[PATCH] hostapd: add option to ignore data frames from unknown stations

Raphaël Mélotte raphael.melotte at mind.be
Wed Mar 1 07:50:12 PST 2023

On 1/30/23 10:36, Jouni Malinen wrote:
> Could you please provide some more details and justification (e.g., a
> pointer to where such functionality is defined) for this? This seems to
> be directly in conflict with the IEEE 802.11 standard requirements..

Sorry for the delay.

We're trying to implement the "Virtual BSSs" feature which is
part of an informative (and preliminary) appendix of the EasyMesh
R5 specifications ([1]).

As part of it, we need APs to be able to start communicating with
a new station without having to do the 802.1X authentication
again (this is by design).  For lack of a better way to do it,
we're currently creating a new BSS for the station, and adding
and authorizing the station immediately after.

With this approach there is always going to be a short time
window during which the AP could receive frames from the station
before it has been added/authorized, hence this patch to be able
to temporarily ignore those frames until the BSS is fully ready.

[1]: https://www.wi-fi.org/file/wi-fi-easymesh-specification

More information about the Hostap mailing list