docs/wsar_html.zip:wsar_html/dot11decrypt__system_8h_source.html

#ifndef _DOT11DECRYPT_SYSTEM_H

#define _DOT11DECRYPT_SYSTEM_H


/************************************************************************/

/*  Constant definitions                        */


/*  General definitions                     */

#define DOT11DECRYPT_RET_SUCCESS                      0

#define DOT11DECRYPT_RET_UNSUCCESS                    1


#define DOT11DECRYPT_RET_NO_DATA                  1

#define DOT11DECRYPT_RET_WRONG_DATA_SIZE              2

#define DOT11DECRYPT_RET_REQ_DATA                 3

#define DOT11DECRYPT_RET_NO_VALID_HANDSHAKE           4

#define DOT11DECRYPT_RET_NO_DATA_ENCRYPTED            5


#define DOT11DECRYPT_RET_SUCCESS_HANDSHAKE       -1


#define DOT11DECRYPT_MAX_KEYS_NR                 64


/*  Decryption algorithms fields size definition (bytes)        */

#define DOT11DECRYPT_WPA_NONCE_LEN               32

#define DOT11DECRYPT_WPA_PTK_MAX_LEN             96 /* TKIP 48, AKM 18/24/25 96 */

#define DOT11DECRYPT_WPA_MICKEY_MAX_LEN          32


#define DOT11DECRYPT_WEP_128_KEY_LEN             16 /* 128 bits */


/* General 802.11 constants                     */

#define DOT11DECRYPT_MAC_LEN               6

#define DOT11DECRYPT_RADIOTAP_HEADER_LEN              24


#define DOT11DECRYPT_EAPOL_MAX_LEN          1024U


#define DOT11DECRYPT_TK_LEN                           16


/* Max length of capture data                       */

#define DOT11DECRYPT_MAX_CAPLEN         (12 * 1024)


#define DOT11DECRYPT_WEP_IVLEN  3       /* 24bit */

#define DOT11DECRYPT_WEP_KIDLEN 1       /* 1 octet */

#define DOT11DECRYPT_WEP_ICV    4

#define DOT11DECRYPT_WEP_HEADER DOT11DECRYPT_WEP_IVLEN + DOT11DECRYPT_WEP_KIDLEN

#define DOT11DECRYPT_WEP_TRAILER    DOT11DECRYPT_WEP_ICV


/*

 * 802.11i defines an extended IV for use with non-WEP ciphers.

 * When the EXTIV bit is set in the key id byte an additional

 * 4 bytes immediately follow the IV for TKIP.  For CCMP the

 * EXTIV bit is likewise set but the 8 bytes represent the

 * CCMP header rather than IV+extended-IV.

 */

#define DOT11DECRYPT_RSNA_EXTIV 0x20

#define DOT11DECRYPT_RSNA_EXTIVLEN  4       /* extended IV length */

#define DOT11DECRYPT_TKIP_MICLEN    8       /* trailing MIC */


#define DOT11DECRYPT_RSNA_HEADER    DOT11DECRYPT_WEP_HEADER + DOT11DECRYPT_RSNA_EXTIVLEN


#define DOT11DECRYPT_CCMP_HEADER        DOT11DECRYPT_RSNA_HEADER

#define DOT11DECRYPT_CCMP_TRAILER       8   /* IEEE 802.11-2016 12.5.3.2 CCMP MPDU format */

#define DOT11DECRYPT_CCMP_256_TRAILER   16  /* IEEE 802.11-2016 12.5.3.2 CCMP MPDU format */


#define DOT11DECRYPT_GCMP_HEADER        8   /* IEEE 802.11-206 12.5.5.2 GCMP MPDU format */

#define DOT11DECRYPT_GCMP_TRAILER       16


#define DOT11DECRYPT_TKIP_HEADER    DOT11DECRYPT_RSNA_HEADER

#define DOT11DECRYPT_TKIP_TRAILER   DOT11DECRYPT_TKIP_MICLEN + DOT11DECRYPT_WEP_ICV


#define DOT11DECRYPT_RSNA_MIN_TRAILER 8


#define DOT11DECRYPT_MAX_MLO_LINKS 3 // Is there actually any device supporting this many links?


/************************************************************************/

/*      File includes                                                   */


#include <stdint.h>

#include <stdbool.h>


#include "dot11decrypt_user.h"

#include "ws_symbol_export.h"


/************************************************************************/

/*  Macro definitions                       */


/************************************************************************/

/*  Type definitions                        */


typedef struct _DOT11DECRYPT_SEC_ASSOCIATION_ID {

    unsigned char bssid[DOT11DECRYPT_MAC_LEN];

    unsigned char sta[DOT11DECRYPT_MAC_LEN];

} DOT11DECRYPT_SEC_ASSOCIATION_ID, *PDOT11DECRYPT_SEC_ASSOCIATION_ID;


typedef struct _DOT11DECRYPT_SEC_ASSOCIATION {

    struct _DOT11DECRYPT_SEC_ASSOCIATION *next;

    DOT11DECRYPT_SEC_ASSOCIATION_ID saId;

    DOT11DECRYPT_KEY_ITEM          *key;

    uint8_t                         handshake;

    uint8_t                         validKey;

    struct {

        uint8_t       key_ver;

        unsigned char nonce[DOT11DECRYPT_WPA_NONCE_LEN];

        int           akm;

        int           cipher;

        int           tmp_group_cipher;

        int           pmk_len;

        unsigned char ptk[DOT11DECRYPT_WPA_PTK_MAX_LEN];

        int           ptk_len;

        /* MLD info */

        uint8_t mld           : 1;

        uint8_t ap_mld_mac_set : 1;

        uint8_t sta_mld_mac_set : 1;

        uint8_t ap_mld_mac[DOT11DECRYPT_MAC_LEN];

        uint8_t sta_mld_mac[DOT11DECRYPT_MAC_LEN];

        struct DOT11DECRYPT_MLO_LINK_INFO {

            uint8_t id_set     : 1;

            uint8_t sta_mac_set : 1;

            uint8_t ap_mac_set  : 1;

            uint8_t id          : 4;

            uint8_t sta_mac[DOT11DECRYPT_MAC_LEN];

            uint8_t ap_mac[DOT11DECRYPT_MAC_LEN];

        } mlo_links[DOT11DECRYPT_MAX_MLO_LINKS];

    } wpa;

} DOT11DECRYPT_SEC_ASSOCIATION, *PDOT11DECRYPT_SEC_ASSOCIATION;


typedef struct _DOT11DECRYPT_CONTEXT {

    GHashTable *sa_hash;

    DOT11DECRYPT_KEY_ITEM keys[DOT11DECRYPT_MAX_KEYS_NR];

    size_t keys_nr;

    uint8_t pkt_ssid[DOT11DECRYPT_WPA_SSID_MAX_LEN];

    size_t pkt_ssid_len;

} DOT11DECRYPT_CONTEXT, *PDOT11DECRYPT_CONTEXT;


typedef enum _DOT11DECRYPT_HS_MSG_TYPE {

    DOT11DECRYPT_HS_MSG_TYPE_INVALID = 0,

    DOT11DECRYPT_HS_MSG_TYPE_4WHS_1,

    DOT11DECRYPT_HS_MSG_TYPE_4WHS_2,

    DOT11DECRYPT_HS_MSG_TYPE_4WHS_3,

    DOT11DECRYPT_HS_MSG_TYPE_4WHS_4,

    DOT11DECRYPT_HS_MSG_TYPE_GHS_1,

    DOT11DECRYPT_HS_MSG_TYPE_GHS_2

} DOT11DECRYPT_HS_MSG_TYPE;


typedef struct _DOT11DECRYPT_FTE {

    uint8_t *mic;

    uint8_t  mic_len;

    uint8_t *anonce;

    uint8_t *snonce;

    uint8_t *r0kh_id;

    uint8_t  r0kh_id_len;

    uint8_t *r1kh_id;

    uint8_t  r1kh_id_len;

