]> git.ipfire.org Git - thirdparty/hostap.git/blame - wpa_supplicant/wpa_supplicant.c
projects / thirdparty / hostap.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Add more hostapd.conf documentation for hw_mode with HT/VHT
[thirdparty/hostap.git] / wpa_supplicant / wpa_supplicant.c
CommitLineData
6fc6879b
JM		 1/*
2 * WPA Supplicant
15c56067 3 * Copyright (c) 2003-2016, Jouni Malinen <j@w1.fi>
6fc6879b 4 *
0f3d578e
JM		 5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
6fc6879b
JM		 7 *
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
11 */
12
13#include "includes.h"
14
15#include "common.h"
d47fa330 16#include "crypto/random.h"
7d232e23 17#include "crypto/sha1.h"
6fc6879b
JM		 18#include "eapol_supp/eapol_supp_sm.h"
19#include "eap_peer/eap.h"
ec7b97ab 20#include "eap_peer/eap_proxy.h"
3ec97afe 21#include "eap_server/eap_methods.h"
3acb5005 22#include "rsn_supp/wpa.h"
6fc6879b 23#include "eloop.h"
6fc6879b 24#include "config.h"
306ae225 25#include "utils/ext_password.h"
6fc6879b
JM		 26#include "l2_packet/l2_packet.h"
27#include "wpa_supplicant_i.h"
2d5b792d 28#include "driver_i.h"
6fc6879b 29#include "ctrl_iface.h"
6fc6879b 30#include "pcsc_funcs.h"
90973fb2 31#include "common/version.h"
3acb5005
JM		 32#include "rsn_supp/preauth.h"
33#include "rsn_supp/pmksa_cache.h"
90973fb2 34#include "common/wpa_ctrl.h"
90973fb2 35#include "common/ieee802_11_defs.h"
6b8b0774 36#include "common/hw_features_common.h"
72044390 37#include "p2p/p2p.h"
b36a3a65 38#include "fst/fst.h"
6fc6879b
JM		 39#include "blacklist.h"
40#include "wpas_glue.h"
116654ce 41#include "wps_supplicant.h"
11ef8d35 42#include "ibss_rsn.h"
c2a04078 43#include "sme.h"
04ea7b79 44#include "gas_query.h"
1f1b62a0 45#include "ap.h"
b22128ef 46#include "p2p_supplicant.h"
9675ce35 47#include "wifi_display.h"
8bac466b 48#include "notify.h"
60b94c98 49#include "bgscan.h"
7c865c68 50#include "autoscan.h"
83922c2d 51#include "bss.h"
9ba9fa07 52#include "scan.h"
24f6497c 53#include "offchannel.h"
cb418324 54#include "hs20_supplicant.h"
e27d20bb 55#include "wnm_sta.h"
dd10abcc 56#include "wpas_kay.h"
603a3f34 57#include "mesh.h"
6fc6879b 58
8b423edb 59const char *const wpa_supplicant_version =
6fc6879b 60"wpa_supplicant v" VERSION_STR "\n"
15c56067 61"Copyright (c) 2003-2016, Jouni Malinen <j@w1.fi> and contributors";
6fc6879b 62
8b423edb 63const char *const wpa_supplicant_license =
331f89ff
JM		 64"This software may be distributed under the terms of the BSD license.\n"
65"See README for more details.\n"
6fc6879b
JM		 66#ifdef EAP_TLS_OPENSSL
67"\nThis product includes software developed by the OpenSSL Project\n"
68"for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
69#endif /* EAP_TLS_OPENSSL */
70;
71
72#ifndef CONFIG_NO_STDOUT_DEBUG
73/* Long text divided into parts in order to fit in C89 strings size limits. */
8b423edb 74const char *const wpa_supplicant_full_license1 =
331f89ff 75"";
8b423edb 76const char *const wpa_supplicant_full_license2 =
331f89ff 77"This software may be distributed under the terms of the BSD license.\n"
6fc6879b
JM		 78"\n"
79"Redistribution and use in source and binary forms, with or without\n"
80"modification, are permitted provided that the following conditions are\n"
81"met:\n"
82"\n";
8b423edb 83const char *const wpa_supplicant_full_license3 =
6fc6879b
JM		 84"1. Redistributions of source code must retain the above copyright\n"
85" notice, this list of conditions and the following disclaimer.\n"
86"\n"
87"2. Redistributions in binary form must reproduce the above copyright\n"
88" notice, this list of conditions and the following disclaimer in the\n"
89" documentation and/or other materials provided with the distribution.\n"
90"\n";
8b423edb 91const char *const wpa_supplicant_full_license4 =
6fc6879b
JM		 92"3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
93" names of its contributors may be used to endorse or promote products\n"
94" derived from this software without specific prior written permission.\n"
95"\n"
96"THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
97"\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
98"LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
99"A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
8b423edb 100const char *const wpa_supplicant_full_license5 =
6fc6879b
JM		 101"OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
102"SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
103"LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
104"DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
105"THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
106"(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
107"OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
108"\n";
109#endif /* CONFIG_NO_STDOUT_DEBUG */
110
6fc6879b 111/* Configure default/group WEP keys for static WEP */
0194fedb 112int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
6fc6879b
JM		 113{
114 int i, set = 0;
115
116 for (i = 0; i < NUM_WEP_KEYS; i++) {
117 if (ssid->wep_key_len[i] == 0)
118 continue;
119
120 set = 1;
0382097e 121 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
da64c266 122 i, i == ssid->wep_tx_keyidx, NULL, 0,
6fc6879b
JM		 123 ssid->wep_key[i], ssid->wep_key_len[i]);
124 }
125
126 return set;
127}
128
129
6ea1f413
JM		 130int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
131 struct wpa_ssid *ssid)
6fc6879b
JM		 132{
133 u8 key[32];
134 size_t keylen;
71934751 135 enum wpa_alg alg;
6fc6879b 136 u8 seq[6] = { 0 };
658da804 137 int ret;
6fc6879b
JM		 138
139 /* IBSS/WPA-None uses only one key (Group) for both receiving and
140 * sending unicast and multicast packets. */
141
d7dcba70 142 if (ssid->mode != WPAS_MODE_IBSS) {
f049052b
BG		 143 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
144 "IBSS/ad-hoc) for WPA-None", ssid->mode);
6fc6879b
JM		 145 return -1;
146 }
147
148 if (!ssid->psk_set) {
f049052b
BG		 149 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
150 "WPA-None");
6fc6879b
JM		 151 return -1;
152 }
153
154 switch (wpa_s->group_cipher) {
155 case WPA_CIPHER_CCMP:
156 os_memcpy(key, ssid->psk, 16);
157 keylen = 16;
158 alg = WPA_ALG_CCMP;
159 break;
eb7719ff
JM		 160 case WPA_CIPHER_GCMP:
161 os_memcpy(key, ssid->psk, 16);
162 keylen = 16;
163 alg = WPA_ALG_GCMP;
164 break;
6fc6879b
JM		 165 case WPA_CIPHER_TKIP:
166 /* WPA-None uses the same Michael MIC key for both TX and RX */
167 os_memcpy(key, ssid->psk, 16 + 8);
168 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
169 keylen = 32;
170 alg = WPA_ALG_TKIP;
171 break;
172 default:
f049052b
BG		 173 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
174 "WPA-None", wpa_s->group_cipher);
6fc6879b
JM		 175 return -1;
176 }
177
178 /* TODO: should actually remember the previously used seq#, both for TX
179 * and RX from each STA.. */
180
658da804
JM		 181 ret = wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
182 os_memset(key, 0, sizeof(key));
183 return ret;
6fc6879b
JM		 184}
185
186
187static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
188{
189 struct wpa_supplicant *wpa_s = eloop_ctx;
190 const u8 *bssid = wpa_s->bssid;
a8e16edc 191 if (is_zero_ether_addr(bssid))
6fc6879b
JM		 192 bssid = wpa_s->pending_bssid;
193 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
194 MAC2STR(bssid));
195 wpa_blacklist_add(wpa_s, bssid);
196 wpa_sm_notify_disassoc(wpa_s->wpa);
07783eaa 197 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
6fc6879b 198 wpa_s->reassociate = 1;
48b84f18
BG		 199
200 /*
201 * If we timed out, the AP or the local radio may be busy.
202 * So, wait a second until scanning again.
203 */
204 wpa_supplicant_req_scan(wpa_s, 1, 0);
6fc6879b
JM		 205}
206
207
208/**
209 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
210 * @wpa_s: Pointer to wpa_supplicant data
211 * @sec: Number of seconds after which to time out authentication
212 * @usec: Number of microseconds after which to time out authentication
213 *
214 * This function is used to schedule a timeout for the current authentication
215 * attempt.
216 */
217void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
218 int sec, int usec)
219{
a2a535f8 220 if (wpa_s->conf->ap_scan == 0 &&
c2a04078 221 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
6fc6879b
JM		 222 return;
223
f049052b 224 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
6fc6879b
JM		 225 "%d usec", sec, usec);
226 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
227 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
228}
229
230
231/**
232 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
233 * @wpa_s: Pointer to wpa_supplicant data
234 *
235 * This function is used to cancel authentication timeout scheduled with
236 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
237 * been completed.
238 */
239void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
240{
f049052b 241 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
6fc6879b
JM		 242 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
243 wpa_blacklist_del(wpa_s, wpa_s->bssid);
244}
245
246
247/**
248 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
249 * @wpa_s: Pointer to wpa_supplicant data
250 *
251 * This function is used to configure EAPOL state machine based on the selected
252 * authentication mode.
253 */
254void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
255{
256#ifdef IEEE8021X_EAPOL
257 struct eapol_config eapol_conf;
258 struct wpa_ssid *ssid = wpa_s->current_ssid;
259
53895c3b 260#ifdef CONFIG_IBSS_RSN
d7dcba70 261 if (ssid->mode == WPAS_MODE_IBSS &&
53895c3b
JM		 262 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
263 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
264 /*
265 * RSN IBSS authentication is per-STA and we can disable the
266 * per-BSSID EAPOL authentication.
267 */
268 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
269 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
270 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
271 return;
272 }
273#endif /* CONFIG_IBSS_RSN */
274
0a40ec6a
JM		 275 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
276 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
277
6fc6879b
JM		 278 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
279 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
280 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
281 else
282 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
283
284 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
285 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
286 eapol_conf.accept_802_1x_keys = 1;
287 eapol_conf.required_keys = 0;
288 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
289 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
290 }
291 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
292 eapol_conf.required_keys |=
293 EAPOL_REQUIRE_KEY_BROADCAST;
294 }
295
a2a535f8 296 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
6fc6879b 297 eapol_conf.required_keys = 0;
6fc6879b 298 }
a2a535f8 299 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
6fc6879b 300 eapol_conf.workaround = ssid->eap_workaround;
56586197
JM		 301 eapol_conf.eap_disabled =
302 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
ad08c363
JM		 303 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
304 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
a5d44ac0 305 eapol_conf.external_sim = wpa_s->conf->external_sim;
3f7ac058
JS		 306
307#ifdef CONFIG_WPS
308 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
309 eapol_conf.wps |= EAPOL_LOCAL_WPS_IN_USE;
310 if (wpa_s->current_bss) {
311 struct wpabuf *ie;
312 ie = wpa_bss_get_vendor_ie_multi(wpa_s->current_bss,
313 WPS_IE_VENDOR_TYPE);
314 if (ie) {
315 if (wps_is_20(ie))
316 eapol_conf.wps |=
317 EAPOL_PEER_IS_WPS20_AP;
318 wpabuf_free(ie);
319 }
320 }
321 }
322#endif /* CONFIG_WPS */
323
6fc6879b 324 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
dd10abcc
HW		 325
326 ieee802_1x_alloc_kay_sm(wpa_s, ssid);
cd3153a9 327#endif /* IEEE8021X_EAPOL */
6fc6879b
JM		 328}
329
330
331/**
332 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
333 * @wpa_s: Pointer to wpa_supplicant data
334 * @ssid: Configuration data for the network
335 *
336 * This function is used to configure WPA state machine and related parameters
337 * to a mode where WPA is not enabled. This is called as part of the
338 * authentication configuration when the selected network does not use WPA.
339 */
340void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
341 struct wpa_ssid *ssid)
342{
343 int i;
344
ad08c363
JM		 345 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
346 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
347 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
6fc6879b
JM		 348 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
349 else
350 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
351 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
352 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
353 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
354 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
355 wpa_s->group_cipher = WPA_CIPHER_NONE;
356 wpa_s->mgmt_group_cipher = 0;
357
358 for (i = 0; i < NUM_WEP_KEYS; i++) {
359 if (ssid->wep_key_len[i] > 5) {
360 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
361 wpa_s->group_cipher = WPA_CIPHER_WEP104;
362 break;
363 } else if (ssid->wep_key_len[i] > 0) {
364 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
365 wpa_s->group_cipher = WPA_CIPHER_WEP40;
366 break;
367 }
368 }
369
370 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
371 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
372 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
373 wpa_s->pairwise_cipher);
374 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
375#ifdef CONFIG_IEEE80211W
376 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
377 wpa_s->mgmt_group_cipher);
378#endif /* CONFIG_IEEE80211W */
379
380 pmksa_cache_clear_current(wpa_s->wpa);
381}
382
383
6979582c 384void free_hw_features(struct wpa_supplicant *wpa_s)
6bf731e8
CL		 385{
386 int i;
387 if (wpa_s->hw.modes == NULL)
388 return;
389
390 for (i = 0; i < wpa_s->hw.num_modes; i++) {
391 os_free(wpa_s->hw.modes[i].channels);
392 os_free(wpa_s->hw.modes[i].rates);
393 }
394
395 os_free(wpa_s->hw.modes);
396 wpa_s->hw.modes = NULL;
397}
398
399
6fc6879b
JM		 400static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
401{
86bd36f0
JM		 402 int i;
403
60b94c98 404 bgscan_deinit(wpa_s);
7c865c68 405 autoscan_deinit(wpa_s);
6fc6879b
JM		 406 scard_deinit(wpa_s->scard);
407 wpa_s->scard = NULL;
408 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
409 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
410 l2_packet_deinit(wpa_s->l2);
411 wpa_s->l2 = NULL;
412 if (wpa_s->l2_br) {
413 l2_packet_deinit(wpa_s->l2_br);
414 wpa_s->l2_br = NULL;
415 }
4a6cc862
JM		 416#ifdef CONFIG_TESTING_OPTIONS
417 l2_packet_deinit(wpa_s->l2_test);
418 wpa_s->l2_test = NULL;
419#endif /* CONFIG_TESTING_OPTIONS */
6fc6879b 420
6fc6879b 421 if (wpa_s->conf != NULL) {
8e56d189
JM		 422 struct wpa_ssid *ssid;
423 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
424 wpas_notify_network_removed(wpa_s, ssid);
6fc6879b
JM		 425 }
426
427 os_free(wpa_s->confname);
428 wpa_s->confname = NULL;
429
e6304cad
DS		 430 os_free(wpa_s->confanother);
431 wpa_s->confanother = NULL;
432
6fc6879b
JM		 433 wpa_sm_set_eapol(wpa_s->wpa, NULL);
434 eapol_sm_deinit(wpa_s->eapol);
435 wpa_s->eapol = NULL;
436
437 rsn_preauth_deinit(wpa_s->wpa);
438
281ff0aa
GP		 439#ifdef CONFIG_TDLS
440 wpa_tdls_deinit(wpa_s->wpa);
441#endif /* CONFIG_TDLS */
442
8c42b369 443 wmm_ac_clear_saved_tspecs(wpa_s);
6fc6879b
JM		 444 pmksa_candidate_free(wpa_s->wpa);
445 wpa_sm_deinit(wpa_s->wpa);
446 wpa_s->wpa = NULL;
447 wpa_blacklist_clear(wpa_s);
448
83922c2d 449 wpa_bss_deinit(wpa_s);
6fc6879b 450
831770bf 451 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
6fc6879b
JM		 452 wpa_supplicant_cancel_scan(wpa_s);
453 wpa_supplicant_cancel_auth_timeout(wpa_s);
01a17491
JM		 454 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
455#ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
456 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
457 wpa_s, NULL);
458#endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
6fc6879b 459
9bd566a3
AS		 460 eloop_cancel_timeout(wpas_network_reenabled, wpa_s, NULL);
461
116654ce 462 wpas_wps_deinit(wpa_s);
11ef8d35 463
1ff73338
JM		 464 wpabuf_free(wpa_s->pending_eapol_rx);
465 wpa_s->pending_eapol_rx = NULL;
466
11ef8d35
JM		 467#ifdef CONFIG_IBSS_RSN
468 ibss_rsn_deinit(wpa_s->ibss_rsn);
469 wpa_s->ibss_rsn = NULL;
470#endif /* CONFIG_IBSS_RSN */
c2a04078 471
e29853bb 472 sme_deinit(wpa_s);
2d5b792d
JM		 473
474#ifdef CONFIG_AP
475 wpa_supplicant_ap_deinit(wpa_s);
476#endif /* CONFIG_AP */
b22128ef 477
b22128ef 478 wpas_p2p_deinit(wpa_s);
f47d639d 479
24f6497c
JM		 480#ifdef CONFIG_OFFCHANNEL
481 offchannel_deinit(wpa_s);
482#endif /* CONFIG_OFFCHANNEL */
483
a4cba8f1
LC		 484 wpa_supplicant_cancel_sched_scan(wpa_s);
485
f47d639d
JM		 486 os_free(wpa_s->next_scan_freqs);
487 wpa_s->next_scan_freqs = NULL;
fee52342
JM		 488
489 os_free(wpa_s->manual_scan_freqs);
490 wpa_s->manual_scan_freqs = NULL;
04ea7b79 491
d3c9c35f
DS		 492 os_free(wpa_s->manual_sched_scan_freqs);
493 wpa_s->manual_sched_scan_freqs = NULL;
494
56c76fa5
IP		 495 wpas_mac_addr_rand_scan_clear(wpa_s, MAC_ADDR_RAND_ALL);
496
57e832de
IP		 497 /*
498 * Need to remove any pending gas-query radio work before the
499 * gas_query_deinit() call because gas_query::work has not yet been set
500 * for works that have not been started. gas_query_free() will be unable
501 * to cancel such pending radio works and once the pending gas-query
502 * radio work eventually gets removed, the deinit notification call to
503 * gas_query_start_cb() would result in dereferencing freed memory.
504 */
505 if (wpa_s->radio)
506 radio_remove_works(wpa_s, "gas-query", 0);
04ea7b79
JM		 507 gas_query_deinit(wpa_s->gas);
508 wpa_s->gas = NULL;
6bf731e8
CL		 509
510 free_hw_features(wpa_s);
d445a5cd 511
dd10abcc
HW		 512 ieee802_1x_dealloc_kay_sm(wpa_s);
513
d445a5cd
JM		 514 os_free(wpa_s->bssid_filter);
515 wpa_s->bssid_filter = NULL;
b6668734 516
6407f413
JM		 517 os_free(wpa_s->disallow_aps_bssid);
518 wpa_s->disallow_aps_bssid = NULL;
519 os_free(wpa_s->disallow_aps_ssid);
520 wpa_s->disallow_aps_ssid = NULL;
521
b6668734 522 wnm_bss_keep_alive_deinit(wpa_s);
e27d20bb
VK		 523#ifdef CONFIG_WNM
524 wnm_deallocate_memory(wpa_s);
525#endif /* CONFIG_WNM */
306ae225
JM		 526
527 ext_password_deinit(wpa_s->ext_pw);
528 wpa_s->ext_pw = NULL;
b1f12296
JM		 529
530 wpabuf_free(wpa_s->last_gas_resp);
b6a9590b
JM		 531 wpa_s->last_gas_resp = NULL;
532 wpabuf_free(wpa_s->prev_gas_resp);
533 wpa_s->prev_gas_resp = NULL;
a297201d
JM		 534
535 os_free(wpa_s->last_scan_res);
536 wpa_s->last_scan_res = NULL;
b572df86
JM		 537
538#ifdef CONFIG_HS20
fb2ac53d 539 hs20_deinit(wpa_s);
b572df86 540#endif /* CONFIG_HS20 */
86bd36f0
JM		 541
542 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
543 wpabuf_free(wpa_s->vendor_elem[i]);
544 wpa_s->vendor_elem[i] = NULL;
545 }
3882a708
JM		 546
547 wmm_ac_notify_disassoc(wpa_s);
32c02261
AS		 548
549 wpa_s->sched_scan_plans_num = 0;
550 os_free(wpa_s->sched_scan_plans);
551 wpa_s->sched_scan_plans = NULL;
6fc6879b
JM		 552}
553
554
555/**
556 * wpa_clear_keys - Clear keys configured for the driver
557 * @wpa_s: Pointer to wpa_supplicant data
558 * @addr: Previously used BSSID or %NULL if not available
559 *
560 * This function clears the encryption keys that has been previously configured
561 * for the driver.
562 */
563void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
564{
2f30cac3 565 int i, max;
6fc6879b 566
0e27f655 567#ifdef CONFIG_IEEE80211W
2f30cac3
JM		 568 max = 6;
569#else /* CONFIG_IEEE80211W */
570 max = 4;
0e27f655 571#endif /* CONFIG_IEEE80211W */
2f30cac3
JM		 572
573 /* MLME-DELETEKEYS.request */
574 for (i = 0; i < max; i++) {
575 if (wpa_s->keys_cleared & BIT(i))
576 continue;
577 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, i, 0, NULL, 0,
578 NULL, 0);
579 }
580 if (!(wpa_s->keys_cleared & BIT(0)) && addr &&
581 !is_zero_ether_addr(addr)) {
6fc6879b
JM		 582 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
583 0);
584 /* MLME-SETPROTECTION.request(None) */
585 wpa_drv_mlme_setprotection(
586 wpa_s, addr,
587 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
588 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
589 }
2f30cac3 590 wpa_s->keys_cleared = (u32) -1;
6fc6879b
JM		 591}
592
593
594/**
595 * wpa_supplicant_state_txt - Get the connection state name as a text string
596 * @state: State (wpa_state; WPA_*)
597 * Returns: The state name as a printable text string
598 */
71934751 599const char * wpa_supplicant_state_txt(enum wpa_states state)
6fc6879b
JM		 600{
601 switch (state) {
602 case WPA_DISCONNECTED:
603 return "DISCONNECTED";
604 case WPA_INACTIVE:
605 return "INACTIVE";
8401a6b0
JM		 606 case WPA_INTERFACE_DISABLED:
607 return "INTERFACE_DISABLED";
6fc6879b
JM		 608 case WPA_SCANNING:
609 return "SCANNING";
c2a04078
JM		 610 case WPA_AUTHENTICATING:
611 return "AUTHENTICATING";
6fc6879b
JM		 612 case WPA_ASSOCIATING:
613 return "ASSOCIATING";
614 case WPA_ASSOCIATED:
615 return "ASSOCIATED";
616 case WPA_4WAY_HANDSHAKE:
617 return "4WAY_HANDSHAKE";
618 case WPA_GROUP_HANDSHAKE:
619 return "GROUP_HANDSHAKE";
620 case WPA_COMPLETED:
621 return "COMPLETED";
622 default:
623 return "UNKNOWN";
624 }
625}
626
627
cfe53c9a
PS		 628#ifdef CONFIG_BGSCAN
629
630static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
631{
31392709
HD		 632 const char *name;
633
634 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
635 name = wpa_s->current_ssid->bgscan;
636 else
637 name = wpa_s->conf->bgscan;
268043d5 638 if (name == NULL || name[0] == '\0')
31392709 639 return;
0096c427
JM		 640 if (wpas_driver_bss_selection(wpa_s))
641 return;
cfe53c9a
PS		 642 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
643 return;
aa109830
DS		 644#ifdef CONFIG_P2P
645 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE)
646 return;
647#endif /* CONFIG_P2P */
cfe53c9a
PS		 648
649 bgscan_deinit(wpa_s);
31392709
HD		 650 if (wpa_s->current_ssid) {
651 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
cfe53c9a
PS		 652 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
653 "bgscan");
654 /*
655 * Live without bgscan; it is only used as a roaming
656 * optimization, so the initial connection is not
657 * affected.
658 */
6409b7a7
YD		 659 } else {
660 struct wpa_scan_results *scan_res;
cfe53c9a 661 wpa_s->bgscan_ssid = wpa_s->current_ssid;
6409b7a7
YD		 662 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
663 0);
664 if (scan_res) {
665 bgscan_notify_scan(wpa_s, scan_res);
666 wpa_scan_results_free(scan_res);
667 }
668 }
cfe53c9a
PS		 669 } else
670 wpa_s->bgscan_ssid = NULL;
671}
672
673
674static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
675{
676 if (wpa_s->bgscan_ssid != NULL) {
677 bgscan_deinit(wpa_s);
678 wpa_s->bgscan_ssid = NULL;
679 }
680}
681
682#endif /* CONFIG_BGSCAN */
683
684
7c865c68
TB		 685static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
686{
99218999 687 if (autoscan_init(wpa_s, 0))
7c865c68
TB		 688 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
689}
690
691
692static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
693{
694 autoscan_deinit(wpa_s);
695}
696
697
c3d12238
JM		 698void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
699{
700 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
701 wpa_s->wpa_state == WPA_SCANNING) {
702 autoscan_deinit(wpa_s);
703 wpa_supplicant_start_autoscan(wpa_s);
704 }
705}
706
707
6fc6879b
JM		 708/**
709 * wpa_supplicant_set_state - Set current connection state
710 * @wpa_s: Pointer to wpa_supplicant data
711 * @state: The new connection state
712 *
713 * This function is called whenever the connection state changes, e.g.,
714 * association is completed for WPA/WPA2 4-Way Handshake is started.
715 */
71934751
JM		 716void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
717 enum wpa_states state)
6fc6879b 718{
27f43d8d
MH		 719 enum wpa_states old_state = wpa_s->wpa_state;
720
f049052b
BG		 721 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
722 wpa_supplicant_state_txt(wpa_s->wpa_state),
723 wpa_supplicant_state_txt(state));
6fc6879b 724
5ddd07cb
AS		 725 if (state == WPA_INTERFACE_DISABLED) {
726 /* Assure normal scan when interface is restored */
727 wpa_s->normal_scans = 0;
728 }
729
0cf24fda 730 if (state == WPA_COMPLETED) {
6ac4b15e 731 wpas_connect_work_done(wpa_s);
0cf24fda
LC		 732 /* Reinitialize normal_scan counter */
733 wpa_s->normal_scans = 0;
734 }
6ac4b15e 735
07c1e987
MS		 736#ifdef CONFIG_P2P
737 /*
738 * P2PS client has to reply to Probe Request frames received on the
739 * group operating channel. Enable Probe Request frame reporting for
740 * P2P connected client in case p2p_cli_probe configuration property is
741 * set to 1.
742 */
743 if (wpa_s->conf->p2p_cli_probe && wpa_s->current_ssid &&
744 wpa_s->current_ssid->mode == WPAS_MODE_INFRA &&
745 wpa_s->current_ssid->p2p_group) {
746 if (state == WPA_COMPLETED && !wpa_s->p2p_cli_probe) {
747 wpa_dbg(wpa_s, MSG_DEBUG,
748 "P2P: Enable CLI Probe Request RX reporting");
749 wpa_s->p2p_cli_probe =
750 wpa_drv_probe_req_report(wpa_s, 1) >= 0;
751 } else if (state != WPA_COMPLETED && wpa_s->p2p_cli_probe) {
752 wpa_dbg(wpa_s, MSG_DEBUG,
753 "P2P: Disable CLI Probe Request RX reporting");
754 wpa_s->p2p_cli_probe = 0;
755 wpa_drv_probe_req_report(wpa_s, 0);
756 }
757 }
758#endif /* CONFIG_P2P */
759
cb8564b1
DW		 760 if (state != WPA_SCANNING)
761 wpa_supplicant_notify_scanning(wpa_s, 0);
762
6fc6879b 763 if (state == WPA_COMPLETED && wpa_s->new_connection) {
6fc6879b 764 struct wpa_ssid *ssid = wpa_s->current_ssid;
7d37a357 765#if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
6fc6879b 766 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
1cfc6787
JM		 767 MACSTR " completed [id=%d id_str=%s]",
768 MAC2STR(wpa_s->bssid),
6fc6879b
JM		 769 ssid ? ssid->id : -1,
770 ssid && ssid->id_str ? ssid->id_str : "");
771#endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
00e5e3d5 772 wpas_clear_temp_disabled(wpa_s, ssid, 1);
a20a3616 773 wpa_blacklist_clear(wpa_s);
f1a52633 774 wpa_s->extra_blacklist_count = 0;
6fc6879b 775 wpa_s->new_connection = 0;
6fc6879b 776 wpa_drv_set_operstate(wpa_s, 1);
99ac2913
FF		 777#ifndef IEEE8021X_EAPOL
778 wpa_drv_set_supp_port(wpa_s, 1);
779#endif /* IEEE8021X_EAPOL */
17a4734d 780 wpa_s->after_wps = 0;
4d9fb08d 781 wpa_s->known_wps_freq = 0;
b22128ef 782 wpas_p2p_completed(wpa_s);
c3701c66
RM		 783
784 sme_sched_obss_scan(wpa_s, 1);
6fc6879b
JM		 785 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
786 state == WPA_ASSOCIATED) {
787 wpa_s->new_connection = 1;
788 wpa_drv_set_operstate(wpa_s, 0);
99ac2913
FF		 789#ifndef IEEE8021X_EAPOL
790 wpa_drv_set_supp_port(wpa_s, 0);
791#endif /* IEEE8021X_EAPOL */
c3701c66 792 sme_sched_obss_scan(wpa_s, 0);
6fc6879b
JM		 793 }
794 wpa_s->wpa_state = state;
27f43d8d 795
cfe53c9a
PS		 796#ifdef CONFIG_BGSCAN
797 if (state == WPA_COMPLETED)
798 wpa_supplicant_start_bgscan(wpa_s);
37271232 799 else if (state < WPA_ASSOCIATED)
cfe53c9a
PS		 800 wpa_supplicant_stop_bgscan(wpa_s);
801#endif /* CONFIG_BGSCAN */
802
7c865c68
TB		 803 if (state == WPA_AUTHENTICATING)
804 wpa_supplicant_stop_autoscan(wpa_s);
805
806 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
807 wpa_supplicant_start_autoscan(wpa_s);
808
fecc2bb5
EP		 809 if (old_state >= WPA_ASSOCIATED && wpa_s->wpa_state < WPA_ASSOCIATED)
810 wmm_ac_notify_disassoc(wpa_s);
811
5bbf9f10 812 if (wpa_s->wpa_state != old_state) {
27f43d8d 813 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
5bbf9f10 814
e3bd6e9d
IP		 815 /*
816 * Notify the P2P Device interface about a state change in one
817 * of the interfaces.
