1 /*

     2 * Copyright (c) 2001-2006 Nokia Corporation and/or its subsidiary(-ies).

     3 * All rights reserved.

     4 * This component and the accompanying materials are made available

     5 * under the terms of the License "Eclipse Public License v1.0"

     6 * which accompanies this distribution, and is available

     7 * at the URL "http://www.eclipse.org/legal/epl-v10.html".

     8 *

     9 * Initial Contributors:

    10 * Nokia Corporation - initial contribution.

    11 *

    12 * Contributors:

    13 *

    14 * Description:  EAP and WLAN authentication protocols.

    15 *

    16 */

    17 

    18 

    19 // This is enumeration of EAPOL source code.

    20 #if defined(USE_EAP_MINIMUM_RELEASE_TRACES)

    21 	#undef EAP_FILE_NUMBER_ENUM

    22 	#define EAP_FILE_NUMBER_ENUM 67 

    23 	#undef EAP_FILE_NUMBER_DATE 

    24 	#define EAP_FILE_NUMBER_DATE 1127594498 

    25 #endif //#if defined(USE_EAP_MINIMUM_RELEASE_TRACES)

    26 

    27 

    28 

    29 #include "eap_am_memory.h"

    30 #include "eap_tools.h"

    31 #include "eap_type_aka.h"

    32 #include "eap_type_aka_header.h"

    33 #include "eap_type_aka_payloads.h"

    34 #include "abs_eap_am_type_aka.h"

    35 #include "eap_crypto_api.h"

    36 #include "eap_state_notification.h"

    37 #include "abs_eap_am_mutex.h"

    38 #include "eap_automatic_variable.h"

    39 #include "eap_sort.h"

    40 #include "eap_buffer.h"

    41 #include "eap_config.h"

    42 

    43 

    44 //--------------------------------------------------

    45 

    46 /** @file */

    47 

    48 // 

    49 EAP_FUNC_EXPORT eap_type_aka_c::~eap_type_aka_c()

    50 {

    51 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

    52 

    53 	EAP_TRACE_DEBUG(

    54 		m_am_tools, 

    55 		TRACE_FLAGS_DEFAULT, 

    56 		(EAPL("eap_type_aka_c::~eap_type_aka_c(): this = 0x%08x => 0x%08x\n"),

    57 		this,

    58 		dynamic_cast<abs_eap_base_timer_c *>(this)));

    59 

    60 	EAP_ASSERT(m_shutdown_was_called == true);

    61 

    62 	if (m_free_am_type_aka == true

    63 		&& m_am_type_aka != 0)

    64 	{

    65 		delete m_am_type_aka;

    66 	}

    67 

    68 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

    69 }

    70 

    71 //--------------------------------------------------

    72 

    73 #if defined(_WIN32) && !defined(__GNUC__)

    74 	#pragma warning( disable : 4355 ) // 'this' : used in base member initializer list

    75 #endif

    76 

    77 // 

    78 EAP_FUNC_EXPORT eap_type_aka_c::eap_type_aka_c(

    79 	abs_eap_am_tools_c * const tools,

    80 	abs_eap_base_type_c * const partner,

    81 	eap_am_type_aka_c * const am_type_aka,

    82 	const bool free_am_type_aka,

    83 	const bool is_client_when_true,

    84 	const eap_am_network_id_c * const receive_network_id)

    85 	: eap_base_type_c(tools, partner)

    86 	, m_am_tools(tools)

    87 	, m_am_type_aka(am_type_aka)

    88 	, m_checkcode(tools)

    89 	, m_checkcode_update_count(0UL)

    90 	, m_received_checkcode(tools)

    91 	, m_checkcode_saved_message(tools)

    92 	, m_all_payloads(tools)

    93 	, m_nonce_mt_file(tools)

    94 	, m_manual_username(tools)

    95 	, m_manual_realm(tools)

    96 	, m_automatic_realm(tools)

    97 	, m_automatic_realm_read(false)

    98 	, m_aka_header_offset(0u)

    99 	, m_MTU(0u)

   100 	, m_trailer_length(0u)

   101 	, m_length_of_mnc(EAP_TYPE_AKA_DEFAULT_MNC_LENGTH_3_BYTES)

   102 	, m_authentication_type(AKA_AUTHENTICATION_TYPE_NONE)

   103 	, m_identity_type(AKA_IDENTITY_TYPE_NONE)

   104 	, m_client_error_code(eap_aka_client_error_code_none)

   105 	, m_aka_notification_code(eap_aka_notification_none)

   106 	, m_failure_message_delay_time(EAP_TYPE_AKA_TIMER_TIMEOUT_VALUE_DELAY_FAILURE_MESSAGE_SENT)

   107 	, m_is_valid(false)

   108 	, m_is_client(is_client_when_true)

   109 	, m_wait_eap_success_packet(true)

   110 	, m_check_identifier_of_eap_identity_response(false)

   111 	, m_free_am_type_aka(free_am_type_aka)

   112 	, m_client_responds_retransmitted_packets(false)

   113 	, m_aka_test_version(false)

   114 	, m_aka_randomly_refuse_eap_identity(false)

   115 	, m_check_nai_realm(false)

   116 	, m_fail_reauthentication_counter_check(false)

   117 	, m_accept_eap_identity_response(true)

   118 	, m_use_random_identity_on_eap_identity_response(false)

   119 	, m_shutdown_was_called(false)

   120 	, m_reset_was_called(false)

   121 	, m_use_pseudonym_identity(true)

