hostap/src/eap_peer/eap_tls_common.h

/*
 * EAP peer: EAP-TLS/PEAP/TTLS/FAST common functions
 * Copyright (c) 2004-2009, 2012, Jouni Malinen <j@w1.fi>
 *
 * This software may be distributed under the terms of the BSD license.
 * See README for more details.
 */

#ifndef EAP_TLS_COMMON_H
#define EAP_TLS_COMMON_H

/**
 * struct eap_ssl_data - TLS data for EAP methods
 */
struct eap_ssl_data {
	/**
	 * conn - TLS connection context data from tls_connection_init()
	 */
	struct tls_connection *conn;

	/**
	 * tls_out - TLS message to be sent out in fragments
	 */
	struct wpabuf *tls_out;

	/**
	 * tls_out_pos - The current position in the outgoing TLS message
	 */
	size_t tls_out_pos;

	/**
	 * tls_out_limit - Maximum fragment size for outgoing TLS messages
	 */
	size_t tls_out_limit;

	/**
	 * tls_in - Received TLS message buffer for re-assembly
	 */
	struct wpabuf *tls_in;

	/**
	 * tls_in_left - Number of remaining bytes in the incoming TLS message
	 */
	size_t tls_in_left;

	/**
	 * tls_in_total - Total number of bytes in the incoming TLS message
	 */
	size_t tls_in_total;

	/**
	 * phase2 - Whether this TLS connection is used in EAP phase 2 (tunnel)
	 */
	int phase2;

	/**
	 * include_tls_length - Whether the TLS length field is included even
	 * if the TLS data is not fragmented
	 */
	int include_tls_length;

	/**
	 * eap - EAP state machine allocated with eap_peer_sm_init()
	 */
	struct eap_sm *eap;

	/**
	 * ssl_ctx - TLS library context to use for the connection
	 */
	void *ssl_ctx;

	/**
	 * eap_type - EAP method used in Phase 1 (EAP_TYPE_TLS/PEAP/TTLS/FAST)
	 */
	u8 eap_type;
};


/* EAP TLS Flags */
#define EAP_TLS_FLAGS_LENGTH_INCLUDED 0x80
#define EAP_TLS_FLAGS_MORE_FRAGMENTS 0x40
#define EAP_TLS_FLAGS_START 0x20
#define EAP_TLS_VERSION_MASK 0x07

 /* could be up to 128 bytes, but only the first 64 bytes are used */
#define EAP_TLS_KEY_LEN 64

/* dummy type used as a flag for UNAUTH-TLS */
#define EAP_UNAUTH_TLS_TYPE 255
#define EAP_WFA_UNAUTH_TLS_TYPE 254


int eap_peer_tls_ssl_init(struct eap_sm *sm, struct eap_ssl_data *data,
			  struct eap_peer_config *config, u8 eap_type);
void eap_peer_tls_ssl_deinit(struct eap_sm *sm, struct eap_ssl_data *data);
u8 * eap_peer_tls_derive_key(struct eap_sm *sm, struct eap_ssl_data *data,
			     const char *label, size_t len);
u8 * eap_peer_tls_derive_session_id(struct eap_sm *sm,
				    struct eap_ssl_data *data, u8 eap_type,
				    size_t *len);
int eap_peer_tls_process_helper(struct eap_sm *sm, struct eap_ssl_data *data,
				EapType eap_type, int peap_version,
				u8 id, const u8 *in_data, size_t in_len,
				struct wpabuf **out_data);
struct wpabuf * eap_peer_tls_build_ack(u8 id, EapType eap_type,
				       int peap_version);
int eap_peer_tls_reauth_init(struct eap_sm *sm, struct eap_ssl_data *data);
int eap_peer_tls_status(struct eap_sm *sm, struct eap_ssl_data *data,
			char *buf, size_t buflen, int verbose);
const u8 * eap_peer_tls_process_init(struct eap_sm *sm,
				     struct eap_ssl_data *data,
				     EapType eap_type,
				     struct eap_method_ret *ret,
				     const struct wpabuf *reqData,
				     size_t *len, u8 *flags);
void eap_peer_tls_reset_input(struct eap_ssl_data *data);
void eap_peer_tls_reset_output(struct eap_ssl_data *data);
int eap_peer_tls_decrypt(struct eap_sm *sm, struct eap_ssl_data *data,
			 const struct wpabuf *in_data,
			 struct wpabuf **in_decrypted);
int eap_peer_tls_encrypt(struct eap_sm *sm, struct eap_ssl_data *data,
			 EapType eap_type, int peap_version, u8 id,
			 const struct wpabuf *in_data,
			 struct wpabuf **out_data);
int eap_peer_select_phase2_methods(struct eap_peer_config *config,
				   const char *prefix,
				   struct eap_method_type **types,
				   size_t *num_types);
int eap_peer_tls_phase2_nak(struct eap_method_type *types, size_t num_types,
			    struct eap_hdr *hdr, struct wpabuf **resp);

