#include <sys/time.h>
#include <sys/socket.h>
#include <sys/file.h>
#include <sys/ioctl.h>
#include <net/if.h>
#include <netinet/in.h>
#include <netinet/if_ether.h>
#include <net80211/ieee80211.h>
#include <net80211/ieee80211_radiotap.h>
#include <ctype.h>
#include <pcap.h>
#include <stdio.h>
#include <string.h>
#include "addrtoname.h"
#include "interface.h"
const char *ieee80211_ctl_subtype_name[] = {
"reserved#0",
"reserved#1",
"reserved#2",
"reserved#3",
"reserved#4",
"reserved#5",
"reserved#6",
"wrapper",
"block ack request",
"block ack",
"ps poll",
"rts",
"cts",
"ack",
"cf-end",
"cf-end-ack",
};
const char *ieee80211_mgt_subtype_name[] = {
"association request",
"association response",
"reassociation request",
"reassociation response",
"probe request",
"probe response",
"reserved#6",
"reserved#7",
"beacon",
"atim",
"disassociation",
"authentication",
"deauthentication",
"action",
"action noack",
"reserved#15"
};
const char *ieee80211_data_subtype_name[] = {
"data",
"data cf ack",
"data cf poll",
"data cf poll ack",
"no-data",
"no-data cf poll",
"no-data cf ack",
"no-data cf poll ack",
"QoS data",
"QoS data cf ack",
"QoS data cf poll",
"QoS data cf poll ack",
"QoS no-data",
"QoS no-data cf poll",
"QoS no-data cf ack",
"QoS no-data cf poll ack"
};
int ieee80211_hdr(struct ieee80211_frame *);
int ieee80211_data(struct ieee80211_frame *, u_int);
void ieee80211_print_element(u_int8_t *, u_int);
void ieee80211_print_essid(u_int8_t *, u_int);
void ieee80211_print_country(u_int8_t *, u_int);
void ieee80211_print_htcaps(u_int8_t *, u_int);
void ieee80211_print_htop(u_int8_t *, u_int);
void ieee80211_print_vhtcaps(u_int8_t *, u_int);
void ieee80211_print_vhtop(u_int8_t *, u_int);
void ieee80211_print_rsncipher(u_int8_t []);
void ieee80211_print_akm(u_int8_t []);
void ieee80211_print_rsn(u_int8_t *, u_int);
int ieee80211_print_beacon(struct ieee80211_frame *, u_int);
int ieee80211_print_assocreq(struct ieee80211_frame *, u_int);
int ieee80211_print_elements(uint8_t *);
int ieee80211_frame(struct ieee80211_frame *, u_int);
int ieee80211_print(struct ieee80211_frame *, u_int);
u_int ieee80211_any2ieee(u_int, u_int);
void ieee80211_reason(u_int16_t);
#define TCARR(a) TCHECK2(*a, sizeof(a))
int ieee80211_encap = 0;
int
ieee80211_hdr(struct ieee80211_frame *wh)
{
struct ieee80211_frame_addr4 *w4;
switch (wh->i_fc[1] & IEEE80211_FC1_DIR_MASK) {
case IEEE80211_FC1_DIR_NODS:
TCARR(wh->i_addr2);
printf("%s", etheraddr_string(wh->i_addr2));
TCARR(wh->i_addr1);
printf(" > %s", etheraddr_string(wh->i_addr1));
TCARR(wh->i_addr3);
printf(", bssid %s", etheraddr_string(wh->i_addr3));
break;
case IEEE80211_FC1_DIR_TODS:
TCARR(wh->i_addr2);
printf("%s", etheraddr_string(wh->i_addr2));
TCARR(wh->i_addr3);
printf(" > %s", etheraddr_string(wh->i_addr3));
TCARR(wh->i_addr1);
printf(", bssid %s, > DS", etheraddr_string(wh->i_addr1));
break;
case IEEE80211_FC1_DIR_FROMDS:
TCARR(wh->i_addr3);
printf("%s", etheraddr_string(wh->i_addr3));
TCARR(wh->i_addr1);
printf(" > %s", etheraddr_string(wh->i_addr1));
TCARR(wh->i_addr2);
printf(", bssid %s, DS >", etheraddr_string(wh->i_addr2));
break;
case IEEE80211_FC1_DIR_DSTODS:
w4 = (struct ieee80211_frame_addr4 *) wh;
TCARR(w4->i_addr4);
printf("%s", etheraddr_string(w4->i_addr4));
TCARR(w4->i_addr3);
printf(" > %s", etheraddr_string(w4->i_addr3));
TCARR(w4->i_addr2);
printf(", bssid %s", etheraddr_string(w4->i_addr2));
TCARR(w4->i_addr1);
printf(" > %s, DS > DS", etheraddr_string(w4->i_addr1));
break;
}
if (vflag) {
u_int16_t seq;
TCARR(wh->i_seq);
bcopy(wh->i_seq, &seq, sizeof(u_int16_t));
printf(" (seq %u frag %u): ",
letoh16(seq) >> IEEE80211_SEQ_SEQ_SHIFT,
letoh16(seq) & IEEE80211_SEQ_FRAG_MASK);
} else
printf(": ");
return (0);
trunc:
return (1);
}
int
ieee80211_data(struct ieee80211_frame *wh, u_int len)
{
u_int8_t *t = (u_int8_t *)wh;
u_int datalen;
int data = !(wh->i_fc[0] & IEEE80211_FC0_SUBTYPE_NODATA);
