| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | |
|
| |
|
|
|
|
| |
ieee80211_mgmt_output() and ieee80211_encap().
use new IEEE80211_C_APPMGT capability flag where appropriate.
rename ic_tim_mcast to ic_tim_mcast_pending.
|
| |
|
|
|
|
|
| |
to the Attic. nothing uses it in the tree and it is very unlikely
that something will use it one day.
the only driver supporting FHSS PHYs in the tree is ray(4) and it
does not use net80211.
|
| |
|
|
|
|
|
|
|
| |
remove IBSS and HostAP support from net80211 and 802.11 drivers.
it can be used to shrink RAMDISK kernels for instance (like what
was done for wi(4)).
it also has the benefit of highlighting what is specific to IBSS
and HostAP modes in the code.
the cost is that we now have two code paths to maintain.
|
| | |
|
| |
|
|
|
| |
from MMIE etc...
this code can't be triggered as no drivers claim MFP capability yet.
|
| | |
|
| |
|
|
| |
add support for MFP negotiation during association.
|
| |
|
|
|
| |
instead of hard-coding values.
for RSN IE, request space for Group Integrity Cipher Suite.
|
| |
|
|
| |
wrong. hard-code 0xf for now. will be fixed post-release.
|
| |
|
|
|
|
|
|
| |
copy m_pkthdr.len and m_flags before and use that after to update
the statistics.
from altq(4) man page and for consistency with what is done in
other parts of the tree.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
WPA is on and RX protection for TA is on.
Keep track of the TX/RX protection for each node when WPA is on.
tested by djm@ (ral+wpa), ckuethe@ (ath-noenc) and krw@ (wpi<->ral+wpa).
hints from bluhm@
has been in snaps for a few days.
pointed out by bluhm@ something like 1 year ago but we did not have
the right infrastructure to fix it properly at that time.
ok deraadt@
|
| |
|
|
|
|
|
| |
automatically prepend __func__ to output.
deobfuscates debug messages a bit.
no binary change unless compiled with IEEE80211_DEBUG.
|
| |
|
|
|
|
|
|
|
|
|
| |
The bug was added on 04/16 but it started to show up only after 06/12 when
the value of MINCLSIZE was changed to something different from MHLEN + 1.
Thanks to dlg@ and giovanni (qgiovanni at gmail dot com) for putting me
on the right track.
Tested by giovanni.
Should fix system/5881 too.
|
| |
|
|
| |
this must not be included by drivers.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
handshake protocols (both supplicant and authenticator state
machines) as defined in the IEEE 802.11i standard.
Software implementation of the TKIP (Temporal Key Integrity
Protocol) and CCMP (CTR with CBC-MAC Protocol) protocols.
This diff doesn't implement any of the 802.1X authentication
protocols and thus only PSK authentication (using pre-shared
keys) is currently supported.
In concrete terms, this adds support for WPA-PSK and WPA2-PSK
protocols, both in station and hostap modes.
The following drivers are marked as WPA-capable and should
work: bwi(4), malo(4), ral(4), iwn(4), wpi(4), ural(4),
rum(4), upgt(4), and zyd(4)
The following options have been added to ifconfig(8):
wpa, wpapsk, wpaprotos, wpaakms, wpaciphers, wpagroupcipher
wpa-psk(8) can be used to generate keys from passphrases.
tested by many@
ok deraadt@
|
| |
|
|
| |
add some RSNA authenticator state machine bits.
|
| |
|
|
|
|
|
|
|
|
| |
message 2/4 of the 4-way handshake because the authenticator must
derive the PTK first (the MIC is computed using the KCK).
Move calls to ieee80211_eapol_key_check_mic() - and as a consequence
ieee80211_eapol_key_decrypt() - directly in the
ieee80211_recv_{group,4way}_msg*() functions.
Unconstify the first parameter since checking the MIC modifies the
frame. Remove ni->ni_ptk_ok field while i'm here.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Tx/Rx MIC for TKIP.
