[PATCH] mesh: set correct address for mesh default broadcast/multicast keys
Jouni Malinen
j at w1.fi
Sat Oct 10 14:48:28 EDT 2020
On Fri, Jun 12, 2020 at 04:49:44PM +0200, Markus Theil wrote:
> wpa_drv_set_key was called with a NULL address for IGTK and MGTK before
> this patch. The nl80211 driver will then not add the
> NL80211_KEY_DEFAULT_TYPE_MULTICAST flag for the key, which wrongly
> marks this key also as a default unicast key in the Linux kernel.
>
> With SAE this is no real problem in practice, as a pairwise key
> will be negotiated in mesh mode, before the first data frame gets
> send. When using 802.1X in a mesh network in the future, this gets
> a problem, as Linux now will encrypt EAPOL frames with the default
> key, which is also marked for unicast usage without this patch.
Thanks, applied.
--
Jouni Malinen PGP id EFC895FA
More information about the Hostap
mailing list