4
* The secure anycast tunneling protocol (satp) defines a protocol used
5
* for communication between any combination of unicast and anycast
6
* tunnel endpoints. It has less protocol overhead than IPSec in Tunnel
7
* mode and allows tunneling of every ETHER TYPE protocol (e.g.
8
* ethernet, ip, arp ...). satp directly includes cryptography and
9
* message authentication based on the methodes used by SRTP. It is
10
* intended to deliver a generic, scaleable and secure solution for
11
* tunneling and relaying of packets of any protocol.
14
* Copyright (C) 2007-2009 Othmar Gsenger, Erwin Nindl,
15
* Christian Pointner <satp@wirdorange.org>
17
* This file is part of Anytun.
19
* Anytun is free software: you can redistribute it and/or modify
20
* it under the terms of the GNU General Public License as published by
21
* the Free Software Foundation, either version 3 of the License, or
24
* Anytun is distributed in the hope that it will be useful,
25
* but WITHOUT ANY WARRANTY; without even the implied warranty of
26
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
27
* GNU General Public License for more details.
29
* You should have received a copy of the GNU General Public License
30
* along with anytun. If not, see <http://www.gnu.org/licenses/>.
32
#ifndef ANYTUN_authAlgo_h_INCLUDED
33
#define ANYTUN_authAlgo_h_INCLUDED
35
#include "datatypes.h"
37
#include "encryptedPacket.h"
40
#ifndef USE_SSL_CRYPTO
43
#include <openssl/hmac.h>
46
#include "keyDerivation.h"
51
AuthAlgo() : dir_(KD_INBOUND) {};
52
AuthAlgo(kd_dir_t d) : dir_(d) {};
53
virtual ~AuthAlgo() {};
57
* @param packet the packet to be authenticated
59
virtual void generate(KeyDerivation& kd, EncryptedPacket& packet) = 0;
63
* @param packet the packet to be authenticated
65
virtual bool checkTag(KeyDerivation& kd, EncryptedPacket& packet) = 0;
71
//****** NullAuthAlgo ******
73
class NullAuthAlgo : public AuthAlgo
76
void generate(KeyDerivation& kd, EncryptedPacket& packet);
77
bool checkTag(KeyDerivation& kd, EncryptedPacket& packet);
79
static const u_int32_t DIGEST_LENGTH = 0;
83
//****** Sha1AuthAlgo ******
84
//* HMAC SHA1 Auth Tag Generator Class
86
class Sha1AuthAlgo : public AuthAlgo
89
Sha1AuthAlgo(kd_dir_t d);
92
void generate(KeyDerivation& kd, EncryptedPacket& packet);
93
bool checkTag(KeyDerivation& kd, EncryptedPacket& packet);
95
static const u_int32_t DIGEST_LENGTH = 20;
98
#ifndef USE_SSL_CRYPTO