3 * Copyright (c) 2003-2015, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
16 #include "crypto/random.h"
17 #include "crypto/sha1.h"
18 #include "eapol_supp/eapol_supp_sm.h"
19 #include "eap_peer/eap.h"
20 #include "eap_peer/eap_proxy.h"
21 #include "eap_server/eap_methods.h"
22 #include "rsn_supp/wpa.h"
25 #include "utils/ext_password.h"
26 #include "l2_packet/l2_packet.h"
27 #include "wpa_supplicant_i.h"
29 #include "ctrl_iface.h"
30 #include "pcsc_funcs.h"
31 #include "common/version.h"
32 #include "rsn_supp/preauth.h"
33 #include "rsn_supp/pmksa_cache.h"
34 #include "common/wpa_ctrl.h"
35 #include "common/ieee802_11_defs.h"
36 #include "common/hw_features_common.h"
38 #include "blacklist.h"
39 #include "wpas_glue.h"
40 #include "wps_supplicant.h"
43 #include "gas_query.h"
45 #include "p2p_supplicant.h"
46 #include "wifi_display.h"
52 #include "offchannel.h"
53 #include "hs20_supplicant.h"
58 const char *wpa_supplicant_version =
59 "wpa_supplicant v" VERSION_STR "\n"
60 "Copyright (c) 2003-2015, Jouni Malinen <j@w1.fi> and contributors";
62 const char *wpa_supplicant_license =
63 "This software may be distributed under the terms of the BSD license.\n"
64 "See README for more details.\n"
65 #ifdef EAP_TLS_OPENSSL
66 "\nThis product includes software developed by the OpenSSL Project\n"
67 "for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
68 #endif /* EAP_TLS_OPENSSL */
71 #ifndef CONFIG_NO_STDOUT_DEBUG
72 /* Long text divided into parts in order to fit in C89 strings size limits. */
73 const char *wpa_supplicant_full_license1 =
75 const char *wpa_supplicant_full_license2 =
76 "This software may be distributed under the terms of the BSD license.\n"
78 "Redistribution and use in source and binary forms, with or without\n"
79 "modification, are permitted provided that the following conditions are\n"
82 const char *wpa_supplicant_full_license3 =
83 "1. Redistributions of source code must retain the above copyright\n"
84 " notice, this list of conditions and the following disclaimer.\n"
86 "2. Redistributions in binary form must reproduce the above copyright\n"
87 " notice, this list of conditions and the following disclaimer in the\n"
88 " documentation and/or other materials provided with the distribution.\n"
90 const char *wpa_supplicant_full_license4 =
91 "3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
92 " names of its contributors may be used to endorse or promote products\n"
93 " derived from this software without specific prior written permission.\n"
95 "THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
96 "\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
97 "LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
98 "A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
99 const char *wpa_supplicant_full_license5 =
100 "OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
101 "SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
102 "LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
103 "DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
104 "THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
105 "(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
106 "OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
108 #endif /* CONFIG_NO_STDOUT_DEBUG */
110 /* Configure default/group WEP keys for static WEP */
111 int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
115 for (i = 0; i < NUM_WEP_KEYS; i++) {
116 if (ssid->wep_key_len[i] == 0)
120 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
121 i, i == ssid->wep_tx_keyidx, NULL, 0,
122 ssid->wep_key[i], ssid->wep_key_len[i]);
129 int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
130 struct wpa_ssid *ssid)
138 /* IBSS/WPA-None uses only one key (Group) for both receiving and
139 * sending unicast and multicast packets. */
141 if (ssid->mode != WPAS_MODE_IBSS) {
142 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
143 "IBSS/ad-hoc) for WPA-None", ssid->mode);
147 if (!ssid->psk_set) {
148 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
153 switch (wpa_s->group_cipher) {
154 case WPA_CIPHER_CCMP:
155 os_memcpy(key, ssid->psk, 16);
159 case WPA_CIPHER_GCMP:
160 os_memcpy(key, ssid->psk, 16);
164 case WPA_CIPHER_TKIP:
165 /* WPA-None uses the same Michael MIC key for both TX and RX */
166 os_memcpy(key, ssid->psk, 16 + 8);
167 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
172 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
173 "WPA-None", wpa_s->group_cipher);
177 /* TODO: should actually remember the previously used seq#, both for TX
178 * and RX from each STA.. */
180 ret = wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
181 os_memset(key, 0, sizeof(key));
186 static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
188 struct wpa_supplicant *wpa_s = eloop_ctx;
189 const u8 *bssid = wpa_s->bssid;
190 if (is_zero_ether_addr(bssid))
191 bssid = wpa_s->pending_bssid;
192 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
194 wpa_blacklist_add(wpa_s, bssid);
195 wpa_sm_notify_disassoc(wpa_s->wpa);
196 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
197 wpa_s->reassociate = 1;
200 * If we timed out, the AP or the local radio may be busy.
201 * So, wait a second until scanning again.
203 wpa_supplicant_req_scan(wpa_s, 1, 0);
208 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
209 * @wpa_s: Pointer to wpa_supplicant data
210 * @sec: Number of seconds after which to time out authentication
211 * @usec: Number of microseconds after which to time out authentication
213 * This function is used to schedule a timeout for the current authentication
216 void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
219 if (wpa_s->conf->ap_scan == 0 &&
220 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
223 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
224 "%d usec", sec, usec);
225 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
226 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
231 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
232 * @wpa_s: Pointer to wpa_supplicant data
234 * This function is used to cancel authentication timeout scheduled with
235 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
238 void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
240 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
241 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
242 wpa_blacklist_del(wpa_s, wpa_s->bssid);
247 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
248 * @wpa_s: Pointer to wpa_supplicant data
250 * This function is used to configure EAPOL state machine based on the selected
251 * authentication mode.
253 void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
255 #ifdef IEEE8021X_EAPOL
256 struct eapol_config eapol_conf;
257 struct wpa_ssid *ssid = wpa_s->current_ssid;
259 #ifdef CONFIG_IBSS_RSN
260 if (ssid->mode == WPAS_MODE_IBSS &&
261 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
262 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
264 * RSN IBSS authentication is per-STA and we can disable the
265 * per-BSSID EAPOL authentication.
267 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
268 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
269 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
272 #endif /* CONFIG_IBSS_RSN */
274 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
275 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
277 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
278 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
279 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
281 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
283 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
284 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
285 eapol_conf.accept_802_1x_keys = 1;
286 eapol_conf.required_keys = 0;
287 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
288 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
290 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
291 eapol_conf.required_keys |=
292 EAPOL_REQUIRE_KEY_BROADCAST;
295 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
296 eapol_conf.required_keys = 0;
298 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
299 eapol_conf.workaround = ssid->eap_workaround;
300 eapol_conf.eap_disabled =
301 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
302 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
303 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
304 eapol_conf.external_sim = wpa_s->conf->external_sim;
307 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
308 eapol_conf.wps |= EAPOL_LOCAL_WPS_IN_USE;
309 if (wpa_s->current_bss) {
311 ie = wpa_bss_get_vendor_ie_multi(wpa_s->current_bss,
316 EAPOL_PEER_IS_WPS20_AP;
321 #endif /* CONFIG_WPS */
323 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
325 ieee802_1x_alloc_kay_sm(wpa_s, ssid);
326 #endif /* IEEE8021X_EAPOL */
331 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
332 * @wpa_s: Pointer to wpa_supplicant data
333 * @ssid: Configuration data for the network
335 * This function is used to configure WPA state machine and related parameters
336 * to a mode where WPA is not enabled. This is called as part of the
337 * authentication configuration when the selected network does not use WPA.
339 void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
340 struct wpa_ssid *ssid)
344 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
345 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
346 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
347 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
349 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
350 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
351 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
352 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
353 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
354 wpa_s->group_cipher = WPA_CIPHER_NONE;
355 wpa_s->mgmt_group_cipher = 0;
357 for (i = 0; i < NUM_WEP_KEYS; i++) {
358 if (ssid->wep_key_len[i] > 5) {
359 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
360 wpa_s->group_cipher = WPA_CIPHER_WEP104;
362 } else if (ssid->wep_key_len[i] > 0) {
363 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
364 wpa_s->group_cipher = WPA_CIPHER_WEP40;
369 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
370 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
371 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
372 wpa_s->pairwise_cipher);
373 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
374 #ifdef CONFIG_IEEE80211W
375 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
376 wpa_s->mgmt_group_cipher);
377 #endif /* CONFIG_IEEE80211W */
379 pmksa_cache_clear_current(wpa_s->wpa);
383 void free_hw_features(struct wpa_supplicant *wpa_s)
386 if (wpa_s->hw.modes == NULL)
389 for (i = 0; i < wpa_s->hw.num_modes; i++) {
390 os_free(wpa_s->hw.modes[i].channels);
391 os_free(wpa_s->hw.modes[i].rates);
394 os_free(wpa_s->hw.modes);
395 wpa_s->hw.modes = NULL;
399 static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
403 bgscan_deinit(wpa_s);
404 autoscan_deinit(wpa_s);
405 scard_deinit(wpa_s->scard);
407 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
408 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
409 l2_packet_deinit(wpa_s->l2);
412 l2_packet_deinit(wpa_s->l2_br);
415 #ifdef CONFIG_TESTING_OPTIONS
416 l2_packet_deinit(wpa_s->l2_test);
417 wpa_s->l2_test = NULL;
418 #endif /* CONFIG_TESTING_OPTIONS */
420 if (wpa_s->conf != NULL) {
421 struct wpa_ssid *ssid;
422 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
423 wpas_notify_network_removed(wpa_s, ssid);
426 os_free(wpa_s->confname);
427 wpa_s->confname = NULL;
429 os_free(wpa_s->confanother);
430 wpa_s->confanother = NULL;
432 wpa_sm_set_eapol(wpa_s->wpa, NULL);
433 eapol_sm_deinit(wpa_s->eapol);
436 rsn_preauth_deinit(wpa_s->wpa);
439 wpa_tdls_deinit(wpa_s->wpa);
440 #endif /* CONFIG_TDLS */
442 wmm_ac_clear_saved_tspecs(wpa_s);
443 pmksa_candidate_free(wpa_s->wpa);
444 wpa_sm_deinit(wpa_s->wpa);
446 wpa_blacklist_clear(wpa_s);
448 wpa_bss_deinit(wpa_s);
450 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
451 wpa_supplicant_cancel_scan(wpa_s);
452 wpa_supplicant_cancel_auth_timeout(wpa_s);
453 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
454 #ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
455 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
457 #endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
459 wpas_wps_deinit(wpa_s);
461 wpabuf_free(wpa_s->pending_eapol_rx);
462 wpa_s->pending_eapol_rx = NULL;
464 #ifdef CONFIG_IBSS_RSN
465 ibss_rsn_deinit(wpa_s->ibss_rsn);
466 wpa_s->ibss_rsn = NULL;
467 #endif /* CONFIG_IBSS_RSN */
472 wpa_supplicant_ap_deinit(wpa_s);
473 #endif /* CONFIG_AP */
475 wpas_p2p_deinit(wpa_s);
477 #ifdef CONFIG_OFFCHANNEL
478 offchannel_deinit(wpa_s);
479 #endif /* CONFIG_OFFCHANNEL */
481 wpa_supplicant_cancel_sched_scan(wpa_s);
483 os_free(wpa_s->next_scan_freqs);
484 wpa_s->next_scan_freqs = NULL;
486 os_free(wpa_s->manual_scan_freqs);
487 wpa_s->manual_scan_freqs = NULL;
489 os_free(wpa_s->manual_sched_scan_freqs);
490 wpa_s->manual_sched_scan_freqs = NULL;
492 wpas_mac_addr_rand_scan_clear(wpa_s, MAC_ADDR_RAND_ALL);
494 gas_query_deinit(wpa_s->gas);
497 free_hw_features(wpa_s);
499 ieee802_1x_dealloc_kay_sm(wpa_s);
501 os_free(wpa_s->bssid_filter);
502 wpa_s->bssid_filter = NULL;
504 os_free(wpa_s->disallow_aps_bssid);
505 wpa_s->disallow_aps_bssid = NULL;
506 os_free(wpa_s->disallow_aps_ssid);
507 wpa_s->disallow_aps_ssid = NULL;
509 wnm_bss_keep_alive_deinit(wpa_s);
511 wnm_deallocate_memory(wpa_s);
512 #endif /* CONFIG_WNM */
514 ext_password_deinit(wpa_s->ext_pw);
515 wpa_s->ext_pw = NULL;
517 wpabuf_free(wpa_s->last_gas_resp);
518 wpa_s->last_gas_resp = NULL;
519 wpabuf_free(wpa_s->prev_gas_resp);
520 wpa_s->prev_gas_resp = NULL;
522 os_free(wpa_s->last_scan_res);
523 wpa_s->last_scan_res = NULL;
527 #endif /* CONFIG_HS20 */
529 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
530 wpabuf_free(wpa_s->vendor_elem[i]);
531 wpa_s->vendor_elem[i] = NULL;
534 wmm_ac_notify_disassoc(wpa_s);
539 * wpa_clear_keys - Clear keys configured for the driver
540 * @wpa_s: Pointer to wpa_supplicant data
541 * @addr: Previously used BSSID or %NULL if not available
543 * This function clears the encryption keys that has been previously configured
546 void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
550 #ifdef CONFIG_IEEE80211W
552 #else /* CONFIG_IEEE80211W */
554 #endif /* CONFIG_IEEE80211W */
556 /* MLME-DELETEKEYS.request */
557 for (i = 0; i < max; i++) {
558 if (wpa_s->keys_cleared & BIT(i))
560 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, i, 0, NULL, 0,
563 if (!(wpa_s->keys_cleared & BIT(0)) && addr &&
564 !is_zero_ether_addr(addr)) {
565 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
567 /* MLME-SETPROTECTION.request(None) */
568 wpa_drv_mlme_setprotection(
570 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
571 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
573 wpa_s->keys_cleared = (u32) -1;
578 * wpa_supplicant_state_txt - Get the connection state name as a text string
579 * @state: State (wpa_state; WPA_*)
580 * Returns: The state name as a printable text string
582 const char * wpa_supplicant_state_txt(enum wpa_states state)
585 case WPA_DISCONNECTED:
586 return "DISCONNECTED";
589 case WPA_INTERFACE_DISABLED:
590 return "INTERFACE_DISABLED";
593 case WPA_AUTHENTICATING:
594 return "AUTHENTICATING";
595 case WPA_ASSOCIATING:
596 return "ASSOCIATING";
599 case WPA_4WAY_HANDSHAKE:
600 return "4WAY_HANDSHAKE";
601 case WPA_GROUP_HANDSHAKE:
602 return "GROUP_HANDSHAKE";
613 static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
617 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
618 name = wpa_s->current_ssid->bgscan;
620 name = wpa_s->conf->bgscan;
621 if (name == NULL || name[0] == '\0')
623 if (wpas_driver_bss_selection(wpa_s))
625 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
628 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE)
630 #endif /* CONFIG_P2P */
632 bgscan_deinit(wpa_s);
633 if (wpa_s->current_ssid) {
634 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
635 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
638 * Live without bgscan; it is only used as a roaming
639 * optimization, so the initial connection is not
643 struct wpa_scan_results *scan_res;
644 wpa_s->bgscan_ssid = wpa_s->current_ssid;
645 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
648 bgscan_notify_scan(wpa_s, scan_res);
649 wpa_scan_results_free(scan_res);
653 wpa_s->bgscan_ssid = NULL;
657 static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
659 if (wpa_s->bgscan_ssid != NULL) {
660 bgscan_deinit(wpa_s);
661 wpa_s->bgscan_ssid = NULL;
665 #endif /* CONFIG_BGSCAN */
668 static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
670 if (autoscan_init(wpa_s, 0))
671 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
675 static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
677 autoscan_deinit(wpa_s);
681 void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
683 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
684 wpa_s->wpa_state == WPA_SCANNING) {
685 autoscan_deinit(wpa_s);
686 wpa_supplicant_start_autoscan(wpa_s);
692 * wpa_supplicant_set_state - Set current connection state
693 * @wpa_s: Pointer to wpa_supplicant data
694 * @state: The new connection state
696 * This function is called whenever the connection state changes, e.g.,
697 * association is completed for WPA/WPA2 4-Way Handshake is started.
