc 
-#include "includes.h"
1524bc 
-#include "../libcli/security/security.h"
1524bc 
-
1524bc 
-#include "torture/rpc/torture_rpc.h"
1524bc 
-#include "torture/ndr/ndr.h"
1524bc 
-
1524bc 
-#include "librpc/gen_ndr/ndr_backupkey_c.h"
1524bc 
-#include "librpc/gen_ndr/ndr_backupkey.h"
1524bc 
-#include "librpc/gen_ndr/ndr_lsa_c.h"
1524bc 
-#include "librpc/gen_ndr/ndr_security.h"
1524bc 
-#include "lib/cmdline/popt_common.h"
1524bc 
-#include "libcli/auth/proto.h"
1524bc 
-#include "lib/crypto/arcfour.h"
1524bc 
-#include <com_err.h>
1524bc 
-#include <hcrypto/sha.h>
1524bc 
-#include <system/network.h>
1524bc 
-#include <hx509.h>
1524bc 
-#include <der.h>
1524bc 
-#include <hcrypto/rsa.h>
1524bc 
-#include <hcrypto/hmac.h>
1524bc 
-#include <hcrypto/sha.h>
1524bc 
-#include <hcrypto/evp.h>
1524bc 
-
1524bc 
-enum test_wrong {
1524bc 
-	WRONG_MAGIC,
1524bc 
-	WRONG_R2,
1524bc 
-	WRONG_PAYLOAD_LENGTH,
1524bc 
-	WRONG_CIPHERTEXT_LENGTH,
1524bc 
-	SHORT_PAYLOAD_LENGTH,
1524bc 
-	SHORT_CIPHERTEXT_LENGTH,
1524bc 
-	ZERO_PAYLOAD_LENGTH,
1524bc 
-	ZERO_CIPHERTEXT_LENGTH,
1524bc 
-	RIGHT_KEY,
1524bc 
-	WRONG_KEY,
1524bc 
-	WRONG_SID,
1524bc 
-};
1524bc 
-
1524bc 
-/* Our very special and valued secret */
1524bc 
-/* No need to put const as we cast the array in uint8_t
1524bc 
- * we will get a warning about the discared const
1524bc 
- */
1524bc 
-static const char secret[] = "tata yoyo mais qu'est ce qu'il y a sous ton grand chapeau ?";
1524bc 
-
1524bc 
-/* Get the SID from a user */
1524bc 
-static struct dom_sid *get_user_sid(struct torture_context *tctx,
1524bc 
-				    TALLOC_CTX *mem_ctx,
1524bc 
-				    const char *user)
1524bc 
-{
1524bc 
-	struct lsa_ObjectAttribute attr;
1524bc 
-	struct lsa_QosInfo qos;
1524bc 
-	struct lsa_OpenPolicy2 r;
1524bc 
-	struct lsa_Close c;
1524bc 
-	NTSTATUS status;
1524bc 
-	struct policy_handle handle;
1524bc 
-	struct lsa_LookupNames l;
1524bc 
-	struct lsa_TransSidArray sids;
1524bc 
-	struct lsa_RefDomainList *domains = NULL;
1524bc 
-	struct lsa_String lsa_name;
1524bc 
-	uint32_t count = 0;
1524bc 
-	struct dom_sid *result;
1524bc 
-	TALLOC_CTX *tmp_ctx;
1524bc 
-	struct dcerpc_pipe *p2;
1524bc 
-	struct dcerpc_binding_handle *b;
1524bc 
-
1524bc 
-	const char *domain = cli_credentials_get_domain(
1524bc 
-				popt_get_cmdline_credentials());
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				torture_rpc_connection(tctx, &p2, &ndr_table_lsarpc),
1524bc 
-				"could not open lsarpc pipe");
1524bc 
-	b = p2->binding_handle;
1524bc 
-
1524bc 
-	if (!(tmp_ctx = talloc_new(mem_ctx))) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-	qos.len = 0;
1524bc 
-	qos.impersonation_level = 2;
1524bc 
-	qos.context_mode = 1;
1524bc 
-	qos.effective_only = 0;
1524bc 
-
1524bc 
-	attr.len = 0;
1524bc 
-	attr.root_dir = NULL;
1524bc 
-	attr.object_name = NULL;
1524bc 
-	attr.attributes = 0;
1524bc 
-	attr.sec_desc = NULL;
1524bc 
-	attr.sec_qos = &qos;
1524bc 
-
1524bc 
-	r.in.system_name = "\\";
1524bc 
-	r.in.attr = &att;;
1524bc 
-	r.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1524bc 
-	r.out.handle = &handle;
1524bc 
-
1524bc 
-	status = dcerpc_lsa_OpenPolicy2_r(b, tmp_ctx, &r);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		torture_comment(tctx,
1524bc 
-				"OpenPolicy2 failed - %s\n",
1524bc 
-				nt_errstr(status));
1524bc 
-		talloc_free(tmp_ctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-	if (!NT_STATUS_IS_OK(r.out.result)) {
1524bc 
-		torture_comment(tctx,
1524bc 
-				"OpenPolicy2_ failed - %s\n",
1524bc 
-				nt_errstr(r.out.result));
1524bc 
-		talloc_free(tmp_ctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	sids.count = 0;
1524bc 
-	sids.sids = NULL;
1524bc 
-
1524bc 
-	lsa_name.string = talloc_asprintf(tmp_ctx, "%s\\%s", domain, user);
1524bc 
-
1524bc 
-	l.in.handle = &handle;
1524bc 
-	l.in.num_names = 1;
1524bc 
-	l.in.names = &lsa_name;
1524bc 
-	l.in.sids = &sid;;
1524bc 
-	l.in.level = 1;
1524bc 
-	l.in.count = &count;
1524bc 
-	l.out.count = &count;
1524bc 
-	l.out.sids = &sid;;
1524bc 
-	l.out.domains = &domains;
1524bc 
-
1524bc 
-	status = dcerpc_lsa_LookupNames_r(b, tmp_ctx, &l);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		torture_comment(tctx,
1524bc 
-				"LookupNames of %s failed - %s\n",
1524bc 
-				lsa_name.string,
1524bc 
-				nt_errstr(status));
1524bc 
-		talloc_free(tmp_ctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (domains->count == 0) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	result = dom_sid_add_rid(mem_ctx,
1524bc 
-				 domains->domains[0].sid,
1524bc 
-				 l.out.sids->sids[0].rid);
1524bc 
-	c.in.handle = &handle;
1524bc 
-	c.out.handle = &handle;
1524bc 
-
1524bc 
-	status = dcerpc_lsa_Close_r(b, tmp_ctx, &c);
1524bc 
-
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		torture_comment(tctx,
1524bc 
-				"dcerpc_lsa_Close failed - %s\n",
1524bc 
-				nt_errstr(status));
1524bc 
-		talloc_free(tmp_ctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (!NT_STATUS_IS_OK(c.out.result)) {
1524bc 
-		torture_comment(tctx,
1524bc 
-				"dcerpc_lsa_Close failed - %s\n",
1524bc 
-				nt_errstr(c.out.result));
1524bc 
-		talloc_free(tmp_ctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	talloc_free(tmp_ctx);
1524bc 
-	talloc_free(p2);
1524bc 
-
1524bc 
-	torture_comment(tctx, "Get_user_sid finished\n");
1524bc 
-	return result;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Create a bkrp_encrypted_secret_vX structure
1524bc 
- * the version depends on the version parameter
1524bc 
- * the structure is returned as a blob.
1524bc 
- * The broken flag is to indicate if we want
1524bc 
- * to create a non conform to specification structre
1524bc 
- */
1524bc 
-static DATA_BLOB *create_unencryptedsecret(TALLOC_CTX *mem_ctx,
1524bc 
-					   bool broken,
1524bc 
-					   int version)
1524bc 
-{
1524bc 
-	TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
1524bc 
-	DATA_BLOB *blob = talloc_zero(mem_ctx, DATA_BLOB);
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-
1524bc 
-	if (version == 2) {
1524bc 
-		struct bkrp_encrypted_secret_v2 unenc_sec;
1524bc 
-
1524bc 
-		ZERO_STRUCT(unenc_sec);
1524bc 
-		unenc_sec.secret_len = sizeof(secret);
1524bc 
-		unenc_sec.secret = discard_const_p(uint8_t, secret);
1524bc 
-		generate_random_buffer(unenc_sec.payload_key,
1524bc 
-				       sizeof(unenc_sec.payload_key));
1524bc 
-
1524bc 
-		ndr_err = ndr_push_struct_blob(blob, blob, &unenc_sec,
1524bc 
-				(ndr_push_flags_fn_t)ndr_push_bkrp_encrypted_secret_v2);
1524bc 
-		if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-			return NULL;
1524bc 
-		}
1524bc 
-
1524bc 
-		if (broken) {
1524bc 
-			/* The magic value is correctly set by the NDR push
1524bc 
-			 * but we want to test the behavior of the server
1524bc 
-			 * if a differrent value is provided
1524bc 
-			 */
1524bc 
-			((uint8_t*)blob->data)[4] = 79; /* A great year !!! */
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	if (version == 3) {
1524bc 
-		struct bkrp_encrypted_secret_v3 unenc_sec;
1524bc 
-
1524bc 
-		ZERO_STRUCT(unenc_sec);
1524bc 
-		unenc_sec.secret_len = sizeof(secret);
1524bc 
-		unenc_sec.secret = discard_const_p(uint8_t, secret);
1524bc 
-		generate_random_buffer(unenc_sec.payload_key,
1524bc 
-				       sizeof(unenc_sec.payload_key));
1524bc 
-
1524bc 
-		ndr_err = ndr_push_struct_blob(blob, blob, &unenc_sec,
1524bc 
-					(ndr_push_flags_fn_t)ndr_push_bkrp_encrypted_secret_v3);
1524bc 
-		if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-			return NULL;
1524bc 
-		}
1524bc 
-
1524bc 
-		if (broken) {
1524bc 
-			/*
1524bc 
-			 * The magic value is correctly set by the NDR push
1524bc 
-			 * but we want to test the behavior of the server
1524bc 
-			 * if a differrent value is provided
1524bc 
-			 */
1524bc 
-			((uint8_t*)blob->data)[4] = 79; /* A great year !!! */
1524bc 
-		}
1524bc 
-	}
1524bc 
-	talloc_free(tmp_ctx);
1524bc 
-	return blob;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Create an access check structure, the format depends on the version parameter.