int hasqos = ((wh->i_fc[0] &
(IEEE80211_FC0_TYPE_MASK | IEEE80211_FC0_SUBTYPE_QOS)) ==
(IEEE80211_FC0_TYPE_DATA | IEEE80211_FC0_SUBTYPE_QOS));
u_char *esrc = NULL, *edst = NULL;
uint16_t qos = 0;
if (hasqos) {
struct ieee80211_qosframe *wq;
wq = (struct ieee80211_qosframe *) wh;
TCHECK(*wq);
t += sizeof(*wq);
datalen = len - sizeof(*wq);
memcpy(&qos, wq->i_qos, sizeof(qos));
} else {
TCHECK(*wh);
t += sizeof(*wh);
datalen = len - sizeof(*wh);
}
switch (wh->i_fc[1] & IEEE80211_FC1_DIR_MASK) {
case IEEE80211_FC1_DIR_TODS:
esrc = wh->i_addr2;
edst = wh->i_addr3;
break;
case IEEE80211_FC1_DIR_FROMDS:
esrc = wh->i_addr3;
edst = wh->i_addr1;
break;
case IEEE80211_FC1_DIR_NODS:
esrc = wh->i_addr2;
edst = wh->i_addr1;
break;
case IEEE80211_FC1_DIR_DSTODS:
if (hasqos) {
struct ieee80211_qosframe_addr4 *w4;
w4 = (struct ieee80211_qosframe_addr4 *) wh;
TCHECK(*w4);
t = (u_int8_t *) (w4 + 1);
datalen = len - sizeof(*w4);
esrc = w4->i_addr4;
edst = w4->i_addr3;
memcpy(&qos, w4->i_qos, sizeof(qos));
} else {
struct ieee80211_frame_addr4 *w4;
w4 = (struct ieee80211_frame_addr4 *) wh;
TCHECK(*w4);
t = (u_int8_t *) (w4 + 1);
datalen = len - sizeof(*w4);
esrc = w4->i_addr4;
edst = w4->i_addr3;
}
break;
}
if (hasqos && vflag)
printf("TID %u ", le16toh(qos) & IEEE80211_QOS_TID);
if (data && esrc)
llc_print(t, datalen, datalen, esrc, edst);
else if (eflag && esrc)
printf("%s > %s",
etheraddr_string(esrc), etheraddr_string(edst));
return (0);
trunc:
return (1);
}
void
ieee80211_print_element(u_int8_t *data, u_int len)
{
u_int8_t *p;
int i;
printf(" 0x");
for (i = 0, p = data; i < len; i++, p++)
printf("%02x", *p);
}
void
ieee80211_print_essid(u_int8_t *essid, u_int len)
{
u_int8_t *p;
int i;
if (len > IEEE80211_NWID_LEN)
len = IEEE80211_NWID_LEN;
for (i = 0, p = essid; i < len; i++, p++) {
if (*p < ' ' || *p > 0x7e)
break;
}
if (i == len) {
printf(" (");
for (i = 0, p = essid; i < len; i++, p++)
putchar(*p);
putchar(')');
} else
ieee80211_print_element(essid, len);
}
void
ieee80211_print_country(u_int8_t *data, u_int len)
{
u_int8_t first_chan, nchan, maxpower;
if (len < 6)
return;
printf((isprint(data[0]) ? " '%c" : " '\\%03o"), data[0]);
printf((isprint(data[1]) ? "%c" : "\\%03o"), data[1]);
printf((isprint(data[2]) ? "%c'" : "\\%03o'"), data[2]);
len -= 3;
data += 3;
while (len >= 3) {
if (data[0] == 0 || data[1] == 0 ||
data[0] >= 201 || data[1] >= 201) {
printf(", %d %d %d", data[0], data[1], data[2]);
len -= 3;
data += 3;
continue;
}
first_chan = data[0];
nchan = data[1];
maxpower = data[2];
printf(", channel%s %d", nchan == 1 ? "" : "s", first_chan);
if (nchan > 1)
printf("-%d", first_chan + nchan - 1);
printf(" limit %ddB", maxpower);
len -= 3;
data += 3;
}
}
void
ieee80211_print_htcaps(u_int8_t *data, u_int len)
{
uint16_t htcaps, rxrate;
int smps, rxstbc;
uint8_t ampdu, txmcs;
int i;
uint8_t *rxmcs;
if (len < 2) {
ieee80211_print_element(data, len);
return;
}
htcaps = (data[0]) | (data[1] << 8);
printf("=<");
if (htcaps & IEEE80211_HTCAP_CBW20_40)
printf("20/40MHz");
else
printf("20MHz");
if (htcaps & IEEE80211_HTCAP_LDPC)
printf(",LDPC");
smps = (htcaps & IEEE80211_HTCAP_SMPS_MASK)
>> IEEE80211_HTCAP_SMPS_SHIFT;
if (smps == 0)
printf(",SMPS static");
else if (smps == 1)
printf(",SMPS dynamic");
if (htcaps & IEEE80211_HTCAP_GF)
printf(",greenfield");
if (htcaps & IEEE80211_HTCAP_SGI20)
printf(",SGI@20MHz");
if (htcaps & IEEE80211_HTCAP_SGI40)
printf(",SGI@40MHz");
if (htcaps & IEEE80211_HTCAP_TXSTBC)
printf(",TXSTBC");
rxstbc = (htcaps & IEEE80211_HTCAP_RXSTBC_MASK)
>> IEEE80211_HTCAP_RXSTBC_SHIFT;
if (rxstbc > 0 && rxstbc < 4)
printf(",RXSTBC %d stream", rxstbc);
if (htcaps & IEEE80211_HTCAP_DELAYEDBA)
printf(",delayed BA");
if (htcaps & IEEE80211_HTCAP_AMSDU7935)
printf(",A-MSDU 7935");
else
printf(",A-MSDU 3839");
if (htcaps & IEEE80211_HTCAP_DSSSCCK40)
printf(",DSSS/CCK@40MHz");
if (htcaps & IEEE80211_HTCAP_40INTOLERANT)
printf(",40MHz intolerant");
