On Sat, 2017-02-04 at 13:59 +0200, Jouni Malinen wrote: > Incorrect num_elem parameter value (1 vs. 5) was used in the > aes_siv_encrypt() call. This resulted in only the first one of the > five > AAD vectors to SIV getting included in calculation. This does not > protect all the contents correctly and would not interoperate with a > standard compliant implementation. > > Fix this by using the correct number. A matching fix is needed in the > AP > side (hostapd) to get FILS authentication working properly. Applied, thanks. johannes
