git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Kavita Kavita <kavita.kavita@oss.qualcomm.com>
	Wed, 14 Jan 2026 11:18:56 +0000 (16:48 +0530)
committer	Johannes Berg <johannes.berg@intel.com>
	Wed, 14 Jan 2026 13:34:16 +0000 (14:34 +0100)
commit	63e7e3b6433f634d54dacc39cda4fcc613501715
tree	48a8c57cb1af14b64fd9d3af25e53a294d1fd6aa	tree
parent	6ee3a22c61cdf57d71592ec9f3b9439cd5d0c75f	commit \| diff

wifi: mac80211: allow key installation before association

Currently, mac80211 allows key installation only after association
completes. However, Enhanced Privacy Protection Key Exchange (EPPKE)
requires key installation before association to enable encryption and
decryption of (Re)Association Request and Response frames.

Add support to install keys prior to association when the peer is an
Enhanced Privacy Protection (EPP) peer that requires encryption and
decryption of (Re)Association Request and Response frames.

Introduce a new boolean parameter "epp_peer" in the "ieee80211_sta"
profile to indicate that the peer supports the Enhanced Privacy
Protection Key Exchange (EPPKE) protocol. For non-AP STA mode, it
is set when the authentication algorithm is WLAN_AUTH_EPPKE during
station profile initialization. For AP mode, it is set during
NL80211_CMD_NEW_STA and NL80211_CMD_ADD_LINK_STA.

When "epp_peer" parameter is set, mac80211 now accepts keys before
association and enables encryption of the (Re)Association
Request/Response frames.

Co-developed-by: Sai Pratyusha Magam <sai.magam@oss.qualcomm.com>
Signed-off-by: Sai Pratyusha Magam <sai.magam@oss.qualcomm.com>
Signed-off-by: Kavita Kavita <kavita.kavita@oss.qualcomm.com>
Link: https://patch.msgid.link/20260114111900.2196941-6-kavita.kavita@oss.qualcomm.com
Signed-off-by: Johannes Berg <johannes.berg@intel.com>

include/net/mac80211.h		diff \| blob \| blame \| history
net/mac80211/cfg.c		diff \| blob \| blame \| history
net/mac80211/mlme.c		diff \| blob \| blame \| history