blob: 732412e2f7bdc9faeaf807a6c4a6be5a0bc17802 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
/*
* wincapi.h: Windows Crypto API functions defined in wincapi.c that
* use the crypt32 library. Also centralises the machinery for
* dynamically loading that library, and our own functions using that
* in turn.
*/
#if !defined NO_SECURITY
DECL_WINDOWS_FUNCTION(extern, BOOL, CryptProtectMemory, (LPVOID,DWORD,DWORD));
bool got_crypt(void);
/*
* Function to obfuscate an input string into something usable as a
* pathname for a Windows named pipe. Uses CryptProtectMemory to make
* the obfuscation depend on a key Windows stores for the owning user,
* and then hashes the string as well to make it have a manageable
* length and be composed of filename-legal characters.
*
* Rationale: Windows's named pipes all live in the same namespace, so
* one user can see what pipes another user has open. This is an
* undesirable privacy leak: in particular, if we used unobfuscated
* names for the connection-sharing pipe names, it would permit one
* user to know what username@host another user is SSHing to.
*
* The returned string is dynamically allocated.
*/
char *capi_obfuscate_string(const char *realname);
#endif
|