mirror/freebsd
1
0
Fork 0
mirror of https://git.FreeBSD.org/src.git synced 2025-01-19 15:33:56 +00:00
Code Issues Releases Activity

Loadable modules that run test vectors for net80211 crypto plugins.

Browse Source
This commit is contained in:
Sam Leffler 2004-12-08 17:45:53 +00:00
parent c81703e6a4
commit 2efe996b98
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=138578
6 changed files with 1493 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
tools/regression/net80211/ccmp/Makefile Normal file
View File

@ -0,0 +1,8 @@
# $FreeBSD$
.PATH: ${.CURDIR}/../../../../sys/net80211
KMOD= test_ccmp
SRCS+= test_ccmp.c
.include <bsd.kmod.mk>

748
tools/regression/net80211/ccmp/test_ccmp.c Normal file
View File

@ -0,0 +1,748 @@
/*-
* Copyright (c) 2004 Sam Leffler, Errno Consulting
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. The name of the author may not be used to endorse or promote products
* derived from this software without specific prior written permission.
*
* Alternatively, this software may be distributed under the terms of the
* GNU General Public License ("GPL") version 2 as published by the Free
* Software Foundation.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*
* $FreeBSD$
*/
/*
* CCMP test module.
*
* Test vectors come from section I.7.4 of P802.11i/D7.0, October 2003.
*
* To use this tester load the net80211 layer (either as a module or
* by statically configuring it into your kernel), then kldload this
* module. It should automatically run all test cases and print
* information for each. To run one or more tests you can specify a
* tests parameter to the module that is a bit mask of the set of tests
* you want; e.g. insmod ccmp_test tests=7 will run only test mpdu's
* 1, 2, and 3.
*/
#include <sys/param.h>
#include <sys/kernel.h>
#include <sys/systm.h>
#include <sys/mbuf.h>
#include <sys/module.h>
#include <sys/socket.h>
#include <net/if.h>
#include <net/if_media.h>
#include <net80211/ieee80211_var.h>
/*
==== CCMP test mpdu 1 ====
-- MPDU Fields
7 Version = 0
8 Type = 2 SubType = 0 Data
9 ToDS = 0 FromDS = 0
10 MoreFrag = 0 Retry = 1
11 PwrMgt = 0 moreData = 0
12 Encrypt = 1
13 Order = 0
14 Duration = 11459
15 A1 = 0f-d2-e1-28-a5-7c DA
16 A2 = 50-30-f1-84-44-08 SA
17 A3 = ab-ae-a5-b8-fc-ba BSSID
18 SC = 0x3380
19 seqNum = 824 (0x0338) fraqNum = 0 (0x00)
20 Algorithm = AES_CCM
21 Key ID = 0
22 TK = c9 7c 1f 67 ce 37 11 85 51 4a 8a 19 f2 bd d5 2f
23 PN = 199027030681356 (0xB5039776E70C)
24 802.11 Header = 08 48 c3 2c 0f d2 e1 28 a5 7c 50 30 f1 84 44 08
25 ab ae a5 b8 fc ba 80 33
26 Muted 802.11 Header = 08 40 0f d2 e1 28 a5 7c 50 30 f1 84 44 08
27 ab ae a5 b8 fc ba 00 00
28 CCMP Header = 0c e7 00 20 76 97 03 b5
29 CCM Nonce = 00 50 30 f1 84 44 08 b5 03 97 76 e7 0c
30 Plaintext Data = f8 ba 1a 55 d0 2f 85 ae 96 7b b6 2f b6 cd a8 eb
1 7e 78 a0 50
2 CCM MIC = 78 45 ce 0b 16 f9 76 23
3 -- Encrypted MPDU with FCS
4 08 48 c3 2c 0f d2 e1 28 a5 7c 50 30 f1 84 44 08 ab ae a5 b8 fc ba
5 80 33 0c e7 00 20 76 97 03 b5 f3 d0 a2 fe 9a 3d bf 23 42 a6 43 e4
6 32 46 e8 0c 3c 04 d0 19 78 45 ce 0b 16 f9 76 23 1d 99 f0 66
*/
static const u_int8_t test1_key[] = { /* TK */
0xc9, 0x7c, 0x1f, 0x67, 0xce, 0x37, 0x11, 0x85, 0x51, 0x4a, 0x8a,
0x19, 0xf2, 0xbd, 0xd5, 0x2f
};
static const u_int8_t test1_plaintext[] = { /* Plaintext MPDU w/o MIC */
0x08, 0x48, 0xc3, 0x2c, 0x0f, 0xd2, 0xe1, 0x28, /* 802.11 Header */
0xa5, 0x7c, 0x50, 0x30, 0xf1, 0x84, 0x44, 0x08,
0xab, 0xae, 0xa5, 0xb8, 0xfc, 0xba, 0x80, 0x33,
0xf8, 0xba, 0x1a, 0x55, 0xd0, 0x2f, 0x85, 0xae, /* Plaintext Data */
0x96, 0x7b, 0xb6, 0x2f, 0xb6, 0xcd, 0xa8, 0xeb,
0x7e, 0x78, 0xa0, 0x50,
};
static const u_int8_t test1_encrypted[] = { /* Encrypted MPDU with MIC */
0x08, 0x48, 0xc3, 0x2c, 0x0f, 0xd2, 0xe1, 0x28,
0xa5, 0x7c, 0x50, 0x30, 0xf1, 0x84, 0x44, 0x08,
0xab, 0xae, 0xa5, 0xb8, 0xfc, 0xba, 0x80, 0x33,
0x0c, 0xe7, 0x00, 0x20, 0x76, 0x97, 0x03, 0xb5,
0xf3, 0xd0, 0xa2, 0xfe, 0x9a, 0x3d, 0xbf, 0x23,
0x42, 0xa6, 0x43, 0xe4, 0x32, 0x46, 0xe8, 0x0c,
0x3c, 0x04, 0xd0, 0x19, 0x78, 0x45, 0xce, 0x0b,
0x16, 0xf9, 0x76, 0x23,
};
/*
==== CCMP test mpdu 2 ====
-- MPDU Fields
9 Version = 0
10 Type = 2 SubType = 3 Data+CF-Ack+CF-Poll
11 ToDS = 0 FromDS = 0
12 MoreFrag = 0 Retry = 0
13 PwrMgt = 0 moreData = 0
14 Encrypt = 1
15 Order = 1
16 Duration = 20842
17 A1 = ea-10-0c-84-68-50 DA
18 A2 = ee-c1-76-2c-88-de SA
19 A3 = af-2e-e9-f4-6a-07 BSSID
20 SC = 0xCCE0
21 seqNum = 3278 (0x0CCE) fraqNum = 0 (0x00)
22 Algorithm = AES_CCM
23 Key ID = 2
24 TK = 8f 7a 05 3f a5 77 a5 59 75 29 27 20 97 a6 03 d5
25 PN = 54923164817386 (0x31F3CBBA97EA)
26 802.11 Header = 38 c0 6a 51 ea 10 0c 84 68 50 ee c1 76 2c 88 de
27 af 2e e9 f4 6a 07 e0 cc
28 Muted 802.11 Header = 08 c0 ea 10 0c 84 68 50 ee c1 76 2c 88 de
29 af 2e e9 f4 6a 07 00 00
30 CCMP Header = ea 97 00 a0 ba cb f3 31
31 CCM Nonce = 00 ee c1 76 2c 88 de 31 f3 cb ba 97 ea
32 Plaintext Data = 83 a0 63 4b 5e d7 62 7e b9 df 22 5e 05 74 03 42
33 de 19 41 17
34 CCM MIC = 54 2f bf 8d a0 6a a4 ae
35 -- Encrypted MPDU with FCS
36 38 c0 6a 51 ea 10 0c 84 68 50 ee c1 76 2c 88 de af 2e e9 f4 6a 07
37 e0 cc ea 97 00 a0 ba cb f3 31 81 4b 69 65 d0 5b f2 b2 ed 38 d4 be
