[people/ms/network.git] / src / functions / functions.hostapd

#!/bin/bash
###############################################################################
#                                                                             #
# IPFire.org - A linux based firewall                                         #
# Copyright (C) 2012  IPFire Network Development Team                         #
#                                                                             #
# This program is free software: you can redistribute it and/or modify        #
# it under the terms of the GNU General Public License as published by        #
# the Free Software Foundation, either version 3 of the License, or           #
# (at your option) any later version.                                         #
#                                                                             #
# This program is distributed in the hope that it will be useful,             #
# but WITHOUT ANY WARRANTY; without even the implied warranty of              #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the               #
# GNU General Public License for more details.                                #
#                                                                             #
# You should have received a copy of the GNU General Public License           #
# along with this program.  If not, see <http://www.gnu.org/licenses/>.       #
#                                                                             #
###############################################################################

HOSTAPD_CONTROL_INTERFACE_DIR="/run/hostapd/ctrl"

HOSTAPD_SUPPORTED_MODES="802.11a 802.11a/n 802.11ac 802.11g 802.11g/n"

hostapd_config_write() {
	local device=${1}
	assert isset device

	local file=${2}
	assert isset file

	# Shift the device and file argument.
	shift 2

	local broadcast_ssid
	local channel
	local channel_bandwidth
	local country_code="$(wireless_get_reg_domain)"
	local dfs="on"
	local encryption
	local environment="${WIRELESS_DEFAULT_ENVIRONMENT}"
	local key
	local mfp="off"
	local mode
	local ssid
	local wmm="1"

	while [ $# -gt 0 ]; do
		case "${1}" in
			--broadcast-ssid=*)
				broadcast_ssid=$(cli_get_val "${1}")
				;;
			--channel=*)
				channel=$(cli_get_val "${1}")
				;;
			--channel-bandwidth=*)
				channel_bandwidth="$(cli_get_val "${1}")"
				;;
			--dfs=*)
				dfs="$(cli_get_val "${1}")"
				;;
			--encryption=*)
				encryption=$(cli_get_val "${1}")
				;;
			--environment=*)
				environment="$(cli_get_val "${1}")"
				;;
			--key=*)
				key=$(cli_get_val "${1}")
				;;
			--mfp=*)
				mfp="$(cli_get_val "${1}")"
				;;
			--mode=*)
				mode=$(cli_get_val "${1}")

				if ! isoneof mode ${HOSTAPD_SUPPORTED_MODES}; then
					error "Unsupported mode: ${mode}"
					return ${EXIT_ERROR}
				fi
				;;
			--ssid=*)
				ssid=$(cli_get_val "${1}")
				;;
			--wmm=*)
				local val="$(cli_get_val "${1}")"
				if enabled val; then
					wmm="1"
				else
					wmm="0"
				fi
				;;
			*)
				warning_log "Ignoring unknown argument '${1}'."
				;;			
		esac
		shift
	done

	# Check if mode is set
	if ! isset mode; then
		error "Mode is not set"
		return ${EXIT_ERROR}
	fi

	assert isset broadcast_ssid
	assert isbool broadcast_ssid

	assert isset channel
	assert isinteger channel

	assert isset mode
	assert isset ssid

	# Check if key is set when encryption is used.
	if isset encryption; then
		assert isoneof encryption WPA WPA2 WPA/WPA2
		assert isset key
	fi

	# Check wireless environment
	if ! wireless_environment_is_valid "${environment}"; then
		error "Invalid wireless environment: ${environment}"
		return ${EXIT_ERROR}
	fi

	# With channel 0, ACS must be supported
	if [ ${channel} -eq 0 ] && ! wireless_supports_acs "${device}"; then
		error "ACS requested, but not supported by ${device}"
		return ${EXIT_ERROR}
	fi

	# Check channel bandwidth for validity
	if isset channel_bandwidth && ! wireless_channel_bandwidth_is_valid "${mode}" "${channel_bandwidth}"; then
		error "Invalid channel bandwidth for ${mode}: ${channel_bandwidth}"
		return ${EXIT_ERROR}
	fi

	# Management Frame Proection
	if ! isbool mfp; then
		error "Invalid value for --mfp: ${mfp}"
		return ${EXIT_ERROR}
	fi

	# 802.11ac/n flags
	local ieee80211ac
	local ieee80211n
	local vht_caps
	local vht_oper_chwidth="0"
	local ht_caps

	local hw_mode
	case "${mode}" in
		802.11a)
			hw_mode="a"
			;;