   122 	, m_use_reauthentication_identity(true)

   123 	, m_erroneus_packet_received(false)

   124 	, m_aka_notification_packet_received(false)

   125 	, m_use_manual_username(false)

   126 	, m_use_manual_realm(false)

   127 	, m_randomly_fail_successfull_authentication(false)

   128 	, m_allow_use_result_indication(true)

   129 	, m_use_result_indication(false)

   130 	, m_state(eap_type_aka_state_none)

   131 	, m_saved_previous_state(eap_type_aka_state_none)

   132 	, m_send_network_id(tools)

   133 	, m_nonce_s(tools)

   134 	, m_IV(tools)

   135 	, m_saved_EAP_packet(tools)

   136 	, m_XKEY(tools)

   137 	, m_K_encr(tools)

   138 	, m_K_aut(tools)

   139 	, m_master_session_key(tools, eap_type_aka)

   140 	, m_IMSI(tools)

   141 	, m_pseudonym(tools)

   142 	, m_reauthentication_identity(tools)

   143 	, m_identity(tools)

   144 	, m_NAI(tools)

   145 	, m_RAND(tools)

   146 	, m_AUTN(tools)

   147 	, m_RES(tools)

   148 	, m_2_digit_mnc_map_of_mcc_of_imsi_array(tools)

   149 	, m_uma_automatic_realm_prefix(tools)

   150 	, m_use_uma_profile(false)

   151 	, m_authentication_vector(0)

   152 	, m_reauthentication_counter(0u)

   153 	, m_include_identity_to_aka_identity_response(aka_payload_NONE)

   154 	, m_aka_identity_response_includes_identity(aka_payload_NONE)

   155 	, m_failure_message_received(false)

   156 	, m_authentication_finished_successfully(false)

   157 	, m_last_eap_identifier(0)

   158 	, m_use_eap_expanded_type(false)

   159 {

   160 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   161 

   162 	EAP_TRACE_DEBUG(

   163 		m_am_tools, 

   164 		TRACE_FLAGS_DEFAULT, 

   165 		(EAPL("eap_type_aka_c::eap_type_aka_c(): this = 0x%08x => 0x%08x, ")

   166 		 EAPL("partner 0x%08x, type partner 0x%08x, compiled %s %s\n"),

   167 		 this,

   168 		 dynamic_cast<abs_eap_base_timer_c *>(this),

   169 		 partner,

   170 		 get_type_partner(),

   171 		__DATE__,

   172 		__TIME__));

   173 

   174 	if (m_am_type_aka == 0)

   175 	{

   176 		// Something wrong with AM.

   177 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   178 		return;

   179 	}

   180 	m_am_type_aka->set_am_partner(this);

   181 

   182 	if (m_checkcode.get_is_valid() == false

   183 		|| m_received_checkcode.get_is_valid() == false

   184 		|| m_checkcode_saved_message.get_is_valid() == false

   185 		|| m_nonce_mt_file.get_is_valid() == false

   186 		|| m_manual_username.get_is_valid() == false

   187 		|| m_manual_realm.get_is_valid() == false

   188 		|| m_send_network_id.get_is_valid() == false

   189 		|| m_nonce_s.get_is_valid() == false

   190 		|| m_IV.get_is_valid() == false

   191 		|| m_saved_EAP_packet.get_is_valid() == false

   192 		|| m_XKEY.get_is_valid() == false

   193 		|| m_K_encr.get_is_valid() == false

   194 		|| m_K_aut.get_is_valid() == false

   195 		|| m_master_session_key.get_is_valid() == false

   196 		|| m_IMSI.get_is_valid() == false

   197 		|| m_pseudonym.get_is_valid() == false

   198 		|| m_reauthentication_identity.get_is_valid() == false

   199 		|| m_identity.get_is_valid() == false

   200 		|| m_NAI.get_is_valid() == false

   201 		|| m_RAND.get_is_valid() == false

   202 		|| m_AUTN.get_is_valid() == false

   203 		|| m_RES.get_is_valid() == false)

   204 	{

   205 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   206 		return;

   207 	}

   208 

   209 	eap_status_e status = checkcode_init();

   210 	if (status != eap_status_ok)

   211 	{

   212 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   213 		return;

   214 	}

   215 

   216 	// - - - - - - - - - - - - - - - - - - - - - - - - - - - -

   217 

   218 	initialize_state(eap_type_aka_state_pending_kc_sres_query, false, false,

   219 		aka_subtype_Notification,

   220 		aka_subtype_Challenge, // Re-transmitted EAP-Request/AKA/Challenge is allowed.

   221 		aka_subtype_NONE,

   222 		aka_subtype_NONE,

   223 		aka_subtype_NONE);

   224 

   225 	initialize_state(eap_type_aka_state_pending_authentication_vector_query, false, false,

   226 		aka_subtype_Notification,

   227 		aka_subtype_Identity, // Note EAP-Response/AKA/Identity message is allowed here, eap_type_aka_c::handle_aka_identity_response_message() will drop EAP-Response/AKA/Identity message quietly.

   228 		aka_subtype_Client_Error,

   229 		aka_subtype_Challenge, // Re-transmitted EAP-Response/AKA/Challenge is allowed.

