1 /*
2 * EAP peer method: EAP-GPSK (RFC 5433)
3 * Copyright (c) 2006-2014, Jouni Malinen <j@w1.fi>
4 *
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
7 */
8
9 #include "includes.h"
10
11 #include "common.h"
12 #include "crypto/random.h"
13 #include "eap_peer/eap_i.h"
14 #include "eap_common/eap_gpsk_common.h"
15
16 struct eap_gpsk_data {
17 enum { GPSK_1, GPSK_3, SUCCESS, FAILURE } state;
18 u8 rand_server[EAP_GPSK_RAND_LEN];
19 u8 rand_peer[EAP_GPSK_RAND_LEN];
20 u8 msk[EAP_MSK_LEN];
21 u8 emsk[EAP_EMSK_LEN];
22 u8 sk[EAP_GPSK_MAX_SK_LEN];
23 size_t sk_len;
24 u8 pk[EAP_GPSK_MAX_PK_LEN];
25 size_t pk_len;
26 u8 session_id[128];
27 size_t id_len;
28 u8 *id_peer;
29 size_t id_peer_len;
30 u8 *id_server;
31 size_t id_server_len;
32 int vendor; /* CSuite/Specifier */
33 int specifier; /* CSuite/Specifier */
34 u8 *psk;
35 size_t psk_len;
36 u16 forced_cipher; /* force cipher or 0 to allow all supported */
37 };
38
39
40 static struct wpabuf * eap_gpsk_send_gpsk_2(struct eap_gpsk_data *data,
41 u8 identifier,
42 const u8 *csuite_list,
43 size_t csuite_list_len);
44 static struct wpabuf * eap_gpsk_send_gpsk_4(struct eap_gpsk_data *data,
45 u8 identifier);
46
47
48 #ifndef CONFIG_NO_STDOUT_DEBUG
eap_gpsk_state_txt(int state)49 static const char * eap_gpsk_state_txt(int state)
50 {
51 switch (state) {
52 case GPSK_1:
53 return "GPSK-1";
54 case GPSK_3:
55 return "GPSK-3";
56 case SUCCESS:
57 return "SUCCESS";
58 case FAILURE:
59 return "FAILURE";
60 default:
61 return "?";
62 }
63 }
64 #endif /* CONFIG_NO_STDOUT_DEBUG */
65
66
eap_gpsk_state(struct eap_gpsk_data * data,int state)67 static void eap_gpsk_state(struct eap_gpsk_data *data, int state)
68 {
69 wpa_printf(MSG_DEBUG, "EAP-GPSK: %s -> %s",
70 eap_gpsk_state_txt(data->state),
71 eap_gpsk_state_txt(state));
72 data->state = state;
73 }
74
75
76 static void eap_gpsk_deinit(struct eap_sm *sm, void *priv);
77
78
eap_gpsk_init(struct eap_sm * sm)79 static void * eap_gpsk_init(struct eap_sm *sm)
80 {
81 struct eap_gpsk_data *data;
82 const u8 *identity, *password;
83 size_t identity_len, password_len;
84 const char *phase1;
85
86 password = eap_get_config_password(sm, &password_len);
87 if (password == NULL) {
88 wpa_printf(MSG_INFO, "EAP-GPSK: No key (password) configured");
89 return NULL;
90 }
91
92 data = os_zalloc(sizeof(*data));
93 if (data == NULL)
94 return NULL;
95 data->state = GPSK_1;
96
97 identity = eap_get_config_identity(sm, &identity_len);
98 if (identity) {
99 data->id_peer = os_memdup(identity, identity_len);
100 if (data->id_peer == NULL) {
101 eap_gpsk_deinit(sm, data);
102 return NULL;
103 }
104 data->id_peer_len = identity_len;
105 }
106
107 phase1 = eap_get_config_phase1(sm);
108 if (phase1) {
109 const char *pos;
110
111 pos = os_strstr(phase1, "cipher=");
112 if (pos) {
113 data->forced_cipher = atoi(pos + 7);
