mirror of
https://github.com/vanhoefm/fragattacks.git
synced 2025-01-18 10:54:03 -05:00
ca84eed7ad
This allows the internal TLS implementation to be built for TLS v1.2 support. In addition to the build option, this changes the TLS PRF based on the negotiated version number. Though, this commit does not yet complete support for TLS v1.2. Signed-hostap: Jouni Malinen <j@w1.fi>
868 lines
18 KiB
Makefile
868 lines
18 KiB
Makefile
ifndef CC
|
|
CC=gcc
|
|
endif
|
|
|
|
ifndef CFLAGS
|
|
CFLAGS = -MMD -O2 -Wall -g
|
|
endif
|
|
|
|
CFLAGS += -I../src
|
|
CFLAGS += -I../src/utils
|
|
|
|
# Uncomment following line and set the path to your kernel tree include
|
|
# directory if your C library does not include all header files.
|
|
# CFLAGS += -DUSE_KERNEL_HEADERS -I/usr/src/linux/include
|
|
|
|
-include .config
|
|
|
|
ifndef CONFIG_OS
|
|
ifdef CONFIG_NATIVE_WINDOWS
|
|
CONFIG_OS=win32
|
|
else
|
|
CONFIG_OS=unix
|
|
endif
|
|
endif
|
|
|
|
ifeq ($(CONFIG_OS), internal)
|
|
CFLAGS += -DOS_NO_C_LIB_DEFINES
|
|
endif
|
|
|
|
ifdef CONFIG_NATIVE_WINDOWS
|
|
CFLAGS += -DCONFIG_NATIVE_WINDOWS
|
|
LIBS += -lws2_32
|
|
endif
|
|
|
|
OBJS += main.o
|
|
OBJS += config_file.o
|
|
|
|
OBJS += ../src/ap/hostapd.o
|
|
OBJS += ../src/ap/wpa_auth_glue.o
|
|
OBJS += ../src/ap/drv_callbacks.o
|
|
OBJS += ../src/ap/ap_drv_ops.o
|
|
OBJS += ../src/ap/utils.o
|
|
OBJS += ../src/ap/authsrv.o
|
|
OBJS += ../src/ap/ieee802_1x.o
|
|
OBJS += ../src/ap/ap_config.o
|
|
OBJS += ../src/ap/ieee802_11_auth.o
|
|
OBJS += ../src/ap/sta_info.o
|
|
OBJS += ../src/ap/wpa_auth.o
|
|
OBJS += ../src/ap/tkip_countermeasures.o
|
|
OBJS += ../src/ap/ap_mlme.o
|
|
OBJS += ../src/ap/wpa_auth_ie.o
|
|
OBJS += ../src/ap/preauth_auth.o
|
|
OBJS += ../src/ap/pmksa_cache_auth.o
|
|
OBJS += ../src/ap/ieee802_11_shared.o
|
|
OBJS += ../src/ap/beacon.o
|
|
|
|
OBJS_c = hostapd_cli.o ../src/common/wpa_ctrl.o ../src/utils/os_$(CONFIG_OS).o
|
|
|
|
NEED_RC4=y
|
|
NEED_AES=y
|
|
NEED_MD5=y
|
|
NEED_SHA1=y
|
|
|
|
OBJS += ../src/drivers/drivers.o
|
|
CFLAGS += -DHOSTAPD
|
|
|
|
ifdef CONFIG_WPA_TRACE
|
|
CFLAGS += -DWPA_TRACE
|
|
OBJS += ../src/utils/trace.o
|
|
HOBJS += ../src/utils/trace.o
|
|
LDFLAGS += -rdynamic
|
|
CFLAGS += -funwind-tables
|
|
ifdef CONFIG_WPA_TRACE_BFD
|
|
CFLAGS += -DWPA_TRACE_BFD
|
|
LIBS += -lbfd
|
|
LIBS_c += -lbfd
|
|
LIBS_h += -lbfd