1524bc 
- * If broken is specified then we create a stucture that isn't conform to the
1524bc 
- * specification.
1524bc 
- *
1524bc 
- * If the structure can't be created then NULL is returned.
1524bc 
- */
1524bc 
-static DATA_BLOB *create_access_check(struct torture_context *tctx,
1524bc 
-				      struct dcerpc_pipe *p,
1524bc 
-				      TALLOC_CTX *mem_ctx,
1524bc 
-				      const char *user,
1524bc 
-				      bool broken,
1524bc 
-				      uint32_t version)
1524bc 
-{
1524bc 
-	TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
1524bc 
-	DATA_BLOB *blob = talloc_zero(mem_ctx, DATA_BLOB);
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	const struct dom_sid *sid = get_user_sid(tctx, tmp_ctx, user);
1524bc 
-
1524bc 
-	if (sid == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (version == 2) {
1524bc 
-		struct bkrp_access_check_v2 access_struct;
1524bc 
-		struct sha sctx;
1524bc 
-		uint8_t nonce[32];
1524bc 
-
1524bc 
-		ZERO_STRUCT(access_struct);
1524bc 
-		generate_random_buffer(nonce, sizeof(nonce));
1524bc 
-		access_struct.nonce_len = sizeof(nonce);
1524bc 
-		access_struct.nonce = nonce;
1524bc 
-		access_struct.sid = *sid;
1524bc 
-
1524bc 
-		ndr_err = ndr_push_struct_blob(blob, blob, &access_struct,
1524bc 
-				(ndr_push_flags_fn_t)ndr_push_bkrp_access_check_v2);
1524bc 
-		if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-			return NULL;
1524bc 
-		}
1524bc 
-
1524bc 
-		/*
1524bc 
-		 * We pushed the whole structure including a null hash
1524bc 
-		 * but the hash need to be calculated only up to the hash field
1524bc 
-		 * so we reduce the size of what has to be calculated
1524bc 
-		 */
1524bc 
-
1524bc 
-		SHA1_Init(&sctx);
1524bc 
-		SHA1_Update(&sctx, blob->data,
1524bc 
-			    blob->length - sizeof(access_struct.hash));
1524bc 
-		SHA1_Final(blob->data + blob->length - sizeof(access_struct.hash),
1524bc 
-			   &sctx);
1524bc 
-
1524bc 
-		/* Altering the SHA */
1524bc 
-		if (broken) {
1524bc 
-			blob->data[blob->length - 1]++;
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	if (version == 3) {
1524bc 
-		struct bkrp_access_check_v3 access_struct;
1524bc 
-		struct hc_sha512state sctx;
1524bc 
-		uint8_t nonce[32];
1524bc 
-
1524bc 
-		ZERO_STRUCT(access_struct);
1524bc 
-		generate_random_buffer(nonce, sizeof(nonce));
1524bc 
-		access_struct.nonce_len = sizeof(nonce);
1524bc 
-		access_struct.nonce = nonce;
1524bc 
-		access_struct.sid = *sid;
1524bc 
-
1524bc 
-		ndr_err = ndr_push_struct_blob(blob, blob, &access_struct,
1524bc 
-				(ndr_push_flags_fn_t)ndr_push_bkrp_access_check_v3);
1524bc 
-		if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-			return NULL;
1524bc 
-		}
1524bc 
-
1524bc 
-		/*We pushed the whole structure including a null hash
1524bc 
-		* but the hash need to be calculated only up to the hash field
1524bc 
-		* so we reduce the size of what has to be calculated
1524bc 
-		*/
1524bc 
-
1524bc 
-		SHA512_Init(&sctx);
1524bc 
-		SHA512_Update(&sctx, blob->data,
1524bc 
-			      blob->length - sizeof(access_struct.hash));
1524bc 
-		SHA512_Final(blob->data + blob->length - sizeof(access_struct.hash),
1524bc 
-			     &sctx);
1524bc 
-
1524bc 
-		/* Altering the SHA */
1524bc 
-		if (broken) {
1524bc 
-			blob->data[blob->length -1]++;
1524bc 
-		}
1524bc 
-	}
1524bc 
-	talloc_free(tmp_ctx);
1524bc 
-	return blob;
1524bc 
-}
1524bc 
-
1524bc 
-
1524bc 
-static DATA_BLOB *encrypt_blob(struct torture_context *tctx,
1524bc 
-				    TALLOC_CTX *mem_ctx,
1524bc 
-				    DATA_BLOB *key,
1524bc 
-				    DATA_BLOB *iv,
1524bc 
-				    DATA_BLOB *to_encrypt,
1524bc 
-				    const AlgorithmIdentifier *alg)
1524bc 
-{
1524bc 
-	hx509_crypto crypto;
1524bc 
-	hx509_context hctx;
1524bc 
-	heim_octet_string ivos;
1524bc 
-	heim_octet_string *encrypted;
1524bc 
-	DATA_BLOB *blob = talloc_zero(mem_ctx, DATA_BLOB);
1524bc 
-	int res;
1524bc 
-
1524bc 
-	ivos.data = talloc_array(mem_ctx, uint8_t, iv->length);
1524bc 
-	ivos.length = iv->length;
1524bc 
-	memcpy(ivos.data, iv->data, iv->length);
1524bc 
-
1524bc 
-	hx509_context_init(&hctx);
1524bc 
-	res = hx509_crypto_init(hctx, NULL, &alg->algorithm, &crypto);
1524bc 
-	if (res) {
1524bc 
-		torture_comment(tctx,
1524bc 
-				"error while doing the init of the crypto object\n");
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-	res = hx509_crypto_set_key_data(crypto, key->data, key->length);
1524bc 
-	if (res) {
1524bc 
-		torture_comment(tctx,
1524bc 
-				"error while setting the key of the crypto object\n");
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	hx509_crypto_set_padding(crypto, HX509_CRYPTO_PADDING_NONE);
1524bc 
-	res = hx509_crypto_encrypt(crypto,
1524bc 
-				   to_encrypt->data,
1524bc 
-				   to_encrypt->length,
1524bc 
-				   &ivos,
1524bc 
-				   &encrypted);
1524bc 
-	if (res) {
1524bc 
-		torture_comment(tctx, "error while encrypting\n");
1524bc 
-		hx509_crypto_destroy(crypto);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	*blob = data_blob_talloc(blob, encrypted->data, encrypted->length);
1524bc 
-	der_free_octet_string(encrypted);
1524bc 
-	free(encrypted);
1524bc 
-	hx509_crypto_destroy(crypto);
1524bc 
-	hx509_context_free(&hctx);
1524bc 
-	return blob;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Certs used for this protocol have a GUID in the issuer_uniq_id field.
1524bc 
- * This function fetch it.
1524bc 
- */
1524bc 
-static struct GUID *get_cert_guid(struct torture_context *tctx,
1524bc 
-				  TALLOC_CTX *mem_ctx,
1524bc 
-				  uint8_t *cert_data,
1524bc 
-				  uint32_t cert_len)
1524bc 
-{
1524bc 
-	hx509_context hctx;
1524bc 
-	hx509_cert cert;
1524bc 
-	heim_bit_string issuer_unique_id;
1524bc 
-	DATA_BLOB data;
1524bc 
-	int hret;
1524bc 
-	uint32_t size;
1524bc 
-	struct GUID *guid = talloc_zero(mem_ctx, struct GUID);
1524bc 
-	NTSTATUS status;
1524bc 
-
1524bc 
-	hx509_context_init(&hctx);
1524bc 
-
1524bc 
-	hret = hx509_cert_init_data(hctx, cert_data, cert_len, &cert);
1524bc 
-	if (hret) {
1524bc 
-		torture_comment(tctx, "error while loading the cert\n");
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-	hret = hx509_cert_get_issuer_unique_id(hctx, cert, &issuer_unique_id);
1524bc 
-	if (hret) {
1524bc 
-		torture_comment(tctx, "error while getting the issuer_uniq_id\n");
1524bc 
-		hx509_cert_free(cert);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* The issuer_unique_id is a bit string,
1524bc 
-	 * which means that the real size has to be divided by 8
1524bc 
-	 * to have the number of bytes
1524bc 
-	 */
1524bc 
-	hx509_cert_free(cert);
1524bc 
-	hx509_context_free(&hctx);
1524bc 
-	size = issuer_unique_id.length / 8;
1524bc 
-	data = data_blob_const(issuer_unique_id.data, size);
1524bc 
-
1524bc 
-	status = GUID_from_data_blob(&data, guid);
1524bc 
-	der_free_bit_string(&issuer_unique_id);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	return guid;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Encrypt a blob with the private key of the certificate
1524bc 
- * passed as a parameter.
1524bc 
- */
1524bc 
-static DATA_BLOB *encrypt_blob_pk(struct torture_context *tctx,
1524bc 
-				  TALLOC_CTX *mem_ctx,
1524bc 
-				  uint8_t *cert_data,
1524bc 
-				  uint32_t cert_len,
1524bc 
-				  DATA_BLOB *to_encrypt)
1524bc 
-{
1524bc 
-	hx509_context hctx;
1524bc 
-	hx509_cert cert;
1524bc 
-	heim_octet_string secretdata;
1524bc 
-	heim_octet_string encrypted;
1524bc 
-	heim_oid encryption_oid;
1524bc 
-	DATA_BLOB *blob;
1524bc 
-	int hret;
1524bc 
-
1524bc 
-	hx509_context_init(&hctx);
1524bc 
-
1524bc 
-	hret = hx509_cert_init_data(hctx, cert_data, cert_len, &cert);
1524bc 
-	if (hret) {
1524bc 
-		torture_comment(tctx, "error while loading the cert\n");
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	secretdata.data = to_encrypt->data;
1524bc 
-	secretdata.length = to_encrypt->length;
1524bc 
-	hret = hx509_cert_public_encrypt(hctx, &secretdata,
1524bc 
-					  cert, &encryption_oid,
1524bc 
-					  &encrypted);
1524bc 
-	hx509_cert_free(cert);
1524bc 
-	hx509_context_free(&hctx);
1524bc 
-	if (hret) {
1524bc 
-		torture_comment(tctx, "error while encrypting\n");
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	blob = talloc_zero(mem_ctx, DATA_BLOB);
1524bc 
-	if (blob == NULL) {
1524bc 
-		der_free_oid(&encryption_oid);
1524bc 
-		der_free_octet_string(&encrypted);
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	*blob = data_blob_talloc(blob, encrypted.data, encrypted.length);
1524bc 
-	der_free_octet_string(&encrypted);
1524bc 
-	der_free_oid(&encryption_oid);
1524bc 
-	if (blob->data == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	return blob;
1524bc 
-}
1524bc 
-
1524bc 
-
1524bc 
-static struct bkrp_BackupKey *createRetrieveBackupKeyGUIDStruct(struct torture_context *tctx,
1524bc 
-				struct dcerpc_pipe *p, int version, DATA_BLOB *out)
1524bc 
-{
1524bc 
-	struct dcerpc_binding *binding;
1524bc 
-	struct bkrp_client_side_wrapped data;
1524bc 
-	struct GUID *g = talloc(tctx, struct GUID);
1524bc 
-	struct bkrp_BackupKey *r = talloc_zero(tctx, struct bkrp_BackupKey);
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	DATA_BLOB blob;
1524bc 
-	NTSTATUS status;
1524bc 
-
1524bc 
-	if (r == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	binding = dcerpc_binding_dup(tctx, p->binding);
1524bc 
-	if (binding == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = dcerpc_binding_set_flags(binding, DCERPC_SEAL|DCERPC_AUTH_SPNEGO, 0);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	ZERO_STRUCT(data);
1524bc 
-	status = GUID_from_string(BACKUPKEY_RETRIEVE_BACKUP_KEY_GUID, g);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	r->in.guidActionAgent = g;
1524bc 
-	data.version = version;
1524bc 
-	ndr_err = ndr_push_struct_blob(&blob, tctx, &data,
1524bc 
-			(ndr_push_flags_fn_t)ndr_push_bkrp_client_side_wrapped);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-	r->in.data_in = blob.data;
1524bc 
-	r->in.data_in_len = blob.length;
1524bc 
-	r->out.data_out = &out->data;
1524bc 
-	r->out.data_out_len = talloc(r, uint32_t);
1524bc 
-	return r;
1524bc 
-}
1524bc 
-
1524bc 
-static struct bkrp_BackupKey *createRestoreGUIDStruct(struct torture_context *tctx,
1524bc 
-				struct dcerpc_pipe *p, int version, DATA_BLOB *out,
1524bc 
-				bool norevert,
1524bc 
-				bool broken_version,
1524bc 
-				bool broken_user,
1524bc 
-				bool broken_magic_secret,
1524bc 
-				bool broken_magic_access,
1524bc 
-				bool broken_hash_access,
1524bc 
-				bool broken_cert_guid)
1524bc 
-{
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	struct bkrp_client_side_wrapped data;
1524bc 
-	DATA_BLOB *xs;
1524bc 
-	DATA_BLOB *sec;
1524bc 
-	DATA_BLOB *enc_sec = NULL;
1524bc 
-	DATA_BLOB *enc_xs = NULL;
1524bc 
-	DATA_BLOB *blob2;
1524bc 
-	DATA_BLOB enc_sec_reverted;
1524bc 
-	DATA_BLOB des3_key;
1524bc 
-	DATA_BLOB aes_key;
1524bc 
-	DATA_BLOB iv;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct GUID *guid, *g;
1524bc 
-	int t;
1524bc 
-	uint32_t size;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	NTSTATUS status;
1524bc 
-	const char *user;
1524bc 
-	struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, version, &out_blob);
1524bc 
-	if (r == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (broken_user) {
1524bc 
-		/* we take a fake user*/
1524bc 
-		user = "guest";
1524bc 
-	} else {
1524bc 
-		user = cli_credentials_get_username(
1524bc 
-				popt_get_cmdline_credentials());
1524bc 
-	}
1524bc 
-
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-					"Get GUID");
1524bc 
-	torture_assert_werr_ok(tctx, r->out.result,
1524bc 
-			       "Get GUID");
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * We have to set it outside of the function createRetrieveBackupKeyGUIDStruct
1524bc 
-	 * the len of the blob, this is due to the fact that they don't have the
1524bc 
-	 * same size (one is 32bits the other 64bits)
1524bc 
-	 */
1524bc 
-	out_blob.length = *r->out.data_out_len;
1524bc 
-
1524bc 
-	sec = create_unencryptedsecret(tctx, broken_magic_secret, version);
1524bc 
-	if (sec == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	xs = create_access_check(tctx, p, tctx, user, broken_hash_access, version);
1524bc 
-	if (xs == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (broken_magic_access){
1524bc 
-		/* The start of the access_check structure contains the
1524bc 
-		 * GUID of the certificate
1524bc 
-		 */
1524bc 
-		xs->data[0]++;
1524bc 
-	}
1524bc 
-
1524bc 
-	enc_sec = encrypt_blob_pk(tctx, tctx, out_blob.data, out_blob.length, sec);
1524bc 
-	if (!enc_sec) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-	enc_sec_reverted.data = talloc_array(tctx, uint8_t, enc_sec->length);
1524bc 
-	if (enc_sec_reverted.data == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-	enc_sec_reverted.length = enc_sec->length;
1524bc 
-
1524bc 
-	/*
1524bc 
-	* We DO NOT revert the array on purpose it's in order to check that
1524bc 
-	* when the server is not able to decrypt then it answer the correct error
1524bc 
-	*/
1524bc 
-	if (norevert) {
1524bc 
-		for(t=0; t< enc_sec->length; t++) {
1524bc 
-			enc_sec_reverted.data[t] = ((uint8_t*)enc_sec->data)[t];
1524bc 
-		}
1524bc 
-	} else {
1524bc 
-		for(t=0; t< enc_sec->length; t++) {
1524bc 
-			enc_sec_reverted.data[t] = ((uint8_t*)enc_sec->data)[enc_sec->length - t -1];
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	size = sec->length;
1524bc 
-	if (version ==2) {
1524bc 
-		const AlgorithmIdentifier *alg = hx509_crypto_des_rsdi_ede3_cbc();
1524bc 
-		iv.data = sec->data+(size - 8);
1524bc 
-		iv.length = 8;
1524bc 
-
1524bc 
-		des3_key.data = sec->data+(size - 32);
1524bc 
-		des3_key.length = 24;
1524bc 
-
1524bc 
-		enc_xs = encrypt_blob(tctx, tctx, &des3_key, &iv, xs, alg);
1524bc 
-	}
1524bc 
-	if (version == 3) {
1524bc 
-		const AlgorithmIdentifier *alg = hx509_crypto_aes256_cbc();
1524bc 
-		iv.data = sec->data+(size-16);
1524bc 
-		iv.length = 16;
1524bc 
-
1524bc 
-		aes_key.data = sec->data+(size-48);
1524bc 
-		aes_key.length = 32;
1524bc 
-
1524bc 
-		enc_xs = encrypt_blob(tctx, tctx, &aes_key, &iv, xs, alg);
1524bc 
-	}
1524bc 
-
1524bc 
-	if (!enc_xs) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* To cope with the fact that heimdal do padding at the end for the moment */
1524bc 
-	enc_xs->length = xs->length;
1524bc 
-
1524bc 
-	guid = get_cert_guid(tctx, tctx, out_blob.data, out_blob.length);
1524bc 
-	if (guid == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (broken_version) {
1524bc 
-		data.version = 1;
1524bc 
-	} else {
1524bc 
-		data.version = version;
1524bc 
-	}
1524bc 
-
1524bc 
-	data.guid = *guid;
1524bc 
-	data.encrypted_secret = enc_sec_reverted.data;
1524bc 
-	data.access_check = enc_xs->data;
1524bc 
-	data.encrypted_secret_len = enc_sec->length;
1524bc 
-	data.access_check_len = enc_xs->length;
1524bc 
-
1524bc 
-	/* We want the blob to persist after this function so we don't
1524bc 
-	 * allocate it in the stack
1524bc 
-	 */
1524bc 
-	blob2 = talloc(tctx, DATA_BLOB);
1524bc 
-	if (blob2 == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	ndr_err = ndr_push_struct_blob(blob2, tctx, &data,
1524bc 
-			(ndr_push_flags_fn_t)ndr_push_bkrp_client_side_wrapped);
1524bc 
-	if (!NDR_ERR_CODE_IS_SUCCESS(ndr_err)) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (broken_cert_guid) {
1524bc 
-		blob2->data[12]++;
1524bc 
-	}
1524bc 
-
1524bc 
-	ZERO_STRUCT(*r);
1524bc 
-
1524bc 
-	g = talloc(tctx, struct GUID);
1524bc 
-	if (g == NULL) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	status = GUID_from_string(BACKUPKEY_RESTORE_GUID, g);
1524bc 
-	if (!NT_STATUS_IS_OK(status)) {
1524bc 
-		return NULL;
1524bc 
-	}
1524bc 
-
1524bc 
-	r->in.guidActionAgent = g;
1524bc 
-	r->in.data_in = blob2->data;
1524bc 
-	r->in.data_in_len = blob2->length;
1524bc 
-	r->in.param = 0;
1524bc 
-	r->out.data_out = &(out->data);
1524bc 
-	r->out.data_out_len = talloc(r, uint32_t);
1524bc 
-	return r;
1524bc 
-}
1524bc 
-
1524bc 
-/* Check that we are able to receive the certificate of the DCs
1524bc 
- * used for client wrap version of the backup key protocol
1524bc 
- */
1524bc 
-static bool test_RetrieveBackupKeyGUID(struct torture_context *tctx,
1524bc 
-					struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	if (r == NULL) {
1524bc 
-		return false;
1524bc 
-	}
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		torture_assert_ntstatus_ok(tctx,
1524bc 
-				dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-				"Get GUID");
1524bc 
-
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		torture_assert_werr_equal(tctx,
1524bc 
-						r->out.result,
1524bc 
-						WERR_OK,
1524bc 
-						"Wrong dce/rpc error code");
1524bc 
-	} else {
1524bc 
-		torture_assert_ntstatus_equal(tctx,
1524bc 
-						dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-						NT_STATUS_ACCESS_DENIED,
1524bc 
-						"Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-/* Test to check the failure to recover a secret because the
1524bc 
- * secret blob is not reversed
1524bc 
- */
1524bc 
-static bool test_RestoreGUID_ko(struct torture_context *tctx,
1524bc 
-				struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 2, &out_blob,
1524bc 
-					true, false, false, false, false, false, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 0, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		if (!W_ERROR_EQUAL(r->out.result, WERR_INVALID_PARAMETER)) {
1524bc 
-			torture_assert_werr_equal(tctx, r->out.result,
1524bc 
-						  WERR_INVALID_DATA,
1524bc 
-						  "Wrong error code");
1524bc 
-		}
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_wrongversion(struct torture_context *tctx,
1524bc 
-					  struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 2, &out_blob,
1524bc 
-					false, true, false, false, false, false, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 0, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_INVALID_PARAMETER, "Wrong error code on wrong version");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_wronguser(struct torture_context *tctx,
1524bc 
-				       struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 2, &out_blob,
1524bc 
-					false, false, true, false, false, false, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 0, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_INVALID_ACCESS, "Restore GUID");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_v3(struct torture_context *tctx,
1524bc 
-				struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 3, &out_blob,
1524bc 
-					false, false, false, false, false, false, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 1, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_OK, "Restore GUID");
1524bc 
-		torture_assert_str_equal(tctx, (char*)resp.secret.data, secret, "Wrong secret");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID(struct torture_context *tctx,
1524bc 
-			     struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 2, &out_blob,
1524bc 
-					false, false, false, false, false, false, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_OK, "Restore GUID");
1524bc 
-		torture_assert_ndr_err_equal(tctx,
1524bc 
-					     ndr_pull_struct_blob(&out_blob, tctx, &resp,
1524bc 
-								(ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped),
1524bc 
-					     NDR_ERR_SUCCESS,
1524bc 
-					     "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		torture_assert_str_equal(tctx, (char*)resp.secret.data, secret, "Wrong secret");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_badmagiconsecret(struct torture_context *tctx,
1524bc 
-					      struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 3, &out_blob,
1524bc 
-					false, false, false, true, false, false, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 0, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_INVALID_DATA, "Wrong error code while providing bad magic in secret");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_emptyrequest(struct torture_context *tctx,
1524bc 
-					  struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 3, &out_blob,
1524bc 
-					false, false, false, true, false, false, true);
1524bc 
-
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		r->in.data_in = talloc(tctx, uint8_t);
1524bc 
-		r->in.data_in_len = 0;
1524bc 
-		r->in.param = 0;
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_INVALID_PARAMETER, "Bad error code on wrong has in access check");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_badcertguid(struct torture_context *tctx,
1524bc 
-					 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 3, &out_blob,
1524bc 
-					false, false, false, false, false, false, true);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct() failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 0, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-
1524bc 
-		/*
1524bc 
-		 * Windows 2012R2 has, presumably, a programming error
1524bc 
-		 * returning an NTSTATUS code on this interface
1524bc 
-		 */
1524bc 
-		if (W_ERROR_V(r->out.result) != NT_STATUS_V(NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
1524bc 
-			torture_assert_werr_equal(tctx, r->out.result, WERR_INVALID_DATA, "Bad error code on wrong has in access check");
1524bc 
-		}
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_badmagicaccesscheck(struct torture_context *tctx,
1524bc 
-						 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 2, &out_blob,
1524bc 
-					false, false, false, false, true, false, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 0, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_INVALID_DATA, "Bad error code on wrong has in access check");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_RestoreGUID_badhashaccesscheck(struct torture_context *tctx,
1524bc 
-						struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_client_side_unwrapped resp;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		struct bkrp_BackupKey *r = createRestoreGUIDStruct(tctx, p, 2, &out_blob,
1524bc 
-					false, false, false, false, false, true, false);
1524bc 
-		torture_assert(tctx, r != NULL, "createRestoreGUIDStruct failed");
1524bc 
-		torture_assert_ntstatus_ok(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r), "Restore GUID");
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-		ndr_err = ndr_pull_struct_blob(&out_blob, tctx, &resp, (ndr_pull_flags_fn_t)ndr_pull_bkrp_client_side_unwrapped);
1524bc 
-		torture_assert_int_equal(tctx, NDR_ERR_CODE_IS_SUCCESS(ndr_err), 0, "Unable to unmarshall bkrp_client_side_unwrapped");
1524bc 
-		torture_assert_werr_equal(tctx, r->out.result, WERR_INVALID_DATA, "Bad error code on wrong has in access check");
1524bc 
-	} else {
1524bc 
-		struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-		torture_assert_ntstatus_equal(tctx, dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-			NT_STATUS_ACCESS_DENIED, "Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-/*
1524bc 
- * Check that the RSA modulus in the certificate of the DCs has 2048 bits.
1524bc 
- */
1524bc 
-static bool test_RetrieveBackupKeyGUID_2048bits(struct torture_context *tctx,
1524bc 
-					struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	DATA_BLOB out_blob;
1524bc 
-	struct bkrp_BackupKey *r = createRetrieveBackupKeyGUIDStruct(tctx, p, 2, &out_blob);
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-
1524bc 
-	hx509_context hctx;
1524bc 
-	int hret;
1524bc 
-	hx509_cert cert;
1524bc 
-	SubjectPublicKeyInfo spki;
1524bc 
-	RSA *rsa;
1524bc 
-	int RSA_returned_bits;
1524bc 
-
1524bc 
-	torture_assert(tctx, r != NULL, "createRetrieveBackupKeyGUIDStruct failed");
1524bc 
-
1524bc 
-	hx509_context_init(&hctx);
1524bc 
-
1524bc 
-	if (r == NULL) {
1524bc 
-		return false;
1524bc 
-	}
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		const unsigned char *spki_spk_data;
1524bc 
-		torture_assert_ntstatus_ok(tctx,
1524bc 
-				dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-				"Get GUID");
1524bc 
-
1524bc 
-		torture_assert_werr_ok(tctx, r->out.result,
1524bc 
-				       "Get GUID");
1524bc 
-
1524bc 
-		out_blob.length = *r->out.data_out_len;
1524bc 
-
1524bc 
-		hret = hx509_cert_init_data(hctx, out_blob.data, out_blob.length, &cert);
1524bc 
-		torture_assert_int_equal(tctx, hret, 0, "hx509_cert_init_data failed");
1524bc 
-
1524bc 
-		hret = hx509_cert_get_SPKI(hctx, cert , &spki);
1524bc 
-		torture_assert_int_equal(tctx, hret, 0, "hx509_cert_get_SPKI failed");
1524bc 
-
1524bc 
-		/* We must take a copy, as d2i_RSAPublicKey *changes* the input parameter */
1524bc 
-		spki_spk_data = spki.subjectPublicKey.data;
1524bc 
-		rsa = d2i_RSAPublicKey(NULL, &spki_spk_data, spki.subjectPublicKey.length / 8);
1524bc 
-		torture_assert_int_equal(tctx, rsa != NULL, 1, "d2i_RSAPublicKey failed");
1524bc 
-
1524bc 
-		RSA_returned_bits = BN_num_bits(rsa->n);
1524bc 
-		torture_assert_int_equal(tctx,
1524bc 
-						RSA_returned_bits,
1524bc 
-						2048,
1524bc 
-						"RSA Key doesn't have 2048 bits");
1524bc 
-
1524bc 
-		RSA_free(rsa);
1524bc 
-
1524bc 
-		/*
1524bc 
-		 * Because we prevented spki from being changed above,
1524bc 
-		 * we can now safely call this to free it
1524bc 
-		 */
1524bc 
-		free_SubjectPublicKeyInfo(&spki);
1524bc 
-		hx509_cert_free(cert);
1524bc 
-		hx509_context_free(&hctx);
1524bc 
-
1524bc 
-	} else {
1524bc 
-		torture_assert_ntstatus_equal(tctx,
1524bc 
-						dcerpc_bkrp_BackupKey_r(b, tctx, r),
1524bc 
-						NT_STATUS_ACCESS_DENIED,
1524bc 
-						"Get GUID");
1524bc 
-	}
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_encrypt_decrypt(struct torture_context *tctx,
1524bc 
-					    struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct bkrp_BackupKey r;
1524bc 
-	struct GUID guid;
1524bc 
-	DATA_BLOB plaintext = data_blob_const(secret, sizeof(secret));
1524bc 
-	DATA_BLOB encrypted;
1524bc 
-	uint32_t enclen;
1524bc 
-	DATA_BLOB decrypted;
1524bc 
-	uint32_t declen;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-	ZERO_STRUCT(r);
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	/* Encrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_BACKUP_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = plaintext.data;
1524bc 
-	r.in.data_in_len = plaintext.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &encrypted.data;
1524bc 
-	r.out.data_out_len = &enclen;
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		torture_assert_ntstatus_ok(tctx,
1524bc 
-					   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					   "encrypt");
1524bc 
-	} else {
1524bc 
-		torture_assert_ntstatus_equal(tctx,
1524bc 
-					      dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					      NT_STATUS_ACCESS_DENIED,
1524bc 
-					      "encrypt");
1524bc 
-		return true;
1524bc 
-	}
1524bc 
-	torture_assert_werr_ok(tctx,
1524bc 
-			       r.out.result,
1524bc 
-			       "encrypt");
1524bc 
-	encrypted.length = *r.out.data_out_len;
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = encrypted.data;
1524bc 
-	r.in.data_in_len = encrypted.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_ok(tctx,
1524bc 
-			       r.out.result,
1524bc 
-			       "decrypt");
1524bc 
-	decrypted.length = *r.out.data_out_len;
1524bc 
-
1524bc 
-	/* Compare */
1524bc 
-	torture_assert_data_blob_equal(tctx, plaintext, decrypted, "Decrypt failed");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID_WIN2K, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = encrypted.data;
1524bc 
-	r.in.data_in_len = encrypted.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_ok(tctx,
1524bc 
-			       r.out.result,
1524bc 
-			       "decrypt");
1524bc 
-	decrypted.length = *r.out.data_out_len;
1524bc 
-
1524bc 
-	/* Compare */
1524bc 
-	torture_assert_data_blob_equal(tctx, plaintext, decrypted, "Decrypt failed");
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_wrong_keyGUID(struct torture_context *tctx,
1524bc 
-						  struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct bkrp_BackupKey r;
1524bc 
-	struct GUID guid;
1524bc 
-	DATA_BLOB plaintext = data_blob_const(secret, sizeof(secret));
1524bc 
-	DATA_BLOB encrypted;
1524bc 
-	uint32_t enclen;
1524bc 
-	DATA_BLOB decrypted;
1524bc 
-	uint32_t declen;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct bkrp_server_side_wrapped server_side_wrapped;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-	ZERO_STRUCT(r);
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	/* Encrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_BACKUP_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = plaintext.data;
1524bc 
-	r.in.data_in_len = plaintext.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &encrypted.data;
1524bc 
-	r.out.data_out_len = &enclen;
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		torture_assert_ntstatus_ok(tctx,
1524bc 
-					   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					   "encrypt");
1524bc 
-	} else {
1524bc 
-		torture_assert_ntstatus_equal(tctx,
1524bc 
-					      dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					      NT_STATUS_ACCESS_DENIED,
1524bc 
-					      "encrypt");
1524bc 
-		return true;
1524bc 
-	}
1524bc 
-	torture_assert_werr_ok(tctx,
1524bc 
-			       r.out.result,
1524bc 
-			       "encrypt");
1524bc 
-	encrypted.length = *r.out.data_out_len;
1524bc 
-
1524bc 
-	ndr_err = ndr_pull_struct_blob(&encrypted, tctx, &server_side_wrapped,
1524bc 
-				       (ndr_pull_flags_fn_t)ndr_pull_bkrp_server_side_wrapped);
1524bc 
-	torture_assert_ndr_err_equal(tctx, ndr_err, NDR_ERR_SUCCESS, "pull of server_side_wrapped");
1524bc 
-
1524bc 
-	/* Change the GUID */
1524bc 
-	server_side_wrapped.guid = GUID_random();
1524bc 
-
1524bc 
-	ndr_err = ndr_push_struct_blob(&encrypted, tctx, &server_side_wrapped,
1524bc 
-				       (ndr_push_flags_fn_t)ndr_push_bkrp_server_side_wrapped);
1524bc 
-	torture_assert_ndr_err_equal(tctx, ndr_err, NDR_ERR_SUCCESS, "push of server_side_wrapped");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = encrypted.data;
1524bc 
-	r.in.data_in_len = encrypted.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_DATA,
1524bc 
-				  "decrypt should fail with WERR_INVALID_DATA");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID_WIN2K, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = encrypted.data;
1524bc 
-	r.in.data_in_len = encrypted.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_DATA,
1524bc 
-				  "decrypt should fail with WERR_INVALID_DATA");
1524bc 
-
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_empty_request(struct torture_context *tctx,
1524bc 
-						 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct bkrp_BackupKey r;
1524bc 
-	struct GUID guid;
1524bc 
-	DATA_BLOB decrypted;
1524bc 
-	uint32_t declen;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	uint8_t short_request[4] = { 1, 0, 0, 0 };
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-	ZERO_STRUCT(r);
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = short_request;
1524bc 
-	r.in.data_in_len = 0;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		torture_assert_ntstatus_ok(tctx,
1524bc 
-					   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					   "encrypt");
1524bc 
-	} else {
1524bc 
-		torture_assert_ntstatus_equal(tctx,
1524bc 
-					      dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					      NT_STATUS_ACCESS_DENIED,
1524bc 
-					      "encrypt");
1524bc 
-		return true;
1524bc 
-	}
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_PARAMETER,
1524bc 
-				  "decrypt should fail with WERR_INVALID_PARAMETER");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID_WIN2K, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = short_request;
1524bc 
-	r.in.data_in_len = 0;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_PARAMETER,
1524bc 
-				  "decrypt should fail with WERR_INVALID_PARAMETER");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = NULL;
1524bc 
-	r.in.data_in_len = 0;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_equal(tctx,
1524bc 
-				      dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				      NT_STATUS_INVALID_PARAMETER_MIX,
1524bc 
-				      "decrypt");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID_WIN2K, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = NULL;
1524bc 
-	r.in.data_in_len = 0;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_equal(tctx,
1524bc 
-				      dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				      NT_STATUS_INVALID_PARAMETER_MIX,
1524bc 
-				      "decrypt");
1524bc 
-
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_short_request(struct torture_context *tctx,
1524bc 
-						 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	struct bkrp_BackupKey r;
1524bc 
-	struct GUID guid;
1524bc 
-	DATA_BLOB decrypted;
1524bc 
-	uint32_t declen;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	uint8_t short_request[4] = { 1, 0, 0, 0 };
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-	ZERO_STRUCT(r);
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = short_request;
1524bc 
-	r.in.data_in_len = 4;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		torture_assert_ntstatus_ok(tctx,
1524bc 
-					   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					   "encrypt");
1524bc 
-	} else {
1524bc 
-		torture_assert_ntstatus_equal(tctx,
1524bc 
-					      dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					      NT_STATUS_ACCESS_DENIED,
1524bc 
-					      "encrypt");
1524bc 
-		return true;
1524bc 
-	}
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_PARAMETER,
1524bc 
-				  "decrypt should fail with WERR_INVALID_PARAMETER");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID_WIN2K, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = short_request;
1524bc 
-	r.in.data_in_len = 4;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_PARAMETER,
1524bc 
-				  "decrypt should fail with WERR_INVALID_PARAMETER");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = short_request;
1524bc 
-	r.in.data_in_len = 1;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_PARAMETER,
1524bc 
-				  "decrypt should fail with WERR_INVALID_PARAMETER");
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID_WIN2K, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = short_request;
1524bc 
-	r.in.data_in_len = 1;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-	torture_assert_werr_equal(tctx,
1524bc 
-				  r.out.result,
1524bc 
-				  WERR_INVALID_PARAMETER,
1524bc 
-				  "decrypt should fail with WERR_INVALID_PARAMETER");
1524bc 
-
