2 * hostapd / UNIX domain socket -based control interface
3 * Copyright (c) 2004-2015, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
9 #include "utils/includes.h"
11 #ifndef CONFIG_NATIVE_WINDOWS
13 #ifdef CONFIG_TESTING_OPTIONS
14 #include <net/ethernet.h>
15 #include <netinet/ip.h>
16 #endif /* CONFIG_TESTING_OPTIONS */
22 #include "utils/common.h"
23 #include "utils/eloop.h"
24 #include "common/version.h"
25 #include "common/ieee802_11_defs.h"
26 #include "crypto/tls.h"
27 #include "drivers/driver.h"
28 #include "radius/radius_client.h"
29 #include "radius/radius_server.h"
30 #include "l2_packet/l2_packet.h"
31 #include "ap/hostapd.h"
32 #include "ap/ap_config.h"
33 #include "ap/ieee802_1x.h"
34 #include "ap/wpa_auth.h"
35 #include "ap/ieee802_11.h"
36 #include "ap/sta_info.h"
37 #include "ap/wps_hostapd.h"
38 #include "ap/ctrl_iface_ap.h"
39 #include "ap/ap_drv_ops.h"
41 #include "ap/wnm_ap.h"
42 #include "ap/wpa_auth.h"
43 #include "ap/beacon.h"
44 #include "wps/wps_defs.h"
46 #include "config_file.h"
47 #include "ctrl_iface.h"
51 struct wpa_ctrl_dst *next;
52 struct sockaddr_un addr;
59 static void hostapd_ctrl_iface_send(struct hostapd_data *hapd, int level,
60 const char *buf, size_t len);
63 static int hostapd_ctrl_iface_attach(struct hostapd_data *hapd,
64 struct sockaddr_un *from,
67 struct wpa_ctrl_dst *dst;
69 dst = os_zalloc(sizeof(*dst));
72 os_memcpy(&dst->addr, from, sizeof(struct sockaddr_un));
73 dst->addrlen = fromlen;
74 dst->debug_level = MSG_INFO;
75 dst->next = hapd->ctrl_dst;
77 wpa_hexdump(MSG_DEBUG, "CTRL_IFACE monitor attached",
78 (u8 *) from->sun_path,
79 fromlen - offsetof(struct sockaddr_un, sun_path));
84 static int hostapd_ctrl_iface_detach(struct hostapd_data *hapd,
85 struct sockaddr_un *from,
88 struct wpa_ctrl_dst *dst, *prev = NULL;
92 if (fromlen == dst->addrlen &&
93 os_memcmp(from->sun_path, dst->addr.sun_path,
94 fromlen - offsetof(struct sockaddr_un, sun_path))
96 wpa_hexdump(MSG_DEBUG, "CTRL_IFACE monitor detached",
97 (u8 *) from->sun_path,
99 offsetof(struct sockaddr_un, sun_path));
101 hapd->ctrl_dst = dst->next;
103 prev->next = dst->next;
114 static int hostapd_ctrl_iface_level(struct hostapd_data *hapd,
115 struct sockaddr_un *from,
119 struct wpa_ctrl_dst *dst;
121 wpa_printf(MSG_DEBUG, "CTRL_IFACE LEVEL %s", level);
123 dst = hapd->ctrl_dst;
125 if (fromlen == dst->addrlen &&
126 os_memcmp(from->sun_path, dst->addr.sun_path,
127 fromlen - offsetof(struct sockaddr_un, sun_path))
129 wpa_hexdump(MSG_DEBUG, "CTRL_IFACE changed monitor "
130 "level", (u8 *) from->sun_path, fromlen -
131 offsetof(struct sockaddr_un, sun_path));
132 dst->debug_level = atoi(level);
142 static int hostapd_ctrl_iface_new_sta(struct hostapd_data *hapd,
146 struct sta_info *sta;
148 wpa_printf(MSG_DEBUG, "CTRL_IFACE NEW_STA %s", txtaddr);
150 if (hwaddr_aton(txtaddr, addr))
153 sta = ap_get_sta(hapd, addr);
157 wpa_printf(MSG_DEBUG, "Add new STA " MACSTR " based on ctrl_iface "
158 "notification", MAC2STR(addr));
159 sta = ap_sta_add(hapd, addr);
163 hostapd_new_assoc_sta(hapd, sta, 0);
168 #ifdef CONFIG_IEEE80211W
170 static int hostapd_ctrl_iface_sa_query(struct hostapd_data *hapd,
174 u8 trans_id[WLAN_SA_QUERY_TR_ID_LEN];
176 wpa_printf(MSG_DEBUG, "CTRL_IFACE SA_QUERY %s", txtaddr);
178 if (hwaddr_aton(txtaddr, addr) ||
179 os_get_random(trans_id, WLAN_SA_QUERY_TR_ID_LEN) < 0)
182 ieee802_11_send_sa_query_req(hapd, addr, trans_id);
186 #endif /* NEED_AP_MLME */
187 #endif /* CONFIG_IEEE80211W */
191 static int hostapd_ctrl_iface_wps_pin(struct hostapd_data *hapd, char *txt)
193 char *pin = os_strchr(txt, ' ');
196 u8 addr_buf[ETH_ALEN], *addr = NULL;
203 timeout_txt = os_strchr(pin, ' ');
205 *timeout_txt++ = '\0';
206 timeout = atoi(timeout_txt);
207 pos = os_strchr(timeout_txt, ' ');
210 if (hwaddr_aton(pos, addr_buf) == 0)
216 return hostapd_wps_add_pin(hapd, addr, txt, pin, timeout);
220 static int hostapd_ctrl_iface_wps_check_pin(
221 struct hostapd_data *hapd, char *cmd, char *buf, size_t buflen)
228 wpa_hexdump_ascii_key(MSG_DEBUG, "WPS_CHECK_PIN",
229 (u8 *) cmd, os_strlen(cmd));
230 for (pos = cmd, len = 0; *pos != '\0'; pos++) {
231 if (*pos < '0' || *pos > '9')
235 wpa_printf(MSG_DEBUG, "WPS: Too long PIN");
239 if (len != 4 && len != 8) {
240 wpa_printf(MSG_DEBUG, "WPS: Invalid PIN length %d", (int) len);
246 unsigned int pin_val;
248 if (!wps_pin_valid(pin_val)) {
249 wpa_printf(MSG_DEBUG, "WPS: Invalid checksum digit");
250 ret = os_snprintf(buf, buflen, "FAIL-CHECKSUM\n");
251 if (os_snprintf_error(buflen, ret))
257 ret = os_snprintf(buf, buflen, "%s", pin);
258 if (os_snprintf_error(buflen, ret))
265 #ifdef CONFIG_WPS_NFC
266 static int hostapd_ctrl_iface_wps_nfc_tag_read(struct hostapd_data *hapd,
273 len = os_strlen(pos);
278 buf = wpabuf_alloc(len);
281 if (hexstr2bin(pos, wpabuf_put(buf, len), len) < 0) {
286 ret = hostapd_wps_nfc_tag_read(hapd, buf);
293 static int hostapd_ctrl_iface_wps_nfc_config_token(struct hostapd_data *hapd,
294 char *cmd, char *reply,
301 if (os_strcmp(cmd, "WPS") == 0)
303 else if (os_strcmp(cmd, "NDEF") == 0)
308 buf = hostapd_wps_nfc_config_token(hapd, ndef);
312 res = wpa_snprintf_hex_uppercase(reply, max_len, wpabuf_head(buf),
323 static int hostapd_ctrl_iface_wps_nfc_token_gen(struct hostapd_data *hapd,
324 char *reply, size_t max_len,
330 buf = hostapd_wps_nfc_token_gen(hapd, ndef);
334 res = wpa_snprintf_hex_uppercase(reply, max_len, wpabuf_head(buf),
345 static int hostapd_ctrl_iface_wps_nfc_token(struct hostapd_data *hapd,
346 char *cmd, char *reply,
349 if (os_strcmp(cmd, "WPS") == 0)
350 return hostapd_ctrl_iface_wps_nfc_token_gen(hapd, reply,
353 if (os_strcmp(cmd, "NDEF") == 0)
354 return hostapd_ctrl_iface_wps_nfc_token_gen(hapd, reply,
357 if (os_strcmp(cmd, "enable") == 0)
358 return hostapd_wps_nfc_token_enable(hapd);
360 if (os_strcmp(cmd, "disable") == 0) {
361 hostapd_wps_nfc_token_disable(hapd);
369 static int hostapd_ctrl_iface_nfc_get_handover_sel(struct hostapd_data *hapd,
370 char *cmd, char *reply,
378 pos = os_strchr(cmd, ' ');
383 if (os_strcmp(cmd, "WPS") == 0)
385 else if (os_strcmp(cmd, "NDEF") == 0)
390 if (os_strcmp(pos, "WPS-CR") == 0)
391 buf = hostapd_wps_nfc_hs_cr(hapd, ndef);
397 res = wpa_snprintf_hex_uppercase(reply, max_len, wpabuf_head(buf),
408 static int hostapd_ctrl_iface_nfc_report_handover(struct hostapd_data *hapd,
