hostapd/wpa_supplicant - new development release v0.5.2

Jouni Malinen jkmaline
Sun Mar 19 19:29:38 PST 2006


New versions of wpa_supplicant and hostapd were just
released and are now available from http://hostap.epitest.fi/

This release is from the development branch (0.5.x). Please note that
0.4.x branch continues to be the current source of stable releases.


hostapd:
* fixed stdarg use in hostapd_logger(): if both stdout and syslog
  logging was enabled, hostapd could trigger a segmentation fault in
  vsyslog on some CPU -- C library combinations
* moved HLR/AuC gateway implementation for EAP-SIM/AKA into an external
  program to make it easier to use for implementing real SS7 gateway;
  eap_sim_db is not anymore used as a file name for GSM authentication
  triplets; instead, it is path to UNIX domain socket that will be used
  to communicate with the external gateway program (e.g., hlr_auc_gw)
* added example HLR/AuC gateway implementation, hlr_auc_gw, that uses
  local information (GSM authentication triplets from a text file and
  hardcoded AKA authentication data); this can be used to test EAP-SIM
  and EAP-AKA
* added Milenage algorithm (example 3GPP AKA algorithm) to hlr_auc_gw
  to make it possible to test EAP-AKA with real USIM cards (this is
  disabled by default; define AKA_USE_MILENAGE when building hlr_auc_gw
  to enable this)
* driver_madwifi: added support for getting station RSN IE from
  madwifi-ng svn r1453 and newer; this fixes RSN that was apparently
  broken with earlier change (r1357) in the driver
* changed EAP method registration to use a dynamic list of methods
  instead of a static list generated at build time
* fixed WPA message 3/4 not to encrypt Key Data field (WPA IE)
  [Bug 125]
* added ap_max_inactivity configuration parameter

wpa_supplicant:
* do not try to use USIM APDUs when initializing PC/SC for SIM card
  access for a network that has not enabled EAP-AKA
* fixed EAP phase 2 Nak for EAP-{PEAP,TTLS,FAST} (this was broken in
  v0.5.1 due to the new support for expanded EAP types)
* added support for generating EAP Expanded Nak
* try to fetch scan results once before requesting new scan when
  starting up in ap_scan=1 mode (this can speed up initial association
  a lot with, e.g., madwifi-ng driver)
* added support for receiving EAPOL frames from a Linux bridge
  interface (-bbr0 on command line)
* fixed EAPOL re-authentication for sessions that used PMKSA caching
* changed EAP method registration to use a dynamic list of methods
  instead of a static list generated at build time
* fixed PMKSA cache deinitialization not to use freed memory when
  removing PMKSA entries
* fixed a memory leak in EAP-TTLS re-authentication
* reject WPA/WPA2 message 3/4 if it does not include any valid
  WPA/RSN IE
* driver_wext: added fallback to use SIOCSIWENCODE for setting auth_alg
  if the driver does not support SIOCSIWAUTH


-- 
Jouni Malinen                                            PGP id EFC895FA




More information about the Hostap mailing list