		802.11a/n)
			hw_mode="a"
			ieee80211n="1"

			# Fetch HT caps
			ht_caps="$(wireless_get_ht_caps "${device}")"
			;;

		802.11g)
			hw_mode="g"
			;;

		802.11g/n)
			hw_mode="g"
			ieee80211n="1"

			# Fetch HT caps
			ht_caps="$(wireless_get_ht_caps "${device}")"
			;;

		802.11ac)
			hw_mode="a"
			ieee80211ac="1"
			ieee80211n="1"

			# Fetch VHT caps
			vht_caps="$(wireless_get_vht_caps "${device}")"

			# Fetch HT caps
			ht_caps="$(wireless_get_ht_caps "${device}")"

			case "${channel_bandwidth}" in
				80)
					vht_oper_chwidth="1"
					;;
				160)
					vht_oper_chwidth="2"
					;;
				80+80)
					vht_oper_chwidth="3"
					;;
			esac
			;;
	esac

	# Create configuration directory.
	local config_dir=$(dirname ${file})
	mkdir -p ${HOSTAPD_CONTROL_INTERFACE_DIR} ${config_dir} 2>/dev/null

	config_header "hostapd" > ${file}

	# Interface configuration
	(
		print "# Interface configuration"
		print "driver=nl80211"
		print "interface=${device}"
		print
	) >> ${file}

	# Wireless configuration
	local ignore_broadcast_ssid
	if enabled broadcast_ssid; then
		ignore_broadcast_ssid="0"
	else
		ignore_broadcast_ssid="1"
	fi

	(
		# Advertise country code and maximum transmission power
		print "ieee80211d=1"
		print "country_code=${country_code}"

		# Wireless Environment
		case "${environment}" in
			indoor)
				print "country3=0x49"
				       country3
				;;
			outdoor)
				print "country3=0x4f"
				;;
			indoor+outdoor)
				print "country3=0x20"
				;;
		esac

		# Always advertise TPC
		print "local_pwr_constraint=3"
		print "spectrum_mgmt_required=1"

		# Enable Radar Detection
		if enabled dfs && wireless_supports_dfs "${device}"; then
			print "ieee80211h=1"
		else
			print "ieee80211h=0"
		fi

		print # empty line

		print "# Wireless configuration"
		print "hw_mode=${hw_mode}"

		if isset ieee80211ac; then
			print "ieee80211ac=${ieee80211ac}"
		fi

		if isset ieee80211n; then
			print "ieee80211n=${ieee80211n}"
		fi

		print "channel=${channel}"
		print "ignore_broadcast_ssid=${ignore_broadcast_ssid}"

		print "ssid2=\"${ssid}\""
		print "utf8_ssid=1"

		# Kick stations that are too far away
		print "disassoc_low_ack=1"

		# WMM & WMM-PS Unscheduled Automatic Power Save Delivery
		print "wmm_enabled=${wmm}"
		print "uapsd_advertisement_enabled=1"

		# Low Priority / AC_BK = Background
		print "wmm_ac_bk_cwmin=4"
		print "wmm_ac_bk_cwmax=10"
		print "wmm_ac_bk_aifs=7"
		print "wmm_ac_bk_txop_limit=0"
		print "wmm_ac_bk_acm=0"
		print "tx_queue_data3_aifs=7"
		print "tx_queue_data3_cwmin=15"
		print "tx_queue_data3_cwmax=1023"
		print "tx_queue_data3_burst=0"

		# Normal Priority / AC_BE = Best Effort
		print "wmm_ac_be_aifs=3"
		print "wmm_ac_be_cwmin=4"
		print "wmm_ac_be_cwmax=10"
		print "wmm_ac_be_txop_limit=0"
		print "wmm_ac_be_acm=0"
		print "tx_queue_data2_aifs=3"
		print "tx_queue_data2_cwmin=15"
		print "tx_queue_data2_cwmax=63"
		print "tx_queue_data2_burst=0"

		# High Priority / AC_VI = Video
		print "wmm_ac_vi_aifs=2"
		print "wmm_ac_vi_cwmin=3"
		print "wmm_ac_vi_cwmax=4"
		print "wmm_ac_vi_txop_limit=94"
		print "wmm_ac_vi_acm=0"
		print "tx_queue_data1_aifs=1"
		print "tx_queue_data1_cwmin=7"
		print "tx_queue_data1_cwmax=15"
		print "tx_queue_data1_burst=3.0"

