2005-05-12 22:48:20 -04:00
/*
* Host AP crypt : host - based WEP encryption implementation for Host AP driver
*
2007-03-24 17:15:30 -07:00
* Copyright ( c ) 2002 - 2004 , Jouni Malinen < j @ w1 . fi >
2005-05-12 22:48:20 -04:00
*
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License version 2 as
* published by the Free Software Foundation . See README and COPYING for
* more details .
*/
2006-08-22 20:36:13 +10:00
# include <linux/err.h>
2005-05-12 22:48:20 -04:00
# include <linux/module.h>
# include <linux/init.h>
# include <linux/slab.h>
# include <linux/random.h>
2007-10-23 20:42:11 +02:00
# include <linux/scatterlist.h>
2005-05-12 22:48:20 -04:00
# include <linux/skbuff.h>
2006-12-03 23:15:30 -05:00
# include <linux/mm.h>
2005-05-12 22:48:20 -04:00
# include <asm/string.h>
# include <net/ieee80211.h>
# include <linux/crypto.h>
# include <linux/crc32.h>
MODULE_AUTHOR ( " Jouni Malinen " ) ;
MODULE_DESCRIPTION ( " Host AP crypt: WEP " ) ;
MODULE_LICENSE ( " GPL " ) ;
struct prism2_wep_data {
u32 iv ;
# define WEP_KEY_LEN 13
u8 key [ WEP_KEY_LEN + 1 ] ;
u8 key_len ;
u8 key_idx ;
2006-09-22 20:10:23 -04:00
struct crypto_blkcipher * tx_tfm ;
struct crypto_blkcipher * rx_tfm ;
2005-05-12 22:48:20 -04:00
} ;
2005-09-22 10:34:15 +00:00
static void * prism2_wep_init ( int keyidx )
2005-05-12 22:48:20 -04:00
{
struct prism2_wep_data * priv ;
2006-07-21 14:51:30 -07:00
priv = kzalloc ( sizeof ( * priv ) , GFP_ATOMIC ) ;
2005-05-12 22:48:20 -04:00
if ( priv = = NULL )
goto fail ;
priv - > key_idx = keyidx ;
2006-09-22 20:10:23 -04:00
priv - > tx_tfm = crypto_alloc_blkcipher ( " ecb(arc4) " , 0 , CRYPTO_ALG_ASYNC ) ;
if ( IS_ERR ( priv - > tx_tfm ) ) {
2005-05-12 22:48:20 -04:00
printk ( KERN_DEBUG " ieee80211_crypt_wep: could not allocate "
" crypto API arc4 \n " ) ;
2006-09-22 21:19:05 -04:00
priv - > tx_tfm = NULL ;
2005-05-12 22:48:20 -04:00
goto fail ;
}
2006-09-22 20:10:23 -04:00
priv - > rx_tfm = crypto_alloc_blkcipher ( " ecb(arc4) " , 0 , CRYPTO_ALG_ASYNC ) ;
if ( IS_ERR ( priv - > rx_tfm ) ) {
2006-08-21 11:33:56 +08:00
printk ( KERN_DEBUG " ieee80211_crypt_wep: could not allocate "
" crypto API arc4 \n " ) ;
2006-09-22 21:19:05 -04:00
priv - > rx_tfm = NULL ;
2006-08-21 11:33:56 +08:00
goto fail ;
}
2005-05-12 22:48:20 -04:00
/* start WEP IV from a random value */
get_random_bytes ( & priv - > iv , 4 ) ;
return priv ;
2005-09-07 00:48:31 -04:00
fail :
2005-05-12 22:48:20 -04:00
if ( priv ) {
2006-08-21 11:33:56 +08:00
if ( priv - > tx_tfm )
2006-09-22 20:10:23 -04:00
crypto_free_blkcipher ( priv - > tx_tfm ) ;
2006-08-21 11:33:56 +08:00
if ( priv - > rx_tfm )
2006-09-22 20:10:23 -04:00
crypto_free_blkcipher ( priv - > rx_tfm ) ;
2005-05-12 22:48:20 -04:00
kfree ( priv ) ;
}
return NULL ;
}
static void prism2_wep_deinit ( void * priv )
{
struct prism2_wep_data * _priv = priv ;
2006-08-21 11:33:56 +08:00
if ( _priv ) {
if ( _priv - > tx_tfm )
2006-09-22 20:10:23 -04:00
crypto_free_blkcipher ( _priv - > tx_tfm ) ;
2006-08-21 11:33:56 +08:00
if ( _priv - > rx_tfm )
2006-09-22 20:10:23 -04:00
crypto_free_blkcipher ( _priv - > rx_tfm ) ;
2006-08-21 11:33:56 +08:00
}
2005-05-12 22:48:20 -04:00
kfree ( priv ) ;
}
2005-12-31 11:35:20 +01:00
/* Add WEP IV/key info to a frame that has at least 4 bytes of headroom */
2006-01-19 16:22:32 +08:00
static int prism2_wep_build_iv ( struct sk_buff * skb , int hdr_len ,
u8 * key , int keylen , void * priv )
2005-05-12 22:48:20 -04:00
