1 /* SPDX-License-Identifier: BSD-2-Clause */ 2 /* 3 * dhcpcd - DHCP client daemon 4 * Copyright (c) 2006-2025 Roy Marples <roy (at) marples.name> 5 * All rights reserved 6 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 17 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 18 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 19 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 20 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 21 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 22 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 23 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 24 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 25 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 26 * SUCH DAMAGE. 27 */ 28 29 #ifndef AUTH_H 30 #define AUTH_H 31 32 #include <stdint.h> 33 34 #include "queue.h" 35 36 #define DHCPCD_AUTH_SEND (1 << 0) 37 #define DHCPCD_AUTH_REQUIRE (1 << 1) 38 #define DHCPCD_AUTH_RDM_COUNTER (1 << 2) 39 40 #define DHCPCD_AUTH_SENDREQUIRE (DHCPCD_AUTH_SEND | DHCPCD_AUTH_REQUIRE) 41 42 #define AUTH_PROTO_TOKEN 0 43 #define AUTH_PROTO_DELAYED 1 44 #define AUTH_PROTO_DELAYEDREALM 2 45 #define AUTH_PROTO_RECONFKEY 3 46 47 #define AUTH_ALG_NONE 0 48 #define AUTH_ALG_HMAC_MD5 1 49 50 #define AUTH_RDM_MONOTONIC 0 51 52 struct token { 53 TAILQ_ENTRY(token) next; 54 uint32_t secretid; 55 size_t realm_len; 56 unsigned char *realm; 57 size_t key_len; 58 unsigned char *key; 59 time_t expire; 60 }; 61 62 TAILQ_HEAD(token_head, token); 63 64 struct auth { 65 int options; 66 #ifdef AUTH 67 uint8_t protocol; 68 uint8_t algorithm; 69 uint8_t rdm; 70 uint64_t last_replay; 71 uint8_t last_replay_set; 72 struct token_head tokens; 73 uint32_t token_snd_secretid; 74 uint32_t token_rcv_secretid; 75 #endif 76 }; 77 78 struct authstate { 79 uint64_t replay; 80 struct token *token; 81 struct token *reconf; 82 }; 83 84 void dhcp_auth_reset(struct authstate *); 85 86 const struct token * dhcp_auth_validate(struct authstate *, 87 const struct auth *, 88 const void *, size_t, int, int, 89 const void *, size_t); 90 91 struct dhcpcd_ctx; 92 ssize_t dhcp_auth_encode(struct dhcpcd_ctx *, struct auth *, 93 const struct token *, 94 void *, size_t, int, int, 95 void *, size_t); 96 97 int auth_get_rdm_monotonic(uint64_t *rdm); 98 #endif 99
Indexes created Tue May 26 00:24:38 UTC 2026