2 * WPA Supplicant / Configuration parser and common functions
3 * Copyright (c) 2003-2019, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
12 #include "utils/uuid.h"
13 #include "utils/ip_addr.h"
14 #include "common/ieee802_1x_defs.h"
15 #include "common/sae.h"
16 #include "crypto/sha1.h"
17 #include "rsn_supp/wpa.h"
18 #include "eap_peer/eap.h"
24 #if !defined(CONFIG_CTRL_IFACE) && defined(CONFIG_NO_CONFIG_WRITE)
25 #define NO_CONFIG_WRITE
29 * Structure for network configuration parsing. This data is used to implement
30 * a generic parser for each network block variable. The table of configuration
31 * variables is defined below in this file (ssid_fields[]).
34 /* Configuration variable name */
37 /* Parser function for this variable. The parser functions return 0 or 1
38 * to indicate success. Value 0 indicates that the parameter value may
39 * have changed while value 1 means that the value did not change.
40 * Error cases (failure to parse the string) are indicated by returning
42 int (*parser
)(const struct parse_data
*data
, struct wpa_ssid
*ssid
,
43 int line
, const char *value
);
45 #ifndef NO_CONFIG_WRITE
46 /* Writer function (i.e., to get the variable in text format from
47 * internal presentation). */
48 char * (*writer
)(const struct parse_data
*data
, struct wpa_ssid
*ssid
);
49 #endif /* NO_CONFIG_WRITE */
51 /* Variable specific parameters for the parser. */
52 void *param1
, *param2
, *param3
, *param4
;
54 /* 0 = this variable can be included in debug output and ctrl_iface
55 * 1 = this variable contains key/private data and it must not be
56 * included in debug output unless explicitly requested. In
57 * addition, this variable will not be readable through the
64 static int wpa_config_parse_str(const struct parse_data
*data
,
65 struct wpa_ssid
*ssid
,
66 int line
, const char *value
)
68 size_t res_len
, *dst_len
, prev_len
;
71 if (os_strcmp(value
, "NULL") == 0) {
72 wpa_printf(MSG_DEBUG
, "Unset configuration string '%s'",
79 tmp
= wpa_config_parse_string(value
, &res_len
);
81 wpa_printf(MSG_ERROR
, "Line %d: failed to parse %s '%s'.",
83 data
->key_data
? "[KEY DATA REMOVED]" : value
);
88 wpa_hexdump_ascii_key(MSG_MSGDUMP
, data
->name
,
91 wpa_hexdump_ascii(MSG_MSGDUMP
, data
->name
,
95 if (data
->param3
&& res_len
< (size_t) data
->param3
) {
96 wpa_printf(MSG_ERROR
, "Line %d: too short %s (len=%lu "
97 "min_len=%ld)", line
, data
->name
,
98 (unsigned long) res_len
, (long) data
->param3
);
103 if (data
->param4
&& res_len
> (size_t) data
->param4
) {
104 wpa_printf(MSG_ERROR
, "Line %d: too long %s (len=%lu "
105 "max_len=%ld)", line
, data
->name
,
106 (unsigned long) res_len
, (long) data
->param4
);
112 dst
= (char **) (((u8
*) ssid
) + (long) data
->param1
);
113 dst_len
= (size_t *) (((u8
*) ssid
) + (long) data
->param2
);
118 prev_len
= os_strlen(*dst
);
121 if ((*dst
== NULL
&& tmp
== NULL
) ||
122 (*dst
&& tmp
&& prev_len
== res_len
&&
123 os_memcmp(*dst
, tmp
, res_len
) == 0)) {
124 /* No change to the previously configured value */
138 #ifndef NO_CONFIG_WRITE
139 static char * wpa_config_write_string_ascii(const u8
*value
, size_t len
)
143 buf
= os_malloc(len
+ 3);
147 os_memcpy(buf
+ 1, value
, len
);
155 static char * wpa_config_write_string_hex(const u8
*value
, size_t len
)
159 buf
= os_zalloc(2 * len
+ 1);
162 wpa_snprintf_hex(buf
, 2 * len
+ 1, value
, len
);
168 static char * wpa_config_write_string(const u8
*value
, size_t len
)
173 if (is_hex(value
, len
))
174 return wpa_config_write_string_hex(value
, len
);
176 return wpa_config_write_string_ascii(value
, len
);
180 static char * wpa_config_write_str(const struct parse_data
*data
,
181 struct wpa_ssid
*ssid
)
186 src
= (char **) (((u8
*) ssid
) + (long) data
->param1
);
191 len
= *((size_t *) (((u8
*) ssid
) + (long) data
->param2
));
193 len
= os_strlen(*src
);
195 return wpa_config_write_string((const u8
*) *src
, len
);
197 #endif /* NO_CONFIG_WRITE */
200 static int wpa_config_parse_int(const struct parse_data
*data
,
201 struct wpa_ssid
*ssid
,
202 int line
, const char *value
)
207 dst
= (int *) (((u8
*) ssid
) + (long) data
->param1
);
208 val
= strtol(value
, &end
, 0);
210 wpa_printf(MSG_ERROR
, "Line %d: invalid number \"%s\"",
218 wpa_printf(MSG_MSGDUMP
, "%s=%d (0x%x)", data
->name
, *dst
, *dst
);
220 if (data
->param3
&& *dst
< (long) data
->param3
) {
221 wpa_printf(MSG_ERROR
, "Line %d: too small %s (value=%d "
222 "min_value=%ld)", line
, data
->name
, *dst
,
223 (long) data
->param3
);
224 *dst
= (long) data
->param3
;
228 if (data
->param4
&& *dst
> (long) data
->param4
) {
229 wpa_printf(MSG_ERROR
, "Line %d: too large %s (value=%d "
230 "max_value=%ld)", line
, data
->name
, *dst
,
231 (long) data
->param4
);
232 *dst
= (long) data
->param4
;
240 #ifndef NO_CONFIG_WRITE
241 static char * wpa_config_write_int(const struct parse_data
*data
,
242 struct wpa_ssid
*ssid
)
247 src
= (int *) (((u8
*) ssid
) + (long) data
->param1
);
249 value
= os_malloc(20);
252 res
= os_snprintf(value
, 20, "%d", *src
);
253 if (os_snprintf_error(20, res
)) {
257 value
[20 - 1] = '\0';
260 #endif /* NO_CONFIG_WRITE */
263 static int wpa_config_parse_addr_list(const struct parse_data
*data
,
264 int line
, const char *value
,
265 u8
**list
, size_t *num
, char *name
,
266 u8 abort_on_error
, u8 masked
)
269 u8
*buf
, *n
, addr
[2 * ETH_ALEN
];
276 while (pos
&& *pos
) {
280 if (hwaddr_masked_aton(pos
, addr
, &addr
[ETH_ALEN
], masked
)) {
281 if (abort_on_error
|| count
== 0) {
282 wpa_printf(MSG_ERROR
,
283 "Line %d: Invalid %s address '%s'",
288 /* continue anyway since this could have been from a
289 * truncated configuration file line */
291 "Line %d: Ignore likely truncated %s address '%s'",
294 n
= os_realloc_array(buf
, count
+ 1, 2 * ETH_ALEN
);
300 os_memmove(buf
+ 2 * ETH_ALEN
, buf
,
301 count
* 2 * ETH_ALEN
);
302 os_memcpy(buf
, addr
, 2 * ETH_ALEN
);
304 wpa_printf(MSG_MSGDUMP
,
305 "%s: addr=" MACSTR
" mask=" MACSTR
,
307 MAC2STR(&addr
[ETH_ALEN
]));
310 pos
= os_strchr(pos
, ' ');
321 #ifndef NO_CONFIG_WRITE
322 static char * wpa_config_write_addr_list(const struct parse_data
*data
,
323 const u8
*list
, size_t num
, char *name
)
325 char *value
, *end
, *pos
;
329 if (list
== NULL
|| num
== 0)
332 value
= os_malloc(2 * 20 * num
);
336 end
= value
+ 2 * 20 * num
;
338 for (i
= num
; i
> 0; i
--) {
339 const u8
*a
= list
+ (i
- 1) * 2 * ETH_ALEN
;
340 const u8
*m
= a
+ ETH_ALEN
;
344 res
= hwaddr_mask_txt(pos
, end
- pos
, a
, m
);
354 #endif /* NO_CONFIG_WRITE */
356 static int wpa_config_parse_bssid(const struct parse_data
*data
,
357 struct wpa_ssid
*ssid
, int line
,
360 if (value
[0] == '\0' || os_strcmp(value
, "\"\"") == 0 ||
361 os_strcmp(value
, "any") == 0) {
363 wpa_printf(MSG_MSGDUMP
, "BSSID any");
366 if (hwaddr_aton(value
, ssid
->bssid
)) {
367 wpa_printf(MSG_ERROR
, "Line %d: Invalid BSSID '%s'.",
372 wpa_hexdump(MSG_MSGDUMP
, "BSSID", ssid
->bssid
, ETH_ALEN
);
377 #ifndef NO_CONFIG_WRITE
378 static char * wpa_config_write_bssid(const struct parse_data
*data
,
379 struct wpa_ssid
*ssid
)
384 if (!ssid
->bssid_set
)
387 value
= os_malloc(20);
390 res
= os_snprintf(value
, 20, MACSTR
, MAC2STR(ssid
->bssid
));
391 if (os_snprintf_error(20, res
)) {
395 value
[20 - 1] = '\0';
398 #endif /* NO_CONFIG_WRITE */
401 static int wpa_config_parse_bssid_hint(const struct parse_data
*data
,
402 struct wpa_ssid
*ssid
, int line
,
405 if (value
[0] == '\0' || os_strcmp(value
, "\"\"") == 0 ||
406 os_strcmp(value
, "any") == 0) {
407 ssid
->bssid_hint_set
= 0;
408 wpa_printf(MSG_MSGDUMP
, "BSSID hint any");
411 if (hwaddr_aton(value
, ssid
->bssid_hint
)) {
412 wpa_printf(MSG_ERROR
, "Line %d: Invalid BSSID hint '%s'.",
416 ssid
->bssid_hint_set
= 1;
417 wpa_hexdump(MSG_MSGDUMP
, "BSSID hint", ssid
->bssid_hint
, ETH_ALEN
);
422 #ifndef NO_CONFIG_WRITE
423 static char * wpa_config_write_bssid_hint(const struct parse_data
*data
,
424 struct wpa_ssid
*ssid
)
429 if (!ssid
->bssid_hint_set
)
432 value
= os_malloc(20);
435 res
= os_snprintf(value
, 20, MACSTR
, MAC2STR(ssid
->bssid_hint
));
436 if (os_snprintf_error(20, res
)) {
442 #endif /* NO_CONFIG_WRITE */
445 static int wpa_config_parse_bssid_blacklist(const struct parse_data
*data
,
446 struct wpa_ssid
*ssid
, int line
,
449 return wpa_config_parse_addr_list(data
, line
, value
,
450 &ssid
->bssid_blacklist
,
451 &ssid
->num_bssid_blacklist
,
452 "bssid_blacklist", 1, 1);
456 #ifndef NO_CONFIG_WRITE
457 static char * wpa_config_write_bssid_blacklist(const struct parse_data
*data
,
458 struct wpa_ssid
*ssid
)
460 return wpa_config_write_addr_list(data
, ssid
->bssid_blacklist
,
461 ssid
->num_bssid_blacklist
,
464 #endif /* NO_CONFIG_WRITE */
467 static int wpa_config_parse_bssid_whitelist(const struct parse_data
*data
,
468 struct wpa_ssid
*ssid
, int line
,
471 return wpa_config_parse_addr_list(data
, line
, value
,
472 &ssid
->bssid_whitelist
,
473 &ssid
->num_bssid_whitelist
,
474 "bssid_whitelist", 1, 1);
478 #ifndef NO_CONFIG_WRITE
479 static char * wpa_config_write_bssid_whitelist(const struct parse_data
*data
,
480 struct wpa_ssid
*ssid
)
482 return wpa_config_write_addr_list(data
, ssid
->bssid_whitelist
,
483 ssid
->num_bssid_whitelist
,
486 #endif /* NO_CONFIG_WRITE */
489 static int wpa_config_parse_psk(const struct parse_data
*data
,
490 struct wpa_ssid
*ssid
, int line
,
493 #ifdef CONFIG_EXT_PASSWORD
494 if (os_strncmp(value
, "ext:", 4) == 0) {
495 str_clear_free(ssid
->passphrase
);
496 ssid
->passphrase
= NULL
;
498 os_free(ssid
->ext_psk
);
499 ssid
->ext_psk
= os_strdup(value
+ 4);
500 if (ssid
->ext_psk
== NULL
)
502 wpa_printf(MSG_DEBUG
, "PSK: External password '%s'",
506 #endif /* CONFIG_EXT_PASSWORD */
509 #ifndef CONFIG_NO_PBKDF2
514 pos
= os_strrchr(value
, '"');
518 len
= os_strlen(value
);
519 if (len
< 8 || len
> 63) {
520 wpa_printf(MSG_ERROR
, "Line %d: Invalid passphrase "
521 "length %lu (expected: 8..63) '%s'.",
522 line
, (unsigned long) len
, value
);
525 wpa_hexdump_ascii_key(MSG_MSGDUMP
, "PSK (ASCII passphrase)",
527 if (has_ctrl_char((u8
*) value
, len
)) {
528 wpa_printf(MSG_ERROR
,
529 "Line %d: Invalid passphrase character",
533 if (ssid
->passphrase
&& os_strlen(ssid
->passphrase
) == len
&&
534 os_memcmp(ssid
->passphrase
, value
, len
) == 0) {
535 /* No change to the previously configured value */
539 str_clear_free(ssid
->passphrase
);
540 ssid
->passphrase
= dup_binstr(value
, len
);
541 if (ssid
->passphrase
== NULL
)
544 #else /* CONFIG_NO_PBKDF2 */
545 wpa_printf(MSG_ERROR
, "Line %d: ASCII passphrase not "
548 #endif /* CONFIG_NO_PBKDF2 */
551 if (hexstr2bin(value
, ssid
->psk
, PMK_LEN
) ||
552 value
[PMK_LEN
* 2] != '\0') {
553 wpa_printf(MSG_ERROR
, "Line %d: Invalid PSK '%s'.",
558 str_clear_free(ssid
->passphrase
);
559 ssid
->passphrase
= NULL
;
562 wpa_hexdump_key(MSG_MSGDUMP
, "PSK", ssid
->psk
, PMK_LEN
);
567 #ifndef NO_CONFIG_WRITE
568 static char * wpa_config_write_psk(const struct parse_data
*data
,
569 struct wpa_ssid
*ssid
)
571 #ifdef CONFIG_EXT_PASSWORD
573 size_t len
= 4 + os_strlen(ssid
->ext_psk
) + 1;
574 char *buf
= os_malloc(len
);
579 res
= os_snprintf(buf
, len
, "ext:%s", ssid
->ext_psk
);
580 if (os_snprintf_error(len
, res
)) {
586 #endif /* CONFIG_EXT_PASSWORD */
588 if (ssid
->passphrase
)
589 return wpa_config_write_string_ascii(
590 (const u8
*) ssid
->passphrase
,
591 os_strlen(ssid
->passphrase
));
594 return wpa_config_write_string_hex(ssid
->psk
, PMK_LEN
);
598 #endif /* NO_CONFIG_WRITE */
601 static int wpa_config_parse_proto(const struct parse_data
*data
,
602 struct wpa_ssid
*ssid
, int line
,
605 int val
= 0, last
, errors
= 0;
606 char *start
, *end
, *buf
;
608 buf
= os_strdup(value
);
613 while (*start
!= '\0') {
614 while (*start
== ' ' || *start
== '\t')
619 while (*end
!= ' ' && *end
!= '\t' && *end
!= '\0')
623 if (os_strcmp(start
, "WPA") == 0)
624 val
|= WPA_PROTO_WPA
;
625 else if (os_strcmp(start
, "RSN") == 0 ||
626 os_strcmp(start
, "WPA2") == 0)
627 val
|= WPA_PROTO_RSN
;
628 else if (os_strcmp(start
, "OSEN") == 0)
629 val
|= WPA_PROTO_OSEN
;
631 wpa_printf(MSG_ERROR
, "Line %d: invalid proto '%s'",
643 wpa_printf(MSG_ERROR
,
644 "Line %d: no proto values configured.", line
);
648 if (!errors
&& ssid
->proto
== val
)
650 wpa_printf(MSG_MSGDUMP
, "proto: 0x%x", val
);
652 return errors
? -1 : 0;
656 #ifndef NO_CONFIG_WRITE
657 static char * wpa_config_write_proto(const struct parse_data
*data
,
658 struct wpa_ssid
*ssid
)
661 char *buf
, *pos
, *end
;
663 pos
= buf
= os_zalloc(20);
668 if (ssid
->proto
& WPA_PROTO_WPA
) {
669 ret
= os_snprintf(pos
, end
- pos
, "%sWPA",
670 pos
== buf
? "" : " ");
671 if (os_snprintf_error(end
- pos
, ret
))
676 if (ssid
->proto
& WPA_PROTO_RSN
) {
677 ret
= os_snprintf(pos
, end
- pos
, "%sRSN",
678 pos
== buf
? "" : " ");
679 if (os_snprintf_error(end
- pos
, ret
))
684 if (ssid
->proto
& WPA_PROTO_OSEN
) {
685 ret
= os_snprintf(pos
, end
- pos
, "%sOSEN",
686 pos
== buf
? "" : " ");
687 if (os_snprintf_error(end
- pos
, ret
))
699 #endif /* NO_CONFIG_WRITE */
702 static int wpa_config_parse_key_mgmt(const struct parse_data
*data
,
703 struct wpa_ssid
*ssid
, int line
,
706 int val
= 0, last
, errors
= 0;
707 char *start
, *end
, *buf
;
709 buf
= os_strdup(value
);
714 while (*start
!= '\0') {
715 while (*start
== ' ' || *start
== '\t')
720 while (*end
!= ' ' && *end
!= '\t' && *end
!= '\0')
724 if (os_strcmp(start
, "WPA-PSK") == 0)
725 val
|= WPA_KEY_MGMT_PSK
;
726 else if (os_strcmp(start
, "WPA-EAP") == 0)
727 val
|= WPA_KEY_MGMT_IEEE8021X
;
728 else if (os_strcmp(start
, "IEEE8021X") == 0)
729 val
|= WPA_KEY_MGMT_IEEE8021X_NO_WPA
;
730 else if (os_strcmp(start
, "NONE") == 0)
731 val
|= WPA_KEY_MGMT_NONE
;
732 else if (os_strcmp(start
, "WPA-NONE") == 0)
733 val
|= WPA_KEY_MGMT_WPA_NONE
;
734 #ifdef CONFIG_IEEE80211R
735 else if (os_strcmp(start
, "FT-PSK") == 0)
736 val
|= WPA_KEY_MGMT_FT_PSK
;
737 else if (os_strcmp(start
, "FT-EAP") == 0)
738 val
|= WPA_KEY_MGMT_FT_IEEE8021X
;
740 else if (os_strcmp(start
, "FT-EAP-SHA384") == 0)
741 val
|= WPA_KEY_MGMT_FT_IEEE8021X_SHA384
;
742 #endif /* CONFIG_SHA384 */
743 #endif /* CONFIG_IEEE80211R */
744 else if (os_strcmp(start
, "WPA-PSK-SHA256") == 0)
745 val
|= WPA_KEY_MGMT_PSK_SHA256
;
746 else if (os_strcmp(start
, "WPA-EAP-SHA256") == 0)
747 val
|= WPA_KEY_MGMT_IEEE8021X_SHA256
;
749 else if (os_strcmp(start
, "WPS") == 0)
750 val
|= WPA_KEY_MGMT_WPS
;
751 #endif /* CONFIG_WPS */
753 else if (os_strcmp(start
, "SAE") == 0)
754 val
|= WPA_KEY_MGMT_SAE
