mirror of
https://git.kernel.org/pub/scm/network/wireless/iwd.git
synced 2025-01-09 00:12:36 +01:00
eapol: add PMK installer support
802.1x offloading needs a way to call SET_PMK after EAP finishes. In the same manner as set_tk/gtk/igtk a new 'install_pmk' function was added which eapol can call into after EAP completes.
This commit is contained in:
parent
3284ed4e8e
commit
93b49a72ac
10
src/eapol.c
10
src/eapol.c
@ -52,6 +52,7 @@ static uint32_t eapol_4way_handshake_time = 2;
|
|||||||
static eapol_rekey_offload_func_t rekey_offload = NULL;
|
static eapol_rekey_offload_func_t rekey_offload = NULL;
|
||||||
|
|
||||||
static eapol_tx_packet_func_t tx_packet = NULL;
|
static eapol_tx_packet_func_t tx_packet = NULL;
|
||||||
|
static eapol_install_pmk_func_t install_pmk = NULL;
|
||||||
static void *tx_user_data;
|
static void *tx_user_data;
|
||||||
|
|
||||||
#define VERIFY_IS_ZERO(field) \
|
#define VERIFY_IS_ZERO(field) \
|
||||||
@ -2177,6 +2178,10 @@ static void eapol_eap_complete_cb(enum eap_result result, void *user_data)
|
|||||||
sm->eap = NULL;
|
sm->eap = NULL;
|
||||||
handshake_failed(sm, MMPDU_REASON_CODE_IEEE8021X_FAILED);
|
handshake_failed(sm, MMPDU_REASON_CODE_IEEE8021X_FAILED);
|
||||||
return;
|
return;
|
||||||
|
} else {
|
||||||
|
if (install_pmk)
|
||||||
|
install_pmk(sm->handshake, sm->handshake->pmk,
|
||||||
|
sm->handshake->pmk_len);
|
||||||
}
|
}
|
||||||
|
|
||||||
eap_reset(sm->eap);
|
eap_reset(sm->eap);
|
||||||
@ -2485,6 +2490,11 @@ void __eapol_set_rekey_offload_func(eapol_rekey_offload_func_t func)
|
|||||||
rekey_offload = func;
|
rekey_offload = func;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
void __eapol_set_install_pmk_func(eapol_install_pmk_func_t func)
|
||||||
|
{
|
||||||
|
install_pmk = func;
|
||||||
|
}
|
||||||
|
|
||||||
void eapol_register(struct eapol_sm *sm)
|
void eapol_register(struct eapol_sm *sm)
|
||||||
{
|
{
|
||||||
eapol_frame_watch_func_t rx_handler = sm->handshake->authenticator ?
|
eapol_frame_watch_func_t rx_handler = sm->handshake->authenticator ?
|
||||||
|
@ -51,6 +51,9 @@ typedef void (*eapol_frame_watch_func_t)(uint16_t proto, const uint8_t *from,
|
|||||||
const struct eapol_frame *frame,
|
const struct eapol_frame *frame,
|
||||||
bool noencrypt,
|
bool noencrypt,
|
||||||
void *user_data);
|
void *user_data);
|
||||||
|
typedef void (*eapol_install_pmk_func_t)(struct handshake_state *hs,
|
||||||
|
const uint8_t *pmk,
|
||||||
|
size_t pmk_len);
|
||||||
|
|
||||||
bool eapol_calculate_mic(enum ie_rsn_akm_suite akm, const uint8_t *kck,
|
bool eapol_calculate_mic(enum ie_rsn_akm_suite akm, const uint8_t *kck,
|
||||||
const struct eapol_key *frame, uint8_t *mic,
|
const struct eapol_key *frame, uint8_t *mic,
|
||||||
@ -102,6 +105,8 @@ void __eapol_tx_packet(uint32_t ifindex, const uint8_t *dst, uint16_t proto,
|
|||||||
void __eapol_set_tx_packet_func(eapol_tx_packet_func_t func);
|
void __eapol_set_tx_packet_func(eapol_tx_packet_func_t func);
|
||||||
void __eapol_set_tx_user_data(void *user_data);
|
void __eapol_set_tx_user_data(void *user_data);
|
||||||
|
|
||||||
|
void __eapol_set_install_pmk_func(eapol_install_pmk_func_t func);
|
||||||
|
|
||||||
void __eapol_set_rekey_offload_func(eapol_rekey_offload_func_t func);
|
void __eapol_set_rekey_offload_func(eapol_rekey_offload_func_t func);
|
||||||
void __eapol_update_replay_counter(uint32_t ifindex, const uint8_t *spa,
|
void __eapol_update_replay_counter(uint32_t ifindex, const uint8_t *spa,
|
||||||
const uint8_t *aa, uint64_t replay_counter);
|
const uint8_t *aa, uint64_t replay_counter);
|
||||||
|
Loading…
Reference in New Issue
Block a user