229 	char cmd[128], val[13], *pos;  in db_update_milenage_sqn()  local
234 	pos = val;  in db_update_milenage_sqn()
235 	pos += wpa_snprintf_hex(pos, sizeof(val), m->sqn, 6);  in db_update_milenage_sqn()
236 	*pos = '\0';  in db_update_milenage_sqn()
278 	char buf[200], *pos, *pos2;  in read_gsm_triplets()  local
299 		pos = buf;  in read_gsm_triplets()
300 		while (*pos != '\0' && *pos != '\n')  in read_gsm_triplets()
301 			pos++;  in read_gsm_triplets()
302 		if (*pos == '\n')  in read_gsm_triplets()
303 			*pos = '\0';  in read_gsm_triplets()
304 		pos = buf;  in read_gsm_triplets()
305 		if (*pos == '\0')  in read_gsm_triplets()
316 		pos = str_token(buf, ":", &pos2);  in read_gsm_triplets()
317 		if (!pos || os_strlen(pos) >= sizeof(g->imsi)) {  in read_gsm_triplets()
322 		os_strlcpy(g->imsi, pos, sizeof(g->imsi));  in read_gsm_triplets()
325 		pos = str_token(buf, ":", &pos2);  in read_gsm_triplets()
326 		if (!pos || os_strlen(pos) != 16 || hexstr2bin(pos, g->kc, 8)) {  in read_gsm_triplets()
333 		pos = str_token(buf, ":", &pos2);  in read_gsm_triplets()
334 		if (!pos || os_strlen(pos) != 8 ||  in read_gsm_triplets()
335 		    hexstr2bin(pos, g->sres, 4)) {  in read_gsm_triplets()
342 		pos = str_token(buf, ":", &pos2);  in read_gsm_triplets()
343 		if (!pos || os_strlen(pos) != 32 ||  in read_gsm_triplets()
344 		    hexstr2bin(pos, g->_rand, 16)) {  in read_gsm_triplets()
390 	char buf[200], *pos, *pos2;  in read_milenage()  local
411 		pos = buf;  in read_milenage()
412 		while (*pos != '\0' && *pos != '\n')  in read_milenage()
413 			pos++;  in read_milenage()
414 		if (*pos == '\n')  in read_milenage()
415 			*pos = '\0';  in read_milenage()
416 		pos = buf;  in read_milenage()
417 		if (*pos == '\0')  in read_milenage()
428 		pos = str_token(buf, " ", &pos2);  in read_milenage()
429 		if (!pos || os_strlen(pos) >= sizeof(m->imsi)) {  in read_milenage()
434 		os_strlcpy(m->imsi, pos, sizeof(m->imsi));  in read_milenage()
437 		pos = str_token(buf, " ", &pos2);  in read_milenage()
438 		if (!pos || os_strlen(pos) != 32 ||  in read_milenage()
439 		    hexstr2bin(pos, m->ki, 16)) {  in read_milenage()
446 		pos = str_token(buf, " ", &pos2);  in read_milenage()
447 		if (!pos || os_strlen(pos) != 32 ||  in read_milenage()
448 		    hexstr2bin(pos, m->opc, 16)) {  in read_milenage()
455 		pos = str_token(buf, " ", &pos2);  in read_milenage()
456 		if (!pos || os_strlen(pos) != 4 || hexstr2bin(pos, m->amf, 2)) {  in read_milenage()
463 		pos = str_token(buf, " ", &pos2);  in read_milenage()
464 		if (!pos || os_strlen(pos) != 12 ||  in read_milenage()
465 		    hexstr2bin(pos, m->sqn, 6)) {  in read_milenage()
471 		pos = str_token(buf, " ", &pos2);  in read_milenage()
472 		if (pos) {  in read_milenage()
473 			m->res_len = atoi(pos);  in read_milenage()
499 	char name[500], buf[500], *pos;  in update_milenage_file()  local
522 		pos = strchr(buf, ' ');  in update_milenage_file()
523 		if (buf[0] == '#' || pos == NULL || pos - buf >= 20)  in update_milenage_file()
526 		imsi_len = pos - buf;  in update_milenage_file()
537 		pos = buf;  in update_milenage_file()
538 		pos += snprintf(pos, end - pos, "%s ", m->imsi);  in update_milenage_file()
539 		pos += wpa_snprintf_hex(pos, end - pos, m->ki, 16);  in update_milenage_file()
540 		*pos++ = ' ';  in update_milenage_file()
541 		pos += wpa_snprintf_hex(pos, end - pos, m->opc, 16);  in update_milenage_file()
542 		*pos++ = ' ';  in update_milenage_file()
543 		pos += wpa_snprintf_hex(pos, end - pos, m->amf, 2);  in update_milenage_file()
544 		*pos++ = ' ';  in update_milenage_file()
545 		pos += wpa_snprintf_hex(pos, end - pos, m->sqn, 6);  in update_milenage_file()
546 		*pos++ = '\n';  in update_milenage_file()
592 	char *pos;  in sim_req_auth()  local
599 	pos = strchr(imsi, ' ');  in sim_req_auth()
600 	if (pos) {  in sim_req_auth()
601 		*pos++ = '\0';  in sim_req_auth()
602 		max_chal = atoi(pos);  in sim_req_auth()
665 	char *pos, *rpos, *rend;  in gsm_auth_req()  local
670 	pos = os_strchr(imsi, ' ');  in gsm_auth_req()
671 	if (!pos)  in gsm_auth_req()
673 	*pos++ = '\0';  in gsm_auth_req()
686 			if (hexstr2bin(pos, _rand, 16) != 0)  in gsm_auth_req()
693 			pos += 16 * 2;  in gsm_auth_req()
694 			if (*pos != ':')  in gsm_auth_req()
696 			pos++;  in gsm_auth_req()
737 	char *pos, *end;  in aka_req_auth()  local
784 	pos = resp;  in aka_req_auth()
786 	ret = snprintf(pos, end - pos, "AKA-RESP-AUTH %s ", imsi);  in aka_req_auth()
787 	if (ret < 0 || ret >= end - pos)  in aka_req_auth()
789 	pos += ret;  in aka_req_auth()
791 		ret = snprintf(pos, end - pos, "FAILURE");  in aka_req_auth()
792 		if (ret < 0 || ret >= end - pos)  in aka_req_auth()
794 		pos += ret;  in aka_req_auth()
797 	pos += wpa_snprintf_hex(pos, end - pos, _rand, EAP_AKA_RAND_LEN);  in aka_req_auth()
798 	*pos++ = ' ';  in aka_req_auth()
799 	pos += wpa_snprintf_hex(pos, end - pos, autn, EAP_AKA_AUTN_LEN);  in aka_req_auth()
800 	*pos++ = ' ';  in aka_req_auth()
801 	pos += wpa_snprintf_hex(pos, end - pos, ik, EAP_AKA_IK_LEN);  in aka_req_auth()
802 	*pos++ = ' ';  in aka_req_auth()
803 	pos += wpa_snprintf_hex(pos, end - pos, ck, EAP_AKA_CK_LEN);  in aka_req_auth()
804 	*pos++ = ' ';  in aka_req_auth()
805 	pos += wpa_snprintf_hex(pos, end - pos, res, res_len);  in aka_req_auth()