Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

FILS: Update PMKSA cache with FILS shared key offload

Add a new PMKSA cache entry within wpa_supplicant if a driver event from
offloaded FILS shared key authentication indicates a new PMKSA entry was
created.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Vidyullatha Kanchanapally 8 years ago
parent
01ef320f19
commit
f705f41b7f
3 changed files with 30 additions and 0 deletions
Split View Show Diff Stats
  1. 10 0
      src/rsn_supp/wpa.c
  2. 3 0
      src/rsn_supp/wpa.h
  3. 17 0
      wpa_supplicant/events.c

+ 10 - 0
src/rsn_supp/wpa.c
View File 

@@ -3079,6 +3079,16 @@ wpa_sm_pmksa_cache_add_entry(struct wpa_sm *sm,
 
 }
 
 
 
+void wpa_sm_pmksa_cache_add(struct wpa_sm *sm, const u8 *pmk, size_t pmk_len,
 
+			    const u8 *pmkid, const u8 *bssid,
 
+			    const u8 *fils_cache_id)
 
+{
 
+	sm->cur_pmksa = pmksa_cache_add(sm->pmksa, pmk, pmk_len, pmkid, NULL, 0,
 
+					bssid, sm->own_addr, sm->network_ctx,
 
+					sm->key_mgmt, fils_cache_id);
 
+}
 
+
 
+
 
 void wpa_sm_drop_sa(struct wpa_sm *sm)
 
 {
 
 	wpa_dbg(sm->ctx->msg_ctx, MSG_DEBUG, "WPA: Clear old PMK and PTK");

+ 3 - 0
src/rsn_supp/wpa.h
View File 

@@ -157,6 +157,9 @@ struct rsn_pmksa_cache_entry * wpa_sm_pmksa_cache_head(struct wpa_sm *sm);
 
 struct rsn_pmksa_cache_entry *
 
 wpa_sm_pmksa_cache_add_entry(struct wpa_sm *sm,
 
 			     struct rsn_pmksa_cache_entry * entry);
 
+void wpa_sm_pmksa_cache_add(struct wpa_sm *sm, const u8 *pmk, size_t pmk_len,
 
+			    const u8 *pmkid, const u8 *bssid,
 
+			    const u8 *fils_cache_id);
 
 void wpa_sm_drop_sa(struct wpa_sm *sm);
 
 int wpa_sm_has_ptk(struct wpa_sm *sm);

+ 17 - 0
wpa_supplicant/events.c
View File 

@@ -3629,9 +3629,26 @@ static void wpa_supplicant_event_assoc_auth(struct wpa_supplicant *wpa_s,
 
 			       data->assoc_info.ptk_kek_len);
 
 #ifdef CONFIG_FILS
 
 	if (wpa_s->auth_alg == WPA_AUTH_ALG_FILS) {
 
+		struct wpa_bss *bss = wpa_bss_get_bssid(wpa_s, wpa_s->bssid);
 
+		const u8 *fils_cache_id = wpa_bss_get_fils_cache_id(bss);
 
+
 
 		/* Update ERP next sequence number */
 
 		eapol_sm_update_erp_next_seq_num(
 
 			wpa_s->eapol, data->assoc_info.fils_erp_next_seq_num);
 
+
 
+		if (data->assoc_info.fils_pmk && data->assoc_info.fils_pmkid) {
 
+			/* Add the new PMK and PMKID to the PMKSA cache */
 
+			wpa_sm_pmksa_cache_add(wpa_s->wpa,
 
+					       data->assoc_info.fils_pmk,
 
+					       data->assoc_info.fils_pmk_len,
 
+					       data->assoc_info.fils_pmkid,
 
+					       wpa_s->bssid, fils_cache_id);
 
+		} else if (data->assoc_info.fils_pmkid) {
 
+			/* Update the current PMKSA used for this connection */
 
+			pmksa_cache_set_current(wpa_s->wpa,
 
+						data->assoc_info.fils_pmkid,
 
+						NULL, NULL, 0, NULL);
 
+		}
 
 	} else {
 
 		wpa_sm_set_rx_replay_ctr(wpa_s->wpa,
 
 					 data->assoc_info.key_replay_ctr);