hostap/hostapd/android.config

# Example hostapd build time configuration
#
# This file lists the configuration options that are used when building the
# hostapd binary. All lines starting with # are ignored. Configuration option
# lines must be commented out complete, if they are not to be included, i.e.,
# just setting VARIABLE=n is not disabling that variable.
#
# This file is included in Makefile, so variables like CFLAGS and LIBS can also
# be modified from here. In most cass, these lines should use += in order not
# to override previous values of the variables.

# Driver interface for Host AP driver
#CONFIG_DRIVER_HOSTAP=y

# Driver interface for wired authenticator
#CONFIG_DRIVER_WIRED=y

# Driver interface for drivers using the nl80211 kernel interface
#CONFIG_DRIVER_NL80211=y
# driver_nl80211.c requires a rather new libnl (version 1.1) which may not be
# shipped with your distribution yet. If that is the case, you need to build
# newer libnl version and point the hostapd build to use it.
#LIBNL=/usr/src/libnl
#CFLAGS += -I$(LIBNL)/include
#LIBS += -L$(LIBNL)/lib
CONFIG_LIBNL20=y

# QCA vendor extensions to nl80211
CONFIG_DRIVER_NL80211_QCA=y

# Driver interface for FreeBSD net80211 layer (e.g., Atheros driver)
#CONFIG_DRIVER_BSD=y
#CFLAGS += -I/usr/local/include
#LIBS += -L/usr/local/lib
#LIBS_p += -L/usr/local/lib
#LIBS_c += -L/usr/local/lib

# Driver interface for no driver (e.g., RADIUS server only)
#CONFIG_DRIVER_NONE=y

# WPA2/IEEE 802.11i RSN pre-authentication
#CONFIG_RSN_PREAUTH=y

# Support Operating Channel Validation
#CONFIG_OCV=y

# Integrated EAP server
#CONFIG_EAP=y

# EAP-MD5 for the integrated EAP server
#CONFIG_EAP_MD5=y

# EAP-TLS for the integrated EAP server
#CONFIG_EAP_TLS=y

# EAP-MSCHAPv2 for the integrated EAP server
#CONFIG_EAP_MSCHAPV2=y

# EAP-PEAP for the integrated EAP server
#CONFIG_EAP_PEAP=y

# EAP-GTC for the integrated EAP server
#CONFIG_EAP_GTC=y

# EAP-TTLS for the integrated EAP server
#CONFIG_EAP_TTLS=y

# EAP-SIM for the integrated EAP server
#CONFIG_EAP_SIM=y

# EAP-AKA for the integrated EAP server
#CONFIG_EAP_AKA=y

# EAP-AKA' for the integrated EAP server
# This requires CONFIG_EAP_AKA to be enabled, too.
#CONFIG_EAP_AKA_PRIME=y

# EAP-PAX for the integrated EAP server
#CONFIG_EAP_PAX=y

# EAP-PSK for the integrated EAP server (this is _not_ needed for WPA-PSK)
#CONFIG_EAP_PSK=y

# EAP-SAKE for the integrated EAP server
#CONFIG_EAP_SAKE=y

# EAP-GPSK for the integrated EAP server
#CONFIG_EAP_GPSK=y
# Include support for optional SHA256 cipher suite in EAP-GPSK
#CONFIG_EAP_GPSK_SHA256=y

# EAP-FAST for the integrated EAP server
# Note: Default OpenSSL package does not include support for all the
# functionality needed for EAP-FAST. If EAP-FAST is enabled with OpenSSL,
# the OpenSSL library must be patched (openssl-0.9.9-session-ticket.patch)
# to add the needed functions.
#CONFIG_EAP_FAST=y

# Wi-Fi Protected Setup (WPS)
CONFIG_WPS=y
# Enable UPnP support for external WPS Registrars
#CONFIG_WPS_UPNP=y

# EAP-IKEv2
#CONFIG_EAP_IKEV2=y

# Trusted Network Connect (EAP-TNC)
#CONFIG_EAP_TNC=y

# PKCS#12 (PFX) support (used to read private key and certificate file from
# a file that usually has extension .p12 or .pfx)
CONFIG_PKCS12=y

# RADIUS authentication server. This provides access to the integrated EAP
# server from external hosts using RADIUS.
#CONFIG_RADIUS_SERVER=y

# Build IPv6 support for RADIUS operations
CONFIG_IPV6=y

# IEEE Std 802.11r-2008 (Fast BSS Transition)
#CONFIG_IEEE80211R=y

# Use the hostapd's IEEE 802.11 authentication (ACL), but without
# the IEEE 802.11 Management capability (e.g., FreeBSD/net80211)
#CONFIG_DRIVER_RADIUS_ACL=y

