1 /*
2 * WPA Supplicant
3 * Copyright (c) 2003-2014, Jouni Malinen <j@w1.fi>
4 *
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
7 *
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
11 */
12
13 #include "includes.h"
14
15 #include "common.h"
16 #include "crypto/random.h"
17 #include "crypto/sha1.h"
18 #include "eapol_supp/eapol_supp_sm.h"
19 #include "eap_peer/eap.h"
20 #include "eap_peer/eap_proxy.h"
21 #include "eap_server/eap_methods.h"
22 #include "rsn_supp/wpa.h"
23 #include "eloop.h"
24 #include "config.h"
25 #include "utils/ext_password.h"
26 #include "l2_packet/l2_packet.h"
27 #include "wpa_supplicant_i.h"
28 #include "driver_i.h"
29 #include "ctrl_iface.h"
30 #include "pcsc_funcs.h"
31 #include "common/version.h"
32 #include "rsn_supp/preauth.h"
33 #include "rsn_supp/pmksa_cache.h"
34 #include "common/wpa_ctrl.h"
35 #include "common/ieee802_11_defs.h"
36 #include "p2p/p2p.h"
37 #include "blacklist.h"
38 #include "wpas_glue.h"
39 #include "wps_supplicant.h"
40 #include "ibss_rsn.h"
41 #include "sme.h"
42 #include "gas_query.h"
43 #include "ap.h"
44 #include "p2p_supplicant.h"
45 #include "wifi_display.h"
46 #include "notify.h"
47 #include "bgscan.h"
48 #include "autoscan.h"
49 #include "bss.h"
50 #include "scan.h"
51 #include "offchannel.h"
52 #include "hs20_supplicant.h"
53 #include "wnm_sta.h"
54 #include "wpas_kay.h"
55
56 const char *wpa_supplicant_version =
57 "wpa_supplicant v" VERSION_STR "\n"
58 "Copyright (c) 2003-2014, Jouni Malinen <j@w1.fi> and contributors";
59
60 const char *wpa_supplicant_license =
61 "This software may be distributed under the terms of the BSD license.\n"
62 "See README for more details.\n"
63 #ifdef EAP_TLS_OPENSSL
64 "\nThis product includes software developed by the OpenSSL Project\n"
65 "for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
66 #endif /* EAP_TLS_OPENSSL */
67 ;
68
69 #ifndef CONFIG_NO_STDOUT_DEBUG
70 /* Long text divided into parts in order to fit in C89 strings size limits. */
71 const char *wpa_supplicant_full_license1 =
72 "";
73 const char *wpa_supplicant_full_license2 =
74 "This software may be distributed under the terms of the BSD license.\n"
75 "\n"
76 "Redistribution and use in source and binary forms, with or without\n"
77 "modification, are permitted provided that the following conditions are\n"
78 "met:\n"
79 "\n";
80 const char *wpa_supplicant_full_license3 =
81 "1. Redistributions of source code must retain the above copyright\n"
82 " notice, this list of conditions and the following disclaimer.\n"
83 "\n"
84 "2. Redistributions in binary form must reproduce the above copyright\n"
85 " notice, this list of conditions and the following disclaimer in the\n"
86 " documentation and/or other materials provided with the distribution.\n"
87 "\n";
88 const char *wpa_supplicant_full_license4 =
89 "3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
90 " names of its contributors may be used to endorse or promote products\n"
91 " derived from this software without specific prior written permission.\n"
92 "\n"
93 "THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
94 "\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
95 "LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
96 "A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
97 const char *wpa_supplicant_full_license5 =
98 "OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
99 "SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
100 "LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
101 "DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
102 "THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
103 "(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
104 "OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
105 "\n";
106 #endif /* CONFIG_NO_STDOUT_DEBUG */
107
108 struct wowlan_triggers *wpa_get_wowlan_triggers(const char *wowlan_triggers,
109 struct wpa_driver_capa *capa);
110
111 /* Configure default/group WEP keys for static WEP */
wpa_set_wep_keys(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)112 int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
113 {
114 int i, set = 0;
115
116 for (i = 0; i < NUM_WEP_KEYS; i++) {
117 if (ssid->wep_key_len[i] == 0)
118 continue;
119
120 set = 1;
121 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
122 i, i == ssid->wep_tx_keyidx, NULL, 0,
123 ssid->wep_key[i], ssid->wep_key_len[i]);
124 }
125
126 return set;
127 }
128
129
wpa_supplicant_set_wpa_none_key(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)130 int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
131 struct wpa_ssid *ssid)
132 {
133 u8 key[32];
134 size_t keylen;
135 enum wpa_alg alg;
136 u8 seq[6] = { 0 };
137
138 /* IBSS/WPA-None uses only one key (Group) for both receiving and
139 * sending unicast and multicast packets. */
140
141 if (ssid->mode != WPAS_MODE_IBSS) {
142 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
143 "IBSS/ad-hoc) for WPA-None", ssid->mode);
144 return -1;
145 }
146
147 if (!ssid->psk_set) {
148 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
149 "WPA-None");
150 return -1;
151 }
152
153 switch (wpa_s->group_cipher) {
154 case WPA_CIPHER_CCMP:
155 os_memcpy(key, ssid->psk, 16);
156 keylen = 16;
157 alg = WPA_ALG_CCMP;
158 break;
159 case WPA_CIPHER_GCMP:
160 os_memcpy(key, ssid->psk, 16);
161 keylen = 16;
162 alg = WPA_ALG_GCMP;
163 break;
164 case WPA_CIPHER_TKIP:
165 /* WPA-None uses the same Michael MIC key for both TX and RX */
166 os_memcpy(key, ssid->psk, 16 + 8);
167 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
168 keylen = 32;
169 alg = WPA_ALG_TKIP;
170 break;
171 default:
172 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
173 "WPA-None", wpa_s->group_cipher);
174 return -1;
175 }
176
177 /* TODO: should actually remember the previously used seq#, both for TX
178 * and RX from each STA.. */
179
180 return wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
181 }
182
183
wpa_supplicant_timeout(void * eloop_ctx,void * timeout_ctx)184 static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
185 {
186 struct wpa_supplicant *wpa_s = eloop_ctx;
187 const u8 *bssid = wpa_s->bssid;
188 if (is_zero_ether_addr(bssid))
189 bssid = wpa_s->pending_bssid;
190 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
191 MAC2STR(bssid));
192 wpa_blacklist_add(wpa_s, bssid);
193 wpa_sm_notify_disassoc(wpa_s->wpa);
194 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
195 wpa_s->reassociate = 1;
196
197 /*
198 * If we timed out, the AP or the local radio may be busy.
199 * So, wait a second until scanning again.
200 */
201 wpa_supplicant_req_scan(wpa_s, 1, 0);
202 }
203
204
205 /**
206 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
207 * @wpa_s: Pointer to wpa_supplicant data
208 * @sec: Number of seconds after which to time out authentication
209 * @usec: Number of microseconds after which to time out authentication
210 *
211 * This function is used to schedule a timeout for the current authentication
212 * attempt.
213 */
wpa_supplicant_req_auth_timeout(struct wpa_supplicant * wpa_s,int sec,int usec)214 void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
215 int sec, int usec)
216 {
217 if (wpa_s->conf->ap_scan == 0 &&
218 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
219 return;
220
221 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
222 "%d usec", sec, usec);
223 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
224 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
225 }
226
227
228 /**
229 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
230 * @wpa_s: Pointer to wpa_supplicant data
231 *
232 * This function is used to cancel authentication timeout scheduled with
233 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
234 * been completed.
235 */
wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant * wpa_s)236 void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
237 {
238 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
239 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
240 wpa_blacklist_del(wpa_s, wpa_s->bssid);
241 }
242
243
244 /**
245 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
246 * @wpa_s: Pointer to wpa_supplicant data
247 *
248 * This function is used to configure EAPOL state machine based on the selected
249 * authentication mode.
250 */
wpa_supplicant_initiate_eapol(struct wpa_supplicant * wpa_s)251 void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
252 {
253 #ifdef IEEE8021X_EAPOL
254 struct eapol_config eapol_conf;
255 struct wpa_ssid *ssid = wpa_s->current_ssid;
256
257 #ifdef CONFIG_IBSS_RSN
258 if (ssid->mode == WPAS_MODE_IBSS &&
259 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
260 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
261 /*
262 * RSN IBSS authentication is per-STA and we can disable the
263 * per-BSSID EAPOL authentication.
264 */
265 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
266 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
267 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
268 return;
269 }
270 #endif /* CONFIG_IBSS_RSN */
271
272 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
273 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
274
275 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
276 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
277 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
278 else
279 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
280
281 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
282 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
283 eapol_conf.accept_802_1x_keys = 1;
284 eapol_conf.required_keys = 0;
285 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
286 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
287 }
288 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
289 eapol_conf.required_keys |=
290 EAPOL_REQUIRE_KEY_BROADCAST;
291 }
292
293 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
294 eapol_conf.required_keys = 0;
295 }
296 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
297 eapol_conf.workaround = ssid->eap_workaround;
298 eapol_conf.eap_disabled =
299 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
300 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
301 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
302 eapol_conf.external_sim = wpa_s->conf->external_sim;
303 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
304 #endif /* IEEE8021X_EAPOL */
305
306 ieee802_1x_alloc_kay_sm(wpa_s, ssid);
307 }
308
309
310 /**
311 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
312 * @wpa_s: Pointer to wpa_supplicant data
313 * @ssid: Configuration data for the network
314 *
315 * This function is used to configure WPA state machine and related parameters
316 * to a mode where WPA is not enabled. This is called as part of the
317 * authentication configuration when the selected network does not use WPA.
318 */
wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)319 void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
320 struct wpa_ssid *ssid)
321 {
322 int i;
323
324 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
325 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
326 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
327 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
328 else
329 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
330 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
331 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
332 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
333 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
334 wpa_s->group_cipher = WPA_CIPHER_NONE;
335 wpa_s->mgmt_group_cipher = 0;
336
337 for (i = 0; i < NUM_WEP_KEYS; i++) {
338 if (ssid->wep_key_len[i] > 5) {
339 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
340 wpa_s->group_cipher = WPA_CIPHER_WEP104;
341 break;
342 } else if (ssid->wep_key_len[i] > 0) {
343 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
344 wpa_s->group_cipher = WPA_CIPHER_WEP40;
345 break;
346 }
347 }
348
349 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
350 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
351 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
352 wpa_s->pairwise_cipher);
353 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
354 #ifdef CONFIG_IEEE80211W
355 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
356 wpa_s->mgmt_group_cipher);
357 #endif /* CONFIG_IEEE80211W */
358
359 pmksa_cache_clear_current(wpa_s->wpa);
360 }
361
362
free_hw_features(struct wpa_supplicant * wpa_s)363 void free_hw_features(struct wpa_supplicant *wpa_s)
364 {
365 int i;
366 if (wpa_s->hw.modes == NULL)
367 return;
368
369 for (i = 0; i < wpa_s->hw.num_modes; i++) {
370 os_free(wpa_s->hw.modes[i].channels);
371 os_free(wpa_s->hw.modes[i].rates);
372 }
373
374 os_free(wpa_s->hw.modes);
375 wpa_s->hw.modes = NULL;
376 }
377
378
wpa_supplicant_cleanup(struct wpa_supplicant * wpa_s)379 static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
380 {
381 int i;
382
383 bgscan_deinit(wpa_s);
384 autoscan_deinit(wpa_s);
385 scard_deinit(wpa_s->scard);
386 wpa_s->scard = NULL;
387 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
388 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
389 l2_packet_deinit(wpa_s->l2);
390 wpa_s->l2 = NULL;
391 if (wpa_s->l2_br) {
392 l2_packet_deinit(wpa_s->l2_br);
393 wpa_s->l2_br = NULL;
394 }
395
396 if (wpa_s->conf != NULL) {
397 struct wpa_ssid *ssid;
398 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
399 wpas_notify_network_removed(wpa_s, ssid);
400 }
401
402 os_free(wpa_s->confname);
403 wpa_s->confname = NULL;
404
405 os_free(wpa_s->confanother);
406 wpa_s->confanother = NULL;
407
408 #ifdef CONFIG_P2P
409 os_free(wpa_s->conf_p2p_dev);
410 wpa_s->conf_p2p_dev = NULL;
411 #endif /* CONFIG_P2P */
412
413 wpa_sm_set_eapol(wpa_s->wpa, NULL);
414 eapol_sm_deinit(wpa_s->eapol);
415 wpa_s->eapol = NULL;
416
417 rsn_preauth_deinit(wpa_s->wpa);
418
419 #ifdef CONFIG_TDLS
420 wpa_tdls_deinit(wpa_s->wpa);
421 #endif /* CONFIG_TDLS */
422
423 pmksa_candidate_free(wpa_s->wpa);
424 wpa_sm_deinit(wpa_s->wpa);
425 wpa_s->wpa = NULL;
426 wpa_blacklist_clear(wpa_s);
427
428 wpa_bss_deinit(wpa_s);
429
430 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
431 wpa_supplicant_cancel_scan(wpa_s);
432 wpa_supplicant_cancel_auth_timeout(wpa_s);
433 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
434 #ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
435 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
436 wpa_s, NULL);
437 #endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
438
439 wpas_wps_deinit(wpa_s);
440
441 wpabuf_free(wpa_s->pending_eapol_rx);
442 wpa_s->pending_eapol_rx = NULL;
443
444 #ifdef CONFIG_IBSS_RSN
445 ibss_rsn_deinit(wpa_s->ibss_rsn);
446 wpa_s->ibss_rsn = NULL;
447 #endif /* CONFIG_IBSS_RSN */
448
449 sme_deinit(wpa_s);
450
451 #ifdef CONFIG_AP
452 wpa_supplicant_ap_deinit(wpa_s);
453 #endif /* CONFIG_AP */
454
455 wpas_p2p_deinit(wpa_s);
456
457 #ifdef CONFIG_OFFCHANNEL
458 offchannel_deinit(wpa_s);
459 #endif /* CONFIG_OFFCHANNEL */
460
461 wpa_supplicant_cancel_sched_scan(wpa_s);
462
463 os_free(wpa_s->next_scan_freqs);
464 wpa_s->next_scan_freqs = NULL;
465
466 os_free(wpa_s->manual_scan_freqs);
467 wpa_s->manual_scan_freqs = NULL;
468
469 os_free(wpa_s->manual_sched_scan_freqs);
470 wpa_s->manual_sched_scan_freqs = NULL;
471
472 gas_query_deinit(wpa_s->gas);
473 wpa_s->gas = NULL;
474
475 free_hw_features(wpa_s);
476
477 ieee802_1x_dealloc_kay_sm(wpa_s);
478
479 os_free(wpa_s->bssid_filter);
480 wpa_s->bssid_filter = NULL;
481
482 os_free(wpa_s->disallow_aps_bssid);
483 wpa_s->disallow_aps_bssid = NULL;
484 os_free(wpa_s->disallow_aps_ssid);
485 wpa_s->disallow_aps_ssid = NULL;
486
487 wnm_bss_keep_alive_deinit(wpa_s);
488 #ifdef CONFIG_WNM
489 wnm_deallocate_memory(wpa_s);
490 #endif /* CONFIG_WNM */
491
492 ext_password_deinit(wpa_s->ext_pw);
493 wpa_s->ext_pw = NULL;
494
495 wpabuf_free(wpa_s->last_gas_resp);
496 wpa_s->last_gas_resp = NULL;
497 wpabuf_free(wpa_s->prev_gas_resp);
498 wpa_s->prev_gas_resp = NULL;
499
500 os_free(wpa_s->last_scan_res);
501 wpa_s->last_scan_res = NULL;
502
503 #ifdef CONFIG_HS20
504 hs20_deinit(wpa_s);
505 #endif /* CONFIG_HS20 */
506
507 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
508 wpabuf_free(wpa_s->vendor_elem[i]);
509 wpa_s->vendor_elem[i] = NULL;
510 }
511 }
512
513
514 /**
515 * wpa_clear_keys - Clear keys configured for the driver
516 * @wpa_s: Pointer to wpa_supplicant data
517 * @addr: Previously used BSSID or %NULL if not available
518 *
519 * This function clears the encryption keys that has been previously configured
520 * for the driver.
521 */
wpa_clear_keys(struct wpa_supplicant * wpa_s,const u8 * addr)522 void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
523 {
524 int i, max;
525
526 #ifdef CONFIG_IEEE80211W
527 max = 6;
528 #else /* CONFIG_IEEE80211W */
529 max = 4;
530 #endif /* CONFIG_IEEE80211W */
531
532 /* MLME-DELETEKEYS.request */
533 for (i = 0; i < max; i++) {
534 if (wpa_s->keys_cleared & BIT(i))
535 continue;
536 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, i, 0, NULL, 0,
537 NULL, 0);
538 }
539 if (!(wpa_s->keys_cleared & BIT(0)) && addr &&
540 !is_zero_ether_addr(addr)) {
541 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
542 0);
543 /* MLME-SETPROTECTION.request(None) */
544 wpa_drv_mlme_setprotection(
545 wpa_s, addr,
546 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
547 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
548 }
549 wpa_s->keys_cleared = (u32) -1;
550 }
551
552
553 /**
554 * wpa_supplicant_state_txt - Get the connection state name as a text string
555 * @state: State (wpa_state; WPA_*)
556 * Returns: The state name as a printable text string
557 */
wpa_supplicant_state_txt(enum wpa_states state)558 const char * wpa_supplicant_state_txt(enum wpa_states state)
559 {
560 switch (state) {
561 case WPA_DISCONNECTED:
562 return "DISCONNECTED";
563 case WPA_INACTIVE:
564 return "INACTIVE";
565 case WPA_INTERFACE_DISABLED:
566 return "INTERFACE_DISABLED";
567 case WPA_SCANNING:
568 return "SCANNING";
569 case WPA_AUTHENTICATING:
570 return "AUTHENTICATING";
571 case WPA_ASSOCIATING:
572 return "ASSOCIATING";
573 case WPA_ASSOCIATED:
574 return "ASSOCIATED";
575 case WPA_4WAY_HANDSHAKE:
576 return "4WAY_HANDSHAKE";
577 case WPA_GROUP_HANDSHAKE:
578 return "GROUP_HANDSHAKE";
579 case WPA_COMPLETED:
580 return "COMPLETED";
581 default:
582 return "UNKNOWN";
583 }
584 }
585
586
587 #ifdef CONFIG_BGSCAN
588
wpa_supplicant_start_bgscan(struct wpa_supplicant * wpa_s)589 static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
590 {
591 const char *name;
592
593 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
594 name = wpa_s->current_ssid->bgscan;
595 else
596 name = wpa_s->conf->bgscan;
597 if (name == NULL || name[0] == '\0')
598 return;
599 if (wpas_driver_bss_selection(wpa_s))
600 return;
601 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
602 return;
603 #ifdef CONFIG_P2P
604 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE)
605 return;
606 #endif /* CONFIG_P2P */
607
608 bgscan_deinit(wpa_s);
609 if (wpa_s->current_ssid) {
610 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
611 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
612 "bgscan");
613 /*
614 * Live without bgscan; it is only used as a roaming
615 * optimization, so the initial connection is not
616 * affected.
