2100a768bf
Previous version could have allowed a broken client to complete WPA (or WPA2) authentication even if the selected proto was not enabled in hostapd configuration.
281 lines
9.2 KiB
C
281 lines
9.2 KiB
C
/*
|
|
* hostapd - IEEE 802.11i-2004 / WPA Authenticator
|
|
* Copyright (c) 2004-2007, Jouni Malinen <j@w1.fi>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License version 2 as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* Alternatively, this software may be distributed under the terms of BSD
|
|
* license.
|
|
*
|
|
* See README and COPYING for more details.
|
|
*/
|
|
|
|
#ifndef WPA_AUTH_H
|
|
#define WPA_AUTH_H
|
|
|
|
#include "eapol_common.h"
|
|
#include "wpa_common.h"
|
|
|
|
#ifdef _MSC_VER
|
|
#pragma pack(push, 1)
|
|
#endif /* _MSC_VER */
|
|
|
|
/* IEEE Std 802.11r-2008, 11A.10.3 - Remote request/response frame definition
|
|
*/
|
|
struct ft_rrb_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_REQUEST/FT_PACKET_RESPONSE */
|
|
u16 action_length; /* little endian length of action_frame */
|
|
u8 ap_address[ETH_ALEN];
|
|
/*
|
|
* Followed by action_length bytes of FT Action frame (from Category
|
|
* field to the end of Action Frame body.
|
|
*/
|
|
} STRUCT_PACKED;
|
|
|
|
#define RSN_REMOTE_FRAME_TYPE_FT_RRB 1
|
|
|
|
#define FT_PACKET_REQUEST 0
|
|
#define FT_PACKET_RESPONSE 1
|
|
/* Vendor-specific types for R0KH-R1KH protocol; not defined in 802.11r */
|
|
#define FT_PACKET_R0KH_R1KH_PULL 200
|
|
#define FT_PACKET_R0KH_R1KH_RESP 201
|
|
#define FT_PACKET_R0KH_R1KH_PUSH 202
|
|
|
|
#ifndef ETH_P_RRB
|
|
#define ETH_P_RRB 0x890D
|
|
#endif /* ETH_P_RRB */
|
|
|
|
#define FT_R0KH_R1KH_PULL_DATA_LEN 44
|
|
#define FT_R0KH_R1KH_RESP_DATA_LEN 76
|
|
#define FT_R0KH_R1KH_PUSH_DATA_LEN 80
|
|
|
|
struct ft_r0kh_r1kh_pull_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_R0KH_R1KH_PULL */
|
|
u16 data_length; /* little endian length of data (44) */
|
|
u8 ap_address[ETH_ALEN];
|
|
|
|
u8 nonce[16];
|
|
u8 pmk_r0_name[WPA_PMK_NAME_LEN];
|
|
u8 r1kh_id[FT_R1KH_ID_LEN];
|
|
u8 s1kh_id[ETH_ALEN];
|
|
u8 pad[4]; /* 8-octet boundary for AES key wrap */
|
|
u8 key_wrap_extra[8];
|
|
} STRUCT_PACKED;
|
|
|
|
struct ft_r0kh_r1kh_resp_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_R0KH_R1KH_RESP */
|
|
u16 data_length; /* little endian length of data (76) */
|
|
u8 ap_address[ETH_ALEN];
|
|
|
|
u8 nonce[16]; /* copied from pull */
|
|
u8 r1kh_id[FT_R1KH_ID_LEN]; /* copied from pull */
|
|
u8 s1kh_id[ETH_ALEN]; /* copied from pull */
|
|
u8 pmk_r1[PMK_LEN];
|
|
u8 pmk_r1_name[WPA_PMK_NAME_LEN];
|
|
u8 pad[4]; /* 8-octet boundary for AES key wrap */
|
|
u8 key_wrap_extra[8];
|
|
} STRUCT_PACKED;
|
|
|
|
struct ft_r0kh_r1kh_push_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_R0KH_R1KH_PUSH */
|
|
u16 data_length; /* little endian length of data (80) */
|
|
u8 ap_address[ETH_ALEN];
|
|
|
|
/* Encrypted with AES key-wrap */
|
|
u8 timestamp[4]; /* current time in seconds since unix epoch, little
|
|
* endian */
|
|
u8 r1kh_id[FT_R1KH_ID_LEN];
|
|
u8 s1kh_id[ETH_ALEN];
|
|
u8 pmk_r0_name[WPA_PMK_NAME_LEN];
|
|
u8 pmk_r1[PMK_LEN];
|
|
u8 pmk_r1_name[WPA_PMK_NAME_LEN];
|
|
u8 key_wrap_extra[8];
|
|
} STRUCT_PACKED;
|
|
|
|
#ifdef _MSC_VER
|
|
#pragma pack(pop)
|
|
#endif /* _MSC_VER */
|
|
|
|
|
|
/* per STA state machine data */
|
|
|
|
struct wpa_authenticator;
|
|
