hostapd/wpa_supplicant - new stable release v0.6.10

Jouni Malinen j at w1.fi
Tue Jan 12 11:47:29 EST 2010


New versions of wpa_supplicant and hostapd were just
released and are now available from http://w1.fi/

This release is a bug fix version from the stable (0.6.x) branch and
it replaces 0.6.9 as the recommended stable version.

hostapd:
* fixed SHA-256 based key derivation function to match with the
  standard when using CCMP (for IEEE 802.11r and IEEE 802.11w)
  (note: this breaks interoperability with previous version) [Bug 307]
* fixed WPS selected registrar expiration for internal PIN registrar
* disable PMTU discovery for RADIUS packets
* fixed WPS UPnP SSDP on 32-bit targets
* fixed WPS AP reconfiguration with drivers that do not use hostapd
  MLME
* fixed RSN parameter setting for multi-BSS case
* added WPS workarounds for known interoperability issues with broken,
  deployed implementation
* update IEEE 802.11w implementation to match with the published
  standard
* fixed OpCode when proxying WSC_ACK or WSC_NACK from WPS ER
* fixed proxying of WSC_NACK to WPS ER
* fixed compilation with newer GnuTLS versions
* added support for defining timeout for WPS PINs
* fixed WPS Probe Request processing to handle missing required
  attribute
* fixed PKCS#12 use with OpenSSL 1.0.0

wpa_supplicant:
* fixed SHA-256 based key derivation function to match with the
  standard when using CCMP (for IEEE 802.11r and IEEE 802.11w)
  (note: this breaks interoperability with previous version) [Bug 307]
* changed driver_wext to disconnect at init/deinit to clear state
* added explicit disconnect on 4-way handshake failures
* added WPS workarounds for known interoperability issues with broken,
  deployed implementation
* update IEEE 802.11w implementation to match with the published
  standard
* do not send WPS M8 message when learning current AP configuration as
  an external Registrar
* added a workaround for race condition between receive EAPOL frames
  and association events
* fixed compilation with newer GnuTLS versions
* fixed PKCS#12 use with OpenSSL 1.0.0


git-shortlog for 0.6.9 -> 0.6.10:

Alex Badea (1):
      radius_server: clean up completed sessions sooner

Anders Aspegren Søndergaard (1):
      wpa_supplicant: Fix ctrl_interface group permissions to allow read/execute

Andriy Tkachuk (1):
      WPS: SelectedRegistrar expiration for internal PIN registrar

Blaž Bačnik (1):
      Fix VLAN ID validation check to use the new VLAN ID

Christian Rüb (1):
      wpa_gui-qt4: Fix build with Session Manager disabled in Qt4

Dan Williams (4):
      wext: don't force-disconnect in ad-hoc mode
      wext: Fix deauthentication to do IW_MLME_DEAUTH prior to disconnect
      wext: disconnect at init and deinit
      dbus: add 'scanning' property

David Smith (1):
      Reset EAPOL pointer when handling DBus smartcard parameters

Dmitry Shmidt (1):
      Fix wpa_priv memory leak in wpa_priv_get_scan_results2()

Felix Fietkau (1):
      hostapd: Fix endian bugs in STA HT capability handling

Francesco Gringoli (1):
      nl80211: Fix channel 14 use

Helmut Schaa (1):
      wpa_supplicant: add DBus method for changing debug parameters

Johannes Berg (5):
      Clean up some more binaries in wpa_supplicant 'make clean'
      Remove mac80211_hwsim code
      make the build process quieter to see warnings
      CONFIG_WIRELESS_EXTENSION is purely internal to the Makefile
      CONFIG_WIRELESS_EXTENSION need not be in CFLAGS

