diff options
author | Jouni Malinen <j@w1.fi> | 2016-12-03 15:49:37 (GMT) |
---|---|---|
committer | Jouni Malinen <j@w1.fi> | 2016-12-03 15:49:37 (GMT) |
commit | 0771e912ae570a75b03fe9c52bc18b1db272602c (patch) | |
tree | e9514269a8359a427c820b9a565e62b18e6113ab /wpa_supplicant/README | |
parent | 6d97561dcda1756f081817e541cc2712d8dbf03c (diff) | |
download | hostap-0771e912ae570a75b03fe9c52bc18b1db272602c.zip hostap-0771e912ae570a75b03fe9c52bc18b1db272602c.tar.gz hostap-0771e912ae570a75b03fe9c52bc18b1db272602c.tar.bz2 |
wpa_priv: Document reduced functionality
wpa_priv has never really been fully up-to-date with the wpa_supplicant
driver interface extensions. This does not seem like something that
would change in the future either, so document this reduced
functionality as a potential drawback.
Signed-off-by: Jouni Malinen <j@w1.fi>
Diffstat (limited to 'wpa_supplicant/README')
-rw-r--r-- | wpa_supplicant/README | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/wpa_supplicant/README b/wpa_supplicant/README index 11ab01a..54564f6 100644 --- a/wpa_supplicant/README +++ b/wpa_supplicant/README @@ -965,6 +965,17 @@ wpa_priv can control multiple interface with one process, but it is also possible to run multiple wpa_priv processes at the same time, if desired. +It should be noted that the interface used between wpa_supplicant and +wpa_priv does not include all the capabilities of the wpa_supplicant +driver interface and at times, this interface lacks update especially +for recent addition. Consequently, use of wpa_priv does come with the +price of somewhat reduced available functionality. The next section +describing how wpa_supplicant can be used with reduced privileges +without having to handle the complexity of separate wpa_priv. While that +approve does not provide separation for network admin capabilities, it +does allow other root privileges to be dropped without the drawbacks of +the wpa_priv process. + Linux capabilities instead of privileged process ------------------------------------------------ |