hostapd used to allow the configured wpa_passphrase value to be used for
either WPA2-Personal or WPA3-Personal (SAE). This was allowed in all
cases for SAE other than when there was a matching sae_password entry
for the STA.
Add a new configuration option, sae_password_psk=1, to allow use of
wpa_passphrase for SAE to be disabled. This leaves wpa_passphrase to be
used only for WPA2-Personal cases while WPA3-Personal will use only the
SAE-specific password configuration options.
Signed-off-by: Jouni Malinen <jouni.malinen@oss.qualcomm.com>
line);
return 1;
}
+ } else if (os_strcmp(buf, "sae_password_psk") == 0) {
+ bss->sae_password_psk = atoi(pos);
} else if (os_strcmp(buf, "sae_track_password") == 0) {
bss->sae_track_password = atoi(pos);
#endif /* CONFIG_SAE */
# contains and entry in the same format as sae_password uses.
#sae_password_file=/tc/hostapd.sae_passwords
+# Whether to use wpa_passphrase as an SAE password
+# 0 = enabled if no matching sae_password is set (default)
+# 1 = disabled in all cases
+#sae_password_psk=0
+
# Tracking of SAE password use
# While SAE design does not allow the AP to determine the used password robustly
# if multiple password are configured without use of password identifiers, a
enum sae_pwe sae_pwe;
int *sae_groups;
struct sae_password_entry *sae_passwords;
+ int sae_password_psk;
int sae_track_password;
char *wowlan_triggers; /* Wake-on-WLAN triggers */
pk = pw->pk;
break;
}
- if (!password && !rx_id) {
+ if (!password && !rx_id && !hapd->conf->sae_password_psk) {
password = hapd->conf->ssid.wpa_passphrase;
pt = hapd->conf->ssid.pt;
}
projects / thirdparty / hostap.git / commitdiff
