]> git.ipfire.org Git - thirdparty/hostap.git/blame - hostapd/config_file.c
projects / thirdparty / hostap.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
hostapd: Remove redundant variable initialization
[thirdparty/hostap.git] / hostapd / config_file.c
CommitLineData
41d719d6
JM		 1/*
2 * hostapd / Configuration file parser
86f6053a 3 * Copyright (c) 2003-2012, Jouni Malinen <j@w1.fi>
41d719d6 4 *
0f3d578e
JM		 5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
41d719d6
JM		 7 */
8
6226e38d 9#include "utils/includes.h"
41d719d6
JM		 10#ifndef CONFIG_NATIVE_WINDOWS
11#include <grp.h>
12#endif /* CONFIG_NATIVE_WINDOWS */
13
6226e38d
JM		 14#include "utils/common.h"
15#include "utils/uuid.h"
41d719d6
JM		 16#include "common/ieee802_11_defs.h"
17#include "drivers/driver.h"
18#include "eap_server/eap.h"
19#include "radius/radius_client.h"
6226e38d
JM		 20#include "ap/wpa_auth.h"
21#include "ap/ap_config.h"
1057d78e 22#include "config_file.h"
41d719d6
JM		 23
24
25extern struct wpa_driver_ops *wpa_drivers[];
26
27
28#ifndef CONFIG_NO_VLAN
29static int hostapd_config_read_vlan_file(struct hostapd_bss_config *bss,
30 const char *fname)
31{
32 FILE *f;
33 char buf[128], *pos, *pos2;
34 int line = 0, vlan_id;
35 struct hostapd_vlan *vlan;
36
37 f = fopen(fname, "r");
38 if (!f) {
39 wpa_printf(MSG_ERROR, "VLAN file '%s' not readable.", fname);
40 return -1;
41 }
42
43 while (fgets(buf, sizeof(buf), f)) {
44 line++;
45
46 if (buf[0] == '#')
47 continue;
48 pos = buf;
49 while (*pos != '\0') {
50 if (*pos == '\n') {
51 *pos = '\0';
52 break;
53 }
54 pos++;
55 }
56 if (buf[0] == '\0')
57 continue;
58
59 if (buf[0] == '*') {
60 vlan_id = VLAN_ID_WILDCARD;
61 pos = buf + 1;
62 } else {
63 vlan_id = strtol(buf, &pos, 10);
64 if (buf == pos || vlan_id < 1 ||
65 vlan_id > MAX_VLAN_ID) {
66 wpa_printf(MSG_ERROR, "Invalid VLAN ID at "
67 "line %d in '%s'", line, fname);
68 fclose(f);
69 return -1;
70 }
71 }
72
73 while (*pos == ' ' || *pos == '\t')
74 pos++;
75 pos2 = pos;
76 while (*pos2 != ' ' && *pos2 != '\t' && *pos2 != '\0')
77 pos2++;
78 *pos2 = '\0';
79 if (*pos == '\0' || os_strlen(pos) > IFNAMSIZ) {
80 wpa_printf(MSG_ERROR, "Invalid VLAN ifname at line %d "
81 "in '%s'", line, fname);
82 fclose(f);
83 return -1;
84 }
85
86 vlan = os_malloc(sizeof(*vlan));
87 if (vlan == NULL) {
88 wpa_printf(MSG_ERROR, "Out of memory while reading "
89 "VLAN interfaces from '%s'", fname);
90 fclose(f);
91 return -1;
92 }
93
94 os_memset(vlan, 0, sizeof(*vlan));
95 vlan->vlan_id = vlan_id;
96 os_strlcpy(vlan->ifname, pos, sizeof(vlan->ifname));
97 if (bss->vlan_tail)
98 bss->vlan_tail->next = vlan;
99 else
100 bss->vlan = vlan;
101 bss->vlan_tail = vlan;
102 }
103
104 fclose(f);
105
106 return 0;
107}
108#endif /* CONFIG_NO_VLAN */
109
110
111static int hostapd_acl_comp(const void *a, const void *b)
112{
113 const struct mac_acl_entry *aa = a;
114 const struct mac_acl_entry *bb = b;
115 return os_memcmp(aa->addr, bb->addr, sizeof(macaddr));
116}
117
118
119static int hostapd_config_read_maclist(const char *fname,
120 struct mac_acl_entry **acl, int *num)
121{
122 FILE *f;
123 char buf[128], *pos;
124 int line = 0;
125 u8 addr[ETH_ALEN];
126 struct mac_acl_entry *newacl;
127 int vlan_id;
128
129 if (!fname)
130 return 0;
131
132 f = fopen(fname, "r");
133 if (!f) {
134 wpa_printf(MSG_ERROR, "MAC list file '%s' not found.", fname);
135 return -1;
136 }
137
138 while (fgets(buf, sizeof(buf), f)) {
139 line++;
140
141 if (buf[0] == '#')
142 continue;
143 pos = buf;
144 while (*pos != '\0') {
145 if (*pos == '\n') {
146 *pos = '\0';
147 break;
148 }
149 pos++;
150 }
151 if (buf[0] == '\0')
152 continue;
153
154 if (hwaddr_aton(buf, addr)) {
155 wpa_printf(MSG_ERROR, "Invalid MAC address '%s' at "
156 "line %d in '%s'", buf, line, fname);
157 fclose(f);
158 return -1;
159 }
160
161 vlan_id = 0;
162 pos = buf;
163 while (*pos != '\0' && *pos != ' ' && *pos != '\t')
164 pos++;
165 while (*pos == ' ' || *pos == '\t')
166 pos++;
167 if (*pos != '\0')
168 vlan_id = atoi(pos);
169
170 newacl = os_realloc(*acl, (*num + 1) * sizeof(**acl));
171 if (newacl == NULL) {
172 wpa_printf(MSG_ERROR, "MAC list reallocation failed");
173 fclose(f);
174 return -1;
175 }
176
177 *acl = newacl;
178 os_memcpy((*acl)[*num].addr, addr, ETH_ALEN);
179 (*acl)[*num].vlan_id = vlan_id;
180 (*num)++;
181 }
182
183 fclose(f);
184
185 qsort(*acl, *num, sizeof(**acl), hostapd_acl_comp);
186
187 return 0;
188}
189
190
191#ifdef EAP_SERVER
192static int hostapd_config_read_eap_user(const char *fname,
193 struct hostapd_bss_config *conf)
194{
195 FILE *f;
196 char buf[512], *pos, *start, *pos2;
197 int line = 0, ret = 0, num_methods;
198 struct hostapd_eap_user *user, *tail = NULL;
199
200 if (!fname)
201 return 0;
202
203 f = fopen(fname, "r");
204 if (!f) {
205 wpa_printf(MSG_ERROR, "EAP user file '%s' not found.", fname);
206 return -1;
207 }
208
209 /* Lines: "user" METHOD,METHOD2 "password" (password optional) */
210 while (fgets(buf, sizeof(buf), f)) {
211 line++;
212
213 if (buf[0] == '#')
214 continue;
215 pos = buf;
216 while (*pos != '\0') {
217 if (*pos == '\n') {
218 *pos = '\0';
219 break;
220 }
221 pos++;
222 }
223 if (buf[0] == '\0')
224 continue;
225
226 user = NULL;
227
228 if (buf[0] != '"' && buf[0] != '*') {
229 wpa_printf(MSG_ERROR, "Invalid EAP identity (no \" in "
230 "start) on line %d in '%s'", line, fname);
231 goto failed;
232 }
233
234 user = os_zalloc(sizeof(*user));
235 if (user == NULL) {
236 wpa_printf(MSG_ERROR, "EAP user allocation failed");
237 goto failed;
238 }
239 user->force_version = -1;
240
241 if (buf[0] == '*') {
242 pos = buf;
243 } else {
244 pos = buf + 1;
245 start = pos;
246 while (*pos != '"' && *pos != '\0')
247 pos++;
248 if (*pos == '\0') {
249 wpa_printf(MSG_ERROR, "Invalid EAP identity "
250 "(no \" in end) on line %d in '%s'",
251 line, fname);
252 goto failed;
253 }
254
255 user->identity = os_malloc(pos - start);
256 if (user->identity == NULL) {
257 wpa_printf(MSG_ERROR, "Failed to allocate "
258 "memory for EAP identity");
259 goto failed;
260 }
261 os_memcpy(user->identity, start, pos - start);
262 user->identity_len = pos - start;
263
264 if (pos[0] == '"' && pos[1] == '*') {
265 user->wildcard_prefix = 1;
266 pos++;
267 }
268 }
269 pos++;
270 while (*pos == ' ' || *pos == '\t')
271 pos++;
272
273 if (*pos == '\0') {
274 wpa_printf(MSG_ERROR, "No EAP method on line %d in "
275 "'%s'", line, fname);
276 goto failed;
277 }
278
279 start = pos;
280 while (*pos != ' ' && *pos != '\t' && *pos != '\0')
281 pos++;
282 if (*pos == '\0') {
283 pos = NULL;
284 } else {
285 *pos = '\0';
286 pos++;
287 }
288 num_methods = 0;
289 while (*start) {
290 char *pos3 = os_strchr(start, ',');
291 if (pos3) {
292 *pos3++ = '\0';
293 }
294 user->methods[num_methods].method =
295 eap_server_get_type(
296 start,
297 &user->methods[num_methods].vendor);
298 if (user->methods[num_methods].vendor ==
299 EAP_VENDOR_IETF &&
300 user->methods[num_methods].method == EAP_TYPE_NONE)
301 {
302 if (os_strcmp(start, "TTLS-PAP") == 0) {
303 user->ttls_auth |= EAP_TTLS_AUTH_PAP;
304 goto skip_eap;
305 }
306 if (os_strcmp(start, "TTLS-CHAP") == 0) {
307 user->ttls_auth |= EAP_TTLS_AUTH_CHAP;
308 goto skip_eap;
309 }
310 if (os_strcmp(start, "TTLS-MSCHAP") == 0) {
311 user->ttls_auth |=
312 EAP_TTLS_AUTH_MSCHAP;
313 goto skip_eap;
314 }
315 if (os_strcmp(start, "TTLS-MSCHAPV2") == 0) {
316 user->ttls_auth |=
317 EAP_TTLS_AUTH_MSCHAPV2;
318 goto skip_eap;
319 }
320 wpa_printf(MSG_ERROR, "Unsupported EAP type "
321 "'%s' on line %d in '%s'",
322 start, line, fname);
323 goto failed;
324 }
325
326 num_methods++;
e9447a94 327 if (num_methods >= EAP_MAX_METHODS)
41d719d6
JM		 328 break;
329 skip_eap:
330 if (pos3 == NULL)
331 break;
332 start = pos3;
333 }
334 if (num_methods == 0 && user->ttls_auth == 0) {
335 wpa_printf(MSG_ERROR, "No EAP types configured on "
336 "line %d in '%s'", line, fname);
337 goto failed;
338 }
339
340 if (pos == NULL)
341 goto done;
342
343 while (*pos == ' ' || *pos == '\t')
344 pos++;
345 if (*pos == '\0')
346 goto done;
347
348 if (os_strncmp(pos, "[ver=0]", 7) == 0) {
349 user->force_version = 0;
350 goto done;
351 }
352
353 if (os_strncmp(pos, "[ver=1]", 7) == 0) {
354 user->force_version = 1;
355 goto done;
356 }
357
358 if (os_strncmp(pos, "[2]", 3) == 0) {
359 user->phase2 = 1;
360 goto done;
361 }
362
363 if (*pos == '"') {
364 pos++;
365 start = pos;
366 while (*pos != '"' && *pos != '\0')
367 pos++;
368 if (*pos == '\0') {
369 wpa_printf(MSG_ERROR, "Invalid EAP password "
370 "(no \" in end) on line %d in '%s'",
371 line, fname);
372 goto failed;
373 }
374
375 user->password = os_malloc(pos - start);
376 if (user->password == NULL) {
377 wpa_printf(MSG_ERROR, "Failed to allocate "
378 "memory for EAP password");
379 goto failed;
380 }
381 os_memcpy(user->password, start, pos - start);
382 user->password_len = pos - start;
383
384 pos++;
385 } else if (os_strncmp(pos, "hash:", 5) == 0) {
386 pos += 5;
387 pos2 = pos;
388 while (*pos2 != '\0' && *pos2 != ' ' &&
389 *pos2 != '\t' && *pos2 != '#')
390 pos2++;
391 if (pos2 - pos != 32) {
392 wpa_printf(MSG_ERROR, "Invalid password hash "
393 "on line %d in '%s'", line, fname);
394 goto failed;
395 }
396 user->password = os_malloc(16);
397 if (user->password == NULL) {
