mirror of
https://git.openwrt.org/openwrt/openwrt.git
synced 2026-01-31 05:23:14 +01:00
0f1b5ce2f5
If we know that we have an encrypted link (based on having had a key configured for TX in the past) then drop all data frames in the key selection handler if there's no key anymore. This fixes an issue with mac80211 internal TXQs - there we can buffer frames for an encrypted link, but then if the key is no longer there when they're dequeued, the frames are sent without encryption. This happens if a station is disconnected while the frames are still on the TXQ. Detecting that a link should be encrypted based on a first key having been configured for TX is fine as there are no use cases for a connection going from with encryption to no encryption. With extended key IDs, however, there is a case of having a key configured for only decryption, so we can't just trigger this behaviour on a key being configured. Cc: stable@vger.kernel.org Reported-by: Jouni Malinen <j@w1.fi> Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: Luca Coelho <luciano.coelho@intel.com> Signed-off-by: David Bauer <mail@david-bauer.net> |
||
|---|---|---|
| .. | ||
| acx-mac80211 | ||
| ath10k-ct | ||
| bcm27xx-gpu-fw | ||
| broadcom-wl | ||
| button-hotplug | ||
| cryptodev-linux | ||
| dtc/patches | ||
| gpio-button-hotplug | ||
| gpio-nct5104d | ||
| hwmon-gsc | ||
| i2c-gpio-custom | ||
| kmod-sched-cake-oot | ||
| lantiq | ||
| leds-apu2 | ||
| linux | ||
| mac80211 | ||
| mt76 | ||
| mwlwifi | ||
| nat46 | ||
| om-watchdog | ||
| rtc-rv5c386a | ||
| rtl8812au-ct | ||
| spi-gpio-custom | ||
| trelay | ||
| w1-gpio-custom | ||