Re: dynamic WEP keying


From: Jouni Malinen (jkmaline_at_cc.hut.fi)
Date: 2002-09-24 03:33:48 UTC



On Thu, Sep 19, 2002 at 04:04:32PM -0700, Glenn.Durfee_at_parc.com wrote:

> In order to get 802.1x authentication working with dynamic WEP keying (see http://www.open1x.org), a few minor changes to the driver are required. I removed the card reset after setting a WEP key and after enabling/disabling encryption. (This is necessary because a card reset forces the card to reassociate with the access point, which restarts the 1x authentication protocol.) The driver works now with the 1x client 'xsupplicant'. A patch is attached.

This depends on AP implementation.. If I remember correctly, I modified hostapd not to re-start 802.1X on new association. I think that Port0 reset was required to take the new keys into use for firmware-based encryption. Does it work without the reset? However, if host-based encryption is used, that reset is certainly not needed for key change (but is probably needed when the keys are set for the first time) and I would agree on removing it in that case.

-- 
Jouni Malinen                                            PGP id EFC895FA


This archive was generated by hypermail 2.1.4.