mirror of
https://github.com/vanhoefm/fragattacks.git
synced 2025-01-18 10:54:03 -05:00
tests: WPA2-PSK-FT AP and invalid response IEs
Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
parent
ee140ef98f
commit
664093b55b
@ -667,3 +667,60 @@ def test_ft_psk_key_lifetime_in_memory(dev, apdev, params):
|
|||||||
verify_not_present(buf, kek, fname, "KEK")
|
verify_not_present(buf, kek, fname, "KEK")
|
||||||
verify_not_present(buf, tk, fname, "TK")
|
verify_not_present(buf, tk, fname, "TK")
|
||||||
verify_not_present(buf, gtk, fname, "GTK")
|
verify_not_present(buf, gtk, fname, "GTK")
|
||||||
|
|
||||||
|
def test_ap_ft_invalid_resp(dev, apdev):
|
||||||
|
"""WPA2-PSK-FT AP and invalid response IEs"""
|
||||||
|
ssid = "test-ft"
|
||||||
|
passphrase="12345678"
|
||||||
|
|
||||||
|
params = ft_params1(ssid=ssid, passphrase=passphrase)
|
||||||
|
hapd0 = hostapd.add_ap(apdev[0]['ifname'], params)
|
||||||
|
dev[0].connect(ssid, psk=passphrase, key_mgmt="FT-PSK", proto="WPA2",
|
||||||
|
scan_freq="2412")
|
||||||
|
|
||||||
|
params = ft_params2(ssid=ssid, passphrase=passphrase)
|
||||||
|
hapd1 = hostapd.add_ap(apdev[1]['ifname'], params)
|
||||||
|
|
||||||
|
tests = [
|
||||||
|
# Various IEs for test coverage. The last one is FTIE with invalid
|
||||||
|
# R1KH-ID subelement.
|
||||||
|
"020002000000" + "3800" + "38051122334455" + "3754000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010100",
|
||||||
|
# FTIE with invalid R0KH-ID subelement (len=0).
|
||||||
|
"020002000000" + "3754000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010300",
|
||||||
|
# FTIE with invalid R0KH-ID subelement (len=49).
|
||||||
|
"020002000000" + "378500010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001033101020304050607080910111213141516171819202122232425262728293031323334353637383940414243444546474849",
|
||||||
|
# Invalid RSNE.
|
||||||
|
"020002000000" + "3000",
|
||||||
|
# Required IEs missing from protected IE count.
|
||||||
|
"020002000000" + "3603a1b201" + "375200010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001" + "3900",
|
||||||
|
# RIC missing from protected IE count.
|
||||||
|
"020002000000" + "3603a1b201" + "375200020203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001" + "3900",
|
||||||
|
# Protected IE missing.
|
||||||
|
"020002000000" + "3603a1b201" + "375200ff0203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405060708090001" + "3900" + "0000" ]
|
||||||
|
for t in tests:
|
||||||
|
dev[0].scan_for_bss(apdev[1]['bssid'], freq="2412")
|
||||||
|
hapd1.set("ext_mgmt_frame_handling", "1")
|
||||||
|
hapd1.dump_monitor()
|
||||||
|
if "OK" not in dev[0].request("ROAM " + apdev[1]['bssid']):
|
||||||
|
raise Exception("ROAM failed")
|
||||||
|
auth = None
|
||||||
|
for i in range(20):
|
||||||
|
msg = hapd1.mgmt_rx()
|
||||||
|
if msg['subtype'] == 11:
|
||||||
|
auth = msg
|
||||||
|
break
|
||||||
|
if not auth:
|
||||||
|
raise Exception("Authentication frame not seen")
|
||||||
|
|
||||||
|
resp = {}
|
||||||
|
resp['fc'] = auth['fc']
|
||||||
|
resp['da'] = auth['sa']
|
||||||
|
resp['sa'] = auth['da']
|
||||||
|
resp['bssid'] = auth['bssid']
|
||||||
|
resp['payload'] = binascii.unhexlify(t)
|
||||||
|
hapd1.mgmt_tx(resp)
|
||||||
|
hapd1.set("ext_mgmt_frame_handling", "0")
|
||||||
|
dev[0].wait_disconnected()
|
||||||
|
|
||||||
|
dev[0].request("RECONNECT")
|
||||||
|
dev[0].wait_connected()
|
||||||
|
Loading…
Reference in New Issue
Block a user