[thirdparty/hostap.git] / src / eapol_auth / eapol_auth_sm.h

/*
 * IEEE 802.1X-2004 Authenticator - EAPOL state machine
 * Copyright (c) 2002-2015, Jouni Malinen <j@w1.fi>
 *
 * This software may be distributed under the terms of the BSD license.
 * See README for more details.
 */

#ifndef EAPOL_AUTH_SM_H
#define EAPOL_AUTH_SM_H

#define EAPOL_SM_PREAUTH BIT(0)
#define EAPOL_SM_WAIT_START BIT(1)
#define EAPOL_SM_USES_WPA BIT(2)
#define EAPOL_SM_FROM_PMKSA_CACHE BIT(3)

struct eapol_auth_config {
	int eap_reauth_period;
	int wpa;
	int individual_wep_key_len;
	int eap_server;
	void *ssl_ctx;
	void *msg_ctx;
	void *eap_sim_db_priv;
	char *eap_req_id_text; /* a copy of this will be allocated */
	size_t eap_req_id_text_len;
	int erp_send_reauth_start;
	char *erp_domain; /* a copy of this will be allocated */
	int erp; /* Whether ERP is enabled on authentication server */
	u8 *pac_opaque_encr_key;
	u8 *eap_fast_a_id;
	size_t eap_fast_a_id_len;
	char *eap_fast_a_id_info;
	int eap_fast_prov;
	int pac_key_lifetime;
	int pac_key_refresh_time;
	int eap_sim_aka_result_ind;
	int tnc;
	struct wps_context *wps;
	int fragment_size;
	u16 pwd_group;
	int pbc_in_m1;
	const u8 *server_id;
	size_t server_id_len;

	/* Opaque context pointer to owner data for callback functions */
	void *ctx;
};

struct eap_user;
struct eap_server_erp_key;

typedef enum {
	EAPOL_LOGGER_DEBUG, EAPOL_LOGGER_INFO, EAPOL_LOGGER_WARNING
} eapol_logger_level;

enum eapol_event {
	EAPOL_AUTH_SM_CHANGE,
	EAPOL_AUTH_REAUTHENTICATE
};

struct eapol_auth_cb {
	void (*eapol_send)(void *ctx, void *sta_ctx, u8 type, const u8 *data,
			   size_t datalen);
	void (*aaa_send)(void *ctx, void *sta_ctx, const u8 *data,
			 size_t datalen);
	void (*finished)(void *ctx, void *sta_ctx, int success, int preauth,
			 int remediation);
	int (*get_eap_user)(void *ctx, const u8 *identity, size_t identity_len,
			    int phase2, struct eap_user *user);
	int (*sta_entry_alive)(void *ctx, const u8 *addr);
	void (*logger)(void *ctx, const u8 *addr, eapol_logger_level level,
		       const char *txt);
	void (*set_port_authorized)(void *ctx, void *sta_ctx, int authorized);
	void (*abort_auth)(void *ctx, void *sta_ctx);
	void (*tx_key)(void *ctx, void *sta_ctx);
	void (*eapol_event)(void *ctx, void *sta_ctx, enum eapol_event type);
	struct eap_server_erp_key * (*erp_get_key)(void *ctx,
						   const char *keyname);
	int (*erp_add_key)(void *ctx, struct eap_server_erp_key *erp);
};


struct eapol_authenticator * eapol_auth_init(struct eapol_auth_config *conf,
					     struct eapol_auth_cb *cb);
void eapol_auth_deinit(struct eapol_authenticator *eapol);
struct eapol_state_machine *
eapol_auth_alloc(struct eapol_authenticator *eapol, const u8 *addr,
		 int flags, const struct wpabuf *assoc_wps_ie,
		 const struct wpabuf *assoc_p2p_ie, void *sta_ctx,
		 const char *identity, const char *radius_cui);
void eapol_auth_free(struct eapol_state_machine *sm);
void eapol_auth_step(struct eapol_state_machine *sm);
int eapol_auth_dump_state(struct eapol_state_machine *sm, char *buf,
			  size_t buflen);
int eapol_auth_eap_pending_cb(struct eapol_state_machine *sm, void *ctx);
void eapol_auth_reauthenticate(struct eapol_state_machine *sm);

