HS 2.0: Do not allow AP hs20=1 configuration without RSN

Hotspot 2.0 networks are required to use WPA2-Enterprise/CCMP, so enforce this while validating hostapd configuration. Signed-hostap: Jouni Malinen <j@w1.fi>
2012-08-19 12:53:45 +03:00 · 2012-08-19 12:53:45 +03:00 · 99be648c5d
parent 63e5caaa6f
commit 99be648c5d
1 changed files with 11 additions and 0 deletions
--- a/hostapd/config_file.c
+++ b/hostapd/config_file.c
@ -1226,6 +1226,17 @@ static int hostapd_config_check_bss(struct hostapd_bss_config *bss,
 	}
 #endif /* CONFIG_WPS2 */

+#ifdef CONFIG_HS20
+	if (bss->hs20 &&
+	    (!(bss->wpa & 2) ||
+	     !(bss->rsn_pairwise & WPA_CIPHER_CCMP))) {
+		wpa_printf(MSG_ERROR, "HS 2.0: WPA2-Enterprise/CCMP "
+			   "configuration is required for Hotspot 2.0 "
+			   "functionality");
+		return -1;
+	}
+#endif /* CONFIG_HS20 */
+
 	return 0;
 }