if (htcaps & IEEE80211_HTCAP_LSIGTXOPPROT)
printf(",L-SIG TXOP prot");
if (len < 3) {
printf(">");
return;
}
ampdu = data[2];
if ((ampdu & IEEE80211_AMPDU_PARAM_LE) >= 0 &&
(ampdu & IEEE80211_AMPDU_PARAM_LE) <= 3)
printf(",A-MPDU max %d",
(1 << (13 + (ampdu & IEEE80211_AMPDU_PARAM_LE))) - 1);
if (ampdu & IEEE80211_AMPDU_PARAM_SS) {
float ss;
switch ((ampdu & IEEE80211_AMPDU_PARAM_SS) >> 2) {
case 1:
ss = 0.25;
break;
case 2:
ss = 0.5;
break;
case 3:
ss = 1;
break;
case 4:
ss = 2;
break;
case 5:
ss = 4;
break;
case 6:
ss = 8;
break;
case 7:
ss = 16;
break;
default:
ss = 0;
break;
}
if (ss != 0)
printf(",A-MPDU spacing %.2fus", ss);
}
if (len < 21) {
printf(">");
return;
}
printf(",RxMCS 0x");
rxmcs = &data[3];
for (i = 0; i < 10; i++)
printf("%02x", rxmcs[i]);
rxrate = ((data[13] | (data[14]) << 8) & IEEE80211_MCS_RX_RATE_HIGH);
if (rxrate)
printf(",RxMaxrate %huMb/s", rxrate);
txmcs = data[15];
if (txmcs & IEEE80211_TX_MCS_SET_DEFINED) {
if (txmcs & IEEE80211_TX_RX_MCS_NOT_EQUAL) {
printf(",%d Tx streams",
1 + ((txmcs & IEEE80211_TX_SPATIAL_STREAMS) >> 2));
if (txmcs & IEEE80211_TX_UNEQUAL_MODULATION)
printf(",UEQM");
}
}
printf(">");
}
void
ieee80211_print_htop(u_int8_t *data, u_int len)
{
u_int8_t primary_chan;
u_int8_t htopinfo[5];
u_int8_t basic_mcs[16];
int sco, htprot, i;
if (len < sizeof(primary_chan) + sizeof(htopinfo) + sizeof(basic_mcs)) {
ieee80211_print_element(data, len);
return;
}
htopinfo[0] = data[1];
printf("=<");
primary_chan = data[0];
sco = ((htopinfo[0] & IEEE80211_HTOP0_SCO_MASK)
>> IEEE80211_HTOP0_SCO_SHIFT);
if (sco == 0)
printf("20MHz chan %d", primary_chan);
else if (sco == 1) {
if (primary_chan >= 1 && primary_chan <= 13)
printf("40MHz chan %d:%d", primary_chan,
primary_chan + 1);
else if (primary_chan >= 34)
printf("40MHz chan %d:%d", primary_chan,
primary_chan + 4);
else
printf("[invalid 40MHz chan %d+]", primary_chan);
} else if (sco == 3) {
if (primary_chan >= 2 && primary_chan <= 14)
printf("40MHz chan %d:%d", primary_chan,
primary_chan - 1);
else if (primary_chan >= 40)
printf("40MHz chan %d:%d", primary_chan,
primary_chan - 4);
else
printf("[invalid 40MHz chan %d-]", primary_chan);
} else
printf("chan %d [invalid secondary channel offset %d]",
primary_chan, sco);
if ((htopinfo[0] & IEEE80211_HTOP0_CHW) == 0)
printf(",STA chanw 20MHz");
if (htopinfo[0] & IEEE80211_HTOP0_RIFS)
printf(",RIFS");
htopinfo[1] = data[2];
htprot = ((htopinfo[1] & IEEE80211_HTOP1_PROT_MASK)
>> IEEE80211_HTOP1_PROT_SHIFT);
switch (htprot) {
case IEEE80211_HTPROT_NONE:
printf(",htprot none");
break;
case IEEE80211_HTPROT_NONMEMBER:
printf(",htprot non-member");
break;
case IEEE80211_HTPROT_20MHZ:
printf(",htprot 20MHz");
break;
case IEEE80211_HTPROT_NONHT_MIXED:
printf(",htprot non-HT-mixed");
break;
default:
printf(",htprot %d", htprot);
break;
}
if (htopinfo[1] & IEEE80211_HTOP1_NONGF_STA)
printf(",non-greenfield STA");
if (htopinfo[1] & IEEE80211_HTOP1_OBSS_NONHT_STA)
printf(",non-HT STA");
htopinfo[3] = data[4];
if (htopinfo[3] & IEEE80211_HTOP2_DUALBEACON)
printf(",dualbeacon");
if (htopinfo[3] & IEEE80211_HTOP2_DUALCTSPROT)
printf(",dualctsprot");
htopinfo[4] = data[5];
if ((htopinfo[4] << 8) & IEEE80211_HTOP2_STBCBEACON)
printf(",STBC beacon");
if ((htopinfo[4] << 8) & IEEE80211_HTOP2_LSIGTXOP)
printf(",lsigtxprot");
if ((htopinfo[4] << 8) & IEEE80211_HTOP2_PCOACTIVE) {
if ((htopinfo[4] << 8) & IEEE80211_HTOP2_PCOPHASE40)
printf(",pco40MHz");
else
printf(",pco20MHz");
}
memcpy(basic_mcs, &data[6], sizeof(basic_mcs));
printf(",basic MCS set 0x");
for (i = 0; i < sizeof(basic_mcs) / sizeof(basic_mcs[0]); i++)
printf("%x", basic_mcs[i]);
printf(">");
}
void
print_vht_mcsmap(uint16_t mcsmap)
{
int nss, mcs;
for (nss = 1; nss < IEEE80211_VHT_NUM_SS; nss++) {
mcs = (mcsmap & IEEE80211_VHT_MCS_FOR_SS_MASK(nss)) >>
IEEE80211_VHT_MCS_FOR_SS_SHIFT(nss);
switch (mcs) {
case IEEE80211_VHT_MCS_0_9:
printf(" 0-9@%uSS", nss);
break;
