]> git.ipfire.org Git - thirdparty/hostap.git/blame - hostapd/config_file.c
projects / thirdparty / hostap.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
nl80211: Fix re-enabling of 802.11b rates after P2P use
[thirdparty/hostap.git] / hostapd / config_file.c
CommitLineData
41d719d6
JM		 1/*
2 * hostapd / Configuration file parser
86f6053a 3 * Copyright (c) 2003-2012, Jouni Malinen <j@w1.fi>
41d719d6 4 *
0f3d578e
JM		 5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
41d719d6
JM		 7 */
8
6226e38d 9#include "utils/includes.h"
41d719d6
JM		 10#ifndef CONFIG_NATIVE_WINDOWS
11#include <grp.h>
12#endif /* CONFIG_NATIVE_WINDOWS */
13
6226e38d
JM		 14#include "utils/common.h"
15#include "utils/uuid.h"
41d719d6
JM		 16#include "common/ieee802_11_defs.h"
17#include "drivers/driver.h"
18#include "eap_server/eap.h"
19#include "radius/radius_client.h"
6226e38d
JM		 20#include "ap/wpa_auth.h"
21#include "ap/ap_config.h"
1057d78e 22#include "config_file.h"
41d719d6
JM		 23
24
25extern struct wpa_driver_ops *wpa_drivers[];
26
27
28#ifndef CONFIG_NO_VLAN
29static int hostapd_config_read_vlan_file(struct hostapd_bss_config *bss,
30 const char *fname)
31{
32 FILE *f;
33 char buf[128], *pos, *pos2;
34 int line = 0, vlan_id;
35 struct hostapd_vlan *vlan;
36
37 f = fopen(fname, "r");
38 if (!f) {
39 wpa_printf(MSG_ERROR, "VLAN file '%s' not readable.", fname);
40 return -1;
41 }
42
43 while (fgets(buf, sizeof(buf), f)) {
44 line++;
45
46 if (buf[0] == '#')
47 continue;
48 pos = buf;
49 while (*pos != '\0') {
50 if (*pos == '\n') {
51 *pos = '\0';
52 break;
53 }
54 pos++;
55 }
56 if (buf[0] == '\0')
57 continue;
58
59 if (buf[0] == '*') {
60 vlan_id = VLAN_ID_WILDCARD;
61 pos = buf + 1;
62 } else {
63 vlan_id = strtol(buf, &pos, 10);
64 if (buf == pos || vlan_id < 1 ||
65 vlan_id > MAX_VLAN_ID) {
66 wpa_printf(MSG_ERROR, "Invalid VLAN ID at "
67 "line %d in '%s'", line, fname);
68 fclose(f);
69 return -1;
70 }
71 }
72
73 while (*pos == ' ' || *pos == '\t')
74 pos++;
75 pos2 = pos;
76 while (*pos2 != ' ' && *pos2 != '\t' && *pos2 != '\0')
77 pos2++;
78 *pos2 = '\0';
79 if (*pos == '\0' || os_strlen(pos) > IFNAMSIZ) {
80 wpa_printf(MSG_ERROR, "Invalid VLAN ifname at line %d "
81 "in '%s'", line, fname);
82 fclose(f);
83 return -1;
84 }
85
86 vlan = os_malloc(sizeof(*vlan));
87 if (vlan == NULL) {
88 wpa_printf(MSG_ERROR, "Out of memory while reading "
89 "VLAN interfaces from '%s'", fname);
90 fclose(f);
91 return -1;
92 }
93
94 os_memset(vlan, 0, sizeof(*vlan));
95 vlan->vlan_id = vlan_id;
96 os_strlcpy(vlan->ifname, pos, sizeof(vlan->ifname));
97 if (bss->vlan_tail)
98 bss->vlan_tail->next = vlan;
99 else
100 bss->vlan = vlan;
101 bss->vlan_tail = vlan;
102 }
103
104 fclose(f);
105
106 return 0;
107}
108#endif /* CONFIG_NO_VLAN */
109
110
111static int hostapd_acl_comp(const void *a, const void *b)
112{
113 const struct mac_acl_entry *aa = a;
114 const struct mac_acl_entry *bb = b;
115 return os_memcmp(aa->addr, bb->addr, sizeof(macaddr));
116}
117
118
119static int hostapd_config_read_maclist(const char *fname,
120 struct mac_acl_entry **acl, int *num)
121{
122 FILE *f;
123 char buf[128], *pos;
124 int line = 0;
125 u8 addr[ETH_ALEN];
126 struct mac_acl_entry *newacl;
127 int vlan_id;
128
129 if (!fname)
130 return 0;
131
132 f = fopen(fname, "r");
133 if (!f) {
134 wpa_printf(MSG_ERROR, "MAC list file '%s' not found.", fname);
135 return -1;
136 }
137
138 while (fgets(buf, sizeof(buf), f)) {
139 line++;
140
141 if (buf[0] == '#')
142 continue;
143 pos = buf;
144 while (*pos != '\0') {
145 if (*pos == '\n') {
146 *pos = '\0';
147 break;
148 }
149 pos++;
150 }
151 if (buf[0] == '\0')
152 continue;
153
154 if (hwaddr_aton(buf, addr)) {
155 wpa_printf(MSG_ERROR, "Invalid MAC address '%s' at "
156 "line %d in '%s'", buf, line, fname);
157 fclose(f);
158 return -1;
159 }
160
161 vlan_id = 0;
162 pos = buf;
163 while (*pos != '\0' && *pos != ' ' && *pos != '\t')
164 pos++;
165 while (*pos == ' ' || *pos == '\t')
166 pos++;
167 if (*pos != '\0')
168 vlan_id = atoi(pos);
169
170 newacl = os_realloc(*acl, (*num + 1) * sizeof(**acl));
171 if (newacl == NULL) {
172 wpa_printf(MSG_ERROR, "MAC list reallocation failed");
173 fclose(f);
174 return -1;
175 }
176
177 *acl = newacl;
178 os_memcpy((*acl)[*num].addr, addr, ETH_ALEN);
179 (*acl)[*num].vlan_id = vlan_id;
180 (*num)++;
181 }
182
183 fclose(f);
184
185 qsort(*acl, *num, sizeof(**acl), hostapd_acl_comp);
186
187 return 0;
188}
189
190
191#ifdef EAP_SERVER
192static int hostapd_config_read_eap_user(const char *fname,
193 struct hostapd_bss_config *conf)
194{
195 FILE *f;
196 char buf[512], *pos, *start, *pos2;
197 int line = 0, ret = 0, num_methods;
198 struct hostapd_eap_user *user, *tail = NULL;
199
200 if (!fname)
201 return 0;
202
203 f = fopen(fname, "r");
204 if (!f) {
205 wpa_printf(MSG_ERROR, "EAP user file '%s' not found.", fname);
206 return -1;
207 }
208
209 /* Lines: "user" METHOD,METHOD2 "password" (password optional) */
210 while (fgets(buf, sizeof(buf), f)) {
211 line++;
212
213 if (buf[0] == '#')
214 continue;
215 pos = buf;
216 while (*pos != '\0') {
217 if (*pos == '\n') {
218 *pos = '\0';
219 break;
220 }
221 pos++;
222 }
223 if (buf[0] == '\0')
224 continue;
225
226 user = NULL;
227
228 if (buf[0] != '"' && buf[0] != '*') {
229 wpa_printf(MSG_ERROR, "Invalid EAP identity (no \" in "
230 "start) on line %d in '%s'", line, fname);
231 goto failed;
232 }
233
234 user = os_zalloc(sizeof(*user));
235 if (user == NULL) {
236 wpa_printf(MSG_ERROR, "EAP user allocation failed");
237 goto failed;
238 }
239 user->force_version = -1;
240
241 if (buf[0] == '*') {
242 pos = buf;
243 } else {
244 pos = buf + 1;
245 start = pos;
246 while (*pos != '"' && *pos != '\0')
247 pos++;
248 if (*pos == '\0') {
249 wpa_printf(MSG_ERROR, "Invalid EAP identity "
250 "(no \" in end) on line %d in '%s'",
251 line, fname);
252 goto failed;
253 }
254
255 user->identity = os_malloc(pos - start);
256 if (user->identity == NULL) {
257 wpa_printf(MSG_ERROR, "Failed to allocate "
258 "memory for EAP identity");
259 goto failed;
260 }
261 os_memcpy(user->identity, start, pos - start);
262 user->identity_len = pos - start;
263
264 if (pos[0] == '"' && pos[1] == '*') {
265 user->wildcard_prefix = 1;
266 pos++;
267 }
268 }
269 pos++;
270 while (*pos == ' ' || *pos == '\t')
271 pos++;
272
273 if (*pos == '\0') {
274 wpa_printf(MSG_ERROR, "No EAP method on line %d in "
275 "'%s'", line, fname);
276 goto failed;
277 }
278
279 start = pos;
280 while (*pos != ' ' && *pos != '\t' && *pos != '\0')
281 pos++;
282 if (*pos == '\0') {
283 pos = NULL;
284 } else {
285 *pos = '\0';
286 pos++;
287 }
288 num_methods = 0;
289 while (*start) {
290 char *pos3 = os_strchr(start, ',');
291 if (pos3) {
292 *pos3++ = '\0';
293 }
294 user->methods[num_methods].method =
295 eap_server_get_type(
296 start,
297 &user->methods[num_methods].vendor);
298 if (user->methods[num_methods].vendor ==
299 EAP_VENDOR_IETF &&
300 user->methods[num_methods].method == EAP_TYPE_NONE)
301 {
302 if (os_strcmp(start, "TTLS-PAP") == 0) {
303 user->ttls_auth |= EAP_TTLS_AUTH_PAP;
304 goto skip_eap;
305 }
306 if (os_strcmp(start, "TTLS-CHAP") == 0) {
307 user->ttls_auth |= EAP_TTLS_AUTH_CHAP;
308 goto skip_eap;
309 }
310 if (os_strcmp(start, "TTLS-MSCHAP") == 0) {
311 user->ttls_auth |=
312 EAP_TTLS_AUTH_MSCHAP;
313 goto skip_eap;
314 }
315 if (os_strcmp(start, "TTLS-MSCHAPV2") == 0) {
316 user->ttls_auth |=
317 EAP_TTLS_AUTH_MSCHAPV2;
318 goto skip_eap;
319 }
320 wpa_printf(MSG_ERROR, "Unsupported EAP type "
321 "'%s' on line %d in '%s'",
322 start, line, fname);
323 goto failed;
324 }
325
326 num_methods++;
e9447a94 327 if (num_methods >= EAP_MAX_METHODS)
41d719d6
JM		 328 break;
329 skip_eap:
330 if (pos3 == NULL)
331 break;
332 start = pos3;
333 }
334 if (num_methods == 0 && user->ttls_auth == 0) {
335 wpa_printf(MSG_ERROR, "No EAP types configured on "
336 "line %d in '%s'", line, fname);
337 goto failed;
338 }
339
340 if (pos == NULL)
341 goto done;
342
343 while (*pos == ' ' || *pos == '\t')
344 pos++;
345 if (*pos == '\0')
346 goto done;
347
348 if (os_strncmp(pos, "[ver=0]", 7) == 0) {
349 user->force_version = 0;
350 goto done;
351 }
352
353 if (os_strncmp(pos, "[ver=1]", 7) == 0) {
354 user->force_version = 1;
355 goto done;
356 }
357
358 if (os_strncmp(pos, "[2]", 3) == 0) {
359 user->phase2 = 1;
360 goto done;
361 }
362
363 if (*pos == '"') {
364 pos++;
365 start = pos;
366 while (*pos != '"' && *pos != '\0')
367 pos++;
368 if (*pos == '\0') {
369 wpa_printf(MSG_ERROR, "Invalid EAP password "
370 "(no \" in end) on line %d in '%s'",
371 line, fname);
372 goto failed;
373 }
374
375 user->password = os_malloc(pos - start);
376 if (user->password == NULL) {
377 wpa_printf(MSG_ERROR, "Failed to allocate "
378 "memory for EAP password");
379 goto failed;
380 }
381 os_memcpy(user->password, start, pos - start);
382 user->password_len = pos - start;
383
384 pos++;
385 } else if (os_strncmp(pos, "hash:", 5) == 0) {
386 pos += 5;
387 pos2 = pos;
388 while (*pos2 != '\0' && *pos2 != ' ' &&
389 *pos2 != '\t' && *pos2 != '#')
390 pos2++;
391 if (pos2 - pos != 32) {
392 wpa_printf(MSG_ERROR, "Invalid password hash "
393 "on line %d in '%s'", line, fname);
394 goto failed;
395 }
396 user->password = os_malloc(16);
397 if (user->password == NULL) {
398 wpa_printf(MSG_ERROR, "Failed to allocate "
399 "memory for EAP password hash");
400 goto failed;
401 }
402 if (hexstr2bin(pos, user->password, 16) < 0) {
403 wpa_printf(MSG_ERROR, "Invalid hash password "
404 "on line %d in '%s'", line, fname);
405 goto failed;
406 }
407 user->password_len = 16;
408 user->password_hash = 1;
409 pos = pos2;
410 } else {
411 pos2 = pos;
412 while (*pos2 != '\0' && *pos2 != ' ' &&
413 *pos2 != '\t' && *pos2 != '#')
414 pos2++;
415 if ((pos2 - pos) & 1) {
416 wpa_printf(MSG_ERROR, "Invalid hex password "
417 "on line %d in '%s'", line, fname);
418 goto failed;
419 }
420 user->password = os_malloc((pos2 - pos) / 2);
421 if (user->password == NULL) {
