WPS: Allow WPS to be enabled in CCMP-256 and GCMP-256 only cases

Extend the check against WPA/TKIP only configuration by adding CCMP-256 and GCMP-256 to the list of allowed ciphers. This is needed to allow WPS to be enabled in AP configurations where neither CCMP-128 nor GCMP-128 are enabled. Signed-off-by: Shiva Sankar Gajula <sgajula@qti.qualcomm.com>
7 years ago · a2660890a5
parent 41dafe0c0a
commit a2660890a5
1 changed files with 3 additions and 1 deletions
--- a/src/ap/ap_config.c
+++ b/src/ap/ap_config.c
@ -936,7 +936,9 @@ static int hostapd_config_check_bss(struct hostapd_bss_config *bss,

 	if (full_config && bss->wps_state && bss->wpa &&
 	    (!(bss->wpa & 2) ||
-	     !(bss->rsn_pairwise & (WPA_CIPHER_CCMP | WPA_CIPHER_GCMP)))) {
+	     !(bss->rsn_pairwise & (WPA_CIPHER_CCMP | WPA_CIPHER_GCMP |
+				    WPA_CIPHER_CCMP_256 |
+				    WPA_CIPHER_GCMP_256)))) {
 		wpa_printf(MSG_INFO, "WPS: WPA/TKIP configuration without "
 			   "WPA2/CCMP/GCMP forced WPS to be disabled");
 		bss->wps_state = 0;