]> git.ipfire.org Git - thirdparty/hostap.git/blame - wpa_supplicant/wpa_supplicant.c
projects / thirdparty / hostap.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
hostapd: Clear interface_added flag on error path
[thirdparty/hostap.git] / wpa_supplicant / wpa_supplicant.c
CommitLineData
6fc6879b
JM		 1/*
2 * WPA Supplicant
d93dfbd5 3 * Copyright (c) 2003-2012, Jouni Malinen <j@w1.fi>
6fc6879b 4 *
0f3d578e
JM		 5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
6fc6879b
JM		 7 *
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
11 */
12
13#include "includes.h"
14
15#include "common.h"
d47fa330 16#include "crypto/random.h"
7d232e23 17#include "crypto/sha1.h"
6fc6879b
JM		 18#include "eapol_supp/eapol_supp_sm.h"
19#include "eap_peer/eap.h"
ec7b97ab 20#include "eap_peer/eap_proxy.h"
3ec97afe 21#include "eap_server/eap_methods.h"
3acb5005 22#include "rsn_supp/wpa.h"
6fc6879b 23#include "eloop.h"
6fc6879b 24#include "config.h"
306ae225 25#include "utils/ext_password.h"
6fc6879b
JM		 26#include "l2_packet/l2_packet.h"
27#include "wpa_supplicant_i.h"
2d5b792d 28#include "driver_i.h"
6fc6879b 29#include "ctrl_iface.h"
6fc6879b 30#include "pcsc_funcs.h"
90973fb2 31#include "common/version.h"
3acb5005
JM		 32#include "rsn_supp/preauth.h"
33#include "rsn_supp/pmksa_cache.h"
90973fb2 34#include "common/wpa_ctrl.h"
90973fb2 35#include "common/ieee802_11_defs.h"
72044390 36#include "p2p/p2p.h"
6fc6879b
JM		 37#include "blacklist.h"
38#include "wpas_glue.h"
116654ce 39#include "wps_supplicant.h"
11ef8d35 40#include "ibss_rsn.h"
c2a04078 41#include "sme.h"
04ea7b79 42#include "gas_query.h"
1f1b62a0 43#include "ap.h"
b22128ef 44#include "p2p_supplicant.h"
9675ce35 45#include "wifi_display.h"
8bac466b 46#include "notify.h"
60b94c98 47#include "bgscan.h"
7c865c68 48#include "autoscan.h"
83922c2d 49#include "bss.h"
9ba9fa07 50#include "scan.h"
24f6497c 51#include "offchannel.h"
cb418324 52#include "hs20_supplicant.h"
e27d20bb 53#include "wnm_sta.h"
6fc6879b
JM		 54
55const char *wpa_supplicant_version =
56"wpa_supplicant v" VERSION_STR "\n"
e056f93e 57"Copyright (c) 2003-2013, Jouni Malinen <j@w1.fi> and contributors";
6fc6879b
JM		 58
59const char *wpa_supplicant_license =
331f89ff
JM		 60"This software may be distributed under the terms of the BSD license.\n"
61"See README for more details.\n"
6fc6879b
JM		 62#ifdef EAP_TLS_OPENSSL
63"\nThis product includes software developed by the OpenSSL Project\n"
64"for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
65#endif /* EAP_TLS_OPENSSL */
66;
67
68#ifndef CONFIG_NO_STDOUT_DEBUG
69/* Long text divided into parts in order to fit in C89 strings size limits. */
70const char *wpa_supplicant_full_license1 =
331f89ff 71"";
6fc6879b 72const char *wpa_supplicant_full_license2 =
331f89ff 73"This software may be distributed under the terms of the BSD license.\n"
6fc6879b
JM		 74"\n"
75"Redistribution and use in source and binary forms, with or without\n"
76"modification, are permitted provided that the following conditions are\n"
77"met:\n"
78"\n";
79const char *wpa_supplicant_full_license3 =
80"1. Redistributions of source code must retain the above copyright\n"
81" notice, this list of conditions and the following disclaimer.\n"
82"\n"
83"2. Redistributions in binary form must reproduce the above copyright\n"
84" notice, this list of conditions and the following disclaimer in the\n"
85" documentation and/or other materials provided with the distribution.\n"
86"\n";
87const char *wpa_supplicant_full_license4 =
88"3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
89" names of its contributors may be used to endorse or promote products\n"
90" derived from this software without specific prior written permission.\n"
91"\n"
92"THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
93"\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
94"LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
95"A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
96const char *wpa_supplicant_full_license5 =
97"OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
98"SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
99"LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
100"DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
101"THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
102"(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
103"OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
104"\n";
105#endif /* CONFIG_NO_STDOUT_DEBUG */
106
6fc6879b
JM		 107extern int wpa_debug_level;
108extern int wpa_debug_show_keys;
109extern int wpa_debug_timestamp;
c5121837 110extern struct wpa_driver_ops *wpa_drivers[];
6fc6879b
JM		 111
112/* Configure default/group WEP keys for static WEP */
0194fedb 113int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
6fc6879b
JM		 114{
115 int i, set = 0;
116
117 for (i = 0; i < NUM_WEP_KEYS; i++) {
118 if (ssid->wep_key_len[i] == 0)
119 continue;
120
121 set = 1;
0382097e 122 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
da64c266 123 i, i == ssid->wep_tx_keyidx, NULL, 0,
6fc6879b
JM		 124 ssid->wep_key[i], ssid->wep_key_len[i]);
125 }
126
127 return set;
128}
129
130
6ea1f413
JM		 131int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
132 struct wpa_ssid *ssid)
6fc6879b
JM		 133{
134 u8 key[32];
135 size_t keylen;
71934751 136 enum wpa_alg alg;
6fc6879b
JM		 137 u8 seq[6] = { 0 };
138
139 /* IBSS/WPA-None uses only one key (Group) for both receiving and
140 * sending unicast and multicast packets. */
141
d7dcba70 142 if (ssid->mode != WPAS_MODE_IBSS) {
f049052b
BG		 143 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
144 "IBSS/ad-hoc) for WPA-None", ssid->mode);
6fc6879b
JM		 145 return -1;
146 }
147
148 if (!ssid->psk_set) {
f049052b
BG		 149 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
150 "WPA-None");
6fc6879b
JM		 151 return -1;
152 }
153
154 switch (wpa_s->group_cipher) {
155 case WPA_CIPHER_CCMP:
156 os_memcpy(key, ssid->psk, 16);
157 keylen = 16;
158 alg = WPA_ALG_CCMP;
159 break;
eb7719ff
JM		 160 case WPA_CIPHER_GCMP:
161 os_memcpy(key, ssid->psk, 16);
162 keylen = 16;
163 alg = WPA_ALG_GCMP;
164 break;
6fc6879b
JM		 165 case WPA_CIPHER_TKIP:
166 /* WPA-None uses the same Michael MIC key for both TX and RX */
167 os_memcpy(key, ssid->psk, 16 + 8);
168 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
169 keylen = 32;
170 alg = WPA_ALG_TKIP;
171 break;
172 default:
f049052b
BG		 173 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
174 "WPA-None", wpa_s->group_cipher);
6fc6879b
JM		 175 return -1;
176 }
177
178 /* TODO: should actually remember the previously used seq#, both for TX
179 * and RX from each STA.. */
180
0382097e 181 return wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
6fc6879b
JM		 182}
183
184
185static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
186{
187 struct wpa_supplicant *wpa_s = eloop_ctx;
188 const u8 *bssid = wpa_s->bssid;
a8e16edc 189 if (is_zero_ether_addr(bssid))
6fc6879b
JM		 190 bssid = wpa_s->pending_bssid;
191 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
192 MAC2STR(bssid));
193 wpa_blacklist_add(wpa_s, bssid);
194 wpa_sm_notify_disassoc(wpa_s->wpa);
07783eaa 195 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
6fc6879b 196 wpa_s->reassociate = 1;
48b84f18
BG		 197
198 /*
199 * If we timed out, the AP or the local radio may be busy.
200 * So, wait a second until scanning again.
201 */
202 wpa_supplicant_req_scan(wpa_s, 1, 0);
99fcd404 203
f85f545e 204 wpas_p2p_continue_after_scan(wpa_s);
6fc6879b
JM		 205}
206
207
208/**
209 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
210 * @wpa_s: Pointer to wpa_supplicant data
211 * @sec: Number of seconds after which to time out authentication
212 * @usec: Number of microseconds after which to time out authentication
213 *
214 * This function is used to schedule a timeout for the current authentication
215 * attempt.
216 */
217void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
218 int sec, int usec)
219{
a2a535f8 220 if (wpa_s->conf->ap_scan == 0 &&
c2a04078 221 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
6fc6879b
JM		 222 return;
223
f049052b 224 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
6fc6879b
JM		 225 "%d usec", sec, usec);
226 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
227 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
228}
229
230
231/**
232 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
233 * @wpa_s: Pointer to wpa_supplicant data
234 *
235 * This function is used to cancel authentication timeout scheduled with
236 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
237 * been completed.
238 */
239void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
240{
f049052b 241 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
6fc6879b
JM		 242 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
243 wpa_blacklist_del(wpa_s, wpa_s->bssid);
244}
245
246
247/**
248 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
249 * @wpa_s: Pointer to wpa_supplicant data
250 *
251 * This function is used to configure EAPOL state machine based on the selected
252 * authentication mode.
253 */
254void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
255{
256#ifdef IEEE8021X_EAPOL
257 struct eapol_config eapol_conf;
258 struct wpa_ssid *ssid = wpa_s->current_ssid;
259
53895c3b 260#ifdef CONFIG_IBSS_RSN
d7dcba70 261 if (ssid->mode == WPAS_MODE_IBSS &&
53895c3b
JM		 262 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
263 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
264 /*
265 * RSN IBSS authentication is per-STA and we can disable the
266 * per-BSSID EAPOL authentication.
267 */
268 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
269 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
270 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
271 return;
272 }
273#endif /* CONFIG_IBSS_RSN */
274
0a40ec6a
JM		 275 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
276 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
277
6fc6879b
JM		 278 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
279 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
280 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
281 else
282 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
283
284 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
285 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
286 eapol_conf.accept_802_1x_keys = 1;
287 eapol_conf.required_keys = 0;
288 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
289 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
290 }
291 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
292 eapol_conf.required_keys |=
293 EAPOL_REQUIRE_KEY_BROADCAST;
294 }
295
a2a535f8 296 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
6fc6879b 297 eapol_conf.required_keys = 0;
6fc6879b 298 }
a2a535f8 299 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
6fc6879b 300 eapol_conf.workaround = ssid->eap_workaround;
56586197
JM		 301 eapol_conf.eap_disabled =
302 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
ad08c363
JM		 303 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
304 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
a5d44ac0 305 eapol_conf.external_sim = wpa_s->conf->external_sim;
6fc6879b
JM		 306 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
307#endif /* IEEE8021X_EAPOL */
308}
309
310
311/**
312 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
313 * @wpa_s: Pointer to wpa_supplicant data
314 * @ssid: Configuration data for the network
315 *
316 * This function is used to configure WPA state machine and related parameters
317 * to a mode where WPA is not enabled. This is called as part of the
318 * authentication configuration when the selected network does not use WPA.
319 */
320void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
321 struct wpa_ssid *ssid)
322{
323 int i;
324
ad08c363
JM		 325 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
326 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
327 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
6fc6879b
JM		 328 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
329 else
330 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
331 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
332 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
333 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
334 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
335 wpa_s->group_cipher = WPA_CIPHER_NONE;
336 wpa_s->mgmt_group_cipher = 0;
337
338 for (i = 0; i < NUM_WEP_KEYS; i++) {
339 if (ssid->wep_key_len[i] > 5) {
340 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
341 wpa_s->group_cipher = WPA_CIPHER_WEP104;
342 break;
343 } else if (ssid->wep_key_len[i] > 0) {
344 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
345 wpa_s->group_cipher = WPA_CIPHER_WEP40;
346 break;
347 }
348 }
349
350 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
351 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
352 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
353 wpa_s->pairwise_cipher);
354 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
355#ifdef CONFIG_IEEE80211W
356 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
357 wpa_s->mgmt_group_cipher);
358#endif /* CONFIG_IEEE80211W */
359
360 pmksa_cache_clear_current(wpa_s->wpa);
361}
362
363
6979582c 364void free_hw_features(struct wpa_supplicant *wpa_s)
6bf731e8
CL		 365{
366 int i;
367 if (wpa_s->hw.modes == NULL)
368 return;
369
370 for (i = 0; i < wpa_s->hw.num_modes; i++) {
371 os_free(wpa_s->hw.modes[i].channels);
372 os_free(wpa_s->hw.modes[i].rates);
373 }
374
375 os_free(wpa_s->hw.modes);
376 wpa_s->hw.modes = NULL;
377}
378
379
6fc6879b
JM		 380static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
381{
60b94c98 382 bgscan_deinit(wpa_s);
7c865c68 383 autoscan_deinit(wpa_s);
6fc6879b
JM		 384 scard_deinit(wpa_s->scard);
385 wpa_s->scard = NULL;
386 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
387 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
388 l2_packet_deinit(wpa_s->l2);
389 wpa_s->l2 = NULL;
390 if (wpa_s->l2_br) {
391 l2_packet_deinit(wpa_s->l2_br);
392 wpa_s->l2_br = NULL;
393 }
394
6fc6879b 395 if (wpa_s->conf != NULL) {
8e56d189
JM		 396 struct wpa_ssid *ssid;
397 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
398 wpas_notify_network_removed(wpa_s, ssid);
6fc6879b
JM		 399 }
400
401 os_free(wpa_s->confname);
402 wpa_s->confname = NULL;
403
e6304cad
DS		 404 os_free(wpa_s->confanother);
405 wpa_s->confanother = NULL;
406
6fc6879b
JM		 407 wpa_sm_set_eapol(wpa_s->wpa, NULL);
408 eapol_sm_deinit(wpa_s->eapol);
409 wpa_s->eapol = NULL;
410
411 rsn_preauth_deinit(wpa_s->wpa);
412
281ff0aa
GP		 413#ifdef CONFIG_TDLS
414 wpa_tdls_deinit(wpa_s->wpa);
415#endif /* CONFIG_TDLS */
416
6fc6879b
JM		 417 pmksa_candidate_free(wpa_s->wpa);
418 wpa_sm_deinit(wpa_s->wpa);
419 wpa_s->wpa = NULL;
420 wpa_blacklist_clear(wpa_s);
421
83922c2d 422 wpa_bss_deinit(wpa_s);
6fc6879b 423
831770bf 424 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
6fc6879b
JM		 425 wpa_supplicant_cancel_scan(wpa_s);
426 wpa_supplicant_cancel_auth_timeout(wpa_s);
01a17491
JM		 427 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
428#ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
429 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
430 wpa_s, NULL);
431#endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
6fc6879b 432
116654ce 433 wpas_wps_deinit(wpa_s);
11ef8d35 434
1ff73338
JM		 435 wpabuf_free(wpa_s->pending_eapol_rx);
436 wpa_s->pending_eapol_rx = NULL;
437
11ef8d35
JM		 438#ifdef CONFIG_IBSS_RSN
439 ibss_rsn_deinit(wpa_s->ibss_rsn);
440 wpa_s->ibss_rsn = NULL;
441#endif /* CONFIG_IBSS_RSN */
c2a04078 442
e29853bb 443 sme_deinit(wpa_s);
2d5b792d
JM		 444
445#ifdef CONFIG_AP
446 wpa_supplicant_ap_deinit(wpa_s);
447#endif /* CONFIG_AP */
b22128ef
JM		 448
449#ifdef CONFIG_P2P
450 wpas_p2p_deinit(wpa_s);
451#endif /* CONFIG_P2P */
f47d639d 452
24f6497c
JM		 453#ifdef CONFIG_OFFCHANNEL
454 offchannel_deinit(wpa_s);
455#endif /* CONFIG_OFFCHANNEL */
456
a4cba8f1
LC		 457 wpa_supplicant_cancel_sched_scan(wpa_s);
458
f47d639d
JM		 459 os_free(wpa_s->next_scan_freqs);
460 wpa_s->next_scan_freqs = NULL;
04ea7b79
JM		 461
462 gas_query_deinit(wpa_s->gas);
463 wpa_s->gas = NULL;
6bf731e8
CL		 464
465 free_hw_features(wpa_s);
d445a5cd
JM		 466
467 os_free(wpa_s->bssid_filter);
468 wpa_s->bssid_filter = NULL;
b6668734 469
6407f413
JM		 470 os_free(wpa_s->disallow_aps_bssid);
471 wpa_s->disallow_aps_bssid = NULL;
472 os_free(wpa_s->disallow_aps_ssid);
473 wpa_s->disallow_aps_ssid = NULL;
474
b6668734 475 wnm_bss_keep_alive_deinit(wpa_s);
e27d20bb
VK		 476#ifdef CONFIG_WNM
477 wnm_deallocate_memory(wpa_s);
478#endif /* CONFIG_WNM */
306ae225
JM		 479
480 ext_password_deinit(wpa_s->ext_pw);
481 wpa_s->ext_pw = NULL;
b1f12296
JM		 482
483 wpabuf_free(wpa_s->last_gas_resp);
a297201d
JM		 484
485 os_free(wpa_s->last_scan_res);
486 wpa_s->last_scan_res = NULL;
6fc6879b
JM		 487}
488
489
490/**
491 * wpa_clear_keys - Clear keys configured for the driver
492 * @wpa_s: Pointer to wpa_supplicant data
493 * @addr: Previously used BSSID or %NULL if not available
494 *
495 * This function clears the encryption keys that has been previously configured
496 * for the driver.
497 */
498void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
499{
6fc6879b
JM		 500 if (wpa_s->keys_cleared) {
501 /* Some drivers (e.g., ndiswrapper & NDIS drivers) seem to have
502 * timing issues with keys being cleared just before new keys
503 * are set or just after association or something similar. This
504 * shows up in group key handshake failing often because of the
505 * client not receiving the first encrypted packets correctly.
