Skip to content

6.5: Backport OpenWrt wifi fixes in mac80211 and mt76 (includes MAC-stealer and other security fixes)

Andreas Gnau requested to merge agnau-wifi-sec-mac-stealer into release-6.5

These are cherry-picks from openwrt/openwrt-21.02. I cherry-picked also a few non-security commits to avoid conflicts during cherry-picking.

commit b0a01f831526c668f6db9215a952b10fb750c940
Author:     Felix Fietkau <nbd@nbd.name>
AuthorDate: Wed Mar 29 17:54:19 2023 +0200
Commit:     Andreas Gnau <andreas.gnau@iopsys.eu>
CommitDate: Tue Apr 4 17:48:00 2023 +0200

    mac80211, mt76: add fixes for recently discovered security issues
    
    Fixes CVE-2022-47522
    
    Signed-off-by: Felix Fietkau <nbd@nbd.name>
    (cherry picked from commit d54c91bd9ab3c54ee06923eafbd67047816a37e4)
    (cherry picked from commit 32621086c3b0c641609580bdf83d4c731caa7f5e)

commit 0f245e8ba3a44ead8959de3d739233a37be0e790
Author:     Thibaut VARÈNE <hacks@slashdirt.org>
AuthorDate: Wed Apr 20 17:57:47 2022 +0200
Commit:     Andreas Gnau <andreas.gnau@iopsys.eu>
CommitDate: Tue Apr 4 17:48:00 2023 +0200

    mt76: backport fix encap offload ethernet type check
    
    The driver needs to check if the format is 802.2 vs 802.3 in order to
    set a tx descriptor flag. skb->protocol can't be used, since it may not
    be properly initialized for packets coming in from a packet socket.  Fix
    misdetection by checking the ethertype from the skb data instead.
    
    Signed-off-by: Thibaut VARÈNE <hacks@slashdirt.org>
    Signed-off-by: Petr Štetiar <ynezz@true.cz> [commit description]
    (cherry picked from commit 4cb9d08e71a8d4d4f148f29fcbe8554f0815a056)

commit 5100b935abdd9e26d0268bd83495d0fa219f914b
Author:     Hauke Mehrtens <hauke@hauke-m.de>
AuthorDate: Sun Jan 29 19:05:52 2023 +0100
Commit:     Andreas Gnau <andreas.gnau@iopsys.eu>
CommitDate: Tue Apr 4 17:48:00 2023 +0200

    mac80211: Update to version 5.10.168-1
    
    This update mac80211 to version 5.10.168-1. This includes multiple
    bugfixes. Some of these bugfixes are fixing security relevant bugs.
    
    Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
    (cherry picked from commit 8d995b3bd7aa1b13e7874515a8454349d240556d)

commit 45b8c75ae866e0c0c1f932b169aed3066e623e86
Author:     Hauke Mehrtens <hauke@hauke-m.de>
AuthorDate: Sat Dec 3 21:34:02 2022 +0100
Commit:     Andreas Gnau <andreas.gnau@iopsys.eu>
CommitDate: Tue Apr 4 17:48:00 2023 +0200

    mac80211: Update to version 5.10.157
    
    Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
    (cherry picked from commit 06bec8462570adc81020c3b5dd22fab25eae5060)

commit 6b7fc202585c59899d5f1fa2da021f5f1dc31180
Author:     Hauke Mehrtens <hauke@hauke-m.de>
AuthorDate: Sat Oct 15 13:37:50 2022 +0200
Commit:     Andreas Gnau <andreas.gnau@iopsys.eu>
CommitDate: Tue Apr 4 17:48:00 2023 +0200

    mac80211: Update to version 5.10.149-1
    
    This updates mac80211 to version 5.10.149-1 which is based on kernel
    5.10.149.
    The removed patches were applied upstream.
    
    Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
    (cherry picked from commit b3142fff2a06b9a717bf71ba86e096b1856b5bcb)

commit 143ba18f1970cd533ff02dd93551b98fad8d6233
Author:     Thibaut VARÈNE <hacks@slashdirt.org>
AuthorDate: Tue Apr 19 10:59:41 2022 +0200
Commit:     Andreas Gnau <andreas.gnau@iopsys.eu>
CommitDate: Tue Apr 4 17:48:00 2023 +0200

    mac80211: fix QCA9561 PA bias
    
    This patch fixes an invalid TX PA DC bias level on QCA9561, which
    results in a very low output power and very low throughput as devices
    are further away from the AP (compared to other 2.4GHz APs),
    following a suggestion from nbd[1].
    
    This patch has been submitted upstream[2].
    
    [1] https://lore.kernel.org/all/91c58969-c60e-2f41-00ac-737786d435ae@nbd.name
    [2] https://lore.kernel.org/linux-wireless/20220417145145.1847-1-hacks+kernel@slashdirt.org/
    
    Signed-off-by: Thibaut VARÈNE <hacks@slashdirt.org>
    (cherry-picked from 7dc52a78ae2c2f748a0c0c4adcb13979260b3498)
    (cherry picked from commit 39f1815b3eee1a7057d0475c9ac193e7e52e0bb9)

commit 377d4948b0311329622af9f27332d7f348ab2310
Author:     Hauke Mehrtens <hauke@hauke-m.de>
AuthorDate: Mon Apr 11 00:26:29 2022 +0200
Commit:     Andreas Gnau <andreas.gnau@iopsys.eu>
CommitDate: Tue Apr 4 17:48:00 2023 +0200

    mac80211: Update to version 5.10.110-1
    
    This updates mac80211 to version 5.10.110-1 which is based on kernel
    5.10.110.
    The removed patches were applied upstream.
    
    This new release contains many fixes which were merged into the upstream
    Linux kernel.
    
    Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
    (cherry picked from commit 99b00edf35bc11c3cd761762a5e880ac1daea067)
Edited by Andreas Gnau

Merge request reports