From 1406581761633a01acbff68d62278fbffc4b9498 Mon Sep 17 00:00:00 2001 From: Stefan Metzmacher Date: Sat, 14 Aug 2004 03:32:42 +0000 Subject: r1816: here's the initial idea of libnet metze (This used to be commit dcb3ea32da6d7cf93e6bdda9b839faf604ba3b6a) --- source4/libnet/config.m4 | 1 + source4/libnet/config.mk | 6 +++ source4/libnet/libnet.h | 67 +++++++++++++++++++++++ source4/libnet/libnet_passwd.c | 117 +++++++++++++++++++++++++++++++++++++++++ 4 files changed, 191 insertions(+) create mode 100644 source4/libnet/config.m4 create mode 100644 source4/libnet/config.mk create mode 100644 source4/libnet/libnet.h create mode 100644 source4/libnet/libnet_passwd.c (limited to 'source4/libnet') diff --git a/source4/libnet/config.m4 b/source4/libnet/config.m4 new file mode 100644 index 0000000000..7246db1945 --- /dev/null +++ b/source4/libnet/config.m4 @@ -0,0 +1 @@ +SMB_SUBSYSTEM_MK(LIBNET,libnet/config.mk) diff --git a/source4/libnet/config.mk b/source4/libnet/config.mk new file mode 100644 index 0000000000..ab2861f540 --- /dev/null +++ b/source4/libnet/config.mk @@ -0,0 +1,6 @@ +################################# +# Start SUBSYSTEM LIBNET +[SUBSYSTEM::LIBNET] +ADD_OBJ_FILES = libnet/libnet_password.o +# End SUBSYSTEM LIBNET +################################# diff --git a/source4/libnet/libnet.h b/source4/libnet/libnet.h new file mode 100644 index 0000000000..f1ea6f4b02 --- /dev/null +++ b/source4/libnet/libnet.h @@ -0,0 +1,67 @@ +/* + Unix SMB/CIFS implementation. + + Copyright (C) Stefan Metzmacher 2004 + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 2 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. +*/ + +struct libnet_context { + TALLOC_CTX *mem_ctx; +}; + +/* struct for doing a remote password change */ + +enum libnet_ChangePassword_level { + LIBNET_CHANGE_PASSWORD_GENERIC, + LIBNET_CHANGE_PASSWORD_RPC, + LIBNET_CHANGE_PASSWORD_ADS, + LIBNET_CHANGE_PASSWORD_RAP +}; + +union libnet_ChangePassword { + struct { + enum libnet_ChangePassword_level level; + + struct _libnet_ChangePassword_in { + const char *account_name; + const char *domain_name; + const char *oldpassword; + const char *newpassword; + } in; + + struct _libnet_ChangePassword_out { + const char *error_string; + } out; + } generic; + + struct { + enum libnet_ChangePassword_level level; + struct _libnet_ChangePassword_in in; + struct _libnet_ChangePassword_out out; + } rpc; + + struct { + enum libnet_ChangePassword_level level; + struct _libnet_ChangePassword_in in; + struct _libnet_ChangePassword_out out; + } ads; + + struct { + enum libnet_ChangePassword_level level; + struct _libnet_ChangePassword_in in; + struct _libnet_ChangePassword_out out; + } rap; +}; diff --git a/source4/libnet/libnet_passwd.c b/source4/libnet/libnet_passwd.c new file mode 100644 index 0000000000..edf0d27b95 --- /dev/null +++ b/source4/libnet/libnet_passwd.c @@ -0,0 +1,117 @@ +/* + Unix SMB/CIFS implementation. + + Copyright (C) Stefan Metzmacher 2004 + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 2 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. +*/ + +/* + * 1. connect