|
|
endif
|
|
endif
|
|
|
|
ifndef CONFIG_ELOOP
|
|
CONFIG_ELOOP=eloop
|
|
endif
|
|
OBJS += ../src/utils/$(CONFIG_ELOOP).o
|
|
OBJS_c += ../src/utils/$(CONFIG_ELOOP).o
|
|
OBJS += ../src/utils/common.o
|
|
OBJS += ../src/utils/wpa_debug.o
|
|
OBJS_c += ../src/utils/wpa_debug.o
|
|
OBJS += ../src/utils/wpabuf.o
|
|
OBJS += ../src/utils/os_$(CONFIG_OS).o
|
|
OBJS += ../src/utils/ip_addr.o
|
|
|
|
OBJS += ../src/common/ieee802_11_common.o
|
|
OBJS += ../src/common/wpa_common.o
|
|
|
|
OBJS += ../src/eapol_auth/eapol_auth_sm.o
|
|
|
|
|
|
ifndef CONFIG_NO_DUMP_STATE
|
|
# define HOSTAPD_DUMP_STATE to include SIGUSR1 handler for dumping state to
|
|
# a file (undefine it, if you want to save in binary size)
|
|
CFLAGS += -DHOSTAPD_DUMP_STATE
|
|
OBJS += dump_state.o
|
|
OBJS += ../src/eapol_auth/eapol_auth_dump.o
|
|
endif
|
|
|
|
ifdef CONFIG_NO_RADIUS
|
|
CFLAGS += -DCONFIG_NO_RADIUS
|
|
CONFIG_NO_ACCOUNTING=y
|
|
else
|
|
OBJS += ../src/radius/radius.o
|
|
OBJS += ../src/radius/radius_client.o
|
|
endif
|
|
|
|
ifdef CONFIG_NO_ACCOUNTING
|
|
CFLAGS += -DCONFIG_NO_ACCOUNTING
|
|
else
|
|
OBJS += ../src/ap/accounting.o
|
|
endif
|
|
|
|
ifdef CONFIG_NO_VLAN
|
|
CFLAGS += -DCONFIG_NO_VLAN
|
|
else
|
|
OBJS += ../src/ap/vlan_init.o
|
|
endif
|
|
|
|
ifdef CONFIG_NO_CTRL_IFACE
|
|
CFLAGS += -DCONFIG_NO_CTRL_IFACE
|
|
else
|
|
OBJS += ctrl_iface.o
|
|
OBJS += ../src/ap/ctrl_iface_ap.o
|
|
endif
|
|
|
|
OBJS += ../src/crypto/md5.o
|
|
|
|
CFLAGS += -DCONFIG_CTRL_IFACE -DCONFIG_CTRL_IFACE_UNIX
|
|
|
|
ifdef CONFIG_IAPP
|
|
CFLAGS += -DCONFIG_IAPP
|
|
OBJS += ../src/ap/iapp.o
|
|
endif
|
|
|
|
ifdef CONFIG_RSN_PREAUTH
|
|
CFLAGS += -DCONFIG_RSN_PREAUTH
|
|
CONFIG_L2_PACKET=y
|
|
endif
|
|
|
|
ifdef CONFIG_PEERKEY
|
|
CFLAGS += -DCONFIG_PEERKEY
|
|
OBJS += ../src/ap/peerkey_auth.o
|
|
endif
|
|
|
|
ifdef CONFIG_IEEE80211W
|
|
CFLAGS += -DCONFIG_IEEE80211W
|
|
NEED_SHA256=y
|
|
NEED_AES_OMAC1=y
|
|
endif
|
|
|
|
ifdef CONFIG_IEEE80211R
|
|
CFLAGS += -DCONFIG_IEEE80211R
|
|
OBJS += ../src/ap/wpa_auth_ft.o
|
|
NEED_SHA256=y
|
|
NEED_AES_OMAC1=y
|
|
NEED_AES_UNWRAP=y
|
|
endif
|
|
|
|
ifdef CONFIG_IEEE80211N
|
|
CFLAGS += -DCONFIG_IEEE80211N
|
|
endif
|
|
|
|
include ../src/drivers/drivers.mak
|
|
OBJS += $(DRV_AP_OBJS)
|
|
CFLAGS += $(DRV_AP_CFLAGS)
|
|
LDFLAGS += $(DRV_AP_LDFLAGS)
|
|
LIBS += $(DRV_AP_LIBS)
