hostapd: merge fixes for WPA packet number reuse with replayed messages and key reinstallation

Fixes: - CERT case ID: VU#228519 - CVE-2017-13077 - CVE-2017-13078 - CVE-2017-13079 - CVE-2017-13080 - CVE-2017-13081 - CVE-2017-13082 - CVE-2017-13086 - CVE-2017-13087 - CVE-2017-13088 For more information see: https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt Backport of bbda81ce3077dfade2a43a39f772cfec2e82a9a5 Signed-off-by: Felix Fietkau <nbd@nbd.name>
author: Felix Fietkau <nbd@nbd.name> 2017-10-16 12:05:09 +0200
committer: Felix Fietkau <nbd@nbd.name> 2017-10-16 12:18:19 +0200
commit: 63c17142c865618977a540485eea7a9487a58029 (patch)
tree: 4bd4ca6557f792b9b0a8a0428848e34326ee4211 /package/network/services/hostapd/patches/600-ubus_support.patch
parent: cdd093b5399d5962a44680aef74e2034f4bcf64a (diff)
download: upstream-63c17142c865618977a540485eea7a9487a58029.tar.gz
upstream-63c17142c865618977a540485eea7a9487a58029.tar.bz2
upstream-63c17142c865618977a540485eea7a9487a58029.zip
1 files changed, 5 insertions, 5 deletions
diff --git a/package/network/services/hostapd/patches/600-ubus_support.patch b/package/network/services/hostapd/patches/600-ubus_support.patch
index ee892e2bae..0d9aca9aa2 100644
--- a/package/network/services/hostapd/patches/600-ubus_support.patch
+++ b/package/network/services/hostapd/patches/600-ubus_support.patch
@@ -121,7 +121,7 @@
  	if (res == HOSTAPD_ACL_PENDING) {
  		wpa_printf(MSG_DEBUG, "Authentication frame from " MACSTR
  			   " waiting for an external authentication",
-@@ -2391,7 +2405,7 @@ static u16 send_assoc_resp(struct hostap
+@@ -2401,7 +2415,7 @@ static u16 send_assoc_resp(struct hostap
  
  static void handle_assoc(struct hostapd_data *hapd,
  			 const struct ieee80211_mgmt *mgmt, size_t len,
@@ -130,7 +130,7 @@
  {
  	u16 capab_info, listen_interval, seq_ctrl, fc;
  	u16 resp = WLAN_STATUS_SUCCESS, reply_res;
-@@ -2399,6 +2413,11 @@ static void handle_assoc(struct hostapd_
+@@ -2409,6 +2423,11 @@ static void handle_assoc(struct hostapd_
  	int left, i;
  	struct sta_info *sta;
  	u8 *tmp = NULL;
@@ -142,7 +142,7 @@
  
  	if (len < IEEE80211_HDRLEN + (reassoc ? sizeof(mgmt->u.reassoc_req) :
  				      sizeof(mgmt->u.assoc_req))) {
-@@ -2518,6 +2537,13 @@ static void handle_assoc(struct hostapd_
+@@ -2528,6 +2547,13 @@ static void handle_assoc(struct hostapd_
  	}
  #endif /* CONFIG_MBO */
  
@@ -156,7 +156,7 @@
  	/*
  	 * sta->capability is used in check_assoc_ies() for RRM enabled
  	 * capability element.
-@@ -3025,7 +3051,7 @@ int ieee802_11_mgmt(struct hostapd_data
+@@ -3035,7 +3061,7 @@ int ieee802_11_mgmt(struct hostapd_data
  
  
  	if (stype == WLAN_FC_STYPE_PROBE_REQ) {
@@ -165,7 +165,7 @@
  		return 1;
  	}
  
-@@ -3043,17 +3069,17 @@ int ieee802_11_mgmt(struct hostapd_data
+@@ -3053,17 +3079,17 @@ int ieee802_11_mgmt(struct hostapd_data
  	switch (stype) {
  	case WLAN_FC_STYPE_AUTH:
  		wpa_printf(MSG_DEBUG, "mgmt::auth");
author	Felix Fietkau <nbd@nbd.name>	2017-10-16 12:05:09 +0200
committer	Felix Fietkau <nbd@nbd.name>	2017-10-16 12:18:19 +0200
commit	63c17142c865618977a540485eea7a9487a58029 (patch)
tree	4bd4ca6557f792b9b0a8a0428848e34326ee4211 /package/network/services/hostapd/patches/600-ubus_support.patch
parent	cdd093b5399d5962a44680aef74e2034f4bcf64a (diff)
download	upstream-63c17142c865618977a540485eea7a9487a58029.tar.gz upstream-63c17142c865618977a540485eea7a9487a58029.tar.bz2 upstream-63c17142c865618977a540485eea7a9487a58029.zip