ruby_smb 3.1.2 → 3.1.5

data/spec/lib/ruby_smb/ntlm/client/session_spec.rb

@@ -0,0 +1,114 @@
+require 'spec_helper'
+
+RSpec.describe RubySMB::NTLM::Client::Session do
+  let(:message) { Net::NTLM::Message.decode64(%Q{
+    TlRMTVNTUAACAAAADAAMADgAAAA1goni+fNfw+cInOgAAAAAAAAAAJoAmgBE
+    AAAACgBjRQAAAA9NAFMARgBMAEEAQgACAAwATQBTAEYATABBAEIAAQAeAFcA
+    SQBOAC0AMwBNAFMAUAA4AEsAMgBMAEMARwBDAAQAGABtAHMAZgBsAGEAYgAu
+    AGwAbwBjAGEAbAADADgAVwBJAE4ALQAzAE0AUwBQADgASwAyAEwAQwBHAEMA
+    LgBtAHMAZgBsAGEAYgAuAGwAbwBjAGEAbAAHAAgAS6UAWjxl2AEAAAAA
+  }) }
+  subject(:client) { RubySMB::NTLM::Client.new('rubysmb', 'rubysmb', flags: RubySMB::NTLM::DEFAULT_CLIENT_FLAGS) }
+  subject(:session) { described_class.new(client, message) }
+
+  describe '#authenticate!' do
+    it 'calculates the user session key' do
+      expect(session).to receive(:calculate_user_session_key!).and_call_original
+      session.authenticate!
+    end
+
+    it 'checks if it is anonymous' do
+      expect(session).to receive(:is_anonymous?).at_least(1).times.and_call_original
+      session.authenticate!
+    end
+
+    it 'returns a Type3 message' do
+      expect(session.authenticate!).to be_a Net::NTLM::Message::Type3
+      expect(session.authenticate!).to be_a RubySMB::NTLM::Message
+    end
+
+    context 'when it is anonymous' do
+      before(:each) { allow(session).to receive(:is_anonymous?).and_return(true) }
+      after(:each) { session.authenticate! }
+
+      it 'uses the correct lm response' do
+        expect(session).to_not receive(:lmv2_resp)
+        expect(Net::NTLM::Message::Type3).to receive(:create).and_wrap_original do |method, params|
+          expect(params).to include :lm_response
+          expect(params[:lm_response]).to eq "\x00".b
+          method.call(params)
+        end
+      end
+
+      it 'uses the correct ntlm response' do
+        expect(session).to_not receive(:ntlmv2_resp)
+        expect(Net::NTLM::Message::Type3).to receive(:create).and_wrap_original do |method, params|
+          expect(params).to include :ntlm_response
+          expect(params[:ntlm_response]).to eq ''
+          method.call(params)
+        end
+      end
+    end
+
+    context 'when it is not anonymous' do
+      before(:each) { allow(session).to receive(:is_anonymous?).and_return(false) }
+      after(:each) { session.authenticate! }
+
+      it 'uses the correct lm response' do
+        expect(session).to receive(:lmv2_resp).and_call_original
+        expect(Net::NTLM::Message::Type3).to receive(:create).and_wrap_original do |method, params|
+          expect(params).to include :lm_response
+          expect(params[:lm_response].length).to be > 16
+          method.call(params)
+        end
+      end
+
+      it 'uses the correct ntlm response' do
+        expect(session).to receive(:ntlmv2_resp).and_call_original
+        expect(Net::NTLM::Message::Type3).to receive(:create).and_wrap_original do |method, params|
+          expect(params).to include :ntlm_response
+          expect(params[:ntlm_response].length).to be > 16
+          method.call(params)
+        end
+      end
+    end
+  end
+
+  describe '#calculate_user_session_key!' do
+    it 'returns an all zero key when it is anonymous' do
+      expect(session).to receive(:is_anonymous?).and_return(true)
+      expect(session.send(:calculate_user_session_key!)).to eq "\x00".b * 16
+    end
+
+    it 'returns a session key' do
+      expect(session).to receive(:is_anonymous?).and_return(false)
+      expect(session.send(:calculate_user_session_key!)).to_not eq "\x00".b * 16
+    end
+  end
+
+  describe '#is_anonymous?' do
+    it 'returns false when the username is not blank' do
+      allow(session).to receive(:username).and_return('username')
+      allow(session).to receive(:password).and_return('')
+      expect(session.is_anonymous?).to be false
+    end
+
+    it 'returns false when the password is not blank' do
+      allow(session).to receive(:username).and_return('')
+      allow(session).to receive(:password).and_return('password')
+      expect(session.is_anonymous?).to be false
+    end
+
+    it 'returns false when the username is not blank and the password is not blank' do
+      allow(session).to receive(:username).and_return('username')
+      allow(session).to receive(:password).and_return('password')
+      expect(session.is_anonymous?).to be false
