1 /*- 2 * Copyright 1998 Juniper Networks, Inc. 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 18 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 24 * SUCH DAMAGE. 25 * 26 * $FreeBSD$ 27 */ 28 29 #ifndef RADLIB_PRIVATE_H 30 #define RADLIB_PRIVATE_H 31 32 #include <sys/types.h> 33 #include <netinet/in.h> 34 35 #include "radlib.h" 36 #include "radlib_vs.h" 37 38 /* Handle types */ 39 #define RADIUS_AUTH 0 /* RADIUS authentication, default */ 40 #define RADIUS_ACCT 1 /* RADIUS accounting */ 41 #define RADIUS_SERVER 2 /* RADIUS server */ 42 43 /* Defaults */ 44 #define MAXTRIES 3 45 #define PATH_RADIUS_CONF "/etc/radius.conf" 46 #define RADIUS_PORT 1812 47 #define RADACCT_PORT 1813 48 #define TIMEOUT 3 /* In seconds */ 49 #define DEAD_TIME 0 50 51 /* Limits */ 52 #define ERRSIZE 128 /* Maximum error message length */ 53 #define MAXCONFLINE 1024 /* Maximum config file line length */ 54 #define MAXSERVERS 10 /* Maximum number of servers to try */ 55 #define MSGSIZE 4096 /* Maximum RADIUS message */ 56 #define PASSSIZE 128 /* Maximum significant password chars */ 57 58 /* Positions of fields in RADIUS messages */ 59 #define POS_CODE 0 /* Message code */ 60 #define POS_IDENT 1 /* Identifier */ 61 #define POS_LENGTH 2 /* Message length */ 62 #define POS_AUTH 4 /* Authenticator */ 63 #define LEN_AUTH 16 /* Length of authenticator */ 64 #define POS_ATTRS 20 /* Start of attributes */ 65 66 struct rad_server { 67 struct sockaddr_in addr; /* Address of server */ 68 char *secret; /* Shared secret */ 69 int timeout; /* Timeout in seconds */ 70 int max_tries; /* Number of tries before giving up */ 71 int num_tries; /* Number of tries so far */ 72 int is_dead; /* The server did not answer last time */ 73 time_t dead_time; /* Don't try this server for the time period if it is dead */ 74 time_t next_probe; /* Time of a next probe after failure */ 75 in_addr_t bindto; /* Bind to address */ 76 }; 77 78 struct rad_handle { 79 int fd; /* Socket file descriptor */ 80 struct rad_server servers[MAXSERVERS]; /* Servers to contact */ 81 int num_servers; /* Number of valid server entries */ 82 int ident; /* Current identifier value */ 83 char errmsg[ERRSIZE]; /* Most recent error message */ 84 unsigned char out[MSGSIZE]; /* Request to send */ 85 char out_created; /* rad_create_request() called? */ 86 int out_len; /* Length of request */ 87 char pass[PASSSIZE]; /* Cleartext password */ 88 int pass_len; /* Length of cleartext password */ 89 int pass_pos; /* Position of scrambled password */ 90 char chap_pass; /* Have we got a CHAP_PASSWORD ? */ 91 int authentic_pos; /* Position of message authenticator */ 92 char eap_msg; /* Are we an EAP Proxy? */ 93 unsigned char in[MSGSIZE]; /* Response received */ 94 int in_len; /* Length of response */ 95 int in_pos; /* Current position scanning attrs */ 96 int srv; /* Server number we did last */ 97 int type; /* Handle type */ 98 in_addr_t bindto; /* Current bind address */ 99 }; 100 101 struct vendor_attribute { 102 u_int32_t vendor_value; 103 u_char attrib_type; 104 u_char attrib_len; 105 u_char attrib_data[1]; 106 }; 107 108 #endif 109