617 */
618 } else {
619 struct wpa_scan_results *scan_res;
620 wpa_s->bgscan_ssid = wpa_s->current_ssid;
621 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
622 0);
623 if (scan_res) {
624 bgscan_notify_scan(wpa_s, scan_res);
625 wpa_scan_results_free(scan_res);
626 }
627 }
628 } else
629 wpa_s->bgscan_ssid = NULL;
630 }
631
632
wpa_supplicant_stop_bgscan(struct wpa_supplicant * wpa_s)633 static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
634 {
635 if (wpa_s->bgscan_ssid != NULL) {
636 bgscan_deinit(wpa_s);
637 wpa_s->bgscan_ssid = NULL;
638 }
639 }
640
641 #endif /* CONFIG_BGSCAN */
642
643
wpa_supplicant_start_autoscan(struct wpa_supplicant * wpa_s)644 static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
645 {
646 if (autoscan_init(wpa_s, 0))
647 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
648 }
649
650
wpa_supplicant_stop_autoscan(struct wpa_supplicant * wpa_s)651 static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
652 {
653 autoscan_deinit(wpa_s);
654 }
655
656
wpa_supplicant_reinit_autoscan(struct wpa_supplicant * wpa_s)657 void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
658 {
659 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
660 wpa_s->wpa_state == WPA_SCANNING) {
661 autoscan_deinit(wpa_s);
662 wpa_supplicant_start_autoscan(wpa_s);
663 }
664 }
665
666
667 /**
668 * wpa_supplicant_set_state - Set current connection state
669 * @wpa_s: Pointer to wpa_supplicant data
670 * @state: The new connection state
671 *
672 * This function is called whenever the connection state changes, e.g.,
673 * association is completed for WPA/WPA2 4-Way Handshake is started.
674 */
wpa_supplicant_set_state(struct wpa_supplicant * wpa_s,enum wpa_states state)675 void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
676 enum wpa_states state)
677 {
678 enum wpa_states old_state = wpa_s->wpa_state;
679
680 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
681 wpa_supplicant_state_txt(wpa_s->wpa_state),
682 wpa_supplicant_state_txt(state));
683
684 if (state == WPA_INTERFACE_DISABLED) {
685 /* Assure normal scan when interface is restored */
686 wpa_s->normal_scans = 0;
687 }
688
689 if (state == WPA_COMPLETED) {
690 wpas_connect_work_done(wpa_s);
691 /* Reinitialize normal_scan counter */
692 wpa_s->normal_scans = 0;
693 }
694
695 if (state != WPA_SCANNING)
696 wpa_supplicant_notify_scanning(wpa_s, 0);
697
698 if (state == WPA_COMPLETED && wpa_s->new_connection) {
699 struct wpa_ssid *ssid = wpa_s->current_ssid;
700 #if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
701 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
702 MACSTR " completed [id=%d id_str=%s]",
703 MAC2STR(wpa_s->bssid),
704 ssid ? ssid->id : -1,
705 ssid && ssid->id_str ? ssid->id_str : "");
706 #endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
707 wpas_clear_temp_disabled(wpa_s, ssid, 1);
708 wpa_s->extra_blacklist_count = 0;
709 wpa_s->new_connection = 0;
710 wpa_drv_set_operstate(wpa_s, 1);
711 #ifndef IEEE8021X_EAPOL
712 wpa_drv_set_supp_port(wpa_s, 1);
713 #endif /* IEEE8021X_EAPOL */
714 wpa_s->after_wps = 0;
715 wpa_s->known_wps_freq = 0;
716 wpas_p2p_completed(wpa_s);
717
718 sme_sched_obss_scan(wpa_s, 1);
719 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
720 state == WPA_ASSOCIATED) {
721 wpa_s->new_connection = 1;
722 wpa_drv_set_operstate(wpa_s, 0);
723 #ifndef IEEE8021X_EAPOL
724 wpa_drv_set_supp_port(wpa_s, 0);
725 #endif /* IEEE8021X_EAPOL */
726 sme_sched_obss_scan(wpa_s, 0);
727 }
728 wpa_s->wpa_state = state;
729
730 #ifdef CONFIG_BGSCAN
731 if (state == WPA_COMPLETED)
732 wpa_supplicant_start_bgscan(wpa_s);
733 else if (state < WPA_ASSOCIATED)
734 wpa_supplicant_stop_bgscan(wpa_s);
735 #endif /* CONFIG_BGSCAN */
736
737 if (state == WPA_AUTHENTICATING)
738 wpa_supplicant_stop_autoscan(wpa_s);
739
740 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
741 wpa_supplicant_start_autoscan(wpa_s);
742
743 if (wpa_s->wpa_state != old_state) {
744 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
745
746 /*
747 * Notify the P2P Device interface about a state change in one
748 * of the interfaces.
749 */
750 wpas_p2p_indicate_state_change(wpa_s);
751
752 if (wpa_s->wpa_state == WPA_COMPLETED ||
753 old_state == WPA_COMPLETED)
754 wpas_notify_auth_changed(wpa_s);
755 }
756 }
757
758
wpa_supplicant_terminate_proc(struct wpa_global * global)759 void wpa_supplicant_terminate_proc(struct wpa_global *global)
760 {
761 int pending = 0;
762 #ifdef CONFIG_WPS
763 struct wpa_supplicant *wpa_s = global->ifaces;
764 while (wpa_s) {
765 struct wpa_supplicant *next = wpa_s->next;
766 if (wpas_wps_terminate_pending(wpa_s) == 1)
767 pending = 1;
768 #ifdef CONFIG_P2P
769 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
770 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
771 wpas_p2p_disconnect(wpa_s);
772 #endif /* CONFIG_P2P */
773 wpa_s = next;
774 }
775 #endif /* CONFIG_WPS */
776 if (pending)
777 return;
778 eloop_terminate();
779 }
780
781
wpa_supplicant_terminate(int sig,void * signal_ctx)782 static void wpa_supplicant_terminate(int sig, void *signal_ctx)
783 {
784 struct wpa_global *global = signal_ctx;
785 wpa_supplicant_terminate_proc(global);
786 }
787
788
wpa_supplicant_clear_status(struct wpa_supplicant * wpa_s)789 void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
790 {
791 enum wpa_states old_state = wpa_s->wpa_state;
792
793 wpa_s->pairwise_cipher = 0;
794 wpa_s->group_cipher = 0;
795 wpa_s->mgmt_group_cipher = 0;
796 wpa_s->key_mgmt = 0;
797 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
798 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
799
800 if (wpa_s->wpa_state != old_state)
801 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
802 }
803
804
805 /**
806 * wpa_supplicant_reload_configuration - Reload configuration data
807 * @wpa_s: Pointer to wpa_supplicant data
808 * Returns: 0 on success or -1 if configuration parsing failed
809 *
810 * This function can be used to request that the configuration data is reloaded
811 * (e.g., after configuration file change). This function is reloading
812 * configuration only for one interface, so this may need to be called multiple
813 * times if %wpa_supplicant is controlling multiple interfaces and all
814 * interfaces need reconfiguration.
815 */
wpa_supplicant_reload_configuration(struct wpa_supplicant * wpa_s)816 int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
817 {
818 struct wpa_config *conf;
819 int reconf_ctrl;
820 int old_ap_scan;
821
822 if (wpa_s->confname == NULL)
823 return -1;
824 conf = wpa_config_read(wpa_s->confname, NULL);
825 if (conf == NULL) {
826 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
827 "file '%s' - exiting", wpa_s->confname);
828 return -1;
829 }
830 wpa_config_read(wpa_s->confanother, conf);
831
832 conf->changed_parameters = (unsigned int) -1;
833
834 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
835 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
836 os_strcmp(conf->ctrl_interface,
837 wpa_s->conf->ctrl_interface) != 0);
838
839 if (reconf_ctrl && wpa_s->ctrl_iface) {
840 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
841 wpa_s->ctrl_iface = NULL;
842 }
843
844 eapol_sm_invalidate_cached_session(wpa_s->eapol);
845 if (wpa_s->current_ssid) {
846 wpa_supplicant_deauthenticate(wpa_s,
847 WLAN_REASON_DEAUTH_LEAVING);
848 }
849
850 /*
851 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
852 * pkcs11_engine_path, pkcs11_module_path.
853 */
854 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
855 /*
856 * Clear forced success to clear EAP state for next
857 * authentication.
858 */
859 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
860 }
861 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
862 wpa_sm_set_config(wpa_s->wpa, NULL);
863 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
864 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
865 rsn_preauth_deinit(wpa_s->wpa);
866
867 old_ap_scan = wpa_s->conf->ap_scan;
868 wpa_config_free(wpa_s->conf);
869 wpa_s->conf = conf;
870 if (old_ap_scan != wpa_s->conf->ap_scan)
871 wpas_notify_ap_scan_changed(wpa_s);
872
873 if (reconf_ctrl)
874 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
875
876 wpa_supplicant_update_config(wpa_s);
877
878 wpa_supplicant_clear_status(wpa_s);
879 if (wpa_supplicant_enabled_networks(wpa_s)) {
880 wpa_s->reassociate = 1;
881 wpa_supplicant_req_scan(wpa_s, 0, 0);
882 }
883 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
884 return 0;
885 }
886
887
wpa_supplicant_reconfig(int sig,void * signal_ctx)888 static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
889 {
890 struct wpa_global *global = signal_ctx;
891 struct wpa_supplicant *wpa_s;
892 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
893 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
894 sig);
895 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
896 wpa_supplicant_terminate_proc(global);
897 }
898 }
899 }
900
901
wpa_supplicant_suites_from_ai(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid,struct wpa_ie_data * ie)902 static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
903 struct wpa_ssid *ssid,
904 struct wpa_ie_data *ie)
905 {
906 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
907 if (ret) {
908 if (ret == -2) {
909 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
910 "from association info");
911 }
912 return -1;
913 }
914
915 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
916 "cipher suites");
917 if (!(ie->group_cipher & ssid->group_cipher)) {
918 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
919 "cipher 0x%x (mask 0x%x) - reject",
920 ie->group_cipher, ssid->group_cipher);
921 return -1;
922 }
923 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
924 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
925 "cipher 0x%x (mask 0x%x) - reject",
926 ie->pairwise_cipher, ssid->pairwise_cipher);
927 return -1;
928 }
929 if (!(ie->key_mgmt & ssid->key_mgmt)) {
930 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
931 "management 0x%x (mask 0x%x) - reject",
932 ie->key_mgmt, ssid->key_mgmt);
933 return -1;
934 }
935
936 #ifdef CONFIG_IEEE80211W
937 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
938 (ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
939 wpa_s->conf->pmf : ssid->ieee80211w) ==
940 MGMT_FRAME_PROTECTION_REQUIRED) {
941 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
942 "that does not support management frame protection - "
943 "reject");
944 return -1;
945 }
946 #endif /* CONFIG_IEEE80211W */
947
948 return 0;
949 }
950
951
952 /**
953 * wpa_supplicant_set_suites - Set authentication and encryption parameters
954 * @wpa_s: Pointer to wpa_supplicant data
955 * @bss: Scan results for the selected BSS, or %NULL if not available
956 * @ssid: Configuration data for the selected network
957 * @wpa_ie: Buffer for the WPA/RSN IE
958 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
959 * used buffer length in case the functions returns success.
960 * Returns: 0 on success or -1 on failure
961 *
962 * This function is used to configure authentication and encryption parameters
963 * based on the network configuration and scan result for the selected BSS (if
964 * available).
965 */
wpa_supplicant_set_suites(struct wpa_supplicant * wpa_s,struct wpa_bss * bss,struct wpa_ssid * ssid,u8 * wpa_ie,size_t * wpa_ie_len)966 int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
967 struct wpa_bss *bss, struct wpa_ssid *ssid,
968 u8 *wpa_ie, size_t *wpa_ie_len)
969 {
970 struct wpa_ie_data ie;
971 int sel, proto;
972 const u8 *bss_wpa, *bss_rsn, *bss_osen;
973
974 if (bss) {
975 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
976 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
977 bss_osen = wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE);
978 } else
979 bss_wpa = bss_rsn = bss_osen = NULL;
980
981 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
982 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
983 (ie.group_cipher & ssid->group_cipher) &&
984 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
985 (ie.key_mgmt & ssid->key_mgmt)) {
986 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
987 proto = WPA_PROTO_RSN;
988 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
989 wpa_parse_wpa_ie(bss_wpa, 2 +bss_wpa[1], &ie) == 0 &&
990 (ie.group_cipher & ssid->group_cipher) &&
991 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
992 (ie.key_mgmt & ssid->key_mgmt)) {
993 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
994 proto = WPA_PROTO_WPA;
995 #ifdef CONFIG_HS20
996 } else if (bss_osen && (ssid->proto & WPA_PROTO_OSEN)) {
997 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using OSEN");
998 /* TODO: parse OSEN element */
999 os_memset(&ie, 0, sizeof(ie));
1000 ie.group_cipher = WPA_CIPHER_CCMP;
1001 ie.pairwise_cipher = WPA_CIPHER_CCMP;
1002 ie.key_mgmt = WPA_KEY_MGMT_OSEN;
1003 proto = WPA_PROTO_OSEN;
1004 #endif /* CONFIG_HS20 */
1005 } else if (bss) {
1006 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
1007 return -1;
1008 } else {
1009 if (ssid->proto & WPA_PROTO_OSEN)
1010 proto = WPA_PROTO_OSEN;
1011 else if (ssid->proto & WPA_PROTO_RSN)
1012 proto = WPA_PROTO_RSN;
1013 else
1014 proto = WPA_PROTO_WPA;
1015 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
1016 os_memset(&ie, 0, sizeof(ie));
1017 ie.group_cipher = ssid->group_cipher;
1018 ie.pairwise_cipher = ssid->pairwise_cipher;
1019 ie.key_mgmt = ssid->key_mgmt;
1020 #ifdef CONFIG_IEEE80211W
1021 ie.mgmt_group_cipher =
1022 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
1023 WPA_CIPHER_AES_128_CMAC : 0;
1024 #endif /* CONFIG_IEEE80211W */
1025 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1026 "based on configuration");
1027 } else
1028 proto = ie.proto;
1029 }
1030
1031 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1032 "pairwise %d key_mgmt %d proto %d",
1033 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
1034 #ifdef CONFIG_IEEE80211W
1035 if (ssid->ieee80211w) {
1036 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1037 ie.mgmt_group_cipher);
1038 }
1039 #endif /* CONFIG_IEEE80211W */
1040
1041 wpa_s->wpa_proto = proto;
1042 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1043 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1044 !!(ssid->proto & (WPA_PROTO_RSN | WPA_PROTO_OSEN)));
1045
1046 if (bss || !wpa_s->ap_ies_from_associnfo) {
1047 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1048 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1049 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1050 bss_rsn ? 2 + bss_rsn[1] : 0))
1051 return -1;
1052 }
1053
1054 sel = ie.group_cipher & ssid->group_cipher;
1055 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1056 if (wpa_s->group_cipher < 0) {
1057 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1058 "cipher");
1059 return -1;
1060 }
1061 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1062 wpa_cipher_txt(wpa_s->group_cipher));
1063
1064 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
1065 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1066 if (wpa_s->pairwise_cipher < 0) {
1067 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1068 "cipher");
1069 return -1;
1070 }
1071 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1072 wpa_cipher_txt(wpa_s->pairwise_cipher));
1073
1074 sel = ie.key_mgmt & ssid->key_mgmt;
1075 #ifdef CONFIG_SAE
1076 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1077 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1078 #endif /* CONFIG_SAE */
1079 if (0) {
1080 #ifdef CONFIG_IEEE80211R
1081 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1082 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
1083 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
1084 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1085 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
1086 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
1087 #endif /* CONFIG_IEEE80211R */
1088 #ifdef CONFIG_SAE
1089 } else if (sel & WPA_KEY_MGMT_SAE) {
1090 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1091 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1092 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1093 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1094 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1095 #endif /* CONFIG_SAE */
1096 #ifdef CONFIG_IEEE80211W
1097 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1098 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
1099 wpa_dbg(wpa_s, MSG_DEBUG,
1100 "WPA: using KEY_MGMT 802.1X with SHA256");
1101 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1102 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
1103 wpa_dbg(wpa_s, MSG_DEBUG,
1104 "WPA: using KEY_MGMT PSK with SHA256");
1105 #endif /* CONFIG_IEEE80211W */
1106 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1107 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
1108 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
1109 } else if (sel & WPA_KEY_MGMT_PSK) {
1110 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
1111 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
1112 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1113 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
1114 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
1115 #ifdef CONFIG_HS20
1116 } else if (sel & WPA_KEY_MGMT_OSEN) {
1117 wpa_s->key_mgmt = WPA_KEY_MGMT_OSEN;
1118 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using KEY_MGMT OSEN");
1119 #endif /* CONFIG_HS20 */
1120 } else {
1121 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1122 "authenticated key management type");
1123 return -1;
1124 }
1125
1126 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1127 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1128 wpa_s->pairwise_cipher);
1129 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1130
1131 #ifdef CONFIG_IEEE80211W
1132 sel = ie.mgmt_group_cipher;
1133 if ((ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1134 wpa_s->conf->pmf : ssid->ieee80211w) == NO_MGMT_FRAME_PROTECTION ||
1135 !(ie.capabilities & WPA_CAPABILITY_MFPC))
1136 sel = 0;
1137 if (sel & WPA_CIPHER_AES_128_CMAC) {
1138 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
1139 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1140 "AES-128-CMAC");
1141 } else if (sel & WPA_CIPHER_BIP_GMAC_128) {
1142 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_128;
1143 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1144 "BIP-GMAC-128");
1145 } else if (sel & WPA_CIPHER_BIP_GMAC_256) {
1146 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_256;
1147 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1148 "BIP-GMAC-256");
1149 } else if (sel & WPA_CIPHER_BIP_CMAC_256) {
1150 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_CMAC_256;
1151 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1152 "BIP-CMAC-256");
1153 } else {
1154 wpa_s->mgmt_group_cipher = 0;
1155 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
1156 }
1157 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1158 wpa_s->mgmt_group_cipher);
1159 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1160 (ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1161 wpa_s->conf->pmf : ssid->ieee80211w));
1162 #endif /* CONFIG_IEEE80211W */
1163
1164 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
1165 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
1166 return -1;
1167 }
1168
1169 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
1170 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN);
1171 #ifndef CONFIG_NO_PBKDF2
1172 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1173 ssid->passphrase) {
1174 u8 psk[PMK_LEN];
1175 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1176 4096, psk, PMK_LEN);
1177 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1178 psk, PMK_LEN);
1179 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1180 }
1181 #endif /* CONFIG_NO_PBKDF2 */
1182 #ifdef CONFIG_EXT_PASSWORD
1183 if (ssid->ext_psk) {
1184 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1185 ssid->ext_psk);
1186 char pw_str[64 + 1];
1187 u8 psk[PMK_LEN];
1188
1189 if (pw == NULL) {
1190 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1191 "found from external storage");
1192 return -1;
1193 }
1194
1195 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1196 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1197 "PSK length %d in external storage",
1198 (int) wpabuf_len(pw));
1199 ext_password_free(pw);
1200 return -1;
1201 }
1202
1203 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1204 pw_str[wpabuf_len(pw)] = '\0';
1205
1206 #ifndef CONFIG_NO_PBKDF2
1207 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1208 {
1209 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1210 4096, psk, PMK_LEN);
1211 os_memset(pw_str, 0, sizeof(pw_str));
1212 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1213 "external passphrase)",
1214 psk, PMK_LEN);
1215 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1216 } else
1217 #endif /* CONFIG_NO_PBKDF2 */
1218 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1219 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1220 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1221 "Invalid PSK hex string");
1222 os_memset(pw_str, 0, sizeof(pw_str));
1223 ext_password_free(pw);
1224 return -1;
1225 }
1226 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1227 } else {
1228 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1229 "PSK available");
1230 os_memset(pw_str, 0, sizeof(pw_str));
1231 ext_password_free(pw);
1232 return -1;
1233 }
1234
1235 os_memset(pw_str, 0, sizeof(pw_str));
1236 ext_password_free(pw);
1237 }
1238 #endif /* CONFIG_EXT_PASSWORD */
1239 } else
1240 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1241
1242 return 0;
1243 }
1244
1245
wpas_ext_capab_byte(struct wpa_supplicant * wpa_s,u8 * pos,int idx)1246 static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
1247 {
1248 *pos = 0x00;
1249
1250 switch (idx) {
1251 case 0: /* Bits 0-7 */
1252 break;
1253 case 1: /* Bits 8-15 */
1254 break;
1255 case 2: /* Bits 16-23 */
1256 #ifdef CONFIG_WNM
1257 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1258 *pos |= 0x08; /* Bit 19 - BSS Transition */
1259 #endif /* CONFIG_WNM */
1260 break;
1261 case 3: /* Bits 24-31 */
1262 #ifdef CONFIG_WNM
1263 *pos |= 0x02; /* Bit 25 - SSID List */
1264 #endif /* CONFIG_WNM */
1265 #ifdef CONFIG_INTERWORKING
1266 if (wpa_s->conf->interworking)
1267 *pos |= 0x80; /* Bit 31 - Interworking */
1268 #endif /* CONFIG_INTERWORKING */
1269 break;
1270 case 4: /* Bits 32-39 */
1271 #ifdef CONFIG_INTERWORKING
1272 if (wpa_s->drv_flags / WPA_DRIVER_FLAGS_QOS_MAPPING)
1273 *pos |= 0x01; /* Bit 32 - QoS Map */
1274 #endif /* CONFIG_INTERWORKING */
1275 break;
1276 case 5: /* Bits 40-47 */
1277 #ifdef CONFIG_HS20
1278 if (wpa_s->conf->hs20)
1279 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1280 #endif /* CONFIG_HS20 */
1281 break;
1282 case 6: /* Bits 48-55 */
1283 break;
1284 }
1285 }
1286
1287
wpas_build_ext_capab(struct wpa_supplicant * wpa_s,u8 * buf,size_t buflen)1288 int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf, size_t buflen)
1289 {
1290 u8 *pos = buf;
1291 u8 len = 6, i;
1292
1293 if (len < wpa_s->extended_capa_len)
1294 len = wpa_s->extended_capa_len;
1295 if (buflen < (size_t) len + 2) {
1296 wpa_printf(MSG_INFO,
1297 "Not enough room for building extended capabilities element");
1298 return -1;
1299 }
1300
1301 *pos++ = WLAN_EID_EXT_CAPAB;
1302 *pos++ = len;
1303 for (i = 0; i < len; i++, pos++) {
1304 wpas_ext_capab_byte(wpa_s, pos, i);
1305
1306 if (i < wpa_s->extended_capa_len) {
1307 *pos &= ~wpa_s->extended_capa_mask[i];
1308 *pos |= wpa_s->extended_capa[i];
1309 }
1310 }
1311
1312 while (len > 0 && buf[1 + len] == 0) {
1313 len--;
1314 buf[1] = len;
1315 }
1316 if (len == 0)
1317 return 0;
1318
1319 return 2 + len;
1320 }
1321
1322
wpas_valid_bss(struct wpa_supplicant * wpa_s,struct wpa_bss * test_bss)1323 static int wpas_valid_bss(struct wpa_supplicant *wpa_s,
1324 struct wpa_bss *test_bss)
1325 {
1326 struct wpa_bss *bss;
1327
1328 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
1329 if (bss == test_bss)
1330 return 1;
1331 }
1332
1333 return 0;
1334 }
1335
1336
wpas_valid_ssid(struct wpa_supplicant * wpa_s,struct wpa_ssid * test_ssid)1337 static int wpas_valid_ssid(struct wpa_supplicant *wpa_s,
1338 struct wpa_ssid *test_ssid)
1339 {
1340 struct wpa_ssid *ssid;
1341
1342 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next) {
1343 if (ssid == test_ssid)
1344 return 1;
1345 }
1346
1347 return 0;
1348 }
1349
1350
wpas_valid_bss_ssid(struct wpa_supplicant * wpa_s,struct wpa_bss * test_bss,struct wpa_ssid * test_ssid)1351 int wpas_valid_bss_ssid(struct wpa_supplicant *wpa_s, struct wpa_bss *test_bss,
1352 struct wpa_ssid *test_ssid)
1353 {
1354 if (test_bss && !wpas_valid_bss(wpa_s, test_bss))
1355 return 0;
1356
1357 return test_ssid == NULL || wpas_valid_ssid(wpa_s, test_ssid);
1358 }
1359
1360
wpas_connect_work_free(struct wpa_connect_work * cwork)1361 void wpas_connect_work_free(struct wpa_connect_work *cwork)
1362 {
1363 if (cwork == NULL)
1364 return;
1365 os_free(cwork);
1366 }
1367
1368
wpas_connect_work_done(struct wpa_supplicant * wpa_s)1369 void wpas_connect_work_done(struct wpa_supplicant *wpa_s)
1370 {
1371 struct wpa_connect_work *cwork;
1372 struct wpa_radio_work *work = wpa_s->connect_work;
1373
1374 if (!work)
1375 return;
1376
1377 wpa_s->connect_work = NULL;
1378 cwork = work->ctx;
1379 work->ctx = NULL;
1380 wpas_connect_work_free(cwork);
1381 radio_work_done(work);
1382 }
1383
1384
1385 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit);
1386
1387 /**
1388 * wpa_supplicant_associate - Request association
1389 * @wpa_s: Pointer to wpa_supplicant data
1390 * @bss: Scan results for the selected BSS, or %NULL if not available
1391 * @ssid: Configuration data for the selected network
1392 *
1393 * This function is used to request %wpa_supplicant to associate with a BSS.
1394 */
wpa_supplicant_associate(struct wpa_supplicant * wpa_s,struct wpa_bss * bss,struct wpa_ssid * ssid)1395 void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
1396 struct wpa_bss *bss, struct wpa_ssid *ssid)
1397 {
1398 struct wpa_connect_work *cwork;
1399
1400 #ifdef CONFIG_IBSS_RSN
1401 ibss_rsn_deinit(wpa_s->ibss_rsn);
1402 wpa_s->ibss_rsn = NULL;
1403 #endif /* CONFIG_IBSS_RSN */
1404
1405 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1406 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1407 #ifdef CONFIG_AP
1408 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
1409 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1410 "mode");
1411 return;
1412 }
1413 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1414 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1415 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1416 wpas_p2p_ap_setup_failed(wpa_s);
1417 return;
1418 }
1419 wpa_s->current_bss = bss;
1420 #else /* CONFIG_AP */
1421 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1422 "the build");
1423 #endif /* CONFIG_AP */
1424 return;
1425 }
1426
1427 #ifdef CONFIG_TDLS
1428 if (bss)
1429 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1430 bss->ie_len);
1431 #endif /* CONFIG_TDLS */
1432
1433 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1434 ssid->mode == IEEE80211_MODE_INFRA) {
1435 sme_authenticate(wpa_s, bss, ssid);
1436 return;
1437 }
1438
1439 if (wpa_s->connect_work) {
1440 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since connect_work exist");
1441 return;
1442 }
1443
1444 if (radio_work_pending(wpa_s, "connect")) {
1445 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since pending work exist");
1446 return;
1447 }
1448
1449 cwork = os_zalloc(sizeof(*cwork));
1450 if (cwork == NULL)
1451 return;
1452
1453 cwork->bss = bss;
1454 cwork->ssid = ssid;
1455
1456 if (radio_add_work(wpa_s, bss ? bss->freq : 0, "connect", 1,
1457 wpas_start_assoc_cb, cwork) < 0) {
1458 os_free(cwork);
1459 }
1460 }
1461
1462
wpas_start_assoc_cb(struct wpa_radio_work * work,int deinit)1463 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit)
1464 {
1465 struct wpa_connect_work *cwork = work->ctx;
1466 struct wpa_bss *bss = cwork->bss;
1467 struct wpa_ssid *ssid = cwork->ssid;
1468 struct wpa_supplicant *wpa_s = work->wpa_s;
1469 u8 wpa_ie[200];
1470 size_t wpa_ie_len;
1471 int use_crypt, ret, i, bssid_changed;
1472 int algs = WPA_AUTH_ALG_OPEN;
1473 unsigned int cipher_pairwise, cipher_group;
1474 struct wpa_driver_associate_params params;
1475 int wep_keys_set = 0;
1476 int assoc_failed = 0;
1477 struct wpa_ssid *old_ssid;
1478 #ifdef CONFIG_HT_OVERRIDES
1479 struct ieee80211_ht_capabilities htcaps;
1480 struct ieee80211_ht_capabilities htcaps_mask;
1481 #endif /* CONFIG_HT_OVERRIDES */
1482 #ifdef CONFIG_VHT_OVERRIDES
1483 struct ieee80211_vht_capabilities vhtcaps;
1484 struct ieee80211_vht_capabilities vhtcaps_mask;
1485 #endif /* CONFIG_VHT_OVERRIDES */
1486
1487 if (deinit) {
1488 if (work->started) {
1489 wpa_s->connect_work = NULL;
1490
1491 /* cancel possible auth. timeout */
1492 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s,
1493 NULL);
1494 }
1495 wpas_connect_work_free(cwork);
1496 return;
1497 }
1498
1499 wpa_s->connect_work = work;
1500
1501 if (!wpas_valid_bss_ssid(wpa_s, bss, ssid)) {
1502 wpa_dbg(wpa_s, MSG_DEBUG, "BSS/SSID entry for association not valid anymore - drop connection attempt");
1503 wpas_connect_work_done(wpa_s);
1504 return;
1505 }
1506
1507 os_memset(¶ms, 0, sizeof(params));
1508 wpa_s->reassociate = 0;
1509 wpa_s->eap_expected_failure = 0;
1510 if (bss && !wpas_driver_bss_selection(wpa_s)) {
1511 #ifdef CONFIG_IEEE80211R
1512 const u8 *ie, *md = NULL;
1513 #endif /* CONFIG_IEEE80211R */
1514 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
1515 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
1516 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
1517 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
1518 os_memset(wpa_s->bssid, 0, ETH_ALEN);
1519 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
1520 if (bssid_changed)
1521 wpas_notify_bssid_changed(wpa_s);
1522 #ifdef CONFIG_IEEE80211R
1523 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
1524 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
1525 md = ie + 2;
1526 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
1527 if (md) {
1528 /* Prepare for the next transition */
1529 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
1530 }
1531 #endif /* CONFIG_IEEE80211R */
1532 #ifdef CONFIG_WPS
1533 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
1534 wpa_s->conf->ap_scan == 2 &&
1535 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
1536 /* Use ap_scan==1 style network selection to find the network
1537 */
1538 wpa_s->scan_req = MANUAL_SCAN_REQ;
1539 wpa_s->reassociate = 1;
1540 wpa_supplicant_req_scan(wpa_s, 0, 0);
1541 return;
1542 #endif /* CONFIG_WPS */
1543 } else {
1544 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
1545 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
1546 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1547 }
1548 wpa_supplicant_cancel_sched_scan(wpa_s);
1549 wpa_supplicant_cancel_scan(wpa_s);
1550
1551 /* Starting new association, so clear the possibly used WPA IE from the
1552 * previous association. */
1553 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
1554
1555 #ifdef IEEE8021X_EAPOL
1556 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1557 if (ssid->leap) {
1558 if (ssid->non_leap == 0)
1559 algs = WPA_AUTH_ALG_LEAP;
1560 else
1561 algs |= WPA_AUTH_ALG_LEAP;
1562 }
1563 }
1564 #endif /* IEEE8021X_EAPOL */
1565 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
1566 if (ssid->auth_alg) {
1567 algs = ssid->auth_alg;
1568 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
1569 "0x%x", algs);
1570 }
1571
1572 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
1573 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
1574 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
1575 int try_opportunistic;
1576 try_opportunistic = (ssid->proactive_key_caching < 0 ?
1577 wpa_s->conf->okc :
1578 ssid->proactive_key_caching) &&
1579 (ssid->proto & WPA_PROTO_RSN);
1580 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
1581 ssid, try_opportunistic) == 0)
1582 eapol_sm_notify_pmkid_attempt(wpa_s->eapol, 1);
1583 wpa_ie_len = sizeof(wpa_ie);
1584 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
1585 wpa_ie, &wpa_ie_len)) {
1586 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1587 "key management and encryption suites");
1588 return;
1589 }
1590 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
1591 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
1592 /*
1593 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
1594 * use non-WPA since the scan results did not indicate that the
1595 * AP is using WPA or WPA2.
1596 */
1597 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1598 wpa_ie_len = 0;
1599 wpa_s->wpa_proto = 0;
1600 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
1601 wpa_ie_len = sizeof(wpa_ie);
1602 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
1603 wpa_ie, &wpa_ie_len)) {
1604 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1605 "key management and encryption suites (no "
1606 "scan results)");
1607 return;
1608 }
1609 #ifdef CONFIG_WPS
1610 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
1611 struct wpabuf *wps_ie;
1612 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
1613 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
1614 wpa_ie_len = wpabuf_len(wps_ie);
1615 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
1616 } else
1617 wpa_ie_len = 0;
1618 wpabuf_free(wps_ie);
1619 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1620 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
1621 params.wps = WPS_MODE_PRIVACY;
1622 else
1623 params.wps = WPS_MODE_OPEN;
1624 wpa_s->wpa_proto = 0;
1625 #endif /* CONFIG_WPS */
1626 } else {
1627 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1628 wpa_ie_len = 0;
1629 wpa_s->wpa_proto = 0;
1630 }
1631
1632 #ifdef CONFIG_P2P
1633 if (wpa_s->global->p2p) {
1634 u8 *pos;
1635 size_t len;
1636 int res;
1637 pos = wpa_ie + wpa_ie_len;
1638 len = sizeof(wpa_ie) - wpa_ie_len;
1639 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
1640 ssid->p2p_group);
1641 if (res >= 0)
1642 wpa_ie_len += res;
1643 }
1644
1645 wpa_s->cross_connect_disallowed = 0;
1646 if (bss) {
1647 struct wpabuf *p2p;
1648 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
1649 if (p2p) {
1650 wpa_s->cross_connect_disallowed =
1651 p2p_get_cross_connect_disallowed(p2p);
1652 wpabuf_free(p2p);
1653 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
1654 "connection",
1655 wpa_s->cross_connect_disallowed ?
1656 "disallows" : "allows");
1657 }
1658 }
1659
1660 os_memset(wpa_s->p2p_ip_addr_info, 0, sizeof(wpa_s->p2p_ip_addr_info));
1661 #endif /* CONFIG_P2P */
1662
1663 #ifdef CONFIG_HS20
1664 if (is_hs20_network(wpa_s, ssid, bss)) {
1665 struct wpabuf *hs20;
1666 hs20 = wpabuf_alloc(20);
1667 if (hs20) {
1668 int pps_mo_id = hs20_get_pps_mo_id(wpa_s, ssid);
1669 size_t len;
1670
1671 wpas_hs20_add_indication(hs20, pps_mo_id);
1672 len = sizeof(wpa_ie) - wpa_ie_len;
1673 if (wpabuf_len(hs20) <= len) {
1674 os_memcpy(wpa_ie + wpa_ie_len,
1675 wpabuf_head(hs20), wpabuf_len(hs20));
1676 wpa_ie_len += wpabuf_len(hs20);
1677 }
1678 wpabuf_free(hs20);
1679 }
1680 }
1681 #endif /* CONFIG_HS20 */
1682
1683 /*
1684 * Workaround: Add Extended Capabilities element only if the AP
1685 * included this element in Beacon/Probe Response frames. Some older
1686 * APs seem to have interoperability issues if this element is
1687 * included, so while the standard may require us to include the
1688 * element in all cases, it is justifiable to skip it to avoid
1689 * interoperability issues.
1690 */
1691 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
1692 u8 ext_capab[18];
1693 int ext_capab_len;
1694 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab,
1695 sizeof(ext_capab));
1696 if (ext_capab_len > 0) {
1697 u8 *pos = wpa_ie;
1698 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
1699 pos += 2 + pos[1];
1700 os_memmove(pos + ext_capab_len, pos,
1701 wpa_ie_len - (pos - wpa_ie));
1702 wpa_ie_len += ext_capab_len;
1703 os_memcpy(pos, ext_capab, ext_capab_len);
1704 }
1705 }
1706
1707 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
1708 use_crypt = 1;
1709 cipher_pairwise = wpa_s->pairwise_cipher;
1710 cipher_group = wpa_s->group_cipher;
1711 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
1712 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1713 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
1714 use_crypt = 0;
1715 if (wpa_set_wep_keys(wpa_s, ssid)) {
1716 use_crypt = 1;
1717 wep_keys_set = 1;
1718 }
1719 }
1720 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
1721 use_crypt = 0;
1722
1723 #ifdef IEEE8021X_EAPOL
1724 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1725 if ((ssid->eapol_flags &
1726 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
1727 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
1728 !wep_keys_set) {
1729 use_crypt = 0;
1730 } else {
1731 /* Assume that dynamic WEP-104 keys will be used and
1732 * set cipher suites in order for drivers to expect
1733 * encryption. */
1734 cipher_pairwise = cipher_group = WPA_CIPHER_WEP104;
1735 }
1736 }
1737 #endif /* IEEE8021X_EAPOL */
1738
1739 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
1740 /* Set the key before (and later after) association */
1741 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
1742 }
1743
1744 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
1745 if (bss) {
1746 params.ssid = bss->ssid;
1747 params.ssid_len = bss->ssid_len;
1748 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
1749 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
1750 MACSTR " freq=%u MHz based on scan results "
1751 "(bssid_set=%d)",
1752 MAC2STR(bss->bssid), bss->freq,
1753 ssid->bssid_set);
1754 params.bssid = bss->bssid;
1755 params.freq = bss->freq;
1756 }
1757 params.bssid_hint = bss->bssid;
1758 params.freq_hint = bss->freq;
1759 } else {
1760 params.ssid = ssid->ssid;
1761 params.ssid_len = ssid->ssid_len;
1762 }
1763
1764 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
1765 wpa_s->conf->ap_scan == 2) {
1766 params.bssid = ssid->bssid;
1767 params.fixed_bssid = 1;
1768 }
1769
1770 if (ssid->mode == WPAS_MODE_IBSS && ssid->frequency > 0 &&
1771 params.freq == 0)
1772 params.freq = ssid->frequency; /* Initial channel for IBSS */
1773
1774 if (ssid->mode == WPAS_MODE_IBSS) {
1775 if (ssid->beacon_int)
1776 params.beacon_int = ssid->beacon_int;
1777 else
1778 params.beacon_int = wpa_s->conf->beacon_int;
1779 }
1780
1781 params.wpa_ie = wpa_ie;
1782 params.wpa_ie_len = wpa_ie_len;
1783 params.pairwise_suite = cipher_pairwise;
1784 params.group_suite = cipher_group;
1785 params.key_mgmt_suite = wpa_s->key_mgmt;
1786 params.wpa_proto = wpa_s->wpa_proto;
1787 params.auth_alg = algs;
1788 params.mode = ssid->mode;
1789 params.bg_scan_period = ssid->bg_scan_period;
1790 for (i = 0; i < NUM_WEP_KEYS; i++) {
1791 if (ssid->wep_key_len[i])
1792 params.wep_key[i] = ssid->wep_key[i];
1793 params.wep_key_len[i] = ssid->wep_key_len[i];
1794 }
1795 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
1796
1797 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
1798 (params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
1799 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK)) {
1800 params.passphrase = ssid->passphrase;
1801 if (ssid->psk_set)
1802 params.psk = ssid->psk;
1803 }
1804
1805 params.drop_unencrypted = use_crypt;
1806
1807 #ifdef CONFIG_IEEE80211W
1808 params.mgmt_frame_protection =
1809 ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1810 wpa_s->conf->pmf : ssid->ieee80211w;
1811 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
1812 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
1813 struct wpa_ie_data ie;
1814 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
1815 ie.capabilities &
1816 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
1817 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
1818 "MFP: require MFP");
1819 params.mgmt_frame_protection =
1820 MGMT_FRAME_PROTECTION_REQUIRED;
1821 }
1822 }
1823 #endif /* CONFIG_IEEE80211W */
1824
1825 params.p2p = ssid->p2p_group;
1826
1827 if (wpa_s->parent->set_sta_uapsd)
1828 params.uapsd = wpa_s->parent->sta_uapsd;
1829 else
1830 params.uapsd = -1;
1831
1832 #ifdef CONFIG_HT_OVERRIDES
1833 os_memset(&htcaps, 0, sizeof(htcaps));
1834 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
1835 params.htcaps = (u8 *) &htcaps;
1836 params.htcaps_mask = (u8 *) &htcaps_mask;
1837 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, ¶ms);
1838 #endif /* CONFIG_HT_OVERRIDES */
1839 #ifdef CONFIG_VHT_OVERRIDES
1840 os_memset(&vhtcaps, 0, sizeof(vhtcaps));
1841 os_memset(&vhtcaps_mask, 0, sizeof(vhtcaps_mask));
1842 params.vhtcaps = &vhtcaps;
1843 params.vhtcaps_mask = &vhtcaps_mask;
1844 wpa_supplicant_apply_vht_overrides(wpa_s, wpa_s->current_ssid, ¶ms);
1845 #endif /* CONFIG_VHT_OVERRIDES */
1846
1847 #ifdef CONFIG_P2P
1848 /*
1849 * If multi-channel concurrency is not supported, check for any
1850 * frequency conflict. In case of any frequency conflict, remove the
1851 * least prioritized connection.
1852 */
1853 if (wpa_s->num_multichan_concurrent < 2) {
1854 int freq, num;
1855 num = get_shared_radio_freqs(wpa_s, &freq, 1);
1856 if (num > 0 && freq > 0 && freq != params.freq) {
1857 wpa_printf(MSG_DEBUG,
1858 "Assoc conflicting freq found (%d != %d)",
1859 freq, params.freq);
1860 if (wpas_p2p_handle_frequency_conflicts(wpa_s,
1861 params.freq,
1862 ssid) < 0)
1863 return;
1864 }
1865 }
1866 #endif /* CONFIG_P2P */
1867
1868 ret = wpa_drv_associate(wpa_s, ¶ms);
1869 if (ret < 0) {
1870 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
1871 "failed");
1872 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
1873 /*
1874 * The driver is known to mean what is saying, so we
1875 * can stop right here; the association will not
1876 * succeed.
1877 */
1878 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
1879 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1880 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1881 return;
1882 }
1883 /* try to continue anyway; new association will be tried again
1884 * after timeout */
1885 assoc_failed = 1;
1886 }
1887
1888 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
1889 /* Set the key after the association just in case association
1890 * cleared the previously configured key. */
1891 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
1892 /* No need to timeout authentication since there is no key
1893 * management. */
1894 wpa_supplicant_cancel_auth_timeout(wpa_s);
1895 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
1896 #ifdef CONFIG_IBSS_RSN
1897 } else if (ssid->mode == WPAS_MODE_IBSS &&
1898 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
1899 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
1900 /*
1901 * RSN IBSS authentication is per-STA and we can disable the
1902 * per-BSSID authentication.
1903 */
1904 wpa_supplicant_cancel_auth_timeout(wpa_s);
1905 #endif /* CONFIG_IBSS_RSN */
1906 } else {
1907 /* Timeout for IEEE 802.11 authentication and association */
1908 int timeout = 60;
1909
1910 if (assoc_failed) {
1911 /* give IBSS a bit more time */
1912 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
1913 } else if (wpa_s->conf->ap_scan == 1) {
1914 /* give IBSS a bit more time */
1915 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
1916 }
1917 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
1918 }
1919
1920 if (wep_keys_set &&
1921 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
1922 /* Set static WEP keys again */
1923 wpa_set_wep_keys(wpa_s, ssid);
1924 }
1925
1926 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
1927 /*
1928 * Do not allow EAP session resumption between different
1929 * network configurations.
1930 */
1931 eapol_sm_invalidate_cached_session(wpa_s->eapol);
1932 }
1933 old_ssid = wpa_s->current_ssid;
1934 wpa_s->current_ssid = ssid;
1935 wpa_s->current_bss = bss;
1936 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
1937 wpa_supplicant_initiate_eapol(wpa_s);
1938 if (old_ssid != wpa_s->current_ssid)
1939 wpas_notify_network_changed(wpa_s);
1940 }
1941
1942
wpa_supplicant_clear_connection(struct wpa_supplicant * wpa_s,const u8 * addr)1943 static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
1944 const u8 *addr)
1945 {
1946 struct wpa_ssid *old_ssid;
1947
1948 wpa_clear_keys(wpa_s, addr);
1949 old_ssid = wpa_s->current_ssid;
1950 wpa_supplicant_mark_disassoc(wpa_s);
1951 wpa_sm_set_config(wpa_s->wpa, NULL);
1952 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
1953 if (old_ssid != wpa_s->current_ssid)
1954 wpas_notify_network_changed(wpa_s);
1955 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
1956 }
1957
1958
1959 /**
1960 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
1961 * @wpa_s: Pointer to wpa_supplicant data
1962 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
1963 *
1964 * This function is used to request %wpa_supplicant to deauthenticate from the
1965 * current AP.
1966 */
wpa_supplicant_deauthenticate(struct wpa_supplicant * wpa_s,int reason_code)1967 void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
1968 int reason_code)
1969 {
1970 u8 *addr = NULL;
1971 union wpa_event_data event;
1972 int zero_addr = 0;
1973
1974 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
1975 " pending_bssid=" MACSTR " reason=%d state=%s",
1976 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
1977 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
1978
1979 if (!is_zero_ether_addr(wpa_s->bssid))
1980 addr = wpa_s->bssid;
1981 else if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
1982 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
1983 wpa_s->wpa_state == WPA_ASSOCIATING))
1984 addr = wpa_s->pending_bssid;
1985 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
1986 /*
1987 * When using driver-based BSS selection, we may not know the
1988 * BSSID with which we are currently trying to associate. We
1989 * need to notify the driver of this disconnection even in such
1990 * a case, so use the all zeros address here.
1991 */
1992 addr = wpa_s->bssid;
1993 zero_addr = 1;
1994 }
1995
1996 #ifdef CONFIG_TDLS
1997 wpa_tdls_teardown_peers(wpa_s->wpa);
1998 #endif /* CONFIG_TDLS */
1999
2000 if (addr) {
2001 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
2002 os_memset(&event, 0, sizeof(event));
2003 event.deauth_info.reason_code = (u16) reason_code;
2004 event.deauth_info.locally_generated = 1;
2005 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
2006 if (zero_addr)
2007 addr = NULL;
2008 }
2009
2010 wpa_supplicant_clear_connection(wpa_s, addr);
2011 }
2012
wpa_supplicant_enable_one_network(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)2013 static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
2014 struct wpa_ssid *ssid)
2015 {
2016 if (!ssid || !ssid->disabled || ssid->disabled == 2)
2017 return;
2018
2019 ssid->disabled = 0;
2020 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2021 wpas_notify_network_enabled_changed(wpa_s, ssid);
2022
2023 /*
2024 * Try to reassociate since there is no current configuration and a new
2025 * network was made available.
2026 */
2027 if (!wpa_s->current_ssid && !wpa_s->disconnected)
2028 wpa_s->reassociate = 1;
2029 }
2030
2031
2032 /**
2033 * wpa_supplicant_enable_network - Mark a configured network as enabled
2034 * @wpa_s: wpa_supplicant structure for a network interface
2035 * @ssid: wpa_ssid structure for a configured network or %NULL
2036 *
2037 * Enables the specified network or all networks if no network specified.
2038 */
wpa_supplicant_enable_network(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)2039 void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
2040 struct wpa_ssid *ssid)
2041 {
2042 if (ssid == NULL) {
2043 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
2044 wpa_supplicant_enable_one_network(wpa_s, ssid);
2045 } else
2046 wpa_supplicant_enable_one_network(wpa_s, ssid);
2047
2048 if (wpa_s->reassociate && !wpa_s->disconnected) {
2049 if (wpa_s->sched_scanning) {
2050 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
2051 "new network to scan filters");
2052 wpa_supplicant_cancel_sched_scan(wpa_s);
2053 }
2054
2055 if (wpa_supplicant_fast_associate(wpa_s) != 1)
2056 wpa_supplicant_req_scan(wpa_s, 0, 0);
2057 }
2058 }
2059
2060
2061 /**
2062 * wpa_supplicant_disable_network - Mark a configured network as disabled
2063 * @wpa_s: wpa_supplicant structure for a network interface
2064 * @ssid: wpa_ssid structure for a configured network or %NULL
2065 *
2066 * Disables the specified network or all networks if no network specified.
2067 */
wpa_supplicant_disable_network(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)2068 void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
2069 struct wpa_ssid *ssid)
2070 {
2071 struct wpa_ssid *other_ssid;
2072 int was_disabled;
2073
2074 if (ssid == NULL) {
2075 if (wpa_s->sched_scanning)
2076 wpa_supplicant_cancel_sched_scan(wpa_s);
2077
2078 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2079 other_ssid = other_ssid->next) {
2080 was_disabled = other_ssid->disabled;
2081 if (was_disabled == 2)
2082 continue; /* do not change persistent P2P group
2083 * data */
2084
2085 other_ssid->disabled = 1;
2086
2087 if (was_disabled != other_ssid->disabled)
2088 wpas_notify_network_enabled_changed(
2089 wpa_s, other_ssid);
2090 }
2091 if (wpa_s->current_ssid)
2092 wpa_supplicant_deauthenticate(
2093 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2094 } else if (ssid->disabled != 2) {
2095 if (ssid == wpa_s->current_ssid)
2096 wpa_supplicant_deauthenticate(
2097 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2098
2099 was_disabled = ssid->disabled;
2100
2101 ssid->disabled = 1;
2102
2103 if (was_disabled != ssid->disabled) {
2104 wpas_notify_network_enabled_changed(wpa_s, ssid);
2105 if (wpa_s->sched_scanning) {
2106 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
2107 "to remove network from filters");
2108 wpa_supplicant_cancel_sched_scan(wpa_s);
2109 wpa_supplicant_req_scan(wpa_s, 0, 0);
2110 }
2111 }
2112 }
2113 }
2114
2115
2116 /**
2117 * wpa_supplicant_select_network - Attempt association with a network
2118 * @wpa_s: wpa_supplicant structure for a network interface
2119 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
2120 */
wpa_supplicant_select_network(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)2121 void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
2122 struct wpa_ssid *ssid)
2123 {
2124
2125 struct wpa_ssid *other_ssid;
2126 int disconnected = 0;
2127
2128 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
2129 wpa_supplicant_deauthenticate(
2130 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2131 disconnected = 1;
2132 }
2133
2134 if (ssid)
2135 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2136
2137 /*
2138 * Mark all other networks disabled or mark all networks enabled if no
2139 * network specified.
2140 */
2141 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2142 other_ssid = other_ssid->next) {
2143 int was_disabled = other_ssid->disabled;
2144 if (was_disabled == 2)
2145 continue; /* do not change persistent P2P group data */
2146
2147 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
2148 if (was_disabled && !other_ssid->disabled)
2149 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
2150
2151 if (was_disabled != other_ssid->disabled)
2152 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
2153 }
2154
2155 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid) {
2156 /* We are already associated with the selected network */
2157 wpa_printf(MSG_DEBUG, "Already associated with the "
2158 "selected network - do nothing");
2159 return;
2160 }
2161
2162 if (ssid) {
2163 wpa_s->current_ssid = ssid;
2164 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2165 }
2166 wpa_s->connect_without_scan = NULL;
2167 wpa_s->disconnected = 0;
2168 wpa_s->reassociate = 1;
2169
2170 if (wpa_supplicant_fast_associate(wpa_s) != 1)
2171 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
2172
2173 if (ssid)
2174 wpas_notify_network_selected(wpa_s, ssid);
2175 }
2176
2177
2178 /**
2179 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
2180 * @wpa_s: wpa_supplicant structure for a network interface
2181 * @pkcs11_engine_path: PKCS #11 engine path or NULL
2182 * @pkcs11_module_path: PKCS #11 module path or NULL
2183 * Returns: 0 on success; -1 on failure
2184 *
2185 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
2186 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
2187 * module path fails the paths will be reset to the default value (NULL).
2188 */
wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant * wpa_s,const char * pkcs11_engine_path,const char * pkcs11_module_path)2189 int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
2190 const char *pkcs11_engine_path,
2191 const char *pkcs11_module_path)
2192 {
2193 char *pkcs11_engine_path_copy = NULL;
2194 char *pkcs11_module_path_copy = NULL;
2195
2196 if (pkcs11_engine_path != NULL) {
2197 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
2198 if (pkcs11_engine_path_copy == NULL)
2199 return -1;
2200 }
2201 if (pkcs11_module_path != NULL) {
2202 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
2203 if (pkcs11_module_path_copy == NULL) {
2204 os_free(pkcs11_engine_path_copy);
2205 return -1;
2206 }
2207 }
2208
2209 os_free(wpa_s->conf->pkcs11_engine_path);
2210 os_free(wpa_s->conf->pkcs11_module_path);
2211 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
2212 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
2213
2214 wpa_sm_set_eapol(wpa_s->wpa, NULL);
2215 eapol_sm_deinit(wpa_s->eapol);
2216 wpa_s->eapol = NULL;
2217 if (wpa_supplicant_init_eapol(wpa_s)) {
2218 /* Error -> Reset paths to the default value (NULL) once. */
2219 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
2220 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
2221 NULL);
2222
2223 return -1;
2224 }
2225 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
2226
2227 return 0;
2228 }
2229
2230
2231 /**
2232 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
2233 * @wpa_s: wpa_supplicant structure for a network interface
2234 * @ap_scan: AP scan mode
2235 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
2236 *
2237 */
wpa_supplicant_set_ap_scan(struct wpa_supplicant * wpa_s,int ap_scan)2238 int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
2239 {
2240
2241 int old_ap_scan;
2242
2243 if (ap_scan < 0 || ap_scan > 2)
2244 return -1;
2245
2246 #ifdef ANDROID
2247 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
2248 wpa_s->wpa_state >= WPA_ASSOCIATING &&
2249 wpa_s->wpa_state < WPA_COMPLETED) {
2250 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
2251 "associating", wpa_s->conf->ap_scan, ap_scan);
2252 return 0;
2253 }
2254 #endif /* ANDROID */
2255
2256 old_ap_scan = wpa_s->conf->ap_scan;
2257 wpa_s->conf->ap_scan = ap_scan;
2258
2259 if (old_ap_scan != wpa_s->conf->ap_scan)
2260 wpas_notify_ap_scan_changed(wpa_s);
2261
2262 return 0;
2263 }
2264
2265
2266 /**
2267 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
2268 * @wpa_s: wpa_supplicant structure for a network interface
2269 * @expire_age: Expiration age in seconds
2270 * Returns: 0 if succeed or -1 if expire_age has an invalid value
2271 *
2272 */
wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant * wpa_s,unsigned int bss_expire_age)2273 int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
2274 unsigned int bss_expire_age)
2275 {
2276 if (bss_expire_age < 10) {
2277 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
2278 bss_expire_age);
2279 return -1;
2280 }
2281 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
2282 bss_expire_age);
2283 wpa_s->conf->bss_expiration_age = bss_expire_age;
2284
2285 return 0;
2286 }
2287
2288
2289 /**
2290 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
2291 * @wpa_s: wpa_supplicant structure for a network interface
2292 * @expire_count: number of scans after which an unseen BSS is reclaimed
2293 * Returns: 0 if succeed or -1 if expire_count has an invalid value
2294 *
2295 */
wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant * wpa_s,unsigned int bss_expire_count)2296 int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
2297 unsigned int bss_expire_count)
2298 {
2299 if (bss_expire_count < 1) {
2300 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
2301 bss_expire_count);
2302 return -1;
2303 }
2304 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
2305 bss_expire_count);
2306 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
2307
2308 return 0;
2309 }
2310
2311
2312 /**
2313 * wpa_supplicant_set_scan_interval - Set scan interval
2314 * @wpa_s: wpa_supplicant structure for a network interface
2315 * @scan_interval: scan interval in seconds
2316 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
2317 *
2318 */
wpa_supplicant_set_scan_interval(struct wpa_supplicant * wpa_s,int scan_interval)2319 int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
2320 int scan_interval)
2321 {
2322 if (scan_interval < 0) {
2323 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
2324 scan_interval);
2325 return -1;
2326 }
2327 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
2328 scan_interval);
2329 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
2330
2331 return 0;
2332 }
2333
2334
2335 /**
2336 * wpa_supplicant_set_debug_params - Set global debug params
2337 * @global: wpa_global structure
2338 * @debug_level: debug level
2339 * @debug_timestamp: determines if show timestamp in debug data
2340 * @debug_show_keys: determines if show keys in debug data
2341 * Returns: 0 if succeed or -1 if debug_level has wrong value
2342 */
wpa_supplicant_set_debug_params(struct wpa_global * global,int debug_level,int debug_timestamp,int debug_show_keys)2343 int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
2344 int debug_timestamp, int debug_show_keys)
2345 {
2346
2347 int old_level, old_timestamp, old_show_keys;
2348
2349 /* check for allowed debuglevels */
2350 if (debug_level != MSG_EXCESSIVE &&
2351 debug_level != MSG_MSGDUMP &&
2352 debug_level != MSG_DEBUG &&
2353 debug_level != MSG_INFO &&
2354 debug_level != MSG_WARNING &&
2355 debug_level != MSG_ERROR)
2356 return -1;
2357
2358 old_level = wpa_debug_level;
2359 old_timestamp = wpa_debug_timestamp;
2360 old_show_keys = wpa_debug_show_keys;
2361
2362 wpa_debug_level = debug_level;
2363 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
2364 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
2365
2366 if (wpa_debug_level != old_level)
2367 wpas_notify_debug_level_changed(global);
2368 if (wpa_debug_timestamp != old_timestamp)
2369 wpas_notify_debug_timestamp_changed(global);
2370 if (wpa_debug_show_keys != old_show_keys)
2371 wpas_notify_debug_show_keys_changed(global);
2372
2373 return 0;
2374 }
2375
2376
2377 /**
2378 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
2379 * @wpa_s: Pointer to wpa_supplicant data
2380 * Returns: A pointer to the current network structure or %NULL on failure
2381 */
wpa_supplicant_get_ssid(struct wpa_supplicant * wpa_s)2382 struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
2383 {
2384 struct wpa_ssid *entry;
2385 u8 ssid[MAX_SSID_LEN];
2386 int res;
2387 size_t ssid_len;
2388 u8 bssid[ETH_ALEN];
2389 int wired;
2390
2391 res = wpa_drv_get_ssid(wpa_s, ssid);
2392 if (res < 0) {
2393 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
2394 "driver");
2395 return NULL;
2396 }
2397 ssid_len = res;
2398
2399 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
2400 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
2401 "driver");
2402 return NULL;
2403 }
2404
2405 wired = wpa_s->conf->ap_scan == 0 &&
2406 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
2407
2408 entry = wpa_s->conf->ssid;
2409 while (entry) {
2410 if (!wpas_network_disabled(wpa_s, entry) &&
2411 ((ssid_len == entry->ssid_len &&
2412 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
2413 (!entry->bssid_set ||
2414 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2415 return entry;
2416 #ifdef CONFIG_WPS
2417 if (!wpas_network_disabled(wpa_s, entry) &&
2418 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
2419 (entry->ssid == NULL || entry->ssid_len == 0) &&
2420 (!entry->bssid_set ||
2421 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2422 return entry;
2423 #endif /* CONFIG_WPS */
2424
2425 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
2426 entry->ssid_len == 0 &&
2427 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
2428 return entry;
2429
2430 entry = entry->next;
2431 }
2432
2433 return NULL;
2434 }
2435
2436
select_driver(struct wpa_supplicant * wpa_s,int i)2437 static int select_driver(struct wpa_supplicant *wpa_s, int i)
2438 {
2439 struct wpa_global *global = wpa_s->global;
2440
2441 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
2442 global->drv_priv[i] = wpa_drivers[i]->global_init();
2443 if (global->drv_priv[i] == NULL) {
2444 wpa_printf(MSG_ERROR, "Failed to initialize driver "
2445 "'%s'", wpa_drivers[i]->name);
2446 return -1;
2447 }
2448 }
2449
2450 wpa_s->driver = wpa_drivers[i];
2451 wpa_s->global_drv_priv = global->drv_priv[i];
2452
2453 return 0;
2454 }
2455
2456
wpa_supplicant_set_driver(struct wpa_supplicant * wpa_s,const char * name)2457 static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
2458 const char *name)
2459 {
2460 int i;
2461 size_t len;
2462 const char *pos, *driver = name;
2463
2464 if (wpa_s == NULL)
2465 return -1;
2466
2467 if (wpa_drivers[0] == NULL) {
2468 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
2469 "wpa_supplicant");
2470 return -1;
2471 }
2472
2473 if (name == NULL) {
2474 /* default to first driver in the list */
2475 return select_driver(wpa_s, 0);
2476 }
2477
2478 do {
2479 pos = os_strchr(driver, ',');
2480 if (pos)
2481 len = pos - driver;
2482 else
2483 len = os_strlen(driver);
2484
2485 for (i = 0; wpa_drivers[i]; i++) {
2486 if (os_strlen(wpa_drivers[i]->name) == len &&
2487 os_strncmp(driver, wpa_drivers[i]->name, len) ==
2488 0) {
2489 /* First driver that succeeds wins */
2490 if (select_driver(wpa_s, i) == 0)
2491 return 0;
2492 }
2493 }
2494
2495 driver = pos + 1;
2496 } while (pos);
2497
2498 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
2499 return -1;
2500 }
2501
2502
2503 /**
2504 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
2505 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
2506 * with struct wpa_driver_ops::init()
2507 * @src_addr: Source address of the EAPOL frame
2508 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
2509 * @len: Length of the EAPOL data
2510 *
2511 * This function is called for each received EAPOL frame. Most driver
2512 * interfaces rely on more generic OS mechanism for receiving frames through
2513 * l2_packet, but if such a mechanism is not available, the driver wrapper may
2514 * take care of received EAPOL frames and deliver them to the core supplicant
2515 * code by calling this function.
