mirror of https://github.com/tongzx/nt5src
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
277 lines
8.2 KiB
277 lines
8.2 KiB
//+---------------------------------------------------------------------------
|
|
//
|
|
// Microsoft Windows
|
|
// Copyright (C) Microsoft Corporation, 1992 - 1995.
|
|
//
|
|
// File: pct1prot.h
|
|
//
|
|
// Contents:
|
|
//
|
|
// Classes:
|
|
//
|
|
// Functions:
|
|
//
|
|
// History: 09-23-97 jbanes LSA integration stuff.
|
|
//
|
|
//----------------------------------------------------------------------------
|
|
|
|
#ifndef _PCT1PROT_H_
|
|
#define _PCT1PROT_H_
|
|
|
|
/* keyexchange algs */
|
|
#define PCT1_EXCH_RSA_PKCS1 0x0001
|
|
#define PCT1_EXCH_RSA_PKCS1_TOKEN_DES 0x0002
|
|
#define PCT1_EXCH_RSA_PKCS1_TOKEN_DES3 0x0003
|
|
#define PCT1_EXCH_RSA_PKCS1_TOKEN_RC2 0x0004
|
|
#define PCT1_EXCH_RSA_PKCS1_TOKEN_RC4 0x0005
|
|
|
|
#define PCT1_EXCH_DH_PKCS3 0x0006
|
|
#define PCT1_EXCH_DH_PKCS3_TOKEN_DES 0x0007
|
|
#define PCT1_EXCH_DH_PKCS3_TOKEN_DES3 0x0008
|
|
#define PCT1_EXCH_FORTEZZA_TOKEN 0x0009
|
|
|
|
#define PCT1_EXCH_UNKNOWN 0xffff
|
|
|
|
|
|
/* data encryption algs */
|
|
/* encryption alg masks */
|
|
#define PCT1_CIPHER_ALG 0xffff0000
|
|
#define PCT1_CIPHER_STRENGTH 0x0000ff00
|
|
#define PCT1_CSTR_POS 8
|
|
#define PCT1_CIPHER_MAC 0x000000ff
|
|
|
|
/* specific algs */
|
|
#define PCT1_CIPHER_DES 0x00010000
|
|
#define PCT1_CIPHER_IDEA 0x00020000
|
|
#define PCT1_CIPHER_RC2 0x00030000
|
|
#define PCT1_CIPHER_RC4 0x00040000
|
|
#define PCT1_CIPHER_2DES 0x00050000
|
|
#define PCT1_CIPHER_3DES 0x00060000
|
|
#define PCT1_CIPHER_SKIPJACK 0x01000000
|
|
#define PCT1_CIPHER_NONE 0x00000000
|
|
|
|
#define PCT1_CIPHER_UNKNOWN 0xffffffff
|
|
|
|
/* data encryption strength specs */
|
|
#define PCT1_ENC_BITS_40 0x00002800
|
|
#define PCT1_ENC_BITS_56 0x00003800
|
|
#define PCT1_ENC_BITS_64 0x00004000
|
|
#define PCT1_ENC_BITS_80 0x00005000
|
|
#define PCT1_ENC_BITS_128 0x00008000
|
|
#define PCT1_ENC_BITS_168 0x0000a800
|
|
#define PCT1_ENC_BITS_192 0x0000c000
|
|
/* mac strength specs */
|
|
#define PCT1_MAC_BITS_128 0x00000040
|
|
|
|
/* hashing algs */
|
|
#define PCT1_HASH_MD5 0x0001
|
|
#define PCT1_HASH_MD5_TRUNC_64 0x0002
|
|
#define PCT1_HASH_SHA 0x0003
|
|
#define PCT1_HASH_SHA_TRUNC_80 0x0004
|
|
#define PCT1_HASH_DES_DM 0x0005
|
|
#define PCT1_HASH_MD2 0x0006
|
|
#define PCT1_HASH_UNKNOWN 0xffff
|
|
|
|
/* certificate types */
|
|
#define PCT1_CERT_NONE 0x0000
|
|
#define PCT1_CERT_X509 0x0001
|
|
#define PCT1_CERT_PKCS7 0x0002
|
|
#define PCT1_CERT_X509_CHAIN 0x0003
|
|
|
|
/* signature algorithms */
|
|
#define PCT1_SIG_NONE 0x0000
|
|
#define PCT1_SIG_RSA_MD5 0x0001
|
|
#define PCT1_SIG_RSA_SHA 0x0002
|
|
#define PCT1_SIG_DSA_SHA 0x0003
|
|
|
|
/* these are for internal use only */
|
|
#define PCT1_SIG_RSA_MD2 0x0004
|
|
#define PCT1_SIG_RSA 0x0005
|
|
#define PCT1_SIG_RSA_SHAMD5 0x0006
|
|
#define PCT1_SIG_FORTEZZA_TOKEN 0x0007
|
|
|
|
|
|
|
|
/* key derivation separators */
|
|
|
|
#define PCT_CONST_CWK "cwcwcwcwcw"
|
|
#define PCT_CONST_CWK_LEN 2
|
|
|
|
#define PCT_CONST_SWK "svwsvwsvwsvwsvw"
|
|
#define PCT_CONST_SWK_LEN 3
|
|
|
|
#define PCT_CONST_CMK "cmaccmaccmaccmaccmac"
|
|
#define PCT_CONST_CMK_LEN 4
|
|
|
|
#define PCT_CONST_SMK "svmacsvmacsvmacsvmacsvmac"
|
|
#define PCT_CONST_SMK_LEN 5
|
|
|
|
#define PCT_CONST_SR "svsvsvsvsv"
|
|
#define PCT_CONST_SR_LEN 2
|
|
|
|
#define PCT_CONST_SLK "slslslslsl"
|
|
#define PCT_CONST_SLK_LEN 2
|
|
|
|
#define PCT_CONST_RESP "srsrsrsrsr"
|
|
#define PCT_CONST_RESP_LEN 2
|
|
|
|
#define PCT_CONST_VP "cvp"
|
|
#define PCT_CONST_VP_LEN 3
|
|
#define PCT_USE_CERT 1
