It is safer to assume that the driver could be using NoA and reject
any Presence Request unless ...

WPS overlap detection can detect false overlap if a P2P peer
changes UUID while authentication i...

P2P use cases do not allow use of Label config method and the earlier
code for this has already ...

Fix start of reauthentication after failed authentication with
passthrough (external AAA server)...

P2P invitation responses are transmitted with the BSSID set to the peer
address. Pass these acti...

Reject messages that fail to be parsed instead of trying to use
partially parsed information.

S...

The wpa_state needs to be dropped back to DISCONNECTED to allow scan
results to trigger a new au...

The pseudonym is a temporary identity, but is no one-time identifier (like
the fast re-authentic...

This updates EAP-AKA peer implementation with the changes that previous
commits did for EAP-SIM....

[Bug 425]
(cherry picked from commit 1037235ca0d934c964544bb38f0a646553933a82)

This makes it clearer that the PMKSA caching entry gets removed from
the driver regardless of ho...

Make sure sign extension does not end up getting used here by
explicitly type casting the variab...

This allows the MAC address of the interface to be changed when the
interface is set down even i...

The RTM_NEWLINK even can have IFF_UP flag even if the interface is
down. Do not generate EVENT_I...

I have a test case where I remove and insert another network adapter
between two connections to ...

The dynamically generated PINs are supposed to have 8 digits, but
some PIN generatation cases we...

When using wpa_supplicant AP mode, WPS support is enabled by default for
WPA/WPA2-Personal. Chan...

The show_group_started variable could be left to 1 based on an earlier
failed attempt to start P...

When hostapd controls multiple radios, WPS operations are started on
all interfaces. However, wh...

Commit 628d54639a90f779fd5c98c31e049638de56b17e introduced number
of new WPS related ctrl_iface ...

Better make sure that the SSID is available before dereferencing
the pointer to the SSID element...

While the copy is not used as a null terminated string, this can prevent
some static analyzers f...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit 864a8e3bf67e1c77702068cc14909b...

wpa_supplicant is going to reject a configuration file that uses
WPA/WPA2-Personal (the default ...

This is the default value if device_type is not set, so do not
write it to the wpa_supplicant co...

If the station is indicating use of WPS, WSC IE should be added into the
(Re)Association Respons...

Signed-off-by: David Spinadel <[email protected]>
(cherry picked from commit 9a6ade33d451...

Commit 940a0ce9702095bb079bd97857a2605516f83157 moved the STA associated
check from driver_*.c i...

Use time_t instead of os_time_t variable with the gmtime() call to
avoid possible compiler warni...

Another niceness of OpenSSL is that if the high-order bit of a 521-bit
big num is not set then B...

The previous EAP-pwd KDF implemented has an issue with group 21, that is
an elliptic curve group...

When GO negotation fails the WPS method is currently not cleared, which
can result in GO negotia...

r->level got assigned so it's clearly not INVALID; instead
r->qual should be invalid.

Signed-ho...

If P2P device expires while a GO Negotiation is in progress, currently
p2p->go_neg_peer is clear...

Invalid use of memcpy instead of memcmp in comparison resulted in the
GO interface address getti...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit 4740d5b9d9052b7...

This is a workaround for Windows 7 supplicant rejecting WPA msg 3/4
in case it used Secure=1 in ...

Some static analyzers complain about memset with '0' value. This was
used correctly here, but si...

This avoid incorrect errors from some static analyzers that do not like
memmove with pointers ju...

sched_scan ended up broken in 1.x due to the point
it was branched from including it, but not ha...

Some drivers do not handle concurrent remain-on-channel operation
requests, so run p2p_stop_find...

If a P2P client associates with the group while it is
already associated, two member entries may...

In AP mode, authentication algorithm is reset in
hostapd_config_defaults_bss() and never set to ...

The P2P_FIND command was failing if it was issued at the moment when
a scan operation was in pro...

The libnl_2 library uses static linking and different path for
header files in the Android ICS r...

This was supposed to be in the new D-Bus interface block, not in
the old one.

Signed-hostap: Jo...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit e4b8ac129b8ae72...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit dd17f3ec4fce001...

Use a temporary PTK buffer during 4-way handshake when rekeying PTK
so that the new EAPOL-Key fr...

P2P IE was incorrectly added in wpa_supplicant AP mode even if P2P
function was not actually ena...

