1 hostapd_set_bss_options
() {
4 local enc wpa_group_rekey
6 config_get enc
"$vif" encryption
7 config_get wpa_group_rekey
"$vif" wpa_group_rekey
8 config_get_bool ap_isolate
"$vif" isolate
0
10 config_get device
"$vif" device
11 config_get hwmode
"$device" hwmode
13 if [ "$ap_isolate" -gt 0 ]; then
14 append
"$var" "ap_isolate=$ap_isolate" "$N"
18 # psk-mixed/tkip => WPA1+2 PSK, TKIP
19 # wpa-psk2/tkip+aes => WPA2 PSK, CCMP+TKIP
20 # wpa2/tkip+aes => WPA2 RADIUS, CCMP+TKIP
23 # TODO: move this parsing function somewhere generic, so that
24 # later it can be reused by drivers that don't use hostapd
26 # crypto defaults: WPA2 vs WPA1
42 # explicit override for crypto setting
44 *tkip
+aes|
*tkip
+ccmp|
*aes
+tkip|
*ccmp
+tkip
) crypto
="CCMP TKIP";;
45 *aes|
*ccmp
) crypto
="CCMP";;
46 *tkip
) crypto
="TKIP";;
49 # enforce CCMP for 11ng and 11na
51 *ng|
*na
) crypto
="CCMP";;
54 # use crypto/auth settings for building the hostapd config
57 config_get psk
"$vif" key
58 if [ ${#psk} -eq 64 ]; then
59 append
"$var" "wpa_psk=$psk" "$N"
61 append
"$var" "wpa_passphrase=$psk" "$N"
65 # required fields? formats?
66 # hostapd is particular, maybe a default configuration for failures
67 config_get server
"$vif" server
68 append
"$var" "auth_server_addr=$server" "$N"
69 config_get port
"$vif" port
71 append
"$var" "auth_server_port=$port" "$N"
72 config_get secret
"$vif" key
73 append
"$var" "auth_server_shared_secret=$secret" "$N"
74 config_get nasid
"$vif" nasid
75 append
"$var" "nas_identifier=$nasid" "$N"
76 append
"$var" "eapol_key_index_workaround=1" "$N"
77 append
"$var" "radius_acct_interim_interval=300" "$N"
78 append
"$var" "ieee8021x=1" "$N"
79 append
"$var" "auth_algs=1" "$N"
80 append
"$var" "wpa_key_mgmt=WPA-EAP" "$N"
81 append
"$var" "wpa_group_rekey=300" "$N"
82 append
"$var" "wpa_gmk_rekey=640" "$N"
85 config_get key
"$vif" key
89 for idx
in 1 2 3 4; do
92 config_get ckey
"$vif" "key${idx}"
94 append
"$var" "wep_key${zidx}=$(prepare_key_wep "$ckey")" "$N"
96 append
"$var" "wep_default_key=$((key - 1))" "$N"
99 append
"$var" "wep_key0=$(prepare_key_wep "$key")" "$N"
100 append
"$var" "wep_default_key=0" "$N"
111 append
"$var" "wpa=$wpa" "$N"
112 [ -n "$crypto" ] && append
"$var" "wpa_pairwise=$crypto" "$N"
113 [ -n "$wpa_group_rekey" ] && append
"$var" "wpa_group_rekey=$wpa_group_rekey" "$N"
115 config_get ssid
"$vif" ssid
116 config_get bridge
"$vif" bridge
117 config_get ieee80211d
"$vif" ieee80211d
119 append
"$var" "ssid=$ssid" "$N"
120 [ -n "$bridge" ] && append
"$var" "bridge=$bridge" "$N"
121 [ -n "$ieee80211d" ] && append
"$var" "ieee80211d=$ieee80211d" "$N"
123 [ "$wpa" -ge "2" ] && config_get ieee80211w
"$vif" ieee80211w
124 case "$ieee80211w" in
126 append
"$var" "ieee80211w=$ieee80211w" "$N"
127 [ "$ieee80211w" -gt "0" ] && {
128 config_get ieee80211w_max_timeout
"$vif" ieee80211w_max_timeout
129 config_get ieee80211w_retry_timeout
"$vif" ieee80211w_retry_timeout
130 [ -n "$ieee80211w_max_timeout" ] && \
131 append
"$var" "assoc_sa_query_max_timeout=$ieee80211w_max_timeout" "$N"
132 [ -n "$ieee80211w_retry_timeout" ] && \
133 append
"$var" "assoc_sa_query_retry_timeout=$ieee80211w_retry_timeout" "$N"
139 hostapd_setup_vif
() {
144 hostapd_set_bss_options hostapd_cfg
"$vif"
145 config_get ifname
"$vif" ifname
146 config_get device
"$vif" device
147 config_get channel
"$device" channel
148 config_get hwmode
"$device" hwmode
150 *bg|
*gdt|
*gst|
*fh
) hwmode
=g
;;
151 *adt|
*ast
) hwmode
=a
;;
153 [ "$channel" = auto
] && channel
=
154 [ -n "$channel" -a -z "$hwmode" ] && wifi_fixup_hwmode
"$device"
155 cat > /var
/run
/hostapd-
$ifname.conf
<<EOF
156 ctrl_interface=/var/run/hostapd-$ifname
159 ${hwmode:+hw_mode=${hwmode#11}}
160 ${channel:+channel=$channel}
163 hostapd
-P /var
/run
/wifi-
$ifname.pid
-B /var
/run
/hostapd-
$ifname.conf
projects / openwrt.git / blob