818 */
819 wpas_p2p_indicate_state_change(wpa_s);
e3bd6e9d 820
5bbf9f10
PS		 821 if (wpa_s->wpa_state == WPA_COMPLETED ||
822 old_state == WPA_COMPLETED)
823 wpas_notify_auth_changed(wpa_s);
824 }
6fc6879b
JM		 825}
826
827
1a1bf008
JM		 828void wpa_supplicant_terminate_proc(struct wpa_global *global)
829{
830 int pending = 0;
831#ifdef CONFIG_WPS
832 struct wpa_supplicant *wpa_s = global->ifaces;
833 while (wpa_s) {
ab41595f 834 struct wpa_supplicant *next = wpa_s->next;
5516ed32
EA		 835 if (wpas_wps_terminate_pending(wpa_s) == 1)
836 pending = 1;
20625e97
JM		 837#ifdef CONFIG_P2P
838 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
839 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
840 wpas_p2p_disconnect(wpa_s);
841#endif /* CONFIG_P2P */
ab41595f 842 wpa_s = next;
1a1bf008
JM		 843 }
844#endif /* CONFIG_WPS */
845 if (pending)
846 return;
847 eloop_terminate();
848}
849
850
0456ea16 851static void wpa_supplicant_terminate(int sig, void *signal_ctx)
6fc6879b 852{
0456ea16 853 struct wpa_global *global = signal_ctx;
1a1bf008 854 wpa_supplicant_terminate_proc(global);
6fc6879b
JM		 855}
856
857
b22128ef 858void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
6fc6879b 859{
71934751 860 enum wpa_states old_state = wpa_s->wpa_state;
27f43d8d 861
6fc6879b
JM		 862 wpa_s->pairwise_cipher = 0;
863 wpa_s->group_cipher = 0;
864 wpa_s->mgmt_group_cipher = 0;
865 wpa_s->key_mgmt = 0;
8401a6b0 866 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
99218999 867 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
27f43d8d
MH		 868
869 if (wpa_s->wpa_state != old_state)
870 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
6fc6879b
JM		 871}
872
873
874/**
875 * wpa_supplicant_reload_configuration - Reload configuration data
876 * @wpa_s: Pointer to wpa_supplicant data
877 * Returns: 0 on success or -1 if configuration parsing failed
878 *
879 * This function can be used to request that the configuration data is reloaded
880 * (e.g., after configuration file change). This function is reloading
881 * configuration only for one interface, so this may need to be called multiple
882 * times if %wpa_supplicant is controlling multiple interfaces and all
883 * interfaces need reconfiguration.
884 */
885int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
886{
887 struct wpa_config *conf;
888 int reconf_ctrl;
8bac466b
JM		 889 int old_ap_scan;
890
6fc6879b
JM		 891 if (wpa_s->confname == NULL)
892 return -1;
e6304cad 893 conf = wpa_config_read(wpa_s->confname, NULL);
6fc6879b
JM		 894 if (conf == NULL) {
895 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
896 "file '%s' - exiting", wpa_s->confname);
897 return -1;
898 }
e6304cad
DS		 899 wpa_config_read(wpa_s->confanother, conf);
900
611aea7d 901 conf->changed_parameters = (unsigned int) -1;
6fc6879b
JM		 902
903 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
904 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
905 os_strcmp(conf->ctrl_interface,
906 wpa_s->conf->ctrl_interface) != 0);
907
908 if (reconf_ctrl && wpa_s->ctrl_iface) {
909 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
910 wpa_s->ctrl_iface = NULL;
911 }
912
913 eapol_sm_invalidate_cached_session(wpa_s->eapol);
7b7ce8aa 914 if (wpa_s->current_ssid) {
e66bcedd
JM		 915 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
916 wpa_s->own_disconnect_req = 1;
7b7ce8aa
JM		 917 wpa_supplicant_deauthenticate(wpa_s,
918 WLAN_REASON_DEAUTH_LEAVING);
919 }
8bac466b 920
6fc6879b
JM		 921 /*
922 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
07e2de31 923 * pkcs11_engine_path, pkcs11_module_path, openssl_ciphers.
6fc6879b 924 */
56586197 925 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
6fc6879b
JM		 926 /*
927 * Clear forced success to clear EAP state for next
928 * authentication.
929 */
930 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
931 }
932 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
933 wpa_sm_set_config(wpa_s->wpa, NULL);
d8a790b9 934 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
6fc6879b
JM		 935 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
936 rsn_preauth_deinit(wpa_s->wpa);
8bac466b
JM		 937
938 old_ap_scan = wpa_s->conf->ap_scan;
6fc6879b
JM		 939 wpa_config_free(wpa_s->conf);
940 wpa_s->conf = conf;
8bac466b
JM		 941 if (old_ap_scan != wpa_s->conf->ap_scan)
942 wpas_notify_ap_scan_changed(wpa_s);
943
6fc6879b
JM		 944 if (reconf_ctrl)
945 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
946
611aea7d
JM		 947 wpa_supplicant_update_config(wpa_s);
948
6fc6879b 949 wpa_supplicant_clear_status(wpa_s);
349493bd 950 if (wpa_supplicant_enabled_networks(wpa_s)) {
43a38635
JM		 951 wpa_s->reassociate = 1;
952 wpa_supplicant_req_scan(wpa_s, 0, 0);
953 }
f049052b 954 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
6fc6879b
JM		 955 return 0;
956}
957
958
0456ea16 959static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
6fc6879b 960{
0456ea16 961 struct wpa_global *global = signal_ctx;
6fc6879b 962 struct wpa_supplicant *wpa_s;
6fc6879b 963 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
f049052b
BG		 964 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
965 sig);
6fc6879b 966 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
1a1bf008 967 wpa_supplicant_terminate_proc(global);
6fc6879b
JM		 968 }
969 }
1248e584
LR		 970
971 if (wpa_debug_reopen_file() < 0) {
972 /* Ignore errors since we cannot really do much to fix this */
973 wpa_printf(MSG_DEBUG, "Could not reopen debug log file");
974 }
6fc6879b
JM		 975}
976
977
6fc6879b
JM		 978static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
979 struct wpa_ssid *ssid,
980 struct wpa_ie_data *ie)
981{
982 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
983 if (ret) {
984 if (ret == -2) {
985 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
986 "from association info");
987 }
988 return -1;
989 }
990
f049052b
BG		 991 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
992 "cipher suites");
6fc6879b
JM		 993 if (!(ie->group_cipher & ssid->group_cipher)) {
994 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
995 "cipher 0x%x (mask 0x%x) - reject",
996 ie->group_cipher, ssid->group_cipher);
997 return -1;
998 }
999 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
1000 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
1001 "cipher 0x%x (mask 0x%x) - reject",
1002 ie->pairwise_cipher, ssid->pairwise_cipher);
1003 return -1;
1004 }
1005 if (!(ie->key_mgmt & ssid->key_mgmt)) {
1006 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
1007 "management 0x%x (mask 0x%x) - reject",
1008 ie->key_mgmt, ssid->key_mgmt);
1009 return -1;
1010 }
1011
1012#ifdef CONFIG_IEEE80211W
0b60b0aa 1013 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
3f56a2b7 1014 wpas_get_ssid_pmf(wpa_s, ssid) == MGMT_FRAME_PROTECTION_REQUIRED) {
6fc6879b
JM		 1015 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
1016 "that does not support management frame protection - "
1017 "reject");
1018 return -1;
1019 }
1020#endif /* CONFIG_IEEE80211W */
1021
1022 return 0;
1023}
1024
1025
1026/**
1027 * wpa_supplicant_set_suites - Set authentication and encryption parameters
1028 * @wpa_s: Pointer to wpa_supplicant data
1029 * @bss: Scan results for the selected BSS, or %NULL if not available
1030 * @ssid: Configuration data for the selected network
1031 * @wpa_ie: Buffer for the WPA/RSN IE
1032 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
1033 * used buffer length in case the functions returns success.
1034 * Returns: 0 on success or -1 on failure
1035 *
1036 * This function is used to configure authentication and encryption parameters
1037 * based on the network configuration and scan result for the selected BSS (if
1038 * available).
1039 */
1040int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
6fa81a3b 1041 struct wpa_bss *bss, struct wpa_ssid *ssid,
6fc6879b
JM		 1042 u8 *wpa_ie, size_t *wpa_ie_len)
1043{
1044 struct wpa_ie_data ie;
1045 int sel, proto;
df0f01d9 1046 const u8 *bss_wpa, *bss_rsn, *bss_osen;
6fc6879b
JM		 1047
1048 if (bss) {
6fa81a3b
JM		 1049 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
1050 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
df0f01d9 1051 bss_osen = wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE);
6fc6879b 1052 } else
df0f01d9 1053 bss_wpa = bss_rsn = bss_osen = NULL;
6fc6879b
JM		 1054
1055 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
1056 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
1057 (ie.group_cipher & ssid->group_cipher) &&
1058 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1059 (ie.key_mgmt & ssid->key_mgmt)) {
f049052b 1060 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
6fc6879b
JM		 1061 proto = WPA_PROTO_RSN;
1062 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
267ac3bc 1063 wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie) == 0 &&
6fc6879b
JM		 1064 (ie.group_cipher & ssid->group_cipher) &&
1065 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1066 (ie.key_mgmt & ssid->key_mgmt)) {
f049052b 1067 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
6fc6879b 1068 proto = WPA_PROTO_WPA;
df0f01d9
JM		 1069#ifdef CONFIG_HS20
1070 } else if (bss_osen && (ssid->proto & WPA_PROTO_OSEN)) {
1071 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using OSEN");
1072 /* TODO: parse OSEN element */
137ff332 1073 os_memset(&ie, 0, sizeof(ie));
df0f01d9
JM		 1074 ie.group_cipher = WPA_CIPHER_CCMP;
1075 ie.pairwise_cipher = WPA_CIPHER_CCMP;
1076 ie.key_mgmt = WPA_KEY_MGMT_OSEN;
1077 proto = WPA_PROTO_OSEN;
1078#endif /* CONFIG_HS20 */
6fc6879b
JM		 1079 } else if (bss) {
1080 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
267ac3bc
JM		 1081 wpa_dbg(wpa_s, MSG_DEBUG,
1082 "WPA: ssid proto=0x%x pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1083 ssid->proto, ssid->pairwise_cipher, ssid->group_cipher,
1084 ssid->key_mgmt);
1085 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: BSS " MACSTR " ssid='%s'%s%s%s",
1086 MAC2STR(bss->bssid),
1087 wpa_ssid_txt(bss->ssid, bss->ssid_len),
1088 bss_wpa ? " WPA" : "",
1089 bss_rsn ? " RSN" : "",
1090 bss_osen ? " OSEN" : "");
1091 if (bss_rsn) {
1092 wpa_hexdump(MSG_DEBUG, "RSN", bss_rsn, 2 + bss_rsn[1]);
1093 if (wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie)) {
1094 wpa_dbg(wpa_s, MSG_DEBUG,
1095 "Could not parse RSN element");
1096 } else {
1097 wpa_dbg(wpa_s, MSG_DEBUG,
1098 "RSN: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1099 ie.pairwise_cipher, ie.group_cipher,
1100 ie.key_mgmt);
1101 }
1102 }
1103 if (bss_wpa) {
1104 wpa_hexdump(MSG_DEBUG, "WPA", bss_wpa, 2 + bss_wpa[1]);
1105 if (wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie)) {
1106 wpa_dbg(wpa_s, MSG_DEBUG,
1107 "Could not parse WPA element");
1108 } else {
1109 wpa_dbg(wpa_s, MSG_DEBUG,
1110 "WPA: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1111 ie.pairwise_cipher, ie.group_cipher,
1112 ie.key_mgmt);
1113 }
1114 }
6fc6879b
JM		 1115 return -1;
1116 } else {
df0f01d9
JM		 1117 if (ssid->proto & WPA_PROTO_OSEN)
1118 proto = WPA_PROTO_OSEN;
1119 else if (ssid->proto & WPA_PROTO_RSN)
6fc6879b
JM		 1120 proto = WPA_PROTO_RSN;
1121 else
1122 proto = WPA_PROTO_WPA;
1123 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
1124 os_memset(&ie, 0, sizeof(ie));
1125 ie.group_cipher = ssid->group_cipher;
1126 ie.pairwise_cipher = ssid->pairwise_cipher;
1127 ie.key_mgmt = ssid->key_mgmt;
1128#ifdef CONFIG_IEEE80211W
1129 ie.mgmt_group_cipher =
70f8cc8e 1130 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
6fc6879b
JM		 1131 WPA_CIPHER_AES_128_CMAC : 0;
1132#endif /* CONFIG_IEEE80211W */
f049052b
BG		 1133 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1134 "based on configuration");
6fc6879b
JM		 1135 } else
1136 proto = ie.proto;
1137 }
1138
f049052b
BG		 1139 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1140 "pairwise %d key_mgmt %d proto %d",
1141 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
6fc6879b
JM		 1142#ifdef CONFIG_IEEE80211W
1143 if (ssid->ieee80211w) {
f049052b
BG		 1144 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1145 ie.mgmt_group_cipher);
6fc6879b
JM		 1146 }
1147#endif /* CONFIG_IEEE80211W */
1148
64fa840a 1149 wpa_s->wpa_proto = proto;
6fc6879b
JM		 1150 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1151 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
df0f01d9 1152 !!(ssid->proto & (WPA_PROTO_RSN | WPA_PROTO_OSEN)));
6fc6879b
JM		 1153
1154 if (bss || !wpa_s->ap_ies_from_associnfo) {
1155 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1156 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1157 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1158 bss_rsn ? 2 + bss_rsn[1] : 0))
1159 return -1;
1160 }
1161
9e68742e
JM		 1162#ifdef CONFIG_NO_WPA
1163 wpa_s->group_cipher = WPA_CIPHER_NONE;
1164 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
1165#else /* CONFIG_NO_WPA */
6fc6879b 1166 sel = ie.group_cipher & ssid->group_cipher;
edbd2a19
JM		 1167 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1168 if (wpa_s->group_cipher < 0) {
f049052b
BG		 1169 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1170 "cipher");
6fc6879b
JM		 1171 return -1;
1172 }
edbd2a19
JM		 1173 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1174 wpa_cipher_txt(wpa_s->group_cipher));
6fc6879b
JM		 1175
1176 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
edbd2a19
JM		 1177 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1178 if (wpa_s->pairwise_cipher < 0) {
f049052b
BG		 1179 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1180 "cipher");
6fc6879b
JM		 1181 return -1;
1182 }
edbd2a19
JM		 1183 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1184 wpa_cipher_txt(wpa_s->pairwise_cipher));
9e68742e 1185#endif /* CONFIG_NO_WPA */
6fc6879b
JM		 1186
1187 sel = ie.key_mgmt & ssid->key_mgmt;
c10347f2
JM		 1188#ifdef CONFIG_SAE
1189 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1190 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1191#endif /* CONFIG_SAE */
6fc6879b 1192 if (0) {
5e3b5197
JM		 1193#ifdef CONFIG_SUITEB192
1194 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B_192) {
1195 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B_192;
1196 wpa_dbg(wpa_s, MSG_DEBUG,
1197 "WPA: using KEY_MGMT 802.1X with Suite B (192-bit)");
1198#endif /* CONFIG_SUITEB192 */
1199#ifdef CONFIG_SUITEB
666497c8
JM		 1200 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B) {
1201 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B;
1202 wpa_dbg(wpa_s, MSG_DEBUG,
1203 "WPA: using KEY_MGMT 802.1X with Suite B");
5e3b5197 1204#endif /* CONFIG_SUITEB */
6fc6879b
JM		 1205#ifdef CONFIG_IEEE80211R
1206 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1207 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
f049052b 1208 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
6fc6879b
JM		 1209 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1210 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
f049052b 1211 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
6fc6879b 1212#endif /* CONFIG_IEEE80211R */
c10347f2
JM		 1213#ifdef CONFIG_SAE
1214 } else if (sel & WPA_KEY_MGMT_SAE) {
1215 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1216 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1217 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1218 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1219 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1220#endif /* CONFIG_SAE */
56586197
JM		 1221#ifdef CONFIG_IEEE80211W
1222 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1223 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
f049052b 1224 wpa_dbg(wpa_s, MSG_DEBUG,
56586197
JM		 1225 "WPA: using KEY_MGMT 802.1X with SHA256");
1226 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1227 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
f049052b 1228 wpa_dbg(wpa_s, MSG_DEBUG,
56586197
JM		 1229 "WPA: using KEY_MGMT PSK with SHA256");
1230#endif /* CONFIG_IEEE80211W */
6fc6879b
JM		 1231 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1232 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
f049052b 1233 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
6fc6879b
JM		 1234 } else if (sel & WPA_KEY_MGMT_PSK) {
1235 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
f049052b 1236 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
6fc6879b
JM		 1237 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1238 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
f049052b 1239 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
df0f01d9
JM		 1240#ifdef CONFIG_HS20
1241 } else if (sel & WPA_KEY_MGMT_OSEN) {
1242 wpa_s->key_mgmt = WPA_KEY_MGMT_OSEN;
1243 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using KEY_MGMT OSEN");
1244#endif /* CONFIG_HS20 */
6fc6879b 1245 } else {
f049052b
BG		 1246 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1247 "authenticated key management type");
6fc6879b
JM		 1248 return -1;
1249 }
1250
1251 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1252 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1253 wpa_s->pairwise_cipher);
1254 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1255
1256#ifdef CONFIG_IEEE80211W
1257 sel = ie.mgmt_group_cipher;
3f56a2b7 1258 if (wpas_get_ssid_pmf(wpa_s, ssid) == NO_MGMT_FRAME_PROTECTION ||
0b60b0aa 1259 !(ie.capabilities & WPA_CAPABILITY_MFPC))
6fc6879b
JM		 1260 sel = 0;
1261 if (sel & WPA_CIPHER_AES_128_CMAC) {
1262 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
f049052b 1263 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
6fc6879b 1264 "AES-128-CMAC");
8dd9f9cd
JM		 1265 } else if (sel & WPA_CIPHER_BIP_GMAC_128) {
1266 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_128;
1267 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1268 "BIP-GMAC-128");
1269 } else if (sel & WPA_CIPHER_BIP_GMAC_256) {
1270 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_256;
1271 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1272 "BIP-GMAC-256");
1273 } else if (sel & WPA_CIPHER_BIP_CMAC_256) {
1274 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_CMAC_256;
1275 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1276 "BIP-CMAC-256");
6fc6879b
JM		 1277 } else {
1278 wpa_s->mgmt_group_cipher = 0;
f049052b 1279 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
6fc6879b
JM		 1280 }
1281 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1282 wpa_s->mgmt_group_cipher);
62d49803 1283 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
3f56a2b7 1284 wpas_get_ssid_pmf(wpa_s, ssid));
6fc6879b
JM		 1285#endif /* CONFIG_IEEE80211W */
1286
1287 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
f049052b 1288 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
6fc6879b
JM		 1289 return -1;
1290 }
1291
0bf927a0 1292 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
a52410c2
JM		 1293 int psk_set = 0;
1294
1295 if (ssid->psk_set) {
1296 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN, NULL);
1297 psk_set = 1;
1298 }
7d232e23
ZC		 1299#ifndef CONFIG_NO_PBKDF2
1300 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1301 ssid->passphrase) {
1302 u8 psk[PMK_LEN];
986de33d
JM		 1303 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1304 4096, psk, PMK_LEN);
7d232e23
ZC		 1305 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1306 psk, PMK_LEN);
bc26ac50 1307 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
a52410c2 1308 psk_set = 1;
e886c88e 1309 os_memset(psk, 0, sizeof(psk));
7d232e23
ZC		 1310 }
1311#endif /* CONFIG_NO_PBKDF2 */
9173b16f
JM		 1312#ifdef CONFIG_EXT_PASSWORD
1313 if (ssid->ext_psk) {
1314 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1315 ssid->ext_psk);
1316 char pw_str[64 + 1];
1317 u8 psk[PMK_LEN];
1318
1319 if (pw == NULL) {
1320 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1321 "found from external storage");
1322 return -1;
1323 }
1324
1325 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1326 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1327 "PSK length %d in external storage",
1328 (int) wpabuf_len(pw));
1329 ext_password_free(pw);
1330 return -1;
1331 }
1332
1333 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1334 pw_str[wpabuf_len(pw)] = '\0';
1335
1336#ifndef CONFIG_NO_PBKDF2
1337 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1338 {
986de33d
JM		 1339 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1340 4096, psk, PMK_LEN);
9173b16f
JM		 1341 os_memset(pw_str, 0, sizeof(pw_str));
1342 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1343 "external passphrase)",
1344 psk, PMK_LEN);
bc26ac50 1345 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
a52410c2 1346 psk_set = 1;
e886c88e 1347 os_memset(psk, 0, sizeof(psk));
9173b16f
JM		 1348 } else
1349#endif /* CONFIG_NO_PBKDF2 */
1350 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1351 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1352 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1353 "Invalid PSK hex string");
1354 os_memset(pw_str, 0, sizeof(pw_str));
1355 ext_password_free(pw);
1356 return -1;
1357 }
bc26ac50 1358 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
a52410c2 1359 psk_set = 1;
e886c88e 1360 os_memset(psk, 0, sizeof(psk));
9173b16f
JM		 1361 } else {
1362 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1363 "PSK available");
1364 os_memset(pw_str, 0, sizeof(pw_str));
1365 ext_password_free(pw);
1366 return -1;
1367 }
1368
1369 os_memset(pw_str, 0, sizeof(pw_str));
1370 ext_password_free(pw);
1371 }
1372#endif /* CONFIG_EXT_PASSWORD */
a52410c2
JM		 1373
1374 if (!psk_set) {
1375 wpa_msg(wpa_s, MSG_INFO,
1376 "No PSK available for association");
1377 return -1;
1378 }
7d232e23 1379 } else
6fc6879b
JM		 1380 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1381
1382 return 0;
1383}
1384
1385
8cd6b7bc 1386static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
03e47c9c 1387{
8cd6b7bc 1388 *pos = 0x00;
03e47c9c 1389
8cd6b7bc
JB		 1390 switch (idx) {
1391 case 0: /* Bits 0-7 */
1392 break;
1393 case 1: /* Bits 8-15 */
1394 break;
1395 case 2: /* Bits 16-23 */
1396#ifdef CONFIG_WNM
1397 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1398 *pos |= 0x08; /* Bit 19 - BSS Transition */
1399#endif /* CONFIG_WNM */
1400 break;
1401 case 3: /* Bits 24-31 */
1402#ifdef CONFIG_WNM
1403 *pos |= 0x02; /* Bit 25 - SSID List */
1404#endif /* CONFIG_WNM */
03e47c9c 1405#ifdef CONFIG_INTERWORKING
8cd6b7bc
JB		 1406 if (wpa_s->conf->interworking)
1407 *pos |= 0x80; /* Bit 31 - Interworking */
03e47c9c 1408#endif /* CONFIG_INTERWORKING */
8cd6b7bc
JB		 1409 break;
1410 case 4: /* Bits 32-39 */
56f5af48 1411#ifdef CONFIG_INTERWORKING
429dd9af
JM		 1412 if (wpa_s->drv_flags / WPA_DRIVER_FLAGS_QOS_MAPPING)
1413 *pos |= 0x01; /* Bit 32 - QoS Map */
56f5af48 1414#endif /* CONFIG_INTERWORKING */
8cd6b7bc
JB		 1415 break;
1416 case 5: /* Bits 40-47 */
95a3ea94
JM		 1417#ifdef CONFIG_HS20
1418 if (wpa_s->conf->hs20)
1419 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1420#endif /* CONFIG_HS20 */
8cd6b7bc
JB		 1421 break;
1422 case 6: /* Bits 48-55 */
1423 break;
1424 }
1425}
03e47c9c 1426
03e47c9c 1427
0bbaa9b9 1428int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf, size_t buflen)
8cd6b7bc
JB		 1429{
1430 u8 *pos = buf;
95a3ea94 1431 u8 len = 6, i;
8cd6b7bc
JB		 1432
1433 if (len < wpa_s->extended_capa_len)
1434 len = wpa_s->extended_capa_len;
0bbaa9b9
JM		 1435 if (buflen < (size_t) len + 2) {
1436 wpa_printf(MSG_INFO,
1437 "Not enough room for building extended capabilities element");
1438 return -1;
1439 }
03e47c9c
JM		 1440
1441 *pos++ = WLAN_EID_EXT_CAPAB;
8cd6b7bc
JB		 1442 *pos++ = len;
1443 for (i = 0; i < len; i++, pos++) {
1444 wpas_ext_capab_byte(wpa_s, pos, i);
1445
1446 if (i < wpa_s->extended_capa_len) {
1447 *pos &= ~wpa_s->extended_capa_mask[i];
1448 *pos |= wpa_s->extended_capa[i];
1449 }
1450 }
03e47c9c 1451
3db5439a
JM		 1452 while (len > 0 && buf[1 + len] == 0) {
1453 len--;
1454 buf[1] = len;
1455 }
1456 if (len == 0)
1457 return 0;
1458
1459 return 2 + len;
03e47c9c
JM		 1460}
1461
1462
6ac4b15e
JM		 1463static int wpas_valid_bss(struct wpa_supplicant *wpa_s,
1464 struct wpa_bss *test_bss)
1465{
1466 struct wpa_bss *bss;
1467
1468 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
1469 if (bss == test_bss)
1470 return 1;
1471 }
1472
1473 return 0;
1474}
1475
1476
1477static int wpas_valid_ssid(struct wpa_supplicant *wpa_s,
1478 struct wpa_ssid *test_ssid)
1479{
1480 struct wpa_ssid *ssid;
1481
1482 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next) {
1483 if (ssid == test_ssid)
1484 return 1;
1485 }
1486
1487 return 0;
1488}
1489
1490
1491int wpas_valid_bss_ssid(struct wpa_supplicant *wpa_s, struct wpa_bss *test_bss,
1492 struct wpa_ssid *test_ssid)
1493{
1494 if (test_bss && !wpas_valid_bss(wpa_s, test_bss))
1495 return 0;
1496
1497 return test_ssid == NULL || wpas_valid_ssid(wpa_s, test_ssid);
1498}
1499
1500
1501void wpas_connect_work_free(struct wpa_connect_work *cwork)
1502{
1503 if (cwork == NULL)
1504 return;
1505 os_free(cwork);
1506}
1507
1508
1509void wpas_connect_work_done(struct wpa_supplicant *wpa_s)
1510{
1511 struct wpa_connect_work *cwork;
1512 struct wpa_radio_work *work = wpa_s->connect_work;
1513
1514 if (!work)
1515 return;
1516
1517 wpa_s->connect_work = NULL;
1518 cwork = work->ctx;
1519 work->ctx = NULL;
1520 wpas_connect_work_free(cwork);
1521 radio_work_done(work);
1522}
1523
1524
a313d17d 1525int wpas_update_random_addr(struct wpa_supplicant *wpa_s, int style)
c267753b
JM		 1526{
1527 struct os_reltime now;
1528 u8 addr[ETH_ALEN];
1529
1530 os_get_reltime(&now);
a313d17d
JM		 1531 if (wpa_s->last_mac_addr_style == style &&
1532 wpa_s->last_mac_addr_change.sec != 0 &&
c267753b
JM		 1533 !os_reltime_expired(&now, &wpa_s->last_mac_addr_change,
1534 wpa_s->conf->rand_addr_lifetime)) {
1535 wpa_msg(wpa_s, MSG_DEBUG,
1536 "Previously selected random MAC address has not yet expired");
1537 return 0;
1538 }
1539
a313d17d
JM		 1540 switch (style) {
1541 case 1:
1542 if (random_mac_addr(addr) < 0)
1543 return -1;
1544 break;
1545 case 2:
1546 os_memcpy(addr, wpa_s->perm_addr, ETH_ALEN);
1547 if (random_mac_addr_keep_oui(addr) < 0)
1548 return -1;
1549 break;
1550 default:
c267753b 1551 return -1;
a313d17d 1552 }
c267753b
JM		 1553
1554 if (wpa_drv_set_mac_addr(wpa_s, addr) < 0) {
1555 wpa_msg(wpa_s, MSG_INFO,
1556 "Failed to set random MAC address");
1557 return -1;
1558 }
1559
1560 os_get_reltime(&wpa_s->last_mac_addr_change);
1561 wpa_s->mac_addr_changed = 1;
a313d17d 1562 wpa_s->last_mac_addr_style = style;
c267753b
JM		 1563
1564 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1565 wpa_msg(wpa_s, MSG_INFO,
1566 "Could not update MAC address information");
1567 return -1;
1568 }
1569
1570 wpa_msg(wpa_s, MSG_DEBUG, "Using random MAC address " MACSTR,
1571 MAC2STR(addr));
1572
1573 return 0;
1574}
1575
1576
1577int wpas_update_random_addr_disassoc(struct wpa_supplicant *wpa_s)
1578{
1579 if (wpa_s->wpa_state >= WPA_AUTHENTICATING ||
1580 !wpa_s->conf->preassoc_mac_addr)
1581 return 0;
1582
a313d17d 1583 return wpas_update_random_addr(wpa_s, wpa_s->conf->preassoc_mac_addr);
c267753b
JM		 1584}
1585
1586
6ac4b15e
JM		 1587static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit);
1588
6fc6879b
JM		 1589/**
1590 * wpa_supplicant_associate - Request association
1591 * @wpa_s: Pointer to wpa_supplicant data
1592 * @bss: Scan results for the selected BSS, or %NULL if not available
1593 * @ssid: Configuration data for the selected network
1594 *
1595 * This function is used to request %wpa_supplicant to associate with a BSS.
