]> git.ipfire.org Git - thirdparty/hostap.git/blob - wpa_supplicant/config_file.c
projects / thirdparty / hostap.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
STA: Support Extended Key ID
[thirdparty/hostap.git] / wpa_supplicant / config_file.c
1 /*
2 * WPA Supplicant / Configuration backend: text file
3 * Copyright (c) 2003-2019, Jouni Malinen <j@w1.fi>
4 *
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
7 *
8 * This file implements a configuration backend for text files. All the
9 * configuration information is stored in a text file that uses a format
10 * described in the sample configuration file, wpa_supplicant.conf.
11 */
12
13 #include "includes.h"
14 #ifdef ANDROID
15 #include <sys/stat.h>
16 #endif /* ANDROID */
17
18 #include "common.h"
19 #include "config.h"
20 #include "base64.h"
21 #include "uuid.h"
22 #include "common/ieee802_1x_defs.h"
23 #include "p2p/p2p.h"
24 #include "eap_peer/eap_methods.h"
25 #include "eap_peer/eap.h"
26
27
28 static int newline_terminated(const char *buf, size_t buflen)
29 {
30 size_t len = os_strlen(buf);
31 if (len == 0)
32 return 0;
33 if (len == buflen - 1 && buf[buflen - 1] != '\r' &&
34 buf[len - 1] != '\n')
35 return 0;
36 return 1;
37 }
38
39
40 static void skip_line_end(FILE *stream)
41 {
42 char buf[100];
43 while (fgets(buf, sizeof(buf), stream)) {
44 buf[sizeof(buf) - 1] = '\0';
45 if (newline_terminated(buf, sizeof(buf)))
46 return;
47 }
48 }
49
50
51 /**
52 * wpa_config_get_line - Read the next configuration file line
53 * @s: Buffer for the line
54 * @size: The buffer length
55 * @stream: File stream to read from
56 * @line: Pointer to a variable storing the file line number
57 * @_pos: Buffer for the pointer to the beginning of data on the text line or
58 * %NULL if not needed (returned value used instead)
59 * Returns: Pointer to the beginning of data on the text line or %NULL if no
60 * more text lines are available.
61 *
62 * This function reads the next non-empty line from the configuration file and
63 * removes comments. The returned string is guaranteed to be null-terminated.
64 */
65 static char * wpa_config_get_line(char *s, int size, FILE *stream, int *line,
66 char **_pos)
67 {
68 char *pos, *end, *sstart;
69
70 while (fgets(s, size, stream)) {
71 (*line)++;
72 s[size - 1] = '\0';
73 if (!newline_terminated(s, size)) {
74 /*
75 * The line was truncated - skip rest of it to avoid
76 * confusing error messages.
77 */
78 wpa_printf(MSG_INFO, "Long line in configuration file "
79 "truncated");
80 skip_line_end(stream);
81 }
82 pos = s;
83
84 /* Skip white space from the beginning of line. */
85 while (*pos == ' ' || *pos == '\t' || *pos == '\r')
86 pos++;
87
88 /* Skip comment lines and empty lines */
89 if (*pos == '#' || *pos == '\n' || *pos == '\0')
90 continue;
91
92 /*
93 * Remove # comments unless they are within a double quoted
94 * string.
95 */
96 sstart = os_strchr(pos, '"');
97 if (sstart)
98 sstart = os_strrchr(sstart + 1, '"');
99 if (!sstart)
100 sstart = pos;
101 end = os_strchr(sstart, '#');
102 if (end)
103 *end-- = '\0';
104 else
105 end = pos + os_strlen(pos) - 1;
106
107 /* Remove trailing white space. */
108 while (end > pos &&
109 (*end == '\n' || *end == ' ' || *end == '\t' ||
110 *end == '\r'))
111 *end-- = '\0';
112
113 if (*pos == '\0')
114 continue;
115
116 if (_pos)
117 *_pos = pos;
118 return pos;
119 }
120
121 if (_pos)
122 *_pos = NULL;
123 return NULL;
124 }
125
126
127 static int wpa_config_validate_network(struct wpa_ssid *ssid, int line)
128 {
129 int errors = 0;
130
131 if (ssid->passphrase) {
132 if (ssid->psk_set) {
133 wpa_printf(MSG_ERROR, "Line %d: both PSK and "
134 "passphrase configured.", line);
135 errors++;
136 }
137 wpa_config_update_psk(ssid);
138 }
139
140 if (ssid->disabled == 2)
141 ssid->p2p_persistent_group = 1;
142
143 if ((ssid->group_cipher & WPA_CIPHER_CCMP) &&
144 !(ssid->pairwise_cipher & (WPA_CIPHER_CCMP | WPA_CIPHER_CCMP_256 |
145 WPA_CIPHER_GCMP | WPA_CIPHER_GCMP_256 |
146 WPA_CIPHER_NONE))) {
147 /* Group cipher cannot be stronger than the pairwise cipher. */
148 wpa_printf(MSG_DEBUG, "Line %d: removed CCMP from group cipher"
149 " list since it was not allowed for pairwise "
150 "cipher", line);
151 ssid->group_cipher &= ~WPA_CIPHER_CCMP;
152 }
153
154 if (ssid->mode == WPAS_MODE_MESH &&
155 (ssid->key_mgmt != WPA_KEY_MGMT_NONE &&
156 ssid->key_mgmt != WPA_KEY_MGMT_SAE)) {
157 wpa_printf(MSG_ERROR,
158 "Line %d: key_mgmt for mesh network should be open or SAE",
159 line);
160 errors++;
161 }
162
163 #ifdef CONFIG_OCV
164 if (ssid->ocv && ssid->ieee80211w == NO_MGMT_FRAME_PROTECTION) {
165 wpa_printf(MSG_ERROR,
166 "Line %d: PMF needs to be enabled whenever using OCV",
167 line);
168 errors++;
169 }
170 #endif /* CONFIG_OCV */
171
172 return errors;
173 }
174
175
176 static struct wpa_ssid * wpa_config_read_network(FILE *f, int *line, int id)
177 {
178 struct wpa_ssid *ssid;
179 int errors = 0, end = 0;
180 char buf[2000], *pos, *pos2;
181
182 wpa_printf(MSG_MSGDUMP, "Line: %d - start of a new network block",
183 *line);
184 ssid = os_zalloc(sizeof(*ssid));
185 if (ssid == NULL)
186 return NULL;
187 dl_list_init(&ssid->psk_list);
188 ssid->id = id;
189
190 wpa_config_set_network_defaults(ssid);
191
192 while (wpa_config_get_line(buf, sizeof(buf), f, line, &pos)) {
193 if (os_strcmp(pos, "}") == 0) {
194 end = 1;
195 break;
196 }
197
198 pos2 = os_strchr(pos, '=');
199 if (pos2 == NULL) {
200 wpa_printf(MSG_ERROR, "Line %d: Invalid SSID line "
201 "'%s'.", *line, pos);
202 errors++;
203 continue;
204 }
205
206 *pos2++ = '\0';
207 if (*pos2 == '"') {
208 if (os_strchr(pos2 + 1, '"') == NULL) {
209 wpa_printf(MSG_ERROR, "Line %d: invalid "
210 "quotation '%s'.", *line, pos2);
211 errors++;
212 continue;
213 }
214 }
215
216 if (wpa_config_set(ssid, pos, pos2, *line) < 0) {
217 #ifndef CONFIG_WEP
218 if (os_strcmp(pos, "wep_key0") == 0 ||
219 os_strcmp(pos, "wep_key1") == 0 ||
220 os_strcmp(pos, "wep_key2") == 0 ||
221 os_strcmp(pos, "wep_key3") == 0 ||
222 os_strcmp(pos, "wep_tx_keyidx") == 0) {
223 wpa_printf(MSG_ERROR,
224 "Line %d: unsupported WEP parameter",
225 *line);
226 ssid->disabled = 1;
227 continue;
228 }
229 #endif /* CONFIG_WEP */
230 errors++;
231 }
232 }
233
234 if (!end) {