#endif /* EAP_TLS_COMMON_H */
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00			`/*`
			`* EAP peer: EAP-TLS/PEAP/TTLS/FAST common functions`
TLS: Use separate TLS library context for tunneled TLS OpenSSL wrapper was using the same certificate store for both Phase 1 and Phase 2 TLS exchange in case of EAP-PEAP/TLS, EAP-TTLS/TLS, and EAP-FAST/TLS. This would be fine if the same CA certificates were used in both phases, but does not work properly if different CA certificates are used. Enforce full separation of TLS state between the phases by using a separate TLS library context in EAP peer implementation. Signed-hostap: Jouni Malinen <j@w1.fi> 2012-04-07 19:57:02 +02:00			`* Copyright (c) 2004-2009, 2012, Jouni Malinen <j@w1.fi>`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00			`*`
Remove the GPL notification from files contributed by Jouni Malinen Remove the GPL notification text from the files that were initially contributed by myself. Signed-hostap: Jouni Malinen <j@w1.fi> 2012-02-11 15:46:35 +01:00			`* This software may be distributed under the terms of the BSD license.`
			`* See README for more details.`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00			`*/`

			`#ifndef EAP_TLS_COMMON_H`
			`#define EAP_TLS_COMMON_H`

			`/**`
			`* struct eap_ssl_data - TLS data for EAP methods`
			`*/`
			`struct eap_ssl_data {`
			`/**`
			`* conn - TLS connection context data from tls_connection_init()`
			`*/`
			`struct tls_connection *conn;`

			`/**`
			`* tls_out - TLS message to be sent out in fragments`
			`*/`
Convert TLS wrapper to use struct wpabuf This converts tls_connection_handshake(), tls_connection_server_handshake(), tls_connection_encrypt(), and tls_connection_decrypt() to use struct wpa_buf to allow higher layer code to be cleaned up with consistent struct wpabuf use. 2009-12-20 17:17:55 +01:00			`struct wpabuf *tls_out;`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00
			`/**`
			`* tls_out_pos - The current position in the outgoing TLS message`
			`*/`
			`size_t tls_out_pos;`

			`/**`
			`* tls_out_limit - Maximum fragment size for outgoing TLS messages`
			`*/`
			`size_t tls_out_limit;`

			`/**`
			`* tls_in - Received TLS message buffer for re-assembly`
			`*/`
Convert TLS wrapper to use struct wpabuf This converts tls_connection_handshake(), tls_connection_server_handshake(), tls_connection_encrypt(), and tls_connection_decrypt() to use struct wpa_buf to allow higher layer code to be cleaned up with consistent struct wpabuf use. 2009-12-20 17:17:55 +01:00			`struct wpabuf *tls_in;`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00
			`/**`
			`* tls_in_left - Number of remaining bytes in the incoming TLS message`
			`*/`
			`size_t tls_in_left;`

			`/**`
			`* tls_in_total - Total number of bytes in the incoming TLS message`
			`*/`
			`size_t tls_in_total;`