   230 		aka_subtype_NONE);

   231 

   232 	initialize_state(eap_type_aka_state_waiting_for_aka_identity_request, false, false,

   233 		aka_subtype_Notification,

   234 		aka_subtype_Identity,

   235 		aka_subtype_NONE,

   236 		aka_subtype_NONE,

   237 		aka_subtype_NONE);

   238 

   239 	initialize_state(eap_type_aka_state_pseydonym_waiting_for_aka_identity_request, false, false,

   240 		aka_subtype_Notification,

   241 		aka_subtype_Identity,

   242 		aka_subtype_Re_authentication,

   243 		aka_subtype_NONE,

   244 		aka_subtype_NONE);

   245 

   246 	initialize_state(eap_type_aka_state_imsi_waiting_for_aka_identity_request, false, false,

   247 		aka_subtype_Notification,

   248 		aka_subtype_Identity,

   249 		aka_subtype_NONE,

   250 		aka_subtype_NONE,

   251 		aka_subtype_NONE);

   252 

   253 	initialize_state(eap_type_aka_state_waiting_for_aka_identity_response, true, false,

   254 		aka_subtype_Notification,

   255 		aka_subtype_Identity,

   256 		aka_subtype_Client_Error,

   257 		aka_subtype_NONE,

   258 		aka_subtype_NONE);

   259 

   260 	initialize_state(eap_type_aka_state_waiting_for_notification_request_success, false, true,

   261 		aka_subtype_Notification,

   262 		aka_subtype_Challenge,

   263 		aka_subtype_Re_authentication,

   264 		aka_subtype_NONE,

   265 		aka_subtype_NONE);

   266 

   267 	initialize_state(eap_type_aka_state_waiting_for_notification_response_failure, true, false,

   268 		aka_subtype_Notification,

   269 		aka_subtype_NONE,

   270 		aka_subtype_NONE,

   271 		aka_subtype_NONE,

   272 		aka_subtype_NONE);

   273 

   274 	initialize_state(eap_type_aka_state_waiting_for_notification_response_success, true, false,

   275 		aka_subtype_Notification,

   276 		aka_subtype_NONE,

   277 		aka_subtype_NONE,

   278 		aka_subtype_NONE,

   279 		aka_subtype_NONE);

   280 

   281 	initialize_state(eap_type_aka_state_waiting_for_aka_identity_response_with_at_permanent_identity, true, false,

   282 		aka_subtype_Notification,

   283 		aka_subtype_Identity,

   284 		aka_subtype_Client_Error,

   285 		aka_subtype_NONE,

   286 		aka_subtype_NONE);

   287 

   288 	initialize_state(eap_type_aka_state_waiting_for_aka_identity_response_with_at_full_auth_identity, true, false,

   289 		aka_subtype_Notification,

   290 		aka_subtype_Identity,

   291 		aka_subtype_Client_Error,

   292 		aka_subtype_NONE,

   293 		aka_subtype_NONE);

   294 

   295 	initialize_state(eap_type_aka_state_waiting_for_aka_identity_response_with_at_any_identity, true, false,

   296 		aka_subtype_Notification,

   297 		aka_subtype_Identity,

   298 		aka_subtype_Client_Error,

   299 		aka_subtype_NONE,

   300 		aka_subtype_NONE);

   301 

   302 	initialize_state(eap_type_aka_state_analyse_aka_identity_request, false, false,

   303 		aka_subtype_Notification,

   304 		aka_subtype_NONE,

   305 		aka_subtype_NONE,

   306 		aka_subtype_NONE,

   307 		aka_subtype_NONE);

   308 

   309 	initialize_state(eap_type_aka_state_waiting_for_challenge_request, false, false,

   310 		aka_subtype_Notification,

   311 		aka_subtype_Challenge,

   312 		aka_subtype_Identity,

   313 		aka_subtype_NONE,

   314 		aka_subtype_NONE);

   315 

   316 	initialize_state(eap_type_aka_state_waiting_for_challenge_response, false, false,

   317 		aka_subtype_Notification,

   318 		aka_subtype_Challenge,

   319 		aka_subtype_Identity,

   320 		aka_subtype_Client_Error,

   321 		aka_subtype_Synchronization_Failure);

   322 

   323 	initialize_state(eap_type_aka_state_waiting_for_reauth_request, false, false,

   324 		aka_subtype_Notification,

   325 		aka_subtype_Re_authentication,

   326 		aka_subtype_Identity,

   327 		aka_subtype_Challenge, // This is allowed because, server could start full authentication.

   328 		aka_subtype_NONE);

   329 

   330 	initialize_state(eap_type_aka_state_waiting_for_reauth_response, false, false,

   331 		aka_subtype_Notification,

   332 		aka_subtype_Re_authentication,

   333 		aka_subtype_Identity,

   334 		aka_subtype_Client_Error,

   335 		aka_subtype_NONE);

   336 

   337 	initialize_state(eap_type_aka_state_success, false, false,

   338 		aka_subtype_Notification,

   339 		aka_subtype_Challenge,

   340 		aka_subtype_NONE,

   341 		aka_subtype_NONE,

   342 		aka_subtype_NONE);

   343 

   344 	initialize_state(eap_type_aka_state_waiting_for_success, false, false,

   345 		aka_subtype_Notification,

   346 		aka_subtype_Challenge,

   347 		aka_subtype_Re_authentication,

   348 		aka_subtype_NONE,

   349 		aka_subtype_NONE);

   350 

   351 	initialize_state(eap_type_aka_state_failure, false, false,

   352 		aka_subtype_NONE,

   353 		aka_subtype_NONE,

   354 		aka_subtype_NONE,

   355 		aka_subtype_NONE,

   356 		aka_subtype_NONE);

   357 

   358 	{

   359 		// Here we swap the addresses.

   360 		eap_am_network_id_c send_network_id(m_am_tools,

   361 			receive_network_id->get_destination_id(),

   362 			receive_network_id->get_source_id(),

   363 			receive_network_id->get_type());

   364 

   365 		status = m_send_network_id.set_copy_of_network_id(&send_network_id);

   366 

   367 		if (status != eap_status_ok

   368 			|| m_send_network_id.get_is_valid_data() == false)

   369 		{

   370 			(void) EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   371 			return;

   372 		}

   373 	}

   374 

   375 	set_is_valid();

   376 

   377 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   378 }

   379 

   380 //-----------------------------------------------

   381 

   382 //

   383 void eap_type_aka_c::initialize_state(

   384 				const eap_type_aka_state_variable_e state,

   385 				const bool must_be_initiator,

   386 				const bool must_be_responder,

   387 				const aka_subtype_e type0,

   388 				const aka_subtype_e type1,

   389 				const aka_subtype_e type2,

   390 				const aka_subtype_e type3,

   391 				const aka_subtype_e type4)

   392 {

   393 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   394 

   395 	m_parameters[(state)].init_state(must_be_initiator, must_be_responder,

   396 		type0, type1, type2, type3, type4);

   397 

   398 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   399 }

   400 

   401 //--------------------------------------------------

   402 

   403 EAP_FUNC_EXPORT bool eap_type_aka_c::random_selection()

   404 {

   405 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   406 

   407 	crypto_random_c rand(m_am_tools);

   408 

   409 	if (rand.get_is_valid() == false)

   410 	{

   411 		return false;

   412 	}

   413 

   414 	return (rand.get_rand_integer(0, 1) != 0);

   415 }

   416 

   417 //--------------------------------------------------

   418 

   419 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_init()

   420 {

   421 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   422 

   423 	m_checkcode_update_count = 0UL;

   424 

   425 	m_received_checkcode.reset();

   426 

   427 	m_checkcode_saved_message.reset();

   428 

   429 	m_all_payloads.reset();

   430 

   431 	eap_status_e status = m_checkcode.hash_init();

   432 	if (status != eap_status_ok)

   433 	{

   434 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   435 		return EAP_STATUS_RETURN(m_am_tools, status);

   436 	}

   437 

   438 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   439 	return EAP_STATUS_RETURN(m_am_tools, status);

   440 }

   441 

   442 //--------------------------------------------------

   443 

   444 EAP_FUNC_EXPORT bool eap_type_aka_c::compare_payload_first_is_less(

   445 	const aka_payload_AT_type_e * const first,

   446 	const aka_payload_AT_type_e * const second,

   447 	abs_eap_am_tools_c * const /* m_am_tools */)

   448 {

   449 	return *first < *second;

   450 }

   451 

   452 //--------------------------------------------------

   453 

   454 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_verify_payloads(

   455 	aka_payloads_c * const p_aka_payloads)

   456 {

   457 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   458 

   459 	if (p_aka_payloads != 0

   460 		&& p_aka_payloads->get_all_payloads()->get_is_valid_data() == true)

   461 	{

   462 		EAP_TRACE_DATA_DEBUG(

   463 			m_am_tools,

   464 			TRACE_FLAGS_DEFAULT,

   465 			(EAPL(" CHECKCODE plain payload array"),

   466 			 p_aka_payloads->get_all_payloads()->get_data(p_aka_payloads->get_all_payloads()->get_data_length()),

   467 			 p_aka_payloads->get_all_payloads()->get_data_length()));

   468 

   469 		// This will sort the payload array of type aka_payload_AT_type_e in increasing order.

   470 		// Comparing this payload array to previous payload arrays is then easy task.

   471 		eap_status_e status = eap_sort_array<aka_payload_AT_type_e>(

   472 			reinterpret_cast<aka_payload_AT_type_e *>(

   473 				p_aka_payloads->get_all_payloads()->get_data(

   474 					p_aka_payloads->get_all_payloads()->get_data_length())),

   475 			p_aka_payloads->get_all_payloads()->get_data_length()/sizeof(aka_payload_AT_type_e),

   476 			compare_payload_first_is_less,

   477 			m_am_tools);

   478 		if (status != eap_status_ok)

   479 		{

   480 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   481 			return EAP_STATUS_RETURN(m_am_tools, status);

   482 		}

   483 

   484 		EAP_TRACE_DATA_DEBUG(

   485 			m_am_tools,

   486 			TRACE_FLAGS_DEFAULT,

   487 			(EAPL("CHECKCODE sorted payload array"),

   488 			 p_aka_payloads->get_all_payloads()->get_data(p_aka_payloads->get_all_payloads()->get_data_length()),

   489 			 p_aka_payloads->get_all_payloads()->get_data_length()));

   490 

   491 		for (u32_t ind = 0ul; ind < m_all_payloads.get_object_count(); ind++)

   492 		{

   493 			eap_variable_data_c * const payloads =  m_all_payloads.get_object(ind);

   494 			if (payloads != 0)

   495 			{

   496 				if (payloads->compare(p_aka_payloads->get_all_payloads()) == 0)

   497 				{

   498 					// Message with these payloads have been seen already.

   499 					EAP_TRACE_DEBUG(

   500 						m_am_tools, 

   501 						TRACE_FLAGS_DEFAULT|TRACE_TEST_VECTORS, 

   502 						(EAPL("WARNING: message with these payloads have been seen already.\n")));

   503 					EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   504 					return EAP_STATUS_RETURN(m_am_tools, eap_status_already_exists);

   505 				}

   506 			}

   507 		}

   508 

   509 		// Save this payload array.

