archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/protocols/msv_sspi/ntlmsspi.h

599 lines
12 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1993 Microsoft Corporation
  5. Module Name:
  7. ntlmsspi.h
  9. Abstract:
  11. Header file describing the interface to code common to the
  12. NT Lanman Security Support Provider (NtLmSsp) Service and the DLL.
  14. Author:
  16. Cliff Van Dyke (CliffV) 17-Sep-1993
  18. Revision History:
  19. ChandanS 03-Aug-1996 Stolen from net\svcdlls\ntlmssp\common\ntlmsspi.h
  21. --*/
  23. #ifndef _NTLMSSPI_INCLUDED_
  24. #define _NTLMSSPI_INCLUDED_
  26. //
  27. // init.c will #include this file with NTLMCOMN_ALLOCATE defined.
  28. // That will cause each of these variables to be allocated.
  29. //
  30. #ifdef NTLMSSPI_ALLOCATE
  31. #define EXTERN
  32. #else
  33. #define EXTERN extern
  34. #endif
  37. ////////////////////////////////////////////////////////////////////////
  38. //
  39. // Global Definitions
  40. //
  41. ////////////////////////////////////////////////////////////////////////
  43. //
  44. // Description of a credential.
  45. //
  47. #define SSP_CREDENTIAL_TAG_ACTIVE (ULONG)('AdrC')
  48. #define SSP_CREDENTIAL_TAG_DELETE (ULONG)('DdrC')
  50. #define SSP_CREDENTIAL_FLAG_WAS_NETWORK_SERVICE 0x1
  52. typedef struct _SSP_CREDENTIAL {
  54. //
  55. // Global list of all Credentials.
  56. // (Serialized by SspCredentialCritSect)
  57. //
  59. LIST_ENTRY Next;
  61. //
  62. // Used to prevent this Credential from being deleted prematurely.
  63. // (Serialized by SspCredentialCritSect)
  64. //
  66. ULONG References;
  68. //
  69. // Flag of how credential may be used.
  70. //
  71. // SECPKG_CRED_* flags
  72. //
  74. ULONG CredentialUseFlags;
  76. //
  77. // Logon ID of the client
  78. //
  80. LUID LogonId;
  82. //
  83. // Process Id of client
  84. //
  86. ULONG ClientProcessID;
  88. //
  89. // Tag indicating credential is valid for fast reference.
  90. //
  92. ULONG CredentialTag;
  94. //
  95. // Impersonation level of caller at time of AcquireCredentialsHandle
  96. //
  98. SECURITY_IMPERSONATION_LEVEL ImpersonationLevel;
  100. //
  101. // Default credentials on client context, on server context UserName
  102. // holds a full user name (domain\user) and the other two should be
  103. // NULL.
  104. //
  106. UNICODE_STRING DomainName;
  107. UNICODE_STRING UserName;
  108. UNICODE_STRING Password;
  111. //
  112. // This flag should be set when the credential is unlinked
  113. // from the list.
  114. //
  116. BOOLEAN Unlinked;
  118. //
  119. // This flag is set when the credential was granted to a
  120. // kernel mode caller
  121. //
  123. BOOLEAN KernelClient ;
  125. //
  126. // ntlm specific credential usage flags
  127. //
  129. ULONG MutableCredFlags;
  131. } SSP_CREDENTIAL, *PSSP_CREDENTIAL;
  133. typedef enum {
  134. IdleState,
  135. NegotiateSentState, // Outbound context only
  136. ChallengeSentState, // Inbound context only
  137. AuthenticateSentState, // Outbound context only
  138. AuthenticatedState, // Inbound context only
  139. PassedToServiceState // Outbound context only
  140. } SSP_CONTEXT_STATE, *PSSP_CONTEXT_STATE;
  143. //
  144. // Description of a Context
  145. //
  147. #define SSP_CONTEXT_TAG_ACTIVE (ULONG64)('AxtC')
  148. #define SSP_CONTEXT_TAG_DELETE (ULONG64)('DxtC')
  150. typedef struct _SSP_CONTEXT {
  152. //
  153. // Tag indicating context is valid.
  154. //
  156. ULONG64 ContextTag;
  159. //
  160. // Timeout the context after awhile.
  161. //
  163. LARGE_INTEGER StartTime;
  164. ULONG Interval;
  166. //
  167. // Used to prevent this Context from being deleted prematurely.