699 void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
700 enum wpa_states state)
702 enum wpa_states old_state = wpa_s->wpa_state;
704 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
705 wpa_supplicant_state_txt(wpa_s->wpa_state),
706 wpa_supplicant_state_txt(state));
708 if (state == WPA_INTERFACE_DISABLED) {
709 /* Assure normal scan when interface is restored */
710 wpa_s->normal_scans = 0;
713 if (state == WPA_COMPLETED) {
714 wpas_connect_work_done(wpa_s);
715 /* Reinitialize normal_scan counter */
716 wpa_s->normal_scans = 0;
719 if (state != WPA_SCANNING)
720 wpa_supplicant_notify_scanning(wpa_s, 0);
722 if (state == WPA_COMPLETED && wpa_s->new_connection) {
723 struct wpa_ssid *ssid = wpa_s->current_ssid;
724 #if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
725 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
726 MACSTR " completed [id=%d id_str=%s]",
727 MAC2STR(wpa_s->bssid),
728 ssid ? ssid->id : -1,
729 ssid && ssid->id_str ? ssid->id_str : "");
730 #endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
731 wpas_clear_temp_disabled(wpa_s, ssid, 1);
732 wpa_s->extra_blacklist_count = 0;
733 wpa_s->new_connection = 0;
734 wpa_drv_set_operstate(wpa_s, 1);
735 #ifndef IEEE8021X_EAPOL
736 wpa_drv_set_supp_port(wpa_s, 1);
737 #endif /* IEEE8021X_EAPOL */
738 wpa_s->after_wps = 0;
739 wpa_s->known_wps_freq = 0;
740 wpas_p2p_completed(wpa_s);
742 sme_sched_obss_scan(wpa_s, 1);
743 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
744 state == WPA_ASSOCIATED) {
745 wpa_s->new_connection = 1;
746 wpa_drv_set_operstate(wpa_s, 0);
747 #ifndef IEEE8021X_EAPOL
748 wpa_drv_set_supp_port(wpa_s, 0);
749 #endif /* IEEE8021X_EAPOL */
750 sme_sched_obss_scan(wpa_s, 0);
752 wpa_s->wpa_state = state;
755 if (state == WPA_COMPLETED)
756 wpa_supplicant_start_bgscan(wpa_s);
757 else if (state < WPA_ASSOCIATED)
758 wpa_supplicant_stop_bgscan(wpa_s);
759 #endif /* CONFIG_BGSCAN */
761 if (state == WPA_AUTHENTICATING)
762 wpa_supplicant_stop_autoscan(wpa_s);
764 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
765 wpa_supplicant_start_autoscan(wpa_s);
767 if (old_state >= WPA_ASSOCIATED && wpa_s->wpa_state < WPA_ASSOCIATED)
768 wmm_ac_notify_disassoc(wpa_s);
770 if (wpa_s->wpa_state != old_state) {
771 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
774 * Notify the P2P Device interface about a state change in one
777 wpas_p2p_indicate_state_change(wpa_s);
779 if (wpa_s->wpa_state == WPA_COMPLETED ||
780 old_state == WPA_COMPLETED)
781 wpas_notify_auth_changed(wpa_s);
786 void wpa_supplicant_terminate_proc(struct wpa_global *global)
790 struct wpa_supplicant *wpa_s = global->ifaces;
792 struct wpa_supplicant *next = wpa_s->next;
793 if (wpas_wps_terminate_pending(wpa_s) == 1)
796 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
797 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
798 wpas_p2p_disconnect(wpa_s);
799 #endif /* CONFIG_P2P */
802 #endif /* CONFIG_WPS */
809 static void wpa_supplicant_terminate(int sig, void *signal_ctx)
811 struct wpa_global *global = signal_ctx;
812 wpa_supplicant_terminate_proc(global);
816 void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
818 enum wpa_states old_state = wpa_s->wpa_state;
820 wpa_s->pairwise_cipher = 0;
821 wpa_s->group_cipher = 0;
822 wpa_s->mgmt_group_cipher = 0;
824 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
825 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
827 if (wpa_s->wpa_state != old_state)
828 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
833 * wpa_supplicant_reload_configuration - Reload configuration data
834 * @wpa_s: Pointer to wpa_supplicant data
835 * Returns: 0 on success or -1 if configuration parsing failed
837 * This function can be used to request that the configuration data is reloaded
838 * (e.g., after configuration file change). This function is reloading
839 * configuration only for one interface, so this may need to be called multiple
840 * times if %wpa_supplicant is controlling multiple interfaces and all
841 * interfaces need reconfiguration.
843 int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
845 struct wpa_config *conf;
849 if (wpa_s->confname == NULL)
851 conf = wpa_config_read(wpa_s->confname, NULL);
853 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
854 "file '%s' - exiting", wpa_s->confname);
857 wpa_config_read(wpa_s->confanother, conf);
859 conf->changed_parameters = (unsigned int) -1;
861 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
862 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
863 os_strcmp(conf->ctrl_interface,
864 wpa_s->conf->ctrl_interface) != 0);
866 if (reconf_ctrl && wpa_s->ctrl_iface) {
867 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
868 wpa_s->ctrl_iface = NULL;
871 eapol_sm_invalidate_cached_session(wpa_s->eapol);
872 if (wpa_s->current_ssid) {
873 wpa_s->own_disconnect_req = 1;
874 wpa_supplicant_deauthenticate(wpa_s,
875 WLAN_REASON_DEAUTH_LEAVING);
879 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
880 * pkcs11_engine_path, pkcs11_module_path, openssl_ciphers.
882 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
884 * Clear forced success to clear EAP state for next
887 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
889 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
890 wpa_sm_set_config(wpa_s->wpa, NULL);
891 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
892 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
893 rsn_preauth_deinit(wpa_s->wpa);
895 old_ap_scan = wpa_s->conf->ap_scan;
896 wpa_config_free(wpa_s->conf);
898 if (old_ap_scan != wpa_s->conf->ap_scan)
899 wpas_notify_ap_scan_changed(wpa_s);
902 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
904 wpa_supplicant_update_config(wpa_s);
906 wpa_supplicant_clear_status(wpa_s);
907 if (wpa_supplicant_enabled_networks(wpa_s)) {
908 wpa_s->reassociate = 1;
909 wpa_supplicant_req_scan(wpa_s, 0, 0);
911 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
916 static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
918 struct wpa_global *global = signal_ctx;
919 struct wpa_supplicant *wpa_s;
920 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
921 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
923 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
924 wpa_supplicant_terminate_proc(global);
930 static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
931 struct wpa_ssid *ssid,
932 struct wpa_ie_data *ie)
934 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
937 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
938 "from association info");
943 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
945 if (!(ie->group_cipher & ssid->group_cipher)) {
946 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
947 "cipher 0x%x (mask 0x%x) - reject",
948 ie->group_cipher, ssid->group_cipher);
951 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
952 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
953 "cipher 0x%x (mask 0x%x) - reject",
954 ie->pairwise_cipher, ssid->pairwise_cipher);
957 if (!(ie->key_mgmt & ssid->key_mgmt)) {
958 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
959 "management 0x%x (mask 0x%x) - reject",
960 ie->key_mgmt, ssid->key_mgmt);
964 #ifdef CONFIG_IEEE80211W
965 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
966 wpas_get_ssid_pmf(wpa_s, ssid) == MGMT_FRAME_PROTECTION_REQUIRED) {
967 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
968 "that does not support management frame protection - "
972 #endif /* CONFIG_IEEE80211W */
979 * wpa_supplicant_set_suites - Set authentication and encryption parameters
980 * @wpa_s: Pointer to wpa_supplicant data
981 * @bss: Scan results for the selected BSS, or %NULL if not available
982 * @ssid: Configuration data for the selected network
983 * @wpa_ie: Buffer for the WPA/RSN IE
984 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
985 * used buffer length in case the functions returns success.
986 * Returns: 0 on success or -1 on failure
988 * This function is used to configure authentication and encryption parameters
989 * based on the network configuration and scan result for the selected BSS (if
992 int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
993 struct wpa_bss *bss, struct wpa_ssid *ssid,
994 u8 *wpa_ie, size_t *wpa_ie_len)
996 struct wpa_ie_data ie;
998 const u8 *bss_wpa, *bss_rsn, *bss_osen;
1001 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
1002 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
1003 bss_osen = wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE);
1005 bss_wpa = bss_rsn = bss_osen = NULL;
1007 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
1008 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
1009 (ie.group_cipher & ssid->group_cipher) &&
1010 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1011 (ie.key_mgmt & ssid->key_mgmt)) {
1012 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
1013 proto = WPA_PROTO_RSN;
1014 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
1015 wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie) == 0 &&
1016 (ie.group_cipher & ssid->group_cipher) &&
1017 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1018 (ie.key_mgmt & ssid->key_mgmt)) {
1019 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
1020 proto = WPA_PROTO_WPA;
1022 } else if (bss_osen && (ssid->proto & WPA_PROTO_OSEN)) {
1023 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using OSEN");
1024 /* TODO: parse OSEN element */
1025 os_memset(&ie, 0, sizeof(ie));
1026 ie.group_cipher = WPA_CIPHER_CCMP;
1027 ie.pairwise_cipher = WPA_CIPHER_CCMP;
1028 ie.key_mgmt = WPA_KEY_MGMT_OSEN;
1029 proto = WPA_PROTO_OSEN;
1030 #endif /* CONFIG_HS20 */
1032 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
1033 wpa_dbg(wpa_s, MSG_DEBUG,
1034 "WPA: ssid proto=0x%x pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1035 ssid->proto, ssid->pairwise_cipher, ssid->group_cipher,
1037 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: BSS " MACSTR " ssid='%s'%s%s%s",
1038 MAC2STR(bss->bssid),
1039 wpa_ssid_txt(bss->ssid, bss->ssid_len),
1040 bss_wpa ? " WPA" : "",
1041 bss_rsn ? " RSN" : "",
1042 bss_osen ? " OSEN" : "");
1044 wpa_hexdump(MSG_DEBUG, "RSN", bss_rsn, 2 + bss_rsn[1]);
1045 if (wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie)) {
1046 wpa_dbg(wpa_s, MSG_DEBUG,
1047 "Could not parse RSN element");
1049 wpa_dbg(wpa_s, MSG_DEBUG,
1050 "RSN: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1051 ie.pairwise_cipher, ie.group_cipher,
1056 wpa_hexdump(MSG_DEBUG, "WPA", bss_wpa, 2 + bss_wpa[1]);
1057 if (wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie)) {
1058 wpa_dbg(wpa_s, MSG_DEBUG,
1059 "Could not parse WPA element");
1061 wpa_dbg(wpa_s, MSG_DEBUG,
1062 "WPA: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1063 ie.pairwise_cipher, ie.group_cipher,
1069 if (ssid->proto & WPA_PROTO_OSEN)
1070 proto = WPA_PROTO_OSEN;
1071 else if (ssid->proto & WPA_PROTO_RSN)
1072 proto = WPA_PROTO_RSN;
1074 proto = WPA_PROTO_WPA;
1075 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
1076 os_memset(&ie, 0, sizeof(ie));
1077 ie.group_cipher = ssid->group_cipher;
1078 ie.pairwise_cipher = ssid->pairwise_cipher;
1079 ie.key_mgmt = ssid->key_mgmt;
1080 #ifdef CONFIG_IEEE80211W
1081 ie.mgmt_group_cipher =
1082 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
1083 WPA_CIPHER_AES_128_CMAC : 0;
1084 #endif /* CONFIG_IEEE80211W */
1085 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1086 "based on configuration");
1091 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1092 "pairwise %d key_mgmt %d proto %d",
1093 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
1094 #ifdef CONFIG_IEEE80211W
1095 if (ssid->ieee80211w) {
1096 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1097 ie.mgmt_group_cipher);
1099 #endif /* CONFIG_IEEE80211W */
1101 wpa_s->wpa_proto = proto;
1102 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1103 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1104 !!(ssid->proto & (WPA_PROTO_RSN | WPA_PROTO_OSEN)));
1106 if (bss || !wpa_s->ap_ies_from_associnfo) {
1107 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1108 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1109 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1110 bss_rsn ? 2 + bss_rsn[1] : 0))
1114 sel = ie.group_cipher & ssid->group_cipher;
1115 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1116 if (wpa_s->group_cipher < 0) {
1117 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1121 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1122 wpa_cipher_txt(wpa_s->group_cipher));
1124 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
1125 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1126 if (wpa_s->pairwise_cipher < 0) {
1127 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1131 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1132 wpa_cipher_txt(wpa_s->pairwise_cipher));
1134 sel = ie.key_mgmt & ssid->key_mgmt;
1136 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1137 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1138 #endif /* CONFIG_SAE */
1140 #ifdef CONFIG_SUITEB192
1141 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B_192) {
1142 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B_192;
1143 wpa_dbg(wpa_s, MSG_DEBUG,
1144 "WPA: using KEY_MGMT 802.1X with Suite B (192-bit)");
1145 #endif /* CONFIG_SUITEB192 */
1146 #ifdef CONFIG_SUITEB
1147 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B) {
1148 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B;
1149 wpa_dbg(wpa_s, MSG_DEBUG,
1150 "WPA: using KEY_MGMT 802.1X with Suite B");
1151 #endif /* CONFIG_SUITEB */
1152 #ifdef CONFIG_IEEE80211R
1153 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1154 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
1155 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
1156 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1157 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
1158 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
1159 #endif /* CONFIG_IEEE80211R */
1161 } else if (sel & WPA_KEY_MGMT_SAE) {
1162 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1163 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1164 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1165 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1166 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1167 #endif /* CONFIG_SAE */
1168 #ifdef CONFIG_IEEE80211W
1169 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1170 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
1171 wpa_dbg(wpa_s, MSG_DEBUG,
1172 "WPA: using KEY_MGMT 802.1X with SHA256");
1173 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1174 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
1175 wpa_dbg(wpa_s, MSG_DEBUG,
1176 "WPA: using KEY_MGMT PSK with SHA256");
1177 #endif /* CONFIG_IEEE80211W */
1178 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1179 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
1180 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
1181 } else if (sel & WPA_KEY_MGMT_PSK) {
1182 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
1183 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
1184 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1185 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
1186 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
1188 } else if (sel & WPA_KEY_MGMT_OSEN) {
1189 wpa_s->key_mgmt = WPA_KEY_MGMT_OSEN;
1190 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using KEY_MGMT OSEN");
1191 #endif /* CONFIG_HS20 */
1193 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1194 "authenticated key management type");
1198 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1199 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1200 wpa_s->pairwise_cipher);
1201 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1203 #ifdef CONFIG_IEEE80211W
1204 sel = ie.mgmt_group_cipher;
1205 if (wpas_get_ssid_pmf(wpa_s, ssid) == NO_MGMT_FRAME_PROTECTION ||
1206 !(ie.capabilities & WPA_CAPABILITY_MFPC))
1208 if (sel & WPA_CIPHER_AES_128_CMAC) {
1209 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
1210 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1212 } else if (sel & WPA_CIPHER_BIP_GMAC_128) {
1213 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_128;
1214 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1216 } else if (sel & WPA_CIPHER_BIP_GMAC_256) {
1217 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_256;
1218 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1220 } else if (sel & WPA_CIPHER_BIP_CMAC_256) {
1221 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_CMAC_256;
1222 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1225 wpa_s->mgmt_group_cipher = 0;
1226 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
1228 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1229 wpa_s->mgmt_group_cipher);
1230 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1231 wpas_get_ssid_pmf(wpa_s, ssid));
1232 #endif /* CONFIG_IEEE80211W */
1234 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
1235 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
1239 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
1240 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN, NULL);
1241 #ifndef CONFIG_NO_PBKDF2
1242 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1245 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1246 4096, psk, PMK_LEN);
1247 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1249 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1250 os_memset(psk, 0, sizeof(psk));
1252 #endif /* CONFIG_NO_PBKDF2 */
1253 #ifdef CONFIG_EXT_PASSWORD
1254 if (ssid->ext_psk) {
1255 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1257 char pw_str[64 + 1];
1261 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1262 "found from external storage");
1266 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1267 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1268 "PSK length %d in external storage",
1269 (int) wpabuf_len(pw));
1270 ext_password_free(pw);
1274 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1275 pw_str[wpabuf_len(pw)] = '\0';
1277 #ifndef CONFIG_NO_PBKDF2
1278 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1280 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1281 4096, psk, PMK_LEN);
1282 os_memset(pw_str, 0, sizeof(pw_str));
1283 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1284 "external passphrase)",
1286 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1287 os_memset(psk, 0, sizeof(psk));
1289 #endif /* CONFIG_NO_PBKDF2 */
1290 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1291 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1292 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1293 "Invalid PSK hex string");
1294 os_memset(pw_str, 0, sizeof(pw_str));
1295 ext_password_free(pw);
1298 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1299 os_memset(psk, 0, sizeof(psk));
1301 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1303 os_memset(pw_str, 0, sizeof(pw_str));
1304 ext_password_free(pw);
1308 os_memset(pw_str, 0, sizeof(pw_str));
1309 ext_password_free(pw);
1311 #endif /* CONFIG_EXT_PASSWORD */
1313 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1319 static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
1324 case 0: /* Bits 0-7 */
1326 case 1: /* Bits 8-15 */
1328 case 2: /* Bits 16-23 */
1330 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1331 *pos |= 0x08; /* Bit 19 - BSS Transition */
1332 #endif /* CONFIG_WNM */
1334 case 3: /* Bits 24-31 */
1336 *pos |= 0x02; /* Bit 25 - SSID List */
1337 #endif /* CONFIG_WNM */
1338 #ifdef CONFIG_INTERWORKING
1339 if (wpa_s->conf->interworking)
1340 *pos |= 0x80; /* Bit 31 - Interworking */
1341 #endif /* CONFIG_INTERWORKING */
1343 case 4: /* Bits 32-39 */
1344 #ifdef CONFIG_INTERWORKING
1345 if (wpa_s->drv_flags / WPA_DRIVER_FLAGS_QOS_MAPPING)
1346 *pos |= 0x01; /* Bit 32 - QoS Map */
1347 #endif /* CONFIG_INTERWORKING */
1349 case 5: /* Bits 40-47 */
1351 if (wpa_s->conf->hs20)
1352 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1353 #endif /* CONFIG_HS20 */
1355 case 6: /* Bits 48-55 */
1361 int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf, size_t buflen)
1366 if (len < wpa_s->extended_capa_len)
1367 len = wpa_s->extended_capa_len;
1368 if (buflen < (size_t) len + 2) {
1369 wpa_printf(MSG_INFO,
1370 "Not enough room for building extended capabilities element");
1374 *pos++ = WLAN_EID_EXT_CAPAB;
1376 for (i = 0; i < len; i++, pos++) {
1377 wpas_ext_capab_byte(wpa_s, pos, i);
1379 if (i < wpa_s->extended_capa_len) {
1380 *pos &= ~wpa_s->extended_capa_mask[i];
1381 *pos |= wpa_s->extended_capa[i];
1385 while (len > 0 && buf[1 + len] == 0) {
1396 static int wpas_valid_bss(struct wpa_supplicant *wpa_s,
1397 struct wpa_bss *test_bss)
1399 struct wpa_bss *bss;
1401 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
1402 if (bss == test_bss)
1410 static int wpas_valid_ssid(struct wpa_supplicant *wpa_s,
1411 struct wpa_ssid *test_ssid)
1413 struct wpa_ssid *ssid;
1415 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next) {
1416 if (ssid == test_ssid)
1424 int wpas_valid_bss_ssid(struct wpa_supplicant *wpa_s, struct wpa_bss *test_bss,
1425 struct wpa_ssid *test_ssid)
1427 if (test_bss && !wpas_valid_bss(wpa_s, test_bss))
1430 return test_ssid == NULL || wpas_valid_ssid(wpa_s, test_ssid);
1434 void wpas_connect_work_free(struct wpa_connect_work *cwork)
1442 void wpas_connect_work_done(struct wpa_supplicant *wpa_s)
1444 struct wpa_connect_work *cwork;
1445 struct wpa_radio_work *work = wpa_s->connect_work;
1450 wpa_s->connect_work = NULL;
1453 wpas_connect_work_free(cwork);
1454 radio_work_done(work);
1458 int wpas_update_random_addr(struct wpa_supplicant *wpa_s, int style)
1460 struct os_reltime now;
1463 os_get_reltime(&now);
1464 if (wpa_s->last_mac_addr_style == style &&
1465 wpa_s->last_mac_addr_change.sec != 0 &&
1466 !os_reltime_expired(&now, &wpa_s->last_mac_addr_change,
1467 wpa_s->conf->rand_addr_lifetime)) {
1468 wpa_msg(wpa_s, MSG_DEBUG,
1469 "Previously selected random MAC address has not yet expired");
1475 if (random_mac_addr(addr) < 0)
1479 os_memcpy(addr, wpa_s->perm_addr, ETH_ALEN);
1480 if (random_mac_addr_keep_oui(addr) < 0)
1487 if (wpa_drv_set_mac_addr(wpa_s, addr) < 0) {
1488 wpa_msg(wpa_s, MSG_INFO,
1489 "Failed to set random MAC address");
1493 os_get_reltime(&wpa_s->last_mac_addr_change);
1494 wpa_s->mac_addr_changed = 1;
1495 wpa_s->last_mac_addr_style = style;
1497 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1498 wpa_msg(wpa_s, MSG_INFO,
1499 "Could not update MAC address information");
1503 wpa_msg(wpa_s, MSG_DEBUG, "Using random MAC address " MACSTR,
1510 int wpas_update_random_addr_disassoc(struct wpa_supplicant *wpa_s)
1512 if (wpa_s->wpa_state >= WPA_AUTHENTICATING ||
1513 !wpa_s->conf->preassoc_mac_addr)
1516 return wpas_update_random_addr(wpa_s, wpa_s->conf->preassoc_mac_addr);
1520 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit);
1523 * wpa_supplicant_associate - Request association
1524 * @wpa_s: Pointer to wpa_supplicant data
1525 * @bss: Scan results for the selected BSS, or %NULL if not available
1526 * @ssid: Configuration data for the selected network
1528 * This function is used to request %wpa_supplicant to associate with a BSS.
