%global _hardened_build 1 %if 0%{?fedora} %bcond_without gui %else %bcond_with gui %endif Summary: WPA/WPA2/IEEE 802.1X Supplicant Name: wpa_supplicant Epoch: 1 Version: 2.11 Release: 3%{?dist} License: BSD-3-Clause Source0: http://w1.fi/releases/%{name}-%{version}.tar.gz Source1: wpa_supplicant.conf Source2: wpa_supplicant.service Source3: wpa_supplicant.sysconfig Source4: wpa_supplicant.logrotate # Distro specific customization and not suitable for upstream, # Fedora-specific updates to defconfig Patch0: wpa_supplicant-defconfig-keep-options-we-ve-traditionally-used-enab.patch # Works around busted drivers Patch1: wpa_supplicant-assoc-timeout.patch # Ensures that debug output gets flushed immediately to help diagnose driver # bugs, not suitable for upstream Patch2: wpa_supplicant-flush-debug-output.patch # Quiet an annoying and frequent syslog message Patch3: wpa_supplicant-quiet-scan-results-message.patch # Distro specific customization for Qt4 build tools, not suitable for upstream Patch4: wpa_supplicant-gui-qt4.patch # We keep WEP enabled for now to avoid breaking user setups Patch6: wpa_supplicant-defconfig-keep-CONFIG_WEP-enabled.patch # FIXME: Explain why are these two here Patch7: wpa_supplicant-defconfig-enable-WPA-EAP-SUITE-B-192-ciphers.patch Patch8: wpa_supplicant-defconfig-enable-OCV-support.patch # Allow legacy renegotiation with openssl 3.0 to fix connection to # PEAP/Radius servers that don't support secure renegotiation: # https://bugzilla.redhat.com/show_bug.cgi?id=2072070 # From James Ralston in comment #24, thanks to James Patch9: wpa_supplicant-allow-legacy-renegotiation.patch # Revert 41638606054 ("Mark authorization completed on driver indication during # 4-way HS offload") as it break authentication on at least brcmfmac. # see https://bugzilla.redhat.com/show_bug.cgi?id=2302577 Patch10: wpa_supplicant-Revert-Mark-authorization-completed-on-driver-indica.patch URL: http://w1.fi/wpa_supplicant/ %if %with gui BuildRequires: qt-devel >= 4.0 %endif BuildRequires: openssl-devel BuildRequires: readline-devel BuildRequires: dbus-devel BuildRequires: libnl3-devel BuildRequires: systemd-units BuildRequires: docbook-utils BuildRequires: gcc Requires(post): systemd-sysv Requires(post): systemd Requires(preun): systemd Requires(postun): systemd # libeap used to be built from wpa_supplicant with some fairly horrible # hackery, solely for use by WiMAX. We dropped all WiMAX support around # F21. This is here so people don't wind up with obsolete libeap packages # lying around. If it's ever resurrected for any reason, this needs # dropping. Obsoletes: libeap < %{epoch}:%{version}-%{release} Obsoletes: libeap-devel < %{epoch}:%{version}-%{release} %description wpa_supplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 (IEEE 802.11i / RSN). Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11 authentication/association of the wlan driver. %if %with gui %package gui Summary: Graphical User Interface for %{name} %description gui Graphical User Interface for wpa_supplicant written using QT %endif %prep %autosetup -p1 -n %{name}-%{version} %build pushd wpa_supplicant cp defconfig .config export CFLAGS="${CFLAGS:-%optflags} -fPIE -DPIE" export CXXFLAGS="${CXXFLAGS:-%optflags} -fPIE -DPIE" export LDFLAGS="${LDFLAGS:-%optflags} -pie -Wl,-z,now" # yes, BINDIR=_sbindir export BINDIR="%{_sbindir}" export LIBDIR="%{_libdir}" make %{_smp_mflags} V=1 %if %with gui make wpa_gui-qt4 %{_smp_mflags} V=1 QTDIR=%{_libdir}/qt4 \ QMAKE='%{qmake_qt4}' LRELEASE='%{_qt4_bindir}/lrelease' %endif make eapol_test V=1 make -C doc/docbook man V=1 %if !