path: root/hostapd/defconfig
Commit message (Collapse)AuthorAgeFilesLines
* hostapd: Add MBO IE to Beacon, Probe Response, Association ResponseAvraham Stern2016-02-221-0/+5
| | | | | | | | | | | | | | | | | | Add MBO IE with AP capability attribute to Beacon, Probe Response, and (Re)Association Response frames to indicate the AP supports MBO. Add option to add Association Disallowed attribute to Beacon, Probe Response, and (Re)Association Response frames. Usage: SET mbo_assoc_disallow <reason code> Valid reason code values are between 1-5. Setting the reason code to 0 will remove the Association Disallowed attribute from the MBO IE and will allow new associations. MBO functionality is enabled by setting "mbo=1" in the config file. Signed-off-by: Avraham Stern <avraham.stern@intel.com>
* Add CONFIG_ELOOP_KQUEUE to defconfigRoy Marples2016-02-181-0/+3
| | | | Signed-off-by: Roy Marples <roy@marples.name>
* nl80211: Add build option for QCA vendor extensionsJouni Malinen2015-10-011-0/+3
| | | | | | | This allows the binary sizes to be reduced if no support for nl80211 vendor extensions are needed. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
* hostapd: Add build options for selecting eloop typeJouni Malinen2015-07-231-0/+6
| | | | | | | | This adds CONFIG_ELOOP_POLL=y and CONFIG_ELOOP_EPOLL=y options to hostapd build options similarly to how these were implemented for wpa_supplicant. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
* FST: Testing supportAnton Nayshtut2015-07-161-0/+3
| | | | | | This patch introduces infrastructure needed for FST module tests. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
* FST: Add build rules for hostapdAnton Nayshtut2015-07-161-0/+3
| | | | | | This patch integrates the FST into the hostapd. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
* ERP: Add support for ERP on EAP server and authenticatorJouni Malinen2014-12-041-0/+3
| | | | | | | | | | | | | Derive rRK and rIK on EAP server if ERP is enabled and use these keys to allow EAP re-authentication to be used and to derive rMSK. The new hostapd configuration parameter eap_server_erp=1 can now be used to configure the integrated EAP server to derive EMSK, rRK, and rIK at the successful completion of an EAP authentication method. This functionality is not included in the default build and can be enabled with CONFIG_ERP=y. Signed-off-by: Jouni Malinen <j@w1.fi>
* Remove references to madwifi from various filesJouni Malinen2014-11-011-5/+1
| | | | | | | | Number of documentation and configuration files had references to the madwifi driver interface that was removed in the previous commit. Remove these references as well. Signed-off-by: Jouni Malinen <j@w1.fi>
* WPS: Enable WSC 2.0 support unconditionallyJouni Malinen2014-03-251-2/+0
| | | | | | | | | There is not much point in building devices with WPS 1.0 only supported nowadays. As such, there is not sufficient justification for maintaining extra complexity for the CONFIG_WPS2 build option either. Remove this by enabling WSC 2.0 support unconditionally. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
* hostapd: Enable IEEE 802.11w in defconfigHelmut Schaa2014-02-141-4/+1
| | | | | | | IEEE 802.11w is ratified since 2009 already, so this comment does not seem to be valid anymore. Signed-hostap: Helmut Schaa <helmut.schaa@googlemail.com>
* nl80211: Document how to configure for libnl 2.0 and 3.2Ben Greear2014-01-071-0/+13
| | | | | | Reported-by: Xose Vazquez Perez <xose.vazquez@gmail.com> Signed-hostap: Ben Greear <greearb@candelatech.com>
* Remove hostapd dump_file functionalityJouni Malinen2014-01-021-1/+1
| | | | | | | | | | This debugging mechanism has now been deprecated by the control interface commands that can be used to fetch same internal information from hostapd in a more convenient way. Leave the empty USR1 signal handler and configuration file parameter for backwards compatibility. They can be removed in future versions of hostapd. Signed-hostap: Jouni Malinen <j@w1.fi>