1596 */
1597void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
6fa81a3b 1598 struct wpa_bss *bss, struct wpa_ssid *ssid)
6fc6879b 1599{
6ac4b15e 1600 struct wpa_connect_work *cwork;
a313d17d
JM		 1601 int rand_style;
1602
a8412ec9
JM		 1603 wpa_s->own_disconnect_req = 0;
1604
e7160bd8
JM		 1605 /*
1606 * If we are starting a new connection, any previously pending EAPOL
1607 * RX cannot be valid anymore.
1608 */
1609 wpabuf_free(wpa_s->pending_eapol_rx);
1610 wpa_s->pending_eapol_rx = NULL;
1611
a313d17d
JM		 1612 if (ssid->mac_addr == -1)
1613 rand_style = wpa_s->conf->mac_addr;
1614 else
1615 rand_style = ssid->mac_addr;
6fc6879b 1616
8c42b369
EP		 1617 wmm_ac_clear_saved_tspecs(wpa_s);
1618 wpa_s->reassoc_same_bss = 0;
1619
c267753b
JM		 1620 if (wpa_s->last_ssid == ssid) {
1621 wpa_dbg(wpa_s, MSG_DEBUG, "Re-association to the same ESS");
8c42b369
EP		 1622 if (wpa_s->current_bss && wpa_s->current_bss == bss) {
1623 wmm_ac_save_tspecs(wpa_s);
1624 wpa_s->reassoc_same_bss = 1;
1625 }
a313d17d
JM		 1626 } else if (rand_style > 0) {
1627 if (wpas_update_random_addr(wpa_s, rand_style) < 0)
c267753b
JM		 1628 return;
1629 wpa_sm_pmksa_cache_flush(wpa_s->wpa, ssid);
1630 } else if (wpa_s->mac_addr_changed) {
1631 if (wpa_drv_set_mac_addr(wpa_s, NULL) < 0) {
1632 wpa_msg(wpa_s, MSG_INFO,
1633 "Could not restore permanent MAC address");
1634 return;
1635 }
1636 wpa_s->mac_addr_changed = 0;
1637 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1638 wpa_msg(wpa_s, MSG_INFO,
1639 "Could not update MAC address information");
1640 return;
1641 }
1642 wpa_msg(wpa_s, MSG_DEBUG, "Using permanent MAC address");
1643 }
1644 wpa_s->last_ssid = ssid;
1645
78177a00
JM		 1646#ifdef CONFIG_IBSS_RSN
1647 ibss_rsn_deinit(wpa_s->ibss_rsn);
1648 wpa_s->ibss_rsn = NULL;
1649#endif /* CONFIG_IBSS_RSN */
1650
2c5d725c
JM		 1651 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1652 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1581b38b
JM		 1653#ifdef CONFIG_AP
1654 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
f049052b
BG		 1655 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1656 "mode");
1581b38b
JM		 1657 return;
1658 }
8c981d17
DW		 1659 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1660 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
b2b688d1
VKE		 1661 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1662 wpas_p2p_ap_setup_failed(wpa_s);
8c981d17
DW		 1663 return;
1664 }
8f770587 1665 wpa_s->current_bss = bss;
1581b38b 1666#else /* CONFIG_AP */
f049052b
BG		 1667 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1668 "the build");
1581b38b
JM		 1669#endif /* CONFIG_AP */
1670 return;
1671 }
1672
603a3f34
JL		 1673 if (ssid->mode == WPAS_MODE_MESH) {
1674#ifdef CONFIG_MESH
1675 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_MESH)) {
1676 wpa_msg(wpa_s, MSG_INFO,
1677 "Driver does not support mesh mode");
1678 return;
1679 }
1680 if (bss)
1681 ssid->frequency = bss->freq;
1682 if (wpa_supplicant_join_mesh(wpa_s, ssid) < 0) {
1683 wpa_msg(wpa_s, MSG_ERROR, "Could not join mesh");
1684 return;
1685 }
1686 wpa_s->current_bss = bss;
1687 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_STARTED
1688 "ssid=\"%s\" id=%d",
1689 wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
1690 ssid->id);
1691#else /* CONFIG_MESH */
1692 wpa_msg(wpa_s, MSG_ERROR,
1693 "mesh mode support not included in the build");
1694#endif /* CONFIG_MESH */
1695 return;
1696 }
1697
52c9e6f3 1698#ifdef CONFIG_TDLS
95cb2d88
JM		 1699 if (bss)
1700 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1701 bss->ie_len);
52c9e6f3
JM		 1702#endif /* CONFIG_TDLS */
1703
5cc4d64b
JM		 1704 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1705 ssid->mode == IEEE80211_MODE_INFRA) {
c2a04078
JM		 1706 sme_authenticate(wpa_s, bss, ssid);
1707 return;
1708 }
1709
6ac4b15e
JM		 1710 if (wpa_s->connect_work) {
1711 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since connect_work exist");
1712 return;
1713 }
1714
f0e30c84
JM		 1715 if (radio_work_pending(wpa_s, "connect")) {
1716 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since pending work exist");
1717 return;
1718 }
1719
4ead7cfd
KV		 1720 wpas_abort_ongoing_scan(wpa_s);
1721
6ac4b15e
JM		 1722 cwork = os_zalloc(sizeof(*cwork));
1723 if (cwork == NULL)
1724 return;
1725
1726 cwork->bss = bss;
1727 cwork->ssid = ssid;
1728
1729 if (radio_add_work(wpa_s, bss ? bss->freq : 0, "connect", 1,
1730 wpas_start_assoc_cb, cwork) < 0) {
1731 os_free(cwork);
1732 }
1733}
1734
1735
98479dc9
JD		 1736static int bss_is_ibss(struct wpa_bss *bss)
1737{
1738 return (bss->caps & (IEEE80211_CAP_ESS | IEEE80211_CAP_IBSS)) ==
1739 IEEE80211_CAP_IBSS;
1740}
1741
1742
a65efbfb
PO		 1743static int drv_supports_vht(struct wpa_supplicant *wpa_s,
1744 const struct wpa_ssid *ssid)
1745{
1746 enum hostapd_hw_mode hw_mode;
1747 struct hostapd_hw_modes *mode = NULL;
1748 u8 channel;
1749 int i;
1750
1751#ifdef CONFIG_HT_OVERRIDES
1752 if (ssid->disable_ht)
1753 return 0;
1754#endif /* CONFIG_HT_OVERRIDES */
1755
1756 hw_mode = ieee80211_freq_to_chan(ssid->frequency, &channel);
1757 if (hw_mode == NUM_HOSTAPD_MODES)
1758 return 0;
1759 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
1760 if (wpa_s->hw.modes[i].mode == hw_mode) {
1761 mode = &wpa_s->hw.modes[i];
1762 break;
1763 }
1764 }
1765
1766 if (!mode)
1767 return 0;
1768
1769 return mode->vht_capab != 0;
1770}
1771
1772
54fe48b9
JM		 1773void ibss_mesh_setup_freq(struct wpa_supplicant *wpa_s,
1774 const struct wpa_ssid *ssid,
1775 struct hostapd_freq_params *freq)
1830817e
JD		 1776{
1777 enum hostapd_hw_mode hw_mode;
1778 struct hostapd_hw_modes *mode = NULL;
6b8b0774
JD		 1779 int ht40plus[] = { 36, 44, 52, 60, 100, 108, 116, 124, 132, 149, 157,
1780 184, 192 };
563ee183 1781 int vht80[] = { 36, 52, 100, 116, 132, 149 };
6b8b0774 1782 struct hostapd_channel_data *pri_chan = NULL, *sec_chan = NULL;
1830817e 1783 u8 channel;
98479dc9 1784 int i, chan_idx, ht40 = -1, res, obss_scan = 1;
0f29bc68 1785 unsigned int j, k;
563ee183 1786 struct hostapd_freq_params vht_freq;
0f29bc68
AK		 1787 int chwidth, seg0, seg1;
1788 u32 vht_caps = 0;
1830817e
JD		 1789
1790 freq->freq = ssid->frequency;
1791
98479dc9
JD		 1792 for (j = 0; j < wpa_s->last_scan_res_used; j++) {
1793 struct wpa_bss *bss = wpa_s->last_scan_res[j];
1794
1795 if (ssid->mode != WPAS_MODE_IBSS)
1796 break;
1797
1798 /* Don't adjust control freq in case of fixed_freq */
1799 if (ssid->fixed_freq)
1800 break;
1801
1802 if (!bss_is_ibss(bss))
1803 continue;
1804
1805 if (ssid->ssid_len == bss->ssid_len &&
1806 os_memcmp(ssid->ssid, bss->ssid, bss->ssid_len) == 0) {
1807 wpa_printf(MSG_DEBUG,
1808 "IBSS already found in scan results, adjust control freq: %d",
1809 bss->freq);
1810 freq->freq = bss->freq;
1811 obss_scan = 0;
1812 break;
1813 }
1814 }
1815
1830817e
JD		 1816 /* For IBSS check HT_IBSS flag */
1817 if (ssid->mode == WPAS_MODE_IBSS &&
1818 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_HT_IBSS))
1819 return;
1820
d9a9bc04
JD		 1821 if (wpa_s->group_cipher == WPA_CIPHER_WEP40 ||
1822 wpa_s->group_cipher == WPA_CIPHER_WEP104 ||
1823 wpa_s->pairwise_cipher == WPA_CIPHER_TKIP) {
1824 wpa_printf(MSG_DEBUG,
1825 "IBSS: WEP/TKIP detected, do not try to enable HT");
1826 return;
1827 }
1828
98479dc9 1829 hw_mode = ieee80211_freq_to_chan(freq->freq, &channel);
1830817e
JD		 1830 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
1831 if (wpa_s->hw.modes[i].mode == hw_mode) {
1832 mode = &wpa_s->hw.modes[i];
1833 break;
1834 }
1835 }
1836
1837 if (!mode)
1838 return;
1839
1840 freq->ht_enabled = ht_supported(mode);
6b8b0774
JD		 1841 if (!freq->ht_enabled)
1842 return;
1843
1844 /* Setup higher BW only for 5 GHz */
1845 if (mode->mode != HOSTAPD_MODE_IEEE80211A)
1846 return;
1847
1848 for (chan_idx = 0; chan_idx < mode->num_channels; chan_idx++) {
1849 pri_chan = &mode->channels[chan_idx];
1850 if (pri_chan->chan == channel)
1851 break;
1852 pri_chan = NULL;
1853 }
1854 if (!pri_chan)
1855 return;
1856
1857 /* Check primary channel flags */
1858 if (pri_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1859 return;
1860
1861 /* Check/setup HT40+/HT40- */
1862 for (j = 0; j < ARRAY_SIZE(ht40plus); j++) {
1863 if (ht40plus[j] == channel) {
1864 ht40 = 1;
1865 break;
1866 }
1867 }
1868
1869 /* Find secondary channel */
1870 for (i = 0; i < mode->num_channels; i++) {
1871 sec_chan = &mode->channels[i];
1872 if (sec_chan->chan == channel + ht40 * 4)
1873 break;
1874 sec_chan = NULL;
1875 }
1876 if (!sec_chan)
1877 return;
1878
1879 /* Check secondary channel flags */
1880 if (sec_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1881 return;
1882
1883 freq->channel = pri_chan->chan;
1884
1885 switch (ht40) {
1886 case -1:
1887 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40MINUS))
1888 return;
1889 freq->sec_channel_offset = -1;
1890 break;
1891 case 1:
1892 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40PLUS))
1893 return;
1894 freq->sec_channel_offset = 1;
1895 break;
1896 default:
1897 break;
1898 }
1899
98479dc9 1900 if (freq->sec_channel_offset && obss_scan) {
6b8b0774
JD		 1901 struct wpa_scan_results *scan_res;
1902
1903 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL, 0);
1904 if (scan_res == NULL) {
1905 /* Back to HT20 */
1906 freq->sec_channel_offset = 0;
1907 return;
1908 }
1909
1910 res = check_40mhz_5g(mode, scan_res, pri_chan->chan,
1911 sec_chan->chan);
1912 switch (res) {
1913 case 0:
1914 /* Back to HT20 */
1915 freq->sec_channel_offset = 0;
1916 break;
1917 case 1:
1918 /* Configuration allowed */
1919 break;
1920 case 2:
1921 /* Switch pri/sec channels */
1922 freq->freq = hw_get_freq(mode, sec_chan->chan);
1923 freq->sec_channel_offset = -freq->sec_channel_offset;
1924 freq->channel = sec_chan->chan;
1925 break;
1926 default:
1927 freq->sec_channel_offset = 0;
1928 break;
1929 }
1930
1931 wpa_scan_results_free(scan_res);
1932 }
1933
1934 wpa_printf(MSG_DEBUG,
1935 "IBSS/mesh: setup freq channel %d, sec_channel_offset %d",
1936 freq->channel, freq->sec_channel_offset);
563ee183 1937
a65efbfb 1938 if (!drv_supports_vht(wpa_s, ssid))
563ee183
JD		 1939 return;
1940
1941 /* For IBSS check VHT_IBSS flag */
a65efbfb
PO		 1942 if (ssid->mode == WPAS_MODE_IBSS &&
1943 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_VHT_IBSS))
563ee183
JD		 1944 return;
1945
1946 vht_freq = *freq;
1947
1948 vht_freq.vht_enabled = vht_supported(mode);
1949 if (!vht_freq.vht_enabled)
1950 return;
1951
1952 /* setup center_freq1, bandwidth */
1953 for (j = 0; j < ARRAY_SIZE(vht80); j++) {
1954 if (freq->channel >= vht80[j] &&
1955 freq->channel < vht80[j] + 16)
1956 break;
1957 }
1958
1959 if (j == ARRAY_SIZE(vht80))
1960 return;
1961
1962 for (i = vht80[j]; i < vht80[j] + 16; i += 4) {
1963 struct hostapd_channel_data *chan;
1964
1965 chan = hw_get_channel_chan(mode, i, NULL);
1966 if (!chan)
1967 return;
1968
1969 /* Back to HT configuration if channel not usable */
1970 if (chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1971 return;
1972 }
1973
0f29bc68
AK		 1974 chwidth = VHT_CHANWIDTH_80MHZ;
1975 seg0 = vht80[j] + 6;
1976 seg1 = 0;
1977
1978 if (ssid->max_oper_chwidth == VHT_CHANWIDTH_80P80MHZ) {
1979 /* setup center_freq2, bandwidth */
1980 for (k = 0; k < ARRAY_SIZE(vht80); k++) {
1981 /* Only accept 80 MHz segments separated by a gap */
1982 if (j == k || abs(vht80[j] - vht80[k]) == 16)
1983 continue;
1984 for (i = vht80[k]; i < vht80[k] + 16; i += 4) {
1985 struct hostapd_channel_data *chan;
1986
1987 chan = hw_get_channel_chan(mode, i, NULL);
1988 if (!chan)
1989 continue;
1990
1991 if (chan->flag & (HOSTAPD_CHAN_DISABLED |
1992 HOSTAPD_CHAN_NO_IR |
1993 HOSTAPD_CHAN_RADAR))
1994 continue;
1995
1996 /* Found a suitable second segment for 80+80 */
1997 chwidth = VHT_CHANWIDTH_80P80MHZ;
1998 vht_caps |=
1999 VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ;
2000 seg1 = vht80[k] + 6;
2001 }
2002
2003 if (chwidth == VHT_CHANWIDTH_80P80MHZ)
2004 break;
2005 }
2006 }
2007
563ee183
JD		 2008 if (hostapd_set_freq_params(&vht_freq, mode->mode, freq->freq,
2009 freq->channel, freq->ht_enabled,
2010 vht_freq.vht_enabled,
2011 freq->sec_channel_offset,
0f29bc68 2012 chwidth, seg0, seg1, vht_caps) != 0)
563ee183
JD		 2013 return;
2014
2015 *freq = vht_freq;
2016
2017 wpa_printf(MSG_DEBUG, "IBSS: VHT setup freq cf1 %d, cf2 %d, bw %d",
2018 freq->center_freq1, freq->center_freq2, freq->bandwidth);
1830817e
JD		 2019}
2020
2021
6ac4b15e
JM		 2022static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit)
2023{
2024 struct wpa_connect_work *cwork = work->ctx;
2025 struct wpa_bss *bss = cwork->bss;
2026 struct wpa_ssid *ssid = cwork->ssid;
2027 struct wpa_supplicant *wpa_s = work->wpa_s;
2028 u8 wpa_ie[200];
2029 size_t wpa_ie_len;
2030 int use_crypt, ret, i, bssid_changed;
2031 int algs = WPA_AUTH_ALG_OPEN;
2032 unsigned int cipher_pairwise, cipher_group;
2033 struct wpa_driver_associate_params params;
2034 int wep_keys_set = 0;
2035 int assoc_failed = 0;
2036 struct wpa_ssid *old_ssid;
2037#ifdef CONFIG_HT_OVERRIDES
2038 struct ieee80211_ht_capabilities htcaps;
2039 struct ieee80211_ht_capabilities htcaps_mask;
2040#endif /* CONFIG_HT_OVERRIDES */
6aa1cd4e
PS		 2041#ifdef CONFIG_VHT_OVERRIDES
2042 struct ieee80211_vht_capabilities vhtcaps;
2043 struct ieee80211_vht_capabilities vhtcaps_mask;
2044#endif /* CONFIG_VHT_OVERRIDES */
6ac4b15e
JM		 2045
2046 if (deinit) {
b3253ebb
AO		 2047 if (work->started) {
2048 wpa_s->connect_work = NULL;
2049
2050 /* cancel possible auth. timeout */
2051 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s,
2052 NULL);
2053 }
6ac4b15e
JM		 2054 wpas_connect_work_free(cwork);
2055 return;
2056 }
2057
2058 wpa_s->connect_work = work;
2059
6108536d
HW		 2060 if (cwork->bss_removed || !wpas_valid_bss_ssid(wpa_s, bss, ssid) ||
2061 wpas_network_disabled(wpa_s, ssid)) {
6ac4b15e
JM		 2062 wpa_dbg(wpa_s, MSG_DEBUG, "BSS/SSID entry for association not valid anymore - drop connection attempt");
2063 wpas_connect_work_done(wpa_s);
2064 return;
2065 }
2066
0c80427d 2067 os_memset(&params, 0, sizeof(params));
6fc6879b 2068 wpa_s->reassociate = 0;
c60ba9f7 2069 wpa_s->eap_expected_failure = 0;
76d81b32
JM		 2070 if (bss &&
2071 (!wpas_driver_bss_selection(wpa_s) || wpas_wps_searching(wpa_s))) {
6fc6879b 2072#ifdef CONFIG_IEEE80211R
6fa81a3b 2073 const u8 *ie, *md = NULL;
6fc6879b 2074#endif /* CONFIG_IEEE80211R */
6fc6879b
JM		 2075 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
2076 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
6fa81a3b 2077 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
8bac466b 2078 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
6fc6879b
JM		 2079 os_memset(wpa_s->bssid, 0, ETH_ALEN);
2080 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
8bac466b
JM		 2081 if (bssid_changed)
2082 wpas_notify_bssid_changed(wpa_s);
6fc6879b 2083#ifdef CONFIG_IEEE80211R
6fa81a3b 2084 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
6fc6879b
JM		 2085 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
2086 md = ie + 2;
e7846b68 2087 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
91a05482
JM		 2088 if (md) {
2089 /* Prepare for the next transition */
76b7981d 2090 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
91a05482 2091 }
6fc6879b 2092#endif /* CONFIG_IEEE80211R */
24c23d1b
JM		 2093#ifdef CONFIG_WPS
2094 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
2095 wpa_s->conf->ap_scan == 2 &&
2096 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
2097 /* Use ap_scan==1 style network selection to find the network
2098 */
74656400 2099 wpas_connect_work_done(wpa_s);
4115303b 2100 wpa_s->scan_req = MANUAL_SCAN_REQ;
24c23d1b
JM		 2101 wpa_s->reassociate = 1;
2102 wpa_supplicant_req_scan(wpa_s, 0, 0);
2103 return;
2104#endif /* CONFIG_WPS */
6fc6879b
JM		 2105 } else {
2106 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
2107 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
2108 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2109 }
0d0f7ecb
MS		 2110 if (!wpa_s->pno)
2111 wpa_supplicant_cancel_sched_scan(wpa_s);
2112
6fc6879b
JM		 2113 wpa_supplicant_cancel_scan(wpa_s);
2114
2115 /* Starting new association, so clear the possibly used WPA IE from the
2116 * previous association. */
2117 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
2118
2119#ifdef IEEE8021X_EAPOL
2120 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2121 if (ssid->leap) {
2122 if (ssid->non_leap == 0)
abd9fafa 2123 algs = WPA_AUTH_ALG_LEAP;
6fc6879b 2124 else
abd9fafa 2125 algs |= WPA_AUTH_ALG_LEAP;
6fc6879b
JM		 2126 }
2127 }
2128#endif /* IEEE8021X_EAPOL */
f049052b 2129 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
6fc6879b 2130 if (ssid->auth_alg) {
abd9fafa 2131 algs = ssid->auth_alg;
f049052b
BG		 2132 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
2133 "0x%x", algs);
6fc6879b 2134 }
6fc6879b 2135
6fa81a3b
JM		 2136 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
2137 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
0bf927a0 2138 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
6fc6879b 2139 int try_opportunistic;
6e202021
JM		 2140 try_opportunistic = (ssid->proactive_key_caching < 0 ?
2141 wpa_s->conf->okc :
2142 ssid->proactive_key_caching) &&
6fc6879b
JM		 2143 (ssid->proto & WPA_PROTO_RSN);
2144 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
b2a12c4f 2145 ssid, try_opportunistic) == 0)
ba422613 2146 eapol_sm_notify_pmkid_attempt(wpa_s->eapol);
6fc6879b
JM		 2147 wpa_ie_len = sizeof(wpa_ie);
2148 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
2149 wpa_ie, &wpa_ie_len)) {
f049052b
BG		 2150 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2151 "key management and encryption suites");
74656400 2152 wpas_connect_work_done(wpa_s);
6fc6879b
JM		 2153 return;
2154 }
a3f7e518
JM		 2155 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
2156 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
2157 /*
2158 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
2159 * use non-WPA since the scan results did not indicate that the
2160 * AP is using WPA or WPA2.
2161 */
2162 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2163 wpa_ie_len = 0;
2164 wpa_s->wpa_proto = 0;
0bf927a0 2165 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
6fc6879b
JM		 2166 wpa_ie_len = sizeof(wpa_ie);
2167 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
2168 wpa_ie, &wpa_ie_len)) {
f049052b
BG		 2169 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2170 "key management and encryption suites (no "
2171 "scan results)");
74656400 2172 wpas_connect_work_done(wpa_s);
6fc6879b
JM		 2173 return;
2174 }
ad08c363
JM		 2175#ifdef CONFIG_WPS
2176 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
b01c18a8
JM		 2177 struct wpabuf *wps_ie;
2178 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
ad08c363
JM		 2179 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
2180 wpa_ie_len = wpabuf_len(wps_ie);
2181 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
24386985
JM		 2182 } else
2183 wpa_ie_len = 0;
ad08c363
JM		 2184 wpabuf_free(wps_ie);
2185 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
0c80427d
JM		 2186 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
2187 params.wps = WPS_MODE_PRIVACY;
2188 else
2189 params.wps = WPS_MODE_OPEN;
cf546f1a 2190 wpa_s->wpa_proto = 0;
ad08c363 2191#endif /* CONFIG_WPS */
6fc6879b
JM		 2192 } else {
2193 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2194 wpa_ie_len = 0;
cf546f1a 2195 wpa_s->wpa_proto = 0;
6fc6879b
JM		 2196 }
2197
5f3a6aa0
JM		 2198#ifdef CONFIG_P2P
2199 if (wpa_s->global->p2p) {
2200 u8 *pos;
2201 size_t len;
2202 int res;
5f3a6aa0
JM		 2203 pos = wpa_ie + wpa_ie_len;
2204 len = sizeof(wpa_ie) - wpa_ie_len;
b8a8d677
JM		 2205 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
2206 ssid->p2p_group);
5f3a6aa0
JM		 2207 if (res >= 0)
2208 wpa_ie_len += res;
2209 }
72044390
JM		 2210
2211 wpa_s->cross_connect_disallowed = 0;
2212 if (bss) {
2213 struct wpabuf *p2p;
2214 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
2215 if (p2p) {
2216 wpa_s->cross_connect_disallowed =
2217 p2p_get_cross_connect_disallowed(p2p);
2218 wpabuf_free(p2p);
f049052b
BG		 2219 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
2220 "connection",
2221 wpa_s->cross_connect_disallowed ?
2222 "disallows" : "allows");
72044390
JM		 2223 }
2224 }
25ef8529
JM		 2225
2226 os_memset(wpa_s->p2p_ip_addr_info, 0, sizeof(wpa_s->p2p_ip_addr_info));
5f3a6aa0
JM		 2227#endif /* CONFIG_P2P */
2228
cb418324 2229#ifdef CONFIG_HS20
55a2df43 2230 if (is_hs20_network(wpa_s, ssid, bss)) {
cb418324
JM		 2231 struct wpabuf *hs20;
2232 hs20 = wpabuf_alloc(20);
2233 if (hs20) {
f9cd147d 2234 int pps_mo_id = hs20_get_pps_mo_id(wpa_s, ssid);
745ef184
JM		 2235 size_t len;
2236
f9cd147d 2237 wpas_hs20_add_indication(hs20, pps_mo_id);
745ef184
JM		 2238 len = sizeof(wpa_ie) - wpa_ie_len;
2239 if (wpabuf_len(hs20) <= len) {
2240 os_memcpy(wpa_ie + wpa_ie_len,
2241 wpabuf_head(hs20), wpabuf_len(hs20));
2242 wpa_ie_len += wpabuf_len(hs20);
2243 }
cb418324
JM		 2244 wpabuf_free(hs20);
2245 }
2246 }
2247#endif /* CONFIG_HS20 */
2248
8b3b803a
AH		 2249 /*
2250 * Workaround: Add Extended Capabilities element only if the AP
2251 * included this element in Beacon/Probe Response frames. Some older
2252 * APs seem to have interoperability issues if this element is
2253 * included, so while the standard may require us to include the
2254 * element in all cases, it is justifiable to skip it to avoid
2255 * interoperability issues.