422 wpa_printf(MSG_ERROR, "Failed to allocate "
423 "memory for EAP password");
424 goto failed;
425 }
426 if (hexstr2bin(pos, user->password,
427 (pos2 - pos) / 2) < 0) {
428 wpa_printf(MSG_ERROR, "Invalid hex password "
429 "on line %d in '%s'", line, fname);
430 goto failed;
431 }
432 user->password_len = (pos2 - pos) / 2;
433 pos = pos2;
434 }
435
436 while (*pos == ' ' || *pos == '\t')
437 pos++;
438 if (os_strncmp(pos, "[2]", 3) == 0) {
439 user->phase2 = 1;
440 }
441
442 done:
443 if (tail == NULL) {
444 tail = conf->eap_user = user;
445 } else {
446 tail->next = user;
447 tail = user;
448 }
449 continue;
450
451 failed:
452 if (user) {
453 os_free(user->password);
454 os_free(user->identity);
455 os_free(user);
456 }
457 ret = -1;
458 break;
459 }
460
461 fclose(f);
462
463 return ret;
464}
465#endif /* EAP_SERVER */
466
467
468#ifndef CONFIG_NO_RADIUS
469static int
470hostapd_config_read_radius_addr(struct hostapd_radius_server **server,
471 int *num_server, const char *val, int def_port,
472 struct hostapd_radius_server **curr_serv)
473{
474 struct hostapd_radius_server *nserv;
475 int ret;
476 static int server_index = 1;
477
478 nserv = os_realloc(*server, (*num_server + 1) * sizeof(*nserv));
479 if (nserv == NULL)
480 return -1;
481
482 *server = nserv;
483 nserv = &nserv[*num_server];
484 (*num_server)++;
485 (*curr_serv) = nserv;
486
487 os_memset(nserv, 0, sizeof(*nserv));
488 nserv->port = def_port;
489 ret = hostapd_parse_ip_addr(val, &nserv->addr);
490 nserv->index = server_index++;
491
492 return ret;
493}
af35e7af
JM		 494
495
496static struct hostapd_radius_attr *
497hostapd_parse_radius_attr(const char *value)
498{
499 const char *pos;
500 char syntax;
501 struct hostapd_radius_attr *attr;
502 size_t len;
503
504 attr = os_zalloc(sizeof(*attr));
505 if (attr == NULL)
506 return NULL;
507
508 attr->type = atoi(value);
509
510 pos = os_strchr(value, ':');
511 if (pos == NULL) {
512 attr->val = wpabuf_alloc(1);
513 if (attr->val == NULL) {
514 os_free(attr);
515 return NULL;
516 }
517 wpabuf_put_u8(attr->val, 0);
518 return attr;
519 }
520
521 pos++;
522 if (pos[0] == '\0' || pos[1] != ':') {
523 os_free(attr);
524 return NULL;
525 }
526 syntax = *pos++;
527 pos++;
528
529 switch (syntax) {
530 case 's':
531 attr->val = wpabuf_alloc_copy(pos, os_strlen(pos));
532 break;
533 case 'x':
534 len = os_strlen(pos);
535 if (len & 1)
536 break;
537 len /= 2;
538 attr->val = wpabuf_alloc(len);
539 if (attr->val == NULL)
540 break;
541 if (hexstr2bin(pos, wpabuf_put(attr->val, len), len) < 0) {
542 wpabuf_free(attr->val);
543 os_free(attr);
544 return NULL;
545 }
546 break;
547 case 'd':
548 attr->val = wpabuf_alloc(4);
549 if (attr->val)
550 wpabuf_put_be32(attr->val, atoi(pos));
551 break;
552 default:
553 os_free(attr);
554 return NULL;
555 }
556
557 if (attr->val == NULL) {
558 os_free(attr);
559 return NULL;
560 }
561
562 return attr;
563}
b031338c
JM		 564
565
566static int hostapd_parse_das_client(struct hostapd_bss_config *bss,
567 const char *val)
568{
569 char *secret;
570 size_t len;
571
572 secret = os_strchr(val, ' ');
573 if (secret == NULL)
574 return -1;
575
576 secret++;
577 len = os_strlen(secret);
578
579 if (hostapd_parse_ip_addr(val, &bss->radius_das_client_addr))
580 return -1;
581
582 os_free(bss->radius_das_shared_secret);
583 bss->radius_das_shared_secret = os_malloc(len);
584 if (bss->radius_das_shared_secret == NULL)
585 return -1;
586
587 os_memcpy(bss->radius_das_shared_secret, secret, len);
588 bss->radius_das_shared_secret_len = len;
589
590 return 0;
591}
41d719d6
JM		 592#endif /* CONFIG_NO_RADIUS */
593
594
595static int hostapd_config_parse_key_mgmt(int line, const char *value)
596{
597 int val = 0, last;
598 char *start, *end, *buf;
599
600 buf = os_strdup(value);
601 if (buf == NULL)
602 return -1;
603 start = buf;
604
605 while (*start != '\0') {
606 while (*start == ' ' || *start == '\t')
607 start++;
608 if (*start == '\0')
609 break;
610 end = start;
611 while (*end != ' ' && *end != '\t' && *end != '\0')
612 end++;
613 last = *end == '\0';
614 *end = '\0';
615 if (os_strcmp(start, "WPA-PSK") == 0)
616 val |= WPA_KEY_MGMT_PSK;
617 else if (os_strcmp(start, "WPA-EAP") == 0)
618 val |= WPA_KEY_MGMT_IEEE8021X;
619#ifdef CONFIG_IEEE80211R
620 else if (os_strcmp(start, "FT-PSK") == 0)
621 val |= WPA_KEY_MGMT_FT_PSK;
622 else if (os_strcmp(start, "FT-EAP") == 0)
623 val |= WPA_KEY_MGMT_FT_IEEE8021X;
624#endif /* CONFIG_IEEE80211R */
625#ifdef CONFIG_IEEE80211W
626 else if (os_strcmp(start, "WPA-PSK-SHA256") == 0)
627 val |= WPA_KEY_MGMT_PSK_SHA256;
628 else if (os_strcmp(start, "WPA-EAP-SHA256") == 0)
629 val |= WPA_KEY_MGMT_IEEE8021X_SHA256;
630#endif /* CONFIG_IEEE80211W */
631 else {
632 wpa_printf(MSG_ERROR, "Line %d: invalid key_mgmt '%s'",
633 line, start);
634 os_free(buf);
635 return -1;
636 }
637
638 if (last)
639 break;
640 start = end + 1;
641 }
642
643 os_free(buf);
644 if (val == 0) {
645 wpa_printf(MSG_ERROR, "Line %d: no key_mgmt values "
646 "configured.", line);
647 return -1;
648 }
649
650 return val;
651}
652
653
654static int hostapd_config_parse_cipher(int line, const char *value)
655{
656 int val = 0, last;
657 char *start, *end, *buf;
658
659 buf = os_strdup(value);
660 if (buf == NULL)
661 return -1;
662 start = buf;
663
664 while (*start != '\0') {
665 while (*start == ' ' || *start == '\t')
666 start++;
667 if (*start == '\0')
668 break;
669 end = start;
670 while (*end != ' ' && *end != '\t' && *end != '\0')
671 end++;
672 last = *end == '\0';
673 *end = '\0';
674 if (os_strcmp(start, "CCMP") == 0)
675 val |= WPA_CIPHER_CCMP;
676 else if (os_strcmp(start, "TKIP") == 0)
677 val |= WPA_CIPHER_TKIP;
678 else if (os_strcmp(start, "WEP104") == 0)
679 val |= WPA_CIPHER_WEP104;
680 else if (os_strcmp(start, "WEP40") == 0)
681 val |= WPA_CIPHER_WEP40;
682 else if (os_strcmp(start, "NONE") == 0)
683 val |= WPA_CIPHER_NONE;
684 else {
685 wpa_printf(MSG_ERROR, "Line %d: invalid cipher '%s'.",
686 line, start);
687 os_free(buf);
688 return -1;
689 }
690
691 if (last)
692 break;
693 start = end + 1;
694 }
695 os_free(buf);
696
697 if (val == 0) {
698 wpa_printf(MSG_ERROR, "Line %d: no cipher values configured.",
699 line);
700 return -1;
701 }
702 return val;
703}
704
705
706static int hostapd_config_read_wep(struct hostapd_wep_keys *wep, int keyidx,
707 char *val)
708{
709 size_t len = os_strlen(val);
710
711 if (keyidx < 0 || keyidx > 3 || wep->key[keyidx] != NULL)
712 return -1;
713
714 if (val[0] == '"') {
715 if (len < 2 || val[len - 1] != '"')
716 return -1;
717 len -= 2;
718 wep->key[keyidx] = os_malloc(len);
719 if (wep->key[keyidx] == NULL)
720 return -1;
721 os_memcpy(wep->key[keyidx], val + 1, len);
722 wep->len[keyidx] = len;
723 } else {
724 if (len & 1)
725 return -1;
726 len /= 2;
727 wep->key[keyidx] = os_malloc(len);
728 if (wep->key[keyidx] == NULL)
729 return -1;
730 wep->len[keyidx] = len;
731 if (hexstr2bin(val, wep->key[keyidx], len) < 0)
732 return -1;
733 }
734
735 wep->keys_set++;
736
737 return 0;
738}
739
740
741static int hostapd_parse_rates(int **rate_list, char *val)
742{
743 int *list;
744 int count;
745 char *pos, *end;
746
747 os_free(*rate_list);
748 *rate_list = NULL;
749
750 pos = val;
751 count = 0;
752 while (*pos != '\0') {
753 if (*pos == ' ')
754 count++;
755 pos++;
756 }
757
758 list = os_malloc(sizeof(int) * (count + 2));
759 if (list == NULL)
760 return -1;
761 pos = val;
762 count = 0;
763 while (*pos != '\0') {
764 end = os_strchr(pos, ' ');
765 if (end)
766 *end = '\0';
767
768 list[count++] = atoi(pos);
769 if (!end)
770 break;
771 pos = end + 1;
772 }
773 list[count] = -1;
774
775 *rate_list = list;
776 return 0;
777}
778
779
780static int hostapd_config_bss(struct hostapd_config *conf, const char *ifname)
781{
782 struct hostapd_bss_config *bss;
783
784 if (*ifname == '\0')
785 return -1;
786
787 bss = os_realloc(conf->bss, (conf->num_bss + 1) *
788 sizeof(struct hostapd_bss_config));
789 if (bss == NULL) {
790 wpa_printf(MSG_ERROR, "Failed to allocate memory for "
791 "multi-BSS entry");
792 return -1;
793 }
794 conf->bss = bss;
795
796 bss = &(conf->bss[conf->num_bss]);
797 os_memset(bss, 0, sizeof(*bss));
798 bss->radius = os_zalloc(sizeof(*bss->radius));
799 if (bss->radius == NULL) {
800 wpa_printf(MSG_ERROR, "Failed to allocate memory for "
801 "multi-BSS RADIUS data");
802 return -1;
803 }
804
805 conf->num_bss++;
806 conf->last_bss = bss;
807
808 hostapd_config_defaults_bss(bss);
809 os_strlcpy(bss->iface, ifname, sizeof(bss->iface));
810 os_memcpy(bss->ssid.vlan, bss->iface, IFNAMSIZ + 1);
811
812 return 0;
813}
814
815
816/* convert floats with one decimal place to value*10 int, i.e.,
817 * "1.5" will return 15 */
818static int hostapd_config_read_int10(const char *value)
819{
820 int i, d;
821 char *pos;
822
823 i = atoi(value);
824 pos = os_strchr(value, '.');
825 d = 0;
826 if (pos) {
827 pos++;
828 if (*pos >= '0' && *pos <= '9')
829 d = *pos - '0';
830 }
831
832 return i * 10 + d;
833}
834
835
836static int valid_cw(int cw)
837{
838 return (cw == 1 || cw == 3 || cw == 7 || cw == 15 || cw == 31 ||
839 cw == 63 || cw == 127 || cw == 255 || cw == 511 || cw == 1023);
840}
841
842
843enum {
844 IEEE80211_TX_QUEUE_DATA0 = 0, /* used for EDCA AC_VO data */
845 IEEE80211_TX_QUEUE_DATA1 = 1, /* used for EDCA AC_VI data */
846 IEEE80211_TX_QUEUE_DATA2 = 2, /* used for EDCA AC_BE data */
7e3c1781 847 IEEE80211_TX_QUEUE_DATA3 = 3 /* used for EDCA AC_BK data */
41d719d6
JM		 848};
849
850static int hostapd_config_tx_queue(struct hostapd_config *conf, char *name,
851 char *val)
852{
853 int num;
854 char *pos;
855 struct hostapd_tx_queue_params *queue;
856
857 /* skip 'tx_queue_' prefix */
858 pos = name + 9;
859 if (os_strncmp(pos, "data", 4) == 0 &&
860 pos[4] >= '0' && pos[4] <= '9' && pos[5] == '_') {
861 num = pos[4] - '0';
862 pos += 6;
7e3c1781
JM		 863 } else if (os_strncmp(pos, "after_beacon_", 13) == 0 ||
864 os_strncmp(pos, "beacon_", 7) == 0) {
865 wpa_printf(MSG_INFO, "DEPRECATED: '%s' not used", name);
866 return 0;
41d719d6
JM		 867 } else {
868 wpa_printf(MSG_ERROR, "Unknown tx_queue name '%s'", pos);
869 return -1;
870 }
871
7e3c1781 872 if (num >= NUM_TX_QUEUES) {
d2da2249 873 /* for backwards compatibility, do not trigger failure */
7e3c1781
JM		 874 wpa_printf(MSG_INFO, "DEPRECATED: '%s' not used", name);
875 return 0;
876 }
877
41d719d6
JM		 878 queue = &conf->tx_queue[num];
879
880 if (os_strcmp(pos, "aifs") == 0) {
881 queue->aifs = atoi(val);
882 if (queue->aifs < 0 || queue->aifs > 255) {
883 wpa_printf(MSG_ERROR, "Invalid AIFS value %d",
884 queue->aifs);
885 return -1;
886 }
887 } else if (os_strcmp(pos, "cwmin") == 0) {
888 queue->cwmin = atoi(val);
889 if (!valid_cw(queue->cwmin)) {
890 wpa_printf(MSG_ERROR, "Invalid cwMin value %d",
891 queue->cwmin);
892 return -1;
893 }
894 } else if (os_strcmp(pos, "cwmax") == 0) {
895 queue->cwmax = atoi(val);
896 if (!valid_cw(queue->cwmax)) {
897 wpa_printf(MSG_ERROR, "Invalid cwMax value %d",
898 queue->cwmax);
899 return -1;
900 }
901 } else if (os_strcmp(pos, "burst") == 0) {
902 queue->burst = hostapd_config_read_int10(val);
903 } else {
904 wpa_printf(MSG_ERROR, "Unknown tx_queue field '%s'", pos);
905 return -1;
906 }
907
41d719d6
JM		 908 return 0;
909}
910
911
912static int hostapd_config_wmm_ac(struct hostapd_config *conf, char *name,
913 char *val)
914{
915 int num, v;
916 char *pos;
917 struct hostapd_wmm_ac_params *ac;
918
919 /* skip 'wme_ac_' or 'wmm_ac_' prefix */
920 pos = name + 7;
921 if (os_strncmp(pos, "be_", 3) == 0) {
922 num = 0;
923 pos += 3;
924 } else if (os_strncmp(pos, "bk_", 3) == 0) {
925 num = 1;
926 pos += 3;
927 } else if (os_strncmp(pos, "vi_", 3) == 0) {
928 num = 2;
929 pos += 3;
930 } else if (os_strncmp(pos, "vo_", 3) == 0) {
931 num = 3;
932 pos += 3;
933 } else {
934 wpa_printf(MSG_ERROR, "Unknown WMM name '%s'", pos);
935 return -1;
936 }
937
938 ac = &conf->wmm_ac_params[num];
939
940 if (os_strcmp(pos, "aifs") == 0) {
941 v = atoi(val);
942 if (v < 1 || v > 255) {
943 wpa_printf(MSG_ERROR, "Invalid AIFS value %d", v);
944 return -1;
945 }
946 ac->aifs = v;
947 } else if (os_strcmp(pos, "cwmin") == 0) {
948 v = atoi(val);
949 if (v < 0 || v > 12) {
950 wpa_printf(MSG_ERROR, "Invalid cwMin value %d", v);
951 return -1;
952 }
953 ac->cwmin = v;
954 } else if (os_strcmp(pos, "cwmax") == 0) {
955 v = atoi(val);
956 if (v < 0 || v > 12) {
957 wpa_printf(MSG_ERROR, "Invalid cwMax value %d", v);
958 return -1;
959 }
960 ac->cwmax = v;
961 } else if (os_strcmp(pos, "txop_limit") == 0) {
962 v = atoi(val);
963 if (v < 0 || v > 0xffff) {
964 wpa_printf(MSG_ERROR, "Invalid txop value %d", v);
965 return -1;
966 }
967 ac->txop_limit = v;
968 } else if (os_strcmp(pos, "acm") == 0) {
969 v = atoi(val);
970 if (v < 0 || v > 1) {
971 wpa_printf(MSG_ERROR, "Invalid acm value %d", v);
972 return -1;
973 }
974 ac->admission_control_mandatory = v;
975 } else {
976 wpa_printf(MSG_ERROR, "Unknown wmm_ac_ field '%s'", pos);
977 return -1;
978 }
979
980 return 0;
981}
982
983
984#ifdef CONFIG_IEEE80211R
985static int add_r0kh(struct hostapd_bss_config *bss, char *value)
986{
987 struct ft_remote_r0kh *r0kh;
988 char *pos, *next;
989
990 r0kh = os_zalloc(sizeof(*r0kh));
991 if (r0kh == NULL)
992 return -1;
993
994 /* 02:01:02:03:04:05 a.example.com 000102030405060708090a0b0c0d0e0f */
995 pos = value;
996 next = os_strchr(pos, ' ');
997 if (next)
998 *next++ = '\0';
999 if (next == NULL || hwaddr_aton(pos, r0kh->addr)) {
1000 wpa_printf(MSG_ERROR, "Invalid R0KH MAC address: '%s'", pos);
1001 os_free(r0kh);
1002 return -1;
1003 }
1004
1005 pos = next;
1006 next = os_strchr(pos, ' ');
1007 if (next)
1008 *next++ = '\0';
1009 if (next == NULL || next - pos > FT_R0KH_ID_MAX_LEN) {
1010 wpa_printf(MSG_ERROR, "Invalid R0KH-ID: '%s'", pos);
1011 os_free(r0kh);
1012 return -1;
1013 }
1014 r0kh->id_len = next - pos - 1;
1015 os_memcpy(r0kh->id, pos, r0kh->id_len);
1016
1017 pos = next;
1018 if (hexstr2bin(pos, r0kh->key, sizeof(r0kh->key))) {
1019 wpa_printf(MSG_ERROR, "Invalid R0KH key: '%s'", pos);
1020 os_free(r0kh);
1021 return -1;
1022 }
1023
1024 r0kh->next = bss->r0kh_list;
1025 bss->r0kh_list = r0kh;
1026
1027 return 0;
1028}
1029
1030
1031static int add_r1kh(struct hostapd_bss_config *bss, char *value)
1032{
1033 struct ft_remote_r1kh *r1kh;
1034 char *pos, *next;
1035
1036 r1kh = os_zalloc(sizeof(*r1kh));
1037 if (r1kh == NULL)
1038 return -1;
1039
1040 /* 02:01:02:03:04:05 02:01:02:03:04:05
1041 * 000102030405060708090a0b0c0d0e0f */
1042 pos = value;
1043 next = os_strchr(pos, ' ');
1044 if (next)
1045 *next++ = '\0';
1046 if (next == NULL || hwaddr_aton(pos, r1kh->addr)) {
1047 wpa_printf(MSG_ERROR, "Invalid R1KH MAC address: '%s'", pos);
1048 os_free(r1kh);
1049 return -1;
1050 }
1051
1052 pos = next;
1053 next = os_strchr(pos, ' ');
1054 if (next)
1055 *next++ = '\0';
1056 if (next == NULL || hwaddr_aton(pos, r1kh->id)) {
1057 wpa_printf(MSG_ERROR, "Invalid R1KH-ID: '%s'", pos);
1058 os_free(r1kh);
1059 return -1;
1060 }
1061
1062 pos = next;
1063 if (hexstr2bin(pos, r1kh->key, sizeof(r1kh->key))) {
1064 wpa_printf(MSG_ERROR, "Invalid R1KH key: '%s'", pos);
1065 os_free(r1kh);
1066 return -1;
1067 }
1068
1069 r1kh->next = bss->r1kh_list;
1070 bss->r1kh_list = r1kh;
1071
1072 return 0;
1073}
1074#endif /* CONFIG_IEEE80211R */
1075
1076
1077#ifdef CONFIG_IEEE80211N
1078static int hostapd_config_ht_capab(struct hostapd_config *conf,
1079 const char *capab)
1080{
1081 if (os_strstr(capab, "[LDPC]"))
1082 conf->ht_capab |= HT_CAP_INFO_LDPC_CODING_CAP;
1083 if (os_strstr(capab, "[HT40-]")) {
1084 conf->ht_capab |= HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET;
1085 conf->secondary_channel = -1;
1086 }
1087 if (os_strstr(capab, "[HT40+]")) {
1088 conf->ht_capab |= HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET;
1089 conf->secondary_channel = 1;
1090 }
1091 if (os_strstr(capab, "[SMPS-STATIC]")) {
1092 conf->ht_capab &= ~HT_CAP_INFO_SMPS_MASK;
1093 conf->ht_capab |= HT_CAP_INFO_SMPS_STATIC;
1094 }
1095 if (os_strstr(capab, "[SMPS-DYNAMIC]")) {
1096 conf->ht_capab &= ~HT_CAP_INFO_SMPS_MASK;
1097 conf->ht_capab |= HT_CAP_INFO_SMPS_DYNAMIC;
1098 }
1099 if (os_strstr(capab, "[GF]"))
1100 conf->ht_capab |= HT_CAP_INFO_GREEN_FIELD;
1101 if (os_strstr(capab, "[SHORT-GI-20]"))
1102 conf->ht_capab |= HT_CAP_INFO_SHORT_GI20MHZ;
1103 if (os_strstr(capab, "[SHORT-GI-40]"))
1104 conf->ht_capab |= HT_CAP_INFO_SHORT_GI40MHZ;
1105 if (os_strstr(capab, "[TX-STBC]"))
1106 conf->ht_capab |= HT_CAP_INFO_TX_STBC;
1107 if (os_strstr(capab, "[RX-STBC1]")) {
1108 conf->ht_capab &= ~HT_CAP_INFO_RX_STBC_MASK;
1109 conf->ht_capab |= HT_CAP_INFO_RX_STBC_1;
1110 }
1111 if (os_strstr(capab, "[RX-STBC12]")) {
1112 conf->ht_capab &= ~HT_CAP_INFO_RX_STBC_MASK;
1113 conf->ht_capab |= HT_CAP_INFO_RX_STBC_12;
1114 }
1115 if (os_strstr(capab, "[RX-STBC123]")) {
1116 conf->ht_capab &= ~HT_CAP_INFO_RX_STBC_MASK;
1117 conf->ht_capab |= HT_CAP_INFO_RX_STBC_123;
1118 }
1119 if (os_strstr(capab, "[DELAYED-BA]"))
1120 conf->ht_capab |= HT_CAP_INFO_DELAYED_BA;
1121 if (os_strstr(capab, "[MAX-AMSDU-7935]"))
1122 conf->ht_capab |= HT_CAP_INFO_MAX_AMSDU_SIZE;
1123 if (os_strstr(capab, "[DSSS_CCK-40]"))
1124 conf->ht_capab |= HT_CAP_INFO_DSSS_CCK40MHZ;
1125 if (os_strstr(capab, "[PSMP]"))
1126 conf->ht_capab |= HT_CAP_INFO_PSMP_SUPP;
1127 if (os_strstr(capab, "[LSIG-TXOP-PROT]"))
1128 conf->ht_capab |= HT_CAP_INFO_LSIG_TXOP_PROTECT_SUPPORT;
1129
1130 return 0;
1131}
1132#endif /* CONFIG_IEEE80211N */
1133
1134
efe45d14
MP		 1135#ifdef CONFIG_IEEE80211AC
1136static int hostapd_config_vht_capab(struct hostapd_config *conf,
1137 const char *capab)
1138{
1139 if (os_strstr(capab, "[MAX-MPDU-7991]"))
1140 conf->vht_capab |= VHT_CAP_MAX_MPDU_LENGTH_7991;
1141 if (os_strstr(capab, "[MAX-MPDU-11454]"))
1142 conf->vht_capab |= VHT_CAP_MAX_MPDU_LENGTH_11454;
1143 if (os_strstr(capab, "[VHT160]"))
1144 conf->vht_capab |= VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
1145 if (os_strstr(capab, "[VHT160-80PLUS80]"))
1146 conf->vht_capab |= VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ;
1147 if (os_strstr(capab, "[VHT160-80PLUS80]"))
1148 conf->vht_capab |= VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ;
1149 if (os_strstr(capab, "[RXLDPC]"))
1150 conf->vht_capab |= VHT_CAP_RXLDPC;
1151 if (os_strstr(capab, "[SHORT-GI-80]"))
1152 conf->vht_capab |= VHT_CAP_SHORT_GI_80;
1153 if (os_strstr(capab, "[SHORT-GI-160]"))
1154 conf->vht_capab |= VHT_CAP_SHORT_GI_160;
1155 if (os_strstr(capab, "[TX-STBC-2BY1]"))
1156 conf->vht_capab |= VHT_CAP_TXSTBC;
1157 if (os_strstr(capab, "[RX-STBC-1]"))
1158 conf->vht_capab |= VHT_CAP_RXSTBC_1;
1159 if (os_strstr(capab, "[RX-STBC-12]"))
1160 conf->vht_capab |= VHT_CAP_RXSTBC_2;
1161 if (os_strstr(capab, "[RX-STBC-123]"))
1162 conf->vht_capab |= VHT_CAP_RXSTBC_3;
1163 if (os_strstr(capab, "[RX-STBC-1234]"))
1164 conf->vht_capab |= VHT_CAP_RXSTBC_4;
1165 if (os_strstr(capab, "[SU-BEAMFORMER]"))
1166 conf->vht_capab |= VHT_CAP_MU_BEAMFORMER_CAPABLE;
1167 if (os_strstr(capab, "[SU-BEAMFORMEE]"))
1168 conf->vht_capab |= VHT_CAP_MU_BEAMFORMEE_CAPABLE;
1169 if (os_strstr(capab, "[BF-ANTENNA-2]") &&
1170 (conf->vht_capab & VHT_CAP_MU_BEAMFORMER_CAPABLE))
1171 conf->vht_capab |= VHT_CAP_BEAMFORMER_ANTENNAS_MAX;
1172 if (os_strstr(capab, "[SOUNDING-DIMENSION-2]") &&
1173 (conf->vht_capab & VHT_CAP_MU_BEAMFORMER_CAPABLE))
1174 conf->vht_capab |= VHT_CAP_SOUNDING_DIMENTION_MAX;
1175 if (os_strstr(capab, "[MU-BEAMFORMER]"))
1176 conf->vht_capab |= VHT_CAP_MU_BEAMFORMER_CAPABLE;
1177 if (os_strstr(capab, "[MU-BEAMFORMEE]"))
1178 conf->vht_capab |= VHT_CAP_MU_BEAMFORMEE_CAPABLE;
1179 if (os_strstr(capab, "[VHT-TXOP-PS]"))
1180 conf->vht_capab |= VHT_CAP_VHT_TXOP_PS;
1181 if (os_strstr(capab, "[HTC-VHT]"))
1182 conf->vht_capab |= VHT_CAP_HTC_VHT;
1183 if (os_strstr(capab, "[MAX-A-MPDU-LEN-EXP0]"))
1184 conf->vht_capab |= VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT;
1185 if (os_strstr(capab, "[VHT-LINK-ADAPT2]") &&
1186 (conf->vht_capab & VHT_CAP_HTC_VHT))
