archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/ssr/ipsecprov/winipsec.h

1236 lines
23 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1999 Microsoft Corporation
  6. Module Name:
  8. winipsec.h
  10. Abstract:
  12. Header file for IPSec WINAPIs.
  14. Author:
  16. krishnaG 21-September-1999
  18. Environment:
  20. User Level: Win32
  22. Revision History:
  24. abhisheV 21-September-1999 Added the structures.
  26. --*/
  29. #ifndef _WINIPSEC_
  30. #define _WINIPSEC_
  33. #ifdef __cplusplus
  34. extern "C" {
  35. #endif
  38. #define PERSIST_SPD_OBJECT (ULONG) 0x00000001
  40. #define IP_ADDRESS_ME (ULONG) 0x00000000
  41. #define IP_ADDRESS_MASK_NONE (ULONG) 0xFFFFFFFF
  42. #define SUBNET_ADDRESS_ANY (ULONG) 0x00000000
  43. #define SUBNET_MASK_ANY (ULONG) 0x00000000
  46. #define FILTER_NATURE_PASS_THRU 0x00000001
  47. #define FILTER_NATURE_BLOCKING 0x00000002
  48. #define FILTER_DIRECTION_INBOUND 0x00000004
  49. #define FILTER_DIRECTION_OUTBOUND 0x00000008
  52. #define ENUM_GENERIC_FILTERS 0x00000001
  53. #define ENUM_SELECT_SPECIFIC_FILTERS 0x00000002
  54. #define ENUM_SPECIFIC_FILTERS 0x00000004
  57. //
  58. // Policy flags.
  59. //
  61. #define IPSEC_MM_POLICY_ENABLE_DIAGNOSTICS 0x00000001
  62. #define IPSEC_MM_POLICY_DEFAULT_POLICY 0x00000002
  63. #define IPSEC_MM_POLICY_ON_NO_MATCH 0x00000004
  64. #define IPSEC_MM_POLICY_DISABLE_CRL 0x00000008
  65. #define IPSEC_MM_POLICY_DISABLE_NEGOTIATE 0x00000010
  68. #define IPSEC_QM_POLICY_TRANSPORT_MODE 0x00000000
  69. #define IPSEC_QM_POLICY_TUNNEL_MODE 0x00000001
  70. #define IPSEC_QM_POLICY_DEFAULT_POLICY 0x00000002
  71. #define IPSEC_QM_POLICY_ALLOW_SOFT 0x00000004
  72. #define IPSEC_QM_POLICY_ON_NO_MATCH 0x00000008
  73. #define IPSEC_QM_POLICY_DISABLE_NEGOTIATE 0x00000010
  76. #define IPSEC_MM_AUTH_DEFAULT_AUTH 0x00000001
  77. #define IPSEC_MM_AUTH_ON_NO_MATCH 0x00000002
  80. #define RETURN_DEFAULTS_ON_NO_MATCH 0x00000001
  83. //
  84. // Delete MM SA flags.
  85. //
  87. #define IPSEC_MM_DELETE_ASSOCIATED_QMS 0x00000001
  90. #define IPSEC_SA_TUNNEL 0x00000001
  91. #define IPSEC_SA_REPLAY 0x00000002
  92. #define IPSEC_SA_DELETE 0x00000004
  93. #define IPSEC_SA_MANUAL 0x00000010
  95. #define IPSEC_SA_MULTICAST_MIRROR 0x00000020
  96. #define IPSEC_SA_INBOUND 0x00000040
  97. #define IPSEC_SA_OUTBOUND 0x00000080
  98. #define IPSEC_SA_DISABLE_IDLE_OUT 0x00000100
  100. #define IPSEC_SA_DISABLE_ANTI_REPLAY_CHECK 0x00000200
  101. #define IPSEC_SA_DISABLE_LIFETIME_CHECK 0x00000400
  108. //
  109. // Bounds for number of offers
  110. //
  111. #define IPSEC_MAX_MM_OFFERS 20
  112. #define IPSEC_MAX_QM_OFFERS 50
  114. typedef enum _ADDR_TYPE {
  115. IP_ADDR_UNIQUE = 1,
  116. IP_ADDR_SUBNET,
  117. IP_ADDR_INTERFACE,
  118. } ADDR_TYPE, * PADDR_TYPE;
  121. typedef struct _ADDR {
  122. ADDR_TYPE AddrType;
  123. ULONG uIpAddr;
  124. ULONG uSubNetMask;
  125. GUID gInterfaceID;
  126. } ADDR, * PADDR;
  129. typedef enum _PROTOCOL_TYPE {
  130. PROTOCOL_UNIQUE = 1,
  131. } PROTOCOL_TYPE, * PPROTOCOL_TYPE;
  134. typedef struct _PROTOCOL {
  135. PROTOCOL_TYPE ProtocolType;
  136. DWORD dwProtocol;
  137. } PROTOCOL, * PPROTOCOL;
  140. typedef enum _PORT_TYPE {
  141. PORT_UNIQUE = 1,
  142. } PORT_TYPE, * PPORT_TYPE;