;
755 else if (os_strcmp(start
, "FT-SAE") == 0)
756 val
|= WPA_KEY_MGMT_FT_SAE
;
757 #endif /* CONFIG_SAE */
759 else if (os_strcmp(start
, "OSEN") == 0)
760 val
|= WPA_KEY_MGMT_OSEN
;
761 #endif /* CONFIG_HS20 */
763 else if (os_strcmp(start
, "WPA-EAP-SUITE-B") == 0)
764 val
|= WPA_KEY_MGMT_IEEE8021X_SUITE_B
;
765 #endif /* CONFIG_SUITEB */
766 #ifdef CONFIG_SUITEB192
767 else if (os_strcmp(start
, "WPA-EAP-SUITE-B-192") == 0)
768 val
|= WPA_KEY_MGMT_IEEE8021X_SUITE_B_192
;
769 #endif /* CONFIG_SUITEB192 */
771 else if (os_strcmp(start
, "FILS-SHA256") == 0)
772 val
|= WPA_KEY_MGMT_FILS_SHA256
;
773 else if (os_strcmp(start
, "FILS-SHA384") == 0)
774 val
|= WPA_KEY_MGMT_FILS_SHA384
;
775 #ifdef CONFIG_IEEE80211R
776 else if (os_strcmp(start
, "FT-FILS-SHA256") == 0)
777 val
|= WPA_KEY_MGMT_FT_FILS_SHA256
;
778 else if (os_strcmp(start
, "FT-FILS-SHA384") == 0)
779 val
|= WPA_KEY_MGMT_FT_FILS_SHA384
;
780 #endif /* CONFIG_IEEE80211R */
781 #endif /* CONFIG_FILS */
783 else if (os_strcmp(start
, "OWE") == 0)
784 val
|= WPA_KEY_MGMT_OWE
;
785 #endif /* CONFIG_OWE */
787 else if (os_strcmp(start
, "DPP") == 0)
788 val
|= WPA_KEY_MGMT_DPP
;
789 #endif /* CONFIG_DPP */
791 wpa_printf(MSG_ERROR
, "Line %d: invalid key_mgmt '%s'",
803 wpa_printf(MSG_ERROR
,
804 "Line %d: no key_mgmt values configured.", line
);
808 if (!errors
&& ssid
->key_mgmt
== val
)
810 wpa_printf(MSG_MSGDUMP
, "key_mgmt: 0x%x", val
);
811 ssid
->key_mgmt
= val
;
812 return errors
? -1 : 0;
816 #ifndef NO_CONFIG_WRITE
817 static char * wpa_config_write_key_mgmt(const struct parse_data
*data
,
818 struct wpa_ssid
*ssid
)
820 char *buf
, *pos
, *end
;
823 pos
= buf
= os_zalloc(100);
828 if (ssid
->key_mgmt
& WPA_KEY_MGMT_PSK
) {
829 ret
= os_snprintf(pos
, end
- pos
, "%sWPA-PSK",
830 pos
== buf
? "" : " ");
831 if (os_snprintf_error(end
- pos
, ret
)) {
838 if (ssid
->key_mgmt
& WPA_KEY_MGMT_IEEE8021X
) {
839 ret
= os_snprintf(pos
, end
- pos
, "%sWPA-EAP",
840 pos
== buf
? "" : " ");
841 if (os_snprintf_error(end
- pos
, ret
)) {
848 if (ssid
->key_mgmt
& WPA_KEY_MGMT_IEEE8021X_NO_WPA
) {
849 ret
= os_snprintf(pos
, end
- pos
, "%sIEEE8021X",
850 pos
== buf
? "" : " ");
851 if (os_snprintf_error(end
- pos
, ret
)) {
858 if (ssid
->key_mgmt
& WPA_KEY_MGMT_NONE
) {
859 ret
= os_snprintf(pos
, end
- pos
, "%sNONE",
860 pos
== buf
? "" : " ");
861 if (os_snprintf_error(end
- pos
, ret
)) {
868 if (ssid
->key_mgmt
& WPA_KEY_MGMT_WPA_NONE
) {
869 ret
= os_snprintf(pos
, end
- pos
, "%sWPA-NONE",
870 pos
== buf
? "" : " ");
871 if (os_snprintf_error(end
- pos
, ret
)) {
878 #ifdef CONFIG_IEEE80211R
879 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FT_PSK
) {
880 ret
= os_snprintf(pos
, end
- pos
, "%sFT-PSK",
881 pos
== buf
? "" : " ");
882 if (os_snprintf_error(end
- pos
, ret
)) {
889 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FT_IEEE8021X
) {
890 ret
= os_snprintf(pos
, end
- pos
, "%sFT-EAP",
891 pos
== buf
? "" : " ");
892 if (os_snprintf_error(end
- pos
, ret
)) {
900 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FT_IEEE8021X_SHA384
) {
901 ret
= os_snprintf(pos
, end
- pos
, "%sFT-EAP-SHA384",
902 pos
== buf
? "" : " ");
903 if (os_snprintf_error(end
- pos
, ret
)) {
909 #endif /* CONFIG_SHA384 */
910 #endif /* CONFIG_IEEE80211R */
912 if (ssid
->key_mgmt
& WPA_KEY_MGMT_PSK_SHA256
) {
913 ret
= os_snprintf(pos
, end
- pos
, "%sWPA-PSK-SHA256",
914 pos
== buf
? "" : " ");
915 if (os_snprintf_error(end
- pos
, ret
)) {
922 if (ssid
->key_mgmt
& WPA_KEY_MGMT_IEEE8021X_SHA256
) {
923 ret
= os_snprintf(pos
, end
- pos
, "%sWPA-EAP-SHA256",
924 pos
== buf
? "" : " ");
925 if (os_snprintf_error(end
- pos
, ret
)) {
933 if (ssid
->key_mgmt
& WPA_KEY_MGMT_WPS
) {
934 ret
= os_snprintf(pos
, end
- pos
, "%sWPS",
935 pos
== buf
? "" : " ");
936 if (os_snprintf_error(end
- pos
, ret
)) {
942 #endif /* CONFIG_WPS */
945 if (ssid
->key_mgmt
& WPA_KEY_MGMT_SAE
) {
946 ret
= os_snprintf(pos
, end
- pos
, "%sSAE",
947 pos
== buf
? "" : " ");
948 if (os_snprintf_error(end
- pos
, ret
)) {
955 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FT_SAE
) {
956 ret
= os_snprintf(pos
, end
- pos
, "%sFT-SAE",
957 pos
== buf
? "" : " ");
958 if (os_snprintf_error(end
- pos
, ret
)) {
964 #endif /* CONFIG_SAE */
967 if (ssid
->key_mgmt
& WPA_KEY_MGMT_OSEN
) {
968 ret
= os_snprintf(pos
, end
- pos
, "%sOSEN",
969 pos
== buf
? "" : " ");
970 if (os_snprintf_error(end
- pos
, ret
)) {
976 #endif /* CONFIG_HS20 */
979 if (ssid
->key_mgmt
& WPA_KEY_MGMT_IEEE8021X_SUITE_B
) {
980 ret
= os_snprintf(pos
, end
- pos
, "%sWPA-EAP-SUITE-B",
981 pos
== buf
? "" : " ");
982 if (os_snprintf_error(end
- pos
, ret
)) {
988 #endif /* CONFIG_SUITEB */
990 #ifdef CONFIG_SUITEB192
991 if (ssid
->key_mgmt
& WPA_KEY_MGMT_IEEE8021X_SUITE_B_192
) {
992 ret
= os_snprintf(pos
, end
- pos
, "%sWPA-EAP-SUITE-B-192",
993 pos
== buf
? "" : " ");
994 if (os_snprintf_error(end
- pos
, ret
)) {
1000 #endif /* CONFIG_SUITEB192 */
1003 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FILS_SHA256
) {
1004 ret
= os_snprintf(pos
, end
- pos
, "%sFILS-SHA256",
1005 pos
== buf
? "" : " ");
1006 if (os_snprintf_error(end
- pos
, ret
)) {
1012 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FILS_SHA384
) {
1013 ret
= os_snprintf(pos
, end
- pos
, "%sFILS-SHA384",
1014 pos
== buf
? "" : " ");
1015 if (os_snprintf_error(end
- pos
, ret
)) {
1021 #ifdef CONFIG_IEEE80211R
1022 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FT_FILS_SHA256
) {
1023 ret
= os_snprintf(pos
, end
- pos
, "%sFT-FILS-SHA256",
1024 pos
== buf
? "" : " ");
1025 if (os_snprintf_error(end
- pos
, ret
)) {
1031 if (ssid
->key_mgmt
& WPA_KEY_MGMT_FT_FILS_SHA384
) {
1032 ret
= os_snprintf(pos
, end
- pos
, "%sFT-FILS-SHA384",
1033 pos
== buf
? "" : " ");
1034 if (os_snprintf_error(end
- pos
, ret
)) {
1040 #endif /* CONFIG_IEEE80211R */
1041 #endif /* CONFIG_FILS */
1044 if (ssid
->key_mgmt
& WPA_KEY_MGMT_DPP
) {
1045 ret
= os_snprintf(pos
, end
- pos
, "%sDPP",
1046 pos
== buf
? "" : " ");
1047 if (os_snprintf_error(end
- pos
, ret
)) {
1053 #endif /* CONFIG_DPP */
1056 if (ssid
->key_mgmt
& WPA_KEY_MGMT_OWE
) {
1057 ret
= os_snprintf(pos
, end
- pos
, "%sOWE",
1058 pos
== buf
? "" : " ");
1059 if (os_snprintf_error(end
- pos
, ret
)) {
1065 #endif /* CONFIG_OWE */
1074 #endif /* NO_CONFIG_WRITE */
1077 static int wpa_config_parse_cipher(int line
, const char *value
)
1079 #ifdef CONFIG_NO_WPA
1081 #else /* CONFIG_NO_WPA */
1082 int val
= wpa_parse_cipher(value
);
1084 wpa_printf(MSG_ERROR
, "Line %d: invalid cipher '%s'.",
1089 wpa_printf(MSG_ERROR
, "Line %d: no cipher values configured.",
1094 #endif /* CONFIG_NO_WPA */
1098 #ifndef NO_CONFIG_WRITE
1099 static char * wpa_config_write_cipher(int cipher
)
1101 #ifdef CONFIG_NO_WPA
1103 #else /* CONFIG_NO_WPA */
1104 char *buf
= os_zalloc(50);
1108 if (wpa_write_ciphers(buf
, buf
+ 50, cipher
, " ") < 0) {
1114 #endif /* CONFIG_NO_WPA */
1116 #endif /* NO_CONFIG_WRITE */
1119 static int wpa_config_parse_pairwise(const struct parse_data
*data
,
1120 struct wpa_ssid
*ssid
, int line
,
1124 val
= wpa_config_parse_cipher(line
, value
);
1127 if (val
& ~WPA_ALLOWED_PAIRWISE_CIPHERS
) {
1128 wpa_printf(MSG_ERROR
, "Line %d: not allowed pairwise cipher "
1129 "(0x%x).", line
, val
);
1133 if (ssid
->pairwise_cipher
== val
)
1135 wpa_printf(MSG_MSGDUMP
, "pairwise: 0x%x", val
);
1136 ssid
->pairwise_cipher
= val
;
1141 #ifndef NO_CONFIG_WRITE
1142 static char * wpa_config_write_pairwise(const struct parse_data
*data
,
1143 struct wpa_ssid
*ssid
)
1145 return wpa_config_write_cipher(ssid
->pairwise_cipher
);
1147 #endif /* NO_CONFIG_WRITE */
1150 static int wpa_config_parse_group(const struct parse_data
*data
,
1151 struct wpa_ssid
*ssid
, int line
,
1155 val
= wpa_config_parse_cipher(line
, value
);
1160 * Backwards compatibility - filter out WEP ciphers that were previously
1163 val
&= ~(WPA_CIPHER_WEP104
| WPA_CIPHER_WEP40
);
1165 if (val
& ~WPA_ALLOWED_GROUP_CIPHERS
) {
1166 wpa_printf(MSG_ERROR
, "Line %d: not allowed group cipher "
1167 "(0x%x).", line
, val
);
1171 if (ssid
->group_cipher
== val
)
1173 wpa_printf(MSG_MSGDUMP
, "group: 0x%x", val
);
1174 ssid
->group_cipher
= val
;
1179 #ifndef NO_CONFIG_WRITE
1180 static char * wpa_config_write_group(const struct parse_data
*data
,
1181 struct wpa_ssid
*ssid
)
1183 return wpa_config_write_cipher(ssid
->group_cipher
);
1185 #endif /* NO_CONFIG_WRITE */
1188 static int wpa_config_parse_group_mgmt(const struct parse_data
*data
,
1189 struct wpa_ssid
*ssid
, int line
,
1194 val
= wpa_config_parse_cipher(line
, value
);
1198 if (val
& ~WPA_ALLOWED_GROUP_MGMT_CIPHERS
) {
1199 wpa_printf(MSG_ERROR
,
1200 "Line %d: not allowed group management cipher (0x%x).",
1205 if (ssid
->group_mgmt_cipher
== val
)
1207 wpa_printf(MSG_MSGDUMP
, "group_mgmt: 0x%x", val
);
1208 ssid
->group_mgmt_cipher
= val
;
1213 #ifndef NO_CONFIG_WRITE
1214 static char * wpa_config_write_group_mgmt(const struct parse_data
*data
,
1215 struct wpa_ssid
*ssid
)
1217 return wpa_config_write_cipher(ssid
->group_mgmt_cipher
);
1219 #endif /* NO_CONFIG_WRITE */
1222 static int wpa_config_parse_auth_alg(const struct parse_data
*data
,
1223 struct wpa_ssid
*ssid
, int line
,
1226 int val
= 0, last
, errors
= 0;
1227 char *start
, *end
, *buf
;
1229 buf
= os_strdup(value
);
1234 while (*start
!= '\0') {
1235 while (*start
== ' ' || *start
== '\t')
1240 while (*end
!= ' ' && *end
!= '\t' && *end
!= '\0')
1242 last
= *end
== '\0';
1244 if (os_strcmp(start
, "OPEN") == 0)
1245 val
|= WPA_AUTH_ALG_OPEN
;
1246 else if (os_strcmp(start
, "SHARED") == 0)
1247 val
|= WPA_AUTH_ALG_SHARED
;
1248 else if (os_strcmp(start
, "LEAP") == 0)
1249 val
|= WPA_AUTH_ALG_LEAP
;
1251 wpa_printf(MSG_ERROR
, "Line %d: invalid auth_alg '%s'",
1263 wpa_printf(MSG_ERROR
,
1264 "Line %d: no auth_alg values configured.", line
);
1268 if (!errors
&& ssid
->auth_alg
== val
)
1270 wpa_printf(MSG_MSGDUMP
, "auth_alg: 0x%x", val
);
1271 ssid
->auth_alg
= val
;
1272 return errors
? -1 : 0;
1276 #ifndef NO_CONFIG_WRITE
1277 static char * wpa_config_write_auth_alg(const struct parse_data
*data
,
1278 struct wpa_ssid
*ssid
)
1280 char *buf
, *pos
, *end
;
1283 pos
= buf
= os_zalloc(30);
1288 if (ssid
->auth_alg
& WPA_AUTH_ALG_OPEN
) {
1289 ret
= os_snprintf(pos
, end
- pos
, "%sOPEN",
1290 pos
== buf
? "" : " ");
1291 if (os_snprintf_error(end
- pos
, ret
)) {
1298 if (ssid
->auth_alg
& WPA_AUTH_ALG_SHARED
) {
1299 ret
= os_snprintf(pos
, end
- pos
, "%sSHARED",
1300 pos
== buf
? "" : " ");
1301 if (os_snprintf_error(end
- pos
, ret
)) {
1308 if (ssid
->auth_alg
& WPA_AUTH_ALG_LEAP
) {
1309 ret
= os_snprintf(pos
, end
- pos
, "%sLEAP",
1310 pos
== buf
? "" : " ");
1311 if (os_snprintf_error(end
- pos
, ret
)) {
1325 #endif /* NO_CONFIG_WRITE */
1328 static int * wpa_config_parse_int_array(const char *value
)
1336 freqs
= os_calloc(len
+ 1, sizeof(int));
1347 n
= os_realloc_array(freqs
, len
* 2 + 1, sizeof(int));
1352 for (i
= len
; i
<= len
* 2; i
++)
1358 freqs
[used
] = atoi(pos
);
1359 if (freqs
[used
] == 0)
1362 pos
= os_strchr(pos
+ 1, ' ');
1369 static int wpa_config_parse_scan_freq(const struct parse_data
*data
,
1370 struct wpa_ssid
*ssid
, int line
,
1375 freqs
= wpa_config_parse_int_array(value
);
1378 if (freqs
[0] == 0) {
1382 os_free(ssid
->scan_freq
);
1383 ssid
->scan_freq
= freqs
;
1389 static int wpa_config_parse_freq_list(const struct parse_data
*data
,
1390 struct wpa_ssid
*ssid
, int line
,
1395 freqs
= wpa_config_parse_int_array(value
);
1398 if (freqs
[0] == 0) {
1402 os_free(ssid
->freq_list
);
1403 ssid
->freq_list
= freqs
;
1409 #ifndef NO_CONFIG_WRITE
1410 static char * wpa_config_write_freqs(const struct parse_data
*data
,
1413 char *buf
, *pos
, *end
;
1421 for (i
= 0; freqs
[i
]; i
++)
1424 pos
= buf
= os_zalloc(10 * count
+ 1);
1427 end
= buf
+ 10 * count
+ 1;
1429 for (i
= 0; freqs
[i
]; i
++) {
1430 ret
= os_snprintf(pos
, end
- pos
, "%s%u",
1431 i
== 0 ? "" : " ", freqs
[i
]);
1432 if (os_snprintf_error(end
- pos
, ret
)) {
1443 static char * wpa_config_write_scan_freq(const struct parse_data
*data
,
1444 struct wpa_ssid
*ssid
)
1446 return wpa_config_write_freqs(data
, ssid
->scan_freq
);
1450 static char * wpa_config_write_freq_list(const struct parse_data
*data
,
1451 struct wpa_ssid
*ssid
)
1453 return wpa_config_write_freqs(data
, ssid
->freq_list
);
1455 #endif /* NO_CONFIG_WRITE */
1458 #ifdef IEEE8021X_EAPOL
1459 static int wpa_config_parse_eap(const struct parse_data
*data
,
1460 struct wpa_ssid
*ssid
, int line
,
1463 int last
, errors
= 0;
1464 char *start
, *end
, *buf
;
1465 struct eap_method_type
*methods
= NULL
, *tmp
;
1466 size_t num_methods
= 0;
1468 buf
= os_strdup(value
);
1473 while (*start
!= '\0') {
1474 while (*start
== ' ' || *start
== '\t')
1479 while (*end
!= ' ' && *end
!= '\t' && *end
!= '\0')
1481 last
= *end
== '\0';
1484 methods
= os_realloc_array(methods
, num_methods
+ 1,
1486 if (methods
== NULL
) {
1491 methods
[num_methods
].method
= eap_peer_get_type(
1492 start
, &methods
[num_methods
].vendor
);
1493 if (methods
[num_methods
].vendor
== EAP_VENDOR_IETF
&&
1494 methods
[num_methods
].method
== EAP_TYPE_NONE
) {
1495 wpa_printf(MSG_ERROR
, "Line %d: unknown EAP method "
1496 "'%s'", line
, start
);
1497 wpa_printf(MSG_ERROR
, "You may need to add support for"
1498 " this EAP method during wpa_supplicant\n"
1499 "build time configuration.\n"
1500 "See README for more information.");
1502 } else if (methods
[num_methods
].vendor
== EAP_VENDOR_IETF
&&
1503 methods
[num_methods
].method
== EAP_TYPE_LEAP
)
1515 methods
= os_realloc_array(methods
, num_methods
+ 1, sizeof(*methods
));
1516 if (methods
== NULL
) {
1520 methods
[num_methods
].vendor
= EAP_VENDOR_IETF
;
1521 methods
[num_methods
].method
= EAP_TYPE_NONE
;
1524 if (!errors
&& ssid
->eap
.eap_methods
) {
1525 struct eap_method_type
*prev_m
;
1526 size_t i
, j
, prev_methods
, match
= 0;
1528 prev_m
= ssid
->eap
.eap_methods
;
1529 for (i
= 0; prev_m
[i
].vendor
!= EAP_VENDOR_IETF
||
1530 prev_m
[i
].method
!= EAP_TYPE_NONE
; i
++) {
1531 /* Count the methods */
1533 prev_methods
= i
+ 1;
1535 for (i
= 0; prev_methods
== num_methods
&& i
< prev_methods
;
1537 for (j
= 0; j
< num_methods
; j
++) {
1538 if (prev_m
[i
].vendor
== methods
[j
].vendor
&&
1539 prev_m
[i
].method
== methods
[j
].method
) {
1545 if (match
== num_methods
) {
1550 wpa_hexdump(MSG_MSGDUMP
, "eap methods",
1551 (u8
*) methods
, num_methods
* sizeof(*methods
));
1552 os_free(ssid
->eap