%with gui rm doc/docbook/wpa_gui.8 %endif popd %install # config install -D -m 0600 %{SOURCE1} %{buildroot}/%{_sysconfdir}/wpa_supplicant/wpa_supplicant.conf # init scripts install -D -m 0644 %{SOURCE2} %{buildroot}/%{_unitdir}/wpa_supplicant.service install -D -m 0644 %{SOURCE3} %{buildroot}/%{_sysconfdir}/sysconfig/wpa_supplicant install -D -m 0644 %{SOURCE4} %{buildroot}/%{_sysconfdir}/logrotate.d/wpa_supplicant # binary install -d %{buildroot}/%{_sbindir} install -m 0755 wpa_supplicant/wpa_passphrase %{buildroot}/%{_sbindir} install -m 0755 wpa_supplicant/wpa_cli %{buildroot}/%{_sbindir} install -m 0755 wpa_supplicant/wpa_supplicant %{buildroot}/%{_sbindir} install -m 0755 wpa_supplicant/eapol_test %{buildroot}/%{_sbindir} install -D -m 0644 wpa_supplicant/dbus/dbus-wpa_supplicant.conf \ %{buildroot}/%{_sysconfdir}/dbus-1/system.d/wpa_supplicant.conf install -D -m 0644 wpa_supplicant/dbus/fi.w1.wpa_supplicant1.service \ %{buildroot}/%{_datadir}/dbus-1/system-services/fi.w1.wpa_supplicant1.service %if %with gui # gui install -d %{buildroot}/%{_bindir} install -m 0755 wpa_supplicant/wpa_gui-qt4/wpa_gui %{buildroot}/%{_bindir} %endif # man pages install -d %{buildroot}%{_mandir}/man{5,8} install -m 0644 wpa_supplicant/doc/docbook/*.8 %{buildroot}%{_mandir}/man8 install -m 0644 wpa_supplicant/doc/docbook/*.5 %{buildroot}%{_mandir}/man5 # some cleanup in docs and examples rm -f wpa_supplicant/doc/.cvsignore rm -rf wpa_supplicant/doc/docbook chmod -R 0644 wpa_supplicant/examples/*.py %post %systemd_post wpa_supplicant.service %preun %systemd_preun wpa_supplicant.service %triggerun -- wpa_supplicant < 0.7.3-10 # Save the current service runlevel info # User must manually run systemd-sysv-convert --apply wpa_supplicant # to migrate them to systemd targets /usr/bin/systemd-sysv-convert --save wpa_supplicant >/dev/null 2>&1 ||: # Run these because the SysV package being removed won't do them /sbin/chkconfig --del wpa_supplicant >/dev/null 2>&1 || : /bin/systemctl try-restart wpa_supplicant.service >/dev/null 2>&1 || : %files %config(noreplace) %{_sysconfdir}/wpa_supplicant/wpa_supplicant.conf %config(noreplace) %{_sysconfdir}/sysconfig/wpa_supplicant %dir %{_sysconfdir}/logrotate.d %config(noreplace) %{_sysconfdir}/logrotate.d/wpa_supplicant %{_unitdir}/wpa_supplicant.service %{_sysconfdir}/dbus-1/system.d/wpa_supplicant.conf %{_datadir}/dbus-1/system-services/fi.w1.wpa_supplicant1.service %{_sbindir}/wpa_passphrase %{_sbindir}/wpa_supplicant %{_sbindir}/wpa_cli %{_sbindir}/eapol_test %dir %{_sysconfdir}/wpa_supplicant %{_mandir}/man8/wpa_supplicant.8.gz %{_mandir}/man8/wpa_priv.8.gz %{_mandir}/man8/wpa_passphrase.8.gz %{_mandir}/man8/wpa_cli.8.gz %{_mandir}/man8/wpa_background.8.gz %{_mandir}/man8/eapol_test.8.gz %{_mandir}/man5/* %doc README %doc wpa_supplicant/ChangeLog %doc wpa_supplicant/eap_testing.txt %doc wpa_supplicant/todo.txt %doc wpa_supplicant/wpa_supplicant.conf %doc wpa_supplicant/examples %license COPYING %if %with gui %files gui %{_bindir}/wpa_gui %{_mandir}/man8/wpa_gui.8.gz %endif %changelog * Sat Aug 10 2024 Davide Caratti - 1:2.11-3 - re-enable OpenSSL ENGINE API on f40 (#2303165) * Sun Aug 04 2024 Janne Grunau - 1:2.11-2 - Revert commit breaking authentication on brcmfmac (#2302577) * Mon Jul 29 2024 Davide Caratti - 1:2.11-1 - Update to version 2.11 (#2299036) - Disable OpenSSL ENGINE API (#2301368) * Mon Feb 19 2024 Davide Caratti - 1:2.10-10 - Backport support for macsec hardware offload - Backport fix for PEAP client (CVE-2023-52160) * Sat Jan 27 2024 Fedora Release Engineering - 1:2.10-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Aug 30 2023 Davide Cavalca - 1:2.10-8 - Backport WPA3 support for Broadcom devices. Fixes: rhbz#2226569 - Enable parsing of IPv6 addresses in RADIUS configuration (#2095296) * Sat Jul 22 2023 Fedora Release Engineering - 1:2.10-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Sat Jan 21 2023 Fedora Release Engineering - 1:2.10-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Sat Jul 23 2022 Fedora Release Engineering - 1:2.10-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon May 02 2022 Adam Williamson - 1:2.10-4 - Allow legacy renegotiation for bad PEAP servers (James Ralston) (#2072070) * Wed Jan 26 2022 Michael Yartys - 1:2.10-3 - Enable Operating Channel Validation (OCV) support * Sat Jan 22 2022 Fedora Release Engineering - 1:2.10-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Mon Jan 17 2022 Davide Caratti - 1:2.10-1 - Update to version 2.10 (keeping CONFIG_WEP enabled). Related: rhbz#2041269 * Tue Sep 14 2021 Sahana Prasad - 1:2.9-16 - Rebuilt with OpenSSL 3.0.0 * Fri Sep 3 2021 Davide Caratti - 1:2.9-15 - Fix NetworkManager-CI failures with OpenSSL 3.0 * Tue Jul 27 2021 Dave Olsthoorn - 1:2.9-14 - Fix issues with FT a.k.a. 802.11r when not supported by adapter * Fri Jul 23 2021 Fedora Release Engineering - 1:2.9-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Mon Mar 1 2021 Davide Caratti - 1:2.9-12 - Fix a corner case in peer addition based on PD Request (CVE-2021-27803) * Thu Feb 4 2021 Davide Caratti - 1:2.9-11 - Fix copying of secondary device types for P2P group client (CVE-2021-0326) * Wed Jan 27 2021 Fedora Release Engineering - 1:2.9-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Fri Jan 22 2021 Davide Caratti - 1:2.9-9 - Expose OWE capability on D-Bus - Allow changing interface bridge using D-Bus * Thu Dec 17 2020 Antonio Cardace - 1:2.9-8 - Enable WPA-EAP-SUITE-B-192 cipher suite * Thu Dec 17 2020 Davide Caratti - 1:2.9-7 - fix build on ELN target (rh #1902609) * Wed Jul 29 2020 Fedora Release Engineering - 1:2.9-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Mon Jun 15 2020 Benjamin Berg - 1:2.9-5 - fix some issues with P2P operation * Thu Apr 23 2020 Davide Caratti - 1:2.9-4 - Enable Tunneled Direct Link Setup (TDLS) * Fri Jan 31 2020 Fedora Release Engineering - 1:2.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Wed Oct 30 2019 Davide Caratti - 1:2.9-2 - fix AP mode PMF disconnection protection bypass (CVE-2019-16275, rh #1767026) * Fri Aug 16 2019 Lubomir Rintel - 1:2.9-1 - Update to version 2.9 * Sat Jul 27 2019 Fedora Release Engineering - 1:2.8-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Fri May 10 2019 Davide Caratti - 1:2.8-2 - fix changelog for version 2.8-1 * Thu May 02 2019 Davide Caratti - 1:2.8-1 - Update to 2.8 upstream release, to include latest fix for NULL pointer dereference when EAP-PWD peer receives unexpected EAP fragments (CVE-2019-11555, rh #1701759) * Fri Apr 12 2019 Davide Caratti - 1:2.7-5 - fix SAE and EAP_PWD vulnerabilities: CVE-2019-9494 (cache attack against SAE) CVE-2019-9495 (cache attack against EAP-pwd) CVE-2019-9496 (SAE confirm missing state validation in hostapd/AP) CVE-2019-9497 (EAP-pwd server not checking for reflection attack) CVE-2019-9498 (EAP-pwd server missing commit validation for scalar/element) CVE-2019-9499 (EAP-pwd peer missing commit validation for scalar/element) * Sun Feb 03 2019 Fedora Release Engineering - 1:2.7-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Mon