Revisions of wpa_supplicant
buildservice-autocommit
accepted
request 1147035
from
Clemens Famulla-Conrad (cfconrad)
(revision 144)
baserev update by copy to link target
Clemens Famulla-Conrad (cfconrad)
accepted
request 1147033
from
Clemens Famulla-Conrad (cfconrad)
(revision 143)
- Add CVE-2023-52160.patch - Bypassing WiFi Authentication (bsc#1219975)
buildservice-autocommit
accepted
request 1087515
from
Clemens Famulla-Conrad (cfconrad)
(revision 142)
baserev update by copy to link target
Clemens Famulla-Conrad (cfconrad)
accepted
request 1087472
from
Callum Farmer (gmbr3)
(revision 141)
- Change ctrl_interface from /var/run to %_rundir (/run)
buildservice-autocommit
accepted
request 1001384
from
Clemens Famulla-Conrad (cfconrad)
(revision 140)
baserev update by copy to link target
Clemens Famulla-Conrad (cfconrad)
accepted
request 1000701
from
Stefan Schubert (schubi2)
(revision 139)
Migration to /usr/etc: Saving user changed configuration files in /etc and restoring them while an RPM update.
buildservice-autocommit
accepted
request 986870
from
Clemens Famulla-Conrad (cfconrad)
(revision 138)
baserev update by copy to link target
Clemens Famulla-Conrad (cfconrad)
accepted
request 986868
from
Clemens Famulla-Conrad (cfconrad)
(revision 137)
- Add dbus-Fix-property-DebugShowKeys-and-DebugTimestamp.patch (bsc#1201219)
Clemens Famulla-Conrad (cfconrad)
committed
(revision 136)
Clemens Famulla-Conrad (cfconrad)
accepted
request 984114
from
Callum Farmer (gmbr3)
(revision 135)
no %config for /usr (amend last)
Clemens Famulla-Conrad (cfconrad)
accepted
request 984149
from
Clemens Famulla-Conrad (cfconrad)
(revision 134)
- Remove Revert-DBus-Add-sae-to-interface-key_mgmt-capabilities.patch Fixed in NetworkManager (glfo#NetworkManager/NetworkManager#a0988868). Wifi cards, wich do not support PMF/BIP ciphers, should not use SAE as key management. (bsc#1195312)
Clemens Famulla-Conrad (cfconrad)
accepted
request 984102
from
Stefan Schubert (schubi2)
(revision 133)
- Moved logrotate files from user specif directory /etc/logrotate.d to vendor specif directory /usr/etc/logrotate.d.
Clemens Famulla-Conrad (cfconrad)
accepted
request 981333
from
Callum Farmer (gmbr3)
(revision 132)
- Move the dbus-1 system.d file to /usr (bsc#1200342)
Clemens Famulla-Conrad (cfconrad)
accepted
request 952644
from
Dirk Mueller (dirkmueller)
(revision 131)
- Apply Revert-DBus-Add-sae-to-interface-key_mgmt-capabilities.patch to fix connect with AVM FB, if WPA3 transition mode is activated, e.g. Wifi -> Security: is WPA2 + WPA3, alt. switch to WPA2 (CCMP) (bsc#1195312) - drop restore-old-dbus-interface.patch, wicked has been switching to the new dbus interface in version 0.6.66. - drop wpa_supplicant-getrandom.patch : glibc has been updated so the getrandom() wrapper is now there - config: * enable QCA vendor extensions to nl80211 * enable EAP-EKE * Support HT overrides * WPA3-Enterprise * TLS v1.1 and TLS v1.2 * Fast Session Transfer (FST) * Automatic Channel Selection * Multi Band Operation * Fast Initial Link Setup * Mesh Networking (IEEE 802.11s) - config: * Reenable Fast BSS Transition (likely fixing bsc#1195312) * Enable OCV, security feature that prevents MITM multi-channel attacks * Enable OWE for better hotspot support
Clemens Famulla-Conrad (cfconrad)
accepted
request 948384
from
Dirk Mueller (dirkmueller)
(revision 130)
- update to 2.10.0: * SAE changes - improved protection against side channel attacks [https://w1.fi/security/2022-1/] - added support for the hash-to-element mechanism (sae_pwe=1 or sae_pwe=2); this is currently disabled by default, but will likely get enabled by default in the future - fixed PMKSA caching with OKC - added support for SAE-PK * EAP-pwd changes - improved protection against side channel attacks [https://w1.fi/security/2022-1/] * fixed P2P provision discovery processing of a specially constructed invalid frame [https://w1.fi/security/2021-1/] * fixed P2P group information processing of a specially constructed invalid frame [https://w1.fi/security/2020-2/] * fixed PMF disconnection protection bypass in AP mode [https://w1.fi/security/2019-7/] * added support for using OpenSSL 3.0 * increased the maximum number of EAP message exchanges (mainly to support cases with very large certificates) * fixed various issues in experimental support for EAP-TEAP peer * added support for DPP release 2 (Wi-Fi Device Provisioning Protocol) * a number of MKA/MACsec fixes and extensions * added support for SAE (WPA3-Personal) AP mode configuration * added P2P support for EDMG (IEEE 802.11ay) channels * fixed EAP-FAST peer with TLS GCM/CCM ciphers * improved throughput estimation and BSS selection
Clemens Famulla-Conrad (cfconrad)
accepted
request 945228
from
Johannes Segitz (jsegitz)
(revision 129)
- Added hardening to systemd service(s) (bsc#1181400). Modified: * wpa_supplicant.service
buildservice-autocommit
accepted
request 883362
from
Clemens Famulla-Conrad (cfconrad)
(revision 128)
baserev update by copy to link target
Clemens Famulla-Conrad (cfconrad)
accepted
request 883361
from
Clemens Famulla-Conrad (cfconrad)
(revision 127)
- Add CVE-2021-30004.patch -- forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c (bsc#1184348)
buildservice-autocommit
accepted
request 878125
from
Clemens Famulla-Conrad (cfconrad)
(revision 126)
baserev update by copy to link target
buildservice-autocommit
accepted
request 875681
from
Clemens Famulla-Conrad (cfconrad)
(revision 125)
baserev update by copy to link target
Displaying revisions 1 - 20 of 144