Andrew Zaborowski
b8fde0c166
eap: Accept a second id parameter in eap_append_secret
...
Accept two setting IDs in eap_append_secret, first for the username and
second for the password in case of the EAP_SECRET_REMOTE_USER_PASSWORD
EAP secret type. In all other cases only the first setting is used.
Until now for EAP_SECRET_REMOTE_USER_PASSWORD secrets we'd generate the
two setting names by adding different suffixes to the ID parameter.
Using the two different setting names automatically fixes the issues
with using the EAP Identity returned by the agent in EAP-MSCHAPv2 and
EAP-PWD.
2018-06-13 21:34:25 -05:00
Denis Kenzior
1f3b120467
eap-peap: Add reset_state method
2018-06-07 19:43:25 -05:00
Andrew Zaborowski
b1d4db7cc8
eap: Return specific error when check_settings fails
...
Change the check_settings eap functions to return a negative errno and
return more granular Dbus error from the Connect method.
2018-04-30 10:45:28 -05:00
Andrew Zaborowski
56d3d40f30
eap: Wipe passphrase memory in TLS, TTLS, EAP
...
Wipe the passphrase memory in more places before freeing.
2018-04-26 11:27:22 -05:00
Andrew Zaborowski
7541b595f9
eap-peap: Implement .check_settings
...
Confirm that the PEM file paths that we'll be passing to the l_tls
object are loading Ok and request/validate the private key passphrase
if needed. Then also call eap_check_settings to validate the inner
method's settings.
2018-04-19 13:23:03 -05:00
Tim Kourt
436e95d599
peap: Postpone cleanup on phase two failure
2018-03-01 09:13:17 -06:00
Tim Kourt
9783e236a1
peap: handle completion of phase two
2018-02-23 15:19:52 -06:00
Tim Kourt
55e8d7fdcc
peap: add retransmission support
2018-02-15 13:00:22 -06:00
Tim Kourt
91ec5cff8c
peap: add phase two eap tx/rx handlers
2018-02-14 21:34:21 -06:00
Tim Kourt
1ece3b13e4
peap: introduce and configure phase two eap method
2018-02-14 21:31:24 -06:00
Tim Kourt
50b7a01f87
peap: handle send for phase two data
2018-02-14 21:30:33 -06:00
Tim Kourt
8ae6e7c3de
peap: switch tx_pdu_buf to use databuf struct
2018-02-14 21:28:03 -06:00
Tim Kourt
93d0dac77b
peap: handle receive for phase two data
2018-02-14 21:26:54 -06:00
Tim Kourt
487c5cbafc
peap: send ack on established tunnel
2018-02-14 17:37:19 -06:00
Tim Kourt
43c650a2b4
peap: add specification reference by the version
2018-02-14 17:36:08 -06:00
Tim Kourt
8c1b175b8b
peap: derive and install eap key material
2018-02-02 14:27:05 -06:00
Tim Kourt
c5ec12e0e4
peap: response fragmentation support
2018-02-02 12:58:28 -06:00
Tim Kourt
71ebb7c1d5
peap: send response pkts
2018-02-01 22:09:12 -06:00
Tim Kourt
84be0eb8d3
peap: handle fragmented request
2018-02-01 22:08:13 -06:00
Tim Kourt
362771577b
peap: introduce basic request-response flow
2018-02-01 10:47:26 -06:00
Tim Kourt
40898deb8b
peap: handle Start flag
2018-02-01 10:43:16 -06:00
Tim Kourt
1d1bbb83eb
eap-peap: add version validation
2018-01-24 11:23:50 -06:00
Tim Kourt
ba8857d2f4
eap-peap: configure Protected EAP
2018-01-24 11:22:16 -06:00
Tim Kourt
20e74e8679
eap-peap: Introduce Protected EAP support
2018-01-24 11:19:56 -06:00