case IEEE80211_VHT_MCS_0_8:
printf(" 0-8@%uSS", nss);
break;
case IEEE80211_VHT_MCS_0_7:
printf(" 0-7@%uSS", nss);
break;
case IEEE80211_VHT_MCS_SS_NOT_SUPP:
default:
break;
}
}
}
void
ieee80211_print_vhtcaps(u_int8_t *data, u_int len)
{
uint32_t vhtcaps;
uint16_t rxmcs, txmcs, max_lgi;
uint32_t rxstbc, num_sts, max_ampdu, link_adapt;
if (len < 12) {
ieee80211_print_element(data, len);
return;
}
vhtcaps = (data[0] | (data[1] << 8) | data[2] << 16 |
data[3] << 24);
printf("=<");
switch (vhtcaps & IEEE80211_VHTCAP_MAX_MPDU_LENGTH_MASK) {
case IEEE80211_VHTCAP_MAX_MPDU_LENGTH_11454:
printf("max MPDU 11454");
break;
case IEEE80211_VHTCAP_MAX_MPDU_LENGTH_7991:
printf("max MPDU 7991");
break;
case IEEE80211_VHTCAP_MAX_MPDU_LENGTH_3895:
default:
printf("max MPDU 3895");
break;
}
switch ((vhtcaps & IEEE80211_VHTCAP_CHAN_WIDTH_MASK) <<
IEEE80211_VHTCAP_CHAN_WIDTH_SHIFT) {
case IEEE80211_VHTCAP_CHAN_WIDTH_160_8080:
printf(",80+80MHz");
case IEEE80211_VHTCAP_CHAN_WIDTH_160:
printf(",160MHz");
case IEEE80211_VHTCAP_CHAN_WIDTH_80:
default:
printf(",80MHz");
break;
}
if (vhtcaps & IEEE80211_VHTCAP_RX_LDPC)
printf(",LDPC");
if (vhtcaps & IEEE80211_VHTCAP_SGI80)
printf(",SGI@80MHz");
if (vhtcaps & IEEE80211_VHTCAP_SGI160)
printf(",SGI@160MHz");
if (vhtcaps & IEEE80211_VHTCAP_TX_STBC)
printf(",TxSTBC");
rxstbc = (vhtcaps & IEEE80211_VHTCAP_RX_STBC_SS_MASK)
>> IEEE80211_VHTCAP_RX_STBC_SS_SHIFT;
if (rxstbc > 0 && rxstbc <= 7)
printf(",RxSTBC %d stream", rxstbc);
if (vhtcaps & IEEE80211_VHTCAP_SU_BEAMFORMER) {
printf(",beamformer");
num_sts = ((vhtcaps & IEEE80211_VHTCAP_NUM_STS_MASK) >>
IEEE80211_VHTCAP_NUM_STS_SHIFT);
if (num_sts)
printf(" STS %u", num_sts);
}
if (vhtcaps & IEEE80211_VHTCAP_SU_BEAMFORMEE) {
printf(",beamformee");
num_sts = ((vhtcaps & IEEE80211_VHTCAP_BEAMFORMEE_STS_MASK) >>
IEEE80211_VHTCAP_BEAMFORMEE_STS_SHIFT);
if (num_sts)
printf(" STS %u", num_sts);
}
if (vhtcaps & IEEE80211_VHTCAP_TXOP_PS)
printf(",TXOP PS");
if (vhtcaps & IEEE80211_VHTCAP_HTC_VHT)
printf(",+HTC VHT");
max_ampdu = ((vhtcaps & IEEE80211_VHTCAP_MAX_AMPDU_LEN_MASK) >>
IEEE80211_VHTCAP_MAX_AMPDU_LEN_SHIFT);
if (max_ampdu >= IEEE80211_VHTCAP_MAX_AMPDU_LEN_8K &&
max_ampdu <= IEEE80211_VHTCAP_MAX_AMPDU_LEN_1024K)
printf(",max A-MPDU %uK", (1 << (max_ampdu + 3)));
link_adapt = ((vhtcaps & IEEE80211_VHTCAP_LINK_ADAPT_MASK) >>
IEEE80211_VHTCAP_LINK_ADAPT_SHIFT);
if (link_adapt == IEEE80211_VHTCAP_LINK_ADAPT_UNSOL_MFB)
printf(",linkadapt unsolicited MFB");
else if (link_adapt == IEEE80211_VHTCAP_LINK_ADAPT_MRQ_MFB)
printf(",linkadapt MRQ MFB");
if (vhtcaps & IEEE80211_VHTCAP_RX_ANT_PATTERN)
printf(",Rx ant pattern consistent");
if (vhtcaps & IEEE80211_VHTCAP_TX_ANT_PATTERN)
printf(",Tx ant pattern consistent");
rxmcs = (data[4] | (data[5] << 8));
printf(",RxMCS");
print_vht_mcsmap(rxmcs);
max_lgi = ((data[6] | (data[7] << 8)) &
IEEE80211_VHT_MAX_LGI_MBIT_S_MASK);
if (max_lgi)
printf(",Rx max LGI rate %uMbit/s", max_lgi);
txmcs = (data[8] | (data[9] << 8));
printf(",TxMCS");
print_vht_mcsmap(txmcs);
max_lgi = ((data[6] | (data[7] << 8)) &
IEEE80211_VHT_MAX_LGI_MBIT_S_MASK);
if (max_lgi)
printf(",Tx max LGI rate %uMbit/s", max_lgi);
printf(">");
}
void
ieee80211_print_vhtop(u_int8_t *data, u_int len)
{
u_int8_t chan_width, freq_idx0, freq_idx1;
uint16_t basic_mcs;
if (len < 5) {
ieee80211_print_element(data, len);
return;
}
chan_width = data[0];
printf("=<");
switch (chan_width) {
case IEEE80211_VHTOP0_CHAN_WIDTH_8080:
printf("80+80MHz chan");
break;
case IEEE80211_VHTOP0_CHAN_WIDTH_160:
printf("160MHz chan");
break;
case IEEE80211_VHTOP0_CHAN_WIDTH_80:
printf("80MHz chan");
break;
case IEEE80211_VHTOP0_CHAN_WIDTH_HT:
default:
printf("using HT chan width");
break;
}
freq_idx0 = data[1];
if (freq_idx0)
printf(",center chan %u", freq_idx0);
freq_idx1 = data[2];
if (freq_idx1)
printf(",second center chan %u", freq_idx1);
basic_mcs = (data[3] | data[4] << 8);
printf(",basic MCS set");
print_vht_mcsmap(basic_mcs);
printf(">");
}
void
ieee80211_print_rsncipher(uint8_t selector[4])
{
if (memcmp(selector, MICROSOFT_OUI, 3) != 0 &&
memcmp(selector, IEEE80211_OUI, 3) != 0) {
printf("0x%x%x%x%x", selector[0], selector[1], selector[2],
selector[3]);
return;
}
switch (selector[3]) {
case 0:
printf("usegroup");
break;
case 1:
printf("wep40");
break;
case 2:
printf("tkip");
break;
case 4:
printf("ccmp");
break;
case 5:
printf("wep104");
break;
case 6:
printf("bip");
break;
default:
printf("%d", selector[3]);
break;
}
}
void
ieee80211_print_akm(uint8_t selector[4])
{
if (memcmp(selector, MICROSOFT_OUI, 3) != 0 &&
memcmp(selector, IEEE80211_OUI, 3) != 0) {
printf("0x%x%x%x%x", selector[0], selector[1], selector[2],
selector[3]);
return;
}
switch (selector[3]) {
case 1:
printf("802.1x");
break;
case 2:
printf("PSK");
break;
case 5:
printf("SHA256-802.1x");
break;
case 6:
printf("SHA256-PSK");
break;
case 8:
printf("SAE");
break;
default:
printf("%d", selector[3]);
break;
}
}
void
ieee80211_print_rsn(u_int8_t *data, u_int len)
{
uint16_t version, nciphers, nakms, rsncap, npmk;
int i, j;
uint8_t selector[4];
if (len < 2) {
ieee80211_print_element(data, len);
return;
}
version = (data[0]) | (data[1] << 8);
printf("=<version %d", version);
if (len < 6) {
printf(">");
return;
}
data += 2;
printf(",groupcipher ");
for (i = 0; i < 4; i++)
selector[i] = data[i];
ieee80211_print_rsncipher(selector);
if (len < 8) {
printf(">");
return;
}
data += 4;
nciphers = (data[0]) | ((data[1]) << 8);
data += 2;
if (len < 8 + (nciphers * 4)) {
printf(">");
return;
}
printf(",cipher%s ", nciphers > 1 ? "s" : "");
for (i = 0; i < nciphers; i++) {
for (j = 0; j < 4; j++)
selector[j] = data[j];
ieee80211_print_rsncipher(selector);
if (i < nciphers - 1)
printf(" ");
data += 4;
}
if (len < 8 + (nciphers * 4) + 2) {
printf(">");
return;
}
nakms = (data[0]) | ((data[1]) << 8);
data += 2;
if (len < 8 + (nciphers * 4) + 2 + (nakms * 4)) {
printf(">");
return;
}
printf(",akm%s ", nakms > 1 ? "s" : "");
for (i = 0; i < nakms; i++) {
for (j = 0; j < 4; j++)
selector[j] = data[j];
ieee80211_print_akm(selector);
if (i < nakms - 1)
printf(" ");
data += 4;
}
if (len < 8 + (nciphers * 4) + 2 + (nakms * 4) + 2) {
printf(">");
return;
}
rsncap = (data[0]) | ((data[1]) << 8);
printf(",rsncap 0x%x", rsncap);
data += 2;
if (len < 8 + (nciphers * 4) + 2 + (nakms * 4) + 2 + 2) {
printf(">");
return;
}
npmk = (data[0]) | ((data[1]) << 8);
data += 2;
if (len < 8 + (nciphers * 4) + 2 + (nakms * 4) + 2 + 2 +
(npmk * IEEE80211_PMKID_LEN)) {
printf(">");
return;
}
if (npmk >= 1)
printf(",pmkid%s ", npmk > 1 ? "s" : "");
for (i = 0; i < npmk; i++) {
printf("0x");
for (j = 0; j < IEEE80211_PMKID_LEN; j++)
printf("%x", data[j]);
if (i < npmk - 1)
printf(" ");
data += IEEE80211_PMKID_LEN;
}
if (len < 8 + (nciphers * 4) + 2 + (nakms * 4) + 2 + 2 +
(npmk * IEEE80211_PMKID_LEN) + 4) {
printf(">");
return;
}
printf(",integrity-groupcipher ");
for (i = 0; i < 4; i++)
selector[i] = data[i];
ieee80211_print_rsncipher(selector);
printf(">");
}
int
ieee80211_print_beacon(struct ieee80211_frame *wh, u_int len)
{
uint64_t tstamp;
uint16_t bintval, capinfo;
uint8_t *frm;
if (len < sizeof(tstamp) + sizeof(bintval) + sizeof(capinfo))
return 1;
frm = (u_int8_t *)&wh[1];
bcopy(frm, &tstamp, sizeof(u_int64_t));
frm += 8;
if (vflag > 1)
printf(", timestamp %llu", letoh64(tstamp));
bcopy(frm, &bintval, sizeof(u_int16_t));
frm += 2;
if (vflag > 1)
printf(", interval %u", letoh16(bintval));
bcopy(frm, &capinfo, sizeof(u_int16_t));
frm += 2;
if (vflag)
printb(", caps", letoh16(capinfo), IEEE80211_CAPINFO_BITS);
return ieee80211_print_elements(frm);
}
int
ieee80211_print_assocreq(struct ieee80211_frame *wh, u_int len)
{
uint8_t subtype;
uint16_t capinfo, lintval;
uint8_t *frm;
subtype = wh->i_fc[0] & IEEE80211_FC0_SUBTYPE_MASK;
if (len < sizeof(capinfo) + sizeof(lintval) +
(subtype == IEEE80211_FC0_SUBTYPE_REASSOC_REQ ?
