Gitiles
Code Review Sign In
review.blissroms.org / platform_packages_modules_Wifi / 3877bd77f5eeee05bcf1292cdfaff1892def427b
commit3877bd77f5eeee05bcf1292cdfaff1892def427b[log] [tgz]
authorHai Shalom <haishalom@google.com>Thu Feb 02 11:54:26 2023 -0800
committerHai Shalom <haishalom@google.com>Thu Feb 02 14:18:35 2023 -0800
tree8ea7e9425e5283861d7b54aee71ca2e9754c0389
parentd05a8446984f0e8eb4d9b648c76bed068b19fc92 [diff]
[TOFU] Handle anonymous identity correctly

If anonymous identity is not provided by the user, TOFU connection
would fail because wpa_supplicant doesn't have any identity to
start the EAP authentication with, since it was deleted as part of
the new TOFU flow. If anonymous identity is not provided by the
user, use "anonymous" rather than the real user identity, to
prevent untrusted servers from tracking real user identities.
Note: As per RFC3748, servers should include a method-specific
mechanism for obtaining the real identity, so that they do not
have to rely on this anonymous identity, in other words, it
should be ignored.

Bug: 251910611
Bug: 267633332
Test: Integration test with WPA-Enterprise setup
Test: atest InsecureEapNetworkHandlerTest
Change-Id: I57d7cc09261186fd470acef224a74da10d129da5
2 files changed
tree: 8ea7e9425e5283861d7b54aee71ca2e9754c0389
  1. apex/
  2. framework/
  3. OsuLogin/
  4. service/
  5. WifiDialog/
  6. metrics_pdd_hook.py
  7. overlayable_hook.py
  8. OWNERS
  9. PREUPLOAD.cfg
  10. TEST_MAPPING
  11. WIFI_OWNERS