chrony/nts_ke.h - chrony - Git at Google

 /*
   chronyd/chronyc - Programs for keeping computer clocks accurate.

  **********************************************************************
  * Copyright (C) Miroslav Lichvar  2020
  *
  * This program is free software; you can redistribute it and/or modify
  * it under the terms of version 2 of the GNU General Public License as
  * published by the Free Software Foundation.
  *
  * This program is distributed in the hope that it will be useful, but
  * WITHOUT ANY WARRANTY; without even the implied warranty of
  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  * General Public License for more details.
  *
  * You should have received a copy of the GNU General Public License along
  * with this program; if not, write to the Free Software Foundation, Inc.,
  * 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
  *
  **********************************************************************

   =======================================================================

   Header file for the NTS Key Establishment protocol
   */

 #ifndef GOT_NTS_KE_H
 #define GOT_NTS_KE_H

 #include "siv.h"

 #define NKE_PORT                        4460

 #define NKE_RECORD_CRITICAL_BIT         (1U << 15)
 #define NKE_RECORD_END_OF_MESSAGE       0
 #define NKE_RECORD_NEXT_PROTOCOL        1
 #define NKE_RECORD_ERROR                2
 #define NKE_RECORD_WARNING              3
 #define NKE_RECORD_AEAD_ALGORITHM       4
 #define NKE_RECORD_COOKIE               5
 #define NKE_RECORD_NTPV4_SERVER_NEGOTIATION 6
 #define NKE_RECORD_NTPV4_PORT_NEGOTIATION 7

 #define NKE_NEXT_PROTOCOL_NTPV4         0

 #define NKE_ERROR_UNRECOGNIZED_CRITICAL_RECORD 0
 #define NKE_ERROR_BAD_REQUEST           1
 #define NKE_ERROR_INTERNAL_SERVER_ERROR 2

 #define NKE_ALPN_NAME                   "ntske/1"
 #define NKE_EXPORTER_LABEL              "EXPORTER-network-time-security"
 #define NKE_EXPORTER_CONTEXT_C2S        "\x0\x0\x0\xf\x0"
 #define NKE_EXPORTER_CONTEXT_S2C        "\x0\x0\x0\xf\x1"

 #define NKE_MAX_MESSAGE_LENGTH          16384
 #define NKE_MAX_RECORD_BODY_LENGTH      256
 #define NKE_MAX_COOKIE_LENGTH           256
 #define NKE_MAX_COOKIES                 8
 #define NKE_MAX_KEY_LENGTH SIV_MAX_KEY_LENGTH

 #define NKE_RETRY_FACTOR2_CONNECT       4
 #define NKE_RETRY_FACTOR2_TLS           10
 #define NKE_MAX_RETRY_INTERVAL2         19

 typedef struct {
   int length;
   unsigned char key[NKE_MAX_KEY_LENGTH];
 } NKE_Key;

 typedef struct {
   SIV_Algorithm algorithm;
   NKE_Key c2s;
   NKE_Key s2c;
 } NKE_Context;

 typedef struct {
   int length;
   unsigned char cookie[NKE_MAX_COOKIE_LENGTH];
 } NKE_Cookie;

 #endif
	/*
	chronyd/chronyc - Programs for keeping computer clocks accurate.

	**********************************************************************
	* Copyright (C) Miroslav Lichvar 2020
	*
	* This program is free software; you can redistribute it and/or modify
	* it under the terms of version 2 of the GNU General Public License as
	* published by the Free Software Foundation.
	*
	* This program is distributed in the hope that it will be useful, but
	* WITHOUT ANY WARRANTY; without even the implied warranty of
	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	* General Public License for more details.
	*
	* You should have received a copy of the GNU General Public License along
	* with this program; if not, write to the Free Software Foundation, Inc.,
	* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
	*
	**********************************************************************

	=======================================================================

	Header file for the NTS Key Establishment protocol
	*/

	#ifndef GOT_NTS_KE_H
	#define GOT_NTS_KE_H

	#include "siv.h"

	#define NKE_PORT 4460

	#define NKE_RECORD_CRITICAL_BIT (1U << 15)
	#define NKE_RECORD_END_OF_MESSAGE 0
	#define NKE_RECORD_NEXT_PROTOCOL 1
	#define NKE_RECORD_ERROR 2
	#define NKE_RECORD_WARNING 3
	#define NKE_RECORD_AEAD_ALGORITHM 4
	#define NKE_RECORD_COOKIE 5
	#define NKE_RECORD_NTPV4_SERVER_NEGOTIATION 6
	#define NKE_RECORD_NTPV4_PORT_NEGOTIATION 7

	#define NKE_NEXT_PROTOCOL_NTPV4 0

	#define NKE_ERROR_UNRECOGNIZED_CRITICAL_RECORD 0
	#define NKE_ERROR_BAD_REQUEST 1
	#define NKE_ERROR_INTERNAL_SERVER_ERROR 2

	#define NKE_ALPN_NAME "ntske/1"
	#define NKE_EXPORTER_LABEL "EXPORTER-network-time-security"
	#define NKE_EXPORTER_CONTEXT_C2S "\x0\x0\x0\xf\x0"
	#define NKE_EXPORTER_CONTEXT_S2C "\x0\x0\x0\xf\x1"

	#define NKE_MAX_MESSAGE_LENGTH 16384
	#define NKE_MAX_RECORD_BODY_LENGTH 256
	#define NKE_MAX_COOKIE_LENGTH 256
	#define NKE_MAX_COOKIES 8
	#define NKE_MAX_KEY_LENGTH SIV_MAX_KEY_LENGTH

	#define NKE_RETRY_FACTOR2_CONNECT 4
	#define NKE_RETRY_FACTOR2_TLS 10
	#define NKE_MAX_RETRY_INTERVAL2 19

	typedef struct {
	int length;
	unsigned char key[NKE_MAX_KEY_LENGTH];
	} NKE_Key;

	typedef struct {
	SIV_Algorithm algorithm;
	NKE_Key c2s;
	NKE_Key s2c;
	} NKE_Context;

	typedef struct {
	int length;
	unsigned char cookie[NKE_MAX_COOKIE_LENGTH];
	} NKE_Cookie;

	#endif