3 * Copyright (c) 2003-2015, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
16 #include "crypto/random.h"
17 #include "crypto/sha1.h"
18 #include "eapol_supp/eapol_supp_sm.h"
19 #include "eap_peer/eap.h"
20 #include "eap_peer/eap_proxy.h"
21 #include "eap_server/eap_methods.h"
22 #include "rsn_supp/wpa.h"
25 #include "utils/ext_password.h"
26 #include "l2_packet/l2_packet.h"
27 #include "wpa_supplicant_i.h"
29 #include "ctrl_iface.h"
30 #include "pcsc_funcs.h"
31 #include "common/version.h"
32 #include "rsn_supp/preauth.h"
33 #include "rsn_supp/pmksa_cache.h"
34 #include "common/wpa_ctrl.h"
35 #include "common/ieee802_11_defs.h"
36 #include "common/hw_features_common.h"
38 #include "blacklist.h"
39 #include "wpas_glue.h"
40 #include "wps_supplicant.h"
43 #include "gas_query.h"
45 #include "p2p_supplicant.h"
46 #include "wifi_display.h"
52 #include "offchannel.h"
53 #include "hs20_supplicant.h"
58 const char *wpa_supplicant_version =
59 "wpa_supplicant v" VERSION_STR "\n"
60 "Copyright (c) 2003-2015, Jouni Malinen <j@w1.fi> and contributors";
62 const char *wpa_supplicant_license =
63 "This software may be distributed under the terms of the BSD license.\n"
64 "See README for more details.\n"
65 #ifdef EAP_TLS_OPENSSL
66 "\nThis product includes software developed by the OpenSSL Project\n"
67 "for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
68 #endif /* EAP_TLS_OPENSSL */
71 #ifndef CONFIG_NO_STDOUT_DEBUG
72 /* Long text divided into parts in order to fit in C89 strings size limits. */
73 const char *wpa_supplicant_full_license1 =
75 const char *wpa_supplicant_full_license2 =
76 "This software may be distributed under the terms of the BSD license.\n"
78 "Redistribution and use in source and binary forms, with or without\n"
79 "modification, are permitted provided that the following conditions are\n"
82 const char *wpa_supplicant_full_license3 =
83 "1. Redistributions of source code must retain the above copyright\n"
84 " notice, this list of conditions and the following disclaimer.\n"
86 "2. Redistributions in binary form must reproduce the above copyright\n"
87 " notice, this list of conditions and the following disclaimer in the\n"
88 " documentation and/or other materials provided with the distribution.\n"
90 const char *wpa_supplicant_full_license4 =
91 "3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
92 " names of its contributors may be used to endorse or promote products\n"
93 " derived from this software without specific prior written permission.\n"
95 "THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
96 "\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
97 "LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
98 "A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
99 const char *wpa_supplicant_full_license5 =
100 "OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
101 "SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
102 "LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
103 "DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
104 "THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
105 "(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
106 "OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
108 #endif /* CONFIG_NO_STDOUT_DEBUG */
110 /* Configure default/group WEP keys for static WEP */
111 int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
115 for (i = 0; i < NUM_WEP_KEYS; i++) {
116 if (ssid->wep_key_len[i] == 0)
120 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
121 i, i == ssid->wep_tx_keyidx, NULL, 0,
122 ssid->wep_key[i], ssid->wep_key_len[i]);
129 int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
130 struct wpa_ssid *ssid)
138 /* IBSS/WPA-None uses only one key (Group) for both receiving and
139 * sending unicast and multicast packets. */
141 if (ssid->mode != WPAS_MODE_IBSS) {
142 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
143 "IBSS/ad-hoc) for WPA-None", ssid->mode);
147 if (!ssid->psk_set) {
148 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
153 switch (wpa_s->group_cipher) {
154 case WPA_CIPHER_CCMP:
155 os_memcpy(key, ssid->psk, 16);
159 case WPA_CIPHER_GCMP:
160 os_memcpy(key, ssid->psk, 16);
164 case WPA_CIPHER_TKIP:
165 /* WPA-None uses the same Michael MIC key for both TX and RX */
166 os_memcpy(key, ssid->psk, 16 + 8);
167 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
172 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
173 "WPA-None", wpa_s->group_cipher);
177 /* TODO: should actually remember the previously used seq#, both for TX
178 * and RX from each STA.. */
180 ret = wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
181 os_memset(key, 0, sizeof(key));
186 static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
188 struct wpa_supplicant *wpa_s = eloop_ctx;
189 const u8 *bssid = wpa_s->bssid;
190 if (is_zero_ether_addr(bssid))
191 bssid = wpa_s->pending_bssid;
192 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
194 wpa_blacklist_add(wpa_s, bssid);
195 wpa_sm_notify_disassoc(wpa_s->wpa);
196 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
197 wpa_s->reassociate = 1;
200 * If we timed out, the AP or the local radio may be busy.