412 struct wpabuf *req, *sel;
414 char *pos, *role, *type, *pos2;
417 pos = os_strchr(role, ' ');
423 pos = os_strchr(type, ' ');
428 pos2 = os_strchr(pos, ' ');
433 len = os_strlen(pos);
438 req = wpabuf_alloc(len);
441 if (hexstr2bin(pos, wpabuf_put(req, len), len) < 0) {
446 len = os_strlen(pos2);
453 sel = wpabuf_alloc(len);
458 if (hexstr2bin(pos2, wpabuf_put(sel, len), len) < 0) {
464 if (os_strcmp(role, "RESP") == 0 && os_strcmp(type, "WPS") == 0) {
465 ret = hostapd_wps_nfc_report_handover(hapd, req, sel);
467 wpa_printf(MSG_DEBUG, "NFC: Unsupported connection handover "
468 "reported: role=%s type=%s", role, type);
477 #endif /* CONFIG_WPS_NFC */
480 static int hostapd_ctrl_iface_wps_ap_pin(struct hostapd_data *hapd, char *txt,
481 char *buf, size_t buflen)
487 pos = os_strchr(txt, ' ');
491 if (os_strcmp(txt, "disable") == 0) {
492 hostapd_wps_ap_pin_disable(hapd);
493 return os_snprintf(buf, buflen, "OK\n");
496 if (os_strcmp(txt, "random") == 0) {
499 pin_txt = hostapd_wps_ap_pin_random(hapd, timeout);
502 return os_snprintf(buf, buflen, "%s", pin_txt);
505 if (os_strcmp(txt, "get") == 0) {
506 pin_txt = hostapd_wps_ap_pin_get(hapd);
509 return os_snprintf(buf, buflen, "%s", pin_txt);
512 if (os_strcmp(txt, "set") == 0) {
517 pos = os_strchr(pos, ' ');
522 if (os_strlen(pin) > buflen)
524 if (hostapd_wps_ap_pin_set(hapd, pin, timeout) < 0)
526 return os_snprintf(buf, buflen, "%s", pin);
533 static int hostapd_ctrl_iface_wps_config(struct hostapd_data *hapd, char *txt)
536 char *ssid, *auth, *encr = NULL, *key = NULL;
539 pos = os_strchr(txt, ' ');
545 pos = os_strchr(pos, ' ');
549 pos = os_strchr(pos, ' ');
556 return hostapd_wps_config_ap(hapd, ssid, auth, encr, key);
560 static const char * pbc_status_str(enum pbc_status status)
563 case WPS_PBC_STATUS_DISABLE:
565 case WPS_PBC_STATUS_ACTIVE:
567 case WPS_PBC_STATUS_TIMEOUT:
569 case WPS_PBC_STATUS_OVERLAP:
577 static int hostapd_ctrl_iface_wps_get_status(struct hostapd_data *hapd,
578 char *buf, size_t buflen)
586 ret = os_snprintf(pos, end - pos, "PBC Status: %s\n",
587 pbc_status_str(hapd->wps_stats.pbc_status));
589 if (os_snprintf_error(end - pos, ret))
593 ret = os_snprintf(pos, end - pos, "Last WPS result: %s\n",
594 (hapd->wps_stats.status == WPS_STATUS_SUCCESS ?
596 (hapd->wps_stats.status == WPS_STATUS_FAILURE ?
597 "Failed" : "None")));
599 if (os_snprintf_error(end - pos, ret))
603 /* If status == Failure - Add possible Reasons */
604 if(hapd->wps_stats.status == WPS_STATUS_FAILURE &&
605 hapd->wps_stats.failure_reason > 0) {
606 ret = os_snprintf(pos, end - pos,
607 "Failure Reason: %s\n",
608 wps_ei_str(hapd->wps_stats.failure_reason));
610 if (os_snprintf_error(end - pos, ret))
615 if (hapd->wps_stats.status) {
616 ret = os_snprintf(pos, end - pos, "Peer Address: " MACSTR "\n",
617 MAC2STR(hapd->wps_stats.peer_addr));
619 if (os_snprintf_error(end - pos, ret))
627 #endif /* CONFIG_WPS */
631 static int hostapd_ctrl_iface_hs20_wnm_notif(struct hostapd_data *hapd,
637 if (hwaddr_aton(cmd, addr))
650 return hs20_send_wnm_notification(hapd, addr, 1, url);
654 static int hostapd_ctrl_iface_hs20_deauth_req(struct hostapd_data *hapd,
658 int code, reauth_delay, ret;
663 /* <STA MAC Addr> <Code(0/1)> <Re-auth-Delay(sec)> [URL] */
664 if (hwaddr_aton(cmd, addr))
667 pos = os_strchr(cmd, ' ');
673 pos = os_strchr(pos, ' ');
677 reauth_delay = atoi(pos);
680 pos = os_strchr(pos, ' ');
683 url_len = os_strlen(pos);
686 req = wpabuf_alloc(4 + url_len);
689 wpabuf_put_u8(req, code);
690 wpabuf_put_le16(req, reauth_delay);
691 wpabuf_put_u8(req, url_len);
693 wpabuf_put_data(req, pos, url_len);
695 wpa_printf(MSG_DEBUG, "HS 2.0: Send WNM-Notification to " MACSTR
696 " to indicate imminent deauthentication (code=%d "
697 "reauth_delay=%d)", MAC2STR(addr), code, reauth_delay);
698 ret = hs20_send_wnm_notification_deauth_req(hapd, addr, req);
703 #endif /* CONFIG_HS20 */
706 #ifdef CONFIG_INTERWORKING
708 static int hostapd_ctrl_iface_set_qos_map_set(struct hostapd_data *hapd,
711 u8 qos_map_set[16 + 2 * 21], count = 0;
712 const char *pos = cmd;
716 if (count == sizeof(qos_map_set)) {
717 wpa_printf(MSG_ERROR, "Too many qos_map_set parameters");
722 if (val < 0 || val > 255) {
723 wpa_printf(MSG_INFO, "Invalid QoS Map Set");
727 qos_map_set[count++] = val;
728 pos = os_strchr(pos, ',');
734 if (count < 16 || count & 1) {
735 wpa_printf(MSG_INFO, "Invalid QoS Map Set");
739 ret = hostapd_drv_set_qos_map(hapd, qos_map_set, count);
741 wpa_printf(MSG_INFO, "Failed to set QoS Map Set");
745 os_memcpy(hapd->conf->qos_map_set, qos_map_set, count);
746 hapd->conf->qos_map_set_len = count;
752 static int hostapd_ctrl_iface_send_qos_map_conf(struct hostapd_data *hapd,
756 struct sta_info *sta;
758 u8 *qos_map_set = hapd->conf->qos_map_set;
759 u8 qos_map_set_len = hapd->conf->qos_map_set_len;
762 if (!qos_map_set_len) {
763 wpa_printf(MSG_INFO, "QoS Map Set is not set");
767 if (hwaddr_aton(cmd, addr))
770 sta = ap_get_sta(hapd, addr);
772 wpa_printf(MSG_DEBUG, "Station " MACSTR " not found "
773 "for QoS Map Configuration message",
778 if (!sta->qos_map_enabled) {
779 wpa_printf(MSG_DEBUG, "Station " MACSTR " did not indicate "
780 "support for QoS Map", MAC2STR(addr));
784 buf = wpabuf_alloc(2 + 2 + qos_map_set_len);
788 wpabuf_put_u8(buf, WLAN_ACTION_QOS);
789 wpabuf_put_u8(buf, QOS_QOS_MAP_CONFIG);
791 /* QoS Map Set Element */
792 wpabuf_put_u8(buf, WLAN_EID_QOS_MAP_SET);
793 wpabuf_put_u8(buf, qos_map_set_len);
794 wpabuf_put_data(buf, qos_map_set, qos_map_set_len);
796 ret = hostapd_drv_send_action(hapd, hapd->iface->freq, 0, addr,
797 wpabuf_head(buf), wpabuf_len(buf));
803 #endif /* CONFIG_INTERWORKING */
808 static int hostapd_ctrl_iface_disassoc_imminent(struct hostapd_data *hapd,
813 struct sta_info *sta;
815 if (hwaddr_aton(cmd, addr))
819 disassoc_timer = atoi(cmd + 17);
821 sta = ap_get_sta(hapd, addr);
823 wpa_printf(MSG_DEBUG, "Station " MACSTR
824 " not found for disassociation imminent message",
829 return wnm_send_disassoc_imminent(hapd, sta, disassoc_timer);
833 static int hostapd_ctrl_iface_ess_disassoc(struct hostapd_data *hapd,
837 const char *url, *timerstr;
839 struct sta_info *sta;
841 if (hwaddr_aton(cmd, addr))
844 sta = ap_get_sta(hapd, addr);
846 wpa_printf(MSG_DEBUG, "Station " MACSTR
847 " not found for ESS disassociation imminent message",
