]> git.ipfire.org Git - thirdparty/hostap.git/blame - tests/hwsim/test_ap_wps.py
projects / thirdparty / hostap.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
tests: Fix wpas_config_file after implementation change
[thirdparty/hostap.git] / tests / hwsim / test_ap_wps.py
CommitLineData
302b7a1b 1# WPS tests
8674c022 2# Copyright (c) 2013-2014, Jouni Malinen <j@w1.fi>
302b7a1b
JM		 3#
4# This software may be distributed under the terms of the BSD license.
5# See README for more details.
6
2035b170 7import os
302b7a1b
JM		 8import time
9import subprocess
10import logging
c9aa4308 11logger = logging.getLogger()
1013a576 12import re
44ff0400 13import socket
47c549fd
JM		 14import httplib
15import urlparse
16import urllib
17import xml.etree.ElementTree as ET
18import StringIO
302b7a1b
JM		 19
20import hwsim_utils
21import hostapd
1531402e 22from wpasupplicant import WpaSupplicant
81e787b7 23from utils import HwsimSkip
302b7a1b 24
ae3ad328 25def test_ap_wps_init(dev, apdev):
302b7a1b
JM		 26 """Initial AP configuration with first WPS Enrollee"""
27 ssid = "test-wps"
ae3ad328 28 hostapd.add_ap(apdev[0]['ifname'],
302b7a1b 29 { "ssid": ssid, "eap_server": "1", "wps_state": "1" })
ae3ad328 30 hapd = hostapd.Hostapd(apdev[0]['ifname'])
302b7a1b
JM		 31 logger.info("WPS provisioning step")
32 hapd.request("WPS_PBC")
d671a420
JM		 33 if "PBC Status: Active" not in hapd.request("WPS_GET_STATUS"):
34 raise Exception("PBC status not shown correctly")
b9018833
JM		 35
36 id = dev[0].add_network()
37 dev[0].set_network_quoted(id, "ssid", "home")
38 dev[0].set_network_quoted(id, "psk", "12345678")
39 dev[0].request("ENABLE_NETWORK %s no-connect" % id)
40
41 id = dev[0].add_network()
42 dev[0].set_network_quoted(id, "ssid", "home2")
43 dev[0].set_network(id, "bssid", "00:11:22:33:44:55")
44 dev[0].set_network(id, "key_mgmt", "NONE")
45 dev[0].request("ENABLE_NETWORK %s no-connect" % id)
46
302b7a1b 47 dev[0].request("WPS_PBC")
5f35a5e2 48 dev[0].wait_connected(timeout=30)
302b7a1b 49 status = dev[0].get_status()
ae3ad328 50 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
302b7a1b
JM		 51 raise Exception("Not fully connected")
52 if status['ssid'] != ssid:
53 raise Exception("Unexpected SSID")
54 if status['pairwise_cipher'] != 'CCMP':
55 raise Exception("Unexpected encryption configuration")
56 if status['key_mgmt'] != 'WPA2-PSK':
57 raise Exception("Unexpected key_mgmt")
58
d671a420
JM		 59 status = hapd.request("WPS_GET_STATUS")
60 if "PBC Status: Disabled" not in status:
61 raise Exception("PBC status not shown correctly")
62 if "Last WPS result: Success" not in status:
63 raise Exception("Last WPS result not shown correctly")
64 if "Peer Address: " + dev[0].p2p_interface_addr() not in status:
65 raise Exception("Peer address not shown correctly")
75b25ece
JM		 66 conf = hapd.request("GET_CONFIG")
67 if "wps_state=configured" not in conf:
68 raise Exception("AP not in WPS configured state")
69 if "rsn_pairwise_cipher=CCMP TKIP" not in conf:
70 raise Exception("Unexpected rsn_pairwise_cipher")
71 if "wpa_pairwise_cipher=CCMP TKIP" not in conf:
72 raise Exception("Unexpected wpa_pairwise_cipher")
73 if "group_cipher=TKIP" not in conf:
74 raise Exception("Unexpected group_cipher")
d671a420 75
b9018833
JM		 76 if len(dev[0].list_networks()) != 3:
77 raise Exception("Unexpected number of network blocks")
78
18030dc0
JM		 79def test_ap_wps_init_2ap_pbc(dev, apdev):
80 """Initial two-radio AP configuration with first WPS PBC Enrollee"""
81 ssid = "test-wps"
82 params = { "ssid": ssid, "eap_server": "1", "wps_state": "1" }
83 hostapd.add_ap(apdev[0]['ifname'], params)
84 hostapd.add_ap(apdev[1]['ifname'], params)
85 hapd = hostapd.Hostapd(apdev[0]['ifname'])
86 logger.info("WPS provisioning step")
87 hapd.request("WPS_PBC")
84a40841
JM		 88 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412", force_scan=True)
89 dev[0].scan_for_bss(apdev[1]['bssid'], freq="2412")
18030dc0
JM		 90 bss = dev[0].get_bss(apdev[0]['bssid'])
91 if "[WPS-PBC]" not in bss['flags']:
92 raise Exception("WPS-PBC flag missing from AP1")
93 bss = dev[0].get_bss(apdev[1]['bssid'])
94 if "[WPS-PBC]" not in bss['flags']:
95 raise Exception("WPS-PBC flag missing from AP2")
96 dev[0].dump_monitor()
f19d87f1 97 dev[0].request("SET wps_cred_processing 2")
18030dc0 98 dev[0].request("WPS_PBC")
f19d87f1
JM		 99 ev = dev[0].wait_event(["WPS-CRED-RECEIVED"], timeout=30)
100 dev[0].request("SET wps_cred_processing 0")
101 if ev is None:
102 raise Exception("WPS cred event not seen")
103 if "100e" not in ev:
104 raise Exception("WPS attributes not included in the cred event")
5f35a5e2 105 dev[0].wait_connected(timeout=30)
18030dc0 106
84a40841
JM		 107 dev[1].scan_for_bss(apdev[0]['bssid'], freq="2412", force_scan=True)
108 dev[1].scan_for_bss(apdev[1]['bssid'], freq="2412")
18030dc0
JM		 109 bss = dev[1].get_bss(apdev[0]['bssid'])
110 if "[WPS-PBC]" in bss['flags']:
111 raise Exception("WPS-PBC flag not cleared from AP1")
112 bss = dev[1].get_bss(apdev[1]['bssid'])
113 if "[WPS-PBC]" in bss['flags']:
0bde923c 114 raise Exception("WPS-PBC flag not cleared from AP2")
18030dc0
JM		 115
116def test_ap_wps_init_2ap_pin(dev, apdev):
117 """Initial two-radio AP configuration with first WPS PIN Enrollee"""
118 ssid = "test-wps"
119 params = { "ssid": ssid, "eap_server": "1", "wps_state": "1" }
120 hostapd.add_ap(apdev[0]['ifname'], params)
121 hostapd.add_ap(apdev[1]['ifname'], params)
122 hapd = hostapd.Hostapd(apdev[0]['ifname'])
123 logger.info("WPS provisioning step")
124 pin = dev[0].wps_read_pin()
125 hapd.request("WPS_PIN any " + pin)
84a40841
JM		 126 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412", force_scan=True)
127 dev[0].scan_for_bss(apdev[1]['bssid'], freq="2412")
18030dc0
JM		 128 bss = dev[0].get_bss(apdev[0]['bssid'])
129 if "[WPS-AUTH]" not in bss['flags']:
130 raise Exception("WPS-AUTH flag missing from AP1")
131 bss = dev[0].get_bss(apdev[1]['bssid'])
132 if "[WPS-AUTH]" not in bss['flags']:
133 raise Exception("WPS-AUTH flag missing from AP2")
134 dev[0].dump_monitor()
135 dev[0].request("WPS_PIN any " + pin)
5f35a5e2 136 dev[0].wait_connected(timeout=30)
18030dc0 137
84a40841
JM		 138 dev[1].scan_for_bss(apdev[0]['bssid'], freq="2412", force_scan=True)
139 dev[1].scan_for_bss(apdev[1]['bssid'], freq="2412")
18030dc0
JM		 140 bss = dev[1].get_bss(apdev[0]['bssid'])
141 if "[WPS-AUTH]" in bss['flags']:
142 raise Exception("WPS-AUTH flag not cleared from AP1")
143 bss = dev[1].get_bss(apdev[1]['bssid'])
144 if "[WPS-AUTH]" in bss['flags']:
0bde923c 145 raise Exception("WPS-AUTH flag not cleared from AP2")
18030dc0 146
35831e94
JM		 147def test_ap_wps_init_through_wps_config(dev, apdev):
148 """Initial AP configuration using wps_config command"""
149 ssid = "test-wps-init-config"
150 hostapd.add_ap(apdev[0]['ifname'],
151 { "ssid": ssid, "eap_server": "1", "wps_state": "1" })
152 hapd = hostapd.Hostapd(apdev[0]['ifname'])
153 if "FAIL" in hapd.request("WPS_CONFIG " + ssid.encode("hex") + " WPA2PSK CCMP " + "12345678".encode("hex")):
154 raise Exception("WPS_CONFIG command failed")
180cd73d
JM		 155 ev = hapd.wait_event(["WPS-NEW-AP-SETTINGS"], timeout=5)
156 if ev is None:
157 raise Exception("Timeout on WPS-NEW-AP-SETTINGS events")
158 # It takes some time for the AP to update Beacon and Probe Response frames,
159 # so wait here before requesting the scan to be started to avoid adding
160 # extra five second wait to the test due to fetching obsolete scan results.
161 hapd.ping()
162 time.sleep(0.2)
35831e94
JM		 163 dev[0].connect(ssid, psk="12345678", scan_freq="2412", proto="WPA2",
164 pairwise="CCMP", group="CCMP")
165
ae3ad328 166def test_ap_wps_conf(dev, apdev):
302b7a1b
JM		 167 """WPS PBC provisioning with configured AP"""
168 ssid = "test-wps-conf"
ae3ad328 169 hostapd.add_ap(apdev[0]['ifname'],
302b7a1b
JM		 170 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
171 "wpa_passphrase": "12345678", "wpa": "2",
172 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
ae3ad328 173 hapd = hostapd.Hostapd(apdev[0]['ifname'])
302b7a1b
JM		 174 logger.info("WPS provisioning step")
175 hapd.request("WPS_PBC")
33d0b157 176 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
302b7a1b 177 dev[0].dump_monitor()
33d0b157 178 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 179 dev[0].wait_connected(timeout=30)
302b7a1b 180 status = dev[0].get_status()
ae3ad328 181 if status['wpa_state'] != 'COMPLETED':
302b7a1b 182 raise Exception("Not fully connected")
ae3ad328
JM		 183 if status['bssid'] != apdev[0]['bssid']:
184 raise Exception("Unexpected BSSID")
302b7a1b
JM		 185 if status['ssid'] != ssid:
186 raise Exception("Unexpected SSID")
187 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'CCMP':
188 raise Exception("Unexpected encryption configuration")
189 if status['key_mgmt'] != 'WPA2-PSK':
190 raise Exception("Unexpected key_mgmt")
191
097cd9cd
JM		 192 sta = hapd.get_sta(dev[0].p2p_interface_addr())
193 if 'wpsDeviceName' not in sta or sta['wpsDeviceName'] != "Device A":
194 raise Exception("Device name not available in STA command")
195
daad14cc
JM		 196def test_ap_wps_conf_5ghz(dev, apdev):
197 """WPS PBC provisioning with configured AP on 5 GHz band"""
198 try:
9d7fdac5 199 hapd = None
daad14cc
JM		 200 ssid = "test-wps-conf"
201 params = { "ssid": ssid, "eap_server": "1", "wps_state": "2",
202 "wpa_passphrase": "12345678", "wpa": "2",
203 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
204 "country_code": "FI", "hw_mode": "a", "channel": "36" }
205 hapd = hostapd.add_ap(apdev[0]['ifname'], params)
206 logger.info("WPS provisioning step")
207 hapd.request("WPS_PBC")
33d0b157
JM		 208 dev[0].scan_for_bss(apdev[0]['bssid'], freq="5180")
209 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 210 dev[0].wait_connected(timeout=30)
daad14cc
JM		 211
212 sta = hapd.get_sta(dev[0].p2p_interface_addr())
213 if 'wpsDeviceName' not in sta or sta['wpsDeviceName'] != "Device A":
214 raise Exception("Device name not available in STA command")
215 finally:
9d7fdac5
JM		 216 dev[0].request("DISCONNECT")
217 if hapd:
218 hapd.request("DISABLE")
daad14cc 219 subprocess.call(['sudo', 'iw', 'reg', 'set', '00'])
9d7fdac5 220 dev[0].flush_scan_cache()
daad14cc
JM		 221
222def test_ap_wps_conf_chan14(dev, apdev):
223 """WPS PBC provisioning with configured AP on channel 14"""
224 try:
9d7fdac5 225 hapd = None
daad14cc
JM		 226 ssid = "test-wps-conf"
227 params = { "ssid": ssid, "eap_server": "1", "wps_state": "2",
228 "wpa_passphrase": "12345678", "wpa": "2",
229 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
230 "country_code": "JP", "hw_mode": "b", "channel": "14" }
231 hapd = hostapd.add_ap(apdev[0]['ifname'], params)
232 logger.info("WPS provisioning step")
233 hapd.request("WPS_PBC")
234 dev[0].request("WPS_PBC")
5f35a5e2 235 dev[0].wait_connected(timeout=30)
daad14cc
JM		 236
237 sta = hapd.get_sta(dev[0].p2p_interface_addr())
238 if 'wpsDeviceName' not in sta or sta['wpsDeviceName'] != "Device A":
239 raise Exception("Device name not available in STA command")
240 finally:
9d7fdac5
JM		 241 dev[0].request("DISCONNECT")
242 if hapd:
243 hapd.request("DISABLE")
daad14cc 244 subprocess.call(['sudo', 'iw', 'reg', 'set', '00'])
9d7fdac5 245 dev[0].flush_scan_cache()
daad14cc 246
04e62788
JM		 247def test_ap_wps_twice(dev, apdev):
248 """WPS provisioning with twice to change passphrase"""
249 ssid = "test-wps-twice"
250 params = { "ssid": ssid, "eap_server": "1", "wps_state": "2",
251 "wpa_passphrase": "12345678", "wpa": "2",
252 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP" }
253 hostapd.add_ap(apdev[0]['ifname'], params)
254 hapd = hostapd.Hostapd(apdev[0]['ifname'])
255 logger.info("WPS provisioning step")
256 hapd.request("WPS_PBC")
33d0b157 257 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
04e62788 258 dev[0].dump_monitor()
33d0b157 259 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 260 dev[0].wait_connected(timeout=30)
04e62788
JM		 261 dev[0].request("DISCONNECT")
262
263 logger.info("Restart AP with different passphrase and re-run WPS")
264 hapd_global = hostapd.HostapdGlobal()
265 hapd_global.remove(apdev[0]['ifname'])
266 params['wpa_passphrase'] = 'another passphrase'
267 hostapd.add_ap(apdev[0]['ifname'], params)
268 hapd = hostapd.Hostapd(apdev[0]['ifname'])
269 logger.info("WPS provisioning step")
270 hapd.request("WPS_PBC")
271 dev[0].dump_monitor()
33d0b157 272 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 273 dev[0].wait_connected(timeout=30)
04e62788
JM		 274 networks = dev[0].list_networks()
275 if len(networks) > 1:
276 raise Exception("Unexpected duplicated network block present")
277
