2 * Copyright (c) 1996, 2003 VIA Networking Technologies, Inc.
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
22 * Purpose: Handles the Basic Service Set & Node Database functions
28 * Author: Yiching Chen
38 /*--------------------- Static Definitions -------------------------*/
39 static int msglevel = MSG_LEVEL_INFO;
40 //static int msglevel =MSG_LEVEL_DEBUG;
41 /*--------------------- Static Classes ----------------------------*/
43 /*--------------------- Static Variables --------------------------*/
45 const unsigned char abyOUIGK[4] = { 0x00, 0x0F, 0xAC, 0x00 };
46 const unsigned char abyOUIWEP40[4] = { 0x00, 0x0F, 0xAC, 0x01 };
47 const unsigned char abyOUIWEP104[4] = { 0x00, 0x0F, 0xAC, 0x05 };
48 const unsigned char abyOUITKIP[4] = { 0x00, 0x0F, 0xAC, 0x02 };
49 const unsigned char abyOUICCMP[4] = { 0x00, 0x0F, 0xAC, 0x04 };
51 const unsigned char abyOUI8021X[4] = { 0x00, 0x0F, 0xAC, 0x01 };
52 const unsigned char abyOUIPSK[4] = { 0x00, 0x0F, 0xAC, 0x02 };
54 /*--------------------- Static Functions --------------------------*/
56 /*--------------------- Export Variables --------------------------*/
58 /*--------------------- Export Functions --------------------------*/
63 * Clear RSN information in BSSList.
67 * pBSSNode - BSS list.
81 pBSSNode->bWPA2Valid = false;
83 pBSSNode->byCSSGK = WLAN_11i_CSS_CCMP;
84 for (ii = 0; ii < 4; ii++)
85 pBSSNode->abyCSSPK[ii] = WLAN_11i_CSS_CCMP;
86 pBSSNode->wCSSPKCount = 1;
87 for (ii = 0; ii < 4; ii++)
88 pBSSNode->abyAKMSSAuthType[ii] = WLAN_11i_AKMSS_802_1X;
89 pBSSNode->wAKMSSAuthCount = 1;
90 pBSSNode->sRSNCapObj.bRSNCapExist = false;
91 pBSSNode->sRSNCapObj.wRSNCap = 0;
101 * pBSSNode - BSS list.
102 * pRSN - Pointer to the RSN IE.
106 * Return Value: none.
116 unsigned short m = 0, n = 0;
117 unsigned char *pbyOUI;
120 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "WPA2_ParseRSN: [%d]\n", pRSN->len);
122 WPA2_ClearRSN(pBSSNode);
124 if (pRSN->len == 2) { // ver(2)
125 if ((pRSN->byElementID == WLAN_EID_RSN) && (pRSN->wVersion == 1)) {
126 pBSSNode->bWPA2Valid = true;
131 if (pRSN->len < 6) { // ver(2) + GK(4)
132 // invalid CSS, P802.11i/D10.0, p31
136 // information element header makes sense
137 if ((pRSN->byElementID == WLAN_EID_RSN) &&
138 (pRSN->wVersion == 1)) {
139 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "Legal 802.11i RSN\n");
141 pbyOUI = &(pRSN->abyRSN[0]);
142 if (!memcmp(pbyOUI, abyOUIWEP40, 4))
143 pBSSNode->byCSSGK = WLAN_11i_CSS_WEP40;
144 else if (!memcmp(pbyOUI, abyOUITKIP, 4))
145 pBSSNode->byCSSGK = WLAN_11i_CSS_TKIP;
146 else if (!memcmp(pbyOUI, abyOUICCMP, 4))
147 pBSSNode->byCSSGK = WLAN_11i_CSS_CCMP;
148 else if (!memcmp(pbyOUI, abyOUIWEP104, 4))
149 pBSSNode->byCSSGK = WLAN_11i_CSS_WEP104;
150 else if (!memcmp(pbyOUI, abyOUIGK, 4)) {
151 // invalid CSS, P802.11i/D10.0, p32
154 // any vendor checks here
155 pBSSNode->byCSSGK = WLAN_11i_CSS_UNKNOWN;
157 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "802.11i CSS: %X\n", pBSSNode->byCSSGK);
159 if (pRSN->len == 6) {
160 pBSSNode->bWPA2Valid = true;
164 if (pRSN->len >= 8) { // ver(2) + GK(4) + PK count(2)