  145. typedef struct _PORT {
  146. PORT_TYPE PortType;
  147. WORD wPort;
  148. } PORT, * PPORT;
  151. typedef enum _IF_TYPE {
  152. INTERFACE_TYPE_ALL = 1,
  153. INTERFACE_TYPE_LAN,
  154. INTERFACE_TYPE_DIALUP,
  155. INTERFACE_TYPE_MAX
  156. } IF_TYPE, * PIF_TYPE;
  159. typedef enum _FILTER_FLAG {
  160. PASS_THRU = 1,
  161. BLOCKING,
  162. NEGOTIATE_SECURITY,
  163. FILTER_FLAG_MAX
  164. } FILTER_FLAG, * PFILTER_FLAG;
  167. typedef struct _TRANSPORT_FILTER {
  168. GUID gFilterID;
  169. LPWSTR pszFilterName;
  170. IF_TYPE InterfaceType;
  171. BOOL bCreateMirror;
  172. DWORD dwFlags;
  173. ADDR SrcAddr;
  174. ADDR DesAddr;
  175. PROTOCOL Protocol;
  176. PORT SrcPort;
  177. PORT DesPort;
  178. FILTER_FLAG InboundFilterFlag;
  179. FILTER_FLAG OutboundFilterFlag;
  180. DWORD dwDirection;
  181. DWORD dwWeight;
  182. GUID gPolicyID;
  183. } TRANSPORT_FILTER, * PTRANSPORT_FILTER;
  186. //
  187. // Maximum number of transport filters that can be enumerated
  188. // by SPD at a time.
  189. //
  191. #define MAX_TRANSPORTFILTER_ENUM_COUNT 1000
  194. typedef struct _TUNNEL_FILTER {
  195. GUID gFilterID;
  196. LPWSTR pszFilterName;
  197. IF_TYPE InterfaceType;
  198. BOOL bCreateMirror;
  199. DWORD dwFlags;
  200. ADDR SrcAddr;
  201. ADDR DesAddr;
  202. PROTOCOL Protocol;
  203. PORT SrcPort;
  204. PORT DesPort;
  205. ADDR SrcTunnelAddr;
  206. ADDR DesTunnelAddr;
  207. FILTER_FLAG InboundFilterFlag;
  208. FILTER_FLAG OutboundFilterFlag;
  209. DWORD dwDirection;
  210. DWORD dwWeight;
  211. GUID gPolicyID;
  212. } TUNNEL_FILTER, * PTUNNEL_FILTER;
  215. //
  216. // Maximum number of tunnel filters that can be enumerated
  217. // by SPD at a time.
  218. //
  220. #define MAX_TUNNELFILTER_ENUM_COUNT 1000
  223. typedef struct _MM_FILTER {
  224. GUID gFilterID;
  225. LPWSTR pszFilterName;
  226. IF_TYPE InterfaceType;
  227. BOOL bCreateMirror;
  228. DWORD dwFlags;
  229. ADDR SrcAddr;
  230. ADDR DesAddr;
  231. DWORD dwDirection;
  232. DWORD dwWeight;
  233. GUID gMMAuthID;
  234. GUID gPolicyID;
  235. } MM_FILTER, * PMM_FILTER;
  238. //
  239. // Maximum number of main mode filters that can be enumerated
  240. // by SPD at a time.
  241. //
  243. #define MAX_MMFILTER_ENUM_COUNT 1000
  246. //
  247. // Common Structures for Main Mode and Quick Mode Policies.
  248. //
  251. //
  252. // IPSEC DOI ESP algorithms supported by SPD.
  253. //
  255. typedef enum _IPSEC_DOI_ESP_ALGO {
  256. IPSEC_DOI_ESP_NONE = 0,
  257. IPSEC_DOI_ESP_DES,
  258. IPSEC_DOI_ESP_3_DES = 3,
  259. IPSEC_DOI_ESP_MAX
  260. } IPSEC_DOI_ESP_ALGO, * PIPSEC_DOI_ESP_ALGO;
  263. //
  264. // IPSEC DOI AH algorithms supported by SPD.
  265. //
  267. typedef enum _IPSEC_DOI_AH_ALGO {
  268. IPSEC_DOI_AH_NONE = 0,
  269. IPSEC_DOI_AH_MD5,
  270. IPSEC_DOI_AH_SHA1,
  271. IPSEC_DOI_AH_MAX
  272. } IPSEC_DOI_AH_ALGO, * PIPSEC_DOI_AH_ALGO;
  275. //
  276. // Types of IPSEC Operations supported by SPD.
  277. //
  279. typedef enum _IPSEC_OPERATION {
  280. NONE = 0,
  281. AUTHENTICATION,
  282. ENCRYPTION,
  283. COMPRESSION,
  284. SA_DELETE
  285. } IPSEC_OPERATION, * PIPSEC_OPERATION;
  288. //
  289. // HMAC authentication algorithm to use with IPSEC
  290. // Encryption operation.