IEEE80211_ADDR_LEN : 0))
return 1;
frm = (u_int8_t *)&wh[1];
bcopy(frm, &capinfo, sizeof(u_int16_t));
frm += 2;
if (vflag)
printb(", caps", letoh16(capinfo), IEEE80211_CAPINFO_BITS);
bcopy(frm, &lintval, sizeof(u_int16_t));
frm += 2;
if (vflag > 1)
printf(", listen interval %u", letoh16(lintval));
if (subtype == IEEE80211_FC0_SUBTYPE_REASSOC_REQ) {
if (vflag)
printf(", AP %s", etheraddr_string(frm));
frm += IEEE80211_ADDR_LEN;
}
return ieee80211_print_elements(frm);
}
int
ieee80211_print_elements(uint8_t *frm)
{
int i;
while (TTEST2(*frm, 2)) {
u_int len = frm[1];
u_int8_t *data = frm + 2;
if (!TTEST2(*data, len))
break;
#define ELEM_CHECK(l) if (len != l) goto trunc
switch (*frm) {
case IEEE80211_ELEMID_SSID:
printf(", ssid");
ieee80211_print_essid(data, len);
break;
case IEEE80211_ELEMID_RATES:
printf(", rates");
if (!vflag)
break;
for (i = len; i > 0; i--, data++)
printf(" %uM%s",
(data[0] & IEEE80211_RATE_VAL) / 2,
(data[0] & IEEE80211_RATE_BASIC
? "*" : ""));
break;
case IEEE80211_ELEMID_FHPARMS:
ELEM_CHECK(5);
printf(", fh (dwell %u, chan %u, index %u)",
(data[1] << 8) | data[0],
(data[2] - 1) * 80 + data[3],
data[4]);
break;
case IEEE80211_ELEMID_DSPARMS:
ELEM_CHECK(1);
printf(", ds");
if (vflag)
printf(" (chan %u)", data[0]);
break;
case IEEE80211_ELEMID_CFPARMS:
printf(", cf");
if (vflag)
ieee80211_print_element(data, len);
break;
case IEEE80211_ELEMID_TIM:
printf(", tim");
if (vflag)
ieee80211_print_element(data, len);
break;
case IEEE80211_ELEMID_IBSSPARMS:
printf(", ibss");
if (vflag)
ieee80211_print_element(data, len);
break;
case IEEE80211_ELEMID_COUNTRY:
printf(", country");
if (vflag)
ieee80211_print_country(data, len);
break;
case IEEE80211_ELEMID_CHALLENGE:
printf(", challenge");
if (vflag)
ieee80211_print_element(data, len);
break;
case IEEE80211_ELEMID_CSA:
ELEM_CHECK(3);
printf(", csa (chan %u count %u%s)", data[1], data[2],
(data[0] == 1) ? " noTX" : "");
break;
case IEEE80211_ELEMID_ERP:
printf(", erp");
if (vflag)
ieee80211_print_element(data, len);
break;
case IEEE80211_ELEMID_RSN:
printf(", rsn");
if (vflag)
ieee80211_print_rsn(data, len);
break;
case IEEE80211_ELEMID_XRATES:
printf(", xrates");
if (!vflag)
break;
for (i = len; i > 0; i--, data++)
printf(" %uM",
(data[0] & IEEE80211_RATE_VAL) / 2);
break;
case IEEE80211_ELEMID_TPC_REPORT:
printf(", tpcreport");
if (vflag)
ieee80211_print_element(data, len);
break;
case IEEE80211_ELEMID_TPC_REQUEST:
printf(", tpcrequest");
if (vflag)
ieee80211_print_element(data, len);
break;
case IEEE80211_ELEMID_HTCAPS:
printf(", htcaps");
if (vflag)
ieee80211_print_htcaps(data, len);
break;
case IEEE80211_ELEMID_HTOP:
printf(", htop");
if (vflag)
ieee80211_print_htop(data, len);
break;
case IEEE80211_ELEMID_VHTCAPS:
printf(", vhtcaps");
if (vflag)
ieee80211_print_vhtcaps(data, len);
break;
case IEEE80211_ELEMID_VHTOP:
printf(", vhtop");
if (vflag)
ieee80211_print_vhtop(data, len);
break;
case IEEE80211_ELEMID_POWER_CONSTRAINT:
ELEM_CHECK(1);
printf(", power constraint %udB", data[0]);
break;
case IEEE80211_ELEMID_QBSS_LOAD:
ELEM_CHECK(5);
printf(", %u stations, %d%% utilization, "
"admission capacity %uus/s",
(data[0] | data[1] << 8),
(data[2] * 100) / 255,
(data[3] | data[4] << 8) / 32);
break;
case IEEE80211_ELEMID_VENDOR:
printf(", vendor");
if (vflag)
ieee80211_print_element(data, len);
break;
default:
printf(", %u:%u", (u_int) *frm, len);
if (vflag)
ieee80211_print_element(data, len);
break;
}
frm += len + 2;
if (frm >= snapend)
break;
}
#undef ELEM_CHECK
return (0);
trunc:
return (1);
}
int
ieee80211_frame(struct ieee80211_frame *wh, u_int len)
{
u_int8_t subtype, type, *frm;
TCARR(wh->i_fc);
type = wh->i_fc[0] & IEEE80211_FC0_TYPE_MASK;
subtype = wh->i_fc[0] & IEEE80211_FC0_SUBTYPE_MASK;
frm = (u_int8_t *)&wh[1];
if (vflag)
printb(" flags", wh->i_fc[1], IEEE80211_FC1_BITS);
switch (type) {
case IEEE80211_FC0_TYPE_DATA:
printf(": %s: ", ieee80211_data_subtype_name[
subtype >> IEEE80211_FC0_SUBTYPE_SHIFT]);
ieee80211_data(wh, len);
break;
case IEEE80211_FC0_TYPE_MGT:
printf(": %s", ieee80211_mgt_subtype_name[
subtype >> IEEE80211_FC0_SUBTYPE_SHIFT]);
switch (subtype) {
case IEEE80211_FC0_SUBTYPE_BEACON:
case IEEE80211_FC0_SUBTYPE_PROBE_RESP:
