mac80211: prevent attacks on TKIP/WEP as well commit 7e44a0b597f04e67eee8cdcbe7ee706c6f5de38b upstream. Similar to the issues fixed in previous patches, TKIP and WEP should be protected even if for TKIP we have the Michael MIC protecting it, and WEP is broken anyway. However, this also somewhat protects potential other algorithms that drivers might implement. Cc: stable@vger.kernel.org Link: https://lore.kernel.org/r/20210511200110.430e8c202313.Ia37e4e5b6b3eaab1a5ae050e015f6c92859dbe27@changeid Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

commit: 43a65c7ebdab4900e06079bafac1c501a556b609 [log] [tgz]
author: Johannes Berg <johannes.berg@intel.com> Mon May 31 22:30:19 2021 +0200
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Thu Jun 03 08:23:28 2021 +0200
tree: 0ffd8e37cca42715489875eb5af9263142506df7
parent: d0f613fe6de344dc17ba04a88921a2094c13d3fa [diff] [blame]
diff --git a/net/mac80211/sta_info.h b/net/mac80211/sta_info.h
index b8110ac..fd31c4d 100644
--- a/net/mac80211/sta_info.h
+++ b/net/mac80211/sta_info.h

@@ -408,7 +408,8 @@
 	u16 extra_len;
 	u16 last_frag;
 	u8 rx_queue;
-	bool check_sequential_pn; /* needed for CCMP/GCMP */
+	u8 check_sequential_pn:1, /* needed for CCMP/GCMP */
+	   is_protected:1;
 	u8 last_pn[6]; /* PN of the last fragment if CCMP was used */
 	unsigned int key_color;
 };
commit	43a65c7ebdab4900e06079bafac1c501a556b609	[log] [tgz]
author	Johannes Berg <johannes.berg@intel.com>	Mon May 31 22:30:19 2021 +0200
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	Thu Jun 03 08:23:28 2021 +0200
tree	0ffd8e37cca42715489875eb5af9263142506df7
parent	d0f613fe6de344dc17ba04a88921a2094c13d3fa [diff] [blame]