2018-07-17 17:56:29 +00:00
using DSInternals.Common.Data ;
using Microsoft.Win32.SafeHandles ;
2015-12-26 22:44:43 +00:00
using System ;
using System.Runtime.InteropServices ;
using System.Security ;
using System.Text ;
namespace DSInternals.Common.Interop
{
internal static class NativeMethods
{
internal const int NTHashNumBits = 128 ;
internal const int NTHashNumBytes = NTHashNumBits / 8 ;
internal const int LMHashNumBits = 128 ;
internal const int LMHashNumBytes = NTHashNumBits / 8 ;
internal const int LMPasswordMaxChars = 14 ;
2018-08-06 21:56:22 +00:00
internal const int NTPasswordMaxChars = 128 ;
2015-12-26 22:44:43 +00:00
private const int MaxRegistryKeyClassSize = 256 ;
private const string Advapi = "advapi32.dll" ;
2018-07-17 17:56:29 +00:00
private const string CryptDll = "cryptdll.Dll" ;
2015-12-26 22:44:43 +00:00
private const string Ntdll = "ntdll.dll" ;
private const string Mpr = "mpr.dll" ;
2023-09-25 21:52:05 +00:00
private const string KdsCli = "KdsCli.dll" ;
2015-12-26 22:44:43 +00:00
private const string LMOwfInternalName = "SystemFunction006" ;
2017-07-12 18:22:47 +00:00
private const string NTOwfInternalName = "SystemFunction007" ;
private const string LMOwfEncryptInternalName = "SystemFunction024" ;
2015-12-26 22:44:43 +00:00
private const string LMOwfDecryptInternalName = "SystemFunction025" ;
2017-07-12 18:22:47 +00:00
private const string NTOwfEncryptInternalName = "SystemFunction026" ;
private const string NTOwfDecryptInternalName = "SystemFunction027" ;
2015-12-26 22:44:43 +00:00
private const string RC4EncryptInternalName = "SystemFunction032" ;
2017-07-12 18:22:47 +00:00
private const string RC4DecryptInternalName = "SystemFunction033" ;
2015-12-26 22:44:43 +00:00
/// <summary>
/// Converts the specified NTSTATUS code to its equivalent system error code.
/// </summary>
/// <param name="Status">The NTSTATUS code to be converted.</param>
/// <returns>The function returns the corresponding system error code.</returns>
[DllImport(Ntdll)]
internal static extern Win32ErrorCode RtlNtStatusToDosError ( NtStatus status ) ;
/// <summary>
/// Takes the passed NtPassword and performs a one-way-function on it.
/// Uses the RSA MD4 function
/// </summary>
/// <param name="password">The password to perform the one-way-function on. </param>
/// <param name="hash">The hashed password is returned here.</param>
/// <returns>STATUS_SUCCESS - The function was completed successfully. The hashed password is in hash.</returns>
/// <see>https://github.com/wine-mirror/wine/blob/master/dlls/advapi32/crypt_md4.c</see>
[DllImport(Advapi, SetLastError = true, EntryPoint = NTOwfInternalName, CharSet = CharSet.Unicode)]
private static extern NtStatus RtlCalculateNtOwfPassword ( [ In ] ref SecureUnicodeString password , [ MarshalAs ( UnmanagedType . LPArray , SizeConst = NTHashNumBytes ) , In , Out ] byte [ ] hash ) ;
2023-09-25 21:52:05 +00:00
2016-07-15 16:10:55 +00:00
/// <summary>
/// Takes the passed NtPassword and performs a one-way-function on it.
