2 * IEEE 802.1X-2010 KaY Interface
3 * Copyright (c) 2013-2014, Qualcomm Atheros, Inc.
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
9 #include "utils/includes.h"
11 #include "utils/common.h"
12 #include "eap_peer/eap.h"
13 #include "eap_peer/eap_i.h"
14 #include "eapol_supp/eapol_supp_sm.h"
15 #include "pae/ieee802_1x_key.h"
16 #include "pae/ieee802_1x_kay.h"
17 #include "wpa_supplicant_i.h"
19 #include "config_ssid.h"
24 #define DEFAULT_KEY_LEN 16
25 /* secure Connectivity Association Key Name (CKN) */
26 #define DEFAULT_CKN_LEN 16
29 static int wpas_macsec_init(void *priv, struct macsec_init_params *params)
31 return wpa_drv_macsec_init(priv, params);
35 static int wpas_macsec_deinit(void *priv)
37 return wpa_drv_macsec_deinit(priv);
41 static int wpas_macsec_get_capability(void *priv, enum macsec_cap *cap)
43 return wpa_drv_macsec_get_capability(priv, cap);
47 static int wpas_enable_protect_frames(void *wpa_s, Boolean enabled)
49 return wpa_drv_enable_protect_frames(wpa_s, enabled);
53 static int wpas_enable_encrypt(void *wpa_s, Boolean enabled)
55 return wpa_drv_enable_encrypt(wpa_s, enabled);
59 static int wpas_set_replay_protect(void *wpa_s, Boolean enabled, u32 window)
61 return wpa_drv_set_replay_protect(wpa_s, enabled, window);
65 static int wpas_set_current_cipher_suite(void *wpa_s, u64 cs)
67 return wpa_drv_set_current_cipher_suite(wpa_s, cs);
71 static int wpas_enable_controlled_port(void *wpa_s, Boolean enabled)
73 return wpa_drv_enable_controlled_port(wpa_s, enabled);
77 static int wpas_get_receive_lowest_pn(void *wpa_s, struct receive_sa *sa)
79 return wpa_drv_get_receive_lowest_pn(wpa_s, sa);
83 static int wpas_get_transmit_next_pn(void *wpa_s, struct transmit_sa *sa)
85 return wpa_drv_get_transmit_next_pn(wpa_s, sa);
89 static int wpas_set_transmit_next_pn(void *wpa_s, struct transmit_sa *sa)
91 return wpa_drv_set_transmit_next_pn(wpa_s, sa);
95 static unsigned int conf_offset_val(enum confidentiality_offset co)
98 case CONFIDENTIALITY_OFFSET_30:
101 case CONFIDENTIALITY_OFFSET_50:
109 static int wpas_create_receive_sc(void *wpa_s, struct receive_sc *sc,
110 enum validate_frames vf,
111 enum confidentiality_offset co)
113 return wpa_drv_create_receive_sc(wpa_s, sc, conf_offset_val(co), vf);
117 static int wpas_delete_receive_sc(void *wpa_s, struct receive_sc *sc)
119 return wpa_drv_delete_receive_sc(wpa_s, sc);
123 static int wpas_create_receive_sa(void *wpa_s, struct receive_sa *sa)
125 return wpa_drv_create_receive_sa(wpa_s, sa);
129 static int wpas_delete_receive_sa(void *wpa_s, struct receive_sa *sa)
131 return wpa_drv_delete_receive_sa(wpa_s, sa);
135 static int wpas_enable_receive_sa(void *wpa_s, struct receive_sa *sa)
137 return wpa_drv_enable_receive_sa(wpa_s, sa);
141 static int wpas_disable_receive_sa(void *wpa_s, struct receive_sa *sa)
143 return wpa_drv_disable_receive_sa(wpa_s, sa);
148 wpas_create_transmit_sc(void *wpa_s, struct transmit_sc *sc,
