drivers/staging/vt6655/wpa.c

   1 /*
   2  * Copyright (c) 1996, 2003 VIA Networking Technologies, Inc.
   3  * All rights reserved.
   4  *
   5  * This program is free software; you can redistribute it and/or modify
   6  * it under the terms of the GNU General Public License as published by
   7  * the Free Software Foundation; either version 2 of the License, or
   8  * (at your option) any later version.
   9  *
  10  * This program is distributed in the hope that it will be useful,
  11  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  12  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  13  * GNU General Public License for more details.
  14  *
  15  * You should have received a copy of the GNU General Public License along
  16  * with this program; if not, write to the Free Software Foundation, Inc.,
  17  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
  18  *
  19  *
  20  * File: wpa.c
  21  *
  22  * Purpose: Handles the Basic Service Set & Node Database functions
  23  *
  24  * Functions:
  25  *      WPA_ParseRSN - Parse RSN IE.
  26  *
  27  * Revision History:
  28  *
  29  * Author: Kyle Hsu
  30  *
  31  * Date: July 14, 2003
  32  *
  33  */
  34
  35 #include "ttype.h"
  36 #include "tmacro.h"
  37 #include "tether.h"
  38 #include "device.h"
  39 #include "80211hdr.h"
  40 #include "bssdb.h"
  41 #include "wmgr.h"
  42 #include "wpa.h"
  43 #include "80211mgr.h"
  44
  45 /*---------------------  Static Variables  --------------------------*/
  46 static int msglevel = MSG_LEVEL_INFO;
  47
  48 const unsigned char abyOUI00[4] = { 0x00, 0x50, 0xf2, 0x00 };
  49 const unsigned char abyOUI01[4] = { 0x00, 0x50, 0xf2, 0x01 };
  50 const unsigned char abyOUI02[4] = { 0x00, 0x50, 0xf2, 0x02 };
  51 const unsigned char abyOUI03[4] = { 0x00, 0x50, 0xf2, 0x03 };
  52 const unsigned char abyOUI04[4] = { 0x00, 0x50, 0xf2, 0x04 };
  53 const unsigned char abyOUI05[4] = { 0x00, 0x50, 0xf2, 0x05 };
  54
  55 /*+
  56  *
  57  * Description:
  58  *    Clear RSN information in BSSList.
  59  *
  60  * Parameters:
  61  *  In:
  62  *      pBSSList - BSS list.
  63  *  Out:
  64  *      none
  65  *
  66  * Return Value: none.
  67  *
  68  -*/
  69
  70 void
  71 WPA_ClearRSN(
  72         PKnownBSS        pBSSList
  73 )
  74 {
  75         int ii;
  76         pBSSList->byGKType = WPA_TKIP;
  77         for (ii = 0; ii < 4; ii++)
  78                 pBSSList->abyPKType[ii] = WPA_TKIP;
  79         pBSSList->wPKCount = 0;
  80         for (ii = 0; ii < 4; ii++)
  81                 pBSSList->abyAuthType[ii] = WPA_AUTH_IEEE802_1X;
  82         pBSSList->wAuthCount = 0;
  83         pBSSList->byDefaultK_as_PK = 0;
  84         pBSSList->byReplayIdx = 0;
  85         pBSSList->sRSNCapObj.bRSNCapExist = false;
  86         pBSSList->sRSNCapObj.wRSNCap = 0;
  87         pBSSList->bWPAValid = false;
  88 }
  89
  90 /*+
  91  *
  92  * Description:
  93  *    Parse RSN IE.
  94  *
  95  * Parameters:
  96  *  In:
  97  *      pBSSList - BSS list.
  98  *      pRSN - Pointer to the RSN IE.
  99  *  Out:
 100  *      none
 101  *
 102  * Return Value: none.
