diff options
Diffstat (limited to 'net/ieee80211/ieee80211_crypt_tkip.c')
-rw-r--r-- | net/ieee80211/ieee80211_crypt_tkip.c | 114 |
1 files changed, 80 insertions, 34 deletions
diff --git a/net/ieee80211/ieee80211_crypt_tkip.c b/net/ieee80211/ieee80211_crypt_tkip.c index 407a17495b61..4200ec509866 100644 --- a/net/ieee80211/ieee80211_crypt_tkip.c +++ b/net/ieee80211/ieee80211_crypt_tkip.c | |||
@@ -53,8 +53,10 @@ struct ieee80211_tkip_data { | |||
53 | 53 | ||
54 | int key_idx; | 54 | int key_idx; |
55 | 55 | ||
56 | struct crypto_blkcipher *tfm_arc4; | 56 | struct crypto_blkcipher *rx_tfm_arc4; |
57 | struct crypto_hash *tfm_michael; | 57 | struct crypto_hash *rx_tfm_michael; |
58 | struct crypto_blkcipher *tx_tfm_arc4; | ||
59 | struct crypto_hash *tx_tfm_michael; | ||
58 | 60 | ||
59 | /* scratch buffers for virt_to_page() (crypto API) */ | 61 | /* scratch buffers for virt_to_page() (crypto API) */ |
60 | u8 rx_hdr[16], tx_hdr[16]; | 62 | u8 rx_hdr[16], tx_hdr[16]; |
@@ -86,21 +88,39 @@ static void *ieee80211_tkip_init(int key_idx) | |||
86 | 88 | ||
87 | priv->key_idx = key_idx; | 89 | priv->key_idx = key_idx; |
88 | 90 | ||
89 | priv->tfm_arc4 = crypto_alloc_blkcipher("ecb(arc4)", 0, | 91 | priv->tx_tfm_arc4 = crypto_alloc_blkcipher("ecb(arc4)", 0, |
90 | CRYPTO_ALG_ASYNC); | 92 | CRYPTO_ALG_ASYNC); |
91 | if (IS_ERR(priv->tfm_arc4)) { | 93 | if (IS_ERR(priv->tx_tfm_arc4)) { |
92 | printk(KERN_DEBUG "ieee80211_crypt_tkip: could not allocate " | 94 | printk(KERN_DEBUG "ieee80211_crypt_tkip: could not allocate " |
93 | "crypto API arc4\n"); | 95 | "crypto API arc4\n"); |
94 | priv->tfm_arc4 = NULL; | 96 | priv->tx_tfm_arc4 = NULL; |
95 | goto fail; | 97 | goto fail; |
96 | } | 98 | } |
97 | 99 | ||
98 | priv->tfm_michael = crypto_alloc_hash("michael_mic", 0, | 100 | priv->tx_tfm_michael = crypto_alloc_hash("michael_mic", 0, |
99 | CRYPTO_ALG_ASYNC); | 101 | CRYPTO_ALG_ASYNC); |
100 | if (IS_ERR(priv->tfm_michael)) { | 102 | if (IS_ERR(priv->tx_tfm_michael)) { |
101 | printk(KERN_DEBUG "ieee80211_crypt_tkip: could not allocate " | 103 | printk(KERN_DEBUG "ieee80211_crypt_tkip: could not allocate " |
102 | "crypto API michael_mic\n"); | 104 | "crypto API michael_mic\n"); |
103 | priv->tfm_michael = NULL; | 105 | priv->tx_tfm_michael = NULL; |
106 | goto fail; | ||
107 | } | ||
108 | |||
109 | priv->rx_tfm_arc4 = crypto_alloc_blkcipher("ecb(arc4)", 0, | ||
110 | CRYPTO_ALG_ASYNC); | ||
111 | if (IS_ERR(priv->rx_tfm_arc4)) { | ||
112 | printk(KERN_DEBUG "ieee80211_crypt_tkip: could not allocate " | ||
113 | "crypto API arc4\n"); | ||
114 | priv->rx_tfm_arc4 = NULL; | ||
