HS 2.0: Do not allow AP hs20=1 configuration without RSN
Hotspot 2.0 networks are required to use WPA2-Enterprise/CCMP, so enforce this while validating hostapd configuration. Signed-hostap: Jouni Malinen <j@w1.fi>
This commit is contained in:
		
							parent
							
								
									63e5caaa6f
								
							
						
					
					
						commit
						99be648c5d
					
				
					 1 changed files with 11 additions and 0 deletions
				
			
		|  | @ -1226,6 +1226,17 @@ static int hostapd_config_check_bss(struct hostapd_bss_config *bss, | |||
| 	} | ||||
| #endif /* CONFIG_WPS2 */ | ||||
| 
 | ||||
| #ifdef CONFIG_HS20 | ||||
| 	if (bss->hs20 && | ||||
| 	    (!(bss->wpa & 2) || | ||||
| 	     !(bss->rsn_pairwise & WPA_CIPHER_CCMP))) { | ||||
| 		wpa_printf(MSG_ERROR, "HS 2.0: WPA2-Enterprise/CCMP " | ||||
| 			   "configuration is required for Hotspot 2.0 " | ||||
| 			   "functionality"); | ||||
| 		return -1; | ||||
| 	} | ||||
| #endif /* CONFIG_HS20 */ | ||||
| 
 | ||||
| 	return 0; | ||||
| } | ||||
| 
 | ||||
|  |  | |||
		Loading…
	
		Reference in a new issue
	
	 Jouni Malinen
						Jouni Malinen