2256 */
2257 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
0bbaa9b9 2258 u8 ext_capab[18];
8b3b803a 2259 int ext_capab_len;
0bbaa9b9
JM		 2260 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab,
2261 sizeof(ext_capab));
8b3b803a
AH		 2262 if (ext_capab_len > 0) {
2263 u8 *pos = wpa_ie;
2264 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
2265 pos += 2 + pos[1];
2266 os_memmove(pos + ext_capab_len, pos,
2267 wpa_ie_len - (pos - wpa_ie));
2268 wpa_ie_len += ext_capab_len;
2269 os_memcpy(pos, ext_capab, ext_capab_len);
2270 }
92cbcf91 2271 }
92cbcf91 2272
d29fa3a7
JM		 2273 if (wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ]) {
2274 struct wpabuf *buf = wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ];
2275 size_t len;
2276
2277 len = sizeof(wpa_ie) - wpa_ie_len;
2278 if (wpabuf_len(buf) <= len) {
2279 os_memcpy(wpa_ie + wpa_ie_len,
2280 wpabuf_head(buf), wpabuf_len(buf));
2281 wpa_ie_len += wpabuf_len(buf);
2282 }
2283 }
2284
b36a3a65
AN		 2285#ifdef CONFIG_FST
2286 if (wpa_s->fst_ies) {
2287 int fst_ies_len = wpabuf_len(wpa_s->fst_ies);
2288
2289 if (wpa_ie_len + fst_ies_len <= sizeof(wpa_ie)) {
2290 os_memcpy(wpa_ie + wpa_ie_len,
2291 wpabuf_head(wpa_s->fst_ies), fst_ies_len);
2292 wpa_ie_len += fst_ies_len;
2293 }
2294 }
2295#endif /* CONFIG_FST */
2296
6fc6879b
JM		 2297 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
2298 use_crypt = 1;
4848a38d
JM		 2299 cipher_pairwise = wpa_s->pairwise_cipher;
2300 cipher_group = wpa_s->group_cipher;
6fc6879b
JM		 2301 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
2302 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2303 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
2304 use_crypt = 0;
2305 if (wpa_set_wep_keys(wpa_s, ssid)) {
2306 use_crypt = 1;
2307 wep_keys_set = 1;
2308 }
2309 }
ad08c363
JM		 2310 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
2311 use_crypt = 0;
6fc6879b
JM		 2312
2313#ifdef IEEE8021X_EAPOL
2314 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2315 if ((ssid->eapol_flags &
2316 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
2317 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
2318 !wep_keys_set) {
2319 use_crypt = 0;
2320 } else {
2321 /* Assume that dynamic WEP-104 keys will be used and
2322 * set cipher suites in order for drivers to expect
2323 * encryption. */
4848a38d 2324 cipher_pairwise = cipher_group = WPA_CIPHER_WEP104;
6fc6879b
JM		 2325 }
2326 }
2327#endif /* IEEE8021X_EAPOL */
2328
2329 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2330 /* Set the key before (and later after) association */
2331 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2332 }
2333
6fc6879b 2334 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
6fc6879b 2335 if (bss) {
6fa81a3b
JM		 2336 params.ssid = bss->ssid;
2337 params.ssid_len = bss->ssid_len;
f15854d1
JM		 2338 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
2339 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
2340 MACSTR " freq=%u MHz based on scan results "
2341 "(bssid_set=%d)",
2342 MAC2STR(bss->bssid), bss->freq,
2343 ssid->bssid_set);
22628eca 2344 params.bssid = bss->bssid;
4ec68377 2345 params.freq.freq = bss->freq;
22628eca 2346 }
7ac7fd43
DS		 2347 params.bssid_hint = bss->bssid;
2348 params.freq_hint = bss->freq;
6fc6879b
JM		 2349 } else {
2350 params.ssid = ssid->ssid;
2351 params.ssid_len = ssid->ssid_len;
2352 }
9e2af29f
NC		 2353
2354 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
2355 wpa_s->conf->ap_scan == 2) {
2356 params.bssid = ssid->bssid;
2357 params.fixed_bssid = 1;
2358 }
2359
603a3f34
JL		 2360 /* Initial frequency for IBSS/mesh */
2361 if ((ssid->mode == WPAS_MODE_IBSS || ssid->mode == WPAS_MODE_MESH) &&
1830817e
JD		 2362 ssid->frequency > 0 && params.freq.freq == 0)
2363 ibss_mesh_setup_freq(wpa_s, ssid, &params.freq);
dc152f32 2364
8f05577d 2365 if (ssid->mode == WPAS_MODE_IBSS) {
4d9e6fba 2366 params.fixed_freq = ssid->fixed_freq;
8f05577d
JM		 2367 if (ssid->beacon_int)
2368 params.beacon_int = ssid->beacon_int;
2369 else
2370 params.beacon_int = wpa_s->conf->beacon_int;
2371 }
2372
6fc6879b
JM		 2373 params.wpa_ie = wpa_ie;
2374 params.wpa_ie_len = wpa_ie_len;
2375 params.pairwise_suite = cipher_pairwise;
2376 params.group_suite = cipher_group;
4848a38d 2377 params.key_mgmt_suite = wpa_s->key_mgmt;
64fa840a 2378 params.wpa_proto = wpa_s->wpa_proto;
6fc6879b
JM		 2379 params.auth_alg = algs;
2380 params.mode = ssid->mode;
1f6c0ab8 2381 params.bg_scan_period = ssid->bg_scan_period;
6fc6879b
JM		 2382 for (i = 0; i < NUM_WEP_KEYS; i++) {
2383 if (ssid->wep_key_len[i])
2384 params.wep_key[i] = ssid->wep_key[i];
2385 params.wep_key_len[i] = ssid->wep_key_len[i];
2386 }
2387 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
2388
c2a04078 2389 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
4848a38d
JM		 2390 (params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2391 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK)) {
6fc6879b
JM		 2392 params.passphrase = ssid->passphrase;
2393 if (ssid->psk_set)
2394 params.psk = ssid->psk;
b41f2684
CL		 2395 }
2396
2397 if (wpa_s->conf->key_mgmt_offload) {
2398 if (params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
666497c8 2399 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
5e3b5197
JM		 2400 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B ||
2401 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B_192)
b41f2684
CL		 2402 params.req_key_mgmt_offload =
2403 ssid->proactive_key_caching < 0 ?
2404 wpa_s->conf->okc : ssid->proactive_key_caching;
2405 else
2406 params.req_key_mgmt_offload = 1;
2407
2408 if ((params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2409 params.key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256 ||
2410 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK) &&
2411 ssid->psk_set)
2412 params.psk = ssid->psk;
6fc6879b
JM		 2413 }
2414
36b15723
JM		 2415 params.drop_unencrypted = use_crypt;
2416
6fc6879b 2417#ifdef CONFIG_IEEE80211W
3f56a2b7 2418 params.mgmt_frame_protection = wpas_get_ssid_pmf(wpa_s, ssid);
62d49803 2419 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
6fa81a3b 2420 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
97d3497e
JM		 2421 struct wpa_ie_data ie;
2422 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
2423 ie.capabilities &
2424 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
f049052b
BG		 2425 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
2426 "MFP: require MFP");
97d3497e
JM		 2427 params.mgmt_frame_protection =
2428 MGMT_FRAME_PROTECTION_REQUIRED;
2429 }
2430 }
6fc6879b
JM		 2431#endif /* CONFIG_IEEE80211W */
2432
ffad8858 2433 params.p2p = ssid->p2p_group;
6e3f4b89 2434
eea2fd9e
JM		 2435 if (wpa_s->parent->set_sta_uapsd)
2436 params.uapsd = wpa_s->parent->sta_uapsd;
2437 else
2438 params.uapsd = -1;
2439
80e8a5ee
BG		 2440#ifdef CONFIG_HT_OVERRIDES
2441 os_memset(&htcaps, 0, sizeof(htcaps));
2442 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
2443 params.htcaps = (u8 *) &htcaps;
2444 params.htcaps_mask = (u8 *) &htcaps_mask;
2445 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, &params);
2446#endif /* CONFIG_HT_OVERRIDES */
6aa1cd4e
PS		 2447#ifdef CONFIG_VHT_OVERRIDES
2448 os_memset(&vhtcaps, 0, sizeof(vhtcaps));
2449 os_memset(&vhtcaps_mask, 0, sizeof(vhtcaps_mask));
2450 params.vhtcaps = &vhtcaps;
2451 params.vhtcaps_mask = &vhtcaps_mask;
95ff3069 2452 wpa_supplicant_apply_vht_overrides(wpa_s, ssid, &params);
6aa1cd4e 2453#endif /* CONFIG_VHT_OVERRIDES */
80e8a5ee 2454
8567866d
JJ		 2455#ifdef CONFIG_P2P
2456 /*
2457 * If multi-channel concurrency is not supported, check for any
2458 * frequency conflict. In case of any frequency conflict, remove the
2459 * least prioritized connection.
2460 */
2461 if (wpa_s->num_multichan_concurrent < 2) {
d0df6437
IP		 2462 int freq, num;
2463 num = get_shared_radio_freqs(wpa_s, &freq, 1);
4ec68377 2464 if (num > 0 && freq > 0 && freq != params.freq.freq) {
d0df6437
IP		 2465 wpa_printf(MSG_DEBUG,
2466 "Assoc conflicting freq found (%d != %d)",
4ec68377
JD		 2467 freq, params.freq.freq);
2468 if (wpas_p2p_handle_frequency_conflicts(
74656400
SD		 2469 wpa_s, params.freq.freq, ssid) < 0) {
2470 wpas_connect_work_done(wpa_s);
8567866d 2471 return;
74656400 2472 }
8567866d
JJ		 2473 }
2474 }
2475#endif /* CONFIG_P2P */
2476
17fbb751 2477 ret = wpa_drv_associate(wpa_s, &params);
6fc6879b
JM		 2478 if (ret < 0) {
2479 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
2480 "failed");
871f4dd0
JM		 2481 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
2482 /*
2483 * The driver is known to mean what is saying, so we
2484 * can stop right here; the association will not
2485 * succeed.
2486 */
2487 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
c1c02342 2488 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
871f4dd0
JM		 2489 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2490 return;
2491 }
6fc6879b
JM		 2492 /* try to continue anyway; new association will be tried again
2493 * after timeout */
2494 assoc_failed = 1;
2495 }
2496
2497 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2498 /* Set the key after the association just in case association
2499 * cleared the previously configured key. */
2500 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2501 /* No need to timeout authentication since there is no key
2502 * management. */
2503 wpa_supplicant_cancel_auth_timeout(wpa_s);
2504 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
53895c3b 2505#ifdef CONFIG_IBSS_RSN
d7dcba70 2506 } else if (ssid->mode == WPAS_MODE_IBSS &&
53895c3b
JM		 2507 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
2508 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
2509 /*
2510 * RSN IBSS authentication is per-STA and we can disable the
2511 * per-BSSID authentication.
2512 */
2513 wpa_supplicant_cancel_auth_timeout(wpa_s);
53895c3b 2514#endif /* CONFIG_IBSS_RSN */
6fc6879b
JM		 2515 } else {
2516 /* Timeout for IEEE 802.11 authentication and association */
1d3c75b3
DW		 2517 int timeout = 60;
2518
2519 if (assoc_failed) {
2520 /* give IBSS a bit more time */
d7dcba70 2521 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
1d3c75b3
DW		 2522 } else if (wpa_s->conf->ap_scan == 1) {
2523 /* give IBSS a bit more time */
d7dcba70 2524 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
1d3c75b3 2525 }
6fc6879b
JM		 2526 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
2527 }
2528
66562e9c
JM		 2529 if (wep_keys_set &&
2530 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
6fc6879b
JM		 2531 /* Set static WEP keys again */
2532 wpa_set_wep_keys(wpa_s, ssid);
2533 }
2534
2535 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
2536 /*
2537 * Do not allow EAP session resumption between different
2538 * network configurations.
2539 */
2540 eapol_sm_invalidate_cached_session(wpa_s->eapol);
2541 }
8bac466b 2542 old_ssid = wpa_s->current_ssid;
6fc6879b 2543 wpa_s->current_ssid = ssid;
4d3be9cd
SD		 2544 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set)
2545 wpa_s->current_bss = bss;
6fc6879b
JM		 2546 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
2547 wpa_supplicant_initiate_eapol(wpa_s);
8bac466b
JM		 2548 if (old_ssid != wpa_s->current_ssid)
2549 wpas_notify_network_changed(wpa_s);
6fc6879b
JM		 2550}
2551
2552
09f58c09
JM		 2553static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
2554 const u8 *addr)
2555{
2556 struct wpa_ssid *old_ssid;
2557
c155305f 2558 wpas_connect_work_done(wpa_s);
09f58c09 2559 wpa_clear_keys(wpa_s, addr);
09f58c09 2560 old_ssid = wpa_s->current_ssid;
0d30cc24 2561 wpa_supplicant_mark_disassoc(wpa_s);
09f58c09
JM		 2562 wpa_sm_set_config(wpa_s->wpa, NULL);
2563 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2564 if (old_ssid != wpa_s->current_ssid)
2565 wpas_notify_network_changed(wpa_s);
2566 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
2567}
2568
2569
6fc6879b
JM		 2570/**
2571 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
2572 * @wpa_s: Pointer to wpa_supplicant data
2573 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
2574 *
073ab58f 2575 * This function is used to request %wpa_supplicant to deauthenticate from the
6fc6879b
JM		 2576 * current AP.
2577 */
2578void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
2579 int reason_code)
2580{
2581 u8 *addr = NULL;
ef48ff94 2582 union wpa_event_data event;
42d23547 2583 int zero_addr = 0;
8bac466b 2584
42d23547
JM		 2585 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
2586 " pending_bssid=" MACSTR " reason=%d state=%s",
2587 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
2588 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
2589
2590 if (!is_zero_ether_addr(wpa_s->bssid))
2591 addr = wpa_s->bssid;
2592 else if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
2593 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
2594 wpa_s->wpa_state == WPA_ASSOCIATING))
2595 addr = wpa_s->pending_bssid;
2596 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
2597 /*
2598 * When using driver-based BSS selection, we may not know the
2599 * BSSID with which we are currently trying to associate. We
2600 * need to notify the driver of this disconnection even in such
2601 * a case, so use the all zeros address here.
2602 */
6fc6879b 2603 addr = wpa_s->bssid;
42d23547
JM		 2604 zero_addr = 1;
2605 }
2606
7b44ff2c
SD		 2607#ifdef CONFIG_TDLS
2608 wpa_tdls_teardown_peers(wpa_s->wpa);
2609#endif /* CONFIG_TDLS */
2610
603a3f34
JL		 2611#ifdef CONFIG_MESH
2612 if (wpa_s->ifmsh) {
2613 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_REMOVED "%s",
2614 wpa_s->ifname);
2615 wpa_supplicant_leave_mesh(wpa_s);
2616 }
2617#endif /* CONFIG_MESH */
2618
42d23547
JM		 2619 if (addr) {
2620 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
ef48ff94
JM		 2621 os_memset(&event, 0, sizeof(event));
2622 event.deauth_info.reason_code = (u16) reason_code;
2623 event.deauth_info.locally_generated = 1;
2624 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
42d23547
JM		 2625 if (zero_addr)
2626 addr = NULL;
6fc6879b 2627 }
09f58c09
JM		 2628
2629 wpa_supplicant_clear_connection(wpa_s, addr);
6fc6879b
JM		 2630}
2631
dca1a511
DS		 2632static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
2633 struct wpa_ssid *ssid)
2634{
2635 if (!ssid || !ssid->disabled || ssid->disabled == 2)
2636 return;
2637
2638 ssid->disabled = 0;
2639 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2640 wpas_notify_network_enabled_changed(wpa_s, ssid);
2641
2642 /*
2643 * Try to reassociate since there is no current configuration and a new
2644 * network was made available.
2645 */
d2592497 2646 if (!wpa_s->current_ssid && !wpa_s->disconnected)
dca1a511
DS		 2647 wpa_s->reassociate = 1;
2648}
2649
6fc6879b 2650
86b89452
WS		 2651/**
2652 * wpa_supplicant_enable_network - Mark a configured network as enabled
2653 * @wpa_s: wpa_supplicant structure for a network interface
2654 * @ssid: wpa_ssid structure for a configured network or %NULL
2655 *
2656 * Enables the specified network or all networks if no network specified.
2657 */
2658void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
2659 struct wpa_ssid *ssid)
2660{
86b89452 2661 if (ssid == NULL) {
14f79078
JM		 2662 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
2663 wpa_supplicant_enable_one_network(wpa_s, ssid);
dca1a511
DS		 2664 } else
2665 wpa_supplicant_enable_one_network(wpa_s, ssid);
86b89452 2666
5a1d9d1a
JM		 2667 if (wpa_s->reassociate && !wpa_s->disconnected &&
2668 (!wpa_s->current_ssid ||
2669 wpa_s->wpa_state == WPA_DISCONNECTED ||
2670 wpa_s->wpa_state == WPA_SCANNING)) {
dca1a511
DS		 2671 if (wpa_s->sched_scanning) {
2672 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
2673 "new network to scan filters");
2674 wpa_supplicant_cancel_sched_scan(wpa_s);
2675 }
86b89452 2676
35d40309
JM		 2677 if (wpa_supplicant_fast_associate(wpa_s) != 1) {
2678 wpa_s->scan_req = NORMAL_SCAN_REQ;
dad153d1 2679 wpa_supplicant_req_scan(wpa_s, 0, 0);
35d40309 2680 }
86b89452
WS		 2681 }
2682}
2683
2684
2685/**
2686 * wpa_supplicant_disable_network - Mark a configured network as disabled
2687 * @wpa_s: wpa_supplicant structure for a network interface
2688 * @ssid: wpa_ssid structure for a configured network or %NULL
2689 *
2690 * Disables the specified network or all networks if no network specified.
2691 */
2692void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
2693 struct wpa_ssid *ssid)
2694{
2695 struct wpa_ssid *other_ssid;
2696 int was_disabled;
2697
2698 if (ssid == NULL) {
725fc39e
DS		 2699 if (wpa_s->sched_scanning)
2700 wpa_supplicant_cancel_sched_scan(wpa_s);
2701
4dac0245
JM		 2702 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2703 other_ssid = other_ssid->next) {
86b89452 2704 was_disabled = other_ssid->disabled;
4dac0245
JM		 2705 if (was_disabled == 2)
2706 continue; /* do not change persistent P2P group
2707 * data */
86b89452
WS		 2708
2709 other_ssid->disabled = 1;
2710
2711 if (was_disabled != other_ssid->disabled)
2712 wpas_notify_network_enabled_changed(
2713 wpa_s, other_ssid);
86b89452
WS		 2714 }
2715 if (wpa_s->current_ssid)
07783eaa 2716 wpa_supplicant_deauthenticate(
86b89452 2717 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
4dac0245 2718 } else if (ssid->disabled != 2) {
86b89452 2719 if (ssid == wpa_s->current_ssid)
07783eaa 2720 wpa_supplicant_deauthenticate(
86b89452
WS		 2721 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2722
2723 was_disabled = ssid->disabled;
2724
2725 ssid->disabled = 1;
2726
725fc39e 2727 if (was_disabled != ssid->disabled) {
86b89452 2728 wpas_notify_network_enabled_changed(wpa_s, ssid);
725fc39e
DS		 2729 if (wpa_s->sched_scanning) {
2730 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
2731 "to remove network from filters");
2732 wpa_supplicant_cancel_sched_scan(wpa_s);
2733 wpa_supplicant_req_scan(wpa_s, 0, 0);
2734 }
2735 }
86b89452
WS		 2736 }
2737}
2738
2739
2740/**
2741 * wpa_supplicant_select_network - Attempt association with a network
2742 * @wpa_s: wpa_supplicant structure for a network interface
2743 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
2744 */
2745void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
2746 struct wpa_ssid *ssid)
2747{
2748
2749 struct wpa_ssid *other_ssid;
d93dfbd5 2750 int disconnected = 0;
86b89452 2751
d93dfbd5 2752 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
e66bcedd
JM		 2753 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
2754 wpa_s->own_disconnect_req = 1;
07783eaa 2755 wpa_supplicant_deauthenticate(
86b89452 2756 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
d93dfbd5
JM		 2757 disconnected = 1;
2758 }
86b89452 2759
00e5e3d5
JM		 2760 if (ssid)
2761 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2762
86b89452
WS		 2763 /*
2764 * Mark all other networks disabled or mark all networks enabled if no
2765 * network specified.
2766 */
4dac0245
JM		 2767 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2768 other_ssid = other_ssid->next) {
86b89452 2769 int was_disabled = other_ssid->disabled;
4dac0245
JM		 2770 if (was_disabled == 2)
2771 continue; /* do not change persistent P2P group data */
86b89452
WS		 2772
2773 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
00e5e3d5
JM		 2774 if (was_disabled && !other_ssid->disabled)
2775 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
86b89452
WS		 2776
2777 if (was_disabled != other_ssid->disabled)
2778 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
86b89452 2779 }
2a6f78fb 2780
d38c7be0
JM		 2781 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid &&
2782 wpa_s->wpa_state >= WPA_AUTHENTICATING) {
2a6f78fb
JJ		 2783 /* We are already associated with the selected network */
2784 wpa_printf(MSG_DEBUG, "Already associated with the "
2785 "selected network - do nothing");
2786 return;
2787 }
2788
25a8f9e3 2789 if (ssid) {
96efeeb6 2790 wpa_s->current_ssid = ssid;
25a8f9e3 2791 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
603a3f34
JL		 2792 wpa_s->connect_without_scan =
2793 (ssid->mode == WPAS_MODE_MESH) ? ssid : NULL;
701f3961
AS		 2794
2795 /*
2796 * Don't optimize next scan freqs since a new ESS has been
2797 * selected.
2798 */
2799 os_free(wpa_s->next_scan_freqs);
2800 wpa_s->next_scan_freqs = NULL;
603a3f34
JL		 2801 } else {
2802 wpa_s->connect_without_scan = NULL;
25a8f9e3 2803 }
603a3f34 2804
86b89452
WS		 2805 wpa_s->disconnected = 0;
2806 wpa_s->reassociate = 1;
cecdddc1 2807
e4a35f07 2808 if (wpa_s->connect_without_scan ||
35d40309
JM		 2809 wpa_supplicant_fast_associate(wpa_s) != 1) {
2810 wpa_s->scan_req = NORMAL_SCAN_REQ;
cecdddc1 2811 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
35d40309 2812 }
86b89452 2813
a1641d26
JM		 2814 if (ssid)
2815 wpas_notify_network_selected(wpa_s, ssid);
86b89452
WS		 2816}
2817
2818
bdec7ee5
MS		 2819/**
2820 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
2821 * @wpa_s: wpa_supplicant structure for a network interface
2822 * @pkcs11_engine_path: PKCS #11 engine path or NULL
2823 * @pkcs11_module_path: PKCS #11 module path or NULL
2824 * Returns: 0 on success; -1 on failure
2825 *
2826 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
2827 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
2828 * module path fails the paths will be reset to the default value (NULL).
2829 */
2830int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
2831 const char *pkcs11_engine_path,
2832 const char *pkcs11_module_path)
2833{
2834 char *pkcs11_engine_path_copy = NULL;
2835 char *pkcs11_module_path_copy = NULL;
2836
2837 if (pkcs11_engine_path != NULL) {
2838 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
2839 if (pkcs11_engine_path_copy == NULL)
2840 return -1;
2841 }
2842 if (pkcs11_module_path != NULL) {
2843 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
04c366cb 2844 if (pkcs11_module_path_copy == NULL) {
bdec7ee5
MS		 2845 os_free(pkcs11_engine_path_copy);
2846 return -1;
2847 }
2848 }
2849
2850 os_free(wpa_s->conf->pkcs11_engine_path);
2851 os_free(wpa_s->conf->pkcs11_module_path);
2852 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
2853 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
2854
2855 wpa_sm_set_eapol(wpa_s->wpa, NULL);
2856 eapol_sm_deinit(wpa_s->eapol);
2857 wpa_s->eapol = NULL;
2858 if (wpa_supplicant_init_eapol(wpa_s)) {
2859 /* Error -> Reset paths to the default value (NULL) once. */
2860 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
2861 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
2862 NULL);
2863
2864 return -1;
2865 }
2866 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
2867
2868 return 0;
2869}
2870
2871
86b89452
WS		 2872/**
2873 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
2874 * @wpa_s: wpa_supplicant structure for a network interface
2875 * @ap_scan: AP scan mode
2876 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
2877 *
2878 */
2879int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
2880{
2881
2882 int old_ap_scan;
2883
2884 if (ap_scan < 0 || ap_scan > 2)
2885 return -1;
2886
8406cd35
JM		 2887 if (ap_scan == 2 && os_strcmp(wpa_s->driver->name, "nl80211") == 0) {
2888 wpa_printf(MSG_INFO,
2889 "Note: nl80211 driver interface is not designed to be used with ap_scan=2; this can result in connection failures");
2890 }
2891
48f8e036
DS		 2892#ifdef ANDROID
2893 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
2894 wpa_s->wpa_state >= WPA_ASSOCIATING &&
2895 wpa_s->wpa_state < WPA_COMPLETED) {
2896 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
2897 "associating", wpa_s->conf->ap_scan, ap_scan);
2898 return 0;
2899 }
2900#endif /* ANDROID */
2901
86b89452
WS		 2902 old_ap_scan = wpa_s->conf->ap_scan;
2903 wpa_s->conf->ap_scan = ap_scan;
2904
2905 if (old_ap_scan != wpa_s->conf->ap_scan)
2906 wpas_notify_ap_scan_changed(wpa_s);
2907
2908 return 0;
2909}
2910
2911
78633c37
SL		 2912/**
2913 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
2914 * @wpa_s: wpa_supplicant structure for a network interface
2915 * @expire_age: Expiration age in seconds
2916 * Returns: 0 if succeed or -1 if expire_age has an invalid value
2917 *
2918 */
2919int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
2920 unsigned int bss_expire_age)
2921{
2922 if (bss_expire_age < 10) {
2923 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
2924 bss_expire_age);
2925 return -1;
2926 }
2927 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
2928 bss_expire_age);
2929 wpa_s->conf->bss_expiration_age = bss_expire_age;
2930
2931 return 0;
2932}
2933
2934
2935/**
2936 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
2937 * @wpa_s: wpa_supplicant structure for a network interface
2938 * @expire_count: number of scans after which an unseen BSS is reclaimed
2939 * Returns: 0 if succeed or -1 if expire_count has an invalid value
2940 *
2941 */
2942int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
2943 unsigned int bss_expire_count)
2944{
2945 if (bss_expire_count < 1) {
2946 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
2947 bss_expire_count);
2948 return -1;
2949 }
2950 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
2951 bss_expire_count);
2952 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
2953
2954 return 0;
2955}
2956
2957
c6e86b63
MA		 2958/**
2959 * wpa_supplicant_set_scan_interval - Set scan interval
2960 * @wpa_s: wpa_supplicant structure for a network interface
2961 * @scan_interval: scan interval in seconds
2962 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
2963 *
2964 */
2965int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
2966 int scan_interval)
2967{
2968 if (scan_interval < 0) {
2969 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
2970 scan_interval);
2971 return -1;
2972 }
2973 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
2974 scan_interval);
9e737f08 2975 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
c6e86b63
MA		 2976
2977 return 0;
2978}
2979
2980
86b89452
WS		 2981/**
2982 * wpa_supplicant_set_debug_params - Set global debug params
2983 * @global: wpa_global structure
2984 * @debug_level: debug level
2985 * @debug_timestamp: determines if show timestamp in debug data
2986 * @debug_show_keys: determines if show keys in debug data
2987 * Returns: 0 if succeed or -1 if debug_level has wrong value
2988 */
2989int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
2990 int debug_timestamp, int debug_show_keys)
2991{
2992
2993 int old_level, old_timestamp, old_show_keys;
2994
2995 /* check for allowed debuglevels */
14dc0011
PS		 2996 if (debug_level != MSG_EXCESSIVE &&
2997 debug_level != MSG_MSGDUMP &&
86b89452
WS		 2998 debug_level != MSG_DEBUG &&
2999 debug_level != MSG_INFO &&
3000 debug_level != MSG_WARNING &&
3001 debug_level != MSG_ERROR)
3002 return -1;
3003
3004 old_level = wpa_debug_level;
3005 old_timestamp = wpa_debug_timestamp;
3006 old_show_keys = wpa_debug_show_keys;
3007
3008 wpa_debug_level = debug_level;
3009 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
3010 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
3011
db9133ac
WS		 3012 if (wpa_debug_level != old_level)
3013 wpas_notify_debug_level_changed(global);
3014 if (wpa_debug_timestamp != old_timestamp)
3015 wpas_notify_debug_timestamp_changed(global);
3016 if (wpa_debug_show_keys != old_show_keys)
3017 wpas_notify_debug_show_keys_changed(global);
86b89452
WS		 3018
3019 return 0;
3020}
3021
3022
6fc6879b
JM		 3023/**
3024 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
3025 * @wpa_s: Pointer to wpa_supplicant data
3026 * Returns: A pointer to the current network structure or %NULL on failure
3027 */
3028struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
3029{
3030 struct wpa_ssid *entry;
eaa8eefe 3031 u8 ssid[SSID_MAX_LEN];
6fc6879b
JM		 3032 int res;
3033 size_t ssid_len;
3034 u8 bssid[ETH_ALEN];
3035 int wired;
3036
17fbb751
JM		 3037 res = wpa_drv_get_ssid(wpa_s, ssid);
3038 if (res < 0) {
3039 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
3040 "driver");
3041 return NULL;
6fc6879b 3042 }
17fbb751 3043 ssid_len = res;
6fc6879b 3044
17fbb751 3045 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
f049052b
BG		 3046 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
3047 "driver");
6fc6879b
JM		 3048 return NULL;
3049 }
3050
c2a04078
JM		 3051 wired = wpa_s->conf->ap_scan == 0 &&
3052 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
6fc6879b
JM		 3053
3054 entry = wpa_s->conf->ssid;
3055 while (entry) {
349493bd 3056 if (!wpas_network_disabled(wpa_s, entry) &&
6fc6879b
JM		 3057 ((ssid_len == entry->ssid_len &&
3058 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
3059 (!entry->bssid_set ||
3060 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
3061 return entry;
24c23d1b 3062#ifdef CONFIG_WPS
349493bd 3063 if (!wpas_network_disabled(wpa_s, entry) &&
24c23d1b
JM		 3064 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
3065 (entry->ssid == NULL || entry->ssid_len == 0) &&
3066 (!entry->bssid_set ||
3067 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
3068 return entry;
3069#endif /* CONFIG_WPS */
7d232e23 3070
349493bd 3071 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
7d232e23
ZC		 3072 entry->ssid_len == 0 &&
3073 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
3074 return entry;
3075
6fc6879b
JM		 3076 entry = entry->next;
3077 }
3078
3079 return NULL;
3080}
3081
3082
7756114f
JM		 3083static int select_driver(struct wpa_supplicant *wpa_s, int i)
3084{
3085 struct wpa_global *global = wpa_s->global;
3086
3087 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
3088 global->drv_priv[i] = wpa_drivers[i]->global_init();
3089 if (global->drv_priv[i] == NULL) {
3090 wpa_printf(MSG_ERROR, "Failed to initialize driver "
3091 "'%s'", wpa_drivers[i]->name);
3092 return -1;
3093 }
3094 }
3095
3096 wpa_s->driver = wpa_drivers[i];
3097 wpa_s->global_drv_priv = global->drv_priv[i];
3098
3099 return 0;
3100}
3101
3102
6fc6879b
JM		 3103static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
3104 const char *name)
3105{
3106 int i;
362f781e 3107 size_t len;
74b1c84a 3108 const char *pos, *driver = name;
6fc6879b
JM		 3109
3110 if (wpa_s == NULL)
3111 return -1;
3112
c5121837 3113 if (wpa_drivers[0] == NULL) {
f049052b
BG		 3114 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
3115 "wpa_supplicant");
6fc6879b
JM		 3116 return -1;
3117 }
3118
3119 if (name == NULL) {
3120 /* default to first driver in the list */
7756114f 3121 return select_driver(wpa_s, 0);
6fc6879b
JM		 3122 }
3123
74b1c84a
SO		 3124 do {
3125 pos = os_strchr(driver, ',');
3126 if (pos)
3127 len = pos - driver;
3128 else
3129 len = os_strlen(driver);
3130
3131 for (i = 0; wpa_drivers[i]; i++) {
3132 if (os_strlen(wpa_drivers[i]->name) == len &&
3133 os_strncmp(driver, wpa_drivers[i]->name, len) ==
0f4668ce
DW		 3134 0) {
3135 /* First driver that succeeds wins */
3136 if (select_driver(wpa_s, i) == 0)
3137 return 0;
3138 }
6fc6879b 3139 }
74b1c84a
SO		 3140
3141 driver = pos + 1;
3142 } while (pos);
6fc6879b 3143
f049052b 3144 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
6fc6879b
JM		 3145 return -1;
3146}
3147
3148
a8e0505b
JM		 3149/**
3150 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
3151 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
3152 * with struct wpa_driver_ops::init()
3153 * @src_addr: Source address of the EAPOL frame
3154 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
3155 * @len: Length of the EAPOL data
3156 *
3157 * This function is called for each received EAPOL frame. Most driver
3158 * interfaces rely on more generic OS mechanism for receiving frames through
3159 * l2_packet, but if such a mechanism is not available, the driver wrapper may
3160 * take care of received EAPOL frames and deliver them to the core supplicant
3161 * code by calling this function.