		# Highest Priority / AC_VO = Voice
		print "wmm_ac_vo_aifs=2"
		print "wmm_ac_vo_cwmin=2"
		print "wmm_ac_vo_cwmax=3"
		print "wmm_ac_vo_txop_limit=47"
		print "wmm_ac_vo_acm=0"
		print "tx_queue_data0_aifs=1"
		print "tx_queue_data0_cwmin=3"
		print "tx_queue_data0_cwmax=7"
		print "tx_queue_data0_burst=1.5"

		# Enable VHT caps
		if isset vht_caps; then
			print "vht_capab=${vht_caps}"
		fi

		# Enable HT caps
		print "ht_capab=${ht_caps}"

		# Wider Channels
		print "vht_oper_chwidth=${vht_oper_chwidth}"

		print

		# 802.11w - Management Frame Protection (MFP)
		if enabled mfp; then
			print "ieee80211w=2" # required
		else
			print "ieee80211w=0"
		fi
	) >> ${file}

	# Control interface.
	(
		print "# Control interface"
		print "ctrl_interface=${HOSTAPD_CONTROL_INTERFACE_DIR}"
		print "ctrl_interface_group=0"
		print
	) >> ${file}

	# Encryption settings
	if isset encryption; then
		local encryption_mode=0
		case "${encryption}" in
			WPA)
				encryption_mode=1
				;;
			WPA2)
				encryption_mode=2
				;;
			WPA/WPA2)
				encryption_mode=3
				;;
		esac

		(
			print "# Encryption settings"
			print "wpa=${encryption_mode}"
			print "wpa_passphrase=${key}"
			print "wpa_key_mgmt=WPA-PSK"
			print "wpa_pairwise=TKIP"
			print "rsn_pairwise=CCMP"
			print
		) >> ${file}
	fi

	# Log configuration file
	file_to_log DEBUG "${file}"

	return ${EXIT_OK}
}

hostapd_start() {
	local device=${1}
	assert isset device

	service_start "hostapd@${device}.service"
	local ret=$?

	if [ ${ret} -eq ${EXIT_OK} ]; then
		log DEBUG "hostapd has been successfully started on '${device}'"
	else
		log ERROR "Could not start hostapd on '${device}': ${ret}"
		return ${EXIT_ERROR}
	fi

