diff options
author | Mathy Vanhoef <Mathy.Vanhoef@kuleuven.be> | 2020-10-19 19:01:13 +0300 |
---|---|---|
committer | Johannes Berg <johannes.berg@intel.com> | 2020-10-30 12:03:24 +0300 |
commit | 804fc6a2931e692f50e8e317fcb0c8887331b405 (patch) | |
tree | cca11e06b25076b2f6ebb3e9c482b451bf3afc38 /net/wireless/core.c | |
parent | 07e0887302450a62f51dba72df6afb5fabb23d1c (diff) | |
download | linux-804fc6a2931e692f50e8e317fcb0c8887331b405.tar.xz |
mac80211: fix regression where EAPOL frames were sent in plaintext
When sending EAPOL frames via NL80211 they are treated as injected
frames in mac80211. Due to commit 1df2bdba528b ("mac80211: never drop
injected frames even if normally not allowed") these injected frames
were not assigned a sta context in the function ieee80211_tx_dequeue,
causing certain wireless network cards to always send EAPOL frames in
plaintext. This may cause compatibility issues with some clients or
APs, which for instance can cause the group key handshake to fail and
in turn would cause the station to get disconnected.
This commit fixes this regression by assigning a sta context in
ieee80211_tx_dequeue to injected frames as well.
Note that sending EAPOL frames in plaintext is not a security issue
since they contain their own encryption and authentication protection.
Cc: stable@vger.kernel.org
Fixes: 1df2bdba528b ("mac80211: never drop injected frames even if normally not allowed")
Reported-by: Thomas Deutschmann <whissi@gentoo.org>
Tested-by: Christian Hesse <list@eworm.de>
Tested-by: Thomas Deutschmann <whissi@gentoo.org>
Signed-off-by: Mathy Vanhoef <Mathy.Vanhoef@kuleuven.be>
Link: https://lore.kernel.org/r/20201019160113.350912-1-Mathy.Vanhoef@kuleuven.be
Signed-off-by: Johannes Berg <johannes.berg@intel.com>
Diffstat (limited to 'net/wireless/core.c')
0 files changed, 0 insertions, 0 deletions