mirror of
https://github.com/vanhoefm/fragattacks.git
synced 2024-11-25 00:38:24 -05:00
164b8dd8e4
This change adds the function wpa_blacklist_update(), which goes through all blacklist entries and deletes them if their blacklist expired over an hour ago. The purpose of this is to remove stale entries from the blacklist which likely do not reflect the current condition of device's network surroundings. This function is called whenever the blacklist is polled, meaning that the caller always gets an up-to-date reflection of the blacklist. Another solution to clearing the blacklist that was considered was to slowly reduce the counts of blacklist entries over time, and delete them if the counts dropped below 0. We decided to go with the current solution instead because an AP's "problematic" status is really a binary thing: either the AP is no longer problematic, or it's still causing us problems. So if we see any more problems within a reasonable amount of time, it makes sense to just keep the blacklist where it was since the AP is likely still undergoing the same issue. If we go a significant amount of time (semi-arbitrarily chosen as 1 hour) without any issues with an AP, it's reasonable to behave as if the AP is no longer undergoing the same issue. If we see more problems at a later time, we can start the blacklisting process fresh again, treating this as a brand new issue. Signed-off-by: Kevin Lund <kglund@google.com> Signed-off-by: Brian Norris <briannorris@chromium.org>
34 lines
1001 B
C
34 lines
1001 B
C
/*
|
|
* wpa_supplicant - Temporary BSSID blacklist
|
|
* Copyright (c) 2003-2007, Jouni Malinen <j@w1.fi>
|
|
*
|
|
* This software may be distributed under the terms of the BSD license.
|
|
* See README for more details.
|
|
*/
|
|
|
|
#ifndef BLACKLIST_H
|
|
#define BLACKLIST_H
|
|
|
|
struct wpa_blacklist {
|
|
struct wpa_blacklist *next;
|
|
u8 bssid[ETH_ALEN];
|
|
int count;
|
|
/* Time of most recent blacklist event. */
|
|
struct os_reltime blacklist_start;
|
|
/*
|
|
* Number of seconds after blacklist_start that the entry will be
|
|
* considered blacklisted.
|
|
*/
|
|
int timeout_secs;
|
|
};
|
|
|
|
struct wpa_blacklist * wpa_blacklist_get(struct wpa_supplicant *wpa_s,
|
|
const u8 *bssid);
|
|
int wpa_blacklist_add(struct wpa_supplicant *wpa_s, const u8 *bssid);
|
|
int wpa_blacklist_del(struct wpa_supplicant *wpa_s, const u8 *bssid);
|
|
int wpa_blacklist_is_blacklisted(struct wpa_supplicant *wpa_s, const u8 *bssid);
|
|
void wpa_blacklist_clear(struct wpa_supplicant *wpa_s);
|
|
void wpa_blacklist_update(struct wpa_supplicant *wpa_s);
|
|
|
|
#endif /* BLACKLIST_H */
|