]> git.ipfire.org Git - thirdparty/hostap.git/commitdiff
projects / thirdparty / hostap.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 9732c8b)
RSNO: Remove override elements from EAPOL-Key msg 3/4
authorJouni Malinen <quic_jouni@quicinc.com>
Thu, 25 Jul 2024 19:22:00 +0000 (19:22 +0000)
committerJouni Malinen <j@w1.fi>
Thu, 25 Jul 2024 19:22:00 +0000 (19:22 +0000)
This was not done in case the STA did not use RSN overriding.

Signed-off-by: Jouni Malinen <quic_jouni@quicinc.com>
src/ap/wpa_auth.c patch | blob | blame | history

diff --git a/src/ap/wpa_auth.c b/src/ap/wpa_auth.c
index 9837c9fa9c024aee80c32228f54cb463fd21da49..07844e43613bda26dc8a030a650c823ee781c405 100644 (file)
--- a/src/ap/wpa_auth.c
+++ b/src/ap/wpa_auth.c
@@ -4714,6 +4714,39 @@ SM_STATE(WPA_PTK, PTKINITNEGOTIATING)
                wpa_hexdump(MSG_DEBUG, "EAPOL-Key msg 3/4 IEs after edits",
                            wpa_ie, wpa_ie_len);
        }
+       if ((conf->rsn_override_key_mgmt || conf->rsn_override_key_mgmt_2) &&
+           !sm->rsn_override && !sm->rsn_override_2) {
+               u8 *ie;
+               size_t ie_len;
+               u32 ids[] = {
+                       RSNE_OVERRIDE_IE_VENDOR_TYPE,
+                       RSNE_OVERRIDE_2_IE_VENDOR_TYPE,
+                       RSNXE_OVERRIDE_IE_VENDOR_TYPE,
+                       0
+               };
+               int i;
+
+               wpa_printf(MSG_DEBUG,
+                          "RSN: Remove RSNE/RSNXE override elements");
+               wpa_hexdump(MSG_DEBUG, "EAPOL-Key msg 3/4 IEs before edits",
+                           wpa_ie, wpa_ie_len);
+               wpa_ie_buf3 = os_memdup(wpa_ie, wpa_ie_len);
+               if (!wpa_ie_buf3)
+                       goto done;
+               wpa_ie = wpa_ie_buf3;
+
+               for (i = 0; ids[i]; i++) {
+                       ie = (u8 *) get_vendor_ie(wpa_ie, wpa_ie_len, ids[i]);
+                       if (ie) {
+                               ie_len = 2 + ie[1];
+                               os_memmove(ie, ie + ie_len,
+                                          wpa_ie_len - (ie + ie_len - wpa_ie));
+                               wpa_ie_len -= ie_len;
+                       }
+               }
+               wpa_hexdump(MSG_DEBUG, "EAPOL-Key msg 3/4 IEs after edits",
+                           wpa_ie, wpa_ie_len);
+       }
 #ifdef CONFIG_TESTING_OPTIONS
        if (conf->rsne_override_eapol_set) {
                wpa_ie_buf2 = replace_ie(
Unnamed repository; edit this file 'description' to name the repository.