-
Notifications
You must be signed in to change notification settings - Fork 0
/
CMSAuth.c
74 lines (56 loc) · 2.11 KB
/
CMSAuth.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
/*
Copyright 2001-2018 John Wiseman G8BPQ
This file is part of LinBPQ/BPQ32.
LinBPQ/BPQ32 is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.
LinBPQ/BPQ32 is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with LinBPQ/BPQ32. If not, see http://www.gnu.org/licenses
*/
#define WIN32_LEAN_AND_MEAN // Exclude rarely-used stuff from Windows headers
#define _CRT_SECURE_NO_DEPRECATE
#define _USE_32BIT_TIME_T
#ifdef LINBPQ
#include "compatbits.h"
#define APIENTRY
#define VOID void
#else
#include <windows.h>
#endif
char * strlop(char * buf, char delim);
VOID APIENTRY md5 (char *arg, unsigned char * checksum);
// Implementation of the WinLink password challenge/response protocol
unsigned char seed [] = {77, 197, 101, 206, 190, 249,
93, 200, 51, 243, 93, 237,
71, 94, 239, 138, 68, 108,
70, 185, 225, 137, 217, 16,
51, 122, 193, 48, 194, 195,
198, 175, 172, 169, 70, 84,
61, 62, 104, 186, 114, 52,
61, 168, 66, 129, 192, 208,
187, 249, 232, 193, 41, 113,
41, 45, 240, 16, 29, 228,
208, 228, 61, 20, 0};
/*
Calculate the challenge password response as follows:
- Concatenate the challenge phrase, password, and supplied secret value (i.e. the salt)
- Generate an MD5 hash of the result
- Convert the first 4 bytes of the hash to an integer (big endian) and return it
*/
int GetCMSHash(char * Challenge, char * Password)
{
unsigned char Hash[16];
unsigned char Phrase[256];
strlop(Challenge, 13);
strlop(Password, 13);
strcpy(Phrase, Challenge);
strcat(Phrase, Password);
strcat(Phrase, seed);
md5(Phrase, Hash);
return ((Hash[3] & 0x3f) << 24) + (Hash[2] << 16) + (Hash[1] << 8) + Hash[0];
}