1530 void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
1531 struct wpa_bss *bss, struct wpa_ssid *ssid)
1533 struct wpa_connect_work *cwork;
1536 if (ssid->mac_addr == -1)
1537 rand_style = wpa_s->conf->mac_addr;
1539 rand_style = ssid->mac_addr;
1541 wmm_ac_clear_saved_tspecs(wpa_s);
1542 wpa_s->reassoc_same_bss = 0;
1544 if (wpa_s->last_ssid == ssid) {
1545 wpa_dbg(wpa_s, MSG_DEBUG, "Re-association to the same ESS");
1546 if (wpa_s->current_bss && wpa_s->current_bss == bss) {
1547 wmm_ac_save_tspecs(wpa_s);
1548 wpa_s->reassoc_same_bss = 1;
1550 } else if (rand_style > 0) {
1551 if (wpas_update_random_addr(wpa_s, rand_style) < 0)
1553 wpa_sm_pmksa_cache_flush(wpa_s->wpa, ssid);
1554 } else if (wpa_s->mac_addr_changed) {
1555 if (wpa_drv_set_mac_addr(wpa_s, NULL) < 0) {
1556 wpa_msg(wpa_s, MSG_INFO,
1557 "Could not restore permanent MAC address");
1560 wpa_s->mac_addr_changed = 0;
1561 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1562 wpa_msg(wpa_s, MSG_INFO,
1563 "Could not update MAC address information");
1566 wpa_msg(wpa_s, MSG_DEBUG, "Using permanent MAC address");
1568 wpa_s->last_ssid = ssid;
1570 #ifdef CONFIG_IBSS_RSN
1571 ibss_rsn_deinit(wpa_s->ibss_rsn);
1572 wpa_s->ibss_rsn = NULL;
1573 #endif /* CONFIG_IBSS_RSN */
1575 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1576 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1578 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
1579 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1583 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1584 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1585 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1586 wpas_p2p_ap_setup_failed(wpa_s);
1589 wpa_s->current_bss = bss;
1590 #else /* CONFIG_AP */
1591 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1593 #endif /* CONFIG_AP */
1597 if (ssid->mode == WPAS_MODE_MESH) {
1599 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_MESH)) {
1600 wpa_msg(wpa_s, MSG_INFO,
1601 "Driver does not support mesh mode");
1605 ssid->frequency = bss->freq;
1606 if (wpa_supplicant_join_mesh(wpa_s, ssid) < 0) {
1607 wpa_msg(wpa_s, MSG_ERROR, "Could not join mesh");
1610 wpa_s->current_bss = bss;
1611 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_STARTED
1612 "ssid=\"%s\" id=%d",
1613 wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
1615 #else /* CONFIG_MESH */
1616 wpa_msg(wpa_s, MSG_ERROR,
1617 "mesh mode support not included in the build");
1618 #endif /* CONFIG_MESH */
1624 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1626 #endif /* CONFIG_TDLS */
1628 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1629 ssid->mode == IEEE80211_MODE_INFRA) {
1630 sme_authenticate(wpa_s, bss, ssid);
1634 if (wpa_s->connect_work) {
1635 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since connect_work exist");
1639 if (radio_work_pending(wpa_s, "connect")) {
1640 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since pending work exist");
1644 cwork = os_zalloc(sizeof(*cwork));
1651 if (radio_add_work(wpa_s, bss ? bss->freq : 0, "connect", 1,
1652 wpas_start_assoc_cb, cwork) < 0) {
1658 static int bss_is_ibss(struct wpa_bss *bss)
1660 return (bss->caps & (IEEE80211_CAP_ESS | IEEE80211_CAP_IBSS)) ==
1665 void ibss_mesh_setup_freq(struct wpa_supplicant *wpa_s,
1666 const struct wpa_ssid *ssid,
1667 struct hostapd_freq_params *freq)
1669 enum hostapd_hw_mode hw_mode;
1670 struct hostapd_hw_modes *mode = NULL;
1671 int ht40plus[] = { 36, 44, 52, 60, 100, 108, 116, 124, 132, 149, 157,
1673 int vht80[] = { 36, 52, 100, 116, 132, 149 };
1674 struct hostapd_channel_data *pri_chan = NULL, *sec_chan = NULL;
1676 int i, chan_idx, ht40 = -1, res, obss_scan = 1;
1678 struct hostapd_freq_params vht_freq;
1680 freq->freq = ssid->frequency;
1682 for (j = 0; j < wpa_s->last_scan_res_used; j++) {
1683 struct wpa_bss *bss = wpa_s->last_scan_res[j];
1685 if (ssid->mode != WPAS_MODE_IBSS)
1688 /* Don't adjust control freq in case of fixed_freq */
1689 if (ssid->fixed_freq)
1692 if (!bss_is_ibss(bss))
1695 if (ssid->ssid_len == bss->ssid_len &&
1696 os_memcmp(ssid->ssid, bss->ssid, bss->ssid_len) == 0) {
1697 wpa_printf(MSG_DEBUG,
1698 "IBSS already found in scan results, adjust control freq: %d",
1700 freq->freq = bss->freq;
1706 /* For IBSS check HT_IBSS flag */
1707 if (ssid->mode == WPAS_MODE_IBSS &&
1708 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_HT_IBSS))
1711 if (wpa_s->group_cipher == WPA_CIPHER_WEP40 ||
1712 wpa_s->group_cipher == WPA_CIPHER_WEP104 ||
1713 wpa_s->pairwise_cipher == WPA_CIPHER_TKIP) {
1714 wpa_printf(MSG_DEBUG,
1715 "IBSS: WEP/TKIP detected, do not try to enable HT");
1719 hw_mode = ieee80211_freq_to_chan(freq->freq, &channel);
1720 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
1721 if (wpa_s->hw.modes[i].mode == hw_mode) {
1722 mode = &wpa_s->hw.modes[i];
1730 freq->ht_enabled = ht_supported(mode);
1731 if (!freq->ht_enabled)
1734 /* Setup higher BW only for 5 GHz */
1735 if (mode->mode != HOSTAPD_MODE_IEEE80211A)
1738 for (chan_idx = 0; chan_idx < mode->num_channels; chan_idx++) {
1739 pri_chan = &mode->channels[chan_idx];
1740 if (pri_chan->chan == channel)
1747 /* Check primary channel flags */
1748 if (pri_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1751 /* Check/setup HT40+/HT40- */
1752 for (j = 0; j < ARRAY_SIZE(ht40plus); j++) {
1753 if (ht40plus[j] == channel) {
1759 /* Find secondary channel */
1760 for (i = 0; i < mode->num_channels; i++) {
1761 sec_chan = &mode->channels[i];
1762 if (sec_chan->chan == channel + ht40 * 4)
1769 /* Check secondary channel flags */
1770 if (sec_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1773 freq->channel = pri_chan->chan;
1777 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40MINUS))
1779 freq->sec_channel_offset = -1;
1782 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40PLUS))
1784 freq->sec_channel_offset = 1;
1790 if (freq->sec_channel_offset && obss_scan) {
1791 struct wpa_scan_results *scan_res;
1793 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL, 0);
1794 if (scan_res == NULL) {
1796 freq->sec_channel_offset = 0;
1800 res = check_40mhz_5g(mode, scan_res, pri_chan->chan,
1805 freq->sec_channel_offset = 0;
1808 /* Configuration allowed */
1811 /* Switch pri/sec channels */
1812 freq->freq = hw_get_freq(mode, sec_chan->chan);
1813 freq->sec_channel_offset = -freq->sec_channel_offset;
1814 freq->channel = sec_chan->chan;
1817 freq->sec_channel_offset = 0;
1821 wpa_scan_results_free(scan_res);
1824 wpa_printf(MSG_DEBUG,
1825 "IBSS/mesh: setup freq channel %d, sec_channel_offset %d",
1826 freq->channel, freq->sec_channel_offset);
1828 /* Not sure if mesh is ready for VHT */
1829 if (ssid->mode != WPAS_MODE_IBSS)
1832 /* For IBSS check VHT_IBSS flag */
1833 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_VHT_IBSS))
1838 vht_freq.vht_enabled = vht_supported(mode);
1839 if (!vht_freq.vht_enabled)
1842 /* setup center_freq1, bandwidth */
1843 for (j = 0; j < ARRAY_SIZE(vht80); j++) {
1844 if (freq->channel >= vht80[j] &&
1845 freq->channel < vht80[j] + 16)
1849 if (j == ARRAY_SIZE(vht80))
1852 for (i = vht80[j]; i < vht80[j] + 16; i += 4) {
1853 struct hostapd_channel_data *chan;
1855 chan = hw_get_channel_chan(mode, i, NULL);
1859 /* Back to HT configuration if channel not usable */
1860 if (chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1864 if (hostapd_set_freq_params(&vht_freq, mode->mode, freq->freq,
1865 freq->channel, freq->ht_enabled,
1866 vht_freq.vht_enabled,
1867 freq->sec_channel_offset,
1868 VHT_CHANWIDTH_80MHZ,
1869 vht80[j] + 6, 0, 0) != 0)
1874 wpa_printf(MSG_DEBUG, "IBSS: VHT setup freq cf1 %d, cf2 %d, bw %d",
1875 freq->center_freq1, freq->center_freq2, freq->bandwidth);
1879 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit)
1881 struct wpa_connect_work *cwork = work->ctx;
1882 struct wpa_bss *bss = cwork->bss;
1883 struct wpa_ssid *ssid = cwork->ssid;
1884 struct wpa_supplicant *wpa_s = work->wpa_s;
1887 int use_crypt, ret, i, bssid_changed;
1888 int algs = WPA_AUTH_ALG_OPEN;
1889 unsigned int cipher_pairwise, cipher_group;
1890 struct wpa_driver_associate_params params;
1891 int wep_keys_set = 0;
1892 int assoc_failed = 0;
1893 struct wpa_ssid *old_ssid;
1894 #ifdef CONFIG_HT_OVERRIDES
1895 struct ieee80211_ht_capabilities htcaps;
1896 struct ieee80211_ht_capabilities htcaps_mask;
1897 #endif /* CONFIG_HT_OVERRIDES */
1898 #ifdef CONFIG_VHT_OVERRIDES
1899 struct ieee80211_vht_capabilities vhtcaps;
1900 struct ieee80211_vht_capabilities vhtcaps_mask;
1901 #endif /* CONFIG_VHT_OVERRIDES */
1904 if (work->started) {
1905 wpa_s->connect_work = NULL;
1907 /* cancel possible auth. timeout */
1908 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s,
1911 wpas_connect_work_free(cwork);
1915 wpa_s->connect_work = work;
1917 if (cwork->bss_removed || !wpas_valid_bss_ssid(wpa_s, bss, ssid)) {
1918 wpa_dbg(wpa_s, MSG_DEBUG, "BSS/SSID entry for association not valid anymore - drop connection attempt");
1919 wpas_connect_work_done(wpa_s);
1923 os_memset(¶ms, 0, sizeof(params));
1924 wpa_s->reassociate = 0;
1925 wpa_s->eap_expected_failure = 0;
1927 (!wpas_driver_bss_selection(wpa_s) || wpas_wps_searching(wpa_s))) {
1928 #ifdef CONFIG_IEEE80211R
1929 const u8 *ie, *md = NULL;
1930 #endif /* CONFIG_IEEE80211R */
1931 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
1932 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
1933 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
1934 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
1935 os_memset(wpa_s->bssid, 0, ETH_ALEN);
1936 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
1938 wpas_notify_bssid_changed(wpa_s);
1939 #ifdef CONFIG_IEEE80211R
1940 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
1941 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
1943 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
1945 /* Prepare for the next transition */
1946 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
1948 #endif /* CONFIG_IEEE80211R */
1950 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
1951 wpa_s->conf->ap_scan == 2 &&
1952 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
1953 /* Use ap_scan==1 style network selection to find the network
1955 wpas_connect_work_done(wpa_s);
1956 wpa_s->scan_req = MANUAL_SCAN_REQ;
1957 wpa_s->reassociate = 1;
1958 wpa_supplicant_req_scan(wpa_s, 0, 0);
1960 #endif /* CONFIG_WPS */
1962 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
1963 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
1964 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1966 wpa_supplicant_cancel_sched_scan(wpa_s);
1967 wpa_supplicant_cancel_scan(wpa_s);
1969 /* Starting new association, so clear the possibly used WPA IE from the
1970 * previous association. */
1971 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
1973 #ifdef IEEE8021X_EAPOL
1974 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1976 if (ssid->non_leap == 0)
1977 algs = WPA_AUTH_ALG_LEAP;
1979 algs |= WPA_AUTH_ALG_LEAP;
1982 #endif /* IEEE8021X_EAPOL */
1983 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
1984 if (ssid->auth_alg) {
1985 algs = ssid->auth_alg;
1986 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
1990 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
1991 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
1992 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
1993 int try_opportunistic;
1994 try_opportunistic = (ssid->proactive_key_caching < 0 ?
1996 ssid->proactive_key_caching) &&
1997 (ssid->proto & WPA_PROTO_RSN);
1998 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
1999 ssid, try_opportunistic) == 0)
2000 eapol_sm_notify_pmkid_attempt(wpa_s->eapol);
2001 wpa_ie_len = sizeof(wpa_ie);
2002 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
2003 wpa_ie, &wpa_ie_len)) {
2004 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2005 "key management and encryption suites");
2006 wpas_connect_work_done(wpa_s);
2009 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
2010 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
2012 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
2013 * use non-WPA since the scan results did not indicate that the
2014 * AP is using WPA or WPA2.
2016 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2018 wpa_s->wpa_proto = 0;
2019 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
2020 wpa_ie_len = sizeof(wpa_ie);
2021 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
2022 wpa_ie, &wpa_ie_len)) {
2023 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2024 "key management and encryption suites (no "
2026 wpas_connect_work_done(wpa_s);
2030 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
2031 struct wpabuf *wps_ie;
2032 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
2033 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
2034 wpa_ie_len = wpabuf_len(wps_ie);
2035 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
2038 wpabuf_free(wps_ie);
2039 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2040 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
2041 params.wps = WPS_MODE_PRIVACY;
2043 params.wps = WPS_MODE_OPEN;
2044 wpa_s->wpa_proto = 0;
2045 #endif /* CONFIG_WPS */
2047 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2049 wpa_s->wpa_proto = 0;
2053 if (wpa_s->global->p2p) {
2057 pos = wpa_ie + wpa_ie_len;
2058 len = sizeof(wpa_ie) - wpa_ie_len;
2059 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
2065 wpa_s->cross_connect_disallowed = 0;
2068 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
2070 wpa_s->cross_connect_disallowed =
2071 p2p_get_cross_connect_disallowed(p2p);
2073 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
2075 wpa_s->cross_connect_disallowed ?
2076 "disallows" : "allows");
2080 os_memset(wpa_s->p2p_ip_addr_info, 0, sizeof(wpa_s->p2p_ip_addr_info));
2081 #endif /* CONFIG_P2P */
2084 if (is_hs20_network(wpa_s, ssid, bss)) {
2085 struct wpabuf *hs20;
2086 hs20 = wpabuf_alloc(20);
2088 int pps_mo_id = hs20_get_pps_mo_id(wpa_s, ssid);
2091 wpas_hs20_add_indication(hs20, pps_mo_id);
2092 len = sizeof(wpa_ie) - wpa_ie_len;
2093 if (wpabuf_len(hs20) <= len) {
2094 os_memcpy(wpa_ie + wpa_ie_len,
2095 wpabuf_head(hs20), wpabuf_len(hs20));
2096 wpa_ie_len += wpabuf_len(hs20);
2101 #endif /* CONFIG_HS20 */
2104 * Workaround: Add Extended Capabilities element only if the AP
2105 * included this element in Beacon/Probe Response frames. Some older
2106 * APs seem to have interoperability issues if this element is
2107 * included, so while the standard may require us to include the
2108 * element in all cases, it is justifiable to skip it to avoid
2109 * interoperability issues.
2111 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
2114 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab,
2116 if (ext_capab_len > 0) {
2118 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
2120 os_memmove(pos + ext_capab_len, pos,
2121 wpa_ie_len - (pos - wpa_ie));
2122 wpa_ie_len += ext_capab_len;
2123 os_memcpy(pos, ext_capab, ext_capab_len);
2127 if (wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ]) {
2128 struct wpabuf *buf = wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ];
2131 len = sizeof(wpa_ie) - wpa_ie_len;
2132 if (wpabuf_len(buf) <= len) {
2133 os_memcpy(wpa_ie + wpa_ie_len,
2134 wpabuf_head(buf), wpabuf_len(buf));
2135 wpa_ie_len += wpabuf_len(buf);
2139 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
2141 cipher_pairwise = wpa_s->pairwise_cipher;
2142 cipher_group = wpa_s->group_cipher;
2143 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
2144 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2145 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
2147 if (wpa_set_wep_keys(wpa_s, ssid)) {
2152 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
2155 #ifdef IEEE8021X_EAPOL
2156 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2157 if ((ssid->eapol_flags &
2158 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
2159 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
2163 /* Assume that dynamic WEP-104 keys will be used and
2164 * set cipher suites in order for drivers to expect
2166 cipher_pairwise = cipher_group = WPA_CIPHER_WEP104;
2169 #endif /* IEEE8021X_EAPOL */
2171 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2172 /* Set the key before (and later after) association */
2173 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2176 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
2178 params.ssid = bss->ssid;
2179 params.ssid_len = bss->ssid_len;
2180 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
2181 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
2182 MACSTR " freq=%u MHz based on scan results "
2184 MAC2STR(bss->bssid), bss->freq,
2186 params.bssid = bss->bssid;
2187 params.freq.freq = bss->freq;
2189 params.bssid_hint = bss->bssid;
2190 params.freq_hint = bss->freq;
2192 params.ssid = ssid->ssid;
2193 params.ssid_len = ssid->ssid_len;
2196 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
2197 wpa_s->conf->ap_scan == 2) {
2198 params.bssid = ssid->bssid;
2199 params.fixed_bssid = 1;
2202 /* Initial frequency for IBSS/mesh */
2203 if ((ssid->mode == WPAS_MODE_IBSS || ssid->mode == WPAS_MODE_MESH) &&
2204 ssid->frequency > 0 && params.freq.freq == 0)
2205 ibss_mesh_setup_freq(wpa_s, ssid, ¶ms.freq);
2207 if (ssid->mode == WPAS_MODE_IBSS) {
2208 params.fixed_freq = ssid->fixed_freq;
2209 if (ssid->beacon_int)
2210 params.beacon_int = ssid->beacon_int;
2212 params.beacon_int = wpa_s->conf->beacon_int;
2215 params.wpa_ie = wpa_ie;
2216 params.wpa_ie_len = wpa_ie_len;
2217 params.pairwise_suite = cipher_pairwise;
2218 params.group_suite = cipher_group;
2219 params.key_mgmt_suite = wpa_s->key_mgmt;
2220 params.wpa_proto = wpa_s->wpa_proto;
2221 params.auth_alg = algs;
2222 params.mode = ssid->mode;
2223 params.bg_scan_period = ssid->bg_scan_period;
2224 for (i = 0; i < NUM_WEP_KEYS; i++) {
2225 if (ssid->wep_key_len[i])
2226 params.wep_key[i] = ssid->wep_key[i];
2227 params.wep_key_len[i] = ssid->wep_key_len[i];
2229 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
2231 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
2232 (params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2233 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK)) {
2234 params.passphrase = ssid->passphrase;
2236 params.psk = ssid->psk;
2239 if (wpa_s->conf->key_mgmt_offload) {
2240 if (params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
2241 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
2242 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B ||
2243 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B_192)
2244 params.req_key_mgmt_offload =
2245 ssid->proactive_key_caching < 0 ?
2246 wpa_s->conf->okc : ssid->proactive_key_caching;
2248 params.req_key_mgmt_offload = 1;
2250 if ((params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2251 params.key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256 ||
2252 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK) &&
2254 params.psk = ssid->psk;
2257 params.drop_unencrypted = use_crypt;
2259 #ifdef CONFIG_IEEE80211W
2260 params.mgmt_frame_protection = wpas_get_ssid_pmf(wpa_s, ssid);
2261 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
2262 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
2263 struct wpa_ie_data ie;
2264 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
2266 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
2267 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
2268 "MFP: require MFP");
2269 params.mgmt_frame_protection =
2270 MGMT_FRAME_PROTECTION_REQUIRED;
2273 #endif /* CONFIG_IEEE80211W */
2275 params.p2p = ssid->p2p_group;
2277 if (wpa_s->parent->set_sta_uapsd)
2278 params.uapsd = wpa_s->parent->sta_uapsd;
2282 #ifdef CONFIG_HT_OVERRIDES
2283 os_memset(&htcaps, 0, sizeof(htcaps));
2284 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
2285 params.htcaps = (u8 *) &htcaps;
2286 params.htcaps_mask = (u8 *) &htcaps_mask;
2287 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, ¶ms);
2288 #endif /* CONFIG_HT_OVERRIDES */
2289 #ifdef CONFIG_VHT_OVERRIDES
2290 os_memset(&vhtcaps, 0, sizeof(vhtcaps));
2291 os_memset(&vhtcaps_mask, 0, sizeof(vhtcaps_mask));
2292 params.vhtcaps = &vhtcaps;
2293 params.vhtcaps_mask = &vhtcaps_mask;
2294 wpa_supplicant_apply_vht_overrides(wpa_s, ssid, ¶ms);
2295 #endif /* CONFIG_VHT_OVERRIDES */
2299 * If multi-channel concurrency is not supported, check for any
2300 * frequency conflict. In case of any frequency conflict, remove the
2301 * least prioritized connection.
2303 if (wpa_s->num_multichan_concurrent < 2) {
2305 num = get_shared_radio_freqs(wpa_s, &freq, 1);
2306 if (num > 0 && freq > 0 && freq != params.freq.freq) {
2307 wpa_printf(MSG_DEBUG,
2308 "Assoc conflicting freq found (%d != %d)",
2309 freq, params.freq.freq);
2310 if (wpas_p2p_handle_frequency_conflicts(
2311 wpa_s, params.freq.freq, ssid) < 0) {
2312 wpas_connect_work_done(wpa_s);
2317 #endif /* CONFIG_P2P */
2319 ret = wpa_drv_associate(wpa_s, ¶ms);
2321 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
2323 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
2325 * The driver is known to mean what is saying, so we
2326 * can stop right here; the association will not
2329 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
2330 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
2331 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2334 /* try to continue anyway; new association will be tried again
2339 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2340 /* Set the key after the association just in case association
2341 * cleared the previously configured key. */
2342 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2343 /* No need to timeout authentication since there is no key
2345 wpa_supplicant_cancel_auth_timeout(wpa_s);
2346 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
2347 #ifdef CONFIG_IBSS_RSN
2348 } else if (ssid->mode == WPAS_MODE_IBSS &&
2349 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
2350 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
2352 * RSN IBSS authentication is per-STA and we can disable the
2353 * per-BSSID authentication.
2355 wpa_supplicant_cancel_auth_timeout(wpa_s);
2356 #endif /* CONFIG_IBSS_RSN */
2358 /* Timeout for IEEE 802.11 authentication and association */
2362 /* give IBSS a bit more time */
2363 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
2364 } else if (wpa_s->conf->ap_scan == 1) {
2365 /* give IBSS a bit more time */
2366 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
2368 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
2372 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
2373 /* Set static WEP keys again */
2374 wpa_set_wep_keys(wpa_s, ssid);
2377 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
2379 * Do not allow EAP session resumption between different
2380 * network configurations.
2382 eapol_sm_invalidate_cached_session(wpa_s->eapol);
2384 old_ssid = wpa_s->current_ssid;
2385 wpa_s->current_ssid = ssid;
2386 wpa_s->current_bss = bss;
2387 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
2388 wpa_supplicant_initiate_eapol(wpa_s);
2389 if (old_ssid != wpa_s->current_ssid)
2390 wpas_notify_network_changed(wpa_s);
2394 static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
2397 struct wpa_ssid *old_ssid;
2399 wpas_connect_work_done(wpa_s);
2400 wpa_clear_keys(wpa_s, addr);
2401 old_ssid = wpa_s->current_ssid;
2402 wpa_supplicant_mark_disassoc(wpa_s);
2403 wpa_sm_set_config(wpa_s->wpa, NULL);
2404 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2405 if (old_ssid != wpa_s->current_ssid)
2406 wpas_notify_network_changed(wpa_s);
2407 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
2412 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
2413 * @wpa_s: Pointer to wpa_supplicant data
2414 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
2416 * This function is used to request %wpa_supplicant to deauthenticate from the
2419 void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
2423 union wpa_event_data event;
2426 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
2427 " pending_bssid=" MACSTR " reason=%d state=%s",
2428 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
2429 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
2431 if (!is_zero_ether_addr(wpa_s->bssid))
2432 addr = wpa_s->bssid;
2433 else if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
2434 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
2435 wpa_s->wpa_state == WPA_ASSOCIATING))
2436 addr = wpa_s->pending_bssid;
2437 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
2439 * When using driver-based BSS selection, we may not know the
2440 * BSSID with which we are currently trying to associate. We
2441 * need to notify the driver of this disconnection even in such
2442 * a case, so use the all zeros address here.
2444 addr = wpa_s->bssid;
2449 wpa_tdls_teardown_peers(wpa_s->wpa);
2450 #endif /* CONFIG_TDLS */
2454 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_REMOVED "%s",
2456 wpa_supplicant_leave_mesh(wpa_s);
2458 #endif /* CONFIG_MESH */
2461 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
2462 os_memset(&event, 0, sizeof(event));
2463 event.deauth_info.reason_code = (u16) reason_code;
2464 event.deauth_info.locally_generated = 1;
2465 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
2470 wpa_supplicant_clear_connection(wpa_s, addr);
2473 static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
2474 struct wpa_ssid *ssid)
2476 if (!ssid || !ssid->disabled || ssid->disabled == 2)
2480 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2481 wpas_notify_network_enabled_changed(wpa_s, ssid);
2484 * Try to reassociate since there is no current configuration and a new
2485 * network was made available.
2487 if (!wpa_s->current_ssid && !wpa_s->disconnected)
2488 wpa_s->reassociate = 1;
2493 * wpa_supplicant_enable_network - Mark a configured network as enabled
2494 * @wpa_s: wpa_supplicant structure for a network interface
2495 * @ssid: wpa_ssid structure for a configured network or %NULL
2497 * Enables the specified network or all networks if no network specified.
2499 void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
2500 struct wpa_ssid *ssid)
2503 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
2504 wpa_supplicant_enable_one_network(wpa_s, ssid);
2506 wpa_supplicant_enable_one_network(wpa_s, ssid);
2508 if (wpa_s->reassociate && !wpa_s->disconnected) {
2509 if (wpa_s->sched_scanning) {
2510 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
2511 "new network to scan filters");
2512 wpa_supplicant_cancel_sched_scan(wpa_s);
2515 if (wpa_supplicant_fast_associate(wpa_s) != 1)
2516 wpa_supplicant_req_scan(wpa_s, 0, 0);
2522 * wpa_supplicant_disable_network - Mark a configured network as disabled
2523 * @wpa_s: wpa_supplicant structure for a network interface
2524 * @ssid: wpa_ssid structure for a configured network or %NULL
2526 * Disables the specified network or all networks if no network specified.
2528 void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
2529 struct wpa_ssid *ssid)
2531 struct wpa_ssid *other_ssid;
2535 if (wpa_s->sched_scanning)
2536 wpa_supplicant_cancel_sched_scan(wpa_s);
2538 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2539 other_ssid = other_ssid->next) {
2540 was_disabled = other_ssid->disabled;
2541 if (was_disabled == 2)
2542 continue; /* do not change persistent P2P group
2545 other_ssid->disabled = 1;
2547 if (was_disabled != other_ssid->disabled)
2548 wpas_notify_network_enabled_changed(
2551 if (wpa_s->current_ssid)
2552 wpa_supplicant_deauthenticate(
2553 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2554 } else if (ssid->disabled != 2) {
2555 if (ssid == wpa_s->current_ssid)
2556 wpa_supplicant_deauthenticate(
2557 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2559 was_disabled = ssid->disabled;
2563 if (was_disabled != ssid->disabled) {
2564 wpas_notify_network_enabled_changed(wpa_s, ssid);
2565 if (wpa_s->sched_scanning) {
2566 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
2567 "to remove network from filters");
2568 wpa_supplicant_cancel_sched_scan(wpa_s);
2569 wpa_supplicant_req_scan(wpa_s, 0, 0);
2577 * wpa_supplicant_select_network - Attempt association with a network
2578 * @wpa_s: wpa_supplicant structure for a network interface
2579 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
2581 void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
2582 struct wpa_ssid *ssid)
2585 struct wpa_ssid *other_ssid;
2586 int disconnected = 0;
2588 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
2589 wpa_s->own_disconnect_req = 1;
2590 wpa_supplicant_deauthenticate(
2591 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2596 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2599 * Mark all other networks disabled or mark all networks enabled if no
2600 * network specified.
2602 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2603 other_ssid = other_ssid->next) {
2604 int was_disabled = other_ssid->disabled;
2605 if (was_disabled == 2)
2606 continue; /* do not change persistent P2P group data */
2608 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
2609 if (was_disabled && !other_ssid->disabled)
2610 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
2612 if (was_disabled != other_ssid->disabled)
2613 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
2616 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid) {
2617 /* We are already associated with the selected network */
2618 wpa_printf(MSG_DEBUG, "Already associated with the "
2619 "selected network - do nothing");
2624 wpa_s->current_ssid = ssid;
2625 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2626 wpa_s->connect_without_scan =
2627 (ssid->mode == WPAS_MODE_MESH) ? ssid : NULL;
2629 wpa_s->connect_without_scan = NULL;
2632 wpa_s->disconnected = 0;
2633 wpa_s->reassociate = 1;
2635 if (wpa_s->connect_without_scan ||
2636 wpa_supplicant_fast_associate(wpa_s) != 1)
2637 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
2640 wpas_notify_network_selected(wpa_s, ssid);
2645 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
2646 * @wpa_s: wpa_supplicant structure for a network interface
2647 * @pkcs11_engine_path: PKCS #11 engine path or NULL
2648 * @pkcs11_module_path: PKCS #11 module path or NULL
2649 * Returns: 0 on success; -1 on failure
2651 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
2652 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
2653 * module path fails the paths will be reset to the default value (NULL).
