summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDamien Bergamini <damien@cvs.openbsd.org>2008-07-26 12:36:16 +0000
committerDamien Bergamini <damien@cvs.openbsd.org>2008-07-26 12:36:16 +0000
commitcc19867a25cae6fed9d2690a3c73fb6de17e385e (patch)
tree0e00e39380f906241ea3cec2375b14db42d5f73e
parent09b94e3defe95d9866698b3e53ec1747470010bd (diff)
call Phase1 every 2**16 frames instead of calling it for every frame.
properly handle frames with an address 4 field (required for future work). remove useless #includes.
-rw-r--r--sys/net80211/ieee80211_crypto_tkip.c32
1 files changed, 18 insertions, 14 deletions
diff --git a/sys/net80211/ieee80211_crypto_tkip.c b/sys/net80211/ieee80211_crypto_tkip.c
index c3bcce5d0eb..188442e4d71 100644
--- a/sys/net80211/ieee80211_crypto_tkip.c
+++ b/sys/net80211/ieee80211_crypto_tkip.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ieee80211_crypto_tkip.c,v 1.3 2008/04/26 19:59:24 damien Exp $ */
+/* $OpenBSD: ieee80211_crypto_tkip.c,v 1.4 2008/07/26 12:36:15 damien Exp $ */
/*-
* Copyright (c) 2008 Damien Bergamini <damien.bergamini@free.fr>
@@ -22,11 +22,7 @@
#include <sys/malloc.h>
#include <sys/kernel.h>
#include <sys/socket.h>
-#include <sys/sockio.h>
#include <sys/endian.h>
-#include <sys/errno.h>
-#include <sys/proc.h>
-#include <sys/sysctl.h>
#include <sys/syslog.h>
#include <net/if.h>
@@ -60,6 +56,7 @@ struct ieee80211_tkip_ctx {
const u_int8_t *rxmic;
u_int16_t TTAK1[5];
u_int16_t TTAK2[5];
+ u_int8_t TTAK2ok;
};
/*
@@ -140,15 +137,24 @@ ieee80211_tkip_mic(struct mbuf *m0, int off, const u_int8_t *key,
IEEE80211_ADDR_COPY(wht.i_sa, wh->i_addr3);
break;
case IEEE80211_FC1_DIR_DSTODS:
- /* not yet supported */
+ IEEE80211_ADDR_COPY(wht.i_da, wh->i_addr3);
+ IEEE80211_ADDR_COPY(wht.i_sa,
+ ((const struct ieee80211_frame_addr4 *)wh)->i_addr4);
break;
}
if ((wh->i_fc[0] &
(IEEE80211_FC0_TYPE_MASK | IEEE80211_FC0_SUBTYPE_QOS)) ==
(IEEE80211_FC0_TYPE_DATA | IEEE80211_FC0_SUBTYPE_QOS)) {
- const struct ieee80211_qosframe *qwh =
- (const struct ieee80211_qosframe *)wh;
- wht.i_pri = qwh->i_qos[0] & 0xf;
+ if ((wh->i_fc[1] & IEEE80211_FC1_DIR_MASK) ==
+ IEEE80211_FC1_DIR_DSTODS) {
+ const struct ieee80211_qosframe_addr4 *qwh4 =
+ (const struct ieee80211_qosframe_addr4 *)wh;
+ wht.i_pri = qwh4->i_qos[0] & 0xf;
+ } else {
+ const struct ieee80211_qosframe *qwh =
+ (const struct ieee80211_qosframe *)wh;
+ wht.i_pri = qwh->i_qos[0] & 0xf;
+ }
} else
wht.i_pri = 0;
wht.i_pad[0] = wht.i_pad[1] = wht.i_pad[2] = 0;
@@ -223,9 +229,7 @@ ieee80211_tkip_encrypt(struct ieee80211com *ic, struct mbuf *m0,
ivp[7] = k->k_tsc >> 40; /* TSC5 */
/* compute WEP seed */
-#ifdef notyet
if ((k->k_tsc & 0xffff) == 0)
-#endif
Phase1(ctx->TTAK1, k->k_key, wh->i_addr2, k->k_tsc >> 16);
Phase2((u_int8_t *)wepseed, k->k_key, ctx->TTAK1, k->k_tsc & 0xffff);
rc4_keysetup(&ctx->rc4, (u_int8_t *)wepseed, 16);
@@ -373,10 +377,10 @@ ieee80211_tkip_decrypt(struct ieee80211com *ic, struct mbuf *m0,
wh->i_fc[1] &= ~IEEE80211_FC1_PROTECTED;
/* compute WEP seed */
-#ifdef notyet
- if (k->k_rsc[0] == 0 || ((tsc >> 16) != (k->k_rsc[0] >> 16)))
-#endif
+ if (!ctx->TTAK2ok || ((tsc >> 16) != (k->k_rsc[0] >> 16))) {
Phase1(ctx->TTAK2, k->k_key, wh->i_addr2, tsc >> 16);
+ ctx->TTAK2ok = 1;
+ }
Phase2((u_int8_t *)wepseed, k->k_key, ctx->TTAK2, tsc & 0xffff);
rc4_keysetup(&ctx->rc4, (u_int8_t *)wepseed, 16);