aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorFelix Fietkau <nbd@nbd.name>2021-05-27 13:15:40 +0200
committerFelix Fietkau <nbd@nbd.name>2021-06-02 09:33:12 +0200
commit704ab6a002172e76d41612f6d07ff179ef035d10 (patch)
tree3294e0b94028aebfa5c26bd99eed154c921f91ee
parentec223cf7246d3134f92974be2608ffe8ae8e46c2 (diff)
downloadupstream-704ab6a002172e76d41612f6d07ff179ef035d10.tar.gz
upstream-704ab6a002172e76d41612f6d07ff179ef035d10.tar.bz2
upstream-704ab6a002172e76d41612f6d07ff179ef035d10.zip
hostapd: add default values for r0kh/r1kh
This allows WPA enterprise roaming in the same mobility domain without any manual key configuration (aside from radius credentials) Signed-off-by: Felix Fietkau <nbd@nbd.name>
-rw-r--r--package/network/services/hostapd/files/hostapd.sh7
1 files changed, 7 insertions, 0 deletions
diff --git a/package/network/services/hostapd/files/hostapd.sh b/package/network/services/hostapd/files/hostapd.sh
index 9993bc9047..687a8d950a 100644
--- a/package/network/services/hostapd/files/hostapd.sh
+++ b/package/network/services/hostapd/files/hostapd.sh
@@ -812,6 +812,13 @@ hostapd_set_bss_options() {
set_default r0_key_lifetime 10000
set_default pmk_r1_push 0
+ [ -n "$r0kh" -a -n "$r1kh" ] || {
+ key=`echo -n "$mobility_domain/$auth_secret" | md5sum | awk '{print $1}'`
+
+ set_default r0kh "ff:ff:ff:ff:ff:ff,*,$key"
+ set_default r1kh "00:00:00:00:00:00,00:00:00:00:00:00,$key"
+ }
+
[ -n "$r1_key_holder" ] && append bss_conf "r1_key_holder=$r1_key_holder" "$N"
append bss_conf "r0_key_lifetime=$r0_key_lifetime" "$N"
append bss_conf "pmk_r1_push=$pmk_r1_push" "$N"