wpa_supplicant/ap.c

   1 /*
   2  * WPA Supplicant - Basic AP mode support routines
   3  * Copyright (c) 2003-2009, Jouni Malinen <j@w1.fi>
   4  * Copyright (c) 2009, Atheros Communications
   5  *
   6  * This program is free software; you can redistribute it and/or modify
   7  * it under the terms of the GNU General Public License version 2 as
   8  * published by the Free Software Foundation.
   9  *
  10  * Alternatively, this software may be distributed under the terms of BSD
  11  * license.
  12  *
  13  * See README and COPYING for more details.
  14  */
  15
  16 #include "utils/includes.h"
  17
  18 #include "utils/common.h"
  19 #include "common/ieee802_11_defs.h"
  20 #include "ap/hostapd.h"
  21 #include "ap/ap_config.h"
  22 #ifdef NEED_AP_MLME
  23 #include "ap/ieee802_11.h"
  24 #endif /* NEED_AP_MLME */
  25 #include "ap/ieee802_1x.h"
  26 #include "ap/wps_hostapd.h"
  27 #include "ap/ctrl_iface_ap.h"
  28 #include "eap_common/eap_defs.h"
  29 #include "eap_server/eap_methods.h"
  30 #include "eap_common/eap_wsc_common.h"
  31 #include "wps/wps.h"
  32 #include "config_ssid.h"
  33 #include "config.h"
  34 #include "wpa_supplicant_i.h"
  35 #include "driver_i.h"
  36 #include "ap.h"
  37
  38
  39 static int wpa_supplicant_conf_ap(struct wpa_supplicant *wpa_s,
  40                                   struct wpa_ssid *ssid,
  41                                   struct hostapd_config *conf)
  42 {
  43         struct hostapd_bss_config *bss = &conf->bss[0];
  44         int pairwise;
  45
  46         conf->driver = wpa_s->driver;
  47
  48         os_strlcpy(bss->iface, wpa_s->ifname, sizeof(bss->iface));
  49
  50         if (ssid->frequency == 0) {
  51                 /* default channel 11 */
  52                 conf->hw_mode = HOSTAPD_MODE_IEEE80211G;
  53                 conf->channel = 11;
  54         } else if (ssid->frequency >= 2412 && ssid->frequency <= 2472) {
  55                 conf->hw_mode = HOSTAPD_MODE_IEEE80211G;
  56                 conf->channel = (ssid->frequency - 2407) / 5;
  57         } else if ((ssid->frequency >= 5180 && ssid->frequency <= 5240) ||
  58                    (ssid->frequency >= 5745 && ssid->frequency <= 5825)) {
  59                 conf->hw_mode = HOSTAPD_MODE_IEEE80211A;
  60                 conf->channel = (ssid->frequency - 5000) / 5;
  61         } else {
  62                 wpa_printf(MSG_ERROR, "Unsupported AP mode frequency: %d MHz",
  63                            ssid->frequency);
  64                 return -1;
  65         }
  66
  67         /* TODO: enable HT if driver supports it;
  68          * drop to 11b if driver does not support 11g */
  69
  70         if (ssid->ssid_len == 0) {
  71                 wpa_printf(MSG_ERROR, "No SSID configured for AP mode");
  72                 return -1;
  73         }
  74         os_memcpy(bss->ssid.ssid, ssid->ssid, ssid->ssid_len);
  75         bss->ssid.ssid[ssid->ssid_len] = '\0';
  76         bss->ssid.ssid_len = ssid->ssid_len;
  77         bss->ssid.ssid_set = 1;
  78
  79         if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt))
  80                 bss->wpa = ssid->proto;
  81         bss->wpa_key_mgmt = ssid->key_mgmt;
  82         bss->wpa_pairwise = ssid->pairwise_cipher;
  83         if (ssid->passphrase) {
  84                 bss->ssid.wpa_passphrase = os_strdup(ssid->passphrase);
  85         } else if (ssid->psk_set) {
  86                 os_free(bss->ssid.wpa_psk);