38 b0 69 fe 82 71 4a 61 0b 54 2f bf 8d a0 6a a4 ae 25 3c 47 38
*/
static const u_int8_t test2_key[] = { /* TK */
0x8f, 0x7a, 0x05, 0x3f, 0xa5, 0x77, 0xa5, 0x59, 0x75, 0x29, 0x27,
0x20, 0x97, 0xa6, 0x03, 0xd5
};
static const u_int8_t test2_plaintext[] = { /* Plaintext MPDU w/o MIC */
0x38, 0xc0, 0x6a, 0x51, 0xea, 0x10, 0x0c, 0x84, 0x68, 0x50, 0xee,
0xc1, 0x76, 0x2c, 0x88, 0xde, 0xaf, 0x2e, 0xe9, 0xf4, 0x6a, 0x07,
0xe0, 0xcc,
0x83, 0xa0, 0x63, 0x4b, 0x5e, 0xd7, 0x62, 0x7e, 0xb9, 0xdf, 0x22,
0x5e, 0x05, 0x74, 0x03, 0x42, 0xde, 0x19, 0x41, 0x17
};
static const u_int8_t test2_encrypted[] = { /* Encrypted MPDU with MIC */
0x38, 0xc0, 0x6a, 0x51, 0xea, 0x10, 0x0c, 0x84, 0x68, 0x50, 0xee,
0xc1, 0x76, 0x2c, 0x88, 0xde, 0xaf, 0x2e, 0xe9, 0xf4, 0x6a, 0x07,
0xe0, 0xcc, 0xea, 0x97, 0x00, 0xa0, 0xba, 0xcb, 0xf3, 0x31, 0x81,
0x4b, 0x69, 0x65, 0xd0, 0x5b, 0xf2, 0xb2, 0xed, 0x38, 0xd4, 0xbe,
0xb0, 0x69, 0xfe, 0x82, 0x71, 0x4a, 0x61, 0x0b, 0x54, 0x2f, 0xbf,
0x8d, 0xa0, 0x6a, 0xa4, 0xae,
};
/*
==== CCMP test mpdu 3 ====
-- MPDU Fields
41 Version = 0
42 Type = 2 SubType = 11
43 ToDS = 0 FromDS = 0
44 MoreFrag = 0 Retry = 1
45 PwrMgt = 0 moreData = 0
46 Encrypt = 1
47 Order = 1
48 Duration = 25052
49 A1 = d9-57-7d-f7-63-c8 DA
50 A2 = b6-a8-8a-df-36-91 SA
1 A3 = dc-4a-8b-ca-94-dd BSSID
2 SC = 0x8260
3 seqNum = 2086 (0x0826) fraqNum = 0 (0x00)
4 QC = 0x0000
5 MSDU Priority = 0 (0x0)
6 Algorithm = AES_CCM
7 Key ID = 2
8 TK = 40 cf b7 a6 2e 88 01 3b d6 d3 af fc c1 91 04 1e
9 PN = 52624639632814 (0x2FDCA0F3A5AE)
10 802.11 Header = b8 c8 dc 61 d9 57 7d f7 63 c8 b6 a8 8a df 36 91
11 dc 4a 8b ca 94 dd 60 82 20 85
12 Muted 802.11 Header = 88 c0 d9 57 7d f7 63 c8 b6 a8 8a df 36 91
13 dc 4a 8b ca 94 dd 00 00 00 00
14 CCMP Header = ae a5 00 a0 f3 a0 dc 2f
15 CCM Nonce = 00 b6 a8 8a df 36 91 2f dc a0 f3 a5 ae
16 Plaintext Data = 2c 1b d0 36 83 1c 95 49 6c 5f 4d bf 3d 55 9e 72
17 de 80 2a 18
18 CCM MIC = fd 1f 1f 61 a9 fb 4b b3
19 -- Encrypted MPDU with FCS
20 b8 c8 dc 61 d9 57 7d f7 63 c8 b6 a8 8a df 36 91 dc 4a 8b ca 94 dd
21 60 82 20 85 ae a5 00 a0 f3 a0 dc 2f 89 d8 58 03 40 b6 26 a0 b6 d4
22 d0 13 bf 18 f2 91 b8 96 46 c8 fd 1f 1f 61 a9 fb 4b b3 60 3f 5a ad
*/
static const u_int8_t test3_key[] = { /* TK */
0x40, 0xcf, 0xb7, 0xa6, 0x2e, 0x88, 0x01, 0x3b, 0xd6, 0xd3,
0xaf, 0xfc, 0xc1, 0x91, 0x04, 0x1e
};
static const u_int8_t test3_plaintext[] = { /* Plaintext MPDU w/o MIC */
0xb8, 0xc8, 0xdc, 0x61, 0xd9, 0x57, 0x7d, 0xf7, 0x63, 0xc8,
0xb6, 0xa8, 0x8a, 0xdf, 0x36, 0x91, 0xdc, 0x4a, 0x8b, 0xca,
0x94, 0xdd, 0x60, 0x82, 0x20, 0x85,
0x2c, 0x1b, 0xd0, 0x36, 0x83, 0x1c, 0x95, 0x49, 0x6c, 0x5f,
0x4d, 0xbf, 0x3d, 0x55, 0x9e, 0x72, 0xde, 0x80, 0x2a, 0x18
};
static const u_int8_t test3_encrypted[] = { /* Encrypted MPDU with MIC */
0xb8, 0xc8, 0xdc, 0x61, 0xd9, 0x57, 0x7d, 0xf7, 0x63, 0xc8,
0xb6, 0xa8, 0x8a, 0xdf, 0x36, 0x91, 0xdc, 0x4a, 0x8b, 0xca,
0x94, 0xdd, 0x60, 0x82, 0x20, 0x85, 0xae, 0xa5, 0x00, 0xa0,
0xf3, 0xa0, 0xdc, 0x2f, 0x89, 0xd8, 0x58, 0x03, 0x40, 0xb6,
0x26, 0xa0, 0xb6, 0xd4, 0xd0, 0x13, 0xbf, 0x18, 0xf2, 0x91,
0xb8, 0x96, 0x46, 0xc8, 0xfd, 0x1f, 0x1f, 0x61, 0xa9, 0xfb,
0x4b, 0xb3,
};
/*
==== CCMP test mpdu 4 ====
-- MPDU Fields
25 Version = 0
26 Type = 2 SubType = 10
27 ToDS = 0 FromDS = 1
28 MoreFrag = 0 Retry = 1
29 PwrMgt = 0 moreData = 0
30 Encrypt = 1
31 Order = 1
32 Duration = 4410
33 A1 = 71-2a-9d-df-11-db DA
34 A2 = 8e-f8-22-73-47-01 BSSID
35 A3 = 59-14-0d-d6-46-a2 SA
36 SC = 0x2FC0
37 seqNum = 764 (0x02FC) fraqNum = 0 (0x00)
38 QC = 0x0007
39 MSDU Priority = 7 (0x0)
40 Algorithm = AES_CCM
41 Key ID = 0
42 TK = 8c 89 a2 eb c9 6c 76 02 70 7f cf 24 b3 2d 38 33
43 PN = 270963670912995 (0xF670A55A0FE3)
44 802.11 Header = a8 ca 3a 11 71 2a 9d df 11 db 8e f8 22 73 47 01
45 59 14 0d d6 46 a2 c0 2f 67 a5
46 Muted 802.11 Header = 88 c2 71 2a 9d df 11 db 8e f8 22 73 47 01
47 59 14 0d d6 46 a2 00 00 07 00
48 CCMP Header = e3 0f 00 20 5a a5 70 f6
49 CCM Nonce = 07 8e f8 22 73 47 01 f6 70 a5 5a 0f e3
50 Plaintext Data = 4f ad 2b 1c 29 0f a5 eb d8 72 fb c3 f3 a0 74 89
51 8f 8b 2f bb
52 CCM MIC = 31 fc 88 00 4f 35 ee 3d
-- Encrypted MPDU with FCS
2 a8 ca 3a 11 71 2a 9d df 11 db 8e f8 22 73 47 01 59 14 0d d6 46 a2
3 c0 2f 67 a5 e3 0f 00 20 5a a5 70 f6 9d 59 b1 5f 37 14 48 c2 30 f4
4 d7 39 05 2e 13 ab 3b 1a 7b 10 31 fc 88 00 4f 35 ee 3d 45 a7 4a 30
*/
static const u_int8_t test4_key[] = { /* TK */
0x8c, 0x89, 0xa2, 0xeb, 0xc9, 0x6c, 0x76, 0x02,
0x70, 0x7f, 0xcf, 0x24, 0xb3, 0x2d, 0x38, 0x33,
};
static const u_int8_t test4_plaintext[] = { /* Plaintext MPDU w/o MIC */
0xa8, 0xca, 0x3a, 0x11, 0x71, 0x2a, 0x9d, 0xdf, 0x11, 0xdb,
0x8e, 0xf8, 0x22, 0x73, 0x47, 0x01, 0x59, 0x14, 0x0d, 0xd6,
0x46, 0xa2, 0xc0, 0x2f, 0x67, 0xa5,
0x4f, 0xad, 0x2b, 0x1c, 0x29, 0x0f, 0xa5, 0xeb, 0xd8, 0x72,
0xfb, 0xc3, 0xf3, 0xa0, 0x74, 0x89, 0x8f, 0x8b, 0x2f, 0xbb,
};
static const u_int8_t test4_encrypted[] = { /* Encrypted MPDU with MIC */
0xa8, 0xca, 0x3a, 0x11, 0x71, 0x2a, 0x9d, 0xdf, 0x11, 0xdb,
0x8e, 0xf8, 0x22, 0x73, 0x47, 0x01, 0x59, 0x14, 0x0d, 0xd6,
0x46, 0xa2, 0xc0, 0x2f, 0x67, 0xa5, 0xe3, 0x0f, 0x00, 0x20,
0x5a, 0xa5, 0x70, 0xf6, 0x9d, 0x59, 0xb1, 0x5f, 0x37, 0x14,
