source: rtems-libbsd/freebsd/contrib/wpa/wpa_supplicant/config.h

Last change on this file was a5ddb0e, checked in by Sebastian Huber <sebastian.huber@…>, on Sep 24, 2019 at 9:05:03 AM

Update to FreeBSD head 2019-09-24

Git mirror commit 6b0307a0a5184339393f555d5d424190d8a8277a.

  • Property mode set to 100644
File size: 50.3 KB
Line 
1/*
2 * WPA Supplicant / Configuration file structures
3 * Copyright (c) 2003-2012, Jouni Malinen <j@w1.fi>
4 *
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
7 */
8
9#ifndef CONFIG_H
10#define CONFIG_H
11
12#define DEFAULT_EAPOL_VERSION 1
13#ifdef CONFIG_NO_SCAN_PROCESSING
14#define DEFAULT_AP_SCAN 2
15#else /* CONFIG_NO_SCAN_PROCESSING */
16#define DEFAULT_AP_SCAN 1
17#endif /* CONFIG_NO_SCAN_PROCESSING */
18#define DEFAULT_USER_MPM 1
19#define DEFAULT_MAX_PEER_LINKS 99
20#define DEFAULT_MESH_MAX_INACTIVITY 300
21/*
22 * The default dot11RSNASAERetransPeriod is defined as 40 ms in the standard,
23 * but use 1000 ms in practice to avoid issues on low power CPUs.
24 */
25#define DEFAULT_DOT11_RSNA_SAE_RETRANS_PERIOD 1000
26#define DEFAULT_FAST_REAUTH 1
27#define DEFAULT_P2P_GO_INTENT 7
28#define DEFAULT_P2P_INTRA_BSS 1
29#define DEFAULT_P2P_GO_MAX_INACTIVITY (5 * 60)
30#define DEFAULT_P2P_OPTIMIZE_LISTEN_CHAN 0
31#define DEFAULT_BSS_MAX_COUNT 200
32#define DEFAULT_BSS_EXPIRATION_AGE 180
33#define DEFAULT_BSS_EXPIRATION_SCAN_COUNT 2
34#define DEFAULT_MAX_NUM_STA 128
35#define DEFAULT_AP_ISOLATE 0
36#define DEFAULT_ACCESS_NETWORK_TYPE 15
37#define DEFAULT_SCAN_CUR_FREQ 0
38#define DEFAULT_P2P_SEARCH_DELAY 500
39#define DEFAULT_RAND_ADDR_LIFETIME 60
40#define DEFAULT_KEY_MGMT_OFFLOAD 1
41#define DEFAULT_CERT_IN_CB 1
42#define DEFAULT_P2P_GO_CTWINDOW 0
43#define DEFAULT_WPA_RSC_RELAXATION 1
44#define DEFAULT_MBO_CELL_CAPA MBO_CELL_CAPA_NOT_SUPPORTED
45#define DEFAULT_DISASSOC_IMMINENT_RSSI_THRESHOLD -75
46#define DEFAULT_OCE_SUPPORT OCE_STA
47
48#include "config_ssid.h"
49#include "wps/wps.h"
50#include "common/ieee802_11_defs.h"
51#include "common/ieee802_11_common.h"
52
53#ifdef __rtems__
54#include <machine/rtems-bsd-commands.h>
55#endif /* __rtems__ */
56
57#define MAX_ROAMING_CONS 36
58#define MAX_ROAMING_CONS_OI_LEN 15
59
60struct wpa_cred {
61        /**
62         * next - Next credential in the list
63         *
64         * This pointer can be used to iterate over all credentials. The head
65         * of this list is stored in the cred field of struct wpa_config.
66         */
67        struct wpa_cred *next;
68
69        /**
70         * id - Unique id for the credential
71         *
72         * This identifier is used as a unique identifier for each credential
73         * block when using the control interface. Each credential is allocated
74         * an id when it is being created, either when reading the
75         * configuration file or when a new credential is added through the
76         * control interface.
77         */
78        int id;
79
80        /**
81         * temporary - Whether this credential is temporary and not to be saved
82         */
83        int temporary;
84
85        /**
86         * priority - Priority group
87         *
88         * By default, all networks and credentials get the same priority group
89         * (0). This field can be used to give higher priority for credentials
90         * (and similarly in struct wpa_ssid for network blocks) to change the
91         * Interworking automatic networking selection behavior. The matching
92         * network (based on either an enabled network block or a credential)
93         * with the highest priority value will be selected.
94         */
95        int priority;
96
97        /**
98         * pcsc - Use PC/SC and SIM/USIM card
99         */
100        int pcsc;
101
102        /**
103         * realm - Home Realm for Interworking
104         */
105        char *realm;
106
107        /**
108         * username - Username for Interworking network selection
109         */
110        char *username;
111
112        /**
113         * password - Password for Interworking network selection
114         */
115        char *password;
116
117        /**
118         * ext_password - Whether password is a name for external storage
119         */
120        int ext_password;
121
122        /**
123         * ca_cert - CA certificate for Interworking network selection
124         */
125        char *ca_cert;
126
127        /**
128         * client_cert - File path to client certificate file (PEM/DER)
129         *
130         * This field is used with Interworking networking selection for a case
131         * where client certificate/private key is used for authentication
132         * (EAP-TLS). Full path to the file should be used since working
133         * directory may change when wpa_supplicant is run in the background.
134         *
135         * Alternatively, a named configuration blob can be used by setting
136         * this to blob://blob_name.
137         */
138        char *client_cert;
139
140        /**
141         * private_key - File path to client private key file (PEM/DER/PFX)
142         *
143         * When PKCS#12/PFX file (.p12/.pfx) is used, client_cert should be
144         * commented out. Both the private key and certificate will be read
145         * from the PKCS#12 file in this case. Full path to the file should be
146         * used since working directory may change when wpa_supplicant is run
147         * in the background.
148         *
149         * Windows certificate store can be used by leaving client_cert out and
150         * configuring private_key in one of the following formats:
151         *
152         * cert://substring_to_match
153         *
154         * hash://certificate_thumbprint_in_hex
155         *
156         * For example: private_key="hash://63093aa9c47f56ae88334c7b65a4"
157         *
158         * Note that when running wpa_supplicant as an application, the user
159         * certificate store (My user account) is used, whereas computer store
160         * (Computer account) is used when running wpasvc as a service.
161         *
162         * Alternatively, a named configuration blob can be used by setting
163         * this to blob://blob_name.
164         */
165        char *private_key;
166
167        /**
168         * private_key_passwd - Password for private key file
169         */
170        char *private_key_passwd;
171
172        /**
173         * imsi - IMSI in <MCC> | <MNC> | '-' | <MSIN> format
174         */
175        char *imsi;
176
177        /**
178         * milenage - Milenage parameters for SIM/USIM simulator in
179         *      <Ki>:<OPc>:<SQN> format
180         */
181        char *milenage;
182
183        /**
184         * domain_suffix_match - Constraint for server domain name
185         *
186         * If set, this FQDN is used as a suffix match requirement for the AAA
187         * server certificate in SubjectAltName dNSName element(s). If a
188         * matching dNSName is found, this constraint is met. If no dNSName
189         * values are present, this constraint is matched against SubjectName CN
190         * using same suffix match comparison. Suffix match here means that the
191         * host/domain name is compared one label at a time starting from the
192         * top-level domain and all the labels in @domain_suffix_match shall be
193         * included in the certificate. The certificate may include additional
194         * sub-level labels in addition to the required labels.