235 wpa_printf(MSG_ERROR, "Line %d: network block was not "
236 "terminated properly.", *line);
237 errors++;
238 }
239
240 errors += wpa_config_validate_network(ssid, *line);
241
242 if (errors) {
243 wpa_config_free_ssid(ssid);
244 ssid = NULL;
245 }
246
247 return ssid;
248 }
249
250
251 static struct wpa_cred * wpa_config_read_cred(FILE *f, int *line, int id)
252 {
253 struct wpa_cred *cred;
254 int errors = 0, end = 0;
255 char buf[256], *pos, *pos2;
256
257 wpa_printf(MSG_MSGDUMP, "Line: %d - start of a new cred block", *line);
258 cred = os_zalloc(sizeof(*cred));
259 if (cred == NULL)
260 return NULL;
261 cred->id = id;
262 cred->sim_num = DEFAULT_USER_SELECTED_SIM;
263
264 while (wpa_config_get_line(buf, sizeof(buf), f, line, &pos)) {
265 if (os_strcmp(pos, "}") == 0) {
266 end = 1;
267 break;
268 }
269
270 pos2 = os_strchr(pos, '=');
271 if (pos2 == NULL) {
272 wpa_printf(MSG_ERROR, "Line %d: Invalid cred line "
273 "'%s'.", *line, pos);
274 errors++;
275 continue;
276 }
277
278 *pos2++ = '\0';
279 if (*pos2 == '"') {
280 if (os_strchr(pos2 + 1, '"') == NULL) {
281 wpa_printf(MSG_ERROR, "Line %d: invalid "
282 "quotation '%s'.", *line, pos2);
283 errors++;
284 continue;
285 }
286 }
287
288 if (wpa_config_set_cred(cred, pos, pos2, *line) < 0)
289 errors++;
290 }
291
292 if (!end) {
293 wpa_printf(MSG_ERROR, "Line %d: cred block was not "
294 "terminated properly.", *line);
295 errors++;
296 }
297
298 if (errors) {
299 wpa_config_free_cred(cred);
300 cred = NULL;
301 }
302
303 return cred;
304 }
305
306
307 #ifndef CONFIG_NO_CONFIG_BLOBS
308 static struct wpa_config_blob * wpa_config_read_blob(FILE *f, int *line,
309 const char *name)
310 {
311 struct wpa_config_blob *blob;
312 char buf[256], *pos;
313 char *encoded = NULL, *nencoded;
314 int end = 0;
315 size_t encoded_len = 0, len;
316
317 wpa_printf(MSG_MSGDUMP, "Line: %d - start of a new named blob '%s'",
318 *line, name);
319
320 while (wpa_config_get_line(buf, sizeof(buf), f, line, &pos)) {
321 if (os_strcmp(pos, "}") == 0) {
322 end = 1;
323 break;
324 }
325
326 len = os_strlen(pos);
327 nencoded = os_realloc(encoded, encoded_len + len);
328 if (nencoded == NULL) {
329 wpa_printf(MSG_ERROR, "Line %d: not enough memory for "
330 "blob", *line);
331 os_free(encoded);
332 return NULL;
333 }
334 encoded = nencoded;
335 os_memcpy(encoded + encoded_len, pos, len);
336 encoded_len += len;
337 }
338
339 if (!end || !encoded) {
340 wpa_printf(MSG_ERROR, "Line %d: blob was not terminated "
341 "properly", *line);
342 os_free(encoded);
343 return NULL;
344 }
345
346 blob = os_zalloc(sizeof(*blob));
347 if (blob == NULL) {
348 os_free(encoded);
349 return NULL;
350 }
351 blob->name = os_strdup(name);
352 blob->data = base64_decode(encoded, encoded_len, &blob->len);
353 os_free(encoded);
354
355 if (blob->name == NULL || blob->data == NULL) {
356 wpa_config_free_blob(blob);
357 return NULL;
358 }
359
360 return blob;
361 }
362
363
364 static int wpa_config_process_blob(struct wpa_config *config, FILE *f,
365 int *line, char *bname)
366 {
367 char *name_end;
368 struct wpa_config_blob *blob;
369
370 name_end = os_strchr(bname, '=');
371 if (name_end == NULL) {
372 wpa_printf(MSG_ERROR, "Line %d: no blob name terminator",
373 *line);
374 return -1;
375 }
376 *name_end = '\0';
377
378 blob = wpa_config_read_blob(f, line, bname);
379 if (blob == NULL) {
380 wpa_printf(MSG_ERROR, "Line %d: failed to read blob %s",
381 *line, bname);
382 return -1;
383 }
384 wpa_config_set_blob(config, blob);
385 return 0;
386 }
387 #endif /* CONFIG_NO_CONFIG_BLOBS */
388
389
390 struct wpa_config * wpa_config_read(const char *name, struct wpa_config *cfgp)
391 {
392 FILE *f;
393 char buf[512], *pos;
394 int errors = 0, line = 0;
395 struct wpa_ssid *ssid, *tail, *head;
396 struct wpa_cred *cred, *cred_tail, *cred_head;
397 struct wpa_config *config;
398 int id = 0;
399 int cred_id = 0;
400
401 if (name == NULL)
402 return NULL;
403 if (cfgp)
404 config = cfgp;
405 else
406 config = wpa_config_alloc_empty(NULL, NULL);
407 if (config == NULL) {
408 wpa_printf(MSG_ERROR, "Failed to allocate config file "
409 "structure");
410 return NULL;
411 }
412 tail = head = config->ssid;
413 while (tail && tail->next)
414 tail = tail->next;
415 cred_tail = cred_head = config->cred;
416 while (cred_tail && cred_tail->next)
417 cred_tail = cred_tail->next;
418
419 wpa_printf(MSG_DEBUG, "Reading configuration file '%s'", name);
420 f = fopen(name, "r");
421 if (f == NULL) {
422 wpa_printf(MSG_ERROR, "Failed to open config file '%s', "
423 "error: %s", name, strerror(errno));
424 if (config != cfgp)
425 os_free(config);
426 return NULL;
427 }
428
429 while (wpa_config_get_line(buf, sizeof(buf), f, &line, &pos)) {
430 if (os_strcmp(pos, "network={") == 0) {
431 ssid = wpa_config_read_network(f, &line, id++);
432 if (ssid == NULL) {
433 wpa_printf(MSG_ERROR, "Line %d: failed to "
434 "parse network block.", line);
435 errors++;
436 continue;
437 }
438 if (head == NULL) {
439 head = tail = ssid;
440 } else {
441 tail->next = ssid;
442 tail = ssid;
443 }
444 if (wpa_config_add_prio_network(config, ssid)) {
445 wpa_printf(MSG_ERROR, "Line %d: failed to add "
446 "network block to priority list.",
447 line);
448 errors++;
449 continue;
450 }
451 } else if (os_strcmp(pos, "cred={") == 0) {
452 cred = wpa_config_read_cred(f, &line, cred_id++);
453 if (cred == NULL) {
454 wpa_printf(MSG_ERROR, "Line %d: failed to "
455 "parse cred block.", line);
456 errors++;
457 continue;
458 }
459 if (cred_head == NULL) {
460 cred_head = cred_tail = cred;
461 } else {
462 cred_tail->next = cred;
463 cred_tail = cred;
464 }
465 #ifndef CONFIG_NO_CONFIG_BLOBS
466 } else if (os_strncmp(pos, "blob-base64-", 12) == 0) {
467 if (wpa_config_process_blob(config, f, &line, pos + 12)
468 < 0) {
469 wpa_printf(MSG_ERROR, "Line %d: failed to "
470 "process blob.", line);
471 errors++;
472 continue;
473 }
474 #endif /* CONFIG_NO_CONFIG_BLOBS */
475 } else if (wpa_config_process_global(config, pos, line) < 0) {
476 wpa_printf(MSG_ERROR, "Line %d: Invalid configuration "
477 "line '%s'.", line, pos);
478 errors++;
479 continue;
480 }
481 }
482
483 fclose(f);
484
485 config->ssid = head;
486 wpa_config_debug_dump_networks(config);
487 config->cred = cred_head;
488
489 #ifndef WPA_IGNORE_CONFIG_ERRORS
