|
@@ -42,14 +42,14 @@ func checkV1Value(t *testing.T, name string, value []byte, expected string, err
|
|
|
// would authenticate. This was due to a bug in the MS-NLMP docs. This tests for that issue
|
|
// would authenticate. This was due to a bug in the MS-NLMP docs. This tests for that issue
|
|
|
func TestNtlmV1ExtendedSessionSecurity(t *testing.T) {
|
|
func TestNtlmV1ExtendedSessionSecurity(t *testing.T) {
|
|
|
// NTLMv1 with extended session security
|
|
// NTLMv1 with extended session security
|
|
|
- challengeMessage := "TlRMTVNTUAACAAAAAAAAADgAAABVgphiRy3oSZvn1I4AAAAAAAAAAKIAogA4AAAABQEoCgAAAA8CAA4AUgBFAFUAVABFAFIAUwABABwAVQBLAEIAUAAtAEMAQgBUAFIATQBGAEUAMAA2AAQAFgBSAGUAdQB0AGUAcgBzAC4AbgBlAHQAAwA0AHUAawBiAHAALQBjAGIAdAByAG0AZgBlADAANgAuAFIAZQB1AHQAZQByAHMALgBuAGUAdAAFABYAUgBlAHUAdABlAHIAcwAuAG4AZQB0AAAAAAA="
|
|
|
|
|
- authenticateMessage := "TlRMTVNTUAADAAAAGAAYAJgAAAAYABgAsAAAAAAAAABIAAAAOgA6AEgAAAAWABYAggAAABAAEADIAAAAVYKYYgUCzg4AAAAPMQAwADAAMAAwADEALgB3AGMAcABAAHQAaABvAG0AcwBvAG4AcgBlAHUAdABlAHIAcwAuAGMAbwBtAE4AWQBDAFMATQBTAEcAOQA5ADAAOQBRWAK3h/TIywAAAAAAAAAAAAAAAAAAAAA3tp89kZU1hs1XZp7KTyGm3XsFAT9stEDW9YXDaeYVBmBcBb//2FOu"
|
|
|
|
|
|
|
+ challengeMessage := "TlRMTVNTUAACAAAAAAAAADgAAABVgphiRy3oSZvn1I4AAAAAAAAAAKIAogA4AAAABQEoCgAAAA8CAA4AUgBFAFUAVABFAFIAUwABABwAVQBLAEIAUAAtAEMAQgBUAFIATQBGAEUAMAA2AAQAFgBSAGUAdQB0AGUAcgBzAC4AbgBlAHQAAwA0AHUAawBiAHAALQBjAGIAdAByAG0AZgBlADAANgAuAFIAZQB1AHQAZQByAHMALgBuAGUAdAAFABYAUgBlAHUAdABlAHIAcwAuAG4AZQB0AAAAAAA="
|
|
|
|
|
+ authenticateMessage := "TlRMTVNTUAADAAAAGAAYAJgAAAAYABgAsAAAAAAAAABIAAAAOgA6AEgAAAAWABYAggAAABAAEADIAAAAVYKYYgUCzg4AAAAPMQAwADAAMAAwADEALgB3AGMAcABAAHQAaABvAG0AcwBvAG4AcgBlAHUAdABlAHIAcwAuAGMAbwBtAE4AWQBDAFMATQBTAEcAOQA5ADAAOQBRWAK3h/TIywAAAAAAAAAAAAAAAAAAAAA3tp89kZU1hs1XZp7KTyGm3XsFAT9stEDW9YXDaeYVBmBcBb//2FOu"
|
|
|
|
|
|
|
|
challengeData, _ := base64.StdEncoding.DecodeString(challengeMessage)
|
|
challengeData, _ := base64.StdEncoding.DecodeString(challengeMessage)
|
|
|
c, _ := ParseChallengeMessage(challengeData)
|
|
c, _ := ParseChallengeMessage(challengeData)
|
|
|
|
|
|
|
|
- authenticateData, _ := base64.StdEncoding.DecodeString(authenticateMessage)
|
|
|
|
|
- msg, err := ParseAuthenticateMessage(authenticateData, 1)
|
|
|
|
|
|
|
+ authenticateData, _ := base64.StdEncoding.DecodeString(authenticateMessage)
|
|
|
|
|
+ msg, err := ParseAuthenticateMessage(authenticateData, 1)
|
|
|
if err != nil {
|
|
if err != nil {
|
|
|
t.Errorf("Could not process authenticate message: %s", err)
|
|
t.Errorf("Could not process authenticate message: %s", err)
|
|
|
}
|
|
}
|
|
@@ -62,7 +62,7 @@ func TestNtlmV1ExtendedSessionSecurity(t *testing.T) {
|
|
|
context.SetServerChallenge(c.ServerChallenge)
|
|
context.SetServerChallenge(c.ServerChallenge)
|
|
|
err = context.ProcessAuthenticateMessage(msg)
|
|
err = context.ProcessAuthenticateMessage(msg)
|
|
|
if err == nil {
|
|
if err == nil {
|
|
|
- t.Errorf("This message should have failed to authenticate, but it passed", err)
|
|
|
|
|
|
|
+ t.Errorf("This message should have failed to authenticate, but it passed")
|
|
|
}
|
|
}
|
|
|
}
|
|
}
|
|
|
|
|
|
Rod Hynes