2 * IEEE 802.1X-2010 KaY Interface
3 * Copyright (c) 2013-2014, Qualcomm Atheros, Inc.
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
9 #include "utils/includes.h"
11 #include "utils/common.h"
12 #include "eap_peer/eap.h"
13 #include "eap_peer/eap_i.h"
14 #include "eapol_supp/eapol_supp_sm.h"
15 #include "pae/ieee802_1x_key.h"
16 #include "pae/ieee802_1x_kay.h"
17 #include "wpa_supplicant_i.h"
19 #include "config_ssid.h"
24 #define DEFAULT_KEY_LEN 16
25 /* secure Connectivity Association Key Name (CKN) */
26 #define DEFAULT_CKN_LEN 16
29 static int wpas_macsec_init(void *priv
, struct macsec_init_params
*params
)
31 return wpa_drv_macsec_init(priv
, params
);
35 static int wpas_macsec_deinit(void *priv
)
37 return wpa_drv_macsec_deinit(priv
);
41 static int wpas_macsec_get_capability(void *priv
, enum macsec_cap
*cap
)
43 return wpa_drv_macsec_get_capability(priv
, cap
);
47 static int wpas_enable_protect_frames(void *wpa_s
, Boolean enabled
)
49 return wpa_drv_enable_protect_frames(wpa_s
, enabled
);
53 static int wpas_enable_encrypt(void *wpa_s
, Boolean enabled
)
55 return wpa_drv_enable_encrypt(wpa_s
, enabled
);
59 static int wpas_set_replay_protect(void *wpa_s
, Boolean enabled
, u32 window
)
61 return wpa_drv_set_replay_protect(wpa_s
, enabled
, window
);
65 static int wpas_set_current_cipher_suite(void *wpa_s
, u64 cs
)
67 return wpa_drv_set_current_cipher_suite(wpa_s
, cs
);
71 static int wpas_enable_controlled_port(void *wpa_s
, Boolean enabled
)
73 return wpa_drv_enable_controlled_port(wpa_s
, enabled
);
77 static int wpas_get_receive_lowest_pn(void *wpa_s
, struct receive_sa
*sa
)
79 return wpa_drv_get_receive_lowest_pn(wpa_s
, sa
);
83 static int wpas_get_transmit_next_pn(void *wpa_s
, struct transmit_sa
*sa
)
85 return wpa_drv_get_transmit_next_pn(wpa_s
, sa
);
89 static int wpas_set_transmit_next_pn(void *wpa_s
, struct transmit_sa
*sa
)
91 return wpa_drv_set_transmit_next_pn(wpa_s
, sa
);
95 static int wpas_set_receive_lowest_pn(void *wpa_s
, struct receive_sa
*sa
)
97 return wpa_drv_set_receive_lowest_pn(wpa_s
, sa
);
101 static unsigned int conf_offset_val(enum confidentiality_offset co
)
104 case CONFIDENTIALITY_OFFSET_30
:
107 case CONFIDENTIALITY_OFFSET_50
:
115 static int wpas_create_receive_sc(void *wpa_s
, struct receive_sc
*sc
,
116 enum validate_frames vf
,
117 enum confidentiality_offset co
)
119 return wpa_drv_create_receive_sc(wpa_s
, sc
, conf_offset_val(co
), vf
);
123 static int wpas_delete_receive_sc(void *wpa_s
, struct receive_sc
*sc
)
125 return wpa_drv_delete_receive_sc(wpa_s
, sc
);
129 static int wpas_create_receive_sa(void *wpa_s
, struct receive_sa
*sa
)
131 return wpa_drv_create_receive_sa(wpa_s
, sa
);
135 static int wpas_delete_receive_sa(void *wpa_s
, struct receive_sa
*sa
)
137 return wpa_drv_delete_receive_sa(wpa_s
, sa
);
141 static int wpas_enable_receive_sa(void *wpa_s
, struct receive_sa
*sa
)
143 return wpa_drv_enable_receive_sa(wpa_s
, sa
);
147 static int wpas_disable_receive_sa(void *wpa_s
, struct receive_sa
*sa
)
149 return wpa_drv_disable_receive_sa(wpa_s
, sa
);
154 wpas_create_transmit_sc(void *wpa_s
, struct transmit_sc
*sc
,