490 if (errors) {
491 if (config != cfgp)
492 wpa_config_free(config);
493 config = NULL;
494 head = NULL;
495 }
496 #endif /* WPA_IGNORE_CONFIG_ERRORS */
497
498 return config;
499 }
500
501
502 #ifndef CONFIG_NO_CONFIG_WRITE
503
504 static void write_str(FILE *f, const char *field, struct wpa_ssid *ssid)
505 {
506 char *value = wpa_config_get(ssid, field);
507 if (value == NULL)
508 return;
509 fprintf(f, "\t%s=%s\n", field, value);
510 str_clear_free(value);
511 }
512
513
514 static void write_int(FILE *f, const char *field, int value, int def)
515 {
516 if (value == def)
517 return;
518 fprintf(f, "\t%s=%d\n", field, value);
519 }
520
521
522 static void write_bssid(FILE *f, struct wpa_ssid *ssid)
523 {
524 char *value = wpa_config_get(ssid, "bssid");
525 if (value == NULL)
526 return;
527 fprintf(f, "\tbssid=%s\n", value);
528 os_free(value);
529 }
530
531
532 static void write_bssid_hint(FILE *f, struct wpa_ssid *ssid)
533 {
534 char *value = wpa_config_get(ssid, "bssid_hint");
535
536 if (!value)
537 return;
538 fprintf(f, "\tbssid_hint=%s\n", value);
539 os_free(value);
540 }
541
542
543 static void write_psk(FILE *f, struct wpa_ssid *ssid)
544 {
545 char *value;
546
547 if (ssid->mem_only_psk)
548 return;
549
550 value = wpa_config_get(ssid, "psk");
551 if (value == NULL)
552 return;
553 fprintf(f, "\tpsk=%s\n", value);
554 os_free(value);
555 }
556
557
558 static void write_proto(FILE *f, struct wpa_ssid *ssid)
559 {
560 char *value;
561
562 if (ssid->proto == DEFAULT_PROTO)
563 return;
564
565 value = wpa_config_get(ssid, "proto");
566 if (value == NULL)
567 return;
568 if (value[0])
569 fprintf(f, "\tproto=%s\n", value);
570 os_free(value);
571 }
572
573
574 static void write_key_mgmt(FILE *f, struct wpa_ssid *ssid)
575 {
576 char *value;
577
578 if (ssid->key_mgmt == DEFAULT_KEY_MGMT)
579 return;
580
581 value = wpa_config_get(ssid, "key_mgmt");
582 if (value == NULL)
583 return;
584 if (value[0])
585 fprintf(f, "\tkey_mgmt=%s\n", value);
586 os_free(value);
587 }
588
589
590 static void write_pairwise(FILE *f, struct wpa_ssid *ssid)
591 {
592 char *value;
593
594 if (ssid->pairwise_cipher == DEFAULT_PAIRWISE)
595 return;
596
597 value = wpa_config_get(ssid, "pairwise");
598 if (value == NULL)
599 return;
600 if (value[0])
601 fprintf(f, "\tpairwise=%s\n", value);
602 os_free(value);
603 }
604
605
606 static void write_group(FILE *f, struct wpa_ssid *ssid)
607 {
608 char *value;
609
610 if (ssid->group_cipher == DEFAULT_GROUP)
611 return;
612
613 value = wpa_config_get(ssid, "group");
614 if (value == NULL)
615 return;
616 if (value[0])
617 fprintf(f, "\tgroup=%s\n", value);
618 os_free(value);
619 }
620
621
622 static void write_group_mgmt(FILE *f, struct wpa_ssid *ssid)
623 {
624 char *value;
625
626 if (!ssid->group_mgmt_cipher)
627 return;
628
629 value = wpa_config_get(ssid, "group_mgmt");
630 if (!value)
631 return;
632 if (value[0])
633 fprintf(f, "\tgroup_mgmt=%s\n", value);
634 os_free(value);
635 }
636
637
638 static void write_auth_alg(FILE *f, struct wpa_ssid *ssid)
639 {
640 char *value;
641
642 if (ssid->auth_alg == 0)
643 return;
644
645 value = wpa_config_get(ssid, "auth_alg");
646 if (value == NULL)
647 return;
648 if (value[0])
649 fprintf(f, "\tauth_alg=%s\n", value);
650 os_free(value);
651 }
652
653
654 #ifdef IEEE8021X_EAPOL
655 static void write_eap(FILE *f, struct wpa_ssid *ssid)
656 {
657 char *value;
658
659 value = wpa_config_get(ssid, "eap");
660 if (value == NULL)
661 return;
662
663 if (value[0])
664 fprintf(f, "\teap=%s\n", value);
665 os_free(value);
666 }
667 #endif /* IEEE8021X_EAPOL */
668
669
670 #ifdef CONFIG_WEP
671 static void write_wep_key(FILE *f, int idx, struct wpa_ssid *ssid)
672 {
673 char field[20], *value;
674 int res;
675
676 res = os_snprintf(field, sizeof(field), "wep_key%d", idx);
677 if (os_snprintf_error(sizeof(field), res))
678 return;
679 value = wpa_config_get(ssid, field);
680 if (value) {
681 fprintf(f, "\t%s=%s\n", field, value);
682 os_free(value);
683 }
684 }
685 #endif /* CONFIG_WEP */
686
687
688 #ifdef CONFIG_P2P
689
690 static void write_go_p2p_dev_addr(FILE *f, struct wpa_ssid *ssid)
691 {
692 char *value = wpa_config_get(ssid, "go_p2p_dev_addr");
693 if (value == NULL)
694 return;
695 fprintf(f, "\tgo_p2p_dev_addr=%s\n", value);
696 os_free(value);
697 }
698
699 static void write_p2p_client_list(FILE *f, struct wpa_ssid *ssid)
700 {
701 char *value = wpa_config_get(ssid, "p2p_client_list");
702 if (value == NULL)
703 return;
704 fprintf(f, "\tp2p_client_list=%s\n", value);
705 os_free(value);
706 }
707
708
709 static void write_psk_list(FILE *f, struct wpa_ssid *ssid)
710 {
711 struct psk_list_entry *psk;
712 char hex[32 * 2 + 1];
713
714 dl_list_for_each(psk, &ssid->psk_list, struct psk_list_entry, list) {
715 wpa_snprintf_hex(hex, sizeof(hex), psk->psk, sizeof(psk->psk));
716 fprintf(f, "\tpsk_list=%s" MACSTR "-%s\n",
717 psk->p2p ? "P2P-" : "", MAC2STR(psk->addr), hex);
718 }
719 }
720
721 #endif /* CONFIG_P2P */
722
723
724 #ifdef CONFIG_MACSEC
725
726 static void write_mka_cak(FILE *f, struct wpa_ssid *ssid)
727 {
728 char *value;
729
730 if (!(ssid->mka_psk_set & MKA_PSK_SET_CAK))
731 return;
732
733 value = wpa_config_get(ssid, "mka_cak");
734 if (!value)
735 return;
736 fprintf(f, "\tmka_cak=%s\n", value);
737 os_free(value);
738 }
739
740
741 static void write_mka_ckn(FILE *f, struct wpa_ssid *ssid)
742 {
743 char *value;
744
745 if (!(ssid->mka_psk_set & MKA_PSK_SET_CKN))
746 return;
747
748 value = wpa_config_get(ssid, "mka_ckn");
749 if (!value)
750 return;
751 fprintf(f, "\tmka_ckn=%s\n", value);
752 os_free(value);
753 }
754
755 #endif /* CONFIG_MACSEC */
756
757
758 static void wpa_config_write_network(FILE *f, struct wpa_ssid *ssid)
759 {
760 #define STR(t) write_str(f, #t, ssid)
761 #define INT(t) write_int(f, #t, ssid->t, 0)
762 #define INTe(t, m) write_int(f, #t, ssid->eap.m, 0)
763 #define INT_DEF(t, def) write_int(f, #t, ssid->t, def)
764 #define INT_DEFe(t, m, def) write_int(f, #t, ssid->eap.m, def)
765
766 STR(ssid);
767 INT(scan_ssid);
768 write_bssid(f, ssid);
769 write_bssid_hint(f, ssid);
770 write_str(f, "bssid_blacklist", ssid);
771 write_str(f, "bssid_whitelist", ssid);
772 write_psk(f, ssid);
773 INT(mem_only_psk);
774 STR(sae_password);