1187 conf->vht_capab |= VHT_CAP_VHT_LINK_ADAPTATION_VHT_UNSOL_MFB;
1188 if (os_strstr(capab, "[VHT-LINK-ADAPT3]") &&
1189 (conf->vht_capab & VHT_CAP_HTC_VHT))
1190 conf->vht_capab |= VHT_CAP_VHT_LINK_ADAPTATION_VHT_MRQ_MFB;
1191 if (os_strstr(capab, "[RX-ANTENNA-PATTERN]"))
1192 conf->vht_capab |= VHT_CAP_RX_ANTENNA_PATTERN;
1193 if (os_strstr(capab, "[TX-ANTENNA-PATTERN]"))
1194 conf->vht_capab |= VHT_CAP_TX_ANTENNA_PATTERN;
1195 return 0;
1196}
1197#endif /* CONFIG_IEEE80211AC */
1198
1199
41d719d6
JM		 1200static int hostapd_config_check_bss(struct hostapd_bss_config *bss,
1201 struct hostapd_config *conf)
1202{
1203 if (bss->ieee802_1x && !bss->eap_server &&
1204 !bss->radius->auth_servers) {
1205 wpa_printf(MSG_ERROR, "Invalid IEEE 802.1X configuration (no "
1206 "EAP authenticator configured).");
1207 return -1;
1208 }
1209
05ab9712
MB		 1210 if (bss->wpa && bss->wpa_psk_radius != PSK_RADIUS_IGNORED &&
1211 bss->macaddr_acl != USE_EXTERNAL_RADIUS_AUTH) {
1212 wpa_printf(MSG_ERROR, "WPA-PSK using RADIUS enabled, but no "
1213 "RADIUS checking (macaddr_acl=2) enabled.");
1214 return -1;
1215 }
1216
41d719d6
JM		 1217 if (bss->wpa && (bss->wpa_key_mgmt & WPA_KEY_MGMT_PSK) &&
1218 bss->ssid.wpa_psk == NULL && bss->ssid.wpa_passphrase == NULL &&
05ab9712
MB		 1219 bss->ssid.wpa_psk_file == NULL &&
1220 (bss->wpa_psk_radius != PSK_RADIUS_REQUIRED ||
1221 bss->macaddr_acl != USE_EXTERNAL_RADIUS_AUTH)) {
41d719d6
JM		 1222 wpa_printf(MSG_ERROR, "WPA-PSK enabled, but PSK or passphrase "
1223 "is not configured.");
1224 return -1;
1225 }
1226
1227 if (hostapd_mac_comp_empty(bss->bssid) != 0) {
1228 size_t i;
1229
1230 for (i = 0; i < conf->num_bss; i++) {
1231 if ((&conf->bss[i] != bss) &&
1232 (hostapd_mac_comp(conf->bss[i].bssid,
1233 bss->bssid) == 0)) {
1234 wpa_printf(MSG_ERROR, "Duplicate BSSID " MACSTR
1235 " on interface '%s' and '%s'.",
1236 MAC2STR(bss->bssid),
1237 conf->bss[i].iface, bss->iface);
1238 return -1;
1239 }
1240 }
1241 }
1242
1243#ifdef CONFIG_IEEE80211R
0bf927a0 1244 if (wpa_key_mgmt_ft(bss->wpa_key_mgmt) &&
41d719d6
JM		 1245 (bss->nas_identifier == NULL ||
1246 os_strlen(bss->nas_identifier) < 1 ||
1247 os_strlen(bss->nas_identifier) > FT_R0KH_ID_MAX_LEN)) {
1248 wpa_printf(MSG_ERROR, "FT (IEEE 802.11r) requires "
1249 "nas_identifier to be configured as a 1..48 octet "
1250 "string");
1251 return -1;
1252 }
1253#endif /* CONFIG_IEEE80211R */
1254
1255#ifdef CONFIG_IEEE80211N
1ed08baf
SM		 1256 if (conf->ieee80211n && conf->hw_mode == HOSTAPD_MODE_IEEE80211B) {
1257 bss->disable_11n = 1;
1258 wpa_printf(MSG_ERROR, "HT (IEEE 802.11n) in 11b mode is not "
1259 "allowed, disabling HT capabilites");
1260 }
1261
6950b2ca
YAP		 1262 if (conf->ieee80211n &&
1263 bss->ssid.security_policy == SECURITY_STATIC_WEP) {
f39b07d7 1264 bss->disable_11n = 1;
6950b2ca 1265 wpa_printf(MSG_ERROR, "HT (IEEE 802.11n) with WEP is not "
f39b07d7 1266 "allowed, disabling HT capabilities");
6950b2ca
YAP		 1267 }
1268
41d719d6
JM		 1269 if (conf->ieee80211n && bss->wpa &&
1270 !(bss->wpa_pairwise & WPA_CIPHER_CCMP) &&
1271 !(bss->rsn_pairwise & WPA_CIPHER_CCMP)) {
f39b07d7 1272 bss->disable_11n = 1;
41d719d6 1273 wpa_printf(MSG_ERROR, "HT (IEEE 802.11n) with WPA/WPA2 "
f39b07d7
HS		 1274 "requires CCMP to be enabled, disabling HT "
1275 "capabilities");
41d719d6
JM		 1276 }
1277#endif /* CONFIG_IEEE80211N */
1278
f61039c7
JM		 1279#ifdef CONFIG_WPS2
1280 if (bss->wps_state && bss->ignore_broadcast_ssid) {
1281 wpa_printf(MSG_INFO, "WPS: ignore_broadcast_ssid "
1282 "configuration forced WPS to be disabled");
1283 bss->wps_state = 0;
1284 }
1285
1286 if (bss->wps_state && bss->ssid.wep.keys_set && bss->wpa == 0) {
1287 wpa_printf(MSG_INFO, "WPS: WEP configuration forced WPS to be "
1288 "disabled");
1289 bss->wps_state = 0;
1290 }
1291#endif /* CONFIG_WPS2 */
1292
41d719d6
JM		 1293 return 0;
1294}
1295
1296
1297static int hostapd_config_check(struct hostapd_config *conf)
1298{
1299 size_t i;
1300
1301 if (conf->ieee80211d && (!conf->country[0] || !conf->country[1])) {
1302 wpa_printf(MSG_ERROR, "Cannot enable IEEE 802.11d without "
1303 "setting the country_code");
1304 return -1;
1305 }
1306
1307 for (i = 0; i < conf->num_bss; i++) {
1308 if (hostapd_config_check_bss(&conf->bss[i], conf))
1309 return -1;
1310 }
1311
1312 return 0;
1313}
1314
1315
4b2a77ab
JM		 1316#ifdef CONFIG_INTERWORKING
1317static int parse_roaming_consortium(struct hostapd_bss_config *bss, char *pos,
1318 int line)
1319{
1320 size_t len = os_strlen(pos);
1321 u8 oi[MAX_ROAMING_CONSORTIUM_LEN];
1322
1323 struct hostapd_roaming_consortium *rc;
1324
1325 if ((len & 1) || len < 2 * 3 || len / 2 > MAX_ROAMING_CONSORTIUM_LEN ||
1326 hexstr2bin(pos, oi, len / 2)) {
1327 wpa_printf(MSG_ERROR, "Line %d: invalid roaming_consortium "
1328 "'%s'", line, pos);
1329 return -1;
1330 }
1331 len /= 2;
1332
1333 rc = os_realloc(bss->roaming_consortium,
1334 sizeof(struct hostapd_roaming_consortium) *
1335 (bss->roaming_consortium_count + 1));
1336 if (rc == NULL)
1337 return -1;
1338
1339 os_memcpy(rc[bss->roaming_consortium_count].oi, oi, len);
1340 rc[bss->roaming_consortium_count].len = len;
1341
1342 bss->roaming_consortium = rc;
1343 bss->roaming_consortium_count++;
1344
1345 return 0;
1346}
648cc711
JM		 1347
1348
1349static int parse_venue_name(struct hostapd_bss_config *bss, char *pos,
1350 int line)
1351{
1352 char *sep;
1353 size_t clen, nlen;
1354 struct hostapd_venue_name *vn;
1355
1356 sep = os_strchr(pos, ':');
1357 if (sep == NULL)
1358 goto fail;
1359 *sep++ = '\0';
1360
1361 clen = os_strlen(pos);
1362 if (clen < 2)
1363 goto fail;
1364 nlen = os_strlen(sep);
1365 if (nlen > 252)
1366 goto fail;
1367
1368 vn = os_realloc(bss->venue_name,
1369 sizeof(struct hostapd_venue_name) *
1370 (bss->venue_name_count + 1));
1371 if (vn == NULL)
1372 return -1;
1373
1374 bss->venue_name = vn;
1375 vn = &bss->venue_name[bss->venue_name_count];
1376 bss->venue_name_count++;
1377
1378 os_memset(vn->lang, 0, sizeof(vn->lang));
1379 os_memcpy(vn->lang, pos, clen);
1380 vn->name_len = nlen;
1381 os_memcpy(vn->name, sep, nlen);
1382
1383 return 0;
1384
1385fail:
1386 wpa_printf(MSG_ERROR, "Line %d: Invalid venue_name '%s'",
1387 line, pos);
1388 return -1;
1389}
4b2a77ab
JM		 1390#endif /* CONFIG_INTERWORKING */
1391
1392
ffdaa05a
JM		 1393#ifdef CONFIG_WPS_NFC
1394static struct wpabuf * hostapd_parse_bin(const char *buf)
1395{
1396 size_t len;
1397 struct wpabuf *ret;
1398
1399 len = os_strlen(buf);
1400 if (len & 0x01)
1401 return NULL;
1402 len /= 2;
1403
1404 ret = wpabuf_alloc(len);
1405 if (ret == NULL)
1406 return NULL;
1407
1408 if (hexstr2bin(buf, wpabuf_put(ret, len), len)) {
1409 wpabuf_free(ret);
1410 return NULL;
1411 }
1412
1413 return ret;
1414}
1415#endif /* CONFIG_WPS_NFC */
1416
1417
ef45bc89
SP		 1418static int hostapd_config_fill(struct hostapd_config *conf,
1419 struct hostapd_bss_config *bss,
1420 char *buf, char *pos, int line)
41d719d6 1421{
41d719d6 1422 int errors = 0;
41d719d6 1423
ef45bc89 1424 {
41d719d6
JM		 1425 if (os_strcmp(buf, "interface") == 0) {
1426 os_strlcpy(conf->bss[0].iface, pos,
1427 sizeof(conf->bss[0].iface));
1428 } else if (os_strcmp(buf, "bridge") == 0) {
1429 os_strlcpy(bss->bridge, pos, sizeof(bss->bridge));
d38ae2ea
FF		 1430 } else if (os_strcmp(buf, "wds_bridge") == 0) {
1431 os_strlcpy(bss->wds_bridge, pos,
1432 sizeof(bss->wds_bridge));
41d719d6
JM		 1433 } else if (os_strcmp(buf, "driver") == 0) {
1434 int j;
1435 /* clear to get error below if setting is invalid */
1436 conf->driver = NULL;
1437 for (j = 0; wpa_drivers[j]; j++) {
1438 if (os_strcmp(pos, wpa_drivers[j]->name) == 0)
1439 {
1440 conf->driver = wpa_drivers[j];
1441 break;
1442 }
1443 }
1444 if (conf->driver == NULL) {
1445 wpa_printf(MSG_ERROR, "Line %d: invalid/"
1446 "unknown driver '%s'", line, pos);
1447 errors++;
1448 }
1449 } else if (os_strcmp(buf, "debug") == 0) {
1450 wpa_printf(MSG_DEBUG, "Line %d: DEPRECATED: 'debug' "
1451 "configuration variable is not used "
1452 "anymore", line);
1453 } else if (os_strcmp(buf, "logger_syslog_level") == 0) {
1454 bss->logger_syslog_level = atoi(pos);
1455 } else if (os_strcmp(buf, "logger_stdout_level") == 0) {
1456 bss->logger_stdout_level = atoi(pos);
1457 } else if (os_strcmp(buf, "logger_syslog") == 0) {
1458 bss->logger_syslog = atoi(pos);
1459 } else if (os_strcmp(buf, "logger_stdout") == 0) {
1460 bss->logger_stdout = atoi(pos);
1461 } else if (os_strcmp(buf, "dump_file") == 0) {
1462 bss->dump_log_name = os_strdup(pos);
1463 } else if (os_strcmp(buf, "ssid") == 0) {
1464 bss->ssid.ssid_len = os_strlen(pos);
1465 if (bss->ssid.ssid_len > HOSTAPD_MAX_SSID_LEN ||
1466 bss->ssid.ssid_len < 1) {
1467 wpa_printf(MSG_ERROR, "Line %d: invalid SSID "
1468 "'%s'", line, pos);
1469 errors++;
1470 } else {
1471 os_memcpy(bss->ssid.ssid, pos,
1472 bss->ssid.ssid_len);
41d719d6
JM		 1473 bss->ssid.ssid_set = 1;
1474 }
e122bb70
JM		 1475 } else if (os_strcmp(buf, "ssid2") == 0) {
1476 size_t slen;
1477 char *str = wpa_config_parse_string(pos, &slen);
1478 if (str == NULL || slen < 1 ||
1479 slen > HOSTAPD_MAX_SSID_LEN) {
1480 wpa_printf(MSG_ERROR, "Line %d: invalid SSID "
1481 "'%s'", line, pos);
1482 errors++;
1483 } else {
1484 os_memcpy(bss->ssid.ssid, str, slen);
1485 bss->ssid.ssid_len = slen;
1486 bss->ssid.ssid_set = 1;
1487 }
1488 os_free(str);
41d719d6
JM		 1489 } else if (os_strcmp(buf, "macaddr_acl") == 0) {
1490 bss->macaddr_acl = atoi(pos);
1491 if (bss->macaddr_acl != ACCEPT_UNLESS_DENIED &&
1492 bss->macaddr_acl != DENY_UNLESS_ACCEPTED &&
1493 bss->macaddr_acl != USE_EXTERNAL_RADIUS_AUTH) {
1494 wpa_printf(MSG_ERROR, "Line %d: unknown "
1495 "macaddr_acl %d",
1496 line, bss->macaddr_acl);
1497 }
1498 } else if (os_strcmp(buf, "accept_mac_file") == 0) {
1499 if (hostapd_config_read_maclist(pos, &bss->accept_mac,
1500 &bss->num_accept_mac))
1501 {
1502 wpa_printf(MSG_ERROR, "Line %d: Failed to "
1503 "read accept_mac_file '%s'",
1504 line, pos);
1505 errors++;
1506 }
