2 * Copyright (c) 1996, 2003 VIA Networking Technologies, Inc.
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
22 * Purpose: Handles the Basic Service Set & Node Database functions
28 * Author: Yiching Chen
37 /*--------------------- Static Definitions -------------------------*/
38 static int msglevel
=MSG_LEVEL_INFO
;
39 //static int msglevel =MSG_LEVEL_DEBUG;
40 /*--------------------- Static Classes ----------------------------*/
42 /*--------------------- Static Variables --------------------------*/
44 const BYTE abyOUIGK
[4] = { 0x00, 0x0F, 0xAC, 0x00 };
45 const BYTE abyOUIWEP40
[4] = { 0x00, 0x0F, 0xAC, 0x01 };
46 const BYTE abyOUIWEP104
[4] = { 0x00, 0x0F, 0xAC, 0x05 };
47 const BYTE abyOUITKIP
[4] = { 0x00, 0x0F, 0xAC, 0x02 };
48 const BYTE abyOUICCMP
[4] = { 0x00, 0x0F, 0xAC, 0x04 };
50 const BYTE abyOUI8021X
[4] = { 0x00, 0x0F, 0xAC, 0x01 };
51 const BYTE abyOUIPSK
[4] = { 0x00, 0x0F, 0xAC, 0x02 };
54 /*--------------------- Static Functions --------------------------*/
56 /*--------------------- Export Variables --------------------------*/
58 /*--------------------- Export Functions --------------------------*/
63 * Clear RSN information in BSSList.
67 * pBSSNode - BSS list.
81 pBSSNode
->bWPA2Valid
= FALSE
;
83 pBSSNode
->byCSSGK
= WLAN_11i_CSS_CCMP
;
84 for (ii
=0; ii
< 4; ii
++)
85 pBSSNode
->abyCSSPK
[ii
] = WLAN_11i_CSS_CCMP
;
86 pBSSNode
->wCSSPKCount
= 1;
87 for (ii
=0; ii
< 4; ii
++)
88 pBSSNode
->abyAKMSSAuthType
[ii
] = WLAN_11i_AKMSS_802_1X
;
89 pBSSNode
->wAKMSSAuthCount
= 1;
90 pBSSNode
->sRSNCapObj
.bRSNCapExist
= FALSE
;
91 pBSSNode
->sRSNCapObj
.wRSNCap
= 0;
101 * pBSSNode - BSS list.
102 * pRSN - Pointer to the RSN IE.
106 * Return Value: none.
120 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"WPA2_ParseRSN: [%d]\n", pRSN
->len
);
122 WPA2_ClearRSN(pBSSNode
);
124 if (pRSN
->len
== 2) { // ver(2)
125 if ((pRSN
->byElementID
== WLAN_EID_RSN
) && (pRSN
->wVersion
== 1)) {
126 pBSSNode
->bWPA2Valid
= TRUE
;
131 if (pRSN
->len
< 6) { // ver(2) + GK(4)
132 // invalid CSS, P802.11i/D10.0, p31
136 // information element header makes sense
137 if ((pRSN
->byElementID
== WLAN_EID_RSN
) &&
138 (pRSN
->wVersion
== 1)) {
140 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"Legal 802.11i RSN\n");
142 pbyOUI
= &(pRSN
->abyRSN
[0]);
143 if ( !memcmp(pbyOUI
, abyOUIWEP40
, 4))
144 pBSSNode
->byCSSGK
= WLAN_11i_CSS_WEP40
;
145 else if ( !memcmp(pbyOUI
, abyOUITKIP
, 4))
146 pBSSNode
->byCSSGK
= WLAN_11i_CSS_TKIP
;
147 else if ( !memcmp(pbyOUI
, abyOUICCMP
, 4))
148 pBSSNode
->byCSSGK
= WLAN_11i_CSS_CCMP
;
149 else if ( !memcmp(pbyOUI
, abyOUIWEP104
, 4))
150 pBSSNode
->byCSSGK
= WLAN_11i_CSS_WEP104
;
151 else if ( !memcmp(pbyOUI
, abyOUIGK
, 4)) {
152 // invalid CSS, P802.11i/D10.0, p32
155 // any vendor checks here
156 pBSSNode
->byCSSGK
= WLAN_11i_CSS_UNKNOWN
;
158 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"802.11i CSS: %X\n", pBSSNode
->byCSSGK
);
160 if (pRSN
->len
== 6) {
161 pBSSNode
->bWPA2Valid
= TRUE
;
165 if (pRSN
->len
>= 8) { // ver(2) + GK(4) + PK count(2)
166 pBSSNode
->wCSSPKCount
= *((PWORD
) &(pRSN
->abyRSN
[4]));
168 pbyOUI
= &(pRSN
->abyRSN
[6]);
170 for (i
= 0; (i
< pBSSNode
->wCSSPKCount
) && (j
< sizeof(pBSSNode
->abyCSSPK
)/sizeof(BYTE
)); i
++) {
172 if (pRSN
->len
>= 8+i
*4+4) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*i)
173 if ( !memcmp(pbyOUI
, abyOUIGK
, 4)) {
174 pBSSNode
->abyCSSPK
[j
++] = WLAN_11i_CSS_USE_GROUP
;
176 } else if ( !memcmp(pbyOUI
, abyOUIWEP40
, 4)) {
177 // Invialid CSS, continue to parsing
178 } else if ( !memcmp(pbyOUI
, abyOUITKIP
, 4)) {
179 if (pBSSNode
->byCSSGK
!= WLAN_11i_CSS_CCMP
)
180 pBSSNode
->abyCSSPK
[j
++] = WLAN_11i_CSS_TKIP
;
182 ; // Invialid CSS, continue to parsing
183 } else if ( !memcmp(pbyOUI
, abyOUICCMP
, 4)) {
184 pBSSNode
->abyCSSPK
[j
++] = WLAN_11i_CSS_CCMP
;
185 } else if ( !memcmp(pbyOUI
, abyOUIWEP104
, 4)) {
186 // Invialid CSS, continue to parsing
188 // any vendor checks here
189 pBSSNode
->abyCSSPK
[j
++] = WLAN_11i_CSS_UNKNOWN
;
192 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"abyCSSPK[%d]: %X\n", j
-1, pBSSNode
->abyCSSPK
[j
-1]);
197 if (bUseGK
== TRUE
) {
199 // invalid CSS, This should be only PK CSS.
202 if (pBSSNode
->byCSSGK
== WLAN_11i_CSS_CCMP
) {
203 // invalid CSS, If CCMP is enable , PK can't be CSSGK.
207 if ((pBSSNode
->wCSSPKCount
!= 0) && (j
== 0)) {
208 // invalid CSS, No valid PK.
211 pBSSNode
->wCSSPKCount
= (WORD
)j
;
212 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"wCSSPKCount: %d\n", pBSSNode
->wCSSPKCount
);
215 m
= *((PWORD
) &(pRSN
->abyRSN
[4]));
217 if (pRSN
->len
>= 10+m
*4) { // ver(2) + GK(4) + PK count(2) + PKS(4*m) + AKMSS count(2)
218 pBSSNode
->wAKMSSAuthCount
= *((PWORD
) &(pRSN
->abyRSN
[6+4*m
]));
220 pbyOUI
= &(pRSN
->abyRSN
[8+4*m
]);
221 for (i
= 0; (i
< pBSSNode
->wAKMSSAuthCount
) && (j
< sizeof(pBSSNode
->abyAKMSSAuthType
)/sizeof(BYTE
)); i
++) {
222 if (pRSN
->len
>= 10+(m
+i
)*4+4) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*m)+AKMSS(2)+AKS(4*i)
223 if ( !memcmp(pbyOUI
, abyOUI8021X
, 4))
224 pBSSNode
->abyAKMSSAuthType
[j
++] = WLAN_11i_AKMSS_802_1X
;
225 else if ( !memcmp(pbyOUI
, abyOUIPSK
, 4))
226 pBSSNode
->abyAKMSSAuthType
[j
++] = WLAN_11i_AKMSS_PSK
;
228 // any vendor checks here
229 pBSSNode
->abyAKMSSAuthType
[j
++] = WLAN_11i_AKMSS_UNKNOWN
;
230 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"abyAKMSSAuthType[%d]: %X\n", j
-1, pBSSNode
->abyAKMSSAuthType
[j
-1]);
234 pBSSNode
->wAKMSSAuthCount
= (WORD
)j
;
235 DBG_PRT(MSG_LEVEL_DEBUG
, KERN_INFO
"wAKMSSAuthCount: %d\n", pBSSNode
->wAKMSSAuthCount
);
237 n
= *((PWORD
) &(pRSN
->abyRSN
[6+4*m
]));
238 if (pRSN
->len
>= 12+4*m
+4*n
) { // ver(2)+GK(4)+PKCnt(2)+PKS(4*m)+AKMSSCnt(2)+AKMSS(4*n)+Cap(2)
239 pBSSNode
->sRSNCapObj
.bRSNCapExist
= TRUE
;
240 pBSSNode
->sRSNCapObj
.wRSNCap
= *((PWORD
) &(pRSN
->abyRSN
[8+4*m
+4*n
]));
243 //ignore PMKID lists bcs only (Re)Assocrequest has this field
244 pBSSNode
->bWPA2Valid
= TRUE
;
256 * pMgmtHandle - Pointer to management object
258 * pRSNIEs - Pointer to the RSN IE to set.
260 * Return Value: length of IEs.
