On EAPOL_KEY

Dan Williams dcbw at redhat.com
Mon Jan 26 09:41:20 EST 2015


On Mon, 2015-01-26 at 17:19 +0530, Sarah Thomas wrote:
> Hi,
> 
> Since  IEEE802_1X_TYPE_EAPOL_KEY is getting AND'ed with EAPOL_KEY_TYPE_WPA
> and EAPOL_KEY_TYPE_RSN, this(whole concept of EAPOL key) is not applicable
> for wired configuration?

Correct.  Wired 802.1x does not encrypt communication because the
medium, eg the wire, is not shared with other users.  Therefore, there
is no need to process an EAPOL key, and no switch would even send one.
Wired 802.1x is only used for authentication/authorization, not
encryption.

Dan

> if (datalen >= sizeof(struct ieee802_1x_eapol_key) && hdr->type =
> IEEE802_1X_TYPE_EAPOL_KEY &&    (key->type == EAPOL_KEY_TYPE_WPA ||
> key->type == EAPOL_KEY_TYPE_RSN)) {
>         wpa_receive(hapd->wpa_auth, sta->wpa_sm, (u8 *) hdr,
>                 sizeof(*hdr) + datalen);
>         return;
>     }
> 
> Thanks,
> Sarah
> _______________________________________________
> HostAP mailing list
> HostAP at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/hostap




More information about the HostAP mailing list