	return ${EXIT_OK}
}

hostapd_stop() {
	local device=${1}
	assert isset device

	service_stop "hostapd@${device}.service"
}
Commit	Line	Data
0e035311 MT	1	#!/bin/bash
	2	###############################################################################
	3	# #
	4	# IPFire.org - A linux based firewall #
	5	# Copyright (C) 2012 IPFire Network Development Team #
	6	# #
	7	# This program is free software: you can redistribute it and/or modify #
	8	# it under the terms of the GNU General Public License as published by #
	9	# the Free Software Foundation, either version 3 of the License, or #
	10	# (at your option) any later version. #
	11	# #
	12	# This program is distributed in the hope that it will be useful, #
	13	# but WITHOUT ANY WARRANTY; without even the implied warranty of #
	14	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
	15	# GNU General Public License for more details. #
	16	# #
	17	# You should have received a copy of the GNU General Public License #
	18	# along with this program. If not, see <http://www.gnu.org/licenses/>. #
	19	# #
	20	###############################################################################
	21
49ec20d8	22	HOSTAPD_CONTROL_INTERFACE_DIR="/run/hostapd/ctrl"
0e035311	23
6c262922 MT	24	HOSTAPD_SUPPORTED_MODES="802.11a 802.11a/n 802.11ac 802.11g 802.11g/n"
6c262922 MT	25
1c6a4e30	26	hostapd_config_write() {
0e035311	27	local device=${1}
49ec20d8	28	assert isset device
0e035311	29
49ec20d8 MT	30	local file=${2}
	31	assert isset file
	32
	33	# Shift the device and file argument.
	34	shift 2
0e035311 MT	35
	36	local broadcast_ssid
	37	local channel
f9e980d9	38	local channel_bandwidth
31670741	39	local country_code="$(wireless_get_reg_domain)"
7b297fb2	40	local dfs="on"
0e035311	41	local encryption
7842c2ce	42	local environment="${WIRELESS_DEFAULT_ENVIRONMENT}"
0e035311	43	local key
34ca3936	44	local mfp="off"
0e035311 MT	45	local mode
0e035311 MT	46	local ssid
19c166f8	47	local wmm="1"
0e035311 MT	48
	49	while [ $# -gt 0 ]; do
	50	case "${1}" in
	51	--broadcast-ssid=*)
2212045f	52	broadcast_ssid=$(cli_get_val "${1}")
0e035311 MT	53	;;
0e035311 MT	54	--channel=*)
2212045f	55	channel=$(cli_get_val "${1}")
0e035311	56	;;
f9e980d9 MT	57	--channel-bandwidth=*)
	58	channel_bandwidth="$(cli_get_val "${1}")"
	59	;;
7b297fb2 MT	60	--dfs=*)
	61	dfs="$(cli_get_val "${1}")"
	62	;;
0e035311	63	--encryption=*)
2212045f	64	encryption=$(cli_get_val "${1}")
0e035311	65	;;
7842c2ce MT	66	--environment=*)
	67	environment="$(cli_get_val "${1}")"
	68	;;
0e035311	69	--key=*)
2212045f	70	key=$(cli_get_val "${1}")
0e035311	71	;;
34ca3936 MT	72	--mfp=*)
	73	mfp="$(cli_get_val "${1}")"
	74	;;
4cfc085f	75	--mode=*)
2212045f	76	mode=$(cli_get_val "${1}")
6c262922 MT	77
	78	if ! isoneof mode ${HOSTAPD_SUPPORTED_MODES}; then
	79	error "Unsupported mode: ${mode}"
	80	return ${EXIT_ERROR}
	81	fi
4cfc085f MT	82	;;
4cfc085f MT	83	--ssid=*)
2212045f	84	ssid=$(cli_get_val "${1}")
4cfc085f	85	;;
19c166f8 MT	86	--wmm=*)
	87	local val="$(cli_get_val "${1}")"
	88	if enabled val; then
	89	wmm="1"
	90	else
	91	wmm="0"
	92	fi
	93	;;
0e035311 MT	94	*)
	95	warning_log "Ignoring unknown argument '${1}'."
	96	;;
	97	esac
	98	shift
	99	done
	100
6c262922 MT	101	# Check if mode is set
	102	if ! isset mode; then
	103	error "Mode is not set"
	104	return ${EXIT_ERROR}
	105	fi
	106
0e035311 MT	107	assert isset broadcast_ssid
	108	assert isbool broadcast_ssid
	109
	110	assert isset channel
	111	assert isinteger channel
	112
0e035311 MT	113	assert isset mode
	114	assert isset ssid
	115
	116	# Check if key is set when encryption is used.
	117	if isset encryption; then
	118	assert isoneof encryption WPA WPA2 WPA/WPA2
	119	assert isset key
	120	fi
	121
7842c2ce MT	122	# Check wireless environment
	123	if ! wireless_environment_is_valid "${environment}"; then
	124	error "Invalid wireless environment: ${environment}"
	125	return ${EXIT_ERROR}
	126	fi
	127
1b4aa2ca MT	128	# With channel 0, ACS must be supported
	129	if [ ${channel} -eq 0 ] && ! wireless_supports_acs "${device}"; then
	130	error "ACS requested, but not supported by ${device}"
	131	return ${EXIT_ERROR}
	132	fi
	133
f9e980d9 MT	134	# Check channel bandwidth for validity
	135	if isset channel_bandwidth && ! wireless_channel_bandwidth_is_valid "${mode}" "${channel_bandwidth}"; then
	136	error "Invalid channel bandwidth for ${mode}: ${channel_bandwidth}"
	137	return ${EXIT_ERROR}
	138	fi
	139
34ca3936 MT	140	# Management Frame Proection
	141	if ! isbool mfp; then
	142	error "Invalid value for --mfp: ${mfp}"
	143	return ${EXIT_ERROR}
	144	fi
	145
6c262922 MT	146	# 802.11ac/n flags
	147	local ieee80211ac
	148	local ieee80211n
	149	local vht_caps
f9e980d9	150	local vht_oper_chwidth="0"
6c262922 MT	151	local ht_caps
	152
	153	local hw_mode
	154	case "${mode}" in
	155	802.11a)
	156	hw_mode="a"
	157	;;
	158
	159	802.11a/n)
	160	hw_mode="a"
	161	ieee80211n="1"
	162
	163	# Fetch HT caps
	164	ht_caps="$(wireless_get_ht_caps "${device}")"
	165	;;
	166
	167	802.11g)
	168	hw_mode="g"
	169	;;
	170
	171	802.11g/n)
	172	hw_mode="g"
	173	ieee80211n="1"
	174
	175	# Fetch HT caps
	176	ht_caps="$(wireless_get_ht_caps "${device}")"
	177	;;
	178
	179	802.11ac)
	180	hw_mode="a"
	181	ieee80211ac="1"
	182	ieee80211n="1"
	183
	184	# Fetch VHT caps
	185	vht_caps="$(wireless_get_vht_caps "${device}")"
1526e219	186
6c262922 MT	187	# Fetch HT caps
6c262922 MT	188	ht_caps="$(wireless_get_ht_caps "${device}")"
f9e980d9 MT	189
	190	case "${channel_bandwidth}" in
	191	80)
	192	vht_oper_chwidth="1"
	193	;;
	194	160)
	195	vht_oper_chwidth="2"
	196	;;
	197	80+80)
	198	vht_oper_chwidth="3"
	199	;;
	200	esac
6c262922 MT	201	;;
6c262922 MT	202	esac
0e1c630c	203
49ec20d8 MT	204	# Create configuration directory.
	205	local config_dir=$(dirname ${file})
	206	mkdir -p ${HOSTAPD_CONTROL_INTERFACE_DIR} ${config_dir} 2>/dev/null
	207
	208	config_header "hostapd" > ${file}
	209
	210	# Interface configuration
	211	(
	212	print "# Interface configuration"
	213	print "driver=nl80211"
	214	print "interface=${device}"
	215	print
	216	) >> ${file}
	217
	218	# Wireless configuration
0e035311 MT	219	local ignore_broadcast_ssid
	220	if enabled broadcast_ssid; then
	221	ignore_broadcast_ssid="0"
	222	else
	223	ignore_broadcast_ssid="1"
	224	fi
	225
49ec20d8	226	(
b6ec3dd6 MT	227	# Advertise country code and maximum transmission power
b6ec3dd6 MT	228	print "ieee80211d=1"
7842c2ce MT	229	print "country_code=${country_code}"
	230
	231	# Wireless Environment
	232	case "${environment}" in
	233	indoor)
	234	print "country3=0x49"
	235	country3
	236	;;
	237	outdoor)
	238	print "country3=0x4f"
	239	;;
	240	indoor+outdoor)
	241	print "country3=0x20"
	242	;;
	243	esac
b6ec3dd6	244
96026172 MT	245	# Always advertise TPC
	246	print "local_pwr_constraint=3"
	247	print "spectrum_mgmt_required=1"
	248
6c262922	249	# Enable Radar Detection
dc6d97fb	250	if enabled dfs && wireless_supports_dfs "${device}"; then
7b297fb2 MT	251	print "ieee80211h=1"
	252	else
	253	print "ieee80211h=0"
	254	fi
6c262922 MT	255
	256	print # empty line
	257
49ec20d8	258	print "# Wireless configuration"
6c262922 MT	259	print "hw_mode=${hw_mode}"
	260
	261	if isset ieee80211ac; then
	262	print "ieee80211ac=${ieee80211ac}"
	263	fi
	264
	265	if isset ieee80211n; then
	266	print "ieee80211n=${ieee80211n}"
	267	fi
	268
49ec20d8	269	print "channel=${channel}"
49ec20d8	270	print "ignore_broadcast_ssid=${ignore_broadcast_ssid}"
0e035311	271
4873f329 MT	272	print "ssid2=\"${ssid}\""
4873f329 MT	273	print "utf8_ssid=1"
0e035311	274
4d4bca7e MT	275	# Kick stations that are too far away
	276	print "disassoc_low_ack=1"
	277
fcdbed86	278	# WMM & WMM-PS Unscheduled Automatic Power Save Delivery
19c166f8	279	print "wmm_enabled=${wmm}"
fcdbed86 MT	280	print "uapsd_advertisement_enabled=1"
	281
	282	# Low Priority / AC_BK = Background
	283	print "wmm_ac_bk_cwmin=4"
	284	print "wmm_ac_bk_cwmax=10"
	285	print "wmm_ac_bk_aifs=7"
	286	print "wmm_ac_bk_txop_limit=0"
	287	print "wmm_ac_bk_acm=0"
	288	print "tx_queue_data3_aifs=7"
	289	print "tx_queue_data3_cwmin=15"
	290	print "tx_queue_data3_cwmax=1023"
	291	print "tx_queue_data3_burst=0"
	292
	293	# Normal Priority / AC_BE = Best Effort
	294	print "wmm_ac_be_aifs=3"
	295	print "wmm_ac_be_cwmin=4"
	296	print "wmm_ac_be_cwmax=10"
	297	print "wmm_ac_be_txop_limit=0"
	298	print "wmm_ac_be_acm=0"
	299	print "tx_queue_data2_aifs=3"
	300	print "tx_queue_data2_cwmin=15"
	301	print "tx_queue_data2_cwmax=63"
	302	print "tx_queue_data2_burst=0"
	303
	304	# High Priority / AC_VI = Video
	305	print "wmm_ac_vi_aifs=2"
	306	print "wmm_ac_vi_cwmin=3"
	307	print "wmm_ac_vi_cwmax=4"
	308	print "wmm_ac_vi_txop_limit=94"
	309	print "wmm_ac_vi_acm=0"
	310	print "tx_queue_data1_aifs=1"
	311	print "tx_queue_data1_cwmin=7"
	312	print "tx_queue_data1_cwmax=15"
	313	print "tx_queue_data1_burst=3.0"
	314
	315	# Highest Priority / AC_VO = Voice
	316	print "wmm_ac_vo_aifs=2"
	317	print "wmm_ac_vo_cwmin=2"
	318	print "wmm_ac_vo_cwmax=3"
	319	print "wmm_ac_vo_txop_limit=47"
	320	print "wmm_ac_vo_acm=0"
	321	print "tx_queue_data0_aifs=1"
	322	print "tx_queue_data0_cwmin=3"
	323	print "tx_queue_data0_cwmax=7"
	324	print "tx_queue_data0_burst=1.5"
19c166f8	325
1526e219 MT	326	# Enable VHT caps
	327	if isset vht_caps; then
	328	print "vht_capab=${vht_caps}"
	329	fi
	330
0e1c630c MT	331	# Enable HT caps
	332	print "ht_capab=${ht_caps}"
	333
f9e980d9 MT	334	# Wider Channels
	335	print "vht_oper_chwidth=${vht_oper_chwidth}"
	336
49ec20d8	337	print
34ca3936 MT	338
	339	# 802.11w - Management Frame Protection (MFP)
	340	if enabled mfp; then
	341	print "ieee80211w=2" # required
	342	else
	343	print "ieee80211w=0"
	344	fi
49ec20d8	345	) >> ${file}
0e035311	346
49ec20d8 MT	347	# Control interface.
	348	(
	349	print "# Control interface"
	350	print "ctrl_interface=${HOSTAPD_CONTROL_INTERFACE_DIR}"
	351	print "ctrl_interface_group=0"
	352	print
	353	) >> ${file}
0e035311	354
49ec20d8	355	# Encryption settings
0e035311 MT	356	if isset encryption; then
	357	local encryption_mode=0
	358	case "${encryption}" in
	359	WPA)
	360	encryption_mode=1
	361	;;
	362	WPA2)
	363	encryption_mode=2
	364	;;
	365	WPA/WPA2)
	366	encryption_mode=3
	367	;;
	368	esac
	369
49ec20d8 MT	370	(
	371	print "# Encryption settings"
	372	print "wpa=${encryption_mode}"
	373	print "wpa_passphrase=${key}"
	374	print "wpa_key_mgmt=WPA-PSK"
	375	print "wpa_pairwise=TKIP"
	376	print "rsn_pairwise=CCMP"
	377	print
	378	) >> ${file}
0e035311 MT	379	fi
0e035311 MT	380
7c91c167 MT	381	# Log configuration file
	382	file_to_log DEBUG "${file}"
	383
0e035311 MT	384	return ${EXIT_OK}
	385	}
	386
1c6a4e30	387	hostapd_start() {
0e035311	388	local device=${1}
0e035311 MT	389	assert isset device
0e035311 MT	390
0e035311 MT	391	service_start "hostapd@${device}.service"
	392	local ret=$?
	393
49ec20d8 MT	394	if [ ${ret} -eq ${EXIT_OK} ]; then
	395	log DEBUG "hostapd has been successfully started on '${device}'"
	396	else
	397	log ERROR "Could not start hostapd on '${device}': ${ret}"
	398	return ${EXIT_ERROR}
	399	fi
	400
	401	return ${EXIT_OK}
0e035311 MT	402	}
0e035311 MT	403
1c6a4e30	404	hostapd_stop() {
0e035311 MT	405	local device=${1}
	406	assert isset device
	407
	408	service_stop "hostapd@${device}.service"
0e035311	409	}