   510 		eap_variable_data_c * copy_attributes = p_aka_payloads->get_all_payloads()->copy();

   511 		if (copy_attributes == 0)

   512 		{

   513 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   514 			return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   515 		}

   516 

   517 		status = m_all_payloads.add_object(copy_attributes, true);

   518 		if (status != eap_status_ok)

   519 		{

   520 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   521 			return EAP_STATUS_RETURN(m_am_tools, status);

   522 		}

   523 	}

   524 

   525 

   526 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   527 	return EAP_STATUS_RETURN(m_am_tools, eap_status_ok);

   528 }

   529 

   530 //--------------------------------------------------

   531 

   532 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_save_message_client(

   533 	const void * const data,

   534 	const u32_t data_length,

   535 	aka_payloads_c * const p_aka_payloads)

   536 {

   537 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   538 

   539 	eap_status_e status = eap_status_process_general_error;

   540 

   541 	if (p_aka_payloads != 0)

   542 	{

   543 		// Client received a message.

   544 

   545 		status = checkcode_verify_payloads(p_aka_payloads);

   546 		if (status == eap_status_ok)

   547 		{

   548 			// This is a new received message with new payloads.

   549 			status = checkcode_update_saved_message();

   550 

   551 		}

   552 		else

   553 		{

   554 			// Received message is duplicate.

   555 		}

   556 

   557 		EAP_TRACE_DATA_DEBUG(m_am_tools, TRACE_FLAGS_DEFAULT, (EAPL("CHECKCODE saved data client"),

   558 			data,

   559 			data_length));

   560 

   561 		status = m_checkcode_saved_message.set_copy_of_buffer(

   562 			data,

   563 			data_length);

   564 	}

   565 	else

   566 	{

   567 		// Client sends a response message.

   568 

   569 		EAP_TRACE_DATA_DEBUG(m_am_tools, TRACE_FLAGS_DEFAULT, (EAPL("CHECKCODE saved data client"),

   570 			data,

   571 			data_length));

   572 

   573 		status = m_checkcode_saved_message.add_data(

   574 			data,

   575 			data_length);

   576 	}

   577 

   578 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   579 	return EAP_STATUS_RETURN(m_am_tools, status);

   580 }

   581 

   582 //--------------------------------------------------

   583 

   584 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_save_message_server(

   585 	const void * const data,

   586 	const u32_t data_length)

   587 {

   588 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   589 

   590 	EAP_TRACE_DATA_DEBUG(m_am_tools, TRACE_FLAGS_DEFAULT, (EAPL("CHECKCODE saved data server"),

   591 		data,

   592 		data_length));

   593 

   594 	eap_status_e status = m_checkcode_saved_message.set_copy_of_buffer(

   595 		data,

   596 		data_length);

   597 

   598 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   599 	return EAP_STATUS_RETURN(m_am_tools, status);

   600 }

   601 

   602 //--------------------------------------------------

   603 

   604 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_update_saved_message()

   605 {

   606 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   607 

   608 	eap_status_e status = eap_status_ok;

   609 

   610 	if (m_checkcode_saved_message.get_is_valid_data() == true

   611 		&& m_checkcode_saved_message.get_data_length() > 0UL)

   612 	{

   613 		status = checkcode_update(

   614 			m_checkcode_saved_message.get_data(m_checkcode_saved_message.get_data_length()),

   615 			m_checkcode_saved_message.get_data_length());

   616 

   617 		m_checkcode_saved_message.reset();

   618 	}

   619 

   620 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   621 	return EAP_STATUS_RETURN(m_am_tools, status);

   622 }

   623 

   624 //--------------------------------------------------

   625 

   626 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_update(

   627 	const void * const data,

   628 	const u32_t data_length)

   629 {

   630 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   631 

   632 	EAP_TRACE_DATA_DEBUG(m_am_tools, TRACE_FLAGS_DEFAULT, (EAPL("CHECKCODE data"),

   633 		data,

   634 		data_length));

   635 

   636 	++m_checkcode_update_count;

   637 

   638 	eap_status_e status = m_checkcode.hash_update(

   639 		data,

   640 		data_length);

   641 

   642 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   643 	return EAP_STATUS_RETURN(m_am_tools, status);

   644 }

   645 

   646 //--------------------------------------------------

   647 

   648 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_final(

   649 	eap_variable_data_c * const digest)

   650 {

   651 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   652 

   653 	eap_status_e status = checkcode_update_saved_message();

   654 	if (status != eap_status_ok)

   655 	{

   656 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   657 		return EAP_STATUS_RETURN(m_am_tools, status);

   658 	}

   659 

   660 	u32_t digest_length = m_checkcode.get_digest_length();

   661 

   662 	status = digest->init(digest_length);

   663 	if (status != eap_status_ok)

   664 	{

   665 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   666 		return EAP_STATUS_RETURN(m_am_tools, status);

   667 	}

   668 	digest->set_is_valid();

   669 	digest->set_data_length(digest_length);

   670 

   671 	if (m_checkcode_update_count == 0UL)

   672 	{

   673 		// No AKA-Identity messages were sent.

   674 		digest->set_data_length(0UL);

   675 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   676 		return EAP_STATUS_RETURN(m_am_tools, eap_status_ok);

   677 	}

   678 

   679 	// Create a copy of crypto_sha1_c object.

   680 	// This will save the HASH for later use.

