linux/fs/cifs/ntlmssp.h

/*
 *   fs/cifs/ntlmssp.h
 *
 *   Copyright (c) International Business Machines  Corp., 2002,2007
 *   Author(s): Steve French (sfrench@us.ibm.com)
 *
 *   This library is free software; you can redistribute it and/or modify
 *   it under the terms of the GNU Lesser General Public License as published
 *   by the Free Software Foundation; either version 2.1 of the License, or
 *   (at your option) any later version.
 *
 *   This library is distributed in the hope that it will be useful,
 *   but WITHOUT ANY WARRANTY; without even the implied warranty of
 *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See
 *   the GNU Lesser General Public License for more details.
 *
 *   You should have received a copy of the GNU Lesser General Public License
 *   along with this library; if not, write to the Free Software
 *   Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
 */

#define NTLMSSP_SIGNATURE "NTLMSSP"
/* Message Types */
#define NtLmNegotiate     cpu_to_le32(1)
#define NtLmChallenge     cpu_to_le32(2)
#define NtLmAuthenticate  cpu_to_le32(3)
#define UnknownMessage    cpu_to_le32(8)

/* Negotiate Flags */
#define NTLMSSP_NEGOTIATE_UNICODE       0x01 /* Text strings are in unicode */
#define NTLMSSP_NEGOTIATE_OEM           0x02 /* Text strings are in OEM */
#define NTLMSSP_REQUEST_TARGET          0x04 /* Server return its auth realm */
#define NTLMSSP_NEGOTIATE_SIGN        0x0010 /* Request signature capability */
#define NTLMSSP_NEGOTIATE_SEAL        0x0020 /*  Request confidentiality */
#define NTLMSSP_NEGOTIATE_DGRAM       0x0040
#define NTLMSSP_NEGOTIATE_LM_KEY      0x0080 /* Sign/seal use LM session key */
#define NTLMSSP_NEGOTIATE_NTLM        0x0200 /* NTLM authentication */
#define NTLMSSP_NEGOTIATE_DOMAIN_SUPPLIED 0x1000
#define NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED 0x2000
#define NTLMSSP_NEGOTIATE_LOCAL_CALL  0x4000 /* client/server on same machine */
#define NTLMSSP_NEGOTIATE_ALWAYS_SIGN 0x8000 /* Sign for all security levels */
#define NTLMSSP_TARGET_TYPE_DOMAIN   0x10000
#define NTLMSSP_TARGET_TYPE_SERVER   0x20000
#define NTLMSSP_TARGET_TYPE_SHARE    0x40000
#define NTLMSSP_NEGOTIATE_NTLMV2     0x80000
#define NTLMSSP_REQUEST_INIT_RESP   0x100000
#define NTLMSSP_REQUEST_ACCEPT_RESP 0x200000
#define NTLMSSP_REQUEST_NOT_NT_KEY  0x400000
#define NTLMSSP_NEGOTIATE_TARGET_INFO 0x800000
#define NTLMSSP_NEGOTIATE_128     0x20000000
#define NTLMSSP_NEGOTIATE_KEY_XCH 0x40000000
#define NTLMSSP_NEGOTIATE_56      0x80000000

/* Although typedefs are not commonly used for structure definitions */
/* in the Linux kernel, in this particular case they are useful      */
/* to more closely match the standards document for NTLMSSP from     */
/* OpenGroup and to make the code more closely match the standard in */
/* appearance */

typedef struct _SECURITY_BUFFER {
	__le16 Length;
	__le16 MaximumLength;
	__le32 Buffer;		/* offset to buffer */
} __attribute__((packed)) SECURITY_BUFFER;

typedef struct _NEGOTIATE_MESSAGE {
	__u8 Signature[sizeof (NTLMSSP_SIGNATURE)];
	__le32 MessageType;     /* 1 */
	__le32 NegotiateFlags;
	SECURITY_BUFFER DomainName;	/* RFC 1001 style and ASCII */
	SECURITY_BUFFER WorkstationName;	/* RFC 1001 and ASCII */
	char DomainString[0];
	/* followed by WorkstationString */
} __attribute__((packed)) NEGOTIATE_MESSAGE, *PNEGOTIATE_MESSAGE;

typedef struct _CHALLENGE_MESSAGE {
	__u8 Signature[sizeof (NTLMSSP_SIGNATURE)];
	__le32 MessageType;   /* 2 */
	SECURITY_BUFFER TargetName;
	__le32 NegotiateFlags;
	__u8 Challenge[CIFS_CRYPTO_KEY_SIZE];
	__u8 Reserved[8];
	SECURITY_BUFFER TargetInfoArray;
} __attribute__((packed)) CHALLENGE_MESSAGE, *PCHALLENGE_MESSAGE;