|
|
|
|
ifdef CONFIG_L2_PACKET
|
|
ifdef CONFIG_DNET_PCAP
|
|
ifdef CONFIG_L2_FREEBSD
|
|
LIBS += -lpcap
|
|
OBJS += ../src/l2_packet/l2_packet_freebsd.o
|
|
else
|
|
LIBS += -ldnet -lpcap
|
|
OBJS += ../src/l2_packet/l2_packet_pcap.o
|
|
endif
|
|
else
|
|
OBJS += ../src/l2_packet/l2_packet_linux.o
|
|
endif
|
|
else
|
|
OBJS += ../src/l2_packet/l2_packet_none.o
|
|
endif
|
|
|
|
|
|
ifdef CONFIG_EAP_MD5
|
|
CFLAGS += -DEAP_SERVER_MD5
|
|
OBJS += ../src/eap_server/eap_server_md5.o
|
|
CHAP=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_TLS
|
|
CFLAGS += -DEAP_SERVER_TLS
|
|
OBJS += ../src/eap_server/eap_server_tls.o
|
|
TLS_FUNCS=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_PEAP
|
|
CFLAGS += -DEAP_SERVER_PEAP
|
|
OBJS += ../src/eap_server/eap_server_peap.o
|
|
OBJS += ../src/eap_common/eap_peap_common.o
|
|
TLS_FUNCS=y
|
|
CONFIG_EAP_MSCHAPV2=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_TTLS
|
|
CFLAGS += -DEAP_SERVER_TTLS
|
|
OBJS += ../src/eap_server/eap_server_ttls.o
|
|
TLS_FUNCS=y
|
|
CHAP=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_MSCHAPV2
|
|
CFLAGS += -DEAP_SERVER_MSCHAPV2
|
|
OBJS += ../src/eap_server/eap_server_mschapv2.o
|
|
MS_FUNCS=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_GTC
|
|
CFLAGS += -DEAP_SERVER_GTC
|
|
OBJS += ../src/eap_server/eap_server_gtc.o
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_SIM
|
|
CFLAGS += -DEAP_SERVER_SIM
|
|
OBJS += ../src/eap_server/eap_server_sim.o
|
|
CONFIG_EAP_SIM_COMMON=y
|
|
NEED_AES_CBC=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_AKA
|
|
CFLAGS += -DEAP_SERVER_AKA
|
|
OBJS += ../src/eap_server/eap_server_aka.o
|
|
CONFIG_EAP_SIM_COMMON=y
|
|
NEED_SHA256=y
|
|
NEED_AES_CBC=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_AKA_PRIME
|
|
CFLAGS += -DEAP_SERVER_AKA_PRIME
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_SIM_COMMON
|
|
OBJS += ../src/eap_common/eap_sim_common.o
|
|
# Example EAP-SIM/AKA interface for GSM/UMTS authentication. This can be
|
|
# replaced with another file implementating the interface specified in
|
|
# eap_sim_db.h.
|
|
OBJS += ../src/eap_server/eap_sim_db.o
|
|
NEED_FIPS186_2_PRF=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_PAX
|
|
CFLAGS += -DEAP_SERVER_PAX
|
|
OBJS += ../src/eap_server/eap_server_pax.o ../src/eap_common/eap_pax_common.o
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_PSK
|
|
CFLAGS += -DEAP_SERVER_PSK
|
|
OBJS += ../src/eap_server/eap_server_psk.o ../src/eap_common/eap_psk_common.o
|
|
NEED_AES_OMAC1=y
|
|
NEED_AES_ENCBLOCK=y
|
|
NEED_AES_EAX=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_SAKE
|
|
CFLAGS += -DEAP_SERVER_SAKE
|
|
OBJS += ../src/eap_server/eap_server_sake.o ../src/eap_common/eap_sake_common.o
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_GPSK
