Jouni Malinen [Wed, 9 Apr 2014 10:02:53 +0000 (13:02 +0300)]
OpenSSL: Detect and prevent TLS heartbeat attack
Some OpenSSL versions have vulnerability in TLS heartbeat request
processing. Check the processed message to determine if the attack has
been used and if so, do not send the response to the peer. This does not
prevent the buffer read overflow within OpenSSL, but this prevents the
attacker from receiving the information.
This change is an additional layer of protection if some yet to be
identified paths were to expose this OpenSSL vulnerability. However, the
way OpenSSL is used for EAP-TLS/TTLS/PEAP/FAST in hostapd/wpa_supplicant
was already rejecting the messages before the response goes out and as
such, this additional change is unlikely to be needed to avoid the
issue.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 22:35:01 +0000 (01:35 +0300)]
tests: WNM BSS TM Req with neighbor report subelements
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 22:34:17 +0000 (01:34 +0300)]
WNM: Remove unnecessary present flag
The structures are all allocated, so the pointer can be compared to NULL
to determine whether the subelement was present.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 22:32:28 +0000 (01:32 +0300)]
WNM: Fix neighbor report subelement formats
Number of of subelements were using incorrect format definition.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 22:20:24 +0000 (01:20 +0300)]
WNM: Fix neighbor report subelement parser to not leak memory
If a subelement is unexpectedly included multiple times, the parser must
not re-allocate memory for the entry without first freeing the old
allocation.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 21:53:55 +0000 (00:53 +0300)]
WNM: Fix neighbor report subelement parser
Only the Neighbor Report element should be included here, so verify that
the element id matches. In addition, verify that each subelement has
valid length before using the data.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 19:45:11 +0000 (22:45 +0300)]
Document and rename HT Capability/Operation fields
This makes the definitions match the terminology used in IEEE Std
802.11-2012 and makes it easier to understand how the HT Operation
element subfields are used.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 19:05:02 +0000 (22:05 +0300)]
tests: Remove [PSMP] parameter
This is not used anymore.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 19:02:14 +0000 (22:02 +0300)]
Remove PSMP option from ht_capab
This was used to fill in the "PSMP support" subfield that was defined
during P802.11n development. However, this subfield was marked reserved
in the published IEEE Std 802.11n-2009 and it is not supported by
current drivers that use hostapd for SME either. As such, there is not
much point in maintaining this field as ht_capab parameter within
hostapd either.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Amarnath Hullur Subramanyam [Tue, 1 Apr 2014 18:13:49 +0000 (11:13 -0700)]
nl80211: Add QCA vendor subcmd for NAN
QCA vendor extension is used for NAN functionality. This defines the
subcommand and attribute to address this.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 09:32:58 +0000 (12:32 +0300)]
Fix CONFIG_AP=y build without CONFIG_P2P=y
Commit
ca9bc5b5666a08c741ddd21c451ecb92aa33a11a used P2P functionality
from ap.c without proper ifdef CONFIG_P2P.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 7 Apr 2014 09:26:04 +0000 (12:26 +0300)]
P2P: Clear p2p_in_invitation on cancel
Commit
41d5ce9e0b7b37dd84fbf3c1aa5ed571c32321d4 added scan optimizations
for P2P invitation cases. However, it left a path where the invitation
state was not cleared and as such, introduced potential issues for
following scans that ended up getting incorrectly optimized for a single
channel regardless of parameters. Fix this by clearing p2p_in_invitation
more carefully, especially on p2p_cancel command.
p2p_cancel is now also run from the FLUSH command to avoid issues with
hwsim test cases (e.g., persistent_group_per_sta_psk followed by
ap_open_tdls resulted in an error due to p2p_in_invitation remaining set
after FLUSH).
