xref: /dragonfly/usr.sbin/ppp/libradius/radlib_private.h (revision 624037c1aec0af923b7826331805643186a83f44)
1 /*-
2  * Copyright 1998 Juniper Networks, Inc.
3  * All rights reserved.
4  *
5  * Redistribution and use in source and binary forms, with or without
6  * modification, are permitted provided that the following conditions
7  * are met:
8  * 1. Redistributions of source code must retain the above copyright
9  *    notice, this list of conditions and the following disclaimer.
10  * 2. Redistributions in binary form must reproduce the above copyright
11  *    notice, this list of conditions and the following disclaimer in the
12  *    documentation and/or other materials provided with the distribution.
13  *
14  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
15  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
16  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
17  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
18  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
19  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
20  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
21  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
22  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
23  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
24  * SUCH DAMAGE.
25  *
26  *        $FreeBSD: src/lib/libradius/radlib_private.h,v 1.7 2009/09/11 11:42:56 mav Exp $
27  */
28 
29 #ifndef RADLIB_PRIVATE_H
30 #define RADLIB_PRIVATE_H
31 
32 #include <sys/types.h>
33 #include <netinet/in.h>
34 
35 #include "radlib.h"
36 #include "radlib_vs.h"
37 
38 /* Handle types */
39 #define RADIUS_AUTH           0   /* RADIUS authentication, default */
40 #define RADIUS_ACCT           1   /* RADIUS accounting */
41 #define RADIUS_SERVER                   2   /* RADIUS server */
42 
43 /* Defaults */
44 #define MAXTRIES              3
45 #define PATH_RADIUS_CONF      "/etc/radius.conf"
46 #define RADIUS_PORT           1812
47 #define RADACCT_PORT                    1813
48 #define TIMEOUT                         3         /* In seconds */
49 #define   DEAD_TIME           0
50 
51 /* Limits */
52 #define ERRSIZE               128                 /* Maximum error message length */
53 #define MAXCONFLINE 1024                /* Maximum config file line length */
54 #define MAXSERVERS  10                  /* Maximum number of servers to try */
55 #define MSGSIZE               4096                /* Maximum RADIUS message */
56 #define PASSSIZE    128                 /* Maximum significant password chars */
57 
58 /* Positions of fields in RADIUS messages */
59 #define POS_CODE    0                   /* Message code */
60 #define POS_IDENT   1                   /* Identifier */
61 #define POS_LENGTH  2                   /* Message length */
62 #define POS_AUTH    4                   /* Authenticator */
63 #define LEN_AUTH    16                  /* Length of authenticator */
64 #define POS_ATTRS   20                  /* Start of attributes */
65 
66 struct rad_server {
67           struct sockaddr_in addr;      /* Address of server */
68           char                *secret;  /* Shared secret */
69           int                  timeout; /* Timeout in seconds */
70           int                  max_tries;         /* Number of tries before giving up */
71           int                  num_tries;         /* Number of tries so far */
72           int                  is_dead; /* The server did not answer last time */
73           time_t               dead_time;         /* Don't try this server for the time period if it is dead */
74           time_t               next_probe;        /* Time of a next probe after failure */
75           in_addr_t  bindto;  /* Bind to address */
76 };
77 
78 struct rad_handle {
79           int                  fd;                /* Socket file descriptor */
80           struct rad_server servers[MAXSERVERS];  /* Servers to contact */
81           int                  num_servers;       /* Number of valid server entries */
82           int                  ident;             /* Current identifier value */
83           char                 errmsg[ERRSIZE];   /* Most recent error message */
84           unsigned char        out[MSGSIZE];      /* Request to send */
85           char                 out_created;       /* rad_create_request() called? */
86           int                  out_len; /* Length of request */
87           char                 pass[PASSSIZE];    /* Cleartext password */
88           int                  pass_len;          /* Length of cleartext password */
89           int                  pass_pos;          /* Position of scrambled password */
90           char                 chap_pass;         /* Have we got a CHAP_PASSWORD ? */
91           int                  authentic_pos;     /* Position of message authenticator */
92           char                 eap_msg; /* Are we an EAP Proxy? */
93           unsigned char        in[MSGSIZE];       /* Response received */
94           int                  in_len;  /* Length of response */
95           int                  in_pos;  /* Current position scanning attrs */
96           int                  srv;               /* Server number we did last */
97           int                  type;              /* Handle type */
98           in_addr_t  bindto;  /* Current bind address */
99 };
100 
101 struct vendor_attribute {
102           u_int32_t vendor_value;
103           u_char attrib_type;
104           u_char attrib_len;
105           u_char attrib_data[1];
106 };
107 
108 #endif
109