Message ID | 20210416111825.3895-1-michael-dev@fami-braun.de |
---|---|
Headers | show
Return-Path: <hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=none (no SPF record) smtp.mailfrom=lists.infradead.org (client-ip=2001:8b0:10b:1:d65d:64ff:fe57:4e05; helo=desiato.infradead.org; envelope-from=hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org; receiver=<UNKNOWN>) Authentication-Results: ozlabs.org; dkim=pass (2048-bit key; secure) header.d=lists.infradead.org header.i=@lists.infradead.org header.a=rsa-sha256 header.s=desiato.20200630 header.b=R9SbRD32; dkim=fail reason="signature verification failed" (2048-bit key; secure) header.d=infradead.org header.i=@infradead.org header.a=rsa-sha256 header.s=bombadil.20210309 header.b=s9qU59IO; dkim-atps=neutral Received: from desiato.infradead.org (desiato.infradead.org [IPv6:2001:8b0:10b:1:d65d:64ff:fe57:4e05]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 4FMDJq45sJz9sRK for <incoming@patchwork.ozlabs.org>; Fri, 16 Apr 2021 21:20:08 +1000 (AEST) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=desiato.20200630; h=Sender:Content-Transfer-Encoding :Content-Type:List-Subscribe:List-Help:List-Post:List-Archive: List-Unsubscribe:List-Id:MIME-Version:Message-Id:Date:Subject:Cc:To:From: Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender :Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Owner; bh=1QCQH770KF5DYojII44p2dBNubqwleQBgXLxC3EXHUM=; b=R9SbRD32rAbPIE0c18Vj747rTG sBImOgyADCKpb3ooobypeQwNQOwa+t+o8eKwYjRO48a1leP72G0uPXQhekdCFU3TDuken+ZTP3aZq 6ms1MZs/05HLJeY+BA8m/Dfk5JDdAJcZBcOUl7kKdBmAKAlexbVsHPX8QHNi9IQq0ipVYTHNLkVgi nn0ymuN04aWWCrz0F43ZkQIXvaChSF+KP2VV02GStpWZusejz7RiXPlsTsx1Jpcw4nqu1yCJZOdln gEg+5JxIXBxlIMTDgtYvZPJxQF+ZLtG5YjNAhl6Npzg7guOZ0k66oryORXM3QFXEKJe6ZLicXLax+ SzpN0RlQ==; Received: from localhost ([::1] helo=desiato.infradead.org) by desiato.infradead.org with esmtp (Exim 4.94 #2 (Red Hat Linux)) id 1lXMUx-001tPf-3K; Fri, 16 Apr 2021 11:18:55 +0000 Received: from bombadil.infradead.org ([2607:7c80:54:e::133]) by desiato.infradead.org with esmtps (Exim 4.94 #2 (Red Hat Linux)) id 1lXMUZ-001tMp-84 for hostap@desiato.infradead.org; Fri, 16 Apr 2021 11:18:36 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=bombadil.20210309; h=Content-Transfer-Encoding: MIME-Version:Message-Id:Date:Subject:Cc:To:From:Sender:Reply-To:Content-Type: Content-ID:Content-Description:In-Reply-To:References; bh=XgG3kVoqeaIOuTWXbryR4PhLpZFA74ZauJO0N8qpKP4=; b=s9qU59IOkUo35iXkGtmq7hXghd GT2bJUEcoRMcwKEO/pHXiRCv59AinV95xgcjix3uIvNb5ISrUXnnD/1+r8U3CtG5syDhg87DkgAXZ H1YBHGPwL/sUJZwkuqtWvSFh0R3lEloqvP1jd2IwNaE1UVLAbUKLVmSV52wq0FFoI8mypB/dy8U3u MNh3sNUip8/p//8ZBBBPF9ZjGl0t5XvqagB1UBNpgIJl0pUMhklblU436vbM4Ln4j3E5l4ArhzTUB aGzWMBCUmMyXTHWfyMlYqbsV1TGf4y0PGTWAZlJUOEEKUPTR0ioUpfnVZFAwajKVQ+QDxfLKrF9E6 7crdFIzw==; Received: from smail2.fem.tu-ilmenau.de ([2001:638:904:ffcc::15]) by bombadil.infradead.org with esmtps (Exim 4.94 #2 (Red Hat Linux)) id 1lXMUV-009J88-G2 for hostap@lists.infradead.org; Fri, 16 Apr 2021 11:18:28 +0000 Received: from a234.fem.tu-ilmenau.de (ray-controller.net.fem.tu-ilmenau.de [10.42.51.234]) by smail2.fem.tu-ilmenau.de (Postfix) with ESMTP id E1D48DECDF; Fri, 16 Apr 2021 13:18:25 +0200 (CEST) Received: by a234.fem.tu-ilmenau.de (Postfix, from userid 1000) id D725F30D7133; Fri, 16 Apr 2021 13:18:25 +0200 (CEST) From: michael-dev@fami-braun.de To: hostap@lists.infradead.org Cc: projekt-wlan@fem.tu-ilmenau.de, michael-dev@fami-braun.de Subject: [PATCHv3 0/2] SAE support Tunnel-Password (RADIUS) Date: Fri, 16 Apr 2021 13:18:23 +0200 Message-Id: <20210416111825.3895-1-michael-dev@fami-braun.de> X-Mailer: git-send-email 2.20.1 MIME-Version: 1.0 X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20210416_041827_710814_5C29A2E0 X-CRM114-Status: UNSURE ( 6.93 ) X-CRM114-Notice: Please train this message. X-Spam-Score: 0.0 (/) X-Spam-Report: Spam detection software, running on the system "bombadil.infradead.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: From: Michael Braun <michael-dev@fami-braun.de> This series adds RADIUS Tunnel-Password support for SAE. SAE identity is optionally carried in Tunnel-Client-Auth-ID. While at it, make sure that using radius_msg_get_tunnel_password for iterating is [...] Content analysis details: (0.0 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 SPF_NONE SPF: sender does not publish an SPF Record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record X-BeenThere: hostap@lists.infradead.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: <hostap.lists.infradead.org> List-Unsubscribe: <http://lists.infradead.org/mailman/options/hostap>, <mailto:hostap-request@lists.infradead.org?subject=unsubscribe> List-Archive: <http://lists.infradead.org/pipermail/hostap/> List-Post: <mailto:hostap@lists.infradead.org> List-Help: <mailto:hostap-request@lists.infradead.org?subject=help> List-Subscribe: <http://lists.infradead.org/mailman/listinfo/hostap>, <mailto:hostap-request@lists.infradead.org?subject=subscribe> Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "Hostap" <hostap-bounces@lists.infradead.org> Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org |
Series |
SAE support Tunnel-Password (RADIUS)
|
expand
|
From: Michael Braun <michael-dev@fami-braun.de> This series adds RADIUS Tunnel-Password support for SAE. SAE identity is optionally carried in Tunnel-Client-Auth-ID. While at it, make sure that using radius_msg_get_tunnel_password for iterating is only of linear time complexity by using next_idx. Michael Braun (2): SAE: add RADIUS Tunnel-Password support test: SAE password with Tunnel-Password hostapd/hostapd.conf | 6 ++ src/ap/ap_config.c | 8 ++ src/ap/ap_config.h | 9 +- src/ap/ieee802_11.c | 54 ++++++++++ src/ap/ieee802_11_auth.c | 145 +++++++++++++++++++------- src/ap/wpa_auth_glue.c | 28 +++-- src/radius/radius.c | 188 +++++++++++++++++++++------------ src/radius/radius.h | 7 +- tests/hwsim/dictionary.radius | 1 + tests/hwsim/test_radius.py | 190 ++++++++++++++++++++++++++++++++-- 10 files changed, 513 insertions(+), 123 deletions(-)