{
struct prism2_wep_data * wep = priv ;
2005-12-31 11:35:20 +01:00
u32 klen , len ;
u8 * pos ;
2007-02-09 23:24:46 +09:00
2005-12-31 11:35:20 +01:00
if ( skb_headroom ( skb ) < 4 | | skb - > len < hdr_len )
2005-05-12 22:48:20 -04:00
return - 1 ;
len = skb - > len - hdr_len ;
pos = skb_push ( skb , 4 ) ;
memmove ( pos , pos + 4 , hdr_len ) ;
pos + = hdr_len ;
klen = 3 + wep - > key_len ;
wep - > iv + + ;
/* Fluhrer, Mantin, and Shamir have reported weaknesses in the key
* scheduling algorithm of RC4 . At least IVs ( KeyByte + 3 , 0xff , N )
* can be used to speedup attacks , so avoid using them . */
if ( ( wep - > iv & 0xff00 ) = = 0xff00 ) {
u8 B = ( wep - > iv > > 16 ) & 0xff ;
if ( B > = 3 & & B < klen )
wep - > iv + = 0x0100 ;
}
/* Prepend 24-bit IV to RC4 key and TX frame */
2005-12-31 11:35:20 +01:00
* pos + + = ( wep - > iv > > 16 ) & 0xff ;
* pos + + = ( wep - > iv > > 8 ) & 0xff ;
* pos + + = wep - > iv & 0xff ;
2005-05-12 22:48:20 -04:00
* pos + + = wep - > key_idx < < 6 ;
2005-12-31 11:35:20 +01:00
return 0 ;
}
/* Perform WEP encryption on given skb that has at least 4 bytes of headroom
* for IV and 4 bytes of tailroom for ICV . Both IV and ICV will be transmitted ,
* so the payload length increases with 8 bytes .
*
* WEP frame payload : IV + TX key idx , RC4 ( data ) , ICV = RC4 ( CRC32 ( data ) )
*/
static int prism2_wep_encrypt ( struct sk_buff * skb , int hdr_len , void * priv )
{
struct prism2_wep_data * wep = priv ;
2006-09-22 20:10:23 -04:00
struct blkcipher_desc desc = { . tfm = wep - > tx_tfm } ;
2005-12-31 11:35:20 +01:00
u32 crc , klen , len ;
u8 * pos , * icv ;
struct scatterlist sg ;
u8 key [ WEP_KEY_LEN + 3 ] ;
/* other checks are in prism2_wep_build_iv */
if ( skb_tailroom ( skb ) < 4 )
return - 1 ;
2007-02-09 23:24:46 +09:00
2005-12-31 11:35:20 +01:00
/* add the IV to the frame */
2006-01-19 16:22:32 +08:00
if ( prism2_wep_build_iv ( skb , hdr_len , NULL , 0 , priv ) )
2005-12-31 11:35:20 +01:00
return - 1 ;
2007-02-09 23:24:46 +09:00
2005-12-31 11:35:20 +01:00
/* Copy the IV into the first 3 bytes of the key */
2007-03-27 18:55:52 -03:00
skb_copy_from_linear_data_offset ( skb , hdr_len , key , 3 ) ;
2005-12-31 11:35:20 +01:00
2005-05-12 22:48:20 -04:00
/* Copy rest of the WEP key (the secret part) */
memcpy ( key + 3 , wep - > key , wep - > key_len ) ;
2007-02-09 23:24:46 +09:00
2005-12-31 11:35:20 +01:00
len = skb - > len - hdr_len - 4 ;
pos = skb - > data + hdr_len + 4 ;
klen = 3 + wep - > key_len ;
2005-05-12 22:48:20 -04:00
2005-12-31 11:35:20 +01:00
/* Append little-endian CRC32 over only the data and encrypt it to produce ICV */
2005-05-12 22:48:20 -04:00
crc = ~ crc32_le ( ~ 0 , pos , len ) ;
icv = skb_put ( skb , 4 ) ;
icv [ 0 ] = crc ;
icv [ 1 ] = crc > > 8 ;
icv [ 2 ] = crc > > 16 ;
icv [ 3 ] = crc > > 24 ;
2006-09-22 20:10:23 -04:00
crypto_blkcipher_setkey ( wep - > tx_tfm , key , klen ) ;
2007-10-22 19:44:26 +02:00
sg_init_one ( & sg , pos , len + 4 ) ;
2006-08-22 20:36:13 +10:00
return crypto_blkcipher_encrypt ( & desc , & sg , & sg , len + 4 ) ;
2005-05-12 22:48:20 -04:00
}
/* Perform WEP decryption on given buffer. Buffer includes whole WEP part of
* the frame : IV ( 4 bytes ) , encrypted payload ( including SNAP header ) ,
* ICV ( 4 bytes ) . len includes both IV and ICV .
*
* Returns 0 if frame was decrypted successfully and ICV was correct and - 1 on
* failure . If frame is OK , IV and ICV will be removed .
