Amazing-Mirror/fragattacks
1
0
Fork 0
mirror of https://github.com/vanhoefm/fragattacks.git synced 2024-11-25 08:48:31 -05:00
Code Issues Projects Releases Wiki Activity

FT: FTE MIC calculation using SHA384-based AKM

Browse Source 
Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen 2018-06-04 15:16:54 +03:00
parent c49a9d6b99
commit b327026a72
1 changed files with 27 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

35
src/common/wpa_common.c
View File

@ -743,14 +743,23 @@ int wpa_ft_mic(const u8 *kck, size_t kck_len, const u8 *sta_addr,
const u8 *addr[9]; const u8 *addr[9];
size_t len[9]; size_t len[9];
size_t i, num_elem = 0; size_t i, num_elem = 0;
u8 zero_mic[16]; u8 zero_mic[24];
size_t mic_len, fte_fixed_len;
if (kck_len != 16) { if (kck_len == 16) {
mic_len = 16;
#ifdef CONFIG_SHA384
} else if (kck_len == 24) {
mic_len = 24;
#endif /* CONFIG_SHA384 */
} else {
wpa_printf(MSG_WARNING, "FT: Unsupported KCK length %u", wpa_printf(MSG_WARNING, "FT: Unsupported KCK length %u",
(unsigned int) kck_len); (unsigned int) kck_len);
return -1; return -1;
} }
fte_fixed_len = sizeof(struct rsn_ftie) - 16 + mic_len;
addr[num_elem] = sta_addr; addr[num_elem] = sta_addr;
len[num_elem] = ETH_ALEN; len[num_elem] = ETH_ALEN;
num_elem++; num_elem++;
@ -774,7 +783,7 @@ int wpa_ft_mic(const u8 *kck, size_t kck_len, const u8 *sta_addr,
num_elem++; num_elem++;
} }
if (ftie) { if (ftie) {
if (ftie_len < 2 + sizeof(struct rsn_ftie)) if (ftie_len < 2 + fte_fixed_len)
return -1; return -1;
/* IE hdr and mic_control */ /* IE hdr and mic_control */
@ -783,14 +792,14 @@ int wpa_ft_mic(const u8 *kck, size_t kck_len, const u8 *sta_addr,
num_elem++; num_elem++;
/* MIC field with all zeros */ /* MIC field with all zeros */
os_memset(zero_mic, 0, sizeof(zero_mic)); os_memset(zero_mic, 0, mic_len);
addr[num_elem] = zero_mic; addr[num_elem] = zero_mic;
len[num_elem] = sizeof(zero_mic); len[num_elem] = mic_len;
num_elem++; num_elem++;
/* Rest of FTIE */ /* Rest of FTIE */
addr[num_elem] = ftie + 2 + 2 + 16; addr[num_elem] = ftie + 2 + 2 + mic_len;
len[num_elem] = ftie_len - (2 + 2 + 16); len[num_elem] = ftie_len - (2 + 2 + mic_len);
num_elem++; num_elem++;
} }
if (ric) { if (ric) {
@ -801,7 +810,17 @@ int wpa_ft_mic(const u8 *kck, size_t kck_len, const u8 *sta_addr,
for (i = 0; i < num_elem; i++) for (i = 0; i < num_elem; i++)
wpa_hexdump(MSG_MSGDUMP, "FT: MIC data", addr[i], len[i]); wpa_hexdump(MSG_MSGDUMP, "FT: MIC data", addr[i], len[i]);
if (omac1_aes_128_vector(kck, num_elem, addr, len, mic)) #ifdef CONFIG_SHA384
if (kck_len == 24) {
u8 hash[SHA384_MAC_LEN];
if (hmac_sha384_vector(kck, kck_len, num_elem, addr, len, hash))
return -1;
os_memcpy(mic, hash, 24);
}
#endif /* CONFIG_SHA384 */
if (kck_len == 16 &&
omac1_aes_128_vector(kck, num_elem, addr, len, mic))
return -1; return -1;
return 0; return 0;