} DOT11DECRYPT_FTE, *PDOT11DECRYPT_FTE;


typedef struct _DOT11DECRYPT_EAPOL_PARSED {

    DOT11DECRYPT_HS_MSG_TYPE msg_type;

    uint16_t len;

    uint8_t  key_type;

    uint8_t  key_version;

    uint16_t key_len;

    uint8_t *key_iv;

    uint8_t *key_data;

    uint16_t key_data_len;

    uint8_t  group_cipher;

    uint8_t  cipher;

    uint8_t  akm;

    uint8_t *nonce;

    uint8_t *mic;

    uint16_t mic_len;

    uint8_t *gtk;

    uint16_t gtk_len;

    uint8_t *mld_mac;

    uint8_t mlo_link_count;


    struct DOT11DECRYPT_EAPOL_PARSED_MLO_LINK {

        uint8_t  id;

        uint8_t *mac;

    } mlo_link[DOT11DECRYPT_MAX_MLO_LINKS];

    uint8_t mlo_gtk_count;


    struct DOT11DECRYPT_EAPOL_PARSED_MLO_GTK {

        uint8_t  link_id;

        uint8_t *key;

        uint8_t  len;

    } mlo_gtk[DOT11DECRYPT_MAX_MLO_LINKS];

    /* For fast BSS transition AKMs */

    uint8_t        *mdid;

    DOT11DECRYPT_FTE fte;

} DOT11DECRYPT_EAPOL_PARSED, *PDOT11DECRYPT_EAPOL_PARSED;


typedef struct _DOT11DECRYPT_ASSOC_PARSED {

    uint8_t  frame_subtype;

    uint8_t  group_cipher;

    uint8_t  cipher;

    uint8_t  akm;

    uint8_t *mdid;

    DOT11DECRYPT_FTE fte;

    uint8_t *rsne_tag;

    uint8_t *rsnxe_tag;

    uint8_t *mde_tag;

    uint8_t *fte_tag;

    uint8_t *rde_tag;

    uint8_t *gtk;

    uint16_t gtk_len;

    uint16_t gtk_subelem_key_len;

    uint8_t  bssid[DOT11DECRYPT_MAC_LEN];

    uint8_t  sa[DOT11DECRYPT_MAC_LEN];

    uint8_t  da[DOT11DECRYPT_MAC_LEN];

} DOT11DECRYPT_ASSOC_PARSED, *PDOT11DECRYPT_ASSOC_PARSED;


/************************************************************************/

/*  Function prototype declarations                 */


#ifdef  __cplusplus

extern "C" {

#endif


extern int Dot11DecryptDecryptPacket(

    PDOT11DECRYPT_CONTEXT ctx,

    const uint8_t *data,

    const unsigned data_off,

    const unsigned data_len,

    unsigned char *decrypt_data,

    uint32_t *decrypt_len,

    PDOT11DECRYPT_KEY_ITEM key)

    ;


extern int

Dot11DecryptDecryptKeyData(PDOT11DECRYPT_CONTEXT ctx,

                           PDOT11DECRYPT_EAPOL_PARSED eapol_parsed,

                           const unsigned char bssid[DOT11DECRYPT_MAC_LEN],

                           const unsigned char sta[DOT11DECRYPT_MAC_LEN],

                           unsigned char *decrypted_data, unsigned *decrypted_len,

                           PDOT11DECRYPT_KEY_ITEM key)

    ;


extern int Dot11DecryptScanEapolForKeys(

    PDOT11DECRYPT_CONTEXT ctx,

    PDOT11DECRYPT_EAPOL_PARSED eapol_parsed,

    const uint8_t *eapol_raw,

    const unsigned tot_len,

    const unsigned char bssid[DOT11DECRYPT_MAC_LEN],

    const unsigned char sta[DOT11DECRYPT_MAC_LEN])

    ;


int

Dot11DecryptScanFtAssocForKeys(

    const PDOT11DECRYPT_CONTEXT ctx,

    const PDOT11DECRYPT_ASSOC_PARSED assoc_parsed,

    uint8_t *decrypted_gtk, size_t *decrypted_len,

    DOT11DECRYPT_KEY_ITEM* used_key);


extern int Dot11DecryptScanTdlsForKeys(

    PDOT11DECRYPT_CONTEXT ctx,

    const uint8_t *data,

    const unsigned tot_len)

