hak5
/
openwrt-owl
mirror of https://github.com/hak5/openwrt-owl.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

hostapd: Allow rsn_preauth configuration 

Hostapd can allow preauthentication for WPA2-EAP networks when
the interfaces through which preauthentication is allowed are
configured.

Add a new param "rsn_preauth=0/1" to the configuration that enables
or disables preauthentication on the according bridge interface.

Preauthentication for unbridged networks is not considered in this
patch.

Cc: Felix Fietkau <nbd@openwrt.org>
Signed-off-by: Helmut Schaa <helmut.schaa@googlemail.com>

SVN-Revision: 24721
owl
Felix Fietkau 2010-12-19 11:48:31 +00:00
parent ba45b5a907
commit d08bc913a8
1 changed files with 26 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
package/hostapd/files/hostapd.sh
View File

@ -139,20 +139,32 @@ hostapd_set_bss_options() {
[ -n "$ieee80211d" ] && append "$var" "ieee80211d=$ieee80211d" "$N" [ -n "$ieee80211d" ] && append "$var" "ieee80211d=$ieee80211d" "$N"
[ -n "$iapp_interface" ] && append "$var" $(uci_get_state network "$iapp_interface" ifname "$iapp_interface") "$N" [ -n "$iapp_interface" ] && append "$var" $(uci_get_state network "$iapp_interface" ifname "$iapp_interface") "$N"
[ "$wpa" -ge "2" ] && config_get ieee80211w "$vif" ieee80211w if [ "$wpa" -ge "2" ]
case "$ieee80211w" in then
[012]) # RSN -> allow preauthentication
append "$var" "ieee80211w=$ieee80211w" "$N" config_get rsn_preauth "$vif" rsn_preauth
[ "$ieee80211w" -gt "0" ] && { if [ -n "$bridge" -a "$rsn_preauth" = 1 ]
config_get ieee80211w_max_timeout "$vif" ieee80211w_max_timeout then
config_get ieee80211w_retry_timeout "$vif" ieee80211w_retry_timeout append "$var" "rsn_preauth=1" "$N"
[ -n "$ieee80211w_max_timeout" ] && \ append "$var" "rsn_preauth_interfaces=$bridge" "$N"
append "$var" "assoc_sa_query_max_timeout=$ieee80211w_max_timeout" "$N" fi
[ -n "$ieee80211w_retry_timeout" ] && \
append "$var" "assoc_sa_query_retry_timeout=$ieee80211w_retry_timeout" "$N" # RSN -> allow management frame protection
} config_get ieee80211w "$vif" ieee80211w
;; case "$ieee80211w" in
esac [012])
append "$var" "ieee80211w=$ieee80211w" "$N"
[ "$ieee80211w" -gt "0" ] && {
config_get ieee80211w_max_timeout "$vif" ieee80211w_max_timeout
config_get ieee80211w_retry_timeout "$vif" ieee80211w_retry_timeout
[ -n "$ieee80211w_max_timeout" ] && \
append "$var" "assoc_sa_query_max_timeout=$ieee80211w_max_timeout" "$N"
[ -n "$ieee80211w_retry_timeout" ] && \
append "$var" "assoc_sa_query_retry_timeout=$ieee80211w_retry_timeout" "$N"
}
;;
esac
fi
} }
hostapd_setup_vif() { hostapd_setup_vif() {