external_wpa_supplicant_8_ti.git - external wpa supplicant 8 ti

	Commit message (Collapse)	Author	Age	Files	Lines
*	Remove the GPL notification from files contributed by Jouni Malinen	Jouni Malinen	2012-02-11	1	-8/+2
\| \| \| \| \| \| \|	Remove the GPL notification text from the files that were initially contributed by myself. Signed-hostap: Jouni Malinen <j@w1.fi>
*	Remove EAP-TTLSv1 and TLS/IA	Jouni Malinen	2011-09-25	1	-29/+0
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	These protocols seem to be abandoned: latest IETF drafts have expired years ago and it does not seem likely that EAP-TTLSv1 would be deployed. The implementation in hostapd/wpa_supplicant was not complete and not fully tested. In addition, the TLS/IA functionality was only available when GnuTLS was used. Since GnuTLS removed this functionality in 3.0.0, there is no available TLS/IA implementation in the latest version of any supported TLS library. Remove the EAP-TTLSv1 and TLS/IA implementation to clean up unwanted complexity from hostapd and wpa_supplicant. In addition, this removes any potential use of the GnuTLS extra library.
*	Use wpabuf with tls_connection_ia_send_phase_finished()	Jouni Malinen	2009-12-20	1	-5/+3
\|
*	Convert TLS wrapper to use struct wpabuf	Jouni Malinen	2009-12-20	1	-46/+61
\| \| \| \| \| \| \|	This converts tls_connection_handshake(), tls_connection_server_handshake(), tls_connection_encrypt(), and tls_connection_decrypt() to use struct wpa_buf to allow higher layer code to be cleaned up with consistent struct wpabuf use.
*	NSS: Implement TLS PRF using new TLS extractor interface	Jouni Malinen	2009-09-30	1	-12/+17
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This allows NSS to be used to derive EAP-TLS/PEAP/TTLS keying material. NSS requires a patch from https://bugzilla.mozilla.org/show_bug.cgi?id=507359 to provide the new API. In addition, that patch needs to be modified to add the 16-bit context length value in SSL_ExportKeyingMaterial() only if contextlen != 0 in order to match with the EAP-TLS/PEAP/TTLS use cases. This issue seems to be coming from the unfortunate incompatibility in draft-ietf-tls-extractor-07.txt (draft-ietf-tls-extractor-00.txt would have used compatible PRF construction). At this point, it is unclear how this will be resolved eventually, but anyway, this shows a mechanism that can be used to implement EAP key derivation with NSS with a small patch to NSS.
*	Add preliminary version of NSS TLS/crypto wrapper for wpa_supplicant	Jouni Malinen	2009-09-29	1	-0/+662
	This brings in the first step in adding support for using NSS (Mozilla Network Security Services) as the crypto and TLS library with wpa_supplicant. This version is able to run through EAP-PEAP and EAP-TTLS authentication, but does not yet implement any certificate/private key configuration. In addition, this does not implement proper key fetching functions either, so the end result is not really of much use in real world yet.