]> git.ipfire.org Git - thirdparty/hostap.git/commit
projects / thirdparty / hostap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dab7549) | patch
SSID protection in 4-way handshake on AP
authorJouni Malinen <quic_jouni@quicinc.com>
Tue, 18 Jun 2024 22:09:52 +0000 (01:09 +0300)
committerJouni Malinen <j@w1.fi>
Wed, 19 Jun 2024 09:38:14 +0000 (12:38 +0300)
commit37a289f8bc764529b3af5e971df7f3b06a55caea
treec52f0ebbbd3a4179a6a5b8ca3c1623f967a30e77tree
parentdab7549d68754bd08ca430a78dd85021c44dc3f5commit | diff
SSID protection in 4-way handshake on AP

Add support for SSID protection in 4-way handshake based on the
mechanism added in IEEE 802.11REVme/D6.0. This is a mitigation against
CVE-2023-52424 (a.k.a. the SSID Confusion Attack).

This functionality is disabled by default and can be enabled with
ssid_protection=1. Once there has been more testing of this to confirm
there is no significant interoperability issues, the goal is to be able
to change this to be enabled by default.

Signed-off-by: Jouni Malinen <quic_jouni@quicinc.com>
hostapd/config_file.c diff | blob | blame | history
hostapd/hostapd.conf diff | blob | blame | history
src/ap/ap_config.h diff | blob | blame | history
src/ap/ieee802_11.c diff | blob | blame | history
src/ap/ieee802_11_shared.c diff | blob | blame | history
src/ap/wpa_auth.c diff | blob | blame | history
src/ap/wpa_auth.h diff | blob | blame | history
src/ap/wpa_auth_glue.c diff | blob | blame | history
src/ap/wpa_auth_i.h diff | blob | blame | history
src/ap/wpa_auth_ie.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.