114 wpa_printf(MSG_DEBUG, "EAP-GPSK: Forced cipher %u",
115 data->forced_cipher);
116 }
117 }
118
119 data->psk = os_memdup(password, password_len);
120 if (data->psk == NULL) {
121 eap_gpsk_deinit(sm, data);
122 return NULL;
123 }
124 data->psk_len = password_len;
125
126 return data;
127 }
128
129
eap_gpsk_deinit(struct eap_sm * sm,void * priv)130 static void eap_gpsk_deinit(struct eap_sm *sm, void *priv)
131 {
132 struct eap_gpsk_data *data = priv;
133 os_free(data->id_server);
134 os_free(data->id_peer);
135 if (data->psk) {
136 os_memset(data->psk, 0, data->psk_len);
137 os_free(data->psk);
138 }
139 bin_clear_free(data, sizeof(*data));
140 }
141
142
eap_gpsk_process_id_server(struct eap_gpsk_data * data,const u8 * pos,const u8 * end)143 static const u8 * eap_gpsk_process_id_server(struct eap_gpsk_data *data,
144 const u8 *pos, const u8 *end)
145 {
146 u16 alen;
147
148 if (end - pos < 2) {
149 wpa_printf(MSG_DEBUG, "EAP-GPSK: Too short GPSK-1 packet");
150 return NULL;
151 }
152 alen = WPA_GET_BE16(pos);
153 pos += 2;
154 if (end - pos < alen) {
155 wpa_printf(MSG_DEBUG, "EAP-GPSK: ID_Server overflow");
156 return NULL;
157 }
158 os_free(data->id_server);
159 data->id_server = os_memdup(pos, alen);
160 if (data->id_server == NULL) {
161 wpa_printf(MSG_DEBUG, "EAP-GPSK: No memory for ID_Server");
162 return NULL;
163 }
164 data->id_server_len = alen;
165 wpa_hexdump_ascii(MSG_DEBUG, "EAP-GPSK: ID_Server",
166 data->id_server, data->id_server_len);
167 pos += alen;
168
169 return pos;
170 }
171
172
eap_gpsk_process_rand_server(struct eap_gpsk_data * data,const u8 * pos,const u8 * end)173 static const u8 * eap_gpsk_process_rand_server(struct eap_gpsk_data *data,
174 const u8 *pos, const u8 *end)
175 {
176 if (pos == NULL)
177 return NULL;
178
179 if (end - pos < EAP_GPSK_RAND_LEN) {
180 wpa_printf(MSG_DEBUG, "EAP-GPSK: RAND_Server overflow");
181 return NULL;
182 }
183 os_memcpy(data->rand_server, pos, EAP_GPSK_RAND_LEN);
184 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: RAND_Server",
185 data->rand_server, EAP_GPSK_RAND_LEN);
186 pos += EAP_GPSK_RAND_LEN;
187
188 return pos;
189 }
190
191
eap_gpsk_select_csuite(struct eap_sm * sm,struct eap_gpsk_data * data,const u8 * csuite_list,size_t csuite_list_len)192 static int eap_gpsk_select_csuite(struct eap_sm *sm,
193 struct eap_gpsk_data *data,
194 const u8 *csuite_list,
195 size_t csuite_list_len)
196 {
197 struct eap_gpsk_csuite *csuite;
198 int i, count;
199
200 count = csuite_list_len / sizeof(struct eap_gpsk_csuite);
201 data->vendor = EAP_GPSK_VENDOR_IETF;
202 data->specifier = EAP_GPSK_CIPHER_RESERVED;
203 csuite = (struct eap_gpsk_csuite *) csuite_list;
204 for (i = 0; i < count; i++) {
205 int vendor, specifier;
206 vendor = WPA_GET_BE32(csuite->vendor);
207 specifier = WPA_GET_BE16(csuite->specifier);
208 wpa_printf(MSG_DEBUG, "EAP-GPSK: CSuite[%d]: %d:%d",
209 i, vendor, specifier);
210 if (data->vendor == EAP_GPSK_VENDOR_IETF &&
211 data->specifier == EAP_GPSK_CIPHER_RESERVED &&
212 eap_gpsk_supported_ciphersuite(vendor, specifier) &&
213 (!data->forced_cipher || data->forced_cipher == specifier))
214 {
215 data->vendor = vendor;
216 data->specifier = specifier;
217 }
218 csuite++;
219 }
220 if (data->vendor == EAP_GPSK_VENDOR_IETF &&
221 data->specifier == EAP_GPSK_CIPHER_RESERVED) {
222 wpa_msg(sm->msg_ctx, MSG_INFO, "EAP-GPSK: No supported "
223 "ciphersuite found");
224 return -1;
225 }
226 wpa_printf(MSG_DEBUG, "EAP-GPSK: Selected ciphersuite %d:%d",
227 data->vendor, data->specifier);
228
229 return 0;
230 }
231
232
eap_gpsk_process_csuite_list(struct eap_sm * sm,struct eap_gpsk_data * data,const u8 ** list,size_t * list_len,const u8 * pos,const u8 * end)233 static const u8 * eap_gpsk_process_csuite_list(struct eap_sm *sm,
234 struct eap_gpsk_data *data,
235 const u8 **list,
236 size_t *list_len,
237 const u8 *pos, const u8 *end)
238 {
239 size_t len;
240
241 if (pos == NULL)
242 return NULL;
243
244 if (end - pos < 2) {
245 wpa_printf(MSG_DEBUG, "EAP-GPSK: Too short GPSK-1 packet");
246 return NULL;
247 }
248 len = WPA_GET_BE16(pos);
249 pos += 2;
250 if (len > (size_t) (end - pos)) {
251 wpa_printf(MSG_DEBUG, "EAP-GPSK: CSuite_List overflow");
252 return NULL;
253 }
254 if (len == 0 || (len % sizeof(struct eap_gpsk_csuite))) {
255 wpa_printf(MSG_DEBUG, "EAP-GPSK: Invalid CSuite_List len %lu",
256 (unsigned long) len);
257 return NULL;
258 }
259
260 if (eap_gpsk_select_csuite(sm, data, pos, len) < 0)
261 return NULL;
262
263 *list = pos;
264 *list_len = len;
265 pos += len;
266
267 return pos;
268 }
269
270
eap_gpsk_process_gpsk_1(struct eap_sm * sm,struct eap_gpsk_data * data,struct eap_method_ret * ret,u8 identifier,const u8 * payload,size_t payload_len)271 static struct wpabuf * eap_gpsk_process_gpsk_1(struct eap_sm *sm,
272 struct eap_gpsk_data *data,
273 struct eap_method_ret *ret,
274 u8 identifier,
275 const u8 *payload,
276 size_t payload_len)
277 {
278 size_t csuite_list_len;
279 const u8 *csuite_list, *pos, *end;
280 struct wpabuf *resp;
281
282 if (data->state != GPSK_1) {
283 ret->ignore = true;
284 return NULL;
285 }
286
287 wpa_printf(MSG_DEBUG, "EAP-GPSK: Received Request/GPSK-1");
288
289 end = payload + payload_len;
290
291 pos = eap_gpsk_process_id_server(data, payload, end);
292 pos = eap_gpsk_process_rand_server(data, pos, end);
293 pos = eap_gpsk_process_csuite_list(sm, data, &csuite_list,
294 &csuite_list_len, pos, end);
295 if (pos == NULL) {
296 ret->methodState = METHOD_DONE;
297 eap_gpsk_state(data, FAILURE);
298 return NULL;
299 }
300
301 resp = eap_gpsk_send_gpsk_2(data, identifier,
302 csuite_list, csuite_list_len);
303 if (resp == NULL)
304 return NULL;
305
306 eap_gpsk_state(data, GPSK_3);
307
308 return resp;
309 }
310
311
eap_gpsk_send_gpsk_2(struct eap_gpsk_data * data,u8 identifier,const u8 * csuite_list,size_t csuite_list_len)312 static struct wpabuf * eap_gpsk_send_gpsk_2(struct eap_gpsk_data *data,
313 u8 identifier,
314 const u8 *csuite_list,
315 size_t csuite_list_len)
316 {
317 struct wpabuf *resp;
318 size_t len, miclen;
319 u8 *rpos, *start;
320 struct eap_gpsk_csuite *csuite;
321
322 wpa_printf(MSG_DEBUG, "EAP-GPSK: Sending Response/GPSK-2");
323
324 miclen = eap_gpsk_mic_len(data->vendor, data->specifier);
325 len = 1 + 2 + data->id_peer_len + 2 + data->id_server_len +
326 2 * EAP_GPSK_RAND_LEN + 2 + csuite_list_len +
327 sizeof(struct eap_gpsk_csuite) + 2 + miclen;
328
329 resp = eap_msg_alloc(EAP_VENDOR_IETF, EAP_TYPE_GPSK, len,
330 EAP_CODE_RESPONSE, identifier);
331 if (resp == NULL)
332 return NULL;
333
334 wpabuf_put_u8(resp, EAP_GPSK_OPCODE_GPSK_2);
335 start = wpabuf_put(resp, 0);
336
337 wpa_hexdump_ascii(MSG_DEBUG, "EAP-GPSK: ID_Peer",
338 data->id_peer, data->id_peer_len);
339 wpabuf_put_be16(resp, data->id_peer_len);
340 wpabuf_put_data(resp, data->id_peer, data->id_peer_len);
341
342 wpabuf_put_be16(resp, data->id_server_len);
343 wpabuf_put_data(resp, data->id_server, data->id_server_len);
344
345 if (random_get_bytes(data->rand_peer, EAP_GPSK_RAND_LEN)) {
346 wpa_printf(MSG_DEBUG, "EAP-GPSK: Failed to get random data "
347 "for RAND_Peer");
348 eap_gpsk_state(data, FAILURE);
349 wpabuf_free(resp);
350 return NULL;
351 }
352 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: RAND_Peer",
353 data->rand_peer, EAP_GPSK_RAND_LEN);
354 wpabuf_put_data(resp, data->rand_peer, EAP_GPSK_RAND_LEN);
355 wpabuf_put_data(resp, data->rand_server, EAP_GPSK_RAND_LEN);
356
357 wpabuf_put_be16(resp, csuite_list_len);
358 wpabuf_put_data(resp, csuite_list, csuite_list_len);
359
360 csuite = wpabuf_put(resp, sizeof(*csuite));
361 WPA_PUT_BE32(csuite->vendor, data->vendor);
362 WPA_PUT_BE16(csuite->specifier, data->specifier);
363
364 if (eap_gpsk_derive_keys(data->psk, data->psk_len,
365 data->vendor, data->specifier,
366 data->rand_peer, data->rand_server,
367 data->id_peer, data->id_peer_len,
368 data->id_server, data->id_server_len,
369 data->msk, data->emsk,
370 data->sk, &data->sk_len,
371 data->pk, &data->pk_len) < 0) {
372 wpa_printf(MSG_DEBUG, "EAP-GPSK: Failed to derive keys");
373 eap_gpsk_state(data, FAILURE);
374 wpabuf_free(resp);
375 return NULL;
376 }
377
378 if (eap_gpsk_derive_session_id(data->psk, data->psk_len,
379 data->vendor, data->specifier,
380 data->rand_peer, data->rand_server,
381 data->id_peer, data->id_peer_len,
382 data->id_server, data->id_server_len,
383 EAP_TYPE_GPSK,
384 data->session_id, &data->id_len) < 0) {
385 wpa_printf(MSG_DEBUG, "EAP-GPSK: Failed to derive Session-Id");
386 eap_gpsk_state(data, FAILURE);
387 wpabuf_free(resp);