			`/**`
			`* phase2 - Whether this TLS connection is used in EAP phase 2 (tunnel)`
			`*/`
			`int phase2;`

			`/**`
			`* include_tls_length - Whether the TLS length field is included even`
			`* if the TLS data is not fragmented`
			`*/`
			`int include_tls_length;`

			`/**`
Rename EAP TLS variables to make server and peer code consistent 2009-12-23 23:16:58 +01:00			`* eap - EAP state machine allocated with eap_peer_sm_init()`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00			`*/`
			`struct eap_sm *eap;`
TLS: Use separate TLS library context for tunneled TLS OpenSSL wrapper was using the same certificate store for both Phase 1 and Phase 2 TLS exchange in case of EAP-PEAP/TLS, EAP-TTLS/TLS, and EAP-FAST/TLS. This would be fine if the same CA certificates were used in both phases, but does not work properly if different CA certificates are used. Enforce full separation of TLS state between the phases by using a separate TLS library context in EAP peer implementation. Signed-hostap: Jouni Malinen <j@w1.fi> 2012-04-07 19:57:02 +02:00
			`/**`
			`* ssl_ctx - TLS library context to use for the connection`
			`*/`
			`void *ssl_ctx;`
Disable TLS Session Ticket extension by default for EAP-TLS/PEAP/TTLS Some deployed authentication servers seem to be unable to handle the TLS Session Ticket extension (they are supposed to ignore unrecognized TLS extensions, but end up rejecting the ClientHello instead). As a workaround, disable use of TLS Sesson Ticket extension for EAP-TLS, EAP-PEAP, and EAP-TTLS (EAP-FAST uses session ticket, so any server that supports EAP-FAST does not need this workaround). Signed-hostap: Jouni Malinen <j@w1.fi> 2012-08-17 21:26:28 +02:00
			`/**`
			`* eap_type - EAP method used in Phase 1 (EAP_TYPE_TLS/PEAP/TTLS/FAST)`
			`*/`
			`u8 eap_type;`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00			`};`


			`/* EAP TLS Flags */`
			`#define EAP_TLS_FLAGS_LENGTH_INCLUDED 0x80`
			`#define EAP_TLS_FLAGS_MORE_FRAGMENTS 0x40`
			`#define EAP_TLS_FLAGS_START 0x20`
Rename EAP TLS variables to make server and peer code consistent 2009-12-23 23:16:58 +01:00			`#define EAP_TLS_VERSION_MASK 0x07`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00
			`/* could be up to 128 bytes, but only the first 64 bytes are used */`
			`#define EAP_TLS_KEY_LEN 64`