  291. //
  293. typedef enum _HMAC_AH_ALGO {
  294. HMAC_AH_NONE = 0,
  295. HMAC_AH_MD5,
  296. HMAC_AH_SHA1,
  297. HMAC_AH_MAX
  298. } HMAC_AH_ALGO, * PHMAC_AH_ALGO;
  301. //
  302. // Key Lifetime structure.
  303. //
  305. typedef struct _KEY_LIFETIME {
  306. ULONG uKeyExpirationTime;
  307. ULONG uKeyExpirationKBytes;
  308. } KEY_LIFETIME, * PKEY_LIFETIME;
  311. //
  312. // Main mode policy structures.
  313. //
  316. //
  317. // Main mode authentication algorithms supported by SPD.
  318. //
  320. typedef enum _MM_AUTH_ENUM {
  321. IKE_PRESHARED_KEY = 1,
  322. IKE_DSS_SIGNATURE,
  323. IKE_RSA_SIGNATURE,
  324. IKE_RSA_ENCRYPTION,
  325. IKE_SSPI
  326. } MM_AUTH_ENUM, * PMM_AUTH_ENUM;
  329. //
  330. // Main mode authentication information structure.
  331. //
  333. typedef struct _IPSEC_MM_AUTH_INFO {
  334. MM_AUTH_ENUM AuthMethod;
  335. DWORD dwAuthInfoSize;
  336. #ifdef __midl
  337. [size_is(dwAuthInfoSize)] LPBYTE pAuthInfo;
  338. #else
  339. LPBYTE pAuthInfo;
  340. #endif
  341. } IPSEC_MM_AUTH_INFO, * PIPSEC_MM_AUTH_INFO;
  344. //
  345. // Main mode authentication methods.
  346. //
  348. typedef struct _MM_AUTH_METHODS {
  349. GUID gMMAuthID;
  350. DWORD dwFlags;
  351. DWORD dwNumAuthInfos;
  352. #ifdef __midl
  353. [size_is(dwNumAuthInfos)] PIPSEC_MM_AUTH_INFO pAuthenticationInfo;
  354. #else
  355. PIPSEC_MM_AUTH_INFO pAuthenticationInfo;
  356. #endif
  357. } MM_AUTH_METHODS, * PMM_AUTH_METHODS;
  360. //
  361. // Maximum number of main mode auth methods that can be enumerated
  362. // by SPD at a time.
  363. //
  365. #define MAX_MMAUTH_ENUM_COUNT 1000
  368. //
  369. // Main mode algorithm structure.
  370. //
  372. typedef struct _IPSEC_MM_ALGO {
  373. ULONG uAlgoIdentifier;
  374. ULONG uAlgoKeyLen;
  375. ULONG uAlgoRounds;
  376. } IPSEC_MM_ALGO, * PIPSEC_MM_ALGO;
  379. //
  380. // Main mode policy offer structure.
  381. //
  383. typedef struct _IPSEC_MM_OFFER {
  384. KEY_LIFETIME Lifetime;
  385. DWORD dwFlags;
  386. DWORD dwQuickModeLimit;
  387. DWORD dwDHGroup;
  388. IPSEC_MM_ALGO EncryptionAlgorithm;
  389. IPSEC_MM_ALGO HashingAlgorithm;
  390. } IPSEC_MM_OFFER, * PIPSEC_MM_OFFER;
  393. //
  394. // Defines for DH groups.
  395. //
  397. #define DH_GROUP_1 0x00000001 // For Diffe Hellman group 1.
  398. #define DH_GROUP_2 0x00000002 // For Diffe Hellman group 2.
  401. //
  402. // Default Main Mode key expiration time.
  403. //
  405. #define DEFAULT_MM_KEY_EXPIRATION_TIME 480*60 // 8 hours expressed in seconds.
  408. //
  409. // Maximum number of main mode policies that can be enumerated
  410. // by SPD at a time.
  411. //
  413. #define MAX_MMPOLICY_ENUM_COUNT 10
  416. //
  417. // Main mode policy structure.
  418. //
  420. typedef struct _IPSEC_MM_POLICY {
  421. GUID gPolicyID;
  422. LPWSTR pszPolicyName;
  423. DWORD dwFlags;
  424. ULONG uSoftSAExpirationTime;
  425. DWORD dwOfferCount;
  426. #ifdef __midl
  427. [size_is(dwOfferCount)] PIPSEC_MM_OFFER pOffers;
  428. #else
  429. PIPSEC_MM_OFFER pOffers;
  430. #endif
  431. } IPSEC_MM_POLICY, * PIPSEC_MM_POLICY;
  434. //
  435. // Quick mode policy structures.
  436. //
  439. typedef DWORD IPSEC_QM_SPI, * PIPSEC_QM_SPI;
  442. //
  443. // Quick mode algorithm structure.