  87                 bss->ssid.wpa_psk = os_zalloc(sizeof(struct hostapd_wpa_psk));
  88                 if (bss->ssid.wpa_psk == NULL)
  89                         return -1;
  90                 os_memcpy(bss->ssid.wpa_psk->psk, ssid->psk, PMK_LEN);
  91                 bss->ssid.wpa_psk->group = 1;
  92         }
  93
  94         /* Select group cipher based on the enabled pairwise cipher suites */
  95         pairwise = 0;
  96         if (bss->wpa & 1)
  97                 pairwise |= bss->wpa_pairwise;
  98         if (bss->wpa & 2) {
  99                 if (bss->rsn_pairwise == 0)
 100                         bss->rsn_pairwise = bss->wpa_pairwise;
 101                 pairwise |= bss->rsn_pairwise;
 102         }
 103         if (pairwise & WPA_CIPHER_TKIP)
 104                 bss->wpa_group = WPA_CIPHER_TKIP;
 105         else
 106                 bss->wpa_group = WPA_CIPHER_CCMP;
 107
 108         if (bss->wpa && bss->ieee802_1x)
 109                 bss->ssid.security_policy = SECURITY_WPA;
 110         else if (bss->wpa)
 111                 bss->ssid.security_policy = SECURITY_WPA_PSK;
 112         else if (bss->ieee802_1x) {
 113                 bss->ssid.security_policy = SECURITY_IEEE_802_1X;
 114                 bss->ssid.wep.default_len = bss->default_wep_key_len;
 115         } else if (bss->ssid.wep.keys_set)
 116                 bss->ssid.security_policy = SECURITY_STATIC_WEP;
 117         else
 118                 bss->ssid.security_policy = SECURITY_PLAINTEXT;
 119
 120 #ifdef CONFIG_WPS
 121         /*
 122          * Enable WPS by default, but require user interaction to actually use
 123          * it. Only the internal Registrar is supported.
 124          */
 125         bss->eap_server = 1;
 126         bss->wps_state = 2;
 127         bss->ap_setup_locked = 1;
 128         if (wpa_s->conf->config_methods)
 129                 bss->config_methods = os_strdup(wpa_s->conf->config_methods);
 130         if (wpa_s->conf->device_type)
 131                 bss->device_type = os_strdup(wpa_s->conf->device_type);
 132 #endif /* CONFIG_WPS */
 133
 134         return 0;
 135 }
 136
 137
 138 int wpa_supplicant_create_ap(struct wpa_supplicant *wpa_s,
 139                              struct wpa_ssid *ssid)
 140 {
 141         struct wpa_driver_associate_params params;
 142         struct hostapd_iface *hapd_iface;
 143         struct hostapd_config *conf;
 144         size_t i;
 145
 146         if (ssid->ssid == NULL || ssid->ssid_len == 0) {
 147                 wpa_printf(MSG_ERROR, "No SSID configured for AP mode");
 148                 return -1;
 149         }
 150
 151         wpa_supplicant_ap_deinit(wpa_s);
 152
 153         wpa_printf(MSG_DEBUG, "Setting up AP (SSID='%s')",
 154                    wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
 155
 156         os_memset(&params, 0, sizeof(params));
 157         params.ssid = ssid->ssid;
 158         params.ssid_len = ssid->ssid_len;
 159         switch (ssid->mode) {
 160         case WPAS_MODE_INFRA:
 161                 params.mode = IEEE80211_MODE_INFRA;
 162                 break;
 163         case WPAS_MODE_IBSS:
 164                 params.mode = IEEE80211_MODE_IBSS;
 165                 break;
 166         case WPAS_MODE_AP:
 167                 params.mode = IEEE80211_MODE_AP;
 168                 break;
 169         }
 170         params.freq = ssid->frequency;
 171
 172         if (ssid->key_mgmt & WPA_KEY_MGMT_PSK)
 173                 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
 174         else
 175                 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
 176         params.key_mgmt_suite = key_mgmt2driver(wpa_s->key_mgmt);
 177
 178         if (ssid->pairwise_cipher & WPA_CIPHER_CCMP)
 179                 wpa_s->pairwise_cipher = WPA_CIPHER_CCMP;
 180         else if (ssid->pairwise_cipher & WPA_CIPHER_TKIP)
 181                 wpa_s->pairwise_cipher = WPA_CIPHER_TKIP;
 182         else if (ssid->pairwise_cipher & WPA_CIPHER_NONE)
 183                 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
 184         else {
 185                 wpa_printf(MSG_WARNING, "WPA: Failed to select pairwise "
 186                            "cipher.");
 187                 return -1;
 188         }
 189         params.pairwise_suite = cipher_suite2driver(wpa_s->pairwise_cipher);
 190         params.group_suite = params.pairwise_suite;
 191
 192         if (wpa_drv_associate(wpa_s, &params) < 0) {
 193                 wpa_msg(wpa_s, MSG_INFO, "Failed to start AP functionality");
 194                 return -1;
 195         }
 196
 197         wpa_s->ap_iface = hapd_iface = os_zalloc(sizeof(*wpa_s->ap_iface));
 198         if (hapd_iface == NULL)
 199                 return -1;
 200         hapd_iface->owner = wpa_s;
 201
 202         wpa_s->ap_iface->conf = conf = hostapd_config_defaults();
 203         if (conf == NULL) {
 204                 wpa_supplicant_ap_deinit(wpa_s);
 205                 return -1;
 206         }
 207
 208         if (wpa_supplicant_conf_ap(wpa_s, ssid, conf)) {
 209                 wpa_printf(MSG_ERROR, "Failed to create AP configuration");
 210                 wpa_supplicant_ap_deinit(wpa_s);
 211                 return -1;
 212         }
 213
 214         hapd_iface->num_bss = conf->num_bss;
 215         hapd_iface->bss = os_zalloc(conf->num_bss *
 216                                     sizeof(struct hostapd_data *));
 217         if (hapd_iface->bss == NULL) {
 218                 wpa_supplicant_ap_deinit(wpa_s);
 219                 return -1;
 220         }
 221
 222         for (i = 0; i < conf->num_bss; i++) {
 223                 hapd_iface->bss[i] =
 224                         hostapd_alloc_bss_data(hapd_iface, conf,
 225                                                &conf->bss[i]);
 226                 if (hapd_iface->bss[i] == NULL) {
 227                         wpa_supplicant_ap_deinit(wpa_s);
 228                         return -1;
 229                 }
 230
 231                 hapd_iface->bss[i]->msg_ctx = wpa_s;
 232         }
 233
 234         os_memcpy(hapd_iface->bss[0]->own_addr, wpa_s->own_addr, ETH_ALEN);
 235         hapd_iface->bss[0]->driver = wpa_s->driver;
 236         hapd_iface->bss[0]->drv_priv = wpa_s->drv_priv;
 237
 238         if (hostapd_setup_interface(wpa_s->ap_iface)) {
 239                 wpa_printf(MSG_ERROR, "Failed to initialize AP interface");
 240                 wpa_supplicant_ap_deinit(wpa_s);
 241                 return -1;
 242         }
 243
 244         wpa_s->current_ssid = ssid;
 245         os_memcpy(wpa_s->bssid, wpa_s->own_addr, ETH_ALEN);
 246         wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
 247
 248         if (wpa_s->ap_configured_cb)
 249                 wpa_s->ap_configured_cb(wpa_s->ap_configured_cb_ctx,
 250                                         wpa_s->ap_configured_cb_data);
 251
 252         return 0;
 253 }
