From b51c4d11e1d4d09a51b004856e8854a29cddc6c7 Mon Sep 17 00:00:00 2001 From: Christian Pointner Date: Sat, 3 Jan 2009 00:19:31 +0000 Subject: added auth algo tested with anytun an ANYTUN_02_COMPAT set switched defaults for kd-prf, cipher and auth algo to use crypto --- src/auth_algo.h | 63 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 63 insertions(+) create mode 100644 src/auth_algo.h (limited to 'src/auth_algo.h') diff --git a/src/auth_algo.h b/src/auth_algo.h new file mode 100644 index 0000000..b22ea46 --- /dev/null +++ b/src/auth_algo.h @@ -0,0 +1,63 @@ +/* + * ľAnytun + * + * ľAnytun is a tiny implementation of SATP. Unlike Anytun which is a full + * featured implementation ľAnytun has no support for multiple connections + * or synchronisation. It is a small single threaded implementation intended + * to act as a client on small platforms. + * The secure anycast tunneling protocol (satp) defines a protocol used + * for communication between any combination of unicast and anycast + * tunnel endpoints. It has less protocol overhead than IPSec in Tunnel + * mode and allows tunneling of every ETHER TYPE protocol (e.g. + * ethernet, ip, arp ...). satp directly includes cryptography and + * message authentication based on the methodes used by SRTP. It is + * intended to deliver a generic, scaleable and secure solution for + * tunneling and relaying of packets of any protocol. + * + * + * Copyright (C) 2007-2008 Christian Pointner + * + * This file is part of ľAnytun. + * + * ľAnytun is free software: you can redistribute it and/or modify + * it under the terms of the GNU General Public License version 3 as + * published by the Free Software Foundation. + * + * ľAnytun is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with ľAnytun. If not, see . + */ + +#ifndef _AUTH_ALGO_H_ +#define _AUTH_ALGO_H_ + +#include +#include "key_derivation.h" + +enum auth_algo_type_enum { aa_unknown, aa_null, aa_sha1 }; +typedef enum auth_algo_type_enum auth_algo_type_t; + +struct auth_algo_struct { + auth_algo_type_t type_; + buffer_t key_; + gcry_md_hd_t handle_; +}; +typedef struct auth_algo_struct auth_algo_t; + +int auth_algo_init(auth_algo_t* aa, const char* type); +void auth_algo_close(auth_algo_t* aa); + +void auth_algo_generate(auth_algo_t* aa, key_derivation_t* kd, encrypted_packet_t* packet); +int auth_algo_check_tag(auth_algo_t* aa, key_derivation_t* kd, encrypted_packet_t* packet); + +#define SHA1_LENGTH 20 +int auth_algo_sha1_init(auth_algo_t* aa); +void auth_algo_sha1_close(auth_algo_t* aa); +void auth_algo_sha1_generate(auth_algo_t* aa, key_derivation_t* kd, encrypted_packet_t* packet); +int auth_algo_sha1_check_tag(auth_algo_t* aa, key_derivation_t* kd, encrypted_packet_t* packet); + +#endif -- cgit v1.2.3