  444. //
  446. typedef struct _IPSEC_QM_ALGO {
  447. IPSEC_OPERATION Operation;
  448. ULONG uAlgoIdentifier;
  449. HMAC_AH_ALGO uSecAlgoIdentifier;
  450. ULONG uAlgoKeyLen;
  451. ULONG uSecAlgoKeyLen;
  452. ULONG uAlgoRounds;
  453. IPSEC_QM_SPI MySpi;
  454. IPSEC_QM_SPI PeerSpi;
  455. } IPSEC_QM_ALGO, * PIPSEC_QM_ALGO;
  458. //
  459. // Maximum number of quick mode algorithms in
  460. // a quick mode policy offer.
  461. //
  463. #define QM_MAX_ALGOS 2
  466. //
  467. // Quick mode policy offer structure.
  468. //
  470. typedef struct _IPSEC_QM_OFFER {
  471. KEY_LIFETIME Lifetime;
  472. DWORD dwFlags;
  473. BOOL bPFSRequired;
  474. DWORD dwPFSGroup;
  475. DWORD dwNumAlgos;
  476. IPSEC_QM_ALGO Algos[QM_MAX_ALGOS];
  477. } IPSEC_QM_OFFER, * PIPSEC_QM_OFFER;
  480. //
  481. // Defines for PFS groups.
  482. //
  484. #define PFS_GROUP_NONE 0x00000000 // If PFS is not required.
  485. #define PFS_GROUP_1 0x00000001 // For Diffe Hellman group 1 PFS.
  486. #define PFS_GROUP_2 0x00000002 // For Diffe Hellman group 2 PFS.
  487. #define PFS_GROUP_MM 0x10000000 // Use group negotiated in MM
  490. //
  491. // Default Quick Mode key expiration time.
  492. //
  494. #define DEFAULT_QM_KEY_EXPIRATION_TIME 60*60 // 1 hour expressed in seconds.
  497. //
  498. // Default Quick Mode key expiration kbytes.
  499. //
  501. #define DEFAULT_QM_KEY_EXPIRATION_KBYTES 100*1000 // 100 MB expressed in KB.
  504. //
  505. // Maximum number of quick mode policies that can be enumerated
  506. // by SPD at a time.
  507. //
  509. #define MAX_QMPOLICY_ENUM_COUNT 10
  512. //
  513. // Quick mode policy structure.
  514. //
  516. typedef struct _IPSEC_QM_POLICY {
  517. GUID gPolicyID;
  518. LPWSTR pszPolicyName;
  519. DWORD dwFlags;
  520. DWORD dwOfferCount;
  521. #ifdef __midl
  522. [size_is(dwOfferCount)] PIPSEC_QM_OFFER pOffers;
  523. #else
  524. PIPSEC_QM_OFFER pOffers;
  525. #endif
  526. } IPSEC_QM_POLICY, * PIPSEC_QM_POLICY;
  529. //
  530. // IKE structures.
  531. //
  533. typedef struct _IKE_STATISTICS {
  534. DWORD dwActiveAcquire;
  535. DWORD dwActiveReceive;
  536. DWORD dwAcquireFail;
  537. DWORD dwReceiveFail;
  538. DWORD dwSendFail;
  539. DWORD dwAcquireHeapSize;
  540. DWORD dwReceiveHeapSize;
  541. DWORD dwNegotiationFailures;
  542. DWORD dwAuthenticationFailures;
  543. DWORD dwInvalidCookiesReceived;
  544. DWORD dwTotalAcquire;
  545. DWORD dwTotalGetSpi;
  546. DWORD dwTotalKeyAdd;
  547. DWORD dwTotalKeyUpdate;
  548. DWORD dwGetSpiFail;
  549. DWORD dwKeyAddFail;
  550. DWORD dwKeyUpdateFail;
  551. DWORD dwIsadbListSize;
  552. DWORD dwConnListSize;
  553. DWORD dwOakleyMainModes;
  554. DWORD dwOakleyQuickModes;
  555. DWORD dwSoftAssociations;
  556. DWORD dwInvalidPacketsReceived;
  557. } IKE_STATISTICS, * PIKE_STATISTICS;
  560. typedef LARGE_INTEGER IKE_COOKIE, * PIKE_COOKIE;
  563. typedef struct _IKE_COOKIE_PAIR {
  564. IKE_COOKIE Initiator;
  565. IKE_COOKIE Responder;
  566. } IKE_COOKIE_PAIR, * PIKE_COOKIE_PAIR;
  569. typedef struct _IPSEC_BYTE_BLOB {
  570. DWORD dwSize;
  571. #ifdef __midl
  572. [size_is(dwSize)] LPBYTE pBlob;
  573. #else
  574. LPBYTE pBlob;
  575. #endif
  576. } IPSEC_BYTE_BLOB, * PIPSEC_BYTE_BLOB;
  579. typedef struct _IPSEC_MM_SA {