Jouke Witteveen (1):
      General revision of RoboSwitch driver

Jouni Malinen (106):
      Fix WPS UPnP SSDP on 32-bit targets
      Remove local variable shadowing to avoid a warning
      driver_nl80211: Fix initial iftype change
      Remove shadowed variable
      Get rid of couple of shadowed variable warnings
      Update driver SSID and 802.1X/WPA parameters on configuration reload
      WPS: Fix hostapd runtime WPS configuration after Enrollee run
      WPS: Fix local configuration update after AP configuration
      Fix SHA-256-based KDF when using CCMP as the pairwise cipher
      nl80211: Add IGTK (AES-128-CMAC) configuration
      Fix RSN parameter setting for multi-BSS case
      Fix driver_ops function documentation
      Fix some multi-BSSID configuration operations
      Fix small HTTP processing issues
      Make deauthentication and disassociation consistent
      Disconnect if 4-way handshake processing fails
      hostapd: Fix internal crypto build without TLS
      Fix a typo in a comment
      WPS: Add a workaround for auth/encr type flags mismatches
      Work around some gcc 4.4 strict-aliasing warnings
      Add code to re-use an existing ctrl_iface socket file
      Reject hostapd configuration without channel for nl80211 drivers
      Update SA Query transaction id length based on IEEE 802.11w/D8.0
      Add more debugging details for SA Query processing
      Drop unprotected Robust Action frames from MFP STAs
      Fix WMM and MFP STA flag setting with flags_or/flags_and
      Remove unused tsinfo()
      WMM cleanup (WME -> WMM rename, comments, etc.)
      Use bit mask/shift and helper functions instead of C bit fields
      No need to check WMM IE OUI or type here
      No need for including endian.h anymore
      hostapd: Fix non-802.11w build
      Fix MLME build after WMM renames
      Resolve couple of compiler warnings
      hostapd: Require EAPOL-Key type to match with selected protocol
      Fix STA flag setting for auto-authorization if 802.1X/WPA is not used
      hostapd: EAP-AKA' needs SHA256
      Use type-punning to avoid breaking strict aliasing rules
      WPS: Change wpa_supplicant wps_reg to not send out M8
      Rename variable to avoid gcc warning about shadowed names
      Fix comparison to use correct symbol name (__rand vs. rand)
      EAP-SIM peer: Remove AT_NOTIFICATION from Notification response
      Add root .gitignore file to cleanup ignore lists
      Ignore the generated libeap.a file
      Avoid a theoretical integer overflow in base64_encode()
      WPS: Workaround mixed-mode WPA+WPA2 auth type in credentials
      Enable SHA256 digest support in OpenSSL
      Remove rc4() wrapper
      Disable PMTU discovery for RADIUS packets (sent them without DF)
      Delay processing of EAPOL frames when not associated
      Fix WPA reconfiguration to update GTK
      WPS: Add parsing of AP Setup Locked attribute
      Remove the STA entry on reassociation to clear STA PS state
      nl80211: Recognize NL80211_CMD_TRIGGER_SCAN events
      Include only the used DH groups in the build
      Skip networks without known SSID when selecting the BSS
      Remove wpa_priv on 'make clean'
      Fix dbus build without EAP
      WPS: Use Config Error 12 to indicate PBC overlap in M2D
      WPS: Mark functions static
      Replace "git-archive" with "git archive" to fix release build
      Add wpa_msg_ctrl() for ctrl_interface-only messages
      WPS: Fix credential processing for open network case
      Remove a note about other repositories of wpa_supplicant
      WPS: Fix OpCode when proxying WSC_ACK or WSC_NACK from ER
      WPS: Fix AP to proxy WSC_NACK to ER
      WPS: Remove derivation of management keys
      WPS: Send SSDP byebye notifications when stopping UPnP advertisements
      WPS: Use a dummy WSC_ACK as WLANEvent as the initial event if needed
      WPS: Do not use ASCII-dump on binary PutWLANResponse NewMessage
      WPS: Determine the OpCode based on message type attribute (UPnP)
      WPS: Fix MAC Address inside Credential be that of Enrollee's
      Fix strict aliasing issue with the internal SHA-1 implementation
      GnuTLS: Fix compilation with newer GnuTLS versions
      OpenSSL: Remove unneeded MinGW CryptoAPI compat code
      wpa_gui: Only move to WPS tab if inactive/disconnect and AP ready
      WPS: Do not try to send byebye advertisements if socket is not valid
      nl80211: Update to match with linux/nl80211.h from wireless-testing.git
      WPS: Add support for setting timeout for PIN
      Figure out absolute path for the pid file before daemonizing
      WPS: Abort ongoing PBC protocol run if session overlap is detected
      WPS: Fix Probe Request processing to handle missing attribute
      Fix PKCS#12 use with OpenSSL 1.0.0
      WPS: Cleanup subscription URL list handling
      Add cleared deprecation notes on iwl,ndiswrapper,madwifi(sta) wrappers
      Remove obsolete comment about wpa_supplicant header files
      Increase EAP server extra room for encryption overhead (for GnuTLS)
      OpenSSL: Silence "Failed to read possible Application Data"
      Fix RADIUS server deinit to cancel timeout for session removal
      Fix RADIUS client to cancel IPv6 socket read notifications
      Fix lastReqData freeing to use wpabuf_free()
      GnuTLS: Report certificate validation failures with TLS alert
      Allow TLS flags to be configured (allow MD5, disable time checks)
      Fix memory leak in config freeing
      Fix RADIUS client callback function parameters
      radius_example: Fix memory leak on deinit
      Fix a typo in a doxygen comment
      WPS: Clear SSID selection if more than one BSSID match is found
      Mark fmt parameter const for wpa_printf/msg
      Fix memory leak on RSN preauth init error path
      wpabuf: Allow wpabuf_resize(NULL, len) to be used
      Fix init2() driver_ops to get the correct global driver context
      EAP-FAST server: Piggyback Phase 2 start with end of Phase 1
      nl80211/wext: Hardcode all auth_algs as supported
      Fix MinGW build: CertCreateCertificateContext() is now known
      Preparations for 0.6.10 release

Lennert Buytenhek (1):
      Fix WMM default parameters

Masashi Honma (8):
      Fix: Loop in driver selection routine
      NetBSD: Fix wired IEEE 802.1X problem
      OpenBSD: wired IEEE 802.1X for OpenBSD
      WPS: Fix CONFIG_WPS=y compilation of wpa_supplicant
      Mac OS X: Fix wired IEEE 802.1X
      DragonFly BSD: Fix wired IEEE 802.1X
      MFP: Clear IGTK
      EAP-TTLS/PAP: User-Password obfuscation for zero length password

Oleg Kravtsov (1):
      WPS: Add PBC overlap and timeout events from WPS module

Roy Marples (1):
      driver_bsd.c: Use new MLME method of association.

Ryuji (1):
      Fix EAP-TNC peer memory leak on an error path

Sam Leffler (3):
      Stub out the dbus function w/o CONFIG_WPS to fix build
      Allow CONFIG_DEBUG_SYSLOG=y to be used
      Do not schedule a new scan if no networks are enabled

Samuel Ortiz (1):
      Getting back to DISCONNECTED afer SCANNING

Stefan Winter (1):
      Disable PMTU discovery for RADIUS packets (sent them without DF)

Witold Sowa (1):
      Remove extra whitespace

-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list