201 * So, wait a second until scanning again.
203 wpa_supplicant_req_scan(wpa_s, 1, 0);
208 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
209 * @wpa_s: Pointer to wpa_supplicant data
210 * @sec: Number of seconds after which to time out authentication
211 * @usec: Number of microseconds after which to time out authentication
213 * This function is used to schedule a timeout for the current authentication
216 void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
219 if (wpa_s->conf->ap_scan == 0 &&
220 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
223 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
224 "%d usec", sec, usec);
225 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
226 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
231 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
232 * @wpa_s: Pointer to wpa_supplicant data
234 * This function is used to cancel authentication timeout scheduled with
235 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
238 void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
240 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
241 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
242 wpa_blacklist_del(wpa_s, wpa_s->bssid);
247 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
248 * @wpa_s: Pointer to wpa_supplicant data
250 * This function is used to configure EAPOL state machine based on the selected
251 * authentication mode.
253 void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
255 #ifdef IEEE8021X_EAPOL
256 struct eapol_config eapol_conf;
257 struct wpa_ssid *ssid = wpa_s->current_ssid;
259 #ifdef CONFIG_IBSS_RSN
260 if (ssid->mode == WPAS_MODE_IBSS &&
261 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
262 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
264 * RSN IBSS authentication is per-STA and we can disable the
265 * per-BSSID EAPOL authentication.
267 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
268 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
269 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
272 #endif /* CONFIG_IBSS_RSN */
274 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
275 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
277 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
278 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
279 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
281 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
283 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
284 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
285 eapol_conf.accept_802_1x_keys = 1;
286 eapol_conf.required_keys = 0;
287 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
288 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
290 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
291 eapol_conf.required_keys |=
292 EAPOL_REQUIRE_KEY_BROADCAST;
295 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
296 eapol_conf.required_keys = 0;
298 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
299 eapol_conf.workaround = ssid->eap_workaround;
300 eapol_conf.eap_disabled =
301 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
302 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
303 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
304 eapol_conf.external_sim = wpa_s->conf->external_sim;
307 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
308 eapol_conf.wps |= EAPOL_LOCAL_WPS_IN_USE;
309 if (wpa_s->current_bss) {
311 ie = wpa_bss_get_vendor_ie_multi(wpa_s->current_bss,
316 EAPOL_PEER_IS_WPS20_AP;
321 #endif /* CONFIG_WPS */
323 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
325 ieee802_1x_alloc_kay_sm(wpa_s, ssid);
326 #endif /* IEEE8021X_EAPOL */
331 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
332 * @wpa_s: Pointer to wpa_supplicant data
333 * @ssid: Configuration data for the network
335 * This function is used to configure WPA state machine and related parameters
336 * to a mode where WPA is not enabled. This is called as part of the
337 * authentication configuration when the selected network does not use WPA.