0x48, 0xc2, 0x30, 0xf4, 0xd7, 0x39, 0x05, 0x2e, 0x13, 0xab,
0x3b, 0x1a, 0x7b, 0x10, 0x31, 0xfc, 0x88, 0x00, 0x4f, 0x35,
0xee, 0x3d,
};
/*
==== CCMP test mpdu 5 ====
-- MPDU Fields
7 Version = 0
8 Type = 2 SubType = 8
9 ToDS = 0 FromDS = 1
10 MoreFrag = 0 Retry = 1
11 PwrMgt = 1 moreData = 0
12 Encrypt = 1
13 Order = 1
14 Duration = 16664
15 A1 = 45-de-c6-9a-74-80 DA
16 A2 = f3-51-94-6b-c9-6b BSSID
17 A3 = e2-76-fb-e6-c1-27 SA
18 SC = 0xF280
19 seqNum = 3880 (0x0F28) fraqNum = 0 (0x00)
20 QC = 0x000b
21 MSDU Priority = 0 (0x0)
22 Algorithm = AES_CCM
23 Key ID = 2
24 TK = a5 74 d5 14 3b b2 5e fd de ff 30 12 2f df d0 66
25 PN = 184717420531255 (0xA7FFE03C0E37)
26 802.11 Header = 88 da 18 41 45 de c6 9a 74 80 f3 51 94 6b c9 6b
27 e2 76 fb e6 c1 27 80 f2 4b 19
28 Muted 802.11 Header = 88 c2 45 de c6 9a 74 80 f3 51 94 6b c9 6b
29 e2 76 fb e6 c1 27 00 00 0b 00
30 CCMP Header = 37 0e 00 a0 3c e0 ff a7
31 CCM Nonce = 0b f3 51 94 6b c9 6b a7 ff e0 3c 0e 37
32 Plaintext Data = 28 96 9b 95 4f 26 3a 80 18 a9 ef 70 a8 b0 51 46
33 24 81 92 2e
34 CCM MIC = ce 0c 3b e1 97 d3 05 eb
35 -- Encrypted MPDU with FCS
36 88 da 18 41 45 de c6 9a 74 80 f3 51 94 6b c9 6b e2 76 fb e6 c1 27
37 80 f2 4b 19 37 0e 00 a0 3c e0 ff a7 eb 4a e4 95 6a 80 1d a9 62 4b
38 7e 0c 18 b2 3e 61 5e c0 3a f6 ce 0c 3b e1 97 d3 05 eb c8 9e a1 b5
*/
static const u_int8_t test5_key[] = { /* TK */
0xa5, 0x74, 0xd5, 0x14, 0x3b, 0xb2, 0x5e, 0xfd,
0xde, 0xff, 0x30, 0x12, 0x2f, 0xdf, 0xd0, 0x66,
};
static const u_int8_t test5_plaintext[] = { /* Plaintext MPDU w/o MIC */
0x88, 0xda, 0x18, 0x41, 0x45, 0xde, 0xc6, 0x9a, 0x74, 0x80,
0xf3, 0x51, 0x94, 0x6b, 0xc9, 0x6b, 0xe2, 0x76, 0xfb, 0xe6,
0xc1, 0x27, 0x80, 0xf2, 0x4b, 0x19,
0x28, 0x96, 0x9b, 0x95, 0x4f, 0x26, 0x3a, 0x80, 0x18, 0xa9,
0xef, 0x70, 0xa8, 0xb0, 0x51, 0x46, 0x24, 0x81, 0x92, 0x2e,
};
static const u_int8_t test5_encrypted[] = { /* Encrypted MPDU with MIC */
0x88, 0xda, 0x18, 0x41, 0x45, 0xde, 0xc6, 0x9a, 0x74, 0x80,
0xf3, 0x51, 0x94, 0x6b, 0xc9, 0x6b, 0xe2, 0x76, 0xfb, 0xe6,
0xc1, 0x27, 0x80, 0xf2, 0x4b, 0x19, 0x37, 0x0e, 0x00, 0xa0,
0x3c, 0xe0, 0xff, 0xa7, 0xeb, 0x4a, 0xe4, 0x95, 0x6a, 0x80,
0x1d, 0xa9, 0x62, 0x4b, 0x7e, 0x0c, 0x18, 0xb2, 0x3e, 0x61,
0x5e, 0xc0, 0x3a, 0xf6, 0xce, 0x0c, 0x3b, 0xe1, 0x97, 0xd3,
0x05, 0xeb,
};
/*
==== CCMP test mpdu 6 ====
-- MPDU Fields
41 Version = 0
42 Type = 2 SubType = 8
43 ToDS = 0 FromDS = 1
44 MoreFrag = 0 Retry = 0
45 PwrMgt = 1 moreData = 0
46 Encrypt = 1
47 Order = 0
48 Duration = 8161
49 A1 = 5a-f2-84-30-fd-ab DA
50 A2 = bf-f9-43-b9-f9-a6 BSSID
1 A3 = ab-1d-98-c7-fe-73 SA
2 SC = 0x7150
3 seqNum = 1813 (0x0715) fraqNum = 0 (0x00)
4 QC = 0x000d
5 PSDU Priority = 13 (0xd)
6 Algorithm = AES_CCM
7 Key ID = 1
8 TK = f7 1e ea 4e 1f 58 80 4b 97 17 23 0a d0 61 46 41
9 PN = 118205765159305 (0x6B81ECA48989)
10 802.11 Header = 88 52 e1 1f 5a f2 84 30 fd ab bf f9 43 b9 f9 a6
11 ab 1d 98 c7 fe 73 50 71 3d 6a
12 Muted 802.11 Header = 88 42 5a f2 84 30 fd ab bf f9 43 b9 f9 a6
13 ab 1d 98 c7 fe 73 00 00 0d 00
14 CCMP Header = 89 89 00 60 a4 ec 81 6b
15 CCM Nonce = 0d bf f9 43 b9 f9 a6 6b 81 ec a4 89 89
16 Plaintext Data = ab fd a2 2d 3a 0b fc 9c c1 fc 07 93 63 c2 fc a1
17 43 e6 eb 1d
18 CCM MIC = 30 9a 8d 5c 46 6b bb 71
19 -- Encrypted MPDU with FCS
20 88 52 e1 1f 5a f2 84 30 fd ab bf f9 43 b9 f9 a6 ab 1d 98 c7 fe 73
21 50 71 3d 6a 89 89 00 60 a4 ec 81 6b 9a 70 9b 60 a3 9d 40 b1 df b6
22 12 e1 8b 5f 11 4b ad b6 cc 86 30 9a 8d 5c 46 6b bb 71 86 c0 4e 97
*/
static const u_int8_t test6_key[] = { /* TK */
0xf7, 0x1e, 0xea, 0x4e, 0x1f, 0x58, 0x80, 0x4b,
0x97, 0x17, 0x23, 0x0a, 0xd0, 0x61, 0x46, 0x41,
};
static const u_int8_t test6_plaintext[] = { /* Plaintext MPDU w/o MIC */
0x88, 0x52, 0xe1, 0x1f, 0x5a, 0xf2, 0x84, 0x30, 0xfd, 0xab,
0xbf, 0xf9, 0x43, 0xb9, 0xf9, 0xa6, 0xab, 0x1d, 0x98, 0xc7,
0xfe, 0x73, 0x50, 0x71, 0x3d, 0x6a,
0xab, 0xfd, 0xa2, 0x2d, 0x3a, 0x0b, 0xfc, 0x9c, 0xc1, 0xfc,
0x07, 0x93, 0x63, 0xc2, 0xfc, 0xa1, 0x43, 0xe6, 0xeb, 0x1d,
};
static const u_int8_t test6_encrypted[] = { /* Encrypted MPDU with MIC */
0x88, 0x52, 0xe1, 0x1f, 0x5a, 0xf2, 0x84, 0x30, 0xfd, 0xab,
0xbf, 0xf9, 0x43, 0xb9, 0xf9, 0xa6, 0xab, 0x1d, 0x98, 0xc7,
0xfe, 0x73, 0x50, 0x71, 0x3d, 0x6a, 0x89, 0x89, 0x00, 0x60,
0xa4, 0xec, 0x81, 0x6b, 0x9a, 0x70, 0x9b, 0x60, 0xa3, 0x9d,
0x40, 0xb1, 0xdf, 0xb6, 0x12, 0xe1, 0x8b, 0x5f, 0x11, 0x4b,
0xad, 0xb6, 0xcc, 0x86, 0x30, 0x9a, 0x8d, 0x5c, 0x46, 0x6b,
0xbb, 0x71,
};
/*
==== CCMP test mpdu 7 ====
-- MPDU Fields
25 Version = 0
26 Type = 2 SubType = 1 Data+CF-Ack
27 ToDS = 1 FromDS = 0
28 MoreFrag = 0 Retry = 1
29 PwrMgt = 1 moreData = 1
30 Encrypt = 1
31 Order = 0
32 Duration = 18049
33 A1 = 9b-50-f4-fd-56-f6 BSSID
34 A2 = ef-ec-95-20-16-91 SA
35 A3 = 83-57-0c-4c-cd-ee DA
36 SC = 0xA020
37 seqNum = 2562 (0x0A02) fraqNum = 0 (0x00)
38 Algorithm = AES_CCM
39 Key ID = 3
40 TK = 1b db 34 98 0e 03 81 24 a1 db 1a 89 2b ec 36 6a
41 PN = 104368786630435 (0x5EEC4073E723)
42 Header = 18 79 81 46 9b 50 f4 fd 56 f6 ef ec 95 20 16 91 83 57
43 0c 4c cd ee 20 a0
44 Muted MAC Header = 08 41 9b 50 f4 fd 56 f6 ef ec 95 20 16 91
45 83 57 0c 4c cd ee 00 00
