From patchwork Thu Aug 25 05:52:59 2022 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Veerendranath Jakkam X-Patchwork-Id: 1670066 Return-Path: X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@legolas.ozlabs.org Authentication-Results: legolas.ozlabs.org; spf=none (no SPF record) smtp.mailfrom=lists.infradead.org (client-ip=2607:7c80:54:3::133; helo=bombadil.infradead.org; envelope-from=hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org; receiver=) Authentication-Results: legolas.ozlabs.org; dkim=pass (2048-bit key; secure) header.d=lists.infradead.org header.i=@lists.infradead.org header.a=rsa-sha256 header.s=bombadil.20210309 header.b=5CQfK+Qg; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=quicinc.com header.i=@quicinc.com header.a=rsa-sha256 header.s=qcppdkim1 header.b=ZKH0Y6Vc; dkim-atps=neutral Received: from bombadil.infradead.org (bombadil.infradead.org [IPv6:2607:7c80:54:3::133]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384) (No client certificate requested) by legolas.ozlabs.org (Postfix) with ESMTPS id 4MCsjv4Jsgz1yg7 for ; Thu, 25 Aug 2022 15:59:31 +1000 (AEST) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=bombadil.20210309; h=Sender: Content-Transfer-Encoding:Content-Type:List-Subscribe:List-Help:List-Post: List-Archive:List-Unsubscribe:List-Id:MIME-Version:Message-ID:Date:Subject:CC :To:From:Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References: List-Owner; bh=WYfVnlg4zeAdrWmZrhvuuVJ5oshwVXUUEGTEJ13lBvU=; b=5CQfK+QgW/ml1L 8ieKzDSoyQ8pRBnrcY4tcgM7lwkEb+MwbvcdrJ+KRF9KAP6usEW3SSNfAkC+5Cydy8WBrz1+uOQPE 7fMy1k+bmJyxqBW/YUw9dp3UC6oTR1ml5ir/B5uV4TUDddCkAlgDCOM6a0mkW928OTzomWClxl3Aj PUE4gXnXv+TaySo/FVK6PsORKpMdF63HZBFFAZbJjj8c4ejN/bEE4vsk6asJXYaIuRwJCAqkqiI2W JbK1tdjbKGGRUgoW6HfPRT3LNKjS9nh6ibEuer69Mpv+ceqXi8aFC3fGypkTVHVKHHbS7nIpnVrD4 aMTvu7HXj79O0IGMuWFQ==; Received: from localhost ([::1] helo=bombadil.infradead.org) by bombadil.infradead.org with esmtp (Exim 4.94.2 #2 (Red Hat Linux)) id 1oR5sr-007eiG-Jm; Thu, 25 Aug 2022 05:58:29 +0000 Received: from mx0b-0031df01.pphosted.com ([205.220.180.131]) by bombadil.infradead.org with esmtps (Exim 4.94.2 #2 (Red Hat Linux)) id 1oR5sm-007eee-OW for hostap@lists.infradead.org; Thu, 25 Aug 2022 05:58:26 +0000 Received: from pps.filterd (m0279871.ppops.net [127.0.0.1]) by mx0a-0031df01.pphosted.com (8.17.1.5/8.17.1.5) with ESMTP id 27P1ISre024178 for ; Thu, 25 Aug 2022 05:58:24 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quicinc.com; h=from : to : cc : subject : date : message-id : mime-version : content-transfer-encoding : content-type; s=qcppdkim1; bh=/hQCQaU8zoTwk0dW97GsmT7Ca7ziAALy/8PaoJkDibU=; b=ZKH0Y6VcOn7Gip+1d6jq0NCL0PzrLim2cQSnvuDMxuKoA7gGOn1BlRtxcGpQwe2pmlTu UHIaLly7VKAHUrEZmrgwR/vJD5c52U4oD9YGiT+okOcYPqKBqHZxa2r+wEgv+wLbpYI8 cUbu12l/W7Xx4i8kMEN/uAxK4lhVaJZFVob4bV03mE2dYzHOxeF/J9CJp2mch327qVlX FERq4yXwSm5SzYCLlrwwfGqkl1+GRw56qB4iKpX+Jhunt5795p/CjIlauirusFPhr+N6 uT/gpbdEGwuCPjRLzeTLoQZrRgrLqFkDZM8zegwaPmVaZi8+G1JMWpc5tvZb4JkegTpZ dA== Received: from nalasppmta02.qualcomm.com (Global_NAT1.qualcomm.com [129.46.96.20]) by mx0a-0031df01.pphosted.com (PPS) with ESMTPS id 3j5xcugn8e-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Thu, 25 Aug 2022 05:58:23 +0000 Received: from nalasex01a.na.qualcomm.com (nalasex01a.na.qualcomm.com [10.47.209.196]) by NALASPPMTA02.qualcomm.com (8.17.1.5/8.17.1.5) with ESMTPS id 27P5rMVT013292 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Thu, 25 Aug 2022 05:53:22 GMT Received: from cnss-mw-linux.qualcomm.com (10.80.80.8) by nalasex01a.na.qualcomm.com (10.47.209.196) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.29; Wed, 24 Aug 2022 22:53:21 -0700 From: Veerendranath Jakkam To: CC: Subject: [PATCH 00/12] MLD STA: Add support for four-way handshake and SAE external authentication Date: Thu, 25 Aug 2022 11:22:59 +0530 Message-ID: <20220825055311.3327147-1-quic_vjakkam@quicinc.com> X-Mailer: git-send-email 2.25.1 MIME-Version: 1.0 X-Originating-IP: [10.80.80.8] X-ClientProxiedBy: nasanex01a.na.qualcomm.com (10.52.223.231) To nalasex01a.na.qualcomm.com (10.47.209.196) X-QCInternal: smtphost X-Proofpoint-Virus-Version: vendor=nai engine=6200 definitions=5800 signatures=585085 X-Proofpoint-GUID: QZdkbEKBzJ7HBxuUtd5yNY_yUuE2Bgcc X-Proofpoint-ORIG-GUID: QZdkbEKBzJ7HBxuUtd5yNY_yUuE2Bgcc X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.895,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-08-25_03,2022-08-22_02,2022-06-22_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 bulkscore=0 phishscore=0 adultscore=0 malwarescore=0 suspectscore=0 mlxlogscore=999 impostorscore=0 spamscore=0 priorityscore=1501 lowpriorityscore=0 clxscore=1015 mlxscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2207270000 definitions=main-2208250020 X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20220824_225824_942579_48BE7F4D X-CRM114-Status: GOOD ( 19.30 ) X-Spam-Score: -0.2 (/) X-Spam-Report: Spam detection software, running on the system "bombadil.infradead.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: This patch series has changes to support initial connection EAPOL Four-Way handshake and SAE external authentication support. Note: * This patch series is rebased on top of below patch series which is adding support for open MLO connection when driver's SME in use. - https://patchwork.ozlabs.org/project/hostap/list/?series=311720 Content analysis details: (-0.2 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/, no trust [205.220.180.131 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain X-BeenThere: hostap@lists.infradead.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: "Hostap" Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org This patch series has changes to support initial connection EAPOL Four-Way handshake and SAE external authentication support. Note: * This patch series is rebased on top of below patch series which is adding support for open MLO connection when driver's SME in use. - https://patchwork.ozlabs.org/project/hostap/list/?series=311720 * Some changes in this patch series are dependent on the kernel changes which are still under review. Below are the details of the dependancy on kernel changes - Patch 0006 to 0010 depends on below https://patchwork.kernel.org/project/linux-wireless/patch/20220730052643.1959111-4-quic_vjakkam@quicinc.com/ - Patch 0011 depends on below https://patchwork.kernel.org/project/linux-wireless/patch/20220708165212.2069149-1-quic_vjakkam@quicinc.com/ https://patchwork.kernel.org/project/linux-wireless/patch/20220708165212.2069149-2-quic_vjakkam@quicinc.com/ Rohan Dutta (1): MLD STA: Add support for parsing MLO KDEs Veerendranath Jakkam (11): MLD STA: set MLO connection info to wpa_sm MLD STA: Add support to fetch per-link beacon WPA/RSN/RSNX IEs into wpa_sm MLD STA: Add MLO KDEs for 2/4 and 4/4 EAPOL frames MLD STA: Derive pairwise keys using MLD address MLD STA: Configure pairwise keys using MLD address MLD STA: Add support to configure keys with MLO link ID param MLD STA: Add support for processing EAPOL 3/4 frame MLD STA: Add support for validating MLO KDEs for 4WHS EAPOL frames MLD STA: Use AP MLD address as destination for 4WHS EAPOL frames MLD STA: Add support for SAE external auth support MLD STA: Indicate MLO support for security modes to driver's SME src/ap/ap_drv_ops.c | 1 + src/common/wpa_common.c | 50 + src/common/wpa_common.h | 61 ++ src/drivers/driver.h | 9 + src/drivers/driver_nl80211.c | 24 +- src/drivers/driver_nl80211.h | 1 + src/drivers/driver_nl80211_event.c | 20 +- src/rsn_supp/wpa.c | 901 +++++++++++++++++- src/rsn_supp/wpa.h | 37 +- src/rsn_supp/wpa_ft.c | 8 +- src/rsn_supp/wpa_i.h | 33 + tests/fuzzing/eapol-key-supp/eapol-key-supp.c | 2 +- wpa_supplicant/driver_i.h | 24 +- wpa_supplicant/events.c | 84 +- wpa_supplicant/ibss_rsn.c | 4 +- wpa_supplicant/sme.c | 96 +- wpa_supplicant/wpa_supplicant.c | 19 +- wpa_supplicant/wpa_supplicant_i.h | 2 + wpa_supplicant/wpas_glue.c | 119 ++- 19 files changed, 1363 insertions(+), 132 deletions(-)