[OpenWrt-Devel] [PATCH 2/3] hosap: Add ibss-key-mgt patch from upstream.

greearb at candelatech.com greearb at candelatech.com
Thu Jan 19 18:14:34 EST 2017


From: Ben Greear <greearb at candelatech.com>

Signed-off-by: Ben Greear <greearb at candelatech.com>
---
 ...fix-tk-clearing-on-athentication-frame-rx.patch | 42 ++++++++++++++++++++++
 1 file changed, 42 insertions(+)
 create mode 100644 network/services/hostapd/patches/900-fix-tk-clearing-on-athentication-frame-rx.patch

diff --git a/network/services/hostapd/patches/900-fix-tk-clearing-on-athentication-frame-rx.patch b/network/services/hostapd/patches/900-fix-tk-clearing-on-athentication-frame-rx.patch
new file mode 100644
index 0000000..a148640
--- /dev/null
+++ b/network/services/hostapd/patches/900-fix-tk-clearing-on-athentication-frame-rx.patch
@@ -0,0 +1,42 @@
+[PATCH] RSN IBSS: Fix TK clearing on Authentication frame RX
+
+When wpa_supplicant was processing a received Authentication frame (seq
+1) from a peer STA for which there was already a TK configured to the
+driver, debug log claimed that the PTK gets cleared, but the actual
+call to clear the key was actually dropped due to AUTH vs. SUPP set_key
+selection. Fix this by explicitly clearing the TK in case it was set
+and an Authentication frame (seq 1) is received.
+
+This fixes some cases where EAPOL-Key frames were sent encrypted using
+the old key when a peer STA restarted itself and lost the key and had to
+re-join the IBSS. Previously, that state required timing out the 4-way
+handshake and Deauthentication frame exchange to recover.
+
+Signed-off-by: Jouni Malinen <j at w1.fi>
+---
+ wpa_supplicant/ibss_rsn.c | 12 ++++++++++++
+ 1 file changed, 12 insertions(+)
+
+diff --git a/wpa_supplicant/ibss_rsn.c b/wpa_supplicant/ibss_rsn.c
+index 53d7d57..c29d8d3 100644
+--- a/wpa_supplicant/ibss_rsn.c
++++ b/wpa_supplicant/ibss_rsn.c
+@@ -832,6 +832,18 @@
+ 		   MAC2STR(addr));
+ 
+ 	if (peer &&
++        peer->authentication_status & (IBSS_RSN_SET_PTK_SUPP |
++                       IBSS_RSN_SET_PTK_AUTH)) {
++        /* Clear the TK for this pair to allow recovery from the case
++         * where the peer STA has restarted and lost its key while we
++         * still have a pairwise key configured. */
++        wpa_printf(MSG_DEBUG, "RSN: Clear pairwise key for peer "
++               MACSTR, MAC2STR(addr));
++        wpa_drv_set_key(ibss_rsn->wpa_s, WPA_ALG_NONE, addr, 0, 0,
++                NULL, 0, NULL, 0);
++    }
++
++	if (peer && 
+ 	    peer->authentication_status & IBSS_RSN_AUTH_EAPOL_BY_PEER) {
+ 		if (peer->own_auth_tx.sec) {
+ 			struct os_reltime now, diff;
-- 
2.4.11
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel


More information about the openwrt-devel mailing list