search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
winemac: Don't use snprintfW in macdrv_GetKeyNameText.
[wine.git] / include / schannel.h
blob556ec1882c9d92b5cbc8d2f748dafdf2adfa8dd1
1 /*
2 * Copyright (C) 2005 Juan Lang
3 *
4 * This library is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU Lesser General Public
6 * License as published by the Free Software Foundation; either
7 * version 2.1 of the License, or (at your option) any later version.
8 *
9 * This library is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
12 * Lesser General Public License for more details.
13 *
14 * You should have received a copy of the GNU Lesser General Public
15 * License along with this library; if not, write to the Free Software
16 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
17 */
18 #ifndef __WINE_SCHANNEL_H__
19 #define __WINE_SCHANNEL_H__
20
21 #include <wincrypt.h>
22
23 /* Package names */
24 #define UNISP_NAME_A "Microsoft Unified Security Protocol Provider"
25 #if defined(_MSC_VER) || defined(__MINGW32__)
26 #define UNISP_NAME_W L"Microsoft Unified Security Protocol Provider"
27 #else
28 static const WCHAR UNISP_NAME_W[] = { 'M','i','c','r','o','s','o','f','t',
29 ' ','U','n','i','f','i','e','d',' ','S','e','c','u','r','i','t','y',' ',
30 'P','r','o','t','o','c','o','l',' ','P','r','o','v','i','d','e','r',0 };
31 #endif
32 #define UNISP_NAME WINELIB_NAME_AW(UNISP_NAME_)
33
34 #define SSL2SP_NAME_A "Microsoft SSL 2.0"
35 #if defined(_MSC_VER) || defined(__MINGW32__)
36 #define SSL2SP_NAME_W L"Microsoft SSL 2.0"
37 #else
38 static const WCHAR SSL2SP_NAME_W[] = { 'M','i','c','r','o','s','o','f','t',
39 ' ','S','S','L',' ','2','.','0',0 };
40 #endif
41 #define SSL2SP_NAME WINELIB_NAME_AW(SSL2SP_NAME_)
42
43 #define SSL3SP_NAME_A "Microsoft SSL 3.0"
44 #if defined(_MSC_VER) || defined(__MINGW32__)
45 #define SSL3SP_NAME_W L"Microsoft SSL 3.0"
46 #else
47 static const WCHAR SSL3SP_NAME_W[] = { 'M','i','c','r','o','s','o','f','t',
48 ' ','S','S','L',' ','3','.','0',0 };
49 #endif
50 #define SSL3SP_NAME WINELIB_NAME_AW(SSL3SP_NAME_)
51
52 #define TLS1SP_NAME_A "Microsoft TLS 1.0"
53 #if defined(_MSC_VER) || defined(__MINGW32__)
54 #define TLS1SP_NAME_W L"Microsoft TLS 1.0"
55 #else
56 static const WCHAR TLS1SP_NAME_W[] = { 'M','i','c','r','o','s','o','f','t',
57 ' ','T','L','S',' ','1','.','0',0 };
58 #endif
59 #define TLS1SP_NAME WINELIB_NAME_AW(TLS1SP_NAME_)
60
61 #define PCT1SP_NAME_A "Microsoft PCT 1.0"
62 #if defined(_MSC_VER) || defined(__MINGW32__)
63 #define PCT1SP_NAME_W L"Microsoft PCT 1.0"
64 #else
65 static const WCHAR PCT1SP_NAME_W[] = { 'M','i','c','r','o','s','o','f','t',
66 ' ','P','C','T',' ','1','.','0',0 };
67 #endif
68 #define PCT1SP_NAME WINELIB_NAME_AW(PCT1SP_NAME_)
69
70 #define SCHANNEL_NAME_A "Schannel"
71 #if defined(_MSC_VER) || defined(__MINGW32__)