  168. // (Serialized by SspContextCritSect)
  169. //
  171. ULONG References;
  175. //
  176. // Maintain the Negotiated protocol
  177. //
  179. ULONG NegotiateFlags;
  181. //
  182. // Maintain the context requirements
  183. //
  185. ULONG ContextFlags;
  187. //
  188. // State of the context
  189. //
  191. SSP_CONTEXT_STATE State;
  193. //
  194. // Token Handle of authenticated user
  195. // Only valid when in AuthenticatedState.
  196. //
  198. HANDLE TokenHandle;
  200. //
  201. // Referenced pointer to the credential used to create this
  202. // context.
  203. //
  205. PSSP_CREDENTIAL Credential;
  207. //
  208. // The challenge passed to the client.
  209. // Only valid when in ChallengeSentState.
  210. //
  212. UCHAR Challenge[MSV1_0_CHALLENGE_LENGTH];
  214. //
  215. // The session key calculated by the LSA
  216. //
  218. UCHAR SessionKey[MSV1_0_USER_SESSION_KEY_LENGTH];
  220. //
  221. // Default credentials.
  222. //
  224. UNICODE_STRING DomainName;
  225. UNICODE_STRING UserName;
  226. UNICODE_STRING Password;
  228. //
  229. // optional marshalled targetinfo for credential manager.
  230. //
  232. PCREDENTIAL_TARGET_INFORMATIONW TargetInfo;
  234. //
  235. // marshalled target info for DFS/RDR.
  236. //
  238. PBYTE pbMarshalledTargetInfo;
  239. ULONG cbMarshalledTargetInfo;
  241. //
  242. // context handle referenced to validate loopback operations.
  243. //
  245. ULONG_PTR ServerContextHandle;
  247. //
  248. // Process Id of client
  249. //
  251. ULONG ClientProcessID;
  252. NTSTATUS LastStatus;
  254. BOOLEAN Server; // client or server ? (can be implied by other fields...)
  256. BOOLEAN DownLevel; // downlevel RDR/SRV ?
  258. //
  259. // This flag is set when the context was granted to a
  260. // kernel mode caller
  261. //
  263. BOOLEAN KernelClient;
  265. } SSP_CONTEXT, *PSSP_CONTEXT;
  267. //
  268. // Maximum lifetime of a context
  269. //
  271. #if DBG
  272. #define NTLMSSP_MAX_LIFETIME (2*60*60*1000) // 2 hours
  273. #else
  274. // used to be 2 minutes, changed to 5 minutes to allow negotiation in
  275. // wide-area networks which can have long retry timeouts
  276. #define NTLMSSP_MAX_LIFETIME (5*60*1000) // 5 minutes
  277. #endif // DBG
  281. typedef struct _SSP_PROCESSOPTIONS {
  283. //
  284. // Global list of all process options.
  285. // (Serialized by NtLmGlobalProcessOptionsLock
  286. //
  288. LIST_ENTRY Next;
  290. //
  291. // Process Id of client
  292. //
  294. ULONG ClientProcessID;
  296. //
  297. // options bitmask.
