From c9ee5b8e7f11233c31811bdc5f697319a4d45438 Mon Sep 17 00:00:00 2001
From: Denis Kenzior <denkenz@gmail.com>
Date: Thu, 15 Dec 2016 11:15:21 -0600
Subject: [PATCH] TODO: Add task about MSK sizes

---
 TODO | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/TODO b/TODO
index 65882aed..38e756f1 100644
--- a/TODO
+++ b/TODO
@@ -320,6 +320,18 @@ Wireless daemon
   Priority: Medium
   Complexity: C8
 
+- Take EAP MSK size into consideration.
+
+  MSK is mandated to be 64 bytes long, and depending on the AKM, different parts
+  of the MSK are used to generate keys.  Some EAP methods produce MSKs with less
+  than 64 bytes of useable data.  For example, LEAP produces only 16 bytes and
+  MSCHAPv2 produces 32 bytes.  If the AKM requires MSK of a certain size, and
+  the EAP method does not provide enough data, then the handshake should be
+  aborted.
+
+  Priority: Medium
+  Complexity: C2
+
 
 Client
 ======