195         *
196         * For example, domain_suffix_match=example.com would match
197         * test.example.com but would not match test-example.com.
198         */
199        char *domain_suffix_match;
200
201        /**
202         * domain - Home service provider FQDN(s)
203         *
204         * This is used to compare against the Domain Name List to figure out
205         * whether the AP is operated by the Home SP. Multiple domain entries
206         * can be used to configure alternative FQDNs that will be considered
207         * home networks.
208         */
209        char **domain;
210
211        /**
212         * num_domain - Number of FQDNs in the domain array
213         */
214        size_t num_domain;
215
216        /**
217         * roaming_consortium - Roaming Consortium OI
218         *
219         * If roaming_consortium_len is non-zero, this field contains the
220         * Roaming Consortium OI that can be used to determine which access
221         * points support authentication with this credential. This is an
222         * alternative to the use of the realm parameter. When using Roaming
223         * Consortium to match the network, the EAP parameters need to be
224         * pre-configured with the credential since the NAI Realm information
225         * may not be available or fetched.
226         */
227        u8 roaming_consortium[15];
228
229        /**
230         * roaming_consortium_len - Length of roaming_consortium
231         */
232        size_t roaming_consortium_len;
233
234        /**
235         * required_roaming_consortium - Required Roaming Consortium OI
236         *
237         * If required_roaming_consortium_len is non-zero, this field contains
238         * the Roaming Consortium OI that is required to be advertised by the AP
239         * for the credential to be considered matching.
240         */
241        u8 required_roaming_consortium[15];
242
243        /**
244         * required_roaming_consortium_len - Length of required_roaming_consortium
245         */
246        size_t required_roaming_consortium_len;
247
248        /**
249         * roaming_consortiums - Roaming Consortium OI(s) memberships
250         *
251         * This field contains one or more OIs identifying the roaming
252         * consortiums of which the provider is a member. The list is sorted
253         * from the most preferred one to the least preferred one. A match
254         * between the Roaming Consortium OIs advertised by an AP and the OIs
255         * in this list indicates that successful authentication is possible.
256         * (Hotspot 2.0 PerProviderSubscription/<X+>/HomeSP/RoamingConsortiumOI)
257         */
258        u8 roaming_consortiums[MAX_ROAMING_CONS][MAX_ROAMING_CONS_OI_LEN];
259
260        /**
261         * roaming_consortiums_len - Length on roaming_consortiums[i]
262         */
263        size_t roaming_consortiums_len[MAX_ROAMING_CONS];
264
265        /**
266         * num_roaming_consortiums - Number of entries in roaming_consortiums
267         */
268        unsigned int num_roaming_consortiums;
269
270        /**
271         * eap_method - EAP method to use
272         *
273         * Pre-configured EAP method to use with this credential or %NULL to
274         * indicate no EAP method is selected, i.e., the method will be
275         * selected automatically based on ANQP information.
276         */
277        struct eap_method_type *eap_method;
278
279        /**
280         * phase1 - Phase 1 (outer authentication) parameters
281         *
282         * Pre-configured EAP parameters or %NULL.
283         */
284        char *phase1;
285
286        /**
287         * phase2 - Phase 2 (inner authentication) parameters
288         *
289         * Pre-configured EAP parameters or %NULL.
290         */
291        char *phase2;
292
293        struct excluded_ssid {
294                u8 ssid[SSID_MAX_LEN];
295                size_t ssid_len;
296        } *excluded_ssid;
297        size_t num_excluded_ssid;
298
299        struct roaming_partner {
300                char fqdn[128];
301                int exact_match;
302                u8 priority;
303                char country[3];
304        } *roaming_partner;
305        size_t num_roaming_partner;
306
307        int update_identifier;
308
309        /**
310         * provisioning_sp - FQDN of the SP that provisioned the credential
311         */
312        char *provisioning_sp;
313
314        /**
315         * sp_priority - Credential priority within a provisioning SP
316         *
317         * This is the priority of the credential among all credentials
318         * provisionined by the same SP (i.e., for entries that have identical
319         * provisioning_sp value). The range of this priority is 0-255 with 0
320         * being the highest and 255 the lower priority.
321         */
322        int sp_priority;
323
324        unsigned int min_dl_bandwidth_home;
325        unsigned int min_ul_bandwidth_home;
326        unsigned int min_dl_bandwidth_roaming;
327        unsigned int min_ul_bandwidth_roaming;
328
329        /**
330         * max_bss_load - Maximum BSS Load Channel Utilization (1..255)
331         * This value is used as the maximum channel utilization for network
332         * selection purposes for home networks. If the AP does not advertise
333         * BSS Load or if the limit would prevent any connection, this
334         * constraint will be ignored.
335         */
336        unsigned int max_bss_load;
337
338        unsigned int num_req_conn_capab;
339        u8 *req_conn_capab_proto;
340        int **req_conn_capab_port;
341
342        /**
343         * ocsp - Whether to use/require OCSP to check server certificate
344         *
345         * 0 = do not use OCSP stapling (TLS certificate status extension)
346         * 1 = try to use OCSP stapling, but not require response
347         * 2 = require valid OCSP stapling response
348         */
349        int ocsp;
350
351        /**
352         * sim_num - User selected SIM identifier
353         *
354         * This variable is used for identifying which SIM is used if the system
355         * has more than one.
356         */
357        int sim_num;
358};
359
360
361#define CFG_CHANGED_DEVICE_NAME BIT(0)
362#define CFG_CHANGED_CONFIG_METHODS BIT(1)
363#define CFG_CHANGED_DEVICE_TYPE BIT(2)
364#define CFG_CHANGED_OS_VERSION BIT(3)
365#define CFG_CHANGED_UUID BIT(4)
366#define CFG_CHANGED_COUNTRY BIT(5)
367#define CFG_CHANGED_SEC_DEVICE_TYPE BIT(6)
368#define CFG_CHANGED_P2P_SSID_POSTFIX BIT(7)
369#define CFG_CHANGED_WPS_STRING BIT(8)
370#define CFG_CHANGED_P2P_INTRA_BSS BIT(9)
371#define CFG_CHANGED_VENDOR_EXTENSION BIT(10)
372#define CFG_CHANGED_P2P_LISTEN_CHANNEL BIT(11)
373#define CFG_CHANGED_P2P_OPER_CHANNEL BIT(12)
374#define CFG_CHANGED_P2P_PREF_CHAN BIT(13)
375#define CFG_CHANGED_EXT_PW_BACKEND BIT(14)
376#define CFG_CHANGED_NFC_PASSWORD_TOKEN BIT(15)
377#define CFG_CHANGED_P2P_PASSPHRASE_LEN BIT(16)
378#define CFG_CHANGED_SCHED_SCAN_PLANS BIT(17)
379#define CFG_CHANGED_WOWLAN_TRIGGERS BIT(18)
380#define CFG_CHANGED_DISABLE_BTM BIT(19)
381
382/**
383 * struct wpa_config - wpa_supplicant configuration data
384 *
385 * This data structure is presents the per-interface (radio) configuration
386 * data. In many cases, there is only one struct wpa_config instance, but if
387 * more than one network interface is being controlled, one instance is used
388 * for each.
389 */
390struct wpa_config {
391        /**
392         * ssid - Head of the global network list
393         *
394         * This is the head for the list of all the configured networks.
395         */
396        struct wpa_ssid *ssid;
397
398        /**
399         * pssid - Per-priority network lists (in priority order)
400         */
401        struct wpa_ssid **pssid;
402
403        /**
404         * num_prio - Number of different priorities used in the pssid lists
405         *
406         * This indicates how many per-priority network lists are included in
407         * pssid.