775 STR(sae_password_id);
776 write_proto(f, ssid);
777 write_key_mgmt(f, ssid);
778 INT_DEF(bg_scan_period, DEFAULT_BG_SCAN_PERIOD);
779 write_pairwise(f, ssid);
780 write_group(f, ssid);
781 write_group_mgmt(f, ssid);
782 write_auth_alg(f, ssid);
783 STR(bgscan);
784 STR(autoscan);
785 STR(scan_freq);
786 #ifdef IEEE8021X_EAPOL
787 write_eap(f, ssid);
788 STR(identity);
789 STR(anonymous_identity);
790 STR(imsi_identity);
791 STR(machine_identity);
792 STR(password);
793 STR(machine_password);
794 STR(ca_cert);
795 STR(ca_path);
796 STR(client_cert);
797 STR(private_key);
798 STR(private_key_passwd);
799 STR(dh_file);
800 STR(subject_match);
801 STR(check_cert_subject);
802 STR(altsubject_match);
803 STR(domain_suffix_match);
804 STR(domain_match);
805 STR(ca_cert2);
806 STR(ca_path2);
807 STR(client_cert2);
808 STR(private_key2);
809 STR(private_key2_passwd);
810 STR(dh_file2);
811 STR(subject_match2);
812 STR(check_cert_subject2);
813 STR(altsubject_match2);
814 STR(domain_suffix_match2);
815 STR(domain_match2);
816 STR(machine_ca_cert);
817 STR(machine_ca_path);
818 STR(machine_client_cert);
819 STR(machine_private_key);
820 STR(machine_private_key_passwd);
821 STR(machine_dh_file);
822 STR(machine_subject_match);
823 STR(machine_check_cert_subject);
824 STR(machine_altsubject_match);
825 STR(machine_domain_suffix_match);
826 STR(machine_domain_match);
827 STR(phase1);
828 STR(phase2);
829 STR(machine_phase2);
830 STR(pcsc);
831 STR(pin);
832 STR(engine_id);
833 STR(key_id);
834 STR(cert_id);
835 STR(ca_cert_id);
836 STR(key2_id);
837 STR(pin2);
838 STR(engine2_id);
839 STR(cert2_id);
840 STR(ca_cert2_id);
841 INTe(engine, cert.engine);
842 INTe(engine2, phase2_cert.engine);
843 INTe(machine_engine, machine_cert.engine);
844 INT_DEF(eapol_flags, DEFAULT_EAPOL_FLAGS);
845 STR(openssl_ciphers);
846 INTe(erp, erp);
847 #endif /* IEEE8021X_EAPOL */
848 #ifdef CONFIG_WEP
849 {
850 int i;
851
852 for (i = 0; i < 4; i++)
853 write_wep_key(f, i, ssid);
854 INT(wep_tx_keyidx);
855 }
856 #endif /* CONFIG_WEP */
857 INT(priority);
858 #ifdef IEEE8021X_EAPOL
859 INT_DEF(eap_workaround, DEFAULT_EAP_WORKAROUND);
860 STR(pac_file);
861 INT_DEFe(fragment_size, fragment_size, DEFAULT_FRAGMENT_SIZE);
862 INTe(ocsp, cert.ocsp);
863 INTe(ocsp2, phase2_cert.ocsp);
864 INTe(machine_ocsp, machine_cert.ocsp);
865 INT_DEFe(sim_num, sim_num, DEFAULT_USER_SELECTED_SIM);
866 #endif /* IEEE8021X_EAPOL */
867 INT(mode);
868 INT(no_auto_peer);
869 INT(frequency);
870 INT(enable_edmg);
871 INT(edmg_channel);
872 INT(fixed_freq);
873 #ifdef CONFIG_ACS
874 INT(acs);
875 #endif /* CONFIG_ACS */
876 write_int(f, "proactive_key_caching", ssid->proactive_key_caching, -1);
877 INT(disabled);
878 INT(mixed_cell);
879 INT(vht);
880 INT_DEF(ht, 1);
881 INT(ht40);
882 INT_DEF(max_oper_chwidth, DEFAULT_MAX_OPER_CHWIDTH);
883 INT(vht_center_freq1);
884 INT(vht_center_freq2);
885 INT(pbss);
886 INT(wps_disabled);
887 INT(fils_dh_group);
888 write_int(f, "ieee80211w", ssid->ieee80211w,
889 MGMT_FRAME_PROTECTION_DEFAULT);
890 STR(id_str);
891 #ifdef CONFIG_P2P
892 write_go_p2p_dev_addr(f, ssid);
893 write_p2p_client_list(f, ssid);
894 write_psk_list(f, ssid);
895 #endif /* CONFIG_P2P */
896 INT(ap_max_inactivity);
897 INT(dtim_period);
898 INT(beacon_int);
899 #ifdef CONFIG_MACSEC
900 INT(macsec_policy);
901 write_mka_cak(f, ssid);
902 write_mka_ckn(f, ssid);
903 INT(macsec_integ_only);
904 INT(macsec_replay_protect);
905 INT(macsec_replay_window);
906 INT(macsec_port);
907 INT_DEF(mka_priority, DEFAULT_PRIO_NOT_KEY_SERVER);
908 #endif /* CONFIG_MACSEC */
909 #ifdef CONFIG_HS20
910 INT(update_identifier);
911 STR(roaming_consortium_selection);
912 #endif /* CONFIG_HS20 */
913 write_int(f, "mac_addr", ssid->mac_addr, -1);
914 #ifdef CONFIG_MESH
915 STR(mesh_basic_rates);
916 INT_DEF(dot11MeshMaxRetries, DEFAULT_MESH_MAX_RETRIES);
917 INT_DEF(dot11MeshRetryTimeout, DEFAULT_MESH_RETRY_TIMEOUT);
918 INT_DEF(dot11MeshConfirmTimeout, DEFAULT_MESH_CONFIRM_TIMEOUT);
919 INT_DEF(dot11MeshHoldingTimeout, DEFAULT_MESH_HOLDING_TIMEOUT);
920 INT_DEF(mesh_rssi_threshold, DEFAULT_MESH_RSSI_THRESHOLD);
921 #endif /* CONFIG_MESH */
922 INT(wpa_ptk_rekey);
923 INT(wpa_deny_ptk0_rekey);
924 INT(group_rekey);
925 INT(ignore_broadcast_ssid);
926 #ifdef CONFIG_DPP
927 STR(dpp_connector);
928 STR(dpp_netaccesskey);
929 INT(dpp_netaccesskey_expiry);
930 STR(dpp_csign);
931 #endif /* CONFIG_DPP */
932 INT(owe_group);
933 INT(owe_only);
934 INT(owe_ptk_workaround);
935 INT(multi_ap_backhaul_sta);
936 INT(ft_eap_pmksa_caching);
937 INT(beacon_prot);
938 #ifdef CONFIG_HT_OVERRIDES
939 INT_DEF(disable_ht, DEFAULT_DISABLE_HT);
940 INT_DEF(disable_ht40, DEFAULT_DISABLE_HT40);
941 INT_DEF(disable_sgi, DEFAULT_DISABLE_SGI);
942 INT_DEF(disable_ldpc, DEFAULT_DISABLE_LDPC);
943 INT(ht40_intolerant);
944 INT_DEF(tx_stbc, DEFAULT_TX_STBC);
945 INT_DEF(rx_stbc, DEFAULT_RX_STBC);
946 INT_DEF(disable_max_amsdu, DEFAULT_DISABLE_MAX_AMSDU);
947 INT_DEF(ampdu_factor, DEFAULT_AMPDU_FACTOR);
948 INT_DEF(ampdu_density, DEFAULT_AMPDU_DENSITY);
949 STR(ht_mcs);
950 #endif /* CONFIG_HT_OVERRIDES */
951 #ifdef CONFIG_VHT_OVERRIDES
952 INT(disable_vht);
953 INT(vht_capa);
954 INT(vht_capa_mask);
955 INT_DEF(vht_rx_mcs_nss_1, -1);
956 INT_DEF(vht_rx_mcs_nss_2, -1);
957 INT_DEF(vht_rx_mcs_nss_3, -1);
958 INT_DEF(vht_rx_mcs_nss_4, -1);
959 INT_DEF(vht_rx_mcs_nss_5, -1);
960 INT_DEF(vht_rx_mcs_nss_6, -1);
961 INT_DEF(vht_rx_mcs_nss_7, -1);
962 INT_DEF(vht_rx_mcs_nss_8, -1);
963 INT_DEF(vht_tx_mcs_nss_1, -1);
964 INT_DEF(vht_tx_mcs_nss_2, -1);
965 INT_DEF(vht_tx_mcs_nss_3, -1);
966 INT_DEF(vht_tx_mcs_nss_4, -1);
967 INT_DEF(vht_tx_mcs_nss_5, -1);
968 INT_DEF(vht_tx_mcs_nss_6, -1);
969 INT_DEF(vht_tx_mcs_nss_7, -1);
970 INT_DEF(vht_tx_mcs_nss_8, -1);
971 #endif /* CONFIG_VHT_OVERRIDES */
972
973 #undef STR
974 #undef INT
975 #undef INT_DEF
976 }
977
978
979 static void wpa_config_write_cred(FILE *f, struct wpa_cred *cred)
980 {
981 size_t i;
982
983 if (cred->priority)
984 fprintf(f, "\tpriority=%d\n", cred->priority);
985 if (cred->pcsc)
986 fprintf(f, "\tpcsc=%d\n", cred->pcsc);
987 if (cred->realm)
988 fprintf(f, "\trealm=\"%s\"\n", cred->realm);
989 if (cred->username)
990 fprintf(f, "\tusername=\"%s\"\n", cred->username);
991 if (cred->password && cred->ext_password)
