OpenWrt – Blame information for rev 1
?pathlinks?
Rev | Author | Line No. | Line |
---|---|---|---|
1 | office | 1 | # Example wpa_supplicant build time configuration |
2 | # |
||
3 | # This file lists the configuration options that are used when building the |
||
4 | # wpa_supplicant binary. All lines starting with # are ignored. Configuration |
||
5 | # option lines must be commented out complete, if they are not to be included, |
||
6 | # i.e., just setting VARIABLE=n is not disabling that variable. |
||
7 | # |
||
8 | # This file is included in Makefile, so variables like CFLAGS and LIBS can also |
||
9 | # be modified from here. In most cases, these lines should use += in order not |
||
10 | # to override previous values of the variables. |
||
11 | |||
12 | |||
13 | # Uncomment following two lines and fix the paths if you have installed OpenSSL |
||
14 | # or GnuTLS in non-default location |
||
15 | #CFLAGS += -I/usr/local/openssl/include |
||
16 | #LIBS += -L/usr/local/openssl/lib |
||
17 | |||
18 | # Some Red Hat versions seem to include kerberos header files from OpenSSL, but |
||
19 | # the kerberos files are not in the default include path. Following line can be |
||
20 | # used to fix build issues on such systems (krb5.h not found). |
||
21 | #CFLAGS += -I/usr/include/kerberos |
||
22 | |||
23 | # Driver interface for generic Linux wireless extensions |
||
24 | # Note: WEXT is deprecated in the current Linux kernel version and no new |
||
25 | # functionality is added to it. nl80211-based interface is the new |
||
26 | # replacement for WEXT and its use allows wpa_supplicant to properly control |
||
27 | # the driver to improve existing functionality like roaming and to support new |
||
28 | # functionality. |
||
29 | CONFIG_DRIVER_WEXT=y |
||
30 | |||
31 | # Driver interface for Linux drivers using the nl80211 kernel interface |
||
32 | CONFIG_DRIVER_NL80211=y |
||
33 | |||
34 | # QCA vendor extensions to nl80211 |
||
35 | #CONFIG_DRIVER_NL80211_QCA=y |
||
36 | |||
37 | # driver_nl80211.c requires libnl. If you are compiling it yourself |
||
38 | # you may need to point hostapd to your version of libnl. |
||
39 | # |
||
40 | #CFLAGS += -I$<path to libnl include files> |
||
41 | #LIBS += -L$<path to libnl library files> |
||
42 | |||
43 | # Use libnl v2.0 (or 3.0) libraries. |
||
44 | #CONFIG_LIBNL20=y |
||
45 | |||
46 | # Use libnl 3.2 libraries (if this is selected, CONFIG_LIBNL20 is ignored) |
||
47 | #CONFIG_LIBNL32=y |
||
48 | |||
49 | |||
50 | # Driver interface for FreeBSD net80211 layer (e.g., Atheros driver) |
||
51 | #CONFIG_DRIVER_BSD=y |
||
52 | #CFLAGS += -I/usr/local/include |
||
53 | #LIBS += -L/usr/local/lib |
||
54 | #LIBS_p += -L/usr/local/lib |
||
55 | #LIBS_c += -L/usr/local/lib |
||
56 | |||
57 | # Driver interface for Windows NDIS |
||
58 | #CONFIG_DRIVER_NDIS=y |
||
59 | #CFLAGS += -I/usr/include/w32api/ddk |
||
60 | #LIBS += -L/usr/local/lib |
||
61 | # For native build using mingw |
||
62 | #CONFIG_NATIVE_WINDOWS=y |
||
63 | # Additional directories for cross-compilation on Linux host for mingw target |
||
64 | #CFLAGS += -I/opt/mingw/mingw32/include/ddk |
||
65 | #LIBS += -L/opt/mingw/mingw32/lib |
||
66 | #CC=mingw32-gcc |
||
67 | # By default, driver_ndis uses WinPcap for low-level operations. This can be |
||
68 | # replaced with the following option which replaces WinPcap calls with NDISUIO. |
||
69 | # However, this requires that WZC is disabled (net stop wzcsvc) before starting |
||
70 | # wpa_supplicant. |
||