 254
 255
 256 void wpa_supplicant_ap_deinit(struct wpa_supplicant *wpa_s)
 257 {
 258         if (wpa_s->ap_iface == NULL)
 259                 return;
 260
 261         wpa_s->current_ssid = NULL;
 262         hostapd_interface_deinit(wpa_s->ap_iface);
 263         hostapd_interface_free(wpa_s->ap_iface);
 264         wpa_s->ap_iface = NULL;
 265         wpa_drv_deinit_ap(wpa_s);
 266 }
 267
 268
 269 void ap_tx_status(void *ctx, const u8 *addr,
 270                   const u8 *buf, size_t len, int ack)
 271 {
 272 #ifdef NEED_AP_MLME
 273         struct wpa_supplicant *wpa_s = ctx;
 274         hostapd_tx_status(wpa_s->ap_iface->bss[0], addr, buf, len, ack);
 275 #endif /* NEED_AP_MLME */
 276 }
 277
 278
 279 void ap_rx_from_unknown_sta(void *ctx, const u8 *frame, size_t len)
 280 {
 281 #ifdef NEED_AP_MLME
 282         struct wpa_supplicant *wpa_s = ctx;
 283         const struct ieee80211_hdr *hdr =
 284                 (const struct ieee80211_hdr *) frame;
 285         u16 fc = le_to_host16(hdr->frame_control);
 286         ieee802_11_rx_from_unknown(wpa_s->ap_iface->bss[0], hdr->addr2,
 287                                    (fc & (WLAN_FC_TODS | WLAN_FC_FROMDS)) ==
 288                                    (WLAN_FC_TODS | WLAN_FC_FROMDS));
 289 #endif /* NEED_AP_MLME */
 290 }
 291
 292
 293 void ap_mgmt_rx(void *ctx, struct rx_mgmt *rx_mgmt)
 294 {
 295 #ifdef NEED_AP_MLME
 296         struct wpa_supplicant *wpa_s = ctx;
 297         struct hostapd_frame_info fi;
 298         os_memset(&fi, 0, sizeof(fi));
 299         fi.datarate = rx_mgmt->datarate;
 300         fi.ssi_signal = rx_mgmt->ssi_signal;
 301         ieee802_11_mgmt(wpa_s->ap_iface->bss[0], rx_mgmt->frame,
 302                         rx_mgmt->frame_len, &fi);
 303 #endif /* NEED_AP_MLME */
 304 }
 305
 306
 307 void ap_mgmt_tx_cb(void *ctx, const u8 *buf, size_t len, u16 stype, int ok)
 308 {
 309 #ifdef NEED_AP_MLME
 310         struct wpa_supplicant *wpa_s = ctx;
 311         ieee802_11_mgmt_cb(wpa_s->ap_iface->bss[0], buf, len, stype, ok);
 312 #endif /* NEED_AP_MLME */
 313 }
 314
 315
 316 void wpa_supplicant_ap_rx_eapol(struct wpa_supplicant *wpa_s,
 317                                 const u8 *src_addr, const u8 *buf, size_t len)
 318 {
 319         ieee802_1x_receive(wpa_s->ap_iface->bss[0], src_addr, buf, len);
 320 }
 321
 322
 323 #ifdef CONFIG_WPS
 324
 325 int wpa_supplicant_ap_wps_pbc(struct wpa_supplicant *wpa_s, const u8 *bssid)
 326 {
 327         if (!wpa_s->ap_iface)
 328                 return -1;
 329         return hostapd_wps_button_pushed(wpa_s->ap_iface->bss[0]);
 330 }
 331
 332
 333 int wpa_supplicant_ap_wps_pin(struct wpa_supplicant *wpa_s, const u8 *bssid,
 334                               const char *pin, char *buf, size_t buflen)
 335 {
 336         int ret, ret_len = 0;
 337
 338         if (!wpa_s->ap_iface)
 339                 return -1;
 340
 341         if (pin == NULL) {
 342                 unsigned int rpin = wps_generate_pin();
 343                 ret_len = os_snprintf(buf, buflen, "%d", rpin);
 344                 pin = buf;
 345         }
 346
 347         ret = hostapd_wps_add_pin(wpa_s->ap_iface->bss[0], "any", pin, 0);
 348         if (ret)
 349                 return -1;
 350         return ret_len;
 351 }
 352
 353 #endif /* CONFIG_WPS */
 354
 355
 356 #ifdef CONFIG_CTRL_IFACE
 357
 358 int ap_ctrl_iface_sta_first(struct wpa_supplicant *wpa_s,
 359                             char *buf, size_t buflen)