  580. GUID gMMPolicyID;
  581. IPSEC_MM_OFFER SelectedMMOffer;
  582. MM_AUTH_ENUM MMAuthEnum;
  583. IKE_COOKIE_PAIR MMSpi;
  584. ADDR Me;
  585. IPSEC_BYTE_BLOB MyId;
  586. IPSEC_BYTE_BLOB MyCertificateChain;
  587. ADDR Peer;
  588. IPSEC_BYTE_BLOB PeerId;
  589. IPSEC_BYTE_BLOB PeerCertificateChain;
  590. DWORD dwFlags;
  591. } IPSEC_MM_SA, * PIPSEC_MM_SA;
  594. typedef enum _QM_FILTER_TYPE {
  595. QM_TRANSPORT_FILTER = 1,
  596. QM_TUNNEL_FILTER
  597. } QM_FILTER_TYPE, * PQM_FILTER_TYPE;
  600. typedef struct _IPSEC_QM_FILTER {
  601. QM_FILTER_TYPE QMFilterType;
  602. ADDR SrcAddr;
  603. ADDR DesAddr;
  604. PROTOCOL Protocol;
  605. PORT SrcPort;
  606. PORT DesPort;
  607. ADDR MyTunnelEndpt;
  608. ADDR PeerTunnelEndpt;
  609. DWORD dwFlags;
  610. } IPSEC_QM_FILTER, * PIPSEC_QM_FILTER;
  613. typedef struct _IPSEC_QM_SA {
  614. GUID gQMPolicyID;
  615. IPSEC_QM_OFFER SelectedQMOffer;
  616. GUID gQMFilterID;
  617. IPSEC_QM_FILTER IpsecQMFilter;
  618. IKE_COOKIE_PAIR MMSpi;
  619. } IPSEC_QM_SA, * PIPSEC_QM_SA;
  622. #define MAX_QMSA_ENUM_COUNT 1000
  625. typedef enum _SA_FAIL_MODE {
  626. MAIN_MODE = 1,
  627. QUICK_MODE,
  628. } SA_FAIL_MODE, * PSA_FAIL_MODE;
  631. typedef enum _SA_FAIL_POINT {
  632. FAIL_POINT_ME = 1,
  633. FAIL_POINT_PEER,
  634. } SA_FAIL_POINT, * PSA_FAIL_POINT;
  637. typedef struct _SA_NEGOTIATION_STATUS_INFO {
  638. SA_FAIL_MODE FailMode;
  639. SA_FAIL_POINT FailPoint;
  640. DWORD dwError;
  641. } SA_NEGOTIATION_STATUS_INFO, * PSA_NEGOTIATION_STATUS_INFO;
  644. //
  645. // IPSec structures.
  646. //
  648. typedef struct _IPSEC_STATISTICS {
  649. DWORD dwNumActiveAssociations;
  650. DWORD dwNumOffloadedSAs;
  651. DWORD dwNumPendingKeyOps;
  652. DWORD dwNumKeyAdditions;
  653. DWORD dwNumKeyDeletions;
  654. DWORD dwNumReKeys;
  655. DWORD dwNumActiveTunnels;
  656. DWORD dwNumBadSPIPackets;
  657. DWORD dwNumPacketsNotDecrypted;
  658. DWORD dwNumPacketsNotAuthenticated;
  659. DWORD dwNumPacketsWithReplayDetection;
  660. ULARGE_INTEGER uConfidentialBytesSent;
  661. ULARGE_INTEGER uConfidentialBytesReceived;
  662. ULARGE_INTEGER uAuthenticatedBytesSent;
  663. ULARGE_INTEGER uAuthenticatedBytesReceived;
  664. ULARGE_INTEGER uTransportBytesSent;
  665. ULARGE_INTEGER uTransportBytesReceived;
  666. ULARGE_INTEGER uBytesSentInTunnels;
  667. ULARGE_INTEGER uBytesReceivedInTunnels;
  668. ULARGE_INTEGER uOffloadedBytesSent;
  669. ULARGE_INTEGER uOffloadedBytesReceived;
  670. } IPSEC_STATISTICS, * PIPSEC_STATISTICS;
  673. typedef struct _IPSEC_INTERFACE_INFO {
  675. GUID gInterfaceID;
  676. DWORD dwIndex;
  677. LPWSTR pszInterfaceName;
  678. LPWSTR pszDeviceName;
  679. DWORD dwInterfaceType;
  680. ULONG uIpAddr;
  682. } IPSEC_INTERFACE_INFO, * PIPSEC_INTERFACE_INFO;
  684. //
  685. // If dwInterfaceType is MIB_IF_TYPE_ETHERNET or MIB_IF_TYPE_FDDI
  686. // or MIB_IF_TYPE_TOKENRING then its a LAN interface.
  687. // If dwInterfaceType is MIB_IF_TYPE_PPP or MIB_IF_TYPE_SLIP
  688. // then its a WAN/DIALUP interface.
  689. //
  691. #define MAX_INTERFACE_ENUM_COUNT 100
  694. typedef struct _Record {
  695. DWORD SrcIpAddress;
  696. DWORD DesIpAddress;
  697. }RECORD, *PRECORD;
  699. //
  700. // IPSEC SPD APIs.
