Ubuntu
wpa package

  1. Bug #1099755
  2. Comment #13

Comment 13 for bug 1099755

Revision history for this message
Anders Kaseorg (andersk) wrote : Re: Upgrade wpa_supplicant from 1.0 to 2.0

LocutusOfBorg: It looks like you chose to change CONFIG_TLS from openssl to gnutls. I’m concerned that GnuTLS support in wpa_supplicant is not fully baked security-wise, given these comments:

src/crypto/tls_gnutls.c: /* TODO: gnutls_certificate_set_verify_flags(xcred, flags);
src/crypto/tls_gnutls.c- * to force peer validation(?) */
src/crypto/tls_gnutls.c: /* TODO: validate subject_match and altsubject_match */