jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
hostap/src
History
Jouni Malinen ac734a342e SAE: Fix KCK, PMK, and PMKID derivation for groups 22, 23, 24 
IEEE Std 802.11-2016 is not exactly clear on the encoding of the bit
string that is needed for KCK, PMK, and PMKID derivation, but it seems
to make most sense to encode the (commit-scalar + peer-commit-scalar)
mod r part as a bit string by zero padding it from left to the length of
the order (in full octets).

The previous implementation used the length of the prime (in full
octets). This would work for KCK/PMK, but this results in deriving all
zero PMKIDs for the groups where the size of the order is smaller than
the size of the prime. This is the case for groups 22, 23, and 24.
However, those groups have been marked as being unsuitable for use with
SAE, so this fix should not really have a practical impact anymore.
Anyway, better fix it and document this clearly in the implementation
taken into account the unclarity of the standard in this area.

Signed-off-by: Jouni Malinen <j@w1.fi>
2019-08-03 17:00:39 +03:00
..
ap EAP-SIM/AKA server: Allow pseudonym/fast reauth to be disabled 2019-08-01 10:36:11 +03:00
common SAE: Fix KCK, PMK, and PMKID derivation for groups 22, 23, 24 2019-08-03 17:00:39 +03:00
crypto OpenSSL: Fix crypto_bignum_to_bin() with padlen == 0 2019-08-03 16:28:02 +03:00
drivers nl80211: Use separate flag for 4-way handshake offload 2019-08-01 15:52:48 +03:00
eap_common EAP-TEAP server and peer implementation (RFC 7170) 2019-07-09 16:56:02 +03:00
eap_peer EAP-SIM/AKA: Do not allow anonymous@realm "pseudonym" to be cleared 2019-07-31 22:33:04 +03:00
eap_server EAP-SIM/AKA server: Allow pseudonym/fast reauth to be disabled 2019-08-01 10:36:11 +03:00
eapol_auth EAP-SIM/AKA server: Allow pseudonym/fast reauth to be disabled 2019-08-01 10:36:11 +03:00
eapol_supp Pass full struct to peer certificate callbacks 2019-06-14 23:10:50 +03:00
fst UBSan: Define FST LLT macros without integer overflow 2019-02-25 19:48:49 +02:00
l2_packet wpa_supplicant: Don't reply to EAPOL if pkt_type is PACKET_OTHERHOST 2018-04-02 12:21:27 +03:00
p2p P2P: Fix memory size for os_memmove() in p2p_check_pref_chan() 2019-06-26 20:22:33 +03:00
pae mka: Accept last two used MNs in Peers List of a received MKPDU 2019-07-29 17:05:40 +03:00
radius EAP-SIM/AKA server: Allow pseudonym/fast reauth to be disabled 2019-08-01 10:36:11 +03:00
rsn_supp More forceful clearing of stack memory with keys 2019-05-26 16:11:56 +03:00
tls libtommath: Make sure fast_s_mp_mul_digs initializes the W[] array 2019-06-22 18:56:44 +03:00
utils trace: Avoid void pointer arithmetic 2019-07-24 19:33:06 +03:00
wps WPS: Fix a typo in a comment (use full WPA2-Personal name) 2019-06-26 20:01:34 +03:00
lib.rules tests: Fix CFLAGS passing for new fuzzing tools 2019-06-11 06:34:19 +03:00
Makefile FST: Add the Fast Session Transfer (FST) module 2015-07-16 18:26:15 +03:00