408         */
409        int num_prio;
410
411        /**
412         * cred - Head of the credential list
413         *
414         * This is the head for the list of all the configured credentials.
415         */
416        struct wpa_cred *cred;
417
418        /**
419         * eapol_version - IEEE 802.1X/EAPOL version number
420         *
421         * wpa_supplicant is implemented based on IEEE Std 802.1X-2004 which
422         * defines EAPOL version 2. However, there are many APs that do not
423         * handle the new version number correctly (they seem to drop the
424         * frames completely). In order to make wpa_supplicant interoperate
425         * with these APs, the version number is set to 1 by default. This
426         * configuration value can be used to set it to the new version (2).
427         */
428        int eapol_version;
429
430        /**
431         * ap_scan - AP scanning/selection
432         *
433         * By default, wpa_supplicant requests driver to perform AP
434         * scanning and then uses the scan results to select a
435         * suitable AP. Another alternative is to allow the driver to
436         * take care of AP scanning and selection and use
437         * wpa_supplicant just to process EAPOL frames based on IEEE
438         * 802.11 association information from the driver.
439         *
440         * 1: wpa_supplicant initiates scanning and AP selection (default).
441         *
442         * 0: Driver takes care of scanning, AP selection, and IEEE 802.11
443         * association parameters (e.g., WPA IE generation); this mode can
444         * also be used with non-WPA drivers when using IEEE 802.1X mode;
445         * do not try to associate with APs (i.e., external program needs
446         * to control association). This mode must also be used when using
447         * wired Ethernet drivers.
448         *
449         * 2: like 0, but associate with APs using security policy and SSID
450         * (but not BSSID); this can be used, e.g., with ndiswrapper and NDIS
451         * drivers to enable operation with hidden SSIDs and optimized roaming;
452         * in this mode, the network blocks in the configuration are tried
453         * one by one until the driver reports successful association; each
454         * network block should have explicit security policy (i.e., only one
455         * option in the lists) for key_mgmt, pairwise, group, proto variables.
456         *
457         * Note: ap_scan=2 should not be used with the nl80211 driver interface
458         * (the current Linux interface). ap_scan=1 is optimized work working
459         * with nl80211. For finding networks using hidden SSID, scan_ssid=1 in
460         * the network block can be used with nl80211.
461         */
462        int ap_scan;
463
464        /**
465         * bgscan - Background scan and roaming parameters or %NULL if none
466         *
467         * This is an optional set of parameters for background scanning and
468         * roaming within a network (ESS). For more detailed information see
469         * ssid block documentation.
470         *
471         * The variable defines default bgscan behavior for all BSS station
472         * networks except for those which have their own bgscan configuration.
473         */
474         char *bgscan;
475
476        /**
477         * disable_scan_offload - Disable automatic offloading of scan requests
478         *
479         * By default, %wpa_supplicant tries to offload scanning if the driver
480         * indicates support for this (sched_scan). This configuration
481         * parameter can be used to disable this offloading mechanism.
482         */
483        int disable_scan_offload;
484
485        /**
486         * ctrl_interface - Parameters for the control interface
487         *
488         * If this is specified, %wpa_supplicant will open a control interface
489         * that is available for external programs to manage %wpa_supplicant.
490         * The meaning of this string depends on which control interface
491         * mechanism is used. For all cases, the existence of this parameter
492         * in configuration is used to determine whether the control interface
493         * is enabled.
494         *
495         * For UNIX domain sockets (default on Linux and BSD): This is a
496         * directory that will be created for UNIX domain sockets for listening
497         * to requests from external programs (CLI/GUI, etc.) for status
498         * information and configuration. The socket file will be named based
499         * on the interface name, so multiple %wpa_supplicant processes can be
500         * run at the same time if more than one interface is used.
501         * /var/run/wpa_supplicant is the recommended directory for sockets and
502         * by default, wpa_cli will use it when trying to connect with
503         * %wpa_supplicant.
504         *
505         * Access control for the control interface can be configured
506         * by setting the directory to allow only members of a group
507         * to use sockets. This way, it is possible to run
508         * %wpa_supplicant as root (since it needs to change network
509         * configuration and open raw sockets) and still allow GUI/CLI
510         * components to be run as non-root users. However, since the
511         * control interface can be used to change the network
512         * configuration, this access needs to be protected in many
513         * cases. By default, %wpa_supplicant is configured to use gid
514         * 0 (root). If you want to allow non-root users to use the
515         * control interface, add a new group and change this value to
516         * match with that group. Add users that should have control
517         * interface access to this group.
518         *
519         * When configuring both the directory and group, use following format:
520         * DIR=/var/run/wpa_supplicant GROUP=wheel
521         * DIR=/var/run/wpa_supplicant GROUP=0
522         * (group can be either group name or gid)
523         *
524         * For UDP connections (default on Windows): The value will be ignored.
525         * This variable is just used to select that the control interface is
526         * to be created. The value can be set to, e.g., udp
527         * (ctrl_interface=udp).
528         *
529         * For Windows Named Pipe: This value can be used to set the security
530         * descriptor for controlling access to the control interface. Security
531         * descriptor can be set using Security Descriptor String Format (see
532         * http://msdn.microsoft.com/library/default.asp?url=/library/en-us/secauthz/security/security_descriptor_string_format.asp).
533         * The descriptor string needs to be prefixed with SDDL=. For example,
534         * ctrl_interface=SDDL=D: would set an empty DACL (which will reject
535         * all connections).
536         */
537        char *ctrl_interface;
538
539        /**
540         * ctrl_interface_group - Control interface group (DEPRECATED)
541         *
542         * This variable is only used for backwards compatibility. Group for
543         * UNIX domain sockets should now be specified using GROUP=group in
544         * ctrl_interface variable.
545         */
546        char *ctrl_interface_group;
547
548        /**
549         * fast_reauth - EAP fast re-authentication (session resumption)
550         *
551         * By default, fast re-authentication is enabled for all EAP methods
552         * that support it. This variable can be used to disable fast
553         * re-authentication (by setting fast_reauth=0). Normally, there is no
554         * need to disable fast re-authentication.
555         */
556        int fast_reauth;
557
558        /**
559         * opensc_engine_path - Path to the OpenSSL engine for opensc
560         *
561         * This is an OpenSSL specific configuration option for loading OpenSC
562         * engine (engine_opensc.so); if %NULL, this engine is not loaded.
563         */
564        char *opensc_engine_path;
565
566        /**
567         * pkcs11_engine_path - Path to the OpenSSL engine for PKCS#11
568         *
569         * This is an OpenSSL specific configuration option for loading PKCS#11
570         * engine (engine_pkcs11.so); if %NULL, this engine is not loaded.
571         */
572        char *pkcs11_engine_path;
573
574        /**
575         * pkcs11_module_path - Path to the OpenSSL OpenSC/PKCS#11 module
576         *
577         * This is an OpenSSL specific configuration option for configuring
578         * path to OpenSC/PKCS#11 engine (opensc-pkcs11.so); if %NULL, this
579         * module is not loaded.
580         */
581        char *pkcs11_module_path;
582
583        /**
584         * openssl_ciphers - OpenSSL cipher string
585         *
586         * This is an OpenSSL specific configuration option for configuring the
587         * default ciphers. If not set, "DEFAULT:!EXP:!LOW" is used as the
588         * default.
589         */
590        char *openssl_ciphers;
591
592        /**
593         * pcsc_reader - PC/SC reader name prefix
594         *
595         * If not %NULL, PC/SC reader with a name that matches this prefix is
596         * initialized for SIM/USIM access. Empty string can be used to match
597         * the first available reader.
