jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

tests: EAP-TEAP with machine username/password credential

Browse source 
Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen 2019-08-20 13:15:19 +03:00
parent c41936566e
commit 4619dc0607
3 changed files with 25 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
tests/hwsim/auth_serv/eap_user.conf
View file

@ -141,6 +141,7 @@ radius_accept_attr=56:x:32000011
"user2" MSCHAPV2,MD5,GTC "password" [2] "user2" MSCHAPV2,MD5,GTC "password" [2]
"DOMAIN\user3" MSCHAPV2 "password" [2] "DOMAIN\user3" MSCHAPV2 "password" [2]
"user-no-passwd" MSCHAPV2,MD5,GTC [2] "user-no-passwd" MSCHAPV2,MD5,GTC [2]
"machine" MSCHAPV2,MD5,GTC "machine-password" [2]
"cert user" TLS [2] "cert user" TLS [2]
"user-secret" GTC "63d2d21ac3c09ed567ee004a34490f1d16e7fa5835edf17ddba70a63f1a90a25" [2] "user-secret" GTC "63d2d21ac3c09ed567ee004a34490f1d16e7fa5835edf17ddba70a63f1a90a25" [2]
"user-pwd-2" PWD "password" [2] "user-pwd-2" PWD "password" [2]

23
tests/hwsim/test_eap.py
View file

@ -121,6 +121,17 @@ def run_eap_teap_basic_password_auth_id(dev, apdev, eap_teap_id, failure=False):
pac_file="blob://teap_pac", pac_file="blob://teap_pac",
expect_failure=failure) expect_failure=failure)
def test_eap_teap_basic_password_auth_machine(dev, apdev):
"""EAP-TEAP with Basic-Password-Auth using machine credential"""
check_eap_capa(dev[0], "TEAP")
params = int_teap_server_params(eap_teap_auth="1", eap_teap_id="2")
hapd = hostapd.add_ap(apdev[0], params)
eap_connect(dev[0], hapd, "TEAP", "",
anonymous_identity="TEAP",
machine_identity="machine", machine_password="machine-password",
ca_cert="auth_serv/ca.pem",
pac_file="blob://teap_pac")
def test_eap_teap_peer_outer_tlvs(dev, apdev): def test_eap_teap_peer_outer_tlvs(dev, apdev):
"""EAP-TEAP with peer Outer TLVs""" """EAP-TEAP with peer Outer TLVs"""
check_eap_capa(dev[0], "TEAP") check_eap_capa(dev[0], "TEAP")
@ -219,6 +230,18 @@ def run_eap_teap_eap_mschapv2_id(dev, apdev, eap_teap_id, failure=False):
pac_file="blob://teap_pac", pac_file="blob://teap_pac",
expect_failure=failure) expect_failure=failure)
def test_eap_teap_eap_mschapv2_machine(dev, apdev):
"""EAP-TEAP with inner EAP-MSCHAPv2 using machine credential"""
check_eap_capa(dev[0], "TEAP")
check_eap_capa(dev[0], "MSCHAPV2")
params = int_teap_server_params(eap_teap_id="2")
hapd = hostapd.add_ap(apdev[0], params)
eap_connect(dev[0], hapd, "TEAP", "",
anonymous_identity="TEAP",
machine_identity="machine", machine_password="machine-password",
ca_cert="auth_serv/ca.pem", phase2="auth=MSCHAPV2",
pac_file="blob://teap_pac")
def test_eap_teap_basic_password_auth_pac(dev, apdev): def test_eap_teap_basic_password_auth_pac(dev, apdev):
"""EAP-TEAP with Basic-Password-Auth and PAC""" """EAP-TEAP with Basic-Password-Auth and PAC"""
check_eap_capa(dev[0], "TEAP") check_eap_capa(dev[0], "TEAP")

1
tests/hwsim/wpasupplicant.py
View file

@ -1062,6 +1062,7 @@ class WpaSupplicant:
self.set_network(id, "ssid", ssid2) self.set_network(id, "ssid", ssid2)
quoted = ["psk", "identity", "anonymous_identity", "password", quoted = ["psk", "identity", "anonymous_identity", "password",
"machine_identity", "machine_password",
"ca_cert", "client_cert", "private_key", "ca_cert", "client_cert", "private_key",
"private_key_passwd", "ca_cert2", "client_cert2", "private_key_passwd", "ca_cert2", "client_cert2",
"private_key2", "phase1", "phase2", "domain_suffix_match", "private_key2", "phase1", "phase2", "domain_suffix_match",