46 CCMP Header = 23 e7 00 e0 73 40 ec 5e
47 CCM Nonce = 00 ef ec 95 20 16 91 5e ec 40 73 e7 23
48 Plaintext Data = 98 be ca 86 f4 b3 8d a2 0c fd f2 47 24 c5 8e b8
49 35 66 53 39
50 CCM MIC = 2d 09 57 ec fa be 95 b9
-- Encrypted MPDU with FCS
1 18 79 81 46 9b 50 f4 fd 56 f6 ef ec 95 20 16 91 83 57 0c 4c cd ee
2 20 a0 23 e7 00 e0 73 40 ec 5e 12 c5 37 eb f3 ab 58 4e f1 fe f9 a1
3 f3 54 7a 8c 13 b3 22 5a 2d 09 57 ec fa be 95 b9 aa fa 0c c8
*/
static const u_int8_t test7_key[] = { /* TK */
0x1b, 0xdb, 0x34, 0x98, 0x0e, 0x03, 0x81, 0x24,
0xa1, 0xdb, 0x1a, 0x89, 0x2b, 0xec, 0x36, 0x6a,
};
static const u_int8_t test7_plaintext[] = { /* Plaintext MPDU w/o MIC */
0x18, 0x79, 0x81, 0x46, 0x9b, 0x50, 0xf4, 0xfd, 0x56, 0xf6,
0xef, 0xec, 0x95, 0x20, 0x16, 0x91, 0x83, 0x57, 0x0c, 0x4c,
0xcd, 0xee, 0x20, 0xa0,
0x98, 0xbe, 0xca, 0x86, 0xf4, 0xb3, 0x8d, 0xa2, 0x0c, 0xfd,
0xf2, 0x47, 0x24, 0xc5, 0x8e, 0xb8, 0x35, 0x66, 0x53, 0x39,
};
static const u_int8_t test7_encrypted[] = { /* Encrypted MPDU with MIC */
0x18, 0x79, 0x81, 0x46, 0x9b, 0x50, 0xf4, 0xfd, 0x56, 0xf6,
0xef, 0xec, 0x95, 0x20, 0x16, 0x91, 0x83, 0x57, 0x0c, 0x4c,
0xcd, 0xee, 0x20, 0xa0, 0x23, 0xe7, 0x00, 0xe0, 0x73, 0x40,
0xec, 0x5e, 0x12, 0xc5, 0x37, 0xeb, 0xf3, 0xab, 0x58, 0x4e,
0xf1, 0xfe, 0xf9, 0xa1, 0xf3, 0x54, 0x7a, 0x8c, 0x13, 0xb3,
0x22, 0x5a, 0x2d, 0x09, 0x57, 0xec, 0xfa, 0xbe, 0x95, 0xb9,
};
/*
==== CCMP test mpdu 8 ====
-- MPDU Fields
6 Version = 0
7 Type = 2 SubType = 11
8 ToDS = 1 FromDS = 0
9 MoreFrag = 0 Retry = 1
10 PwrMgt = 1 moreData = 0
11 Encrypt = 1
12 Order = 1
13 Duration = 29260
14 A1 = 55-2d-5f-72-bb-70 BSSID
15 A2 = ca-3f-3a-ae-60-c4 SA
16 A3 = 8b-a9-b5-f8-2c-2f DA
17 SC = 0xEB50
18 seqNum = 3765 (0x0EB5) fraqNum = 0 (0x00)
19 QC = 0x000a
20 MSDU Priority = 10 (0xa)
21 Algorithm = AES_CCM
22 Key ID = 2
23 TK = 6e ac 1b f5 4b d5 4e db 23 21 75 43 03 02 4c 71
24 PN = 227588596223197 (0xCEFD996ECCDD)
25 802.11 Header = b8 d9 4c 72 55 2d 5f 72 bb 70 ca 3f 3a ae 60 c4
26 8b a9 b5 f8 2c 2f 50 eb 2a 55
27 Muted 802.11 Header = 88 c1 55 2d 5f 72 bb 70 ca 3f 3a ae 60 c4
28 8b a9 b5 f8 2c 2f 00 00 0a 00
29 CCMP Header = dd cc 00 a0 6e 99 fd ce
30 CCM Nonce = 0a ca 3f 3a ae 60 c4 ce fd 99 6e cc dd
31 Plaintext Data = 57 cb 5c 0e 5f cd 88 5e 9a 42 39 e9 b9 ca d6 0d
32 64 37 59 79
33 CCM MIC = 6d ba 8e f7 f0 80 87 dd
-- Encrypted MPDU with FCS
35 b8 d9 4c 72 55 2d 5f 72 bb 70 ca 3f 3a ae 60 c4 8b a9 b5 f8 2c 2f
36 50 eb 2a 55 dd cc 00 a0 6e 99 fd ce 4b f2 81 ef 8e c7 73 9f 91 59
37 1b 97 a8 7d c1 4b 3f a1 74 62 6d ba 8e f7 f0 80 87 dd 0c 65 74 3f
*/
static const u_int8_t test8_key[] = { /* TK */
0x6e, 0xac, 0x1b, 0xf5, 0x4b, 0xd5, 0x4e, 0xdb,
0x23, 0x21, 0x75, 0x43, 0x03, 0x02, 0x4c, 0x71,
};
static const u_int8_t test8_plaintext[] = { /* Plaintext MPDU w/o MIC */
0xb8, 0xd9, 0x4c, 0x72, 0x55, 0x2d, 0x5f, 0x72, 0xbb, 0x70,
0xca, 0x3f, 0x3a, 0xae, 0x60, 0xc4, 0x8b, 0xa9, 0xb5, 0xf8,
0x2c, 0x2f, 0x50, 0xeb, 0x2a, 0x55,
0x57, 0xcb, 0x5c, 0x0e, 0x5f, 0xcd, 0x88, 0x5e, 0x9a, 0x42,
0x39, 0xe9, 0xb9, 0xca, 0xd6, 0x0d, 0x64, 0x37, 0x59, 0x79,
};
static const u_int8_t test8_encrypted[] = { /* Encrypted MPDU with MIC */
0xb8, 0xd9, 0x4c, 0x72, 0x55, 0x2d, 0x5f, 0x72, 0xbb, 0x70,
0xca, 0x3f, 0x3a, 0xae, 0x60, 0xc4, 0x8b, 0xa9, 0xb5, 0xf8,
0x2c, 0x2f, 0x50, 0xeb, 0x2a, 0x55, 0xdd, 0xcc, 0x00, 0xa0,
0x6e, 0x99, 0xfd, 0xce, 0x4b, 0xf2, 0x81, 0xef, 0x8e, 0xc7,
0x73, 0x9f, 0x91, 0x59, 0x1b, 0x97, 0xa8, 0x7d, 0xc1, 0x4b,
0x3f, 0xa1, 0x74, 0x62, 0x6d, 0xba, 0x8e, 0xf7, 0xf0, 0x80,
0x87, 0xdd,
};
#define TEST(n,name,cipher,keyix,pn) { \
name, IEEE80211_CIPHER_##cipher,keyix, pn##LL, \
test##n##_key, sizeof(test##n##_key), \
test##n##_plaintext, sizeof(test##n##_plaintext), \
test##n##_encrypted, sizeof(test##n##_encrypted) \
}
struct ciphertest {
const char *name;
int cipher;
int keyix;
u_int64_t pn;
const u_int8_t *key;
size_t key_len;
const u_int8_t *plaintext;
size_t plaintext_len;
const u_int8_t *encrypted;
size_t encrypted_len;
} ccmptests[] = {
TEST(1, "CCMP test mpdu 1", AES_CCM, 0, 199027030681356),
TEST(2, "CCMP test mpdu 2", AES_CCM, 2, 54923164817386),
TEST(3, "CCMP test mpdu 3", AES_CCM, 2, 52624639632814),
TEST(4, "CCMP test mpdu 4", AES_CCM, 0, 270963670912995),
TEST(5, "CCMP test mpdu 5", AES_CCM, 2, 184717420531255),
TEST(6, "CCMP test mpdu 6", AES_CCM, 1, 118205765159305),
TEST(7, "CCMP test mpdu 7", AES_CCM, 3, 104368786630435),
TEST(8, "CCMP test mpdu 8", AES_CCM, 2, 227588596223197),
};
static void
dumpdata(const char *tag, const void *p, size_t len)
{
int i;
printf("%s: 0x%p len %u", tag, p, len);
for (i = 0; i < len; i++) {
if ((i % 16) == 0)
printf("\n%03d:", i);
printf(" %02x", ((const u_int8_t *)p)[i]);
}
printf("\n");
}
static void
cmpfail(const void *gen, size_t genlen, const void *ref, size_t reflen)
{
int i;
for (i = 0; i < genlen; i++)
if (((const u_int8_t *)gen)[i] != ((const u_int8_t *)ref)[i]) {
printf("first difference at byte %u\n", i);
break;
}
dumpdata("Generated", gen, genlen);
dumpdata("Reference", ref, reflen);
}
static void
printtest(const struct ciphertest *t)
{
printf("keyix %u pn %llu key_len %u plaintext_len %u\n"
, t->keyix
, t->pn
, t->key_len