155 enum confidentiality_offset co
)
157 return wpa_drv_create_transmit_sc(wpa_s
, sc
, conf_offset_val(co
));
161 static int wpas_delete_transmit_sc(void *wpa_s
, struct transmit_sc
*sc
)
163 return wpa_drv_delete_transmit_sc(wpa_s
, sc
);
167 static int wpas_create_transmit_sa(void *wpa_s
, struct transmit_sa
*sa
)
169 return wpa_drv_create_transmit_sa(wpa_s
, sa
);
173 static int wpas_delete_transmit_sa(void *wpa_s
, struct transmit_sa
*sa
)
175 return wpa_drv_delete_transmit_sa(wpa_s
, sa
);
179 static int wpas_enable_transmit_sa(void *wpa_s
, struct transmit_sa
*sa
)
181 return wpa_drv_enable_transmit_sa(wpa_s
, sa
);
185 static int wpas_disable_transmit_sa(void *wpa_s
, struct transmit_sa
*sa
)
187 return wpa_drv_disable_transmit_sa(wpa_s
, sa
);
191 int ieee802_1x_alloc_kay_sm(struct wpa_supplicant
*wpa_s
, struct wpa_ssid
*ssid
)
193 struct ieee802_1x_kay_ctx
*kay_ctx
;
194 struct ieee802_1x_kay
*res
= NULL
;
195 enum macsec_policy policy
;
197 ieee802_1x_dealloc_kay_sm(wpa_s
);
199 if (!ssid
|| ssid
->macsec_policy
== 0)
202 if (ssid
->macsec_policy
== 1) {
203 if (ssid
->macsec_integ_only
== 1)
204 policy
= SHOULD_SECURE
;
206 policy
= SHOULD_ENCRYPT
;
208 policy
= DO_NOT_SECURE
;
211 kay_ctx
= os_zalloc(sizeof(*kay_ctx
));
215 kay_ctx
->ctx
= wpa_s
;
217 kay_ctx
->macsec_init
= wpas_macsec_init
;
218 kay_ctx
->macsec_deinit
= wpas_macsec_deinit
;
219 kay_ctx
->macsec_get_capability
= wpas_macsec_get_capability
;
220 kay_ctx
->enable_protect_frames
= wpas_enable_protect_frames
;
221 kay_ctx
->enable_encrypt
= wpas_enable_encrypt
;
222 kay_ctx
->set_replay_protect
= wpas_set_replay_protect
;
223 kay_ctx
->set_current_cipher_suite
= wpas_set_current_cipher_suite
;
224 kay_ctx
->enable_controlled_port
= wpas_enable_controlled_port
;
225 kay_ctx
->get_receive_lowest_pn
= wpas_get_receive_lowest_pn
;
226 kay_ctx
->get_transmit_next_pn
= wpas_get_transmit_next_pn
;
227 kay_ctx
->set_transmit_next_pn
= wpas_set_transmit_next_pn
;
228 kay_ctx
->set_receive_lowest_pn
= wpas_set_receive_lowest_pn
;
229 kay_ctx
->create_receive_sc
= wpas_create_receive_sc
;
230 kay_ctx
->delete_receive_sc
= wpas_delete_receive_sc
;
231 kay_ctx
->create_receive_sa
= wpas_create_receive_sa
;
232 kay_ctx
->delete_receive_sa
= wpas_delete_receive_sa
;
233 kay_ctx
->enable_receive_sa
= wpas_enable_receive_sa
;
234 kay_ctx
->disable_receive_sa
= wpas_disable_receive_sa
;
235 kay_ctx
->create_transmit_sc
= wpas_create_transmit_sc
;
236 kay_ctx
->delete_transmit_sc
= wpas_delete_transmit_sc
;
237 kay_ctx
->create_transmit_sa
= wpas_create_transmit_sa
;
238 kay_ctx
->delete_transmit_sa
= wpas_delete_transmit_sa
;
239 kay_ctx
->enable_transmit_sa
= wpas_enable_transmit_sa
;
240 kay_ctx
->disable_transmit_sa
= wpas_disable_transmit_sa
;
242 res
= ieee802_1x_kay_init(kay_ctx
, policy
, ssid
->macsec_replay_protect
,
243 ssid
->macsec_replay_window
, ssid
->macsec_port
,
244 ssid
->mka_priority
, wpa_s
->ifname
,
246 /* ieee802_1x_kay_init() frees kay_ctx on failure */
256 void ieee802_1x_dealloc_kay_sm(struct wpa_supplicant
*wpa_s
)
261 ieee802_1x_kay_deinit(wpa_s
->kay
);
266 static int ieee802_1x_auth_get_session_id(struct wpa_supplicant