  701. //
  704. DWORD
  705. WINAPI
  706. SPDApiBufferAllocate(
  707. DWORD dwByteCount,
  708. LPVOID * ppBuffer
  709. );
  712. VOID
  713. WINAPI
  714. SPDApiBufferFree(
  715. LPVOID pBuffer
  716. );
  719. DWORD
  720. WINAPI
  721. AddTransportFilter(
  722. LPWSTR pServerName,
  723. DWORD dwFlags,
  724. PTRANSPORT_FILTER pTransportFilter,
  725. PHANDLE phFilter
  726. );
  729. DWORD
  730. WINAPI
  731. DeleteTransportFilter(
  732. HANDLE hFilter
  733. );
  736. DWORD
  737. WINAPI
  738. EnumTransportFilters(
  739. LPWSTR pServerName,
  740. DWORD dwLevel,
  741. GUID gGenericFilterID,
  742. PTRANSPORT_FILTER * ppTransportFilters,
  743. DWORD dwPreferredNumEntries,
  744. LPDWORD pdwNumFilters,
  745. LPDWORD pdwResumeHandle
  746. );
  749. DWORD
  750. WINAPI
  751. SetTransportFilter(
  752. HANDLE hFilter,
  753. PTRANSPORT_FILTER pTransportFilter
  754. );
  757. DWORD
  758. WINAPI
  759. GetTransportFilter(
  760. HANDLE hFilter,
  761. PTRANSPORT_FILTER * ppTransportFilter
  762. );
  765. DWORD
  766. WINAPI
  767. AddQMPolicy(
  768. LPWSTR pServerName,
  769. DWORD dwFlags,
  770. PIPSEC_QM_POLICY pQMPolicy
  771. );
  774. DWORD
  775. WINAPI
  776. DeleteQMPolicy(
  777. LPWSTR pServerName,
  778. LPWSTR pszPolicyName
  779. );
  782. DWORD
  783. WINAPI
  784. EnumQMPolicies(
  785. LPWSTR pServerName,
  786. PIPSEC_QM_POLICY * ppQMPolicies,
  787. DWORD dwPreferredNumEntries,
  788. LPDWORD pdwNumPolicies,
  789. LPDWORD pdwResumeHandle
  790. );
  793. DWORD
  794. WINAPI
  795. SetQMPolicy(
  796. LPWSTR pServerName,
  797. LPWSTR pszPolicyName,
  798. PIPSEC_QM_POLICY pQMPolicy
  799. );
  802. DWORD
  803. WINAPI
  804. GetQMPolicy(
  805. LPWSTR pServerName,
  806. LPWSTR pszPolicyName,
  807. PIPSEC_QM_POLICY * ppQMPolicy
  808. );
  811. DWORD
  812. WINAPI
  813. AddMMPolicy(
  814. LPWSTR pServerName,
  815. DWORD dwFlags,
  816. PIPSEC_MM_POLICY pMMPolicy
  817. );
  820. DWORD
  821. WINAPI
  822. DeleteMMPolicy(
  823. LPWSTR pServerName,
  824. LPWSTR pszPolicyName
  825. );
  828. DWORD
  829. WINAPI
  830. EnumMMPolicies(
  831. LPWSTR pServerName,
  832. PIPSEC_MM_POLICY * ppMMPolicies,
  833. DWORD dwPreferredNumEntries,
  834. LPDWORD pdwNumPolicies,
  835. LPDWORD pdwResumeHandle
  836. );
  839. DWORD
  840. WINAPI
  841. SetMMPolicy(
  842. LPWSTR pServerName,
  843. LPWSTR pszPolicyName,
  844. PIPSEC_MM_POLICY pMMPolicy
  845. );
  848. DWORD
  849. WINAPI
  850. GetMMPolicy(
  851. LPWSTR pServerName,
  852. LPWSTR pszPolicyName,
  853. PIPSEC_MM_POLICY * ppMMPolicy
  854. );
  857. DWORD
  858. WINAPI
  859. AddMMFilter(
  860. LPWSTR pServerName,
  861. DWORD dwFlags,
  862. PMM_FILTER pMMFilter,
  863. PHANDLE phMMFilter
  864. );
  867. DWORD
  868. WINAPI
  869. DeleteMMFilter(
  870. HANDLE hMMFilter
  871. );
  874. DWORD
  875. WINAPI
  876. EnumMMFilters(
  877. LPWSTR pServerName,
  878. DWORD dwLevel,
  879. GUID gGenericFilterID,
  880. PMM_FILTER * ppMMFilters,
  881. DWORD dwPreferredNumEntries,
  882. LPDWORD pdwNumMMFilters,
  883. LPDWORD pdwResumeHandle
  884. );
  887. DWORD
  888. WINAPI
  889. SetMMFilter(
  890. HANDLE hMMFilter,
  891. PMM_FILTER pMMFilter
  892. );
  895. DWORD
  896. WINAPI
  897. GetMMFilter(
  898. HANDLE hMMFilter,
  899. PMM_FILTER * ppMMFilter
  900. );
