openwrt/package
Stijn Tintel c5f97c9372 hostapd: add wpa_disable_eapol_key_retries option
Commit 2127425434 introduced an AP-side
workaround for key reinstallation attacks. This option can be used to
mitigate KRACK on the station side, in case those stations cannot be
updated. Since many devices are out there will not receive an update
anytime soon (if at all), it makes sense to include this workaround.

Unfortunately this can cause interoperability issues and reduced
robustness of key negotiation, so disable the workaround by default, and
add an option to allow the user to enable it if he deems necessary.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
2017-10-17 17:25:05 +03:00
..
base-files base-files: create /etc/config/ directory 2017-09-30 22:22:38 +02:00
boot at91bootstrap: remove manual copy of binaries to BIN_DIR 2017-10-14 00:33:34 +02:00
devel gdb: bump to 8.0.1 2017-09-29 06:33:39 +03:00
firmware linux-firmware: add ath6k firmware to package 2017-10-15 00:24:21 +02:00
kernel mac80211: backport kernel fix for CVE-2017-13080 2017-10-17 01:56:31 +03:00
libs libs/libnl: Update to 3.3.0 2017-10-15 00:24:22 +02:00
network hostapd: add wpa_disable_eapol_key_retries option 2017-10-17 17:25:05 +03:00
system uci: bump to git HEAD version 2017-10-04 21:29:34 +02:00
utils busybox: provide "ip" 2017-10-14 20:23:55 +02:00
Makefile build: cleanup tmp/ dir of target rootfs 2017-05-02 22:10:50 +08:00