Sunil Saraff | 24 Jul 09:02 2014
Picon

Handling time update in wpa_supplicant

Hi All,

I am working on a linux device using wpa_supplicant to connect to Wifi. 
The system boots with the epoch time 1970. 
After getting IP address, the system time is updated via SNTP to current time. 
When this happens all the timers in wpa_supplicant expire and all BSS entries are flushed. 
This causes Wifi to re-connect. 
Is there any fix available to avoid re-connection of Wifi? 

Thanks,
Sunil
_______________________________________________
HostAP mailing list
HostAP <at> lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap
Philippe Nunes | 23 Jul 12:16 2014
Picon

[PATCH] Fix writing of the wowlan_triggers parameter

The parameter wowlan_triggers is a global string and is not recognised
if it is embraced with double-quotes.

Signed-off-by: Philippe Nunes <philippe.nunes <at> linux.intel.com>
---
 wpa_supplicant/config_file.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/wpa_supplicant/config_file.c b/wpa_supplicant/config_file.c
index 98855d8..73ad57a 100644
--- a/wpa_supplicant/config_file.c
+++ b/wpa_supplicant/config_file.c
 <at>  <at>  -1170,7 +1170,7  <at>  <at>  static void wpa_config_write_global(FILE *f, struct wpa_config *config)
 			config->tdls_external_control);

 	if (config->wowlan_triggers)
-		fprintf(f, "wowlan_triggers=\"%s\"\n",
+		fprintf(f, "wowlan_triggers=%s\n",
 			config->wowlan_triggers);

 	if (config->bgscan)
--

-- 
1.8.1.2
De Cesco, Jonathan | 21 Jul 11:38 2014
Picon

[PATCH] Add explicit NULL check before accessing data pointer

Android private lib for nl80211 driver is sending
wpa_supplicant_event(drv->ctx, EVENT_CHANNEL_LIST_CHANGED, NULL);
For this event, data pointer validity is not checked before access.

Signed-off-by: Jonathan DE CESCO <jonathan.de.cesco <at> intel.com>
---
 wpa_supplicant/events.c |    5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/wpa_supplicant/events.c b/wpa_supplicant/events.c
index 4e84f6e..8cf2dd9 100644
--- a/wpa_supplicant/events.c
+++ b/wpa_supplicant/events.c
 <at>  <at>  -3369,8 +3369,9  <at>  <at>  void wpa_supplicant_event(void *ctx, enum wpa_event_type event,
 		wpa_supplicant_set_state(wpa_s, WPA_INTERFACE_DISABLED);
 		break;
 	case EVENT_CHANNEL_LIST_CHANGED:
-		wpa_supplicant_update_channel_list(
-			wpa_s, &data->channel_list_changed);
+		if (data)
+			wpa_supplicant_update_channel_list(
+						wpa_s, &data->channel_list_changed);
 		break;
 	case EVENT_INTERFACE_UNAVAILABLE:
 		wpas_p2p_interface_unavailable(wpa_s);
--

-- 
1.7.9.5

---------------------------------------------------------------------
Intel Corporation SAS (French simplified joint stock company)
Registered headquarters: "Les Montalets"- 2, rue de Paris, 
92196 Meudon Cedex, France
Registration Number:  302 456 199 R.C.S. NANTERRE
Capital: 4,572,000 Euros

This e-mail and any attachments may contain confidential material for
the sole use of the intended recipient(s). Any review or distribution
by others is strictly prohibited. If you are not the intended
recipient, please contact the sender and delete all copies.
Drasko DRASKOVIC | 17 Jul 13:03 2014
Picon

Hostapd git is unaccesible

Hi Jouni,
hostapd git seems to be down:

drasko <at> Lenin:~/test$ git clone git://w1.fi/srv/git/hostap.git
Cloning into 'hostap'...
fatal: read error: Connection reset by peer