992 fprintf(f, "\tpassword=ext:%s\n", cred->password);
993 else if (cred->password)
994 fprintf(f, "\tpassword=\"%s\"\n", cred->password);
995 if (cred->ca_cert)
996 fprintf(f, "\tca_cert=\"%s\"\n", cred->ca_cert);
997 if (cred->client_cert)
998 fprintf(f, "\tclient_cert=\"%s\"\n", cred->client_cert);
999 if (cred->private_key)
1000 fprintf(f, "\tprivate_key=\"%s\"\n", cred->private_key);
1001 if (cred->private_key_passwd)
1002 fprintf(f, "\tprivate_key_passwd=\"%s\"\n",
1003 cred->private_key_passwd);
1004 if (cred->imsi)
1005 fprintf(f, "\timsi=\"%s\"\n", cred->imsi);
1006 if (cred->milenage)
1007 fprintf(f, "\tmilenage=\"%s\"\n", cred->milenage);
1008 for (i = 0; i < cred->num_domain; i++)
1009 fprintf(f, "\tdomain=\"%s\"\n", cred->domain[i]);
1010 if (cred->domain_suffix_match)
1011 fprintf(f, "\tdomain_suffix_match=\"%s\"\n",
1012 cred->domain_suffix_match);
1013 if (cred->roaming_consortium_len) {
1014 fprintf(f, "\troaming_consortium=");
1015 for (i = 0; i < cred->roaming_consortium_len; i++)
1016 fprintf(f, "%02x", cred->roaming_consortium[i]);
1017 fprintf(f, "\n");
1018 }
1019 if (cred->eap_method) {
1020 const char *name;
1021 name = eap_get_name(cred->eap_method[0].vendor,
1022 cred->eap_method[0].method);
1023 if (name)
1024 fprintf(f, "\teap=%s\n", name);
1025 }
1026 if (cred->phase1)
1027 fprintf(f, "\tphase1=\"%s\"\n", cred->phase1);
1028 if (cred->phase2)
1029 fprintf(f, "\tphase2=\"%s\"\n", cred->phase2);
1030 if (cred->excluded_ssid) {
1031 size_t j;
1032 for (i = 0; i < cred->num_excluded_ssid; i++) {
1033 struct excluded_ssid *e = &cred->excluded_ssid[i];
1034 fprintf(f, "\texcluded_ssid=");
1035 for (j = 0; j < e->ssid_len; j++)
1036 fprintf(f, "%02x", e->ssid[j]);
1037 fprintf(f, "\n");
1038 }
1039 }
1040 if (cred->roaming_partner) {
1041 for (i = 0; i < cred->num_roaming_partner; i++) {
1042 struct roaming_partner *p = &cred->roaming_partner[i];
1043 fprintf(f, "\troaming_partner=\"%s,%d,%u,%s\"\n",
1044 p->fqdn, p->exact_match, p->priority,
1045 p->country);
1046 }
1047 }
1048 if (cred->update_identifier)
1049 fprintf(f, "\tupdate_identifier=%d\n", cred->update_identifier);
1050
1051 if (cred->provisioning_sp)
1052 fprintf(f, "\tprovisioning_sp=\"%s\"\n", cred->provisioning_sp);
1053 if (cred->sp_priority)
1054 fprintf(f, "\tsp_priority=%d\n", cred->sp_priority);
1055
1056 if (cred->min_dl_bandwidth_home)
1057 fprintf(f, "\tmin_dl_bandwidth_home=%u\n",
1058 cred->min_dl_bandwidth_home);
1059 if (cred->min_ul_bandwidth_home)
1060 fprintf(f, "\tmin_ul_bandwidth_home=%u\n",
1061 cred->min_ul_bandwidth_home);
1062 if (cred->min_dl_bandwidth_roaming)
1063 fprintf(f, "\tmin_dl_bandwidth_roaming=%u\n",
1064 cred->min_dl_bandwidth_roaming);
1065 if (cred->min_ul_bandwidth_roaming)
1066 fprintf(f, "\tmin_ul_bandwidth_roaming=%u\n",
1067 cred->min_ul_bandwidth_roaming);
1068
1069 if (cred->max_bss_load)
1070 fprintf(f, "\tmax_bss_load=%u\n",
1071 cred->max_bss_load);
1072
1073 if (cred->ocsp)
1074 fprintf(f, "\tocsp=%d\n", cred->ocsp);
1075
1076 if (cred->num_req_conn_capab) {
1077 for (i = 0; i < cred->num_req_conn_capab; i++) {
1078 int *ports;
1079
1080 fprintf(f, "\treq_conn_capab=%u",
1081 cred->req_conn_capab_proto[i]);
1082 ports = cred->req_conn_capab_port[i];
1083 if (ports) {
1084 int j;
1085 for (j = 0; ports[j] != -1; j++) {
1086 fprintf(f, "%s%d", j > 0 ? "," : ":",
1087 ports[j]);
1088 }
1089 }
1090 fprintf(f, "\n");
1091 }
1092 }
1093
1094 if (cred->required_roaming_consortium_len) {
1095 fprintf(f, "\trequired_roaming_consortium=");
1096 for (i = 0; i < cred->required_roaming_consortium_len; i++)
1097 fprintf(f, "%02x",
1098 cred->required_roaming_consortium[i]);
1099 fprintf(f, "\n");
1100 }
1101
1102 if (cred->num_roaming_consortiums) {
1103 size_t j;
1104
1105 fprintf(f, "\troaming_consortiums=\"");
1106 for (i = 0; i < cred->num_roaming_consortiums; i++) {
1107 if (i > 0)
1108 fprintf(f, ",");
1109 for (j = 0; j < cred->roaming_consortiums_len[i]; j++)
1110 fprintf(f, "%02x",
1111 cred->roaming_consortiums[i][j]);
1112 }
1113 fprintf(f, "\"\n");
1114 }
1115
1116 if (cred->sim_num != DEFAULT_USER_SELECTED_SIM)
1117 fprintf(f, "\tsim_num=%d\n", cred->sim_num);
1118 }
1119
1120
1121 #ifndef CONFIG_NO_CONFIG_BLOBS
1122 static int wpa_config_write_blob(FILE *f, struct wpa_config_blob *blob)
1123 {
1124 char *encoded;
1125
1126 encoded = base64_encode(blob->data, blob->len, NULL);
1127 if (encoded == NULL)
1128 return -1;
1129
1130 fprintf(f, "\nblob-base64-%s={\n%s}\n", blob->name, encoded);
1131 os_free(encoded);
1132 return 0;
1133 }
1134 #endif /* CONFIG_NO_CONFIG_BLOBS */
1135
1136
1137 static void write_global_bin(FILE *f, const char *field,
1138 const struct wpabuf *val)
1139 {
1140 size_t i;
1141 const u8 *pos;
1142
1143 if (val == NULL)
1144 return;
1145
1146 fprintf(f, "%s=", field);
1147 pos = wpabuf_head(val);
1148 for (i = 0; i < wpabuf_len(val); i++)
1149 fprintf(f, "%02X", *pos++);
1150 fprintf(f, "\n");
1151 }
1152
1153
1154 static void wpa_config_write_global(FILE *f, struct wpa_config *config)
1155 {
1156 #ifdef CONFIG_CTRL_IFACE
1157 if (config->ctrl_interface)
1158 fprintf(f, "ctrl_interface=%s\n", config->ctrl_interface);
1159 if (config->ctrl_interface_group)
1160 fprintf(f, "ctrl_interface_group=%s\n",
1161 config->ctrl_interface_group);
1162 #endif /* CONFIG_CTRL_IFACE */
1163 if (config->eapol_version != DEFAULT_EAPOL_VERSION)
1164 fprintf(f, "eapol_version=%d\n", config->eapol_version);
1165 if (config->ap_scan != DEFAULT_AP_SCAN)
1166 fprintf(f, "ap_scan=%d\n", config->ap_scan);
1167 if (config->disable_scan_offload)
1168 fprintf(f, "disable_scan_offload=%d\n",
1169 config->disable_scan_offload);
1170 if (config->fast_reauth != DEFAULT_FAST_REAUTH)
1171 fprintf(f, "fast_reauth=%d\n", config->fast_reauth);
1172 if (config->opensc_engine_path)
1173 fprintf(f, "opensc_engine_path=%s\n",
1174 config->opensc_engine_path);
1175 if (config->pkcs11_engine_path)
1176 fprintf(f, "pkcs11_engine_path=%s\n",
1177 config->pkcs11_engine_path);
1178 if (config->pkcs11_module_path)
1179 fprintf(f, "pkcs11_module_path=%s\n",
1180 config->pkcs11_module_path);
1181 if (config->openssl_ciphers)
1182 fprintf(f, "openssl_ciphers=%s\n", config->openssl_ciphers);
1183 if (config->pcsc_reader)
