aboutsummaryrefslogtreecommitdiffstats
path: root/wpa_supplicant/defconfig
diff options
context:
space:
mode:
authorJouni Malinen <j@w1.fi>2019-07-09 13:56:02 (GMT)
committerJouni Malinen <j@w1.fi>2019-07-09 13:56:02 (GMT)
commit0ed57c5ea8cf1ec32698b1a876bb014ebfc1136f (patch)
tree9af821327604e40c3a6d8fa07140344e74491552 /wpa_supplicant/defconfig
parent7c6f1c5e4a24d0e7e0bd71222df56d7e2a7149fa (diff)
downloadhostap-0ed57c5ea8cf1ec32698b1a876bb014ebfc1136f.zip
hostap-0ed57c5ea8cf1ec32698b1a876bb014ebfc1136f.tar.gz
hostap-0ed57c5ea8cf1ec32698b1a876bb014ebfc1136f.tar.bz2
EAP-TEAP server and peer implementation (RFC 7170)
This adds support for a new EAP method: EAP-TEAP (Tunnel Extensible Authentication Protocol). This should be considered experimental since RFC 7170 has number of conflicting statements and missing details to allow unambiguous interpretation. As such, there may be interoperability issues with other implementations and this version should not be deployed for production purposes until those unclear areas are resolved. This does not yet support use of NewSessionTicket message to deliver a new PAC (either in the server or peer implementation). In other words, only the in-tunnel distribution of PAC-Opaque is supported for now. Use of the NewSessionTicket mechanism would require TLS library support to allow arbitrary data to be specified as the contents of the message. Signed-off-by: Jouni Malinen <j@w1.fi>
Diffstat (limited to 'wpa_supplicant/defconfig')
-rw-r--r--wpa_supplicant/defconfig10
1 files changed, 10 insertions, 0 deletions
diff --git a/wpa_supplicant/defconfig b/wpa_supplicant/defconfig
index 9cceda4..cdfb197 100644
--- a/wpa_supplicant/defconfig
+++ b/wpa_supplicant/defconfig
@@ -111,6 +111,16 @@ CONFIG_EAP_TTLS=y
# EAP-FAST
CONFIG_EAP_FAST=y
+# EAP-TEAP
+# Note: The current EAP-TEAP implementation is experimental and should not be
+# enabled for production use. The IETF RFC 7170 that defines EAP-TEAP has number
+# of conflicting statements and missing details and the implementation has
+# vendor specific workarounds for those and as such, may not interoperate with
+# any other implementation. This should not be used for anything else than
+# experimentation and interoperability testing until those issues has been
+# resolved.
+#CONFIG_EAP_TEAP=y
+
# EAP-GTC
CONFIG_EAP_GTC=y