Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 6774c6a9fe
Branches Tags
krackattacks
/
tests
/
hwsim
/
test_peerkey.py

test_peerkey.py 6.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170 
  1. # PeerKey tests
    2. 

  2. # Copyright (c) 2013-2016, Jouni Malinen <j@w1.fi>
    3. 

  3. #
    4. 

  4. # This software may be distributed under the terms of the BSD license.
    5. 

  5. # See README for more details.
    6. 

  6. 

  7. from remotehost import remote_compatible
    8. 

  8. import logging
    9. 

  9. logger = logging.getLogger()
    10. 

  10. import os
    11. 

  11. import time
    12. 

  12. 

  13. import hwsim_utils
    14. 

  14. import hostapd
    15. 

  15. from utils import skip_with_fips
    16. 

  16. from wlantest import Wlantest
    17. 

  17. from tshark import run_tshark
    18. 

  18. 

  19. @remote_compatible
    20. 

  20. def test_peerkey(dev, apdev):
    21. 

  21.     """RSN AP and PeerKey between two STAs"""
    22. 

  22.     ssid = "test-peerkey"
    23. 

  23.     passphrase = "12345678"
    24. 

  24.     params = hostapd.wpa2_params(ssid=ssid, passphrase=passphrase)
    25. 

  25.     params['peerkey'] = "1"
    26. 

  26.     hostapd.add_ap(apdev[0], params)
    27. 

  27. 

  28.     dev[0].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True)
    29. 

  29.     dev[1].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True)
    30. 

  30.     hwsim_utils.test_connectivity_sta(dev[0], dev[1])
    31. 

  31. 

  32.     dev[0].request("STKSTART " + dev[1].p2p_interface_addr())
    33. 

  33.     time.sleep(0.5)
    34. 

  34.     # NOTE: Actual use of the direct link (DLS) is not supported in
    35. 

  35.     # mac80211_hwsim, so this operation fails at setting the keys after
    36. 

  36.     # successfully completed 4-way handshake. This test case does allow the
    37. 

  37.     # key negotiation part to be tested for coverage, though.
    38. 

  38. 

  39. def test_peerkey_sniffer_check(dev, apdev, params):
    40. 

  40.     """RSN AP and PeerKey between two STAs with sniffer check"""
    41. 

  41.     ssid = "test-peerkey"
    42. 

  42.     passphrase = "12345678"
    43. 

  43.     hparams = hostapd.wpa2_params(ssid=ssid, passphrase=passphrase)
    44. 

  44.     hparams['peerkey'] = "1"
    45. 

  45.     hapd = hostapd.add_ap(apdev[0], hparams)
    46. 

  46. 

  47.     Wlantest.setup(hapd)
    48. 

  48.     wt = Wlantest()
    49. 

  49.     wt.flush()
    50. 

  50.     wt.add_passphrase("12345678")
    51. 

  51. 

  52.     dev[0].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True)
    53. 

  53.     dev[1].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True)
    54. 

  54.     hwsim_utils.test_connectivity_sta(dev[0], dev[1])
    55. 

  55. 

  56.     dev[0].request("STKSTART " + dev[1].p2p_interface_addr())
    57. 

  57.     time.sleep(1)
    58. 

  58.     # NOTE: Actual use of the direct link (DLS) is not supported in
    59. 

  59.     # mac80211_hwsim, so this operation fails at setting the keys after
    60. 

  60.     # successfully completed 4-way handshake. This test case does allow the
    61. 

  61.     # key negotiation part to be tested for coverage, though. Use sniffer to
    62. 

  62.     # verify that all the SMK and STK handshake messages were transmitted.
    63. 

  63. 

  64.     bssid = hapd.own_addr()
    65. 

  65.     addr0 = dev[0].own_addr()
    66. 

  66.     addr1 = dev[1].own_addr()
    67. 

  67. 

  68.     # Wireshark renamed the EAPOL-Key key_info field, so need to try both the
    69. 

  69.     # new and the old name to work with both versions.
    70. 

  70.     try_other = False
    71. 

  71.     try:
    72. 

  72.         out = run_tshark(os.path.join(params['logdir'], "hwsim0.pcapng"),
    73. 

  73.                          "eapol.type == 3",
    74. 

  74.                          display=["wlan.sa", "wlan.da",
    75. 

  75.                                   "wlan_rsna_eapol.keydes.key_info"])
    76. 

  76.     except Exception, e:
    77. 

  77.         if "Unknown tshark field" in str(e):
    78. 

  78.             try_other = True
    79. 

  79.             pass
    80. 

  80.         else:
    81. 

  81.             raise
    82. 

  82.     if try_other:
    83. 

  83.         out = run_tshark(os.path.join(params['logdir'], "hwsim0.pcapng"),
    84. 

  84.                          "eapol.type == 3",
    85. 

  85.                          display=["wlan.sa", "wlan.da",
    86. 

  86.                                   "eapol.keydes.key_info"],
    87. 

  87.                          wait=False)
    88. 

  88. 

  89.     smk = [ False, False, False, False, False ]
    90. 

  90.     stk = [ False, False, False, False ]
    91. 

  91. 

  92.     for pkt in out.splitlines():
    93. 

