archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/base/boot/bootssp/ntlmsspi.h

530 lines
16 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1993 Microsoft Corporation
  5. Module Name:
  7. ntlmsspi.h
  9. Abstract:
  11. Header file describing the interface to code common to the
  12. NT Lanman Security Support Provider (NtLmSsp) Service and the DLL.
  14. Author:
  16. Cliff Van Dyke (CliffV) 17-Sep-1993
  18. Revision History:
  20. --*/
  22. #ifndef _NTLMSSPI_INCLUDED_
  23. #define _NTLMSSPI_INCLUDED_
  25. #include <rc4.h>
  26. #include <md5.h>
  27. #include <hmac.h>
  28. #include <crypt.h>
  30. #ifdef MAC
  31. #define SEC_FAR
  32. #define FAR
  33. #define _fmemcpy memcpy
  34. #define _fmemcmp memcmp
  35. #define _fmemset memset
  36. #define _fstrcmp strcmp
  37. #define _fstrcpy strcpy
  38. #define _fstrlen strlen
  39. #define _fstrncmp strncmp
  40. #endif
  42. #ifdef DOS
  43. #ifndef FAR
  44. #define FAR far
  45. #endif
  46. #ifndef SEC_FAR
  47. #define SEC_FAR FAR
  48. #endif
  49. #endif
  51. //#include <sysinc.h>
  53. #define MSV1_0_CHALLENGE_LENGTH 8
  55. #ifndef IN
  56. #define IN
  57. #define OUT
  58. #define OPTIONAL
  59. #endif
  61. #define ARGUMENT_PRESENT(ArgumentPointer) (\
  62. (CHAR *)(ArgumentPointer) != (CHAR *)(NULL) )
  63. #define UNREFERENCED_PARAMETER(P)
  65. #ifdef MAC
  66. #define swaplong(Value) \
  67. Value = ( (((Value) & 0xFF000000) >> 24) \
  68. | (((Value) & 0x00FF0000) >> 8) \
  69. | (((Value) & 0x0000FF00) << 8) \
  70. | (((Value) & 0x000000FF) << 24))
  71. #else
  72. #define swaplong(Value)
  73. #endif
  75. #ifdef MAC
  76. #define swapshort(Value) \
  77. Value = ( (((Value) & 0x00FF) << 8) \
  78. | (((Value) & 0xFF00) >> 8))
  79. #else
  80. #define swapshort(Value)
  81. #endif
  83. #ifndef TRUE
  84. typedef int BOOL;
  85. #define FALSE 0
  86. #define TRUE 1
  87. #endif
  89. typedef unsigned long ULONG, DWORD, *PULONG;
  90. typedef unsigned long SEC_FAR *LPULONG;
  91. typedef unsigned short USHORT, WORD;
  92. typedef char CHAR, *PCHAR;
  93. typedef unsigned char UCHAR, *PUCHAR;
  94. typedef unsigned char SEC_FAR *LPUCHAR;
  95. typedef void SEC_FAR *PVOID, *LPVOID;
  96. typedef unsigned char BOOLEAN;
  97. #ifndef BLDR_KERNEL_RUNTIME
  98. typedef long LUID, *PLUID;
  99. #endif
  101. //
  102. // Calculate the address of the base of the structure given its type, and an
  103. // address of a field within the structure.
  104. //
  106. #define CONTAINING_RECORD(address, type, field) ((type *)( \
  107. (PCHAR)(address) - \
  108. (PCHAR)(&((type *)0)->field)))
  110. #ifndef BLDR_KERNEL_RUNTIME
  111. typedef struct _LIST_ENTRY {
  112. struct _LIST_ENTRY *Flink;
  113. struct _LIST_ENTRY *Blink;
  114. } LIST_ENTRY, *PLIST_ENTRY;
  115. #endif
  117. //
  118. // VOID
  119. // InitializeListHead(
  120. // PLIST_ENTRY ListHead
  121. // );
  122. //
  124. #define InitializeListHead(ListHead) (\
  125. (ListHead)->Flink = (ListHead)->Blink = (ListHead))
  127. //
  128. // VOID
  129. // RemoveEntryList(
  130. // PLIST_ENTRY Entry
  131. // );
  132. //
  134. #define RemoveEntryList(Entry) {\
  135. PLIST_ENTRY _EX_Blink;\
  136. PLIST_ENTRY _EX_Flink;\
  137. _EX_Flink = (Entry)->Flink;\
  138. _EX_Blink = (Entry)->Blink;\
  139. _EX_Blink->Flink = _EX_Flink;\
  140. _EX_Flink->Blink = _EX_Blink;\
  141. }
  143. //
  144. // VOID
  145. // InsertHeadList(
  146. // PLIST_ENTRY ListHead,
  147. // PLIST_ENTRY Entry
  148. // );
  149. //
  151. #define InsertHeadList(ListHead,Entry) {\
  152. PLIST_ENTRY _EX_Flink;\
  153. PLIST_ENTRY _EX_ListHead;\
  154. _EX_ListHead = (ListHead);\
  155. _EX_Flink = _EX_ListHead->Flink;\
  156. (Entry)->Flink = _EX_Flink;\
  157. (Entry)->Blink = _EX_ListHead;\
  158. _EX_Flink->Blink = (Entry);\
  159. _EX_ListHead->Flink = (Entry);\
  160. }
  162. //
  163. // BOOLEAN
  164. // IsListEmpty(
  165. // PLIST_ENTRY ListHead
  166. // );
  167. //
  169. #define IsListEmpty(ListHead) \
  170. ((ListHead)->Flink == (ListHead))
  172. //
  173. // Maximum lifetime of a context
  174. //
  175. //#define NTLMSSP_MAX_LIFETIME (2*60*1000)L // 2 minutes
  176. #define NTLMSSP_MAX_LIFETIME 120000L // 2 minutes
  179. ////////////////////////////////////////////////////////////////////////
  180. //
  181. // Opaque Messages passed between client and server
  182. //
  183. ////////////////////////////////////////////////////////////////////////
  185. #define NTLMSSP_SIGNATURE "NTLMSSP"
  187. //
  188. // MessageType for the following messages.
  189. //
  191. typedef enum {
  192. NtLmNegotiate = 1,
  193. NtLmChallenge,
  194. NtLmAuthenticate
  195. } NTLM_MESSAGE_TYPE;
  197. //
  198. // Signature structure
  199. //
  201. typedef struct _NTLMSSP_MESSAGE_SIGNATURE {
  202. ULONG Version;
  203. ULONG RandomPad;
  204. ULONG CheckSum;
  205. ULONG Nonce;
  206. } NTLMSSP_MESSAGE_SIGNATURE, * PNTLMSSP_MESSAGE_SIGNATURE;
  208. #define NTLMSSP_MESSAGE_SIGNATURE_SIZE sizeof(NTLMSSP_MESSAGE_SIGNATURE)
  210. #define NTLMSSP_SIGN_VERSION 1
  212. #define NTLMSSP_KEY_SALT 0xbd
  214. #define MSV1_0_NTLMV2_RESPONSE_LENGTH 16
  215. #define MSV1_0_NTLMV2_OWF_LENGTH 16
  216. #define MSV1_0_CHALLENGE_LENGTH 8
  218. //
  219. // valid QoP flags
  220. //
  222. #define QOP_NTLMV2 0x00000001
  224. //
  225. // this is an MSV1_0 private data structure, defining the layout of an Ntlmv2
  226. // response, as sent by a client in the NtChallengeResponse field of the
  227. // NETLOGON_NETWORK_INFO structure. If can be differentiated from an old style
  228. // NT response by its length. This is crude, but it needs to pass through
  229. // servers and the servers' DCs that do not understand Ntlmv2 but that are
  230. // willing to pass longer responses.