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Sun, 6 Apr 2014 21:26:03 +0000 (00:26 +0300)]
tests: BSS Transition Management Request protocol tests
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Mon, 7 Apr 2014 10:35:18 +0000 (13:35 +0300)]
WNM: Fix deinit path to clean neighbor report count
wnm_deallocate_memory() left wnm_num_neighbor_report set while freeing
the allocated buffer of neighbor reports. If this function was called
twice in a row without having went through new neighbor report parsing,
invalid pointers could have been freed resulted in segfault.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Sun, 6 Apr 2014 13:52:14 +0000 (16:52 +0300)]
tests: Verify STATUS-WPS passphrase on GO
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 13:42:27 +0000 (16:42 +0300)]
WPS NFC: Remove NFC_RX_HANDOVER_SEL
The newer NFC_REPORT_HANDOVER command is more general version that
handles the cases where NFC_RX_HANDOVER_SEL could potentially have been
used. In addition, with the new WPS NFC design, it is important to
receive the handover request message that was used in the handover in
addition to the select message, so the NFC_RX_HANDOVER_SEL command on
its own would not be sufficient for this.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 13:33:23 +0000 (16:33 +0300)]
tests: WPS_CHECK_PIN with invalid PIN length
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 13:31:44 +0000 (16:31 +0300)]
tests: Use random WPS PIN
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 13:26:22 +0000 (16:26 +0300)]
tests: Verify random WPS PIN generation
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 13:22:46 +0000 (16:22 +0300)]
tests: GO selecting specific peer to join using PBC
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 13:09:01 +0000 (16:09 +0300)]
tests: wpa_supplicant GET_CAPABILITY
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 13:00:25 +0000 (16:00 +0300)]
tests: SET uapsd
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 12:55:18 +0000 (15:55 +0300)]
tests: SET pno freq parameter
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 12:53:13 +0000 (15:53 +0300)]
tests: SET blob
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 12:46:32 +0000 (15:46 +0300)]
tests: disallow_aps
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 12:36:01 +0000 (15:36 +0300)]
tests: wpa_supplicant bssid_filter
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 12:16:24 +0000 (15:16 +0300)]
tests: ctrl_iface LEVEL command
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 10:49:05 +0000 (13:49 +0300)]
tests: WPS operations on channel 14 and on 5 GHz band
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 10:40:40 +0000 (13:40 +0300)]
tests: WPS parameter update using SET
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 10:18:55 +0000 (13:18 +0300)]
tests: WPS fragmentation when using PIN and WPS_REG
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 10:11:32 +0000 (13:11 +0300)]
tests: Add option for running test cases that take a long time
run-tests.py now takes an optional --long parameter that can be used to
enable running of test cases that take a long time (multiple minutes).
By default, such test cases are skipped to avoid making the normal test
run take excessive amounts of time.
As an initial long test case, verify WPS PBC walk time expiration (two
minutes).
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 09:49:52 +0000 (12:49 +0300)]
tests: WPS-M2D or WPS-FAIL while trying to join a group
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 08:18:10 +0000 (11:18 +0300)]
WPS: Remove unused WEP related functionality
Now that WPS 2.0 support is enabled unconditionally, WEP and Shared auth
type are not allowed. This made some of the older code unused and that
can now be removed to clean up the implementation. There is still one
place where WEP is allowed for testing purposes: wpa_supplicant as
Registrar trying to configure an AP to use WEP. That is now only allowed
in CONFIG_TESTING_OPTIONS=y builds, though.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 08:09:03 +0000 (11:09 +0300)]
tests: WPS cred event for external use
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 08:03:26 +0000 (11:03 +0300)]
tests: WPS operation with other networks already configured
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 6 Apr 2014 07:55:50 +0000 (10:55 +0300)]
tests: Increase Wi-Fi Display testing coverage
Add more subelements, WSD, and disabling of Wi-Fi Display.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 21:52:13 +0000 (00:52 +0300)]
tests: Increas EAP-pwd fragmentation coverage
Verify fragmentation of additional message types.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 21:51:00 +0000 (00:51 +0300)]
EAP-pwd peer: Fix fragmentation of PWD-Confirm-Resp
This is somewhat of a corner case since there is no real point in using
so short a fragmentation threshold that it would result in this message
getting fragmented. Anyway, it is better be complete and support this
case as well.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 21:19:26 +0000 (00:19 +0300)]
EAP-pwd: Fix memory leak on error path with fragmentation
If fragmentation is used, the temporary inbuf/outbuf could have been
leaked in error cases (e.g., reaching maximum number of roundtrips).
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 21:05:06 +0000 (00:05 +0300)]
tests: WPA2-PSK AP with PMF association comeback (using DROP_SA)
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 20:59:31 +0000 (23:59 +0300)]
Move DROP_SA command to be within ifdef CONFIG_TESTING_OPTIONS
This is a test command and has no use in production builds.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 20:56:03 +0000 (23:56 +0300)]
tests: wpa_supplicant MIB command output for WPA/WPA2 information
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 20:35:17 +0000 (23:35 +0300)]
tests: WPA (v1) with CCMP
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 20:30:16 +0000 (23:30 +0300)]
Remove used KDE addition code from EAPOL-Key msg 4/4
EAPOL-Key msg 4/4 has no specified KDE use, so remove the unused code to
simplify the implementation.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 16:52:18 +0000 (19:52 +0300)]
WNM: Fix regression in Sleep Mode exit key data parsing
Commit
dbfb8e82ff69e6c7969b7cd23e53fd39b3e896e7 changed the Action frame
RX payload pointer design to point to a different field. WNM Sleep Mode
Response handler updated one of the uses to accommodate this change, but
that commit missed another use for key data length. This resulted in GTK
and IGTK being ignored in many cases when waking up from WNM Sleep Mode
with PMF enabled.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 16:27:24 +0000 (19:27 +0300)]
tests: Add wlantest passphrase info for WNM Sleep Mode with PMF
This makes the sniffer capture more convenient with the Action frames
decrypted.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 16:15:39 +0000 (19:15 +0300)]
Remove unused wpa_sm_get_param() function
This function was not used anywhere and was not up-to-date with
full tet of parameters.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 16:10:27 +0000 (19:10 +0300)]
tests: PTK rekey forced by STA with WPA2 AP
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 16:04:46 +0000 (19:04 +0300)]
tests: FTIE MIC mismatch in TDLS Setup Response/Confirm
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 16:04:07 +0000 (19:04 +0300)]
TDLS: Add test mode for MIC failure testing
"SET tdls_testing 0x800" can be used to enable a special test mode that
forces the FTIE MIC in TDLS setup messages to be incorrect.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 15:53:12 +0000 (18:53 +0300)]
tests: TDLS setup failure due to BSSID mismatch
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 15:09:10 +0000 (18:09 +0300)]
tests: PMKSA cache entry expiration with failed reauth
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 17:39:56 +0000 (20:39 +0300)]
Fix memory leaks in hostapd configuration updates
Some of the allocated configuration parameter did not free the previous
value if a configuration file or ctrl_iface SET command updated a
previously set value.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 5 Apr 2014 14:52:44 +0000 (17:52 +0300)]
tests: PeerKey failure due to mismatching cipher
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Fri, 4 Apr 2014 20:13:49 +0000 (23:13 +0300)]
tests: Speed up IBSS test using single channel scan on SELECT_NETWORK
This removes unnecessary waits and adds test coverage for SELECT_NETWORK
freq parameter.
Signed-off-by: Jouni Malinen <j@w1.fi>
Dmitry Shmidt [Thu, 3 Apr 2014 20:40:52 +0000 (13:40 -0700)]
Extend select_network command with freq= to reduce scan time
This allows a subset of channels to be specified for the scan used to
find the network when the SELECT_NETWORK ctrl_iface command is issued.
Signed-off-by: Dmitry Shmidt <dimitrysh@google.com>
Amit Khatri [Wed, 2 Apr 2014 06:49:35 +0000 (12:19 +0530)]
Fix radius_example build
radius_example needs the -lrt option to build with some glibc versions.
