]> git.ipfire.org Git - thirdparty/hostap.git/blob - wpa_supplicant/wpa_supplicant.c
projects / thirdparty / hostap.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
OWE: Try another group only on association rejection with status 77
[thirdparty/hostap.git] / wpa_supplicant / wpa_supplicant.c
1 /*
2 * WPA Supplicant
3 * Copyright (c) 2003-2018, Jouni Malinen <j@w1.fi>
4 *
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
7 *
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
11 */
12
13 #include "includes.h"
14 #ifdef CONFIG_MATCH_IFACE
15 #include <net/if.h>
16 #include <fnmatch.h>
17 #endif /* CONFIG_MATCH_IFACE */
18
19 #include "common.h"
20 #include "crypto/random.h"
21 #include "crypto/sha1.h"
22 #include "eapol_supp/eapol_supp_sm.h"
23 #include "eap_peer/eap.h"
24 #include "eap_peer/eap_proxy.h"
25 #include "eap_server/eap_methods.h"
26 #include "rsn_supp/wpa.h"
27 #include "eloop.h"
28 #include "config.h"
29 #include "utils/ext_password.h"
30 #include "l2_packet/l2_packet.h"
31 #include "wpa_supplicant_i.h"
32 #include "driver_i.h"
33 #include "ctrl_iface.h"
34 #include "pcsc_funcs.h"
35 #include "common/version.h"
36 #include "rsn_supp/preauth.h"
37 #include "rsn_supp/pmksa_cache.h"
38 #include "common/wpa_ctrl.h"
39 #include "common/ieee802_11_defs.h"
40 #include "common/hw_features_common.h"
41 #include "common/gas_server.h"
42 #include "p2p/p2p.h"
43 #include "fst/fst.h"
44 #include "blacklist.h"
45 #include "wpas_glue.h"
46 #include "wps_supplicant.h"
47 #include "ibss_rsn.h"
48 #include "sme.h"
49 #include "gas_query.h"
50 #include "ap.h"
51 #include "p2p_supplicant.h"
52 #include "wifi_display.h"
53 #include "notify.h"
54 #include "bgscan.h"
55 #include "autoscan.h"
56 #include "bss.h"
57 #include "scan.h"
58 #include "offchannel.h"
59 #include "hs20_supplicant.h"
60 #include "wnm_sta.h"
61 #include "wpas_kay.h"
62 #include "mesh.h"
63 #include "dpp_supplicant.h"
64 #ifdef CONFIG_MESH
65 #include "ap/ap_config.h"
66 #include "ap/hostapd.h"
67 #endif /* CONFIG_MESH */
68
69 const char *const wpa_supplicant_version =
70 "wpa_supplicant v" VERSION_STR "\n"
71 "Copyright (c) 2003-2017, Jouni Malinen <j@w1.fi> and contributors";
72
73 const char *const wpa_supplicant_license =
74 "This software may be distributed under the terms of the BSD license.\n"
75 "See README for more details.\n"
76 #ifdef EAP_TLS_OPENSSL
77 "\nThis product includes software developed by the OpenSSL Project\n"
78 "for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
79 #endif /* EAP_TLS_OPENSSL */
80 ;
81
82 #ifndef CONFIG_NO_STDOUT_DEBUG
83 /* Long text divided into parts in order to fit in C89 strings size limits. */
84 const char *const wpa_supplicant_full_license1 =
85 "";
86 const char *const wpa_supplicant_full_license2 =
87 "This software may be distributed under the terms of the BSD license.\n"
88 "\n"
89 "Redistribution and use in source and binary forms, with or without\n"
90 "modification, are permitted provided that the following conditions are\n"
91 "met:\n"
92 "\n";
93 const char *const wpa_supplicant_full_license3 =
94 "1. Redistributions of source code must retain the above copyright\n"
95 " notice, this list of conditions and the following disclaimer.\n"
96 "\n"
97 "2. Redistributions in binary form must reproduce the above copyright\n"
98 " notice, this list of conditions and the following disclaimer in the\n"
99 " documentation and/or other materials provided with the distribution.\n"
100 "\n";
101 const char *const wpa_supplicant_full_license4 =
102 "3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
103 " names of its contributors may be used to endorse or promote products\n"
104 " derived from this software without specific prior written permission.\n"
105 "\n"
106 "THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
107 "\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
108 "LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
109 "A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
110 const char *const wpa_supplicant_full_license5 =
111 "OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
112 "SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
113 "LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
114 "DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
115 "THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
116 "(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
117 "OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
118 "\n";
119 #endif /* CONFIG_NO_STDOUT_DEBUG */
120
121
122 static void wpa_bss_tmp_disallow_timeout(void *eloop_ctx, void *timeout_ctx);
123 #if defined(CONFIG_FILS) && defined(IEEE8021X_EAPOL)
124 static void wpas_update_fils_connect_params(struct wpa_supplicant *wpa_s);
125 #endif /* CONFIG_FILS && IEEE8021X_EAPOL */
126
127
128 /* Configure default/group WEP keys for static WEP */
129 int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
130 {
131 int i, set = 0;
132
133 for (i = 0; i < NUM_WEP_KEYS; i++) {
134 if (ssid->wep_key_len[i] == 0)
135 continue;
136
137 set = 1;
138 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
139 i, i == ssid->wep_tx_keyidx, NULL, 0,
140 ssid->wep_key[i], ssid->wep_key_len[i]);
141 }
142
143 return set;
144 }
145
146
147 int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
148 struct wpa_ssid *ssid)
149 {
150 u8 key[32];
151 size_t keylen;
152 enum wpa_alg alg;
153 u8 seq[6] = { 0 };
154 int ret;
155
156 /* IBSS/WPA-None uses only one key (Group) for both receiving and
157 * sending unicast and multicast packets. */
158
159 if (ssid->mode != WPAS_MODE_IBSS) {
160 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
161 "IBSS/ad-hoc) for WPA-None", ssid->mode);
162 return -1;
163 }
164
165 if (!ssid->psk_set) {
166 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
167 "WPA-None");
168 return -1;
169 }
170
171 switch (wpa_s->group_cipher) {
172 case WPA_CIPHER_CCMP:
173 os_memcpy(key, ssid->psk, 16);
174 keylen = 16;
175 alg = WPA_ALG_CCMP;
176 break;
177 case WPA_CIPHER_GCMP:
178 os_memcpy(key, ssid->psk, 16);
179 keylen = 16;
180 alg = WPA_ALG_GCMP;
181 break;
182 case WPA_CIPHER_TKIP:
183 /* WPA-None uses the same Michael MIC key for both TX and RX */
184 os_memcpy(key, ssid->psk, 16 + 8);
185 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
186 keylen = 32;
187 alg = WPA_ALG_TKIP;
188 break;
189 default:
190 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
191 "WPA-None", wpa_s->group_cipher);
192 return -1;
193 }
194
195 /* TODO: should actually remember the previously used seq#, both for TX
196 * and RX from each STA.. */
197
198 ret = wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
199 os_memset(key, 0, sizeof(key));
200 return ret;
201 }
202
203
204 static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
205 {
206 struct wpa_supplicant *wpa_s = eloop_ctx;
207 const u8 *bssid = wpa_s->bssid;
208 if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
209 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
210 wpa_s->wpa_state == WPA_ASSOCIATING))
211 bssid = wpa_s->pending_bssid;
212 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
213 MAC2STR(bssid));
214 wpa_blacklist_add(wpa_s, bssid);
215 wpa_sm_notify_disassoc(wpa_s->wpa);
216 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
217 wpa_s->reassociate = 1;
218
219 /*
220 * If we timed out, the AP or the local radio may be busy.
221 * So, wait a second until scanning again.
222 */
223 wpa_supplicant_req_scan(wpa_s, 1, 0);
224 }
225
226
227 /**
228 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
229 * @wpa_s: Pointer to wpa_supplicant data
230 * @sec: Number of seconds after which to time out authentication
231 * @usec: Number of microseconds after which to time out authentication
232 *
233 * This function is used to schedule a timeout for the current authentication
234 * attempt.
235 */
236 void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
237 int sec, int usec)
238 {
239 if (wpa_s->conf->ap_scan == 0 &&
240 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
241 return;
242
243 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
244 "%d usec", sec, usec);
245 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
246 wpa_s->last_auth_timeout_sec = sec;
247 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
248 }
249
250
251 /*
252 * wpas_auth_timeout_restart - Restart and change timeout for authentication
253 * @wpa_s: Pointer to wpa_supplicant data
254 * @sec_diff: difference in seconds applied to original timeout value
255 */
256 void wpas_auth_timeout_restart(struct wpa_supplicant *wpa_s, int sec_diff)
257 {
258 int new_sec = wpa_s->last_auth_timeout_sec + sec_diff;
259
260 if (eloop_is_timeout_registered(wpa_supplicant_timeout, wpa_s, NULL)) {
261 wpa_dbg(wpa_s, MSG_DEBUG,
262 "Authentication timeout restart: %d sec", new_sec);
263 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
264 eloop_register_timeout(new_sec, 0, wpa_supplicant_timeout,
265 wpa_s, NULL);
266 }
267 }
268
269
270 /**
271 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
272 * @wpa_s: Pointer to wpa_supplicant data
273 *
274 * This function is used to cancel authentication timeout scheduled with
275 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
276 * been completed.
277 */
278 void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
279 {
280 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
281 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
282 wpa_blacklist_del(wpa_s, wpa_s->bssid);
283 os_free(wpa_s->last_con_fail_realm);
284 wpa_s->last_con_fail_realm = NULL;
285 wpa_s->last_con_fail_realm_len = 0;
286 }
287
288
289 /**
290 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
291 * @wpa_s: Pointer to wpa_supplicant data
292 *
293 * This function is used to configure EAPOL state machine based on the selected
294 * authentication mode.
295 */
296 void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
297 {
298 #ifdef IEEE8021X_EAPOL
299 struct eapol_config eapol_conf;
300 struct wpa_ssid *ssid = wpa_s->current_ssid;
301
302 #ifdef CONFIG_IBSS_RSN
303 if (ssid->mode == WPAS_MODE_IBSS &&
304 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
305 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
306 /*
307 * RSN IBSS authentication is per-STA and we can disable the
308 * per-BSSID EAPOL authentication.
309 */
310 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
311 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
312 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
313 return;
314 }
315 #endif /* CONFIG_IBSS_RSN */
316
317 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
318 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
319
320 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
321 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
322 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
323 else
324 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
325
326 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
327 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
328 eapol_conf.accept_802_1x_keys = 1;
329 eapol_conf.required_keys = 0;
330 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
331 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
332 }
333 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
334 eapol_conf.required_keys |=
335 EAPOL_REQUIRE_KEY_BROADCAST;
336 }
337
338 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
339 eapol_conf.required_keys = 0;
340 }
341 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
342 eapol_conf.workaround = ssid->eap_workaround;
343 eapol_conf.eap_disabled =
344 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
345 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
346 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
347 eapol_conf.external_sim = wpa_s->conf->external_sim;
348
349 #ifdef CONFIG_WPS
350 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
351 eapol_conf.wps |= EAPOL_LOCAL_WPS_IN_USE;
352 if (wpa_s->current_bss) {
353 struct wpabuf *ie;
354 ie = wpa_bss_get_vendor_ie_multi(wpa_s->current_bss,
355 WPS_IE_VENDOR_TYPE);
356 if (ie) {
357 if (wps_is_20(ie))
358 eapol_conf.wps |=
359 EAPOL_PEER_IS_WPS20_AP;
360 wpabuf_free(ie);
361 }
362 }
363 }
364 #endif /* CONFIG_WPS */
365
366 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
367
368 #ifdef CONFIG_MACSEC
369 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE && ssid->mka_psk_set)
370 ieee802_1x_create_preshared_mka(wpa_s, ssid);
371 else
372 ieee802_1x_alloc_kay_sm(wpa_s, ssid);
373 #endif /* CONFIG_MACSEC */
374 #endif /* IEEE8021X_EAPOL */
375 }
376
377
378 /**
379 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
380 * @wpa_s: Pointer to wpa_supplicant data
381 * @ssid: Configuration data for the network
382 *
383 * This function is used to configure WPA state machine and related parameters
384 * to a mode where WPA is not enabled. This is called as part of the
385 * authentication configuration when the selected network does not use WPA.
386 */
387 void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
388 struct wpa_ssid *ssid)
389 {
390 int i;
391
392 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
393 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
394 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
395 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
396 else
397 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
398 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
399 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
400 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
401 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
402 wpa_s->group_cipher = WPA_CIPHER_NONE;
403 wpa_s->mgmt_group_cipher = 0;
404
405 for (i = 0; i < NUM_WEP_KEYS; i++) {
406 if (ssid->wep_key_len[i] > 5) {
407 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
408 wpa_s->group_cipher = WPA_CIPHER_WEP104;
409 break;
410 } else if (ssid->wep_key_len[i] > 0) {
411 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
412 wpa_s->group_cipher = WPA_CIPHER_WEP40;
413 break;
414 }
415 }
416
417 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
418 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
419 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
420 wpa_s->pairwise_cipher);
421 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
422 #ifdef CONFIG_IEEE80211W
423 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
424 wpa_s->mgmt_group_cipher);
425 #endif /* CONFIG_IEEE80211W */
426
427 pmksa_cache_clear_current(wpa_s->wpa);
428 }
429
430
431 void free_hw_features(struct wpa_supplicant *wpa_s)
432 {
433 int i;
434 if (wpa_s->hw.modes == NULL)
435 return;
436
437 for (i = 0; i < wpa_s->hw.num_modes; i++) {
438 os_free(wpa_s->hw.modes[i].channels);
439 os_free(wpa_s->hw.modes[i].rates);
440 }
441
442 os_free(wpa_s->hw.modes);
443 wpa_s->hw.modes = NULL;
444 }
445
446
447 static void free_bss_tmp_disallowed(struct wpa_supplicant *wpa_s)
448 {
449 struct wpa_bss_tmp_disallowed *bss, *prev;
450
451 dl_list_for_each_safe(bss, prev, &wpa_s->bss_tmp_disallowed,
452 struct wpa_bss_tmp_disallowed, list) {
453 eloop_cancel_timeout(wpa_bss_tmp_disallow_timeout, wpa_s, bss);
454 dl_list_del(&bss->list);
455 os_free(bss);
456 }
457 }
458
459
460 void wpas_flush_fils_hlp_req(struct wpa_supplicant *wpa_s)
461 {
462 struct fils_hlp_req *req;
463
464 while ((req = dl_list_first(&wpa_s->fils_hlp_req, struct fils_hlp_req,
465 list)) != NULL) {
466 dl_list_del(&req->list);
467 wpabuf_free(req->pkt);
468 os_free(req);
469 }
470 }
471
472
473 static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
474 {
475 int i;
476
477 bgscan_deinit(wpa_s);
478 autoscan_deinit(wpa_s);
479 scard_deinit(wpa_s->scard);
480 wpa_s->scard = NULL;
481 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
482 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
483 l2_packet_deinit(wpa_s->l2);
484 wpa_s->l2 = NULL;
485 if (wpa_s->l2_br) {
486 l2_packet_deinit(wpa_s->l2_br);
487 wpa_s->l2_br = NULL;
488 }
489 #ifdef CONFIG_TESTING_OPTIONS
490 l2_packet_deinit(wpa_s->l2_test);
491 wpa_s->l2_test = NULL;
492 os_free(wpa_s->get_pref_freq_list_override);
493 wpa_s->get_pref_freq_list_override = NULL;
494 wpabuf_free(wpa_s->last_assoc_req_wpa_ie);
495 wpa_s->last_assoc_req_wpa_ie = NULL;
496 #endif /* CONFIG_TESTING_OPTIONS */
497
498 if (wpa_s->conf != NULL) {
499 struct wpa_ssid *ssid;
500 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
501 wpas_notify_network_removed(wpa_s, ssid);
502 }
503
504 os_free(wpa_s->confname);
505 wpa_s->confname = NULL;
506
507 os_free(wpa_s->confanother);
508 wpa_s->confanother = NULL;
509
510 os_free(wpa_s->last_con_fail_realm);
511 wpa_s->last_con_fail_realm = NULL;
512 wpa_s->last_con_fail_realm_len = 0;
513
514 wpa_sm_set_eapol(wpa_s->wpa, NULL);
515 eapol_sm_deinit(wpa_s->eapol);
516 wpa_s->eapol = NULL;
517
518 rsn_preauth_deinit(wpa_s->wpa);
519
520 #ifdef CONFIG_TDLS
521 wpa_tdls_deinit(wpa_s->wpa);
522 #endif /* CONFIG_TDLS */
523
524 wmm_ac_clear_saved_tspecs(wpa_s);
525 pmksa_candidate_free(wpa_s->wpa);
526 wpa_sm_deinit(wpa_s->wpa);
527 wpa_s->wpa = NULL;
528 wpa_blacklist_clear(wpa_s);
529
530 wpa_bss_deinit(wpa_s);
531
532 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
533 wpa_supplicant_cancel_scan(wpa_s);
534 wpa_supplicant_cancel_auth_timeout(wpa_s);
535 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
536 #ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
537 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
538 wpa_s, NULL);
539 #endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
540
541 eloop_cancel_timeout(wpas_network_reenabled, wpa_s, NULL);
542
543 wpas_wps_deinit(wpa_s);
544
545 wpabuf_free(wpa_s->pending_eapol_rx);
546 wpa_s->pending_eapol_rx = NULL;
547
548 #ifdef CONFIG_IBSS_RSN
549 ibss_rsn_deinit(wpa_s->ibss_rsn);
550 wpa_s->ibss_rsn = NULL;
551 #endif /* CONFIG_IBSS_RSN */
552
553 sme_deinit(wpa_s);
554
555 #ifdef CONFIG_AP
556 wpa_supplicant_ap_deinit(wpa_s);
557 #endif /* CONFIG_AP */
558
559 wpas_p2p_deinit(wpa_s);
560
561 #ifdef CONFIG_OFFCHANNEL
562 offchannel_deinit(wpa_s);
563 #endif /* CONFIG_OFFCHANNEL */
564
565 wpa_supplicant_cancel_sched_scan(wpa_s);
566
567 os_free(wpa_s->next_scan_freqs);
568 wpa_s->next_scan_freqs = NULL;
569
570 os_free(wpa_s->manual_scan_freqs);
571 wpa_s->manual_scan_freqs = NULL;
572 os_free(wpa_s->select_network_scan_freqs);
573 wpa_s->select_network_scan_freqs = NULL;
574
575 os_free(wpa_s->manual_sched_scan_freqs);
576 wpa_s->manual_sched_scan_freqs = NULL;
577
578 wpas_mac_addr_rand_scan_clear(wpa_s, MAC_ADDR_RAND_ALL);
579
580 /*
581 * Need to remove any pending gas-query radio work before the
582 * gas_query_deinit() call because gas_query::work has not yet been set
583 * for works that have not been started. gas_query_free() will be unable
584 * to cancel such pending radio works and once the pending gas-query
585 * radio work eventually gets removed, the deinit notification call to
586 * gas_query_start_cb() would result in dereferencing freed memory.
587 */
588 if (wpa_s->radio)
589 radio_remove_works(wpa_s, "gas-query", 0);
590 gas_query_deinit(wpa_s->gas);
591 wpa_s->gas = NULL;
592 gas_server_deinit(wpa_s->gas_server);
593 wpa_s->gas_server = NULL;
594
595 free_hw_features(wpa_s);
596
597 ieee802_1x_dealloc_kay_sm(wpa_s);
598
599 os_free(wpa_s->bssid_filter);
600 wpa_s->bssid_filter = NULL;
601
602 os_free(wpa_s->disallow_aps_bssid);
603 wpa_s->disallow_aps_bssid = NULL;
604 os_free(wpa_s->disallow_aps_ssid);
605 wpa_s->disallow_aps_ssid = NULL;
606
607 wnm_bss_keep_alive_deinit(wpa_s);
608 #ifdef CONFIG_WNM
609 wnm_deallocate_memory(wpa_s);
610 #endif /* CONFIG_WNM */
611
612 ext_password_deinit(wpa_s->ext_pw);
613 wpa_s->ext_pw = NULL;
614
615 wpabuf_free(wpa_s->last_gas_resp);
616 wpa_s->last_gas_resp = NULL;
617 wpabuf_free(wpa_s->prev_gas_resp);
618 wpa_s->prev_gas_resp = NULL;
619
620 os_free(wpa_s->last_scan_res);
621 wpa_s->last_scan_res = NULL;
622
623 #ifdef CONFIG_HS20
624 if (wpa_s->drv_priv)
625 wpa_drv_configure_frame_filters(wpa_s, 0);
626 hs20_deinit(wpa_s);
627 #endif /* CONFIG_HS20 */
628
629 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
630 wpabuf_free(wpa_s->vendor_elem[i]);
631 wpa_s->vendor_elem[i] = NULL;
632 }
633
634 wmm_ac_notify_disassoc(wpa_s);
635
636 wpa_s->sched_scan_plans_num = 0;
637 os_free(wpa_s->sched_scan_plans);
638 wpa_s->sched_scan_plans = NULL;
639
640 #ifdef CONFIG_MBO
641 wpa_s->non_pref_chan_num = 0;
642 os_free(wpa_s->non_pref_chan);
643 wpa_s->non_pref_chan = NULL;
644 #endif /* CONFIG_MBO */
645
646 free_bss_tmp_disallowed(wpa_s);
647
648 wpabuf_free(wpa_s->lci);
649 wpa_s->lci = NULL;
650 wpas_clear_beacon_rep_data(wpa_s);
651
652 #ifdef CONFIG_PMKSA_CACHE_EXTERNAL
653 #ifdef CONFIG_MESH
654 {
655 struct external_pmksa_cache *entry;
656
657 while ((entry = dl_list_last(&wpa_s->mesh_external_pmksa_cache,
658 struct external_pmksa_cache,
659 list)) != NULL) {
660 dl_list_del(&entry->list);
661 os_free(entry->pmksa_cache);
662 os_free(entry);
663 }
664 }
665 #endif /* CONFIG_MESH */
666 #endif /* CONFIG_PMKSA_CACHE_EXTERNAL */
667
668 wpas_flush_fils_hlp_req(wpa_s);
669
670 wpabuf_free(wpa_s->ric_ies);
671 wpa_s->ric_ies = NULL;
672
673 #ifdef CONFIG_DPP
674 wpas_dpp_deinit(wpa_s);
675 #endif /* CONFIG_DPP */
676 }
677
678
679 /**
680 * wpa_clear_keys - Clear keys configured for the driver
681 * @wpa_s: Pointer to wpa_supplicant data
682 * @addr: Previously used BSSID or %NULL if not available
683 *
684 * This function clears the encryption keys that has been previously configured
685 * for the driver.
686 */
687 void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
688 {
689 int i, max;
690
691 #ifdef CONFIG_IEEE80211W
692 max = 6;
693 #else /* CONFIG_IEEE80211W */
694 max = 4;
695 #endif /* CONFIG_IEEE80211W */
696
697 /* MLME-DELETEKEYS.request */
698 for (i = 0; i < max; i++) {
699 if (wpa_s->keys_cleared & BIT(i))
700 continue;
701 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, i, 0, NULL, 0,
702 NULL, 0);
703 }
704 if (!(wpa_s->keys_cleared & BIT(0)) && addr &&
705 !is_zero_ether_addr(addr)) {
706 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
707 0);
708 /* MLME-SETPROTECTION.request(None) */
709 wpa_drv_mlme_setprotection(
710 wpa_s, addr,
711 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
712 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
713 }
714 wpa_s->keys_cleared = (u32) -1;
715 }
716
717
718 /**
719 * wpa_supplicant_state_txt - Get the connection state name as a text string
720 * @state: State (wpa_state; WPA_*)
721 * Returns: The state name as a printable text string
722 */
723 const char * wpa_supplicant_state_txt(enum wpa_states state)
724 {
725 switch (state) {
726 case WPA_DISCONNECTED:
727 return "DISCONNECTED";
728 case WPA_INACTIVE:
729 return "INACTIVE";
730 case WPA_INTERFACE_DISABLED:
731 return "INTERFACE_DISABLED";
732 case WPA_SCANNING:
733 return "SCANNING";
734 case WPA_AUTHENTICATING:
735 return "AUTHENTICATING";
736 case WPA_ASSOCIATING:
737 return "ASSOCIATING";
738 case WPA_ASSOCIATED:
739 return "ASSOCIATED";
740 case WPA_4WAY_HANDSHAKE:
741 return "4WAY_HANDSHAKE";
742 case WPA_GROUP_HANDSHAKE:
743 return "GROUP_HANDSHAKE";
744 case WPA_COMPLETED:
745 return "COMPLETED";
746 default:
747 return "UNKNOWN";
748 }
749 }
750
751
752 #ifdef CONFIG_BGSCAN
753
754 static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
755 {
756 const char *name;
757
758 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
759 name = wpa_s->current_ssid->bgscan;
760 else
761 name = wpa_s->conf->bgscan;
762 if (name == NULL || name[0] == '\0')
763 return;
764 if (wpas_driver_bss_selection(wpa_s))
765 return;
766 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
767 return;
768 #ifdef CONFIG_P2P
769 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE)
770 return;
771 #endif /* CONFIG_P2P */
772
773 bgscan_deinit(wpa_s);
774 if (wpa_s->current_ssid) {
775 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
776 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
777 "bgscan");
778 /*
779 * Live without bgscan; it is only used as a roaming
780 * optimization, so the initial connection is not
781 * affected.
782 */
783 } else {
784 struct wpa_scan_results *scan_res;
785 wpa_s->bgscan_ssid = wpa_s->current_ssid;
786 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
787 0);
788 if (scan_res) {
789 bgscan_notify_scan(wpa_s, scan_res);
790 wpa_scan_results_free(scan_res);
791 }
792 }
793 } else
794 wpa_s->bgscan_ssid = NULL;
795 }
796
797
798 static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
799 {
800 if (wpa_s->bgscan_ssid != NULL) {
801 bgscan_deinit(wpa_s);
802 wpa_s->bgscan_ssid = NULL;
803 }
804 }
805
806 #endif /* CONFIG_BGSCAN */
807
808
809 static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
810 {
811 if (autoscan_init(wpa_s, 0))
812 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
813 }
814
815
816 static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
817 {
818 autoscan_deinit(wpa_s);
819 }
820
821
822 void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
823 {
824 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
825 wpa_s->wpa_state == WPA_SCANNING) {
826 autoscan_deinit(wpa_s);
827 wpa_supplicant_start_autoscan(wpa_s);
828 }
829 }
830
831
832 /**
833 * wpa_supplicant_set_state - Set current connection state
834 * @wpa_s: Pointer to wpa_supplicant data
835 * @state: The new connection state
836 *
837 * This function is called whenever the connection state changes, e.g.,
838 * association is completed for WPA/WPA2 4-Way Handshake is started.
839 */
840 void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
841 enum wpa_states state)
842 {
843 enum wpa_states old_state = wpa_s->wpa_state;
844
845 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
846 wpa_supplicant_state_txt(wpa_s->wpa_state),
847 wpa_supplicant_state_txt(state));
848
849 if (state == WPA_INTERFACE_DISABLED) {
850 /* Assure normal scan when interface is restored */
851 wpa_s->normal_scans = 0;
852 }
853
854 if (state == WPA_COMPLETED) {
855 wpas_connect_work_done(wpa_s);
856 /* Reinitialize normal_scan counter */
857 wpa_s->normal_scans = 0;
858 }
859
860 #ifdef CONFIG_P2P
861 /*
862 * P2PS client has to reply to Probe Request frames received on the
863 * group operating channel. Enable Probe Request frame reporting for
864 * P2P connected client in case p2p_cli_probe configuration property is
865 * set to 1.
866 */
867 if (wpa_s->conf->p2p_cli_probe && wpa_s->current_ssid &&
868 wpa_s->current_ssid->mode == WPAS_MODE_INFRA &&
869 wpa_s->current_ssid->p2p_group) {
870 if (state == WPA_COMPLETED && !wpa_s->p2p_cli_probe) {
871 wpa_dbg(wpa_s, MSG_DEBUG,
872 "P2P: Enable CLI Probe Request RX reporting");
873 wpa_s->p2p_cli_probe =
874 wpa_drv_probe_req_report(wpa_s, 1) >= 0;
875 } else if (state != WPA_COMPLETED && wpa_s->p2p_cli_probe) {
876 wpa_dbg(wpa_s, MSG_DEBUG,
877 "P2P: Disable CLI Probe Request RX reporting");
878 wpa_s->p2p_cli_probe = 0;
879 wpa_drv_probe_req_report(wpa_s, 0);
880 }
881 }
882 #endif /* CONFIG_P2P */
883
884 if (state != WPA_SCANNING)
885 wpa_supplicant_notify_scanning(wpa_s, 0);
886
887 if (state == WPA_COMPLETED && wpa_s->new_connection) {
888 struct wpa_ssid *ssid = wpa_s->current_ssid;
889 int fils_hlp_sent = 0;
890
891 #ifdef CONFIG_SME
892 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
893 wpa_auth_alg_fils(wpa_s->sme.auth_alg))
894 fils_hlp_sent = 1;
895 #endif /* CONFIG_SME */
896 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
897 wpa_auth_alg_fils(wpa_s->auth_alg))
898 fils_hlp_sent = 1;
899
900 #if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
901 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
902 MACSTR " completed [id=%d id_str=%s%s]",
903 MAC2STR(wpa_s->bssid),
904 ssid ? ssid->id : -1,
905 ssid && ssid->id_str ? ssid->id_str : "",
906 fils_hlp_sent ? " FILS_HLP_SENT" : "");
907 #endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
908 wpas_clear_temp_disabled(wpa_s, ssid, 1);
909 wpa_blacklist_clear(wpa_s);
910 wpa_s->extra_blacklist_count = 0;
911 wpa_s->new_connection = 0;
912 wpa_drv_set_operstate(wpa_s, 1);
913 #ifndef IEEE8021X_EAPOL
914 wpa_drv_set_supp_port(wpa_s, 1);
915 #endif /* IEEE8021X_EAPOL */
916 wpa_s->after_wps = 0;
917 wpa_s->known_wps_freq = 0;
918 wpas_p2p_completed(wpa_s);
919
920 sme_sched_obss_scan(wpa_s, 1);
921
922 #if defined(CONFIG_FILS) && defined(IEEE8021X_EAPOL)
923 if (!fils_hlp_sent && ssid && ssid->eap.erp)
924 wpas_update_fils_connect_params(wpa_s);
925 #endif /* CONFIG_FILS && IEEE8021X_EAPOL */
926 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
927 state == WPA_ASSOCIATED) {
928 wpa_s->new_connection = 1;
929 wpa_drv_set_operstate(wpa_s, 0);
930 #ifndef IEEE8021X_EAPOL
931 wpa_drv_set_supp_port(wpa_s, 0);
932 #endif /* IEEE8021X_EAPOL */
933 sme_sched_obss_scan(wpa_s, 0);
934 }
935 wpa_s->wpa_state = state;
936
937 #ifdef CONFIG_BGSCAN
938 if (state == WPA_COMPLETED)
939 wpa_supplicant_start_bgscan(wpa_s);
940 else if (state < WPA_ASSOCIATED)
941 wpa_supplicant_stop_bgscan(wpa_s);
942 #endif /* CONFIG_BGSCAN */
943
944 if (state == WPA_AUTHENTICATING)
945 wpa_supplicant_stop_autoscan(wpa_s);
946
947 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
948 wpa_supplicant_start_autoscan(wpa_s);
949
950 if (old_state >= WPA_ASSOCIATED && wpa_s->wpa_state < WPA_ASSOCIATED)
951 wmm_ac_notify_disassoc(wpa_s);
952
953 if (wpa_s->wpa_state != old_state) {
954 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
955
956 /*
957 * Notify the P2P Device interface about a state change in one
958 * of the interfaces.