, t->plaintext_len
);
}
static int
runtest(struct ieee80211com *ic, struct ciphertest *t)
{
struct ieee80211_key key;
struct mbuf *m = NULL;
const struct ieee80211_cipher *cip;
u_int8_t mac[IEEE80211_ADDR_LEN];
printf("%s: ", t->name);
/*
* Setup key.
*/
memset(&key, 0, sizeof(key));
key.wk_flags = IEEE80211_KEY_XMIT | IEEE80211_KEY_RECV;
key.wk_cipher = &ieee80211_cipher_none;
if (!ieee80211_crypto_newkey(ic, t->cipher, &key)) {
printf("FAIL: ieee80211_crypto_newkey failed\n");
goto bad;
}
memcpy(key.wk_key, t->key, t->key_len);
key.wk_keylen = t->key_len;
key.wk_keyrsc = 0;
key.wk_keytsc = t->pn-1; /* PN-1 since we do encap */
if (!ieee80211_crypto_setkey(ic, &key, mac)) {
printf("FAIL: ieee80211_crypto_setkey failed\n");
goto bad;
}
/*
* Craft frame from plaintext data.
*/
cip = key.wk_cipher;
m = m_getcl(M_NOWAIT, MT_HEADER, M_PKTHDR);
m->m_data += cip->ic_header;
memcpy(mtod(m, void *), t->plaintext, t->plaintext_len);
m->m_len = t->plaintext_len;
m->m_pkthdr.len = m->m_len;
/*
* Encrypt frame w/ MIC.
*/
if (!cip->ic_encap(&key, m, t->keyix<<6)) {
printtest(t);
printf("FAIL: ccmp encap failed\n");
goto bad;
}
/*
* Verify: frame length, frame contents.
*/
if (m->m_pkthdr.len != t->encrypted_len) {
printf("FAIL: encap data length mismatch\n");
printtest(t);
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->encrypted, t->encrypted_len);
goto bad;
} else if (memcmp(mtod(m, const void *), t->encrypted, t->encrypted_len)) {
printf("FAIL: encrypt data does not compare\n");
printtest(t);
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->encrypted, t->encrypted_len);
dumpdata("Plaintext", t->plaintext, t->plaintext_len);
goto bad;
}
/*
* Decrypt frame; strip MIC.
*/
if (!cip->ic_decap(&key, m)) {
printf("FAIL: ccmp decap failed\n");
printtest(t);
cmpfail(mtod(m, const void *), m->m_len,
t->plaintext, t->plaintext_len);
goto bad;
}
/*
* Verify: frame length, frame contents.
*/
if (m->m_pkthdr.len != t->plaintext_len) {
printf("FAIL: decap botch; length mismatch\n");
printtest(t);
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
goto bad;
} else if (memcmp(mtod(m, const void *), t->plaintext, t->plaintext_len)) {
printf("FAIL: decap botch; data does not compare\n");
printtest(t);
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, sizeof(t->plaintext));
goto bad;
}
m_freem(m);
ieee80211_crypto_delkey(ic, &key);
printf("PASS\n");
return 1;
bad:
if (m != NULL)
m_freem(m);
ieee80211_crypto_delkey(ic, &key);
return 0;
}
/*
* Module glue.
*/
static int tests = -1;
static int debug = 0;
static int
init_crypto_ccmp_test(void)
{
#define N(a) (sizeof(a)/sizeof(a[0]))
struct ieee80211com ic;
int i, pass, total;
memset(&ic, 0, sizeof(ic));
if (debug)
ic.ic_debug = IEEE80211_MSG_CRYPTO;
ieee80211_crypto_attach(&ic);
pass = 0;
total = 0;
for (i = 0; i < N(ccmptests); i++)
if (tests & (1<<i)) {
total++;
pass += runtest(&ic, &ccmptests[i]);
}
printf("%u of %u 802.11i AES-CCMP test vectors passed\n", pass, total);
ieee80211_crypto_detach(&ic);
return (pass == total ? 0 : -1);
#undef N
}
static int
test_ccmp_modevent(module_t mod, int type, void *unused)
{
switch (type) {
case MOD_LOAD:
(void) init_crypto_ccmp_test();
return 0;
case MOD_UNLOAD:
return 0;
}
return EINVAL;
}
static moduledata_t test_ccmp_mod = {
"test_ccmp",
test_ccmp_modevent,
0
};
DECLARE_MODULE(test_ccmp, test_ccmp_mod, SI_SUB_DRIVERS, SI_ORDER_FIRST);
MODULE_VERSION(test_ccmp, 1);
MODULE_DEPEND(test_ccmp, wlan, 1, 1, 1);

8
tools/regression/net80211/tkip/Makefile Normal file
View File

@ -0,0 +1,8 @@
# $FreeBSD$
.PATH: ${.CURDIR}/../../../../sys/net80211
KMOD= test_tkip
SRCS+= test_tkip.c
.include <bsd.kmod.mk>

387
tools/regression/net80211/tkip/test_tkip.c Normal file
View File

@ -0,0 +1,387 @@
/*-
* Copyright (c) 2004 Sam Leffler, Errno Consulting
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. The name of the author may not be used to endorse or promote products
* derived from this software without specific prior written permission.
*
* Alternatively, this software may be distributed under the terms of the
* GNU General Public License ("GPL") version 2 as published by the Free
* Software Foundation.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*
* $FreeBSD$
*/
/*
* TKIP test module.
*/
#include <sys/param.h>
#include <sys/kernel.h>
#include <sys/systm.h>
#include <sys/mbuf.h>
#include <sys/module.h>
#include <sys/socket.h>
#include <net/if.h>
#include <net/if_media.h>
#include <net80211/ieee80211_var.h>
/*
Key 12 34 56 78 90 12 34 56 78 90 12 34 56 78 90 12
34 56 78 90 12 34 56 78 90 12 34 56 78 90 12 34
PN 0x000000000001
IV 00 20 01 20 00 00 00 00
Phase1 bb 58 07 1f 9e 93 b4 38 25 4b
Phase2 00 20 01 4c fe 67 be d2 7c 86 7b 1b f8 02 8b 1c
*/
static const u_int8_t test1_key[] = {
0x12, 0x34, 0x56, 0x78, 0x90, 0x12, 0x34, 0x56, 0x78, 0x90, 0x12,
0x34, 0x56, 0x78, 0x90, 0x12,
0x34, 0x56, 0x78, 0x90, 0x12, 0x34, 0x56, 0x78, /* TX MIC */
/*
* NB: 11i test vector specifies a RX MIC key different
* from the TX key. But this doesn't work to enmic,
* encrypt, then decrypt, demic. So instead we use
* the same key for doing the MIC in each direction.
