2 * Copyright (c) 1996, 2003 VIA Networking Technologies, Inc.
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
22 * Purpose: Handles the Basic Service Set & Node Database functions
25 * WPA_ParseRSN - Parse RSN IE.
44 static int msglevel =MSG_LEVEL_INFO;
46 const u8 abyOUI00[4] = { 0x00, 0x50, 0xf2, 0x00 };
47 const u8 abyOUI01[4] = { 0x00, 0x50, 0xf2, 0x01 };
48 const u8 abyOUI02[4] = { 0x00, 0x50, 0xf2, 0x02 };
49 const u8 abyOUI03[4] = { 0x00, 0x50, 0xf2, 0x03 };
50 const u8 abyOUI04[4] = { 0x00, 0x50, 0xf2, 0x04 };
51 const u8 abyOUI05[4] = { 0x00, 0x50, 0xf2, 0x05 };
56 * Clear RSN information in BSSList.
60 * pBSSList - BSS list.
74 pBSSList->byGKType = WPA_TKIP;
75 for (ii=0; ii < 4; ii ++)
76 pBSSList->abyPKType[ii] = WPA_TKIP;
77 pBSSList->wPKCount = 0;
78 for (ii=0; ii < 4; ii ++)
79 pBSSList->abyAuthType[ii] = WPA_AUTH_IEEE802_1X;
80 pBSSList->wAuthCount = 0;
81 pBSSList->byDefaultK_as_PK = 0;
82 pBSSList->byReplayIdx = 0;
83 pBSSList->sRSNCapObj.bRSNCapExist = false;
84 pBSSList->sRSNCapObj.wRSNCap = 0;
85 pBSSList->bWPAValid = false;
95 * pBSSList - BSS list.
96 * pRSN - Pointer to the RSN IE.
100 * Return Value: none.
106 PWLAN_IE_RSN_EXT pRSN
109 PWLAN_IE_RSN_AUTH pIE_RSN_Auth = NULL;
113 WPA_ClearRSN(pBSSList);
115 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"WPA_ParseRSN: [%d]\n", pRSN->len);
117 // information element header makes sense
118 if ((pRSN->len >= 6) // oui1(4)+ver(2)
119 && (pRSN->byElementID == WLAN_EID_RSN_WPA) && !memcmp(pRSN->abyOUI, abyOUI01, 4)
120 && (pRSN->wVersion == 1)) {
122 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"Legal RSN\n");
123 // update each variable if pRSN is long enough to contain the variable
124 if (pRSN->len >= 10) //oui1(4)+ver(2)+GKSuite(4)
126 if ( !memcmp(pRSN->abyMulticast, abyOUI01, 4))
127 pBSSList->byGKType = WPA_WEP40;
128 else if ( !memcmp(pRSN->abyMulticast, abyOUI02, 4))
129 pBSSList->byGKType = WPA_TKIP;
130 else if ( !memcmp(pRSN->abyMulticast, abyOUI03, 4))
131 pBSSList->byGKType = WPA_AESWRAP;
132 else if ( !memcmp(pRSN->abyMulticast, abyOUI04, 4))
133 pBSSList->byGKType = WPA_AESCCMP;
134 else if ( !memcmp(pRSN->abyMulticast, abyOUI05, 4))
135 pBSSList->byGKType = WPA_WEP104;
137 // any vendor checks here
138 pBSSList->byGKType = WPA_NONE;
140 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"byGKType: %x\n", pBSSList->byGKType);
143 if (pRSN->len >= 12) //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)
146 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"wPKCount: %d, sizeof(pBSSList->abyPKType): %zu\n", pRSN->wPKCount, sizeof(pBSSList->abyPKType));
147 for (i = 0; (i < pRSN->wPKCount) &&
148 (j < ARRAY_SIZE(pBSSList->abyPKType)); i++) {
149 if(pRSN->len >= 12+i*4+4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*i)
150 if ( !memcmp(pRSN->PKSList[i].abyOUI, abyOUI00, 4))
151 pBSSList->abyPKType[j++] = WPA_NONE;
152 else if ( !memcmp(pRSN->PKSList[i].abyOUI, abyOUI02, 4))
153 pBSSList->abyPKType[j++] = WPA_TKIP;
154 else if ( !memcmp(pRSN->PKSList[i].abyOUI, abyOUI03, 4))
155 pBSSList->abyPKType[j++] = WPA_AESWRAP;
156 else if ( !memcmp(pRSN->PKSList[i].abyOUI, abyOUI04, 4))
157 pBSSList->abyPKType[j++] = WPA_AESCCMP;
159 // any vendor checks here
164 //DBG_PRN_GRP14(("abyPKType[%d]: %X\n", j-1, pBSSList->abyPKType[j-1]));
166 pBSSList->wPKCount = (u16)j;
