Line data Source code
1 : /*
2 : Unix SMB/CIFS implementation.
3 : Small self-tests for the NTLMSSP code
4 : Copyright (C) Andrew Bartlett <abartlet@samba.org> 2004
5 :
6 : This program is free software; you can redistribute it and/or modify
7 : it under the terms of the GNU General Public License as published by
8 : the Free Software Foundation; either version 3 of the License, or
9 : (at your option) any later version.
10 :
11 : This program is distributed in the hope that it will be useful,
12 : but WITHOUT ANY WARRANTY; without even the implied warranty of
13 : MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 : GNU General Public License for more details.
15 :
16 : You should have received a copy of the GNU General Public License
17 : along with this program. If not, see <http://www.gnu.org/licenses/>.
18 : */
19 :
20 : #include "includes.h"
21 : #include "auth/gensec/gensec.h"
22 : #include "auth/gensec/gensec_internal.h"
23 : #include "auth/ntlmssp/ntlmssp.h"
24 : #include "auth/ntlmssp/ntlmssp_private.h"
25 : #include "lib/cmdline/cmdline.h"
26 : #include "torture/torture.h"
27 : #include "param/param.h"
28 : #include "torture/auth/proto.h"
29 :
30 0 : static bool torture_ntlmssp_self_check(struct torture_context *tctx)
31 : {
32 : struct gensec_security *gensec_security;
33 : struct gensec_ntlmssp_context *gensec_ntlmssp;
34 : struct ntlmssp_state *ntlmssp_state;
35 : DATA_BLOB data;
36 : DATA_BLOB sig, expected_sig;
37 0 : TALLOC_CTX *mem_ctx = tctx;
38 :
39 0 : torture_assert_ntstatus_ok(tctx,
40 : gensec_client_start(mem_ctx, &gensec_security,
41 : lpcfg_gensec_settings(tctx, tctx->lp_ctx)),
42 : "gensec client start");
43 :
44 0 : gensec_set_credentials(gensec_security, samba_cmdline_get_creds());
45 :
46 0 : gensec_want_feature(gensec_security, GENSEC_FEATURE_SIGN);
47 0 : gensec_want_feature(gensec_security, GENSEC_FEATURE_SEAL);
48 :
49 0 : torture_assert_ntstatus_ok(tctx,
50 : gensec_start_mech_by_oid(gensec_security, GENSEC_OID_NTLMSSP),
51 : "Failed to start GENSEC for NTLMSSP");
52 :
53 0 : gensec_ntlmssp = talloc_get_type_abort(gensec_security->private_data,
54 : struct gensec_ntlmssp_context);
55 0 : ntlmssp_state = gensec_ntlmssp->ntlmssp_state;
56 :
57 0 : ntlmssp_state->session_key = strhex_to_data_blob(tctx, "0102030405060708090a0b0c0d0e0f00");
58 0 : dump_data_pw("NTLMSSP session key: \n",
59 0 : ntlmssp_state->session_key.data,
60 : ntlmssp_state->session_key.length);
61 :
62 0 : ntlmssp_state->neg_flags = NTLMSSP_NEGOTIATE_SIGN | NTLMSSP_NEGOTIATE_UNICODE | NTLMSSP_NEGOTIATE_128 | NTLMSSP_NEGOTIATE_KEY_EXCH | NTLMSSP_NEGOTIATE_NTLM2;
63 :
64 0 : torture_assert_ntstatus_ok(tctx,
65 : ntlmssp_sign_init(ntlmssp_state),
66 : "Failed to sign_init");
67 :
68 0 : data = strhex_to_data_blob(tctx, "6a43494653");
69 0 : gensec_ntlmssp_sign_packet(gensec_security, gensec_security,
70 0 : data.data, data.length, data.data, data.length, &sig);
71 :
72 0 : expected_sig = strhex_to_data_blob(tctx, "01000000e37f97f2544f4d7e00000000");
73 :
74 0 : dump_data_pw("NTLMSSP calc sig: ", sig.data, sig.length);
75 0 : dump_data_pw("NTLMSSP expected sig: ", expected_sig.data, expected_sig.length);
76 :
77 0 : torture_assert_int_equal(tctx, sig.length, expected_sig.length, "Wrong sig length");
78 :
79 0 : torture_assert_mem_equal(tctx, sig.data, expected_sig.data, sig.length,
80 : "data mismatch");
81 :