71 | # CONFIG_USE_NDISUIO=y |
||
72 | |||
73 | # Driver interface for wired Ethernet drivers |
||
74 | CONFIG_DRIVER_WIRED=y |
||
75 | |||
76 | # Driver interface for MACsec capable Qualcomm Atheros drivers |
||
77 | #CONFIG_DRIVER_MACSEC_QCA=y |
||
78 | |||
79 | # Driver interface for Linux MACsec drivers |
||
80 | #CONFIG_DRIVER_MACSEC_LINUX=y |
||
81 | |||
82 | # Driver interface for the Broadcom RoboSwitch family |
||
83 | #CONFIG_DRIVER_ROBOSWITCH=y |
||
84 | |||
85 | # Driver interface for no driver (e.g., WPS ER only) |
||
86 | #CONFIG_DRIVER_NONE=y |
||
87 | |||
88 | # Solaris libraries |
||
89 | #LIBS += -lsocket -ldlpi -lnsl |
||
90 | #LIBS_c += -lsocket |
||
91 | |||
92 | # Enable IEEE 802.1X Supplicant (automatically included if any EAP method or |
||
93 | # MACsec is included) |
||
94 | CONFIG_IEEE8021X_EAPOL=y |
||
95 | |||
96 | # EAP-MD5 |
||
97 | CONFIG_EAP_MD5=y |
||
98 | |||
99 | # EAP-MSCHAPv2 |
||
100 | CONFIG_EAP_MSCHAPV2=y |
||
101 | |||
102 | # EAP-TLS |
||
103 | CONFIG_EAP_TLS=y |
||
104 | |||
105 | # EAL-PEAP |
||
106 | CONFIG_EAP_PEAP=y |
||
107 | |||
108 | # EAP-TTLS |
||
109 | CONFIG_EAP_TTLS=y |
||
110 | |||
111 | # EAP-FAST |
||
112 | # Note: If OpenSSL is used as the TLS library, OpenSSL 1.0 or newer is needed |
||
113 | # for EAP-FAST support. Older OpenSSL releases would need to be patched, e.g., |
||
114 | # with openssl-0.9.8x-tls-extensions.patch, to add the needed functions. |
||
115 | CONFIG_EAP_FAST=y |
||
116 | |||
117 | # EAP-GTC |
||
118 | CONFIG_EAP_GTC=y |
||
119 | |||
120 | # EAP-OTP |
||
121 | CONFIG_EAP_OTP=y |
||
122 | |||
123 | # EAP-SIM (enable CONFIG_PCSC, if EAP-SIM is used) |
||
124 | #CONFIG_EAP_SIM=y |
||
125 | |||
126 | # EAP-PSK (experimental; this is _not_ needed for WPA-PSK) |
||
127 | #CONFIG_EAP_PSK=y |
||
128 | |||
129 | # EAP-pwd (secure authentication using only a password) |
||
130 | #CONFIG_EAP_PWD=y |
||
131 | |||
132 | # EAP-PAX |
||
133 | #CONFIG_EAP_PAX=y |
||
134 | |||
135 | # LEAP |
||
136 | CONFIG_EAP_LEAP=y |
||
137 | |||
138 | # EAP-AKA (enable CONFIG_PCSC, if EAP-AKA is used) |
||
139 | #CONFIG_EAP_AKA=y |
||
140 | |||
141 | # EAP-AKA' (enable CONFIG_PCSC, if EAP-AKA' is used). |
||
142 | # This requires CONFIG_EAP_AKA to be enabled, too. |
||
143 | #CONFIG_EAP_AKA_PRIME=y |
||
144 | |||
145 | # Enable USIM simulator (Milenage) for EAP-AKA |
||
146 | #CONFIG_USIM_SIMULATOR=y |
||
147 | |||
148 | # EAP-SAKE |
||
149 | #CONFIG_EAP_SAKE=y |
||
150 | |||
151 | # EAP-GPSK |
||
152 | #CONFIG_EAP_GPSK=y |
||
153 | # Include support for optional SHA256 cipher suite in EAP-GPSK |
||
154 | #CONFIG_EAP_GPSK_SHA256=y |
||
155 | |||
156 | # EAP-TNC and related Trusted Network Connect support (experimental) |
||
157 | #CONFIG_EAP_TNC=y |
||
158 | |||
159 | # Wi-Fi Protected Setup (WPS) |
||
160 | CONFIG_WPS=y |
||
161 | # Enable WPS external registrar functionality |
||
162 | #CONFIG_WPS_ER=y |
||
163 | # Disable credentials for an open network by default when acting as a WPS |
||
164 | # registrar. |
||
165 | #CONFIG_WPS_REG_DISABLE_OPEN=y |
||
166 | # Enable WPS support with NFC config method |
||
167 | #CONFIG_WPS_NFC=y |
||
168 | |||
169 | # EAP-IKEv2 |
||
170 | #CONFIG_EAP_IKEV2=y |
||
171 | |||
172 | # EAP-EKE |
||
173 | #CONFIG_EAP_EKE=y |
||
174 | |||
175 | # MACsec |
||
176 | #CONFIG_MACSEC=y |
||
177 | |||
178 | # PKCS#12 (PFX) support (used to read private key and certificate file from |
||
179 | # a file that usually has extension .p12 or .pfx) |
||
180 | CONFIG_PKCS12=y |
||
181 | |||