3162 */
6fc6879b
JM		 3163void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
3164 const u8 *buf, size_t len)
3165{
3166 struct wpa_supplicant *wpa_s = ctx;
3167
f049052b 3168 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
6fc6879b
JM		 3169 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
3170
db76aa64
JM		 3171#ifdef CONFIG_PEERKEY
3172 if (wpa_s->wpa_state > WPA_ASSOCIATED && wpa_s->current_ssid &&
3173 wpa_s->current_ssid->peerkey &&
3174 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
3175 wpa_sm_rx_eapol_peerkey(wpa_s->wpa, src_addr, buf, len) == 1) {
3176 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: Processed PeerKey EAPOL-Key");
3177 return;
3178 }
3179#endif /* CONFIG_PEERKEY */
3180
3ab35a66
JM		 3181 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
3182 (wpa_s->last_eapol_matches_bssid &&
3183#ifdef CONFIG_AP
3184 !wpa_s->ap_iface &&
3185#endif /* CONFIG_AP */
3186 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
1ff73338
JM		 3187 /*
3188 * There is possible race condition between receiving the
3189 * association event and the EAPOL frame since they are coming
3190 * through different paths from the driver. In order to avoid
3191 * issues in trying to process the EAPOL frame before receiving
3192 * association information, lets queue it for processing until
3ab35a66
JM		 3193 * the association event is received. This may also be needed in
3194 * driver-based roaming case, so also use src_addr != BSSID as a
3195 * trigger if we have previously confirmed that the
3196 * Authenticator uses BSSID as the src_addr (which is not the
3197 * case with wired IEEE 802.1X).
1ff73338 3198 */
f049052b 3199 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
3ab35a66
JM		 3200 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
3201 wpa_supplicant_state_txt(wpa_s->wpa_state),
3202 MAC2STR(wpa_s->bssid));
1ff73338
JM		 3203 wpabuf_free(wpa_s->pending_eapol_rx);
3204 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
3205 if (wpa_s->pending_eapol_rx) {
c2be937c 3206 os_get_reltime(&wpa_s->pending_eapol_rx_time);
1ff73338
JM		 3207 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
3208 ETH_ALEN);
3209 }
3210 return;
3211 }
3212
3ab35a66
JM		 3213 wpa_s->last_eapol_matches_bssid =
3214 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
3215
db149ac9
JM		 3216#ifdef CONFIG_AP
3217 if (wpa_s->ap_iface) {
3218 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
3219 return;
3220 }
3221#endif /* CONFIG_AP */
3222
6fc6879b 3223 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
f049052b
BG		 3224 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
3225 "no key management is configured");
6fc6879b
JM		 3226 return;
3227 }
3228
3229 if (wpa_s->eapol_received == 0 &&
c2a04078 3230 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
56586197 3231 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
9c972abb
JM		 3232 wpa_s->wpa_state != WPA_COMPLETED) &&
3233 (wpa_s->current_ssid == NULL ||
3234 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
6fc6879b 3235 /* Timeout for completing IEEE 802.1X and WPA authentication */
5add4101
JM		 3236 int timeout = 10;
3237
3238 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
3239 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
3240 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
3241 /* Use longer timeout for IEEE 802.1X/EAP */
3242 timeout = 70;
3243 }
3244
c7dafdf9 3245#ifdef CONFIG_WPS
5add4101
JM		 3246 if (wpa_s->current_ssid && wpa_s->current_bss &&
3247 (wpa_s->current_ssid->key_mgmt & WPA_KEY_MGMT_WPS) &&
3248 eap_is_wps_pin_enrollee(&wpa_s->current_ssid->eap)) {
3249 /*
3250 * Use shorter timeout if going through WPS AP iteration
3251 * for PIN config method with an AP that does not
3252 * advertise Selected Registrar.
3253 */
3254 struct wpabuf *wps_ie;
3255
3256 wps_ie = wpa_bss_get_vendor_ie_multi(
3257 wpa_s->current_bss, WPS_IE_VENDOR_TYPE);
0ef1e290
JM		 3258 if (wps_ie &&
3259 !wps_is_addr_authorized(wps_ie, wpa_s->own_addr, 1))
5add4101
JM		 3260 timeout = 10;
3261 wpabuf_free(wps_ie);
3262 }
c7dafdf9 3263#endif /* CONFIG_WPS */
5add4101
JM		 3264
3265 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
6fc6879b
JM		 3266 }
3267 wpa_s->eapol_received++;
3268
3269 if (wpa_s->countermeasures) {
f049052b
BG		 3270 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
3271 "EAPOL packet");
6fc6879b
JM		 3272 return;
3273 }
3274
8be18440
JM		 3275#ifdef CONFIG_IBSS_RSN
3276 if (wpa_s->current_ssid &&
d7dcba70 3277 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
8be18440
JM		 3278 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
3279 return;
3280 }
3281#endif /* CONFIG_IBSS_RSN */
3282
6fc6879b
JM		 3283 /* Source address of the incoming EAPOL frame could be compared to the
3284 * current BSSID. However, it is possible that a centralized
3285 * Authenticator could be using another MAC address than the BSSID of
3286 * an AP, so just allow any address to be used for now. The replies are
3287 * still sent to the current BSSID (if available), though. */
3288
3289 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
56586197 3290 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
6fc6879b
JM		 3291 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
3292 return;
3293 wpa_drv_poll(wpa_s);
c2a04078 3294 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
6fc6879b 3295 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
56586197 3296 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
6fc6879b
JM		 3297 /*
3298 * Set portValid = TRUE here since we are going to skip 4-way
3299 * handshake processing which would normally set portValid. We
3300 * need this to allow the EAPOL state machines to be completed
3301 * without going through EAPOL-Key handshake.
3302 */
3303 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
3304 }
3305}
3306
3307
bfba8deb 3308int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
6fc6879b 3309{
2961bfa8
JM		 3310 if ((!wpa_s->p2p_mgmt ||
3311 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3312 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
bfba8deb 3313 l2_packet_deinit(wpa_s->l2);
6fc6879b
JM		 3314 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
3315 wpa_drv_get_mac_addr(wpa_s),
3316 ETH_P_EAPOL,
3317 wpa_supplicant_rx_eapol, wpa_s, 0);
3318 if (wpa_s->l2 == NULL)
3319 return -1;
fdadd5fe
JM		 3320 } else {
3321 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
3322 if (addr)
3323 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
6fc6879b
JM		 3324 }
3325
3326 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
f049052b 3327 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
6fc6879b
JM		 3328 return -1;
3329 }
3330
c267753b
JM		 3331 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3332
bfba8deb
JM		 3333 return 0;
3334}
3335
3336
25f839c6
JM		 3337static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
3338 const u8 *buf, size_t len)
3339{
3340 struct wpa_supplicant *wpa_s = ctx;
3341 const struct l2_ethhdr *eth;
3342
3343 if (len < sizeof(*eth))
3344 return;
3345 eth = (const struct l2_ethhdr *) buf;
3346
3347 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
3348 !(eth->h_dest[0] & 0x01)) {
3349 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3350 " (bridge - not for this interface - ignore)",
3351 MAC2STR(src_addr), MAC2STR(eth->h_dest));
3352 return;
3353 }
3354
3355 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3356 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
3357 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
3358 len - sizeof(*eth));
3359}
3360
3361
bfba8deb
JM		 3362/**
3363 * wpa_supplicant_driver_init - Initialize driver interface parameters
3364 * @wpa_s: Pointer to wpa_supplicant data
3365 * Returns: 0 on success, -1 on failure
3366 *
3367 * This function is called to initialize driver interface parameters.
3368 * wpa_drv_init() must have been called before this function to initialize the
3369 * driver interface.
3370 */
3371int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
3372{
3373 static int interface_count = 0;
3374
3375 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
3376 return -1;
3377
c68f6200
AS		 3378 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
3379 MAC2STR(wpa_s->own_addr));
a313d17d 3380 os_memcpy(wpa_s->perm_addr, wpa_s->own_addr, ETH_ALEN);
c68f6200
AS		 3381 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3382
6fc6879b 3383 if (wpa_s->bridge_ifname[0]) {
f049052b
BG		 3384 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
3385 "interface '%s'", wpa_s->bridge_ifname);
e6dd8196
JM		 3386 wpa_s->l2_br = l2_packet_init_bridge(
3387 wpa_s->bridge_ifname, wpa_s->ifname, wpa_s->own_addr,
3388 ETH_P_EAPOL, wpa_supplicant_rx_eapol_bridge, wpa_s, 1);
6fc6879b 3389 if (wpa_s->l2_br == NULL) {
f049052b
BG		 3390 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
3391 "connection for the bridge interface '%s'",
3392 wpa_s->bridge_ifname);
6fc6879b
JM		 3393 return -1;
3394 }
3395 }
3396
8406cd35
JM		 3397 if (wpa_s->conf->ap_scan == 2 &&
3398 os_strcmp(wpa_s->driver->name, "nl80211") == 0) {
3399 wpa_printf(MSG_INFO,
3400 "Note: nl80211 driver interface is not designed to be used with ap_scan=2; this can result in connection failures");
3401 }
3402
6fc6879b
JM		 3403 wpa_clear_keys(wpa_s, NULL);
3404
3405 /* Make sure that TKIP countermeasures are not left enabled (could
3406 * happen if wpa_supplicant is killed during countermeasures. */
3407 wpa_drv_set_countermeasures(wpa_s, 0);
3408
f049052b 3409 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
6fc6879b
JM		 3410 wpa_drv_flush_pmkid(wpa_s);
3411
ba2a573c 3412 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
b3aa456b
ES		 3413 wpa_s->prev_scan_wildcard = 0;
3414
349493bd 3415 if (wpa_supplicant_enabled_networks(wpa_s)) {
a0e9d892
AS		 3416 if (wpa_s->wpa_state == WPA_INTERFACE_DISABLED) {
3417 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3418 interface_count = 0;
3419 }
ee82e33d 3420#ifndef ANDROID
3a94adbf 3421 if (!wpa_s->p2p_mgmt &&
5d0d72a3
BG		 3422 wpa_supplicant_delayed_sched_scan(wpa_s,
3423 interface_count % 3,
6a90053c 3424 100000))
5d0d72a3 3425 wpa_supplicant_req_scan(wpa_s, interface_count % 3,
a4cba8f1 3426 100000);
ee82e33d 3427#endif /* ANDROID */
74e259ec
JM		 3428 interface_count++;
3429 } else
3430 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
6fc6879b
JM		 3431
3432 return 0;
3433}
3434
3435
3436static int wpa_supplicant_daemon(const char *pid_file)
3437{
3438 wpa_printf(MSG_DEBUG, "Daemonize..");
3439 return os_daemonize(pid_file);
3440}
3441
3442
1772d348
JM		 3443static struct wpa_supplicant *
3444wpa_supplicant_alloc(struct wpa_supplicant *parent)
6fc6879b
JM		 3445{
3446 struct wpa_supplicant *wpa_s;
3447
3448 wpa_s = os_zalloc(sizeof(*wpa_s));
3449 if (wpa_s == NULL)
3450 return NULL;
4115303b 3451 wpa_s->scan_req = INITIAL_SCAN_REQ;
67b9bd08 3452 wpa_s->scan_interval = 5;
c302f207 3453 wpa_s->new_connection = 1;
1772d348 3454 wpa_s->parent = parent ? parent : wpa_s;
cbdf3507 3455 wpa_s->sched_scanning = 0;
6fc6879b
JM		 3456
3457 return wpa_s;
3458}
3459
3460
80e8a5ee
BG		 3461#ifdef CONFIG_HT_OVERRIDES
3462
3463static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
3464 struct ieee80211_ht_capabilities *htcaps,
3465 struct ieee80211_ht_capabilities *htcaps_mask,
3466 const char *ht_mcs)
3467{
3468 /* parse ht_mcs into hex array */
3469 int i;
3470 const char *tmp = ht_mcs;
3471 char *end = NULL;
3472
3473 /* If ht_mcs is null, do not set anything */
3474 if (!ht_mcs)
3475 return 0;
3476
3477 /* This is what we are setting in the kernel */
3478 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
3479
3480 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
3481
3482 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
3483 errno = 0;
3484 long v = strtol(tmp, &end, 16);
3485 if (errno == 0) {
3486 wpa_msg(wpa_s, MSG_DEBUG,
3487 "htcap value[%i]: %ld end: %p tmp: %p",
3488 i, v, end, tmp);
3489 if (end == tmp)
3490 break;
3491
3492 htcaps->supported_mcs_set[i] = v;
3493 tmp = end;
3494 } else {
3495 wpa_msg(wpa_s, MSG_ERROR,
3496 "Failed to parse ht-mcs: %s, error: %s\n",
3497 ht_mcs, strerror(errno));
3498 return -1;
3499 }
3500 }
3501
3502 /*
3503 * If we were able to parse any values, then set mask for the MCS set.
3504 */
3505 if (i) {
3506 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
3507 IEEE80211_HT_MCS_MASK_LEN - 1);
3508 /* skip the 3 reserved bits */
3509 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
3510 0x1f;
3511 }
3512
3513 return 0;
3514}
3515
3516
3517static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
3518 struct ieee80211_ht_capabilities *htcaps,
3519 struct ieee80211_ht_capabilities *htcaps_mask,
3520 int disabled)
3521{
5bc28571 3522 le16 msk;
80e8a5ee
BG		 3523
3524 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
3525
3526 if (disabled == -1)
3527 return 0;
3528
3529 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
3530 htcaps_mask->ht_capabilities_info |= msk;
3531 if (disabled)
3532 htcaps->ht_capabilities_info &= msk;
3533 else
3534 htcaps->ht_capabilities_info |= msk;
3535
3536 return 0;
3537}
3538
3539
3540static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
3541 struct ieee80211_ht_capabilities *htcaps,
3542 struct ieee80211_ht_capabilities *htcaps_mask,
3543 int factor)
3544{
3545 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
3546
3547 if (factor == -1)
3548 return 0;
3549
3550 if (factor < 0 || factor > 3) {
3551 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
3552 "Must be 0-3 or -1", factor);
3553 return -EINVAL;
3554 }
3555
3556 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
3557 htcaps->a_mpdu_params &= ~0x3;
3558 htcaps->a_mpdu_params |= factor & 0x3;
3559
3560 return 0;
3561}
3562
3563
3564static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
3565 struct ieee80211_ht_capabilities *htcaps,
3566 struct ieee80211_ht_capabilities *htcaps_mask,
3567 int density)
3568{
3569 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
3570
3571 if (density == -1)
3572 return 0;
3573
3574 if (density < 0 || density > 7) {
3575 wpa_msg(wpa_s, MSG_ERROR,
3576 "ampdu_density: %d out of range. Must be 0-7 or -1.",
3577 density);
3578 return -EINVAL;
3579 }
3580
3581 htcaps_mask->a_mpdu_params |= 0x1C;
3582 htcaps->a_mpdu_params &= ~(0x1C);
3583 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
3584
3585 return 0;
3586}
3587
3588
3589static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
3590 struct ieee80211_ht_capabilities *htcaps,
3591 struct ieee80211_ht_capabilities *htcaps_mask,
3592 int disabled)
3593{
3594 /* Masking these out disables HT40 */
5bc28571
JM		 3595 le16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
3596 HT_CAP_INFO_SHORT_GI40MHZ);
80e8a5ee
BG		 3597
3598 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
3599
3600 if (disabled)
3601 htcaps->ht_capabilities_info &= ~msk;
3602 else
3603 htcaps->ht_capabilities_info |= msk;
3604
3605 htcaps_mask->ht_capabilities_info |= msk;
3606
3607 return 0;
3608}
3609
3610
a90497f8
BG		 3611static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
3612 struct ieee80211_ht_capabilities *htcaps,
3613 struct ieee80211_ht_capabilities *htcaps_mask,
3614 int disabled)
3615{
3616 /* Masking these out disables SGI */
5bc28571
JM		 3617 le16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
3618 HT_CAP_INFO_SHORT_GI40MHZ);
a90497f8
BG		 3619
3620 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
3621
3622 if (disabled)
3623 htcaps->ht_capabilities_info &= ~msk;
3624 else
3625 htcaps->ht_capabilities_info |= msk;
3626
3627 htcaps_mask->ht_capabilities_info |= msk;
3628
3629 return 0;
3630}
3631
3632
39a5800f
PK		 3633static int wpa_set_disable_ldpc(struct wpa_supplicant *wpa_s,
3634 struct ieee80211_ht_capabilities *htcaps,
3635 struct ieee80211_ht_capabilities *htcaps_mask,
3636 int disabled)
3637{
3638 /* Masking these out disables LDPC */
5bc28571 3639 le16 msk = host_to_le16(HT_CAP_INFO_LDPC_CODING_CAP);
39a5800f
PK		 3640
3641 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ldpc: %d", disabled);
3642
3643 if (disabled)
3644 htcaps->ht_capabilities_info &= ~msk;
3645 else
3646 htcaps->ht_capabilities_info |= msk;
3647
3648 htcaps_mask->ht_capabilities_info |= msk;
3649
3650 return 0;
3651}
3652
3653
80e8a5ee
BG		 3654void wpa_supplicant_apply_ht_overrides(
3655 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3656 struct wpa_driver_associate_params *params)
3657{
3658 struct ieee80211_ht_capabilities *htcaps;
3659 struct ieee80211_ht_capabilities *htcaps_mask;
3660
3661 if (!ssid)
3662 return;
3663
3664 params->disable_ht = ssid->disable_ht;
3665 if (!params->htcaps || !params->htcaps_mask)
3666 return;
3667
3668 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
3669 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
3670 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
3671 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
3672 ssid->disable_max_amsdu);
3673 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
3674 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
3675 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
a90497f8 3676 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
39a5800f 3677 wpa_set_disable_ldpc(wpa_s, htcaps, htcaps_mask, ssid->disable_ldpc);
d41cc8cc
JM		 3678
3679 if (ssid->ht40_intolerant) {
5bc28571 3680 le16 bit = host_to_le16(HT_CAP_INFO_40MHZ_INTOLERANT);
d41cc8cc
JM		 3681 htcaps->ht_capabilities_info |= bit;
3682 htcaps_mask->ht_capabilities_info |= bit;
3683 }
80e8a5ee
BG		 3684}
3685
3686#endif /* CONFIG_HT_OVERRIDES */
3687
3688
e9ee8dc3
JB		 3689#ifdef CONFIG_VHT_OVERRIDES
3690void wpa_supplicant_apply_vht_overrides(
3691 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3692 struct wpa_driver_associate_params *params)
3693{
3694 struct ieee80211_vht_capabilities *vhtcaps;
3695 struct ieee80211_vht_capabilities *vhtcaps_mask;
3696
3697 if (!ssid)
3698 return;
3699
3700 params->disable_vht = ssid->disable_vht;
3701
3702 vhtcaps = (void *) params->vhtcaps;
3703 vhtcaps_mask = (void *) params->vhtcaps_mask;
3704
3705 if (!vhtcaps || !vhtcaps_mask)
3706 return;
3707
3708 vhtcaps->vht_capabilities_info = ssid->vht_capa;
3709 vhtcaps_mask->vht_capabilities_info = ssid->vht_capa_mask;
3710
4f560cde
EP		 3711#ifdef CONFIG_HT_OVERRIDES
3712 /* if max ampdu is <= 3, we have to make the HT cap the same */
b0f33467
JM		 3713 if (ssid->vht_capa_mask & VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) {
3714 int max_ampdu;
3715
3716 max_ampdu = (ssid->vht_capa &
3717 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) >>
3718 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX_SHIFT;
4f560cde
EP		 3719
3720 max_ampdu = max_ampdu < 3 ? max_ampdu : 3;
3721 wpa_set_ampdu_factor(wpa_s,
3722 (void *) params->htcaps,
3723 (void *) params->htcaps_mask,
3724 max_ampdu);
3725 }
3726#endif /* CONFIG_HT_OVERRIDES */
3727
e9ee8dc3
JB		 3728#define OVERRIDE_MCS(i) \
3729 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
3730 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
3731 3 << 2 * (i - 1); \
3732 vhtcaps->vht_supported_mcs_set.tx_map |= \
3733 ssid->vht_tx_mcs_nss_ ##i << 2 * (i - 1); \
3734 } \
3735 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
3736 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
3737 3 << 2 * (i - 1); \
3738 vhtcaps->vht_supported_mcs_set.rx_map |= \
3739 ssid->vht_rx_mcs_nss_ ##i << 2 * (i - 1); \
3740 }
3741
3742 OVERRIDE_MCS(1);
3743 OVERRIDE_MCS(2);
3744 OVERRIDE_MCS(3);
3745 OVERRIDE_MCS(4);
3746 OVERRIDE_MCS(5);
3747 OVERRIDE_MCS(6);
3748 OVERRIDE_MCS(7);
3749 OVERRIDE_MCS(8);
3750}
3751#endif /* CONFIG_VHT_OVERRIDES */
3752
3753
f64adcd7
JM		 3754static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
3755{
3756#ifdef PCSC_FUNCS
3757 size_t len;
3758
3759 if (!wpa_s->conf->pcsc_reader)
3760 return 0;
3761
22cf7d73 3762 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
f64adcd7
JM		 3763 if (!wpa_s->scard)
3764 return 1;
3765
3766 if (wpa_s->conf->pcsc_pin &&
3767 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
3768 scard_deinit(wpa_s->scard);
3769 wpa_s->scard = NULL;
3770 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
3771 return -1;
3772 }
3773
3774 len = sizeof(wpa_s->imsi) - 1;
3775 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
3776 scard_deinit(wpa_s->scard);
3777 wpa_s->scard = NULL;
3778 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
3779 return -1;
3780 }
3781 wpa_s->imsi[len] = '\0';
3782
3783 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
3784
3785 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
3786 wpa_s->imsi, wpa_s->mnc_len);
3787
3788 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
3789 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
3790#endif /* PCSC_FUNCS */
3791
3792 return 0;
3793}
3794
3795
306ae225
JM		 3796int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
3797{
3798 char *val, *pos;
3799
3800 ext_password_deinit(wpa_s->ext_pw);
3801 wpa_s->ext_pw = NULL;
3802 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
3803
3804 if (!wpa_s->conf->ext_password_backend)
3805 return 0;
3806
3807 val = os_strdup(wpa_s->conf->ext_password_backend);
3808 if (val == NULL)
3809 return -1;
3810 pos = os_strchr(val, ':');
3811 if (pos)
3812 *pos++ = '\0';
3813
3814 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
3815
3816 wpa_s->ext_pw = ext_password_init(val, pos);
3817 os_free(val);
3818 if (wpa_s->ext_pw == NULL) {
3819 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
3820 return -1;
3821 }
3822 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
3823
3824 return 0;
3825}
3826
3827
b36a3a65
AN		 3828#ifdef CONFIG_FST
3829
3830static const u8 * wpas_fst_get_bssid_cb(void *ctx)
3831{
3832 struct wpa_supplicant *wpa_s = ctx;
3833
3834 return (is_zero_ether_addr(wpa_s->bssid) ||
3835 wpa_s->wpa_state != WPA_COMPLETED) ? NULL : wpa_s->bssid;
3836}
3837
3838
3839static void wpas_fst_get_channel_info_cb(void *ctx,
3840 enum hostapd_hw_mode *hw_mode,
3841 u8 *channel)
3842{
3843 struct wpa_supplicant *wpa_s = ctx;
3844
3845 if (wpa_s->current_bss) {
3846 *hw_mode = ieee80211_freq_to_chan(wpa_s->current_bss->freq,
3847 channel);
3848 } else if (wpa_s->hw.num_modes) {
3849 *hw_mode = wpa_s->hw.modes[0].mode;
3850 } else {
3851 WPA_ASSERT(0);
3852 *hw_mode = 0;
3853 }
3854}
3855
3856
3857static int wpas_fst_get_hw_modes(void *ctx, struct hostapd_hw_modes **modes)
3858{
3859 struct wpa_supplicant *wpa_s = ctx;
3860
3861 *modes = wpa_s->hw.modes;
3862 return wpa_s->hw.num_modes;
3863}
3864
3865
84bcb4e7 3866static void wpas_fst_set_ies_cb(void *ctx, const struct wpabuf *fst_ies)
b36a3a65
AN		 3867{
3868 struct wpa_supplicant *wpa_s = ctx;
3869
b7a07937 3870 wpa_hexdump_buf(MSG_DEBUG, "FST: Set IEs", fst_ies);
b36a3a65
AN		 3871 wpa_s->fst_ies = fst_ies;
3872}
3873
3874
3875static int wpas_fst_send_action_cb(void *ctx, const u8 *da, struct wpabuf *data)
3876{
3877 struct wpa_supplicant *wpa_s = ctx;
3878
3879 WPA_ASSERT(os_memcmp(wpa_s->bssid, da, ETH_ALEN) == 0);
3880 return wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
3881 wpa_s->own_addr, wpa_s->bssid,
3882 wpabuf_head(data), wpabuf_len(data),
3883 0);
3884}
3885
3886
a0f04da5 3887static const struct wpabuf * wpas_fst_get_mb_ie_cb(void *ctx, const u8 *addr)
b36a3a65
AN		 3888{
3889 struct wpa_supplicant *wpa_s = ctx;
3890
3891 WPA_ASSERT(os_memcmp(wpa_s->bssid, addr, ETH_ALEN) == 0);
3892 return wpa_s->received_mb_ies;
3893}
3894
3895
3896static void wpas_fst_update_mb_ie_cb(void *ctx, const u8 *addr,
3897 const u8 *buf, size_t size)
3898{
3899 struct wpa_supplicant *wpa_s = ctx;
3900 struct mb_ies_info info;
3901
3902 WPA_ASSERT(os_memcmp(wpa_s->bssid, addr, ETH_ALEN) == 0);
3903
3904 if (!mb_ies_info_by_ies(&info, buf, size)) {
3905 wpabuf_free(wpa_s->received_mb_ies);
3906 wpa_s->received_mb_ies = mb_ies_by_info(&info);
3907 }
3908}
3909
3910
3911const u8 * wpas_fst_get_peer_first(void *ctx, struct fst_get_peer_ctx **get_ctx,
3912 Boolean mb_only)
3913{
3914 struct wpa_supplicant *wpa_s = ctx;
3915
3916 *get_ctx = NULL;
3917 if (!is_zero_ether_addr(wpa_s->bssid))
3918 return (wpa_s->received_mb_ies || !mb_only) ?
