Gitiles
Code Review Sign In
gerrit.omnirom.org / android_external_wpa_supplicant_8 / 75ecf5267604f166b85a7ee2cf0d9cb682966680 / . / wpa_supplicant / ap.c
blob: dddac4469cef5a5e5d1bb90b48cff10d8f643692 [file] [log] [blame]
Dmitry Shmidt8d520ff2011-05-09 14:06:53 -0700[diff] [blame]1/*
2 * WPA Supplicant - Basic AP mode support routines
3 * Copyright (c) 2003-2009, Jouni Malinen <j@w1.fi>
4 * Copyright (c) 2009, Atheros Communications
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 as
8 * published by the Free Software Foundation.
9 *
10 * Alternatively, this software may be distributed under the terms of BSD
11 * license.
12 *
13 * See README and COPYING for more details.
14 */
15
16#include "utils/includes.h"
17
18#include "utils/common.h"
19#include "utils/eloop.h"
20#include "utils/uuid.h"
21#include "common/ieee802_11_defs.h"
22#include "common/wpa_ctrl.h"
23#include "ap/hostapd.h"
24#include "ap/ap_config.h"
25#include "ap/ap_drv_ops.h"
26#ifdef NEED_AP_MLME
27#include "ap/ieee802_11.h"
28#endif /* NEED_AP_MLME */
29#include "ap/beacon.h"
30#include "ap/ieee802_1x.h"
31#include "ap/wps_hostapd.h"
32#include "ap/ctrl_iface_ap.h"
33#include "eap_common/eap_defs.h"
34#include "eap_server/eap_methods.h"
35#include "eap_common/eap_wsc_common.h"
36#include "wps/wps.h"
37#include "common/ieee802_11_defs.h"
38#include "config_ssid.h"
39#include "config.h"
40#include "wpa_supplicant_i.h"
41#include "driver_i.h"
42#include "p2p_supplicant.h"
43#include "ap.h"
44#include "ap/sta_info.h"
45#include "notify.h"
46
47
48#ifdef CONFIG_WPS
49static void wpas_wps_ap_pin_timeout(void *eloop_data, void *user_ctx);
50#endif /* CONFIG_WPS */
51
52
53static int wpa_supplicant_conf_ap(struct wpa_supplicant *wpa_s,
54 struct wpa_ssid *ssid,
55 struct hostapd_config *conf)
56{
57 struct hostapd_bss_config *bss = &conf->bss[0];
58 int pairwise;
59
60 conf->driver = wpa_s->driver;
61
62 os_strlcpy(bss->iface, wpa_s->ifname, sizeof(bss->iface));
63
64 if (ssid->frequency == 0) {
65 /* default channel 11 */
66 conf->hw_mode = HOSTAPD_MODE_IEEE80211G;
67 conf->channel = 11;
68 } else if (ssid->frequency >= 2412 && ssid->frequency <= 2472) {
69 conf->hw_mode = HOSTAPD_MODE_IEEE80211G;
70 conf->channel = (ssid->frequency - 2407) / 5;
71 } else if ((ssid->frequency >= 5180 && ssid->frequency <= 5240) ||
72 (ssid->frequency >= 5745 && ssid->frequency <= 5825)) {
73 conf->hw_mode = HOSTAPD_MODE_IEEE80211A;
74 conf->channel = (ssid->frequency - 5000) / 5;
75 } else {
76 wpa_printf(MSG_ERROR, "Unsupported AP mode frequency: %d MHz",
77 ssid->frequency);
78 return -1;
79 }
80
81 /* TODO: enable HT if driver supports it;
82 * drop to 11b if driver does not support 11g */
83
84#ifdef CONFIG_P2P
85 if (conf->hw_mode == HOSTAPD_MODE_IEEE80211G) {
86 /* Remove 802.11b rates from supported and basic rate sets */
87 int *list = os_malloc(4 * sizeof(int));
88 if (list) {
89 list[0] = 60;
90 list[1] = 120;
91 list[2] = 240;
92 list[3] = -1;
93 }
94 conf->basic_rates = list;
95
96 list = os_malloc(9 * sizeof(int));
97 if (list) {
98 list[0] = 60;