182 | # Smartcard support (i.e., private key on a smartcard), e.g., with openssl |
||
183 | # engine. |
||
184 | CONFIG_SMARTCARD=y |
||
185 | |||
186 | # PC/SC interface for smartcards (USIM, GSM SIM) |
||
187 | # Enable this if EAP-SIM or EAP-AKA is included |
||
188 | #CONFIG_PCSC=y |
||
189 | |||
190 | # Support HT overrides (disable HT/HT40, mask MCS rates, etc.) |
||
191 | CONFIG_HT_OVERRIDES=y |
||
192 | |||
193 | # Support VHT overrides (disable VHT, mask MCS rates, etc.) |
||
194 | CONFIG_VHT_OVERRIDES=y |
||
195 | |||
196 | # Development testing |
||
197 | #CONFIG_EAPOL_TEST=y |
||
198 | |||
199 | # Select control interface backend for external programs, e.g, wpa_cli: |
||
200 | # unix = UNIX domain sockets (default for Linux/*BSD) |
||
201 | # udp = UDP sockets using localhost (127.0.0.1) |
||
202 | # udp6 = UDP IPv6 sockets using localhost (::1) |
||
203 | # named_pipe = Windows Named Pipe (default for Windows) |
||
204 | # udp-remote = UDP sockets with remote access (only for tests systems/purpose) |
||
205 | # udp6-remote = UDP IPv6 sockets with remote access (only for tests purpose) |
||
206 | # y = use default (backwards compatibility) |
||
207 | # If this option is commented out, control interface is not included in the |
||
208 | # build. |
||
209 | CONFIG_CTRL_IFACE=y |
||
210 | |||
211 | # Include support for GNU Readline and History Libraries in wpa_cli. |
||
212 | # When building a wpa_cli binary for distribution, please note that these |
||
213 | # libraries are licensed under GPL and as such, BSD license may not apply for |
||
214 | # the resulting binary. |
||
215 | #CONFIG_READLINE=y |
||
216 | |||
217 | # Include internal line edit mode in wpa_cli. This can be used as a replacement |
||
218 | # for GNU Readline to provide limited command line editing and history support. |
||
219 | #CONFIG_WPA_CLI_EDIT=y |
||
220 | |||
221 | # Remove debugging code that is printing out debug message to stdout. |
||
222 | # This can be used to reduce the size of the wpa_supplicant considerably |
||
223 | # if debugging code is not needed. The size reduction can be around 35% |
||
224 | # (e.g., 90 kB). |
||
225 | #CONFIG_NO_STDOUT_DEBUG=y |
||
226 | |||
227 | # Remove WPA support, e.g., for wired-only IEEE 802.1X supplicant, to save |
||
228 | # 35-50 kB in code size. |
||
229 | #CONFIG_NO_WPA=y |
||
230 | |||
231 | # Remove IEEE 802.11i/WPA-Personal ASCII passphrase support |
||
232 | # This option can be used to reduce code size by removing support for |
||
233 | # converting ASCII passphrases into PSK. If this functionality is removed, the |
||
234 | # PSK can only be configured as the 64-octet hexstring (e.g., from |
||
235 | # wpa_passphrase). This saves about 0.5 kB in code size. |
||
236 | #CONFIG_NO_WPA_PASSPHRASE=y |
||
237 | |||
238 | # Disable scan result processing (ap_mode=1) to save code size by about 1 kB. |
||
239 | # This can be used if ap_scan=1 mode is never enabled. |
||
240 | #CONFIG_NO_SCAN_PROCESSING=y |
||
241 | |||
242 | # Select configuration backend: |
||
243 | # file = text file (e.g., wpa_supplicant.conf; note: the configuration file |
||
244 | # path is given on command line, not here; this option is just used to |
||
245 | # select the backend that allows configuration files to be used) |
||
246 | # winreg = Windows registry (see win_example.reg for an example) |
||
247 | CONFIG_BACKEND=file |
||
248 | |||
249 | # Remove configuration write functionality (i.e., to allow the configuration |
||