598         */
599        char *pcsc_reader;
600
601        /**
602         * pcsc_pin - PIN for USIM, GSM SIM, and smartcards
603         *
604         * This field is used to configure PIN for SIM/USIM for EAP-SIM and
605         * EAP-AKA. If left out, this will be asked through control interface.
606         */
607        char *pcsc_pin;
608
609        /**
610         * external_sim - Use external processing for SIM/USIM operations
611         */
612        int external_sim;
613
614        /**
615         * driver_param - Driver interface parameters
616         *
617         * This text string is passed to the selected driver interface with the
618         * optional struct wpa_driver_ops::set_param() handler. This can be
619         * used to configure driver specific options without having to add new
620         * driver interface functionality.
621         */
622        char *driver_param;
623
624        /**
625         * dot11RSNAConfigPMKLifetime - Maximum lifetime of a PMK
626         *
627         * dot11 MIB variable for the maximum lifetime of a PMK in the PMK
628         * cache (unit: seconds).
629         */
630        unsigned int dot11RSNAConfigPMKLifetime;
631
632        /**
633         * dot11RSNAConfigPMKReauthThreshold - PMK re-authentication threshold
634         *
635         * dot11 MIB variable for the percentage of the PMK lifetime
636         * that should expire before an IEEE 802.1X reauthentication occurs.
637         */
638        unsigned int dot11RSNAConfigPMKReauthThreshold;
639
640        /**
641         * dot11RSNAConfigSATimeout - Security association timeout
642         *
643         * dot11 MIB variable for the maximum time a security association
644         * shall take to set up (unit: seconds).
645         */
646        unsigned int dot11RSNAConfigSATimeout;
647
648        /**
649         * update_config - Is wpa_supplicant allowed to update configuration
650         *
651         * This variable control whether wpa_supplicant is allow to re-write
652         * its configuration with wpa_config_write(). If this is zero,
653         * configuration data is only changed in memory and the external data
654         * is not overriden. If this is non-zero, wpa_supplicant will update
655         * the configuration data (e.g., a file) whenever configuration is
656         * changed. This update may replace the old configuration which can
657         * remove comments from it in case of a text file configuration.
658         */
659        int update_config;
660
661        /**
662         * blobs - Configuration blobs
663         */
664        struct wpa_config_blob *blobs;
665
666        /**
667         * uuid - Universally Unique IDentifier (UUID; see RFC 4122) for WPS
668         */
669        u8 uuid[16];
670
671        /**
672         * auto_uuid - Automatic UUID behavior
673         * 0 = generate static value based on the local MAC address (default)
674         * 1 = generate a random UUID every time wpa_supplicant starts
675         */
676        int auto_uuid;
677
678        /**
679         * device_name - Device Name (WPS)
680         * User-friendly description of device; up to 32 octets encoded in
681         * UTF-8
682         */
683        char *device_name;
684
685        /**
686         * manufacturer - Manufacturer (WPS)
687         * The manufacturer of the device (up to 64 ASCII characters)
688         */
689        char *manufacturer;
690
691        /**
692         * model_name - Model Name (WPS)
693         * Model of the device (up to 32 ASCII characters)
694         */
695        char *model_name;
696
697        /**
698         * model_number - Model Number (WPS)
699         * Additional device description (up to 32 ASCII characters)
700         */
701        char *model_number;
702
703        /**
704         * serial_number - Serial Number (WPS)
705         * Serial number of the device (up to 32 characters)
706         */
707        char *serial_number;
708
709        /**
710         * device_type - Primary Device Type (WPS)
711         */
712        u8 device_type[WPS_DEV_TYPE_LEN];
713
714        /**
715         * config_methods - Config Methods
716         *
717         * This is a space-separated list of supported WPS configuration
718         * methods. For example, "label virtual_display virtual_push_button
719         * keypad".
720         * Available methods: usba ethernet label display ext_nfc_token
721         * int_nfc_token nfc_interface push_button keypad
722         * virtual_display physical_display
723         * virtual_push_button physical_push_button.
724         */
725        char *config_methods;
726
727        /**
728         * os_version - OS Version (WPS)
729         * 4-octet operating system version number
730         */
731        u8 os_version[4];
732
733        /**
734         * country - Country code
735         *
736         * This is the ISO/IEC alpha2 country code for which we are operating
737         * in
738         */
739        char country[2];
740
741        /**
742         * wps_cred_processing - Credential processing
743         *
744         *   0 = process received credentials internally
745         *   1 = do not process received credentials; just pass them over
746         *      ctrl_iface to external program(s)
747         *   2 = process received credentials internally and pass them over
748         *      ctrl_iface to external program(s)
749         */
750        int wps_cred_processing;
751
752        /**
753         * wps_cred_add_sae - Whether to enable SAE automatically for WPS
754         *
755         * 0 = only add the explicitly listed WPA2-PSK configuration
756         * 1 = add both the WPA2-PSK and SAE configuration and enable PMF so
757         *     that the station gets configured in WPA3-Personal transition mode
758         *     (supports both WPA2-Personal (PSK) and WPA3-Personal (SAE) APs).
759         */
760        int wps_cred_add_sae;
761
762#define MAX_SEC_DEVICE_TYPES 5
763        /**
764         * sec_device_types - Secondary Device Types (P2P)
765         */
766        u8 sec_device_type[MAX_SEC_DEVICE_TYPES][WPS_DEV_TYPE_LEN];
767        int num_sec_device_types;
768
769        int p2p_listen_reg_class;
770        int p2p_listen_channel;
771        int p2p_oper_reg_class;
772        int p2p_oper_channel;
773        int p2p_go_intent;
774        char *p2p_ssid_postfix;
775        int persistent_reconnect;
776        int p2p_intra_bss;
777        unsigned int num_p2p_pref_chan;
778        struct p2p_channel *p2p_pref_chan;
779        struct wpa_freq_range_list p2p_no_go_freq;
780        int p2p_add_cli_chan;
781        int p2p_ignore_shared_freq;
782        int p2p_optimize_listen_chan;
783
784        struct wpabuf *wps_vendor_ext_m1;
785
786#define MAX_WPS_VENDOR_EXT 10
787        /**
788         * wps_vendor_ext - Vendor extension attributes in WPS
789         */
790        struct wpabuf *wps_vendor_ext[MAX_WPS_VENDOR_EXT];
791
792        /**
793         * p2p_group_idle - Maximum idle time in seconds for P2P group
794         *
795         * This value controls how long a P2P group is maintained after there
796         * is no other members in the group. As a GO, this means no associated
797         * stations in the group. As a P2P client, this means no GO seen in
798         * scan results. The maximum idle time is specified in seconds with 0
799         * indicating no time limit, i.e., the P2P group remains in active
800         * state indefinitely until explicitly removed. As a P2P client, the
801         * maximum idle time of P2P_MAX_CLIENT_IDLE seconds is enforced, i.e.,
802         * this parameter is mainly meant for GO use and for P2P client, it can
803         * only be used to reduce the default timeout to smaller value. A
804         * special value -1 can be used to configure immediate removal of the
805         * group for P2P client role on any disconnection after the data
806         * connection has been established.
807         */
808        int p2p_group_idle;
809
810        /**
811         * p2p_go_freq_change_policy - The GO frequency change policy
812         *
813         * This controls the behavior of the GO when there is a change in the
814         * map of the currently used frequencies in case more than one channel
815         * is supported.