339 void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
340 struct wpa_ssid *ssid)
344 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
345 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
346 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
347 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
349 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
350 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
351 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
352 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
353 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
354 wpa_s->group_cipher = WPA_CIPHER_NONE;
355 wpa_s->mgmt_group_cipher = 0;
357 for (i = 0; i < NUM_WEP_KEYS; i++) {
358 if (ssid->wep_key_len[i] > 5) {
359 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
360 wpa_s->group_cipher = WPA_CIPHER_WEP104;
362 } else if (ssid->wep_key_len[i] > 0) {
363 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
364 wpa_s->group_cipher = WPA_CIPHER_WEP40;
369 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
370 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
371 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
372 wpa_s->pairwise_cipher);
373 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
374 #ifdef CONFIG_IEEE80211W
375 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
376 wpa_s->mgmt_group_cipher);
377 #endif /* CONFIG_IEEE80211W */
379 pmksa_cache_clear_current(wpa_s->wpa);
383 void free_hw_features(struct wpa_supplicant *wpa_s)
386 if (wpa_s->hw.modes == NULL)
389 for (i = 0; i < wpa_s->hw.num_modes; i++) {
390 os_free(wpa_s->hw.modes[i].channels);
391 os_free(wpa_s->hw.modes[i].rates);
394 os_free(wpa_s->hw.modes);
395 wpa_s->hw.modes = NULL;
399 static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
403 bgscan_deinit(wpa_s);
404 autoscan_deinit(wpa_s);
405 scard_deinit(wpa_s->scard);
407 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
408 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
409 l2_packet_deinit(wpa_s->l2);
412 l2_packet_deinit(wpa_s->l2_br);
415 #ifdef CONFIG_TESTING_OPTIONS
416 l2_packet_deinit(wpa_s->l2_test);
417 wpa_s->l2_test = NULL;
418 #endif /* CONFIG_TESTING_OPTIONS */
420 if (wpa_s->conf != NULL) {
421 struct wpa_ssid *ssid;
422 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
423 wpas_notify_network_removed(wpa_s, ssid);
426 os_free(wpa_s->confname);
427 wpa_s->confname = NULL;
429 os_free(wpa_s->confanother);
430 wpa_s->confanother = NULL;
432 wpa_sm_set_eapol(wpa_s->wpa, NULL);
433 eapol_sm_deinit(wpa_s->eapol);
436 rsn_preauth_deinit(wpa_s->wpa);
439 wpa_tdls_deinit(wpa_s->wpa);
440 #endif /* CONFIG_TDLS */
442 wmm_ac_clear_saved_tspecs(wpa_s);
443 pmksa_candidate_free(wpa_s->wpa);
444 wpa_sm_deinit(wpa_s->wpa);
446 wpa_blacklist_clear(wpa_s);
448 wpa_bss_deinit(wpa_s);
450 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
451 wpa_supplicant_cancel_scan(wpa_s);
452 wpa_supplicant_cancel_auth_timeout(wpa_s);
453 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
454 #ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
455 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
457 #endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
459 eloop_cancel_timeout(wpas_network_reenabled, wpa_s, NULL);
461 wpas_wps_deinit(wpa_s);
463 wpabuf_free(wpa_s->pending_eapol_rx);
464 wpa_s->pending_eapol_rx = NULL;
466 #ifdef CONFIG_IBSS_RSN
467 ibss_rsn_deinit(wpa_s->ibss_rsn);
468 wpa_s->ibss_rsn = NULL;
469 #endif /* CONFIG_IBSS_RSN */
474 wpa_supplicant_ap_deinit(wpa_s);
475 #endif /* CONFIG_AP */
477 wpas_p2p_deinit(wpa_s);
479 #ifdef CONFIG_OFFCHANNEL
480 offchannel_deinit(wpa_s);
481 #endif /* CONFIG_OFFCHANNEL */
483 wpa_supplicant_cancel_sched_scan(wpa_s);
485 os_free(wpa_s->next_scan_freqs);
486 wpa_s->next_scan_freqs = NULL;
488 os_free(wpa_s->manual_scan_freqs);
489 wpa_s->manual_scan_freqs = NULL;
491 os_free(wpa_s->manual_sched_scan_freqs);
492 wpa_s->manual_sched_scan_freqs = NULL;
494 wpas_mac_addr_rand_scan_clear(wpa_s, MAC_ADDR_RAND_ALL);
496 gas_query_deinit(wpa_s->gas);
499 free_hw_features(wpa_s);
501 ieee802_1x_dealloc_kay_sm(wpa_s);
503 os_free(wpa_s->bssid_filter);
504 wpa_s->bssid_filter = NULL;