BR,
Drasko
xiaobingjian | 17 Jul 03:57 2014

Re:hotspot 2.0

    Hi:
        My hotspot2.o config file. And it work with iphone5s.
driver=atheros
logger_syslog=-1
logger_syslog_level=2
logger_stdout=-1
logger_stdout_level=2
debug=0
interface=wlan1
ssid=hotspot
ieee8021x=1
eap_server=0
eap_message=hello
eapol_key_index_workaround=0
own_ip_addr=127.0.0.1
bridge=br0
wpa=2
wpa_key_mgmt=WPA-EAP
wpa_pairwise=CCMP
wpa_group_rekey=0
auth_server_addr=192.168.0.123
auth_server_port=1812
auth_server_shared_secret=hotspot
hs20=1
interworking=1
disable_dgaf=0
hessid=00:00:00:00:00:00
access_network_type=2
internet=0
asra=0
esr=0
uesa=0
venue_group=2
venue_type=8
domain_name=test
hs20_oper_friendly_name=eng:test
manage_p2p=1
allow_cross_connection=0
roaming_consortium=506f9a
roaming_consortium=001bc504bd
   And you shoul moify hostapd_eid_hs20_indication function because hotspot2.0 of hostapd release version is 2. However iphon5s only support 
release version 1.
   u8 * hostapd_eid_hs20_indication(struct hostapd_data *hapd, u8 *eid)
 {
if (!hapd->conf->hs20)
return eid;
*eid++ = WLAN_EID_VENDOR_SPECIFIC;
*eid++ = 5;
WPA_PUT_BE24(eid, OUI_WFA);
eid += 3;
*eid++ = HS20_INDICATION_OUI_TYPE;
/* Hotspot Configuration: DGAF Enabled */
eid++ = hapd->conf->disable_dgaf ? 0x01 : 0x00;
return eid;
 }


            . 


_______________________________________________
HostAP mailing list
HostAP <at> lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap
Dmitry Shmidt | 16 Jul 20:01 2014
Picon

[PATCH] Remove FreeRADIUS workaround from default configuration

Signed-off-by: Dmitry Shmidt <dimitrysh <at> google.com>
---
 src/eap_peer/eap_config.h    | 2 ++
 src/eap_peer/eap_ttls.c      | 2 +-
 wpa_supplicant/config_ssid.h | 3 ++-
 3 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/src/eap_peer/eap_config.h b/src/eap_peer/eap_config.h
index 2591e11..f7d37c2 100644
--- a/src/eap_peer/eap_config.h
+++ b/src/eap_peer/eap_config.h
 <at>  <at>  -9,6 +9,8  <at>  <at> 
 #ifndef EAP_CONFIG_H
 #define EAP_CONFIG_H

+#define EAP_WORKAROUND_FREERADIUS BIT(0)
+
 /**
  * struct eap_peer_config - EAP peer configuration/credentials
  */
diff --git a/src/eap_peer/eap_ttls.c b/src/eap_peer/eap_ttls.c
index e110236..65a20cc 100644
--- a/src/eap_peer/eap_ttls.c
+++ b/src/eap_peer/eap_ttls.c
 <at>  <at>  -501,7 +501,7  <at>  <at>  static int eap_ttls_phase2_request_mschapv2(struct eap_sm *sm,
 	wpabuf_put(msg, pos - buf);
 	*resp = msg;

-	if (sm->workaround) {
+	if (sm->workaround & EAP_WORKAROUND_FREERADIUS) {
 		/* At least FreeRADIUS seems to be terminating
 		 * EAP-TTLS/MSHCAPV2 without the expected MS-CHAP-v2 Success
 		 * packet. */
diff --git a/wpa_supplicant/config_ssid.h b/wpa_supplicant/config_ssid.h
index ab474ff..dfed662 100644
--- a/wpa_supplicant/config_ssid.h
+++ b/wpa_supplicant/config_ssid.h
 <at>  <at>  -16,7 +16,8  <at>  <at> 
 #define MAX_SSID_LEN 32