2655 int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
2656 const char *pkcs11_engine_path,
2657 const char *pkcs11_module_path)
2659 char *pkcs11_engine_path_copy = NULL;
2660 char *pkcs11_module_path_copy = NULL;
2662 if (pkcs11_engine_path != NULL) {
2663 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
2664 if (pkcs11_engine_path_copy == NULL)
2667 if (pkcs11_module_path != NULL) {
2668 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
2669 if (pkcs11_module_path_copy == NULL) {
2670 os_free(pkcs11_engine_path_copy);
2675 os_free(wpa_s->conf->pkcs11_engine_path);
2676 os_free(wpa_s->conf->pkcs11_module_path);
2677 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
2678 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
2680 wpa_sm_set_eapol(wpa_s->wpa, NULL);
2681 eapol_sm_deinit(wpa_s->eapol);
2682 wpa_s->eapol = NULL;
2683 if (wpa_supplicant_init_eapol(wpa_s)) {
2684 /* Error -> Reset paths to the default value (NULL) once. */
2685 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
2686 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
2691 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
2698 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
2699 * @wpa_s: wpa_supplicant structure for a network interface
2700 * @ap_scan: AP scan mode
2701 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
2704 int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
2709 if (ap_scan < 0 || ap_scan > 2)
2713 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
2714 wpa_s->wpa_state >= WPA_ASSOCIATING &&
2715 wpa_s->wpa_state < WPA_COMPLETED) {
2716 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
2717 "associating", wpa_s->conf->ap_scan, ap_scan);
2720 #endif /* ANDROID */
2722 old_ap_scan = wpa_s->conf->ap_scan;
2723 wpa_s->conf->ap_scan = ap_scan;
2725 if (old_ap_scan != wpa_s->conf->ap_scan)
2726 wpas_notify_ap_scan_changed(wpa_s);
2733 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
2734 * @wpa_s: wpa_supplicant structure for a network interface
2735 * @expire_age: Expiration age in seconds
2736 * Returns: 0 if succeed or -1 if expire_age has an invalid value
2739 int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
2740 unsigned int bss_expire_age)
2742 if (bss_expire_age < 10) {
2743 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
2747 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
2749 wpa_s->conf->bss_expiration_age = bss_expire_age;
2756 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
2757 * @wpa_s: wpa_supplicant structure for a network interface
2758 * @expire_count: number of scans after which an unseen BSS is reclaimed
2759 * Returns: 0 if succeed or -1 if expire_count has an invalid value
2762 int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
2763 unsigned int bss_expire_count)
2765 if (bss_expire_count < 1) {
2766 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
2770 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
2772 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
2779 * wpa_supplicant_set_scan_interval - Set scan interval
2780 * @wpa_s: wpa_supplicant structure for a network interface
2781 * @scan_interval: scan interval in seconds
2782 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
2785 int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
2788 if (scan_interval < 0) {
2789 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
2793 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
2795 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
2802 * wpa_supplicant_set_debug_params - Set global debug params
2803 * @global: wpa_global structure
2804 * @debug_level: debug level
2805 * @debug_timestamp: determines if show timestamp in debug data
2806 * @debug_show_keys: determines if show keys in debug data
2807 * Returns: 0 if succeed or -1 if debug_level has wrong value
2809 int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
2810 int debug_timestamp, int debug_show_keys)
2813 int old_level, old_timestamp, old_show_keys;
2815 /* check for allowed debuglevels */
2816 if (debug_level != MSG_EXCESSIVE &&
2817 debug_level != MSG_MSGDUMP &&
2818 debug_level != MSG_DEBUG &&
2819 debug_level != MSG_INFO &&
2820 debug_level != MSG_WARNING &&
2821 debug_level != MSG_ERROR)
2824 old_level = wpa_debug_level;
2825 old_timestamp = wpa_debug_timestamp;
2826 old_show_keys = wpa_debug_show_keys;
2828 wpa_debug_level = debug_level;
2829 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
2830 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
2832 if (wpa_debug_level != old_level)
2833 wpas_notify_debug_level_changed(global);
2834 if (wpa_debug_timestamp != old_timestamp)
2835 wpas_notify_debug_timestamp_changed(global);
2836 if (wpa_debug_show_keys != old_show_keys)
2837 wpas_notify_debug_show_keys_changed(global);
2844 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
2845 * @wpa_s: Pointer to wpa_supplicant data
2846 * Returns: A pointer to the current network structure or %NULL on failure
2848 struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
2850 struct wpa_ssid *entry;
2851 u8 ssid[MAX_SSID_LEN];
2857 res = wpa_drv_get_ssid(wpa_s, ssid);
2859 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
2865 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
2866 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
2871 wired = wpa_s->conf->ap_scan == 0 &&
2872 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
2874 entry = wpa_s->conf->ssid;
2876 if (!wpas_network_disabled(wpa_s, entry) &&
2877 ((ssid_len == entry->ssid_len &&
2878 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
2879 (!entry->bssid_set ||
2880 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2883 if (!wpas_network_disabled(wpa_s, entry) &&
2884 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
2885 (entry->ssid == NULL || entry->ssid_len == 0) &&
2886 (!entry->bssid_set ||
2887 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2889 #endif /* CONFIG_WPS */
2891 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
2892 entry->ssid_len == 0 &&
2893 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
2896 entry = entry->next;
2903 static int select_driver(struct wpa_supplicant *wpa_s, int i)
2905 struct wpa_global *global = wpa_s->global;
2907 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
2908 global->drv_priv[i] = wpa_drivers[i]->global_init();
2909 if (global->drv_priv[i] == NULL) {
2910 wpa_printf(MSG_ERROR, "Failed to initialize driver "
2911 "'%s'", wpa_drivers[i]->name);
2916 wpa_s->driver = wpa_drivers[i];
2917 wpa_s->global_drv_priv = global->drv_priv[i];
2923 static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
2928 const char *pos, *driver = name;
2933 if (wpa_drivers[0] == NULL) {
2934 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
2940 /* default to first driver in the list */
2941 return select_driver(wpa_s, 0);
2945 pos = os_strchr(driver, ',');
2949 len = os_strlen(driver);
2951 for (i = 0; wpa_drivers[i]; i++) {
2952 if (os_strlen(wpa_drivers[i]->name) == len &&
2953 os_strncmp(driver, wpa_drivers[i]->name, len) ==
2955 /* First driver that succeeds wins */
2956 if (select_driver(wpa_s, i) == 0)
2964 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
2970 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
2971 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
2972 * with struct wpa_driver_ops::init()
2973 * @src_addr: Source address of the EAPOL frame
2974 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
2975 * @len: Length of the EAPOL data
2977 * This function is called for each received EAPOL frame. Most driver
2978 * interfaces rely on more generic OS mechanism for receiving frames through
2979 * l2_packet, but if such a mechanism is not available, the driver wrapper may
2980 * take care of received EAPOL frames and deliver them to the core supplicant
2981 * code by calling this function.
2983 void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
2984 const u8 *buf, size_t len)
2986 struct wpa_supplicant *wpa_s = ctx;
2988 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
2989 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
2991 #ifdef CONFIG_PEERKEY
2992 if (wpa_s->wpa_state > WPA_ASSOCIATED && wpa_s->current_ssid &&
2993 wpa_s->current_ssid->peerkey &&
2994 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
2995 wpa_sm_rx_eapol_peerkey(wpa_s->wpa, src_addr, buf, len) == 1) {
2996 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: Processed PeerKey EAPOL-Key");
2999 #endif /* CONFIG_PEERKEY */
3001 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
3002 (wpa_s->last_eapol_matches_bssid &&
3005 #endif /* CONFIG_AP */
3006 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
3008 * There is possible race condition between receiving the
3009 * association event and the EAPOL frame since they are coming
3010 * through different paths from the driver. In order to avoid
3011 * issues in trying to process the EAPOL frame before receiving
3012 * association information, lets queue it for processing until
3013 * the association event is received. This may also be needed in
3014 * driver-based roaming case, so also use src_addr != BSSID as a
3015 * trigger if we have previously confirmed that the
3016 * Authenticator uses BSSID as the src_addr (which is not the
3017 * case with wired IEEE 802.1X).
3019 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
3020 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
3021 wpa_supplicant_state_txt(wpa_s->wpa_state),
3022 MAC2STR(wpa_s->bssid));
3023 wpabuf_free(wpa_s->pending_eapol_rx);
3024 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
3025 if (wpa_s->pending_eapol_rx) {
3026 os_get_reltime(&wpa_s->pending_eapol_rx_time);
3027 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
3033 wpa_s->last_eapol_matches_bssid =
3034 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
3037 if (wpa_s->ap_iface) {
3038 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
3041 #endif /* CONFIG_AP */
3043 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
3044 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
3045 "no key management is configured");
3049 if (wpa_s->eapol_received == 0 &&
3050 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
3051 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
3052 wpa_s->wpa_state != WPA_COMPLETED) &&
3053 (wpa_s->current_ssid == NULL ||
3054 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
3055 /* Timeout for completing IEEE 802.1X and WPA authentication */
3056 wpa_supplicant_req_auth_timeout(
3058 (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
3059 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
3060 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) ?
3063 wpa_s->eapol_received++;
3065 if (wpa_s->countermeasures) {
3066 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
3071 #ifdef CONFIG_IBSS_RSN
3072 if (wpa_s->current_ssid &&
3073 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
3074 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
3077 #endif /* CONFIG_IBSS_RSN */
3079 /* Source address of the incoming EAPOL frame could be compared to the
3080 * current BSSID. However, it is possible that a centralized
3081 * Authenticator could be using another MAC address than the BSSID of
3082 * an AP, so just allow any address to be used for now. The replies are
3083 * still sent to the current BSSID (if available), though. */
3085 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
3086 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
3087 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
3089 wpa_drv_poll(wpa_s);
3090 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
3091 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
3092 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
3094 * Set portValid = TRUE here since we are going to skip 4-way
3095 * handshake processing which would normally set portValid. We
3096 * need this to allow the EAPOL state machines to be completed
3097 * without going through EAPOL-Key handshake.
3099 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
3104 int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
3106 if ((!wpa_s->p2p_mgmt ||
3107 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3108 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
3109 l2_packet_deinit(wpa_s->l2);
3110 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
3111 wpa_drv_get_mac_addr(wpa_s),
3113 wpa_supplicant_rx_eapol, wpa_s, 0);
3114 if (wpa_s->l2 == NULL)
3117 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
3119 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
3122 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
3123 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
3127 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3133 static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
3134 const u8 *buf, size_t len)
3136 struct wpa_supplicant *wpa_s = ctx;
3137 const struct l2_ethhdr *eth;
3139 if (len < sizeof(*eth))
3141 eth = (const struct l2_ethhdr *) buf;
3143 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
3144 !(eth->h_dest[0] & 0x01)) {
3145 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3146 " (bridge - not for this interface - ignore)",
3147 MAC2STR(src_addr), MAC2STR(eth->h_dest));
3151 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3152 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
3153 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
3154 len - sizeof(*eth));
3159 * wpa_supplicant_driver_init - Initialize driver interface parameters
3160 * @wpa_s: Pointer to wpa_supplicant data
3161 * Returns: 0 on success, -1 on failure
3163 * This function is called to initialize driver interface parameters.
3164 * wpa_drv_init() must have been called before this function to initialize the
3167 int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
3169 static int interface_count = 0;
3171 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
3174 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
3175 MAC2STR(wpa_s->own_addr));
3176 os_memcpy(wpa_s->perm_addr, wpa_s->own_addr, ETH_ALEN);
3177 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3179 if (wpa_s->bridge_ifname[0]) {
3180 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
3181 "interface '%s'", wpa_s->bridge_ifname);
3182 wpa_s->l2_br = l2_packet_init_bridge(
3183 wpa_s->bridge_ifname, wpa_s->ifname, wpa_s->own_addr,
3184 ETH_P_EAPOL, wpa_supplicant_rx_eapol_bridge, wpa_s, 1);
3185 if (wpa_s->l2_br == NULL) {
3186 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
3187 "connection for the bridge interface '%s'",
3188 wpa_s->bridge_ifname);
3193 wpa_clear_keys(wpa_s, NULL);
3195 /* Make sure that TKIP countermeasures are not left enabled (could
3196 * happen if wpa_supplicant is killed during countermeasures. */
3197 wpa_drv_set_countermeasures(wpa_s, 0);
3199 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
3200 wpa_drv_flush_pmkid(wpa_s);
3202 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
3203 wpa_s->prev_scan_wildcard = 0;
3205 if (wpa_supplicant_enabled_networks(wpa_s)) {
3206 if (wpa_s->wpa_state == WPA_INTERFACE_DISABLED) {
3207 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3208 interface_count = 0;
3211 if (!wpa_s->p2p_mgmt &&
3212 wpa_supplicant_delayed_sched_scan(wpa_s,
3213 interface_count % 3,
3215 wpa_supplicant_req_scan(wpa_s, interface_count % 3,
3217 #endif /* ANDROID */
3220 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
3226 static int wpa_supplicant_daemon(const char *pid_file)
3228 wpa_printf(MSG_DEBUG, "Daemonize..");
3229 return os_daemonize(pid_file);
3233 static struct wpa_supplicant *
3234 wpa_supplicant_alloc(struct wpa_supplicant *parent)
3236 struct wpa_supplicant *wpa_s;
3238 wpa_s = os_zalloc(sizeof(*wpa_s));
3241 wpa_s->scan_req = INITIAL_SCAN_REQ;
3242 wpa_s->scan_interval = 5;
3243 wpa_s->new_connection = 1;
3244 wpa_s->parent = parent ? parent : wpa_s;
3245 wpa_s->sched_scanning = 0;
3251 #ifdef CONFIG_HT_OVERRIDES
3253 static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
3254 struct ieee80211_ht_capabilities *htcaps,
3255 struct ieee80211_ht_capabilities *htcaps_mask,
3258 /* parse ht_mcs into hex array */
3260 const char *tmp = ht_mcs;
3263 /* If ht_mcs is null, do not set anything */
3267 /* This is what we are setting in the kernel */
3268 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
3270 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
3272 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
3274 long v = strtol(tmp, &end, 16);
3276 wpa_msg(wpa_s, MSG_DEBUG,
3277 "htcap value[%i]: %ld end: %p tmp: %p",
3282 htcaps->supported_mcs_set[i] = v;
3285 wpa_msg(wpa_s, MSG_ERROR,
3286 "Failed to parse ht-mcs: %s, error: %s\n",
3287 ht_mcs, strerror(errno));
3293 * If we were able to parse any values, then set mask for the MCS set.
3296 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
3297 IEEE80211_HT_MCS_MASK_LEN - 1);
3298 /* skip the 3 reserved bits */
3299 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
3307 static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
3308 struct ieee80211_ht_capabilities *htcaps,
3309 struct ieee80211_ht_capabilities *htcaps_mask,
3314 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
3319 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
3320 htcaps_mask->ht_capabilities_info |= msk;
3322 htcaps->ht_capabilities_info &= msk;
3324 htcaps->ht_capabilities_info |= msk;
3330 static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
3331 struct ieee80211_ht_capabilities *htcaps,
3332 struct ieee80211_ht_capabilities *htcaps_mask,
3335 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
3340 if (factor < 0 || factor > 3) {
3341 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
3342 "Must be 0-3 or -1", factor);
3346 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
3347 htcaps->a_mpdu_params &= ~0x3;
3348 htcaps->a_mpdu_params |= factor & 0x3;
3354 static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
3355 struct ieee80211_ht_capabilities *htcaps,
3356 struct ieee80211_ht_capabilities *htcaps_mask,
3359 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
3364 if (density < 0 || density > 7) {
3365 wpa_msg(wpa_s, MSG_ERROR,
3366 "ampdu_density: %d out of range. Must be 0-7 or -1.",
3371 htcaps_mask->a_mpdu_params |= 0x1C;
3372 htcaps->a_mpdu_params &= ~(0x1C);
3373 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
3379 static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
3380 struct ieee80211_ht_capabilities *htcaps,
3381 struct ieee80211_ht_capabilities *htcaps_mask,
3384 /* Masking these out disables HT40 */
3385 le16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
3386 HT_CAP_INFO_SHORT_GI40MHZ);
3388 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
3391 htcaps->ht_capabilities_info &= ~msk;
3393 htcaps->ht_capabilities_info |= msk;
3395 htcaps_mask->ht_capabilities_info |= msk;
3401 static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
3402 struct ieee80211_ht_capabilities *htcaps,
3403 struct ieee80211_ht_capabilities *htcaps_mask,
3406 /* Masking these out disables SGI */
3407 le16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
3408 HT_CAP_INFO_SHORT_GI40MHZ);
3410 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
3413 htcaps->ht_capabilities_info &= ~msk;
3415 htcaps->ht_capabilities_info |= msk;
3417 htcaps_mask->ht_capabilities_info |= msk;
3423 static int wpa_set_disable_ldpc(struct wpa_supplicant *wpa_s,
3424 struct ieee80211_ht_capabilities *htcaps,
3425 struct ieee80211_ht_capabilities *htcaps_mask,
3428 /* Masking these out disables LDPC */
3429 le16 msk = host_to_le16(HT_CAP_INFO_LDPC_CODING_CAP);
3431 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ldpc: %d", disabled);
3434 htcaps->ht_capabilities_info &= ~msk;
3436 htcaps->ht_capabilities_info |= msk;
3438 htcaps_mask->ht_capabilities_info |= msk;
3444 void wpa_supplicant_apply_ht_overrides(
3445 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3446 struct wpa_driver_associate_params *params)
3448 struct ieee80211_ht_capabilities *htcaps;
3449 struct ieee80211_ht_capabilities *htcaps_mask;
3454 params->disable_ht = ssid->disable_ht;
3455 if (!params->htcaps || !params->htcaps_mask)
3458 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
3459 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
3460 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
3461 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
3462 ssid->disable_max_amsdu);
3463 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
3464 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
3465 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
3466 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
3467 wpa_set_disable_ldpc(wpa_s, htcaps, htcaps_mask, ssid->disable_ldpc);
3469 if (ssid->ht40_intolerant) {
3470 le16 bit = host_to_le16(HT_CAP_INFO_40MHZ_INTOLERANT);
3471 htcaps->ht_capabilities_info |= bit;
3472 htcaps_mask->ht_capabilities_info |= bit;
3476 #endif /* CONFIG_HT_OVERRIDES */
3479 #ifdef CONFIG_VHT_OVERRIDES
3480 void wpa_supplicant_apply_vht_overrides(
3481 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3482 struct wpa_driver_associate_params *params)
3484 struct ieee80211_vht_capabilities *vhtcaps;
3485 struct ieee80211_vht_capabilities *vhtcaps_mask;
3490 params->disable_vht = ssid->disable_vht;
3492 vhtcaps = (void *) params->vhtcaps;
3493 vhtcaps_mask = (void *) params->vhtcaps_mask;
3495 if (!vhtcaps || !vhtcaps_mask)
3498 vhtcaps->vht_capabilities_info = ssid->vht_capa;
3499 vhtcaps_mask->vht_capabilities_info = ssid->vht_capa_mask;
3501 #ifdef CONFIG_HT_OVERRIDES
3502 /* if max ampdu is <= 3, we have to make the HT cap the same */
3503 if (ssid->vht_capa_mask & VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) {
3506 max_ampdu = (ssid->vht_capa &
3507 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) >>
3508 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX_SHIFT;
3510 max_ampdu = max_ampdu < 3 ? max_ampdu : 3;
3511 wpa_set_ampdu_factor(wpa_s,
3512 (void *) params->htcaps,
3513 (void *) params->htcaps_mask,
3516 #endif /* CONFIG_HT_OVERRIDES */
3518 #define OVERRIDE_MCS(i) \
3519 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
3520 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
3522 vhtcaps->vht_supported_mcs_set.tx_map |= \
3523 ssid->vht_tx_mcs_nss_ ##i << 2 * (i - 1); \
3525 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
3526 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
3528 vhtcaps->vht_supported_mcs_set.rx_map |= \
3529 ssid->vht_rx_mcs_nss_ ##i << 2 * (i - 1); \
3541 #endif /* CONFIG_VHT_OVERRIDES */
3544 static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
3549 if (!wpa_s->conf->pcsc_reader)
3552 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
3556 if (wpa_s->conf->pcsc_pin &&
3557 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
3558 scard_deinit(wpa_s->scard);
3559 wpa_s->scard = NULL;
3560 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
3564 len = sizeof(wpa_s->imsi) - 1;
3565 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
3566 scard_deinit(wpa_s->scard);
3567 wpa_s->scard = NULL;
3568 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
3571 wpa_s->imsi[len] = '\0';
3573 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
3575 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
3576 wpa_s->imsi, wpa_s->mnc_len);
3578 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
3579 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
3580 #endif /* PCSC_FUNCS */
3586 int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
3590 ext_password_deinit(wpa_s->ext_pw);
3591 wpa_s->ext_pw = NULL;
3592 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
3594 if (!wpa_s->conf->ext_password_backend)
3597 val = os_strdup(wpa_s->conf->ext_password_backend);
3600 pos = os_strchr(val, ':');
3604 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
3606 wpa_s->ext_pw = ext_password_init(val, pos);
3608 if (wpa_s->ext_pw == NULL) {
3609 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
3612 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
3618 static int wpas_set_wowlan_triggers(struct wpa_supplicant *wpa_s,
3619 const struct wpa_driver_capa *capa)
3621 struct wowlan_triggers *triggers;
3624 if (!wpa_s->conf->wowlan_triggers)
3627 triggers = wpa_get_wowlan_triggers(wpa_s->conf->wowlan_triggers, capa);
3629 ret = wpa_drv_wowlan(wpa_s, triggers);
3636 static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
3639 struct wpa_supplicant *iface = wpa_s->global->ifaces;
3640 struct wpa_radio *radio;
3642 while (rn && iface) {
3643 radio = iface->radio;
3644 if (radio && os_strcmp(rn, radio->name) == 0) {
3645 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
3647 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3651 iface = iface->next;
3654 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
3655 wpa_s->ifname, rn ? rn : "N/A");
3656 radio = os_zalloc(sizeof(*radio));
3661 os_strlcpy(radio->name, rn, sizeof(radio->name));
3662 dl_list_init(&radio->ifaces);
3663 dl_list_init(&radio->work);
3664 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3670 static void radio_work_free(struct wpa_radio_work *work)
3672 if (work->wpa_s->scan_work == work) {
3673 /* This should not really happen. */
3674 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as scan_work",
3675 work->type, work, work->started);
3676 work->wpa_s->scan_work = NULL;
3680 if (work->wpa_s->p2p_scan_work == work) {
3681 /* This should not really happen. */
3682 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as p2p_scan_work",
3683 work->type, work, work->started);
3684 work->wpa_s->p2p_scan_work = NULL;
3686 #endif /* CONFIG_P2P */
3688 dl_list_del(&work->list);
3693 static void radio_start_next_work(void *eloop_ctx, void *timeout_ctx)
3695 struct wpa_radio *radio = eloop_ctx;
3696 struct wpa_radio_work *work;
3697 struct os_reltime now, diff;
3698 struct wpa_supplicant *wpa_s;
3700 work = dl_list_first(&radio->work, struct wpa_radio_work, list);
3705 return; /* already started and still in progress */
3707 wpa_s = dl_list_first(&radio->ifaces, struct wpa_supplicant,
3709 if (wpa_s && wpa_s->radio->external_scan_running) {
3710 wpa_printf(MSG_DEBUG, "Delay radio work start until externally triggered scan completes");
3714 os_get_reltime(&now);
3715 os_reltime_sub(&now, &work->time, &diff);
3716 wpa_dbg(work->wpa_s, MSG_DEBUG, "Starting radio work '%s'@%p after %ld.%06ld second wait",
3717 work->type, work, diff.sec, diff.usec);
3725 * This function removes both started and pending radio works running on
3726 * the provided interface's radio.
