%global _hardened_build 1

%if 0%{?fedora}

%bcond_without gui

%else

%bcond_with gui

%endif

Summary: WPA/WPA2/IEEE 802.1X Supplicant

Name: wpa_supplicant

Epoch: 1

Version: 2.9

Release: 17%{?dist}

License: BSD

Source0: http://w1.fi/releases/%{name}-%{version}.tar.gz

Source1: wpa_supplicant.conf

Source2: wpa_supplicant.service

Source3: wpa_supplicant.sysconfig

Source4: wpa_supplicant.logrotate

# distro specific customization and not suitable for upstream,

# Fedora-specific updates to defconfig

Patch0: wpa_supplicant-config.patch

# works around busted drivers

Patch1: wpa_supplicant-assoc-timeout.patch

# ensures that debug output gets flushed immediately to help diagnose driver

# bugs, not suitable for upstream

Patch2: wpa_supplicant-flush-debug-output.patch

# quiet an annoying and frequent syslog message

Patch3: wpa_supplicant-quiet-scan-results-message.patch

# distro specific customization for Qt4 build tools, not suitable for upstream

Patch4: wpa_supplicant-gui-qt4.patch

# fix AP mode PMF disconnection protection bypass

Patch5: 0001-AP-Silently-ignore-management-frame-from-unexpected-.patch

# fix some issues with P2P operation

Patch6: 0001-P2P-Always-use-global-p2p_long_listen.patch

Patch7: 0001-D-Bus-Fix-P2P-NULL-dereference-after-interface-remov.patch

Patch8: 0001-p2p-Limit-P2P_DEVICE-name-to-appropriate-ifname-size.patch

#fix for bz1915236

Patch9: 0001-D-Bus-Allow-changing-an-interface-bridge-via-D-Bus.patch

#expose OWE capability in D-Bus

Patch10: 0001-dbus-Export-OWE-capability-and-OWE-BSS-key_mgmt.patch

#fix for CVE-2021-0326

Patch11: 0001-P2P-Fix-copying-of-secondary-device-types-for-P2P-gr.patch

#fix for CVE-2021-27803

Patch12: 0001-P2P-Fix-a-corner-case-in-peer-addition-based-on-PD-R.patch

#fix for bz1975718 

Patch13: 0001-OpenSSL-Allow-systemwide-secpolicy-overrides-for-TLS.patch

Patch14: 0001-EAP-TTLS-PEAP-peer-Fix-failure-when-using-session-ti.patch

Patch15: 0001-openssl-Disable-padding-after-initializing-the-ciphe.patch

Patch16: 0001-openssl-Remove-deprecated-functions-from-des_encrypt.patch

URL: http://w1.fi/wpa_supplicant/

%if %with gui

BuildRequires: qt-devel >= 4.0

%endif

BuildRequires: openssl-devel

BuildRequires: readline-devel

BuildRequires: dbus-devel

BuildRequires: libnl3-devel

BuildRequires: systemd-units

BuildRequires: docbook-utils

BuildRequires: gcc

Requires(post): systemd-sysv

Requires(post): systemd

Requires(preun): systemd

Requires(postun): systemd

# libeap used to be built from wpa_supplicant with some fairly horrible

# hackery, solely for use by WiMAX. We dropped all WiMAX support around

# F21. This is here so people don't wind up with obsolete libeap packages

# lying around. If it's ever resurrected for any reason, this needs

# dropping.

Obsoletes: libeap < %{epoch}:%{version}-%{release}

Obsoletes: libeap-devel < %{epoch}:%{version}-%{release}

%description

wpa_supplicant is a WPA Supplicant for Linux, BSD and Windows with support

for WPA and WPA2 (IEEE 802.11i / RSN). Supplicant is the IEEE 802.1X/WPA

component that is used in the client stations. It implements key negotiation

with a WPA Authenticator and it controls the roaming and IEEE 802.11

authentication/association of the wlan driver.

