From: Purushottam Kushwaha <pkushwah@codeaurora.org>
Date: Fri, 14 Jun 2019 07:50:01 +0000 (+0530)
Subject: HS 2.0: Skip credential without EAP method for roaming consortium match
X-Git-Tag: hostap_2_9~152
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=dcc31e7957c2ff949bce4cb82e3a2b1f4090e6cc;p=thirdparty%2Fhostap.git

HS 2.0: Skip credential without EAP method for roaming consortium match

EAP method is required for a credential that matches configured
roaming_consortium with an Interworking AP. Hence skip credentials which
do not have EAP method specified for this match. This fixes an issue
where a credential that cannot work without EAP method from NAI Realms
information is selected first based on roaming consortium.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
---

diff --git a/wpa_supplicant/interworking.c b/wpa_supplicant/interworking.c
index dfab9f569..dd35571d9 100644
--- a/wpa_supplicant/interworking.c
+++ b/wpa_supplicant/interworking.c
@@ -1388,6 +1388,9 @@ static struct wpa_cred * interworking_credentials_available_roaming_consortium(
 		    cred->num_roaming_consortiums == 0)
 			continue;
 
+		if (!cred->eap_method)
+			continue;
+
 		if ((cred->roaming_consortium_len == 0 ||
 		     !roaming_consortium_match(ie, anqp,
 					       cred->roaming_consortium,