99 list[1] = 90;
100 list[2] = 120;
101 list[3] = 180;
102 list[4] = 240;
103 list[5] = 360;
104 list[6] = 480;
105 list[7] = 540;
106 list[8] = -1;
107 }
108 conf->supported_rates = list;
109 }
110#endif /* CONFIG_P2P */
111
112 if (ssid->ssid_len == 0) {
113 wpa_printf(MSG_ERROR, "No SSID configured for AP mode");
114 return -1;
115 }
116 os_memcpy(bss->ssid.ssid, ssid->ssid, ssid->ssid_len);
117 bss->ssid.ssid[ssid->ssid_len] = '\0';
118 bss->ssid.ssid_len = ssid->ssid_len;
119 bss->ssid.ssid_set = 1;
120
121 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt))
122 bss->wpa = ssid->proto;
123 bss->wpa_key_mgmt = ssid->key_mgmt;
124 bss->wpa_pairwise = ssid->pairwise_cipher;
125 if (ssid->passphrase) {
126 bss->ssid.wpa_passphrase = os_strdup(ssid->passphrase);
127 } else if (ssid->psk_set) {
128 os_free(bss->ssid.wpa_psk);
129 bss->ssid.wpa_psk = os_zalloc(sizeof(struct hostapd_wpa_psk));
130 if (bss->ssid.wpa_psk == NULL)
131 return -1;
132 os_memcpy(bss->ssid.wpa_psk->psk, ssid->psk, PMK_LEN);
133 bss->ssid.wpa_psk->group = 1;
134 }
135
136 /* Select group cipher based on the enabled pairwise cipher suites */
137 pairwise = 0;
138 if (bss->wpa & 1)
139 pairwise |= bss->wpa_pairwise;
140 if (bss->wpa & 2) {
141 if (bss->rsn_pairwise == 0)
142 bss->rsn_pairwise = bss->wpa_pairwise;
143 pairwise |= bss->rsn_pairwise;
144 }
145 if (pairwise & WPA_CIPHER_TKIP)
146 bss->wpa_group = WPA_CIPHER_TKIP;
147 else
148 bss->wpa_group = WPA_CIPHER_CCMP;
149
150 if (bss->wpa && bss->ieee802_1x)
151 bss->ssid.security_policy = SECURITY_WPA;
152 else if (bss->wpa)
153 bss->ssid.security_policy = SECURITY_WPA_PSK;
154 else if (bss->ieee802_1x) {
155 bss->ssid.security_policy = SECURITY_IEEE_802_1X;
156 bss->ssid.wep.default_len = bss->default_wep_key_len;
157 } else if (bss->ssid.wep.keys_set)
158 bss->ssid.security_policy = SECURITY_STATIC_WEP;
159 else
160 bss->ssid.security_policy = SECURITY_PLAINTEXT;
161
162#ifdef CONFIG_WPS
163 /*
164 * Enable WPS by default, but require user interaction to actually use
165 * it. Only the internal Registrar is supported.
166 */
167 bss->eap_server = 1;
168 bss->wps_state = 2;
169 bss->ap_setup_locked = 2;
170 if (wpa_s->conf->config_methods)
171 bss->config_methods = os_strdup(wpa_s->conf->config_methods);
172 os_memcpy(bss->device_type, wpa_s->conf->device_type,
173 WPS_DEV_TYPE_LEN);
174 if (wpa_s->conf->device_name) {
175 bss->device_name = os_strdup(wpa_s->conf->device_name);
176 bss->friendly_name = os_strdup(wpa_s->conf->device_name);
177 }
178 if (wpa_s->conf->manufacturer)
179 bss->manufacturer = os_strdup(wpa_s->conf->manufacturer);
180 if (wpa_s->conf->model_name)
181 bss->model_name = os_strdup(wpa_s->conf->model_name);
182 if (wpa_s->conf->model_number)
183 bss->model_number = os_strdup(wpa_s->conf->model_number);
184 if (wpa_s->conf->serial_number)
185 bss->serial_number = os_strdup(wpa_s->conf->serial_number);
186 if (is_nil_uuid(wpa_s->conf->uuid))
187 os_memcpy(bss->uuid, wpa_s->wps->uuid, WPS_UUID_LEN);
188 else
189 os_memcpy(bss->uuid, wpa_s->conf->uuid, WPS_UUID_LEN);
