SAE: Do not send PMKID to the driver if PMKSA caching is disabled

External auth status to the driver includes the PMKID derived as part of
SAE authentication, but this is not valid if PMKSA caching is disabled.
Drivers might not be expecting PMKID when it is not valid. Do not send
the PMKID to the driver in such cases.

Signed-off-by: Srinivas Dasari <dasaris@codeaurora.org>

diff --git a/src/ap/ieee802_11.c b/src/ap/ieee802_11.c
index 741c4c2ecd18c2903bc010ada463f2c83e5ccf54..02f56701ee7e51e401d8dd0a88e7d28226c40b68 100644 (file)
--- a/src/ap/ieee802_11.c
+++ b/src/ap/ieee802_11.c
@@ -709,7 +709,8 @@ static void sae_sme_send_external_auth_status(struct hostapd_data *hapd,
        os_memset(&params, 0, sizeof(params));
        params.status = status;
        params.bssid = sta->addr;
-       if (status == WLAN_STATUS_SUCCESS && sta->sae)
+       if (status == WLAN_STATUS_SUCCESS && sta->sae &&
+           !hapd->conf->disable_pmksa_caching)
                params.pmkid = sta->sae->pmkid;
 
        hostapd_drv_send_external_auth_status(hapd, &params);