EAP server: Add tls_session_lifetime configuration

This new hostapd configuration parameter can be used to enable TLS session resumption. This commit adds the configuration parameter through the configuration system and RADIUS/EAPOL/EAP server components. The actual changes to enable session caching will be addressed in followup commits. Signed-off-by: Jouni Malinen <j@w1.fi>
2015-08-23 21:26:39 +03:00 · 2015-08-23 21:26:39 +03:00 · 681e199dfb
commit 681e199dfb
parent 3f1b792fbe
13 changed files with 28 additions and 1 deletions
--- a/src/radius/radius_server.c
+++ b/src/radius/radius_server.c
@ -265,6 +265,8 @@ struct radius_server_data {

 	struct dl_list erp_keys; /* struct eap_server_erp_key */

+	unsigned int tls_session_lifetime;
+
 	/**
 	 * wps - Wi-Fi Protected Setup context
 	 *
@ -688,6 +690,7 @@ radius_server_get_new_session(struct radius_server_data *data,
 	eap_conf.server_id = (const u8 *) data->server_id;
 	eap_conf.server_id_len = os_strlen(data->server_id);
 	eap_conf.erp = data->erp;
+	eap_conf.tls_session_lifetime = data->tls_session_lifetime;
 	radius_server_testing_options(sess, &eap_conf);
 	sess->eap = eap_server_sm_init(sess, &radius_server_eapol_cb,
 				       &eap_conf);
@ -1745,6 +1748,7 @@ radius_server_init(struct radius_server_conf *conf)
 	}
 	data->erp = conf->erp;
 	data->erp_domain = conf->erp_domain;
+	data->tls_session_lifetime = conf->tls_session_lifetime;

 	if (conf->subscr_remediation_url) {
 		data->subscr_remediation_url =
--- a/src/radius/radius_server.h
+++ b/src/radius/radius_server.h
@ -170,6 +170,8 @@ struct radius_server_conf {

 	const char *erp_domain;

+	unsigned int tls_session_lifetime;
+
 	/**
 	 * wps - Wi-Fi Protected Setup context
 	 *