[RFC PATCH] fix MAC address spoofing issues

Jouni Malinen j at w1.fi
Sat Dec 3 06:31:09 EST 2011


On Fri, Oct 21, 2011 at 09:49:19PM +0200, Maxim Levitsky wrote:
> On Fri, 2010-11-19 at 15:52 -0600, Dan Williams wrote:
> > This patch is from Jirka Klimes, developed to fix various issues when
> > spoofing MAC addresses.  Does this approach look workable?  If you have
> > specific questions about the issues he encountered I'm sure he could
> > elaborate.  But part of the problem was that if the MAC address gets
> > changed without removing and re-adding the interface to the supplicant,
> > it gets some upper-layer stuff wrong.

> I just run into the issue this patch supposed to fix.
> Any update on this?

It was changing things in a wrong place (association vs. when the MAC
address actually changed) and no one seemed to be interested in doing
the changes correctly based on the EVENT_INTERFACE_ENABLED event that I
pointed out at the time.

This is now addressed more properly, i.e., wpa_supplicant updates its
internal knowledge of the MAC address on EVENT_INTERFACE_ENABLED and you
can do something like this:

ifconfig wlan0 down
ifconfig wlan0 hw ether 02:11:22:33:44:55
ifconfig wlan0 up

while wpa_supplicant is running and you'll then get connected using the
new MAC address once the interface is back up.

-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list