%if %with gui

%package gui

Summary: Graphical User Interface for %{name}

%description gui

Graphical User Interface for wpa_supplicant written using QT

%endif

%prep

%autosetup -p1

%build

pushd wpa_supplicant

  cp defconfig .config

  export CFLAGS="${CFLAGS:-%optflags} -fPIE -DPIE"

  export CXXFLAGS="${CXXFLAGS:-%optflags} -fPIE -DPIE"

  export LDFLAGS="${LDFLAGS:-%optflags} -pie -Wl,-z,now"

  # yes, BINDIR=_sbindir

  export BINDIR="%{_sbindir}"

  export LIBDIR="%{_libdir}"

  make %{_smp_mflags} V=1

%if %with gui

  make wpa_gui-qt4 %{_smp_mflags} V=1 QTDIR=%{_libdir}/qt4 \

    QMAKE='%{qmake_qt4}' LRELEASE='%{_qt4_bindir}/lrelease'

%endif

  make eapol_test V=1

  make -C doc/docbook man V=1

%if !%with gui

  rm doc/docbook/wpa_gui.8

%endif

popd

%install

# config

install -D -m 0600 %{SOURCE1} %{buildroot}/%{_sysconfdir}/wpa_supplicant/wpa_supplicant.conf

# init scripts

install -D -m 0644 %{SOURCE2} %{buildroot}/%{_unitdir}/wpa_supplicant.service

install -D -m 0644 %{SOURCE3} %{buildroot}/%{_sysconfdir}/sysconfig/wpa_supplicant

install -D -m 0644 %{SOURCE4} %{buildroot}/%{_sysconfdir}/logrotate.d/wpa_supplicant

# binary

install -d %{buildroot}/%{_sbindir}

install -m 0755 wpa_supplicant/wpa_passphrase %{buildroot}/%{_sbindir}

install -m 0755 wpa_supplicant/wpa_cli %{buildroot}/%{_sbindir}

install -m 0755 wpa_supplicant/wpa_supplicant %{buildroot}/%{_sbindir}

install -m 0755 wpa_supplicant/eapol_test %{buildroot}/%{_sbindir}

install -D -m 0644 wpa_supplicant/dbus/dbus-wpa_supplicant.conf \

  %{buildroot}/%{_sysconfdir}/dbus-1/system.d/wpa_supplicant.conf

install -D -m 0644 wpa_supplicant/dbus/fi.w1.wpa_supplicant1.service \

  %{buildroot}/%{_datadir}/dbus-1/system-services/fi.w1.wpa_supplicant1.service

%if %with gui

# gui

install -d %{buildroot}/%{_bindir}

install -m 0755 wpa_supplicant/wpa_gui-qt4/wpa_gui %{buildroot}/%{_bindir}

%endif

# man pages

install -d %{buildroot}%{_mandir}/man{5,8}

install -m 0644 wpa_supplicant/doc/docbook/*.8 %{buildroot}%{_mandir}/man8

install -m 0644 wpa_supplicant/doc/docbook/*.5 %{buildroot}%{_mandir}/man5

# some cleanup in docs and examples

rm -f  wpa_supplicant/doc/.cvsignore

rm -rf wpa_supplicant/doc/docbook

chmod -R 0644 wpa_supplicant/examples/*.py

%post

%systemd_post wpa_supplicant.service

%preun

%systemd_preun wpa_supplicant.service

%triggerun -- wpa_supplicant < 0.7.3-10

# Save the current service runlevel info

# User must manually run systemd-sysv-convert --apply wpa_supplicant

# to migrate them to systemd targets

/usr/bin/systemd-sysv-convert --save wpa_supplicant >/dev/null 2>&1 ||:

# Run these because the SysV package being removed won't do them

/sbin/chkconfig --del wpa_supplicant >/dev/null 2>&1 || :

/bin/systemctl try-restart wpa_supplicant.service >/dev/null 2>&1 || :