Add UNAUTH-TLS vendor specific EAP type This EAP type uses a vendor specific expanded EAP header to encapsulate EAP-TLS with a configuration where the EAP server does not authenticate the EAP peer. In other words, this method includes only server authentication. The peer is configured with only the ca_cert parameter (similarly to other TLS-based EAP methods). This method can be used for cases where the network provides free access to anyone, but use of RSN with a securely derived unique PMK for each station is desired. The expanded EAP header uses the hostapd/wpa_supplicant vendor code 39068 and vendor type 1 to identify the UNAUTH-TLS method. Signed-hostap: Jouni Malinen <j@w1.fi> 2012-08-22 21:34:11 +02:00			`/* dummy type used as a flag for UNAUTH-TLS */`
			`#define EAP_UNAUTH_TLS_TYPE 255`
HS 2.0R2: Add WFA server-only EAP-TLS peer method Signed-hostap: Jouni Malinen <jouni@qca.qualcomm.com> 2013-07-23 20:21:36 +02:00			`#define EAP_WFA_UNAUTH_TLS_TYPE 254`
Add UNAUTH-TLS vendor specific EAP type This EAP type uses a vendor specific expanded EAP header to encapsulate EAP-TLS with a configuration where the EAP server does not authenticate the EAP peer. In other words, this method includes only server authentication. The peer is configured with only the ca_cert parameter (similarly to other TLS-based EAP methods). This method can be used for cases where the network provides free access to anyone, but use of RSN with a securely derived unique PMK for each station is desired. The expanded EAP header uses the hostapd/wpa_supplicant vendor code 39068 and vendor type 1 to identify the UNAUTH-TLS method. Signed-hostap: Jouni Malinen <j@w1.fi> 2012-08-22 21:34:11 +02:00
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00
			`int eap_peer_tls_ssl_init(struct eap_sm sm, struct eap_ssl_data data,`
Disable TLS Session Ticket extension by default for EAP-TLS/PEAP/TTLS Some deployed authentication servers seem to be unable to handle the TLS Session Ticket extension (they are supposed to ignore unrecognized TLS extensions, but end up rejecting the ClientHello instead). As a workaround, disable use of TLS Sesson Ticket extension for EAP-TLS, EAP-PEAP, and EAP-TTLS (EAP-FAST uses session ticket, so any server that supports EAP-FAST does not need this workaround). Signed-hostap: Jouni Malinen <j@w1.fi> 2012-08-17 21:26:28 +02:00			`struct eap_peer_config *config, u8 eap_type);`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00			`void eap_peer_tls_ssl_deinit(struct eap_sm sm, struct eap_ssl_data data);`
			`u8 * eap_peer_tls_derive_key(struct eap_sm sm, struct eap_ssl_data data,`
			`const char *label, size_t len);`
EAP peer: Add Session-Id derivation This adds a new getSessionId() callback for EAP peer methods to allow EAP Session-Id to be derived. This commits implements this for EAP-FAST, EAP-GPSK, EAP-IKEv2, EAP-PEAP, EAP-TLS, and EAP-TTLS. Signed-hostap: Jouni Malinen <jouni@qca.qualcomm.com> 2013-02-06 17:52:33 +01:00			`u8 * eap_peer_tls_derive_session_id(struct eap_sm *sm,`
			`struct eap_ssl_data *data, u8 eap_type,`
			`size_t *len);`
Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-28 02:34:43 +01:00			`int eap_peer_tls_process_helper(struct eap_sm sm, struct eap_ssl_data data,`
			`EapType eap_type, int peap_version,`
			`u8 id, const u8 *in_data, size_t in_len,`
			`struct wpabuf **out_data);`
			`struct wpabuf * eap_peer_tls_build_ack(u8 id, EapType eap_type,`
			`int peap_version);`
			`int eap_peer_tls_reauth_init(struct eap_sm sm, struct eap_ssl_data data);`
			`int eap_peer_tls_status(struct eap_sm sm, struct eap_ssl_data data,`
			`char *buf, size_t buflen, int verbose);`
			`const u8 * eap_peer_tls_process_init(struct eap_sm *sm,`
			`struct eap_ssl_data *data,`
			`EapType eap_type,`
			`struct eap_method_ret *ret,`
			`const struct wpabuf *reqData,`
			`size_t len, u8 flags);`
			`void eap_peer_tls_reset_input(struct eap_ssl_data *data);`
			`void eap_peer_tls_reset_output(struct eap_ssl_data *data);`
			`int eap_peer_tls_decrypt(struct eap_sm sm, struct eap_ssl_data data,`
			`const struct wpabuf *in_data,`
			`struct wpabuf **in_decrypted);`
			`int eap_peer_tls_encrypt(struct eap_sm sm, struct eap_ssl_data data,`
			`EapType eap_type, int peap_version, u8 id,`
			`const struct wpabuf *in_data,`
			`struct wpabuf **out_data);`
			`int eap_peer_select_phase2_methods(struct eap_peer_config *config,`
			`const char *prefix,`
			`struct eap_method_type **types,`
			`size_t *num_types);`
			`int eap_peer_tls_phase2_nak(struct eap_method_type *types, size_t num_types,`
			`struct eap_hdr hdr, struct wpabuf *resp);`

			`#endif /* EAP_TLS_COMMON_H */`