+    end
+
+    it 'returns true when the username is blank and the password is blank' do
+      allow(session).to receive(:username).and_return('')
+      allow(session).to receive(:password).and_return('')
+      expect(session.is_anonymous?).to be true
+    end
+  end
+end

data/spec/lib/ruby_smb/ntlm/client_spec.rb

@@ -0,0 +1,36 @@
+require 'spec_helper'
+
+RSpec.describe RubySMB::NTLM::Client do
+  subject(:client) { described_class.new('rubysmb', 'rubysmb', flags: RubySMB::NTLM::DEFAULT_CLIENT_FLAGS) }
+
+  describe '#init_context' do
+    context 'when a response is provided' do
+      let(:resp) { %Q{
+        TlRMTVNTUAACAAAADAAMADgAAAA1goni+fNfw+cInOgAAAAAAAAAAJoAmgBE
+        AAAACgBjRQAAAA9NAFMARgBMAEEAQgACAAwATQBTAEYATABBAEIAAQAeAFcA
+        SQBOAC0AMwBNAFMAUAA4AEsAMgBMAEMARwBDAAQAGABtAHMAZgBsAGEAYgAu
+        AGwAbwBjAGEAbAADADgAVwBJAE4ALQAzAE0AUwBQADgASwAyAEwAQwBHAEMA
+        LgBtAHMAZgBsAGEAYgAuAGwAbwBjAGEAbAAHAAgAS6UAWjxl2AEAAAAA
+      } }
+      it 'returns a Type3 message' do
+        expect(client.init_context(resp)).to be_a Net::NTLM::Message::Type3
+      end
+
+      it 'creates a new session object' do
+        expect(RubySMB::NTLM::Client::Session).to receive(:new).and_call_original
+        client.init_context(resp)
+      end
+    end
+
+    context 'when a response is not provided' do
+      it 'returns a Type1 message' do
+        expect(client.init_context).to be_a Net::NTLM::Message::Type1
+      end
+
+      it 'does not create a new session object' do
+        expect(RubySMB::NTLM::Client::Session).to_not receive(:new)
+        client.init_context
+      end
+    end
+  end
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ruby_smb
 version: !ruby/object:Gem::Version
-  version: 3.1.2
+  version: 3.1.5
 platform: ruby
 authors:
 - Metasploit Hackers
@@ -97,7 +97,7 @@ cert_chain:
   EknWpNgVhohbot1lfVAMmIhdtOVaRVcQQixWPwprDj/ydB8ryDMDosIMcw+fkoXU
   9GJsSaSRRYQ9UUkVL27b64okU8D48m8=
   -----END CERTIFICATE-----
-date: 2022-05-04 00:00:00.000000000 Z
+date: 2022-06-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: redcarpet
@@ -320,6 +320,7 @@ files:
 - lib/ruby_smb/dcerpc/epm/epm_ept_map_response.rb
 - lib/ruby_smb/dcerpc/epm/epm_twrt.rb
 - lib/ruby_smb/dcerpc/error.rb
+- lib/ruby_smb/dcerpc/fault.rb
 - lib/ruby_smb/dcerpc/ndr.rb
 - lib/ruby_smb/dcerpc/netlogon.rb
 - lib/ruby_smb/dcerpc/netlogon/netr_server_authenticate3_request.rb
@@ -349,6 +350,12 @@ files:
 - lib/ruby_smb/dcerpc/samr/samr_close_handle_response.rb
 - lib/ruby_smb/dcerpc/samr/samr_connect_request.rb
 - lib/ruby_smb/dcerpc/samr/samr_connect_response.rb
+- lib/ruby_smb/dcerpc/samr/samr_create_user2_in_domain_request.rb
+- lib/ruby_smb/dcerpc/samr/samr_create_user2_in_domain_response.rb
+- lib/ruby_smb/dcerpc/samr/samr_delete_user_request.rb
+- lib/ruby_smb/dcerpc/samr/samr_delete_user_response.rb
+- lib/ruby_smb/dcerpc/samr/samr_enumerate_domains_in_sam_server_request.rb
+- lib/ruby_smb/dcerpc/samr/samr_enumerate_domains_in_sam_server_response.rb
 - lib/ruby_smb/dcerpc/samr/samr_enumerate_users_in_domain_request.rb
 - lib/ruby_smb/dcerpc/samr/samr_enumerate_users_in_domain_response.rb
 - lib/ruby_smb/dcerpc/samr/samr_get_alias_membership_request.rb
@@ -357,12 +364,16 @@ files:
 - lib/ruby_smb/dcerpc/samr/samr_get_groups_for_user_response.rb
 - lib/ruby_smb/dcerpc/samr/samr_lookup_domain_in_sam_server_request.rb
 - lib/ruby_smb/dcerpc/samr/samr_lookup_domain_in_sam_server_response.rb
+- lib/ruby_smb/dcerpc/samr/samr_lookup_names_in_domain_request.rb
+- lib/ruby_smb/dcerpc/samr/samr_lookup_names_in_domain_response.rb
 - lib/ruby_smb/dcerpc/samr/samr_open_domain_request.rb
 - lib/ruby_smb/dcerpc/samr/samr_open_domain_response.rb
 - lib/ruby_smb/dcerpc/samr/samr_open_user_request.rb
 - lib/ruby_smb/dcerpc/samr/samr_open_user_response.rb
 - lib/ruby_smb/dcerpc/samr/samr_rid_to_sid_request.rb
 - lib/ruby_smb/dcerpc/samr/samr_rid_to_sid_response.rb
+- lib/ruby_smb/dcerpc/samr/samr_set_information_user2_request.rb
+- lib/ruby_smb/dcerpc/samr/samr_set_information_user2_response.rb
 - lib/ruby_smb/dcerpc/sec_trailer.rb
 - lib/ruby_smb/dcerpc/srvsvc.rb
 - lib/ruby_smb/dcerpc/srvsvc/net_share_enum_all.rb
@@ -473,7 +484,9 @@ files:
 - lib/ruby_smb/nbss/session_header.rb
 - lib/ruby_smb/nbss/session_request.rb
 - lib/ruby_smb/ntlm.rb
+- lib/ruby_smb/ntlm/client.rb
 - lib/ruby_smb/server.rb
+- lib/ruby_smb/server/cli.rb