/// Uses the RSA MD4 function
/// </summary>
/// <param name="password">The password to perform the one-way-function on. </param>
/// <param name="hash">The hashed password is returned here.</param>
/// <returns>STATUS_SUCCESS - The function was completed successfully. The hashed password is in hash.</returns>
/// <see>https://github.com/wine-mirror/wine/blob/master/dlls/advapi32/crypt_md4.c</see>
[DllImport(Advapi, SetLastError = true, EntryPoint = NTOwfInternalName, CharSet = CharSet.Unicode)]
private static extern NtStatus RtlCalculateNtOwfPassword ( [ In ] ref UnicodeString password , [ MarshalAs ( UnmanagedType . LPArray , SizeConst = NTHashNumBytes ) , In , Out ] byte [ ] hash ) ;
2015-12-26 22:44:43 +00:00
internal static NtStatus RtlCalculateNtOwfPassword ( SafeUnicodeSecureStringPointer password , out byte [ ] hash )
{
SecureUnicodeString unicodePassword = new SecureUnicodeString ( password ) ;
// Allocate output buffer
hash = new byte [ NTHashNumBytes ] ;
return RtlCalculateNtOwfPassword ( ref unicodePassword , hash ) ;
}
2016-07-15 16:10:55 +00:00
internal static NtStatus RtlCalculateNtOwfPassword ( string password , out byte [ ] hash )
{
UnicodeString unicodePassword = new UnicodeString ( password ) ;
// Allocate output buffer
hash = new byte [ NTHashNumBytes ] ;
return RtlCalculateNtOwfPassword ( ref unicodePassword , hash ) ;
}
2015-12-26 22:44:43 +00:00
/// <summary>
/// Takes the passed password and performs a one-way-function on it.
/// The current implementation does this by using the password as a key to encrypt a known block of text.
/// </summary>
/// <param name="password">The password to perform the one-way-function on.</param>
/// <param name="hash">The hashed password is returned here</param>
/// <returns>
/// STATUS_SUCCESS - The function was completed successfully. The hashed password is in LmOwfPassword.
/// STATUS_UNSUCCESSFUL - Something failed. The LmOwfPassword is undefined.
/// </returns>
/// <see>https://github.com/wine-mirror/wine/blob/master/dlls/advapi32/crypt_lmhash.c</see>
[DllImport(Advapi, SetLastError = true, EntryPoint = LMOwfInternalName)]
private static extern NtStatus RtlCalculateLmOwfPassword ( SafeOemStringPointer password , [ MarshalAs ( UnmanagedType . LPArray , SizeConst = LMHashNumBytes ) , In , Out ] byte [ ] hash ) ;
internal static NtStatus RtlCalculateLmOwfPassword ( SafeOemStringPointer password , out byte [ ] hash )
{
// Allocate output buffer
hash = new byte [ LMHashNumBytes ] ;
return RtlCalculateLmOwfPassword ( password , hash ) ;
}
/// <summary>
/// This function upper cases the specified unicode source string
/// and then converts it into an oem string. The translation is done with respect
2016-02-28 14:21:22 +00:00
/// to the OEM code page (OCP). ma
2015-12-26 22:44:43 +00:00
/// </summary>
/// <param name="destinationString">Returns an oem string that is equivalent to the unicode source string. The maximum length field is only set if AllocateDestinationString is TRUE.</param>
/// <param name="sourceString">Supplies the unicode source string that is to be converted to oem.</param>
/// <param name="allocateDestinationString">Supplies a flag that controls whether or not this API allocates the buffer space for the destination string. If it does, then the buffer must be deallocated using RtlFreeAnsiString (note that only storage for DestinationString->Buffer is allocated by this API).</param>
/// <returns>SUCCESS if the conversion was successful.</returns>
[DllImport(Ntdll, SetLastError = true, CharSet = CharSet.Unicode)]
private static extern NtStatus RtlUpcaseUnicodeStringToOemString ( [ In , Out ] ref OemString destinationString , [ In ] ref SecureUnicodeString sourceString , [ MarshalAs ( UnmanagedType . Bool ) ] bool allocateDestinationString ) ;