|
|
CFLAGS += -DEAP_SERVER_GPSK
|
|
OBJS += ../src/eap_server/eap_server_gpsk.o ../src/eap_common/eap_gpsk_common.o
|
|
ifdef CONFIG_EAP_GPSK_SHA256
|
|
CFLAGS += -DEAP_SERVER_GPSK_SHA256
|
|
endif
|
|
NEED_SHA256=y
|
|
NEED_AES_OMAC1=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_PWD
|
|
CFLAGS += -DEAP_SERVER_PWD
|
|
OBJS += ../src/eap_server/eap_server_pwd.o ../src/eap_common/eap_pwd_common.o
|
|
NEED_SHA256=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_VENDOR_TEST
|
|
CFLAGS += -DEAP_SERVER_VENDOR_TEST
|
|
OBJS += ../src/eap_server/eap_server_vendor_test.o
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_FAST
|
|
CFLAGS += -DEAP_SERVER_FAST
|
|
OBJS += ../src/eap_server/eap_server_fast.o
|
|
OBJS += ../src/eap_common/eap_fast_common.o
|
|
TLS_FUNCS=y
|
|
NEED_T_PRF=y
|
|
NEED_AES_UNWRAP=y
|
|
endif
|
|
|
|
ifdef CONFIG_WPS
|
|
ifdef CONFIG_WPS2
|
|
CFLAGS += -DCONFIG_WPS2
|
|
endif
|
|
|
|
CFLAGS += -DCONFIG_WPS -DEAP_SERVER_WSC
|
|
OBJS += ../src/utils/uuid.o
|
|
OBJS += ../src/ap/wps_hostapd.o
|
|
OBJS += ../src/eap_server/eap_server_wsc.o ../src/eap_common/eap_wsc_common.o
|
|
OBJS += ../src/wps/wps.o
|
|
OBJS += ../src/wps/wps_common.o
|
|
OBJS += ../src/wps/wps_attr_parse.o
|
|
OBJS += ../src/wps/wps_attr_build.o
|
|
OBJS += ../src/wps/wps_attr_process.o
|
|
OBJS += ../src/wps/wps_dev_attr.o
|
|
OBJS += ../src/wps/wps_enrollee.o
|
|
OBJS += ../src/wps/wps_registrar.o
|
|
NEED_DH_GROUPS=y
|
|
NEED_SHA256=y
|
|
NEED_BASE64=y
|
|
NEED_AES_CBC=y
|
|
NEED_MODEXP=y
|
|
CONFIG_EAP=y
|
|
|
|
ifdef CONFIG_WPS_UFD
|
|
CFLAGS += -DCONFIG_WPS_UFD
|
|
OBJS += ../src/wps/wps_ufd.o
|
|
NEED_WPS_OOB=y
|
|
endif
|
|
|
|
ifdef CONFIG_WPS_NFC
|
|
CFLAGS += -DCONFIG_WPS_NFC
|
|
OBJS += ../src/wps/ndef.o
|
|
OBJS += ../src/wps/wps_nfc.o
|
|
NEED_WPS_OOB=y
|
|
ifdef CONFIG_WPS_NFC_PN531
|
|
PN531_PATH ?= /usr/local/src/nfc
|
|
CFLAGS += -DCONFIG_WPS_NFC_PN531
|
|
CFLAGS += -I${PN531_PATH}/inc
|
|
OBJS += ../src/wps/wps_nfc_pn531.o
|
|
LIBS += ${PN531_PATH}/lib/wpsnfc.dll
|
|
LIBS += ${PN531_PATH}/lib/libnfc_mapping_pn53x.dll
|
|
endif
|
|
endif
|
|
|
|
ifdef NEED_WPS_OOB
|
|
CFLAGS += -DCONFIG_WPS_OOB
|
|
endif
|
|
|
|
ifdef CONFIG_WPS_UPNP
|
|
CFLAGS += -DCONFIG_WPS_UPNP
|
|
OBJS += ../src/wps/wps_upnp.o
|
|
OBJS += ../src/wps/wps_upnp_ssdp.o
|
|
OBJS += ../src/wps/wps_upnp_web.o
|
|
OBJS += ../src/wps/wps_upnp_event.o
|
|
OBJS += ../src/wps/wps_upnp_ap.o
|
|
OBJS += ../src/wps/upnp_xml.o
|
|
OBJS += ../src/wps/httpread.o
|
|
OBJS += ../src/wps/http_client.o
|
|
OBJS += ../src/wps/http_server.o
|
|
endif
|
|
|
|
ifdef CONFIG_WPS_STRICT
|
|
CFLAGS += -DCONFIG_WPS_STRICT
|
|
OBJS += ../src/wps/wps_validate.o
|
|
endif
|
|
|
|
ifdef CONFIG_WPS_TESTING
|
|
CFLAGS += -DCONFIG_WPS_TESTING
|
|
endif
|
|