When wpa_supplicant AP mode is used, WPS was enabled by default
regardless of security mode. Thi...

Commit c2ff13c533306ac06f08fd03fca9e04cc994cabd broke this with a
copy-paste typo that ended up ...

Avoid zero-length memset at the end of the buffer. This is not really
needed, but it makes the c...

Avoid zero-length memset at the end of the buffer. This is not really
needed, but it makes the c...

Explicitly validate data_len so that static analyzers do not get
confused about the padlen valid...

Explicitly validate seed_len to skip memset call with zero length
of copied data at the end of t...

data->phase2_method cannot really be NULL if
eap_fast_init_phase2_method() returns success, but ...

hapd->time_adv cannot really be NULL if hostapd_update_time_adv()
returns success, but this cons...

driver_nl80211.c assumes that global driver pointer is set, so better
make this more consistent....

Do not call p2p_group_notif_assoc() if the driver did not return
IEs from the association reques...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit 6ec64015f5a4c97724b4e7b949befc...

md->curlen cannot indicate full buffer size here since the buffered
data is processed whenever t...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit 9d77a392c7c9c021c3b5990dce3ea3...

This makes it easier to understand the event related logs.

Signed-hostap: Ben Greear <greearb@c...

Replace the inline helper function with a new C file that can be used
for common driver API rela...

The word "targer" in the comments for pending_bssid of
wpa_supplicant data structure should be "...

This function can fail in theory since the SHA-1 functions are
allowed to return an error. While...

The padding validation was done on the last padding-length octets in the
buffer which misses the...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit edc95487aa41b584736e7d8ee10c3d...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit 717cc12f6097da27d087af5f7c0cce...

wpa_msg() has to use hapd->msg_ctx instead of hapd as the context
pointer to work properly in wp...

Currently, there is no events over the control interface
when a AP disconnects a station due to ...

Use a driver_ndis.c specific initialization function to fill in the
wpa_driver_ops information t...

Some of the parameter completion functions are only used if
CONFIG_P2P=y.

Signed-hostap: Jouni ...

Signed-hostap: Jouni Malinen <[email protected]>
(cherry picked from commit d33ce0d5b5766d68ef352903197e7f...

Include common/defs.h to get full enum definitions to avoid compiler
errors without CONFIG_CTRL_...

Commit bf9d5518d55e314cad2dbac0715ce151b2807691 did not split
LOCAL_SHARED_LIBRARIES properly an...

Signed-hostap: Angie Chinchilla <[email protected]>

wpa_supplicant_rsn_preauth_scan_results() needs to be called to
update RSN pre-authentication ca...

The GTK is renewed in the hostapd after a MIC attack dissassociation
without informing the drive...

When the supplicant acts as a registrar to learn the access point
parameters send the credential...

There is not much need for showing the interim qsort steps, so just show
the ordered results.

S...

In scan.c, merge a channel's noise value into the scan results. When
comparing scan results, com...

Some stations have been reported to send EAPOL-Key Error Reports
indicating Michael MIC failures...

The eloop timeout to stop TKIP countermeasures has to be canceled
on deinit path to avoid leavin...

Signed-hostap: Jouni Malinen <[email protected]>

Converts from a string to a control request enum when input
from a control interface is received...

The D-Bus interface wants to use it too, so it makes sense
to have it generic.

Signed-off-by: D...

Add a D-Bus mechanism for clients to respond to the NetworkRequest
signal.

Signed-off-by: Dan W...

Add a D-Bus signal for EAP SM requests. This signal is emitted on the
Interface object so that c...

Control requests will be extended for non-EAP uses later, so it makes
sense to have them be gene...

Special processing is needed to handle EAP user request for
identity or password at the beginnin...

At least with driver_test.c, the BSS table may not include frequency
information. In such a case...

The interface may not yet have been set to P2P client mode immediately
after GO Negotiation when...

Instead of hardcoding IEEE 802.11b rates to be disabled whenever
P2P support is built in and sup...

This function was used unconditionally if wpa_supplicant build
includes CONFIG_P2P=y. Adding a s...

nl80211_disable_11b_rates() function was supposed to use the 'disabled'
parameter to figure out ...

disable_11b_rates() is called on interface addition,
but not on interface type change, resulting...

This can be used to apply the no-CCK rule conditionally depending on
which frame is being sent. ...