506 * Skipping some of the extra key clearing steps seems to help
507 * in completing group key handshake more reliably. */
f049052b
BG		 508 wpa_dbg(wpa_s, MSG_DEBUG, "No keys have been configured - "
509 "skip key clearing");
6fc6879b
JM		 510 return;
511 }
512
513 /* MLME-DELETEKEYS.request */
0382097e
JM		 514 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 0, 0, NULL, 0, NULL, 0);
515 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 1, 0, NULL, 0, NULL, 0);
516 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 2, 0, NULL, 0, NULL, 0);
517 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 3, 0, NULL, 0, NULL, 0);
0e27f655 518#ifdef CONFIG_IEEE80211W
0382097e
JM		 519 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 4, 0, NULL, 0, NULL, 0);
520 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 5, 0, NULL, 0, NULL, 0);
0e27f655 521#endif /* CONFIG_IEEE80211W */
6fc6879b
JM		 522 if (addr) {
523 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
524 0);
525 /* MLME-SETPROTECTION.request(None) */
526 wpa_drv_mlme_setprotection(
527 wpa_s, addr,
528 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
529 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
530 }
531 wpa_s->keys_cleared = 1;
532}
533
534
535/**
536 * wpa_supplicant_state_txt - Get the connection state name as a text string
537 * @state: State (wpa_state; WPA_*)
538 * Returns: The state name as a printable text string
539 */
71934751 540const char * wpa_supplicant_state_txt(enum wpa_states state)
6fc6879b
JM		 541{
542 switch (state) {
543 case WPA_DISCONNECTED:
544 return "DISCONNECTED";
545 case WPA_INACTIVE:
546 return "INACTIVE";
8401a6b0
JM		 547 case WPA_INTERFACE_DISABLED:
548 return "INTERFACE_DISABLED";
6fc6879b
JM		 549 case WPA_SCANNING:
550 return "SCANNING";
c2a04078
JM		 551 case WPA_AUTHENTICATING:
552 return "AUTHENTICATING";
6fc6879b
JM		 553 case WPA_ASSOCIATING:
554 return "ASSOCIATING";
555 case WPA_ASSOCIATED:
556 return "ASSOCIATED";
557 case WPA_4WAY_HANDSHAKE:
558 return "4WAY_HANDSHAKE";
559 case WPA_GROUP_HANDSHAKE:
560 return "GROUP_HANDSHAKE";
561 case WPA_COMPLETED:
562 return "COMPLETED";
563 default:
564 return "UNKNOWN";
565 }
566}
567
568
cfe53c9a
PS		 569#ifdef CONFIG_BGSCAN
570
571static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
572{
31392709
HD		 573 const char *name;
574
575 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
576 name = wpa_s->current_ssid->bgscan;
577 else
578 name = wpa_s->conf->bgscan;
579 if (name == NULL)
580 return;
0096c427
JM		 581 if (wpas_driver_bss_selection(wpa_s))
582 return;
cfe53c9a
PS		 583 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
584 return;
585
586 bgscan_deinit(wpa_s);
31392709
HD		 587 if (wpa_s->current_ssid) {
588 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
cfe53c9a
PS		 589 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
590 "bgscan");
591 /*
592 * Live without bgscan; it is only used as a roaming
593 * optimization, so the initial connection is not
594 * affected.
595 */
6409b7a7
YD		 596 } else {
597 struct wpa_scan_results *scan_res;
cfe53c9a 598 wpa_s->bgscan_ssid = wpa_s->current_ssid;
6409b7a7
YD		 599 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
600 0);
601 if (scan_res) {
602 bgscan_notify_scan(wpa_s, scan_res);
603 wpa_scan_results_free(scan_res);
604 }
605 }
cfe53c9a
PS		 606 } else
607 wpa_s->bgscan_ssid = NULL;
608}
609
610
611static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
612{
613 if (wpa_s->bgscan_ssid != NULL) {
614 bgscan_deinit(wpa_s);
615 wpa_s->bgscan_ssid = NULL;
616 }
617}
618
619#endif /* CONFIG_BGSCAN */
620
621
7c865c68
TB		 622static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
623{
99218999 624 if (autoscan_init(wpa_s, 0))
7c865c68
TB		 625 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
626}
627
628
629static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
630{
631 autoscan_deinit(wpa_s);
632}
633
634
c3d12238
JM		 635void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
636{
637 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
638 wpa_s->wpa_state == WPA_SCANNING) {
639 autoscan_deinit(wpa_s);
640 wpa_supplicant_start_autoscan(wpa_s);
641 }
642}
643
644
6fc6879b
JM		 645/**
646 * wpa_supplicant_set_state - Set current connection state
647 * @wpa_s: Pointer to wpa_supplicant data
648 * @state: The new connection state
649 *
650 * This function is called whenever the connection state changes, e.g.,
651 * association is completed for WPA/WPA2 4-Way Handshake is started.
652 */
71934751
JM		 653void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
654 enum wpa_states state)
6fc6879b 655{
27f43d8d
MH		 656 enum wpa_states old_state = wpa_s->wpa_state;
657
f049052b
BG		 658 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
659 wpa_supplicant_state_txt(wpa_s->wpa_state),
660 wpa_supplicant_state_txt(state));
6fc6879b 661
cb8564b1
DW		 662 if (state != WPA_SCANNING)
663 wpa_supplicant_notify_scanning(wpa_s, 0);
664
6fc6879b 665 if (state == WPA_COMPLETED && wpa_s->new_connection) {
6fc6879b 666 struct wpa_ssid *ssid = wpa_s->current_ssid;
7d37a357 667#if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
6fc6879b 668 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
1cfc6787
JM		 669 MACSTR " completed [id=%d id_str=%s]",
670 MAC2STR(wpa_s->bssid),
6fc6879b
JM		 671 ssid ? ssid->id : -1,
672 ssid && ssid->id_str ? ssid->id_str : "");
673#endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
00e5e3d5 674 wpas_clear_temp_disabled(wpa_s, ssid, 1);
f1a52633 675 wpa_s->extra_blacklist_count = 0;
6fc6879b 676 wpa_s->new_connection = 0;
6fc6879b 677 wpa_drv_set_operstate(wpa_s, 1);
99ac2913
FF		 678#ifndef IEEE8021X_EAPOL
679 wpa_drv_set_supp_port(wpa_s, 1);
680#endif /* IEEE8021X_EAPOL */
17a4734d 681 wpa_s->after_wps = 0;
4d9fb08d 682 wpa_s->known_wps_freq = 0;
b22128ef
JM		 683#ifdef CONFIG_P2P
684 wpas_p2p_completed(wpa_s);
685#endif /* CONFIG_P2P */
c3701c66
RM		 686
687 sme_sched_obss_scan(wpa_s, 1);
6fc6879b
JM		 688 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
689 state == WPA_ASSOCIATED) {
690 wpa_s->new_connection = 1;
691 wpa_drv_set_operstate(wpa_s, 0);
99ac2913
FF		 692#ifndef IEEE8021X_EAPOL
693 wpa_drv_set_supp_port(wpa_s, 0);
694#endif /* IEEE8021X_EAPOL */
c3701c66 695 sme_sched_obss_scan(wpa_s, 0);
6fc6879b
JM		 696 }
697 wpa_s->wpa_state = state;
27f43d8d 698
cfe53c9a
PS		 699#ifdef CONFIG_BGSCAN
700 if (state == WPA_COMPLETED)
701 wpa_supplicant_start_bgscan(wpa_s);
702 else
703 wpa_supplicant_stop_bgscan(wpa_s);
704#endif /* CONFIG_BGSCAN */
705
7c865c68
TB		 706 if (state == WPA_AUTHENTICATING)
707 wpa_supplicant_stop_autoscan(wpa_s);
708
709 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
710 wpa_supplicant_start_autoscan(wpa_s);
711
5bbf9f10 712 if (wpa_s->wpa_state != old_state) {
27f43d8d 713 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
5bbf9f10
PS		 714
715 if (wpa_s->wpa_state == WPA_COMPLETED ||
716 old_state == WPA_COMPLETED)
717 wpas_notify_auth_changed(wpa_s);
718 }
6fc6879b
JM		 719}
720
721
1a1bf008
JM		 722void wpa_supplicant_terminate_proc(struct wpa_global *global)
723{
724 int pending = 0;
725#ifdef CONFIG_WPS
726 struct wpa_supplicant *wpa_s = global->ifaces;
727 while (wpa_s) {
20625e97
JM		 728#ifdef CONFIG_P2P
729 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
730 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
731 wpas_p2p_disconnect(wpa_s);
732#endif /* CONFIG_P2P */
1a1bf008
JM		 733 if (wpas_wps_terminate_pending(wpa_s) == 1)
734 pending = 1;
735 wpa_s = wpa_s->next;
736 }
737#endif /* CONFIG_WPS */
738 if (pending)
739 return;
740 eloop_terminate();
741}
742
743
0456ea16 744static void wpa_supplicant_terminate(int sig, void *signal_ctx)
6fc6879b 745{
0456ea16 746 struct wpa_global *global = signal_ctx;
1a1bf008 747 wpa_supplicant_terminate_proc(global);
6fc6879b
JM		 748}
749
750
b22128ef 751void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
6fc6879b 752{
71934751 753 enum wpa_states old_state = wpa_s->wpa_state;
27f43d8d 754
6fc6879b
JM		 755 wpa_s->pairwise_cipher = 0;
756 wpa_s->group_cipher = 0;
757 wpa_s->mgmt_group_cipher = 0;
758 wpa_s->key_mgmt = 0;
8401a6b0 759 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
99218999 760 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
27f43d8d
MH		 761
762 if (wpa_s->wpa_state != old_state)
763 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
6fc6879b
JM		 764}
765
766
767/**
768 * wpa_supplicant_reload_configuration - Reload configuration data
769 * @wpa_s: Pointer to wpa_supplicant data
770 * Returns: 0 on success or -1 if configuration parsing failed
771 *
772 * This function can be used to request that the configuration data is reloaded
773 * (e.g., after configuration file change). This function is reloading
774 * configuration only for one interface, so this may need to be called multiple
775 * times if %wpa_supplicant is controlling multiple interfaces and all
776 * interfaces need reconfiguration.
777 */
778int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
779{
780 struct wpa_config *conf;
781 int reconf_ctrl;
8bac466b
JM		 782 int old_ap_scan;
783
6fc6879b
JM		 784 if (wpa_s->confname == NULL)
785 return -1;
e6304cad 786 conf = wpa_config_read(wpa_s->confname, NULL);
6fc6879b
JM		 787 if (conf == NULL) {
788 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
789 "file '%s' - exiting", wpa_s->confname);
790 return -1;
791 }
e6304cad
DS		 792 wpa_config_read(wpa_s->confanother, conf);
793
611aea7d 794 conf->changed_parameters = (unsigned int) -1;
6fc6879b
JM		 795
796 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
797 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
798 os_strcmp(conf->ctrl_interface,
799 wpa_s->conf->ctrl_interface) != 0);
800
801 if (reconf_ctrl && wpa_s->ctrl_iface) {
802 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
803 wpa_s->ctrl_iface = NULL;
804 }
805
806 eapol_sm_invalidate_cached_session(wpa_s->eapol);
7b7ce8aa
JM		 807 if (wpa_s->current_ssid) {
808 wpa_supplicant_deauthenticate(wpa_s,
809 WLAN_REASON_DEAUTH_LEAVING);
810 }
8bac466b 811
6fc6879b
JM		 812 /*
813 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
814 * pkcs11_engine_path, pkcs11_module_path.
815 */
56586197 816 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
6fc6879b
JM		 817 /*
818 * Clear forced success to clear EAP state for next
819 * authentication.
820 */
821 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
822 }
823 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
824 wpa_sm_set_config(wpa_s->wpa, NULL);
d8a790b9 825 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
6fc6879b
JM		 826 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
827 rsn_preauth_deinit(wpa_s->wpa);
8bac466b
JM		 828
829 old_ap_scan = wpa_s->conf->ap_scan;
6fc6879b
JM		 830 wpa_config_free(wpa_s->conf);
831 wpa_s->conf = conf;
8bac466b
JM		 832 if (old_ap_scan != wpa_s->conf->ap_scan)
833 wpas_notify_ap_scan_changed(wpa_s);
834
6fc6879b
JM		 835 if (reconf_ctrl)
836 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
837
611aea7d
JM		 838 wpa_supplicant_update_config(wpa_s);
839
6fc6879b 840 wpa_supplicant_clear_status(wpa_s);
349493bd 841 if (wpa_supplicant_enabled_networks(wpa_s)) {
43a38635
JM		 842 wpa_s->reassociate = 1;
843 wpa_supplicant_req_scan(wpa_s, 0, 0);
844 }
f049052b 845 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
6fc6879b
JM		 846 return 0;
847}
848
849
0456ea16 850static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
6fc6879b 851{
0456ea16 852 struct wpa_global *global = signal_ctx;
6fc6879b 853 struct wpa_supplicant *wpa_s;
6fc6879b 854 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
f049052b
BG		 855 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
856 sig);
6fc6879b 857 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
1a1bf008 858 wpa_supplicant_terminate_proc(global);
6fc6879b
JM		 859 }
860 }
861}
862
863
508545f3 864enum wpa_key_mgmt key_mgmt2driver(int key_mgmt)
6fc6879b
JM		 865{
866 switch (key_mgmt) {
867 case WPA_KEY_MGMT_NONE:
868 return KEY_MGMT_NONE;
869 case WPA_KEY_MGMT_IEEE8021X_NO_WPA:
870 return KEY_MGMT_802_1X_NO_WPA;
871 case WPA_KEY_MGMT_IEEE8021X:
872 return KEY_MGMT_802_1X;
873 case WPA_KEY_MGMT_WPA_NONE:
874 return KEY_MGMT_WPA_NONE;
875 case WPA_KEY_MGMT_FT_IEEE8021X:
876 return KEY_MGMT_FT_802_1X;
877 case WPA_KEY_MGMT_FT_PSK:
878 return KEY_MGMT_FT_PSK;
56586197
JM		 879 case WPA_KEY_MGMT_IEEE8021X_SHA256:
880 return KEY_MGMT_802_1X_SHA256;
881 case WPA_KEY_MGMT_PSK_SHA256:
882 return KEY_MGMT_PSK_SHA256;
ad08c363
JM		 883 case WPA_KEY_MGMT_WPS:
884 return KEY_MGMT_WPS;
6fc6879b
JM		 885 case WPA_KEY_MGMT_PSK:
886 default:
887 return KEY_MGMT_PSK;
888 }
889}
890
891
892static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
893 struct wpa_ssid *ssid,
894 struct wpa_ie_data *ie)
895{
896 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
897 if (ret) {
898 if (ret == -2) {
899 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
900 "from association info");
901 }
902 return -1;
903 }
904
f049052b
BG		 905 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
906 "cipher suites");
6fc6879b
JM		 907 if (!(ie->group_cipher & ssid->group_cipher)) {
908 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
909 "cipher 0x%x (mask 0x%x) - reject",
910 ie->group_cipher, ssid->group_cipher);
911 return -1;
912 }
913 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
914 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
915 "cipher 0x%x (mask 0x%x) - reject",
916 ie->pairwise_cipher, ssid->pairwise_cipher);
917 return -1;
918 }
919 if (!(ie->key_mgmt & ssid->key_mgmt)) {
920 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
921 "management 0x%x (mask 0x%x) - reject",
922 ie->key_mgmt, ssid->key_mgmt);
923 return -1;
924 }
925
926#ifdef CONFIG_IEEE80211W
0b60b0aa 927 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
62d49803
JM		 928 (ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
929 wpa_s->conf->pmf : ssid->ieee80211w) ==
930 MGMT_FRAME_PROTECTION_REQUIRED) {
6fc6879b
JM		 931 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
932 "that does not support management frame protection - "
933 "reject");
934 return -1;
935 }
936#endif /* CONFIG_IEEE80211W */
937
938 return 0;
939}
940
941
942/**
943 * wpa_supplicant_set_suites - Set authentication and encryption parameters
944 * @wpa_s: Pointer to wpa_supplicant data
945 * @bss: Scan results for the selected BSS, or %NULL if not available
946 * @ssid: Configuration data for the selected network
947 * @wpa_ie: Buffer for the WPA/RSN IE
948 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
949 * used buffer length in case the functions returns success.
950 * Returns: 0 on success or -1 on failure
951 *
952 * This function is used to configure authentication and encryption parameters
953 * based on the network configuration and scan result for the selected BSS (if
954 * available).