  231. //
  233. typedef struct _MSV1_0_NTLMV2_RESPONSE {
  234. UCHAR Response[MSV1_0_NTLMV2_RESPONSE_LENGTH]; // hash of OWF of password with all the following fields
  235. UCHAR RespType; // id number of response; current is 1
  236. UCHAR HiRespType; // highest id number understood by client
  237. USHORT Flags; // reserved; must be sent as zero at this version
  238. ULONG MsgWord; // 32 bit message from client to server (for use by auth protocol)
  239. ULONGLONG TimeStamp; // time stamp when client generated response -- NT system time, quad part
  240. UCHAR ChallengeFromClient[MSV1_0_CHALLENGE_LENGTH];
  241. ULONG AvPairsOff; // offset to start of AvPairs (to allow future expansion)
  242. UCHAR Buffer[1]; // start of buffer with AV pairs (or future stuff -- so use the offset)
  243. } MSV1_0_NTLMV2_RESPONSE, *PMSV1_0_NTLMV2_RESPONSE;
  245. #define MSV1_0_NTLMV2_INPUT_LENGTH (sizeof(MSV1_0_NTLMV2_RESPONSE) - MSV1_0_NTLMV2_RESPONSE_LENGTH)
  247. typedef struct {
  248. UCHAR Response[MSV1_0_NTLMV2_RESPONSE_LENGTH];
  249. UCHAR ChallengeFromClient[MSV1_0_CHALLENGE_LENGTH];
  250. } MSV1_0_LMV2_RESPONSE, *PMSV1_0_LMV2_RESPONSE;
  252. //
  253. // User, Group and Password lengths
  254. //
  256. #define UNLEN 256 // Maximum user name length
  257. #define DNS_MAX_NAME_LENGTH 256 // max dns name length
  258. #define LM20_UNLEN 20 // LM 2.0 Maximum user name length
  260. //
  261. // String Lengths for various LanMan names
  262. //
  264. #define CNLEN 15 // Computer name length
  265. #define LM20_CNLEN 15 // LM 2.0 Computer name length
  266. #define DNLEN CNLEN // Maximum domain name length
  267. #define LM20_DNLEN LM20_CNLEN // LM 2.0 Maximum domain name length
  269. //
  270. // Size of the largest message
  271. // (The largest message is the AUTHENTICATE_MESSAGE)
  272. //
  274. #define DNSLEN 256 // length of DNS name
  276. #define TARGET_INFO_LEN ((2*DNSLEN + DNLEN + CNLEN) * sizeof(WCHAR) + \
  277. 5 * sizeof(MSV1_0_AV_PAIR))
  279. // length of NTLM2 response
  280. #define NTLMV2_RESPONSE_LENGTH (sizeof(MSV1_0_NTLMV2_RESPONSE) + \
  281. TARGET_INFO_LEN)
  283. #define NTLMSSP_MAX_MESSAGE_SIZE (sizeof(AUTHENTICATE_MESSAGE) + \
  284. LM_RESPONSE_LENGTH + \
  285. NTLMV2_RESPONSE_LENGTH + \
  286. (DNLEN + 1) * sizeof(WCHAR) + \
  287. (UNLEN + 1) * sizeof(WCHAR) + \
  288. (CNLEN + 1) * sizeof(WCHAR))
  290. typedef struct _MSV1_0_AV_PAIR {
  291. USHORT AvId;
  292. USHORT AvLen;
  293. // Data is treated as byte array following structure
  294. } MSV1_0_AV_PAIR, *PMSV1_0_AV_PAIR;
  296. //
  297. // bootssp does not support RtlOemStringToUnicodeString or
  298. // RtlUnicodeStringToOemString, punt to Ansi Strings
  299. //
  301. #define SspOemStringToUnicodeString RtlAnsiStringToUnicodeString
  302. #define SspUnicodeStringToOemString RtlUnicodeStringToAnsiString
  304. #define CSSEALMAGIC "session key to client-to-server sealing key magic constant"
  305. #define SCSEALMAGIC "session key to server-to-client sealing key magic constant"
  306. #define CSSIGNMAGIC "session key to client-to-server signing key magic constant"
  307. #define SCSIGNMAGIC "session key to server-to-client signing key magic constant"
  309. //
  310. // Valid values of NegotiateFlags
  311. //
  313. #define NTLMSSP_NEGOTIATE_UNICODE 0x00000001 // Text strings are in unicode
  314. #define NTLMSSP_NEGOTIATE_OEM 0x00000002 // Text strings are in OEM
  315. #define NTLMSSP_REQUEST_TARGET 0x00000004 // Server should return its authentication realm
  317. #define NTLMSSP_NEGOTIATE_SIGN 0x00000010 // Request signature capability
  318. #define NTLMSSP_NEGOTIATE_SEAL 0x00000020 // Request confidentiality
  319. #define NTLMSSP_NEGOTIATE_DATAGRAM 0x00000040 // Use datagram style authentication
  320. #define NTLMSSP_NEGOTIATE_LM_KEY 0x00000080 // Use LM session key for sign/seal
  322. #define NTLMSSP_NEGOTIATE_NETWARE 0x00000100 // NetWare authentication
  323. #define NTLMSSP_NEGOTIATE_NTLM 0x00000200 // NTLM authentication
  324. #define NTLMSSP_NEGOTIATE_NT_ONLY 0x00000400 // NT authentication only (no LM)
  325. #define NTLMSSP_NEGOTIATE_NULL_SESSION 0x00000800 // NULL Sessions on NT 5.0 and beyand
  327. #define NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED 0x1000 // Domain Name supplied on negotiate
  328. #define NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED 0x2000 // Workstation Name supplied on negotiate
  329. #define NTLMSSP_NEGOTIATE_LOCAL_CALL 0x00004000 // Indicates client/server are same machine
  330. #define NTLMSSP_NEGOTIATE_ALWAYS_SIGN 0x00008000 // Sign for all security levels
  332. //
  333. // Valid target types returned by the server in Negotiate Flags
  334. //
  336. #define NTLMSSP_TARGET_TYPE_DOMAIN 0x00010000 // TargetName is a domain name
  337. #define NTLMSSP_TARGET_TYPE_SERVER 0x00020000 // TargetName is a server name
  338. #define NTLMSSP_TARGET_TYPE_SHARE 0x00040000 // TargetName is a share name
  339. #define NTLMSSP_NEGOTIATE_NTLM2 0x00080000 // NTLM2 authentication added for NT4-SP4
  341. #define NTLMSSP_NEGOTIATE_IDENTIFY 0x00100000 // Create identify level token
  343. //
  344. // Valid requests for additional output buffers
  345. //
  347. #define NTLMSSP_REQUEST_INIT_RESPONSE 0x00100000 // get back session keys
  348. #define NTLMSSP_REQUEST_ACCEPT_RESPONSE 0x00200000 // get back session key, LUID
  349. #define NTLMSSP_REQUEST_NON_NT_SESSION_KEY 0x00400000 // request non-nt session key
  350. #define NTLMSSP_NEGOTIATE_TARGET_INFO 0x00800000 // target info present in challenge message
  352. #define NTLMSSP_NEGOTIATE_EXPORTED_CONTEXT 0x01000000 // It's an exported context
  354. #define NTLMSSP_NEGOTIATE_128 0x20000000 // negotiate 128 bit encryption
  355. #define NTLMSSP_NEGOTIATE_KEY_EXCH 0x40000000 // exchange a key using key exchange key
  356. #define NTLMSSP_NEGOTIATE_56 0x80000000 // negotiate 56 bit encryption
  358. // flags used in client space to control sign and seal; never appear on the wire