  298. //
  300. ULONG ProcessOptions;
  302. } SSP_PROCESSOPTIONS, *PSSP_PROCESSOPTIONS;
  306. ////////////////////////////////////////////////////////////////////////
  307. //
  308. // Procedure Forwards
  309. //
  310. ////////////////////////////////////////////////////////////////////////
  313. //
  314. // Procedure forwards from credhand.cxx
  315. //
  317. NTSTATUS
  318. SspCredentialInitialize(
  319. VOID
  320. );
  322. VOID
  323. SspCredentialTerminate(
  324. VOID
  325. );
  327. NTSTATUS
  328. SspCredentialReferenceCredential(
  329. IN ULONG_PTR CredentialHandle,
  330. IN BOOLEAN DereferenceCredential,
  331. OUT PSSP_CREDENTIAL * UserCredential
  332. );
  334. VOID
  335. SspCredentialDereferenceCredential(
  336. PSSP_CREDENTIAL Credential
  337. );
  339. NTSTATUS
  340. SspCredentialGetPassword(
  341. IN PSSP_CREDENTIAL Credential,
  342. OUT PUNICODE_STRING Password
  343. );
  345. //
  346. // Procedure forwards from context.cxx
  347. //
  349. NTSTATUS
  350. SspContextInitialize(
  351. VOID
  352. );
  354. VOID
  355. SspContextTerminate(
  356. VOID
  357. );
  359. //
  360. // from ctxtcli.cxx
  361. //
  363. NTSTATUS
  364. CredpParseUserName(
  365. IN OUT LPWSTR ParseName,
  366. OUT LPWSTR* pUserName,
  367. OUT LPWSTR* pDomainName
  368. );
  370. NTSTATUS
  371. CopyCredManCredentials(
  372. IN PLUID LogonId,
  373. CREDENTIAL_TARGET_INFORMATIONW* pTargetInfo,
  374. IN OUT PSSP_CONTEXT Context,
  375. IN BOOLEAN fShareLevel
  376. );
  378. NTSTATUS
  379. CredpExtractMarshalledTargetInfo(
  380. IN PUNICODE_STRING TargetServerName,
  381. OUT CREDENTIAL_TARGET_INFORMATIONW **pTargetInfo
  382. );
  384. NTSTATUS
  385. CredpProcessUserNameCredential(
  386. IN PUNICODE_STRING MarshalledUserName,
  387. OUT PUNICODE_STRING UserName,
  388. OUT PUNICODE_STRING DomainName,
  389. OUT PUNICODE_STRING Password
  390. );
  392. //
  393. // random number generator.
  394. //
  396. NTSTATUS
  397. SspGenerateRandomBits(
  398. VOID *pRandomData,
  399. ULONG cRandomData
  400. );
  402. //
  403. // Procedure forwards from ntlm.cxx
  404. //
  405. VOID
  406. NtLmCheckLmCompatibility(
  407. );
  409. VOID
  410. NtLmQueryMappedDomains(
  411. VOID
  412. );
  414. VOID
  415. NtLmFreeMappedDomains(
  416. VOID
  417. );
  420. VOID
  421. NTAPI
  422. NtLmQueryDynamicGlobals(
  423. PVOID pvContext,
  424. BOOLEAN f
  425. );
  427. ULONG
  428. NtLmCheckProcessOption(
  429. IN ULONG OptionRequest
  430. );
  432. BOOLEAN
  433. NtLmSetProcessOption(
  434. IN ULONG OptionRequest,
  435. IN BOOLEAN DisableOption
  436. );
  439. //
  440. // Procedure forwards from rng.cxx
  441. //
  443. VOID
  444. NtLmCleanupRNG(VOID);
  446. BOOL
  447. NtLmInitializeRNG(VOID);
  450. /*++
  452. Brief description of the challenge/response algorithms for LM, NTLM, and NTLM3
  454. The basic outline is the same for all versions, just the OWF, RESP, and SESSKEY
  455. funcs are different:
  457. 1. Compute a "response key" (Kr) from the user's name (U), domain (UD) and password (P):
  459. Kr = OWF(U, UD, P)
  461. 2. Compute a response using the response key, server challenge (NS),
  462. client challenge (NC), timestamp (T), version (V), highest version
  463. client understands (HV), and the server's principal name (S)
  465. R = RESP(Kr, NS, NC, T, V, HV, S)
  467. 3. Compute a session key from Kr, U, UD
  469. Kx = SESSKEY(Kr, R, U, UD)
  472. The are the OWF, RESP, and SESSKEY funcs for NTLM3
  474. OWF(U, UD, P) = MD5(MD4(P), U, UD)
  475. RESP(Kr, NS, NC, T, V, HV, S) = (V, HV, R, T, NC, HMAC(Kr, (NS, V, HV, T, NC, S)), S)