  903. DWORD
  904. WINAPI
  905. MatchMMFilter(
  906. LPWSTR pServerName,
  907. PMM_FILTER pMMFilter,
  908. DWORD dwFlags,
  909. PMM_FILTER * ppMatchedMMFilters,
  910. PIPSEC_MM_POLICY * ppMatchedMMPolicies,
  911. PMM_AUTH_METHODS * ppMatchedMMAuthMethods,
  912. DWORD dwPreferredNumEntries,
  913. LPDWORD pdwNumMatches,
  914. LPDWORD pdwResumeHandle
  915. );
  918. DWORD
  919. WINAPI
  920. MatchTransportFilter(
  921. LPWSTR pServerName,
  922. PTRANSPORT_FILTER pTxFilter,
  923. DWORD dwFlags,
  924. PTRANSPORT_FILTER * ppMatchedTxFilters,
  925. PIPSEC_QM_POLICY * ppMatchedQMPolicies,
  926. DWORD dwPreferredNumEntries,
  927. LPDWORD pdwNumMatches,
  928. LPDWORD pdwResumeHandle
  929. );
  932. DWORD
  933. WINAPI
  934. GetQMPolicyByID(
  935. LPWSTR pServerName,
  936. GUID gQMPolicyID,
  937. PIPSEC_QM_POLICY * ppQMPolicy
  938. );
  941. DWORD
  942. WINAPI
  943. GetMMPolicyByID(
  944. LPWSTR pServerName,
  945. GUID gMMPolicyID,
  946. PIPSEC_MM_POLICY * ppMMPolicy
  947. );
  950. DWORD
  951. WINAPI
  952. AddMMAuthMethods(
  953. LPWSTR pServerName,
  954. DWORD dwFlags,
  955. PMM_AUTH_METHODS pMMAuthMethods
  956. );
  959. DWORD
  960. WINAPI
  961. DeleteMMAuthMethods(
  962. LPWSTR pServerName,
  963. GUID gMMAuthID
  964. );
  967. DWORD
  968. WINAPI
  969. EnumMMAuthMethods(
  970. LPWSTR pServerName,
  971. PMM_AUTH_METHODS * ppMMAuthMethods,
  972. DWORD dwPreferredNumEntries,
  973. LPDWORD pdwNumAuthMethods,
  974. LPDWORD pdwResumeHandle
  975. );
  978. DWORD
  979. WINAPI
  980. SetMMAuthMethods(
  981. LPWSTR pServerName,
  982. GUID gMMAuthID,
  983. PMM_AUTH_METHODS pMMAuthMethods
  984. );
  987. DWORD
  988. WINAPI
  989. GetMMAuthMethods(
  990. LPWSTR pServerName,
  991. GUID gMMAuthID,
  992. PMM_AUTH_METHODS * ppMMAuthMethods
  993. );
  996. DWORD
  997. IPSecInitiateIKENegotiation(
  998. LPWSTR pServerName,
  999. PIPSEC_QM_FILTER pQMFilter,
  1000. DWORD dwClientProcessId,
  1001. HANDLE hClientEvent,
  1002. DWORD dwFlags,
  1003. PHANDLE phNegotiation
  1004. );
  1007. DWORD
  1008. IPSecQueryIKENegotiationStatus(
  1009. HANDLE hNegotiation,
  1010. PSA_NEGOTIATION_STATUS_INFO pNegotiationStatus
  1011. );
  1014. DWORD
  1015. IPSecCloseIKENegotiationHandle(
  1016. HANDLE hNegotiation
  1017. );
  1020. DWORD
  1021. IPSecEnumMMSAs(
  1022. LPWSTR pServerName,
  1023. PIPSEC_MM_SA pMMTemplate,
  1024. PIPSEC_MM_SA * ppMMSAs,
  1025. LPDWORD pdwNumEntries,
  1026. LPDWORD pdwTotalMMsAvailable,
  1027. LPDWORD pdwEnumHandle,
  1028. DWORD dwFlags
  1029. );
  1032. DWORD
  1033. IPSecDeleteMMSAs(
  1034. LPWSTR pServerName,
  1035. PIPSEC_MM_SA pMMTemplate,
  1036. DWORD dwFlags
  1037. );
  1040. DWORD
  1041. IPSecDeleteQMSAs(
  1042. LPWSTR pServerName,
  1043. PIPSEC_QM_SA pIpsecQMSA,
  1044. DWORD dwFlags
  1045. );
  1048. DWORD
  1049. IPSecQueryIKEStatistics(
  1050. LPWSTR pServerName,
  1051. PIKE_STATISTICS pIKEStatistics
  1052. );
  1055. DWORD
  1056. IPSecRegisterIKENotifyClient(
  1057. LPWSTR pServerName,
  1058. DWORD dwClientProcessId,
  1059. HANDLE hClientEvent,
  1060. IPSEC_QM_SA QMTemplate,
  1061. PHANDLE phNotifyHandle,
  1062. DWORD dwFlags
  1063. );
  1065. DWORD IPSecQueryNotifyData(
  1066. HANDLE hNotifyHandle,
  1067. PDWORD pdwNumEntries,
  1068. PIPSEC_QM_SA *ppQMSAs,