# Remove debugging code that is printing out debug messages to stdout.
# This can be used to reduce the size of the hostapd considerably if debugging
# code is not needed.
#CONFIG_NO_STDOUT_DEBUG=y

# Add support for writing debug log to Android logcat instead of standard output
CONFIG_ANDROID_LOG=y

# Remove support for RADIUS accounting
#CONFIG_NO_ACCOUNTING=y

# Remove support for RADIUS
CONFIG_NO_RADIUS=y

# Remove support for VLANs
#CONFIG_NO_VLAN=y

# Remove support for dumping internal state through control interface commands
# This can be used to reduce binary size at the cost of disabling a debugging
# option.
#CONFIG_NO_DUMP_STATE=y

# Select wrapper for operatins system and C library specific functions
# unix = UNIX/POSIX like systems (default)
# win32 = Windows systems
# none = Empty template
CONFIG_OS=unix

# Enable tracing code for developer debugging
# This tracks use of memory allocations and other registrations and reports
# incorrect use with a backtrace of call (or allocation) location.
#CONFIG_WPA_TRACE=y
# For BSD, comment out these.
#LIBS += -lexecinfo
#LIBS_p += -lexecinfo
#LIBS_c += -lexecinfo

# Use libbfd to get more details for developer debugging
# This enables use of libbfd to get more detailed symbols for the backtraces
# generated by CONFIG_WPA_TRACE=y.
#CONFIG_WPA_TRACE_BFD=y
# For BSD, comment out these.
#LIBS += -lbfd -liberty -lz
#LIBS_p += -lbfd -liberty -lz
#LIBS_c += -lbfd -liberty -lz

# Should we use poll instead of select? Select is used by default.
#CONFIG_ELOOP_POLL=y

# Should we use epoll instead of select? Select is used by default.
#CONFIG_ELOOP_EPOLL=y

# Enable AP
CONFIG_AP=y

# Enable Fast Session Transfer (FST)
#CONFIG_FST=y

# Multiband Operation support
# These extensions facilitate efficient use of multiple frequency bands
# available to the AP and the devices that may associate with it.
#CONFIG_MBO=y

# Include internal line edit mode in hostapd_cli.
CONFIG_WPA_CLI_EDIT=y

# Opportunistic Wireless Encryption (OWE)
# Experimental implementation of draft-harkins-owe-07.txt
#CONFIG_OWE=y

# Wpa_supplicant's random pool is not necessary on Android. Randomness is
# already provided by the entropymixer service which ensures sufficient
# entropy is maintained across reboots. Commit b410eb1913 'Initialize
# /dev/urandom earlier in boot' seeds /dev/urandom with that entropy before
# either wpa_supplicant or hostapd are run.
CONFIG_NO_RANDOM_POOL=y

# Wired equivalent privacy (WEP)
# WEP is an obsolete cryptographic data confidentiality algorithm that is not
# considered secure. It should not be used for anything anymore. The
# functionality needed to use WEP is available in the current hostapd
# release under this optional build parameter. This functionality is subject to
# be completely removed in a future release.
CONFIG_WEP=y
Android: Add build configuration files These are from Android wpa_supplicant_8.git initial 0.8.X commit 8d520ff1dc2da35cdca849e982051b86468016d8 with some additional edits and renaming of .config files to android.config. Signed-off-by: Dmitry Shmidt <dimitrysh@google.com> 2011-11-15 15:02:30 +01:00			`# Example hostapd build time configuration`
			`#`
			`# This file lists the configuration options that are used when building the`
			`# hostapd binary. All lines starting with # are ignored. Configuration option`
			`# lines must be commented out complete, if they are not to be included, i.e.,`
			`# just setting VARIABLE=n is not disabling that variable.`
			`#`
			`# This file is included in Makefile, so variables like CFLAGS and LIBS can also`
			`# be modified from here. In most cass, these lines should use += in order not`
			`# to override previous values of the variables.`