955 */
956int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
6fa81a3b 957 struct wpa_bss *bss, struct wpa_ssid *ssid,
6fc6879b
JM		 958 u8 *wpa_ie, size_t *wpa_ie_len)
959{
960 struct wpa_ie_data ie;
961 int sel, proto;
962 const u8 *bss_wpa, *bss_rsn;
963
964 if (bss) {
6fa81a3b
JM		 965 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
966 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
6fc6879b
JM		 967 } else
968 bss_wpa = bss_rsn = NULL;
969
970 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
971 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
972 (ie.group_cipher & ssid->group_cipher) &&
973 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
974 (ie.key_mgmt & ssid->key_mgmt)) {
f049052b 975 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
6fc6879b
JM		 976 proto = WPA_PROTO_RSN;
977 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
978 wpa_parse_wpa_ie(bss_wpa, 2 +bss_wpa[1], &ie) == 0 &&
979 (ie.group_cipher & ssid->group_cipher) &&
980 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
981 (ie.key_mgmt & ssid->key_mgmt)) {
f049052b 982 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
6fc6879b
JM		 983 proto = WPA_PROTO_WPA;
984 } else if (bss) {
985 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
986 return -1;
987 } else {
988 if (ssid->proto & WPA_PROTO_RSN)
989 proto = WPA_PROTO_RSN;
990 else
991 proto = WPA_PROTO_WPA;
992 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
993 os_memset(&ie, 0, sizeof(ie));
994 ie.group_cipher = ssid->group_cipher;
995 ie.pairwise_cipher = ssid->pairwise_cipher;
996 ie.key_mgmt = ssid->key_mgmt;
997#ifdef CONFIG_IEEE80211W
998 ie.mgmt_group_cipher =
70f8cc8e 999 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
6fc6879b
JM		 1000 WPA_CIPHER_AES_128_CMAC : 0;
1001#endif /* CONFIG_IEEE80211W */
f049052b
BG		 1002 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1003 "based on configuration");
6fc6879b
JM		 1004 } else
1005 proto = ie.proto;
1006 }
1007
f049052b
BG		 1008 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1009 "pairwise %d key_mgmt %d proto %d",
1010 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
6fc6879b
JM		 1011#ifdef CONFIG_IEEE80211W
1012 if (ssid->ieee80211w) {
f049052b
BG		 1013 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1014 ie.mgmt_group_cipher);
6fc6879b
JM		 1015 }
1016#endif /* CONFIG_IEEE80211W */
1017
64fa840a 1018 wpa_s->wpa_proto = proto;
6fc6879b
JM		 1019 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1020 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1021 !!(ssid->proto & WPA_PROTO_RSN));
1022
1023 if (bss || !wpa_s->ap_ies_from_associnfo) {
1024 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1025 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1026 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1027 bss_rsn ? 2 + bss_rsn[1] : 0))
1028 return -1;
1029 }
1030
1031 sel = ie.group_cipher & ssid->group_cipher;
edbd2a19
JM		 1032 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1033 if (wpa_s->group_cipher < 0) {
f049052b
BG		 1034 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1035 "cipher");
6fc6879b
JM		 1036 return -1;
1037 }
edbd2a19
JM		 1038 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1039 wpa_cipher_txt(wpa_s->group_cipher));
6fc6879b
JM		 1040
1041 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
edbd2a19
JM		 1042 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1043 if (wpa_s->pairwise_cipher < 0) {
f049052b
BG		 1044 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1045 "cipher");
6fc6879b
JM		 1046 return -1;
1047 }
edbd2a19
JM		 1048 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1049 wpa_cipher_txt(wpa_s->pairwise_cipher));
6fc6879b
JM		 1050
1051 sel = ie.key_mgmt & ssid->key_mgmt;
c10347f2
JM		 1052#ifdef CONFIG_SAE
1053 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1054 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1055#endif /* CONFIG_SAE */
6fc6879b
JM		 1056 if (0) {
1057#ifdef CONFIG_IEEE80211R
1058 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1059 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
f049052b 1060 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
6fc6879b
JM		 1061 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1062 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
f049052b 1063 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
6fc6879b 1064#endif /* CONFIG_IEEE80211R */
c10347f2
JM		 1065#ifdef CONFIG_SAE
1066 } else if (sel & WPA_KEY_MGMT_SAE) {
1067 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1068 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1069 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1070 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1071 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1072#endif /* CONFIG_SAE */
56586197
JM		 1073#ifdef CONFIG_IEEE80211W
1074 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1075 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
f049052b 1076 wpa_dbg(wpa_s, MSG_DEBUG,
56586197
JM		 1077 "WPA: using KEY_MGMT 802.1X with SHA256");
1078 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1079 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
f049052b 1080 wpa_dbg(wpa_s, MSG_DEBUG,
56586197
JM		 1081 "WPA: using KEY_MGMT PSK with SHA256");
1082#endif /* CONFIG_IEEE80211W */
6fc6879b
JM		 1083 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1084 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
f049052b 1085 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
6fc6879b
JM		 1086 } else if (sel & WPA_KEY_MGMT_PSK) {
1087 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
f049052b 1088 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
6fc6879b
JM		 1089 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1090 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
f049052b 1091 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
6fc6879b 1092 } else {
f049052b
BG		 1093 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1094 "authenticated key management type");
6fc6879b
JM		 1095 return -1;
1096 }
1097
1098 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1099 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1100 wpa_s->pairwise_cipher);
1101 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1102
1103#ifdef CONFIG_IEEE80211W
1104 sel = ie.mgmt_group_cipher;
62d49803
JM		 1105 if ((ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1106 wpa_s->conf->pmf : ssid->ieee80211w) == NO_MGMT_FRAME_PROTECTION ||
0b60b0aa 1107 !(ie.capabilities & WPA_CAPABILITY_MFPC))
6fc6879b
JM		 1108 sel = 0;
1109 if (sel & WPA_CIPHER_AES_128_CMAC) {
1110 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
f049052b 1111 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
6fc6879b
JM		 1112 "AES-128-CMAC");
1113 } else {
1114 wpa_s->mgmt_group_cipher = 0;
f049052b 1115 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
6fc6879b
JM		 1116 }
1117 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1118 wpa_s->mgmt_group_cipher);
62d49803
JM		 1119 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1120 (ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1121 wpa_s->conf->pmf : ssid->ieee80211w));
6fc6879b
JM		 1122#endif /* CONFIG_IEEE80211W */
1123
1124 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
f049052b 1125 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
6fc6879b
JM		 1126 return -1;
1127 }
1128
0bf927a0 1129 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
6fc6879b 1130 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN);
7d232e23
ZC		 1131#ifndef CONFIG_NO_PBKDF2
1132 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1133 ssid->passphrase) {
1134 u8 psk[PMK_LEN];
986de33d
JM		 1135 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1136 4096, psk, PMK_LEN);
7d232e23
ZC		 1137 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1138 psk, PMK_LEN);
1139 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1140 }
1141#endif /* CONFIG_NO_PBKDF2 */
9173b16f
JM		 1142#ifdef CONFIG_EXT_PASSWORD
1143 if (ssid->ext_psk) {
1144 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1145 ssid->ext_psk);
1146 char pw_str[64 + 1];
1147 u8 psk[PMK_LEN];
1148
1149 if (pw == NULL) {
1150 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1151 "found from external storage");
1152 return -1;
1153 }
1154
1155 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1156 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1157 "PSK length %d in external storage",
1158 (int) wpabuf_len(pw));
1159 ext_password_free(pw);
1160 return -1;
1161 }
1162
1163 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1164 pw_str[wpabuf_len(pw)] = '\0';
1165
1166#ifndef CONFIG_NO_PBKDF2
1167 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1168 {
986de33d
JM		 1169 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1170 4096, psk, PMK_LEN);
9173b16f
JM		 1171 os_memset(pw_str, 0, sizeof(pw_str));
1172 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1173 "external passphrase)",
1174 psk, PMK_LEN);
1175 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1176 } else
1177#endif /* CONFIG_NO_PBKDF2 */
1178 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1179 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1180 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1181 "Invalid PSK hex string");
1182 os_memset(pw_str, 0, sizeof(pw_str));
1183 ext_password_free(pw);
1184 return -1;
1185 }
1186 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1187 } else {
1188 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1189 "PSK available");
1190 os_memset(pw_str, 0, sizeof(pw_str));
1191 ext_password_free(pw);
1192 return -1;
1193 }
1194
1195 os_memset(pw_str, 0, sizeof(pw_str));
1196 ext_password_free(pw);
1197 }
1198#endif /* CONFIG_EXT_PASSWORD */
7d232e23 1199 } else
6fc6879b
JM		 1200 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1201
1202 return 0;
1203}
1204
1205
8cd6b7bc 1206static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
03e47c9c 1207{
8cd6b7bc 1208 *pos = 0x00;
03e47c9c 1209
8cd6b7bc
JB		 1210 switch (idx) {
1211 case 0: /* Bits 0-7 */
1212 break;
1213 case 1: /* Bits 8-15 */
1214 break;
1215 case 2: /* Bits 16-23 */
1216#ifdef CONFIG_WNM
1217 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1218 *pos |= 0x08; /* Bit 19 - BSS Transition */
1219#endif /* CONFIG_WNM */
1220 break;
1221 case 3: /* Bits 24-31 */
1222#ifdef CONFIG_WNM
1223 *pos |= 0x02; /* Bit 25 - SSID List */
1224#endif /* CONFIG_WNM */
03e47c9c 1225#ifdef CONFIG_INTERWORKING
8cd6b7bc
JB		 1226 if (wpa_s->conf->interworking)
1227 *pos |= 0x80; /* Bit 31 - Interworking */
03e47c9c 1228#endif /* CONFIG_INTERWORKING */
8cd6b7bc
JB		 1229 break;
1230 case 4: /* Bits 32-39 */
56f5af48
JM		 1231#ifdef CONFIG_INTERWORKING
1232 *pos |= 0x01; /* Bit 32 - QoS Map */
1233#endif /* CONFIG_INTERWORKING */
8cd6b7bc
JB		 1234 break;
1235 case 5: /* Bits 40-47 */
1236 break;
1237 case 6: /* Bits 48-55 */
1238 break;
1239 }
1240}
03e47c9c 1241
03e47c9c 1242
8cd6b7bc
JB		 1243int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf)
1244{
1245 u8 *pos = buf;
1246 u8 len = 4, i;
1247
1248 if (len < wpa_s->extended_capa_len)
1249 len = wpa_s->extended_capa_len;
03e47c9c
JM		 1250
1251 *pos++ = WLAN_EID_EXT_CAPAB;
8cd6b7bc
JB		 1252 *pos++ = len;
1253 for (i = 0; i < len; i++, pos++) {
1254 wpas_ext_capab_byte(wpa_s, pos, i);
1255
1256 if (i < wpa_s->extended_capa_len) {
1257 *pos &= ~wpa_s->extended_capa_mask[i];
1258 *pos |= wpa_s->extended_capa[i];
1259 }
1260 }
03e47c9c 1261
3db5439a
JM		 1262 while (len > 0 && buf[1 + len] == 0) {
1263 len--;
1264 buf[1] = len;
1265 }
1266 if (len == 0)
1267 return 0;
1268
1269 return 2 + len;
03e47c9c
JM		 1270}
1271
1272
6fc6879b
JM		 1273/**
1274 * wpa_supplicant_associate - Request association
1275 * @wpa_s: Pointer to wpa_supplicant data
1276 * @bss: Scan results for the selected BSS, or %NULL if not available
1277 * @ssid: Configuration data for the selected network
1278 *
1279 * This function is used to request %wpa_supplicant to associate with a BSS.
1280 */
1281void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
6fa81a3b 1282 struct wpa_bss *bss, struct wpa_ssid *ssid)
6fc6879b 1283{
5f3a6aa0 1284 u8 wpa_ie[200];
6fc6879b 1285 size_t wpa_ie_len;
8bac466b 1286 int use_crypt, ret, i, bssid_changed;
abd9fafa 1287 int algs = WPA_AUTH_ALG_OPEN;
71934751 1288 enum wpa_cipher cipher_pairwise, cipher_group;
6fc6879b
JM		 1289 struct wpa_driver_associate_params params;
1290 int wep_keys_set = 0;
6fc6879b 1291 int assoc_failed = 0;
8bac466b 1292 struct wpa_ssid *old_ssid;
80e8a5ee
BG		 1293#ifdef CONFIG_HT_OVERRIDES
1294 struct ieee80211_ht_capabilities htcaps;
1295 struct ieee80211_ht_capabilities htcaps_mask;
1296#endif /* CONFIG_HT_OVERRIDES */
6fc6879b 1297
78177a00
JM		 1298#ifdef CONFIG_IBSS_RSN
1299 ibss_rsn_deinit(wpa_s->ibss_rsn);
1300 wpa_s->ibss_rsn = NULL;
1301#endif /* CONFIG_IBSS_RSN */
1302
2c5d725c
JM		 1303 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1304 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1581b38b
JM		 1305#ifdef CONFIG_AP
1306 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
f049052b
BG		 1307 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1308 "mode");
1581b38b
JM		 1309 return;
1310 }
8c981d17
DW		 1311 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1312 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
b2b688d1
VKE		 1313 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1314 wpas_p2p_ap_setup_failed(wpa_s);
8c981d17
DW		 1315 return;
1316 }
8f770587 1317 wpa_s->current_bss = bss;
1581b38b 1318#else /* CONFIG_AP */
f049052b
BG		 1319 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1320 "the build");
1581b38b
JM		 1321#endif /* CONFIG_AP */
1322 return;
1323 }
1324
52c9e6f3 1325#ifdef CONFIG_TDLS
95cb2d88
JM		 1326 if (bss)
1327 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1328 bss->ie_len);
52c9e6f3
JM		 1329#endif /* CONFIG_TDLS */
1330
5cc4d64b
JM		 1331 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1332 ssid->mode == IEEE80211_MODE_INFRA) {
c2a04078
JM		 1333 sme_authenticate(wpa_s, bss, ssid);
1334 return;
1335 }
1336
0c80427d 1337 os_memset(&params, 0, sizeof(params));
6fc6879b 1338 wpa_s->reassociate = 0;
22628eca 1339 if (bss && !wpas_driver_bss_selection(wpa_s)) {
6fc6879b 1340#ifdef CONFIG_IEEE80211R
6fa81a3b 1341 const u8 *ie, *md = NULL;
6fc6879b 1342#endif /* CONFIG_IEEE80211R */
6fc6879b
JM		 1343 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
1344 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
6fa81a3b 1345 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
8bac466b 1346 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
6fc6879b
JM		 1347 os_memset(wpa_s->bssid, 0, ETH_ALEN);
1348 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
8bac466b
JM		 1349 if (bssid_changed)
1350 wpas_notify_bssid_changed(wpa_s);
6fc6879b 1351#ifdef CONFIG_IEEE80211R
6fa81a3b 1352 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
6fc6879b
JM		 1353 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
1354 md = ie + 2;
e7846b68 1355 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
91a05482
JM		 1356 if (md) {
1357 /* Prepare for the next transition */
76b7981d 1358 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
91a05482 1359 }
6fc6879b 1360#endif /* CONFIG_IEEE80211R */
24c23d1b
JM		 1361#ifdef CONFIG_WPS
1362 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
1363 wpa_s->conf->ap_scan == 2 &&
1364 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
1365 /* Use ap_scan==1 style network selection to find the network
1366 */
4115303b 1367 wpa_s->scan_req = MANUAL_SCAN_REQ;
24c23d1b
JM		 1368 wpa_s->reassociate = 1;
1369 wpa_supplicant_req_scan(wpa_s, 0, 0);
1370 return;
1371#endif /* CONFIG_WPS */
6fc6879b
JM		 1372 } else {
1373 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
1374 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
1375 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1376 }
a4cba8f1 1377 wpa_supplicant_cancel_sched_scan(wpa_s);
6fc6879b
JM		 1378 wpa_supplicant_cancel_scan(wpa_s);
1379
1380 /* Starting new association, so clear the possibly used WPA IE from the
1381 * previous association. */
1382 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
1383
1384#ifdef IEEE8021X_EAPOL
1385 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1386 if (ssid->leap) {
1387 if (ssid->non_leap == 0)
abd9fafa 1388 algs = WPA_AUTH_ALG_LEAP;
6fc6879b 1389 else
abd9fafa 1390 algs |= WPA_AUTH_ALG_LEAP;
6fc6879b
JM		 1391 }
1392 }
1393#endif /* IEEE8021X_EAPOL */
f049052b 1394 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
6fc6879b 1395 if (ssid->auth_alg) {
abd9fafa 1396 algs = ssid->auth_alg;
f049052b
BG		 1397 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
1398 "0x%x", algs);
6fc6879b 1399 }
6fc6879b 1400
6fa81a3b
JM		 1401 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
1402 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
0bf927a0 1403 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
6fc6879b 1404 int try_opportunistic;
6e202021
JM		 1405 try_opportunistic = (ssid->proactive_key_caching < 0 ?
1406 wpa_s->conf->okc :
1407 ssid->proactive_key_caching) &&
6fc6879b
JM		 1408 (ssid->proto & WPA_PROTO_RSN);
1409 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
b2a12c4f 1410 ssid, try_opportunistic) == 0)
6fc6879b
JM		 1411 eapol_sm_notify_pmkid_attempt(wpa_s->eapol, 1);
1412 wpa_ie_len = sizeof(wpa_ie);
1413 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
1414 wpa_ie, &wpa_ie_len)) {
f049052b
BG		 1415 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1416 "key management and encryption suites");
6fc6879b
JM		 1417 return;
1418 }
a3f7e518
JM		 1419 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
1420 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
1421 /*
1422 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
1423 * use non-WPA since the scan results did not indicate that the
1424 * AP is using WPA or WPA2.
1425 */
1426 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1427 wpa_ie_len = 0;
1428 wpa_s->wpa_proto = 0;
0bf927a0 1429 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
6fc6879b
JM		 1430 wpa_ie_len = sizeof(wpa_ie);
1431 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
1432 wpa_ie, &wpa_ie_len)) {
f049052b
BG		 1433 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1434 "key management and encryption suites (no "
1435 "scan results)");
6fc6879b
JM		 1436 return;
1437 }
ad08c363
JM		 1438#ifdef CONFIG_WPS
1439 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
b01c18a8
JM		 1440 struct wpabuf *wps_ie;
1441 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
ad08c363
JM		 1442 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
1443 wpa_ie_len = wpabuf_len(wps_ie);
1444 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
24386985
JM		 1445 } else
1446 wpa_ie_len = 0;
ad08c363
JM		 1447 wpabuf_free(wps_ie);
1448 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
0c80427d
JM		 1449 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
1450 params.wps = WPS_MODE_PRIVACY;
1451 else
1452 params.wps = WPS_MODE_OPEN;
cf546f1a 1453 wpa_s->wpa_proto = 0;
ad08c363 1454#endif /* CONFIG_WPS */
6fc6879b
JM		 1455 } else {
1456 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1457 wpa_ie_len = 0;
cf546f1a 1458 wpa_s->wpa_proto = 0;
6fc6879b
JM		 1459 }
1460
5f3a6aa0
JM		 1461#ifdef CONFIG_P2P
1462 if (wpa_s->global->p2p) {
1463 u8 *pos;
1464 size_t len;
1465 int res;
5f3a6aa0
JM		 1466 pos = wpa_ie + wpa_ie_len;
1467 len = sizeof(wpa_ie) - wpa_ie_len;
b8a8d677
JM		 1468 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
1469 ssid->p2p_group);
5f3a6aa0
JM		 1470 if (res >= 0)
1471 wpa_ie_len += res;
1472 }
72044390
JM		 1473
1474 wpa_s->cross_connect_disallowed = 0;
1475 if (bss) {
1476 struct wpabuf *p2p;
1477 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
1478 if (p2p) {
1479 wpa_s->cross_connect_disallowed =
1480 p2p_get_cross_connect_disallowed(p2p);
1481 wpabuf_free(p2p);
f049052b
BG		 1482 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
1483 "connection",
1484 wpa_s->cross_connect_disallowed ?
1485 "disallows" : "allows");
72044390
JM		 1486 }
1487 }
5f3a6aa0
JM		 1488#endif /* CONFIG_P2P */
1489
cb418324 1490#ifdef CONFIG_HS20
55a2df43 1491 if (is_hs20_network(wpa_s, ssid, bss)) {
cb418324
JM		 1492 struct wpabuf *hs20;
1493 hs20 = wpabuf_alloc(20);
1494 if (hs20) {
1495 wpas_hs20_add_indication(hs20);
1496 os_memcpy(wpa_ie + wpa_ie_len, wpabuf_head(hs20),
1497 wpabuf_len(hs20));
1498 wpa_ie_len += wpabuf_len(hs20);
1499 wpabuf_free(hs20);
1500 }
1501 }
1502#endif /* CONFIG_HS20 */
1503
8b3b803a
AH		 1504 /*
1505 * Workaround: Add Extended Capabilities element only if the AP
1506 * included this element in Beacon/Probe Response frames. Some older
1507 * APs seem to have interoperability issues if this element is
1508 * included, so while the standard may require us to include the
1509 * element in all cases, it is justifiable to skip it to avoid
1510 * interoperability issues.
