[PATCH 0/2] Fix OWE mode with hostapd-wolfssl

David Bauer mail at david-bauer.net
Tue May 18 13:03:14 PDT 2021

OWE operation of WolfSSL hostapd and wpad daemons has been broken since
WolfSSL was updated to 4.5.0.

This is due to the fact WolfSSL now requires a RNG for EC keys, however
there is no stable interface available for hardened as well as
non-hardened builds.

Patch hostapd to add the RNG to the EC key and WolfSSL to export the
interface regardless of the build settings.

David Bauer (2):
  wolfssl: always export wc_ecc_set_rng
  hostapd: wolfssl: add RNG to EC key

 package/libs/wolfssl/Makefile                 |  2 +-
 .../libs/wolfssl/patches/200-ecc-rng.patch    | 50 +++++++++++++++++++
 package/network/services/hostapd/Makefile     |  2 +-
 .../0001-wolfssl-init-RNG-with-ECC-key.patch  | 48 ++++++++++++++++++
 4 files changed, 100 insertions(+), 2 deletions(-)
 create mode 100644 package/libs/wolfssl/patches/200-ecc-rng.patch
 create mode 100644 package/network/services/hostapd/patches/0001-wolfssl-init-RNG-with-ECC-key.patch


More information about the openwrt-devel mailing list