3727 * Prior to the removal of the radio work, its callback (cb) is called with
3728 * deinit set to be 1. Each work's callback is responsible for clearing its
3729 * internal data and restoring to a correct state.
3730 * @wpa_s: wpa_supplicant data
3731 * @type: type of works to be removed
3732 * @remove_all: 1 to remove all the works on this radio, 0 to remove only
3733 * this interface's works.
3735 void radio_remove_works(struct wpa_supplicant *wpa_s,
3736 const char *type, int remove_all)
3738 struct wpa_radio_work *work, *tmp;
3739 struct wpa_radio *radio = wpa_s->radio;
3741 dl_list_for_each_safe(work, tmp, &radio->work, struct wpa_radio_work,
3743 if (type && os_strcmp(type, work->type) != 0)
3746 /* skip other ifaces' works */
3747 if (!remove_all && work->wpa_s != wpa_s)
3750 wpa_dbg(wpa_s, MSG_DEBUG, "Remove radio work '%s'@%p%s",
3751 work->type, work, work->started ? " (started)" : "");
3753 radio_work_free(work);
3756 /* in case we removed the started work */
3757 radio_work_check_next(wpa_s);
3761 static void radio_remove_interface(struct wpa_supplicant *wpa_s)
3763 struct wpa_radio *radio = wpa_s->radio;
3768 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
3769 wpa_s->ifname, radio->name);
3770 dl_list_del(&wpa_s->radio_list);
3771 radio_remove_works(wpa_s, NULL, 0);
3772 wpa_s->radio = NULL;
3773 if (!dl_list_empty(&radio->ifaces))
3774 return; /* Interfaces remain for this radio */
3776 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
3777 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3782 void radio_work_check_next(struct wpa_supplicant *wpa_s)
3784 struct wpa_radio *radio = wpa_s->radio;
3786 if (dl_list_empty(&radio->work))
3788 if (wpa_s->ext_work_in_progress) {
3789 wpa_printf(MSG_DEBUG,
3790 "External radio work in progress - delay start of pending item");
3793 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3794 eloop_register_timeout(0, 0, radio_start_next_work, radio, NULL);
3799 * radio_add_work - Add a radio work item
3800 * @wpa_s: Pointer to wpa_supplicant data
3801 * @freq: Frequency of the offchannel operation in MHz or 0
3802 * @type: Unique identifier for each type of work
3803 * @next: Force as the next work to be executed
3804 * @cb: Callback function for indicating when radio is available
3805 * @ctx: Context pointer for the work (work->ctx in cb())
3806 * Returns: 0 on success, -1 on failure
3808 * This function is used to request time for an operation that requires
3809 * exclusive radio control. Once the radio is available, the registered callback
3810 * function will be called. radio_work_done() must be called once the exclusive
3811 * radio operation has been completed, so that the radio is freed for other
3812 * operations. The special case of deinit=1 is used to free the context data
3813 * during interface removal. That does not allow the callback function to start
3814 * the radio operation, i.e., it must free any resources allocated for the radio
3817 * The @freq parameter can be used to indicate a single channel on which the
3818 * offchannel operation will occur. This may allow multiple radio work
3819 * operations to be performed in parallel if they apply for the same channel.
3820 * Setting this to 0 indicates that the work item may use multiple channels or
3821 * requires exclusive control of the radio.
3823 int radio_add_work(struct wpa_supplicant *wpa_s, unsigned int freq,
3824 const char *type, int next,
3825 void (*cb)(struct wpa_radio_work *work, int deinit),
3828 struct wpa_radio_work *work;
3831 work = os_zalloc(sizeof(*work));
3834 wpa_dbg(wpa_s, MSG_DEBUG, "Add radio work '%s'@%p", type, work);
3835 os_get_reltime(&work->time);
3838 work->wpa_s = wpa_s;
3842 was_empty = dl_list_empty(&wpa_s->radio->work);
3844 dl_list_add(&wpa_s->radio->work, &work->list);
3846 dl_list_add_tail(&wpa_s->radio->work, &work->list);
3848 wpa_dbg(wpa_s, MSG_DEBUG, "First radio work item in the queue - schedule start immediately");
3849 radio_work_check_next(wpa_s);
3857 * radio_work_done - Indicate that a radio work item has been completed
3858 * @work: Completed work
3860 * This function is called once the callback function registered with
3861 * radio_add_work() has completed its work.
3863 void radio_work_done(struct wpa_radio_work *work)
3865 struct wpa_supplicant *wpa_s = work->wpa_s;
3866 struct os_reltime now, diff;
3867 unsigned int started = work->started;
3869 os_get_reltime(&now);
3870 os_reltime_sub(&now, &work->time, &diff);
3871 wpa_dbg(wpa_s, MSG_DEBUG, "Radio work '%s'@%p %s in %ld.%06ld seconds",
3872 work->type, work, started ? "done" : "canceled",
3873 diff.sec, diff.usec);
3874 radio_work_free(work);
3876 radio_work_check_next(wpa_s);
3880 struct wpa_radio_work *
3881 radio_work_pending(struct wpa_supplicant *wpa_s, const char *type)
3883 struct wpa_radio_work *work;
3884 struct wpa_radio *radio = wpa_s->radio;
3886 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
3887 if (work->wpa_s == wpa_s && os_strcmp(work->type, type) == 0)
3895 static int wpas_init_driver(struct wpa_supplicant *wpa_s,
3896 struct wpa_interface *iface)
3898 const char *ifname, *driver, *rn;
3900 driver = iface->driver;
3902 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
3905 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
3906 if (wpa_s->drv_priv == NULL) {
3908 pos = driver ? os_strchr(driver, ',') : NULL;
3910 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
3911 "driver interface - try next driver wrapper");
3915 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
3919 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
3920 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
3921 "driver_param '%s'", wpa_s->conf->driver_param);
3925 ifname = wpa_drv_get_ifname(wpa_s);
3926 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
3927 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
3928 "interface name with '%s'", ifname);
3929 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
3932 rn = wpa_driver_get_radio_name(wpa_s);
3933 if (rn && rn[0] == '\0')
3936 wpa_s->radio = radio_add_interface(wpa_s, rn);
3937 if (wpa_s->radio == NULL)
3944 static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
3945 struct wpa_interface *iface)
3947 struct wpa_driver_capa capa;
3950 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
3951 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
3952 iface->confname ? iface->confname : "N/A",
3953 iface->driver ? iface->driver : "default",
3954 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
3955 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
3957 if (iface->confname) {
3958 #ifdef CONFIG_BACKEND_FILE
3959 wpa_s->confname = os_rel2abs_path(iface->confname);
3960 if (wpa_s->confname == NULL) {
3961 wpa_printf(MSG_ERROR, "Failed to get absolute path "
3962 "for configuration file '%s'.",
3966 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
3967 iface->confname, wpa_s->confname);
3968 #else /* CONFIG_BACKEND_FILE */
3969 wpa_s->confname = os_strdup(iface->confname);
3970 #endif /* CONFIG_BACKEND_FILE */
3971 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
3972 if (wpa_s->conf == NULL) {
3973 wpa_printf(MSG_ERROR, "Failed to read or parse "
3974 "configuration '%s'.", wpa_s->confname);
3977 wpa_s->confanother = os_rel2abs_path(iface->confanother);
3978 wpa_config_read(wpa_s->confanother, wpa_s->conf);
3981 * Override ctrl_interface and driver_param if set on command
3984 if (iface->ctrl_interface) {
3985 os_free(wpa_s->conf->ctrl_interface);
3986 wpa_s->conf->ctrl_interface =
3987 os_strdup(iface->ctrl_interface);
3990 if (iface->driver_param) {
3991 os_free(wpa_s->conf->driver_param);
3992 wpa_s->conf->driver_param =
3993 os_strdup(iface->driver_param);
3996 if (iface->p2p_mgmt && !iface->ctrl_interface) {
3997 os_free(wpa_s->conf->ctrl_interface);
3998 wpa_s->conf->ctrl_interface = NULL;
4001 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
4002 iface->driver_param);
4004 if (wpa_s->conf == NULL) {
4005 wpa_printf(MSG_ERROR, "\nNo configuration found.");
4009 if (iface->ifname == NULL) {
4010 wpa_printf(MSG_ERROR, "\nInterface name is required.");
4013 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
4014 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
4018 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
4020 if (iface->bridge_ifname) {
4021 if (os_strlen(iface->bridge_ifname) >=
4022 sizeof(wpa_s->bridge_ifname)) {
4023 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
4024 "name '%s'.", iface->bridge_ifname);
4027 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
4028 sizeof(wpa_s->bridge_ifname));
4031 /* RSNA Supplicant Key Management - INITIALIZE */
4032 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
4033 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
4035 /* Initialize driver interface and register driver event handler before
4036 * L2 receive handler so that association events are processed before
4037 * EAPOL-Key packets if both become available for the same select()
4039 if (wpas_init_driver(wpa_s, iface) < 0)
4042 if (wpa_supplicant_init_wpa(wpa_s) < 0)
4045 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
4046 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
4048 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
4050 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
4051 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
4052 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
4053 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4054 "dot11RSNAConfigPMKLifetime");
4058 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
4059 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
4060 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
4061 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4062 "dot11RSNAConfigPMKReauthThreshold");
4066 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
4067 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
4068 wpa_s->conf->dot11RSNAConfigSATimeout)) {
4069 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4070 "dot11RSNAConfigSATimeout");
4074 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
4075 &wpa_s->hw.num_modes,
4077 if (wpa_s->hw.modes) {
4080 for (i = 0; i < wpa_s->hw.num_modes; i++) {
4081 if (wpa_s->hw.modes[i].vht_capab) {
4082 wpa_s->hw_capab = CAPAB_VHT;
4086 if (wpa_s->hw.modes[i].ht_capab &
4087 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET)
4088 wpa_s->hw_capab = CAPAB_HT40;
4089 else if (wpa_s->hw.modes[i].ht_capab &&
4090 wpa_s->hw_capab == CAPAB_NO_HT_VHT)
4091 wpa_s->hw_capab = CAPAB_HT;
4095 capa_res = wpa_drv_get_capa(wpa_s, &capa);
4096 if (capa_res == 0) {
4097 wpa_s->drv_capa_known = 1;
4098 wpa_s->drv_flags = capa.flags;
4099 wpa_s->drv_enc = capa.enc;
4100 wpa_s->drv_smps_modes = capa.smps_modes;
4101 wpa_s->drv_rrm_flags = capa.rrm_flags;
4102 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
4103 wpa_s->max_scan_ssids = capa.max_scan_ssids;
4104 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
4105 wpa_s->sched_scan_supported = capa.sched_scan_supported;
4106 wpa_s->max_match_sets = capa.max_match_sets;
4107 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
4108 wpa_s->max_stations = capa.max_stations;
4109 wpa_s->extended_capa = capa.extended_capa;
4110 wpa_s->extended_capa_mask = capa.extended_capa_mask;
4111 wpa_s->extended_capa_len = capa.extended_capa_len;
4112 wpa_s->num_multichan_concurrent =
4113 capa.num_multichan_concurrent;
4114 wpa_s->wmm_ac_supported = capa.wmm_ac_supported;
4116 if (capa.mac_addr_rand_scan_supported)
4117 wpa_s->mac_addr_rand_supported |= MAC_ADDR_RAND_SCAN;
4118 if (wpa_s->sched_scan_supported &&
4119 capa.mac_addr_rand_sched_scan_supported)
4120 wpa_s->mac_addr_rand_supported |=
4121 (MAC_ADDR_RAND_SCHED_SCAN | MAC_ADDR_RAND_PNO);
4123 if (wpa_s->max_remain_on_chan == 0)
4124 wpa_s->max_remain_on_chan = 1000;
4127 * Only take p2p_mgmt parameters when P2P Device is supported.
4128 * Doing it here as it determines whether l2_packet_init() will be done
4129 * during wpa_supplicant_driver_init().
4131 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
4132 wpa_s->p2p_mgmt = iface->p2p_mgmt;
4134 iface->p2p_mgmt = 1;
4136 if (wpa_s->num_multichan_concurrent == 0)
4137 wpa_s->num_multichan_concurrent = 1;
4139 if (wpa_supplicant_driver_init(wpa_s) < 0)
4143 if ((!iface->p2p_mgmt ||
4144 !(wpa_s->drv_flags &
4145 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
4146 wpa_tdls_init(wpa_s->wpa))
4148 #endif /* CONFIG_TDLS */
4150 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
4151 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
4152 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
4156 if (wpas_wps_init(wpa_s))
4159 if (wpa_supplicant_init_eapol(wpa_s) < 0)
4161 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
4163 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
4164 if (wpa_s->ctrl_iface == NULL) {
4165 wpa_printf(MSG_ERROR,
4166 "Failed to initialize control interface '%s'.\n"
4167 "You may have another wpa_supplicant process "
4168 "already running or the file was\n"
4169 "left by an unclean termination of wpa_supplicant "
4170 "in which case you will need\n"
4171 "to manually remove this file before starting "
4172 "wpa_supplicant again.\n",
4173 wpa_s->conf->ctrl_interface);
4177 wpa_s->gas = gas_query_init(wpa_s);
4178 if (wpa_s->gas == NULL) {
4179 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
4183 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
4184 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
4188 if (wpa_bss_init(wpa_s) < 0)
4192 * Set Wake-on-WLAN triggers, if configured.
