hostapd and tkip countermeasures

Jouni Malinen jkmaline at cc.hut.fi
Wed Oct 12 22:33:35 EDT 2005


On Sat, Oct 08, 2005 at 09:32:51PM +0000, divy at speakeasy.net wrote:

> There does not seem to be an hostapd equivalent to the wpa_supplicant function wpa_drv_set_countermeasures(). 
> Hostapd enforces tkip countermeasures only if it handles the management frames. 
> If a driver only reports association events, hostapd proceeds to the authentication phase even if coutermeasures are still active.
> 
> Here is a proposed patch to hostapd.c that fixes the issue:

Thanks, applied. This does not fix the exact behavior since the client
is allowed to complete association, but this is clearly improving the
previous implementation. wpa_drv_set_countermeasures() like
functionality and changes in the drivers would be needed to make the
IEEE 802.11 authentication and association fail when countermeasures are
in effect.

-- 
Jouni Malinen                                            PGP id EFC895FA



More information about the HostAP mailing list