 103  *
 104  -*/
 105 void
 106 WPA_ParseRSN(
 107         PKnownBSS        pBSSList,
 108         PWLAN_IE_RSN_EXT pRSN
 109 )
 110 {
 111         PWLAN_IE_RSN_AUTH  pIE_RSN_Auth = NULL;
 112         int                i, j, m, n = 0;
 113         unsigned char *pbyCaps;
 114
 115         WPA_ClearRSN(pBSSList);
 116
 117         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "WPA_ParseRSN: [%d]\n", pRSN->len);
 118
 119         // information element header makes sense
 120         if ((pRSN->len >= 6) // oui1(4)+ver(2)
 121             && (pRSN->byElementID == WLAN_EID_RSN_WPA) && !memcmp(pRSN->abyOUI, abyOUI01, 4)
 122             && (pRSN->wVersion == 1)) {
 123                 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "Legal RSN\n");
 124                 // update each variable if pRSN is long enough to contain the variable
 125                 if (pRSN->len >= 10) //oui1(4)+ver(2)+GKSuite(4)
 126                 {
 127                         if (!memcmp(pRSN->abyMulticast, abyOUI01, 4))
 128                                 pBSSList->byGKType = WPA_WEP40;
 129                         else if (!memcmp(pRSN->abyMulticast, abyOUI02, 4))
 130                                 pBSSList->byGKType = WPA_TKIP;
 131                         else if (!memcmp(pRSN->abyMulticast, abyOUI03, 4))
 132                                 pBSSList->byGKType = WPA_AESWRAP;
 133                         else if (!memcmp(pRSN->abyMulticast, abyOUI04, 4))
 134                                 pBSSList->byGKType = WPA_AESCCMP;
 135                         else if (!memcmp(pRSN->abyMulticast, abyOUI05, 4))
 136                                 pBSSList->byGKType = WPA_WEP104;
 137                         else
 138                                 // any vendor checks here
 139                                 pBSSList->byGKType = WPA_NONE;
 140
 141                         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "byGKType: %x\n", pBSSList->byGKType);
 142                 }
 143
 144                 if (pRSN->len >= 12) //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)
 145                 {
 146                         j = 0;
 147                         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "wPKCount: %d, sizeof(pBSSList->abyPKType): %zu\n", pRSN->wPKCount, sizeof(pBSSList->abyPKType));
 148                         for (i = 0; (i < pRSN->wPKCount) && (j < ARRAY_SIZE(pBSSList->abyPKType)); i++) {
 149                                 if (pRSN->len >= 12+i*4+4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*i)
 150                                         if (!memcmp(pRSN->PKSList[i].abyOUI, abyOUI00, 4))
 151                                                 pBSSList->abyPKType[j++] = WPA_NONE;
 152                                         else if (!memcmp(pRSN->PKSList[i].abyOUI, abyOUI02, 4))
 153                                                 pBSSList->abyPKType[j++] = WPA_TKIP;
 154                                         else if (!memcmp(pRSN->PKSList[i].abyOUI, abyOUI03, 4))
 155                                                 pBSSList->abyPKType[j++] = WPA_AESWRAP;
 156                                         else if (!memcmp(pRSN->PKSList[i].abyOUI, abyOUI04, 4))
 157                                                 pBSSList->abyPKType[j++] = WPA_AESCCMP;
 158                                         else
 159                                                 // any vendor checks here
 160                                                 ;
 161                                 } else
 162                                         break;
 163                                 //DBG_PRN_GRP14(("abyPKType[%d]: %X\n", j-1, pBSSList->abyPKType[j-1]));
 164                         } //for
 165                         pBSSList->wPKCount = (unsigned short)j;
 166                         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "wPKCount: %d\n", pBSSList->wPKCount);
 167                 }
 168
 169                 m = pRSN->wPKCount;
 170                 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "m: %d\n", m);
 171                 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "14+m*4: %d\n", 14+m*4);
 172
 173                 if (pRSN->len >= 14+m*4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*m)+AKC(2)
 174                         // overlay IE_RSN_Auth structure into correct place
 175                         pIE_RSN_Auth = (PWLAN_IE_RSN_AUTH) pRSN->PKSList[m].abyOUI;
 176                         j = 0;
 177                         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "wAuthCount: %d, sizeof(pBSSList->abyAuthType): %zu\n",
 178                                 pIE_RSN_Auth->wAuthCount, sizeof(pBSSList->abyAuthType));
 179                         for (i = 0; (i < pIE_RSN_Auth->wAuthCount) && (j < ARRAY_SIZE(pBSSList->abyAuthType)); i++) {
 180                                 if (pRSN->len >= 14+4+(m+i)*4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*m)+AKC(2)+AKS(4*i)
 181                                         if (!memcmp(pIE_RSN_Auth->AuthKSList[i].abyOUI, abyOUI01, 4))