1507 } else if (os_strcmp(buf, "deny_mac_file") == 0) {
1508 if (hostapd_config_read_maclist(pos, &bss->deny_mac,
1509 &bss->num_deny_mac)) {
1510 wpa_printf(MSG_ERROR, "Line %d: Failed to "
1511 "read deny_mac_file '%s'",
1512 line, pos);
1513 errors++;
1514 }
1515 } else if (os_strcmp(buf, "wds_sta") == 0) {
1516 bss->wds_sta = atoi(pos);
d3b42869
FF		 1517 } else if (os_strcmp(buf, "ap_isolate") == 0) {
1518 bss->isolate = atoi(pos);
41d719d6
JM		 1519 } else if (os_strcmp(buf, "ap_max_inactivity") == 0) {
1520 bss->ap_max_inactivity = atoi(pos);
ef01fa7b
YAP		 1521 } else if (os_strcmp(buf, "skip_inactivity_poll") == 0) {
1522 bss->skip_inactivity_poll = atoi(pos);
41d719d6
JM		 1523 } else if (os_strcmp(buf, "country_code") == 0) {
1524 os_memcpy(conf->country, pos, 2);
1525 /* FIX: make this configurable */
1526 conf->country[2] = ' ';
1527 } else if (os_strcmp(buf, "ieee80211d") == 0) {
1528 conf->ieee80211d = atoi(pos);
1529 } else if (os_strcmp(buf, "ieee8021x") == 0) {
1530 bss->ieee802_1x = atoi(pos);
1531 } else if (os_strcmp(buf, "eapol_version") == 0) {
1532 bss->eapol_version = atoi(pos);
1533 if (bss->eapol_version < 1 ||
1534 bss->eapol_version > 2) {
1535 wpa_printf(MSG_ERROR, "Line %d: invalid EAPOL "
1536 "version (%d): '%s'.",
1537 line, bss->eapol_version, pos);
1538 errors++;
1539 } else
1540 wpa_printf(MSG_DEBUG, "eapol_version=%d",
1541 bss->eapol_version);
1542#ifdef EAP_SERVER
1543 } else if (os_strcmp(buf, "eap_authenticator") == 0) {
1544 bss->eap_server = atoi(pos);
1545 wpa_printf(MSG_ERROR, "Line %d: obsolete "
1546 "eap_authenticator used; this has been "
1547 "renamed to eap_server", line);
1548 } else if (os_strcmp(buf, "eap_server") == 0) {
1549 bss->eap_server = atoi(pos);
1550 } else if (os_strcmp(buf, "eap_user_file") == 0) {
1551 if (hostapd_config_read_eap_user(pos, bss))
1552 errors++;
1553 } else if (os_strcmp(buf, "ca_cert") == 0) {
1554 os_free(bss->ca_cert);
1555 bss->ca_cert = os_strdup(pos);
1556 } else if (os_strcmp(buf, "server_cert") == 0) {
1557 os_free(bss->server_cert);
1558 bss->server_cert = os_strdup(pos);
1559 } else if (os_strcmp(buf, "private_key") == 0) {
1560 os_free(bss->private_key);
1561 bss->private_key = os_strdup(pos);
1562 } else if (os_strcmp(buf, "private_key_passwd") == 0) {
1563 os_free(bss->private_key_passwd);
1564 bss->private_key_passwd = os_strdup(pos);
1565 } else if (os_strcmp(buf, "check_crl") == 0) {
1566 bss->check_crl = atoi(pos);
1567 } else if (os_strcmp(buf, "dh_file") == 0) {
1568 os_free(bss->dh_file);
1569 bss->dh_file = os_strdup(pos);
7f6ec672
JM		 1570 } else if (os_strcmp(buf, "fragment_size") == 0) {
1571 bss->fragment_size = atoi(pos);
41d719d6
JM		 1572#ifdef EAP_SERVER_FAST
1573 } else if (os_strcmp(buf, "pac_opaque_encr_key") == 0) {
1574 os_free(bss->pac_opaque_encr_key);
1575 bss->pac_opaque_encr_key = os_malloc(16);
1576 if (bss->pac_opaque_encr_key == NULL) {
1577 wpa_printf(MSG_ERROR, "Line %d: No memory for "
1578 "pac_opaque_encr_key", line);
1579 errors++;
1580 } else if (hexstr2bin(pos, bss->pac_opaque_encr_key,
1581 16)) {
1582 wpa_printf(MSG_ERROR, "Line %d: Invalid "
1583 "pac_opaque_encr_key", line);
1584 errors++;
1585 }
1586 } else if (os_strcmp(buf, "eap_fast_a_id") == 0) {
1587 size_t idlen = os_strlen(pos);
1588 if (idlen & 1) {
1589 wpa_printf(MSG_ERROR, "Line %d: Invalid "
1590 "eap_fast_a_id", line);
1591 errors++;
1592 } else {
1593 os_free(bss->eap_fast_a_id);
1594 bss->eap_fast_a_id = os_malloc(idlen / 2);
1595 if (bss->eap_fast_a_id == NULL ||
1596 hexstr2bin(pos, bss->eap_fast_a_id,
1597 idlen / 2)) {
1598 wpa_printf(MSG_ERROR, "Line %d: "
1599 "Failed to parse "
1600 "eap_fast_a_id", line);
1601 errors++;
1602 } else
1603 bss->eap_fast_a_id_len = idlen / 2;
1604 }
1605 } else if (os_strcmp(buf, "eap_fast_a_id_info") == 0) {
1606 os_free(bss->eap_fast_a_id_info);
1607 bss->eap_fast_a_id_info = os_strdup(pos);
1608 } else if (os_strcmp(buf, "eap_fast_prov") == 0) {
1609 bss->eap_fast_prov = atoi(pos);
1610 } else if (os_strcmp(buf, "pac_key_lifetime") == 0) {
1611 bss->pac_key_lifetime = atoi(pos);
1612 } else if (os_strcmp(buf, "pac_key_refresh_time") == 0) {
1613 bss->pac_key_refresh_time = atoi(pos);
1614#endif /* EAP_SERVER_FAST */
1615#ifdef EAP_SERVER_SIM
1616 } else if (os_strcmp(buf, "eap_sim_db") == 0) {
1617 os_free(bss->eap_sim_db);
1618 bss->eap_sim_db = os_strdup(pos);
1619 } else if (os_strcmp(buf, "eap_sim_aka_result_ind") == 0) {
1620 bss->eap_sim_aka_result_ind = atoi(pos);
1621#endif /* EAP_SERVER_SIM */
1622#ifdef EAP_SERVER_TNC
1623 } else if (os_strcmp(buf, "tnc") == 0) {
1624 bss->tnc = atoi(pos);
1625#endif /* EAP_SERVER_TNC */
df684d82
DH		 1626#ifdef EAP_SERVER_PWD
1627 } else if (os_strcmp(buf, "pwd_group") == 0) {
1628 bss->pwd_group = atoi(pos);
1629#endif /* EAP_SERVER_PWD */
41d719d6
JM		 1630#endif /* EAP_SERVER */
1631 } else if (os_strcmp(buf, "eap_message") == 0) {
1632 char *term;
1633 bss->eap_req_id_text = os_strdup(pos);
1634 if (bss->eap_req_id_text == NULL) {
1635 wpa_printf(MSG_ERROR, "Line %d: Failed to "
1636 "allocate memory for "
1637 "eap_req_id_text", line);
1638 errors++;
ef45bc89 1639 return errors;
41d719d6
JM		 1640 }
1641 bss->eap_req_id_text_len =
1642 os_strlen(bss->eap_req_id_text);
1643 term = os_strstr(bss->eap_req_id_text, "\\0");
1644 if (term) {
1645 *term++ = '\0';
1646 os_memmove(term, term + 1,
1647 bss->eap_req_id_text_len -
1648 (term - bss->eap_req_id_text) - 1);
1649 bss->eap_req_id_text_len--;
1650 }
1651 } else if (os_strcmp(buf, "wep_key_len_broadcast") == 0) {
1652 bss->default_wep_key_len = atoi(pos);
1653 if (bss->default_wep_key_len > 13) {
1654 wpa_printf(MSG_ERROR, "Line %d: invalid WEP "
1655 "key len %lu (= %lu bits)", line,
1656 (unsigned long)
1657 bss->default_wep_key_len,
1658 (unsigned long)
1659 bss->default_wep_key_len * 8);
1660 errors++;
1661 }
1662 } else if (os_strcmp(buf, "wep_key_len_unicast") == 0) {
1663 bss->individual_wep_key_len = atoi(pos);
1664 if (bss->individual_wep_key_len < 0 ||
1665 bss->individual_wep_key_len > 13) {
1666 wpa_printf(MSG_ERROR, "Line %d: invalid WEP "
1667 "key len %d (= %d bits)", line,
1668 bss->individual_wep_key_len,
1669 bss->individual_wep_key_len * 8);
1670 errors++;
1671 }
1672 } else if (os_strcmp(buf, "wep_rekey_period") == 0) {
1673 bss->wep_rekeying_period = atoi(pos);
1674 if (bss->wep_rekeying_period < 0) {
1675 wpa_printf(MSG_ERROR, "Line %d: invalid "
1676 "period %d",
1677 line, bss->wep_rekeying_period);
1678 errors++;
1679 }
1680 } else if (os_strcmp(buf, "eap_reauth_period") == 0) {
1681 bss->eap_reauth_period = atoi(pos);
1682 if (bss->eap_reauth_period < 0) {
1683 wpa_printf(MSG_ERROR, "Line %d: invalid "
1684 "period %d",
1685 line, bss->eap_reauth_period);
1686 errors++;
1687 }
1688 } else if (os_strcmp(buf, "eapol_key_index_workaround") == 0) {
1689 bss->eapol_key_index_workaround = atoi(pos);
1690#ifdef CONFIG_IAPP
1691 } else if (os_strcmp(buf, "iapp_interface") == 0) {
1692 bss->ieee802_11f = 1;
1693 os_strlcpy(bss->iapp_iface, pos,
1694 sizeof(bss->iapp_iface));
1695#endif /* CONFIG_IAPP */
1696 } else if (os_strcmp(buf, "own_ip_addr") == 0) {
1697 if (hostapd_parse_ip_addr(pos, &bss->own_ip_addr)) {
1698 wpa_printf(MSG_ERROR, "Line %d: invalid IP "
1699 "address '%s'", line, pos);
1700 errors++;
1701 }
1702 } else if (os_strcmp(buf, "nas_identifier") == 0) {
1703 bss->nas_identifier = os_strdup(pos);
1704#ifndef CONFIG_NO_RADIUS
1705 } else if (os_strcmp(buf, "auth_server_addr") == 0) {
1706 if (hostapd_config_read_radius_addr(
1707 &bss->radius->auth_servers,
1708 &bss->radius->num_auth_servers, pos, 1812,
1709 &bss->radius->auth_server)) {
1710 wpa_printf(MSG_ERROR, "Line %d: invalid IP "
1711 "address '%s'", line, pos);
1712 errors++;
1713 }
1714 } else if (bss->radius->auth_server &&
1715 os_strcmp(buf, "auth_server_port") == 0) {
1716 bss->radius->auth_server->port = atoi(pos);
1717 } else if (bss->radius->auth_server &&
1718 os_strcmp(buf, "auth_server_shared_secret") == 0) {
1719 int len = os_strlen(pos);
1720 if (len == 0) {
1721 /* RFC 2865, Ch. 3 */
1722 wpa_printf(MSG_ERROR, "Line %d: empty shared "
1723 "secret is not allowed.", line);
1724 errors++;
1725 }
1726 bss->radius->auth_server->shared_secret =
1727 (u8 *) os_strdup(pos);
1728 bss->radius->auth_server->shared_secret_len = len;
1729 } else if (os_strcmp(buf, "acct_server_addr") == 0) {
1730 if (hostapd_config_read_radius_addr(
1731 &bss->radius->acct_servers,
1732 &bss->radius->num_acct_servers, pos, 1813,
1733 &bss->radius->acct_server)) {
1734 wpa_printf(MSG_ERROR, "Line %d: invalid IP "
1735 "address '%s'", line, pos);
1736 errors++;
1737 }
1738 } else if (bss->radius->acct_server &&
1739 os_strcmp(buf, "acct_server_port") == 0) {
1740 bss->radius->acct_server->port = atoi(pos);
1741 } else if (bss->radius->acct_server &&
1742 os_strcmp(buf, "acct_server_shared_secret") == 0) {
1743 int len = os_strlen(pos);
1744 if (len == 0) {
1745 /* RFC 2865, Ch. 3 */
1746 wpa_printf(MSG_ERROR, "Line %d: empty shared "
1747 "secret is not allowed.", line);
1748 errors++;
1749 }
1750 bss->radius->acct_server->shared_secret =
1751 (u8 *) os_strdup(pos);
1752 bss->radius->acct_server->shared_secret_len = len;
1753 } else if (os_strcmp(buf, "radius_retry_primary_interval") ==
1754 0) {
1755 bss->radius->retry_primary_interval = atoi(pos);
1756 } else if (os_strcmp(buf, "radius_acct_interim_interval") == 0)
1757 {
1758 bss->acct_interim_interval = atoi(pos);
86f6053a
JM		 1759 } else if (os_strcmp(buf, "radius_request_cui") == 0) {
1760 bss->radius_request_cui = atoi(pos);
af35e7af
JM		 1761 } else if (os_strcmp(buf, "radius_auth_req_attr") == 0) {
1762 struct hostapd_radius_attr *attr, *a;
1763 attr = hostapd_parse_radius_attr(pos);
1764 if (attr == NULL) {
1765 wpa_printf(MSG_ERROR, "Line %d: invalid "
1766 "radius_auth_req_attr", line);
1767 errors++;
1768 } else if (bss->radius_auth_req_attr == NULL) {
1769 bss->radius_auth_req_attr = attr;
1770 } else {
1771 a = bss->radius_auth_req_attr;
1772 while (a->next)
