-->

ESP8266 Community Forum

Open Community Forum for ESP8266, Come share Arduino and IoT (Internet of Things)
https://www.esp8266.com/

Patch for the WPA2 vulnerabilty available

https://www.esp8266.com/viewtopic.php?f=6&t=16218

Page 1 of 2

Patch for the WPA2 vulnerabilty available

PostPosted: Tue Oct 17, 2017 10:46 am
by martin_g
Espressif has already released patches for the WPA2 KRACK vulnerablity for the supported ESP8266 and ESP32 development environments.

Not bad - considered that other major vendors talk about "in the next weeks"!

Re: Patch for the WPA2 vulnerabilty available

PostPosted: Tue Oct 17, 2017 10:53 am
by btidey
Yes. That is a good response. The links are for the RTOS and NON-OS environments.

Does anybody know what is needed to get these applicable in an Arduino ESP8266 environment?

Is it just a matter of replacing the lib files under 2.3.0/tools/lib ?

Re: Patch for the WPA2 vulnerabilty available

PostPosted: Tue Oct 17, 2017 11:04 am
by martin_g
The patch provides new versions of the "libmain.a", the "libpp.a", and the "libwpa.a". Guess it should be enough to replace them in the "[yourArduinoDir]/hardware/esp8266com/esp8266/tools/sdk/lib" directory. Did not test that as I am using the esp-open-sdk.

Re: Patch for the WPA2 vulnerabilty available

PostPosted: Tue Oct 17, 2017 11:33 am
by Pablo2048
Already patched in Git - see https://github.com/esp8266/Arduino/issues/3725 :-)
All times are UTC - 5 hours
Page 1 of 2
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/