Jan 21 2019 Lubomir Rintel - 1:2.7-3 - Enable OWE and DPP - Expose SAE support on D-Bus * Mon Jan 21 2019 Lubomir Rintel - 1:2.7-2 - Enable MESH & SAE * Tue Dec 18 2018 Lubomir Rintel - 1:2.7-1 - Update to 2.7 upstream release * Wed Aug 15 2018 Lubomir Rintel - 1:2.6-20 - Expose availability of SHA384 and FT on D-Bus * Wed Aug 15 2018 Lubomir Rintel - 1:2.6-19 - Drop the broken Pmf D-Bus property patch * Wed Aug 8 2018 Davide Caratti - 1:2.6-18 - Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526) * Sat Jul 14 2018 Fedora Release Engineering - 1:2.6-17 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Fri Jun 22 2018 Davide Caratti - 1:2.6-16 - Fix endoding of NL80211_ATTR_SMPS_MODE (rh#1570903) * Fri May 11 2018 Davide Caratti - 1:2.6-15 - Make PMF configurable using D-Bus (rh#1567474) * Fri Feb 09 2018 Fedora Release Engineering - 1:2.6-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Tue Jan 16 2018 Davide Caratti - 1:2.6-13 - Don't restart wpa_supplicant.service on package upgrade (rh#1535233) * Wed Nov 1 2017 Jiří Klimeš - 1:2.6-12 - Fix crash when using MACsec without loaded macsec.ko (rh #1497640) - Enable Fast BSS Transition for station mode (rh #1372928) * Mon Oct 16 2017 Lubomir Rintel - 1:2.6-11 - hostapd: Avoid key reinstallation in FT handshake (CVE-2017-13082) - Fix PTK rekeying to generate a new ANonce - Prevent reinstallation of an already in-use group key and extend protection of GTK/IGTK reinstallation of WNM-Sleep Mode cases (CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088) - Prevent installation of an all-zero TK - TDLS: Reject TPK-TK reconfiguration - WNM: Ignore WNM-Sleep Mode Response without pending request - FT: Do not allow multiple Reassociation Response frames * Thu Aug 03 2017 Fedora Release Engineering - 1:2.6-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Thu Jul 27 2017 Fedora Release Engineering - 1:2.6-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Mon Jul 17 2017 Beniamino Galvani - 1:2.6-8 - OpenSSL: use system ciphers by default (rh #1462262) - OpenSSL: fix private key password callback (rh #1465138) * Wed May 17 2017 Beniamino Galvani - 1:2.6-7 - nl80211: Fix race condition in detecting MAC change (rh #1451834) * Tue Apr 11 2017 Davide Caratti - 1:2.6-6 - Fix use-after-free when macsec secure channels are deleted - Fix segmentation fault in case macsec module is not loaded (rh#1428937) * Mon Mar 13 2017 Thomas Haller - 1:2.6-5 - Enable IEEE 802.11w (management frame protection, PMF) (rh#909499) * Thu Mar 2 2017 Davide Caratti - 1:2.6-4 - Backport support for IEEE 802.1AE (macsec) * Sat Feb 11 2017 Fedora Release Engineering - 1:2.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Fri Jan 27 2017 Jiří Klimeš - 1:2.6-2 - Enable Wi-Fi Display support for Miracast (rh #1395682) * Tue Nov 22 2016 Lubomir Rintel - 1:2.6-1 - Update to version 2.6 * Fri Feb 05 2016 Fedora Release Engineering - 1:2.5-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Mon Nov 16 2015 Lubomir Rintel - 1:2.5-4 - Really synchronize the service file with upstream * Tue Nov 03 2015 Lukáš Nykrýn - 1:2.5-3 - Scriptlets replaced with new systemd macros (rh #850369) * Sat Oct 31 2015 Lubomir Rintel - 1:2.5-2 - Enable syslog by default - Drop writing a pid and log file * Tue Oct 27 2015 Lubomir Rintel - 1:2.5-1 - Update to version 2.5 * Fri Oct 23 2015 Lubomir Rintel - 1:2.4-6 - Fix the D-Bus policy * Sat Oct 3 2015 Ville Skyttä - 1:2.4-5 - Don't order service after syslog.target (rh #1055197) - Mark COPYING as %%license * Wed