506 os_free(wpa_s->disallow_aps_bssid);
507 wpa_s->disallow_aps_bssid = NULL;
508 os_free(wpa_s->disallow_aps_ssid);
509 wpa_s->disallow_aps_ssid = NULL;
511 wnm_bss_keep_alive_deinit(wpa_s);
513 wnm_deallocate_memory(wpa_s);
514 #endif /* CONFIG_WNM */
516 ext_password_deinit(wpa_s->ext_pw);
517 wpa_s->ext_pw = NULL;
519 wpabuf_free(wpa_s->last_gas_resp);
520 wpa_s->last_gas_resp = NULL;
521 wpabuf_free(wpa_s->prev_gas_resp);
522 wpa_s->prev_gas_resp = NULL;
524 os_free(wpa_s->last_scan_res);
525 wpa_s->last_scan_res = NULL;
529 #endif /* CONFIG_HS20 */
531 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
532 wpabuf_free(wpa_s->vendor_elem[i]);
533 wpa_s->vendor_elem[i] = NULL;
536 wmm_ac_notify_disassoc(wpa_s);
541 * wpa_clear_keys - Clear keys configured for the driver
542 * @wpa_s: Pointer to wpa_supplicant data
543 * @addr: Previously used BSSID or %NULL if not available
545 * This function clears the encryption keys that has been previously configured
548 void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
552 #ifdef CONFIG_IEEE80211W
554 #else /* CONFIG_IEEE80211W */
556 #endif /* CONFIG_IEEE80211W */
558 /* MLME-DELETEKEYS.request */
559 for (i = 0; i < max; i++) {
560 if (wpa_s->keys_cleared & BIT(i))
562 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, i, 0, NULL, 0,
565 if (!(wpa_s->keys_cleared & BIT(0)) && addr &&
566 !is_zero_ether_addr(addr)) {
567 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
569 /* MLME-SETPROTECTION.request(None) */
570 wpa_drv_mlme_setprotection(
572 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
573 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
575 wpa_s->keys_cleared = (u32) -1;
580 * wpa_supplicant_state_txt - Get the connection state name as a text string
581 * @state: State (wpa_state; WPA_*)
582 * Returns: The state name as a printable text string
584 const char * wpa_supplicant_state_txt(enum wpa_states state)
587 case WPA_DISCONNECTED:
588 return "DISCONNECTED";
591 case WPA_INTERFACE_DISABLED:
592 return "INTERFACE_DISABLED";
595 case WPA_AUTHENTICATING:
596 return "AUTHENTICATING";
597 case WPA_ASSOCIATING:
598 return "ASSOCIATING";
601 case WPA_4WAY_HANDSHAKE:
602 return "4WAY_HANDSHAKE";
603 case WPA_GROUP_HANDSHAKE:
604 return "GROUP_HANDSHAKE";
615 static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
619 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
620 name = wpa_s->current_ssid->bgscan;
622 name = wpa_s->conf->bgscan;
623 if (name == NULL || name[0] == '\0')
625 if (wpas_driver_bss_selection(wpa_s))
627 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
630 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE)
632 #endif /* CONFIG_P2P */
634 bgscan_deinit(wpa_s);
635 if (wpa_s->current_ssid) {
636 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
637 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
640 * Live without bgscan; it is only used as a roaming
641 * optimization, so the initial connection is not
645 struct wpa_scan_results *scan_res;
646 wpa_s->bgscan_ssid = wpa_s->current_ssid;
647 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
650 bgscan_notify_scan(wpa_s, scan_res);
651 wpa_scan_results_free(scan_res);
655 wpa_s->bgscan_ssid = NULL;
659 static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
661 if (wpa_s->bgscan_ssid != NULL) {
662 bgscan_deinit(wpa_s);
663 wpa_s->bgscan_ssid = NULL;
667 #endif /* CONFIG_BGSCAN */
670 static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
672 if (autoscan_init(wpa_s, 0))
673 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
677 static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
679 autoscan_deinit(wpa_s);
683 void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
685 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
686 wpa_s->wpa_state == WPA_SCANNING) {
687 autoscan_deinit(wpa_s);
688 wpa_supplicant_start_autoscan(wpa_s);
694 * wpa_supplicant_set_state - Set current connection state
695 * @wpa_s: Pointer to wpa_supplicant data
696 * @state: The new connection state
698 * This function is called whenever the connection state changes, e.g.,
699 * association is completed for WPA/WPA2 4-Way Handshake is started.
