On 28 April 2018 at 15:07, Kalle Valo <kvalo@xxxxxxxxxxxxxx> wrote: > Andrew Zaborowski <andrew.zaborowski@xxxxxxxxx> writes: >> Reject NL80211_CMD_DISCONNECT, NL80211_CMD_DISASSOCIATE, >> NL80211_CMD_DEAUTHENTICATE and NL80211_CMD_ASSOCIATE commands >> from clients other than the connection owner set in the connect, >> authenticate or associate commands, if it was set. >> >> The main point of this check is to prevent chaos when two processes >> try to use nl80211 at the same time, it's not a security measure. >> The same thing should possibly be done for JOIN_IBSS/LEAVE_IBSS and >> START_AP/STOP_AP. > > s-o-b missing. True, thanks. Also I was going to send this as an RFC. Best regards
