Re: [PATCH v2] 802.11n IBSS: wlan0 stops receiving packets due to aggregation after sender reboot

From: Johannes Berg
Date: Tue Oct 29 2019 - 06:57:31 EST

Next message: Jason Wang: "[RFC PATCH 0/2] virtio: allow per vq DMA domain"
Previous message: Dan Carpenter: "Re: detecting misuse of of_get_property"
In reply to: Krzysztof HaÅasa: "Re: [PATCH v2] 802.11n IBSS: wlan0 stops receiving packets due to aggregation after sender reboot"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 2019-10-29 at 11:51 +0100, Krzysztof HaÅasa wrote:
> Johannes Berg <johannes@xxxxxxxxxxxxxxxx> writes:
>
> > > The problem I can see is that the dialog_tokens are 8-bit, way too small
> > > to eliminate conflicts.
> >
> > Well, they're also per station, we could just randomize the start and
> > then we'd delete the old session and start a new one, on the receiver.
> >
> > So that would improve robustness somewhat (down to a 1/256 chance to hit
> > this problem).
>
> That was what I meant. Still, 1/256 seems hardly acceptable to me -
> unless there is some work around (a short timeout or something similar).
> Remember that when it doesn't work, it doesn't work - it won't recover
> until the sequence catches up, which may mean basically forever.

Agree, it just helps in "most" cases to do this. Perhaps we shouldn't do
this then so that we find the problem more easily...

> Or, maybe the remote station can request de-aggregation first, so the
> subsequent aggregation request is always treated as new?

> Alternatively, perhaps the remote can signal that it's a new request and
> not merely an existing session?

I think we should just implement authentication and reset of the station
properly, instead of fudging around with aggregation. This is just one
possible problematic scenario ... what if the station was reconfigured
with a different number of antennas in the meantime, for example, or
whatnot. There's a lot of state we keep for each station.

> > That's the situation though - the local station needs to know that it
> > has in fact *not* seen the same instance of the station, but that the
> > station has reset and needs to be removed & re-added.
>
> Precisely. And it seems to me that the first time the local station
> learns of this is when a new, regular, non-aggregated packet arrives.
> Or, when a new aggregation request arrives.

Well, it should learn about the station when there's a beacon from it,
or if not ... we have a patch to force a probe request/response cycle so
we have all the capabilities properly. We should upstream that patch,
but need to do something to avoid being able to use this for traffic
amplification attacks.

johannes

Next message: Jason Wang: "[RFC PATCH 0/2] virtio: allow per vq DMA domain"
Previous message: Dan Carpenter: "Re: detecting misuse of of_get_property"
In reply to: Krzysztof HaÅasa: "Re: [PATCH v2] 802.11n IBSS: wlan0 stops receiving packets due to aggregation after sender reboot"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]