hostapd/wpa_supplicant - new release v1.1
Jouni Malinen
j
Sat Dec 1 06:04:32 PST 2012
New versions of wpa_supplicant and hostapd were just
released and are now available from http://w1.fi/
This release is from the v1.x release branch (hostap-1.git) and it
replaces v1.0 as the latest stable release.
The 1.x release branch is maintained by Angie Chinchilla and she
deserves a huge thank you for enabling a proper release to be made.
hostapd:
* Fix EAPOL processing when STA switches between multi-BSSes.
* EAP-TLS server: Fix a bug with TLS Message Length validation that
could result in the process terminating.
* Fix memory allocation failure handling in EAP-TTLS/MSCHAPv2 server.
* Fix EAP-FAST with OpenSSL 1.0.1.
* Fix WPA GTK rekeying with multiple VLANs.
* EAP-pwd: Increase maximum number of hunting-and-pecking iterations,
which results in less authentication attempts failing.
* hlr_auc_gw: Use 5 bit IND for SQN updates. The length of IND can be
configured on the command line with the new -i<IND len> parameter.
-i0 would make hlr_auc_gw behave the same as the prev implementation.
* EAP-AKA'
- Update to RFC 5448 in the leading characters used in the username.
This will make EAP-AKA' not interoperate between the earlier draft
version and the new version.
- server: Fix identity for MK derivation, when the EAP client is using
pseudonym.
* WPS:
- Fix nonce comparisons to compare all bytes, not just the first byte.
- Fix NFC password token building with WPS 2.0 to avoid wpabuf
overflow and application abort if NFC out-of-band mechanism is used
with WPS 2.0 enabled.
wpa_supplicant:
* Fix EAPOL supplicant port authorization with PMKSA caching.
* Fix EAPOL processing when STA switches between multi-BSSes.
* Fix EAP-FAST with OpenSSL 1.0.1.
* EAP-pwd: Increase maximum number of hunting-and-pecking iterations,
which results in less authentication attempts failing.
* Set state to DISCONNECTED on AP creation errors. Previously the
supplicant would stay in SCANNING state forever.
* Fix REMOVE_NETWORK to not run operations with invalid current_ssid.
* EAP-SIM peer: Fix AT_COUNTER_TOO_SMALL use.
* Interworking: Fix PLMN matching with multiple entries to compare all
entries, not just the first one.
* Handle long configuration file lines more gracefully.
* Fix adding extra IEs in sched scan.
* PMKSA: Set cur_pmksa pointer during initial association.
* PMKSA: Do not evict the active cache entry when adding new ones.
* Set state consistently to DISCONNECTED on auth/assoc failures.
* Fix BSSID enforcement with driver-based BSS selection. Set BSSID and
channel when the network block has an explicit bssid parameter to
select which BSS is to be used.
* wpa_gui: Fix compilation with gcc/g++ 4.7.
* EAP-AKA'
- Update to RFC 5448 in the leading characters used in the username.
This will make EAP-AKA' not interoperate between the earlier draft
version and the new version.
- Fix SIM/USIM determination to support EAP-AKA'.
* dbus:
- Add global capabilities property.
- Fix bss_expire_count getter, which was returning the wrong value.
- P2P: Remove network_object dictionary entry from signal
GroupStarted.
- Fix D-Bus build without ctrl_iface.
* WPS:
- Fix nonce comparisons to compare all bytes, not just the first byte.
- Fix NFC password token building with WPS 2.0 to avoid wpabuf
overflow and application abort if NFC out-of-band mechanism is used
with WPS 2.0 enabled.
- Fix cleanup of WPS operations (by clearing them) in WPA_SCANNING
and WPA_DISCONNECTED states.
- Fix issue with BSSID filter handling that could cause only a single
one of the available BSSes to be available or could cause issues
connecting.
- Fix overlapping memcpy on WPS interface addition.
* P2P:
- Remove channel 14 from supported P2P channels.
- Fix Provision Discovery retries on delay in off channel
transmission, to avoid unnecessary retries.
- Limit maximum number of stored P2P clients (the p2p_client_list
parameter) to 100.
- Improve p2p_client_list updates in configuration file, reording
entries so that the most recently added values are maintained in
the list if the list gets truncated due to size.
- Fix Provision Discovery retries during p2p_find by making the
p2p_find case behave consistently with the limited retry
behavior used with Provision Discovery retries in the IDLE state.
