00001 #ifndef __SecsssRR__ 00002 #define __SecsssRR__ 00003 /******************************************************************************/ 00004 /* */ 00005 /* X r d S e c s s s R R . h h */ 00006 /* */ 00007 /* (c) 2008 by the Board of Trustees of the Leland Stanford, Jr., University */ 00008 /* All Rights Reserved */ 00009 /* Produced by Andrew Hanushevsky for Stanford University under contract */ 00010 /* DE-AC02-76-SFO0515 with the Department of Energy */ 00011 /* */ 00012 /* This file is part of the XRootD software suite. */ 00013 /* */ 00014 /* XRootD is free software: you can redistribute it and/or modify it under */ 00015 /* the terms of the GNU Lesser General Public License as published by the */ 00016 /* Free Software Foundation, either version 3 of the License, or (at your */ 00017 /* option) any later version. */ 00018 /* */ 00019 /* XRootD is distributed in the hope that it will be useful, but WITHOUT */ 00020 /* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or */ 00021 /* FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public */ 00022 /* License for more details. */ 00023 /* */ 00024 /* You should have received a copy of the GNU Lesser General Public License */ 00025 /* along with XRootD in a file called COPYING.LESSER (LGPL license) and file */ 00026 /* COPYING (GPL license). If not, see <http://www.gnu.org/licenses/>. */ 00027 /* */ 00028 /* The copyright holder's institutional names and contributor's names may not */ 00029 /* be used to endorse or promote products derived from this software without */ 00030 /* specific prior written permission of the institution or contributor. */ 00031 /******************************************************************************/ 00032 00033 #include <string.h> 00034 #include <time.h> 00035 00036 // The following is the packet header and is always unencrypted. 00037 // 00038 struct XrdSecsssRR_Hdr 00039 { 00040 char ProtID[4]; // Protocol ID ("sss") 00041 char Pad[3]; // Padding bytes 00042 char EncType; // Encryption type as one of: 00043 static const char etBFish32 = '0'; // Blowfish 00044 00045 long long KeyID; // Key ID for encryption 00046 }; 00047 00048 // The data portion of the packet is encrypted with the private shared key 00049 // It immediately follows the header and has a maximum size (defined here). 00050 // 00051 struct XrdSecsssRR_Data 00052 { 00053 char Rand[32]; // 256-bit random string (avoid text attacks) 00054 int GenTime; // Time data generated (time(0) - BaseTime) 00055 char Pad[3]; // Reserved 00056 char Options; // One of the following: 00057 static const char UseData= 0x00; // Use the ID data as authenticated name 00058 static const char SndLID = 0x01; // Server to send login ID 00059 00060 static const int DataSz = 4040; 00061 char Data[DataSz]; // Optional data, as follows: 00062 00063 // (<Flag><packed null terminated string>)+ 00064 // 00065 static const char theName = 0x01; 00066 static const char theVorg = 0x02; 00067 static const char theRole = 0x03; 00068 static const char theGrps = 0x04; 00069 static const char theEndo = 0x05; 00070 // theCert = 0x06; // Reserved for future use 00071 static const char theRand = 0x07; // Random string (ignored) 00072 static const char theLgid = 0x10; // from server only 00073 static const char theHost = 0x20; // from client only (required) 00074 }; 00075 00076 static const int XrdSecsssRR_Data_HdrLen = sizeof(XrdSecsssRR_Data) - 00077 XrdSecsssRR_Data::DataSz; 00078 #endif