  476. SESSKEY(Ku, R, U, UD) = HMAC(Kr, R)
  478. --*/
  482. PMSV1_0_AV_PAIR
  483. MsvpAvlInit(
  484. IN void * pAvList
  485. );
  487. PMSV1_0_AV_PAIR
  488. MsvpAvlGet(
  489. IN PMSV1_0_AV_PAIR pAvList, // first pair of AV pair list
  490. IN MSV1_0_AVID AvId, // AV pair to find
  491. IN LONG cAvList // size of AV list
  492. );
  494. ULONG
  495. MsvpAvlLen(
  496. IN PMSV1_0_AV_PAIR pAvList, // first pair of AV pair list
  497. IN LONG cAvList // max size of AV list
  498. );
  500. PMSV1_0_AV_PAIR
  501. MsvpAvlAdd(
  502. IN PMSV1_0_AV_PAIR pAvList, // first pair of AV pair list
  503. IN MSV1_0_AVID AvId, // AV pair to add
  504. IN PUNICODE_STRING pString, // value of pair
  505. IN LONG cAvList // max size of AV list
  506. );
  509. ULONG
  510. MsvpAvlSize(
  511. IN ULONG iPairs, // number of AV pairs response will include
  512. IN ULONG iPairsLen // total size of values for the pairs
  513. );
  515. NTSTATUS
  516. MsvpAvlToString(
  517. IN PUNICODE_STRING AvlString,
  518. IN MSV1_0_AVID AvId,
  519. IN OUT LPWSTR *szAvlString
  520. );
  522. NTSTATUS
  523. MsvpAvlToFlag(
  524. IN PUNICODE_STRING AvlString,
  525. IN MSV1_0_AVID AvId,
  526. IN OUT ULONG *ulAvlFlag
  527. );
  530. VOID
  531. MsvpCalculateNtlm2Challenge (
  532. IN UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH],
  533. IN UCHAR ChallengeFromClient[MSV1_0_CHALLENGE_LENGTH],
  534. OUT UCHAR Challenge[MSV1_0_CHALLENGE_LENGTH]
  535. );
  537. VOID
  538. MsvpCalculateNtlm2SessionKeys (
  539. IN PUSER_SESSION_KEY NtUserSessionKey,
  540. IN UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH],
  541. IN UCHAR ChallengeFromClient[MSV1_0_CHALLENGE_LENGTH],
  542. OUT PUSER_SESSION_KEY LocalUserSessionKey,
  543. OUT PLM_SESSION_KEY LocalLmSessionKey
  544. );
  547. //
  548. // calculate NTLM3 response from credentials and server name
  549. // called with pNtlm3Response filled in with version, client challenge, timestamp
  550. //
  552. VOID
  553. MsvpNtlm3Response (
  554. IN PNT_OWF_PASSWORD pNtOwfPassword,
  555. IN PUNICODE_STRING pUserName,
  556. IN PUNICODE_STRING pLogonDomainName,
  557. IN ULONG ServerNameLength,
  558. IN UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH],
  559. IN PMSV1_0_NTLM3_RESPONSE pNtlm3Response,
  560. OUT UCHAR Response[MSV1_0_NTLM3_RESPONSE_LENGTH],
  561. OUT PUSER_SESSION_KEY UserSessionKey,
  562. OUT PLM_SESSION_KEY LmSessionKey
  563. );
  565. typedef struct {
  566. UCHAR Response[MSV1_0_NTLM3_RESPONSE_LENGTH];
  567. UCHAR ChallengeFromClient[MSV1_0_CHALLENGE_LENGTH];
  568. } MSV1_0_LM3_RESPONSE, *PMSV1_0_LM3_RESPONSE;
  570. //
  571. // calculate LM3 response from credentials
  572. //
  574. VOID
  575. MsvpLm3Response (
  576. IN PNT_OWF_PASSWORD pNtOwfPassword,
  577. IN PUNICODE_STRING pUserName,
  578. IN PUNICODE_STRING pLogonDomainName,
  579. IN UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH],
  580. IN PMSV1_0_LM3_RESPONSE pLm3Response,
  581. OUT UCHAR Response[MSV1_0_NTLM3_RESPONSE_LENGTH]
  582. );
  585. NTSTATUS
  586. MsvpLm20GetNtlm3ChallengeResponse (
  587. IN PNT_OWF_PASSWORD pNtOwfPassword,
  588. IN PUNICODE_STRING pUserName,
  589. IN PUNICODE_STRING pLogonDomainName,
  590. IN PUNICODE_STRING pServerName,
  591. IN UCHAR ChallengeToClient[MSV1_0_CHALLENGE_LENGTH],
  592. OUT PMSV1_0_NTLM3_RESPONSE pNtlm3Response,
  593. OUT PMSV1_0_LM3_RESPONSE pLm3Response,
  594. OUT PUSER_SESSION_KEY UserSessionKey,
  595. OUT PLM_SESSION_KEY LmSessionKey
  596. );
  599. #endif // ifndef _NTLMSSPI_INCLUDED_