250 | # file to be updated based on runtime configuration changes). The runtime |
||
251 | # configuration can still be changed, the changes are just not going to be |
||
252 | # persistent over restarts. This option can be used to reduce code size by |
||
253 | # about 3.5 kB. |
||
254 | #CONFIG_NO_CONFIG_WRITE=y |
||
255 | |||
256 | # Remove support for configuration blobs to reduce code size by about 1.5 kB. |
||
257 | #CONFIG_NO_CONFIG_BLOBS=y |
||
258 | |||
259 | # Select program entry point implementation: |
||
260 | # main = UNIX/POSIX like main() function (default) |
||
261 | # main_winsvc = Windows service (read parameters from registry) |
||
262 | # main_none = Very basic example (development use only) |
||
263 | #CONFIG_MAIN=main |
||
264 | |||
265 | # Select wrapper for operating system and C library specific functions |
||
266 | # unix = UNIX/POSIX like systems (default) |
||
267 | # win32 = Windows systems |
||
268 | # none = Empty template |
||
269 | #CONFIG_OS=unix |
||
270 | |||
271 | # Select event loop implementation |
||
272 | # eloop = select() loop (default) |
||
273 | # eloop_win = Windows events and WaitForMultipleObject() loop |
||
274 | #CONFIG_ELOOP=eloop |
||
275 | |||
276 | # Should we use poll instead of select? Select is used by default. |
||
277 | #CONFIG_ELOOP_POLL=y |
||
278 | |||
279 | # Should we use epoll instead of select? Select is used by default. |
||
280 | #CONFIG_ELOOP_EPOLL=y |
||
281 | |||
282 | # Should we use kqueue instead of select? Select is used by default. |
||
283 | #CONFIG_ELOOP_KQUEUE=y |
||
284 | |||
285 | # Select layer 2 packet implementation |
||
286 | # linux = Linux packet socket (default) |
||
287 | # pcap = libpcap/libdnet/WinPcap |
||
288 | # freebsd = FreeBSD libpcap |
||
289 | # winpcap = WinPcap with receive thread |
||
290 | # ndis = Windows NDISUIO (note: requires CONFIG_USE_NDISUIO=y) |
||
291 | # none = Empty template |
||
292 | #CONFIG_L2_PACKET=linux |
||
293 | |||
294 | # Disable Linux packet socket workaround applicable for station interface |
||
295 | # in a bridge for EAPOL frames. This should be uncommented only if the kernel |
||
296 | # is known to not have the regression issue in packet socket behavior with |
||
297 | # bridge interfaces (commit 'bridge: respect RFC2863 operational state')'). |
||
298 | #CONFIG_NO_LINUX_PACKET_SOCKET_WAR=y |
||
299 | |||
300 | # IEEE 802.11w (management frame protection), also known as PMF |
||
301 | # Driver support is also needed for IEEE 802.11w. |
||
302 | #CONFIG_IEEE80211W=y |
||
303 | |||
304 | # Select TLS implementation |
||
305 | # openssl = OpenSSL (default) |
||
306 | # gnutls = GnuTLS |
||
307 | # internal = Internal TLSv1 implementation (experimental) |
||
308 | # linux = Linux kernel AF_ALG and internal TLSv1 implementation (experimental) |
||
309 | # none = Empty template |
||
310 | CONFIG_TLS=internal |
||
311 | |||
312 | # TLS-based EAP methods require at least TLS v1.0. Newer version of TLS (v1.1) |
||
313 | # can be enabled to get a stronger construction of messages when block ciphers |
||
314 | # are used. It should be noted that some existing TLS v1.0 -based |
||
315 | # implementation may not be compatible with TLS v1.1 message (ClientHello is |
||
316 | # sent prior to negotiating which version will be used) |
||
317 | #CONFIG_TLSV11=y |
||
318 | |||
319 | # TLS-based EAP methods require at least TLS v1.0. Newer version of TLS (v1.2) |
||
320 | # can be enabled to enable use of stronger crypto algorithms. It should be |
||
