jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
hostap/src
History
Masashi Honma 9f2cf23e2e mesh: Add support for PMKSA caching 
This patch add functionality of mesh SAE PMKSA caching. If the local STA
already has peer's PMKSA entry in the cache, skip SAE authentication and
start AMPE with the cached value.

If the peer does not support PMKSA caching or does not have the local
STA's PMKSA entry in the cache, AMPE will fail and the PMKSA cache entry
of the peer will be removed. Then STA retries with ordinary SAE
authentication.

If the peer does not support PMKSA caching and the local STA uses
no_auto_peer=1, the local STA can not retry SAE authentication because
NEW_PEER_CANDIDATE event cannot start SAE authentication when
no_auto_peer=1. So this patch extends MESH_PEER_ADD command to use
duration(sec). Throughout the duration, the local STA can start SAE
authentication triggered by NEW_PEER_CANDIDATE even though
no_auto_peer=1.

This commit requires commit 70c93963ed
('SAE: Fix PMKID calculation for PMKSA cache'). Without that commit,
chosen PMK comparison will fail.

Signed-off-by: Masashi Honma <masashi.honma@gmail.com>
2016-03-20 17:56:38 +02:00
..
ap mesh: Add support for PMKSA caching 2016-03-20 17:56:38 +02:00
common Assign QCA vendor command and attribute for Tx/Rx aggregation 2016-03-17 20:53:25 +02:00
crypto BoringSSL: Keep static analyzers happier with X509_get0_pubkey_bitstr() 2016-03-16 21:34:01 +02:00
drivers BSD: Only down the interface once we are sure we can work with it 2016-03-20 11:24:30 +02:00
eap_common EAP-PAX: Check hmac_sha1_vector() return value 2016-01-06 21:12:08 +02:00
eap_peer EAP-PWD peer: Fix possible memory leak on error path 2016-03-03 16:28:41 +02:00
eap_server EAP-pwd server: Use os_get_random() for unpredictable token 2016-02-19 18:44:40 +02:00
eapol_auth RADIUS: Share a single function for generating session IDs 2016-02-06 17:19:35 +02:00
eapol_supp Fix EAPOL reauth after FT protocol or offloaded PMKSA cache use 2015-11-19 21:16:18 +02:00
fst FST: Fix session setup failure with peer without MB IE 2016-03-07 18:04:47 +02:00
l2_packet l2_packet: Extend bridge workaround RX processing to cover two frames 2016-01-07 13:30:59 +02:00
p2p P2P: Advertise IP Address Allocation only if it is enabled on GO 2016-03-20 17:37:53 +02:00
pae MACsec: Update protect frames and replay on reauthentication 2014-12-09 16:56:10 +02:00
radius RADIUS: Add Acct-Delay-Time into accounting messages 2016-02-29 17:43:13 +02:00
rsn_supp SAE: Fix PMKID calculation for PMKSA cache 2016-02-18 21:07:47 +02:00
tls TLS: Make tls_cert_chain_failure_event() more robust 2015-12-28 18:31:11 +02:00
utils libxml2: Check for xmlDocDumpFormatMemory() error case 2016-03-16 21:49:28 +02:00
wps WPS: Use only os_get_random() for PIN generation 2016-02-19 18:44:40 +02:00
lib.rules Add QUIET=1 option for make 2014-12-29 15:49:05 +02:00
Makefile FST: Add the Fast Session Transfer (FST) module 2015-07-16 18:26:15 +03:00