- Fix P2P Client Discoverability bit updates so that the bit is only
updated based on P2P Group Info attribute from a GO.
- Fix GO Negotiation race condition where both devices may believe
they are the GO. (Ignore unexpected GO Neg Response if we have
already sent GO Neg Response.)
- Deinitialize global P2P context on P2P management interface removal.
- Wait 100 ms if driver fails to start listen operation. This is a
workaround for some drivers that may accept the remain-on-channel
command, but instead of indicating start event for
remain-on-channel, just indicate that the operation has been
cancelled immediately.
- Clone max_sta_num parameter for group interfaces, allowing this
parameter set in the main config file to apply to dynamically
created P2P group interfaces.
- Fix Device ID matching for Probe Request frames, which was checking
only the first octet of the P2P Device Address.
- Do not update peer Listen channel based on PD Request Invitation
Request frames (just on Probe Response frames).
- Fix p2p_listen to disallow scheduling a new after scan operation
in the case where a p2p_connect operation is pending.
git-shortlog for 1.0 -> 1.1:
Angie Chinchilla (5):
Update version number to reflect 1.1 development status.
Make version name consistent with 2.0-devel, so the difference doesn't drive me crazy. ;)
Update version number for 1.1-rc1.
Update wpa_supplicant and hostapd ChangeLog for v1.1 release.
Update version number for 1.1
Ben Greear (1):
wpa_supplicant: Fix overlapping memcpy on WPS interface addition
Cyril Brulebois (1):
wpa_gui: Fix compilation with gcc/g++ 4.7
Dan Williams (3):
PMKSA: Do not evict active cache entry when adding new ones
wpa_supplicant: Set state to DISCONNECTED on AP creation errors
dbus: Add global capabilities property
David Bird (1):
Fix EAPOL processing when STA switches between multi-BSSes
Deepthi Gowri (1):
Fix REMOVE_NETWORK to not run operations with invalid current_ssid
Eyal Shapira (2):
WPS: Fix nonce comparisons
Fix adding extra IEs in sched scan
Fernando Herrera (1):
D-Bus: Fix wpas_dbus_getter_bss_expire_count
Jouni Malinen (29):
P2P: Fix disallowing of pending listen command to override connect
P2P: Do not update peer Listen channel based on PD/Invitation
Fix D-Bus build without ctrl_iface
EAP-AKA' server: Fix identity for MK derivation
EAP-AKA': Update to RFC 5448
hlr_auc_gw: Use 5 bit IND for SQN updates
Fix SIM/USIM determination to support EAP-AKA'
P2P: Wait 100 ms if driver fails to start listen operation
P2P: Deinitialize global P2P context on P2P mgmt interface removal
WPS: Fix BSSID filter handling
Fix BSSID enforcement with driver-based BSS selection
P2P: Fix scan_res_handler setting for p2p_scan
WPS: Cancel WPS operation also in DISCONNECTED state
P2P: Ignore unexpected GO Neg Resp is we have sent Resp
P2P: Fix P2P Client Discoverability bit updates
Set state to DISCONNECTED on auth/assoc failures
WPS: Fix NFC password token building with WPS 2.0
EAP-pwd: Increase maximum number of hunting-and-pecking iterations
P2P: Fix provision discovery retries during p2p_find
PMKSA: Set cur_pmksa pointer during initial association
Fix EAP-FAST with OpenSSL 1.0.1
Fix memory allocation failure handling in EAP-TTLS/MSCHAPv2 server
Handle long configuration file lines more gracefully
Improve p2p_client_list updates in configuration file
P2P: Limit maximum number of stored P2P clients to 100
Interworking: Fix PLMN matching with multiple entries
EAP-SIM peer: Fix AT_COUNTER_TOO_SMALL use
EAP-TLS server: Fix TLS Message Length validation
Fix EAPOL supplicant port authorization with PMKSA caching
Michael Braun (1):
Fix WPA GTK rekeying with multiple VLANs
Michael Naumov (1):
D-Bus: Remove network_object dictionary entry from signal GroupStarted
Mykyta Iziumtsev (1):
P2P: Remove channel 14 from supported P2P channels
Sunil Dutt (1):
P2P: Fix PD retries on delay in off channel transmission
Wei-Jen Lin (2):
P2P: Fix Device ID matching for Probe Request frames
P2P: Clone max_sta_num parameter for group interfaces
--
Jouni Malinen PGP id EFC895FA
More information about the Hostap
mailing list