4193 * Note: We don't restore/remove the triggers on shutdown (it doesn't
4194 * have effect anyway when the interface is down).
4196 if (capa_res == 0 && wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
4199 #ifdef CONFIG_EAP_PROXY
4202 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
4204 if (wpa_s->mnc_len > 0) {
4205 wpa_s->imsi[len] = '\0';
4206 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
4207 wpa_s->imsi, wpa_s->mnc_len);
4209 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
4212 #endif /* CONFIG_EAP_PROXY */
4214 if (pcsc_reader_init(wpa_s) < 0)
4217 if (wpas_init_ext_pw(wpa_s) < 0)
4220 wpas_rrm_reset(wpa_s);
4226 static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
4227 int notify, int terminate)
4229 struct wpa_global *global = wpa_s->global;
4230 struct wpa_supplicant *iface, *prev;
4232 if (wpa_s == wpa_s->parent)
4233 wpas_p2p_group_remove(wpa_s, "*");
4235 iface = global->ifaces;
4237 if (iface == wpa_s || iface->parent != wpa_s) {
4238 iface = iface->next;
4241 wpa_printf(MSG_DEBUG,
4242 "Remove remaining child interface %s from parent %s",
4243 iface->ifname, wpa_s->ifname);
4245 iface = iface->next;
4246 wpa_supplicant_remove_iface(global, prev, terminate);
4249 wpa_s->disconnected = 1;
4250 if (wpa_s->drv_priv) {
4251 wpa_supplicant_deauthenticate(wpa_s,
4252 WLAN_REASON_DEAUTH_LEAVING);
4254 wpa_drv_set_countermeasures(wpa_s, 0);
4255 wpa_clear_keys(wpa_s, NULL);
4258 wpa_supplicant_cleanup(wpa_s);
4259 wpas_p2p_deinit_iface(wpa_s);
4261 wpas_ctrl_radio_work_flush(wpa_s);
4262 radio_remove_interface(wpa_s);
4264 if (wpa_s->drv_priv)
4265 wpa_drv_deinit(wpa_s);
4268 wpas_notify_iface_removed(wpa_s);
4271 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
4273 if (wpa_s->ctrl_iface) {
4274 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
4275 wpa_s->ctrl_iface = NULL;
4280 wpa_supplicant_mesh_iface_deinit(wpa_s, wpa_s->ifmsh);
4281 wpa_s->ifmsh = NULL;
4283 #endif /* CONFIG_MESH */
4285 if (wpa_s->conf != NULL) {
4286 wpa_config_free(wpa_s->conf);
4295 * wpa_supplicant_add_iface - Add a new network interface
4296 * @global: Pointer to global data from wpa_supplicant_init()
4297 * @iface: Interface configuration options
4298 * @parent: Parent interface or %NULL to assign new interface as parent
4299 * Returns: Pointer to the created interface or %NULL on failure
4301 * This function is used to add new network interfaces for %wpa_supplicant.
4302 * This can be called before wpa_supplicant_run() to add interfaces before the
4303 * main event loop has been started. In addition, new interfaces can be added
4304 * dynamically while %wpa_supplicant is already running. This could happen,
4305 * e.g., when a hotplug network adapter is inserted.
4307 struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
4308 struct wpa_interface *iface,
4309 struct wpa_supplicant *parent)
4311 struct wpa_supplicant *wpa_s;
4312 struct wpa_interface t_iface;
4313 struct wpa_ssid *ssid;
4315 if (global == NULL || iface == NULL)
4318 wpa_s = wpa_supplicant_alloc(parent);
4322 wpa_s->global = global;
4325 if (global->params.override_driver) {
4326 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
4328 iface->driver, global->params.override_driver);
4329 t_iface.driver = global->params.override_driver;
4331 if (global->params.override_ctrl_interface) {
4332 wpa_printf(MSG_DEBUG, "Override interface parameter: "
4333 "ctrl_interface ('%s' -> '%s')",
4334 iface->ctrl_interface,
4335 global->params.override_ctrl_interface);
4336 t_iface.ctrl_interface =
4337 global->params.override_ctrl_interface;
4339 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
4340 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
4342 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
4346 if (iface->p2p_mgmt == 0) {
4347 /* Notify the control interfaces about new iface */
4348 if (wpas_notify_iface_added(wpa_s)) {
4349 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
4353 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
4354 wpas_notify_network_added(wpa_s, ssid);
4357 wpa_s->next = global->ifaces;
4358 global->ifaces = wpa_s;
4360 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
4361 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
4364 if (wpa_s->global->p2p == NULL &&
4365 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) &&
4366 wpas_p2p_add_p2pdev_interface(wpa_s, iface->conf_p2p_dev) < 0) {
4367 wpa_printf(MSG_INFO,
4368 "P2P: Failed to enable P2P Device interface");
4369 /* Try to continue without. P2P will be disabled. */
4371 #endif /* CONFIG_P2P */
4378 * wpa_supplicant_remove_iface - Remove a network interface
4379 * @global: Pointer to global data from wpa_supplicant_init()
4380 * @wpa_s: Pointer to the network interface to be removed
4381 * Returns: 0 if interface was removed, -1 if interface was not found
4383 * This function can be used to dynamically remove network interfaces from
4384 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
4385 * addition, this function is used to remove all remaining interfaces when
4386 * %wpa_supplicant is terminated.
4388 int wpa_supplicant_remove_iface(struct wpa_global *global,
4389 struct wpa_supplicant *wpa_s,
4392 struct wpa_supplicant *prev;
4394 unsigned int mesh_if_created = wpa_s->mesh_if_created;
4395 char *ifname = NULL;
4396 #endif /* CONFIG_MESH */
4398 /* Remove interface from the global list of interfaces */
4399 prev = global->ifaces;
4400 if (prev == wpa_s) {
4401 global->ifaces = wpa_s->next;
4403 while (prev && prev->next != wpa_s)
4407 prev->next = wpa_s->next;
4410 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
4413 if (mesh_if_created) {
4414 ifname = os_strdup(wpa_s->ifname);
4415 if (ifname == NULL) {
4416 wpa_dbg(wpa_s, MSG_ERROR,
4417 "mesh: Failed to malloc ifname");
4421 #endif /* CONFIG_MESH */
4423 if (global->p2p_group_formation == wpa_s)
4424 global->p2p_group_formation = NULL;
4425 if (global->p2p_invite_group == wpa_s)
4426 global->p2p_invite_group = NULL;
4427 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
4430 if (mesh_if_created) {
4431 wpa_drv_if_remove(global->ifaces, WPA_IF_MESH, ifname);
4434 #endif /* CONFIG_MESH */
4441 * wpa_supplicant_get_eap_mode - Get the current EAP mode
4442 * @wpa_s: Pointer to the network interface
4443 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
4445 const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
4447 const char *eapol_method;
4449 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
4450 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
4454 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
4455 if (eapol_method == NULL)
4456 return "UNKNOWN-EAP";
4458 return eapol_method;
4463 * wpa_supplicant_get_iface - Get a new network interface
4464 * @global: Pointer to global data from wpa_supplicant_init()
4465 * @ifname: Interface name
4466 * Returns: Pointer to the interface or %NULL if not found
4468 struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
4471 struct wpa_supplicant *wpa_s;
4473 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
4474 if (os_strcmp(wpa_s->ifname, ifname) == 0)
4481 #ifndef CONFIG_NO_WPA_MSG
4482 static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
4484 struct wpa_supplicant *wpa_s = ctx;
4487 return wpa_s->ifname;
4489 #endif /* CONFIG_NO_WPA_MSG */
4493 * wpa_supplicant_init - Initialize %wpa_supplicant
4494 * @params: Parameters for %wpa_supplicant
4495 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
4497 * This function is used to initialize %wpa_supplicant. After successful
4498 * initialization, the returned data pointer can be used to add and remove
4499 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
4501 struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
4503 struct wpa_global *global;
4509 #ifdef CONFIG_DRIVER_NDIS
4511 void driver_ndis_init_ops(void);
4512 driver_ndis_init_ops();
4514 #endif /* CONFIG_DRIVER_NDIS */
4516 #ifndef CONFIG_NO_WPA_MSG
4517 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
4518 #endif /* CONFIG_NO_WPA_MSG */
4520 if (params->wpa_debug_file_path)
4521 wpa_debug_open_file(params->wpa_debug_file_path);
4523 wpa_debug_setup_stdout();
4524 if (params->wpa_debug_syslog)
4525 wpa_debug_open_syslog();
4526 if (params->wpa_debug_tracing) {
4527 ret = wpa_debug_open_linux_tracing();
4529 wpa_printf(MSG_ERROR,
4530 "Failed to enable trace logging");
4535 ret = eap_register_methods();
4537 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
4539 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
4540 "the same EAP type.");
4544 global = os_zalloc(sizeof(*global));
4547 dl_list_init(&global->p2p_srv_bonjour);
4548 dl_list_init(&global->p2p_srv_upnp);
4549 global->params.daemonize = params->daemonize;
4550 global->params.wait_for_monitor = params->wait_for_monitor;
4551 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
4552 if (params->pid_file)
4553 global->params.pid_file = os_strdup(params->pid_file);
4554 if (params->ctrl_interface)
4555 global->params.ctrl_interface =
4556 os_strdup(params->ctrl_interface);
4557 if (params->ctrl_interface_group)
4558 global->params.ctrl_interface_group =
4559 os_strdup(params->ctrl_interface_group);
4560 if (params->override_driver)
4561 global->params.override_driver =
4562 os_strdup(params->override_driver);
4563 if (params->override_ctrl_interface)
4564 global->params.override_ctrl_interface =
4565 os_strdup(params->override_ctrl_interface);
4566 wpa_debug_level = global->params.wpa_debug_level =
4567 params->wpa_debug_level;
4568 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
4569 params->wpa_debug_show_keys;
4570 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
4571 params->wpa_debug_timestamp;
4573 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
4576 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
4577 wpa_supplicant_deinit(global);
4581 random_init(params->entropy_file);
4583 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
4584 if (global->ctrl_iface == NULL) {
4585 wpa_supplicant_deinit(global);
4589 if (wpas_notify_supplicant_initialized(global)) {
4590 wpa_supplicant_deinit(global);
4594 for (i = 0; wpa_drivers[i]; i++)
4595 global->drv_count++;
4596 if (global->drv_count == 0) {
4597 wpa_printf(MSG_ERROR, "No drivers enabled");
4598 wpa_supplicant_deinit(global);
4601 global->drv_priv = os_calloc(global->drv_count, sizeof(void *));
4602 if (global->drv_priv == NULL) {
4603 wpa_supplicant_deinit(global);
4607 #ifdef CONFIG_WIFI_DISPLAY
4608 if (wifi_display_init(global) < 0) {
4609 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
4610 wpa_supplicant_deinit(global);
4613 #endif /* CONFIG_WIFI_DISPLAY */
4620 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
4621 * @global: Pointer to global data from wpa_supplicant_init()
4622 * Returns: 0 after successful event loop run, -1 on failure
4624 * This function starts the main event loop and continues running as long as
4625 * there are any remaining events. In most cases, this function is running as
4626 * long as the %wpa_supplicant process in still in use.
4628 int wpa_supplicant_run(struct wpa_global *global)
4630 struct wpa_supplicant *wpa_s;
4632 if (global->params.daemonize &&
4633 wpa_supplicant_daemon(global->params.pid_file))
4636 if (global->params.wait_for_monitor) {
4637 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
4638 if (wpa_s->ctrl_iface)
4639 wpa_supplicant_ctrl_iface_wait(
4643 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
4644 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
4653 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
4654 * @global: Pointer to global data from wpa_supplicant_init()
4656 * This function is called to deinitialize %wpa_supplicant and to free all
4657 * allocated resources. Remaining network interfaces will also be removed.
4659 void wpa_supplicant_deinit(struct wpa_global *global)
4666 #ifdef CONFIG_WIFI_DISPLAY
4667 wifi_display_deinit(global);
4668 #endif /* CONFIG_WIFI_DISPLAY */
4670 while (global->ifaces)
4671 wpa_supplicant_remove_iface(global, global->ifaces, 1);
4673 if (global->ctrl_iface)
4674 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
4676 wpas_notify_supplicant_deinitialized(global);
4678 eap_peer_unregister_methods();
4680 eap_server_unregister_methods();
4681 #endif /* CONFIG_AP */
4683 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
4684 if (!global->drv_priv[i])
4686 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
4688 os_free(global->drv_priv);
4694 if (global->params.pid_file) {
4695 os_daemonize_terminate(global->params.pid_file);
4696 os_free(global->params.pid_file);
4698 os_free(global->params.ctrl_interface);
4699 os_free(global->params.ctrl_interface_group);
4700 os_free(global->params.override_driver);
4701 os_free(global->params.override_ctrl_interface);
4703 os_free(global->p2p_disallow_freq.range);
4704 os_free(global->p2p_go_avoid_freq.range);
4705 os_free(global->add_psk);
4708 wpa_debug_close_syslog();
4709 wpa_debug_close_file();
4710 wpa_debug_close_linux_tracing();
4714 void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
4716 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
4717 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
4719 country[0] = wpa_s->conf->country[0];
4720 country[1] = wpa_s->conf->country[1];
4722 if (wpa_drv_set_country(wpa_s, country) < 0) {
4723 wpa_printf(MSG_ERROR, "Failed to set country code "
4728 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
4729 wpas_init_ext_pw(wpa_s);
4732 wpas_wps_update_config(wpa_s);
4733 #endif /* CONFIG_WPS */
4734 wpas_p2p_update_config(wpa_s);
4735 wpa_s->conf->changed_parameters = 0;
4739 void add_freq(int *freqs, int *num_freqs, int freq)
4743 for (i = 0; i < *num_freqs; i++) {
4744 if (freqs[i] == freq)
4748 freqs[*num_freqs] = freq;
4753 static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
4755 struct wpa_bss *bss, *cbss;
4756 const int max_freqs = 10;
4760 freqs = os_calloc(max_freqs + 1, sizeof(int));
4764 cbss = wpa_s->current_bss;
4766 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
4769 if (bss->ssid_len == cbss->ssid_len &&
4770 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
4771 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
4772 add_freq(freqs, &num_freqs, bss->freq);
4773 if (num_freqs == max_freqs)
4778 if (num_freqs == 0) {
4787 void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
4793 wpas_connect_work_done(wpa_s);
4796 * Remove possible authentication timeout since the connection failed.
4798 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
4801 * There is no point in blacklisting the AP if this event is
4802 * generated based on local request to disconnect.
4804 if (wpa_s->own_disconnect_req) {
4805 wpa_s->own_disconnect_req = 0;
4806 wpa_dbg(wpa_s, MSG_DEBUG,
4807 "Ignore connection failure due to local request to disconnect");
4810 if (wpa_s->disconnected) {
4811 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
4812 "indication since interface has been put into "
4813 "disconnected state");
4818 * Add the failed BSSID into the blacklist and speed up next scan
4819 * attempt if there could be other APs that could accept association.
4820 * The current blacklist count indicates how many times we have tried
4821 * connecting to this AP and multiple attempts mean that other APs are
4822 * either not available or has already been tried, so that we can start
4823 * increasing the delay here to avoid constant scanning.
4825 count = wpa_blacklist_add(wpa_s, bssid);
4826 if (count == 1 && wpa_s->current_bss) {
4828 * This BSS was not in the blacklist before. If there is
4829 * another BSS available for the same ESS, we should try that
4830 * next. Otherwise, we may as well try this one once more
4831 * before allowing other, likely worse, ESSes to be considered.
4833 freqs = get_bss_freqs_in_ess(wpa_s);
4835 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
4836 "has been seen; try it next");
4837 wpa_blacklist_add(wpa_s, bssid);
4839 * On the next scan, go through only the known channels
4840 * used in this ESS based on previous scans to speed up
4841 * common load balancing use case.
4843 os_free(wpa_s->next_scan_freqs);
4844 wpa_s->next_scan_freqs = freqs;
4849 * Add previous failure count in case the temporary blacklist was
4850 * cleared due to no other BSSes being available.
4852 count += wpa_s->extra_blacklist_count;
4854 if (count > 3 && wpa_s->current_ssid) {
4855 wpa_printf(MSG_DEBUG, "Continuous association failures - "
4856 "consider temporary network disabling");
4857 wpas_auth_failed(wpa_s, "CONN_FAILED");
4878 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
4879 "ms", count, timeout);
4882 * TODO: if more than one possible AP is available in scan results,
4883 * could try the other ones before requesting a new scan.
