1/*
2 * Copyright (c) 2010 Apple Inc. All rights reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1.  Redistributions of source code must retain the above copyright
11 *     notice, this list of conditions and the following disclaimer.
12 * 2.  Redistributions in binary form must reproduce the above copyright
13 *     notice, this list of conditions and the following disclaimer in the
14 *     documentation and/or other materials provided with the distribution.
15 * 3.  Neither the name of Apple Inc. ("Apple") nor the names of its
16 *     contributors may be used to endorse or promote products derived from
17 *     this software without specific prior written permission.
18 *
19 * THIS SOFTWARE IS PROVIDED BY APPLE AND ITS CONTRIBUTORS "AS IS" AND ANY
20 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
21 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
22 * DISCLAIMED. IN NO EVENT SHALL APPLE OR ITS CONTRIBUTORS BE LIABLE FOR ANY
23 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
24 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
25 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
26 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
28 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29 *
30 * Portions of this software have been released under the following terms:
31 *
32 * (c) Copyright 1989-1993 OPEN SOFTWARE FOUNDATION, INC.
33 * (c) Copyright 1989-1993 HEWLETT-PACKARD COMPANY
34 * (c) Copyright 1989-1993 DIGITAL EQUIPMENT CORPORATION
35 *
36 * To anyone who acknowledges that this file is provided "AS IS"
37 * without any express or implied warranty:
38 * permission to use, copy, modify, and distribute this file for any
39 * purpose is hereby granted without fee, provided that the above
40 * copyright notices and this notice appears in all source code copies,
41 * and that none of the names of Open Software Foundation, Inc., Hewlett-
42 * Packard Company or Digital Equipment Corporation be used
43 * in advertising or publicity pertaining to distribution of the software
44 * without specific, written prior permission.  Neither Open Software
45 * Foundation, Inc., Hewlett-Packard Company nor Digital
46 * Equipment Corporation makes any representations about the suitability
47 * of this software for any purpose.
48 *
49 * Copyright (c) 2007, Novell, Inc. All rights reserved.
50 * Redistribution and use in source and binary forms, with or without
51 * modification, are permitted provided that the following conditions
52 * are met:
53 *
54 * 1.  Redistributions of source code must retain the above copyright
55 *     notice, this list of conditions and the following disclaimer.
56 * 2.  Redistributions in binary form must reproduce the above copyright
57 *     notice, this list of conditions and the following disclaimer in the
58 *     documentation and/or other materials provided with the distribution.
59 * 3.  Neither the name of Novell Inc. nor the names of its contributors
60 *     may be used to endorse or promote products derived from this
61 *     this software without specific prior written permission.
62 *
63 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY
64 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
65 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
66 * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY
67 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
68 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
69 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
70 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
71 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
72 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
73 *
74 * @APPLE_LICENSE_HEADER_END@
75 */
76
77/*
78**
79**  NAME:
80**
81**      id_base.idl
82**
83**  FACILITY:
84**
85**      DCE identity base type definitions
86**
87**  ABSTRACT:
88**
89**      Contains identity base type definitions for interoperability
90**      with Windows NT servers and other DCE RPC servers. Loosely
91**      based on OSF DCE IDL but with extensions for NT interoperability.
92**
93*/
94
95[
96 uuid(47EAABA3-3000-0000-0D00-01DC6C000000),
97 pointer_default(ptr)
98]
99interface sec_id_base
100{
101import "dce/nbase.idl";
102
103typedef struct sec_id_t {
104	idl_uuid_t uuid;
105	[string] char *name;
106} sec_id_t;
107
108typedef struct sec_id_foreign_t {
109	sec_id_t id;
110	sec_id_t realm;
111} sec_id_foreign_t;
112
113typedef struct sec_id_foreign_groupset_t {
114	sec_id_t realm;
115	unsigned16 num_groups;
116	[size_is(num_groups)] sec_id_t *groups;
117} sec_id_foreign_groupset_t;
118
119typedef enum {
120	/* DCE PAC */
121	sec_id_pac_format_v1,
122	sec_id_pac_format_raw
123} sec_id_pac_format_t;
124
125const long sec_id_authz_data_dce = 64;
126const long sec_id_authz_data_sesame = 65;
127const long sec_id_authz_data_mspac = 128;
128
129typedef struct sec_id_pac_format_v1_t {
130	sec_id_t realm;
131	sec_id_t principal;
132	sec_id_t group;
133	unsigned16 num_groups;
134	unsigned16 num_foreign_groups;
135	[size_is(num_groups)] sec_id_t *groups;
136	[size_is(num_foreign_groups)] sec_id_t *foreign_groups;
137} sec_id_pac_format_v1_t;
138
139typedef struct sec_id_pac_format_raw_t {
140	unsigned32 type;
141	unsigned32 length;
142	[size_is(length)] byte *value;
143} sec_id_pac_format_raw_t;
144
145/*
146 * I had to change these structures a little from DCE
147 * to accommodate the Windows 2000 PAC, but we should
148 * be binary compatible with the existing DCE interface.
149 * Unfortunately we're not source compatible with
150 * implementations that expect sec_id_pac_format_v1_t to
151 * be the same layout as sec_id_pac_t.
152 */
153typedef [switch_type(sec_id_pac_format_t)] union sec_id_pac_rep_t {
154	[case(sec_id_pac_format_v1)] sec_id_pac_format_v1_t v1_pac;
155	[case(sec_id_pac_format_raw)] sec_id_pac_format_raw_t raw_pac;
156} sec_id_pac_rep_t;
157
158typedef struct sec_id_pac_t {
159	sec_id_pac_format_t pac_type;
160	boolean32 authenticated;
161	[switch_is(pac_type)] sec_id_pac_rep_t pac;
162} sec_id_pac_t;
163
164typedef struct sec_id_pickled_pac_t {
165	ndr_format_t format_label;
166	unsigned32 num_bytes;
167	[size_is(num_bytes)] byte pickled_data[];
168} sec_id_pickled_pac_t;
169
170typedef struct rpc_np_sec_context_t {
171	unsigned32 Length;
172	unsigned32 Version;
173	unsigned32 UserNameLength;
174	[size_is(UserNameLength)] char *UserName;
175	unsigned32 DomainNameLength;
176	[size_is(DomainNameLength)] char *DomainName;
177	unsigned32 WorkstationLength;
178	[size_is(WorkstationLength)] char *Workstation;
179	unsigned32 SessionKeyLength;
180	[size_is(SessionKeyLength)] char *SessionKey;
181} rpc_np_sec_context_t, *rpc_np_sec_context_p_t;
182
183}
184