[PATCH 47/97] NAN: Set GTK/IGTK/BIGTK support from driver capabilities

[Andrei Otcheretianski]

From: Avraham Stern <avraham.stern at intel.com>

Set GTK/IGTK/BIGTK support according to driver advertised
capabilities.

Signed-off-by: Avraham Stern <avraham.stern at intel.com>
Signed-off-by: Ilan Peer <ilan.peer at intel.com>
---
 wpa_supplicant/nan_supplicant.c | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)

diff --git a/wpa_supplicant/nan_supplicant.c b/wpa_supplicant/nan_supplicant.c
index d059a66dc0..4acd636c32 100644
--- a/wpa_supplicant/nan_supplicant.c
+++ b/wpa_supplicant/nan_supplicant.c
@@ -1292,6 +1292,36 @@ int wpas_nan_init(struct wpa_supplicant *wpa_s)
 		nan.transmit_followup = wpas_nan_transmit_followup_cb;
 		nan.get_supported_bootstrap_methods =
 			wpas_nan_get_service_bootstrap_methods;
+		/*
+		 * Set the group security capabilities based on driver
+		 * support
+		 */
+		if ((wpa_s->drv_enc & (WPA_DRIVER_CAPA_ENC_CCMP |
+				       WPA_DRIVER_CAPA_ENC_GCMP_256)) &&
+		    (wpa_s->drv_enc & (WPA_DRIVER_CAPA_ENC_BIP |
+				       WPA_DRIVER_CAPA_ENC_BIP_GMAC_256))) {
+			u8 gtk_supp;
+
+			/*
+			 * By default, use BIP-CMAC-128 cipher suite for
+			 * group keys for maximum compatibility.
+			 */
+			if (!(wpa_s->drv_enc & WPA_DRIVER_CAPA_ENC_BIP))
+				nan.security_capab |=
+					NAN_CS_INFO_CAPA_IGTK_USE_NCS_BIP_GMAC_256;
+
+			if (wpa_s->nan_capa.drv_flags &
+			    WPA_DRIVER_FLAGS_NAN_SUPPORT_BEACON_PROT)
+				gtk_supp = NAN_CS_INFO_CAPA_GTK_SUPP_ALL;
+			else
+				gtk_supp = NAN_CS_INFO_CAPA_GTK_SUPP_NO_BIGTK;
+
+			nan.security_capab |=
+				gtk_supp << NAN_CS_INFO_CAPA_GTK_SUPP_POS;
+		}
+
+		wpa_printf(MSG_DEBUG, "NAN: security capabilities=0x%02x",
+			   nan.security_capab);
 	}
 
 	/*
-- 
2.53.0