jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
hostap/src
History
Jouni Malinen e8a7af9a38 EAP-TLS peer: Disable TLS v1.3 by default 
The current EAP peer implementation is not yet ready for the TLS v1.3
changes with EAP-TTLS, EAP-PEAP, and EAP-FAST, so disable TLS v1.3 for
this EAP method for now.

While the current EAP-TLS implementation is more or less complete for
TLS v1.3, there has been no interoperability testing with other
implementations, so disable for by default for now until there has been
chance to confirm that no significant interoperability issues show up
with TLS version update. phase1="tls_disable_tlsv1_3=0" configuration
parameter can be used to enable TLS v1.3 (assuming the TLS library
supports it; e.g., when using OpenSSL 1.1.1).

Signed-off-by: Jouni Malinen <j@w1.fi>
2018-05-01 22:13:38 +03:00
..
ap HS 2.0: Terms and Conditions testing feature in authentication server 2018-04-26 17:56:22 +03:00
common DPP: Fix testing code for invalid keys with OpenSSL 1.1.1 2018-05-01 12:02:57 +03:00
crypto EAP-TLS: Extend TLS version config to allow TLS v1.3 to be disabled 2018-05-01 22:13:38 +03:00
drivers hostapd: Add ctrl iface indications for WDS STA interface 2018-04-24 00:35:47 +03:00
eap_common EAP-pwd: Use abstract crypto API 2017-12-24 21:40:21 +02:00
eap_peer EAP-TLS peer: Disable TLS v1.3 by default 2018-05-01 22:13:38 +03:00
eap_server EAP-TLS server: MSK/EMSK derivation with TLS v1.3 2018-05-01 17:47:22 +03:00
eapol_auth Add hostapd tls_flags parameter 2017-09-18 12:12:48 +03:00
eapol_supp Propagate the EAP method error code 2018-03-31 11:57:33 +03:00
fst FST: Silence compiler warning on WPA_ASSERT 2017-01-29 18:45:29 +02:00
l2_packet wpa_supplicant: Don't reply to EAPOL if pkt_type is PACKET_OTHERHOST 2018-04-02 12:21:27 +03:00
p2p P2P: Continue P2P_WAIT_PEER_(IDLE/CONNECT) sequence on a listen cancel 2017-11-03 21:47:32 +02:00
pae mka: Mark ieee802_1x_kay_create_mka() ckn and cak arguments const 2018-03-11 17:04:34 +02:00
radius HS 2.0: Maintain a database of pending T&C acceptance sessions 2018-04-30 20:12:36 +03:00
rsn_supp FT: Add MDE to assoc request IEs in connect params 2018-04-20 00:32:49 +03:00
tls Use os_memdup() 2017-03-07 13:19:10 +02:00
utils Define host_to_le64() for Windows builds 2018-02-17 18:04:54 +02:00
wps WPS: Do not increment wildcard_uuid when pin is locked 2017-10-03 19:19:01 +03:00
lib.rules Add QUIET=1 option for make 2014-12-29 15:49:05 +02:00
Makefile FST: Add the Fast Session Transfer (FST) module 2015-07-16 18:26:15 +03:00