   681 	abs_crypto_hash_algorithm_c * const copy_checkcode = m_checkcode.copy();

   682 	eap_automatic_variable_c<abs_crypto_hash_algorithm_c> automatic_copy_checkcode(m_am_tools, copy_checkcode);

   683 

   684 	if (copy_checkcode == 0

   685 		|| copy_checkcode->get_is_valid() == false)

   686 	{

   687 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   688 		return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   689 	}

   690 

   691 	status = copy_checkcode->hash_final(

   692 		digest->get_data(digest_length),

   693 		&digest_length);

   694 	if (status != eap_status_ok)

   695 	{

   696 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   697 		return EAP_STATUS_RETURN(m_am_tools, status);

   698 	}

   699 

   700 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   701 	return EAP_STATUS_RETURN(m_am_tools, status);

   702 }

   703 

   704 //--------------------------------------------------

   705 

   706 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::checkcode_verify(

   707 	const eap_variable_data_c * const received_digest)

   708 {

   709 	// Verify AT_CHECKCODE.

   710 	eap_variable_data_c checkcode_digest(m_am_tools);

   711 

   712 	if (checkcode_digest.get_is_valid() == false)

   713 	{

   714 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   715 		return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   716 	}

   717 

   718 	eap_status_e status = checkcode_final(

   719 		&checkcode_digest);

   720 	if (status != eap_status_ok)

   721 	{

   722 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   723 		return EAP_STATUS_RETURN(m_am_tools, status);

   724 	}

   725 

   726 	if ((m_checkcode_update_count != 0 && received_digest->get_data_length() == 0)

   727 		|| (m_checkcode_update_count == 0 && received_digest->get_data_length() != 0)

   728 		|| checkcode_digest.compare(received_digest) != 0)

   729 	{

   730 		EAP_TRACE_DEBUG(

   731 			m_am_tools, 

   732 			TRACE_FLAGS_DEFAULT|TRACE_TEST_VECTORS, 

   733 			(EAPL("ERROR: EAP_type_AKA: %s, eap_type_aka_c::checkcode_verify(): CHECKCODE failed, m_checkcode_update_count %d, state %s\n"),

   734 			 (m_is_client == true) ? "client": "server",

   735 			 m_checkcode_update_count,

   736 			 get_state_string()));

   737 

   738 		EAP_TRACE_DATA_DEBUG(m_am_tools, TRACE_FLAGS_DEFAULT, (EAPL("   local digest"),

   739 			checkcode_digest.get_data(checkcode_digest.get_data_length()),

   740 			checkcode_digest.get_data_length()));

   741 

   742 		EAP_TRACE_DATA_DEBUG(m_am_tools, TRACE_FLAGS_DEFAULT, (EAPL("received digest"),

   743 			received_digest->get_data(received_digest->get_data_length()),

   744 			received_digest->get_data_length()));

   745 

   746 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   747 		return EAP_STATUS_RETURN(m_am_tools, eap_status_authentication_failure);

   748 	}

   749 	else

   750 	{

   751 		EAP_TRACE_DEBUG(

   752 			m_am_tools, 

   753 			TRACE_FLAGS_DEFAULT|TRACE_TEST_VECTORS, 

   754 			(EAPL("EAP_type_AKA: %s, eap_type_aka_c::checkcode_verify(): CHECKCODE OK, state %s\n"),

   755 			 (m_is_client == true) ? "client": "server",

   756 			 get_state_string()));

   757 	}

   758 

   759 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   760 	return EAP_STATUS_RETURN(m_am_tools, eap_status_ok);

   761 }

   762 

   763 //--------------------------------------------------

   764 

   765 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::send_final_notification()

   766 {

   767 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   768 

   769 	if (m_is_valid == true)

   770 	{

   771 		if (get_authentication_finished_successfully() == false)

   772 		{

   773 			EAP_TRACE_DEBUG(

   774 				m_am_tools, 

   775 				TRACE_FLAGS_DEFAULT|TRACE_TEST_VECTORS, 

   776 				(EAPL("ERROR: EAP_type_AKA: %s, authentication FAILED, state %s\n"),

   777 				 (m_is_client == true) ? "client": "server",

   778 				 get_state_string()));

   779 

   780 			if (m_aka_notification_code != eap_aka_notification_none)

   781 			{

   782 				// We have received EAP-Request/AKA notification, we pass the received code to the adaptation module.

   783 				(void) m_am_type_aka->handle_aka_notification(m_aka_notification_code);

   784 			}

   785 

   786 			set_state(eap_type_aka_state_failure);

   787 

   788 			// Notifies the lower level of unsuccessfull authentication.

   789 			eap_state_notification_c notification(

   790 				m_am_tools,

   791 				get_send_network_id(),

   792 				m_is_client,

   793 				eap_state_notification_eap,

   794 				eap_protocol_layer_eap,

   795 				eap_type_aka,

   796 				eap_state_none,

   797 				eap_state_authentication_terminated_unsuccessfully,

   798 				get_last_eap_identifier(),

   799 				false);

   800 

   801 			notification.set_authentication_error(eap_status_authentication_failure);

   802 

   803 			state_notification(&notification);

   804 

   805 			// Indicate AKA AM authentication finish.

