/* $NetBSD: netlogon.h,v 1.1.1.1 2011/04/13 18:14:47 elric Exp $ */ /* * Copyright (c) 2010 Kungliga Tekniska Högskolan * (Royal Institute of Technology, Stockholm, Sweden). * All rights reserved. * * Portions Copyright (c) 2010 Apple Inc. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * 3. Neither the name of the Institute nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ #ifndef NETLOGON_NETLOGON_H #define NETLOGON_NETLOGON_H #include #include #include #include #include #include #include #include #include #include #include #include #define HC_DEPRECATED_CRYPTO #include "crypto-headers.h" /* * */ typedef struct { #define NL_NEGOTIATE_REQUEST_MESSAGE 0x00000000 #define NL_NEGOTIATE_RESPONSE_MESSAGE 0x00000001 uint32_t MessageType; #define NL_FLAG_NETBIOS_DOMAIN_NAME 0x00000001 #define NL_FLAG_NETBIOS_COMPUTER_NAME 0x00000002 #define NL_FLAG_DNS_DOMAIN_NAME 0x00000004 #define NL_FLAG_DNS_HOST_NAME 0x00000008 /* not used */ #define NL_FLAG_UTF8_COMPUTER_NAME 0x00000010 uint32_t Flags; char *Buffer[0]; } NL_AUTH_MESSAGE; #define NL_AUTH_MESSAGE_LENGTH 8 /* SignatureAlgorithm */ #define NL_SIGN_ALG_HMAC_MD5 0x0077 #define NL_SIGN_ALG_SHA256 0x0013 /* SealAlgorithm */ #define NL_SEAL_ALG_RC4 0x007A #define NL_SEAL_ALG_AES128 0x001A #define NL_SEAL_ALG_NONE 0xFFFF typedef struct { uint16_t SignatureAlgorithm; uint16_t SealAlgorithm; uint16_t Pad; uint16_t Flags; uint8_t SequenceNumber[8]; uint8_t Checksum[8]; uint8_t Confounder[8]; } NL_AUTH_SIGNATURE; #define NL_AUTH_SIGNATURE_HEADER_LENGTH 8 #define NL_AUTH_SIGNATURE_COMMON_LENGTH 16 #define NL_AUTH_SIGNATURE_LENGTH 32 typedef struct { uint16_t SignatureAlgorithm; uint16_t SealAlgorithm; uint16_t Pad; uint16_t Flags; uint8_t SequenceNumber[8]; uint8_t Checksum[32]; uint8_t Confounder[8]; } NL_AUTH_SHA2_SIGNATURE; #define NL_AUTH_SHA2_SIGNATURE_LENGTH 56 typedef union { NL_AUTH_SIGNATURE Signature; NL_AUTH_SHA2_SIGNATURE SHA2Signature; } NL_AUTH_SIGNATURE_U; #define NL_AUTH_SIGNATURE_P(_u) (&(_u)->Signature) typedef struct gssnetlogon_name { gss_buffer_desc NetbiosName; gss_buffer_desc DnsName; } *gssnetlogon_name; typedef struct gssnetlogon_cred { gssnetlogon_name *Name; uint16_t SignatureAlgorithm; uint16_t SealAlgorithm; uint8_t SessionKey[16]; } *gssnetlogon_cred; typedef struct gssnetlogon_ctx { HEIMDAL_MUTEX Mutex; enum { NL_AUTH_NEGOTIATE, NL_AUTH_ESTABLISHED } State; OM_uint32 GssFlags; uint8_t LocallyInitiated; uint32_t MessageBlockSize; uint16_t SignatureAlgorithm; uint16_t SealAlgorithm; uint64_t SequenceNumber; gssnetlogon_name SourceName; gssnetlogon_name TargetName; uint8_t SessionKey[16]; } *gssnetlogon_ctx; #include #endif /* NETLOGON_NETLOGON_H */