Cradicle Explorer
darling-Heimdal
/ lib / gssapi / cf / ntlm.c
ntlm.c
 1  /*-
 2   * Copyright (c) 2015 Kungliga Tekniska Högskolan
 3   * (Royal Institute of Technology, Stockholm, Sweden).
 4   * All rights reserved.
 5   *
 6   * Portions Copyright (c) 2015 Apple Inc. All rights reserved.
 7   *
 8   * Redistribution and use in source and binary forms, with or without
 9   * modification, are permitted provided that the following conditions
10   * are met:
11   * 1. Redistributions of source code must retain the above copyright
12   *    notice, this list of conditions and the following disclaimer.
13   * 2. Redistributions in binary form must reproduce the above copyright
14   *    notice, this list of conditions and the following disclaimer in the
15   *    documentation and/or other materials provided with the distribution.
16   *
17   * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18   * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19   * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20   * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21   * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22   * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23   * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24   * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25   * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26   * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27   * SUCH DAMAGE.
28   */
29  
30  #include "mech_locl.h"
31  #include <heim_threads.h>
32  
33  #include <Security/Security.h>
34  #include "krb5.h"
35  
36  /*
37   *
38   */
39  
40  bool
41  GSSCheckNTLMReflection(uint8_t challange[8])
42  {
43      krb5_boolean found_reflection = false;
44  #if HAVE_KCM
45      static krb5_context context;
46      static dispatch_once_t once;
47      krb5_error_code ret;
48  
49      dispatch_once(&once, ^{
50  	    krb5_init_context(&context);
51  	});
52  
53      if (context == NULL) /* fail open for now */
54  	return false;
55  
56      ret = krb5_kcm_check_ntlm_challenge(context, challange, &found_reflection);
57      if (ret)
58  	return false; /* fail open for now */
59  #endif
60      return found_reflection;
61  }