bool TMsg::loadAuthKey() {
unsigned len = 0;
char * ptr = getAAAKey(SPI_, &len);
AuthKey_.resize(len);
memcpy(&AuthKey_[0], ptr, len);
free(ptr);
return (len>0);
}
int TMsg::setAuthInfoKey() {
#ifndef MOD_DISABLE_AUTH
// key = HMAC-SHA1 (AAA-key, {Key Generation Nonce || client identifier})
char *KeyGenNonce_ClientID;
char * AAAkey;
uint32_t AAAkeyLen;
if (!KeyGenNonce)
KeyGenNonceLen = 16;
/// @todo set proper size of Client ID (DUID?) (here and in hmac_sha())
KeyGenNonce_ClientID = new char[KeyGenNonceLen+128];
AAAkey = getAAAKey(AAASPI, &AAAkeyLen);
std::string fname = getAAAKeyFilename(AAASPI);
// error, no file?
if (!AAAkey) {
Log(Error) << "Auth: Unable to load key file for SPI " << std::hex << AAASPI <<": " << fname
<< " not found." << std::dec << LogEnd;
AuthInfoKey = NULL;
delete [] KeyGenNonce_ClientID;
return -1;
}
Log(Debug) << "Auth: AAA-key loaded from file " << fname << "." << LogEnd;
PrintHex("Auth: AAA-key: ", AAAkey, AAAkeyLen);
memset(KeyGenNonce_ClientID, 0, KeyGenNonceLen+128);
if (KeyGenNonce)
memcpy(KeyGenNonce_ClientID, KeyGenNonce, KeyGenNonceLen);
/// @todo fill also with ClientID (DUID?)
PrintHex("Auth: Infokey: using KeyGenNonce+CliendID: ", KeyGenNonce_ClientID, KeyGenNonceLen+128);
Log(Debug) << "Auth: AAAKeyLen: " << AAAkeyLen << ", KeyGenNonceLen: " << KeyGenNonceLen << LogEnd;
AuthInfoKey = new char[AUTHKEYLEN];
hmac_sha(KeyGenNonce_ClientID, KeyGenNonceLen+128, AAAkey, AAAkeyLen, (char *)AuthInfoKey, 1);
PrintHex("Auth: AuthInfoKey (calculated): ", AuthInfoKey, AUTHKEYLEN);
delete [] KeyGenNonce_ClientID;
#endif
return 0;
}