* Update EAP-FAST note regarding OpenSSL supportJouni Malinen2014-01-021-4/+3
| | | | | | This is now supported in the current OpenSSL version. Signed-hostap: Jouni Malinen <j@w1.fi>
* hostapd: Add -T Linux tracing optionJohannes Berg2013-10-311-0/+6
| | | | | | | | Just like wpa_supplicant, give hostapd the -T option to send all debug messages into the Linux tracing buffer. Enable this option for hwsim test builds by default. Signed-hostap: Johannes Berg <johannes.berg@intel.com>
* hostapd: Add Automatic Channel Selection (ACS) supportMichal Kazior2013-08-311-0/+24
| | | | | | | | | | | | | | This adds ACS support to hostapd. Currently only survey-based algorithm is available. To use ACS you need to enable CONFIG_ACS=y in .config and use channel=0 (or channel=acs_survey) in hostapd.conf. For more details see wiki page [1] or comments in src/ap/acs.c. [1]: http://wireless.kernel.org/en/users/Documentation/acs Signed-hostap: Michal Kazior <michal.kazior@tieto.com>
* EAP-EKE: Add server implementationJouni Malinen2013-07-071-0/+3
| | | | | | This adds a new password-based EAP method defined in RFC 6124. Signed-hostap: Jouni Malinen <j@w1.fi>
* hostapd: Add some testing optionsJohannes Berg2013-04-231-0/+8
| | | | | | | | | | In order to test clients in scenarios where APs may (randomly) drop certain management frames, introduce some testing options into the hostapd configuration that can make it ignore certain frames. For now, these are probe requests, authentication and (re)association frames. Signed-hostap: Johannes Berg <johannes.berg@intel.com>
* Add preliminary support for using SQLite for eap_user databaseJouni Malinen2012-11-201-1/+1
| | | | | | | | | | | | | CONFIG_SQLITE=y option can now be used to allow the eap_user_file text file to be replaced with a SQLite database (eap_user_file=sqlite:/path/to/sqlite.db). hostapd.eap_user_sqlite shows an example of how the database tables can be created for this purpose. This commit does not yet include full functionality of the text file format, but at least basic EAP-TTLS/MSCHAPv2 style authentication mechanisms with plaintext passwords can be used for tests. Signed-hostap: Jouni Malinen <j@w1.fi>
* hlr_auc_gw: Add SQLite database support for Milenage informationJouni Malinen2012-08-191-0/+3
| | | | | | | | An SQLite database can now be used to manage the Milenage information instead of a text file. The new hlr_auc_gw.txt document describes how this is configured and used. Signed-hostap: Jouni Malinen <j@w1.fi>
* Add option to use netlink to create and remove VLAN interfacesMichael Braun2012-08-101-0/+4
| | | | | | | | CONFIG_VLAN_NETLINK=y build option can now be used to replace the ioctl()-based interface for creating and removing VLAN interfaces with netlink-based interface. Signed-hostap: M. Braun <michael-dev@fami-braun.de>
* HS 2.0: Add configuration for Hotspot 2.0 AP supportJay Katabathuni2012-07-301-0/+3
| | | | Signed-hostap: Jouni Malinen <jouni@qca.qualcomm.com>
* hostapd: Initial IEEE 802.11ac (VHT) definitionsMahesh Palivela2012-06-301-0/+3
| | | | | | Add IEEE 802.11ac definitions for config, IEEE structures, constants. Signed-hostap: Mahesh Palivela <maheshp@posedge.com>
* WPS: Document NFC use cases with password/config tokenJouni Malinen2012-06-281-0/+2
| | | | Signed-hostap: Jouni Malinen <j@w1.fi>
* WNM: Add advertisement of BSS max idle periodJouni Malinen2012-05-281-0/+4
| | | | | | | | | | | If WNM is enabled for the build (CONFIG_WNM=y), add BSS max idle period information to the (Re)Association Response frame from the AP and parse this information on the station. For SME-in-wpa_supplicant case, add a timer to handle periodic transmission of the keep-alive frame. The actual request for the driver to transmit a frame is not yet implemented. Signed-hostap: Jouni Malinen <j@w1.fi>