struct wpa_state_machine;
|
|
struct rsn_pmksa_cache_entry;
|
|
struct eapol_state_machine;
|
|
|
|
|
|
struct ft_remote_r0kh {
|
|
struct ft_remote_r0kh *next;
|
|
u8 addr[ETH_ALEN];
|
|
u8 id[FT_R0KH_ID_MAX_LEN];
|
|
size_t id_len;
|
|
u8 key[16];
|
|
};
|
|
|
|
|
|
struct ft_remote_r1kh {
|
|
struct ft_remote_r1kh *next;
|
|
u8 addr[ETH_ALEN];
|
|
u8 id[FT_R1KH_ID_LEN];
|
|
u8 key[16];
|
|
};
|
|
|
|
|
|
struct wpa_auth_config {
|
|
int wpa;
|
|
int wpa_key_mgmt;
|
|
int wpa_pairwise;
|
|
int wpa_group;
|
|
int wpa_group_rekey;
|
|
int wpa_strict_rekey;
|
|
int wpa_gmk_rekey;
|
|
int rsn_pairwise;
|
|
int rsn_preauth;
|
|
int eapol_version;
|
|
int peerkey;
|
|
int wme_enabled;
|
|
int okc;
|
|
#ifdef CONFIG_IEEE80211W
|
|
enum {
|
|
WPA_NO_IEEE80211W = 0,
|
|
WPA_IEEE80211W_OPTIONAL = 1,
|
|
WPA_IEEE80211W_REQUIRED = 2
|
|
} ieee80211w;
|
|
#endif /* CONFIG_IEEE80211W */
|
|
#ifdef CONFIG_IEEE80211R
|
|
#define SSID_LEN 32
|
|
u8 ssid[SSID_LEN];
|
|
size_t ssid_len;
|
|
u8 mobility_domain[MOBILITY_DOMAIN_ID_LEN];
|
|
u8 r0_key_holder[FT_R0KH_ID_MAX_LEN];
|
|
size_t r0_key_holder_len;
|
|
u8 r1_key_holder[FT_R1KH_ID_LEN];
|
|
u32 r0_key_lifetime;
|
|
u32 reassociation_deadline;
|
|
struct ft_remote_r0kh *r0kh_list;
|
|
struct ft_remote_r1kh *r1kh_list;
|
|
int pmk_r1_push;
|
|
#endif /* CONFIG_IEEE80211R */
|
|
};
|
|
|
|
typedef enum {
|
|
LOGGER_DEBUG, LOGGER_INFO, LOGGER_WARNING
|
|
} logger_level;
|
|
|
|
typedef enum {
|
|
WPA_EAPOL_portEnabled, WPA_EAPOL_portValid, WPA_EAPOL_authorized,
|
|
WPA_EAPOL_portControl_Auto, WPA_EAPOL_keyRun, WPA_EAPOL_keyAvailable,
|
|
WPA_EAPOL_keyDone, WPA_EAPOL_inc_EapolFramesTx
|
|
} wpa_eapol_variable;
|
|
|
|
struct wpa_auth_callbacks {
|
|
void *ctx;
|
|
void (*logger)(void *ctx, const u8 *addr, logger_level level,
|
|
const char *txt);
|
|
void (*disconnect)(void *ctx, const u8 *addr, u16 reason);
|
|
void (*mic_failure_report)(void *ctx, const u8 *addr);
|
|
void (*set_eapol)(void *ctx, const u8 *addr, wpa_eapol_variable var,
|
|
int value);
|
|
int (*get_eapol)(void *ctx, const u8 *addr, wpa_eapol_variable var);
|
|
const u8 * (*get_psk)(void *ctx, const u8 *addr, const u8 *prev_psk);
|
|
int (*get_msk)(void *ctx, const u8 *addr, u8 *msk, size_t *len);
|
|
int (*set_key)(void *ctx, int vlan_id, const char *alg, const u8 *addr,
|
|
int idx, u8 *key, size_t key_len);
|
|
int (*get_seqnum)(void *ctx, const u8 *addr, int idx, u8 *seq);
|
|
int (*get_seqnum_igtk)(void *ctx, const u8 *addr, int idx, u8 *seq);
|
|
int (*send_eapol)(void *ctx, const u8 *addr, const u8 *data,
|
|
size_t data_len, int encrypt);
|
|
int (*for_each_sta)(void *ctx, int (*cb)(struct wpa_state_machine *sm,
|
|
void *ctx), void *cb_ctx);
|
|
int (*for_each_auth)(void *ctx, int (*cb)(struct wpa_authenticator *a,
|
|
void *ctx), void *cb_ctx);
|
|
int (*send_ether)(void *ctx, const u8 *dst, u16 proto, const u8 *data,
|
|
size_t data_len);
|
|
#ifdef CONFIG_IEEE80211R
|
|
struct wpa_state_machine * (*add_sta)(void *ctx, const u8 *sta_addr);
|
|
int (*send_ft_action)(void *ctx, const u8 *dst,
|
|
const u8 *data, size_t data_len);
|
|
#endif /* CONFIG_IEEE80211R */
|
|
};
|
|
|
|
struct wpa_authenticator * wpa_init(const u8 *addr,
|
|
struct wpa_auth_config *conf,
|
|
struct wpa_auth_callbacks *cb);
|
|
void wpa_deinit(struct wpa_authenticator *wpa_auth);
|
|
int wpa_reconfig(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_auth_config *conf);
|
|
|
|
enum {
|
|
WPA_IE_OK, WPA_INVALID_IE, WPA_INVALID_GROUP, WPA_INVALID_PAIRWISE,
|
|
WPA_INVALID_AKMP, WPA_NOT_ENABLED, WPA_ALLOC_FAIL,
|
|
WPA_MGMT_FRAME_PROTECTION_VIOLATION, WPA_INVALID_MGMT_GROUP_CIPHER,
|
|
WPA_INVALID_MDIE, WPA_INVALID_PROTO
|
|
};
|
|
|
|
int wpa_validate_wpa_ie(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_state_machine *sm,
|
|
const u8 *wpa_ie, size_t wpa_ie_len,
|
|
const u8 *mdie, size_t mdie_len);
|
|
int wpa_auth_uses_mfp(struct wpa_state_machine *sm);
|
|
struct wpa_state_machine *
|
|
wpa_auth_sta_init(struct wpa_authenticator *wpa_auth, const u8 *addr);
|
|
void wpa_auth_sta_associated(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_state_machine *sm);
|
|
void wpa_auth_sta_deinit(struct wpa_state_machine *sm);
|
|
void wpa_receive(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_state_machine *sm,
|
|
u8 *data, size_t data_len);
|
|
typedef enum {
|
|
WPA_AUTH, WPA_ASSOC, WPA_DISASSOC, WPA_DEAUTH, WPA_REAUTH,
|
|
WPA_REAUTH_EAPOL, WPA_ASSOC_FT
|
|
} wpa_event;
|
|
void wpa_remove_ptk(struct wpa_state_machine *sm);
|
|
void wpa_auth_sm_event(struct wpa_state_machine *sm, wpa_event event);
|
|
void wpa_auth_sm_notify(struct wpa_state_machine *sm);
|
|
void wpa_gtk_rekey(struct wpa_authenticator *wpa_auth);
|
|
int wpa_get_mib(struct wpa_authenticator *wpa_auth, char *buf, size_t buflen);
|
|
int wpa_get_mib_sta(struct wpa_state_machine *sm, char *buf, size_t buflen);
|
|
void wpa_auth_countermeasures_start(struct wpa_authenticator *wpa_auth);
|
|
int wpa_auth_pairwise_set(struct wpa_state_machine *sm);
|
|
int wpa_auth_sta_key_mgmt(struct wpa_state_machine *sm);
|
|
int wpa_auth_sta_wpa_version(struct wpa_state_machine *sm);
|
|
int wpa_auth_sta_clear_pmksa(struct wpa_state_machine *sm,
|
|
struct rsn_pmksa_cache_entry *entry);
|
|
struct rsn_pmksa_cache_entry *
|
|
wpa_auth_sta_get_pmksa(struct wpa_state_machine *sm);
|
|
void wpa_auth_sta_local_mic_failure_report(struct wpa_state_machine *sm);
|
|
const u8 * wpa_auth_get_wpa_ie(struct wpa_authenticator *wpa_auth,
|
|
size_t *len);
|
|
int wpa_auth_pmksa_add(struct wpa_state_machine *sm, const u8 *pmk,
|
|
int session_timeout, struct eapol_state_machine *eapol);
|
|
int wpa_auth_pmksa_add_preauth(struct wpa_authenticator *wpa_auth,
|
|
const u8 *pmk, size_t len, const u8 *sta_addr,
|
|
int session_timeout,
|
|
struct eapol_state_machine *eapol);
|
|
int wpa_auth_sta_set_vlan(struct wpa_state_machine *sm, int vlan_id);
|
|
|
|
#ifdef CONFIG_IEEE80211R
|
|
u8 * wpa_sm_write_assoc_resp_ies(struct wpa_state_machine *sm, u8 *pos,
|
|
size_t max_len, int auth_alg);
|
|
void wpa_ft_process_auth(struct wpa_state_machine *sm, const u8 *bssid,
|
|
u16 auth_transaction, const u8 *ies, size_t ies_len,
|
|
void (*cb)(void *ctx, const u8 *dst, const u8 *bssid,
|
|
u16 auth_transaction, u16 resp,
|
|
const u8 *ies, size_t ies_len),
|
|
void *ctx);
|
|
u16 wpa_ft_validate_reassoc(struct wpa_state_machine *sm, const u8 *ies,
|
|
size_t ies_len);
|
|
int wpa_ft_action_rx(struct wpa_state_machine *sm, const u8 *data, size_t len);
|
|
int wpa_ft_rrb_rx(struct wpa_authenticator *wpa_auth, const u8 *src_addr,
|
|
const u8 *data, size_t data_len);
|
|
void wpa_ft_push_pmk_r1(struct wpa_authenticator *wpa_auth, const u8 *addr);
|
|
#endif /* CONFIG_IEEE80211R */
|
|
|
|
#endif /* WPA_AUTH_H */
|