On Tue, Nov 06, 2007 at 02:33:53AM -0800, akpm@linux-foundation.org wrote:
[mmotm.git] / drivers / staging / vt6656 / wpa2.c
blobfa3aeedfb278606bc65dd9ef662f81a6e31dc532
1 /*
2 * Copyright (c) 1996, 2003 VIA Networking Technologies, Inc.
3 * All rights reserved.
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
20 * File: wpa2.c
22 * Purpose: Handles the Basic Service Set & Node Database functions
24 * Functions:
26 * Revision History:
28 * Author: Yiching Chen
30 * Date: Oct. 4, 2004
34 #include "wpa2.h"
35 #include "device.h"
37 /*--------------------- Static Definitions -------------------------*/
38 static int msglevel =MSG_LEVEL_INFO;
39 //static int msglevel =MSG_LEVEL_DEBUG;
40 /*--------------------- Static Classes ----------------------------*/
42 /*--------------------- Static Variables --------------------------*/
44 const BYTE abyOUIGK[4] = { 0x00, 0x0F, 0xAC, 0x00 };
45 const BYTE abyOUIWEP40[4] = { 0x00, 0x0F, 0xAC, 0x01 };
46 const BYTE abyOUIWEP104[4] = { 0x00, 0x0F, 0xAC, 0x05 };
47 const BYTE abyOUITKIP[4] = { 0x00, 0x0F, 0xAC, 0x02 };
48 const BYTE abyOUICCMP[4] = { 0x00, 0x0F, 0xAC, 0x04 };
50 const BYTE abyOUI8021X[4] = { 0x00, 0x0F, 0xAC, 0x01 };
51 const BYTE abyOUIPSK[4] = { 0x00, 0x0F, 0xAC, 0x02 };
54 /*--------------------- Static Functions --------------------------*/
56 /*--------------------- Export Variables --------------------------*/
58 /*--------------------- Export Functions --------------------------*/
60 /*+
62 * Description:
63 * Clear RSN information in BSSList.
65 * Parameters:
66 * In:
67 * pBSSNode - BSS list.
68 * Out:
69 * none
71 * Return Value: none.
73 -*/
74 VOID
75 WPA2_ClearRSN (
76 IN PKnownBSS pBSSNode
79 int ii;
81 pBSSNode->bWPA2Valid = FALSE;
83 pBSSNode->byCSSGK = WLAN_11i_CSS_CCMP;
84 for (ii=0; ii < 4; ii ++)
85 pBSSNode->abyCSSPK[ii] = WLAN_11i_CSS_CCMP;
86 pBSSNode->wCSSPKCount = 1;
87 for (ii=0; ii < 4; ii ++)
88 pBSSNode->abyAKMSSAuthType[ii] = WLAN_11i_AKMSS_802_1X;
89 pBSSNode->wAKMSSAuthCount = 1;
90 pBSSNode->sRSNCapObj.bRSNCapExist = FALSE;
91 pBSSNode->sRSNCapObj.wRSNCap = 0;
94 /*+
96 * Description:
97 * Parse RSN IE.
99 * Parameters:
100 * In:
101 * pBSSNode - BSS list.
102 * pRSN - Pointer to the RSN IE.
103 * Out:
104 * none
106 * Return Value: none.
109 VOID
110 WPA2vParseRSN (
111 IN PKnownBSS pBSSNode,
112 IN PWLAN_IE_RSN pRSN
115 int i, j;
116 WORD m = 0, n = 0;
117 PBYTE pbyOUI;
118 BOOL bUseGK = FALSE;
120 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"WPA2_ParseRSN: [%d]\n", pRSN->len);
122 WPA2_ClearRSN(pBSSNode);
124 if (pRSN->len == 2) { // ver(2)
125 if ((pRSN->byElementID == WLAN_EID_RSN) && (pRSN->wVersion == 1)) {
126 pBSSNode->bWPA2Valid = TRUE;
128 return;
131 if (pRSN->len < 6) { // ver(2) + GK(4)
132 // invalid CSS, P802.11i/D10.0, p31
133 return;
136 // information element header makes sense
137 if ((pRSN->byElementID == WLAN_EID_RSN) &&
138 (pRSN->wVersion == 1)) {
140 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"Legal 802.11i RSN\n");
142 pbyOUI = &(pRSN->abyRSN[0]);
143 if ( !memcmp(pbyOUI, abyOUIWEP40, 4))
144 pBSSNode->byCSSGK = WLAN_11i_CSS_WEP40;
145 else if ( !memcmp(pbyOUI, abyOUITKIP, 4))
146 pBSSNode->byCSSGK = WLAN_11i_CSS_TKIP;
147 else if ( !memcmp(pbyOUI, abyOUICCMP, 4))
148 pBSSNode->byCSSGK = WLAN_11i_CSS_CCMP;
149 else if ( !memcmp(pbyOUI, abyOUIWEP104, 4))
150 pBSSNode->byCSSGK = WLAN_11i_CSS_WEP104;
151 else if ( !memcmp(pbyOUI, abyOUIGK, 4)) {
152 // invalid CSS, P802.11i/D10.0, p32
153 return;
154 } else
155 // any vendor checks here
156 pBSSNode->byCSSGK = WLAN_11i_CSS_UNKNOWN;
158 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"802.11i CSS: %X\n", pBSSNode->byCSSGK);
160 if (pRSN->len == 6) {
161 pBSSNode->bWPA2Valid = TRUE;
162 return;
165 if (pRSN->len >= 8) { // ver(2) + GK(4) + PK count(2)
166 pBSSNode->wCSSPKCount = *((PWORD) &(pRSN->abyRSN[4]));
167 j = 0;
168 pbyOUI = &(pRSN->abyRSN[6]);
170 for (i = 0; (i < pBSSNode->wCSSPKCount) && (j < sizeof(pBSSNode->abyCSSPK)/sizeof(BYTE)); i++) {
172 if (pRSN->len >= 8+i*4+4) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*i)
173 if ( !memcmp(pbyOUI, abyOUIGK, 4)) {
174 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_USE_GROUP;
175 bUseGK = TRUE;
176 } else if ( !memcmp(pbyOUI, abyOUIWEP40, 4)) {
177 // Invialid CSS, continue to parsing
178 } else if ( !memcmp(pbyOUI, abyOUITKIP, 4)) {
179 if (pBSSNode->byCSSGK != WLAN_11i_CSS_CCMP)
180 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_TKIP;
181 else
182 ; // Invialid CSS, continue to parsing
183 } else if ( !memcmp(pbyOUI, abyOUICCMP, 4)) {
184 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_CCMP;
185 } else if ( !memcmp(pbyOUI, abyOUIWEP104, 4)) {
186 // Invialid CSS, continue to parsing
187 } else {
188 // any vendor checks here
189 pBSSNode->abyCSSPK[j++] = WLAN_11i_CSS_UNKNOWN;
191 pbyOUI += 4;
192 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"abyCSSPK[%d]: %X\n", j-1, pBSSNode->abyCSSPK[j-1]);
193 } else
194 break;
195 } //for
197 if (bUseGK == TRUE) {
198 if (j != 1) {
199 // invalid CSS, This should be only PK CSS.
200 return;
202 if (pBSSNode->byCSSGK == WLAN_11i_CSS_CCMP) {
203 // invalid CSS, If CCMP is enable , PK can't be CSSGK.
204 return;
207 if ((pBSSNode->wCSSPKCount != 0) && (j == 0)) {
208 // invalid CSS, No valid PK.