* EAP-pwd: Describe build option for EAP-pwdDan Harkins2012-02-111-0/+3
| | | | Signed-hostap: Dan Harkins <dharkins@lounge.org>
* TLS: Add build configuration for TLS v1.2 supportJouni Malinen2011-11-271-0/+4
| | | | | | | | | This allows the internal TLS implementation to be built for TLS v1.2 support. In addition to the build option, this changes the TLS PRF based on the negotiated version number. Though, this commit does not yet complete support for TLS v1.2. Signed-hostap: Jouni Malinen <j@w1.fi>
* IEEE 802.11u: Add configuration and advertisement for InterworkingJouni Malinen2011-10-161-0/+5
* Remove EAP-TTLSv1 and TLS/IAJouni Malinen2011-09-251-9/+1
| | | | | | | | | | | | | | These protocols seem to be abandoned: latest IETF drafts have expired years ago and it does not seem likely that EAP-TTLSv1 would be deployed. The implementation in hostapd/wpa_supplicant was not complete and not fully tested. In addition, the TLS/IA functionality was only available when GnuTLS was used. Since GnuTLS removed this functionality in 3.0.0, there is no available TLS/IA implementation in the latest version of any supported TLS library. Remove the EAP-TTLSv1 and TLS/IA implementation to clean up unwanted complexity from hostapd and wpa_supplicant. In addition, this removes any potential use of the GnuTLS extra library.
* TLS: Add support for TLS v1.1 (RFC 4346) with internal TLSJouni Malinen2011-09-251-0/+36
| | | | | This is disabled by defautl and can be enabled with CONFIG_TLSV11=y build configuration parameter.
* random: Add support for maintaining internal entropy store over restartsJouni Malinen2011-05-311-2/+8
| | | | | | | This can be used to avoid rejection of first two 4-way handshakes every time hostapd (or wpa_supplicant in AP/IBSS mode) is restarted. A new command line parameter, -e, can now be used to specify an entropy file that will be used to maintain the needed state.
* Include nl80211 driver wrapper in default configuration for hostapdJouni Malinen2011-05-161-1/+1
* Remove obsolete comments about libnl 1.1 being newJouni Malinen2011-02-211-6/+0
* hostapd: Allow logging to fileBen Greear2011-02-061-0/+4
| | | | | | Also supports 'relog' CLI command to re-open the log file. Signed-off-by: Ben Greear <greearb@candelatech.com>
* Maintain internal entropy pool for augmenting random number generationJouni Malinen2010-11-231-0/+25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | By default, make hostapd and wpa_supplicant maintain an internal entropy pool that is fed with following information: hostapd: - Probe Request frames (timing, RSSI) - Association events (timing) - SNonce from Supplicants wpa_supplicant: - Scan results (timing, signal/noise) - Association events (timing) The internal pool is used to augment the random numbers generated with the OS mechanism (os_get_random()). While the internal implementation is not expected to be very strong due to limited amount of generic (non-platform specific) information to feed the pool, this may strengthen key derivation on some devices that are not configured to provide strong random numbers through os_get_random() (e.g., /dev/urandom on Linux/BSD). This new mechanism is not supposed to replace proper OS provided random number generation mechanism. The OS mechanism needs to be initialized properly (e.g., hw random number generator, maintaining entropy pool over reboots, etc.) for any of the security assumptions to hold. If the os_get_random() is known to provide strong ramdom data (e.g., on Linux/BSD, the board in question is known to have reliable source of random data from /dev/urandom), the internal hostapd random pool can be disabled. This will save some in binary size and CPU use. However, this should only be considered for builds that are known to be used on devices that meet the requirements described above. The internal pool is disabled by adding CONFIG_NO_RANDOM_POOL=y to the .config file.
