fragattacks/src/eap_peer
Jouni Malinen f4f2774a96 Fixed interoperability issue with PEAPv0 cryptobinding and NPS
Windows Server 2008 NPS gets very confused if the TLS Message Length is
not included in the Phase 1 messages even if fragmentation is not used.
If the TLS Message Length field is not included in ClientHello message,
NPS seems to decide to use the ClientHello data (excluding first six
octets, i.e., EAP header, type, Flags) as the OuterTLVs data in
Cryptobinding Compound_MAC calculation (per PEAPv2; not MS-PEAP)..

Lets add the TLS Message Length to PEAPv0 Phase 1 messages to get rid of
this issue. This seems to fix Cryptobinding issues with NPS and PEAPv0
is now using optional Cryptobinding by default (again) since there are
no known interop issues with it anymore.
2008-12-15 00:15:54 +02:00
..
.gitignore Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_aka.c Don't include unused calls to SHA256 functions if EAP-AKA' is not enabled 2008-12-11 00:49:39 +02:00
eap_config.h Added preliminary Wi-Fi Protected Setup (WPS) implementation 2008-11-23 19:34:26 +02:00
eap_fast_pac.c Fixed fwrite error path in eap_fast_write_pac not to free buf 2008-11-01 17:09:28 +02:00
eap_fast_pac.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_fast.c Cleaned up EAP-MSCHAPv2 key derivation 2008-12-14 13:12:20 +02:00
eap_gpsk.c Reject GPSK-3 if ID_Server in it does not match with the value in GPSK-1 2008-11-23 20:06:13 +02:00
eap_gtc.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_i.h Cleaned up EAP-MSCHAPv2 key derivation 2008-12-14 13:12:20 +02:00
eap_ikev2.c Renamed MSG to PROC_MSG to avoid conflicts with MinGW winuser.h 2008-08-10 18:00:11 +03:00
eap_leap.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_md5.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_methods.c Add a starting point for EAP-AKA' (draft-arkko-eap-aka-kdf-10) 2008-12-02 20:12:49 +02:00
eap_methods.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_mschapv2.c Cleaned up EAP-MSCHAPv2 key derivation 2008-12-14 13:12:20 +02:00
eap_otp.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_pax.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_peap.c Fixed interoperability issue with PEAPv0 cryptobinding and NPS 2008-12-15 00:15:54 +02:00
eap_psk.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_sake.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_sim.c Add more verbose debug output for GSM-Milenage use (RAND,SRES,Kc) 2008-11-22 14:06:58 +02:00
eap_tls_common.c Fixed interoperability issue with PEAPv0 cryptobinding and NPS 2008-12-15 00:15:54 +02:00
eap_tls_common.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_tls.c Separate OpenSSL engine configuration for Phase 2 2008-11-18 16:53:32 +02:00
eap_tnc.c Renamed MSG to PROC_MSG to avoid conflicts with MinGW winuser.h 2008-08-10 18:00:11 +03:00
eap_ttls.c Cleaned up EAP-MSCHAPv2 key derivation 2008-12-14 13:12:20 +02:00
eap_vendor_test.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
eap_wsc.c Rename MSG to MESG to avoid conflicts with Windows header files 2008-12-11 00:54:49 +02:00
eap.c Added protection against EAP-AKA' -> EAP-AKA bidding down attacks 2008-12-05 22:25:47 +02:00
eap.h WPS: Moved mac_addr and uuid configuration into wps_context 2008-11-28 20:44:47 +02:00
ikev2.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
ikev2.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
Makefile Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
mschapv2.c Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
mschapv2.h Re-initialize hostapd/wpa_supplicant git repository based on 0.6.3 release 2008-02-27 17:34:43 -08:00
tncc.c Added option to force SoH version 1 (tnc=soh1) 2008-12-07 21:00:42 +02:00
tncc.h Added option to force SoH version 1 (tnc=soh1) 2008-12-07 21:00:42 +02:00