hostapd/wpa_supplicant - new release v1.1

Jouni Malinen j at w1.fi
Sat Dec 1 09:04:32 EST 2012


New versions of wpa_supplicant and hostapd were just
released and are now available from http://w1.fi/

This release is from the v1.x release branch (hostap-1.git) and it
replaces v1.0 as the latest stable release.

The 1.x release branch is maintained by Angie Chinchilla and she
deserves a huge thank you for enabling a proper release to be made.

hostapd:
* Fix EAPOL processing when STA switches between multi-BSSes.
* EAP-TLS server: Fix a bug with TLS Message Length validation that
  could result in the process terminating.
* Fix memory allocation failure handling in EAP-TTLS/MSCHAPv2 server.
* Fix EAP-FAST with OpenSSL 1.0.1.
* Fix WPA GTK rekeying with multiple VLANs.
* EAP-pwd: Increase maximum number of hunting-and-pecking iterations,
  which results in less authentication attempts failing.
* hlr_auc_gw: Use 5 bit IND for SQN updates. The length of IND can be
  configured on the command line with the new -i<IND len> parameter.
  -i0 would make hlr_auc_gw behave the same as the prev implementation.
* EAP-AKA'
  - Update to RFC 5448 in the leading characters used in the username.
    This will make EAP-AKA' not interoperate between the earlier draft
    version and the new version.
  - server: Fix identity for MK derivation, when the EAP client is using
    pseudonym.
* WPS:
  - Fix nonce comparisons to compare all bytes, not just the first byte.
  - Fix NFC password token building with WPS 2.0 to avoid wpabuf
    overflow and application abort if NFC out-of-band mechanism is used
    with WPS 2.0 enabled.

wpa_supplicant:
* Fix EAPOL supplicant port authorization with PMKSA caching.
* Fix EAPOL processing when STA switches between multi-BSSes.
* Fix EAP-FAST with OpenSSL 1.0.1.
* EAP-pwd: Increase maximum number of hunting-and-pecking iterations,
  which results in less authentication attempts failing.
* Set state to DISCONNECTED on AP creation errors. Previously the
  supplicant would stay in SCANNING state forever.
* Fix REMOVE_NETWORK to not run operations with invalid current_ssid.
* EAP-SIM peer: Fix AT_COUNTER_TOO_SMALL use.
* Interworking: Fix PLMN matching with multiple entries to compare all
  entries, not just the first one.
* Handle long configuration file lines more gracefully.
* Fix adding extra IEs in sched scan.
* PMKSA: Set cur_pmksa pointer during initial association.
* PMKSA: Do not evict the active cache entry when adding new ones.
* Set state consistently to DISCONNECTED on auth/assoc failures.
* Fix BSSID enforcement with driver-based BSS selection. Set BSSID and
  channel when the network block has an explicit bssid parameter to
  select which BSS is to be used.
* wpa_gui: Fix compilation with gcc/g++ 4.7.
* EAP-AKA'
  - Update to RFC 5448 in the leading characters used in the username.
    This will make EAP-AKA' not interoperate between the earlier draft
    version and the new version.
  - Fix SIM/USIM determination to support EAP-AKA'.
* dbus:
  - Add global capabilities property.
  - Fix bss_expire_count getter, which was returning the wrong value.
  - P2P: Remove network_object dictionary entry from signal
    GroupStarted.
  - Fix D-Bus build without ctrl_iface.
* WPS:
  - Fix nonce comparisons to compare all bytes, not just the first byte.
  - Fix NFC password token building with WPS 2.0 to avoid wpabuf
    overflow and application abort if NFC out-of-band mechanism is used
    with WPS 2.0 enabled.
  - Fix cleanup of WPS operations (by clearing them) in WPA_SCANNING
    and WPA_DISCONNECTED states.
  - Fix issue with BSSID filter handling that could cause only a single
    one of the available BSSes to be available or could cause issues
    connecting.
  - Fix overlapping memcpy on WPS interface addition.
* P2P:
  - Remove channel 14 from supported P2P channels.
  - Fix Provision Discovery retries on delay in off channel
    transmission, to avoid unnecessary retries.
  - Limit maximum number of stored P2P clients (the p2p_client_list
    parameter) to 100.
  - Improve p2p_client_list updates in configuration file, reording
    entries so that the most recently added values are maintained in
    the list if the list gets truncated due to size.
  - Fix Provision Discovery retries during p2p_find by making the
    p2p_find case behave consistently with the limited retry
    behavior used with Provision Discovery retries in the IDLE state.
  - Fix P2P Client Discoverability bit updates so that the bit is only
    updated based on P2P Group Info attribute from a GO.
  - Fix GO Negotiation race condition where both devices may believe
    they are the GO. (Ignore unexpected GO Neg Response if we have
    already sent GO Neg Response.)
  - Deinitialize global P2P context on P2P management interface removal.
  - Wait 100 ms if driver fails to start listen operation. This is a
    workaround for some drivers that may accept the remain-on-channel
    command, but instead of indicating start event for
    remain-on-channel, just indicate that the operation has been
    cancelled immediately.
  - Clone max_sta_num parameter for group interfaces, allowing this
    parameter set in the main config file to apply to dynamically
    created P2P group interfaces.
  - Fix Device ID matching for Probe Request frames, which was checking
    only the first octet of the P2P Device Address.
  - Do not update peer Listen channel based on PD Request Invitation
    Request frames (just on Probe Response frames).
  - Fix p2p_listen to disallow scheduling a new after scan operation
    in the case where a p2p_connect operation is pending.