*
* XXX need additional vectors to test alternate MIC keys
*/
#if 0
0x90, 0x12, 0x34, 0x56, 0x78, 0x90, 0x12, 0x34, /* 11i RX MIC */
#else
0x34, 0x56, 0x78, 0x90, 0x12, 0x34, 0x56, 0x78, /* TX copy */
#endif
};
static const u_int8_t test1_phase1[] = {
0xbb, 0x58, 0x07, 0x1f, 0x9e, 0x93, 0xb4, 0x38, 0x25, 0x4b
};
static const u_int8_t test1_phase2[] = {
0x00, 0x20, 0x01, 0x4c, 0xfe, 0x67, 0xbe, 0xd2, 0x7c, 0x86,
0x7b, 0x1b, 0xf8, 0x02, 0x8b, 0x1c,
};
/* Plaintext MPDU with MIC */
static const u_int8_t test1_plaintext[] = {
0x08,0x42,0x2c,0x00,0x02,0x03,0x04,0x05,0x06,0x08,0x02,0x03,0x04,0x05,0x06,0x07,
0x02,0x03,0x04,0x05,0x06,0x07,0xd0,0x02,
0xaa,0xaa,0x03,0x00,0x00,0x00,0x08,0x00,0x45,0x00,0x00,0x54,0x00,0x00,0x40,0x00,
0x40,0x01,0xa5,0x55,0xc0,0xa8,0x0a,0x02,0xc0,0xa8,0x0a,0x01,0x08,0x00,0x3a,0xb0,
0x00,0x00,0x00,0x00,0xcd,0x4c,0x05,0x00,0x00,0x00,0x00,0x00,0x08,0x09,0x0a,0x0b,
0x0c,0x0d,0x0e,0x0f,0x10,0x11,0x12,0x13,0x14,0x15,0x16,0x17,0x18,0x19,0x1a,0x1b,
0x1c,0x1d,0x1e,0x1f,0x20,0x21,0x22,0x23,0x24,0x25,0x26,0x27,0x28,0x29,0x2a,0x2b,
0x2c,0x2d,0x2e,0x2f,0x30,0x31,0x32,0x33,0x34,0x35,0x36,0x37,
/* MIC */ 0x68,0x81,0xa3,0xf3,0xd6,0x48,0xd0,0x3c
};
/* Encrypted MPDU with MIC and ICV */
static const u_int8_t test1_encrypted[] = {
0x08,0x42,0x2c,0x00,0x02,0x03,0x04,0x05,0x06,0x08,0x02,0x03,0x04,0x05,0x06,0x07,
0x02,0x03,0x04,0x05,0x06,0x07,0xd0,0x02,0x00,0x20,0x01,0x20,0x00,0x00,0x00,0x00,
0xc0,0x0e,0x14,0xfc,0xe7,0xcf,0xab,0xc7,0x75,0x47,0xe6,0x66,0xe5,0x7c,0x0d,0xac,
0x70,0x4a,0x1e,0x35,0x8a,0x88,0xc1,0x1c,0x8e,0x2e,0x28,0x2e,0x38,0x01,0x02,0x7a,
0x46,0x56,0x05,0x5e,0xe9,0x3e,0x9c,0x25,0x47,0x02,0xe9,0x73,0x58,0x05,0xdd,0xb5,
0x76,0x9b,0xa7,0x3f,0x1e,0xbb,0x56,0xe8,0x44,0xef,0x91,0x22,0x85,0xd3,0xdd,0x6e,
0x54,0x1e,0x82,0x38,0x73,0x55,0x8a,0xdb,0xa0,0x79,0x06,0x8a,0xbd,0x7f,0x7f,0x50,
0x95,0x96,0x75,0xac,0xc4,0xb4,0xde,0x9a,0xa9,0x9c,0x05,0xf2,0x89,0xa7,0xc5,0x2f,
0xee,0x5b,0xfc,0x14,0xf6,0xf8,0xe5,0xf8
};
#define TEST(n,name,cipher,keyix,pn) { \
name, IEEE80211_CIPHER_##cipher,keyix, pn##LL, \
test##n##_key, sizeof(test##n##_key), \
test##n##_phase1, sizeof(test##n##_phase1), \
test##n##_phase2, sizeof(test##n##_phase2), \
test##n##_plaintext, sizeof(test##n##_plaintext), \
test##n##_encrypted, sizeof(test##n##_encrypted) \
}
struct ciphertest {
const char *name;
int cipher;
int keyix;
u_int64_t pn;
const u_int8_t *key;
size_t key_len;
const u_int8_t *phase1;
size_t phase1_len;
const u_int8_t *phase2;
size_t phase2_len;
const u_int8_t *plaintext;
size_t plaintext_len;
const u_int8_t *encrypted;
size_t encrypted_len;
} tkiptests[] = {
TEST(1, "TKIP test mpdu 1", TKIP, 0, 0),
};
struct tkip_ctx {
struct ieee80211com *tc_ic; /* for diagnostics */
uint16_t tx_ttak[5];
int tx_phase1_done;
uint8_t tx_rc4key[16];
uint16_t rx_ttak[5];
int rx_phase1_done;
uint8_t rx_rc4key[16];
uint64_t rx_rsc; /* held until MIC verified */
};
static void
dumpdata(const char *tag, const void *p, size_t len)
{
int i;
printf("%s: 0x%p len %u", tag, p, len);
for (i = 0; i < len; i++) {
if ((i % 16) == 0)
printf("\n%03d:", i);
printf(" %02x", ((const u_int8_t *)p)[i]);
}
printf("\n");
}
static void
cmpfail(const void *gen, size_t genlen, const void *ref, size_t reflen)
{
int i;
for (i = 0; i < genlen; i++)
if (((const u_int8_t *)gen)[i] != ((const u_int8_t *)ref)[i]) {
printf("first difference at byte %u\n", i);
break;
}
dumpdata("Generated", gen, genlen);
dumpdata("Reference", ref, reflen);
}
static int
runtest(struct ieee80211com *ic, struct ciphertest *t)
{
struct tkip_ctx *ctx;
struct ieee80211_key key;
struct mbuf *m = NULL;
const struct ieee80211_cipher *cip;
u_int8_t mac[IEEE80211_ADDR_LEN];
u_int len;
printf("%s: ", t->name);
/*
* Setup key.
*/
memset(&key, 0, sizeof(key));
key.wk_flags = IEEE80211_KEY_XMIT | IEEE80211_KEY_RECV;
key.wk_cipher = &ieee80211_cipher_none;
if (!ieee80211_crypto_newkey(ic, IEEE80211_CIPHER_TKIP, &key)) {
printf("FAIL: ieee80211_crypto_newkey failed\n");
goto bad;
}
memcpy(key.wk_key, t->key, t->key_len);
key.wk_keylen = 128/NBBY;
key.wk_keyrsc = 0;
key.wk_keytsc = t->pn;
if (!ieee80211_crypto_setkey(ic, &key, mac)) {
printf("FAIL: ieee80211_crypto_setkey failed\n");
goto bad;
}
/*
* Craft frame from plaintext data.
*/
cip = key.wk_cipher;
m = m_getcl(M_NOWAIT, MT_HEADER, M_PKTHDR);
m->m_data += cip->ic_header;
len = t->plaintext_len - IEEE80211_WEP_MICLEN;
memcpy(mtod(m, void *), t->plaintext, len);
m->m_len = len;
m->m_pkthdr.len = m->m_len;
/*
* Add MIC.
*/
if (!ieee80211_crypto_enmic(ic, &key, m)) {
printf("FAIL: tkip enmic failed\n");
goto bad;
}
/*
* Verify: frame length, frame contents.
*/
if (m->m_pkthdr.len != t->plaintext_len) {
printf("FAIL: enmic botch; length mismatch\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
goto bad;
}
if (memcmp(mtod(m, const void *), t->plaintext, t->plaintext_len)) {
printf("FAIL: enmic botch\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
goto bad;
}
/*
* Encrypt frame w/ MIC.
*/
if (!cip->ic_encap(&key, m, t->keyix<<6)) {
printf("FAIL: tkip encap failed\n");
goto bad;
}
/*
* Verify: phase1, phase2, frame length, frame contents.