853 if (*timerstr != ' ')
856 disassoc_timer = atoi(timerstr);
857 if (disassoc_timer < 0 || disassoc_timer > 65535)
860 url = os_strchr(timerstr, ' ');
865 return wnm_send_ess_disassoc_imminent(hapd, sta, url, disassoc_timer);
869 static int hostapd_ctrl_iface_bss_tm_req(struct hostapd_data *hapd,
873 const char *pos, *end;
874 int disassoc_timer = 0;
875 struct sta_info *sta;
876 u8 req_mode = 0, valid_int = 0x01;
881 u8 *nei_pos = nei_rep;
883 if (hwaddr_aton(cmd, addr)) {
884 wpa_printf(MSG_DEBUG, "Invalid STA MAC address");
888 sta = ap_get_sta(hapd, addr);
890 wpa_printf(MSG_DEBUG, "Station " MACSTR
891 " not found for BSS TM Request message",
896 pos = os_strstr(cmd, " disassoc_timer=");
899 disassoc_timer = atoi(pos);
900 if (disassoc_timer < 0 || disassoc_timer > 65535) {
901 wpa_printf(MSG_DEBUG, "Invalid disassoc_timer");
906 pos = os_strstr(cmd, " valid_int=");
909 valid_int = atoi(pos);
912 pos = os_strstr(cmd, " bss_term=");
915 req_mode |= WNM_BSS_TM_REQ_BSS_TERMINATION_INCLUDED;
916 /* TODO: TSF configurable/learnable */
917 bss_term_dur[0] = 4; /* Subelement ID */
918 bss_term_dur[1] = 10; /* Length */
919 os_memset(bss_term_dur, 2, 8);
920 end = os_strchr(pos, ',');
922 wpa_printf(MSG_DEBUG, "Invalid bss_term data");
926 WPA_PUT_LE16(&bss_term_dur[10], atoi(end));
931 * BSS Transition Candidate List Entries - Neighbor Report elements
932 * neighbor=<BSSID>,<BSSID Information>,<Operating Class>,
933 * <Channel Number>,<PHY Type>[,<hexdump of Optional Subelements>]
941 pos = os_strstr(pos, " neighbor=");
944 if (nei_pos + 15 > nei_rep + sizeof(nei_rep)) {
945 wpa_printf(MSG_DEBUG,
946 "Not enough room for additional neighbor");
952 *nei_pos++ = WLAN_EID_NEIGHBOR_REPORT;
953 nei_pos++; /* length to be filled in */
955 if (hwaddr_aton(pos, nei_pos)) {
956 wpa_printf(MSG_DEBUG, "Invalid BSSID");
962 wpa_printf(MSG_DEBUG, "Missing BSSID Information");
967 val = strtol(pos, &endptr, 0);
968 WPA_PUT_LE32(nei_pos, val);
970 if (*endptr != ',') {
971 wpa_printf(MSG_DEBUG, "Missing Operating Class");
976 *nei_pos++ = atoi(pos); /* Operating Class */
977 pos = os_strchr(pos, ',');
979 wpa_printf(MSG_DEBUG, "Missing Channel Number");
984 *nei_pos++ = atoi(pos); /* Channel Number */
985 pos = os_strchr(pos, ',');
987 wpa_printf(MSG_DEBUG, "Missing PHY Type");
992 *nei_pos++ = atoi(pos); /* PHY Type */
993 end = os_strchr(pos, ' ');
994 tmp = os_strchr(pos, ',');
995 if (tmp && (!end || tmp < end)) {
996 /* Optional Subelements (hexdump) */
1000 end = os_strchr(pos, ' ');
1004 len = os_strlen(pos);
1005 if (nei_pos + len / 2 > nei_rep + sizeof(nei_rep)) {
1006 wpa_printf(MSG_DEBUG,
1007 "Not enough room for neighbor subelements");
1011 hexstr2bin(pos, nei_pos, len / 2) < 0) {
1012 wpa_printf(MSG_DEBUG,
1013 "Invalid neighbor subelement info");
1020 nei_start[1] = nei_pos - nei_start - 2;
1023 pos = os_strstr(cmd, " url=");
1027 end = os_strchr(pos, ' ');
1031 len = os_strlen(pos);
1032 url = os_malloc(len + 1);
1035 os_memcpy(url, pos, len);
1037 req_mode |= WNM_BSS_TM_REQ_ESS_DISASSOC_IMMINENT;
1040 if (os_strstr(cmd, " pref=1"))
1041 req_mode |= WNM_BSS_TM_REQ_PREF_CAND_LIST_INCLUDED;
1042 if (os_strstr(cmd, " abridged=1"))
1043 req_mode |= WNM_BSS_TM_REQ_ABRIDGED;
1044 if (os_strstr(cmd, " disassoc_imminent=1"))
1045 req_mode |= WNM_BSS_TM_REQ_DISASSOC_IMMINENT;
1047 ret = wnm_send_bss_tm_req(hapd, sta, req_mode, disassoc_timer,
1048 valid_int, bss_term_dur, url,
1049 nei_pos > nei_rep ? nei_rep : NULL,
1055 #endif /* CONFIG_WNM */
1058 static int hostapd_ctrl_iface_get_config(struct hostapd_data *hapd,
1059 char *buf, size_t buflen)
1067 ret = os_snprintf(pos, end - pos, "bssid=" MACSTR "\n"
1069 MAC2STR(hapd->own_addr),
1070 wpa_ssid_txt(hapd->conf->ssid.ssid,
1071 hapd->conf->ssid.ssid_len));
1072 if (os_snprintf_error(end - pos, ret))
1077 ret = os_snprintf(pos, end - pos, "wps_state=%s\n",
1078 hapd->conf->wps_state == 0 ? "disabled" :
1079 (hapd->conf->wps_state == 1 ? "not configured" :
1081 if (os_snprintf_error(end - pos, ret))
1085 if (hapd->conf->wps_state && hapd->conf->wpa &&
1086 hapd->conf->ssid.wpa_passphrase) {
1087 ret = os_snprintf(pos, end - pos, "passphrase=%s\n",
1088 hapd->conf->ssid.wpa_passphrase);
1089 if (os_snprintf_error(end - pos, ret))
1094 if (hapd->conf->wps_state && hapd->conf->wpa &&
1095 hapd->conf->ssid.wpa_psk &&
1096 hapd->conf->ssid.wpa_psk->group) {
1097 char hex[PMK_LEN * 2 + 1];
1098 wpa_snprintf_hex(hex, sizeof(hex),
1099 hapd->conf->ssid.wpa_psk->psk, PMK_LEN);
1100 ret = os_snprintf(pos, end - pos, "psk=%s\n", hex);
1101 if (os_snprintf_error(end - pos, ret))
1105 #endif /* CONFIG_WPS */
1107 if (hapd->conf->wpa && hapd->conf->wpa_key_mgmt) {
1108 ret = os_snprintf(pos, end - pos, "key_mgmt=");
1109 if (os_snprintf_error(end - pos, ret))
1113 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_PSK) {
1114 ret = os_snprintf(pos, end - pos, "WPA-PSK ");
1115 if (os_snprintf_error(end - pos, ret))
1119 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_IEEE8021X) {
1120 ret = os_snprintf(pos, end - pos, "WPA-EAP ");
1121 if (os_snprintf_error(end - pos, ret))
1125 #ifdef CONFIG_IEEE80211R
1126 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_FT_PSK) {
1127 ret = os_snprintf(pos, end - pos, "FT-PSK ");
1128 if (os_snprintf_error(end - pos, ret))
1132 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_FT_IEEE8021X) {
1133 ret = os_snprintf(pos, end - pos, "FT-EAP ");
1134 if (os_snprintf_error(end - pos, ret))
1139 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_FT_SAE) {
1140 ret = os_snprintf(pos, end - pos, "FT-SAE ");
1141 if (os_snprintf_error(end - pos, ret))
1145 #endif /* CONFIG_SAE */
1146 #endif /* CONFIG_IEEE80211R */
1147 #ifdef CONFIG_IEEE80211W
1148 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_PSK_SHA256) {
1149 ret = os_snprintf(pos, end - pos, "WPA-PSK-SHA256 ");
1150 if (os_snprintf_error(end - pos, ret))
1154 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1155 ret = os_snprintf(pos, end - pos, "WPA-EAP-SHA256 ");
1156 if (os_snprintf_error(end - pos, ret))
1160 #endif /* CONFIG_IEEE80211W */
1162 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_SAE) {
1163 ret = os_snprintf(pos, end - pos, "SAE ");
1164 if (os_snprintf_error(end - pos, ret))
1168 #endif /* CONFIG_SAE */
