android_external_wpa_supplicant_8, branch stable/cm-13.0-ZNH5Y Unnamed repository; edit this file 'description' to name the repository. Remove newlines from wpa_supplicant config network output 2016-12-04T01:18:52+00:00 Paul Stewart pstew@google.com 2016-03-03T23:40:19+00:00 6a6c811042a9e5e11f92eb2f0194febe3f480128 Spurious newlines output while writing the config file can corrupt the wpa_supplicant configuration. Avoid writing these for the network block parameters. This is a generic filter that cover cases that may not have been explicitly addressed with a more specific commit to avoid control characters in the psk parameter. RM-290 Signed-off-by: Paul Stewart <pstew@google.com> Git-commit: 0fe5a234240a108b294a87174ad197f6b5cb38e9 Git-repo: git://w1.fi/srv/git/hostap.git Change-Id: I35e8483bdda5c391b95da42c2f577d5e9217f2e2 CRs-fixed: 1007548 
Spurious newlines output while writing the config file can corrupt the
wpa_supplicant configuration. Avoid writing these for the network block
parameters. This is a generic filter that cover cases that may not have
been explicitly addressed with a more specific commit to avoid control
characters in the psk parameter.

RM-290

Signed-off-by: Paul Stewart <pstew@google.com>
Git-commit: 0fe5a234240a108b294a87174ad197f6b5cb38e9
Git-repo: git://w1.fi/srv/git/hostap.git
Change-Id: I35e8483bdda5c391b95da42c2f577d5e9217f2e2
CRs-fixed: 1007548
Revert "Remove newlines from config output" 2016-12-04T01:18:43+00:00 Adrian DC radian.dc@gmail.com 2016-12-03T15:05:15+00:00 7f55f0967b0ec40de34e0aa1d3f3c6f2a2976d49 RM-290 Collides with mainline updates This reverts commit b79e09574e50e168dd5f19d540ae0b9a05bd1535. Change-Id: If4b4b834b5e3e5e582e8be93038d69635f8a42dd 
RM-290

Collides with mainline updates

This reverts commit b79e09574e50e168dd5f19d540ae0b9a05bd1535.

Change-Id: If4b4b834b5e3e5e582e8be93038d69635f8a42dd
Revert "Guard against return value already being null" 2016-12-04T01:17:49+00:00 Adrian DC radian.dc@gmail.com 2016-12-03T15:03:44+00:00 1a08c30dd8c9bae6f4d9988276442154ff7d7cfb RM-290 Collides with mainline updates This reverts commit b845b81ec6d724bd359cdb77f515722dd4066cf8. Change-Id: I4726aa01ec8441cf1b75163c994df147cdd0fdd1 
RM-290

Collides with mainline updates

This reverts commit b845b81ec6d724bd359cdb77f515722dd4066cf8.

Change-Id: I4726aa01ec8441cf1b75163c994df147cdd0fdd1
P2P: Continue p2p_find after sending non-success Invitation Response 2016-12-03T15:00:03+00:00 Jouni Malinen jouni@qca.qualcomm.com 2016-04-07T18:05:28+00:00 5d7822b17657e713fbdf9d60b27ad95c76e3f24c This was previously handled for the case where the non-success Invitation Response frame was sent out during the Listen phase. However, in the case the Action frame TX ended up getting scheduled when the Search phase scan had already started (e.g., due to the driver reporting Invitation Request RX late enough for the Listen-to-Search transition having already started), the postponed Action frame TX status processing did not cover the specific case of non-success Invitation Response. This could result in the p2p_find operation getting stopped (stuck in SEARCH state) unexpectedly Fix this by calling p2p_check_after_scan_tx_continuation() from Invitation Response TX callback handler if the invitation was rejected. RM-290 CRs-Fixed: 1002261 Git-commit: 3433721c5f9073c0d45c1109b825f1dcbabbf517 Git-repo : git://w1.fi/srv/git/hostap.git Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> Change-Id: Ic045516f31520fbe8ba068c88fe247df1746f29a 
This was previously handled for the case where the non-success
Invitation Response frame was sent out during the Listen phase. However,
in the case the Action frame TX ended up getting scheduled when the
Search phase scan had already started (e.g., due to the driver reporting
Invitation Request RX late enough for the Listen-to-Search transition
having already started), the postponed Action frame TX status processing
did not cover the specific case of non-success Invitation Response. This
could result in the p2p_find operation getting stopped (stuck in SEARCH
state) unexpectedly

Fix this by calling p2p_check_after_scan_tx_continuation() from
Invitation Response TX callback handler if the invitation was rejected.