388 return NULL;
389 }
390 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: Derived Session-Id",
391 data->session_id, data->id_len);
392
393 /* No PD_Payload_1 */
394 wpabuf_put_be16(resp, 0);
395
396 rpos = wpabuf_put(resp, miclen);
397 if (eap_gpsk_compute_mic(data->sk, data->sk_len, data->vendor,
398 data->specifier, start, rpos - start, rpos) <
399 0) {
400 eap_gpsk_state(data, FAILURE);
401 wpabuf_free(resp);
402 return NULL;
403 }
404
405 return resp;
406 }
407
408
eap_gpsk_validate_rand(struct eap_gpsk_data * data,const u8 * pos,const u8 * end)409 static const u8 * eap_gpsk_validate_rand(struct eap_gpsk_data *data,
410 const u8 *pos, const u8 *end)
411 {
412 if (end - pos < EAP_GPSK_RAND_LEN) {
413 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for "
414 "RAND_Peer");
415 return NULL;
416 }
417 if (os_memcmp(pos, data->rand_peer, EAP_GPSK_RAND_LEN) != 0) {
418 wpa_printf(MSG_DEBUG, "EAP-GPSK: RAND_Peer in GPSK-2 and "
419 "GPSK-3 did not match");
420 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: RAND_Peer in GPSK-2",
421 data->rand_peer, EAP_GPSK_RAND_LEN);
422 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: RAND_Peer in GPSK-3",
423 pos, EAP_GPSK_RAND_LEN);
424 return NULL;
425 }
426 pos += EAP_GPSK_RAND_LEN;
427
428 if (end - pos < EAP_GPSK_RAND_LEN) {
429 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for "
430 "RAND_Server");
431 return NULL;
432 }
433 if (os_memcmp(pos, data->rand_server, EAP_GPSK_RAND_LEN) != 0) {
434 wpa_printf(MSG_DEBUG, "EAP-GPSK: RAND_Server in GPSK-1 and "
435 "GPSK-3 did not match");
436 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: RAND_Server in GPSK-1",
437 data->rand_server, EAP_GPSK_RAND_LEN);
438 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: RAND_Server in GPSK-3",
439 pos, EAP_GPSK_RAND_LEN);
440 return NULL;
441 }
442 pos += EAP_GPSK_RAND_LEN;
443
444 return pos;
445 }
446
447
eap_gpsk_validate_id_server(struct eap_gpsk_data * data,const u8 * pos,const u8 * end)448 static const u8 * eap_gpsk_validate_id_server(struct eap_gpsk_data *data,
449 const u8 *pos, const u8 *end)
450 {
451 size_t len;
452
453 if (pos == NULL)
454 return NULL;
455
456 if (end - pos < (int) 2) {
457 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for "
458 "length(ID_Server)");
459 return NULL;
460 }
461
462 len = WPA_GET_BE16(pos);
463 pos += 2;
464
465 if (end - pos < (int) len) {
466 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for "
467 "ID_Server");
468 return NULL;
469 }
470
471 if (len != data->id_server_len ||
472 os_memcmp(pos, data->id_server, len) != 0) {
473 wpa_printf(MSG_INFO, "EAP-GPSK: ID_Server did not match with "
474 "the one used in GPSK-1");
475 wpa_hexdump_ascii(MSG_DEBUG, "EAP-GPSK: ID_Server in GPSK-1",
476 data->id_server, data->id_server_len);
477 wpa_hexdump_ascii(MSG_DEBUG, "EAP-GPSK: ID_Server in GPSK-3",
