Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / e54faf29e07b6cc28a44a4f01d7fbc40905a67d3^! / .
commite54faf29e07b6cc28a44a4f01d7fbc40905a67d3[log] [tgz]
authorJohannes Berg <johannes.berg@intel.com>Tue Jan 29 11:41:38 2013 +0100
committerJohannes Berg <johannes.berg@intel.com>Mon Feb 04 18:57:44 2013 +0100
tree19bbfcbb6dc5b867c4ee025793761b20a4989519
parent2ca813ad61136896c91a40194452ff665a522711 [diff]
mac80211: allow transmitting deauth with tainted key

When we had a connection for WoWLAN and after resume it
needed to be disconnected, the previous commit enabled
sending a deauth frame to the AP. This frame would not
go through on MFP-enabled networks as the key for it is
marked tainted before the frame is transmitted.

Allow a tainted key to be used for deauth frames. Worst
case, we'll use a wrong key because the PTK was rekeyed
while suspended, but more likely the PTK is still fine
and the taint flag really only applies to the GTK(s).

Signed-off-by: Johannes Berg <johannes.berg@intel.com>

diff --git a/net/mac80211/tx.c b/net/mac80211/tx.c
index a2cb6a3..7892b0a 100644
--- a/net/mac80211/tx.c
+++ b/net/mac80211/tx.c

@@ -594,7 +594,8 @@
 			break;
 		}
 
-		if (unlikely(tx->key && tx->key->flags & KEY_FLAG_TAINTED))
+		if (unlikely(tx->key && tx->key->flags & KEY_FLAG_TAINTED &&
+			     !ieee80211_is_deauth(hdr->frame_control)))
 			return TX_DROP;
 
 		if (!skip_hw && tx->key &&