*/
ctx = key.wk_private;
if (memcmp(ctx->tx_ttak, t->phase1, t->phase1_len)) {
printf("FAIL: encrypt phase1 botch\n");
cmpfail(ctx->tx_ttak, sizeof(ctx->tx_ttak),
t->phase1, t->phase1_len);
goto bad;
} else if (memcmp(ctx->tx_rc4key, t->phase2, t->phase2_len)) {
printf("FAIL: encrypt phase2 botch\n");
cmpfail(ctx->tx_rc4key, sizeof(ctx->tx_rc4key),
t->phase2, t->phase2_len);
goto bad;
} else if (m->m_pkthdr.len != t->encrypted_len) {
printf("FAIL: encrypt data length mismatch\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->encrypted, t->encrypted_len);
goto bad;
} else if (memcmp(mtod(m, const void *), t->encrypted, m->m_pkthdr.len)) {
printf("FAIL: encrypt data does not compare\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->encrypted, t->encrypted_len);
dumpdata("Plaintext", t->plaintext, t->plaintext_len);
goto bad;
}
/*
* Decrypt frame.
*/
if (!cip->ic_decap(&key, m)) {
printf("tkip decap failed\n");
/*
* Check reason for failure: phase1, phase2, frame data (ICV).
*/
if (memcmp(ctx->rx_ttak, t->phase1, t->phase1_len)) {
printf("FAIL: decrypt phase1 botch\n");
cmpfail(ctx->rx_ttak, sizeof(ctx->rx_ttak),
t->phase1, t->phase1_len);
} else if (memcmp(ctx->rx_rc4key, t->phase2, t->phase2_len)) {
printf("FAIL: decrypt phase2 botch\n");
cmpfail(ctx->rx_rc4key, sizeof(ctx->rx_rc4key),
t->phase2, t->phase2_len);
} else {
printf("FAIL: decrypt data does not compare\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
}
goto bad;
}
/*
* Verify: frame length, frame contents.
*/
if (m->m_pkthdr.len != t->plaintext_len) {
printf("FAIL: decap botch; length mismatch\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
goto bad;
}
if (memcmp(mtod(m, const void *), t->plaintext, t->plaintext_len)) {
printf("FAIL: decap botch; data does not compare\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
goto bad;
}
/*
* De-MIC decrypted frame.
*/
if (!ieee80211_crypto_demic(ic, &key, m)) {
printf("FAIL: tkip demic failed\n");
goto bad;
}
/* XXX check frame length and contents... */
printf("PASS\n");
return 1;
bad:
if (m != NULL)
m_freem(m);
ieee80211_crypto_delkey(ic, &key);
return 0;
}
/*
* Module glue.
*/
static int debug = 0;
static int tests = -1;
static int
init_crypto_tkip_test(void)
{
#define N(a) (sizeof(a)/sizeof(a[0]))
struct ieee80211com ic;
int i, pass, total;
memset(&ic, 0, sizeof(ic));
if (debug)
ic.ic_debug = IEEE80211_MSG_CRYPTO;
ieee80211_crypto_attach(&ic);
pass = 0;
total = 0;
for (i = 0; i < N(tkiptests); i++)
if (tests & (1<<i)) {
total++;
pass += runtest(&ic, &tkiptests[i]);
}
printf("%u of %u 802.11i TKIP test vectors passed\n", pass, total);
ieee80211_crypto_detach(&ic);
return (pass == total ? 0 : -1);
#undef N
}
static int
test_tkip_modevent(module_t mod, int type, void *unused)
{
switch (type) {
case MOD_LOAD:
(void) init_crypto_tkip_test();
return 0;
case MOD_UNLOAD:
return 0;
}
return EINVAL;
}
static moduledata_t test_tkip_mod = {
"test_tkip",
test_tkip_modevent,
0
};
DECLARE_MODULE(test_tkip, test_tkip_mod, SI_SUB_DRIVERS, SI_ORDER_FIRST);
MODULE_VERSION(test_tkip, 1);
MODULE_DEPEND(test_tkip, wlan, 1, 1, 1);

8
tools/regression/net80211/wep/Makefile Normal file
View File

@ -0,0 +1,8 @@
# $FreeBSD$
.PATH: ${.CURDIR}/../../../../sys/net80211
KMOD= test_wep
SRCS+= test_wep.c
.include <bsd.kmod.mk>

334
tools/regression/net80211/wep/test_wep.c Normal file
View File

@ -0,0 +1,334 @@
/*-
* Copyright (c) 2004 Sam Leffler, Errno Consulting
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. The name of the author may not be used to endorse or promote products
* derived from this software without specific prior written permission.
*
* Alternatively, this software may be distributed under the terms of the
* GNU General Public License ("GPL") version 2 as published by the Free
* Software Foundation.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*
* $FreeBSD$
*/
/*
* WEP test module.
*
* Test vectors come from section I.7.2 of P802.11i/D7.0, October 2003.
*
* To use this tester load the net80211 layer (either as a module or
* by statically configuring it into your kernel), then insmod this
* module. It should automatically run all test cases and print
* information for each. To run one or more tests you can specify a
* tests parameter to the module that is a bit mask of the set of tests
* you want; e.g. insmod wep_test tests=7 will run only test mpdu's
* 1, 2, and 3.
*/
#include <sys/param.h>
#include <sys/kernel.h>
#include <sys/systm.h>
#include <sys/mbuf.h>
#include <sys/module.h>
#include <sys/socket.h>
#include <net/if.h>
#include <net/if_media.h>
#include <net80211/ieee80211_var.h>
/*
MPDU data
aa aa 03 00 00 00 08 00 45 00 00 4e 66 1a 00 00 80 11 be 64 0a 00 01 22
0a ff ff ff 00 89 00 89 00 3a 00 00 80 a6 01 10 00 01 00 00 00 00 00 00
20 45 43 45 4a 45 48 45 43 46 43 45 50 46 45 45 49 45 46 46 43 43 41 43
41 43 41 43 41 43 41 41 41 00 00 20 00 01
RC4 encryption is performed as follows:
17
18 Key fb 02 9e 30 31 32 33 34
Plaintext
aa aa 03 00 00 00 08 00 45 00 00 4e 66 1a 00 00 80 11 be 64 0a 00 01
22 0a ff ff ff 00 89 00 89 00 3a 00 00 80 a6 01 10 00 01 00 00 00 00
00 00 20 45 43 45 4a 45 48 45 43 46 43 45 50 46 45 45 49 45 46 46 43
43 41 43 41 43 41 43 41 43 41 41 41 00 00 20 00 01 1b d0 b6 04
Ciphertext
f6 9c 58 06 bd 6c e8 46 26 bc be fb 94 74 65 0a ad 1f 79 09 b0 f6 4d
5f 58 a5 03 a2 58 b7 ed 22 eb 0e a6 49 30 d3 a0 56 a5 57 42 fc ce 14
1d 48 5f 8a a8 36 de a1 8d f4 2c 53 80 80 5a d0 c6 1a 5d 6f 58 f4 10
40 b2 4b 7d 1a 69 38 56 ed 0d 43 98 e7 ae e3 bf 0e 2a 2c a8 f7
The plaintext consists of the MPDU data, followed by a 4-octet CRC-32
calculated over the MPDU data.
