mirror of
https://github.com/vanhoefm/fragattacks.git
synced 2024-12-01 11:48:23 -05:00
581a8cde77
Added a new configuration option, wpa_ptk_rekey, that can be used to enforce frequent PTK rekeying, e.g., to mitigate some attacks against TKIP deficiencies. This can be set either by the Authenticator (to initiate periodic 4-way handshake to rekey PTK) or by the Supplicant (to request Authenticator to rekey PTK). With both wpa_ptk_rekey and wpa_group_rekey (in hostapd) set to 600, TKIP keys will not be used for more than 10 minutes which may make some attacks against TKIP more difficult to implement.
283 lines
9.2 KiB
C
283 lines
9.2 KiB
C
/*
|
|
* hostapd - IEEE 802.11i-2004 / WPA Authenticator
|
|
* Copyright (c) 2004-2007, Jouni Malinen <j@w1.fi>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License version 2 as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* Alternatively, this software may be distributed under the terms of BSD
|
|
* license.
|
|
*
|
|
* See README and COPYING for more details.
|
|
*/
|
|
|
|
#ifndef WPA_AUTH_H
|
|
#define WPA_AUTH_H
|
|
|
|
#include "eapol_common.h"
|
|
#include "wpa_common.h"
|
|
|
|
#ifdef _MSC_VER
|
|
#pragma pack(push, 1)
|
|
#endif /* _MSC_VER */
|
|
|
|
/* IEEE Std 802.11r-2008, 11A.10.3 - Remote request/response frame definition
|
|
*/
|
|
struct ft_rrb_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_REQUEST/FT_PACKET_RESPONSE */
|
|
u16 action_length; /* little endian length of action_frame */
|
|
u8 ap_address[ETH_ALEN];
|
|
/*
|
|
* Followed by action_length bytes of FT Action frame (from Category
|
|
* field to the end of Action Frame body.
|
|
*/
|
|
} STRUCT_PACKED;
|
|
|
|
#define RSN_REMOTE_FRAME_TYPE_FT_RRB 1
|
|
|
|
#define FT_PACKET_REQUEST 0
|
|
#define FT_PACKET_RESPONSE 1
|
|
/* Vendor-specific types for R0KH-R1KH protocol; not defined in 802.11r */
|
|
#define FT_PACKET_R0KH_R1KH_PULL 200
|
|
#define FT_PACKET_R0KH_R1KH_RESP 201
|
|
#define FT_PACKET_R0KH_R1KH_PUSH 202
|
|
|
|
#ifndef ETH_P_RRB
|
|
#define ETH_P_RRB 0x890D
|
|
#endif /* ETH_P_RRB */
|
|
|
|
#define FT_R0KH_R1KH_PULL_DATA_LEN 44
|
|
#define FT_R0KH_R1KH_RESP_DATA_LEN 76
|
|
#define FT_R0KH_R1KH_PUSH_DATA_LEN 80
|
|
|
|
struct ft_r0kh_r1kh_pull_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_R0KH_R1KH_PULL */
|
|
u16 data_length; /* little endian length of data (44) */
|
|
u8 ap_address[ETH_ALEN];
|
|
|
|
u8 nonce[16];
|
|
u8 pmk_r0_name[WPA_PMK_NAME_LEN];
|
|
u8 r1kh_id[FT_R1KH_ID_LEN];
|
|
u8 s1kh_id[ETH_ALEN];
|
|
u8 pad[4]; /* 8-octet boundary for AES key wrap */
|
|
u8 key_wrap_extra[8];
|
|
} STRUCT_PACKED;
|
|
|
|