149 enum confidentiality_offset co)
151 return wpa_drv_create_transmit_sc(wpa_s, sc, conf_offset_val(co));
155 static int wpas_delete_transmit_sc(void *wpa_s, struct transmit_sc *sc)
157 return wpa_drv_delete_transmit_sc(wpa_s, sc);
161 static int wpas_create_transmit_sa(void *wpa_s, struct transmit_sa *sa)
163 return wpa_drv_create_transmit_sa(wpa_s, sa);
167 static int wpas_delete_transmit_sa(void *wpa_s, struct transmit_sa *sa)
169 return wpa_drv_delete_transmit_sa(wpa_s, sa);
173 static int wpas_enable_transmit_sa(void *wpa_s, struct transmit_sa *sa)
175 return wpa_drv_enable_transmit_sa(wpa_s, sa);
179 static int wpas_disable_transmit_sa(void *wpa_s, struct transmit_sa *sa)
181 return wpa_drv_disable_transmit_sa(wpa_s, sa);
185 int ieee802_1x_alloc_kay_sm(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
187 struct ieee802_1x_kay_ctx *kay_ctx;
188 struct ieee802_1x_kay *res = NULL;
189 enum macsec_policy policy;
191 ieee802_1x_dealloc_kay_sm(wpa_s);
193 if (!ssid || ssid->macsec_policy == 0)
196 if (ssid->macsec_policy == 1) {
197 if (ssid->macsec_integ_only == 1)
198 policy = SHOULD_SECURE;
200 policy = SHOULD_ENCRYPT;
202 policy = DO_NOT_SECURE;
205 kay_ctx = os_zalloc(sizeof(*kay_ctx));
209 kay_ctx->ctx = wpa_s;
211 kay_ctx->macsec_init = wpas_macsec_init;
212 kay_ctx->macsec_deinit = wpas_macsec_deinit;
213 kay_ctx->macsec_get_capability = wpas_macsec_get_capability;
214 kay_ctx->enable_protect_frames = wpas_enable_protect_frames;
215 kay_ctx->enable_encrypt = wpas_enable_encrypt;
216 kay_ctx->set_replay_protect = wpas_set_replay_protect;
217 kay_ctx->set_current_cipher_suite = wpas_set_current_cipher_suite;
218 kay_ctx->enable_controlled_port = wpas_enable_controlled_port;
219 kay_ctx->get_receive_lowest_pn = wpas_get_receive_lowest_pn;
220 kay_ctx->get_transmit_next_pn = wpas_get_transmit_next_pn;
221 kay_ctx->set_transmit_next_pn = wpas_set_transmit_next_pn;
222 kay_ctx->create_receive_sc = wpas_create_receive_sc;
223 kay_ctx->delete_receive_sc = wpas_delete_receive_sc;
224 kay_ctx->create_receive_sa = wpas_create_receive_sa;
225 kay_ctx->delete_receive_sa = wpas_delete_receive_sa;
226 kay_ctx->enable_receive_sa = wpas_enable_receive_sa;
227 kay_ctx->disable_receive_sa = wpas_disable_receive_sa;
228 kay_ctx->create_transmit_sc = wpas_create_transmit_sc;
229 kay_ctx->delete_transmit_sc = wpas_delete_transmit_sc;
230 kay_ctx->create_transmit_sa = wpas_create_transmit_sa;
231 kay_ctx->delete_transmit_sa = wpas_delete_transmit_sa;
232 kay_ctx->enable_transmit_sa = wpas_enable_transmit_sa;
233 kay_ctx->disable_transmit_sa = wpas_disable_transmit_sa;
235 res = ieee802_1x_kay_init(kay_ctx, policy, ssid->macsec_port,
236 ssid->mka_priority, wpa_s->ifname,
238 /* ieee802_1x_kay_init() frees kay_ctx on failure */
248 void ieee802_1x_dealloc_kay_sm(struct wpa_supplicant *wpa_s)
253 ieee802_1x_kay_deinit(wpa_s->kay);
258 static int ieee802_1x_auth_get_session_id(struct wpa_supplicant *wpa_s,