2516 */
wpa_supplicant_rx_eapol(void * ctx,const u8 * src_addr,const u8 * buf,size_t len)2517 void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
2518 const u8 *buf, size_t len)
2519 {
2520 struct wpa_supplicant *wpa_s = ctx;
2521
2522 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
2523 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
2524
2525 #ifdef CONFIG_PEERKEY
2526 if (wpa_s->wpa_state > WPA_ASSOCIATED && wpa_s->current_ssid &&
2527 wpa_s->current_ssid->peerkey &&
2528 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
2529 wpa_sm_rx_eapol_peerkey(wpa_s->wpa, src_addr, buf, len) == 1) {
2530 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: Processed PeerKey EAPOL-Key");
2531 return;
2532 }
2533 #endif /* CONFIG_PEERKEY */
2534
2535 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
2536 (wpa_s->last_eapol_matches_bssid &&
2537 #ifdef CONFIG_AP
2538 !wpa_s->ap_iface &&
2539 #endif /* CONFIG_AP */
2540 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
2541 /*
2542 * There is possible race condition between receiving the
2543 * association event and the EAPOL frame since they are coming
2544 * through different paths from the driver. In order to avoid
2545 * issues in trying to process the EAPOL frame before receiving
2546 * association information, lets queue it for processing until
2547 * the association event is received. This may also be needed in
2548 * driver-based roaming case, so also use src_addr != BSSID as a
2549 * trigger if we have previously confirmed that the
2550 * Authenticator uses BSSID as the src_addr (which is not the
2551 * case with wired IEEE 802.1X).
2552 */
2553 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
2554 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
2555 wpa_supplicant_state_txt(wpa_s->wpa_state),
2556 MAC2STR(wpa_s->bssid));
2557 wpabuf_free(wpa_s->pending_eapol_rx);
2558 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
2559 if (wpa_s->pending_eapol_rx) {
2560 os_get_reltime(&wpa_s->pending_eapol_rx_time);
2561 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
2562 ETH_ALEN);
2563 }
2564 return;
2565 }
2566
2567 wpa_s->last_eapol_matches_bssid =
2568 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
2569
2570 #ifdef CONFIG_AP
2571 if (wpa_s->ap_iface) {
2572 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
2573 return;
2574 }
2575 #endif /* CONFIG_AP */
2576
2577 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
2578 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
2579 "no key management is configured");
2580 return;
2581 }
2582
2583 if (wpa_s->eapol_received == 0 &&
2584 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
2585 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
2586 wpa_s->wpa_state != WPA_COMPLETED) &&
2587 (wpa_s->current_ssid == NULL ||
2588 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
2589 /* Timeout for completing IEEE 802.1X and WPA authentication */
2590 wpa_supplicant_req_auth_timeout(
2591 wpa_s,
2592 (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
2593 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
2594 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) ?
2595 70 : 10, 0);
2596 }
2597 wpa_s->eapol_received++;
2598
2599 if (wpa_s->countermeasures) {
2600 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
2601 "EAPOL packet");
2602 return;
2603 }
2604
2605 #ifdef CONFIG_IBSS_RSN
2606 if (wpa_s->current_ssid &&
2607 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
2608 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
2609 return;
2610 }
2611 #endif /* CONFIG_IBSS_RSN */
2612
2613 /* Source address of the incoming EAPOL frame could be compared to the
2614 * current BSSID. However, it is possible that a centralized
2615 * Authenticator could be using another MAC address than the BSSID of
2616 * an AP, so just allow any address to be used for now. The replies are
2617 * still sent to the current BSSID (if available), though. */
2618
2619 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
2620 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
2621 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
2622 return;
2623 wpa_drv_poll(wpa_s);
2624 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
2625 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
2626 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
2627 /*
2628 * Set portValid = TRUE here since we are going to skip 4-way
2629 * handshake processing which would normally set portValid. We
2630 * need this to allow the EAPOL state machines to be completed
2631 * without going through EAPOL-Key handshake.
2632 */
2633 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
2634 }
2635 }
2636
2637
wpa_supplicant_update_mac_addr(struct wpa_supplicant * wpa_s)2638 int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
2639 {
2640 if (wpa_s->driver->send_eapol) {
2641 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
2642 if (addr)
2643 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
2644 } else if ((!wpa_s->p2p_mgmt ||
2645 !(wpa_s->drv_flags &
2646 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
2647 !(wpa_s->drv_flags &
2648 WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
2649 l2_packet_deinit(wpa_s->l2);
2650 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
2651 wpa_drv_get_mac_addr(wpa_s),
2652 ETH_P_EAPOL,
2653 wpa_supplicant_rx_eapol, wpa_s, 0);
2654 if (wpa_s->l2 == NULL)
2655 return -1;
2656 } else {
2657 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
2658 if (addr)
2659 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
2660 }
2661
2662 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
2663 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
2664 return -1;
2665 }
2666
2667 return 0;
2668 }
2669
2670
wpa_supplicant_rx_eapol_bridge(void * ctx,const u8 * src_addr,const u8 * buf,size_t len)2671 static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
2672 const u8 *buf, size_t len)
2673 {
2674 struct wpa_supplicant *wpa_s = ctx;
2675 const struct l2_ethhdr *eth;
2676
2677 if (len < sizeof(*eth))
2678 return;
2679 eth = (const struct l2_ethhdr *) buf;
2680
2681 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
2682 !(eth->h_dest[0] & 0x01)) {
2683 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
2684 " (bridge - not for this interface - ignore)",
2685 MAC2STR(src_addr), MAC2STR(eth->h_dest));
2686 return;
2687 }
2688
2689 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
2690 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
2691 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
2692 len - sizeof(*eth));
2693 }
2694
2695
2696 /**
2697 * wpa_supplicant_driver_init - Initialize driver interface parameters
2698 * @wpa_s: Pointer to wpa_supplicant data
2699 * Returns: 0 on success, -1 on failure
2700 *
2701 * This function is called to initialize driver interface parameters.
2702 * wpa_drv_init() must have been called before this function to initialize the
2703 * driver interface.
2704 */
wpa_supplicant_driver_init(struct wpa_supplicant * wpa_s)2705 int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
2706 {
2707 static int interface_count = 0;
2708
2709 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
2710 return -1;
2711
2712 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
2713 MAC2STR(wpa_s->own_addr));
2714 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
2715
2716 if (wpa_s->bridge_ifname[0]) {
2717 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
2718 "interface '%s'", wpa_s->bridge_ifname);
2719 wpa_s->l2_br = l2_packet_init(wpa_s->bridge_ifname,
2720 wpa_s->own_addr,
2721 ETH_P_EAPOL,
2722 wpa_supplicant_rx_eapol_bridge,
2723 wpa_s, 1);
2724 if (wpa_s->l2_br == NULL) {
2725 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
2726 "connection for the bridge interface '%s'",
2727 wpa_s->bridge_ifname);
2728 return -1;
2729 }
2730 }
2731
2732 wpa_clear_keys(wpa_s, NULL);
2733
2734 /* Make sure that TKIP countermeasures are not left enabled (could
2735 * happen if wpa_supplicant is killed during countermeasures. */
2736 wpa_drv_set_countermeasures(wpa_s, 0);
2737
2738 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
2739 wpa_drv_flush_pmkid(wpa_s);
2740
2741 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
2742 wpa_s->prev_scan_wildcard = 0;
2743
2744 if (wpa_supplicant_enabled_networks(wpa_s)) {
2745 if (wpa_s->wpa_state == WPA_INTERFACE_DISABLED) {
2746 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
2747 interface_count = 0;
2748 }
2749 if (!wpa_s->p2p_mgmt &&
2750 wpa_supplicant_delayed_sched_scan(wpa_s,
2751 interface_count % 3,
2752 100000))
2753 wpa_supplicant_req_scan(wpa_s, interface_count % 3,
2754 100000);
2755 interface_count++;
2756 } else
2757 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
2758
2759 return 0;
2760 }
2761
2762
wpa_supplicant_daemon(const char * pid_file)2763 static int wpa_supplicant_daemon(const char *pid_file)
2764 {
2765 wpa_printf(MSG_DEBUG, "Daemonize..");
2766 return os_daemonize(pid_file);
2767 }
2768
2769
wpa_supplicant_alloc(void)2770 static struct wpa_supplicant * wpa_supplicant_alloc(void)
2771 {
2772 struct wpa_supplicant *wpa_s;
2773
2774 wpa_s = os_zalloc(sizeof(*wpa_s));
2775 if (wpa_s == NULL)
2776 return NULL;
2777 wpa_s->scan_req = INITIAL_SCAN_REQ;
2778 wpa_s->scan_interval = 5;
2779 wpa_s->new_connection = 1;
2780 wpa_s->parent = wpa_s;
2781 wpa_s->sched_scanning = 0;
2782
2783 return wpa_s;
2784 }
2785
2786
2787 #ifdef CONFIG_HT_OVERRIDES
2788
wpa_set_htcap_mcs(struct wpa_supplicant * wpa_s,struct ieee80211_ht_capabilities * htcaps,struct ieee80211_ht_capabilities * htcaps_mask,const char * ht_mcs)2789 static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
2790 struct ieee80211_ht_capabilities *htcaps,
2791 struct ieee80211_ht_capabilities *htcaps_mask,
2792 const char *ht_mcs)
2793 {
2794 /* parse ht_mcs into hex array */
2795 int i;
2796 const char *tmp = ht_mcs;
2797 char *end = NULL;
2798
2799 /* If ht_mcs is null, do not set anything */
2800 if (!ht_mcs)
2801 return 0;
2802
2803 /* This is what we are setting in the kernel */
2804 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
2805
2806 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
2807
2808 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
2809 errno = 0;
2810 long v = strtol(tmp, &end, 16);
2811 if (errno == 0) {
2812 wpa_msg(wpa_s, MSG_DEBUG,
2813 "htcap value[%i]: %ld end: %p tmp: %p",
2814 i, v, end, tmp);
2815 if (end == tmp)
2816 break;
2817
2818 htcaps->supported_mcs_set[i] = v;
2819 tmp = end;
2820 } else {
2821 wpa_msg(wpa_s, MSG_ERROR,
2822 "Failed to parse ht-mcs: %s, error: %s\n",
2823 ht_mcs, strerror(errno));
2824 return -1;
2825 }
2826 }
2827
2828 /*
2829 * If we were able to parse any values, then set mask for the MCS set.
2830 */
2831 if (i) {
2832 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
2833 IEEE80211_HT_MCS_MASK_LEN - 1);
2834 /* skip the 3 reserved bits */
2835 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
2836 0x1f;
2837 }
2838
2839 return 0;
2840 }
2841
2842
wpa_disable_max_amsdu(struct wpa_supplicant * wpa_s,struct ieee80211_ht_capabilities * htcaps,struct ieee80211_ht_capabilities * htcaps_mask,int disabled)2843 static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
2844 struct ieee80211_ht_capabilities *htcaps,
2845 struct ieee80211_ht_capabilities *htcaps_mask,
2846 int disabled)
2847 {
2848 le16 msk;
2849
2850 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
2851
2852 if (disabled == -1)
2853 return 0;
2854
2855 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
2856 htcaps_mask->ht_capabilities_info |= msk;
2857 if (disabled)
2858 htcaps->ht_capabilities_info &= msk;
2859 else
2860 htcaps->ht_capabilities_info |= msk;
2861
2862 return 0;
2863 }
2864
2865
wpa_set_ampdu_factor(struct wpa_supplicant * wpa_s,struct ieee80211_ht_capabilities * htcaps,struct ieee80211_ht_capabilities * htcaps_mask,int factor)2866 static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
2867 struct ieee80211_ht_capabilities *htcaps,
2868 struct ieee80211_ht_capabilities *htcaps_mask,
2869 int factor)
2870 {
2871 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
2872
2873 if (factor == -1)
2874 return 0;
2875
2876 if (factor < 0 || factor > 3) {
2877 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
2878 "Must be 0-3 or -1", factor);
2879 return -EINVAL;
2880 }
2881
2882 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
2883 htcaps->a_mpdu_params &= ~0x3;
2884 htcaps->a_mpdu_params |= factor & 0x3;
2885
2886 return 0;
2887 }
2888
2889
wpa_set_ampdu_density(struct wpa_supplicant * wpa_s,struct ieee80211_ht_capabilities * htcaps,struct ieee80211_ht_capabilities * htcaps_mask,int density)2890 static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
2891 struct ieee80211_ht_capabilities *htcaps,
2892 struct ieee80211_ht_capabilities *htcaps_mask,
2893 int density)
2894 {
2895 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
2896
2897 if (density == -1)
2898 return 0;
2899
2900 if (density < 0 || density > 7) {
2901 wpa_msg(wpa_s, MSG_ERROR,
2902 "ampdu_density: %d out of range. Must be 0-7 or -1.",
2903 density);
2904 return -EINVAL;
2905 }
2906
2907 htcaps_mask->a_mpdu_params |= 0x1C;
2908 htcaps->a_mpdu_params &= ~(0x1C);
2909 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
2910
2911 return 0;
2912 }
2913
2914
wpa_set_disable_ht40(struct wpa_supplicant * wpa_s,struct ieee80211_ht_capabilities * htcaps,struct ieee80211_ht_capabilities * htcaps_mask,int disabled)2915 static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
2916 struct ieee80211_ht_capabilities *htcaps,
2917 struct ieee80211_ht_capabilities *htcaps_mask,
2918 int disabled)
2919 {
2920 /* Masking these out disables HT40 */
2921 le16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
2922 HT_CAP_INFO_SHORT_GI40MHZ);
2923
2924 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
2925
2926 if (disabled)
2927 htcaps->ht_capabilities_info &= ~msk;
2928 else
2929 htcaps->ht_capabilities_info |= msk;
2930
2931 htcaps_mask->ht_capabilities_info |= msk;
2932
2933 return 0;
2934 }
2935
2936
wpa_set_disable_sgi(struct wpa_supplicant * wpa_s,struct ieee80211_ht_capabilities * htcaps,struct ieee80211_ht_capabilities * htcaps_mask,int disabled)2937 static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
2938 struct ieee80211_ht_capabilities *htcaps,
2939 struct ieee80211_ht_capabilities *htcaps_mask,
2940 int disabled)
2941 {
2942 /* Masking these out disables SGI */
2943 le16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
2944 HT_CAP_INFO_SHORT_GI40MHZ);
2945
2946 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
2947
2948 if (disabled)
2949 htcaps->ht_capabilities_info &= ~msk;
2950 else
2951 htcaps->ht_capabilities_info |= msk;
2952
2953 htcaps_mask->ht_capabilities_info |= msk;
2954
2955 return 0;
2956 }
2957
2958
wpa_set_disable_ldpc(struct wpa_supplicant * wpa_s,struct ieee80211_ht_capabilities * htcaps,struct ieee80211_ht_capabilities * htcaps_mask,int disabled)2959 static int wpa_set_disable_ldpc(struct wpa_supplicant *wpa_s,
2960 struct ieee80211_ht_capabilities *htcaps,
2961 struct ieee80211_ht_capabilities *htcaps_mask,
2962 int disabled)
2963 {
2964 /* Masking these out disables LDPC */
2965 le16 msk = host_to_le16(HT_CAP_INFO_LDPC_CODING_CAP);
2966
2967 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ldpc: %d", disabled);
2968
2969 if (disabled)
2970 htcaps->ht_capabilities_info &= ~msk;
2971 else
2972 htcaps->ht_capabilities_info |= msk;
2973
2974 htcaps_mask->ht_capabilities_info |= msk;
2975
2976 return 0;
2977 }
2978
2979
wpa_supplicant_apply_ht_overrides(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid,struct wpa_driver_associate_params * params)2980 void wpa_supplicant_apply_ht_overrides(
2981 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
2982 struct wpa_driver_associate_params *params)
2983 {
2984 struct ieee80211_ht_capabilities *htcaps;
2985 struct ieee80211_ht_capabilities *htcaps_mask;
2986
2987 if (!ssid)
2988 return;
2989
2990 params->disable_ht = ssid->disable_ht;
2991 if (!params->htcaps || !params->htcaps_mask)
2992 return;
2993
2994 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
2995 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
2996 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
2997 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
2998 ssid->disable_max_amsdu);
2999 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
3000 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
3001 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
3002 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
3003 wpa_set_disable_ldpc(wpa_s, htcaps, htcaps_mask, ssid->disable_ldpc);
3004
3005 if (ssid->ht40_intolerant) {
3006 le16 bit = host_to_le16(HT_CAP_INFO_40MHZ_INTOLERANT);
3007 htcaps->ht_capabilities_info |= bit;
3008 htcaps_mask->ht_capabilities_info |= bit;
3009 }
3010 }
3011
3012 #endif /* CONFIG_HT_OVERRIDES */
3013
3014
3015 #ifdef CONFIG_VHT_OVERRIDES
wpa_supplicant_apply_vht_overrides(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid,struct wpa_driver_associate_params * params)3016 void wpa_supplicant_apply_vht_overrides(
3017 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3018 struct wpa_driver_associate_params *params)
3019 {
3020 struct ieee80211_vht_capabilities *vhtcaps;
3021 struct ieee80211_vht_capabilities *vhtcaps_mask;
3022 #ifdef CONFIG_HT_OVERRIDES
3023 int max_ampdu;
3024 const u32 max_ampdu_mask = VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX;
3025 #endif /* CONFIG_HT_OVERRIDES */
3026
3027 if (!ssid)
3028 return;
3029
3030 params->disable_vht = ssid->disable_vht;
3031
3032 vhtcaps = (void *) params->vhtcaps;
3033 vhtcaps_mask = (void *) params->vhtcaps_mask;
3034
3035 if (!vhtcaps || !vhtcaps_mask)
3036 return;
3037
3038 vhtcaps->vht_capabilities_info = ssid->vht_capa;
3039 vhtcaps_mask->vht_capabilities_info = ssid->vht_capa_mask;
3040
3041 #ifdef CONFIG_HT_OVERRIDES
3042 /* if max ampdu is <= 3, we have to make the HT cap the same */
3043 if (ssid->vht_capa_mask & max_ampdu_mask) {
3044 max_ampdu = (ssid->vht_capa & max_ampdu_mask) >>
3045 find_first_bit(max_ampdu_mask);
3046
3047 max_ampdu = max_ampdu < 3 ? max_ampdu : 3;
3048 wpa_set_ampdu_factor(wpa_s,
3049 (void *) params->htcaps,
3050 (void *) params->htcaps_mask,
3051 max_ampdu);
3052 }
3053 #endif /* CONFIG_HT_OVERRIDES */
3054
3055 #define OVERRIDE_MCS(i) \
3056 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
3057 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
3058 3 << 2 * (i - 1); \
3059 vhtcaps->vht_supported_mcs_set.tx_map |= \
3060 ssid->vht_tx_mcs_nss_ ##i << 2 * (i - 1); \
3061 } \
3062 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
3063 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
3064 3 << 2 * (i - 1); \
3065 vhtcaps->vht_supported_mcs_set.rx_map |= \
3066 ssid->vht_rx_mcs_nss_ ##i << 2 * (i - 1); \
3067 }
3068
3069 OVERRIDE_MCS(1);
3070 OVERRIDE_MCS(2);
3071 OVERRIDE_MCS(3);
3072 OVERRIDE_MCS(4);
3073 OVERRIDE_MCS(5);
3074 OVERRIDE_MCS(6);
3075 OVERRIDE_MCS(7);
3076 OVERRIDE_MCS(8);
3077 }
3078 #endif /* CONFIG_VHT_OVERRIDES */
3079
3080
pcsc_reader_init(struct wpa_supplicant * wpa_s)3081 static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
3082 {
3083 #ifdef PCSC_FUNCS
3084 size_t len;
3085
3086 if (!wpa_s->conf->pcsc_reader)
3087 return 0;
3088
3089 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
3090 if (!wpa_s->scard)
3091 return 1;
3092
3093 if (wpa_s->conf->pcsc_pin &&
3094 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
3095 scard_deinit(wpa_s->scard);
3096 wpa_s->scard = NULL;
3097 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
3098 return -1;
3099 }
3100
3101 len = sizeof(wpa_s->imsi) - 1;
3102 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
3103 scard_deinit(wpa_s->scard);
3104 wpa_s->scard = NULL;
3105 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
3106 return -1;
3107 }
3108 wpa_s->imsi[len] = '\0';
3109
3110 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
3111
3112 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
3113 wpa_s->imsi, wpa_s->mnc_len);
3114
3115 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
3116 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
3117 #endif /* PCSC_FUNCS */
3118
3119 return 0;
3120 }
3121
3122
wpas_init_ext_pw(struct wpa_supplicant * wpa_s)3123 int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
3124 {
3125 char *val, *pos;
3126
3127 ext_password_deinit(wpa_s->ext_pw);
3128 wpa_s->ext_pw = NULL;
3129 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
3130
3131 if (!wpa_s->conf->ext_password_backend)
3132 return 0;
3133
3134 val = os_strdup(wpa_s->conf->ext_password_backend);
3135 if (val == NULL)
3136 return -1;
3137 pos = os_strchr(val, ':');
3138 if (pos)
3139 *pos++ = '\0';
3140
3141 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
3142
3143 wpa_s->ext_pw = ext_password_init(val, pos);
3144 os_free(val);
3145 if (wpa_s->ext_pw == NULL) {
3146 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
3147 return -1;
3148 }
3149 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
3150
3151 return 0;
3152 }
3153
3154
wpas_set_wowlan_triggers(struct wpa_supplicant * wpa_s,struct wpa_driver_capa * capa)3155 static int wpas_set_wowlan_triggers(struct wpa_supplicant *wpa_s,
3156 struct wpa_driver_capa *capa)
3157 {
3158 struct wowlan_triggers *triggers;
3159 int ret = 0;
3160
3161 if (!wpa_s->conf->wowlan_triggers)
3162 return 0;
3163
3164 triggers = wpa_get_wowlan_triggers(wpa_s->conf->wowlan_triggers, capa);
3165 if (triggers) {
3166 ret = wpa_drv_wowlan(wpa_s, triggers);
3167 os_free(triggers);
3168 }
3169 return ret;
3170 }
3171
3172
radio_add_interface(struct wpa_supplicant * wpa_s,const char * rn)3173 static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
3174 const char *rn)
3175 {
3176 struct wpa_supplicant *iface = wpa_s->global->ifaces;
3177 struct wpa_radio *radio;
3178
3179 while (rn && iface) {
3180 radio = iface->radio;
3181 if (radio && os_strcmp(rn, radio->name) == 0) {
3182 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
3183 wpa_s->ifname, rn);
3184 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3185 return radio;
3186 }
3187
3188 iface = iface->next;
3189 }
3190
3191 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
3192 wpa_s->ifname, rn ? rn : "N/A");
3193 radio = os_zalloc(sizeof(*radio));
3194 if (radio == NULL)
3195 return NULL;
3196
3197 if (rn)
3198 os_strlcpy(radio->name, rn, sizeof(radio->name));
3199 dl_list_init(&radio->ifaces);
3200 dl_list_init(&radio->work);
3201 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3202
3203 return radio;
3204 }
3205
3206
radio_work_free(struct wpa_radio_work * work)3207 static void radio_work_free(struct wpa_radio_work *work)
3208 {
3209 if (work->wpa_s->scan_work == work) {
3210 /* This should not really happen. */
3211 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as scan_work",
3212 work->type, work, work->started);
3213 work->wpa_s->scan_work = NULL;
3214 }
3215
3216 #ifdef CONFIG_P2P
3217 if (work->wpa_s->p2p_scan_work == work) {
3218 /* This should not really happen. */
3219 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as p2p_scan_work",
3220 work->type, work, work->started);
3221 work->wpa_s->p2p_scan_work = NULL;
3222 }
3223 #endif /* CONFIG_P2P */
3224
3225 dl_list_del(&work->list);
3226 os_free(work);
3227 }
3228
3229
radio_start_next_work(void * eloop_ctx,void * timeout_ctx)3230 static void radio_start_next_work(void *eloop_ctx, void *timeout_ctx)
3231 {
3232 struct wpa_radio *radio = eloop_ctx;
3233 struct wpa_radio_work *work;
3234 struct os_reltime now, diff;
3235 struct wpa_supplicant *wpa_s;
3236
3237 work = dl_list_first(&radio->work, struct wpa_radio_work, list);
3238 if (work == NULL)
3239 return;
3240
3241 if (work->started)
3242 return; /* already started and still in progress */
3243
3244 wpa_s = dl_list_first(&radio->ifaces, struct wpa_supplicant,
3245 radio_list);
3246 if (wpa_s && wpa_s->external_scan_running) {
3247 wpa_printf(MSG_DEBUG, "Delay radio work start until externally triggered scan completes");
3248 return;
3249 }
3250
3251 os_get_reltime(&now);
3252 os_reltime_sub(&now, &work->time, &diff);
3253 wpa_dbg(work->wpa_s, MSG_DEBUG, "Starting radio work '%s'@%p after %ld.%06ld second wait",
3254 work->type, work, diff.sec, diff.usec);
3255 work->started = 1;
3256 work->time = now;
3257 work->cb(work, 0);
3258 }
3259
3260
3261 /*
3262 * This function removes both started and pending radio works running on
3263 * the provided interface's radio.
3264 * Prior to the removal of the radio work, its callback (cb) is called with
3265 * deinit set to be 1. Each work's callback is responsible for clearing its
3266 * internal data and restoring to a correct state.
3267 * @wpa_s: wpa_supplicant data
3268 * @type: type of works to be removed
3269 * @remove_all: 1 to remove all the works on this radio, 0 to remove only
3270 * this interface's works.
3271 */
radio_remove_works(struct wpa_supplicant * wpa_s,const char * type,int remove_all)3272 void radio_remove_works(struct wpa_supplicant *wpa_s,
3273 const char *type, int remove_all)
3274 {
3275 struct wpa_radio_work *work, *tmp;
3276 struct wpa_radio *radio = wpa_s->radio;
3277
3278 dl_list_for_each_safe(work, tmp, &radio->work, struct wpa_radio_work,
3279 list) {
3280 if (type && os_strcmp(type, work->type) != 0)
3281 continue;
3282
3283 /* skip other ifaces' works */
3284 if (!remove_all && work->wpa_s != wpa_s)
3285 continue;
3286
3287 wpa_dbg(wpa_s, MSG_DEBUG, "Remove radio work '%s'@%p%s",
3288 work->type, work, work->started ? " (started)" : "");
3289 work->cb(work, 1);
3290 radio_work_free(work);
3291 }
3292
3293 /* in case we removed the started work */
3294 radio_work_check_next(wpa_s);
3295 }
3296
3297
radio_remove_interface(struct wpa_supplicant * wpa_s)3298 static void radio_remove_interface(struct wpa_supplicant *wpa_s)
3299 {
3300 struct wpa_radio *radio = wpa_s->radio;
3301
3302 if (!radio)
3303 return;
3304
3305 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
3306 wpa_s->ifname, radio->name);
3307 dl_list_del(&wpa_s->radio_list);
3308 radio_remove_works(wpa_s, NULL, 0);
3309 wpa_s->radio = NULL;
3310 if (!dl_list_empty(&radio->ifaces))
3311 return; /* Interfaces remain for this radio */
3312
3313 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
3314 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3315 os_free(radio);
3316 }
3317
3318
radio_work_check_next(struct wpa_supplicant * wpa_s)3319 void radio_work_check_next(struct wpa_supplicant *wpa_s)
3320 {
3321 struct wpa_radio *radio = wpa_s->radio;
3322
3323 if (dl_list_empty(&radio->work))
3324 return;
3325 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3326 eloop_register_timeout(0, 0, radio_start_next_work, radio, NULL);
3327 }
3328
3329
3330 /**
3331 * radio_add_work - Add a radio work item
3332 * @wpa_s: Pointer to wpa_supplicant data
3333 * @freq: Frequency of the offchannel operation in MHz or 0
3334 * @type: Unique identifier for each type of work
3335 * @next: Force as the next work to be executed
3336 * @cb: Callback function for indicating when radio is available
3337 * @ctx: Context pointer for the work (work->ctx in cb())
3338 * Returns: 0 on success, -1 on failure
3339 *
3340 * This function is used to request time for an operation that requires
3341 * exclusive radio control. Once the radio is available, the registered callback
3342 * function will be called. radio_work_done() must be called once the exclusive
3343 * radio operation has been completed, so that the radio is freed for other
3344 * operations. The special case of deinit=1 is used to free the context data
3345 * during interface removal. That does not allow the callback function to start
3346 * the radio operation, i.e., it must free any resources allocated for the radio
3347 * work and return.
3348 *
3349 * The @freq parameter can be used to indicate a single channel on which the
3350 * offchannel operation will occur. This may allow multiple radio work
3351 * operations to be performed in parallel if they apply for the same channel.
3352 * Setting this to 0 indicates that the work item may use multiple channels or
3353 * requires exclusive control of the radio.
3354 */
radio_add_work(struct wpa_supplicant * wpa_s,unsigned int freq,const char * type,int next,void (* cb)(struct wpa_radio_work * work,int deinit),void * ctx)3355 int radio_add_work(struct wpa_supplicant *wpa_s, unsigned int freq,
3356 const char *type, int next,
3357 void (*cb)(struct wpa_radio_work *work, int deinit),
3358 void *ctx)
3359 {
3360 struct wpa_radio_work *work;
3361 int was_empty;
3362
3363 work = os_zalloc(sizeof(*work));
3364 if (work == NULL)
3365 return -1;
3366 wpa_dbg(wpa_s, MSG_DEBUG, "Add radio work '%s'@%p", type, work);
3367 os_get_reltime(&work->time);
3368 work->freq = freq;
3369 work->type = type;
3370 work->wpa_s = wpa_s;
3371 work->cb = cb;
3372 work->ctx = ctx;
3373
3374 was_empty = dl_list_empty(&wpa_s->radio->work);
3375 if (next)
3376 dl_list_add(&wpa_s->radio->work, &work->list);
3377 else
3378 dl_list_add_tail(&wpa_s->radio->work, &work->list);
3379 if (was_empty) {
3380 wpa_dbg(wpa_s, MSG_DEBUG, "First radio work item in the queue - schedule start immediately");
3381 radio_work_check_next(wpa_s);
3382 }
3383
3384 return 0;
3385 }
3386
3387
3388 /**
3389 * radio_work_done - Indicate that a radio work item has been completed
3390 * @work: Completed work
3391 *
3392 * This function is called once the callback function registered with
3393 * radio_add_work() has completed its work.
3394 */
radio_work_done(struct wpa_radio_work * work)3395 void radio_work_done(struct wpa_radio_work *work)
3396 {
3397 struct wpa_supplicant *wpa_s = work->wpa_s;
3398 struct os_reltime now, diff;
3399 unsigned int started = work->started;
3400
3401 os_get_reltime(&now);
3402 os_reltime_sub(&now, &work->time, &diff);
3403 wpa_dbg(wpa_s, MSG_DEBUG, "Radio work '%s'@%p %s in %ld.%06ld seconds",
3404 work->type, work, started ? "done" : "canceled",
3405 diff.sec, diff.usec);
3406 radio_work_free(work);
3407 if (started)
3408 radio_work_check_next(wpa_s);
3409 }
3410
3411
radio_work_pending(struct wpa_supplicant * wpa_s,const char * type)3412 int radio_work_pending(struct wpa_supplicant *wpa_s, const char *type)
3413 {
3414 struct wpa_radio_work *work;
3415 struct wpa_radio *radio = wpa_s->radio;
3416
3417 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
3418 if (work->wpa_s == wpa_s && os_strcmp(work->type, type) == 0)
3419 return 1;
3420 }
3421
3422 return 0;
3423 }
3424
3425
wpas_init_driver(struct wpa_supplicant * wpa_s,struct wpa_interface * iface)3426 static int wpas_init_driver(struct wpa_supplicant *wpa_s,
3427 struct wpa_interface *iface)
3428 {
3429 const char *ifname, *driver, *rn;
3430
3431 driver = iface->driver;
3432 next_driver:
3433 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
3434 return -1;
3435
3436 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
3437 if (wpa_s->drv_priv == NULL) {
3438 const char *pos;
3439 pos = driver ? os_strchr(driver, ',') : NULL;
3440 if (pos) {
3441 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
3442 "driver interface - try next driver wrapper");
3443 driver = pos + 1;
3444 goto next_driver;
3445 }
3446 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
3447 "interface");
3448 return -1;
3449 }
3450 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
3451 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
3452 "driver_param '%s'", wpa_s->conf->driver_param);
3453 return -1;
3454 }
3455
3456 ifname = wpa_drv_get_ifname(wpa_s);
3457 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
3458 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
3459 "interface name with '%s'", ifname);
3460 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
3461 }
3462
3463 rn = wpa_driver_get_radio_name(wpa_s);
3464 if (rn && rn[0] == '\0')
3465 rn = NULL;
3466
3467 wpa_s->radio = radio_add_interface(wpa_s, rn);
3468 if (wpa_s->radio == NULL)
3469 return -1;
3470
3471 return 0;
3472 }
3473
3474
wpa_supplicant_init_iface(struct wpa_supplicant * wpa_s,struct wpa_interface * iface)3475 static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
3476 struct wpa_interface *iface)
3477 {
3478 struct wpa_driver_capa capa;
3479
3480 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
3481 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
3482 iface->confname ? iface->confname : "N/A",
3483 iface->driver ? iface->driver : "default",
3484 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
3485 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
3486
3487 if (iface->confname) {
3488 #ifdef CONFIG_BACKEND_FILE
3489 wpa_s->confname = os_rel2abs_path(iface->confname);
3490 if (wpa_s->confname == NULL) {
3491 wpa_printf(MSG_ERROR, "Failed to get absolute path "
3492 "for configuration file '%s'.",
3493 iface->confname);
3494 return -1;
3495 }
3496 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
3497 iface->confname, wpa_s->confname);
3498 #else /* CONFIG_BACKEND_FILE */
3499 wpa_s->confname = os_strdup(iface->confname);
3500 #endif /* CONFIG_BACKEND_FILE */
3501 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
3502 if (wpa_s->conf == NULL) {
3503 wpa_printf(MSG_ERROR, "Failed to read or parse "
3504 "configuration '%s'.", wpa_s->confname);
3505 return -1;
3506 }
3507 wpa_s->confanother = os_rel2abs_path(iface->confanother);
3508 wpa_config_read(wpa_s->confanother, wpa_s->conf);
3509
3510 #ifdef CONFIG_P2P
3511 wpa_s->conf_p2p_dev = os_rel2abs_path(iface->conf_p2p_dev);
3512 #ifndef ANDROID_P2P
3513 wpa_config_read(wpa_s->conf_p2p_dev, wpa_s->conf);
3514 #endif
3515 #endif /* CONFIG_P2P */
3516
3517 /*
3518 * Override ctrl_interface and driver_param if set on command
3519 * line.
3520 */
3521 if (iface->ctrl_interface) {
3522 os_free(wpa_s->conf->ctrl_interface);
3523 wpa_s->conf->ctrl_interface =
3524 os_strdup(iface->ctrl_interface);
3525 }
3526
3527 if (iface->driver_param) {
3528 os_free(wpa_s->conf->driver_param);
3529 wpa_s->conf->driver_param =
3530 os_strdup(iface->driver_param);
3531 }
3532
3533 if (iface->p2p_mgmt && !iface->ctrl_interface) {
3534 os_free(wpa_s->conf->ctrl_interface);
3535 wpa_s->conf->ctrl_interface = NULL;
3536 }
3537 } else
3538 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
3539 iface->driver_param);
3540
3541 if (wpa_s->conf == NULL) {
3542 wpa_printf(MSG_ERROR, "\nNo configuration found.");
3543 return -1;
3544 }
3545
3546 if (iface->ifname == NULL) {
3547 wpa_printf(MSG_ERROR, "\nInterface name is required.");
3548 return -1;
3549 }
3550 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
3551 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
3552 iface->ifname);
3553 return -1;
3554 }
3555 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
3556
3557 if (iface->bridge_ifname) {
3558 if (os_strlen(iface->bridge_ifname) >=
3559 sizeof(wpa_s->bridge_ifname)) {
3560 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
3561 "name '%s'.", iface->bridge_ifname);
3562 return -1;
3563 }
3564 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
3565 sizeof(wpa_s->bridge_ifname));
3566 }
3567
3568 /* RSNA Supplicant Key Management - INITIALIZE */
3569 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
3570 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
3571
3572 /* Initialize driver interface and register driver event handler before
3573 * L2 receive handler so that association events are processed before
3574 * EAPOL-Key packets if both become available for the same select()
3575 * call. */
3576 if (wpas_init_driver(wpa_s, iface) < 0)
3577 return -1;
3578
3579 if (wpa_supplicant_init_wpa(wpa_s) < 0)
3580 return -1;
3581
3582 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
3583 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
3584 NULL);
3585 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
3586
3587 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
3588 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
3589 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
3590 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3591 "dot11RSNAConfigPMKLifetime");
3592 return -1;
3593 }
3594
3595 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
3596 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
3597 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
3598 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3599 "dot11RSNAConfigPMKReauthThreshold");
3600 return -1;
3601 }
3602
3603 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
3604 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
3605 wpa_s->conf->dot11RSNAConfigSATimeout)) {
3606 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3607 "dot11RSNAConfigSATimeout");
3608 return -1;
3609 }
3610
3611 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
3612 &wpa_s->hw.num_modes,
3613 &wpa_s->hw.flags);
3614
3615 if (wpa_drv_get_capa(wpa_s, &capa) == 0) {
3616 wpa_s->drv_capa_known = 1;
3617 wpa_s->drv_flags = capa.flags;
3618 wpa_s->drv_enc = capa.enc;
3619 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
3620 wpa_s->max_scan_ssids = capa.max_scan_ssids;
3621 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
3622 wpa_s->sched_scan_supported = capa.sched_scan_supported;
3623 wpa_s->max_match_sets = capa.max_match_sets;
3624 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
3625 wpa_s->max_stations = capa.max_stations;
3626 wpa_s->extended_capa = capa.extended_capa;
3627 wpa_s->extended_capa_mask = capa.extended_capa_mask;
3628 wpa_s->extended_capa_len = capa.extended_capa_len;
3629 wpa_s->num_multichan_concurrent =
3630 capa.num_multichan_concurrent;
3631 }
3632 if (wpa_s->max_remain_on_chan == 0)
3633 wpa_s->max_remain_on_chan = 1000;
3634
3635 /*
3636 * Only take p2p_mgmt parameters when P2P Device is supported.
3637 * Doing it here as it determines whether l2_packet_init() will be done
3638 * during wpa_supplicant_driver_init().
3639 */
3640 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
3641 wpa_s->p2p_mgmt = iface->p2p_mgmt;
3642 else
3643 iface->p2p_mgmt = 1;
3644
3645 if (wpa_s->num_multichan_concurrent == 0)
3646 wpa_s->num_multichan_concurrent = 1;
3647
3648 if (wpa_supplicant_driver_init(wpa_s) < 0)
3649 return -1;
3650
3651 #ifdef CONFIG_TDLS
3652 if ((!iface->p2p_mgmt ||
3653 !(wpa_s->drv_flags &
3654 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3655 wpa_tdls_init(wpa_s->wpa))
3656 return -1;
3657 #endif /* CONFIG_TDLS */
3658
3659 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
3660 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
3661 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
3662 return -1;
3663 }
3664
3665 if (wpas_wps_init(wpa_s))
3666 return -1;
3667
3668 if (wpa_supplicant_init_eapol(wpa_s) < 0)
3669 return -1;
3670 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
3671
3672 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
3673 if (wpa_s->ctrl_iface == NULL) {
3674 wpa_printf(MSG_ERROR,
3675 "Failed to initialize control interface '%s'.\n"
3676 "You may have another wpa_supplicant process "
3677 "already running or the file was\n"
3678 "left by an unclean termination of wpa_supplicant "
3679 "in which case you will need\n"
3680 "to manually remove this file before starting "
3681 "wpa_supplicant again.\n",
3682 wpa_s->conf->ctrl_interface);
3683 return -1;
3684 }
3685
3686 wpa_s->gas = gas_query_init(wpa_s);
3687 if (wpa_s->gas == NULL) {
3688 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
3689 return -1;
3690 }
3691
3692 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
3693 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
3694 return -1;
3695 }
3696
3697 if (wpa_bss_init(wpa_s) < 0)
3698 return -1;
3699
3700 /*
3701 * Set Wake-on-WLAN triggers, if configured.
3702 * Note: We don't restore/remove the triggers on shutdown (it doesn't
3703 * have effect anyway when the interface is down).
3704 */
3705 if (wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
3706 return -1;
3707
3708 #ifdef CONFIG_EAP_PROXY
3709 {
3710 size_t len;
3711 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
3712 &len);
3713 if (wpa_s->mnc_len > 0) {
3714 wpa_s->imsi[len] = '\0';
3715 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
3716 wpa_s->imsi, wpa_s->mnc_len);
3717 } else {
3718 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
3719 }
3720 }
3721 #endif /* CONFIG_EAP_PROXY */
3722
3723 if (pcsc_reader_init(wpa_s) < 0)
3724 return -1;
3725
3726 if (wpas_init_ext_pw(wpa_s) < 0)
3727 return -1;
3728
3729 return 0;
3730 }
3731
3732
wpa_supplicant_deinit_iface(struct wpa_supplicant * wpa_s,int notify,int terminate)3733 static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
3734 int notify, int terminate)
3735 {
3736 wpa_s->disconnected = 1;
3737 if (wpa_s->drv_priv) {
3738 wpa_supplicant_deauthenticate(wpa_s,
3739 WLAN_REASON_DEAUTH_LEAVING);
3740
3741 wpa_drv_set_countermeasures(wpa_s, 0);
3742 wpa_clear_keys(wpa_s, NULL);
3743 }
3744
3745 wpa_supplicant_cleanup(wpa_s);
3746 wpas_p2p_deinit_iface(wpa_s);
3747
3748 wpas_ctrl_radio_work_flush(wpa_s);
3749 radio_remove_interface(wpa_s);
3750
3751 if (wpa_s->drv_priv)
3752 wpa_drv_deinit(wpa_s);
3753
3754 if (notify)
3755 wpas_notify_iface_removed(wpa_s);
3756
3757 if (terminate)
3758 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
3759
3760 if (wpa_s->ctrl_iface) {
3761 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
3762 wpa_s->ctrl_iface = NULL;
3763 }
3764
3765 if (wpa_s->conf != NULL) {
3766 wpa_config_free(wpa_s->conf);
3767 wpa_s->conf = NULL;
3768 }
3769
3770 os_free(wpa_s);
3771 }
3772
3773
3774 /**
3775 * wpa_supplicant_add_iface - Add a new network interface
3776 * @global: Pointer to global data from wpa_supplicant_init()
3777 * @iface: Interface configuration options
3778 * Returns: Pointer to the created interface or %NULL on failure
3779 *
3780 * This function is used to add new network interfaces for %wpa_supplicant.
3781 * This can be called before wpa_supplicant_run() to add interfaces before the
3782 * main event loop has been started. In addition, new interfaces can be added
3783 * dynamically while %wpa_supplicant is already running. This could happen,
3784 * e.g., when a hotplug network adapter is inserted.
3785 */
wpa_supplicant_add_iface(struct wpa_global * global,struct wpa_interface * iface)3786 struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
3787 struct wpa_interface *iface)
3788 {
3789 struct wpa_supplicant *wpa_s;
3790 struct wpa_interface t_iface;
3791 struct wpa_ssid *ssid;
3792
3793 if (global == NULL || iface == NULL)
3794 return NULL;
3795
3796 wpa_s = wpa_supplicant_alloc();
3797 if (wpa_s == NULL)
3798 return NULL;
3799
3800 wpa_s->global = global;
3801
3802 t_iface = *iface;
3803 if (global->params.override_driver) {
3804 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
3805 "('%s' -> '%s')",
3806 iface->driver, global->params.override_driver);
3807 t_iface.driver = global->params.override_driver;
3808 }
3809 if (global->params.override_ctrl_interface) {
3810 wpa_printf(MSG_DEBUG, "Override interface parameter: "
3811 "ctrl_interface ('%s' -> '%s')",
3812 iface->ctrl_interface,
3813 global->params.override_ctrl_interface);
3814 t_iface.ctrl_interface =
3815 global->params.override_ctrl_interface;
3816 }
3817 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
3818 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
3819 iface->ifname);
3820 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
3821 return NULL;
3822 }
3823
3824 /* Notify the control interfaces about new iface */
3825 if (wpas_notify_iface_added(wpa_s)) {
3826 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
3827 return NULL;
3828 }
3829
3830 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
3831 wpas_notify_network_added(wpa_s, ssid);
3832
3833 wpa_s->next = global->ifaces;
3834 global->ifaces = wpa_s;
3835
3836 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
3837 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3838
3839 return wpa_s;
3840 }
3841
3842
3843 /**
3844 * wpa_supplicant_remove_iface - Remove a network interface
3845 * @global: Pointer to global data from wpa_supplicant_init()
3846 * @wpa_s: Pointer to the network interface to be removed
3847 * Returns: 0 if interface was removed, -1 if interface was not found
3848 *
3849 * This function can be used to dynamically remove network interfaces from
3850 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
3851 * addition, this function is used to remove all remaining interfaces when
3852 * %wpa_supplicant is terminated.
3853 */
wpa_supplicant_remove_iface(struct wpa_global * global,struct wpa_supplicant * wpa_s,int terminate)3854 int wpa_supplicant_remove_iface(struct wpa_global *global,
3855 struct wpa_supplicant *wpa_s,
3856 int terminate)
3857 {
3858 struct wpa_supplicant *prev;
3859
3860 /* Remove interface from the global list of interfaces */
3861 prev = global->ifaces;
3862 if (prev == wpa_s) {
3863 global->ifaces = wpa_s->next;
3864 } else {
3865 while (prev && prev->next != wpa_s)
3866 prev = prev->next;
3867 if (prev == NULL)
3868 return -1;
3869 prev->next = wpa_s->next;
3870 }
3871
3872 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
3873
3874 if (global->p2p_group_formation == wpa_s)
3875 global->p2p_group_formation = NULL;
3876 if (global->p2p_invite_group == wpa_s)
3877 global->p2p_invite_group = NULL;
3878 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
3879
3880 return 0;
3881 }
3882
3883
3884 /**
3885 * wpa_supplicant_get_eap_mode - Get the current EAP mode
3886 * @wpa_s: Pointer to the network interface
3887 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
3888 */
wpa_supplicant_get_eap_mode(struct wpa_supplicant * wpa_s)3889 const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
3890 {
3891 const char *eapol_method;
3892
3893 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
3894 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
3895 return "NO-EAP";
3896 }
3897
3898 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
3899 if (eapol_method == NULL)
3900 return "UNKNOWN-EAP";
3901
3902 return eapol_method;
3903 }
3904
3905
3906 /**
3907 * wpa_supplicant_get_iface - Get a new network interface
3908 * @global: Pointer to global data from wpa_supplicant_init()
3909 * @ifname: Interface name
3910 * Returns: Pointer to the interface or %NULL if not found
3911 */
wpa_supplicant_get_iface(struct wpa_global * global,const char * ifname)3912 struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
3913 const char *ifname)
3914 {
3915 struct wpa_supplicant *wpa_s;
3916
3917 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
3918 if (os_strcmp(wpa_s->ifname, ifname) == 0)
3919 return wpa_s;
3920 }
3921 return NULL;
3922 }
3923
3924
3925 #ifndef CONFIG_NO_WPA_MSG
wpa_supplicant_msg_ifname_cb(void * ctx)3926 static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
3927 {
3928 struct wpa_supplicant *wpa_s = ctx;
3929 if (wpa_s == NULL)
3930 return NULL;
3931 return wpa_s->ifname;
3932 }
3933 #endif /* CONFIG_NO_WPA_MSG */
3934
3935
3936 /**
3937 * wpa_supplicant_init - Initialize %wpa_supplicant
3938 * @params: Parameters for %wpa_supplicant
3939 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
3940 *
3941 * This function is used to initialize %wpa_supplicant. After successful
3942 * initialization, the returned data pointer can be used to add and remove
3943 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
3944 */
wpa_supplicant_init(struct wpa_params * params)3945 struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
3946 {
3947 struct wpa_global *global;
3948 int ret, i;
3949
3950 if (params == NULL)
3951 return NULL;
3952
3953 #ifdef CONFIG_DRIVER_NDIS
3954 {
3955 void driver_ndis_init_ops(void);
3956 driver_ndis_init_ops();
3957 }
3958 #endif /* CONFIG_DRIVER_NDIS */
3959
3960 #ifndef CONFIG_NO_WPA_MSG
3961 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
3962 #endif /* CONFIG_NO_WPA_MSG */
3963
3964 wpa_debug_open_file(params->wpa_debug_file_path);
3965 if (params->wpa_debug_syslog)
3966 wpa_debug_open_syslog();
3967 if (params->wpa_debug_tracing) {
3968 ret = wpa_debug_open_linux_tracing();
3969 if (ret) {
3970 wpa_printf(MSG_ERROR,
3971 "Failed to enable trace logging");
3972 return NULL;
3973 }
3974 }
3975
3976 ret = eap_register_methods();
3977 if (ret) {
3978 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
3979 if (ret == -2)
3980 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
3981 "the same EAP type.");
3982 return NULL;
3983 }
3984
3985 global = os_zalloc(sizeof(*global));
3986 if (global == NULL)
3987 return NULL;
3988 dl_list_init(&global->p2p_srv_bonjour);
3989 dl_list_init(&global->p2p_srv_upnp);
3990 global->params.daemonize = params->daemonize;
3991 global->params.wait_for_monitor = params->wait_for_monitor;
3992 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
3993 if (params->pid_file)
3994 global->params.pid_file = os_strdup(params->pid_file);
3995 if (params->ctrl_interface)
3996 global->params.ctrl_interface =
3997 os_strdup(params->ctrl_interface);
3998 if (params->ctrl_interface_group)
3999 global->params.ctrl_interface_group =
4000 os_strdup(params->ctrl_interface_group);
4001 if (params->override_driver)
4002 global->params.override_driver =
4003 os_strdup(params->override_driver);
4004 if (params->override_ctrl_interface)
4005 global->params.override_ctrl_interface =
4006 os_strdup(params->override_ctrl_interface);
4007 wpa_debug_level = global->params.wpa_debug_level =
4008 params->wpa_debug_level;
4009 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
4010 params->wpa_debug_show_keys;
4011 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
4012 params->wpa_debug_timestamp;
4013
4014 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
4015
4016 if (eloop_init()) {
4017 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
4018 wpa_supplicant_deinit(global);
4019 return NULL;
4020 }
4021
4022 random_init(params->entropy_file);
4023
4024 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
4025 if (global->ctrl_iface == NULL) {
4026 wpa_supplicant_deinit(global);
4027 return NULL;
4028 }
4029
4030 if (wpas_notify_supplicant_initialized(global)) {
4031 wpa_supplicant_deinit(global);
4032 return NULL;
4033 }
4034
4035 for (i = 0; wpa_drivers[i]; i++)
4036 global->drv_count++;
4037 if (global->drv_count == 0) {
4038 wpa_printf(MSG_ERROR, "No drivers enabled");
4039 wpa_supplicant_deinit(global);
4040 return NULL;
4041 }
4042 global->drv_priv = os_zalloc(global->drv_count * sizeof(void *));
4043 if (global->drv_priv == NULL) {
4044 wpa_supplicant_deinit(global);
4045 return NULL;
4046 }
4047
4048 #ifdef CONFIG_WIFI_DISPLAY
4049 if (wifi_display_init(global) < 0) {
4050 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
4051 wpa_supplicant_deinit(global);
4052 return NULL;
4053 }
4054 #endif /* CONFIG_WIFI_DISPLAY */
4055
4056 return global;
4057 }
4058
4059
4060 /**
4061 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
4062 * @global: Pointer to global data from wpa_supplicant_init()
4063 * Returns: 0 after successful event loop run, -1 on failure
4064 *
4065 * This function starts the main event loop and continues running as long as
4066 * there are any remaining events. In most cases, this function is running as
4067 * long as the %wpa_supplicant process in still in use.
4068 */
wpa_supplicant_run(struct wpa_global * global)4069 int wpa_supplicant_run(struct wpa_global *global)
4070 {
4071 struct wpa_supplicant *wpa_s;
4072
4073 if (global->params.daemonize &&
4074 wpa_supplicant_daemon(global->params.pid_file))
4075 return -1;
4076
4077 if (global->params.wait_for_monitor) {
4078 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
4079 if (wpa_s->ctrl_iface)
4080 wpa_supplicant_ctrl_iface_wait(
4081 wpa_s->ctrl_iface);
4082 }
4083
4084 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
4085 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
4086
4087 eloop_run();
4088
4089 return 0;
4090 }
4091
4092
4093 /**
4094 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
4095 * @global: Pointer to global data from wpa_supplicant_init()
4096 *
4097 * This function is called to deinitialize %wpa_supplicant and to free all
4098 * allocated resources. Remaining network interfaces will also be removed.
4099 */
wpa_supplicant_deinit(struct wpa_global * global)4100 void wpa_supplicant_deinit(struct wpa_global *global)
4101 {
4102 int i;
4103
4104 if (global == NULL)
4105 return;
4106
4107 #ifdef CONFIG_WIFI_DISPLAY
4108 wifi_display_deinit(global);
4109 #endif /* CONFIG_WIFI_DISPLAY */
4110
4111 while (global->ifaces)
4112 wpa_supplicant_remove_iface(global, global->ifaces, 1);
4113
4114 if (global->ctrl_iface)
4115 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
4116
4117 wpas_notify_supplicant_deinitialized(global);
4118
4119 eap_peer_unregister_methods();
4120 #ifdef CONFIG_AP
4121 eap_server_unregister_methods();
4122 #endif /* CONFIG_AP */
4123
4124 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
4125 if (!global->drv_priv[i])
4126 continue;
4127 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
4128 }
4129 os_free(global->drv_priv);
4130
4131 random_deinit();
4132
4133 eloop_destroy();
4134
4135 if (global->params.pid_file) {
4136 os_daemonize_terminate(global->params.pid_file);
4137 os_free(global->params.pid_file);
4138 }
4139 os_free(global->params.ctrl_interface);
4140 os_free(global->params.ctrl_interface_group);
4141 os_free(global->params.override_driver);
4142 os_free(global->params.override_ctrl_interface);
4143
4144 os_free(global->p2p_disallow_freq.range);
4145 os_free(global->p2p_go_avoid_freq.range);
4146 os_free(global->add_psk);
4147
4148 os_free(global);
4149 wpa_debug_close_syslog();
4150 wpa_debug_close_file();
4151 wpa_debug_close_linux_tracing();
4152 }
4153
4154
wpa_supplicant_update_config(struct wpa_supplicant * wpa_s)4155 void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
4156 {
4157 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
4158 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
4159 char country[3];
4160 country[0] = wpa_s->conf->country[0];
4161 country[1] = wpa_s->conf->country[1];
4162 country[2] = '\0';
4163 if (wpa_drv_set_country(wpa_s, country) < 0) {
4164 wpa_printf(MSG_ERROR, "Failed to set country code "
4165 "'%s'", country);
4166 }
4167 }
4168
4169 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
4170 wpas_init_ext_pw(wpa_s);
4171
4172 #ifdef CONFIG_WPS
4173 wpas_wps_update_config(wpa_s);
4174 #endif /* CONFIG_WPS */
4175 wpas_p2p_update_config(wpa_s);
4176 wpa_s->conf->changed_parameters = 0;
4177 }
4178
4179
add_freq(int * freqs,int * num_freqs,int freq)4180 static void add_freq(int *freqs, int *num_freqs, int freq)
4181 {
4182 int i;
4183
4184 for (i = 0; i < *num_freqs; i++) {
4185 if (freqs[i] == freq)
4186 return;
4187 }
4188
4189 freqs[*num_freqs] = freq;
4190 (*num_freqs)++;
4191 }
4192
4193
get_bss_freqs_in_ess(struct wpa_supplicant * wpa_s)4194 static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
4195 {
4196 struct wpa_bss *bss, *cbss;
4197 const int max_freqs = 10;
4198 int *freqs;
4199 int num_freqs = 0;
4200
4201 freqs = os_zalloc(sizeof(int) * (max_freqs + 1));
4202 if (freqs == NULL)
4203 return NULL;
4204
4205 cbss = wpa_s->current_bss;
4206
4207 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
4208 if (bss == cbss)
4209 continue;
4210 if (bss->ssid_len == cbss->ssid_len &&
4211 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
4212 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
4213 add_freq(freqs, &num_freqs, bss->freq);
4214 if (num_freqs == max_freqs)
4215 break;
4216 }
4217 }
4218
4219 if (num_freqs == 0) {
4220 os_free(freqs);
4221 freqs = NULL;
4222 }
4223
4224 return freqs;
4225 }
4226
4227
wpas_connection_failed(struct wpa_supplicant * wpa_s,const u8 * bssid)4228 void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
4229 {
4230 int timeout;
4231 int count;
4232 int *freqs = NULL;
4233
4234 wpas_connect_work_done(wpa_s);
4235
4236 /*
4237 * Remove possible authentication timeout since the connection failed.
4238 */
4239 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
4240
4241 if (wpa_s->disconnected) {
4242 /*
4243 * There is no point in blacklisting the AP if this event is
4244 * generated based on local request to disconnect.
4245 */
4246 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
4247 "indication since interface has been put into "
4248 "disconnected state");
4249 return;
4250 }
4251
4252 /*
4253 * Add the failed BSSID into the blacklist and speed up next scan
4254 * attempt if there could be other APs that could accept association.
4255 * The current blacklist count indicates how many times we have tried
4256 * connecting to this AP and multiple attempts mean that other APs are
4257 * either not available or has already been tried, so that we can start
4258 * increasing the delay here to avoid constant scanning.
4259 */
4260 count = wpa_blacklist_add(wpa_s, bssid);
4261 if (count == 1 && wpa_s->current_bss) {
4262 /*
4263 * This BSS was not in the blacklist before. If there is
4264 * another BSS available for the same ESS, we should try that
4265 * next. Otherwise, we may as well try this one once more
4266 * before allowing other, likely worse, ESSes to be considered.
4267 */
4268 freqs = get_bss_freqs_in_ess(wpa_s);
4269 if (freqs) {
4270 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
4271 "has been seen; try it next");
4272 wpa_blacklist_add(wpa_s, bssid);
4273 /*
4274 * On the next scan, go through only the known channels
4275 * used in this ESS based on previous scans to speed up
4276 * common load balancing use case.
4277 */
4278 os_free(wpa_s->next_scan_freqs);
4279 wpa_s->next_scan_freqs = freqs;
4280 }
4281 }
4282
4283 /*
4284 * Add previous failure count in case the temporary blacklist was
4285 * cleared due to no other BSSes being available.
4286 */
4287 count += wpa_s->extra_blacklist_count;
4288
4289 if (count > 3 && wpa_s->current_ssid) {
4290 wpa_printf(MSG_DEBUG, "Continuous association failures - "
4291 "consider temporary network disabling");
4292 wpas_auth_failed(wpa_s, "CONN_FAILED");
4293 }
4294
4295 switch (count) {
4296 case 1:
4297 timeout = 100;
4298 break;
4299 case 2:
4300 timeout = 500;
4301 break;
4302 case 3:
4303 timeout = 1000;
4304 break;
4305 case 4:
4306 timeout = 5000;
4307 break;
4308 default:
4309 timeout = 10000;
4310 break;
4311 }
4312
4313 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
4314 "ms", count, timeout);
4315
4316 /*
4317 * TODO: if more than one possible AP is available in scan results,
4318 * could try the other ones before requesting a new scan.
4319 */
4320 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
4321 1000 * (timeout % 1000));
4322 }
4323
4324
wpas_driver_bss_selection(struct wpa_supplicant * wpa_s)4325 int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
4326 {
4327 return wpa_s->conf->ap_scan == 2 ||
4328 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
4329 }
4330
4331
4332 #if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid,const char * field,const char * value)4333 int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
4334 struct wpa_ssid *ssid,
4335 const char *field,
4336 const char *value)
4337 {
4338 #ifdef IEEE8021X_EAPOL
4339 struct eap_peer_config *eap = &ssid->eap;
4340
4341 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
4342 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
4343 (const u8 *) value, os_strlen(value));
4344
4345 switch (wpa_supplicant_ctrl_req_from_string(field)) {
4346 case WPA_CTRL_REQ_EAP_IDENTITY:
4347 os_free(eap->identity);
4348 eap->identity = (u8 *) os_strdup(value);
4349 eap->identity_len = os_strlen(value);
4350 eap->pending_req_identity = 0;
4351 if (ssid == wpa_s->current_ssid)
4352 wpa_s->reassociate = 1;
4353 break;
4354 case WPA_CTRL_REQ_EAP_PASSWORD:
4355 bin_clear_free(eap->password, eap->password_len);
4356 eap->password = (u8 *) os_strdup(value);
4357 eap->password_len = os_strlen(value);
4358 eap->pending_req_password = 0;
4359 if (ssid == wpa_s->current_ssid)
4360 wpa_s->reassociate = 1;
4361 break;
4362 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
4363 bin_clear_free(eap->new_password, eap->new_password_len);
4364 eap->new_password = (u8 *) os_strdup(value);
4365 eap->new_password_len = os_strlen(value);
4366 eap->pending_req_new_password = 0;
4367 if (ssid == wpa_s->current_ssid)
4368 wpa_s->reassociate = 1;
4369 break;
4370 case WPA_CTRL_REQ_EAP_PIN:
4371 str_clear_free(eap->pin);
4372 eap->pin = os_strdup(value);
4373 eap->pending_req_pin = 0;
4374 if (ssid == wpa_s->current_ssid)
4375 wpa_s->reassociate = 1;
4376 break;
4377 case WPA_CTRL_REQ_EAP_OTP:
4378 bin_clear_free(eap->otp, eap->otp_len);
4379 eap->otp = (u8 *) os_strdup(value);
4380 eap->otp_len = os_strlen(value);
4381 os_free(eap->pending_req_otp);
4382 eap->pending_req_otp = NULL;
4383 eap->pending_req_otp_len = 0;
4384 break;
4385 case WPA_CTRL_REQ_EAP_PASSPHRASE:
4386 str_clear_free(eap->private_key_passwd);
4387 eap->private_key_passwd = os_strdup(value);
4388 eap->pending_req_passphrase = 0;
4389 if (ssid == wpa_s->current_ssid)
4390 wpa_s->reassociate = 1;
4391 break;
4392 case WPA_CTRL_REQ_SIM:
4393 str_clear_free(eap->external_sim_resp);
4394 eap->external_sim_resp = os_strdup(value);
4395 break;
4396 default:
4397 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
4398 return -1;
4399 }
4400
4401 return 0;
4402 #else /* IEEE8021X_EAPOL */
4403 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
4404 return -1;
4405 #endif /* IEEE8021X_EAPOL */
4406 }
4407 #endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
4408
4409
wpas_network_disabled(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid)4410 int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
4411 {
4412 int i;
4413 unsigned int drv_enc;
4414
4415 if (ssid == NULL)
4416 return 1;
4417
4418 if (ssid->disabled)
4419 return 1;
4420
4421 if (wpa_s && wpa_s->drv_capa_known)
4422 drv_enc = wpa_s->drv_enc;
4423 else
4424 drv_enc = (unsigned int) -1;
4425
4426 for (i = 0; i < NUM_WEP_KEYS; i++) {
4427 size_t len = ssid->wep_key_len[i];
4428 if (len == 0)
4429 continue;
4430 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
4431 continue;
4432 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
4433 continue;
4434 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
4435 continue;
4436 return 1; /* invalid WEP key */
4437 }
4438
4439 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
4440 (!ssid->passphrase || ssid->ssid_len != 0) && !ssid->ext_psk)
4441 return 1;
4442
4443 return 0;
4444 }
4445
4446
wpas_is_p2p_prioritized(struct wpa_supplicant * wpa_s)4447 int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
4448 {
4449 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
4450 return 1;
4451 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
4452 return 0;
4453 return -1;
4454 }
4455
4456
wpas_auth_failed(struct wpa_supplicant * wpa_s,char * reason)4457 void wpas_auth_failed(struct wpa_supplicant *wpa_s, char *reason)
4458 {
4459 struct wpa_ssid *ssid = wpa_s->current_ssid;
4460 int dur;
4461 struct os_reltime now;
4462
4463 if (ssid == NULL) {
4464 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
4465 "SSID block");
4466 return;
4467 }
4468
4469 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
4470 return;
4471
4472 ssid->auth_failures++;
4473
4474 #ifdef CONFIG_P2P
4475 if (ssid->p2p_group &&
4476 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
4477 /*
4478 * Skip the wait time since there is a short timeout on the
4479 * connection to a P2P group.
4480 */
4481 return;
4482 }
4483 #endif /* CONFIG_P2P */
4484
4485 if (ssid->auth_failures > 50)
4486 dur = 300;
4487 else if (ssid->auth_failures > 10)
4488 dur = 120;
4489 else if (ssid->auth_failures > 5)
4490 dur = 90;
4491 else if (ssid->auth_failures > 3)
4492 dur = 60;
4493 else if (ssid->auth_failures > 2)
4494 dur = 30;
4495 else if (ssid->auth_failures > 1)
4496 dur = 20;
4497 else
4498 dur = 10;
4499
4500 if (ssid->auth_failures > 1 &&
4501 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt))
4502 dur += os_random() % (ssid->auth_failures * 10);
4503
4504 os_get_reltime(&now);
4505 if (now.sec + dur <= ssid->disabled_until.sec)
4506 return;
4507
4508 ssid->disabled_until.sec = now.sec + dur;
4509
4510 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
4511 "id=%d ssid=\"%s\" auth_failures=%u duration=%d reason=%s",
4512 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
4513 ssid->auth_failures, dur, reason);
4514 }
4515
4516
wpas_clear_temp_disabled(struct wpa_supplicant * wpa_s,struct wpa_ssid * ssid,int clear_failures)4517 void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
4518 struct wpa_ssid *ssid, int clear_failures)
4519 {
4520 if (ssid == NULL)
4521 return;
4522
4523 if (ssid->disabled_until.sec) {
4524 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
4525 "id=%d ssid=\"%s\"",
4526 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
4527 }
4528 ssid->disabled_until.sec = 0;
4529 ssid->disabled_until.usec = 0;
4530 if (clear_failures)
4531 ssid->auth_failures = 0;
4532 }
4533
4534
disallowed_bssid(struct wpa_supplicant * wpa_s,const u8 * bssid)4535 int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
4536 {
4537 size_t i;
4538
4539 if (wpa_s->disallow_aps_bssid == NULL)
4540 return 0;
4541
4542 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
4543 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
4544 bssid, ETH_ALEN) == 0)
4545 return 1;
4546 }
4547
4548 return 0;
4549 }
4550
4551
disallowed_ssid(struct wpa_supplicant * wpa_s,const u8 * ssid,size_t ssid_len)4552 int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
4553 size_t ssid_len)
4554 {
4555 size_t i;
4556
4557 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
4558 return 0;
4559
4560 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
4561 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
4562 if (ssid_len == s->ssid_len &&
4563 os_memcmp(ssid, s->ssid, ssid_len) == 0)
4564 return 1;
4565 }
4566
4567 return 0;
4568 }
4569
4570
4571 /**
4572 * wpas_request_connection - Request a new connection
4573 * @wpa_s: Pointer to the network interface
4574 *
4575 * This function is used to request a new connection to be found. It will mark
4576 * the interface to allow reassociation and request a new scan to find a
4577 * suitable network to connect to.
4578 */
wpas_request_connection(struct wpa_supplicant * wpa_s)4579 void wpas_request_connection(struct wpa_supplicant *wpa_s)
4580 {
4581 wpa_s->normal_scans = 0;
4582 wpa_supplicant_reinit_autoscan(wpa_s);
4583 wpa_s->extra_blacklist_count = 0;
4584 wpa_s->disconnected = 0;
4585 wpa_s->reassociate = 1;
4586
4587 if (wpa_supplicant_fast_associate(wpa_s) != 1)
4588 wpa_supplicant_req_scan(wpa_s, 0, 0);
4589 }
4590
4591
dump_freq_data(struct wpa_supplicant * wpa_s,const char * title,struct wpa_used_freq_data * freqs_data,unsigned int len)4592 void dump_freq_data(struct wpa_supplicant *wpa_s, const char *title,
4593 struct wpa_used_freq_data *freqs_data,
4594 unsigned int len)
4595 {
4596 unsigned int i;
4597
4598 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
4599 len, title);
4600 for (i = 0; i < len; i++) {
4601 struct wpa_used_freq_data *cur = &freqs_data[i];
4602 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d, flags=0x%X",
4603 i, cur->freq, cur->flags);
4604 }
4605 }
4606
4607
4608 /*
4609 * Find the operating frequencies of any of the virtual interfaces that
4610 * are using the same radio as the current interface, and in addition, get
4611 * information about the interface types that are using the frequency.
4612 */
get_shared_radio_freqs_data(struct wpa_supplicant * wpa_s,struct wpa_used_freq_data * freqs_data,unsigned int len)4613 int get_shared_radio_freqs_data(struct wpa_supplicant *wpa_s,
4614 struct wpa_used_freq_data *freqs_data,
4615 unsigned int len)
4616 {
4617 struct wpa_supplicant *ifs;
4618 u8 bssid[ETH_ALEN];
4619 int freq;
4620 unsigned int idx = 0, i;
4621
4622 wpa_dbg(wpa_s, MSG_DEBUG,
4623 "Determining shared radio frequencies (max len %u)", len);
4624 os_memset(freqs_data, 0, sizeof(struct wpa_used_freq_data) * len);
4625
4626 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
4627 radio_list) {
4628 if (idx == len)
4629 break;
4630
4631 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
4632 continue;
4633
4634 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
4635 ifs->current_ssid->mode == WPAS_MODE_P2P_GO)
4636 freq = ifs->current_ssid->frequency;
4637 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
4638 freq = ifs->assoc_freq;
4639 else
4640 continue;
4641
4642 /* Hold only distinct freqs */
4643 for (i = 0; i < idx; i++)
4644 if (freqs_data[i].freq == freq)
4645 break;
4646
4647 if (i == idx)
4648 freqs_data[idx++].freq = freq;
4649
4650 if (ifs->current_ssid->mode == WPAS_MODE_INFRA) {
4651 freqs_data[i].flags = ifs->current_ssid->p2p_group ?
4652 WPA_FREQ_USED_BY_P2P_CLIENT :
4653 WPA_FREQ_USED_BY_INFRA_STATION;
4654 }
4655 }
4656
4657 dump_freq_data(wpa_s, "completed iteration", freqs_data, idx);
4658 return idx;
4659 }
4660
4661
4662 /*
4663 * Find the operating frequencies of any of the virtual interfaces that
4664 * are using the same radio as the current interface.
4665 */
get_shared_radio_freqs(struct wpa_supplicant * wpa_s,int * freq_array,unsigned int len)4666 int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
4667 int *freq_array, unsigned int len)
4668 {
4669 struct wpa_used_freq_data *freqs_data;
4670 int num, i;
4671
4672 os_memset(freq_array, 0, sizeof(int) * len);
4673
4674 freqs_data = os_calloc(len, sizeof(struct wpa_used_freq_data));
4675 if (!freqs_data)
4676 return -1;
4677
4678 num = get_shared_radio_freqs_data(wpa_s, freqs_data, len);
4679 for (i = 0; i < num; i++)
4680 freq_array[i] = freqs_data[i].freq;
4681
4682 os_free(freqs_data);
4683
4684 return num;
4685 }
4686