1773 a = a->next;
1774 a->next = attr;
1775 }
1776 } else if (os_strcmp(buf, "radius_acct_req_attr") == 0) {
1777 struct hostapd_radius_attr *attr, *a;
1778 attr = hostapd_parse_radius_attr(pos);
1779 if (attr == NULL) {
1780 wpa_printf(MSG_ERROR, "Line %d: invalid "
1781 "radius_acct_req_attr", line);
1782 errors++;
1783 } else if (bss->radius_acct_req_attr == NULL) {
1784 bss->radius_acct_req_attr = attr;
1785 } else {
1786 a = bss->radius_acct_req_attr;
1787 while (a->next)
1788 a = a->next;
1789 a->next = attr;
1790 }
b031338c
JM		 1791 } else if (os_strcmp(buf, "radius_das_port") == 0) {
1792 bss->radius_das_port = atoi(pos);
1793 } else if (os_strcmp(buf, "radius_das_client") == 0) {
1794 if (hostapd_parse_das_client(bss, pos) < 0) {
1795 wpa_printf(MSG_ERROR, "Line %d: invalid "
1796 "DAS client", line);
1797 errors++;
1798 }
bde7ba6c
JM		 1799 } else if (os_strcmp(buf, "radius_das_time_window") == 0) {
1800 bss->radius_das_time_window = atoi(pos);
1801 } else if (os_strcmp(buf, "radius_das_require_event_timestamp")
1802 == 0) {
1803 bss->radius_das_require_event_timestamp = atoi(pos);
41d719d6
JM		 1804#endif /* CONFIG_NO_RADIUS */
1805 } else if (os_strcmp(buf, "auth_algs") == 0) {
1806 bss->auth_algs = atoi(pos);
1807 if (bss->auth_algs == 0) {
1808 wpa_printf(MSG_ERROR, "Line %d: no "
1809 "authentication algorithms allowed",
1810 line);
1811 errors++;
1812 }
1813 } else if (os_strcmp(buf, "max_num_sta") == 0) {
1814 bss->max_num_sta = atoi(pos);
1815 if (bss->max_num_sta < 0 ||
1816 bss->max_num_sta > MAX_STA_COUNT) {
1817 wpa_printf(MSG_ERROR, "Line %d: Invalid "
1818 "max_num_sta=%d; allowed range "
1819 "0..%d", line, bss->max_num_sta,
1820 MAX_STA_COUNT);
1821 errors++;
1822 }
1823 } else if (os_strcmp(buf, "wpa") == 0) {
1824 bss->wpa = atoi(pos);
1825 } else if (os_strcmp(buf, "wpa_group_rekey") == 0) {
1826 bss->wpa_group_rekey = atoi(pos);
1827 } else if (os_strcmp(buf, "wpa_strict_rekey") == 0) {
1828 bss->wpa_strict_rekey = atoi(pos);
1829 } else if (os_strcmp(buf, "wpa_gmk_rekey") == 0) {
1830 bss->wpa_gmk_rekey = atoi(pos);
1831 } else if (os_strcmp(buf, "wpa_ptk_rekey") == 0) {
1832 bss->wpa_ptk_rekey = atoi(pos);
1833 } else if (os_strcmp(buf, "wpa_passphrase") == 0) {
1834 int len = os_strlen(pos);
1835 if (len < 8 || len > 63) {
1836 wpa_printf(MSG_ERROR, "Line %d: invalid WPA "
1837 "passphrase length %d (expected "
1838 "8..63)", line, len);
1839 errors++;
1840 } else {
1841 os_free(bss->ssid.wpa_passphrase);
1842 bss->ssid.wpa_passphrase = os_strdup(pos);
31b540eb
SP		 1843 os_free(bss->ssid.wpa_psk);
1844 bss->ssid.wpa_psk = NULL;
41d719d6
JM		 1845 }
1846 } else if (os_strcmp(buf, "wpa_psk") == 0) {
1847 os_free(bss->ssid.wpa_psk);
1848 bss->ssid.wpa_psk =
1849 os_zalloc(sizeof(struct hostapd_wpa_psk));
1850 if (bss->ssid.wpa_psk == NULL)
1851 errors++;
1852 else if (hexstr2bin(pos, bss->ssid.wpa_psk->psk,
1853 PMK_LEN) ||
1854 pos[PMK_LEN * 2] != '\0') {
1855 wpa_printf(MSG_ERROR, "Line %d: Invalid PSK "
1856 "'%s'.", line, pos);
1857 errors++;
1858 } else {
1859 bss->ssid.wpa_psk->group = 1;
31b540eb
SP		 1860 os_free(bss->ssid.wpa_passphrase);
1861 bss->ssid.wpa_passphrase = NULL;
41d719d6
JM		 1862 }
1863 } else if (os_strcmp(buf, "wpa_psk_file") == 0) {
1864 os_free(bss->ssid.wpa_psk_file);
1865 bss->ssid.wpa_psk_file = os_strdup(pos);
1866 if (!bss->ssid.wpa_psk_file) {
1867 wpa_printf(MSG_ERROR, "Line %d: allocation "
1868 "failed", line);
1869 errors++;
1870 }
1871 } else if (os_strcmp(buf, "wpa_key_mgmt") == 0) {
1872 bss->wpa_key_mgmt =
1873 hostapd_config_parse_key_mgmt(line, pos);
1874 if (bss->wpa_key_mgmt == -1)
1875 errors++;
05ab9712
MB		 1876 } else if (os_strcmp(buf, "wpa_psk_radius") == 0) {
1877 bss->wpa_psk_radius = atoi(pos);
1878 if (bss->wpa_psk_radius != PSK_RADIUS_IGNORED &&
1879 bss->wpa_psk_radius != PSK_RADIUS_ACCEPTED &&
1880 bss->wpa_psk_radius != PSK_RADIUS_REQUIRED) {
1881 wpa_printf(MSG_ERROR, "Line %d: unknown "
1882 "wpa_psk_radius %d",
1883 line, bss->wpa_psk_radius);
1884 errors++;
1885 }
41d719d6
JM		 1886 } else if (os_strcmp(buf, "wpa_pairwise") == 0) {
1887 bss->wpa_pairwise =
1888 hostapd_config_parse_cipher(line, pos);
1889 if (bss->wpa_pairwise == -1 ||
1890 bss->wpa_pairwise == 0)
1891 errors++;
1892 else if (bss->wpa_pairwise &
1893 (WPA_CIPHER_NONE | WPA_CIPHER_WEP40 |
1894 WPA_CIPHER_WEP104)) {
1895 wpa_printf(MSG_ERROR, "Line %d: unsupported "
1896 "pairwise cipher suite '%s'",
1897 bss->wpa_pairwise, pos);
1898 errors++;
1899 }
1900 } else if (os_strcmp(buf, "rsn_pairwise") == 0) {
1901 bss->rsn_pairwise =
1902 hostapd_config_parse_cipher(line, pos);
1903 if (bss->rsn_pairwise == -1 ||
1904 bss->rsn_pairwise == 0)
1905 errors++;
1906 else if (bss->rsn_pairwise &
1907 (WPA_CIPHER_NONE | WPA_CIPHER_WEP40 |
1908 WPA_CIPHER_WEP104)) {
1909 wpa_printf(MSG_ERROR, "Line %d: unsupported "
1910 "pairwise cipher suite '%s'",
1911 bss->rsn_pairwise, pos);
1912 errors++;
1913 }
1914#ifdef CONFIG_RSN_PREAUTH
1915 } else if (os_strcmp(buf, "rsn_preauth") == 0) {
1916 bss->rsn_preauth = atoi(pos);
1917 } else if (os_strcmp(buf, "rsn_preauth_interfaces") == 0) {
1918 bss->rsn_preauth_interfaces = os_strdup(pos);
1919#endif /* CONFIG_RSN_PREAUTH */
1920#ifdef CONFIG_PEERKEY
1921 } else if (os_strcmp(buf, "peerkey") == 0) {
1922 bss->peerkey = atoi(pos);
1923#endif /* CONFIG_PEERKEY */
1924#ifdef CONFIG_IEEE80211R
1925 } else if (os_strcmp(buf, "mobility_domain") == 0) {
1926 if (os_strlen(pos) != 2 * MOBILITY_DOMAIN_ID_LEN ||
1927 hexstr2bin(pos, bss->mobility_domain,
1928 MOBILITY_DOMAIN_ID_LEN) != 0) {
1929 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1930 "mobility_domain '%s'", line, pos);
1931 errors++;
ef45bc89 1932 return errors;
41d719d6
JM		 1933 }
1934 } else if (os_strcmp(buf, "r1_key_holder") == 0) {
1935 if (os_strlen(pos) != 2 * FT_R1KH_ID_LEN ||
1936 hexstr2bin(pos, bss->r1_key_holder,
1937 FT_R1KH_ID_LEN) != 0) {
1938 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1939 "r1_key_holder '%s'", line, pos);
1940 errors++;
ef45bc89 1941 return errors;
41d719d6
JM		 1942 }
1943 } else if (os_strcmp(buf, "r0_key_lifetime") == 0) {
1944 bss->r0_key_lifetime = atoi(pos);
1945 } else if (os_strcmp(buf, "reassociation_deadline") == 0) {
1946 bss->reassociation_deadline = atoi(pos);
1947 } else if (os_strcmp(buf, "r0kh") == 0) {
1948 if (add_r0kh(bss, pos) < 0) {
1949 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1950 "r0kh '%s'", line, pos);
1951 errors++;
ef45bc89 1952 return errors;
41d719d6
JM		 1953 }
1954 } else if (os_strcmp(buf, "r1kh") == 0) {
1955 if (add_r1kh(bss, pos) < 0) {
1956 wpa_printf(MSG_DEBUG, "Line %d: Invalid "
1957 "r1kh '%s'", line, pos);
1958 errors++;
ef45bc89 1959 return errors;
41d719d6
JM		 1960 }
1961 } else if (os_strcmp(buf, "pmk_r1_push") == 0) {
1962 bss->pmk_r1_push = atoi(pos);
d7956add
SP		 1963 } else if (os_strcmp(buf, "ft_over_ds") == 0) {
1964 bss->ft_over_ds = atoi(pos);
41d719d6
JM		 1965#endif /* CONFIG_IEEE80211R */
1966#ifndef CONFIG_NO_CTRL_IFACE
1967 } else if (os_strcmp(buf, "ctrl_interface") == 0) {
1968 os_free(bss->ctrl_interface);
1969 bss->ctrl_interface = os_strdup(pos);
1970 } else if (os_strcmp(buf, "ctrl_interface_group") == 0) {
1971#ifndef CONFIG_NATIVE_WINDOWS
1972 struct group *grp;
1973 char *endp;
1974 const char *group = pos;
1975
1976 grp = getgrnam(group);
1977 if (grp) {
1978 bss->ctrl_interface_gid = grp->gr_gid;
1979 bss->ctrl_interface_gid_set = 1;
1980 wpa_printf(MSG_DEBUG, "ctrl_interface_group=%d"
1981 " (from group name '%s')",
1982 bss->ctrl_interface_gid, group);
ef45bc89 1983 return errors;
41d719d6
JM		 1984 }
1985
1986 /* Group name not found - try to parse this as gid */
1987 bss->ctrl_interface_gid = strtol(group, &endp, 10);
1988 if (*group == '\0' || *endp != '\0') {
1989 wpa_printf(MSG_DEBUG, "Line %d: Invalid group "
1990 "'%s'", line, group);
1991 errors++;
ef45bc89 1992 return errors;
41d719d6
JM		 1993 }
1994 bss->ctrl_interface_gid_set = 1;
1995 wpa_printf(MSG_DEBUG, "ctrl_interface_group=%d",
1996 bss->ctrl_interface_gid);
1997#endif /* CONFIG_NATIVE_WINDOWS */
1998#endif /* CONFIG_NO_CTRL_IFACE */
1999#ifdef RADIUS_SERVER
2000 } else if (os_strcmp(buf, "radius_server_clients") == 0) {
2001 os_free(bss->radius_server_clients);
2002 bss->radius_server_clients = os_strdup(pos);
2003 } else if (os_strcmp(buf, "radius_server_auth_port") == 0) {
2004 bss->radius_server_auth_port = atoi(pos);
2005 } else if (os_strcmp(buf, "radius_server_ipv6") == 0) {
2006 bss->radius_server_ipv6 = atoi(pos);
2007#endif /* RADIUS_SERVER */
2008 } else if (os_strcmp(buf, "test_socket") == 0) {
2009 os_free(bss->test_socket);
2010 bss->test_socket = os_strdup(pos);
2011 } else if (os_strcmp(buf, "use_pae_group_addr") == 0) {
2012 bss->use_pae_group_addr = atoi(pos);
2013 } else if (os_strcmp(buf, "hw_mode") == 0) {
2014 if (os_strcmp(pos, "a") == 0)
2015 conf->hw_mode = HOSTAPD_MODE_IEEE80211A;
2016 else if (os_strcmp(pos, "b") == 0)
2017 conf->hw_mode = HOSTAPD_MODE_IEEE80211B;
2018 else if (os_strcmp(pos, "g") == 0)
2019 conf->hw_mode = HOSTAPD_MODE_IEEE80211G;
2020 else {
2021 wpa_printf(MSG_ERROR, "Line %d: unknown "
2022 "hw_mode '%s'", line, pos);
2023 errors++;
2024 }
8e5f9134
BC		 2025 } else if (os_strcmp(buf, "wps_rf_bands") == 0) {
2026 if (os_strcmp(pos, "a") == 0)
2027 bss->wps_rf_bands = WPS_RF_50GHZ;
2028 else if (os_strcmp(pos, "g") == 0 ||
2029 os_strcmp(pos, "b") == 0)
2030 bss->wps_rf_bands = WPS_RF_24GHZ;
2031 else if (os_strcmp(pos, "ag") == 0 ||
2032 os_strcmp(pos, "ga") == 0)
2033 bss->wps_rf_bands =
2034 WPS_RF_24GHZ | WPS_RF_50GHZ;
2035 else {
2036 wpa_printf(MSG_ERROR, "Line %d: unknown "
2037 "wps_rf_band '%s'", line, pos);
2038 errors++;
2039 }
41d719d6
JM		 2040 } else if (os_strcmp(buf, "channel") == 0) {
2041 conf->channel = atoi(pos);
2042 } else if (os_strcmp(buf, "beacon_int") == 0) {
2043 int val = atoi(pos);
2044 /* MIB defines range as 1..65535, but very small values
2045 * cause problems with the current implementation.
