Commit Graph

195 Commits

Author SHA1 Message Date
Davide Caratti
43725b5705 SPDX migration 2023-02-15 18:01:11 +01:00
Fedora Release Engineering
3ef5b4fc01 Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2023-01-21 06:59:59 +00:00
Fedora Release Engineering
6396a30992 Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2022-07-23 12:38:15 +00:00
Adam Williamson
2a2d184805 Allow legacy renegotiation for bad PEAP servers (#2072070)
Thanks to James Ralston for this.
2022-05-02 11:05:14 -07:00
Lubomir Rintel
de6fe465d1 Try to clean the defconfig mess a bit 2022-03-13 18:44:59 +01:00
Michael Yartys
b0ac7025d7 defconfig: enable OCV support
Edit patch to make sure that Operating Channel Validation (OCV) is enabled.
This is a security feature that prevents MITM multi-channel attacks.

Signed-off-by: Michael Yartys <michael.yartys@protonmail.com>
2022-01-26 15:55:53 +01:00
Fedora Release Engineering
7baa51b137 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2022-01-22 04:40:31 +00:00
Davide Caratti
9d496d627f Update to version 2.10
(keeping CONFIG_WEP enabled)

Related: #2041269

Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2022-01-17 16:00:53 +01:00
Sahana Prasad
59e9e7d7f1 Rebuilt with OpenSSL 3.0.0 2021-09-14 19:17:53 +02:00
Davide Caratti
e2cd2cf1bc fix bogus date in the specfile 2021-09-06 14:07:41 +02:00
Davide Caratti
b04da8c006 fix NetworkManager-CI failures with OpenSSL-3.0.0
Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2021-09-03 12:16:49 +02:00
Dave Olsthoorn
f899dc2670 Fix issues with FT a.k.a. 802.11r when not supported by adapter
Signed-off-by: Dave Olsthoorn <dave@bewaar.me>
2021-07-27 09:47:33 +02:00
Fedora Release Engineering
27449214b6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2021-07-23 21:08:45 +00:00
Davide Caratti
d60627e929 P2P: Fix a corner case in peer addition based on PD Request
CVE-2021-27803

Upstream advisory:

https://w1.fi/security/2021-1/wpa_supplicant-p2p-provision-discovery-processing-vulnerability.txt

Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2021-03-01 10:40:38 +01:00
Davide Caratti
cd7668703c P2P: Fix copying of secondary device types for P2P group client
CVE-2021-0326

Upstream advisory: https://w1.fi/security/2020-2/wpa_supplicant-p2p-group-info-processing-vulnerability.txt

Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2021-02-04 12:10:34 +01:00
Fedora Release Engineering
0b9539a24d - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2021-01-27 23:40:28 +00:00
Davide Caratti
2c243f63e9 backport a couple of D-Bus patches:
- export OWE capabilities
 - allow changing the 'bridge' interface

Related: #1915236
2021-01-22 15:26:57 +01:00
Tom Stellard
ac52bc40db Add BuildRequires: make
https://fedoraproject.org/wiki/Changes/Remove_make_from_BuildRoot
2021-01-19 02:51:13 +00:00
Antonio Cardace
6cc245db17 Enable WPA-EAP-SUITE-B-192 ciphers
Signed-off-by: Antonio Cardace <acardace@redhat.com>
2020-12-17 19:07:22 +01:00
Davide Caratti
5e4c7a9e70 fix eln build:
- disable gui on non-fedora build
- don't include wpa_gui.8 in the rpm when building without gui
- add missing build requirement (gcc)

Resolves: #1902609
2020-12-17 18:24:42 +01:00
Fedora Release Engineering
1ffda691c8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2020-07-29 14:19:54 +00:00
Benjamin Berg
bc38aa032d fix some issues with P2P operation 2020-06-22 16:14:57 +02:00
Davide Caratti
e119134a59 Enable TDLS
From:
https://src.fedoraproject.org/rpms/wpa_supplicant/pull-request/4

Upstream commit:
http://lists.infradead.org/pipermail/hostap/2020-April/041632.html
2020-04-24 22:20:57 +02:00
Fedora Release Engineering
7079b4c5f0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2020-01-31 03:56:22 +00:00
Davide Caratti
ce782e83be Fix AP mode PMF disconnection protection bypass
CVE-2019-16275

Upstream advisory: http://w1.fi/security/2019-7/ap-mode-pmf-disconnection-protection-bypass.txt

Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2019-10-30 16:30:04 +01:00
Davide Caratti
04921b87bf move wpa_gui.8.gz in the correct '%files' section
Fixes: #1788386

Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2019-09-06 11:26:01 +02:00
Lubomir Rintel
1881d76730 SPEC file cleanup 2019-09-06 10:01:42 +02:00
Lubomir Rintel
f64f838413 Use defconfig to configure the supplicant
This aligns the upstream configuration with ours, clearly highlighting
the differencies.
2019-09-06 10:01:08 +02:00
Vladimír Beneš
972ffde62b tests: fix link to gitlab.freedesktop.org 2019-09-05 16:26:46 +02:00
Vladimír Beneš
c1cfbbae49 tests: add tests yml definition file
Test basic wpa_supplicant features by using NetworkManager's wifi
and 802.1x integration tests from:

https://gitlab.freedesktop.org/NetworkManager/NetworkManager-ci
2019-09-05 14:46:34 +02:00
Lubomir Rintel
908d38195b Update to version 2.9 2019-08-16 12:28:02 +02:00
Fedora Release Engineering
d6bd533fa7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-07-27 03:42:17 +00:00
Davide Caratti
9a03ae212b bump release to 2.8-2
Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2019-05-10 18:37:28 +02:00
Davide Caratti
aa74d75567 fix incorrect information in v2.8.1 changelog
Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2019-05-10 16:42:07 +02:00
Davide Caratti
10a177082a Update to 2.8 upstream release
Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2019-05-02 11:30:10 +02:00
Davide Caratti
f3c614c6af fix SAE and EAP_PWD vulnerabilities
CVE-2019-9494 (cache attack against SAE)
CVE-2019-9495 (cache attack against EAP-pwd)
CVE-2019-9496 (SAE confirm missing state validation in hostapd/AP)
CVE-2019-9497 (EAP-pwd server not checking for reflection attack)
CVE-2019-9498 (EAP-pwd server missing commit validation for scalar/element)
CVE-2019-9499 (EAP-pwd peer missing commit validation for scalar/element)

Signed-off-by: Davide Caratti <dcaratti@redhat.com>
2019-04-12 12:14:43 +02:00
Fedora Release Engineering
ba7c0cc053 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-02-03 11:55:38 +00:00
Igor Gnatenko
73d3132b66 Remove obsolete Group tag
References: https://fedoraproject.org/wiki/Changes/Remove_Group_Tag
2019-01-28 20:24:55 +01:00
Lubomir Rintel
b324e38db0 Expose support of SAE key management on D-Bus
Also do a new build once the WPA3 features are turned on.
2019-01-22 13:05:32 +01:00
Lubomir Rintel
f0fc5fbf86 Enable opportunistic encryption
Replaces open authentication in WPA3.
2019-01-22 13:05:07 +01:00
Lubomir Rintel
5731b54061 Enable DPP
This replaces WPS with WPA3.
2019-01-22 13:05:07 +01:00
Lubomir Rintel
966d547f69 Enable MESH & SAE 2019-01-21 16:07:22 +01:00
Lubomir Rintel
522250ddd7 Synchronize the configuration with defconfig
This makes it easier to track upstream changes.
2019-01-21 15:50:27 +01:00
Lubomir Rintel
064b725fbd Update to 2.7 upstream release
Also, drop the non-aggressive roaming patch. There doesn't seem to be
much reason to deviate from upstream here.

Modernize the spec a bit by using %autosetup.
2018-12-18 17:31:58 +01:00
Lubomir Rintel
6671a4f075 Expose availability of SHA384 and FT on D-Bus 2018-11-29 15:19:05 +01:00
Lubomir Rintel
4356e0b173 Make the builds verbose 2018-11-29 15:08:54 +01:00
Lubomir Rintel
7f96e673cc Drop the broken Pmf D-Bus property patch
There already is a Pmf property. And NetworkManager doesn't need it
anyways.

More here: http://lists.infradead.org/pipermail/hostap/2018-August/038754.html
2018-08-15 14:45:49 +02:00
Davide Caratti
1a3463cc4a Ignore unauthenticated encrypted EAPOL-Key data
CVE-2018-14526
Upstream advisory: https://w1.fi/security/2018-1/unauthenticated-eapol-key-decryption.txt
2018-08-08 19:27:52 +02:00
Fedora Release Engineering
ce8fa396fd - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-07-14 08:59:20 +00:00
Davide Caratti
7c4f7fa0c7 fix wrong encoding of NL80211_ATTR_SMPS_MODE
https://bugzilla.redhat.com/show_bug.cgi?id=1570903
2018-06-22 16:50:28 +02:00