*wpa_s
,
267 const u8
*addr
, u8
*sid
, size_t *len
)
269 const u8
*session_id
;
270 size_t id_len
, need_len
;
272 session_id
= eapol_sm_get_session_id(wpa_s
->eapol
, &id_len
);
273 if (session_id
== NULL
) {
274 wpa_printf(MSG_DEBUG
,
275 "Failed to get SessionID from EAPOL state machines");
279 need_len
= 1 + 2 * 32 /* random size */;
280 if (need_len
> id_len
) {
281 wpa_printf(MSG_DEBUG
, "EAP Session-Id not long enough");
285 os_memcpy(sid
, session_id
, need_len
);
292 static int ieee802_1x_auth_get_msk(struct wpa_supplicant
*wpa_s
, const u8
*addr
,
293 u8
*msk
, size_t *len
)
304 keylen
= EAP_MSK_LEN
;
305 res
= eapol_sm_get_key(sm
, key
, keylen
);
307 wpa_printf(MSG_DEBUG
,
308 "Failed to get MSK from EAPOL state machines");
314 os_memcpy(msk
, key
, keylen
);
321 void * ieee802_1x_notify_create_actor(struct wpa_supplicant
*wpa_s
,
325 size_t sid_len
= 128;
326 struct mka_key_name
*ckn
;
331 if (!wpa_s
->kay
|| wpa_s
->kay
->policy
== DO_NOT_SECURE
)
334 wpa_printf(MSG_DEBUG
,
335 "IEEE 802.1X: External notification - Create MKA for "
336 MACSTR
, MAC2STR(peer_addr
));
338 msk
= os_zalloc(sizeof(*msk
));
339 sid
= os_zalloc(sid_len
);
340 ckn
= os_zalloc(sizeof(*ckn
));
341 cak
= os_zalloc(sizeof(*cak
));
342 if (!msk
|| !sid
|| !ckn
|| !cak
)
345 msk
->len
= DEFAULT_KEY_LEN
;
346 if (ieee802_1x_auth_get_msk(wpa_s
, wpa_s
->bssid
, msk
->key
, &msk
->len
)) {
347 wpa_printf(MSG_ERROR
, "IEEE 802.1X: Could not get MSK");
351 if (ieee802_1x_auth_get_session_id(wpa_s
, wpa_s
->bssid
, sid
, &sid_len
))
353 wpa_printf(MSG_ERROR
,
354 "IEEE 802.1X: Could not get EAP Session Id");
358 /* Derive CAK from MSK */
359 cak
->len
= DEFAULT_KEY_LEN
;
360 if (ieee802_1x_cak_aes_cmac(msk
->key
, msk
->len
, wpa_s
->own_addr
,
361 peer_addr
, cak
->key
, cak
->len
)) {
362 wpa_printf(MSG_ERROR
,
363 "IEEE 802.1X: Deriving CAK failed");
366 wpa_hexdump_key(MSG_DEBUG
, "Derived CAK", cak
->key
, cak
->len
);
368 /* Derive CKN from MSK */
369 ckn
->len
= DEFAULT_CKN_LEN
;
370 if (ieee802_1x_ckn_aes_cmac(msk
->key
, msk
->len
, wpa_s
->own_addr
,
371 peer_addr
, sid
, sid_len
, ckn
->name
)) {
372 wpa_printf(MSG_ERROR
,
373 "IEEE 802.1X: Deriving CKN failed");
376 wpa_hexdump(MSG_DEBUG
, "Derived CKN", ckn
->name
, ckn
->len
);
378 res
= ieee802_1x_kay_create_mka(wpa_s
->kay
, ckn
, cak
, 0,
379 EAP_EXCHANGE
, FALSE
);
383 os_memset(msk
, 0, sizeof(*msk
));
389 os_memset(cak
, 0, sizeof(*cak
));
397 void * ieee802_1x_create_preshared_mka(struct wpa_supplicant
*wpa_s
,
398 struct wpa_ssid
*ssid
)
401 struct mka_key_name
*ckn
;
404 if ((ssid
->mka_psk_set
& MKA_PSK_SET
) != MKA_PSK_SET
)
407 ckn
= os_zalloc(sizeof(*ckn
));
411 cak
= os_zalloc(sizeof(*cak
));
415 if (ieee802_1x_alloc_kay_sm(wpa_s
, ssid
) < 0 || !wpa_s
->kay
)
418 if (wpa_s
->kay
->policy
== DO_NOT_SECURE
)
421 cak
->len
= ssid
->mka_cak_len
;
422 os_memcpy(cak
->key
, ssid
->mka_cak
, cak
->len
);
424 ckn
->len
= ssid
->mka_ckn_len
;
425 os_memcpy(ckn
->name
, ssid
->mka_ckn
, ckn
->len
);
427 res
= ieee802_1x_kay_create_mka(wpa_s
->kay
, ckn
, cak
, 0, PSK
, FALSE
);
432 /* Failed to create MKA */
433 ieee802_1x_dealloc_kay_sm(wpa_s
);