959 */
960 wpas_p2p_indicate_state_change(wpa_s);
961
962 if (wpa_s->wpa_state == WPA_COMPLETED ||
963 old_state == WPA_COMPLETED)
964 wpas_notify_auth_changed(wpa_s);
965 }
966 }
967
968
969 void wpa_supplicant_terminate_proc(struct wpa_global *global)
970 {
971 int pending = 0;
972 #ifdef CONFIG_WPS
973 struct wpa_supplicant *wpa_s = global->ifaces;
974 while (wpa_s) {
975 struct wpa_supplicant *next = wpa_s->next;
976 if (wpas_wps_terminate_pending(wpa_s) == 1)
977 pending = 1;
978 #ifdef CONFIG_P2P
979 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
980 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
981 wpas_p2p_disconnect(wpa_s);
982 #endif /* CONFIG_P2P */
983 wpa_s = next;
984 }
985 #endif /* CONFIG_WPS */
986 if (pending)
987 return;
988 eloop_terminate();
989 }
990
991
992 static void wpa_supplicant_terminate(int sig, void *signal_ctx)
993 {
994 struct wpa_global *global = signal_ctx;
995 wpa_supplicant_terminate_proc(global);
996 }
997
998
999 void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
1000 {
1001 enum wpa_states old_state = wpa_s->wpa_state;
1002
1003 wpa_s->pairwise_cipher = 0;
1004 wpa_s->group_cipher = 0;
1005 wpa_s->mgmt_group_cipher = 0;
1006 wpa_s->key_mgmt = 0;
1007 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
1008 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1009
1010 if (wpa_s->wpa_state != old_state)
1011 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
1012 }
1013
1014
1015 /**
1016 * wpa_supplicant_reload_configuration - Reload configuration data
1017 * @wpa_s: Pointer to wpa_supplicant data
1018 * Returns: 0 on success or -1 if configuration parsing failed
1019 *
1020 * This function can be used to request that the configuration data is reloaded
1021 * (e.g., after configuration file change). This function is reloading
1022 * configuration only for one interface, so this may need to be called multiple
1023 * times if %wpa_supplicant is controlling multiple interfaces and all
1024 * interfaces need reconfiguration.
1025 */
1026 int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
1027 {
1028 struct wpa_config *conf;
1029 int reconf_ctrl;
1030 int old_ap_scan;
1031
1032 if (wpa_s->confname == NULL)
1033 return -1;
1034 conf = wpa_config_read(wpa_s->confname, NULL);
1035 if (conf == NULL) {
1036 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
1037 "file '%s' - exiting", wpa_s->confname);
1038 return -1;
1039 }
1040 if (wpa_s->confanother &&
1041 !wpa_config_read(wpa_s->confanother, conf)) {
1042 wpa_msg(wpa_s, MSG_ERROR,
1043 "Failed to parse the configuration file '%s' - exiting",
1044 wpa_s->confanother);
1045 return -1;
1046 }
1047
1048 conf->changed_parameters = (unsigned int) -1;
1049
1050 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
1051 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
1052 os_strcmp(conf->ctrl_interface,
1053 wpa_s->conf->ctrl_interface) != 0);
1054
1055 if (reconf_ctrl && wpa_s->ctrl_iface) {
1056 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
1057 wpa_s->ctrl_iface = NULL;
1058 }
1059
1060 eapol_sm_invalidate_cached_session(wpa_s->eapol);
1061 if (wpa_s->current_ssid) {
1062 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
1063 wpa_s->own_disconnect_req = 1;
1064 wpa_supplicant_deauthenticate(wpa_s,
1065 WLAN_REASON_DEAUTH_LEAVING);
1066 }
1067
1068 /*
1069 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
1070 * pkcs11_engine_path, pkcs11_module_path, openssl_ciphers.
1071 */
1072 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
1073 wpa_s->key_mgmt == WPA_KEY_MGMT_OWE ||
1074 wpa_s->key_mgmt == WPA_KEY_MGMT_DPP) {
1075 /*
1076 * Clear forced success to clear EAP state for next
1077 * authentication.
1078 */
1079 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
1080 }
1081 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
1082 wpa_sm_set_config(wpa_s->wpa, NULL);
1083 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
1084 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
1085 rsn_preauth_deinit(wpa_s->wpa);
1086
1087 old_ap_scan = wpa_s->conf->ap_scan;
1088 wpa_config_free(wpa_s->conf);
1089 wpa_s->conf = conf;
1090 if (old_ap_scan != wpa_s->conf->ap_scan)
1091 wpas_notify_ap_scan_changed(wpa_s);
1092
1093 if (reconf_ctrl)
1094 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
1095
1096 wpa_supplicant_update_config(wpa_s);
1097
1098 wpa_supplicant_clear_status(wpa_s);
1099 if (wpa_supplicant_enabled_networks(wpa_s)) {
1100 wpa_s->reassociate = 1;
1101 wpa_supplicant_req_scan(wpa_s, 0, 0);
1102 }
1103 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
1104 return 0;
1105 }
1106
1107
1108 static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
1109 {
1110 struct wpa_global *global = signal_ctx;
1111 struct wpa_supplicant *wpa_s;
1112 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
1113 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
1114 sig);
1115 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
1116 wpa_supplicant_terminate_proc(global);
1117 }
1118 }
1119
1120 if (wpa_debug_reopen_file() < 0) {
1121 /* Ignore errors since we cannot really do much to fix this */
1122 wpa_printf(MSG_DEBUG, "Could not reopen debug log file");
1123 }
1124 }
1125
1126
1127 static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
1128 struct wpa_ssid *ssid,
1129 struct wpa_ie_data *ie)
1130 {
1131 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
1132 if (ret) {
1133 if (ret == -2) {
1134 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
1135 "from association info");
1136 }
1137 return -1;
1138 }
1139
1140 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
1141 "cipher suites");
1142 if (!(ie->group_cipher & ssid->group_cipher)) {
1143 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
1144 "cipher 0x%x (mask 0x%x) - reject",
1145 ie->group_cipher, ssid->group_cipher);
1146 return -1;
1147 }
1148 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
1149 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
1150 "cipher 0x%x (mask 0x%x) - reject",
1151 ie->pairwise_cipher, ssid->pairwise_cipher);
1152 return -1;
1153 }
1154 if (!(ie->key_mgmt & ssid->key_mgmt)) {
1155 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
1156 "management 0x%x (mask 0x%x) - reject",
1157 ie->key_mgmt, ssid->key_mgmt);
1158 return -1;
1159 }
1160
1161 #ifdef CONFIG_IEEE80211W
1162 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
1163 wpas_get_ssid_pmf(wpa_s, ssid) == MGMT_FRAME_PROTECTION_REQUIRED) {
1164 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
1165 "that does not support management frame protection - "
1166 "reject");
1167 return -1;
1168 }
1169 #endif /* CONFIG_IEEE80211W */
1170
1171 return 0;
1172 }
1173
1174
1175 /**
1176 * wpa_supplicant_set_suites - Set authentication and encryption parameters
1177 * @wpa_s: Pointer to wpa_supplicant data
1178 * @bss: Scan results for the selected BSS, or %NULL if not available
1179 * @ssid: Configuration data for the selected network
1180 * @wpa_ie: Buffer for the WPA/RSN IE
1181 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
1182 * used buffer length in case the functions returns success.
1183 * Returns: 0 on success or -1 on failure
1184 *
1185 * This function is used to configure authentication and encryption parameters
1186 * based on the network configuration and scan result for the selected BSS (if
1187 * available).
1188 */
1189 int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
1190 struct wpa_bss *bss, struct wpa_ssid *ssid,
1191 u8 *wpa_ie, size_t *wpa_ie_len)
1192 {
1193 struct wpa_ie_data ie;
1194 int sel, proto;
1195 const u8 *bss_wpa, *bss_rsn, *bss_osen;
1196
1197 if (bss) {
1198 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
1199 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
1200 bss_osen = wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE);
1201 } else
1202 bss_wpa = bss_rsn = bss_osen = NULL;
1203
1204 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
1205 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
1206 (ie.group_cipher & ssid->group_cipher) &&
1207 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1208 (ie.key_mgmt & ssid->key_mgmt)) {
1209 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
1210 proto = WPA_PROTO_RSN;
1211 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
1212 wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie) == 0 &&
1213 (ie.group_cipher & ssid->group_cipher) &&
1214 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1215 (ie.key_mgmt & ssid->key_mgmt)) {
1216 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
1217 proto = WPA_PROTO_WPA;
1218 #ifdef CONFIG_HS20
1219 } else if (bss_osen && (ssid->proto & WPA_PROTO_OSEN) &&
1220 wpa_parse_wpa_ie(bss_osen, 2 + bss_osen[1], &ie) == 0 &&
1221 (ie.group_cipher & ssid->group_cipher) &&
1222 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1223 (ie.key_mgmt & ssid->key_mgmt)) {
1224 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using OSEN");
1225 proto = WPA_PROTO_OSEN;
1226 } else if (bss_rsn && (ssid->proto & WPA_PROTO_OSEN) &&
1227 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
1228 (ie.group_cipher & ssid->group_cipher) &&
1229 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1230 (ie.key_mgmt & ssid->key_mgmt)) {
1231 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using OSEN (within RSN)");
1232 proto = WPA_PROTO_RSN;
1233 #endif /* CONFIG_HS20 */
1234 } else if (bss) {
1235 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
1236 wpa_dbg(wpa_s, MSG_DEBUG,
1237 "WPA: ssid proto=0x%x pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1238 ssid->proto, ssid->pairwise_cipher, ssid->group_cipher,
1239 ssid->key_mgmt);
1240 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: BSS " MACSTR " ssid='%s'%s%s%s",
1241 MAC2STR(bss->bssid),
1242 wpa_ssid_txt(bss->ssid, bss->ssid_len),
1243 bss_wpa ? " WPA" : "",
1244 bss_rsn ? " RSN" : "",
1245 bss_osen ? " OSEN" : "");
1246 if (bss_rsn) {
1247 wpa_hexdump(MSG_DEBUG, "RSN", bss_rsn, 2 + bss_rsn[1]);
1248 if (wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie)) {
1249 wpa_dbg(wpa_s, MSG_DEBUG,
1250 "Could not parse RSN element");
1251 } else {
1252 wpa_dbg(wpa_s, MSG_DEBUG,
1253 "RSN: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1254 ie.pairwise_cipher, ie.group_cipher,
1255 ie.key_mgmt);
1256 }
1257 }
1258 if (bss_wpa) {
1259 wpa_hexdump(MSG_DEBUG, "WPA", bss_wpa, 2 + bss_wpa[1]);
1260 if (wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie)) {
1261 wpa_dbg(wpa_s, MSG_DEBUG,
1262 "Could not parse WPA element");
1263 } else {
1264 wpa_dbg(wpa_s, MSG_DEBUG,
1265 "WPA: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1266 ie.pairwise_cipher, ie.group_cipher,
1267 ie.key_mgmt);
1268 }
1269 }
1270 return -1;
1271 } else {
1272 if (ssid->proto & WPA_PROTO_OSEN)
1273 proto = WPA_PROTO_OSEN;
1274 else if (ssid->proto & WPA_PROTO_RSN)
1275 proto = WPA_PROTO_RSN;
1276 else
1277 proto = WPA_PROTO_WPA;
1278 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
1279 os_memset(&ie, 0, sizeof(ie));
1280 ie.group_cipher = ssid->group_cipher;
1281 ie.pairwise_cipher = ssid->pairwise_cipher;
1282 ie.key_mgmt = ssid->key_mgmt;
1283 #ifdef CONFIG_IEEE80211W
1284 ie.mgmt_group_cipher = 0;
1285 if (ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION) {
1286 if (ssid->group_mgmt_cipher &
1287 WPA_CIPHER_BIP_GMAC_256)
1288 ie.mgmt_group_cipher =
1289 WPA_CIPHER_BIP_GMAC_256;
1290 else if (ssid->group_mgmt_cipher &
1291 WPA_CIPHER_BIP_CMAC_256)
1292 ie.mgmt_group_cipher =
1293 WPA_CIPHER_BIP_CMAC_256;
1294 else if (ssid->group_mgmt_cipher &
1295 WPA_CIPHER_BIP_GMAC_128)
1296 ie.mgmt_group_cipher =
1297 WPA_CIPHER_BIP_GMAC_128;
1298 else
1299 ie.mgmt_group_cipher =
1300 WPA_CIPHER_AES_128_CMAC;
1301 }
1302 #endif /* CONFIG_IEEE80211W */
1303 #ifdef CONFIG_OWE
1304 if ((ssid->key_mgmt & WPA_KEY_MGMT_OWE) &&
1305 !ssid->owe_only &&
1306 !bss_wpa && !bss_rsn && !bss_osen) {
1307 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1308 wpa_s->wpa_proto = 0;
1309 *wpa_ie_len = 0;
1310 return 0;
1311 }
1312 #endif /* CONFIG_OWE */
1313 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1314 "based on configuration");
1315 } else
1316 proto = ie.proto;
1317 }
1318
1319 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1320 "pairwise %d key_mgmt %d proto %d",
1321 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
1322 #ifdef CONFIG_IEEE80211W
1323 if (ssid->ieee80211w) {
1324 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1325 ie.mgmt_group_cipher);
1326 }
1327 #endif /* CONFIG_IEEE80211W */
1328
1329 wpa_s->wpa_proto = proto;
1330 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1331 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1332 !!(ssid->proto & (WPA_PROTO_RSN | WPA_PROTO_OSEN)));
1333
1334 if (bss || !wpa_s->ap_ies_from_associnfo) {
1335 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1336 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1337 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1338 bss_rsn ? 2 + bss_rsn[1] : 0))
1339 return -1;
1340 }
1341
1342 #ifdef CONFIG_NO_WPA
1343 wpa_s->group_cipher = WPA_CIPHER_NONE;
1344 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
1345 #else /* CONFIG_NO_WPA */
1346 sel = ie.group_cipher & ssid->group_cipher;
1347 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1348 if (wpa_s->group_cipher < 0) {
1349 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1350 "cipher");
1351 return -1;
1352 }
1353 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1354 wpa_cipher_txt(wpa_s->group_cipher));
1355
1356 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
1357 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1358 if (wpa_s->pairwise_cipher < 0) {
1359 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1360 "cipher");
1361 return -1;
1362 }
1363 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1364 wpa_cipher_txt(wpa_s->pairwise_cipher));
1365 #endif /* CONFIG_NO_WPA */
1366
1367 sel = ie.key_mgmt & ssid->key_mgmt;
1368 #ifdef CONFIG_SAE
1369 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1370 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1371 #endif /* CONFIG_SAE */
1372 if (0) {
1373 #ifdef CONFIG_SUITEB192
1374 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B_192) {
1375 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B_192;
1376 wpa_dbg(wpa_s, MSG_DEBUG,
1377 "WPA: using KEY_MGMT 802.1X with Suite B (192-bit)");
1378 #endif /* CONFIG_SUITEB192 */
1379 #ifdef CONFIG_SUITEB
1380 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B) {
1381 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B;
1382 wpa_dbg(wpa_s, MSG_DEBUG,
1383 "WPA: using KEY_MGMT 802.1X with Suite B");
1384 #endif /* CONFIG_SUITEB */
1385 #ifdef CONFIG_FILS
1386 #ifdef CONFIG_IEEE80211R
1387 } else if (sel & WPA_KEY_MGMT_FT_FILS_SHA384) {
1388 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_FILS_SHA384;
1389 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT-FILS-SHA384");
1390 } else if (sel & WPA_KEY_MGMT_FT_FILS_SHA256) {
1391 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_FILS_SHA256;
1392 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT-FILS-SHA256");
1393 #endif /* CONFIG_IEEE80211R */
1394 } else if (sel & WPA_KEY_MGMT_FILS_SHA384) {
1395 wpa_s->key_mgmt = WPA_KEY_MGMT_FILS_SHA384;
1396 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FILS-SHA384");
1397 } else if (sel & WPA_KEY_MGMT_FILS_SHA256) {
1398 wpa_s->key_mgmt = WPA_KEY_MGMT_FILS_SHA256;
1399 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FILS-SHA256");
1400 #endif /* CONFIG_FILS */
1401 #ifdef CONFIG_IEEE80211R
1402 #ifdef CONFIG_SHA384
1403 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X_SHA384) {
1404 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X_SHA384;
1405 wpa_dbg(wpa_s, MSG_DEBUG,
1406 "WPA: using KEY_MGMT FT/802.1X-SHA384");
1407 if (pmksa_cache_get_current(wpa_s->wpa)) {
1408 /* PMKSA caching with FT is not fully functional, so
1409 * disable the case for now. */
1410 wpa_dbg(wpa_s, MSG_DEBUG,
1411 "WPA: Disable PMKSA caching for FT/802.1X connection");
1412 pmksa_cache_clear_current(wpa_s->wpa);
1413 }
1414 #endif /* CONFIG_SHA384 */
1415 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1416 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
1417 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
1418 if (pmksa_cache_get_current(wpa_s->wpa)) {
1419 /* PMKSA caching with FT is not fully functional, so
1420 * disable the case for now. */
1421 wpa_dbg(wpa_s, MSG_DEBUG,
1422 "WPA: Disable PMKSA caching for FT/802.1X connection");
1423 pmksa_cache_clear_current(wpa_s->wpa);
1424 }
1425 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1426 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
1427 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
1428 #endif /* CONFIG_IEEE80211R */
1429 #ifdef CONFIG_SAE
1430 } else if (sel & WPA_KEY_MGMT_SAE) {
1431 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1432 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1433 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1434 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1435 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1436 #endif /* CONFIG_SAE */
1437 #ifdef CONFIG_IEEE80211W
1438 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1439 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
1440 wpa_dbg(wpa_s, MSG_DEBUG,
1441 "WPA: using KEY_MGMT 802.1X with SHA256");
1442 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1443 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
1444 wpa_dbg(wpa_s, MSG_DEBUG,
1445 "WPA: using KEY_MGMT PSK with SHA256");
1446 #endif /* CONFIG_IEEE80211W */
1447 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1448 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
1449 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
1450 } else if (sel & WPA_KEY_MGMT_PSK) {
1451 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
1452 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
1453 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1454 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
1455 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
1456 #ifdef CONFIG_HS20
1457 } else if (sel & WPA_KEY_MGMT_OSEN) {
1458 wpa_s->key_mgmt = WPA_KEY_MGMT_OSEN;
1459 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using KEY_MGMT OSEN");
1460 #endif /* CONFIG_HS20 */
1461 #ifdef CONFIG_OWE
1462 } else if (sel & WPA_KEY_MGMT_OWE) {
1463 wpa_s->key_mgmt = WPA_KEY_MGMT_OWE;
1464 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT OWE");
1465 #endif /* CONFIG_OWE */
1466 #ifdef CONFIG_DPP
1467 } else if (sel & WPA_KEY_MGMT_DPP) {
1468 wpa_s->key_mgmt = WPA_KEY_MGMT_DPP;
1469 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT DPP");
1470 #endif /* CONFIG_DPP */
1471 } else {
1472 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1473 "authenticated key management type");
1474 return -1;
1475 }
1476
1477 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1478 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1479 wpa_s->pairwise_cipher);
1480 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1481
1482 #ifdef CONFIG_IEEE80211W
1483 sel = ie.mgmt_group_cipher;
1484 if (ssid->group_mgmt_cipher)
1485 sel &= ssid->group_mgmt_cipher;
1486 if (wpas_get_ssid_pmf(wpa_s, ssid) == NO_MGMT_FRAME_PROTECTION ||
1487 !(ie.capabilities & WPA_CAPABILITY_MFPC))
1488 sel = 0;
1489 if (sel & WPA_CIPHER_AES_128_CMAC) {
1490 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
1491 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1492 "AES-128-CMAC");
1493 } else if (sel & WPA_CIPHER_BIP_GMAC_128) {
1494 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_128;
1495 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1496 "BIP-GMAC-128");
1497 } else if (sel & WPA_CIPHER_BIP_GMAC_256) {
1498 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_256;
1499 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1500 "BIP-GMAC-256");
1501 } else if (sel & WPA_CIPHER_BIP_CMAC_256) {
1502 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_CMAC_256;
1503 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1504 "BIP-CMAC-256");
1505 } else {
1506 wpa_s->mgmt_group_cipher = 0;
1507 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
1508 }
1509 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1510 wpa_s->mgmt_group_cipher);
1511 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1512 wpas_get_ssid_pmf(wpa_s, ssid));
1513 #endif /* CONFIG_IEEE80211W */
1514
1515 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
1516 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
1517 return -1;
1518 }
1519
1520 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
1521 int psk_set = 0;
1522 int sae_only;
1523
1524 sae_only = (ssid->key_mgmt & (WPA_KEY_MGMT_PSK |
1525 WPA_KEY_MGMT_FT_PSK |
1526 WPA_KEY_MGMT_PSK_SHA256)) == 0;
1527
1528 if (ssid->psk_set && !sae_only) {
1529 wpa_hexdump_key(MSG_MSGDUMP, "PSK (set in config)",
1530 ssid->psk, PMK_LEN);
1531 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN, NULL,
1532 NULL);
1533 psk_set = 1;
1534 }
1535
1536 if (wpa_key_mgmt_sae(ssid->key_mgmt) &&
1537 (ssid->sae_password || ssid->passphrase))
1538 psk_set = 1;
1539
1540 #ifndef CONFIG_NO_PBKDF2
1541 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1542 ssid->passphrase && !sae_only) {
1543 u8 psk[PMK_LEN];
1544 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1545 4096, psk, PMK_LEN);
1546 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1547 psk, PMK_LEN);
1548 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL, NULL);
1549 psk_set = 1;
1550 os_memset(psk, 0, sizeof(psk));
1551 }
1552 #endif /* CONFIG_NO_PBKDF2 */
1553 #ifdef CONFIG_EXT_PASSWORD
1554 if (ssid->ext_psk && !sae_only) {
1555 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1556 ssid->ext_psk);
1557 char pw_str[64 + 1];
1558 u8 psk[PMK_LEN];
1559
1560 if (pw == NULL) {
1561 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1562 "found from external storage");
1563 return -1;
1564 }
1565
1566 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1567 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1568 "PSK length %d in external storage",
1569 (int) wpabuf_len(pw));
1570 ext_password_free(pw);
1571 return -1;
1572 }
1573
1574 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1575 pw_str[wpabuf_len(pw)] = '\0';
1576
1577 #ifndef CONFIG_NO_PBKDF2
1578 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1579 {
1580 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1581 4096, psk, PMK_LEN);
1582 os_memset(pw_str, 0, sizeof(pw_str));
1583 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1584 "external passphrase)",
1585 psk, PMK_LEN);
1586 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL,
1587 NULL);
1588 psk_set = 1;
1589 os_memset(psk, 0, sizeof(psk));
1590 } else
1591 #endif /* CONFIG_NO_PBKDF2 */
1592 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1593 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1594 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1595 "Invalid PSK hex string");
1596 os_memset(pw_str, 0, sizeof(pw_str));
1597 ext_password_free(pw);
1598 return -1;
1599 }
1600 wpa_hexdump_key(MSG_MSGDUMP,
1601 "PSK (from external PSK)",
1602 psk, PMK_LEN);
1603 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL,
1604 NULL);
1605 psk_set = 1;
1606 os_memset(psk, 0, sizeof(psk));
1607 } else {
1608 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1609 "PSK available");
1610 os_memset(pw_str, 0, sizeof(pw_str));
1611 ext_password_free(pw);
1612 return -1;
1613 }
1614
1615 os_memset(pw_str, 0, sizeof(pw_str));
1616 ext_password_free(pw);
1617 }
1618 #endif /* CONFIG_EXT_PASSWORD */
1619
1620 if (!psk_set) {
1621 wpa_msg(wpa_s, MSG_INFO,
1622 "No PSK available for association");
1623 wpas_auth_failed(wpa_s, "NO_PSK_AVAILABLE");
1624 return -1;
1625 }
1626 #ifdef CONFIG_OWE
1627 } else if (wpa_s->key_mgmt == WPA_KEY_MGMT_OWE) {
1628 /* OWE Diffie-Hellman exchange in (Re)Association
1629 * Request/Response frames set the PMK, so do not override it
1630 * here. */
1631 #endif /* CONFIG_OWE */
1632 } else
1633 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1634
1635 return 0;
1636 }
1637
1638
1639 static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
1640 {
1641 *pos = 0x00;
1642
1643 switch (idx) {
1644 case 0: /* Bits 0-7 */
1645 break;
1646 case 1: /* Bits 8-15 */
1647 if (wpa_s->conf->coloc_intf_reporting) {
1648 /* Bit 13 - Collocated Interference Reporting */
1649 *pos |= 0x20;
1650 }
1651 break;
1652 case 2: /* Bits 16-23 */
1653 #ifdef CONFIG_WNM
1654 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1655 *pos |= 0x08; /* Bit 19 - BSS Transition */
1656 #endif /* CONFIG_WNM */
1657 break;
1658 case 3: /* Bits 24-31 */
1659 #ifdef CONFIG_WNM
1660 *pos |= 0x02; /* Bit 25 - SSID List */
1661 #endif /* CONFIG_WNM */
1662 #ifdef CONFIG_INTERWORKING
1663 if (wpa_s->conf->interworking)
1664 *pos |= 0x80; /* Bit 31 - Interworking */
1665 #endif /* CONFIG_INTERWORKING */
1666 break;
1667 case 4: /* Bits 32-39 */
1668 #ifdef CONFIG_INTERWORKING
1669 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_QOS_MAPPING)
1670 *pos |= 0x01; /* Bit 32 - QoS Map */
1671 #endif /* CONFIG_INTERWORKING */
1672 break;
1673 case 5: /* Bits 40-47 */
1674 #ifdef CONFIG_HS20
1675 if (wpa_s->conf->hs20)
1676 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1677 #endif /* CONFIG_HS20 */
1678 #ifdef CONFIG_MBO
1679 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1680 #endif /* CONFIG_MBO */
1681 break;
1682 case 6: /* Bits 48-55 */
1683 break;
1684 case 7: /* Bits 56-63 */
1685 break;
1686 case 8: /* Bits 64-71 */
1687 if (wpa_s->conf->ftm_responder)
1688 *pos |= 0x40; /* Bit 70 - FTM responder */
1689 if (wpa_s->conf->ftm_initiator)
1690 *pos |= 0x80; /* Bit 71 - FTM initiator */
1691 break;
1692 case 9: /* Bits 72-79 */
1693 #ifdef CONFIG_FILS
1694 if (!wpa_s->disable_fils)
1695 *pos |= 0x01;
1696 #endif /* CONFIG_FILS */
1697 break;
1698 }
1699 }
1700
1701
1702 int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf, size_t buflen)
1703 {
1704 u8 *pos = buf;
1705 u8 len = 10, i;
1706
1707 if (len < wpa_s->extended_capa_len)
1708 len = wpa_s->extended_capa_len;
1709 if (buflen < (size_t) len + 2) {
1710 wpa_printf(MSG_INFO,
1711 "Not enough room for building extended capabilities element");
1712 return -1;
1713 }
1714
1715 *pos++ = WLAN_EID_EXT_CAPAB;
1716 *pos++ = len;
1717 for (i = 0; i < len; i++, pos++) {
1718 wpas_ext_capab_byte(wpa_s, pos, i);
1719
1720 if (i < wpa_s->extended_capa_len) {
1721 *pos &= ~wpa_s->extended_capa_mask[i];
1722 *pos |= wpa_s->extended_capa[i];
1723 }
1724 }
1725
1726 while (len > 0 && buf[1 + len] == 0) {
1727 len--;
1728 buf[1] = len;
1729 }
1730 if (len == 0)
1731 return 0;
1732
1733 return 2 + len;
1734 }
1735
1736
1737 static int wpas_valid_bss(struct wpa_supplicant *wpa_s,
1738 struct wpa_bss *test_bss)
1739 {
1740 struct wpa_bss *bss;
1741
1742 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
1743 if (bss == test_bss)
1744 return 1;
1745 }
1746
1747 return 0;
1748 }
1749
1750
1751 static int wpas_valid_ssid(struct wpa_supplicant *wpa_s,
1752 struct wpa_ssid *test_ssid)
1753 {
1754 struct wpa_ssid *ssid;
1755
1756 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next) {
1757 if (ssid == test_ssid)
1758 return 1;
1759 }
1760
1761 return 0;
1762 }
1763
1764
1765 int wpas_valid_bss_ssid(struct wpa_supplicant *wpa_s, struct wpa_bss *test_bss,
1766 struct wpa_ssid *test_ssid)
1767 {
1768 if (test_bss && !wpas_valid_bss(wpa_s, test_bss))
1769 return 0;
1770
1771 return test_ssid == NULL || wpas_valid_ssid(wpa_s, test_ssid);
1772 }
1773
1774
1775 void wpas_connect_work_free(struct wpa_connect_work *cwork)
1776 {
1777 if (cwork == NULL)
1778 return;
1779 os_free(cwork);
1780 }
1781
1782
1783 void wpas_connect_work_done(struct wpa_supplicant *wpa_s)
1784 {
1785 struct wpa_connect_work *cwork;
1786 struct wpa_radio_work *work = wpa_s->connect_work;
1787
1788 if (!work)
1789 return;
1790
1791 wpa_s->connect_work = NULL;
1792 cwork = work->ctx;
1793 work->ctx = NULL;
1794 wpas_connect_work_free(cwork);
1795 radio_work_done(work);
1796 }
1797
1798
1799 int wpas_update_random_addr(struct wpa_supplicant *wpa_s, int style)
1800 {
1801 struct os_reltime now;
1802 u8 addr[ETH_ALEN];
1803
1804 os_get_reltime(&now);
1805 if (wpa_s->last_mac_addr_style == style &&
1806 wpa_s->last_mac_addr_change.sec != 0 &&
1807 !os_reltime_expired(&now, &wpa_s->last_mac_addr_change,
1808 wpa_s->conf->rand_addr_lifetime)) {
1809 wpa_msg(wpa_s, MSG_DEBUG,
1810 "Previously selected random MAC address has not yet expired");
1811 return 0;
1812 }
1813
1814 switch (style) {
1815 case 1:
1816 if (random_mac_addr(addr) < 0)
1817 return -1;
1818 break;
1819 case 2:
1820 os_memcpy(addr, wpa_s->perm_addr, ETH_ALEN);
1821 if (random_mac_addr_keep_oui(addr) < 0)
1822 return -1;
1823 break;
1824 default:
1825 return -1;
1826 }
1827
1828 if (wpa_drv_set_mac_addr(wpa_s, addr) < 0) {
1829 wpa_msg(wpa_s, MSG_INFO,
1830 "Failed to set random MAC address");
1831 return -1;
1832 }
1833
1834 os_get_reltime(&wpa_s->last_mac_addr_change);
1835 wpa_s->mac_addr_changed = 1;
1836 wpa_s->last_mac_addr_style = style;
1837
1838 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1839 wpa_msg(wpa_s, MSG_INFO,
1840 "Could not update MAC address information");
1841 return -1;
1842 }
1843
1844 wpa_msg(wpa_s, MSG_DEBUG, "Using random MAC address " MACSTR,
1845 MAC2STR(addr));
1846
1847 return 0;
1848 }
1849
1850
1851 int wpas_update_random_addr_disassoc(struct wpa_supplicant *wpa_s)
1852 {
1853 if (wpa_s->wpa_state >= WPA_AUTHENTICATING ||
1854 !wpa_s->conf->preassoc_mac_addr)
1855 return 0;
1856
1857 return wpas_update_random_addr(wpa_s, wpa_s->conf->preassoc_mac_addr);
1858 }
1859
1860
1861 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit);
1862
1863 /**
1864 * wpa_supplicant_associate - Request association
1865 * @wpa_s: Pointer to wpa_supplicant data
1866 * @bss: Scan results for the selected BSS, or %NULL if not available
1867 * @ssid: Configuration data for the selected network
1868 *
1869 * This function is used to request %wpa_supplicant to associate with a BSS.
