[thirdparty/hostap.git] / eap_example / README

EAP peer/server library and example program
Copyright (c) 2007, Jouni Malinen <j@w1.fi>

This software may be distributed under the terms of the BSD license.
See the parent directory README for more details.


The interfaces of the EAP server/peer implementation are based on RFC
4137 (EAP State Machines). This RFC is coordinated with the state
machines defined in IEEE 802.1X-2004. hostapd and wpa_supplicant
include implementation of the IEEE 802.1X EAPOL state machines and the
interface between them and EAP. However, the EAP implementation can be
used with other protocols, too, by providing a compatible interface
which maps the EAPOL<->EAP variables to another protocol.

This directory contains an example showing how EAP peer and server
code from wpa_supplicant and hostapd can be used as a library. The
example program initializes both an EAP server and an EAP peer
entities and then runs through an EAP-PEAP/MSCHAPv2 authentication.

eap_example_peer.c shows the initialization and glue code needed to
control the EAP peer implementation. eap_example_server.c does the
same for EAP server. eap_example.c is an example that ties in both the
EAP server and client parts to allow an EAP authentication to be
shown.

In this example, the EAP messages are passed between the server and
the peer are passed by direct function calls within the same process.
In practice, server and peer functionalities would likely reside in
separate devices and the EAP messages would be transmitted between the
devices based on an external protocol. For example, in IEEE 802.11
uses IEEE 802.1X EAPOL state machines to control the transmission of
EAP messages and WiMax supports optional PMK EAP authentication
mechanism that transmits EAP messages as defined in IEEE 802.16e.


The EAP library links in number of helper functions from src/utils and
src/crypto directories. Most of these are suitable as-is, but it may
be desirable to replace the debug output code in src/utils/wpa_debug.c
by dropping this file from the library and re-implementing the
functions there in a way that better fits in with the main
application.
Commit	Line	Data
6fc6879b JM	1	EAP peer/server library and example program
	2	Copyright (c) 2007, Jouni Malinen <j@w1.fi>
	3
0f3d578e JM	4	This software may be distributed under the terms of the BSD license.
0f3d578e JM	5	See the parent directory README for more details.
6fc6879b JM	6
	7
	8	The interfaces of the EAP server/peer implementation are based on RFC
	9	4137 (EAP State Machines). This RFC is coordinated with the state
	10	machines defined in IEEE 802.1X-2004. hostapd and wpa_supplicant
	11	include implementation of the IEEE 802.1X EAPOL state machines and the
	12	interface between them and EAP. However, the EAP implementation can be
	13	used with other protocols, too, by providing a compatible interface
	14	which maps the EAPOL<->EAP variables to another protocol.
	15
	16	This directory contains an example showing how EAP peer and server
	17	code from wpa_supplicant and hostapd can be used as a library. The
	18	example program initializes both an EAP server and an EAP peer
	19	entities and then runs through an EAP-PEAP/MSCHAPv2 authentication.
	20
	21	eap_example_peer.c shows the initialization and glue code needed to
	22	control the EAP peer implementation. eap_example_server.c does the
	23	same for EAP server. eap_example.c is an example that ties in both the
	24	EAP server and client parts to allow an EAP authentication to be
	25	shown.
	26
	27	In this example, the EAP messages are passed between the server and
	28	the peer are passed by direct function calls within the same process.
	29	In practice, server and peer functionalities would likely reside in
	30	separate devices and the EAP messages would be transmitted between the
	31	devices based on an external protocol. For example, in IEEE 802.11
	32	uses IEEE 802.1X EAPOL state machines to control the transmission of
	33	EAP messages and WiMax supports optional PMK EAP authentication
	34	mechanism that transmits EAP messages as defined in IEEE 802.16e.
	35
	36
	37	The EAP library links in number of helper functions from src/utils and
	38	src/crypto directories. Most of these are suitable as-is, but it may
	39	be desirable to replace the debug output code in src/utils/wpa_debug.c
	40	by dropping this file from the library and re-implementing the
	41	functions there in a way that better fits in with the main
	42	application.