165 pBSSNode->wCSSPKCount = *((unsigned short *)&(pRSN->abyRSN[4]));
167 pbyOUI = &(pRSN->abyRSN[6]);
169 for (i = 0; (i < pBSSNode->wCSSPKCount) && (j < sizeof(pBSSNode->abyCSSPK)/sizeof(unsigned char)); i++) {
170 if (pRSN->len >= 8+i*4+4) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*i)
171 if (!memcmp(pbyOUI, abyOUIGK, 4)) {
172 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_USE_GROUP;
174 } else if (!memcmp(pbyOUI, abyOUIWEP40, 4)) {
175 // Invalid CSS, continue to parsing
176 } else if (!memcmp(pbyOUI, abyOUITKIP, 4)) {
177 if (pBSSNode->byCSSGK != WLAN_11i_CSS_CCMP)
178 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_TKIP;
180 ; // Invalid CSS, continue to parsing
181 } else if (!memcmp(pbyOUI, abyOUICCMP, 4)) {
182 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_CCMP;
183 } else if (!memcmp(pbyOUI, abyOUIWEP104, 4)) {
184 // Invalid CSS, continue to parsing
186 // any vendor checks here
187 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_UNKNOWN;
190 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "abyCSSPK[%d]: %X\n", j-1, pBSSNode->abyCSSPK[j-1]);
195 if (bUseGK == true) {
197 // invalid CSS, This should be only PK CSS.
200 if (pBSSNode->byCSSGK == WLAN_11i_CSS_CCMP) {
201 // invalid CSS, If CCMP is enable , PK can't be CSSGK.
205 if ((pBSSNode->wCSSPKCount != 0) && (j == 0)) {
206 // invalid CSS, No valid PK.
209 pBSSNode->wCSSPKCount = (unsigned short)j;
210 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "wCSSPKCount: %d\n", pBSSNode->wCSSPKCount);
213 m = *((unsigned short *)&(pRSN->abyRSN[4]));
215 if (pRSN->len >= 10+m*4) { // ver(2) + GK(4) + PK count(2) + PKS(4*m) + AKMSS count(2)
216 pBSSNode->wAKMSSAuthCount = *((unsigned short *)&(pRSN->abyRSN[6+4*m]));
218 pbyOUI = &(pRSN->abyRSN[8+4*m]);
219 for (i = 0; (i < pBSSNode->wAKMSSAuthCount) && (j < sizeof(pBSSNode->abyAKMSSAuthType)/sizeof(unsigned char)); i++) {
220 if (pRSN->len >= 10+(m+i)*4+4) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*m)+AKMSS(2)+AKS(4*i)
221 if (!memcmp(pbyOUI, abyOUI8021X, 4))
222 pBSSNode->abyAKMSSAuthType[j++] = WLAN_11i_AKMSS_802_1X;
223 else if (!memcmp(pbyOUI, abyOUIPSK, 4))
224 pBSSNode->abyAKMSSAuthType[j++] = WLAN_11i_AKMSS_PSK;
226 // any vendor checks here
227 pBSSNode->abyAKMSSAuthType[j++] = WLAN_11i_AKMSS_UNKNOWN;
228 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "abyAKMSSAuthType[%d]: %X\n", j-1, pBSSNode->abyAKMSSAuthType[j-1]);
232 pBSSNode->wAKMSSAuthCount = (unsigned short)j;
233 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "wAKMSSAuthCount: %d\n", pBSSNode->wAKMSSAuthCount);
235 n = *((unsigned short *)&(pRSN->abyRSN[6+4*m]));
236 if (pRSN->len >= 12 + 4 * m + 4 * n) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*m)+AKMSSCnt(2)+AKMSS(4*n)+Cap(2)
237 pBSSNode->sRSNCapObj.bRSNCapExist = true;
238 pBSSNode->sRSNCapObj.wRSNCap = *((unsigned short *)&(pRSN->abyRSN[8+4*m+4*n]));
241 //ignore PMKID lists bcs only (Re)Assocrequest has this field
242 pBSSNode->bWPA2Valid = true;
253 * pMgmtHandle - Pointer to management object
255 * pRSNIEs - Pointer to the RSN IE to set.
257 * Return Value: length of IEs.