			`# Driver interface for Host AP driver`
			`#CONFIG_DRIVER_HOSTAP=y`

			`# Driver interface for wired authenticator`
			`#CONFIG_DRIVER_WIRED=y`

			`# Driver interface for drivers using the nl80211 kernel interface`
			`#CONFIG_DRIVER_NL80211=y`
			`# driver_nl80211.c requires a rather new libnl (version 1.1) which may not be`
			`# shipped with your distribution yet. If that is the case, you need to build`
			`# newer libnl version and point the hostapd build to use it.`
			`#LIBNL=/usr/src/libnl`
			`#CFLAGS += -I$(LIBNL)/include`
			`#LIBS += -L$(LIBNL)/lib`
			`CONFIG_LIBNL20=y`

nl80211: Add build option for QCA vendor extensions This allows the binary sizes to be reduced if no support for nl80211 vendor extensions are needed. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> 2015-09-29 16:11:21 +02:00			`# QCA vendor extensions to nl80211`
			`CONFIG_DRIVER_NL80211_QCA=y`

Android: Add build configuration files These are from Android wpa_supplicant_8.git initial 0.8.X commit 8d520ff1dc2da35cdca849e982051b86468016d8 with some additional edits and renaming of .config files to android.config. Signed-off-by: Dmitry Shmidt <dimitrysh@google.com> 2011-11-15 15:02:30 +01:00			`# Driver interface for FreeBSD net80211 layer (e.g., Atheros driver)`
			`#CONFIG_DRIVER_BSD=y`
			`#CFLAGS += -I/usr/local/include`
			`#LIBS += -L/usr/local/lib`
			`#LIBS_p += -L/usr/local/lib`
			`#LIBS_c += -L/usr/local/lib`

			`# Driver interface for no driver (e.g., RADIUS server only)`
			`#CONFIG_DRIVER_NONE=y`

			`# WPA2/IEEE 802.11i RSN pre-authentication`
			`#CONFIG_RSN_PREAUTH=y`

OCV: Add build configuration for channel validation support Add compilation flags for Operating Channel Verification (OCV) support. Signed-off-by: Mathy Vanhoef <Mathy.Vanhoef@cs.kuleuven.be> 2018-08-06 21:46:25 +02:00			`# Support Operating Channel Validation`
			`#CONFIG_OCV=y`

Android: Add build configuration files These are from Android wpa_supplicant_8.git initial 0.8.X commit 8d520ff1dc2da35cdca849e982051b86468016d8 with some additional edits and renaming of .config files to android.config. Signed-off-by: Dmitry Shmidt <dimitrysh@google.com> 2011-11-15 15:02:30 +01:00			`# Integrated EAP server`
			`#CONFIG_EAP=y`

			`# EAP-MD5 for the integrated EAP server`
			`#CONFIG_EAP_MD5=y`

			`# EAP-TLS for the integrated EAP server`
			`#CONFIG_EAP_TLS=y`

			`# EAP-MSCHAPv2 for the integrated EAP server`
			`#CONFIG_EAP_MSCHAPV2=y`

			`# EAP-PEAP for the integrated EAP server`
			`#CONFIG_EAP_PEAP=y`

			`# EAP-GTC for the integrated EAP server`
			`#CONFIG_EAP_GTC=y`

			`# EAP-TTLS for the integrated EAP server`
			`#CONFIG_EAP_TTLS=y`

			`# EAP-SIM for the integrated EAP server`
			`#CONFIG_EAP_SIM=y`

			`# EAP-AKA for the integrated EAP server`
			`#CONFIG_EAP_AKA=y`

			`# EAP-AKA' for the integrated EAP server`
			`# This requires CONFIG_EAP_AKA to be enabled, too.`
			`#CONFIG_EAP_AKA_PRIME=y`

			`# EAP-PAX for the integrated EAP server`
			`#CONFIG_EAP_PAX=y`

			`# EAP-PSK for the integrated EAP server (this is _not_ needed for WPA-PSK)`
			`#CONFIG_EAP_PSK=y`

			`# EAP-SAKE for the integrated EAP server`
			`#CONFIG_EAP_SAKE=y`

			`# EAP-GPSK for the integrated EAP server`
			`#CONFIG_EAP_GPSK=y`
			`# Include support for optional SHA256 cipher suite in EAP-GPSK`
			`#CONFIG_EAP_GPSK_SHA256=y`

			`# EAP-FAST for the integrated EAP server`
			`# Note: Default OpenSSL package does not include support for all the`
			`# functionality needed for EAP-FAST. If EAP-FAST is enabled with OpenSSL,`
			`# the OpenSSL library must be patched (openssl-0.9.9-session-ticket.patch)`
			`# to add the needed functions.`
			`#CONFIG_EAP_FAST=y`

			`# Wi-Fi Protected Setup (WPS)`
			`CONFIG_WPS=y`
			`# Enable UPnP support for external WPS Registrars`
			`#CONFIG_WPS_UPNP=y`