115 | goto fail; | ||
116 | } | ||
117 | |||
118 | priv->rx_tfm_michael = crypto_alloc_hash("michael_mic", 0, | ||
119 | CRYPTO_ALG_ASYNC); | ||
120 | if (IS_ERR(priv->rx_tfm_michael)) { | ||
121 | printk(KERN_DEBUG "ieee80211_crypt_tkip: could not allocate " | ||
122 | "crypto API michael_mic\n"); | ||
123 | priv->rx_tfm_michael = NULL; | ||
104 | goto fail; | 124 | goto fail; |
105 | } | 125 | } |
106 | 126 | ||
@@ -108,10 +128,14 @@ static void *ieee80211_tkip_init(int key_idx) | |||
108 | 128 | ||
109 | fail: | 129 | fail: |
110 | if (priv) { | 130 | if (priv) { |
111 | if (priv->tfm_michael) | 131 | if (priv->tx_tfm_michael) |
112 | crypto_free_hash(priv->tfm_michael); | 132 | crypto_free_hash(priv->tx_tfm_michael); |
113 | if (priv->tfm_arc4) | 133 | if (priv->tx_tfm_arc4) |
114 | crypto_free_blkcipher(priv->tfm_arc4); | 134 | crypto_free_blkcipher(priv->tx_tfm_arc4); |
135 | if (priv->rx_tfm_michael) | ||
136 | crypto_free_hash(priv->rx_tfm_michael); | ||
137 | if (priv->rx_tfm_arc4) | ||
138 | crypto_free_blkcipher(priv->rx_tfm_arc4); | ||
115 | kfree(priv); | 139 | kfree(priv); |
116 | } | 140 | } |
117 | 141 | ||
@@ -121,10 +145,16 @@ static void *ieee80211_tkip_init(int key_idx) | |||
121 | static void ieee80211_tkip_deinit(void *priv) | 145 | static void ieee80211_tkip_deinit(void *priv) |
122 | { | 146 | { |
123 | struct ieee80211_tkip_data *_priv = priv; | 147 | struct ieee80211_tkip_data *_priv = priv; |
124 | if (_priv && _priv->tfm_michael) | 148 | if (_priv) { |
125 | crypto_free_hash(_priv->tfm_michael); | 149 | if (_priv->tx_tfm_michael) |
126 | if (_priv && _priv->tfm_arc4) | 150 | crypto_free_hash(_priv->tx_tfm_michael); |
127 | crypto_free_blkcipher(_priv->tfm_arc4); | 151 | if (_priv->tx_tfm_arc4) |
152 | crypto_free_blkcipher(_priv->tx_tfm_arc4); | ||
153 | if (_priv->rx_tfm_michael) | ||
154 | crypto_free_hash(_priv->rx_tfm_michael); | ||
155 | if (_priv->rx_tfm_arc4) | ||
156 | crypto_free_blkcipher(_priv->rx_tfm_arc4); | ||
157 | } | ||
128 | kfree(priv); | 158 | kfree(priv); |
129 | } | 159 | } |
130 | 160 | ||
@@ -323,7 +353,7 @@ static int ieee80211_tkip_hdr(struct sk_buff *skb, int hdr_len, | |||
323 | static int ieee80211_tkip_encrypt(struct sk_buff *skb, int hdr_len, void *priv) | 353 | static int ieee80211_tkip_encrypt(struct sk_buff *skb, int hdr_len, void *priv) |
324 | { | 354 | { |
325 | struct ieee80211_tkip_data *tkey = priv; | 355 | struct ieee80211_tkip_data *tkey = priv; |
326 | struct blkcipher_desc desc = { .tfm = tkey->tfm_arc4 }; | 356 | struct blkcipher_desc desc = { .tfm = tkey->tx_tfm_arc4 }; |
327 | int len; | 357 | int len; |