d658205a
JM		 278def test_ap_wps_incorrect_pin(dev, apdev):
279 """WPS PIN provisioning with incorrect PIN"""
280 ssid = "test-wps-incorrect-pin"
281 hostapd.add_ap(apdev[0]['ifname'],
282 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
283 "wpa_passphrase": "12345678", "wpa": "2",
284 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
285 hapd = hostapd.Hostapd(apdev[0]['ifname'])
286
287 logger.info("WPS provisioning attempt 1")
288 hapd.request("WPS_PIN any 12345670")
33d0b157 289 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
d658205a 290 dev[0].dump_monitor()
33d0b157 291 dev[0].request("WPS_PIN %s 55554444" % apdev[0]['bssid'])
d658205a
JM		 292 ev = dev[0].wait_event(["WPS-FAIL"], timeout=30)
293 if ev is None:
294 raise Exception("WPS operation timed out")
295 if "config_error=18" not in ev:
296 raise Exception("Incorrect config_error reported")
297 if "msg=8" not in ev:
298 raise Exception("PIN error detected on incorrect message")
5f35a5e2 299 dev[0].wait_disconnected(timeout=10)
d658205a
JM		 300 dev[0].request("WPS_CANCEL")
301 # if a scan was in progress, wait for it to complete before trying WPS again
302 ev = dev[0].wait_event(["CTRL-EVENT-SCAN-RESULTS"], 5)
303
d671a420
JM		 304 status = hapd.request("WPS_GET_STATUS")
305 if "Last WPS result: Failed" not in status:
306 raise Exception("WPS failure result not shown correctly")
307
d658205a
JM		 308 logger.info("WPS provisioning attempt 2")
309 hapd.request("WPS_PIN any 12345670")
310 dev[0].dump_monitor()
33d0b157 311 dev[0].request("WPS_PIN %s 12344444" % apdev[0]['bssid'])
d658205a
JM		 312 ev = dev[0].wait_event(["WPS-FAIL"], timeout=30)
313 if ev is None:
314 raise Exception("WPS operation timed out")
315 if "config_error=18" not in ev:
316 raise Exception("Incorrect config_error reported")
317 if "msg=10" not in ev:
318 raise Exception("PIN error detected on incorrect message")
5f35a5e2 319 dev[0].wait_disconnected(timeout=10)
d658205a 320
ae3ad328 321def test_ap_wps_conf_pin(dev, apdev):
302b7a1b
JM		 322 """WPS PIN provisioning with configured AP"""
323 ssid = "test-wps-conf-pin"
ae3ad328 324 hostapd.add_ap(apdev[0]['ifname'],
302b7a1b
JM		 325 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
326 "wpa_passphrase": "12345678", "wpa": "2",
327 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
ae3ad328 328 hapd = hostapd.Hostapd(apdev[0]['ifname'])
302b7a1b
JM		 329 logger.info("WPS provisioning step")
330 pin = dev[0].wps_read_pin()
331 hapd.request("WPS_PIN any " + pin)
33d0b157 332 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
302b7a1b 333 dev[0].dump_monitor()
33d0b157 334 dev[0].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
5f35a5e2 335 dev[0].wait_connected(timeout=30)
302b7a1b 336 status = dev[0].get_status()
ae3ad328 337 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
302b7a1b
JM		 338 raise Exception("Not fully connected")
339 if status['ssid'] != ssid:
340 raise Exception("Unexpected SSID")
341 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'CCMP':
342 raise Exception("Unexpected encryption configuration")
343 if status['key_mgmt'] != 'WPA2-PSK':
344 raise Exception("Unexpected key_mgmt")
345
84a40841 346 dev[1].scan_for_bss(apdev[0]['bssid'], freq="2412", force_scan=True)
362ba6de
JM		 347 bss = dev[1].get_bss(apdev[0]['bssid'])
348 if "[WPS-AUTH]" in bss['flags']:
349 raise Exception("WPS-AUTH flag not cleared")
a60a6d6b 350 logger.info("Try to connect from another station using the same PIN")
33d0b157 351 pin = dev[1].request("WPS_PIN " + apdev[0]['bssid'])
a60a6d6b
JM		 352 ev = dev[1].wait_event(["WPS-M2D","CTRL-EVENT-CONNECTED"], timeout=30)
353 if ev is None:
354 raise Exception("Operation timed out")
355 if "WPS-M2D" not in ev:
356 raise Exception("Unexpected WPS operation started")
6e12eaa4 357 hapd.request("WPS_PIN any " + pin)
5f35a5e2 358 dev[1].wait_connected(timeout=30)
362ba6de 359
6257f9c0
JM		 360def test_ap_wps_conf_pin_v1(dev, apdev):
361 """WPS PIN provisioning with configured WPS v1.0 AP"""
362 ssid = "test-wps-conf-pin-v1"
363 hostapd.add_ap(apdev[0]['ifname'],
364 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
365 "wpa_passphrase": "12345678", "wpa": "2",
366 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
367 hapd = hostapd.Hostapd(apdev[0]['ifname'])
368 logger.info("WPS provisioning step")
369 pin = dev[0].wps_read_pin()
370 hapd.request("SET wps_version_number 0x10")
371 hapd.request("WPS_PIN any " + pin)
372 found = False
373 for i in range(0, 10):
374 dev[0].scan(freq="2412")
375 if "[WPS-PIN]" in dev[0].request("SCAN_RESULTS"):
376 found = True
377 break
378 if not found:
379 hapd.request("SET wps_version_number 0x20")
380 raise Exception("WPS-PIN flag not seen in scan results")
381 dev[0].dump_monitor()
33d0b157 382 dev[0].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
5f35a5e2 383 dev[0].wait_connected(timeout=30)
6257f9c0 384 hapd.request("SET wps_version_number 0x20")
6257f9c0 385
e9129860
JM		 386def test_ap_wps_conf_pin_2sta(dev, apdev):
387 """Two stations trying to use WPS PIN at the same time"""
388 ssid = "test-wps-conf-pin2"
389 hostapd.add_ap(apdev[0]['ifname'],
390 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
391 "wpa_passphrase": "12345678", "wpa": "2",
392 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
393 hapd = hostapd.Hostapd(apdev[0]['ifname'])
394 logger.info("WPS provisioning step")
395 pin = "12345670"
396 pin2 = "55554444"
397 hapd.request("WPS_PIN " + dev[0].get_status_field("uuid") + " " + pin)
398 hapd.request("WPS_PIN " + dev[1].get_status_field("uuid") + " " + pin)
e9129860 399 dev[0].dump_monitor()
e9129860 400 dev[1].dump_monitor()
33d0b157
JM		 401 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
402 dev[1].scan_for_bss(apdev[0]['bssid'], freq="2412")
403 dev[0].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
404 dev[1].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
5f35a5e2
JM		 405 dev[0].wait_connected(timeout=30)
406 dev[1].wait_connected(timeout=30)
0489e880
JM		 407
408def test_ap_wps_conf_pin_timeout(dev, apdev):
409 """WPS PIN provisioning with configured AP timing out PIN"""
410 ssid = "test-wps-conf-pin"
411 hostapd.add_ap(apdev[0]['ifname'],
412 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
413 "wpa_passphrase": "12345678", "wpa": "2",
414 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
415 hapd = hostapd.Hostapd(apdev[0]['ifname'])
416 addr = dev[0].p2p_interface_addr()
417 pin = dev[0].wps_read_pin()
418 if "FAIL" not in hapd.request("WPS_PIN "):
419 raise Exception("Unexpected success on invalid WPS_PIN")
420 hapd.request("WPS_PIN any " + pin + " 1")
33d0b157 421 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
0489e880 422 time.sleep(1.1)
33d0b157 423 dev[0].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
0489e880
JM		 424 ev = hapd.wait_event(["WPS-PIN-NEEDED"], timeout=20)
425 if ev is None:
426 raise Exception("WPS-PIN-NEEDED event timed out")
427 ev = dev[0].wait_event(["WPS-M2D"])
428 if ev is None:
429 raise Exception("M2D not reported")
430 dev[0].request("WPS_CANCEL")
431
432 hapd.request("WPS_PIN any " + pin + " 20 " + addr)
33d0b157 433 dev[0].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
5f35a5e2 434 dev[0].wait_connected(timeout=30)
e9129860 435
ae3ad328 436def test_ap_wps_reg_connect(dev, apdev):
302b7a1b 437 """WPS registrar using AP PIN to connect"""
803edd1c 438 ssid = "test-wps-reg-ap-pin"
302b7a1b 439 appin = "12345670"
ae3ad328 440 hostapd.add_ap(apdev[0]['ifname'],
302b7a1b
JM		 441 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
442 "wpa_passphrase": "12345678", "wpa": "2",
443 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
444 "ap_pin": appin})
445 logger.info("WPS provisioning step")
302b7a1b 446 dev[0].dump_monitor()
33d0b157 447 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
6edaee9c 448 dev[0].wps_reg(apdev[0]['bssid'], appin)
302b7a1b 449 status = dev[0].get_status()
ae3ad328 450 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
302b7a1b
JM		 451 raise Exception("Not fully connected")
452 if status['ssid'] != ssid:
453 raise Exception("Unexpected SSID")
454 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'CCMP':
455 raise Exception("Unexpected encryption configuration")
456 if status['key_mgmt'] != 'WPA2-PSK':
457 raise Exception("Unexpected key_mgmt")
458
e60be3b3
JM		 459def test_ap_wps_reg_connect_mixed_mode(dev, apdev):
460 """WPS registrar using AP PIN to connect (WPA+WPA2)"""
461 ssid = "test-wps-reg-ap-pin"
462 appin = "12345670"
463 hostapd.add_ap(apdev[0]['ifname'],
464 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
465 "wpa_passphrase": "12345678", "wpa": "3",
466 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
467 "wpa_pairwise": "TKIP", "ap_pin": appin})
468 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
469 dev[0].wps_reg(apdev[0]['bssid'], appin)
470 status = dev[0].get_status()
471 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
472 raise Exception("Not fully connected")
473 if status['ssid'] != ssid:
474 raise Exception("Unexpected SSID")
475 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'TKIP':
476 raise Exception("Unexpected encryption configuration")
477 if status['key_mgmt'] != 'WPA2-PSK':
478 raise Exception("Unexpected key_mgmt")
479
9488858f
JM		 480def check_wps_reg_failure(dev, ap, appin):
481 dev.request("WPS_REG " + ap['bssid'] + " " + appin)
482 ev = dev.wait_event(["WPS-SUCCESS", "WPS-FAIL"], timeout=15)
483 if ev is None:
484 raise Exception("WPS operation timed out")
485 if "WPS-SUCCESS" in ev:
486 raise Exception("WPS operation succeeded unexpectedly")
487 if "config_error=15" not in ev:
488 raise Exception("WPS setup locked state was not reported correctly")
489
e4357b19
JM		 490def test_ap_wps_random_ap_pin(dev, apdev):
491 """WPS registrar using random AP PIN"""
492 ssid = "test-wps-reg-random-ap-pin"
493 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
494 hostapd.add_ap(apdev[0]['ifname'],
495 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
496 "wpa_passphrase": "12345678", "wpa": "2",
497 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
498 "device_name": "Wireless AP", "manufacturer": "Company",
499 "model_name": "WAP", "model_number": "123",
500 "serial_number": "12345", "device_type": "6-0050F204-1",
501 "os_version": "01020300",
502 "config_methods": "label push_button",
503 "uuid": ap_uuid, "upnp_iface": "lo" })
504 hapd = hostapd.Hostapd(apdev[0]['ifname'])
505 appin = hapd.request("WPS_AP_PIN random")
506 if "FAIL" in appin:
507 raise Exception("Could not generate random AP PIN")
508 if appin not in hapd.request("WPS_AP_PIN get"):
509 raise Exception("Could not fetch current AP PIN")
510 logger.info("WPS provisioning step")
33d0b157 511 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
e4357b19
JM		 512 dev[0].wps_reg(apdev[0]['bssid'], appin)
513
514 hapd.request("WPS_AP_PIN disable")
515 logger.info("WPS provisioning step with AP PIN disabled")
33d0b157 516 dev[1].scan_for_bss(apdev[0]['bssid'], freq=2412)
9488858f
JM		 517 check_wps_reg_failure(dev[1], apdev[0], appin)
518
519 logger.info("WPS provisioning step with AP PIN reset")
520 appin = "12345670"
521 hapd.request("WPS_AP_PIN set " + appin)
522 dev[1].wps_reg(apdev[0]['bssid'], appin)
523 dev[0].request("REMOVE_NETWORK all")
524 dev[1].request("REMOVE_NETWORK all")
5f35a5e2
JM		 525 dev[0].wait_disconnected(timeout=10)
526 dev[1].wait_disconnected(timeout=10)
9488858f
JM		 527
528 logger.info("WPS provisioning step after AP PIN timeout")
529 hapd.request("WPS_AP_PIN disable")
530 appin = hapd.request("WPS_AP_PIN random 1")
531 time.sleep(1.1)
532 if "FAIL" not in hapd.request("WPS_AP_PIN get"):
533 raise Exception("AP PIN unexpectedly still enabled")
534 check_wps_reg_failure(dev[0], apdev[0], appin)
535
536 logger.info("WPS provisioning step after AP PIN timeout(2)")
537 hapd.request("WPS_AP_PIN disable")
538 appin = "12345670"
539 hapd.request("WPS_AP_PIN set " + appin + " 1")
540 time.sleep(1.1)
541 if "FAIL" not in hapd.request("WPS_AP_PIN get"):
542 raise Exception("AP PIN unexpectedly still enabled")
543 check_wps_reg_failure(dev[1], apdev[0], appin)
e4357b19 544
ae3ad328 545def test_ap_wps_reg_config(dev, apdev):
4b727c5c 546 """WPS registrar configuring an AP using AP PIN"""
302b7a1b
JM		 547 ssid = "test-wps-init-ap-pin"
548 appin = "12345670"
ae3ad328 549 hostapd.add_ap(apdev[0]['ifname'],
302b7a1b
JM		 550 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
551 "ap_pin": appin})
552 logger.info("WPS configuration step")
33d0b157 553 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
302b7a1b
JM		 554 dev[0].dump_monitor()
555 new_ssid = "wps-new-ssid"
556 new_passphrase = "1234567890"
6edaee9c
JM		 557 dev[0].wps_reg(apdev[0]['bssid'], appin, new_ssid, "WPA2PSK", "CCMP",
558 new_passphrase)
302b7a1b 559 status = dev[0].get_status()
ae3ad328 560 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
302b7a1b
JM		 561 raise Exception("Not fully connected")
562 if status['ssid'] != new_ssid:
563 raise Exception("Unexpected SSID")
564 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'CCMP':
565 raise Exception("Unexpected encryption configuration")
566 if status['key_mgmt'] != 'WPA2-PSK':
567 raise Exception("Unexpected key_mgmt")
568
375afd7c
JM		 569 logger.info("Re-configure back to open")
570 dev[0].request("REMOVE_NETWORK all")
243dcc4a 571 dev[0].flush_scan_cache()
375afd7c
JM		 572 dev[0].dump_monitor()
573 dev[0].wps_reg(apdev[0]['bssid'], appin, "wps-open", "OPEN", "NONE", "")
574 status = dev[0].get_status()
575 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
576 raise Exception("Not fully connected")
577 if status['ssid'] != "wps-open":
578 raise Exception("Unexpected SSID")
579 if status['key_mgmt'] != 'NONE':
580 raise Exception("Unexpected key_mgmt")
581
4b727c5c
JM		 582def test_ap_wps_reg_config_ext_processing(dev, apdev):
583 """WPS registrar configuring an AP with external config processing"""
584 ssid = "test-wps-init-ap-pin"
585 appin = "12345670"
586 params = { "ssid": ssid, "eap_server": "1", "wps_state": "2",
587 "wps_cred_processing": "1", "ap_pin": appin}
588 hapd = hostapd.add_ap(apdev[0]['ifname'], params)
33d0b157 589 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
4b727c5c
JM		 590 new_ssid = "wps-new-ssid"
591 new_passphrase = "1234567890"
592 dev[0].wps_reg(apdev[0]['bssid'], appin, new_ssid, "WPA2PSK", "CCMP",
593 new_passphrase, no_wait=True)
594 ev = dev[0].wait_event(["WPS-SUCCESS"], timeout=15)
595 if ev is None:
596 raise Exception("WPS registrar operation timed out")
597 ev = hapd.wait_event(["WPS-NEW-AP-SETTINGS"], timeout=15)
598 if ev is None:
599 raise Exception("WPS configuration timed out")
600 if "1026" not in ev:
601 raise Exception("AP Settings missing from event")
602 hapd.request("SET wps_cred_processing 0")
603 if "FAIL" in hapd.request("WPS_CONFIG " + new_ssid.encode("hex") + " WPA2PSK CCMP " + new_passphrase.encode("hex")):
604 raise Exception("WPS_CONFIG command failed")
5f35a5e2 605 dev[0].wait_connected(timeout=15)
4b727c5c 606
eeefe187
JM		 607def test_ap_wps_reg_config_tkip(dev, apdev):
608 """WPS registrar configuring AP to use TKIP and AP upgrading to TKIP+CCMP"""
609 ssid = "test-wps-init-ap"
610 appin = "12345670"
611 hostapd.add_ap(apdev[0]['ifname'],
612 { "ssid": ssid, "eap_server": "1", "wps_state": "1",
613 "ap_pin": appin})
614 logger.info("WPS configuration step")
eeefe187 615 dev[0].request("SET wps_version_number 0x10")
33d0b157 616 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
eeefe187
JM		 617 dev[0].dump_monitor()
618 new_ssid = "wps-new-ssid-with-tkip"
619 new_passphrase = "1234567890"
620 dev[0].wps_reg(apdev[0]['bssid'], appin, new_ssid, "WPAPSK", "TKIP",
621 new_passphrase)
622 logger.info("Re-connect to verify WPA2 mixed mode")
623 dev[0].request("DISCONNECT")
624 id = 0
625 dev[0].set_network(id, "pairwise", "CCMP")
626 dev[0].set_network(id, "proto", "RSN")
627 dev[0].connect_network(id)
628 status = dev[0].get_status()
629 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
3c086180 630 raise Exception("Not fully connected: wpa_state={} bssid={}".format(status['wpa_state'], status['bssid']))
eeefe187
JM		 631 if status['ssid'] != new_ssid:
632 raise Exception("Unexpected SSID")
633 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'TKIP':
634 raise Exception("Unexpected encryption configuration")
635 if status['key_mgmt'] != 'WPA2-PSK':
636 raise Exception("Unexpected key_mgmt")
637
6645ff50
JM		 638def test_ap_wps_setup_locked(dev, apdev):
639 """WPS registrar locking up AP setup on AP PIN failures"""
640 ssid = "test-wps-incorrect-ap-pin"
641 appin = "12345670"
642 hostapd.add_ap(apdev[0]['ifname'],
643 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
644 "wpa_passphrase": "12345678", "wpa": "2",
645 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
646 "ap_pin": appin})
6645ff50
JM		 647 new_ssid = "wps-new-ssid-test"
648 new_passphrase = "1234567890"
649
33d0b157 650 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
6645ff50
JM		 651 ap_setup_locked=False
652 for pin in ["55554444", "1234", "12345678", "00000000", "11111111"]:
653 dev[0].dump_monitor()
654 logger.info("Try incorrect AP PIN - attempt " + pin)
655 dev[0].wps_reg(apdev[0]['bssid'], pin, new_ssid, "WPA2PSK",
656 "CCMP", new_passphrase, no_wait=True)
657 ev = dev[0].wait_event(["WPS-FAIL", "CTRL-EVENT-CONNECTED"])
658 if ev is None:
659 raise Exception("Timeout on receiving WPS operation failure event")
660 if "CTRL-EVENT-CONNECTED" in ev:
661 raise Exception("Unexpected connection")
662 if "config_error=15" in ev:
663 logger.info("AP Setup Locked")
664 ap_setup_locked=True
665 elif "config_error=18" not in ev:
666 raise Exception("config_error=18 not reported")
5f35a5e2 667 dev[0].wait_disconnected(timeout=10)
6645ff50
JM		 668 time.sleep(0.1)
669 if not ap_setup_locked:
670 raise Exception("AP setup was not locked")
671
d671a420
JM		 672 hapd = hostapd.Hostapd(apdev[0]['ifname'])
673 status = hapd.request("WPS_GET_STATUS")
674 if "Last WPS result: Failed" not in status:
675 raise Exception("WPS failure result not shown correctly")
676 if "Peer Address: " + dev[0].p2p_interface_addr() not in status:
677 raise Exception("Peer address not shown correctly")
678
6645ff50
JM		 679 time.sleep(0.5)
680 dev[0].dump_monitor()
681 logger.info("WPS provisioning step")
682 pin = dev[0].wps_read_pin()
683 hapd = hostapd.Hostapd(apdev[0]['ifname'])
684 hapd.request("WPS_PIN any " + pin)
33d0b157 685 dev[0].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
6645ff50
JM		 686 ev = dev[0].wait_event(["WPS-SUCCESS"], timeout=30)
687 if ev is None:
688 raise Exception("WPS success was not reported")
5f35a5e2 689 dev[0].wait_connected(timeout=30)
6645ff50 690
c1cec68b
JM		 691 appin = hapd.request("WPS_AP_PIN random")
692 if "FAIL" in appin:
693 raise Exception("Could not generate random AP PIN")
694 ev = hapd.wait_event(["WPS-AP-SETUP-UNLOCKED"], timeout=10)
695 if ev is None:
696 raise Exception("Failed to unlock AP PIN")
697
33c9b8d8
JM		 698def test_ap_wps_setup_locked_timeout(dev, apdev):
699 """WPS re-enabling AP PIN after timeout"""
700 ssid = "test-wps-incorrect-ap-pin"
701 appin = "12345670"
702 hostapd.add_ap(apdev[0]['ifname'],
703 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
704 "wpa_passphrase": "12345678", "wpa": "2",
705 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
706 "ap_pin": appin})
707 new_ssid = "wps-new-ssid-test"
708 new_passphrase = "1234567890"
709
33d0b157 710 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
33c9b8d8
JM		 711 ap_setup_locked=False
712 for pin in ["55554444", "1234", "12345678", "00000000", "11111111"]:
713 dev[0].dump_monitor()
714 logger.info("Try incorrect AP PIN - attempt " + pin)
715 dev[0].wps_reg(apdev[0]['bssid'], pin, new_ssid, "WPA2PSK",
716 "CCMP", new_passphrase, no_wait=True)
9ed53f5e 717 ev = dev[0].wait_event(["WPS-FAIL", "CTRL-EVENT-CONNECTED"], timeout=15)
33c9b8d8
JM		 718 if ev is None:
719 raise Exception("Timeout on receiving WPS operation failure event")
720 if "CTRL-EVENT-CONNECTED" in ev:
721 raise Exception("Unexpected connection")
722 if "config_error=15" in ev:
723 logger.info("AP Setup Locked")
724 ap_setup_locked=True
725 break
726 elif "config_error=18" not in ev:
727 raise Exception("config_error=18 not reported")
5f35a5e2 728 dev[0].wait_disconnected(timeout=10)
33c9b8d8
JM		 729 time.sleep(0.1)
730 if not ap_setup_locked:
731 raise Exception("AP setup was not locked")
732 hapd = hostapd.Hostapd(apdev[0]['ifname'])
733 ev = hapd.wait_event(["WPS-AP-SETUP-UNLOCKED"], timeout=80)
734 if ev is None:
735 raise Exception("AP PIN did not get unlocked on 60 second timeout")
736
ae3ad328 737def test_ap_wps_pbc_overlap_2ap(dev, apdev):
302b7a1b 738 """WPS PBC session overlap with two active APs"""
ae3ad328 739 hostapd.add_ap(apdev[0]['ifname'],
302b7a1b
JM		 740 { "ssid": "wps1", "eap_server": "1", "wps_state": "2",
741 "wpa_passphrase": "12345678", "wpa": "2",
742 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
743 "wps_independent": "1"})
ae3ad328 744 hostapd.add_ap(apdev[1]['ifname'],
302b7a1b
JM		 745 { "ssid": "wps2", "eap_server": "1", "wps_state": "2",
746 "wpa_passphrase": "123456789", "wpa": "2",
747 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
748 "wps_independent": "1"})
ae3ad328 749 hapd = hostapd.Hostapd(apdev[0]['ifname'])
302b7a1b 750 hapd.request("WPS_PBC")
ae3ad328 751 hapd2 = hostapd.Hostapd(apdev[1]['ifname'])
302b7a1b
JM		 752 hapd2.request("WPS_PBC")
753 logger.info("WPS provisioning step")
84a40841
JM		 754 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412", force_scan=True)
755 dev[0].scan_for_bss(apdev[1]['bssid'], freq="2412")
302b7a1b
JM		 756 dev[0].request("WPS_PBC")
757 ev = dev[0].wait_event(["WPS-OVERLAP-DETECTED"], timeout=15)
758 if ev is None:
759 raise Exception("PBC session overlap not detected")
760
ae3ad328 761def test_ap_wps_pbc_overlap_2sta(dev, apdev):
302b7a1b
JM		 762 """WPS PBC session overlap with two active STAs"""
763 ssid = "test-wps-pbc-overlap"
ae3ad328 764 hostapd.add_ap(apdev[0]['ifname'],
302b7a1b
JM		 765 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
766 "wpa_passphrase": "12345678", "wpa": "2",
767 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
ae3ad328 768 hapd = hostapd.Hostapd(apdev[0]['ifname'])
302b7a1b
JM		 769 logger.info("WPS provisioning step")
770 hapd.request("WPS_PBC")
33d0b157 771 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
302b7a1b 772 dev[0].dump_monitor()
33d0b157 773 dev[1].scan_for_bss(apdev[0]['bssid'], freq="2412")
302b7a1b 774 dev[1].dump_monitor()
33d0b157
JM		 775 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
776 dev[1].request("WPS_PBC " + apdev[0]['bssid'])
302b7a1b
JM		 777 ev = dev[0].wait_event(["WPS-M2D"], timeout=15)
778 if ev is None:
779 raise Exception("PBC session overlap not detected (dev0)")
780 if "config_error=12" not in ev:
781 raise Exception("PBC session overlap not correctly reported (dev0)")
782 ev = dev[1].wait_event(["WPS-M2D"], timeout=15)
783 if ev is None:
784 raise Exception("PBC session overlap not detected (dev1)")
785 if "config_error=12" not in ev:
786 raise Exception("PBC session overlap not correctly reported (dev1)")
11e7eeba
JM		 787 hapd.request("WPS_CANCEL")
788 ret = hapd.request("WPS_PBC")
789 if "FAIL" not in ret:
790 raise Exception("PBC mode allowed to be started while PBC overlap still active")
6edaee9c 791
71afe834
JM		 792def test_ap_wps_cancel(dev, apdev):
793 """WPS AP cancelling enabled config method"""
794 ssid = "test-wps-ap-cancel"
795 hostapd.add_ap(apdev[0]['ifname'],
796 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
797 "wpa_passphrase": "12345678", "wpa": "2",
798 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP" })
799 bssid = apdev[0]['bssid']
800 hapd = hostapd.Hostapd(apdev[0]['ifname'])
801
802 logger.info("Verify PBC enable/cancel")
803 hapd.request("WPS_PBC")
71afe834 804 dev[0].scan(freq="2412")
84a40841 805 dev[0].scan(freq="2412")
71afe834
JM		 806 bss = dev[0].get_bss(apdev[0]['bssid'])
807 if "[WPS-PBC]" not in bss['flags']:
808 raise Exception("WPS-PBC flag missing")
809 if "FAIL" in hapd.request("WPS_CANCEL"):
810 raise Exception("WPS_CANCEL failed")
811 dev[0].scan(freq="2412")
84a40841 812 dev[0].scan(freq="2412")
71afe834
JM		 813 bss = dev[0].get_bss(apdev[0]['bssid'])
814 if "[WPS-PBC]" in bss['flags']:
815 raise Exception("WPS-PBC flag not cleared")
816
817 logger.info("Verify PIN enable/cancel")
818 hapd.request("WPS_PIN any 12345670")
819 dev[0].scan(freq="2412")
84a40841 820 dev[0].scan(freq="2412")
71afe834
JM		 821 bss = dev[0].get_bss(apdev[0]['bssid'])
822 if "[WPS-AUTH]" not in bss['flags']:
823 raise Exception("WPS-AUTH flag missing")
824 if "FAIL" in hapd.request("WPS_CANCEL"):
825 raise Exception("WPS_CANCEL failed")
826 dev[0].scan(freq="2412")
84a40841 827 dev[0].scan(freq="2412")
71afe834
JM		 828 bss = dev[0].get_bss(apdev[0]['bssid'])
829 if "[WPS-AUTH]" in bss['flags']:
830 raise Exception("WPS-AUTH flag not cleared")
831
6edaee9c
JM		 832def test_ap_wps_er_add_enrollee(dev, apdev):
833 """WPS ER configuring AP and adding a new enrollee using PIN"""
be9f1562
JM		 834 try:
835 _test_ap_wps_er_add_enrollee(dev, apdev)
836 finally:
837 dev[0].request("WPS_ER_STOP")
838
839def _test_ap_wps_er_add_enrollee(dev, apdev):
6edaee9c
JM		 840 ssid = "wps-er-add-enrollee"
841 ap_pin = "12345670"
842 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
843 hostapd.add_ap(apdev[0]['ifname'],
844 { "ssid": ssid, "eap_server": "1", "wps_state": "1",
845 "device_name": "Wireless AP", "manufacturer": "Company",
846 "model_name": "WAP", "model_number": "123",
847 "serial_number": "12345", "device_type": "6-0050F204-1",
848 "os_version": "01020300",
849 "config_methods": "label push_button",
850 "ap_pin": ap_pin, "uuid": ap_uuid, "upnp_iface": "lo"})
851 logger.info("WPS configuration step")
852 new_passphrase = "1234567890"
853 dev[0].dump_monitor()
33d0b157 854 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
6edaee9c
JM		 855 dev[0].wps_reg(apdev[0]['bssid'], ap_pin, ssid, "WPA2PSK", "CCMP",
856 new_passphrase)
857 status = dev[0].get_status()
858 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
859 raise Exception("Not fully connected")
860 if status['ssid'] != ssid:
861 raise Exception("Unexpected SSID")
862 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'CCMP':
863 raise Exception("Unexpected encryption configuration")
864 if status['key_mgmt'] != 'WPA2-PSK':
865 raise Exception("Unexpected key_mgmt")
866
867 logger.info("Start ER")
868 dev[0].request("WPS_ER_START ifname=lo")
869 ev = dev[0].wait_event(["WPS-ER-AP-ADD"], timeout=15)
870 if ev is None:
871 raise Exception("AP discovery timed out")
872 if ap_uuid not in ev:
873 raise Exception("Expected AP UUID not found")
874
875 logger.info("Learn AP configuration through UPnP")
876 dev[0].dump_monitor()
877 dev[0].request("WPS_ER_LEARN " + ap_uuid + " " + ap_pin)
878 ev = dev[0].wait_event(["WPS-ER-AP-SETTINGS"], timeout=15)
879 if ev is None:
880 raise Exception("AP learn timed out")
881 if ap_uuid not in ev:
882 raise Exception("Expected AP UUID not in settings")
883 if "ssid=" + ssid not in ev:
884 raise Exception("Expected SSID not in settings")
885 if "key=" + new_passphrase not in ev:
886 raise Exception("Expected passphrase not in settings")
33d0b157
JM		 887 ev = dev[0].wait_event(["WPS-FAIL"], timeout=15)
888 if ev is None:
889 raise Exception("WPS-FAIL after AP learn timed out")
890 time.sleep(0.1)
6edaee9c
JM		 891
892 logger.info("Add Enrollee using ER")
893 pin = dev[1].wps_read_pin()
894 dev[0].dump_monitor()
895 dev[0].request("WPS_ER_PIN any " + pin + " " + dev[1].p2p_interface_addr())
33d0b157 896 dev[1].scan_for_bss(apdev[0]['bssid'], freq=2412)
6edaee9c 897 dev[1].dump_monitor()
33d0b157 898 dev[1].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
846be889 899 ev = dev[1].wait_event(["WPS-SUCCESS"], timeout=30)
6edaee9c
JM		 900 if ev is None:
901 raise Exception("Enrollee did not report success")
5f35a5e2 902 dev[1].wait_connected(timeout=15)
6edaee9c
JM		 903 ev = dev[0].wait_event(["WPS-SUCCESS"], timeout=15)
904 if ev is None:
905 raise Exception("WPS ER did not report success")
906 hwsim_utils.test_connectivity_sta(dev[0], dev[1])
907
11c26f1b
JM		 908 logger.info("Add a specific Enrollee using ER")
909 pin = dev[2].wps_read_pin()
910 addr2 = dev[2].p2p_interface_addr()
911 dev[0].dump_monitor()
33d0b157 912 dev[2].scan_for_bss(apdev[0]['bssid'], freq=2412)
11c26f1b 913 dev[2].dump_monitor()
33d0b157 914 dev[2].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
11c26f1b
JM		 915 ev = dev[0].wait_event(["WPS-ER-ENROLLEE-ADD"], timeout=10)
916 if ev is None:
917 raise Exception("Enrollee not seen")
918 if addr2 not in ev:
919 raise Exception("Unexpected Enrollee MAC address")
920 dev[0].request("WPS_ER_PIN " + addr2 + " " + pin + " " + addr2)
5f35a5e2 921 dev[2].wait_connected(timeout=30)
11c26f1b
JM		 922 ev = dev[0].wait_event(["WPS-SUCCESS"], timeout=15)
923 if ev is None:
924 raise Exception("WPS ER did not report success")
925
38ae43de
JM		 926 logger.info("Verify registrar selection behavior")
927 dev[0].request("WPS_ER_PIN any " + pin + " " + dev[1].p2p_interface_addr())
928 dev[1].request("DISCONNECT")
5f35a5e2 929 dev[1].wait_disconnected(timeout=10)
84a40841 930 dev[1].scan_for_bss(apdev[0]['bssid'], freq="2412")
38ae43de
JM		 931 dev[1].scan(freq="2412")
932 bss = dev[1].get_bss(apdev[0]['bssid'])
933 if "[WPS-AUTH]" not in bss['flags']:
321c7f60
JM		 934 # It is possible for scan to miss an update especially when running
935 # tests under load with multiple VMs, so allow another attempt.
936 dev[1].scan(freq="2412")
937 bss = dev[1].get_bss(apdev[0]['bssid'])
938 if "[WPS-AUTH]" not in bss['flags']:
939 raise Exception("WPS-AUTH flag missing")
38ae43de
JM		 940
941 logger.info("Stop ER")
942 dev[0].dump_monitor()
943 dev[0].request("WPS_ER_STOP")
944 ev = dev[0].wait_event(["WPS-ER-AP-REMOVE"])
945 if ev is None:
946 raise Exception("WPS ER unsubscription timed out")
8697cbc0 947 # It takes some time for the UPnP UNSUBSCRIBE command to go through, so wait
befd671c 948 # a bit before verifying that the scan results have changed.
8697cbc0 949 time.sleep(0.2)
38ae43de 950
befd671c
JM		 951 for i in range(0, 10):
952 dev[1].request("BSS_FLUSH 0")
953 dev[1].scan(freq="2412", only_new=True)
954 bss = dev[1].get_bss(apdev[0]['bssid'])
955 if bss and 'flags' in bss and "[WPS-AUTH]" not in bss['flags']:
956 break
957 logger.debug("WPS-AUTH flag was still in place - wait a bit longer")
958 time.sleep(0.1)
38ae43de
JM		 959 if "[WPS-AUTH]" in bss['flags']:
960 raise Exception("WPS-AUTH flag not removed")
961
6edaee9c
JM		 962def test_ap_wps_er_add_enrollee_pbc(dev, apdev):
963 """WPS ER connected to AP and adding a new enrollee using PBC"""
be9f1562
JM		 964 try:
965 _test_ap_wps_er_add_enrollee_pbc(dev, apdev)
966 finally:
967 dev[0].request("WPS_ER_STOP")
968
969def _test_ap_wps_er_add_enrollee_pbc(dev, apdev):
6edaee9c
JM		 970 ssid = "wps-er-add-enrollee-pbc"
971 ap_pin = "12345670"
972 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
973 hostapd.add_ap(apdev[0]['ifname'],
974 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
975 "wpa_passphrase": "12345678", "wpa": "2",
976 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
977 "device_name": "Wireless AP", "manufacturer": "Company",
978 "model_name": "WAP", "model_number": "123",
979 "serial_number": "12345", "device_type": "6-0050F204-1",
980 "os_version": "01020300",
981 "config_methods": "label push_button",
982 "ap_pin": ap_pin, "uuid": ap_uuid, "upnp_iface": "lo"})
983 logger.info("Learn AP configuration")
33d0b157 984 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
6edaee9c 985 dev[0].dump_monitor()
6edaee9c
JM		 986 dev[0].wps_reg(apdev[0]['bssid'], ap_pin)
987 status = dev[0].get_status()
988 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
989 raise Exception("Not fully connected")
990
991 logger.info("Start ER")
992 dev[0].request("WPS_ER_START ifname=lo")
993 ev = dev[0].wait_event(["WPS-ER-AP-ADD"], timeout=15)
994 if ev is None:
995 raise Exception("AP discovery timed out")
996 if ap_uuid not in ev:
997 raise Exception("Expected AP UUID not found")
998
d6b916c9
JM		 999 enrollee = dev[1].p2p_interface_addr()
1000
1001 if "FAIL-UNKNOWN-UUID" not in dev[0].request("WPS_ER_PBC " + enrollee):
1002 raise Exception("Unknown UUID not reported")
6edaee9c
JM		 1003
1004 logger.info("Add Enrollee using ER and PBC")
1005 dev[0].dump_monitor()
6edaee9c
JM		 1006 dev[1].dump_monitor()
1007 dev[1].request("WPS_PBC")
1008
8674c022
JM		 1009 for i in range(0, 2):
1010 ev = dev[0].wait_event(["WPS-ER-ENROLLEE-ADD"], timeout=15)
1011 if ev is None:
1012 raise Exception("Enrollee discovery timed out")
1013 if enrollee in ev:
1014 break
1015 if i == 1:
1016 raise Exception("Expected Enrollee not found")
d6b916c9
JM		 1017 if "FAIL-NO-AP-SETTINGS" not in dev[0].request("WPS_ER_PBC " + enrollee):
1018 raise Exception("Unknown UUID not reported")
1019 logger.info("Use learned network configuration on ER")
1020 dev[0].request("WPS_ER_SET_CONFIG " + ap_uuid + " 0")
1021 if "OK" not in dev[0].request("WPS_ER_PBC " + enrollee):
1022 raise Exception("WPS_ER_PBC failed")
6edaee9c
JM		 1023
1024 ev = dev[1].wait_event(["WPS-SUCCESS"], timeout=15)
1025 if ev is None:
1026 raise Exception("Enrollee did not report success")
5f35a5e2 1027 dev[1].wait_connected(timeout=15)
6edaee9c
JM		 1028 ev = dev[0].wait_event(["WPS-SUCCESS"], timeout=15)
1029 if ev is None:
1030 raise Exception("WPS ER did not report success")
1031 hwsim_utils.test_connectivity_sta(dev[0], dev[1])
bff3ac5b 1032
d6b916c9
JM		 1033def test_ap_wps_er_pbc_overlap(dev, apdev):
1034 """WPS ER connected to AP and PBC session overlap"""
be9f1562
JM		 1035 try:
1036 _test_ap_wps_er_pbc_overlap(dev, apdev)
1037 finally:
1038 dev[0].request("WPS_ER_STOP")
1039
1040def _test_ap_wps_er_pbc_overlap(dev, apdev):
d6b916c9
JM		 1041 ssid = "wps-er-add-enrollee-pbc"
1042 ap_pin = "12345670"
1043 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
1044 hostapd.add_ap(apdev[0]['ifname'],
1045 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1046 "wpa_passphrase": "12345678", "wpa": "2",
1047 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
1048 "device_name": "Wireless AP", "manufacturer": "Company",
1049 "model_name": "WAP", "model_number": "123",
1050 "serial_number": "12345", "device_type": "6-0050F204-1",
1051 "os_version": "01020300",
1052 "config_methods": "label push_button",
1053 "ap_pin": ap_pin, "uuid": ap_uuid, "upnp_iface": "lo"})
1054 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
1055 dev[0].dump_monitor()
1056 dev[0].wps_reg(apdev[0]['bssid'], ap_pin)
1057
fba25c99
JM		 1058 dev[1].scan_for_bss(apdev[0]['bssid'], freq="2412")
1059 dev[2].scan_for_bss(apdev[0]['bssid'], freq="2412")
1060 # avoid leaving dev 1 or 2 as the last Probe Request to the AP
1061 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412, force_scan=True)
1062
d6b916c9
JM		 1063 dev[0].dump_monitor()
1064 dev[0].request("WPS_ER_START ifname=lo")
1065
1066 ev = dev[0].wait_event(["WPS-ER-AP-ADD"], timeout=15)
1067 if ev is None:
1068 raise Exception("AP discovery timed out")
1069 if ap_uuid not in ev:
1070 raise Exception("Expected AP UUID not found")
1071
800bcf4e
JM		 1072 # verify BSSID selection of the AP instead of UUID
1073 if "FAIL" in dev[0].request("WPS_ER_SET_CONFIG " + apdev[0]['bssid'] + " 0"):
1074 raise Exception("Could not select AP based on BSSID")
1075
fba25c99 1076 dev[0].dump_monitor()
d6b916c9
JM		 1077 dev[1].request("WPS_PBC " + apdev[0]['bssid'])
1078 dev[2].request("WPS_PBC " + apdev[0]['bssid'])
1079 ev = dev[1].wait_event(["CTRL-EVENT-SCAN-RESULTS"], timeout=10)
1080 if ev is None:
1081 raise Exception("PBC scan failed")
1082 ev = dev[2].wait_event(["CTRL-EVENT-SCAN-RESULTS"], timeout=10)
1083 if ev is None:
1084 raise Exception("PBC scan failed")
fba25c99
JM		 1085 found1 = False
1086 found2 = False
1087 addr1 = dev[1].own_addr()
1088 addr2 = dev[2].own_addr()
1089 for i in range(3):
d6b916c9
JM		 1090 ev = dev[0].wait_event(["WPS-ER-ENROLLEE-ADD"], timeout=15)
1091 if ev is None:
1092 raise Exception("Enrollee discovery timed out")
fba25c99
JM		 1093 if addr1 in ev:
1094 found1 = True
1095 if found2:
1096 break
1097 if addr2 in ev:
1098 found2 = True
1099 if found1:
1100 break
d6b916c9
JM		 1101 if dev[0].request("WPS_ER_PBC " + ap_uuid) != "FAIL-PBC-OVERLAP\n":
1102 raise Exception("PBC overlap not reported")
1103 dev[1].request("WPS_CANCEL")
1104 dev[2].request("WPS_CANCEL")
1105 if dev[0].request("WPS_ER_PBC foo") != "FAIL\n":
1106 raise Exception("Invalid WPS_ER_PBC accepted")
1107
1f020f5e
JM		 1108def test_ap_wps_er_v10_add_enrollee_pin(dev, apdev):
1109 """WPS v1.0 ER connected to AP and adding a new enrollee using PIN"""
be9f1562
JM		 1110 try:
1111 _test_ap_wps_er_v10_add_enrollee_pin(dev, apdev)
1112 finally:
1113 dev[0].request("WPS_ER_STOP")
1114
1115def _test_ap_wps_er_v10_add_enrollee_pin(dev, apdev):
1f020f5e
JM		 1116 ssid = "wps-er-add-enrollee-pbc"
1117 ap_pin = "12345670"
1118 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
1119 hostapd.add_ap(apdev[0]['ifname'],
1120 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1121 "wpa_passphrase": "12345678", "wpa": "2",
1122 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
1123 "device_name": "Wireless AP", "manufacturer": "Company",
1124 "model_name": "WAP", "model_number": "123",
1125 "serial_number": "12345", "device_type": "6-0050F204-1",
1126 "os_version": "01020300",
1127 "config_methods": "label push_button",
1128 "ap_pin": ap_pin, "uuid": ap_uuid, "upnp_iface": "lo"})
1129 logger.info("Learn AP configuration")
1130 dev[0].request("SET wps_version_number 0x10")
33d0b157 1131 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
1f020f5e
JM		 1132 dev[0].dump_monitor()
1133 dev[0].wps_reg(apdev[0]['bssid'], ap_pin)
1134 status = dev[0].get_status()
1135 if status['wpa_state'] != 'COMPLETED' or status['bssid'] != apdev[0]['bssid']:
1136 raise Exception("Not fully connected")
1137
1138 logger.info("Start ER")
1139 dev[0].request("WPS_ER_START ifname=lo")
1140 ev = dev[0].wait_event(["WPS-ER-AP-ADD"], timeout=15)
1141 if ev is None:
1142 raise Exception("AP discovery timed out")
1143 if ap_uuid not in ev:
1144 raise Exception("Expected AP UUID not found")
1145
1146 logger.info("Use learned network configuration on ER")
1147 dev[0].request("WPS_ER_SET_CONFIG " + ap_uuid + " 0")
1148
1149 logger.info("Add Enrollee using ER and PIN")
1150 enrollee = dev[1].p2p_interface_addr()
1151 pin = dev[1].wps_read_pin()
1152 dev[0].dump_monitor()
1153 dev[0].request("WPS_ER_PIN any " + pin + " " + enrollee)
33d0b157 1154 dev[1].scan_for_bss(apdev[0]['bssid'], freq=2412)
1f020f5e 1155 dev[1].dump_monitor()
33d0b157 1156 dev[1].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
5f35a5e2 1157 dev[1].wait_connected(timeout=30)
1f020f5e
JM		 1158 ev = dev[0].wait_event(["WPS-SUCCESS"], timeout=15)
1159 if ev is None:
1160 raise Exception("WPS ER did not report success")
1161
be923570
JM		 1162def test_ap_wps_er_config_ap(dev, apdev):
1163 """WPS ER configuring AP over UPnP"""
be9f1562
JM		 1164 try:
1165 _test_ap_wps_er_config_ap(dev, apdev)
1166 finally:
1167 dev[0].request("WPS_ER_STOP")
1168
1169def _test_ap_wps_er_config_ap(dev, apdev):
be923570
JM		 1170 ssid = "wps-er-ap-config"
1171 ap_pin = "12345670"
1172 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
1173 hostapd.add_ap(apdev[0]['ifname'],
1174 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1175 "wpa_passphrase": "12345678", "wpa": "2",
1176 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
1177 "device_name": "Wireless AP", "manufacturer": "Company",
1178 "model_name": "WAP", "model_number": "123",
1179 "serial_number": "12345", "device_type": "6-0050F204-1",
1180 "os_version": "01020300",
1181 "config_methods": "label push_button",
1182 "ap_pin": ap_pin, "uuid": ap_uuid, "upnp_iface": "lo"})
1183
1184 logger.info("Connect ER to the AP")
1185 dev[0].connect(ssid, psk="12345678", scan_freq="2412")
1186
1187 logger.info("WPS configuration step")
1188 dev[0].request("WPS_ER_START ifname=lo")
1189 ev = dev[0].wait_event(["WPS-ER-AP-ADD"], timeout=15)
1190 if ev is None:
1191 raise Exception("AP discovery timed out")
1192 if ap_uuid not in ev:
1193 raise Exception("Expected AP UUID not found")
1194 new_passphrase = "1234567890"
1195 dev[0].request("WPS_ER_CONFIG " + apdev[0]['bssid'] + " " + ap_pin + " " +
1196 ssid.encode("hex") + " WPA2PSK CCMP " +
1197 new_passphrase.encode("hex"))
1198 ev = dev[0].wait_event(["WPS-SUCCESS"])
1199 if ev is None:
1200 raise Exception("WPS ER configuration operation timed out")
5f35a5e2 1201 dev[0].wait_disconnected(timeout=10)
be923570
JM		 1202 dev[0].connect(ssid, psk="1234567890", scan_freq="2412")
1203
8f8c2fe8
JM		 1204 logger.info("WPS ER restart")
1205 dev[0].request("WPS_ER_START")
1206 ev = dev[0].wait_event(["WPS-ER-AP-ADD"], timeout=15)
1207 if ev is None:
1208 raise Exception("AP discovery timed out on ER restart")
1209 if ap_uuid not in ev:
1210 raise Exception("Expected AP UUID not found on ER restart")
1211 if "OK" not in dev[0].request("WPS_ER_STOP"):
1212 raise Exception("WPS_ER_STOP failed")
1213 if "OK" not in dev[0].request("WPS_ER_STOP"):
1214 raise Exception("WPS_ER_STOP failed")
1215
bff3ac5b
JM		 1216def test_ap_wps_fragmentation(dev, apdev):
1217 """WPS with fragmentation in EAP-WSC and mixed mode WPA+WPA2"""
1218 ssid = "test-wps-fragmentation"
9602b355 1219 appin = "12345670"
bff3ac5b
JM		 1220 hostapd.add_ap(apdev[0]['ifname'],
1221 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1222 "wpa_passphrase": "12345678", "wpa": "3",
1223 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
9602b355 1224 "wpa_pairwise": "TKIP", "ap_pin": appin,
bff3ac5b
JM		 1225 "fragment_size": "50" })
1226 hapd = hostapd.Hostapd(apdev[0]['ifname'])
9602b355 1227 logger.info("WPS provisioning step (PBC)")
bff3ac5b 1228 hapd.request("WPS_PBC")
33d0b157 1229 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
bff3ac5b
JM		 1230 dev[0].dump_monitor()
1231 dev[0].request("SET wps_fragment_size 50")
33d0b157 1232 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1233 dev[0].wait_connected(timeout=30)
bff3ac5b
JM		 1234 status = dev[0].get_status()
1235 if status['wpa_state'] != 'COMPLETED':
9602b355
JM		 1236 raise Exception("Not fully connected")
1237 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'TKIP':
1238 raise Exception("Unexpected encryption configuration")
1239 if status['key_mgmt'] != 'WPA2-PSK':
1240 raise Exception("Unexpected key_mgmt")
1241
1242 logger.info("WPS provisioning step (PIN)")
1243 pin = dev[1].wps_read_pin()
1244 hapd.request("WPS_PIN any " + pin)
33d0b157 1245 dev[1].scan_for_bss(apdev[0]['bssid'], freq=2412)
9602b355 1246 dev[1].request("SET wps_fragment_size 50")
33d0b157 1247 dev[1].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
5f35a5e2 1248 dev[1].wait_connected(timeout=30)
9602b355
JM		 1249 status = dev[1].get_status()
1250 if status['wpa_state'] != 'COMPLETED':
1251 raise Exception("Not fully connected")
1252 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'TKIP':
1253 raise Exception("Unexpected encryption configuration")
1254 if status['key_mgmt'] != 'WPA2-PSK':
1255 raise Exception("Unexpected key_mgmt")
1256
1257 logger.info("WPS connection as registrar")
33d0b157 1258 dev[2].scan_for_bss(apdev[0]['bssid'], freq=2412)
9602b355
JM		 1259 dev[2].request("SET wps_fragment_size 50")
1260 dev[2].wps_reg(apdev[0]['bssid'], appin)
1261 status = dev[2].get_status()
1262 if status['wpa_state'] != 'COMPLETED':
bff3ac5b
JM		 1263 raise Exception("Not fully connected")
1264 if status['pairwise_cipher'] != 'CCMP' or status['group_cipher'] != 'TKIP':
1265 raise Exception("Unexpected encryption configuration")
1266 if status['key_mgmt'] != 'WPA2-PSK':
1267 raise Exception("Unexpected key_mgmt")
10ea6848
JM		 1268
1269def test_ap_wps_new_version_sta(dev, apdev):
1270 """WPS compatibility with new version number on the station"""
1271 ssid = "test-wps-ver"
1272 hostapd.add_ap(apdev[0]['ifname'],
1273 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1274 "wpa_passphrase": "12345678", "wpa": "2",
1275 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP" })
1276 hapd = hostapd.Hostapd(apdev[0]['ifname'])
1277 logger.info("WPS provisioning step")
1278 hapd.request("WPS_PBC")
33d0b157 1279 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
10ea6848
JM		 1280 dev[0].dump_monitor()
1281 dev[0].request("SET wps_version_number 0x43")
dccafedb 1282 dev[0].request("SET wps_vendor_ext_m1 000137100100020001")
33d0b157 1283 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1284 dev[0].wait_connected(timeout=30)
10ea6848
JM		 1285
1286def test_ap_wps_new_version_ap(dev, apdev):
1287 """WPS compatibility with new version number on the AP"""
1288 ssid = "test-wps-ver"
1289 hostapd.add_ap(apdev[0]['ifname'],
1290 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1291 "wpa_passphrase": "12345678", "wpa": "2",
1292 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP" })
1293 hapd = hostapd.Hostapd(apdev[0]['ifname'])
1294 logger.info("WPS provisioning step")
1295 if "FAIL" in hapd.request("SET wps_version_number 0x43"):
1296 raise Exception("Failed to enable test functionality")
1297 hapd.request("WPS_PBC")
33d0b157 1298 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
10ea6848 1299 dev[0].dump_monitor()
33d0b157 1300 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1301 dev[0].wait_connected(timeout=30)
10ea6848 1302 hapd.request("SET wps_version_number 0x20")
3bdf7d7f
JM		 1303
1304def test_ap_wps_check_pin(dev, apdev):
1305 """Verify PIN checking through control interface"""
1306 hostapd.add_ap(apdev[0]['ifname'],
1307 { "ssid": "wps", "eap_server": "1", "wps_state": "2",
1308 "wpa_passphrase": "12345678", "wpa": "2",
1309 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP" })
1310 hapd = hostapd.Hostapd(apdev[0]['ifname'])
1311 for t in [ ("12345670", "12345670"),
1312 ("12345678", "FAIL-CHECKSUM"),
df58939c 1313 ("12345", "FAIL"),
6e12eaa4 1314 ("123456789", "FAIL"),
3bdf7d7f
JM		 1315 ("1234-5670", "12345670"),
1316 ("1234 5670", "12345670"),
1317 ("1-2.3:4 5670", "12345670") ]:
1318 res = hapd.request("WPS_CHECK_PIN " + t[0]).rstrip('\n')
1319 res2 = dev[0].request("WPS_CHECK_PIN " + t[0]).rstrip('\n')
1320 if res != res2:
1321 raise Exception("Unexpected difference in WPS_CHECK_PIN responses")
1322 if res != t[1]:
1323 raise Exception("Incorrect WPS_CHECK_PIN response {} (expected {})".format(res, t[1]))
9ba1fcb0 1324
ac786d67
JM		 1325 if "FAIL" not in hapd.request("WPS_CHECK_PIN 12345"):
1326 raise Exception("Unexpected WPS_CHECK_PIN success")
1327 if "FAIL" not in hapd.request("WPS_CHECK_PIN 123456789"):
1328 raise Exception("Unexpected WPS_CHECK_PIN success")
1329
acd9b45a
JM		 1330 for i in range(0, 10):
1331 pin = dev[0].request("WPS_PIN get")
1332 rpin = dev[0].request("WPS_CHECK_PIN " + pin).rstrip('\n')
1333 if pin != rpin:
1334 raise Exception("Random PIN validation failed for " + pin)
1335
9ba1fcb0
JM		 1336def test_ap_wps_wep_config(dev, apdev):
1337 """WPS 2.0 AP rejecting WEP configuration"""
1338 ssid = "test-wps-config"
1339 appin = "12345670"
1340 hostapd.add_ap(apdev[0]['ifname'],
1341 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1342 "ap_pin": appin})
1343 hapd = hostapd.Hostapd(apdev[0]['ifname'])
33d0b157 1344 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
9ba1fcb0
JM		 1345 dev[0].wps_reg(apdev[0]['bssid'], appin, "wps-new-ssid-wep", "OPEN", "WEP",
1346 "hello", no_wait=True)
1347 ev = hapd.wait_event(["WPS-FAIL"], timeout=15)
1348 if ev is None:
1349 raise Exception("WPS-FAIL timed out")
1350 if "reason=2" not in ev:
1351 raise Exception("Unexpected reason code in WPS-FAIL")
1352 status = hapd.request("WPS_GET_STATUS")
1353 if "Last WPS result: Failed" not in status:
1354 raise Exception("WPS failure result not shown correctly")
1355 if "Failure Reason: WEP Prohibited" not in status:
1356 raise Exception("Failure reason not reported correctly")
1357 if "Peer Address: " + dev[0].p2p_interface_addr() not in status:
1358 raise Exception("Peer address not shown correctly")
1013a576 1359
11d78bb1
JM		 1360def test_ap_wps_wep_enroll(dev, apdev):
1361 """WPS 2.0 STA rejecting WEP configuration"""
1362 ssid = "test-wps-wep"
1363 hostapd.add_ap(apdev[0]['ifname'],
1364 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1365 "skip_cred_build": "1", "extra_cred": "wps-wep-cred" })
1366 hapd = hostapd.Hostapd(apdev[0]['ifname'])
1367 hapd.request("WPS_PBC")
33d0b157
JM		 1368 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
1369 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
11d78bb1
JM		 1370 ev = dev[0].wait_event(["WPS-FAIL"], timeout=15)
1371 if ev is None:
1372 raise Exception("WPS-FAIL event timed out")
1373 if "msg=12" not in ev or "reason=2 (WEP Prohibited)" not in ev:
1374 raise Exception("Unexpected WPS-FAIL event: " + ev)
1375
1013a576
JM		 1376def test_ap_wps_ie_fragmentation(dev, apdev):
1377 """WPS AP using fragmented WPS IE"""
1378 ssid = "test-wps-ie-fragmentation"
1379 params = { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1380 "wpa_passphrase": "12345678", "wpa": "2",
1381 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
1382 "device_name": "1234567890abcdef1234567890abcdef",
1383 "manufacturer": "1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef",
1384 "model_name": "1234567890abcdef1234567890abcdef",
1385 "model_number": "1234567890abcdef1234567890abcdef",
1386 "serial_number": "1234567890abcdef1234567890abcdef" }
1387 hostapd.add_ap(apdev[0]['ifname'], params)
1388 hapd = hostapd.Hostapd(apdev[0]['ifname'])
1389 hapd.request("WPS_PBC")
33d0b157
JM		 1390 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
1391 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1392 dev[0].wait_connected(timeout=30)
1013a576
JM		 1393 bss = dev[0].get_bss(apdev[0]['bssid'])
1394 if "wps_device_name" not in bss or bss['wps_device_name'] != "1234567890abcdef1234567890abcdef":
cf3f0ec8 1395 logger.info("Device Name not received correctly")
d7a68ad6 1396 logger.info(bss)
cf3f0ec8
JM		 1397 # This can fail if Probe Response frame is missed and Beacon frame was
1398 # used to fill in the BSS entry. This can happen, e.g., during heavy
1399 # load every now and then and is not really an error, so try to
1400 # workaround by runnign another scan.
1401 dev[0].scan(freq="2412", only_new=True)
1402 bss = dev[0].get_bss(apdev[0]['bssid'])
84a40841 1403 if not bss or "wps_device_name" not in bss or bss['wps_device_name'] != "1234567890abcdef1234567890abcdef":
cf3f0ec8
JM		 1404 logger.info(bss)
1405 raise Exception("Device Name not received correctly")
1013a576
JM		 1406 if len(re.findall("dd..0050f204", bss['ie'])) != 2:
1407 raise Exception("Unexpected number of WPS IEs")
44ff0400 1408
2035b170
JM		 1409def get_psk(pskfile):
1410 psks = {}
1411 with open(pskfile, "r") as f:
1412 lines = f.read().splitlines()
1413 for l in lines:
1414 if l == "# WPA PSKs":
1415 continue
1416 (addr,psk) = l.split(' ')
1417 psks[addr] = psk
1418 return psks
1419
1420def test_ap_wps_per_station_psk(dev, apdev):
1421 """WPS PBC provisioning with per-station PSK"""
1d21a5be
B		 1422 addr0 = dev[0].own_addr()
1423 addr1 = dev[1].own_addr()
1424 addr2 = dev[2].own_addr()
2035b170
JM		 1425 ssid = "wps"
1426 appin = "12345670"
1427 pskfile = "/tmp/ap_wps_per_enrollee_psk.psk_file"
1428 try:
1429 os.remove(pskfile)
1430 except:
1431 pass
1432
1433 try:
1434 with open(pskfile, "w") as f:
1435 f.write("# WPA PSKs\n")
1436
1437 params = { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1438 "wpa": "2", "wpa_key_mgmt": "WPA-PSK",
1439 "rsn_pairwise": "CCMP", "ap_pin": appin,
1440 "wpa_psk_file": pskfile }
1441 hapd = hostapd.add_ap(apdev[0]['ifname'], params)
1442
1443 logger.info("First enrollee")
1444 hapd.request("WPS_PBC")
33d0b157
JM		 1445 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
1446 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1447 dev[0].wait_connected(timeout=30)
2035b170
JM		 1448
1449 logger.info("Second enrollee")
1450 hapd.request("WPS_PBC")
33d0b157
JM		 1451 dev[1].scan_for_bss(apdev[0]['bssid'], freq=2412)
1452 dev[1].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1453 dev[1].wait_connected(timeout=30)
2035b170
JM		 1454
1455 logger.info("External registrar")
33d0b157 1456 dev[2].scan_for_bss(apdev[0]['bssid'], freq=2412)
2035b170
JM		 1457 dev[2].wps_reg(apdev[0]['bssid'], appin)
1458
1459 logger.info("Verifying PSK results")
1460 psks = get_psk(pskfile)
1461 if addr0 not in psks:
1462 raise Exception("No PSK recorded for sta0")
1463 if addr1 not in psks:
1464 raise Exception("No PSK recorded for sta1")
1465 if addr2 not in psks:
1466 raise Exception("No PSK recorded for sta2")
1467 if psks[addr0] == psks[addr1]:
1468 raise Exception("Same PSK recorded for sta0 and sta1")
1469 if psks[addr0] == psks[addr2]:
1470 raise Exception("Same PSK recorded for sta0 and sta2")
1471 if psks[addr1] == psks[addr2]:
1472 raise Exception("Same PSK recorded for sta1 and sta2")
1473
1474 dev[0].request("REMOVE_NETWORK all")
1475 logger.info("Second external registrar")
33d0b157 1476 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
2035b170
JM		 1477 dev[0].wps_reg(apdev[0]['bssid'], appin)
1478 psks2 = get_psk(pskfile)
1479 if addr0 not in psks2:
1480 raise Exception("No PSK recorded for sta0(reg)")
1481 if psks[addr0] == psks2[addr0]:
1482 raise Exception("Same PSK recorded for sta0(enrollee) and sta0(reg)")
1483 finally:
1484 os.remove(pskfile)
1485
373cce55
JM		 1486def test_ap_wps_per_station_psk_failure(dev, apdev):
1487 """WPS PBC provisioning with per-station PSK (file not writable)"""
1488 addr0 = dev[0].p2p_dev_addr()
1489 addr1 = dev[1].p2p_dev_addr()
1490 addr2 = dev[2].p2p_dev_addr()
1491 ssid = "wps"
1492 appin = "12345670"
1493 pskfile = "/tmp/ap_wps_per_enrollee_psk.psk_file"
1494 try:
1495 os.remove(pskfile)
1496 except:
1497 pass
1498
1499 try:
1500 with open(pskfile, "w") as f:
1501 f.write("# WPA PSKs\n")
1502
1503 params = { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1504 "wpa": "2", "wpa_key_mgmt": "WPA-PSK",
1505 "rsn_pairwise": "CCMP", "ap_pin": appin,
1506 "wpa_psk_file": pskfile }
1507 hapd = hostapd.add_ap(apdev[0]['ifname'], params)
1508 if "FAIL" in hapd.request("SET wpa_psk_file /tmp/does/not/exists/ap_wps_per_enrollee_psk_failure.psk_file"):
1509 raise Exception("Failed to set wpa_psk_file")
1510
1511 logger.info("First enrollee")
1512 hapd.request("WPS_PBC")
33d0b157
JM		 1513 dev[0].scan_for_bss(apdev[0]['bssid'], freq=2412)
1514 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1515 dev[0].wait_connected(timeout=30)
373cce55
JM		 1516
1517 logger.info("Second enrollee")
1518 hapd.request("WPS_PBC")
33d0b157
JM		 1519 dev[1].scan_for_bss(apdev[0]['bssid'], freq=2412)
1520 dev[1].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1521 dev[1].wait_connected(timeout=30)
373cce55
JM		 1522
1523 logger.info("External registrar")
33d0b157 1524 dev[2].scan_for_bss(apdev[0]['bssid'], freq=2412)
373cce55
JM		 1525 dev[2].wps_reg(apdev[0]['bssid'], appin)
1526
1527 logger.info("Verifying PSK results")
1528 psks = get_psk(pskfile)
1529 if len(psks) > 0:
1530 raise Exception("PSK recorded unexpectedly")
1531 finally:
1532 os.remove(pskfile)
1533
e8518757
JM		 1534def test_ap_wps_pin_request_file(dev, apdev):
1535 """WPS PIN provisioning with configured AP"""
1536 ssid = "wps"
1537 pinfile = "/tmp/ap_wps_pin_request_file.log"
1538 if os.path.exists(pinfile):
1539 subprocess.call(['sudo', 'rm', pinfile])
1540 hostapd.add_ap(apdev[0]['ifname'],
1541 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1542 "wps_pin_requests": pinfile,
1543 "wpa_passphrase": "12345678", "wpa": "2",
1544 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
1545 hapd = hostapd.Hostapd(apdev[0]['ifname'])
1546 uuid = dev[0].get_status_field("uuid")
1547 pin = dev[0].wps_read_pin()
1548 try:
33d0b157
JM		 1549 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
1550 dev[0].request("WPS_PIN %s %s" % (apdev[0]['bssid'], pin))
e8518757
JM		 1551 ev = hapd.wait_event(["WPS-PIN-NEEDED"], timeout=15)
1552 if ev is None:
1553 raise Exception("PIN needed event not shown")
1554 if uuid not in ev:
1555 raise Exception("UUID mismatch")
1556 dev[0].request("WPS_CANCEL")
1557 success = False
1558 with open(pinfile, "r") as f:
1559 lines = f.readlines()
1560 for l in lines:
1561 if uuid in l:
1562 success = True
1563 break
1564 if not success:
1565 raise Exception("PIN request entry not in the log file")
1566 finally:
1567 subprocess.call(['sudo', 'rm', pinfile])
1568
56887c35
JM		 1569def test_ap_wps_auto_setup_with_config_file(dev, apdev):
1570 """WPS auto-setup with configuration file"""
1571 conffile = "/tmp/ap_wps_auto_setup_with_config_file.conf"
1572 ifname = apdev[0]['ifname']
1573 try:
1574 with open(conffile, "w") as f:
1575 f.write("driver=nl80211\n")
1576 f.write("hw_mode=g\n")
1577 f.write("channel=1\n")
1578 f.write("ieee80211n=1\n")
1579 f.write("interface=%s\n" % ifname)
1580 f.write("ctrl_interface=/var/run/hostapd\n")
1581 f.write("ssid=wps\n")
1582 f.write("eap_server=1\n")
1583 f.write("wps_state=1\n")
1584 hostapd.add_bss('phy3', ifname, conffile)
1585 hapd = hostapd.Hostapd(ifname)
1586 hapd.request("WPS_PBC")
33d0b157
JM		 1587 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
1588 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 1589 dev[0].wait_connected(timeout=30)
56887c35
JM		 1590 with open(conffile, "r") as f:
1591 lines = f.read().splitlines()
1592 vals = dict()
1593 for l in lines:
1594 try:
1595 [name,value] = l.split('=', 1)
1596 vals[name] = value
1597 except ValueError, e:
1598 if "# WPS configuration" in l:
1599 pass
1600 else:
1601 raise Exception("Unexpected configuration line: " + l)
1602 if vals['ieee80211n'] != '1' or vals['wps_state'] != '2' or "WPA-PSK" not in vals['wpa_key_mgmt']:
1603 raise Exception("Incorrect configuration: " + str(vals))
1604 finally:
1605 subprocess.call(['sudo', 'rm', conffile])
1606
91f3cf69
JM		 1607def test_ap_wps_pbc_timeout(dev, apdev, params):
1608 """wpa_supplicant PBC walk time [long]"""
1609 if not params['long']:
81e787b7 1610 raise HwsimSkip("Skip test case with long duration due to --long not specified")
91f3cf69
JM		 1611 ssid = "test-wps"
1612 hostapd.add_ap(apdev[0]['ifname'],
1613 { "ssid": ssid, "eap_server": "1", "wps_state": "1" })
1614 hapd = hostapd.Hostapd(apdev[0]['ifname'])
1615 logger.info("Start WPS_PBC and wait for PBC walk time expiration")
1616 if "OK" not in dev[0].request("WPS_PBC"):
1617 raise Exception("WPS_PBC failed")
1618 ev = dev[0].wait_event(["WPS-TIMEOUT"], timeout=150)
1619 if ev is None:
1620 raise Exception("WPS-TIMEOUT not reported")
1621
44ff0400
JM		 1622def add_ssdp_ap(ifname, ap_uuid):
1623 ssid = "wps-ssdp"
1624 ap_pin = "12345670"
1625 hostapd.add_ap(ifname,
1626 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
1627 "wpa_passphrase": "12345678", "wpa": "2",
1628 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP",
1629 "device_name": "Wireless AP", "manufacturer": "Company",
1630 "model_name": "WAP", "model_number": "123",
1631 "serial_number": "12345", "device_type": "6-0050F204-1",
1632 "os_version": "01020300",
1633 "config_methods": "label push_button",
1634 "ap_pin": ap_pin, "uuid": ap_uuid, "upnp_iface": "lo",
1635 "friendly_name": "WPS Access Point",
1636 "manufacturer_url": "http://www.example.com/",
1637 "model_description": "Wireless Access Point",
1638 "model_url": "http://www.example.com/model/",
1639 "upc": "123456789012" })
1640
1641def ssdp_send(msg, no_recv=False):
1642 socket.setdefaulttimeout(1)
1643 sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM, socket.IPPROTO_UDP)
1644 sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
1645 sock.setsockopt(socket.IPPROTO_IP, socket.IP_MULTICAST_TTL, 2)
1646 sock.bind(("127.0.0.1", 0))
1647 sock.sendto(msg, ("239.255.255.250", 1900))
1648 if no_recv:
1649 return None
1650 return sock.recv(1000)
1651
1652def ssdp_send_msearch(st):
1653 msg = '\r\n'.join([
1654 'M-SEARCH * HTTP/1.1',
1655 'HOST: 239.255.255.250:1900',
1656 'MX: 1',
1657 'MAN: "ssdp:discover"',
1658 'ST: ' + st,
1659 '', ''])
47c549fd 1660 return ssdp_send(msg)
44ff0400
JM		 1661
1662def test_ap_wps_ssdp_msearch(dev, apdev):
1663 """WPS AP and SSDP M-SEARCH messages"""
1664 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
1665 add_ssdp_ap(apdev[0]['ifname'], ap_uuid)
1666
1667 msg = '\r\n'.join([
1668 'M-SEARCH * HTTP/1.1',
1669 'Host: 239.255.255.250:1900',
1670 'Mx: 1',
1671 'Man: "ssdp:discover"',
1672 'St: urn:schemas-wifialliance-org:device:WFADevice:1',
1673 '', ''])
1674 ssdp_send(msg)
1675
1676 msg = '\r\n'.join([
1677 'M-SEARCH * HTTP/1.1',
1678 'host:\t239.255.255.250:1900\t\t\t\t \t\t',
1679 'mx: \t1\t\t ',
1680 'man: \t \t "ssdp:discover" ',
1681 'st: urn:schemas-wifialliance-org:device:WFADevice:1\t\t',
1682 '', ''])
1683 ssdp_send(msg)
1684
1685 ssdp_send_msearch("ssdp:all")
1686 ssdp_send_msearch("upnp:rootdevice")
1687 ssdp_send_msearch("uuid:" + ap_uuid)
1688 ssdp_send_msearch("urn:schemas-wifialliance-org:service:WFAWLANConfig:1")
1689 ssdp_send_msearch("urn:schemas-wifialliance-org:device:WFADevice:1");
1690
1691 msg = '\r\n'.join([
1692 'M-SEARCH * HTTP/1.1',
1693 'HOST:\t239.255.255.250:1900',
1694 'MAN: "ssdp:discover"',
1695 'MX: 130',
1696 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1697 '', ''])
1698 ssdp_send(msg, no_recv=True)
1699
1700def test_ap_wps_ssdp_invalid_msearch(dev, apdev):
1701 """WPS AP and invalid SSDP M-SEARCH messages"""
1702 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
1703 add_ssdp_ap(apdev[0]['ifname'], ap_uuid)
1704
1705 socket.setdefaulttimeout(1)
1706 sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM, socket.IPPROTO_UDP)
1707 sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
1708 sock.setsockopt(socket.IPPROTO_IP, socket.IP_MULTICAST_TTL, 2)
1709 sock.bind(("127.0.0.1", 0))
1710
1711 logger.debug("Missing MX")
1712 msg = '\r\n'.join([
1713 'M-SEARCH * HTTP/1.1',
1714 'HOST: 239.255.255.250:1900',
1715 'MAN: "ssdp:discover"',
1716 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1717 '', ''])
1718 sock.sendto(msg, ("239.255.255.250", 1900))
1719
1720 logger.debug("Negative MX")
1721 msg = '\r\n'.join([
1722 'M-SEARCH * HTTP/1.1',
1723 'HOST: 239.255.255.250:1900',
1724 'MX: -1',
1725 'MAN: "ssdp:discover"',
1726 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1727 '', ''])
1728 sock.sendto(msg, ("239.255.255.250", 1900))
1729
1730 logger.debug("Invalid MX")
1731 msg = '\r\n'.join([
1732 'M-SEARCH * HTTP/1.1',
1733 'HOST: 239.255.255.250:1900',
1734 'MX; 1',
1735 'MAN: "ssdp:discover"',
1736 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1737 '', ''])
1738 sock.sendto(msg, ("239.255.255.250", 1900))
1739
1740 logger.debug("Missing MAN")
1741 msg = '\r\n'.join([
1742 'M-SEARCH * HTTP/1.1',
1743 'HOST: 239.255.255.250:1900',
1744 'MX: 1',
1745 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1746 '', ''])
1747 sock.sendto(msg, ("239.255.255.250", 1900))
1748
1749 logger.debug("Invalid MAN")
1750 msg = '\r\n'.join([
1751 'M-SEARCH * HTTP/1.1',
1752 'HOST: 239.255.255.250:1900',
1753 'MX: 1',
1754 'MAN: foo',
1755 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1756 '', ''])
1757 sock.sendto(msg, ("239.255.255.250", 1900))
1758 msg = '\r\n'.join([
1759 'M-SEARCH * HTTP/1.1',
1760 'HOST: 239.255.255.250:1900',
1761 'MX: 1',
1762 'MAN; "ssdp:discover"',
1763 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1764 '', ''])
1765 sock.sendto(msg, ("239.255.255.250", 1900))
1766
1767 logger.debug("Missing HOST")
1768 msg = '\r\n'.join([
1769 'M-SEARCH * HTTP/1.1',
1770 'MAN: "ssdp:discover"',
1771 'MX: 1',
1772 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1773 '', ''])
1774 sock.sendto(msg, ("239.255.255.250", 1900))
1775
1776 logger.debug("Missing ST")
1777 msg = '\r\n'.join([
1778 'M-SEARCH * HTTP/1.1',
1779 'HOST: 239.255.255.250:1900',
1780 'MAN: "ssdp:discover"',
1781 'MX: 1',
1782 '', ''])
1783 sock.sendto(msg, ("239.255.255.250", 1900))
1784
1785 logger.debug("Mismatching ST")
1786 msg = '\r\n'.join([
1787 'M-SEARCH * HTTP/1.1',
1788 'HOST: 239.255.255.250:1900',
1789 'MAN: "ssdp:discover"',
1790 'MX: 1',
1791 'ST: uuid:16d5f8a9-4ee4-4f5e-81f9-cc6e2f47f42d',
1792 '', ''])
1793 sock.sendto(msg, ("239.255.255.250", 1900))
1794 msg = '\r\n'.join([
1795 'M-SEARCH * HTTP/1.1',
1796 'HOST: 239.255.255.250:1900',
1797 'MAN: "ssdp:discover"',
1798 'MX: 1',
1799 'ST: foo:bar',
1800 '', ''])
1801 sock.sendto(msg, ("239.255.255.250", 1900))
1802 msg = '\r\n'.join([
1803 'M-SEARCH * HTTP/1.1',
1804 'HOST: 239.255.255.250:1900',
1805 'MAN: "ssdp:discover"',
1806 'MX: 1',
1807 'ST: foobar',
1808 '', ''])
1809 sock.sendto(msg, ("239.255.255.250", 1900))
1810
1811 logger.debug("Invalid ST")
1812 msg = '\r\n'.join([
1813 'M-SEARCH * HTTP/1.1',
1814 'HOST: 239.255.255.250:1900',
1815 'MAN: "ssdp:discover"',
1816 'MX: 1',
1817 'ST; urn:schemas-wifialliance-org:device:WFADevice:1',
1818 '', ''])
1819 sock.sendto(msg, ("239.255.255.250", 1900))
1820
1821 logger.debug("Invalid M-SEARCH")
1822 msg = '\r\n'.join([
1823 'M+SEARCH * HTTP/1.1',
1824 'HOST: 239.255.255.250:1900',
1825 'MAN: "ssdp:discover"',
1826 'MX: 1',
1827 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1828 '', ''])
1829 sock.sendto(msg, ("239.255.255.250", 1900))
1830 msg = '\r\n'.join([
1831 'M-SEARCH-* HTTP/1.1',
1832 'HOST: 239.255.255.250:1900',
1833 'MAN: "ssdp:discover"',
1834 'MX: 1',
1835 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1836 '', ''])
1837 sock.sendto(msg, ("239.255.255.250", 1900))
1838
1839 logger.debug("Invalid message format")
1840 sock.sendto("NOTIFY * HTTP/1.1", ("239.255.255.250", 1900))
1841 msg = '\r'.join([
1842 'M-SEARCH * HTTP/1.1',
1843 'HOST: 239.255.255.250:1900',
1844 'MAN: "ssdp:discover"',
1845 'MX: 1',
1846 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1847 '', ''])
1848 sock.sendto(msg, ("239.255.255.250", 1900))
1849
1850 try:
1851 r = sock.recv(1000)
1852 raise Exception("Unexpected M-SEARCH response: " + r)
1853 except socket.timeout:
1854 pass
1855
1856 logger.debug("Valid M-SEARCH")
1857 msg = '\r\n'.join([
1858 'M-SEARCH * HTTP/1.1',
1859 'HOST: 239.255.255.250:1900',
1860 'MAN: "ssdp:discover"',
1861 'MX: 1',
1862 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1863 '', ''])
1864 sock.sendto(msg, ("239.255.255.250", 1900))
1865
1866 try:
1867 r = sock.recv(1000)
1868 pass
1869 except socket.timeout:
1870 raise Exception("No SSDP response")
1871
1872def test_ap_wps_ssdp_burst(dev, apdev):
1873 """WPS AP and SSDP burst"""
1874 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
1875 add_ssdp_ap(apdev[0]['ifname'], ap_uuid)
1876
1877 msg = '\r\n'.join([
1878 'M-SEARCH * HTTP/1.1',
1879 'HOST: 239.255.255.250:1900',
1880 'MAN: "ssdp:discover"',
1881 'MX: 1',
1882 'ST: urn:schemas-wifialliance-org:device:WFADevice:1',
1883 '', ''])
1884 socket.setdefaulttimeout(1)
1885 sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM, socket.IPPROTO_UDP)
1886 sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
1887 sock.setsockopt(socket.IPPROTO_IP, socket.IP_MULTICAST_TTL, 2)
1888 sock.bind(("127.0.0.1", 0))
1889 for i in range(0, 25):
1890 sock.sendto(msg, ("239.255.255.250", 1900))
1891 resp = 0
1892 while True:
1893 try:
1894 r = sock.recv(1000)
1895 if not r.startswith("HTTP/1.1 200 OK\r\n"):
1896 raise Exception("Unexpected message: " + r)
1897 resp += 1
1898 except socket.timeout:
1899 break
1900 if resp < 20:
1901 raise Exception("Too few SSDP responses")
1902
1903 sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM, socket.IPPROTO_UDP)
1904 sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
1905 sock.setsockopt(socket.IPPROTO_IP, socket.IP_MULTICAST_TTL, 2)
1906 sock.bind(("127.0.0.1", 0))
1907 for i in range(0, 25):
1908 sock.sendto(msg, ("239.255.255.250", 1900))
1909 while True:
1910 try:
1911 r = sock.recv(1000)
1912 if ap_uuid in r:
1913 break
1914 except socket.timeout:
1915 raise Exception("No SSDP response")
47c549fd
JM		 1916
1917def ssdp_get_location(uuid):
1918 res = ssdp_send_msearch("uuid:" + uuid)
1919 location = None
1920 for l in res.splitlines():
1921 if l.lower().startswith("location:"):
1922 location = l.split(':', 1)[1].strip()
1923 break
1924 if location is None:
1925 raise Exception("No UPnP location found")
1926 return location
1927
1928def upnp_get_urls(location):
1929 conn = urllib.urlopen(location)
1930 tree = ET.parse(conn)
1931 root = tree.getroot()
1932 urn = '{urn:schemas-upnp-org:device-1-0}'
1933 service = root.find("./" + urn + "device/" + urn + "serviceList/" + urn + "service")
1934 res = {}
1935 res['scpd_url'] = urlparse.urljoin(location, service.find(urn + 'SCPDURL').text)
1936 res['control_url'] = urlparse.urljoin(location, service.find(urn + 'controlURL').text)
1937 res['event_sub_url'] = urlparse.urljoin(location, service.find(urn + 'eventSubURL').text)
1938 return res
1939
1940def upnp_soap_action(conn, path, action, include_soap_action=True, soap_action_override=None):
1941 soapns = 'http://schemas.xmlsoap.org/soap/envelope/'
1942 wpsns = 'urn:schemas-wifialliance-org:service:WFAWLANConfig:1'
1943 ET.register_namespace('soapenv', soapns)
1944 ET.register_namespace('wfa', wpsns)
1945 attrib = {}
1946 attrib['{%s}encodingStyle' % soapns] = 'http://schemas.xmlsoap.org/soap/encoding/'
1947 root = ET.Element("{%s}Envelope" % soapns, attrib=attrib)
1948 body = ET.SubElement(root, "{%s}Body" % soapns)
1949 act = ET.SubElement(body, "{%s}%s" % (wpsns, action))
1950 tree = ET.ElementTree(root)
1951 soap = StringIO.StringIO()
1952 tree.write(soap, xml_declaration=True, encoding='utf-8')
1953
1954 headers = { "Content-type": 'text/xml; charset="utf-8"' }
1955 if include_soap_action:
1956 headers["SOAPAction"] = '"urn:schemas-wifialliance-org:service:WFAWLANConfig:1#%s"' % action
1957 elif soap_action_override:
1958 headers["SOAPAction"] = soap_action_override
1959 conn.request("POST", path, soap.getvalue(), headers)
1960 return conn.getresponse()
1961
1962def test_ap_wps_upnp(dev, apdev):
1963 """WPS AP and UPnP operations"""
1964 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
1965 add_ssdp_ap(apdev[0]['ifname'], ap_uuid)
1966
1967 location = ssdp_get_location(ap_uuid)
1968 urls = upnp_get_urls(location)
1969
1970 conn = urllib.urlopen(urls['scpd_url'])
1971 scpd = conn.read()
1972
1973 conn = urllib.urlopen(urlparse.urljoin(location, "unknown.html"))
1974 if conn.getcode() != 404:
1975 raise Exception("Unexpected HTTP response to GET unknown URL")
1976
1977 url = urlparse.urlparse(location)
1978 conn = httplib.HTTPConnection(url.netloc)
1979 #conn.set_debuglevel(1)
1980 headers = { "Content-type": 'text/xml; charset="utf-8"',
1981 "SOAPAction": '"urn:schemas-wifialliance-org:service:WFAWLANConfig:1#GetDeviceInfo"' }
1982 conn.request("POST", "hello", "\r\n\r\n", headers)
1983 resp = conn.getresponse()
1984 if resp.status != 404:
1985 raise Exception("Unexpected HTTP response: %s" % resp.status)
1986
1987 conn.request("UNKNOWN", "hello", "\r\n\r\n", headers)
1988 resp = conn.getresponse()
1989 if resp.status != 501:
1990 raise Exception("Unexpected HTTP response: %s" % resp.status)
1991
1992 headers = { "Content-type": 'text/xml; charset="utf-8"',
1993 "SOAPAction": '"urn:some-unknown-action#GetDeviceInfo"' }
1994 ctrlurl = urlparse.urlparse(urls['control_url'])
1995 conn.request("POST", ctrlurl.path, "\r\n\r\n", headers)
1996 resp = conn.getresponse()
1997 if resp.status != 401:
1998 raise Exception("Unexpected HTTP response: %s" % resp.status)
1999
2000 logger.debug("GetDeviceInfo without SOAPAction header")
2001 resp = upnp_soap_action(conn, ctrlurl.path, "GetDeviceInfo",
2002 include_soap_action=False)
2003 if resp.status != 401:
2004 raise Exception("Unexpected HTTP response: %s" % resp.status)
2005
2006 logger.debug("GetDeviceInfo with invalid SOAPAction header")
2007 for act in [ "foo",
2008 "urn:schemas-wifialliance-org:service:WFAWLANConfig:1#GetDeviceInfo",
2009 '"urn:schemas-wifialliance-org:service:WFAWLANConfig:1"',
2010 '"urn:schemas-wifialliance-org:service:WFAWLANConfig:123#GetDevice']:
2011 resp = upnp_soap_action(conn, ctrlurl.path, "GetDeviceInfo",
2012 include_soap_action=False,
2013 soap_action_override=act)
2014 if resp.status != 401:
2015 raise Exception("Unexpected HTTP response: %s" % resp.status)
2016
2017 resp = upnp_soap_action(conn, ctrlurl.path, "GetDeviceInfo")
2018 if resp.status != 200:
2019 raise Exception("Unexpected HTTP response: %s" % resp.status)
2020 dev = resp.read()
2021 if "NewDeviceInfo" not in dev:
2022 raise Exception("Unexpected GetDeviceInfo response")
2023
2024 logger.debug("PutMessage without required parameters")
2025 resp = upnp_soap_action(conn, ctrlurl.path, "PutMessage")
2026 if resp.status != 600:
2027 raise Exception("Unexpected HTTP response: %s" % resp.status)
2028
2029 logger.debug("PutWLANResponse without required parameters")
2030 resp = upnp_soap_action(conn, ctrlurl.path, "PutWLANResponse")
2031 if resp.status != 600:
2032 raise Exception("Unexpected HTTP response: %s" % resp.status)
2033
2034 logger.debug("SetSelectedRegistrar from unregistered ER")
2035 resp = upnp_soap_action(conn, ctrlurl.path, "SetSelectedRegistrar")
2036 if resp.status != 501:
2037 raise Exception("Unexpected HTTP response: %s" % resp.status)
2038
2039 logger.debug("Unknown action")
2040 resp = upnp_soap_action(conn, ctrlurl.path, "Unknown")
2041 if resp.status != 401:
2042 raise Exception("Unexpected HTTP response: %s" % resp.status)
2043
2044def test_ap_wps_upnp_subscribe(dev, apdev):
2045 """WPS AP and UPnP event subscription"""
2046 ap_uuid = "27ea801a-9e5c-4e73-bd82-f89cbcd10d7e"
2047 add_ssdp_ap(apdev[0]['ifname'], ap_uuid)
2048
2049 location = ssdp_get_location(ap_uuid)
2050 urls = upnp_get_urls(location)
2051 eventurl = urlparse.urlparse(urls['event_sub_url'])
2052
2053 url = urlparse.urlparse(location)
2054 conn = httplib.HTTPConnection(url.netloc)
2055 #conn.set_debuglevel(1)
2056 headers = { "callback": '<http://127.0.0.1:12345/event>',
2057 "timeout": "Second-1234" }
2058 conn.request("SUBSCRIBE", "hello", "\r\n\r\n", headers)
2059 resp = conn.getresponse()
2060 if resp.status != 412:
2061 raise Exception("Unexpected HTTP response: %s" % resp.status)
2062
2063 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2064 resp = conn.getresponse()
2065 if resp.status != 412:
2066 raise Exception("Unexpected HTTP response: %s" % resp.status)
2067
2068 headers = { "NT": "upnp:event",
2069 "timeout": "Second-1234" }
2070 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2071 resp = conn.getresponse()
2072 if resp.status != 412:
2073 raise Exception("Unexpected HTTP response: %s" % resp.status)
2074
2075 headers = { "callback": '<http://127.0.0.1:12345/event>',
2076 "NT": "upnp:foobar",
2077 "timeout": "Second-1234" }
2078 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2079 resp = conn.getresponse()
2080 if resp.status != 400:
2081 raise Exception("Unexpected HTTP response: %s" % resp.status)
2082
2083 logger.debug("Valid subscription")
2084 headers = { "callback": '<http://127.0.0.1:12345/event>',
2085 "NT": "upnp:event",
2086 "timeout": "Second-1234" }
2087 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2088 resp = conn.getresponse()
2089 if resp.status != 200:
2090 raise Exception("Unexpected HTTP response: %s" % resp.status)
2091 sid = resp.getheader("sid")
2092 logger.debug("Subscription SID " + sid)
2093
2094 logger.debug("Invalid re-subscription")
2095 headers = { "NT": "upnp:event",
2096 "sid": "123456734567854",
2097 "timeout": "Second-1234" }
2098 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2099 resp = conn.getresponse()
2100 if resp.status != 400:
2101 raise Exception("Unexpected HTTP response: %s" % resp.status)
2102
2103 logger.debug("Invalid re-subscription")
2104 headers = { "NT": "upnp:event",
2105 "sid": "uuid:123456734567854",
2106 "timeout": "Second-1234" }
2107 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2108 resp = conn.getresponse()
2109 if resp.status != 400:
2110 raise Exception("Unexpected HTTP response: %s" % resp.status)
2111
2112 logger.debug("Invalid re-subscription")
2113 headers = { "callback": '<http://127.0.0.1:12345/event>',
2114 "NT": "upnp:event",
2115 "sid": sid,
2116 "timeout": "Second-1234" }
2117 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2118 resp = conn.getresponse()
2119 if resp.status != 400:
2120 raise Exception("Unexpected HTTP response: %s" % resp.status)
2121
2122 logger.debug("SID mismatch in re-subscription")
2123 headers = { "NT": "upnp:event",
2124 "sid": "uuid:4c2bca79-1ff4-4e43-85d4-952a2b8a51fb",
2125 "timeout": "Second-1234" }
2126 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2127 resp = conn.getresponse()
2128 if resp.status != 412:
2129 raise Exception("Unexpected HTTP response: %s" % resp.status)
2130
2131 logger.debug("Valid re-subscription")
2132 headers = { "NT": "upnp:event",
2133 "sid": sid,
2134 "timeout": "Second-1234" }
2135 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2136 resp = conn.getresponse()
2137 if resp.status != 200:
2138 raise Exception("Unexpected HTTP response: %s" % resp.status)
2139 sid2 = resp.getheader("sid")
2140 logger.debug("Subscription SID " + sid2)
2141
2142 if sid != sid2:
2143 raise Exception("Unexpected SID change")
2144
2145 logger.debug("Valid re-subscription")
2146 headers = { "NT": "upnp:event",
2147 "sid": "uuid: \t \t" + sid.split(':')[1],
2148 "timeout": "Second-1234" }
2149 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2150 resp = conn.getresponse()
2151 if resp.status != 200:
2152 raise Exception("Unexpected HTTP response: %s" % resp.status)
2153
2154 logger.debug("Invalid unsubscription")
2155 headers = { "sid": sid }
2156 conn.request("UNSUBSCRIBE", "/hello", "\r\n\r\n", headers)
2157 resp = conn.getresponse()
2158 if resp.status != 412:
2159 raise Exception("Unexpected HTTP response: %s" % resp.status)
2160 headers = { "foo": "bar" }
2161 conn.request("UNSUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2162 resp = conn.getresponse()
2163 if resp.status != 412:
2164 raise Exception("Unexpected HTTP response: %s" % resp.status)
2165
2166 logger.debug("Valid unsubscription")
2167 headers = { "sid": sid }
2168 conn.request("UNSUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2169 resp = conn.getresponse()
2170 if resp.status != 200:
2171 raise Exception("Unexpected HTTP response: %s" % resp.status)
2172
2173 logger.debug("Unsubscription for not existing SID")
2174 headers = { "sid": sid }
2175 conn.request("UNSUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2176 resp = conn.getresponse()
2177 if resp.status != 412:
2178 raise Exception("Unexpected HTTP response: %s" % resp.status)
2179
2180 logger.debug("Invalid unsubscription")
2181 headers = { "sid": " \t \tfoo" }
2182 conn.request("UNSUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2183 resp = conn.getresponse()
2184 if resp.status != 400:
2185 raise Exception("Unexpected HTTP response: %s" % resp.status)
2186
2187 logger.debug("Invalid unsubscription")
2188 headers = { "sid": "uuid:\t \tfoo" }
2189 conn.request("UNSUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2190 resp = conn.getresponse()
2191 if resp.status != 400:
2192 raise Exception("Unexpected HTTP response: %s" % resp.status)
2193
2194 logger.debug("Invalid unsubscription")
2195 headers = { "NT": "upnp:event",
2196 "sid": sid }
2197 conn.request("UNSUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2198 resp = conn.getresponse()
2199 if resp.status != 400:
2200 raise Exception("Unexpected HTTP response: %s" % resp.status)
2201 headers = { "callback": '<http://127.0.0.1:12345/event>',
2202 "sid": sid }
2203 conn.request("UNSUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2204 resp = conn.getresponse()
2205 if resp.status != 400:
2206 raise Exception("Unexpected HTTP response: %s" % resp.status)
2207
2208 logger.debug("Valid subscription with multiple callbacks")
2209 headers = { "callback": '<http://127.0.0.1:12345/event> <http://127.0.0.1:12345/event>\t<http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event><http://127.0.0.1:12345/event>',
2210 "NT": "upnp:event",
2211 "timeout": "Second-1234" }
2212 conn.request("SUBSCRIBE", eventurl.path, "\r\n\r\n", headers)
2213 resp = conn.getresponse()
2214 if resp.status != 200:
2215 raise Exception("Unexpected HTTP response: %s" % resp.status)
2216 sid = resp.getheader("sid")
2217 logger.debug("Subscription SID " + sid)
d352c407
JM		 2218
2219def test_ap_wps_disabled(dev, apdev):
2220 """WPS operations while WPS is disabled"""
2221 ssid = "test-wps-disabled"
2222 hostapd.add_ap(apdev[0]['ifname'], { "ssid": ssid })
2223 hapd = hostapd.Hostapd(apdev[0]['ifname'])
2224 if "FAIL" not in hapd.request("WPS_PBC"):
2225 raise Exception("WPS_PBC succeeded unexpectedly")
2226 if "FAIL" not in hapd.request("WPS_CANCEL"):
2227 raise Exception("WPS_CANCEL succeeded unexpectedly")
a0fd2ae6
JM		 2228
2229def test_ap_wps_mixed_cred(dev, apdev):
2230 """WPS 2.0 STA merging mixed mode WPA/WPA2 credentials"""
2231 ssid = "test-wps-wep"
2232 hostapd.add_ap(apdev[0]['ifname'],
2233 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
2234 "skip_cred_build": "1", "extra_cred": "wps-mixed-cred" })
2235 hapd = hostapd.Hostapd(apdev[0]['ifname'])
2236 hapd.request("WPS_PBC")
33d0b157
JM		 2237 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
2238 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
9ed53f5e 2239 ev = dev[0].wait_event(["WPS-SUCCESS"], timeout=30)
a0fd2ae6
JM		 2240 if ev is None:
2241 raise Exception("WPS-SUCCESS event timed out")
2242 nets = dev[0].list_networks()
2243 if len(nets) != 1:
2244 raise Exception("Unexpected number of network blocks")
2245 id = nets[0]['id']
2246 proto = dev[0].get_network(id, "proto")
2247 if proto != "WPA RSN":
2248 raise Exception("Unexpected merged proto field value: " + proto)
2249 pairwise = dev[0].get_network(id, "pairwise")
72a8e30b 2250 if pairwise != "CCMP TKIP" and pairwise != "CCMP GCMP TKIP":
a0fd2ae6 2251 raise Exception("Unexpected merged pairwise field value: " + pairwise)
e5a79e3f
JM		 2252
2253def test_ap_wps_while_connected(dev, apdev):
2254 """WPS PBC provisioning while connected to another AP"""
2255 ssid = "test-wps-conf"
2256 hostapd.add_ap(apdev[0]['ifname'],
2257 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
2258 "wpa_passphrase": "12345678", "wpa": "2",
2259 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
2260 hapd = hostapd.Hostapd(apdev[0]['ifname'])
2261
2262 hostapd.add_ap(apdev[1]['ifname'], { "ssid": "open" })
2263 dev[0].connect("open", key_mgmt="NONE", scan_freq="2412")
2264
2265 logger.info("WPS provisioning step")
2266 hapd.request("WPS_PBC")
2267 dev[0].dump_monitor()
33d0b157 2268 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 2269 dev[0].wait_connected(timeout=30)
e5a79e3f
JM		 2270 status = dev[0].get_status()
2271 if status['bssid'] != apdev[0]['bssid']:
2272 raise Exception("Unexpected BSSID")
2273
2274def test_ap_wps_while_connected_no_autoconnect(dev, apdev):
2275 """WPS PBC provisioning while connected to another AP and STA_AUTOCONNECT disabled"""
2276 ssid = "test-wps-conf"
2277 hostapd.add_ap(apdev[0]['ifname'],
2278 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
2279 "wpa_passphrase": "12345678", "wpa": "2",
2280 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
2281 hapd = hostapd.Hostapd(apdev[0]['ifname'])
2282
2283 hostapd.add_ap(apdev[1]['ifname'], { "ssid": "open" })
2284
2285 try:
2286 dev[0].request("STA_AUTOCONNECT 0")
2287 dev[0].connect("open", key_mgmt="NONE", scan_freq="2412")
2288
2289 logger.info("WPS provisioning step")
2290 hapd.request("WPS_PBC")
2291 dev[0].dump_monitor()
33d0b157 2292 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
5f35a5e2 2293 dev[0].wait_connected(timeout=30)
e5a79e3f
JM		 2294 status = dev[0].get_status()
2295 if status['bssid'] != apdev[0]['bssid']:
2296 raise Exception("Unexpected BSSID")
2297 finally:
2298 dev[0].request("STA_AUTOCONNECT 1")
3f08d1cd
JM		 2299
2300def test_ap_wps_from_event(dev, apdev):
2301 """WPS PBC event on AP to enable PBC"""
2302 ssid = "test-wps-conf"
2303 hapd = hostapd.add_ap(apdev[0]['ifname'],
2304 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
2305 "wpa_passphrase": "12345678", "wpa": "2",
2306 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
33d0b157 2307 dev[0].scan_for_bss(apdev[0]['bssid'], freq="2412")
3f08d1cd 2308 dev[0].dump_monitor()
33d0b157
JM		 2309 hapd.dump_monitor()
2310 dev[0].request("WPS_PBC " + apdev[0]['bssid'])
3f08d1cd
JM		 2311
2312 ev = hapd.wait_event(['WPS-ENROLLEE-SEEN'], timeout=15)
2313 if ev is None:
2314 raise Exception("No WPS-ENROLLEE-SEEN event on AP")
2315 vals = ev.split(' ')
2316 if vals[1] != dev[0].p2p_interface_addr():
2317 raise Exception("Unexpected enrollee address: " + vals[1])
2318 if vals[5] != '4':
2319 raise Exception("Unexpected Device Password Id: " + vals[5])
2320 hapd.request("WPS_PBC")
5f35a5e2 2321 dev[0].wait_connected(timeout=30)
1531402e
JM		 2322
2323def test_ap_wps_ap_scan_2(dev, apdev):
2324 """AP_SCAN 2 for WPS"""
2325 ssid = "test-wps-conf"
2326 hapd = hostapd.add_ap(apdev[0]['ifname'],
2327 { "ssid": ssid, "eap_server": "1", "wps_state": "2",
2328 "wpa_passphrase": "12345678", "wpa": "2",
2329 "wpa_key_mgmt": "WPA-PSK", "rsn_pairwise": "CCMP"})
2330 hapd.request("WPS_PBC")
2331
2332 wpas = WpaSupplicant(global_iface='/tmp/wpas-wlan5')
2333 wpas.interface_add("wlan5", drv_params="force_connect_cmd=1")
2334
2335 if "OK" not in wpas.request("AP_SCAN 2"):
2336 raise Exception("Failed to set AP_SCAN 2")
2337
33d0b157
JM		 2338 wpas.scan_for_bss(apdev[0]['bssid'], freq="2412")
2339 wpas.request("WPS_PBC " + apdev[0]['bssid'])
1531402e
JM		 2340 ev = wpas.wait_event(["WPS-SUCCESS"], timeout=15)
2341 if ev is None:
2342 raise Exception("WPS-SUCCESS event timed out")
5f35a5e2 2343 wpas.wait_connected(timeout=30)
1531402e
JM		 2344 wpas.request("DISCONNECT")
2345 wpas.request("BSS_FLUSH 0")
2346 wpas.dump_monitor()
2347 wpas.request("REASSOCIATE")
5f35a5e2 2348 wpas.wait_connected(timeout=30)
a08fdb17
JM		 2349
2350def test_ap_wps_eapol_workaround(dev, apdev):
2351 """EAPOL workaround code path for 802.1X header length mismatch"""
2352 ssid = "test-wps"
2353 hostapd.add_ap(apdev[0]['ifname'],
2354 { "ssid": ssid, "eap_server": "1", "wps_state": "1" })
2355 hapd = hostapd.Hostapd(apdev[0]['ifname'])
2356 bssid = apdev[0]['bssid']
2357 hapd.request("SET ext_eapol_frame_io 1")
2358 dev[0].request("SET ext_eapol_frame_io 1")
2359 hapd.request("WPS_PBC")
2360 dev[0].request("WPS_PBC")
2361
2362 ev = hapd.wait_event(["EAPOL-TX"], timeout=15)
2363 if ev is None:
2364 raise Exception("Timeout on EAPOL-TX from hostapd")
2365
2366 res = dev[0].request("EAPOL_RX " + bssid + " 020000040193000501FFFF")
2367 if "OK" not in res:
2368 raise Exception("EAPOL_RX to wpa_supplicant failed")
Unnamed repository; edit this file 'description' to name the repository.