*/
static int prism2_wep_decrypt ( struct sk_buff * skb , int hdr_len , void * priv )
{
struct prism2_wep_data * wep = priv ;
2006-09-22 20:10:23 -04:00
struct blkcipher_desc desc = { . tfm = wep - > rx_tfm } ;
2005-05-12 22:48:20 -04:00
u32 crc , klen , plen ;
u8 key [ WEP_KEY_LEN + 3 ] ;
u8 keyidx , * pos , icv [ 4 ] ;
struct scatterlist sg ;
if ( skb - > len < hdr_len + 8 )
return - 1 ;
pos = skb - > data + hdr_len ;
key [ 0 ] = * pos + + ;
key [ 1 ] = * pos + + ;
key [ 2 ] = * pos + + ;
keyidx = * pos + + > > 6 ;
if ( keyidx ! = wep - > key_idx )
return - 1 ;
klen = 3 + wep - > key_len ;
/* Copy rest of the WEP key (the secret part) */
memcpy ( key + 3 , wep - > key , wep - > key_len ) ;
/* Apply RC4 to data and compute CRC32 over decrypted data */
plen = skb - > len - hdr_len - 8 ;
2006-09-22 20:10:23 -04:00
crypto_blkcipher_setkey ( wep - > rx_tfm , key , klen ) ;
2007-10-22 19:44:26 +02:00
sg_init_one ( & sg , pos , plen + 4 ) ;
2006-08-22 20:36:13 +10:00
if ( crypto_blkcipher_decrypt ( & desc , & sg , & sg , plen + 4 ) )
return - 7 ;
2005-05-12 22:48:20 -04:00
crc = ~ crc32_le ( ~ 0 , pos , plen ) ;
icv [ 0 ] = crc ;
icv [ 1 ] = crc > > 8 ;
icv [ 2 ] = crc > > 16 ;
icv [ 3 ] = crc > > 24 ;
if ( memcmp ( icv , pos + plen , 4 ) ! = 0 ) {
/* ICV mismatch - drop frame */
return - 2 ;
}
/* Remove IV and ICV */
memmove ( skb - > data + 4 , skb - > data , hdr_len ) ;
skb_pull ( skb , 4 ) ;
skb_trim ( skb , skb - > len - 4 ) ;
return 0 ;
}
2005-09-07 00:48:31 -04:00
static int prism2_wep_set_key ( void * key , int len , u8 * seq , void * priv )
2005-05-12 22:48:20 -04:00
{
struct prism2_wep_data * wep = priv ;
if ( len < 0 | | len > WEP_KEY_LEN )
return - 1 ;
memcpy ( wep - > key , key , len ) ;
wep - > key_len = len ;
return 0 ;
}
2005-09-07 00:48:31 -04:00
static int prism2_wep_get_key ( void * key , int len , u8 * seq , void * priv )
2005-05-12 22:48:20 -04:00
{
struct prism2_wep_data * wep = priv ;
if ( len < wep - > key_len )
return - 1 ;
memcpy ( key , wep - > key , wep - > key_len ) ;
return wep - > key_len ;
}
2005-09-07 00:48:31 -04:00
static char * prism2_wep_print_stats ( char * p , void * priv )
2005-05-12 22:48:20 -04:00
{
struct prism2_wep_data * wep = priv ;
2005-09-07 00:48:31 -04:00
p + = sprintf ( p , " key[%d] alg=WEP len=%d \n " , wep - > key_idx , wep - > key_len ) ;
2005-05-12 22:48:20 -04:00
return p ;
}
static struct ieee80211_crypto_ops ieee80211_crypt_wep = {
2005-09-13 17:35:21 -05:00
. name = " WEP " ,
. init = prism2_wep_init ,
. deinit = prism2_wep_deinit ,
2005-12-31 11:35:20 +01:00
. build_iv = prism2_wep_build_iv ,
2005-09-13 17:35:21 -05:00
. encrypt_mpdu = prism2_wep_encrypt ,
. decrypt_mpdu = prism2_wep_decrypt ,
. encrypt_msdu = NULL ,
. decrypt_msdu = NULL ,
. set_key = prism2_wep_set_key ,
. get_key = prism2_wep_get_key ,
. print_stats = prism2_wep_print_stats ,
2005-09-21 11:54:53 -05:00
. extra_mpdu_prefix_len = 4 , /* IV */
. extra_mpdu_postfix_len = 4 , /* ICV */
2005-09-13 17:35:21 -05:00
. owner = THIS_MODULE ,
2005-05-12 22:48:20 -04:00
} ;
static int __init ieee80211_crypto_wep_init ( void )
{
return ieee80211_register_crypto_ops ( & ieee80211_crypt_wep ) ;
}
static void __exit ieee80211_crypto_wep_exit ( void )
{
ieee80211_unregister_crypto_ops ( & ieee80211_crypt_wep ) ;
}
module_init ( ieee80211_crypto_wep_init ) ;
module_exit ( ieee80211_crypto_wep_exit ) ;