72 #define SCHANNEL_NAME_W L"Schannel"
73 #else
74 static const WCHAR SCHANNEL_NAME_W[] = { 'S','c','h','a','n','n','e','l',0 };
75 #endif
76 #define SCHANNEL_NAME WINELIB_NAME_AW(SCHANNEL_NAME_)
77
78 #define SCH_CRED_V1 1
79 #define SCH_CRED_V2 2
80 #define SCH_CRED_VERSION 2
81 #define SCH_CRED_V3 3
82 #define SCHANNEL_CRED_VERSION 4
83 #define SCH_CREDENTIALS_VERSION 5
84
85 #define SCHANNEL_RENEGOTIATE 0
86 #define SCHANNEL_SHUTDOWN 1
87 #define SCHANNEL_ALERT 2
88 #define SCHANNEL_SESSION 3
89
90 #define SP_PROT_ALL 0xffffffff
91 #define SP_PROT_UNI_CLIENT 0x80000000
92 #define SP_PROT_UNI_SERVER 0x40000000
93 #define SP_PROT_DTLS1_2_SERVER 0x00040000
94 #define SP_PROT_DTLS1_2_CLIENT 0x00080000
95 #define SP_PROT_DTLS_SERVER 0x00010000
96 #define SP_PROT_DTLS_CLIENT 0x00020000
97 #define SP_PROT_DTLS1_0_SERVER SP_PROT_DTLS_SERVER
98 #define SP_PROT_DTLS1_0_CLIENT SP_PROT_DTLS_CLIENT
99 #define SP_PROT_TLS1_3_SERVER 0x00001000
100 #define SP_PROT_TLS1_3_CLIENT 0x00002000
101 #define SP_PROT_TLS1_2_CLIENT 0x00000800
102 #define SP_PROT_TLS1_2_SERVER 0x00000400
103 #define SP_PROT_TLS1_1_CLIENT 0x00000200
104 #define SP_PROT_TLS1_1_SERVER 0x00000100
105 #define SP_PROT_TLS1_0_CLIENT SP_PROT_TLS1_CLIENT
106 #define SP_PROT_TLS1_0_SERVER SP_PROT_TLS1_SERVER
107 #define SP_PROT_TLS1_CLIENT 0x00000080
108 #define SP_PROT_TLS1_SERVER 0x00000040
109 #define SP_PROT_SSL3_CLIENT 0x00000020
110 #define SP_PROT_SSL3_SERVER 0x00000010
111 #define SP_PROT_SSL2_CLIENT 0x00000008
112 #define SP_PROT_SSL2_SERVER 0x00000004
113 #define SP_PROT_PCT1_CLIENT 0x00000002
114 #define SP_PROT_PCT1_SERVER 0x00000001
115 #define SP_PROT_NONE 0x00000000
116
117 #define SP_PROT_UNI (SP_PROT_UNI_CLIENT | SP_PROT_UNI_SERVER)
118 #define SP_PROT_DTLS (SP_PROT_DTLS_SERVER | SP_PROT_DTLS_CLIENT)
119 #define SP_PROT_DTLS1_0 (SP_PROT_DTLS1_0_SERVER | SP_PROT_DTLS1_0_CLIENT)
120 #define SP_PROT_DTLS1_2 (SP_PROT_DTLS1_2_SERVER | SP_PROT_DTLS1_2_CLIENT)
121 #define SP_PROT_TLS1_3 (SP_PROT_TLS1_3_CLIENT | SP_PROT_TLS1_3_SERVER)
122 #define SP_PROT_TLS1_2 (SP_PROT_TLS1_2_CLIENT | SP_PROT_TLS1_2_SERVER)
123 #define SP_PROT_TLS1_1 (SP_PROT_TLS1_1_CLIENT | SP_PROT_TLS1_1_SERVER)
124 #define SP_PROT_TLS1_0 (SP_PROT_TLS1_0_CLIENT | SP_PROT_TLS1_0_SERVER)
125 #define SP_PROT_TLS1 (SP_PROT_TLS1_CLIENT | SP_PROT_TLS1_SERVER)
126 #define SP_PROT_SSL3 (SP_PROT_SSL3_CLIENT | SP_PROT_SSL3_SERVER)
127 #define SP_PROT_SSL2 (SP_PROT_SSL2_CLIENT | SP_PROT_SSL2_SERVER)
128 #define SP_PROT_PCT1 (SP_PROT_PCT1_CLIENT | SP_PROT_PCT1_SERVER)
129
130 #define SP_PROT_SSL3TLS1_CLIENTS (SP_PROT_SSL3_CLIENT | SP_PROT_TLS1_CLIENT)
131 #define SP_PROT_SSL3TLS1_SERVERS (SP_PROT_SSL3_SERVER | SP_PROT_TLS1_SERVER)
132 #define SP_PROT_SSL3TLS1_X_CLIENTS (SP_PROT_SSL3_CLIENT | SP_PROT_TLS1_X_CLIENT)
