Add group_mgmt network parameter for PMF cipher selection

The new wpa_supplicant network parameter group_mgmt can be used to specify which group management ciphers (AES-128-CMAC, BIP-GMAC-128, BIP-GMAC-256, BIP-CMAC-256) are allowed for the network. If not specified, the current behavior is maintained (i.e., follow what the AP advertises). The parameter can list multiple space separate ciphers. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
2017-09-26 17:36:33 +03:00 · 2017-09-26 17:36:33 +03:00 · 61a56c1480
commit 61a56c1480
parent 0ad5893a2f
11 changed files with 150 additions and 6 deletions
--- a/tests/hwsim/wpasupplicant.py
+++ b/tests/hwsim/wpasupplicant.py
@ -1027,7 +1027,8 @@ class WpaSupplicant:
                       "bssid_whitelist", "mem_only_psk", "eap_workaround",
                       "engine", "fils_dh_group", "bssid_hint",
                       "dpp_csign", "dpp_csign_expiry",
-                       "dpp_netaccesskey", "dpp_netaccesskey_expiry" ]
+                       "dpp_netaccesskey", "dpp_netaccesskey_expiry",
+                       "group_mgmt" ]
        for field in not_quoted:
            if field in kwargs and kwargs[field]:
                self.set_network(id, field, kwargs[field])