hostapd: add default values for r0kh/r1kh

This allows WPA enterprise roaming in the same mobility domain without any
manual key configuration (aside from radius credentials)

Signed-off-by: Felix Fietkau <nbd@nbd.name>
(cherry-picked from commit 704ab6a002172e76d41612f6d07ff179ef035d10)

diff --git a/package/network/services/hostapd/files/hostapd.sh b/package/network/services/hostapd/files/hostapd.sh
index 6a830dfad1e64b33ef71e79b04a8aca2321abc90..24fc7c3cca17814b46abdd3f1f8108b0b42488e4 100644 (file)
--- a/package/network/services/hostapd/files/hostapd.sh
+++ b/package/network/services/hostapd/files/hostapd.sh
@@ -815,6 +815,13 @@ hostapd_set_bss_options() {
                                set_default r0_key_lifetime 10000
                                set_default pmk_r1_push 0
 
+                               [ -n "$r0kh" -a -n "$r1kh" ] || {
+                                       key=`echo -n "$mobility_domain/$auth_secret" | md5sum | awk '{print $1}'`
+
+                                       set_default r0kh "ff:ff:ff:ff:ff:ff,*,$key"
+                                       set_default r1kh "00:00:00:00:00:00,00:00:00:00:00:00,$key"
+                               }
+
                                [ -n "$r1_key_holder" ] && append bss_conf "r1_key_holder=$r1_key_holder" "$N"
                                append bss_conf "r0_key_lifetime=$r0_key_lifetime" "$N"
                                append bss_conf "pmk_r1_push=$pmk_r1_push" "$N"