| Message ID | 20210416061332.16388-1-michael-dev@fami-braun.de |
|---|---|
| Headers | show
Return-Path: <hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=none (no SPF record) smtp.mailfrom=lists.infradead.org (client-ip=2001:8b0:10b:1:d65d:64ff:fe57:4e05; helo=desiato.infradead.org; envelope-from=hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org; receiver=<UNKNOWN>) Authentication-Results: ozlabs.org; dkim=pass (2048-bit key; secure) header.d=lists.infradead.org header.i=@lists.infradead.org header.a=rsa-sha256 header.s=desiato.20200630 header.b=jGslUTn/; dkim=fail reason="signature verification failed" (2048-bit key; secure) header.d=infradead.org header.i=@infradead.org header.a=rsa-sha256 header.s=bombadil.20210309 header.b=r6uxZuxR; dkim-atps=neutral Received: from desiato.infradead.org (desiato.infradead.org [IPv6:2001:8b0:10b:1:d65d:64ff:fe57:4e05]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 4FM5bD6Tlrz9sRK for <incoming@patchwork.ozlabs.org>; Fri, 16 Apr 2021 16:17:12 +1000 (AEST) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=desiato.20200630; h=Sender:Content-Transfer-Encoding :Content-Type:List-Subscribe:List-Help:List-Post:List-Archive: List-Unsubscribe:List-Id:MIME-Version:Message-Id:Date:Subject:Cc:To:From: Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender :Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Owner; bh=R5/FG57bvpw4p56eaeul0rBQBivaS0iLoVFwR/R/xL0=; b=jGslUTn/6kHkOwVrw+7u6xmvcA Wlpi/FgiFl1zx8vnS9bECtCkNzZx5586b/FOwifd6s6PM3Mqed4N6vvz4BBA/EXzGjNkmaQ05nW1x zY1Zzoy4dfX0HTXssdiZMaiZ4IUMYgYYjzCZHEkOeoBPY1msCTGxsKAbNWzRpkKKtBoaahDtqdyJa ZFc4joh+W0ccZpusShaoYPu8NZJV/KieoAF5Um+hvK/3SZ3T0519B0sioItMiVjmBZdKclbg7wO5L Lr+ynr2NEL++qhSFPFbnr9hhjSIz+kUsH/nPRFUOkXdnqLOuhul+iS9dcS5ikd9kk29xssDTyie7+ 9tNLpOYg==; Received: from localhost ([::1] helo=desiato.infradead.org) by desiato.infradead.org with esmtp (Exim 4.94 #2 (Red Hat Linux)) id 1lXHmF-000zh1-NJ; Fri, 16 Apr 2021 06:16:27 +0000 Received: from bombadil.infradead.org ([2607:7c80:54:e::133]) by desiato.infradead.org with esmtps (Exim 4.94 #2 (Red Hat Linux)) id 1lXHjY-000z9w-DR for hostap@desiato.infradead.org; Fri, 16 Apr 2021 06:13:43 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=bombadil.20210309; h=Content-Transfer-Encoding: MIME-Version:Message-Id:Date:Subject:Cc:To:From:Sender:Reply-To:Content-Type: Content-ID:Content-Description:In-Reply-To:References; bh=69+NwrEJsWbMkNCiUL+8i46gow5gg9XfMadwe0LMH3c=; b=r6uxZuxRvm+IDL2ZxwGzI1ySfp qcNWo66nIGybBdgWbyfTTXCSVezwRUI3LzMqAflHfru/mFrWERKNvvKDcU+OjOvxBrVe2KzHN9rXU grerETRkVZKl3FB24+wdcl5DNTJ0nqZi0ITBHKryOfJxETqj4kPW6SixtGAz8ID/Q0KErpsQ90YyD epM1A2ulGNwQ+wRasz1yBUmvIudFEHPPm/uV22W31xN9ElJfjMkwNbx5PLSWzcsuU8Pi73h80602o dUpB/3sM9WshNibtCYyS6TaLkCou323DoALuK85MgJBHokVhZhWA3PFOKinho4IpzrFytXCzn+yGC w1MnX/OA==; Received: from smail.fem.tu-ilmenau.de ([2001:638:904:ffbf::41]) by bombadil.infradead.org with esmtps (Exim 4.94 #2 (Red Hat Linux)) id 1lXHjV-0096nJ-DS for hostap@lists.infradead.org; Fri, 16 Apr 2021 06:13:39 +0000 Received: from a234.fem.tu-ilmenau.de (ray-controller.net.fem.tu-ilmenau.de [10.42.51.234]) by smail.fem.tu-ilmenau.de (Postfix) with ESMTP id ACC2D20265; Fri, 16 Apr 2021 08:13:34 +0200 (CEST) Received: by a234.fem.tu-ilmenau.de (Postfix, from userid 1000) id 8AEBF30DAC37; Fri, 16 Apr 2021 08:13:34 +0200 (CEST) From: michael-dev@fami-braun.de To: hostap@lists.infradead.org Cc: projekt-wlan@fem.tu-ilmenau.de, michael-dev@fami-braun.de Subject: [PATCH 0/2] SAE support Tunnel-Password (RADIUS) Date: Fri, 16 Apr 2021 08:13:30 +0200 Message-Id: <20210416061332.16388-1-michael-dev@fami-braun.de> X-Mailer: git-send-email 2.20.1 MIME-Version: 1.0 X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20210415_231337_625996_4D012CF7 X-CRM114-Status: UNSURE ( 7.18 ) X-CRM114-Notice: Please train this message. X-Spam-Score: 0.0 (/) X-Spam-Report: Spam detection software, running on the system "bombadil.infradead.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: From: Michael Braun <michael-dev@fami-braun.de> This series adds RADIUS Tunnel-Password support for SAE. SAE identity is optionally carried in Tunnel-Client-Auth-ID. While at it, make sure that using radius_msg_get_tunnel_password for iterating is [...] Content analysis details: (0.0 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 SPF_NONE SPF: sender does not publish an SPF Record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record X-BeenThere: hostap@lists.infradead.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: <hostap.lists.infradead.org> List-Unsubscribe: <http://lists.infradead.org/mailman/options/hostap>, <mailto:hostap-request@lists.infradead.org?subject=unsubscribe> List-Archive: <http://lists.infradead.org/pipermail/hostap/> List-Post: <mailto:hostap@lists.infradead.org> List-Help: <mailto:hostap-request@lists.infradead.org?subject=help> List-Subscribe: <http://lists.infradead.org/mailman/listinfo/hostap>, <mailto:hostap-request@lists.infradead.org?subject=subscribe> Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "Hostap" <hostap-bounces@lists.infradead.org> Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org |
| Series |
SAE support Tunnel-Password (RADIUS)
|
expand
|
From: Michael Braun <michael-dev@fami-braun.de> This series adds RADIUS Tunnel-Password support for SAE. SAE identity is optionally carried in Tunnel-Client-Auth-ID. While at it, make sure that using radius_msg_get_tunnel_password for iterating is only of linear time complexity by using next_idx. Michael Braun (2): sae: use Tunnel-Password and Tunnel-Client-Auth-ID for SAE test: SAE password with Tunnel-Password hostapd/hostapd.conf | 6 ++ src/ap/ap_config.c | 8 ++ src/ap/ap_config.h | 9 +- src/ap/ieee802_11.c | 61 +++++++++++ src/ap/ieee802_11_auth.c | 145 +++++++++++++++++++------- src/ap/wpa_auth_glue.c | 28 +++-- src/radius/radius.c | 188 ++++++++++++++++++++++------------ src/radius/radius.h | 7 +- tests/hwsim/dictionary.radius | 1 + tests/hwsim/test_radius.py | 119 ++++++++++++++++++++- 10 files changed, 453 insertions(+), 119 deletions(-)