SIM/AKA/Request/Reauthentication AT_MAC does not include NONCE_S, only the response
authorMartin Willi <martin@strongswan.org>
Fri, 27 Nov 2009 14:40:40 +0000 (15:40 +0100)
committerMartin Willi <martin@strongswan.org>
Mon, 30 Nov 2009 08:27:39 +0000 (09:27 +0100)
src/charon/plugins/eap_aka/eap_aka_peer.c
src/charon/plugins/eap_aka/eap_aka_server.c
src/charon/plugins/eap_sim/eap_sim_peer.c
src/charon/plugins/eap_sim/eap_sim_server.c

index 080c09d..d1ab554 100644 (file)
@@ -366,7 +366,7 @@ static status_t process_reauthentication(private_eap_aka_peer_t *this,
                *out = create_client_error(this, in->get_identifier(in));
                return NEED_MORE;
        }
-       if (!in->verify(in, nonce))
+       if (!in->verify(in, chunk_empty))
        {
                *out = create_client_error(this, in->get_identifier(in));
                return NEED_MORE;
index 6cb9712..acf5c63 100644 (file)
@@ -244,8 +244,7 @@ static status_t reauthenticate(private_eap_aka_server_t *this,
                                                           next->get_encoding(next));
                next->destroy(next);
        }
-       /* create AT_MAC over EAP-Message|NONCE_S */
-       *out = message->generate(message, this->nonce);
+       *out = message->generate(message, chunk_empty);
        message->destroy(message);
 
        this->pending = SIM_REAUTHENTICATION;
index b5e010d..66365b3 100644 (file)
@@ -429,7 +429,7 @@ static status_t process_reauthentication(private_eap_sim_peer_t *this,
                                                                   SIM_UNABLE_TO_PROCESS);
                return NEED_MORE;
        }
-       if (!in->verify(in, nonce))
+       if (!in->verify(in, chunk_empty))
        {
                *out = create_client_error(this, in->get_identifier(in),
                                                                   SIM_UNABLE_TO_PROCESS);
index aa3f503..03b6a19 100644 (file)
@@ -172,8 +172,7 @@ static status_t reauthenticate(private_eap_sim_server_t *this,
                                                           next->get_encoding(next));
                next->destroy(next);
        }
-       /* create AT_MAC over EAP-Message|NONCE_S */
-       *out = message->generate(message, this->nonce);
+       *out = message->generate(message, chunk_empty);
        message->destroy(message);
 
        this->pending = SIM_REAUTHENTICATION;