2 * EAP server/peer: EAP-SAKE shared routines
3 * Copyright (c) 2006-2007, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
9 #ifndef EAP_SAKE_COMMON_H
10 #define EAP_SAKE_COMMON_H
16 #define EAP_SAKE_VERSION 2
18 #define EAP_SAKE_SUBTYPE_CHALLENGE 1
19 #define EAP_SAKE_SUBTYPE_CONFIRM 2
20 #define EAP_SAKE_SUBTYPE_AUTH_REJECT 3
21 #define EAP_SAKE_SUBTYPE_IDENTITY 4
23 #define EAP_SAKE_AT_RAND_S 1
24 #define EAP_SAKE_AT_RAND_P 2
25 #define EAP_SAKE_AT_MIC_S 3
26 #define EAP_SAKE_AT_MIC_P 4
27 #define EAP_SAKE_AT_SERVERID 5
28 #define EAP_SAKE_AT_PEERID 6
29 #define EAP_SAKE_AT_SPI_S 7
30 #define EAP_SAKE_AT_SPI_P 8
31 #define EAP_SAKE_AT_ANY_ID_REQ 9
32 #define EAP_SAKE_AT_PERM_ID_REQ 10
33 #define EAP_SAKE_AT_ENCR_DATA 128
34 #define EAP_SAKE_AT_IV 129
35 #define EAP_SAKE_AT_PADDING 130
36 #define EAP_SAKE_AT_NEXT_TMPID 131
37 #define EAP_SAKE_AT_MSK_LIFE 132
39 #define EAP_SAKE_RAND_LEN 16
40 #define EAP_SAKE_MIC_LEN 16
41 #define EAP_SAKE_ROOT_SECRET_LEN 16
42 #define EAP_SAKE_SMS_LEN 16
43 #define EAP_SAKE_TEK_AUTH_LEN 16
44 #define EAP_SAKE_TEK_CIPHER_LEN 16
45 #define EAP_SAKE_TEK_LEN (EAP_SAKE_TEK_AUTH_LEN + EAP_SAKE_TEK_CIPHER_LEN)
52 u8 version; /* EAP_SAKE_VERSION */
62 struct eap_sake_parse_attr {
76 const u8 *perm_id_req;
82 size_t next_tmpid_len;
86 int eap_sake_parse_attributes(const u8 *buf, size_t len,
87 struct eap_sake_parse_attr *attr);
88 void eap_sake_derive_keys(const u8 *root_secret_a, const u8 *root_secret_b,
89 const u8 *rand_s, const u8 *rand_p,
90 u8 *tek, u8 *msk, u8 *emsk);
91 int eap_sake_compute_mic(const u8 *tek_auth,
92 const u8 *rand_s, const u8 *rand_p,
93 const u8 *serverid, size_t serverid_len,
94 const u8 *peerid, size_t peerid_len,
95 int peer, const u8 *eap, size_t eap_len,
96 const u8 *mic_pos, u8 *mic);
97 void eap_sake_add_attr(struct wpabuf *buf, u8 type, const u8 *data,
104 #endif /* EAP_SAKE_COMMON_H */