internal static NtStatus RtlUpcaseUnicodeStringToOemString ( OemString destinationString , SecureUnicodeString sourceString )
{
return RtlUpcaseUnicodeStringToOemString ( ref destinationString , ref sourceString , false ) ;
}
/// <summary>
/// Decrypt NtOwfPassword using an index as the key
/// </summary>
[DllImport(Advapi, EntryPoint = NTOwfDecryptInternalName, SetLastError = true, CallingConvention = CallingConvention.StdCall)]
private static extern NtStatus RtlDecryptNtOwfPwdWithIndex ( [ In ] byte [ ] encryptedNtOwfPassword , [ In ] ref int index , [ In , Out ] byte [ ] ntOwfPassword ) ;
internal static NtStatus RtlDecryptNtOwfPwdWithIndex ( byte [ ] encryptedNtOwfPassword , int index , out byte [ ] ntOwfPassword )
{
ntOwfPassword = new byte [ NTHashNumBytes ] ;
// Wrap to get rid of the unnecessary pointer to int
return RtlDecryptNtOwfPwdWithIndex ( encryptedNtOwfPassword , ref index , ntOwfPassword ) ;
}
2017-07-12 18:22:47 +00:00
/// <summary>
/// Encrypt NtOwfPassword using an index as the key
/// </summary>
[DllImport(Advapi, EntryPoint = NTOwfEncryptInternalName, SetLastError = true, CallingConvention = CallingConvention.StdCall)]
private static extern NtStatus RtlEncryptNtOwfPwdWithIndex ( [ In ] byte [ ] ntOwfPassword , [ In ] ref int index , [ In , Out ] byte [ ] encryptedNtOwfPassword ) ;
internal static NtStatus RtlEncryptNtOwfPwdWithIndex ( byte [ ] ntOwfPassword , int index , out byte [ ] encryptedNtOwfPassword )
{
encryptedNtOwfPassword = new byte [ NTHashNumBytes ] ;
// Wrap to get rid of the unnecessary pointer to int
return RtlEncryptNtOwfPwdWithIndex ( ntOwfPassword , ref index , encryptedNtOwfPassword ) ;
}
2015-12-26 22:44:43 +00:00
/// <summary>
/// Decrypt LmOwfPassword using an index as the key
/// </summary>
[DllImport(Advapi, EntryPoint = LMOwfDecryptInternalName, SetLastError = true)]
private static extern NtStatus RtlDecryptLmOwfPwdWithIndex ( [ In ] byte [ ] encryptedLmOwfPassword , [ In ] ref int index , [ In , Out ] byte [ ] lmOwfPassword ) ;
internal static NtStatus RtlDecryptLmOwfPwdWithIndex ( byte [ ] encryptedLmOwfPassword , int index , out byte [ ] lmOwfPassword )
{
lmOwfPassword = new byte [ LMHashNumBytes ] ;
// Wrap to get rid of the unnecessary pointer to int
return RtlDecryptLmOwfPwdWithIndex ( encryptedLmOwfPassword , ref index , lmOwfPassword ) ;
}
2017-07-12 18:22:47 +00:00
/// <summary>
/// Encrypt LmOwfPassword using an index as the key
/// </summary>
[DllImport(Advapi, EntryPoint = LMOwfEncryptInternalName, SetLastError = true)]
private static extern NtStatus RtlEncryptLmOwfPwdWithIndex ( [ In ] byte [ ] lmOwfPassword , [ In ] ref int index , [ In , Out ] byte [ ] encryptedLmOwfPassword ) ;
internal static NtStatus RtlEncryptLmOwfPwdWithIndex ( byte [ ] lmOwfPassword , int index , out byte [ ] encryptedLmOwfPassword )
{
encryptedLmOwfPassword = new byte [ LMHashNumBytes ] ;
// Wrap to get rid of the unnecessary pointer to int
return RtlEncryptLmOwfPwdWithIndex ( lmOwfPassword , ref index , encryptedLmOwfPassword ) ;
}
2023-09-25 21:52:05 +00:00
2015-12-26 22:44:43 +00:00
/// <summary>
/// Faster arbitrary length data encryption function (using RC4)
/// </summary>
[DllImport(Advapi, EntryPoint = RC4DecryptInternalName, SetLastError = true)]
private static extern NtStatus RtlDecryptData2 ( ref CryptoBuffer data , ref CryptoBuffer key ) ;
internal static NtStatus RtlDecryptData2 ( byte [ ] encryptedData , byte [ ] key , out byte [ ] decryptedData )
{
// RtlDecryptData2 writes data to the input buffer, so we make a copy of it to be safe
decryptedData = ( byte [ ] ) encryptedData . Clone ( ) ;
GCHandle dataPin = GCHandle . Alloc ( ( object ) decryptedData , GCHandleType . Pinned ) ;
