~indicator-network-developers/wpasupplicant/07-series

  • Committer: Jouni Malinen
  • Date: 2012-10-07 17:59:01 UTC
  • Revision ID: git-v1:f3043318970a98c98e968ed17b3e2f49dc42c646
EAP-TLS server: Fix TLS Message Length validation

EAP-TLS/PEAP/TTLS/FAST server implementation did not validate TLS
Message Length value properly and could end up trying to store more
information into the message buffer than the allocated size if the first
fragment is longer than the indicated size. This could result in hostapd
process terminating in wpabuf length validation. Fix this by rejecting
messages that have invalid TLS Message Length value.

This would affect cases that use the internal EAP authentication server
in hostapd either directly with IEEE 802.1X or when using hostapd as a
RADIUS authentication server and when receiving an incorrectly
constructed EAP-TLS message. Cases where hostapd uses an external
authentication are not affected.

Thanks to Timo Warns for finding and reporting this issue.

Signed-hostap: Jouni Malinen <j@w1.fi>
intended-for: hostap-1
(cherry picked from commit 586c446e0ff42ae00315b014924ec669023bd8de)
Filename Latest Rev Last Changed Committer Comment Size
..
doc 1228 15 years ago Jouni Malinen Add new, shared doxygen documentation for hostapd Diff
eap_example 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
hostapd 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
mac80211_hwsim 119 16 years ago Jouni Malinen Added mac80211_hwsim - software simulator of 802.1 Diff
patches 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
radius_example 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
src 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
testing 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
tests 1287 15 years ago Jouni Malinen Move base64 test code into a new tests subdirector Diff
wpa_supplicant 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
www 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor Diff
.gitignore 936 15 years ago Jouni Malinen Add root .gitignore file to cleanup ignore lists 11 bytes Diff Download File
File build_nsis.sh 436 15 years ago Jouni Malinen Added Windows NSIS installer for wpa_supplicant 305 bytes Diff Download File
File build_release 1927 14 years ago Jouni Malinen Add wpa_gui-qt4 translation files into build 3.1 KB Diff Download File
COPYING 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor 17.5 KB Diff Download File
FAQ 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor 7.6 KB Diff Download File
README 1 16 years ago Jouni Malinen Re-initialize hostapd/wpa_supplicant git repositor 729 bytes Diff Download File