209 return;
211 pBSSNode->wCSSPKCount = (WORD)j;
212 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"wCSSPKCount: %d\n", pBSSNode->wCSSPKCount);
215 m = *((PWORD) &(pRSN->abyRSN[4]));
217 if (pRSN->len >= 10+m*4) { // ver(2) + GK(4) + PK count(2) + PKS(4*m) + AKMSS count(2)
218 pBSSNode->wAKMSSAuthCount = *((PWORD) &(pRSN->abyRSN[6+4*m]));;
219 j = 0;
220 pbyOUI = &(pRSN->abyRSN[8+4*m]);
221 for (i = 0; (i < pBSSNode->wAKMSSAuthCount) && (j < sizeof(pBSSNode->abyAKMSSAuthType)/sizeof(BYTE)); i++) {
222 if (pRSN->len >= 10+(m+i)*4+4) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*m)+AKMSS(2)+AKS(4*i)
223 if ( !memcmp(pbyOUI, abyOUI8021X, 4))
224 pBSSNode->abyAKMSSAuthType[j++] = WLAN_11i_AKMSS_802_1X;
225 else if ( !memcmp(pbyOUI, abyOUIPSK, 4))
226 pBSSNode->abyAKMSSAuthType[j++] = WLAN_11i_AKMSS_PSK;
227 else
228 // any vendor checks here
229 pBSSNode->abyAKMSSAuthType[j++] = WLAN_11i_AKMSS_UNKNOWN;
230 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"abyAKMSSAuthType[%d]: %X\n", j-1, pBSSNode->abyAKMSSAuthType[j-1]);
231 } else
232 break;
234 pBSSNode->wAKMSSAuthCount = (WORD)j;
235 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"wAKMSSAuthCount: %d\n", pBSSNode->wAKMSSAuthCount);
237 n = *((PWORD) &(pRSN->abyRSN[6+4*m]));;
238 if (pRSN->len >= 12+4*m+4*n) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*m)+AKMSSCnt(2)+AKMSS(4*n)+Cap(2)
239 pBSSNode->sRSNCapObj.bRSNCapExist = TRUE;
240 pBSSNode->sRSNCapObj.wRSNCap = *((PWORD) &(pRSN->abyRSN[8+4*m+4*n]));
243 //ignore PMKID lists bcs only (Re)Assocrequest has this field
244 pBSSNode->bWPA2Valid = TRUE;
251 * Description:
252 * Set WPA IEs
254 * Parameters:
255 * In:
256 * pMgmtHandle - Pointer to management object
257 * Out:
258 * pRSNIEs - Pointer to the RSN IE to set.
260 * Return Value: length of IEs.
263 UINT
264 WPA2uSetIEs(
265 IN PVOID pMgmtHandle,
266 OUT PWLAN_IE_RSN pRSNIEs
269 PSMgmtObject pMgmt = (PSMgmtObject) pMgmtHandle;
270 PBYTE pbyBuffer = NULL;
271 UINT ii = 0;
272 PWORD pwPMKID = NULL;
274 if (pRSNIEs == NULL) {
275 return(0);
277 if (((pMgmt->eAuthenMode == WMAC_AUTH_WPA2) ||
278 (pMgmt->eAuthenMode == WMAC_AUTH_WPA2PSK)) &&
279 (pMgmt->pCurrBSS != NULL)) {
280 /* WPA2 IE */
281 pbyBuffer = (PBYTE) pRSNIEs;
282 pRSNIEs->byElementID = WLAN_EID_RSN;
283 pRSNIEs->len = 6; //Version(2)+GK(4)
284 pRSNIEs->wVersion = 1;
285 //Group Key Cipher Suite
286 pRSNIEs->abyRSN[0] = 0x00;
287 pRSNIEs->abyRSN[1] = 0x0F;
