s3:smbd:password_in_history: treat entry with 0 salt as 0 + plain nt hash
authorMichael Adam <obnox@samba.org>
Tue, 5 Jan 2010 15:58:30 +0000 (16:58 +0100)
committerMichael Adam <obnox@samba.org>
Thu, 7 Jan 2010 15:51:17 +0000 (16:51 +0100)
This is to introduce a new format of the password history, maintaining backwards
compatibility: The old format was 16 byte hash + 16 byte md5(salt + nt hash).
The new format is 16 zero bytes and 16 bytes nt hash.

This will allow us to respect the last X entries of the nt password history
when deciding whether to increment the bad password count.

This is part of the fix for bug #4347 .

Michael

source3/smbd/chgpasswd.c

index c858c2dfa0be4134a33e7c487e75801ef3e28611..dcefc82bba0278b89b1ad0d637492a15fa777beb 100644 (file)
@@ -1031,13 +1031,31 @@ bool password_in_history(uint8_t nt_pw[NT_HASH_LEN],
                        /* Ignore zero valued entries. */
                        continue;
                }
                        /* Ignore zero valued entries. */
                        continue;
                }
-               /* Create salted versions of new to compare. */
-               E_md5hash(current_salt, nt_pw, new_nt_pw_salted_md5_hash);
 
 
-               if (memcmp(new_nt_pw_salted_md5_hash,
-                          old_nt_pw_salted_md5_hash,
-                          SALTED_MD5_HASH_LEN) == 0) {
-                       return true;
+               if (memcmp(zero_md5_nt_pw, current_salt,
+                          PW_HISTORY_SALT_LEN) == 0)
+               {
+                       /*
+                        * New format: zero salt and then plain nt hash.
+                        * Directly compare the hashes.
+                        */
+                       if (memcmp(nt_pw, old_nt_pw_salted_md5_hash,
+                                  SALTED_MD5_HASH_LEN) == 0)
+                       {
+                               return true;
+                       }
+               } else {
+                       /*
+                        * Old format: md5sum of salted nt hash.
+                        * Create salted version of new pw to compare.
+                        */
+                       E_md5hash(current_salt, nt_pw, new_nt_pw_salted_md5_hash);
+
+                       if (memcmp(new_nt_pw_salted_md5_hash,
+                                  old_nt_pw_salted_md5_hash,
+                                  SALTED_MD5_HASH_LEN) == 0) {
+                               return true;
+                       }
                }
        }
        return false;
                }
        }
        return false;