1511 */
1512 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
1513 u8 ext_capab[10];
1514 int ext_capab_len;
1515 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab);
1516 if (ext_capab_len > 0) {
1517 u8 *pos = wpa_ie;
1518 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
1519 pos += 2 + pos[1];
1520 os_memmove(pos + ext_capab_len, pos,
1521 wpa_ie_len - (pos - wpa_ie));
1522 wpa_ie_len += ext_capab_len;
1523 os_memcpy(pos, ext_capab, ext_capab_len);
1524 }
92cbcf91 1525 }
92cbcf91 1526
6fc6879b
JM		 1527 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
1528 use_crypt = 1;
62769a88
JM		 1529 cipher_pairwise = wpa_cipher_to_suite_driver(wpa_s->pairwise_cipher);
1530 cipher_group = wpa_cipher_to_suite_driver(wpa_s->group_cipher);
6fc6879b
JM		 1531 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
1532 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1533 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
1534 use_crypt = 0;
1535 if (wpa_set_wep_keys(wpa_s, ssid)) {
1536 use_crypt = 1;
1537 wep_keys_set = 1;
1538 }
1539 }
ad08c363
JM		 1540 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
1541 use_crypt = 0;
6fc6879b
JM		 1542
1543#ifdef IEEE8021X_EAPOL
1544 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1545 if ((ssid->eapol_flags &
1546 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
1547 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
1548 !wep_keys_set) {
1549 use_crypt = 0;
1550 } else {
1551 /* Assume that dynamic WEP-104 keys will be used and
1552 * set cipher suites in order for drivers to expect
1553 * encryption. */
1554 cipher_pairwise = cipher_group = CIPHER_WEP104;
1555 }
1556 }
1557#endif /* IEEE8021X_EAPOL */
1558
1559 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
1560 /* Set the key before (and later after) association */
1561 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
1562 }
1563
6fc6879b 1564 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
6fc6879b 1565 if (bss) {
6fa81a3b
JM		 1566 params.ssid = bss->ssid;
1567 params.ssid_len = bss->ssid_len;
f15854d1
JM		 1568 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
1569 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
1570 MACSTR " freq=%u MHz based on scan results "
1571 "(bssid_set=%d)",
1572 MAC2STR(bss->bssid), bss->freq,
1573 ssid->bssid_set);
22628eca
JM		 1574 params.bssid = bss->bssid;
1575 params.freq = bss->freq;
1576 }
6fc6879b
JM		 1577 } else {
1578 params.ssid = ssid->ssid;
1579 params.ssid_len = ssid->ssid_len;
1580 }
9e2af29f
NC		 1581
1582 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
1583 wpa_s->conf->ap_scan == 2) {
1584 params.bssid = ssid->bssid;
1585 params.fixed_bssid = 1;
1586 }
1587
d7dcba70
JM		 1588 if (ssid->mode == WPAS_MODE_IBSS && ssid->frequency > 0 &&
1589 params.freq == 0)
6fc6879b
JM		 1590 params.freq = ssid->frequency; /* Initial channel for IBSS */
1591 params.wpa_ie = wpa_ie;
1592 params.wpa_ie_len = wpa_ie_len;
1593 params.pairwise_suite = cipher_pairwise;
1594 params.group_suite = cipher_group;
1595 params.key_mgmt_suite = key_mgmt2driver(wpa_s->key_mgmt);
64fa840a 1596 params.wpa_proto = wpa_s->wpa_proto;
6fc6879b
JM		 1597 params.auth_alg = algs;
1598 params.mode = ssid->mode;
1f6c0ab8 1599 params.bg_scan_period = ssid->bg_scan_period;
6fc6879b
JM		 1600 for (i = 0; i < NUM_WEP_KEYS; i++) {
1601 if (ssid->wep_key_len[i])
1602 params.wep_key[i] = ssid->wep_key[i];
1603 params.wep_key_len[i] = ssid->wep_key_len[i];
1604 }
1605 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
1606
c2a04078 1607 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
6fc6879b
JM		 1608 (params.key_mgmt_suite == KEY_MGMT_PSK ||
1609 params.key_mgmt_suite == KEY_MGMT_FT_PSK)) {
1610 params.passphrase = ssid->passphrase;
1611 if (ssid->psk_set)
1612 params.psk = ssid->psk;
1613 }
1614
36b15723
JM		 1615 params.drop_unencrypted = use_crypt;
1616
6fc6879b 1617#ifdef CONFIG_IEEE80211W
62d49803
JM		 1618 params.mgmt_frame_protection =
1619 ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1620 wpa_s->conf->pmf : ssid->ieee80211w;
1621 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
6fa81a3b 1622 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
97d3497e
JM		 1623 struct wpa_ie_data ie;
1624 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
1625 ie.capabilities &
1626 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
f049052b
BG		 1627 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
1628 "MFP: require MFP");
97d3497e
JM		 1629 params.mgmt_frame_protection =
1630 MGMT_FRAME_PROTECTION_REQUIRED;
1631 }
1632 }
6fc6879b
JM		 1633#endif /* CONFIG_IEEE80211W */
1634
ffad8858 1635 params.p2p = ssid->p2p_group;
6e3f4b89 1636
eea2fd9e
JM		 1637 if (wpa_s->parent->set_sta_uapsd)
1638 params.uapsd = wpa_s->parent->sta_uapsd;
1639 else
1640 params.uapsd = -1;
1641
80e8a5ee
BG		 1642#ifdef CONFIG_HT_OVERRIDES
1643 os_memset(&htcaps, 0, sizeof(htcaps));
1644 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
1645 params.htcaps = (u8 *) &htcaps;
1646 params.htcaps_mask = (u8 *) &htcaps_mask;
1647 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, &params);
1648#endif /* CONFIG_HT_OVERRIDES */
1649
8567866d
JJ		 1650#ifdef CONFIG_P2P
1651 /*
1652 * If multi-channel concurrency is not supported, check for any
1653 * frequency conflict. In case of any frequency conflict, remove the
1654 * least prioritized connection.
1655 */
1656 if (wpa_s->num_multichan_concurrent < 2) {
1657 int freq = wpa_drv_shared_freq(wpa_s);
1658 if (freq > 0 && freq != params.freq) {
1659 wpa_printf(MSG_DEBUG, "Shared interface with conflicting frequency found (%d != %d)",
1660 freq, params.freq);
1661 if (wpas_p2p_handle_frequency_conflicts(wpa_s,
1662 params.freq,
1663 ssid) < 0)
1664 return;
1665 }
1666 }
1667#endif /* CONFIG_P2P */
1668
17fbb751 1669 ret = wpa_drv_associate(wpa_s, &params);
6fc6879b
JM		 1670 if (ret < 0) {
1671 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
1672 "failed");
871f4dd0
JM		 1673 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
1674 /*
1675 * The driver is known to mean what is saying, so we
1676 * can stop right here; the association will not
1677 * succeed.
1678 */
1679 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
c1c02342 1680 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
871f4dd0
JM		 1681 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1682 return;
1683 }
6fc6879b
JM		 1684 /* try to continue anyway; new association will be tried again
1685 * after timeout */
1686 assoc_failed = 1;
1687 }
1688
1689 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
1690 /* Set the key after the association just in case association
1691 * cleared the previously configured key. */
1692 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
1693 /* No need to timeout authentication since there is no key
1694 * management. */
1695 wpa_supplicant_cancel_auth_timeout(wpa_s);
1696 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
53895c3b 1697#ifdef CONFIG_IBSS_RSN
d7dcba70 1698 } else if (ssid->mode == WPAS_MODE_IBSS &&
53895c3b
JM		 1699 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
1700 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
1701 /*
1702 * RSN IBSS authentication is per-STA and we can disable the
1703 * per-BSSID authentication.
1704 */
1705 wpa_supplicant_cancel_auth_timeout(wpa_s);
53895c3b 1706#endif /* CONFIG_IBSS_RSN */
6fc6879b
JM		 1707 } else {
1708 /* Timeout for IEEE 802.11 authentication and association */
1d3c75b3
DW		 1709 int timeout = 60;
1710
1711 if (assoc_failed) {
1712 /* give IBSS a bit more time */
d7dcba70 1713 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
1d3c75b3
DW		 1714 } else if (wpa_s->conf->ap_scan == 1) {
1715 /* give IBSS a bit more time */
d7dcba70 1716 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
1d3c75b3 1717 }
6fc6879b
JM		 1718 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
1719 }
1720
66562e9c
JM		 1721 if (wep_keys_set &&
1722 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
6fc6879b
JM		 1723 /* Set static WEP keys again */
1724 wpa_set_wep_keys(wpa_s, ssid);
1725 }
1726
1727 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
1728 /*
1729 * Do not allow EAP session resumption between different
1730 * network configurations.
1731 */
1732 eapol_sm_invalidate_cached_session(wpa_s->eapol);
1733 }
8bac466b 1734 old_ssid = wpa_s->current_ssid;
6fc6879b 1735 wpa_s->current_ssid = ssid;
8f770587 1736 wpa_s->current_bss = bss;
6fc6879b
JM		 1737 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
1738 wpa_supplicant_initiate_eapol(wpa_s);
8bac466b
JM		 1739 if (old_ssid != wpa_s->current_ssid)
1740 wpas_notify_network_changed(wpa_s);
6fc6879b
JM		 1741}
1742
1743
09f58c09
JM		 1744static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
1745 const u8 *addr)
1746{
1747 struct wpa_ssid *old_ssid;
1748
1749 wpa_clear_keys(wpa_s, addr);
09f58c09 1750 old_ssid = wpa_s->current_ssid;
0d30cc24 1751 wpa_supplicant_mark_disassoc(wpa_s);
09f58c09
JM		 1752 wpa_sm_set_config(wpa_s->wpa, NULL);
1753 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
1754 if (old_ssid != wpa_s->current_ssid)
1755 wpas_notify_network_changed(wpa_s);
1756 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
1757}
1758
1759
6fc6879b
JM		 1760/**
1761 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
1762 * @wpa_s: Pointer to wpa_supplicant data
1763 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
1764 *
073ab58f 1765 * This function is used to request %wpa_supplicant to deauthenticate from the
6fc6879b
JM		 1766 * current AP.
1767 */
1768void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
1769 int reason_code)
1770{
1771 u8 *addr = NULL;
ef48ff94 1772 union wpa_event_data event;
42d23547 1773 int zero_addr = 0;
8bac466b 1774
42d23547
JM		 1775 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
1776 " pending_bssid=" MACSTR " reason=%d state=%s",
1777 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
1778 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
1779
1780 if (!is_zero_ether_addr(wpa_s->bssid))
1781 addr = wpa_s->bssid;
1782 else if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
1783 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
1784 wpa_s->wpa_state == WPA_ASSOCIATING))
1785 addr = wpa_s->pending_bssid;
1786 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
1787 /*
1788 * When using driver-based BSS selection, we may not know the
1789 * BSSID with which we are currently trying to associate. We
1790 * need to notify the driver of this disconnection even in such
1791 * a case, so use the all zeros address here.
1792 */
6fc6879b 1793 addr = wpa_s->bssid;
42d23547
JM		 1794 zero_addr = 1;
1795 }
1796
7b44ff2c
SD		 1797#ifdef CONFIG_TDLS
1798 wpa_tdls_teardown_peers(wpa_s->wpa);
1799#endif /* CONFIG_TDLS */
1800
42d23547
JM		 1801 if (addr) {
1802 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
ef48ff94
JM		 1803 os_memset(&event, 0, sizeof(event));
1804 event.deauth_info.reason_code = (u16) reason_code;
1805 event.deauth_info.locally_generated = 1;
1806 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
42d23547
JM		 1807 if (zero_addr)
1808 addr = NULL;
6fc6879b 1809 }
09f58c09
JM		 1810
1811 wpa_supplicant_clear_connection(wpa_s, addr);
6fc6879b
JM		 1812}
1813
dca1a511
DS		 1814static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
1815 struct wpa_ssid *ssid)
1816{
1817 if (!ssid || !ssid->disabled || ssid->disabled == 2)
1818 return;
1819
1820 ssid->disabled = 0;
1821 wpas_clear_temp_disabled(wpa_s, ssid, 1);
1822 wpas_notify_network_enabled_changed(wpa_s, ssid);
1823
1824 /*
1825 * Try to reassociate since there is no current configuration and a new
1826 * network was made available.
1827 */
d2592497 1828 if (!wpa_s->current_ssid && !wpa_s->disconnected)
dca1a511
DS		 1829 wpa_s->reassociate = 1;
1830}
1831
6fc6879b 1832
86b89452
WS		 1833/**
1834 * wpa_supplicant_enable_network - Mark a configured network as enabled
1835 * @wpa_s: wpa_supplicant structure for a network interface
1836 * @ssid: wpa_ssid structure for a configured network or %NULL
1837 *
1838 * Enables the specified network or all networks if no network specified.
1839 */
1840void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
1841 struct wpa_ssid *ssid)
1842{
86b89452 1843 if (ssid == NULL) {
14f79078
JM		 1844 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
1845 wpa_supplicant_enable_one_network(wpa_s, ssid);
dca1a511
DS		 1846 } else
1847 wpa_supplicant_enable_one_network(wpa_s, ssid);
86b89452 1848
d2592497 1849 if (wpa_s->reassociate && !wpa_s->disconnected) {
dca1a511
DS		 1850 if (wpa_s->sched_scanning) {
1851 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
1852 "new network to scan filters");
1853 wpa_supplicant_cancel_sched_scan(wpa_s);
1854 }
86b89452 1855
dad153d1
JM		 1856 if (wpa_supplicant_fast_associate(wpa_s) != 1)
1857 wpa_supplicant_req_scan(wpa_s, 0, 0);
86b89452
WS		 1858 }
1859}
1860
1861
1862/**
1863 * wpa_supplicant_disable_network - Mark a configured network as disabled
1864 * @wpa_s: wpa_supplicant structure for a network interface
1865 * @ssid: wpa_ssid structure for a configured network or %NULL
1866 *
1867 * Disables the specified network or all networks if no network specified.
1868 */
1869void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
1870 struct wpa_ssid *ssid)
1871{
1872 struct wpa_ssid *other_ssid;
1873 int was_disabled;
1874
1875 if (ssid == NULL) {
725fc39e
DS		 1876 if (wpa_s->sched_scanning)
1877 wpa_supplicant_cancel_sched_scan(wpa_s);
1878
4dac0245
JM		 1879 for (other_ssid = wpa_s->conf->ssid; other_ssid;
1880 other_ssid = other_ssid->next) {
86b89452 1881 was_disabled = other_ssid->disabled;
4dac0245
JM		 1882 if (was_disabled == 2)
1883 continue; /* do not change persistent P2P group
1884 * data */
86b89452
WS		 1885
1886 other_ssid->disabled = 1;
1887
1888 if (was_disabled != other_ssid->disabled)
1889 wpas_notify_network_enabled_changed(
1890 wpa_s, other_ssid);
86b89452
WS		 1891 }
1892 if (wpa_s->current_ssid)
07783eaa 1893 wpa_supplicant_deauthenticate(
86b89452 1894 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
4dac0245 1895 } else if (ssid->disabled != 2) {
86b89452 1896 if (ssid == wpa_s->current_ssid)
07783eaa 1897 wpa_supplicant_deauthenticate(
86b89452
WS		 1898 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
1899
1900 was_disabled = ssid->disabled;
1901
1902 ssid->disabled = 1;
1903
725fc39e 1904 if (was_disabled != ssid->disabled) {
86b89452 1905 wpas_notify_network_enabled_changed(wpa_s, ssid);
725fc39e
DS		 1906 if (wpa_s->sched_scanning) {
1907 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
1908 "to remove network from filters");
1909 wpa_supplicant_cancel_sched_scan(wpa_s);
1910 wpa_supplicant_req_scan(wpa_s, 0, 0);
1911 }
1912 }
86b89452
WS		 1913 }
1914}
1915
1916
1917/**
1918 * wpa_supplicant_select_network - Attempt association with a network
1919 * @wpa_s: wpa_supplicant structure for a network interface
1920 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
1921 */
1922void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
1923 struct wpa_ssid *ssid)
1924{
1925
1926 struct wpa_ssid *other_ssid;
d93dfbd5 1927 int disconnected = 0;
86b89452 1928
d93dfbd5 1929 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
07783eaa 1930 wpa_supplicant_deauthenticate(
86b89452 1931 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
d93dfbd5
JM		 1932 disconnected = 1;
1933 }
86b89452 1934
00e5e3d5
JM		 1935 if (ssid)
1936 wpas_clear_temp_disabled(wpa_s, ssid, 1);
1937
86b89452
WS		 1938 /*
1939 * Mark all other networks disabled or mark all networks enabled if no
1940 * network specified.
1941 */
4dac0245
JM		 1942 for (other_ssid = wpa_s->conf->ssid; other_ssid;
1943 other_ssid = other_ssid->next) {
86b89452 1944 int was_disabled = other_ssid->disabled;
4dac0245
JM		 1945 if (was_disabled == 2)
1946 continue; /* do not change persistent P2P group data */
86b89452
WS		 1947
1948 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
00e5e3d5
JM		 1949 if (was_disabled && !other_ssid->disabled)
1950 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
86b89452
WS		 1951
1952 if (was_disabled != other_ssid->disabled)
1953 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
86b89452 1954 }
2a6f78fb
JJ		 1955
1956 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid) {
1957 /* We are already associated with the selected network */
1958 wpa_printf(MSG_DEBUG, "Already associated with the "
1959 "selected network - do nothing");
1960 return;
1961 }
1962
25a8f9e3 1963 if (ssid) {
96efeeb6 1964 wpa_s->current_ssid = ssid;
25a8f9e3
JM		 1965 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
1966 }
7dcdcfd6 1967 wpa_s->connect_without_scan = NULL;
86b89452
WS		 1968 wpa_s->disconnected = 0;
1969 wpa_s->reassociate = 1;
cecdddc1
PS		 1970
1971 if (wpa_supplicant_fast_associate(wpa_s) != 1)
1972 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
86b89452 1973
a1641d26
JM		 1974 if (ssid)
1975 wpas_notify_network_selected(wpa_s, ssid);
86b89452
WS		 1976}
1977
1978
bdec7ee5
MS		 1979/**
1980 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
1981 * @wpa_s: wpa_supplicant structure for a network interface
1982 * @pkcs11_engine_path: PKCS #11 engine path or NULL
1983 * @pkcs11_module_path: PKCS #11 module path or NULL
1984 * Returns: 0 on success; -1 on failure
1985 *
1986 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
1987 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
1988 * module path fails the paths will be reset to the default value (NULL).