GCHandle keyPin = GCHandle . Alloc ( ( object ) key , GCHandleType . Pinned ) ;
try
{
CryptoBuffer keyBuffer = new CryptoBuffer ( keyPin . AddrOfPinnedObject ( ) , key . Length ) ;
CryptoBuffer dataBuffer = new CryptoBuffer ( dataPin . AddrOfPinnedObject ( ) , decryptedData . Length ) ;
NtStatus result = RtlDecryptData2 ( ref dataBuffer , ref keyBuffer ) ;
return result ;
}
finally
{
if ( dataPin ! = null & & dataPin . IsAllocated )
{
dataPin . Free ( ) ;
}
if ( keyPin ! = null & & keyPin . IsAllocated )
{
keyPin . Free ( ) ;
}
}
}
2018-07-17 17:56:29 +00:00
[DllImport(CryptDll, CharSet = CharSet.Auto, SetLastError = true)]
2018-08-06 21:56:22 +00:00
private static extern NtStatus CDLocateCSystem ( KerberosKeyType type , out IntPtr cryptoSystem ) ;
internal static NtStatus CDLocateCSystem ( KerberosKeyType type , out KerberosCryptoSystem cryptoSystem )
{
IntPtr cryptoSystemPtr ;
NtStatus status = CDLocateCSystem ( type , out cryptoSystemPtr ) ;
cryptoSystem = ( status = = NtStatus . Success ) ? ( KerberosCryptoSystem ) Marshal . PtrToStructure ( cryptoSystemPtr , typeof ( KerberosCryptoSystem ) ) : null ;
return status ;
}
2018-07-17 17:56:29 +00:00
2015-12-26 22:44:43 +00:00
/// <summary>
/// Creates a subkey under HKEY_USERS or HKEY_LOCAL_MACHINE and loads the data from the specified registry hive into that subkey.
/// </summary>
/// <param name="hKey">A handle to the key where the subkey will be created.</param>
/// <param name="SubKey">The name of the key to be created under hKey. This subkey is where the registration information from the file will be loaded.</param>
/// <param name="File">The name of the file containing the registry data. This file must be a local file that was created with the RegSaveKey function. If this file does not exist, a file is created with the specified name.</param>
/// <returns>If the function succeeds, the return value is ERROR_SUCCESS.</returns>
[DllImport(Advapi, CharSet = CharSet.Unicode, SetLastError = true)]
internal static extern Win32ErrorCode RegLoadKey ( IntPtr hKey , string SubKey , string File ) ;
/// <summary>
/// Unloads the specified registry key and its subkeys from the registry.
/// </summary>
/// <param name="hKey">A handle to the registry key to be unloaded.</param>
/// <param name="SubKey">The name of the subkey to be unloaded. The key referred to by the lpSubKey parameter must have been created by using the RegLoadKey function.</param>
/// <returns>If the function succeeds, the return value is ERROR_SUCCESS.</returns>
[DllImport(Advapi, CharSet = CharSet.Unicode, SetLastError = true)]
internal static extern Win32ErrorCode RegUnLoadKey ( IntPtr hKey , string SubKey ) ;
[DllImport(Advapi, CharSet = CharSet.Unicode, SetLastError = true)]
private static extern Win32ErrorCode RegQueryInfoKey ( SafeRegistryHandle hKey , StringBuilder lpClass , ref int lpcbClass , IntPtr lpReserved , int [ ] lpcSubKeys , int [ ] lpcbMaxSubKeyLen , int [ ] lpcbMaxClassLen , int [ ] lpcValues , int [ ] lpcbMaxValueNameLen , int [ ] lpcbMaxValueLen , int [ ] lpcbSecurityDescriptor , out long lpftLastWriteTime ) ;
internal static Win32ErrorCode RegQueryInfoKey ( SafeRegistryHandle hKey , out string keyClass , out DateTime lastWriteTime )
{
StringBuilder buffer = new StringBuilder ( MaxRegistryKeyClassSize ) ;
int bufferSize = buffer . Capacity ;
long fileTime ;
Win32ErrorCode result = NativeMethods . RegQueryInfoKey ( hKey , buffer , ref bufferSize , IntPtr . Zero , null , null , null , null , null , null , null , out fileTime ) ;
keyClass = buffer . ToString ( ) ;
lastWriteTime = DateTime . FromFileTimeUtc ( fileTime ) ;
return result ;
}
/// <summary>
/// The WNetAddConnection2 function makes a connection to a network resource and can redirect a local device to the network resource.