  93.         sa, da, key_info = pkt.split('\t')
    94. 

  94.         key_info = int(key_info, 16)
    95. 

  95.         if sa == addr0 and da == bssid and key_info == 0x2b02:
    96. 

  96.             # Initiator -> AP: MIC+Secure+Request+SMK = SMK 1
    97. 

  97.             smk[0] = True
    98. 

  98.         elif sa == bssid and da == addr1 and key_info == 0x2382:
    99. 

  99.             # AP -> Responder: ACK+MIC+Secure+SMK = SMK 2
    100. 

  100.             smk[1] = True
    101. 

  101.         elif sa == addr1 and da == bssid and key_info == 0x2302:
    102. 

  102.             # Responder -> AP: MIC+Secure+SMK = SMK 3
    103. 

  103.             smk[2] = True
    104. 

  104.         elif sa == bssid and da == addr1 and key_info == 0x3342:
    105. 

  105.             # AP -> Responder: Install+MIC+Secure+EncrKeyData+SMK = SMK 4
    106. 

  106.             smk[3] = True
    107. 

  107.         elif sa == bssid and da == addr0 and key_info == 0x3302:
    108. 

  108.             # AP -> Initiator: MIC+Secure+EncrKeyData+SMK = SMK 5
    109. 

  109.             smk[4] = True
    110. 

  110.         elif sa == addr0 and da == addr1 and key_info == 0x008a:
    111. 

  111.             # Initiator -> Responder: Pairwise+ACK = STK 1
    112. 

  112.             stk[0] = True
    113. 

  113.         elif sa == addr1 and da == addr0 and key_info == 0x010a:
    114. 

  114.             # Responder -> Initiator: Pairwise+MIC = STK 2
    115. 

  115.             stk[1] = True
    116. 

  116.         elif sa == addr0 and da == addr1 and key_info == 0x038a:
    117. 

  117.             # Initiator -> Responder: Pairwise+ACK+MIC+Secure = STK 3
    118. 

  118.             stk[2] = True
    119. 

  119.         elif sa == addr1 and da == addr0 and key_info == 0x030a:
    120. 

  120.             # Responder -> Initiator: Pairwise+MIC+Secure = STK 4
    121. 

  121.             stk[3] = True
    122. 

  122. 

  123.     logger.info("Seen SMK messages: " + str(smk))
    124. 

  124.     logger.info("Seen STK messages: " + str(stk))
    125. 

  125.     if False in smk:
    126. 

  126.         raise Exception("Missing SMK message: " + str(smk))
    127. 

  127.     if False in stk:
    128. 

  128.         raise Exception("Missing STK message: " + str(stk))
    129. 

  129. 

  130. def test_peerkey_unknown_peer(dev, apdev):
    131. 

  131.     """RSN AP and PeerKey attempt with unknown peer"""
    132. 

  132.     ssid = "test-peerkey"
    133. 

  133.     passphrase = "12345678"
    134. 

  134.     params = hostapd.wpa2_params(ssid=ssid, passphrase=passphrase)
    135. 

  135.     params['peerkey'] = "1"
    136. 

  136.     hostapd.add_ap(apdev[0], params)
    137. 

  137. 

  138.     dev[0].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True)
    139. 

  139.     dev[1].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True)
    140. 

  140.     hwsim_utils.test_connectivity_sta(dev[0], dev[1])
    141. 

  141. 

  142.     dev[0].request("STKSTART " + dev[2].p2p_interface_addr())
    143. 

  143.     time.sleep(0.5)
    144. 

  144. 

  145. @remote_compatible
    146. 

  146. def test_peerkey_pairwise_mismatch(dev, apdev):
    147. 

  147.     """RSN TKIP+CCMP AP and PeerKey between two STAs using different ciphers"""
    148. 

  148.     skip_with_fips(dev[0])
    149. 

  149.     ssid = "test-peerkey"
    150. 

  150.     passphrase = "12345678"
    151. 

  151.     params = hostapd.wpa2_params(ssid=ssid, passphrase=passphrase)
    152. 

  152.     params['peerkey'] = "1"
    153. 

  153.     params['rsn_pairwise'] = "TKIP CCMP"
    154. 

  154.     hapd = hostapd.add_ap(apdev[0], params)
    155. 

  155. 

  156.     Wlantest.setup(hapd)
    157. 

  157.     wt = Wlantest()
    158. 

  158.     wt.flush()
    159. 

  159.     wt.add_passphrase("12345678")
    160. 

  160. 

  161.     dev[0].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True,
    162. 

  162.                    pairwise="CCMP")
    163. 

  163.     dev[1].connect(ssid, psk=passphrase, scan_freq="2412", peerkey=True,
    164. 

  164.                    pairwise="TKIP")
    165. 

  165.     hwsim_utils.test_connectivity_sta(dev[0], dev[1])
    166. 

  166. 

  167.     dev[0].request("STKSTART " + dev[1].p2p_interface_addr())
    168. 

  168.     time.sleep(0.5)
    169. 

  169.     dev[1].request("STKSTART " + dev[0].p2p_interface_addr())
    170. 

  170.     time.sleep(0.5)
    171.