%files

%config(noreplace) %{_sysconfdir}/wpa_supplicant/wpa_supplicant.conf

%config(noreplace) %{_sysconfdir}/sysconfig/wpa_supplicant

%dir %{_sysconfdir}/logrotate.d

%config(noreplace) %{_sysconfdir}/logrotate.d/wpa_supplicant

%{_unitdir}/wpa_supplicant.service

%{_sysconfdir}/dbus-1/system.d/wpa_supplicant.conf

%{_datadir}/dbus-1/system-services/fi.w1.wpa_supplicant1.service

%{_sbindir}/wpa_passphrase

%{_sbindir}/wpa_supplicant

%{_sbindir}/wpa_cli

%{_sbindir}/eapol_test

%dir %{_sysconfdir}/wpa_supplicant

%{_mandir}/man8/wpa_supplicant.8.gz

%{_mandir}/man8/wpa_priv.8.gz

%{_mandir}/man8/wpa_passphrase.8.gz

%{_mandir}/man8/wpa_cli.8.gz

%{_mandir}/man8/wpa_background.8.gz

%{_mandir}/man8/eapol_test.8.gz

%{_mandir}/man5/*

%doc README

%doc wpa_supplicant/ChangeLog

%doc wpa_supplicant/eap_testing.txt

%doc wpa_supplicant/todo.txt

%doc wpa_supplicant/wpa_supplicant.conf

%doc wpa_supplicant/examples

%license COPYING

%if %with gui

%files gui

%{_bindir}/wpa_gui

%{_mandir}/man8/wpa_gui.8.gz

%endif

%changelog

* Thu Aug 19 2021 Davide Caratti <dcaratti@redhat.com> - 1:2.9-17

- Fix NetworkManager-CI failures with OpenSSL 3.0

* Tue Aug 10 2021 Mohan Boddu <mboddu@redhat.com> - 1:2.9-16

- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags

  Related: rhbz#1991688

* Wed Jun 16 2021 Mohan Boddu <mboddu@redhat.com> - 1:2.9-15

- Rebuilt for RHEL 9 BETA for openssl 3.0

  Related: rhbz#1971065

* Thu Jun  3 2021 Davide Caratti <dcaratti@redhat.com> - 1:2.9-14

- Disable 'badfuncs' test in rpminspect. Related: rhbz#1967579

* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 1:2.9-13

- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

* Mon Mar  1 2021 Davide Caratti <dcaratti@redhat.com> - 1:2.9-12

- Fix a corner case in peer addition based on PD Request (CVE-2021-27803)

* Thu Feb  4 2021 Davide Caratti <dcaratti@redhat.com> - 1:2.9-11

- Fix copying of secondary device types for P2P group client (CVE-2021-0326)

* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.9-10

- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

* Fri Jan 22 2021 Davide Caratti <dcaratti@redhat.com> - 1:2.9-9

- Expose OWE capability on D-Bus

- Allow changing interface bridge using D-Bus

* Thu Dec 17 2020 Antonio Cardace <acardace@redhat.com> - 1:2.9-8

- Enable WPA-EAP-SUITE-B-192 cipher suite

* Thu Dec 17 2020 Davide Caratti <dcaratti@redhat.com> - 1:2.9-7

- fix build on ELN target (rh #1902609)

* Wed Jul 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.9-6

- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

* Mon Jun 15 2020 Benjamin Berg <bberg@redhat.com> - 1:2.9-5

- fix some issues with P2P operation

* Thu Apr 23 2020 Davide Caratti <dcaratti@redhat.com> - 1:2.9-4

- Enable Tunneled Direct Link Setup (TDLS)

* Fri Jan 31 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.9-3

- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild

* Wed Oct 30 2019 Davide Caratti <dcaratti@redhat.com> - 1:2.9-2

- fix AP mode PMF disconnection protection bypass (CVE-2019-16275, rh #1767026)

* Fri Aug 16 2019 Lubomir Rintel <lkundrak@v3.sk> - 1:2.9-1

- Update to version 2.9

* Sat Jul 27 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.8-3

- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild

* Fri May 10 2019 Davide Caratti <dcaratti@redhat.com> - 1:2.8-2

- fix changelog for version 2.8-1

* Thu May 02 2019 Davide Caratti <dcaratti@redhat.com> - 1:2.8-1

- Update to 2.8 upstream release, to include latest fix for NULL

  pointer dereference when EAP-PWD peer receives unexpected EAP

  fragments (CVE-2019-11555, rh #1701759)

