]> git.ipfire.org Git - thirdparty/hostap.git/commit
projects / thirdparty / hostap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ae05b6a) | patch
FT: Reject over-the-DS response with MFPC=0 if PMF is required
authorJouni Malinen <jouni@codeaurora.org>
Fri, 16 Aug 2019 10:50:54 +0000 (13:50 +0300)
committerJouni Malinen <j@w1.fi>
Fri, 16 Aug 2019 10:55:26 +0000 (13:55 +0300)
commit528f263c4a4bc0255a429e502336534b0a52fe35
tree43e3795a247a664554e0098f5080439c935637b1tree
parentae05b6a215efbb89a4898cd361d75cf4f1cb1d37commit | diff
FT: Reject over-the-DS response with MFPC=0 if PMF is required

If FT over-the-DS case is enforced through the "FT_DS <BSSID>" control
interface command, the PMF capability check during BSS selection is not
used and that could have allowed PMF to be disabled in the over-the-DS
case even if the local network profile mandated use of PMF. Check
against this explicitly to avoid unexpected cases if the APs within the
same mobility domain are not configured consistently.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
src/common/wpa_common.c diff | blob | blame | history
src/common/wpa_common.h diff | blob | blame | history
src/rsn_supp/wpa_ft.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.