  359. #define NTLMSSP_APP_SEQ 0x00000040 // Use application provided seq num
  361. typedef struct _NTLMV2_DERIVED_SKEYS {
  362. ULONG KeyLen; // key length in octets
  363. ULONG* pSendNonce; // ptr to nonce to use for send
  364. ULONG* pRecvNonce; // ptr to nonce to use for receive
  365. struct RC4_KEYSTRUCT* pSealRc4Sched; // ptr to key sched used for Seal
  366. struct RC4_KEYSTRUCT* pUnsealRc4Sched; // ptr to key sched used to Unseal
  368. ULONG SendNonce;
  369. ULONG RecvNonce;
  370. UCHAR SignSessionKey[sizeof(USER_SESSION_KEY)];
  371. UCHAR VerifySessionKey[sizeof(USER_SESSION_KEY)];
  372. UCHAR SealSessionKey[sizeof(USER_SESSION_KEY)];
  373. UCHAR UnsealSessionKey[sizeof(USER_SESSION_KEY)];
  374. ULONG64 Pad1; // pad keystructs to 64.
  375. struct RC4_KEYSTRUCT SealRc4Sched; // key struct used for Seal
  376. ULONG64 Pad2; // pad keystructs to 64.
  377. struct RC4_KEYSTRUCT UnsealRc4Sched; // key struct used to Unseal
  378. } NTLMV2_DERIVED_SKEYS, *PNTLMV2_DERIVED_SKEYS;
  380. typedef enum
  381. {
  382. MsvAvEOL, // end of list
  383. MsvAvNbComputerName, // server's computer name -- NetBIOS
  384. MsvAvNbDomainName, // server's domain name -- NetBIOS
  385. MsvAvDnsComputerName, // server's computer name -- DNS
  386. MsvAvDnsDomainName, // server's domain name -- DNS
  387. MsvAvDnsTreeName, // server's tree name -- DNS
  388. MsvAvFlags // server's extended flags -- DWORD mask
  389. } MSV1_0_AVID;
  391. //
  392. // Opaque message returned from first call to InitializeSecurityContext
  393. //
  395. typedef struct _NEGOTIATE_MESSAGE {
  396. UCHAR Signature[sizeof(NTLMSSP_SIGNATURE)];
  397. NTLM_MESSAGE_TYPE MessageType;
  398. ULONG NegotiateFlags;
  399. STRING32 OemDomainName;
  400. STRING32 OemWorkstationName;
  401. } NEGOTIATE_MESSAGE, *PNEGOTIATE_MESSAGE;
  403. //
  404. // Opaque message returned from first call to AcceptSecurityContext
  405. //
  407. typedef struct _CHALLENGE_MESSAGE {
  408. UCHAR Signature[sizeof(NTLMSSP_SIGNATURE)];
  409. NTLM_MESSAGE_TYPE MessageType;
  410. STRING32 TargetName;
  411. ULONG NegotiateFlags;
  412. UCHAR Challenge[MSV1_0_CHALLENGE_LENGTH];
  413. ULONG64 ServerContextHandle;
  414. STRING32 TargetInfo;
  415. } CHALLENGE_MESSAGE, *PCHALLENGE_MESSAGE;
  417. //
  418. // Opaque message returned from second call to InitializeSecurityContext
  419. //
  421. typedef struct _AUTHENTICATE_MESSAGE {
  422. UCHAR Signature[sizeof(NTLMSSP_SIGNATURE)];
  423. NTLM_MESSAGE_TYPE MessageType;
  424. STRING32 LmChallengeResponse;
  425. STRING32 NtChallengeResponse;
  426. STRING32 DomainName;
  427. STRING32 UserName;
  428. STRING32 Workstation;
  429. STRING32 SessionKey;
  430. ULONG NegotiateFlags;
  431. } AUTHENTICATE_MESSAGE, *PAUTHENTICATE_MESSAGE;
  433. typedef enum _eSignSealOp {
  434. eSign, // MakeSignature is calling
  435. eVerify, // VerifySignature is calling
  436. eSeal, // SealMessage is calling
  437. eUnseal // UnsealMessage is calling
  438. } eSignSealOp;
  440. //
  441. // Version 1 is the structure above, using stream RC4 to encrypt the trailing
  442. // 12 bytes.
  443. //
  445. #define NTLM_SIGN_VERSION 1
  447. //
  448. // the following declarations may be duplicates
  449. //
  451. NTSTATUS
  452. RtlAnsiStringToUnicodeString(
  453. UNICODE_STRING* DestinationString,
  454. ANSI_STRING* SourceString,
  455. BOOLEAN AllocateDestinationString
  456. );
  458. VOID
  459. RtlInitString(
  460. OUT STRING* DestinationString,
  461. IN PCSTR SourceString OPTIONAL
  462. );
  464. NTSTATUS
  465. RtlUnicodeStringToAnsiString(
  466. OUT ANSI_STRING* DestinationString,
  467. IN UNICODE_STRING* SourceString,
  468. IN BOOLEAN AllocateDestinationString
  469. );
  471. WCHAR
  472. RtlUpcaseUnicodeChar(
  473. IN WCHAR SourceCharacter
  474. );
  476. ////////////////////////////////////////////////////////////////////////
  477. //
  478. // Procedure Forwards
  479. //
  480. ////////////////////////////////////////////////////////////////////////
  482. PVOID
  483. SspAlloc(
  484. int Size
  485. );
  487. void
  488. SspFree(
  489. PVOID Buffer
  490. );
  492. PSTRING
  493. SspAllocateString(
  494. PVOID Value
  495. );
  497. PSTRING
  498. SspAllocateStringBlock(
  499. PVOID Value,
  500. int Length
  501. );
  503. void
  504. SspFreeString(
  505. PSTRING * String
  506. );
  508. void
  509. SspCopyString(
  510. IN PVOID MessageBuffer,
  511. OUT PSTRING OutString,
  512. IN PSTRING InString,
  513. IN OUT PCHAR *Where,
  514. IN BOOLEAN Absolute
  515. );
  517. void
  518. SspCopyStringFromRaw(
  519. IN PVOID MessageBuffer,
  520. OUT STRING32* OutString,
  521. IN PCHAR InString,
  522. IN int InStringLength,
  523. IN OUT PCHAR *Where
  524. );
  526. DWORD
  527. SspTicks(
  528. );
  530. #endif // ifndef _NTLMSSPI_INCLUDED_