259 const u8 *addr, u8 *sid, size_t *len)
261 const u8 *session_id;
262 size_t id_len, need_len;
264 session_id = eapol_sm_get_session_id(wpa_s->eapol, &id_len);
265 if (session_id == NULL) {
266 wpa_printf(MSG_DEBUG,
267 "Failed to get SessionID from EAPOL state machines");
271 need_len = 1 + 2 * 32 /* random size */;
272 if (need_len > id_len) {
273 wpa_printf(MSG_DEBUG, "EAP Session-Id not long enough");
277 os_memcpy(sid, session_id, need_len);
284 static int ieee802_1x_auth_get_msk(struct wpa_supplicant *wpa_s, const u8 *addr,
285 u8 *msk, size_t *len)
296 keylen = EAP_MSK_LEN;
297 res = eapol_sm_get_key(sm, key, keylen);
299 wpa_printf(MSG_DEBUG,
300 "Failed to get MSK from EAPOL state machines");
306 os_memcpy(msk, key, keylen);
313 void * ieee802_1x_notify_create_actor(struct wpa_supplicant *wpa_s,
317 size_t sid_len = 128;
318 struct mka_key_name *ckn;
323 if (!wpa_s->kay || wpa_s->kay->policy == DO_NOT_SECURE)
326 wpa_printf(MSG_DEBUG,
327 "IEEE 802.1X: External notification - Create MKA for "
328 MACSTR, MAC2STR(peer_addr));
330 msk = os_zalloc(sizeof(*msk));
331 sid = os_zalloc(sid_len);
332 ckn = os_zalloc(sizeof(*ckn));
333 cak = os_zalloc(sizeof(*cak));
334 if (!msk || !sid || !ckn || !cak)
337 msk->len = DEFAULT_KEY_LEN;
338 if (ieee802_1x_auth_get_msk(wpa_s, wpa_s->bssid, msk->key, &msk->len)) {
339 wpa_printf(MSG_ERROR, "IEEE 802.1X: Could not get MSK");
343 if (ieee802_1x_auth_get_session_id(wpa_s, wpa_s->bssid, sid, &sid_len))
345 wpa_printf(MSG_ERROR,
346 "IEEE 802.1X: Could not get EAP Session Id");
350 /* Derive CAK from MSK */
351 cak->len = DEFAULT_KEY_LEN;
352 if (ieee802_1x_cak_128bits_aes_cmac(msk->key, wpa_s->own_addr,
353 peer_addr, cak->key)) {
354 wpa_printf(MSG_ERROR,
355 "IEEE 802.1X: Deriving CAK failed");
358 wpa_hexdump_key(MSG_DEBUG, "Derived CAK", cak->key, cak->len);
360 /* Derive CKN from MSK */
361 ckn->len = DEFAULT_CKN_LEN;
362 if (ieee802_1x_ckn_128bits_aes_cmac(msk->key, wpa_s->own_addr,
363 peer_addr, sid, sid_len,
365 wpa_printf(MSG_ERROR,
366 "IEEE 802.1X: Deriving CKN failed");
369 wpa_hexdump(MSG_DEBUG, "Derived CKN", ckn->name, ckn->len);
371 res = ieee802_1x_kay_create_mka(wpa_s->kay, ckn, cak, 0,
372 EAP_EXCHANGE, FALSE);
376 os_memset(msk, 0, sizeof(*msk));
382 os_memset(cak, 0, sizeof(*cak));
390 void * ieee802_1x_create_preshared_mka(struct wpa_supplicant *wpa_s,
391 struct wpa_ssid *ssid)
394 struct mka_key_name *ckn;
397 if ((ssid->mka_psk_set & MKA_PSK_SET) != MKA_PSK_SET)
400 ckn = os_zalloc(sizeof(*ckn));
404 cak = os_zalloc(sizeof(*cak));
408 if (ieee802_1x_alloc_kay_sm(wpa_s, ssid) < 0 || !wpa_s->kay)
411 if (wpa_s->kay->policy == DO_NOT_SECURE)
414 cak->len = MACSEC_CAK_LEN;
415 os_memcpy(cak->key, ssid->mka_cak, cak->len);
417 ckn->len = MACSEC_CKN_LEN;
418 os_memcpy(ckn->name, ssid->mka_ckn, ckn->len);
420 res = ieee802_1x_kay_create_mka(wpa_s->kay, ckn, cak, 0, PSK, FALSE);
425 /* Failed to create MKA */
426 ieee802_1x_dealloc_kay_sm(wpa_s);