-
Notifications
You must be signed in to change notification settings - Fork 195
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
netplan: add support for WPA3-Enterprise and PMF
These changes introduce support for enabling PMF (Protected Management Frames) through Netplan configuration. PMF is required by WPA3 and was previously implicitly set to "required" for WPA3-Personal (via SAE). There are occasions where the user might not want to restrict the configuration to WPA3-only (WPA3-Enterprise transition mode) Network Manager will enable different EAP methods simultaneously when we set it to "eap", such as WPA-EAP and WPA-EAP-SHA256. NM doesn't allow the user to set the method as "eap-sha256" only. As we want to allow the user to use WPA-EAP-SHA256 to enable WPA3, we can't set the PMF to required or it will break WPA2. We could set it implicitly to "optional" but it would change the default configuration we generate. Because of that, a new key was added to Netplan to enable users to set the PMF mode manually. These changes also add two new EAP methods to Netplan: "eap-sha256" and "eap-suite-b-192". They are both used with WPA3-Enterprise. PMF is mandatory when using "eap-suite-b-192" so it's implicitly set to "required".
- Loading branch information
1 parent
3e6783f
commit 4ab8e4c
Showing
12 changed files
with
589 additions
and
11 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.