PASN: Optional KEK derivation in PTK
Add support to derive KEK in PTK per IEEE P802.11bh/D6.0. This can be used to encrypt keys and passwords in opportunistic P2P pairing defined in P2P2. Signed-off-by: Shivani Baranwal <quic_shivbara@quicinc.com>
This commit is contained in:
Shivani Baranwal
Jouni Malinen
parent
17a891fd5e
commit
cb9b1f8c5a
7 changed files with 25 additions and 12 deletions
|
|
@ -2481,7 +2481,8 @@ static void pasn_fils_auth_resp(struct hostapd_data *hapd,
|
||||||
wpabuf_head(pasn->secret),
|
wpabuf_head(pasn->secret),
|
||||||
wpabuf_len(pasn->secret),
|
wpabuf_len(pasn->secret),
|
||||||
pasn_get_ptk(sta->pasn), pasn_get_akmp(sta->pasn),
|
pasn_get_ptk(sta->pasn), pasn_get_akmp(sta->pasn),
|
||||||
pasn_get_cipher(sta->pasn), sta->pasn->kdk_len);
|
pasn_get_cipher(sta->pasn), sta->pasn->kdk_len,
|
||||||
|
sta->pasn->kek_len);
|
||||||
if (ret) {
|
if (ret) {
|
||||||
wpa_printf(MSG_DEBUG, "PASN: FILS: Failed to derive PTK");
|
wpa_printf(MSG_DEBUG, "PASN: FILS: Failed to derive PTK");
|
||||||
goto fail;
|
goto fail;
|
||||||
|
|
|
||||||
|
|
@ -651,7 +651,7 @@ static int pasn_test_pasn_auth(void)
|
||||||
spa_addr, bssid,
|
spa_addr, bssid,
|
||||||
dhss, sizeof(dhss),
|
dhss, sizeof(dhss),
|
||||||
&ptk, WPA_KEY_MGMT_PASN, WPA_CIPHER_CCMP,
|
&ptk, WPA_KEY_MGMT_PASN, WPA_CIPHER_CCMP,
|
||||||
WPA_KDK_MAX_LEN);
|
WPA_KDK_MAX_LEN, 0);
|
||||||
|
|
||||||
if (ret)
|
if (ret)
|
||||||
return ret;
|
return ret;
|
||||||
|
|
|
||||||
|
|
@ -1456,15 +1456,18 @@ bool pasn_use_sha384(int akmp, int cipher)
|
||||||
* @akmp: Negotiated AKM
|
* @akmp: Negotiated AKM
|
||||||
* @cipher: Negotiated pairwise cipher
|
* @cipher: Negotiated pairwise cipher
|
||||||
* @kdk_len: the length in octets that should be derived for HTLK. Can be zero.
|
* @kdk_len: the length in octets that should be derived for HTLK. Can be zero.
|
||||||
|
* @kek_len: The length in octets that should be derived for KEK. Can be zero.
|
||||||
* Returns: 0 on success, -1 on failure
|
* Returns: 0 on success, -1 on failure
|
||||||
*/
|
*/
|
||||||
int pasn_pmk_to_ptk(const u8 *pmk, size_t pmk_len,
|
int pasn_pmk_to_ptk(const u8 *pmk, size_t pmk_len,
|
||||||
const u8 *spa, const u8 *bssid,
|
const u8 *spa, const u8 *bssid,
|
||||||
const u8 *dhss, size_t dhss_len,
|
const u8 *dhss, size_t dhss_len,
|
||||||
struct wpa_ptk *ptk, int akmp, int cipher,
|
struct wpa_ptk *ptk, int akmp, int cipher,
|
||||||
size_t kdk_len)
|
size_t kdk_len, size_t kek_len)
|
||||||
{
|
{
|
||||||
u8 tmp[WPA_KCK_MAX_LEN + WPA_TK_MAX_LEN + WPA_KDK_MAX_LEN];
|
u8 tmp[WPA_KCK_MAX_LEN + WPA_KEK_MAX_LEN + WPA_TK_MAX_LEN +
|
||||||
|
WPA_KDK_MAX_LEN];
|
||||||
|
const u8 *pos;
|
||||||
u8 *data;
|
u8 *data;
|
||||||
size_t data_len, ptk_len;
|
size_t data_len, ptk_len;
|
||||||
int ret = -1;
|
int ret = -1;
|
||||||
|
|
@ -1499,7 +1502,7 @@ int pasn_pmk_to_ptk(const u8 *pmk, size_t pmk_len,
|
||||||
ptk->kck_len = WPA_PASN_KCK_LEN;
|
ptk->kck_len = WPA_PASN_KCK_LEN;
|
||||||
ptk->tk_len = wpa_cipher_key_len(cipher);
|
ptk->tk_len = wpa_cipher_key_len(cipher);
|
||||||
ptk->kdk_len = kdk_len;
|
ptk->kdk_len = kdk_len;
|
||||||
ptk->kek_len = 0;
|
ptk->kek_len = kek_len;
|
||||||
ptk->kek2_len = 0;
|
ptk->kek2_len = 0;
|
||||||
ptk->kck2_len = 0;
|
ptk->kck2_len = 0;
|
||||||
|
|
||||||
|
|
@ -1510,7 +1513,7 @@ int pasn_pmk_to_ptk(const u8 *pmk, size_t pmk_len,
|
||||||
goto err;
|
goto err;
|
||||||
}
|
}
|
||||||
|
|
||||||
ptk_len = ptk->kck_len + ptk->tk_len + ptk->kdk_len;
|
ptk_len = ptk->kck_len + ptk->tk_len + ptk->kdk_len + ptk->kek_len;
|
||||||