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_encrypt_decrypt_manual(struct torture_context *tctx,
1524bc 
-						   struct bkrp_server_side_wrapped *server_side_wrapped,
1524bc 
-						   enum test_wrong wrong)
1524bc 
-{
1524bc 
-	char *lsa_binding_string = NULL;
1524bc 
-	struct dcerpc_binding *lsa_binding = NULL;
1524bc 
-	struct dcerpc_pipe *lsa_p = NULL;
1524bc 
-	struct dcerpc_binding_handle *lsa_b = NULL;
1524bc 
-	struct lsa_OpenSecret r_secret;
1524bc 
-	struct lsa_QuerySecret r_query_secret;
1524bc 
-	struct policy_handle *handle, sec_handle;
1524bc 
-	struct bkrp_BackupKey r;
1524bc 
-	struct GUID preferred_key_guid;
1524bc 
-	DATA_BLOB plaintext = data_blob_const(secret, sizeof(secret));
1524bc 
-	DATA_BLOB preferred_key, preferred_key_clear, session_key,
1524bc 
-		decrypt_key, decrypt_key_clear, encrypted_blob, symkey_blob,
1524bc 
-		sid_blob;
1524bc 
-	struct bkrp_dc_serverwrap_key server_key;
1524bc 
-	struct lsa_DATA_BUF_PTR bufp1;
1524bc 
-	char *key_guid_string;
1524bc 
-	struct bkrp_rc4encryptedpayload rc4payload;
1524bc 
-	struct dom_sid *caller_sid;
1524bc 
-	uint8_t symkey[20]; /* SHA-1 hash len */
1524bc 
-	uint8_t mackey[20]; /* SHA-1 hash len */
1524bc 
-	uint8_t mac[20]; /* SHA-1 hash len */
1524bc 
-	unsigned int hash_len;
1524bc 
-	HMAC_CTX ctx;
1524bc 
-	ZERO_STRUCT(r);
1524bc 
-	ZERO_STRUCT(r_secret);
1524bc 
-	ZERO_STRUCT(r_query_secret);
1524bc 
-
1524bc 
-	/* Now read BCKUPKEY_P and prove we can do a matching decrypt and encrypt */
1524bc 
-
1524bc 
-	/* lsa_OpenSecret only works with ncacn_np and AUTH_LEVEL_NONE */
1524bc 
-	lsa_binding_string = talloc_asprintf(tctx, "ncacn_np:%s",
1524bc 
-				torture_setting_string(tctx, "host", NULL));
1524bc 
-	torture_assert(tctx, lsa_binding_string != NULL, "lsa_binding_string");
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-		dcerpc_parse_binding(tctx, lsa_binding_string, &lsa_binding),
1524bc 
-		"Failed to parse dcerpc binding");
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_pipe_connect_b(tctx, &lsa_p,
1524bc 
-					lsa_binding, &ndr_table_lsarpc,
1524bc 
-					popt_get_cmdline_credentials(),
1524bc 
-					tctx->ev, tctx->lp_ctx),
1524bc 
-				   "Opening LSA pipe");
1524bc 
-	lsa_b = lsa_p->binding_handle;
1524bc 
-
1524bc 
-	torture_assert(tctx, test_lsa_OpenPolicy2(lsa_b, tctx, &handle), "OpenPolicy failed");
1524bc 
-	r_secret.in.name.string = "G$BCKUPKEY_P";
1524bc 
-
1524bc 
-	r_secret.in.handle = handle;
1524bc 
-	r_secret.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1524bc 
-	r_secret.out.sec_handle = &sec_handle;
1524bc 
-
1524bc 
-	torture_comment(tctx, "Testing OpenSecret\n");
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenSecret_r(lsa_b, tctx, &r_secret),
1524bc 
-				   "OpenSecret failed");
1524bc 
-	torture_assert_ntstatus_ok(tctx, r_secret.out.result,
1524bc 
-				   "OpenSecret failed");
1524bc 
-
1524bc 
-	r_query_secret.in.sec_handle = &sec_handle;
1524bc 
-	r_query_secret.in.new_val = &bufp1;
1524bc 
-	bufp1.buf = NULL;
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QuerySecret_r(lsa_b, tctx, &r_query_secret),
1524bc 
-		"QuerySecret failed");
1524bc 
-	torture_assert_ntstatus_ok(tctx, r_query_secret.out.result,
1524bc 
-				   "QuerySecret failed");
1524bc 
-
1524bc 
-
1524bc 
-	preferred_key.data = r_query_secret.out.new_val->buf->data;
1524bc 
-	preferred_key.length = r_query_secret.out.new_val->buf->size;
1524bc 
-	torture_assert_ntstatus_ok(tctx, dcerpc_fetch_session_key(lsa_p, &session_key),
1524bc 
-				   "dcerpc_fetch_session_key failed");
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   sess_decrypt_blob(tctx,
1524bc 
-						     &preferred_key, &session_key, &preferred_key_clear),
1524bc 
-				   "sess_decrypt_blob failed");
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx, GUID_from_ndr_blob(&preferred_key_clear, &preferred_key_guid),
1524bc 
-				   "GUID parse failed");
1524bc 
-
1524bc 
-	torture_assert_guid_equal(tctx, server_side_wrapped->guid,
1524bc 
-				  preferred_key_guid,
1524bc 
-				  "GUID didn't match value pointed at by G$BCKUPKEY_P");
1524bc 
-
1524bc 
-	/* And read BCKUPKEY_<guid> and get the actual key */
1524bc 
-
1524bc 
-	key_guid_string = GUID_string(tctx, &server_side_wrapped->guid);
1524bc 
-	r_secret.in.name.string = talloc_asprintf(tctx, "G$BCKUPKEY_%s", key_guid_string);
1524bc 
-
1524bc 
-	r_secret.in.handle = handle;
1524bc 
-	r_secret.in.access_mask = SEC_FLAG_MAXIMUM_ALLOWED;
1524bc 
-	r_secret.out.sec_handle = &sec_handle;
1524bc 
-
1524bc 
-	torture_comment(tctx, "Testing OpenSecret\n");
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx, dcerpc_lsa_OpenSecret_r(lsa_b, tctx, &r_secret),
1524bc 
-				   "OpenSecret failed");
1524bc 
-	torture_assert_ntstatus_ok(tctx, r_secret.out.result,
1524bc 
-				   "OpenSecret failed");
1524bc 
-
1524bc 
-	r_query_secret.in.sec_handle = &sec_handle;
1524bc 
-	r_query_secret.in.new_val = &bufp1;
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx, dcerpc_lsa_QuerySecret_r(lsa_b, tctx, &r_query_secret),
1524bc 
-				   "QuerySecret failed");
1524bc 
-	torture_assert_ntstatus_ok(tctx, r_query_secret.out.result,
1524bc 
-				   "QuerySecret failed");
1524bc 
-
1524bc 
-
1524bc 
-	decrypt_key.data = r_query_secret.out.new_val->buf->data;
1524bc 
-	decrypt_key.length = r_query_secret.out.new_val->buf->size;
1524bc 
-
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   sess_decrypt_blob(tctx,
1524bc 
-						     &decrypt_key, &session_key, &decrypt_key_clear),
1524bc 
-				   "sess_decrypt_blob failed");
1524bc 
-
1524bc 
-	torture_assert_ndr_err_equal(tctx, ndr_pull_struct_blob(&decrypt_key_clear, tctx, &server_key,
1524bc 
-								(ndr_pull_flags_fn_t)ndr_pull_bkrp_dc_serverwrap_key),
1524bc 
-				     NDR_ERR_SUCCESS, "Failed to parse server_key");
1524bc 
-
1524bc 
-	torture_assert_int_equal(tctx, server_key.magic, 1, "Failed to correctly decrypt server key");
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This is *not* the leading 64 bytes, as indicated in MS-BKRP 3.1.4.1.1
1524bc 
-	 * BACKUPKEY_BACKUP_GUID, it really is the whole key
1524bc 
-	 */
1524bc 
-	HMAC(EVP_sha1(), server_key.key, sizeof(server_key.key),
1524bc 
-	     server_side_wrapped->r2, sizeof(server_side_wrapped->r2),
1524bc 
-	     symkey, &hash_len);
1524bc 
-
1524bc 
-	/* rc4 decrypt sid and secret using sym key */
1524bc 
-	symkey_blob = data_blob_const(symkey, sizeof(symkey));
1524bc 
-
1524bc 
-	encrypted_blob = data_blob_talloc(tctx, server_side_wrapped->rc4encryptedpayload,
1524bc 
-					  server_side_wrapped->ciphertext_length);
1524bc 
-
1524bc 
-	arcfour_crypt_blob(encrypted_blob.data, encrypted_blob.length, &symkey_blob);
1524bc 
-
1524bc 
-	torture_assert_ndr_err_equal(tctx, ndr_pull_struct_blob(&encrypted_blob, tctx, &rc4payload,
1524bc 
-				       (ndr_pull_flags_fn_t)ndr_pull_bkrp_rc4encryptedpayload),
1524bc 
-				     NDR_ERR_SUCCESS, "Failed to parse rc4encryptedpayload");
1524bc 
-
1524bc 
-	torture_assert_int_equal(tctx, rc4payload.secret_data.length,
1524bc 
-				 server_side_wrapped->payload_length,
1524bc 
-				 "length of decrypted payload not the length declared in surrounding structure");
1524bc 
-
1524bc 
-	/*
1524bc 
-	 * This is *not* the leading 64 bytes, as indicated in MS-BKRP 3.1.4.1.1
1524bc 
-	 * BACKUPKEY_BACKUP_GUID, it really is the whole key
1524bc 
-	 */
1524bc 
-	HMAC(EVP_sha1(), server_key.key, sizeof(server_key.key),
1524bc 
-	     rc4payload.r3, sizeof(rc4payload.r3),
1524bc 
-	     mackey, &hash_len);
1524bc 
-
1524bc 
-	torture_assert_ndr_err_equal(tctx, ndr_push_struct_blob(&sid_blob, tctx, &rc4payload.sid,
1524bc 
-								(ndr_push_flags_fn_t)ndr_push_dom_sid),
1524bc 
-				     NDR_ERR_SUCCESS, "unable to push SID");
1524bc 
-
1524bc 
-	HMAC_CTX_init(&ctx;;
1524bc 
-	HMAC_Init_ex(&ctx, mackey, hash_len, EVP_sha1(), NULL);
1524bc 
-	/* SID field */
1524bc 
-	HMAC_Update(&ctx, sid_blob.data, sid_blob.length);
1524bc 
-	/* Secret field */
1524bc 
-	HMAC_Update(&ctx, rc4payload.secret_data.data, rc4payload.secret_data.length);
1524bc 
-	HMAC_Final(&ctx, mac, &hash_len);
1524bc 
-	HMAC_CTX_cleanup(&ctx;;
1524bc 
-
1524bc 
-	torture_assert_mem_equal(tctx, mac, rc4payload.mac, sizeof(mac), "mac not correct");
1524bc 
-	torture_assert_int_equal(tctx, rc4payload.secret_data.length,
1524bc 
-				 plaintext.length, "decrypted data is not correct length");
1524bc 
-	torture_assert_mem_equal(tctx, rc4payload.secret_data.data,
1524bc 
-				 plaintext.data, plaintext.length,
1524bc 
-				 "decrypted data is not correct");
1524bc 
-
1524bc 
-	/* Not strictly correct all the time, but good enough for this test */
1524bc 
-	caller_sid = get_user_sid(tctx, tctx,
1524bc 
-			cli_credentials_get_username(
1524bc 
-				popt_get_cmdline_credentials()));
1524bc 
-
1524bc 
-	torture_assert_sid_equal(tctx, &rc4payload.sid, caller_sid, "Secret saved with wrong SID");
1524bc 
-
1524bc 
-
1524bc 
-	/* RE-encrypt */
1524bc 
-
1524bc 
-	if (wrong == WRONG_SID) {
1524bc 
-		rc4payload.sid.sub_auths[rc4payload.sid.num_auths - 1] = DOMAIN_RID_KRBTGT;
1524bc 
-	}
1524bc 
-
1524bc 
-	dump_data_pw("mackey: \n", mackey, sizeof(mackey));
1524bc 
-
1524bc 
-	torture_assert_ndr_err_equal(tctx,