struct ft_r0kh_r1kh_resp_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_R0KH_R1KH_RESP */
|
|
u16 data_length; /* little endian length of data (76) */
|
|
u8 ap_address[ETH_ALEN];
|
|
|
|
u8 nonce[16]; /* copied from pull */
|
|
u8 r1kh_id[FT_R1KH_ID_LEN]; /* copied from pull */
|
|
u8 s1kh_id[ETH_ALEN]; /* copied from pull */
|
|
u8 pmk_r1[PMK_LEN];
|
|
u8 pmk_r1_name[WPA_PMK_NAME_LEN];
|
|
u8 pad[4]; /* 8-octet boundary for AES key wrap */
|
|
u8 key_wrap_extra[8];
|
|
} STRUCT_PACKED;
|
|
|
|
struct ft_r0kh_r1kh_push_frame {
|
|
u8 frame_type; /* RSN_REMOTE_FRAME_TYPE_FT_RRB */
|
|
u8 packet_type; /* FT_PACKET_R0KH_R1KH_PUSH */
|
|
u16 data_length; /* little endian length of data (80) */
|
|
u8 ap_address[ETH_ALEN];
|
|
|
|
/* Encrypted with AES key-wrap */
|
|
u8 timestamp[4]; /* current time in seconds since unix epoch, little
|
|
* endian */
|
|
u8 r1kh_id[FT_R1KH_ID_LEN];
|
|
u8 s1kh_id[ETH_ALEN];
|
|
u8 pmk_r0_name[WPA_PMK_NAME_LEN];
|
|
u8 pmk_r1[PMK_LEN];
|
|
u8 pmk_r1_name[WPA_PMK_NAME_LEN];
|
|
u8 key_wrap_extra[8];
|
|
} STRUCT_PACKED;
|
|
|
|
#ifdef _MSC_VER
|
|
#pragma pack(pop)
|
|
#endif /* _MSC_VER */
|
|
|
|
|
|
/* per STA state machine data */
|
|
|
|
struct wpa_authenticator;
|
|
struct wpa_state_machine;
|
|
struct rsn_pmksa_cache_entry;
|
|
struct eapol_state_machine;
|
|
|
|
|
|
struct ft_remote_r0kh {
|
|
struct ft_remote_r0kh *next;
|
|
u8 addr[ETH_ALEN];
|
|
u8 id[FT_R0KH_ID_MAX_LEN];
|
|
size_t id_len;
|
|
u8 key[16];
|
|
};
|
|
|
|
|
|
struct ft_remote_r1kh {
|
|
struct ft_remote_r1kh *next;
|
|
u8 addr[ETH_ALEN];
|
|
u8 id[FT_R1KH_ID_LEN];
|
|
u8 key[16];
|
|
};
|
|
|
|
|
|
struct wpa_auth_config {
|
|
int wpa;
|
|
int wpa_key_mgmt;
|
|
int wpa_pairwise;
|
|
int wpa_group;
|
|
int wpa_group_rekey;
|
|
int wpa_strict_rekey;
|
|
int wpa_gmk_rekey;
|
|
int wpa_ptk_rekey;
|
|
int rsn_pairwise;
|
|
int rsn_preauth;
|
|
int eapol_version;
|
|
int peerkey;
|
|
int wme_enabled;
|
|
int okc;
|
|
#ifdef CONFIG_IEEE80211W
|
|
enum {
|
|
WPA_NO_IEEE80211W = 0,
|
|
WPA_IEEE80211W_OPTIONAL = 1,
|
|
WPA_IEEE80211W_REQUIRED = 2
|
|
} ieee80211w;
|
|
#endif /* CONFIG_IEEE80211W */
|
|
#ifdef CONFIG_IEEE80211R
|
|
#define SSID_LEN 32
|
|
u8 ssid[SSID_LEN];
|
|
size_t ssid_len;
|
|
u8 mobility_domain[MOBILITY_DOMAIN_ID_LEN];
|
|
u8 r0_key_holder[FT_R0KH_ID_MAX_LEN];
|
|
size_t r0_key_holder_len;
|
|
u8 r1_key_holder[FT_R1KH_ID_LEN];
|
|
u32 r0_key_lifetime;
|
|
u32 reassociation_deadline;
|
|
struct ft_remote_r0kh *r0kh_list;
|
|
struct ft_remote_r1kh *r1kh_list;
|
|
int pmk_r1_push;
|
|
#endif /* CONFIG_IEEE80211R */
|
|
};
|
|
|
|
typedef enum {
|
|
LOGGER_DEBUG, LOGGER_INFO, LOGGER_WARNING
|
|
} logger_level;
|
|
|
|
typedef enum {