266 PSMgmtObject pMgmt = (PSMgmtObject) pMgmtHandle;
267 unsigned char *pbyBuffer = NULL;
269 unsigned short *pwPMKID = NULL;
271 if (pRSNIEs == NULL) {
274 if (((pMgmt->eAuthenMode == WMAC_AUTH_WPA2) ||
275 (pMgmt->eAuthenMode == WMAC_AUTH_WPA2PSK)) &&
276 (pMgmt->pCurrBSS != NULL)) {
278 pbyBuffer = (unsigned char *)pRSNIEs;
279 pRSNIEs->byElementID = WLAN_EID_RSN;
280 pRSNIEs->len = 6; //Version(2)+GK(4)
281 pRSNIEs->wVersion = 1;
282 //Group Key Cipher Suite
283 pRSNIEs->abyRSN[0] = 0x00;
284 pRSNIEs->abyRSN[1] = 0x0F;
285 pRSNIEs->abyRSN[2] = 0xAC;
286 if (pMgmt->byCSSGK == KEY_CTL_WEP) {
287 pRSNIEs->abyRSN[3] = pMgmt->pCurrBSS->byCSSGK;
288 } else if (pMgmt->byCSSGK == KEY_CTL_TKIP) {
289 pRSNIEs->abyRSN[3] = WLAN_11i_CSS_TKIP;
290 } else if (pMgmt->byCSSGK == KEY_CTL_CCMP) {
291 pRSNIEs->abyRSN[3] = WLAN_11i_CSS_CCMP;
293 pRSNIEs->abyRSN[3] = WLAN_11i_CSS_UNKNOWN;
296 // Pairwise Key Cipher Suite
297 pRSNIEs->abyRSN[4] = 1;
298 pRSNIEs->abyRSN[5] = 0;
299 pRSNIEs->abyRSN[6] = 0x00;
300 pRSNIEs->abyRSN[7] = 0x0F;
301 pRSNIEs->abyRSN[8] = 0xAC;
302 if (pMgmt->byCSSPK == KEY_CTL_TKIP) {
303 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_TKIP;
304 } else if (pMgmt->byCSSPK == KEY_CTL_CCMP) {
305 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_CCMP;
306 } else if (pMgmt->byCSSPK == KEY_CTL_NONE) {
307 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_USE_GROUP;
309 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_UNKNOWN;
313 // Auth Key Management Suite
314 pRSNIEs->abyRSN[10] = 1;
315 pRSNIEs->abyRSN[11] = 0;
316 pRSNIEs->abyRSN[12] = 0x00;
317 pRSNIEs->abyRSN[13] = 0x0F;
318 pRSNIEs->abyRSN[14] = 0xAC;
319 if (pMgmt->eAuthenMode == WMAC_AUTH_WPA2PSK) {
320 pRSNIEs->abyRSN[15] = WLAN_11i_AKMSS_PSK;
321 } else if (pMgmt->eAuthenMode == WMAC_AUTH_WPA2) {
322 pRSNIEs->abyRSN[15] = WLAN_11i_AKMSS_802_1X;
324 pRSNIEs->abyRSN[15] = WLAN_11i_AKMSS_UNKNOWN;
329 if (pMgmt->pCurrBSS->sRSNCapObj.bRSNCapExist == true) {
330 memcpy(&pRSNIEs->abyRSN[16], &pMgmt->pCurrBSS->sRSNCapObj.wRSNCap, 2);
332 pRSNIEs->abyRSN[16] = 0;
333 pRSNIEs->abyRSN[17] = 0;
337 if ((pMgmt->gsPMKIDCache.BSSIDInfoCount > 0) &&
338 (pMgmt->bRoaming == true) &&
339 (pMgmt->eAuthenMode == WMAC_AUTH_WPA2)) {
341 pwPMKID = (unsigned short *)(&pRSNIEs->abyRSN[18]); // Point to PMKID count
342 *pwPMKID = 0; // Initialize PMKID count
343 pbyBuffer = &pRSNIEs->abyRSN[20]; // Point to PMKID list
344 for (ii = 0; ii < pMgmt->gsPMKIDCache.BSSIDInfoCount; ii++) {
345 if (!memcmp(&pMgmt->gsPMKIDCache.BSSIDInfo[ii].abyBSSID[0], pMgmt->abyCurrBSSID, ETH_ALEN)) {
347 memcpy(pbyBuffer, pMgmt->gsPMKIDCache.BSSIDInfo[ii].abyPMKID, 16);
352 pRSNIEs->len += (2 + (*pwPMKID)*16);
354 pbyBuffer = &pRSNIEs->abyRSN[18];
357 return pRSNIEs->len + WLAN_IEHDR_LEN;
projects / firefly-linux-kernel-4.4.55.git / blob