190 os_memcpy(bss->os_version, wpa_s->conf->os_version, 4);
191#endif /* CONFIG_WPS */
192
193 if (wpa_s->max_stations &&
194 wpa_s->max_stations < wpa_s->conf->max_num_sta)
195 bss->max_num_sta = wpa_s->max_stations;
196 else
197 bss->max_num_sta = wpa_s->conf->max_num_sta;
198
199 bss->disassoc_low_ack = wpa_s->conf->disassoc_low_ack;
200
201 return 0;
202}
203
204
205static void ap_public_action_rx(void *ctx, const u8 *buf, size_t len, int freq)
206{
207#ifdef CONFIG_P2P
208 struct wpa_supplicant *wpa_s = ctx;
209 const struct ieee80211_mgmt *mgmt;
210 size_t hdr_len;
211
212 mgmt = (const struct ieee80211_mgmt *) buf;
213 hdr_len = (const u8 *) &mgmt->u.action.u.vs_public_action.action - buf;
214 if (hdr_len > len)
215 return;
216 wpas_p2p_rx_action(wpa_s, mgmt->da, mgmt->sa, mgmt->bssid,
217 mgmt->u.action.category,
218 &mgmt->u.action.u.vs_public_action.action,
219 len - hdr_len, freq);
220#endif /* CONFIG_P2P */
221}
222
223
224static void ap_wps_event_cb(void *ctx, enum wps_event event,
225 union wps_event_data *data)
226{
227#ifdef CONFIG_P2P
228 struct wpa_supplicant *wpa_s = ctx;
229
Jouni Malinen75ecf522011-06-27 15:19:46 -0700[diff] [blame^]230 if (event == WPS_EV_FAIL) {
Dmitry Shmidt8d520ff2011-05-09 14:06:53 -0700[diff] [blame]231 struct wps_event_fail *fail = &data->fail;
232
Jouni Malinen75ecf522011-06-27 15:19:46 -0700[diff] [blame^]233 if (wpa_s->parent && wpa_s->parent != wpa_s &&
234 wpa_s == wpa_s->global->p2p_group_formation) {
235 /*
236 * src/ap/wps_hostapd.c has already sent this on the
237 * main interface, so only send on the parent interface
238 * here if needed.
239 */
240 wpa_msg(wpa_s->parent, MSG_INFO, WPS_EVENT_FAIL
241 "msg=%d config_error=%d",
242 fail->msg, fail->config_error);
243 }
244 wpas_p2p_wps_failed(wpa_s, fail);
Dmitry Shmidt8d520ff2011-05-09 14:06:53 -0700[diff] [blame]245 }
246#endif /* CONFIG_P2P */
247}
248
249
250static void ap_sta_authorized_cb(void *ctx, const u8 *mac_addr,
251 int authorized)
252{
253 wpas_notify_sta_authorized(ctx, mac_addr, authorized);
254}
255
256
257static int ap_vendor_action_rx(void *ctx, const u8 *buf, size_t len, int freq)
258{
259#ifdef CONFIG_P2P
260 struct wpa_supplicant *wpa_s = ctx;
261 const struct ieee80211_mgmt *mgmt;
262 size_t hdr_len;
263
264 mgmt = (const struct ieee80211_mgmt *) buf;
265 hdr_len = (const u8 *) &mgmt->u.action.u.vs_public_action.action - buf;
266 if (hdr_len > len)
267 return -1;
268 wpas_p2p_rx_action(wpa_s, mgmt->da, mgmt->sa, mgmt->bssid,
269 mgmt->u.action.category,
270 &mgmt->u.action.u.vs_public_action.action,
271 len - hdr_len, freq);
272#endif /* CONFIG_P2P */
273 return 0;
274}
275
276
277static int ap_probe_req_rx(void *ctx, const u8 *addr, const u8 *ie,
278 size_t ie_len)
279{
280#ifdef CONFIG_P2P
281 struct wpa_supplicant *wpa_s = ctx;
282 return wpas_p2p_probe_req_rx(wpa_s, addr, ie, ie_len);
283#else /* CONFIG_P2P */
284 return 0;
285#endif /* CONFIG_P2P */
286}
287
288
289static void ap_wps_reg_success_cb(void *ctx, const u8 *mac_addr,
290 const u8 *uuid_e)
291{