- add two functions to map a PTK and a GTK to an IEEE 802.11 key and
use them in ieee80211_input.c instead of duplicating the same code.
properly set Tx/Rx MIC in the IEEE 802.11 key in the case of TKIP.
- add ic_psk to struct ieee80211com to store the pre-shared key.
- fix setting of the SECURE bit in outgoing EAPOL-Key frames.
- when receiving msg 2 of the 4-way handshake, deauthenticate the
station if the RSN IE does not match that of the (Re)Association
request.
- before parsing an RSN or WPA IE, check that there's enough room for
the version field (2 bytes) which is mandatory.
- various tweaks while i'm here.
|
| |
|
|
|
|
| |
Even no bit was set we copied the full 225bytes bitmaks into the beacon.
Found the hard way with acx(4) by mglocker@ and myself.
OK mglocker@ damien@
|
| |
|
|
|
|
|
|
|
|
|
|
| |
a station is using WPA1 or RSN descriptors.
make sure that a station that advertises WPA1 capability in an IE
uses the WPA1 EAPOL-Key descriptor type and not the RSN one.
fix construction of EAPOL-Key frames for WPA1.
i can now successfuly complete a 4-way and group-key handshake
with both a WPA1 and a WPA2 access point.
add some TKIP encapsulation code (no SW crypto yet).
ok deraadt@
|
| | |
|
| |
|
|
| |
4-way handshake to ieee80211_send_4way_msg2().
|
| | |
|
| |
|
|
|
|
|
|
| |
this simplifies ieee80211_eapol_key_mic() and ieee80211_eapol_key_check_mic()
quite a bit.
set the EAPOL-Key body length before computing the MIC since the MIC is
computed with the 802.1X header too.
add a missing htons() while i'm here.
|
| | |
|
| |
|
|
|
|
| |
the 4-way and group-key handshake.
the state machine is still missing though so this is not used
anywhere yet.
|
| |
|
|
|
|
| |
add a parameter to ieee80211_decap() to handle different 802.11
header sizes.
cleanup and clarify ieee80211_classify().
|
| |
|
|
| |
ieee80211_get_cts_to_self() if mbuf allocation fails.
|
| |
|
|
| |
still very ugly but hopefully correct.
|
| |
|
|
|
| |
it has been #if 0'd since 3.9 and we have never supported this mode (no
ifconfig option etc...).
|
| |
|
|
|
| |
fixes my 1.36 commit (the bit should not be set for non-AP STA
only in Probe Responses and Beacons).
|
| |
|
|
| |
needed or not to the callers (instead of doing nothing in add_xrates).
|
| |
|
|
| |
vendor-specific IE.
|
| |
|
|
| |
add RSN IE to beacons, probe responses and (re)association requests.
|
| |
|
|
|
| |
a default ieee80211_set_tim() function that drivers can override
by setting ic_set_tim.
|
| | |
|
| |
|
|
|
|
| |
duplicate the same code multiple times.
add references to the spec for all these functions.
fixes beacon_alloc() for FH PHYs as a side-effect.
|
| |
|
|
| |
field if we're not operating as an AP (see 7.3.1.4).
|
| | |
|
| |
|
|
|
|
|
| |
the length is greater than MHLEN, test that the allocation succeeded.
Otherwise, free the mbuf header and return NULL.
Callers assume that if the function returns a value != NULL then
enough space has been allocated.
|
| |
|
|
| |
HIDENWID has been broken from the very beginning.
|
| | |
|
| | |
|
| |
|
|
| |
when QoS is supported and activated.
|
| |
|
|
|
|
|
|
|
|
| |
ieee80211_up_to_ac(): returns the access category to be used for
transmitting a frame with a given user priority.
ieee80211_classify(): returns the user-priority of an mbuf based
on VLAN 802.1D user-priority (if any) or IP TOS precedence field.
indent prototypes and add myself to the copyright list while i'm here.
|
| |
|
|
| |
use u_int{8,16,32}_t everywhere.
|
| |
|
|
| |
ok jsg@
|
| |
|
|
|
|
| |
not used yet.
ok jsg@ deraadt@
|
damien
claudio