1184 fprintf(f, "pcsc_reader=%s\n", config->pcsc_reader);
1185 if (config->pcsc_pin)
1186 fprintf(f, "pcsc_pin=%s\n", config->pcsc_pin);
1187 if (config->driver_param)
1188 fprintf(f, "driver_param=%s\n", config->driver_param);
1189 if (config->dot11RSNAConfigPMKLifetime)
1190 fprintf(f, "dot11RSNAConfigPMKLifetime=%u\n",
1191 config->dot11RSNAConfigPMKLifetime);
1192 if (config->dot11RSNAConfigPMKReauthThreshold)
1193 fprintf(f, "dot11RSNAConfigPMKReauthThreshold=%u\n",
1194 config->dot11RSNAConfigPMKReauthThreshold);
1195 if (config->dot11RSNAConfigSATimeout)
1196 fprintf(f, "dot11RSNAConfigSATimeout=%u\n",
1197 config->dot11RSNAConfigSATimeout);
1198 if (config->update_config)
1199 fprintf(f, "update_config=%d\n", config->update_config);
1200 #ifdef CONFIG_WPS
1201 if (!is_nil_uuid(config->uuid)) {
1202 char buf[40];
1203 uuid_bin2str(config->uuid, buf, sizeof(buf));
1204 fprintf(f, "uuid=%s\n", buf);
1205 }
1206 if (config->auto_uuid)
1207 fprintf(f, "auto_uuid=%d\n", config->auto_uuid);
1208 if (config->device_name)
1209 fprintf(f, "device_name=%s\n", config->device_name);
1210 if (config->manufacturer)
1211 fprintf(f, "manufacturer=%s\n", config->manufacturer);
1212 if (config->model_name)
1213 fprintf(f, "model_name=%s\n", config->model_name);
1214 if (config->model_number)
1215 fprintf(f, "model_number=%s\n", config->model_number);
1216 if (config->serial_number)
1217 fprintf(f, "serial_number=%s\n", config->serial_number);
1218 {
1219 char _buf[WPS_DEV_TYPE_BUFSIZE], *buf;
1220 buf = wps_dev_type_bin2str(config->device_type,
1221 _buf, sizeof(_buf));
1222 if (os_strcmp(buf, "0-00000000-0") != 0)
1223 fprintf(f, "device_type=%s\n", buf);
1224 }
1225 if (WPA_GET_BE32(config->os_version))
1226 fprintf(f, "os_version=%08x\n",
1227 WPA_GET_BE32(config->os_version));
1228 if (config->config_methods)
1229 fprintf(f, "config_methods=%s\n", config->config_methods);
1230 if (config->wps_cred_processing)
1231 fprintf(f, "wps_cred_processing=%d\n",
1232 config->wps_cred_processing);
1233 if (config->wps_cred_add_sae)
1234 fprintf(f, "wps_cred_add_sae=%d\n",
1235 config->wps_cred_add_sae);
1236 if (config->wps_vendor_ext_m1) {
1237 int i, len = wpabuf_len(config->wps_vendor_ext_m1);
1238 const u8 *p = wpabuf_head_u8(config->wps_vendor_ext_m1);
1239 if (len > 0) {
1240 fprintf(f, "wps_vendor_ext_m1=");
1241 for (i = 0; i < len; i++)
1242 fprintf(f, "%02x", *p++);
1243 fprintf(f, "\n");
1244 }
1245 }
1246 #endif /* CONFIG_WPS */
1247 #ifdef CONFIG_P2P
1248 {
1249 int i;
1250 char _buf[WPS_DEV_TYPE_BUFSIZE], *buf;
1251
1252 for (i = 0; i < config->num_sec_device_types; i++) {
1253 buf = wps_dev_type_bin2str(config->sec_device_type[i],
1254 _buf, sizeof(_buf));
1255 if (buf)
1256 fprintf(f, "sec_device_type=%s\n", buf);
1257 }
1258 }
1259 if (config->p2p_listen_reg_class)
1260 fprintf(f, "p2p_listen_reg_class=%d\n",
1261 config->p2p_listen_reg_class);
1262 if (config->p2p_listen_channel)
1263 fprintf(f, "p2p_listen_channel=%d\n",
1264 config->p2p_listen_channel);
1265 if (config->p2p_oper_reg_class)
1266 fprintf(f, "p2p_oper_reg_class=%d\n",
1267 config->p2p_oper_reg_class);
1268 if (config->p2p_oper_channel)
1269 fprintf(f, "p2p_oper_channel=%d\n", config->p2p_oper_channel);
1270 if (config->p2p_go_intent != DEFAULT_P2P_GO_INTENT)
1271 fprintf(f, "p2p_go_intent=%d\n", config->p2p_go_intent);
1272 if (config->p2p_ssid_postfix)
1273 fprintf(f, "p2p_ssid_postfix=%s\n", config->p2p_ssid_postfix);
1274 if (config->persistent_reconnect)
1275 fprintf(f, "persistent_reconnect=%d\n",
1276 config->persistent_reconnect);
1277 if (config->p2p_intra_bss != DEFAULT_P2P_INTRA_BSS)
1278 fprintf(f, "p2p_intra_bss=%d\n", config->p2p_intra_bss);
1279 if (config->p2p_group_idle)
1280 fprintf(f, "p2p_group_idle=%d\n", config->p2p_group_idle);
1281 if (config->p2p_passphrase_len)
1282 fprintf(f, "p2p_passphrase_len=%u\n",
1283 config->p2p_passphrase_len);
1284 if (config->p2p_pref_chan) {
1285 unsigned int i;
1286 fprintf(f, "p2p_pref_chan=");
1287 for (i = 0; i < config->num_p2p_pref_chan; i++) {
1288 fprintf(f, "%s%u:%u", i > 0 ? "," : "",
1289 config->p2p_pref_chan[i].op_class,
1290 config->p2p_pref_chan[i].chan);
1291 }
1292 fprintf(f, "\n");
1293 }
1294 if (config->p2p_no_go_freq.num) {
1295 char *val = freq_range_list_str(&config->p2p_no_go_freq);
1296 if (val) {
1297 fprintf(f, "p2p_no_go_freq=%s\n", val);
1298 os_free(val);
1299 }
1300 }
1301 if (config->p2p_add_cli_chan)
1302 fprintf(f, "p2p_add_cli_chan=%d\n", config->p2p_add_cli_chan);
1303 if (config->p2p_optimize_listen_chan !=
1304 DEFAULT_P2P_OPTIMIZE_LISTEN_CHAN)
1305 fprintf(f, "p2p_optimize_listen_chan=%d\n",
1306 config->p2p_optimize_listen_chan);
1307 if (config->p2p_go_ht40)
1308 fprintf(f, "p2p_go_ht40=%d\n", config->p2p_go_ht40);
1309 if (config->p2p_go_vht)
1310 fprintf(f, "p2p_go_vht=%d\n", config->p2p_go_vht);
1311 if (config->p2p_go_he)
1312 fprintf(f, "p2p_go_he=%d\n", config->p2p_go_he);
1313 if (config->p2p_go_edmg)
1314 fprintf(f, "p2p_go_edmg=%d\n", config->p2p_go_edmg);
1315 if (config->p2p_go_ctwindow != DEFAULT_P2P_GO_CTWINDOW)
1316 fprintf(f, "p2p_go_ctwindow=%d\n", config->p2p_go_ctwindow);
1317 if (config->p2p_disabled)
1318 fprintf(f, "p2p_disabled=%d\n", config->p2p_disabled);
1319 if (config->p2p_no_group_iface)
1320 fprintf(f, "p2p_no_group_iface=%d\n",
1321 config->p2p_no_group_iface);
1322 if (config->p2p_ignore_shared_freq)
1323 fprintf(f, "p2p_ignore_shared_freq=%d\n",
1324 config->p2p_ignore_shared_freq);
1325 if (config->p2p_cli_probe)
1326 fprintf(f, "p2p_cli_probe=%d\n", config->p2p_cli_probe);
1327 if (config->p2p_go_freq_change_policy != DEFAULT_P2P_GO_FREQ_MOVE)
1328 fprintf(f, "p2p_go_freq_change_policy=%u\n",
1329 config->p2p_go_freq_change_policy);
1330 if (WPA_GET_BE32(config->ip_addr_go))
1331 fprintf(f, "ip_addr_go=%u.%u.%u.%u\n",
1332 config->ip_addr_go[0], config->ip_addr_go[1],
1333 config->ip_addr_go[2], config->ip_addr_go[3]);
1334 if (WPA_GET_BE32(config->ip_addr_mask))
1335 fprintf(f, "ip_addr_mask=%u.%u.%u.%u\n",
1336 config->ip_addr_mask[0], config->ip_addr_mask[1],
1337 config->ip_addr_mask[2], config->ip_addr_mask[3]);
1338 if (WPA_GET_BE32(config->ip_addr_start))
1339 fprintf(f, "ip_addr_start=%u.%u.%u.%u\n",
1340 config->ip_addr_start[0], config->ip_addr_start[1],