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_IKEV2
|
|
CFLAGS += -DEAP_SERVER_IKEV2
|
|
OBJS += ../src/eap_server/eap_server_ikev2.o ../src/eap_server/ikev2.o
|
|
OBJS += ../src/eap_common/eap_ikev2_common.o ../src/eap_common/ikev2_common.o
|
|
NEED_DH_GROUPS=y
|
|
NEED_DH_GROUPS_ALL=y
|
|
NEED_MODEXP=y
|
|
NEED_CIPHER=y
|
|
endif
|
|
|
|
ifdef CONFIG_EAP_TNC
|
|
CFLAGS += -DEAP_SERVER_TNC
|
|
OBJS += ../src/eap_server/eap_server_tnc.o
|
|
OBJS += ../src/eap_server/tncs.o
|
|
NEED_BASE64=y
|
|
ifndef CONFIG_DRIVER_BSD
|
|
LIBS += -ldl
|
|
endif
|
|
endif
|
|
|
|
# Basic EAP functionality is needed for EAPOL
|
|
OBJS += eap_register.o
|
|
OBJS += ../src/eap_server/eap_server.o
|
|
OBJS += ../src/eap_common/eap_common.o
|
|
OBJS += ../src/eap_server/eap_server_methods.o
|
|
OBJS += ../src/eap_server/eap_server_identity.o
|
|
CFLAGS += -DEAP_SERVER_IDENTITY
|
|
|
|
ifdef CONFIG_EAP
|
|
CFLAGS += -DEAP_SERVER
|
|
endif
|
|
|
|
ifdef CONFIG_PKCS12
|
|
CFLAGS += -DPKCS12_FUNCS
|
|
endif
|
|
|
|
ifdef MS_FUNCS
|
|
OBJS += ../src/crypto/ms_funcs.o
|
|
NEED_DES=y
|
|
NEED_MD4=y
|
|
endif
|
|
|
|
ifdef CHAP
|
|
OBJS += ../src/eap_common/chap.o
|
|
endif
|
|
|
|
ifdef TLS_FUNCS
|
|
NEED_DES=y
|
|
# Shared TLS functions (needed for EAP_TLS, EAP_PEAP, and EAP_TTLS)
|
|
CFLAGS += -DEAP_TLS_FUNCS
|
|
OBJS += ../src/eap_server/eap_server_tls_common.o
|
|
NEED_TLS_PRF=y
|
|
endif
|
|
|
|
ifndef CONFIG_TLS
|
|
CONFIG_TLS=openssl
|
|
endif
|
|
|
|
ifdef CONFIG_TLSV11
|
|
CFLAGS += -DCONFIG_TLSV11
|
|
endif
|
|
|
|
ifdef CONFIG_TLSV12
|
|
CFLAGS += -DCONFIG_TLSV12
|
|
NEED_SHA256=y
|
|
endif
|
|
|
|
ifeq ($(CONFIG_TLS), openssl)
|
|
ifdef TLS_FUNCS
|
|
OBJS += ../src/crypto/tls_openssl.o
|
|
LIBS += -lssl
|
|
endif
|
|
OBJS += ../src/crypto/crypto_openssl.o
|
|
HOBJS += ../src/crypto/crypto_openssl.o
|
|
ifdef NEED_FIPS186_2_PRF
|
|
OBJS += ../src/crypto/fips_prf_openssl.o
|
|
endif
|
|
LIBS += -lcrypto
|
|
LIBS_h += -lcrypto
|
|
endif
|
|
|
|
ifeq ($(CONFIG_TLS), gnutls)
|
|
ifdef TLS_FUNCS
|
|
OBJS += ../src/crypto/tls_gnutls.o
|
|
LIBS += -lgnutls -lgpg-error
|
|
endif
|
|
OBJS += ../src/crypto/crypto_gnutls.o
|
|
HOBJS += ../src/crypto/crypto_gnutls.o
|
|
ifdef NEED_FIPS186_2_PRF
|
|
OBJS += ../src/crypto/fips_prf_gnutls.o
|
|
endif
|
|
LIBS += -lgcrypt
|
|
LIBS_h += -lgcrypt
|
|
CONFIG_INTERNAL_SHA256=y
|
|
CONFIG_INTERNAL_RC4=y
|
|
CONFIG_INTERNAL_DH_GROUP5=y
|
|
endif
|
|
|
|
ifeq ($(CONFIG_TLS), schannel)
|
|
ifdef TLS_FUNCS
|
|
OBJS += ../src/crypto/tls_schannel.o
|
|
endif
|
|
OBJS += ../src/crypto/crypto_cryptoapi.o
|
|
OBJS_p += ../src/crypto/crypto_cryptoapi.o
|
|
CONFIG_INTERNAL_SHA256=y
|
|
CONFIG_INTERNAL_RC4=y
|
|
CONFIG_INTERNAL_DH_GROUP5=y
|
|
endif
|
|
|
|
ifeq ($(CONFIG_TLS), nss)
|
|
ifdef TLS_FUNCS
|
|
OBJS += ../src/crypto/tls_nss.o
|
|
LIBS += -lssl3
|
|