Signed-off-by: Amit Khatri <amit.khatri@samsung.com>
Jouni Malinen [Fri, 4 Apr 2014 19:57:15 +0000 (22:57 +0300)]
Interworking: Add writing of forgotten cred parameters into config file
req_conn_capab and required_roaming_consortium parameters were not
written into the cred block when requesting wpa_supplicant to write the
configuration file.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Fri, 4 Apr 2014 19:50:46 +0000 (22:50 +0300)]
tests: Extend wpas_ctrl_cred to cover most cred block operations
This verifies the new cred modification events and GET_CRED.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Fri, 4 Apr 2014 17:10:49 +0000 (20:10 +0300)]
Interworking: Add GET_CRED ctrl_iface command
"GET_CRED <id> <field>" can now be used to fetch credential parameters
over the control interface. This does not allow passwords etc. private
material to be retrieved ("*" is returned for those if the value is set
regardless of the value). FAIL is returned if the requested parameter
has not been set. For cred parameters that can have multiple values,
newline separated list of values is returned.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Fri, 4 Apr 2014 16:10:47 +0000 (19:10 +0300)]
Interworking: Add ctrl_iface events on cred block modifications
Following events are now sent to ctrl_iface monitors to indicate if
credential blocks have been added, modified, or removed:
CRED-ADDED <id>
CRED-MODIFIED <id> <field>
CRED-REMOVE <id>
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Amit Khatri [Tue, 1 Apr 2014 04:59:47 +0000 (04:59 +0000)]
tests: Run make clean for hwsim_test before rebuilding it
This makes sure that the build.sh script ends up rebuilding hwsim_test.
Signed-off-by: Amit Khatri <amit.khatri@samsung.com>
Pawel Kulakowski [Tue, 1 Apr 2014 05:16:00 +0000 (07:16 +0200)]
wpa_supplicant: Allow disabling LDPC
Allows user to disable LDPC coding.
This possibility is useful for testing purpose.
Signed-off-by: Pawel Kulakowski <pawel.kulakowski@tieto.com>
Jean Trivelly [Fri, 28 Mar 2014 16:30:32 +0000 (17:30 +0100)]
Interworking: Read IMSI if not read at supplicant start
It is required to read IMSI from SIM if it has not already been done
when comparing HS 2.0 AP 3GPP information with the local credentials.
Signed-off-by: Jean Trivelly <jean.trivelly@intel.com>
Jean Trivelly [Fri, 28 Mar 2014 13:41:36 +0000 (14:41 +0100)]
Interworking: Init scard when a credential requires SIM access
When an ANQP fetch is triggered and ANQP_3GPP_CELLULAR_NETWORK info is
required, initialize scard to be ready when comparing ANQP and
credentials.
Signed-off-by: Jean Trivelly <jean.trivelly@intel.com>
Jean Trivelly [Wed, 26 Mar 2014 15:54:35 +0000 (16:54 +0100)]
Interworking: Fix incorrect compile PCSC flag
CONFIG_PCSC is used instead of PCSC_FUNCS.
Signed-off-by: Jean Trivelly <jean.trivelly@intel.com>
Jouni Malinen [Mon, 31 Mar 2014 09:29:22 +0000 (12:29 +0300)]
edit: Increase buffer size to 4096 bytes
wpa_supplicant and wpa_cli had already moved to allowing up to 4096 byte
buffer size to be used for control interface commands. This was limited
by the line edit buffer in interactive mode. Increase that limit to
match the other buffers to avoid artificially truncating long commands.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Fri, 25 Oct 2013 14:54:25 +0000 (17:54 +0300)]
OSU server: Add example scripts for Hotspot 2.0 PKI
These can be used to generate certificates for developer testing of the
OSU protocol.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Thu, 28 Mar 2013 08:27:27 +0000 (10:27 +0200)]
HS 2.0R2: Add example OSU SPP server implementation
This is meant mainly for testing purposes and as a reference
implementation showing how OSU SPP server could be implemented. This is
not suitable for any real production use in its current form.