701 void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
702 enum wpa_states state)
704 enum wpa_states old_state = wpa_s->wpa_state;
706 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
707 wpa_supplicant_state_txt(wpa_s->wpa_state),
708 wpa_supplicant_state_txt(state));
710 if (state == WPA_INTERFACE_DISABLED) {
711 /* Assure normal scan when interface is restored */
712 wpa_s->normal_scans = 0;
715 if (state == WPA_COMPLETED) {
716 wpas_connect_work_done(wpa_s);
717 /* Reinitialize normal_scan counter */
718 wpa_s->normal_scans = 0;
721 if (state != WPA_SCANNING)
722 wpa_supplicant_notify_scanning(wpa_s, 0);
724 if (state == WPA_COMPLETED && wpa_s->new_connection) {
725 struct wpa_ssid *ssid = wpa_s->current_ssid;
726 #if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
727 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
728 MACSTR " completed [id=%d id_str=%s]",
729 MAC2STR(wpa_s->bssid),
730 ssid ? ssid->id : -1,
731 ssid && ssid->id_str ? ssid->id_str : "");
732 #endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
733 wpas_clear_temp_disabled(wpa_s, ssid, 1);
734 wpa_s->extra_blacklist_count = 0;
735 wpa_s->new_connection = 0;
736 wpa_drv_set_operstate(wpa_s, 1);
737 #ifndef IEEE8021X_EAPOL
738 wpa_drv_set_supp_port(wpa_s, 1);
739 #endif /* IEEE8021X_EAPOL */
740 wpa_s->after_wps = 0;
741 wpa_s->known_wps_freq = 0;
742 wpas_p2p_completed(wpa_s);
744 sme_sched_obss_scan(wpa_s, 1);
745 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
746 state == WPA_ASSOCIATED) {
747 wpa_s->new_connection = 1;
748 wpa_drv_set_operstate(wpa_s, 0);
749 #ifndef IEEE8021X_EAPOL
750 wpa_drv_set_supp_port(wpa_s, 0);
751 #endif /* IEEE8021X_EAPOL */
752 sme_sched_obss_scan(wpa_s, 0);
754 wpa_s->wpa_state = state;
757 if (state == WPA_COMPLETED)
758 wpa_supplicant_start_bgscan(wpa_s);
759 else if (state < WPA_ASSOCIATED)
760 wpa_supplicant_stop_bgscan(wpa_s);
761 #endif /* CONFIG_BGSCAN */
763 if (state == WPA_AUTHENTICATING)
764 wpa_supplicant_stop_autoscan(wpa_s);
766 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
767 wpa_supplicant_start_autoscan(wpa_s);
769 if (old_state >= WPA_ASSOCIATED && wpa_s->wpa_state < WPA_ASSOCIATED)
770 wmm_ac_notify_disassoc(wpa_s);
772 if (wpa_s->wpa_state != old_state) {
773 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
776 * Notify the P2P Device interface about a state change in one
779 wpas_p2p_indicate_state_change(wpa_s);
781 if (wpa_s->wpa_state == WPA_COMPLETED ||
782 old_state == WPA_COMPLETED)
783 wpas_notify_auth_changed(wpa_s);
788 void wpa_supplicant_terminate_proc(struct wpa_global *global)
792 struct wpa_supplicant *wpa_s = global->ifaces;
794 struct wpa_supplicant *next = wpa_s->next;
795 if (wpas_wps_terminate_pending(wpa_s) == 1)
798 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
799 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
800 wpas_p2p_disconnect(wpa_s);
801 #endif /* CONFIG_P2P */
804 #endif /* CONFIG_WPS */
811 static void wpa_supplicant_terminate(int sig, void *signal_ctx)
813 struct wpa_global *global = signal_ctx;
814 wpa_supplicant_terminate_proc(global);
818 void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
820 enum wpa_states old_state = wpa_s->wpa_state;
822 wpa_s->pairwise_cipher = 0;
823 wpa_s->group_cipher = 0;
824 wpa_s->mgmt_group_cipher = 0;
826 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
827 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
829 if (wpa_s->wpa_state != old_state)
830 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
835 * wpa_supplicant_reload_configuration - Reload configuration data
836 * @wpa_s: Pointer to wpa_supplicant data
837 * Returns: 0 on success or -1 if configuration parsing failed
839 * This function can be used to request that the configuration data is reloaded
840 * (e.g., after configuration file change). This function is reloading
841 * configuration only for one interface, so this may need to be called multiple
842 * times if %wpa_supplicant is controlling multiple interfaces and all
843 * interfaces need reconfiguration.
