Project

General

Profile

Support #2497

Set up SIM cards with auth algo other than XOR

Added by neels 16 days ago. Updated 15 days ago.

Status:
New
Priority:
Normal
Assignee:
osmo-gsm-tester
Target version:
-
Start date:
09/06/2017
Due date:
% Done:

0%

Spec Reference:

Description

It appears all SIM cards currently in the osmo-gsm-tester rnd and prod setup are configured to use XOR auth.
(We saw auth failing, but succeeding when setting the HLR to XOR.)

IIUC XOR is rather unusual, and we may leave one of them at XOR, but should rather have more diverse auth algos in place.
Best would be one using Milenage (the 2G variant), one using comp128v1, one using comp128v3.

Another question is: which modems should get what. I think the sierra ones should go for Milenage and comp128v3, then maybe gobi XOR and the EC20 at comp128v1?

We then need to adjust the resources.conf and can set up different auth tests for the various algos.

History

#1 Updated by neels 16 days ago

The important part is that we test both UMTS auth = 2G-Milenage, as well as the old GSM plain way, say comp128v3.
If comp128v3 works in the osmo-gsm-tester and the other algos pass the 'make check' tests, there is no reason why those should fail in the osmo-gsm-tester.

Note: the 2G-Milenage will only work with the new VLR, i.e. only in the AoIP tests.

#2 Updated by laforge 16 days ago

I would argue we should ideally test:
  • 2G auth with classic 2G algorithm (COMP128x) over 2G bearer
  • 2G auth with classic 2G algorithm (COMP128x) over 3G bearer, i.e. SIM
    Card with no UICC application present (sysm-usim-util can remove it)
  • 3G auth with MILENAGE over 3G bearer
  • 2G auth derived from MILENAGE over any bearer (shouldn't matter).

I'm not sure if this must be done as part of osmo-gsm-tester, as
(without using remote sim features) we cannot easily swap sim cards
and/or reprogram them on the fly.

This should be possible to test with osmo-bts-virtual + osmocom-bb, or
even by some more direct way where a small sim-card using utility
program talks BSSAP to the MSC. Whatever is the method of least effort.

BTS+BSC have no influence on the authentication, it's all in
MSC/VLR/HLR, so I don't think it's important to do this over real or
virtual radio interface.

Regarding 3G bearer: Do we yet have tickets for osmo-gsm-tester to
include 3G support testing with e.g. nano3G + osmo-hnbgw ?

#3 Updated by neels 16 days ago

laforge wrote:

I would argue we should ideally test:

[...]

I'm not sure if this must be done as part of osmo-gsm-tester, as

ok, so having XOR in the gsm-tester doesn't matter?
I think I'd like to have at least a little diversity in auth algos there, because we can.

Regarding 3G bearer: Do we yet have tickets for osmo-gsm-tester to
include 3G support testing with e.g. nano3G + osmo-hnbgw ?

no, and no focus on that so far, but makes sense increasingly. Let's get settled with the new repositories first and take it from there...

#4 Updated by laforge 15 days ago

Hi Neels,

On Thu, Sep 07, 2017 at 04:57:56AM +0000, neels [REDMINE] wrote:

I'm not sure if this must be done as part of osmo-gsm-tester, as

ok, so having XOR in the gsm-tester doesn't matter?

I don't think so, at least for sure not if we implement related testing
by some other means. As indicated, only SIM card and MSC+HLR (or:
SGSN+HLR) are involved in this anyway. It should be rather simple to
"fake" a LU / IMSI ATTACH on the A, Iu or Gb interface to trigger related
authentication transaction from a machine with a few SIM card readers
attached. This looks much easier to really test all relevant
configurations than exploding the number of (lengthy) tests on osmo-gsm-tester
and to add so many different SIM variants + related modems.

I think I'd like to have at least a little diversity in auth algos there, because we can.

Sure, if you'd like and if it doesn't significantly complicate the setup or configuration?

#5 Updated by pespin 15 days ago

I think I'd like to have at least a little diversity in auth algos there, because we can.

Sure, if you'd like and if it doesn't significantly complicate the setup or configuration?

It should work transparently as we already have support to subscribe each modem based on its auth algo set in the configuration file. We can even pick a modem based on its auth algo configured in the SIM card. So it's mostly spending time on changing the SIM information (never done that but I've been told is easy), then we test them for free with other tests, even if we don't spend time testing the feature explicitly.

Also available in: Atom PDF