    ;


int

Dot11DecryptGetKCK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **kck);


int

Dot11DecryptGetKEK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **kek);


int


Dot11DecryptGetTK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **tk);


int


Dot11DecryptGetGTK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **gtk);


extern int Dot11DecryptSetKeys(

    PDOT11DECRYPT_CONTEXT ctx,

    DOT11DECRYPT_KEY_ITEM keys[],

    const size_t keys_nr)

    ;


int Dot11DecryptSetLastSSID(

        PDOT11DECRYPT_CONTEXT ctx,

        char *pkt_ssid,

        size_t pkt_ssid_len)

    ;


WS_DLL_PUBLIC

int Dot11DecryptInitContext(

        PDOT11DECRYPT_CONTEXT ctx)

    ;


WS_DLL_PUBLIC

int Dot11DecryptDestroyContext(

    PDOT11DECRYPT_CONTEXT ctx)

    ;


#ifdef  __cplusplus

}

#endif


#endif /* _DOT11DECRYPT_SYSTEM_H */


Dot11DecryptGetKCK
int Dot11DecryptGetKCK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **kck)
Definition dot11decrypt.c:564

Dot11DecryptScanEapolForKeys
int Dot11DecryptScanEapolForKeys(PDOT11DECRYPT_CONTEXT ctx, PDOT11DECRYPT_EAPOL_PARSED eapol_parsed, const uint8_t *eapol_raw, const unsigned tot_len, const unsigned char bssid[6], const unsigned char sta[6])
Definition dot11decrypt.c:850

DOT11DECRYPT_SEC_ASSOCIATION_ID
struct _DOT11DECRYPT_SEC_ASSOCIATION_ID DOT11DECRYPT_SEC_ASSOCIATION_ID
Uniquely identifies a security association by the BSSID and station MAC address pair.

DOT11DECRYPT_EAPOL_PARSED
struct _DOT11DECRYPT_EAPOL_PARSED DOT11DECRYPT_EAPOL_PARSED
Parsed representation of an EAPOL key frame for WPA/WPA2/WPA3 handshake processing.

_DOT11DECRYPT_HS_MSG_TYPE
_DOT11DECRYPT_HS_MSG_TYPE
EAPOL handshake message type, identifying the step within a 4-Way or Group handshake.
Definition dot11decrypt_system.h:161

DOT11DECRYPT_HS_MSG_TYPE_4WHS_4
@ DOT11DECRYPT_HS_MSG_TYPE_4WHS_4
Definition dot11decrypt_system.h:166

DOT11DECRYPT_HS_MSG_TYPE_4WHS_1
@ DOT11DECRYPT_HS_MSG_TYPE_4WHS_1
Definition dot11decrypt_system.h:163

DOT11DECRYPT_HS_MSG_TYPE_GHS_2
@ DOT11DECRYPT_HS_MSG_TYPE_GHS_2
Definition dot11decrypt_system.h:168

DOT11DECRYPT_HS_MSG_TYPE_4WHS_3
@ DOT11DECRYPT_HS_MSG_TYPE_4WHS_3
Definition dot11decrypt_system.h:165

DOT11DECRYPT_HS_MSG_TYPE_4WHS_2
@ DOT11DECRYPT_HS_MSG_TYPE_4WHS_2
Definition dot11decrypt_system.h:164

DOT11DECRYPT_HS_MSG_TYPE_GHS_1
@ DOT11DECRYPT_HS_MSG_TYPE_GHS_1
Definition dot11decrypt_system.h:167

DOT11DECRYPT_HS_MSG_TYPE_INVALID
@ DOT11DECRYPT_HS_MSG_TYPE_INVALID
Definition dot11decrypt_system.h:162

Dot11DecryptDestroyContext
WS_DLL_PUBLIC int Dot11DecryptDestroyContext(PDOT11DECRYPT_CONTEXT ctx)
Definition dot11decrypt.c:1213

DOT11DECRYPT_SEC_ASSOCIATION
struct _DOT11DECRYPT_SEC_ASSOCIATION DOT11DECRYPT_SEC_ASSOCIATION
Holds the full cryptographic state of a security association between a STA and an AP.

Dot11DecryptGetGTK
int Dot11DecryptGetGTK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **gtk)
Retrieves the GTK (Group Temporal Key) from a given key item.
Definition dot11decrypt.c:601

DOT11DECRYPT_HS_MSG_TYPE
enum _DOT11DECRYPT_HS_MSG_TYPE DOT11DECRYPT_HS_MSG_TYPE
EAPOL handshake message type, identifying the step within a 4-Way or Group handshake.

Dot11DecryptDecryptPacket
int Dot11DecryptDecryptPacket(PDOT11DECRYPT_CONTEXT ctx, const uint8_t *data, const unsigned data_off, const unsigned data_len, unsigned char *decrypt_data, uint32_t *decrypt_len, PDOT11DECRYPT_KEY_ITEM key)

Dot11DecryptGetTK
int Dot11DecryptGetTK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **tk)
Retrieves the TK (Temporal Key) from a given key item.
Definition dot11decrypt.c:584

Dot11DecryptDecryptKeyData
int Dot11DecryptDecryptKeyData(PDOT11DECRYPT_CONTEXT ctx, PDOT11DECRYPT_EAPOL_PARSED eapol_parsed, const unsigned char bssid[6], const unsigned char sta[6], unsigned char *decrypted_data, unsigned *decrypted_len, PDOT11DECRYPT_KEY_ITEM key)
Definition dot11decrypt.c:385

Dot11DecryptGetKEK
int Dot11DecryptGetKEK(const PDOT11DECRYPT_KEY_ITEM key, const uint8_t **kek)
Retrieves the Key Encryption Key (KEK) for a given decryption key item.
Definition dot11decrypt.c:574

DOT11DECRYPT_ASSOC_PARSED
struct _DOT11DECRYPT_ASSOC_PARSED DOT11DECRYPT_ASSOC_PARSED
Parsed representation of an 802.11 association or reassociation frame.

DOT11DECRYPT_CONTEXT
struct _DOT11DECRYPT_CONTEXT DOT11DECRYPT_CONTEXT
Global decryption context holding keys and session state for dot11decrypt.

Dot11DecryptSetLastSSID
int Dot11DecryptSetLastSSID(PDOT11DECRYPT_CONTEXT ctx, char *pkt_ssid, size_t pkt_ssid_len)
Definition dot11decrypt.c:1162

DOT11DECRYPT_FTE
struct _DOT11DECRYPT_FTE DOT11DECRYPT_FTE
Parsed fields from an IEEE 802.11r Fast Transition Element (FTE).

Dot11DecryptSetKeys
int Dot11DecryptSetKeys(PDOT11DECRYPT_CONTEXT ctx, DOT11DECRYPT_KEY_ITEM keys[], const size_t keys_nr)
Definition dot11decrypt.c:1082

Dot11DecryptInitContext
WS_DLL_PUBLIC int Dot11DecryptInitContext(PDOT11DECRYPT_CONTEXT ctx)
Definition dot11decrypt.c:1191

Dot11DecryptScanTdlsForKeys
int Dot11DecryptScanTdlsForKeys(PDOT11DECRYPT_CONTEXT ctx, const uint8_t *data, const unsigned tot_len)
Definition dot11decrypt.c:618

Dot11DecryptScanFtAssocForKeys
int Dot11DecryptScanFtAssocForKeys(const PDOT11DECRYPT_CONTEXT ctx, const PDOT11DECRYPT_ASSOC_PARSED assoc_parsed, uint8_t *decrypted_gtk, size_t *decrypted_len, DOT11DECRYPT_KEY_ITEM *used_key)
Definition dot11decrypt.c:1920

dot11decrypt_user.h

_DOT11DECRYPT_ASSOC_PARSED
Parsed representation of an 802.11 association or reassociation frame.
Definition dot11decrypt_system.h:233

_DOT11DECRYPT_ASSOC_PARSED::group_cipher
uint8_t group_cipher
Definition dot11decrypt_system.h:235

_DOT11DECRYPT_ASSOC_PARSED::rsnxe_tag
uint8_t * rsnxe_tag
Definition dot11decrypt_system.h:241

_DOT11DECRYPT_ASSOC_PARSED::gtk
uint8_t * gtk
Definition dot11decrypt_system.h:245

_DOT11DECRYPT_ASSOC_PARSED::mde_tag
uint8_t * mde_tag
Definition dot11decrypt_system.h:242

