[PATCH 1/3] Added wpa_config_get_all function

Jouni Malinen j
Mon Nov 16 03:31:14 PST 2009


On Wed, Nov 11, 2009 at 11:16:30PM +0100, Witold Sowa wrote:
> There is one more short patch (in attachment). DBus signals sent from
> wpa_supplicant are readable to anyone. That applies to credentials
> signal which contains secret data too. This patch changes DBus policy so
> only root will receive signals from wpa_supplicant.

Thanks, applied.

> To recap, we finished with:
> 1. Network configuration is available only to root and without secret
> data like PSKs.
> 2. WPS credentials are sent asynchronously only to root and only once
> when received. They are not cashed and cannot we reread later.
> jm: Is that secure enought? dcbw: Is that enough for NM requirements?

That's fine for me. I would like to see NM starting to use this to see
how it works in practice.

> Here is updated documentation for new API I wrote some time ago:
> http://student.agh.edu.pl/~wsowa/new-dbus-api.html
> I think, that it should be available somewhere on wpa_supplicant's site.

Would you be fine with getting that integrated into the developers'
documentation (http://w1.fi/wpa_supplicant/devel/)? It already contains
a page about the control interface commands and DBus interface could be
described there, too. This is built using Doxygen based on the files in
the wpa_supplicant/doc directory.

-- 
Jouni Malinen                                            PGP id EFC895FA



More information about the Hostap mailing list