RM-290

CRs-Fixed: 1002261
Git-commit: 3433721c5f9073c0d45c1109b825f1dcbabbf517
Git-repo : git://w1.fi/srv/git/hostap.git
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>

Change-Id: Ic045516f31520fbe8ba068c88fe247df1746f29a
hostapd: Add Transmit Power Envelope IE when VHT is enabled 2016-12-03T14:59:22+00:00 Rajkumar Manoharan rmanohar@qti.qualcomm.com 2015-11-23T13:10:26+00:00 476fc6c4e7e188d6aa1e050dfd8d8a4c9a78e39d Add Transmit Power Envelope element defined in IEEE P802.11-REVmc/D4.3, 8.4.2.161. RM-290 Git-commit: 3c417499e71b0c7f2dfae69fb1b67eb31e467ba6 Git-repo : git://w1.fi/srv/git/hostap.git CRs-Fixed: 979946 Change-Id: Ib3e11ee78cbe8e4d875d6c43dc2ec5539043fdb1 Signed-off-by: Rajkumar Manoharan <rmanohar@qti.qualcomm.com> 
Add Transmit Power Envelope element defined in IEEE P802.11-REVmc/D4.3,
8.4.2.161.

RM-290

Git-commit: 3c417499e71b0c7f2dfae69fb1b67eb31e467ba6
Git-repo : git://w1.fi/srv/git/hostap.git
CRs-Fixed: 979946
Change-Id: Ib3e11ee78cbe8e4d875d6c43dc2ec5539043fdb1
Signed-off-by: Rajkumar Manoharan <rmanohar@qti.qualcomm.com>
Add assocresp_elements parameter for hostapd 2016-12-03T14:58:39+00:00 Bala Krishna Bhamidipati c_bbhami@qti.qualcomm.com 2016-04-20T04:04:17+00:00 36b40e921962f49f36d54ca461d88dc246f6a1b5 This new parameter allows hostapd to add Vendor Specific elements into (Re)Association Response frames similarly to the way vendor_elements parameter can be used for Beacon and Probe Response frames. RM-290 Git-commit: a9112270615dd68d422623ebc26c21a6887a2a11 Git-repo : git://w1.fi/srv/git/hostap.git Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> Change-Id: I033aced040c894f4dc4791c4e5081135976ebd0c CRs-Fixed: 1003412 
This new parameter allows hostapd to add Vendor Specific elements into
(Re)Association Response frames similarly to the way vendor_elements
parameter can be used for Beacon and Probe Response frames.

RM-290

Git-commit: a9112270615dd68d422623ebc26c21a6887a2a11
Git-repo : git://w1.fi/srv/git/hostap.git
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Change-Id: I033aced040c894f4dc4791c4e5081135976ebd0c
CRs-Fixed: 1003412
eap_proxy: postpone qmi init until demonize 2016-12-03T14:53:01+00:00 Bala Krishna Bhamidipati c_bbhami@qti.qualcomm.com 2016-06-23T11:42:50+00:00 f99771cb00cb7631df501fab0417401b8f126bdf Parent thread exits when daemonize. This will cause child threads to die and eap_proxy_post_init is not executed To fix this, child thread should be created after demonize RM-290 Change-Id: Ibd9e3dc79cb1a7650b3adc55afdc95818a2e011b CRs-Fixed: 1032710 
Parent thread exits when daemonize. This will cause child threads
to die and eap_proxy_post_init is not executed

To fix this, child thread should be created after demonize

RM-290

Change-Id: Ibd9e3dc79cb1a7650b3adc55afdc95818a2e011b
CRs-Fixed: 1032710
hostapd: Skip hostapd ACL check for drivers supporting ACL offload 2016-12-03T14:52:55+00:00 Sunil Dutt usdutt@qti.qualcomm.com 2016-01-14T12:55:57+00:00 dd9eda0bfc6c2e6b2866b1a7e02b4aa10708466c Commit 0603bcb7fe8babf183362518238c142afe8e2036 ('hostapd: Process MAC ACLs on a station association event (SME in driver)') processes MAC ACL on a station association event for drivers which use AP SME offload but does not consider the scenario where the drivers offload ACL. This can result in station disconnection, though the driver accepts the connection. Address this by avoiding the hostapd ACL check for the drivers offloading MAC ACL. RM-290 CRs-Fixed: 1031991 Git-commit: bb4e19e3f4c9d1973279b3b768bc0539ee7cb962 Git-repo : git://w1.fi/srv/git/hostap.git Change-Id: I2934fbf676c803059e62ba2436c1181efb05a294 Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> 
Commit 0603bcb7fe8babf183362518238c142afe8e2036 ('hostapd: Process MAC
ACLs on a station association event (SME in driver)') processes MAC ACL
on a station association event for drivers which use AP SME offload but
does not consider the scenario where the drivers offload ACL. This can
result in station disconnection, though the driver accepts the
connection. Address this by avoiding the hostapd ACL check for the
drivers offloading MAC ACL.