1524bc 
-				     ndr_push_struct_blob(&sid_blob, tctx, &rc4payload.sid,
1524bc 
-							  (ndr_push_flags_fn_t)ndr_push_dom_sid),
1524bc 
-				     NDR_ERR_SUCCESS,
1524bc 
-				     "push of sid failed");
1524bc 
-
1524bc 
-	HMAC_CTX_init(&ctx;;
1524bc 
-	HMAC_Init_ex(&ctx, mackey, 20, EVP_sha1(), NULL);
1524bc 
-	/* SID field */
1524bc 
-	HMAC_Update(&ctx, sid_blob.data, sid_blob.length);
1524bc 
-	/* Secret field */
1524bc 
-	HMAC_Update(&ctx, rc4payload.secret_data.data, rc4payload.secret_data.length);
1524bc 
-	HMAC_Final(&ctx, rc4payload.mac, &hash_len);
1524bc 
-	HMAC_CTX_cleanup(&ctx;;
1524bc 
-
1524bc 
-	dump_data_pw("rc4payload.mac: \n", rc4payload.mac, sizeof(rc4payload.mac));
1524bc 
-
1524bc 
-	torture_assert_ndr_err_equal(tctx,
1524bc 
-				     ndr_push_struct_blob(&encrypted_blob, tctx, &rc4payload,
1524bc 
-							  (ndr_push_flags_fn_t)ndr_push_bkrp_rc4encryptedpayload),
1524bc 
-				     NDR_ERR_SUCCESS,
1524bc 
-				     "push of rc4payload failed");
1524bc 
-
1524bc 
-	if (wrong == WRONG_KEY) {
1524bc 
-		symkey_blob.data[0] = 78;
1524bc 
-		symkey_blob.data[1] = 78;
1524bc 
-		symkey_blob.data[2] = 78;
1524bc 
-	}
1524bc 
-
1524bc 
-	/* rc4 encrypt sid and secret using sym key */
1524bc 
-	arcfour_crypt_blob(encrypted_blob.data, encrypted_blob.length, &symkey_blob);
1524bc 
-
1524bc 
-	/* re-create server wrap structure */
1524bc 
-
1524bc 
-	torture_assert_int_equal(tctx, encrypted_blob.length,
1524bc 
-				 server_side_wrapped->ciphertext_length,
1524bc 
-				 "expected encrypted length not to change");
1524bc 
-	if (wrong == RIGHT_KEY) {
1524bc 
-		torture_assert_mem_equal(tctx, server_side_wrapped->rc4encryptedpayload,
1524bc 
-					 encrypted_blob.data,
1524bc 
-					 encrypted_blob.length,
1524bc 
-					 "expected encrypted data not to change");
1524bc 
-	}
1524bc 
-
1524bc 
-	server_side_wrapped->payload_length = rc4payload.secret_data.length;
1524bc 
-	server_side_wrapped->ciphertext_length = encrypted_blob.length;
1524bc 
-	server_side_wrapped->rc4encryptedpayload = encrypted_blob.data;
1524bc 
-
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_wrong_stuff(struct torture_context *tctx,
1524bc 
-						struct dcerpc_pipe *p,
1524bc 
-						enum test_wrong wrong)
1524bc 
-{
1524bc 
-	struct bkrp_BackupKey r;
1524bc 
-	struct GUID guid;
1524bc 
-	DATA_BLOB plaintext = data_blob_const(secret, sizeof(secret));
1524bc 
-	DATA_BLOB encrypted;
1524bc 
-	uint32_t enclen;
1524bc 
-	DATA_BLOB decrypted;
1524bc 
-	uint32_t declen;
1524bc 
-	struct dcerpc_binding_handle *b = p->binding_handle;
1524bc 
-	enum ndr_err_code ndr_err;
1524bc 
-	struct bkrp_server_side_wrapped server_side_wrapped;
1524bc 
-	bool repush = false;
1524bc 
-	enum dcerpc_AuthType auth_type;
1524bc 
-	enum dcerpc_AuthLevel auth_level;
1524bc 
-	ZERO_STRUCT(r);
1524bc 
-
1524bc 
-	dcerpc_binding_handle_auth_info(b, &auth_type, &auth_level);
1524bc 
-
1524bc 
-	/* Encrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_BACKUP_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = plaintext.data;
1524bc 
-	r.in.data_in_len = plaintext.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &encrypted.data;
1524bc 
-	r.out.data_out_len = &enclen;
1524bc 
-	if (auth_level == DCERPC_AUTH_LEVEL_PRIVACY) {
1524bc 
-		torture_assert_ntstatus_ok(tctx,
1524bc 
-					   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					   "encrypt");
1524bc 
-	} else {
1524bc 
-		torture_assert_ntstatus_equal(tctx,
1524bc 
-					      dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-					      NT_STATUS_ACCESS_DENIED,
1524bc 
-					      "encrypt");
1524bc 
-		return true;
1524bc 
-	}
1524bc 
-	torture_assert_werr_ok(tctx,
1524bc 
-			       r.out.result,
1524bc 
-			       "encrypt");
1524bc 
-	encrypted.length = *r.out.data_out_len;
1524bc 
-
1524bc 
-	ndr_err = ndr_pull_struct_blob(&encrypted, tctx, &server_side_wrapped,
1524bc 
-				       (ndr_pull_flags_fn_t)ndr_pull_bkrp_server_side_wrapped);
1524bc 
-	torture_assert_ndr_err_equal(tctx, ndr_err, NDR_ERR_SUCCESS, "pull of server_side_wrapped");
1524bc 
-
1524bc 
-	torture_assert_int_equal(tctx, server_side_wrapped.payload_length, plaintext.length,
1524bc 
-				 "wrong payload length");
1524bc 
-
1524bc 
-	switch (wrong) {
1524bc 
-	case WRONG_MAGIC:
1524bc 
-		/* Change the magic.  Forced by our NDR layer, so do it raw */
1524bc 
-		SIVAL(encrypted.data, 0, 78);  /* valid values are 1-3 */
1524bc 
-		break;
1524bc 
-	case WRONG_R2:
1524bc 
-		server_side_wrapped.r2[0] = 78;
1524bc 
-		server_side_wrapped.r2[1] = 78;
1524bc 
-		server_side_wrapped.r2[3] = 78;
1524bc 
-		repush = true;
1524bc 
-		break;
1524bc 
-	case WRONG_PAYLOAD_LENGTH:
1524bc 
-		server_side_wrapped.payload_length = UINT32_MAX - 8;
1524bc 
-		repush = true;
1524bc 
-		break;
1524bc 
-	case WRONG_CIPHERTEXT_LENGTH:
1524bc 
-		/*
1524bc 
-		 * Change the ciphertext len.  We can't push this if
1524bc 
-		 * we have it wrong, so do it raw
1524bc 
-		 */
1524bc 
-		SIVAL(encrypted.data, 8, UINT32_MAX - 8);  /* valid values are 1-3 */
1524bc 
-		break;
1524bc 
-	case SHORT_PAYLOAD_LENGTH:
1524bc 
-		server_side_wrapped.payload_length = server_side_wrapped.payload_length - 8;
1524bc 
-		repush = true;
1524bc 
-		break;
1524bc 
-	case SHORT_CIPHERTEXT_LENGTH:
1524bc 
-		/*
1524bc 
-		 * Change the ciphertext len.  We can't push this if
1524bc 
-		 * we have it wrong, so do it raw
1524bc 
-		 */
1524bc 
-		SIVAL(encrypted.data, 8, server_side_wrapped.ciphertext_length - 8);  /* valid values are 1-3 */
1524bc 
-		break;
1524bc 
-	case ZERO_PAYLOAD_LENGTH:
1524bc 
-		server_side_wrapped.payload_length = 0;
1524bc 
-		repush = true;
1524bc 
-		break;
1524bc 
-	case ZERO_CIPHERTEXT_LENGTH:
1524bc 
-		/*
1524bc 
-		 * Change the ciphertext len.  We can't push this if
1524bc 
-		 * we have it wrong, so do it raw
1524bc 
-		 */
1524bc 
-		SIVAL(encrypted.data, 8, 0);  /* valid values are 1-3 */
1524bc 
-		break;
1524bc 
-
1524bc 
-	case RIGHT_KEY:
1524bc 
-	case WRONG_KEY:
1524bc 
-	case WRONG_SID:
1524bc 
-		torture_assert(tctx,
1524bc 
-			       test_ServerWrap_encrypt_decrypt_manual(tctx, &server_side_wrapped, wrong),
1524bc 
-			       "test_ServerWrap_encrypt_decrypt_manual failed");
1524bc 
-		repush = true;
1524bc 
-		break;
1524bc 
-	}
1524bc 
-
1524bc 
-	if (repush) {
1524bc 
-		ndr_err = ndr_push_struct_blob(&encrypted, tctx, &server_side_wrapped,
1524bc 
-					       (ndr_push_flags_fn_t)ndr_push_bkrp_server_side_wrapped);
1524bc 
-		torture_assert_ndr_err_equal(tctx, ndr_err, NDR_ERR_SUCCESS, "push of server_side_wrapped");
1524bc 
-	}
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = encrypted.data;
1524bc 
-	r.in.data_in_len = encrypted.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-
1524bc 
-	if ((wrong == WRONG_R2 || wrong == WRONG_KEY)
1524bc 
-	    && W_ERROR_EQUAL(r.out.result, WERR_INVALID_SID)) {
1524bc 
-		torture_assert_werr_equal(tctx,
1524bc 
-					  r.out.result,
1524bc 
-					  WERR_INVALID_SID,
1524bc 
-					  "decrypt should fail with WERR_INVALID_SID or WERR_INVALID_PARAMETER");
1524bc 
-	} else if (wrong == RIGHT_KEY) {
1524bc 
-		torture_assert_werr_equal(tctx,
1524bc 
-					  r.out.result,
1524bc 
-					  WERR_OK,
1524bc 
-					  "decrypt should succeed!");
1524bc 
-	} else if (wrong == WRONG_SID) {
1524bc 
-		torture_assert_werr_equal(tctx,
1524bc 
-					  r.out.result,
1524bc 
-					  WERR_INVALID_ACCESS,
1524bc 
-					  "decrypt should fail with WERR_INVALID_ACCESS");
1524bc 
-	} else {
1524bc 
-		if (!W_ERROR_EQUAL(r.out.result, WERR_INVALID_PARAMETER)) {
1524bc 
-			torture_assert_werr_equal(tctx,
1524bc 
-						  r.out.result,
1524bc 
-						  WERR_INVALID_ACCESS,
1524bc 
-						  "decrypt should fail with WERR_INVALID_ACCESS or WERR_INVALID_PARAMETER");
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	/* Decrypt */
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   GUID_from_string(BACKUPKEY_RESTORE_GUID_WIN2K, &guid),
1524bc 
-				   "obtain GUID");
1524bc 
-
1524bc 
-	r.in.guidActionAgent = &guid;
1524bc 
-	r.in.data_in = encrypted.data;
1524bc 
-	r.in.data_in_len = encrypted.length;
1524bc 
-	r.in.param = 0;
1524bc 
-	r.out.data_out = &(decrypted.data);
1524bc 
-	r.out.data_out_len = &declen;
1524bc 
-	torture_assert_ntstatus_ok(tctx,
1524bc 
-				   dcerpc_bkrp_BackupKey_r(b, tctx, &r),
1524bc 
-				   "decrypt");
1524bc 
-
1524bc 
-	if ((wrong == WRONG_R2 || wrong == WRONG_KEY)
1524bc 
-	    && W_ERROR_EQUAL(r.out.result, WERR_INVALID_SID)) {
1524bc 
-		torture_assert_werr_equal(tctx,
1524bc 
-					  r.out.result,
1524bc 
-					  WERR_INVALID_SID,
1524bc 
-					  "decrypt should fail with WERR_INVALID_SID or WERR_INVALID_PARAMETER");
1524bc 
-	} else if (wrong == RIGHT_KEY) {
1524bc 
-		torture_assert_werr_equal(tctx,
1524bc 
-					  r.out.result,
1524bc 
-					  WERR_OK,
1524bc 
-					  "decrypt should succeed!");
1524bc 
-	} else if (wrong == WRONG_SID) {
1524bc 
-		torture_assert_werr_equal(tctx,
1524bc 
-					  r.out.result,
1524bc 
-					  WERR_INVALID_ACCESS,
1524bc 
-					  "decrypt should fail with WERR_INVALID_ACCESS");
1524bc 
-	} else {
1524bc 
-		if (!W_ERROR_EQUAL(r.out.result, WERR_INVALID_ACCESS)
1524bc 
-		    && !W_ERROR_EQUAL(r.out.result, WERR_INVALID_PARAMETER)) {