typedef struct _AUTHENTICATE_MESSAGE {
	__u8 Signature[sizeof (NTLMSSP_SIGNATURE)];
	__le32 MessageType;  /* 3 */
	SECURITY_BUFFER LmChallengeResponse;
	SECURITY_BUFFER NtChallengeResponse;
	SECURITY_BUFFER DomainName;
	SECURITY_BUFFER UserName;
	SECURITY_BUFFER WorkstationName;
	SECURITY_BUFFER SessionKey;
	__le32 NegotiateFlags;
	char UserString[0];
} __attribute__((packed)) AUTHENTICATE_MESSAGE, *PAUTHENTICATE_MESSAGE;
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00			`/*`
			`* fs/cifs/ntlmssp.h`
			`*`
[CIFS] whitespace fixes This changeset brought to you ... by patchcheck.pl Signed-off-by: Steve French <sfrench@us.ibm.com> 2007-06-28 23:44:13 +04:00			`* Copyright (c) International Business Machines Corp., 2002,2007`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00			`* Author(s): Steve French (sfrench@us.ibm.com)`
			`*`
			`* This library is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU Lesser General Public License as published`
			`* by the Free Software Foundation; either version 2.1 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This library is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See`
			`* the GNU Lesser General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Lesser General Public License`
			`* along with this library; if not, write to the Free Software`
[CIFS] whitespace cleanup Signed-off-by: Steve French <sfrench@us.ibm.com> 2007-07-07 03:13:06 +04:00			`* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00			`*/`

			`#define NTLMSSP_SIGNATURE "NTLMSSP"`
			`/* Message Types */`
			`#define NtLmNegotiate cpu_to_le32(1)`
			`#define NtLmChallenge cpu_to_le32(2)`
			`#define NtLmAuthenticate cpu_to_le32(3)`
			`#define UnknownMessage cpu_to_le32(8)`

			`/* Negotiate Flags */`
[CIFS] whitespace fixes This changeset brought to you ... by patchcheck.pl Signed-off-by: Steve French <sfrench@us.ibm.com> 2007-06-28 23:44:13 +04:00			`#define NTLMSSP_NEGOTIATE_UNICODE 0x01 /* Text strings are in unicode */`
			`#define NTLMSSP_NEGOTIATE_OEM 0x02 /* Text strings are in OEM */`
			`#define NTLMSSP_REQUEST_TARGET 0x04 /* Server return its auth realm */`
			`#define NTLMSSP_NEGOTIATE_SIGN 0x0010 /* Request signature capability */`
			`#define NTLMSSP_NEGOTIATE_SEAL 0x0020 /* Request confidentiality */`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00			`#define NTLMSSP_NEGOTIATE_DGRAM 0x0040`
[CIFS] whitespace fixes This changeset brought to you ... by patchcheck.pl Signed-off-by: Steve French <sfrench@us.ibm.com> 2007-06-28 23:44:13 +04:00			`#define NTLMSSP_NEGOTIATE_LM_KEY 0x0080 /* Sign/seal use LM session key */`
			`#define NTLMSSP_NEGOTIATE_NTLM 0x0200 /* NTLM authentication */`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00			`#define NTLMSSP_NEGOTIATE_DOMAIN_SUPPLIED 0x1000`
			`#define NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED 0x2000`
[CIFS] whitespace fixes This changeset brought to you ... by patchcheck.pl Signed-off-by: Steve French <sfrench@us.ibm.com> 2007-06-28 23:44:13 +04:00			`#define NTLMSSP_NEGOTIATE_LOCAL_CALL 0x4000 /* client/server on same machine */`
			`#define NTLMSSP_NEGOTIATE_ALWAYS_SIGN 0x8000 /* Sign for all security levels */`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00			`#define NTLMSSP_TARGET_TYPE_DOMAIN 0x10000`
			`#define NTLMSSP_TARGET_TYPE_SERVER 0x20000`
			`#define NTLMSSP_TARGET_TYPE_SHARE 0x40000`
			`#define NTLMSSP_NEGOTIATE_NTLMV2 0x80000`
			`#define NTLMSSP_REQUEST_INIT_RESP 0x100000`
			`#define NTLMSSP_REQUEST_ACCEPT_RESP 0x200000`
			`#define NTLMSSP_REQUEST_NOT_NT_KEY 0x400000`
			`#define NTLMSSP_NEGOTIATE_TARGET_INFO 0x800000`
			`#define NTLMSSP_NEGOTIATE_128 0x20000000`
			`#define NTLMSSP_NEGOTIATE_KEY_XCH 0x40000000`
			`#define NTLMSSP_NEGOTIATE_56 0x80000000`

			`/* Although typedefs are not commonly used for structure definitions */`
			`/* in the Linux kernel, in this particular case they are useful */`
			`/* to more closely match the standards document for NTLMSSP from */`
			`/* OpenGroup and to make the code more closely match the standard in */`
			`/* appearance */`