3919 wpa_s->bssid : NULL;
3920 return NULL;
3921}
3922
3923
3924const u8 * wpas_fst_get_peer_next(void *ctx, struct fst_get_peer_ctx **get_ctx,
3925 Boolean mb_only)
3926{
3927 return NULL;
3928}
3929
3930void fst_wpa_supplicant_fill_iface_obj(struct wpa_supplicant *wpa_s,
3931 struct fst_wpa_obj *iface_obj)
3932{
3933 iface_obj->ctx = wpa_s;
3934 iface_obj->get_bssid = wpas_fst_get_bssid_cb;
3935 iface_obj->get_channel_info = wpas_fst_get_channel_info_cb;
3936 iface_obj->get_hw_modes = wpas_fst_get_hw_modes;
3937 iface_obj->set_ies = wpas_fst_set_ies_cb;
3938 iface_obj->send_action = wpas_fst_send_action_cb;
3939 iface_obj->get_mb_ie = wpas_fst_get_mb_ie_cb;
3940 iface_obj->update_mb_ie = wpas_fst_update_mb_ie_cb;
3941 iface_obj->get_peer_first = wpas_fst_get_peer_first;
3942 iface_obj->get_peer_next = wpas_fst_get_peer_next;
3943}
3944#endif /* CONFIG_FST */
3945
a520bf4a 3946static int wpas_set_wowlan_triggers(struct wpa_supplicant *wpa_s,
6cbdb0c5 3947 const struct wpa_driver_capa *capa)
e4fa8b12 3948{
88cb27c7
DS		 3949 struct wowlan_triggers *triggers;
3950 int ret = 0;
e4fa8b12
EP		 3951
3952 if (!wpa_s->conf->wowlan_triggers)
3953 return 0;
3954
88cb27c7
DS		 3955 triggers = wpa_get_wowlan_triggers(wpa_s->conf->wowlan_triggers, capa);
3956 if (triggers) {
3957 ret = wpa_drv_wowlan(wpa_s, triggers);
3958 os_free(triggers);
e4fa8b12 3959 }
e4fa8b12
EP		 3960 return ret;
3961}
3962
3963
e903d32d
KV		 3964static enum wpa_radio_work_band wpas_freq_to_band(int freq)
3965{
3966 if (freq < 3000)
3967 return BAND_2_4_GHZ;
3968 if (freq > 50000)
3969 return BAND_60_GHZ;
3970 return BAND_5_GHZ;
3971}
3972
3973
3974static unsigned int wpas_get_bands(struct wpa_supplicant *wpa_s,
3975 const int *freqs)
3976{
3977 int i;
3978 unsigned int band = 0;
3979
3980 if (freqs) {
3981 /* freqs are specified for the radio work */
3982 for (i = 0; freqs[i]; i++)
3983 band |= wpas_freq_to_band(freqs[i]);
3984 } else {
3985 /*
3986 * freqs are not specified, implies all
3987 * the supported freqs by HW
3988 */
3989 for (i = 0; i < wpa_s->hw.num_modes; i++) {
3990 if (wpa_s->hw.modes[i].num_channels != 0) {
3991 if (wpa_s->hw.modes[i].mode ==
3992 HOSTAPD_MODE_IEEE80211B ||
3993 wpa_s->hw.modes[i].mode ==
3994 HOSTAPD_MODE_IEEE80211G)
3995 band |= BAND_2_4_GHZ;
3996 else if (wpa_s->hw.modes[i].mode ==
3997 HOSTAPD_MODE_IEEE80211A)
3998 band |= BAND_5_GHZ;
3999 else if (wpa_s->hw.modes[i].mode ==
4000 HOSTAPD_MODE_IEEE80211AD)
4001 band |= BAND_60_GHZ;
4002 else if (wpa_s->hw.modes[i].mode ==
4003 HOSTAPD_MODE_IEEE80211ANY)
4004 band = BAND_2_4_GHZ | BAND_5_GHZ |
4005 BAND_60_GHZ;
4006 }
4007 }
4008 }
4009
4010 return band;
4011}
4012
4013
202dec2a
JM		 4014static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
4015 const char *rn)
4016{
4017 struct wpa_supplicant *iface = wpa_s->global->ifaces;
4018 struct wpa_radio *radio;
4019
4020 while (rn && iface) {
4021 radio = iface->radio;
4022 if (radio && os_strcmp(rn, radio->name) == 0) {
4023 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
4024 wpa_s->ifname, rn);
4025 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
4026 return radio;
4027 }
b154a24e
TB		 4028
4029 iface = iface->next;
202dec2a
JM		 4030 }
4031
4032 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
4033 wpa_s->ifname, rn ? rn : "N/A");
4034 radio = os_zalloc(sizeof(*radio));
4035 if (radio == NULL)
4036 return NULL;
4037
4038 if (rn)
4039 os_strlcpy(radio->name, rn, sizeof(radio->name));
4040 dl_list_init(&radio->ifaces);
b1ae396f 4041 dl_list_init(&radio->work);
202dec2a
JM		 4042 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
4043
4044 return radio;
4045}
4046
4047
b1ae396f
JM		 4048static void radio_work_free(struct wpa_radio_work *work)
4049{
d12a51b5
JM		 4050 if (work->wpa_s->scan_work == work) {
4051 /* This should not really happen. */
4052 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as scan_work",
4053 work->type, work, work->started);
4054 work->wpa_s->scan_work = NULL;
4055 }
4056
1b5d4714
JM		 4057#ifdef CONFIG_P2P
4058 if (work->wpa_s->p2p_scan_work == work) {
4059 /* This should not really happen. */
4060 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as p2p_scan_work",
4061 work->type, work, work->started);
4062 work->wpa_s->p2p_scan_work = NULL;
4063 }
4064#endif /* CONFIG_P2P */
4065
e903d32d
KV		 4066 if (work->started) {
4067 work->wpa_s->radio->num_active_works--;
4068 wpa_dbg(work->wpa_s, MSG_DEBUG,
4069 "radio_work_free('%s'@%p: num_active_works --> %u",
4070 work->type, work,
4071 work->wpa_s->radio->num_active_works);
4072 }
4073
b1ae396f
JM		 4074 dl_list_del(&work->list);
4075 os_free(work);
4076}
4077
4078
e903d32d
KV		 4079static struct wpa_radio_work * radio_work_get_next_work(struct wpa_radio *radio)
4080{
4081 struct wpa_radio_work *active_work = NULL;
4082 struct wpa_radio_work *tmp;
4083
4084 /* Get the active work to know the type and band. */
4085 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work, list) {
4086 if (tmp->started) {
4087 active_work = tmp;
4088 break;
4089 }
4090 }
4091
4092 if (!active_work) {
4093 /* No active work, start one */
4094 radio->num_active_works = 0;
4095 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work,
4096 list) {
4097 if (os_strcmp(tmp->type, "scan") == 0 &&
4098 radio->external_scan_running &&
4099 (((struct wpa_driver_scan_params *)
4100 tmp->ctx)->only_new_results ||
4101 tmp->wpa_s->clear_driver_scan_cache))
4102 continue;
4103 return tmp;
4104 }
4105 return NULL;
4106 }
4107
4108 if (os_strcmp(active_work->type, "sme-connect") == 0 ||
4109 os_strcmp(active_work->type, "connect") == 0) {
4110 /*
4111 * If the active work is either connect or sme-connect,
4112 * do not parallelize them with other radio works.
4113 */
4114 wpa_dbg(active_work->wpa_s, MSG_DEBUG,
4115 "Do not parallelize radio work with %s",
4116 active_work->type);
4117 return NULL;
4118 }
4119
4120 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work, list) {
4121 if (tmp->started)
4122 continue;
4123
4124 /*
4125 * If connect or sme-connect are enqueued, parallelize only
4126 * those operations ahead of them in the queue.
4127 */
4128 if (os_strcmp(tmp->type, "connect") == 0 ||
4129 os_strcmp(tmp->type, "sme-connect") == 0)
4130 break;
4131
4132 /*
4133 * Check that the radio works are distinct and
4134 * on different bands.
4135 */
4136 if (os_strcmp(active_work->type, tmp->type) != 0 &&
4137 (active_work->bands != tmp->bands)) {
4138 /*
4139 * If a scan has to be scheduled through nl80211 scan
4140 * interface and if an external scan is already running,
4141 * do not schedule the scan since it is likely to get
4142 * rejected by kernel.
4143 */
4144 if (os_strcmp(tmp->type, "scan") == 0 &&
4145 radio->external_scan_running &&
4146 (((struct wpa_driver_scan_params *)
4147 tmp->ctx)->only_new_results ||
4148 tmp->wpa_s->clear_driver_scan_cache))
4149 continue;
4150
4151 wpa_dbg(active_work->wpa_s, MSG_DEBUG,
4152 "active_work:%s new_work:%s",
4153 active_work->type, tmp->type);
4154 return tmp;
4155 }
4156 }
4157
4158 /* Did not find a radio work to schedule in parallel. */
4159 return NULL;
4160}
4161
4162
b1ae396f
JM		 4163static void radio_start_next_work(void *eloop_ctx, void *timeout_ctx)
4164{
4165 struct wpa_radio *radio = eloop_ctx;
4166 struct wpa_radio_work *work;
4167 struct os_reltime now, diff;
6428d0a7 4168 struct wpa_supplicant *wpa_s;
b1ae396f
JM		 4169
4170 work = dl_list_first(&radio->work, struct wpa_radio_work, list);
e903d32d
KV		 4171 if (work == NULL) {
4172 radio->num_active_works = 0;
b1ae396f 4173 return;
e903d32d 4174 }
b1ae396f 4175
6428d0a7
JM		 4176 wpa_s = dl_list_first(&radio->ifaces, struct wpa_supplicant,
4177 radio_list);
e903d32d
KV		 4178
4179 if (!(wpa_s &&
4180 wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS)) {
4181 if (work->started)
4182 return; /* already started and still in progress */
4183
4184 if (wpa_s && wpa_s->radio->external_scan_running) {
4185 wpa_printf(MSG_DEBUG, "Delay radio work start until externally triggered scan completes");
4186 return;
4187 }
4188 } else {
4189 work = NULL;
4190 if (radio->num_active_works < MAX_ACTIVE_WORKS) {
4191 /* get the work to schedule next */
4192 work = radio_work_get_next_work(radio);
4193 }
4194 if (!work)
4195 return;
6428d0a7
JM		 4196 }
4197
e903d32d 4198 wpa_s = work->wpa_s;
b1ae396f
JM		 4199 os_get_reltime(&now);
4200 os_reltime_sub(&now, &work->time, &diff);
e903d32d
KV		 4201 wpa_dbg(wpa_s, MSG_DEBUG,
4202 "Starting radio work '%s'@%p after %ld.%06ld second wait",
b1ae396f
JM		 4203 work->type, work, diff.sec, diff.usec);
4204 work->started = 1;
4205 work->time = now;
e903d32d
KV		 4206 radio->num_active_works++;
4207
b1ae396f 4208 work->cb(work, 0);
e903d32d
KV		 4209
4210 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS) &&
4211 radio->num_active_works < MAX_ACTIVE_WORKS)
4212 radio_work_check_next(wpa_s);
b1ae396f
JM		 4213}
4214
4215
b3253ebb
AO		 4216/*
4217 * This function removes both started and pending radio works running on
4218 * the provided interface's radio.
4219 * Prior to the removal of the radio work, its callback (cb) is called with
4220 * deinit set to be 1. Each work's callback is responsible for clearing its
4221 * internal data and restoring to a correct state.
4222 * @wpa_s: wpa_supplicant data
4223 * @type: type of works to be removed
4224 * @remove_all: 1 to remove all the works on this radio, 0 to remove only
4225 * this interface's works.
4226 */
4227void radio_remove_works(struct wpa_supplicant *wpa_s,
4228 const char *type, int remove_all)
b1ae396f
JM		 4229{
4230 struct wpa_radio_work *work, *tmp;
4231 struct wpa_radio *radio = wpa_s->radio;
4232
4233 dl_list_for_each_safe(work, tmp, &radio->work, struct wpa_radio_work,
4234 list) {
b3253ebb 4235 if (type && os_strcmp(type, work->type) != 0)
b1ae396f 4236 continue;
b3253ebb
AO		 4237
4238 /* skip other ifaces' works */
4239 if (!remove_all && work->wpa_s != wpa_s)
b1ae396f 4240 continue;
b3253ebb
AO		 4241
4242 wpa_dbg(wpa_s, MSG_DEBUG, "Remove radio work '%s'@%p%s",
4243 work->type, work, work->started ? " (started)" : "");
b1ae396f
JM		 4244 work->cb(work, 1);
4245 radio_work_free(work);
4246 }
b3253ebb
AO		 4247
4248 /* in case we removed the started work */
4249 radio_work_check_next(wpa_s);
b1ae396f
JM		 4250}
4251
4252
202dec2a
JM		 4253static void radio_remove_interface(struct wpa_supplicant *wpa_s)
4254{
4255 struct wpa_radio *radio = wpa_s->radio;
4256
4257 if (!radio)
4258 return;
4259
4260 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
4261 wpa_s->ifname, radio->name);
4262 dl_list_del(&wpa_s->radio_list);
c46235aa
AO		 4263 radio_remove_works(wpa_s, NULL, 0);
4264 wpa_s->radio = NULL;
4265 if (!dl_list_empty(&radio->ifaces))
202dec2a
JM		 4266 return; /* Interfaces remain for this radio */
4267
4268 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
b1ae396f 4269 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
202dec2a
JM		 4270 os_free(radio);
4271}
4272
4273
6428d0a7 4274void radio_work_check_next(struct wpa_supplicant *wpa_s)
b1ae396f
JM		 4275{
4276 struct wpa_radio *radio = wpa_s->radio;
4277
4278 if (dl_list_empty(&radio->work))
4279 return;
e3745228
JM		 4280 if (wpa_s->ext_work_in_progress) {
4281 wpa_printf(MSG_DEBUG,
4282 "External radio work in progress - delay start of pending item");
4283 return;
4284 }
b1ae396f
JM		 4285 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
4286 eloop_register_timeout(0, 0, radio_start_next_work, radio, NULL);
4287}
4288
4289
4290/**
4291 * radio_add_work - Add a radio work item
4292 * @wpa_s: Pointer to wpa_supplicant data
4293 * @freq: Frequency of the offchannel operation in MHz or 0
4294 * @type: Unique identifier for each type of work
4295 * @next: Force as the next work to be executed
4296 * @cb: Callback function for indicating when radio is available
4297 * @ctx: Context pointer for the work (work->ctx in cb())
4298 * Returns: 0 on success, -1 on failure
4299 *
4300 * This function is used to request time for an operation that requires
4301 * exclusive radio control. Once the radio is available, the registered callback
4302 * function will be called. radio_work_done() must be called once the exclusive
4303 * radio operation has been completed, so that the radio is freed for other
4304 * operations. The special case of deinit=1 is used to free the context data
4305 * during interface removal. That does not allow the callback function to start
4306 * the radio operation, i.e., it must free any resources allocated for the radio
4307 * work and return.
4308 *
4309 * The @freq parameter can be used to indicate a single channel on which the
4310 * offchannel operation will occur. This may allow multiple radio work
4311 * operations to be performed in parallel if they apply for the same channel.
4312 * Setting this to 0 indicates that the work item may use multiple channels or
4313 * requires exclusive control of the radio.
4314 */
4315int radio_add_work(struct wpa_supplicant *wpa_s, unsigned int freq,
4316 const char *type, int next,
4317 void (*cb)(struct wpa_radio_work *work, int deinit),
4318 void *ctx)
4319{
e903d32d 4320 struct wpa_radio *radio = wpa_s->radio;
b1ae396f
JM		 4321 struct wpa_radio_work *work;
4322 int was_empty;
4323
4324 work = os_zalloc(sizeof(*work));
4325 if (work == NULL)
4326 return -1;
4327 wpa_dbg(wpa_s, MSG_DEBUG, "Add radio work '%s'@%p", type, work);
4328 os_get_reltime(&work->time);
4329 work->freq = freq;
4330 work->type = type;
4331 work->wpa_s = wpa_s;
4332 work->cb = cb;
4333 work->ctx = ctx;
4334
e903d32d
KV		 4335 if (freq)
4336 work->bands = wpas_freq_to_band(freq);
4337 else if (os_strcmp(type, "scan") == 0 ||
4338 os_strcmp(type, "p2p-scan") == 0)
4339 work->bands = wpas_get_bands(wpa_s,
4340 ((struct wpa_driver_scan_params *)
4341 ctx)->freqs);
4342 else
4343 work->bands = wpas_get_bands(wpa_s, NULL);
4344
b1ae396f
JM		 4345 was_empty = dl_list_empty(&wpa_s->radio->work);
4346 if (next)
4347 dl_list_add(&wpa_s->radio->work, &work->list);
4348 else
4349 dl_list_add_tail(&wpa_s->radio->work, &work->list);
4350 if (was_empty) {
4351 wpa_dbg(wpa_s, MSG_DEBUG, "First radio work item in the queue - schedule start immediately");
4352 radio_work_check_next(wpa_s);
e903d32d
KV		 4353 } else if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS)
4354 && radio->num_active_works < MAX_ACTIVE_WORKS) {
4355 wpa_dbg(wpa_s, MSG_DEBUG,
4356 "Try to schedule a radio work (num_active_works=%u)",
4357 radio->num_active_works);
4358 radio_work_check_next(wpa_s);
b1ae396f
JM		 4359 }
4360
4361 return 0;
4362}
4363
4364
4365/**
4366 * radio_work_done - Indicate that a radio work item has been completed
4367 * @work: Completed work
4368 *
4369 * This function is called once the callback function registered with
4370 * radio_add_work() has completed its work.
4371 */
4372void radio_work_done(struct wpa_radio_work *work)
4373{
4374 struct wpa_supplicant *wpa_s = work->wpa_s;
4375 struct os_reltime now, diff;
1f965e62 4376 unsigned int started = work->started;
b1ae396f
JM		 4377
4378 os_get_reltime(&now);
4379 os_reltime_sub(&now, &work->time, &diff);
1f965e62
JM		 4380 wpa_dbg(wpa_s, MSG_DEBUG, "Radio work '%s'@%p %s in %ld.%06ld seconds",
4381 work->type, work, started ? "done" : "canceled",
4382 diff.sec, diff.usec);
b1ae396f 4383 radio_work_free(work);
1f965e62
JM		 4384 if (started)
4385 radio_work_check_next(wpa_s);
b1ae396f
JM		 4386}
4387
4388
a7f5271d
JM		 4389struct wpa_radio_work *
4390radio_work_pending(struct wpa_supplicant *wpa_s, const char *type)
f0e30c84
JM		 4391{
4392 struct wpa_radio_work *work;
4393 struct wpa_radio *radio = wpa_s->radio;
4394
4395 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
4396 if (work->wpa_s == wpa_s && os_strcmp(work->type, type) == 0)
a7f5271d 4397 return work;
f0e30c84
JM		 4398 }
4399
a7f5271d 4400 return NULL;
f0e30c84
JM		 4401}
4402
4403
73c00fd7
JM		 4404static int wpas_init_driver(struct wpa_supplicant *wpa_s,
4405 struct wpa_interface *iface)
4406{
202dec2a 4407 const char *ifname, *driver, *rn;
73c00fd7
JM		 4408
4409 driver = iface->driver;
4410next_driver:
4411 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
4412 return -1;
4413
4414 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
4415 if (wpa_s->drv_priv == NULL) {
4416 const char *pos;
4417 pos = driver ? os_strchr(driver, ',') : NULL;
4418 if (pos) {
4419 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
4420 "driver interface - try next driver wrapper");
4421 driver = pos + 1;
4422 goto next_driver;
4423 }
4424 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
4425 "interface");
4426 return -1;
4427 }
4428 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
4429 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
4430 "driver_param '%s'", wpa_s->conf->driver_param);
4431 return -1;
4432 }
4433
4434 ifname = wpa_drv_get_ifname(wpa_s);
4435 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
4436 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
4437 "interface name with '%s'", ifname);
4438 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
4439 }
4440
95bf699f 4441 rn = wpa_driver_get_radio_name(wpa_s);
202dec2a
JM		 4442 if (rn && rn[0] == '\0')
4443 rn = NULL;
4444
4445 wpa_s->radio = radio_add_interface(wpa_s, rn);
4446 if (wpa_s->radio == NULL)
4447 return -1;
4448
73c00fd7
JM		 4449 return 0;
4450}
4451
4452
6fc6879b
JM		 4453static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
4454 struct wpa_interface *iface)
4455{
362f781e 4456 struct wpa_driver_capa capa;
6cbdb0c5 4457 int capa_res;
362f781e 4458
6fc6879b
JM		 4459 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
4460 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
4461 iface->confname ? iface->confname : "N/A",
4462 iface->driver ? iface->driver : "default",
4463 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
4464 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
4465
6fc6879b
JM		 4466 if (iface->confname) {
4467#ifdef CONFIG_BACKEND_FILE
4468 wpa_s->confname = os_rel2abs_path(iface->confname);
4469 if (wpa_s->confname == NULL) {
4470 wpa_printf(MSG_ERROR, "Failed to get absolute path "
4471 "for configuration file '%s'.",
4472 iface->confname);
4473 return -1;
4474 }
4475 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
4476 iface->confname, wpa_s->confname);
4477#else /* CONFIG_BACKEND_FILE */
4478 wpa_s->confname = os_strdup(iface->confname);
4479#endif /* CONFIG_BACKEND_FILE */
e6304cad 4480 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
6fc6879b
JM		 4481 if (wpa_s->conf == NULL) {
4482 wpa_printf(MSG_ERROR, "Failed to read or parse "
4483 "configuration '%s'.", wpa_s->confname);
4484 return -1;
4485 }
e6304cad
DS		 4486 wpa_s->confanother = os_rel2abs_path(iface->confanother);
4487 wpa_config_read(wpa_s->confanother, wpa_s->conf);
6fc6879b
JM		 4488
4489 /*
4490 * Override ctrl_interface and driver_param if set on command
4491 * line.
4492 */
4493 if (iface->ctrl_interface) {
4494 os_free(wpa_s->conf->ctrl_interface);
4495 wpa_s->conf->ctrl_interface =
4496 os_strdup(iface->ctrl_interface);
4497 }
4498
4499 if (iface->driver_param) {
4500 os_free(wpa_s->conf->driver_param);
4501 wpa_s->conf->driver_param =
4502 os_strdup(iface->driver_param);
4503 }
78f79fe5
JM		 4504
4505 if (iface->p2p_mgmt && !iface->ctrl_interface) {
4506 os_free(wpa_s->conf->ctrl_interface);
4507 wpa_s->conf->ctrl_interface = NULL;
4508 }
6fc6879b
JM		 4509 } else
4510 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
4511 iface->driver_param);
4512
4513 if (wpa_s->conf == NULL) {
4514 wpa_printf(MSG_ERROR, "\nNo configuration found.");
4515 return -1;
4516 }
4517
4518 if (iface->ifname == NULL) {
4519 wpa_printf(MSG_ERROR, "\nInterface name is required.");
4520 return -1;
4521 }
4522 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
4523 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
4524 iface->ifname);
4525 return -1;
4526 }
4527 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
4528
4529 if (iface->bridge_ifname) {
4530 if (os_strlen(iface->bridge_ifname) >=
4531 sizeof(wpa_s->bridge_ifname)) {
4532 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
4533 "name '%s'.", iface->bridge_ifname);
4534 return -1;
4535 }
4536 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
4537 sizeof(wpa_s->bridge_ifname));
4538 }
4539
6fc6879b
JM		 4540 /* RSNA Supplicant Key Management - INITIALIZE */
4541 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
4542 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
4543
4544 /* Initialize driver interface and register driver event handler before
4545 * L2 receive handler so that association events are processed before
4546 * EAPOL-Key packets if both become available for the same select()
4547 * call. */
73c00fd7 4548 if (wpas_init_driver(wpa_s, iface) < 0)
362f781e
JM		 4549 return -1;
4550
6fc6879b
JM		 4551 if (wpa_supplicant_init_wpa(wpa_s) < 0)
4552 return -1;
4553
4554 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
4555 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
4556 NULL);
4557 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
4558
4559 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
4560 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
4561 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
f049052b
BG		 4562 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4563 "dot11RSNAConfigPMKLifetime");
6fc6879b
JM		 4564 return -1;
4565 }
4566
4567 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
4568 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
4569 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
f049052b 4570 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
6fc6879b
JM		 4571 "dot11RSNAConfigPMKReauthThreshold");
4572 return -1;
4573 }
4574
4575 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
4576 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
4577 wpa_s->conf->dot11RSNAConfigSATimeout)) {
f049052b
BG		 4578 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4579 "dot11RSNAConfigSATimeout");
6fc6879b
JM		 4580 return -1;
4581 }
4582
6bf731e8
CL		 4583 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
4584 &wpa_s->hw.num_modes,
4585 &wpa_s->hw.flags);
a1b790eb
JM		 4586 if (wpa_s->hw.modes) {
4587 u16 i;
4588
4589 for (i = 0; i < wpa_s->hw.num_modes; i++) {
4590 if (wpa_s->hw.modes[i].vht_capab) {
4591 wpa_s->hw_capab = CAPAB_VHT;
4592 break;
4593 }
4594
4595 if (wpa_s->hw.modes[i].ht_capab &
4596 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET)
4597 wpa_s->hw_capab = CAPAB_HT40;
4598 else if (wpa_s->hw.modes[i].ht_capab &&
4599 wpa_s->hw_capab == CAPAB_NO_HT_VHT)
4600 wpa_s->hw_capab = CAPAB_HT;
4601 }
4602 }
6bf731e8 4603
6cbdb0c5
JM		 4604 capa_res = wpa_drv_get_capa(wpa_s, &capa);
4605 if (capa_res == 0) {
c58ab8f2 4606 wpa_s->drv_capa_known = 1;
814782b9 4607 wpa_s->drv_flags = capa.flags;
349493bd 4608 wpa_s->drv_enc = capa.enc;
04ee647d 4609 wpa_s->drv_smps_modes = capa.smps_modes;
f936b73c 4610 wpa_s->drv_rrm_flags = capa.rrm_flags;
4f73d88a 4611 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
814782b9 4612 wpa_s->max_scan_ssids = capa.max_scan_ssids;
cbdf3507 4613 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
32c02261
AS		 4614 wpa_s->max_sched_scan_plans = capa.max_sched_scan_plans;
4615 wpa_s->max_sched_scan_plan_interval =
4616 capa.max_sched_scan_plan_interval;
4617 wpa_s->max_sched_scan_plan_iterations =
4618 capa.max_sched_scan_plan_iterations;
cbdf3507 4619 wpa_s->sched_scan_supported = capa.sched_scan_supported;
b59e6f26 4620 wpa_s->max_match_sets = capa.max_match_sets;
814782b9 4621 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
c4ea4c5c 4622 wpa_s->max_stations = capa.max_stations;
8cd6b7bc
JB		 4623 wpa_s->extended_capa = capa.extended_capa;
4624 wpa_s->extended_capa_mask = capa.extended_capa_mask;
4625 wpa_s->extended_capa_len = capa.extended_capa_len;
4752147d
IP		 4626 wpa_s->num_multichan_concurrent =
4627 capa.num_multichan_concurrent;
471cd6e1 4628 wpa_s->wmm_ac_supported = capa.wmm_ac_supported;
56c76fa5
IP		 4629
4630 if (capa.mac_addr_rand_scan_supported)
4631 wpa_s->mac_addr_rand_supported |= MAC_ADDR_RAND_SCAN;
4632 if (wpa_s->sched_scan_supported &&
4633 capa.mac_addr_rand_sched_scan_supported)
4634 wpa_s->mac_addr_rand_supported |=
4635 (MAC_ADDR_RAND_SCHED_SCAN | MAC_ADDR_RAND_PNO);
814782b9
JM		 4636 }
4637 if (wpa_s->max_remain_on_chan == 0)
4638 wpa_s->max_remain_on_chan = 1000;
4639
c68f6200
AS		 4640 /*
4641 * Only take p2p_mgmt parameters when P2P Device is supported.
4642 * Doing it here as it determines whether l2_packet_init() will be done
4643 * during wpa_supplicant_driver_init().
4644 */
4645 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
4646 wpa_s->p2p_mgmt = iface->p2p_mgmt;
4647 else
4648 iface->p2p_mgmt = 1;
4649
4752147d
IP		 4650 if (wpa_s->num_multichan_concurrent == 0)
4651 wpa_s->num_multichan_concurrent = 1;
4652
6fc6879b
JM		 4653 if (wpa_supplicant_driver_init(wpa_s) < 0)
4654 return -1;
4655
281ff0aa 4656#ifdef CONFIG_TDLS
1c42b42f
JM		 4657 if ((!iface->p2p_mgmt ||
4658 !(wpa_s->drv_flags &
4659 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
4660 wpa_tdls_init(wpa_s->wpa))
281ff0aa
GP		 4661 return -1;
4662#endif /* CONFIG_TDLS */
4663
315ce40a
JM		 4664 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
4665 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
f049052b 4666 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
6d158490
LR		 4667 return -1;
4668 }
4669
b36a3a65
AN		 4670#ifdef CONFIG_FST
4671 if (wpa_s->conf->fst_group_id) {
4672 struct fst_iface_cfg cfg;
4673 struct fst_wpa_obj iface_obj;
4674
4675 fst_wpa_supplicant_fill_iface_obj(wpa_s, &iface_obj);
4676 os_strlcpy(cfg.group_id, wpa_s->conf->fst_group_id,
4677 sizeof(cfg.group_id));
4678 cfg.priority = wpa_s->conf->fst_priority;
4679 cfg.llt = wpa_s->conf->fst_llt;
4680
4681 wpa_s->fst = fst_attach(wpa_s->ifname, wpa_s->own_addr,
4682 &iface_obj, &cfg);
4683 if (!wpa_s->fst) {
4684 wpa_msg(wpa_s, MSG_ERROR,
4685 "FST: Cannot attach iface %s to group %s",
4686 wpa_s->ifname, cfg.group_id);
4687 return -1;
4688 }
4689 }
4690#endif /* CONFIG_FST */
4691
116654ce
JM		 4692 if (wpas_wps_init(wpa_s))
4693 return -1;
4694
6fc6879b
JM		 4695 if (wpa_supplicant_init_eapol(wpa_s) < 0)
4696 return -1;
4697 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
4698
4699 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
4700 if (wpa_s->ctrl_iface == NULL) {
4701 wpa_printf(MSG_ERROR,
4702 "Failed to initialize control interface '%s'.\n"
4703 "You may have another wpa_supplicant process "
4704 "already running or the file was\n"
4705 "left by an unclean termination of wpa_supplicant "
4706 "in which case you will need\n"
4707 "to manually remove this file before starting "
4708 "wpa_supplicant again.\n",
4709 wpa_s->conf->ctrl_interface);
4710 return -1;
4711 }
4712
04ea7b79
JM		 4713 wpa_s->gas = gas_query_init(wpa_s);
4714 if (wpa_s->gas == NULL) {
4715 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
4716 return -1;
4717 }
4718
c68f6200 4719 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
f049052b 4720 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
b22128ef
JM		 4721 return -1;
4722 }
b22128ef 4723
83922c2d
JM		 4724 if (wpa_bss_init(wpa_s) < 0)
4725 return -1;
83922c2d 4726
e4fa8b12
EP		 4727 /*
4728 * Set Wake-on-WLAN triggers, if configured.