 
-#define DEFAULT_EAP_WORKAROUND ((unsigned int) -1)
+#define DEFAULT_EAP_WORKAROUND (((unsigned int) -1) & \
+				~EAP_WORKAROUND_FREERADIUS)
 #define DEFAULT_EAPOL_FLAGS (EAPOL_FLAG_REQUIRE_KEY_UNICAST | \
 			     EAPOL_FLAG_REQUIRE_KEY_BROADCAST)
 #define DEFAULT_PROTO (WPA_PROTO_WPA | WPA_PROTO_RSN)
--

-- 
2.0.0.526.g5318336
Dmitry Shmidt | 16 Jul 19:25 2014
Picon

[PATCH] HS20: Keep backward compatibility with old icu

Signed-off-by: Dmitry Shmidt <dimitrysh <at> google.com>
---
 hs20/client/Android.mk | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/hs20/client/Android.mk b/hs20/client/Android.mk
index b7bd932..63cbc6f 100644
--- a/hs20/client/Android.mk
+++ b/hs20/client/Android.mk
 <at>  <at>  -8,7 +8,11  <at>  <at>  INCLUDES += external/openssl/include
 INCLUDES += external/libxml2/include
 INCLUDES += external/curl/include
 INCLUDES += external/webkit/Source/WebKit/gtk
+ifneq ($(wildcard external/icu),)
+INCLUDES += external/icu/icu4c/source/common
+else
 INCLUDES += external/icu4c/common
+endif

 
 #GTKCFLAGS := $(shell pkg-config --cflags gtk+-2.0 webkit-1.0)
--

-- 
2.0.0.526.g5318336
Léo Peltier | 16 Jul 11:16 2014

EAP-TLS + PSK : Unsupported EAP type 'PSK'

Hi,

I'm currently setting up access points that need both EAP-TLS
authentication and a PSK when an user need to access the device
directly. This works using 'hostapd v0.7.3' on Ubuntu 12.04 (i386) using the
following config:

hostapd.conf (shortened):
> wpa_key_mgmt=WPA-EAP WPA-PSK
> wpa_psk=deadb33fdeadb33fdeadb33fdeadb33fdeadb33fdeadb33fdeadb33fdeadb33f
> eap_user_file=/path/to/users

users:
> "some-prefix-"* TLS
> * PSK deadb33fdeadb33fdeadb33fdeadb33fdeadb33fdeadb33fdeadb33fdeadb33f

I'm now setting up the same thing on an Arduino Yùn using the latest
OpenWrt-Yun HEAD and 'hostapd v2.1-devel'. Using the same configuration,
hostapd exits immediately with the following output:

> $ hostapd -dd /var/run/hostapd-phy0.conf
> Configuration file: /var/run/hostapd-phy0.conf
> Unsupported EAP type 'PSK' on line 2 in '/var/run/hostapd-eap'
> 1 errors found in configuration file '/var/run/hostapd-phy0.conf'
> Failed to set up interface with /var/run/hostapd-phy0.conf
> Failed to initialize interface

After reading the code and diffing the bits that seemed relevant in
both versions, I could not find anything obvious.
hostapd_config_read_eap_user() (where the error originates) does not
change between versions and nothing seemed off where eap_methods are
registered.

Is this really a bug of am I doing something wrong?

If it is indeed a bug, where should I look to fix it? I don't have a
development environment set up for the Arduino and I don't know the
codebase, so I can do little besides riddling the code with printf()
calls.

Thanks.

--

-- 
Léo Peltier

_______________________________________________
HostAP mailing list
HostAP <at> lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap
Sheriff Manzoor | 16 Jul 07:24 2014
Picon

Configuring remote anqp server

Hi All,

       Can anyone please tell where can I get the code for the remote anqp server and also need to know how to configure the same so that I can send the anqp information from the server to the AP which will forward it to the client.
        Please reply asap,its very urgent.


