summaryrefslogtreecommitdiff
path: root/epan/crypt/airpdcap_tkip.c
AgeCommit message (Collapse)AuthorFilesLines
2011-09-12Move airpcap_wep.c to /wsutilAnders Broman1-0/+1
svn path=/trunk/; revision=38969
2010-12-06Make some symbols static.Jeff Morriss1-2/+2
svn path=/trunk/; revision=35140
2008-07-30Add WPA group key decryption from Brian Stormont, via bug 1420:Gerald Combs1-2/+8
Although this patch successfully recognizes group keys and decrypts packets properly using the group key, there is a limitation. If an AP is using key rotation, clicking on individual packets in a trace may not properly decrypt a packet encrypted with a group key. This is because the current structure used in Wireshark only supports one active unicast and one active group key. If a new key has been seen, but you are looking at a packet encrypted with an older key, it will not decrypt. The summary lines, however, do show the packets properly decrypted. I've written up a much longer and more detailed explanation in a comment in the code, along with a proposed idea for a solution, plus a clunky work-around in the GUI when using the current code. I also suspect there might still be a problem with decrypting TKIP groups keys that are sent using WPA2 authentication. In the most common operation, if you are using WPA2, you'll also be using AES keys. It's not a common AP configuration to use WPA2 with TKIP. In fact, most APs don't seem to support it. Since it is an uncommon setup, I haven't put aside the time to test this patch against such an AP. I do have access to an AP that supports this, so when I have the time I'll test it and if needed, will submit another patch to handle that odd-ball condition. From me: Remove the decrypt element of s_rijndael_ctx (which was unused, as indicated in the comments). Preserve the GPL licensing text in several files (which the patch shouldn't have removed). Remove changes that added whitespace. Convert C++-style comments to C-style. Update to include recent SVN changes (e.g. renaming variables named "index"). Remove extraneous printf's. Define DEBUG_DUMP in airpdcap_debug.h. Comment out some instances of DEBUG_DUMP. Change malloc/free to g_malloc/g_free. Use g_memdup instead of allocating and copying. Use gint16 instead of INT16 in airpdcap_rijndael.c. Add Brian to AUTHORS. svn path=/trunk/; revision=25879
2007-04-23Get rid of no-longer-needed, and warning-generated, casts.Guy Harris1-10/+10
svn path=/trunk/; revision=21536
2007-04-23Make Mk16_le() work on both big-endian and little-endian processors andGuy Harris1-3/+2
on processors that don't support unaligned loads - just use pletohs(). svn path=/trunk/; revision=21534
2007-02-25Eliminate __inline - not all compilers support it.Guy Harris1-55/+19
svn path=/trunk/; revision=20932
2007-01-12Add copyright attributions and licenses. License each derived workGerald Combs1-0/+34
according to its pedigree. svn path=/trunk/; revision=20401
2007-01-08Remove duplicate crc32 code.Gerald Combs1-2/+0
svn path=/trunk/; revision=20347
2006-12-28Move the contents of airpdcap to epan/crypt. Try to fix the currentGerald Combs1-0/+250
distcheck failure. Move the nmake build targets for airpdcap from epan/dissectors to epan. This will probably break the Windows build. svn path=/trunk/; revision=20231
generated by cgit v1.2.1 (git 2.18.0) at 2024-07-02 08:40:30 +0000