On Mon, Feb 12, 2007 at 10:39:31PM +0100, Michael Buesch wrote: > What happens on RX when the iv32 wraps. Well, it simply won't decrypt > the frame. What we must do then is upload a new key as fast as possible. > The undecrypted frame can be either decrypted in SW (which I think d80211 > can do. At least with minor additional changes), or we drop it. That "iv32 wrap" should have been "iv32 changes" (phase1 key changes whenever iv16 changes, i.e., when iv32 is incremented by one). d80211 does indeed support software decryption for this case, so it is fine to just pass the undecrypted frame up and marking it as such. This was needed for some of the TKIP cases with Atheros. > I started to implement an API to calculate the phase1 key on demand. > It doesn't quite work, yet and I'm stuck in more important work > that should be done before the d80211 merge, so it will take some time > until I can continue debugging the stuff. OK. -- Jouni Malinen PGP id EFC895FA - To unsubscribe from this list: send the line "unsubscribe linux-wireless" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