/// </summary>
/// <param name="netResource">This is a pointer to a network resource structure that specifies the network resource to connect to.</param>
/// <param name="password">Specifies the password to be used in making the connection. The NULL value may be passed in to indicate use of the 'default' password. An empty string may be used to indicate no password.</param>
/// <param name="userName">This specifies the username used to make the connection. If NULL, the default username (currently logged on user) will be applied. This is used when the user wishes to connect to a resource, but has a different user name or account assigned to him for that resource.</param>
/// <param name="flags">A set of connection options.</param>
/// <returns>If the function succeeds, the return value is NO_ERROR.</returns>
/// <see>http://msdn.microsoft.com/library/windows/desktop/aa385413.aspx</see>
[DllImport(Mpr, CharSet = CharSet.Unicode, SetLastError = true)]
private static extern Win32ErrorCode WNetAddConnection2 ( [ In ] ref NetResource netResource , [ In ] SafeUnicodeSecureStringPointer password , [ In ] [ MarshalAs ( UnmanagedType . LPWStr ) ] string userName , NetConnectOptions flags ) ;
internal static Win32ErrorCode WNetAddConnection2 ( ref NetResource netResource , SecureString password , string userName , NetConnectOptions flags )
{
using ( SafeUnicodeSecureStringPointer passwordPointer = new SafeUnicodeSecureStringPointer ( password ) )
{
return WNetAddConnection2 ( ref netResource , passwordPointer , userName , flags ) ;
}
}
/// <summary>
/// The WNetCancelConnection2 function cancels an existing network connection. You can also call the function to remove remembered network connections that are not currently connected.
/// </summary>
/// <param name="name">Pointer to a constant null-terminated string that specifies the name of either the redirected local device or the remote network resource to disconnect from. </param>
/// <param name="flags">Connection type.</param>
/// <param name="force">Specifies whether the disconnection should occur if there are open files or jobs on the connection. If this parameter is FALSE, the function fails if there are open files or jobs.</param>
/// <returns>If the function succeeds, the return value is NO_ERROR.</returns>
/// <see>http://msdn.microsoft.com/library/windows/desktop/aa385427.aspx</see>
[DllImport(Mpr, CharSet = CharSet.Unicode, SetLastError = true)]
internal static extern Win32ErrorCode WNetCancelConnection2 ( [ MarshalAs ( UnmanagedType . LPWStr ) ] string name , NetCancelOptions flags , [ MarshalAs ( UnmanagedType . Bool ) ] bool force ) ;
2016-02-28 14:21:22 +00:00
[DllImport(Advapi, CharSet = CharSet.Unicode, SetLastError = true)]
[return: MarshalAs(UnmanagedType.Bool)]
private static extern bool ConvertStringSecurityDescriptorToSecurityDescriptor ( string stringSecurityDescriptor , uint stringSDRevision , [ MarshalAs ( UnmanagedType . LPArray , SizeParamIndex = 3 ) ] out byte [ ] securityDescriptor , out uint securityDescriptorSize ) ;
internal static Win32ErrorCode ConvertStringSecurityDescriptorToSecurityDescriptor ( string stringSecurityDescriptor , uint stringSDRevision , out byte [ ] securityDescriptor )
{
uint securityDescriptorSize ;
bool result = ConvertStringSecurityDescriptorToSecurityDescriptor ( stringSecurityDescriptor , stringSDRevision , out securityDescriptor , out securityDescriptorSize ) ;
2023-09-25 21:52:05 +00:00
if ( result )
2016-02-28 14:21:22 +00:00
{
return Win32ErrorCode . Success ;
}
else
{
return ( Win32ErrorCode ) Marshal . GetLastWin32Error ( ) ;
}
}
2023-09-25 21:52:05 +00:00
/// <param name="rootKeyId">Root key identifier of the requested key. It can be set to NULL.</param>
/// <param name="l0KeyId">L0 index of the requested group key. It MUST be a signed 32-bit integer greater than or equal to -1.</param>