			`typedef struct _SECURITY_BUFFER {`
			`__le16 Length;`
			`__le16 MaximumLength;`
			`__le32 Buffer; /* offset to buffer */`
[CIFS] Change pragma pack(1) to attribute(packed) to allow cifs on arm to access unaligned structures coming in off the wire gcc on arm processors generates very odd code with pragma pack specified - although it does pack the structures in some sense - it does not allow you to access unaligned elements in nested structures at the right offset as other architectures do. Oddly enough though, specifying the structures as packed the long way - one by one with the packed attribute does work. Rather than fighting over whether this is a gcc bug or some obscure side effect of pragma pack, it is easier to do what most (all but 96 other places in the kernel) do - and replace pragma pack with dozens of attribute(packed) structure qualifiers. Much more verbose ... but at least it works. Signed-off-by: David Kleikamp <shaggy@austin.ibm.com> Signed-off-by: Steve French <sfrench@us.ibm.com> CG: ----------------------------------------------------------------------- 2005-10-28 00:55:12 +04:00			`} __attribute__((packed)) SECURITY_BUFFER;`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00
			`typedef struct _NEGOTIATE_MESSAGE {`
			`__u8 Signature[sizeof (NTLMSSP_SIGNATURE)];`
			`__le32 MessageType; /* 1 */`
			`__le32 NegotiateFlags;`
			`SECURITY_BUFFER DomainName; /* RFC 1001 style and ASCII */`
			`SECURITY_BUFFER WorkstationName; /* RFC 1001 and ASCII */`
			`char DomainString[0];`
			`/* followed by WorkstationString */`
[CIFS] Change pragma pack(1) to attribute(packed) to allow cifs on arm to access unaligned structures coming in off the wire gcc on arm processors generates very odd code with pragma pack specified - although it does pack the structures in some sense - it does not allow you to access unaligned elements in nested structures at the right offset as other architectures do. Oddly enough though, specifying the structures as packed the long way - one by one with the packed attribute does work. Rather than fighting over whether this is a gcc bug or some obscure side effect of pragma pack, it is easier to do what most (all but 96 other places in the kernel) do - and replace pragma pack with dozens of attribute(packed) structure qualifiers. Much more verbose ... but at least it works. Signed-off-by: David Kleikamp <shaggy@austin.ibm.com> Signed-off-by: Steve French <sfrench@us.ibm.com> CG: ----------------------------------------------------------------------- 2005-10-28 00:55:12 +04:00			`} __attribute__((packed)) NEGOTIATE_MESSAGE, *PNEGOTIATE_MESSAGE;`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00
			`typedef struct _CHALLENGE_MESSAGE {`
			`__u8 Signature[sizeof (NTLMSSP_SIGNATURE)];`
			`__le32 MessageType; /* 2 */`
			`SECURITY_BUFFER TargetName;`
			`__le32 NegotiateFlags;`
			`__u8 Challenge[CIFS_CRYPTO_KEY_SIZE];`
			`__u8 Reserved[8];`
			`SECURITY_BUFFER TargetInfoArray;`
[CIFS] Change pragma pack(1) to attribute(packed) to allow cifs on arm to access unaligned structures coming in off the wire gcc on arm processors generates very odd code with pragma pack specified - although it does pack the structures in some sense - it does not allow you to access unaligned elements in nested structures at the right offset as other architectures do. Oddly enough though, specifying the structures as packed the long way - one by one with the packed attribute does work. Rather than fighting over whether this is a gcc bug or some obscure side effect of pragma pack, it is easier to do what most (all but 96 other places in the kernel) do - and replace pragma pack with dozens of attribute(packed) structure qualifiers. Much more verbose ... but at least it works. Signed-off-by: David Kleikamp <shaggy@austin.ibm.com> Signed-off-by: Steve French <sfrench@us.ibm.com> CG: ----------------------------------------------------------------------- 2005-10-28 00:55:12 +04:00			`} __attribute__((packed)) CHALLENGE_MESSAGE, *PCHALLENGE_MESSAGE;`
Linux-2.6.12-rc2 Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip! 2005-04-17 02:20:36 +04:00
			`typedef struct _AUTHENTICATE_MESSAGE {`
			`__u8 Signature[sizeof (NTLMSSP_SIGNATURE)];`
			`__le32 MessageType; /* 3 */`
			`SECURITY_BUFFER LmChallengeResponse;`
			`SECURITY_BUFFER NtChallengeResponse;`
			`SECURITY_BUFFER DomainName;`
			`SECURITY_BUFFER UserName;`
			`SECURITY_BUFFER WorkstationName;`
			`SECURITY_BUFFER SessionKey;`
			`__le32 NegotiateFlags;`
			`char UserString[0];`
[CIFS] Change pragma pack(1) to attribute(packed) to allow cifs on arm to access unaligned structures coming in off the wire gcc on arm processors generates very odd code with pragma pack specified - although it does pack the structures in some sense - it does not allow you to access unaligned elements in nested structures at the right offset as other architectures do. Oddly enough though, specifying the structures as packed the long way - one by one with the packed attribute does work. Rather than fighting over whether this is a gcc bug or some obscure side effect of pragma pack, it is easier to do what most (all but 96 other places in the kernel) do - and replace pragma pack with dozens of attribute(packed) structure qualifiers. Much more verbose ... but at least it works. Signed-off-by: David Kleikamp <shaggy@austin.ibm.com> Signed-off-by: Steve French <sfrench@us.ibm.com> CG: ----------------------------------------------------------------------- 2005-10-28 00:55:12 +04:00			`} __attribute__((packed)) AUTHENTICATE_MESSAGE, *PAUTHENTICATE_MESSAGE;`