 - lib/ruby_smb/server/server_client.rb
 - lib/ruby_smb/server/server_client/encryption.rb
 - lib/ruby_smb/server/server_client/negotiation.rb
@@ -691,14 +704,24 @@ files:
 - spec/lib/ruby_smb/dcerpc/samr/samr_close_handle_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_connect_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_connect_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_create_user2_in_domain_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_create_user2_in_domain_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_delete_user_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_delete_user_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_domains_in_sam_server_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_domains_in_sam_server_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_users_in_domain_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_users_in_domain_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_lookup_domain_in_sam_server_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_lookup_domain_in_sam_server_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_lookup_names_in_domain_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_lookup_names_in_domain_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_open_domain_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_open_domain_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_rid_to_sid_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_rid_to_sid_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_set_information_user2_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_set_information_user2_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr_spec.rb
 - spec/lib/ruby_smb/dcerpc/sec_trailer_spec.rb
 - spec/lib/ruby_smb/dcerpc/srvsvc/net_share_enum_all_spec.rb
@@ -802,6 +825,8 @@ files:
 - spec/lib/ruby_smb/nbss/netbios_name_spec.rb
 - spec/lib/ruby_smb/nbss/session_header_spec.rb
 - spec/lib/ruby_smb/nbss/session_request_spec.rb
+- spec/lib/ruby_smb/ntlm/client/session_spec.rb
+- spec/lib/ruby_smb/ntlm/client_spec.rb
 - spec/lib/ruby_smb/server/server_client_spec.rb
 - spec/lib/ruby_smb/server/session_spec.rb
 - spec/lib/ruby_smb/server/share/provider/disk_spec.rb
@@ -1001,14 +1026,24 @@ test_files:
 - spec/lib/ruby_smb/dcerpc/samr/samr_close_handle_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_connect_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_connect_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_create_user2_in_domain_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_create_user2_in_domain_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_delete_user_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_delete_user_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_domains_in_sam_server_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_domains_in_sam_server_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_users_in_domain_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_enumerate_users_in_domain_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_lookup_domain_in_sam_server_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_lookup_domain_in_sam_server_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_lookup_names_in_domain_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_lookup_names_in_domain_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_open_domain_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_open_domain_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_rid_to_sid_request_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr/samr_rid_to_sid_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_set_information_user2_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/samr/samr_set_information_user2_response_spec.rb
 - spec/lib/ruby_smb/dcerpc/samr_spec.rb
 - spec/lib/ruby_smb/dcerpc/sec_trailer_spec.rb
 - spec/lib/ruby_smb/dcerpc/srvsvc/net_share_enum_all_spec.rb
@@ -1112,6 +1147,8 @@ test_files:
 - spec/lib/ruby_smb/nbss/netbios_name_spec.rb
 - spec/lib/ruby_smb/nbss/session_header_spec.rb
 - spec/lib/ruby_smb/nbss/session_request_spec.rb
+- spec/lib/ruby_smb/ntlm/client/session_spec.rb
+- spec/lib/ruby_smb/ntlm/client_spec.rb
 - spec/lib/ruby_smb/server/server_client_spec.rb
 - spec/lib/ruby_smb/server/session_spec.rb
 - spec/lib/ruby_smb/server/share/provider/disk_spec.rb