478 pos, len);
479 return NULL;
480 }
481
482 pos += len;
483
484 return pos;
485 }
486
487
eap_gpsk_validate_csuite(struct eap_gpsk_data * data,const u8 * pos,const u8 * end)488 static const u8 * eap_gpsk_validate_csuite(struct eap_gpsk_data *data,
489 const u8 *pos, const u8 *end)
490 {
491 int vendor, specifier;
492 const struct eap_gpsk_csuite *csuite;
493
494 if (pos == NULL)
495 return NULL;
496
497 if (end - pos < (int) sizeof(*csuite)) {
498 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for "
499 "CSuite_Sel");
500 return NULL;
501 }
502 csuite = (const struct eap_gpsk_csuite *) pos;
503 vendor = WPA_GET_BE32(csuite->vendor);
504 specifier = WPA_GET_BE16(csuite->specifier);
505 pos += sizeof(*csuite);
506 if (vendor != data->vendor || specifier != data->specifier) {
507 wpa_printf(MSG_DEBUG, "EAP-GPSK: CSuite_Sel (%d:%d) does not "
508 "match with the one sent in GPSK-2 (%d:%d)",
509 vendor, specifier, data->vendor, data->specifier);
510 return NULL;
511 }
512
513 return pos;
514 }
515
516
eap_gpsk_validate_pd_payload_2(struct eap_gpsk_data * data,const u8 * pos,const u8 * end)517 static const u8 * eap_gpsk_validate_pd_payload_2(struct eap_gpsk_data *data,
518 const u8 *pos, const u8 *end)
519 {
520 u16 alen;
521
522 if (pos == NULL)
523 return NULL;
524
525 if (end - pos < 2) {
526 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for "
527 "PD_Payload_2 length");
528 return NULL;
529 }
530 alen = WPA_GET_BE16(pos);
531 pos += 2;
532 if (end - pos < alen) {
533 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for "
534 "%d-octet PD_Payload_2", alen);
535 return NULL;
536 }
537 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: PD_Payload_2", pos, alen);
538 pos += alen;
539
540 return pos;
541 }
542
543
eap_gpsk_validate_gpsk_3_mic(struct eap_gpsk_data * data,const u8 * payload,const u8 * pos,const u8 * end)544 static const u8 * eap_gpsk_validate_gpsk_3_mic(struct eap_gpsk_data *data,
545 const u8 *payload,
546 const u8 *pos, const u8 *end)
547 {
548 size_t miclen;
549 u8 mic[EAP_GPSK_MAX_MIC_LEN];
550
551 if (pos == NULL)
552 return NULL;
553
554 miclen = eap_gpsk_mic_len(data->vendor, data->specifier);
555 if (end - pos < (int) miclen) {
556 wpa_printf(MSG_DEBUG, "EAP-GPSK: Message too short for MIC "
557 "(left=%lu miclen=%lu)",
558 (unsigned long) (end - pos),
559 (unsigned long) miclen);
560 return NULL;
561 }
562 if (eap_gpsk_compute_mic(data->sk, data->sk_len, data->vendor,
563 data->specifier, payload, pos - payload, mic)
564 < 0) {
565 wpa_printf(MSG_DEBUG, "EAP-GPSK: Failed to compute MIC");
566 return NULL;
567 }
568 if (os_memcmp_const(mic, pos, miclen) != 0) {
569 wpa_printf(MSG_INFO, "EAP-GPSK: Incorrect MIC in GPSK-3");
570 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: Received MIC", pos, miclen);