endif
|
|
OBJS += ../src/crypto/crypto_nss.o
|
|
ifdef NEED_FIPS186_2_PRF
|
|
OBJS += ../src/crypto/fips_prf_nss.o
|
|
endif
|
|
LIBS += -lnss3
|
|
LIBS_h += -lnss3
|
|
CONFIG_INTERNAL_MD4=y
|
|
CONFIG_INTERNAL_DH_GROUP5=y
|
|
endif
|
|
|
|
ifeq ($(CONFIG_TLS), internal)
|
|
ifndef CONFIG_CRYPTO
|
|
CONFIG_CRYPTO=internal
|
|
endif
|
|
ifdef TLS_FUNCS
|
|
OBJS += ../src/crypto/crypto_internal-rsa.o
|
|
OBJS += ../src/crypto/tls_internal.o
|
|
OBJS += ../src/tls/tlsv1_common.o
|
|
OBJS += ../src/tls/tlsv1_record.o
|
|
OBJS += ../src/tls/tlsv1_cred.o
|
|
OBJS += ../src/tls/tlsv1_server.o
|
|
OBJS += ../src/tls/tlsv1_server_write.o
|
|
OBJS += ../src/tls/tlsv1_server_read.o
|
|
OBJS += ../src/tls/asn1.o
|
|
OBJS += ../src/tls/rsa.o
|
|
OBJS += ../src/tls/x509v3.o
|
|
OBJS += ../src/tls/pkcs1.o
|
|
OBJS += ../src/tls/pkcs5.o
|
|
OBJS += ../src/tls/pkcs8.o
|
|
NEED_SHA256=y
|
|
NEED_BASE64=y
|
|
NEED_TLS_PRF=y
|
|
ifdef CONFIG_TLSV12
|
|
NEED_TLS_PRF_SHA256=y
|
|
endif
|
|
NEED_MODEXP=y
|
|
NEED_CIPHER=y
|
|
CFLAGS += -DCONFIG_TLS_INTERNAL
|
|
CFLAGS += -DCONFIG_TLS_INTERNAL_SERVER
|
|
endif
|
|
ifdef NEED_CIPHER
|
|
NEED_DES=y
|
|
OBJS += ../src/crypto/crypto_internal-cipher.o
|
|
endif
|
|
ifdef NEED_MODEXP
|
|
OBJS += ../src/crypto/crypto_internal-modexp.o
|
|
OBJS += ../src/tls/bignum.o
|
|
endif
|
|
ifeq ($(CONFIG_CRYPTO), libtomcrypt)
|
|
OBJS += ../src/crypto/crypto_libtomcrypt.o
|
|
LIBS += -ltomcrypt -ltfm
|
|
LIBS_h += -ltomcrypt -ltfm
|
|
CONFIG_INTERNAL_SHA256=y
|
|
CONFIG_INTERNAL_RC4=y
|
|
CONFIG_INTERNAL_DH_GROUP5=y
|
|
endif
|
|
ifeq ($(CONFIG_CRYPTO), internal)
|
|
OBJS += ../src/crypto/crypto_internal.o
|
|
NEED_AES_DEC=y
|
|
CFLAGS += -DCONFIG_CRYPTO_INTERNAL
|
|
ifdef CONFIG_INTERNAL_LIBTOMMATH
|
|
CFLAGS += -DCONFIG_INTERNAL_LIBTOMMATH
|
|
ifdef CONFIG_INTERNAL_LIBTOMMATH_FAST
|
|
CFLAGS += -DLTM_FAST
|
|
endif
|
|
else
|
|
LIBS += -ltommath
|
|
LIBS_h += -ltommath
|
|
endif
|
|
CONFIG_INTERNAL_AES=y
|
|
CONFIG_INTERNAL_DES=y
|
|
CONFIG_INTERNAL_SHA1=y
|
|
CONFIG_INTERNAL_MD4=y
|
|
CONFIG_INTERNAL_MD5=y
|
|
CONFIG_INTERNAL_SHA256=y
|
|
CONFIG_INTERNAL_RC4=y
|
|
CONFIG_INTERNAL_DH_GROUP5=y
|
|
endif
|
|
ifeq ($(CONFIG_CRYPTO), cryptoapi)
|
|
OBJS += ../src/crypto/crypto_cryptoapi.o
|
|
OBJS_p += ../src/crypto/crypto_cryptoapi.o
|
|
CFLAGS += -DCONFIG_CRYPTO_CRYPTOAPI
|
|
CONFIG_INTERNAL_SHA256=y
|
|
CONFIG_INTERNAL_RC4=y
|
|
endif
|
|
endif
|
|
|
|
ifeq ($(CONFIG_TLS), none)
|
|
ifdef TLS_FUNCS
|
|
OBJS += ../src/crypto/tls_none.o
|
|
CFLAGS += -DEAP_TLS_NONE
|
|
CONFIG_INTERNAL_AES=y
|
|
CONFIG_INTERNAL_SHA1=y
|
|
CONFIG_INTERNAL_MD5=y
|
|
endif
|
|
OBJS += ../src/crypto/crypto_none.o
|
|
OBJS_p += ../src/crypto/crypto_none.o
|
|
CONFIG_INTERNAL_SHA256=y
|
|
CONFIG_INTERNAL_RC4=y
|
|
endif
|
|
|
|
ifndef TLS_FUNCS
|
|
OBJS += ../src/crypto/tls_none.o
|
|
ifeq ($(CONFIG_TLS), internal)
|
|
CONFIG_INTERNAL_AES=y
|
|
CONFIG_INTERNAL_SHA1=y
|
|
CONFIG_INTERNAL_MD5=y
|
|
CONFIG_INTERNAL_RC4=y
|
|
endif
|
|
endif
|
|
|
|
AESOBJS = # none so far
|
|
ifdef CONFIG_INTERNAL_AES
|
|
AESOBJS += ../src/crypto/aes-internal.o ../src/crypto/aes-internal-enc.o
|
|
endif
|
|
|
|
AESOBJS += ../src/crypto/aes-wrap.o
|
|
ifdef NEED_AES_EAX
|
|
AESOBJS += ../src/crypto/aes-eax.o
|
|
NEED_AES_CTR=y
|
|
endif
|
|
ifdef NEED_AES_CTR
|
|
AESOBJS += ../src/crypto/aes-ctr.o
|
|
endif
|
|
ifdef NEED_AES_ENCBLOCK
|
|
AESOBJS += ../src/crypto/aes-encblock.o
|
|
endif
|
|
ifdef NEED_AES_OMAC1
|
|
AESOBJS += ../src/crypto/aes-omac1.o
|
|
endif
|
|
ifdef NEED_AES_UNWRAP
|
|
NEED_AES_DEC=y
|
|
AESOBJS += ../src/crypto/aes-unwrap.o
|
|
endif
|
|
ifdef NEED_AES_CBC
|
|
NEED_AES_DEC=y
|
|
AESOBJS += ../src/crypto/aes-cbc.o
|
|
endif
|
|
ifdef NEED_AES_DEC
|
|
ifdef CONFIG_INTERNAL_AES
|
|
AESOBJS += ../src/crypto/aes-internal-dec.o
|
|
endif
|
|
endif
|
|
ifdef NEED_AES
|
|
OBJS += $(AESOBJS)
|
|
endif
|
|
|
|
ifdef NEED_SHA1
|
|
SHA1OBJS += ../src/crypto/sha1.o
|
|
ifdef CONFIG_INTERNAL_SHA1
|
|
SHA1OBJS += ../src/crypto/sha1-internal.o
|
|
ifdef NEED_FIPS186_2_PRF
|
|
SHA1OBJS += ../src/crypto/fips_prf_internal.o
|
|
endif
|
|
endif
|
|
SHA1OBJS += ../src/crypto/sha1-pbkdf2.o
|
|
ifdef NEED_T_PRF
|
|
SHA1OBJS += ../src/crypto/sha1-tprf.o
|
|
endif
|
|
ifdef NEED_TLS_PRF
|
|
SHA1OBJS += ../src/crypto/sha1-tlsprf.o
|
|
endif
|
|
endif
|
|
|
|
ifdef NEED_SHA1
|
|
OBJS += $(SHA1OBJS)
|
|
endif
|
|
|
|
ifdef NEED_MD5
|
|
ifdef CONFIG_INTERNAL_MD5
|
|
OBJS += ../src/crypto/md5-internal.o
|
|
HOBJS += ../src/crypto/md5-internal.o
|
|
endif
|
|
endif
|
|
|
|
ifdef NEED_MD4
|
|
ifdef CONFIG_INTERNAL_MD4
|
|
OBJS += ../src/crypto/md4-internal.o
|
|
endif
|
|
endif
|
|
|
|
ifdef NEED_DES
|
|
ifdef CONFIG_INTERNAL_DES
|
|
OBJS += ../src/crypto/des-internal.o
|
|
endif
|
|
endif
|
|
|
|
ifdef NEED_RC4
|
|
ifdef CONFIG_INTERNAL_RC4
|
|
OBJS += ../src/crypto/rc4.o
|
|
endif
|
|
endif
|
|
|
|
ifdef NEED_SHA256
|
|
CFLAGS += -DCONFIG_SHA256
|
|
OBJS += ../src/crypto/sha256.o
|
|
ifdef CONFIG_INTERNAL_SHA256
|
|
OBJS += ../src/crypto/sha256-internal.o
|
|
endif
|
|
ifdef NEED_TLS_PRF_SHA256
|
|
OBJS += ../src/crypto/sha256-tlsprf.o
|
|
endif
|
|
endif
|
|
|
|
ifdef NEED_DH_GROUPS
|
|
OBJS += ../src/crypto/dh_groups.o
|
|
endif
|
|
ifdef NEED_DH_GROUPS_ALL
|
|
CFLAGS += -DALL_DH_GROUPS
|
|
endif
|
|
ifdef CONFIG_INTERNAL_DH_GROUP5
|
|
ifdef NEED_DH_GROUPS
|
|
OBJS += ../src/crypto/dh_group5.o
|
|
endif
|
|
endif
|
|
|
|
ifdef CONFIG_NO_RANDOM_POOL
|
|
CFLAGS += -DCONFIG_NO_RANDOM_POOL
|
|
else
|
|
OBJS += ../src/crypto/random.o
|
|
HOBJS += ../src/crypto/random.o
|
|
HOBJS += ../src/utils/eloop.o
|
|
HOBJS += $(SHA1OBJS)
|
|
HOBJS += ../src/crypto/md5.o
|
|
endif
|
|
|
|
ifdef CONFIG_RADIUS_SERVER
|
|
CFLAGS += -DRADIUS_SERVER
|
|
OBJS += ../src/radius/radius_server.o
|
|
endif
|
|
|
|
ifdef CONFIG_IPV6
|
|
CFLAGS += -DCONFIG_IPV6
|
|
endif
|
|
|
|
ifdef CONFIG_DRIVER_RADIUS_ACL
|
|
CFLAGS += -DCONFIG_DRIVER_RADIUS_ACL
|
|
endif
|
|
|
|
ifdef CONFIG_FULL_DYNAMIC_VLAN
|
|
# define CONFIG_FULL_DYNAMIC_VLAN to have hostapd manipulate bridges
|
|
# and vlan interfaces for the vlan feature.
|
|
CFLAGS += -DCONFIG_FULL_DYNAMIC_VLAN
|
|
endif
|
|
|
|
ifdef NEED_BASE64
|
|
OBJS += ../src/utils/base64.o
|
|
endif
|
|
|
|
ifdef NEED_AP_MLME
|
|
OBJS += ../src/ap/wmm.o
|
|
OBJS += ../src/ap/ap_list.o
|
|
OBJS += ../src/ap/ieee802_11.o
|
|
OBJS += ../src/ap/hw_features.o
|
|
CFLAGS += -DNEED_AP_MLME
|
|
endif
|
|
ifdef CONFIG_IEEE80211N
|
|
OBJS += ../src/ap/ieee802_11_ht.o
|
|
endif
|
|
|
|
ifdef CONFIG_P2P_MANAGER
|
|
CFLAGS += -DCONFIG_P2P_MANAGER
|
|
OBJS += ../src/ap/p2p_hostapd.o
|
|
endif
|
|
|
|
ifdef CONFIG_INTERWORKING
|
|
CFLAGS += -DCONFIG_INTERWORKING
|
|
endif
|
|
|
|
OBJS += ../src/drivers/driver_common.o
|
|
|
|
ifdef CONFIG_WPA_CLI_EDIT
|
|
OBJS_c += ../src/utils/edit.o
|
|
else
|
|
OBJS_c += ../src/utils/edit_simple.o
|
|
endif
|
|
|
|
ifdef CONFIG_NO_STDOUT_DEBUG
|
|
CFLAGS += -DCONFIG_NO_STDOUT_DEBUG
|
|
endif
|
|
|
|
ifdef CONFIG_DEBUG_FILE
|
|
CFLAGS += -DCONFIG_DEBUG_FILE
|
|
endif
|
|
|
|
ALL=hostapd hostapd_cli
|
|
|
|
all: verify_config $(ALL)
|
|
|
|
Q=@
|
|
E=echo
|
|
ifeq ($(V), 1)
|
|
Q=
|
|
E=true
|
|
endif
|
|
|
|
%.o: %.c
|
|
$(Q)$(CC) -c -o $@ $(CFLAGS) $<
|
|
@$(E) " CC " $<
|
|
|
|
verify_config:
|
|
@if [ ! -r .config ]; then \
|
|
echo 'Building hostapd requires a configuration file'; \
|
|
echo '(.config). See README for more instructions. You can'; \
|
|
echo 'run "cp defconfig .config" to create an example'; \
|
|
echo 'configuration.'; \
|
|
exit 1; \
|
|
fi
|
|
|
|
install: all
|
|
mkdir -p $(DESTDIR)/usr/local/bin
|
|
for i in $(ALL); do cp -f $$i $(DESTDIR)/usr/local/bin/$$i; done
|
|
|
|
../src/drivers/build.hostapd:
|
|
@if [ -f ../src/drivers/build.wpa_supplicant ]; then \
|
|
$(MAKE) -C ../src/drivers clean; \
|
|
fi
|
|
@touch ../src/drivers/build.hostapd
|
|
|
|
BCHECK=../src/drivers/build.hostapd
|
|
|
|
hostapd: $(BCHECK) $(OBJS)
|
|
$(Q)$(CC) $(LDFLAGS) -o hostapd $(OBJS) $(LIBS)
|
|
@$(E) " LD " $@
|
|
|
|
ifdef CONFIG_WPA_TRACE
|
|
OBJS_c += ../src/utils/trace.o
|
|
endif
|
|
hostapd_cli: $(OBJS_c)
|
|
$(Q)$(CC) $(LDFLAGS) -o hostapd_cli $(OBJS_c) $(LIBS_c)
|
|
@$(E) " LD " $@
|
|
|
|
NOBJS = nt_password_hash.o ../src/crypto/ms_funcs.o $(SHA1OBJS) ../src/crypto/md5.o
|
|
ifdef NEED_RC4
|
|
ifdef CONFIG_INTERNAL_RC4
|
|
NOBJS += ../src/crypto/rc4.o
|
|
endif
|
|
endif
|
|
ifdef CONFIG_INTERNAL_MD5
|
|
NOBJS += ../src/crypto/md5-internal.o
|
|
endif
|
|
NOBJS += ../src/crypto/crypto_openssl.o ../src/utils/os_$(CONFIG_OS).o
|
|
NOBJS += ../src/utils/wpa_debug.o
|
|
NOBJS += ../src/utils/wpabuf.o
|
|
ifdef CONFIG_WPA_TRACE
|
|
NOBJS += ../src/utils/trace.o
|
|
LIBS_n += -lbfd
|
|
endif
|
|
ifdef TLS_FUNCS
|
|
LIBS_n += -lcrypto
|
|
endif
|
|
|
|
HOBJS += hlr_auc_gw.o ../src/utils/common.o ../src/utils/wpa_debug.o ../src/utils/os_$(CONFIG_OS).o ../src/utils/wpabuf.o ../src/crypto/milenage.o
|
|
HOBJS += ../src/crypto/aes-encblock.o
|
|
ifdef CONFIG_INTERNAL_AES
|
|
HOBJS += ../src/crypto/aes-internal.o
|
|
HOBJS += ../src/crypto/aes-internal-enc.o
|
|
endif
|
|
|
|
nt_password_hash: $(NOBJS)
|
|
$(Q)$(CC) $(LDFLAGS) -o nt_password_hash $(NOBJS) $(LIBS_n)
|
|
@$(E) " LD " $@
|
|
|
|
hlr_auc_gw: $(HOBJS)
|
|
$(Q)$(CC) $(LDFLAGS) -o hlr_auc_gw $(HOBJS) $(LIBS_h)
|
|
@$(E) " LD " $@
|
|
|
|
clean:
|
|
$(MAKE) -C ../src clean
|
|
rm -f core *~ *.o hostapd hostapd_cli nt_password_hash hlr_auc_gw
|
|
rm -f *.d
|
|
|
|
-include $(OBJS:%.o=%.d)
|