blob: 267e22a4b807545ca5b851db52a1b22dbb02eec2 [file] [log] [blame]
Dmitry Shmidt8d520ff2011-05-09 14:06:53 -07001/*
2 * hostapd / IEEE 802.1X-2004 Authenticator
3 * Copyright (c) 2002-2007, Jouni Malinen <j@w1.fi>
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
8 *
9 * Alternatively, this software may be distributed under the terms of BSD
10 * license.
11 *
12 * See README and COPYING for more details.
13 */
14
15#ifndef IEEE802_1X_H
16#define IEEE802_1X_H
17
18struct hostapd_data;
19struct sta_info;
20struct eapol_state_machine;
21struct hostapd_config;
22struct hostapd_bss_config;
23
24#ifdef _MSC_VER
25#pragma pack(push, 1)
26#endif /* _MSC_VER */
27
28/* RFC 3580, 4. RC4 EAPOL-Key Frame */
29
30struct ieee802_1x_eapol_key {
31 u8 type;
32 u16 key_length;
33 u8 replay_counter[8]; /* does not repeat within the life of the keying
34 * material used to encrypt the Key field;
35 * 64-bit NTP timestamp MAY be used here */
36 u8 key_iv[16]; /* cryptographically random number */
37 u8 key_index; /* key flag in the most significant bit:
38 * 0 = broadcast (default key),
39 * 1 = unicast (key mapping key); key index is in the
40 * 7 least significant bits */
41 u8 key_signature[16]; /* HMAC-MD5 message integrity check computed with
42 * MS-MPPE-Send-Key as the key */
43
44 /* followed by key: if packet body length = 44 + key length, then the
45 * key field (of key_length bytes) contains the key in encrypted form;
46 * if packet body length = 44, key field is absent and key_length
47 * represents the number of least significant octets from
48 * MS-MPPE-Send-Key attribute to be used as the keying material;
49 * RC4 key used in encryption = Key-IV + MS-MPPE-Recv-Key */
50} STRUCT_PACKED;
51
52#ifdef _MSC_VER
53#pragma pack(pop)
54#endif /* _MSC_VER */
55
56
57void ieee802_1x_receive(struct hostapd_data *hapd, const u8 *sa, const u8 *buf,
58 size_t len);
59void ieee802_1x_new_station(struct hostapd_data *hapd, struct sta_info *sta);
60void ieee802_1x_free_station(struct sta_info *sta);
61
62void ieee802_1x_tx_key(struct hostapd_data *hapd, struct sta_info *sta);
63void ieee802_1x_abort_auth(struct hostapd_data *hapd, struct sta_info *sta);
64void ieee802_1x_set_sta_authorized(struct hostapd_data *hapd,
65 struct sta_info *sta, int authorized);
66void ieee802_1x_dump_state(FILE *f, const char *prefix, struct sta_info *sta);
67int ieee802_1x_init(struct hostapd_data *hapd);
68void ieee802_1x_deinit(struct hostapd_data *hapd);
69int ieee802_1x_tx_status(struct hostapd_data *hapd, struct sta_info *sta,
70 const u8 *buf, size_t len, int ack);
Dmitry Shmidt1f69aa52012-01-24 16:10:04 -080071int ieee802_1x_eapol_tx_status(struct hostapd_data *hapd, struct sta_info *sta,
72 const u8 *data, int len, int ack);
Dmitry Shmidt8d520ff2011-05-09 14:06:53 -070073u8 * ieee802_1x_get_identity(struct eapol_state_machine *sm, size_t *len);
74u8 * ieee802_1x_get_radius_class(struct eapol_state_machine *sm, size_t *len,
75 int idx);
76const u8 * ieee802_1x_get_key(struct eapol_state_machine *sm, size_t *len);
77void ieee802_1x_notify_port_enabled(struct eapol_state_machine *sm,
78 int enabled);
79void ieee802_1x_notify_port_valid(struct eapol_state_machine *sm,
80 int valid);
81void ieee802_1x_notify_pre_auth(struct eapol_state_machine *sm, int pre_auth);
82int ieee802_1x_get_mib(struct hostapd_data *hapd, char *buf, size_t buflen);
83int ieee802_1x_get_mib_sta(struct hostapd_data *hapd, struct sta_info *sta,
84 char *buf, size_t buflen);
85void hostapd_get_ntp_timestamp(u8 *buf);
86char *eap_type_text(u8 type);
87
88const char *radius_mode_txt(struct hostapd_data *hapd);
89int radius_sta_rate(struct hostapd_data *hapd, struct sta_info *sta);
90
91#endif /* IEEE802_1X_H */