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Mon, 31 Mar 2014 09:05:56 +0000 (12:05 +0300)]
XML: Remove forgotten, unused definition of debug_print_func
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen [Sun, 30 Mar 2014 17:55:56 +0000 (20:55 +0300)]
tests: Prevent grpform_pbc_overlap_group_iface failures
Do not report missing PBC overlap detection as an issue in this test
case since the sequence can miss the overlap due to per-SSID scan used
during group formation. In addition, increase AP beaconing frequency to
make it more likely for a Beacon frame to be seen during the optimized
scan.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 15:21:58 +0000 (18:21 +0300)]
tests: Make grpform_pbc_overlap* more likely to clear state
The PBC overlap state could remain for the next test case and result in
unexpected failure reports.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 09:42:16 +0000 (12:42 +0300)]
tests: hostapd configuration parameters
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 14:24:39 +0000 (17:24 +0300)]
Make hs20_wan_metrics parser error print more helpful
pos == NULL in almost all of the error cases here, so print the full
parameter value instead of the current position.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 14:19:20 +0000 (17:19 +0300)]
Fix validation of anqp_3gpp_cell_net configuration parameter
The "< '0' && > '9'" part would not match any character.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 13:25:27 +0000 (16:25 +0300)]
tests: Update hlr_auc_gw Milenage file
This increases hlr_auc_gw.c test coverage and allows the SQN updated to
be checked if desired.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 08:35:31 +0000 (11:35 +0300)]
Remove duplicated vht_capab parser entry
[VHT160-80PLUS80] was parsed twice with the second copy not really doing
anything useful.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 08:01:10 +0000 (11:01 +0300)]
tests: hostapd MAC ACL file entry removal
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 07:59:16 +0000 (10:59 +0300)]
tests: VLAN using vlan_file mapping
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 07:49:44 +0000 (10:49 +0300)]
tests: STA disconnection due to MAC ACL file change
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 07:48:32 +0000 (10:48 +0300)]
Notify STA of disconnection based on ACL change
ap_sta_deauthenticate() does not necessarily send a Deauthentication
frame to the STA. Use ap_sta_disconnect() to drop the association so
that the notification frame goes out.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 07:29:41 +0000 (10:29 +0300)]
tests: hostapd control interface error cases
Invalid parameters to HS20_WNM_NOTIF, HS20_DEAUTH_REQ,
DISASSOC_IMMINENT, and ESS_DISASSOC.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sun, 30 Mar 2014 07:12:20 +0000 (10:12 +0300)]
tests: EAP-SIM server using GSM triplets
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 17:32:45 +0000 (19:32 +0200)]
tests: RADIUS MAC ACL
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 17:31:56 +0000 (19:31 +0200)]
RADIUS server: Add support for MAC ACL
"user" MACACL "password" style lines in the eap_user file can now be
used to configured user entries for RADIUS-based MAC ACL.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 15:07:22 +0000 (17:07 +0200)]
tests: Unknown Action frame category
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 15:00:02 +0000 (17:00 +0200)]
tests: max_num_sta limit
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 14:56:14 +0000 (16:56 +0200)]
tests: max_listen_interval rejecting association
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 14:51:44 +0000 (16:51 +0200)]
tests: OSEN network and invalid association without OSEN IE
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 14:48:00 +0000 (16:48 +0200)]
tests: Connection during large packet loss
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 14:39:22 +0000 (16:39 +0200)]
tests: SAE anti-clogging with non-SAE STA associated as well
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 14:35:54 +0000 (16:35 +0200)]
tests: OLBC state clearing on timeout
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 14:28:00 +0000 (16:28 +0200)]
tests: HT OLBC detection on 5 GHz
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 14:16:24 +0000 (16:16 +0200)]
tests: Chargeable-User-Idnetity in Accounting-Request
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Mon, 24 Mar 2014 16:29:46 +0000 (18:29 +0200)]
tests: Add initial cfg80211 test
This adds some helper definitions and functions to allow cfg80211 to be
tested with raw nl80211 messages built in the test scripts. The first
test case shows a case where station disassociates instead of
deauthenticates (which is the wpa_supplicant behavior).
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 08:39:32 +0000 (10:39 +0200)]
tests: Require HT/VHT as BSS membership selector in Supp Rates
These are similar to the previous cases, but with supported rate set
limited to allow the BSS membership selector to fit into that element
instead of Ext Supp Rates.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 08:36:25 +0000 (10:36 +0200)]
tests: hostapd configuration file error cases
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 07:51:54 +0000 (09:51 +0200)]
tests: PSK file error cases
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 07:50:51 +0000 (09:50 +0200)]
Clean up debug print for PSK file search
p2p_dev_addr was not NULL, so the all zeros case was printed as well.
Clean this up by printing p2p_dev_addr in debug prints only if it is a
real P2P Device Address.
Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen [Sat, 29 Mar 2014 07:24:22 +0000 (09:24 +0200)]
tests: ACS for 40 MHz channels, on 5 GHz, and for VHT
The 5 GHz cases are not yet complete due to missing mac80211_hwsim
functionality. The current test cases allow the ACS operation to fail
for those cases.
Signed-off-by: Jouni Malinen <j@w1.fi>
projects / mech_eap.git / log