git-shortlog for 1.0 -> 1.1:

Angie Chinchilla (5):
      Update version number to reflect 1.1 development status.
      Make version name consistent with 2.0-devel, so the difference     doesn't drive me crazy. ;)
      Update version number for 1.1-rc1.
      Update wpa_supplicant and hostapd ChangeLog for v1.1 release.
      Update version number for 1.1

Ben Greear (1):
      wpa_supplicant: Fix overlapping memcpy on WPS interface addition

Cyril Brulebois (1):
      wpa_gui: Fix compilation with gcc/g++ 4.7

Dan Williams (3):
      PMKSA: Do not evict active cache entry when adding new ones
      wpa_supplicant: Set state to DISCONNECTED on AP creation errors
      dbus: Add global capabilities property

David Bird (1):
      Fix EAPOL processing when STA switches between multi-BSSes

Deepthi Gowri (1):
      Fix REMOVE_NETWORK to not run operations with invalid current_ssid

Eyal Shapira (2):
      WPS: Fix nonce comparisons
      Fix adding extra IEs in sched scan

Fernando Herrera (1):
      D-Bus: Fix wpas_dbus_getter_bss_expire_count

Jouni Malinen (29):
      P2P: Fix disallowing of pending listen command to override connect
      P2P: Do not update peer Listen channel based on PD/Invitation
      Fix D-Bus build without ctrl_iface
      EAP-AKA' server: Fix identity for MK derivation
      EAP-AKA': Update to RFC 5448
      hlr_auc_gw: Use 5 bit IND for SQN updates
      Fix SIM/USIM determination to support EAP-AKA'
      P2P: Wait 100 ms if driver fails to start listen operation
      P2P: Deinitialize global P2P context on P2P mgmt interface removal
      WPS: Fix BSSID filter handling
      Fix BSSID enforcement with driver-based BSS selection
      P2P: Fix scan_res_handler setting for p2p_scan
      WPS: Cancel WPS operation also in DISCONNECTED state
      P2P: Ignore unexpected GO Neg Resp is we have sent Resp
      P2P: Fix P2P Client Discoverability bit updates
      Set state to DISCONNECTED on auth/assoc failures
      WPS: Fix NFC password token building with WPS 2.0
      EAP-pwd: Increase maximum number of hunting-and-pecking iterations
      P2P: Fix provision discovery retries during p2p_find
      PMKSA: Set cur_pmksa pointer during initial association
      Fix EAP-FAST with OpenSSL 1.0.1
      Fix memory allocation failure handling in EAP-TTLS/MSCHAPv2 server
      Handle long configuration file lines more gracefully
      Improve p2p_client_list updates in configuration file
      P2P: Limit maximum number of stored P2P clients to 100
      Interworking: Fix PLMN matching with multiple entries
      EAP-SIM peer: Fix AT_COUNTER_TOO_SMALL use
      EAP-TLS server: Fix TLS Message Length validation
      Fix EAPOL supplicant port authorization with PMKSA caching

Michael Braun (1):
      Fix WPA GTK rekeying with multiple VLANs

Michael Naumov (1):
      D-Bus: Remove network_object dictionary entry from signal GroupStarted

Mykyta Iziumtsev (1):
      P2P: Remove channel 14 from supported P2P channels

Sunil Dutt (1):
      P2P: Fix PD retries on delay in off channel transmission

Wei-Jen Lin (2):
      P2P: Fix Device ID matching for Probe Request frames
      P2P: Clone max_sta_num parameter for group interfaces

-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list