1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
/* pre-shared-key authentication, for libreswan
*
* Copyright (C) 2021 Andrew Cagney
*
* This program is free software; you can redistribute it and/or modify it
* under the terms of the GNU General Public License as published by the
* Free Software Foundation; either version 2 of the License, or (at your
* option) any later version. See <https://www.gnu.org/licenses/gpl2.txt>.
*
* This program is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
* for more details.
*
*/
#ifndef IKEV2_PSK_H
#define IKEV2_PSK_H
#include <stdbool.h>
#include <chunk.h>
enum keyword_auth;
struct ike_sa;
struct crypt_mac;
struct pbs_in;
struct hash_signature;
enum perspective;
diag_t ikev2_calculate_psk_sighash(enum perspective perspective,
const struct hash_signature *auth_sig,
const struct ike_sa *ike,
enum keyword_auth authby,
const struct crypt_mac *idhash,
const chunk_t firstpacket,
struct crypt_mac *sighash);
diag_t verify_v2AUTH_and_log_using_psk(enum keyword_auth authby,
const struct ike_sa *ike,
const struct crypt_mac *idhash,
struct pbs_in *sig_pbs,
const struct hash_signature *auth_sig);
bool ikev2_create_psk_auth(enum keyword_auth authby,
const struct ike_sa *ike,
const struct crypt_mac *idhash,
chunk_t *additional_auth /* output */);
#endif
|