.eap_methods
);
1553 ssid
->eap
.eap_methods
= methods
;
1554 return errors
? -1 : 0;
1558 #ifndef NO_CONFIG_WRITE
1559 static char * wpa_config_write_eap(const struct parse_data
*data
,
1560 struct wpa_ssid
*ssid
)
1563 char *buf
, *pos
, *end
;
1564 const struct eap_method_type
*eap_methods
= ssid
->eap
.eap_methods
;
1567 if (eap_methods
== NULL
)
1570 pos
= buf
= os_zalloc(100);
1575 for (i
= 0; eap_methods
[i
].vendor
!= EAP_VENDOR_IETF
||
1576 eap_methods
[i
].method
!= EAP_TYPE_NONE
; i
++) {
1577 name
= eap_get_name(eap_methods
[i
].vendor
,
1578 eap_methods
[i
].method
);
1580 ret
= os_snprintf(pos
, end
- pos
, "%s%s",
1581 pos
== buf
? "" : " ", name
);
1582 if (os_snprintf_error(end
- pos
, ret
))
1592 #endif /* NO_CONFIG_WRITE */
1595 static int wpa_config_parse_password(const struct parse_data
*data
,
1596 struct wpa_ssid
*ssid
, int line
,
1601 if (os_strcmp(value
, "NULL") == 0) {
1602 if (!ssid
->eap
.password
)
1603 return 1; /* Already unset */
1604 wpa_printf(MSG_DEBUG
, "Unset configuration string 'password'");
1605 bin_clear_free(ssid
->eap
.password
, ssid
->eap
.password_len
);
1606 ssid
->eap
.password
= NULL
;
1607 ssid
->eap
.password_len
= 0;
1611 #ifdef CONFIG_EXT_PASSWORD
1612 if (os_strncmp(value
, "ext:", 4) == 0) {
1613 char *name
= os_strdup(value
+ 4);
1616 bin_clear_free(ssid
->eap
.password
, ssid
->eap
.password_len
);
1617 ssid
->eap
.password
= (u8
*) name
;
1618 ssid
->eap
.password_len
= os_strlen(name
);
1619 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_PASSWORD_NTHASH
;
1620 ssid
->eap
.flags
|= EAP_CONFIG_FLAGS_EXT_PASSWORD
;
1623 #endif /* CONFIG_EXT_PASSWORD */
1625 if (os_strncmp(value
, "hash:", 5) != 0) {
1629 tmp
= wpa_config_parse_string(value
, &res_len
);
1631 wpa_printf(MSG_ERROR
,
1632 "Line %d: failed to parse password.", line
);
1635 wpa_hexdump_ascii_key(MSG_MSGDUMP
, data
->name
,
1636 (u8
*) tmp
, res_len
);
1638 bin_clear_free(ssid
->eap
.password
, ssid
->eap
.password_len
);
1639 ssid
->eap
.password
= (u8
*) tmp
;
1640 ssid
->eap
.password_len
= res_len
;
1641 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_PASSWORD_NTHASH
;
1642 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_EXT_PASSWORD
;
1648 /* NtPasswordHash: hash:<32 hex digits> */
1649 if (os_strlen(value
+ 5) != 2 * 16) {
1650 wpa_printf(MSG_ERROR
,
1651 "Line %d: Invalid password hash length (expected 32 hex digits)",
1656 hash
= os_malloc(16);
1660 if (hexstr2bin(value
+ 5, hash
, 16)) {
1662 wpa_printf(MSG_ERROR
, "Line %d: Invalid password hash", line
);
1666 wpa_hexdump_key(MSG_MSGDUMP
, data
->name
, hash
, 16);
1668 if (ssid
->eap
.password
&& ssid
->eap
.password_len
== 16 &&
1669 os_memcmp(ssid
->eap
.password
, hash
, 16) == 0 &&
1670 (ssid
->eap
.flags
& EAP_CONFIG_FLAGS_PASSWORD_NTHASH
)) {
1671 bin_clear_free(hash
, 16);
1674 bin_clear_free(ssid
->eap
.password
, ssid
->eap
.password_len
);
1675 ssid
->eap
.password
= hash
;
1676 ssid
->eap
.password_len
= 16;
1677 ssid
->eap
.flags
|= EAP_CONFIG_FLAGS_PASSWORD_NTHASH
;
1678 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_EXT_PASSWORD
;
1684 static int wpa_config_parse_machine_password(const struct parse_data
*data
,
1685 struct wpa_ssid
*ssid
, int line
,
1690 if (os_strcmp(value
, "NULL") == 0) {
1691 if (!ssid
->eap
.machine_password
)
1692 return 1; /* Already unset */
1693 wpa_printf(MSG_DEBUG
,
1694 "Unset configuration string 'machine_password'");
1695 bin_clear_free(ssid
->eap
.machine_password
,
1696 ssid
->eap
.machine_password_len
);
1697 ssid
->eap
.machine_password
= NULL
;
1698 ssid
->eap
.machine_password_len
= 0;
1702 #ifdef CONFIG_EXT_PASSWORD
1703 if (os_strncmp(value
, "ext:", 4) == 0) {
1704 char *name
= os_strdup(value
+ 4);
1708 bin_clear_free(ssid
->eap
.machine_password
,
1709 ssid
->eap
.machine_password_len
);
1710 ssid
->eap
.machine_password
= (u8
*) name
;
1711 ssid
->eap
.machine_password_len
= os_strlen(name
);
1712 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_MACHINE_PASSWORD_NTHASH
;
1713 ssid
->eap
.flags
|= EAP_CONFIG_FLAGS_EXT_MACHINE_PASSWORD
;
1716 #endif /* CONFIG_EXT_PASSWORD */
1718 if (os_strncmp(value
, "hash:", 5) != 0) {
1722 tmp
= wpa_config_parse_string(value
, &res_len
);
1724 wpa_printf(MSG_ERROR
,
1725 "Line %d: failed to parse machine_password.",
1729 wpa_hexdump_ascii_key(MSG_MSGDUMP
, data
->name
,
1730 (u8
*) tmp
, res_len
);
1732 bin_clear_free(ssid
->eap
.machine_password
,
1733 ssid
->eap
.machine_password_len
);
1734 ssid
->eap
.machine_password
= (u8
*) tmp
;
1735 ssid
->eap
.machine_password_len
= res_len
;
1736 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_MACHINE_PASSWORD_NTHASH
;
1737 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_EXT_MACHINE_PASSWORD
;
1743 /* NtPasswordHash: hash:<32 hex digits> */
1744 if (os_strlen(value
+ 5) != 2 * 16) {
1745 wpa_printf(MSG_ERROR
,
1746 "Line %d: Invalid machine_password hash length (expected 32 hex digits)",
1751 hash
= os_malloc(16);
1755 if (hexstr2bin(value
+ 5, hash
, 16)) {
1757 wpa_printf(MSG_ERROR
, "Line %d: Invalid machine_password hash",
1762 wpa_hexdump_key(MSG_MSGDUMP
, data
->name
, hash
, 16);
1764 if (ssid
->eap
.machine_password
&&
1765 ssid
->eap
.machine_password_len
== 16 &&
1766 os_memcmp(ssid
->eap
.machine_password
, hash
, 16) == 0 &&
1767 (ssid
->eap
.flags
& EAP_CONFIG_FLAGS_MACHINE_PASSWORD_NTHASH
)) {
1768 bin_clear_free(hash
, 16);
1771 bin_clear_free(ssid
->eap
.machine_password
,
1772 ssid
->eap
.machine_password_len
);
1773 ssid
->eap
.machine_password
= hash
;
1774 ssid
->eap
.machine_password_len
= 16;
1775 ssid
->eap
.flags
|= EAP_CONFIG_FLAGS_MACHINE_PASSWORD_NTHASH
;
1776 ssid
->eap
.flags
&= ~EAP_CONFIG_FLAGS_EXT_MACHINE_PASSWORD
;
1782 #ifndef NO_CONFIG_WRITE
1784 static char * wpa_config_write_password(const struct parse_data
*data
,
1785 struct wpa_ssid
*ssid
)
1789 if (!ssid
->eap
.password
)
1792 #ifdef CONFIG_EXT_PASSWORD
1793 if (ssid
->eap
.flags
& EAP_CONFIG_FLAGS_EXT_PASSWORD
) {
1794 buf
= os_zalloc(4 + ssid
->eap
.password_len
+ 1);
1797 os_memcpy(buf
, "ext:", 4);
1798 os_memcpy(buf
+ 4, ssid
->eap
.password
, ssid
->eap
.password_len
);
1801 #endif /* CONFIG_EXT_PASSWORD */
1803 if (!(ssid
->eap
.flags
& EAP_CONFIG_FLAGS_PASSWORD_NTHASH
)) {
1804 return wpa_config_write_string(
1805 ssid
->eap
.password
, ssid
->eap
.password_len
);
1808 buf
= os_malloc(5 + 32 + 1);
1812 os_memcpy(buf
, "hash:", 5);
1813 wpa_snprintf_hex(buf
+ 5, 32 + 1, ssid
->eap
.password
, 16);
1819 static char * wpa_config_write_machine_password(const struct parse_data
*data
,
1820 struct wpa_ssid
*ssid
)
1824 if (!ssid
->eap
.machine_password
)
1827 #ifdef CONFIG_EXT_PASSWORD
1828 if (ssid
->eap
.flags
& EAP_CONFIG_FLAGS_EXT_MACHINE_PASSWORD
) {
1829 buf
= os_zalloc(4 + ssid
->eap
.machine_password_len
+ 1);
1832 os_memcpy(buf
, "ext:", 4);
1833 os_memcpy(buf
+ 4, ssid
->eap
.machine_password
,
1834 ssid
->eap
.machine_password_len
);
1837 #endif /* CONFIG_EXT_PASSWORD */
1839 if (!(ssid
->eap
.flags
& EAP_CONFIG_FLAGS_MACHINE_PASSWORD_NTHASH
)) {
1840 return wpa_config_write_string(
1841 ssid
->eap
.machine_password
,
1842 ssid
->eap
.machine_password_len
);
1845 buf
= os_malloc(5 + 32 + 1);
1849 os_memcpy(buf
, "hash:", 5);
1850 wpa_snprintf_hex(buf
+ 5, 32 + 1, ssid
->eap
.machine_password
, 16);
1855 #endif /* NO_CONFIG_WRITE */
1856 #endif /* IEEE8021X_EAPOL */
1861 static int wpa_config_parse_wep_key(u8
*key
, size_t *len
, int line
,
1862 const char *value
, int idx
)
1864 char *buf
, title
[20];
1867 buf
= wpa_config_parse_string(value
, len
);
1869 wpa_printf(MSG_ERROR
, "Line %d: Invalid WEP key %d '%s'.",
1873 if (*len
> MAX_WEP_KEY_LEN
) {
1874 wpa_printf(MSG_ERROR
, "Line %d: Too long WEP key %d '%s'.",
1879 if (*len
&& *len
!= 5 && *len
!= 13 && *len
!= 16) {
1880 wpa_printf(MSG_ERROR
, "Line %d: Invalid WEP key length %u - "
1881 "this network block will be ignored",
1882 line
, (unsigned int) *len
);
1884 os_memcpy(key
, buf
, *len
);
1885 str_clear_free(buf
);
1886 res
= os_snprintf(title
, sizeof(title
), "wep_key%d", idx
);
1887 if (!os_snprintf_error(sizeof(title
), res
))
1888 wpa_hexdump_key(MSG_MSGDUMP
, title
, key
, *len
);
1893 static int wpa_config_parse_wep_key0(const struct parse_data
*data
,
1894 struct wpa_ssid
*ssid
, int line
,
1897 return wpa_config_parse_wep_key(ssid
->wep_key
[0],
1898 &ssid
->wep_key_len
[0], line
,
1903 static int wpa_config_parse_wep_key1(const struct parse_data
*data
,
1904 struct wpa_ssid
*ssid
, int line
,
1907 return wpa_config_parse_wep_key(ssid
->wep_key
[1],
1908 &ssid
->wep_key_len
[1], line
,
1913 static int wpa_config_parse_wep_key2(const struct parse_data
*data
,
1914 struct wpa_ssid
*ssid
, int line
,
1917 return wpa_config_parse_wep_key(ssid
->wep_key
[2],
1918 &ssid
->wep_key_len
[2], line
,
1923 static int wpa_config_parse_wep_key3(const struct parse_data
*data
,
1924 struct wpa_ssid
*ssid
, int line
,
1927 return wpa_config_parse_wep_key(ssid
->wep_key
[3],
1928 &ssid
->wep_key_len
[3], line
,
1933 #ifndef NO_CONFIG_WRITE
1934 static char * wpa_config_write_wep_key(struct wpa_ssid
*ssid
, int idx
)
1936 if (ssid
->wep_key_len
[idx
] == 0)
1938 return wpa_config_write_string(ssid
->wep_key
[idx
],
1939 ssid
->wep_key_len
[idx
]);
1943 static char * wpa_config_write_wep_key0(const struct parse_data
*data
,
1944 struct wpa_ssid
*ssid
)
1946 return wpa_config_write_wep_key(ssid
, 0);
1950 static char * wpa_config_write_wep_key1(const struct parse_data
*data
,
1951 struct wpa_ssid
*ssid
)
1953 return wpa_config_write_wep_key(ssid
, 1);
1957 static char * wpa_config_write_wep_key2(const struct parse_data
*data
,
1958 struct wpa_ssid
*ssid
)
1960 return wpa_config_write_wep_key(ssid
, 2);
1964 static char * wpa_config_write_wep_key3(const struct parse_data
*data
,
1965 struct wpa_ssid
*ssid
)
1967 return wpa_config_write_wep_key(ssid
, 3);
1969 #endif /* NO_CONFIG_WRITE */
1971 #endif /* CONFIG_WEP */
1976 static int wpa_config_parse_go_p2p_dev_addr(const struct parse_data
*data
,
1977 struct wpa_ssid
*ssid
, int line
,
1980 if (value
[0] == '\0' || os_strcmp(value
, "\"\"") == 0 ||
1981 os_strcmp(value
, "any") == 0) {
1982 os_memset(ssid
->go_p2p_dev_addr
, 0, ETH_ALEN
);
1983 wpa_printf(MSG_MSGDUMP
, "GO P2P Device Address any");
1986 if (hwaddr_aton(value
, ssid
->go_p2p_dev_addr
)) {
1987 wpa_printf(MSG_ERROR
, "Line %d: Invalid GO P2P Device Address '%s'.",
1991 ssid
->bssid_set
= 1;
1992 wpa_printf(MSG_MSGDUMP
, "GO P2P Device Address " MACSTR
,
1993 MAC2STR(ssid
->go_p2p_dev_addr
));
1998 #ifndef NO_CONFIG_WRITE
1999 static char * wpa_config_write_go_p2p_dev_addr(const struct parse_data
*data
,
2000 struct wpa_ssid
*ssid
)
2005 if (is_zero_ether_addr(ssid
->go_p2p_dev_addr
))
2008 value
= os_malloc(20);
2011 res
= os_snprintf(value
, 20, MACSTR
, MAC2STR(ssid
->go_p2p_dev_addr
));
2012 if (os_snprintf_error(20, res
)) {
2016 value
[20 - 1] = '\0';
2019 #endif /* NO_CONFIG_WRITE */
2022 static int wpa_config_parse_p2p_client_list(const struct parse_data
*data
,
2023 struct wpa_ssid
*ssid
, int line
,
2026 return wpa_config_parse_addr_list(data
, line
, value
,
2027 &ssid
->p2p_client_list
,
2028 &ssid
->num_p2p_clients
,
2029 "p2p_client_list", 0, 0);
2033 #ifndef NO_CONFIG_WRITE
2034 static char * wpa_config_write_p2p_client_list(const struct parse_data
*data
,
2035 struct wpa_ssid
*ssid
)
2037 return wpa_config_write_addr_list(data
, ssid
->p2p_client_list
,
2038 ssid
->num_p2p_clients
,
2041 #endif /* NO_CONFIG_WRITE */
2044 static int wpa_config_parse_psk_list(const struct parse_data
*data
,
2045 struct wpa_ssid
*ssid
, int line
,
2048 struct psk_list_entry
*p
;
2051 p
= os_zalloc(sizeof(*p
));
2056 if (os_strncmp(pos
, "P2P-", 4) == 0) {
2061 if (hwaddr_aton(pos
, p
->addr
)) {
2062 wpa_printf(MSG_ERROR
, "Line %d: Invalid psk_list address '%s'",
2069 wpa_printf(MSG_ERROR
, "Line %d: Invalid psk_list '%s'",
2076 if (hexstr2bin(pos
, p
->psk
, PMK_LEN
) || pos
[PMK_LEN
* 2] != '\0') {
2077 wpa_printf(MSG_ERROR
, "Line %d: Invalid psk_list PSK '%s'",
2083 dl_list_add(&ssid
->psk_list
, &p
->list
);
2089 #ifndef NO_CONFIG_WRITE
2090 static char * wpa_config_write_psk_list(const struct parse_data
*data
,
2091 struct wpa_ssid
*ssid
)
2095 #endif /* NO_CONFIG_WRITE */
2097 #endif /* CONFIG_P2P */
2102 static int wpa_config_parse_mesh_basic_rates(const struct parse_data
*data
,
2103 struct wpa_ssid
*ssid
, int line
,
2106 int *rates
= wpa_config_parse_int_array(value
);
2108 if (rates
== NULL
) {
2109 wpa_printf(MSG_ERROR
, "Line %d: Invalid mesh_basic_rates '%s'",
2113 if (rates
[0] == 0) {
2118 os_free(ssid
->mesh_basic_rates
);
2119 ssid
->mesh_basic_rates
= rates
;
2125 #ifndef NO_CONFIG_WRITE
2127 static char * wpa_config_write_mesh_basic_rates(const struct parse_data
*data
,
2128 struct wpa_ssid
*ssid
)
2130 return wpa_config_write_freqs(data
, ssid
->mesh_basic_rates
);
2133 #endif /* NO_CONFIG_WRITE */
2135 #endif /* CONFIG_MESH */
2138 #ifdef CONFIG_MACSEC
2140 static int wpa_config_parse_mka_cak(const struct parse_data
*data
,
2141 struct wpa_ssid
*ssid
, int line
,
2146 len
= os_strlen(value
);
2147 if (len
> 2 * MACSEC_CAK_MAX_LEN
||
2148 (len
!= 2 * 16 && len
!= 2 * 32) ||
2149 hexstr2bin(value
, ssid
->mka_cak
, len
/ 2)) {
2150 wpa_printf(MSG_ERROR
, "Line %d: Invalid MKA-CAK '%s'.",
2154 ssid
->mka_cak_len
= len
/ 2;
2155 ssid
->mka_psk_set
|= MKA_PSK_SET_CAK
;
2157 wpa_hexdump_key(MSG_MSGDUMP
, "MKA-CAK", ssid
->mka_cak
,
2163 static int wpa_config_parse_mka_ckn(const struct parse_data
*data
,
2164 struct wpa_ssid
*ssid
, int line
,
2169 len
= os_strlen(value
);
2170 if (len
> 2 * MACSEC_CKN_MAX_LEN
|| /* too long */
2171 len
< 2 || /* too short */
2172 len
% 2 != 0 /* not an integral number of bytes */) {
2173 wpa_printf(MSG_ERROR
, "Line %d: Invalid MKA-CKN '%s'.",
2177 ssid
->mka_ckn_len
= len
/ 2;
2178 if (hexstr2bin(value
, ssid
->mka_ckn
, ssid
->mka_ckn_len
)) {
2179 wpa_printf(MSG_ERROR
, "Line %d: Invalid MKA-CKN '%s'.",
2184 ssid
->mka_psk_set
|= MKA_PSK_SET_CKN
;
2186 wpa_hexdump_key(MSG_MSGDUMP
, "MKA-CKN", ssid
->mka_ckn
,
2192 #ifndef NO_CONFIG_WRITE
2194 static char * wpa_config_write_mka_cak(const struct parse_data
*data
,
2195 struct wpa_ssid
*ssid
)
2197 if (!(ssid
->mka_psk_set
& MKA_PSK_SET_CAK
))
2200 return wpa_config_write_string_hex(ssid
->mka_cak
, ssid
->mka_cak_len
);
2204 static char * wpa_config_write_mka_ckn(const struct parse_data
*data
,
2205 struct wpa_ssid
*ssid
)
2207 if (!(ssid
->mka_psk_set
& MKA_PSK_SET_CKN
))
2209 return wpa_config_write_string_hex(ssid