Regards,
Sheriff Manzoor
_______________________________________________
HostAP mailing list
HostAP <at> lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap
Csaba Uhrin | 15 Jul 15:36 2014
Picon

hotspot 2.0

Hi all,

I would like to create a passpoint wifi service with raspberry PI. I was enabled the hotspot 2.0 in the hostapd.conf file. I try to connect to my hotspot 2.0 wifi with an galaxy note 3. Unfortunately it is not recognise the access point. The Beacon frame seems to be good, it is contains interworking tag, hotspot 2.0 indication and lot of other tags.

Somebody know how to set the hostapd.conf to a samsung phone recognise the ap as a passpoint ap?

Maybe a wireshark captured beacon frame from a working passpoint system will help to me.

Thanks :

Farkas Csapó György

_______________________________________________
HostAP mailing list
HostAP <at> lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap
Simner, John | 14 Jul 09:45 2014

wpa supplicant 0.7.3 assistance

Dear Jouni,

I hope you can help me.

The product I am working on uses WPA supplicant 0.7.3 in a client mode and there is a requirement to only provide the following ciphers in the Client Hello to the Radius Server…

  1. TLS_RSA_WITH_AES_128_CBC_SHA

  2. TLS_RSA_WITH_AES_256_CBC_SHA

  3. TLS_RSA_WITH_3DES_EDE_CBC_SHA

  4. SSL_RSA_WITH_3DES_EDE_CBC_SHA

  5. TLS_DHE_RSA_WITH_AES_128_CBC_SHA

  6. TLS_DHE_RSA_WITH_AES_256_CBC_SHA

  7. TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA

  8. SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA

The wpa supplicant is started with the following configuration file…

 

ctrl_interface=/var/run/wpa_supplicant

ctrl_interface_group=admin

fast_reauth=0

ap_scan=0

eapol_version=2

 

network={

                key_mgmt=IEEE8021X

                eap=TLS

                identity="OpenStage"

                ca_cert="/tmp/xsupplicant/RADIUSServerCerts.pem"

                client_cert="/tmp/certificates/RADIUSSuppCert.pem"

                private_key="/tmp/certificates/RADIUSSuppKey.pem"

                private_key_passwd=""

}

 

I have tried to find out how I can specify the required list of cipher suites and found a function tls_connection_set_cipher_list() which sets up the required cipher list for OpenSSL.

I have found tlsv1_client_set_cipher_list() which sets up a set of cipher suites with “TODO: implement proper configuration of cipher suites”.

 

I know that I should be calling…  SSL_CTX_set_cipher_list(ssl, CIPHER_LIST)

With CIPHER_LIST "!ADH:!eNULL:!EXP:!LOW:AES128-SHA:AES256-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:EDH-RSA-DES-CBC3-SHA".

 

Please could you tell me whether I should be looking to patch the wpa supplicant code or is there any way that I can place the required list in a config file and read them from there.

 

Apologies if I have not followed the correct protocol.

I found your details in http://src.gnu-darwin.org/src/contrib/wpa_supplicant/developer.txt.html

 

Thank you for your assistance and I look forward to your response.

 

Thanks..

John

 

 

 

John Simner BSc(Hons) MSc CEng. MIET

Software Engineer, Devices Development

 

Unify Enterprise Communications Ltd.

 

Tel.: +44 (1908) 817378 (One Number Service)

Email: john.simner <at> unify.com

 

www.unify.co.uk

 

 

Unify Enterprise Communications Limited. Registered Office: Brickhill Street, Willen Lake, Milton Keynes, MK15 0DJ

Registered No: 5903714, England.

 

This email contains confidential information and is for the exclusive use of the addressee.

If you are not the addressee then any distribution, copying, or use of this email is prohibited.

If received in error, please advise the sender and delete immediately. We accept no liability for
any loss or damage suffered by any person arising from use of this email.

 

 

_______________________________________________
HostAP mailing list
HostAP <at> lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap

Gmane