diff options
| author | Patrick Wildt <patrick@cvs.openbsd.org> | 2017-10-21 20:43:21 +0000 |
|---|---|---|
| committer | Patrick Wildt <patrick@cvs.openbsd.org> | 2017-10-21 20:43:21 +0000 |
| commit | ec5af02fc35b27e1e42c14d537aa9121b24bbb6c (patch) | |
| tree | bc78fdb0b5b699e2f61c9f8ee2ab64f392cc3052 /sys/dev/ic/bwfmvar.h | |
| parent | 54ddd0980279b235f4195862f825215ac1837bcf (diff) | |
Even though letting the firmware handle the handshake is nice from
a user perspective, it's rather horrible from a security perspective.
Especially since there has not only been the KRACK attack, but also
exploited wireless firmware. Thus this commit changes the way that
bwfm(4) is integrated into our network stack. Instead of making it
an Ethernet controller with some WiFi capability, deeply integrate
it into the net80211 stack. This way we can do the WPA handshake in
software and we don't have to reimplement or copy too much code from
the net80211 stack. Some code taken from NetBSD where Jared McNeill
committed bwfm(4) with net80211 integration as well.
Discussed with and "looks good" stsp@
Diffstat (limited to 'sys/dev/ic/bwfmvar.h')
| -rw-r--r-- | sys/dev/ic/bwfmvar.h | 32 |
1 files changed, 30 insertions, 2 deletions
diff --git a/sys/dev/ic/bwfmvar.h b/sys/dev/ic/bwfmvar.h index 00970ff9978..19a62e2a38c 100644 --- a/sys/dev/ic/bwfmvar.h +++ b/sys/dev/ic/bwfmvar.h @@ -1,4 +1,4 @@ -/* $OpenBSD: bwfmvar.h,v 1.2 2017/10/18 19:59:37 patrick Exp $ */ +/* $OpenBSD: bwfmvar.h,v 1.3 2017/10/21 20:43:20 patrick Exp $ */ /* * Copyright (c) 2010-2016 Broadcom Corporation * Copyright (c) 2016,2017 Patrick Wildt <patrick@blueri.se> @@ -106,6 +106,29 @@ struct bwfm_proto_ops { }; extern struct bwfm_proto_ops bwfm_proto_bcdc_ops; +struct bwfm_host_cmd { + void (*cb)(struct bwfm_softc *, void *); + uint8_t data[256]; +}; + +struct bwfm_cmd_newstate { + enum ieee80211_state state; + int arg; +}; + +struct bwfm_cmd_key { + struct ieee80211_node *ni; + struct ieee80211_key *k; +}; + +struct bwfm_host_cmd_ring { +#define BWFM_HOST_CMD_RING_COUNT 32 + struct bwfm_host_cmd cmd[BWFM_HOST_CMD_RING_COUNT]; + int cur; + int next; + int queued; +}; + struct bwfm_softc { struct device sc_dev; struct ieee80211com sc_ic; @@ -119,7 +142,12 @@ struct bwfm_softc { #define BWFM_IO_TYPE_D11AC 2 int sc_tx_timer; - struct timeout sc_scan_timeout; + + int (*sc_newstate)(struct ieee80211com *, + enum ieee80211_state, int); + struct bwfm_host_cmd_ring sc_cmdq; + struct taskq *sc_taskq; + struct task sc_task; }; void bwfm_attach(struct bwfm_softc *); |