_DOT11DECRYPT_ASSOC_PARSED::frame_subtype
uint8_t frame_subtype
Definition dot11decrypt_system.h:234

_DOT11DECRYPT_ASSOC_PARSED::gtk_subelem_key_len
uint16_t gtk_subelem_key_len
Definition dot11decrypt_system.h:247

_DOT11DECRYPT_ASSOC_PARSED::rsne_tag
uint8_t * rsne_tag
Definition dot11decrypt_system.h:240

_DOT11DECRYPT_ASSOC_PARSED::gtk_len
uint16_t gtk_len
Definition dot11decrypt_system.h:246

_DOT11DECRYPT_ASSOC_PARSED::mdid
uint8_t * mdid
Definition dot11decrypt_system.h:238

_DOT11DECRYPT_ASSOC_PARSED::fte_tag
uint8_t * fte_tag
Definition dot11decrypt_system.h:243

_DOT11DECRYPT_ASSOC_PARSED::da
uint8_t da[6]
Definition dot11decrypt_system.h:250

_DOT11DECRYPT_ASSOC_PARSED::sa
uint8_t sa[6]
Definition dot11decrypt_system.h:249

_DOT11DECRYPT_ASSOC_PARSED::cipher
uint8_t cipher
Definition dot11decrypt_system.h:236

_DOT11DECRYPT_ASSOC_PARSED::rde_tag
uint8_t * rde_tag
Definition dot11decrypt_system.h:244

_DOT11DECRYPT_ASSOC_PARSED::fte
DOT11DECRYPT_FTE fte
Definition dot11decrypt_system.h:239

_DOT11DECRYPT_ASSOC_PARSED::akm
uint8_t akm
Definition dot11decrypt_system.h:237

_DOT11DECRYPT_ASSOC_PARSED::bssid
uint8_t bssid[6]
Definition dot11decrypt_system.h:248

_DOT11DECRYPT_CONTEXT
Global decryption context holding keys and session state for dot11decrypt.
Definition dot11decrypt_system.h:149

_DOT11DECRYPT_CONTEXT::pkt_ssid
uint8_t pkt_ssid[32]
Definition dot11decrypt_system.h:153

_DOT11DECRYPT_CONTEXT::keys
DOT11DECRYPT_KEY_ITEM keys[64]
Definition dot11decrypt_system.h:151

_DOT11DECRYPT_CONTEXT::pkt_ssid_len
size_t pkt_ssid_len
Definition dot11decrypt_system.h:154

_DOT11DECRYPT_CONTEXT::keys_nr
size_t keys_nr
Definition dot11decrypt_system.h:152

_DOT11DECRYPT_CONTEXT::sa_hash
GHashTable * sa_hash
Definition dot11decrypt_system.h:150

_DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_GTK
Per-link Group Temporal Key record for an MLO association.
Definition dot11decrypt_system.h:218

_DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_GTK::key
uint8_t * key
Definition dot11decrypt_system.h:220

_DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_GTK::len
uint8_t len
Definition dot11decrypt_system.h:221

_DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_GTK::link_id
uint8_t link_id
Definition dot11decrypt_system.h:219

_DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_LINK
Per-link identity record for an MLO (Multi-Link Operation) association.
Definition dot11decrypt_system.h:211

_DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_LINK::id
uint8_t id
Definition dot11decrypt_system.h:212

_DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_LINK::mac
uint8_t * mac
Definition dot11decrypt_system.h:213

_DOT11DECRYPT_EAPOL_PARSED
Parsed representation of an EAPOL key frame for WPA/WPA2/WPA3 handshake processing.
Definition dot11decrypt_system.h:190

_DOT11DECRYPT_EAPOL_PARSED::akm
uint8_t akm
Definition dot11decrypt_system.h:201

_DOT11DECRYPT_EAPOL_PARSED::key_version
uint8_t key_version
Definition dot11decrypt_system.h:194

_DOT11DECRYPT_EAPOL_PARSED::mlo_gtk
struct _DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_GTK mlo_gtk[3]

_DOT11DECRYPT_EAPOL_PARSED::key_type
uint8_t key_type
Definition dot11decrypt_system.h:193

_DOT11DECRYPT_EAPOL_PARSED::mdid
uint8_t * mdid
Definition dot11decrypt_system.h:225

