summaryrefslogtreecommitdiff
path: root/third_party/heimdal/lib/gssapi/netlogon/netlogon.h
blob: 68573e2dd69cdc09e9e83b161fd45152c0659c23 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150

/*
 * Copyright (c) 2010-2018 Kungliga Tekniska Högskolan
 * (Royal Institute of Technology, Stockholm, Sweden).
 * All rights reserved.
 *
 * Portions Copyright (c) 2010 Apple Inc. All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * 3. Neither the name of the Institute nor the names of its contributors
 *    may be used to endorse or promote products derived from this software
 *    without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 */

#ifndef NETLOGON_NETLOGON_H
#define NETLOGON_NETLOGON_H

#include <config.h>

#include <stdio.h>
#include <stdlib.h>
#include <assert.h>
#include <string.h>
#include <errno.h>

#include <gssapi.h>
#include <gssapi_mech.h>
#include <gssapi_netlogon.h>

#include <krb5.h>

#include <roken.h>
#include <heim_threads.h>

#define HC_DEPRECATED_CRYPTO
#include "crypto-headers.h"

/*
 *
 */

typedef struct {
#define NL_NEGOTIATE_REQUEST_MESSAGE    0x00000000
#define NL_NEGOTIATE_RESPONSE_MESSAGE   0x00000001
    uint32_t MessageType;
#define NL_FLAG_NETBIOS_DOMAIN_NAME     0x00000001
#define NL_FLAG_NETBIOS_COMPUTER_NAME   0x00000002
#define NL_FLAG_DNS_DOMAIN_NAME         0x00000004
#define NL_FLAG_DNS_HOST_NAME           0x00000008 /* not used */
#define NL_FLAG_UTF8_COMPUTER_NAME      0x00000010
    uint32_t Flags;
    char *Buffer[0];
} NL_AUTH_MESSAGE;

#define NL_AUTH_MESSAGE_LENGTH          8

/* SignatureAlgorithm */
#define NL_SIGN_ALG_HMAC_MD5            0x0077
#define NL_SIGN_ALG_SHA256              0x0013

/* SealAlgorithm */
#define NL_SEAL_ALG_RC4                 0x007A
#define NL_SEAL_ALG_AES128              0x001A
#define NL_SEAL_ALG_NONE                0xFFFF

typedef struct {
    uint16_t SignatureAlgorithm;
    uint16_t SealAlgorithm;
    uint16_t Pad;
    uint16_t Flags;
    uint8_t SequenceNumber[8];
    uint8_t Checksum[8];
    uint8_t Confounder[8];
} NL_AUTH_SIGNATURE;

#define NL_AUTH_SIGNATURE_HEADER_LENGTH 8
#define NL_AUTH_SIGNATURE_COMMON_LENGTH 16
#define NL_AUTH_SIGNATURE_LENGTH        32

typedef struct {
    uint16_t SignatureAlgorithm;
    uint16_t SealAlgorithm;
    uint16_t Pad;
    uint16_t Flags;
    uint8_t SequenceNumber[8];
    uint8_t Checksum[32];
    uint8_t Confounder[8];
} NL_AUTH_SHA2_SIGNATURE;

#define NL_AUTH_SHA2_SIGNATURE_LENGTH   56

typedef union {
    NL_AUTH_SIGNATURE Signature;
    NL_AUTH_SHA2_SIGNATURE SHA2Signature;
} NL_AUTH_SIGNATURE_U;

#define NL_AUTH_SIGNATURE_P(_u)         (&(_u)->Signature)

typedef struct gssnetlogon_name {
    gss_buffer_desc NetbiosName;
    gss_buffer_desc DnsName;
} *gssnetlogon_name;
typedef const struct gssnetlogon_name *gssnetlogon_const_name;

typedef struct gssnetlogon_cred {
    gssnetlogon_name *Name;
    uint16_t SignatureAlgorithm;
    uint16_t SealAlgorithm;
    uint8_t SessionKey[16];
} *gssnetlogon_cred;
typedef const struct gssnetlogon_cred *gssnetlogon_const_cred;

typedef struct gssnetlogon_ctx {
    HEIMDAL_MUTEX Mutex;
    enum { NL_AUTH_NEGOTIATE, NL_AUTH_ESTABLISHED } State;
    OM_uint32 GssFlags;
    uint8_t LocallyInitiated;
    uint32_t MessageBlockSize;
    uint16_t SignatureAlgorithm;
    uint16_t SealAlgorithm;
    uint64_t SequenceNumber;
    gssnetlogon_name SourceName;
    gssnetlogon_name TargetName;
    uint8_t SessionKey[16];
} *gssnetlogon_ctx;

#include <netlogon-private.h>

#endif /* NETLOGON_NETLOGON_H */
View Lorry Controller Status