/// <param name="l1KeyId">L1 index of the requested group key. It MUST be a signed 32-bit integer between -1 and 31 (inclusive).</param>
/// <param name="l2KeyId">L2 index of the requested group key. It MUST be a 32-bit integer between -1 and 31 (inclusive).</param>
/// <param name="level">Group key level.</param>
/// <returns>If the function succeeds, the return value is NO_ERROR.</returns>
internal static Win32ErrorCode GenerateKDFContext (
Guid rootKeyId ,
int l0KeyId ,
int l1KeyId ,
int l2KeyId ,
GroupKeyLevel level ,
out byte [ ] context ,
out int counterOffset )
{
var result = GenerateKDFContext (
rootKeyId ,
l0KeyId ,
l1KeyId ,
l2KeyId ,
level ,
out SafeSidKeyProviderHandle contextHandle ,
out int contextLength ,
out counterOffset
) ;
try
{
context = contextHandle . ToArray ( contextLength ) ;
}
finally
{
contextHandle . Close ( ) ;
}
return result ;
}
[DllImport(KdsCli, SetLastError = true)]
private static extern Win32ErrorCode GenerateKDFContext (
Guid rootKeyId ,
int l0KeyId ,
int l1KeyId ,
int l2KeyId ,
GroupKeyLevel level ,
out SafeSidKeyProviderHandle context ,
out int contextLength ,
out int counterOffset ) ;
internal static Win32ErrorCode GenerateDerivedKey (
string kdfAlgorithmName ,
byte [ ] kdfParameters ,
byte [ ] secret ,
byte [ ] context ,
int? counterOffset ,
2023-09-28 01:40:15 +00:00
string label ,
2023-09-25 21:52:05 +00:00
int iteration ,
2023-09-28 01:40:15 +00:00
int desiredKeyLength ,
2023-09-25 21:52:05 +00:00
out byte [ ] derivedKey ,
out string invalidAttribute )
{
int kdfParametersLength = kdfParameters ? . Length ? ? 0 ;
int secretLength = secret ? . Length ? ? 0 ;
int contextLength = context ? . Length ? ? 0 ;
2023-09-28 01:40:15 +00:00
int labelLength = label ! = null ? Encoding . Unicode . GetMaxByteCount ( label . Length ) : 0 ; // size of the unicode string, including the trailing zero
byte [ ] derivedKeyBuffer = new byte [ desiredKeyLength ] ;
2023-09-25 21:52:05 +00:00
StringBuilder invalidAttributeBuffer = new StringBuilder ( byte . MaxValue ) ;
// Deal with the optional int parameter
int counterOffsetValue = counterOffset . GetValueOrDefault ( ) ;
2023-09-28 01:40:15 +00:00
var counterOffsetHandle = GCHandle . Alloc ( counterOffsetValue , GCHandleType . Pinned ) ;
2023-09-25 21:52:05 +00:00
try
{
Win32ErrorCode result = GenerateDerivedKey (
kdfAlgorithmName ,
kdfParameters ,
kdfParametersLength ,
secret ,
secretLength ,
context ,
contextLength ,
2023-09-28 01:40:15 +00:00
( counterOffset . HasValue ? counterOffsetHandle . AddrOfPinnedObject ( ) : IntPtr . Zero ) ,
2023-09-25 21:52:05 +00:00
label ,
labelLength ,
iteration ,
derivedKeyBuffer ,
2023-09-28 01:40:15 +00:00
desiredKeyLength ,
2023-09-25 21:52:05 +00:00
ref invalidAttributeBuffer
) ;
derivedKey = derivedKeyBuffer ;
invalidAttribute = invalidAttributeBuffer . ToString ( ) ;
return result ;
}
finally
{
counterOffsetHandle . Free ( ) ;
}
}
[DllImport(KdsCli, CharSet = CharSet.Unicode, SetLastError = true)]
private static extern Win32ErrorCode GenerateDerivedKey (
string kdfAlgorithmName ,
byte [ ] kdfParameters ,
int kdfParametersLength ,
byte [ ] secret ,
int secretLength ,
byte [ ] context ,
int contextLength ,
IntPtr counterOffset ,
2023-09-28 01:40:15 +00:00
string label ,
2023-09-25 21:52:05 +00:00
int labelLength ,
int iteration ,
[MarshalAs(UnmanagedType.LPArray)] byte [ ] key ,
int keyLength ,
ref StringBuilder invalidAttribute ) ;
/// <summary>
/// Frees memory allocated for a credentials structure by the GenerateKDFContext and GenerateDerivedKey functions.
/// </summary>
/// <param name="memory">Memory to be freed.</param>
[DllImport(KdsCli)]
internal static extern void SIDKeyProvFree ( [ In ] IntPtr memory ) ;
2015-12-26 22:44:43 +00:00
}
2023-09-25 21:52:05 +00:00
}
