]> git.ipfire.org Git - thirdparty/hostap.git/commit
projects / thirdparty / hostap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 941bad5) | patch
SAE: Enable only groups 19, 20, and 21 in station mode
authorJouni Malinen <jouni@codeaurora.org>
Tue, 5 Mar 2019 15:23:58 +0000 (17:23 +0200)
committerJouni Malinen <j@w1.fi>
Tue, 5 Mar 2019 15:23:58 +0000 (17:23 +0200)
commita9fe13035eeb97fc8f2b1fd38219054a10c26bba
treedd2950c2db8b4604d883d4d339f44aa1f95dce35tree | snapshot
parent941bad5ef4db4dc6436f2d321d40abcb936ba7ddcommit | diff
SAE: Enable only groups 19, 20, and 21 in station mode

Remove groups 25 (192-bit Random ECP Group) and 26 (224-bit Random ECP
Group) from the default SAE groups in station mode since those groups
are not as strong as the mandatory group 19 (NIST P-256).

In addition, add a warning about MODP groups 1, 2, 5, 22, 23, and 24
based on "MUST NOT" or "SHOULD NOT" categorization in RFC 8247. All the
MODP groups were already disabled by default and would have needed
explicit configuration to be allowed.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
wpa_supplicant/sme.c diff | blob | blame | history
wpa_supplicant/wpa_supplicant.conf diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.