archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/public/internal/net/inc/oakdefs.h

215 lines
4.7 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (C) 1997 Cisco Systems, Inc. All Rights Reserved.
  5. Module Name:
  7. oakrpc.h
  9. Abstract:
  11. This module contains the definitions requires for the
  12. ISAKMP/Oakley RPC interface.
  14. Author:
  16. Derrell Piper (v-dpiper)
  18. Facility:
  20. ISAKMP/Oakley
  22. Revision History:
  24. --*/
  25. #ifndef __OAKRPC
  26. #define __OAKRPC
  28. typedef unsigned long IPADDR, *PIPADDR;
  29. typedef unsigned long SPI, *PSPI;
  31. /* Oakley hash algorithms */
  32. #define OAK_MD5 1
  33. #define OAK_SHA 2
  34. #define OAK_TIGER 3
  36. /* Oakley pseudo-random functions */
  37. #define OAK_3DES_CBC_MAC 1
  39. /* Oakley authentication methods */
  40. // See oakrpc.idl
  44. #define IPSEC_POLICY_CLEAR 0x00000010
  45. #define IPSEC_POLICY_BLOCK 0x00000020
  48. #define None 0
  49. #define Auth 1
  50. #define Encypt 2
  53. // Status flags
  55. #define STATUS_MM 0x1
  56. #define STATUS_QM 0x2
  57. #define STATUS_ME 0x4
  58. #define STATUS_PEER 0x8
  60. /* Oakley encryption algorithms */
  61. #define OAK_DES_CBC 1
  62. #define OAK_IDEA_CBC 2
  63. #define OAK_BLOWFISH_CBC 3
  64. #define OAK_RC5_R12_B64_CBC 4
  65. #define OAK_3DES_CBC 5
  66. #define OAK_CAST_CBC 6
  68. #define OAK_MM_NO_STATE 0
  69. #define OAK_MM_SA_SETUP 1
  70. #define OAK_MM_KEY_EXCH 2
  71. #define OAK_MM_KEY_AUTH 3
  72. #define OAK_MM_CONTINUE 4
  74. #define OAK_QM_SA_ACCEPT 7
  75. #define OAK_QM_AUTH_AWAIT 8
  76. #define OAK_QM_IDLE 9
  78. typedef DWORD OAKLEY_STATE;
  80. /* Oakley states */
  82. #define OAK_QM_SA_ACCEPT 7
  83. #define OAK_QM_AUTH_AWAIT 8
  84. #define OAK_QM_IDLE 9
  85. #define OAK_QM_CONNECT_WAIT 10
  87. /* generic crypto lifetime */
  88. typedef struct _Lifetime {
  89. DWORD KBytes;
  90. DWORD Seconds;
  91. } OAKLEY_LIFETIME, *POAKLEY_LIFETIME;
  93. /* generic algorithm descriptor */
  94. typedef struct _Algorithm {
  95. ULONG AlgorithmIdentifier;
  96. ULONG KeySize;
  97. ULONG Rounds;
  98. } OAKLEY_ALGORITHM, *POAKLEY_ALGORITHM;
  100. #define CRYPTO_VERSION_MAJOR 1 /* MajorVersion */
  101. #define CRYPTO_VERSION_MINOR 0 /* MinorVersion */
  103. #define MAX_ALGOS 3 //comp,ah,esp
  106. typedef LARGE_INTEGER COOKIE, *PCOOKIE;
  109. typedef struct _CryptoBundle {
  110. BYTE MajorVersion;
  111. BYTE MinorVersion;
  112. OAKLEY_ALGORITHM EncryptionAlgorithm;
  113. OAKLEY_ALGORITHM HashAlgorithm;
  114. OAKLEY_ALGORITHM PseudoRandomFunction; //unused
  115. BYTE AuthenticationMethod;