* Fri Apr 12 2019 Davide Caratti <dcaratti@redhat.com> - 1:2.7-5

- fix SAE and EAP_PWD vulnerabilities:

  CVE-2019-9494 (cache attack against SAE)

  CVE-2019-9495 (cache attack against EAP-pwd)

  CVE-2019-9496 (SAE confirm missing state validation in hostapd/AP)

  CVE-2019-9497 (EAP-pwd server not checking for reflection attack)

  CVE-2019-9498 (EAP-pwd server missing commit validation for scalar/element)

  CVE-2019-9499 (EAP-pwd peer missing commit validation for scalar/element)

* Sun Feb 03 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.7-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild

* Mon Jan 21 2019 Lubomir Rintel <lkundrak@v3.sk> - 1:2.7-3

- Enable OWE and DPP

- Expose SAE support on D-Bus

* Mon Jan 21 2019 Lubomir Rintel <lkundrak@v3.sk> - 1:2.7-2

- Enable MESH & SAE

* Tue Dec 18 2018 Lubomir Rintel <lkundrak@v3.sk> - 1:2.7-1

- Update to 2.7 upstream release

* Wed Aug 15 2018 Lubomir Rintel <lkundrak@v3.sk> - 1:2.6-20

- Expose availability of SHA384 and FT on D-Bus

* Wed Aug 15 2018 Lubomir Rintel <lkundrak@v3.sk> - 1:2.6-19

- Drop the broken Pmf D-Bus property patch

* Wed Aug  8 2018 Davide Caratti <dcaratti@redhat.com> - 1:2.6-18

- Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526)

* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.6-17

- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

* Fri Jun 22 2018 Davide Caratti <dcaratti@redhat.com> - 1:2.6-16

- Fix endoding of NL80211_ATTR_SMPS_MODE (rh#1570903)

* Fri May 11 2018 Davide Caratti <dcaratti@redhat.com> - 1:2.6-15

- Make PMF configurable using D-Bus (rh#1567474)

* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.6-14

- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild

* Tue Jan 16 2018 Davide Caratti <dcaratti@redhat.com> - 1:2.6-13

- Don't restart wpa_supplicant.service on package upgrade (rh#1535233)

* Wed Nov  1 2017 Jiří Klimeš <blueowl@centrum.cz> - 1:2.6-12

- Fix crash when using MACsec without loaded macsec.ko (rh #1497640)

- Enable Fast BSS Transition for station mode (rh #1372928)

* Mon Oct 16 2017 Lubomir Rintel <lkundrak@v3.sk> - 1:2.6-11

- hostapd: Avoid key reinstallation in FT handshake (CVE-2017-13082)

- Fix PTK rekeying to generate a new ANonce

- Prevent reinstallation of an already in-use group key and extend

  protection of GTK/IGTK reinstallation of WNM-Sleep Mode cases

  (CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081,

  CVE-2017-13087, CVE-2017-13088)

- Prevent installation of an all-zero TK

- TDLS: Reject TPK-TK reconfiguration

- WNM: Ignore WNM-Sleep Mode Response without pending request

- FT: Do not allow multiple Reassociation Response frames

* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.6-10

- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild

* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.6-9

- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild

* Mon Jul 17 2017 Beniamino Galvani <bgalvani@redhat.com> - 1:2.6-8

- OpenSSL: use system ciphers by default (rh #1462262)

- OpenSSL: fix private key password callback (rh #1465138)

* Wed May 17 2017 Beniamino Galvani <bgalvani@redhat.com> - 1:2.6-7

- nl80211: Fix race condition in detecting MAC change (rh #1451834)

* Tue Apr 11 2017 Davide Caratti <dcaratti@redhat.com> - 1:2.6-6

- Fix use-after-free when macsec secure channels are deleted

- Fix segmentation fault in case macsec module is not loaded (rh#1428937)