133 #define SP_PROT_SSL3TLS1_X_SERVERS (SP_PROT_SSL3_SERVER | SP_PROT_TLS1_X_SERVER)
134 #define SP_PROT_TLS1_X_CLIENT ( SP_PROT_TLS1_0_CLIENT \
135 | SP_PROT_TLS1_1_CLIENT \
136 | SP_PROT_TLS1_2_CLIENT \
137 | SP_PROT_TLS1_3_CLIENT )
138 #define SP_PROT_TLS1_X_SERVER ( SP_PROT_TLS1_0_SERVER \
139 | SP_PROT_TLS1_1_SERVER \
140 | SP_PROT_TLS1_2_SERVER \
141 | SP_PROT_TLS1_3_SERVER )
142 #define SP_PROT_TLS1_1PLUS_CLIENT ( SP_PROT_TLS1_1_CLIENT \
143 | SP_PROT_TLS1_2_CLIENT \
144 | SP_PROT_TLS1_3_CLIENT)
145 #define SP_PROT_TLS1_1PLUS_SERVER ( SP_PROT_TLS1_1_SERVER \
146 | SP_PROT_TLS1_2_SERVER \
147 | SP_PROT_TLS1_3_SERVER )
148 #define SP_PROT_DTLS1_X_SERVER ( SP_PROT_DTLS1_0_SERVER \
149 | SP_PROT_DTLS1_2_SERVER )
150 #define SP_PROT_DTLS1_X_CLIENT ( SP_PROT_DTLS1_0_CLIENT \
151 | SP_PROT_DTLS1_2_CLIENT )
152 #define SP_PROT_DTLS1_X ( SP_PROT_DTLS1_X_SERVER \
153 | SP_PROT_DTLS1_X_CLIENT )
154 #define SP_PROT_CLIENTS (SP_PROT_PCT1_CLIENT | SP_PROT_SSL2_CLIENT | SP_PROT_SSL3_CLIENT \
155 | SP_PROT_TLS1_CLIENT | SP_PROT_UNI_CLIENT)
156 #define SP_PROT_SERVERS (SP_PROT_PCT1_SERVER | SP_PROT_SSL2_SERVER | SP_PROT_SSL3_SERVER \
157 | SP_PROT_TLS1_SERVER | SP_PROT_UNI_SERVER)
158 #define SP_PROT_X_CLIENTS ( SP_PROT_CLIENTS \
159 | SP_PROT_TLS1_X_CLIENT \
160 | SP_PROT_DTLS1_X_CLIENT)
161 #define SP_PROT_X_SERVERS ( SP_PROT_SERVERS \
162 | SP_PROT_TLS1_X_SERVER \
163 | SP_PROT_DTLS1_X_SERVER)
164
165 #define SP_PROT_SSL3TLS1 (SP_PROT_SSL3 | SP_PROT_TLS1)
166 #define SP_PROT_SSL3TLS1_X (SP_PROT_SSL3 | SP_PROT_TLS1_X)
167 #define SP_PROT_TLS1_X (SP_PROT_TLS1_X_CLIENT | SP_PROT_TLS1_X_SERVER)
168 #define SP_PROT_TLS1_1PLUS (SP_PROT_TLS1_1PLUS_CLIENT | SP_PROT_TLS1_1PLUS_SERVER)
169
170 #define SCH_CRED_NO_SYSTEM_MAPPER 2
171 #define SCH_CRED_NO_SERVERNAME_CHECK 4
172 #define SCH_CRED_MANUAL_CRED_VALIDATION 8
173 #define SCH_CRED_NO_DEFAULT_CREDS 16
174 #define SCH_CRED_AUTO_CRED_VALIDATION 32
175 #define SCH_CRED_USE_DEFAULT_CREDS 64
176 #define SCH_CRED_REVOCATION_CHECK_CHAIN_END_CERT 256
177 #define SCH_CRED_REVOCATION_CHECK_CHAIN 512
178 #define SCH_CRED_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT 1024
179 #define SCH_CRED_IGNORE_NO_REVOCATION_CHECK 2048
180 #define SCH_CRED_IGNORE_REVOCATION_OFFLINE 4096
181
182 #define SECPKG_ATTR_ISSUER_LIST 0x50
183 #define SECPKG_ATTR_REMOTE_CRED 0x51
184 #define SECPKG_ATTR_LOCAL_CRED 0x52
185 #define SECPKG_ATTR_REMOTE_CERT_CONTEXT 0x53
186 #define SECPKG_ATTR_LOCAL_CERT_CONTEXT 0x54
187 #define SECPKG_ATTR_ROOT_STORE 0x55
188 #define SECPKG_ATTR_SUPPORTED_ALGS 0x56
189 #define SECPKG_ATTR_CIPHER_STRENGTHS 0x57
190 #define SECPKG_ATTR_SUPPORTED_PROTOCOLS 0x58
191 #define SECPKG_ATTR_ISSUER_LIST_EX 0x59
192 #define SECPKG_ATTR_CONNECTION_INFO 0x5a
193 #define SECPKG_ATTR_EAP_KEY_BLOCK 0x5b
194 #define SECPKG_ATTR_MAPPED_CRED_ATTR 0x5c
195 #define SECPKG_ATTR_SESSION_INFO 0x5d