1341 config->ip_addr_start[2], config->ip_addr_start[3]);
1342 if (WPA_GET_BE32(config->ip_addr_end))
1343 fprintf(f, "ip_addr_end=%u.%u.%u.%u\n",
1344 config->ip_addr_end[0], config->ip_addr_end[1],
1345 config->ip_addr_end[2], config->ip_addr_end[3]);
1346 #endif /* CONFIG_P2P */
1347 if (config->country[0] && config->country[1]) {
1348 fprintf(f, "country=%c%c\n",
1349 config->country[0], config->country[1]);
1350 }
1351 if (config->bss_max_count != DEFAULT_BSS_MAX_COUNT)
1352 fprintf(f, "bss_max_count=%u\n", config->bss_max_count);
1353 if (config->bss_expiration_age != DEFAULT_BSS_EXPIRATION_AGE)
1354 fprintf(f, "bss_expiration_age=%u\n",
1355 config->bss_expiration_age);
1356 if (config->bss_expiration_scan_count !=
1357 DEFAULT_BSS_EXPIRATION_SCAN_COUNT)
1358 fprintf(f, "bss_expiration_scan_count=%u\n",
1359 config->bss_expiration_scan_count);
1360 if (config->filter_ssids)
1361 fprintf(f, "filter_ssids=%d\n", config->filter_ssids);
1362 if (config->filter_rssi)
1363 fprintf(f, "filter_rssi=%d\n", config->filter_rssi);
1364 if (config->max_num_sta != DEFAULT_MAX_NUM_STA)
1365 fprintf(f, "max_num_sta=%u\n", config->max_num_sta);
1366 if (config->ap_isolate != DEFAULT_AP_ISOLATE)
1367 fprintf(f, "ap_isolate=%u\n", config->ap_isolate);
1368 if (config->disassoc_low_ack)
1369 fprintf(f, "disassoc_low_ack=%d\n", config->disassoc_low_ack);
1370 #ifdef CONFIG_HS20
1371 if (config->hs20)
1372 fprintf(f, "hs20=1\n");
1373 #endif /* CONFIG_HS20 */
1374 #ifdef CONFIG_INTERWORKING
1375 if (config->interworking)
1376 fprintf(f, "interworking=%d\n", config->interworking);
1377 if (!is_zero_ether_addr(config->hessid))
1378 fprintf(f, "hessid=" MACSTR "\n", MAC2STR(config->hessid));
1379 if (config->access_network_type != DEFAULT_ACCESS_NETWORK_TYPE)
1380 fprintf(f, "access_network_type=%d\n",
1381 config->access_network_type);
1382 if (config->go_interworking)
1383 fprintf(f, "go_interworking=%d\n", config->go_interworking);
1384 if (config->go_access_network_type)
1385 fprintf(f, "go_access_network_type=%d\n",
1386 config->go_access_network_type);
1387 if (config->go_internet)
1388 fprintf(f, "go_internet=%d\n", config->go_internet);
1389 if (config->go_venue_group)
1390 fprintf(f, "go_venue_group=%d\n", config->go_venue_group);
1391 if (config->go_venue_type)
1392 fprintf(f, "go_venue_type=%d\n", config->go_venue_type);
1393 #endif /* CONFIG_INTERWORKING */
1394 if (config->pbc_in_m1)
1395 fprintf(f, "pbc_in_m1=%d\n", config->pbc_in_m1);
1396 if (config->wps_nfc_pw_from_config) {
1397 if (config->wps_nfc_dev_pw_id)
1398 fprintf(f, "wps_nfc_dev_pw_id=%d\n",
1399 config->wps_nfc_dev_pw_id);
1400 write_global_bin(f, "wps_nfc_dh_pubkey",
1401 config->wps_nfc_dh_pubkey);
1402 write_global_bin(f, "wps_nfc_dh_privkey",
1403 config->wps_nfc_dh_privkey);
1404 write_global_bin(f, "wps_nfc_dev_pw", config->wps_nfc_dev_pw);
1405 }
1406
1407 if (config->ext_password_backend)
1408 fprintf(f, "ext_password_backend=%s\n",
1409 config->ext_password_backend);
1410 if (config->p2p_go_max_inactivity != DEFAULT_P2P_GO_MAX_INACTIVITY)
1411 fprintf(f, "p2p_go_max_inactivity=%d\n",
1412 config->p2p_go_max_inactivity);
1413 if (config->auto_interworking)
1414 fprintf(f, "auto_interworking=%d\n",
1415 config->auto_interworking);
1416 if (config->okc)
1417 fprintf(f, "okc=%d\n", config->okc);
1418 if (config->pmf)
1419 fprintf(f, "pmf=%d\n", config->pmf);
1420 if (config->dtim_period)
1421 fprintf(f, "dtim_period=%d\n", config->dtim_period);
1422 if (config->beacon_int)
1423 fprintf(f, "beacon_int=%d\n", config->beacon_int);
1424
1425 if (config->sae_groups) {
1426 int i;
1427 fprintf(f, "sae_groups=");
1428 for (i = 0; config->sae_groups[i] > 0; i++) {
1429 fprintf(f, "%s%d", i > 0 ? " " : "",
1430 config->sae_groups[i]);
1431 }
1432 fprintf(f, "\n");
1433 }
1434
1435 if (config->sae_pwe)
1436 fprintf(f, "sae_pwe=%d\n", config->sae_pwe);
1437
1438 if (config->sae_pmkid_in_assoc)
1439 fprintf(f, "sae_pmkid_in_assoc=%d\n",
1440 config->sae_pmkid_in_assoc);
1441
1442 if (config->ap_vendor_elements) {
1443 int i, len = wpabuf_len(config->ap_vendor_elements);
1444 const u8 *p = wpabuf_head_u8(config->ap_vendor_elements);
1445 if (len > 0) {
1446 fprintf(f, "ap_vendor_elements=");
1447 for (i = 0; i < len; i++)
1448 fprintf(f, "%02x", *p++);
1449 fprintf(f, "\n");
1450 }
1451 }
1452
1453 if (config->ignore_old_scan_res)
1454 fprintf(f, "ignore_old_scan_res=%d\n",
1455 config->ignore_old_scan_res);
1456
1457 if (config->freq_list && config->freq_list[0]) {
1458 int i;
1459 fprintf(f, "freq_list=");
1460 for (i = 0; config->freq_list[i]; i++) {
1461 fprintf(f, "%s%d", i > 0 ? " " : "",
1462 config->freq_list[i]);
1463 }
1464 fprintf(f, "\n");
1465 }
1466 if (config->scan_cur_freq != DEFAULT_SCAN_CUR_FREQ)
1467 fprintf(f, "scan_cur_freq=%d\n", config->scan_cur_freq);
1468
1469 if (config->sched_scan_interval)
1470 fprintf(f, "sched_scan_interval=%u\n",
1471 config->sched_scan_interval);
1472
1473 if (config->sched_scan_start_delay)
1474 fprintf(f, "sched_scan_start_delay=%u\n",
1475 config->sched_scan_start_delay);
1476
1477 if (config->external_sim)
1478 fprintf(f, "external_sim=%d\n", config->external_sim);
1479
1480 if (config->tdls_external_control)
1481 fprintf(f, "tdls_external_control=%d\n",
1482 config->tdls_external_control);
1483
1484 if (config->wowlan_triggers)
1485 fprintf(f, "wowlan_triggers=%s\n",
1486 config->wowlan_triggers);
1487
1488 if (config->bgscan)
1489 fprintf(f, "bgscan=\"%s\"\n", config->bgscan);
1490
1491 if (config->autoscan)
1492 fprintf(f, "autoscan=%s\n", config->autoscan);
1493
1494 if (config->p2p_search_delay != DEFAULT_P2P_SEARCH_DELAY)
1495 fprintf(f, "p2p_search_delay=%u\n",
1496 config->p2p_search_delay);
1497
1498 if (config->mac_addr)
1499 fprintf(f, "mac_addr=%d\n", config->mac_addr);
1500
1501 if (config->rand_addr_lifetime != DEFAULT_RAND_ADDR_LIFETIME)
1502 fprintf(f, "rand_addr_lifetime=%u\n",
1503 config->rand_addr_lifetime);
1504
1505 if (config->preassoc_mac_addr)
1506 fprintf(f, "preassoc_mac_addr=%d\n", config->preassoc_mac_addr);
1507
1508 if (config->key_mgmt_offload != DEFAULT_KEY_MGMT_OFFLOAD)
1509 fprintf(f, "key_mgmt_offload=%d\n", config->key_mgmt_offload);
1510
1511 if (config->user_mpm != DEFAULT_USER_MPM)
1512 fprintf(f, "user_mpm=%d\n", config->user_mpm);