571 wpa_hexdump(MSG_DEBUG, "EAP-GPSK: Computed MIC", mic, miclen);
572 return NULL;
573 }
574 pos += miclen;
575
576 return pos;
577 }
578
579
eap_gpsk_process_gpsk_3(struct eap_sm * sm,struct eap_gpsk_data * data,struct eap_method_ret * ret,u8 identifier,const u8 * payload,size_t payload_len)580 static struct wpabuf * eap_gpsk_process_gpsk_3(struct eap_sm *sm,
581 struct eap_gpsk_data *data,
582 struct eap_method_ret *ret,
583 u8 identifier,
584 const u8 *payload,
585 size_t payload_len)
586 {
587 struct wpabuf *resp;
588 const u8 *pos, *end;
589
590 if (data->state != GPSK_3) {
591 ret->ignore = true;
592 return NULL;
593 }
594
595 wpa_printf(MSG_DEBUG, "EAP-GPSK: Received Request/GPSK-3");
596
597 end = payload + payload_len;
598
599 pos = eap_gpsk_validate_rand(data, payload, end);
600 pos = eap_gpsk_validate_id_server(data, pos, end);
601 pos = eap_gpsk_validate_csuite(data, pos, end);
602 pos = eap_gpsk_validate_pd_payload_2(data, pos, end);
603 pos = eap_gpsk_validate_gpsk_3_mic(data, payload, pos, end);
604
605 if (pos == NULL) {
606 eap_gpsk_state(data, FAILURE);
607 return NULL;
608 }
609 if (pos != end) {
610 wpa_printf(MSG_DEBUG, "EAP-GPSK: Ignored %lu bytes of extra "
611 "data in the end of GPSK-2",
612 (unsigned long) (end - pos));
613 }
614
615 resp = eap_gpsk_send_gpsk_4(data, identifier);
616 if (resp == NULL)
617 return NULL;
618
619 eap_gpsk_state(data, SUCCESS);
620 ret->methodState = METHOD_DONE;
621 ret->decision = DECISION_UNCOND_SUCC;
622
623 return resp;
624 }
625
626
eap_gpsk_send_gpsk_4(struct eap_gpsk_data * data,u8 identifier)627 static struct wpabuf * eap_gpsk_send_gpsk_4(struct eap_gpsk_data *data,
628 u8 identifier)
629 {
630 struct wpabuf *resp;
631 u8 *rpos, *start;
632 size_t mlen;
633
634 wpa_printf(MSG_DEBUG, "EAP-GPSK: Sending Response/GPSK-4");
635
636 mlen = eap_gpsk_mic_len(data->vendor, data->specifier);
637
638 resp = eap_msg_alloc(EAP_VENDOR_IETF, EAP_TYPE_GPSK, 1 + 2 + mlen,
639 EAP_CODE_RESPONSE, identifier);
640 if (resp == NULL)
641 return NULL;
642
643 wpabuf_put_u8(resp, EAP_GPSK_OPCODE_GPSK_4);
644 start = wpabuf_put(resp, 0);
645
646 /* No PD_Payload_3 */
647 wpabuf_put_be16(resp, 0);
648
649 rpos = wpabuf_put(resp, mlen);
650 if (eap_gpsk_compute_mic(data->sk, data->sk_len, data->vendor,
651 data->specifier, start, rpos - start, rpos) <
652 0) {
653 eap_gpsk_state(data, FAILURE);
654 wpabuf_free(resp);
655 return NULL;
656 }
657
658 return resp;
659 }
660
661
eap_gpsk_process(struct eap_sm * sm,void * priv,struct eap_method_ret * ret,const struct wpabuf * reqData)662 static struct wpabuf * eap_gpsk_process(struct eap_sm *sm, void *priv,
663 struct eap_method_ret *ret,
664 const struct wpabuf *reqData)
665 {
666 struct eap_gpsk_data *data = priv;
667 struct wpabuf *resp;
668 const u8 *pos;
669 size_t len;
670 u8 opcode, id;
671
672 pos = eap_hdr_validate(EAP_VENDOR_IETF, EAP_TYPE_GPSK, reqData, &len);