Jul 15 2015 Jiří Klimeš - 1:2.4-4 - Fix for NDEF record payload length checking (rh #1241907) * Tue Jun 16 2015 Jiří Klimeš - 1:2.4-3 - Fix a crash if P2P management interface is used (rh #1231973) * Thu Apr 23 2015 Dan Williams - 1:2.4-2 - Remove obsolete wpa_supplicant-openssl-more-algs.patch * Thu Apr 23 2015 Adam Williamson - 1:2.4-1 - new release 2.4 - add some info on a couple of patches - drop some patches merged or superseded upstream - rediff other patches - drop libeap hackery (we dropped the kernel drivers anyhow) - backport fix for CVE-2015-1863 * Sat Nov 01 2014 Orion Poplawski - 1:2.3-2 - Do not install wpa_supplicant.service as executable (bug #803980) * Thu Oct 30 2014 Lubomir Rintel - 1:2.3-1 - Update to 2.3 * Wed Oct 22 2014 Dan Williams - 1:2.0-12 - Use os_exec() for action script execution (CVE-2014-3686) * Thu Aug 21 2014 Kevin Fenzi - 1:2.0-11 - Rebuild for rpm bug 1131960 * Mon Aug 18 2014 Fedora Release Engineering - 1:2.0-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 08 2014 Fedora Release Engineering - 1:2.0-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon Nov 18 2013 Dan Williams - 1:2.0-8 - Don't disconnect when PMKSA cache gets too large (rh #1016707) * Sun Aug 04 2013 Fedora Release Engineering - 1:2.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Wed Jul 10 2013 Dan Williams - 1:2.0-6 - Enable full RELRO/PIE/PIC for wpa_supplicant and libeap - Fix changelog dates * Wed Jul 10 2013 Dan Williams - 1:2.0-5 - Build and package eapol_test (rh #638218) * Wed Jul 10 2013 Dan Williams - 1:2.0-4 - Disable WiMAX libeap hack for RHEL * Wed May 15 2013 Dan Williams - 1:2.0-3 - Enable HT (802.11n) for AP mode * Tue May 7 2013 Dan Williams - 1:2.0-2 - Use hardened build macros and ensure they apply to libeap too * Mon May 6 2013 Dan Williams - 1:2.0-1 - Update to 2.0 - Be less aggressive when roaming due to signal strength changes (rh #837402) * Mon Apr 1 2013 Dan Williams - 1:1.1-1 - Update to 1.1 - Be less aggressive when roaming due to signal strength changes * Fri Feb 15 2013 Fedora Release Engineering - 1:1.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sun Jan 20 2013 Dan Horák - 1:1.0-3 - rebuilt again for fixed soname in libnl3 * Sun Jan 20 2013 Kalev Lember - 1:1.0-2 - Rebuilt for libnl3 * Wed Aug 29 2012 Dan Williams - 1:1.0-1 - Enable lightweight AP mode support - Enable P2P (WiFi Direct) support - Enable RSN IBSS/AdHoc support * Sun Jul 22 2012 Fedora Release Engineering - 1:1.0-0.5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue May 1 2012 Dan Williams - 1:1.0-0.4 - Update to wpa_supplicant 1.0-rc3 - Fix systemd target dependencies (rh #815091) * Fri Mar 2 2012 Dan Williams - 1:1.0-0.3 - Update to latest 1.0 git snapshot - Rebuild against libnl3 * Thu Feb 2 2012 Dan Williams - 1:1.0-0.2 - Fix driver fallback for non nl80211-based drivers (rh #783712) * Tue Jan 10 2012 Dan Williams - 1:1.0-0.1 - Update to 1.0-rc1 + git * Fri Sep 9 2011 Tom Callaway - 1:0.7.3-11 - add missing systemd scriptlets * Thu Sep 8 2011 Tom Callaway - 1:0.7.3-10 - convert to systemd * Wed Jul 27 2011 Dan Williams - 1:0.7.3-9 - Fix various crashes with D-Bus interface (rh #678625) (rh #725517) * Tue May 3 2011 Dan Williams - 1:0.7.3-8 - Don't crash when trying to access invalid properties via D-Bus (rh #678625) * Mon May 2 2011 Dan Williams - 1:0.7.3-7 - Make examples read-only to avoid erroneous python dependency (rh #687952) * Tue Apr 19 2011 Bill Nottingham - 1:0.7.3-6 - Fix EAP patch to only apply when building libeap * Fri Mar 25 2011 Bill Nottingham - 1:0.7.3-5 - Add libeap/libeap-devel subpackge for WiMAX usage * Mon Feb 07 2011 Fedora Release Engineering - 1:0.7.