if (ptk_len > sizeof(tmp))
|
if (ptk_len > sizeof(tmp))
|
||||||
goto err;
|
goto err;
|
||||||
|
|
||||||
|
|
@ -1538,13 +1541,21 @@ int pasn_pmk_to_ptk(const u8 *pmk, size_t pmk_len,
|
||||||
|
|
||||||
os_memcpy(ptk->kck, tmp, WPA_PASN_KCK_LEN);
|
os_memcpy(ptk->kck, tmp, WPA_PASN_KCK_LEN);
|
||||||
wpa_hexdump_key(MSG_DEBUG, "PASN: KCK:", ptk->kck, WPA_PASN_KCK_LEN);
|
wpa_hexdump_key(MSG_DEBUG, "PASN: KCK:", ptk->kck, WPA_PASN_KCK_LEN);
|
||||||
|
pos = &tmp[WPA_PASN_KCK_LEN];
|
||||||
|
|
||||||
os_memcpy(ptk->tk, tmp + WPA_PASN_KCK_LEN, ptk->tk_len);
|
if (kek_len) {
|
||||||
|
os_memcpy(ptk->kek, pos, kek_len);
|
||||||
|
wpa_hexdump_key(MSG_DEBUG, "PASN: KEK:",
|
||||||
|
ptk->kek, ptk->kek_len);
|
||||||
|
pos += kek_len;
|
||||||
|
}
|
||||||
|
|
||||||
|
os_memcpy(ptk->tk, pos, ptk->tk_len);
|
||||||
wpa_hexdump_key(MSG_DEBUG, "PASN: TK:", ptk->tk, ptk->tk_len);
|
wpa_hexdump_key(MSG_DEBUG, "PASN: TK:", ptk->tk, ptk->tk_len);
|
||||||
|
pos += ptk->tk_len;
|
||||||
|
|
||||||
if (kdk_len) {
|
if (kdk_len) {
|
||||||
os_memcpy(ptk->kdk, tmp + WPA_PASN_KCK_LEN + ptk->tk_len,
|
os_memcpy(ptk->kdk, pos, ptk->kdk_len);
|
||||||
ptk->kdk_len);
|
|
||||||
wpa_hexdump_key(MSG_DEBUG, "PASN: KDK:",
|
wpa_hexdump_key(MSG_DEBUG, "PASN: KDK:",
|
||||||
ptk->kdk, ptk->kdk_len);
|
ptk->kdk, ptk->kdk_len);
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -770,7 +770,7 @@ int pasn_pmk_to_ptk(const u8 *pmk, size_t pmk_len,
|
||||||
const u8 *spa, const u8 *bssid,
|
const u8 *spa, const u8 *bssid,
|
||||||
const u8 *dhss, size_t dhss_len,
|
const u8 *dhss, size_t dhss_len,
|
||||||
struct wpa_ptk *ptk, int akmp, int cipher,
|
struct wpa_ptk *ptk, int akmp, int cipher,
|
||||||
size_t kdk_len);
|
size_t kdk_len, size_t kek_len);
|
||||||
|
|
||||||
u8 pasn_mic_len(int akmp, int cipher);
|
u8 pasn_mic_len(int akmp, int cipher);
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -66,6 +66,7 @@ struct pasn_data {
|
||||||
size_t extra_ies_len;
|
size_t extra_ies_len;
|
||||||
|
|
||||||
/* External modules do not access below variables */
|
/* External modules do not access below variables */
|
||||||
|
size_t kek_len;
|
||||||
u16 group;
|
u16 group;
|
||||||
bool secure_ltf;
|
bool secure_ltf;
|
||||||
int freq;
|
int freq;
|
||||||
|
|
|
||||||
|
|
@ -1233,7 +1233,7 @@ int wpa_pasn_auth_rx(struct pasn_data *pasn, const u8 *data, size_t len,
|
||||||
pasn->own_addr, pasn->peer_addr,
|
pasn->own_addr, pasn->peer_addr,
|
||||||
wpabuf_head(secret), wpabuf_len(secret),
|
wpabuf_head(secret), wpabuf_len(secret),
|
||||||
&pasn->ptk, pasn->akmp, pasn->cipher,
|
&pasn->ptk, pasn->akmp, pasn->cipher,
|
||||||
pasn->kdk_len);
|
pasn->kdk_len, pasn->kek_len);
|
||||||
if (ret) {
|
if (ret) {
|
||||||
wpa_printf(MSG_DEBUG, "PASN: Failed to derive PTK");
|
wpa_printf(MSG_DEBUG, "PASN: Failed to derive PTK");
|
||||||
goto fail;
|
goto fail;
|
||||||
|
|
|
||||||
|
|
@ -349,7 +349,7 @@ pasn_derive_keys(struct pasn_data *pasn,
|
||||||
ret = pasn_pmk_to_ptk(pmk, pmk_len, peer_addr, own_addr,
|
ret = pasn_pmk_to_ptk(pmk, pmk_len, peer_addr, own_addr,
|
||||||
wpabuf_head(secret), wpabuf_len(secret),
|
wpabuf_head(secret), wpabuf_len(secret),
|
||||||
&pasn->ptk, pasn->akmp,
|
&pasn->ptk, pasn->akmp,
|
||||||
pasn->cipher, pasn->kdk_len);
|
pasn->cipher, pasn->kdk_len, pasn->kek_len);
|
||||||
if (ret) {
|
if (ret) {
|
||||||
wpa_printf(MSG_DEBUG, "PASN: Failed to derive PTK");
|
wpa_printf(MSG_DEBUG, "PASN: Failed to derive PTK");
|
||||||
return -1;
|
return -1;
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue