Commit message (Collapse)AuthorAgeFilesLines
* EAP-TLS works as Phase 2 method with hostapd and so does SIM and AKA.Jouni Malinen2008-02-031-5/+9
* Do not call Phase 2 method buildReq() if initialization failedJouni Malinen2008-02-031-0/+5
| | | | | | EAP-FAST with EAP-SIM as an inner method could tricker a NULL pointer dereference if EAP-SIM DB was not configured. Avoid this by not calling buildReq() for the Phase 2 method if initialization failed.
* EAP-SIM and EAP-AKA can now be used as Phase 2 method with hostapdJouni Malinen2008-02-032-6/+6
* Mark EAP-TTLS Phase 2 successfully completed even in MAY_CONT stateJouni Malinen2008-02-031-2/+2
| | | | | | | This used to require EAP workarounds to be enabled, but EAP-SIM and EAP-AKA can leave Phase 2 in MAY_CONT state if protected result indication is not used. Consequently, EAP-TTLS would be unable to derive keys in such a case even though authentication was completed successfully.
* Added more debug information for EAP keyData retrievalJouni Malinen2008-02-031-3/+13
* Cancel timeout when exiting eapol_test to avoid warningsJouni Malinen2008-02-031-0/+3
* Added support for pending EAP Phase 2 processingJouni Malinen2008-02-034-5/+66
| | | | | | Store and re-use the decrypted Phase 2 data in EAP-{PEAP,TTLS,FAST} if the Phase 2 method enters pending wait state. This allows EAP-SIM and EAP-AKA to be used as the Phase 2 method.
* Allow * wildcard to be used for Phase 2 EAP identitiesJouni Malinen2008-02-032-1/+9
* Fixed EAP-SIM Start/Response message for fast reauthenticationJouni Malinen2008-02-032-8/+12
| | | | | | Do not include AT_NONCE_MT and AT_SELECTED_VERSION attributes in EAP-SIM Start/Response when using fast reauthentication. These attributes are only used for full authentication.
* Fixed EAP-SIM Start response processing for fast reauthentication caseJouni Malinen2008-02-032-14/+16
| | | | | | The AT_NONCE_MT and AT_SELECTED_VERSION attributes are only included in the SIM/Start response when using full authentication. Fixed the code not to require these to be present when fast reauthentication is used.
* EAP-SIM/AKA: Ignore client error when sending success result indicationJouni Malinen2008-02-032-2/+8
| | | | | | RFCs require the EAP-SIM/AKA server to ignore the contents of a response to the protected success indication, so ignore client error in this case and reply with EAP-Success.
* Remove AT_COUNTER from EAP-SIM/AKA result indication in full authenticationJouni Malinen2008-02-033-30/+39
| | | | | | | | Previous version was incorrectly including AT_COUNTER in the Notification message even for full authentication. This caused interoperability issues and was against the RFCs, so AT_COUNTER (and the additional encryption attributes) is now only included in case the notification follows fast reauthentication.
* Include AT_ANY_ID_REQ in EAP-SIM/AKA start/identity per RFC recommendationJouni Malinen2008-02-032-0/+15
| | | | | | | This identity request is not really needed if EAP-Response/Identity already includes the correct identity. However, since the RFC 4186/4187 recommend that the EAP identity is ignored, it is safer to do that here should some peer implementations behave incorrectly.
* EAP-SIM/AKA workaround for incorrect null termination in the usernameJouni Malinen2008-02-034-7/+26
| | | | | | | | It looks like some EAP-SIM/AKA peer implementations include an extra null termination in the end of the identity/username. These implementations do not seem to include these null characters in key derivation and that would result in a key mismatch. As a workaround, drop the possible null characters from the end of the identity/username for key derivation.
* Fixed EAP-SIM/AKA realm processing to allow decorated usernames to be usedJouni Malinen2008-02-032-10/+34
| | | | | | The identity length needs to be compared to IMSI length only after the possible realm has been removed to avoid rejecting decorated usernames (e.g., 1<IMSI>@wlan.mnc###.mcc###.3gppnetwork.org).
* Fixed a crash on no-RADIUS-server-reply timeoutJouni Malinen2008-02-012-0/+8
| | | | | | | | | | Fixed EAPOL state machine to handle a case in which no response is received from the RADIUS authentication server; previous version could have triggered a crash in some cases after a timeout. The aaaEapResp variable may be set (or left) to TRUE even if aaaEapRespData is NULL. This triggered a segmentation fault in wpabuf_head() call when trying to send out the empty buffer.
* wpa_gui-qt4: correct check of pos value returned from indexOf()Kel Modderman2008-01-311-1/+1
| | | | | | | | | Correctly check the value of pos returned by indexOf() + 1. pos will be < 1 if equals field separator wasn't present in current string. This patch depends on the last of the 3 patch series sent previously. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: use bss ctrl interface command to get scan resultsKel Modderman2008-01-311-24/+37
| | | | | | Use new ctrl interface bss command get scan results for display iteratively. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: update scan results on WPA_EVENT_SCAN_RESULTSKel Modderman2008-01-313-7/+2
| | | | | | | Update scanresults when WPA_EVENT_SCAN_RESULTS event is received. No longer set a timer to update it on intervals. Signed-off-by: Kel Modderman <kel@otaku42.de>
* Add flags output to new bss ctrl interface command replyKel Modderman2008-01-311-1/+30
| | | | | | | The flags as given by scan_results command are used by wpa_gui to make various decisions. Also produce them in bss output. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: activate wep input fields for network from scan resultsKel Modderman2008-01-311-0/+2
| | | | | | | | Currently the networkconfig form does not activate the wep input fields when adding a new network with WEP string in flags determined from scan results. Signed-off-by: Kel Modderman <kel@otaku42.de>
* Added ctrl_iface command for fetching scan results once BSS at a timeJouni Malinen2008-01-304-0/+154
| | | | | | | | | | Added new ctrl_iface command, BSS, to allow scan results to be fetched without hitting the message size limits (this command can be used to iterate through the scan results one BSS at the time). "BSS first" shows information for the first BSS in the scan results, "BSS <BSSID>" for the specified BSS, and "BSS next <BSSID>" for the BSS following the specified BSS (to allow iteration through the list).
* Added CTRL-EVENT-SCAN-RESULTS eventJouni Malinen2008-01-302-0/+4
| | | | | This event notifies ctrl_iface monitors of availability of new scan results.
* wpa_gui-qt4: show message when removing/editing network from empty listKel Modderman2008-01-301-0/+10
| | | | | | | When attempting to remove or edit the currently selected network, and no network is currently existing or selected, give the user some feedback. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: consistent network index selection during list updateKel Modderman2008-01-301-3/+16
| | | | | | | | | | | | | | | When triggerUpdate() causes the network lists to be updated, store the index of the of the currently selected network listbox item and reselect that row/index post-update if it still exists. If the pre-selected index no longer exists, select the last item in the list. This gives the widget a more consistent behaviour when removing networks too. When no network has been preselected, select the same network that is currently shown in the network combobox. Rename the "selected" boolean to "current". Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: trigger UI update on disable, enable, and remove networkKel Modderman2008-01-301-0/+3
| | | | | | | | | | Call triggerUpdate() when enabling, disabling, or removing a network from current configuration. These actions may cause an immediate effect that can be viewed on the Current Status tab, and also ensure the Enabled/Disabled radio buttons stay in consistent state on the Manage Networks tab. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: allow {enable,disable,remove}Network() to accept "all"Kel Modderman2008-01-301-27/+32
| | | | | | | Allow {enable,disable,remove}Network() to accept special string "all". Use this ability in {enable,disable,remove}AllNetworks() functions. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: add Remove and Remove All menu entries to Network menuKel Modderman2008-01-303-0/+37
| | | | | | | | | | | Add Remove and Remove All menu entries to Network menu and connect them to signal/slot pairs. This adds removeSelectedNetwork() and removeAllNetworks() public slot functions. Also modify removeNetwork() to be no-op if current combobox selection is the special "Select Any Network" string. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: double click signal on network listbox spawns edit dialogKel Modderman2008-01-301-0/+2
| | | | | | | Spawn the networkconfig form in edit mode for network in listbox that is double clicked. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: connect new Scan pushbutton to signal/slot pairKel Modderman2008-01-301-0/+1
| | | | | | | This is a clone of the Scan button present on the "Current Status" tab. It is useful to have this shortcut on the "Manage Networks" tab too. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: connect Enabled/Disabled radio buttons to signal/slot pairsKel Modderman2008-01-302-0/+116
| | | | | | | | | | | | | | | | | | Connect the Enabled/Disabled radio button group up to signal/slot pairs. Also connect to network listbox changed item selection signal to collectively provide interface to display and toggle "disabled" configuration item for network currently selected in the listbox. Add enableNetwork(), disableNetwork() and getNetworkDisabled() public functions and updateNetworkDisabledStatus(), enableListedNetwork() and disableListedNetwork() public slot functions. When item selection is changed the enabled/disabled radio buttons are updated to reflect the selected networks "disabled" configuration value. This happens when user selects item or when updateNetworks() is triggered (which causes a new selection event after rebuilding network list). Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: connect new Remove pushbutton to signal/slot pairKel Modderman2008-01-302-0/+35
| | | | | | | | | | Connect the new Remove pushbutton on Manage Networks tab to a signal/slot pair. Add removeNetwork() public function and removeListedNetwork() public slot function. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: connect new Edit pushbutton to signal/slot pairKel Modderman2008-01-302-9/+33
| | | | | | | | | | | | | Connect new Edit pushbutton on Manage Networks tab to a signal/slot pair to spawn networkconfig form to edit configuration of network currently selected in listbox. Modify existing editNetwork() function to accept a QString as argument and provide editSelectedNetwork() and editListedNetwork() as public slot functions connected with the signals from the Edit entry in network menu and new Edit pushbutton respectively. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: connect new Add pushbutton to signal/slot pairKel Modderman2008-01-301-0/+1
| | | | | | | Connect the new Add pushbutton on Manage Networks tab to a signal/slot pair to spawn networkconfig form for an additional network configuration. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: populate network listbox on Manage Network tabKel Modderman2008-01-301-0/+2
| | | | | | | Populate the network listbox identically to that of the network selection combobox. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: tabbed interface for current status and network managementKel Modderman2008-01-301-153/+259
| | | | | | | | | | | Make initial interface contain two tabs, the default tab being the "Current Status" interface as it exists today, the second tab is "Manage Networks" and provides an interface to adding/removing/manipulating networks defined in the current configuration. Status labels are given descriptive names. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: restructure top menu itemsKel Modderman2008-01-302-114/+55
| | | | | | | | | | | | | | Restructure the File and Help menus, removing unused properties attributes and using uniform action names. Update the signal/slot pairs in backend accordingly. Add a Network menu and move "Enable All Networks" and "Disable All Networks" to it. Add new "Add" and "Edit" actions (edit operates on the currently selected network). Add a Ctrl+S shortcut to the save configuration action in file menu. Signed-off-by: Kel Modderman <kel@otaku42.de>
* Remove hostapd side of WPS from wpa_supplicant release packagesJouni Malinen2008-01-261-0/+3
* Removed WPS support from wpa_supplicant.Jouni Malinen2008-01-2621-807/+4
* PHP is not working on the temporary server, so remove the page thatJouni Malinen2008-01-263-53/+1
| | | | requires PHP for the time being.
* wpa_gui-qt4: Save with Qt4 designer (no changes; just format update)Jouni Malinen2008-01-251-341/+348
* wpa_gui: Do not use pairwise==CCMP to set non-WPA network to use WEPJouni Malinen2008-01-252-2/+2
| | | | | | | | | auth/encr values are not used very cleanly in NetworkConfig::paramsFromConfig() and the double-use of encr for WPA (0=TKIP, 1=CCMP) and non-WPA (0=none, 1=WEP) makes wpa_gui assume non-WPA networks that have left pairwise option to its default value (TKIP CCMP) are using WEP while they may not be. Do not use the CCMP option in pairwise data to set encr=1 if the network is not using WPA to avoid this issue.
* RADIUS server: Copy optional Proxy-State attribute(s) into responseJouni Malinen2008-01-244-15/+28
| | | | | RFC 2865 requires that these attributes are copied unmodified and in order into the response packet.
* wpa_gui-qt4: focus on input fields that cause warning on network addKel Modderman2008-01-241-0/+2
| | | | | | | When warning user about invalid WPA-PSK key or ID String input, set focus to those input fields. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: give nicer title to WPA-PSK warningKel Modderman2008-01-241-1/+1
| | | | | | | | This gives the warning message when an invalid WPA-PSK has been entered a nicer title. Currently the title bar would contain: wpa_gui <2> or similar. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: check id_str is a single string of word charactersKel Modderman2008-01-241-0/+14
| | | | | | | | | | | The network Identification string should be a simple string of characters that match the \w abbreviation for word only characters (with -) to prevent potential errors from external networking tools that may use it. Present a warning if the word contains characters not in the set: [A-Za-z0-9_-] Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: move id_str handling and add support for get/set priorityKel Modderman2008-01-241-16/+31
| | | | | | | | Use the new priority spin box provided by the networkconfig form. Also move the id_str handling down the bottom of add network function, to loosely represent its position in the form itself. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: add "Optional Settings" box with priority spin boxKel Modderman2008-01-241-51/+78
| | | | | | | | | | | This adds an "Optional Settings" box at the bottom of the networkconfig form containing the ID String input field and a network priority spin box. The layout was "broken" to add/move widgets to the form, during which the form size was increased and the vertical spacer at the bottom of form removed. The spacer was re-added once the layout was finalized. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: change tab stop order of WEP widgetsKel Modderman2008-01-241-3/+3
| | | | | | | This makes tab go from an activated wep key radio button into the corresponding wep key input field. Signed-off-by: Kel Modderman <kel@otaku42.de>
* wpa_gui-qt4: use descriptive label names in networkconfig.uiKel Modderman2008-01-241-9/+9
| | | | | | | | Change label names to use more descriptive names rather than generic names using numbers that are painful to change when adding/removing widgets. Signed-off-by: Kel Modderman <kel@otaku42.de>