path: root/eap_example
Commit message (Collapse)AuthorAgeFilesLines
* eap_example: Convert Boolean to C99 boolJouni Malinen2020-04-242-21/+20
| | | | Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
* EAP peer: Move certificate configuration params into shared structJouni Malinen2019-09-011-2/+2
| | | | | | | | | | | These parameters for certificate authentication are identical for the Phase 1 (EAP-TLS alone) and Phase 2 (EAP-TLS inside a TLS tunnel). Furthermore, yet another copy would be needed to support separate machine credential in Phase 2. Clean this up by moving the shared parameters into a separate data struct that can then be used for each need without having to define separate struct members for each use. Signed-off-by: Jouni Malinen <j@w1.fi>
* EAP server: Use struct eap_config to avoid duplicated definitionsJouni Malinen2019-08-181-1/+5
| | | | | | | | | Use struct eap_config as-is within struct eap_sm and EAPOL authenticator to avoid having to duplicate all the configuration variables at each interface. Split the couple of session specific variables into a separate struct to allow a single const struct eap_config to be used. Signed-off-by: Jouni Malinen <j@w1.fi>
* Use char pointers for EAP configuration parameters without lengthJouni Malinen2019-03-111-1/+1
| | | | | | | | These parameters were using the u8*/len style types even though they were used as char* strings without an explicit length field. Make this char* instead of u8* to avoid confusion and unnecessary type casting. Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
* eap_example: Update expired certificatesJouni Malinen2019-02-114-46/+128
| | | | Signed-off-by: Jouni Malinen <j@w1.fi>
* hostapd: Add configuration option check_crl_strictSam Voss2018-12-311-1/+1
| | | | | | | | | | | | | | | | | | | | Add the ability to ignore time-based CRL errors from OpenSSL by specifying a new configuration parameter, check_crl_strict=0. This causes the following: - This setting does nothing when CRL checking is not enabled. - When CRL is enabled, "strict mode" will cause CRL time errors to not be ignored and will continue behaving as it currently does. - When CRL is enabled, disabling strict mode will cause CRL time errors to be ignored and will allow connections. By default, check_crl_strict is set to 1, or strict mode, to keep current functionality. Signed-off-by: Sam Voss <sam.voss@rockwellcollins.com>
* Fix typo in eap_example_server.cSergei Sinyak2016-10-291-1/+1
| | | | | | | The server sends only requests to the peer, and the peer sends only responses to the server. Signed-off-by: Sergei Sinyak <serega.belarus@gmail.com>
* eap_example: Fix configuration by added DH parametersJouni Malinen2015-04-172-0/+6
| | | | | | | | | | The internal TLS implementation supports number of additional cipher suites that require DH parameters to be set on the server. Such a cipher suite is selected by default in the eap_example case which prevented the TLS handshake from completing successfully. Fix this by adding DH parameters to the server configuration. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
* eap_example: Get rid of a compiler warningJouni Malinen2014-12-041-0/+6
| | | | Signed-off-by: Jouni Malinen <j@w1.fi>
* Declare wpa_debug_* variables in src/utils/wpa_debug.hJouni Malinen2013-12-311-2/+0
| | | | | | | | | These were somewhat more hidden to avoid direct use, but there are now numerous places where these are needed and more justification to make the extern int declarations available from wpa_debug.h. In addition, this avoids some warnings from sparse. Signed-hostap: Jouni Malinen <j@w1.fi>
* Remove the GPL notification from files contributed by Jouni MalinenJouni Malinen2012-02-114-30/+8
| | | | | | | Remove the GPL notification text from the files that were initially contributed by myself. Signed-hostap: Jouni Malinen <j@w1.fi>
* Rename EAP server source files to avoid duplicate namesJouni Malinen2010-02-191-14/+14
| | | | | This makes it easier to build both EAP peer and server functionality into the same project with some toolchains.
* Add rules for building src/tls/libtls.a and use it with eap_exampleJouni Malinen2009-12-061-79/+8
| | | | | | | | | eap_example is now using src/crypto/libcrypto.a and src/tls/libtls.a instead of providing own rules for building the files for these components. TLS library selection is temporarily disabled for eap_example (it will be built using internal crypto/TLS), but the configuration option for this will eventually be restored with a new libcrypto.a configuration option.