->mka_ckn
, ssid
->mka_ckn_len
);
2212 #endif /* NO_CONFIG_WRITE */
2214 #endif /* CONFIG_MACSEC */
2219 static int wpa_config_parse_ocv(const struct parse_data
*data
,
2220 struct wpa_ssid
*ssid
, int line
,
2225 ssid
->ocv
= strtol(value
, &end
, 0);
2226 if (*end
|| ssid
->ocv
< 0 || ssid
->ocv
> 1) {
2227 wpa_printf(MSG_ERROR
, "Line %d: Invalid ocv value '%s'.",
2231 if (ssid
->ocv
&& ssid
->ieee80211w
== NO_MGMT_FRAME_PROTECTION
)
2232 ssid
->ieee80211w
= MGMT_FRAME_PROTECTION_OPTIONAL
;
2237 #ifndef NO_CONFIG_WRITE
2238 static char * wpa_config_write_ocv(const struct parse_data
*data
,
2239 struct wpa_ssid
*ssid
)
2241 char *value
= os_malloc(20);
2245 os_snprintf(value
, 20, "%d", ssid
->ocv
);
2246 value
[20 - 1] = '\0';
2249 #endif /* NO_CONFIG_WRITE */
2251 #endif /* CONFIG_OCV */
2254 static int wpa_config_parse_peerkey(const struct parse_data
*data
,
2255 struct wpa_ssid
*ssid
, int line
,
2258 wpa_printf(MSG_INFO
, "NOTE: Obsolete peerkey parameter ignored");
2263 #ifndef NO_CONFIG_WRITE
2264 static char * wpa_config_write_peerkey(const struct parse_data
*data
,
2265 struct wpa_ssid
*ssid
)
2269 #endif /* NO_CONFIG_WRITE */
2272 /* Helper macros for network block parser */
2277 /* OFFSET: Get offset of a variable within the wpa_ssid structure */
2278 #define OFFSET(v) ((void *) &((struct wpa_ssid *) 0)->v)
2280 /* STR: Define a string variable for an ASCII string; f = field name */
2281 #ifdef NO_CONFIG_WRITE
2282 #define _STR(f) #f, wpa_config_parse_str, OFFSET(f)
2283 #define _STRe(f, m) #f, wpa_config_parse_str, OFFSET(eap.m)
2284 #else /* NO_CONFIG_WRITE */
2285 #define _STR(f) #f, wpa_config_parse_str, wpa_config_write_str, OFFSET(f)
2286 #define _STRe(f, m) #f, wpa_config_parse_str, wpa_config_write_str, \
2288 #endif /* NO_CONFIG_WRITE */
2289 #define STR(f) _STR(f), NULL, NULL, NULL, 0
2290 #define STRe(f, m) _STRe(f, m), NULL, NULL, NULL, 0
2291 #define STR_KEY(f) _STR(f), NULL, NULL, NULL, 1
2292 #define STR_KEYe(f, m) _STRe(f, m), NULL, NULL, NULL, 1
2294 /* STR_LEN: Define a string variable with a separate variable for storing the
2295 * data length. Unlike STR(), this can be used to store arbitrary binary data
2296 * (i.e., even nul termination character). */
2297 #define _STR_LEN(f) _STR(f), OFFSET(f ## _len)
2298 #define _STR_LENe(f, m) _STRe(f, m), OFFSET(eap.m ## _len)
2299 #define STR_LEN(f) _STR_LEN(f), NULL, NULL, 0
2300 #define STR_LENe(f, m) _STR_LENe(f, m), NULL, NULL, 0
2301 #define STR_LEN_KEY(f) _STR_LEN(f), NULL, NULL, 1
2303 /* STR_RANGE: Like STR_LEN(), but with minimum and maximum allowed length
2304 * explicitly specified. */
2305 #define _STR_RANGE(f, min, max) _STR_LEN(f), (void *) (min), (void *) (max)
2306 #define STR_RANGE(f, min, max) _STR_RANGE(f, min, max), 0
2307 #define STR_RANGE_KEY(f, min, max) _STR_RANGE(f, min, max), 1
2309 #ifdef NO_CONFIG_WRITE
2310 #define _INT(f) #f, wpa_config_parse_int, OFFSET(f), (void *) 0
2311 #define _INTe(f, m) #f, wpa_config_parse_int, OFFSET(eap.m), (void *) 0
2312 #else /* NO_CONFIG_WRITE */
2313 #define _INT(f) #f, wpa_config_parse_int, wpa_config_write_int, \
2314 OFFSET(f), (void *) 0
2315 #define _INTe(f, m) #f, wpa_config_parse_int, wpa_config_write_int, \
2316 OFFSET(eap.m), (void *) 0
2317 #endif /* NO_CONFIG_WRITE */
2319 /* INT: Define an integer variable */
2320 #define INT(f) _INT(f), NULL, NULL, 0
2321 #define INTe(f, m) _INTe(f, m), NULL, NULL, 0
2323 /* INT_RANGE: Define an integer variable with allowed value range */
2324 #define INT_RANGE(f, min, max) _INT(f), (void *) (min), (void *) (max), 0
2326 /* FUNC: Define a configuration variable that uses a custom function for
2327 * parsing and writing the value. */
2328 #ifdef NO_CONFIG_WRITE
2329 #define _FUNC(f) #f, wpa_config_parse_ ## f, NULL, NULL, NULL, NULL
2330 #else /* NO_CONFIG_WRITE */
2331 #define _FUNC(f) #f, wpa_config_parse_ ## f, wpa_config_write_ ## f, \
2332 NULL, NULL, NULL, NULL
2333 #endif /* NO_CONFIG_WRITE */
2334 #define FUNC(f) _FUNC(f), 0
2335 #define FUNC_KEY(f) _FUNC(f), 1
2338 * Table of network configuration variables. This table is used to parse each
2339 * network configuration variable, e.g., each line in wpa_supplicant.conf file
2340 * that is inside a network block.
2342 * This table is generated using the helper macros defined above and with
2343 * generous help from the C pre-processor. The field name is stored as a string
2344 * into .name and for STR and INT types, the offset of the target buffer within
2345 * struct wpa_ssid is stored in .param1. .param2 (if not NULL) is similar
2346 * offset to the field containing the length of the configuration variable.
2347 * .param3 and .param4 can be used to mark the allowed range (length for STR
2348 * and value for INT).
2350 * For each configuration line in wpa_supplicant.conf, the parser goes through
2351 * this table and select the entry that matches with the field name. The parser
2352 * function (.parser) is then called to parse the actual value of the field.
2354 * This kind of mechanism makes it easy to add new configuration parameters,
2355 * since only one line needs to be added into this table and into the
2356 * struct wpa_ssid definition if the new variable is either a string or
2357 * integer. More complex types will need to use their own parser and writer
2360 static const struct parse_data ssid_fields
[] = {
2361 { STR_RANGE(ssid
, 0, SSID_MAX_LEN
) },
2362 { INT_RANGE(scan_ssid
, 0, 1) },
2364 { FUNC(bssid_hint
) },
2365 { FUNC(bssid_blacklist
) },
2366 { FUNC(bssid_whitelist
) },
2368 { INT(mem_only_psk
) },
2369 { STR_KEY(sae_password
) },
2370 { STR(sae_password_id
) },
2373 { INT(bg_scan_period
) },
2376 { FUNC(group_mgmt
) },
2378 { FUNC(scan_freq
) },
2379 { FUNC(freq_list
) },
2380 { INT_RANGE(ht
, 0, 1) },
2381 { INT_RANGE(vht
, 0, 1) },
2382 { INT_RANGE(ht40
, -1, 1) },
2383 { INT_RANGE(max_oper_chwidth
, CHANWIDTH_USE_HT
,
2384 CHANWIDTH_80P80MHZ
) },
2385 { INT(vht_center_freq1
) },
2386 { INT(vht_center_freq2
) },
2387 #ifdef IEEE8021X_EAPOL
2389 { STR_LENe(identity
, identity
) },
2390 { STR_LENe(anonymous_identity
, anonymous_identity
) },
2391 { STR_LENe(imsi_identity
, imsi_identity
) },
2392 { STR_LENe(machine_identity
, machine_identity
) },
2393 { FUNC_KEY(password
) },
2394 { FUNC_KEY(machine_password
) },
2395 { STRe(ca_cert
, cert
.ca_cert
) },
2396 { STRe(ca_path
, cert
.ca_path
) },
2397 { STRe(client_cert
, cert
.client_cert
) },
2398 { STRe(private_key
, cert
.private_key
) },
2399 { STR_KEYe(private_key_passwd
, cert
.private_key_passwd
) },
2400 { STRe(dh_file
, cert
.dh_file
) },
2401 { STRe(subject_match
, cert
.subject_match
) },
2402 { STRe(check_cert_subject
, cert
.check_cert_subject
) },
2403 { STRe(altsubject_match
, cert
.altsubject_match
) },
2404 { STRe(domain_suffix_match
, cert
.domain_suffix_match
) },
2405 { STRe(domain_match
, cert
.domain_match
) },
2406 { STRe(ca_cert2
, phase2_cert
.ca_cert
) },
2407 { STRe(ca_path2
, phase2_cert
.ca_path
) },
2408 { STRe(client_cert2
, phase2_cert
.client_cert
) },
2409 { STRe(private_key2
, phase2_cert
.private_key
) },
2410 { STR_KEYe(private_key2_passwd
, phase2_cert
.private_key_passwd
) },
2411 { STRe(dh_file2
, phase2_cert
.dh_file
) },
2412 { STRe(subject_match2
, phase2_cert
.subject_match
) },
2413 { STRe(check_cert_subject2
, phase2_cert
.check_cert_subject
) },
2414 { STRe(altsubject_match2
, phase2_cert
.altsubject_match
) },
2415 { STRe(domain_suffix_match2
, phase2_cert
.domain_suffix_match
) },
2416 { STRe(domain_match2
, phase2_cert
.domain_match
) },
2417 { STRe(phase1
, phase1
) },
2418 { STRe(phase2
, phase2
) },
2419 { STRe(machine_phase2
, machine_phase2
) },
2420 { STRe(pcsc
, pcsc
) },
2421 { STR_KEYe(pin
, cert
.pin
) },
2422 { STRe(engine_id
, cert
.engine_id
) },
2423 { STRe(key_id
, cert
.key_id
) },
2424 { STRe(cert_id
, cert
.cert_id
) },
2425 { STRe(ca_cert_id
, cert
.ca_cert_id
) },
2426 { STR_KEYe(pin2
, phase2_cert
.pin
) },
2427 { STRe(engine_id2
, phase2_cert
.engine_id
) },
2428 { STRe(key_id2
, phase2_cert
.key_id
) },
2429 { STRe(cert_id2
, phase2_cert
.cert_id
) },
2430 { STRe(ca_cert_id2
, phase2_cert
.ca_cert_id
) },
2431 { INTe(engine
, cert
.engine
) },
2432 { INTe(engine2
, phase2_cert
.engine
) },
2433 { STRe(machine_ca_cert
, machine_cert
.ca_cert
) },
2434 { STRe(machine_ca_path
, machine_cert
.ca_path
) },
2435 { STRe(machine_client_cert
, machine_cert
.client_cert
) },
2436 { STRe(machine_private_key
, machine_cert
.private_key
) },
2437 { STR_KEYe(machine_private_key_passwd
,
2438 machine_cert
.private_key_passwd
) },
2439 { STRe(machine_dh_file
, machine_cert
.dh_file
) },
2440 { STRe(machine_subject_match
, machine_cert
.subject_match
) },
2441 { STRe(machine_check_cert_subject
, machine_cert
.check_cert_subject
) },
2442 { STRe(machine_altsubject_match
, machine_cert
.altsubject_match
) },
2443 { STRe(machine_domain_suffix_match
,
2444 machine_cert
.domain_suffix_match
) },
2445 { STRe(machine_domain_match
, machine_cert
.domain_match
) },
2446 { STR_KEYe(machine_pin
, machine_cert
.pin
) },
2447 { STRe(machine_engine_id
, machine_cert
.engine_id
) },
2448 { STRe(machine_key_id
, machine_cert
.key_id
) },
2449 { STRe(machine_cert_id
, machine_cert
.cert_id
) },
2450 { STRe(machine_ca_cert_id
, machine_cert
.ca_cert_id
) },
2451 { INTe(machine_engine
, machine_cert
.engine
) },
2452 { INTe(machine_ocsp
, machine_cert
.ocsp
) },
2453 { INT(eapol_flags
) },
2454 { INTe(sim_num
, sim_num
) },
2455 { STRe(openssl_ciphers
, openssl_ciphers
) },
2457 #endif /* IEEE8021X_EAPOL */
2459 { FUNC_KEY(wep_key0
) },
2460 { FUNC_KEY(wep_key1
) },
2461 { FUNC_KEY(wep_key2
) },
2462 { FUNC_KEY(wep_key3
) },
2463 { INT(wep_tx_keyidx
) },
2464 #endif /* CONFIG_WEP */
2466 #ifdef IEEE8021X_EAPOL
2467 { INT(eap_workaround
) },
2468 { STRe(pac_file
, pac_file
) },
2469 { INTe(fragment_size
, fragment_size
) },
2470 { INTe(ocsp
, cert
.ocsp
) },
2471 { INTe(ocsp2
, phase2_cert
.ocsp
) },
2472 #endif /* IEEE8021X_EAPOL */
2474 { INT_RANGE(mode
, 0, 5) },
2475 { INT_RANGE(no_auto_peer
, 0, 1) },
2476 { INT_RANGE(mesh_rssi_threshold
, -255, 1) },
2477 #else /* CONFIG_MESH */
2478 { INT_RANGE(mode
, 0, 4) },
2479 #endif /* CONFIG_MESH */
2480 { INT_RANGE(proactive_key_caching
, 0, 1) },
2481 { INT_RANGE(disabled
, 0, 2) },
2483 { INT_RANGE(ieee80211w
, 0, 2) },
2486 #endif /* CONFIG_OCV */
2487 { FUNC(peerkey
) /* obsolete - removed */ },
2488 { INT_RANGE(mixed_cell
, 0, 1) },
2489 { INT_RANGE(frequency
, 0, 70200) },
2490 { INT_RANGE(fixed_freq
, 0, 1) },
2491 { INT_RANGE(enable_edmg
, 0, 1) },
2492 { INT_RANGE(edmg_channel
, 9, 13) },
2494 { INT_RANGE(acs
, 0, 1) },
2495 #endif /* CONFIG_ACS */
2497 { FUNC(mesh_basic_rates
) },
2498 { INT(dot11MeshMaxRetries
) },
2499 { INT(dot11MeshRetryTimeout
) },
2500 { INT(dot11MeshConfirmTimeout
) },
2501 { INT(dot11MeshHoldingTimeout
) },
2502 #endif /* CONFIG_MESH */
2503 { INT(wpa_ptk_rekey
) },
2504 { INT_RANGE(wpa_deny_ptk0_rekey
, 0, 2) },
2505 { INT(group_rekey
) },
2507 { INT_RANGE(ignore_broadcast_ssid
, 0, 2) },
2509 { FUNC(go_p2p_dev_addr
) },
2510 { FUNC(p2p_client_list
) },
2512 #endif /* CONFIG_P2P */
2513 #ifdef CONFIG_HT_OVERRIDES
2514 { INT_RANGE(disable_ht
, 0, 1) },
2515 { INT_RANGE(disable_ht40
, -1, 1) },
2516 { INT_RANGE(disable_sgi
, 0, 1) },
2517 { INT_RANGE(disable_ldpc
, 0, 1) },
2518 { INT_RANGE(ht40_intolerant
, 0, 1) },
2519 { INT_RANGE(tx_stbc
, -1, 1) },
2520 { INT_RANGE(rx_stbc
, -1, 3) },
2521 { INT_RANGE(disable_max_amsdu
, -1, 1) },
2522 { INT_RANGE(ampdu_factor
, -1, 3) },
2523 { INT_RANGE(ampdu_density
, -1, 7) },
2525 #endif /* CONFIG_HT_OVERRIDES */
2526 #ifdef CONFIG_VHT_OVERRIDES
2527 { INT_RANGE(disable_vht
, 0, 1) },
2529 { INT(vht_capa_mask
) },
2530 { INT_RANGE(vht_rx_mcs_nss_1
, -1, 3) },
2531 { INT_RANGE(vht_rx_mcs_nss_2
, -1, 3) },
2532 { INT_RANGE(vht_rx_mcs_nss_3
, -1, 3) },
2533 { INT_RANGE(vht_rx_mcs_nss_4
, -1, 3) },
2534 { INT_RANGE(vht_rx_mcs_nss_5
, -1, 3) },
2535 { INT_RANGE(vht_rx_mcs_nss_6
, -1, 3) },
2536 { INT_RANGE(vht_rx_mcs_nss_7
, -1, 3) },
2537 { INT_RANGE(vht_rx_mcs_nss_8
, -1, 3) },
2538 { INT_RANGE(vht_tx_mcs_nss_1
, -1, 3) },
2539 { INT_RANGE(vht_tx_mcs_nss_2
, -1, 3) },
2540 { INT_RANGE(vht_tx_mcs_nss_3
, -1, 3) },
2541 { INT_RANGE(vht_tx_mcs_nss_4
, -1, 3) },
2542 { INT_RANGE(vht_tx_mcs_nss_5
, -1, 3) },
2543 { INT_RANGE(vht_tx_mcs_nss_6
, -1, 3) },
2544 { INT_RANGE(vht_tx_mcs_nss_7
, -1, 3) },
2545 { INT_RANGE(vht_tx_mcs_nss_8
, -1, 3) },
2546 #endif /* CONFIG_VHT_OVERRIDES */
2547 #ifdef CONFIG_HE_OVERRIDES
2548 { INT_RANGE(disable_he
, 0, 1)},
2549 #endif /* CONFIG_HE_OVERRIDES */
2550 { INT(ap_max_inactivity
) },
2551 { INT(dtim_period
) },
2552 { INT(beacon_int
) },
2553 #ifdef CONFIG_MACSEC
2554 { INT_RANGE(macsec_policy
, 0, 1) },
2555 { INT_RANGE(macsec_integ_only
, 0, 1) },
2556 { INT_RANGE(macsec_replay_protect
, 0, 1) },
2557 { INT(macsec_replay_window
) },
2558 { INT_RANGE(macsec_port
, 1, 65534) },
2559 { INT_RANGE(mka_priority
, 0, 255) },
2560 { FUNC_KEY(mka_cak
) },
2561 { FUNC_KEY(mka_ckn
) },
2562 #endif /* CONFIG_MACSEC */
2564 { INT(update_identifier
) },
2565 { STR_RANGE(roaming_consortium_selection
, 0, MAX_ROAMING_CONS_OI_LEN
) },
2566 #endif /* CONFIG_HS20 */
2567 { INT_RANGE(mac_addr
, 0, 2) },
2568 { INT_RANGE(pbss
, 0, 2) },
2569 { INT_RANGE(wps_disabled
, 0, 1) },
2570 { INT_RANGE(fils_dh_group
, 0, 65535) },
2572 { STR(dpp_connector
) },
2573 { STR_LEN(dpp_netaccesskey
) },
2574 { INT(dpp_netaccesskey_expiry
) },
2575 { STR_LEN(dpp_csign
) },
2576 { INT_RANGE(dpp_pfs
, 0, 2) },
2577 #endif /* CONFIG_DPP */
2578 { INT_RANGE(owe_group
, 0, 65535) },
2579 { INT_RANGE(owe_only
, 0, 1) },
2580 { INT_RANGE(owe_ptk_workaround
, 0, 1) },
2581 { INT_RANGE(multi_ap_backhaul_sta
, 0, 1) },
2582 { INT_RANGE(ft_eap_pmksa_caching
, 0, 1) },
2583 { INT_RANGE(beacon_prot
, 0, 1) },
2584 { INT_RANGE(transition_disable
, 0, 255) },
2596 #undef STR_RANGE_KEY
2603 #define NUM_SSID_FIELDS ARRAY_SIZE(ssid_fields)
2607 * wpa_config_add_prio_network - Add a network to priority lists
2608 * @config: Configuration data from wpa_config_read()
2609 * @ssid: Pointer to the network configuration to be added to the list
2610 * Returns: 0 on success, -1 on failure
2612 * This function is used to add a network block to the priority list of
2613 * networks. This must be called for each network when reading in the full
2614 * configuration. In addition, this can be used indirectly when updating
2615 * priorities by calling wpa_config_update_prio_list().
2617 int wpa_config_add_prio_network(struct wpa_config
*config
,
2618 struct wpa_ssid
*ssid
)
2621 struct wpa_ssid
*prev
, **nlist
;
2624 * Add to an existing priority list if one is available for the
2625 * configured priority level for this network.
2627 for (prio
= 0; prio
< config
->num_prio
; prio
++) {
2628 prev
= config
->pssid
[prio
];
2629 if (prev
->priority
== ssid
->priority
) {
2637 /* First network for this priority - add a new priority list */
2638 nlist
= os_realloc_array(config
->pssid
, config
->num_prio
+ 1,
2639 sizeof(struct wpa_ssid
*));
2643 for (prio
= 0; prio
< config
->num_prio
; prio
++) {
2644 if (nlist
[prio
]->priority
< ssid
->priority
) {
2645 os_memmove(&nlist
[prio
+ 1], &nlist
[prio
],
2646 (config
->num_prio
- prio
) *
2647 sizeof(struct wpa_ssid
*));
2654 config
->pssid
= nlist
;
2661 * wpa_config_update_prio_list - Update network priority list
2662 * @config: Configuration data from wpa_config_read()
2663 * Returns: 0 on success, -1 on failure
2665 * This function is called to update the priority list of networks in the
2666 * configuration when a network is being added or removed. This is also called
2667 * if a priority for a network is changed.
2669 int wpa_config_update_prio_list(struct wpa_config
*config
)
2671 struct wpa_ssid
*ssid
;
2674 os_free(config
->pssid
);
2675 config
->pssid
= NULL
;
2676 config
->num_prio
= 0;
2678 ssid
= config
->ssid
;
2681 if (wpa_config_add_prio_network(config
, ssid
) < 0)
2690 #ifdef IEEE8021X_EAPOL
2692 static void eap_peer_config_free_cert(struct eap_peer_cert_config
*cert
)
2694 os_free(cert
->ca_cert
);
2695 os_free(cert
->ca_path
);
2696 os_free(cert
->client_cert
);
2697 os_free(cert
->private_key
);
2698 str_clear_free(cert
->private_key_passwd
);
2699 os_free(cert
->dh_file
);
2700 os_free(cert
->subject_match
);
2701 os_free(cert
->check_cert_subject
);
2702 os_free(cert
->altsubject_match
);
2703 os_free(cert
->domain_suffix_match
);
2704 os_free(cert
->domain_match
);
2705 str_clear_free(cert
->pin
);
2706 os_free(cert
->engine_id
);
2707 os_free(cert
->key_id
);
2708 os_free(cert
->cert_id
);
2709 os_free(cert
->ca_cert_id
);
2713 static void eap_peer_config_free(struct eap_peer_config
*eap
)
2715 os_free(eap
->eap_methods
);
2716 bin_clear_free(eap
->identity
, eap
->identity_len
);
2717 os_free(eap
->anonymous_identity
);
2718 os_free(eap
->imsi_identity
);
2719 os_free(eap
->machine_identity
);
2720 bin_clear_free(eap
->password
, eap
->password_len
);
2721 bin_clear_free(eap
->machine_password
, eap
->machine_password_len
);
2722 eap_peer_config_free_cert(&eap
->cert
);
2723 eap_peer_config_free_cert(&eap
->phase2_cert
);
2724 eap_peer_config_free_cert(&eap
->machine_cert
);
2725 os_free(eap
->phase1
);
2726 os_free(eap
->phase2
);
2727 os_free(eap
->machine_phase2
);
2730 os_free(eap
->pending_req_otp
);
2731 os_free(eap
->pac_file
);
2732 bin_clear_free(eap
->new_password
, eap
->new_password_len
);
2733 str_clear_free(eap
->external_sim_resp
);
2734 os_free(eap
->openssl_ciphers
);
2737 #endif /* IEEE8021X_EAPOL */
2741 * wpa_config_free_ssid - Free network/ssid configuration data
2742 * @ssid: Configuration data for the network
2744 * This function frees all resources allocated for the network configuration
2747 void wpa_config_free_ssid(struct wpa_ssid
*ssid
)
2749 struct psk_list_entry
*psk
;
2751 os_free(ssid
->ssid
);
2752 str_clear_free(ssid
->passphrase
);
2753 os_free(ssid
->ext_psk
);
2754 str_clear_free(ssid
->sae_password
);
2755 os_free(ssid
->sae_password_id
);
2756 #ifdef IEEE8021X_EAPOL
2757 eap_peer_config_free(&ssid
->eap
);
2758 #endif /* IEEE8021X_EAPOL */
2759 os_free(ssid
->id_str
);
2760 os_free(ssid
->scan_freq
);
2761 os_free(ssid
->freq_list
);
2762 os_free(ssid
->bgscan
);
2763 os_free(ssid
->p2p_client_list
);
2764 os_free(ssid
->bssid_blacklist
);
2765 os_free(ssid
->bssid_whitelist
);
2766 #ifdef CONFIG_HT_OVERRIDES
2767 os_free(ssid
->ht_mcs
);
2768 #endif /* CONFIG_HT_OVERRIDES */
2770 os_free(ssid
->mesh_basic_rates
);
2771 #endif /* CONFIG_MESH */
2773 os_free(ssid
->roaming_consortium_selection
);
2774 #endif /* CONFIG_HS20 */
2775 os_free(ssid
->dpp_connector
);
2776 bin_clear_free(ssid
->dpp_netaccesskey
, ssid
->dpp_netaccesskey_len
);
2777 os_free(ssid
->dpp_csign
);
2778 while ((psk
= dl_list_first(&ssid
->psk_list
, struct psk_list_entry
,
2780 dl_list_del(&psk
->list
);
2781 bin_clear_free(psk
, sizeof(*psk
));
2784 sae_deinit_pt(ssid
->pt
);
2785 #endif /* CONFIG_SAE */
2786 bin_clear_free(ssid
, sizeof(*ssid
));
2790 void wpa_config_free_cred(struct wpa_cred
*cred
)
2794 os_free(cred
->realm
);
2795 str_clear_free(cred
->username
);
2796 str_clear_free(cred
->password
);
2797 os_free(cred
->ca_cert
);
2798 os_free(cred
->client_cert
);
2799 os_free(cred
->private_key
);
2800 str_clear_free(cred
->private_key_passwd
);
2801 os_free(cred
->imsi
);
2802 str_clear_free(cred
->milenage
);
2803 for (i
= 0; i
< cred
->num_domain
; i
++)
2804 os_free(cred
->domain
[i
]);
2805 os_free(cred
->domain
);
2806 os_free(cred
->domain_suffix_match
);
2807 os_free(cred
->eap_method
);
2808 os_free(cred
->phase1
);
2809 os_free(cred
->phase2
);
2810 os_free(cred
->excluded_ssid
);
2811 os_free(cred
->roaming_partner
);
2812 os_free(cred
->provisioning_sp
);
2813 for (i
= 0; i
< cred
->num_req_conn_capab
; i
++)
2814 os_free(cred
->req_conn_capab_port
[i
]);
2815 os_free(cred
->req_conn_capab_port
);
2816 os_free(cred
->req_conn_capab_proto
);
2821 void wpa_config_flush_blobs(struct wpa_config
*config
)
2823 #ifndef CONFIG_NO_CONFIG_BLOBS
2824 struct wpa_config_blob
*blob
, *prev
;
2826 blob
= config
->blobs
;
2827 config
->blobs
= NULL
;
2831 wpa_config_free_blob(prev
);
2833 #endif /* CONFIG_NO_CONFIG_BLOBS */
2838 * wpa_config_free - Free configuration data
2839 * @config: Configuration data from wpa_config_read()
2841 * This function frees all resources allocated for the configuration data by
2842 * wpa_config_read().
2844 void wpa_config_free(struct wpa_config
*config
)
2846 struct wpa_ssid
*ssid
, *prev
= NULL
;
2847 struct wpa_cred
*cred
, *cprev
;
2850 ssid
= config
->ssid
;
2854 wpa_config_free_ssid(prev
);
2857 cred
= config
->cred
;
2861 wpa_config_free_cred(cprev
);
2864 wpa_config_flush_blobs(config
);
2866 wpabuf_free(config
->wps_vendor_ext_m1
);
2867 for (i
= 0; i
< MAX_WPS_VENDOR_EXT
; i
++)
2868 wpabuf_free(config
->wps_vendor_ext
[i
]);
2869 os_free(config
->ctrl_interface
);
2870 os_free(config
->ctrl_interface_group
);
2871 os_free(config
->opensc_engine_path
);
2872 os_free(config
->pkcs11_engine_path
);
2873 os_free(config
->pkcs11_module_path
);
2874 os_free(config
->openssl_ciphers
);
2875 os_free(config
->pcsc_reader
);
2876 str_clear_free(config
->pcsc_pin
);
2877 os_free(config
->driver_param
);
2878 os_free(config
->device_name
);
2879 os_free(config
->manufacturer
);
2880 os_free(config
->model_name
);
2881 os_free(config
->model_number
);
2882 os_free(config
->serial_number
);
2883 os_free(config
->config_methods
);
2884 os_free(config
->p2p_ssid_postfix
);
2885 os_free(config
->pssid
);
2886 os_free(config
->p2p_pref_chan
);
2887 os_free(config
->p2p_no_go_freq
.range
);
2888 os_free(config
->autoscan
);
2889 os_free(config
->freq_list
);
2890 wpabuf_free(config
->wps_nfc_dh_pubkey
);
2891 wpabuf_free(config
->wps_nfc_dh_privkey
);
2892 wpabuf_free(config
->wps_nfc_dev_pw
);
2893 os_free(config
->ext_password_backend
);
2894 os_free(config
->sae_groups
);
2895 wpabuf_free(config
->ap_vendor_elements
);
2896 os_free(config
->osu_dir
);
2897 os_free(config
->bgscan
);
2898 os_free(config
->wowlan_triggers
);
2899 os_free(config
->fst_group_id
);
2900 os_free(config
->sched_scan_plans
);
2902 os_free(config
->non_pref_chan
);
2903 #endif /* CONFIG_MBO */
2904 os_free(config
->dpp_name
);
2905 os_free(config
->dpp_mud_url
);
2912 * wpa_config_foreach_network - Iterate over each configured network
2913 * @config: Configuration data from wpa_config_read()
2914 * @func: Callback function to process each network
2915 * @arg: Opaque argument to pass to callback function
2917 * Iterate over the set of configured networks calling the specified
2918 * function for each item. We guard against callbacks removing the
2921 void wpa_config_foreach_network(struct wpa_config
*config
,
2922 void (*func
)(void *, struct wpa_ssid
*),
2925 struct wpa_ssid
*ssid
, *next
;
2927 ssid
= config
->ssid
;
2937 * wpa_config_get_network - Get configured network based on id
2938 * @config: Configuration data from wpa_config_read()
2939 * @id: Unique network id to search for
2940 * Returns: Network configuration or %NULL if not found
2942 struct wpa_ssid
* wpa_config_get_network(struct wpa_config
*config
, int id
)
2944 struct wpa_ssid
*ssid
;
2946 ssid
= config
->ssid
;
2958 * wpa_config_add_network - Add a new network with empty configuration
2959 * @config: Configuration data from wpa_config_read()
2960 * Returns: The new network configuration or %NULL if operation failed
2962 struct wpa_ssid
* wpa_config_add_network(struct wpa_config
*config
)
2965 struct wpa_ssid
*ssid
, *last
= NULL
;
2968 ssid
= config
->ssid
;
2977 ssid
= os_zalloc(sizeof(*ssid
));
2981 dl_list_init(&ssid
->psk_list
);
2985 config
->ssid
= ssid
;
2987 wpa_config_update_prio_list(config
);
2994 * wpa_config_remove_network - Remove a configured network based on id
2995 * @config: Configuration data from wpa_config_read()
2996 * @id: Unique network id to search for
2997 * Returns: 0 on success, or -1 if the network was not found
2999 int wpa_config_remove_network(struct wpa_config
*config
, int id
)
3001 struct wpa_ssid
*ssid
, *prev
= NULL
;
3003 ssid
= config
->ssid
;
3015 prev
->next
= ssid
->next
;
3017 config
->ssid
= ssid
->next
;
3019 wpa_config_update_prio_list(config
);
3020 wpa_config_free_ssid(ssid
);
3026 * wpa_config_set_network_defaults - Set network default values
3027 * @ssid: Pointer to network configuration data
3029 void wpa_config_set_network_defaults(struct wpa_ssid
*ssid
)
3031 ssid
->proto
= DEFAULT_PROTO
;
3032 ssid
->pairwise_cipher
= DEFAULT_PAIRWISE
;
3033 ssid
->group_cipher
= DEFAULT_GROUP
;
3034 ssid
->key_mgmt
= DEFAULT_KEY_MGMT
;
3035 ssid
->wpa_deny_ptk0_rekey
= PTK0_REKEY_ALLOW_ALWAYS
;
3036 ssid
->bg_scan_period
= DEFAULT_BG_SCAN_PERIOD
;
3038 #ifdef IEEE8021X_EAPOL
3039 ssid
->eapol_flags
= DEFAULT_EAPOL_FLAGS
;
3040 ssid
->eap_workaround
= DEFAULT_EAP_WORKAROUND
;
3041 ssid
->eap
.fragment_size
= DEFAULT_FRAGMENT_SIZE
;
3042 ssid
->eap
.sim_num
= DEFAULT_USER_SELECTED_SIM
;
3043 #endif /* IEEE8021X_EAPOL */
3045 ssid
->dot11MeshMaxRetries
= DEFAULT_MESH_MAX_RETRIES
;
3046 ssid
->dot11MeshRetryTimeout
= DEFAULT_MESH_RETRY_TIMEOUT
;
3047 ssid
->dot11MeshConfirmTimeout
= DEFAULT_MESH_CONFIRM_TIMEOUT
;
3048 ssid
->dot11MeshHoldingTimeout
= DEFAULT_MESH_HOLDING_TIMEOUT
;
3049 ssid
->mesh_rssi_threshold
= DEFAULT_MESH_RSSI_THRESHOLD
;
3050 #endif /* CONFIG_MESH */
3051 #ifdef CONFIG_HT_OVERRIDES
3052 ssid
->disable_ht
= DEFAULT_DISABLE_HT
;
3053 ssid
->disable_ht40
= DEFAULT_DISABLE_HT40
;
3054 ssid
->disable_sgi
= DEFAULT_DISABLE_SGI
;
3055 ssid
->disable_ldpc
= DEFAULT_DISABLE_LDPC
;
3056 ssid
->tx_stbc
= DEFAULT_TX_STBC
;
3057 ssid
->rx_stbc
= DEFAULT_RX_STBC
;
3058 ssid
->disable_max_amsdu
= DEFAULT_DISABLE_MAX_AMSDU
;
3059 ssid
->ampdu_factor
= DEFAULT_AMPDU_FACTOR
;
3060 ssid
->ampdu_density
= DEFAULT_AMPDU_DENSITY
;
3061 #endif /* CONFIG_HT_OVERRIDES */
3062 #ifdef CONFIG_VHT_OVERRIDES
3063 ssid
->vht_rx_mcs_nss_1
= -1;
3064 ssid
->vht_rx_mcs_nss_2
= -1;
3065 ssid
->vht_rx_mcs_nss_3
= -1;
3066 ssid
->vht_rx_mcs_nss_4
= -1;
3067 ssid
->vht_rx_mcs_nss_5
= -1;
3068 ssid
->vht_rx_mcs_nss_6
= -1;
3069 ssid
->vht_rx_mcs_nss_7
= -1;
3070 ssid
->vht_rx_mcs_nss_8
= -1;
3071 ssid
->vht_tx_mcs_nss_1
= -1;
3072 ssid
->vht_tx_mcs_nss_2
= -1;
3073 ssid
->vht_tx_mcs_nss_3
= -1;
3074 ssid
->vht_tx_mcs_nss_4
= -1;
3075 ssid
->vht_tx_mcs_nss_5
= -1;
3076 ssid
->vht_tx_mcs_nss_6
= -1;
3077 ssid
->vht_tx_mcs_nss_7
= -1;
3078 ssid
->vht_tx_mcs_nss_8
= -1;
3079 #endif /* CONFIG_VHT_OVERRIDES */
3080 ssid
->proactive_key_caching
= -1;
3081 ssid
->ieee80211w
= MGMT_FRAME_PROTECTION_DEFAULT
;
3082 #ifdef CONFIG_MACSEC
3083 ssid
->mka_priority
= DEFAULT_PRIO_NOT_KEY_SERVER
;
3084 #endif /* CONFIG_MACSEC */
3085 ssid
->mac_addr
= -1;
3086 ssid
->max_oper_chwidth
= DEFAULT_MAX_OPER_CHWIDTH
;
3091 * wpa_config_set - Set a variable in network configuration
3092 * @ssid: Pointer to network configuration data
3093 * @var: Variable name, e.g., "ssid"
3094 * @value: Variable value
3095 * @line: Line number in configuration file or 0 if not used
3096 * Returns: 0 on success with possible change in the value, 1 on success with
3097 * no change to previously configured value, or -1 on failure
3099 * This function can be used to set network configuration variables based on
3100 * both the configuration file and management interface input. The value
3101 * parameter must be in the same format as the text-based configuration file is
3102 * using. For example, strings are using double quotation marks.
3104 int wpa_config_set(struct wpa_ssid
*ssid
, const char *var
, const char *value
,
3110 if (ssid
== NULL
|| var
== NULL
|| value
== NULL
)
3113 for (i
= 0; i
< NUM_SSID_FIELDS
; i
++) {
3114 const struct parse_data
*field
= &ssid_fields
[i
];
3115 if (os_strcmp(var
, field
->name
) != 0)
3118 ret
= field
->parser(field
, ssid
, line
, value
);
3121 wpa_printf(MSG_ERROR
, "Line %d: failed to "
3122 "parse %s '%s'.", line
, var
, value
);
3127 if (os_strcmp(var
, "ssid") == 0 ||
3128 os_strcmp(var
, "psk") == 0 ||
3129 os_strcmp(var
, "sae_password") == 0 ||
3130 os_strcmp(var
, "sae_password_id") == 0) {
3131 sae_deinit_pt(ssid
->pt
);
3134 #endif /* CONFIG_SAE */
3137 if (i
== NUM_SSID_FIELDS
) {
3139 wpa_printf(MSG_ERROR
, "Line %d: unknown network field "
3140 "'%s'.", line
, var
);
3149 int wpa_config_set_quoted(struct wpa_ssid
*ssid
, const char *var
,
3156 len
= os_strlen(value
);
3157 buf
= os_malloc(len
+ 3);
3161 os_memcpy(buf
+ 1, value
, len
);
3163 buf
[len
+ 2] = '\0';
3164 ret
= wpa_config_set(ssid
, var
, buf
, 0);
3171 * wpa_config_get_all - Get all options from network configuration
3172 * @ssid: Pointer to network configuration data
3173 * @get_keys: Determines if keys/passwords will be included in returned list
3174 * (if they may be exported)
3175 * Returns: %NULL terminated list of all set keys and their values in the form
3176 * of [key1, val1, key2, val2, ... , NULL]
3178 * This function can be used to get list of all configured network properties.
3179 * The caller is responsible for freeing the returned list and all its
3182 char ** wpa_config_get_all(struct wpa_ssid
*ssid
, int get_keys
)
3184 #ifdef NO_CONFIG_WRITE
3186 #else /* NO_CONFIG_WRITE */
3187 const struct parse_data
*field
;
3193 get_keys
= get_keys
&& ssid
->export_keys
;
3195 props
= os_calloc(2 * NUM_SSID_FIELDS
+ 1, sizeof(char *));
3200 for (i
= 0; i
< NUM_SSID_FIELDS
; i
++) {
3201 field
= &ssid_fields
[i
];
3202 if (field
->key_data
&& !get_keys
)
3204 value
= field
->writer(field
, ssid
);
3207 if (os_strlen(value
) == 0) {
3212 key
= os_strdup(field
->name
);
3218 props
[fields_num
* 2] = key
;
3219 props
[fields_num
* 2 + 1] = value
;
3227 for (i
= 0; props
[i
]; i
++)
3231 #endif /* NO_CONFIG_WRITE */
3235 #ifndef NO_CONFIG_WRITE
3237 * wpa_config_get - Get a variable in network configuration
3238 * @ssid: Pointer to network configuration data
3239 * @var: Variable name, e.g., "ssid"
3240 * Returns: Value of the variable or %NULL on failure
3242 * This function can be used to get network configuration variables. The
3243 * returned value is a copy of the configuration variable in text format, i.e,.
3244 * the same format that the text-based configuration file and wpa_config_set()
3245 * are using for the value. The caller is responsible for freeing the returned
3248 char * wpa_config_get(struct wpa_ssid
*ssid
, const char *var
)
3252 if (ssid
== NULL
|| var
== NULL
)
3255 for (i
= 0; i
< NUM_SSID_FIELDS
; i
++) {
3256 const struct parse_data
*field
= &ssid_fields
[i
];
3257 if (os_strcmp(var
, field
->name
) == 0) {
3258 char *ret
= field
->writer(field
, ssid
);
3260 if (ret
&& has_newline(ret
)) {
3261 wpa_printf(MSG_ERROR
,
3262 "Found newline in value for %s; not returning it",
3277 * wpa_config_get_no_key - Get a variable in network configuration (no keys)
3278 * @ssid: Pointer to network configuration data
3279 * @var: Variable name, e.g., "ssid"
3280 * Returns: Value of the variable or %NULL on failure
3282 * This function can be used to get network configuration variable like
3283 * wpa_config_get(). The only difference is that this functions does not expose
3284 * key/password material from the configuration. In case a key/password field
3285 * is requested, the returned value is an empty string or %NULL if the variable
3286 * is not set or "*" if the variable is set (regardless of its value). The
3287 * returned value is a copy of the configuration variable in text format, i.e,.
3288 * the same format that the text-based configuration file and wpa_config_set()
3289 * are using for the value. The caller is responsible for freeing the returned
3292 char * wpa_config_get_no_key(struct wpa_ssid
*ssid
, const char *var
)
3296 if (ssid
== NULL
|| var
== NULL
)
3299 for (i
= 0; i
< NUM_SSID_FIELDS
; i
++) {
3300 const struct parse_data
*field
= &ssid_fields
[i
];
3301 if (os_strcmp(var
, field
->name
) == 0) {
3302 char *res
= field
->writer(field
, ssid
);
3303 if (field
->key_data
) {
3304 if (res
&& res
[0]) {
3305 wpa_printf(MSG_DEBUG
, "Do not allow "
3306 "key_data field to be "
3308 str_clear_free(res
);
3309 return os_strdup("*");
3321 #endif /* NO_CONFIG_WRITE */
3325 * wpa_config_update_psk - Update WPA PSK based on passphrase and SSID
3326 * @ssid: Pointer to network configuration data
3328 * This function must be called to update WPA PSK when either SSID or the
3329 * passphrase has changed for the network configuration.
3331 void wpa_config_update_psk(struct wpa_ssid
*ssid
)
3333 #ifndef CONFIG_NO_PBKDF2
3334 pbkdf2_sha1(ssid
->passphrase
, ssid
->ssid
, ssid
->ssid_len
, 4096,
3335 ssid
->psk
, PMK_LEN
);
3336 wpa_hexdump_key(MSG_MSGDUMP
, "PSK (from passphrase)",
3337 ssid
->psk
, PMK_LEN
);
3339 #endif /* CONFIG_NO_PBKDF2 */
3343 static int wpa_config_set_cred_req_conn_capab(struct wpa_cred
*cred
,
3348 int *ports
, *nports
;
3350 unsigned int num_ports
;
3352 proto
= os_realloc_array(cred
->req_conn_capab_proto
,
3353 cred
->num_req_conn_capab
+ 1, sizeof(u8
));
3356 cred
->req_conn_capab_proto
= proto
;
3358 port
= os_realloc_array(cred
->req_conn_capab_port
,
3359 cred
->num_req_conn_capab
+ 1, sizeof(int *));
3362 cred
->req_conn_capab_port
= port
;
3364 proto
[cred
->num_req_conn_capab
] = atoi(value
);
3366 pos
= os_strchr(value
, ':');
3368 port
[cred
->num_req_conn_capab
] = NULL
;
3369 cred
->num_req_conn_capab
++;
3378 nports
= os_realloc_array(ports
, num_ports
+ 1, sizeof(int));
3379 if (nports
== NULL
) {
3384 ports
[num_ports
++] = atoi(pos
);
3386 pos
= os_strchr(pos
, ',');
3392 nports
= os_realloc_array(ports
, num_ports
+ 1, sizeof(int));
3393 if (nports
== NULL
) {
3398 ports
[num_ports
] = -1;
3400 port
[cred
->num_req_conn_capab
] = ports
;
3401 cred
->num_req_conn_capab
++;
3406 static int wpa_config_set_cred_roaming_consortiums(struct wpa_cred
*cred
,
3409 u8 roaming_consortiums
[MAX_ROAMING_CONS
][MAX_ROAMING_CONS_OI_LEN
];
3410 size_t roaming_consortiums_len
[MAX_ROAMING_CONS
];
3411 unsigned int num_roaming_consortiums
= 0;
3412 const char *pos
, *end
;
3415 os_memset(roaming_consortiums
, 0, sizeof(roaming_consortiums
));
3416 os_memset(roaming_consortiums_len
, 0, sizeof(roaming_consortiums_len
));
3418 for (pos
= value
;;) {
3419 end
= os_strchr(pos
, ',');
3420 len
= end
? (size_t) (end
- pos
) : os_strlen(pos
);
3421 if (!end
&& len
== 0)
3423 if (len
== 0 || (len
& 1) != 0 ||
3424 len
/ 2 > MAX_ROAMING_CONS_OI_LEN
||
3426 roaming_consortiums
[num_roaming_consortiums
],
3428 wpa_printf(MSG_INFO
,
3429 "Invalid roaming_consortiums entry: %s",
3433 roaming_consortiums_len
[num_roaming_consortiums
] = len
/ 2;
3434 num_roaming_consortiums
++;
3439 if (num_roaming_consortiums
>= MAX_ROAMING_CONS
) {
3440 wpa_printf(MSG_INFO
,
3441 "Too many roaming_consortiums OIs");
3448 os_memcpy(cred
->roaming_consortiums
, roaming_consortiums
,
3449 sizeof(roaming_consortiums
));
3450 os_memcpy(cred
->roaming_consortiums_len
, roaming_consortiums_len
,
3451 sizeof(roaming_consortiums_len
));
3452 cred
->num_roaming_consortiums
= num_roaming_consortiums
;
3458 int wpa_config_set_cred(struct wpa_cred
*cred
, const char *var
,
3459 const char *value
, int line
)
3465 if (os_strcmp(var
, "temporary") == 0) {
3466 cred
->temporary
= atoi(value
);
3470 if (os_strcmp(var
, "priority") == 0) {
3471 cred
->priority
= atoi(value
);
3475 if (os_strcmp(var
, "sp_priority") == 0) {
3476 int prio
= atoi(value
);
3477 if (prio
< 0 || prio
> 255)
3479 cred
->sp_priority
= prio
;
3483 if (os_strcmp(var
, "pcsc") == 0) {
3484 cred
->pcsc
= atoi(value
);
3488 if (os_strcmp(var
, "eap") == 0) {
3489 struct eap_method_type method
;
3490 method
.method
= eap_peer_get_type(value
, &method
.vendor
);
3491 if (method
.vendor
== EAP_VENDOR_IETF
&&
3492 method
.method
== EAP_TYPE_NONE
) {
3493 wpa_printf(MSG_ERROR
, "Line %d: unknown EAP type '%s' "
3494 "for a credential", line
, value
);
3497 os_free(cred
->eap_method
);
3498 cred
->eap_method
= os_malloc(sizeof(*cred
->eap_method
));
3499 if (cred
->eap_method
== NULL
)
3501 os_memcpy(cred
->eap_method
, &method
, sizeof(method
));
3505 if (os_strcmp(var
, "password") == 0 &&
3506 os_strncmp(value
, "ext:", 4) == 0) {
3507 if (has_newline(value
))
3509 str_clear_free(cred
->password
);
3510 cred
->password
= os_strdup(value
);
3511 cred
->ext_password
= 1;
3515 if (os_strcmp(var
, "update_identifier") == 0) {
3516 cred
->update_identifier
= atoi(value
);
3520 if (os_strcmp(var
, "min_dl_bandwidth_home") == 0) {
3521 cred
->min_dl_bandwidth_home
= atoi(value
);
3525 if (os_strcmp(var
, "min_ul_bandwidth_home") == 0) {
3526 cred
->min_ul_bandwidth_home
= atoi(value
);
3530 if (os_strcmp(var
, "min_dl_bandwidth_roaming") == 0) {
3531 cred
->min_dl_bandwidth_roaming
= atoi(value
);
3535 if (os_strcmp(var
, "min_ul_bandwidth_roaming") == 0) {
3536 cred
->min_ul_bandwidth_roaming
= atoi(value
);
3540 if (os_strcmp(var
, "max_bss_load") == 0) {
3541 cred
->max_bss_load
= atoi(value
);
3545 if (os_strcmp(var
, "req_conn_capab") == 0)
3546 return wpa_config_set_cred_req_conn_capab(cred
, value
);
3548 if (os_strcmp(var
, "ocsp") == 0) {
3549 cred
->ocsp
= atoi(value
);
3553 if (os_strcmp(var
, "sim_num") == 0) {
3554 cred
->sim_num
= atoi(value
);
3558 val
= wpa_config_parse_string(value
, &len
);
3560 (os_strcmp(var
, "excluded_ssid") != 0 &&
3561 os_strcmp(var
, "roaming_consortium") != 0 &&
3562 os_strcmp(var
, "required_roaming_consortium") != 0 &&
3563 has_newline(val
))) {
3564 wpa_printf(MSG_ERROR
, "Line %d: invalid field '%s' string "
3565 "value '%s'.", line
, var
, value
);
3570 if (os_strcmp(var
, "realm") == 0) {
3571 os_free(cred
->realm
);
3576 if (os_strcmp(var
, "username") == 0) {
3577 str_clear_free(cred
->username
);
3578 cred
->username
= val
;
3582 if (os_strcmp(var
, "password") == 0) {
3583 str_clear_free(cred
->password
);
3584 cred
->password
= val
;
3585 cred
->ext_password
= 0;
3589 if (os_strcmp(var
, "ca_cert") == 0) {
3590 os_free(cred
->ca_cert
);
3591 cred
->ca_cert
= val
;
3595 if (os_strcmp(var
, "client_cert") == 0) {
3596 os_free(cred
->client_cert
);
3597 cred
->client_cert
= val
;
3601 if (os_strcmp(var
, "private_key") == 0) {
3602 os_free(cred
->private_key
);
3603 cred
->private_key
= val
;
3607 if (os_strcmp(var
, "private_key_passwd") == 0) {
3608 str_clear_free(cred
->private_key_passwd
);
3609 cred
->private_key_passwd
= val
;
3613 if (os_strcmp(var
, "imsi") == 0) {
3614 os_free(cred
->imsi
);
3619 if (os_strcmp(var
, "milenage") == 0) {
3620 str_clear_free(cred
->milenage
);
3621 cred
->milenage
= val
;
3625 if (os_strcmp(var
, "domain_suffix_match") == 0) {
3626 os_free(cred
->domain_suffix_match
);
3627 cred
->domain_suffix_match
= val
;
3631 if (os_strcmp(var
, "domain") == 0) {
3633 new_domain
= os_realloc_array(cred
->domain
,
3634 cred
->num_domain
+ 1,
3636 if (new_domain
== NULL
) {
3640 new_domain
[cred
->num_domain
++] = val
;
3641 cred
->domain
= new_domain
;
3645 if (os_strcmp(var
, "phase1") == 0) {
3646 os_free(cred
->phase1
);
3651 if (os_strcmp(var
, "phase2") == 0) {
3652 os_free(cred
->phase2
);
3657 if (os_strcmp(var
, "roaming_consortium") == 0) {
3658 if (len
< 3 || len
> sizeof(cred
->roaming_consortium
)) {
3659 wpa_printf(MSG_ERROR
, "Line %d: invalid "
3660 "roaming_consortium length %d (3..15 "
3661 "expected)", line
, (int) len
);
3665 os_memcpy(cred
->roaming_consortium
, val
, len
);
3666 cred
->roaming_consortium_len
= len
;
3671 if (os_strcmp(var
, "required_roaming_consortium") == 0) {
3672 if (len
< 3 || len
> sizeof(cred
->required_roaming_consortium
))
3674 wpa_printf(MSG_ERROR
, "Line %d: invalid "
3675 "required_roaming_consortium length %d "
3676 "(3..15 expected)", line
, (int) len
);
3680 os_memcpy(cred
->required_roaming_consortium
, val
, len
);
3681 cred
->required_roaming_consortium_len
= len
;
3686 if (os_strcmp(var
, "roaming_consortiums") == 0) {
3687 res
= wpa_config_set_cred_roaming_consortiums(cred
, val
);
3689 wpa_printf(MSG_ERROR
,
3690 "Line %d: invalid roaming_consortiums",
3696 if (os_strcmp(var
, "excluded_ssid") == 0) {
3697 struct excluded_ssid
*e
;
3699 if (len
> SSID_MAX_LEN
) {
3700 wpa_printf(MSG_ERROR
, "Line %d: invalid "
3701 "excluded_ssid length %d", line
, (int) len
);
3706 e
= os_realloc_array(cred
->excluded_ssid
,
3707 cred
->num_excluded_ssid
+ 1,
3708 sizeof(struct excluded_ssid
));
3713 cred
->excluded_ssid
= e
;
3715 e
= &cred
->excluded_ssid
[cred
->num_excluded_ssid
++];
3716 os_memcpy(e
->ssid
, val
, len
);
3724 if (os_strcmp(var
, "roaming_partner") == 0) {
3725 struct roaming_partner
*p
;
3728 p
= os_realloc_array(cred
->roaming_partner
,
3729 cred
->num_roaming_partner
+ 1,
3730 sizeof(struct roaming_partner
));
3735 cred
->roaming_partner
= p
;
3737 p
= &cred
->roaming_partner
[cred
->num_roaming_partner
];
3739 pos
= os_strchr(val
, ',');
3745 if (pos
- val
- 1 >= (int) sizeof(p
->fqdn
)) {
3749 os_memcpy(p
->fqdn
, val
, pos
- val
);
3751 p
->exact_match
= atoi(pos
);
3753 pos
= os_strchr(pos
, ',');
3760 p
->priority
= atoi(pos
);
3762 pos
= os_strchr(pos
, ',');
3769 if (os_strlen(pos
) >= sizeof(p
->country
)) {
3773 os_memcpy(p
->country
, pos
, os_strlen(pos
) + 1);
3775 cred
->num_roaming_partner
++;
3781 if (os_strcmp(var
, "provisioning_sp") == 0) {
3782 os_free(cred
->provisioning_sp
);
3783 cred
->provisioning_sp
= val
;
3788 wpa_printf(MSG_ERROR
, "Line %d: unknown cred field '%s'.",
3798 static char * alloc_int_str(int val
)
3800 const unsigned int bufsize
= 20;
3804 buf
= os_malloc(bufsize
);
3807 res
= os_snprintf(buf
, bufsize
, "%d", val
);
3808 if (os_snprintf_error(bufsize
, res
)) {
3816 static char * alloc_strdup(const char *str
)
3820 return os_strdup(str
);
3824 char * wpa_config_get_cred_no_key(struct wpa_cred
*cred
, const char *var
)
3826 if (os_strcmp(var
, "temporary") == 0)
3827 return alloc_int_str(cred
->temporary
);
3829 if (os_strcmp(var
, "priority") == 0)
3830 return alloc_int_str(cred
->priority
);
3832 if (os_strcmp(var
, "sp_priority") == 0)
3833 return alloc_int_str(cred
->sp_priority
);
3835 if (os_strcmp(var
, "pcsc") == 0)
3836 return alloc_int_str(cred
->pcsc
);
3838 if (os_strcmp(var
, "eap") == 0) {
3839 if (!cred
->eap_method
)
3841 return alloc_strdup(eap_get_name(cred
->eap_method
[0].vendor
,
3842 cred
->eap_method
[0].method
));
3845 if (os_strcmp(var
, "update_identifier") == 0)
3846 return alloc_int_str(cred
->update_identifier
);
3848 if (os_strcmp(var
, "min_dl_bandwidth_home") == 0)
3849 return alloc_int_str(cred
->min_dl_bandwidth_home
);
3851 if (os_strcmp(var
, "min_ul_bandwidth_home") == 0)
3852 return alloc_int_str(cred
->min_ul_bandwidth_home
);
3854 if (os_strcmp(var
, "min_dl_bandwidth_roaming") == 0)
3855 return alloc_int_str(cred
->min_dl_bandwidth_roaming
);
3857 if (os_strcmp(var
, "min_ul_bandwidth_roaming") == 0)
3858 return alloc_int_str(cred
->min_ul_bandwidth_roaming
);
3860 if (os_strcmp(var
, "max_bss_load") == 0)
3861 return alloc_int_str(cred
->max_bss_load
);
3863 if (os_strcmp(var
, "req_conn_capab") == 0) {
3865 char *buf
, *end
, *pos
;
3868 if (!cred
->num_req_conn_capab
)
3871 buf
= os_malloc(4000);
3876 for (i
= 0; i
< cred
->num_req_conn_capab
; i
++) {
3879 ret
= os_snprintf(pos
, end
- pos
, "%s%u",
3881 cred
->req_conn_capab_proto
[i
]);
3882 if (os_snprintf_error(end
- pos
, ret
))
3886 ports
= cred
->req_conn_capab_port
[i
];
3889 for (j
= 0; ports
[j
] != -1; j
++) {
3890 ret
= os_snprintf(pos
, end
- pos
,
3894 if (os_snprintf_error(end
- pos
, ret
))
3904 if (os_strcmp(var
, "ocsp") == 0)
3905 return alloc_int_str(cred
->ocsp
);
3907 if (os_strcmp(var
, "realm") == 0)
3908 return alloc_strdup(cred
->realm
);
3910 if (os_strcmp(var
, "username") == 0)
3911 return alloc_strdup(cred
->username
);
3913 if (os_strcmp(var
, "password") == 0) {
3914 if (!cred
->password
)
3916 return alloc_strdup("*");
3919 if (os_strcmp(var
, "ca_cert") == 0)
3920 return alloc_strdup(cred
->ca_cert
);
3922 if (os_strcmp(var
, "client_cert") == 0)
3923 return alloc_strdup(cred
->client_cert
);
3925 if (os_strcmp(var
, "private_key") == 0)
3926 return alloc_strdup(cred
->private_key
);
3928 if (os_strcmp(var
, "private_key_passwd") == 0) {
3929 if (!cred
->private_key_passwd
)
3931 return alloc_strdup("*");
3934 if (os_strcmp(var
, "imsi") == 0)
3935 return alloc_strdup(cred
->imsi
);
3937 if (os_strcmp(var
, "milenage") == 0) {
3938 if (!(cred
->milenage
))
3940 return alloc_strdup("*");
3943 if (os_strcmp(var
, "domain_suffix_match") == 0)
3944 return alloc_strdup(cred
->domain_suffix_match
);
3946 if (os_strcmp(var
, "domain") == 0) {
3948 char *buf
, *end
, *pos
;
3951 if (!cred
->num_domain
)
3954 buf
= os_malloc(4000);
3960 for (i
= 0; i
< cred
->num_domain
; i
++) {
3961 ret
= os_snprintf(pos
, end
- pos
, "%s%s",
3962 i
> 0 ? "\n" : "", cred
->domain
[i
]);
3963 if (os_snprintf_error(end
- pos
, ret
))
3971 if (os_strcmp(var
, "phase1") == 0)
3972 return alloc_strdup(cred
->phase1
);
3974 if (os_strcmp(var
, "phase2") == 0)
3975 return alloc_strdup(cred
->phase2
);
3977 if (os_strcmp(var
, "roaming_consortium") == 0) {
3981 if (!cred
->roaming_consortium_len
)
3983 buflen
= cred
->roaming_consortium_len
* 2 + 1;
3984 buf
= os_malloc(buflen
);
3987 wpa_snprintf_hex(buf
, buflen
, cred
->roaming_consortium
,
3988 cred
->roaming_consortium_len
);
3992 if (os_strcmp(var
, "required_roaming_consortium") == 0) {
3996 if (!cred
->required_roaming_consortium_len
)
3998 buflen
= cred
->required_roaming_consortium_len
* 2 + 1;
3999 buf
= os_malloc(buflen
);
4002 wpa_snprintf_hex(buf
, buflen
, cred
->required_roaming_consortium
,
4003 cred
->required_roaming_consortium_len
);
4007 if (os_strcmp(var
, "roaming_consortiums") == 0) {
4012 if (!cred
->num_roaming_consortiums
)
4014 buflen
= cred
->num_roaming_consortiums
*
4015 MAX_ROAMING_CONS_OI_LEN
* 2 + 1;
4016 buf
= os_malloc(buflen
);
4020 for (i
= 0; i
< cred
->num_roaming_consortiums
; i
++) {
4023 pos
+= wpa_snprintf_hex(
4024 pos
, buf
+ buflen
- pos
,
4025 cred
->roaming_consortiums
[i
],
4026 cred
->roaming_consortiums_len
[i
]);
4032 if (os_strcmp(var
, "excluded_ssid") == 0) {
4034 char *buf
, *end
, *pos
;
4036 if (!cred
->num_excluded_ssid
)
4039 buf
= os_malloc(4000);
4045 for (i
= 0; i
< cred
->num_excluded_ssid
; i
++) {
4046 struct excluded_ssid
*e
;
4049 e
= &cred
->excluded_ssid
[i
];
4050 ret
= os_snprintf(pos
, end
- pos
, "%s%s",
4052 wpa_ssid_txt(e
->ssid
, e
->ssid_len
));
4053 if (os_snprintf_error(end
- pos
, ret
))
4061 if (os_strcmp(var
, "roaming_partner") == 0) {
4063 char *buf
, *end
, *pos
;
4065 if (!cred
->num_roaming_partner
)
4068 buf
= os_malloc(4000);
4074 for (i
= 0; i
< cred
->num_roaming_partner
; i
++) {
4075 struct roaming_partner
*p
;
4078 p
= &cred
->roaming_partner
[i
];
4079 ret
= os_snprintf(pos
, end
- pos
, "%s%s,%d,%u,%s",
4081 p
->fqdn
, p
->exact_match
, p
->priority
,
4083 if (os_snprintf_error(end
- pos
, ret
))
4091 if (os_strcmp(var
, "provisioning_sp") == 0)
4092 return alloc_strdup(cred
->provisioning_sp
);
4098 struct wpa_cred
* wpa_config_get_cred(struct wpa_config
*config
, int id
)
4100 struct wpa_cred
*cred
;
4102 cred
= config
->cred
;
4113 struct wpa_cred
* wpa_config_add_cred(struct wpa_config
*config
)
4116 struct wpa_cred
*cred
, *last
= NULL
;
4119 cred
= config
->cred
;
4128 cred
= os_zalloc(sizeof(*cred
));
4132 cred
->sim_num
= DEFAULT_USER_SELECTED_SIM
;
4136 config
->cred
= cred
;
4142 int wpa_config_remove_cred(struct wpa_config
*config
, int id
)
4144 struct wpa_cred
*cred
, *prev
= NULL
;
4146 cred
= config
->cred
;
4158 prev
->next
= cred
->next
;
4160 config
->cred
= cred
->next
;
4162 wpa_config_free_cred(cred
);
4167 #ifndef CONFIG_NO_CONFIG_BLOBS
4169 * wpa_config_get_blob - Get a named configuration blob
4170 * @config: Configuration data from wpa_config_read()
4171 * @name: Name of the blob
4172 * Returns: Pointer to blob data or %NULL if not found
4174 const struct wpa_config_blob
* wpa_config_get_blob(struct wpa_config
*config
,
4177 struct wpa_config_blob
*blob
= config
->blobs
;
4180 if (os_strcmp(blob
->name
, name
) == 0)
4189 * wpa_config_set_blob - Set or add a named configuration blob
4190 * @config: Configuration data from wpa_config_read()
4191 * @blob: New value for the blob
4193 * Adds a new configuration blob or replaces the current value of an existing
4196 void wpa_config_set_blob(struct wpa_config
*config
,
4197 struct wpa_config_blob
*blob
)
4199 wpa_config_remove_blob(config
, blob
->name
);
4200 blob
->next
= config
->blobs
;
4201 config
->blobs
= blob
;
4206 * wpa_config_free_blob - Free blob data
4207 * @blob: Pointer to blob to be freed
4209 void wpa_config_free_blob(struct wpa_config_blob
*blob
)
4212 os_free(blob
->name
);
4213 bin_clear_free(blob
->data
, blob
->len
);
4220 * wpa_config_remove_blob - Remove a named configuration blob
4221 * @config: Configuration data from wpa_config_read()
4222 * @name: Name of the blob to remove
4223 * Returns: 0 if blob was removed or -1 if blob was not found
4225 int wpa_config_remove_blob(struct wpa_config
*config
, const char *name
)
4227 struct wpa_config_blob
*pos
= config
->blobs
, *prev
= NULL
;
4230 if (os_strcmp(pos
->name
, name
) == 0) {
4232 prev
->next
= pos
->next
;
4234 config
->blobs
= pos
->next
;
4235 wpa_config_free_blob(pos
);
4244 #endif /* CONFIG_NO_CONFIG_BLOBS */
4248 * wpa_config_alloc_empty - Allocate an empty configuration
4249 * @ctrl_interface: Control interface parameters, e.g., path to UNIX domain
4251 * @driver_param: Driver parameters
4252 * Returns: Pointer to allocated configuration data or %NULL on failure
4254 struct wpa_config
* wpa_config_alloc_empty(const char *ctrl_interface
,
4255 const char *driver_param
)
4257 struct wpa_config
*config
;
4258 const int aCWmin
= 4, aCWmax
= 10;
4259 const struct hostapd_wmm_ac_params ac_bk
=
4260 { aCWmin
, aCWmax
, 7, 0, 0 }; /* background traffic */
4261 const struct hostapd_wmm_ac_params ac_be
=
4262 { aCWmin
, aCWmax
, 3, 0, 0 }; /* best effort traffic */
4263 const struct hostapd_wmm_ac_params ac_vi
= /* video traffic */
4264 { aCWmin
- 1, aCWmin
, 2, 3000 / 32, 0 };
4265 const struct hostapd_wmm_ac_params ac_vo
= /* voice traffic */
4266 { aCWmin
- 2, aCWmin
- 1, 2, 1500 / 32, 0 };
4268 config
= os_zalloc(sizeof(*config
));
4271 config
->eapol_version
= DEFAULT_EAPOL_VERSION
;
4272 config
->ap_scan
= DEFAULT_AP_SCAN
;
4273 config
->user_mpm
= DEFAULT_USER_MPM
;
4274 config
->max_peer_links
= DEFAULT_MAX_PEER_LINKS
;
4275 config
->mesh_max_inactivity
= DEFAULT_MESH_MAX_INACTIVITY
;
4276 config
->dot11RSNASAERetransPeriod
=
4277 DEFAULT_DOT11_RSNA_SAE_RETRANS_PERIOD
;
4278 config
->fast_reauth
= DEFAULT_FAST_REAUTH
;
4279 config
->p2p_go_intent
= DEFAULT_P2P_GO_INTENT
;
4280 config
->p2p_intra_bss
= DEFAULT_P2P_INTRA_BSS
;
4281 config
->p2p_go_freq_change_policy
= DEFAULT_P2P_GO_FREQ_MOVE
;
4282 config
->p2p_go_max_inactivity
= DEFAULT_P2P_GO_MAX_INACTIVITY
;
4283 config
->p2p_optimize_listen_chan
= DEFAULT_P2P_OPTIMIZE_LISTEN_CHAN
;
4284 config
->p2p_go_ctwindow
= DEFAULT_P2P_GO_CTWINDOW
;
4285 config
->bss_max_count
= DEFAULT_BSS_MAX_COUNT
;
4286 config
->bss_expiration_age
= DEFAULT_BSS_EXPIRATION_AGE
;
4287 config
->bss_expiration_scan_count
= DEFAULT_BSS_EXPIRATION_SCAN_COUNT
;
4288 config
->max_num_sta
= DEFAULT_MAX_NUM_STA
;
4289 config
->ap_isolate
= DEFAULT_AP_ISOLATE
;
4290 config
->access_network_type
= DEFAULT_ACCESS_NETWORK_TYPE
;
4291 config
->scan_cur_freq
= DEFAULT_SCAN_CUR_FREQ
;
4292 config
->wmm_ac_params
[0] = ac_be
;
4293 config
->wmm_ac_params
[1] = ac_bk
;
4294 config
->wmm_ac_params
[2] = ac_vi
;
4295 config
->wmm_ac_params
[3] = ac_vo
;
4296 config
->p2p_search_delay
= DEFAULT_P2P_SEARCH_DELAY
;
4297 config
->rand_addr_lifetime
= DEFAULT_RAND_ADDR_LIFETIME
;
4298 config
->key_mgmt_offload
= DEFAULT_KEY_MGMT_OFFLOAD
;
4299 config
->cert_in_cb
= DEFAULT_CERT_IN_CB
;
4300 config
->wpa_rsc_relaxation
= DEFAULT_WPA_RSC_RELAXATION
;
4301 config
->extended_key_id
= DEFAULT_EXTENDED_KEY_ID
;
4304 config
->mbo_cell_capa
= DEFAULT_MBO_CELL_CAPA
;
4305 config
->disassoc_imminent_rssi_threshold
=
4306 DEFAULT_DISASSOC_IMMINENT_RSSI_THRESHOLD
;
4307 config
->oce
= DEFAULT_OCE_SUPPORT
;
4308 #endif /* CONFIG_MBO */
4311 config
->ctrl_interface
= os_strdup(ctrl_interface
);
4313 config
->driver_param
= os_strdup(driver_param
);
4314 config
->gas_rand_addr_lifetime
= DEFAULT_RAND_ADDR_LIFETIME
;
4320 #ifndef CONFIG_NO_STDOUT_DEBUG
4322 * wpa_config_debug_dump_networks - Debug dump of configured networks
4323 * @config: Configuration data from wpa_config_read()
4325 void wpa_config_debug_dump_networks(struct wpa_config
*config
)
4328 struct wpa_ssid
*ssid
;
4330 for (prio
= 0; prio
< config
->num_prio
; prio
++) {
4331 ssid
= config
->pssid
[prio
];
4332 wpa_printf(MSG_DEBUG
, "Priority group %d",
4335 wpa_printf(MSG_DEBUG
, " id=%d ssid='%s'",
4337 wpa_ssid_txt(ssid
->ssid
, ssid
->ssid_len
));
4342 #endif /* CONFIG_NO_STDOUT_DEBUG */
4345 struct global_parse_data
{
4347 int (*parser
)(const struct global_parse_data
*data
,
4348 struct wpa_config
*config
, int line
, const char *value
);
4349 int (*get
)(const char *name
, struct wpa_config
*config
, long offset
,
4350 char *buf
, size_t buflen
, int pretty_print
);
4351 void *param1
, *param2
, *param3
;
4352 unsigned int changed_flag
;
4356 static int wpa_global_config_parse_int(const struct global_parse_data
*data
,
4357 struct wpa_config
*config
, int line
,
4363 dst
= (int *) (((u8
*) config
) + (long) data
->param1
);
4364 val
= strtol(pos
, &end
, 0);
4366 wpa_printf(MSG_ERROR
, "Line %d: invalid number \"%s\"",
4372 wpa_printf(MSG_DEBUG
, "%s=%d", data
->name
, *dst
);
4374 if (data
->param2
&& *dst
< (long) data
->param2
) {
4375 wpa_printf(MSG_ERROR
, "Line %d: too small %s (value=%d "
4376 "min_value=%ld)", line
, data
->name
, *dst
,
4377 (long) data
->param2
);
4378 *dst
= (long) data
->param2
;
4382 if (data
->param3
&& *dst
> (long) data
->param3
) {
4383 wpa_printf(MSG_ERROR
, "Line %d: too large %s (value=%d "
4384 "max_value=%ld)", line
, data
->name
, *dst
,
4385 (long) data
->param3
);
4386 *dst
= (long) data
->param3
;
4394 static int wpa_global_config_parse_str(const struct global_parse_data
*data
,
4395 struct wpa_config
*config
, int line
,
4401 len
= os_strlen(pos
);
4402 if (data
->param2
&& len
< (size_t) data
->param2
) {
4403 wpa_printf(MSG_ERROR
, "Line %d: too short %s (len=%lu "
4404 "min_len=%ld)", line
, data
->name
,
4405 (unsigned long) len
, (long) data
->param2
);
4409 if (data
->param3
&& len
> (size_t) data
->param3
) {
4410 wpa_printf(MSG_ERROR
, "Line %d: too long %s (len=%lu "
4411 "max_len=%ld)", line
, data
->name
,
4412 (unsigned long) len
, (long) data
->param3
);
4416 if (has_newline(pos
)) {
4417 wpa_printf(MSG_ERROR
, "Line %d: invalid %s value with newline",
4422 tmp
= os_strdup(pos
);
4426 dst
= (char **) (((u8
*) config
) + (long) data
->param1
);
4429 wpa_printf(MSG_DEBUG
, "%s='%s'", data
->name
, *dst
);
4435 static int wpa_config_process_bgscan(const struct global_parse_data
*data
,
4436 struct wpa_config
*config
, int line
,
4443 tmp
= wpa_config_parse_string(pos
, &len
);
4445 wpa_printf(MSG_ERROR
, "Line %d: failed to parse %s",
4450 res
= wpa_global_config_parse_str(data
, config
, line
, tmp
);
4456 static int wpa_global_config_parse_bin(const struct global_parse_data
*data
,
4457 struct wpa_config
*config
, int line
,
4460 struct wpabuf
**dst
, *tmp
;
4462 tmp
= wpabuf_parse_bin(pos
);
4466 dst
= (struct wpabuf
**) (((u8
*) config
) + (long) data
->param1
);
4469 wpa_printf(MSG_DEBUG
, "%s", data
->name
);
4475 static int wpa_config_process_freq_list(const struct global_parse_data
*data
,
4476 struct wpa_config
*config
, int line
,
4481 freqs
= wpa_config_parse_int_array(value
);
4484 if (freqs
[0] == 0) {
4488 os_free(config
->freq_list
);
4489 config
->freq_list
= freqs
;
4495 static int wpa_global_config_parse_ipv4(const struct global_parse_data
*data
,
4496 struct wpa_config
*config
, int line
,
4500 struct hostapd_ip_addr addr
;
4502 if (hostapd_parse_ip_addr(pos
, &addr
) < 0)
4504 if (addr
.af
!= AF_INET
)
4507 dst
= (u32
*) (((u8
*) config
) + (long) data
->param1
);
4508 os_memcpy(dst
, &addr
.u
.v4
.s_addr
, 4);
4509 wpa_printf(MSG_DEBUG
, "%s = 0x%x", data
->name
,
4510 WPA_GET_BE32((u8
*) dst
));
4514 #endif /* CONFIG_P2P */
4517 static int wpa_config_process_country(const struct global_parse_data
*data
,
4518 struct wpa_config
*config
, int line
,
4521 if (!pos
[0] || !pos
[1]) {
4522 wpa_printf(MSG_DEBUG
, "Invalid country set");
4525 config
->country
[0] = pos
[0];
4526 config
->country
[1] = pos
[1];
4527 wpa_printf(MSG_DEBUG
, "country='%c%c'",
4528 config
->country
[0], config
->country
[1]);
4533 static int wpa_config_process_load_dynamic_eap(
4534 const struct global_parse_data
*data
, struct wpa_config
*config
,
4535 int line
, const char *so
)
4538 wpa_printf(MSG_DEBUG
, "load_dynamic_eap=%s", so
);
4539 ret
= eap_peer_method_load(so
);
4541 wpa_printf(MSG_DEBUG
, "This EAP type was already loaded - not "
4544 wpa_printf(MSG_ERROR
, "Line %d: Failed to load dynamic EAP "
4545 "method '%s'.", line
, so
);
4555 static int wpa_config_process_uuid(const struct global_parse_data
*data
,
4556 struct wpa_config
*config
, int line
,
4560 if (uuid_str2bin(pos
, config
->uuid
)) {
4561 wpa_printf(MSG_ERROR
, "Line %d: invalid UUID", line
);
4564 uuid_bin2str(config
->uuid
, buf
, sizeof(buf
));
4565 wpa_printf(MSG_DEBUG
, "uuid=%s", buf
);
4570 static int wpa_config_process_device_type(
4571 const struct global_parse_data
*data
,
4572 struct wpa_config
*config
, int line
, const char *pos
)
4574 return wps_dev_type_str2bin(pos
, config
->device_type
);
4578 static int wpa_config_process_os_version(const struct global_parse_data
*data
,
4579 struct wpa_config
*config
, int line
,
4582 if (hexstr2bin(pos
, config
->os_version
, 4)) {
4583 wpa_printf(MSG_ERROR
, "Line %d: invalid os_version", line
);
4586 wpa_printf(MSG_DEBUG
, "os_version=%08x",
4587 WPA_GET_BE32(config
->os_version
));
4592 static int wpa_config_process_wps_vendor_ext_m1(
4593 const struct global_parse_data
*data
,
4594 struct wpa_config
*config
, int line
, const char *pos
)
4597 int len
= os_strlen(pos
) / 2;
4601 wpa_printf(MSG_ERROR
, "Line %d: "
4602 "invalid wps_vendor_ext_m1", line
);
4606 tmp
= wpabuf_alloc(len
);
4608 p
= wpabuf_put(tmp
, len
);
4610 if (hexstr2bin(pos
, p
, len
)) {
4611 wpa_printf(MSG_ERROR
, "Line %d: "
4612 "invalid wps_vendor_ext_m1", line
);
4617 wpabuf_free(config
->wps_vendor_ext_m1
);
4618 config
->wps_vendor_ext_m1
= tmp
;
4620 wpa_printf(MSG_ERROR
, "Can not allocate "
4621 "memory for wps_vendor_ext_m1");
4628 #endif /* CONFIG_WPS */
4631 static int wpa_config_process_sec_device_type(
4632 const struct global_parse_data
*data
,
4633 struct wpa_config
*config
, int line
, const char *pos
)
4637 if (config
->num_sec_device_types
>= MAX_SEC_DEVICE_TYPES
) {
4638 wpa_printf(MSG_ERROR
, "Line %d: too many sec_device_type "
4643 idx
= config
->num_sec_device_types
;
4645 if (wps_dev_type_str2bin(pos
, config
->sec_device_type
[idx
]))
4648 config
->num_sec_device_types
++;
4653 static int wpa_config_process_p2p_pref_chan(
4654 const struct global_parse_data
*data
,
4655 struct wpa_config
*config
, int line
, const char *pos
)
4657 struct p2p_channel
*pref
= NULL
, *n
;
4662 /* format: class:chan,class:chan,... */
4665 op_class
= atoi(pos
);
4666 pos2
= os_strchr(pos
, ':');
4672 n
= os_realloc_array(pref
, num
+ 1,
4673 sizeof(struct p2p_channel
));
4677 pref
[num
].op_class
= op_class
;
4678 pref
[num
].chan
= chan
;
4681 pos
= os_strchr(pos2
, ',');
4687 os_free(config
->p2p_pref_chan
);
4688 config
->p2p_pref_chan
= pref
;
4689 config
->num_p2p_pref_chan
= num
;
4690 wpa_hexdump(MSG_DEBUG
, "P2P: Preferred class/channel pairs",
4691 (u8
*) config
->p2p_pref_chan
,
4692 config
->num_p2p_pref_chan
* sizeof(struct p2p_channel
));
4698 wpa_printf(MSG_ERROR
, "Line %d: Invalid p2p_pref_chan list", line
);
4703 static int wpa_config_process_p2p_no_go_freq(
4704 const struct global_parse_data
*data
,
4705 struct wpa_config
*config
, int line
, const char *pos
)
4709 ret
= freq_range_list_parse(&config
->p2p_no_go_freq
, pos
);
4711 wpa_printf(MSG_ERROR
, "Line %d: Invalid p2p_no_go_freq", line
);
4715 wpa_printf(MSG_DEBUG
, "P2P: p2p_no_go_freq with %u items",
4716 config
->p2p_no_go_freq
.num
);
4722 static int wpa_config_process_p2p_device_persistent_mac_addr(
4723 const struct global_parse_data
*data
,
4724 struct wpa_config
*config
, int line
, const char *pos
)
4726 if (hwaddr_aton2(pos
, config
->p2p_device_persistent_mac_addr
) < 0) {
4727 wpa_printf(MSG_ERROR
,
4728 "Line %d: Invalid p2p_device_persistent_mac_addr '%s'",
4736 #endif /* CONFIG_P2P */
4739 static int wpa_config_process_hessid(
4740 const struct global_parse_data
*data
,
4741 struct wpa_config
*config
, int line
, const char *pos
)
4743 if (hwaddr_aton2(pos
, config
->hessid
) < 0) {
4744 wpa_printf(MSG_ERROR
, "Line %d: Invalid hessid '%s'",
4753 static int wpa_config_process_sae_groups(
4754 const struct global_parse_data
*data
,
4755 struct wpa_config
*config
, int line
, const char *pos
)
4757 int *groups
= wpa_config_parse_int_array(pos
);
4758 if (groups
== NULL
) {
4759 wpa_printf(MSG_ERROR
, "Line %d: Invalid sae_groups '%s'",
4764 os_free(config
->sae_groups
);
4765 config
->sae_groups
= groups
;
4771 static int wpa_config_process_ap_vendor_elements(
4772 const struct global_parse_data
*data
,
4773 struct wpa_config
*config
, int line
, const char *pos
)
4776 int len
= os_strlen(pos
) / 2;
4780 wpa_printf(MSG_ERROR
, "Line %d: invalid ap_vendor_elements",
4785 tmp
= wpabuf_alloc(len
);
4787 p
= wpabuf_put(tmp
, len
);
4789 if (hexstr2bin(pos
, p
, len
)) {
4790 wpa_printf(MSG_ERROR
, "Line %d: invalid "
4791 "ap_vendor_elements", line
);
4796 wpabuf_free(config
->ap_vendor_elements
);
4797 config
->ap_vendor_elements
= tmp
;
4799 wpa_printf(MSG_ERROR
, "Cannot allocate memory for "
4800 "ap_vendor_elements");
4808 #ifdef CONFIG_CTRL_IFACE
4809 static int wpa_config_process_no_ctrl_interface(
4810 const struct global_parse_data
*data
,
4811 struct wpa_config
*config
, int line
, const char *pos
)
4813 wpa_printf(MSG_DEBUG
, "no_ctrl_interface -> ctrl_interface=NULL");
4814 os_free(config
->ctrl_interface
);
4815 config
->ctrl_interface
= NULL
;
4818 #endif /* CONFIG_CTRL_IFACE */
4821 static int wpa_config_get_int(const char *name
, struct wpa_config
*config
,
4822 long offset
, char *buf
, size_t buflen
,
4825 int *val
= (int *) (((u8
*) config
) + (long) offset
);
4828 return os_snprintf(buf
, buflen
, "%s=%d\n", name
, *val
);
4829 return os_snprintf(buf
, buflen
, "%d", *val
);
4833 static int wpa_config_get_str(const char *name
, struct wpa_config
*config
,
4834 long offset
, char *buf
, size_t buflen
,
4837 char **val
= (char **) (((u8
*) config
) + (long) offset
);
4841 res
= os_snprintf(buf
, buflen
, "%s=%s\n", name
,
4842 *val
? *val
: "null");
4846 res
= os_snprintf(buf
, buflen
, "%s", *val
);
4847 if (os_snprintf_error(buflen
, res
))
4855 static int wpa_config_get_ipv4(const char *name
, struct wpa_config
*config
,
4856 long offset
, char *buf
, size_t buflen
,
4859 void *val
= ((u8
*) config
) + (long) offset
;
4861 char addr
[INET_ADDRSTRLEN
];
4863 if (!val
|| !inet_ntop(AF_INET
, val
, addr
, sizeof(addr
)))
4867 res
= os_snprintf(buf
, buflen
, "%s=%s\n", name
, addr
);
4869 res
= os_snprintf(buf
, buflen
, "%s", addr
);
4871 if (os_snprintf_error(buflen
, res
))
4876 #endif /* CONFIG_P2P */
4882 /* OFFSET: Get offset of a variable within the wpa_config structure */
4883 #define OFFSET(v) ((void *) &((struct wpa_config *) 0)->v)
4885 #define FUNC(f) #f, wpa_config_process_ ## f, NULL, OFFSET(f), NULL, NULL
4886 #define FUNC_NO_VAR(f) #f, wpa_config_process_ ## f, NULL, NULL, NULL, NULL
4887 #define _INT(f) #f, wpa_global_config_parse_int, wpa_config_get_int, OFFSET(f)
4888 #define INT(f) _INT(f), NULL, NULL
4889 #define INT_RANGE(f, min, max) _INT(f), (void *) min, (void *) max
4890 #define _STR(f) #f, wpa_global_config_parse_str, wpa_config_get_str, OFFSET(f)
4891 #define STR(f) _STR(f), NULL, NULL
4892 #define STR_RANGE(f, min, max) _STR(f), (void *) min, (void *) max
4893 #define BIN(f) #f, wpa_global_config_parse_bin, NULL, OFFSET(f), NULL, NULL
4894 #define IPV4(f) #f, wpa_global_config_parse_ipv4, wpa_config_get_ipv4, \
4895 OFFSET(f), NULL, NULL
4897 static const struct global_parse_data global_fields
[] = {
4898 #ifdef CONFIG_CTRL_IFACE
4899 { STR(ctrl_interface
), 0 },
4900 { FUNC_NO_VAR(no_ctrl_interface
), 0 },
4901 { STR(ctrl_interface_group
), 0 } /* deprecated */,
4902 #endif /* CONFIG_CTRL_IFACE */
4903 #ifdef CONFIG_MACSEC
4904 { INT_RANGE(eapol_version
, 1, 3), 0 },
4905 #else /* CONFIG_MACSEC */
4906 { INT_RANGE(eapol_version
, 1, 2), 0 },
4907 #endif /* CONFIG_MACSEC */
4908 { INT(ap_scan
), 0 },
4909 { FUNC(bgscan
), 0 },
4911 { INT(user_mpm
), 0 },
4912 { INT_RANGE(max_peer_links
, 0, 255), 0 },
4913 { INT(mesh_max_inactivity
), 0 },
4914 { INT(dot11RSNASAERetransPeriod
), 0 },
4915 #endif /* CONFIG_MESH */
4916 { INT(disable_scan_offload
), 0 },
4917 { INT(fast_reauth
), 0 },
4918 { STR(opensc_engine_path
), 0 },
4919 { STR(pkcs11_engine_path
), 0 },
4920 { STR(pkcs11_module_path
), 0 },
4921 { STR(openssl_ciphers
), 0 },
4922 { STR(pcsc_reader
), 0 },
4923 { STR(pcsc_pin
), 0 },
4924 { INT(external_sim
), 0 },
4925 { STR(driver_param
), 0 },
4926 { INT(dot11RSNAConfigPMKLifetime
), 0 },
4927 { INT(dot11RSNAConfigPMKReauthThreshold
), 0 },
4928 { INT(dot11RSNAConfigSATimeout
), 0 },
4929 #ifndef CONFIG_NO_CONFIG_WRITE
4930 { INT(update_config
), 0 },
4931 #endif /* CONFIG_NO_CONFIG_WRITE */
4932 { FUNC_NO_VAR(load_dynamic_eap
), 0 },
4934 { FUNC(uuid
), CFG_CHANGED_UUID
},
4935 { INT_RANGE(auto_uuid
, 0, 1), 0 },
4936 { STR_RANGE(device_name
, 0, WPS_DEV_NAME_MAX_LEN
),
4937 CFG_CHANGED_DEVICE_NAME
},
4938 { STR_RANGE(manufacturer
, 0, 64), CFG_CHANGED_WPS_STRING
},
4939 { STR_RANGE(model_name
, 0, 32), CFG_CHANGED_WPS_STRING
},
4940 { STR_RANGE(model_number
, 0, 32), CFG_CHANGED_WPS_STRING
},
4941 { STR_RANGE(serial_number
, 0, 32), CFG_CHANGED_WPS_STRING
},
4942 { FUNC(device_type
), CFG_CHANGED_DEVICE_TYPE
},
4943 { FUNC(os_version
), CFG_CHANGED_OS_VERSION
},
4944 { STR(config_methods
), CFG_CHANGED_CONFIG_METHODS
},
4945 { INT_RANGE(wps_cred_processing
, 0, 2), 0 },
4946 { INT_RANGE(wps_cred_add_sae
, 0, 1), 0 },
4947 { FUNC(wps_vendor_ext_m1
), CFG_CHANGED_VENDOR_EXTENSION
},
4948 #endif /* CONFIG_WPS */
4950 { FUNC(sec_device_type
), CFG_CHANGED_SEC_DEVICE_TYPE
},
4951 { INT(p2p_listen_reg_class
), CFG_CHANGED_P2P_LISTEN_CHANNEL
},
4952 { INT(p2p_listen_channel
), CFG_CHANGED_P2P_LISTEN_CHANNEL
},
4953 { INT(p2p_oper_reg_class
), CFG_CHANGED_P2P_OPER_CHANNEL
},
4954 { INT(p2p_oper_channel
), CFG_CHANGED_P2P_OPER_CHANNEL
},
4955 { INT_RANGE(p2p_go_intent
, 0, 15), 0 },
4956 { STR(p2p_ssid_postfix
), CFG_CHANGED_P2P_SSID_POSTFIX
},
4957 { INT_RANGE(persistent_reconnect
, 0, 1), 0 },
4958 { INT_RANGE(p2p_intra_bss
, 0, 1), CFG_CHANGED_P2P_INTRA_BSS
},
4959 { INT(p2p_group_idle
), 0 },
4960 { INT_RANGE(p2p_go_freq_change_policy
, 0, P2P_GO_FREQ_MOVE_MAX
), 0 },
4961 { INT_RANGE(p2p_passphrase_len
, 8, 63),
4962 CFG_CHANGED_P2P_PASSPHRASE_LEN
},
4963 { FUNC(p2p_pref_chan
), CFG_CHANGED_P2P_PREF_CHAN
},
4964 { FUNC(p2p_no_go_freq
), CFG_CHANGED_P2P_PREF_CHAN
},
4965 { INT_RANGE(p2p_add_cli_chan
, 0, 1), 0 },
4966 { INT_RANGE(p2p_optimize_listen_chan
, 0, 1), 0 },
4967 { INT(p2p_go_ht40
), 0 },
4968 { INT(p2p_go_vht
), 0 },
4969 { INT(p2p_go_he
), 0 },
4970 { INT(p2p_go_edmg
), 0 },
4971 { INT(p2p_disabled
), 0 },
4972 { INT_RANGE(p2p_go_ctwindow
, 0, 127), 0 },
4973 { INT(p2p_no_group_iface
), 0 },
4974 { INT_RANGE(p2p_ignore_shared_freq
, 0, 1), 0 },
4975 { IPV4(ip_addr_go
), 0 },
4976 { IPV4(ip_addr_mask
), 0 },
4977 { IPV4(ip_addr_start
), 0 },
4978 { IPV4(ip_addr_end
), 0 },
4979 { INT_RANGE(p2p_cli_probe
, 0, 1), 0 },
4980 { INT(p2p_device_random_mac_addr
), 0 },
4981 { FUNC(p2p_device_persistent_mac_addr
), 0 },
4982 { INT(p2p_interface_random_mac_addr
), 0 },
4983 #endif /* CONFIG_P2P */
4984 { FUNC(country
), CFG_CHANGED_COUNTRY
},
4985 { INT(bss_max_count
), 0 },
4986 { INT(bss_expiration_age
), 0 },
4987 { INT(bss_expiration_scan_count
), 0 },
4988 { INT_RANGE(filter_ssids
, 0, 1), 0 },
4989 { INT_RANGE(filter_rssi
, -100, 0), 0 },
4990 { INT(max_num_sta
), 0 },
4991 { INT_RANGE(ap_isolate
, 0, 1), 0 },
4992 { INT_RANGE(disassoc_low_ack
, 0, 1), 0 },
4994 { INT_RANGE(hs20
, 0, 1), 0 },
4995 #endif /* CONFIG_HS20 */
4996 { INT_RANGE(interworking
, 0, 1), 0 },
4997 { FUNC(hessid
), 0 },
4998 { INT_RANGE(access_network_type
, 0, 15), 0 },
4999 { INT_RANGE(go_interworking
, 0, 1), 0 },
5000 { INT_RANGE(go_access_network_type
, 0, 15), 0 },
5001 { INT_RANGE(go_internet
, 0, 1), 0 },
5002 { INT_RANGE(go_venue_group
, 0, 255), 0 },
5003 { INT_RANGE(go_venue_type
, 0, 255), 0 },
5004 { INT_RANGE(pbc_in_m1
, 0, 1), 0 },
5005 { STR(autoscan
), 0 },
5006 { INT_RANGE(wps_nfc_dev_pw_id
, 0x10, 0xffff),
5007 CFG_CHANGED_NFC_PASSWORD_TOKEN
},
5008 { BIN(wps_nfc_dh_pubkey
), CFG_CHANGED_NFC_PASSWORD_TOKEN
},
5009 { BIN(wps_nfc_dh_privkey
), CFG_CHANGED_NFC_PASSWORD_TOKEN
},
5010 { BIN(wps_nfc_dev_pw
), CFG_CHANGED_NFC_PASSWORD_TOKEN
},
5011 { STR(ext_password_backend
), CFG_CHANGED_EXT_PW_BACKEND
},
5012 { INT(p2p_go_max_inactivity
), 0 },
5013 { INT_RANGE(auto_interworking
, 0, 1), 0 },
5016 { FUNC(sae_groups
), 0 },
5017 { INT_RANGE(sae_pwe
, 0, 3), 0 },
5018 { INT_RANGE(sae_pmkid_in_assoc
, 0, 1), 0 },
5019 { INT(dtim_period
), 0 },
5020 { INT(beacon_int
), 0 },
5021 { FUNC(ap_vendor_elements
), 0 },
5022 { INT_RANGE(ignore_old_scan_res
, 0, 1), 0 },
5023 { FUNC(freq_list
), 0 },
5024 { INT(scan_cur_freq
), 0 },
5025 { INT(sched_scan_interval
), 0 },
5026 { INT(sched_scan_start_delay
), 0 },
5027 { INT(tdls_external_control
), 0},
5028 { STR(osu_dir
), 0 },
5029 { STR(wowlan_triggers
), CFG_CHANGED_WOWLAN_TRIGGERS
},
5030 { INT(p2p_search_delay
), 0},
5031 { INT(mac_addr
), 0 },
5032 { INT(rand_addr_lifetime
), 0 },
5033 { INT(preassoc_mac_addr
), 0 },
5034 { INT(key_mgmt_offload
), 0},
5035 { INT(passive_scan
), 0 },
5036 { INT(reassoc_same_bss_optim
), 0 },
5037 { INT(wps_priority
), 0},
5039 { STR_RANGE(fst_group_id
, 1, FST_MAX_GROUP_ID_LEN
), 0 },
5040 { INT_RANGE(fst_priority
, 1, FST_MAX_PRIO_VALUE
), 0 },
5041 { INT_RANGE(fst_llt
, 1, FST_MAX_LLT_MS
), 0 },
5042 #endif /* CONFIG_FST */
5043 { INT_RANGE(cert_in_cb
, 0, 1), 0 },
5044 { INT_RANGE(wpa_rsc_relaxation
, 0, 1), 0 },
5045 { STR(sched_scan_plans
), CFG_CHANGED_SCHED_SCAN_PLANS
},
5047 { STR(non_pref_chan
), 0 },
5048 { INT_RANGE(mbo_cell_capa
, MBO_CELL_CAPA_AVAILABLE
,
5049 MBO_CELL_CAPA_NOT_SUPPORTED
), 0 },
5050 { INT_RANGE(disassoc_imminent_rssi_threshold
, -120, 0), 0 },
5051 { INT_RANGE(oce
, 0, 3), 0 },
5052 #endif /* CONFIG_MBO */
5053 { INT(gas_address3
), 0 },
5054 { INT_RANGE(ftm_responder
, 0, 1), 0 },
5055 { INT_RANGE(ftm_initiator
, 0, 1), 0 },
5056 { INT(gas_rand_addr_lifetime
), 0 },
5057 { INT_RANGE(gas_rand_mac_addr
, 0, 2), 0 },
5059 { INT_RANGE(dpp_config_processing
, 0, 2), 0 },
5060 { STR(dpp_name
), 0 },
5061 { STR(dpp_mud_url
), 0 },
5062 #endif /* CONFIG_DPP */
5063 { INT_RANGE(coloc_intf_reporting
, 0, 1), 0 },
5065 { INT_RANGE(disable_btm
, 0, 1), CFG_CHANGED_DISABLE_BTM
},
5066 { INT_RANGE(extended_key_id
, 0, 1), 0 },
5067 #endif /* CONFIG_WNM */
5079 #define NUM_GLOBAL_FIELDS ARRAY_SIZE(global_fields)
5082 int wpa_config_dump_values(struct wpa_config
*config
, char *buf
, size_t buflen
)
5087 for (i
= 0; i
< NUM_GLOBAL_FIELDS
; i
++) {
5088 const struct global_parse_data
*field
= &global_fields
[i
];
5094 tmp
= field
->get(field
->name
, config
, (long) field
->param1
,
5106 int wpa_config_get_value(const char *name
, struct wpa_config
*config
,
5107 char *buf
, size_t buflen
)
5111 for (i
= 0; i
< NUM_GLOBAL_FIELDS
; i
++) {
5112 const struct global_parse_data
*field
= &global_fields
[i
];
5114 if (os_strcmp(name
, field
->name
) != 0)
5118 return field
->get(name
, config
, (long) field
->param1
,
5126 int wpa_config_get_num_global_field_names(void)
5128 return NUM_GLOBAL_FIELDS
;
5132 const char * wpa_config_get_global_field_name(unsigned int i
, int *no_var
)
5134 if (i
>= NUM_GLOBAL_FIELDS
)
5138 *no_var
= !global_fields
[i
].param1
;
5139 return global_fields
[i
].name
;
5143 int wpa_config_process_global(struct wpa_config
*config
, char *pos
, int line
)
5148 for (i
= 0; i
< NUM_GLOBAL_FIELDS
; i
++) {
5149 const struct global_parse_data
*field
= &global_fields
[i
];
5150 size_t flen
= os_strlen(field
->name
);
5151 if (os_strncmp(pos
, field
->name
, flen
) != 0 ||
5155 if (field
->parser(field
, config
, line
, pos
+ flen
+ 1)) {
5156 wpa_printf(MSG_ERROR
, "Line %d: failed to "
5157 "parse '%s'.", line
, pos
);
5160 if (field
->changed_flag
== CFG_CHANGED_NFC_PASSWORD_TOKEN
)
5161 config
->wps_nfc_pw_from_config
= 1;
5162 config
->changed_parameters
|= field
->changed_flag
;
5165 if (i
== NUM_GLOBAL_FIELDS
) {
5167 if (os_strncmp(pos
, "wmm_ac_", 7) == 0) {
5168 char *tmp
= os_strchr(pos
, '=');
5172 wpa_printf(MSG_ERROR
, "Line %d: invalid line "
5177 if (hostapd_config_wmm_ac(config
->wmm_ac_params
, pos
,
5179 wpa_printf(MSG_ERROR
, "Line %d: invalid WMM "
5185 #endif /* CONFIG_AP */
5188 wpa_printf(MSG_ERROR
, "Line %d: unknown global field '%s'.",