1513
1514 if (config->max_peer_links != DEFAULT_MAX_PEER_LINKS)
1515 fprintf(f, "max_peer_links=%d\n", config->max_peer_links);
1516
1517 if (config->cert_in_cb != DEFAULT_CERT_IN_CB)
1518 fprintf(f, "cert_in_cb=%d\n", config->cert_in_cb);
1519
1520 if (config->mesh_max_inactivity != DEFAULT_MESH_MAX_INACTIVITY)
1521 fprintf(f, "mesh_max_inactivity=%d\n",
1522 config->mesh_max_inactivity);
1523
1524 if (config->dot11RSNASAERetransPeriod !=
1525 DEFAULT_DOT11_RSNA_SAE_RETRANS_PERIOD)
1526 fprintf(f, "dot11RSNASAERetransPeriod=%d\n",
1527 config->dot11RSNASAERetransPeriod);
1528
1529 if (config->passive_scan)
1530 fprintf(f, "passive_scan=%d\n", config->passive_scan);
1531
1532 if (config->reassoc_same_bss_optim)
1533 fprintf(f, "reassoc_same_bss_optim=%d\n",
1534 config->reassoc_same_bss_optim);
1535
1536 if (config->wps_priority)
1537 fprintf(f, "wps_priority=%d\n", config->wps_priority);
1538
1539 if (config->wpa_rsc_relaxation != DEFAULT_WPA_RSC_RELAXATION)
1540 fprintf(f, "wpa_rsc_relaxation=%d\n",
1541 config->wpa_rsc_relaxation);
1542
1543 if (config->sched_scan_plans)
1544 fprintf(f, "sched_scan_plans=%s\n", config->sched_scan_plans);
1545
1546 #ifdef CONFIG_MBO
1547 if (config->non_pref_chan)
1548 fprintf(f, "non_pref_chan=%s\n", config->non_pref_chan);
1549 if (config->mbo_cell_capa != DEFAULT_MBO_CELL_CAPA)
1550 fprintf(f, "mbo_cell_capa=%u\n", config->mbo_cell_capa);
1551 if (config->disassoc_imminent_rssi_threshold !=
1552 DEFAULT_DISASSOC_IMMINENT_RSSI_THRESHOLD)
1553 fprintf(f, "disassoc_imminent_rssi_threshold=%d\n",
1554 config->disassoc_imminent_rssi_threshold);
1555 if (config->oce != DEFAULT_OCE_SUPPORT)
1556 fprintf(f, "oce=%u\n", config->oce);
1557 #endif /* CONFIG_MBO */
1558
1559 if (config->gas_address3)
1560 fprintf(f, "gas_address3=%d\n", config->gas_address3);
1561
1562 if (config->ftm_responder)
1563 fprintf(f, "ftm_responder=%d\n", config->ftm_responder);
1564 if (config->ftm_initiator)
1565 fprintf(f, "ftm_initiator=%d\n", config->ftm_initiator);
1566
1567 if (config->osu_dir)
1568 fprintf(f, "osu_dir=%s\n", config->osu_dir);
1569
1570 if (config->fst_group_id)
1571 fprintf(f, "fst_group_id=%s\n", config->fst_group_id);
1572 if (config->fst_priority)
1573 fprintf(f, "fst_priority=%d\n", config->fst_priority);
1574 if (config->fst_llt)
1575 fprintf(f, "fst_llt=%d\n", config->fst_llt);
1576
1577 if (config->gas_rand_addr_lifetime != DEFAULT_RAND_ADDR_LIFETIME)
1578 fprintf(f, "gas_rand_addr_lifetime=%u\n",
1579 config->gas_rand_addr_lifetime);
1580 if (config->gas_rand_mac_addr)
1581 fprintf(f, "gas_rand_mac_addr=%d\n", config->gas_rand_mac_addr);
1582 if (config->dpp_config_processing)
1583 fprintf(f, "dpp_config_processing=%d\n",
1584 config->dpp_config_processing);
1585 if (config->coloc_intf_reporting)
1586 fprintf(f, "coloc_intf_reporting=%d\n",
1587 config->coloc_intf_reporting);
1588 if (config->p2p_device_random_mac_addr)
1589 fprintf(f, "p2p_device_random_mac_addr=%d\n",
1590 config->p2p_device_random_mac_addr);
1591 if (!is_zero_ether_addr(config->p2p_device_persistent_mac_addr))
1592 fprintf(f, "p2p_device_persistent_mac_addr=" MACSTR "\n",
1593 MAC2STR(config->p2p_device_persistent_mac_addr));
1594 if (config->p2p_interface_random_mac_addr)
1595 fprintf(f, "p2p_interface_random_mac_addr=%d\n",
1596 config->p2p_interface_random_mac_addr);
1597 if (config->disable_btm)
1598 fprintf(f, "disable_btm=1\n");
1599 if (config->extended_key_id != DEFAULT_EXTENDED_KEY_ID)
1600 fprintf(f, "extended_key_id=%d\n",
1601 config->extended_key_id);
1602 }
1603
1604 #endif /* CONFIG_NO_CONFIG_WRITE */
1605
1606
1607 int wpa_config_write(const char *name, struct wpa_config *config)
1608 {
1609 #ifndef CONFIG_NO_CONFIG_WRITE
1610 FILE *f;
1611 struct wpa_ssid *ssid;
1612 struct wpa_cred *cred;
1613 #ifndef CONFIG_NO_CONFIG_BLOBS
1614 struct wpa_config_blob *blob;
1615 #endif /* CONFIG_NO_CONFIG_BLOBS */
1616 int ret = 0;
1617 const char *orig_name = name;
1618 int tmp_len;
1619 char *tmp_name;
1620
1621 if (!name) {
1622 wpa_printf(MSG_ERROR, "No configuration file for writing");
1623 return -1;
1624 }
1625
1626 tmp_len = os_strlen(name) + 5; /* allow space for .tmp suffix */
1627 tmp_name = os_malloc(tmp_len);
1628 if (tmp_name) {
1629 os_snprintf(tmp_name, tmp_len, "%s.tmp", name);
1630 name = tmp_name;
1631 }
1632
1633 wpa_printf(MSG_DEBUG, "Writing configuration file '%s'", name);
1634
1635 f = fopen(name, "w");
1636 if (f == NULL) {
1637 wpa_printf(MSG_DEBUG, "Failed to open '%s' for writing", name);
1638 os_free(tmp_name);
1639 return -1;
1640 }
1641
1642 wpa_config_write_global(f, config);
1643
1644 for (cred = config->cred; cred; cred = cred->next) {
1645 if (cred->temporary)
1646 continue;
1647 fprintf(f, "\ncred={\n");
1648 wpa_config_write_cred(f, cred);
1649 fprintf(f, "}\n");
1650 }
1651
1652 for (ssid = config->ssid; ssid; ssid = ssid->next) {
1653 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS || ssid->temporary)
1654 continue; /* do not save temporary networks */
1655 if (wpa_key_mgmt_wpa_psk_no_sae(ssid->key_mgmt) &&
1656 !ssid->psk_set && !ssid->passphrase)
1657 continue; /* do not save invalid network */
1658 if (wpa_key_mgmt_sae(ssid->key_mgmt) &&
1659 !ssid->passphrase && !ssid->sae_password)
1660 continue; /* do not save invalid network */
1661 fprintf(f, "\nnetwork={\n");
1662 wpa_config_write_network(f, ssid);
1663 fprintf(f, "}\n");
1664 }
1665
1666 #ifndef CONFIG_NO_CONFIG_BLOBS
1667 for (blob = config->blobs; blob; blob = blob->next) {
1668 ret = wpa_config_write_blob(f, blob);
1669 if (ret)
1670 break;
1671 }
1672 #endif /* CONFIG_NO_CONFIG_BLOBS */
1673
1674 os_fdatasync(f);
1675
1676 fclose(f);
1677
1678 if (tmp_name) {
1679 int chmod_ret = 0;
1680
1681 #ifdef ANDROID
1682 chmod_ret = chmod(tmp_name,
1683 S_IRUSR | S_IWUSR | S_IRGRP | S_IWGRP);
1684 #endif /* ANDROID */
1685 if (chmod_ret != 0 || rename(tmp_name, orig_name) != 0)
1686 ret = -1;
1687
1688 os_free(tmp_name);
1689 }
1690
1691 wpa_printf(MSG_DEBUG, "Configuration file '%s' written %ssuccessfully",
1692 orig_name, ret ? "un" : "");
1693 return ret;
1694 #else /* CONFIG_NO_CONFIG_WRITE */
1695 return -1;
1696 #endif /* CONFIG_NO_CONFIG_WRITE */
1697 }
Unnamed repository; edit this file 'description' to name the repository.