Commit message (Collapse)AuthorAgeFilesLines
* Clean up some more binaries in wpa_supplicant 'make clean'Johannes Berg2009-11-221-1/+1
| | | | (cherry picked from commit 8055fb781d7d1f08c944fc894309c75b819f46de)
* Fix EAP-TNC peer memory leak on an error pathRyuji2009-11-221-0/+1
| | | | (cherry picked from commit 1c5a1aa51c37f3604bbef5c24b3e4209848f6886)
* Add root .gitignore file to cleanup ignore listsJouni Malinen2009-11-2215-14/+3
| | | | | | | This removes need for local configuration to ignore *.o and *~ and allows the src/*/.gitignore files to be removed (subdirectories will inherit the rules from the root .gitignore). (cherry picked from commit 064bb8232c9003b11be7bce3aa0a4a68aee2fd6f)
* EAP-SIM peer: Remove AT_NOTIFICATION from Notification responseJouni Malinen2009-11-221-2/+0
| | | | | | | | | | | | This attribute is not supposed to be used in the response frame (i.e., it is only in the EAP-Request/SIM-Notification frame) per RFC 4186 chapters 10.1 and 9.9. This is a minor bug since the server is required to ignore the contents of the EAP-Response/SIM-Notification during protected result indication per chapter 6.2. EAP-AKA peer was already following the similar specification in RFC 4187, but this was somehow missed in the EAP-SIM peer implementation. (cherry picked from commit f141be0cafeb327ecec374de52fef3d216af5014)
* Fix comparison to use correct symbol name (__rand vs. rand)Jouni Malinen2009-11-221-1/+1
| | | | | | | | rand would be the address of rand() function and never NULL. The previous version could have crashed on invalid AKA-AUTS command. Though, these commands are only from hostapd which sends valid requests and as such, the actual issue did not show up. (cherry picked from commit 6689218ec77165de16e07a49b627cb41bdb327c1)
* Rename variable to avoid gcc warning about shadowed namesJouni Malinen2009-11-221-5/+5
| | | | (cherry picked from commit 2b16c01c4e9ae01f2d09457ac8aaeed99e57f276)
* WPS: Change wpa_supplicant wps_reg to not send out M8Jouni Malinen2009-11-222-20/+39
| | | | | | | | | | | Since we do not currently support changing the AP settings received from M7, there is no point in actually sending out the M8 that would likely trigger the AP to reconfigure itself and potentially reboot. For now, we just receive the AP settings in M7 and add a local network configuration block based on those, but NACK the message. This makes wps_reg work like wps_pin, but by using the AP PIN instead of a client PIN. (cherry picked from commit 4625a47f4bb722710a5e622085ccd2b32ebaf6c9)
* driver_bsd.c: Use new MLME method of association.Roy Marples2009-11-221-6/+0
| | | | | | | | Old way does not work with all drivers on NetBSD and FreeBSD are also using this so should be a safe change. [Bug 312] Signed-off-by: Roy Marples <roy@marples.name> (cherry picked from commit a5b73cc49d0b80ab388618b99ac8210f329daa8e)
* Use type-punning to avoid breaking strict aliasing rulesJouni Malinen2009-11-221-11/+15
| | | | | | | While the actual use here would be unlikely to be broken by any C optimization, it is better to use explicit union construction to let gcc know about the aliasing and avoid warnings from gcc 4.4. (cherry picked from commit 5a641ae01e9d9040cf838b6c40dbda1b8c724aba)
* hostapd: EAP-AKA' needs SHA256Jouni Malinen2009-11-221-0/+1
| | | | (cherry picked from commit 36c88ec814c6c2d0232721314d96cdceda525002)
* Fix STA flag setting for auto-authorization if 802.1X/WPA is not usedJouni Malinen2009-11-221-0/+3
| | | | | | | The authorized flag needs to be added to the set_flags mask to fix the flags_or/_and values that are now used with the new nl80211 attribute. (cherry picked from commit 8077a80042c371c6c79e4f1e576943c2c64a6d4e)
* wext: Fix deauthentication to do IW_MLME_DEAUTH prior to disconnectDan Williams2009-11-221-1/+1
| | | | | | | | | 4853d5ac847efbfe54b80eeefabc2932696414c9 had a small bug in the order of these function calls in _wext_deauthenticate() (_disassociate() did have the correct order). The deauthentication frame is supposed to go out (if driver supports that) before we disconnect more forcefully. (cherry picked from commit 87d01acfeb69f797bffae09b2c7f22e7c928998f)
* wext: don't force-disconnect in ad-hoc modeDan Williams2009-11-221-8/+23
| | | | | | | | Otherwise the driver might interpret the request as a request to create/join a new adhoc network with the bogus SSID. Signed-off-by: Dan Williams <dcbw@redhat.com> (cherry picked from commit 64a04447c3d2248ab1aac7f6c220346dad0e1921)
* hostapd: Require EAPOL-Key type to match with selected protocolJouni Malinen2009-11-221-0/+16
| | | | | | | | | Previously, we would have allowed both the WPA and RSN EAPOL-Key types to be used regardless of whether the association is using WPA or RSN/WPA2. This shouldn't result in any significant problems on the Authenticator side, but anyway, we should check the type and ignore the EAPOL-Key frames that used unexpected type. (cherry picked from commit f8e96eb6fd960a017793942cff0eb43b09f444c6)
* Resolve couple of compiler warningsJouni Malinen2009-11-221-7/+3
| | | | (cherry picked from commit c7be4c2e3e590e23eba1da73152f21ae8def0aad)
* Fix MLME build after WMM renamesJouni Malinen2009-11-221-17/+17
| | | | (cherry picked from commit 77ac446621c5d64b306df4e90a848086a7bf0aed)
* hostapd: Fix non-802.11w buildJouni Malinen2009-11-221-1/+1
| | | | (cherry picked from commit 9f64b827c35f93aa4515fcf84a27fa209fa550c8)
* No need for including endian.h anymoreJouni Malinen2009-11-221-11/+0
| | | | (cherry picked from commit b175bff0ce4934f63ec4018b12c3636efb72be24)
* No need to check WMM IE OUI or type hereJouni Malinen2009-11-221-10/+4
| | | | | | IE parser has already taken care of this. In addition, show QoS info field in debug output. (cherry picked from commit 317c33ebfbcfb0c6cd1cf10e23bc76e715e18a2f)
* Use bit mask/shift and helper functions instead of C bit fieldsJouni Malinen2009-11-222-31/+35
| | | | (cherry picked from commit 979be3fecf48e36ac6faab90ef7d2512c8999d54)
* WMM cleanup (WME -> WMM rename, comments, etc.)Jouni Malinen2009-11-2215-227/+253
| | | | | | | | | | | This updates the terminogy to match with the final WMM specification. In addition, some of the WMM TSPEC structure fields were in incorrect order and used without byte order swapping. Those are also taken care of this cleanup patch. This is a manual merge of the 3ae0800c5f24e1b62c0e66be9fd487a051a37c62 parts that were not brought in as part of 0fa9694a141be19643936462ce679d82b58dfdda.
* Remove unused tsinfo()Jouni Malinen2009-11-221-7/+0
| | | | (cherry picked from commit 1c6965f7db4341de1ffd83f65eb53ab3d53c3765)
* Fix WMM and MFP STA flag setting with flags_or/flags_andJouni Malinen2009-11-221-7/+7
| | | | | | These were included correctly in total_flags, but not in flags_or/flags_and. (cherry picked from commit eddd8010e6fac0c907cbc0af4df3e8c5144fd5f3)
* Drop unprotected Robust Action frames from MFP STAsJouni Malinen2009-11-222-3/+24
| | | | | | These frames are delivered through mac80211 monitor interface, so we need to filter them out in hostapd. (cherry picked from commit c4e281fd91080200424cec2162f072737b80e7e8)
* Add more debugging details for SA Query processingJouni Malinen2009-11-221-0/+11
| | | | (cherry picked from commit 92305c5d9a79a783d9f495f29e3e0fc06e66ed0a)
* Update SA Query transaction id length based on IEEE 802.11w/D8.0Jouni Malinen2009-11-221-2/+2
| | | | | | IEEE 802.11w/D8.0 changed the length of the SA Query transaction identifier from 16 to 2 octets. (cherry picked from commit 4209a95df5e790679c64602bcc8d46b0e54df830)
* Reject hostapd configuration without channel for nl80211 driversJouni Malinen2009-11-221-0/+7
| | | | | | | We could use auto-channel selection here eventually, but for now, reject the configuration since it is not going to work correctly (Beacon and Probe Response frames use incorrect value in DS Params). (cherry picked from commit 24c9fcebfb7c354d8cf91f93002921314322a720)
* Add code to re-use an existing ctrl_iface socket fileJouni Malinen2009-11-221-2/+29
| | | | | | | Port the code from wpa_supplicant to re-use an existing ctrl_iface socket file if the file does not seem to be in use. This allows hostapd to recover from unclean shutdown of the control interface. (cherry picked from commit 617d1555479aecf3bf13e35202a46c63e8d19052)
* Work around some gcc 4.4 strict-aliasing warningsJouni Malinen2009-11-226-7/+28
| | | | | | | | | | | gcc 4.4 ends up generating strict-aliasing warnings about some very common networking socket uses that do not really result in a real problem and cannot be easily avoided with union-based type-punning due to struct definitions including another struct in system header files. To avoid having to fully disable strict-aliasing warnings, provide a mechanism to hide the typecast from aliasing for now. A cleaner solution will hopefully be found in the future to handle these cases. (cherry picked from commit 0ae7b0869107d4ae1b28bc417cfe4c5b0fc9e0ed)
* WPS: Add a workaround for auth/encr type flags mismatchesJouni Malinen2009-11-221-1/+31
| | | | | | | | | Some deployed implementations seem to advertise incorrect information in this attribute. For example, Linksys WRT350N seems to have a byteorder bug that breaks this negotiation. In order to interoperate with existing implementations, assume that the Enrollee supports everything we do. (cherry picked from commit 826fff182f36fa58418d1c796d6a7c6307b12a14)
* Fix a typo in a commentJouni Malinen2009-11-221-1/+1
| | | | (cherry picked from commit 3617d81a704c151088ef9c61188368d1b6d717bf)
* hostapd: Fix internal crypto build without TLSJouni Malinen2009-06-223-0/+13
| | | | (cherry picked from commit b63303b86432561988ebaa61e13bc9c74457d7cf)
* Disconnect if 4-way handshake processing failsJouni Malinen2009-04-202-20/+40
| | | | | | | | There is no point in trying to continue if a 4-way handshake frame is discarded or if PTK/GTK/IGTK configuration fails. Force the client to disconnect in such a case to avoid confusing user by claiming the connection was successfully completed. (cherry picked from commit 83935317a78fb4157eb6e5134527b9311dbf7b8c)
* Make deauthentication and disassociation consistentJouni Malinen2009-04-201-3/+1
| | | | | | This fixes an issue where the station was not marked disassociated properly with locally requested deauthentication. (cherry picked from commit c3dc92e85f7bc5823102e70ecff1d3402d79139b)
* Fix small HTTP processing issuesJouni Malinen2009-04-201-2/+5
| | | | | | Parse "Transfer-Encoding: chunked" properly. Get more data if read buffer is empty when starting to process the body. (cherry picked from commit 814aaa844a71290aaff497510e4a0d72ab1ca8ba)
* nl80211: Fix channel 14 useFrancesco Gringoli2009-04-202-2/+2
| | | | | | | | | | | nl80211 interface has a trivial bug that prevents it to work correctly with channel 14. Channel frequency is erroneously 2848 instead of 2484. To correct it just apply this patch. [Bug 308] (cherry picked from commit 5a0ffb5f1f587e1c36db32d964adb0c667033a52) Conflicts: src/drivers/driver_nl80211.c
* Fix some multi-BSSID configuration operationsJouni Malinen2009-04-201-9/+10
| | | | | | | | | | Static WEP keys were configured only for the first BSS. In addition, STAs were flushed only for the first BSS. These operations should be in hostapd_setup_bss(), not setup_interface(). Remove extra call to ieee802_11_set_beacon() for the first BSS. This should only be done from hostapd_setup_bss(), i.e., once for each BSS. (cherry picked from commit c213cc04332983fdf030224b9029cf7bb4e23dfd)
* Fix driver_ops function documentationJouni Malinen2009-04-201-1/+1
| | | | (cherry picked from commit 6179d2fd7d60e0c6691a5bce1c48a0e6bd0db36e)
* Fix RSN parameter setting for multi-BSS caseJouni Malinen2009-04-201-20/+21
| | | | | | rsn_pairwise and wpa_group were set properly only for the last BSS, but they do need to be set for all BSSes. (cherry picked from commit f1f54cb8b1b47e2340dfbe937fac594725819a20)
* nl80211: Add IGTK (AES-128-CMAC) configurationJouni Malinen2009-04-201-0/+5
| | | | | | This was somehow forgotten from IEEE 802.11w/MFP patches from wpa_supplicant -Dnl80211. (cherry picked from commit 2e24a366ea1a26a93d121ef97dc2bf5ed8ff3edd)
* Fix SHA-256-based KDF when using CCMP as the pairwise cipherJouni Malinen2009-04-208-18/+32
| | | | | | | | | | | | | | | | | IEEE 802.11r KDF uses key length in the derivation and as such, the PTK length must be specified correctly. The previous version was deriving using 512-bit PTK regardless of the negotiated cipher suite; this works for TKIP, but not for CCMP. Update the code to use proper PTK length based on the pairwise cipher. This fixed PTK derivation for both IEEE 802.11r and IEEE 802.11w (when using AKMP that specifies SHA-256-based key derivation). The fixed version does not interoperate with the previous versions. [Bug 307] (cherry picked from commit c0a6190815ce37450fc348d4d09b2a0153478fc0) Conflicts: wpa_supplicant/ChangeLog
* WPS: Fix local configuration update after AP configurationJouni Malinen2009-04-202-0/+23
| | | | | | | | Update credential to only include a single authentication and encryption type in case the AP configuration includes more than one option. Without this, the credential would be rejected if the AP was configured to allow more than one authentication type. (cherry picked from commit 73267b9ca433288c207c4e06a938eaa326c8672a)
* WPS: Fix hostapd runtime WPS configuration after Enrollee runJouni Malinen2009-04-201-0/+22
| | | | | | If the AP is configured with WPS, we need to update the local WPS data in order to provide correct credentials for Enrollees. (cherry picked from commit 6ce4b59342e6454e3c9a81cb54966fac18c8ea94)
* Update driver SSID and 802.1X/WPA parameters on configuration reloadJouni Malinen2009-04-201-0/+10
| | | | | | This is needed for WPS AP reconfiguration with driver wrappers that do not use hostapd MLME. (cherry picked from commit c813b69546eee3ee007c1c4687e1caa64e82952a)
* Fix: Loop in driver selection routineMasashi Honma2009-04-201-1/+1
| | | | | | | | Increment an index variable not 'i' but 'j'. (this was broken yesterday by a cleanup change 3067ac2bb82553c99cb84e32ede82de434ee1070) (cherry picked from commit 871bb568d2ebf74fb3b1bb918d160328b0e6b959)
* Get rid of couple of shadowed variable warningsJouni Malinen2009-04-202-8/+8
| | | | (cherry picked from commit 3067ac2bb82553c99cb84e32ede82de434ee1070)
* Remove shadowed variableJouni Malinen2009-04-201-2/+1
| | | | (cherry picked from commit 21db94c5dce6a0048f2d1e5eff095c63d118f370)
* driver_nl80211: Fix initial iftype changeJouni Malinen2009-04-201-8/+10
| | | | | | | | | | | | | Need to set drv->ifindex before calling set_mode(). In addition, set the mode before setting the interface up to avoid having to set it down again. Add more useful error message on mode changes. (cherry picked from commit a87c9d9609c0585bb667e67f01589e4adf88c5d9) Conflicts: src/drivers/driver_nl80211.c
* Remove local variable shadowing to avoid a warningJouni Malinen2009-04-201-5/+5
| | | | (cherry picked from commit 17449e213f03faccf4b1459732f39188ee223f00)
* Fix WPS UPnP SSDP on 32-bit targetsJouni Malinen2009-03-261-1/+1
| | | | | | | The memcpy was using incorrect size (of pointer; should have been of data structure) for the client address. This ended up working on 64-bit targets, but left part of the address uninitialized on 32-bit targets. (cherry picked from commit bfd67fc44c66ac9fcda97f02a9fe5f01d1ed5728)