27 RCSIDH(rlm_eap_aka_eap_aka_h,
"$Id: 8f2ad778d82813a0f5ae172c05834ba9d99c8386 $")
29 #include <freeradius-devel/sim/base.h>
A section grouping multiple CONF_PAIR.
bool challenge_success
Whether we received the correct challenge response.
CONF_SECTION * send_success_notification
Called when we're about to send a EAP-AKA success notification.
eap_type_t type
Either FR_TYPE_AKA, or FR_TYPE_AKA_PRIME.
CONF_SECTION * send_fast_reauth_request
Called when we're about to send a Fast-Reauth-Request.
CONF_SECTION * clear_session
Clear authentication vectors.
bool allow_encrypted
Whether we can send encrypted attributes.
CONF_SECTION * send_challenge_request
Called when we're about to send a a challenge.
eap_aka_server_state_t state
Current session state.
CONF_SECTION * recv_authentication_reject
Called if the supplicant rejects the authentication attempt.
char const * virtual_server
Virtual server for HLR integration.
CONF_SECTION * recv_synchronization_failure
Called if the supplicant determines the AUTN value is invalid.
CONF_SECTION * recv_failure_notification_ack
Called when the supplicant ACKs our failure notification.
eap_aka_actions_t actions
Pre-compiled virtual server sections.
uint32_t request_identity
Always send an identity request before a challenge.
fr_sim_keys_t keys
Various EAP-AKA keys.
CONF_SECTION * send_failure_notification
Called when we're about to send a EAP-AKA failure notification.
uint16_t kdf
The key derivation function used to derive session keys.
CONF_SECTION * recv_success_notification_ack
Called when the supplicant ACKs our success notification.
CONF_SECTION * send_eap_failure
Called when we send an EAP-Failure message.
CONF_SECTION * recv_fast_reauth_response
Called when we receive a response to a previous Fast-Reauth-Request.
CONF_SECTION * load_session
Load cached authentication vectors.
CONF_SECTION * recv_identity_response
Called when we receive a new identity.
char const * network_name
Network ID as described by RFC 5448.
bool send_at_bidding
Indicate that we prefer EAP-AKA' and include an AT_BIDDING attribute.
request_identity request_identity
Whether we always request the identity of the subscriber.
int aka_id
Packet ID. (replay protection).
EVP_MD const * mac_md
HMAC-MD we use to generate the MAC.
CONF_SECTION * send_eap_success
Called when we send an EAP-Success message.
CONF_SECTION * send_identity_request
Called when we're about to request a different identity.
CONF_SECTION * store_session
Store authentication vectors.
fr_sim_id_req_type_t id_req
The type of identity we're requesting or previously requested.
CONF_SECTION * recv_client_error
Called if the supplicant experiences an error of some kind.
eap_aka_server_state_t
Server states.
@ EAP_AKA_SERVER_IDENTITY
Attempting to discover permanent identity of the supplicant.
@ EAP_AKA_SERVER_MAX_STATES
@ EAP_AKA_SERVER_CHALLENGE
We've challenged the supplicant.
@ EAP_AKA_SERVER_FAILURE_NOTIFICATION
Send failure notification.
@ EAP_AKA_SERVER_SUCCESS
Authentication completed successfully.
@ EAP_AKA_SERVER_SUCCESS_NOTIFICATION
Send success notification.
@ EAP_AKA_SERVER_FAILURE
Send an EAP-Failure.
bool send_result_ind
Say that we would like to use protected result indications (AKA-Notification-Success).
CONF_SECTION * recv_eap_identity_response
The initial state, entered into after we receive an EAP-Identity-Response.
CONF_SECTION * recv_challenge_response
Called when we receive a response to a previous challenge.
Cache sections to call on various protocol events.
1.9.1