]>
Commit | Line | Data |
---|---|---|
6fc6879b JM |
1 | /* |
2 | * hostapd / Station table | |
f2c56602 | 3 | * Copyright (c) 2002-2013, Jouni Malinen <j@w1.fi> |
6fc6879b | 4 | * |
0f3d578e JM |
5 | * This software may be distributed under the terms of the BSD license. |
6 | * See README for more details. | |
6fc6879b JM |
7 | */ |
8 | ||
6226e38d | 9 | #include "utils/includes.h" |
6fc6879b | 10 | |
6226e38d JM |
11 | #include "utils/common.h" |
12 | #include "utils/eloop.h" | |
81f4f619 | 13 | #include "common/ieee802_11_defs.h" |
6caaae1e | 14 | #include "common/wpa_ctrl.h" |
a46d72d7 | 15 | #include "common/sae.h" |
bdee6fce JM |
16 | #include "radius/radius.h" |
17 | #include "radius/radius_client.h" | |
8ccbe415 | 18 | #include "p2p/p2p.h" |
6959145b | 19 | #include "fst/fst.h" |
6fc6879b | 20 | #include "hostapd.h" |
6fc6879b JM |
21 | #include "accounting.h" |
22 | #include "ieee802_1x.h" | |
23 | #include "ieee802_11.h" | |
f2a14be7 | 24 | #include "ieee802_11_auth.h" |
6226e38d JM |
25 | #include "wpa_auth.h" |
26 | #include "preauth_auth.h" | |
27 | #include "ap_config.h" | |
6fc6879b | 28 | #include "beacon.h" |
6226e38d | 29 | #include "ap_mlme.h" |
6fc6879b | 30 | #include "vlan_init.h" |
aefb53bd | 31 | #include "p2p_hostapd.h" |
cee7d66b | 32 | #include "ap_drv_ops.h" |
dca30c3f | 33 | #include "gas_serv.h" |
97596f8e | 34 | #include "wnm_ap.h" |
bd00c431 | 35 | #include "ndisc_snoop.h" |
6226e38d | 36 | #include "sta_info.h" |
6fc6879b | 37 | |
53f3d6f3 FF |
38 | static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd, |
39 | struct sta_info *sta); | |
6fc6879b | 40 | static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx); |
97596f8e | 41 | static void ap_handle_session_warning_timer(void *eloop_ctx, void *timeout_ctx); |
4dc03726 JM |
42 | static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx); |
43 | static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx); | |
5d22a1d5 | 44 | #ifdef CONFIG_IEEE80211W |
93b76319 | 45 | static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx); |
5d22a1d5 | 46 | #endif /* CONFIG_IEEE80211W */ |
4dc03726 | 47 | static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta); |
6fc6879b JM |
48 | |
49 | int ap_for_each_sta(struct hostapd_data *hapd, | |
50 | int (*cb)(struct hostapd_data *hapd, struct sta_info *sta, | |
51 | void *ctx), | |
52 | void *ctx) | |
53 | { | |
54 | struct sta_info *sta; | |
55 | ||
56 | for (sta = hapd->sta_list; sta; sta = sta->next) { | |
57 | if (cb(hapd, sta, ctx)) | |
58 | return 1; | |
59 | } | |
60 | ||
61 | return 0; | |
62 | } | |
63 | ||
64 | ||
65 | struct sta_info * ap_get_sta(struct hostapd_data *hapd, const u8 *sta) | |
66 | { | |
67 | struct sta_info *s; | |
68 | ||
69 | s = hapd->sta_hash[STA_HASH(sta)]; | |
70 | while (s != NULL && os_memcmp(s->addr, sta, 6) != 0) | |
71 | s = s->hnext; | |
72 | return s; | |
73 | } | |
74 | ||
75 | ||
f2c56602 JM |
76 | #ifdef CONFIG_P2P |
77 | struct sta_info * ap_get_sta_p2p(struct hostapd_data *hapd, const u8 *addr) | |
78 | { | |
79 | struct sta_info *sta; | |
80 | ||
81 | for (sta = hapd->sta_list; sta; sta = sta->next) { | |
82 | const u8 *p2p_dev_addr; | |
83 | ||
84 | if (sta->p2p_ie == NULL) | |
85 | continue; | |
86 | ||
87 | p2p_dev_addr = p2p_get_go_dev_addr(sta->p2p_ie); | |
88 | if (p2p_dev_addr == NULL) | |
89 | continue; | |
90 | ||
91 | if (os_memcmp(p2p_dev_addr, addr, ETH_ALEN) == 0) | |
92 | return sta; | |
93 | } | |
94 | ||
95 | return NULL; | |
96 | } | |
97 | #endif /* CONFIG_P2P */ | |
98 | ||
99 | ||
6fc6879b JM |
100 | static void ap_sta_list_del(struct hostapd_data *hapd, struct sta_info *sta) |
101 | { | |
102 | struct sta_info *tmp; | |
103 | ||
104 | if (hapd->sta_list == sta) { | |
105 | hapd->sta_list = sta->next; | |
106 | return; | |
107 | } | |
108 | ||
109 | tmp = hapd->sta_list; | |
110 | while (tmp != NULL && tmp->next != sta) | |
111 | tmp = tmp->next; | |
112 | if (tmp == NULL) { | |
113 | wpa_printf(MSG_DEBUG, "Could not remove STA " MACSTR " from " | |
114 | "list.", MAC2STR(sta->addr)); | |
115 | } else | |
116 | tmp->next = sta->next; | |
117 | } | |
118 | ||
119 | ||
120 | void ap_sta_hash_add(struct hostapd_data *hapd, struct sta_info *sta) | |
121 | { | |
122 | sta->hnext = hapd->sta_hash[STA_HASH(sta->addr)]; | |
123 | hapd->sta_hash[STA_HASH(sta->addr)] = sta; | |
124 | } | |
125 | ||
126 | ||
127 | static void ap_sta_hash_del(struct hostapd_data *hapd, struct sta_info *sta) | |
128 | { | |
129 | struct sta_info *s; | |
130 | ||
131 | s = hapd->sta_hash[STA_HASH(sta->addr)]; | |
132 | if (s == NULL) return; | |
133 | if (os_memcmp(s->addr, sta->addr, 6) == 0) { | |
134 | hapd->sta_hash[STA_HASH(sta->addr)] = s->hnext; | |
135 | return; | |
136 | } | |
137 | ||
138 | while (s->hnext != NULL && | |
139 | os_memcmp(s->hnext->addr, sta->addr, ETH_ALEN) != 0) | |
140 | s = s->hnext; | |
141 | if (s->hnext != NULL) | |
142 | s->hnext = s->hnext->hnext; | |
143 | else | |
144 | wpa_printf(MSG_DEBUG, "AP: could not remove STA " MACSTR | |
145 | " from hash table", MAC2STR(sta->addr)); | |
146 | } | |
147 | ||
148 | ||
bd00c431 KP |
149 | void ap_sta_ip6addr_del(struct hostapd_data *hapd, struct sta_info *sta) |
150 | { | |
151 | sta_ip6addr_del(hapd, sta); | |
152 | } | |
153 | ||
154 | ||
6fc6879b JM |
155 | void ap_free_sta(struct hostapd_data *hapd, struct sta_info *sta) |
156 | { | |
157 | int set_beacon = 0; | |
158 | ||
159 | accounting_sta_stop(hapd, sta); | |
160 | ||
6905dcb1 JB |
161 | /* just in case */ |
162 | ap_sta_set_authorized(hapd, sta, 0); | |
163 | ||
39f42d11 | 164 | if (sta->flags & WLAN_STA_WDS) |
69dd2967 | 165 | hostapd_set_wds_sta(hapd, NULL, sta->addr, sta->aid, 0); |
53f3d6f3 | 166 | |
7d597d46 | 167 | if (sta->ipaddr) |
ed4ddb6d | 168 | hostapd_drv_br_delete_ip_neigh(hapd, 4, (u8 *) &sta->ipaddr); |
bd00c431 | 169 | ap_sta_ip6addr_del(hapd, sta); |
7d597d46 | 170 | |
354c903f MB |
171 | if (!hapd->iface->driver_ap_teardown && |
172 | !(sta->flags & WLAN_STA_PREAUTH)) | |
51e2a27a | 173 | hostapd_drv_sta_remove(hapd, sta->addr); |
6fc6879b JM |
174 | |
175 | ap_sta_hash_del(hapd, sta); | |
176 | ap_sta_list_del(hapd, sta); | |
177 | ||
178 | if (sta->aid > 0) | |
2991469c JM |
179 | hapd->sta_aid[(sta->aid - 1) / 32] &= |
180 | ~BIT((sta->aid - 1) % 32); | |
6fc6879b JM |
181 | |
182 | hapd->num_sta--; | |
183 | if (sta->nonerp_set) { | |
184 | sta->nonerp_set = 0; | |
185 | hapd->iface->num_sta_non_erp--; | |
186 | if (hapd->iface->num_sta_non_erp == 0) | |
187 | set_beacon++; | |
188 | } | |
189 | ||
190 | if (sta->no_short_slot_time_set) { | |
191 | sta->no_short_slot_time_set = 0; | |
192 | hapd->iface->num_sta_no_short_slot_time--; | |
193 | if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G | |
194 | && hapd->iface->num_sta_no_short_slot_time == 0) | |
195 | set_beacon++; | |
196 | } | |
197 | ||
198 | if (sta->no_short_preamble_set) { | |
199 | sta->no_short_preamble_set = 0; | |
200 | hapd->iface->num_sta_no_short_preamble--; | |
201 | if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G | |
202 | && hapd->iface->num_sta_no_short_preamble == 0) | |
203 | set_beacon++; | |
204 | } | |
205 | ||
e8ff1e59 JM |
206 | if (sta->no_ht_gf_set) { |
207 | sta->no_ht_gf_set = 0; | |
208 | hapd->iface->num_sta_ht_no_gf--; | |
209 | } | |
210 | ||
211 | if (sta->no_ht_set) { | |
212 | sta->no_ht_set = 0; | |
de9289c8 | 213 | hapd->iface->num_sta_no_ht--; |
e8ff1e59 JM |
214 | } |
215 | ||
216 | if (sta->ht_20mhz_set) { | |
217 | sta->ht_20mhz_set = 0; | |
218 | hapd->iface->num_sta_ht_20mhz--; | |
219 | } | |
de9289c8 | 220 | |
9c47f6a2 PX |
221 | #ifdef CONFIG_IEEE80211N |
222 | ht40_intolerant_remove(hapd->iface, sta); | |
223 | #endif /* CONFIG_IEEE80211N */ | |
224 | ||
aefb53bd JM |
225 | #ifdef CONFIG_P2P |
226 | if (sta->no_p2p_set) { | |
227 | sta->no_p2p_set = 0; | |
228 | hapd->num_sta_no_p2p--; | |
229 | if (hapd->num_sta_no_p2p == 0) | |
230 | hostapd_p2p_non_p2p_sta_disconnected(hapd); | |
231 | } | |
232 | #endif /* CONFIG_P2P */ | |
233 | ||
d45354be | 234 | #if defined(NEED_AP_MLME) && defined(CONFIG_IEEE80211N) |
de9289c8 JM |
235 | if (hostapd_ht_operation_update(hapd->iface) > 0) |
236 | set_beacon++; | |
d45354be | 237 | #endif /* NEED_AP_MLME && CONFIG_IEEE80211N */ |
de9289c8 | 238 | |
c596f3f0 CYY |
239 | #ifdef CONFIG_MESH |
240 | if (hapd->mesh_sta_free_cb) | |
241 | hapd->mesh_sta_free_cb(sta); | |
242 | #endif /* CONFIG_MESH */ | |
243 | ||
6fc6879b JM |
244 | if (set_beacon) |
245 | ieee802_11_set_beacons(hapd->iface); | |
246 | ||
42ca9845 JM |
247 | wpa_printf(MSG_DEBUG, "%s: cancel ap_handle_timer for " MACSTR, |
248 | __func__, MAC2STR(sta->addr)); | |
6fc6879b JM |
249 | eloop_cancel_timeout(ap_handle_timer, hapd, sta); |
250 | eloop_cancel_timeout(ap_handle_session_timer, hapd, sta); | |
97596f8e | 251 | eloop_cancel_timeout(ap_handle_session_warning_timer, hapd, sta); |
9e8fde21 | 252 | ap_sta_clear_disconnect_timeouts(hapd, sta); |
f3b8ad4d | 253 | sae_clear_retransmit_timer(hapd, sta); |
6fc6879b | 254 | |
d7c3347f | 255 | ieee802_1x_free_station(hapd, sta); |
6fc6879b JM |
256 | wpa_auth_sta_deinit(sta->wpa_sm); |
257 | rsn_preauth_free_station(hapd, sta); | |
74784010 | 258 | #ifndef CONFIG_NO_RADIUS |
ded22b53 HS |
259 | if (hapd->radius) |
260 | radius_client_flush_auth(hapd->radius, sta->addr); | |
74784010 | 261 | #endif /* CONFIG_NO_RADIUS */ |
6fc6879b | 262 | |
7cebc8e2 MB |
263 | #ifndef CONFIG_NO_VLAN |
264 | /* | |
265 | * sta->wpa_sm->group needs to be released before so that | |
266 | * vlan_remove_dynamic() can check that no stations are left on the | |
267 | * AP_VLAN netdev. | |
268 | */ | |
269 | if (sta->vlan_id_bound) { | |
270 | /* | |
271 | * Need to remove the STA entry before potentially removing the | |
272 | * VLAN. | |
273 | */ | |
274 | if (hapd->iface->driver_ap_teardown && | |
275 | !(sta->flags & WLAN_STA_PREAUTH)) | |
276 | hostapd_drv_sta_remove(hapd, sta->addr); | |
277 | vlan_remove_dynamic(hapd, sta->vlan_id_bound); | |
278 | } | |
279 | #endif /* CONFIG_NO_VLAN */ | |
280 | ||
6fc6879b | 281 | os_free(sta->challenge); |
5d22a1d5 JM |
282 | |
283 | #ifdef CONFIG_IEEE80211W | |
93b76319 JM |
284 | os_free(sta->sa_query_trans_id); |
285 | eloop_cancel_timeout(ap_sa_query_timer, hapd, sta); | |
5d22a1d5 JM |
286 | #endif /* CONFIG_IEEE80211W */ |
287 | ||
8ccbe415 JM |
288 | #ifdef CONFIG_P2P |
289 | p2p_group_notif_disassoc(hapd->p2p_group, sta->addr); | |
290 | #endif /* CONFIG_P2P */ | |
291 | ||
dca30c3f JK |
292 | #ifdef CONFIG_INTERWORKING |
293 | if (sta->gas_dialog) { | |
294 | int i; | |
295 | for (i = 0; i < GAS_DIALOG_MAX; i++) | |
296 | gas_serv_dialog_clear(&sta->gas_dialog[i]); | |
297 | os_free(sta->gas_dialog); | |
298 | } | |
299 | #endif /* CONFIG_INTERWORKING */ | |
300 | ||
eb76b7e3 | 301 | wpabuf_free(sta->wps_ie); |
b305c684 | 302 | wpabuf_free(sta->p2p_ie); |
f403dcd6 | 303 | wpabuf_free(sta->hs20_ie); |
ae667c08 AN |
304 | #ifdef CONFIG_FST |
305 | wpabuf_free(sta->mb_ies); | |
306 | #endif /* CONFIG_FST */ | |
eb76b7e3 | 307 | |
df84268a | 308 | os_free(sta->ht_capabilities); |
cc14091e | 309 | os_free(sta->vht_capabilities); |
f2a14be7 | 310 | hostapd_free_psk_list(sta->psk); |
2092597f MB |
311 | os_free(sta->identity); |
312 | os_free(sta->radius_cui); | |
6ca0853d | 313 | os_free(sta->remediation_url); |
8e1146d9 | 314 | wpabuf_free(sta->hs20_deauth_req); |
97596f8e | 315 | os_free(sta->hs20_session_info_url); |
df84268a | 316 | |
98efcc41 | 317 | #ifdef CONFIG_SAE |
a46d72d7 | 318 | sae_clear_data(sta->sae); |
98efcc41 JM |
319 | os_free(sta->sae); |
320 | #endif /* CONFIG_SAE */ | |
321 | ||
6fc6879b JM |
322 | os_free(sta); |
323 | } | |
324 | ||
325 | ||
326 | void hostapd_free_stas(struct hostapd_data *hapd) | |
327 | { | |
328 | struct sta_info *sta, *prev; | |
329 | ||
330 | sta = hapd->sta_list; | |
331 | ||
332 | while (sta) { | |
333 | prev = sta; | |
334 | if (sta->flags & WLAN_STA_AUTH) { | |
335 | mlme_deauthenticate_indication( | |
336 | hapd, sta, WLAN_REASON_UNSPECIFIED); | |
337 | } | |
338 | sta = sta->next; | |
339 | wpa_printf(MSG_DEBUG, "Removing station " MACSTR, | |
340 | MAC2STR(prev->addr)); | |
341 | ap_free_sta(hapd, prev); | |
342 | } | |
343 | } | |
344 | ||
345 | ||
1c6e69cc JM |
346 | /** |
347 | * ap_handle_timer - Per STA timer handler | |
348 | * @eloop_ctx: struct hostapd_data * | |
349 | * @timeout_ctx: struct sta_info * | |
350 | * | |
351 | * This function is called to check station activity and to remove inactive | |
352 | * stations. | |
353 | */ | |
6fc6879b JM |
354 | void ap_handle_timer(void *eloop_ctx, void *timeout_ctx) |
355 | { | |
356 | struct hostapd_data *hapd = eloop_ctx; | |
357 | struct sta_info *sta = timeout_ctx; | |
358 | unsigned long next_time = 0; | |
d5b559b6 | 359 | int reason; |
6fc6879b | 360 | |
03269d55 JM |
361 | wpa_printf(MSG_DEBUG, "%s: %s: " MACSTR " flags=0x%x timeout_next=%d", |
362 | hapd->conf->iface, __func__, MAC2STR(sta->addr), sta->flags, | |
42ca9845 | 363 | sta->timeout_next); |
6fc6879b JM |
364 | if (sta->timeout_next == STA_REMOVE) { |
365 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, | |
366 | HOSTAPD_LEVEL_INFO, "deauthenticated due to " | |
367 | "local deauth request"); | |
368 | ap_free_sta(hapd, sta); | |
369 | return; | |
370 | } | |
371 | ||
372 | if ((sta->flags & WLAN_STA_ASSOC) && | |
373 | (sta->timeout_next == STA_NULLFUNC || | |
374 | sta->timeout_next == STA_DISASSOC)) { | |
375 | int inactive_sec; | |
ce28e279 BG |
376 | /* |
377 | * Add random value to timeout so that we don't end up bouncing | |
378 | * all stations at the same time if we have lots of associated | |
379 | * stations that are idle (but keep re-associating). | |
380 | */ | |
381 | int fuzz = os_random() % 20; | |
51e2a27a | 382 | inactive_sec = hostapd_drv_get_inact_sec(hapd, sta->addr); |
6fc6879b | 383 | if (inactive_sec == -1) { |
3ec1e902 JM |
384 | wpa_msg(hapd->msg_ctx, MSG_DEBUG, |
385 | "Check inactivity: Could not " | |
d5674791 | 386 | "get station info from kernel driver for " |
24d75245 | 387 | MACSTR, MAC2STR(sta->addr)); |
d5674791 JM |
388 | /* |
389 | * The driver may not support this functionality. | |
390 | * Anyway, try again after the next inactivity timeout, | |
391 | * but do not disconnect the station now. | |
392 | */ | |
ce28e279 | 393 | next_time = hapd->conf->ap_max_inactivity + fuzz; |
b9749bac MH |
394 | } else if (inactive_sec == -ENOENT) { |
395 | wpa_msg(hapd->msg_ctx, MSG_DEBUG, | |
396 | "Station " MACSTR " has lost its driver entry", | |
397 | MAC2STR(sta->addr)); | |
398 | ||
47e5fbde PO |
399 | /* Avoid sending client probe on removed client */ |
400 | sta->timeout_next = STA_DISASSOC; | |
401 | goto skip_poll; | |
a114c723 | 402 | } else if (inactive_sec < hapd->conf->ap_max_inactivity) { |
6fc6879b | 403 | /* station activity detected; reset timeout state */ |
3ec1e902 JM |
404 | wpa_msg(hapd->msg_ctx, MSG_DEBUG, |
405 | "Station " MACSTR " has been active %is ago", | |
24d75245 | 406 | MAC2STR(sta->addr), inactive_sec); |
6fc6879b | 407 | sta->timeout_next = STA_NULLFUNC; |
ce28e279 | 408 | next_time = hapd->conf->ap_max_inactivity + fuzz - |
6fc6879b | 409 | inactive_sec; |
24d75245 | 410 | } else { |
3ec1e902 JM |
411 | wpa_msg(hapd->msg_ctx, MSG_DEBUG, |
412 | "Station " MACSTR " has been " | |
24d75245 BG |
413 | "inactive too long: %d sec, max allowed: %d", |
414 | MAC2STR(sta->addr), inactive_sec, | |
415 | hapd->conf->ap_max_inactivity); | |
ef01fa7b YAP |
416 | |
417 | if (hapd->conf->skip_inactivity_poll) | |
418 | sta->timeout_next = STA_DISASSOC; | |
6fc6879b JM |
419 | } |
420 | } | |
421 | ||
422 | if ((sta->flags & WLAN_STA_ASSOC) && | |
423 | sta->timeout_next == STA_DISASSOC && | |
ef01fa7b YAP |
424 | !(sta->flags & WLAN_STA_PENDING_POLL) && |
425 | !hapd->conf->skip_inactivity_poll) { | |
3ec1e902 JM |
426 | wpa_msg(hapd->msg_ctx, MSG_DEBUG, "Station " MACSTR |
427 | " has ACKed data poll", MAC2STR(sta->addr)); | |
6fc6879b JM |
428 | /* data nullfunc frame poll did not produce TX errors; assume |
429 | * station ACKed it */ | |
430 | sta->timeout_next = STA_NULLFUNC; | |
431 | next_time = hapd->conf->ap_max_inactivity; | |
432 | } | |
433 | ||
47e5fbde | 434 | skip_poll: |
6fc6879b | 435 | if (next_time) { |
42ca9845 JM |
436 | wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout " |
437 | "for " MACSTR " (%lu seconds)", | |
438 | __func__, MAC2STR(sta->addr), next_time); | |
6fc6879b JM |
439 | eloop_register_timeout(next_time, 0, ap_handle_timer, hapd, |
440 | sta); | |
441 | return; | |
442 | } | |
443 | ||
444 | if (sta->timeout_next == STA_NULLFUNC && | |
445 | (sta->flags & WLAN_STA_ASSOC)) { | |
bcf24348 | 446 | wpa_printf(MSG_DEBUG, " Polling STA"); |
6fc6879b | 447 | sta->flags |= WLAN_STA_PENDING_POLL; |
bcf24348 JB |
448 | hostapd_drv_poll_client(hapd, hapd->own_addr, sta->addr, |
449 | sta->flags & WLAN_STA_WMM); | |
6fc6879b JM |
450 | } else if (sta->timeout_next != STA_REMOVE) { |
451 | int deauth = sta->timeout_next == STA_DEAUTH; | |
452 | ||
afcc9ea1 BG |
453 | wpa_dbg(hapd->msg_ctx, MSG_DEBUG, |
454 | "Timeout, sending %s info to STA " MACSTR, | |
455 | deauth ? "deauthentication" : "disassociation", | |
456 | MAC2STR(sta->addr)); | |
6fc6879b JM |
457 | |
458 | if (deauth) { | |
51e2a27a JM |
459 | hostapd_drv_sta_deauth( |
460 | hapd, sta->addr, | |
461 | WLAN_REASON_PREV_AUTH_NOT_VALID); | |
6fc6879b | 462 | } else { |
d5b559b6 KP |
463 | reason = (sta->timeout_next == STA_DISASSOC) ? |
464 | WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY : | |
465 | WLAN_REASON_PREV_AUTH_NOT_VALID; | |
466 | ||
467 | hostapd_drv_sta_disassoc(hapd, sta->addr, reason); | |
6fc6879b JM |
468 | } |
469 | } | |
470 | ||
471 | switch (sta->timeout_next) { | |
472 | case STA_NULLFUNC: | |
473 | sta->timeout_next = STA_DISASSOC; | |
42ca9845 JM |
474 | wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout " |
475 | "for " MACSTR " (%d seconds - AP_DISASSOC_DELAY)", | |
476 | __func__, MAC2STR(sta->addr), AP_DISASSOC_DELAY); | |
6fc6879b JM |
477 | eloop_register_timeout(AP_DISASSOC_DELAY, 0, ap_handle_timer, |
478 | hapd, sta); | |
479 | break; | |
480 | case STA_DISASSOC: | |
d5b559b6 | 481 | case STA_DISASSOC_FROM_CLI: |
ae055af4 | 482 | ap_sta_set_authorized(hapd, sta, 0); |
6fc6879b JM |
483 | sta->flags &= ~WLAN_STA_ASSOC; |
484 | ieee802_1x_notify_port_enabled(sta->eapol_sm, 0); | |
485 | if (!sta->acct_terminate_cause) | |
486 | sta->acct_terminate_cause = | |
487 | RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT; | |
488 | accounting_sta_stop(hapd, sta); | |
d7c3347f | 489 | ieee802_1x_free_station(hapd, sta); |
6fc6879b JM |
490 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, |
491 | HOSTAPD_LEVEL_INFO, "disassociated due to " | |
492 | "inactivity"); | |
d5b559b6 KP |
493 | reason = (sta->timeout_next == STA_DISASSOC) ? |
494 | WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY : | |
495 | WLAN_REASON_PREV_AUTH_NOT_VALID; | |
6fc6879b | 496 | sta->timeout_next = STA_DEAUTH; |
42ca9845 JM |
497 | wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout " |
498 | "for " MACSTR " (%d seconds - AP_DEAUTH_DELAY)", | |
499 | __func__, MAC2STR(sta->addr), AP_DEAUTH_DELAY); | |
6fc6879b JM |
500 | eloop_register_timeout(AP_DEAUTH_DELAY, 0, ap_handle_timer, |
501 | hapd, sta); | |
d5b559b6 | 502 | mlme_disassociate_indication(hapd, sta, reason); |
6fc6879b JM |
503 | break; |
504 | case STA_DEAUTH: | |
505 | case STA_REMOVE: | |
506 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, | |
507 | HOSTAPD_LEVEL_INFO, "deauthenticated due to " | |
afcc9ea1 | 508 | "inactivity (timer DEAUTH/REMOVE)"); |
6fc6879b JM |
509 | if (!sta->acct_terminate_cause) |
510 | sta->acct_terminate_cause = | |
511 | RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT; | |
512 | mlme_deauthenticate_indication( | |
513 | hapd, sta, | |
514 | WLAN_REASON_PREV_AUTH_NOT_VALID); | |
515 | ap_free_sta(hapd, sta); | |
516 | break; | |
517 | } | |
518 | } | |
519 | ||
520 | ||
521 | static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx) | |
522 | { | |
523 | struct hostapd_data *hapd = eloop_ctx; | |
524 | struct sta_info *sta = timeout_ctx; | |
6fc6879b | 525 | |
03269d55 JM |
526 | wpa_printf(MSG_DEBUG, "%s: Session timer for STA " MACSTR, |
527 | hapd->conf->iface, MAC2STR(sta->addr)); | |
dca30c3f JK |
528 | if (!(sta->flags & WLAN_STA_AUTH)) { |
529 | if (sta->flags & WLAN_STA_GAS) { | |
530 | wpa_printf(MSG_DEBUG, "GAS: Remove temporary STA " | |
531 | "entry " MACSTR, MAC2STR(sta->addr)); | |
532 | ap_free_sta(hapd, sta); | |
533 | } | |
6fc6879b | 534 | return; |
dca30c3f | 535 | } |
6fc6879b | 536 | |
0ac38766 JM |
537 | hostapd_drv_sta_deauth(hapd, sta->addr, |
538 | WLAN_REASON_PREV_AUTH_NOT_VALID); | |
6fc6879b JM |
539 | mlme_deauthenticate_indication(hapd, sta, |
540 | WLAN_REASON_PREV_AUTH_NOT_VALID); | |
541 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, | |
542 | HOSTAPD_LEVEL_INFO, "deauthenticated due to " | |
543 | "session timeout"); | |
544 | sta->acct_terminate_cause = | |
545 | RADIUS_ACCT_TERMINATE_CAUSE_SESSION_TIMEOUT; | |
6fc6879b | 546 | ap_free_sta(hapd, sta); |
6fc6879b JM |
547 | } |
548 | ||
549 | ||
91f9e607 KP |
550 | void ap_sta_replenish_timeout(struct hostapd_data *hapd, struct sta_info *sta, |
551 | u32 session_timeout) | |
552 | { | |
553 | if (eloop_replenish_timeout(session_timeout, 0, | |
a09ffd5f | 554 | ap_handle_session_timer, hapd, sta) == 1) { |
91f9e607 KP |
555 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, |
556 | HOSTAPD_LEVEL_DEBUG, "setting session timeout " | |
557 | "to %d seconds", session_timeout); | |
558 | } | |
559 | } | |
560 | ||
561 | ||
6fc6879b JM |
562 | void ap_sta_session_timeout(struct hostapd_data *hapd, struct sta_info *sta, |
563 | u32 session_timeout) | |
564 | { | |
565 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, | |
566 | HOSTAPD_LEVEL_DEBUG, "setting session timeout to %d " | |
567 | "seconds", session_timeout); | |
568 | eloop_cancel_timeout(ap_handle_session_timer, hapd, sta); | |
569 | eloop_register_timeout(session_timeout, 0, ap_handle_session_timer, | |
570 | hapd, sta); | |
571 | } | |
572 | ||
573 | ||
574 | void ap_sta_no_session_timeout(struct hostapd_data *hapd, struct sta_info *sta) | |
575 | { | |
576 | eloop_cancel_timeout(ap_handle_session_timer, hapd, sta); | |
577 | } | |
578 | ||
579 | ||
97596f8e JM |
580 | static void ap_handle_session_warning_timer(void *eloop_ctx, void *timeout_ctx) |
581 | { | |
582 | #ifdef CONFIG_WNM | |
583 | struct hostapd_data *hapd = eloop_ctx; | |
584 | struct sta_info *sta = timeout_ctx; | |
585 | ||
03269d55 JM |
586 | wpa_printf(MSG_DEBUG, "%s: WNM: Session warning time reached for " |
587 | MACSTR, hapd->conf->iface, MAC2STR(sta->addr)); | |
97596f8e JM |
588 | if (sta->hs20_session_info_url == NULL) |
589 | return; | |
590 | ||
591 | wnm_send_ess_disassoc_imminent(hapd, sta, sta->hs20_session_info_url, | |
592 | sta->hs20_disassoc_timer); | |
593 | #endif /* CONFIG_WNM */ | |
594 | } | |
595 | ||
596 | ||
597 | void ap_sta_session_warning_timeout(struct hostapd_data *hapd, | |
598 | struct sta_info *sta, int warning_time) | |
599 | { | |
600 | eloop_cancel_timeout(ap_handle_session_warning_timer, hapd, sta); | |
601 | eloop_register_timeout(warning_time, 0, ap_handle_session_warning_timer, | |
602 | hapd, sta); | |
603 | } | |
604 | ||
605 | ||
6fc6879b JM |
606 | struct sta_info * ap_sta_add(struct hostapd_data *hapd, const u8 *addr) |
607 | { | |
608 | struct sta_info *sta; | |
609 | ||
610 | sta = ap_get_sta(hapd, addr); | |
611 | if (sta) | |
612 | return sta; | |
613 | ||
614 | wpa_printf(MSG_DEBUG, " New STA"); | |
615 | if (hapd->num_sta >= hapd->conf->max_num_sta) { | |
616 | /* FIX: might try to remove some old STAs first? */ | |
617 | wpa_printf(MSG_DEBUG, "no more room for new STAs (%d/%d)", | |
618 | hapd->num_sta, hapd->conf->max_num_sta); | |
619 | return NULL; | |
620 | } | |
621 | ||
622 | sta = os_zalloc(sizeof(struct sta_info)); | |
623 | if (sta == NULL) { | |
624 | wpa_printf(MSG_ERROR, "malloc failed"); | |
625 | return NULL; | |
626 | } | |
5843e1c9 | 627 | sta->acct_interim_interval = hapd->conf->acct_interim_interval; |
d72a0053 NL |
628 | if (accounting_sta_get_id(hapd, sta) < 0) { |
629 | os_free(sta); | |
630 | return NULL; | |
631 | } | |
6fc6879b | 632 | |
336167c8 MSS |
633 | if (!(hapd->iface->drv_flags & WPA_DRIVER_FLAGS_INACTIVITY_TIMER)) { |
634 | wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout " | |
635 | "for " MACSTR " (%d seconds - ap_max_inactivity)", | |
636 | __func__, MAC2STR(addr), | |
637 | hapd->conf->ap_max_inactivity); | |
638 | eloop_register_timeout(hapd->conf->ap_max_inactivity, 0, | |
639 | ap_handle_timer, hapd, sta); | |
640 | } | |
641 | ||
6fc6879b | 642 | /* initialize STA info data */ |
6fc6879b JM |
643 | os_memcpy(sta->addr, addr, ETH_ALEN); |
644 | sta->next = hapd->sta_list; | |
645 | hapd->sta_list = sta; | |
646 | hapd->num_sta++; | |
647 | ap_sta_hash_add(hapd, sta); | |
53f3d6f3 | 648 | ap_sta_remove_in_other_bss(hapd, sta); |
38cb0a2d | 649 | sta->last_seq_ctrl = WLAN_INVALID_MGMT_SEQ; |
bd00c431 | 650 | dl_list_init(&sta->ip6addr); |
6fc6879b JM |
651 | |
652 | return sta; | |
653 | } | |
654 | ||
655 | ||
656 | static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta) | |
657 | { | |
658 | ieee802_1x_notify_port_enabled(sta->eapol_sm, 0); | |
659 | ||
7d597d46 | 660 | if (sta->ipaddr) |
ed4ddb6d | 661 | hostapd_drv_br_delete_ip_neigh(hapd, 4, (u8 *) &sta->ipaddr); |
bd00c431 | 662 | ap_sta_ip6addr_del(hapd, sta); |
7d597d46 | 663 | |
03269d55 JM |
664 | wpa_printf(MSG_DEBUG, "%s: Removing STA " MACSTR " from kernel driver", |
665 | hapd->conf->iface, MAC2STR(sta->addr)); | |
51e2a27a | 666 | if (hostapd_drv_sta_remove(hapd, sta->addr) && |
6fc6879b | 667 | sta->flags & WLAN_STA_ASSOC) { |
03269d55 JM |
668 | wpa_printf(MSG_DEBUG, "%s: Could not remove station " MACSTR |
669 | " from kernel driver", | |
670 | hapd->conf->iface, MAC2STR(sta->addr)); | |
6fc6879b JM |
671 | return -1; |
672 | } | |
673 | return 0; | |
674 | } | |
675 | ||
676 | ||
53f3d6f3 FF |
677 | static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd, |
678 | struct sta_info *sta) | |
6fc6879b JM |
679 | { |
680 | struct hostapd_iface *iface = hapd->iface; | |
681 | size_t i; | |
682 | ||
683 | for (i = 0; i < iface->num_bss; i++) { | |
684 | struct hostapd_data *bss = iface->bss[i]; | |
685 | struct sta_info *sta2; | |
686 | /* bss should always be set during operation, but it may be | |
687 | * NULL during reconfiguration. Assume the STA is not | |
688 | * associated to another BSS in that case to avoid NULL pointer | |
689 | * dereferences. */ | |
690 | if (bss == hapd || bss == NULL) | |
691 | continue; | |
692 | sta2 = ap_get_sta(bss, sta->addr); | |
53f3d6f3 FF |
693 | if (!sta2) |
694 | continue; | |
6fc6879b | 695 | |
03269d55 JM |
696 | wpa_printf(MSG_DEBUG, "%s: disconnect old STA " MACSTR |
697 | " association from another BSS %s", | |
698 | hapd->conf->iface, MAC2STR(sta2->addr), | |
699 | bss->conf->iface); | |
53f3d6f3 FF |
700 | ap_sta_disconnect(bss, sta2, sta2->addr, |
701 | WLAN_REASON_PREV_AUTH_NOT_VALID); | |
702 | } | |
6fc6879b JM |
703 | } |
704 | ||
705 | ||
4dc03726 JM |
706 | static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx) |
707 | { | |
708 | struct hostapd_data *hapd = eloop_ctx; | |
709 | struct sta_info *sta = timeout_ctx; | |
710 | ||
03269d55 JM |
711 | wpa_printf(MSG_DEBUG, "%s: Disassociation callback for STA " MACSTR, |
712 | hapd->conf->iface, MAC2STR(sta->addr)); | |
4dc03726 JM |
713 | ap_sta_remove(hapd, sta); |
714 | mlme_disassociate_indication(hapd, sta, sta->disassoc_reason); | |
715 | } | |
716 | ||
717 | ||
6fc6879b JM |
718 | void ap_sta_disassociate(struct hostapd_data *hapd, struct sta_info *sta, |
719 | u16 reason) | |
720 | { | |
721 | wpa_printf(MSG_DEBUG, "%s: disassociate STA " MACSTR, | |
722 | hapd->conf->iface, MAC2STR(sta->addr)); | |
38cb0a2d | 723 | sta->last_seq_ctrl = WLAN_INVALID_MGMT_SEQ; |
ba873c12 | 724 | sta->flags &= ~(WLAN_STA_ASSOC | WLAN_STA_ASSOC_REQ_OK); |
4dc03726 | 725 | ap_sta_set_authorized(hapd, sta, 0); |
6fc6879b | 726 | sta->timeout_next = STA_DEAUTH; |
42ca9845 JM |
727 | wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout " |
728 | "for " MACSTR " (%d seconds - " | |
729 | "AP_MAX_INACTIVITY_AFTER_DISASSOC)", | |
730 | __func__, MAC2STR(sta->addr), | |
731 | AP_MAX_INACTIVITY_AFTER_DISASSOC); | |
6fc6879b JM |
732 | eloop_cancel_timeout(ap_handle_timer, hapd, sta); |
733 | eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DISASSOC, 0, | |
734 | ap_handle_timer, hapd, sta); | |
735 | accounting_sta_stop(hapd, sta); | |
d7c3347f | 736 | ieee802_1x_free_station(hapd, sta); |
6fc6879b | 737 | |
4dc03726 | 738 | sta->disassoc_reason = reason; |
cc28ad8c | 739 | sta->flags |= WLAN_STA_PENDING_DISASSOC_CB; |
4dc03726 JM |
740 | eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta); |
741 | eloop_register_timeout(hapd->iface->drv_flags & | |
742 | WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0, | |
743 | ap_sta_disassoc_cb_timeout, hapd, sta); | |
744 | } | |
745 | ||
746 | ||
747 | static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx) | |
748 | { | |
749 | struct hostapd_data *hapd = eloop_ctx; | |
750 | struct sta_info *sta = timeout_ctx; | |
751 | ||
03269d55 JM |
752 | wpa_printf(MSG_DEBUG, "%s: Deauthentication callback for STA " MACSTR, |
753 | hapd->conf->iface, MAC2STR(sta->addr)); | |
4dc03726 JM |
754 | ap_sta_remove(hapd, sta); |
755 | mlme_deauthenticate_indication(hapd, sta, sta->deauth_reason); | |
6fc6879b JM |
756 | } |
757 | ||
758 | ||
759 | void ap_sta_deauthenticate(struct hostapd_data *hapd, struct sta_info *sta, | |
760 | u16 reason) | |
761 | { | |
762 | wpa_printf(MSG_DEBUG, "%s: deauthenticate STA " MACSTR, | |
763 | hapd->conf->iface, MAC2STR(sta->addr)); | |
38cb0a2d | 764 | sta->last_seq_ctrl = WLAN_INVALID_MGMT_SEQ; |
631739b3 | 765 | sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC | WLAN_STA_ASSOC_REQ_OK); |
4dc03726 | 766 | ap_sta_set_authorized(hapd, sta, 0); |
6fc6879b | 767 | sta->timeout_next = STA_REMOVE; |
42ca9845 JM |
768 | wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout " |
769 | "for " MACSTR " (%d seconds - " | |
770 | "AP_MAX_INACTIVITY_AFTER_DEAUTH)", | |
771 | __func__, MAC2STR(sta->addr), | |
772 | AP_MAX_INACTIVITY_AFTER_DEAUTH); | |
6fc6879b JM |
773 | eloop_cancel_timeout(ap_handle_timer, hapd, sta); |
774 | eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0, | |
775 | ap_handle_timer, hapd, sta); | |
776 | accounting_sta_stop(hapd, sta); | |
d7c3347f | 777 | ieee802_1x_free_station(hapd, sta); |
6fc6879b | 778 | |
4dc03726 | 779 | sta->deauth_reason = reason; |
cc28ad8c | 780 | sta->flags |= WLAN_STA_PENDING_DEAUTH_CB; |
4dc03726 JM |
781 | eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta); |
782 | eloop_register_timeout(hapd->iface->drv_flags & | |
783 | WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0, | |
784 | ap_sta_deauth_cb_timeout, hapd, sta); | |
6fc6879b JM |
785 | } |
786 | ||
787 | ||
4c374cde AS |
788 | #ifdef CONFIG_WPS |
789 | int ap_sta_wps_cancel(struct hostapd_data *hapd, | |
790 | struct sta_info *sta, void *ctx) | |
791 | { | |
792 | if (sta && (sta->flags & WLAN_STA_WPS)) { | |
793 | ap_sta_deauthenticate(hapd, sta, | |
794 | WLAN_REASON_PREV_AUTH_NOT_VALID); | |
795 | wpa_printf(MSG_DEBUG, "WPS: %s: Deauth sta=" MACSTR, | |
796 | __func__, MAC2STR(sta->addr)); | |
797 | return 1; | |
798 | } | |
799 | ||
800 | return 0; | |
801 | } | |
802 | #endif /* CONFIG_WPS */ | |
803 | ||
804 | ||
c8e6beab | 805 | int ap_sta_bind_vlan(struct hostapd_data *hapd, struct sta_info *sta) |
6fc6879b | 806 | { |
30b32314 | 807 | #ifndef CONFIG_NO_VLAN |
6fc6879b JM |
808 | const char *iface; |
809 | struct hostapd_vlan *vlan = NULL; | |
4254100d | 810 | int ret; |
c8e6beab | 811 | int old_vlanid = sta->vlan_id_bound; |
6fc6879b | 812 | |
6fc6879b | 813 | iface = hapd->conf->iface; |
f41ded6f JM |
814 | if (hapd->conf->ssid.vlan[0]) |
815 | iface = hapd->conf->ssid.vlan; | |
6fc6879b | 816 | |
f41ded6f | 817 | if (hapd->conf->ssid.dynamic_vlan == DYNAMIC_VLAN_DISABLED) |
6fc6879b JM |
818 | sta->vlan_id = 0; |
819 | else if (sta->vlan_id > 0) { | |
c2db79f2 | 820 | struct hostapd_vlan *wildcard_vlan = NULL; |
6fc6879b JM |
821 | vlan = hapd->conf->vlan; |
822 | while (vlan) { | |
c2db79f2 | 823 | if (vlan->vlan_id == sta->vlan_id) |
6fc6879b | 824 | break; |
c2db79f2 MB |
825 | if (vlan->vlan_id == VLAN_ID_WILDCARD) |
826 | wildcard_vlan = vlan; | |
6fc6879b JM |
827 | vlan = vlan->next; |
828 | } | |
c2db79f2 MB |
829 | if (!vlan) |
830 | vlan = wildcard_vlan; | |
831 | if (vlan) | |
832 | iface = vlan->ifname; | |
6fc6879b JM |
833 | } |
834 | ||
c8e6beab MB |
835 | /* |
836 | * Do not increment ref counters if the VLAN ID remains same, but do | |
837 | * not skip hostapd_drv_set_sta_vlan() as hostapd_drv_sta_remove() might | |
838 | * have been called before. | |
839 | */ | |
840 | if (sta->vlan_id == old_vlanid) | |
841 | goto skip_counting; | |
842 | ||
6fc6879b JM |
843 | if (sta->vlan_id > 0 && vlan == NULL) { |
844 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, | |
845 | HOSTAPD_LEVEL_DEBUG, "could not find VLAN for " | |
846 | "binding station to (vlan_id=%d)", | |
847 | sta->vlan_id); | |
2dd4f3ae JM |
848 | ret = -1; |
849 | goto done; | |
6fc6879b JM |
850 | } else if (sta->vlan_id > 0 && vlan->vlan_id == VLAN_ID_WILDCARD) { |
851 | vlan = vlan_add_dynamic(hapd, vlan, sta->vlan_id); | |
852 | if (vlan == NULL) { | |
853 | hostapd_logger(hapd, sta->addr, | |
854 | HOSTAPD_MODULE_IEEE80211, | |
855 | HOSTAPD_LEVEL_DEBUG, "could not add " | |
856 | "dynamic VLAN interface for vlan_id=%d", | |
857 | sta->vlan_id); | |
2dd4f3ae JM |
858 | ret = -1; |
859 | goto done; | |
6fc6879b JM |
860 | } |
861 | ||
862 | iface = vlan->ifname; | |
6fc6879b JM |
863 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, |
864 | HOSTAPD_LEVEL_DEBUG, "added new dynamic VLAN " | |
865 | "interface '%s'", iface); | |
41d62107 MB |
866 | } else if (vlan && vlan->vlan_id == sta->vlan_id && |
867 | vlan->dynamic_vlan > 0) { | |
868 | vlan->dynamic_vlan++; | |
869 | hostapd_logger(hapd, sta->addr, | |
870 | HOSTAPD_MODULE_IEEE80211, | |
871 | HOSTAPD_LEVEL_DEBUG, | |
872 | "updated existing dynamic VLAN interface '%s'", | |
873 | iface); | |
6fc6879b JM |
874 | } |
875 | ||
c8e6beab MB |
876 | /* ref counters have been increased, so mark the station */ |
877 | sta->vlan_id_bound = sta->vlan_id; | |
878 | ||
879 | skip_counting: | |
6fc6879b JM |
880 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, |
881 | HOSTAPD_LEVEL_DEBUG, "binding station to interface " | |
882 | "'%s'", iface); | |
883 | ||
884 | if (wpa_auth_sta_set_vlan(sta->wpa_sm, sta->vlan_id) < 0) | |
885 | wpa_printf(MSG_INFO, "Failed to update VLAN-ID for WPA"); | |
886 | ||
51e2a27a | 887 | ret = hostapd_drv_set_sta_vlan(iface, hapd, sta->addr, sta->vlan_id); |
4254100d JM |
888 | if (ret < 0) { |
889 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, | |
890 | HOSTAPD_LEVEL_DEBUG, "could not bind the STA " | |
891 | "entry to vlan_id=%d", sta->vlan_id); | |
892 | } | |
2dd4f3ae | 893 | |
2dd4f3ae | 894 | /* During 1x reauth, if the vlan id changes, then remove the old id. */ |
c8e6beab | 895 | if (old_vlanid > 0 && old_vlanid != sta->vlan_id) |
2dd4f3ae | 896 | vlan_remove_dynamic(hapd, old_vlanid); |
c8e6beab | 897 | done: |
2dd4f3ae | 898 | |
4254100d | 899 | return ret; |
30b32314 JM |
900 | #else /* CONFIG_NO_VLAN */ |
901 | return 0; | |
902 | #endif /* CONFIG_NO_VLAN */ | |
6fc6879b | 903 | } |
5d22a1d5 JM |
904 | |
905 | ||
906 | #ifdef CONFIG_IEEE80211W | |
907 | ||
45c94154 | 908 | int ap_check_sa_query_timeout(struct hostapd_data *hapd, struct sta_info *sta) |
5d22a1d5 | 909 | { |
45c94154 | 910 | u32 tu; |
10e694a6 JB |
911 | struct os_reltime now, passed; |
912 | os_get_reltime(&now); | |
913 | os_reltime_sub(&now, &sta->sa_query_start, &passed); | |
45c94154 JM |
914 | tu = (passed.sec * 1000000 + passed.usec) / 1024; |
915 | if (hapd->conf->assoc_sa_query_max_timeout < tu) { | |
916 | hostapd_logger(hapd, sta->addr, | |
917 | HOSTAPD_MODULE_IEEE80211, | |
5d22a1d5 | 918 | HOSTAPD_LEVEL_DEBUG, |
93b76319 JM |
919 | "association SA Query timed out"); |
920 | sta->sa_query_timed_out = 1; | |
921 | os_free(sta->sa_query_trans_id); | |
922 | sta->sa_query_trans_id = NULL; | |
923 | sta->sa_query_count = 0; | |
45c94154 JM |
924 | eloop_cancel_timeout(ap_sa_query_timer, hapd, sta); |
925 | return 1; | |
5d22a1d5 JM |
926 | } |
927 | ||
45c94154 JM |
928 | return 0; |
929 | } | |
930 | ||
931 | ||
932 | static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx) | |
933 | { | |
934 | struct hostapd_data *hapd = eloop_ctx; | |
935 | struct sta_info *sta = timeout_ctx; | |
936 | unsigned int timeout, sec, usec; | |
937 | u8 *trans_id, *nbuf; | |
938 | ||
03269d55 JM |
939 | wpa_printf(MSG_DEBUG, "%s: SA Query timer for STA " MACSTR |
940 | " (count=%d)", | |
941 | hapd->conf->iface, MAC2STR(sta->addr), sta->sa_query_count); | |
942 | ||
45c94154 JM |
943 | if (sta->sa_query_count > 0 && |
944 | ap_check_sa_query_timeout(hapd, sta)) | |
945 | return; | |
946 | ||
067ffa26 JM |
947 | nbuf = os_realloc_array(sta->sa_query_trans_id, |
948 | sta->sa_query_count + 1, | |
949 | WLAN_SA_QUERY_TR_ID_LEN); | |
5d22a1d5 JM |
950 | if (nbuf == NULL) |
951 | return; | |
45c94154 JM |
952 | if (sta->sa_query_count == 0) { |
953 | /* Starting a new SA Query procedure */ | |
10e694a6 | 954 | os_get_reltime(&sta->sa_query_start); |
45c94154 | 955 | } |
93b76319 JM |
956 | trans_id = nbuf + sta->sa_query_count * WLAN_SA_QUERY_TR_ID_LEN; |
957 | sta->sa_query_trans_id = nbuf; | |
958 | sta->sa_query_count++; | |
5d22a1d5 | 959 | |
24661bba JM |
960 | if (os_get_random(trans_id, WLAN_SA_QUERY_TR_ID_LEN) < 0) { |
961 | /* | |
962 | * We don't really care which ID is used here, so simply | |
963 | * hardcode this if the mostly theoretical os_get_random() | |
964 | * failure happens. | |
965 | */ | |
966 | trans_id[0] = 0x12; | |
967 | trans_id[1] = 0x34; | |
968 | } | |
5d22a1d5 | 969 | |
45c94154 JM |
970 | timeout = hapd->conf->assoc_sa_query_retry_timeout; |
971 | sec = ((timeout / 1000) * 1024) / 1000; | |
972 | usec = (timeout % 1000) * 1024; | |
973 | eloop_register_timeout(sec, usec, ap_sa_query_timer, hapd, sta); | |
974 | ||
5d22a1d5 JM |
975 | hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211, |
976 | HOSTAPD_LEVEL_DEBUG, | |
93b76319 | 977 | "association SA Query attempt %d", sta->sa_query_count); |
5d22a1d5 | 978 | |
93b76319 | 979 | ieee802_11_send_sa_query_req(hapd, sta->addr, trans_id); |
5d22a1d5 JM |
980 | } |
981 | ||
982 | ||
93b76319 | 983 | void ap_sta_start_sa_query(struct hostapd_data *hapd, struct sta_info *sta) |
5d22a1d5 | 984 | { |
93b76319 | 985 | ap_sa_query_timer(hapd, sta); |
5d22a1d5 JM |
986 | } |
987 | ||
988 | ||
93b76319 | 989 | void ap_sta_stop_sa_query(struct hostapd_data *hapd, struct sta_info *sta) |
5d22a1d5 | 990 | { |
93b76319 JM |
991 | eloop_cancel_timeout(ap_sa_query_timer, hapd, sta); |
992 | os_free(sta->sa_query_trans_id); | |
993 | sta->sa_query_trans_id = NULL; | |
994 | sta->sa_query_count = 0; | |
5d22a1d5 JM |
995 | } |
996 | ||
997 | #endif /* CONFIG_IEEE80211W */ | |
45cefa0b JM |
998 | |
999 | ||
6905dcb1 JB |
1000 | void ap_sta_set_authorized(struct hostapd_data *hapd, struct sta_info *sta, |
1001 | int authorized) | |
1002 | { | |
10cc6c88 | 1003 | const u8 *dev_addr = NULL; |
7793c959 | 1004 | char buf[100]; |
c2d76aa6 MH |
1005 | #ifdef CONFIG_P2P |
1006 | u8 addr[ETH_ALEN]; | |
25ef8529 | 1007 | u8 ip_addr_buf[4]; |
c2d76aa6 MH |
1008 | #endif /* CONFIG_P2P */ |
1009 | ||
6905dcb1 JB |
1010 | if (!!authorized == !!(sta->flags & WLAN_STA_AUTHORIZED)) |
1011 | return; | |
1012 | ||
61fc9048 SD |
1013 | if (authorized) |
1014 | sta->flags |= WLAN_STA_AUTHORIZED; | |
1015 | else | |
1016 | sta->flags &= ~WLAN_STA_AUTHORIZED; | |
1017 | ||
ae055af4 | 1018 | #ifdef CONFIG_P2P |
c2d76aa6 MH |
1019 | if (hapd->p2p_group == NULL) { |
1020 | if (sta->p2p_ie != NULL && | |
1021 | p2p_parse_dev_addr_in_p2p_ie(sta->p2p_ie, addr) == 0) | |
1022 | dev_addr = addr; | |
1023 | } else | |
1024 | dev_addr = p2p_group_get_dev_addr(hapd->p2p_group, sta->addr); | |
10cc6c88 | 1025 | |
7793c959 JM |
1026 | if (dev_addr) |
1027 | os_snprintf(buf, sizeof(buf), MACSTR " p2p_dev_addr=" MACSTR, | |
1028 | MAC2STR(sta->addr), MAC2STR(dev_addr)); | |
1029 | else | |
375f4a3b | 1030 | #endif /* CONFIG_P2P */ |
7793c959 JM |
1031 | os_snprintf(buf, sizeof(buf), MACSTR, MAC2STR(sta->addr)); |
1032 | ||
61fc9048 SD |
1033 | if (hapd->sta_authorized_cb) |
1034 | hapd->sta_authorized_cb(hapd->sta_authorized_cb_ctx, | |
1035 | sta->addr, authorized, dev_addr); | |
1036 | ||
10cc6c88 | 1037 | if (authorized) { |
25ef8529 JM |
1038 | char ip_addr[100]; |
1039 | ip_addr[0] = '\0'; | |
1040 | #ifdef CONFIG_P2P | |
1041 | if (wpa_auth_get_ip_addr(sta->wpa_sm, ip_addr_buf) == 0) { | |
1042 | os_snprintf(ip_addr, sizeof(ip_addr), | |
1043 | " ip_addr=%u.%u.%u.%u", | |
1044 | ip_addr_buf[0], ip_addr_buf[1], | |
1045 | ip_addr_buf[2], ip_addr_buf[3]); | |
1046 | } | |
1047 | #endif /* CONFIG_P2P */ | |
1048 | ||
1049 | wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_CONNECTED "%s%s", | |
1050 | buf, ip_addr); | |
7793c959 | 1051 | |
8a5e75f6 | 1052 | if (hapd->msg_ctx_parent && |
7793c959 | 1053 | hapd->msg_ctx_parent != hapd->msg_ctx) |
c4bf83a7 | 1054 | wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO, |
25ef8529 JM |
1055 | AP_STA_CONNECTED "%s%s", |
1056 | buf, ip_addr); | |
ae055af4 | 1057 | } else { |
7793c959 JM |
1058 | wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_DISCONNECTED "%s", buf); |
1059 | ||
8a5e75f6 | 1060 | if (hapd->msg_ctx_parent && |
7793c959 | 1061 | hapd->msg_ctx_parent != hapd->msg_ctx) |
c4bf83a7 JM |
1062 | wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO, |
1063 | AP_STA_DISCONNECTED "%s", buf); | |
ae055af4 | 1064 | } |
6959145b AN |
1065 | |
1066 | #ifdef CONFIG_FST | |
1067 | if (hapd->iface->fst) { | |
1068 | if (authorized) | |
1069 | fst_notify_peer_connected(hapd->iface->fst, sta->addr); | |
1070 | else | |
1071 | fst_notify_peer_disconnected(hapd->iface->fst, | |
1072 | sta->addr); | |
1073 | } | |
1074 | #endif /* CONFIG_FST */ | |
6905dcb1 JB |
1075 | } |
1076 | ||
1077 | ||
45cefa0b JM |
1078 | void ap_sta_disconnect(struct hostapd_data *hapd, struct sta_info *sta, |
1079 | const u8 *addr, u16 reason) | |
1080 | { | |
03269d55 JM |
1081 | if (sta) |
1082 | wpa_printf(MSG_DEBUG, "%s: %s STA " MACSTR " reason=%u", | |
1083 | hapd->conf->iface, __func__, MAC2STR(sta->addr), | |
1084 | reason); | |
1085 | else if (addr) | |
1086 | wpa_printf(MSG_DEBUG, "%s: %s addr " MACSTR " reason=%u", | |
1087 | hapd->conf->iface, __func__, MAC2STR(addr), | |
1088 | reason); | |
45cefa0b JM |
1089 | |
1090 | if (sta == NULL && addr) | |
1091 | sta = ap_get_sta(hapd, addr); | |
1092 | ||
1093 | if (addr) | |
51e2a27a | 1094 | hostapd_drv_sta_deauth(hapd, addr, reason); |
45cefa0b JM |
1095 | |
1096 | if (sta == NULL) | |
1097 | return; | |
6905dcb1 | 1098 | ap_sta_set_authorized(hapd, sta, 0); |
ceb997f3 JM |
1099 | wpa_auth_sm_event(sta->wpa_sm, WPA_DEAUTH); |
1100 | ieee802_1x_notify_port_enabled(sta->eapol_sm, 0); | |
6905dcb1 | 1101 | sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC); |
03269d55 | 1102 | wpa_printf(MSG_DEBUG, "%s: %s: reschedule ap_handle_timer timeout " |
42ca9845 JM |
1103 | "for " MACSTR " (%d seconds - " |
1104 | "AP_MAX_INACTIVITY_AFTER_DEAUTH)", | |
03269d55 | 1105 | hapd->conf->iface, __func__, MAC2STR(sta->addr), |
42ca9845 | 1106 | AP_MAX_INACTIVITY_AFTER_DEAUTH); |
45cefa0b | 1107 | eloop_cancel_timeout(ap_handle_timer, hapd, sta); |
4dc03726 JM |
1108 | eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0, |
1109 | ap_handle_timer, hapd, sta); | |
45cefa0b | 1110 | sta->timeout_next = STA_REMOVE; |
4dc03726 JM |
1111 | |
1112 | sta->deauth_reason = reason; | |
cc28ad8c | 1113 | sta->flags |= WLAN_STA_PENDING_DEAUTH_CB; |
4dc03726 JM |
1114 | eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta); |
1115 | eloop_register_timeout(hapd->iface->drv_flags & | |
1116 | WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0, | |
1117 | ap_sta_deauth_cb_timeout, hapd, sta); | |
1118 | } | |
1119 | ||
1120 | ||
1121 | void ap_sta_deauth_cb(struct hostapd_data *hapd, struct sta_info *sta) | |
1122 | { | |
cc28ad8c JM |
1123 | if (!(sta->flags & WLAN_STA_PENDING_DEAUTH_CB)) { |
1124 | wpa_printf(MSG_DEBUG, "Ignore deauth cb for test frame"); | |
1125 | return; | |
1126 | } | |
1127 | sta->flags &= ~WLAN_STA_PENDING_DEAUTH_CB; | |
4dc03726 JM |
1128 | eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta); |
1129 | ap_sta_deauth_cb_timeout(hapd, sta); | |
1130 | } | |
1131 | ||
1132 | ||
1133 | void ap_sta_disassoc_cb(struct hostapd_data *hapd, struct sta_info *sta) | |
1134 | { | |
cc28ad8c JM |
1135 | if (!(sta->flags & WLAN_STA_PENDING_DISASSOC_CB)) { |
1136 | wpa_printf(MSG_DEBUG, "Ignore disassoc cb for test frame"); | |
1137 | return; | |
1138 | } | |
1139 | sta->flags &= ~WLAN_STA_PENDING_DISASSOC_CB; | |
1140 | eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta); | |
1141 | ap_sta_disassoc_cb_timeout(hapd, sta); | |
45cefa0b | 1142 | } |
b76f4c27 JM |
1143 | |
1144 | ||
9e8fde21 JM |
1145 | void ap_sta_clear_disconnect_timeouts(struct hostapd_data *hapd, |
1146 | struct sta_info *sta) | |
1147 | { | |
1148 | if (eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta) > 0) | |
1149 | wpa_printf(MSG_DEBUG, | |
1150 | "%s: Removed ap_sta_deauth_cb_timeout timeout for " | |
1151 | MACSTR, | |
1152 | hapd->conf->iface, MAC2STR(sta->addr)); | |
1153 | if (eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta) > 0) | |
1154 | wpa_printf(MSG_DEBUG, | |
1155 | "%s: Removed ap_sta_disassoc_cb_timeout timeout for " | |
1156 | MACSTR, | |
1157 | hapd->conf->iface, MAC2STR(sta->addr)); | |
1158 | } | |
1159 | ||
1160 | ||
b76f4c27 JM |
1161 | int ap_sta_flags_txt(u32 flags, char *buf, size_t buflen) |
1162 | { | |
1163 | int res; | |
1164 | ||
1165 | buf[0] = '\0'; | |
e7d0e97b | 1166 | res = os_snprintf(buf, buflen, "%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s", |
b76f4c27 JM |
1167 | (flags & WLAN_STA_AUTH ? "[AUTH]" : ""), |
1168 | (flags & WLAN_STA_ASSOC ? "[ASSOC]" : ""), | |
1169 | (flags & WLAN_STA_AUTHORIZED ? "[AUTHORIZED]" : ""), | |
1170 | (flags & WLAN_STA_PENDING_POLL ? "[PENDING_POLL" : | |
1171 | ""), | |
1172 | (flags & WLAN_STA_SHORT_PREAMBLE ? | |
1173 | "[SHORT_PREAMBLE]" : ""), | |
1174 | (flags & WLAN_STA_PREAUTH ? "[PREAUTH]" : ""), | |
1175 | (flags & WLAN_STA_WMM ? "[WMM]" : ""), | |
1176 | (flags & WLAN_STA_MFP ? "[MFP]" : ""), | |
1177 | (flags & WLAN_STA_WPS ? "[WPS]" : ""), | |
1178 | (flags & WLAN_STA_MAYBE_WPS ? "[MAYBE_WPS]" : ""), | |
1179 | (flags & WLAN_STA_WDS ? "[WDS]" : ""), | |
1180 | (flags & WLAN_STA_NONERP ? "[NonERP]" : ""), | |
1181 | (flags & WLAN_STA_WPS2 ? "[WPS2]" : ""), | |
1182 | (flags & WLAN_STA_GAS ? "[GAS]" : ""), | |
1183 | (flags & WLAN_STA_VHT ? "[VHT]" : ""), | |
e7d0e97b | 1184 | (flags & WLAN_STA_VENDOR_VHT ? "[VENDOR_VHT]" : ""), |
b76f4c27 JM |
1185 | (flags & WLAN_STA_WNM_SLEEP_MODE ? |
1186 | "[WNM_SLEEP_MODE]" : "")); | |
aaadd727 JM |
1187 | if (os_snprintf_error(buflen, res)) |
1188 | res = -1; | |
b76f4c27 JM |
1189 | |
1190 | return res; | |
1191 | } |