1870 */
1871 void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
1872 struct wpa_bss *bss, struct wpa_ssid *ssid)
1873 {
1874 struct wpa_connect_work *cwork;
1875 int rand_style;
1876
1877 wpa_s->own_disconnect_req = 0;
1878
1879 /*
1880 * If we are starting a new connection, any previously pending EAPOL
1881 * RX cannot be valid anymore.
1882 */
1883 wpabuf_free(wpa_s->pending_eapol_rx);
1884 wpa_s->pending_eapol_rx = NULL;
1885
1886 if (ssid->mac_addr == -1)
1887 rand_style = wpa_s->conf->mac_addr;
1888 else
1889 rand_style = ssid->mac_addr;
1890
1891 wmm_ac_clear_saved_tspecs(wpa_s);
1892 wpa_s->reassoc_same_bss = 0;
1893 wpa_s->reassoc_same_ess = 0;
1894 #ifdef CONFIG_TESTING_OPTIONS
1895 wpa_s->testing_resend_assoc = 0;
1896 #endif /* CONFIG_TESTING_OPTIONS */
1897
1898 if (wpa_s->last_ssid == ssid) {
1899 wpa_dbg(wpa_s, MSG_DEBUG, "Re-association to the same ESS");
1900 wpa_s->reassoc_same_ess = 1;
1901 if (wpa_s->current_bss && wpa_s->current_bss == bss) {
1902 wmm_ac_save_tspecs(wpa_s);
1903 wpa_s->reassoc_same_bss = 1;
1904 }
1905 }
1906
1907 if (rand_style > 0 && !wpa_s->reassoc_same_ess) {
1908 if (wpas_update_random_addr(wpa_s, rand_style) < 0)
1909 return;
1910 wpa_sm_pmksa_cache_flush(wpa_s->wpa, ssid);
1911 } else if (rand_style == 0 && wpa_s->mac_addr_changed) {
1912 if (wpa_drv_set_mac_addr(wpa_s, NULL) < 0) {
1913 wpa_msg(wpa_s, MSG_INFO,
1914 "Could not restore permanent MAC address");
1915 return;
1916 }
1917 wpa_s->mac_addr_changed = 0;
1918 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1919 wpa_msg(wpa_s, MSG_INFO,
1920 "Could not update MAC address information");
1921 return;
1922 }
1923 wpa_msg(wpa_s, MSG_DEBUG, "Using permanent MAC address");
1924 }
1925 wpa_s->last_ssid = ssid;
1926
1927 #ifdef CONFIG_IBSS_RSN
1928 ibss_rsn_deinit(wpa_s->ibss_rsn);
1929 wpa_s->ibss_rsn = NULL;
1930 #else /* CONFIG_IBSS_RSN */
1931 if (ssid->mode == WPAS_MODE_IBSS &&
1932 !(ssid->key_mgmt & (WPA_KEY_MGMT_NONE | WPA_KEY_MGMT_WPA_NONE))) {
1933 wpa_msg(wpa_s, MSG_INFO,
1934 "IBSS RSN not supported in the build");
1935 return;
1936 }
1937 #endif /* CONFIG_IBSS_RSN */
1938
1939 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1940 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1941 #ifdef CONFIG_AP
1942 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
1943 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1944 "mode");
1945 return;
1946 }
1947 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1948 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1949 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1950 wpas_p2p_ap_setup_failed(wpa_s);
1951 return;
1952 }
1953 wpa_s->current_bss = bss;
1954 #else /* CONFIG_AP */
1955 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1956 "the build");
1957 #endif /* CONFIG_AP */
1958 return;
1959 }
1960
1961 if (ssid->mode == WPAS_MODE_MESH) {
1962 #ifdef CONFIG_MESH
1963 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_MESH)) {
1964 wpa_msg(wpa_s, MSG_INFO,
1965 "Driver does not support mesh mode");
1966 return;
1967 }
1968 if (bss)
1969 ssid->frequency = bss->freq;
1970 if (wpa_supplicant_join_mesh(wpa_s, ssid) < 0) {
1971 wpa_msg(wpa_s, MSG_ERROR, "Could not join mesh");
1972 return;
1973 }
1974 wpa_s->current_bss = bss;
1975 wpa_msg(wpa_s, MSG_INFO, MESH_GROUP_STARTED "ssid=\"%s\" id=%d",
1976 wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
1977 ssid->id);
1978 wpas_notify_mesh_group_started(wpa_s, ssid);
1979 #else /* CONFIG_MESH */
1980 wpa_msg(wpa_s, MSG_ERROR,
1981 "mesh mode support not included in the build");
1982 #endif /* CONFIG_MESH */
1983 return;
1984 }
1985
1986 /*
1987 * Set WPA state machine configuration to match the selected network now
1988 * so that the information is available before wpas_start_assoc_cb()
1989 * gets called. This is needed at least for RSN pre-authentication where
1990 * candidate APs are added to a list based on scan result processing
1991 * before completion of the first association.
1992 */
1993 wpa_supplicant_rsn_supp_set_config(wpa_s, ssid);
1994
1995 #ifdef CONFIG_DPP
1996 if (wpas_dpp_check_connect(wpa_s, ssid, bss) != 0)
1997 return;
1998 #endif /* CONFIG_DPP */
1999
2000 #ifdef CONFIG_TDLS
2001 if (bss)
2002 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
2003 bss->ie_len);
2004 #endif /* CONFIG_TDLS */
2005
2006 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
2007 ssid->mode == IEEE80211_MODE_INFRA) {
2008 sme_authenticate(wpa_s, bss, ssid);
2009 return;
2010 }
2011
2012 if (wpa_s->connect_work) {
2013 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since connect_work exist");
2014 return;
2015 }
2016
2017 if (radio_work_pending(wpa_s, "connect")) {
2018 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since pending work exist");
2019 return;
2020 }
2021
2022 #ifdef CONFIG_SME
2023 if (ssid->mode == WPAS_MODE_IBSS || ssid->mode == WPAS_MODE_MESH) {
2024 /* Clear possibly set auth_alg, if any, from last attempt. */
2025 wpa_s->sme.auth_alg = WPA_AUTH_ALG_OPEN;
2026 }
2027 #endif /* CONFIG_SME */
2028
2029 wpas_abort_ongoing_scan(wpa_s);
2030
2031 cwork = os_zalloc(sizeof(*cwork));
2032 if (cwork == NULL)
2033 return;
2034
2035 cwork->bss = bss;
2036 cwork->ssid = ssid;
2037
2038 if (radio_add_work(wpa_s, bss ? bss->freq : 0, "connect", 1,
2039 wpas_start_assoc_cb, cwork) < 0) {
2040 os_free(cwork);
2041 }
2042 }
2043
2044
2045 static int bss_is_ibss(struct wpa_bss *bss)
2046 {
2047 return (bss->caps & (IEEE80211_CAP_ESS | IEEE80211_CAP_IBSS)) ==
2048 IEEE80211_CAP_IBSS;
2049 }
2050
2051
2052 static int drv_supports_vht(struct wpa_supplicant *wpa_s,
2053 const struct wpa_ssid *ssid)
2054 {
2055 enum hostapd_hw_mode hw_mode;
2056 struct hostapd_hw_modes *mode = NULL;
2057 u8 channel;
2058 int i;
2059
2060 hw_mode = ieee80211_freq_to_chan(ssid->frequency, &channel);
2061 if (hw_mode == NUM_HOSTAPD_MODES)
2062 return 0;
2063 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
2064 if (wpa_s->hw.modes[i].mode == hw_mode) {
2065 mode = &wpa_s->hw.modes[i];
2066 break;
2067 }
2068 }
2069
2070 if (!mode)
2071 return 0;
2072
2073 return mode->vht_capab != 0;
2074 }
2075
2076
2077 void ibss_mesh_setup_freq(struct wpa_supplicant *wpa_s,
2078 const struct wpa_ssid *ssid,
2079 struct hostapd_freq_params *freq)
2080 {
2081 enum hostapd_hw_mode hw_mode;
2082 struct hostapd_hw_modes *mode = NULL;
2083 int ht40plus[] = { 36, 44, 52, 60, 100, 108, 116, 124, 132, 149, 157,
2084 184, 192 };
2085 int vht80[] = { 36, 52, 100, 116, 132, 149 };
2086 struct hostapd_channel_data *pri_chan = NULL, *sec_chan = NULL;
2087 u8 channel;
2088 int i, chan_idx, ht40 = -1, res, obss_scan = 1;
2089 unsigned int j, k;
2090 struct hostapd_freq_params vht_freq;
2091 int chwidth, seg0, seg1;
2092 u32 vht_caps = 0;
2093
2094 freq->freq = ssid->frequency;
2095
2096 for (j = 0; j < wpa_s->last_scan_res_used; j++) {
2097 struct wpa_bss *bss = wpa_s->last_scan_res[j];
2098
2099 if (ssid->mode != WPAS_MODE_IBSS)
2100 break;
2101
2102 /* Don't adjust control freq in case of fixed_freq */
2103 if (ssid->fixed_freq)
2104 break;
2105
2106 if (!bss_is_ibss(bss))
2107 continue;
2108
2109 if (ssid->ssid_len == bss->ssid_len &&
2110 os_memcmp(ssid->ssid, bss->ssid, bss->ssid_len) == 0) {
2111 wpa_printf(MSG_DEBUG,
2112 "IBSS already found in scan results, adjust control freq: %d",
2113 bss->freq);
2114 freq->freq = bss->freq;
2115 obss_scan = 0;
2116 break;
2117 }
2118 }
2119
2120 /* For IBSS check HT_IBSS flag */
2121 if (ssid->mode == WPAS_MODE_IBSS &&
2122 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_HT_IBSS))
2123 return;
2124
2125 if (wpa_s->group_cipher == WPA_CIPHER_WEP40 ||
2126 wpa_s->group_cipher == WPA_CIPHER_WEP104 ||
2127 wpa_s->pairwise_cipher == WPA_CIPHER_TKIP) {
2128 wpa_printf(MSG_DEBUG,
2129 "IBSS: WEP/TKIP detected, do not try to enable HT");
2130 return;
2131 }
2132
2133 hw_mode = ieee80211_freq_to_chan(freq->freq, &channel);
2134 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
2135 if (wpa_s->hw.modes[i].mode == hw_mode) {
2136 mode = &wpa_s->hw.modes[i];
2137 break;
2138 }
2139 }
2140
2141 if (!mode)
2142 return;
2143
2144 #ifdef CONFIG_HT_OVERRIDES
2145 if (ssid->disable_ht) {
2146 freq->ht_enabled = 0;
2147 return;
2148 }
2149 #endif /* CONFIG_HT_OVERRIDES */
2150
2151 freq->ht_enabled = ht_supported(mode);
2152 if (!freq->ht_enabled)
2153 return;
2154
2155 /* Setup higher BW only for 5 GHz */
2156 if (mode->mode != HOSTAPD_MODE_IEEE80211A)
2157 return;
2158
2159 for (chan_idx = 0; chan_idx < mode->num_channels; chan_idx++) {
2160 pri_chan = &mode->channels[chan_idx];
2161 if (pri_chan->chan == channel)
2162 break;
2163 pri_chan = NULL;
2164 }
2165 if (!pri_chan)
2166 return;
2167
2168 /* Check primary channel flags */
2169 if (pri_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
2170 return;
2171
2172 #ifdef CONFIG_HT_OVERRIDES
2173 if (ssid->disable_ht40)
2174 return;
2175 #endif /* CONFIG_HT_OVERRIDES */
2176
2177 /* Check/setup HT40+/HT40- */
2178 for (j = 0; j < ARRAY_SIZE(ht40plus); j++) {
2179 if (ht40plus[j] == channel) {
2180 ht40 = 1;
2181 break;
2182 }
2183 }
2184
2185 /* Find secondary channel */
2186 for (i = 0; i < mode->num_channels; i++) {
2187 sec_chan = &mode->channels[i];
2188 if (sec_chan->chan == channel + ht40 * 4)
2189 break;
2190 sec_chan = NULL;
2191 }
2192 if (!sec_chan)
2193 return;
2194
2195 /* Check secondary channel flags */
2196 if (sec_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
2197 return;
2198
2199 freq->channel = pri_chan->chan;
2200
2201 if (ht40 == -1) {
2202 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40MINUS))
2203 return;
2204 } else {
2205 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40PLUS))
2206 return;
2207 }
2208 freq->sec_channel_offset = ht40;
2209
2210 if (obss_scan) {
2211 struct wpa_scan_results *scan_res;
2212
2213 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL, 0);
2214 if (scan_res == NULL) {
2215 /* Back to HT20 */
2216 freq->sec_channel_offset = 0;
2217 return;
2218 }
2219
2220 res = check_40mhz_5g(mode, scan_res, pri_chan->chan,
2221 sec_chan->chan);
2222 switch (res) {
2223 case 0:
2224 /* Back to HT20 */
2225 freq->sec_channel_offset = 0;
2226 break;
2227 case 1:
2228 /* Configuration allowed */
2229 break;
2230 case 2:
2231 /* Switch pri/sec channels */
2232 freq->freq = hw_get_freq(mode, sec_chan->chan);
2233 freq->sec_channel_offset = -freq->sec_channel_offset;
2234 freq->channel = sec_chan->chan;
2235 break;
2236 default:
2237 freq->sec_channel_offset = 0;
2238 break;
2239 }
2240
2241 wpa_scan_results_free(scan_res);
2242 }
2243
2244 wpa_printf(MSG_DEBUG,
2245 "IBSS/mesh: setup freq channel %d, sec_channel_offset %d",
2246 freq->channel, freq->sec_channel_offset);
2247
2248 if (!drv_supports_vht(wpa_s, ssid))
2249 return;
2250
2251 /* For IBSS check VHT_IBSS flag */
2252 if (ssid->mode == WPAS_MODE_IBSS &&
2253 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_VHT_IBSS))
2254 return;
2255
2256 vht_freq = *freq;
2257
2258 #ifdef CONFIG_VHT_OVERRIDES
2259 if (ssid->disable_vht) {
2260 freq->vht_enabled = 0;
2261 return;
2262 }
2263 #endif /* CONFIG_VHT_OVERRIDES */
2264
2265 vht_freq.vht_enabled = vht_supported(mode);
2266 if (!vht_freq.vht_enabled)
2267 return;
2268
2269 /* setup center_freq1, bandwidth */
2270 for (j = 0; j < ARRAY_SIZE(vht80); j++) {
2271 if (freq->channel >= vht80[j] &&
2272 freq->channel < vht80[j] + 16)
2273 break;
2274 }
2275
2276 if (j == ARRAY_SIZE(vht80))
2277 return;
2278
2279 for (i = vht80[j]; i < vht80[j] + 16; i += 4) {
2280 struct hostapd_channel_data *chan;
2281
2282 chan = hw_get_channel_chan(mode, i, NULL);
2283 if (!chan)
2284 return;
2285
2286 /* Back to HT configuration if channel not usable */
2287 if (chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
2288 return;
2289 }
2290
2291 chwidth = VHT_CHANWIDTH_80MHZ;
2292 seg0 = vht80[j] + 6;
2293 seg1 = 0;
2294
2295 if (ssid->max_oper_chwidth == VHT_CHANWIDTH_80P80MHZ) {
2296 /* setup center_freq2, bandwidth */
2297 for (k = 0; k < ARRAY_SIZE(vht80); k++) {
2298 /* Only accept 80 MHz segments separated by a gap */
2299 if (j == k || abs(vht80[j] - vht80[k]) == 16)
2300 continue;
2301 for (i = vht80[k]; i < vht80[k] + 16; i += 4) {
2302 struct hostapd_channel_data *chan;
2303
2304 chan = hw_get_channel_chan(mode, i, NULL);
2305 if (!chan)
2306 continue;
2307
2308 if (chan->flag & (HOSTAPD_CHAN_DISABLED |
2309 HOSTAPD_CHAN_NO_IR |
2310 HOSTAPD_CHAN_RADAR))
2311 continue;
2312
2313 /* Found a suitable second segment for 80+80 */
2314 chwidth = VHT_CHANWIDTH_80P80MHZ;
2315 vht_caps |=
2316 VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ;
2317 seg1 = vht80[k] + 6;
2318 }
2319
2320 if (chwidth == VHT_CHANWIDTH_80P80MHZ)
2321 break;
2322 }
2323 } else if (ssid->max_oper_chwidth == VHT_CHANWIDTH_160MHZ) {
2324 if (freq->freq == 5180) {
2325 chwidth = VHT_CHANWIDTH_160MHZ;
2326 vht_caps |= VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
2327 seg0 = 50;
2328 } else if (freq->freq == 5520) {
2329 chwidth = VHT_CHANWIDTH_160MHZ;
2330 vht_caps |= VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
2331 seg0 = 114;
2332 }
2333 }
2334
2335 if (hostapd_set_freq_params(&vht_freq, mode->mode, freq->freq,
2336 freq->channel, freq->ht_enabled,
2337 vht_freq.vht_enabled,
2338 freq->sec_channel_offset,
2339 chwidth, seg0, seg1, vht_caps) != 0)
2340 return;
2341
2342 *freq = vht_freq;
2343
2344 wpa_printf(MSG_DEBUG, "IBSS: VHT setup freq cf1 %d, cf2 %d, bw %d",
2345 freq->center_freq1, freq->center_freq2, freq->bandwidth);
2346 }
2347
2348
2349 #ifdef CONFIG_FILS
2350 static size_t wpas_add_fils_hlp_req(struct wpa_supplicant *wpa_s, u8 *ie_buf,
2351 size_t ie_buf_len)
2352 {
2353 struct fils_hlp_req *req;
2354 size_t rem_len, hdr_len, hlp_len, len, ie_len = 0;
2355 const u8 *pos;
2356 u8 *buf = ie_buf;
2357
2358 dl_list_for_each(req, &wpa_s->fils_hlp_req, struct fils_hlp_req,
2359 list) {
2360 rem_len = ie_buf_len - ie_len;
2361 pos = wpabuf_head(req->pkt);
2362 hdr_len = 1 + 2 * ETH_ALEN + 6;
2363 hlp_len = wpabuf_len(req->pkt);
2364
2365 if (rem_len < 2 + hdr_len + hlp_len) {
2366 wpa_printf(MSG_ERROR,
2367 "FILS: Cannot fit HLP - rem_len=%lu to_fill=%lu",
2368 (unsigned long) rem_len,
2369 (unsigned long) (2 + hdr_len + hlp_len));
2370 break;
2371 }
2372
2373 len = (hdr_len + hlp_len) > 255 ? 255 : hdr_len + hlp_len;
2374 /* Element ID */
2375 *buf++ = WLAN_EID_EXTENSION;
2376 /* Length */
2377 *buf++ = len;
2378 /* Element ID Extension */
2379 *buf++ = WLAN_EID_EXT_FILS_HLP_CONTAINER;
2380 /* Destination MAC address */
2381 os_memcpy(buf, req->dst, ETH_ALEN);
2382 buf += ETH_ALEN;
2383 /* Source MAC address */
2384 os_memcpy(buf, wpa_s->own_addr, ETH_ALEN);
2385 buf += ETH_ALEN;
2386 /* LLC/SNAP Header */
2387 os_memcpy(buf, "\xaa\xaa\x03\x00\x00\x00", 6);
2388 buf += 6;
2389 /* HLP Packet */
2390 os_memcpy(buf, pos, len - hdr_len);
2391 buf += len - hdr_len;
2392 pos += len - hdr_len;
2393
2394 hlp_len -= len - hdr_len;
2395 ie_len += 2 + len;
2396 rem_len -= 2 + len;
2397
2398 while (hlp_len) {
2399 len = (hlp_len > 255) ? 255 : hlp_len;
2400 if (rem_len < 2 + len)
2401 break;
2402 *buf++ = WLAN_EID_FRAGMENT;
2403 *buf++ = len;
2404 os_memcpy(buf, pos, len);
2405 buf += len;
2406 pos += len;
2407
2408 hlp_len -= len;
2409 ie_len += 2 + len;
2410 rem_len -= 2 + len;
2411 }
2412 }
2413
2414 return ie_len;
2415 }
2416
2417
2418 int wpa_is_fils_supported(struct wpa_supplicant *wpa_s)
2419 {
2420 return (((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
2421 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SUPPORT_FILS)) ||
2422 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
2423 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_FILS_SK_OFFLOAD)));
2424 }
2425
2426
2427 int wpa_is_fils_sk_pfs_supported(struct wpa_supplicant *wpa_s)
2428 {
2429 #ifdef CONFIG_FILS_SK_PFS
2430 return (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
2431 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SUPPORT_FILS);
2432 #else /* CONFIG_FILS_SK_PFS */
2433 return 0;
2434 #endif /* CONFIG_FILS_SK_PFS */
2435 }
2436
2437 #endif /* CONFIG_FILS */
2438
2439
2440 static u8 * wpas_populate_assoc_ies(
2441 struct wpa_supplicant *wpa_s,
2442 struct wpa_bss *bss, struct wpa_ssid *ssid,
2443 struct wpa_driver_associate_params *params,
2444 enum wpa_drv_update_connect_params_mask *mask)
2445 {
2446 u8 *wpa_ie;
2447 size_t max_wpa_ie_len = 500;
2448 size_t wpa_ie_len;
2449 int algs = WPA_AUTH_ALG_OPEN;
2450 #ifdef CONFIG_MBO
2451 const u8 *mbo_ie;
2452 #endif
2453 #ifdef CONFIG_FILS
2454 const u8 *realm, *username, *rrk;
2455 size_t realm_len, username_len, rrk_len;
2456 u16 next_seq_num;
2457 struct fils_hlp_req *req;
2458
2459 dl_list_for_each(req, &wpa_s->fils_hlp_req, struct fils_hlp_req,
2460 list) {
2461 max_wpa_ie_len += 3 + 2 * ETH_ALEN + 6 + wpabuf_len(req->pkt) +
2462 2 + 2 * wpabuf_len(req->pkt) / 255;
2463 }
2464 #endif /* CONFIG_FILS */
2465
2466 wpa_ie = os_malloc(max_wpa_ie_len);
2467 if (!wpa_ie) {
2468 wpa_printf(MSG_ERROR,
2469 "Failed to allocate connect IE buffer for %lu bytes",
2470 (unsigned long) max_wpa_ie_len);
2471 return NULL;
2472 }
2473
2474 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
2475 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
2476 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
2477 int try_opportunistic;
2478 const u8 *cache_id = NULL;
2479
2480 try_opportunistic = (ssid->proactive_key_caching < 0 ?
2481 wpa_s->conf->okc :
2482 ssid->proactive_key_caching) &&
2483 (ssid->proto & WPA_PROTO_RSN);
2484 #ifdef CONFIG_FILS
2485 if (wpa_key_mgmt_fils(ssid->key_mgmt))
2486 cache_id = wpa_bss_get_fils_cache_id(bss);
2487 #endif /* CONFIG_FILS */
2488 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
2489 ssid, try_opportunistic,
2490 cache_id, 0) == 0)
2491 eapol_sm_notify_pmkid_attempt(wpa_s->eapol);
2492 wpa_ie_len = max_wpa_ie_len;
2493 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
2494 wpa_ie, &wpa_ie_len)) {
2495 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2496 "key management and encryption suites");
2497 os_free(wpa_ie);
2498 return NULL;
2499 }
2500 #ifdef CONFIG_HS20
2501 } else if (bss && wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE) &&
2502 (ssid->key_mgmt & WPA_KEY_MGMT_OSEN)) {
2503 /* No PMKSA caching, but otherwise similar to RSN/WPA */
2504 wpa_ie_len = max_wpa_ie_len;
2505 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
2506 wpa_ie, &wpa_ie_len)) {
2507 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2508 "key management and encryption suites");
2509 os_free(wpa_ie);
2510 return NULL;
2511 }
2512 #endif /* CONFIG_HS20 */
2513 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
2514 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
2515 /*
2516 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
2517 * use non-WPA since the scan results did not indicate that the
2518 * AP is using WPA or WPA2.
2519 */
2520 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2521 wpa_ie_len = 0;
2522 wpa_s->wpa_proto = 0;
2523 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
2524 wpa_ie_len = max_wpa_ie_len;
2525 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
2526 wpa_ie, &wpa_ie_len)) {
2527 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2528 "key management and encryption suites (no "
2529 "scan results)");
2530 os_free(wpa_ie);
2531 return NULL;
2532 }
2533 #ifdef CONFIG_WPS
2534 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
2535 struct wpabuf *wps_ie;
2536 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
2537 if (wps_ie && wpabuf_len(wps_ie) <= max_wpa_ie_len) {
2538 wpa_ie_len = wpabuf_len(wps_ie);
2539 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
2540 } else
2541 wpa_ie_len = 0;
2542 wpabuf_free(wps_ie);
2543 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2544 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
2545 params->wps = WPS_MODE_PRIVACY;
2546 else
2547 params->wps = WPS_MODE_OPEN;
2548 wpa_s->wpa_proto = 0;
2549 #endif /* CONFIG_WPS */
2550 } else {
2551 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2552 wpa_ie_len = 0;
2553 wpa_s->wpa_proto = 0;
2554 }
2555
2556 #ifdef IEEE8021X_EAPOL
2557 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2558 if (ssid->leap) {
2559 if (ssid->non_leap == 0)
2560 algs = WPA_AUTH_ALG_LEAP;
2561 else
2562 algs |= WPA_AUTH_ALG_LEAP;
2563 }
2564 }
2565
2566 #ifdef CONFIG_FILS
2567 /* Clear FILS association */
2568 wpa_sm_set_reset_fils_completed(wpa_s->wpa, 0);
2569
2570 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_FILS_SK_OFFLOAD) &&
2571 ssid->eap.erp && wpa_key_mgmt_fils(wpa_s->key_mgmt) &&
2572 eapol_sm_get_erp_info(wpa_s->eapol, &ssid->eap, &username,
2573 &username_len, &realm, &realm_len,
2574 &next_seq_num, &rrk, &rrk_len) == 0 &&
2575 (!wpa_s->last_con_fail_realm ||
2576 wpa_s->last_con_fail_realm_len != realm_len ||
2577 os_memcmp(wpa_s->last_con_fail_realm, realm, realm_len) != 0)) {
2578 algs = WPA_AUTH_ALG_FILS;
2579 params->fils_erp_username = username;
2580 params->fils_erp_username_len = username_len;
2581 params->fils_erp_realm = realm;
2582 params->fils_erp_realm_len = realm_len;
2583 params->fils_erp_next_seq_num = next_seq_num;
2584 params->fils_erp_rrk = rrk;
2585 params->fils_erp_rrk_len = rrk_len;
2586
2587 if (mask)
2588 *mask |= WPA_DRV_UPDATE_FILS_ERP_INFO;
2589 }
2590 #endif /* CONFIG_FILS */
2591 #endif /* IEEE8021X_EAPOL */
2592 #ifdef CONFIG_SAE
2593 if (wpa_s->key_mgmt & (WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE))
2594 algs = WPA_AUTH_ALG_SAE;
2595 #endif /* CONFIG_SAE */
2596
2597 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
2598 if (ssid->auth_alg) {
2599 algs = ssid->auth_alg;
2600 wpa_dbg(wpa_s, MSG_DEBUG,
2601 "Overriding auth_alg selection: 0x%x", algs);
2602 }
2603
2604 #ifdef CONFIG_P2P
2605 if (wpa_s->global->p2p) {
2606 u8 *pos;
2607 size_t len;
2608 int res;
2609 pos = wpa_ie + wpa_ie_len;
2610 len = max_wpa_ie_len - wpa_ie_len;
2611 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
2612 ssid->p2p_group);
2613 if (res >= 0)
2614 wpa_ie_len += res;
2615 }
2616
2617 wpa_s->cross_connect_disallowed = 0;
2618 if (bss) {
2619 struct wpabuf *p2p;
2620 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
2621 if (p2p) {
2622 wpa_s->cross_connect_disallowed =
2623 p2p_get_cross_connect_disallowed(p2p);
2624 wpabuf_free(p2p);
2625 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
2626 "connection",
2627 wpa_s->cross_connect_disallowed ?
2628 "disallows" : "allows");
2629 }
2630 }
2631
2632 os_memset(wpa_s->p2p_ip_addr_info, 0, sizeof(wpa_s->p2p_ip_addr_info));
2633 #endif /* CONFIG_P2P */
2634
2635 if (bss) {
2636 wpa_ie_len += wpas_supp_op_class_ie(wpa_s, bss->freq,
2637 wpa_ie + wpa_ie_len,
2638 max_wpa_ie_len -
2639 wpa_ie_len);
2640 }
2641
2642 /*
2643 * Workaround: Add Extended Capabilities element only if the AP
2644 * included this element in Beacon/Probe Response frames. Some older
2645 * APs seem to have interoperability issues if this element is
2646 * included, so while the standard may require us to include the
2647 * element in all cases, it is justifiable to skip it to avoid
2648 * interoperability issues.
