Received: by 2002:a25:8b12:0:0:0:0:0 with SMTP id i18csp390403ybl; Sat, 17 Aug 2019 02:56:57 -0700 (PDT) X-Google-Smtp-Source: APXvYqw56WVKOK95SOmCeCS3zXcuG/O+B5BxPB4vwR1uZjG82ahjjhM+l5unKBCIUOGDeQcwwKaw X-Received: by 2002:a17:90a:f012:: with SMTP id bt18mr10812172pjb.10.1566035817477; Sat, 17 Aug 2019 02:56:57 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1566035817; cv=none; d=google.com; s=arc-20160816; b=RNWjdelTtn5LQur1y24EQe8/olbA7BaaIlxaKd+34otlbjc4GGaCDEd7nEaPMTzH+5 ahOD8SR/Q21Fkf2T9S4GcawSU9sFo8U6ng9xmy+oSppaDuY/ZRJdqNtQiBgypxHhis3b Bv/xHzkiM74wpK/DM8ETG6PuEma9om89vHkgmCUyeudSjKclqpc6loZfvI7ICxqDqwo9 YW/5jOfZibBRBWoI3Rw0TM96qXYmU7SXNw5Pq3t8Gf/3TWZTlI8BpD+6xMT1kmqjWXu/ 4UIUfcMAj4zoakMksClGA1CLqcbNEEPMnwZA087nAz2Fa776nBThMpoTYtxiKdoPL6CH yIdA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:dkim-signature:subject; bh=d7LBrLfmaRNIeVf9dZ/ULeaODb/mvL6kpyfaSqNelGs=; b=zHU0+ldHIsm0Q4jC3rZ/4M+kPcvYmsLG8NY/9OqRNN9Gz+qTpdhZXxc/9YLqqhtS3g rFV0+UjBn/NiUv8V00qzS6LT3UwWjMIcrXoXQlj/PN68FFTpaTj9/NKoIfvREznocsff 4OWWemU+MHIFiFRfwIHubiwC1AdJpyG6jSYc2VV5DsiVctOJ7lCpNLDw+yPdbcpIPJT7 irDpCfrhv0Xkt30V32lKgtt8QAk9gI9csZSsvdfZr1BG9UOtj7lPm9ChzfylrcFqV45T /tgtxJxUPRvdFR8kaHI0HXAXUp3tqPGsT3Cxadk9LLlR7rZLaXK8c8z/TJjhALBueJe4 MtKw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@wetzel-home.de header.s=wetzel-home header.b=YKbUTYBz; spf=pass (google.com: best guess record for domain of linux-wireless-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-wireless-owner@vger.kernel.org; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=wetzel-home.de Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id y187si5533905pgd.66.2019.08.17.02.56.06; Sat, 17 Aug 2019 02:56:57 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-wireless-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@wetzel-home.de header.s=wetzel-home header.b=YKbUTYBz; spf=pass (google.com: best guess record for domain of linux-wireless-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-wireless-owner@vger.kernel.org; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=wetzel-home.de Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726002AbfHQJtT (ORCPT + 99 others); Sat, 17 Aug 2019 05:49:19 -0400 Received: from 8.mo2.mail-out.ovh.net ([188.165.52.147]:46430 "EHLO 8.mo2.mail-out.ovh.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725840AbfHQJtT (ORCPT ); Sat, 17 Aug 2019 05:49:19 -0400 X-Greylist: delayed 4200 seconds by postgrey-1.27 at vger.kernel.org; Sat, 17 Aug 2019 05:49:19 EDT Received: from player695.ha.ovh.net (unknown [10.109.159.35]) by mo2.mail-out.ovh.net (Postfix) with ESMTP id D08811AA203 for ; Sat, 17 Aug 2019 10:31:36 +0200 (CEST) Received: from awhome.eu (p4FF9179D.dip0.t-ipconnect.de [79.249.23.157]) (Authenticated sender: postmaster@awhome.eu) by player695.ha.ovh.net (Postfix) with ESMTPSA id 61A2E8CB9791; Sat, 17 Aug 2019 08:31:31 +0000 (UTC) Subject: Re: [PATCH 4/4] iwlwifi: Enable Extended Key ID for mvm and dvm DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=wetzel-home.de; s=wetzel-home; t=1566030690; bh=0+nRS2PBRtbp9fdU+6Rd+dNPiQtWIn50tssT+qzhOC4=; h=Subject:To:Cc:References:From:Date:In-Reply-To; b=YKbUTYBzKsybhWXnQ3dPJa78NCXtDFvhT1UdF+8UKG+g+R34MX0ZfxKC/U/MuMZrv 4ksfpivKMPqNPJ98bDCen61xor+TR6koymYu1MnwvlLkhvV+d4XxjJQMhn2Fms3hwm +bEmaWrbThFVnvtd45jD/JJ62xuHtrVOL8oCQ9yY= To: johannes@sipsolutions.net, Luca Coelho Cc: linux-wireless@vger.kernel.org References: <20190629195015.19680-1-alexander@wetzel-home.de> <20190629195015.19680-4-alexander@wetzel-home.de> From: Alexander Wetzel Message-ID: Date: Sat, 17 Aug 2019 10:31:30 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: <20190629195015.19680-4-alexander@wetzel-home.de> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Ovh-Tracer-Id: 13504043483087379708 X-VR-SPAMSTATE: OK X-VR-SPAMSCORE: -100 X-VR-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrgeduvddrudefhedgtdehucetufdoteggodetrfdotffvucfrrhhofhhilhgvmecuqfggjfdpvefjgfevmfevgfenuceurghilhhouhhtmecuhedttdenucesvcftvggtihhpihgvnhhtshculddquddttddm Sender: linux-wireless-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-wireless@vger.kernel.org > All iwlwifi cards are able to handle multiple keyids per STA and are > therefore fully compatible with the Extended Key ID implementation > provided by mac80211. I just tried Extended Key ID with a AX200 card and it really looks like it's incompatible:-( The card is starting to use the PTK key immediately after installation, encrypting EAPOL #3 with the new (still Rx only!) key. Digging around in the driver code it looks like we do not even pass the key information any longer to the card: iwl_mvm_set_tx_params() is bypassing iwl_mvm_set_tx_cmd_crypto() completely when we use the "new tx API". So all cards setting "use_tfh" to true are now incompatible. Therefore it looks like that all cards starting with the 22000 series can't be used with Extended Key ID any longer. Is there a way to hand over the key information within the new API or is the way forward to block Extended Key ID when the "new tx API" is being used? The card is fine with using keyid 1 for unicast keys. But it looks like it assumes that a new key install also tells it to use the new key immediately... Still digging around but pretty sure that's happening now. Alexander