diff options
authorJouni Malinen <j@w1.fi>2016-12-03 15:49:37 (GMT)
committerJouni Malinen <j@w1.fi>2016-12-03 15:49:37 (GMT)
commit0771e912ae570a75b03fe9c52bc18b1db272602c (patch)
parent6d97561dcda1756f081817e541cc2712d8dbf03c (diff)
wpa_priv: Document reduced functionality
wpa_priv has never really been fully up-to-date with the wpa_supplicant driver interface extensions. This does not seem like something that would change in the future either, so document this reduced functionality as a potential drawback. Signed-off-by: Jouni Malinen <j@w1.fi>
1 files changed, 11 insertions, 0 deletions
diff --git a/wpa_supplicant/README b/wpa_supplicant/README
index 11ab01a..54564f6 100644
--- a/wpa_supplicant/README
+++ b/wpa_supplicant/README
@@ -965,6 +965,17 @@ wpa_priv can control multiple interface with one process, but it is
also possible to run multiple wpa_priv processes at the same time, if
+It should be noted that the interface used between wpa_supplicant and
+wpa_priv does not include all the capabilities of the wpa_supplicant
+driver interface and at times, this interface lacks update especially
+for recent addition. Consequently, use of wpa_priv does come with the
+price of somewhat reduced available functionality. The next section
+describing how wpa_supplicant can be used with reduced privileges
+without having to handle the complexity of separate wpa_priv. While that
+approve does not provide separation for network admin capabilities, it
+does allow other root privileges to be dropped without the drawbacks of
+the wpa_priv process.
Linux capabilities instead of privileged process