On Mon, Jan 06, 2020 at 04:21:06PM +0100, Markus Theil wrote: > This patch is based on the previous patch from Brendan Jackman > and adds rx support over nl80211. In order to receive frames > over the event nl socket the following operations have to be > performed over this socket (kernel has checks): > - associate > - connect > - set beacon > - del beacon > - disconnect > - deauthenticate > - ibss join > - mesh join > > Therefore a new fn is added, which sets the corresponding > control port options (send_and_recv_as_owner). These options > have no effect on disconnent and are therefore left as they are, > but the same socket which was used initially has to be used again. This seems to result in NULL pointer dereferences and/or use of freed data killing wpa_supplicant in number of hwsim test cases. For example, grpform_c shows this with driver event delivered to an interface that was just removed: Another issue is in ap_cipher_tkip_countermeasures_sta reporting unexpected disconnection reason and wpas_ctrl_ipaddr reporting "IP address not in STATUS output" (which is due to closing of wpa_s->l2 which is apparently still needed here for l2_packet_get_ip_addr()). In total, there was about 80 failed test cases, but some of these are likely triggered by more severe issues in previously executed test cases like that NULL pointer killing a process. -- Jouni Malinen PGP id EFC895FA _______________________________________________ Hostap mailing list Hostap@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/hostap