816         *
817         * @P2P_GO_FREQ_MOVE_SCM: Prefer working in a single channel mode if
818         * possible. In case the GO is the only interface using its frequency
819         * and there are other station interfaces on other frequencies, the GO
820         * will migrate to one of these frequencies.
821         *
822         * @P2P_GO_FREQ_MOVE_SCM_PEER_SUPPORTS: Same as P2P_GO_FREQ_MOVE_SCM,
823         * but a transition is possible only in case one of the other used
824         * frequencies is one of the frequencies in the intersection of the
825         * frequency list of the local device and the peer device.
826         *
827         * @P2P_GO_FREQ_MOVE_STAY: Prefer to stay on the current frequency.
828         *
829         * @P2P_GO_FREQ_MOVE_SCM_ECSA: Same as
830         * P2P_GO_FREQ_MOVE_SCM_PEER_SUPPORTS but a transition is possible only
831         * if all the group members advertise eCSA support.
832         */
833        enum {
834                P2P_GO_FREQ_MOVE_SCM = 0,
835                P2P_GO_FREQ_MOVE_SCM_PEER_SUPPORTS = 1,
836                P2P_GO_FREQ_MOVE_STAY = 2,
837                P2P_GO_FREQ_MOVE_SCM_ECSA = 3,
838                P2P_GO_FREQ_MOVE_MAX = P2P_GO_FREQ_MOVE_SCM_ECSA,
839        } p2p_go_freq_change_policy;
840
841#define DEFAULT_P2P_GO_FREQ_MOVE P2P_GO_FREQ_MOVE_STAY
842
843        /**
844         * p2p_passphrase_len - Passphrase length (8..63) for P2P GO
845         *
846         * This parameter controls the length of the random passphrase that is
847         * generated at the GO.
848         */
849        unsigned int p2p_passphrase_len;
850
851        /**
852         * bss_max_count - Maximum number of BSS entries to keep in memory
853         */
854        unsigned int bss_max_count;
855
856        /**
857         * bss_expiration_age - BSS entry age after which it can be expired
858         *
859         * This value controls the time in seconds after which a BSS entry
860         * gets removed if it has not been updated or is not in use.
861         */
862        unsigned int bss_expiration_age;
863
864        /**
865         * bss_expiration_scan_count - Expire BSS after number of scans
866         *
867         * If the BSS entry has not been seen in this many scans, it will be
868         * removed. A value of 1 means that entry is removed after the first
869         * scan in which the BSSID is not seen. Larger values can be used
870         * to avoid BSS entries disappearing if they are not visible in
871         * every scan (e.g., low signal quality or interference).
872         */
873        unsigned int bss_expiration_scan_count;
874
875        /**
876         * filter_ssids - SSID-based scan result filtering
877         *
878         *   0 = do not filter scan results
879         *   1 = only include configured SSIDs in scan results/BSS table
880         */
881        int filter_ssids;
882
883        /**
884         * filter_rssi - RSSI-based scan result filtering
885         *
886         * 0 = do not filter scan results
887         * -n = filter scan results below -n dBm
888         */
889        int filter_rssi;
890
891        /**
892         * max_num_sta - Maximum number of STAs in an AP/P2P GO
893         */
894        unsigned int max_num_sta;
895
896        /**
897         * ap_isolate - Whether to use client isolation feature
898         *
899         * Client isolation can be used to prevent low-level bridging of
900         * frames between associated stations in the BSS. By default,
901         * this bridging is allowed (ap_isolate=0); except in P2P GO case,
902         * where p2p_intra_bss parameter is used to determine whether to allow
903         * intra-BSS forwarding (ap_isolate = !p2p_intra_bss).
904         *
905         * 0 = do not enable AP isolation
906         * 1 = enable AP isolation
907         */
908        int ap_isolate;
909
910        /**
911         * freq_list - Array of allowed scan frequencies or %NULL for all
912         *
913         * This is an optional zero-terminated array of frequencies in
914         * megahertz (MHz) to allow for narrowing scanning range.
915         */
916        int *freq_list;
917
918        /**
919         * scan_cur_freq - Whether to scan only the current channel
920         *
921         * If true, attempt to scan only the current channel if any other
922         * VIFs on this radio are already associated on a particular channel.
923         */
924        int scan_cur_freq;
925
926        /**
927         * changed_parameters - Bitmap of changed parameters since last update
928         */
929        unsigned int changed_parameters;
930
931        /**
932         * disassoc_low_ack - Disassociate stations with massive packet loss
933         */
934        int disassoc_low_ack;
935
936        /**
937         * interworking - Whether Interworking (IEEE 802.11u) is enabled
938         */
939        int interworking;
940
941        /**
942         * access_network_type - Access Network Type
943         *
944         * When Interworking is enabled, scans will be limited to APs that
945         * advertise the specified Access Network Type (0..15; with 15
946         * indicating wildcard match).
947         */
948        int access_network_type;
949
950         /**
951          * go_interworking - Whether Interworking for P2P GO is enabled
952          */
953        int go_interworking;
954
955        /**
956         * go_access_network_type - P2P GO Access Network Type
957         *
958         * This indicates which access network type to advertise if Interworking
959         * is enabled for P2P GO.
960         */
961        int go_access_network_type;
962
963        /**
964         * go_internet - Interworking: Internet connectivity (0 or 1)
965         */
966        int go_internet;
967
968        /**
969         * go_venue_group - Interworking: Venue group
970         */
971        int go_venue_group;
972
973        /**
974         * go_venue_type: Interworking: Venue type
975         */
976        int go_venue_type;
977
978        /**
979         * hessid - Homogenous ESS identifier
980         *
981         * If this is set (any octet is non-zero), scans will be used to
982         * request response only from BSSes belonging to the specified
983         * Homogeneous ESS. This is used only if interworking is enabled.
984         */
985        u8 hessid[ETH_ALEN];
986
987        /**
988         * hs20 - Hotspot 2.0
989         */
990        int hs20;
991
992        /**
993         * pbc_in_m1 - AP mode WPS probing workaround for PBC with Windows 7
994         *
995         * Windows 7 uses incorrect way of figuring out AP's WPS capabilities
996         * by acting as a Registrar and using M1 from the AP. The config
997         * methods attribute in that message is supposed to indicate only the
998         * configuration method supported by the AP in Enrollee role, i.e., to
999         * add an external Registrar. For that case, PBC shall not be used and
1000         * as such, the PushButton config method is removed from M1 by default.
1001         * If pbc_in_m1=1 is included in the configuration file, the PushButton
1002         * config method is left in M1 (if included in config_methods
1003         * parameter) to allow Windows 7 to use PBC instead of PIN (e.g., from
1004         * a label in the AP).
1005         */
1006        int pbc_in_m1;
1007
1008        /**
1009         * autoscan - Automatic scan parameters or %NULL if none
1010         *
1011         * This is an optional set of parameters for automatic scanning
1012         * within an interface in following format:
1013         * <autoscan module name>:<module parameters>
1014         */
1015        char *autoscan;
1016
1017        /**
1018         * wps_nfc_pw_from_config - NFC Device Password was read from config
1019         *
1020         * This parameter can be determined whether the NFC Device Password was
1021         * included in the configuration (1) or generated dynamically (0). Only
1022         * the former case is re-written back to the configuration file.