19 The expanded MPDU, after WEP encapsulation, is as follows:
20
21 IV fb 02 9e 80
MPDU data
f6 9c 58 06 bd 6c e8 46 26 bc be fb 94 74 65 0a ad 1f 79 09 b0 f6 4d 5f 58 a5
03 a2 58 b7 ed 22 eb 0e a6 49 30 d3 a0 56 a5 57 42 fc ce 14 1d 48 5f 8a a8 36
de a1 8d f4 2c 53 80 80 5a d0 c6 1a 5d 6f 58 f4 10 40 b2 4b 7d 1a 69 38 56 ed
0d 43 98 e7 ae e3 bf 0e
ICV 2a 2c a8 f7
*/
static const u_int8_t test1_key[] = { /* TK (w/o IV) */
0x30, 0x31, 0x32, 0x33, 0x34,
};
static const u_int8_t test1_plaintext[] = { /* Plaintext MPDU */
0x08, 0x48, 0xc3, 0x2c, 0x0f, 0xd2, 0xe1, 0x28, /* 802.11 Header */
0xa5, 0x7c, 0x50, 0x30, 0xf1, 0x84, 0x44, 0x08,
0xab, 0xae, 0xa5, 0xb8, 0xfc, 0xba, 0x80, 0x33,
0xaa, 0xaa, 0x03, 0x00, 0x00, 0x00, 0x08, 0x00, /* Plaintext data */
0x45, 0x00, 0x00, 0x4e, 0x66, 0x1a, 0x00, 0x00,
0x80, 0x11, 0xbe, 0x64, 0x0a, 0x00, 0x01, 0x22,
0x0a, 0xff, 0xff, 0xff, 0x00, 0x89, 0x00, 0x89,
0x00, 0x3a, 0x00, 0x00, 0x80, 0xa6, 0x01, 0x10,
0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0x20, 0x45, 0x43, 0x45, 0x4a, 0x45, 0x48, 0x45,
0x43, 0x46, 0x43, 0x45, 0x50, 0x46, 0x45, 0x45,
0x49, 0x45, 0x46, 0x46, 0x43, 0x43, 0x41, 0x43,
0x41, 0x43, 0x41, 0x43, 0x41, 0x43, 0x41, 0x41,
0x41, 0x00, 0x00, 0x20, 0x00, 0x01,
};
static const u_int8_t test1_encrypted[] = { /* Encrypted MPDU */
0x08, 0x48, 0xc3, 0x2c, 0x0f, 0xd2, 0xe1, 0x28,
0xa5, 0x7c, 0x50, 0x30, 0xf1, 0x84, 0x44, 0x08,
0xab, 0xae, 0xa5, 0xb8, 0xfc, 0xba, 0x80, 0x33,
0xfb, 0x02, 0x9e, 0x80, 0xf6, 0x9c, 0x58, 0x06,
0xbd, 0x6c, 0xe8, 0x46, 0x26, 0xbc, 0xbe, 0xfb,
0x94, 0x74, 0x65, 0x0a, 0xad, 0x1f, 0x79, 0x09,
0xb0, 0xf6, 0x4d, 0x5f, 0x58, 0xa5, 0x03, 0xa2,
0x58, 0xb7, 0xed, 0x22, 0xeb, 0x0e, 0xa6, 0x49,
0x30, 0xd3, 0xa0, 0x56, 0xa5, 0x57, 0x42, 0xfc,
0xce, 0x14, 0x1d, 0x48, 0x5f, 0x8a, 0xa8, 0x36,
0xde, 0xa1, 0x8d, 0xf4, 0x2c, 0x53, 0x80, 0x80,
0x5a, 0xd0, 0xc6, 0x1a, 0x5d, 0x6f, 0x58, 0xf4,
0x10, 0x40, 0xb2, 0x4b, 0x7d, 0x1a, 0x69, 0x38,
0x56, 0xed, 0x0d, 0x43, 0x98, 0xe7, 0xae, 0xe3,
0xbf, 0x0e, 0x2a, 0x2c, 0xa8, 0xf7,
};
/* XXX fix byte order of iv */
#define TEST(n,name,cipher,keyix,iv0,iv1,iv2,iv3) { \
name, IEEE80211_CIPHER_##cipher,keyix, { iv2,iv1,iv0,iv3 }, \
test##n##_key, sizeof(test##n##_key), \
test##n##_plaintext, sizeof(test##n##_plaintext), \
test##n##_encrypted, sizeof(test##n##_encrypted) \
}
struct ciphertest {
const char *name;
int cipher;
int keyix;
u_int8_t iv[4];
const u_int8_t *key;
size_t key_len;
const u_int8_t *plaintext;
size_t plaintext_len;
const u_int8_t *encrypted;
size_t encrypted_len;
} weptests[] = {
TEST(1, "WEP test mpdu 1", WEP, 2, 0xfb, 0x02, 0x9e, 0x80),
};
static void
dumpdata(const char *tag, const void *p, size_t len)
{
int i;
printf("%s: 0x%p len %u", tag, p, len);
for (i = 0; i < len; i++) {
if ((i % 16) == 0)
printf("\n%03d:", i);
printf(" %02x", ((const u_int8_t *)p)[i]);
}
printf("\n");
}
static void
cmpfail(const void *gen, size_t genlen, const void *ref, size_t reflen)
{
int i;
for (i = 0; i < genlen; i++)
if (((const u_int8_t *)gen)[i] != ((const u_int8_t *)ref)[i]) {
printf("first difference at byte %u\n", i);
break;
}
dumpdata("Generated", gen, genlen);
dumpdata("Reference", ref, reflen);
}
struct wep_ctx_hw { /* for use with h/w support */
struct ieee80211com *wc_ic; /* for diagnostics */
u_int32_t wc_iv; /* initial vector for crypto */
};
static int
runtest(struct ieee80211com *ic, struct ciphertest *t)
{
struct ieee80211_key key;
struct mbuf *m = NULL;
const struct ieee80211_cipher *cip;
u_int8_t mac[IEEE80211_ADDR_LEN];
struct wep_ctx_hw *ctx;
printf("%s: ", t->name);
/*
* Setup key.
*/
memset(&key, 0, sizeof(key));
key.wk_flags = IEEE80211_KEY_XMIT | IEEE80211_KEY_RECV;
key.wk_cipher = &ieee80211_cipher_none;
if (!ieee80211_crypto_newkey(ic, t->cipher, &key)) {
printf("FAIL: ieee80211_crypto_newkey failed\n");
goto bad;
}
memcpy(key.wk_key, t->key, t->key_len);
key.wk_keylen = t->key_len;
if (!ieee80211_crypto_setkey(ic, &key, mac)) {
printf("FAIL: ieee80211_crypto_setkey failed\n");
goto bad;
}
cip = key.wk_cipher;
/*
* Craft frame from plaintext data.
*/
cip = key.wk_cipher;
m = m_getcl(M_NOWAIT, MT_HEADER, M_PKTHDR);
memcpy(mtod(m, void *), t->encrypted, t->encrypted_len);
m->m_len = t->encrypted_len;
m->m_pkthdr.len = m->m_len;
/*
* Decrypt frame.
*/
if (!cip->ic_decap(&key, m)) {
printf("FAIL: wep decap failed\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
goto bad;
}
/*
* Verify: frame length, frame contents.
*/
if (m->m_pkthdr.len != t->plaintext_len) {
printf("FAIL: decap botch; length mismatch\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, t->plaintext_len);
goto bad;
} else if (memcmp(mtod(m, const void *), t->plaintext, t->plaintext_len)) {
printf("FAIL: decap botch; data does not compare\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->plaintext, sizeof(t->plaintext));
goto bad;
}
/*
* Encrypt frame.
*/
ctx = (struct wep_ctx_hw *) key.wk_private;
memcpy(&ctx->wc_iv, t->iv, sizeof(t->iv)); /* for encap/encrypt */
if (!cip->ic_encap(&key, m, t->keyix<<6)) {
printf("FAIL: wep encap failed\n");
goto bad;
}
/*
* Verify: frame length, frame contents.
*/
if (m->m_pkthdr.len != t->encrypted_len) {
printf("FAIL: encap data length mismatch\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->encrypted, t->encrypted_len);
goto bad;
} else if (memcmp(mtod(m, const void *), t->encrypted, m->m_pkthdr.len)) {
printf("FAIL: encrypt data does not compare\n");
cmpfail(mtod(m, const void *), m->m_pkthdr.len,
t->encrypted, t->encrypted_len);
dumpdata("Plaintext", t->plaintext, t->plaintext_len);
goto bad;
}
m_freem(m);
ieee80211_crypto_delkey(ic, &key);
printf("PASS\n");
return 1;
bad:
if (m != NULL)
m_freem(m);
ieee80211_crypto_delkey(ic, &key);
return 0;
}
/*
* Module glue.
*/
static int tests = -1;
static int debug = 0;
static int
init_crypto_wep_test(void)
{
#define N(a) (sizeof(a)/sizeof(a[0]))
struct ieee80211com ic;
int i, pass, total;
memset(&ic, 0, sizeof(ic));
if (debug)
ic.ic_debug = IEEE80211_MSG_CRYPTO;
ieee80211_crypto_attach(&ic);
pass = 0;
total = 0;
for (i = 0; i < N(weptests); i++)
if (tests & (1<<i)) {
total++;
pass += runtest(&ic, &weptests[i]);
}
printf("%u of %u 802.11i WEP test vectors passed\n", pass, total);
ieee80211_crypto_detach(&ic);
return (pass == total ? 0 : -1);
#undef N
}
static int
test_wep_modevent(module_t mod, int type, void *unused)
{
switch (type) {
case MOD_LOAD:
(void) init_crypto_wep_test();
return 0;
case MOD_UNLOAD:
return 0;
}
return EINVAL;
}
static moduledata_t test_wep_mod = {
"test_wep",
test_wep_modevent,
0
};
DECLARE_MODULE(test_wep, test_wep_mod, SI_SUB_DRIVERS, SI_ORDER_FIRST);
MODULE_VERSION(test_wep, 1);
MODULE_DEPEND(test_wep, wlan, 1, 1, 1);