4729 * Note: We don't restore/remove the triggers on shutdown (it doesn't
4730 * have effect anyway when the interface is down).
4731 */
6cbdb0c5 4732 if (capa_res == 0 && wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
e4fa8b12
EP		 4733 return -1;
4734
ec7b97ab
JM		 4735#ifdef CONFIG_EAP_PROXY
4736{
4737 size_t len;
07041c6f
NJ		 4738 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
4739 &len);
ec7b97ab
JM		 4740 if (wpa_s->mnc_len > 0) {
4741 wpa_s->imsi[len] = '\0';
4742 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
4743 wpa_s->imsi, wpa_s->mnc_len);
4744 } else {
4745 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
4746 }
4747}
4748#endif /* CONFIG_EAP_PROXY */
4749
f64adcd7
JM		 4750 if (pcsc_reader_init(wpa_s) < 0)
4751 return -1;
4752
306ae225
JM		 4753 if (wpas_init_ext_pw(wpa_s) < 0)
4754 return -1;
4755
b361d580
AK		 4756 wpas_rrm_reset(wpa_s);
4757
32c02261
AS		 4758 wpas_sched_scan_plans_set(wpa_s, wpa_s->conf->sched_scan_plans);
4759
ca9968a0
JM		 4760#ifdef CONFIG_HS20
4761 hs20_init(wpa_s);
4762#endif /* CONFIG_HS20 */
4763
6fc6879b
JM		 4764 return 0;
4765}
4766
4767
2ee055b3 4768static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
df509539 4769 int notify, int terminate)
6fc6879b 4770{
26fc96e8
JM		 4771 struct wpa_global *global = wpa_s->global;
4772 struct wpa_supplicant *iface, *prev;
4773
4774 if (wpa_s == wpa_s->parent)
4775 wpas_p2p_group_remove(wpa_s, "*");
4776
4777 iface = global->ifaces;
4778 while (iface) {
4779 if (iface == wpa_s || iface->parent != wpa_s) {
4780 iface = iface->next;
4781 continue;
4782 }
4783 wpa_printf(MSG_DEBUG,
4784 "Remove remaining child interface %s from parent %s",
4785 iface->ifname, wpa_s->ifname);
4786 prev = iface;
4787 iface = iface->next;
4788 wpa_supplicant_remove_iface(global, prev, terminate);
4789 }
4790
e679f140 4791 wpa_s->disconnected = 1;
6fc6879b
JM		 4792 if (wpa_s->drv_priv) {
4793 wpa_supplicant_deauthenticate(wpa_s,
4794 WLAN_REASON_DEAUTH_LEAVING);
4795
6fc6879b
JM		 4796 wpa_drv_set_countermeasures(wpa_s, 0);
4797 wpa_clear_keys(wpa_s, NULL);
4798 }
4799
8e56d189 4800 wpa_supplicant_cleanup(wpa_s);
bd10d938 4801 wpas_p2p_deinit_iface(wpa_s);
ab28911d 4802
1f965e62 4803 wpas_ctrl_radio_work_flush(wpa_s);
202dec2a
JM		 4804 radio_remove_interface(wpa_s);
4805
b36a3a65
AN		 4806#ifdef CONFIG_FST
4807 if (wpa_s->fst) {
4808 fst_detach(wpa_s->fst);
4809 wpa_s->fst = NULL;
4810 }
4811 if (wpa_s->received_mb_ies) {
4812 wpabuf_free(wpa_s->received_mb_ies);
4813 wpa_s->received_mb_ies = NULL;
4814 }
4815#endif /* CONFIG_FST */
4816
6fc6879b
JM		 4817 if (wpa_s->drv_priv)
4818 wpa_drv_deinit(wpa_s);
2523ff6e
DS		 4819
4820 if (notify)
4821 wpas_notify_iface_removed(wpa_s);
f0811516
DS		 4822
4823 if (terminate)
4824 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
4825
4826 if (wpa_s->ctrl_iface) {
4827 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
4828 wpa_s->ctrl_iface = NULL;
4829 }
4830
603a3f34
JL		 4831#ifdef CONFIG_MESH
4832 if (wpa_s->ifmsh) {
4833 wpa_supplicant_mesh_iface_deinit(wpa_s, wpa_s->ifmsh);
4834 wpa_s->ifmsh = NULL;
4835 }
4836#endif /* CONFIG_MESH */
4837
f0811516
DS		 4838 if (wpa_s->conf != NULL) {
4839 wpa_config_free(wpa_s->conf);
4840 wpa_s->conf = NULL;
4841 }
18e00b5e 4842
a80651d0
KV		 4843 os_free(wpa_s->ssids_from_scan_req);
4844
18e00b5e 4845 os_free(wpa_s);
6fc6879b
JM		 4846}
4847
4848
4849/**
4850 * wpa_supplicant_add_iface - Add a new network interface
4851 * @global: Pointer to global data from wpa_supplicant_init()
4852 * @iface: Interface configuration options
1772d348 4853 * @parent: Parent interface or %NULL to assign new interface as parent
6fc6879b
JM		 4854 * Returns: Pointer to the created interface or %NULL on failure
4855 *
4856 * This function is used to add new network interfaces for %wpa_supplicant.
4857 * This can be called before wpa_supplicant_run() to add interfaces before the
4858 * main event loop has been started. In addition, new interfaces can be added
4859 * dynamically while %wpa_supplicant is already running. This could happen,
4860 * e.g., when a hotplug network adapter is inserted.
4861 */
4862struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
1772d348
JM		 4863 struct wpa_interface *iface,
4864 struct wpa_supplicant *parent)
6fc6879b
JM		 4865{
4866 struct wpa_supplicant *wpa_s;
d27df100 4867 struct wpa_interface t_iface;
8e56d189 4868 struct wpa_ssid *ssid;
6fc6879b
JM		 4869
4870 if (global == NULL || iface == NULL)
4871 return NULL;
4872
1772d348 4873 wpa_s = wpa_supplicant_alloc(parent);
6fc6879b
JM		 4874 if (wpa_s == NULL)
4875 return NULL;
4876
d8222ae3
JM		 4877 wpa_s->global = global;
4878
d27df100
JM		 4879 t_iface = *iface;
4880 if (global->params.override_driver) {
4881 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
4882 "('%s' -> '%s')",
4883 iface->driver, global->params.override_driver);
4884 t_iface.driver = global->params.override_driver;
4885 }
4886 if (global->params.override_ctrl_interface) {
4887 wpa_printf(MSG_DEBUG, "Override interface parameter: "
4888 "ctrl_interface ('%s' -> '%s')",
4889 iface->ctrl_interface,
4890 global->params.override_ctrl_interface);
4891 t_iface.ctrl_interface =
4892 global->params.override_ctrl_interface;
4893 }
4894 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
6fc6879b
JM		 4895 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
4896 iface->ifname);
df509539 4897 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
6fc6879b
JM		 4898 return NULL;
4899 }
4900
21efc940
TB		 4901 if (iface->p2p_mgmt == 0) {
4902 /* Notify the control interfaces about new iface */
4903 if (wpas_notify_iface_added(wpa_s)) {
4904 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
4905 return NULL;
4906 }
1bd3f426 4907
21efc940
TB		 4908 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
4909 wpas_notify_network_added(wpa_s, ssid);
4910 }
8e56d189 4911
6fc6879b
JM		 4912 wpa_s->next = global->ifaces;
4913 global->ifaces = wpa_s;
4914
f049052b 4915 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
99218999 4916 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
6fc6879b 4917
c3c4b3ed
JM		 4918#ifdef CONFIG_P2P
4919 if (wpa_s->global->p2p == NULL &&
74802c09 4920 !wpa_s->global->p2p_disabled && !wpa_s->conf->p2p_disabled &&
c3c4b3ed 4921 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) &&
f43c1ae7
IP		 4922 wpas_p2p_add_p2pdev_interface(
4923 wpa_s, wpa_s->global->params.conf_p2p_dev) < 0) {
c3c4b3ed
JM		 4924 wpa_printf(MSG_INFO,
4925 "P2P: Failed to enable P2P Device interface");
4926 /* Try to continue without. P2P will be disabled. */
4927 }
4928#endif /* CONFIG_P2P */
4929
6fc6879b
JM		 4930 return wpa_s;
4931}
4932
4933
4934/**
4935 * wpa_supplicant_remove_iface - Remove a network interface
4936 * @global: Pointer to global data from wpa_supplicant_init()
4937 * @wpa_s: Pointer to the network interface to be removed
4938 * Returns: 0 if interface was removed, -1 if interface was not found
4939 *
4940 * This function can be used to dynamically remove network interfaces from
4941 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
4942 * addition, this function is used to remove all remaining interfaces when
4943 * %wpa_supplicant is terminated.
4944 */
4945int wpa_supplicant_remove_iface(struct wpa_global *global,
df509539
DS		 4946 struct wpa_supplicant *wpa_s,
4947 int terminate)
6fc6879b
JM		 4948{
4949 struct wpa_supplicant *prev;
5b78493f
MH		 4950#ifdef CONFIG_MESH
4951 unsigned int mesh_if_created = wpa_s->mesh_if_created;
4952 char *ifname = NULL;
4953#endif /* CONFIG_MESH */
6fc6879b
JM		 4954
4955 /* Remove interface from the global list of interfaces */
4956 prev = global->ifaces;
4957 if (prev == wpa_s) {
4958 global->ifaces = wpa_s->next;
4959 } else {
4960 while (prev && prev->next != wpa_s)
4961 prev = prev->next;
4962 if (prev == NULL)
4963 return -1;
4964 prev->next = wpa_s->next;
4965 }
4966
f049052b 4967 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
6fc6879b 4968
5b78493f
MH		 4969#ifdef CONFIG_MESH
4970 if (mesh_if_created) {
4971 ifname = os_strdup(wpa_s->ifname);
4972 if (ifname == NULL) {
4973 wpa_dbg(wpa_s, MSG_ERROR,
4974 "mesh: Failed to malloc ifname");
4975 return -1;
4976 }
4977 }
4978#endif /* CONFIG_MESH */
4979
b22128ef
JM		 4980 if (global->p2p_group_formation == wpa_s)
4981 global->p2p_group_formation = NULL;
dbca75f8
JM		 4982 if (global->p2p_invite_group == wpa_s)
4983 global->p2p_invite_group = NULL;
df509539 4984 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
6fc6879b 4985
5b78493f
MH		 4986#ifdef CONFIG_MESH
4987 if (mesh_if_created) {
4988 wpa_drv_if_remove(global->ifaces, WPA_IF_MESH, ifname);
4989 os_free(ifname);
4990 }
4991#endif /* CONFIG_MESH */
4992
6fc6879b
JM		 4993 return 0;
4994}
4995
4996
cf83fb0b
PS		 4997/**
4998 * wpa_supplicant_get_eap_mode - Get the current EAP mode
4999 * @wpa_s: Pointer to the network interface
5000 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
5001 */
5002const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
5003{
5004 const char *eapol_method;
5005
5006 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
5007 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
5008 return "NO-EAP";
5009 }
5010
5011 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
5012 if (eapol_method == NULL)
5013 return "UNKNOWN-EAP";
5014
5015 return eapol_method;
5016}
5017
5018
6fc6879b
JM		 5019/**
5020 * wpa_supplicant_get_iface - Get a new network interface
5021 * @global: Pointer to global data from wpa_supplicant_init()
5022 * @ifname: Interface name
5023 * Returns: Pointer to the interface or %NULL if not found
5024 */
5025struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
5026 const char *ifname)
5027{
5028 struct wpa_supplicant *wpa_s;
5029
5030 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
5031 if (os_strcmp(wpa_s->ifname, ifname) == 0)
5032 return wpa_s;
5033 }
5034 return NULL;
5035}
5036
5037
50b16da1 5038#ifndef CONFIG_NO_WPA_MSG
4f1495ae
BG		 5039static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
5040{
5041 struct wpa_supplicant *wpa_s = ctx;
5042 if (wpa_s == NULL)
5043 return NULL;
5044 return wpa_s->ifname;
5045}
50b16da1 5046#endif /* CONFIG_NO_WPA_MSG */
4f1495ae
BG		 5047
5048
8c0d0ff2
JM		 5049#ifndef WPA_SUPPLICANT_CLEANUP_INTERVAL
5050#define WPA_SUPPLICANT_CLEANUP_INTERVAL 10
5051#endif /* WPA_SUPPLICANT_CLEANUP_INTERVAL */
5052
5053/* Periodic cleanup tasks */
5054static void wpas_periodic(void *eloop_ctx, void *timeout_ctx)
5055{
5056 struct wpa_global *global = eloop_ctx;
5057 struct wpa_supplicant *wpa_s;
5058
5059 eloop_register_timeout(WPA_SUPPLICANT_CLEANUP_INTERVAL, 0,
5060 wpas_periodic, global, NULL);
5061
5062#ifdef CONFIG_P2P
5063 if (global->p2p)
5064 p2p_expire_peers(global->p2p);
5065#endif /* CONFIG_P2P */
5066
3188aaba 5067 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
8c0d0ff2 5068 wpa_bss_flush_by_age(wpa_s, wpa_s->conf->bss_expiration_age);
3188aaba
JM		 5069#ifdef CONFIG_AP
5070 ap_periodic(wpa_s);
5071#endif /* CONFIG_AP */
5072 }
8c0d0ff2
JM		 5073}
5074
5075
6fc6879b
JM		 5076/**
5077 * wpa_supplicant_init - Initialize %wpa_supplicant
5078 * @params: Parameters for %wpa_supplicant
5079 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
5080 *
5081 * This function is used to initialize %wpa_supplicant. After successful
5082 * initialization, the returned data pointer can be used to add and remove
5083 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
5084 */
5085struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
5086{
5087 struct wpa_global *global;
ac305589 5088 int ret, i;
6fc6879b
JM		 5089
5090 if (params == NULL)
5091 return NULL;
5092
39e7d718
JM		 5093#ifdef CONFIG_DRIVER_NDIS
5094 {
5095 void driver_ndis_init_ops(void);
5096 driver_ndis_init_ops();
5097 }
5098#endif /* CONFIG_DRIVER_NDIS */
5099
50b16da1 5100#ifndef CONFIG_NO_WPA_MSG
4f1495ae 5101 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
50b16da1 5102#endif /* CONFIG_NO_WPA_MSG */
4f1495ae 5103
f4637fe0
JM		 5104 if (params->wpa_debug_file_path)
5105 wpa_debug_open_file(params->wpa_debug_file_path);
5106 else
5107 wpa_debug_setup_stdout();
daa70d49
SL		 5108 if (params->wpa_debug_syslog)
5109 wpa_debug_open_syslog();
4f68895e
JB		 5110 if (params->wpa_debug_tracing) {
5111 ret = wpa_debug_open_linux_tracing();
5112 if (ret) {
5113 wpa_printf(MSG_ERROR,
5114 "Failed to enable trace logging");
5115 return NULL;
5116 }
5117 }
6fc6879b 5118
12760815 5119 ret = eap_register_methods();
6fc6879b
JM		 5120 if (ret) {
5121 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
5122 if (ret == -2)
5123 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
5124 "the same EAP type.");
5125 return NULL;
5126 }
5127
5128 global = os_zalloc(sizeof(*global));
5129 if (global == NULL)
5130 return NULL;
b22128ef
JM		 5131 dl_list_init(&global->p2p_srv_bonjour);
5132 dl_list_init(&global->p2p_srv_upnp);
6fc6879b
JM		 5133 global->params.daemonize = params->daemonize;
5134 global->params.wait_for_monitor = params->wait_for_monitor;
5135 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
5136 if (params->pid_file)
5137 global->params.pid_file = os_strdup(params->pid_file);
5138 if (params->ctrl_interface)
5139 global->params.ctrl_interface =
5140 os_strdup(params->ctrl_interface);
29257565
JM		 5141 if (params->ctrl_interface_group)
5142 global->params.ctrl_interface_group =
5143 os_strdup(params->ctrl_interface_group);
d27df100
JM		 5144 if (params->override_driver)
5145 global->params.override_driver =
5146 os_strdup(params->override_driver);
5147 if (params->override_ctrl_interface)
5148 global->params.override_ctrl_interface =
5149 os_strdup(params->override_ctrl_interface);
d4e59795
G		 5150#ifdef CONFIG_P2P
5151 if (params->conf_p2p_dev)
5152 global->params.conf_p2p_dev =
5153 os_strdup(params->conf_p2p_dev);
5154#endif /* CONFIG_P2P */
6fc6879b
JM		 5155 wpa_debug_level = global->params.wpa_debug_level =
5156 params->wpa_debug_level;
5157 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
5158 params->wpa_debug_show_keys;
5159 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
5160 params->wpa_debug_timestamp;
5161
f19858f5
JM		 5162 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
5163
0456ea16 5164 if (eloop_init()) {
6fc6879b
JM		 5165 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
5166 wpa_supplicant_deinit(global);
5167 return NULL;
5168 }
5169
38e24575 5170 random_init(params->entropy_file);
d47fa330 5171
6fc6879b
JM		 5172 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
5173 if (global->ctrl_iface == NULL) {
5174 wpa_supplicant_deinit(global);
5175 return NULL;
5176 }
5177
dc461de4
WS		 5178 if (wpas_notify_supplicant_initialized(global)) {
5179 wpa_supplicant_deinit(global);
5180 return NULL;
6fc6879b
JM		 5181 }
5182
c5121837 5183 for (i = 0; wpa_drivers[i]; i++)
ac305589
JM		 5184 global->drv_count++;
5185 if (global->drv_count == 0) {
5186 wpa_printf(MSG_ERROR, "No drivers enabled");
5187 wpa_supplicant_deinit(global);
5188 return NULL;
5189 }
faebdeaa 5190 global->drv_priv = os_calloc(global->drv_count, sizeof(void *));
ac305589
JM		 5191 if (global->drv_priv == NULL) {
5192 wpa_supplicant_deinit(global);
5193 return NULL;
5194 }
ac305589 5195
9675ce35
JM		 5196#ifdef CONFIG_WIFI_DISPLAY
5197 if (wifi_display_init(global) < 0) {
5198 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
5199 wpa_supplicant_deinit(global);
5200 return NULL;
5201 }
5202#endif /* CONFIG_WIFI_DISPLAY */
5203
8c0d0ff2
JM		 5204 eloop_register_timeout(WPA_SUPPLICANT_CLEANUP_INTERVAL, 0,
5205 wpas_periodic, global, NULL);
5206
6fc6879b
JM		 5207 return global;
5208}
5209
5210
5211/**
5212 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
5213 * @global: Pointer to global data from wpa_supplicant_init()
5214 * Returns: 0 after successful event loop run, -1 on failure
5215 *
5216 * This function starts the main event loop and continues running as long as
5217 * there are any remaining events. In most cases, this function is running as
5218 * long as the %wpa_supplicant process in still in use.
5219 */
5220int wpa_supplicant_run(struct wpa_global *global)
5221{
5222 struct wpa_supplicant *wpa_s;
5223
5224 if (global->params.daemonize &&
5225 wpa_supplicant_daemon(global->params.pid_file))
5226 return -1;
5227
5228 if (global->params.wait_for_monitor) {
5229 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
ede77701 5230 if (wpa_s->ctrl_iface && !wpa_s->p2p_mgmt)
6fc6879b
JM		 5231 wpa_supplicant_ctrl_iface_wait(
5232 wpa_s->ctrl_iface);
5233 }
5234
0456ea16
JM		 5235 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
5236 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
6fc6879b
JM		 5237
5238 eloop_run();
5239
5240 return 0;
5241}
5242
5243
5244/**
5245 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
5246 * @global: Pointer to global data from wpa_supplicant_init()
5247 *
5248 * This function is called to deinitialize %wpa_supplicant and to free all
5249 * allocated resources. Remaining network interfaces will also be removed.
5250 */
5251void wpa_supplicant_deinit(struct wpa_global *global)
5252{
ac305589
JM		 5253 int i;
5254
6fc6879b
JM		 5255 if (global == NULL)
5256 return;
5257
8c0d0ff2
JM		 5258 eloop_cancel_timeout(wpas_periodic, global, NULL);
5259
9675ce35
JM		 5260#ifdef CONFIG_WIFI_DISPLAY
5261 wifi_display_deinit(global);
5262#endif /* CONFIG_WIFI_DISPLAY */
b22128ef 5263
6fc6879b 5264 while (global->ifaces)
df509539 5265 wpa_supplicant_remove_iface(global, global->ifaces, 1);
6fc6879b
JM		 5266
5267 if (global->ctrl_iface)
5268 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
dc461de4
WS		 5269
5270 wpas_notify_supplicant_deinitialized(global);
6fc6879b
JM		 5271
5272 eap_peer_unregister_methods();
3ec97afe
JM		 5273#ifdef CONFIG_AP
5274 eap_server_unregister_methods();
5275#endif /* CONFIG_AP */
6fc6879b 5276
c5121837 5277 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
ac305589
JM		 5278 if (!global->drv_priv[i])
5279 continue;
c5121837 5280 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
ac305589
JM		 5281 }
5282 os_free(global->drv_priv);
5283
d47fa330
JM		 5284 random_deinit();
5285
6fc6879b
JM		 5286 eloop_destroy();
5287
5288 if (global->params.pid_file) {
5289 os_daemonize_terminate(global->params.pid_file);
5290 os_free(global->params.pid_file);
5291 }
5292 os_free(global->params.ctrl_interface);
29257565 5293 os_free(global->params.ctrl_interface_group);
d27df100
JM		 5294 os_free(global->params.override_driver);
5295 os_free(global->params.override_ctrl_interface);
d4e59795
G		 5296#ifdef CONFIG_P2P
5297 os_free(global->params.conf_p2p_dev);
5298#endif /* CONFIG_P2P */
6fc6879b 5299
af8a827b 5300 os_free(global->p2p_disallow_freq.range);
253f2e37 5301 os_free(global->p2p_go_avoid_freq.range);
01a57fe4 5302 os_free(global->add_psk);
6f3bc72b 5303
6fc6879b 5304 os_free(global);
daa70d49 5305 wpa_debug_close_syslog();
6fc6879b 5306 wpa_debug_close_file();
4f68895e 5307 wpa_debug_close_linux_tracing();
6fc6879b 5308}
611aea7d
JM		 5309
5310
5311void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
5312{
849b5dc7
JM		 5313 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
5314 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
5315 char country[3];
5316 country[0] = wpa_s->conf->country[0];
5317 country[1] = wpa_s->conf->country[1];
5318 country[2] = '\0';
5319 if (wpa_drv_set_country(wpa_s, country) < 0) {
5320 wpa_printf(MSG_ERROR, "Failed to set country code "
5321 "'%s'", country);
5322 }
5323 }
5324
306ae225
JM		 5325 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
5326 wpas_init_ext_pw(wpa_s);
5327
bea48f77
JM		 5328 if (wpa_s->conf->changed_parameters & CFG_CHANGED_SCHED_SCAN_PLANS)
5329 wpas_sched_scan_plans_set(wpa_s, wpa_s->conf->sched_scan_plans);
5330
611aea7d
JM		 5331#ifdef CONFIG_WPS
5332 wpas_wps_update_config(wpa_s);
5333#endif /* CONFIG_WPS */
b22128ef 5334 wpas_p2p_update_config(wpa_s);
611aea7d
JM		 5335 wpa_s->conf->changed_parameters = 0;
5336}
2f9c6aa6
JM		 5337
5338
e1117c1c 5339void add_freq(int *freqs, int *num_freqs, int freq)
0fb337c1
JM		 5340{
5341 int i;
5342
5343 for (i = 0; i < *num_freqs; i++) {
5344 if (freqs[i] == freq)
5345 return;
5346 }
5347
5348 freqs[*num_freqs] = freq;
5349 (*num_freqs)++;
5350}
5351
5352
5353static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
5354{
5355 struct wpa_bss *bss, *cbss;
5356 const int max_freqs = 10;
5357 int *freqs;
5358 int num_freqs = 0;
5359
faebdeaa 5360 freqs = os_calloc(max_freqs + 1, sizeof(int));
0fb337c1
JM		 5361 if (freqs == NULL)
5362 return NULL;
5363
5364 cbss = wpa_s->current_bss;
5365
5366 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
5367 if (bss == cbss)
5368 continue;
5369 if (bss->ssid_len == cbss->ssid_len &&
5370 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
5371 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
5372 add_freq(freqs, &num_freqs, bss->freq);
5373 if (num_freqs == max_freqs)
5374 break;
5375 }
5376 }
5377
5378 if (num_freqs == 0) {
5379 os_free(freqs);
5380 freqs = NULL;
5381 }
5382
5383 return freqs;
5384}
5385
5386
5387void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
5388{
5389 int timeout;
5390 int count;
5391 int *freqs = NULL;
5392
6ac4b15e
JM		 5393 wpas_connect_work_done(wpa_s);
5394
5fd9fb27
JM		 5395 /*
5396 * Remove possible authentication timeout since the connection failed.
5397 */
5398 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
5399
c2805909
JM		 5400 /*
5401 * There is no point in blacklisting the AP if this event is
5402 * generated based on local request to disconnect.
5403 */
5404 if (wpa_s->own_disconnect_req) {
5405 wpa_s->own_disconnect_req = 0;
5406 wpa_dbg(wpa_s, MSG_DEBUG,
5407 "Ignore connection failure due to local request to disconnect");
5408 return;
5409 }
0cdb93fe 5410 if (wpa_s->disconnected) {
0cdb93fe
JM		 5411 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
5412 "indication since interface has been put into "
5413 "disconnected state");
5414 return;
5415 }
5416
0fb337c1
JM		 5417 /*
5418 * Add the failed BSSID into the blacklist and speed up next scan
5419 * attempt if there could be other APs that could accept association.
5420 * The current blacklist count indicates how many times we have tried
5421 * connecting to this AP and multiple attempts mean that other APs are
5422 * either not available or has already been tried, so that we can start
5423 * increasing the delay here to avoid constant scanning.
5424 */
5425 count = wpa_blacklist_add(wpa_s, bssid);
5426 if (count == 1 && wpa_s->current_bss) {
5427 /*
5428 * This BSS was not in the blacklist before. If there is
5429 * another BSS available for the same ESS, we should try that
5430 * next. Otherwise, we may as well try this one once more
5431 * before allowing other, likely worse, ESSes to be considered.
5432 */
5433 freqs = get_bss_freqs_in_ess(wpa_s);
5434 if (freqs) {
f049052b
BG		 5435 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
5436 "has been seen; try it next");
0fb337c1
JM		 5437 wpa_blacklist_add(wpa_s, bssid);
5438 /*
5439 * On the next scan, go through only the known channels
5440 * used in this ESS based on previous scans to speed up
5441 * common load balancing use case.
5442 */
5443 os_free(wpa_s->next_scan_freqs);
5444 wpa_s->next_scan_freqs = freqs;
5445 }
5446 }
5447
f1a52633
JM		 5448 /*
5449 * Add previous failure count in case the temporary blacklist was
5450 * cleared due to no other BSSes being available.
5451 */
5452 count += wpa_s->extra_blacklist_count;
5453
dd579704
JM		 5454 if (count > 3 && wpa_s->current_ssid) {
5455 wpa_printf(MSG_DEBUG, "Continuous association failures - "
5456 "consider temporary network disabling");
b19c098e 5457 wpas_auth_failed(wpa_s, "CONN_FAILED");
dd579704
JM		 5458 }
5459
0fb337c1
JM		 5460 switch (count) {
5461 case 1:
5462 timeout = 100;
5463 break;
5464 case 2:
5465 timeout = 500;
5466 break;
5467 case 3:
5468 timeout = 1000;
5469 break;
f1a52633 5470 case 4:
0fb337c1 5471 timeout = 5000;
f1a52633
JM		 5472 break;
5473 default:
5474 timeout = 10000;
5475 break;
0fb337c1
JM		 5476 }
5477
f1a52633
JM		 5478 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
5479 "ms", count, timeout);
5480
0fb337c1
JM		 5481 /*
5482 * TODO: if more than one possible AP is available in scan results,
5483 * could try the other ones before requesting a new scan.