 182                                                 pBSSList->abyAuthType[j++] = WPA_AUTH_IEEE802_1X;
 183                                         else if (!memcmp(pIE_RSN_Auth->AuthKSList[i].abyOUI, abyOUI02, 4))
 184                                                 pBSSList->abyAuthType[j++] = WPA_AUTH_PSK;
 185                                         else
 186                                                 // any vendor checks here
 187                                                 ;
 188                                 } else
 189                                         break;
 190                                 //DBG_PRN_GRP14(("abyAuthType[%d]: %X\n", j-1, pBSSList->abyAuthType[j-1]));
 191                         }
 192                         if (j > 0)
 193                                 pBSSList->wAuthCount = (unsigned short)j;
 194                         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "wAuthCount: %d\n", pBSSList->wAuthCount);
 195                 }
 196
 197                 if (pIE_RSN_Auth != NULL) {
 198                         n = pIE_RSN_Auth->wAuthCount;
 199
 200                         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "n: %d\n", n);
 201                         DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO "14+4+(m+n)*4: %d\n", 14+4+(m+n)*4);
 202
 203                         if (pRSN->len+2 >= 14+4+(m+n)*4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*m)+AKC(2)+AKS(4*n)+Cap(2)
 204                                 pbyCaps = (unsigned char *)pIE_RSN_Auth->AuthKSList[n].abyOUI;
 205                                 pBSSList->byDefaultK_as_PK = (*pbyCaps) & WPA_GROUPFLAG;
 206                                 pBSSList->byReplayIdx = 2 << ((*pbyCaps >> WPA_REPLAYBITSSHIFT) & WPA_REPLAYBITS);
 207                                 pBSSList->sRSNCapObj.bRSNCapExist = true;
 208                                 pBSSList->sRSNCapObj.wRSNCap = *(unsigned short *)pbyCaps;
 209                                 //DBG_PRN_GRP14(("pbyCaps: %X\n", *pbyCaps));
 210                                 //DBG_PRN_GRP14(("byDefaultK_as_PK: %X\n", pBSSList->byDefaultK_as_PK));
 211                                 //DBG_PRN_GRP14(("byReplayIdx: %X\n", pBSSList->byReplayIdx));
 212                         }
 213                 }
 214                 pBSSList->bWPAValid = true;
 215         }
 216 }
 217
 218 /*+
 219  *
 220  * Description:
 221  *    Search RSN information in BSSList.
 222  *
 223  * Parameters:
 224  *  In:
 225  *      byCmd    - Search type
 226  *      byEncrypt- Encrypt Type
 227  *      pBSSList - BSS list
 228  *  Out:
 229  *      none
 230  *
 231  * Return Value: none.
 232  *
 233  -*/
 234 bool
 235 WPA_SearchRSN(
 236         unsigned char byCmd,
 237         unsigned char byEncrypt,
 238         PKnownBSS        pBSSList
 239 )
 240 {
 241         int ii;
 242         unsigned char byPKType = WPA_NONE;
 243
 244         if (pBSSList->bWPAValid == false)
 245                 return false;
 246
 247         switch (byCmd) {
 248         case 0:
 249
 250                 if (byEncrypt != pBSSList->byGKType)
 251                         return false;
 252
 253                 if (pBSSList->wPKCount > 0) {
 254                         for (ii = 0; ii < pBSSList->wPKCount; ii++) {
 255                                 if (pBSSList->abyPKType[ii] == WPA_AESCCMP)
 256                                         byPKType = WPA_AESCCMP;
 257                                 else if ((pBSSList->abyPKType[ii] == WPA_TKIP) && (byPKType != WPA_AESCCMP))
 258                                         byPKType = WPA_TKIP;
 259                                 else if ((pBSSList->abyPKType[ii] == WPA_WEP40) && (byPKType != WPA_AESCCMP) && (byPKType != WPA_TKIP))
 260                                         byPKType = WPA_WEP40;
 261                                 else if ((pBSSList->abyPKType[ii] == WPA_WEP104) && (byPKType != WPA_AESCCMP) && (byPKType != WPA_TKIP))
 262                                         byPKType = WPA_WEP104;
 263                         }
 264                         if (byEncrypt != byPKType)
 265                                 return false;
 266                 }
 267                 return true;
 268                 break;
 269
 270         default:
 271                 break;
 272         }
 273         return false;
 274 }
 275
 276 /*+
 277  *
 278  * Description:
 279  *    Check if RSN IE makes sense.
 280  *
 281  * Parameters:
 282  *  In:
 283  *      pRSN - Pointer to the RSN IE.
 284  *  Out:
 285  *      none
 286  *
 287  * Return Value: none.
 288  *
 289  -*/
 290 bool
 291 WPAb_Is_RSN(
 292         PWLAN_IE_RSN_EXT pRSN
 293 )
 294 {
 295         if (pRSN == NULL)
 296                 return false;
 297
 298         if ((pRSN->len >= 6) && // oui1(4)+ver(2)
 299             (pRSN->byElementID == WLAN_EID_RSN_WPA) &&  !memcmp(pRSN->abyOUI, abyOUI01, 4) &&
 300             (pRSN->wVersion == 1)) {
 301                 return true;
 302         } else
 303                 return false;
 304 }