rpms/wpa_supplicant
7
0
Fork 0
Code Issues Pull Requests Releases Activity
159 Commits 7 Branches 27 Tags 528 KiB
ba7c0cc053
Commit Graph

159 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Fedora Release Engineering
ba7c0cc053 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2019-02-03 11:55:38 +00:00
Igor Gnatenko
73d3132b66 Remove obsolete Group tag 
References: https://fedoraproject.org/wiki/Changes/Remove_Group_Tag
 2019-01-28 20:24:55 +01:00
Lubomir Rintel
b324e38db0 Expose support of SAE key management on D-Bus 
Also do a new build once the WPA3 features are turned on.
 2019-01-22 13:05:32 +01:00
Lubomir Rintel
f0fc5fbf86 Enable opportunistic encryption 
Replaces open authentication in WPA3.
 2019-01-22 13:05:07 +01:00
Lubomir Rintel
5731b54061 Enable DPP 
This replaces WPS with WPA3.
 2019-01-22 13:05:07 +01:00
Lubomir Rintel
966d547f69 Enable MESH & SAE 2019-01-21 16:07:22 +01:00
Lubomir Rintel
522250ddd7 Synchronize the configuration with defconfig 
This makes it easier to track upstream changes.
 2019-01-21 15:50:27 +01:00
Lubomir Rintel
064b725fbd Update to 2.7 upstream release 
Also, drop the non-aggressive roaming patch. There doesn't seem to be
much reason to deviate from upstream here.

Modernize the spec a bit by using %autosetup.
 2018-12-18 17:31:58 +01:00
Lubomir Rintel
6671a4f075 Expose availability of SHA384 and FT on D-Bus 2018-11-29 15:19:05 +01:00
Lubomir Rintel
4356e0b173 Make the builds verbose 2018-11-29 15:08:54 +01:00
Lubomir Rintel
7f96e673cc Drop the broken Pmf D-Bus property patch 
There already is a Pmf property. And NetworkManager doesn't need it
anyways.

More here: http://lists.infradead.org/pipermail/hostap/2018-August/038754.html
 2018-08-15 14:45:49 +02:00
Davide Caratti
1a3463cc4a Ignore unauthenticated encrypted EAPOL-Key data 
CVE-2018-14526
Upstream advisory: https://w1.fi/security/2018-1/unauthenticated-eapol-key-decryption.txt
 2018-08-08 19:27:52 +02:00
Fedora Release Engineering
ce8fa396fd - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2018-07-14 08:59:20 +00:00
Davide Caratti
7c4f7fa0c7 fix wrong encoding of NL80211_ATTR_SMPS_MODE 
https://bugzilla.redhat.com/show_bug.cgi?id=1570903
 2018-06-22 16:50:28 +02:00
Davide Caratti
f50b348f99 make PMF configurable using D-Bus 
https://bugzilla.redhat.com/show_bug.cgi?id=1567474
 2018-05-11 18:56:57 +02:00
Fedora Release Engineering
e36192aacc - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2018-02-09 21:09:00 +00:00
Davide Caratti
fc0458e34d Don't restart wpa_supplicant.service on package upgrade (rh #1535233) 
https://bugzilla.redhat.com/show_bug.cgi?id=1535233
 2018-01-16 23:12:49 +01:00
Jiří Klimeš
4d5c88f31d Enable Fast BSS Transition for station mode (rh #1372928) 
https://bugzilla.redhat.com/show_bug.cgi?id=1372928
 2017-11-01 13:09:19 +01:00
Jiří Klimeš
dadca54170 Fix crash when using MACsec without loaded macsec.ko (rh #1497640) 
https://bugzilla.redhat.com/show_bug.cgi?id=1497640
 2017-11-01 12:58:14 +01:00
Lubomir Rintel
fbf8c1b456 Fix the "Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2" issues 
Upstream advisory: https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
Details and the paper: https://www.krackattacks.com/

