SAE: Reject invalid rejected group report in SAE commit explicitly (AP)

Previously, this case was ignored silently in AP mode. While that could
be a reasonable approach for an unexpected condition, it would be fine
to reject this case explicitly as well. This makes it somewhat easier to
test unexpected SAE H2E vs. looping behavior.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
This commit is contained in:
Jouni Malinen 2019-12-07 00:39:46 +02:00 committed by Jouni Malinen
parent c88e01e1b6
commit a889e9a70c

View file

@ -1282,7 +1282,7 @@ static void handle_auth_sae(struct hostapd_data *hapd, struct sta_info *sta,
check_sae_rejected_groups(
hapd, sta->sae->tmp->peer_rejected_groups)) {
resp = WLAN_STATUS_UNSPECIFIED_FAILURE;
goto remove_sta;
goto reply;
}
if (!token && use_sae_anti_clogging(hapd) && !allow_reuse) {