_DOT11DECRYPT_EAPOL_PARSED::mic
uint8_t * mic
Definition dot11decrypt_system.h:203

_DOT11DECRYPT_EAPOL_PARSED::mlo_gtk_count
uint8_t mlo_gtk_count
Definition dot11decrypt_system.h:216

_DOT11DECRYPT_EAPOL_PARSED::cipher
uint8_t cipher
Definition dot11decrypt_system.h:200

_DOT11DECRYPT_EAPOL_PARSED::fte
DOT11DECRYPT_FTE fte
Definition dot11decrypt_system.h:226

_DOT11DECRYPT_EAPOL_PARSED::group_cipher
uint8_t group_cipher
Definition dot11decrypt_system.h:199

_DOT11DECRYPT_EAPOL_PARSED::key_data
uint8_t * key_data
Definition dot11decrypt_system.h:197

_DOT11DECRYPT_EAPOL_PARSED::gtk
uint8_t * gtk
Definition dot11decrypt_system.h:205

_DOT11DECRYPT_EAPOL_PARSED::msg_type
DOT11DECRYPT_HS_MSG_TYPE msg_type
Definition dot11decrypt_system.h:191

_DOT11DECRYPT_EAPOL_PARSED::gtk_len
uint16_t gtk_len
Definition dot11decrypt_system.h:206

_DOT11DECRYPT_EAPOL_PARSED::len
uint16_t len
Definition dot11decrypt_system.h:192

_DOT11DECRYPT_EAPOL_PARSED::mic_len
uint16_t mic_len
Definition dot11decrypt_system.h:204

_DOT11DECRYPT_EAPOL_PARSED::mlo_link
struct _DOT11DECRYPT_EAPOL_PARSED::DOT11DECRYPT_EAPOL_PARSED_MLO_LINK mlo_link[3]

_DOT11DECRYPT_EAPOL_PARSED::mlo_link_count
uint8_t mlo_link_count
Definition dot11decrypt_system.h:209

_DOT11DECRYPT_EAPOL_PARSED::key_iv
uint8_t * key_iv
Definition dot11decrypt_system.h:196

_DOT11DECRYPT_EAPOL_PARSED::key_len
uint16_t key_len
Definition dot11decrypt_system.h:195

_DOT11DECRYPT_EAPOL_PARSED::key_data_len
uint16_t key_data_len
Definition dot11decrypt_system.h:198

_DOT11DECRYPT_EAPOL_PARSED::nonce
uint8_t * nonce
Definition dot11decrypt_system.h:202

_DOT11DECRYPT_EAPOL_PARSED::mld_mac
uint8_t * mld_mac
Definition dot11decrypt_system.h:207

_DOT11DECRYPT_FTE
Parsed fields from an IEEE 802.11r Fast Transition Element (FTE).
Definition dot11decrypt_system.h:175

_DOT11DECRYPT_FTE::snonce
uint8_t * snonce
Definition dot11decrypt_system.h:179

_DOT11DECRYPT_FTE::mic
uint8_t * mic
Definition dot11decrypt_system.h:176

_DOT11DECRYPT_FTE::r1kh_id
uint8_t * r1kh_id
Definition dot11decrypt_system.h:182

_DOT11DECRYPT_FTE::r0kh_id_len
uint8_t r0kh_id_len
Definition dot11decrypt_system.h:181

_DOT11DECRYPT_FTE::r0kh_id
uint8_t * r0kh_id
Definition dot11decrypt_system.h:180

_DOT11DECRYPT_FTE::r1kh_id_len
uint8_t r1kh_id_len
Definition dot11decrypt_system.h:183

_DOT11DECRYPT_FTE::anonce
uint8_t * anonce
Definition dot11decrypt_system.h:178

_DOT11DECRYPT_FTE::mic_len
uint8_t mic_len
Definition dot11decrypt_system.h:177

_DOT11DECRYPT_KEY_ITEM
Definition dot11decrypt_user.h:87

_DOT11DECRYPT_SEC_ASSOCIATION_ID
Uniquely identifies a security association by the BSSID and station MAC address pair.
Definition dot11decrypt_system.h:98