4885 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
4886 1000 * (timeout % 1000));
4890 int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
4892 return wpa_s->conf->ap_scan == 2 ||
4893 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
4897 #if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
4898 int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
4899 struct wpa_ssid *ssid,
4903 #ifdef IEEE8021X_EAPOL
4904 struct eap_peer_config *eap = &ssid->eap;
4906 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
4907 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
4908 (const u8 *) value, os_strlen(value));
4910 switch (wpa_supplicant_ctrl_req_from_string(field)) {
4911 case WPA_CTRL_REQ_EAP_IDENTITY:
4912 os_free(eap->identity);
4913 eap->identity = (u8 *) os_strdup(value);
4914 eap->identity_len = os_strlen(value);
4915 eap->pending_req_identity = 0;
4916 if (ssid == wpa_s->current_ssid)
4917 wpa_s->reassociate = 1;
4919 case WPA_CTRL_REQ_EAP_PASSWORD:
4920 bin_clear_free(eap->password, eap->password_len);
4921 eap->password = (u8 *) os_strdup(value);
4922 eap->password_len = os_strlen(value);
4923 eap->pending_req_password = 0;
4924 if (ssid == wpa_s->current_ssid)
4925 wpa_s->reassociate = 1;
4927 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
4928 bin_clear_free(eap->new_password, eap->new_password_len);
4929 eap->new_password = (u8 *) os_strdup(value);
4930 eap->new_password_len = os_strlen(value);
4931 eap->pending_req_new_password = 0;
4932 if (ssid == wpa_s->current_ssid)
4933 wpa_s->reassociate = 1;
4935 case WPA_CTRL_REQ_EAP_PIN:
4936 str_clear_free(eap->pin);
4937 eap->pin = os_strdup(value);
4938 eap->pending_req_pin = 0;
4939 if (ssid == wpa_s->current_ssid)
4940 wpa_s->reassociate = 1;
4942 case WPA_CTRL_REQ_EAP_OTP:
4943 bin_clear_free(eap->otp, eap->otp_len);
4944 eap->otp = (u8 *) os_strdup(value);
4945 eap->otp_len = os_strlen(value);
4946 os_free(eap->pending_req_otp);
4947 eap->pending_req_otp = NULL;
4948 eap->pending_req_otp_len = 0;
4950 case WPA_CTRL_REQ_EAP_PASSPHRASE:
4951 str_clear_free(eap->private_key_passwd);
4952 eap->private_key_passwd = os_strdup(value);
4953 eap->pending_req_passphrase = 0;
4954 if (ssid == wpa_s->current_ssid)
4955 wpa_s->reassociate = 1;
4957 case WPA_CTRL_REQ_SIM:
4958 str_clear_free(eap->external_sim_resp);
4959 eap->external_sim_resp = os_strdup(value);
4962 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
4967 #else /* IEEE8021X_EAPOL */
4968 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
4970 #endif /* IEEE8021X_EAPOL */
4972 #endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
4975 int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
4978 unsigned int drv_enc;
4980 if (wpa_s->p2p_mgmt)
4981 return 1; /* no normal network profiles on p2p_mgmt interface */
4989 if (wpa_s->drv_capa_known)
4990 drv_enc = wpa_s->drv_enc;
4992 drv_enc = (unsigned int) -1;
4994 for (i = 0; i < NUM_WEP_KEYS; i++) {
4995 size_t len = ssid->wep_key_len[i];
4998 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
5000 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
5002 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
5004 return 1; /* invalid WEP key */
5007 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
5008 (!ssid->passphrase || ssid->ssid_len != 0) && !ssid->ext_psk)
5015 int wpas_get_ssid_pmf(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
5017 #ifdef CONFIG_IEEE80211W
5018 if (ssid == NULL || ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT) {
5019 if (wpa_s->conf->pmf == MGMT_FRAME_PROTECTION_OPTIONAL &&
5020 !(wpa_s->drv_enc & WPA_DRIVER_CAPA_ENC_BIP)) {
5022 * Driver does not support BIP -- ignore pmf=1 default
5023 * since the connection with PMF would fail and the
5024 * configuration does not require PMF to be enabled.
5026 return NO_MGMT_FRAME_PROTECTION;
5029 return wpa_s->conf->pmf;
5032 return ssid->ieee80211w;
5033 #else /* CONFIG_IEEE80211W */
5034 return NO_MGMT_FRAME_PROTECTION;
5035 #endif /* CONFIG_IEEE80211W */
5039 int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
5041 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
5043 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
5049 void wpas_auth_failed(struct wpa_supplicant *wpa_s, char *reason)
5051 struct wpa_ssid *ssid = wpa_s->current_ssid;
5053 struct os_reltime now;
5056 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
5061 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
5064 ssid->auth_failures++;
5067 if (ssid->p2p_group &&
5068 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
5070 * Skip the wait time since there is a short timeout on the
5071 * connection to a P2P group.
5075 #endif /* CONFIG_P2P */
5077 if (ssid->auth_failures > 50)
5079 else if (ssid->auth_failures > 10)
5081 else if (ssid->auth_failures > 5)
5083 else if (ssid->auth_failures > 3)
5085 else if (ssid->auth_failures > 2)
5087 else if (ssid->auth_failures > 1)
5092 if (ssid->auth_failures > 1 &&
5093 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt))
5094 dur += os_random() % (ssid->auth_failures * 10);
5096 os_get_reltime(&now);
5097 if (now.sec + dur <= ssid->disabled_until.sec)
5100 ssid->disabled_until.sec = now.sec + dur;
5102 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
5103 "id=%d ssid=\"%s\" auth_failures=%u duration=%d reason=%s",
5104 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
5105 ssid->auth_failures, dur, reason);
5109 void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
5110 struct wpa_ssid *ssid, int clear_failures)
5115 if (ssid->disabled_until.sec) {
5116 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
5117 "id=%d ssid=\"%s\"",
5118 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
5120 ssid->disabled_until.sec = 0;
5121 ssid->disabled_until.usec = 0;
5123 ssid->auth_failures = 0;
5127 int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
5131 if (wpa_s->disallow_aps_bssid == NULL)
5134 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
5135 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
5136 bssid, ETH_ALEN) == 0)
5144 int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
5149 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
5152 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
5153 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
5154 if (ssid_len == s->ssid_len &&
5155 os_memcmp(ssid, s->ssid, ssid_len) == 0)
5164 * wpas_request_connection - Request a new connection
5165 * @wpa_s: Pointer to the network interface
5167 * This function is used to request a new connection to be found. It will mark
5168 * the interface to allow reassociation and request a new scan to find a
5169 * suitable network to connect to.
5171 void wpas_request_connection(struct wpa_supplicant *wpa_s)
5173 wpa_s->normal_scans = 0;
5174 wpa_s->scan_req = NORMAL_SCAN_REQ;
5175 wpa_supplicant_reinit_autoscan(wpa_s);
5176 wpa_s->extra_blacklist_count = 0;
5177 wpa_s->disconnected = 0;
5178 wpa_s->reassociate = 1;
5180 if (wpa_supplicant_fast_associate(wpa_s) != 1)
5181 wpa_supplicant_req_scan(wpa_s, 0, 0);
5183 wpa_s->reattach = 0;
5187 void dump_freq_data(struct wpa_supplicant *wpa_s, const char *title,
5188 struct wpa_used_freq_data *freqs_data,
5193 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
5195 for (i = 0; i < len; i++) {
5196 struct wpa_used_freq_data *cur = &freqs_data[i];
5197 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d, flags=0x%X",
5198 i, cur->freq, cur->flags);
5204 * Find the operating frequencies of any of the virtual interfaces that
5205 * are using the same radio as the current interface, and in addition, get
5206 * information about the interface types that are using the frequency.
5208 int get_shared_radio_freqs_data(struct wpa_supplicant *wpa_s,
5209 struct wpa_used_freq_data *freqs_data,
5212 struct wpa_supplicant *ifs;
5215 unsigned int idx = 0, i;
5217 wpa_dbg(wpa_s, MSG_DEBUG,
5218 "Determining shared radio frequencies (max len %u)", len);
5219 os_memset(freqs_data, 0, sizeof(struct wpa_used_freq_data) * len);
5221 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
5226 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
5229 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
5230 ifs->current_ssid->mode == WPAS_MODE_P2P_GO)
5231 freq = ifs->current_ssid->frequency;
5232 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
5233 freq = ifs->assoc_freq;
5237 /* Hold only distinct freqs */
5238 for (i = 0; i < idx; i++)
5239 if (freqs_data[i].freq == freq)
5243 freqs_data[idx++].freq = freq;
5245 if (ifs->current_ssid->mode == WPAS_MODE_INFRA) {
5246 freqs_data[i].flags = ifs->current_ssid->p2p_group ?
5247 WPA_FREQ_USED_BY_P2P_CLIENT :
5248 WPA_FREQ_USED_BY_INFRA_STATION;
5252 dump_freq_data(wpa_s, "completed iteration", freqs_data, idx);
5258 * Find the operating frequencies of any of the virtual interfaces that
5259 * are using the same radio as the current interface.
5261 int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
5262 int *freq_array, unsigned int len)
5264 struct wpa_used_freq_data *freqs_data;
5267 os_memset(freq_array, 0, sizeof(int) * len);
5269 freqs_data = os_calloc(len, sizeof(struct wpa_used_freq_data));
5273 num = get_shared_radio_freqs_data(wpa_s, freqs_data, len);
5274 for (i = 0; i < num; i++)
5275 freq_array[i] = freqs_data[i].freq;
5277 os_free(freqs_data);
5283 static void wpas_rrm_neighbor_rep_timeout_handler(void *data, void *user_ctx)
5285 struct rrm_data *rrm = data;
5287 if (!rrm->notify_neighbor_rep) {
5288 wpa_printf(MSG_ERROR,
5289 "RRM: Unexpected neighbor report timeout");
5293 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report - NONE");
5294 rrm->notify_neighbor_rep(rrm->neighbor_rep_cb_ctx, NULL);
5296 rrm->notify_neighbor_rep = NULL;
5297 rrm->neighbor_rep_cb_ctx = NULL;
5302 * wpas_rrm_reset - Clear and reset all RRM data in wpa_supplicant
5303 * @wpa_s: Pointer to wpa_supplicant
5305 void wpas_rrm_reset(struct wpa_supplicant *wpa_s)
5307 wpa_s->rrm.rrm_used = 0;
5309 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5311 if (wpa_s->rrm.notify_neighbor_rep)
5312 wpas_rrm_neighbor_rep_timeout_handler(&wpa_s->rrm, NULL);
5313 wpa_s->rrm.next_neighbor_rep_token = 1;
5318 * wpas_rrm_process_neighbor_rep - Handle incoming neighbor report
5319 * @wpa_s: Pointer to wpa_supplicant
5320 * @report: Neighbor report buffer, prefixed by a 1-byte dialog token
5321 * @report_len: Length of neighbor report buffer
5323 void wpas_rrm_process_neighbor_rep(struct wpa_supplicant *wpa_s,
5324 const u8 *report, size_t report_len)
5326 struct wpabuf *neighbor_rep;
5328 wpa_hexdump(MSG_DEBUG, "RRM: New Neighbor Report", report, report_len);
5332 if (report[0] != wpa_s->rrm.next_neighbor_rep_token - 1) {
5333 wpa_printf(MSG_DEBUG,
5334 "RRM: Discarding neighbor report with token %d (expected %d)",
5335 report[0], wpa_s->rrm.next_neighbor_rep_token - 1);
5339 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5342 if (!wpa_s->rrm.notify_neighbor_rep) {
5343 wpa_printf(MSG_ERROR, "RRM: Unexpected neighbor report");
5347 /* skipping the first byte, which is only an id (dialog token) */
5348 neighbor_rep = wpabuf_alloc(report_len - 1);
5349 if (neighbor_rep == NULL)
5351 wpabuf_put_data(neighbor_rep, report + 1, report_len - 1);
5352 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report (token = %d)",
5354 wpa_s->rrm.notify_neighbor_rep(wpa_s->rrm.neighbor_rep_cb_ctx,
5356 wpa_s->rrm.notify_neighbor_rep = NULL;
5357 wpa_s->rrm.neighbor_rep_cb_ctx = NULL;
5361 #if defined(__CYGWIN__) || defined(CONFIG_NATIVE_WINDOWS)
5362 /* Workaround different, undefined for Windows, error codes used here */
5364 #define EOPNOTSUPP -1
5365 #define ECANCELED -1
5369 * wpas_rrm_send_neighbor_rep_request - Request a neighbor report from our AP
5370 * @wpa_s: Pointer to wpa_supplicant
5371 * @ssid: if not null, this is sent in the request. Otherwise, no SSID IE
5372 * is sent in the request.
5373 * @cb: Callback function to be called once the requested report arrives, or
5374 * timed out after RRM_NEIGHBOR_REPORT_TIMEOUT seconds.
5375 * In the former case, 'neighbor_rep' is a newly allocated wpabuf, and it's
5376 * the requester's responsibility to free it.
5377 * In the latter case NULL will be sent in 'neighbor_rep'.
5378 * @cb_ctx: Context value to send the callback function
5379 * Returns: 0 in case of success, negative error code otherwise
5381 * In case there is a previous request which has not been answered yet, the
5382 * new request fails. The caller may retry after RRM_NEIGHBOR_REPORT_TIMEOUT.
5383 * Request must contain a callback function.
5385 int wpas_rrm_send_neighbor_rep_request(struct wpa_supplicant *wpa_s,
5386 const struct wpa_ssid *ssid,
5387 void (*cb)(void *ctx,
5388 struct wpabuf *neighbor_rep),
5394 if (wpa_s->wpa_state != WPA_COMPLETED || wpa_s->current_ssid == NULL) {
5395 wpa_printf(MSG_DEBUG, "RRM: No connection, no RRM.");
5399 if (!wpa_s->rrm.rrm_used) {
5400 wpa_printf(MSG_DEBUG, "RRM: No RRM in current connection.");
5404 rrm_ie = wpa_bss_get_ie(wpa_s->current_bss,
5405 WLAN_EID_RRM_ENABLED_CAPABILITIES);
5406 if (!rrm_ie || !(wpa_s->current_bss->caps & IEEE80211_CAP_RRM) ||
5407 !(rrm_ie[2] & WLAN_RRM_CAPS_NEIGHBOR_REPORT)) {
5408 wpa_printf(MSG_DEBUG,
5409 "RRM: No network support for Neighbor Report.");
5414 wpa_printf(MSG_DEBUG,
5415 "RRM: Neighbor Report request must provide a callback.");
5419 /* Refuse if there's a live request */
5420 if (wpa_s->rrm.notify_neighbor_rep) {
5421 wpa_printf(MSG_DEBUG,
5422 "RRM: Currently handling previous Neighbor Report.");
5426 /* 3 = action category + action code + dialog token */
5427 buf = wpabuf_alloc(3 + (ssid ? 2 + ssid->ssid_len : 0));
5429 wpa_printf(MSG_DEBUG,
5430 "RRM: Failed to allocate Neighbor Report Request");
5434 wpa_printf(MSG_DEBUG, "RRM: Neighbor report request (for %s), token=%d",
5435 (ssid ? wpa_ssid_txt(ssid->ssid, ssid->ssid_len) : ""),
5436 wpa_s->rrm.next_neighbor_rep_token);
5438 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
5439 wpabuf_put_u8(buf, WLAN_RRM_NEIGHBOR_REPORT_REQUEST);
5440 wpabuf_put_u8(buf, wpa_s->rrm.next_neighbor_rep_token);
5442 wpabuf_put_u8(buf, WLAN_EID_SSID);
5443 wpabuf_put_u8(buf, ssid->ssid_len);
5444 wpabuf_put_data(buf, ssid->ssid, ssid->ssid_len);
5447 wpa_s->rrm.next_neighbor_rep_token++;
5449 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
5450 wpa_s->own_addr, wpa_s->bssid,
5451 wpabuf_head(buf), wpabuf_len(buf), 0) < 0) {
5452 wpa_printf(MSG_DEBUG,
5453 "RRM: Failed to send Neighbor Report Request");
5458 wpa_s->rrm.neighbor_rep_cb_ctx = cb_ctx;
5459 wpa_s->rrm.notify_neighbor_rep = cb;
5460 eloop_register_timeout(RRM_NEIGHBOR_REPORT_TIMEOUT, 0,
5461 wpas_rrm_neighbor_rep_timeout_handler,
5469 void wpas_rrm_handle_link_measurement_request(struct wpa_supplicant *wpa_s,
5471 const u8 *frame, size_t len,
5475 const struct rrm_link_measurement_request *req;
5476 struct rrm_link_measurement_report report;
5478 if (wpa_s->wpa_state != WPA_COMPLETED) {
5479 wpa_printf(MSG_INFO,
5480 "RRM: Ignoring link measurement request. Not associated");
5484 if (!wpa_s->rrm.rrm_used) {
5485 wpa_printf(MSG_INFO,
5486 "RRM: Ignoring link measurement request. Not RRM network");
5490 if (!(wpa_s->drv_rrm_flags & WPA_DRIVER_FLAGS_TX_POWER_INSERTION)) {
5491 wpa_printf(MSG_INFO,
5492 "RRM: Measurement report failed. TX power insertion not supported");
5496 req = (const struct rrm_link_measurement_request *) frame;
5497 if (len < sizeof(*req)) {
5498 wpa_printf(MSG_INFO,
5499 "RRM: Link measurement report failed. Request too short");
5503 os_memset(&report, 0, sizeof(report));
5504 report.tpc.eid = WLAN_EID_TPC_REPORT;
5506 report.rsni = 255; /* 255 indicates that RSNI is not available */
5507 report.dialog_token = req->dialog_token;
5510 * It's possible to estimate RCPI based on RSSI in dBm. This
5511 * calculation will not reflect the correct value for high rates,
5512 * but it's good enough for Action frames which are transmitted
5513 * with up to 24 Mbps rates.
5516 report.rcpi = 255; /* not available */
5517 else if (rssi < -110)
5522 report.rcpi = (rssi + 110) * 2;
5524 /* action_category + action_code */
5525 buf = wpabuf_alloc(2 + sizeof(report));
5527 wpa_printf(MSG_ERROR,
5528 "RRM: Link measurement report failed. Buffer allocation failed");
5532 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
5533 wpabuf_put_u8(buf, WLAN_RRM_LINK_MEASUREMENT_REPORT);
5534 wpabuf_put_data(buf, &report, sizeof(report));
5535 wpa_hexdump(MSG_DEBUG, "RRM: Link measurement report:",
5536 wpabuf_head(buf), wpabuf_len(buf));
5538 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, src,
5539 wpa_s->own_addr, wpa_s->bssid,
5540 wpabuf_head(buf), wpabuf_len(buf), 0)) {
5541 wpa_printf(MSG_ERROR,
5542 "RRM: Link measurement report failed. Send action failed");