328 | u8 rc4key[16], *pos, *icv; | 358 | u8 rc4key[16], *pos, *icv; |
329 | u32 crc; | 359 | u32 crc; |
@@ -357,17 +387,30 @@ static int ieee80211_tkip_encrypt(struct sk_buff *skb, int hdr_len, void *priv) | |||
357 | icv[2] = crc >> 16; | 387 | icv[2] = crc >> 16; |
358 | icv[3] = crc >> 24; | 388 | icv[3] = crc >> 24; |
359 | 389 | ||
360 | crypto_blkcipher_setkey(tkey->tfm_arc4, rc4key, 16); | 390 | crypto_blkcipher_setkey(tkey->tx_tfm_arc4, rc4key, 16); |
361 | sg.page = virt_to_page(pos); | 391 | sg.page = virt_to_page(pos); |
362 | sg.offset = offset_in_page(pos); | 392 | sg.offset = offset_in_page(pos); |
363 | sg.length = len + 4; | 393 | sg.length = len + 4; |
364 | return crypto_blkcipher_encrypt(&desc, &sg, &sg, len + 4); | 394 | return crypto_blkcipher_encrypt(&desc, &sg, &sg, len + 4); |
365 | } | 395 | } |
366 | 396 | ||
397 | /* | ||
398 | * deal with seq counter wrapping correctly. | ||
399 | * refer to timer_after() for jiffies wrapping handling | ||
400 | */ | ||
401 | static inline int tkip_replay_check(u32 iv32_n, u16 iv16_n, | ||
402 | u32 iv32_o, u16 iv16_o) | ||
403 | { | ||
404 | if ((s32)iv32_n - (s32)iv32_o < 0 || | ||
405 | (iv32_n == iv32_o && iv16_n <= iv16_o)) | ||
406 | return 1; | ||
407 | return 0; | ||
408 | } | ||
409 | |||
367 | static int ieee80211_tkip_decrypt(struct sk_buff *skb, int hdr_len, void *priv) | 410 | static int ieee80211_tkip_decrypt(struct sk_buff *skb, int hdr_len, void *priv) |
368 | { | 411 | { |
369 | struct ieee80211_tkip_data *tkey = priv; | 412 | struct ieee80211_tkip_data *tkey = priv; |
370 | struct blkcipher_desc desc = { .tfm = tkey->tfm_arc4 }; | 413 | struct blkcipher_desc desc = { .tfm = tkey->rx_tfm_arc4 }; |
371 | u8 rc4key[16]; | 414 | u8 rc4key[16]; |
372 | u8 keyidx, *pos; | 415 | u8 keyidx, *pos; |
373 | u32 iv32; | 416 | u32 iv32; |
@@ -419,8 +462,7 @@ static int ieee80211_tkip_decrypt(struct sk_buff *skb, int hdr_len, void *priv) | |||
419 | iv32 = pos[4] | (pos[5] << 8) | (pos[6] << 16) | (pos[7] << 24); | 462 | iv32 = pos[4] | (pos[5] << 8) | (pos[6] << 16) | (pos[7] << 24); |
420 | pos += 8; | 463 | pos += 8; |
421 | 464 | ||
422 | if (iv32 < tkey->rx_iv32 || | 465 | if (tkip_replay_check(iv32, iv16, tkey->rx_iv32, tkey->rx_iv16)) { |
423 | (iv32 == tkey->rx_iv32 && iv16 <= tkey->rx_iv16)) { | ||
424 | if (net_ratelimit()) { | 466 | if (net_ratelimit()) { |
425 | printk(KERN_DEBUG "TKIP: replay detected: STA=" MAC_FMT | 467 | printk(KERN_DEBUG "TKIP: replay detected: STA=" MAC_FMT |
426 | " previous TSC %08x%04x received TSC " | 468 | " previous TSC %08x%04x received TSC " |