5484 */
5485 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
5486 1000 * (timeout % 1000));
5487}
22628eca
JM		 5488
5489
5490int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
5491{
5492 return wpa_s->conf->ap_scan == 2 ||
5493 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
5494}
d2118814
JM		 5495
5496
5497#if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
5498int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
5499 struct wpa_ssid *ssid,
5500 const char *field,
5501 const char *value)
5502{
5503#ifdef IEEE8021X_EAPOL
5504 struct eap_peer_config *eap = &ssid->eap;
5505
5506 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
5507 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
5508 (const u8 *) value, os_strlen(value));
5509
5510 switch (wpa_supplicant_ctrl_req_from_string(field)) {
5511 case WPA_CTRL_REQ_EAP_IDENTITY:
5512 os_free(eap->identity);
5513 eap->identity = (u8 *) os_strdup(value);
5514 eap->identity_len = os_strlen(value);
5515 eap->pending_req_identity = 0;
5516 if (ssid == wpa_s->current_ssid)
5517 wpa_s->reassociate = 1;
5518 break;
5519 case WPA_CTRL_REQ_EAP_PASSWORD:
19c48da0 5520 bin_clear_free(eap->password, eap->password_len);
d2118814
JM		 5521 eap->password = (u8 *) os_strdup(value);
5522 eap->password_len = os_strlen(value);
5523 eap->pending_req_password = 0;
5524 if (ssid == wpa_s->current_ssid)
5525 wpa_s->reassociate = 1;
5526 break;
5527 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
19c48da0 5528 bin_clear_free(eap->new_password, eap->new_password_len);
d2118814
JM		 5529 eap->new_password = (u8 *) os_strdup(value);
5530 eap->new_password_len = os_strlen(value);
5531 eap->pending_req_new_password = 0;
5532 if (ssid == wpa_s->current_ssid)
5533 wpa_s->reassociate = 1;
5534 break;
5535 case WPA_CTRL_REQ_EAP_PIN:
19c48da0 5536 str_clear_free(eap->pin);
d2118814
JM		 5537 eap->pin = os_strdup(value);
5538 eap->pending_req_pin = 0;
5539 if (ssid == wpa_s->current_ssid)
5540 wpa_s->reassociate = 1;
5541 break;
5542 case WPA_CTRL_REQ_EAP_OTP:
19c48da0 5543 bin_clear_free(eap->otp, eap->otp_len);
d2118814
JM		 5544 eap->otp = (u8 *) os_strdup(value);
5545 eap->otp_len = os_strlen(value);
5546 os_free(eap->pending_req_otp);
5547 eap->pending_req_otp = NULL;
5548 eap->pending_req_otp_len = 0;
5549 break;
5550 case WPA_CTRL_REQ_EAP_PASSPHRASE:
19c48da0
JM		 5551 str_clear_free(eap->private_key_passwd);
5552 eap->private_key_passwd = os_strdup(value);
d2118814
JM		 5553 eap->pending_req_passphrase = 0;
5554 if (ssid == wpa_s->current_ssid)
5555 wpa_s->reassociate = 1;
5556 break;
a5d44ac0 5557 case WPA_CTRL_REQ_SIM:
19c48da0 5558 str_clear_free(eap->external_sim_resp);
a5d44ac0
JM		 5559 eap->external_sim_resp = os_strdup(value);
5560 break;
a52410c2
JM		 5561 case WPA_CTRL_REQ_PSK_PASSPHRASE:
5562 if (wpa_config_set(ssid, "psk", value, 0) < 0)
5563 return -1;
5564 ssid->mem_only_psk = 1;
5565 if (ssid->passphrase)
5566 wpa_config_update_psk(ssid);
5567 if (wpa_s->wpa_state == WPA_SCANNING && !wpa_s->scanning)
5568 wpa_supplicant_req_scan(wpa_s, 0, 0);
5569 break;
3c108b75
JM		 5570 case WPA_CTRL_REQ_EXT_CERT_CHECK:
5571 if (eap->pending_ext_cert_check != PENDING_CHECK)
5572 return -1;
5573 if (os_strcmp(value, "good") == 0)
5574 eap->pending_ext_cert_check = EXT_CERT_CHECK_GOOD;
5575 else if (os_strcmp(value, "bad") == 0)
5576 eap->pending_ext_cert_check = EXT_CERT_CHECK_BAD;
5577 else
5578 return -1;
5579 break;
d2118814
JM		 5580 default:
5581 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
5582 return -1;
5583 }
5584
5585 return 0;
5586#else /* IEEE8021X_EAPOL */
5587 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
5588 return -1;
5589#endif /* IEEE8021X_EAPOL */
5590}
5591#endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
349493bd
JM		 5592
5593
5594int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
5595{
5596 int i;
5597 unsigned int drv_enc;
5598
44b9ea5b
JM		 5599 if (wpa_s->p2p_mgmt)
5600 return 1; /* no normal network profiles on p2p_mgmt interface */
5601
349493bd
JM		 5602 if (ssid == NULL)
5603 return 1;
5604
5605 if (ssid->disabled)
5606 return 1;
5607
9feadba1 5608 if (wpa_s->drv_capa_known)
349493bd
JM		 5609 drv_enc = wpa_s->drv_enc;
5610 else
5611 drv_enc = (unsigned int) -1;
5612
5613 for (i = 0; i < NUM_WEP_KEYS; i++) {
5614 size_t len = ssid->wep_key_len[i];
5615 if (len == 0)
5616 continue;
5617 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
5618 continue;
5619 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
5620 continue;
5621 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
5622 continue;
5623 return 1; /* invalid WEP key */
5624 }
5625
9173b16f 5626 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
a52410c2
JM		 5627 (!ssid->passphrase || ssid->ssid_len != 0) && !ssid->ext_psk &&
5628 !ssid->mem_only_psk)
2518aad3
JM		 5629 return 1;
5630
349493bd
JM		 5631 return 0;
5632}
b9cfc09a
JJ		 5633
5634
3f56a2b7
JM		 5635int wpas_get_ssid_pmf(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
5636{
5637#ifdef CONFIG_IEEE80211W
5638 if (ssid == NULL || ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT) {
5639 if (wpa_s->conf->pmf == MGMT_FRAME_PROTECTION_OPTIONAL &&
5640 !(wpa_s->drv_enc & WPA_DRIVER_CAPA_ENC_BIP)) {
5641 /*
5642 * Driver does not support BIP -- ignore pmf=1 default
5643 * since the connection with PMF would fail and the
5644 * configuration does not require PMF to be enabled.
5645 */
5646 return NO_MGMT_FRAME_PROTECTION;
5647 }
5648
5649 return wpa_s->conf->pmf;
5650 }
5651
5652 return ssid->ieee80211w;
5653#else /* CONFIG_IEEE80211W */
5654 return NO_MGMT_FRAME_PROTECTION;
5655#endif /* CONFIG_IEEE80211W */
5656}
5657
5658
b9cfc09a
JJ		 5659int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
5660{
5661 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
5662 return 1;
5663 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
5664 return 0;
5665 return -1;
5666}
00e5e3d5
JM		 5667
5668
b19c098e 5669void wpas_auth_failed(struct wpa_supplicant *wpa_s, char *reason)
00e5e3d5
JM		 5670{
5671 struct wpa_ssid *ssid = wpa_s->current_ssid;
5672 int dur;
4e1eae1d 5673 struct os_reltime now;
00e5e3d5
JM		 5674
5675 if (ssid == NULL) {
5676 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
5677 "SSID block");
5678 return;
5679 }
5680
5681 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
5682 return;
5683
5684 ssid->auth_failures++;
cbf41ca7
SL		 5685
5686#ifdef CONFIG_P2P
5687 if (ssid->p2p_group &&
5688 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
5689 /*
5690 * Skip the wait time since there is a short timeout on the
5691 * connection to a P2P group.
5692 */
5693 return;
5694 }
5695#endif /* CONFIG_P2P */
5696
00e5e3d5
JM		 5697 if (ssid->auth_failures > 50)
5698 dur = 300;
00e5e3d5 5699 else if (ssid->auth_failures > 10)
8a77f1be 5700 dur = 120;
00e5e3d5 5701 else if (ssid->auth_failures > 5)
8a77f1be
JM		 5702 dur = 90;
5703 else if (ssid->auth_failures > 3)
5704 dur = 60;
5705 else if (ssid->auth_failures > 2)
00e5e3d5
JM		 5706 dur = 30;
5707 else if (ssid->auth_failures > 1)
5708 dur = 20;
5709 else
5710 dur = 10;
5711
8a77f1be
JM		 5712 if (ssid->auth_failures > 1 &&
5713 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt))
5714 dur += os_random() % (ssid->auth_failures * 10);
5715
4e1eae1d 5716 os_get_reltime(&now);
00e5e3d5
JM		 5717 if (now.sec + dur <= ssid->disabled_until.sec)
5718 return;
5719
5720 ssid->disabled_until.sec = now.sec + dur;
5721
5722 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
b19c098e 5723 "id=%d ssid=\"%s\" auth_failures=%u duration=%d reason=%s",
00e5e3d5 5724 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
b19c098e 5725 ssid->auth_failures, dur, reason);
00e5e3d5
JM		 5726}
5727
5728
5729void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
5730 struct wpa_ssid *ssid, int clear_failures)
5731{
5732 if (ssid == NULL)
5733 return;
5734
5735 if (ssid->disabled_until.sec) {
5736 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
5737 "id=%d ssid=\"%s\"",
5738 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
5739 }
5740 ssid->disabled_until.sec = 0;
5741 ssid->disabled_until.usec = 0;
5742 if (clear_failures)
5743 ssid->auth_failures = 0;
5744}
6407f413
JM		 5745
5746
5747int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
5748{
5749 size_t i;
5750
5751 if (wpa_s->disallow_aps_bssid == NULL)
5752 return 0;
5753
5754 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
5755 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
5756 bssid, ETH_ALEN) == 0)
5757 return 1;
5758 }
5759
5760 return 0;
5761}
5762
5763
5764int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
5765 size_t ssid_len)
5766{
5767 size_t i;
5768
5769 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
5770 return 0;
5771
5772 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
5773 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
5774 if (ssid_len == s->ssid_len &&
5775 os_memcmp(ssid, s->ssid, ssid_len) == 0)
5776 return 1;
5777 }
5778
5779 return 0;
5780}
9796a86c
JM		 5781
5782
5783/**
5784 * wpas_request_connection - Request a new connection
5785 * @wpa_s: Pointer to the network interface
5786 *
5787 * This function is used to request a new connection to be found. It will mark
5788 * the interface to allow reassociation and request a new scan to find a
5789 * suitable network to connect to.
5790 */
5791void wpas_request_connection(struct wpa_supplicant *wpa_s)
5792{
5793 wpa_s->normal_scans = 0;
5214f4fa 5794 wpa_s->scan_req = NORMAL_SCAN_REQ;
9796a86c
JM		 5795 wpa_supplicant_reinit_autoscan(wpa_s);
5796 wpa_s->extra_blacklist_count = 0;
5797 wpa_s->disconnected = 0;
5798 wpa_s->reassociate = 1;
5e24beae
MH		 5799
5800 if (wpa_supplicant_fast_associate(wpa_s) != 1)
5801 wpa_supplicant_req_scan(wpa_s, 0, 0);
0c5f01fd
B		 5802 else
5803 wpa_s->reattach = 0;
9796a86c 5804}
36b9883d
DG		 5805
5806
a0c90bb0
IP		 5807void dump_freq_data(struct wpa_supplicant *wpa_s, const char *title,
5808 struct wpa_used_freq_data *freqs_data,
5809 unsigned int len)
5810{
5811 unsigned int i;
5812
5813 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
5814 len, title);
5815 for (i = 0; i < len; i++) {
5816 struct wpa_used_freq_data *cur = &freqs_data[i];
5817 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d, flags=0x%X",
5818 i, cur->freq, cur->flags);
5819 }
5820}
5821
5822
53c5dfc2
IP		 5823/*
5824 * Find the operating frequencies of any of the virtual interfaces that
a0c90bb0
IP		 5825 * are using the same radio as the current interface, and in addition, get
5826 * information about the interface types that are using the frequency.
53c5dfc2 5827 */
a0c90bb0
IP		 5828int get_shared_radio_freqs_data(struct wpa_supplicant *wpa_s,
5829 struct wpa_used_freq_data *freqs_data,
5830 unsigned int len)
53c5dfc2 5831{
53c5dfc2
IP		 5832 struct wpa_supplicant *ifs;
5833 u8 bssid[ETH_ALEN];
5834 int freq;
5835 unsigned int idx = 0, i;
5836
217cf499
JM		 5837 wpa_dbg(wpa_s, MSG_DEBUG,
5838 "Determining shared radio frequencies (max len %u)", len);
a0c90bb0 5839 os_memset(freqs_data, 0, sizeof(struct wpa_used_freq_data) * len);
53c5dfc2 5840
0ad3b9c4
JM		 5841 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
5842 radio_list) {
a0c90bb0
IP		 5843 if (idx == len)
5844 break;
5845
53c5dfc2
IP		 5846 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
5847 continue;
5848
5849 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
241c3333
MH		 5850 ifs->current_ssid->mode == WPAS_MODE_P2P_GO ||
5851 ifs->current_ssid->mode == WPAS_MODE_MESH)
53c5dfc2
IP		 5852 freq = ifs->current_ssid->frequency;
5853 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
5854 freq = ifs->assoc_freq;
5855 else
5856 continue;
5857
5858 /* Hold only distinct freqs */
5859 for (i = 0; i < idx; i++)
a0c90bb0 5860 if (freqs_data[i].freq == freq)
53c5dfc2
IP		 5861 break;
5862
5863 if (i == idx)
a0c90bb0
IP		 5864 freqs_data[idx++].freq = freq;
5865
5866 if (ifs->current_ssid->mode == WPAS_MODE_INFRA) {
22264b3c 5867 freqs_data[i].flags |= ifs->current_ssid->p2p_group ?
a0c90bb0
IP		 5868 WPA_FREQ_USED_BY_P2P_CLIENT :
5869 WPA_FREQ_USED_BY_INFRA_STATION;
5870 }
53c5dfc2 5871 }
217cf499 5872
a0c90bb0 5873 dump_freq_data(wpa_s, "completed iteration", freqs_data, idx);
53c5dfc2
IP		 5874 return idx;
5875}
a0c90bb0
IP		 5876
5877
5878/*
5879 * Find the operating frequencies of any of the virtual interfaces that
5880 * are using the same radio as the current interface.
5881 */
5882int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
5883 int *freq_array, unsigned int len)
5884{
5885 struct wpa_used_freq_data *freqs_data;
5886 int num, i;
5887
5888 os_memset(freq_array, 0, sizeof(int) * len);
5889
5890 freqs_data = os_calloc(len, sizeof(struct wpa_used_freq_data));
5891 if (!freqs_data)
5892 return -1;
5893
5894 num = get_shared_radio_freqs_data(wpa_s, freqs_data, len);
5895 for (i = 0; i < num; i++)
5896 freq_array[i] = freqs_data[i].freq;
5897
5898 os_free(freqs_data);
5899
5900 return num;
5901}
b361d580
AK		 5902
5903
d89c0701
AK		 5904static void wpas_rrm_neighbor_rep_timeout_handler(void *data, void *user_ctx)
5905{
5906 struct rrm_data *rrm = data;
5907
5908 if (!rrm->notify_neighbor_rep) {
5909 wpa_printf(MSG_ERROR,
5910 "RRM: Unexpected neighbor report timeout");
5911 return;
5912 }
5913
5914 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report - NONE");
5915 rrm->notify_neighbor_rep(rrm->neighbor_rep_cb_ctx, NULL);
5916
5917 rrm->notify_neighbor_rep = NULL;
5918 rrm->neighbor_rep_cb_ctx = NULL;
5919}
5920
5921
b361d580
AK		 5922/*
5923 * wpas_rrm_reset - Clear and reset all RRM data in wpa_supplicant
5924 * @wpa_s: Pointer to wpa_supplicant
5925 */
5926void wpas_rrm_reset(struct wpa_supplicant *wpa_s)
5927{
5928 wpa_s->rrm.rrm_used = 0;
d89c0701
AK		 5929
5930 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5931 NULL);
5932 if (wpa_s->rrm.notify_neighbor_rep)
5933 wpas_rrm_neighbor_rep_timeout_handler(&wpa_s->rrm, NULL);
5934 wpa_s->rrm.next_neighbor_rep_token = 1;
5935}
5936
5937
5938/*
5939 * wpas_rrm_process_neighbor_rep - Handle incoming neighbor report
5940 * @wpa_s: Pointer to wpa_supplicant
5941 * @report: Neighbor report buffer, prefixed by a 1-byte dialog token
5942 * @report_len: Length of neighbor report buffer
5943 */
5944void wpas_rrm_process_neighbor_rep(struct wpa_supplicant *wpa_s,
5945 const u8 *report, size_t report_len)
5946{
5947 struct wpabuf *neighbor_rep;
5948
5949 wpa_hexdump(MSG_DEBUG, "RRM: New Neighbor Report", report, report_len);
5950 if (report_len < 1)
5951 return;
5952
5953 if (report[0] != wpa_s->rrm.next_neighbor_rep_token - 1) {
5954 wpa_printf(MSG_DEBUG,
5955 "RRM: Discarding neighbor report with token %d (expected %d)",
5956 report[0], wpa_s->rrm.next_neighbor_rep_token - 1);
5957 return;
5958 }
5959
5960 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5961 NULL);
5962
5963 if (!wpa_s->rrm.notify_neighbor_rep) {
5964 wpa_printf(MSG_ERROR, "RRM: Unexpected neighbor report");
5965 return;
5966 }
5967
5968 /* skipping the first byte, which is only an id (dialog token) */
5969 neighbor_rep = wpabuf_alloc(report_len - 1);
5970 if (neighbor_rep == NULL)
5971 return;
5972 wpabuf_put_data(neighbor_rep, report + 1, report_len - 1);
5973 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report (token = %d)",
5974 report[0]);
5975 wpa_s->rrm.notify_neighbor_rep(wpa_s->rrm.neighbor_rep_cb_ctx,
5976 neighbor_rep);
5977 wpa_s->rrm.notify_neighbor_rep = NULL;
5978 wpa_s->rrm.neighbor_rep_cb_ctx = NULL;
5979}
5980
5981
b09baf37
JM		 5982#if defined(__CYGWIN__) || defined(CONFIG_NATIVE_WINDOWS)
5983/* Workaround different, undefined for Windows, error codes used here */
5984#define ENOTCONN -1
5985#define EOPNOTSUPP -1
5986#define ECANCELED -1
5987#endif
5988
d89c0701
AK		 5989/**
5990 * wpas_rrm_send_neighbor_rep_request - Request a neighbor report from our AP
5991 * @wpa_s: Pointer to wpa_supplicant
4c4b2305
AK		 5992 * @ssid: if not null, this is sent in the request. Otherwise, no SSID IE
5993 * is sent in the request.
d89c0701
AK		 5994 * @cb: Callback function to be called once the requested report arrives, or
5995 * timed out after RRM_NEIGHBOR_REPORT_TIMEOUT seconds.
5996 * In the former case, 'neighbor_rep' is a newly allocated wpabuf, and it's
5997 * the requester's responsibility to free it.
5998 * In the latter case NULL will be sent in 'neighbor_rep'.
5999 * @cb_ctx: Context value to send the callback function
6000 * Returns: 0 in case of success, negative error code otherwise
6001 *
6002 * In case there is a previous request which has not been answered yet, the
6003 * new request fails. The caller may retry after RRM_NEIGHBOR_REPORT_TIMEOUT.
6004 * Request must contain a callback function.
d89c0701
AK		 6005 */
6006int wpas_rrm_send_neighbor_rep_request(struct wpa_supplicant *wpa_s,
4c4b2305 6007 const struct wpa_ssid *ssid,
d89c0701
AK		 6008 void (*cb)(void *ctx,
6009 struct wpabuf *neighbor_rep),
6010 void *cb_ctx)
6011{
6012 struct wpabuf *buf;
6013 const u8 *rrm_ie;
6014
6015 if (wpa_s->wpa_state != WPA_COMPLETED || wpa_s->current_ssid == NULL) {
6016 wpa_printf(MSG_DEBUG, "RRM: No connection, no RRM.");
6017 return -ENOTCONN;
6018 }
6019
6020 if (!wpa_s->rrm.rrm_used) {
6021 wpa_printf(MSG_DEBUG, "RRM: No RRM in current connection.");
6022 return -EOPNOTSUPP;
6023 }
6024
6025 rrm_ie = wpa_bss_get_ie(wpa_s->current_bss,
6026 WLAN_EID_RRM_ENABLED_CAPABILITIES);
6027 if (!rrm_ie || !(wpa_s->current_bss->caps & IEEE80211_CAP_RRM) ||
6028 !(rrm_ie[2] & WLAN_RRM_CAPS_NEIGHBOR_REPORT)) {
6029 wpa_printf(MSG_DEBUG,
6030 "RRM: No network support for Neighbor Report.");
6031 return -EOPNOTSUPP;
6032 }
6033
6034 if (!cb) {
6035 wpa_printf(MSG_DEBUG,
6036 "RRM: Neighbor Report request must provide a callback.");
6037 return -EINVAL;
6038 }
6039
6040 /* Refuse if there's a live request */
6041 if (wpa_s->rrm.notify_neighbor_rep) {
6042 wpa_printf(MSG_DEBUG,
6043 "RRM: Currently handling previous Neighbor Report.");
6044 return -EBUSY;
6045 }
6046
4c4b2305
AK		 6047 /* 3 = action category + action code + dialog token */
6048 buf = wpabuf_alloc(3 + (ssid ? 2 + ssid->ssid_len : 0));
d89c0701
AK		 6049 if (buf == NULL) {
6050 wpa_printf(MSG_DEBUG,
6051 "RRM: Failed to allocate Neighbor Report Request");
6052 return -ENOMEM;
6053 }
6054
6055 wpa_printf(MSG_DEBUG, "RRM: Neighbor report request (for %s), token=%d",
4c4b2305 6056 (ssid ? wpa_ssid_txt(ssid->ssid, ssid->ssid_len) : ""),
d89c0701
AK		 6057 wpa_s->rrm.next_neighbor_rep_token);
6058
6059 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
6060 wpabuf_put_u8(buf, WLAN_RRM_NEIGHBOR_REPORT_REQUEST);
6061 wpabuf_put_u8(buf, wpa_s->rrm.next_neighbor_rep_token);
4c4b2305
AK		 6062 if (ssid) {
6063 wpabuf_put_u8(buf, WLAN_EID_SSID);
6064 wpabuf_put_u8(buf, ssid->ssid_len);
6065 wpabuf_put_data(buf, ssid->ssid, ssid->ssid_len);
6066 }
d89c0701
AK		 6067
6068 wpa_s->rrm.next_neighbor_rep_token++;
6069
6070 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
6071 wpa_s->own_addr, wpa_s->bssid,
6072 wpabuf_head(buf), wpabuf_len(buf), 0) < 0) {
6073 wpa_printf(MSG_DEBUG,
6074 "RRM: Failed to send Neighbor Report Request");
6075 wpabuf_free(buf);
6076 return -ECANCELED;
6077 }
6078
6079 wpa_s->rrm.neighbor_rep_cb_ctx = cb_ctx;
6080 wpa_s->rrm.notify_neighbor_rep = cb;
6081 eloop_register_timeout(RRM_NEIGHBOR_REPORT_TIMEOUT, 0,
6082 wpas_rrm_neighbor_rep_timeout_handler,
6083 &wpa_s->rrm, NULL);
6084
6085 wpabuf_free(buf);
6086 return 0;
b361d580 6087}
70d1e728
AO		 6088
6089
6090void wpas_rrm_handle_link_measurement_request(struct wpa_supplicant *wpa_s,
6091 const u8 *src,
6092 const u8 *frame, size_t len,
6093 int rssi)
6094{
6095 struct wpabuf *buf;
6096 const struct rrm_link_measurement_request *req;
6097 struct rrm_link_measurement_report report;
6098
6099 if (wpa_s->wpa_state != WPA_COMPLETED) {
6100 wpa_printf(MSG_INFO,
6101 "RRM: Ignoring link measurement request. Not associated");
6102 return;
6103 }
6104
6105 if (!wpa_s->rrm.rrm_used) {
6106 wpa_printf(MSG_INFO,
6107 "RRM: Ignoring link measurement request. Not RRM network");
6108 return;
6109 }
6110
6111 if (!(wpa_s->drv_rrm_flags & WPA_DRIVER_FLAGS_TX_POWER_INSERTION)) {
6112 wpa_printf(MSG_INFO,
6113 "RRM: Measurement report failed. TX power insertion not supported");
6114 return;
6115 }
6116
6117 req = (const struct rrm_link_measurement_request *) frame;
6118 if (len < sizeof(*req)) {
6119 wpa_printf(MSG_INFO,
6120 "RRM: Link measurement report failed. Request too short");
6121 return;
6122 }
6123
6124 os_memset(&report, 0, sizeof(report));
6125 report.tpc.eid = WLAN_EID_TPC_REPORT;
6126 report.tpc.len = 2;
6127 report.rsni = 255; /* 255 indicates that RSNI is not available */
6128 report.dialog_token = req->dialog_token;
6129
6130 /*
6131 * It's possible to estimate RCPI based on RSSI in dBm. This
6132 * calculation will not reflect the correct value for high rates,
6133 * but it's good enough for Action frames which are transmitted
6134 * with up to 24 Mbps rates.
6135 */
6136 if (!rssi)
6137 report.rcpi = 255; /* not available */
6138 else if (rssi < -110)
6139 report.rcpi = 0;
6140 else if (rssi > 0)
6141 report.rcpi = 220;
6142 else
6143 report.rcpi = (rssi + 110) * 2;
6144
6145 /* action_category + action_code */
6146 buf = wpabuf_alloc(2 + sizeof(report));
6147 if (buf == NULL) {
6148 wpa_printf(MSG_ERROR,
6149 "RRM: Link measurement report failed. Buffer allocation failed");
6150 return;
6151 }
6152
6153 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
6154 wpabuf_put_u8(buf, WLAN_RRM_LINK_MEASUREMENT_REPORT);
6155 wpabuf_put_data(buf, &report, sizeof(report));
6156 wpa_hexdump(MSG_DEBUG, "RRM: Link measurement report:",
6157 wpabuf_head(buf), wpabuf_len(buf));
6158
6159 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, src,
6160 wpa_s->own_addr, wpa_s->bssid,
6161 wpabuf_head(buf), wpabuf_len(buf), 0)) {
6162 wpa_printf(MSG_ERROR,
6163 "RRM: Link measurement report failed. Send action failed");
6164 }
6165 wpabuf_free(buf);
6166}
af041f99
AA		 6167
6168
6169struct wpa_supplicant *
6170wpas_vendor_elem(struct wpa_supplicant *wpa_s, enum wpa_vendor_elem_frame frame)
6171{
6172 switch (frame) {
6173#ifdef CONFIG_P2P
6174 case VENDOR_ELEM_PROBE_REQ_P2P:
6175 case VENDOR_ELEM_PROBE_RESP_P2P:
6176 case VENDOR_ELEM_PROBE_RESP_P2P_GO:
6177 case VENDOR_ELEM_BEACON_P2P_GO:
6178 case VENDOR_ELEM_P2P_PD_REQ:
6179 case VENDOR_ELEM_P2P_PD_RESP:
6180 case VENDOR_ELEM_P2P_GO_NEG_REQ:
6181 case VENDOR_ELEM_P2P_GO_NEG_RESP:
6182 case VENDOR_ELEM_P2P_GO_NEG_CONF:
6183 case VENDOR_ELEM_P2P_INV_REQ:
6184 case VENDOR_ELEM_P2P_INV_RESP:
6185 case VENDOR_ELEM_P2P_ASSOC_REQ:
6186 case VENDOR_ELEM_P2P_ASSOC_RESP:
6187 return wpa_s->parent;
6188#endif /* CONFIG_P2P */
6189 default:
6190 return wpa_s;
6191 }
6192}
6193
6194
6195void wpas_vendor_elem_update(struct wpa_supplicant *wpa_s)
6196{
6197 unsigned int i;
6198 char buf[30];
6199
6200 wpa_printf(MSG_DEBUG, "Update vendor elements");
6201
6202 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
6203 if (wpa_s->vendor_elem[i]) {
6204 int res;
6205
6206 res = os_snprintf(buf, sizeof(buf), "frame[%u]", i);
6207 if (!os_snprintf_error(sizeof(buf), res)) {
6208 wpa_hexdump_buf(MSG_DEBUG, buf,
6209 wpa_s->vendor_elem[i]);
6210 }
6211 }
6212 }
6213
6214#ifdef CONFIG_P2P
6215 if (wpa_s->parent == wpa_s &&
6216 wpa_s->global->p2p &&
6217 !wpa_s->global->p2p_disabled)
6218 p2p_set_vendor_elems(wpa_s->global->p2p, wpa_s->vendor_elem);
6219#endif /* CONFIG_P2P */
6220}
6221
6222
6223int wpas_vendor_elem_remove(struct wpa_supplicant *wpa_s, int frame,
6224 const u8 *elem, size_t len)
6225{
6226 u8 *ie, *end;
6227
6228 ie = wpabuf_mhead_u8(wpa_s->vendor_elem[frame]);
6229 end = ie + wpabuf_len(wpa_s->vendor_elem[frame]);
6230
6231 for (; ie + 1 < end; ie += 2 + ie[1]) {
6232 if (ie + len > end)
6233 break;
6234 if (os_memcmp(ie, elem, len) != 0)
6235 continue;
6236
6237 if (wpabuf_len(wpa_s->vendor_elem[frame]) == len) {
6238 wpabuf_free(wpa_s->vendor_elem[frame]);
6239 wpa_s->vendor_elem[frame] = NULL;
6240 } else {
6241 os_memmove(ie, ie + len, end - (ie + len));
6242 wpa_s->vendor_elem[frame]->used -= len;
6243 }
6244 wpas_vendor_elem_update(wpa_s);
6245 return 0;
6246 }
6247
6248 return -1;
6249}
Unnamed repository; edit this file 'description' to name the repository.