From patchwork Thu Mar  6 00:19:56 2014
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Ben Greear <greearb@candelatech.com>
X-Patchwork-Id: 327248
Return-Path: <hostap-bounces@lists.shmoo.com>
X-Original-To: patchwork-incoming@ozlabs.org
Delivered-To: patchwork-incoming@ozlabs.org
Received: from maxx.maxx.shmoo.com (maxx.shmoo.com [205.134.188.171])
	(using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by ozlabs.org (Postfix) with ESMTPS id 08F5A2C00A8
	for <patchwork-incoming@ozlabs.org>;
	Thu,  6 Mar 2014 11:25:01 +1100 (EST)
Received: from localhost (localhost [127.0.0.1])
	by maxx.maxx.shmoo.com (Postfix) with ESMTP id 9281617C040;
	Wed,  5 Mar 2014 19:24:57 -0500 (EST)
X-Virus-Scanned: amavisd-new at maxx.shmoo.com
Received: from maxx.maxx.shmoo.com ([127.0.0.1])
	by localhost (maxx.shmoo.com [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id WDfS3Eiai-X2; Wed,  5 Mar 2014 19:24:57 -0500 (EST)
Received: from maxx.shmoo.com (localhost [127.0.0.1])
	by maxx.maxx.shmoo.com (Postfix) with ESMTP id CF2A29D3DC;
	Wed,  5 Mar 2014 19:24:18 -0500 (EST)
X-Original-To: mailman-post+hostap@maxx.shmoo.com
Delivered-To: mailman-post+hostap@maxx.shmoo.com
Received: from localhost (localhost [127.0.0.1])
	by maxx.maxx.shmoo.com (Postfix) with ESMTP id 00D479D3C0
	for <mailman-post+hostap@maxx.shmoo.com>;
	Wed,  5 Mar 2014 19:24:17 -0500 (EST)
X-Virus-Scanned: amavisd-new at maxx.shmoo.com
Received: from maxx.maxx.shmoo.com ([127.0.0.1])
	by localhost (maxx.shmoo.com [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id mVmhhQ-bx066 for <mailman-post+hostap@maxx.shmoo.com>;
	Wed,  5 Mar 2014 19:24:11 -0500 (EST)
Received: from ns3.lanforge.com (mail.candelatech.com [208.74.158.172])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client did not present a certificate)
	by maxx.maxx.shmoo.com (Postfix) with ESMTPS id B93539D3AE
	for <hostap@lists.shmoo.com>; Wed,  5 Mar 2014 19:23:37 -0500 (EST)
Received: from fs3.candelatech.com (firewall.candelatech.com [70.89.124.249])
	by ns3.lanforge.com (8.14.2/8.14.2) with ESMTP id s260Lh2h031348
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
	Wed, 5 Mar 2014 16:21:45 -0800
From: greearb@candelatech.com
To: hostap@lists.shmoo.com
Subject: [PATCH 11/15] Add some documentation relating to EAP-AKA.
Date: Wed,  5 Mar 2014 16:19:56 -0800
Message-Id: <1394065200-20377-11-git-send-email-greearb@candelatech.com>
X-Mailer: git-send-email 1.7.3.4
In-Reply-To: <1394065200-20377-1-git-send-email-greearb@candelatech.com>
References: <1394065200-20377-1-git-send-email-greearb@candelatech.com>
Cc: Ben Greear <greearb@candelatech.com>
X-BeenThere: hostap@lists.shmoo.com
X-Mailman-Version: 2.1.11
Precedence: list
List-Id: HostAP Project <hostap.lists.shmoo.com>
List-Unsubscribe: <http://lists.shmoo.com/mailman/options/hostap>,
	<mailto:hostap-request@lists.shmoo.com?subject=unsubscribe>
List-Archive: <http://lists.shmoo.com/pipermail/hostap>
List-Post: <mailto:hostap@lists.shmoo.com>
List-Help: <mailto:hostap-request@lists.shmoo.com?subject=help>
List-Subscribe: <http://lists.shmoo.com/mailman/listinfo/hostap>,
	<mailto:hostap-request@lists.shmoo.com?subject=subscribe>
MIME-Version: 1.0
Sender: hostap-bounces@lists.shmoo.com
Errors-To: hostap-bounces@lists.shmoo.com

From: Ben Greear <greearb@candelatech.com>

Signed-hostapd: Ben Greear <greearb@candelatech.com>
---
 wpa_supplicant/defconfig           |    2 +-
 wpa_supplicant/wpa_supplicant.conf |    6 ++++++
 2 files changed, 7 insertions(+), 1 deletions(-)

diff --git a/wpa_supplicant/defconfig b/wpa_supplicant/defconfig
index 91eea35..7b21d60 100644
--- a/wpa_supplicant/defconfig
+++ b/wpa_supplicant/defconfig
@@ -287,7 +287,7 @@ CONFIG_PEERKEY=y
 
 # Select TLS implementation
 # openssl = OpenSSL (default)
-# gnutls = GnuTLS
+# gnutls = GnuTLS (Missing some features needed by EAP-AKA with USIM, at least)
 # internal = Internal TLSv1 implementation (experimental)
 # none = Empty template
 #CONFIG_TLS=openssl
diff --git a/wpa_supplicant/wpa_supplicant.conf b/wpa_supplicant/wpa_supplicant.conf
index 6cea0ac..0244169 100644
--- a/wpa_supplicant/wpa_supplicant.conf
+++ b/wpa_supplicant/wpa_supplicant.conf
@@ -720,6 +720,9 @@ fast_reauth=1
 # identity: Identity string for EAP
 #	This field is also used to configure user NAI for
 #	EAP-PSK/PAX/SAKE/GPSK.
+#       For emulated EAP-AKA, it is often 0|IMSI@domain: 0555444333222111@wlan.org
+#       For emulated EAP-SIM, it is often 1|IMSI@domain
+#
 # anonymous_identity: Anonymous identity string for EAP (to be used as the
 #	unencrypted identity with EAP types that support different tunnelled
 #	identity, e.g., EAP-TTLS). This field can also be used with
@@ -733,6 +736,9 @@ fast_reauth=1
 #	PSK) is also configured using this field. For EAP-GPSK, this is a
 #	variable length PSK. ext:<name of external password field> format can
 #	be used to indicate that the password is stored in external storage.
+#       For emulated EAP-AKA, the syntax is K:OPc:SQN
+#       For emulated EAP-SIM, the syntax is K:OPc
+#
 # ca_cert: File path to CA certificate file (PEM/DER). This file can have one
 #	or more trusted CA certificates. If ca_cert and ca_path are not
 #	included, server certificate will not be verified. This is insecure and