HomeFreeBSD
Diffusion FreeBSD src repository 7f34ee7cc56b

net80211: fail for unicast traffic without unicast key
7f34ee7cc56b
Actions

Description

net80211: fail for unicast traffic without unicast key

Falling back to the multicast key may cause unicast traffic to leak.
Instead fail when no key is found.

For more information see the 'Framing Frames: Bypassing Wi-Fi Encryption
by Manipulating Transmit Queues' paper.

Approved by: so
Security: FreeBSD-SA-23:11.wifi
Security: CVE-2022-47522

(cherry picked from commit 61605e0ae5d8f34b89b8e71e393f3006f511e86a)
(cherry picked from commit 6c9bcecfb296b96a383012e02bc9582260588339)

Details

Provenance
domienschepers <schepers.d@northeastern.edu>Authored on Nov 10 2022, 12:00 AM
gordonCommitted on Sep 6 2023, 5:13 PM
Parents
rG41b7760991ef: pf: handle multiple IPv6 fragment headers
Branches
Unknown
Tags
Unknown

Event Timeline

gordon committed rG7f34ee7cc56b: net80211: fail for unicast traffic without unicast key (authored by domienschepers <schepers.d@northeastern.edu>).Sep 6 2023, 5:13 PM

Changes (1)

PathSize
sys/
net80211/

rG7f34ee7cc56b

View Options

sys/net80211/ieee80211_crypto.c

Loading...