eap_md5.c File Reference

EAP MD5-Challenge authentication method. More...

#include <stdlib.h>
#include <string.h>
#include <errno.h>
#include <ipxe/md5.h>
#include <ipxe/chap.h>
#include <ipxe/eap.h>

Go to the source code of this file.

Functions
	FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)
	FILE_SECBOOT (PERMITTED)
static int	eap_rx_md5 (struct eap_supplicant *supplicant, const void *req, size_t req_len)
	Handle EAP MD5-Challenge. More...

Variables
struct eap_method eap_md5_method	__eap_method
	EAP MD5-Challenge method. More...

Detailed Description

EAP MD5-Challenge authentication method.

Definition in file eap_md5.c.

Function Documentation

FILE_LICENCE()

FILE_LICENCE

(

GPL2_OR_LATER_OR_UBDL

)

FILE_SECBOOT()

FILE_SECBOOT

(

PERMITTED

)

eap_rx_md5()

static int eap_rx_md5 ( struct eap_supplicant *  supplicant, const void *  req, size_t  req_len  )

static

Handle EAP MD5-Challenge.

Parameters

supplicant	EAP supplicant
req	Request type data
req_len	Length of request type data

Return values

rc	Return status code

Definition at line 48 of file eap_md5.c.

                                                          {
        struct net_device *netdev = supplicant->netdev;
        const struct eap_md5 *md5req = req;
        struct {
                uint8_t len;
                uint8_t value[MD5_DIGEST_SIZE];
        } __attribute__ (( packed )) md5rsp;
        struct chap_response chap;
        void *secret;
        int secret_len;
        int rc;

        /* Sanity checks */
        if ( req_len < sizeof ( *md5req ) ) {
                DBGC ( netdev, "EAP %s underlength MD5-Challenge:\n",
                       netdev->name );
                DBGC_HDA ( netdev, 0, req, req_len );
                rc = -EINVAL;
                goto err_sanity;
        }
        if ( ( req_len - sizeof ( *md5req ) ) < md5req->len ) {
                DBGC ( netdev, "EAP %s truncated MD5-Challenge:\n",
                       netdev->name );
                DBGC_HDA ( netdev, 0, req, req_len );
                rc = -EINVAL;
                goto err_sanity;
        }

        /* Construct response */
        if ( ( rc = chap_init ( &chap, &md5_algorithm ) ) != 0 ) {
                DBGC ( netdev, "EAP %s could not initialise CHAP: %s\n",
                       netdev->name, strerror ( rc ) );
                goto err_chap;
        }
        chap_set_identifier ( &chap, supplicant->id );
        secret_len = fetch_raw_setting_copy ( netdev_settings ( netdev ),
                                              &password_setting, &secret );
        if ( secret_len < 0 ) {
                rc = secret_len;
                DBGC ( netdev, "EAP %s has no secret: %s\n",
                       netdev->name, strerror ( rc ) );
                goto err_secret;
        }
        chap_update ( &chap, secret, secret_len );
        chap_update ( &chap, md5req->value, md5req->len );
        chap_respond ( &chap );
        assert ( chap.response_len == sizeof ( md5rsp.value ) );
        md5rsp.len = sizeof ( md5rsp.value );
        memcpy ( md5rsp.value, chap.response, sizeof ( md5rsp.value ) );

        /* Transmit response */
        if ( ( rc = eap_tx_response ( supplicant, &md5rsp,
                                      sizeof ( md5rsp ) ) ) != 0 )
                goto err_tx;

 err_tx:
        free ( secret );
 err_secret:
        chap_finish ( &chap );
 err_chap:
 err_sanity:
        return rc;
}

References __attribute__, assert(), chap_finish(), chap_init(), chap_respond(), chap_set_identifier(), chap_update(), DBGC, DBGC_HDA, eap_tx_response(), EINVAL, fetch_raw_setting_copy(), free, eap_supplicant::id, eap_md5::len, md5_algorithm, MD5_DIGEST_SIZE, memcpy(), net_device::name, netdev, eap_supplicant::netdev, netdev_settings(), rc, chap_response::response, chap_response::response_len, strerror(), and eap_md5::value.

Variable Documentation

__eap_method

struct eap_method eap_md5_method __eap_method

Initial value:

= {
        .type = EAP_TYPE_MD5,
        .rx = eap_rx_md5,
}

EAP MD5-Challenge method.

Definition at line 114 of file eap_md5.c.