lib/libradius/radlib_private.h

   1 /*-
   2  * Copyright 1998 Juniper Networks, Inc.
   3  * All rights reserved.
   4  *
   5  * Redistribution and use in source and binary forms, with or without
   6  * modification, are permitted provided that the following conditions
   7  * are met:
   8  * 1. Redistributions of source code must retain the above copyright
   9  *    notice, this list of conditions and the following disclaimer.
  10  * 2. Redistributions in binary form must reproduce the above copyright
  11  *    notice, this list of conditions and the following disclaimer in the
  12  *    documentation and/or other materials provided with the distribution.
  13  *
  14  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
  15  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  16  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  17  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  18  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  19  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  20  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  21  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  22  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  23  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  24  * SUCH DAMAGE.
  25  *
  26  *      $FreeBSD: src/lib/libradius/radlib_private.h,v 1.7 2009/09/11 11:42:56 mav Exp $
  27  */
  28
  29 #ifndef RADLIB_PRIVATE_H
  30 #define RADLIB_PRIVATE_H
  31
  32 #include <sys/types.h>
  33 #include <netinet/in.h>
  34
  35 #include "radlib.h"
  36 #include "radlib_vs.h"
  37
  38 /* Handle types */
  39 #define RADIUS_AUTH             0   /* RADIUS authentication, default */
  40 #define RADIUS_ACCT             1   /* RADIUS accounting */
  41 #define RADIUS_SERVER           2   /* RADIUS server */
  42
  43 /* Defaults */
  44 #define MAXTRIES                3
  45 #define PATH_RADIUS_CONF        "/etc/radius.conf"
  46 #define RADIUS_PORT             1812
  47 #define RADACCT_PORT            1813
  48 #define TIMEOUT                 3       /* In seconds */
  49 #define DEAD_TIME               0
  50
  51 /* Limits */
  52 #define ERRSIZE         128             /* Maximum error message length */
  53 #define MAXCONFLINE     1024            /* Maximum config file line length */
  54 #define MAXSERVERS      10              /* Maximum number of servers to try */
  55 #define MSGSIZE         4096            /* Maximum RADIUS message */
  56 #define PASSSIZE        128             /* Maximum significant password chars */
  57
  58 /* Positions of fields in RADIUS messages */
  59 #define POS_CODE        0               /* Message code */
  60 #define POS_IDENT       1               /* Identifier */
  61 #define POS_LENGTH      2               /* Message length */
  62 #define POS_AUTH        4               /* Authenticator */
  63 #define LEN_AUTH        16              /* Length of authenticator */
  64 #define POS_ATTRS       20              /* Start of attributes */
  65
  66 struct rad_server {
  67         struct sockaddr_in addr;        /* Address of server */
  68         char            *secret;        /* Shared secret */
  69         int              timeout;       /* Timeout in seconds */
  70         int              max_tries;     /* Number of tries before giving up */
  71         int              num_tries;     /* Number of tries so far */
  72         int              is_dead;       /* The server did not answer last time */
  73         time_t           dead_time;     /* Don't try this server for the time period if it is dead */
  74         time_t           next_probe;    /* Time of a next probe after failure */
  75         in_addr_t        bindto;        /* Bind to address */
  76 };
  77
  78 struct rad_handle {
  79         int              fd;            /* Socket file descriptor */
  80         struct rad_server servers[MAXSERVERS];  /* Servers to contact */
  81         int              num_servers;   /* Number of valid server entries */
  82         int              ident;         /* Current identifier value */
  83         char             errmsg[ERRSIZE];       /* Most recent error message */
  84         unsigned char    out[MSGSIZE];  /* Request to send */
  85         char             out_created;   /* rad_create_request() called? */
  86         int              out_len;       /* Length of request */
  87         char             pass[PASSSIZE];        /* Cleartext password */
  88         int              pass_len;      /* Length of cleartext password */
  89         int              pass_pos;      /* Position of scrambled password */
  90         char             chap_pass;     /* Have we got a CHAP_PASSWORD ? */
  91         int              authentic_pos; /* Position of message authenticator */
  92         char             eap_msg;       /* Are we an EAP Proxy? */
  93         unsigned char    in[MSGSIZE];   /* Response received */
  94         int              in_len;        /* Length of response */
  95         int              in_pos;        /* Current position scanning attrs */
  96         int              srv;           /* Server number we did last */
  97         int              type;          /* Handle type */
  98         in_addr_t        bindto;        /* Current bind address */
  99 };
 100
 101 struct vendor_attribute {
 102         u_int32_t vendor_value;
 103         u_char attrib_type;
 104         u_char attrib_len;
 105         u_char attrib_data[1];
 106 };
 107
 108 #endif