#endif /* EAPOL_AUTH_SM_H */
Commit	Line	Data
6fc6879b	1	/*
5ed1c08f	2	* IEEE 802.1X-2004 Authenticator - EAPOL state machine
cfb5c08f	3	* Copyright (c) 2002-2015, Jouni Malinen <j@w1.fi>
6fc6879b	4	*
0f3d578e JM	5	* This software may be distributed under the terms of the BSD license.
0f3d578e JM	6	* See README for more details.
6fc6879b JM	7	*/
6fc6879b JM	8
281c950b JM	9	#ifndef EAPOL_AUTH_SM_H
281c950b JM	10	#define EAPOL_AUTH_SM_H
6fc6879b	11
e0e14a7b JM	12	#define EAPOL_SM_PREAUTH BIT(0)
	13	#define EAPOL_SM_WAIT_START BIT(1)
	14	#define EAPOL_SM_USES_WPA BIT(2)
	15	#define EAPOL_SM_FROM_PMKSA_CACHE BIT(3)
6fc6879b JM	16
	17	struct eapol_auth_config {
	18	int eap_reauth_period;
	19	int wpa;
	20	int individual_wep_key_len;
	21	int eap_server;
	22	void *ssl_ctx;
bb437f28	23	void *msg_ctx;
6fc6879b JM	24	void *eap_sim_db_priv;
	25	char eap_req_id_text; / a copy of this will be allocated */
	26	size_t eap_req_id_text_len;
2a5156a6 JM	27	int erp_send_reauth_start;
2a5156a6 JM	28	char erp_domain; / a copy of this will be allocated */
d3bddd8b	29	int erp; /* Whether ERP is enabled on authentication server */
6fc6879b	30	u8 *pac_opaque_encr_key;
2d867244 JM	31	u8 *eap_fast_a_id;
	32	size_t eap_fast_a_id_len;
	33	char *eap_fast_a_id_info;
378eae5e	34	int eap_fast_prov;
a11c90a6 JM	35	int pac_key_lifetime;
a11c90a6 JM	36	int pac_key_refresh_time;
6fc6879b	37	int eap_sim_aka_result_ind;
c3e258ae	38	int tnc;
ad08c363	39	struct wps_context *wps;
7f6ec672	40	int fragment_size;
df684d82	41	u16 pwd_group;
fa516558	42	int pbc_in_m1;
67fe933d JM	43	const u8 *server_id;
67fe933d JM	44	size_t server_id_len;
6fc6879b	45
a2befd37 JM	46	/* Opaque context pointer to owner data for callback functions */
a2befd37 JM	47	void *ctx;
6fc6879b JM	48	};
	49
	50	struct eap_user;
d3bddd8b	51	struct eap_server_erp_key;
6fc6879b JM	52
	53	typedef enum {
	54	EAPOL_LOGGER_DEBUG, EAPOL_LOGGER_INFO, EAPOL_LOGGER_WARNING
	55	} eapol_logger_level;
	56
38294200 JM	57	enum eapol_event {
	58	EAPOL_AUTH_SM_CHANGE,
	59	EAPOL_AUTH_REAUTHENTICATE
	60	};
	61
6fc6879b JM	62	struct eapol_auth_cb {
	63	void (eapol_send)(void ctx, void sta_ctx, u8 type, const u8 data,
	64	size_t datalen);
	65	void (aaa_send)(void ctx, void sta_ctx, const u8 data,
	66	size_t datalen);
8d2a9921 JM	67	void (finished)(void ctx, void *sta_ctx, int success, int preauth,
8d2a9921 JM	68	int remediation);
6fc6879b JM	69	int (get_eap_user)(void ctx, const u8 *identity, size_t identity_len,
	70	int phase2, struct eap_user *user);
	71	int (sta_entry_alive)(void ctx, const u8 *addr);
	72	void (logger)(void ctx, const u8 *addr, eapol_logger_level level,
	73	const char *txt);
	74	void (set_port_authorized)(void ctx, void *sta_ctx, int authorized);
	75	void (abort_auth)(void ctx, void *sta_ctx);
	76	void (tx_key)(void ctx, void *sta_ctx);
38294200	77	void (eapol_event)(void ctx, void *sta_ctx, enum eapol_event type);
d3bddd8b JM	78	struct eap_server_erp_key * (erp_get_key)(void ctx,
	79	const char *keyname);
	80	int (erp_add_key)(void ctx, struct eap_server_erp_key *erp);
6fc6879b JM	81	};
6fc6879b JM	82
6fc6879b JM	83
	84	struct eapol_authenticator * eapol_auth_init(struct eapol_auth_config *conf,
	85	struct eapol_auth_cb *cb);
	86	void eapol_auth_deinit(struct eapol_authenticator *eapol);
	87	struct eapol_state_machine *
	88	eapol_auth_alloc(struct eapol_authenticator eapol, const u8 addr,
f684e608	89	int flags, const struct wpabuf *assoc_wps_ie,
1a819aa7 MB	90	const struct wpabuf assoc_p2p_ie, void sta_ctx,
1a819aa7 MB	91	const char identity, const char radius_cui);
6fc6879b JM	92	void eapol_auth_free(struct eapol_state_machine *sm);
6fc6879b JM	93	void eapol_auth_step(struct eapol_state_machine *sm);
96ea74b8 JM	94	int eapol_auth_dump_state(struct eapol_state_machine sm, char buf,
96ea74b8 JM	95	size_t buflen);
6fc6879b	96	int eapol_auth_eap_pending_cb(struct eapol_state_machine sm, void ctx);
cfb5c08f	97	void eapol_auth_reauthenticate(struct eapol_state_machine *sm);
6fc6879b	98
281c950b	99	#endif /* EAPOL_AUTH_SM_H */