292#ifdef CONFIG_P2P
293 struct wpa_supplicant *wpa_s = ctx;
294 wpas_p2p_wps_success(wpa_s, mac_addr, 1);
295#endif /* CONFIG_P2P */
296}
297
298
299static void wpas_ap_configured_cb(void *ctx)
300{
301 struct wpa_supplicant *wpa_s = ctx;
302
303 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
304
305 if (wpa_s->ap_configured_cb)
306 wpa_s->ap_configured_cb(wpa_s->ap_configured_cb_ctx,
307 wpa_s->ap_configured_cb_data);
308}
309
310
311int wpa_supplicant_create_ap(struct wpa_supplicant *wpa_s,
312 struct wpa_ssid *ssid)
313{
314 struct wpa_driver_associate_params params;
315 struct hostapd_iface *hapd_iface;
316 struct hostapd_config *conf;
317 size_t i;
318
319 if (ssid->ssid == NULL || ssid->ssid_len == 0) {
320 wpa_printf(MSG_ERROR, "No SSID configured for AP mode");
321 return -1;
322 }
323
324 wpa_supplicant_ap_deinit(wpa_s);
325
326 wpa_printf(MSG_DEBUG, "Setting up AP (SSID='%s')",
327 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
328
329 os_memset(&params, 0, sizeof(params));
330 params.ssid = ssid->ssid;
331 params.ssid_len = ssid->ssid_len;
332 switch (ssid->mode) {
333 case WPAS_MODE_INFRA:
334 params.mode = IEEE80211_MODE_INFRA;
335 break;
336 case WPAS_MODE_IBSS:
337 params.mode = IEEE80211_MODE_IBSS;
338 break;
339 case WPAS_MODE_AP:
340 case WPAS_MODE_P2P_GO:
341 case WPAS_MODE_P2P_GROUP_FORMATION:
342 params.mode = IEEE80211_MODE_AP;
343 break;
344 }
345 params.freq = ssid->frequency;
346
347 if (ssid->key_mgmt & WPA_KEY_MGMT_PSK)
348 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
349 else
350 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
351 params.key_mgmt_suite = key_mgmt2driver(wpa_s->key_mgmt);
352
353 if (ssid->pairwise_cipher & WPA_CIPHER_CCMP)
354 wpa_s->pairwise_cipher = WPA_CIPHER_CCMP;
355 else if (ssid->pairwise_cipher & WPA_CIPHER_TKIP)
356 wpa_s->pairwise_cipher = WPA_CIPHER_TKIP;
357 else if (ssid->pairwise_cipher & WPA_CIPHER_NONE)
358 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
359 else {
360 wpa_printf(MSG_WARNING, "WPA: Failed to select pairwise "
361 "cipher.");
362 return -1;
363 }
364 params.pairwise_suite = cipher_suite2driver(wpa_s->pairwise_cipher);
365 params.group_suite = params.pairwise_suite;
366
367#ifdef CONFIG_P2P
368 if (ssid->mode == WPAS_MODE_P2P_GO ||
369 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
370 params.p2p = 1;
371 wpa_drv_set_intra_bss(wpa_s, wpa_s->conf->p2p_intra_bss);
372#endif /* CONFIG_P2P */
373
374 if (wpa_s->parent->set_ap_uapsd)
375 params.uapsd = wpa_s->parent->ap_uapsd;
376 else
377 params.uapsd = -1;
378
379 if (wpa_drv_associate(wpa_s, &params) < 0) {
380 wpa_msg(wpa_s, MSG_INFO, "Failed to start AP functionality");
381 return -1;
382 }
383
384 wpa_s->ap_iface = hapd_iface = os_zalloc(sizeof(*wpa_s->ap_iface));
385 if (hapd_iface == NULL)
386 return -1;
387 hapd_iface->owner = wpa_s;
388
389 wpa_s->ap_iface->conf = conf = hostapd_config_defaults();
390 if (conf == NULL) {
391 wpa_supplicant_ap_deinit(wpa_s);
392 return -1;
393 }
394
395 if (wpa_supplicant_conf_ap(wpa_s, ssid, conf)) {
