[RFC PATCH] fix MAC address spoofing issues

Jouni Malinen j at w1.fi
Sat Dec 3 06:31:09 EST 2011

On Fri, Oct 21, 2011 at 09:49:19PM +0200, Maxim Levitsky wrote:
> On Fri, 2010-11-19 at 15:52 -0600, Dan Williams wrote:
> > This patch is from Jirka Klimes, developed to fix various issues when
> > spoofing MAC addresses.  Does this approach look workable?  If you have
> > specific questions about the issues he encountered I'm sure he could
> > elaborate.  But part of the problem was that if the MAC address gets
> > changed without removing and re-adding the interface to the supplicant,
> > it gets some upper-layer stuff wrong.

> I just run into the issue this patch supposed to fix.
> Any update on this?

It was changing things in a wrong place (association vs. when the MAC
address actually changed) and no one seemed to be interested in doing
the changes correctly based on the EVENT_INTERFACE_ENABLED event that I
pointed out at the time.

This is now addressed more properly, i.e., wpa_supplicant updates its
internal knowledge of the MAC address on EVENT_INTERFACE_ENABLED and you
can do something like this:

ifconfig wlan0 down
ifconfig wlan0 hw ether 02:11:22:33:44:55
ifconfig wlan0 up

while wpa_supplicant is running and you'll then get connected using the
new MAC address once the interface is back up.

Jouni Malinen                                            PGP id EFC895FA

More information about the HostAP mailing list