1*fcf3ce44SJohn Forte /*
2*fcf3ce44SJohn Forte  * CDDL HEADER START
3*fcf3ce44SJohn Forte  *
4*fcf3ce44SJohn Forte  * The contents of this file are subject to the terms of the
5*fcf3ce44SJohn Forte  * Common Development and Distribution License (the "License").
6*fcf3ce44SJohn Forte  * You may not use this file except in compliance with the License.
7*fcf3ce44SJohn Forte  *
8*fcf3ce44SJohn Forte  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9*fcf3ce44SJohn Forte  * or http://www.opensolaris.org/os/licensing.
10*fcf3ce44SJohn Forte  * See the License for the specific language governing permissions
11*fcf3ce44SJohn Forte  * and limitations under the License.
12*fcf3ce44SJohn Forte  *
13*fcf3ce44SJohn Forte  * When distributing Covered Code, include this CDDL HEADER in each
14*fcf3ce44SJohn Forte  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15*fcf3ce44SJohn Forte  * If applicable, add the following below this CDDL HEADER, with the
16*fcf3ce44SJohn Forte  * fields enclosed by brackets "[]" replaced with your own identifying
17*fcf3ce44SJohn Forte  * information: Portions Copyright [yyyy] [name of copyright owner]
18*fcf3ce44SJohn Forte  *
19*fcf3ce44SJohn Forte  * CDDL HEADER END
20*fcf3ce44SJohn Forte  */
21*fcf3ce44SJohn Forte /*
22*fcf3ce44SJohn Forte  * Copyright 2008 Sun Microsystems, Inc.  All rights reserved.
23*fcf3ce44SJohn Forte  * Use is subject to license terms.
24*fcf3ce44SJohn Forte  */
25*fcf3ce44SJohn Forte 
26*fcf3ce44SJohn Forte #ifndef	_RADIUS_PACKET_H
27*fcf3ce44SJohn Forte #define	_RADIUS_PACKET_H
28*fcf3ce44SJohn Forte 
29*fcf3ce44SJohn Forte #ifdef __cplusplus
30*fcf3ce44SJohn Forte extern "C" {
31*fcf3ce44SJohn Forte #endif
32*fcf3ce44SJohn Forte 
33*fcf3ce44SJohn Forte #include <netinet/in.h>
34*fcf3ce44SJohn Forte #include <sys/types.h>
35*fcf3ce44SJohn Forte 
36*fcf3ce44SJohn Forte #include <radius_protocol.h>
37*fcf3ce44SJohn Forte 
38*fcf3ce44SJohn Forte /* A total of RAD_RCV_TIMEOUT * RAD_RETRY_MAX seconds timeout. */
39*fcf3ce44SJohn Forte #define	RAD_RCV_TIMEOUT 5	/* Timeout for receiving RADIUS packet in */
40*fcf3ce44SJohn Forte 				/*   sec. */
41*fcf3ce44SJohn Forte #define	RAD_RETRY_MAX   2	/* Max. # of times to retry receiving */
42*fcf3ce44SJohn Forte 				/*   packet. */
43*fcf3ce44SJohn Forte 
44*fcf3ce44SJohn Forte /* Describes a RADIUS attribute */
45*fcf3ce44SJohn Forte typedef struct radius_attr {
46*fcf3ce44SJohn Forte 	int	attr_type_code; /* RADIUS attribute type code, */
47*fcf3ce44SJohn Forte 				/*   e.g. RAD_USER_PASSWORD, etc. */
48*fcf3ce44SJohn Forte 	int	attr_value_len;
49*fcf3ce44SJohn Forte 	uint8_t	attr_value[MAX_RAD_ATTR_VALUE_LEN];
50*fcf3ce44SJohn Forte } radius_attr_t;
51*fcf3ce44SJohn Forte 
52*fcf3ce44SJohn Forte /* Describes data fields of a RADIUS packet. */
53*fcf3ce44SJohn Forte typedef struct radius_packet_data {
54*fcf3ce44SJohn Forte 	uint8_t		code;	/* RADIUS code, section 3, RFC 2865. */
55*fcf3ce44SJohn Forte 	uint8_t		identifier;
56*fcf3ce44SJohn Forte 	uint8_t		authenticator[RAD_AUTHENTICATOR_LEN];
57*fcf3ce44SJohn Forte 	int		num_of_attrs;
58*fcf3ce44SJohn Forte 	radius_attr_t attrs[4]; /* For this implementation each */
59*fcf3ce44SJohn Forte 				/*   outbound RADIUS packet will only */
60*fcf3ce44SJohn Forte 				/*   have 3 attributes associated with */
61*fcf3ce44SJohn Forte 				/*   it thus the chosen size should be */
62*fcf3ce44SJohn Forte 				/*   good enough. */
63*fcf3ce44SJohn Forte } radius_packet_data_t;
64*fcf3ce44SJohn Forte 
65*fcf3ce44SJohn Forte /*
66*fcf3ce44SJohn Forte  * Send a request to a RADIUS server.
67*fcf3ce44SJohn Forte  *
68*fcf3ce44SJohn Forte  * Returns > 0 on success, <= 0 on failure .
69*fcf3ce44SJohn Forte  *
70*fcf3ce44SJohn Forte  */
71*fcf3ce44SJohn Forte int
72*fcf3ce44SJohn Forte snd_radius_request(void *socket,
73*fcf3ce44SJohn Forte     iscsi_ipaddr_t rsvr_ip_addr,
74*fcf3ce44SJohn Forte     uint32_t rsvr_port,
75*fcf3ce44SJohn Forte     radius_packet_data_t *packet_data);
76*fcf3ce44SJohn Forte 
77*fcf3ce44SJohn Forte #define	RAD_RSP_RCVD_SUCCESS		0
78*fcf3ce44SJohn Forte #define	RAD_RSP_RCVD_NO_DATA		1
79*fcf3ce44SJohn Forte #define	RAD_RSP_RCVD_TIMEOUT		2
80*fcf3ce44SJohn Forte #define	RAD_RSP_RCVD_PROTOCOL_ERR	3
81*fcf3ce44SJohn Forte #define	RAD_RSP_RCVD_AUTH_FAILED	4
82*fcf3ce44SJohn Forte /*
83*fcf3ce44SJohn Forte  * Receives a response from a RADIUS server.
84*fcf3ce44SJohn Forte  *
85*fcf3ce44SJohn Forte  * Return receive status.
86*fcf3ce44SJohn Forte  */
87*fcf3ce44SJohn Forte int
88*fcf3ce44SJohn Forte rcv_radius_response(void *socket,
89*fcf3ce44SJohn Forte     uint8_t *shared_secret,
90*fcf3ce44SJohn Forte     uint32_t shared_secret_len,
91*fcf3ce44SJohn Forte     uint8_t *req_authenticator,
92*fcf3ce44SJohn Forte     radius_packet_data_t *resp_data);
93*fcf3ce44SJohn Forte 
94*fcf3ce44SJohn Forte #ifdef __cplusplus
95*fcf3ce44SJohn Forte }
96*fcf3ce44SJohn Forte #endif
97*fcf3ce44SJohn Forte 
98*fcf3ce44SJohn Forte #endif /* _RADIUS_PACKET_H */
99