@@ -439,7 +481,7 @@ static int ieee80211_tkip_decrypt(struct sk_buff *skb, int hdr_len, void *priv) | |||
439 | 481 | ||
440 | plen = skb->len - hdr_len - 12; | 482 | plen = skb->len - hdr_len - 12; |
441 | 483 | ||
442 | crypto_blkcipher_setkey(tkey->tfm_arc4, rc4key, 16); | 484 | crypto_blkcipher_setkey(tkey->rx_tfm_arc4, rc4key, 16); |
443 | sg.page = virt_to_page(pos); | 485 | sg.page = virt_to_page(pos); |
444 | sg.offset = offset_in_page(pos); | 486 | sg.offset = offset_in_page(pos); |
445 | sg.length = plen + 4; | 487 | sg.length = plen + 4; |
@@ -484,13 +526,13 @@ static int ieee80211_tkip_decrypt(struct sk_buff *skb, int hdr_len, void *priv) | |||
484 | return keyidx; | 526 | return keyidx; |
485 | } | 527 | } |
486 | 528 | ||
487 | static int michael_mic(struct ieee80211_tkip_data *tkey, u8 * key, u8 * hdr, | 529 | static int michael_mic(struct crypto_hash *tfm_michael, u8 * key, u8 * hdr, |
488 | u8 * data, size_t data_len, u8 * mic) | 530 | u8 * data, size_t data_len, u8 * mic) |
489 | { | 531 | { |
490 | struct hash_desc desc; | 532 | struct hash_desc desc; |
491 | struct scatterlist sg[2]; | 533 | struct scatterlist sg[2]; |
492 | 534 | ||
493 | if (tkey->tfm_michael == NULL) { | 535 | if (tfm_michael == NULL) { |
494 | printk(KERN_WARNING "michael_mic: tfm_michael == NULL\n"); | 536 | printk(KERN_WARNING "michael_mic: tfm_michael == NULL\n"); |
495 | return -1; | 537 | return -1; |
496 | } | 538 | } |
@@ -502,10 +544,10 @@ static int michael_mic(struct ieee80211_tkip_data *tkey, u8 * key, u8 * hdr, | |||
502 | sg[1].offset = offset_in_page(data); | 544 | sg[1].offset = offset_in_page(data); |
503 | sg[1].length = data_len; | 545 | sg[1].length = data_len; |
504 | 546 | ||
505 | if (crypto_hash_setkey(tkey->tfm_michael, key, 8)) | 547 | if (crypto_hash_setkey(tfm_michael, key, 8)) |
506 | return -1; | 548 | return -1; |
507 | 549 | ||
508 | desc.tfm = tkey->tfm_michael; | 550 | desc.tfm = tfm_michael; |
509 | desc.flags = 0; | 551 | desc.flags = 0; |
510 | return crypto_hash_digest(&desc, sg, data_len + 16, mic); | 552 | return crypto_hash_digest(&desc, sg, data_len + 16, mic); |
511 | } | 553 | } |
@@ -541,7 +583,7 @@ static void michael_mic_hdr(struct sk_buff *skb, u8 * hdr) | |||
541 | if (stype & IEEE80211_STYPE_QOS_DATA) { | 583 | if (stype & IEEE80211_STYPE_QOS_DATA) { |
542 | const struct ieee80211_hdr_3addrqos *qoshdr = | 584 | const struct ieee80211_hdr_3addrqos *qoshdr = |
543 | (struct ieee80211_hdr_3addrqos *)skb->data; | 585 | (struct ieee80211_hdr_3addrqos *)skb->data; |
544 | hdr[12] = le16_to_cpu(qoshdr->qos_ctl) & IEEE80211_QCTL_TID; | 586 | hdr[12] = qoshdr->qos_ctl & cpu_to_le16(IEEE80211_QCTL_TID); |