1169 if (hapd->conf->wpa_key_mgmt & WPA_KEY_MGMT_IEEE8021X_SUITE_B) {
1170 ret = os_snprintf(pos, end - pos, "WPA-EAP-SUITE-B ");
1171 if (os_snprintf_error(end - pos, ret))
1175 if (hapd->conf->wpa_key_mgmt &
1176 WPA_KEY_MGMT_IEEE8021X_SUITE_B_192) {
1177 ret = os_snprintf(pos, end - pos,
1178 "WPA-EAP-SUITE-B-192 ");
1179 if (os_snprintf_error(end - pos, ret))
1184 ret = os_snprintf(pos, end - pos, "\n");
1185 if (os_snprintf_error(end - pos, ret))
1190 if (hapd->conf->wpa) {
1191 ret = os_snprintf(pos, end - pos, "group_cipher=%s\n",
1192 wpa_cipher_txt(hapd->conf->wpa_group));
1193 if (os_snprintf_error(end - pos, ret))
1198 if ((hapd->conf->wpa & WPA_PROTO_RSN) && hapd->conf->rsn_pairwise) {
1199 ret = os_snprintf(pos, end - pos, "rsn_pairwise_cipher=");
1200 if (os_snprintf_error(end - pos, ret))
1204 ret = wpa_write_ciphers(pos, end, hapd->conf->rsn_pairwise,
1210 ret = os_snprintf(pos, end - pos, "\n");
1211 if (os_snprintf_error(end - pos, ret))
1216 if ((hapd->conf->wpa & WPA_PROTO_WPA) && hapd->conf->wpa_pairwise) {
1217 ret = os_snprintf(pos, end - pos, "wpa_pairwise_cipher=");
1218 if (os_snprintf_error(end - pos, ret))
1222 ret = wpa_write_ciphers(pos, end, hapd->conf->wpa_pairwise,
1228 ret = os_snprintf(pos, end - pos, "\n");
1229 if (os_snprintf_error(end - pos, ret))
1238 static int hostapd_ctrl_iface_set(struct hostapd_data *hapd, char *cmd)
1243 value = os_strchr(cmd, ' ');
1248 wpa_printf(MSG_DEBUG, "CTRL_IFACE SET '%s'='%s'", cmd, value);
1250 #ifdef CONFIG_WPS_TESTING
1251 } else if (os_strcasecmp(cmd, "wps_version_number") == 0) {
1253 val = strtol(value, NULL, 0);
1254 if (val < 0 || val > 0xff) {
1256 wpa_printf(MSG_DEBUG, "WPS: Invalid "
1257 "wps_version_number %ld", val);
1259 wps_version_number = val;
1260 wpa_printf(MSG_DEBUG, "WPS: Testing - force WPS "
1262 (wps_version_number & 0xf0) >> 4,
1263 wps_version_number & 0x0f);
1264 hostapd_wps_update_ie(hapd);
1266 } else if (os_strcasecmp(cmd, "wps_testing_dummy_cred") == 0) {
1267 wps_testing_dummy_cred = atoi(value);
1268 wpa_printf(MSG_DEBUG, "WPS: Testing - dummy_cred=%d",
1269 wps_testing_dummy_cred);
1270 } else if (os_strcasecmp(cmd, "wps_corrupt_pkhash") == 0) {
1271 wps_corrupt_pkhash = atoi(value);
1272 wpa_printf(MSG_DEBUG, "WPS: Testing - wps_corrupt_pkhash=%d",
1273 wps_corrupt_pkhash);
1274 #endif /* CONFIG_WPS_TESTING */
1275 #ifdef CONFIG_INTERWORKING
1276 } else if (os_strcasecmp(cmd, "gas_frag_limit") == 0) {
1277 int val = atoi(value);
1281 hapd->gas_frag_limit = val;
1282 #endif /* CONFIG_INTERWORKING */
1283 #ifdef CONFIG_TESTING_OPTIONS
1284 } else if (os_strcasecmp(cmd, "ext_mgmt_frame_handling") == 0) {
1285 hapd->ext_mgmt_frame_handling = atoi(value);
1286 } else if (os_strcasecmp(cmd, "ext_eapol_frame_io") == 0) {
1287 hapd->ext_eapol_frame_io = atoi(value);
1288 #endif /* CONFIG_TESTING_OPTIONS */
1290 struct sta_info *sta;
1293 ret = hostapd_set_iface(hapd->iconf, hapd->conf, cmd, value);
1297 if (os_strcasecmp(cmd, "deny_mac_file") == 0) {
1298 for (sta = hapd->sta_list; sta; sta = sta->next) {
1299 if (hostapd_maclist_found(
1300 hapd->conf->deny_mac,
1301 hapd->conf->num_deny_mac, sta->addr,
1303 (!vlan_id || vlan_id == sta->vlan_id))
1305 hapd, sta, sta->addr,
1306 WLAN_REASON_UNSPECIFIED);
1308 } else if (hapd->conf->macaddr_acl == DENY_UNLESS_ACCEPTED &&
1309 os_strcasecmp(cmd, "accept_mac_file") == 0) {
1310 for (sta = hapd->sta_list; sta; sta = sta->next) {
1311 if (!hostapd_maclist_found(
1312 hapd->conf->accept_mac,
1313 hapd->conf->num_accept_mac,
1314 sta->addr, &vlan_id) ||
1315 (vlan_id && vlan_id != sta->vlan_id))
1317 hapd, sta, sta->addr,
1318 WLAN_REASON_UNSPECIFIED);
1327 static int hostapd_ctrl_iface_get(struct hostapd_data *hapd, char *cmd,
1328 char *buf, size_t buflen)
1332 wpa_printf(MSG_DEBUG, "CTRL_IFACE GET '%s'", cmd);
1334 if (os_strcmp(cmd, "version") == 0) {
1335 res = os_snprintf(buf, buflen, "%s", VERSION_STR);
1336 if (os_snprintf_error(buflen, res))
1339 } else if (os_strcmp(cmd, "tls_library") == 0) {
1340 res = tls_get_library_version(buf, buflen);
1341 if (os_snprintf_error(buflen, res))
1350 static int hostapd_ctrl_iface_enable(struct hostapd_iface *iface)
1352 if (hostapd_enable_iface(iface) < 0) {
1353 wpa_printf(MSG_ERROR, "Enabling of interface failed");
1360 static int hostapd_ctrl_iface_reload(struct hostapd_iface *iface)
1362 if (hostapd_reload_iface(iface) < 0) {
1363 wpa_printf(MSG_ERROR, "Reloading of interface failed");
1370 static int hostapd_ctrl_iface_disable(struct hostapd_iface *iface)
1372 if (hostapd_disable_iface(iface) < 0) {
1373 wpa_printf(MSG_ERROR, "Disabling of interface failed");
1380 #ifdef CONFIG_TESTING_OPTIONS
1382 static int hostapd_ctrl_iface_radar(struct hostapd_data *hapd, char *cmd)
1384 union wpa_event_data data;
1386 enum wpa_event_type event;
1388 wpa_printf(MSG_DEBUG, "RADAR TEST: %s", cmd);
1390 os_memset(&data, 0, sizeof(data));
1392 param = os_strchr(cmd, ' ');
1397 if (os_strcmp(cmd, "DETECTED") == 0)
1398 event = EVENT_DFS_RADAR_DETECTED;
1399 else if (os_strcmp(cmd, "CAC-FINISHED") == 0)
1400 event = EVENT_DFS_CAC_FINISHED;
1401 else if (os_strcmp(cmd, "CAC-ABORTED") == 0)
1402 event = EVENT_DFS_CAC_ABORTED;
1403 else if (os_strcmp(cmd, "NOP-FINISHED") == 0)
1404 event = EVENT_DFS_NOP_FINISHED;
1406 wpa_printf(MSG_DEBUG, "Unsupported RADAR test command: %s",
1411 pos = os_strstr(param, "freq=");
1413 data.dfs_event.freq = atoi(pos + 5);
1415 pos = os_strstr(param, "ht_enabled=1");
1417 data.dfs_event.ht_enabled = 1;
1419 pos = os_strstr(param, "chan_offset=");
1421 data.dfs_event.chan_offset = atoi(pos + 12);
1423 pos = os_strstr(param, "chan_width=");
1425 data.dfs_event.chan_width = atoi(pos + 11);
1427 pos = os_strstr(param, "cf1=");
1429 data.dfs_event.cf1 = atoi(pos + 4);
1431 pos = os_strstr(param, "cf2=");
1433 data.dfs_event.cf2 = atoi(pos + 4);
1435 wpa_supplicant_event(hapd, event, &data);
1441 static int hostapd_ctrl_iface_mgmt_tx(struct hostapd_data *hapd, char *cmd)
1447 wpa_printf(MSG_DEBUG, "External MGMT TX: %s", cmd);
1449 len = os_strlen(cmd);
1454 buf = os_malloc(len);
1458 if (hexstr2bin(cmd, buf, len) < 0) {
1463 res = hostapd_drv_send_mlme(hapd, buf, len, 0);
1469 static int hostapd_ctrl_iface_eapol_rx(struct hostapd_data *hapd, char *cmd)
1472 u8 src[ETH_ALEN], *buf;
1476 wpa_printf(MSG_DEBUG, "External EAPOL RX: %s", cmd);
