From: Johannes Berg <johannes@sipsolutions.net>
To: Kavita Kavita <kavita.kavita@oss.qualcomm.com>
Cc: linux-wireless@vger.kernel.org
Subject: Re: [PATCH wireless-next 2/2] wifi: cfg80211/mac80211: extend cfg80211_rx_assoc_resp_data() for assoc encryption
Date: Wed, 29 Apr 2026 08:29:38 +0200 [thread overview]
Message-ID: <a894a1e0b556ba910e7fad040210f9d531dcf99a.camel@sipsolutions.net> (raw)
In-Reply-To: <d5932baa-7770-4de9-aee0-c51c59294d83@oss.qualcomm.com>
Hi,
Sorry I didn't get back to this yesterday. I see you now just sent
another patch.
> The attribute is intended to indicate that the entire exchange was encrypted,
> not just the Response. For the Response frame, checking ieee80211_has_protected()
> is possible since the full frame is available in data->buf, but for the Request
> frame only IEs are stored in ifmgd->assoc_req_ies, the MAC header is not preserved,
> so I cannot check the Protected bit for the Request.
I guess that makes sense, fair enough.
> While an unencrypted Request paired with an encrypted Response is unlikely in practice,
> we did not want to leave that gap, so I used the epp_peer flag. That said, if you think
> checking the Protected bit on the Response frame alone is sufficient, we are fine with
> that approach too.
It's actually also something wpa_s could check, but I suppose it's
plausible that non-wpa_s observers of these events might be interested.
> In the wireless-next tip, there are already commits that combine both cfg80211
> and mac80211 changes together,
True, but that's usually if the whole thing is small enough I guess?
> so since the assoc_encrypted field addition in
> cfg80211 and the mac80211 epp_peer lookup that sets it are tightly dependent on
> each other, I kept them in the same commit. If you prefer them split into two
> separate commits, I can do that. Will update the commit as well.
I think in this case I might have just preferred to have the first
commit add *all* the infrastructure, and indicate that it's done for
assoc for the reasons above, and then have the second just be mac80211
to fill it?
Not super important though I guess.
johannes
next prev parent reply other threads:[~2026-04-29 6:29 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-04-27 15:07 [PATCH wireless-next 0/2] wifi: cfg80211/mac80211: indicate (Re)Association frame encryption in SME-in-driver mode Kavita Kavita
2026-04-27 15:07 ` [PATCH wireless-next 1/2] wifi: cfg80211: indicate (Re)Association frame encryption to userspace Kavita Kavita
2026-04-28 7:39 ` Johannes Berg
2026-04-28 9:17 ` Kavita Kavita
2026-04-27 15:07 ` [PATCH wireless-next 2/2] wifi: cfg80211/mac80211: extend cfg80211_rx_assoc_resp_data() for assoc encryption Kavita Kavita
2026-04-28 7:38 ` Johannes Berg
2026-04-28 9:18 ` Kavita Kavita
2026-04-29 6:29 ` Johannes Berg [this message]
2026-04-29 6:51 ` Kavita Kavita
2026-04-28 10:58 ` Kavita Kavita
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=a894a1e0b556ba910e7fad040210f9d531dcf99a.camel@sipsolutions.net \
--to=johannes@sipsolutions.net \
--cc=kavita.kavita@oss.qualcomm.com \
--cc=linux-wireless@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox