18dbcf02cSchristos /* 28dbcf02cSchristos * EAP server/peer: EAP-SAKE shared routines 3*3d6c0713Schristos * Copyright (c) 2006-2019, Jouni Malinen <j@w1.fi> 48dbcf02cSchristos * 5e604d861Schristos * This software may be distributed under the terms of the BSD license. 6e604d861Schristos * See README for more details. 78dbcf02cSchristos */ 88dbcf02cSchristos 98dbcf02cSchristos #ifndef EAP_SAKE_COMMON_H 108dbcf02cSchristos #define EAP_SAKE_COMMON_H 118dbcf02cSchristos 128dbcf02cSchristos #define EAP_SAKE_VERSION 2 138dbcf02cSchristos 148dbcf02cSchristos #define EAP_SAKE_SUBTYPE_CHALLENGE 1 158dbcf02cSchristos #define EAP_SAKE_SUBTYPE_CONFIRM 2 168dbcf02cSchristos #define EAP_SAKE_SUBTYPE_AUTH_REJECT 3 178dbcf02cSchristos #define EAP_SAKE_SUBTYPE_IDENTITY 4 188dbcf02cSchristos 198dbcf02cSchristos #define EAP_SAKE_AT_RAND_S 1 208dbcf02cSchristos #define EAP_SAKE_AT_RAND_P 2 218dbcf02cSchristos #define EAP_SAKE_AT_MIC_S 3 228dbcf02cSchristos #define EAP_SAKE_AT_MIC_P 4 238dbcf02cSchristos #define EAP_SAKE_AT_SERVERID 5 248dbcf02cSchristos #define EAP_SAKE_AT_PEERID 6 258dbcf02cSchristos #define EAP_SAKE_AT_SPI_S 7 268dbcf02cSchristos #define EAP_SAKE_AT_SPI_P 8 278dbcf02cSchristos #define EAP_SAKE_AT_ANY_ID_REQ 9 288dbcf02cSchristos #define EAP_SAKE_AT_PERM_ID_REQ 10 298dbcf02cSchristos #define EAP_SAKE_AT_ENCR_DATA 128 308dbcf02cSchristos #define EAP_SAKE_AT_IV 129 318dbcf02cSchristos #define EAP_SAKE_AT_PADDING 130 328dbcf02cSchristos #define EAP_SAKE_AT_NEXT_TMPID 131 338dbcf02cSchristos #define EAP_SAKE_AT_MSK_LIFE 132 348dbcf02cSchristos 358dbcf02cSchristos #define EAP_SAKE_RAND_LEN 16 368dbcf02cSchristos #define EAP_SAKE_MIC_LEN 16 378dbcf02cSchristos #define EAP_SAKE_ROOT_SECRET_LEN 16 388dbcf02cSchristos #define EAP_SAKE_SMS_LEN 16 398dbcf02cSchristos #define EAP_SAKE_TEK_AUTH_LEN 16 408dbcf02cSchristos #define EAP_SAKE_TEK_CIPHER_LEN 16 418dbcf02cSchristos #define EAP_SAKE_TEK_LEN (EAP_SAKE_TEK_AUTH_LEN + EAP_SAKE_TEK_CIPHER_LEN) 428dbcf02cSchristos 438dbcf02cSchristos #ifdef _MSC_VER 448dbcf02cSchristos #pragma pack(push, 1) 458dbcf02cSchristos #endif /* _MSC_VER */ 468dbcf02cSchristos 478dbcf02cSchristos struct eap_sake_hdr { 488dbcf02cSchristos u8 version; /* EAP_SAKE_VERSION */ 498dbcf02cSchristos u8 session_id; 508dbcf02cSchristos u8 subtype; 518dbcf02cSchristos } STRUCT_PACKED; 528dbcf02cSchristos 538dbcf02cSchristos #ifdef _MSC_VER 548dbcf02cSchristos #pragma pack(pop) 558dbcf02cSchristos #endif /* _MSC_VER */ 568dbcf02cSchristos 578dbcf02cSchristos 588dbcf02cSchristos struct eap_sake_parse_attr { 598dbcf02cSchristos const u8 *rand_s; 608dbcf02cSchristos const u8 *rand_p; 618dbcf02cSchristos const u8 *mic_s; 628dbcf02cSchristos const u8 *mic_p; 638dbcf02cSchristos const u8 *serverid; 648dbcf02cSchristos size_t serverid_len; 658dbcf02cSchristos const u8 *peerid; 668dbcf02cSchristos size_t peerid_len; 678dbcf02cSchristos const u8 *spi_s; 688dbcf02cSchristos size_t spi_s_len; 698dbcf02cSchristos const u8 *spi_p; 708dbcf02cSchristos size_t spi_p_len; 718dbcf02cSchristos const u8 *any_id_req; 728dbcf02cSchristos const u8 *perm_id_req; 738dbcf02cSchristos const u8 *encr_data; 748dbcf02cSchristos size_t encr_data_len; 758dbcf02cSchristos const u8 *iv; 768dbcf02cSchristos size_t iv_len; 778dbcf02cSchristos const u8 *next_tmpid; 788dbcf02cSchristos size_t next_tmpid_len; 798dbcf02cSchristos const u8 *msk_life; 808dbcf02cSchristos }; 818dbcf02cSchristos 828dbcf02cSchristos int eap_sake_parse_attributes(const u8 *buf, size_t len, 838dbcf02cSchristos struct eap_sake_parse_attr *attr); 84*3d6c0713Schristos int eap_sake_derive_keys(const u8 *root_secret_a, const u8 *root_secret_b, 858dbcf02cSchristos const u8 *rand_s, const u8 *rand_p, 868dbcf02cSchristos u8 *tek, u8 *msk, u8 *emsk); 878dbcf02cSchristos int eap_sake_compute_mic(const u8 *tek_auth, 888dbcf02cSchristos const u8 *rand_s, const u8 *rand_p, 898dbcf02cSchristos const u8 *serverid, size_t serverid_len, 908dbcf02cSchristos const u8 *peerid, size_t peerid_len, 918dbcf02cSchristos int peer, const u8 *eap, size_t eap_len, 928dbcf02cSchristos const u8 *mic_pos, u8 *mic); 938dbcf02cSchristos void eap_sake_add_attr(struct wpabuf *buf, u8 type, const u8 *data, 948dbcf02cSchristos size_t len); 958dbcf02cSchristos 968dbcf02cSchristos #endif /* EAP_SAKE_COMMON_H */ 97