167 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"wPKCount: %d\n", pBSSList->wPKCount);
171 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"m: %d\n", m);
172 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"14+m*4: %d\n", 14+m*4);
174 if (pRSN->len >= 14+m*4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*m)+AKC(2)
175 // overlay IE_RSN_Auth structure into correct place
176 pIE_RSN_Auth = (PWLAN_IE_RSN_AUTH) pRSN->PKSList[m].abyOUI;
178 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"wAuthCount: %d, sizeof(pBSSList->abyAuthType): %zu\n",
179 pIE_RSN_Auth->wAuthCount, sizeof(pBSSList->abyAuthType));
180 for (i = 0; (i < pIE_RSN_Auth->wAuthCount) &&
181 (j < ARRAY_SIZE(pBSSList->abyAuthType)); i++) {
182 if(pRSN->len >= 14+4+(m+i)*4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*m)+AKC(2)+AKS(4*i)
183 if ( !memcmp(pIE_RSN_Auth->AuthKSList[i].abyOUI, abyOUI01, 4))
184 pBSSList->abyAuthType[j++] = WPA_AUTH_IEEE802_1X;
185 else if ( !memcmp(pIE_RSN_Auth->AuthKSList[i].abyOUI, abyOUI02, 4))
186 pBSSList->abyAuthType[j++] = WPA_AUTH_PSK;
188 // any vendor checks here
193 //DBG_PRN_GRP14(("abyAuthType[%d]: %X\n", j-1, pBSSList->abyAuthType[j-1]));
196 pBSSList->wAuthCount = (u16)j;
197 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"wAuthCount: %d\n", pBSSList->wAuthCount);
200 if (pIE_RSN_Auth != NULL) {
202 n = pIE_RSN_Auth->wAuthCount;
204 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"n: %d\n", n);
205 DBG_PRT(MSG_LEVEL_DEBUG, KERN_INFO"14+4+(m+n)*4: %d\n", 14+4+(m+n)*4);
207 if(pRSN->len+2 >= 14+4+(m+n)*4) { //oui1(4)+ver(2)+GKS(4)+PKSCnt(2)+PKS(4*m)+AKC(2)+AKS(4*n)+Cap(2)
208 pbyCaps = (u8 *)pIE_RSN_Auth->AuthKSList[n].abyOUI;
209 pBSSList->byDefaultK_as_PK = (*pbyCaps) & WPA_GROUPFLAG;
210 pBSSList->byReplayIdx = 2 << ((*pbyCaps >> WPA_REPLAYBITSSHIFT) & WPA_REPLAYBITS);
211 pBSSList->sRSNCapObj.bRSNCapExist = true;
212 pBSSList->sRSNCapObj.wRSNCap = *(u16 *)pbyCaps;
213 //DBG_PRN_GRP14(("pbyCaps: %X\n", *pbyCaps));
214 //DBG_PRN_GRP14(("byDefaultK_as_PK: %X\n", pBSSList->byDefaultK_as_PK));
215 //DBG_PRN_GRP14(("byReplayIdx: %X\n", pBSSList->byReplayIdx));
218 pBSSList->bWPAValid = true;
225 * Search RSN information in BSSList.
229 * byCmd - Search type
230 * byEncrypt- Encrypt Type
231 * pBSSList - BSS list
235 * Return Value: none.
246 u8 byPKType = WPA_NONE;
248 if (pBSSList->bWPAValid == false)
254 if (byEncrypt != pBSSList->byGKType)
257 if (pBSSList->wPKCount > 0) {
258 for (ii = 0; ii < pBSSList->wPKCount; ii ++) {
259 if (pBSSList->abyPKType[ii] == WPA_AESCCMP)
260 byPKType = WPA_AESCCMP;
261 else if ((pBSSList->abyPKType[ii] == WPA_TKIP) && (byPKType != WPA_AESCCMP))
263 else if ((pBSSList->abyPKType[ii] == WPA_WEP40) && (byPKType != WPA_AESCCMP) && (byPKType != WPA_TKIP))
264 byPKType = WPA_WEP40;
265 else if ((pBSSList->abyPKType[ii] == WPA_WEP104) && (byPKType != WPA_AESCCMP) && (byPKType != WPA_TKIP))
266 byPKType = WPA_WEP104;
268 if (byEncrypt != byPKType)
272 // if (pBSSList->wAuthCount > 0)
273 // for (ii=0; ii < pBSSList->wAuthCount; ii ++)
274 // if (byAuth == pBSSList->abyAuthType[ii])
287 * Check if RSN IE makes sense.
291 * pRSN - Pointer to the RSN IE.
295 * Return Value: none.
300 PWLAN_IE_RSN_EXT pRSN
306 if ((pRSN->len >= 6) && // oui1(4)+ver(2)
307 (pRSN->byElementID == WLAN_EID_RSN_WPA) && !memcmp(pRSN->abyOUI, abyOUI01, 4) &&
308 (pRSN->wVersion == 1)) {