On 10/21/2024 6:17 PM, Johannes Berg wrote:
> On Mon, 2024-10-21 at 18:05 +0800, Baochen Qiang wrote:
>>
>> Oct 21 17:50:17 xps13 kernel: [ 153.758773] iwlwifi 0000:00:14.3: loaded firmware version 77.0b4c06ad.0 Qu-c0-hr-b0-77.ucode op_mode iwlmvm
>
> Huh, I'm surprised you have that version :)
i just upgrade to the latest linux-firmware repo :)
>
> Hm. Support for SAE AKMs should've been backported, so that's a bit odd.
> What's the AKM in use, ciphers, etc.?
i am not familiar with 802.11 security, guessing it is SAE & CCMP?
here is M2 in 4-way handshake:
802.1X Authentication
Version: 802.1X-2001 (1)
Type: Key (3)
Length: 126
Key Descriptor Type: EAPOL RSN Key (2)
[Message number: 2]
Key Information: 0x0108
.... .... .... .000 = Key Descriptor Version: Unknown (0)
.... .... .... 1... = Key Type: Pairwise Key
.... .... ..00 .... = Key Index: 0
.... .... .0.. .... = Install: Not set
.... .... 0... .... = Key ACK: Not set
.... ...1 .... .... = Key MIC: Set
.... ..0. .... .... = Secure: Not set
.... .0.. .... .... = Error: Not set
.... 0... .... .... = Request: Not set
...0 .... .... .... = Encrypted Key Data: Not set
..0. .... .... .... = SMK Message: Not set
Key Length: 0
Replay Counter: 1
WPA Key Nonce: c10f804544a44114c39ae7044839aab67c82be3ca1a1816641bc98bed35d0271
Key IV: 00000000000000000000000000000000
WPA Key RSC: 0000000000000000
WPA Key ID: 0000000000000000
WPA Key MIC: 183a4a5e17e821561cfc0088ee6729c0
WPA Key Data Length: 31
WPA Key Data: 301a0100000fac040100000fac040100000fac0880000000000fac06f40120
Tag: RSN Information
Tag Number: RSN Information (48)
Tag length: 26
RSN Version: 1
Group Cipher Suite: 00:0f:ac (Ieee 802.11) AES (CCM)
Group Cipher Suite OUI: 00:0f:ac (Ieee 802.11)
Group Cipher Suite type: AES (CCM) (4)
Pairwise Cipher Suite Count: 1
Pairwise Cipher Suite List 00:0f:ac (Ieee 802.11) AES (CCM)
Pairwise Cipher Suite: 00:0f:ac (Ieee 802.11) AES (CCM)
Pairwise Cipher Suite OUI: 00:0f:ac (Ieee 802.11)
Pairwise Cipher Suite type: AES (CCM) (4)
Auth Key Management (AKM) Suite Count: 1
Auth Key Management (AKM) List 00:0f:ac (Ieee 802.11) SAE (SHA256)
Auth Key Management (AKM) Suite: 00:0f:ac (Ieee 802.11) SAE (SHA256)
RSN Capabilities: 0x0080
.... .... .... ...0 = RSN Pre-Auth capabilities: Transmitter does not support pre-authentication
.... .... .... ..0. = RSN No Pairwise capabilities: Transmitter can support WEP default key 0 simultaneously with Pairwise key
.... .... .... 00.. = RSN PTKSA Replay Counter capabilities: 1 replay counter per PTKSA/GTKSA/STAKeySA (0x0)
.... .... ..00 .... = RSN GTKSA Replay Counter capabilities: 1 replay counter per PTKSA/GTKSA/STAKeySA (0x0)
.... .... .0.. .... = Management Frame Protection Required: False
.... .... 1... .... = Management Frame Protection Capable: True
.... ...0 .... .... = Joint Multi-band RSNA: False
.... ..0. .... .... = PeerKey Enabled: False
..0. .... .... .... = Extended Key ID for Individually Addressed Frames: Not supported
.0.. .... .... .... = OCVC: False
PMKID Count: 0
PMKID List
Group Management Cipher Suite: 00:0f:ac (Ieee 802.11) BIP (128)
Tag: RSN eXtension (1 octet)
>
> johannes
