diff options
| author | Mathy Vanhoef <Mathy.Vanhoef@cs.kuleuven.be> | 2017-07-12 16:03:24 +0200 |
|---|---|---|
| committer | Ivan Kutepov <its.kutepov@gmail.com> | 2017-10-19 21:53:11 +0300 |
| commit | 649a5b6643e9ada90b2a568c787c2e3aea55a6a6 (patch) | |
| tree | 46c153668b668bc567a2b230c12a30e835f52b67 /src/common | |
| parent | 4bebb51a5cdc3dd75e9fa5c4cd08808e97709f34 (diff) | |
| download | android_external_wpa_supplicant_8-649a5b6643e9ada90b2a568c787c2e3aea55a6a6.tar.gz android_external_wpa_supplicant_8-649a5b6643e9ada90b2a568c787c2e3aea55a6a6.tar.bz2 android_external_wpa_supplicant_8-649a5b6643e9ada90b2a568c787c2e3aea55a6a6.zip | |
Prevent reinstallation of an already in-use group key
Track the current GTK and IGTK that is in use and when receiving a
(possibly retransmitted) Group Message 1 or WNM-Sleep Mode Response, do
not install the given key if it is already in use. This prevents an
attacker from trying to trick the client into resetting or lowering the
sequence counter associated to the group key.
Change-Id: Ib0565e90e62115cc91ac36be3dae3b064e1baa1e
Signed-off-by: Mathy Vanhoef <Mathy.Vanhoef@cs.kuleuven.be>
Diffstat (limited to 'src/common')
| -rw-r--r-- | src/common/wpa_common.h | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/src/common/wpa_common.h b/src/common/wpa_common.h index d7a590fc..504ec2da 100644 --- a/src/common/wpa_common.h +++ b/src/common/wpa_common.h @@ -215,6 +215,17 @@ struct wpa_ptk { size_t tk_len; }; +struct wpa_gtk { + u8 gtk[WPA_GTK_MAX_LEN]; + size_t gtk_len; +}; + +#ifdef CONFIG_IEEE80211W +struct wpa_igtk { + u8 igtk[WPA_IGTK_MAX_LEN]; + size_t igtk_len; +}; +#endif /* CONFIG_IEEE80211W */ /* WPA IE version 1 * 00-50-f2:1 (OUI:OUI type) |