diff options
author | Felix Fietkau <nbd@nbd.name> | 2017-10-16 12:05:09 +0200 |
---|---|---|
committer | Felix Fietkau <nbd@nbd.name> | 2017-10-16 12:18:19 +0200 |
commit | 63c17142c865618977a540485eea7a9487a58029 (patch) | |
tree | 4bd4ca6557f792b9b0a8a0428848e34326ee4211 /package/network/services/hostapd/patches/600-ubus_support.patch | |
parent | cdd093b5399d5962a44680aef74e2034f4bcf64a (diff) | |
download | upstream-63c17142c865618977a540485eea7a9487a58029.tar.gz upstream-63c17142c865618977a540485eea7a9487a58029.tar.bz2 upstream-63c17142c865618977a540485eea7a9487a58029.zip |
hostapd: merge fixes for WPA packet number reuse with replayed messages and key reinstallation
Fixes:
- CERT case ID: VU#228519
- CVE-2017-13077
- CVE-2017-13078
- CVE-2017-13079
- CVE-2017-13080
- CVE-2017-13081
- CVE-2017-13082
- CVE-2017-13086
- CVE-2017-13087
- CVE-2017-13088
For more information see:
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
Backport of bbda81ce3077dfade2a43a39f772cfec2e82a9a5
Signed-off-by: Felix Fietkau <nbd@nbd.name>
Diffstat (limited to 'package/network/services/hostapd/patches/600-ubus_support.patch')
-rw-r--r-- | package/network/services/hostapd/patches/600-ubus_support.patch | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/package/network/services/hostapd/patches/600-ubus_support.patch b/package/network/services/hostapd/patches/600-ubus_support.patch index ee892e2bae..0d9aca9aa2 100644 --- a/package/network/services/hostapd/patches/600-ubus_support.patch +++ b/package/network/services/hostapd/patches/600-ubus_support.patch @@ -121,7 +121,7 @@ if (res == HOSTAPD_ACL_PENDING) { wpa_printf(MSG_DEBUG, "Authentication frame from " MACSTR " waiting for an external authentication", -@@ -2391,7 +2405,7 @@ static u16 send_assoc_resp(struct hostap +@@ -2401,7 +2415,7 @@ static u16 send_assoc_resp(struct hostap static void handle_assoc(struct hostapd_data *hapd, const struct ieee80211_mgmt *mgmt, size_t len, @@ -130,7 +130,7 @@ { u16 capab_info, listen_interval, seq_ctrl, fc; u16 resp = WLAN_STATUS_SUCCESS, reply_res; -@@ -2399,6 +2413,11 @@ static void handle_assoc(struct hostapd_ +@@ -2409,6 +2423,11 @@ static void handle_assoc(struct hostapd_ int left, i; struct sta_info *sta; u8 *tmp = NULL; @@ -142,7 +142,7 @@ if (len < IEEE80211_HDRLEN + (reassoc ? sizeof(mgmt->u.reassoc_req) : sizeof(mgmt->u.assoc_req))) { -@@ -2518,6 +2537,13 @@ static void handle_assoc(struct hostapd_ +@@ -2528,6 +2547,13 @@ static void handle_assoc(struct hostapd_ } #endif /* CONFIG_MBO */ @@ -156,7 +156,7 @@ /* * sta->capability is used in check_assoc_ies() for RRM enabled * capability element. -@@ -3025,7 +3051,7 @@ int ieee802_11_mgmt(struct hostapd_data +@@ -3035,7 +3061,7 @@ int ieee802_11_mgmt(struct hostapd_data if (stype == WLAN_FC_STYPE_PROBE_REQ) { @@ -165,7 +165,7 @@ return 1; } -@@ -3043,17 +3069,17 @@ int ieee802_11_mgmt(struct hostapd_data +@@ -3053,17 +3079,17 @@ int ieee802_11_mgmt(struct hostapd_data switch (stype) { case WLAN_FC_STYPE_AUTH: wpa_printf(MSG_DEBUG, "mgmt::auth"); |