* Mon Mar 13 2017 Thomas Haller <thaller@redhat.com> - 1:2.6-5

- Enable IEEE 802.11w (management frame protection, PMF) (rh#909499)

* Thu Mar  2 2017 Davide Caratti <dcaratti@redhat.com> - 1:2.6-4

- Backport support for IEEE 802.1AE (macsec)

* Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.6-3

- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild

* Fri Jan 27 2017 Jiří Klimeš <blueowl@centrum.cz> - 1:2.6-2

- Enable Wi-Fi Display support for Miracast (rh #1395682)

* Tue Nov 22 2016 Lubomir Rintel <lkundrak@v3.sk> - 1:2.6-1

- Update to version 2.6

* Fri Feb 05 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.5-5

- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild

* Mon Nov 16 2015 Lubomir Rintel <lkundrak@v3.sk> - 1:2.5-4

- Really synchronize the service file with upstream

* Tue Nov 03 2015 Lukáš Nykrýn <lnykryn@redhat.com> - 1:2.5-3

- Scriptlets replaced with new systemd macros (rh #850369)

* Sat Oct 31 2015 Lubomir Rintel <lkundrak@v3.sk> - 1:2.5-2

- Enable syslog by default

- Drop writing a pid and log file

* Tue Oct 27 2015 Lubomir Rintel <lkundrak@v3.sk> - 1:2.5-1

- Update to version 2.5

* Fri Oct 23 2015 Lubomir Rintel <lkundrak@v3.sk> - 1:2.4-6

- Fix the D-Bus policy

* Sat Oct  3 2015 Ville Skyttä <ville.skytta@iki.fi> - 1:2.4-5

- Don't order service after syslog.target (rh #1055197)

- Mark COPYING as %%license

* Wed Jul 15 2015 Jiří Klimeš <jklimes@redhat.com> - 1:2.4-4

- Fix for NDEF record payload length checking (rh #1241907)

* Tue Jun 16 2015 Jiří Klimeš <jklimes@redhat.com> - 1:2.4-3

- Fix a crash if P2P management interface is used (rh #1231973)

* Thu Apr 23 2015 Dan Williams <dcbw@redhat.com> - 1:2.4-2

- Remove obsolete wpa_supplicant-openssl-more-algs.patch

* Thu Apr 23 2015 Adam Williamson <awilliam@redhat.com> - 1:2.4-1

- new release 2.4

- add some info on a couple of patches

- drop some patches merged or superseded upstream

- rediff other patches

- drop libeap hackery (we dropped the kernel drivers anyhow)

- backport fix for CVE-2015-1863

* Sat Nov 01 2014 Orion Poplawski <orion@cora.nwra.com> - 1:2.3-2

- Do not install wpa_supplicant.service as executable (bug #803980)

* Thu Oct 30 2014 Lubomir Rintel <lkundrak@v3.sk> - 1:2.3-1

- Update to 2.3

* Wed Oct 22 2014 Dan Williams <dcbw@redhat.com> - 1:2.0-12

- Use os_exec() for action script execution (CVE-2014-3686)

* Thu Aug 21 2014 Kevin Fenzi <kevin@scrye.com> - 1:2.0-11

- Rebuild for rpm bug 1131960

* Mon Aug 18 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:2.0-10

- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild

* Sun Jun 08 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:2.0-9

- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild

* Mon Nov 18 2013 Dan Williams <dcbw@redhat.com> - 1:2.0-8

- Don't disconnect when PMKSA cache gets too large (rh #1016707)

* Sun Aug 04 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:2.0-7

- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild

* Wed Jul 10 2013 Dan Williams <dcbw@redhat.com> - 1:2.0-6

- Enable full RELRO/PIE/PIC for wpa_supplicant and libeap

- Fix changelog dates

* Wed Jul 10 2013 Dan Williams <dcbw@redhat.com> - 1:2.0-5

- Build and package eapol_test (rh #638218)

