Re: KRACK Attack against WPA2

17.01.4 was put out to solve the issue. 
Read this post if you have not already: … rack/7450.

PC-Engines ALIX 2D13 CC 15.05 RC2 (Router - OpenVPN Server)
HooToo TM02 CC 15.05 (Travel Router - OpenVPN Client)
GLi-AR150 CC15.05/GLi 2.13 (Travel Router - OpenVPN Client)
Kingston MLWG2 CC15.05 (Travel Router - OpenVPN Client, mini-DLNA)

Re: KRACK Attack against WPA2

snocrash wrote:

Can someone answer this please:  Do the current snapshots contain the KRACK patches?  snapshots/trunk/ar71xx/generic/

What I infer from the developers post (embedded below) is that the snapshots are updated - build date 3 November

But I just want this confirmed before I go to the hassle of re-flashing?

This also means that all people have to do is download the latest snapshot image - flash it - and you're done.. all updated. There's very very little difference between the snapshot and 15.05.1, so no one should be worrying about the snapshot being "bleeding edge" and risky, simply because there's been so little development done since 05.1

Look forward to an informed response

wigyori wrote:

We've decided that for CC we'll do a bugfix release (CC.1a or CC.2), which will only include the upgraded dropbear, *ssl, dnsmasq, and hostapd binaries. The kernel will remain the same, as upgrading that will require going through a whole RC cycle, which we're not geared up to.

The builds are running, will be available in the next couple days for the targets supported by CC.


The development snapshots are updated with Krack prevention.

Re: KRACK Attack against WPA2

kukulo wrote:

The development snapshots are updated with Krack prevention.

Thanks for the quick and straightforward answer. I'll download the snapshot and flash it up - see how it goes.

104 (edited by ExpertDeveloper 2017-12-20 13:44:15)

Re: KRACK Attack against WPA2

This is a problem on the client side but not on the AP side. The WPA2 implementation is faster as several changes have been made recently in response to serious weaknesses researchers have identified in the previous system, for details can read further.

Developer @ Top Android App Development Company

Re: KRACK Attack against WPA2


Indeed you'd need to read a little more about the KRACK attack, here are some suggestions to start with:

I'm still waiting for a confirmation from the openwrt core developers on whether the current trunk is patched or if a new patched openwrt version will be released - as mentioned in some posts above. Until then I consider openwrt WPA2 affected/broken. Period.