1479 used = hwaddr_aton2(pos, src);
1486 len = os_strlen(pos);
1491 buf = os_malloc(len);
1495 if (hexstr2bin(pos, buf, len) < 0) {
1500 ieee802_1x_receive(hapd, src, buf, len);
1507 static u16 ipv4_hdr_checksum(const void *buf, size_t len)
1511 const u16 *pos = buf;
1513 for (i = 0; i < len / 2; i++)
1517 sum = (sum & 0xffff) + (sum >> 16);
1519 return sum ^ 0xffff;
1523 #define HWSIM_PACKETLEN 1500
1524 #define HWSIM_IP_LEN (HWSIM_PACKETLEN - sizeof(struct ether_header))
1526 void hostapd_data_test_rx(void *ctx, const u8 *src_addr, const u8 *buf,
1529 struct hostapd_data *hapd = ctx;
1530 const struct ether_header *eth;
1531 const struct iphdr *ip;
1535 if (len != HWSIM_PACKETLEN)
1538 eth = (const struct ether_header *) buf;
1539 ip = (const struct iphdr *) (eth + 1);
1540 pos = (const u8 *) (ip + 1);
1542 if (ip->ihl != 5 || ip->version != 4 ||
1543 ntohs(ip->tot_len) != HWSIM_IP_LEN)
1546 for (i = 0; i < HWSIM_IP_LEN - sizeof(*ip); i++) {
1552 wpa_msg(hapd->msg_ctx, MSG_INFO, "DATA-TEST-RX " MACSTR " " MACSTR,
1553 MAC2STR(eth->ether_dhost), MAC2STR(eth->ether_shost));
1557 static int hostapd_ctrl_iface_data_test_config(struct hostapd_data *hapd,
1560 int enabled = atoi(cmd);
1565 if (hapd->l2_test) {
1566 l2_packet_deinit(hapd->l2_test);
1567 hapd->l2_test = NULL;
1568 wpa_dbg(hapd->msg_ctx, MSG_DEBUG,
1569 "test data: Disabled");
1577 pos = os_strstr(cmd, " ifname=");
1581 ifname = hapd->conf->iface;
1583 hapd->l2_test = l2_packet_init(ifname, hapd->own_addr,
1584 ETHERTYPE_IP, hostapd_data_test_rx,
1586 if (hapd->l2_test == NULL)
1589 wpa_dbg(hapd->msg_ctx, MSG_DEBUG, "test data: Enabled");
1595 static int hostapd_ctrl_iface_data_test_tx(struct hostapd_data *hapd, char *cmd)
1597 u8 dst[ETH_ALEN], src[ETH_ALEN];
1602 u8 buf[HWSIM_PACKETLEN];
1603 struct ether_header *eth;
1608 if (hapd->l2_test == NULL)
1611 /* format: <dst> <src> <tos> */
1614 used = hwaddr_aton2(pos, dst);
1620 used = hwaddr_aton2(pos, src);
1625 val = strtol(pos, NULL, 0);
1626 if (val < 0 || val > 0xff)
1630 eth = (struct ether_header *) buf;
1631 os_memcpy(eth->ether_dhost, dst, ETH_ALEN);
1632 os_memcpy(eth->ether_shost, src, ETH_ALEN);
1633 eth->ether_type = htons(ETHERTYPE_IP);
1634 ip = (struct iphdr *) (eth + 1);
1635 os_memset(ip, 0, sizeof(*ip));
1640 ip->tot_len = htons(HWSIM_IP_LEN);
1642 ip->saddr = htonl(192 << 24 | 168 << 16 | 1 << 8 | 1);
1643 ip->daddr = htonl(192 << 24 | 168 << 16 | 1 << 8 | 2);
1644 ip->check = ipv4_hdr_checksum(ip, sizeof(*ip));
1645 dpos = (u8 *) (ip + 1);
1646 for (i = 0; i < HWSIM_IP_LEN - sizeof(*ip); i++)
1649 if (l2_packet_send(hapd->l2_test, dst, ETHERTYPE_IP, buf,
1650 HWSIM_PACKETLEN) < 0)
1653 wpa_dbg(hapd->msg_ctx, MSG_DEBUG, "test data: TX dst=" MACSTR
1654 " src=" MACSTR " tos=0x%x", MAC2STR(dst), MAC2STR(src), tos);
1660 static int hostapd_ctrl_iface_data_test_frame(struct hostapd_data *hapd,
1664 struct ether_header *eth;
1665 struct l2_packet_data *l2 = NULL;
1669 const char *ifname = hapd->conf->iface;
1671 if (os_strncmp(cmd, "ifname=", 7) == 0) {
1674 cmd = os_strchr(cmd, ' ');
1680 len = os_strlen(cmd);
1681 if (len & 1 || len < ETH_HLEN * 2)
1685 buf = os_malloc(len);
1689 if (hexstr2bin(cmd, buf, len) < 0)
1692 eth = (struct ether_header *) buf;
1693 ethertype = ntohs(eth->ether_type);
1695 l2 = l2_packet_init(ifname, hapd->own_addr, ethertype,
1696 hostapd_data_test_rx, hapd, 1);
1700 res = l2_packet_send(l2, eth->ether_dhost, ethertype, buf, len);
1701 wpa_dbg(hapd->msg_ctx, MSG_DEBUG, "test data: TX frame res=%d", res);
1704 l2_packet_deinit(l2);
1707 return res < 0 ? -1 : 0;
1711 static int hostapd_ctrl_test_alloc_fail(struct hostapd_data *hapd, char *cmd)
1713 #ifdef WPA_TRACE_BFD
1714 extern char wpa_trace_fail_func[256];
1715 extern unsigned int wpa_trace_fail_after;
1718 wpa_trace_fail_after = atoi(cmd);
1719 pos = os_strchr(cmd, ':');
1722 os_strlcpy(wpa_trace_fail_func, pos,
1723 sizeof(wpa_trace_fail_func));
1725 wpa_trace_fail_after = 0;
1729 #else /* WPA_TRACE_BFD */
1731 #endif /* WPA_TRACE_BFD */
1735 static int hostapd_ctrl_get_alloc_fail(struct hostapd_data *hapd,
1736 char *buf, size_t buflen)
1738 #ifdef WPA_TRACE_BFD
1739 extern char wpa_trace_fail_func[256];
1740 extern unsigned int wpa_trace_fail_after;
1742 return os_snprintf(buf, buflen, "%u:%s", wpa_trace_fail_after,
1743 wpa_trace_fail_func);
1744 #else /* WPA_TRACE_BFD */
1746 #endif /* WPA_TRACE_BFD */
1749 #endif /* CONFIG_TESTING_OPTIONS */
1752 static int hostapd_ctrl_iface_chan_switch(struct hostapd_iface *iface,
1756 struct csa_settings settings;
1760 ret = hostapd_parse_csa_settings(pos, &settings);
1764 for (i = 0; i < iface->num_bss; i++) {
1765 ret = hostapd_switch_channel(iface->bss[i], &settings);
1767 /* FIX: What do we do if CSA fails in the middle of
1768 * submitting multi-BSS CSA requests? */
1774 #else /* NEED_AP_MLME */
1776 #endif /* NEED_AP_MLME */
1780 static int hostapd_ctrl_iface_mib(struct hostapd_data *hapd, char *reply,
1781 int reply_size, const char *param)
1783 #ifdef RADIUS_SERVER
1784 if (os_strcmp(param, "radius_server") == 0) {
1785 return radius_server_get_mib(hapd->radius_srv, reply,
1788 #endif /* RADIUS_SERVER */
1793 static int hostapd_ctrl_iface_vendor(struct hostapd_data *hapd, char *cmd,
1794 char *buf, size_t buflen)
1799 unsigned int vendor_id, subcmd;
1800 struct wpabuf *reply;
1801 size_t data_len = 0;
1803 /* cmd: <vendor id> <subcommand id> [<hex formatted data>] */
1804 vendor_id = strtoul(cmd, &pos, 16);
1808 subcmd = strtoul(pos, &pos, 10);
1811 if (!isblank(*pos++))
1813 data_len = os_strlen(pos);
1818 data = os_malloc(data_len);
1822 if (hexstr2bin(pos, data, data_len)) {
1823 wpa_printf(MSG_DEBUG,
1824 "Vendor command: wrong parameter format");
1830 reply = wpabuf_alloc((buflen - 1) / 2);
1836 ret = hostapd_drv_vendor_cmd(hapd, vendor_id, subcmd, data, data_len,
1840 ret = wpa_snprintf_hex(buf, buflen, wpabuf_head_u8(reply),
1850 static void hostapd_ctrl_iface_receive(int sock, void *eloop_ctx,
1853 struct hostapd_data *hapd = eloop_ctx;
1856 struct sockaddr_un from;
1857 socklen_t fromlen = sizeof(from);
1859 const int reply_size = 4096;
1861 int level = MSG_DEBUG;
1863 res = recvfrom(sock, buf, sizeof(buf) - 1, 0,
1864 (struct sockaddr *) &from, &fromlen);
1866 wpa_printf(MSG_ERROR, "recvfrom(ctrl_iface): %s",
1871 if (os_strcmp(buf, "PING") == 0)
1872 level = MSG_EXCESSIVE;
