11 int ntlm_helper(int sock, struct query *ctl, const char *proto)
14 * NTLM support by Grant Edwards.
16 * Handle MS-Exchange NTLM authentication method. This is the same
17 * as the NTLM auth used by Samba for SMB related services. We just
18 * encode the packets in base64 instead of sending them out via a
21 * Much source (ntlm.h, smb*.c smb*.h) was borrowed from Samba.
23 tSmbNtlmAuthRequest request;
24 tSmbNtlmAuthChallenge challenge;
25 tSmbNtlmAuthResponse response;
30 if ((result = gen_recv(sock, msgbuf, sizeof msgbuf)))
33 if (msgbuf[0] != '+' && strspn(msgbuf+1, " \t") < strlen(msgbuf+1)) {
34 if (outlevel >= O_VERBOSE) {
35 report(stdout, GT_("Warning: received malformed challenge to \"AUTH(ENTICATE) NTLM\"!\n"));
41 buildSmbNtlmAuthRequest(&request,ctl->remotename,NULL);
43 if (outlevel >= O_DEBUG)
44 dumpSmbNtlmAuthRequest(stdout, &request);
46 memset(msgbuf,0,sizeof msgbuf);
47 to64frombits (msgbuf, &request, SmbLength(&request));
49 if (outlevel >= O_MONITOR)
50 report(stdout, "%s> %s\n", proto, msgbuf);
52 strcat(msgbuf,"\r\n");
53 SockWrite (sock, msgbuf, strlen (msgbuf));
55 if ((result = gen_recv(sock, msgbuf, sizeof msgbuf)))
58 (void)from64tobits (&challenge, msgbuf, sizeof(challenge));
60 if (outlevel >= O_DEBUG)
61 dumpSmbNtlmAuthChallenge(stdout, &challenge);
63 buildSmbNtlmAuthResponse(&challenge, &response,ctl->remotename,ctl->password);
65 if (outlevel >= O_DEBUG)
66 dumpSmbNtlmAuthResponse(stdout, &response);
68 memset(msgbuf,0,sizeof msgbuf);
69 to64frombits (msgbuf, &response, SmbLength(&response));
71 if (outlevel >= O_MONITOR)
72 report(stdout, "%s> %s\n", proto, msgbuf);
74 strcat(msgbuf,"\r\n");
75 SockWrite (sock, msgbuf, strlen (msgbuf));
79 cancelfail: /* cancel authentication and return failure */
81 if (outlevel >= O_MONITOR)
82 report(stdout, "%s> *\n", proto);
83 SockWrite(sock, "*\r\n", 3);
88 #endif /* NTLM_ENABLE */