Diffusion FreeBSD src repository 61605e0ae5d8

net80211: fail for unicast traffic without unicast key
61605e0ae5d8
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

net80211: fail for unicast traffic without unicast key

Falling back to the multicast key may cause unicast traffic to leak.
Instead fail when no key is found.

For more information see the 'Framing Frames: Bypassing Wi-Fi Encryption
by Manipulating Transmit Queues' paper.

[ I updated the commit message to reference the paper and the code
comment to record historic behaviour as discussed in private email. ]

Security: CVE-2022-47522

Details

Provenance

domienschepers <schepers.d@northeastern.edu>	Authored on Nov 10 2022, 12:00 AM
bz	Committed on Apr 10 2023, 11:38 PM

Parents

rG461ccb55d50c: dhclient: add ability to ignore options in offers

Branches

Unknown

Tags

Unknown

Event Timeline

bz committed rG61605e0ae5d8: net80211: fail for unicast traffic without unicast key (authored by domienschepers <schepers.d@northeastern.edu>).Apr 10 2023, 11:38 PM

bz mentioned this in rG6c9bcecfb296: net80211: fail for unicast traffic without unicast key.Jun 26 2023, 12:15 PM

bz mentioned this in rG84d538470bce: net80211: fail for unicast traffic without unicast key.Jun 26 2023, 12:29 PM

gordon mentioned this in rG7f34ee7cc56b: net80211: fail for unicast traffic without unicast key.Sep 6 2023, 5:37 PM

gordon mentioned this in rGe020f9602809: net80211: fail for unicast traffic without unicast key.

Changes (1)

Path

Size

sys/

net80211/

ieee80211_crypto.c

rG61605e0ae5d8

sys/net80211/ieee80211_crypto.c

Loading...