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Tue Jan 11 2011 Dan Williams - 1:0.7.3-3 - Enable EAP-TNC (rh #659038) * Wed Dec 15 2010 Dan Williams - 1:0.7.3-2 - Enable the bgscan_simple plugin * Wed Dec 8 2010 Dan Williams - 1:0.7.3-1 - Update to 0.7.3 - Drop upstreamed and backported patches - Drop support for Qt3 * Thu Oct 7 2010 Peter Lemenkov - 1:0.6.8-11 - Added comments to some patches (see rhbz #226544#c17) - Shortened %%install section a bit * Thu May 13 2010 Dan Williams - 1:0.6.8-10 - Remove prereq on chkconfig - Build GUI with qt4 for rawhide (rh #537105) * Thu May 6 2010 Dan Williams - 1:0.6.8-9 - Fix crash when interfaces are removed (like suspend/resume) (rh #589507) * Wed Jan 6 2010 Dan Williams - 1:0.6.8-8 - Fix handling of newer PKCS#12 files (rh #541924) * Sun Nov 29 2009 Dan Williams - 1:0.6.8-7 - Fix supplicant initscript return value (rh #521807) - Fix race when connecting to WPA-Enterprise/802.1x-enabled access points (rh #508509) - Don't double-scan when attempting to associate * Fri Aug 21 2009 Tomas Mraz - 1:0.6.8-6 - rebuilt with new openssl * Mon Jul 27 2009 Fedora Release Engineering - 1:0.6.8-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Wed May 13 2009 Dan Williams - 1:0.6.8-4 - Let D-Bus clients know when the supplicant is scanning * Tue May 12 2009 Dan Williams - 1:0.6.8-3 - Ensure the supplicant starts and ends with clean driver state - Handle driver disconnect spammage by forcibly clearing SSID - Don't switch access points unless the current association is dire (rh #493745) * Tue May 12 2009 Dan Williams - 1:0.6.8-2 - Avoid creating bogus Ad-Hoc networks when forcing the driver to disconnect (rh #497771) * Mon Mar 9 2009 Dan Williams - 1:0.6.8-1 - Update to latest upstream release * Wed Feb 25 2009 Colin Walters - 1:0.6.7-4 - Add patch from upstream to suppress unrequested replies, this quiets a dbus warning. * Fri Feb 6 2009 Dan Williams - 1:0.6.7-3 - Fix scan result retrieval in very dense wifi environments * Fri Feb 6 2009 Dan Williams - 1:0.6.7-2 - Ensure that drivers don't retry association when they aren't supposed to * Fri Jan 30 2009 Dan Williams - 1:0.6.7-1 - Fix PEAP connections to Windows Server 2008 authenticators (rh #465022) - Stop supplicant on uninstall (rh #447843) - Suppress scan results message in logs (rh #466601) * Sun Jan 18 2009 Tomas Mraz - 1:0.6.4-3 - rebuild with new openssl * Wed Oct 15 2008 Dan Williams - 1:0.6.4-2 - Handle encryption keys correctly when switching 802.11 modes (rh #459399) - Better scanning behavior on resume from suspend/hibernate - Better interaction with newer kernels and drivers * Wed Aug 27 2008 Dan Williams - 1:0.6.4-1 - Update to 0.6.4 - Remove 'hostap', 'madwifi', and 'prism54' drivers; use standard 'wext' instead - Drop upstreamed patches * Tue Jun 10 2008 Dan Williams - 1:0.6.3-6 - Fix 802.11a frequency bug - Always schedule specific SSID scans to help find hidden APs - Properly switch between modes on mac80211 drivers - Give adhoc connections more time to assocate * Mon Mar 10 2008 Christopher Aillon - 1:0.6.3-5 - BuildRequires qt3-devel * Sat Mar 8 2008 Dan Williams - 1:0.6.3-4 - Fix log file path in service config file * Thu Mar 6 2008 Dan Williams - 1:0.6.3-3 - Don't start the supplicant by default when installed (rh #436380) * Tue Mar 4 2008 Dan Williams - 1:0.6.3-2 - Fix a potential use-after-free in the D-Bus byte array demarshalling code * Mon Mar 3 2008 Dan