Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

FT: Fix FTIE generation for EAPOL-Key msg 3/4

This FTIE needs to be an exact copy of the one in (Re)Association
Response frame. Copy the stored element rather than building a new copy
that would not have the correct MIC value. This is needed to fix PTK
rekeying after FT protocol run.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen 9 years ago
parent
e44bd28cd1
commit
9257610a6e
1 changed files with 12 additions and 4 deletions
Split View Show Diff Stats
  1. 12 4
      src/ap/wpa_auth.c

+ 12 - 4
src/ap/wpa_auth.c
View File 

@@ -2328,10 +2328,18 @@ SM_STATE(WPA_PTK, PTKINITNEGOTIATING)
 
 		struct wpa_auth_config *conf;
 
 
 		conf = &sm->wpa_auth->conf;
 
-		res = wpa_write_ftie(conf, conf->r0_key_holder,
 
-				     conf->r0_key_holder_len,
 
-				     NULL, NULL, pos, kde + kde_len - pos,
 
-				     NULL, 0);
 
+		if (sm->assoc_resp_ftie &&
 
+		    kde + kde_len - pos >= 2 + sm->assoc_resp_ftie[1]) {
 
+			os_memcpy(pos, sm->assoc_resp_ftie,
 
+				  2 + sm->assoc_resp_ftie[1]);
 
+			res = 2 + sm->assoc_resp_ftie[1];
 
+		} else {
 
+			res = wpa_write_ftie(conf, conf->r0_key_holder,
 
+					     conf->r0_key_holder_len,
 
+					     NULL, NULL, pos,
 
+					     kde + kde_len - pos,
 
+					     NULL, 0);
 
+		}
 
 		if (res < 0) {
 
 			wpa_printf(MSG_ERROR, "FT: Failed to insert FTIE "
 
 				   "into EAPOL-Key Key Data");