2649 */
2650 if (ssid->p2p_group)
2651 wpa_drv_get_ext_capa(wpa_s, WPA_IF_P2P_CLIENT);
2652 else
2653 wpa_drv_get_ext_capa(wpa_s, WPA_IF_STATION);
2654
2655 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
2656 u8 ext_capab[18];
2657 int ext_capab_len;
2658 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab,
2659 sizeof(ext_capab));
2660 if (ext_capab_len > 0 &&
2661 wpa_ie_len + ext_capab_len <= max_wpa_ie_len) {
2662 u8 *pos = wpa_ie;
2663 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
2664 pos += 2 + pos[1];
2665 os_memmove(pos + ext_capab_len, pos,
2666 wpa_ie_len - (pos - wpa_ie));
2667 wpa_ie_len += ext_capab_len;
2668 os_memcpy(pos, ext_capab, ext_capab_len);
2669 }
2670 }
2671
2672 #ifdef CONFIG_HS20
2673 if (is_hs20_network(wpa_s, ssid, bss)) {
2674 struct wpabuf *hs20;
2675
2676 hs20 = wpabuf_alloc(20 + MAX_ROAMING_CONS_OI_LEN);
2677 if (hs20) {
2678 int pps_mo_id = hs20_get_pps_mo_id(wpa_s, ssid);
2679 size_t len;
2680
2681 wpas_hs20_add_indication(hs20, pps_mo_id);
2682 wpas_hs20_add_roam_cons_sel(hs20, ssid);
2683 len = max_wpa_ie_len - wpa_ie_len;
2684 if (wpabuf_len(hs20) <= len) {
2685 os_memcpy(wpa_ie + wpa_ie_len,
2686 wpabuf_head(hs20), wpabuf_len(hs20));
2687 wpa_ie_len += wpabuf_len(hs20);
2688 }
2689 wpabuf_free(hs20);
2690
2691 hs20_configure_frame_filters(wpa_s);
2692 }
2693 }
2694 #endif /* CONFIG_HS20 */
2695
2696 if (wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ]) {
2697 struct wpabuf *buf = wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ];
2698 size_t len;
2699
2700 len = max_wpa_ie_len - wpa_ie_len;
2701 if (wpabuf_len(buf) <= len) {
2702 os_memcpy(wpa_ie + wpa_ie_len,
2703 wpabuf_head(buf), wpabuf_len(buf));
2704 wpa_ie_len += wpabuf_len(buf);
2705 }
2706 }
2707
2708 #ifdef CONFIG_FST
2709 if (wpa_s->fst_ies) {
2710 int fst_ies_len = wpabuf_len(wpa_s->fst_ies);
2711
2712 if (wpa_ie_len + fst_ies_len <= max_wpa_ie_len) {
2713 os_memcpy(wpa_ie + wpa_ie_len,
2714 wpabuf_head(wpa_s->fst_ies), fst_ies_len);
2715 wpa_ie_len += fst_ies_len;
2716 }
2717 }
2718 #endif /* CONFIG_FST */
2719
2720 #ifdef CONFIG_MBO
2721 mbo_ie = bss ? wpa_bss_get_vendor_ie(bss, MBO_IE_VENDOR_TYPE) : NULL;
2722 if (mbo_ie) {
2723 int len;
2724
2725 len = wpas_mbo_ie(wpa_s, wpa_ie + wpa_ie_len,
2726 max_wpa_ie_len - wpa_ie_len,
2727 !!mbo_attr_from_mbo_ie(mbo_ie,
2728 OCE_ATTR_ID_CAPA_IND));
2729 if (len >= 0)
2730 wpa_ie_len += len;
2731 }
2732 #endif /* CONFIG_MBO */
2733
2734 #ifdef CONFIG_FILS
2735 if (algs == WPA_AUTH_ALG_FILS) {
2736 size_t len;
2737
2738 len = wpas_add_fils_hlp_req(wpa_s, wpa_ie + wpa_ie_len,
2739 max_wpa_ie_len - wpa_ie_len);
2740 wpa_ie_len += len;
2741 }
2742 #endif /* CONFIG_FILS */
2743
2744 #ifdef CONFIG_OWE
2745 #ifdef CONFIG_TESTING_OPTIONS
2746 if (get_ie_ext(wpa_ie, wpa_ie_len, WLAN_EID_EXT_OWE_DH_PARAM)) {
2747 wpa_printf(MSG_INFO, "TESTING: Override OWE DH element");
2748 } else
2749 #endif /* CONFIG_TESTING_OPTIONS */
2750 if (algs == WPA_AUTH_ALG_OPEN &&
2751 ssid->key_mgmt == WPA_KEY_MGMT_OWE) {
2752 struct wpabuf *owe_ie;
2753 u16 group;
2754
2755 if (ssid->owe_group) {
2756 group = ssid->owe_group;
2757 } else if (wpa_s->assoc_status_code ==
2758 WLAN_STATUS_FINITE_CYCLIC_GROUP_NOT_SUPPORTED) {
2759 if (wpa_s->last_owe_group == 19)
2760 group = 20;
2761 else if (wpa_s->last_owe_group == 20)
2762 group = 21;
2763 else
2764 group = OWE_DH_GROUP;
2765 } else {
2766 group = OWE_DH_GROUP;
2767 }
2768
2769 wpa_s->last_owe_group = group;
2770 wpa_printf(MSG_DEBUG, "OWE: Try to use group %u", group);
2771 owe_ie = owe_build_assoc_req(wpa_s->wpa, group);
2772 if (owe_ie &&
2773 wpabuf_len(owe_ie) <= max_wpa_ie_len - wpa_ie_len) {
2774 os_memcpy(wpa_ie + wpa_ie_len,
2775 wpabuf_head(owe_ie), wpabuf_len(owe_ie));
2776 wpa_ie_len += wpabuf_len(owe_ie);
2777 wpabuf_free(owe_ie);
2778 }
2779 }
2780 #endif /* CONFIG_OWE */
2781
2782 #ifdef CONFIG_IEEE80211R
2783 /*
2784 * Add MDIE under these conditions: the network profile allows FT,
2785 * the AP supports FT, and the mobility domain ID matches.
2786 */
2787 if (bss && wpa_key_mgmt_ft(wpa_sm_get_key_mgmt(wpa_s->wpa))) {
2788 const u8 *mdie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
2789
2790 if (mdie && mdie[1] >= MOBILITY_DOMAIN_ID_LEN) {
2791 size_t len = 0;
2792 const u8 *md = mdie + 2;
2793 const u8 *wpa_md = wpa_sm_get_ft_md(wpa_s->wpa);
2794
2795 if (os_memcmp(md, wpa_md,
2796 MOBILITY_DOMAIN_ID_LEN) == 0) {
2797 /* Add mobility domain IE */
2798 len = wpa_ft_add_mdie(
2799 wpa_s->wpa, wpa_ie + wpa_ie_len,
2800 max_wpa_ie_len - wpa_ie_len, mdie);
2801 wpa_ie_len += len;
2802 }
2803 #ifdef CONFIG_SME
2804 if (len > 0 && wpa_s->sme.ft_used &&
2805 wpa_sm_has_ptk(wpa_s->wpa)) {
2806 wpa_dbg(wpa_s, MSG_DEBUG,
2807 "SME: Trying to use FT over-the-air");
2808 algs |= WPA_AUTH_ALG_FT;
2809 }
2810 #endif /* CONFIG_SME */
2811 }
2812 }
2813 #endif /* CONFIG_IEEE80211R */
2814
2815 params->wpa_ie = wpa_ie;
2816 params->wpa_ie_len = wpa_ie_len;
2817 params->auth_alg = algs;
2818 if (mask)
2819 *mask |= WPA_DRV_UPDATE_ASSOC_IES | WPA_DRV_UPDATE_AUTH_TYPE;
2820
2821 return wpa_ie;
2822 }
2823
2824
2825 #if defined(CONFIG_FILS) && defined(IEEE8021X_EAPOL)
2826 static void wpas_update_fils_connect_params(struct wpa_supplicant *wpa_s)
2827 {
2828 struct wpa_driver_associate_params params;
2829 enum wpa_drv_update_connect_params_mask mask = 0;
2830 u8 *wpa_ie;
2831
2832 if (wpa_s->auth_alg != WPA_AUTH_ALG_OPEN)
2833 return; /* nothing to do */
2834
2835 os_memset(&params, 0, sizeof(params));
2836 wpa_ie = wpas_populate_assoc_ies(wpa_s, wpa_s->current_bss,
2837 wpa_s->current_ssid, &params, &mask);
2838 if (!wpa_ie)
2839 return;
2840
2841 if (params.auth_alg != WPA_AUTH_ALG_FILS) {
2842 os_free(wpa_ie);
2843 return;
2844 }
2845
2846 wpa_s->auth_alg = params.auth_alg;
2847 wpa_drv_update_connect_params(wpa_s, &params, mask);
2848 os_free(wpa_ie);
2849 }
2850 #endif /* CONFIG_FILS && IEEE8021X_EAPOL */
2851
2852
2853 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit)
2854 {
2855 struct wpa_connect_work *cwork = work->ctx;
2856 struct wpa_bss *bss = cwork->bss;
2857 struct wpa_ssid *ssid = cwork->ssid;
2858 struct wpa_supplicant *wpa_s = work->wpa_s;
2859 u8 *wpa_ie;
2860 int use_crypt, ret, i, bssid_changed;
2861 unsigned int cipher_pairwise, cipher_group, cipher_group_mgmt;
2862 struct wpa_driver_associate_params params;
2863 int wep_keys_set = 0;
2864 int assoc_failed = 0;
2865 struct wpa_ssid *old_ssid;
2866 u8 prev_bssid[ETH_ALEN];
2867 #ifdef CONFIG_HT_OVERRIDES
2868 struct ieee80211_ht_capabilities htcaps;
2869 struct ieee80211_ht_capabilities htcaps_mask;
2870 #endif /* CONFIG_HT_OVERRIDES */
2871 #ifdef CONFIG_VHT_OVERRIDES
2872 struct ieee80211_vht_capabilities vhtcaps;
2873 struct ieee80211_vht_capabilities vhtcaps_mask;
2874 #endif /* CONFIG_VHT_OVERRIDES */
2875
2876 if (deinit) {
2877 if (work->started) {
2878 wpa_s->connect_work = NULL;
2879
2880 /* cancel possible auth. timeout */
2881 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s,
2882 NULL);
2883 }
2884 wpas_connect_work_free(cwork);
2885 return;
2886 }
2887
2888 wpa_s->connect_work = work;
2889
2890 if (cwork->bss_removed || !wpas_valid_bss_ssid(wpa_s, bss, ssid) ||
2891 wpas_network_disabled(wpa_s, ssid)) {
2892 wpa_dbg(wpa_s, MSG_DEBUG, "BSS/SSID entry for association not valid anymore - drop connection attempt");
2893 wpas_connect_work_done(wpa_s);
2894 return;
2895 }
2896
2897 os_memcpy(prev_bssid, wpa_s->bssid, ETH_ALEN);
2898 os_memset(&params, 0, sizeof(params));
2899 wpa_s->reassociate = 0;
2900 wpa_s->eap_expected_failure = 0;
2901 if (bss &&
2902 (!wpas_driver_bss_selection(wpa_s) || wpas_wps_searching(wpa_s))) {
2903 #ifdef CONFIG_IEEE80211R
2904 const u8 *ie, *md = NULL;
2905 #endif /* CONFIG_IEEE80211R */
2906 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
2907 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
2908 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
2909 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
2910 os_memset(wpa_s->bssid, 0, ETH_ALEN);
2911 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
2912 if (bssid_changed)
2913 wpas_notify_bssid_changed(wpa_s);
2914 #ifdef CONFIG_IEEE80211R
2915 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
2916 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
2917 md = ie + 2;
2918 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
2919 if (md) {
2920 /* Prepare for the next transition */
2921 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
2922 }
2923 #endif /* CONFIG_IEEE80211R */
2924 #ifdef CONFIG_WPS
2925 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
2926 wpa_s->conf->ap_scan == 2 &&
2927 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
2928 /* Use ap_scan==1 style network selection to find the network
2929 */
2930 wpas_connect_work_done(wpa_s);
2931 wpa_s->scan_req = MANUAL_SCAN_REQ;
2932 wpa_s->reassociate = 1;
2933 wpa_supplicant_req_scan(wpa_s, 0, 0);
2934 return;
2935 #endif /* CONFIG_WPS */
2936 } else {
2937 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
2938 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
2939 if (bss)
2940 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
2941 else
2942 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2943 }
2944 if (!wpa_s->pno)
2945 wpa_supplicant_cancel_sched_scan(wpa_s);
2946
2947 wpa_supplicant_cancel_scan(wpa_s);
2948
2949 /* Starting new association, so clear the possibly used WPA IE from the
2950 * previous association. */
2951 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
2952
2953 wpa_ie = wpas_populate_assoc_ies(wpa_s, bss, ssid, &params, NULL);
2954 if (!wpa_ie) {
2955 wpas_connect_work_done(wpa_s);
2956 return;
2957 }
2958
2959 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
2960 use_crypt = 1;
2961 cipher_pairwise = wpa_s->pairwise_cipher;
2962 cipher_group = wpa_s->group_cipher;
2963 cipher_group_mgmt = wpa_s->mgmt_group_cipher;
2964 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
2965 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2966 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
2967 use_crypt = 0;
2968 if (wpa_set_wep_keys(wpa_s, ssid)) {
2969 use_crypt = 1;
2970 wep_keys_set = 1;
2971 }
2972 }
2973 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
2974 use_crypt = 0;
2975
2976 #ifdef IEEE8021X_EAPOL
2977 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2978 if ((ssid->eapol_flags &
2979 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
2980 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
2981 !wep_keys_set) {
2982 use_crypt = 0;
2983 } else {
2984 /* Assume that dynamic WEP-104 keys will be used and
2985 * set cipher suites in order for drivers to expect
2986 * encryption. */
2987 cipher_pairwise = cipher_group = WPA_CIPHER_WEP104;
2988 }
2989 }
2990 #endif /* IEEE8021X_EAPOL */
2991
2992 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2993 /* Set the key before (and later after) association */
2994 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2995 }
2996
2997 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
2998 if (bss) {
2999 params.ssid = bss->ssid;
3000 params.ssid_len = bss->ssid_len;
3001 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set ||
3002 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
3003 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
3004 MACSTR " freq=%u MHz based on scan results "
3005 "(bssid_set=%d wps=%d)",
3006 MAC2STR(bss->bssid), bss->freq,
3007 ssid->bssid_set,
3008 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS);
3009 params.bssid = bss->bssid;
3010 params.freq.freq = bss->freq;
3011 }
3012 params.bssid_hint = bss->bssid;
3013 params.freq_hint = bss->freq;
3014 params.pbss = bss_is_pbss(bss);
3015 } else {
3016 if (ssid->bssid_hint_set)
3017 params.bssid_hint = ssid->bssid_hint;
3018
3019 params.ssid = ssid->ssid;
3020 params.ssid_len = ssid->ssid_len;
3021 params.pbss = (ssid->pbss != 2) ? ssid->pbss : 0;
3022 }
3023
3024 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
3025 wpa_s->conf->ap_scan == 2) {
3026 params.bssid = ssid->bssid;
3027 params.fixed_bssid = 1;
3028 }
3029
3030 /* Initial frequency for IBSS/mesh */
3031 if ((ssid->mode == WPAS_MODE_IBSS || ssid->mode == WPAS_MODE_MESH) &&
3032 ssid->frequency > 0 && params.freq.freq == 0)
3033 ibss_mesh_setup_freq(wpa_s, ssid, &params.freq);
3034
3035 if (ssid->mode == WPAS_MODE_IBSS) {
3036 params.fixed_freq = ssid->fixed_freq;
3037 if (ssid->beacon_int)
3038 params.beacon_int = ssid->beacon_int;
3039 else
3040 params.beacon_int = wpa_s->conf->beacon_int;
3041 }
3042
3043 params.pairwise_suite = cipher_pairwise;
3044 params.group_suite = cipher_group;
3045 params.mgmt_group_suite = cipher_group_mgmt;
3046 params.key_mgmt_suite = wpa_s->key_mgmt;
3047 params.wpa_proto = wpa_s->wpa_proto;
3048 wpa_s->auth_alg = params.auth_alg;
3049 params.mode = ssid->mode;
3050 params.bg_scan_period = ssid->bg_scan_period;
3051 for (i = 0; i < NUM_WEP_KEYS; i++) {
3052 if (ssid->wep_key_len[i])
3053 params.wep_key[i] = ssid->wep_key[i];
3054 params.wep_key_len[i] = ssid->wep_key_len[i];
3055 }
3056 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
3057
3058 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
3059 (params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
3060 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK)) {
3061 params.passphrase = ssid->passphrase;
3062 if (ssid->psk_set)
3063 params.psk = ssid->psk;
3064 }
3065
3066 if (wpa_s->conf->key_mgmt_offload) {
3067 if (params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
3068 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
3069 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B ||
3070 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B_192)
3071 params.req_key_mgmt_offload =
3072 ssid->proactive_key_caching < 0 ?
3073 wpa_s->conf->okc : ssid->proactive_key_caching;
3074 else
3075 params.req_key_mgmt_offload = 1;
3076
3077 if ((params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
3078 params.key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256 ||
3079 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK) &&
3080 ssid->psk_set)
3081 params.psk = ssid->psk;
3082 }
3083
3084 params.drop_unencrypted = use_crypt;
3085
3086 #ifdef CONFIG_IEEE80211W
3087 params.mgmt_frame_protection = wpas_get_ssid_pmf(wpa_s, ssid);
3088 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
3089 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
3090 struct wpa_ie_data ie;
3091 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
3092 ie.capabilities &
3093 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
3094 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
3095 "MFP: require MFP");
3096 params.mgmt_frame_protection =
3097 MGMT_FRAME_PROTECTION_REQUIRED;
3098 #ifdef CONFIG_OWE
3099 } else if (!rsn && (ssid->key_mgmt & WPA_KEY_MGMT_OWE) &&
3100 !ssid->owe_only) {
3101 params.mgmt_frame_protection = NO_MGMT_FRAME_PROTECTION;
3102 #endif /* CONFIG_OWE */
3103 }
3104 }
3105 #endif /* CONFIG_IEEE80211W */
3106
3107 params.p2p = ssid->p2p_group;
3108
3109 if (wpa_s->p2pdev->set_sta_uapsd)
3110 params.uapsd = wpa_s->p2pdev->sta_uapsd;
3111 else
3112 params.uapsd = -1;
3113
3114 #ifdef CONFIG_HT_OVERRIDES
3115 os_memset(&htcaps, 0, sizeof(htcaps));
3116 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
3117 params.htcaps = (u8 *) &htcaps;
3118 params.htcaps_mask = (u8 *) &htcaps_mask;
3119 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, &params);
3120 #endif /* CONFIG_HT_OVERRIDES */
3121 #ifdef CONFIG_VHT_OVERRIDES
3122 os_memset(&vhtcaps, 0, sizeof(vhtcaps));
3123 os_memset(&vhtcaps_mask, 0, sizeof(vhtcaps_mask));
3124 params.vhtcaps = &vhtcaps;
3125 params.vhtcaps_mask = &vhtcaps_mask;
3126 wpa_supplicant_apply_vht_overrides(wpa_s, ssid, &params);
3127 #endif /* CONFIG_VHT_OVERRIDES */
3128
3129 #ifdef CONFIG_P2P
3130 /*
3131 * If multi-channel concurrency is not supported, check for any
3132 * frequency conflict. In case of any frequency conflict, remove the
3133 * least prioritized connection.
3134 */
3135 if (wpa_s->num_multichan_concurrent < 2) {
3136 int freq, num;
3137 num = get_shared_radio_freqs(wpa_s, &freq, 1);
3138 if (num > 0 && freq > 0 && freq != params.freq.freq) {
3139 wpa_printf(MSG_DEBUG,
3140 "Assoc conflicting freq found (%d != %d)",
3141 freq, params.freq.freq);
3142 if (wpas_p2p_handle_frequency_conflicts(
3143 wpa_s, params.freq.freq, ssid) < 0) {
3144 wpas_connect_work_done(wpa_s);
3145 os_free(wpa_ie);
3146 return;
3147 }
3148 }
3149 }
3150 #endif /* CONFIG_P2P */
3151
3152 if (wpa_s->reassoc_same_ess && !is_zero_ether_addr(prev_bssid) &&
3153 wpa_s->current_ssid)
3154 params.prev_bssid = prev_bssid;
3155
3156 ret = wpa_drv_associate(wpa_s, &params);
3157 os_free(wpa_ie);
3158 if (ret < 0) {
3159 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
3160 "failed");
3161 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
3162 /*
3163 * The driver is known to mean what is saying, so we
3164 * can stop right here; the association will not
3165 * succeed.
3166 */
3167 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
3168 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3169 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
3170 return;
3171 }
3172 /* try to continue anyway; new association will be tried again
3173 * after timeout */
3174 assoc_failed = 1;
3175 }
3176
3177 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
3178 /* Set the key after the association just in case association
3179 * cleared the previously configured key. */
3180 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
3181 /* No need to timeout authentication since there is no key
3182 * management. */
3183 wpa_supplicant_cancel_auth_timeout(wpa_s);
3184 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
3185 #ifdef CONFIG_IBSS_RSN
3186 } else if (ssid->mode == WPAS_MODE_IBSS &&
3187 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
3188 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
3189 /*
3190 * RSN IBSS authentication is per-STA and we can disable the
3191 * per-BSSID authentication.
3192 */
3193 wpa_supplicant_cancel_auth_timeout(wpa_s);
3194 #endif /* CONFIG_IBSS_RSN */
3195 } else {
3196 /* Timeout for IEEE 802.11 authentication and association */
3197 int timeout = 60;
3198
3199 if (assoc_failed) {
3200 /* give IBSS a bit more time */
3201 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
3202 } else if (wpa_s->conf->ap_scan == 1) {
3203 /* give IBSS a bit more time */
3204 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
3205 }
3206 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
3207 }
3208
3209 if (wep_keys_set &&
3210 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
3211 /* Set static WEP keys again */
3212 wpa_set_wep_keys(wpa_s, ssid);
3213 }
3214
3215 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
3216 /*
3217 * Do not allow EAP session resumption between different
3218 * network configurations.
3219 */
3220 eapol_sm_invalidate_cached_session(wpa_s->eapol);
3221 }
3222 old_ssid = wpa_s->current_ssid;
3223 wpa_s->current_ssid = ssid;
3224
3225 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
3226 wpa_s->current_bss = bss;
3227 #ifdef CONFIG_HS20
3228 hs20_configure_frame_filters(wpa_s);
3229 #endif /* CONFIG_HS20 */
3230 }
3231
3232 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
3233 wpa_supplicant_initiate_eapol(wpa_s);
3234 if (old_ssid != wpa_s->current_ssid)
3235 wpas_notify_network_changed(wpa_s);
3236 }
3237
3238
3239 static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
3240 const u8 *addr)
3241 {
3242 struct wpa_ssid *old_ssid;
3243
3244 wpas_connect_work_done(wpa_s);
3245 wpa_clear_keys(wpa_s, addr);
3246 old_ssid = wpa_s->current_ssid;
3247 wpa_supplicant_mark_disassoc(wpa_s);
3248 wpa_sm_set_config(wpa_s->wpa, NULL);
3249 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
3250 if (old_ssid != wpa_s->current_ssid)
3251 wpas_notify_network_changed(wpa_s);
3252 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
3253 }
3254
3255
3256 /**
3257 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
3258 * @wpa_s: Pointer to wpa_supplicant data
3259 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
3260 *
3261 * This function is used to request %wpa_supplicant to deauthenticate from the
3262 * current AP.
3263 */
3264 void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
3265 int reason_code)
3266 {
3267 u8 *addr = NULL;
3268 union wpa_event_data event;
3269 int zero_addr = 0;
3270
3271 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
3272 " pending_bssid=" MACSTR " reason=%d state=%s",
3273 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
3274 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
3275
3276 if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
3277 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
3278 wpa_s->wpa_state == WPA_ASSOCIATING))
3279 addr = wpa_s->pending_bssid;
3280 else if (!is_zero_ether_addr(wpa_s->bssid))
3281 addr = wpa_s->bssid;
3282 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
3283 /*
3284 * When using driver-based BSS selection, we may not know the
3285 * BSSID with which we are currently trying to associate. We
3286 * need to notify the driver of this disconnection even in such
3287 * a case, so use the all zeros address here.
3288 */
3289 addr = wpa_s->bssid;
3290 zero_addr = 1;
3291 }
3292
3293 #ifdef CONFIG_TDLS
3294 wpa_tdls_teardown_peers(wpa_s->wpa);
3295 #endif /* CONFIG_TDLS */
3296
3297 #ifdef CONFIG_MESH
3298 if (wpa_s->ifmsh) {
3299 struct mesh_conf *mconf;
3300
3301 mconf = wpa_s->ifmsh->mconf;
3302 wpa_msg(wpa_s, MSG_INFO, MESH_GROUP_REMOVED "%s",
3303 wpa_s->ifname);
3304 wpas_notify_mesh_group_removed(wpa_s, mconf->meshid,
3305 mconf->meshid_len, reason_code);
3306 wpa_supplicant_leave_mesh(wpa_s);
3307 }
3308 #endif /* CONFIG_MESH */
3309
3310 if (addr) {
3311 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
3312 os_memset(&event, 0, sizeof(event));
3313 event.deauth_info.reason_code = (u16) reason_code;
3314 event.deauth_info.locally_generated = 1;
3315 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
3316 if (zero_addr)
3317 addr = NULL;
3318 }
3319
3320 wpa_supplicant_clear_connection(wpa_s, addr);
3321 }
3322
3323 static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
3324 struct wpa_ssid *ssid)
3325 {
3326 if (!ssid || !ssid->disabled || ssid->disabled == 2)
3327 return;
3328
3329 ssid->disabled = 0;
3330 ssid->owe_transition_bss_select_count = 0;
3331 wpas_clear_temp_disabled(wpa_s, ssid, 1);
3332 wpas_notify_network_enabled_changed(wpa_s, ssid);
3333
3334 /*
3335 * Try to reassociate since there is no current configuration and a new
3336 * network was made available.
3337 */
3338 if (!wpa_s->current_ssid && !wpa_s->disconnected)
3339 wpa_s->reassociate = 1;
3340 }
3341
3342
3343 /**
3344 * wpa_supplicant_add_network - Add a new network
3345 * @wpa_s: wpa_supplicant structure for a network interface
3346 * Returns: The new network configuration or %NULL if operation failed
3347 *
3348 * This function performs the following operations:
3349 * 1. Adds a new network.
3350 * 2. Send network addition notification.
3351 * 3. Marks the network disabled.
3352 * 4. Set network default parameters.
3353 */
3354 struct wpa_ssid * wpa_supplicant_add_network(struct wpa_supplicant *wpa_s)
3355 {
3356 struct wpa_ssid *ssid;
3357
3358 ssid = wpa_config_add_network(wpa_s->conf);
3359 if (!ssid)
3360 return NULL;
3361 wpas_notify_network_added(wpa_s, ssid);
3362 ssid->disabled = 1;
3363 wpa_config_set_network_defaults(ssid);
3364
3365 return ssid;
3366 }
3367
3368
3369 /**
3370 * wpa_supplicant_remove_network - Remove a configured network based on id
3371 * @wpa_s: wpa_supplicant structure for a network interface
3372 * @id: Unique network id to search for
3373 * Returns: 0 on success, or -1 if the network was not found, -2 if the network
3374 * could not be removed
3375 *
3376 * This function performs the following operations:
3377 * 1. Removes the network.
3378 * 2. Send network removal notification.
3379 * 3. Update internal state machines.
3380 * 4. Stop any running sched scans.
3381 */
3382 int wpa_supplicant_remove_network(struct wpa_supplicant *wpa_s, int id)
3383 {
3384 struct wpa_ssid *ssid;
3385 int was_disabled;
3386
3387 ssid = wpa_config_get_network(wpa_s->conf, id);
3388 if (!ssid)
3389 return -1;
3390 wpas_notify_network_removed(wpa_s, ssid);
3391
3392 if (wpa_s->last_ssid == ssid)
3393 wpa_s->last_ssid = NULL;
3394
3395 if (ssid == wpa_s->current_ssid || !wpa_s->current_ssid) {
3396 #ifdef CONFIG_SME
3397 wpa_s->sme.prev_bssid_set = 0;
3398 #endif /* CONFIG_SME */
3399 /*
3400 * Invalidate the EAP session cache if the current or
3401 * previously used network is removed.
3402 */
3403 eapol_sm_invalidate_cached_session(wpa_s->eapol);
3404 }
3405
3406 if (ssid == wpa_s->current_ssid) {
3407 wpa_sm_set_config(wpa_s->wpa, NULL);
3408 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
3409
3410 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
3411 wpa_s->own_disconnect_req = 1;
3412 wpa_supplicant_deauthenticate(wpa_s,
3413 WLAN_REASON_DEAUTH_LEAVING);
3414 }
3415
3416 was_disabled = ssid->disabled;
3417
3418 if (wpa_config_remove_network(wpa_s->conf, id) < 0)
3419 return -2;
3420
3421 if (!was_disabled && wpa_s->sched_scanning) {
3422 wpa_printf(MSG_DEBUG,
3423 "Stop ongoing sched_scan to remove network from filters");
3424 wpa_supplicant_cancel_sched_scan(wpa_s);
3425 wpa_supplicant_req_scan(wpa_s, 0, 0);
3426 }
3427
3428 return 0;
3429 }
3430
3431
3432 /**
3433 * wpa_supplicant_enable_network - Mark a configured network as enabled
3434 * @wpa_s: wpa_supplicant structure for a network interface
3435 * @ssid: wpa_ssid structure for a configured network or %NULL
3436 *
3437 * Enables the specified network or all networks if no network specified.
3438 */
3439 void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
3440 struct wpa_ssid *ssid)
3441 {
3442 if (ssid == NULL) {
3443 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
3444 wpa_supplicant_enable_one_network(wpa_s, ssid);
3445 } else
3446 wpa_supplicant_enable_one_network(wpa_s, ssid);
3447
3448 if (wpa_s->reassociate && !wpa_s->disconnected &&
3449 (!wpa_s->current_ssid ||
3450 wpa_s->wpa_state == WPA_DISCONNECTED ||
3451 wpa_s->wpa_state == WPA_SCANNING)) {
3452 if (wpa_s->sched_scanning) {
3453 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
3454 "new network to scan filters");
3455 wpa_supplicant_cancel_sched_scan(wpa_s);
3456 }
3457
3458 if (wpa_supplicant_fast_associate(wpa_s) != 1) {
3459 wpa_s->scan_req = NORMAL_SCAN_REQ;
3460 wpa_supplicant_req_scan(wpa_s, 0, 0);
3461 }
3462 }
3463 }
3464
3465
3466 /**
3467 * wpa_supplicant_disable_network - Mark a configured network as disabled
3468 * @wpa_s: wpa_supplicant structure for a network interface
3469 * @ssid: wpa_ssid structure for a configured network or %NULL
3470 *
3471 * Disables the specified network or all networks if no network specified.