  116. DWORD OakleyGroup;
  117. DWORD QuickModeLimit;
  118. OAKLEY_LIFETIME Lifetime;
  119. BOOL PfsIdentityRequired;
  120. } CRYPTO_BUNDLE, *PCRYPTO_BUNDLE;
  123. // LeadingBundleFlags, possible on each byte of the DWORD
  124. #define BYTE_DES_MD5_2048 1
  125. #define BYTE_DES_SHA_2048 2
  126. #define BYTE_3DES_MD5_2048 3
  127. #define BYTE_3DES_SHA_2048 4
  129. typedef struct _IsakmpPolicy {
  130. GUID PolicyId;
  131. BOOL IdentityProtectionRequired;
  132. BOOL PfsIdentityRequired;
  133. DWORD dwFlags;
  134. BYTE bLeadingBundleFlags[4];
  135. DWORD dwQMLimit;
  136. DWORD dwLifetimeSec;
  137. DWORD dwUnused[5];
  138. } ISAKMP_POLICY, *PISAKMP_POLICY;
  140. typedef struct _SpiPair {
  141. SPI Inbound;
  142. SPI Outbound;
  143. } SPI_PAIR, *PSPI_PAIR;
  145. typedef struct _CookiePair {
  146. COOKIE Initiator;
  147. COOKIE Responder;
  148. } COOKIE_PAIR, *PCOOKIE_PAIR;
  151. typedef struct _IsakmpSa {
  152. GUID PolicyId;
  153. COOKIE_PAIR Spi;
  154. IPADDR Me;
  155. IPADDR Peer;
  156. BOOL IdentityProtectionUsed;
  157. BOOL PerfectForwardSecrecyUsed;
  158. CRYPTO_BUNDLE CryptoSelected;
  159. OAKLEY_STATE CurrentState;
  160. } ISAKMP_SA, *PISAKMP_SA;
  163. typedef struct _IpsecSa {
  164. GUID PolicyId;
  165. SPI_PAIR Spi;
  166. IPADDR Source;
  167. IPADDR Destination;
  168. IPADDR Tunnel;
  169. OAKLEY_ALGORITHM ConfidentialityAlgorithm;
  170. OAKLEY_ALGORITHM IntegrityAlgorithm;
  171. OAKLEY_STATE CurrentState;
  172. } IPSEC_SA, *PIPSEC_SA;
  174. typedef struct _IPSEC_ALGO_INFO {
  175. ULONG algoIdentifier; // ESP_ALGO or AH_ALGO
  176. ULONG secondaryAlgoIdentifier; // for hmac in ESP case
  177. ULONG operation; // of type OPERATION_E (ipsec.h)
  178. ULONG algoKeylen; // len in bytes
  179. ULONG algoRounds; // # of algo rounds
  180. } IPSEC_ALGO_INFO, *PIPSEC_ALGO_INFO;
  183. typedef struct {
  184. LIFETIME Lifetime;
  185. DWORD Flags;
  186. BOOL PfsQMRequired;
  187. DWORD Count; //Number of Algos
  188. IPSEC_ALGO_INFO Algos[MAX_ALGOS];
  189. } IPSEC_ALG_TYPE, *PIPSEC_ALG_TYPE;
  191. typedef enum _AuthenicationEnum {
  192. OAK_PRESHARED_KEY = 1,
  193. OAK_DSS_SIGNATURE = 2,
  194. OAK_RSA_SIGNATURE = 3,
  195. OAK_RSA_ENCRYPTION = 4,
  196. OAK_SSPI = 5
  197. }AuthenticationEnum ;
  199. typedef struct _SA_FAIL_INFO {
  200. GUID PolicyId;
  201. IPSEC_FILTER Filter;
  202. DWORD Status;
  203. DWORD Flags;
  204. } SA_FAIL_INFO;
  207. typedef struct _IPSEC_AUTH_INFO
  208. {
  209. AuthenticationEnum AuthMethod;
  210. wchar_t *AuthInfo;
  211. DWORD AuthInfoSize;
  212. } IPSEC_AUTH_INFO, *PIPSEC_AUTH_INFO;
  215. #endif /* __OAKRPC */