* Wed Jul 10 2013 Dan Williams <dcbw@redhat.com> - 1:2.0-4

- Disable WiMAX libeap hack for RHEL

* Wed May 15 2013 Dan Williams <dcbw@redhat.com> - 1:2.0-3

- Enable HT (802.11n) for AP mode

* Tue May  7 2013 Dan Williams <dcbw@redhat.com> - 1:2.0-2

- Use hardened build macros and ensure they apply to libeap too

* Mon May  6 2013 Dan Williams <dcbw@redhat.com> - 1:2.0-1

- Update to 2.0

- Be less aggressive when roaming due to signal strength changes (rh #837402)

* Mon Apr  1 2013 Dan Williams <dcbw@redhat.com> - 1:1.1-1

- Update to 1.1

- Be less aggressive when roaming due to signal strength changes

* Fri Feb 15 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.0-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild

* Sun Jan 20 2013 Dan Horák <dan@danny.cz> - 1:1.0-3

- rebuilt again for fixed soname in libnl3

* Sun Jan 20 2013 Kalev Lember <kalevlember@gmail.com> - 1:1.0-2

- Rebuilt for libnl3

* Wed Aug 29 2012 Dan Williams <dcbw@redhat.com> - 1:1.0-1

- Enable lightweight AP mode support

- Enable P2P (WiFi Direct) support

- Enable RSN IBSS/AdHoc support

* Sun Jul 22 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.0-0.5

- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild

* Tue May  1 2012 Dan Williams <dcbw@redhat.com> - 1:1.0-0.4

- Update to wpa_supplicant 1.0-rc3

- Fix systemd target dependencies (rh #815091)

* Fri Mar  2 2012 Dan Williams <dcbw@redhat.com> - 1:1.0-0.3

- Update to latest 1.0 git snapshot

- Rebuild against libnl3

* Thu Feb  2 2012 Dan Williams <dcbw@redhat.com> - 1:1.0-0.2

- Fix driver fallback for non nl80211-based drivers (rh #783712)

* Tue Jan 10 2012 Dan Williams <dcbw@redhat.com> - 1:1.0-0.1

- Update to 1.0-rc1 + git

* Fri Sep  9 2011 Tom Callaway <spot@fedoraproject.org> - 1:0.7.3-11

- add missing systemd scriptlets

* Thu Sep  8 2011 Tom Callaway <spot@fedoraproject.org> - 1:0.7.3-10

- convert to systemd

* Wed Jul 27 2011 Dan Williams <dcbw@redhat.com> - 1:0.7.3-9

- Fix various crashes with D-Bus interface (rh #678625) (rh #725517)

* Tue May  3 2011 Dan Williams <dcbw@redhat.com> - 1:0.7.3-8

- Don't crash when trying to access invalid properties via D-Bus (rh #678625)

* Mon May  2 2011 Dan Williams <dcbw@redhat.com> - 1:0.7.3-7

- Make examples read-only to avoid erroneous python dependency (rh #687952)

* Tue Apr 19 2011 Bill Nottingham <notting@redhat.com> - 1:0.7.3-6

- Fix EAP patch to only apply when building libeap

* Fri Mar 25 2011 Bill Nottingham <notting@redhat.com> - 1:0.7.3-5

- Add libeap/libeap-devel subpackge for WiMAX usage

* Mon Feb 07 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:0.7.3-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild

* Tue Jan 11 2011 Dan Williams <dcbw@redhat.com> - 1:0.7.3-3

- Enable EAP-TNC (rh #659038)

* Wed Dec 15 2010 Dan Williams <dcbw@redhat.com> - 1:0.7.3-2

- Enable the bgscan_simple plugin

* Wed Dec  8 2010 Dan Williams <dcbw@redhat.com> - 1:0.7.3-1

- Update to 0.7.3

- Drop upstreamed and backported patches

- Drop support for Qt3

* Thu Oct  7 2010 Peter Lemenkov <lemenkov@gmail.com> - 1:0.6.8-11

- Added comments to some patches (see rhbz #226544#c17)