82 0 : torture_assert_ntstatus_equal(tctx,
83 : gensec_ntlmssp_check_packet(gensec_security,
84 : data.data, data.length, data.data, data.length, &sig),
85 : NT_STATUS_ACCESS_DENIED, "Check of just signed packet (should fail, wrong end)");
86 :
87 0 : ntlmssp_state->session_key = data_blob(NULL, 0);
88 :
89 0 : torture_assert_ntstatus_equal(tctx,
90 : gensec_ntlmssp_check_packet(gensec_security,
91 : data.data, data.length, data.data, data.length, &sig),
92 : NT_STATUS_NO_USER_SESSION_KEY, "Check of just signed packet without a session key should fail");
93 :
94 0 : talloc_free(gensec_security);
95 :
96 0 : torture_assert_ntstatus_ok(tctx,
97 : gensec_client_start(mem_ctx, &gensec_security,
98 : lpcfg_gensec_settings(tctx, tctx->lp_ctx)),
99 : "Failed to start GENSEC for NTLMSSP");
100 :
101 0 : gensec_set_credentials(gensec_security, samba_cmdline_get_creds());
102 :
103 0 : gensec_want_feature(gensec_security, GENSEC_FEATURE_SIGN);
104 0 : gensec_want_feature(gensec_security, GENSEC_FEATURE_SEAL);
105 :
106 0 : torture_assert_ntstatus_ok(tctx,
107 : gensec_start_mech_by_oid(gensec_security, GENSEC_OID_NTLMSSP),
108 : "GENSEC start mech by oid");
109 :
110 0 : gensec_ntlmssp = talloc_get_type_abort(gensec_security->private_data,
111 : struct gensec_ntlmssp_context);
112 0 : ntlmssp_state = gensec_ntlmssp->ntlmssp_state;
113 :
114 0 : ntlmssp_state->session_key = strhex_to_data_blob(tctx, "0102030405e538b0");
115 0 : dump_data_pw("NTLMSSP session key: \n",
116 0 : ntlmssp_state->session_key.data,
117 : ntlmssp_state->session_key.length);
118 :
119 0 : ntlmssp_state->neg_flags = NTLMSSP_NEGOTIATE_SIGN | NTLMSSP_NEGOTIATE_UNICODE | NTLMSSP_NEGOTIATE_KEY_EXCH;
120 :
121 0 : torture_assert_ntstatus_ok(tctx,
122 : ntlmssp_sign_init(ntlmssp_state),
123 : "Failed to sign_init");
124 :
125 0 : data = strhex_to_data_blob(tctx, "6a43494653");
126 0 : gensec_ntlmssp_sign_packet(gensec_security, gensec_security,
127 0 : data.data, data.length, data.data, data.length, &sig);
128 :
129 0 : expected_sig = strhex_to_data_blob(tctx, "0100000078010900397420fe0e5a0f89");
130 :
131 0 : dump_data_pw("NTLMSSP calc sig: ", sig.data, sig.length);
132 0 : dump_data_pw("NTLMSSP expected sig: ", expected_sig.data, expected_sig.length);
133 :
134 0 : torture_assert_int_equal(tctx, sig.length, expected_sig.length, "Wrong sig length");
135 :
136 0 : torture_assert_mem_equal(tctx, sig.data+8, expected_sig.data+8, sig.length-8,
137 : "data mismatch");
138 :
139 0 : torture_assert_ntstatus_equal(tctx,
140 : gensec_ntlmssp_check_packet(gensec_security,
141 : data.data, data.length, data.data, data.length, &sig),
142 : NT_STATUS_ACCESS_DENIED, "Check of just signed packet (should fail, wrong end)");
143 :
144 0 : sig.length /= 2;
145 :
146 0 : torture_assert_ntstatus_equal(tctx,
147 : gensec_ntlmssp_check_packet(gensec_security,
148 : data.data, data.length, data.data, data.length, &sig),
149 : NT_STATUS_ACCESS_DENIED, "Check of just signed packet with short sig");
150 :
151 0 : talloc_free(gensec_security);
152 0 : return true;
153 : }
154 :
155 964 : struct torture_suite *torture_ntlmssp(TALLOC_CTX *mem_ctx)
156 : {
157 964 : struct torture_suite *suite = torture_suite_create(mem_ctx, "ntlmssp");
158 :
159 964 : torture_suite_add_simple_test(suite, "NTLMSSP self check",
160 : torture_ntlmssp_self_check);
161 :
162 964 : return suite;
163 : }
|