545 | } else | 587 | } else |
546 | hdr[12] = 0; /* priority */ | 588 | hdr[12] = 0; /* priority */ |
547 | 589 | ||
@@ -563,7 +605,7 @@ static int ieee80211_michael_mic_add(struct sk_buff *skb, int hdr_len, | |||
563 | 605 | ||
564 | michael_mic_hdr(skb, tkey->tx_hdr); | 606 | michael_mic_hdr(skb, tkey->tx_hdr); |
565 | pos = skb_put(skb, 8); | 607 | pos = skb_put(skb, 8); |
566 | if (michael_mic(tkey, &tkey->key[16], tkey->tx_hdr, | 608 | if (michael_mic(tkey->tx_tfm_michael, &tkey->key[16], tkey->tx_hdr, |
567 | skb->data + hdr_len, skb->len - 8 - hdr_len, pos)) | 609 | skb->data + hdr_len, skb->len - 8 - hdr_len, pos)) |
568 | return -1; | 610 | return -1; |
569 | 611 | ||
@@ -601,7 +643,7 @@ static int ieee80211_michael_mic_verify(struct sk_buff *skb, int keyidx, | |||
601 | return -1; | 643 | return -1; |
602 | 644 | ||
603 | michael_mic_hdr(skb, tkey->rx_hdr); | 645 | michael_mic_hdr(skb, tkey->rx_hdr); |
604 | if (michael_mic(tkey, &tkey->key[24], tkey->rx_hdr, | 646 | if (michael_mic(tkey->rx_tfm_michael, &tkey->key[24], tkey->rx_hdr, |
605 | skb->data + hdr_len, skb->len - 8 - hdr_len, mic)) | 647 | skb->data + hdr_len, skb->len - 8 - hdr_len, mic)) |
606 | return -1; | 648 | return -1; |
607 | if (memcmp(mic, skb->data + skb->len - 8, 8) != 0) { | 649 | if (memcmp(mic, skb->data + skb->len - 8, 8) != 0) { |
@@ -631,14 +673,18 @@ static int ieee80211_tkip_set_key(void *key, int len, u8 * seq, void *priv) | |||
631 | { | 673 | { |
632 | struct ieee80211_tkip_data *tkey = priv; | 674 | struct ieee80211_tkip_data *tkey = priv; |
633 | int keyidx; | 675 | int keyidx; |
634 | struct crypto_hash *tfm = tkey->tfm_michael; | 676 | struct crypto_hash *tfm = tkey->tx_tfm_michael; |
635 | struct crypto_blkcipher *tfm2 = tkey->tfm_arc4; | 677 | struct crypto_blkcipher *tfm2 = tkey->tx_tfm_arc4; |
678 | struct crypto_hash *tfm3 = tkey->rx_tfm_michael; | ||
679 | struct crypto_blkcipher *tfm4 = tkey->rx_tfm_arc4; | ||
636 | 680 | ||
637 | keyidx = tkey->key_idx; | 681 | keyidx = tkey->key_idx; |
638 | memset(tkey, 0, sizeof(*tkey)); | 682 | memset(tkey, 0, sizeof(*tkey)); |
639 | tkey->key_idx = keyidx; | 683 | tkey->key_idx = keyidx; |
640 | tkey->tfm_michael = tfm; | 684 | tkey->tx_tfm_michael = tfm; |
641 | tkey->tfm_arc4 = tfm2; | 685 | tkey->tx_tfm_arc4 = tfm2; |
686 | tkey->rx_tfm_michael = tfm3; | ||
687 | tkey->rx_tfm_arc4 = tfm4; | ||
642 | if (len == TKIP_KEY_LEN) { | 688 | if (len == TKIP_KEY_LEN) { |
643 | memcpy(tkey->key, key, TKIP_KEY_LEN); | 689 | memcpy(tkey->key, key, TKIP_KEY_LEN); |
644 | tkey->key_set = 1; | 690 | tkey->key_set = 1; |