845 int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
847 struct wpa_config *conf;
851 if (wpa_s->confname == NULL)
853 conf = wpa_config_read(wpa_s->confname, NULL);
855 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
856 "file '%s' - exiting", wpa_s->confname);
859 wpa_config_read(wpa_s->confanother, conf);
861 conf->changed_parameters = (unsigned int) -1;
863 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
864 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
865 os_strcmp(conf->ctrl_interface,
866 wpa_s->conf->ctrl_interface) != 0);
868 if (reconf_ctrl && wpa_s->ctrl_iface) {
869 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
870 wpa_s->ctrl_iface = NULL;
873 eapol_sm_invalidate_cached_session(wpa_s->eapol);
874 if (wpa_s->current_ssid) {
875 wpa_s->own_disconnect_req = 1;
876 wpa_supplicant_deauthenticate(wpa_s,
877 WLAN_REASON_DEAUTH_LEAVING);
881 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
882 * pkcs11_engine_path, pkcs11_module_path, openssl_ciphers.
884 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
886 * Clear forced success to clear EAP state for next
889 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
891 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
892 wpa_sm_set_config(wpa_s->wpa, NULL);
893 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
894 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
895 rsn_preauth_deinit(wpa_s->wpa);
897 old_ap_scan = wpa_s->conf->ap_scan;
898 wpa_config_free(wpa_s->conf);
900 if (old_ap_scan != wpa_s->conf->ap_scan)
901 wpas_notify_ap_scan_changed(wpa_s);
904 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
906 wpa_supplicant_update_config(wpa_s);
908 wpa_supplicant_clear_status(wpa_s);
909 if (wpa_supplicant_enabled_networks(wpa_s)) {
910 wpa_s->reassociate = 1;
911 wpa_supplicant_req_scan(wpa_s, 0, 0);
913 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
918 static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
920 struct wpa_global *global = signal_ctx;
921 struct wpa_supplicant *wpa_s;
922 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
923 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
925 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
926 wpa_supplicant_terminate_proc(global);
932 static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
933 struct wpa_ssid *ssid,
934 struct wpa_ie_data *ie)
936 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
939 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
940 "from association info");
945 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
947 if (!(ie->group_cipher & ssid->group_cipher)) {
948 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
949 "cipher 0x%x (mask 0x%x) - reject",
950 ie->group_cipher, ssid->group_cipher);
953 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
954 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
955 "cipher 0x%x (mask 0x%x) - reject",
956 ie->pairwise_cipher, ssid->pairwise_cipher);
959 if (!(ie->key_mgmt & ssid->key_mgmt)) {
960 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
961 "management 0x%x (mask 0x%x) - reject",
962 ie->key_mgmt, ssid->key_mgmt);
966 #ifdef CONFIG_IEEE80211W
967 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
968 wpas_get_ssid_pmf(wpa_s, ssid) == MGMT_FRAME_PROTECTION_REQUIRED) {
969 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
970 "that does not support management frame protection - "
974 #endif /* CONFIG_IEEE80211W */
981 * wpa_supplicant_set_suites - Set authentication and encryption parameters
982 * @wpa_s: Pointer to wpa_supplicant data
983 * @bss: Scan results for the selected BSS, or %NULL if not available
984 * @ssid: Configuration data for the selected network
985 * @wpa_ie: Buffer for the WPA/RSN IE
986 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
987 * used buffer length in case the functions returns success.
988 * Returns: 0 on success or -1 on failure
990 * This function is used to configure authentication and encryption parameters
991 * based on the network configuration and scan result for the selected BSS (if
994 int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
995 struct wpa_bss *bss, struct wpa_ssid *ssid,
996 u8 *wpa_ie, size_t *wpa_ie_len)
998 struct wpa_ie_data ie;
1000 const u8 *bss_wpa, *bss_rsn, *bss_osen;
1003 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
1004 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
1005 bss_osen = wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE);
1007 bss_wpa = bss_rsn = bss_osen = NULL;
1009 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
1010 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
1011 (ie.group_cipher & ssid->group_cipher) &&
1012 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1013 (ie.key_mgmt & ssid->key_mgmt)) {
1014 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
1015 proto = WPA_PROTO_RSN;
1016 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
1017 wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie) == 0 &&
1018 (ie.group_cipher & ssid->group_cipher) &&
1019 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1020 (ie.key_mgmt & ssid->key_mgmt)) {