|
|
WPA_EAPOL_portEnabled, WPA_EAPOL_portValid, WPA_EAPOL_authorized,
|
|
WPA_EAPOL_portControl_Auto, WPA_EAPOL_keyRun, WPA_EAPOL_keyAvailable,
|
|
WPA_EAPOL_keyDone, WPA_EAPOL_inc_EapolFramesTx
|
|
} wpa_eapol_variable;
|
|
|
|
struct wpa_auth_callbacks {
|
|
void *ctx;
|
|
void (*logger)(void *ctx, const u8 *addr, logger_level level,
|
|
const char *txt);
|
|
void (*disconnect)(void *ctx, const u8 *addr, u16 reason);
|
|
void (*mic_failure_report)(void *ctx, const u8 *addr);
|
|
void (*set_eapol)(void *ctx, const u8 *addr, wpa_eapol_variable var,
|
|
int value);
|
|
int (*get_eapol)(void *ctx, const u8 *addr, wpa_eapol_variable var);
|
|
const u8 * (*get_psk)(void *ctx, const u8 *addr, const u8 *prev_psk);
|
|
int (*get_msk)(void *ctx, const u8 *addr, u8 *msk, size_t *len);
|
|
int (*set_key)(void *ctx, int vlan_id, const char *alg, const u8 *addr,
|
|
int idx, u8 *key, size_t key_len);
|
|
int (*get_seqnum)(void *ctx, const u8 *addr, int idx, u8 *seq);
|
|
int (*get_seqnum_igtk)(void *ctx, const u8 *addr, int idx, u8 *seq);
|
|
int (*send_eapol)(void *ctx, const u8 *addr, const u8 *data,
|
|
size_t data_len, int encrypt);
|
|
int (*for_each_sta)(void *ctx, int (*cb)(struct wpa_state_machine *sm,
|
|
void *ctx), void *cb_ctx);
|
|
int (*for_each_auth)(void *ctx, int (*cb)(struct wpa_authenticator *a,
|
|
void *ctx), void *cb_ctx);
|
|
int (*send_ether)(void *ctx, const u8 *dst, u16 proto, const u8 *data,
|
|
size_t data_len);
|
|
#ifdef CONFIG_IEEE80211R
|
|
struct wpa_state_machine * (*add_sta)(void *ctx, const u8 *sta_addr);
|
|
int (*send_ft_action)(void *ctx, const u8 *dst,
|
|
const u8 *data, size_t data_len);
|
|
#endif /* CONFIG_IEEE80211R */
|
|
};
|
|
|
|
struct wpa_authenticator * wpa_init(const u8 *addr,
|
|
struct wpa_auth_config *conf,
|
|
struct wpa_auth_callbacks *cb);
|
|
void wpa_deinit(struct wpa_authenticator *wpa_auth);
|
|
int wpa_reconfig(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_auth_config *conf);
|
|
|
|
enum {
|
|
WPA_IE_OK, WPA_INVALID_IE, WPA_INVALID_GROUP, WPA_INVALID_PAIRWISE,
|
|
WPA_INVALID_AKMP, WPA_NOT_ENABLED, WPA_ALLOC_FAIL,
|
|
WPA_MGMT_FRAME_PROTECTION_VIOLATION, WPA_INVALID_MGMT_GROUP_CIPHER,
|
|
WPA_INVALID_MDIE, WPA_INVALID_PROTO
|
|
};
|
|
|
|
int wpa_validate_wpa_ie(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_state_machine *sm,
|
|
const u8 *wpa_ie, size_t wpa_ie_len,
|
|
const u8 *mdie, size_t mdie_len);
|
|
int wpa_auth_uses_mfp(struct wpa_state_machine *sm);
|
|
struct wpa_state_machine *
|
|
wpa_auth_sta_init(struct wpa_authenticator *wpa_auth, const u8 *addr);
|
|
void wpa_auth_sta_associated(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_state_machine *sm);