288 pRSNIEs->abyRSN[2] = 0xAC;
289 if (pMgmt->byCSSGK == KEY_CTL_WEP) {
290 pRSNIEs->abyRSN[3] = pMgmt->pCurrBSS->byCSSGK;
291 } else if (pMgmt->byCSSGK == KEY_CTL_TKIP) {
292 pRSNIEs->abyRSN[3] = WLAN_11i_CSS_TKIP;
293 } else if (pMgmt->byCSSGK == KEY_CTL_CCMP) {
294 pRSNIEs->abyRSN[3] = WLAN_11i_CSS_CCMP;
295 } else {
296 pRSNIEs->abyRSN[3] = WLAN_11i_CSS_UNKNOWN;
299 // Pairwise Key Cipher Suite
300 pRSNIEs->abyRSN[4] = 1;
301 pRSNIEs->abyRSN[5] = 0;
302 pRSNIEs->abyRSN[6] = 0x00;
303 pRSNIEs->abyRSN[7] = 0x0F;
304 pRSNIEs->abyRSN[8] = 0xAC;
305 if (pMgmt->byCSSPK == KEY_CTL_TKIP) {
306 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_TKIP;
307 } else if (pMgmt->byCSSPK == KEY_CTL_CCMP) {
308 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_CCMP;
309 } else if (pMgmt->byCSSPK == KEY_CTL_NONE) {
310 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_USE_GROUP;
311 } else {
312 pRSNIEs->abyRSN[9] = WLAN_11i_CSS_UNKNOWN;
314 pRSNIEs->len += 6;
316 // Auth Key Management Suite
317 pRSNIEs->abyRSN[10] = 1;
318 pRSNIEs->abyRSN[11] = 0;
319 pRSNIEs->abyRSN[12] = 0x00;
320 pRSNIEs->abyRSN[13] = 0x0F;
321 pRSNIEs->abyRSN[14] = 0xAC;
322 if (pMgmt->eAuthenMode == WMAC_AUTH_WPA2PSK) {
323 pRSNIEs->abyRSN[15] = WLAN_11i_AKMSS_PSK;
324 } else if (pMgmt->eAuthenMode == WMAC_AUTH_WPA2) {
325 pRSNIEs->abyRSN[15] = WLAN_11i_AKMSS_802_1X;
326 } else {
327 pRSNIEs->abyRSN[15] = WLAN_11i_AKMSS_UNKNOWN;
329 pRSNIEs->len +=6;
331 // RSN Capabilites
332 if (pMgmt->pCurrBSS->sRSNCapObj.bRSNCapExist == TRUE) {
333 memcpy(&pRSNIEs->abyRSN[16], &pMgmt->pCurrBSS->sRSNCapObj.wRSNCap, 2);
334 } else {
335 pRSNIEs->abyRSN[16] = 0;
336 pRSNIEs->abyRSN[17] = 0;
338 pRSNIEs->len +=2;
340 if ((pMgmt->gsPMKIDCache.BSSIDInfoCount > 0) &&
341 (pMgmt->bRoaming == TRUE) &&
342 (pMgmt->eAuthenMode == WMAC_AUTH_WPA2)) {
343 // RSN PMKID
344 pwPMKID = (PWORD)(&pRSNIEs->abyRSN[18]); // Point to PMKID count
345 *pwPMKID = 0; // Initialize PMKID count
346 pbyBuffer = &pRSNIEs->abyRSN[20]; // Point to PMKID list
347 for (ii = 0; ii < pMgmt->gsPMKIDCache.BSSIDInfoCount; ii++) {
348 if ( !memcmp(&pMgmt->gsPMKIDCache.BSSIDInfo[ii].abyBSSID[0], pMgmt->abyCurrBSSID, U_ETHER_ADDR_LEN)) {
349 (*pwPMKID) ++;
350 memcpy(pbyBuffer, pMgmt->gsPMKIDCache.BSSIDInfo[ii].abyPMKID, 16);
351 pbyBuffer += 16;
354 if (*pwPMKID != 0) {
355 pRSNIEs->len += (2 + (*pwPMKID)*16);
356 } else {
357 pbyBuffer = &pRSNIEs->abyRSN[18];
360 return(pRSNIEs->len + WLAN_IEHDR_LEN);
362 return(0);