2046 * Since it is unlikely that this small numbers are
2047 * useful in real life scenarios, do not allow beacon
2048 * period to be set below 15 TU. */
2049 if (val < 15 || val > 65535) {
2050 wpa_printf(MSG_ERROR, "Line %d: invalid "
2051 "beacon_int %d (expected "
2052 "15..65535)", line, val);
2053 errors++;
2054 } else
2055 conf->beacon_int = val;
2056 } else if (os_strcmp(buf, "dtim_period") == 0) {
2057 bss->dtim_period = atoi(pos);
2058 if (bss->dtim_period < 1 || bss->dtim_period > 255) {
2059 wpa_printf(MSG_ERROR, "Line %d: invalid "
2060 "dtim_period %d",
2061 line, bss->dtim_period);
2062 errors++;
2063 }
2064 } else if (os_strcmp(buf, "rts_threshold") == 0) {
2065 conf->rts_threshold = atoi(pos);
2066 if (conf->rts_threshold < 0 ||
2067 conf->rts_threshold > 2347) {
2068 wpa_printf(MSG_ERROR, "Line %d: invalid "
2069 "rts_threshold %d",
2070 line, conf->rts_threshold);
2071 errors++;
2072 }
2073 } else if (os_strcmp(buf, "fragm_threshold") == 0) {
2074 conf->fragm_threshold = atoi(pos);
2075 if (conf->fragm_threshold < 256 ||
2076 conf->fragm_threshold > 2346) {
2077 wpa_printf(MSG_ERROR, "Line %d: invalid "
2078 "fragm_threshold %d",
2079 line, conf->fragm_threshold);
2080 errors++;
2081 }
2082 } else if (os_strcmp(buf, "send_probe_response") == 0) {
2083 int val = atoi(pos);
2084 if (val != 0 && val != 1) {
2085 wpa_printf(MSG_ERROR, "Line %d: invalid "
2086 "send_probe_response %d (expected "
2087 "0 or 1)", line, val);
2088 } else
2089 conf->send_probe_response = val;
2090 } else if (os_strcmp(buf, "supported_rates") == 0) {
2091 if (hostapd_parse_rates(&conf->supported_rates, pos)) {
2092 wpa_printf(MSG_ERROR, "Line %d: invalid rate "
2093 "list", line);
2094 errors++;
2095 }
2096 } else if (os_strcmp(buf, "basic_rates") == 0) {
2097 if (hostapd_parse_rates(&conf->basic_rates, pos)) {
2098 wpa_printf(MSG_ERROR, "Line %d: invalid rate "
2099 "list", line);
2100 errors++;
2101 }
2102 } else if (os_strcmp(buf, "preamble") == 0) {
2103 if (atoi(pos))
2104 conf->preamble = SHORT_PREAMBLE;
2105 else
2106 conf->preamble = LONG_PREAMBLE;
2107 } else if (os_strcmp(buf, "ignore_broadcast_ssid") == 0) {
2108 bss->ignore_broadcast_ssid = atoi(pos);
2109 } else if (os_strcmp(buf, "wep_default_key") == 0) {
2110 bss->ssid.wep.idx = atoi(pos);
2111 if (bss->ssid.wep.idx > 3) {
2112 wpa_printf(MSG_ERROR, "Invalid "
2113 "wep_default_key index %d",
2114 bss->ssid.wep.idx);
2115 errors++;
2116 }
2117 } else if (os_strcmp(buf, "wep_key0") == 0 ||
2118 os_strcmp(buf, "wep_key1") == 0 ||
2119 os_strcmp(buf, "wep_key2") == 0 ||
2120 os_strcmp(buf, "wep_key3") == 0) {
2121 if (hostapd_config_read_wep(&bss->ssid.wep,
2122 buf[7] - '0', pos)) {
2123 wpa_printf(MSG_ERROR, "Line %d: invalid WEP "
2124 "key '%s'", line, buf);
2125 errors++;
2126 }
2127#ifndef CONFIG_NO_VLAN
2128 } else if (os_strcmp(buf, "dynamic_vlan") == 0) {
2129 bss->ssid.dynamic_vlan = atoi(pos);
2130 } else if (os_strcmp(buf, "vlan_file") == 0) {
2131 if (hostapd_config_read_vlan_file(bss, pos)) {
2132 wpa_printf(MSG_ERROR, "Line %d: failed to "
2133 "read VLAN file '%s'", line, pos);
2134 errors++;
2135 }
2136#ifdef CONFIG_FULL_DYNAMIC_VLAN
2137 } else if (os_strcmp(buf, "vlan_tagged_interface") == 0) {
2138 bss->ssid.vlan_tagged_interface = os_strdup(pos);
2139#endif /* CONFIG_FULL_DYNAMIC_VLAN */
2140#endif /* CONFIG_NO_VLAN */
2141 } else if (os_strcmp(buf, "ap_table_max_size") == 0) {
2142 conf->ap_table_max_size = atoi(pos);
2143 } else if (os_strcmp(buf, "ap_table_expiration_time") == 0) {
2144 conf->ap_table_expiration_time = atoi(pos);
2145 } else if (os_strncmp(buf, "tx_queue_", 9) == 0) {
2146 if (hostapd_config_tx_queue(conf, buf, pos)) {
2147 wpa_printf(MSG_ERROR, "Line %d: invalid TX "
2148 "queue item", line);
2149 errors++;
2150 }
2151 } else if (os_strcmp(buf, "wme_enabled") == 0 ||
2152 os_strcmp(buf, "wmm_enabled") == 0) {
2153 bss->wmm_enabled = atoi(pos);
721abef9
YAP		 2154 } else if (os_strcmp(buf, "uapsd_advertisement_enabled") == 0) {
2155 bss->wmm_uapsd = atoi(pos);
41d719d6
JM		 2156 } else if (os_strncmp(buf, "wme_ac_", 7) == 0 ||
2157 os_strncmp(buf, "wmm_ac_", 7) == 0) {
2158 if (hostapd_config_wmm_ac(conf, buf, pos)) {
2159 wpa_printf(MSG_ERROR, "Line %d: invalid WMM "
2160 "ac item", line);
2161 errors++;
2162 }
2163 } else if (os_strcmp(buf, "bss") == 0) {
2164 if (hostapd_config_bss(conf, pos)) {
2165 wpa_printf(MSG_ERROR, "Line %d: invalid bss "
2166 "item", line);
2167 errors++;
2168 }
2169 } else if (os_strcmp(buf, "bssid") == 0) {
2170 if (hwaddr_aton(pos, bss->bssid)) {
2171 wpa_printf(MSG_ERROR, "Line %d: invalid bssid "
2172 "item", line);
2173 errors++;
2174 }
2175#ifdef CONFIG_IEEE80211W
2176 } else if (os_strcmp(buf, "ieee80211w") == 0) {
2177 bss->ieee80211w = atoi(pos);
2178 } else if (os_strcmp(buf, "assoc_sa_query_max_timeout") == 0) {
2179 bss->assoc_sa_query_max_timeout = atoi(pos);
2180 if (bss->assoc_sa_query_max_timeout == 0) {
2181 wpa_printf(MSG_ERROR, "Line %d: invalid "
2182 "assoc_sa_query_max_timeout", line);
2183 errors++;
2184 }
2185 } else if (os_strcmp(buf, "assoc_sa_query_retry_timeout") == 0)
2186 {
2187 bss->assoc_sa_query_retry_timeout = atoi(pos);
2188 if (bss->assoc_sa_query_retry_timeout == 0) {
2189 wpa_printf(MSG_ERROR, "Line %d: invalid "
2190 "assoc_sa_query_retry_timeout",
2191 line);
2192 errors++;
2193 }
2194#endif /* CONFIG_IEEE80211W */
2195#ifdef CONFIG_IEEE80211N
2196 } else if (os_strcmp(buf, "ieee80211n") == 0) {
2197 conf->ieee80211n = atoi(pos);
2198 } else if (os_strcmp(buf, "ht_capab") == 0) {
2199 if (hostapd_config_ht_capab(conf, pos) < 0) {
2200 wpa_printf(MSG_ERROR, "Line %d: invalid "
2201 "ht_capab", line);
2202 errors++;
2203 }
29448243
JM		 2204 } else if (os_strcmp(buf, "require_ht") == 0) {
2205 conf->require_ht = atoi(pos);
41d719d6 2206#endif /* CONFIG_IEEE80211N */
efe45d14
MP		 2207#ifdef CONFIG_IEEE80211AC
2208 } else if (os_strcmp(buf, "ieee80211ac") == 0) {
2209 conf->ieee80211ac = atoi(pos);
2210 } else if (os_strcmp(buf, "vht_capab") == 0) {
2211 if (hostapd_config_vht_capab(conf, pos) < 0) {
2212 wpa_printf(MSG_ERROR, "Line %d: invalid "
2213 "vht_capab", line);
2214 errors++;
2215 }
2216 } else if (os_strcmp(buf, "vht_oper_chwidth") == 0) {
2217 conf->vht_oper_chwidth = atoi(pos);
2218#endif /* CONFIG_IEEE80211AC */
41d719d6
JM		 2219 } else if (os_strcmp(buf, "max_listen_interval") == 0) {
2220 bss->max_listen_interval = atoi(pos);
cb465555
JM		 2221 } else if (os_strcmp(buf, "disable_pmksa_caching") == 0) {
2222 bss->disable_pmksa_caching = atoi(pos);
41d719d6
JM		 2223 } else if (os_strcmp(buf, "okc") == 0) {
2224 bss->okc = atoi(pos);
2225#ifdef CONFIG_WPS
2226 } else if (os_strcmp(buf, "wps_state") == 0) {
2227 bss->wps_state = atoi(pos);
2228 if (bss->wps_state < 0 || bss->wps_state > 2) {
2229 wpa_printf(MSG_ERROR, "Line %d: invalid "
2230 "wps_state", line);
2231 errors++;
2232 }
2233 } else if (os_strcmp(buf, "ap_setup_locked") == 0) {
2234 bss->ap_setup_locked = atoi(pos);
2235 } else if (os_strcmp(buf, "uuid") == 0) {
2236 if (uuid_str2bin(pos, bss->uuid)) {
2237 wpa_printf(MSG_ERROR, "Line %d: invalid UUID",
2238 line);
2239 errors++;
2240 }
2241 } else if (os_strcmp(buf, "wps_pin_requests") == 0) {
2242 os_free(bss->wps_pin_requests);
2243 bss->wps_pin_requests = os_strdup(pos);
2244 } else if (os_strcmp(buf, "device_name") == 0) {
2245 if (os_strlen(pos) > 32) {
2246 wpa_printf(MSG_ERROR, "Line %d: Too long "
2247 "device_name", line);
2248 errors++;
2249 }
2250 os_free(bss->device_name);
2251 bss->device_name = os_strdup(pos);
2252 } else if (os_strcmp(buf, "manufacturer") == 0) {
2253 if (os_strlen(pos) > 64) {
2254 wpa_printf(MSG_ERROR, "Line %d: Too long "
2255 "manufacturer", line);
2256 errors++;
2257 }
2258 os_free(bss->manufacturer);
2259 bss->manufacturer = os_strdup(pos);
2260 } else if (os_strcmp(buf, "model_name") == 0) {
2261 if (os_strlen(pos) > 32) {
2262 wpa_printf(MSG_ERROR, "Line %d: Too long "
2263 "model_name", line);
2264 errors++;
2265 }
2266 os_free(bss->model_name);
2267 bss->model_name = os_strdup(pos);
2268 } else if (os_strcmp(buf, "model_number") == 0) {
2269 if (os_strlen(pos) > 32) {
2270 wpa_printf(MSG_ERROR, "Line %d: Too long "
2271 "model_number", line);
2272 errors++;
2273 }
2274 os_free(bss->model_number);
2275 bss->model_number = os_strdup(pos);
2276 } else if (os_strcmp(buf, "serial_number") == 0) {
2277 if (os_strlen(pos) > 32) {
2278 wpa_printf(MSG_ERROR, "Line %d: Too long "
2279 "serial_number", line);
2280 errors++;
2281 }
2282 os_free(bss->serial_number);
2283 bss->serial_number = os_strdup(pos);
2284 } else if (os_strcmp(buf, "device_type") == 0) {
2f646b6e
JB		 2285 if (wps_dev_type_str2bin(pos, bss->device_type))
2286 errors++;
41d719d6
JM		 2287 } else if (os_strcmp(buf, "config_methods") == 0) {
2288 os_free(bss->config_methods);
2289 bss->config_methods = os_strdup(pos);
2290 } else if (os_strcmp(buf, "os_version") == 0) {
2291 if (hexstr2bin(pos, bss->os_version, 4)) {
2292 wpa_printf(MSG_ERROR, "Line %d: invalid "
2293 "os_version", line);
2294 errors++;
2295 }
2296 } else if (os_strcmp(buf, "ap_pin") == 0) {
2297 os_free(bss->ap_pin);
2298 bss->ap_pin = os_strdup(pos);
2299 } else if (os_strcmp(buf, "skip_cred_build") == 0) {
2300 bss->skip_cred_build = atoi(pos);
2301 } else if (os_strcmp(buf, "extra_cred") == 0) {
2302 os_free(bss->extra_cred);
2303 bss->extra_cred =
2304 (u8 *) os_readfile(pos, &bss->extra_cred_len);
2305 if (bss->extra_cred == NULL) {
2306 wpa_printf(MSG_ERROR, "Line %d: could not "
2307 "read Credentials from '%s'",
2308 line, pos);
2309 errors++;
2310 }
2311 } else if (os_strcmp(buf, "wps_cred_processing") == 0) {
2312 bss->wps_cred_processing = atoi(pos);
2313 } else if (os_strcmp(buf, "ap_settings") == 0) {
2314 os_free(bss->ap_settings);
2315 bss->ap_settings =
2316 (u8 *) os_readfile(pos, &bss->ap_settings_len);
2317 if (bss->ap_settings == NULL) {
2318 wpa_printf(MSG_ERROR, "Line %d: could not "
2319 "read AP Settings from '%s'",
2320 line, pos);
2321 errors++;
2322 }
2323 } else if (os_strcmp(buf, "upnp_iface") == 0) {
2324 bss->upnp_iface = os_strdup(pos);
2325 } else if (os_strcmp(buf, "friendly_name") == 0) {
2326 os_free(bss->friendly_name);
2327 bss->friendly_name = os_strdup(pos);
2328 } else if (os_strcmp(buf, "manufacturer_url") == 0) {
2329 os_free(bss->manufacturer_url);
2330 bss->manufacturer_url = os_strdup(pos);
2331 } else if (os_strcmp(buf, "model_description") == 0) {
2332 os_free(bss->model_description);
2333 bss->model_description = os_strdup(pos);
2334 } else if (os_strcmp(buf, "model_url") == 0) {
2335 os_free(bss->model_url);
2336 bss->model_url = os_strdup(pos);
2337 } else if (os_strcmp(buf, "upc") == 0) {
2338 os_free(bss->upc);
2339 bss->upc = os_strdup(pos);
fa516558
JM		 2340 } else if (os_strcmp(buf, "pbc_in_m1") == 0) {
2341 bss->pbc_in_m1 = atoi(pos);
ffdaa05a
JM		 2342#ifdef CONFIG_WPS_NFC
2343 } else if (os_strcmp(buf, "wps_nfc_dev_pw_id") == 0) {
2344 bss->wps_nfc_dev_pw_id = atoi(pos);
2345 if (bss->wps_nfc_dev_pw_id < 0x10 ||
2346 bss->wps_nfc_dev_pw_id > 0xffff) {
2347 wpa_printf(MSG_ERROR, "Line %d: Invalid "
2348 "wps_nfc_dev_pw_id value", line);
2349 errors++;
2350 }
2351 } else if (os_strcmp(buf, "wps_nfc_dh_pubkey") == 0) {
2352 wpabuf_free(bss->wps_nfc_dh_pubkey);
2353 bss->wps_nfc_dh_pubkey = hostapd_parse_bin(pos);
2354 } else if (os_strcmp(buf, "wps_nfc_dh_privkey") == 0) {
2355 wpabuf_free(bss->wps_nfc_dh_privkey);
2356 bss->wps_nfc_dh_privkey = hostapd_parse_bin(pos);