- Shortened %%install section a bit

* Thu May 13 2010 Dan Williams <dcbw@redhat.com> - 1:0.6.8-10

- Remove prereq on chkconfig

- Build GUI with qt4 for rawhide (rh #537105)

* Thu May  6 2010 Dan Williams <dcbw@redhat.com> - 1:0.6.8-9

- Fix crash when interfaces are removed (like suspend/resume) (rh #589507)

* Wed Jan  6 2010 Dan Williams <dcbw@redhat.com> - 1:0.6.8-8

- Fix handling of newer PKCS#12 files (rh #541924)

* Sun Nov 29 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.8-7

- Fix supplicant initscript return value (rh #521807)

- Fix race when connecting to WPA-Enterprise/802.1x-enabled access points (rh #508509)

- Don't double-scan when attempting to associate

* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 1:0.6.8-6

- rebuilt with new openssl

* Mon Jul 27 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:0.6.8-5

- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild

* Wed May 13 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.8-4

- Let D-Bus clients know when the supplicant is scanning

* Tue May 12 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.8-3

- Ensure the supplicant starts and ends with clean driver state

- Handle driver disconnect spammage by forcibly clearing SSID

- Don't switch access points unless the current association is dire (rh #493745)

* Tue May 12 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.8-2

- Avoid creating bogus Ad-Hoc networks when forcing the driver to disconnect (rh #497771)

* Mon Mar  9 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.8-1

- Update to latest upstream release

* Wed Feb 25 2009 Colin Walters <walters@verbum.org> - 1:0.6.7-4

- Add patch from upstream to suppress unrequested replies, this

  quiets a dbus warning.

* Fri Feb  6 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.7-3

- Fix scan result retrieval in very dense wifi environments

* Fri Feb  6 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.7-2

- Ensure that drivers don't retry association when they aren't supposed to

* Fri Jan 30 2009 Dan Williams <dcbw@redhat.com> - 1:0.6.7-1

- Fix PEAP connections to Windows Server 2008 authenticators (rh #465022)

- Stop supplicant on uninstall (rh #447843)

- Suppress scan results message in logs (rh #466601)

* Sun Jan 18 2009 Tomas Mraz <tmraz@redhat.com> - 1:0.6.4-3

- rebuild with new openssl

* Wed Oct 15 2008 Dan Williams <dcbw@redhat.com> - 1:0.6.4-2

- Handle encryption keys correctly when switching 802.11 modes (rh #459399)

- Better scanning behavior on resume from suspend/hibernate

- Better interaction with newer kernels and drivers

* Wed Aug 27 2008 Dan Williams <dcbw@redhat.com> - 1:0.6.4-1

- Update to 0.6.4

- Remove 'hostap', 'madwifi', and 'prism54' drivers; use standard 'wext' instead

- Drop upstreamed patches

* Tue Jun 10 2008 Dan Williams <dcbw@redhat.com> - 1:0.6.3-6

- Fix 802.11a frequency bug

- Always schedule specific SSID scans to help find hidden APs

- Properly switch between modes on mac80211 drivers

- Give adhoc connections more time to assocate

* Mon Mar 10 2008 Christopher Aillon <caillon@redhat.com> - 1:0.6.3-5

- BuildRequires qt3-devel

* Sat Mar  8 2008 Dan Williams <dcbw@redhat.com> - 1:0.6.3-4

- Fix log file path in service config file

* Thu Mar  6 2008 Dan Williams <dcbw@redhat.com> - 1:0.6.3-3

- Don't start the supplicant by default when installed (rh #436380)

* Tue Mar  4 2008 Dan Williams <dcbw@redhat.com> - 1:0.6.3-2

- Fix a potential use-after-free in the D-Bus byte array demarshalling code

* Mon Mar  3 2008 Dan Williams <dcbw@redhat.com> - 1:0.6.3-1

- Update to latest development release; remove upstreamed patches

* Fri Feb 22 2008 Dan Williams <dcbw@redhat.com> 1:0.5.7-23

- Fix gcc 4.3 rebuild issues

* Mon Feb 18 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 1:0.5.7-22

- Autorebuild for GCC 4.3

* Tue Dec 25 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-21

- Backport 'frequency' option for Ad-Hoc network configs

* Mon Dec 24 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-20

- Fix LSB initscript header to ensure 'messagebus' is started first (rh #244029)

