archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
3.8 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/net/inc/oakdefs.h

221 lines
4.5 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (C) 1997 Cisco Systems, Inc. All Rights Reserved.
  5. Module Name:
  7. oakrpc.h
  9. Abstract:
  11. This module contains the definitions requires for the
  12. ISAKMP/Oakley RPC interface.
  14. Author:
  16. Derrell Piper (v-dpiper)
  18. Facility:
  20. ISAKMP/Oakley
  22. Revision History:
  24. --*/
  25. #ifndef __OAKRPC
  26. #define __OAKRPC
  28. typedef unsigned long IPADDR, *PIPADDR;
  29. typedef unsigned long SPI, *PSPI;
  31. /* Oakley hash algorithms */
  32. #define OAK_MD5 1
  33. #define OAK_SHA 2
  34. #define OAK_TIGER 3
  36. /* Oakley pseudo-random functions */
  37. #define OAK_3DES_CBC_MAC 1
  39. /* Oakley authentication methods */
  40. // See oakrpc.idl
  44. #define IPSEC_POLICY_CLEAR 0x00000010
  45. #define IPSEC_POLICY_BLOCK 0x00000020
  48. #define None 0
  49. #define Auth 1
  50. #define Encypt 2
  53. // Status flags
  55. #define STATUS_MM 0x1
  56. #define STATUS_QM 0x2
  57. #define STATUS_ME 0x4
  58. #define STATUS_PEER 0x8
  60. /* Oakley encryption algorithms */
  61. #define OAK_DES_CBC 1
  62. #define OAK_IDEA_CBC 2
  63. #define OAK_BLOWFISH_CBC 3
  64. #define OAK_RC5_R12_B64_CBC 4
  65. #define OAK_3DES_CBC 5
  66. #define OAK_CAST_CBC 6
  68. #define OAK_MM_NO_STATE 0
  69. #define OAK_MM_SA_SETUP 1
  70. #define OAK_MM_KEY_EXCH 2
  71. #define OAK_MM_KEY_AUTH 3
  72. #define OAK_MM_CONTINUE 4
  74. #define OAK_QM_SA_ACCEPT 7
  75. #define OAK_QM_AUTH_AWAIT 8
  76. #define OAK_QM_IDLE 9
  78. typedef DWORD OAKLEY_STATE;
  80. /* Oakley states */
  82. #define OAK_QM_SA_ACCEPT 7
  83. #define OAK_QM_AUTH_AWAIT 8
  84. #define OAK_QM_IDLE 9
  85. #define OAK_QM_CONNECT_WAIT 10
  87. /* generic crypto lifetime */
  88. typedef struct _Lifetime {
  89. DWORD KBytes;
  90. DWORD Seconds;
  91. } OAKLEY_LIFETIME, *POAKLEY_LIFETIME;
  93. /* generic algorithm descriptor */
  94. typedef struct _Algorithm {
  95. ULONG AlgorithmIdentifier;
  96. ULONG KeySize;
  97. ULONG Rounds;
  98. } OAKLEY_ALGORITHM, *POAKLEY_ALGORITHM;
  100. #define CRYPTO_VERSION_MAJOR 1 /* MajorVersion */
  101. #define CRYPTO_VERSION_MINOR 0 /* MinorVersion */
  103. #define MAX_ALGOS 3 //comp,ah,esp
  106. typedef LARGE_INTEGER COOKIE, *PCOOKIE;
  109. typedef struct _CryptoBundle {
  110. BYTE MajorVersion;
  111. BYTE MinorVersion;
  112. OAKLEY_ALGORITHM EncryptionAlgorithm;
  113. OAKLEY_ALGORITHM HashAlgorithm;
  114. OAKLEY_ALGORITHM PseudoRandomFunction; //unused
  115. BYTE AuthenticationMethod;
  116. DWORD OakleyGroup;
  117. DWORD QuickModeLimit;
  118. OAKLEY_LIFETIME Lifetime;
  119. BOOL PfsIdentityRequired;
  120. } CRYPTO_BUNDLE, *PCRYPTO_BUNDLE;
  122. typedef struct _IsakmpPolicy {
  123. GUID PolicyId;
  124. BOOL IdentityProtectionRequired;
  125. BOOL PfsIdentityRequired;
  126. DWORD ThreadingFactor;
  127. DWORD AcquireLimit;
  128. DWORD ReceiveLimit;
  129. DWORD AcquireSize;
  130. DWORD ReceiveSize;
  131. DWORD ReaperInterval;
  132. DWORD RpcMaxCalls;
  133. DWORD RetryInterval;
  134. DWORD RetryLimit;
  135. } ISAKMP_POLICY, *PISAKMP_POLICY;
  137. typedef struct {
  138. GUID PolicyId;
  139. DWORD Version;
  140. DWORD RefreshInterval;
  141. IPADDR TunnelAddress;
  142. BOOL PfsQMRequired;
  143. } IPSEC_POLICY, *PIPSEC_POLICY;
  146. typedef struct _SpiPair {
  147. SPI Inbound;
  148. SPI Outbound;
  149. } SPI_PAIR, *PSPI_PAIR;
  151. typedef struct _CookiePair {
  152. COOKIE Initiator;
  153. COOKIE Responder;
  154. } COOKIE_PAIR, *PCOOKIE_PAIR;
  157. typedef struct _IsakmpSa {
  158. GUID PolicyId;
  159. COOKIE_PAIR Spi;
  160. IPADDR Me;
  161. IPADDR Peer;
  162. BOOL IdentityProtectionUsed;
  163. BOOL PerfectForwardSecrecyUsed;
  164. CRYPTO_BUNDLE CryptoSelected;
  165. OAKLEY_STATE CurrentState;
  166. } ISAKMP_SA, *PISAKMP_SA;
  169. typedef struct _IpsecSa {
  170. GUID PolicyId;
  171. SPI_PAIR Spi;
  172. IPADDR Source;
  173. IPADDR Destination;
  174. IPADDR Tunnel;
  175. OAKLEY_ALGORITHM ConfidentialityAlgorithm;
  176. OAKLEY_ALGORITHM IntegrityAlgorithm;
  177. OAKLEY_STATE CurrentState;
  178. } IPSEC_SA, *PIPSEC_SA;
  180. typedef struct _IPSEC_ALGO_INFO {
  181. ULONG algoIdentifier; // ESP_ALGO or AH_ALGO
  182. ULONG secondaryAlgoIdentifier; // for hmac in ESP case
  183. ULONG operation; // of type OPERATION_E (ipsec.h)
  184. ULONG algoKeylen; // len in bytes
  185. ULONG algoRounds; // # of algo rounds
  186. } IPSEC_ALGO_INFO, *PIPSEC_ALGO_INFO;
  189. typedef struct {
  190. LIFETIME Lifetime;
  191. DWORD Flags;
  192. BOOL PfsQMRequired;
  193. DWORD Count; //Number of Algos
  194. IPSEC_ALGO_INFO Algos[MAX_ALGOS];
  195. } IPSEC_ALG_TYPE, *PIPSEC_ALG_TYPE;
  197. typedef enum _AuthenicationEnum {
  198. OAK_PRESHARED_KEY = 1,
  199. OAK_DSS_SIGNATURE = 2,
  200. OAK_RSA_SIGNATURE = 3,
  201. OAK_RSA_ENCRYPTION = 4,
  202. OAK_SSPI = 5
  203. }AuthenticationEnum ;
  205. typedef struct _SA_FAIL_INFO {
  206. GUID PolicyId;
  207. IPSEC_FILTER Filter;
  208. DWORD Status;
  209. DWORD Flags;
  210. } SA_FAIL_INFO;
  213. typedef struct _IPSEC_AUTH_INFO
  214. {
  215. AuthenticationEnum AuthMethod;
  216. wchar_t *AuthInfo;
  217. DWORD AuthInfoSize;
  218. } IPSEC_AUTH_INFO, *PIPSEC_AUTH_INFO;
  221. #endif /* __OAKRPC */