1021 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
1022 proto = WPA_PROTO_WPA;
1024 } else if (bss_osen && (ssid->proto & WPA_PROTO_OSEN)) {
1025 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using OSEN");
1026 /* TODO: parse OSEN element */
1027 os_memset(&ie, 0, sizeof(ie));
1028 ie.group_cipher = WPA_CIPHER_CCMP;
1029 ie.pairwise_cipher = WPA_CIPHER_CCMP;
1030 ie.key_mgmt = WPA_KEY_MGMT_OSEN;
1031 proto = WPA_PROTO_OSEN;
1032 #endif /* CONFIG_HS20 */
1034 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
1035 wpa_dbg(wpa_s, MSG_DEBUG,
1036 "WPA: ssid proto=0x%x pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1037 ssid->proto, ssid->pairwise_cipher, ssid->group_cipher,
1039 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: BSS " MACSTR " ssid='%s'%s%s%s",
1040 MAC2STR(bss->bssid),
1041 wpa_ssid_txt(bss->ssid, bss->ssid_len),
1042 bss_wpa ? " WPA" : "",
1043 bss_rsn ? " RSN" : "",
1044 bss_osen ? " OSEN" : "");
1046 wpa_hexdump(MSG_DEBUG, "RSN", bss_rsn, 2 + bss_rsn[1]);
1047 if (wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie)) {
1048 wpa_dbg(wpa_s, MSG_DEBUG,
1049 "Could not parse RSN element");
1051 wpa_dbg(wpa_s, MSG_DEBUG,
1052 "RSN: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1053 ie.pairwise_cipher, ie.group_cipher,
1058 wpa_hexdump(MSG_DEBUG, "WPA", bss_wpa, 2 + bss_wpa[1]);
1059 if (wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie)) {
1060 wpa_dbg(wpa_s, MSG_DEBUG,
1061 "Could not parse WPA element");
1063 wpa_dbg(wpa_s, MSG_DEBUG,
1064 "WPA: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1065 ie.pairwise_cipher, ie.group_cipher,
1071 if (ssid->proto & WPA_PROTO_OSEN)
1072 proto = WPA_PROTO_OSEN;
1073 else if (ssid->proto & WPA_PROTO_RSN)
1074 proto = WPA_PROTO_RSN;
1076 proto = WPA_PROTO_WPA;
1077 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
1078 os_memset(&ie, 0, sizeof(ie));
1079 ie.group_cipher = ssid->group_cipher;
1080 ie.pairwise_cipher = ssid->pairwise_cipher;
1081 ie.key_mgmt = ssid->key_mgmt;
1082 #ifdef CONFIG_IEEE80211W
1083 ie.mgmt_group_cipher =
1084 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
1085 WPA_CIPHER_AES_128_CMAC : 0;
1086 #endif /* CONFIG_IEEE80211W */
1087 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1088 "based on configuration");
1093 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1094 "pairwise %d key_mgmt %d proto %d",
1095 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
1096 #ifdef CONFIG_IEEE80211W
1097 if (ssid->ieee80211w) {
1098 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1099 ie.mgmt_group_cipher);
1101 #endif /* CONFIG_IEEE80211W */
1103 wpa_s->wpa_proto = proto;
1104 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1105 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1106 !!(ssid->proto & (WPA_PROTO_RSN | WPA_PROTO_OSEN)));
1108 if (bss || !wpa_s->ap_ies_from_associnfo) {
1109 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1110 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1111 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1112 bss_rsn ? 2 + bss_rsn[1] : 0))
1116 sel = ie.group_cipher & ssid->group_cipher;
1117 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1118 if (wpa_s->group_cipher < 0) {
1119 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1123 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1124 wpa_cipher_txt(wpa_s->group_cipher));
1126 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
1127 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1128 if (wpa_s->pairwise_cipher < 0) {
1129 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1133 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1134 wpa_cipher_txt(wpa_s->pairwise_cipher));
1136 sel = ie.key_mgmt & ssid->key_mgmt;
1138 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1139 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1140 #endif /* CONFIG_SAE */
1142 #ifdef CONFIG_SUITEB192
1143 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B_192) {
1144 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B_192;
1145 wpa_dbg(wpa_s, MSG_DEBUG,
1146 "WPA: using KEY_MGMT 802.1X with Suite B (192-bit)");
1147 #endif /* CONFIG_SUITEB192 */
1148 #ifdef CONFIG_SUITEB
1149 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B) {
1150 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B;
1151 wpa_dbg(wpa_s, MSG_DEBUG,
1152 "WPA: using KEY_MGMT 802.1X with Suite B");
1153 #endif /* CONFIG_SUITEB */
1154 #ifdef CONFIG_IEEE80211R
1155 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1156 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
1157 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
1158 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1159 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
1160 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
1161 #endif /* CONFIG_IEEE80211R */
1163 } else if (sel & WPA_KEY_MGMT_SAE) {
1164 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1165 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1166 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1167 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1168 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1169 #endif /* CONFIG_SAE */