1023         */
1024        int wps_nfc_pw_from_config;
1025
1026        /**
1027         * wps_nfc_dev_pw_id - NFC Device Password ID for password token
1028         */
1029        int wps_nfc_dev_pw_id;
1030
1031        /**
1032         * wps_nfc_dh_pubkey - NFC DH Public Key for password token
1033         */
1034        struct wpabuf *wps_nfc_dh_pubkey;
1035
1036        /**
1037         * wps_nfc_dh_privkey - NFC DH Private Key for password token
1038         */
1039        struct wpabuf *wps_nfc_dh_privkey;
1040
1041        /**
1042         * wps_nfc_dev_pw - NFC Device Password for password token
1043         */
1044        struct wpabuf *wps_nfc_dev_pw;
1045
1046        /**
1047         * ext_password_backend - External password backend or %NULL if none
1048         *
1049         * format: <backend name>[:<optional backend parameters>]
1050         */
1051        char *ext_password_backend;
1052
1053        /*
1054         * p2p_go_max_inactivity - Timeout in seconds to detect STA inactivity
1055         *
1056         * This timeout value is used in P2P GO mode to clean up
1057         * inactive stations.
1058         * By default: 300 seconds.
1059         */
1060        int p2p_go_max_inactivity;
1061
1062        struct hostapd_wmm_ac_params wmm_ac_params[4];
1063
1064        /**
1065         * auto_interworking - Whether to use network selection automatically
1066         *
1067         * 0 = do not automatically go through Interworking network selection
1068         *     (i.e., require explicit interworking_select command for this)
1069         * 1 = perform Interworking network selection if one or more
1070         *     credentials have been configured and scan did not find a
1071         *     matching network block
1072         */
1073        int auto_interworking;
1074
1075        /**
1076         * p2p_go_ht40 - Default mode for HT40 enable when operating as GO.
1077         *
1078         * This will take effect for p2p_group_add, p2p_connect, and p2p_invite.
1079         * Note that regulatory constraints and driver capabilities are
1080         * consulted anyway, so setting it to 1 can't do real harm.
1081         * By default: 0 (disabled)
1082         */
1083        int p2p_go_ht40;
1084
1085        /**
1086         * p2p_go_vht - Default mode for VHT enable when operating as GO
1087         *
1088         * This will take effect for p2p_group_add, p2p_connect, and p2p_invite.
1089         * Note that regulatory constraints and driver capabilities are
1090         * consulted anyway, so setting it to 1 can't do real harm.
1091         * By default: 0 (disabled)
1092         */
1093        int p2p_go_vht;
1094
1095        /**
1096         * p2p_go_he - Default mode for 11ax HE enable when operating as GO
1097         *
1098         * This will take effect for p2p_group_add, p2p_connect, and p2p_invite.
1099         * Note that regulatory constraints and driver capabilities are
1100         * consulted anyway, so setting it to 1 can't do real harm.
1101         * By default: 0 (disabled)
1102         */
1103        int p2p_go_he;
1104
1105        /**
1106         * p2p_go_ctwindow - CTWindow to use when operating as GO
1107         *
1108         * By default: 0 (no CTWindow). Values 0-127 can be used to indicate
1109         * the length of the CTWindow in TUs.
1110         */
1111        int p2p_go_ctwindow;
1112
1113        /**
1114         * p2p_disabled - Whether P2P operations are disabled for this interface
1115         */
1116        int p2p_disabled;
1117
1118        /**
1119         * p2p_no_group_iface - Whether group interfaces can be used
1120         *
1121         * By default, wpa_supplicant will create a separate interface for P2P
1122         * group operations if the driver supports this. This functionality can
1123         * be disabled by setting this parameter to 1. In that case, the same
1124         * interface that was used for the P2P management operations is used
1125         * also for the group operation.
1126         */
1127        int p2p_no_group_iface;
1128
1129        /**
1130         * p2p_cli_probe - Enable/disable P2P CLI probe request handling
1131         *
1132         * If this parameter is set to 1, a connected P2P Client will receive
1133         * and handle Probe Request frames. Setting this parameter to 0
1134         * disables this option. Default value: 0.
1135         *
1136         * Note: Setting this property at run time takes effect on the following
1137         * interface state transition to/from the WPA_COMPLETED state.
1138         */
1139        int p2p_cli_probe;
1140
1141        /**
1142         * okc - Whether to enable opportunistic key caching by default
1143         *
1144         * By default, OKC is disabled unless enabled by the per-network
1145         * proactive_key_caching=1 parameter. okc=1 can be used to change this
1146         * default behavior.
1147         */
1148        int okc;
1149
1150        /**
1151         * pmf - Whether to enable/require PMF by default
1152         *
1153         * By default, PMF is disabled unless enabled by the per-network
1154         * ieee80211w=1 or ieee80211w=2 parameter. pmf=1/2 can be used to change
1155         * this default behavior for RSN network (this is not applicable for
1156         * non-RSN cases).
1157         */
1158        enum mfp_options pmf;
1159
1160        /**
1161         * sae_groups - Preference list of enabled groups for SAE
1162         *
1163         * By default (if this parameter is not set), the mandatory group 19
1164         * (ECC group defined over a 256-bit prime order field) is preferred,
1165         * but other groups are also enabled. If this parameter is set, the
1166         * groups will be tried in the indicated order.
1167         */
1168        int *sae_groups;
1169
1170        /**
1171         * dtim_period - Default DTIM period in Beacon intervals
1172         *
1173         * This parameter can be used to set the default value for network
1174         * blocks that do not specify dtim_period.
1175         */
1176        int dtim_period;
1177
1178        /**
1179         * beacon_int - Default Beacon interval in TU
1180         *
1181         * This parameter can be used to set the default value for network
1182         * blocks that do not specify beacon_int.
1183         */
1184        int beacon_int;
1185
1186        /**
1187         * ap_vendor_elements: Vendor specific elements for Beacon/ProbeResp
1188         *
1189         * This parameter can be used to define additional vendor specific
1190         * elements for Beacon and Probe Response frames in AP/P2P GO mode. The
1191         * format for these element(s) is a hexdump of the raw information
1192         * elements (id+len+payload for one or more elements).
1193         */
1194        struct wpabuf *ap_vendor_elements;
1195
1196        /**
1197         * ignore_old_scan_res - Ignore scan results older than request
1198         *
1199         * The driver may have a cache of scan results that makes it return
1200         * information that is older than our scan trigger. This parameter can
1201         * be used to configure such old information to be ignored instead of
1202         * allowing it to update the internal BSS table.
1203         */
1204        int ignore_old_scan_res;
1205
1206        /**
1207         * sched_scan_interval -  schedule scan interval
1208         */
1209        unsigned int sched_scan_interval;
1210
1211        /**
1212         * sched_scan_start_delay - Schedule scan start delay before first scan
1213         *
1214         * Delay (in seconds) before scheduling first scan plan cycle. The
1215         * driver may ignore this parameter and start immediately (or at any
1216         * other time), if this feature is not supported.
1217         */
1218        unsigned int sched_scan_start_delay;
1219
1220        /**
1221         * tdls_external_control - External control for TDLS setup requests
1222         *
1223         * Enable TDLS mode where external programs are given the control
1224         * to specify the TDLS link to get established to the driver. The
1225         * driver requests the TDLS setup to the supplicant only for the
1226         * specified TDLS peers.
1227         */
1228        int tdls_external_control;
1229
1230        u8 ip_addr_go[4];
1231        u8 ip_addr_mask[4];
1232        u8 ip_addr_start[4];
1233        u8 ip_addr_end[4];
1234
1235        /**
1236         * osu_dir - OSU provider information directory
1237         *
1238         * If set, allow FETCH_OSU control interface command to be used to fetch
1239         * OSU provider information into all APs and store the results in this
1240         * directory.
