CVE-2020-12638 workaround for WPA downgrade attack#7486
Merged
earlephilhower merged 5 commits intoesp8266:masterfrom Jul 26, 2020
Merged
CVE-2020-12638 workaround for WPA downgrade attack#7486earlephilhower merged 5 commits intoesp8266:masterfrom
earlephilhower merged 5 commits intoesp8266:masterfrom
Conversation
When connected to an encrypted (WEP/WPA) router, a rogue packet can cause the ESP8266 WiFi stack to drop to an unecrypted rogue network of the same SSID. Handle this by dropping the WiFi connection immediately and reconnecting to the stored WPA/WEP network requested by the application, whenever the AUTHMODE changes to OPEN from a secured mode. https://lbsfilm.at/blog/wpa2-authenticationmode-downgrade-in-espressif-microprocessors for more details.
d-a-v
approved these changes
Jul 25, 2020
The downgrade event needs to be looked for in the main WiFi event processing function instead of the callback function (which will only trigger if the user actually makes a callback themselves).
|
I could confirm that this successfully mitigates an attack as a workaround, hopefully the arduino core can be upgraded to the latest NONOS master and this workaround can be removed in the future Thanks for the fast response! |
devyte
approved these changes
Jul 26, 2020
Collaborator
Author
|
Thanks @s00500 ! |
6 tasks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
When connected to an encrypted (WEP/WPA) router, a rogue packet can
cause the ESP8266 WiFi stack to drop to an unecrypted rogue network of
the same SSID.
Handle this by dropping the WiFi connection immediately and reconnecting
to the stored WPA/WEP network requested by the application, whenever the
AUTHMODE changes to OPEN from a secured mode.
https://lbsfilm.at/blog/wpa2-authenticationmode-downgrade-in-espressif-microprocessors
for more details.