android: randomize pre-association MAC addresses

Message ID	1461168993-13693-1-git-send-email-danielmicay@gmail.com
State	Changes Requested
Headers	show Return-Path: <hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org> From: Daniel Micay <danielmicay@gmail.com> To: hostap@lists.infradead.org Subject: [PATCH] android: randomize pre-association MAC addresses Date: Wed, 20 Apr 2016 12:16:33 -0400 Message-Id: <1461168993-13693-1-git-send-email-danielmicay@gmail.com> summary: Content analysis details: (-2.7 points) pts rule name description ---- ---------------------- -------------------------------------------------- -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at http://www.dnswl.org/, low trust [2607:f8b0:4001:c06:0:0:0:234 listed in] [list.dnswl.org] 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (danielmicay[at]gmail.com) -0.0 SPF_PASS SPF: sender matches SPF record -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000] 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain Precedence: list Cc: Daniel Micay <danielmicay@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "Hostap" <hostap-bounces@lists.infradead.org> Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org

Message ID

1461168993-13693-1-git-send-email-danielmicay@gmail.com

State

Changes Requested

Headers

From: Daniel Micay <danielmicay@gmail.com>
To: hostap@lists.infradead.org
Subject: [PATCH] android: randomize pre-association MAC addresses
Date: Wed, 20 Apr 2016 12:16:33 -0400
Message-Id: <1461168993-13693-1-git-send-email-danielmicay@gmail.com>
Precedence: list
Cc: Daniel Micay <danielmicay@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "Hostap" <hostap-bounces@lists.infradead.org>
Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org

Commit Message

Daniel Micay April 20, 2016, 4:16 p.m. UTC

This enables pre-associating (scanning) MAC address randomization for
Android. It uses the default 60 second expiry time.

Change-Id: Id23947f46a0014e2b42913cd0a2cc3f908c3bc62
---
 wpa_supplicant/wpa_supplicant_template.conf | 1 +
 1 file changed, 1 insertion(+)

Comments

Jouni Malinen April 28, 2016, 5:58 p.m. UTC | #1

On Wed, Apr 20, 2016 at 12:16:33PM -0400, Daniel Micay wrote:
> This enables pre-associating (scanning) MAC address randomization for
> Android. It uses the default 60 second expiry time.
> 
> Change-Id: Id23947f46a0014e2b42913cd0a2cc3f908c3bc62
> ---

This would need to have a Signed-off-by: line in the commit message as
described in the top level CONTRIBUTIONS file.

> diff --git a/wpa_supplicant/wpa_supplicant_template.conf b/wpa_supplicant/wpa_supplicant_template.conf

> +preassoc_mac_addr=1

How has this been tested? I'm mainly interested in which Android
versions and Wi-Fi drivers were used.

I don't think I'd recommend using this preassoc_mac_addr=1 design since
it changes the MAC address of the netdev. Instead, I'd use the pre-scan
request mechanism to request driver to use random MAC addresses. This
can be configured with the MAC_RAND_SCAN control interface command.

diff --git a/wpa_supplicant/wpa_supplicant_template.conf b/wpa_supplicant/wpa_supplicant_template.conf
index f3f2a64..494d10a 100644
--- a/wpa_supplicant/wpa_supplicant_template.conf
+++ b/wpa_supplicant/wpa_supplicant_template.conf
@@ -4,3 +4,4 @@  eapol_version=1
 ap_scan=1
 fast_reauth=1
 pmf=1
+preassoc_mac_addr=1

android: randomize pre-association MAC addresses

Commit Message

Comments

Patch