  1069. DWORD dwFlags
  1070. );
  1072. DWORD IPSecCloseNotifyHandle(
  1073. HANDLE hNotifyHandle
  1074. );
  1076. DWORD
  1077. WINAPI
  1078. QueryIPSecStatistics(
  1079. LPWSTR pServerName,
  1080. PIPSEC_STATISTICS * ppIpsecStatistics
  1081. );
  1084. DWORD
  1085. WINAPI
  1086. EnumQMSAs(
  1087. LPWSTR pServerName,
  1088. PIPSEC_QM_SA pQMSATemplate,
  1089. PIPSEC_QM_SA * ppQMSAs,
  1090. DWORD dwPreferredNumEntries,
  1091. LPDWORD pdwNumQMSAs,
  1092. LPDWORD pdwNumTotalQMSAs,
  1093. LPDWORD pdwResumeHandle,
  1094. DWORD dwFlags
  1095. );
  1098. DWORD
  1099. WINAPI
  1100. AddTunnelFilter(
  1101. LPWSTR pServerName,
  1102. DWORD dwFlags,
  1103. PTUNNEL_FILTER pTunnelFilter,
  1104. PHANDLE phFilter
  1105. );
  1108. DWORD
  1109. WINAPI
  1110. DeleteTunnelFilter(
  1111. HANDLE hFilter
  1112. );
  1115. DWORD
  1116. WINAPI
  1117. EnumTunnelFilters(
  1118. LPWSTR pServerName,
  1119. DWORD dwLevel,
  1120. GUID gGenericFilterID,
  1121. PTUNNEL_FILTER * ppTunnelFilters,
  1122. DWORD dwPreferredNumEntries,
  1123. LPDWORD pdwNumFilters,
  1124. LPDWORD pdwResumeHandle
  1125. );
  1128. DWORD
  1129. WINAPI
  1130. SetTunnelFilter(
  1131. HANDLE hFilter,
  1132. PTUNNEL_FILTER pTunnelFilter
  1133. );
  1136. DWORD
  1137. WINAPI
  1138. GetTunnelFilter(
  1139. HANDLE hFilter,
  1140. PTUNNEL_FILTER * ppTunnelFilter
  1141. );
  1144. DWORD
  1145. WINAPI
  1146. MatchTunnelFilter(
  1147. LPWSTR pServerName,
  1148. PTUNNEL_FILTER pTnFilter,
  1149. DWORD dwFlags,
  1150. PTUNNEL_FILTER * ppMatchedTnFilters,
  1151. PIPSEC_QM_POLICY * ppMatchedQMPolicies,
  1152. DWORD dwPreferredNumEntries,
  1153. LPDWORD pdwNumMatches,
  1154. LPDWORD pdwResumeHandle
  1155. );
  1158. DWORD
  1159. WINAPI
  1160. OpenMMFilterHandle(
  1161. LPWSTR pServerName,
  1162. PMM_FILTER pMMFilter,
  1163. PHANDLE phMMFilter
  1164. );
  1166. DWORD
  1167. WINAPI
  1168. CloseMMFilterHandle(
  1169. HANDLE hMMFilter
  1170. );
  1172. DWORD
  1173. WINAPI
  1174. OpenTransportFilterHandle(
  1175. LPWSTR pServerName,
  1176. PTRANSPORT_FILTER pTransportFilter,
  1177. PHANDLE phTxFilter
  1178. );
  1180. DWORD
  1181. WINAPI
  1182. CloseTransportFilterHandle(
  1183. HANDLE hTxFilter
  1184. );
  1186. DWORD
  1187. WINAPI
  1188. OpenTunnelFilterHandle(
  1189. LPWSTR pServerName,
  1190. PTUNNEL_FILTER pTunnelFilter,
  1191. PHANDLE phTnFilter
  1192. );
  1194. DWORD
  1195. WINAPI
  1196. CloseTunnelFilterHandle(
  1197. HANDLE hTnFilter
  1198. );
  1201. DWORD
  1202. WINAPI
  1203. EnumIPSecInterfaces(
  1204. LPWSTR pServerName,
  1205. PIPSEC_INTERFACE_INFO pIpsecIfTemplate,
  1206. PIPSEC_INTERFACE_INFO * ppIpsecInterfaces,
  1207. DWORD dwPreferredNumEntries,
  1208. LPDWORD pdwNumInterfaces,
  1209. LPDWORD pdwNumTotalInterfaces,
  1210. LPDWORD pdwResumeHandle,
  1211. DWORD dwFlags
  1212. );
  1214. DWORD
  1215. WINAPI
  1216. IPSecAddSAs(
  1217. LPWSTR pServerName,
  1218. PIPSEC_QM_OFFER pQMOffer,
  1219. PIPSEC_QM_FILTER pQMFilter,
  1220. HANDLE *hLarvalContext,
  1221. DWORD dwInboundKeyMatLen,
  1222. BYTE *pInboundKeyMat,
  1223. DWORD dwOutboundKeyMatLen,
  1224. BYTE *pOutboundKeyMat,
  1225. BYTE *pContextInfo,
  1226. DWORD dwFlags
  1227. );
  1230. #ifdef __cplusplus
  1231. }
  1232. #endif
  1235. #endif // _WINIPSEC_