|
|
void wpa_auth_sta_deinit(struct wpa_state_machine *sm);
|
|
void wpa_receive(struct wpa_authenticator *wpa_auth,
|
|
struct wpa_state_machine *sm,
|
|
u8 *data, size_t data_len);
|
|
typedef enum {
|
|
WPA_AUTH, WPA_ASSOC, WPA_DISASSOC, WPA_DEAUTH, WPA_REAUTH,
|
|
WPA_REAUTH_EAPOL, WPA_ASSOC_FT
|
|
} wpa_event;
|
|
void wpa_remove_ptk(struct wpa_state_machine *sm);
|
|
void wpa_auth_sm_event(struct wpa_state_machine *sm, wpa_event event);
|
|
void wpa_auth_sm_notify(struct wpa_state_machine *sm);
|
|
void wpa_gtk_rekey(struct wpa_authenticator *wpa_auth);
|
|
int wpa_get_mib(struct wpa_authenticator *wpa_auth, char *buf, size_t buflen);
|
|
int wpa_get_mib_sta(struct wpa_state_machine *sm, char *buf, size_t buflen);
|
|
void wpa_auth_countermeasures_start(struct wpa_authenticator *wpa_auth);
|
|
int wpa_auth_pairwise_set(struct wpa_state_machine *sm);
|
|
int wpa_auth_sta_key_mgmt(struct wpa_state_machine *sm);
|
|
int wpa_auth_sta_wpa_version(struct wpa_state_machine *sm);
|
|
int wpa_auth_sta_clear_pmksa(struct wpa_state_machine *sm,
|
|
struct rsn_pmksa_cache_entry *entry);
|
|
struct rsn_pmksa_cache_entry *
|
|
wpa_auth_sta_get_pmksa(struct wpa_state_machine *sm);
|
|
void wpa_auth_sta_local_mic_failure_report(struct wpa_state_machine *sm);
|
|
const u8 * wpa_auth_get_wpa_ie(struct wpa_authenticator *wpa_auth,
|
|
size_t *len);
|
|
int wpa_auth_pmksa_add(struct wpa_state_machine *sm, const u8 *pmk,
|
|
int session_timeout, struct eapol_state_machine *eapol);
|
|
int wpa_auth_pmksa_add_preauth(struct wpa_authenticator *wpa_auth,
|
|
const u8 *pmk, size_t len, const u8 *sta_addr,
|
|
int session_timeout,
|
|
struct eapol_state_machine *eapol);
|
|
int wpa_auth_sta_set_vlan(struct wpa_state_machine *sm, int vlan_id);
|
|
|
|
#ifdef CONFIG_IEEE80211R
|
|
u8 * wpa_sm_write_assoc_resp_ies(struct wpa_state_machine *sm, u8 *pos,
|
|
size_t max_len, int auth_alg);
|
|
void wpa_ft_process_auth(struct wpa_state_machine *sm, const u8 *bssid,
|
|
u16 auth_transaction, const u8 *ies, size_t ies_len,
|
|
void (*cb)(void *ctx, const u8 *dst, const u8 *bssid,
|
|
u16 auth_transaction, u16 resp,
|
|
const u8 *ies, size_t ies_len),
|
|
void *ctx);
|
|
u16 wpa_ft_validate_reassoc(struct wpa_state_machine *sm, const u8 *ies,
|
|
size_t ies_len);
|
|
int wpa_ft_action_rx(struct wpa_state_machine *sm, const u8 *data, size_t len);
|
|
int wpa_ft_rrb_rx(struct wpa_authenticator *wpa_auth, const u8 *src_addr,
|
|
const u8 *data, size_t data_len);
|
|
void wpa_ft_push_pmk_r1(struct wpa_authenticator *wpa_auth, const u8 *addr);
|
|
#endif /* CONFIG_IEEE80211R */
|
|
|
|
#endif /* WPA_AUTH_H */
|