   806 			m_am_type_aka->authentication_finished(false, m_authentication_type, m_identity_type);

   807 		}

   808 	}

   809 

   810 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   811 	return EAP_STATUS_RETURN(m_am_tools, eap_status_ok);

   812 }

   813 

   814 //--------------------------------------------------

   815 

   816 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::add_variable_payload(

   817 	aka_header_c * const aka,

   818 	const u32_t aka_buffer_length,

   819 	const u32_t eap_header_size,

   820 	u32_t * const aka_data_offset,

   821 	u32_t * const aka_data_free,

   822 	u32_t * const packet_buffer_free,

   823 	u32_t * const packet_buffer_offset,

   824 	const eap_variable_data_c * const data_payload,

   825 	const aka_payload_AT_type_e data_payload_type)

   826 {

   827 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   828 

   829 	eap_status_e status = eap_status_process_general_error;

   830 	u16_t data_length = 0u;

   831 

   832 	if (data_payload != 0)

   833 	{

   834 		if (data_payload->get_is_valid_data() == false)

   835 		{

   836 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   837 			return EAP_STATUS_RETURN(m_am_tools, eap_status_illegal_data_payload);

   838 		}

   839 

   840 		if (data_payload->get_data_length() > aka_payload_AT_header_c::get_max_payload_data_length())

   841 		{

   842 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   843 			return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   844 		}

   845 

   846 		data_length = static_cast<u16_t>(data_payload->get_data_length());

   847 	}

   848 	else

   849 	{

   850 		// No data.

   851 		data_length = 0u;

   852 	}

   853 

   854 	aka_payload_AT_header_c gp_data(

   855 		m_am_tools,

   856 		aka->get_data_offset(*aka_data_offset, *aka_data_free),

   857 		*aka_data_free);

   858 

   859 	if (gp_data.get_is_valid() == false)

   860 	{

   861 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   862 		return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   863 	}

   864 

   865 	gp_data.reset_header(data_length);

   866 

   867 	if (data_length > 0u)

   868 	{

   869 		u8_t *payload_buffer = gp_data.get_data(data_length);

   870 

   871 		if (payload_buffer == 0)

   872 		{

   873 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   874 			return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   875 		}

   876 

   877 		m_am_tools->memmove(

   878 			payload_buffer,

   879 			data_payload->get_data(data_payload->get_data_length()),

   880 			data_payload->get_data_length());

   881 	}

   882 

   883 	gp_data.set_data_length(data_length);

   884 

   885 	status = eap_status_ok;

   886 

   887 

   888 	gp_data.set_current_payload(data_payload_type);

   889 

   890 	update_payload_indexes(

   891 		aka_buffer_length,

   892 		eap_header_size,

   893 		gp_data.get_header_length()+gp_data.get_data_length(),

   894 		aka_data_offset,

   895 		aka_data_free,

   896 		packet_buffer_offset,

   897 		packet_buffer_free);

   898 

   899 	EAP_AKA_TRACE_PAYLOAD("Payload added", &gp_data);

   900 

   901 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   902 	return EAP_STATUS_RETURN(m_am_tools, status);

   903 }

   904 

   905 //--------------------------------------------------

   906 

   907 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::add_RES_payload(

   908 	aka_header_c * const aka,

   909 	const u32_t aka_buffer_length,

   910 	const u32_t eap_header_size,

   911 	u32_t * const aka_data_offset,

   912 	u32_t * const aka_data_free,

   913 	u32_t * const packet_buffer_free,

   914 	u32_t * const packet_buffer_offset,

   915 	const eap_variable_data_c * const RES,

   916 	const aka_payload_AT_type_e data_payload_type)

   917 {

   918 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

   919 

   920 	eap_status_e status = eap_status_process_general_error;

   921 	u16_t data_length = 0u;

   922 

   923 	if (RES != 0)

   924 	{

   925 		if (RES->get_is_valid_data() == false)

   926 		{

   927 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   928 			return EAP_STATUS_RETURN(m_am_tools, eap_status_illegal_data_payload);

   929 		}

   930 

   931 		if (RES->get_data_length() > aka_payload_AT_header_c::get_max_payload_data_length())

   932 		{

   933 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   934 			return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   935 		}

   936 

   937 		data_length = static_cast<u16_t>(RES->get_data_length());

   938 	}

   939 	else

   940 	{

   941 		// No data.

   942 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   943 		return EAP_STATUS_RETURN(m_am_tools, eap_status_illegal_parameter);

   944 	}

   945 

   946 	u16_t padding_zero_count = 0u;

   947 	// Add padding zero octets

   948 	if ((data_length % 4u) != 0)

   949 	{

   950 		padding_zero_count = 4u - (data_length % 4u);

   951 	}

   952 

   953 	if (RES->get_data_length()+padding_zero_count

   954 		> aka_payload_AT_header_c::get_max_payload_data_length())

   955 	{

   956 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   957 		return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   958 	}

   959 

   960 	if (RES->get_data_length()+padding_zero_count > *packet_buffer_free)

   961 	{

   962 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   963 		return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   964 	}

   965 

   966 	aka_payload_AT_header_c gp_data(

   967 		m_am_tools,

   968 		aka->get_data_offset(*aka_data_offset, *aka_data_free),

   969 		*aka_data_free);

   970 

   971 	if (gp_data.get_is_valid() == false)

   972 	{

   973 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   974 		return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   975 	}

   976 

   977 	gp_data.reset_header(data_length+padding_zero_count);

   978 

   979 	{

   980 		u8_t *payload_buffer = gp_data.get_data(data_length+padding_zero_count);

   981 

   982 		if (payload_buffer == 0)

   983 		{

   984 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

   985 			return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

   986 		}

   987 

   988 		m_am_tools->memmove(

   989 			payload_buffer,

   990 			RES->get_data(data_length),

   991 			data_length);

   992 

   993 		if (padding_zero_count > 0u)

   994 		{

   995 			m_am_tools->memset(

   996 				payload_buffer+data_length,

   997 				0,

   998 				padding_zero_count);

   999 		}

  1000 	}

  1001 

  1002 	// Note the reserved field includes the actual length of RES in bits in network order.

  1003 	// It is always multiple of 8 bits.

  1004 	gp_data.set_reserved(static_cast<u16_t>(data_length*8ul));

  1005 

  1006 	gp_data.set_data_length(data_length+padding_zero_count);

  1007 

  1008 	status = eap_status_ok;

  1009 

  1010 

  1011 	gp_data.set_current_payload(data_payload_type);

  1012 

  1013 	update_payload_indexes(

  1014 		aka_buffer_length,

  1015 		eap_header_size,

  1016 		gp_data.get_header_length()+gp_data.get_data_length(),

  1017 		aka_data_offset,

  1018 		aka_data_free,

  1019 		packet_buffer_offset,

  1020 		packet_buffer_free);

  1021 

  1022 	EAP_AKA_TRACE_PAYLOAD("Payload added", &gp_data);

  1023 

  1024 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

  1025 	return EAP_STATUS_RETURN(m_am_tools, status);

  1026 }

  1027 

  1028 //--------------------------------------------------

  1029 

  1030 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::add_AUTS_payload(

  1031 	aka_header_c * const aka,

  1032 	const u32_t aka_buffer_length,

  1033 	const u32_t eap_header_size,

  1034 	u32_t * const aka_data_offset,

  1035 	u32_t * const aka_data_free,

  1036 	u32_t * const packet_buffer_free,

  1037 	u32_t * const packet_buffer_offset,

  1038 	const eap_variable_data_c * const AUTS,

  1039 	const aka_payload_AT_type_e data_payload_type)

  1040 {

  1041 	EAP_TRACE_BEGIN(m_am_tools, TRACE_FLAGS_DEFAULT);

  1042 

  1043 	eap_status_e status = eap_status_process_general_error;

  1044 	u16_t data_length = 0u;

  1045 

  1046 	if (AUTS != 0)

  1047 	{

  1048 		if (AUTS->get_is_valid_data() == false)

  1049 		{

  1050 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

  1051 			return EAP_STATUS_RETURN(m_am_tools, eap_status_illegal_data_payload);

  1052 		}

  1053 

  1054 		if (AUTS->get_data_length() > aka_payload_AT_header_c::get_max_payload_data_length())

  1055 		{

  1056 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

  1057 			return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

  1058 		}

  1059 

  1060 		if (AUTS->get_data_length() >= 2ul)

  1061 		{

  1062 			// NOTE first 2 bytes are in reserved field.

  1063 			data_length = static_cast<u16_t>(AUTS->get_data_length() - 2ul);

  1064 		}

  1065 		else

  1066 		{

  1067 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

  1068 			return EAP_STATUS_RETURN(m_am_tools, eap_status_buffer_too_short);

  1069 		}

  1070 	}

  1071 	else

  1072 	{

  1073 		// No data.

  1074 		data_length = 0u;

  1075 	}

  1076 

  1077 	aka_payload_AT_header_c gp_data(

  1078 		m_am_tools,

  1079 		aka->get_data_offset(*aka_data_offset, *aka_data_free),

  1080 		*aka_data_free);

  1081 

  1082 	if (gp_data.get_is_valid() == false)

  1083 	{

  1084 		EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

  1085 		return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

  1086 	}

  1087 

  1088 	gp_data.reset_header(data_length);

  1089 

  1090 	if (data_length > 0u)

  1091 	{

  1092 		u8_t *payload_buffer = gp_data.get_reserved_pointer(AUTS->get_data_length());

  1093 

  1094 		if (payload_buffer == 0)

  1095 		{

  1096 			EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

  1097 			return EAP_STATUS_RETURN(m_am_tools, eap_status_allocation_error);

  1098 		}

  1099 

  1100 		// The first 2 bytes are in reserved field.

  1101 		m_am_tools->memmove(

  1102 			payload_buffer,

  1103 			AUTS->get_data(AUTS->get_data_length()),

  1104 			AUTS->get_data_length());

  1105 	}

  1106 

  1107 	gp_data.set_data_length(data_length);

  1108 

  1109 	status = eap_status_ok;

  1110 

  1111 

  1112 	gp_data.set_current_payload(data_payload_type);

  1113 

  1114 	update_payload_indexes(

  1115 		aka_buffer_length,

  1116 		eap_header_size,

  1117 		gp_data.get_header_length()+gp_data.get_data_length(),

  1118 		aka_data_offset,

  1119 		aka_data_free,

  1120 		packet_buffer_offset,

  1121 		packet_buffer_free);

  1122 

  1123 	EAP_AKA_TRACE_PAYLOAD("Payload added", &gp_data);

  1124 

  1125 	EAP_TRACE_END(m_am_tools, TRACE_FLAGS_DEFAULT);

  1126 	return EAP_STATUS_RETURN(m_am_tools, status);

  1127 }

  1128 

  1129 //--------------------------------------------------

  1130 

  1131 // Note the specification of IMSI payload is not same as pseudonym.

  1132 // IMSI and pseudonym specifications should be integrated.

  1133 EAP_FUNC_EXPORT eap_status_e eap_type_aka_c::add_pseudonym_or_imsi_payload(

  1134 	aka_header_c * const aka,