summaryrefslogtreecommitdiffstats
path: root/enroll.h
blob: 99989b61999b2494299ca07c4c04d95075523f78 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103

// SPDX-License-Identifier: GPL-2.0-or-later
/*
 * Copyright (C) 2024 Felix Fietkau <nbd@nbd.name>
 */
#ifndef __ENROLL_H
#define __ENROLL_H

#include <libubox/blobmsg.h>
#include <libubox/uloop.h>
#include <libubox/avl.h>
#include "utils.h"
#include "curve25519.h"
#include "sha512.h"

#define ENROLL_SESSION_ID_LEN 4
#define ENROLL_HASH_SIZE 32

#define ENROLL_MAX_PEERS 64

struct network;

struct enroll_peer {
	struct avl_node node;

	struct sockaddr_in6 addr;
	uint64_t nonce;

	uint8_t session_id[ENROLL_SESSION_ID_LEN];
	uint8_t session_key[CURVE25519_KEY_SIZE];
	uint8_t pubkey[CURVE25519_KEY_SIZE];

	struct blob_attr *enroll_meta;
	uint8_t enroll_key[CURVE25519_KEY_SIZE];

	bool has_secret;
	bool has_key;
	bool confirmed;
	bool accepted;

	struct blob_attr meta[];
};

struct enroll_state {
	struct network *net;

	struct avl_tree peers;

	struct uloop_timeout timeout;
	struct uloop_timeout connect_timer;
	uint8_t privkey[2 * CURVE25519_KEY_SIZE];
	uint8_t pubkey[CURVE25519_KEY_SIZE];
	uint64_t nonce;

	struct blob_attr *meta;
	struct blob_attr *enroll_meta;

	uint8_t secret_hash[SHA512_HASH_SIZE];
	bool has_secret;
	bool auto_accept;

	unsigned int connect_interval;
	unsigned int n_connect;
	union network_endpoint connect[];
};

enum {
	ENROLL_START_ATTR_NETWORK,
	ENROLL_START_ATTR_TIMEOUT,
	ENROLL_START_ATTR_CONNECT,
	ENROLL_START_ATTR_INTERVAL,
	ENROLL_START_ATTR_ENROLL_AUTO,
	ENROLL_START_ATTR_ENROLL_SECRET,
	ENROLL_START_ATTR_ENROLL_INFO,
	ENROLL_START_ATTR_INFO,
	__ENROLL_START_ATTR_MAX,
};

#ifdef UBUS_SUPPORT

extern const struct blobmsg_policy enroll_start_policy[__ENROLL_START_ATTR_MAX];

void pex_enroll_recv(void *data, size_t len, struct sockaddr_in6 *addr);

struct enroll_state *enroll_state(void);
void enroll_net_cleanup(struct network *net);
void enroll_peer_info(struct blob_buf *buf, struct enroll_peer *peer);
void enroll_peer_accept(struct enroll_peer *peer, struct blob_attr *meta);
int enroll_start(struct blob_attr *data);
void enroll_stop(void);

#else

static inline void pex_enroll_recv(void *data, size_t len, struct sockaddr_in6 *addr)
{
}

static inline void enroll_net_cleanup(struct network *net)
{
}

#endif

#endif
generated by cgit v1.2.3 (git 2.46.0) at 2026-03-03 03:28:12 +0000