if (ieee80211_print_beacon(wh, len) != 0)
goto trunc;
break;
case IEEE80211_FC0_SUBTYPE_ASSOC_REQ:
case IEEE80211_FC0_SUBTYPE_REASSOC_REQ:
if (ieee80211_print_assocreq(wh, len) != 0)
goto trunc;
break;
case IEEE80211_FC0_SUBTYPE_AUTH:
TCHECK2(*frm, 2);
switch (IEEE80211_AUTH_ALGORITHM(frm)) {
case IEEE80211_AUTH_ALG_OPEN:
TCHECK2(*frm, 4);
switch (IEEE80211_AUTH_TRANSACTION(frm)) {
case IEEE80211_AUTH_OPEN_REQUEST:
printf(" request");
break;
case IEEE80211_AUTH_OPEN_RESPONSE:
printf(" response");
break;
}
break;
case IEEE80211_AUTH_ALG_SHARED:
TCHECK2(*frm, 4);
switch (IEEE80211_AUTH_TRANSACTION(frm)) {
case IEEE80211_AUTH_SHARED_REQUEST:
printf(" request");
break;
case IEEE80211_AUTH_SHARED_CHALLENGE:
printf(" challenge");
break;
case IEEE80211_AUTH_SHARED_RESPONSE:
printf(" response");
break;
case IEEE80211_AUTH_SHARED_PASS:
printf(" pass");
break;
}
break;
case IEEE80211_AUTH_ALG_LEAP:
printf(" (leap)");
break;
}
break;
case IEEE80211_FC0_SUBTYPE_DEAUTH:
case IEEE80211_FC0_SUBTYPE_DISASSOC:
TCHECK2(*frm, 2);
ieee80211_reason(frm[0] | (frm[1] << 8));
break;
}
break;
case IEEE80211_FC0_TYPE_CTL: {
u_int8_t *t = (u_int8_t *) wh;
printf(": %s", ieee80211_ctl_subtype_name[
subtype >> IEEE80211_FC0_SUBTYPE_SHIFT]);
if (!vflag)
break;
t += 2;
switch (subtype) {
case IEEE80211_FC0_SUBTYPE_RTS:
case IEEE80211_FC0_SUBTYPE_BAR:
case IEEE80211_FC0_SUBTYPE_BA:
TCHECK2(*t, 2);
printf(", duration %dus", (t[0] | t[1] << 8));
t += 2;
TCHECK2(*t, 6);
printf(", ra %s", etheraddr_string(t));
t += 6;
TCHECK2(*t, 6);
printf(", ta %s", etheraddr_string(t));
if (subtype == IEEE80211_FC0_SUBTYPE_BAR ||
subtype == IEEE80211_FC0_SUBTYPE_BA) {
u_int16_t ctrl;
t += 6;
TCHECK2(*t, 2);
ctrl = t[0] | (t[1] << 8);
if (ctrl & IEEE80211_BA_ACK_POLICY)
printf(", no ack");
else
printf(", normal ack");
if ((ctrl & IEEE80211_BA_MULTI_TID) == 0 &&
(ctrl & IEEE80211_BA_COMPRESSED) == 0)
printf(", basic variant");
else if ((ctrl & IEEE80211_BA_MULTI_TID) &&
(ctrl & IEEE80211_BA_COMPRESSED))
printf(", multi-tid variant");
else if (ctrl & IEEE80211_BA_COMPRESSED)
printf(", compressed variant");
}
break;
case IEEE80211_FC0_SUBTYPE_CTS:
case IEEE80211_FC0_SUBTYPE_ACK:
TCHECK2(*t, 2);
printf(", duration %dus", (t[0] | t[1] << 8));
t += 2;
TCHECK2(*t, 6);
printf(", ra %s", etheraddr_string(t));
break;
case IEEE80211_FC0_SUBTYPE_PS_POLL:
TCHECK2(*t, 2);
printf(", aid 0x%x", (t[0] | t[1] << 8));
t += 2;
TCHECK2(*t, 6);
printf(", ra %s", etheraddr_string(t));
t += 6;
TCHECK2(*t, 6);
printf(", ta %s", etheraddr_string(t));
break;
}
break;
}
default:
printf(": type#%d", type);
break;
}
return (0);
trunc:
return (1);
}
u_int
ieee80211_any2ieee(u_int freq, u_int flags)
{
if (flags & IEEE80211_CHAN_2GHZ) {
if (freq == 2484)
return 14;
if (freq < 2484)
return (freq - 2407) / 5;
else
return 15 + ((freq - 2512) / 20);
} else if (flags & IEEE80211_CHAN_5GHZ) {
return (freq - 5000) / 5;
} else {
return (freq);
}
}
int
ieee80211_print(struct ieee80211_frame *wh, u_int len)
{
if (eflag)
if (ieee80211_hdr(wh))
return (1);
printf("802.11");
return (ieee80211_frame(wh, len));
}
void
ieee802_11_if_print(u_char *user, const struct pcap_pkthdr *h,
const u_char *p)
{
struct ieee80211_frame *wh = (struct ieee80211_frame*)p;
if (!ieee80211_encap)
ts_print(&h->ts);
packetp = p;
snapend = p + h->caplen;
if (ieee80211_print(wh, (u_int)h->len) != 0)
printf("[|802.11]");
if (!ieee80211_encap) {
if (xflag)
default_print(p, (u_int)h->len);
putchar('\n');
}
}
void
ieee802_11_radio_if_print(u_char *user, const struct pcap_pkthdr *h,
const u_char *p)
{
struct ieee80211_radiotap_header *rh =
(struct ieee80211_radiotap_header*)p;
struct ieee80211_frame *wh;
u_int8_t *t;
u_int32_t present;
u_int len, rh_len;
u_int16_t tmp;
if (!ieee80211_encap)
ts_print(&h->ts);
packetp = p;
snapend = p + h->caplen;
TCHECK(*rh);
len = h->len;
rh_len = letoh16(rh->it_len);
if (rh->it_version != 0) {
printf("[?radiotap + 802.11 v:%u]", rh->it_version);
goto out;
}
wh = (struct ieee80211_frame *)(p + rh_len);
if (len <= rh_len || ieee80211_print(wh, len - rh_len))
printf("[|802.11]");
t = (u_int8_t*)p + sizeof(struct ieee80211_radiotap_header);
if ((present = letoh32(rh->it_present)) == 0)