321 | # noted that some existing TLS v1.0 -based implementation may not be compatible |
||
322 | # with TLS v1.2 message (ClientHello is sent prior to negotiating which version |
||
323 | # will be used) |
||
324 | #CONFIG_TLSV12=y |
||
325 | |||
326 | # Select which ciphers to use by default with OpenSSL if the user does not |
||
327 | # specify them. |
||
328 | #CONFIG_TLS_DEFAULT_CIPHERS="DEFAULT:!EXP:!LOW" |
||
329 | |||
330 | # If CONFIG_TLS=internal is used, additional library and include paths are |
||
331 | # needed for LibTomMath. Alternatively, an integrated, minimal version of |
||
332 | # LibTomMath can be used. See beginning of libtommath.c for details on benefits |
||
333 | # and drawbacks of this option. |
||
334 | CONFIG_INTERNAL_LIBTOMMATH=y |
||
335 | #ifndef CONFIG_INTERNAL_LIBTOMMATH |
||
336 | #LTM_PATH=/usr/src/libtommath-0.39 |
||
337 | #CFLAGS += -I$(LTM_PATH) |
||
338 | #LIBS += -L$(LTM_PATH) |
||
339 | #LIBS_p += -L$(LTM_PATH) |
||
340 | #endif |
||
341 | # At the cost of about 4 kB of additional binary size, the internal LibTomMath |
||
342 | # can be configured to include faster routines for exptmod, sqr, and div to |
||
343 | # speed up DH and RSA calculation considerably |
||
344 | CONFIG_INTERNAL_LIBTOMMATH_FAST=y |
||
345 | |||
346 | # Include NDIS event processing through WMI into wpa_supplicant/wpasvc. |
||
347 | # This is only for Windows builds and requires WMI-related header files and |
||
348 | # WbemUuid.Lib from Platform SDK even when building with MinGW. |
||
349 | #CONFIG_NDIS_EVENTS_INTEGRATED=y |
||
350 | #PLATFORMSDKLIB="/opt/Program Files/Microsoft Platform SDK/Lib" |
||
351 | |||
352 | # Add support for old DBus control interface |
||
353 | # (fi.epitest.hostap.WPASupplicant) |
||
354 | #CONFIG_CTRL_IFACE_DBUS=y |
||
355 | |||
356 | # Add support for new DBus control interface |
||
357 | # (fi.w1.hostap.wpa_supplicant1) |
||
358 | #CONFIG_CTRL_IFACE_DBUS_NEW=y |
||
359 | |||
360 | # Add introspection support for new DBus control interface |
||
361 | #CONFIG_CTRL_IFACE_DBUS_INTRO=y |
||
362 | |||
363 | # Add support for loading EAP methods dynamically as shared libraries. |
||
364 | # When this option is enabled, each EAP method can be either included |
||
365 | # statically (CONFIG_EAP_<method>=y) or dynamically (CONFIG_EAP_<method>=dyn). |
||
366 | # Dynamic EAP methods are build as shared objects (eap_*.so) and they need to |
||
367 | # be loaded in the beginning of the wpa_supplicant configuration file |
||
368 | # (see load_dynamic_eap parameter in the example file) before being used in |
||
369 | # the network blocks. |
||
370 | # |
||
371 | # Note that some shared parts of EAP methods are included in the main program |
||
372 | # and in order to be able to use dynamic EAP methods using these parts, the |
||
373 | # main program must have been build with the EAP method enabled (=y or =dyn). |
||
374 | # This means that EAP-TLS/PEAP/TTLS/FAST cannot be added as dynamic libraries |
||
375 | # unless at least one of them was included in the main build to force inclusion |
||
376 | # of the shared code. Similarly, at least one of EAP-SIM/AKA must be included |
||
377 | # in the main build to be able to load these methods dynamically. |
||
378 | # |
||
379 | # Please also note that using dynamic libraries will increase the total binary |
||
380 | # size. Thus, it may not be the best option for targets that have limited |
||
381 | # amount of memory/flash. |
||
382 | #CONFIG_DYNAMIC_EAP_METHODS=y |
||
383 | |||
384 | # IEEE Std 802.11r-2008 (Fast BSS Transition) for station mode |
||
385 | CONFIG_IEEE80211R=y |
||
386 | |||
387 | # Add support for writing debug log to a file (/tmp/wpa_supplicant-log-#.txt) |
||
388 | #CONFIG_DEBUG_FILE=y |
||
389 | |||
390 | # Send debug messages to syslog instead of stdout |
||
391 | CONFIG_DEBUG_SYSLOG=y |
||
392 | # Set syslog facility for debug messages |
||
393 | CONFIG_DEBUG_SYSLOG_FACILITY=LOG_DAEMON |
||
394 | |||
395 | # Add support for sending all debug messages (regardless of debug verbosity) |
||
396 | # to the Linux kernel tracing facility. This helps debug the entire stack by |
||
397 | # making it easy to record everything happening from the driver up into the |
||
398 | # same file, e.g., using trace-cmd. |
||
399 | #CONFIG_DEBUG_LINUX_TRACING=y |
||
400 | |||
401 | # Add support for writing debug log to Android logcat instead of standard |
||
402 | # output |
||
403 | #CONFIG_ANDROID_LOG=y |
||
404 | |||
405 | # Enable privilege separation (see README 'Privilege separation' for details) |
||
406 | #CONFIG_PRIVSEP=y |
||
407 | |||
408 | # Enable mitigation against certain attacks against TKIP by delaying Michael |
||
409 | # MIC error reports by a random amount of time between 0 and 60 seconds |
||
410 | #CONFIG_DELAYED_MIC_ERROR_REPORT=y |
||
411 | |||
412 | # Enable tracing code for developer debugging |
||
413 | # This tracks use of memory allocations and other registrations and reports |
||
414 | # incorrect use with a backtrace of call (or allocation) location. |
||
415 | #CONFIG_WPA_TRACE=y |
||
416 | # For BSD, uncomment these. |
||
417 | #LIBS += -lexecinfo |
||
418 | #LIBS_p += -lexecinfo |
||
419 | #LIBS_c += -lexecinfo |
||
420 | |||
421 | # Use libbfd to get more details for developer debugging |
||
422 | # This enables use of libbfd to get more detailed symbols for the backtraces |
||
423 | # generated by CONFIG_WPA_TRACE=y. |
||
424 | #CONFIG_WPA_TRACE_BFD=y |
||
425 | # For BSD, uncomment these. |
||
426 | #LIBS += -lbfd -liberty -lz |
||
427 | #LIBS_p += -lbfd -liberty -lz |
||
428 | #LIBS_c += -lbfd -liberty -lz |
||
429 | |||
430 | # wpa_supplicant depends on strong random number generation being available |
||
431 | # from the operating system. os_get_random() function is used to fetch random |
||
432 | # data when needed, e.g., for key generation. On Linux and BSD systems, this |
||
433 | # works by reading /dev/urandom. It should be noted that the OS entropy pool |
||
434 | # needs to be properly initialized before wpa_supplicant is started. This is |
||
435 | # important especially on embedded devices that do not have a hardware random |
||
436 | # number generator and may by default start up with minimal entropy available |
||
437 | # for random number generation. |
||
438 | # |
||
439 | # As a safety net, wpa_supplicant is by default trying to internally collect |
||
440 | # additional entropy for generating random data to mix in with the data fetched |
||
441 | # from the OS. This by itself is not considered to be very strong, but it may |
||
442 | # help in cases where the system pool is not initialized properly. However, it |
||
443 | # is very strongly recommended that the system pool is initialized with enough |
||
444 | # entropy either by using hardware assisted random number generator or by |
||
445 | # storing state over device reboots. |
||
446 | # |
||
447 | # wpa_supplicant can be configured to maintain its own entropy store over |
||
448 | # restarts to enhance random number generation. This is not perfect, but it is |
||
449 | # much more secure than using the same sequence of random numbers after every |
||
450 | # reboot. This can be enabled with -e<entropy file> command line option. The |
||
451 | # specified file needs to be readable and writable by wpa_supplicant. |
||
452 | # |
||
453 | # If the os_get_random() is known to provide strong random data (e.g., on |
||
454 | # Linux/BSD, the board in question is known to have reliable source of random |
||
455 | # data from /dev/urandom), the internal wpa_supplicant random pool can be |
||
456 | # disabled. This will save some in binary size and CPU use. However, this |
||
457 | # should only be considered for builds that are known to be used on devices |
||
458 | # that meet the requirements described above. |
||
459 | CONFIG_NO_RANDOM_POOL=y |
||
460 | |||
461 | # IEEE 802.11n (High Throughput) support (mainly for AP mode) |
||
462 | #CONFIG_IEEE80211N=y |
||
463 | |||
464 | # IEEE 802.11ac (Very High Throughput) support (mainly for AP mode) |
||
465 | # (depends on CONFIG_IEEE80211N) |
||
466 | #CONFIG_IEEE80211AC=y |
||
467 | |||
468 | # Wireless Network Management (IEEE Std 802.11v-2011) |
||
469 | # Note: This is experimental and not complete implementation. |
||
470 | CONFIG_WNM=y |
||
471 | |||
472 | # Interworking (IEEE 802.11u) |
||
473 | # This can be used to enable functionality to improve interworking with |
||
474 | # external networks (GAS/ANQP to learn more about the networks and network |
||
475 | # selection based on available credentials). |
||
476 | #CONFIG_INTERWORKING=y |
||
477 | |||
478 | # Hotspot 2.0 |
||
479 | #CONFIG_HS20=y |
||
480 | |||
481 | # Enable interface matching in wpa_supplicant |
||
482 | #CONFIG_MATCH_IFACE=y |
||
483 | |||
484 | # Disable roaming in wpa_supplicant |
||
485 | #CONFIG_NO_ROAMING=y |
||
486 | |||
487 | # AP mode operations with wpa_supplicant |
||
488 | # This can be used for controlling AP mode operations with wpa_supplicant. It |
||
489 | # should be noted that this is mainly aimed at simple cases like |
||
490 | # WPA2-Personal while more complex configurations like WPA2-Enterprise with an |
||
491 | # external RADIUS server can be supported with hostapd. |
||
492 | #CONFIG_AP=y |
||
493 | |||
494 | # P2P (Wi-Fi Direct) |
||
495 | # This can be used to enable P2P support in wpa_supplicant. See README-P2P for |
||
496 | # more information on P2P operations. |
||
497 | #CONFIG_P2P=y |
||
498 | |||
499 | # Enable TDLS support |
||
500 | #CONFIG_TDLS=y |
||
501 | |||
502 | # Wi-Fi Direct |
||
503 | # This can be used to enable Wi-Fi Direct extensions for P2P using an external |
||
504 | # program to control the additional information exchanges in the messages. |
||
505 | #CONFIG_WIFI_DISPLAY=y |
||
506 | |||
507 | # Autoscan |
||
508 | # This can be used to enable automatic scan support in wpa_supplicant. |
||
509 | # See wpa_supplicant.conf for more information on autoscan usage. |
||
510 | # |
||
511 | # Enabling directly a module will enable autoscan support. |
||
512 | # For exponential module: |
||
513 | #CONFIG_AUTOSCAN_EXPONENTIAL=y |
||
514 | # For periodic module: |
||
515 | #CONFIG_AUTOSCAN_PERIODIC=y |
||
516 | |||
517 | # Password (and passphrase, etc.) backend for external storage |
||
518 | # These optional mechanisms can be used to add support for storing passwords |
||
519 | # and other secrets in external (to wpa_supplicant) location. This allows, for |
||
520 | # example, operating system specific key storage to be used |
||
521 | # |
||
522 | # External password backend for testing purposes (developer use) |
||
523 | #CONFIG_EXT_PASSWORD_TEST=y |
||
524 | |||
525 | # Enable Fast Session Transfer (FST) |
||
526 | #CONFIG_FST=y |
||
527 | |||
528 | # Enable CLI commands for FST testing |
||
529 | #CONFIG_FST_TEST=y |
||
530 | |||
531 | # OS X builds. This is only for building eapol_test. |
||
532 | #CONFIG_OSX=y |
||
533 | |||
534 | # Automatic Channel Selection |
||
535 | # This will allow wpa_supplicant to pick the channel automatically when channel |
||
536 | # is set to "0". |
||
537 | # |
||
538 | # TODO: Extend parser to be able to parse "channel=acs_survey" as an alternative |
||
539 | # to "channel=0". This would enable us to eventually add other ACS algorithms in |
||
540 | # similar way. |
||
541 | # |
||
542 | # Automatic selection is currently only done through initialization, later on |
||
543 | # we hope to do background checks to keep us moving to more ideal channels as |
||
544 | # time goes by. ACS is currently only supported through the nl80211 driver and |
||
545 | # your driver must have survey dump capability that is filled by the driver |
||
546 | # during scanning. |
||
547 | # |
||
548 | # TODO: In analogy to hostapd be able to customize the ACS survey algorithm with |
||
549 | # a newly to create wpa_supplicant.conf variable acs_num_scans. |
||
550 | # |
||
551 | # Supported ACS drivers: |
||
552 | # * ath9k |
||
553 | # * ath5k |
||
554 | # * ath10k |
||
555 | # |
||
556 | # For more details refer to: |
||
557 | # http://wireless.kernel.org/en/users/Documentation/acs |
||
558 | #CONFIG_ACS=y |
||
559 | |||
560 | # Support Multi Band Operation |
||
561 | #CONFIG_MBO=y |
||
562 | |||
563 | # Fast Initial Link Setup (FILS) (IEEE 802.11ai) |
||
564 | # Note: This is an experimental and not yet complete implementation. This |
||
565 | # should not be enabled for production use. |
||
566 | #CONFIG_FILS=y |
||
567 | # FILS shared key authentication with PFS |
||
568 | #CONFIG_FILS_SK_PFS=y |
||
569 | |||
570 | # Support RSN on IBSS networks |
||
571 | # This is needed to be able to use mode=1 network profile with proto=RSN and |
||
572 | # key_mgmt=WPA-PSK (i.e., full key management instead of WPA-None). |
||
573 | CONFIG_IBSS_RSN=y |
||
574 | |||
575 | # External PMKSA cache control |
||
576 | # This can be used to enable control interface commands that allow the current |
||
577 | # PMKSA cache entries to be fetched and new entries to be added. |
||
578 | #CONFIG_PMKSA_CACHE_EXTERNAL=y |
||
579 | |||
580 | # Mesh Networking (IEEE 802.11s) |
||
581 | #CONFIG_MESH=y |
||
582 | |||
583 | # Background scanning modules |
||
584 | # These can be used to request wpa_supplicant to perform background scanning |
||
585 | # operations for roaming within an ESS (same SSID). See the bgscan parameter in |
||
586 | # the wpa_supplicant.conf file for more details. |
||
587 | # Periodic background scans based on signal strength |
||
588 | #CONFIG_BGSCAN_SIMPLE=y |
||
589 | # Learn channels used by the network and try to avoid bgscans on other |
||
590 | # channels (experimental) |
||
591 | #CONFIG_BGSCAN_LEARN=y |
||
592 | |||
593 | # Opportunistic Wireless Encryption (OWE) |
||
594 | # Experimental implementation of draft-harkins-owe-07.txt |
||
595 | #CONFIG_OWE=y |
||
596 | |||
597 | # uBus IPC/RPC System |
||
598 | # Services can connect to the bus and provide methods |
||
599 | # that can be called by other services or clients. |
||
600 | CONFIG_UBUS=y |