1 # Example hostapd build time configuration 2 # 3 # This file lists the configuration options that are used when building the 4 # hostapd binary. All lines starting with # are ignored. Configuration option 5 # lines must be commented out complete, if they are not to be included, i.e., 6 # just setting VARIABLE=n is not disabling that variable. 7 # 8 # This file is included in Makefile, so variables like CFLAGS and LIBS can also 9 # be modified from here. In most cass, these lines should use += in order not 10 # to override previous values of the variables. 11 12 # Driver interface for Host AP driver 13 #CONFIG_DRIVER_HOSTAP=y 14 15 # Driver interface for wired authenticator 16 #CONFIG_DRIVER_WIRED=y 17 18 # Driver interface for drivers using the nl80211 kernel interface 19 #CONFIG_DRIVER_NL80211=y 20 # driver_nl80211.c requires a rather new libnl (version 1.1) which may not be 21 # shipped with your distribution yet. If that is the case, you need to build 22 # newer libnl version and point the hostapd build to use it. 23 #LIBNL=/usr/src/libnl 24 #CFLAGS += -I$(LIBNL)/include 25 #LIBS += -L$(LIBNL)/lib 26 CONFIG_LIBNL20=y 27 28 # QCA vendor extensions to nl80211 29 CONFIG_DRIVER_NL80211_QCA=y 30 31 # Broadcom vendor extensions to nl80211 32 #CONFIG_DRIVER_NL80211_BRCM=y 33 34 # Driver interface for FreeBSD net80211 layer (e.g., Atheros driver) 35 #CONFIG_DRIVER_BSD=y 36 #CFLAGS += -I/usr/local/include 37 #LIBS += -L/usr/local/lib 38 #LIBS_p += -L/usr/local/lib 39 #LIBS_c += -L/usr/local/lib 40 41 # Driver interface for no driver (e.g., RADIUS server only) 42 #CONFIG_DRIVER_NONE=y 43 44 # WPA2/IEEE 802.11i RSN pre-authentication 45 #CONFIG_RSN_PREAUTH=y 46 47 # Support Operating Channel Validation 48 #CONFIG_OCV=y 49 50 # Integrated EAP server 51 #CONFIG_EAP=y 52 53 # EAP-MD5 for the integrated EAP server 54 #CONFIG_EAP_MD5=y 55 56 # EAP-TLS for the integrated EAP server 57 #CONFIG_EAP_TLS=y 58 59 # EAP-MSCHAPv2 for the integrated EAP server 60 #CONFIG_EAP_MSCHAPV2=y 61 62 # EAP-PEAP for the integrated EAP server 63 #CONFIG_EAP_PEAP=y 64 65 # EAP-GTC for the integrated EAP server 66 #CONFIG_EAP_GTC=y 67 68 # EAP-TTLS for the integrated EAP server 69 #CONFIG_EAP_TTLS=y 70 71 # EAP-SIM for the integrated EAP server 72 #CONFIG_EAP_SIM=y 73 74 # EAP-AKA for the integrated EAP server 75 #CONFIG_EAP_AKA=y 76 77 # EAP-AKA' for the integrated EAP server 78 # This requires CONFIG_EAP_AKA to be enabled, too. 79 #CONFIG_EAP_AKA_PRIME=y 80 81 # EAP-PAX for the integrated EAP server 82 #CONFIG_EAP_PAX=y 83 84 # EAP-PSK for the integrated EAP server (this is _not_ needed for WPA-PSK) 85 #CONFIG_EAP_PSK=y 86 87 # EAP-SAKE for the integrated EAP server 88 #CONFIG_EAP_SAKE=y 89 90 # EAP-GPSK for the integrated EAP server 91 #CONFIG_EAP_GPSK=y 92 # Include support for optional SHA256 cipher suite in EAP-GPSK 93 #CONFIG_EAP_GPSK_SHA256=y 94 95 # EAP-FAST for the integrated EAP server 96 # Note: Default OpenSSL package does not include support for all the 97 # functionality needed for EAP-FAST. If EAP-FAST is enabled with OpenSSL, 98 # the OpenSSL library must be patched (openssl-0.9.9-session-ticket.patch) 99 # to add the needed functions. 100 #CONFIG_EAP_FAST=y 101 102 # Wi-Fi Protected Setup (WPS) 103 CONFIG_WPS=y 104 # Enable UPnP support for external WPS Registrars 105 #CONFIG_WPS_UPNP=y 106 107 # EAP-IKEv2 108 #CONFIG_EAP_IKEV2=y 109 110 # Trusted Network Connect (EAP-TNC) 111 #CONFIG_EAP_TNC=y 112 113 # PKCS#12 (PFX) support (used to read private key and certificate file from 114 # a file that usually has extension .p12 or .pfx) 115 CONFIG_PKCS12=y 116 117 # RADIUS authentication server. This provides access to the integrated EAP 118 # server from external hosts using RADIUS. 119 #CONFIG_RADIUS_SERVER=y 120 121 # Build IPv6 support for RADIUS operations 122 CONFIG_IPV6=y 123 124 # Include support fo RADIUS/TLS into the RADIUS client 125 #CONFIG_RADIUS_TLS=y 126 127 # IEEE Std 802.11r-2008 (Fast BSS Transition) 128 #CONFIG_IEEE80211R=y 129 130 # Use the hostapd's IEEE 802.11 authentication (ACL), but without 131 # the IEEE 802.11 Management capability (e.g., FreeBSD/net80211) 132 #CONFIG_DRIVER_RADIUS_ACL=y 133 134 # Remove debugging code that is printing out debug messages to stdout. 135 # This can be used to reduce the size of the hostapd considerably if debugging 136 # code is not needed. 137 #CONFIG_NO_STDOUT_DEBUG=y 138 139 # Add support for writing debug log to Android logcat instead of standard output 140 CONFIG_ANDROID_LOG=y 141 142 # Remove support for RADIUS accounting 143 #CONFIG_NO_ACCOUNTING=y 144 145 # Remove support for RADIUS 146 CONFIG_NO_RADIUS=y 147 148 # Remove support for VLANs 149 #CONFIG_NO_VLAN=y 150 151 # Remove support for dumping internal state through control interface commands 152 # This can be used to reduce binary size at the cost of disabling a debugging 153 # option. 154 #CONFIG_NO_DUMP_STATE=y 155 156 # Select wrapper for operatins system and C library specific functions 157 # unix = UNIX/POSIX like systems (default) 158 # win32 = Windows systems 159 # none = Empty template 160 CONFIG_OS=unix 161 162 # Enable tracing code for developer debugging 163 # This tracks use of memory allocations and other registrations and reports 164 # incorrect use with a backtrace of call (or allocation) location. 165 #CONFIG_WPA_TRACE=y 166 # For BSD, comment out these. 167 #LIBS += -lexecinfo 168 #LIBS_p += -lexecinfo 169 #LIBS_c += -lexecinfo 170 171 # Use libbfd to get more details for developer debugging 172 # This enables use of libbfd to get more detailed symbols for the backtraces 173 # generated by CONFIG_WPA_TRACE=y. 174 #CONFIG_WPA_TRACE_BFD=y 175 # For BSD, comment out these. 176 #LIBS += -lbfd -liberty -lz 177 #LIBS_p += -lbfd -liberty -lz 178 #LIBS_c += -lbfd -liberty -lz 179 180 # Should we use poll instead of select? Select is used by default. 181 #CONFIG_ELOOP_POLL=y 182 183 # Should we use epoll instead of select? Select is used by default. 184 #CONFIG_ELOOP_EPOLL=y 185 186 # Enable AP 187 CONFIG_AP=y 188 189 # Enable Fast Session Transfer (FST) 190 #CONFIG_FST=y 191 192 # Multiband Operation support 193 # These extensions facilitate efficient use of multiple frequency bands 194 # available to the AP and the devices that may associate with it. 195 #CONFIG_MBO=y 196 197 # Include internal line edit mode in hostapd_cli. 198 CONFIG_WPA_CLI_EDIT=y 199 200 # Opportunistic Wireless Encryption (OWE) 201 # Experimental implementation of draft-harkins-owe-07.txt 202 #CONFIG_OWE=y 203 204 # Wpa_supplicant's random pool is not necessary on Android. Randomness is 205 # already provided by the entropymixer service which ensures sufficient 206 # entropy is maintained across reboots. Commit b410eb1913 'Initialize 207 # /dev/urandom earlier in boot' seeds /dev/urandom with that entropy before 208 # either wpa_supplicant or hostapd are run. 209 CONFIG_NO_RANDOM_POOL=y 210 211 # Wired equivalent privacy (WEP) 212 # WEP is an obsolete cryptographic data confidentiality algorithm that is not 213 # considered secure. It should not be used for anything anymore. The 214 # functionality needed to use WEP is available in the current hostapd 215 # release under this optional build parameter. This functionality is subject to 216 # be completely removed in a future release. 217 CONFIG_WEP=y 218 219 # Wi-Fi Aware unsynchronized service discovery (NAN USD) 220 #CONFIG_NAN_USD=y 221
Indexes created Wed Mar 18 00:23:26 UTC 2026