mirror/freebsd-ports
1
0
Fork 0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-17 03:25:46 +00:00
Code Issues Releases Activity
ba220a21d8
freebsd-ports/net/hostapd/Makefile
Cy Schubert 96028ad87a Add patch set 2017-1. 
A vulnerability was found in how a number of implementations can be
triggered to reconfigure WPA/WPA2/RSN keys (TK, GTK, or IGTK) by
replaying a specific frame that is used to manage the keys. Such
reinstallation of the encryption key can result in two different types
of vulnerabilities: disabling replay protection and significantly
reducing the security of encryption to the point of allowing frames to
be decrypted or some parts of the keys to be determined by an attacker
depending on which cipher is used.

Approved by:	leres (maintainer)
Security:	https://w1.fi/security/2017-1/ \
		wpa-packet-number-reuse-with-replayed-messages.txt
Security:	https://www.krackattacks.com/
MFH:		2017Q4
Differential Revision:	D12691
2017-10-17 01:30:47 +00:00

49 lines
1.6 KiB
Makefile
Raw Blame History

# Created by: Craig Leres <leres@FreeBSD.org>
# $FreeBSD$
PORTNAME= hostapd
PORTVERSION= 2.6
PORTREVISION= 1
CATEGORIES= net
MASTER_SITES= https://w1.fi/releases/
PATCH_SITES= https://w1.fi/security/2017-1/
PATCHFILES= rebased-v2.6-0001-hostapd-Avoid-key-reinstallation-in-FT-handshake.patch \
rebased-v2.6-0002-Prevent-reinstallation-of-an-already-in-use-group-ke.patch \
rebased-v2.6-0003-Extend-protection-of-GTK-IGTK-reinstallation-of-WNM-.patch \
rebased-v2.6-0004-Prevent-installation-of-an-all-zero-TK.patch \
rebased-v2.6-0005-Fix-PTK-rekeying-to-generate-a-new-ANonce.patch \
rebased-v2.6-0006-TDLS-Reject-TPK-TK-reconfiguration.patch \
rebased-v2.6-0008-FT-Do-not-allow-multiple-Reassociation-Response-fram.patch
PATCH_DIST_STRIP= -p1
MAINTAINER= leres@FreeBSD.org
COMMENT= IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator
LICENSE= BSD3CLAUSE
USES= cpe gmake ssl
CPE_VENDOR= w1.f1
BUILD_WRKSRC= ${WRKSRC}/hostapd
CFLAGS+= -I${OPENSSLINC}
LDFLAGS+= -L${OPENSSLLIB}
PLIST_FILES= sbin/hostapd sbin/hostapd_cli man/man1/hostapd_cli.1.gz \
man/man8/hostapd.8.gz
post-patch:
@${REINPLACE_CMD} -e 's|@$$(E) " CC " $$<|@$$(E) " $$(CC) " $$<|' \
${BUILD_WRKSRC}/Makefile
@${SED} -e 's|@PREFIX@|${PREFIX}|g' ${FILESDIR}/config \
>> ${WRKSRC}/hostapd/.config
do-install:
${INSTALL_PROGRAM} ${WRKSRC}/hostapd/hostapd ${STAGEDIR}${PREFIX}/sbin
${INSTALL_PROGRAM} ${WRKSRC}/hostapd/hostapd_cli \
${STAGEDIR}${PREFIX}/sbin
${INSTALL_MAN} ${WRKSRC}/hostapd/hostapd_cli.1 \
${STAGEDIR}${MANPREFIX}/man/man1
${INSTALL_MAN} ${WRKSRC}/hostapd/hostapd.8 \
${STAGEDIR}${MANPREFIX}/man/man8
.include <bsd.port.mk>
Reference in New Issue View Git Blame Copy Permalink