673 if (pos == NULL || len < 1) {
674 ret->ignore = true;
675 return NULL;
676 }
677
678 id = eap_get_id(reqData);
679 opcode = *pos++;
680 len--;
681 wpa_printf(MSG_DEBUG, "EAP-GPSK: Received frame: opcode %d", opcode);
682
683 ret->ignore = false;
684 ret->methodState = METHOD_MAY_CONT;
685 ret->decision = DECISION_FAIL;
686 ret->allowNotifications = false;
687
688 switch (opcode) {
689 case EAP_GPSK_OPCODE_GPSK_1:
690 resp = eap_gpsk_process_gpsk_1(sm, data, ret, id, pos, len);
691 break;
692 case EAP_GPSK_OPCODE_GPSK_3:
693 resp = eap_gpsk_process_gpsk_3(sm, data, ret, id, pos, len);
694 break;
695 default:
696 wpa_printf(MSG_DEBUG,
697 "EAP-GPSK: Ignoring message with unknown opcode %d",
698 opcode);
699 ret->ignore = true;
700 return NULL;
701 }
702
703 return resp;
704 }
705
706
eap_gpsk_isKeyAvailable(struct eap_sm * sm,void * priv)707 static bool eap_gpsk_isKeyAvailable(struct eap_sm *sm, void *priv)
708 {
709 struct eap_gpsk_data *data = priv;
710 return data->state == SUCCESS;
711 }
712
713
eap_gpsk_getKey(struct eap_sm * sm,void * priv,size_t * len)714 static u8 * eap_gpsk_getKey(struct eap_sm *sm, void *priv, size_t *len)
715 {
716 struct eap_gpsk_data *data = priv;
717 u8 *key;
718
719 if (data->state != SUCCESS)
720 return NULL;
721
722 key = os_memdup(data->msk, EAP_MSK_LEN);
723 if (key == NULL)
724 return NULL;
725 *len = EAP_MSK_LEN;
726
727 return key;
728 }
729
730
eap_gpsk_get_emsk(struct eap_sm * sm,void * priv,size_t * len)731 static u8 * eap_gpsk_get_emsk(struct eap_sm *sm, void *priv, size_t *len)
732 {
733 struct eap_gpsk_data *data = priv;
734 u8 *key;
735
736 if (data->state != SUCCESS)
737 return NULL;
738
739 key = os_memdup(data->emsk, EAP_EMSK_LEN);
740 if (key == NULL)
741 return NULL;
742 *len = EAP_EMSK_LEN;
743
744 return key;
745 }
746
747
eap_gpsk_get_session_id(struct eap_sm * sm,void * priv,size_t * len)748 static u8 * eap_gpsk_get_session_id(struct eap_sm *sm, void *priv, size_t *len)
749 {
750 struct eap_gpsk_data *data = priv;
751 u8 *sid;
752
753 if (data->state != SUCCESS)
754 return NULL;
755
756 sid = os_memdup(data->session_id, data->id_len);
757 if (sid == NULL)
758 return NULL;
759 *len = data->id_len;
760
761 return sid;
762 }
763
764
eap_peer_gpsk_register(void)765 int eap_peer_gpsk_register(void)
766 {
767 struct eap_method *eap;
768
769 eap = eap_peer_method_alloc(EAP_PEER_METHOD_INTERFACE_VERSION,
770 EAP_VENDOR_IETF, EAP_TYPE_GPSK, "GPSK");
771 if (eap == NULL)
772 return -1;
773
774 eap->init = eap_gpsk_init;
775 eap->deinit = eap_gpsk_deinit;
776 eap->process = eap_gpsk_process;
777 eap->isKeyAvailable = eap_gpsk_isKeyAvailable;
778 eap->getKey = eap_gpsk_getKey;
779 eap->get_emsk = eap_gpsk_get_emsk;
780 eap->getSessionId = eap_gpsk_get_session_id;
781
782 return eap_peer_method_register(eap);
783 }
784