[PATCH 0/2] RSN: Validate GTK KDE lengths before msg 4/4
Chung-Hsien Hsu
chung-hsien.hsu at infineon.com
Tue May 12 06:15:56 PDT 2026
Validate GTK KDE lengths in EAPOL-Key message 3/4 before transmitting
message 4/4.
The GTK KDE length is already checked when processing the GTK for
installation. However, that validation is reached only after message 4/4
has been transmitted. This allows a malformed message 3/4 with an
invalid GTK KDE length to be acknowledged even though the supplicant
later rejects the GTK and fails the handshake.
This series splits the early validation into non-MLO and MLO changes.
Chung-Hsien Hsu (2):
RSN: Reject invalid GTK KDE length in msg 3/4
RSN: Reject invalid MLO GTK KDE length in msg 3/4
src/rsn_supp/wpa.c | 45 ++++++++++++++++++++++++++++++++++++++++++---
1 file changed, 42 insertions(+), 3 deletions(-)
--
2.25.1
More information about the Hostap
mailing list