goto out;
printf(", <radiotap v%u", rh->it_version);
#define RADIOTAP(_x) \
(present & (1 << IEEE80211_RADIOTAP_##_x))
if (RADIOTAP(TSFT)) {
u_int64_t tsf;
TCHECK2(*t, 8);
bcopy(t, &tsf, sizeof(u_int64_t));
if (vflag > 1)
printf(", tsf %llu", letoh64(tsf));
t += 8;
}
if (RADIOTAP(FLAGS)) {
u_int8_t flags = *(u_int8_t*)t;
TCHECK2(*t, 1);
if (flags & IEEE80211_RADIOTAP_F_CFP)
printf(", CFP");
if (flags & IEEE80211_RADIOTAP_F_SHORTPRE)
printf(", SHORTPRE");
if (flags & IEEE80211_RADIOTAP_F_WEP)
printf(", WEP");
if (flags & IEEE80211_RADIOTAP_F_FRAG)
printf(", FRAG");
t += 1;
}
if (RADIOTAP(RATE)) {
TCHECK2(*t, 1);
if (vflag) {
uint8_t rate = *(u_int8_t*)t;
if (rate & 0x80)
printf(", MCS %u", rate & 0x7f);
else
printf(", %uMbit/s", rate / 2);
}
t += 1;
}
if (RADIOTAP(CHANNEL)) {
u_int16_t freq, flags;
TCHECK2(*t, 2);
bcopy(t, &freq, sizeof(u_int16_t));
freq = letoh16(freq);
t += 2;
TCHECK2(*t, 2);
bcopy(t, &flags, sizeof(u_int16_t));
flags = letoh16(flags);
t += 2;
printf(", chan %u", ieee80211_any2ieee(freq, flags));
if (flags & IEEE80211_CHAN_HT)
printf(", 11n");
else if (flags & IEEE80211_CHAN_DYN &&
flags & IEEE80211_CHAN_2GHZ)
printf(", 11g");
else if (flags & IEEE80211_CHAN_CCK &&
flags & IEEE80211_CHAN_2GHZ)
printf(", 11b");
else if (flags & IEEE80211_CHAN_OFDM &&
flags & IEEE80211_CHAN_2GHZ)
printf(", 11G");
else if (flags & IEEE80211_CHAN_OFDM &&
flags & IEEE80211_CHAN_5GHZ)
printf(", 11a");
if (flags & IEEE80211_CHAN_XR)
printf(", XR");
}
if (RADIOTAP(FHSS)) {
TCHECK2(*t, 2);
printf(", fhss %u/%u", *(u_int8_t*)t, *(u_int8_t*)t + 1);
t += 2;
}
if (RADIOTAP(DBM_ANTSIGNAL)) {
TCHECK(*t);
printf(", sig %ddBm", *(int8_t*)t);
t += 1;
}
if (RADIOTAP(DBM_ANTNOISE)) {
TCHECK(*t);
printf(", noise %ddBm", *(int8_t*)t);
t += 1;
}
if (RADIOTAP(LOCK_QUALITY)) {
TCHECK2(*t, 2);
if (vflag) {
bcopy(t, &tmp, sizeof(u_int16_t));
printf(", quality %u", letoh16(tmp));
}
t += 2;
}
if (RADIOTAP(TX_ATTENUATION)) {
TCHECK2(*t, 2);
if (vflag) {
bcopy(t, &tmp, sizeof(u_int16_t));
printf(", txatt %u", letoh16(tmp));
}
t += 2;
}
if (RADIOTAP(DB_TX_ATTENUATION)) {
TCHECK2(*t, 2);
if (vflag) {
bcopy(t, &tmp, sizeof(u_int16_t));
printf(", txatt %udB", letoh16(tmp));
}
t += 2;
}
if (RADIOTAP(DBM_TX_POWER)) {
TCHECK(*t);
printf(", txpower %ddBm", *(int8_t*)t);
t += 1;
}
if (RADIOTAP(ANTENNA)) {
TCHECK(*t);
if (vflag)
printf(", antenna %u", *(u_int8_t*)t);
t += 1;
}
if (RADIOTAP(DB_ANTSIGNAL)) {
TCHECK(*t);
printf(", signal %udB", *(u_int8_t*)t);
t += 1;
}
if (RADIOTAP(DB_ANTNOISE)) {
TCHECK(*t);
printf(", noise %udB", *(u_int8_t*)t);
t += 1;
}
if (RADIOTAP(FCS)) {
TCHECK2(*t, 4);
if (vflag) {
u_int32_t fcs;
bcopy(t, &fcs, sizeof(u_int32_t));
printf(", fcs %08x", letoh32(fcs));
}
t += 4;
}
if (RADIOTAP(RSSI)) {
u_int8_t rssi, max_rssi;
TCHECK(*t);
rssi = *(u_int8_t*)t;
t += 1;
TCHECK(*t);
max_rssi = *(u_int8_t*)t;
t += 1;
printf(", rssi %u/%u", rssi, max_rssi);
}
#undef RADIOTAP
putchar('>');
goto out;
trunc:
printf("[|radiotap + 802.11]");
out:
if (!ieee80211_encap) {
if (xflag)
default_print(p, h->len);
putchar('\n');
}
}
void
ieee80211_reason(u_int16_t reason)
{
if (!vflag)
return;
switch (reason) {
case IEEE80211_REASON_UNSPECIFIED:
printf(", unspecified failure");
break;
case IEEE80211_REASON_AUTH_EXPIRE:
printf(", authentication expired");
break;
case IEEE80211_REASON_AUTH_LEAVE:
printf(", deauth - station left");
break;
case IEEE80211_REASON_ASSOC_EXPIRE:
printf(", association expired");
break;
case IEEE80211_REASON_ASSOC_TOOMANY:
printf(", too many associated stations");
break;
case IEEE80211_REASON_NOT_AUTHED:
printf(", not authenticated");
break;
case IEEE80211_REASON_NOT_ASSOCED:
printf(", not associated");
break;
case IEEE80211_REASON_ASSOC_LEAVE:
printf(", disassociated - station left");
break;
case IEEE80211_REASON_ASSOC_NOT_AUTHED:
printf(", association but not authenticated");
break;
case IEEE80211_REASON_RSN_REQUIRED:
printf(", rsn required");
break;
case IEEE80211_REASON_RSN_INCONSISTENT:
printf(", rsn inconsistent");
break;
case IEEE80211_REASON_IE_INVALID:
printf(", ie invalid");
break;
case IEEE80211_REASON_MIC_FAILURE:
printf(", mic failure");
break;
default:
printf(", unknown reason %u", reason);
}
}