|
|
#define PCT_MAKE_MAC 2
|
|
|
|
#define DERIVATION_BUFFER_SIZE 1024
|
|
|
|
/* data structs */
|
|
|
|
/* message constants and types */
|
|
#define PCT_MASTER_KEY_SIZE 16
|
|
#define PCT_SESSION_ID_SIZE 32
|
|
#define PCT_CHALLENGE_SIZE 32
|
|
|
|
#define PCT1_MAX_KEY_ARGS 8
|
|
|
|
#define RESPONSE_SIZE 32 /* allows for hash output growth */
|
|
|
|
#define PCT_MAX_SHAKE_LEN 32768 /* longest handshake message len */
|
|
/* implementation constants */
|
|
|
|
#define PCT_MAX_NUM_SEP 5
|
|
#define PCT_MAX_SEP_LEN 5
|
|
|
|
#define PCT1_MAX_CERT_SPECS 5
|
|
#define PCT1_MAX_SIG_SPECS 5
|
|
#define PCT1_MAX_EXCH_SPECS 5
|
|
#define PCT1_MAX_CIPH_SPECS 16
|
|
#define PCT1_MAX_HASH_SPECS 16
|
|
|
|
/* mismatch vector */
|
|
|
|
#define PCT_NUM_MISMATCHES 6
|
|
|
|
#define PCT_IMIS_CIPHER 1
|
|
#define PCT_IMIS_HASH 2
|
|
#define PCT_IMIS_CERT 4
|
|
#define PCT_IMIS_EXCH 8
|
|
#define PCT_IMIS_CL_CERT 16
|
|
#define PCT_IMIS_CL_SIG 32
|
|
|
|
|
|
SP_STATUS WINAPI
|
|
Pct1ServerProtocolHandler(
|
|
PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS WINAPI
|
|
Pct1ClientProtocolHandler(
|
|
PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS WINAPI
|
|
Pct1DecryptHandler(
|
|
PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PSPBuffer pAppOutput);
|
|
|
|
SP_STATUS WINAPI
|
|
Pct1GetHeaderSize(
|
|
PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
DWORD * pcbHeaderSize);
|
|
|
|
|
|
SP_STATUS WINAPI Pct1DecryptMessage(PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PSPBuffer pAppOutput);
|
|
|
|
SP_STATUS WINAPI Pct1EncryptRaw(PSPContext pContext,
|
|
PSPBuffer pAppInput,
|
|
PSPBuffer pCommOutput,
|
|
DWORD dwFlags);
|
|
|
|
#define PCT1_ENCRYPT_ESCAPE 0x00000001
|
|
|
|
|
|
SP_STATUS WINAPI Pct1EncryptMessage(PSPContext pContext,
|
|
PSPBuffer pAppInput,
|
|
PSPBuffer pCommOutput);
|
|
|
|
|
|
|
|
SP_STATUS Pct1SrvHandleClientHello(PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PPct1_Client_Hello pHello,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS Pct1SrvHandleCMKey(PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS Pct1CliHandleServerHello(PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PPct1_Server_Hello pHello,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS Pct1CliHandleServerVerify(PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS Pct1HandleError(PSPContext pContext,
|
|
PSPBuffer pCommInput,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS Pct1GenerateError(PSPContext pContext,
|
|
PSPBuffer pCommOutput,
|
|
SP_STATUS pError,
|
|
PSPBuffer pErrData);
|
|
|
|
|
|
SP_STATUS
|
|
WINAPI
|
|
GeneratePct1StyleHello(
|
|
PSPContext pContext,
|
|
PSPBuffer pOutput);
|
|
|
|
SP_STATUS
|
|
Pct1CliRestart(PSPContext pContext,
|
|
PPct1_Server_Hello pHello,
|
|
PSPBuffer pCommOutput);
|
|
|
|
SP_STATUS
|
|
Pct1SrvRestart(PSPContext pContext,
|
|
PPct1_Client_Hello pHello,
|
|
PSPBuffer pCommOutput);
|
|
|
|
VOID
|
|
Pct1ActivateSessionKeys(PSPContext pContext);
|
|
|
|
SP_STATUS
|
|
Pct1MakeSessionKeys(PSPContext pContext);
|
|
|
|
SP_STATUS Pct1EndVerifyPrelude(PSPContext pContext,
|
|
PUCHAR VerifyPrelude,
|
|
DWORD * pcbVerifyPrelude
|
|
);
|
|
|
|
SP_STATUS Pct1BeginVerifyPrelude(PSPContext pContext,
|
|
PUCHAR pClientHello,
|
|
DWORD cbClientHello,
|
|
PUCHAR pServerHello,
|
|
DWORD cbServerHello);
|
|
|
|
SP_STATUS
|
|
Pct1ComputeResponse(
|
|
PSPContext pContext,
|
|
PBYTE pbChallenge,
|
|
DWORD cbChallenge,
|
|
PBYTE pbConnectionID,
|
|
DWORD cbConnectionID,
|
|
PBYTE pbSessionID,
|
|
DWORD cbSessionID,
|
|
PBYTE pbResponse,
|
|
PDWORD pcbResponse);
|
|
|
|
|
|
#endif /* _PCT1PROT_H_ */
|