1873 wpa_hexdump_ascii(level, "RX ctrl_iface", (u8 *) buf, res);
1875 reply = os_malloc(reply_size);
1876 if (reply == NULL) {
1877 if (sendto(sock, "FAIL\n", 5, 0, (struct sockaddr *) &from,
1879 wpa_printf(MSG_DEBUG, "CTRL: sendto failed: %s",
1885 os_memcpy(reply, "OK\n", 3);
1888 if (os_strcmp(buf, "PING") == 0) {
1889 os_memcpy(reply, "PONG\n", 5);
1891 } else if (os_strncmp(buf, "RELOG", 5) == 0) {
1892 if (wpa_debug_reopen_file() < 0)
1894 } else if (os_strcmp(buf, "STATUS") == 0) {
1895 reply_len = hostapd_ctrl_iface_status(hapd, reply,
1897 } else if (os_strcmp(buf, "STATUS-DRIVER") == 0) {
1898 reply_len = hostapd_drv_status(hapd, reply, reply_size);
1899 } else if (os_strcmp(buf, "MIB") == 0) {
1900 reply_len = ieee802_11_get_mib(hapd, reply, reply_size);
1901 if (reply_len >= 0) {
1902 res = wpa_get_mib(hapd->wpa_auth, reply + reply_len,
1903 reply_size - reply_len);
1909 if (reply_len >= 0) {
1910 res = ieee802_1x_get_mib(hapd, reply + reply_len,
1911 reply_size - reply_len);
1917 #ifndef CONFIG_NO_RADIUS
1918 if (reply_len >= 0) {
1919 res = radius_client_get_mib(hapd->radius,
1921 reply_size - reply_len);
1927 #endif /* CONFIG_NO_RADIUS */
1928 } else if (os_strncmp(buf, "MIB ", 4) == 0) {
1929 reply_len = hostapd_ctrl_iface_mib(hapd, reply, reply_size,
1931 } else if (os_strcmp(buf, "STA-FIRST") == 0) {
1932 reply_len = hostapd_ctrl_iface_sta_first(hapd, reply,
1934 } else if (os_strncmp(buf, "STA ", 4) == 0) {
1935 reply_len = hostapd_ctrl_iface_sta(hapd, buf + 4, reply,
1937 } else if (os_strncmp(buf, "STA-NEXT ", 9) == 0) {
1938 reply_len = hostapd_ctrl_iface_sta_next(hapd, buf + 9, reply,
1940 } else if (os_strcmp(buf, "ATTACH") == 0) {
1941 if (hostapd_ctrl_iface_attach(hapd, &from, fromlen))
1943 } else if (os_strcmp(buf, "DETACH") == 0) {
1944 if (hostapd_ctrl_iface_detach(hapd, &from, fromlen))
1946 } else if (os_strncmp(buf, "LEVEL ", 6) == 0) {
1947 if (hostapd_ctrl_iface_level(hapd, &from, fromlen,
1950 } else if (os_strncmp(buf, "NEW_STA ", 8) == 0) {
1951 if (hostapd_ctrl_iface_new_sta(hapd, buf + 8))
1953 } else if (os_strncmp(buf, "DEAUTHENTICATE ", 15) == 0) {
1954 if (hostapd_ctrl_iface_deauthenticate(hapd, buf + 15))
1956 } else if (os_strncmp(buf, "DISASSOCIATE ", 13) == 0) {
1957 if (hostapd_ctrl_iface_disassociate(hapd, buf + 13))
1959 } else if (os_strcmp(buf, "STOP_AP") == 0) {
1960 if (hostapd_ctrl_iface_stop_ap(hapd))
1962 #ifdef CONFIG_IEEE80211W
1964 } else if (os_strncmp(buf, "SA_QUERY ", 9) == 0) {
1965 if (hostapd_ctrl_iface_sa_query(hapd, buf + 9))
1967 #endif /* NEED_AP_MLME */
1968 #endif /* CONFIG_IEEE80211W */
1970 } else if (os_strncmp(buf, "WPS_PIN ", 8) == 0) {
1971 if (hostapd_ctrl_iface_wps_pin(hapd, buf + 8))
1973 } else if (os_strncmp(buf, "WPS_CHECK_PIN ", 14) == 0) {
1974 reply_len = hostapd_ctrl_iface_wps_check_pin(
1975 hapd, buf + 14, reply, reply_size);
1976 } else if (os_strcmp(buf, "WPS_PBC") == 0) {
1977 if (hostapd_wps_button_pushed(hapd, NULL))
1979 } else if (os_strcmp(buf, "WPS_CANCEL") == 0) {
1980 if (hostapd_wps_cancel(hapd))
1982 } else if (os_strncmp(buf, "WPS_AP_PIN ", 11) == 0) {
1983 reply_len = hostapd_ctrl_iface_wps_ap_pin(hapd, buf + 11,
1985 } else if (os_strncmp(buf, "WPS_CONFIG ", 11) == 0) {
1986 if (hostapd_ctrl_iface_wps_config(hapd, buf + 11) < 0)
1988 } else if (os_strncmp(buf, "WPS_GET_STATUS", 13) == 0) {
1989 reply_len = hostapd_ctrl_iface_wps_get_status(hapd, reply,
1991 #ifdef CONFIG_WPS_NFC
1992 } else if (os_strncmp(buf, "WPS_NFC_TAG_READ ", 17) == 0) {
1993 if (hostapd_ctrl_iface_wps_nfc_tag_read(hapd, buf + 17))
1995 } else if (os_strncmp(buf, "WPS_NFC_CONFIG_TOKEN ", 21) == 0) {
1996 reply_len = hostapd_ctrl_iface_wps_nfc_config_token(
1997 hapd, buf + 21, reply, reply_size);
1998 } else if (os_strncmp(buf, "WPS_NFC_TOKEN ", 14) == 0) {
1999 reply_len = hostapd_ctrl_iface_wps_nfc_token(
2000 hapd, buf + 14, reply, reply_size);
2001 } else if (os_strncmp(buf, "NFC_GET_HANDOVER_SEL ", 21) == 0) {
2002 reply_len = hostapd_ctrl_iface_nfc_get_handover_sel(
2003 hapd, buf + 21, reply, reply_size);
2004 } else if (os_strncmp(buf, "NFC_REPORT_HANDOVER ", 20) == 0) {
2005 if (hostapd_ctrl_iface_nfc_report_handover(hapd, buf + 20))
2007 #endif /* CONFIG_WPS_NFC */
2008 #endif /* CONFIG_WPS */
2009 #ifdef CONFIG_INTERWORKING
2010 } else if (os_strncmp(buf, "SET_QOS_MAP_SET ", 16) == 0) {
2011 if (hostapd_ctrl_iface_set_qos_map_set(hapd, buf + 16))
2013 } else if (os_strncmp(buf, "SEND_QOS_MAP_CONF ", 18) == 0) {
2014 if (hostapd_ctrl_iface_send_qos_map_conf(hapd, buf + 18))
2016 #endif /* CONFIG_INTERWORKING */
2018 } else if (os_strncmp(buf, "HS20_WNM_NOTIF ", 15) == 0) {
2019 if (hostapd_ctrl_iface_hs20_wnm_notif(hapd, buf + 15))
2021 } else if (os_strncmp(buf, "HS20_DEAUTH_REQ ", 16) == 0) {
2022 if (hostapd_ctrl_iface_hs20_deauth_req(hapd, buf + 16))
2024 #endif /* CONFIG_HS20 */
2026 } else if (os_strncmp(buf, "DISASSOC_IMMINENT ", 18) == 0) {
2027 if (hostapd_ctrl_iface_disassoc_imminent(hapd, buf + 18))
2029 } else if (os_strncmp(buf, "ESS_DISASSOC ", 13) == 0) {
2030 if (hostapd_ctrl_iface_ess_disassoc(hapd, buf + 13))
2032 } else if (os_strncmp(buf, "BSS_TM_REQ ", 11) == 0) {
2033 if (hostapd_ctrl_iface_bss_tm_req(hapd, buf + 11))
2035 #endif /* CONFIG_WNM */
2036 } else if (os_strcmp(buf, "GET_CONFIG") == 0) {
2037 reply_len = hostapd_ctrl_iface_get_config(hapd, reply,
2039 } else if (os_strncmp(buf, "SET ", 4) == 0) {
2040 if (hostapd_ctrl_iface_set(hapd, buf + 4))
2042 } else if (os_strncmp(buf, "GET ", 4) == 0) {
2043 reply_len = hostapd_ctrl_iface_get(hapd, buf + 4, reply,
2045 } else if (os_strncmp(buf, "ENABLE", 6) == 0) {
2046 if (hostapd_ctrl_iface_enable(hapd->iface))
2048 } else if (os_strncmp(buf, "RELOAD", 6) == 0) {
2049 if (hostapd_ctrl_iface_reload(hapd->iface))
2051 } else if (os_strncmp(buf, "DISABLE", 7) == 0) {
2052 if (hostapd_ctrl_iface_disable(hapd->iface))
2054 } else if (os_strcmp(buf, "UPDATE_BEACON") == 0) {
2055 if (ieee802_11_set_beacon(hapd))
2057 #ifdef CONFIG_TESTING_OPTIONS
2058 } else if (os_strncmp(buf, "RADAR ", 6) == 0) {
2059 if (hostapd_ctrl_iface_radar(hapd, buf + 6))
2061 } else if (os_strncmp(buf, "MGMT_TX ", 8) == 0) {
2062 if (hostapd_ctrl_iface_mgmt_tx(hapd, buf + 8))
2064 } else if (os_strncmp(buf, "EAPOL_RX ", 9) == 0) {
2065 if (hostapd_ctrl_iface_eapol_rx(hapd, buf + 9) < 0)