1989 */
1990int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
1991 const char *pkcs11_engine_path,
1992 const char *pkcs11_module_path)
1993{
1994 char *pkcs11_engine_path_copy = NULL;
1995 char *pkcs11_module_path_copy = NULL;
1996
1997 if (pkcs11_engine_path != NULL) {
1998 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
1999 if (pkcs11_engine_path_copy == NULL)
2000 return -1;
2001 }
2002 if (pkcs11_module_path != NULL) {
2003 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
2004 if (pkcs11_engine_path_copy == NULL) {
2005 os_free(pkcs11_engine_path_copy);
2006 return -1;
2007 }
2008 }
2009
2010 os_free(wpa_s->conf->pkcs11_engine_path);
2011 os_free(wpa_s->conf->pkcs11_module_path);
2012 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
2013 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
2014
2015 wpa_sm_set_eapol(wpa_s->wpa, NULL);
2016 eapol_sm_deinit(wpa_s->eapol);
2017 wpa_s->eapol = NULL;
2018 if (wpa_supplicant_init_eapol(wpa_s)) {
2019 /* Error -> Reset paths to the default value (NULL) once. */
2020 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
2021 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
2022 NULL);
2023
2024 return -1;
2025 }
2026 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
2027
2028 return 0;
2029}
2030
2031
86b89452
WS		 2032/**
2033 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
2034 * @wpa_s: wpa_supplicant structure for a network interface
2035 * @ap_scan: AP scan mode
2036 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
2037 *
2038 */
2039int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
2040{
2041
2042 int old_ap_scan;
2043
2044 if (ap_scan < 0 || ap_scan > 2)
2045 return -1;
2046
48f8e036
DS		 2047#ifdef ANDROID
2048 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
2049 wpa_s->wpa_state >= WPA_ASSOCIATING &&
2050 wpa_s->wpa_state < WPA_COMPLETED) {
2051 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
2052 "associating", wpa_s->conf->ap_scan, ap_scan);
2053 return 0;
2054 }
2055#endif /* ANDROID */
2056
86b89452
WS		 2057 old_ap_scan = wpa_s->conf->ap_scan;
2058 wpa_s->conf->ap_scan = ap_scan;
2059
2060 if (old_ap_scan != wpa_s->conf->ap_scan)
2061 wpas_notify_ap_scan_changed(wpa_s);
2062
2063 return 0;
2064}
2065
2066
78633c37
SL		 2067/**
2068 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
2069 * @wpa_s: wpa_supplicant structure for a network interface
2070 * @expire_age: Expiration age in seconds
2071 * Returns: 0 if succeed or -1 if expire_age has an invalid value
2072 *
2073 */
2074int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
2075 unsigned int bss_expire_age)
2076{
2077 if (bss_expire_age < 10) {
2078 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
2079 bss_expire_age);
2080 return -1;
2081 }
2082 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
2083 bss_expire_age);
2084 wpa_s->conf->bss_expiration_age = bss_expire_age;
2085
2086 return 0;
2087}
2088
2089
2090/**
2091 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
2092 * @wpa_s: wpa_supplicant structure for a network interface
2093 * @expire_count: number of scans after which an unseen BSS is reclaimed
2094 * Returns: 0 if succeed or -1 if expire_count has an invalid value
2095 *
2096 */
2097int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
2098 unsigned int bss_expire_count)
2099{
2100 if (bss_expire_count < 1) {
2101 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
2102 bss_expire_count);
2103 return -1;
2104 }
2105 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
2106 bss_expire_count);
2107 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
2108
2109 return 0;
2110}
2111
2112
c6e86b63
MA		 2113/**
2114 * wpa_supplicant_set_scan_interval - Set scan interval
2115 * @wpa_s: wpa_supplicant structure for a network interface
2116 * @scan_interval: scan interval in seconds
2117 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
2118 *
2119 */
2120int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
2121 int scan_interval)
2122{
2123 if (scan_interval < 0) {
2124 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
2125 scan_interval);
2126 return -1;
2127 }
2128 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
2129 scan_interval);
9e737f08 2130 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
c6e86b63
MA		 2131
2132 return 0;
2133}
2134
2135
86b89452
WS		 2136/**
2137 * wpa_supplicant_set_debug_params - Set global debug params
2138 * @global: wpa_global structure
2139 * @debug_level: debug level
2140 * @debug_timestamp: determines if show timestamp in debug data
2141 * @debug_show_keys: determines if show keys in debug data
2142 * Returns: 0 if succeed or -1 if debug_level has wrong value
2143 */
2144int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
2145 int debug_timestamp, int debug_show_keys)
2146{
2147
2148 int old_level, old_timestamp, old_show_keys;
2149
2150 /* check for allowed debuglevels */
14dc0011
PS		 2151 if (debug_level != MSG_EXCESSIVE &&
2152 debug_level != MSG_MSGDUMP &&
86b89452
WS		 2153 debug_level != MSG_DEBUG &&
2154 debug_level != MSG_INFO &&
2155 debug_level != MSG_WARNING &&
2156 debug_level != MSG_ERROR)
2157 return -1;
2158
2159 old_level = wpa_debug_level;
2160 old_timestamp = wpa_debug_timestamp;
2161 old_show_keys = wpa_debug_show_keys;
2162
2163 wpa_debug_level = debug_level;
2164 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
2165 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
2166
db9133ac
WS		 2167 if (wpa_debug_level != old_level)
2168 wpas_notify_debug_level_changed(global);
2169 if (wpa_debug_timestamp != old_timestamp)
2170 wpas_notify_debug_timestamp_changed(global);
2171 if (wpa_debug_show_keys != old_show_keys)
2172 wpas_notify_debug_show_keys_changed(global);
86b89452
WS		 2173
2174 return 0;
2175}
2176
2177
6fc6879b
JM		 2178/**
2179 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
2180 * @wpa_s: Pointer to wpa_supplicant data
2181 * Returns: A pointer to the current network structure or %NULL on failure
2182 */
2183struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
2184{
2185 struct wpa_ssid *entry;
2186 u8 ssid[MAX_SSID_LEN];
2187 int res;
2188 size_t ssid_len;
2189 u8 bssid[ETH_ALEN];
2190 int wired;
2191
17fbb751
JM		 2192 res = wpa_drv_get_ssid(wpa_s, ssid);
2193 if (res < 0) {
2194 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
2195 "driver");
2196 return NULL;
6fc6879b 2197 }
17fbb751 2198 ssid_len = res;
6fc6879b 2199
17fbb751 2200 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
f049052b
BG		 2201 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
2202 "driver");
6fc6879b
JM		 2203 return NULL;
2204 }
2205
c2a04078
JM		 2206 wired = wpa_s->conf->ap_scan == 0 &&
2207 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
6fc6879b
JM		 2208
2209 entry = wpa_s->conf->ssid;
2210 while (entry) {
349493bd 2211 if (!wpas_network_disabled(wpa_s, entry) &&
6fc6879b
JM		 2212 ((ssid_len == entry->ssid_len &&
2213 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
2214 (!entry->bssid_set ||
2215 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2216 return entry;
24c23d1b 2217#ifdef CONFIG_WPS
349493bd 2218 if (!wpas_network_disabled(wpa_s, entry) &&
24c23d1b
JM		 2219 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
2220 (entry->ssid == NULL || entry->ssid_len == 0) &&
2221 (!entry->bssid_set ||
2222 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2223 return entry;
2224#endif /* CONFIG_WPS */
7d232e23 2225
349493bd 2226 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
7d232e23
ZC		 2227 entry->ssid_len == 0 &&
2228 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
2229 return entry;
2230
6fc6879b
JM		 2231 entry = entry->next;
2232 }
2233
2234 return NULL;
2235}
2236
2237
7756114f
JM		 2238static int select_driver(struct wpa_supplicant *wpa_s, int i)
2239{
2240 struct wpa_global *global = wpa_s->global;
2241
2242 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
2243 global->drv_priv[i] = wpa_drivers[i]->global_init();
2244 if (global->drv_priv[i] == NULL) {
2245 wpa_printf(MSG_ERROR, "Failed to initialize driver "
2246 "'%s'", wpa_drivers[i]->name);
2247 return -1;
2248 }
2249 }
2250
2251 wpa_s->driver = wpa_drivers[i];
2252 wpa_s->global_drv_priv = global->drv_priv[i];
2253
2254 return 0;
2255}
2256
2257
6fc6879b
JM		 2258static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
2259 const char *name)
2260{
2261 int i;
362f781e 2262 size_t len;
74b1c84a 2263 const char *pos, *driver = name;
6fc6879b
JM		 2264
2265 if (wpa_s == NULL)
2266 return -1;
2267
c5121837 2268 if (wpa_drivers[0] == NULL) {
f049052b
BG		 2269 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
2270 "wpa_supplicant");
6fc6879b
JM		 2271 return -1;
2272 }
2273
2274 if (name == NULL) {
2275 /* default to first driver in the list */
7756114f 2276 return select_driver(wpa_s, 0);
6fc6879b
JM		 2277 }
2278
74b1c84a
SO		 2279 do {
2280 pos = os_strchr(driver, ',');
2281 if (pos)
2282 len = pos - driver;
2283 else
2284 len = os_strlen(driver);
2285
2286 for (i = 0; wpa_drivers[i]; i++) {
2287 if (os_strlen(wpa_drivers[i]->name) == len &&
2288 os_strncmp(driver, wpa_drivers[i]->name, len) ==
0f4668ce
DW		 2289 0) {
2290 /* First driver that succeeds wins */
2291 if (select_driver(wpa_s, i) == 0)
2292 return 0;
2293 }
6fc6879b 2294 }
74b1c84a
SO		 2295
2296 driver = pos + 1;
2297 } while (pos);
6fc6879b 2298
f049052b 2299 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
6fc6879b
JM		 2300 return -1;
2301}
2302
2303
a8e0505b
JM		 2304/**
2305 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
2306 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
2307 * with struct wpa_driver_ops::init()
2308 * @src_addr: Source address of the EAPOL frame
2309 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
2310 * @len: Length of the EAPOL data
2311 *
2312 * This function is called for each received EAPOL frame. Most driver
2313 * interfaces rely on more generic OS mechanism for receiving frames through
2314 * l2_packet, but if such a mechanism is not available, the driver wrapper may
2315 * take care of received EAPOL frames and deliver them to the core supplicant
2316 * code by calling this function.
2317 */
6fc6879b
JM		 2318void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
2319 const u8 *buf, size_t len)
2320{
2321 struct wpa_supplicant *wpa_s = ctx;
2322
f049052b 2323 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
6fc6879b
JM		 2324 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
2325
3ab35a66
JM		 2326 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
2327 (wpa_s->last_eapol_matches_bssid &&
2328#ifdef CONFIG_AP
2329 !wpa_s->ap_iface &&
2330#endif /* CONFIG_AP */
2331 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
1ff73338
JM		 2332 /*
2333 * There is possible race condition between receiving the
2334 * association event and the EAPOL frame since they are coming
2335 * through different paths from the driver. In order to avoid
2336 * issues in trying to process the EAPOL frame before receiving
2337 * association information, lets queue it for processing until
3ab35a66
JM		 2338 * the association event is received. This may also be needed in
2339 * driver-based roaming case, so also use src_addr != BSSID as a
2340 * trigger if we have previously confirmed that the
2341 * Authenticator uses BSSID as the src_addr (which is not the
2342 * case with wired IEEE 802.1X).
1ff73338 2343 */
f049052b 2344 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
3ab35a66
JM		 2345 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
2346 wpa_supplicant_state_txt(wpa_s->wpa_state),
2347 MAC2STR(wpa_s->bssid));
1ff73338
JM		 2348 wpabuf_free(wpa_s->pending_eapol_rx);
2349 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
2350 if (wpa_s->pending_eapol_rx) {
2351 os_get_time(&wpa_s->pending_eapol_rx_time);
2352 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
2353 ETH_ALEN);
2354 }
2355 return;
2356 }
2357
3ab35a66
JM		 2358 wpa_s->last_eapol_matches_bssid =
2359 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
2360
db149ac9
JM		 2361#ifdef CONFIG_AP
2362 if (wpa_s->ap_iface) {
2363 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
2364 return;
2365 }
2366#endif /* CONFIG_AP */
2367
6fc6879b 2368 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
f049052b
BG		 2369 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
2370 "no key management is configured");
6fc6879b
JM		 2371 return;
2372 }
2373
2374 if (wpa_s->eapol_received == 0 &&
c2a04078 2375 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
56586197 2376 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
9c972abb
JM		 2377 wpa_s->wpa_state != WPA_COMPLETED) &&
2378 (wpa_s->current_ssid == NULL ||
2379 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
6fc6879b
JM		 2380 /* Timeout for completing IEEE 802.1X and WPA authentication */
2381 wpa_supplicant_req_auth_timeout(
2382 wpa_s,
56586197 2383 (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
a6f06dab
AT		 2384 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
2385 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) ?
6fc6879b
JM		 2386 70 : 10, 0);
2387 }
2388 wpa_s->eapol_received++;
2389
2390 if (wpa_s->countermeasures) {
f049052b
BG		 2391 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
2392 "EAPOL packet");
6fc6879b
JM		 2393 return;
2394 }
2395
8be18440
JM		 2396#ifdef CONFIG_IBSS_RSN
2397 if (wpa_s->current_ssid &&
d7dcba70 2398 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
8be18440
JM		 2399 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
2400 return;
2401 }
2402#endif /* CONFIG_IBSS_RSN */
2403
6fc6879b
JM		 2404 /* Source address of the incoming EAPOL frame could be compared to the
2405 * current BSSID. However, it is possible that a centralized
2406 * Authenticator could be using another MAC address than the BSSID of
2407 * an AP, so just allow any address to be used for now. The replies are
2408 * still sent to the current BSSID (if available), though. */
2409
2410 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
56586197 2411 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
6fc6879b
JM		 2412 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
2413 return;
2414 wpa_drv_poll(wpa_s);
c2a04078 2415 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
6fc6879b 2416 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
56586197 2417 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
6fc6879b
JM		 2418 /*
2419 * Set portValid = TRUE here since we are going to skip 4-way
2420 * handshake processing which would normally set portValid. We
2421 * need this to allow the EAPOL state machines to be completed
2422 * without going through EAPOL-Key handshake.
2423 */
2424 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
2425 }
2426}
2427
2428
bfba8deb 2429int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
6fc6879b 2430{
6fc6879b
JM		 2431 if (wpa_s->driver->send_eapol) {
2432 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
2433 if (addr)
2434 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
1c42b42f
JM		 2435 } else if ((!wpa_s->p2p_mgmt ||
2436 !(wpa_s->drv_flags &
2437 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
c68f6200 2438 !(wpa_s->drv_flags &
fdadd5fe 2439 WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
bfba8deb 2440 l2_packet_deinit(wpa_s->l2);
6fc6879b
JM		 2441 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
2442 wpa_drv_get_mac_addr(wpa_s),
2443 ETH_P_EAPOL,
2444 wpa_supplicant_rx_eapol, wpa_s, 0);
2445 if (wpa_s->l2 == NULL)
2446 return -1;
fdadd5fe
JM		 2447 } else {
2448 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
2449 if (addr)
2450 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
6fc6879b
JM		 2451 }
2452
2453 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
f049052b 2454 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
6fc6879b
JM		 2455 return -1;
2456 }
2457
bfba8deb
JM		 2458 return 0;
2459}
2460
2461
25f839c6
JM		 2462static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
2463 const u8 *buf, size_t len)
2464{
2465 struct wpa_supplicant *wpa_s = ctx;
2466 const struct l2_ethhdr *eth;
2467
2468 if (len < sizeof(*eth))
2469 return;
2470 eth = (const struct l2_ethhdr *) buf;
2471
2472 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
2473 !(eth->h_dest[0] & 0x01)) {
2474 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
2475 " (bridge - not for this interface - ignore)",
2476 MAC2STR(src_addr), MAC2STR(eth->h_dest));
2477 return;
2478 }
2479
2480 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
2481 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
2482 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
2483 len - sizeof(*eth));
2484}
2485
2486
bfba8deb
JM		 2487/**
2488 * wpa_supplicant_driver_init - Initialize driver interface parameters
2489 * @wpa_s: Pointer to wpa_supplicant data
2490 * Returns: 0 on success, -1 on failure
2491 *
2492 * This function is called to initialize driver interface parameters.
2493 * wpa_drv_init() must have been called before this function to initialize the
2494 * driver interface.
2495 */
2496int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
2497{
2498 static int interface_count = 0;
2499
2500 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
2501 return -1;
2502
c68f6200
AS		 2503 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
2504 MAC2STR(wpa_s->own_addr));
2505 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
2506
6fc6879b 2507 if (wpa_s->bridge_ifname[0]) {
f049052b
BG		 2508 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
2509 "interface '%s'", wpa_s->bridge_ifname);
6fc6879b
JM		 2510 wpa_s->l2_br = l2_packet_init(wpa_s->bridge_ifname,
2511 wpa_s->own_addr,
2512 ETH_P_EAPOL,
25f839c6
JM		 2513 wpa_supplicant_rx_eapol_bridge,
2514 wpa_s, 1);
6fc6879b 2515 if (wpa_s->l2_br == NULL) {
f049052b
BG		 2516 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
2517 "connection for the bridge interface '%s'",
2518 wpa_s->bridge_ifname);
6fc6879b
JM		 2519 return -1;
2520 }
2521 }
2522
6fc6879b
JM		 2523 wpa_clear_keys(wpa_s, NULL);
2524
2525 /* Make sure that TKIP countermeasures are not left enabled (could
2526 * happen if wpa_supplicant is killed during countermeasures. */
2527 wpa_drv_set_countermeasures(wpa_s, 0);
2528
f049052b 2529 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
6fc6879b
JM		 2530 wpa_drv_flush_pmkid(wpa_s);
2531
ba2a573c 2532 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
b3aa456b
ES		 2533 wpa_s->prev_scan_wildcard = 0;
2534
349493bd 2535 if (wpa_supplicant_enabled_networks(wpa_s)) {
6a90053c
LC		 2536 if (wpa_supplicant_delayed_sched_scan(wpa_s, interface_count,
2537 100000))
a4cba8f1
LC		 2538 wpa_supplicant_req_scan(wpa_s, interface_count,
2539 100000);
74e259ec
JM		 2540 interface_count++;
2541 } else
2542 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
6fc6879b
JM		 2543
2544 return 0;
2545}
2546
2547
2548static int wpa_supplicant_daemon(const char *pid_file)
2549{
2550 wpa_printf(MSG_DEBUG, "Daemonize..");
2551 return os_daemonize(pid_file);
2552}
2553
2554
2555static struct wpa_supplicant * wpa_supplicant_alloc(void)
2556{
2557 struct wpa_supplicant *wpa_s;
2558
2559 wpa_s = os_zalloc(sizeof(*wpa_s));
2560 if (wpa_s == NULL)
2561 return NULL;
4115303b 2562 wpa_s->scan_req = INITIAL_SCAN_REQ;
67b9bd08 2563 wpa_s->scan_interval = 5;
c302f207 2564 wpa_s->new_connection = 1;
b22128ef 2565 wpa_s->parent = wpa_s;
cbdf3507 2566 wpa_s->sched_scanning = 0;
6fc6879b
JM		 2567
2568 return wpa_s;
2569}
2570
2571
80e8a5ee
BG		 2572#ifdef CONFIG_HT_OVERRIDES
2573
2574static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
2575 struct ieee80211_ht_capabilities *htcaps,
2576 struct ieee80211_ht_capabilities *htcaps_mask,
2577 const char *ht_mcs)
2578{
2579 /* parse ht_mcs into hex array */
2580 int i;
2581 const char *tmp = ht_mcs;
2582 char *end = NULL;
2583
2584 /* If ht_mcs is null, do not set anything */
2585 if (!ht_mcs)
2586 return 0;
2587
2588 /* This is what we are setting in the kernel */
2589 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
2590
2591 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
2592
2593 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
2594 errno = 0;
2595 long v = strtol(tmp, &end, 16);
2596 if (errno == 0) {
2597 wpa_msg(wpa_s, MSG_DEBUG,
2598 "htcap value[%i]: %ld end: %p tmp: %p",
2599 i, v, end, tmp);
2600 if (end == tmp)
2601 break;
2602
2603 htcaps->supported_mcs_set[i] = v;
2604 tmp = end;
2605 } else {
2606 wpa_msg(wpa_s, MSG_ERROR,
2607 "Failed to parse ht-mcs: %s, error: %s\n",
2608 ht_mcs, strerror(errno));
2609 return -1;
2610 }
2611 }
2612
2613 /*
2614 * If we were able to parse any values, then set mask for the MCS set.
2615 */
2616 if (i) {
2617 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
2618 IEEE80211_HT_MCS_MASK_LEN - 1);
2619 /* skip the 3 reserved bits */
2620 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
2621 0x1f;
2622 }
2623
2624 return 0;
2625}
2626
2627
2628static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
2629 struct ieee80211_ht_capabilities *htcaps,
2630 struct ieee80211_ht_capabilities *htcaps_mask,
2631 int disabled)
2632{
2633 u16 msk;
2634
2635 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
2636
2637 if (disabled == -1)
2638 return 0;
2639
2640 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
2641 htcaps_mask->ht_capabilities_info |= msk;
2642 if (disabled)
2643 htcaps->ht_capabilities_info &= msk;
2644 else
2645 htcaps->ht_capabilities_info |= msk;
2646
2647 return 0;
2648}
2649
2650
2651static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
2652 struct ieee80211_ht_capabilities *htcaps,
2653 struct ieee80211_ht_capabilities *htcaps_mask,
2654 int factor)
2655{
2656 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
2657
2658 if (factor == -1)
2659 return 0;
2660
2661 if (factor < 0 || factor > 3) {
2662 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
2663 "Must be 0-3 or -1", factor);
2664 return -EINVAL;
2665 }
2666
2667 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
2668 htcaps->a_mpdu_params &= ~0x3;
2669 htcaps->a_mpdu_params |= factor & 0x3;
2670
2671 return 0;
2672}
2673
2674
2675static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
2676 struct ieee80211_ht_capabilities *htcaps,
2677 struct ieee80211_ht_capabilities *htcaps_mask,
2678 int density)
2679{
2680 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
2681
2682 if (density == -1)
2683 return 0;
2684
2685 if (density < 0 || density > 7) {
2686 wpa_msg(wpa_s, MSG_ERROR,
2687 "ampdu_density: %d out of range. Must be 0-7 or -1.",
2688 density);
2689 return -EINVAL;
2690 }
2691
2692 htcaps_mask->a_mpdu_params |= 0x1C;
2693 htcaps->a_mpdu_params &= ~(0x1C);
2694 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
2695
2696 return 0;
2697}
2698
2699
2700static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
2701 struct ieee80211_ht_capabilities *htcaps,
2702 struct ieee80211_ht_capabilities *htcaps_mask,
2703 int disabled)
2704{
2705 /* Masking these out disables HT40 */
2706 u16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
2707 HT_CAP_INFO_SHORT_GI40MHZ);
2708
2709 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
2710
2711 if (disabled)
2712 htcaps->ht_capabilities_info &= ~msk;
2713 else
2714 htcaps->ht_capabilities_info |= msk;
2715
2716 htcaps_mask->ht_capabilities_info |= msk;
2717
2718 return 0;
2719}
2720
2721
a90497f8
BG		 2722static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
2723 struct ieee80211_ht_capabilities *htcaps,
2724 struct ieee80211_ht_capabilities *htcaps_mask,
2725 int disabled)
2726{
2727 /* Masking these out disables SGI */
2728 u16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
2729 HT_CAP_INFO_SHORT_GI40MHZ);
2730
2731 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
2732
2733 if (disabled)
2734 htcaps->ht_capabilities_info &= ~msk;
2735 else
2736 htcaps->ht_capabilities_info |= msk;
2737
2738 htcaps_mask->ht_capabilities_info |= msk;
2739
2740 return 0;
2741}
2742
2743
80e8a5ee
BG		 2744void wpa_supplicant_apply_ht_overrides(
2745 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
2746 struct wpa_driver_associate_params *params)
2747{
2748 struct ieee80211_ht_capabilities *htcaps;
2749 struct ieee80211_ht_capabilities *htcaps_mask;
2750
2751 if (!ssid)
2752 return;
2753
2754 params->disable_ht = ssid->disable_ht;
2755 if (!params->htcaps || !params->htcaps_mask)
2756 return;
2757
2758 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
2759 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
2760 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
2761 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
2762 ssid->disable_max_amsdu);
2763 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
2764 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
2765 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
a90497f8 2766 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
80e8a5ee
BG		 2767}
2768
2769#endif /* CONFIG_HT_OVERRIDES */
2770
2771
e9ee8dc3
JB		 2772#ifdef CONFIG_VHT_OVERRIDES
2773void wpa_supplicant_apply_vht_overrides(
2774 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
2775 struct wpa_driver_associate_params *params)
2776{
2777 struct ieee80211_vht_capabilities *vhtcaps;
2778 struct ieee80211_vht_capabilities *vhtcaps_mask;
2779
2780 if (!ssid)
2781 return;
2782
2783 params->disable_vht = ssid->disable_vht;
2784
2785 vhtcaps = (void *) params->vhtcaps;
2786 vhtcaps_mask = (void *) params->vhtcaps_mask;
2787
2788 if (!vhtcaps || !vhtcaps_mask)
2789 return;
2790
2791 vhtcaps->vht_capabilities_info = ssid->vht_capa;
2792 vhtcaps_mask->vht_capabilities_info = ssid->vht_capa_mask;
2793
2794#define OVERRIDE_MCS(i) \
2795 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
2796 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
2797 3 << 2 * (i - 1); \
2798 vhtcaps->vht_supported_mcs_set.tx_map |= \
2799 ssid->vht_tx_mcs_nss_ ##i << 2 * (i - 1); \
2800 } \
2801 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
2802 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
2803 3 << 2 * (i - 1); \
2804 vhtcaps->vht_supported_mcs_set.rx_map |= \
2805 ssid->vht_rx_mcs_nss_ ##i << 2 * (i - 1); \
2806 }
2807
2808 OVERRIDE_MCS(1);
2809 OVERRIDE_MCS(2);
2810 OVERRIDE_MCS(3);
2811 OVERRIDE_MCS(4);
2812 OVERRIDE_MCS(5);
2813 OVERRIDE_MCS(6);
2814 OVERRIDE_MCS(7);
2815 OVERRIDE_MCS(8);
2816}
2817#endif /* CONFIG_VHT_OVERRIDES */
2818
2819
f64adcd7
JM		 2820static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
2821{
2822#ifdef PCSC_FUNCS
2823 size_t len;
2824
2825 if (!wpa_s->conf->pcsc_reader)
2826 return 0;
2827
22cf7d73 2828 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
f64adcd7
JM		 2829 if (!wpa_s->scard)
2830 return 1;
2831
2832 if (wpa_s->conf->pcsc_pin &&
2833 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
2834 scard_deinit(wpa_s->scard);
2835 wpa_s->scard = NULL;
2836 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
2837 return -1;
2838 }
2839
2840 len = sizeof(wpa_s->imsi) - 1;
2841 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
2842 scard_deinit(wpa_s->scard);
2843 wpa_s->scard = NULL;
2844 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
2845 return -1;
2846 }
2847 wpa_s->imsi[len] = '\0';
2848
2849 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
2850
2851 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
2852 wpa_s->imsi, wpa_s->mnc_len);
2853
2854 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
2855 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
2856#endif /* PCSC_FUNCS */
2857
2858 return 0;
2859}
2860
2861
306ae225
JM		 2862int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
2863{
2864 char *val, *pos;
2865
2866 ext_password_deinit(wpa_s->ext_pw);
2867 wpa_s->ext_pw = NULL;
2868 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
2869
2870 if (!wpa_s->conf->ext_password_backend)
2871 return 0;
2872
2873 val = os_strdup(wpa_s->conf->ext_password_backend);
2874 if (val == NULL)
2875 return -1;
2876 pos = os_strchr(val, ':');
2877 if (pos)
2878 *pos++ = '\0';
2879
2880 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
2881
2882 wpa_s->ext_pw = ext_password_init(val, pos);
2883 os_free(val);
2884 if (wpa_s->ext_pw == NULL) {
2885 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
2886 return -1;
2887 }
2888 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
2889
2890 return 0;
2891}
2892
2893
202dec2a
JM		 2894static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
2895 const char *rn)
2896{
2897 struct wpa_supplicant *iface = wpa_s->global->ifaces;
2898 struct wpa_radio *radio;
2899
2900 while (rn && iface) {
2901 radio = iface->radio;
2902 if (radio && os_strcmp(rn, radio->name) == 0) {
2903 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
2904 wpa_s->ifname, rn);
2905 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
2906 return radio;
2907 }
2908 }
2909
2910 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
2911 wpa_s->ifname, rn ? rn : "N/A");
2912 radio = os_zalloc(sizeof(*radio));
2913 if (radio == NULL)
2914 return NULL;
2915
2916 if (rn)
2917 os_strlcpy(radio->name, rn, sizeof(radio->name));
2918 dl_list_init(&radio->ifaces);
2919 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
2920
2921 return radio;
2922}
2923
2924
2925static void radio_remove_interface(struct wpa_supplicant *wpa_s)
2926{
2927 struct wpa_radio *radio = wpa_s->radio;
2928
2929 if (!radio)
2930 return;
2931
2932 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
2933 wpa_s->ifname, radio->name);
2934 dl_list_del(&wpa_s->radio_list);
2935 wpa_s->radio = NULL;
2936
2937 if (!dl_list_empty(&radio->ifaces))
2938 return; /* Interfaces remain for this radio */
2939
2940 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
2941 os_free(radio);
2942}
2943
2944
73c00fd7
JM		 2945static int wpas_init_driver(struct wpa_supplicant *wpa_s,
2946 struct wpa_interface *iface)
2947{
202dec2a 2948 const char *ifname, *driver, *rn;
73c00fd7
JM		 2949
2950 driver = iface->driver;
2951next_driver:
2952 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
2953 return -1;
2954
2955 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
2956 if (wpa_s->drv_priv == NULL) {
2957 const char *pos;
2958 pos = driver ? os_strchr(driver, ',') : NULL;
2959 if (pos) {
2960 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
2961 "driver interface - try next driver wrapper");
2962 driver = pos + 1;
2963 goto next_driver;
2964 }
2965 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
2966 "interface");
2967 return -1;
2968 }
2969 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
2970 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
2971 "driver_param '%s'", wpa_s->conf->driver_param);
2972 return -1;
2973 }
2974
2975 ifname = wpa_drv_get_ifname(wpa_s);
2976 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
2977 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
2978 "interface name with '%s'", ifname);
2979 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
2980 }
2981
202dec2a
JM		 2982 if (wpa_s->driver->get_radio_name)
2983 rn = wpa_s->driver->get_radio_name(wpa_s->drv_priv);
2984 else
2985 rn = NULL;
2986 if (rn && rn[0] == '\0')
2987 rn = NULL;
2988
2989 wpa_s->radio = radio_add_interface(wpa_s, rn);
2990 if (wpa_s->radio == NULL)
2991 return -1;
2992
73c00fd7
JM		 2993 return 0;
2994}
2995
2996
6fc6879b
JM		 2997static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
2998 struct wpa_interface *iface)
2999{
362f781e
JM		 3000 struct wpa_driver_capa capa;
3001
6fc6879b
JM		 3002 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
3003 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
3004 iface->confname ? iface->confname : "N/A",
3005 iface->driver ? iface->driver : "default",
3006 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
3007 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
3008
6fc6879b
JM		 3009 if (iface->confname) {
3010#ifdef CONFIG_BACKEND_FILE
3011 wpa_s->confname = os_rel2abs_path(iface->confname);
3012 if (wpa_s->confname == NULL) {
3013 wpa_printf(MSG_ERROR, "Failed to get absolute path "
3014 "for configuration file '%s'.",
3015 iface->confname);
3016 return -1;
3017 }
3018 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
3019 iface->confname, wpa_s->confname);
3020#else /* CONFIG_BACKEND_FILE */
3021 wpa_s->confname = os_strdup(iface->confname);
3022#endif /* CONFIG_BACKEND_FILE */
e6304cad 3023 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
6fc6879b
JM		 3024 if (wpa_s->conf == NULL) {
3025 wpa_printf(MSG_ERROR, "Failed to read or parse "
3026 "configuration '%s'.", wpa_s->confname);
3027 return -1;
3028 }
e6304cad
DS		 3029 wpa_s->confanother = os_rel2abs_path(iface->confanother);
3030 wpa_config_read(wpa_s->confanother, wpa_s->conf);
6fc6879b
JM		 3031
3032 /*
3033 * Override ctrl_interface and driver_param if set on command
3034 * line.
3035 */
3036 if (iface->ctrl_interface) {
3037 os_free(wpa_s->conf->ctrl_interface);
3038 wpa_s->conf->ctrl_interface =
3039 os_strdup(iface->ctrl_interface);
3040 }
3041
3042 if (iface->driver_param) {
3043 os_free(wpa_s->conf->driver_param);
3044 wpa_s->conf->driver_param =
3045 os_strdup(iface->driver_param);
3046 }
78f79fe5
JM		 3047
3048 if (iface->p2p_mgmt && !iface->ctrl_interface) {
3049 os_free(wpa_s->conf->ctrl_interface);
3050 wpa_s->conf->ctrl_interface = NULL;
3051 }
6fc6879b
JM		 3052 } else
3053 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
3054 iface->driver_param);
3055
3056 if (wpa_s->conf == NULL) {
3057 wpa_printf(MSG_ERROR, "\nNo configuration found.");
3058 return -1;
3059 }
3060
3061 if (iface->ifname == NULL) {
3062 wpa_printf(MSG_ERROR, "\nInterface name is required.");
3063 return -1;
3064 }
3065 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
3066 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
3067 iface->ifname);
3068 return -1;
3069 }
3070 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
3071
3072 if (iface->bridge_ifname) {
3073 if (os_strlen(iface->bridge_ifname) >=
3074 sizeof(wpa_s->bridge_ifname)) {
3075 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
3076 "name '%s'.", iface->bridge_ifname);
3077 return -1;
3078 }
3079 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
3080 sizeof(wpa_s->bridge_ifname));
3081 }
3082
6fc6879b
JM		 3083 /* RSNA Supplicant Key Management - INITIALIZE */
3084 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
3085 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
3086
3087 /* Initialize driver interface and register driver event handler before
3088 * L2 receive handler so that association events are processed before
3089 * EAPOL-Key packets if both become available for the same select()
3090 * call. */
73c00fd7 3091 if (wpas_init_driver(wpa_s, iface) < 0)
362f781e
JM		 3092 return -1;
3093
6fc6879b
JM		 3094 if (wpa_supplicant_init_wpa(wpa_s) < 0)
3095 return -1;
3096
3097 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
3098 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
3099 NULL);
3100 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
3101
3102 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
3103 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
3104 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
f049052b
BG		 3105 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3106 "dot11RSNAConfigPMKLifetime");
6fc6879b
JM		 3107 return -1;
3108 }
3109
3110 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
3111 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
3112 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
f049052b 3113 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
6fc6879b
JM		 3114 "dot11RSNAConfigPMKReauthThreshold");
3115 return -1;
3116 }
3117
3118 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
3119 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
3120 wpa_s->conf->dot11RSNAConfigSATimeout)) {
f049052b
BG		 3121 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3122 "dot11RSNAConfigSATimeout");
6fc6879b
JM		 3123 return -1;
3124 }
3125
6bf731e8
CL		 3126 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
3127 &wpa_s->hw.num_modes,
3128 &wpa_s->hw.flags);
3129
814782b9 3130 if (wpa_drv_get_capa(wpa_s, &capa) == 0) {
c58ab8f2 3131 wpa_s->drv_capa_known = 1;
814782b9 3132 wpa_s->drv_flags = capa.flags;
349493bd 3133 wpa_s->drv_enc = capa.enc;
4f73d88a 3134 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
814782b9 3135 wpa_s->max_scan_ssids = capa.max_scan_ssids;
cbdf3507
LC		 3136 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
3137 wpa_s->sched_scan_supported = capa.sched_scan_supported;
b59e6f26 3138 wpa_s->max_match_sets = capa.max_match_sets;
814782b9 3139 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
c4ea4c5c 3140 wpa_s->max_stations = capa.max_stations;
8cd6b7bc
JB		 3141 wpa_s->extended_capa = capa.extended_capa;
3142 wpa_s->extended_capa_mask = capa.extended_capa_mask;
3143 wpa_s->extended_capa_len = capa.extended_capa_len;
4752147d
IP		 3144 wpa_s->num_multichan_concurrent =
3145 capa.num_multichan_concurrent;
814782b9
JM		 3146 }
3147 if (wpa_s->max_remain_on_chan == 0)
3148 wpa_s->max_remain_on_chan = 1000;
3149
c68f6200
AS		 3150 /*
3151 * Only take p2p_mgmt parameters when P2P Device is supported.
3152 * Doing it here as it determines whether l2_packet_init() will be done
3153 * during wpa_supplicant_driver_init().
3154 */
3155 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
3156 wpa_s->p2p_mgmt = iface->p2p_mgmt;
3157 else
3158 iface->p2p_mgmt = 1;
3159
4752147d
IP		 3160 if (wpa_s->num_multichan_concurrent == 0)
3161 wpa_s->num_multichan_concurrent = 1;
3162
6fc6879b
JM		 3163 if (wpa_supplicant_driver_init(wpa_s) < 0)
3164 return -1;
3165
281ff0aa 3166#ifdef CONFIG_TDLS
1c42b42f
JM		 3167 if ((!iface->p2p_mgmt ||
3168 !(wpa_s->drv_flags &
3169 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3170 wpa_tdls_init(wpa_s->wpa))
281ff0aa
GP		 3171 return -1;
3172#endif /* CONFIG_TDLS */
3173
315ce40a
JM		 3174 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
3175 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
f049052b 3176 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
6d158490
LR		 3177 return -1;
3178 }
3179
116654ce
JM		 3180 if (wpas_wps_init(wpa_s))
3181 return -1;
3182
6fc6879b
JM		 3183 if (wpa_supplicant_init_eapol(wpa_s) < 0)
3184 return -1;
3185 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
3186
3187 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
3188 if (wpa_s->ctrl_iface == NULL) {
3189 wpa_printf(MSG_ERROR,
3190 "Failed to initialize control interface '%s'.\n"
3191 "You may have another wpa_supplicant process "
3192 "already running or the file was\n"
3193 "left by an unclean termination of wpa_supplicant "
3194 "in which case you will need\n"
3195 "to manually remove this file before starting "
3196 "wpa_supplicant again.\n",
3197 wpa_s->conf->ctrl_interface);
3198 return -1;
3199 }
3200
04ea7b79
JM		 3201 wpa_s->gas = gas_query_init(wpa_s);
3202 if (wpa_s->gas == NULL) {
3203 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
3204 return -1;
3205 }
3206
b22128ef 3207#ifdef CONFIG_P2P
c68f6200 3208 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
f049052b 3209 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
b22128ef
JM		 3210 return -1;
3211 }
3212#endif /* CONFIG_P2P */
3213
83922c2d
JM		 3214 if (wpa_bss_init(wpa_s) < 0)
3215 return -1;
83922c2d 3216
ec7b97ab
JM		 3217#ifdef CONFIG_EAP_PROXY
3218{
3219 size_t len;
07041c6f
NJ		 3220 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
3221 &len);
ec7b97ab
JM		 3222 if (wpa_s->mnc_len > 0) {
3223 wpa_s->imsi[len] = '\0';
3224 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
3225 wpa_s->imsi, wpa_s->mnc_len);
3226 } else {
3227 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
3228 }
3229}
3230#endif /* CONFIG_EAP_PROXY */
3231
f64adcd7
JM		 3232 if (pcsc_reader_init(wpa_s) < 0)
3233 return -1;
3234
306ae225
JM		 3235 if (wpas_init_ext_pw(wpa_s) < 0)
3236 return -1;
3237
6fc6879b
JM		 3238 return 0;
3239}
3240
3241
2ee055b3 3242static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
df509539 3243 int notify, int terminate)
6fc6879b 3244{
e679f140 3245 wpa_s->disconnected = 1;
6fc6879b
JM		 3246 if (wpa_s->drv_priv) {
3247 wpa_supplicant_deauthenticate(wpa_s,
3248 WLAN_REASON_DEAUTH_LEAVING);
3249
6fc6879b
JM		 3250 wpa_drv_set_countermeasures(wpa_s, 0);
3251 wpa_clear_keys(wpa_s, NULL);
3252 }
3253
8e56d189
JM		 3254 wpa_supplicant_cleanup(wpa_s);
3255
ab28911d
JM		 3256#ifdef CONFIG_P2P
3257 if (wpa_s == wpa_s->global->p2p_init_wpa_s && wpa_s->global->p2p) {
3258 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: Disable P2P since removing "
3259 "the management interface is being removed");
3260 wpas_p2p_deinit_global(wpa_s->global);
3261 }
3262#endif /* CONFIG_P2P */
3263
202dec2a
JM		 3264 radio_remove_interface(wpa_s);
3265
6fc6879b
JM		 3266 if (wpa_s->drv_priv)
3267 wpa_drv_deinit(wpa_s);
2523ff6e
DS		 3268
3269 if (notify)
3270 wpas_notify_iface_removed(wpa_s);
f0811516
DS		 3271
3272 if (terminate)
3273 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
3274
3275 if (wpa_s->ctrl_iface) {
3276 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
3277 wpa_s->ctrl_iface = NULL;
3278 }
3279
3280 if (wpa_s->conf != NULL) {
3281 wpa_config_free(wpa_s->conf);
3282 wpa_s->conf = NULL;
3283 }
18e00b5e
JM		 3284
3285 os_free(wpa_s);
6fc6879b
JM		 3286}
3287
3288
3289/**
3290 * wpa_supplicant_add_iface - Add a new network interface
3291 * @global: Pointer to global data from wpa_supplicant_init()
3292 * @iface: Interface configuration options
3293 * Returns: Pointer to the created interface or %NULL on failure
3294 *
3295 * This function is used to add new network interfaces for %wpa_supplicant.
3296 * This can be called before wpa_supplicant_run() to add interfaces before the
3297 * main event loop has been started. In addition, new interfaces can be added
3298 * dynamically while %wpa_supplicant is already running. This could happen,
3299 * e.g., when a hotplug network adapter is inserted.
3300 */
3301struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
3302 struct wpa_interface *iface)
3303{
3304 struct wpa_supplicant *wpa_s;
d27df100 3305 struct wpa_interface t_iface;
8e56d189 3306 struct wpa_ssid *ssid;
6fc6879b
JM		 3307
3308 if (global == NULL || iface == NULL)
3309 return NULL;
3310
3311 wpa_s = wpa_supplicant_alloc();
3312 if (wpa_s == NULL)
3313 return NULL;
3314
d8222ae3
JM		 3315 wpa_s->global = global;
3316
d27df100
JM		 3317 t_iface = *iface;
3318 if (global->params.override_driver) {
3319 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
3320 "('%s' -> '%s')",
3321 iface->driver, global->params.override_driver);
3322 t_iface.driver = global->params.override_driver;
3323 }
3324 if (global->params.override_ctrl_interface) {
3325 wpa_printf(MSG_DEBUG, "Override interface parameter: "
3326 "ctrl_interface ('%s' -> '%s')",
3327 iface->ctrl_interface,
3328 global->params.override_ctrl_interface);
3329 t_iface.ctrl_interface =
3330 global->params.override_ctrl_interface;
3331 }
3332 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
6fc6879b
JM		 3333 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
3334 iface->ifname);
df509539 3335 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
6fc6879b
JM		 3336 return NULL;
3337 }
3338
dc461de4
WS		 3339 /* Notify the control interfaces about new iface */
3340 if (wpas_notify_iface_added(wpa_s)) {
df509539 3341 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
6fc6879b
JM		 3342 return NULL;
3343 }
1bd3f426 3344
8e56d189
JM		 3345 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
3346 wpas_notify_network_added(wpa_s, ssid);
3347
6fc6879b
JM		 3348 wpa_s->next = global->ifaces;
3349 global->ifaces = wpa_s;
3350
f049052b 3351 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
99218999 3352 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
6fc6879b
JM		 3353
3354 return wpa_s;
3355}
3356
3357
3358/**
3359 * wpa_supplicant_remove_iface - Remove a network interface
3360 * @global: Pointer to global data from wpa_supplicant_init()
3361 * @wpa_s: Pointer to the network interface to be removed
3362 * Returns: 0 if interface was removed, -1 if interface was not found
3363 *
3364 * This function can be used to dynamically remove network interfaces from
3365 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
3366 * addition, this function is used to remove all remaining interfaces when
3367 * %wpa_supplicant is terminated.
3368 */
3369int wpa_supplicant_remove_iface(struct wpa_global *global,
df509539
DS		 3370 struct wpa_supplicant *wpa_s,
3371 int terminate)
6fc6879b
JM		 3372{
3373 struct wpa_supplicant *prev;
3374
3375 /* Remove interface from the global list of interfaces */
3376 prev = global->ifaces;
3377 if (prev == wpa_s) {
3378 global->ifaces = wpa_s->next;
3379 } else {
3380 while (prev && prev->next != wpa_s)
3381 prev = prev->next;
3382 if (prev == NULL)
3383 return -1;
3384 prev->next = wpa_s->next;
3385 }
3386
f049052b 3387 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
6fc6879b 3388
b22128ef
JM		 3389 if (global->p2p_group_formation == wpa_s)
3390 global->p2p_group_formation = NULL;
dbca75f8
JM		 3391 if (global->p2p_invite_group == wpa_s)
3392 global->p2p_invite_group = NULL;
df509539 3393 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
6fc6879b
JM		 3394
3395 return 0;
3396}
3397
3398
cf83fb0b
PS		 3399/**
3400 * wpa_supplicant_get_eap_mode - Get the current EAP mode
3401 * @wpa_s: Pointer to the network interface
3402 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
3403 */
3404const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
3405{
3406 const char *eapol_method;
3407
3408 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
3409 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
3410 return "NO-EAP";
3411 }
3412
3413 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
3414 if (eapol_method == NULL)
3415 return "UNKNOWN-EAP";
3416
3417 return eapol_method;
3418}
3419
3420
6fc6879b
JM		 3421/**
3422 * wpa_supplicant_get_iface - Get a new network interface
3423 * @global: Pointer to global data from wpa_supplicant_init()
3424 * @ifname: Interface name
3425 * Returns: Pointer to the interface or %NULL if not found
3426 */
3427struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
3428 const char *ifname)
3429{
3430 struct wpa_supplicant *wpa_s;
3431
3432 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
3433 if (os_strcmp(wpa_s->ifname, ifname) == 0)
3434 return wpa_s;
3435 }
3436 return NULL;
3437}
3438
3439
50b16da1 3440#ifndef CONFIG_NO_WPA_MSG
4f1495ae
BG		 3441static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
3442{
3443 struct wpa_supplicant *wpa_s = ctx;
3444 if (wpa_s == NULL)
3445 return NULL;
3446 return wpa_s->ifname;
3447}
50b16da1 3448#endif /* CONFIG_NO_WPA_MSG */
4f1495ae
BG		 3449
3450
6fc6879b
JM		 3451/**
3452 * wpa_supplicant_init - Initialize %wpa_supplicant
3453 * @params: Parameters for %wpa_supplicant
3454 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
3455 *
3456 * This function is used to initialize %wpa_supplicant. After successful
3457 * initialization, the returned data pointer can be used to add and remove
3458 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
3459 */
3460struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
3461{
3462 struct wpa_global *global;
ac305589 3463 int ret, i;
6fc6879b
JM		 3464
3465 if (params == NULL)
3466 return NULL;
3467
39e7d718
JM		 3468#ifdef CONFIG_DRIVER_NDIS
3469 {
3470 void driver_ndis_init_ops(void);
3471 driver_ndis_init_ops();
3472 }
3473#endif /* CONFIG_DRIVER_NDIS */
3474
50b16da1 3475#ifndef CONFIG_NO_WPA_MSG
4f1495ae 3476 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
50b16da1 3477#endif /* CONFIG_NO_WPA_MSG */
4f1495ae 3478
6fc6879b 3479 wpa_debug_open_file(params->wpa_debug_file_path);
daa70d49
SL		 3480 if (params->wpa_debug_syslog)
3481 wpa_debug_open_syslog();
4f68895e
JB		 3482 if (params->wpa_debug_tracing) {
3483 ret = wpa_debug_open_linux_tracing();
3484 if (ret) {
3485 wpa_printf(MSG_ERROR,
3486 "Failed to enable trace logging");
3487 return NULL;
3488 }
3489 }
6fc6879b 3490
12760815 3491 ret = eap_register_methods();
6fc6879b
JM		 3492 if (ret) {
3493 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
3494 if (ret == -2)
3495 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
3496 "the same EAP type.");
3497 return NULL;
3498 }
3499
3500 global = os_zalloc(sizeof(*global));
3501 if (global == NULL)
3502 return NULL;
b22128ef
JM		 3503 dl_list_init(&global->p2p_srv_bonjour);
3504 dl_list_init(&global->p2p_srv_upnp);
6fc6879b
JM		 3505 global->params.daemonize = params->daemonize;
3506 global->params.wait_for_monitor = params->wait_for_monitor;
3507 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
3508 if (params->pid_file)
3509 global->params.pid_file = os_strdup(params->pid_file);
3510 if (params->ctrl_interface)
3511 global->params.ctrl_interface =
3512 os_strdup(params->ctrl_interface);
29257565
JM		 3513 if (params->ctrl_interface_group)
3514 global->params.ctrl_interface_group =
3515 os_strdup(params->ctrl_interface_group);
d27df100
JM		 3516 if (params->override_driver)
3517 global->params.override_driver =
3518 os_strdup(params->override_driver);
3519 if (params->override_ctrl_interface)
3520 global->params.override_ctrl_interface =
3521 os_strdup(params->override_ctrl_interface);
6fc6879b
JM		 3522 wpa_debug_level = global->params.wpa_debug_level =
3523 params->wpa_debug_level;
3524 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
3525 params->wpa_debug_show_keys;
3526 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
3527 params->wpa_debug_timestamp;
3528
f19858f5
JM		 3529 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
3530
0456ea16 3531 if (eloop_init()) {
6fc6879b
JM		 3532 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
3533 wpa_supplicant_deinit(global);
3534 return NULL;
3535 }
3536
38e24575 3537 random_init(params->entropy_file);
d47fa330 3538
6fc6879b
JM		 3539 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
3540 if (global->ctrl_iface == NULL) {
3541 wpa_supplicant_deinit(global);
3542 return NULL;
3543 }
3544
dc461de4
WS		 3545 if (wpas_notify_supplicant_initialized(global)) {
3546 wpa_supplicant_deinit(global);
3547 return NULL;
6fc6879b
JM		 3548 }
3549
c5121837 3550 for (i = 0; wpa_drivers[i]; i++)
ac305589
JM		 3551 global->drv_count++;
3552 if (global->drv_count == 0) {
3553 wpa_printf(MSG_ERROR, "No drivers enabled");
3554 wpa_supplicant_deinit(global);
3555 return NULL;
3556 }
3557 global->drv_priv = os_zalloc(global->drv_count * sizeof(void *));
3558 if (global->drv_priv == NULL) {
3559 wpa_supplicant_deinit(global);
3560 return NULL;
3561 }
ac305589 3562
9675ce35
JM		 3563#ifdef CONFIG_WIFI_DISPLAY
3564 if (wifi_display_init(global) < 0) {
3565 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
3566 wpa_supplicant_deinit(global);
3567 return NULL;
3568 }
3569#endif /* CONFIG_WIFI_DISPLAY */
3570
6fc6879b
JM		 3571 return global;
3572}
3573
3574
3575/**
3576 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
3577 * @global: Pointer to global data from wpa_supplicant_init()
3578 * Returns: 0 after successful event loop run, -1 on failure
3579 *
3580 * This function starts the main event loop and continues running as long as
3581 * there are any remaining events. In most cases, this function is running as
3582 * long as the %wpa_supplicant process in still in use.
3583 */
3584int wpa_supplicant_run(struct wpa_global *global)
3585{
3586 struct wpa_supplicant *wpa_s;
3587
3588 if (global->params.daemonize &&
3589 wpa_supplicant_daemon(global->params.pid_file))
3590 return -1;
3591
3592 if (global->params.wait_for_monitor) {
3593 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
3594 if (wpa_s->ctrl_iface)
3595 wpa_supplicant_ctrl_iface_wait(
3596 wpa_s->ctrl_iface);
3597 }
3598
0456ea16
JM		 3599 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
3600 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
6fc6879b
JM		 3601
3602 eloop_run();
3603
3604 return 0;
3605}
3606
3607
3608/**
3609 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
3610 * @global: Pointer to global data from wpa_supplicant_init()
3611 *
3612 * This function is called to deinitialize %wpa_supplicant and to free all
3613 * allocated resources. Remaining network interfaces will also be removed.
3614 */
3615void wpa_supplicant_deinit(struct wpa_global *global)
3616{
ac305589
JM		 3617 int i;
3618
6fc6879b
JM		 3619 if (global == NULL)
3620 return;
3621
9675ce35
JM		 3622#ifdef CONFIG_WIFI_DISPLAY
3623 wifi_display_deinit(global);
3624#endif /* CONFIG_WIFI_DISPLAY */
b22128ef 3625
6fc6879b 3626 while (global->ifaces)
df509539 3627 wpa_supplicant_remove_iface(global, global->ifaces, 1);
6fc6879b
JM		 3628
3629 if (global->ctrl_iface)
3630 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
dc461de4
WS		 3631
3632 wpas_notify_supplicant_deinitialized(global);
6fc6879b
JM		 3633
3634 eap_peer_unregister_methods();
3ec97afe
JM		 3635#ifdef CONFIG_AP
3636 eap_server_unregister_methods();
3637#endif /* CONFIG_AP */
6fc6879b 3638
c5121837 3639 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
ac305589
JM		 3640 if (!global->drv_priv[i])
3641 continue;
c5121837 3642 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
ac305589
JM		 3643 }
3644 os_free(global->drv_priv);
3645
d47fa330
JM		 3646 random_deinit();
3647
6fc6879b
JM		 3648 eloop_destroy();
3649
3650 if (global->params.pid_file) {
3651 os_daemonize_terminate(global->params.pid_file);
3652 os_free(global->params.pid_file);
3653 }
3654 os_free(global->params.ctrl_interface);
29257565 3655 os_free(global->params.ctrl_interface_group);
d27df100
JM		 3656 os_free(global->params.override_driver);
3657 os_free(global->params.override_ctrl_interface);
6fc6879b 3658
af8a827b 3659 os_free(global->p2p_disallow_freq.range);
01a57fe4 3660 os_free(global->add_psk);
6f3bc72b 3661
6fc6879b 3662 os_free(global);
daa70d49 3663 wpa_debug_close_syslog();
6fc6879b 3664 wpa_debug_close_file();
4f68895e 3665 wpa_debug_close_linux_tracing();
6fc6879b 3666}
611aea7d
JM		 3667
3668
3669void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
3670{
849b5dc7
JM		 3671 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
3672 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
3673 char country[3];
3674 country[0] = wpa_s->conf->country[0];
3675 country[1] = wpa_s->conf->country[1];
3676 country[2] = '\0';
3677 if (wpa_drv_set_country(wpa_s, country) < 0) {
3678 wpa_printf(MSG_ERROR, "Failed to set country code "
3679 "'%s'", country);
3680 }
3681 }
3682
306ae225
JM		 3683 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
3684 wpas_init_ext_pw(wpa_s);
3685
611aea7d
JM		 3686#ifdef CONFIG_WPS
3687 wpas_wps_update_config(wpa_s);
3688#endif /* CONFIG_WPS */
3689
b22128ef
JM		 3690#ifdef CONFIG_P2P
3691 wpas_p2p_update_config(wpa_s);
3692#endif /* CONFIG_P2P */
3693
611aea7d
JM		 3694 wpa_s->conf->changed_parameters = 0;
3695}
2f9c6aa6
JM		 3696
3697
0fb337c1
JM		 3698static void add_freq(int *freqs, int *num_freqs, int freq)
3699{
3700 int i;
3701
3702 for (i = 0; i < *num_freqs; i++) {
3703 if (freqs[i] == freq)
3704 return;
3705 }
3706
3707 freqs[*num_freqs] = freq;
3708 (*num_freqs)++;
3709}
3710
3711
3712static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
3713{
3714 struct wpa_bss *bss, *cbss;
3715 const int max_freqs = 10;
3716 int *freqs;
3717 int num_freqs = 0;
3718
3719 freqs = os_zalloc(sizeof(int) * (max_freqs + 1));
3720 if (freqs == NULL)
3721 return NULL;
3722
3723 cbss = wpa_s->current_bss;
3724
3725 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
3726 if (bss == cbss)
3727 continue;
3728 if (bss->ssid_len == cbss->ssid_len &&
3729 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
3730 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
3731 add_freq(freqs, &num_freqs, bss->freq);
3732 if (num_freqs == max_freqs)
3733 break;
3734 }
3735 }
3736
3737 if (num_freqs == 0) {
3738 os_free(freqs);
3739 freqs = NULL;
3740 }
3741
3742 return freqs;
3743}
3744
3745
3746void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
3747{
3748 int timeout;
3749 int count;
3750 int *freqs = NULL;
3751
5fd9fb27
JM		 3752 /*
3753 * Remove possible authentication timeout since the connection failed.
3754 */
3755 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
3756
0cdb93fe
JM		 3757 if (wpa_s->disconnected) {
3758 /*
3759 * There is no point in blacklisting the AP if this event is
3760 * generated based on local request to disconnect.
3761 */
3762 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
3763 "indication since interface has been put into "
3764 "disconnected state");
3765 return;
3766 }
3767
0fb337c1
JM		 3768 /*
3769 * Add the failed BSSID into the blacklist and speed up next scan
3770 * attempt if there could be other APs that could accept association.
3771 * The current blacklist count indicates how many times we have tried
3772 * connecting to this AP and multiple attempts mean that other APs are
3773 * either not available or has already been tried, so that we can start
3774 * increasing the delay here to avoid constant scanning.
3775 */
3776 count = wpa_blacklist_add(wpa_s, bssid);
3777 if (count == 1 && wpa_s->current_bss) {
3778 /*
3779 * This BSS was not in the blacklist before. If there is
3780 * another BSS available for the same ESS, we should try that
3781 * next. Otherwise, we may as well try this one once more
3782 * before allowing other, likely worse, ESSes to be considered.
3783 */
3784 freqs = get_bss_freqs_in_ess(wpa_s);
3785 if (freqs) {
f049052b
BG		 3786 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
3787 "has been seen; try it next");
0fb337c1
JM		 3788 wpa_blacklist_add(wpa_s, bssid);
3789 /*
3790 * On the next scan, go through only the known channels
3791 * used in this ESS based on previous scans to speed up
3792 * common load balancing use case.
3793 */
3794 os_free(wpa_s->next_scan_freqs);
3795 wpa_s->next_scan_freqs = freqs;
3796 }
3797 }
3798
f1a52633
JM		 3799 /*
3800 * Add previous failure count in case the temporary blacklist was
3801 * cleared due to no other BSSes being available.
3802 */
3803 count += wpa_s->extra_blacklist_count;
3804
dd579704
JM		 3805 if (count > 3 && wpa_s->current_ssid) {
3806 wpa_printf(MSG_DEBUG, "Continuous association failures - "
3807 "consider temporary network disabling");
3808 wpas_auth_failed(wpa_s);
3809 }
3810
0fb337c1
JM		 3811 switch (count) {
3812 case 1:
3813 timeout = 100;
3814 break;
3815 case 2:
3816 timeout = 500;
3817 break;
3818 case 3:
3819 timeout = 1000;
3820 break;
f1a52633 3821 case 4:
0fb337c1 3822 timeout = 5000;
f1a52633
JM		 3823 break;
3824 default:
3825 timeout = 10000;
3826 break;
0fb337c1
JM		 3827 }
3828
f1a52633
JM		 3829 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
3830 "ms", count, timeout);
3831
0fb337c1
JM		 3832 /*
3833 * TODO: if more than one possible AP is available in scan results,
3834 * could try the other ones before requesting a new scan.
3835 */
3836 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
3837 1000 * (timeout % 1000));
99fcd404 3838
f85f545e 3839 wpas_p2p_continue_after_scan(wpa_s);
0fb337c1 3840}
22628eca
JM		 3841
3842
3843int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
3844{
3845 return wpa_s->conf->ap_scan == 2 ||
3846 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
3847}
d2118814
JM		 3848
3849
3850#if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
3851int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
3852 struct wpa_ssid *ssid,
3853 const char *field,
3854 const char *value)
3855{
3856#ifdef IEEE8021X_EAPOL
3857 struct eap_peer_config *eap = &ssid->eap;
3858
3859 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
3860 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
3861 (const u8 *) value, os_strlen(value));
3862
3863 switch (wpa_supplicant_ctrl_req_from_string(field)) {
3864 case WPA_CTRL_REQ_EAP_IDENTITY:
3865 os_free(eap->identity);
3866 eap->identity = (u8 *) os_strdup(value);
3867 eap->identity_len = os_strlen(value);
3868 eap->pending_req_identity = 0;
3869 if (ssid == wpa_s->current_ssid)
3870 wpa_s->reassociate = 1;
3871 break;
3872 case WPA_CTRL_REQ_EAP_PASSWORD:
3873 os_free(eap->password);
3874 eap->password = (u8 *) os_strdup(value);
3875 eap->password_len = os_strlen(value);
3876 eap->pending_req_password = 0;
3877 if (ssid == wpa_s->current_ssid)
3878 wpa_s->reassociate = 1;
3879 break;
3880 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
3881 os_free(eap->new_password);
3882 eap->new_password = (u8 *) os_strdup(value);
3883 eap->new_password_len = os_strlen(value);
3884 eap->pending_req_new_password = 0;
3885 if (ssid == wpa_s->current_ssid)
3886 wpa_s->reassociate = 1;
3887 break;
3888 case WPA_CTRL_REQ_EAP_PIN:
3889 os_free(eap->pin);
3890 eap->pin = os_strdup(value);
3891 eap->pending_req_pin = 0;
3892 if (ssid == wpa_s->current_ssid)
3893 wpa_s->reassociate = 1;
3894 break;
3895 case WPA_CTRL_REQ_EAP_OTP:
3896 os_free(eap->otp);
3897 eap->otp = (u8 *) os_strdup(value);
3898 eap->otp_len = os_strlen(value);
3899 os_free(eap->pending_req_otp);
3900 eap->pending_req_otp = NULL;
3901 eap->pending_req_otp_len = 0;
3902 break;
3903 case WPA_CTRL_REQ_EAP_PASSPHRASE:
3904 os_free(eap->private_key_passwd);
3905 eap->private_key_passwd = (u8 *) os_strdup(value);
3906 eap->pending_req_passphrase = 0;
3907 if (ssid == wpa_s->current_ssid)
3908 wpa_s->reassociate = 1;
3909 break;
a5d44ac0
JM		 3910 case WPA_CTRL_REQ_SIM:
3911 os_free(eap->external_sim_resp);
3912 eap->external_sim_resp = os_strdup(value);
3913 break;
d2118814
JM		 3914 default:
3915 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
3916 return -1;
3917 }
3918
3919 return 0;
3920#else /* IEEE8021X_EAPOL */
3921 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
3922 return -1;
3923#endif /* IEEE8021X_EAPOL */
3924}
3925#endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
349493bd
JM		 3926
3927
3928int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
3929{
3930 int i;
3931 unsigned int drv_enc;
3932
3933 if (ssid == NULL)
3934 return 1;
3935
3936 if (ssid->disabled)
3937 return 1;
3938
3939 if (wpa_s && wpa_s->drv_capa_known)
3940 drv_enc = wpa_s->drv_enc;
3941 else
3942 drv_enc = (unsigned int) -1;
3943
3944 for (i = 0; i < NUM_WEP_KEYS; i++) {
3945 size_t len = ssid->wep_key_len[i];
3946 if (len == 0)
3947 continue;
3948 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
3949 continue;
3950 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
3951 continue;
3952 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
3953 continue;
3954 return 1; /* invalid WEP key */
3955 }
3956
9173b16f
JM		 3957 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
3958 !ssid->ext_psk)
2518aad3
JM		 3959 return 1;
3960
349493bd
JM		 3961 return 0;
3962}
b9cfc09a
JJ		 3963
3964
3965int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
3966{
3967 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
3968 return 1;
3969 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
3970 return 0;
3971 return -1;
3972}
00e5e3d5
JM		 3973
3974
3975void wpas_auth_failed(struct wpa_supplicant *wpa_s)
3976{
3977 struct wpa_ssid *ssid = wpa_s->current_ssid;
3978 int dur;
3979 struct os_time now;
3980
3981 if (ssid == NULL) {
3982 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
3983 "SSID block");
3984 return;
3985 }
3986
3987 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
3988 return;
3989
3990 ssid->auth_failures++;
cbf41ca7
SL		 3991
3992#ifdef CONFIG_P2P
3993 if (ssid->p2p_group &&
3994 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
3995 /*
3996 * Skip the wait time since there is a short timeout on the
3997 * connection to a P2P group.
3998 */
3999 return;
4000 }
4001#endif /* CONFIG_P2P */
4002
00e5e3d5
JM		 4003 if (ssid->auth_failures > 50)
4004 dur = 300;
4005 else if (ssid->auth_failures > 20)
4006 dur = 120;
4007 else if (ssid->auth_failures > 10)
4008 dur = 60;
4009 else if (ssid->auth_failures > 5)
4010 dur = 30;
4011 else if (ssid->auth_failures > 1)
4012 dur = 20;
4013 else
4014 dur = 10;
4015
4016 os_get_time(&now);
4017 if (now.sec + dur <= ssid->disabled_until.sec)
4018 return;
4019
4020 ssid->disabled_until.sec = now.sec + dur;
4021
4022 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
4023 "id=%d ssid=\"%s\" auth_failures=%u duration=%d",
4024 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
4025 ssid->auth_failures, dur);
4026}
4027
4028
4029void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
4030 struct wpa_ssid *ssid, int clear_failures)
4031{
4032 if (ssid == NULL)
4033 return;
4034
4035 if (ssid->disabled_until.sec) {
4036 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
4037 "id=%d ssid=\"%s\"",
4038 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
4039 }
4040 ssid->disabled_until.sec = 0;
4041 ssid->disabled_until.usec = 0;
4042 if (clear_failures)
4043 ssid->auth_failures = 0;
4044}
6407f413
JM		 4045
4046
4047int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
4048{
4049 size_t i;
4050
4051 if (wpa_s->disallow_aps_bssid == NULL)
4052 return 0;
4053
4054 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
4055 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
4056 bssid, ETH_ALEN) == 0)
4057 return 1;
4058 }
4059
4060 return 0;
4061}
4062
4063
4064int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
4065 size_t ssid_len)
4066{
4067 size_t i;
4068
4069 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
4070 return 0;
4071
4072 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
4073 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
4074 if (ssid_len == s->ssid_len &&
4075 os_memcmp(ssid, s->ssid, ssid_len) == 0)
4076 return 1;
4077 }
4078
4079 return 0;
4080}
9796a86c
JM		 4081
4082
4083/**
4084 * wpas_request_connection - Request a new connection
4085 * @wpa_s: Pointer to the network interface
4086 *
4087 * This function is used to request a new connection to be found. It will mark
4088 * the interface to allow reassociation and request a new scan to find a
4089 * suitable network to connect to.
4090 */
4091void wpas_request_connection(struct wpa_supplicant *wpa_s)
4092{
4093 wpa_s->normal_scans = 0;
4094 wpa_supplicant_reinit_autoscan(wpa_s);
4095 wpa_s->extra_blacklist_count = 0;
4096 wpa_s->disconnected = 0;
4097 wpa_s->reassociate = 1;
5e24beae
MH		 4098
4099 if (wpa_supplicant_fast_associate(wpa_s) != 1)
4100 wpa_supplicant_req_scan(wpa_s, 0, 0);
9796a86c 4101}
36b9883d
DG		 4102
4103
c3775143
KP		 4104static int wpas_conn_in_progress(struct wpa_supplicant *wpa_s)
4105{
4106 return wpa_s->wpa_state >= WPA_AUTHENTICATING &&
4107 wpa_s->wpa_state != WPA_COMPLETED;
4108}
4109
4110
36b9883d
DG		 4111/**
4112 * wpas_wpa_is_in_progress - Check whether a connection is in progress
4113 * @wpa_s: Pointer to wpa_supplicant data
c3775143 4114 * @include_current: Whether to consider specified interface
36b9883d
DG		 4115 *
4116 * This function is to check if the wpa state is in beginning of the connection
4117 * during 4-way handshake or group key handshake with WPA on any shared
4118 * interface.
4119 */
c3775143 4120int wpas_wpa_is_in_progress(struct wpa_supplicant *wpa_s, int include_current)
36b9883d 4121{
36b9883d
DG		 4122 struct wpa_supplicant *ifs;
4123
1b544ffa
JM		 4124 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
4125 radio_list) {
c3775143
KP		 4126 if (!include_current && ifs == wpa_s)
4127 continue;
36b9883d 4128
c3775143 4129 if (wpas_conn_in_progress(ifs)) {
36b9883d 4130 wpa_dbg(wpa_s, MSG_DEBUG, "Connection is in progress "
c3775143 4131 "on interface %s - defer", ifs->ifname);
36b9883d
DG		 4132 return 1;
4133 }
4134 }
4135
4136 return 0;
4137}
53c5dfc2
IP		 4138
4139
217cf499
JM		 4140void dump_freq_array(struct wpa_supplicant *wpa_s, const char *title,
4141 int *freq_array, unsigned int len)
4142{
4143 unsigned int i;
4144
4145 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
4146 len, title);
4147 for (i = 0; i < len; i++)
4148 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d", i, freq_array[i]);
4149}
4150
4151
53c5dfc2
IP		 4152/*
4153 * Find the operating frequencies of any of the virtual interfaces that
4154 * are using the same radio as the current interface.
4155 */
4156int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
4157 int *freq_array, unsigned int len)
4158{
53c5dfc2
IP		 4159 struct wpa_supplicant *ifs;
4160 u8 bssid[ETH_ALEN];
4161 int freq;
4162 unsigned int idx = 0, i;
4163
217cf499
JM		 4164 wpa_dbg(wpa_s, MSG_DEBUG,
4165 "Determining shared radio frequencies (max len %u)", len);
53c5dfc2
IP		 4166 os_memset(freq_array, 0, sizeof(int) * len);
4167
4168 /* First add the frequency of the local interface */
4169 if (wpa_s->current_ssid != NULL && wpa_s->assoc_freq != 0) {
4170 if (wpa_s->current_ssid->mode == WPAS_MODE_AP ||
4171 wpa_s->current_ssid->mode == WPAS_MODE_P2P_GO)
4172 freq_array[idx++] = wpa_s->current_ssid->frequency;
4173 else if (wpa_drv_get_bssid(wpa_s, bssid) == 0)
4174 freq_array[idx++] = wpa_s->assoc_freq;
4175 }
4176
4177 /* If get_radio_name is not supported, use only the local freq */
a21816a9
JM		 4178 if (!wpa_s->driver->get_radio_name) {
4179 freq = wpa_drv_shared_freq(wpa_s);
4180 if (freq > 0 && idx < len &&
4181 (idx == 0 || freq_array[0] != freq))
4182 freq_array[idx++] = freq;
217cf499 4183 dump_freq_array(wpa_s, "No get_radio_name", freq_array, idx);
53c5dfc2 4184 return idx;
a21816a9 4185 }
53c5dfc2 4186
0ad3b9c4
JM		 4187 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
4188 radio_list) {
4189 if (wpa_s == ifs)
53c5dfc2
IP		 4190 continue;
4191
4192 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
4193 continue;
4194
4195 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
4196 ifs->current_ssid->mode == WPAS_MODE_P2P_GO)
4197 freq = ifs->current_ssid->frequency;
4198 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
4199 freq = ifs->assoc_freq;
4200 else
4201 continue;
4202
4203 /* Hold only distinct freqs */
4204 for (i = 0; i < idx; i++)
4205 if (freq_array[i] == freq)
4206 break;
4207
4208 if (i == idx)
4209 freq_array[idx++] = freq;
4210 }
217cf499
JM		 4211
4212 dump_freq_array(wpa_s, "completed iteration", freq_array, idx);
53c5dfc2
IP		 4213 return idx;
4214}
Unnamed repository; edit this file 'description' to name the repository.