mirror of
https://git.kernel.org/pub/scm/network/wireless/iwd.git
synced 2024-11-26 10:39:23 +01:00
sae: don't send commit/confirm in confirmed state
This works around a hostapd bug (described more in the TODO comment) which is exposed because of the kernels overly agressive re-transmit behavior on missed ACKs. Combined this results in a death if the initial commit is not acked. This behavior has been identified in consumer access points and likely won't ever be patched for older devices. Because of this IWD must work around the problem which can be eliminated by not sending out this commit message. This bug was reported to the hostapd ML: https://lists.infradead.org/pipermail/hostap/2021-September/039842.html This change should not cause any compatibility problems to non-hostapd access points and is identical to how wpa_supplicant treats this scenario.
This commit is contained in:
parent
f78ea26f13
commit
7e9b4170b1
25
src/sae.c
25
src/sae.c
@ -1158,6 +1158,31 @@ static int sae_verify_confirmed(struct sae_sm *sm, uint16_t trans,
|
|||||||
if (l_get_le16(frame) != sm->group)
|
if (l_get_le16(frame) != sm->group)
|
||||||
return -EBADMSG;
|
return -EBADMSG;
|
||||||
|
|
||||||
|
/*
|
||||||
|
* Because of kernel retransmit behavior on missed ACKs plus hostapd's
|
||||||
|
* incorrect handling of confirm packets while in accepted state the
|
||||||
|
* following can happen:
|
||||||
|
*
|
||||||
|
* 1. Client sends commit, not acked (committed state)
|
||||||
|
* 2. AP receives commit, sends commit reply (committed state)
|
||||||
|
* 3. Client retransmits original commit
|
||||||
|
* 4. Client receives AP's commit, sends confirm (confirmed state)
|
||||||
|
* 5. AP receives clients retransmitted commit, sends only commit
|
||||||
|
* 6. AP receives clients confirm and accepts (accepted state)
|
||||||
|
* 7. Client receives AP's commit and sends both commit + confirm
|
||||||
|
* (the code below).
|
||||||
|
* 8. AP receives clients commit while in accepted state, and deauths
|
||||||
|
*
|
||||||
|
* Due to this, any commit received while in a confirmed state will be
|
||||||
|
* ignored by IWD since it is probably caused by this retransmission
|
||||||
|
* and sending the commit/confirm below would likely cause hostapd to
|
||||||
|
* deauth us.
|
||||||
|
*
|
||||||
|
* As for non-sta (currently not used) we want to keep with the spec.
|
||||||
|
*/
|
||||||
|
if (!sm->handshake->authenticator)
|
||||||
|
return -EBADMSG;
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* the protocol instance shall increment Sync, increment Sc, and
|
* the protocol instance shall increment Sync, increment Sc, and
|
||||||
* transmit its Commit and Confirm (with the new Sc value) messages.
|
* transmit its Commit and Confirm (with the new Sc value) messages.
|
||||||
|
Loading…
Reference in New Issue
Block a user