2067 } else if (os_strncmp(buf, "DATA_TEST_CONFIG ", 17) == 0) {
2068 if (hostapd_ctrl_iface_data_test_config(hapd, buf + 17) < 0)
2070 } else if (os_strncmp(buf, "DATA_TEST_TX ", 13) == 0) {
2071 if (hostapd_ctrl_iface_data_test_tx(hapd, buf + 13) < 0)
2073 } else if (os_strncmp(buf, "DATA_TEST_FRAME ", 16) == 0) {
2074 if (hostapd_ctrl_iface_data_test_frame(hapd, buf + 16) < 0)
2076 } else if (os_strncmp(buf, "TEST_ALLOC_FAIL ", 16) == 0) {
2077 if (hostapd_ctrl_test_alloc_fail(hapd, buf + 16) < 0)
2079 } else if (os_strcmp(buf, "GET_ALLOC_FAIL") == 0) {
2080 reply_len = hostapd_ctrl_get_alloc_fail(hapd, reply,
2082 #endif /* CONFIG_TESTING_OPTIONS */
2083 } else if (os_strncmp(buf, "CHAN_SWITCH ", 12) == 0) {
2084 if (hostapd_ctrl_iface_chan_switch(hapd->iface, buf + 12))
2086 } else if (os_strncmp(buf, "VENDOR ", 7) == 0) {
2087 reply_len = hostapd_ctrl_iface_vendor(hapd, buf + 7, reply,
2089 } else if (os_strcmp(buf, "ERP_FLUSH") == 0) {
2090 ieee802_1x_erp_flush(hapd);
2091 #ifdef RADIUS_SERVER
2092 radius_server_erp_flush(hapd->radius_srv);
2093 #endif /* RADIUS_SERVER */
2095 os_memcpy(reply, "UNKNOWN COMMAND\n", 16);
2099 if (reply_len < 0) {
2100 os_memcpy(reply, "FAIL\n", 5);
2103 if (sendto(sock, reply, reply_len, 0, (struct sockaddr *) &from,
2105 wpa_printf(MSG_DEBUG, "CTRL: sendto failed: %s",
2112 static char * hostapd_ctrl_iface_path(struct hostapd_data *hapd)
2117 if (hapd->conf->ctrl_interface == NULL)
2120 len = os_strlen(hapd->conf->ctrl_interface) +
2121 os_strlen(hapd->conf->iface) + 2;
2122 buf = os_malloc(len);
2126 os_snprintf(buf, len, "%s/%s",
2127 hapd->conf->ctrl_interface, hapd->conf->iface);
2128 buf[len - 1] = '\0';
2133 static void hostapd_ctrl_iface_msg_cb(void *ctx, int level, int global,
2134 const char *txt, size_t len)
2136 struct hostapd_data *hapd = ctx;
2139 hostapd_ctrl_iface_send(hapd, level, txt, len);
2143 int hostapd_ctrl_iface_init(struct hostapd_data *hapd)
2145 struct sockaddr_un addr;
2149 if (hapd->ctrl_sock > -1) {
2150 wpa_printf(MSG_DEBUG, "ctrl_iface already exists!");
2154 if (hapd->conf->ctrl_interface == NULL)
2157 if (mkdir(hapd->conf->ctrl_interface, S_IRWXU | S_IRWXG) < 0) {
2158 if (errno == EEXIST) {
2159 wpa_printf(MSG_DEBUG, "Using existing control "
2160 "interface directory.");
2162 wpa_printf(MSG_ERROR, "mkdir[ctrl_interface]: %s",
2168 if (hapd->conf->ctrl_interface_gid_set &&
2169 chown(hapd->conf->ctrl_interface, -1,
2170 hapd->conf->ctrl_interface_gid) < 0) {
2171 wpa_printf(MSG_ERROR, "chown[ctrl_interface]: %s",
2176 if (!hapd->conf->ctrl_interface_gid_set &&
2177 hapd->iface->interfaces->ctrl_iface_group &&
2178 chown(hapd->conf->ctrl_interface, -1,
2179 hapd->iface->interfaces->ctrl_iface_group) < 0) {
2180 wpa_printf(MSG_ERROR, "chown[ctrl_interface]: %s",
2187 * Android is using umask 0077 which would leave the control interface
2188 * directory without group access. This breaks things since Wi-Fi
2189 * framework assumes that this directory can be accessed by other
2190 * applications in the wifi group. Fix this by adding group access even
2191 * if umask value would prevent this.
2193 if (chmod(hapd->conf->ctrl_interface, S_IRWXU | S_IRWXG) < 0) {
2194 wpa_printf(MSG_ERROR, "CTRL: Could not chmod directory: %s",
2196 /* Try to continue anyway */
2198 #endif /* ANDROID */
2200 if (os_strlen(hapd->conf->ctrl_interface) + 1 +
2201 os_strlen(hapd->conf->iface) >= sizeof(addr.sun_path))
2204 s = socket(PF_UNIX, SOCK_DGRAM, 0);
2206 wpa_printf(MSG_ERROR, "socket(PF_UNIX): %s", strerror(errno));
2210 os_memset(&addr, 0, sizeof(addr));
2212 addr.sun_len = sizeof(addr);
2213 #endif /* __FreeBSD__ */
2214 addr.sun_family = AF_UNIX;
2215 fname = hostapd_ctrl_iface_path(hapd);
2218 os_strlcpy(addr.sun_path, fname, sizeof(addr.sun_path));
2219 if (bind(s, (struct sockaddr *) &addr, sizeof(addr)) < 0) {
2220 wpa_printf(MSG_DEBUG, "ctrl_iface bind(PF_UNIX) failed: %s",
2222 if (connect(s, (struct sockaddr *) &addr, sizeof(addr)) < 0) {
2223 wpa_printf(MSG_DEBUG, "ctrl_iface exists, but does not"
2224 " allow connections - assuming it was left"
2225 "over from forced program termination");
2226 if (unlink(fname) < 0) {
2227 wpa_printf(MSG_ERROR,
2228 "Could not unlink existing ctrl_iface socket '%s': %s",
2229 fname, strerror(errno));
2232 if (bind(s, (struct sockaddr *) &addr, sizeof(addr)) <
2234 wpa_printf(MSG_ERROR,
2235 "hostapd-ctrl-iface: bind(PF_UNIX): %s",
2239 wpa_printf(MSG_DEBUG, "Successfully replaced leftover "
2240 "ctrl_iface socket '%s'", fname);
2242 wpa_printf(MSG_INFO, "ctrl_iface exists and seems to "
2243 "be in use - cannot override it");
2244 wpa_printf(MSG_INFO, "Delete '%s' manually if it is "
2245 "not used anymore", fname);
2252 if (hapd->conf->ctrl_interface_gid_set &&
2253 chown(fname, -1, hapd->conf->ctrl_interface_gid) < 0) {
2254 wpa_printf(MSG_ERROR, "chown[ctrl_interface/ifname]: %s",
2259 if (!hapd->conf->ctrl_interface_gid_set &&
2260 hapd->iface->interfaces->ctrl_iface_group &&
2261 chown(fname, -1, hapd->iface->interfaces->ctrl_iface_group) < 0) {
2262 wpa_printf(MSG_ERROR, "chown[ctrl_interface/ifname]: %s",
2267 if (chmod(fname, S_IRWXU | S_IRWXG) < 0) {
2268 wpa_printf(MSG_ERROR, "chmod[ctrl_interface/ifname]: %s",
2274 hapd->ctrl_sock = s;
2275 if (eloop_register_read_sock(s, hostapd_ctrl_iface_receive, hapd,
2277 hostapd_ctrl_iface_deinit(hapd);
2280 hapd->msg_ctx = hapd;
2281 wpa_msg_register_cb(hostapd_ctrl_iface_msg_cb);
2296 void hostapd_ctrl_iface_deinit(struct hostapd_data *hapd)
2298 struct wpa_ctrl_dst *dst, *prev;
2300 if (hapd->ctrl_sock > -1) {
2302 eloop_unregister_read_sock(hapd->ctrl_sock);
2303 close(hapd->ctrl_sock);
2304 hapd->ctrl_sock = -1;
2305 fname = hostapd_ctrl_iface_path(hapd);
2310 if (hapd->conf->ctrl_interface &&
2311 rmdir(hapd->conf->ctrl_interface) < 0) {
2312 if (errno == ENOTEMPTY) {
2313 wpa_printf(MSG_DEBUG, "Control interface "
2314 "directory not empty - leaving it "
2317 wpa_printf(MSG_ERROR,
2318 "rmdir[ctrl_interface=%s]: %s",
2319 hapd->conf->ctrl_interface,
2325 dst = hapd->ctrl_dst;
2326 hapd->ctrl_dst = NULL;
2333 #ifdef CONFIG_TESTING_OPTIONS
2334 l2_packet_deinit(hapd->l2_test);
2335 hapd->l2_test = NULL;
2336 #endif /* CONFIG_TESTING_OPTIONS */
2340 static int hostapd_ctrl_iface_add(struct hapd_interfaces *interfaces,
2343 if (hostapd_add_iface(interfaces, buf) < 0) {
