git.ipfire.org Git - thirdparty/hostap.git/commit

author	Jouni Malinen <quic_jouni@quicinc.com>
	Thu, 21 Sep 2023 07:46:38 +0000 (10:46 +0300)
committer	Jouni Malinen <j@w1.fi>
	Thu, 21 Sep 2023 08:55:49 +0000 (11:55 +0300)
commit	881cb4198b552562bc732077170219bb295a64e8
tree	7ec43f21f6593c611f887cb6799f302849c42e1d	tree
parent	71b26a7675a3b1fb914c4ddbc8500164faff625e	commit \| diff

EAP-SIM/AKA peer: Simplify identity selection for MK derivation

Redesign the identity selection for MK derivation to be done explicitly
based on the last indicated identity (whether it is from
EAP-Response/Identity or method specific AT_IDENTITY) during the current
exchange. This makes the implementation cleaner and avoids cases were
more or less duplicated selection steps ended up being slightly
different. This is not as clean as it could otherwise be due to the
exception needed for the IMSI privacy case where the identity used in MK
derivation is actually not the one exchanged in the EAP messages.

Furthermore, this moves the somewhat confusing EAP method specific
tracking of the lasgt EAP-Response/Identity value from EAP-SIM/AKA into
the main EAP peer implementation.

Signed-off-by: Jouni Malinen <quic_jouni@quicinc.com>

src/eap_peer/eap.c		diff \| blob \| blame \| history
src/eap_peer/eap_aka.c		diff \| blob \| blame \| history
src/eap_peer/eap_i.h		diff \| blob \| blame \| history
src/eap_peer/eap_sim.c		diff \| blob \| blame \| history