1241         */
1242        char *osu_dir;
1243
1244        /**
1245         * wowlan_triggers - Wake-on-WLAN triggers
1246         *
1247         * If set, these wowlan triggers will be configured.
1248         */
1249        char *wowlan_triggers;
1250
1251        /**
1252         * p2p_search_delay - Extra delay between concurrent search iterations
1253         *
1254         * Add extra delay (in milliseconds) between search iterations when
1255         * there is a concurrent operation to make p2p_find friendlier to
1256         * concurrent operations by avoiding it from taking 100% of radio
1257         * resources.
1258         */
1259        unsigned int p2p_search_delay;
1260
1261        /**
1262         * mac_addr - MAC address policy default
1263         *
1264         * 0 = use permanent MAC address
1265         * 1 = use random MAC address for each ESS connection
1266         * 2 = like 1, but maintain OUI (with local admin bit set)
1267         *
1268         * By default, permanent MAC address is used unless policy is changed by
1269         * the per-network mac_addr parameter. Global mac_addr=1 can be used to
1270         * change this default behavior.
1271         */
1272        int mac_addr;
1273
1274        /**
1275         * rand_addr_lifetime - Lifetime of random MAC address in seconds
1276         */
1277        unsigned int rand_addr_lifetime;
1278
1279        /**
1280         * preassoc_mac_addr - Pre-association MAC address policy
1281         *
1282         * 0 = use permanent MAC address
1283         * 1 = use random MAC address
1284         * 2 = like 1, but maintain OUI (with local admin bit set)
1285         */
1286        int preassoc_mac_addr;
1287
1288        /**
1289         * key_mgmt_offload - Use key management offload
1290         *
1291         * Key management offload should be used if the device supports it.
1292         * Key management offload is the capability of a device operating as
1293         * a station to do the exchange necessary to establish temporal keys
1294         * during initial RSN connection, after roaming, or during a PTK
1295         * rekeying operation.
1296         */
1297        int key_mgmt_offload;
1298
1299        /**
1300         * user_mpm - MPM residency
1301         *
1302         * 0: MPM lives in driver.
1303         * 1: wpa_supplicant handles peering and station allocation.
1304         *
1305         * If AMPE or SAE is enabled, the MPM is always in userspace.
1306         */
1307        int user_mpm;
1308
1309        /**
1310         * max_peer_links - Maximum number of peer links
1311         *
1312         * Maximum number of mesh peering currently maintained by the STA.
1313         */
1314        int max_peer_links;
1315
1316        /**
1317         * cert_in_cb - Whether to include a peer certificate dump in events
1318         *
1319         * This controls whether peer certificates for authentication server and
1320         * its certificate chain are included in EAP peer certificate events.
1321         */
1322        int cert_in_cb;
1323
1324        /**
1325         * mesh_max_inactivity - Timeout in seconds to detect STA inactivity
1326         *
1327         * This timeout value is used in mesh STA to clean up inactive stations.
1328         * By default: 300 seconds.
1329         */
1330        int mesh_max_inactivity;
1331
1332        /**
1333         * dot11RSNASAERetransPeriod - Timeout to retransmit SAE Auth frame
1334         *
1335         * This timeout value is used in mesh STA to retransmit
1336         * SAE Authentication frame.
1337         * By default: 1000 milliseconds.
1338         */
1339        int dot11RSNASAERetransPeriod;
1340
1341        /**
1342         * passive_scan - Whether to force passive scan for network connection
1343         *
1344         * This parameter can be used to force only passive scanning to be used
1345         * for network connection cases. It should be noted that this will slow
1346         * down scan operations and reduce likelihood of finding the AP. In
1347         * addition, some use cases will override this due to functional
1348         * requirements, e.g., for finding an AP that uses hidden SSID
1349         * (scan_ssid=1) or P2P device discovery.
1350         */
1351        int passive_scan;
1352
1353        /**
1354         * reassoc_same_bss_optim - Whether to optimize reassoc-to-same-BSS
1355         */
1356        int reassoc_same_bss_optim;
1357
1358        /**
1359         * wps_priority - Priority for the networks added through WPS
1360         *
1361         * This priority value will be set to each network profile that is added
1362         * by executing the WPS protocol.
1363         */
1364        int wps_priority;
1365
1366        /**
1367         * fst_group_id - FST group ID
1368         */
1369        char *fst_group_id;
1370
1371        /**
1372         * fst_priority - priority of the interface within the FST group
1373         */
1374        int fst_priority;
1375
1376        /**
1377         * fst_llt - default FST LLT (Link-Lost Timeout) to be used for the
1378         * interface.
1379         */
1380        int fst_llt;
1381
1382         /**
1383          * wpa_rsc_relaxation - RSC relaxation on GTK installation
1384          *
1385          * Values:
1386          * 0 - use the EAPOL-Key RSC value on GTK installation
1387          * 1 - use the null RSC if a bogus RSC value is detected in message 3
1388          * of 4-Way Handshake or message 1 of Group Key Handshake.
1389          */
1390         int wpa_rsc_relaxation;
1391
1392        /**
1393         * sched_scan_plans - Scan plans for scheduled scan
1394         *
1395         * Each scan plan specifies the interval between scans and the number of
1396         * iterations. The last scan plan only specifies the scan interval and
1397         * will be run infinitely.
1398         *
1399         * format: <interval:iterations> <interval2:iterations2> ... <interval>
1400         */
1401         char *sched_scan_plans;
1402
1403#ifdef CONFIG_MBO
1404        /**
1405         * non_pref_chan - Non-preferred channels list, separated by spaces.
1406         *
1407         * format: op_class:chan:preference:reason<:detail>
1408         * Detail is optional.
1409         */
1410        char *non_pref_chan;
1411
1412        /**
1413         * mbo_cell_capa - Cellular capabilities for MBO
1414         */
1415        enum mbo_cellular_capa mbo_cell_capa;
1416
1417        /**
1418         * disassoc_imminent_rssi_threshold - RSSI threshold of candidate AP
1419         * when disassociation imminent is set.
1420         */
1421        int disassoc_imminent_rssi_threshold;
1422
1423        /**
1424         * oce - Enable OCE in STA and/or STA-CFON mode
1425         *  - Set BIT(0) to enable OCE in non-AP STA mode
1426         *  - Set BIT(1) to enable OCE in STA-CFON mode
1427         */
1428        unsigned int oce;
1429#endif /* CONFIG_MBO */
1430
1431        /**
1432         * gas_address3 - GAS Address3 field behavior
1433         *
1434         * Values:
1435         * 0 - P2P specification (Address3 = AP BSSID)
1436         * 1 = IEEE 802.11 standard compliant (Address3 = Wildcard BSSID when
1437         *      sent to not-associated AP; if associated, AP BSSID)
1438         */
1439        int gas_address3;
1440
1441        /**
1442         * ftm_responder - Publish FTM (fine timing measurement)
1443         * responder functionality
1444         *
1445         * Values:
1446         * 0 - do not publish FTM responder functionality (Default)
1447         * 1 - publish FTM responder functionality in
1448         *      bit 70 of Extended Capabilities element
1449         * Note, actual FTM responder operation is managed outside
1450         * wpa_supplicant.
1451         */
1452        int ftm_responder;
1453
1454        /**
1455         * ftm_initiator - Publish FTM (fine timing measurement)
1456         * initiator functionality
1457         *
1458         * Values:
1459         * 0 - do not publish FTM initiator functionality (Default)
1460         * 1 - publish FTM initiator functionality in
1461         *      bit 71 of Extended Capabilities element
1462         * Note, actual FTM initiator operation is managed outside
1463         * wpa_supplicant.