196 #define SECPKG_ATTR_APP_DATA 0x5e
197
198 #define UNISP_RPC_ID 14
199
200 struct _HMAPPER;
201
202 typedef struct _SCHANNEL_CRED
203 {
204 DWORD dwVersion;
205 DWORD cCreds;
206 PCCERT_CONTEXT *paCred;
207 HCERTSTORE hRootStore;
208 DWORD cMappers;
209 struct _HMAPPER **aphMappers;
210 DWORD cSupportedAlgs;
211 ALG_ID *palgSupportedAlgs;
212 DWORD grbitEnabledProtocols;
213 DWORD dwMinimumCipherStrength;
214 DWORD dwMaximumCipherStrength;
215 DWORD dwSessionLifespan;
216 DWORD dwFlags;
217 DWORD dwCredFormat;
218 } SCHANNEL_CRED, *PSCHANNEL_CRED;
219
220 #ifdef SCHANNEL_USE_BLACKLISTS
221
222 typedef enum _eTlsAlgorithmUsage
223 {
224 TlsParametersCngAlgUsageKeyExchange,
225 TlsParametersCngAlgUsageSignature,
226 TlsParametersCngAlgUsageCipher,
227 TlsParametersCngAlgUsageDigest,
228 TlsParametersCngAlgUsageCertSig,
229 } eTlsAlgorithmUsage;
230
231 typedef struct _CRYPTO_SETTINGS
232 {
233 eTlsAlgorithmUsage eAlgorithmUsage;
234 UNICODE_STRING strCngAlgId;
235 DWORD cChainingModes;
236 PUNICODE_STRING rgstrChainingModes;
237 DWORD dwMinBitLength;
238 DWORD dwMaxBitLength;
239 } CRYPTO_SETTINGS, *PCRYPTO_SETTINGS;
240
241 typedef struct _TLS_PARAMETERS
242 {
243 DWORD cAlpnIds;
244 PUNICODE_STRING rgstrAlpnIds;
245 DWORD grbitDisabledProtocols;
246 DWORD cDisabledCrypto;
247 PCRYPTO_SETTINGS pDisabledCrypto;
248 DWORD dwFlags;
249 } TLS_PARAMETERS, *PTLS_PARAMETERS;
250
251 typedef struct _SCH_CREDENTIALS
252 {
253 DWORD dwVersion;
254 DWORD dwCredFormat;
255 DWORD cCreds;
256 PCCERT_CONTEXT *paCred;
257 HCERTSTORE hRootStore;
258 DWORD cMappers;
259 struct _HMAPPER **aphMappers;
260 DWORD dwSessionLifespan;
261 DWORD dwFlags;
262 DWORD cTlsParameters;
263 PTLS_PARAMETERS pTlsParameters;
264 } SCH_CREDENTIALS, *PSCH_CREDENTIALS;
265
266 #endif
267
268 typedef struct _SecPkgCred_SupportedAlgs
269 {
270 DWORD cSupportedAlgs;
271 ALG_ID *palgSupportedAlgs;
272 } SecPkgCred_SupportedAlgs, *PSecPkgCred_SupportedAlgs;
273
274 typedef struct _SecPkgCred_CipherStrengths
275 {
276 DWORD dwMinimumCipherStrength;
277 DWORD dwMaximumCipherStrength;
278 } SecPkgCred_CipherStrengths, *PSecPkgCred_CipherStrengths;
279
280 typedef struct _SecPkgCred_SupportedProtocols
281 {
282 DWORD grbitProtocol;
283 } SecPkgCred_SupportedProtocols, *PSecPkgCred_SupportedProtocols;
284
285 typedef struct _SecPkgContext_IssuerListInfoEx
286 {
287 PCERT_NAME_BLOB aIssuers;
288 DWORD cIssuers;
289 } SecPkgContext_IssuerListInfoEx, *PSecPkgContext_IssuerListInfoEx;
290
291 typedef struct _SecPkgContext_ConnectionInfo
292 {
293 DWORD dwProtocol;
294 ALG_ID aiCipher;
295 DWORD dwCipherStrength;
296 ALG_ID aiHash;
297 DWORD dwHashStrength;
298 ALG_ID aiExch;
299 DWORD dwExchStrength;
300 } SecPkgContext_ConnectionInfo, *PSecPkgContext_ConnectionInfo;
301
302 #endif /* __WINE_SCHANNEL_H__ */
Windows API implementation