* Fix a typo in the commentJouni Malinen2010-11-101-1/+1
* hostapd: Add comment about CONFIG_FULL_DYNAMIC_VLAN to defconfigHelmut Schaa2010-11-091-0/+4
| | | | | | | Add comment about CONFIG_FULL_DYNAMIC_VLAN to defconfig. By default this feature is still disabled. Signed-off-by: Helmut Schaa <helmut.schaa@googlemail.com>
* WPS 2.0: Make WSC 2.0 support to be build option (CONFIG_WPS2)Jouni Malinen2010-09-091-0/+2
| | | | | For now, the default build will only include WSC 1.0 support. CONFIG_WPS2=y can be used to add support for WSC 2.0.
* bsd: Add support for WPA_TRACE and WPA_TRACE_BFDMasashi Honma2010-01-091-0/+10
| | | | On FreeBSD 8.0, WPA_TRACE and WPA_TRACE_BFD functionality build fails.
* Comment CONFIG_WPA_TRACE_BFD=y out by defaultJouni Malinen2009-12-231-1/+1
* Describe tracing build options for developersJouni Malinen2009-12-201-0/+10
* Remove obsolete Prism54.org driver support (driver_prism54.c)Jouni Malinen2009-12-121-3/+0
| | | | | | | | | | | | | | | | | The Prism54.org project seems have been dead for a while and it does not look like this driver would ever be maintained again. Furthermore, it is difficult to find a version that would work with the driver_prism54.c wrapper and there is another driver for these card in the Linux kernel tree. The hostapd integration in driver_prism54.c is quite different from the other driver wrappers and would require major effort to get it cleaned up. Since there does not seem to be any real users for the cleaned up version, there does not seem to be justification to spend this effort on the wrapper. This old code is making it much more difficult to clean up the driver interface and at this point, the best option seems to be to remove the driver wrappers. Should someone really still need this, the old code will continue to be available in hostapd 0.6.x.
* Make HOSTAPD_DUMP_STATE configurable with CONFIG_NO_DUMP_STATEJouni Malinen2009-11-291-0/+5
| | | | | | This removes the hardcoded definition from Makefile and cleans up source code by moving the mail HOSTAPD_DUMP_STATE blocks into separate files to avoid conditional compilation within files.
* Use better examples for MadWifi path in defconfig, clarify commentsPavel Roskin2009-02-041-1/+1
| | | | | | | | MadWifi is unlikely to be in ../head relative to hostapd or wpa_supplicant, as it would be inside the hostap git repository. MadWifi sources are more likely to be in a directory called "madwifi" and residing outside the hostap repository. Using "madwifi" also demonstrates that the top-level madwifi directory is needed.
* Added notes about WPS UPnP support and external RegistrarsJouni Malinen2009-01-291-0/+2
* Added build option for removing VLAN support (CONFIG_NO_VLAN)Jouni Malinen2009-01-121-0/+3
* Added support for removing RADIUS accounting and RADIUS in generalJouni Malinen2009-01-081-0/+6
| | | | | CONFIG_NO_ACCOUNTING=y and CONFIG_NO_RADIUS=y build options can now be used to remove RADIUS support from the hostapd build.
* Added CONFIG_NO_STDOUT_DEBUG for hostapdJouni Malinen2009-01-081-0/+5
| | | | | This is similar to one in wpa_supplicant and can be used to reduce the binary size by removing debugging messages.
* Added CONFIG_IEEE80211N into defconfig (commented out)Jouni Malinen2008-12-091-0/+3
* Updated the comment about libnl to state that version 1.1 is new enoughJouni Malinen2008-12-091-2/+3
* Merged EAP-AKA' into eap_aka.c and added it to defconfig/ChangeLogJouni Malinen2008-12-071-0/+4