librpc/idl/schannel.idl

   1 #include "idl_types.h"
   2
   3 /*
   4   schannel structures
   5 */
   6
   7 import "netlogon.idl", "nbt.idl", "misc.idl", "security.idl";
   8
   9 [
  10         pointer_default(unique),
  11         helper("../librpc/ndr/ndr_schannel.h", "../librpc/ndr/ndr_nbt.h")
  12 ]
  13 interface schannel
  14 {
  15         /* this structure is used internally in the NETLOGON server */
  16
  17         typedef [public,flag(NDR_PAHEX)] struct {
  18                 netr_NegotiateFlags negotiate_flags;
  19                 uint8 session_key[16];
  20                 uint32 sequence;
  21                 netr_Credential seed;
  22                 netr_Credential client;
  23                 netr_Credential server;
  24                 netr_SchannelType secure_channel_type;
  25                 [string,charset(UTF8)] uint8 computer_name[];
  26                 [string,charset(UTF8)] uint8 account_name[];
  27                 dom_sid *sid;
  28         } netlogon_creds_CredentialState;
  29
  30         /* This is used in the schannel_store.tdb */
  31         typedef [public] struct {
  32                 [string,charset(UTF16)] uint16 *computer_name;
  33                 netr_Credential server_challenge;
  34                 netr_Credential client_challenge;
  35         } netlogon_cache_entry;
  36
  37         /* MS-NRPC 2.2.1.3.1 NL_AUTH_MESSAGE */
  38
  39         typedef [v1_enum] enum {
  40                 NL_NEGOTIATE_REQUEST    = 0x00000000,
  41                 NL_NEGOTIATE_RESPONSE   = 0x00000001
  42         } NL_AUTH_MESSAGE_TYPE;
  43
  44         typedef [bitmap32bit] bitmap {
  45                 NL_FLAG_OEM_NETBIOS_DOMAIN_NAME         = 0x00000001,
  46                 NL_FLAG_OEM_NETBIOS_COMPUTER_NAME       = 0x00000002,
  47                 NL_FLAG_UTF8_DNS_DOMAIN_NAME            = 0x00000004,
  48                 NL_FLAG_UTF8_DNS_HOST_NAME              = 0x00000008,
  49                 NL_FLAG_UTF8_NETBIOS_COMPUTER_NAME      = 0x00000010
  50         } NL_AUTH_MESSAGE_FLAGS;
  51
  52         typedef [public,nodiscriminant,noprint] union {
  53                 [case (NL_FLAG_OEM_NETBIOS_DOMAIN_NAME)]        astring  a;
  54                 [case (NL_FLAG_OEM_NETBIOS_COMPUTER_NAME)]      astring  a;
  55                 [case (NL_FLAG_UTF8_DNS_DOMAIN_NAME)]           nbt_string u;
  56                 [case (NL_FLAG_UTF8_DNS_HOST_NAME)]             nbt_string u;
  57                 [case (NL_FLAG_UTF8_NETBIOS_COMPUTER_NAME)]     nbt_string u;
  58                 [default]                                       ;
  59         } NL_AUTH_MESSAGE_BUFFER;
  60
  61         typedef [public,nodiscriminant,noprint] union {
  62                 [case (NL_NEGOTIATE_RESPONSE)]                  uint32 dummy;
  63                 [default]                                       ;
  64         } NL_AUTH_MESSAGE_BUFFER_REPLY;
  65
  66         typedef [public,flag(NDR_PAHEX)] struct {
  67                 NL_AUTH_MESSAGE_TYPE MessageType;
  68                 NL_AUTH_MESSAGE_FLAGS Flags;
  69                 [switch_is(Flags & NL_FLAG_OEM_NETBIOS_DOMAIN_NAME)]    NL_AUTH_MESSAGE_BUFFER oem_netbios_domain;
  70                 [switch_is(Flags & NL_FLAG_OEM_NETBIOS_COMPUTER_NAME)]  NL_AUTH_MESSAGE_BUFFER oem_netbios_computer;
  71                 [switch_is(Flags & NL_FLAG_UTF8_DNS_DOMAIN_NAME)]       NL_AUTH_MESSAGE_BUFFER utf8_dns_domain;
  72                 [switch_is(Flags & NL_FLAG_UTF8_DNS_HOST_NAME)]         NL_AUTH_MESSAGE_BUFFER utf8_dns_host;
  73                 [switch_is(Flags & NL_FLAG_UTF8_NETBIOS_COMPUTER_NAME)] NL_AUTH_MESSAGE_BUFFER utf8_netbios_computer;
  74                 [switch_is(MessageType & NL_NEGOTIATE_RESPONSE)]        NL_AUTH_MESSAGE_BUFFER_REPLY Buffer;
  75         } NL_AUTH_MESSAGE;
  76
  77         /* MS-NRPC 2.2.1.3.2 NL_AUTH_SIGNATURE */
  78
  79         typedef enum {
  80                 NL_SIGN_HMAC_SHA256     = 0x0013,
  81                 NL_SIGN_HMAC_MD5        = 0x0077
  82         } NL_SIGNATURE_ALGORITHM;
  83
  84         typedef enum {
  85                 NL_SEAL_AES128          = 0x001A,
  86                 NL_SEAL_RC4             = 0x007A,
  87                 NL_SEAL_NONE            = 0xFFFF
  88         } NL_SEAL_ALGORITHM;
  89
  90         typedef [public,flag(NDR_PAHEX)] struct {
  91                 [value(NL_SIGN_HMAC_MD5)] NL_SIGNATURE_ALGORITHM SignatureAlgorithm;
  92                 NL_SEAL_ALGORITHM SealAlgorithm;
  93                 uint16 Pad;
  94                 uint16 Flags;
  95                 uint8 SequenceNumber[8];
  96                 uint8 Checksum[8];
  97                 uint8 Confounder[8];
  98         } NL_AUTH_SIGNATURE;
  99
 100         const int NL_AUTH_SIGNATURE_SIZE = 0x20;
 101
 102         /* MS-NRPC 2.2.1.3.3 NL_AUTH_SHA2_SIGNATURE */
 103
 104         typedef [public,flag(NDR_PAHEX)] struct {
 105                 [value(NL_SIGN_HMAC_SHA256)] NL_SIGNATURE_ALGORITHM SignatureAlgorithm;
 106                 NL_SEAL_ALGORITHM SealAlgorithm;
 107                 uint16 Pad;
 108                 uint16 Flags;
 109                 uint8 SequenceNumber[8];
 110                 uint8 Checksum[32];
 111                 uint8 Confounder[8];
 112         } NL_AUTH_SHA2_SIGNATURE;
 113 }