396 wpa_printf(MSG_ERROR, "Failed to create AP configuration");
397 wpa_supplicant_ap_deinit(wpa_s);
398 return -1;
399 }
400
401#ifdef CONFIG_P2P
402 if (ssid->mode == WPAS_MODE_P2P_GO)
403 conf->bss[0].p2p = P2P_ENABLED | P2P_GROUP_OWNER;
404 else if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
405 conf->bss[0].p2p = P2P_ENABLED | P2P_GROUP_OWNER |
406 P2P_GROUP_FORMATION;
407#endif /* CONFIG_P2P */
408
409 hapd_iface->num_bss = conf->num_bss;
410 hapd_iface->bss = os_zalloc(conf->num_bss *
411 sizeof(struct hostapd_data *));
412 if (hapd_iface->bss == NULL) {
413 wpa_supplicant_ap_deinit(wpa_s);
414 return -1;
415 }
416
417 for (i = 0; i < conf->num_bss; i++) {
418 hapd_iface->bss[i] =
419 hostapd_alloc_bss_data(hapd_iface, conf,
420 &conf->bss[i]);
421 if (hapd_iface->bss[i] == NULL) {
422 wpa_supplicant_ap_deinit(wpa_s);
423 return -1;
424 }
425
426 hapd_iface->bss[i]->msg_ctx = wpa_s;
427 hapd_iface->bss[i]->public_action_cb = ap_public_action_rx;
428 hapd_iface->bss[i]->public_action_cb_ctx = wpa_s;
429 hapd_iface->bss[i]->vendor_action_cb = ap_vendor_action_rx;
430 hapd_iface->bss[i]->vendor_action_cb_ctx = wpa_s;
431 hostapd_register_probereq_cb(hapd_iface->bss[i],
432 ap_probe_req_rx, wpa_s);
433 hapd_iface->bss[i]->wps_reg_success_cb = ap_wps_reg_success_cb;
434 hapd_iface->bss[i]->wps_reg_success_cb_ctx = wpa_s;
435 hapd_iface->bss[i]->wps_event_cb = ap_wps_event_cb;
436 hapd_iface->bss[i]->wps_event_cb_ctx = wpa_s;
437 hapd_iface->bss[i]->sta_authorized_cb = ap_sta_authorized_cb;
438 hapd_iface->bss[i]->sta_authorized_cb_ctx = wpa_s;
439#ifdef CONFIG_P2P
440 hapd_iface->bss[i]->p2p = wpa_s->global->p2p;
441 hapd_iface->bss[i]->p2p_group = wpas_p2p_group_init(
442 wpa_s, ssid->p2p_persistent_group,
443 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION);
444#endif /* CONFIG_P2P */
445 hapd_iface->bss[i]->setup_complete_cb = wpas_ap_configured_cb;
446 hapd_iface->bss[i]->setup_complete_cb_ctx = wpa_s;
447 }
448
449 os_memcpy(hapd_iface->bss[0]->own_addr, wpa_s->own_addr, ETH_ALEN);
450 hapd_iface->bss[0]->driver = wpa_s->driver;
451 hapd_iface->bss[0]->drv_priv = wpa_s->drv_priv;
452
453 wpa_s->current_ssid = ssid;
454 os_memcpy(wpa_s->bssid, wpa_s->own_addr, ETH_ALEN);
455 wpa_s->assoc_freq = ssid->frequency;
456
457 if (hostapd_setup_interface(wpa_s->ap_iface)) {
458 wpa_printf(MSG_ERROR, "Failed to initialize AP interface");
459 wpa_supplicant_ap_deinit(wpa_s);
460 return -1;
461 }
462
463 return 0;
464}
465
466
467void wpa_supplicant_ap_deinit(struct wpa_supplicant *wpa_s)
468{
469#ifdef CONFIG_WPS
470 eloop_cancel_timeout(wpas_wps_ap_pin_timeout, wpa_s, NULL);
471#endif /* CONFIG_WPS */
472
473 if (wpa_s->ap_iface == NULL)
474 return;
475
476 wpa_s->current_ssid = NULL;
477 wpa_s->assoc_freq = 0;
478#ifdef CONFIG_P2P
479 if (wpa_s->ap_iface->bss)
480 wpa_s->ap_iface->bss[0]->p2p_group = NULL;
481 wpas_p2p_group_deinit(wpa_s);
482#endif /* CONFIG_P2P */
483 hostapd_interface_deinit(wpa_s->ap_iface);
484 hostapd_interface_free(wpa_s->ap_iface);
485 wpa_s->ap_iface = NULL;