 360 {
 361         if (wpa_s->ap_iface == NULL)
 362                 return -1;
 363         return hostapd_ctrl_iface_sta_first(wpa_s->ap_iface->bss[0],
 364                                             buf, buflen);
 365 }
 366
 367
 368 int ap_ctrl_iface_sta(struct wpa_supplicant *wpa_s, const char *txtaddr,
 369                       char *buf, size_t buflen)
 370 {
 371         if (wpa_s->ap_iface == NULL)
 372                 return -1;
 373         return hostapd_ctrl_iface_sta(wpa_s->ap_iface->bss[0], txtaddr,
 374                                       buf, buflen);
 375 }
 376
 377
 378 int ap_ctrl_iface_sta_next(struct wpa_supplicant *wpa_s, const char *txtaddr,
 379                            char *buf, size_t buflen)
 380 {
 381         if (wpa_s->ap_iface == NULL)
 382                 return -1;
 383         return hostapd_ctrl_iface_sta_next(wpa_s->ap_iface->bss[0], txtaddr,
 384                                            buf, buflen);
 385 }
 386
 387
 388 int ap_ctrl_iface_wpa_get_status(struct wpa_supplicant *wpa_s, char *buf,
 389                                  size_t buflen, int verbose)
 390 {
 391         char *pos = buf, *end = buf + buflen;
 392         int ret;
 393         struct hostapd_bss_config *conf;
 394
 395         if (wpa_s->ap_iface == NULL)
 396                 return -1;
 397
 398         conf = wpa_s->ap_iface->bss[0]->conf;
 399         if (conf->wpa == 0)
 400                 return 0;
 401
 402         ret = os_snprintf(pos, end - pos,
 403                           "pairwise_cipher=%s\n"
 404                           "group_cipher=%s\n"
 405                           "key_mgmt=%s\n",
 406                           wpa_cipher_txt(conf->rsn_pairwise),
 407                           wpa_cipher_txt(conf->wpa_group),
 408                           wpa_key_mgmt_txt(conf->wpa_key_mgmt,
 409                                            conf->wpa));
 410         if (ret < 0 || ret >= end - pos)
 411                 return pos - buf;
 412         pos += ret;
 413         return pos - buf;
 414 }
 415
 416 #endif /* CONFIG_CTRL_IFACE */
 417
 418
 419 int wpa_supplicant_ap_mac_addr_filter(struct wpa_supplicant *wpa_s,
 420                                       const u8 *addr)
 421 {
 422         struct hostapd_data *hapd;
 423         struct hostapd_bss_config *conf;
 424
 425         if (!wpa_s->ap_iface)
 426                 return -1;
 427
 428         if (addr)
 429                 wpa_printf(MSG_DEBUG, "AP: Set MAC address filter: " MACSTR,
 430                            MAC2STR(addr));
 431         else
 432                 wpa_printf(MSG_DEBUG, "AP: Clear MAC address filter");
 433
 434         hapd = wpa_s->ap_iface->bss[0];
 435         conf = hapd->conf;
 436
 437         os_free(conf->accept_mac);
 438         conf->accept_mac = NULL;
 439         conf->num_accept_mac = 0;
 440         os_free(conf->deny_mac);
 441         conf->deny_mac = NULL;
 442         conf->num_deny_mac = 0;
 443
 444         if (addr == NULL) {
 445                 conf->macaddr_acl = ACCEPT_UNLESS_DENIED;
 446                 return 0;
 447         }
 448
 449         conf->macaddr_acl = DENY_UNLESS_ACCEPTED;
 450         conf->accept_mac = os_zalloc(sizeof(struct mac_acl_entry));
 451         if (conf->accept_mac == NULL)
 452                 return -1;
 453         os_memcpy(conf->accept_mac[0].addr, addr, ETH_ALEN);
 454         conf->num_accept_mac = 1;
 455
 456         return 0;
 457 }