RM-290

CRs-Fixed: 1031991
Git-commit: bb4e19e3f4c9d1973279b3b768bc0539ee7cb962
Git-repo : git://w1.fi/srv/git/hostap.git
Change-Id: I2934fbf676c803059e62ba2436c1181efb05a294
Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Reject SET commands with newline characters in the string values 2016-12-03T14:52:51+00:00 Jouni Malinen jouni@qca.qualcomm.com 2016-04-05T20:55:48+00:00 45ee8e9290341bca9f992f7a0d7ab543e1ec9671 Many of the global configuration parameters are written as strings without filtering and if there is an embedded newline character in the value, unexpected configuration file data might be written. This fixes an issue where wpa_supplicant could have updated the configuration file global parameter with arbitrary data from the control interface or D-Bus interface. While those interfaces are supposed to be accessible only for trusted users/applications, it may be possible that an untrusted user has access to a management software component that does not validate the value of a parameter before passing it to wpa_supplicant. This could allow such an untrusted user to inject almost arbitrary data into the configuration file. Such configuration file could result in wpa_supplicant trying to load a library (e.g., opensc_engine_path, pkcs11_engine_path, pkcs11_module_path, load_dynamic_eap) from user controlled location when starting again. This would allow code from that library to be executed under the wpa_supplicant process privileges RM-290 Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> Git-commit: 2a3f56502b52375c3bf113cf92adfa99bad6b488 Git-repo: git://w1.fi/srv/git/hostap.git Change-Id: Ibb1eeb6b727c27ecc4a2efce57f5394e98051061 CRs-fixed: 1007548 
Many of the global configuration parameters are written as strings
without filtering and if there is an embedded newline character in the
value, unexpected configuration file data might be written.

This fixes an issue where wpa_supplicant could have updated the
configuration file global parameter with arbitrary data from the control
interface or D-Bus interface. While those interfaces are supposed to be
accessible only for trusted users/applications, it may be possible that
an untrusted user has access to a management software component that
does not validate the value of a parameter before passing it to
wpa_supplicant.

This could allow such an untrusted user to inject almost arbitrary data
into the configuration file. Such configuration file could result in
wpa_supplicant trying to load a library (e.g., opensc_engine_path,
pkcs11_engine_path, pkcs11_module_path, load_dynamic_eap) from user
controlled location when starting again. This would allow code from that
library to be executed under the wpa_supplicant process privileges

RM-290

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Git-commit: 2a3f56502b52375c3bf113cf92adfa99bad6b488
Git-repo: git://w1.fi/srv/git/hostap.git
Change-Id: Ibb1eeb6b727c27ecc4a2efce57f5394e98051061
CRs-fixed: 1007548
Reject SET_CRED commands with newline characters in the string values 2016-12-03T14:52:45+00:00 Jouni Malinen jouni@qca.qualcomm.com 2016-04-05T20:33:10+00:00 172a4e04241e67b7454ac264d771df557b1b2574 Most of the cred block parameters are written as strings without filtering and if there is an embedded newline character in the value, unexpected configuration file data might be written. This fixes an issue where wpa_supplicant could have updated the configuration file cred parameter with arbitrary data from the control interface or D-Bus interface. While those interfaces are supposed to be accessible only for trusted users/applications, it may be possible that an untrusted user has access to a management software component that does not validate the credential value before passing it to wpa_supplicant. This could allow such an untrusted user to inject almost arbitrary data into the configuration file. Such configuration file could result in wpa_supplicant trying to load a library (e.g., opensc_engine_path, pkcs11_engine_path, pkcs11_module_path, load_dynamic_eap) from user controlled location when starting again. This would allow code from that library to be executed under the wpa_supplicant process privileges RM-290 Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> Git-commit: b166cd84a77a6717be9600bf95378a0055d6f5a5 Git-repo: git://w1.fi/srv/git/hostap.git Change-Id: Ib8222446297317f4e57bdb49597fdf6d19554886 CRs-fixed: 1007548 
Most of the cred block parameters are written as strings without
filtering and if there is an embedded newline character in the value,
unexpected configuration file data might be written.

This fixes an issue where wpa_supplicant could have updated the
configuration file cred parameter with arbitrary data from the control
interface or D-Bus interface. While those interfaces are supposed to be
accessible only for trusted users/applications, it may be possible that
an untrusted user has access to a management software component that
does not validate the credential value before passing it to
wpa_supplicant.

This could allow such an untrusted user to inject almost arbitrary data
into the configuration file. Such configuration file could result in
wpa_supplicant trying to load a library (e.g., opensc_engine_path,
pkcs11_engine_path, pkcs11_module_path, load_dynamic_eap) from user
controlled location when starting again. This would allow code from that
library to be executed under the wpa_supplicant process privileges

RM-290

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Git-commit: b166cd84a77a6717be9600bf95378a0055d6f5a5
Git-repo: git://w1.fi/srv/git/hostap.git
Change-Id: Ib8222446297317f4e57bdb49597fdf6d19554886
CRs-fixed: 1007548