486 wpa_drv_deinit_ap(wpa_s);
487}
488
489
490void ap_tx_status(void *ctx, const u8 *addr,
491 const u8 *buf, size_t len, int ack)
492{
493#ifdef NEED_AP_MLME
494 struct wpa_supplicant *wpa_s = ctx;
495 hostapd_tx_status(wpa_s->ap_iface->bss[0], addr, buf, len, ack);
496#endif /* NEED_AP_MLME */
497}
498
499
500void ap_rx_from_unknown_sta(void *ctx, const u8 *frame, size_t len)
501{
502#ifdef NEED_AP_MLME
503 struct wpa_supplicant *wpa_s = ctx;
504 const struct ieee80211_hdr *hdr =
505 (const struct ieee80211_hdr *) frame;
506 u16 fc = le_to_host16(hdr->frame_control);
507 ieee802_11_rx_from_unknown(wpa_s->ap_iface->bss[0], hdr->addr2,
508 (fc & (WLAN_FC_TODS | WLAN_FC_FROMDS)) ==
509 (WLAN_FC_TODS | WLAN_FC_FROMDS));
510#endif /* NEED_AP_MLME */
511}
512
513
514void ap_mgmt_rx(void *ctx, struct rx_mgmt *rx_mgmt)
515{
516#ifdef NEED_AP_MLME
517 struct wpa_supplicant *wpa_s = ctx;
518 struct hostapd_frame_info fi;
519 os_memset(&fi, 0, sizeof(fi));
520 fi.datarate = rx_mgmt->datarate;
521 fi.ssi_signal = rx_mgmt->ssi_signal;
522 ieee802_11_mgmt(wpa_s->ap_iface->bss[0], rx_mgmt->frame,
523 rx_mgmt->frame_len, &fi);
524#endif /* NEED_AP_MLME */
525}
526
527
528void ap_mgmt_tx_cb(void *ctx, const u8 *buf, size_t len, u16 stype, int ok)
529{
530#ifdef NEED_AP_MLME
531 struct wpa_supplicant *wpa_s = ctx;
532 ieee802_11_mgmt_cb(wpa_s->ap_iface->bss[0], buf, len, stype, ok);
533#endif /* NEED_AP_MLME */
534}
535
536
537void wpa_supplicant_ap_rx_eapol(struct wpa_supplicant *wpa_s,
538 const u8 *src_addr, const u8 *buf, size_t len)
539{
540 ieee802_1x_receive(wpa_s->ap_iface->bss[0], src_addr, buf, len);
541}
542
543
544#ifdef CONFIG_WPS
545
546int wpa_supplicant_ap_wps_pbc(struct wpa_supplicant *wpa_s, const u8 *bssid,
547 const u8 *p2p_dev_addr)
548{
549 if (!wpa_s->ap_iface)
550 return -1;
551 return hostapd_wps_button_pushed(wpa_s->ap_iface->bss[0],
552 p2p_dev_addr);
553}
554
555
556static int wpa_supplicant_ap_wps_sta_cancel(struct hostapd_data *hapd,
557 struct sta_info *sta, void *ctx)
558{
559 if (sta && (sta->flags & WLAN_STA_WPS)) {
560 ap_sta_deauthenticate(hapd, sta,
561 WLAN_REASON_PREV_AUTH_NOT_VALID);
562 wpa_printf(MSG_DEBUG, "WPS: %s: Deauth sta=" MACSTR,
563 __func__, MAC2STR(sta->addr));
564 return 1;
565 }
566
567 return 0;
568}
569
570
571int wpa_supplicant_ap_wps_cancel(struct wpa_supplicant *wpa_s)
572{
573 struct wps_registrar *reg;
574 int reg_sel = 0, wps_sta = 0;
575
576 if (!wpa_s->ap_iface || !wpa_s->ap_iface->bss[0]->wps)
577 return -1;
578
579 reg = wpa_s->ap_iface->bss[0]->wps->registrar;
580 reg_sel = wps_registrar_wps_cancel(reg);
581 wps_sta = ap_for_each_sta(wpa_s->ap_iface->bss[0],
582 wpa_supplicant_ap_wps_sta_cancel, NULL);
583
584 if (!reg_sel && !wps_sta) {
585 wpa_printf(MSG_DEBUG, "No WPS operation in progress at this "
586 "time");
587 return -1;
588 }
589
590 /*
591 * There are 2 cases to return wps cancel as success:
592 * 1. When wps cancel was initiated but no connection has been
593 * established with client yet.
594 * 2. Client is in the middle of exchanging WPS messages.