Williams - 1:0.6.3-1 - Update to latest development release; remove upstreamed patches * Fri Feb 22 2008 Dan Williams 1:0.5.7-23 - Fix gcc 4.3 rebuild issues * Mon Feb 18 2008 Fedora Release Engineering - 1:0.5.7-22 - Autorebuild for GCC 4.3 * Tue Dec 25 2007 Dan Williams - 0.5.7-21 - Backport 'frequency' option for Ad-Hoc network configs * Mon Dec 24 2007 Dan Williams - 0.5.7-20 - Fix LSB initscript header to ensure 'messagebus' is started first (rh #244029) * Thu Dec 6 2007 Dan Williams - 1:0.5.7-19 - Fix two leaks when signalling state and scan results (rh #408141) - Add logrotate config file (rh #404181) - Add new LSB initscript header to initscript with correct deps (rh #244029) - Move other runtime arguments to /etc/sysconfig/wpa_supplicant - Start after messagebus service (rh #385191) - Fix initscript 'condrestart' command (rh #217281) * Tue Dec 4 2007 Matthias Clasen - 1:0.5.7-18 - Rebuild against new openssl * Tue Dec 4 2007 Ville Skyttä - 1:0.5.7-17 - Group: Application/System -> Applications/System in -gui. * Tue Nov 13 2007 Dan Williams - 0.5.7-16 - Add IW_ENCODE_TEMP patch for airo driver and Dynamic WEP - Fix error in wpa_supplicant-0.5.7-ignore-dup-ca-cert-addition.patch that caused the last error to not be printed - Fix wpa_supplicant-0.5.7-ignore-dup-ca-cert-addition.patch to ignore duplicate cert additions for all certs and keys - Change license to BSD due to linkage against OpenSSL since there is no OpenSSL exception in the GPLv2 license text that upstream ships * Sun Oct 28 2007 Dan Williams - 0.5.7-15 - Fix Dynamic WEP associations with mac80211-based drivers * Sun Oct 28 2007 Dan Williams - 0.5.7-14 - Don't error an association on duplicate CA cert additions * Wed Oct 24 2007 Dan Williams - 0.5.7-13 - Correctly set the length of blobs added via the D-Bus interface * Wed Oct 24 2007 Dan Williams - 0.5.7-12 - Fix conversion of byte arrays to strings by ensuring the buffer is NULL terminated after conversion * Sat Oct 20 2007 Dan Williams - 0.5.7-11 - Add BLOB support to the D-Bus interface - Fix D-Bus interface permissions so that only root can use the wpa_supplicant D-Bus interface * Tue Oct 9 2007 Dan Williams - 0.5.7-10 - Don't segfault with dbus control interface enabled and invalid network interface (rh #310531) * Tue Sep 25 2007 Dan Williams - 0.5.7-9 - Always allow explicit wireless scans triggered from a control interface * Thu Sep 20 2007 Dan Williams - 0.5.7-8 - Change system bus activation file name to work around D-Bus bug that fails to launch services unless their .service file is named the same as the service itself * Fri Aug 24 2007 Dan Williams - 0.5.7-7 - Make SIGUSR1 change debug level on-the-fly; useful in combination with the -f switch to log output to /var/log/wpa_supplicant.log - Stop stripping binaries on install so we get debuginfo packages - Remove service start requirement for interfaces & devices from sysconfig file, since wpa_supplicant's D-Bus interface is now turned on * Fri Aug 17 2007 Dan Williams - 0.5.7-6 - Fix compilation with RPM_OPT_FLAGS (rh #249951) - Make debug output to logfile a runtime option * Fri Aug 17 2007 Christopher Aillon - 0.5.7-5 - Update the license tag * Tue Jun 19 2007 Dan Williams - 0.5.7-4 - Fix initscripts to use -Dwext by default, be more verbose on startup (rh #244511) * Mon Jun 4 2007 Dan Williams - 0.5.7-3 - Fix buffer overflow by removing syslog patch (#rh242455) * Mon Apr 9 2007 Dan Williams - 0.5.7-2 - Add patch to send output to syslog * Thu Mar 15 2007 Dan Williams - 0.5.7-1 - Update to 0.5.7 stable release * Fri Oct 27 2006 Dan Williams - 0.4.9-1 - Update to 0.4.9 for WE-21 fixes, remove upstreamed patches - Don't package doc/ because they aren't actually wpa_supplicant user documentation, and becuase it pulls in perl * Wed Jul 12 2006 Jesse Keating - 0.4.8-10.1 - rebuild * Thu Apr 27 2006 Dan Williams - 0.4.8-10 - Add fix for madwifi and WEP (wpa_supplicant/hostap bud #140) (#rh190075#) - Fix up madwifi-ng private ioctl()s for r1331 and later - Update madwifi headers to r1475 * Tue Apr 25 2006 Dan Williams - 0.4.8-9 - Enable Wired driver, PKCS12, and Smartcard options (#rh189805#) * Tue Apr 11 2006 Dan Williams - 0.4.8-8 - Fix control interface key obfuscation a bit * Sun Apr 2 2006 Dan Williams - 0.4.8-7 - Work around older & incorrect drivers that return null-terminated SSIDs * Mon Mar 27 2006 Dan Williams - 0.4.8-6 - Add patch to make orinoco happy with WEP keys - Enable Prism54-specific driver - Disable ipw-specific driver; ipw2x00 should be using WEXT instead * Fri Mar 3 2006 Dan Williams - 0.4.8-5 - Increase association timeout, mainly for drivers that don't fully support WPA ioctls yet * Fri Mar 3 2006 Dan Williams - 0.4.8-4 - Add additional BuildRequires #rh181914# - Add prereq on chkconfig #rh182905# #rh182906# - Own /var/run/wpa_supplicant and /etc/wpa_supplicant #rh183696# * Wed Mar 1 2006 Dan Williams - 0.4.8-3 - Install wpa_passphrase too #rh183480# * Mon Feb 27 2006 Dan Williams - 0.4.8-2 - Don't expose private data on the control interface unless requested * Fri Feb 24 2006 Dan Williams - 0.4.8-1 - Downgrade to 0.4.8 stable release rather than a dev release * Sun Feb 12 2006 Dan Williams - 0.5.1-3 - Documentation cleanup (Terje Rosten ) * Sun Feb 12 2006 Dan Williams - 0.5.1-2 - Move initscript to /etc/rc.d/init.d * Fri Feb 10 2006 Jesse Keating - 0.5.1-1.2 - bump again for double-long bug on ppc(64) * Tue Feb 07 2006 Jesse Keating - 0.5.1-1.1 - rebuilt for new gcc4.1 snapshot and glibc changes * Sun Feb 5 2006 Dan Williams 0.5.1-1 - Update to 0.5.1 - Add WE auth fallback to actually work with older drivers * Thu Jan 26 2006 Dan Williams 0.4.7-2 - Bring package into Fedora Core - Add ap_scan control interface patch - Enable madwifi-ng driver * Sun Jan 15 2006 Douglas E. Warner 0.4.7-1 - upgrade to 0.4.7 - added package w/ wpa_gui in it * Mon Nov 14 2005 Douglas E. Warner 0.4.6-1 - upgrade to 0.4.6 - adding ctrl interface changes recommended by Hugo Paredes * Sun Oct 9 2005 Douglas E. Warner 0.4.5-1 - upgrade to 0.4.5 - updated config file wpa_supplicant is built with especially, the ipw2100 driver changed to just ipw and enabled a bunch more EAP - disabled dist tag * Thu Jun 30 2005 Douglas E. Warner 0.4.2-3 - fix typo in init script * Thu Jun 30 2005 Douglas E. Warner 0.4.2-2 - fixing init script using fedora-extras' template - removing chkconfig default startup * Tue Jun 21 2005 Douglas E. Warner 0.4.2-1 - upgrade to 0.4.2 - new sample conf file that will use any unrestricted AP - make sysconfig config entry - new BuildRoot for Fedora Extras - adding dist tag to Release * Fri May 06 2005 Douglas E. Warner 0.3.8-1 - upgrade to 0.3.8 * Thu Feb 10 2005 Douglas E. Warner 0.3.6-2 - compile ipw driver in * Wed Feb 09 2005 Douglas E. Warner 0.3.6-1 - upgrade to 0.3.6 * Thu Dec 23 2004 Douglas E. Warner 0.2.5-4 - fixing init script * Mon Dec 20 2004 Douglas E. Warner 0.2.5-3 - fixing init script - adding post/preun items to add/remove via chkconfig * Mon Dec 20 2004 Douglas E. Warner 0.2.5-2 - adding sysV scripts * Mon Dec 20 2004 Douglas E. Warner 0.2.5-1 - Initial RPM release.