264 WPA2uSetIEs(void *pMgmtHandle
,
268 PSMgmtObject pMgmt
= (PSMgmtObject
) pMgmtHandle
;
269 PBYTE pbyBuffer
= NULL
;
271 PWORD pwPMKID
= NULL
;
273 if (pRSNIEs
== NULL
) {
276 if (((pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) ||
277 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2PSK
)) &&
278 (pMgmt
->pCurrBSS
!= NULL
)) {
280 pbyBuffer
= (PBYTE
) pRSNIEs
;
281 pRSNIEs
->byElementID
= WLAN_EID_RSN
;
282 pRSNIEs
->len
= 6; //Version(2)+GK(4)
283 pRSNIEs
->wVersion
= 1;
284 //Group Key Cipher Suite
285 pRSNIEs
->abyRSN
[0] = 0x00;
286 pRSNIEs
->abyRSN
[1] = 0x0F;
287 pRSNIEs
->abyRSN
[2] = 0xAC;
288 if (pMgmt
->byCSSGK
== KEY_CTL_WEP
) {
289 pRSNIEs
->abyRSN
[3] = pMgmt
->pCurrBSS
->byCSSGK
;
290 } else if (pMgmt
->byCSSGK
== KEY_CTL_TKIP
) {
291 pRSNIEs
->abyRSN
[3] = WLAN_11i_CSS_TKIP
;
292 } else if (pMgmt
->byCSSGK
== KEY_CTL_CCMP
) {
293 pRSNIEs
->abyRSN
[3] = WLAN_11i_CSS_CCMP
;
295 pRSNIEs
->abyRSN
[3] = WLAN_11i_CSS_UNKNOWN
;
298 // Pairwise Key Cipher Suite
299 pRSNIEs
->abyRSN
[4] = 1;
300 pRSNIEs
->abyRSN
[5] = 0;
301 pRSNIEs
->abyRSN
[6] = 0x00;
302 pRSNIEs
->abyRSN
[7] = 0x0F;
303 pRSNIEs
->abyRSN
[8] = 0xAC;
304 if (pMgmt
->byCSSPK
== KEY_CTL_TKIP
) {
305 pRSNIEs
->abyRSN
[9] = WLAN_11i_CSS_TKIP
;
306 } else if (pMgmt
->byCSSPK
== KEY_CTL_CCMP
) {
307 pRSNIEs
->abyRSN
[9] = WLAN_11i_CSS_CCMP
;
308 } else if (pMgmt
->byCSSPK
== KEY_CTL_NONE
) {
309 pRSNIEs
->abyRSN
[9] = WLAN_11i_CSS_USE_GROUP
;
311 pRSNIEs
->abyRSN
[9] = WLAN_11i_CSS_UNKNOWN
;
315 // Auth Key Management Suite
316 pRSNIEs
->abyRSN
[10] = 1;
317 pRSNIEs
->abyRSN
[11] = 0;
318 pRSNIEs
->abyRSN
[12] = 0x00;
319 pRSNIEs
->abyRSN
[13] = 0x0F;
320 pRSNIEs
->abyRSN
[14] = 0xAC;
321 if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2PSK
) {
322 pRSNIEs
->abyRSN
[15] = WLAN_11i_AKMSS_PSK
;
323 } else if (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
) {
324 pRSNIEs
->abyRSN
[15] = WLAN_11i_AKMSS_802_1X
;
326 pRSNIEs
->abyRSN
[15] = WLAN_11i_AKMSS_UNKNOWN
;
331 if (pMgmt
->pCurrBSS
->sRSNCapObj
.bRSNCapExist
== TRUE
) {
332 memcpy(&pRSNIEs
->abyRSN
[16], &pMgmt
->pCurrBSS
->sRSNCapObj
.wRSNCap
, 2);
334 pRSNIEs
->abyRSN
[16] = 0;
335 pRSNIEs
->abyRSN
[17] = 0;
339 if ((pMgmt
->gsPMKIDCache
.BSSIDInfoCount
> 0) &&
340 (pMgmt
->bRoaming
== TRUE
) &&
341 (pMgmt
->eAuthenMode
== WMAC_AUTH_WPA2
)) {
342 /* RSN PMKID, pointer to PMKID count */
343 pwPMKID
= (PWORD
)(&pRSNIEs
->abyRSN
[18]);
344 *pwPMKID
= 0; /* Initialize PMKID count */
345 pbyBuffer
= &pRSNIEs
->abyRSN
[20]; /* Point to PMKID list */
346 for (ii
= 0; ii
< pMgmt
->gsPMKIDCache
.BSSIDInfoCount
; ii
++) {
348 gsPMKIDCache
.BSSIDInfo
[ii
].abyBSSID
[0],
353 pMgmt
->gsPMKIDCache
.BSSIDInfo
[ii
].abyPMKID
,
359 pRSNIEs
->len
+= (2 + (*pwPMKID
)*16);
361 pbyBuffer
= &pRSNIEs
->abyRSN
[18];
364 return(pRSNIEs
->len
+ WLAN_IEHDR_LEN
);