398 wpa_printf(MSG_ERROR, "Failed to allocate "
399 "memory for EAP password hash");
400 goto failed;
401 }
402 if (hexstr2bin(pos, user->password, 16) < 0) {
403 wpa_printf(MSG_ERROR, "Invalid hash password "
404 "on line %d in '%s'", line, fname);
405 goto failed;
406 }
407 user->password_len = 16;
408 user->password_hash = 1;
409 pos = pos2;
410 } else {
411 pos2 = pos;
412 while (*pos2 != '\0' && *pos2 != ' ' &&
413 *pos2 != '\t' && *pos2 != '#')
414 pos2++;
415 if ((pos2 - pos) & 1) {
416 wpa_printf(MSG_ERROR, "Invalid hex password "
417 "on line %d in '%s'", line, fname);
418 goto failed;
419 }
420 user->password = os_malloc((pos2 - pos) / 2);
421 if (user->password == NULL) {
422 wpa_printf(MSG_ERROR, "Failed to allocate "
423 "memory for EAP password");
424 goto failed;
425 }
426 if (hexstr2bin(pos, user->password,
427 (pos2 - pos) / 2) < 0) {
428 wpa_printf(MSG_ERROR, "Invalid hex password "
429 "on line %d in '%s'", line, fname);
430 goto failed;
431 }
432 user->password_len = (pos2 - pos) / 2;
433 pos = pos2;
434 }
435
436 while (*pos == ' ' || *pos == '\t')
437 pos++;
438 if (os_strncmp(pos, "[2]", 3) == 0) {
439 user->phase2 = 1;
440 }
441
442 done:
443 if (tail == NULL) {
444 tail = conf->eap_user = user;
445 } else {
446 tail->next = user;
447 tail = user;
448 }
449 continue;
450
451 failed:
452 if (user) {
453 os_free(user->password);
454 os_free(user->identity);
455 os_free(user);
456 }
457 ret = -1;
458 break;
459 }
460
461 fclose(f);
462
463 return ret;
464}
465#endif /* EAP_SERVER */
466
467
468#ifndef CONFIG_NO_RADIUS
469static int
470hostapd_config_read_radius_addr(struct hostapd_radius_server **server,
471 int *num_server, const char *val, int def_port,
472 struct hostapd_radius_server **curr_serv)
473{
474 struct hostapd_radius_server *nserv;
475 int ret;
476 static int server_index = 1;
477
478 nserv = os_realloc(*server, (*num_server + 1) * sizeof(*nserv));
479 if (nserv == NULL)
480 return -1;
481
482 *server = nserv;
483 nserv = &nserv[*num_server];
484 (*num_server)++;
485 (*curr_serv) = nserv;
486
487 os_memset(nserv, 0, sizeof(*nserv));
488 nserv->port = def_port;
489 ret = hostapd_parse_ip_addr(val, &nserv->addr);
490 nserv->index = server_index++;
491
492 return ret;
493}
af35e7af
JM		 494
495
496static struct hostapd_radius_attr *
497hostapd_parse_radius_attr(const char *value)
498{
499 const char *pos;
500 char syntax;
501 struct hostapd_radius_attr *attr;
502 size_t len;
503
504 attr = os_zalloc(sizeof(*attr));
505 if (attr == NULL)
506 return NULL;
507
508 attr->type = atoi(value);
509
510 pos = os_strchr(value, ':');
511 if (pos == NULL) {
512 attr->val = wpabuf_alloc(1);
513 if (attr->val == NULL) {
514 os_free(attr);
515 return NULL;
516 }
517 wpabuf_put_u8(attr->val, 0);
518 return attr;
519 }
520
521 pos++;
522 if (pos[0] == '\0' || pos[1] != ':') {
523 os_free(attr);
524 return NULL;
525 }
526 syntax = *pos++;
527 pos++;
528
529 switch (syntax) {
530 case 's':
531 attr->val = wpabuf_alloc_copy(pos, os_strlen(pos));
532 break;
533 case 'x':
534 len = os_strlen(pos);
535 if (len & 1)
536 break;
537 len /= 2;
538 attr->val = wpabuf_alloc(len);
539 if (attr->val == NULL)
540 break;
541 if (hexstr2bin(pos, wpabuf_put(attr->val, len), len) < 0) {
542 wpabuf_free(attr->val);
543 os_free(attr);
544 return NULL;
545 }
546 break;
547 case 'd':
548 attr->val = wpabuf_alloc(4);
549 if (attr->val)
550 wpabuf_put_be32(attr->val, atoi(pos));
551 break;
552 default:
553 os_free(attr);
554 return NULL;
555 }
556
557 if (attr->val == NULL) {
558 os_free(attr);
559 return NULL;
560 }
561
562 return attr;
563}
b031338c
JM		 564
565
566static int hostapd_parse_das_client(struct hostapd_bss_config *bss,
567 const char *val)
568{
569 char *secret;
570 size_t len;
571
572 secret = os_strchr(val, ' ');
573 if (secret == NULL)
574 return -1;
575
576 secret++;
577 len = os_strlen(secret);
578
579 if (hostapd_parse_ip_addr(val, &bss->radius_das_client_addr))
580 return -1;
581
582 os_free(bss->radius_das_shared_secret);
583 bss->radius_das_shared_secret = os_malloc(len);
584 if (bss->radius_das_shared_secret == NULL)
585 return -1;
586
587 os_memcpy(bss->radius_das_shared_secret, secret, len);
588 bss->radius_das_shared_secret_len = len;
589
590 return 0;
591}
41d719d6
JM		 592#endif /* CONFIG_NO_RADIUS */
593
594
595static int hostapd_config_parse_key_mgmt(int line, const char *value)
596{
597 int val = 0, last;
598 char *start, *end, *buf;
599
600 buf = os_strdup(value);
601 if (buf == NULL)
602 return -1;
603 start = buf;
604
605 while (*start != '\0') {
606 while (*start == ' ' || *start == '\t')
607 start++;
608 if (*start == '\0')
609 break;
610 end = start;
611 while (*end != ' ' && *end != '\t' && *end != '\0')
612 end++;
613 last = *end == '\0';
614 *end = '\0';
615 if (os_strcmp(start, "WPA-PSK") == 0)
616 val |= WPA_KEY_MGMT_PSK;
617 else if (os_strcmp(start, "WPA-EAP") == 0)
618 val |= WPA_KEY_MGMT_IEEE8021X;
619#ifdef CONFIG_IEEE80211R
620 else if (os_strcmp(start, "FT-PSK") == 0)
621 val |= WPA_KEY_MGMT_FT_PSK;
622 else if (os_strcmp(start, "FT-EAP") == 0)
623 val |= WPA_KEY_MGMT_FT_IEEE8021X;
624#endif /* CONFIG_IEEE80211R */
625#ifdef CONFIG_IEEE80211W
626 else if (os_strcmp(start, "WPA-PSK-SHA256") == 0)
627 val |= WPA_KEY_MGMT_PSK_SHA256;
628 else if (os_strcmp(start, "WPA-EAP-SHA256") == 0)
629 val |= WPA_KEY_MGMT_IEEE8021X_SHA256;
630#endif /* CONFIG_IEEE80211W */
631 else {
632 wpa_printf(MSG_ERROR, "Line %d: invalid key_mgmt '%s'",
633 line, start);
634 os_free(buf);
635 return -1;
636 }
637
638 if (last)
639 break;
640 start = end + 1;
641 }
642
643 os_free(buf);
644 if (val == 0) {
645 wpa_printf(MSG_ERROR, "Line %d: no key_mgmt values "
646 "configured.", line);
647 return -1;
648 }
649
650 return val;
651}
652
653
654static int hostapd_config_parse_cipher(int line, const char *value)
655{
656 int val = 0, last;
657 char *start, *end, *buf;
658
659 buf = os_strdup(value);
660 if (buf == NULL)
661 return -1;
662 start = buf;
663
664 while (*start != '\0') {
665 while (*start == ' ' || *start == '\t')
666 start++;
667 if (*start == '\0')
668 break;
669 end = start;
670 while (*end != ' ' && *end != '\t' && *end != '\0')
671 end++;
672 last = *end == '\0';
673 *end = '\0';
674 if (os_strcmp(start, "CCMP") == 0)
675 val |= WPA_CIPHER_CCMP;
676 else if (os_strcmp(start, "TKIP") == 0)
677 val |= WPA_CIPHER_TKIP;
678 else if (os_strcmp(start, "WEP104") == 0)
679 val |= WPA_CIPHER_WEP104;
680 else if (os_strcmp(start, "WEP40") == 0)
681 val |= WPA_CIPHER_WEP40;
682 else if (os_strcmp(start, "NONE") == 0)
683 val |= WPA_CIPHER_NONE;
684 else {
685 wpa_printf(MSG_ERROR, "Line %d: invalid cipher '%s'.",
686 line, start);
687 os_free(buf);
688 return -1;
689 }
690
691 if (last)
692 break;
693 start = end + 1;
694 }
695 os_free(buf);
696
697 if (val == 0) {
698 wpa_printf(MSG_ERROR, "Line %d: no cipher values configured.",
699 line);
700 return -1;
701 }
702 return val;
703}
704
705
706static int hostapd_config_read_wep(struct hostapd_wep_keys *wep, int keyidx,
707 char *val)
708{
709 size_t len = os_strlen(val);
710
711 if (keyidx < 0 || keyidx > 3 || wep->key[keyidx] != NULL)
712 return -1;
713
714 if (val[0] == '"') {
715 if (len < 2 || val[len - 1] != '"')
716 return -1;
717 len -= 2;
718 wep->key[keyidx] = os_malloc(len);
719 if (wep->key[keyidx] == NULL)
720 return -1;
721 os_memcpy(wep->key[keyidx], val + 1, len);
722 wep->len[keyidx] = len;
723 } else {
724 if (len & 1)
725 return -1;
726 len /= 2;
727 wep->key[keyidx] = os_malloc(len);
728 if (wep->key[keyidx] == NULL)
729 return -1;
730 wep->len[keyidx] = len;
731 if (hexstr2bin(val, wep->key[keyidx], len) < 0)
732 return -1;
733 }
734
735 wep->keys_set++;
736
737 return 0;
738}
739
740
741static int hostapd_parse_rates(int **rate_list, char *val)
742{
743 int *list;
744 int count;
745 char *pos, *end;
746
747 os_free(*rate_list);
748 *rate_list = NULL;
749
750 pos = val;
751 count = 0;
752 while (*pos != '\0') {
753 if (*pos == ' ')
754 count++;
755 pos++;
756 }
757
758 list = os_malloc(sizeof(int) * (count + 2));
759 if (list == NULL)
760 return -1;
761 pos = val;
762 count = 0;
763 while (*pos != '\0') {
764 end = os_strchr(pos, ' ');
765 if (end)
766 *end = '\0';
767
768 list[count++] = atoi(pos);
769 if (!end)
770 break;
771 pos = end + 1;
772 }
773 list[count] = -1;
774
775 *rate_list = list;
776 return 0;
777}
778
779
780static int hostapd_config_bss(struct hostapd_config *conf, const char *ifname)
781{
782 struct hostapd_bss_config *bss;
783
784 if (*ifname == '\0')
785 return -1;
786
787 bss = os_realloc(conf->bss, (conf->num_bss + 1) *
788 sizeof(struct hostapd_bss_config));
789 if (bss == NULL) {
790 wpa_printf(MSG_ERROR, "Failed to allocate memory for "
791 "multi-BSS entry");
792 return -1;
793 }
794 conf->bss = bss;
795
796 bss = &(conf->bss[conf->num_bss]);
797 os_memset(bss, 0, sizeof(*bss));
798 bss->radius = os_zalloc(sizeof(*bss->radius));
799 if (bss->radius == NULL) {
800 wpa_printf(MSG_ERROR, "Failed to allocate memory for "
801 "multi-BSS RADIUS data");
802 return -1;
803 }
804
805 conf->num_bss++;
806 conf->last_bss = bss;
807
808 hostapd_config_defaults_bss(bss);
809 os_strlcpy(bss->iface, ifname, sizeof(bss->iface));
810 os_memcpy(bss->ssid.vlan, bss->iface, IFNAMSIZ + 1);
811
812 return 0;
813}
814
815