			`# EAP-IKEv2`
			`#CONFIG_EAP_IKEV2=y`

			`# Trusted Network Connect (EAP-TNC)`
			`#CONFIG_EAP_TNC=y`

			`# PKCS#12 (PFX) support (used to read private key and certificate file from`
			`# a file that usually has extension .p12 or .pfx)`
			`CONFIG_PKCS12=y`

			`# RADIUS authentication server. This provides access to the integrated EAP`
			`# server from external hosts using RADIUS.`
			`#CONFIG_RADIUS_SERVER=y`

			`# Build IPv6 support for RADIUS operations`
			`CONFIG_IPV6=y`

			`# IEEE Std 802.11r-2008 (Fast BSS Transition)`
			`#CONFIG_IEEE80211R=y`

			`# Use the hostapd's IEEE 802.11 authentication (ACL), but without`
Remove references to madwifi from various files Number of documentation and configuration files had references to the madwifi driver interface that was removed in the previous commit. Remove these references as well. Signed-off-by: Jouni Malinen <j@w1.fi> 2014-11-01 15:15:53 +01:00			`# the IEEE 802.11 Management capability (e.g., FreeBSD/net80211)`
Android: Add build configuration files These are from Android wpa_supplicant_8.git initial 0.8.X commit 8d520ff1dc2da35cdca849e982051b86468016d8 with some additional edits and renaming of .config files to android.config. Signed-off-by: Dmitry Shmidt <dimitrysh@google.com> 2011-11-15 15:02:30 +01:00			`#CONFIG_DRIVER_RADIUS_ACL=y`

			`# Remove debugging code that is printing out debug messages to stdout.`
			`# This can be used to reduce the size of the hostapd considerably if debugging`
			`# code is not needed.`
			`#CONFIG_NO_STDOUT_DEBUG=y`

			`# Add support for writing debug log to Android logcat instead of standard output`
			`CONFIG_ANDROID_LOG=y`

			`# Remove support for RADIUS accounting`
			`#CONFIG_NO_ACCOUNTING=y`

			`# Remove support for RADIUS`
			`CONFIG_NO_RADIUS=y`

			`# Remove support for VLANs`
			`#CONFIG_NO_VLAN=y`

Remove hostapd dump_file functionality This debugging mechanism has now been deprecated by the control interface commands that can be used to fetch same internal information from hostapd in a more convenient way. Leave the empty USR1 signal handler and configuration file parameter for backwards compatibility. They can be removed in future versions of hostapd. Signed-hostap: Jouni Malinen <j@w1.fi> 2014-01-02 17:15:07 +01:00			`# Remove support for dumping internal state through control interface commands`
Android: Add build configuration files These are from Android wpa_supplicant_8.git initial 0.8.X commit 8d520ff1dc2da35cdca849e982051b86468016d8 with some additional edits and renaming of .config files to android.config. Signed-off-by: Dmitry Shmidt <dimitrysh@google.com> 2011-11-15 15:02:30 +01:00			`# This can be used to reduce binary size at the cost of disabling a debugging`
			`# option.`
			`#CONFIG_NO_DUMP_STATE=y`

			`# Select wrapper for operatins system and C library specific functions`
			`# unix = UNIX/POSIX like systems (default)`
			`# win32 = Windows systems`
			`# none = Empty template`
			`CONFIG_OS=unix`

			`# Enable tracing code for developer debugging`
			`# This tracks use of memory allocations and other registrations and reports`
			`# incorrect use with a backtrace of call (or allocation) location.`
			`#CONFIG_WPA_TRACE=y`
			`# For BSD, comment out these.`
			`#LIBS += -lexecinfo`
			`#LIBS_p += -lexecinfo`
			`#LIBS_c += -lexecinfo`

			`# Use libbfd to get more details for developer debugging`
			`# This enables use of libbfd to get more detailed symbols for the backtraces`
			`# generated by CONFIG_WPA_TRACE=y.`
			`#CONFIG_WPA_TRACE_BFD=y`
			`# For BSD, comment out these.`
			`#LIBS += -lbfd -liberty -lz`
			`#LIBS_p += -lbfd -liberty -lz`
			`#LIBS_c += -lbfd -liberty -lz`

hostapd: Add build options for selecting eloop type This adds CONFIG_ELOOP_POLL=y and CONFIG_ELOOP_EPOLL=y options to hostapd build options similarly to how these were implemented for wpa_supplicant. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> 2015-07-23 17:45:31 +02:00			`# Should we use poll instead of select? Select is used by default.`
			`#CONFIG_ELOOP_POLL=y`

			`# Should we use epoll instead of select? Select is used by default.`
			`#CONFIG_ELOOP_EPOLL=y`