* Use thin archives to allow libraries to be mergedJouni Malinen2009-12-061-7/+12
| | | | | | This allows libeap.a and libeap.so to be built by merging in multiple libraries from src subdirectories. In addition, this avoids wasting extra space and time for local builds.
* eap_example: Fix build after recent crypto changesJouni Malinen2009-12-061-3/+8
* Remove obsolete comment about wpa_supplicant header filesJouni Malinen2009-12-061-4/+0
* Move EAP method registration away from src/eap_{peer,server}Jouni Malinen2009-12-063-0/+228
| | | | | | This makes it easier to make a library out of EAP methods without losing possiblity of binary size optimization by linker dropping unreferenced code.
* Remove unnecessary definesJouni Malinen2009-12-051-3/+0
| | | | | | | | | The following defines are not really needed in most places, so remove them to clean up source code and build scripts: EAP_TLS_FUNCS EAP_TLS_OPENSSL EAP_TLS_GNUTLS CONFIG_TLS_INTERNAL
* Remove src/crypto from default include pathJouni Malinen2009-11-292-3/+1
| | | | | | In addition, start ordering header file includes to be in more consistent order: system header files, src/utils, src/*, same directory as the *.c file.
* Use PEM format RSA private key with eap_exampleJouni Malinen2009-08-162-2/+18
| | | | | | | It looks like GnuTLS does not know how to parse the previously used DER-formatted PKCS#1 private key (server.key). To work around this, use a PEM-formatted version of the same key. This format can now be used by OpenSSL, GnuTLS, and the internal TLS implementation.
* Add GnuTLS build option for eap_exampleJouni Malinen2009-08-161-0/+9
* Ignore the generated libeap.a fileJouni Malinen2009-08-131-0/+1
* Fix eap_example build after the crypto build cleanupJouni Malinen2009-08-131-0/+1
* Crypto build cleanup: remove CONFIG_NO_AES_*Johannes Berg2009-08-131-1/+7
| | | | | Instead of using a defines and conditional building of AES parts, move the conditional functionality into separate files.
* Crypto build cleanup: remove CONFIG_NO_AES_ENCRYPTJohannes Berg2009-08-131-1/+1
| | | | | Instead of using a define and conditional building of AES parts, move the AES encryption routines into a separate file.
* Crypto build cleanup: remove CONFIG_NO_AES_DECRYPTJohannes Berg2009-08-131-1/+1
| | | | | Instead of using a define and conditional building of AES parts, move the AES decryption routines into a separate file.
* Crypto build cleanup: remove INTERNAL_MD5Johannes Berg2009-07-281-3/+3
| | | | | Instead of using a define and conditional building of md5.c parts, move the internal-MD5 into a separate file.
* Crypto build cleanup: remove INTERNAL_MD4Johannes Berg2009-07-281-2/+1
| | | | | In addition, rename md4.c to md4-internal.c to match in style with SHA-1 conditionally built internal implementation.
* Crypto build cleanup: remove INTERNAL_SHA256Johannes Berg2009-07-281-3/+9
| | | | | Instead of using a define and conditional building of sha256.c parts, move the internal-SHA256 into a separate file.
* Crypto build cleanup: remove INTERNAL_AESJohannes Berg2009-07-281-2/+1
| | | | | In addition, rename aes.c to aes-internal.c to match in style with SHA-1 conditionally built internal implementation.
* Crypto build cleanup: remove INTERNAL_DESJohannes Berg2009-07-281-3/+6
| | | | | In addition, rename des.c to des-internal.c to match in style with SHA-1 conditionally built internal implementation.
* Crypto build cleanup: remove INTERNAL_SHA1Johannes Berg2009-07-281-2/+1
| | | | | Instead of using a define and conditional building of sha1.c parts, move the internal-SHA-1 into a separate file.
* Fix eap_example build with renamed EAP_* server definesJouni Malinen2009-06-301-0/+11
| | | | | | | 1e5839e06fbc20945044239984b652da9c3fc772 renamed the defines for EAP server, but did not update the eap_example Makefile to match. This broke the server side of the EAP example (no methods were actually enabled).
* Fixed eap_example build to match with EAP-PEAP changesJouni Malinen2008-09-241-3/+1
* Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 releaseJouni Malinen2008-02-289-0/+782