to the SAMR pipe of *our* PDC + * 2. try samr_ChangePassword3 + */ +static NTSTATUS libnet_ChangePassword_rpc(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, struct net_ChangePassword *r) +{ + NTSTATUS status; + struct dcerpc_pipe *p = NULL; + struct samr_ChangePasswordUser3 pw3; + struct samr_Name server, account; + struct samr_CryptPassword nt_pass, lm_pass; + struct samr_Password nt_verifier, lm_verifier; + uint8_t old_nt_hash[16], new_nt_hash[16]; + uint8_t old_lm_hash[16], new_lm_hash[16]; + + /* connect to the SAMR pipe of the */ + status = libnet_rpc_connect_pdc(ctx, mem_ctx, + r->rpc.in.domain_name, + DCERPC_SAMR_NAME, + DCERPC_SAMR_UUID, + DCERPC_SAMR_VERSION, + &p); + if (!NT_STATUS_IS_OK(status)) { + r->rpc.out.error_string = talloc_asprintf(mem_ctx, + "Connection to SAMR pipe of PDC of domain '%s' failed\n", + r->rpc.in.domain_name); + return status; + } + + server.name = talloc_asprintf(mem_ctx, "\\\\%s", dcerpc_server_name(p)); + init_samr_Name(&account, r->rpc.in.account_name); + + E_md4hash(r->rpc.in.oldpassword, old_nt_hash); + E_md4hash(r->rpc.in.newpassword, new_nt_hash); + + E_deshash(r->rpc.in.oldpassword, old_lm_hash); + E_deshash(r->rpc.in.newpassword, new_lm_hash); + + encode_pw_buffer(lm_pass.data, r->rpc.in.newpassword, STR_UNICODE); + arcfour_crypt(lm_pass.data, old_nt_hash, 516); + E_old_pw_hash(new_lm_hash, old_lm_hash, lm_verifier.hash); + + encode_pw_buffer(nt_pass.data, r->rpc.in.newpassword, STR_UNICODE); + arcfour_crypt(nt_pass.data, old_nt_hash, 516); + E_old_pw_hash(new_nt_hash, old_nt_hash, nt_verifier.hash); + + pw3.in.server = &server; + pw3.in.account = &account; + pw3.in.nt_password = &nt_pass; + pw3.in.nt_verifier = &nt_verifier; + pw3.in.lm_change = 1; + pw3.in.lm_password = &lm_pass; + pw3.in.lm_verifier = &lm_verifier; + pw3.in.password3 = NULL; + + status = dcerpc_samr_ChangePassword3(p, mem_ctx, &pw3); + if (!NT_STATUS_IS_OK(status)) { + r->rpc.out.error_string = talloc_asprintf(mem_ctx, + "ChangePassword3 failed: %s\n",nt_errstr(status); + return status; + } + + if (!NT_STATUS_IS_OK(r->rpc.out.result)) { + r->rpc.out.error_string = talloc_asprintf(mem_ctx, + "ChangePassword3 for '%s\\%s' failed: %s\n", + r->rpc.in.domain_name, r->rpc.in.account_name, + nt_errstr(status)); + /* TODO: give the reason of the reject */ + return status; + + } + + dcerpc_diconnect(&p); + + return NT_STATUS_OK; +} + +static NTSTATUS libnet_ChangePassword_generic(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, struct net_ChangePassword *r) +{ + return NT_STATUS_NOT_IMPLEMTED; +} + +NTSTATUS libnet_ChangePassword(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, struct net_ChangePassword *r) +{ + switch (r->generic.level) { + case LIBNET_CHANGE_PASSWORD_GENERIC: + return libnet_ChangePassword_generic(ctx, mem_ctx, r); + case LIBNET_CHANGE_PASSWORD_RPC: + return libnet_ChangePassword_rpc(ctx, mem_ctx, r); + case LIBNET_CHANGE_PASSWORD_ADS: + return NT_STATUS_NOT_IMPLEMTED; + case LIBNET_CHANGE_PASSWORD_RAP: + return NT_STATUS_NOT_IMPLEMTED; + } + + return NT_STATUS_INVALID_LEVEL; +} -- cgit