1464         */
1465        int ftm_initiator;
1466
1467        /**
1468         * gas_rand_addr_lifetime - Lifetime of random MAC address for ANQP in
1469         *      seconds
1470         */
1471        unsigned int gas_rand_addr_lifetime;
1472
1473        /**
1474         * gas_rand_mac_addr - GAS MAC address policy
1475         *
1476         * 0 = use permanent MAC address
1477         * 1 = use random MAC address
1478         * 2 = like 1, but maintain OUI (with local admin bit set)
1479         */
1480        int gas_rand_mac_addr;
1481
1482        /**
1483         * dpp_config_processing - How to process DPP configuration
1484         *
1485         * 0 = report received configuration to an external program for
1486         *      processing; do not generate any network profile internally
1487         * 1 = report received configuration to an external program and generate
1488         *      a network profile internally, but do not automatically connect
1489         *      to the created (disabled) profile; the network profile id is
1490         *      reported to external programs
1491         * 2 = report received configuration to an external program, generate
1492         *      a network profile internally, try to connect to the created
1493         *      profile automatically
1494         */
1495        int dpp_config_processing;
1496
1497        /**
1498         * coloc_intf_reporting - Colocated interference reporting
1499         *
1500         * dot11CoLocIntfReportingActivated
1501         * 0 = disabled (false)
1502         * 1 = enabled (true)
1503         */
1504        int coloc_intf_reporting;
1505
1506        /**
1507         * p2p_device_random_mac_addr - P2P Device MAC address policy default
1508         *
1509         * 0 = use permanent MAC address
1510         * 1 = use random MAC address on creating the interface if there is no
1511         * persistent groups.
1512         *
1513         * By default, permanent MAC address is used.
1514         */
1515        int p2p_device_random_mac_addr;
1516
1517        /**
1518         * p2p_device_persistent_mac_addr - Record last used MAC address
1519         *
1520         * If there are saved persistent groups, P2P cannot generate another
1521         * random MAC address, and need to restore to last used MAC address.
1522         */
1523        u8 p2p_device_persistent_mac_addr[ETH_ALEN];
1524
1525        /**
1526         * p2p_interface_random_mac_addr - P2P Interface MAC address policy default
1527         *
1528         * 0 = use permanent MAC address
1529         * 1 = use random MAC address on creating the interface.
1530         *
1531         * By default, permanent MAC address is used.
1532         */
1533        int p2p_interface_random_mac_addr;
1534
1535        /**
1536         * disable_btm - Disable BSS transition management in STA
1537         * - Set to 0 to enable BSS transition management
1538         * - Set to 1 to disable BSS transition management
1539         *
1540         * By default BSS transition management is enabled
1541         */
1542        int disable_btm;
1543};
1544
1545
1546/* Prototypes for common functions from config.c */
1547
1548void wpa_config_free(struct wpa_config *ssid);
1549void wpa_config_free_ssid(struct wpa_ssid *ssid);
1550void wpa_config_foreach_network(struct wpa_config *config,
1551                                void (*func)(void *, struct wpa_ssid *),
1552                                void *arg);
1553struct wpa_ssid * wpa_config_get_network(struct wpa_config *config, int id);
1554struct wpa_ssid * wpa_config_add_network(struct wpa_config *config);
1555int wpa_config_remove_network(struct wpa_config *config, int id);
1556void wpa_config_set_network_defaults(struct wpa_ssid *ssid);
1557int wpa_config_set(struct wpa_ssid *ssid, const char *var, const char *value,
1558                   int line);
1559int wpa_config_set_quoted(struct wpa_ssid *ssid, const char *var,
1560                          const char *value);
1561int wpa_config_dump_values(struct wpa_config *config, char *buf,
1562                           size_t buflen);
1563int wpa_config_get_value(const char *name, struct wpa_config *config,
1564                         char *buf, size_t buflen);
1565
1566char ** wpa_config_get_all(struct wpa_ssid *ssid, int get_keys);
1567char * wpa_config_get(struct wpa_ssid *ssid, const char *var);
1568char * wpa_config_get_no_key(struct wpa_ssid *ssid, const char *var);
1569void wpa_config_update_psk(struct wpa_ssid *ssid);
1570int wpa_config_add_prio_network(struct wpa_config *config,
1571                                struct wpa_ssid *ssid);
1572int wpa_config_update_prio_list(struct wpa_config *config);
1573const struct wpa_config_blob * wpa_config_get_blob(struct wpa_config *config,
1574                                                   const char *name);
1575void wpa_config_set_blob(struct wpa_config *config,
1576                         struct wpa_config_blob *blob);
1577void wpa_config_free_blob(struct wpa_config_blob *blob);
1578int wpa_config_remove_blob(struct wpa_config *config, const char *name);
1579void wpa_config_flush_blobs(struct wpa_config *config);
1580
1581struct wpa_cred * wpa_config_get_cred(struct wpa_config *config, int id);
1582struct wpa_cred * wpa_config_add_cred(struct wpa_config *config);
1583int wpa_config_remove_cred(struct wpa_config *config, int id);
1584void wpa_config_free_cred(struct wpa_cred *cred);
1585int wpa_config_set_cred(struct wpa_cred *cred, const char *var,
1586                        const char *value, int line);
1587char * wpa_config_get_cred_no_key(struct wpa_cred *cred, const char *var);
1588
1589struct wpa_config * wpa_config_alloc_empty(const char *ctrl_interface,
1590                                           const char *driver_param);
1591#ifndef CONFIG_NO_STDOUT_DEBUG
1592void wpa_config_debug_dump_networks(struct wpa_config *config);
1593#else /* CONFIG_NO_STDOUT_DEBUG */
1594#define wpa_config_debug_dump_networks(c) do { } while (0)
1595#endif /* CONFIG_NO_STDOUT_DEBUG */
1596
1597
1598/* Prototypes for common functions from config.c */
1599int wpa_config_process_global(struct wpa_config *config, char *pos, int line);
1600
1601int wpa_config_get_num_global_field_names(void);
1602
1603const char * wpa_config_get_global_field_name(unsigned int i, int *no_var);
1604
1605/* Prototypes for backend specific functions from the selected config_*.c */
1606
1607/**
1608 * wpa_config_read - Read and parse configuration database
1609 * @name: Name of the configuration (e.g., path and file name for the
1610 * configuration file)
1611 * @cfgp: Pointer to previously allocated configuration data or %NULL if none
1612 * Returns: Pointer to allocated configuration data or %NULL on failure
1613 *
1614 * This function reads configuration data, parses its contents, and allocates
1615 * data structures needed for storing configuration information. The allocated
1616 * data can be freed with wpa_config_free().
1617 *
1618 * Each configuration backend needs to implement this function.
1619 */
1620struct wpa_config * wpa_config_read(const char *name, struct wpa_config *cfgp);
1621
1622/**
1623 * wpa_config_write - Write or update configuration data
1624 * @name: Name of the configuration (e.g., path and file name for the
1625 * configuration file)
1626 * @config: Configuration data from wpa_config_read()
1627 * Returns: 0 on success, -1 on failure
1628 *
1629 * This function write all configuration data into an external database (e.g.,
1630 * a text file) in a format that can be read with wpa_config_read(). This can
1631 * be used to allow wpa_supplicant to update its configuration, e.g., when a
1632 * new network is added or a password is changed.
1633 *
1634 * Each configuration backend needs to implement this function.
1635 */
1636int wpa_config_write(const char *name, struct wpa_config *config);
1637
1638#endif /* CONFIG_H */
Note: See TracBrowser for help on using the repository browser.