eap_pax_common.c File Reference

EAP server/peer: EAP-PAX shared routines. More...

#include "includes.h"
#include "common.h"
#include "sha1.h"
#include "eap_pax_common.h"
Include dependency graph for eap_pax_common.c:

Go to the source code of this file.

Functions

int eap_pax_kdf (u8 mac_id, const u8 *key, size_t key_len, const char *identifier, const u8 *entropy, size_t entropy_len, size_t output_len, u8 *output)
 PAX Key Derivation Function.
int eap_pax_mac (u8 mac_id, const u8 *key, size_t key_len, const u8 *data1, size_t data1_len, const u8 *data2, size_t data2_len, const u8 *data3, size_t data3_len, u8 *mac)
 EAP-PAX MAC.
int eap_pax_initial_key_derivation (u8 mac_id, const u8 *ak, const u8 *e, u8 *mk, u8 *ck, u8 *ick)
 EAP-PAX initial key derivation.

Detailed Description

EAP server/peer: EAP-PAX shared routines.

Copyright
Copyright (c) 2005, Jouni Malinen <j@w1.fi>

This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License version 2 as published by the Free Software Foundation.

Alternatively, this software may be distributed under the terms of BSD license.

See README and COPYING for more details.

Definition in file eap_pax_common.c.

Function Documentation

int eap_pax_initial_key_derivation ( u8  mac_id,
const u8 *  ak,
const u8 *  e,
u8 *  mk,
u8 *  ck,
u8 *  ick 
)

EAP-PAX initial key derivation.

Parameters:
mac_id MAC ID (EAP_PAX_MAC_*) / currently, only HMAC_SHA1_128 is supported
ak Authentication Key
e Entropy
mk Buffer for the derived Master Key
ck Buffer for the derived Confirmation Key
ick Buffer for the derived Integrity Check Key
Returns:
0 on success, -1 on failure

Definition at line 136 of file eap_pax_common.c.

Here is the call graph for this function:

int eap_pax_kdf ( u8  mac_id,
const u8 *  key,
size_t  key_len,
const char *  identifier,
const u8 *  entropy,
size_t  entropy_len,
size_t  output_len,
u8 *  output 
)

PAX Key Derivation Function.

Parameters:
mac_id MAC ID (EAP_PAX_MAC_*) / currently, only HMAC_SHA1_128 is supported
key Secret key (X)
key_len Length of the secret key in bytes
identifier Public identifier for the key (Y)
entropy Exchanged entropy to seed the KDF (Z)
entropy_len Length of the entropy in bytes
output_len Output len in bytes (W)
output Buffer for the derived key
Returns:
0 on success, -1 failed

RFC 4746, Section 2.6: PAX-KDF-W(X, Y, Z)

Definition at line 38 of file eap_pax_common.c.

Here is the call graph for this function:

int eap_pax_mac ( u8  mac_id,
const u8 *  key,
size_t  key_len,
const u8 *  data1,
size_t  data1_len,
const u8 *  data2,
size_t  data2_len,
const u8 *  data3,
size_t  data3_len,
u8 *  mac 
)

EAP-PAX MAC.

Parameters:
mac_id MAC ID (EAP_PAX_MAC_*) / currently, only HMAC_SHA1_128 is supported
key Secret key
key_len Length of the secret key in bytes
data1 Optional data, first block; NULL if not used
data1_len Length of data1 in bytes
data2 Optional data, second block; NULL if not used
data2_len Length of data2 in bytes
data3 Optional data, third block; NULL if not used
data3_len Length of data3 in bytes
mac Buffer for the MAC value (EAP_PAX_MAC_LEN = 16 bytes)
Returns:
0 on success, -1 on failure

Wrapper function to calculate EAP-PAX MAC.

Definition at line 95 of file eap_pax_common.c.

Here is the call graph for this function:

 All Data Structures Files Functions Variables Typedefs Enumerations Enumerator Defines
Generated on Sat Nov 21 23:21:01 2009 for hostapd by  doxygen 1.6.1