3472 */
3473 void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
3474 struct wpa_ssid *ssid)
3475 {
3476 struct wpa_ssid *other_ssid;
3477 int was_disabled;
3478
3479 if (ssid == NULL) {
3480 if (wpa_s->sched_scanning)
3481 wpa_supplicant_cancel_sched_scan(wpa_s);
3482
3483 for (other_ssid = wpa_s->conf->ssid; other_ssid;
3484 other_ssid = other_ssid->next) {
3485 was_disabled = other_ssid->disabled;
3486 if (was_disabled == 2)
3487 continue; /* do not change persistent P2P group
3488 * data */
3489
3490 other_ssid->disabled = 1;
3491
3492 if (was_disabled != other_ssid->disabled)
3493 wpas_notify_network_enabled_changed(
3494 wpa_s, other_ssid);
3495 }
3496 if (wpa_s->current_ssid) {
3497 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
3498 wpa_s->own_disconnect_req = 1;
3499 wpa_supplicant_deauthenticate(
3500 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
3501 }
3502 } else if (ssid->disabled != 2) {
3503 if (ssid == wpa_s->current_ssid) {
3504 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
3505 wpa_s->own_disconnect_req = 1;
3506 wpa_supplicant_deauthenticate(
3507 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
3508 }
3509
3510 was_disabled = ssid->disabled;
3511
3512 ssid->disabled = 1;
3513
3514 if (was_disabled != ssid->disabled) {
3515 wpas_notify_network_enabled_changed(wpa_s, ssid);
3516 if (wpa_s->sched_scanning) {
3517 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
3518 "to remove network from filters");
3519 wpa_supplicant_cancel_sched_scan(wpa_s);
3520 wpa_supplicant_req_scan(wpa_s, 0, 0);
3521 }
3522 }
3523 }
3524 }
3525
3526
3527 /**
3528 * wpa_supplicant_select_network - Attempt association with a network
3529 * @wpa_s: wpa_supplicant structure for a network interface
3530 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
3531 */
3532 void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
3533 struct wpa_ssid *ssid)
3534 {
3535
3536 struct wpa_ssid *other_ssid;
3537 int disconnected = 0;
3538
3539 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
3540 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
3541 wpa_s->own_disconnect_req = 1;
3542 wpa_supplicant_deauthenticate(
3543 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
3544 disconnected = 1;
3545 }
3546
3547 if (ssid)
3548 wpas_clear_temp_disabled(wpa_s, ssid, 1);
3549
3550 /*
3551 * Mark all other networks disabled or mark all networks enabled if no
3552 * network specified.
3553 */
3554 for (other_ssid = wpa_s->conf->ssid; other_ssid;
3555 other_ssid = other_ssid->next) {
3556 int was_disabled = other_ssid->disabled;
3557 if (was_disabled == 2)
3558 continue; /* do not change persistent P2P group data */
3559
3560 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
3561 if (was_disabled && !other_ssid->disabled)
3562 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
3563
3564 if (was_disabled != other_ssid->disabled)
3565 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
3566 }
3567
3568 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid &&
3569 wpa_s->wpa_state >= WPA_AUTHENTICATING) {
3570 /* We are already associated with the selected network */
3571 wpa_printf(MSG_DEBUG, "Already associated with the "
3572 "selected network - do nothing");
3573 return;
3574 }
3575
3576 if (ssid) {
3577 wpa_s->current_ssid = ssid;
3578 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
3579 wpa_s->connect_without_scan =
3580 (ssid->mode == WPAS_MODE_MESH) ? ssid : NULL;
3581
3582 /*
3583 * Don't optimize next scan freqs since a new ESS has been
3584 * selected.
3585 */
3586 os_free(wpa_s->next_scan_freqs);
3587 wpa_s->next_scan_freqs = NULL;
3588 } else {
3589 wpa_s->connect_without_scan = NULL;
3590 }
3591
3592 wpa_s->disconnected = 0;
3593 wpa_s->reassociate = 1;
3594 wpa_s->last_owe_group = 0;
3595 if (ssid)
3596 ssid->owe_transition_bss_select_count = 0;
3597
3598 if (wpa_s->connect_without_scan ||
3599 wpa_supplicant_fast_associate(wpa_s) != 1) {
3600 wpa_s->scan_req = NORMAL_SCAN_REQ;
3601 wpas_scan_reset_sched_scan(wpa_s);
3602 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
3603 }
3604
3605 if (ssid)
3606 wpas_notify_network_selected(wpa_s, ssid);
3607 }
3608
3609
3610 /**
3611 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
3612 * @wpa_s: wpa_supplicant structure for a network interface
3613 * @pkcs11_engine_path: PKCS #11 engine path or NULL
3614 * @pkcs11_module_path: PKCS #11 module path or NULL
3615 * Returns: 0 on success; -1 on failure
3616 *
3617 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
3618 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
3619 * module path fails the paths will be reset to the default value (NULL).
3620 */
3621 int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
3622 const char *pkcs11_engine_path,
3623 const char *pkcs11_module_path)
3624 {
3625 char *pkcs11_engine_path_copy = NULL;
3626 char *pkcs11_module_path_copy = NULL;
3627
3628 if (pkcs11_engine_path != NULL) {
3629 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
3630 if (pkcs11_engine_path_copy == NULL)
3631 return -1;
3632 }
3633 if (pkcs11_module_path != NULL) {
3634 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
3635 if (pkcs11_module_path_copy == NULL) {
3636 os_free(pkcs11_engine_path_copy);
3637 return -1;
3638 }
3639 }
3640
3641 os_free(wpa_s->conf->pkcs11_engine_path);
3642 os_free(wpa_s->conf->pkcs11_module_path);
3643 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
3644 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
3645
3646 wpa_sm_set_eapol(wpa_s->wpa, NULL);
3647 eapol_sm_deinit(wpa_s->eapol);
3648 wpa_s->eapol = NULL;
3649 if (wpa_supplicant_init_eapol(wpa_s)) {
3650 /* Error -> Reset paths to the default value (NULL) once. */
3651 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
3652 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
3653 NULL);
3654
3655 return -1;
3656 }
3657 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
3658
3659 return 0;
3660 }
3661
3662
3663 /**
3664 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
3665 * @wpa_s: wpa_supplicant structure for a network interface
3666 * @ap_scan: AP scan mode
3667 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
3668 *
3669 */
3670 int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
3671 {
3672
3673 int old_ap_scan;
3674
3675 if (ap_scan < 0 || ap_scan > 2)
3676 return -1;
3677
3678 if (ap_scan == 2 && os_strcmp(wpa_s->driver->name, "nl80211") == 0) {
3679 wpa_printf(MSG_INFO,
3680 "Note: nl80211 driver interface is not designed to be used with ap_scan=2; this can result in connection failures");
3681 }
3682
3683 #ifdef ANDROID
3684 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
3685 wpa_s->wpa_state >= WPA_ASSOCIATING &&
3686 wpa_s->wpa_state < WPA_COMPLETED) {
3687 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
3688 "associating", wpa_s->conf->ap_scan, ap_scan);
3689 return 0;
3690 }
3691 #endif /* ANDROID */
3692
3693 old_ap_scan = wpa_s->conf->ap_scan;
3694 wpa_s->conf->ap_scan = ap_scan;
3695
3696 if (old_ap_scan != wpa_s->conf->ap_scan)
3697 wpas_notify_ap_scan_changed(wpa_s);
3698
3699 return 0;
3700 }
3701
3702
3703 /**
3704 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
3705 * @wpa_s: wpa_supplicant structure for a network interface
3706 * @expire_age: Expiration age in seconds
3707 * Returns: 0 if succeed or -1 if expire_age has an invalid value
3708 *
3709 */
3710 int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
3711 unsigned int bss_expire_age)
3712 {
3713 if (bss_expire_age < 10) {
3714 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
3715 bss_expire_age);
3716 return -1;
3717 }
3718 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
3719 bss_expire_age);
3720 wpa_s->conf->bss_expiration_age = bss_expire_age;
3721
3722 return 0;
3723 }
3724
3725
3726 /**
3727 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
3728 * @wpa_s: wpa_supplicant structure for a network interface
3729 * @expire_count: number of scans after which an unseen BSS is reclaimed
3730 * Returns: 0 if succeed or -1 if expire_count has an invalid value
3731 *
3732 */
3733 int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
3734 unsigned int bss_expire_count)
3735 {
3736 if (bss_expire_count < 1) {
3737 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
3738 bss_expire_count);
3739 return -1;
3740 }
3741 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
3742 bss_expire_count);
3743 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
3744
3745 return 0;
3746 }
3747
3748
3749 /**
3750 * wpa_supplicant_set_scan_interval - Set scan interval
3751 * @wpa_s: wpa_supplicant structure for a network interface
3752 * @scan_interval: scan interval in seconds
3753 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
3754 *
3755 */
3756 int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
3757 int scan_interval)
3758 {
3759 if (scan_interval < 0) {
3760 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
3761 scan_interval);
3762 return -1;
3763 }
3764 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
3765 scan_interval);
3766 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
3767
3768 return 0;
3769 }
3770
3771
3772 /**
3773 * wpa_supplicant_set_debug_params - Set global debug params
3774 * @global: wpa_global structure
3775 * @debug_level: debug level
3776 * @debug_timestamp: determines if show timestamp in debug data
3777 * @debug_show_keys: determines if show keys in debug data
3778 * Returns: 0 if succeed or -1 if debug_level has wrong value
3779 */
3780 int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
3781 int debug_timestamp, int debug_show_keys)
3782 {
3783
3784 int old_level, old_timestamp, old_show_keys;
3785
3786 /* check for allowed debuglevels */
3787 if (debug_level != MSG_EXCESSIVE &&
3788 debug_level != MSG_MSGDUMP &&
3789 debug_level != MSG_DEBUG &&
3790 debug_level != MSG_INFO &&
3791 debug_level != MSG_WARNING &&
3792 debug_level != MSG_ERROR)
3793 return -1;
3794
3795 old_level = wpa_debug_level;
3796 old_timestamp = wpa_debug_timestamp;
3797 old_show_keys = wpa_debug_show_keys;
3798
3799 wpa_debug_level = debug_level;
3800 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
3801 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
3802
3803 if (wpa_debug_level != old_level)
3804 wpas_notify_debug_level_changed(global);
3805 if (wpa_debug_timestamp != old_timestamp)
3806 wpas_notify_debug_timestamp_changed(global);
3807 if (wpa_debug_show_keys != old_show_keys)
3808 wpas_notify_debug_show_keys_changed(global);
3809
3810 return 0;
3811 }
3812
3813
3814 #ifdef CONFIG_OWE
3815 static int owe_trans_ssid_match(struct wpa_supplicant *wpa_s, const u8 *bssid,
3816 const u8 *entry_ssid, size_t entry_ssid_len)
3817 {
3818 const u8 *owe, *pos, *end;
3819 u8 ssid_len;
3820 struct wpa_bss *bss;
3821
3822 /* Check network profile SSID aganst the SSID in the
3823 * OWE Transition Mode element. */
3824
3825 bss = wpa_bss_get_bssid_latest(wpa_s, bssid);
3826 if (!bss)
3827 return 0;
3828
3829 owe = wpa_bss_get_vendor_ie(bss, OWE_IE_VENDOR_TYPE);
3830 if (!owe)
3831 return 0;
3832
3833 pos = owe + 6;
3834 end = owe + 2 + owe[1];
3835
3836 if (end - pos < ETH_ALEN + 1)
3837 return 0;
3838 pos += ETH_ALEN;
3839 ssid_len = *pos++;
3840 if (end - pos < ssid_len || ssid_len > SSID_MAX_LEN)
3841 return 0;
3842
3843 return entry_ssid_len == ssid_len &&
3844 os_memcmp(pos, entry_ssid, ssid_len) == 0;
3845 }
3846 #endif /* CONFIG_OWE */
3847
3848
3849 /**
3850 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
3851 * @wpa_s: Pointer to wpa_supplicant data
3852 * Returns: A pointer to the current network structure or %NULL on failure
3853 */
3854 struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
3855 {
3856 struct wpa_ssid *entry;
3857 u8 ssid[SSID_MAX_LEN];
3858 int res;
3859 size_t ssid_len;
3860 u8 bssid[ETH_ALEN];
3861 int wired;
3862
3863 res = wpa_drv_get_ssid(wpa_s, ssid);
3864 if (res < 0) {
3865 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
3866 "driver");
3867 return NULL;
3868 }
3869 ssid_len = res;
3870
3871 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
3872 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
3873 "driver");
3874 return NULL;
3875 }
3876
3877 wired = wpa_s->conf->ap_scan == 0 &&
3878 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
3879
3880 entry = wpa_s->conf->ssid;
3881 while (entry) {
3882 if (!wpas_network_disabled(wpa_s, entry) &&
3883 ((ssid_len == entry->ssid_len &&
3884 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
3885 (!entry->bssid_set ||
3886 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
3887 return entry;
3888 #ifdef CONFIG_WPS
3889 if (!wpas_network_disabled(wpa_s, entry) &&
3890 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
3891 (entry->ssid == NULL || entry->ssid_len == 0) &&
3892 (!entry->bssid_set ||
3893 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
3894 return entry;
3895 #endif /* CONFIG_WPS */
3896
3897 #ifdef CONFIG_OWE
3898 if (!wpas_network_disabled(wpa_s, entry) &&
3899 owe_trans_ssid_match(wpa_s, bssid, entry->ssid,
3900 entry->ssid_len) &&
3901 (!entry->bssid_set ||
3902 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
3903 return entry;
3904 #endif /* CONFIG_OWE */
3905
3906 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
3907 entry->ssid_len == 0 &&
3908 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
3909 return entry;
3910
3911 entry = entry->next;
3912 }
3913
3914 return NULL;
3915 }
3916
3917
3918 static int select_driver(struct wpa_supplicant *wpa_s, int i)
3919 {
3920 struct wpa_global *global = wpa_s->global;
3921
3922 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
3923 global->drv_priv[i] = wpa_drivers[i]->global_init(global);
3924 if (global->drv_priv[i] == NULL) {
3925 wpa_printf(MSG_ERROR, "Failed to initialize driver "
3926 "'%s'", wpa_drivers[i]->name);
3927 return -1;
3928 }
3929 }
3930
3931 wpa_s->driver = wpa_drivers[i];
3932 wpa_s->global_drv_priv = global->drv_priv[i];
3933
3934 return 0;
3935 }
3936
3937
3938 static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
3939 const char *name)
3940 {
3941 int i;
3942 size_t len;
3943 const char *pos, *driver = name;
3944
3945 if (wpa_s == NULL)
3946 return -1;
3947
3948 if (wpa_drivers[0] == NULL) {
3949 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
3950 "wpa_supplicant");
3951 return -1;
3952 }
3953
3954 if (name == NULL) {
3955 /* default to first driver in the list */
3956 return select_driver(wpa_s, 0);
3957 }
3958
3959 do {
3960 pos = os_strchr(driver, ',');
3961 if (pos)
3962 len = pos - driver;
3963 else
3964 len = os_strlen(driver);
3965
3966 for (i = 0; wpa_drivers[i]; i++) {
3967 if (os_strlen(wpa_drivers[i]->name) == len &&
3968 os_strncmp(driver, wpa_drivers[i]->name, len) ==
3969 0) {
3970 /* First driver that succeeds wins */
3971 if (select_driver(wpa_s, i) == 0)
3972 return 0;
3973 }
3974 }
3975
3976 driver = pos + 1;
3977 } while (pos);
3978
3979 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
3980 return -1;
3981 }
3982
3983
3984 /**
3985 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
3986 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
3987 * with struct wpa_driver_ops::init()
3988 * @src_addr: Source address of the EAPOL frame
3989 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
3990 * @len: Length of the EAPOL data
3991 *
3992 * This function is called for each received EAPOL frame. Most driver
3993 * interfaces rely on more generic OS mechanism for receiving frames through
3994 * l2_packet, but if such a mechanism is not available, the driver wrapper may
3995 * take care of received EAPOL frames and deliver them to the core supplicant
3996 * code by calling this function.
3997 */
3998 void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
3999 const u8 *buf, size_t len)
4000 {
4001 struct wpa_supplicant *wpa_s = ctx;
4002
4003 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
4004 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
4005
4006 #ifdef CONFIG_TESTING_OPTIONS
4007 if (wpa_s->ignore_auth_resp) {
4008 wpa_printf(MSG_INFO, "RX EAPOL - ignore_auth_resp active!");
4009 return;
4010 }
4011 #endif /* CONFIG_TESTING_OPTIONS */
4012
4013 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
4014 (wpa_s->last_eapol_matches_bssid &&
4015 #ifdef CONFIG_AP
4016 !wpa_s->ap_iface &&
4017 #endif /* CONFIG_AP */
4018 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
4019 /*
4020 * There is possible race condition between receiving the
4021 * association event and the EAPOL frame since they are coming
4022 * through different paths from the driver. In order to avoid
4023 * issues in trying to process the EAPOL frame before receiving
4024 * association information, lets queue it for processing until
4025 * the association event is received. This may also be needed in
4026 * driver-based roaming case, so also use src_addr != BSSID as a
4027 * trigger if we have previously confirmed that the
4028 * Authenticator uses BSSID as the src_addr (which is not the
4029 * case with wired IEEE 802.1X).
4030 */
4031 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
4032 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
4033 wpa_supplicant_state_txt(wpa_s->wpa_state),
4034 MAC2STR(wpa_s->bssid));
4035 wpabuf_free(wpa_s->pending_eapol_rx);
4036 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
4037 if (wpa_s->pending_eapol_rx) {
4038 os_get_reltime(&wpa_s->pending_eapol_rx_time);
4039 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
4040 ETH_ALEN);
4041 }
4042 return;
4043 }
4044
4045 wpa_s->last_eapol_matches_bssid =
4046 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
4047
4048 #ifdef CONFIG_AP
4049 if (wpa_s->ap_iface) {
4050 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
4051 return;
4052 }
4053 #endif /* CONFIG_AP */
4054
4055 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
4056 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
4057 "no key management is configured");
4058 return;
4059 }
4060
4061 if (wpa_s->eapol_received == 0 &&
4062 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
4063 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
4064 wpa_s->wpa_state != WPA_COMPLETED) &&
4065 (wpa_s->current_ssid == NULL ||
4066 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
4067 /* Timeout for completing IEEE 802.1X and WPA authentication */
4068 int timeout = 10;
4069
4070 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
4071 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
4072 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
4073 /* Use longer timeout for IEEE 802.1X/EAP */
4074 timeout = 70;
4075 }
4076
4077 #ifdef CONFIG_WPS
4078 if (wpa_s->current_ssid && wpa_s->current_bss &&
4079 (wpa_s->current_ssid->key_mgmt & WPA_KEY_MGMT_WPS) &&
4080 eap_is_wps_pin_enrollee(&wpa_s->current_ssid->eap)) {
4081 /*
4082 * Use shorter timeout if going through WPS AP iteration
4083 * for PIN config method with an AP that does not
4084 * advertise Selected Registrar.
4085 */
4086 struct wpabuf *wps_ie;
4087
4088 wps_ie = wpa_bss_get_vendor_ie_multi(
4089 wpa_s->current_bss, WPS_IE_VENDOR_TYPE);
4090 if (wps_ie &&
4091 !wps_is_addr_authorized(wps_ie, wpa_s->own_addr, 1))
4092 timeout = 10;
4093 wpabuf_free(wps_ie);
4094 }
4095 #endif /* CONFIG_WPS */
4096
4097 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
4098 }
4099 wpa_s->eapol_received++;
4100
4101 if (wpa_s->countermeasures) {
4102 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
4103 "EAPOL packet");
4104 return;
4105 }
4106
4107 #ifdef CONFIG_IBSS_RSN
4108 if (wpa_s->current_ssid &&
4109 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
4110 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
4111 return;
4112 }
4113 #endif /* CONFIG_IBSS_RSN */
4114
4115 /* Source address of the incoming EAPOL frame could be compared to the
4116 * current BSSID. However, it is possible that a centralized
4117 * Authenticator could be using another MAC address than the BSSID of
4118 * an AP, so just allow any address to be used for now. The replies are
4119 * still sent to the current BSSID (if available), though. */
4120
4121 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
4122 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
4123 wpa_s->key_mgmt != WPA_KEY_MGMT_OWE &&
4124 wpa_s->key_mgmt != WPA_KEY_MGMT_DPP &&
4125 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
4126 return;
4127 wpa_drv_poll(wpa_s);
4128 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
4129 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
4130 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
4131 /*
4132 * Set portValid = TRUE here since we are going to skip 4-way
4133 * handshake processing which would normally set portValid. We
4134 * need this to allow the EAPOL state machines to be completed
4135 * without going through EAPOL-Key handshake.
4136 */
4137 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
4138 }
4139 }
4140
4141
4142 int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
4143 {
4144 if ((!wpa_s->p2p_mgmt ||
4145 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
4146 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
4147 l2_packet_deinit(wpa_s->l2);
4148 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
4149 wpa_drv_get_mac_addr(wpa_s),
4150 ETH_P_EAPOL,
4151 wpa_supplicant_rx_eapol, wpa_s, 0);
4152 if (wpa_s->l2 == NULL)
4153 return -1;
4154
4155 if (l2_packet_set_packet_filter(wpa_s->l2,
4156 L2_PACKET_FILTER_PKTTYPE))
4157 wpa_dbg(wpa_s, MSG_DEBUG,
4158 "Failed to attach pkt_type filter");
4159 } else {
4160 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
4161 if (addr)
4162 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
4163 }
4164
4165 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
4166 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
4167 return -1;
4168 }
4169
4170 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
4171
4172 return 0;
4173 }
4174
4175
4176 static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
4177 const u8 *buf, size_t len)
4178 {
4179 struct wpa_supplicant *wpa_s = ctx;
4180 const struct l2_ethhdr *eth;
4181
4182 if (len < sizeof(*eth))
4183 return;
4184 eth = (const struct l2_ethhdr *) buf;
4185
4186 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
4187 !(eth->h_dest[0] & 0x01)) {
4188 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
4189 " (bridge - not for this interface - ignore)",
4190 MAC2STR(src_addr), MAC2STR(eth->h_dest));
4191 return;
4192 }
4193
4194 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
4195 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
4196 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
4197 len - sizeof(*eth));
4198 }
4199
4200
4201 /**
4202 * wpa_supplicant_driver_init - Initialize driver interface parameters
4203 * @wpa_s: Pointer to wpa_supplicant data
4204 * Returns: 0 on success, -1 on failure
4205 *
4206 * This function is called to initialize driver interface parameters.
4207 * wpa_drv_init() must have been called before this function to initialize the
4208 * driver interface.
4209 */
4210 int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
4211 {
4212 static int interface_count = 0;
4213
4214 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
4215 return -1;
4216
4217 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
4218 MAC2STR(wpa_s->own_addr));
4219 os_memcpy(wpa_s->perm_addr, wpa_s->own_addr, ETH_ALEN);
4220 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
4221
4222 if (wpa_s->bridge_ifname[0]) {
4223 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
4224 "interface '%s'", wpa_s->bridge_ifname);
4225 wpa_s->l2_br = l2_packet_init_bridge(
4226 wpa_s->bridge_ifname, wpa_s->ifname, wpa_s->own_addr,
4227 ETH_P_EAPOL, wpa_supplicant_rx_eapol_bridge, wpa_s, 1);
4228 if (wpa_s->l2_br == NULL) {
4229 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
4230 "connection for the bridge interface '%s'",
4231 wpa_s->bridge_ifname);
4232 return -1;
4233 }
4234 }
4235
4236 if (wpa_s->conf->ap_scan == 2 &&
4237 os_strcmp(wpa_s->driver->name, "nl80211") == 0) {
4238 wpa_printf(MSG_INFO,
4239 "Note: nl80211 driver interface is not designed to be used with ap_scan=2; this can result in connection failures");
4240 }
4241
4242 wpa_clear_keys(wpa_s, NULL);
4243
4244 /* Make sure that TKIP countermeasures are not left enabled (could
4245 * happen if wpa_supplicant is killed during countermeasures. */
4246 wpa_drv_set_countermeasures(wpa_s, 0);
4247
4248 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
4249 wpa_drv_flush_pmkid(wpa_s);
4250
4251 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
4252 wpa_s->prev_scan_wildcard = 0;
4253
4254 if (wpa_supplicant_enabled_networks(wpa_s)) {
4255 if (wpa_s->wpa_state == WPA_INTERFACE_DISABLED) {
4256 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
4257 interface_count = 0;
4258 }
4259 #ifndef ANDROID
4260 if (!wpa_s->p2p_mgmt &&
4261 wpa_supplicant_delayed_sched_scan(wpa_s,
4262 interface_count % 3,
4263 100000))
4264 wpa_supplicant_req_scan(wpa_s, interface_count % 3,
4265 100000);
4266 #endif /* ANDROID */
4267 interface_count++;
4268 } else
4269 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
4270
4271 return 0;
4272 }
4273
4274
4275 static int wpa_supplicant_daemon(const char *pid_file)
4276 {
4277 wpa_printf(MSG_DEBUG, "Daemonize..");
4278 return os_daemonize(pid_file);
4279 }
4280
4281
4282 static struct wpa_supplicant *
4283 wpa_supplicant_alloc(struct wpa_supplicant *parent)
4284 {
4285 struct wpa_supplicant *wpa_s;
4286
4287 wpa_s = os_zalloc(sizeof(*wpa_s));
4288 if (wpa_s == NULL)
4289 return NULL;
4290 wpa_s->scan_req = INITIAL_SCAN_REQ;
4291 wpa_s->scan_interval = 5;
4292 wpa_s->new_connection = 1;
4293 wpa_s->parent = parent ? parent : wpa_s;
4294 wpa_s->p2pdev = wpa_s->parent;
4295 wpa_s->sched_scanning = 0;
4296
4297 dl_list_init(&wpa_s->bss_tmp_disallowed);
4298 dl_list_init(&wpa_s->fils_hlp_req);
4299
4300 return wpa_s;
4301 }
4302
4303
4304 #ifdef CONFIG_HT_OVERRIDES
4305
4306 static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
4307 struct ieee80211_ht_capabilities *htcaps,
4308 struct ieee80211_ht_capabilities *htcaps_mask,
4309 const char *ht_mcs)
4310 {
4311 /* parse ht_mcs into hex array */
4312 int i;
4313 const char *tmp = ht_mcs;
4314 char *end = NULL;
4315
4316 /* If ht_mcs is null, do not set anything */
4317 if (!ht_mcs)
4318 return 0;
4319
4320 /* This is what we are setting in the kernel */
4321 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
4322
4323 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
4324
4325 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
4326 long v;
4327
4328 errno = 0;
4329 v = strtol(tmp, &end, 16);
4330
4331 if (errno == 0) {
4332 wpa_msg(wpa_s, MSG_DEBUG,
4333 "htcap value[%i]: %ld end: %p tmp: %p",
4334 i, v, end, tmp);
4335 if (end == tmp)
4336 break;
4337
4338 htcaps->supported_mcs_set[i] = v;
4339 tmp = end;
4340 } else {
4341 wpa_msg(wpa_s, MSG_ERROR,
4342 "Failed to parse ht-mcs: %s, error: %s\n",
4343 ht_mcs, strerror(errno));
4344 return -1;
4345 }
4346 }
4347
4348 /*
4349 * If we were able to parse any values, then set mask for the MCS set.
4350 */
4351 if (i) {
4352 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
4353 IEEE80211_HT_MCS_MASK_LEN - 1);
4354 /* skip the 3 reserved bits */
4355 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
4356 0x1f;
4357 }
4358
4359 return 0;
4360 }
4361
4362
4363 static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
4364 struct ieee80211_ht_capabilities *htcaps,
4365 struct ieee80211_ht_capabilities *htcaps_mask,
4366 int disabled)
4367 {
4368 le16 msk;
4369
4370 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
4371
4372 if (disabled == -1)
4373 return 0;
4374
4375 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
4376 htcaps_mask->ht_capabilities_info |= msk;
4377 if (disabled)
4378 htcaps->ht_capabilities_info &= msk;
4379 else
4380 htcaps->ht_capabilities_info |= msk;
4381
4382 return 0;
4383 }
4384
4385
4386 static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
4387 struct ieee80211_ht_capabilities *htcaps,
4388 struct ieee80211_ht_capabilities *htcaps_mask,
4389 int factor)
4390 {
4391 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
4392
4393 if (factor == -1)
4394 return 0;
4395
4396 if (factor < 0 || factor > 3) {
4397 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
4398 "Must be 0-3 or -1", factor);
4399 return -EINVAL;
4400 }
4401
4402 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
4403 htcaps->a_mpdu_params &= ~0x3;
4404 htcaps->a_mpdu_params |= factor & 0x3;
4405
4406 return 0;
4407 }
4408
4409
4410 static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
4411 struct ieee80211_ht_capabilities *htcaps,
4412 struct ieee80211_ht_capabilities *htcaps_mask,
4413 int density)
4414 {
4415 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
4416
4417 if (density == -1)
4418 return 0;
4419
4420 if (density < 0 || density > 7) {
4421 wpa_msg(wpa_s, MSG_ERROR,
4422 "ampdu_density: %d out of range. Must be 0-7 or -1.",
4423 density);
4424 return -EINVAL;
4425 }
4426
4427 htcaps_mask->a_mpdu_params |= 0x1C;
4428 htcaps->a_mpdu_params &= ~(0x1C);
4429 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
4430
4431 return 0;
4432 }
4433
4434
4435 static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
4436 struct ieee80211_ht_capabilities *htcaps,
4437 struct ieee80211_ht_capabilities *htcaps_mask,
4438 int disabled)
4439 {
4440 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
4441
4442 set_disable_ht40(htcaps, disabled);
4443 set_disable_ht40(htcaps_mask, 0);
4444
4445 return 0;
4446 }
4447
4448
4449 static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
4450 struct ieee80211_ht_capabilities *htcaps,
4451 struct ieee80211_ht_capabilities *htcaps_mask,
4452 int disabled)
4453 {
4454 /* Masking these out disables SGI */
4455 le16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
4456 HT_CAP_INFO_SHORT_GI40MHZ);
4457
4458 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
4459
4460 if (disabled)
4461 htcaps->ht_capabilities_info &= ~msk;
4462 else
4463 htcaps->ht_capabilities_info |= msk;
4464
4465 htcaps_mask->ht_capabilities_info |= msk;
4466
4467 return 0;
4468 }
4469
4470
4471 static int wpa_set_disable_ldpc(struct wpa_supplicant *wpa_s,
4472 struct ieee80211_ht_capabilities *htcaps,
4473 struct ieee80211_ht_capabilities *htcaps_mask,
4474 int disabled)
4475 {
4476 /* Masking these out disables LDPC */
4477 le16 msk = host_to_le16(HT_CAP_INFO_LDPC_CODING_CAP);
4478
4479 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ldpc: %d", disabled);
4480
4481 if (disabled)
4482 htcaps->ht_capabilities_info &= ~msk;
4483 else
4484 htcaps->ht_capabilities_info |= msk;
4485
4486 htcaps_mask->ht_capabilities_info |= msk;
4487
4488 return 0;
4489 }
4490
4491
4492 void wpa_supplicant_apply_ht_overrides(
4493 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
4494 struct wpa_driver_associate_params *params)
4495 {
4496 struct ieee80211_ht_capabilities *htcaps;
4497 struct ieee80211_ht_capabilities *htcaps_mask;
4498
4499 if (!ssid)
4500 return;
4501
4502 params->disable_ht = ssid->disable_ht;
4503 if (!params->htcaps || !params->htcaps_mask)
4504 return;
4505
4506 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
4507 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
4508 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
4509 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
4510 ssid->disable_max_amsdu);
4511 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
4512 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
4513 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
4514 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
4515 wpa_set_disable_ldpc(wpa_s, htcaps, htcaps_mask, ssid->disable_ldpc);
4516
4517 if (ssid->ht40_intolerant) {
4518 le16 bit = host_to_le16(HT_CAP_INFO_40MHZ_INTOLERANT);
4519 htcaps->ht_capabilities_info |= bit;
4520 htcaps_mask->ht_capabilities_info |= bit;
4521 }
4522 }
4523
4524 #endif /* CONFIG_HT_OVERRIDES */
4525
4526
4527 #ifdef CONFIG_VHT_OVERRIDES
4528 void wpa_supplicant_apply_vht_overrides(
4529 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
4530 struct wpa_driver_associate_params *params)
4531 {
4532 struct ieee80211_vht_capabilities *vhtcaps;
4533 struct ieee80211_vht_capabilities *vhtcaps_mask;
4534
4535 if (!ssid)
4536 return;
4537
4538 params->disable_vht = ssid->disable_vht;
4539
4540 vhtcaps = (void *) params->vhtcaps;
4541 vhtcaps_mask = (void *) params->vhtcaps_mask;
4542
4543 if (!vhtcaps || !vhtcaps_mask)
4544 return;
4545
4546 vhtcaps->vht_capabilities_info = host_to_le32(ssid->vht_capa);
4547 vhtcaps_mask->vht_capabilities_info = host_to_le32(ssid->vht_capa_mask);
4548
4549 #ifdef CONFIG_HT_OVERRIDES
4550 /* if max ampdu is <= 3, we have to make the HT cap the same */
4551 if (ssid->vht_capa_mask & VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) {
4552 int max_ampdu;
4553
4554 max_ampdu = (ssid->vht_capa &
4555 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) >>
4556 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX_SHIFT;
4557
4558 max_ampdu = max_ampdu < 3 ? max_ampdu : 3;
4559 wpa_set_ampdu_factor(wpa_s,
4560 (void *) params->htcaps,
4561 (void *) params->htcaps_mask,
4562 max_ampdu);
4563 }
4564 #endif /* CONFIG_HT_OVERRIDES */
4565
4566 #define OVERRIDE_MCS(i) \
4567 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
4568 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
4569 host_to_le16(3 << 2 * (i - 1)); \
4570 vhtcaps->vht_supported_mcs_set.tx_map |= \
4571 host_to_le16(ssid->vht_tx_mcs_nss_ ##i << \
4572 2 * (i - 1)); \
4573 } \
4574 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
4575 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
4576 host_to_le16(3 << 2 * (i - 1)); \
4577 vhtcaps->vht_supported_mcs_set.rx_map |= \
4578 host_to_le16(ssid->vht_rx_mcs_nss_ ##i << \
4579 2 * (i - 1)); \
4580 }
4581
4582 OVERRIDE_MCS(1);
4583 OVERRIDE_MCS(2);
4584 OVERRIDE_MCS(3);
4585 OVERRIDE_MCS(4);
4586 OVERRIDE_MCS(5);
4587 OVERRIDE_MCS(6);
4588 OVERRIDE_MCS(7);
4589 OVERRIDE_MCS(8);
4590 }
4591 #endif /* CONFIG_VHT_OVERRIDES */
4592
4593
4594 static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
4595 {
4596 #ifdef PCSC_FUNCS
4597 size_t len;
4598
4599 if (!wpa_s->conf->pcsc_reader)
4600 return 0;
4601
4602 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
4603 if (!wpa_s->scard)
4604 return 1;
4605
4606 if (wpa_s->conf->pcsc_pin &&
4607 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
4608 scard_deinit(wpa_s->scard);
4609 wpa_s->scard = NULL;
4610 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
4611 return -1;
4612 }
4613
4614 len = sizeof(wpa_s->imsi) - 1;
4615 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
4616 scard_deinit(wpa_s->scard);
4617 wpa_s->scard = NULL;
4618 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
4619 return -1;
4620 }
4621 wpa_s->imsi[len] = '\0';
4622
4623 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
4624
4625 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
4626 wpa_s->imsi, wpa_s->mnc_len);
4627
4628 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
4629 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
4630 #endif /* PCSC_FUNCS */
4631
4632 return 0;
4633 }
4634
4635
4636 int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
4637 {
4638 char *val, *pos;
4639
4640 ext_password_deinit(wpa_s->ext_pw);
4641 wpa_s->ext_pw = NULL;
4642 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
4643
4644 if (!wpa_s->conf->ext_password_backend)
4645 return 0;
4646
4647 val = os_strdup(wpa_s->conf->ext_password_backend);
4648 if (val == NULL)
4649 return -1;
4650 pos = os_strchr(val, ':');
4651 if (pos)
4652 *pos++ = '\0';
4653
4654 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
4655
4656 wpa_s->ext_pw = ext_password_init(val, pos);
4657 os_free(val);
4658 if (wpa_s->ext_pw == NULL) {
4659 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
4660 return -1;
4661 }
4662 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
4663
4664 return 0;
4665 }
4666
4667
4668 #ifdef CONFIG_FST
4669
4670 static const u8 * wpas_fst_get_bssid_cb(void *ctx)
4671 {
4672 struct wpa_supplicant *wpa_s = ctx;
4673
4674 return (is_zero_ether_addr(wpa_s->bssid) ||
4675 wpa_s->wpa_state != WPA_COMPLETED) ? NULL : wpa_s->bssid;
4676 }
4677
4678
4679 static void wpas_fst_get_channel_info_cb(void *ctx,
4680 enum hostapd_hw_mode *hw_mode,
4681 u8 *channel)
4682 {
4683 struct wpa_supplicant *wpa_s = ctx;
4684
4685 if (wpa_s->current_bss) {
4686 *hw_mode = ieee80211_freq_to_chan(wpa_s->current_bss->freq,
4687 channel);
4688 } else if (wpa_s->hw.num_modes) {
4689 *hw_mode = wpa_s->hw.modes[0].mode;
4690 } else {
4691 WPA_ASSERT(0);
4692 *hw_mode = 0;
4693 }
4694 }
4695
4696
4697 static int wpas_fst_get_hw_modes(void *ctx, struct hostapd_hw_modes **modes)
4698 {
4699 struct wpa_supplicant *wpa_s = ctx;
4700
4701 *modes = wpa_s->hw.modes;
4702 return wpa_s->hw.num_modes;
4703 }
4704
4705
4706 static void wpas_fst_set_ies_cb(void *ctx, const struct wpabuf *fst_ies)
4707 {
4708 struct wpa_supplicant *wpa_s = ctx;
4709
4710 wpa_hexdump_buf(MSG_DEBUG, "FST: Set IEs", fst_ies);
4711 wpa_s->fst_ies = fst_ies;
4712 }
4713
4714
4715 static int wpas_fst_send_action_cb(void *ctx, const u8 *da, struct wpabuf *data)
4716 {
4717 struct wpa_supplicant *wpa_s = ctx;
4718
4719 if (os_memcmp(wpa_s->bssid, da, ETH_ALEN) != 0) {
4720 wpa_printf(MSG_INFO, "FST:%s:bssid=" MACSTR " != da=" MACSTR,
4721 __func__, MAC2STR(wpa_s->bssid), MAC2STR(da));
4722 return -1;
4723 }
4724 return wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
4725 wpa_s->own_addr, wpa_s->bssid,
4726 wpabuf_head(data), wpabuf_len(data),
4727 0);
4728 }
4729
4730
4731 static const struct wpabuf * wpas_fst_get_mb_ie_cb(void *ctx, const u8 *addr)
4732 {
4733 struct wpa_supplicant *wpa_s = ctx;
4734
4735 WPA_ASSERT(os_memcmp(wpa_s->bssid, addr, ETH_ALEN) == 0);
4736 return wpa_s->received_mb_ies;
4737 }
4738
4739
4740 static void wpas_fst_update_mb_ie_cb(void *ctx, const u8 *addr,
4741 const u8 *buf, size_t size)
4742 {
4743 struct wpa_supplicant *wpa_s = ctx;
4744 struct mb_ies_info info;
4745
4746 WPA_ASSERT(os_memcmp(wpa_s->bssid, addr, ETH_ALEN) == 0);
4747
4748 if (!mb_ies_info_by_ies(&info, buf, size)) {
4749 wpabuf_free(wpa_s->received_mb_ies);
4750 wpa_s->received_mb_ies = mb_ies_by_info(&info);
4751 }
4752 }
4753
4754
4755 static const u8 * wpas_fst_get_peer_first(void *ctx,
4756 struct fst_get_peer_ctx **get_ctx,
4757 Boolean mb_only)
4758 {
4759 struct wpa_supplicant *wpa_s = ctx;
4760
4761 *get_ctx = NULL;
4762 if (!is_zero_ether_addr(wpa_s->bssid))
4763 return (wpa_s->received_mb_ies || !mb_only) ?
4764 wpa_s->bssid : NULL;
4765 return NULL;
4766 }
4767
4768
4769 static const u8 * wpas_fst_get_peer_next(void *ctx,
4770 struct fst_get_peer_ctx **get_ctx,
4771 Boolean mb_only)
4772 {
4773 return NULL;
4774 }
4775
4776 void fst_wpa_supplicant_fill_iface_obj(struct wpa_supplicant *wpa_s,
4777 struct fst_wpa_obj *iface_obj)
4778 {
4779 iface_obj->ctx = wpa_s;
4780 iface_obj->get_bssid = wpas_fst_get_bssid_cb;
4781 iface_obj->get_channel_info = wpas_fst_get_channel_info_cb;
4782 iface_obj->get_hw_modes = wpas_fst_get_hw_modes;
4783 iface_obj->set_ies = wpas_fst_set_ies_cb;
4784 iface_obj->send_action = wpas_fst_send_action_cb;
4785 iface_obj->get_mb_ie = wpas_fst_get_mb_ie_cb;
4786 iface_obj->update_mb_ie = wpas_fst_update_mb_ie_cb;
4787 iface_obj->get_peer_first = wpas_fst_get_peer_first;
4788 iface_obj->get_peer_next = wpas_fst_get_peer_next;
4789 }
4790 #endif /* CONFIG_FST */
4791
4792 static int wpas_set_wowlan_triggers(struct wpa_supplicant *wpa_s,
4793 const struct wpa_driver_capa *capa)
4794 {
4795 struct wowlan_triggers *triggers;
4796 int ret = 0;
4797
4798 if (!wpa_s->conf->wowlan_triggers)
4799 return 0;
4800
4801 triggers = wpa_get_wowlan_triggers(wpa_s->conf->wowlan_triggers, capa);
4802 if (triggers) {
4803 ret = wpa_drv_wowlan(wpa_s, triggers);
4804 os_free(triggers);
4805 }
4806 return ret;
4807 }
4808
4809
4810 enum wpa_radio_work_band wpas_freq_to_band(int freq)
4811 {
4812 if (freq < 3000)
4813 return BAND_2_4_GHZ;
4814 if (freq > 50000)
4815 return BAND_60_GHZ;
4816 return BAND_5_GHZ;
4817 }
4818
4819
4820 unsigned int wpas_get_bands(struct wpa_supplicant *wpa_s, const int *freqs)
4821 {
4822 int i;
4823 unsigned int band = 0;
4824
4825 if (freqs) {
4826 /* freqs are specified for the radio work */
4827 for (i = 0; freqs[i]; i++)
4828 band |= wpas_freq_to_band(freqs[i]);
4829 } else {
4830 /*
4831 * freqs are not specified, implies all
4832 * the supported freqs by HW
4833 */
4834 for (i = 0; i < wpa_s->hw.num_modes; i++) {
4835 if (wpa_s->hw.modes[i].num_channels != 0) {
4836 if (wpa_s->hw.modes[i].mode ==
4837 HOSTAPD_MODE_IEEE80211B ||
4838 wpa_s->hw.modes[i].mode ==
4839 HOSTAPD_MODE_IEEE80211G)
4840 band |= BAND_2_4_GHZ;
4841 else if (wpa_s->hw.modes[i].mode ==
4842 HOSTAPD_MODE_IEEE80211A)
4843 band |= BAND_5_GHZ;
4844 else if (wpa_s->hw.modes[i].mode ==
4845 HOSTAPD_MODE_IEEE80211AD)
4846 band |= BAND_60_GHZ;
4847 else if (wpa_s->hw.modes[i].mode ==
4848 HOSTAPD_MODE_IEEE80211ANY)
4849 band = BAND_2_4_GHZ | BAND_5_GHZ |
4850 BAND_60_GHZ;
4851 }
4852 }
4853 }
4854
4855 return band;
4856 }
4857
4858
4859 static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
4860 const char *rn)
4861 {
4862 struct wpa_supplicant *iface = wpa_s->global->ifaces;
4863 struct wpa_radio *radio;
4864
4865 while (rn && iface) {
4866 radio = iface->radio;
4867 if (radio && os_strcmp(rn, radio->name) == 0) {
4868 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
4869 wpa_s->ifname, rn);
4870 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
4871 return radio;
4872 }
4873
4874 iface = iface->next;
4875 }
4876
4877 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
4878 wpa_s->ifname, rn ? rn : "N/A");
4879 radio = os_zalloc(sizeof(*radio));
4880 if (radio == NULL)
4881 return NULL;
4882
4883 if (rn)
4884 os_strlcpy(radio->name, rn, sizeof(radio->name));
4885 dl_list_init(&radio->ifaces);
4886 dl_list_init(&radio->work);
4887 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
4888
4889 return radio;
4890 }
4891
4892
4893 static void radio_work_free(struct wpa_radio_work *work)
4894 {
4895 if (work->wpa_s->scan_work == work) {
4896 /* This should not really happen. */
4897 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as scan_work",
4898 work->type, work, work->started);
4899 work->wpa_s->scan_work = NULL;
4900 }
4901
4902 #ifdef CONFIG_P2P
4903 if (work->wpa_s->p2p_scan_work == work) {
4904 /* This should not really happen. */
4905 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as p2p_scan_work",
4906 work->type, work, work->started);
4907 work->wpa_s->p2p_scan_work = NULL;
4908 }
4909 #endif /* CONFIG_P2P */
4910
4911 if (work->started) {
4912 work->wpa_s->radio->num_active_works--;
4913 wpa_dbg(work->wpa_s, MSG_DEBUG,
4914 "radio_work_free('%s'@%p): num_active_works --> %u",
4915 work->type, work,
4916 work->wpa_s->radio->num_active_works);
4917 }
4918
4919 dl_list_del(&work->list);
4920 os_free(work);
4921 }
4922
4923
4924 static int radio_work_is_connect(struct wpa_radio_work *work)
4925 {
4926 return os_strcmp(work->type, "sme-connect") == 0 ||
4927 os_strcmp(work->type, "connect") == 0;
4928 }
4929
4930
4931 static int radio_work_is_scan(struct wpa_radio_work *work)
4932 {
4933 return os_strcmp(work->type, "scan") == 0 ||
4934 os_strcmp(work->type, "p2p-scan") == 0;
4935 }
4936
4937
4938 static struct wpa_radio_work * radio_work_get_next_work(struct wpa_radio *radio)
4939 {
4940 struct wpa_radio_work *active_work = NULL;
4941 struct wpa_radio_work *tmp;
4942
4943 /* Get the active work to know the type and band. */
4944 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work, list) {
4945 if (tmp->started) {
4946 active_work = tmp;
4947 break;
4948 }
4949 }
4950
4951 if (!active_work) {
4952 /* No active work, start one */
4953 radio->num_active_works = 0;
4954 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work,
4955 list) {
4956 if (os_strcmp(tmp->type, "scan") == 0 &&
4957 radio->external_scan_running &&
4958 (((struct wpa_driver_scan_params *)
4959 tmp->ctx)->only_new_results ||
4960 tmp->wpa_s->clear_driver_scan_cache))
4961 continue;
4962 return tmp;
4963 }
4964 return NULL;
4965 }
4966
4967 if (radio_work_is_connect(active_work)) {
4968 /*
4969 * If the active work is either connect or sme-connect,
4970 * do not parallelize them with other radio works.
4971 */
4972 wpa_dbg(active_work->wpa_s, MSG_DEBUG,
4973 "Do not parallelize radio work with %s",
4974 active_work->type);
4975 return NULL;
4976 }
4977
4978 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work, list) {
4979 if (tmp->started)
4980 continue;
4981
4982 /*
4983 * If connect or sme-connect are enqueued, parallelize only
4984 * those operations ahead of them in the queue.
4985 */
4986 if (radio_work_is_connect(tmp))
4987 break;
4988
4989 /* Serialize parallel scan and p2p_scan operations on the same
4990 * interface since the driver_nl80211 mechanism for tracking
4991 * scan cookies does not yet have support for this. */
4992 if (active_work->wpa_s == tmp->wpa_s &&
4993 radio_work_is_scan(active_work) &&
4994 radio_work_is_scan(tmp)) {
4995 wpa_dbg(active_work->wpa_s, MSG_DEBUG,
4996 "Do not start work '%s' when another work '%s' is already scheduled",
4997 tmp->type, active_work->type);
4998 continue;
4999 }
5000 /*
5001 * Check that the radio works are distinct and
5002 * on different bands.
5003 */
5004 if (os_strcmp(active_work->type, tmp->type) != 0 &&
5005 (active_work->bands != tmp->bands)) {
5006 /*
5007 * If a scan has to be scheduled through nl80211 scan
5008 * interface and if an external scan is already running,
5009 * do not schedule the scan since it is likely to get
5010 * rejected by kernel.
5011 */
5012 if (os_strcmp(tmp->type, "scan") == 0 &&
5013 radio->external_scan_running &&
5014 (((struct wpa_driver_scan_params *)
5015 tmp->ctx)->only_new_results ||
5016 tmp->wpa_s->clear_driver_scan_cache))
5017 continue;
5018
5019 wpa_dbg(active_work->wpa_s, MSG_DEBUG,
5020 "active_work:%s new_work:%s",
5021 active_work->type, tmp->type);
5022 return tmp;
5023 }
5024 }
5025
5026 /* Did not find a radio work to schedule in parallel. */
5027 return NULL;
5028 }
5029
5030
5031 static void radio_start_next_work(void *eloop_ctx, void *timeout_ctx)
5032 {
5033 struct wpa_radio *radio = eloop_ctx;
5034 struct wpa_radio_work *work;
5035 struct os_reltime now, diff;
5036 struct wpa_supplicant *wpa_s;
5037
5038 work = dl_list_first(&radio->work, struct wpa_radio_work, list);
5039 if (work == NULL) {
5040 radio->num_active_works = 0;
5041 return;
5042 }
5043
5044 wpa_s = dl_list_first(&radio->ifaces, struct wpa_supplicant,
5045 radio_list);
5046
5047 if (!(wpa_s &&
5048 wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS)) {
5049 if (work->started)
5050 return; /* already started and still in progress */
5051
5052 if (wpa_s && wpa_s->radio->external_scan_running) {
5053 wpa_printf(MSG_DEBUG, "Delay radio work start until externally triggered scan completes");
5054 return;
5055 }
5056 } else {
5057 work = NULL;
5058 if (radio->num_active_works < MAX_ACTIVE_WORKS) {
5059 /* get the work to schedule next */
5060 work = radio_work_get_next_work(radio);
5061 }
5062 if (!work)
5063 return;
5064 }
5065
5066 wpa_s = work->wpa_s;
5067 os_get_reltime(&now);
5068 os_reltime_sub(&now, &work->time, &diff);
5069 wpa_dbg(wpa_s, MSG_DEBUG,
5070 "Starting radio work '%s'@%p after %ld.%06ld second wait",
5071 work->type, work, diff.sec, diff.usec);
5072 work->started = 1;
5073 work->time = now;
5074 radio->num_active_works++;
5075
5076 work->cb(work, 0);
5077
5078 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS) &&
5079 radio->num_active_works < MAX_ACTIVE_WORKS)
5080 radio_work_check_next(wpa_s);
5081 }
5082
5083
5084 /*
5085 * This function removes both started and pending radio works running on
5086 * the provided interface's radio.
5087 * Prior to the removal of the radio work, its callback (cb) is called with
5088 * deinit set to be 1. Each work's callback is responsible for clearing its
5089 * internal data and restoring to a correct state.
5090 * @wpa_s: wpa_supplicant data
5091 * @type: type of works to be removed
5092 * @remove_all: 1 to remove all the works on this radio, 0 to remove only
5093 * this interface's works.
5094 */
5095 void radio_remove_works(struct wpa_supplicant *wpa_s,
5096 const char *type, int remove_all)
5097 {
5098 struct wpa_radio_work *work, *tmp;
5099 struct wpa_radio *radio = wpa_s->radio;
5100
5101 dl_list_for_each_safe(work, tmp, &radio->work, struct wpa_radio_work,
5102 list) {
5103 if (type && os_strcmp(type, work->type) != 0)
5104 continue;
5105
5106 /* skip other ifaces' works */
5107 if (!remove_all && work->wpa_s != wpa_s)
5108 continue;
5109
5110 wpa_dbg(wpa_s, MSG_DEBUG, "Remove radio work '%s'@%p%s",
5111 work->type, work, work->started ? " (started)" : "");
5112 work->cb(work, 1);
5113 radio_work_free(work);
5114 }
5115
5116 /* in case we removed the started work */
5117 radio_work_check_next(wpa_s);
5118 }
5119
5120
5121 void radio_remove_pending_work(struct wpa_supplicant *wpa_s, void *ctx)
5122 {
5123 struct wpa_radio_work *work;
5124 struct wpa_radio *radio = wpa_s->radio;
5125
5126 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
5127 if (work->ctx != ctx)
5128 continue;
5129 wpa_dbg(wpa_s, MSG_DEBUG, "Free pending radio work '%s'@%p%s",
5130 work->type, work, work->started ? " (started)" : "");
5131 radio_work_free(work);
5132 break;
5133 }
5134 }
5135
5136
5137 static void radio_remove_interface(struct wpa_supplicant *wpa_s)
5138 {
5139 struct wpa_radio *radio = wpa_s->radio;
5140
5141 if (!radio)
5142 return;
5143
5144 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
5145 wpa_s->ifname, radio->name);
5146 dl_list_del(&wpa_s->radio_list);
5147 radio_remove_works(wpa_s, NULL, 0);
5148 wpa_s->radio = NULL;
5149 if (!dl_list_empty(&radio->ifaces))
5150 return; /* Interfaces remain for this radio */
5151
5152 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
5153 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
5154 os_free(radio);
5155 }
5156
5157
5158 void radio_work_check_next(struct wpa_supplicant *wpa_s)
5159 {
5160 struct wpa_radio *radio = wpa_s->radio;
5161
5162 if (dl_list_empty(&radio->work))
5163 return;
5164 if (wpa_s->ext_work_in_progress) {
5165 wpa_printf(MSG_DEBUG,
5166 "External radio work in progress - delay start of pending item");
5167 return;
5168 }
5169 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
5170 eloop_register_timeout(0, 0, radio_start_next_work, radio, NULL);
5171 }
5172
5173
5174 /**
5175 * radio_add_work - Add a radio work item
5176 * @wpa_s: Pointer to wpa_supplicant data
5177 * @freq: Frequency of the offchannel operation in MHz or 0
5178 * @type: Unique identifier for each type of work
5179 * @next: Force as the next work to be executed
5180 * @cb: Callback function for indicating when radio is available
5181 * @ctx: Context pointer for the work (work->ctx in cb())
5182 * Returns: 0 on success, -1 on failure
5183 *
5184 * This function is used to request time for an operation that requires
5185 * exclusive radio control. Once the radio is available, the registered callback
5186 * function will be called. radio_work_done() must be called once the exclusive
5187 * radio operation has been completed, so that the radio is freed for other
5188 * operations. The special case of deinit=1 is used to free the context data
5189 * during interface removal. That does not allow the callback function to start
5190 * the radio operation, i.e., it must free any resources allocated for the radio
5191 * work and return.
5192 *
5193 * The @freq parameter can be used to indicate a single channel on which the
5194 * offchannel operation will occur. This may allow multiple radio work
5195 * operations to be performed in parallel if they apply for the same channel.
5196 * Setting this to 0 indicates that the work item may use multiple channels or
5197 * requires exclusive control of the radio.
5198 */
5199 int radio_add_work(struct wpa_supplicant *wpa_s, unsigned int freq,
5200 const char *type, int next,
5201 void (*cb)(struct wpa_radio_work *work, int deinit),
5202 void *ctx)
5203 {
5204 struct wpa_radio *radio = wpa_s->radio;
5205 struct wpa_radio_work *work;
5206 int was_empty;
5207
5208 work = os_zalloc(sizeof(*work));
5209 if (work == NULL)
5210 return -1;
5211 wpa_dbg(wpa_s, MSG_DEBUG, "Add radio work '%s'@%p", type, work);
5212 os_get_reltime(&work->time);
5213 work->freq = freq;
5214 work->type = type;
5215 work->wpa_s = wpa_s;
5216 work->cb = cb;
5217 work->ctx = ctx;
5218
5219 if (freq)
5220 work->bands = wpas_freq_to_band(freq);
5221 else if (os_strcmp(type, "scan") == 0 ||
5222 os_strcmp(type, "p2p-scan") == 0)
5223 work->bands = wpas_get_bands(wpa_s,
5224 ((struct wpa_driver_scan_params *)
5225 ctx)->freqs);
5226 else
5227 work->bands = wpas_get_bands(wpa_s, NULL);
5228
5229 was_empty = dl_list_empty(&wpa_s->radio->work);
5230 if (next)
5231 dl_list_add(&wpa_s->radio->work, &work->list);
5232 else
5233 dl_list_add_tail(&wpa_s->radio->work, &work->list);
5234 if (was_empty) {
5235 wpa_dbg(wpa_s, MSG_DEBUG, "First radio work item in the queue - schedule start immediately");
5236 radio_work_check_next(wpa_s);
5237 } else if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS)
5238 && radio->num_active_works < MAX_ACTIVE_WORKS) {
5239 wpa_dbg(wpa_s, MSG_DEBUG,
5240 "Try to schedule a radio work (num_active_works=%u)",
5241 radio->num_active_works);
5242 radio_work_check_next(wpa_s);
5243 }
5244
5245 return 0;
5246 }
5247
5248
5249 /**
5250 * radio_work_done - Indicate that a radio work item has been completed
5251 * @work: Completed work
5252 *
5253 * This function is called once the callback function registered with
5254 * radio_add_work() has completed its work.
5255 */
5256 void radio_work_done(struct wpa_radio_work *work)
5257 {
5258 struct wpa_supplicant *wpa_s = work->wpa_s;
5259 struct os_reltime now, diff;
5260 unsigned int started = work->started;
5261
5262 os_get_reltime(&now);
5263 os_reltime_sub(&now, &work->time, &diff);
5264 wpa_dbg(wpa_s, MSG_DEBUG, "Radio work '%s'@%p %s in %ld.%06ld seconds",
5265 work->type, work, started ? "done" : "canceled",
5266 diff.sec, diff.usec);
5267 radio_work_free(work);
5268 if (started)
5269 radio_work_check_next(wpa_s);
5270 }
5271
5272
5273 struct wpa_radio_work *
5274 radio_work_pending(struct wpa_supplicant *wpa_s, const char *type)
5275 {
5276 struct wpa_radio_work *work;
5277 struct wpa_radio *radio = wpa_s->radio;
5278
5279 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
5280 if (work->wpa_s == wpa_s && os_strcmp(work->type, type) == 0)
5281 return work;
5282 }
5283
5284 return NULL;
5285 }
5286
5287
5288 static int wpas_init_driver(struct wpa_supplicant *wpa_s,
5289 const struct wpa_interface *iface)
5290 {
5291 const char *ifname, *driver, *rn;
5292
5293 driver = iface->driver;
5294 next_driver:
5295 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
5296 return -1;
5297
5298 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
5299 if (wpa_s->drv_priv == NULL) {
5300 const char *pos;
5301 pos = driver ? os_strchr(driver, ',') : NULL;
5302 if (pos) {
5303 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
5304 "driver interface - try next driver wrapper");
5305 driver = pos + 1;
5306 goto next_driver;
5307 }
5308 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
5309 "interface");
5310 return -1;
5311 }
5312 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
5313 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
5314 "driver_param '%s'", wpa_s->conf->driver_param);
5315 return -1;
5316 }
5317
5318 ifname = wpa_drv_get_ifname(wpa_s);
5319 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
5320 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
5321 "interface name with '%s'", ifname);
5322 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
5323 }
5324
5325 rn = wpa_driver_get_radio_name(wpa_s);
5326 if (rn && rn[0] == '\0')
5327 rn = NULL;
5328
5329 wpa_s->radio = radio_add_interface(wpa_s, rn);
5330 if (wpa_s->radio == NULL)
5331 return -1;
5332
5333 return 0;
5334 }
5335
5336
5337 #ifdef CONFIG_GAS_SERVER
5338
5339 static void wpas_gas_server_tx_status(struct wpa_supplicant *wpa_s,
5340 unsigned int freq, const u8 *dst,
5341 const u8 *src, const u8 *bssid,
5342 const u8 *data, size_t data_len,
5343 enum offchannel_send_action_result result)
5344 {
5345 wpa_printf(MSG_DEBUG, "GAS: TX status: freq=%u dst=" MACSTR
5346 " result=%s",
5347 freq, MAC2STR(dst),
5348 result == OFFCHANNEL_SEND_ACTION_SUCCESS ? "SUCCESS" :
5349 (result == OFFCHANNEL_SEND_ACTION_NO_ACK ? "no-ACK" :
5350 "FAILED"));
5351 gas_server_tx_status(wpa_s->gas_server, dst, data, data_len,
5352 result == OFFCHANNEL_SEND_ACTION_SUCCESS);
5353 }
5354
5355
5356 static void wpas_gas_server_tx(void *ctx, int freq, const u8 *da,
5357 struct wpabuf *buf, unsigned int wait_time)
5358 {
5359 struct wpa_supplicant *wpa_s = ctx;
5360 const u8 broadcast[ETH_ALEN] = { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff };
5361
5362 if (wait_time > wpa_s->max_remain_on_chan)
5363 wait_time = wpa_s->max_remain_on_chan;
5364
5365 offchannel_send_action(wpa_s, freq, da, wpa_s->own_addr, broadcast,
5366 wpabuf_head(buf), wpabuf_len(buf),
5367 wait_time, wpas_gas_server_tx_status, 0);
5368 }
5369
5370 #endif /* CONFIG_GAS_SERVER */
5371
5372 static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
5373 const struct wpa_interface *iface)
5374 {
5375 struct wpa_driver_capa capa;
5376 int capa_res;
5377 u8 dfs_domain;
5378
5379 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
5380 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
5381 iface->confname ? iface->confname : "N/A",
5382 iface->driver ? iface->driver : "default",
5383 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
5384 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
5385
5386 if (iface->confname) {
5387 #ifdef CONFIG_BACKEND_FILE
5388 wpa_s->confname = os_rel2abs_path(iface->confname);
5389 if (wpa_s->confname == NULL) {
5390 wpa_printf(MSG_ERROR, "Failed to get absolute path "
5391 "for configuration file '%s'.",
5392 iface->confname);
5393 return -1;
5394 }
5395 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
5396 iface->confname, wpa_s->confname);
5397 #else /* CONFIG_BACKEND_FILE */
5398 wpa_s->confname = os_strdup(iface->confname);
5399 #endif /* CONFIG_BACKEND_FILE */
5400 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
5401 if (wpa_s->conf == NULL) {
5402 wpa_printf(MSG_ERROR, "Failed to read or parse "
5403 "configuration '%s'.", wpa_s->confname);
5404 return -1;
5405 }
5406 wpa_s->confanother = os_rel2abs_path(iface->confanother);
5407 if (wpa_s->confanother &&
5408 !wpa_config_read(wpa_s->confanother, wpa_s->conf)) {
5409 wpa_printf(MSG_ERROR,
5410 "Failed to read or parse configuration '%s'.",
5411 wpa_s->confanother);
5412 return -1;
5413 }
5414
5415 /*
5416 * Override ctrl_interface and driver_param if set on command
5417 * line.
5418 */
5419 if (iface->ctrl_interface) {
5420 os_free(wpa_s->conf->ctrl_interface);
5421 wpa_s->conf->ctrl_interface =
5422 os_strdup(iface->ctrl_interface);
5423 }
5424
5425 if (iface->driver_param) {
5426 os_free(wpa_s->conf->driver_param);
5427 wpa_s->conf->driver_param =
5428 os_strdup(iface->driver_param);
5429 }
5430
5431 if (iface->p2p_mgmt && !iface->ctrl_interface) {
5432 os_free(wpa_s->conf->ctrl_interface);
5433 wpa_s->conf->ctrl_interface = NULL;
5434 }
5435 } else
5436 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
5437 iface->driver_param);
5438
5439 if (wpa_s->conf == NULL) {
5440 wpa_printf(MSG_ERROR, "\nNo configuration found.");
5441 return -1;
5442 }
5443
5444 if (iface->ifname == NULL) {
5445 wpa_printf(MSG_ERROR, "\nInterface name is required.");
5446 return -1;
5447 }
5448 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
5449 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
5450 iface->ifname);
5451 return -1;
5452 }
5453 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
5454
5455 if (iface->bridge_ifname) {
5456 if (os_strlen(iface->bridge_ifname) >=
5457 sizeof(wpa_s->bridge_ifname)) {
5458 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
5459 "name '%s'.", iface->bridge_ifname);
5460 return -1;
5461 }
5462 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
5463 sizeof(wpa_s->bridge_ifname));
5464 }
5465
5466 /* RSNA Supplicant Key Management - INITIALIZE */
5467 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
5468 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
5469
5470 /* Initialize driver interface and register driver event handler before
5471 * L2 receive handler so that association events are processed before
5472 * EAPOL-Key packets if both become available for the same select()
5473 * call. */
5474 if (wpas_init_driver(wpa_s, iface) < 0)
5475 return -1;
5476
5477 if (wpa_supplicant_init_wpa(wpa_s) < 0)
5478 return -1;
5479
5480 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
5481 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
5482 NULL);
5483 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
5484
5485 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
5486 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
5487 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
5488 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
5489 "dot11RSNAConfigPMKLifetime");
5490 return -1;
5491 }
5492
5493 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
5494 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
5495 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
5496 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
5497 "dot11RSNAConfigPMKReauthThreshold");
5498 return -1;
5499 }
5500
5501 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
5502 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
5503 wpa_s->conf->dot11RSNAConfigSATimeout)) {
5504 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
5505 "dot11RSNAConfigSATimeout");
5506 return -1;
5507 }
5508
5509 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
5510 &wpa_s->hw.num_modes,
5511 &wpa_s->hw.flags,
5512 &dfs_domain);
5513 if (wpa_s->hw.modes) {
5514 u16 i;
5515
5516 for (i = 0; i < wpa_s->hw.num_modes; i++) {
5517 if (wpa_s->hw.modes[i].vht_capab) {
5518 wpa_s->hw_capab = CAPAB_VHT;
5519 break;
5520 }
5521
5522 if (wpa_s->hw.modes[i].ht_capab &
5523 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET)
5524 wpa_s->hw_capab = CAPAB_HT40;
5525 else if (wpa_s->hw.modes[i].ht_capab &&
5526 wpa_s->hw_capab == CAPAB_NO_HT_VHT)
5527 wpa_s->hw_capab = CAPAB_HT;
5528 }
5529 }
5530
5531 capa_res = wpa_drv_get_capa(wpa_s, &capa);
5532 if (capa_res == 0) {
5533 wpa_s->drv_capa_known = 1;
5534 wpa_s->drv_flags = capa.flags;
5535 wpa_s->drv_enc = capa.enc;
5536 wpa_s->drv_smps_modes = capa.smps_modes;
5537 wpa_s->drv_rrm_flags = capa.rrm_flags;
5538 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
5539 wpa_s->max_scan_ssids = capa.max_scan_ssids;
5540 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
5541 wpa_s->max_sched_scan_plans = capa.max_sched_scan_plans;
5542 wpa_s->max_sched_scan_plan_interval =
5543 capa.max_sched_scan_plan_interval;
5544 wpa_s->max_sched_scan_plan_iterations =
5545 capa.max_sched_scan_plan_iterations;
5546 wpa_s->sched_scan_supported = capa.sched_scan_supported;
5547 wpa_s->max_match_sets = capa.max_match_sets;
5548 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
5549 wpa_s->max_stations = capa.max_stations;
5550 wpa_s->extended_capa = capa.extended_capa;
5551 wpa_s->extended_capa_mask = capa.extended_capa_mask;
5552 wpa_s->extended_capa_len = capa.extended_capa_len;
5553 wpa_s->num_multichan_concurrent =
5554 capa.num_multichan_concurrent;
5555 wpa_s->wmm_ac_supported = capa.wmm_ac_supported;
5556
5557 if (capa.mac_addr_rand_scan_supported)
5558 wpa_s->mac_addr_rand_supported |= MAC_ADDR_RAND_SCAN;
5559 if (wpa_s->sched_scan_supported &&
5560 capa.mac_addr_rand_sched_scan_supported)
5561 wpa_s->mac_addr_rand_supported |=
5562 (MAC_ADDR_RAND_SCHED_SCAN | MAC_ADDR_RAND_PNO);
5563 }
5564 if (wpa_s->max_remain_on_chan == 0)
5565 wpa_s->max_remain_on_chan = 1000;
5566
5567 /*
5568 * Only take p2p_mgmt parameters when P2P Device is supported.
5569 * Doing it here as it determines whether l2_packet_init() will be done
5570 * during wpa_supplicant_driver_init().
5571 */
5572 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
5573 wpa_s->p2p_mgmt = iface->p2p_mgmt;
5574
5575 if (wpa_s->num_multichan_concurrent == 0)
5576 wpa_s->num_multichan_concurrent = 1;
5577
5578 if (wpa_supplicant_driver_init(wpa_s) < 0)
5579 return -1;
5580
5581 #ifdef CONFIG_TDLS
5582 if (!iface->p2p_mgmt && wpa_tdls_init(wpa_s->wpa))
5583 return -1;
5584 #endif /* CONFIG_TDLS */
5585
5586 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
5587 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
5588 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
5589 return -1;
5590 }
5591
5592 #ifdef CONFIG_FST
5593 if (wpa_s->conf->fst_group_id) {
5594 struct fst_iface_cfg cfg;
5595 struct fst_wpa_obj iface_obj;
5596
5597 fst_wpa_supplicant_fill_iface_obj(wpa_s, &iface_obj);
5598 os_strlcpy(cfg.group_id, wpa_s->conf->fst_group_id,
5599 sizeof(cfg.group_id));
5600 cfg.priority = wpa_s->conf->fst_priority;
5601 cfg.llt = wpa_s->conf->fst_llt;
5602
5603 wpa_s->fst = fst_attach(wpa_s->ifname, wpa_s->own_addr,
5604 &iface_obj, &cfg);
5605 if (!wpa_s->fst) {
5606 wpa_msg(wpa_s, MSG_ERROR,
5607 "FST: Cannot attach iface %s to group %s",
5608 wpa_s->ifname, cfg.group_id);
5609 return -1;
5610 }
5611 }
5612 #endif /* CONFIG_FST */
5613
5614 if (wpas_wps_init(wpa_s))
5615 return -1;
5616
5617 #ifdef CONFIG_GAS_SERVER
5618 wpa_s->gas_server = gas_server_init(wpa_s, wpas_gas_server_tx);
5619 if (!wpa_s->gas_server) {
5620 wpa_printf(MSG_ERROR, "Failed to initialize GAS server");
5621 return -1;
5622 }
5623 #endif /* CONFIG_GAS_SERVER */
5624
5625 #ifdef CONFIG_DPP
5626 if (wpas_dpp_init(wpa_s) < 0)
5627 return -1;
5628 #endif /* CONFIG_DPP */
5629
5630 if (wpa_supplicant_init_eapol(wpa_s) < 0)
5631 return -1;
5632 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
5633
5634 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
5635 if (wpa_s->ctrl_iface == NULL) {
5636 wpa_printf(MSG_ERROR,
5637 "Failed to initialize control interface '%s'.\n"
5638 "You may have another wpa_supplicant process "
5639 "already running or the file was\n"
5640 "left by an unclean termination of wpa_supplicant "
5641 "in which case you will need\n"
5642 "to manually remove this file before starting "
5643 "wpa_supplicant again.\n",
5644 wpa_s->conf->ctrl_interface);
5645 return -1;
5646 }
5647
5648 wpa_s->gas = gas_query_init(wpa_s);
5649 if (wpa_s->gas == NULL) {
5650 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
5651 return -1;
5652 }
5653
5654 if ((!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) ||
5655 wpa_s->p2p_mgmt) &&
5656 wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
5657 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
5658 return -1;
5659 }
5660
5661 if (wpa_bss_init(wpa_s) < 0)
5662 return -1;
5663
5664 #ifdef CONFIG_PMKSA_CACHE_EXTERNAL
5665 #ifdef CONFIG_MESH
5666 dl_list_init(&wpa_s->mesh_external_pmksa_cache);
5667 #endif /* CONFIG_MESH */
5668 #endif /* CONFIG_PMKSA_CACHE_EXTERNAL */
5669
5670 /*
5671 * Set Wake-on-WLAN triggers, if configured.
5672 * Note: We don't restore/remove the triggers on shutdown (it doesn't
5673 * have effect anyway when the interface is down).
5674 */
5675 if (capa_res == 0 && wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
5676 return -1;
5677
5678 #ifdef CONFIG_EAP_PROXY
5679 {
5680 size_t len;
5681 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, -1,
5682 wpa_s->imsi, &len);
5683 if (wpa_s->mnc_len > 0) {
5684 wpa_s->imsi[len] = '\0';
5685 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
5686 wpa_s->imsi, wpa_s->mnc_len);
5687 } else {
5688 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
5689 }
5690 }
5691 #endif /* CONFIG_EAP_PROXY */
5692
5693 if (pcsc_reader_init(wpa_s) < 0)
5694 return -1;
5695
5696 if (wpas_init_ext_pw(wpa_s) < 0)
5697 return -1;
5698
5699 wpas_rrm_reset(wpa_s);
5700
5701 wpas_sched_scan_plans_set(wpa_s, wpa_s->conf->sched_scan_plans);
5702
5703 #ifdef CONFIG_HS20
5704 hs20_init(wpa_s);
5705 #endif /* CONFIG_HS20 */
5706 #ifdef CONFIG_MBO
5707 if (wpa_s->conf->oce) {
5708 if ((wpa_s->conf->oce & OCE_STA) &&
5709 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_OCE_STA))
5710 wpa_s->enable_oce = OCE_STA;
5711 if ((wpa_s->conf->oce & OCE_STA_CFON) &&
5712 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_OCE_STA_CFON)) {
5713 /* TODO: Need to add STA-CFON support */
5714 wpa_printf(MSG_ERROR,
5715 "OCE STA-CFON feature is not yet supported");
5716 }
5717 }
5718 wpas_mbo_update_non_pref_chan(wpa_s, wpa_s->conf->non_pref_chan);
5719 #endif /* CONFIG_MBO */
5720
5721 wpa_supplicant_set_default_scan_ies(wpa_s);
5722
5723 return 0;
5724 }
5725
5726
5727 static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
5728 int notify, int terminate)
5729 {
5730 struct wpa_global *global = wpa_s->global;
5731 struct wpa_supplicant *iface, *prev;
5732
5733 if (wpa_s == wpa_s->parent)
5734 wpas_p2p_group_remove(wpa_s, "*");
5735
5736 iface = global->ifaces;
5737 while (iface) {
5738 if (iface->p2pdev == wpa_s)
5739 iface->p2pdev = iface->parent;
5740 if (iface == wpa_s || iface->parent != wpa_s) {
5741 iface = iface->next;
5742 continue;
5743 }
5744 wpa_printf(MSG_DEBUG,
5745 "Remove remaining child interface %s from parent %s",
5746 iface->ifname, wpa_s->ifname);
5747 prev = iface;
5748 iface = iface->next;
5749 wpa_supplicant_remove_iface(global, prev, terminate);
5750 }
5751
5752 wpa_s->disconnected = 1;
5753 if (wpa_s->drv_priv) {
5754 wpa_supplicant_deauthenticate(wpa_s,
5755 WLAN_REASON_DEAUTH_LEAVING);
5756
5757 wpa_drv_set_countermeasures(wpa_s, 0);
5758 wpa_clear_keys(wpa_s, NULL);
5759 }
5760
5761 wpa_supplicant_cleanup(wpa_s);
5762 wpas_p2p_deinit_iface(wpa_s);
5763
5764 wpas_ctrl_radio_work_flush(wpa_s);
5765 radio_remove_interface(wpa_s);
5766
5767 #ifdef CONFIG_FST
5768 if (wpa_s->fst) {
5769 fst_detach(wpa_s->fst);
5770 wpa_s->fst = NULL;
5771 }
5772 if (wpa_s->received_mb_ies) {
5773 wpabuf_free(wpa_s->received_mb_ies);
5774 wpa_s->received_mb_ies = NULL;
5775 }
5776 #endif /* CONFIG_FST */
5777
5778 if (wpa_s->drv_priv)
5779 wpa_drv_deinit(wpa_s);
5780
5781 if (notify)
5782 wpas_notify_iface_removed(wpa_s);
5783
5784 if (terminate)
5785 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
5786
5787 if (wpa_s->ctrl_iface) {
5788 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
5789 wpa_s->ctrl_iface = NULL;
5790 }
5791
5792 #ifdef CONFIG_MESH
5793 if (wpa_s->ifmsh) {
5794 wpa_supplicant_mesh_iface_deinit(wpa_s, wpa_s->ifmsh);
5795 wpa_s->ifmsh = NULL;
5796 }
5797 #endif /* CONFIG_MESH */
5798
5799 if (wpa_s->conf != NULL) {
5800 wpa_config_free(wpa_s->conf);
5801 wpa_s->conf = NULL;
5802 }
5803
5804 os_free(wpa_s->ssids_from_scan_req);
5805
5806 os_free(wpa_s);
5807 }
5808
5809
5810 #ifdef CONFIG_MATCH_IFACE
5811
5812 /**
5813 * wpa_supplicant_match_iface - Match an interface description to a name
5814 * @global: Pointer to global data from wpa_supplicant_init()
5815 * @ifname: Name of the interface to match
5816 * Returns: Pointer to the created interface description or %NULL on failure
5817 */
5818 struct wpa_interface * wpa_supplicant_match_iface(struct wpa_global *global,
5819 const char *ifname)
5820 {
5821 int i;
5822 struct wpa_interface *iface, *miface;
5823
5824 for (i = 0; i < global->params.match_iface_count; i++) {
5825 miface = &global->params.match_ifaces[i];
5826 if (!miface->ifname ||
5827 fnmatch(miface->ifname, ifname, 0) == 0) {
5828 iface = os_zalloc(sizeof(*iface));
5829 if (!iface)
5830 return NULL;
5831 *iface = *miface;
5832 iface->ifname = ifname;
5833 return iface;
5834 }
5835 }
5836
5837 return NULL;
5838 }
5839
5840
5841 /**
5842 * wpa_supplicant_match_existing - Match existing interfaces
5843 * @global: Pointer to global data from wpa_supplicant_init()
5844 * Returns: 0 on success, -1 on failure
5845 */
5846 static int wpa_supplicant_match_existing(struct wpa_global *global)
5847 {
5848 struct if_nameindex *ifi, *ifp;
5849 struct wpa_supplicant *wpa_s;
5850 struct wpa_interface *iface;
5851
5852 ifp = if_nameindex();
5853 if (!ifp) {
5854 wpa_printf(MSG_ERROR, "if_nameindex: %s", strerror(errno));
5855 return -1;
5856 }
5857
5858 for (ifi = ifp; ifi->if_name; ifi++) {
5859 wpa_s = wpa_supplicant_get_iface(global, ifi->if_name);
5860 if (wpa_s)
5861 continue;
5862 iface = wpa_supplicant_match_iface(global, ifi->if_name);
5863 if (iface) {
5864 wpa_s = wpa_supplicant_add_iface(global, iface, NULL);
5865 os_free(iface);
5866 if (wpa_s)
5867 wpa_s->matched = 1;
5868 }
5869 }
5870
5871 if_freenameindex(ifp);
5872 return 0;
5873 }
5874
5875 #endif /* CONFIG_MATCH_IFACE */
5876
5877
5878 /**
5879 * wpa_supplicant_add_iface - Add a new network interface
5880 * @global: Pointer to global data from wpa_supplicant_init()
5881 * @iface: Interface configuration options
5882 * @parent: Parent interface or %NULL to assign new interface as parent
5883 * Returns: Pointer to the created interface or %NULL on failure
5884 *
5885 * This function is used to add new network interfaces for %wpa_supplicant.
5886 * This can be called before wpa_supplicant_run() to add interfaces before the
5887 * main event loop has been started. In addition, new interfaces can be added
5888 * dynamically while %wpa_supplicant is already running. This could happen,
5889 * e.g., when a hotplug network adapter is inserted.
5890 */
5891 struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
5892 struct wpa_interface *iface,
5893 struct wpa_supplicant *parent)
5894 {
5895 struct wpa_supplicant *wpa_s;
5896 struct wpa_interface t_iface;
5897 struct wpa_ssid *ssid;
5898
5899 if (global == NULL || iface == NULL)
5900 return NULL;
5901
5902 wpa_s = wpa_supplicant_alloc(parent);
5903 if (wpa_s == NULL)
5904 return NULL;
5905
5906 wpa_s->global = global;
5907
5908 t_iface = *iface;
5909 if (global->params.override_driver) {
5910 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
5911 "('%s' -> '%s')",
5912 iface->driver, global->params.override_driver);
5913 t_iface.driver = global->params.override_driver;
5914 }
5915 if (global->params.override_ctrl_interface) {
5916 wpa_printf(MSG_DEBUG, "Override interface parameter: "
5917 "ctrl_interface ('%s' -> '%s')",
5918 iface->ctrl_interface,
5919 global->params.override_ctrl_interface);
5920 t_iface.ctrl_interface =
5921 global->params.override_ctrl_interface;
5922 }
5923 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
5924 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
5925 iface->ifname);
5926 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
5927 return NULL;
5928 }
5929
5930 if (iface->p2p_mgmt == 0) {
5931 /* Notify the control interfaces about new iface */
5932 if (wpas_notify_iface_added(wpa_s)) {
5933 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
5934 return NULL;
5935 }
5936
5937 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
5938 wpas_notify_network_added(wpa_s, ssid);
5939 }
5940
5941 wpa_s->next = global->ifaces;
5942 global->ifaces = wpa_s;
5943
5944 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
5945 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
5946
5947 #ifdef CONFIG_P2P
5948 if (wpa_s->global->p2p == NULL &&
5949 !wpa_s->global->p2p_disabled && !wpa_s->conf->p2p_disabled &&
5950 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) &&
5951 wpas_p2p_add_p2pdev_interface(
5952 wpa_s, wpa_s->global->params.conf_p2p_dev) < 0) {
5953 wpa_printf(MSG_INFO,
5954 "P2P: Failed to enable P2P Device interface");
5955 /* Try to continue without. P2P will be disabled. */
5956 }
5957 #endif /* CONFIG_P2P */
5958
5959 return wpa_s;
5960 }
5961
5962
5963 /**
5964 * wpa_supplicant_remove_iface - Remove a network interface
5965 * @global: Pointer to global data from wpa_supplicant_init()
5966 * @wpa_s: Pointer to the network interface to be removed
5967 * Returns: 0 if interface was removed, -1 if interface was not found
5968 *
5969 * This function can be used to dynamically remove network interfaces from
5970 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
5971 * addition, this function is used to remove all remaining interfaces when
5972 * %wpa_supplicant is terminated.
5973 */
5974 int wpa_supplicant_remove_iface(struct wpa_global *global,
5975 struct wpa_supplicant *wpa_s,
5976 int terminate)
5977 {
5978 struct wpa_supplicant *prev;
5979 #ifdef CONFIG_MESH
5980 unsigned int mesh_if_created = wpa_s->mesh_if_created;
5981 char *ifname = NULL;
5982 struct wpa_supplicant *parent = wpa_s->parent;
5983 #endif /* CONFIG_MESH */
5984
5985 /* Remove interface from the global list of interfaces */
5986 prev = global->ifaces;
5987 if (prev == wpa_s) {
5988 global->ifaces = wpa_s->next;
5989 } else {
5990 while (prev && prev->next != wpa_s)
5991 prev = prev->next;
5992 if (prev == NULL)
5993 return -1;
5994 prev->next = wpa_s->next;
5995 }
5996
5997 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
5998
5999 #ifdef CONFIG_MESH
6000 if (mesh_if_created) {
6001 ifname = os_strdup(wpa_s->ifname);
6002 if (ifname == NULL) {
6003 wpa_dbg(wpa_s, MSG_ERROR,
6004 "mesh: Failed to malloc ifname");
6005 return -1;
6006 }
6007 }
6008 #endif /* CONFIG_MESH */
6009
6010 if (global->p2p_group_formation == wpa_s)
6011 global->p2p_group_formation = NULL;
6012 if (global->p2p_invite_group == wpa_s)
6013 global->p2p_invite_group = NULL;
6014 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
6015
6016 #ifdef CONFIG_MESH
6017 if (mesh_if_created) {
6018 wpa_drv_if_remove(parent, WPA_IF_MESH, ifname);
6019 os_free(ifname);
6020 }
6021 #endif /* CONFIG_MESH */
6022
6023 return 0;
6024 }
6025
6026
6027 /**
6028 * wpa_supplicant_get_eap_mode - Get the current EAP mode
6029 * @wpa_s: Pointer to the network interface
6030 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
6031 */
6032 const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
6033 {
6034 const char *eapol_method;
6035
6036 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
6037 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
6038 return "NO-EAP";
6039 }
6040
6041 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
6042 if (eapol_method == NULL)
6043 return "UNKNOWN-EAP";
6044
6045 return eapol_method;
6046 }
6047
6048
6049 /**
6050 * wpa_supplicant_get_iface - Get a new network interface
6051 * @global: Pointer to global data from wpa_supplicant_init()
6052 * @ifname: Interface name
6053 * Returns: Pointer to the interface or %NULL if not found
6054 */
6055 struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
6056 const char *ifname)
6057 {
6058 struct wpa_supplicant *wpa_s;
6059
6060 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
6061 if (os_strcmp(wpa_s->ifname, ifname) == 0)
6062 return wpa_s;
6063 }
6064 return NULL;
6065 }
6066
6067
6068 #ifndef CONFIG_NO_WPA_MSG
6069 static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
6070 {
6071 struct wpa_supplicant *wpa_s = ctx;
6072 if (wpa_s == NULL)
6073 return NULL;
6074 return wpa_s->ifname;
6075 }
6076 #endif /* CONFIG_NO_WPA_MSG */
6077
6078
6079 #ifndef WPA_SUPPLICANT_CLEANUP_INTERVAL
6080 #define WPA_SUPPLICANT_CLEANUP_INTERVAL 10
6081 #endif /* WPA_SUPPLICANT_CLEANUP_INTERVAL */
6082
6083 /* Periodic cleanup tasks */
6084 static void wpas_periodic(void *eloop_ctx, void *timeout_ctx)
6085 {
6086 struct wpa_global *global = eloop_ctx;
6087 struct wpa_supplicant *wpa_s;
6088
6089 eloop_register_timeout(WPA_SUPPLICANT_CLEANUP_INTERVAL, 0,
6090 wpas_periodic, global, NULL);
6091
6092 #ifdef CONFIG_P2P
6093 if (global->p2p)
6094 p2p_expire_peers(global->p2p);
6095 #endif /* CONFIG_P2P */
6096
6097 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
6098 wpa_bss_flush_by_age(wpa_s, wpa_s->conf->bss_expiration_age);
6099 #ifdef CONFIG_AP
6100 ap_periodic(wpa_s);
6101 #endif /* CONFIG_AP */
6102 }
6103 }
6104
6105
6106 /**
6107 * wpa_supplicant_init - Initialize %wpa_supplicant
6108 * @params: Parameters for %wpa_supplicant
6109 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
6110 *
6111 * This function is used to initialize %wpa_supplicant. After successful
6112 * initialization, the returned data pointer can be used to add and remove
6113 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
6114 */
6115 struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
6116 {
6117 struct wpa_global *global;
6118 int ret, i;
6119
6120 if (params == NULL)
6121 return NULL;
6122
6123 #ifdef CONFIG_DRIVER_NDIS
6124 {
6125 void driver_ndis_init_ops(void);
6126 driver_ndis_init_ops();
6127 }
6128 #endif /* CONFIG_DRIVER_NDIS */
6129
6130 #ifndef CONFIG_NO_WPA_MSG
6131 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
6132 #endif /* CONFIG_NO_WPA_MSG */
6133
6134 if (params->wpa_debug_file_path)
6135 wpa_debug_open_file(params->wpa_debug_file_path);
6136 else
6137 wpa_debug_setup_stdout();
6138 if (params->wpa_debug_syslog)
6139 wpa_debug_open_syslog();
6140 if (params->wpa_debug_tracing) {
6141 ret = wpa_debug_open_linux_tracing();
6142 if (ret) {
6143 wpa_printf(MSG_ERROR,
6144 "Failed to enable trace logging");
6145 return NULL;
6146 }
6147 }
6148
6149 ret = eap_register_methods();
6150 if (ret) {
6151 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
6152 if (ret == -2)
6153 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
6154 "the same EAP type.");
6155 return NULL;
6156 }
6157
6158 global = os_zalloc(sizeof(*global));
6159 if (global == NULL)
6160 return NULL;
6161 dl_list_init(&global->p2p_srv_bonjour);
6162 dl_list_init(&global->p2p_srv_upnp);
6163 global->params.daemonize = params->daemonize;
6164 global->params.wait_for_monitor = params->wait_for_monitor;
6165 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
6166 if (params->pid_file)
6167 global->params.pid_file = os_strdup(params->pid_file);
6168 if (params->ctrl_interface)
6169 global->params.ctrl_interface =
6170 os_strdup(params->ctrl_interface);
6171 if (params->ctrl_interface_group)
6172 global->params.ctrl_interface_group =
6173 os_strdup(params->ctrl_interface_group);
6174 if (params->override_driver)
6175 global->params.override_driver =
6176 os_strdup(params->override_driver);
6177 if (params->override_ctrl_interface)
6178 global->params.override_ctrl_interface =
6179 os_strdup(params->override_ctrl_interface);
6180 #ifdef CONFIG_MATCH_IFACE
6181 global->params.match_iface_count = params->match_iface_count;
6182 if (params->match_iface_count) {
6183 global->params.match_ifaces =
6184 os_calloc(params->match_iface_count,
6185 sizeof(struct wpa_interface));
6186 os_memcpy(global->params.match_ifaces,
6187 params->match_ifaces,
6188 params->match_iface_count *
6189 sizeof(struct wpa_interface));
6190 }
6191 #endif /* CONFIG_MATCH_IFACE */
6192 #ifdef CONFIG_P2P
6193 if (params->conf_p2p_dev)
6194 global->params.conf_p2p_dev =
6195 os_strdup(params->conf_p2p_dev);
6196 #endif /* CONFIG_P2P */
6197 wpa_debug_level = global->params.wpa_debug_level =
6198 params->wpa_debug_level;
6199 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
6200 params->wpa_debug_show_keys;
6201 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
6202 params->wpa_debug_timestamp;
6203
6204 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
6205
6206 if (eloop_init()) {
6207 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
6208 wpa_supplicant_deinit(global);
6209 return NULL;
6210 }
6211
6212 random_init(params->entropy_file);
6213
6214 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
6215 if (global->ctrl_iface == NULL) {
6216 wpa_supplicant_deinit(global);
6217 return NULL;
6218 }
6219
6220 if (wpas_notify_supplicant_initialized(global)) {
6221 wpa_supplicant_deinit(global);
6222 return NULL;
6223 }
6224
6225 for (i = 0; wpa_drivers[i]; i++)
6226 global->drv_count++;
6227 if (global->drv_count == 0) {
6228 wpa_printf(MSG_ERROR, "No drivers enabled");
6229 wpa_supplicant_deinit(global);
6230 return NULL;
6231 }
6232 global->drv_priv = os_calloc(global->drv_count, sizeof(void *));
6233 if (global->drv_priv == NULL) {
6234 wpa_supplicant_deinit(global);
6235 return NULL;
6236 }
6237
6238 #ifdef CONFIG_WIFI_DISPLAY
6239 if (wifi_display_init(global) < 0) {
6240 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
6241 wpa_supplicant_deinit(global);
6242 return NULL;
6243 }
6244 #endif /* CONFIG_WIFI_DISPLAY */
6245
6246 eloop_register_timeout(WPA_SUPPLICANT_CLEANUP_INTERVAL, 0,
6247 wpas_periodic, global, NULL);
6248
6249 return global;
6250 }
6251
6252
6253 /**
6254 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
6255 * @global: Pointer to global data from wpa_supplicant_init()
6256 * Returns: 0 after successful event loop run, -1 on failure
6257 *
6258 * This function starts the main event loop and continues running as long as
6259 * there are any remaining events. In most cases, this function is running as
6260 * long as the %wpa_supplicant process in still in use.
6261 */
6262 int wpa_supplicant_run(struct wpa_global *global)
6263 {
6264 struct wpa_supplicant *wpa_s;
6265
6266 if (global->params.daemonize &&
6267 (wpa_supplicant_daemon(global->params.pid_file) ||
6268 eloop_sock_requeue()))
6269 return -1;
6270
6271 #ifdef CONFIG_MATCH_IFACE
6272 if (wpa_supplicant_match_existing(global))
6273 return -1;
6274 #endif
6275
6276 if (global->params.wait_for_monitor) {
6277 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
6278 if (wpa_s->ctrl_iface && !wpa_s->p2p_mgmt)
6279 wpa_supplicant_ctrl_iface_wait(
6280 wpa_s->ctrl_iface);
6281 }
6282
6283 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
6284 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
6285
6286 eloop_run();
6287
6288 return 0;
6289 }
6290
6291
6292 /**
6293 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
6294 * @global: Pointer to global data from wpa_supplicant_init()
6295 *
6296 * This function is called to deinitialize %wpa_supplicant and to free all
6297 * allocated resources. Remaining network interfaces will also be removed.
6298 */
6299 void wpa_supplicant_deinit(struct wpa_global *global)
6300 {
6301 int i;
6302
6303 if (global == NULL)
6304 return;
6305
6306 eloop_cancel_timeout(wpas_periodic, global, NULL);
6307
6308 #ifdef CONFIG_WIFI_DISPLAY
6309 wifi_display_deinit(global);
6310 #endif /* CONFIG_WIFI_DISPLAY */
6311
6312 while (global->ifaces)
6313 wpa_supplicant_remove_iface(global, global->ifaces, 1);
6314
6315 if (global->ctrl_iface)
6316 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
6317
6318 wpas_notify_supplicant_deinitialized(global);
6319
6320 eap_peer_unregister_methods();
6321 #ifdef CONFIG_AP
6322 eap_server_unregister_methods();
6323 #endif /* CONFIG_AP */
6324
6325 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
6326 if (!global->drv_priv[i])
6327 continue;
6328 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
6329 }
6330 os_free(global->drv_priv);
6331
6332 random_deinit();
6333
6334 eloop_destroy();
6335
6336 if (global->params.pid_file) {
6337 os_daemonize_terminate(global->params.pid_file);
6338 os_free(global->params.pid_file);
6339 }
6340 os_free(global->params.ctrl_interface);
6341 os_free(global->params.ctrl_interface_group);
6342 os_free(global->params.override_driver);
6343 os_free(global->params.override_ctrl_interface);
6344 #ifdef CONFIG_MATCH_IFACE
6345 os_free(global->params.match_ifaces);
6346 #endif /* CONFIG_MATCH_IFACE */
6347 #ifdef CONFIG_P2P
6348 os_free(global->params.conf_p2p_dev);
6349 #endif /* CONFIG_P2P */
6350
6351 os_free(global->p2p_disallow_freq.range);
6352 os_free(global->p2p_go_avoid_freq.range);
6353 os_free(global->add_psk);
6354
6355 os_free(global);
6356 wpa_debug_close_syslog();
6357 wpa_debug_close_file();
6358 wpa_debug_close_linux_tracing();
6359 }
6360
6361
6362 void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
6363 {
6364 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
6365 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
6366 char country[3];
6367 country[0] = wpa_s->conf->country[0];
6368 country[1] = wpa_s->conf->country[1];
6369 country[2] = '\0';
6370 if (wpa_drv_set_country(wpa_s, country) < 0) {
6371 wpa_printf(MSG_ERROR, "Failed to set country code "
6372 "'%s'", country);
6373 }
6374 }
6375
6376 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
6377 wpas_init_ext_pw(wpa_s);
6378
6379 if (wpa_s->conf->changed_parameters & CFG_CHANGED_SCHED_SCAN_PLANS)
6380 wpas_sched_scan_plans_set(wpa_s, wpa_s->conf->sched_scan_plans);
6381
6382 if (wpa_s->conf->changed_parameters & CFG_CHANGED_WOWLAN_TRIGGERS) {
6383 struct wpa_driver_capa capa;
6384 int res = wpa_drv_get_capa(wpa_s, &capa);
6385
6386 if (res == 0 && wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
6387 wpa_printf(MSG_ERROR,
6388 "Failed to update wowlan_triggers to '%s'",
6389 wpa_s->conf->wowlan_triggers);
6390 }
6391
6392 #ifdef CONFIG_WPS
6393 wpas_wps_update_config(wpa_s);
6394 #endif /* CONFIG_WPS */
6395 wpas_p2p_update_config(wpa_s);
6396 wpa_s->conf->changed_parameters = 0;
6397 }
6398
6399
6400 void add_freq(int *freqs, int *num_freqs, int freq)
6401 {
6402 int i;
6403
6404 for (i = 0; i < *num_freqs; i++) {
6405 if (freqs[i] == freq)
6406 return;
6407 }
6408
6409 freqs[*num_freqs] = freq;
6410 (*num_freqs)++;
6411 }
6412
6413
6414 static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
6415 {
6416 struct wpa_bss *bss, *cbss;
6417 const int max_freqs = 10;
6418 int *freqs;
6419 int num_freqs = 0;
6420
6421 freqs = os_calloc(max_freqs + 1, sizeof(int));
6422 if (freqs == NULL)
6423 return NULL;
6424
6425 cbss = wpa_s->current_bss;
6426
6427 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
6428 if (bss == cbss)
6429 continue;
6430 if (bss->ssid_len == cbss->ssid_len &&
6431 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
6432 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
6433 add_freq(freqs, &num_freqs, bss->freq);
6434 if (num_freqs == max_freqs)
6435 break;
6436 }
6437 }
6438
6439 if (num_freqs == 0) {
6440 os_free(freqs);
6441 freqs = NULL;
6442 }
6443
6444 return freqs;
6445 }
6446
6447
6448 void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
6449 {
6450 int timeout;
6451 int count;
6452 int *freqs = NULL;
6453
6454 wpas_connect_work_done(wpa_s);
6455
6456 /*
6457 * Remove possible authentication timeout since the connection failed.
6458 */
6459 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
6460
6461 /*
6462 * There is no point in blacklisting the AP if this event is
6463 * generated based on local request to disconnect.
6464 */
6465 if (wpa_s->own_disconnect_req) {
6466 wpa_s->own_disconnect_req = 0;
6467 wpa_dbg(wpa_s, MSG_DEBUG,
6468 "Ignore connection failure due to local request to disconnect");
6469 return;
6470 }
6471 if (wpa_s->disconnected) {
6472 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
6473 "indication since interface has been put into "
6474 "disconnected state");
6475 return;
6476 }
6477
6478 /*
6479 * Add the failed BSSID into the blacklist and speed up next scan
6480 * attempt if there could be other APs that could accept association.
6481 * The current blacklist count indicates how many times we have tried
6482 * connecting to this AP and multiple attempts mean that other APs are
6483 * either not available or has already been tried, so that we can start
6484 * increasing the delay here to avoid constant scanning.
6485 */
6486 count = wpa_blacklist_add(wpa_s, bssid);
6487 if (count == 1 && wpa_s->current_bss) {
6488 /*
6489 * This BSS was not in the blacklist before. If there is
6490 * another BSS available for the same ESS, we should try that
6491 * next. Otherwise, we may as well try this one once more
6492 * before allowing other, likely worse, ESSes to be considered.
6493 */
6494 freqs = get_bss_freqs_in_ess(wpa_s);
6495 if (freqs) {
6496 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
6497 "has been seen; try it next");
6498 wpa_blacklist_add(wpa_s, bssid);
6499 /*
6500 * On the next scan, go through only the known channels
6501 * used in this ESS based on previous scans to speed up
6502 * common load balancing use case.
6503 */
6504 os_free(wpa_s->next_scan_freqs);
6505 wpa_s->next_scan_freqs = freqs;
6506 }
6507 }
6508
6509 /*
6510 * Add previous failure count in case the temporary blacklist was
6511 * cleared due to no other BSSes being available.
6512 */
6513 count += wpa_s->extra_blacklist_count;
6514
6515 if (count > 3 && wpa_s->current_ssid) {
6516 wpa_printf(MSG_DEBUG, "Continuous association failures - "
6517 "consider temporary network disabling");
6518 wpas_auth_failed(wpa_s, "CONN_FAILED");
6519 }
6520
6521 switch (count) {
6522 case 1:
6523 timeout = 100;
6524 break;
6525 case 2:
6526 timeout = 500;
6527 break;
6528 case 3:
6529 timeout = 1000;
6530 break;
6531 case 4:
6532 timeout = 5000;
6533 break;
6534 default:
6535 timeout = 10000;
6536 break;
6537 }
6538
6539 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
6540 "ms", count, timeout);
6541
6542 /*
6543 * TODO: if more than one possible AP is available in scan results,
6544 * could try the other ones before requesting a new scan.
6545 */
6546 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
6547 1000 * (timeout % 1000));
6548 }
6549
6550
6551 #ifdef CONFIG_FILS
6552 void fils_connection_failure(struct wpa_supplicant *wpa_s)
6553 {
6554 struct wpa_ssid *ssid = wpa_s->current_ssid;
6555 const u8 *realm, *username, *rrk;
6556 size_t realm_len, username_len, rrk_len;
6557 u16 next_seq_num;
6558
6559 if (!ssid || !ssid->eap.erp || !wpa_key_mgmt_fils(ssid->key_mgmt) ||
6560 eapol_sm_get_erp_info(wpa_s->eapol, &ssid->eap,
6561 &username, &username_len,
6562 &realm, &realm_len, &next_seq_num,
6563 &rrk, &rrk_len) != 0 ||
6564 !realm)
6565 return;
6566
6567 wpa_hexdump_ascii(MSG_DEBUG,
6568 "FILS: Store last connection failure realm",
6569 realm, realm_len);
6570 os_free(wpa_s->last_con_fail_realm);
6571 wpa_s->last_con_fail_realm = os_malloc(realm_len);
6572 if (wpa_s->last_con_fail_realm) {
6573 wpa_s->last_con_fail_realm_len = realm_len;
6574 os_memcpy(wpa_s->last_con_fail_realm, realm, realm_len);
6575 }
6576 }
6577 #endif /* CONFIG_FILS */
6578
6579
6580 int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
6581 {
6582 return wpa_s->conf->ap_scan == 2 ||
6583 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
6584 }
6585
6586
6587 #if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
6588 int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
6589 struct wpa_ssid *ssid,
6590 const char *field,
6591 const char *value)
6592 {
6593 #ifdef IEEE8021X_EAPOL
6594 struct eap_peer_config *eap = &ssid->eap;
6595
6596 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
6597 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
6598 (const u8 *) value, os_strlen(value));
6599
6600 switch (wpa_supplicant_ctrl_req_from_string(field)) {
6601 case WPA_CTRL_REQ_EAP_IDENTITY:
6602 os_free(eap->identity);
6603 eap->identity = (u8 *) os_strdup(value);
6604 eap->identity_len = os_strlen(value);
6605 eap->pending_req_identity = 0;
6606 if (ssid == wpa_s->current_ssid)
6607 wpa_s->reassociate = 1;
6608 break;
6609 case WPA_CTRL_REQ_EAP_PASSWORD:
6610 bin_clear_free(eap->password, eap->password_len);
6611 eap->password = (u8 *) os_strdup(value);
6612 eap->password_len = os_strlen(value);
6613 eap->pending_req_password = 0;
6614 if (ssid == wpa_s->current_ssid)
6615 wpa_s->reassociate = 1;
6616 break;
6617 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
6618 bin_clear_free(eap->new_password, eap->new_password_len);
6619 eap->new_password = (u8 *) os_strdup(value);
6620 eap->new_password_len = os_strlen(value);
6621 eap->pending_req_new_password = 0;
6622 if (ssid == wpa_s->current_ssid)
6623 wpa_s->reassociate = 1;
6624 break;
6625 case WPA_CTRL_REQ_EAP_PIN:
6626 str_clear_free(eap->pin);
6627 eap->pin = os_strdup(value);
6628 eap->pending_req_pin = 0;
6629 if (ssid == wpa_s->current_ssid)
6630 wpa_s->reassociate = 1;
6631 break;
6632 case WPA_CTRL_REQ_EAP_OTP:
6633 bin_clear_free(eap->otp, eap->otp_len);
6634 eap->otp = (u8 *) os_strdup(value);
6635 eap->otp_len = os_strlen(value);
6636 os_free(eap->pending_req_otp);
6637 eap->pending_req_otp = NULL;
6638 eap->pending_req_otp_len = 0;
6639 break;
6640 case WPA_CTRL_REQ_EAP_PASSPHRASE:
6641 str_clear_free(eap->private_key_passwd);
6642 eap->private_key_passwd = os_strdup(value);
6643 eap->pending_req_passphrase = 0;
6644 if (ssid == wpa_s->current_ssid)
6645 wpa_s->reassociate = 1;
6646 break;
6647 case WPA_CTRL_REQ_SIM:
6648 str_clear_free(eap->external_sim_resp);
6649 eap->external_sim_resp = os_strdup(value);
6650 eap->pending_req_sim = 0;
6651 break;
6652 case WPA_CTRL_REQ_PSK_PASSPHRASE:
6653 if (wpa_config_set(ssid, "psk", value, 0) < 0)
6654 return -1;
6655 ssid->mem_only_psk = 1;
6656 if (ssid->passphrase)
6657 wpa_config_update_psk(ssid);
6658 if (wpa_s->wpa_state == WPA_SCANNING && !wpa_s->scanning)
6659 wpa_supplicant_req_scan(wpa_s, 0, 0);
6660 break;
6661 case WPA_CTRL_REQ_EXT_CERT_CHECK:
6662 if (eap->pending_ext_cert_check != PENDING_CHECK)
6663 return -1;
6664 if (os_strcmp(value, "good") == 0)
6665 eap->pending_ext_cert_check = EXT_CERT_CHECK_GOOD;
6666 else if (os_strcmp(value, "bad") == 0)
6667 eap->pending_ext_cert_check = EXT_CERT_CHECK_BAD;
6668 else
6669 return -1;
6670 break;
6671 default:
6672 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
6673 return -1;
6674 }
6675
6676 return 0;
6677 #else /* IEEE8021X_EAPOL */
6678 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
6679 return -1;
6680 #endif /* IEEE8021X_EAPOL */
6681 }
6682 #endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
6683
6684
6685 int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
6686 {
6687 int i;
6688 unsigned int drv_enc;
6689
6690 if (wpa_s->p2p_mgmt)
6691 return 1; /* no normal network profiles on p2p_mgmt interface */
6692
6693 if (ssid == NULL)
6694 return 1;
6695
6696 if (ssid->disabled)
6697 return 1;
6698
6699 if (wpa_s->drv_capa_known)
6700 drv_enc = wpa_s->drv_enc;
6701 else
6702 drv_enc = (unsigned int) -1;
6703
6704 for (i = 0; i < NUM_WEP_KEYS; i++) {
6705 size_t len = ssid->wep_key_len[i];
6706 if (len == 0)
6707 continue;
6708 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
6709 continue;
6710 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
6711 continue;
6712 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
6713 continue;
6714 return 1; /* invalid WEP key */
6715 }
6716
6717 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
6718 (!ssid->passphrase || ssid->ssid_len != 0) && !ssid->ext_psk &&
6719 !(wpa_key_mgmt_sae(ssid->key_mgmt) && ssid->sae_password) &&
6720 !ssid->mem_only_psk)
6721 return 1;
6722
6723 return 0;
6724 }
6725
6726
6727 int wpas_get_ssid_pmf(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
6728 {
6729 #ifdef CONFIG_IEEE80211W
6730 if (ssid == NULL || ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT) {
6731 if (wpa_s->conf->pmf == MGMT_FRAME_PROTECTION_OPTIONAL &&
6732 !(wpa_s->drv_enc & WPA_DRIVER_CAPA_ENC_BIP)) {
6733 /*
6734 * Driver does not support BIP -- ignore pmf=1 default
6735 * since the connection with PMF would fail and the
6736 * configuration does not require PMF to be enabled.
6737 */
6738 return NO_MGMT_FRAME_PROTECTION;
6739 }
6740
6741 if (ssid &&
6742 (ssid->key_mgmt &
6743 ~(WPA_KEY_MGMT_NONE | WPA_KEY_MGMT_WPS |
6744 WPA_KEY_MGMT_IEEE8021X_NO_WPA)) == 0) {
6745 /*
6746 * Do not use the default PMF value for non-RSN networks
6747 * since PMF is available only with RSN and pmf=2
6748 * configuration would otherwise prevent connections to
6749 * all open networks.
6750 */
6751 return NO_MGMT_FRAME_PROTECTION;
6752 }
6753
6754 return wpa_s->conf->pmf;
6755 }
6756
6757 return ssid->ieee80211w;
6758 #else /* CONFIG_IEEE80211W */
6759 return NO_MGMT_FRAME_PROTECTION;
6760 #endif /* CONFIG_IEEE80211W */
6761 }
6762
6763
6764 int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
6765 {
6766 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
6767 return 1;
6768 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
6769 return 0;
6770 return -1;
6771 }
6772
6773
6774 void wpas_auth_failed(struct wpa_supplicant *wpa_s, char *reason)
6775 {
6776 struct wpa_ssid *ssid = wpa_s->current_ssid;
6777 int dur;
6778 struct os_reltime now;
6779
6780 if (ssid == NULL) {
6781 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
6782 "SSID block");
6783 return;
6784 }
6785
6786 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
6787 return;
6788
6789 ssid->auth_failures++;
6790
6791 #ifdef CONFIG_P2P
6792 if (ssid->p2p_group &&
6793 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
6794 /*
6795 * Skip the wait time since there is a short timeout on the
6796 * connection to a P2P group.
6797 */
6798 return;
6799 }
6800 #endif /* CONFIG_P2P */
6801
6802 if (ssid->auth_failures > 50)
6803 dur = 300;
6804 else if (ssid->auth_failures > 10)
6805 dur = 120;
6806 else if (ssid->auth_failures > 5)
6807 dur = 90;
6808 else if (ssid->auth_failures > 3)
6809 dur = 60;
6810 else if (ssid->auth_failures > 2)
6811 dur = 30;
6812 else if (ssid->auth_failures > 1)
6813 dur = 20;
6814 else
6815 dur = 10;
6816
6817 if (ssid->auth_failures > 1 &&
6818 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt))
6819 dur += os_random() % (ssid->auth_failures * 10);
6820
6821 os_get_reltime(&now);
6822 if (now.sec + dur <= ssid->disabled_until.sec)
6823 return;
6824
6825 ssid->disabled_until.sec = now.sec + dur;
6826
6827 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
6828 "id=%d ssid=\"%s\" auth_failures=%u duration=%d reason=%s",
6829 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
6830 ssid->auth_failures, dur, reason);
6831 }
6832
6833
6834 void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
6835 struct wpa_ssid *ssid, int clear_failures)
6836 {
6837 if (ssid == NULL)
6838 return;
6839
6840 if (ssid->disabled_until.sec) {
6841 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
6842 "id=%d ssid=\"%s\"",
6843 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
6844 }
6845 ssid->disabled_until.sec = 0;
6846 ssid->disabled_until.usec = 0;
6847 if (clear_failures)
6848 ssid->auth_failures = 0;
6849 }
6850
6851
6852 int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
6853 {
6854 size_t i;
6855
6856 if (wpa_s->disallow_aps_bssid == NULL)
6857 return 0;
6858
6859 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
6860 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
6861 bssid, ETH_ALEN) == 0)
6862 return 1;
6863 }
6864
6865 return 0;
6866 }
6867
6868
6869 int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
6870 size_t ssid_len)
6871 {
6872 size_t i;
6873
6874 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
6875 return 0;
6876
6877 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
6878 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
6879 if (ssid_len == s->ssid_len &&
6880 os_memcmp(ssid, s->ssid, ssid_len) == 0)
6881 return 1;
6882 }
6883
6884 return 0;
6885 }
6886
6887
6888 /**
6889 * wpas_request_connection - Request a new connection
6890 * @wpa_s: Pointer to the network interface
6891 *
6892 * This function is used to request a new connection to be found. It will mark
6893 * the interface to allow reassociation and request a new scan to find a
6894 * suitable network to connect to.
6895 */
6896 void wpas_request_connection(struct wpa_supplicant *wpa_s)
6897 {
6898 wpa_s->normal_scans = 0;
6899 wpa_s->scan_req = NORMAL_SCAN_REQ;
6900 wpa_supplicant_reinit_autoscan(wpa_s);
6901 wpa_s->extra_blacklist_count = 0;
6902 wpa_s->disconnected = 0;
6903 wpa_s->reassociate = 1;
6904 wpa_s->last_owe_group = 0;
6905
6906 if (wpa_supplicant_fast_associate(wpa_s) != 1)
6907 wpa_supplicant_req_scan(wpa_s, 0, 0);
6908 else
6909 wpa_s->reattach = 0;
6910 }
6911
6912
6913 /**
6914 * wpas_request_disconnection - Request disconnection
6915 * @wpa_s: Pointer to the network interface
6916 *
6917 * This function is used to request disconnection from the currently connected
6918 * network. This will stop any ongoing scans and initiate deauthentication.
6919 */
6920 void wpas_request_disconnection(struct wpa_supplicant *wpa_s)
6921 {
6922 #ifdef CONFIG_SME
6923 wpa_s->sme.prev_bssid_set = 0;
6924 #endif /* CONFIG_SME */
6925 wpa_s->reassociate = 0;
6926 wpa_s->disconnected = 1;
6927 wpa_supplicant_cancel_sched_scan(wpa_s);
6928 wpa_supplicant_cancel_scan(wpa_s);
6929 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
6930 eloop_cancel_timeout(wpas_network_reenabled, wpa_s, NULL);
6931 }
6932
6933
6934 void dump_freq_data(struct wpa_supplicant *wpa_s, const char *title,
6935 struct wpa_used_freq_data *freqs_data,
6936 unsigned int len)
6937 {
6938 unsigned int i;
6939
6940 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
6941 len, title);
6942 for (i = 0; i < len; i++) {
6943 struct wpa_used_freq_data *cur = &freqs_data[i];
6944 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d, flags=0x%X",
6945 i, cur->freq, cur->flags);
6946 }
6947 }
6948
6949
6950 /*
6951 * Find the operating frequencies of any of the virtual interfaces that
6952 * are using the same radio as the current interface, and in addition, get
6953 * information about the interface types that are using the frequency.
6954 */
6955 int get_shared_radio_freqs_data(struct wpa_supplicant *wpa_s,
6956 struct wpa_used_freq_data *freqs_data,
6957 unsigned int len)
6958 {
6959 struct wpa_supplicant *ifs;
6960 u8 bssid[ETH_ALEN];
6961 int freq;
6962 unsigned int idx = 0, i;
6963
6964 wpa_dbg(wpa_s, MSG_DEBUG,
6965 "Determining shared radio frequencies (max len %u)", len);
6966 os_memset(freqs_data, 0, sizeof(struct wpa_used_freq_data) * len);
6967
6968 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
6969 radio_list) {
6970 if (idx == len)
6971 break;
6972
6973 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
6974 continue;
6975
6976 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
6977 ifs->current_ssid->mode == WPAS_MODE_P2P_GO ||
6978 ifs->current_ssid->mode == WPAS_MODE_MESH)
6979 freq = ifs->current_ssid->frequency;
6980 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
6981 freq = ifs->assoc_freq;
6982 else
6983 continue;
6984
6985 /* Hold only distinct freqs */
6986 for (i = 0; i < idx; i++)
6987 if (freqs_data[i].freq == freq)
6988 break;
6989
6990 if (i == idx)
6991 freqs_data[idx++].freq = freq;
6992
6993 if (ifs->current_ssid->mode == WPAS_MODE_INFRA) {
6994 freqs_data[i].flags |= ifs->current_ssid->p2p_group ?
6995 WPA_FREQ_USED_BY_P2P_CLIENT :
6996 WPA_FREQ_USED_BY_INFRA_STATION;
6997 }
6998 }
6999
7000 dump_freq_data(wpa_s, "completed iteration", freqs_data, idx);
7001 return idx;
7002 }
7003
7004
7005 /*
7006 * Find the operating frequencies of any of the virtual interfaces that
7007 * are using the same radio as the current interface.
7008 */
7009 int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
7010 int *freq_array, unsigned int len)
7011 {
7012 struct wpa_used_freq_data *freqs_data;
7013 int num, i;
7014
7015 os_memset(freq_array, 0, sizeof(int) * len);
7016
7017 freqs_data = os_calloc(len, sizeof(struct wpa_used_freq_data));
7018 if (!freqs_data)
7019 return -1;
7020
7021 num = get_shared_radio_freqs_data(wpa_s, freqs_data, len);
7022 for (i = 0; i < num; i++)
7023 freq_array[i] = freqs_data[i].freq;
7024
7025 os_free(freqs_data);
7026
7027 return num;
7028 }
7029
7030
7031 struct wpa_supplicant *
7032 wpas_vendor_elem(struct wpa_supplicant *wpa_s, enum wpa_vendor_elem_frame frame)
7033 {
7034 switch (frame) {
7035 #ifdef CONFIG_P2P
7036 case VENDOR_ELEM_PROBE_REQ_P2P:
7037 case VENDOR_ELEM_PROBE_RESP_P2P:
7038 case VENDOR_ELEM_PROBE_RESP_P2P_GO:
7039 case VENDOR_ELEM_BEACON_P2P_GO:
7040 case VENDOR_ELEM_P2P_PD_REQ:
7041 case VENDOR_ELEM_P2P_PD_RESP:
7042 case VENDOR_ELEM_P2P_GO_NEG_REQ:
7043 case VENDOR_ELEM_P2P_GO_NEG_RESP:
7044 case VENDOR_ELEM_P2P_GO_NEG_CONF:
7045 case VENDOR_ELEM_P2P_INV_REQ:
7046 case VENDOR_ELEM_P2P_INV_RESP:
7047 case VENDOR_ELEM_P2P_ASSOC_REQ:
7048 case VENDOR_ELEM_P2P_ASSOC_RESP:
7049 return wpa_s->p2pdev;
7050 #endif /* CONFIG_P2P */
7051 default:
7052 return wpa_s;
7053 }
7054 }
7055
7056
7057 void wpas_vendor_elem_update(struct wpa_supplicant *wpa_s)
7058 {
7059 unsigned int i;
7060 char buf[30];
7061
7062 wpa_printf(MSG_DEBUG, "Update vendor elements");
7063
7064 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
7065 if (wpa_s->vendor_elem[i]) {
7066 int res;
7067
7068 res = os_snprintf(buf, sizeof(buf), "frame[%u]", i);
7069 if (!os_snprintf_error(sizeof(buf), res)) {
7070 wpa_hexdump_buf(MSG_DEBUG, buf,
7071 wpa_s->vendor_elem[i]);
7072 }
7073 }
7074 }
7075
7076 #ifdef CONFIG_P2P
7077 if (wpa_s->parent == wpa_s &&
7078 wpa_s->global->p2p &&
7079 !wpa_s->global->p2p_disabled)
7080 p2p_set_vendor_elems(wpa_s->global->p2p, wpa_s->vendor_elem);
7081 #endif /* CONFIG_P2P */
7082 }
7083
7084
7085 int wpas_vendor_elem_remove(struct wpa_supplicant *wpa_s, int frame,
7086 const u8 *elem, size_t len)
7087 {
7088 u8 *ie, *end;
7089
7090 ie = wpabuf_mhead_u8(wpa_s->vendor_elem[frame]);
7091 end = ie + wpabuf_len(wpa_s->vendor_elem[frame]);
7092
7093 for (; ie + 1 < end; ie += 2 + ie[1]) {
7094 if (ie + len > end)
7095 break;
7096 if (os_memcmp(ie, elem, len) != 0)
7097 continue;
7098
7099 if (wpabuf_len(wpa_s->vendor_elem[frame]) == len) {
7100 wpabuf_free(wpa_s->vendor_elem[frame]);
7101 wpa_s->vendor_elem[frame] = NULL;
7102 } else {
7103 os_memmove(ie, ie + len, end - (ie + len));
7104 wpa_s->vendor_elem[frame]->used -= len;
7105 }
7106 wpas_vendor_elem_update(wpa_s);
7107 return 0;
7108 }
7109
7110 return -1;
7111 }
7112
7113
7114 struct hostapd_hw_modes * get_mode(struct hostapd_hw_modes *modes,
7115 u16 num_modes, enum hostapd_hw_mode mode)
7116 {
7117 u16 i;
7118
7119 for (i = 0; i < num_modes; i++) {
7120 if (modes[i].mode == mode)
7121 return &modes[i];
7122 }
7123
7124 return NULL;
7125 }
7126
7127
7128 static struct
7129 wpa_bss_tmp_disallowed * wpas_get_disallowed_bss(struct wpa_supplicant *wpa_s,
7130 const u8 *bssid)
7131 {
7132 struct wpa_bss_tmp_disallowed *bss;
7133
7134 dl_list_for_each(bss, &wpa_s->bss_tmp_disallowed,
7135 struct wpa_bss_tmp_disallowed, list) {
7136 if (os_memcmp(bssid, bss->bssid, ETH_ALEN) == 0)
7137 return bss;
7138 }
7139
7140 return NULL;
7141 }
7142
7143
7144 static int wpa_set_driver_tmp_disallow_list(struct wpa_supplicant *wpa_s)
7145 {
7146 struct wpa_bss_tmp_disallowed *tmp;
7147 unsigned int num_bssid = 0;
7148 u8 *bssids;
7149 int ret;
7150
7151 bssids = os_malloc(dl_list_len(&wpa_s->bss_tmp_disallowed) * ETH_ALEN);
7152 if (!bssids)
7153 return -1;
7154 dl_list_for_each(tmp, &wpa_s->bss_tmp_disallowed,
7155 struct wpa_bss_tmp_disallowed, list) {
7156 os_memcpy(&bssids[num_bssid * ETH_ALEN], tmp->bssid,
7157 ETH_ALEN);
7158 num_bssid++;
7159 }
7160 ret = wpa_drv_set_bssid_blacklist(wpa_s, num_bssid, bssids);
7161 os_free(bssids);
7162 return ret;
7163 }
7164
7165
7166 static void wpa_bss_tmp_disallow_timeout(void *eloop_ctx, void *timeout_ctx)
7167 {
7168 struct wpa_supplicant *wpa_s = eloop_ctx;
7169 struct wpa_bss_tmp_disallowed *tmp, *bss = timeout_ctx;
7170
7171 /* Make sure the bss is not already freed */
7172 dl_list_for_each(tmp, &wpa_s->bss_tmp_disallowed,
7173 struct wpa_bss_tmp_disallowed, list) {
7174 if (bss == tmp) {
7175 dl_list_del(&tmp->list);
7176 os_free(tmp);
7177 wpa_set_driver_tmp_disallow_list(wpa_s);
7178 break;
7179 }
7180 }
7181 }
7182
7183
7184 void wpa_bss_tmp_disallow(struct wpa_supplicant *wpa_s, const u8 *bssid,
7185 unsigned int sec)
7186 {
7187 struct wpa_bss_tmp_disallowed *bss;
7188
7189 bss = wpas_get_disallowed_bss(wpa_s, bssid);
7190 if (bss) {
7191 eloop_cancel_timeout(wpa_bss_tmp_disallow_timeout, wpa_s, bss);
7192 eloop_register_timeout(sec, 0, wpa_bss_tmp_disallow_timeout,
7193 wpa_s, bss);
7194 return;
7195 }
7196
7197 bss = os_malloc(sizeof(*bss));
7198 if (!bss) {
7199 wpa_printf(MSG_DEBUG,
7200 "Failed to allocate memory for temp disallow BSS");
7201 return;
7202 }
7203
7204 os_memcpy(bss->bssid, bssid, ETH_ALEN);
7205 dl_list_add(&wpa_s->bss_tmp_disallowed, &bss->list);
7206 wpa_set_driver_tmp_disallow_list(wpa_s);
7207 eloop_register_timeout(sec, 0, wpa_bss_tmp_disallow_timeout,
7208 wpa_s, bss);
7209 }
7210
7211
7212 int wpa_is_bss_tmp_disallowed(struct wpa_supplicant *wpa_s, const u8 *bssid)
7213 {
7214 struct wpa_bss_tmp_disallowed *bss = NULL, *tmp, *prev;
7215
7216 dl_list_for_each_safe(tmp, prev, &wpa_s->bss_tmp_disallowed,
7217 struct wpa_bss_tmp_disallowed, list) {
7218 if (os_memcmp(bssid, tmp->bssid, ETH_ALEN) == 0) {
7219 bss = tmp;
7220 break;
7221 }
7222 }
7223 if (!bss)
7224 return 0;
7225
7226 return 1;
7227 }
Unnamed repository; edit this file 'description' to name the repository.