1524bc 
-			torture_assert_werr_equal(tctx, r.out.result,
1524bc 
-						  WERR_INVALID_DATA,
1524bc 
-						  "decrypt should fail with WERR_INVALID_ACCESS, WERR_INVALID_PARAMETER or WERR_INVALID_DATA");
1524bc 
-		}
1524bc 
-	}
1524bc 
-
1524bc 
-	return true;
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_wrong_magic(struct torture_context *tctx,
1524bc 
-						struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, WRONG_MAGIC);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_wrong_r2(struct torture_context *tctx,
1524bc 
-						struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, WRONG_R2);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_wrong_payload_length(struct torture_context *tctx,
1524bc 
-							 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, WRONG_PAYLOAD_LENGTH);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_short_payload_length(struct torture_context *tctx,
1524bc 
-							 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, SHORT_PAYLOAD_LENGTH);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_zero_payload_length(struct torture_context *tctx,
1524bc 
-							 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, ZERO_PAYLOAD_LENGTH);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_wrong_ciphertext_length(struct torture_context *tctx,
1524bc 
-							 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, WRONG_CIPHERTEXT_LENGTH);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_short_ciphertext_length(struct torture_context *tctx,
1524bc 
-							 struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, SHORT_CIPHERTEXT_LENGTH);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_decrypt_zero_ciphertext_length(struct torture_context *tctx,
1524bc 
-							   struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, ZERO_CIPHERTEXT_LENGTH);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_encrypt_decrypt_remote_key(struct torture_context *tctx,
1524bc 
-						       struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, RIGHT_KEY);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_encrypt_decrypt_wrong_key(struct torture_context *tctx,
1524bc 
-						       struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, WRONG_KEY);
1524bc 
-}
1524bc 
-
1524bc 
-static bool test_ServerWrap_encrypt_decrypt_wrong_sid(struct torture_context *tctx,
1524bc 
-						      struct dcerpc_pipe *p)
1524bc 
-{
1524bc 
-	return test_ServerWrap_decrypt_wrong_stuff(tctx, p, WRONG_SID);
1524bc 
-}
1524bc 
-
1524bc 
-struct torture_suite *torture_rpc_backupkey(TALLOC_CTX *mem_ctx)
1524bc 
-{
1524bc 
-	struct torture_suite *suite = torture_suite_create(mem_ctx, "backupkey");
1524bc 
-
1524bc 
-	struct torture_rpc_tcase *tcase;
1524bc 
-
1524bc 
-	tcase = torture_suite_add_rpc_iface_tcase(suite, "backupkey",
1524bc 
-						  &ndr_table_backupkey);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "retreive_backup_key_guid",
1524bc 
-				   test_RetrieveBackupKeyGUID);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "restore_guid",
1524bc 
-				   test_RestoreGUID);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "restore_guid version 3",
1524bc 
-				   test_RestoreGUID_v3);
1524bc 
-
1524bc 
-/* We double the test in order to be sure that we don't mess stuff (ie. freeing static stuff) */
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "restore_guid_2nd",
1524bc 
-				   test_RestoreGUID);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "unable_to_decrypt_secret",
1524bc 
-				   test_RestoreGUID_ko);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "wrong_user_restore_guid",
1524bc 
-				   test_RestoreGUID_wronguser);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "wrong_version_restore_guid",
1524bc 
-				   test_RestoreGUID_wrongversion);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "bad_magic_on_secret_restore_guid",
1524bc 
-				   test_RestoreGUID_badmagiconsecret);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "bad_hash_on_secret_restore_guid",
1524bc 
-				   test_RestoreGUID_badhashaccesscheck);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "bad_magic_on_accesscheck_restore_guid",
1524bc 
-				   test_RestoreGUID_badmagicaccesscheck);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "bad_cert_guid_restore_guid",
1524bc 
-				   test_RestoreGUID_badcertguid);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "empty_request_restore_guid",
1524bc 
-				   test_RestoreGUID_emptyrequest);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "retreive_backup_key_guid_2048_bits",
1524bc 
-				   test_RetrieveBackupKeyGUID_2048bits);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_encrypt_decrypt",
1524bc 
-				   test_ServerWrap_encrypt_decrypt);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_wrong_keyGUID",
1524bc 
-				   test_ServerWrap_decrypt_wrong_keyGUID);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_empty_request",
1524bc 
-				   test_ServerWrap_decrypt_empty_request);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_short_request",
1524bc 
-				   test_ServerWrap_decrypt_short_request);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_wrong_magic",
1524bc 
-				   test_ServerWrap_decrypt_wrong_magic);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_wrong_r2",
1524bc 
-				   test_ServerWrap_decrypt_wrong_r2);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_wrong_payload_length",
1524bc 
-				   test_ServerWrap_decrypt_wrong_payload_length);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_short_payload_length",
1524bc 
-				   test_ServerWrap_decrypt_short_payload_length);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_zero_payload_length",
1524bc 
-				   test_ServerWrap_decrypt_zero_payload_length);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_wrong_ciphertext_length",
1524bc 
-				   test_ServerWrap_decrypt_wrong_ciphertext_length);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_short_ciphertext_length",
1524bc 
-				   test_ServerWrap_decrypt_short_ciphertext_length);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_decrypt_zero_ciphertext_length",
1524bc 
-				   test_ServerWrap_decrypt_zero_ciphertext_length);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_encrypt_decrypt_remote_key",
1524bc 
-				   test_ServerWrap_encrypt_decrypt_remote_key);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_encrypt_decrypt_wrong_key",
1524bc 
-				   test_ServerWrap_encrypt_decrypt_wrong_key);
1524bc 
-
1524bc 
-	torture_rpc_tcase_add_test(tcase, "server_wrap_encrypt_decrypt_wrong_sid",
1524bc 
-				   test_ServerWrap_encrypt_decrypt_wrong_sid);
1524bc 
-
1524bc 
-	return suite;
1524bc 
-}
1524bc 
diff --git a/source4/torture/wscript_build b/source4/torture/wscript_build
1524bc 
index 7dde54fefba..d9fbcbb6ebe 100644
1524bc 
--- a/source4/torture/wscript_build
1524bc 
+++ b/source4/torture/wscript_build
1524bc 
@@ -82,13 +82,6 @@ bld.SAMBA_SUBSYSTEM('IREMOTEWINSPOOL_COMMON',
1524bc 
                     deps='talloc',
1524bc 
                     enabled=bld.PYTHON_BUILD_IS_ENABLED())
1524bc
1524bc 
-torture_rpc_backupkey = ''
1524bc 
-if bld.AD_DC_BUILD_IS_ENABLED():
1524bc 
-    if (bld.CONFIG_SET('HAVE_GNUTLS_PRIVKEY_EXPORT_X509') and
1524bc 
-        bld.CONFIG_SET('HAVE_GNUTLS_X509_CRT_SET_SUBJECT_UNIQUE_ID')):
1524bc 
-        torture_rpc_backupkey = 'rpc/backupkey.c'
1524bc 
-    else:
1524bc 
-        torture_rpc_backupkey = 'rpc/backupkey_heimdal.c'
1524bc 
 bld.SAMBA_MODULE('torture_rpc',
1524bc 
                  source='''
1524bc 
                         rpc/join.c
1524bc 
@@ -145,7 +138,7 @@ bld.SAMBA_MODULE('torture_rpc',
1524bc 
                         rpc/witness.c
1524bc 
                         rpc/iremotewinspool.c
1524bc 
                         rpc/iremotewinspool_driver.c
1524bc 
-                        ''' + torture_rpc_backupkey + ntvfs_specific['source'],
1524bc 
+                        rpc/backupkey.c''' + ntvfs_specific['source'],
1524bc 
                  autoproto='rpc/proto.h',
1524bc 
                  subsystem='smbtorture',
1524bc 
                  init_function='torture_rpc_init',
1524bc 
diff --git a/wscript_configure_system_gnutls b/wscript_configure_system_gnutls
1524bc 
index 8ff0529e10c..02e6567ba2f 100644
1524bc 
--- a/wscript_configure_system_gnutls
1524bc 
+++ b/wscript_configure_system_gnutls
1524bc 
@@ -12,12 +12,6 @@ conf.CHECK_CFG(package='gnutls',
1524bc 
 # Define gnutls as a system library
1524bc 
 conf.SET_TARGET_TYPE('gnutls', 'SYSLIB')
1524bc
1524bc 
-# Check for gnutls_privkey_export_x509 (>= 3.4.0) required by backupkey
1524bc 
-conf.CHECK_FUNCS_IN('gnutls_privkey_export_x509', 'gnutls')
1524bc 
-
1524bc 
-# Check for gnutls_x509_crt_set_subject_unique_id (>= 3.4.7) required by backupkey
1524bc 
-conf.CHECK_FUNCS_IN('gnutls_x509_crt_set_subject_unique_id', 'gnutls')
1524bc 
-
1524bc 
 # Check for gnutls_pkcs7_get_embedded_data_oid (>= 3.5.5) required by libmscat
1524bc 
 conf.CHECK_FUNCS_IN('gnutls_pkcs7_get_embedded_data_oid', 'gnutls')
1524bc
1524bc 
--
1524bc 
2.23.0
1524bc

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation