]> git.ipfire.org Git - thirdparty/hostap.git/blob - src/ap/sta_info.c
projects / thirdparty / hostap.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Check os_snprintf() result more consistently - more checks
[thirdparty/hostap.git] / src / ap / sta_info.c
1 /*
2 * hostapd / Station table
3 * Copyright (c) 2002-2013, Jouni Malinen <j@w1.fi>
4 *
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
7 */
8
9 #include "utils/includes.h"
10
11 #include "utils/common.h"
12 #include "utils/eloop.h"
13 #include "common/ieee802_11_defs.h"
14 #include "common/wpa_ctrl.h"
15 #include "common/sae.h"
16 #include "radius/radius.h"
17 #include "radius/radius_client.h"
18 #include "p2p/p2p.h"
19 #include "hostapd.h"
20 #include "accounting.h"
21 #include "ieee802_1x.h"
22 #include "ieee802_11.h"
23 #include "ieee802_11_auth.h"
24 #include "wpa_auth.h"
25 #include "preauth_auth.h"
26 #include "ap_config.h"
27 #include "beacon.h"
28 #include "ap_mlme.h"
29 #include "vlan_init.h"
30 #include "p2p_hostapd.h"
31 #include "ap_drv_ops.h"
32 #include "gas_serv.h"
33 #include "wnm_ap.h"
34 #include "ndisc_snoop.h"
35 #include "sta_info.h"
36
37 static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd,
38 struct sta_info *sta);
39 static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx);
40 static void ap_handle_session_warning_timer(void *eloop_ctx, void *timeout_ctx);
41 static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx);
42 static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx);
43 #ifdef CONFIG_IEEE80211W
44 static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx);
45 #endif /* CONFIG_IEEE80211W */
46 static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta);
47
48 int ap_for_each_sta(struct hostapd_data *hapd,
49 int (*cb)(struct hostapd_data *hapd, struct sta_info *sta,
50 void *ctx),
51 void *ctx)
52 {
53 struct sta_info *sta;
54
55 for (sta = hapd->sta_list; sta; sta = sta->next) {
56 if (cb(hapd, sta, ctx))
57 return 1;
58 }
59
60 return 0;
61 }
62
63
64 struct sta_info * ap_get_sta(struct hostapd_data *hapd, const u8 *sta)
65 {
66 struct sta_info *s;
67
68 s = hapd->sta_hash[STA_HASH(sta)];
69 while (s != NULL && os_memcmp(s->addr, sta, 6) != 0)
70 s = s->hnext;
71 return s;
72 }
73
74
75 #ifdef CONFIG_P2P
76 struct sta_info * ap_get_sta_p2p(struct hostapd_data *hapd, const u8 *addr)
77 {
78 struct sta_info *sta;
79
80 for (sta = hapd->sta_list; sta; sta = sta->next) {
81 const u8 *p2p_dev_addr;
82
83 if (sta->p2p_ie == NULL)
84 continue;
85
86 p2p_dev_addr = p2p_get_go_dev_addr(sta->p2p_ie);
87 if (p2p_dev_addr == NULL)
88 continue;
89
90 if (os_memcmp(p2p_dev_addr, addr, ETH_ALEN) == 0)
91 return sta;
92 }
93
94 return NULL;
95 }
96 #endif /* CONFIG_P2P */
97
98
99 static void ap_sta_list_del(struct hostapd_data *hapd, struct sta_info *sta)
100 {
101 struct sta_info *tmp;
102
103 if (hapd->sta_list == sta) {
104 hapd->sta_list = sta->next;
105 return;
106 }
107
108 tmp = hapd->sta_list;
109 while (tmp != NULL && tmp->next != sta)
110 tmp = tmp->next;
111 if (tmp == NULL) {
112 wpa_printf(MSG_DEBUG, "Could not remove STA " MACSTR " from "
113 "list.", MAC2STR(sta->addr));
114 } else
115 tmp->next = sta->next;
116 }
117
118
119 void ap_sta_hash_add(struct hostapd_data *hapd, struct sta_info *sta)
120 {
121 sta->hnext = hapd->sta_hash[STA_HASH(sta->addr)];
122 hapd->sta_hash[STA_HASH(sta->addr)] = sta;
123 }
124
125
126 static void ap_sta_hash_del(struct hostapd_data *hapd, struct sta_info *sta)
127 {
128 struct sta_info *s;
129
130 s = hapd->sta_hash[STA_HASH(sta->addr)];
131 if (s == NULL) return;
132 if (os_memcmp(s->addr, sta->addr, 6) == 0) {
133 hapd->sta_hash[STA_HASH(sta->addr)] = s->hnext;
134 return;
135 }
136
137 while (s->hnext != NULL &&
138 os_memcmp(s->hnext->addr, sta->addr, ETH_ALEN) != 0)
139 s = s->hnext;
140 if (s->hnext != NULL)
141 s->hnext = s->hnext->hnext;
142 else
143 wpa_printf(MSG_DEBUG, "AP: could not remove STA " MACSTR
144 " from hash table", MAC2STR(sta->addr));
145 }
146
147
148 void ap_sta_ip6addr_del(struct hostapd_data *hapd, struct sta_info *sta)
149 {
150 sta_ip6addr_del(hapd, sta);
151 }
152
153
154 void ap_free_sta(struct hostapd_data *hapd, struct sta_info *sta)
155 {
156 int set_beacon = 0;
157
158 accounting_sta_stop(hapd, sta);
159
160 /* just in case */
161 ap_sta_set_authorized(hapd, sta, 0);
162
163 if (sta->flags & WLAN_STA_WDS)
164 hostapd_set_wds_sta(hapd, NULL, sta->addr, sta->aid, 0);
165
166 if (sta->ipaddr)
167 hostapd_drv_br_delete_ip_neigh(hapd, 4, (u8 *) &sta->ipaddr);
168 ap_sta_ip6addr_del(hapd, sta);
169
170 if (!hapd->iface->driver_ap_teardown &&
171 !(sta->flags & WLAN_STA_PREAUTH))
172 hostapd_drv_sta_remove(hapd, sta->addr);
173
174 ap_sta_hash_del(hapd, sta);
175 ap_sta_list_del(hapd, sta);
176
177 if (sta->aid > 0)
178 hapd->sta_aid[(sta->aid - 1) / 32] &=
179 ~BIT((sta->aid - 1) % 32);
180
181 hapd->num_sta--;
182 if (sta->nonerp_set) {
183 sta->nonerp_set = 0;
184 hapd->iface->num_sta_non_erp--;
185 if (hapd->iface->num_sta_non_erp == 0)
186 set_beacon++;
187 }
188
189 if (sta->no_short_slot_time_set) {
190 sta->no_short_slot_time_set = 0;
191 hapd->iface->num_sta_no_short_slot_time--;
192 if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G
193 && hapd->iface->num_sta_no_short_slot_time == 0)
194 set_beacon++;
195 }
196
197 if (sta->no_short_preamble_set) {
198 sta->no_short_preamble_set = 0;
199 hapd->iface->num_sta_no_short_preamble--;
200 if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G
201 && hapd->iface->num_sta_no_short_preamble == 0)
202 set_beacon++;
203 }
204
205 if (sta->no_ht_gf_set) {
206 sta->no_ht_gf_set = 0;
207 hapd->iface->num_sta_ht_no_gf--;
208 }
209
210 if (sta->no_ht_set) {
211 sta->no_ht_set = 0;
212 hapd->iface->num_sta_no_ht--;
213 }
214
215 if (sta->ht_20mhz_set) {
216 sta->ht_20mhz_set = 0;
217 hapd->iface->num_sta_ht_20mhz--;
218 }
219
220 #ifdef CONFIG_IEEE80211N
221 ht40_intolerant_remove(hapd->iface, sta);
222 #endif /* CONFIG_IEEE80211N */
223
224 #ifdef CONFIG_P2P
225 if (sta->no_p2p_set) {
226 sta->no_p2p_set = 0;
227 hapd->num_sta_no_p2p--;
228 if (hapd->num_sta_no_p2p == 0)
229 hostapd_p2p_non_p2p_sta_disconnected(hapd);
230 }
231 #endif /* CONFIG_P2P */
232
233 #if defined(NEED_AP_MLME) && defined(CONFIG_IEEE80211N)
234 if (hostapd_ht_operation_update(hapd->iface) > 0)
235 set_beacon++;
236 #endif /* NEED_AP_MLME && CONFIG_IEEE80211N */
237
238 #ifdef CONFIG_MESH
239 if (hapd->mesh_sta_free_cb)
240 hapd->mesh_sta_free_cb(sta);
241 #endif /* CONFIG_MESH */
242
243 if (set_beacon)
244 ieee802_11_set_beacons(hapd->iface);
245
246 wpa_printf(MSG_DEBUG, "%s: cancel ap_handle_timer for " MACSTR,
247 __func__, MAC2STR(sta->addr));
248 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
249 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
250 eloop_cancel_timeout(ap_handle_session_warning_timer, hapd, sta);
251 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
252 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
253
254 ieee802_1x_free_station(sta);
255 wpa_auth_sta_deinit(sta->wpa_sm);
256 rsn_preauth_free_station(hapd, sta);
257 #ifndef CONFIG_NO_RADIUS
258 if (hapd->radius)
259 radius_client_flush_auth(hapd->radius, sta->addr);
260 #endif /* CONFIG_NO_RADIUS */
261
262 os_free(sta->challenge);
263
264 #ifdef CONFIG_IEEE80211W
265 os_free(sta->sa_query_trans_id);
266 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
267 #endif /* CONFIG_IEEE80211W */
268
269 #ifdef CONFIG_P2P
270 p2p_group_notif_disassoc(hapd->p2p_group, sta->addr);
271 #endif /* CONFIG_P2P */
272
273 #ifdef CONFIG_INTERWORKING
274 if (sta->gas_dialog) {
275 int i;
276 for (i = 0; i < GAS_DIALOG_MAX; i++)
277 gas_serv_dialog_clear(&sta->gas_dialog[i]);
278 os_free(sta->gas_dialog);
279 }
280 #endif /* CONFIG_INTERWORKING */
281
282 wpabuf_free(sta->wps_ie);
283 wpabuf_free(sta->p2p_ie);
284 wpabuf_free(sta->hs20_ie);
285
286 os_free(sta->ht_capabilities);
287 os_free(sta->vht_capabilities);
288 hostapd_free_psk_list(sta->psk);
289 os_free(sta->identity);
290 os_free(sta->radius_cui);
291 os_free(sta->remediation_url);
292 wpabuf_free(sta->hs20_deauth_req);
293 os_free(sta->hs20_session_info_url);
294
295 #ifdef CONFIG_SAE
296 sae_clear_data(sta->sae);
297 os_free(sta->sae);
298 #endif /* CONFIG_SAE */
299
300 os_free(sta);
301 }
302
303
304 void hostapd_free_stas(struct hostapd_data *hapd)
305 {
306 struct sta_info *sta, *prev;
307
308 sta = hapd->sta_list;
309
310 while (sta) {
311 prev = sta;
312 if (sta->flags & WLAN_STA_AUTH) {
313 mlme_deauthenticate_indication(
314 hapd, sta, WLAN_REASON_UNSPECIFIED);
315 }
316 sta = sta->next;
317 wpa_printf(MSG_DEBUG, "Removing station " MACSTR,
318 MAC2STR(prev->addr));
319 ap_free_sta(hapd, prev);
320 }
321 }
322
323
324 /**
325 * ap_handle_timer - Per STA timer handler
326 * @eloop_ctx: struct hostapd_data *
327 * @timeout_ctx: struct sta_info *
328 *
329 * This function is called to check station activity and to remove inactive
330 * stations.
331 */
332 void ap_handle_timer(void *eloop_ctx, void *timeout_ctx)
333 {
334 struct hostapd_data *hapd = eloop_ctx;
335 struct sta_info *sta = timeout_ctx;
336 unsigned long next_time = 0;
337 int reason;
338
339 wpa_printf(MSG_DEBUG, "%s: " MACSTR " flags=0x%x timeout_next=%d",
340 __func__, MAC2STR(sta->addr), sta->flags,
341 sta->timeout_next);
342 if (sta->timeout_next == STA_REMOVE) {
343 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
344 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
345 "local deauth request");
346 ap_free_sta(hapd, sta);
347 return;
348 }
349
350 if ((sta->flags & WLAN_STA_ASSOC) &&
351 (sta->timeout_next == STA_NULLFUNC ||
352 sta->timeout_next == STA_DISASSOC)) {
353 int inactive_sec;
354 /*
355 * Add random value to timeout so that we don't end up bouncing
356 * all stations at the same time if we have lots of associated
357 * stations that are idle (but keep re-associating).
358 */
359 int fuzz = os_random() % 20;
360 inactive_sec = hostapd_drv_get_inact_sec(hapd, sta->addr);
361 if (inactive_sec == -1) {
362 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
363 "Check inactivity: Could not "
364 "get station info from kernel driver for "
365 MACSTR, MAC2STR(sta->addr));
366 /*
367 * The driver may not support this functionality.
368 * Anyway, try again after the next inactivity timeout,
369 * but do not disconnect the station now.
370 */
371 next_time = hapd->conf->ap_max_inactivity + fuzz;
372 } else if (inactive_sec < hapd->conf->ap_max_inactivity &&
373 sta->flags & WLAN_STA_ASSOC) {
374 /* station activity detected; reset timeout state */
375 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
376 "Station " MACSTR " has been active %is ago",
377 MAC2STR(sta->addr), inactive_sec);
378 sta->timeout_next = STA_NULLFUNC;
379 next_time = hapd->conf->ap_max_inactivity + fuzz -
380 inactive_sec;
381 } else {
382 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
383 "Station " MACSTR " has been "
384 "inactive too long: %d sec, max allowed: %d",
385 MAC2STR(sta->addr), inactive_sec,
386 hapd->conf->ap_max_inactivity);
387
388 if (hapd->conf->skip_inactivity_poll)
389 sta->timeout_next = STA_DISASSOC;
390 }
391 }
392
393 if ((sta->flags & WLAN_STA_ASSOC) &&
394 sta->timeout_next == STA_DISASSOC &&
395 !(sta->flags & WLAN_STA_PENDING_POLL) &&
396 !hapd->conf->skip_inactivity_poll) {
397 wpa_msg(hapd->msg_ctx, MSG_DEBUG, "Station " MACSTR
398 " has ACKed data poll", MAC2STR(sta->addr));
399 /* data nullfunc frame poll did not produce TX errors; assume
400 * station ACKed it */
401 sta->timeout_next = STA_NULLFUNC;
402 next_time = hapd->conf->ap_max_inactivity;
403 }
404
405 if (next_time) {
406 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
407 "for " MACSTR " (%lu seconds)",
408 __func__, MAC2STR(sta->addr), next_time);
409 eloop_register_timeout(next_time, 0, ap_handle_timer, hapd,
410 sta);
411 return;
412 }
413
414 if (sta->timeout_next == STA_NULLFUNC &&
415 (sta->flags & WLAN_STA_ASSOC)) {
416 wpa_printf(MSG_DEBUG, " Polling STA");
417 sta->flags |= WLAN_STA_PENDING_POLL;
418 hostapd_drv_poll_client(hapd, hapd->own_addr, sta->addr,
419 sta->flags & WLAN_STA_WMM);
420 } else if (sta->timeout_next != STA_REMOVE) {
421 int deauth = sta->timeout_next == STA_DEAUTH;
422
423 wpa_dbg(hapd->msg_ctx, MSG_DEBUG,
424 "Timeout, sending %s info to STA " MACSTR,
425 deauth ? "deauthentication" : "disassociation",
426 MAC2STR(sta->addr));
427
428 if (deauth) {
429 hostapd_drv_sta_deauth(
430 hapd, sta->addr,
431 WLAN_REASON_PREV_AUTH_NOT_VALID);
432 } else {
433 reason = (sta->timeout_next == STA_DISASSOC) ?
434 WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY :
435 WLAN_REASON_PREV_AUTH_NOT_VALID;
436
437 hostapd_drv_sta_disassoc(hapd, sta->addr, reason);
438 }
439 }
440
441 switch (sta->timeout_next) {
442 case STA_NULLFUNC:
443 sta->timeout_next = STA_DISASSOC;
444 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
445 "for " MACSTR " (%d seconds - AP_DISASSOC_DELAY)",
446 __func__, MAC2STR(sta->addr), AP_DISASSOC_DELAY);
447 eloop_register_timeout(AP_DISASSOC_DELAY, 0, ap_handle_timer,
448 hapd, sta);
449 break;
450 case STA_DISASSOC:
451 case STA_DISASSOC_FROM_CLI:
452 ap_sta_set_authorized(hapd, sta, 0);
453 sta->flags &= ~WLAN_STA_ASSOC;
454 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
455 if (!sta->acct_terminate_cause)
456 sta->acct_terminate_cause =
457 RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT;
458 accounting_sta_stop(hapd, sta);
459 ieee802_1x_free_station(sta);
460 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
461 HOSTAPD_LEVEL_INFO, "disassociated due to "
462 "inactivity");
463 reason = (sta->timeout_next == STA_DISASSOC) ?
464 WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY :
465 WLAN_REASON_PREV_AUTH_NOT_VALID;
466 sta->timeout_next = STA_DEAUTH;
467 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
468 "for " MACSTR " (%d seconds - AP_DEAUTH_DELAY)",
469 __func__, MAC2STR(sta->addr), AP_DEAUTH_DELAY);
470 eloop_register_timeout(AP_DEAUTH_DELAY, 0, ap_handle_timer,
471 hapd, sta);
472 mlme_disassociate_indication(hapd, sta, reason);
473 break;
474 case STA_DEAUTH:
475 case STA_REMOVE:
476 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
477 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
478 "inactivity (timer DEAUTH/REMOVE)");
479 if (!sta->acct_terminate_cause)
480 sta->acct_terminate_cause =
481 RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT;
482 mlme_deauthenticate_indication(
483 hapd, sta,
484 WLAN_REASON_PREV_AUTH_NOT_VALID);
485 ap_free_sta(hapd, sta);
486 break;
487 }
488 }
489
490
491 static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx)
492 {
493 struct hostapd_data *hapd = eloop_ctx;
494 struct sta_info *sta = timeout_ctx;
495
496 if (!(sta->flags & WLAN_STA_AUTH)) {
497 if (sta->flags & WLAN_STA_GAS) {
498 wpa_printf(MSG_DEBUG, "GAS: Remove temporary STA "
499 "entry " MACSTR, MAC2STR(sta->addr));
500 ap_free_sta(hapd, sta);
501 }
502 return;
503 }
504
505 hostapd_drv_sta_deauth(hapd, sta->addr,
506 WLAN_REASON_PREV_AUTH_NOT_VALID);
507 mlme_deauthenticate_indication(hapd, sta,
508 WLAN_REASON_PREV_AUTH_NOT_VALID);
509 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
510 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
511 "session timeout");
512 sta->acct_terminate_cause =
513 RADIUS_ACCT_TERMINATE_CAUSE_SESSION_TIMEOUT;
514 ap_free_sta(hapd, sta);
515 }
516
517
518 void ap_sta_replenish_timeout(struct hostapd_data *hapd, struct sta_info *sta,
519 u32 session_timeout)
520 {
521 if (eloop_replenish_timeout(session_timeout, 0,
522 ap_handle_session_timer, hapd, sta) == 1) {
523 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
524 HOSTAPD_LEVEL_DEBUG, "setting session timeout "
525 "to %d seconds", session_timeout);
526 }
527 }
528
529
530 void ap_sta_session_timeout(struct hostapd_data *hapd, struct sta_info *sta,
531 u32 session_timeout)
532 {
533 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
534 HOSTAPD_LEVEL_DEBUG, "setting session timeout to %d "
535 "seconds", session_timeout);
536 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
537 eloop_register_timeout(session_timeout, 0, ap_handle_session_timer,
538 hapd, sta);
539 }
540
541
542 void ap_sta_no_session_timeout(struct hostapd_data *hapd, struct sta_info *sta)
543 {
544 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
545 }
546
547
548 static void ap_handle_session_warning_timer(void *eloop_ctx, void *timeout_ctx)
549 {
550 #ifdef CONFIG_WNM
551 struct hostapd_data *hapd = eloop_ctx;
552 struct sta_info *sta = timeout_ctx;
553
554 wpa_printf(MSG_DEBUG, "WNM: Session warning time reached for " MACSTR,
555 MAC2STR(sta->addr));
556 if (sta->hs20_session_info_url == NULL)
557 return;
558
559 wnm_send_ess_disassoc_imminent(hapd, sta, sta->hs20_session_info_url,
560 sta->hs20_disassoc_timer);
561 #endif /* CONFIG_WNM */
562 }
563
564
565 void ap_sta_session_warning_timeout(struct hostapd_data *hapd,
566 struct sta_info *sta, int warning_time)
567 {
568 eloop_cancel_timeout(ap_handle_session_warning_timer, hapd, sta);
569 eloop_register_timeout(warning_time, 0, ap_handle_session_warning_timer,
570 hapd, sta);
571 }
572
573
574 struct sta_info * ap_sta_add(struct hostapd_data *hapd, const u8 *addr)
575 {
576 struct sta_info *sta;
577
578 sta = ap_get_sta(hapd, addr);
579 if (sta)
580 return sta;
581
582 wpa_printf(MSG_DEBUG, " New STA");
583 if (hapd->num_sta >= hapd->conf->max_num_sta) {
584 /* FIX: might try to remove some old STAs first? */
585 wpa_printf(MSG_DEBUG, "no more room for new STAs (%d/%d)",
586 hapd->num_sta, hapd->conf->max_num_sta);
587 return NULL;
588 }
589
590 sta = os_zalloc(sizeof(struct sta_info));
591 if (sta == NULL) {
592 wpa_printf(MSG_ERROR, "malloc failed");
593 return NULL;
594 }
595 sta->acct_interim_interval = hapd->conf->acct_interim_interval;
596 accounting_sta_get_id(hapd, sta);
597
598 if (!(hapd->iface->drv_flags & WPA_DRIVER_FLAGS_INACTIVITY_TIMER)) {
599 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
600 "for " MACSTR " (%d seconds - ap_max_inactivity)",
601 __func__, MAC2STR(addr),
602 hapd->conf->ap_max_inactivity);
603 eloop_register_timeout(hapd->conf->ap_max_inactivity, 0,
604 ap_handle_timer, hapd, sta);
605 }
606
607 /* initialize STA info data */
608 os_memcpy(sta->addr, addr, ETH_ALEN);
609 sta->next = hapd->sta_list;
610 hapd->sta_list = sta;
611 hapd->num_sta++;
612 ap_sta_hash_add(hapd, sta);
613 sta->ssid = &hapd->conf->ssid;
614 ap_sta_remove_in_other_bss(hapd, sta);
615 sta->last_seq_ctrl = WLAN_INVALID_MGMT_SEQ;
616 dl_list_init(&sta->ip6addr);
617
618 return sta;
619 }
620
621
622 static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta)
623 {
624 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
625
626 if (sta->ipaddr)
627 hostapd_drv_br_delete_ip_neigh(hapd, 4, (u8 *) &sta->ipaddr);
628 ap_sta_ip6addr_del(hapd, sta);
629
630 wpa_printf(MSG_DEBUG, "Removing STA " MACSTR " from kernel driver",
631 MAC2STR(sta->addr));
632 if (hostapd_drv_sta_remove(hapd, sta->addr) &&
633 sta->flags & WLAN_STA_ASSOC) {
634 wpa_printf(MSG_DEBUG, "Could not remove station " MACSTR
635 " from kernel driver.", MAC2STR(sta->addr));
636 return -1;
637 }
638 return 0;
639 }
640
641
642 static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd,
643 struct sta_info *sta)
644 {
645 struct hostapd_iface *iface = hapd->iface;
646 size_t i;
647
648 for (i = 0; i < iface->num_bss; i++) {
649 struct hostapd_data *bss = iface->bss[i];
650 struct sta_info *sta2;
651 /* bss should always be set during operation, but it may be
652 * NULL during reconfiguration. Assume the STA is not
653 * associated to another BSS in that case to avoid NULL pointer
654 * dereferences. */
655 if (bss == hapd || bss == NULL)
656 continue;
657 sta2 = ap_get_sta(bss, sta->addr);
658 if (!sta2)
659 continue;
660
661 ap_sta_disconnect(bss, sta2, sta2->addr,
662 WLAN_REASON_PREV_AUTH_NOT_VALID);
663 }
664 }
665
666
667 static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx)
668 {
669 struct hostapd_data *hapd = eloop_ctx;
670 struct sta_info *sta = timeout_ctx;
671
672 ap_sta_remove(hapd, sta);
673 mlme_disassociate_indication(hapd, sta, sta->disassoc_reason);
674 }
675
676
677 void ap_sta_disassociate(struct hostapd_data *hapd, struct sta_info *sta,
678 u16 reason)
679 {
680 wpa_printf(MSG_DEBUG, "%s: disassociate STA " MACSTR,
681 hapd->conf->iface, MAC2STR(sta->addr));
682 sta->last_seq_ctrl = WLAN_INVALID_MGMT_SEQ;
683 sta->flags &= ~(WLAN_STA_ASSOC | WLAN_STA_ASSOC_REQ_OK);
684 ap_sta_set_authorized(hapd, sta, 0);
685 sta->timeout_next = STA_DEAUTH;
686 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
687 "for " MACSTR " (%d seconds - "
688 "AP_MAX_INACTIVITY_AFTER_DISASSOC)",
689 __func__, MAC2STR(sta->addr),
690 AP_MAX_INACTIVITY_AFTER_DISASSOC);
691 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
692 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DISASSOC, 0,
693 ap_handle_timer, hapd, sta);
694 accounting_sta_stop(hapd, sta);
695 ieee802_1x_free_station(sta);
696
697 sta->disassoc_reason = reason;
698 sta->flags |= WLAN_STA_PENDING_DISASSOC_CB;
699 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
700 eloop_register_timeout(hapd->iface->drv_flags &
701 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
702 ap_sta_disassoc_cb_timeout, hapd, sta);
703 }
704
705
706 static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx)
707 {
708 struct hostapd_data *hapd = eloop_ctx;
709 struct sta_info *sta = timeout_ctx;
710
711 ap_sta_remove(hapd, sta);
712 mlme_deauthenticate_indication(hapd, sta, sta->deauth_reason);
713 }
714
715
716 void ap_sta_deauthenticate(struct hostapd_data *hapd, struct sta_info *sta,
717 u16 reason)
718 {
719 wpa_printf(MSG_DEBUG, "%s: deauthenticate STA " MACSTR,
720 hapd->conf->iface, MAC2STR(sta->addr));
721 sta->last_seq_ctrl = WLAN_INVALID_MGMT_SEQ;
722 sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC | WLAN_STA_ASSOC_REQ_OK);
723 ap_sta_set_authorized(hapd, sta, 0);
724 sta->timeout_next = STA_REMOVE;
725 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
726 "for " MACSTR " (%d seconds - "
727 "AP_MAX_INACTIVITY_AFTER_DEAUTH)",
728 __func__, MAC2STR(sta->addr),
729 AP_MAX_INACTIVITY_AFTER_DEAUTH);
730 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
731 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0,
732 ap_handle_timer, hapd, sta);
733 accounting_sta_stop(hapd, sta);
734 ieee802_1x_free_station(sta);
735
736 sta->deauth_reason = reason;
737 sta->flags |= WLAN_STA_PENDING_DEAUTH_CB;
738 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
739 eloop_register_timeout(hapd->iface->drv_flags &
740 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
741 ap_sta_deauth_cb_timeout, hapd, sta);
742 }
743
744
745 #ifdef CONFIG_WPS
746 int ap_sta_wps_cancel(struct hostapd_data *hapd,
747 struct sta_info *sta, void *ctx)
748 {
749 if (sta && (sta->flags & WLAN_STA_WPS)) {
750 ap_sta_deauthenticate(hapd, sta,
751 WLAN_REASON_PREV_AUTH_NOT_VALID);
752 wpa_printf(MSG_DEBUG, "WPS: %s: Deauth sta=" MACSTR,
753 __func__, MAC2STR(sta->addr));
754 return 1;
755 }
756
757 return 0;
758 }
759 #endif /* CONFIG_WPS */
760
761
762 int ap_sta_bind_vlan(struct hostapd_data *hapd, struct sta_info *sta,
763 int old_vlanid)
764 {
765 #ifndef CONFIG_NO_VLAN
766 const char *iface;
767 struct hostapd_vlan *vlan = NULL;
768 int ret;
769
770 /*
771 * Do not proceed furthur if the vlan id remains same. We do not want
772 * duplicate dynamic vlan entries.
773 */
774 if (sta->vlan_id == old_vlanid)
775 return 0;
776
777 /*
778 * During 1x reauth, if the vlan id changes, then remove the old id and
779 * proceed furthur to add the new one.
780 */
781 if (old_vlanid > 0)
782 vlan_remove_dynamic(hapd, old_vlanid);
783
784 iface = hapd->conf->iface;
785 if (sta->ssid->vlan[0])
786 iface = sta->ssid->vlan;
787
788 if (sta->ssid->dynamic_vlan == DYNAMIC_VLAN_DISABLED)
789 sta->vlan_id = 0;
790 else if (sta->vlan_id > 0) {
791 struct hostapd_vlan *wildcard_vlan = NULL;
792 vlan = hapd->conf->vlan;
793 while (vlan) {
794 if (vlan->vlan_id == sta->vlan_id)
795 break;
796 if (vlan->vlan_id == VLAN_ID_WILDCARD)
797 wildcard_vlan = vlan;
798 vlan = vlan->next;
799 }
800 if (!vlan)
801 vlan = wildcard_vlan;
802 if (vlan)
803 iface = vlan->ifname;
804 }
805
806 if (sta->vlan_id > 0 && vlan == NULL) {
807 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
808 HOSTAPD_LEVEL_DEBUG, "could not find VLAN for "
809 "binding station to (vlan_id=%d)",
810 sta->vlan_id);
811 return -1;
812 } else if (sta->vlan_id > 0 && vlan->vlan_id == VLAN_ID_WILDCARD) {
813 vlan = vlan_add_dynamic(hapd, vlan, sta->vlan_id);
814 if (vlan == NULL) {
815 hostapd_logger(hapd, sta->addr,
816 HOSTAPD_MODULE_IEEE80211,
817 HOSTAPD_LEVEL_DEBUG, "could not add "
818 "dynamic VLAN interface for vlan_id=%d",
819 sta->vlan_id);
820 return -1;
821 }
822
823 iface = vlan->ifname;
824 if (vlan_setup_encryption_dyn(hapd, sta->ssid, iface) != 0) {
825 hostapd_logger(hapd, sta->addr,
826 HOSTAPD_MODULE_IEEE80211,
827 HOSTAPD_LEVEL_DEBUG, "could not "
828 "configure encryption for dynamic VLAN "
829 "interface for vlan_id=%d",
830 sta->vlan_id);
831 }
832
833 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
834 HOSTAPD_LEVEL_DEBUG, "added new dynamic VLAN "
835 "interface '%s'", iface);
836 } else if (vlan && vlan->vlan_id == sta->vlan_id) {
837 if (sta->vlan_id > 0) {
838 vlan->dynamic_vlan++;
839 hostapd_logger(hapd, sta->addr,
840 HOSTAPD_MODULE_IEEE80211,
841 HOSTAPD_LEVEL_DEBUG, "updated existing "
842 "dynamic VLAN interface '%s'", iface);
843 }
844
845 /*
846 * Update encryption configuration for statically generated
847 * VLAN interface. This is only used for static WEP
848 * configuration for the case where hostapd did not yet know
849 * which keys are to be used when the interface was added.
850 */
851 if (vlan_setup_encryption_dyn(hapd, sta->ssid, iface) != 0) {
852 hostapd_logger(hapd, sta->addr,
853 HOSTAPD_MODULE_IEEE80211,
854 HOSTAPD_LEVEL_DEBUG, "could not "
855 "configure encryption for VLAN "
856 "interface for vlan_id=%d",
857 sta->vlan_id);
858 }
859 }
860
861 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
862 HOSTAPD_LEVEL_DEBUG, "binding station to interface "
863 "'%s'", iface);
864
865 if (wpa_auth_sta_set_vlan(sta->wpa_sm, sta->vlan_id) < 0)
866 wpa_printf(MSG_INFO, "Failed to update VLAN-ID for WPA");
867
868 ret = hostapd_drv_set_sta_vlan(iface, hapd, sta->addr, sta->vlan_id);
869 if (ret < 0) {
870 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
871 HOSTAPD_LEVEL_DEBUG, "could not bind the STA "
872 "entry to vlan_id=%d", sta->vlan_id);
873 }
874 return ret;
875 #else /* CONFIG_NO_VLAN */
876 return 0;
877 #endif /* CONFIG_NO_VLAN */
878 }
879
880
881 #ifdef CONFIG_IEEE80211W
882
883 int ap_check_sa_query_timeout(struct hostapd_data *hapd, struct sta_info *sta)
884 {
885 u32 tu;
886 struct os_reltime now, passed;
887 os_get_reltime(&now);
888 os_reltime_sub(&now, &sta->sa_query_start, &passed);
889 tu = (passed.sec * 1000000 + passed.usec) / 1024;
890 if (hapd->conf->assoc_sa_query_max_timeout < tu) {
891 hostapd_logger(hapd, sta->addr,
892 HOSTAPD_MODULE_IEEE80211,
893 HOSTAPD_LEVEL_DEBUG,
894 "association SA Query timed out");
895 sta->sa_query_timed_out = 1;
896 os_free(sta->sa_query_trans_id);
897 sta->sa_query_trans_id = NULL;
898 sta->sa_query_count = 0;
899 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
900 return 1;
901 }
902
903 return 0;
904 }
905
906
907 static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx)
908 {
909 struct hostapd_data *hapd = eloop_ctx;
910 struct sta_info *sta = timeout_ctx;
911 unsigned int timeout, sec, usec;
912 u8 *trans_id, *nbuf;
913
914 if (sta->sa_query_count > 0 &&
915 ap_check_sa_query_timeout(hapd, sta))
916 return;
917
918 nbuf = os_realloc_array(sta->sa_query_trans_id,
919 sta->sa_query_count + 1,
920 WLAN_SA_QUERY_TR_ID_LEN);
921 if (nbuf == NULL)
922 return;
923 if (sta->sa_query_count == 0) {
924 /* Starting a new SA Query procedure */
925 os_get_reltime(&sta->sa_query_start);
926 }
927 trans_id = nbuf + sta->sa_query_count * WLAN_SA_QUERY_TR_ID_LEN;
928 sta->sa_query_trans_id = nbuf;
929 sta->sa_query_count++;
930
931 if (os_get_random(trans_id, WLAN_SA_QUERY_TR_ID_LEN) < 0) {
932 /*
933 * We don't really care which ID is used here, so simply
934 * hardcode this if the mostly theoretical os_get_random()
935 * failure happens.
936 */
937 trans_id[0] = 0x12;
938 trans_id[1] = 0x34;
939 }
940
941 timeout = hapd->conf->assoc_sa_query_retry_timeout;
942 sec = ((timeout / 1000) * 1024) / 1000;
943 usec = (timeout % 1000) * 1024;
944 eloop_register_timeout(sec, usec, ap_sa_query_timer, hapd, sta);
945
946 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
947 HOSTAPD_LEVEL_DEBUG,
948 "association SA Query attempt %d", sta->sa_query_count);
949
950 ieee802_11_send_sa_query_req(hapd, sta->addr, trans_id);
951 }
952
953
954 void ap_sta_start_sa_query(struct hostapd_data *hapd, struct sta_info *sta)
955 {
956 ap_sa_query_timer(hapd, sta);
957 }
958
959
960 void ap_sta_stop_sa_query(struct hostapd_data *hapd, struct sta_info *sta)
961 {
962 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
963 os_free(sta->sa_query_trans_id);
964 sta->sa_query_trans_id = NULL;
965 sta->sa_query_count = 0;
966 }
967
968 #endif /* CONFIG_IEEE80211W */
969
970
971 void ap_sta_set_authorized(struct hostapd_data *hapd, struct sta_info *sta,
972 int authorized)
973 {
974 const u8 *dev_addr = NULL;
975 char buf[100];
976 #ifdef CONFIG_P2P
977 u8 addr[ETH_ALEN];
978 u8 ip_addr_buf[4];
979 #endif /* CONFIG_P2P */
980
981 if (!!authorized == !!(sta->flags & WLAN_STA_AUTHORIZED))
982 return;
983
984 if (authorized)
985 sta->flags |= WLAN_STA_AUTHORIZED;
986 else
987 sta->flags &= ~WLAN_STA_AUTHORIZED;
988
989 #ifdef CONFIG_P2P
990 if (hapd->p2p_group == NULL) {
991 if (sta->p2p_ie != NULL &&
992 p2p_parse_dev_addr_in_p2p_ie(sta->p2p_ie, addr) == 0)
993 dev_addr = addr;
994 } else
995 dev_addr = p2p_group_get_dev_addr(hapd->p2p_group, sta->addr);
996
997 if (dev_addr)
998 os_snprintf(buf, sizeof(buf), MACSTR " p2p_dev_addr=" MACSTR,
999 MAC2STR(sta->addr), MAC2STR(dev_addr));
1000 else
1001 #endif /* CONFIG_P2P */
1002 os_snprintf(buf, sizeof(buf), MACSTR, MAC2STR(sta->addr));
1003
1004 if (hapd->sta_authorized_cb)
1005 hapd->sta_authorized_cb(hapd->sta_authorized_cb_ctx,
1006 sta->addr, authorized, dev_addr);
1007
1008 if (authorized) {
1009 char ip_addr[100];
1010 ip_addr[0] = '\0';
1011 #ifdef CONFIG_P2P
1012 if (wpa_auth_get_ip_addr(sta->wpa_sm, ip_addr_buf) == 0) {
1013 os_snprintf(ip_addr, sizeof(ip_addr),
1014 " ip_addr=%u.%u.%u.%u",
1015 ip_addr_buf[0], ip_addr_buf[1],
1016 ip_addr_buf[2], ip_addr_buf[3]);
1017 }
1018 #endif /* CONFIG_P2P */
1019
1020 wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_CONNECTED "%s%s",
1021 buf, ip_addr);
1022
1023 if (hapd->msg_ctx_parent &&
1024 hapd->msg_ctx_parent != hapd->msg_ctx)
1025 wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO,
1026 AP_STA_CONNECTED "%s%s",
1027 buf, ip_addr);
1028 } else {
1029 wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_DISCONNECTED "%s", buf);
1030
1031 if (hapd->msg_ctx_parent &&
1032 hapd->msg_ctx_parent != hapd->msg_ctx)
1033 wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO,
1034 AP_STA_DISCONNECTED "%s", buf);
1035 }
1036 }
1037
1038
1039 void ap_sta_disconnect(struct hostapd_data *hapd, struct sta_info *sta,
1040 const u8 *addr, u16 reason)
1041 {
1042
1043 if (sta == NULL && addr)
1044 sta = ap_get_sta(hapd, addr);
1045
1046 if (addr)
1047 hostapd_drv_sta_deauth(hapd, addr, reason);
1048
1049 if (sta == NULL)
1050 return;
1051 ap_sta_set_authorized(hapd, sta, 0);
1052 wpa_auth_sm_event(sta->wpa_sm, WPA_DEAUTH);
1053 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
1054 sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC);
1055 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
1056 "for " MACSTR " (%d seconds - "
1057 "AP_MAX_INACTIVITY_AFTER_DEAUTH)",
1058 __func__, MAC2STR(sta->addr),
1059 AP_MAX_INACTIVITY_AFTER_DEAUTH);
1060 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
1061 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0,
1062 ap_handle_timer, hapd, sta);
1063 sta->timeout_next = STA_REMOVE;
1064
1065 sta->deauth_reason = reason;
1066 sta->flags |= WLAN_STA_PENDING_DEAUTH_CB;
1067 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
1068 eloop_register_timeout(hapd->iface->drv_flags &
1069 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
1070 ap_sta_deauth_cb_timeout, hapd, sta);
1071 }
1072
1073
1074 void ap_sta_deauth_cb(struct hostapd_data *hapd, struct sta_info *sta)
1075 {
1076 if (!(sta->flags & WLAN_STA_PENDING_DEAUTH_CB)) {
1077 wpa_printf(MSG_DEBUG, "Ignore deauth cb for test frame");
1078 return;
1079 }
1080 sta->flags &= ~WLAN_STA_PENDING_DEAUTH_CB;
1081 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
1082 ap_sta_deauth_cb_timeout(hapd, sta);
1083 }
1084
1085
1086 void ap_sta_disassoc_cb(struct hostapd_data *hapd, struct sta_info *sta)
1087 {
1088 if (!(sta->flags & WLAN_STA_PENDING_DISASSOC_CB)) {
1089 wpa_printf(MSG_DEBUG, "Ignore disassoc cb for test frame");
1090 return;
1091 }
1092 sta->flags &= ~WLAN_STA_PENDING_DISASSOC_CB;
1093 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
1094 ap_sta_disassoc_cb_timeout(hapd, sta);
1095 }
1096
1097
1098 int ap_sta_flags_txt(u32 flags, char *buf, size_t buflen)
1099 {
1100 int res;
1101
1102 buf[0] = '\0';
1103 res = os_snprintf(buf, buflen, "%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s",
1104 (flags & WLAN_STA_AUTH ? "[AUTH]" : ""),
1105 (flags & WLAN_STA_ASSOC ? "[ASSOC]" : ""),
1106 (flags & WLAN_STA_AUTHORIZED ? "[AUTHORIZED]" : ""),
1107 (flags & WLAN_STA_PENDING_POLL ? "[PENDING_POLL" :
1108 ""),
1109 (flags & WLAN_STA_SHORT_PREAMBLE ?
1110 "[SHORT_PREAMBLE]" : ""),
1111 (flags & WLAN_STA_PREAUTH ? "[PREAUTH]" : ""),
1112 (flags & WLAN_STA_WMM ? "[WMM]" : ""),
1113 (flags & WLAN_STA_MFP ? "[MFP]" : ""),
1114 (flags & WLAN_STA_WPS ? "[WPS]" : ""),
1115 (flags & WLAN_STA_MAYBE_WPS ? "[MAYBE_WPS]" : ""),
1116 (flags & WLAN_STA_WDS ? "[WDS]" : ""),
1117 (flags & WLAN_STA_NONERP ? "[NonERP]" : ""),
1118 (flags & WLAN_STA_WPS2 ? "[WPS2]" : ""),
1119 (flags & WLAN_STA_GAS ? "[GAS]" : ""),
1120 (flags & WLAN_STA_VHT ? "[VHT]" : ""),
1121 (flags & WLAN_STA_WNM_SLEEP_MODE ?
1122 "[WNM_SLEEP_MODE]" : ""));
1123 if (os_snprintf_error(buflen, res))
1124 res = -1;
1125
1126 return res;
1127 }
Unnamed repository; edit this file 'description' to name the repository.