11 int ntlm_helper(int sock, struct query *ctl, const char *proto)
14 * NTLM support by Grant Edwards.
16 * Handle MS-Exchange NTLM authentication method. This is the same
17 * as the NTLM auth used by Samba for SMB related services. We just
18 * encode the packets in base64 instead of sending them out via a
21 * Much source (ntlm.h, smb*.c smb*.h) was borrowed from Samba.
23 tSmbNtlmAuthRequest request;
24 tSmbNtlmAuthChallenge challenge;
25 tSmbNtlmAuthResponse response;
30 if ((result = gen_recv(sock, msgbuf, sizeof msgbuf)))
33 if (msgbuf[0] != '+' && strspn(msgbuf+1, " \t") < strlen(msgbuf+1)) {
34 if (outlevel >= O_VERBOSE) {
35 report(stdout, GT_("Warning: received malformed challenge to \"AUTH(ENTICATE) NTLM\"!\n"));
40 buildSmbNtlmAuthRequest(&request,ctl->remotename,NULL);
42 if (outlevel >= O_DEBUG)
43 dumpSmbNtlmAuthRequest(stdout, &request);
45 memset(msgbuf,0,sizeof msgbuf);
46 to64frombits (msgbuf, &request, SmbLength(&request));
48 if (outlevel >= O_MONITOR)
49 report(stdout, "%s> %s\n", proto, msgbuf);
51 strcat(msgbuf,"\r\n");
52 SockWrite (sock, msgbuf, strlen (msgbuf));
54 if ((result = gen_recv(sock, msgbuf, sizeof msgbuf)))
57 (void)from64tobits (&challenge, msgbuf, sizeof(challenge));
59 if (outlevel >= O_DEBUG)
60 dumpSmbNtlmAuthChallenge(stdout, &challenge);
62 buildSmbNtlmAuthResponse(&challenge, &response,ctl->remotename,ctl->password);
64 if (outlevel >= O_DEBUG)
65 dumpSmbNtlmAuthResponse(stdout, &response);
67 memset(msgbuf,0,sizeof msgbuf);
68 to64frombits (msgbuf, &response, SmbLength(&response));
70 if (outlevel >= O_MONITOR)
71 report(stdout, "%s> %s\n", proto, msgbuf);
73 strcat(msgbuf,"\r\n");
74 SockWrite (sock, msgbuf, strlen (msgbuf));
78 cancelfail: /* cancel authentication and return failure */
80 if (outlevel >= O_MONITOR)
81 report(stdout, "%s> *\n", proto);
82 SockWrite(sock, "*\r\n", 3);
87 #endif /* NTLM_ENABLE */