816/* convert floats with one decimal place to value*10 int, i.e.,
817 * "1.5" will return 15 */
818static int hostapd_config_read_int10(const char *value)
819{
820 int i, d;
821 char *pos;
822
823 i = atoi(value);
824 pos = os_strchr(value, '.');
825 d = 0;
826 if (pos) {
827 pos++;
828 if (*pos >= '0' && *pos <= '9')
829 d = *pos - '0';
830 }
831
832 return i * 10 + d;
833}
834
835
836static int valid_cw(int cw)
837{
838 return (cw == 1 || cw == 3 || cw == 7 || cw == 15 || cw == 31 ||
839 cw == 63 || cw == 127 || cw == 255 || cw == 511 || cw == 1023);
840}
841
842
843enum {
844 IEEE80211_TX_QUEUE_DATA0 = 0, /* used for EDCA AC_VO data */
845 IEEE80211_TX_QUEUE_DATA1 = 1, /* used for EDCA AC_VI data */
846 IEEE80211_TX_QUEUE_DATA2 = 2, /* used for EDCA AC_BE data */
7e3c1781 847 IEEE80211_TX_QUEUE_DATA3 = 3 /* used for EDCA AC_BK data */
41d719d6
JM		 848};
849
850static int hostapd_config_tx_queue(struct hostapd_config *conf, char *name,
851 char *val)
852{
853 int num;
854 char *pos;
855 struct hostapd_tx_queue_params *queue;
856
857 /* skip 'tx_queue_' prefix */
858 pos = name + 9;
859 if (os_strncmp(pos, "data", 4) == 0 &&
860 pos[4] >= '0' && pos[4] <= '9' && pos[5] == '_') {
861 num = pos[4] - '0';
862 pos += 6;
7e3c1781
JM		 863 } else if (os_strncmp(pos, "after_beacon_", 13) == 0 ||
864 os_strncmp(pos, "beacon_", 7) == 0) {
865 wpa_printf(MSG_INFO, "DEPRECATED: '%s' not used", name);
866 return 0;
41d719d6
JM		 867 } else {
868 wpa_printf(MSG_ERROR, "Unknown tx_queue name '%s'", pos);
869 return -1;
870 }
871
7e3c1781 872 if (num >= NUM_TX_QUEUES) {
d2da2249 873 /* for backwards compatibility, do not trigger failure */
7e3c1781
JM		 874 wpa_printf(MSG_INFO, "DEPRECATED: '%s' not used", name);
875 return 0;
876 }
877
41d719d6
JM		 878 queue = &conf->tx_queue[num];
879
880 if (os_strcmp(pos, "aifs") == 0) {
881 queue->aifs = atoi(val);
882 if (queue->aifs < 0 || queue->aifs > 255) {
883 wpa_printf(MSG_ERROR, "Invalid AIFS value %d",
884 queue->aifs);
885 return -1;
886 }
887 } else if (os_strcmp(pos, "cwmin") == 0) {
888 queue->cwmin = atoi(val);
889 if (!valid_cw(queue->cwmin)) {
890 wpa_printf(MSG_ERROR, "Invalid cwMin value %d",
891 queue->cwmin);
892 return -1;
893 }
894 } else if (os_strcmp(pos, "cwmax") == 0) {
895 queue->cwmax = atoi(val);
896 if (!valid_cw(queue->cwmax)) {
897 wpa_printf(MSG_ERROR, "Invalid cwMax value %d",
898 queue->cwmax);
899 return -1;
900 }
901 } else if (os_strcmp(pos, "burst") == 0) {
902 queue->burst = hostapd_config_read_int10(val);
903 } else {
904 wpa_printf(MSG_ERROR, "Unknown tx_queue field '%s'", pos);
905 return -1;
906 }
907
41d719d6
JM		 908 return 0;
909}
910
911
912static int hostapd_config_wmm_ac(struct hostapd_config *conf, char *name,
913 char *val)
914{
915 int num, v;
916 char *pos;
917 struct hostapd_wmm_ac_params *ac;
918
919 /* skip 'wme_ac_' or 'wmm_ac_' prefix */
920 pos = name + 7;
921 if (os_strncmp(pos, "be_", 3) == 0) {
922 num = 0;
923 pos += 3;
924 } else if (os_strncmp(pos, "bk_", 3) == 0) {
925 num = 1;
926 pos += 3;
927 } else if (os_strncmp(pos, "vi_", 3) == 0) {
928 num = 2;
929 pos += 3;
930 } else if (os_strncmp(pos, "vo_", 3) == 0) {
931 num = 3;
932 pos += 3;
933 } else {
934 wpa_printf(MSG_ERROR, "Unknown WMM name '%s'", pos);
935 return -1;
936 }
937
938 ac = &conf->wmm_ac_params[num];
939
940 if (os_strcmp(pos, "aifs") == 0) {
941 v = atoi(val);
942 if (v < 1 || v > 255) {
943 wpa_printf(MSG_ERROR, "Invalid AIFS value %d", v);
944 return -1;
945 }
946 ac->aifs = v;
947 } else if (os_strcmp(pos, "cwmin") == 0) {
948 v = atoi(val);
949 if (v < 0 || v > 12) {
950 wpa_printf(MSG_ERROR, "Invalid cwMin value %d", v);
951 return -1;
952 }
953 ac->cwmin = v;
954 } else if (os_strcmp(pos, "cwmax") == 0) {
955 v = atoi(val);
956 if (v < 0 || v > 12) {
957 wpa_printf(MSG_ERROR, "Invalid cwMax value %d", v);
958 return -1;
959 }
960 ac->cwmax = v;
961 } else if (os_strcmp(pos, "txop_limit") == 0) {
962 v = atoi(val);
963 if (v < 0 || v > 0xffff) {
964 wpa_printf(MSG_ERROR, "Invalid txop value %d", v);
965 return -1;
966 }
967 ac->txop_limit = v;
968 } else if (os_strcmp(pos, "acm") == 0) {
969 v = atoi(val);
970 if (v < 0 || v > 1) {
971 wpa_printf(MSG_ERROR, "Invalid acm value %d", v);
972 return -1;
973 }
974 ac->admission_control_mandatory = v;
975 } else {
976 wpa_printf(MSG_ERROR, "Unknown wmm_ac_ field '%s'", pos);
977 return -1;
978 }
979
980 return 0;
981}
982
983
984#ifdef CONFIG_IEEE80211R
985static int add_r0kh(struct hostapd_bss_config *bss, char *value)
986{
987 struct ft_remote_r0kh *r0kh;
988 char *pos, *next;
989
990 r0kh = os_zalloc(sizeof(*r0kh));
991 if (r0kh == NULL)
992 return -1;
993
994 /* 02:01:02:03:04:05 a.example.com 000102030405060708090a0b0c0d0e0f */
995 pos = value;
996 next = os_strchr(pos, ' ');
997 if (next)
998 *next++ = '\0';
999 if (next == NULL || hwaddr_aton(pos, r0kh->addr)) {
1000 wpa_printf(MSG_ERROR, "Invalid R0KH MAC address: '%s'", pos);
1001 os_free(r0kh);
1002 return -1;
1003 }
1004
1005 pos = next;
1006 next = os_strchr(pos, ' ');
1007 if (next)
1008 *next++ = '\0';
1009 if (next == NULL || next - pos > FT_R0KH_ID_MAX_LEN) {
1010 wpa_printf(MSG_ERROR, "Invalid R0KH-ID: '%s'", pos);
1011 os_free(r0kh);
1012 return -1;
1013 }
1014 r0kh->id_len = next - pos - 1;
1015 os_memcpy(r0kh->id, pos, r0kh->id_len);
1016
1017 pos = next;
1018 if (hexstr2bin(pos, r0kh->key, sizeof(r0kh->key))) {
1019 wpa_printf(MSG_ERROR, "Invalid R0KH key: '%s'", pos);
1020 os_free(r0kh);
1021 return -1;
1022 }
1023
1024 r0kh->next = bss->r0kh_list;
1025 bss->r0kh_list = r0kh;
1026
1027 return 0;
1028}
1029
1030
1031static int add_r1kh(struct hostapd_bss_config *bss, char *value)
1032{
1033 struct ft_remote_r1kh *r1kh;
1034 char *pos, *next;
1035
1036 r1kh = os_zalloc(sizeof(*r1kh));
1037 if (r1kh == NULL)
1038 return -1;
1039
1040 /* 02:01:02:03:04:05 02:01:02:03:04:05
1041 * 000102030405060708090a0b0c0d0e0f */
1042 pos = value;
1043 next = os_strchr(pos, ' ');
1044 if (next)
1045 *next++ = '\0';
1046 if (next == NULL || hwaddr_aton(pos, r1kh->addr)) {
1047 wpa_printf(MSG_ERROR, "Invalid R1KH MAC address: '%s'", pos);
1048 os_free(r1kh);
1049 return -1;
1050 }
1051
1052 pos = next;
1053 next = os_strchr(pos, ' ');
1054 if (next)
1055 *next++ = '\0';
1056 if (next == NULL || hwaddr_aton(pos, r1kh->id)) {
1057 wpa_printf(MSG_ERROR, "Invalid R1KH-ID: '%s'", pos);
1058 os_free(r1kh);
1059 return -1;
1060 }
1061
1062 pos = next;
1063 if (hexstr2bin(pos, r1kh->key, sizeof(r1kh->key))) {
1064 wpa_printf(MSG_ERROR, "Invalid R1KH key: '%s'", pos);
1065 os_free(r1kh);
1066 return -1;
1067 }
1068
1069 r1kh->next = bss->r1kh_list;
1070 bss->r1kh_list = r1kh;
1071
1072 return 0;
1073}
1074#endif /* CONFIG_IEEE80211R */
1075
1076
1077#ifdef CONFIG_IEEE80211N
1078static int hostapd_config_ht_capab(struct hostapd_config *conf,
1079 const char *capab)
1080{
1081 if (os_strstr(capab, "[LDPC]"))
1082 conf->ht_capab |= HT_CAP_INFO_LDPC_CODING_CAP;
1083 if (os_strstr(capab, "[HT40-]")) {
1084 conf->ht_capab |= HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET;
1085 conf->secondary_channel = -1;
1086 }
1087 if (os_strstr(capab, "[HT40+]")) {
1088 conf->ht_capab |= HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET;
1089 conf->secondary_channel = 1;
1090 }
1091 if (os_strstr(capab, "[SMPS-STATIC]")) {
1092 conf->ht_capab &= ~HT_CAP_INFO_SMPS_MASK;
1093 conf->ht_capab |= HT_CAP_INFO_SMPS_STATIC;
1094 }
1095 if (os_strstr(capab, "[SMPS-DYNAMIC]")) {
1096 conf->ht_capab &= ~HT_CAP_INFO_SMPS_MASK;
1097 conf->ht_capab |= HT_CAP_INFO_SMPS_DYNAMIC;
1098 }
1099 if (os_strstr(capab, "[GF]"))
1100 conf->ht_capab |= HT_CAP_INFO_GREEN_FIELD;
1101 if (os_strstr(capab, "[SHORT-GI-20]"))
1102 conf->ht_capab |= HT_CAP_INFO_SHORT_GI20MHZ;
1103 if (os_strstr(capab, "[SHORT-GI-40]"))
1104 conf->ht_capab |= HT_CAP_INFO_SHORT_GI40MHZ;
1105 if (os_strstr(capab, "[TX-STBC]"))
1106 conf->ht_capab |= HT_CAP_INFO_TX_STBC;
1107 if (os_strstr(capab, "[RX-STBC1]")) {
1108 conf->ht_capab &= ~HT_CAP_INFO_RX_STBC_MASK;
1109 conf->ht_capab |= HT_CAP_INFO_RX_STBC_1;
1110 }
1111 if (os_strstr(capab, "[RX-STBC12]")) {
1112 conf->ht_capab &= ~HT_CAP_INFO_RX_STBC_MASK;
1113 conf->ht_capab |= HT_CAP_INFO_RX_STBC_12;
1114 }
1115 if (os_strstr(capab, "[RX-STBC123]")) {
1116 conf->ht_capab &= ~HT_CAP_INFO_RX_STBC_MASK;
1117 conf->ht_capab |= HT_CAP_INFO_RX_STBC_123;
1118 }
1119 if (os_strstr(capab, "[DELAYED-BA]"))
1120 conf->ht_capab |= HT_CAP_INFO_DELAYED_BA;
1121 if (os_strstr(capab, "[MAX-AMSDU-7935]"))
1122 conf->ht_capab |= HT_CAP_INFO_MAX_AMSDU_SIZE;
1123 if (os_strstr(capab, "[DSSS_CCK-40]"))
1124 conf->ht_capab |= HT_CAP_INFO_DSSS_CCK40MHZ;
1125 if (os_strstr(capab, "[PSMP]"))
1126 conf->ht_capab |= HT_CAP_INFO_PSMP_SUPP;
1127 if (os_strstr(capab, "[LSIG-TXOP-PROT]"))
1128 conf->ht_capab |= HT_CAP_INFO_LSIG_TXOP_PROTECT_SUPPORT;
1129
1130 return 0;
1131}
1132#endif /* CONFIG_IEEE80211N */
1133
1134
1135static int hostapd_config_check_bss(struct hostapd_bss_config *bss,
1136 struct hostapd_config *conf)
1137{
1138 if (bss->ieee802_1x && !bss->eap_server &&
1139 !bss->radius->auth_servers) {
1140 wpa_printf(MSG_ERROR, "Invalid IEEE 802.1X configuration (no "
1141 "EAP authenticator configured).");
1142 return -1;
1143 }
1144
05ab9712
MB		 1145 if (bss->wpa && bss->wpa_psk_radius != PSK_RADIUS_IGNORED &&
1146 bss->macaddr_acl != USE_EXTERNAL_RADIUS_AUTH) {
1147 wpa_printf(MSG_ERROR, "WPA-PSK using RADIUS enabled, but no "
1148 "RADIUS checking (macaddr_acl=2) enabled.");
1149 return -1;
1150 }
1151
41d719d6
JM		 1152 if (bss->wpa && (bss->wpa_key_mgmt & WPA_KEY_MGMT_PSK) &&
1153 bss->ssid.wpa_psk == NULL && bss->ssid.wpa_passphrase == NULL &&
05ab9712
MB		 1154 bss->ssid.wpa_psk_file == NULL &&
1155 (bss->wpa_psk_radius != PSK_RADIUS_REQUIRED ||
1156 bss->macaddr_acl != USE_EXTERNAL_RADIUS_AUTH)) {
41d719d6
JM		 1157 wpa_printf(MSG_ERROR, "WPA-PSK enabled, but PSK or passphrase "
1158 "is not configured.");
1159 return -1;
1160 }
1161
1162 if (hostapd_mac_comp_empty(bss->bssid) != 0) {
1163 size_t i;
1164
1165 for (i = 0; i < conf->num_bss; i++) {
1166 if ((&conf->bss[i] != bss) &&
1167 (hostapd_mac_comp(conf->bss[i].bssid,
1168 bss->bssid) == 0)) {
1169 wpa_printf(MSG_ERROR, "Duplicate BSSID " MACSTR
1170 " on interface '%s' and '%s'.",
1171 MAC2STR(bss->bssid),
1172 conf->bss[i].iface, bss->iface);
1173 return -1;
1174 }
1175 }
1176 }
1177
1178#ifdef CONFIG_IEEE80211R
0bf927a0 1179 if (wpa_key_mgmt_ft(bss->wpa_key_mgmt) &&
41d719d6
JM		 1180 (bss->nas_identifier == NULL ||
1181 os_strlen(bss->nas_identifier) < 1 ||
1182 os_strlen(bss->nas_identifier) > FT_R0KH_ID_MAX_LEN)) {
1183 wpa_printf(MSG_ERROR, "FT (IEEE 802.11r) requires "
1184 "nas_identifier to be configured as a 1..48 octet "
1185 "string");
1186 return -1;
1187 }
1188#endif /* CONFIG_IEEE80211R */
1189
1190#ifdef CONFIG_IEEE80211N
1ed08baf
SM		 1191 if (conf->ieee80211n && conf->hw_mode == HOSTAPD_MODE_IEEE80211B) {
1192 bss->disable_11n = 1;
1193 wpa_printf(MSG_ERROR, "HT (IEEE 802.11n) in 11b mode is not "
1194 "allowed, disabling HT capabilites");
1195 }
1196
6950b2ca
YAP		 1197 if (conf->ieee80211n &&
1198 bss->ssid.security_policy == SECURITY_STATIC_WEP) {
f39b07d7 1199 bss->disable_11n = 1;
6950b2ca 1200 wpa_printf(MSG_ERROR, "HT (IEEE 802.11n) with WEP is not "
f39b07d7 1201 "allowed, disabling HT capabilities");
6950b2ca
YAP		 1202 }
1203
41d719d6
JM		 1204 if (conf->ieee80211n && bss->wpa &&
1205 !(bss->wpa_pairwise & WPA_CIPHER_CCMP) &&
1206 !(bss->rsn_pairwise & WPA_CIPHER_CCMP)) {
f39b07d7 1207 bss->disable_11n = 1;
41d719d6 1208 wpa_printf(MSG_ERROR, "HT (IEEE 802.11n) with WPA/WPA2 "
f39b07d7
HS		 1209 "requires CCMP to be enabled, disabling HT "
1210 "capabilities");
41d719d6
JM		 1211 }
1212#endif /* CONFIG_IEEE80211N */
1213
f61039c7
JM		 1214#ifdef CONFIG_WPS2
1215 if (bss->wps_state && bss->ignore_broadcast_ssid) {
1216 wpa_printf(MSG_INFO, "WPS: ignore_broadcast_ssid "
1217 "configuration forced WPS to be disabled");
1218 bss->wps_state = 0;
1219 }
1220
1221 if (bss->wps_state && bss->ssid.wep.keys_set && bss->wpa == 0) {
1222 wpa_printf(MSG_INFO, "WPS: WEP configuration forced WPS to be "
1223 "disabled");
1224 bss->wps_state = 0;
1225 }
1226#endif /* CONFIG_WPS2 */
1227
41d719d6
JM		 1228 return 0;
1229}
1230
1231
1232static int hostapd_config_check(struct hostapd_config *conf)
1233{
1234 size_t i;
1235
1236 if (conf->ieee80211d && (!conf->country[0] || !conf->country[1])) {
1237 wpa_printf(MSG_ERROR, "Cannot enable IEEE 802.11d without "
1238 "setting the country_code");
1239 return -1;
1240 }
1241
1242 for (i = 0; i < conf->num_bss; i++) {
1243 if (hostapd_config_check_bss(&conf->bss[i], conf))
1244 return -1;
1245 }
1246
1247 return 0;
1248}
1249
1250
4b2a77ab
JM		 1251#ifdef CONFIG_INTERWORKING
1252static int parse_roaming_consortium(struct hostapd_bss_config *bss, char *pos,
1253 int line)
1254{
1255 size_t len = os_strlen(pos);
1256 u8 oi[MAX_ROAMING_CONSORTIUM_LEN];
1257
1258 struct hostapd_roaming_consortium *rc;
1259
1260 if ((len & 1) || len < 2 * 3 || len / 2 > MAX_ROAMING_CONSORTIUM_LEN ||
1261 hexstr2bin(pos, oi, len / 2)) {
1262 wpa_printf(MSG_ERROR, "Line %d: invalid roaming_consortium "
1263 "'%s'", line, pos);
1264 return -1;
1265 }
1266 len /= 2;
1267
1268 rc = os_realloc(bss->roaming_consortium,
1269 sizeof(struct hostapd_roaming_consortium) *
1270 (bss->roaming_consortium_count + 1));
1271 if (rc == NULL)
1272 return -1;
1273
1274 os_memcpy(rc[bss->roaming_consortium_count].oi, oi, len);
1275 rc[bss->roaming_consortium_count].len = len;
1276
1277 bss->roaming_consortium = rc;
1278 bss->roaming_consortium_count++;
1279
1280 return 0;
1281}
648cc711
JM		 1282
1283
1284static int parse_venue_name(struct hostapd_bss_config *bss, char *pos,
1285 int line)
1286{
1287 char *sep;
1288 size_t clen, nlen;
1289 struct hostapd_venue_name *vn;
1290
1291 sep = os_strchr(pos, ':');
1292 if (sep == NULL)
1293 goto fail;
1294 *sep++ = '\0';
1295
1296 clen = os_strlen(pos);
1297 if (clen < 2)
1298 goto fail;
1299 nlen = os_strlen(sep);
1300 if (nlen > 252)
1301 goto fail;
1302
1303 vn = os_realloc(bss->venue_name,
1304 sizeof(struct hostapd_venue_name) *
1305 (bss->venue_name_count + 1));
1306 if (vn == NULL)
1307 return -1;
1308
1309 bss->venue_name = vn;
1310 vn = &bss->venue_name[bss->venue_name_count];
1311 bss->venue_name_count++;
1312
1313 os_memset(vn->lang, 0, sizeof(vn->lang));
1314 os_memcpy(vn->lang, pos, clen);
1315 vn->name_len = nlen;
1316 os_memcpy(vn->name, sep, nlen);
1317
1318 return 0;
1319
1320fail:
1321 wpa_printf(MSG_ERROR, "Line %d: Invalid venue_name '%s'",
1322 line, pos);
1323 return -1;
1324}
4b2a77ab
JM		 1325#endif /* CONFIG_INTERWORKING */
1326
1327
ef45bc89
SP		 1328static int hostapd_config_fill(struct hostapd_config *conf,
1329 struct hostapd_bss_config *bss,
1330 char *buf, char *pos, int line)
41d719d6 1331{
41d719d6 1332 int errors = 0;
41d719d6 1333
ef45bc89 1334 {
41d719d6
JM		 1335 if (os_strcmp(buf, "interface") == 0) {
1336 os_strlcpy(conf->bss[0].iface, pos,
1337 sizeof(conf->bss[0].iface));
1338 } else if (os_strcmp(buf, "bridge") == 0) {
1339 os_strlcpy(bss->bridge, pos, sizeof(bss->bridge));
d38ae2ea
FF		 1340 } else if (os_strcmp(buf, "wds_bridge") == 0) {
1341 os_strlcpy(bss->wds_bridge, pos,
1342 sizeof(bss->wds_bridge));
41d719d6
JM		 1343 } else if (os_strcmp(buf, "driver") == 0) {
1344 int j;
1345 /* clear to get error below if setting is invalid */
1346 conf->driver = NULL;
1347 for (j = 0; wpa_drivers[j]; j++) {
1348 if (os_strcmp(pos, wpa_drivers[j]->name) == 0)
1349 {
1350 conf->driver = wpa_drivers[j];
1351 break;
1352 }
1353 }
1354 if (conf->driver == NULL) {
1355 wpa_printf(MSG_ERROR, "Line %d: invalid/"
1356 "unknown driver '%s'", line, pos);
1357 errors++;
1358 }
1359 } else if (os_strcmp(buf, "debug") == 0) {
1360 wpa_printf(MSG_DEBUG, "Line %d: DEPRECATED: 'debug' "
1361 "configuration variable is not used "
1362 "anymore", line);
1363 } else if (os_strcmp(buf, "logger_syslog_level") == 0) {
1364 bss->logger_syslog_level = atoi(pos);
1365 } else if (os_strcmp(buf, "logger_stdout_level") == 0) {
1366 bss->logger_stdout_level = atoi(pos);
1367 } else if (os_strcmp(buf, "logger_syslog") == 0) {
1368 bss->logger_syslog = atoi(pos);
1369 } else if (os_strcmp(buf, "logger_stdout") == 0) {
1370 bss->logger_stdout = atoi(pos);
1371 } else if (os_strcmp(buf, "dump_file") == 0) {
1372 bss->dump_log_name = os_strdup(pos);
1373 } else if (os_strcmp(buf, "ssid") == 0) {
1374 bss->ssid.ssid_len = os_strlen(pos);
1375 if (bss->ssid.ssid_len > HOSTAPD_MAX_SSID_LEN ||
1376 bss->ssid.ssid_len < 1) {
1377 wpa_printf(MSG_ERROR, "Line %d: invalid SSID "
1378 "'%s'", line, pos);
1379 errors++;
1380 } else {
1381 os_memcpy(bss->ssid.ssid, pos,
1382 bss->ssid.ssid_len);
1383 bss->ssid.ssid[bss->ssid.ssid_len] = '\0';
1384 bss->ssid.ssid_set = 1;
1385 }
1386 } else if (os_strcmp(buf, "macaddr_acl") == 0) {
1387 bss->macaddr_acl = atoi(pos);
1388 if (bss->macaddr_acl != ACCEPT_UNLESS_DENIED &&
1389 bss->macaddr_acl != DENY_UNLESS_ACCEPTED &&
1390 bss->macaddr_acl != USE_EXTERNAL_RADIUS_AUTH) {
1391 wpa_printf(MSG_ERROR, "Line %d: unknown "
1392 "macaddr_acl %d",
1393 line, bss->macaddr_acl);
1394 }
1395 } else if (os_strcmp(buf, "accept_mac_file") == 0) {
1396 if (hostapd_config_read_maclist(pos, &bss->accept_mac,
1397 &bss->num_accept_mac))
1398 {
1399 wpa_printf(MSG_ERROR, "Line %d: Failed to "
1400 "read accept_mac_file '%s'",
1401 line, pos);
1402 errors++;
1403 }
1404 } else if (os_strcmp(buf, "deny_mac_file") == 0) {
1405 if (hostapd_config_read_maclist(pos, &bss->deny_mac,
1406 &bss->num_deny_mac)) {
1407 wpa_printf(MSG_ERROR, "Line %d: Failed to "
1408 "read deny_mac_file '%s'",
1409 line, pos);
1410 errors++;
1411 }
1412 } else if (os_strcmp(buf, "wds_sta") == 0) {
1413 bss->wds_sta = atoi(pos);
d3b42869
FF		 1414 } else if (os_strcmp(buf, "ap_isolate") == 0) {
1415 bss->isolate = atoi(pos);
41d719d6
JM		 1416 } else if (os_strcmp(buf, "ap_max_inactivity") == 0) {
1417 bss->ap_max_inactivity = atoi(pos);
ef01fa7b
YAP		 1418 } else if (os_strcmp(buf, "skip_inactivity_poll") == 0) {
1419 bss->skip_inactivity_poll = atoi(pos);
41d719d6
JM		 1420 } else if (os_strcmp(buf, "country_code") == 0) {
1421 os_memcpy(conf->country, pos, 2);
1422 /* FIX: make this configurable */
1423 conf->country[2] = ' ';
1424 } else if (os_strcmp(buf, "ieee80211d") == 0) {
1425 conf->ieee80211d = atoi(pos);
1426 } else if (os_strcmp(buf, "ieee8021x") == 0) {
1427 bss->ieee802_1x = atoi(pos);
1428 } else if (os_strcmp(buf, "eapol_version") == 0) {
1429 bss->eapol_version = atoi(pos);
1430 if (bss->eapol_version < 1 ||
1431 bss->eapol_version > 2) {
1432 wpa_printf(MSG_ERROR, "Line %d: invalid EAPOL "
1433 "version (%d): '%s'.",
1434 line, bss->eapol_version, pos);
1435 errors++;
1436 } else
1437 wpa_printf(MSG_DEBUG, "eapol_version=%d",
1438 bss->eapol_version);
1439#ifdef EAP_SERVER
1440 } else if (os_strcmp(buf, "eap_authenticator") == 0) {
1441 bss->eap_server = atoi(pos);
1442 wpa_printf(MSG_ERROR, "Line %d: obsolete "
1443 "eap_authenticator used; this has been "
1444 "renamed to eap_server", line);
1445 } else if (os_strcmp(buf, "eap_server") == 0) {
1446 bss->eap_server = atoi(pos);
1447 } else if (os_strcmp(buf, "eap_user_file") == 0) {
1448 if (hostapd_config_read_eap_user(pos, bss))
1449 errors++;
1450 } else if (os_strcmp(buf, "ca_cert") == 0) {
1451 os_free(bss->ca_cert);
1452 bss->ca_cert = os_strdup(pos);
1453 } else if (os_strcmp(buf, "server_cert") == 0) {
1454 os_free(bss->server_cert);
1455 bss->server_cert = os_strdup(pos);
1456 } else if (os_strcmp(buf, "private_key") == 0) {
1457 os_free(bss->private_key);
1458 bss->private_key = os_strdup(pos);
1459 } else if (os_strcmp(buf, "private_key_passwd") == 0) {
1460 os_free(bss->private_key_passwd);
1461 bss->private_key_passwd = os_strdup(pos);
1462 } else if (os_strcmp(buf, "check_crl") == 0) {
1463 bss->check_crl = atoi(pos);
1464 } else if (os_strcmp(buf, "dh_file") == 0) {
1465 os_free(bss->dh_file);
1466 bss->dh_file = os_strdup(pos);
7f6ec672
JM		 1467 } else if (os_strcmp(buf, "fragment_size") == 0) {
1468 bss->fragment_size = atoi(pos);
41d719d6
JM		 1469#ifdef EAP_SERVER_FAST
1470 } else if (os_strcmp(buf, "pac_opaque_encr_key") == 0) {
1471 os_free(bss->pac_opaque_encr_key);
1472 bss->pac_opaque_encr_key = os_malloc(16);
1473 if (bss->pac_opaque_encr_key == NULL) {
1474 wpa_printf(MSG_ERROR, "Line %d: No memory for "
1475 "pac_opaque_encr_key", line);
1476 errors++;
1477 } else if (hexstr2bin(pos, bss->pac_opaque_encr_key,
1478 16)) {
1479 wpa_printf(MSG_ERROR, "Line %d: Invalid "
1480 "pac_opaque_encr_key", line);
1481 errors++;
1482 }
1483 } else if (os_strcmp(buf, "eap_fast_a_id") == 0) {
1484 size_t idlen = os_strlen(pos);
1485 if (idlen & 1) {
1486 wpa_printf(MSG_ERROR, "Line %d: Invalid "
1487 "eap_fast_a_id", line);
1488 errors++;
1489 } else {
1490 os_free(bss->eap_fast_a_id);
1491 bss->eap_fast_a_id = os_malloc(idlen / 2);
1492 if (bss->eap_fast_a_id == NULL ||
1493 hexstr2bin(pos, bss->eap_fast_a_id,
1494 idlen / 2)) {
1495 wpa_printf(MSG_ERROR, "Line %d: "
1496 "Failed to parse "
1497 "eap_fast_a_id", line);
1498 errors++;
1499 } else
1500 bss->eap_fast_a_id_len = idlen / 2;
1501 }
1502 } else if (os_strcmp(buf, "eap_fast_a_id_info") == 0) {
1503 os_free(bss->eap_fast_a_id_info);
1504 bss->eap_fast_a_id_info = os_strdup(pos);
1505 } else if (os_strcmp(buf, "eap_fast_prov") == 0) {
1506 bss->eap_fast_prov = atoi(pos);
1507 } else if (os_strcmp(buf, "pac_key_lifetime") == 0) {
1508 bss->pac_key_lifetime = atoi(pos);
1509 } else if (os_strcmp(buf, "pac_key_refresh_time") == 0) {
1510 bss->pac_key_refresh_time = atoi(pos);
1511#endif /* EAP_SERVER_FAST */
1512#ifdef EAP_SERVER_SIM
1513 } else if (os_strcmp(buf, "eap_sim_db") == 0) {
1514 os_free(bss->eap_sim_db);
1515 bss->eap_sim_db = os_strdup(pos);
1516 } else if (os_strcmp(buf, "eap_sim_aka_result_ind") == 0) {
1517 bss->eap_sim_aka_result_ind = atoi(pos);
1518#endif /* EAP_SERVER_SIM */
1519#ifdef EAP_SERVER_TNC
1520 } else if (os_strcmp(buf, "tnc") == 0) {
1521 bss->tnc = atoi(pos);
1522#endif /* EAP_SERVER_TNC */
df684d82
DH		 1523#ifdef EAP_SERVER_PWD
1524 } else if (os_strcmp(buf, "pwd_group") == 0) {
1525 bss->pwd_group = atoi(pos);
1526#endif /* EAP_SERVER_PWD */
41d719d6
JM		 1527#endif /* EAP_SERVER */
1528 } else if (os_strcmp(buf, "eap_message") == 0) {
1529 char *term;
1530 bss->eap_req_id_text = os_strdup(pos);
1531 if (bss->eap_req_id_text == NULL) {
1532 wpa_printf(MSG_ERROR, "Line %d: Failed to "
1533 "allocate memory for "
1534 "eap_req_id_text", line);
1535 errors++;
ef45bc89 1536 return errors;
41d719d6
JM		 1537 }
1538 bss->eap_req_id_text_len =
1539 os_strlen(bss->eap_req_id_text);
1540 term = os_strstr(bss->eap_req_id_text, "\\0");
1541 if (term) {
1542 *term++ = '\0';
1543 os_memmove(term, term + 1,
1544 bss->eap_req_id_text_len -
1545 (term - bss->eap_req_id_text) - 1);
1546 bss->eap_req_id_text_len--;
1547 }
1548 } else if (os_strcmp(buf, "wep_key_len_broadcast") == 0) {
1549 bss->default_wep_key_len = atoi(pos);
1550 if (bss->default_wep_key_len > 13) {
1551 wpa_printf(MSG_ERROR, "Line %d: invalid WEP "
1552 "key len %lu (= %lu bits)", line,
1553 (unsigned long)
1554 bss->default_wep_key_len,
1555 (unsigned long)
1556 bss->default_wep_key_len * 8);
1557 errors++;
1558 }
1559 } else if (os_strcmp(buf, "wep_key_len_unicast") == 0) {
1560 bss->individual_wep_key_len = atoi(pos);
1561 if (bss->individual_wep_key_len < 0 ||
1562 bss->individual_wep_key_len > 13) {
1563 wpa_printf(MSG_ERROR, "Line %d: invalid WEP "
1564 "key len %d (= %d bits)", line,
1565 bss->individual_wep_key_len,
1566 bss->individual_wep_key_len * 8);
1567 errors++;
1568 }
1569 } else if (os_strcmp(buf, "wep_rekey_period") == 0) {
1570 bss->wep_rekeying_period = atoi(pos);
1571 if (bss->wep_rekeying_period < 0) {
1572 wpa_printf(MSG_ERROR, "Line %d: invalid "
1573 "period %d",
1574 line, bss->wep_rekeying_period);
1575 errors++;
1576 }
1577 } else if (os_strcmp(buf, "eap_reauth_period") == 0) {
1578 bss->eap_reauth_period = atoi(pos);
1579 if (bss->eap_reauth_period < 0) {
1580 wpa_printf(MSG_ERROR, "Line %d: invalid "
1581 "period %d",
1582 line, bss->eap_reauth_period);
1583 errors++;
1584 }
1585 } else if (os_strcmp(buf, "eapol_key_index_workaround") == 0) {
1586 bss->eapol_key_index_workaround = atoi(pos);
1587#ifdef CONFIG_IAPP
1588 } else if (os_strcmp(buf, "iapp_interface") == 0) {
1589 bss->ieee802_11f = 1;
1590 os_strlcpy(bss->iapp_iface, pos,
1591 sizeof(bss->iapp_iface));
1592#endif /* CONFIG_IAPP */
1593 } else if (os_strcmp(buf, "own_ip_addr") == 0) {
1594 if (hostapd_parse_ip_addr(pos, &bss->own_ip_addr)) {
1595 wpa_printf(MSG_ERROR, "Line %d: invalid IP "
1596 "address '%s'", line, pos);
1597 errors++;
1598 }
1599 } else if (os_strcmp(buf, "nas_identifier") == 0) {
1600 bss->nas_identifier = os_strdup(pos);
1601#ifndef CONFIG_NO_RADIUS
1602 } else if (os_strcmp(buf, "auth_server_addr") == 0) {
1603 if (hostapd_config_read_radius_addr(
1604 &bss->radius->auth_servers,
1605 &bss->radius->num_auth_servers, pos, 1812,
1606 &bss->radius->auth_server)) {
1607 wpa_printf(MSG_ERROR, "Line %d: invalid IP "
1608 "address '%s'", line, pos);
1609 errors++;
1610 }
1611 } else if (bss->radius->auth_server &&
1612 os_strcmp(buf, "auth_server_port") == 0) {
1613 bss->radius->auth_server->port = atoi(pos);
1614 } else if (bss->radius->auth_server &&
1615 os_strcmp(buf, "auth_server_shared_secret") == 0) {
1616 int len = os_strlen(pos);
1617 if (len == 0) {
1618 /* RFC 2865, Ch. 3 */
1619 wpa_printf(MSG_ERROR, "Line %d: empty shared "
1620 "secret is not allowed.", line);
1621 errors++;
1622 }
1623 bss->radius->auth_server->shared_secret =
1624 (u8 *) os_strdup(pos);
1625 bss->radius->auth_server->shared_secret_len = len;
1626 } else if (os_strcmp(buf, "acct_server_addr") == 0) {
1627 if (hostapd_config_read_radius_addr(
1628 &bss->radius->acct_servers,
1629 &bss->radius->num_acct_servers, pos, 1813,
1630 &bss->radius->acct_server)) {
1631 wpa_printf(MSG_ERROR, "Line %d: invalid IP "
1632 "address '%s'", line, pos);
1633 errors++;
1634 }
1635 } else if (bss->radius->acct_server &&
1636 os_strcmp(buf, "acct_server_port") == 0) {
1637 bss->radius->acct_server->port = atoi(pos);
1638 } else if (bss->radius->acct_server &&
1639 os_strcmp(buf, "acct_server_shared_secret") == 0) {
1640 int len = os_strlen(pos);
1641 if (len == 0) {
1642 /* RFC 2865, Ch. 3 */
1643 wpa_printf(MSG_ERROR, "Line %d: empty shared "
1644 "secret is not allowed.", line);
1645 errors++;
1646 }
1647 bss->radius->acct_server->shared_secret =
1648 (u8 *) os_strdup(pos);
1649 bss->radius->acct_server->shared_secret_len = len;
1650 } else if (os_strcmp(buf, "radius_retry_primary_interval") ==
1651 0) {
1652 bss->radius->retry_primary_interval = atoi(pos);
1653 } else if (os_strcmp(buf, "radius_acct_interim_interval") == 0)
1654 {
1655 bss->acct_interim_interval = atoi(pos);
86f6053a
JM		 1656 } else if (os_strcmp(buf, "radius_request_cui") == 0) {
1657 bss->radius_request_cui = atoi(pos);
af35e7af
JM		 1658 } else if (os_strcmp(buf, "radius_auth_req_attr") == 0) {
1659 struct hostapd_radius_attr *attr, *a;
1660 attr = hostapd_parse_radius_attr(pos);
1661 if (attr == NULL) {
1662 wpa_printf(MSG_ERROR, "Line %d: invalid "
1663 "radius_auth_req_attr", line);
1664 errors++;
1665 } else if (bss->radius_auth_req_attr == NULL) {
1666 bss->radius_auth_req_attr = attr;
1667 } else {
1668 a = bss->radius_auth_req_attr;
1669 while (a->next)
1670 a = a->next;
1671 a->next = attr;
1672 }
1673 } else if (os_strcmp(buf, "radius_acct_req_attr") == 0) {
1674 struct hostapd_radius_attr *attr, *a;
1675 attr = hostapd_parse_radius_attr(pos);
1676 if (attr == NULL) {
1677 wpa_printf(MSG_ERROR, "Line %d: invalid "
1678 "radius_acct_req_attr", line);
1679 errors++;
1680 } else if (bss->radius_acct_req_attr == NULL) {
1681 bss->radius_acct_req_attr = attr;
1682 } else {
1683 a = bss->radius_acct_req_attr;
1684 while (a->next)
1685 a = a->next;
1686 a->next = attr;
1687 }
b031338c
JM		 1688 } else if (os_strcmp(buf, "radius_das_port") == 0) {
1689 bss->radius_das_port = atoi(pos);
1690 } else if (os_strcmp(buf, "radius_das_client") == 0) {
1691 if (hostapd_parse_das_client(bss, pos) < 0) {
1692 wpa_printf(MSG_ERROR, "Line %d: invalid "
1693 "DAS client", line);
1694 errors++;
1695 }
41d719d6
JM		 1696#endif /* CONFIG_NO_RADIUS */
1697 } else if (os_strcmp(buf, "auth_algs") == 0) {
1698 bss->auth_algs = atoi(pos);
1699 if (bss->auth_algs == 0) {
1700 wpa_printf(MSG_ERROR, "Line %d: no "
1701 "authentication algorithms allowed",
1702 line);
1703 errors++;
1704 }
1705 } else if (os_strcmp(buf, "max_num_sta") == 0) {
1706 bss->max_num_sta = atoi(pos);
1707 if (bss->max_num_sta < 0 ||
1708 bss->max_num_sta > MAX_STA_COUNT) {
1709 wpa_printf(MSG_ERROR, "Line %d: Invalid "
1710 "max_num_sta=%d; allowed range "
1711 "0..%d", line, bss->max_num_sta,
1712 MAX_STA_COUNT);
1713 errors++;
1714 }
1715 } else if (os_strcmp(buf, "wpa") == 0) {
1716 bss->wpa = atoi(pos);
1717 } else if (os_strcmp(buf, "wpa_group_rekey") == 0) {
1718 bss->wpa_group_rekey = atoi(pos);
1719 } else if (os_strcmp(buf, "wpa_strict_rekey") == 0) {
1720 bss->wpa_strict_rekey = atoi(pos);
1721 } else if (os_strcmp(buf, "wpa_gmk_rekey") == 0) {
1722 bss->wpa_gmk_rekey = atoi(pos);
1723 } else if (os_strcmp(buf, "wpa_ptk_rekey") == 0) {
1724 bss->wpa_ptk_rekey = atoi(pos);
1725 } else if (os_strcmp(buf, "wpa_passphrase") == 0) {
1726 int len = os_strlen(pos);
1727 if (len < 8 || len > 63) {
1728 wpa_printf(MSG_ERROR, "Line %d: invalid WPA "
1729 "passphrase length %d (expected "
1730 "8..63)", line, len);
1731 errors++;
1732 } else {
1733 os_free(bss->ssid.wpa_passphrase);
1734 bss->ssid.wpa_passphrase = os_strdup(pos);
31b540eb
SP		 1735 os_free(bss->ssid.wpa_psk);
1736 bss->ssid.wpa_psk = NULL;
41d719d6
JM		 1737 }
1738 } else if (os_strcmp(buf, "wpa_psk") == 0) {
1739 os_free(bss->ssid.wpa_psk);
1740 bss->ssid.wpa_psk =
1741 os_zalloc(sizeof(struct hostapd_wpa_psk));
1742 if (bss->ssid.wpa_psk == NULL)
1743 errors++;
1744 else if (hexstr2bin(pos, bss->ssid.wpa_psk->psk,
1745 PMK_LEN) ||
1746 pos[PMK_LEN * 2] != '\0') {
1747 wpa_printf(MSG_ERROR, "Line %d: Invalid PSK "
1748 "'%s'.", line, pos);
1749 errors++;
1750 } else {
1751 bss->ssid.wpa_psk->group = 1;
31b540eb
SP		 1752 os_free(bss->ssid.wpa_passphrase);
1753 bss->ssid.wpa_passphrase = NULL;
41d719d6
JM		 1754 }
1755 } else if (os_strcmp(buf, "wpa_psk_file") == 0) {
1756 os_free(bss->ssid.wpa_psk_file);
1757 bss->ssid.wpa_psk_file = os_strdup(pos);
1758 if (!bss->ssid.wpa_psk_file) {
1759 wpa_printf(MSG_ERROR, "Line %d: allocation "
1760 "failed", line);
1761 errors++;
1762 }
1763 } else if (os_strcmp(buf, "wpa_key_mgmt") == 0) {
1764 bss->wpa_key_mgmt =
1765 hostapd_config_parse_key_mgmt(line, pos);
1766 if (bss->wpa_key_mgmt == -1)
1767 errors++;
05ab9712
MB		 1768 } else if (os_strcmp(buf, "wpa_psk_radius") == 0) {
1769 bss->wpa_psk_radius = atoi(pos);
1770 if (bss->wpa_psk_radius != PSK_RADIUS_IGNORED &&
1771 bss->wpa_psk_radius != PSK_RADIUS_ACCEPTED &&
1772 bss->wpa_psk_radius != PSK_RADIUS_REQUIRED) {
1773 wpa_printf(MSG_ERROR, "Line %d: unknown "
1774 "wpa_psk_radius %d",
1775 line, bss->wpa_psk_radius);
1776 errors++;
1777 }
41d719d6
JM		 1778 } else if (os_strcmp(buf, "wpa_pairwise") == 0) {
1779 bss->wpa_pairwise =
1780 hostapd_config_parse_cipher(line, pos);
1781 if (bss->wpa_pairwise == -1 ||
1782 bss->wpa_pairwise == 0)
1783 errors++;
1784 else if (bss->wpa_pairwise &
1785 (WPA_CIPHER_NONE | WPA_CIPHER_WEP40 |
1786 WPA_CIPHER_WEP104)) {
1787 wpa_printf(MSG_ERROR, "Line %d: unsupported "
1788 "pairwise cipher suite '%s'",
1789 bss->wpa_pairwise, pos);
1790 errors++;
1791 }
1792 } else if (os_strcmp(buf, "rsn_pairwise") == 0) {
1793 bss->rsn_pairwise =
1794 hostapd_config_parse_cipher(line, pos);
1795 if (bss->rsn_pairwise == -1 ||
1796 bss->rsn_pairwise == 0)
1797 errors++;
1798 else if (bss->rsn_pairwise &
1799 (WPA_CIPHER_NONE | WPA_CIPHER_WEP40 |
1800 WPA_CIPHER_WEP104)) {
1801 wpa_printf(MSG_ERROR, "Line %d: unsupported "
1802 "pairwise cipher suite '%s'",
1803 bss->rsn_pairwise, pos);
1804 errors++;
1805 }
1806#ifdef CONFIG_RSN_PREAUTH
1807 } else if (os_strcmp(buf, "rsn_preauth") == 0) {
1808 bss->rsn_preauth = atoi(pos);
1809 } else if (os_strcmp(buf, "rsn_preauth_interfaces") == 0) {
1810 bss->rsn_preauth_interfaces = os_strdup(pos);
1811#endif /* CONFIG_RSN_PREAUTH */
1812#ifdef CONFIG_PEERKEY
1813 } else if (os_strcmp(buf, "peerkey") == 0) {
1814 bss->peerkey = atoi(pos);
1815#endif /* CONFIG_PEERKEY */
1816#ifdef CONFIG_IEEE80211R
1817 } else if (os_strcmp(buf, "mobility_domain") == 0) {
1818 if (os_strlen(pos) != 2 * MOBILITY_DOMAIN_ID_LEN ||
1819 hexstr2bin(pos, bss->mobility_domain,
1820 MOBILITY_DOMAIN_ID_LEN) != 0) {
1821 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1822 "mobility_domain '%s'", line, pos);
1823 errors++;
ef45bc89 1824 return errors;
41d719d6
JM		 1825 }
1826 } else if (os_strcmp(buf, "r1_key_holder") == 0) {
1827 if (os_strlen(pos) != 2 * FT_R1KH_ID_LEN ||
1828 hexstr2bin(pos, bss->r1_key_holder,
1829 FT_R1KH_ID_LEN) != 0) {
1830 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1831 "r1_key_holder '%s'", line, pos);
1832 errors++;
ef45bc89 1833 return errors;
41d719d6
JM		 1834 }
1835 } else if (os_strcmp(buf, "r0_key_lifetime") == 0) {
1836 bss->r0_key_lifetime = atoi(pos);
1837 } else if (os_strcmp(buf, "reassociation_deadline") == 0) {
1838 bss->reassociation_deadline = atoi(pos);
1839 } else if (os_strcmp(buf, "r0kh") == 0) {
1840 if (add_r0kh(bss, pos) < 0) {
1841 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1842 "r0kh '%s'", line, pos);
1843 errors++;
ef45bc89 1844 return errors;
41d719d6
JM		 1845 }
1846 } else if (os_strcmp(buf, "r1kh") == 0) {
1847 if (add_r1kh(bss, pos) < 0) {
1848 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1849 "r1kh '%s'", line, pos);
1850 errors++;
ef45bc89 1851 return errors;
41d719d6
JM		 1852 }
1853 } else if (os_strcmp(buf, "pmk_r1_push") == 0) {
1854 bss->pmk_r1_push = atoi(pos);
d7956add
SP		 1855 } else if (os_strcmp(buf, "ft_over_ds") == 0) {
1856 bss->ft_over_ds = atoi(pos);
41d719d6
JM		 1857#endif /* CONFIG_IEEE80211R */
1858#ifndef CONFIG_NO_CTRL_IFACE
1859 } else if (os_strcmp(buf, "ctrl_interface") == 0) {
1860 os_free(bss->ctrl_interface);
1861 bss->ctrl_interface = os_strdup(pos);
1862 } else if (os_strcmp(buf, "ctrl_interface_group") == 0) {
1863#ifndef CONFIG_NATIVE_WINDOWS
1864 struct group *grp;
1865 char *endp;
1866 const char *group = pos;
1867
1868 grp = getgrnam(group);
1869 if (grp) {
1870 bss->ctrl_interface_gid = grp->gr_gid;
1871 bss->ctrl_interface_gid_set = 1;
1872 wpa_printf(MSG_DEBUG, "ctrl_interface_group=%d"
1873 " (from group name '%s')",
1874 bss->ctrl_interface_gid, group);
ef45bc89 1875 return errors;
41d719d6
JM		 1876 }
1877
1878 /* Group name not found - try to parse this as gid */
1879 bss->ctrl_interface_gid = strtol(group, &endp, 10);
1880 if (*group == '\0' || *endp != '\0') {
1881 wpa_printf(MSG_DEBUG, "Line %d: Invalid group "
1882 "'%s'", line, group);
1883 errors++;
ef45bc89 1884 return errors;
41d719d6
JM		 1885 }
1886 bss->ctrl_interface_gid_set = 1;
1887 wpa_printf(MSG_DEBUG, "ctrl_interface_group=%d",
1888 bss->ctrl_interface_gid);
1889#endif /* CONFIG_NATIVE_WINDOWS */
1890#endif /* CONFIG_NO_CTRL_IFACE */
1891#ifdef RADIUS_SERVER
1892 } else if (os_strcmp(buf, "radius_server_clients") == 0) {
1893 os_free(bss->radius_server_clients);
1894 bss->radius_server_clients = os_strdup(pos);
1895 } else if (os_strcmp(buf, "radius_server_auth_port") == 0) {
1896 bss->radius_server_auth_port = atoi(pos);
1897 } else if (os_strcmp(buf, "radius_server_ipv6") == 0) {
1898 bss->radius_server_ipv6 = atoi(pos);
1899#endif /* RADIUS_SERVER */
1900 } else if (os_strcmp(buf, "test_socket") == 0) {
1901 os_free(bss->test_socket);
1902 bss->test_socket = os_strdup(pos);
1903 } else if (os_strcmp(buf, "use_pae_group_addr") == 0) {
1904 bss->use_pae_group_addr = atoi(pos);
1905 } else if (os_strcmp(buf, "hw_mode") == 0) {
1906 if (os_strcmp(pos, "a") == 0)
1907 conf->hw_mode = HOSTAPD_MODE_IEEE80211A;
1908 else if (os_strcmp(pos, "b") == 0)
1909 conf->hw_mode = HOSTAPD_MODE_IEEE80211B;
1910 else if (os_strcmp(pos, "g") == 0)
1911 conf->hw_mode = HOSTAPD_MODE_IEEE80211G;
1912 else {
1913 wpa_printf(MSG_ERROR, "Line %d: unknown "
1914 "hw_mode '%s'", line, pos);
1915 errors++;
1916 }
8e5f9134
BC		 1917 } else if (os_strcmp(buf, "wps_rf_bands") == 0) {
1918 if (os_strcmp(pos, "a") == 0)
1919 bss->wps_rf_bands = WPS_RF_50GHZ;
1920 else if (os_strcmp(pos, "g") == 0 ||
1921 os_strcmp(pos, "b") == 0)
1922 bss->wps_rf_bands = WPS_RF_24GHZ;
1923 else if (os_strcmp(pos, "ag") == 0 ||
1924 os_strcmp(pos, "ga") == 0)
1925 bss->wps_rf_bands =
1926 WPS_RF_24GHZ | WPS_RF_50GHZ;
1927 else {
1928 wpa_printf(MSG_ERROR, "Line %d: unknown "
1929 "wps_rf_band '%s'", line, pos);
1930 errors++;
1931 }
41d719d6
JM		 1932 } else if (os_strcmp(buf, "channel") == 0) {
1933 conf->channel = atoi(pos);
1934 } else if (os_strcmp(buf, "beacon_int") == 0) {
1935 int val = atoi(pos);
1936 /* MIB defines range as 1..65535, but very small values
1937 * cause problems with the current implementation.
1938 * Since it is unlikely that this small numbers are
1939 * useful in real life scenarios, do not allow beacon
1940 * period to be set below 15 TU. */
1941 if (val < 15 || val > 65535) {
1942 wpa_printf(MSG_ERROR, "Line %d: invalid "
1943 "beacon_int %d (expected "
1944 "15..65535)", line, val);
1945 errors++;
1946 } else
1947 conf->beacon_int = val;
1948 } else if (os_strcmp(buf, "dtim_period") == 0) {
1949 bss->dtim_period = atoi(pos);
1950 if (bss->dtim_period < 1 || bss->dtim_period > 255) {
1951 wpa_printf(MSG_ERROR, "Line %d: invalid "
1952 "dtim_period %d",
1953 line, bss->dtim_period);
1954 errors++;
1955 }
1956 } else if (os_strcmp(buf, "rts_threshold") == 0) {
1957 conf->rts_threshold = atoi(pos);
1958 if (conf->rts_threshold < 0 ||
1959 conf->rts_threshold > 2347) {
1960 wpa_printf(MSG_ERROR, "Line %d: invalid "
1961 "rts_threshold %d",
1962 line, conf->rts_threshold);
1963 errors++;
1964 }
1965 } else if (os_strcmp(buf, "fragm_threshold") == 0) {
1966 conf->fragm_threshold = atoi(pos);
1967 if (conf->fragm_threshold < 256 ||
1968 conf->fragm_threshold > 2346) {
1969 wpa_printf(MSG_ERROR, "Line %d: invalid "
1970 "fragm_threshold %d",
1971 line, conf->fragm_threshold);
1972 errors++;
1973 }
1974 } else if (os_strcmp(buf, "send_probe_response") == 0) {
1975 int val = atoi(pos);
1976 if (val != 0 && val != 1) {
1977 wpa_printf(MSG_ERROR, "Line %d: invalid "
1978 "send_probe_response %d (expected "
1979 "0 or 1)", line, val);
1980 } else
1981 conf->send_probe_response = val;
1982 } else if (os_strcmp(buf, "supported_rates") == 0) {
1983 if (hostapd_parse_rates(&conf->supported_rates, pos)) {
1984 wpa_printf(MSG_ERROR, "Line %d: invalid rate "
1985 "list", line);
1986 errors++;
1987 }
1988 } else if (os_strcmp(buf, "basic_rates") == 0) {
1989 if (hostapd_parse_rates(&conf->basic_rates, pos)) {
1990 wpa_printf(MSG_ERROR, "Line %d: invalid rate "
1991 "list", line);
1992 errors++;
1993 }
1994 } else if (os_strcmp(buf, "preamble") == 0) {
1995 if (atoi(pos))
1996 conf->preamble = SHORT_PREAMBLE;
1997 else
1998 conf->preamble = LONG_PREAMBLE;
1999 } else if (os_strcmp(buf, "ignore_broadcast_ssid") == 0) {
2000 bss->ignore_broadcast_ssid = atoi(pos);
2001 } else if (os_strcmp(buf, "wep_default_key") == 0) {
2002 bss->ssid.wep.idx = atoi(pos);
2003 if (bss->ssid.wep.idx > 3) {
2004 wpa_printf(MSG_ERROR, "Invalid "
2005 "wep_default_key index %d",
2006 bss->ssid.wep.idx);
2007 errors++;
2008 }
2009 } else if (os_strcmp(buf, "wep_key0") == 0 ||
2010 os_strcmp(buf, "wep_key1") == 0 ||
2011 os_strcmp(buf, "wep_key2") == 0 ||
2012 os_strcmp(buf, "wep_key3") == 0) {
2013 if (hostapd_config_read_wep(&bss->ssid.wep,
2014 buf[7] - '0', pos)) {
2015 wpa_printf(MSG_ERROR, "Line %d: invalid WEP "
2016 "key '%s'", line, buf);
2017 errors++;
2018 }
2019#ifndef CONFIG_NO_VLAN
2020 } else if (os_strcmp(buf, "dynamic_vlan") == 0) {
2021 bss->ssid.dynamic_vlan = atoi(pos);
2022 } else if (os_strcmp(buf, "vlan_file") == 0) {
2023 if (hostapd_config_read_vlan_file(bss, pos)) {
2024 wpa_printf(MSG_ERROR, "Line %d: failed to "
2025 "read VLAN file '%s'", line, pos);
2026 errors++;
2027 }
2028#ifdef CONFIG_FULL_DYNAMIC_VLAN
2029 } else if (os_strcmp(buf, "vlan_tagged_interface") == 0) {
2030 bss->ssid.vlan_tagged_interface = os_strdup(pos);
2031#endif /* CONFIG_FULL_DYNAMIC_VLAN */
2032#endif /* CONFIG_NO_VLAN */
2033 } else if (os_strcmp(buf, "ap_table_max_size") == 0) {
2034 conf->ap_table_max_size = atoi(pos);
2035 } else if (os_strcmp(buf, "ap_table_expiration_time") == 0) {
2036 conf->ap_table_expiration_time = atoi(pos);
2037 } else if (os_strncmp(buf, "tx_queue_", 9) == 0) {
2038 if (hostapd_config_tx_queue(conf, buf, pos)) {
2039 wpa_printf(MSG_ERROR, "Line %d: invalid TX "
2040 "queue item", line);
2041 errors++;
2042 }
2043 } else if (os_strcmp(buf, "wme_enabled") == 0 ||
2044 os_strcmp(buf, "wmm_enabled") == 0) {
2045 bss->wmm_enabled = atoi(pos);
721abef9
YAP		 2046 } else if (os_strcmp(buf, "uapsd_advertisement_enabled") == 0) {
2047 bss->wmm_uapsd = atoi(pos);
41d719d6
JM		 2048 } else if (os_strncmp(buf, "wme_ac_", 7) == 0 ||
2049 os_strncmp(buf, "wmm_ac_", 7) == 0) {
2050 if (hostapd_config_wmm_ac(conf, buf, pos)) {
2051 wpa_printf(MSG_ERROR, "Line %d: invalid WMM "
2052 "ac item", line);
2053 errors++;
2054 }
2055 } else if (os_strcmp(buf, "bss") == 0) {
2056 if (hostapd_config_bss(conf, pos)) {
2057 wpa_printf(MSG_ERROR, "Line %d: invalid bss "
2058 "item", line);
2059 errors++;
2060 }
2061 } else if (os_strcmp(buf, "bssid") == 0) {
2062 if (hwaddr_aton(pos, bss->bssid)) {
2063 wpa_printf(MSG_ERROR, "Line %d: invalid bssid "
2064 "item", line);
2065 errors++;
2066 }
2067#ifdef CONFIG_IEEE80211W
2068 } else if (os_strcmp(buf, "ieee80211w") == 0) {
2069 bss->ieee80211w = atoi(pos);
2070 } else if (os_strcmp(buf, "assoc_sa_query_max_timeout") == 0) {
2071 bss->assoc_sa_query_max_timeout = atoi(pos);
2072 if (bss->assoc_sa_query_max_timeout == 0) {
2073 wpa_printf(MSG_ERROR, "Line %d: invalid "
2074 "assoc_sa_query_max_timeout", line);
2075 errors++;
2076 }
2077 } else if (os_strcmp(buf, "assoc_sa_query_retry_timeout") == 0)
2078 {
2079 bss->assoc_sa_query_retry_timeout = atoi(pos);
2080 if (bss->assoc_sa_query_retry_timeout == 0) {
2081 wpa_printf(MSG_ERROR, "Line %d: invalid "
2082 "assoc_sa_query_retry_timeout",
2083 line);
2084 errors++;
2085 }
2086#endif /* CONFIG_IEEE80211W */
2087#ifdef CONFIG_IEEE80211N
2088 } else if (os_strcmp(buf, "ieee80211n") == 0) {
2089 conf->ieee80211n = atoi(pos);
2090 } else if (os_strcmp(buf, "ht_capab") == 0) {
2091 if (hostapd_config_ht_capab(conf, pos) < 0) {
2092 wpa_printf(MSG_ERROR, "Line %d: invalid "
2093 "ht_capab", line);
2094 errors++;
2095 }
29448243
JM		 2096 } else if (os_strcmp(buf, "require_ht") == 0) {
2097 conf->require_ht = atoi(pos);
41d719d6
JM		 2098#endif /* CONFIG_IEEE80211N */
2099 } else if (os_strcmp(buf, "max_listen_interval") == 0) {
2100 bss->max_listen_interval = atoi(pos);
cb465555
JM		 2101 } else if (os_strcmp(buf, "disable_pmksa_caching") == 0) {
2102 bss->disable_pmksa_caching = atoi(pos);
41d719d6
JM		 2103 } else if (os_strcmp(buf, "okc") == 0) {
2104 bss->okc = atoi(pos);
2105#ifdef CONFIG_WPS
2106 } else if (os_strcmp(buf, "wps_state") == 0) {
2107 bss->wps_state = atoi(pos);
2108 if (bss->wps_state < 0 || bss->wps_state > 2) {
2109 wpa_printf(MSG_ERROR, "Line %d: invalid "
2110 "wps_state", line);
2111 errors++;
2112 }
2113 } else if (os_strcmp(buf, "ap_setup_locked") == 0) {
2114 bss->ap_setup_locked = atoi(pos);
2115 } else if (os_strcmp(buf, "uuid") == 0) {
2116 if (uuid_str2bin(pos, bss->uuid)) {
2117 wpa_printf(MSG_ERROR, "Line %d: invalid UUID",
2118 line);
2119 errors++;
2120 }
2121 } else if (os_strcmp(buf, "wps_pin_requests") == 0) {
2122 os_free(bss->wps_pin_requests);
2123 bss->wps_pin_requests = os_strdup(pos);
2124 } else if (os_strcmp(buf, "device_name") == 0) {
2125 if (os_strlen(pos) > 32) {
2126 wpa_printf(MSG_ERROR, "Line %d: Too long "
2127 "device_name", line);
2128 errors++;
2129 }
2130 os_free(bss->device_name);
2131 bss->device_name = os_strdup(pos);
2132 } else if (os_strcmp(buf, "manufacturer") == 0) {
2133 if (os_strlen(pos) > 64) {
2134 wpa_printf(MSG_ERROR, "Line %d: Too long "
2135 "manufacturer", line);
2136 errors++;
2137 }
2138 os_free(bss->manufacturer);
2139 bss->manufacturer = os_strdup(pos);
2140 } else if (os_strcmp(buf, "model_name") == 0) {
2141 if (os_strlen(pos) > 32) {
2142 wpa_printf(MSG_ERROR, "Line %d: Too long "
2143 "model_name", line);
2144 errors++;
2145 }
2146 os_free(bss->model_name);
2147 bss->model_name = os_strdup(pos);
2148 } else if (os_strcmp(buf, "model_number") == 0) {
2149 if (os_strlen(pos) > 32) {
2150 wpa_printf(MSG_ERROR, "Line %d: Too long "
2151 "model_number", line);
2152 errors++;
2153 }
2154 os_free(bss->model_number);
2155 bss->model_number = os_strdup(pos);
2156 } else if (os_strcmp(buf, "serial_number") == 0) {
2157 if (os_strlen(pos) > 32) {
2158 wpa_printf(MSG_ERROR, "Line %d: Too long "
2159 "serial_number", line);
2160 errors++;
2161 }
2162 os_free(bss->serial_number);
2163 bss->serial_number = os_strdup(pos);
2164 } else if (os_strcmp(buf, "device_type") == 0) {
2f646b6e
JB		 2165 if (wps_dev_type_str2bin(pos, bss->device_type))
2166 errors++;
41d719d6
JM		 2167 } else if (os_strcmp(buf, "config_methods") == 0) {
2168 os_free(bss->config_methods);
2169 bss->config_methods = os_strdup(pos);
2170 } else if (os_strcmp(buf, "os_version") == 0) {
2171 if (hexstr2bin(pos, bss->os_version, 4)) {
2172 wpa_printf(MSG_ERROR, "Line %d: invalid "
2173 "os_version", line);
2174 errors++;
2175 }
2176 } else if (os_strcmp(buf, "ap_pin") == 0) {
2177 os_free(bss->ap_pin);
2178 bss->ap_pin = os_strdup(pos);
2179 } else if (os_strcmp(buf, "skip_cred_build") == 0) {
2180 bss->skip_cred_build = atoi(pos);
2181 } else if (os_strcmp(buf, "extra_cred") == 0) {
2182 os_free(bss->extra_cred);
2183 bss->extra_cred =
2184 (u8 *) os_readfile(pos, &bss->extra_cred_len);
2185 if (bss->extra_cred == NULL) {
2186 wpa_printf(MSG_ERROR, "Line %d: could not "
2187 "read Credentials from '%s'",
2188 line, pos);
2189 errors++;
2190 }
2191 } else if (os_strcmp(buf, "wps_cred_processing") == 0) {
2192 bss->wps_cred_processing = atoi(pos);
2193 } else if (os_strcmp(buf, "ap_settings") == 0) {
2194 os_free(bss->ap_settings);
2195 bss->ap_settings =
2196 (u8 *) os_readfile(pos, &bss->ap_settings_len);
2197 if (bss->ap_settings == NULL) {
2198 wpa_printf(MSG_ERROR, "Line %d: could not "
2199 "read AP Settings from '%s'",
2200 line, pos);
2201 errors++;
2202 }
2203 } else if (os_strcmp(buf, "upnp_iface") == 0) {
2204 bss->upnp_iface = os_strdup(pos);
2205 } else if (os_strcmp(buf, "friendly_name") == 0) {
2206 os_free(bss->friendly_name);
2207 bss->friendly_name = os_strdup(pos);
2208 } else if (os_strcmp(buf, "manufacturer_url") == 0) {
2209 os_free(bss->manufacturer_url);
2210 bss->manufacturer_url = os_strdup(pos);
2211 } else if (os_strcmp(buf, "model_description") == 0) {
2212 os_free(bss->model_description);
2213 bss->model_description = os_strdup(pos);
2214 } else if (os_strcmp(buf, "model_url") == 0) {
2215 os_free(bss->model_url);
2216 bss->model_url = os_strdup(pos);
2217 } else if (os_strcmp(buf, "upc") == 0) {
2218 os_free(bss->upc);
2219 bss->upc = os_strdup(pos);
fa516558
JM		 2220 } else if (os_strcmp(buf, "pbc_in_m1") == 0) {
2221 bss->pbc_in_m1 = atoi(pos);
41d719d6 2222#endif /* CONFIG_WPS */
962473c1
JM		 2223#ifdef CONFIG_P2P_MANAGER
2224 } else if (os_strcmp(buf, "manage_p2p") == 0) {
2225 int manage = atoi(pos);
2226 if (manage)
2227 bss->p2p |= P2P_MANAGE;
2228 else
2229 bss->p2p &= ~P2P_MANAGE;
2230 } else if (os_strcmp(buf, "allow_cross_connection") == 0) {
2231 if (atoi(pos))
2232 bss->p2p |= P2P_ALLOW_CROSS_CONNECTION;
2233 else
2234 bss->p2p &= ~P2P_ALLOW_CROSS_CONNECTION;
2235#endif /* CONFIG_P2P_MANAGER */
0d7e5a3a
JB		 2236 } else if (os_strcmp(buf, "disassoc_low_ack") == 0) {
2237 bss->disassoc_low_ack = atoi(pos);
1161ff1e
JM		 2238 } else if (os_strcmp(buf, "tdls_prohibit") == 0) {
2239 int val = atoi(pos);
2240 if (val)
2241 bss->tdls |= TDLS_PROHIBIT;
2242 else
2243 bss->tdls &= ~TDLS_PROHIBIT;
2244 } else if (os_strcmp(buf, "tdls_prohibit_chan_switch") == 0) {
2245 int val = atoi(pos);
2246 if (val)
2247 bss->tdls |= TDLS_PROHIBIT_CHAN_SWITCH;
2248 else
2249 bss->tdls &= ~TDLS_PROHIBIT_CHAN_SWITCH;
cd9fc786
JM		 2250#ifdef CONFIG_RSN_TESTING
2251 } else if (os_strcmp(buf, "rsn_testing") == 0) {
2252 extern int rsn_testing;
2253 rsn_testing = atoi(pos);
2254#endif /* CONFIG_RSN_TESTING */
39b97072
JM		 2255 } else if (os_strcmp(buf, "time_advertisement") == 0) {
2256 bss->time_advertisement = atoi(pos);
2257 } else if (os_strcmp(buf, "time_zone") == 0) {
2258 size_t tz_len = os_strlen(pos);
2259 if (tz_len < 4 || tz_len > 255) {
2260 wpa_printf(MSG_DEBUG, "Line %d: invalid "
2261 "time_zone", line);
2262 errors++;
ef45bc89 2263 return errors;
39b97072
JM		 2264 }
2265 os_free(bss->time_zone);
2266 bss->time_zone = os_strdup(pos);
2267 if (bss->time_zone == NULL)
2268 errors++;
b83e3e93
JM		 2269#ifdef CONFIG_INTERWORKING
2270 } else if (os_strcmp(buf, "interworking") == 0) {
2271 bss->interworking = atoi(pos);
2272 } else if (os_strcmp(buf, "access_network_type") == 0) {
2273 bss->access_network_type = atoi(pos);
2274 if (bss->access_network_type < 0 ||
2275 bss->access_network_type > 15) {
2276 wpa_printf(MSG_ERROR, "Line %d: invalid "
2277 "access_network_type", line);
2278 errors++;
2279 }
2280 } else if (os_strcmp(buf, "internet") == 0) {
2281 bss->internet = atoi(pos);
2282 } else if (os_strcmp(buf, "asra") == 0) {
2283 bss->asra = atoi(pos);
2284 } else if (os_strcmp(buf, "esr") == 0) {
2285 bss->esr = atoi(pos);
2286 } else if (os_strcmp(buf, "uesa") == 0) {
2287 bss->uesa = atoi(pos);
2288 } else if (os_strcmp(buf, "venue_group") == 0) {
2289 bss->venue_group = atoi(pos);
2290 bss->venue_info_set = 1;
2291 } else if (os_strcmp(buf, "venue_type") == 0) {
2292 bss->venue_type = atoi(pos);
2293 bss->venue_info_set = 1;
2294 } else if (os_strcmp(buf, "hessid") == 0) {
2295 if (hwaddr_aton(pos, bss->hessid)) {
2296 wpa_printf(MSG_ERROR, "Line %d: invalid "
2297 "hessid", line);
2298 errors++;
2299 }
4b2a77ab
JM		 2300 } else if (os_strcmp(buf, "roaming_consortium") == 0) {
2301 if (parse_roaming_consortium(bss, pos, line) < 0)
2302 errors++;
648cc711
JM		 2303 } else if (os_strcmp(buf, "venue_name") == 0) {
2304 if (parse_venue_name(bss, pos, line) < 0)
2305 errors++;
dca30c3f
JK		 2306 } else if (os_strcmp(buf, "gas_frag_limit") == 0) {
2307 bss->gas_frag_limit = atoi(pos);
2308 } else if (os_strcmp(buf, "gas_comeback_delay") == 0) {
2309 bss->gas_comeback_delay = atoi(pos);
b83e3e93 2310#endif /* CONFIG_INTERWORKING */
505a3694
JM		 2311#ifdef CONFIG_RADIUS_TEST
2312 } else if (os_strcmp(buf, "dump_msk_file") == 0) {
2313 os_free(bss->dump_msk_file);
2314 bss->dump_msk_file = os_strdup(pos);
2315#endif /* CONFIG_RADIUS_TEST */
41d719d6
JM		 2316 } else {
2317 wpa_printf(MSG_ERROR, "Line %d: unknown configuration "
2318 "item '%s'", line, buf);
2319 errors++;
2320 }
2321 }
2322
ef45bc89
SP		 2323 return errors;
2324}
2325
2326
a7f5b74d
JM		 2327static void hostapd_set_security_params(struct hostapd_bss_config *bss)
2328{
2329 int pairwise;
2330
2331 if (bss->individual_wep_key_len == 0) {
2332 /* individual keys are not use; can use key idx0 for
2333 * broadcast keys */
2334 bss->broadcast_key_idx_min = 0;
2335 }
2336
2337 /* Select group cipher based on the enabled pairwise cipher
2338 * suites */
2339 pairwise = 0;
2340 if (bss->wpa & 1)
2341 pairwise |= bss->wpa_pairwise;
2342 if (bss->wpa & 2) {
2343 if (bss->rsn_pairwise == 0)
2344 bss->rsn_pairwise = bss->wpa_pairwise;
2345 pairwise |= bss->rsn_pairwise;
2346 }
2347 if (pairwise & WPA_CIPHER_TKIP)
2348 bss->wpa_group = WPA_CIPHER_TKIP;
2349 else
2350 bss->wpa_group = WPA_CIPHER_CCMP;
2351
2352 bss->radius->auth_server = bss->radius->auth_servers;
2353 bss->radius->acct_server = bss->radius->acct_servers;
2354
2355 if (bss->wpa && bss->ieee802_1x) {
2356 bss->ssid.security_policy = SECURITY_WPA;
2357 } else if (bss->wpa) {
2358 bss->ssid.security_policy = SECURITY_WPA_PSK;
2359 } else if (bss->ieee802_1x) {
2360 int cipher = WPA_CIPHER_NONE;
2361 bss->ssid.security_policy = SECURITY_IEEE_802_1X;
2362 bss->ssid.wep.default_len = bss->default_wep_key_len;
2363 if (bss->default_wep_key_len)
2364 cipher = bss->default_wep_key_len >= 13 ?
2365 WPA_CIPHER_WEP104 : WPA_CIPHER_WEP40;
2366 bss->wpa_group = cipher;
2367 bss->wpa_pairwise = cipher;
2368 bss->rsn_pairwise = cipher;
2369 } else if (bss->ssid.wep.keys_set) {
2370 int cipher = WPA_CIPHER_WEP40;
2371 if (bss->ssid.wep.len[0] >= 13)
2372 cipher = WPA_CIPHER_WEP104;
2373 bss->ssid.security_policy = SECURITY_STATIC_WEP;
2374 bss->wpa_group = cipher;
2375 bss->wpa_pairwise = cipher;
2376 bss->rsn_pairwise = cipher;
2377 } else {
2378 bss->ssid.security_policy = SECURITY_PLAINTEXT;
2379 bss->wpa_group = WPA_CIPHER_NONE;
2380 bss->wpa_pairwise = WPA_CIPHER_NONE;
2381 bss->rsn_pairwise = WPA_CIPHER_NONE;
2382 }
2383}
2384
2385
ef45bc89
SP		 2386/**
2387 * hostapd_config_read - Read and parse a configuration file
2388 * @fname: Configuration file name (including path, if needed)
2389 * Returns: Allocated configuration data structure
2390 */
2391struct hostapd_config * hostapd_config_read(const char *fname)
2392{
2393 struct hostapd_config *conf;
2394 struct hostapd_bss_config *bss;
2395 FILE *f;
2396 char buf[256], *pos;
2397 int line = 0;
2398 int errors = 0;
ef45bc89
SP		 2399 size_t i;
2400
2401 f = fopen(fname, "r");
2402 if (f == NULL) {
2403 wpa_printf(MSG_ERROR, "Could not open configuration file '%s' "
2404 "for reading.", fname);
2405 return NULL;
2406 }
2407
2408 conf = hostapd_config_defaults();
2409 if (conf == NULL) {
2410 fclose(f);
2411 return NULL;
2412 }
2413
2414 /* set default driver based on configuration */
2415 conf->driver = wpa_drivers[0];
2416 if (conf->driver == NULL) {
2417 wpa_printf(MSG_ERROR, "No driver wrappers registered!");
2418 hostapd_config_free(conf);
2419 fclose(f);
2420 return NULL;
2421 }
2422
2423 bss = conf->last_bss = conf->bss;
2424
2425 while (fgets(buf, sizeof(buf), f)) {
2426 bss = conf->last_bss;
2427 line++;
2428
2429 if (buf[0] == '#')
2430 continue;
2431 pos = buf;
2432 while (*pos != '\0') {
2433 if (*pos == '\n') {
2434 *pos = '\0';
2435 break;
2436 }
2437 pos++;
2438 }
2439 if (buf[0] == '\0')
2440 continue;
2441
2442 pos = os_strchr(buf, '=');
2443 if (pos == NULL) {
2444 wpa_printf(MSG_ERROR, "Line %d: invalid line '%s'",
2445 line, buf);
2446 errors++;
2447 continue;
2448 }
2449 *pos = '\0';
2450 pos++;
2451 errors += hostapd_config_fill(conf, bss, buf, pos, line);
2452 }
2453
41d719d6
JM		 2454 fclose(f);
2455
a7f5b74d
JM		 2456 for (i = 0; i < conf->num_bss; i++)
2457 hostapd_set_security_params(&conf->bss[i]);
41d719d6
JM		 2458
2459 if (hostapd_config_check(conf))
2460 errors++;
2461
ae6e1bee 2462#ifndef WPA_IGNORE_CONFIG_ERRORS
41d719d6
JM		 2463 if (errors) {
2464 wpa_printf(MSG_ERROR, "%d errors found in configuration file "
2465 "'%s'", errors, fname);
2466 hostapd_config_free(conf);
2467 conf = NULL;
2468 }
ae6e1bee 2469#endif /* WPA_IGNORE_CONFIG_ERRORS */
41d719d6
JM		 2470
2471 return conf;
2472}
31b79e11
SP		 2473
2474
2475int hostapd_set_iface(struct hostapd_config *conf,
2476 struct hostapd_bss_config *bss, char *field, char *value)
2477{
4929898d 2478 int errors;
31b79e11
SP		 2479 size_t i;
2480
2481 errors = hostapd_config_fill(conf, bss, field, value, 0);
2482 if (errors) {
2483 wpa_printf(MSG_INFO, "Failed to set configuration field '%s' "
2484 "to value '%s'", field, value);
2485 return -1;
2486 }
2487
2488 for (i = 0; i < conf->num_bss; i++)
2489 hostapd_set_security_params(&conf->bss[i]);
2490
2491 if (hostapd_config_check(conf)) {
2492 wpa_printf(MSG_ERROR, "Configuration check failed");
2493 errors++;
2494 }
2495
2496 return 0;
2497}
Unnamed repository; edit this file 'description' to name the repository.