* Thu Dec  6 2007 Dan Williams <dcbw@redhat.com> - 1:0.5.7-19

- Fix two leaks when signalling state and scan results (rh #408141)

- Add logrotate config file (rh #404181)

- Add new LSB initscript header to initscript with correct deps (rh #244029)

- Move other runtime arguments to /etc/sysconfig/wpa_supplicant

- Start after messagebus service (rh #385191)

- Fix initscript 'condrestart' command (rh #217281)

* Tue Dec  4 2007 Matthias Clasen <mclasen@redhat.com> - 1:0.5.7-18

- Rebuild against new openssl

* Tue Dec  4 2007 Ville Skyttä <ville.skytta at iki.fi> - 1:0.5.7-17

- Group: Application/System -> Applications/System in -gui.

* Tue Nov 13 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-16

- Add IW_ENCODE_TEMP patch for airo driver and Dynamic WEP

- Fix error in wpa_supplicant-0.5.7-ignore-dup-ca-cert-addition.patch that

    caused the last error to not be printed

- Fix wpa_supplicant-0.5.7-ignore-dup-ca-cert-addition.patch to ignore

    duplicate cert additions for all certs and keys

- Change license to BSD due to linkage against OpenSSL since there is no

    OpenSSL exception in the GPLv2 license text that upstream ships

* Sun Oct 28 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-15

- Fix Dynamic WEP associations with mac80211-based drivers

* Sun Oct 28 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-14

- Don't error an association on duplicate CA cert additions

* Wed Oct 24 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-13

- Correctly set the length of blobs added via the D-Bus interface

* Wed Oct 24 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-12

- Fix conversion of byte arrays to strings by ensuring the buffer is NULL

    terminated after conversion

* Sat Oct 20 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-11

- Add BLOB support to the D-Bus interface

- Fix D-Bus interface permissions so that only root can use the wpa_supplicant

    D-Bus interface

* Tue Oct  9 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-10

- Don't segfault with dbus control interface enabled and invalid network

    interface (rh #310531)

* Tue Sep 25 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-9

- Always allow explicit wireless scans triggered from a control interface

* Thu Sep 20 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-8

- Change system bus activation file name to work around D-Bus bug that fails

    to launch services unless their .service file is named the same as the

    service itself

* Fri Aug 24 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-7

- Make SIGUSR1 change debug level on-the-fly; useful in combination with

    the -f switch to log output to /var/log/wpa_supplicant.log

- Stop stripping binaries on install so we get debuginfo packages

- Remove service start requirement for interfaces & devices from sysconfig file,

    since wpa_supplicant's D-Bus interface is now turned on

* Fri Aug 17 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-6

- Fix compilation with RPM_OPT_FLAGS (rh #249951)

- Make debug output to logfile a runtime option

* Fri Aug 17 2007 Christopher Aillon <caillon@redhat.com> - 0.5.7-5

- Update the license tag

* Tue Jun 19 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-4

- Fix initscripts to use -Dwext by default, be more verbose on startup

    (rh #244511)

* Mon Jun  4 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-3

- Fix buffer overflow by removing syslog patch (#rh242455)

* Mon Apr  9 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-2

- Add patch to send output to syslog

* Thu Mar 15 2007 Dan Williams <dcbw@redhat.com> - 0.5.7-1

- Update to 0.5.7 stable release

* Fri Oct 27 2006 Dan Williams <dcbw@redhat.com> - 0.4.9-1

- Update to 0.4.9 for WE-21 fixes, remove upstreamed patches

- Don't package doc/ because they aren't actually wpa_supplicant user documentation,

    and becuase it pulls in perl

* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 0.4.8-10.1

- rebuild

* Thu Apr 27 2006 Dan Williams <dcbw@redhat.com> - 0.4.8-10