[RFC][PATCH 0/5] wpa_supplicant: Support realms according to 3GPP TS 23.003

[Simon Baatz]

Hi,

here is a set of proposed patches to derive the realm from the IMSI
according to 3GPP TS 23.003 for EAP-SIM and EAP-AKA in wpa_supplicant as
recommended by the respective RFCs.

Patches 1/5 and 2/5 are improvements with respect to pseudonym handling. RFC
4186 states in section 4.2.1.9:

  When using a pseudonym username in an environment where a realm
  portion is used, the peer concatenates the received pseudonym
  username with the "@" character and an NAI realm portion.

(The same applies to EAP-AKA.) Thus, if the permanent identity includes a
realm, this realm should be appended to the received pseudonyms as well.

Patch 3/5 adds a function to read the MNC length from the EF-AD file on the
SIM/USIM.  I could only test this with one SIM/USIM card, which has an MNC
length of two.  If possible, this should be tested with other cards as well,
but I don't have the means to do this.

Patch 4/5 adds the config item to enable the feature and 5/5 adds the actual
derivation of the realm from the IMSI.


- Simon

Simon Baatz (5):
  EAP SIM peer: append realm when learning the pseudonym
  EAP AKA peer: append realm when learning the pseudonym
  SIM/USIM: Add function to get the MNC length from the SIM/USIM
  wpa_supplicant config: Add realm_3gpp parameter
  EAP-SIM/EAP-AKA peer: Support realms according to 3GPP TS 23.003

 src/eap_peer/eap.c                 |   48 +++++++++++++++++++++++++++++++++
 src/eap_peer/eap_aka.c             |   41 +++++++++++++++++++++-------
 src/eap_peer/eap_config.h          |   14 +++++++++
 src/eap_peer/eap_sim.c             |   41 +++++++++++++++++++++-------
 src/utils/pcsc_funcs.c             |   52 ++++++++++++++++++++++++++++++++++++
 src/utils/pcsc_funcs.h             |    2 +
 wpa_supplicant/config.c            |    2 +
 wpa_supplicant/wpa_supplicant.conf |    5 +++
 8 files changed, 185 insertions(+), 20 deletions(-)

-- 
1.7.5.4