Android: Add build configuration files These are from Android wpa_supplicant_8.git initial 0.8.X commit 8d520ff1dc2da35cdca849e982051b86468016d8 with some additional edits and renaming of .config files to android.config. Signed-off-by: Dmitry Shmidt <dimitrysh@google.com> 2011-11-15 15:02:30 +01:00			`# Enable AP`
			`CONFIG_AP=y`
FST: Add build rules for hostapd This patch integrates the FST into the hostapd. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com> 2015-01-21 14:30:48 +01:00
			`# Enable Fast Session Transfer (FST)`
			`#CONFIG_FST=y`
hostapd: Add MBO IE to Beacon, Probe Response, Association Response Add MBO IE with AP capability attribute to Beacon, Probe Response, and (Re)Association Response frames to indicate the AP supports MBO. Add option to add Association Disallowed attribute to Beacon, Probe Response, and (Re)Association Response frames. Usage: SET mbo_assoc_disallow <reason code> Valid reason code values are between 1-5. Setting the reason code to 0 will remove the Association Disallowed attribute from the MBO IE and will allow new associations. MBO functionality is enabled by setting "mbo=1" in the config file. Signed-off-by: Avraham Stern <avraham.stern@intel.com> 2016-02-15 15:53:52 +01:00
			`# Multiband Operation support`
hostapd: Fix typos Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com> 2020-10-15 22:00:40 +02:00			`# These extensions facilitate efficient use of multiple frequency bands`
hostapd: Add MBO IE to Beacon, Probe Response, Association Response Add MBO IE with AP capability attribute to Beacon, Probe Response, and (Re)Association Response frames to indicate the AP supports MBO. Add option to add Association Disallowed attribute to Beacon, Probe Response, and (Re)Association Response frames. Usage: SET mbo_assoc_disallow <reason code> Valid reason code values are between 1-5. Setting the reason code to 0 will remove the Association Disallowed attribute from the MBO IE and will allow new associations. MBO functionality is enabled by setting "mbo=1" in the config file. Signed-off-by: Avraham Stern <avraham.stern@intel.com> 2016-02-15 15:53:52 +01:00			`# available to the AP and the devices that may associate with it.`
			`#CONFIG_MBO=y`
hostapd_cli: Enable command completion and history for Android Signed-off-by: Mikael Kanstrup <mikael.kanstrup@sonymobile.com> 2016-10-12 14:18:54 +02:00
			`# Include internal line edit mode in hostapd_cli.`
			`CONFIG_WPA_CLI_EDIT=y`
OWE: Add CONFIG_OWE=y build option This can be used to enable OWE support in hostapd and wpa_supplicant builds. Signed-off-by: Jouni Malinen <j@w1.fi> 2017-03-11 23:38:24 +01:00
			`# Opportunistic Wireless Encryption (OWE)`
			`# Experimental implementation of draft-harkins-owe-07.txt`
			`#CONFIG_OWE=y`
Android: Set CONFIG_NO_RANDOM_POOL=y Wpa_supplicant's random pool is not necessary on Android. Randomness is already provided by the entropymixer service which ensures sufficient entropy is maintained across reboots. Commit b410eb1913 'Initialize /dev/urandom earlier in boot' seeds /dev/urandom with that entropy before either wpa_supplicant or hostapd are run. Signed-off-by: Jeff Vander Stoep <jeffv@google.com> 2017-11-30 23:46:26 +01:00
			`# Wpa_supplicant's random pool is not necessary on Android. Randomness is`
			`# already provided by the entropymixer service which ensures sufficient`
			`# entropy is maintained across reboots. Commit b410eb1913 'Initialize`
			`# /dev/urandom earlier in boot' seeds /dev/urandom with that entropy before`
			`# either wpa_supplicant or hostapd are run.`
			`CONFIG_NO_RANDOM_POOL=y`
Make WEP functionality an optional build parameter WEP should not be used for anything anymore. As a step towards removing it completely, move all WEP related functionality to be within CONFIG_WEP blocks. This will be included in builds only if CONFIG_WEP=y is explicitly set in build configuration. Signed-off-by: Jouni Malinen <j@w1.fi> 2020-02-29 15:52:39 +01:00
			`# Wired equivalent privacy (WEP)`
			`# WEP is an obsolete cryptographic data confidentiality algorithm that is not`
			`# considered secure. It should not be used for anything anymore. The`
			`# functionality needed to use WEP is available in the current hostapd`
			`# release under this optional build parameter. This functionality is subject to`
			`# be completely removed in a future release.`
			`CONFIG_WEP=y`