wpa_supplicant AP mode configuration for Transition Disable KDE
Allow AP mode network profile in wpa_supplicant to be configured to advertise Transition Disable DKE. Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
This commit is contained in:
Jouni Malinen
Jouni Malinen
parent
9d1857cf35
commit
96686e637c
4 changed files with 24 additions and 0 deletions
|
|
@ -607,6 +607,8 @@ no_wps:
|
||||||
bss->ftm_responder = wpa_s->conf->ftm_responder;
|
bss->ftm_responder = wpa_s->conf->ftm_responder;
|
||||||
bss->ftm_initiator = wpa_s->conf->ftm_initiator;
|
bss->ftm_initiator = wpa_s->conf->ftm_initiator;
|
||||||
|
|
||||||
|
bss->transition_disable = ssid->transition_disable;
|
||||||
|
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -2577,6 +2577,7 @@ static const struct parse_data ssid_fields[] = {
|
||||||
{ INT_RANGE(multi_ap_backhaul_sta, 0, 1) },
|
{ INT_RANGE(multi_ap_backhaul_sta, 0, 1) },
|
||||||
{ INT_RANGE(ft_eap_pmksa_caching, 0, 1) },
|
{ INT_RANGE(ft_eap_pmksa_caching, 0, 1) },
|
||||||
{ INT_RANGE(beacon_prot, 0, 1) },
|
{ INT_RANGE(beacon_prot, 0, 1) },
|
||||||
|
{ INT_RANGE(transition_disable, 0, 255) },
|
||||||
};
|
};
|
||||||
|
|
||||||
#undef OFFSET
|
#undef OFFSET
|
||||||
|
|
|
||||||
|
|
@ -935,6 +935,7 @@ static void wpa_config_write_network(FILE *f, struct wpa_ssid *ssid)
|
||||||
INT(multi_ap_backhaul_sta);
|
INT(multi_ap_backhaul_sta);
|
||||||
INT(ft_eap_pmksa_caching);
|
INT(ft_eap_pmksa_caching);
|
||||||
INT(beacon_prot);
|
INT(beacon_prot);
|
||||||
|
INT(transition_disable);
|
||||||
#ifdef CONFIG_HT_OVERRIDES
|
#ifdef CONFIG_HT_OVERRIDES
|
||||||
INT_DEF(disable_ht, DEFAULT_DISABLE_HT);
|
INT_DEF(disable_ht, DEFAULT_DISABLE_HT);
|
||||||
INT_DEF(disable_ht40, DEFAULT_DISABLE_HT40);
|
INT_DEF(disable_ht40, DEFAULT_DISABLE_HT40);
|
||||||
|
|
|
||||||
|
|
@ -1070,6 +1070,26 @@ struct wpa_ssid {
|
||||||
* enabled.
|
* enabled.
|
||||||
*/
|
*/
|
||||||
int beacon_prot;
|
int beacon_prot;
|
||||||
|
|
||||||
|
/**
|
||||||
|
* transition_disable - Transition Disable indication
|
||||||
|
* The AP can notify authenticated stations to disable transition mode
|
||||||
|
* in their network profiles when the network has completed transition
|
||||||
|
* steps, i.e., once sufficiently large number of APs in the ESS have
|
||||||
|
* been updated to support the more secure alternative. When this
|
||||||
|
* indication is used, the stations are expected to automatically
|
||||||
|
* disable transition mode and less secure security options. This
|
||||||
|
* includes use of WEP, TKIP (including use of TKIP as the group
|
||||||
|
* cipher), and connections without PMF.
|
||||||
|
* Bitmap bits:
|
||||||
|
* bit 0 (0x01): WPA3-Personal (i.e., disable WPA2-Personal = WPA-PSK
|
||||||
|
* and only allow SAE to be used)
|
||||||
|
* bit 1 (0x02): SAE-PK (disable SAE without use of SAE-PK)
|
||||||
|
* bit 2 (0x04): WPA3-Enterprise (move to requiring PMF)
|
||||||
|
* bit 3 (0x08): Enhanced Open (disable use of open network; require
|
||||||
|
* OWE)
|
||||||
|
*/
|
||||||
|
u8 transition_disable;
|
||||||
};
|
};
|
||||||
|
|
||||||
#endif /* CONFIG_SSID_H */
|
#endif /* CONFIG_SSID_H */
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue