EAP-FAST: Added support for disabling anonymous/authenticated provisioning

eap_fast_prov config parameter can now be used to enable/disable different
EAP-FAST provisioning modes:
0 = provisioning disabled
1 = only anonymous provisioning allowed
2 = only authenticated provisioning allowed
3 = both provisioning modes allowed

src/radius/radius_server.c

@@ -86,6 +86,7 @@ struct radius_server_data {
 	void *ssl_ctx;
 	u8 *pac_opaque_encr_key;
 	char *eap_fast_a_id;
+	int eap_fast_prov;
 	int eap_sim_aka_result_ind;
 	int tnc;
 	int ipv6;
@@ -311,6 +312,7 @@ radius_server_get_new_session(struct radius_server_data *data,
 	eap_conf.eap_server = 1;
 	eap_conf.pac_opaque_encr_key = data->pac_opaque_encr_key;
 	eap_conf.eap_fast_a_id = data->eap_fast_a_id;
+	eap_conf.eap_fast_prov = data->eap_fast_prov;
 	eap_conf.eap_sim_aka_result_ind = data->eap_sim_aka_result_ind;
 	eap_conf.tnc = data->tnc;
 	sess->eap = eap_server_sm_init(sess, &radius_server_eapol_cb,
@@ -1016,6 +1018,7 @@ radius_server_init(struct radius_server_conf *conf)
 	}
 	if (conf->eap_fast_a_id)
 		data->eap_fast_a_id = os_strdup(conf->eap_fast_a_id);
+	data->eap_fast_prov = conf->eap_fast_prov;
 	data->get_eap_user = conf->get_eap_user;
 	data->eap_sim_aka_result_ind = conf->eap_sim_aka_result_ind;
 	data->tnc = conf->tnc;