_DOT11DECRYPT_SEC_ASSOCIATION_ID::bssid
unsigned char bssid[6]
Definition dot11decrypt_system.h:99

_DOT11DECRYPT_SEC_ASSOCIATION_ID::sta
unsigned char sta[6]
Definition dot11decrypt_system.h:100

_DOT11DECRYPT_SEC_ASSOCIATION
Holds the full cryptographic state of a security association between a STA and an AP.
Definition dot11decrypt_system.h:106

_DOT11DECRYPT_SEC_ASSOCIATION::ap_mac_set
uint8_t ap_mac_set
Definition dot11decrypt_system.h:137

_DOT11DECRYPT_SEC_ASSOCIATION::nonce
unsigned char nonce[32]
Definition dot11decrypt_system.h:116

_DOT11DECRYPT_SEC_ASSOCIATION::pmk_len
int pmk_len
Definition dot11decrypt_system.h:120

_DOT11DECRYPT_SEC_ASSOCIATION::mlo_links
struct _DOT11DECRYPT_SEC_ASSOCIATION::@26::DOT11DECRYPT_MLO_LINK_INFO mlo_links[3]

_DOT11DECRYPT_SEC_ASSOCIATION::id
uint8_t id
Definition dot11decrypt_system.h:138

_DOT11DECRYPT_SEC_ASSOCIATION::cipher
int cipher
Definition dot11decrypt_system.h:118

_DOT11DECRYPT_SEC_ASSOCIATION::ap_mld_mac_set
uint8_t ap_mld_mac_set
Definition dot11decrypt_system.h:126

_DOT11DECRYPT_SEC_ASSOCIATION::ptk_len
int ptk_len
Definition dot11decrypt_system.h:122

_DOT11DECRYPT_SEC_ASSOCIATION::saId
DOT11DECRYPT_SEC_ASSOCIATION_ID saId
Definition dot11decrypt_system.h:109

_DOT11DECRYPT_SEC_ASSOCIATION::handshake
uint8_t handshake
Definition dot11decrypt_system.h:111

_DOT11DECRYPT_SEC_ASSOCIATION::wpa
struct _DOT11DECRYPT_SEC_ASSOCIATION::@26 wpa

_DOT11DECRYPT_SEC_ASSOCIATION::key
DOT11DECRYPT_KEY_ITEM * key
Definition dot11decrypt_system.h:110

_DOT11DECRYPT_SEC_ASSOCIATION::tmp_group_cipher
int tmp_group_cipher
Definition dot11decrypt_system.h:119

_DOT11DECRYPT_SEC_ASSOCIATION::validKey
uint8_t validKey
Definition dot11decrypt_system.h:112

_DOT11DECRYPT_SEC_ASSOCIATION::sta_mld_mac_set
uint8_t sta_mld_mac_set
Definition dot11decrypt_system.h:127

_DOT11DECRYPT_SEC_ASSOCIATION::ptk
unsigned char ptk[96]
Definition dot11decrypt_system.h:121

_DOT11DECRYPT_SEC_ASSOCIATION::mld
uint8_t mld
Definition dot11decrypt_system.h:125

_DOT11DECRYPT_SEC_ASSOCIATION::next
struct _DOT11DECRYPT_SEC_ASSOCIATION * next
Definition dot11decrypt_system.h:107

_DOT11DECRYPT_SEC_ASSOCIATION::akm
int akm
Definition dot11decrypt_system.h:117

_DOT11DECRYPT_SEC_ASSOCIATION::sta_mac_set
uint8_t sta_mac_set
Definition dot11decrypt_system.h:136

_DOT11DECRYPT_SEC_ASSOCIATION::ap_mld_mac
uint8_t ap_mld_mac[6]
Definition dot11decrypt_system.h:128

_DOT11DECRYPT_SEC_ASSOCIATION::key_ver
uint8_t key_ver
Definition dot11decrypt_system.h:115

_DOT11DECRYPT_SEC_ASSOCIATION::id_set
uint8_t id_set
Definition dot11decrypt_system.h:135

_DOT11DECRYPT_SEC_ASSOCIATION::sta_mld_mac
uint8_t sta_mld_mac[6]
Definition dot11decrypt_system.h:129

decrypt_data
Definition packet-ike.c:2095