2344 wpa_printf(MSG_ERROR, "Adding interface %s failed", buf);
2351 static int hostapd_ctrl_iface_remove(struct hapd_interfaces *interfaces,
2354 if (hostapd_remove_iface(interfaces, buf) < 0) {
2355 wpa_printf(MSG_ERROR, "Removing interface %s failed", buf);
2362 static void hostapd_ctrl_iface_flush(struct hapd_interfaces *interfaces)
2364 #ifdef CONFIG_WPS_TESTING
2365 wps_version_number = 0x20;
2366 wps_testing_dummy_cred = 0;
2367 wps_corrupt_pkhash = 0;
2368 #endif /* CONFIG_WPS_TESTING */
2372 static void hostapd_global_ctrl_iface_receive(int sock, void *eloop_ctx,
2375 void *interfaces = eloop_ctx;
2378 struct sockaddr_un from;
2379 socklen_t fromlen = sizeof(from);
2383 res = recvfrom(sock, buf, sizeof(buf) - 1, 0,
2384 (struct sockaddr *) &from, &fromlen);
2386 wpa_printf(MSG_ERROR, "recvfrom(ctrl_iface): %s",
2391 wpa_printf(MSG_DEBUG, "Global ctrl_iface command: %s", buf);
2393 os_memcpy(reply, "OK\n", 3);
2396 if (os_strcmp(buf, "PING") == 0) {
2397 os_memcpy(reply, "PONG\n", 5);
2399 } else if (os_strncmp(buf, "RELOG", 5) == 0) {
2400 if (wpa_debug_reopen_file() < 0)
2402 } else if (os_strcmp(buf, "FLUSH") == 0) {
2403 hostapd_ctrl_iface_flush(interfaces);
2404 } else if (os_strncmp(buf, "ADD ", 4) == 0) {
2405 if (hostapd_ctrl_iface_add(interfaces, buf + 4) < 0)
2407 } else if (os_strncmp(buf, "REMOVE ", 7) == 0) {
2408 if (hostapd_ctrl_iface_remove(interfaces, buf + 7) < 0)
2410 #ifdef CONFIG_MODULE_TESTS
2411 } else if (os_strcmp(buf, "MODULE_TESTS") == 0) {
2412 int hapd_module_tests(void);
2413 if (hapd_module_tests() < 0)
2415 #endif /* CONFIG_MODULE_TESTS */
2417 wpa_printf(MSG_DEBUG, "Unrecognized global ctrl_iface command "
2422 if (reply_len < 0) {
2423 os_memcpy(reply, "FAIL\n", 5);
2427 if (sendto(sock, reply, reply_len, 0, (struct sockaddr *) &from,
2429 wpa_printf(MSG_DEBUG, "CTRL: sendto failed: %s",
2435 static char * hostapd_global_ctrl_iface_path(struct hapd_interfaces *interface)
2440 if (interface->global_iface_path == NULL)
2443 len = os_strlen(interface->global_iface_path) +
2444 os_strlen(interface->global_iface_name) + 2;
2445 buf = os_malloc(len);
2449 os_snprintf(buf, len, "%s/%s", interface->global_iface_path,
2450 interface->global_iface_name);
2451 buf[len - 1] = '\0';
2456 int hostapd_global_ctrl_iface_init(struct hapd_interfaces *interface)
2458 struct sockaddr_un addr;
2462 if (interface->global_iface_path == NULL) {
2463 wpa_printf(MSG_DEBUG, "ctrl_iface not configured!");
2467 if (mkdir(interface->global_iface_path, S_IRWXU | S_IRWXG) < 0) {
2468 if (errno == EEXIST) {
2469 wpa_printf(MSG_DEBUG, "Using existing control "
2470 "interface directory.");
2472 wpa_printf(MSG_ERROR, "mkdir[ctrl_interface]: %s",
2476 } else if (interface->ctrl_iface_group &&
2477 chown(interface->global_iface_path, -1,
2478 interface->ctrl_iface_group) < 0) {
2479 wpa_printf(MSG_ERROR, "chown[ctrl_interface]: %s",
2484 if (os_strlen(interface->global_iface_path) + 1 +
2485 os_strlen(interface->global_iface_name) >= sizeof(addr.sun_path))
2488 s = socket(PF_UNIX, SOCK_DGRAM, 0);
2490 wpa_printf(MSG_ERROR, "socket(PF_UNIX): %s", strerror(errno));
2494 os_memset(&addr, 0, sizeof(addr));
2496 addr.sun_len = sizeof(addr);
2497 #endif /* __FreeBSD__ */
2498 addr.sun_family = AF_UNIX;
2499 fname = hostapd_global_ctrl_iface_path(interface);
2502 os_strlcpy(addr.sun_path, fname, sizeof(addr.sun_path));
2503 if (bind(s, (struct sockaddr *) &addr, sizeof(addr)) < 0) {
2504 wpa_printf(MSG_DEBUG, "ctrl_iface bind(PF_UNIX) failed: %s",
2506 if (connect(s, (struct sockaddr *) &addr, sizeof(addr)) < 0) {
2507 wpa_printf(MSG_DEBUG, "ctrl_iface exists, but does not"
2508 " allow connections - assuming it was left"
2509 "over from forced program termination");
2510 if (unlink(fname) < 0) {
2511 wpa_printf(MSG_ERROR,
2512 "Could not unlink existing ctrl_iface socket '%s': %s",
2513 fname, strerror(errno));
2516 if (bind(s, (struct sockaddr *) &addr, sizeof(addr)) <
2518 wpa_printf(MSG_ERROR, "bind(PF_UNIX): %s",
2522 wpa_printf(MSG_DEBUG, "Successfully replaced leftover "
2523 "ctrl_iface socket '%s'", fname);
2525 wpa_printf(MSG_INFO, "ctrl_iface exists and seems to "
2526 "be in use - cannot override it");
2527 wpa_printf(MSG_INFO, "Delete '%s' manually if it is "
2528 "not used anymore", fname);
2535 if (interface->ctrl_iface_group &&
2536 chown(fname, -1, interface->ctrl_iface_group) < 0) {
2537 wpa_printf(MSG_ERROR, "chown[ctrl_interface]: %s",
2542 if (chmod(fname, S_IRWXU | S_IRWXG) < 0) {
2543 wpa_printf(MSG_ERROR, "chmod[ctrl_interface/ifname]: %s",
2549 interface->global_ctrl_sock = s;
2550 eloop_register_read_sock(s, hostapd_global_ctrl_iface_receive,
2566 void hostapd_global_ctrl_iface_deinit(struct hapd_interfaces *interfaces)
2570 if (interfaces->global_ctrl_sock > -1) {
2571 eloop_unregister_read_sock(interfaces->global_ctrl_sock);
2572 close(interfaces->global_ctrl_sock);
2573 interfaces->global_ctrl_sock = -1;
2574 fname = hostapd_global_ctrl_iface_path(interfaces);
2580 if (interfaces->global_iface_path &&
2581 rmdir(interfaces->global_iface_path) < 0) {
2582 if (errno == ENOTEMPTY) {
2583 wpa_printf(MSG_DEBUG, "Control interface "
2584 "directory not empty - leaving it "
2587 wpa_printf(MSG_ERROR,
2588 "rmdir[ctrl_interface=%s]: %s",
2589 interfaces->global_iface_path,
2593 os_free(interfaces->global_iface_path);
2594 interfaces->global_iface_path = NULL;
2599 static void hostapd_ctrl_iface_send(struct hostapd_data *hapd, int level,
2600 const char *buf, size_t len)
2602 struct wpa_ctrl_dst *dst, *next;
2608 dst = hapd->ctrl_dst;
2609 if (hapd->ctrl_sock < 0 || dst == NULL)
2612 os_snprintf(levelstr, sizeof(levelstr), "<%d>", level);
2613 io[0].iov_base = levelstr;
2614 io[0].iov_len = os_strlen(levelstr);
2615 io[1].iov_base = (char *) buf;
2616 io[1].iov_len = len;
2617 os_memset(&msg, 0, sizeof(msg));
2624 if (level >= dst->debug_level) {
2625 wpa_hexdump(MSG_DEBUG, "CTRL_IFACE monitor send",
2626 (u8 *) dst->addr.sun_path, dst->addrlen -
2627 offsetof(struct sockaddr_un, sun_path));
2628 msg.msg_name = &dst->addr;
2629 msg.msg_namelen = dst->addrlen;
2630 if (sendmsg(hapd->ctrl_sock, &msg, 0) < 0) {
2632 wpa_printf(MSG_INFO, "CTRL_IFACE monitor[%d]: "
2634 idx, errno, strerror(errno));
2636 if (dst->errors > 10 || _errno == ENOENT) {
2637 hostapd_ctrl_iface_detach(
2649 #endif /* CONFIG_NATIVE_WINDOWS */