595 */
596
597 return 0;
598}
599
600
601int wpa_supplicant_ap_wps_pin(struct wpa_supplicant *wpa_s, const u8 *bssid,
602 const char *pin, char *buf, size_t buflen)
603{
604 int ret, ret_len = 0;
605
606 if (!wpa_s->ap_iface)
607 return -1;
608
609 if (pin == NULL) {
610 unsigned int rpin = wps_generate_pin();
611 ret_len = os_snprintf(buf, buflen, "%d", rpin);
612 pin = buf;
613 } else
614 ret_len = os_snprintf(buf, buflen, "%s", pin);
615
616 ret = hostapd_wps_add_pin(wpa_s->ap_iface->bss[0], bssid, "any", pin,
617 0);
618 if (ret)
619 return -1;
620 return ret_len;
621}
622
623
624static void wpas_wps_ap_pin_timeout(void *eloop_data, void *user_ctx)
625{
626 struct wpa_supplicant *wpa_s = eloop_data;
627 wpa_printf(MSG_DEBUG, "WPS: AP PIN timed out");
628 wpas_wps_ap_pin_disable(wpa_s);
629}
630
631
632static void wpas_wps_ap_pin_enable(struct wpa_supplicant *wpa_s, int timeout)
633{
634 struct hostapd_data *hapd;
635
636 if (wpa_s->ap_iface == NULL)
637 return;
638 hapd = wpa_s->ap_iface->bss[0];
639 wpa_printf(MSG_DEBUG, "WPS: Enabling AP PIN (timeout=%d)", timeout);
640 hapd->ap_pin_failures = 0;
641 eloop_cancel_timeout(wpas_wps_ap_pin_timeout, wpa_s, NULL);
642 if (timeout > 0)
643 eloop_register_timeout(timeout, 0,
644 wpas_wps_ap_pin_timeout, wpa_s, NULL);
645}
646
647
648void wpas_wps_ap_pin_disable(struct wpa_supplicant *wpa_s)
649{
650 struct hostapd_data *hapd;
651
652 if (wpa_s->ap_iface == NULL)
653 return;
654 wpa_printf(MSG_DEBUG, "WPS: Disabling AP PIN");
655 hapd = wpa_s->ap_iface->bss[0];
656 os_free(hapd->conf->ap_pin);
657 hapd->conf->ap_pin = NULL;
658 eloop_cancel_timeout(wpas_wps_ap_pin_timeout, wpa_s, NULL);
659}
660
661
662const char * wpas_wps_ap_pin_random(struct wpa_supplicant *wpa_s, int timeout)
663{
664 struct hostapd_data *hapd;
665 unsigned int pin;
666 char pin_txt[9];
667
668 if (wpa_s->ap_iface == NULL)
669 return NULL;
670 hapd = wpa_s->ap_iface->bss[0];
671 pin = wps_generate_pin();
672 os_snprintf(pin_txt, sizeof(pin_txt), "%u", pin);
673 os_free(hapd->conf->ap_pin);
674 hapd->conf->ap_pin = os_strdup(pin_txt);
675 if (hapd->conf->ap_pin == NULL)
676 return NULL;
677 wpas_wps_ap_pin_enable(wpa_s, timeout);
678
679 return hapd->conf->ap_pin;
680}
681
682
683const char * wpas_wps_ap_pin_get(struct wpa_supplicant *wpa_s)
684{
685 struct hostapd_data *hapd;
686 if (wpa_s->ap_iface == NULL)
687 return NULL;
688 hapd = wpa_s->ap_iface->bss[0];
689 return hapd->conf->ap_pin;
690}
691
692
693int wpas_wps_ap_pin_set(struct wpa_supplicant *wpa_s, const char *pin,
694 int timeout)
695{
696 struct hostapd_data *hapd;
697 char pin_txt[9];
698 int ret;
699
700 if (wpa_s->ap_iface == NULL)
701 return -1;
702 hapd = wpa_s->ap_iface->bss[0];
703 ret = os_snprintf(pin_txt, sizeof(pin_txt), "%s", pin);
704 if (ret < 0 || ret >= (int) sizeof(pin_txt))
705 return -1;
706 os_free(hapd->conf->ap_pin);
707 hapd->conf->ap_pin = os_strdup(pin_txt);
708 if (hapd->conf->ap_pin == NULL)
709 return -1;
710 wpas_wps_ap_pin_enable(wpa_s, timeout);
711
712 return 0;
713}
714
715
716void wpa_supplicant_ap_pwd_auth_fail(struct wpa_supplicant *wpa_s)
717{
718 struct hostapd_data *hapd;
719
720 if (wpa_s->ap_iface == NULL)
721 return;
722 hapd = wpa_s->ap_iface->bss[0];
723
724 /*
725 * Registrar failed to prove its knowledge of the AP PIN. Disable AP
726 * PIN if this happens multiple times to slow down brute force attacks.