- hostapd: Avoid key reinstallation in FT handshake (CVE-2017-13082)
- Fix PTK rekeying to generate a new ANonce
- Prevent reinstallation of an already in-use group key and extend
  protection of GTK/IGTK reinstallation of WNM-Sleep Mode cases
  (CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081,
  CVE-2017-13087, CVE-2017-13088)
- Prevent installation of an all-zero TK
- TDLS: Reject TPK-TK reconfiguration
- WNM: Ignore WNM-Sleep Mode Response without pending request
- FT: Do not allow multiple Reassociation Response frames
 2017-10-16 13:09:02 +02:00
Lubomir Rintel
f5828996b2 Fix a bogus changelog date 2017-10-16 13:08:19 +02:00
Fedora Release Engineering
ca7cba89e1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild 2017-08-03 10:22:58 +00:00
Fedora Release Engineering
9273785be3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild 2017-07-27 21:45:30 +00:00
Beniamino Galvani
3060fdc1de OpenSSL: fix private key password callback (rh #1465138) 2017-07-17 19:04:32 +02:00
Beniamino Galvani
750ee3c11d OpenSSL: use system ciphers by default (rh#1462262) 2017-07-17 19:04:32 +02:00
Beniamino Galvani
68b720b838 nl80211: Fix race condition in detecting MAC change (rh #1451834) 2017-05-17 17:27:19 +02:00
Davide Caratti
e688ea7718 macsec: fix segmentation fault and coverity scans (rh#1428937) 2017-04-11 19:08:00 +02:00
Thomas Haller
18d8fa3c44 enable IEEE 802.11w (management frame protection, PMF) (rh#909499) 2017-03-13 14:01:14 +01:00
Davide Caratti
fb7f6658b8 backport support for IEEE 802.1AE (macsec) 2017-03-03 15:27:28 +01:00
Fedora Release Engineering
e0ed12b18c - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild 2017-02-11 17:32:07 +00:00
Jiří Klimeš
73183ae44c Enable Wi-Fi Display support for Miracast (rh #1395682) 
Patch by: Jonathan Dieter <jdieter@lesbg.com>

https://bugzilla.redhat.com/show_bug.cgi?id=1395682
 2017-01-27 12:26:42 +01:00
Lubomir Rintel
d0ad4f7e1d Update to version 2.6 2016-11-22 15:55:13 +01:00
Lubomir Rintel
022452e0f6 Don't own a directory in /run/ 2016-03-21 14:10:47 +01:00
Fedora Release Engineering
f03bcb0261 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild 2016-02-05 03:09:06 +00:00
Lubomir Rintel
20b650e1cf Really synchronize the service file with upstream 2015-11-16 18:26:53 +01:00
Lubomir Rintel
cd31a2e606 Sync the .service file with the tree 2015-11-03 10:20:13 +01:00
Lukáš Nykrýn
70ad8a7849 Scriptlets replaced with new systemd macros (rh #850369) 2015-11-03 10:06:34 +01:00
Lubomir Rintel
dfd04df55b Enable syslog by default 
This gives more relevant data to journal than logging in stdout. Also, pid file
is no longer needed, since we're a Type=dbus service.

The flat logging file is removed since it's not needed when we're logging into
journal. We probably can remove the logrotate file too.

The -u argument is moved into the service file as we can't really remove it
without changing the service's Type.
 2015-10-31 22:12:37 +01:00
Lubomir Rintel
dd5ca60f4a Update to version 2.5 2015-10-27 09:08:51 +01:00
Lubomir Rintel
4b1dcdcfa7 Fix the D-Bus policy 2015-10-23 18:07:06 +02:00
Ville Skyttä
54e564b9e7 Don't order service after syslog.target (rh #1055197), mark COPYING as %license 2015-10-03 17:06:39 +03:00
Jiří Klimeš
3675773849 Fix for NDEF record payload length checking (rh #1241907) 2015-07-15 09:33:30 +02:00
Jiří Klimeš
d63c1a7a80 Fix a crash if P2P management interface is used (rh #1231973) 
Upstream fix:
http://w1.fi/cgit/hostap/commit/wpa_supplicant/dbus/dbus_new_handlers.c?id=8a78e227df1ead19be8e12a4108e448887e64d6f

https://bugzilla.redhat.com/show_bug.cgi?id=1231973
 2015-06-16 11:25:26 +02:00
Dan Williams
2ba26b0190 Remove obsolete wpa_supplicant-openssl-more-algs.patch 
Fixed upstream back in 2010 by 1056dad796e78509604c0aa836803c8425b4ba37:
"Fix PKCS#12 use with OpenSSL 1.0.0"
 2015-04-23 12:43:27 -05:00
Adam Williamson
47da8a0463 new release 2.4, backport CVE-2015-1863 fix, drop libeap 2015-04-23 10:06:50 -07:00
Orion Poplawski
3391589fc4 Do not install wpa_supplicant.service as executable (bug #803980) 2014-11-01 08:13:14 -06:00
Lubomir Rintel
ae3bd93456 Drop duplicated options 
It's sufficient to keep them configurable in environment file.
 2014-10-30 18:13:21 +01:00
Lubomir Rintel
237e32e034 Update to 2.3 2014-10-30 18:11:30 +01:00
Dan Williams
05ce9ccd8e Use os_exec() for action script execution (CVE-2014-3686) 2014-10-22 19:02:24 -05:00
Kevin Fenzi
8e194e2572 Rebuild for rpm bug 1131960 2014-08-21 11:54:52 -06:00