2357 } else if (os_strcmp(buf, "wps_nfc_dev_pw") == 0) {
2358 wpabuf_free(bss->wps_nfc_dev_pw);
2359 bss->wps_nfc_dev_pw = hostapd_parse_bin(pos);
2360#endif /* CONFIG_WPS_NFC */
41d719d6 2361#endif /* CONFIG_WPS */
962473c1
JM		 2362#ifdef CONFIG_P2P_MANAGER
2363 } else if (os_strcmp(buf, "manage_p2p") == 0) {
2364 int manage = atoi(pos);
2365 if (manage)
2366 bss->p2p |= P2P_MANAGE;
2367 else
2368 bss->p2p &= ~P2P_MANAGE;
2369 } else if (os_strcmp(buf, "allow_cross_connection") == 0) {
2370 if (atoi(pos))
2371 bss->p2p |= P2P_ALLOW_CROSS_CONNECTION;
2372 else
2373 bss->p2p &= ~P2P_ALLOW_CROSS_CONNECTION;
2374#endif /* CONFIG_P2P_MANAGER */
0d7e5a3a
JB		 2375 } else if (os_strcmp(buf, "disassoc_low_ack") == 0) {
2376 bss->disassoc_low_ack = atoi(pos);
1161ff1e
JM		 2377 } else if (os_strcmp(buf, "tdls_prohibit") == 0) {
2378 int val = atoi(pos);
2379 if (val)
2380 bss->tdls |= TDLS_PROHIBIT;
2381 else
2382 bss->tdls &= ~TDLS_PROHIBIT;
2383 } else if (os_strcmp(buf, "tdls_prohibit_chan_switch") == 0) {
2384 int val = atoi(pos);
2385 if (val)
2386 bss->tdls |= TDLS_PROHIBIT_CHAN_SWITCH;
2387 else
2388 bss->tdls &= ~TDLS_PROHIBIT_CHAN_SWITCH;
cd9fc786
JM		 2389#ifdef CONFIG_RSN_TESTING
2390 } else if (os_strcmp(buf, "rsn_testing") == 0) {
2391 extern int rsn_testing;
2392 rsn_testing = atoi(pos);
2393#endif /* CONFIG_RSN_TESTING */
39b97072
JM		 2394 } else if (os_strcmp(buf, "time_advertisement") == 0) {
2395 bss->time_advertisement = atoi(pos);
2396 } else if (os_strcmp(buf, "time_zone") == 0) {
2397 size_t tz_len = os_strlen(pos);
2398 if (tz_len < 4 || tz_len > 255) {
2399 wpa_printf(MSG_DEBUG, "Line %d: invalid "
2400 "time_zone", line);
2401 errors++;
ef45bc89 2402 return errors;
39b97072
JM		 2403 }
2404 os_free(bss->time_zone);
2405 bss->time_zone = os_strdup(pos);
2406 if (bss->time_zone == NULL)
2407 errors++;
b83e3e93
JM		 2408#ifdef CONFIG_INTERWORKING
2409 } else if (os_strcmp(buf, "interworking") == 0) {
2410 bss->interworking = atoi(pos);
2411 } else if (os_strcmp(buf, "access_network_type") == 0) {
2412 bss->access_network_type = atoi(pos);
2413 if (bss->access_network_type < 0 ||
2414 bss->access_network_type > 15) {
2415 wpa_printf(MSG_ERROR, "Line %d: invalid "
2416 "access_network_type", line);
2417 errors++;
2418 }
2419 } else if (os_strcmp(buf, "internet") == 0) {
2420 bss->internet = atoi(pos);
2421 } else if (os_strcmp(buf, "asra") == 0) {
2422 bss->asra = atoi(pos);
2423 } else if (os_strcmp(buf, "esr") == 0) {
2424 bss->esr = atoi(pos);
2425 } else if (os_strcmp(buf, "uesa") == 0) {
2426 bss->uesa = atoi(pos);
2427 } else if (os_strcmp(buf, "venue_group") == 0) {
2428 bss->venue_group = atoi(pos);
2429 bss->venue_info_set = 1;
2430 } else if (os_strcmp(buf, "venue_type") == 0) {
2431 bss->venue_type = atoi(pos);
2432 bss->venue_info_set = 1;
2433 } else if (os_strcmp(buf, "hessid") == 0) {
2434 if (hwaddr_aton(pos, bss->hessid)) {
2435 wpa_printf(MSG_ERROR, "Line %d: invalid "
2436 "hessid", line);
2437 errors++;
2438 }
4b2a77ab
JM		 2439 } else if (os_strcmp(buf, "roaming_consortium") == 0) {
2440 if (parse_roaming_consortium(bss, pos, line) < 0)
2441 errors++;
648cc711
JM		 2442 } else if (os_strcmp(buf, "venue_name") == 0) {
2443 if (parse_venue_name(bss, pos, line) < 0)
2444 errors++;
550a3958
JK		 2445 } else if (os_strcmp(buf, "network_auth_type") == 0) {
2446 u8 auth_type;
2447 u16 redirect_url_len;
2448 if (hexstr2bin(pos, &auth_type, 1)) {
2449 wpa_printf(MSG_ERROR, "Line %d: Invalid "
2450 "network_auth_type '%s'",
2451 line, pos);
2452 errors++;
2453 return errors;
2454 }
2455 if (auth_type == 0 || auth_type == 2)
2456 redirect_url_len = os_strlen(pos + 2);
2457 else
2458 redirect_url_len = 0;
2459 os_free(bss->network_auth_type);
2460 bss->network_auth_type =
2461 os_malloc(redirect_url_len + 3 + 1);
2462 if (bss->network_auth_type == NULL) {
2463 errors++;
2464 return errors;
2465 }
2466 *bss->network_auth_type = auth_type;
2467 WPA_PUT_LE16(bss->network_auth_type + 1,
2468 redirect_url_len);
2469 if (redirect_url_len)
2470 os_memcpy(bss->network_auth_type + 3,
2471 pos + 2, redirect_url_len);
2472 bss->network_auth_type_len = 3 + redirect_url_len;
78bda93e
JK		 2473 } else if (os_strcmp(buf, "ipaddr_type_availability") == 0) {
2474 if (hexstr2bin(pos, &bss->ipaddr_type_availability, 1))
2475 {
2476 wpa_printf(MSG_ERROR, "Line %d: Invalid "
2477 "ipaddr_type_availability '%s'",
2478 line, pos);
2479 bss->ipaddr_type_configured = 0;
2480 errors++;
2481 return errors;
2482 }
2483 bss->ipaddr_type_configured = 1;
26fac8b6
JK		 2484 } else if (os_strcmp(buf, "domain_name") == 0) {
2485 int j, num_domains, domain_len, domain_list_len = 0;
2486 char *tok_start, *tok_prev;
2487 u8 *domain_list, *domain_ptr;
2488
2489 domain_list_len = os_strlen(pos) + 1;
2490 domain_list = os_malloc(domain_list_len);
2491 if (domain_list == NULL) {
2492 errors++;
2493 return errors;
2494 }
2495
2496 domain_ptr = domain_list;
2497 tok_prev = pos;
2498 num_domains = 1;
2499 while ((tok_prev = os_strchr(tok_prev, ','))) {
2500 num_domains++;
2501 tok_prev++;
2502 }
2503 tok_prev = pos;
2504 for (j = 0; j < num_domains; j++) {
2505 tok_start = os_strchr(tok_prev, ',');
2506 if (tok_start) {
2507 domain_len = tok_start - tok_prev;
2508 *domain_ptr = domain_len;
2509 os_memcpy(domain_ptr + 1, tok_prev,
2510 domain_len);
2511 domain_ptr += domain_len + 1;
2512 tok_prev = ++tok_start;
2513 } else {
2514 domain_len = os_strlen(tok_prev);
2515 *domain_ptr = domain_len;
2516 os_memcpy(domain_ptr + 1, tok_prev,
2517 domain_len);
2518 domain_ptr += domain_len + 1;
2519 }
2520 }
2521
2522 os_free(bss->domain_name);
2523 bss->domain_name = domain_list;
2524 bss->domain_name_len = domain_list_len;
dca30c3f
JK		 2525 } else if (os_strcmp(buf, "gas_frag_limit") == 0) {
2526 bss->gas_frag_limit = atoi(pos);
2527 } else if (os_strcmp(buf, "gas_comeback_delay") == 0) {
2528 bss->gas_comeback_delay = atoi(pos);
b83e3e93 2529#endif /* CONFIG_INTERWORKING */
505a3694
JM		 2530#ifdef CONFIG_RADIUS_TEST
2531 } else if (os_strcmp(buf, "dump_msk_file") == 0) {
2532 os_free(bss->dump_msk_file);
2533 bss->dump_msk_file = os_strdup(pos);
2534#endif /* CONFIG_RADIUS_TEST */
159c89ab
JK		 2535#ifdef CONFIG_HS20
2536 } else if (os_strcmp(buf, "hs20") == 0) {
2537 bss->hs20 = atoi(pos);
83421850
JM		 2538 } else if (os_strcmp(buf, "disable_dgaf") == 0) {
2539 bss->disable_dgaf = atoi(pos);
159c89ab 2540#endif /* CONFIG_HS20 */
41d719d6
JM		 2541 } else {
2542 wpa_printf(MSG_ERROR, "Line %d: unknown configuration "
2543 "item '%s'", line, buf);
2544 errors++;
2545 }
2546 }
2547
ef45bc89
SP		 2548 return errors;
2549}
2550
2551
a7f5b74d
JM		 2552static void hostapd_set_security_params(struct hostapd_bss_config *bss)
2553{
2554 int pairwise;
2555
2556 if (bss->individual_wep_key_len == 0) {
2557 /* individual keys are not use; can use key idx0 for
2558 * broadcast keys */
2559 bss->broadcast_key_idx_min = 0;
2560 }
2561
2562 /* Select group cipher based on the enabled pairwise cipher
2563 * suites */
2564 pairwise = 0;
2565 if (bss->wpa & 1)
2566 pairwise |= bss->wpa_pairwise;
2567 if (bss->wpa & 2) {
2568 if (bss->rsn_pairwise == 0)
2569 bss->rsn_pairwise = bss->wpa_pairwise;
2570 pairwise |= bss->rsn_pairwise;
2571 }
2572 if (pairwise & WPA_CIPHER_TKIP)
2573 bss->wpa_group = WPA_CIPHER_TKIP;
2574 else
2575 bss->wpa_group = WPA_CIPHER_CCMP;
2576
2577 bss->radius->auth_server = bss->radius->auth_servers;
2578 bss->radius->acct_server = bss->radius->acct_servers;
2579
2580 if (bss->wpa && bss->ieee802_1x) {
2581 bss->ssid.security_policy = SECURITY_WPA;
2582 } else if (bss->wpa) {
2583 bss->ssid.security_policy = SECURITY_WPA_PSK;
2584 } else if (bss->ieee802_1x) {
2585 int cipher = WPA_CIPHER_NONE;
2586 bss->ssid.security_policy = SECURITY_IEEE_802_1X;
2587 bss->ssid.wep.default_len = bss->default_wep_key_len;
2588 if (bss->default_wep_key_len)
2589 cipher = bss->default_wep_key_len >= 13 ?
2590 WPA_CIPHER_WEP104 : WPA_CIPHER_WEP40;
2591 bss->wpa_group = cipher;
2592 bss->wpa_pairwise = cipher;
2593 bss->rsn_pairwise = cipher;
2594 } else if (bss->ssid.wep.keys_set) {
2595 int cipher = WPA_CIPHER_WEP40;
2596 if (bss->ssid.wep.len[0] >= 13)
2597 cipher = WPA_CIPHER_WEP104;
2598 bss->ssid.security_policy = SECURITY_STATIC_WEP;
2599 bss->wpa_group = cipher;
2600 bss->wpa_pairwise = cipher;
2601 bss->rsn_pairwise = cipher;
2602 } else {
2603 bss->ssid.security_policy = SECURITY_PLAINTEXT;
2604 bss->wpa_group = WPA_CIPHER_NONE;
2605 bss->wpa_pairwise = WPA_CIPHER_NONE;
2606 bss->rsn_pairwise = WPA_CIPHER_NONE;
2607 }
2608}
2609
2610
ef45bc89
SP		 2611/**
2612 * hostapd_config_read - Read and parse a configuration file
2613 * @fname: Configuration file name (including path, if needed)
2614 * Returns: Allocated configuration data structure
2615 */
2616struct hostapd_config * hostapd_config_read(const char *fname)
2617{
2618 struct hostapd_config *conf;
2619 struct hostapd_bss_config *bss;
2620 FILE *f;
ffdaa05a 2621 char buf[512], *pos;
ef45bc89
SP		 2622 int line = 0;
2623 int errors = 0;
ef45bc89
SP		 2624 size_t i;
2625
2626 f = fopen(fname, "r");
2627 if (f == NULL) {
2628 wpa_printf(MSG_ERROR, "Could not open configuration file '%s' "
2629 "for reading.", fname);
2630 return NULL;
2631 }
2632
2633 conf = hostapd_config_defaults();
2634 if (conf == NULL) {
2635 fclose(f);
2636 return NULL;
2637 }
2638
2639 /* set default driver based on configuration */
2640 conf->driver = wpa_drivers[0];
2641 if (conf->driver == NULL) {
2642 wpa_printf(MSG_ERROR, "No driver wrappers registered!");
2643 hostapd_config_free(conf);
2644 fclose(f);
2645 return NULL;
2646 }
2647
2648 bss = conf->last_bss = conf->bss;
2649
2650 while (fgets(buf, sizeof(buf), f)) {
2651 bss = conf->last_bss;
2652 line++;
2653
2654 if (buf[0] == '#')
2655 continue;
2656 pos = buf;
2657 while (*pos != '\0') {
2658 if (*pos == '\n') {
2659 *pos = '\0';
2660 break;
2661 }
2662 pos++;
2663 }
2664 if (buf[0] == '\0')
2665 continue;
2666
2667 pos = os_strchr(buf, '=');
2668 if (pos == NULL) {
2669 wpa_printf(MSG_ERROR, "Line %d: invalid line '%s'",
2670 line, buf);
2671 errors++;
2672 continue;
2673 }
2674 *pos = '\0';
2675 pos++;
2676 errors += hostapd_config_fill(conf, bss, buf, pos, line);
2677 }
2678
41d719d6
JM		 2679 fclose(f);
2680
a7f5b74d
JM		 2681 for (i = 0; i < conf->num_bss; i++)
2682 hostapd_set_security_params(&conf->bss[i]);
41d719d6
JM		 2683
2684 if (hostapd_config_check(conf))
2685 errors++;
2686
ae6e1bee 2687#ifndef WPA_IGNORE_CONFIG_ERRORS
41d719d6
JM		 2688 if (errors) {
2689 wpa_printf(MSG_ERROR, "%d errors found in configuration file "
2690 "'%s'", errors, fname);
2691 hostapd_config_free(conf);
2692 conf = NULL;
2693 }
ae6e1bee 2694#endif /* WPA_IGNORE_CONFIG_ERRORS */
41d719d6
JM		 2695
2696 return conf;
2697}
31b79e11
SP		 2698
2699
2700int hostapd_set_iface(struct hostapd_config *conf,
2701 struct hostapd_bss_config *bss, char *field, char *value)
2702{
4929898d 2703 int errors;
31b79e11
SP		 2704 size_t i;
2705
2706 errors = hostapd_config_fill(conf, bss, field, value, 0);
2707 if (errors) {
2708 wpa_printf(MSG_INFO, "Failed to set configuration field '%s' "
2709 "to value '%s'", field, value);
2710 return -1;
2711 }
2712
2713 for (i = 0; i < conf->num_bss; i++)
2714 hostapd_set_security_params(&conf->bss[i]);
2715
2716 if (hostapd_config_check(conf)) {
2717 wpa_printf(MSG_ERROR, "Configuration check failed");
17706d1c 2718 return -1;
31b79e11
SP		 2719 }
2720
2721 return 0;
2722}
Unnamed repository; edit this file 'description' to name the repository.