727 */
728 hapd->ap_pin_failures++;
729 wpa_printf(MSG_DEBUG, "WPS: AP PIN authentication failure number %u",
730 hapd->ap_pin_failures);
731 if (hapd->ap_pin_failures < 3)
732 return;
733
734 wpa_printf(MSG_DEBUG, "WPS: Disable AP PIN");
735 hapd->ap_pin_failures = 0;
736 os_free(hapd->conf->ap_pin);
737 hapd->conf->ap_pin = NULL;
738}
739
740#endif /* CONFIG_WPS */
741
742
743#ifdef CONFIG_CTRL_IFACE
744
745int ap_ctrl_iface_sta_first(struct wpa_supplicant *wpa_s,
746 char *buf, size_t buflen)
747{
748 if (wpa_s->ap_iface == NULL)
749 return -1;
750 return hostapd_ctrl_iface_sta_first(wpa_s->ap_iface->bss[0],
751 buf, buflen);
752}
753
754
755int ap_ctrl_iface_sta(struct wpa_supplicant *wpa_s, const char *txtaddr,
756 char *buf, size_t buflen)
757{
758 if (wpa_s->ap_iface == NULL)
759 return -1;
760 return hostapd_ctrl_iface_sta(wpa_s->ap_iface->bss[0], txtaddr,
761 buf, buflen);
762}
763
764
765int ap_ctrl_iface_sta_next(struct wpa_supplicant *wpa_s, const char *txtaddr,
766 char *buf, size_t buflen)
767{
768 if (wpa_s->ap_iface == NULL)
769 return -1;
770 return hostapd_ctrl_iface_sta_next(wpa_s->ap_iface->bss[0], txtaddr,
771 buf, buflen);
772}
773
774
775int ap_ctrl_iface_wpa_get_status(struct wpa_supplicant *wpa_s, char *buf,
776 size_t buflen, int verbose)
777{
778 char *pos = buf, *end = buf + buflen;
779 int ret;
780 struct hostapd_bss_config *conf;
781
782 if (wpa_s->ap_iface == NULL)
783 return -1;
784
785 conf = wpa_s->ap_iface->bss[0]->conf;
786 if (conf->wpa == 0)
787 return 0;
788
789 ret = os_snprintf(pos, end - pos,
790 "pairwise_cipher=%s\n"
791 "group_cipher=%s\n"
792 "key_mgmt=%s\n",
793 wpa_cipher_txt(conf->rsn_pairwise),
794 wpa_cipher_txt(conf->wpa_group),
795 wpa_key_mgmt_txt(conf->wpa_key_mgmt,
796 conf->wpa));
797 if (ret < 0 || ret >= end - pos)
798 return pos - buf;
799 pos += ret;
800 return pos - buf;
801}
802
803#endif /* CONFIG_CTRL_IFACE */
804
805
806int wpa_supplicant_ap_update_beacon(struct wpa_supplicant *wpa_s)
807{
808 struct hostapd_iface *iface = wpa_s->ap_iface;
809 struct wpa_ssid *ssid = wpa_s->current_ssid;
810 struct hostapd_data *hapd;
811
812 if (ssid == NULL || wpa_s->ap_iface == NULL)
813 return -1;
814
815#ifdef CONFIG_P2P
816 if (ssid->mode == WPAS_MODE_P2P_GO)
817 iface->conf->bss[0].p2p = P2P_ENABLED | P2P_GROUP_OWNER;
818 else if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
819 iface->conf->bss[0].p2p = P2P_ENABLED | P2P_GROUP_OWNER |
820 P2P_GROUP_FORMATION;
821#endif /* CONFIG_P2P */
822
823 ieee802_11_set_beacons(iface);
824 hapd = iface->bss[0];
825 hostapd_set_ap_wps_ie(hapd);
826
827 return 0;
828}
829
830
831int wpa_supplicant_ap_mac_addr_filter(struct wpa_supplicant *wpa_s,
832 const u8 *addr)
833{
834 struct hostapd_data *hapd;
835 struct hostapd_bss_config *conf;
836
837 if (!wpa_s->ap_iface)
838 return -1;
839
840 if (addr)
841 wpa_printf(MSG_DEBUG, "AP: Set MAC address filter: " MACSTR,
842 MAC2STR(addr));
843 else
844 wpa_printf(MSG_DEBUG, "AP: Clear MAC address filter");
845
846 hapd = wpa_s->ap_iface->bss[0];
847 conf = hapd->conf;
848
849 os_free(conf->accept_mac);
850 conf->accept_mac = NULL;
851 conf->num_accept_mac = 0;
852 os_free(conf->deny_mac);
853 conf->deny_mac = NULL;
854 conf->num_deny_mac = 0;
855
856 if (addr == NULL) {
857 conf->macaddr_acl = ACCEPT_UNLESS_DENIED;
858 return 0;
859 }
860
861 conf->macaddr_acl = DENY_UNLESS_ACCEPTED;
862 conf->accept_mac = os_zalloc(sizeof(struct mac_acl_entry));
863 if (conf->accept_mac == NULL)
864 return -1;
865 os_memcpy(conf->accept_mac[0].addr, addr, ETH_ALEN);
866 conf->num_accept_mac = 1;
867
868 return 0;
869}