1170 #ifdef CONFIG_IEEE80211W
1171 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1172 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
1173 wpa_dbg(wpa_s, MSG_DEBUG,
1174 "WPA: using KEY_MGMT 802.1X with SHA256");
1175 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1176 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
1177 wpa_dbg(wpa_s, MSG_DEBUG,
1178 "WPA: using KEY_MGMT PSK with SHA256");
1179 #endif /* CONFIG_IEEE80211W */
1180 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1181 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
1182 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
1183 } else if (sel & WPA_KEY_MGMT_PSK) {
1184 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
1185 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
1186 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1187 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
1188 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
1190 } else if (sel & WPA_KEY_MGMT_OSEN) {
1191 wpa_s->key_mgmt = WPA_KEY_MGMT_OSEN;
1192 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using KEY_MGMT OSEN");
1193 #endif /* CONFIG_HS20 */
1195 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1196 "authenticated key management type");
1200 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1201 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1202 wpa_s->pairwise_cipher);
1203 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1205 #ifdef CONFIG_IEEE80211W
1206 sel = ie.mgmt_group_cipher;
1207 if (wpas_get_ssid_pmf(wpa_s, ssid) == NO_MGMT_FRAME_PROTECTION ||
1208 !(ie.capabilities & WPA_CAPABILITY_MFPC))
1210 if (sel & WPA_CIPHER_AES_128_CMAC) {
1211 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
1212 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1214 } else if (sel & WPA_CIPHER_BIP_GMAC_128) {
1215 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_128;
1216 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1218 } else if (sel & WPA_CIPHER_BIP_GMAC_256) {
1219 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_256;
1220 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1222 } else if (sel & WPA_CIPHER_BIP_CMAC_256) {
1223 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_CMAC_256;
1224 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1227 wpa_s->mgmt_group_cipher = 0;
1228 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
1230 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1231 wpa_s->mgmt_group_cipher);
1232 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1233 wpas_get_ssid_pmf(wpa_s, ssid));
1234 #endif /* CONFIG_IEEE80211W */
1236 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
1237 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
1241 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
1242 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN, NULL);
1243 #ifndef CONFIG_NO_PBKDF2
1244 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1247 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1248 4096, psk, PMK_LEN);
1249 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1251 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1252 os_memset(psk, 0, sizeof(psk));
1254 #endif /* CONFIG_NO_PBKDF2 */
1255 #ifdef CONFIG_EXT_PASSWORD
1256 if (ssid->ext_psk) {
1257 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1259 char pw_str[64 + 1];
1263 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1264 "found from external storage");
1268 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1269 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1270 "PSK length %d in external storage",
1271 (int) wpabuf_len(pw));
1272 ext_password_free(pw);
1276 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1277 pw_str[wpabuf_len(pw)] = '\0';
1279 #ifndef CONFIG_NO_PBKDF2
1280 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1282 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1283 4096, psk, PMK_LEN);
1284 os_memset(pw_str, 0, sizeof(pw_str));
1285 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1286 "external passphrase)",
1288 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1289 os_memset(psk, 0, sizeof(psk));
1291 #endif /* CONFIG_NO_PBKDF2 */
1292 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1293 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1294 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1295 "Invalid PSK hex string");
1296 os_memset(pw_str, 0, sizeof(pw_str));
1297 ext_password_free(pw);
1300 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1301 os_memset(psk, 0, sizeof(psk));
1303 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1305 os_memset(pw_str, 0, sizeof(pw_str));
1306 ext_password_free(pw);
1310 os_memset(pw_str, 0, sizeof(pw_str));
1311 ext_password_free(pw);
1313 #endif /* CONFIG_EXT_PASSWORD */
1315 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1321 static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
1326 case 0: /* Bits 0-7 */
1328 case 1: /* Bits 8-15 */
1330 case 2: /* Bits 16-23 */
1332 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1333 *pos |= 0x08; /* Bit 19 - BSS Transition */
1334 #endif /* CONFIG_WNM */
1336 case 3: /* Bits 24-31 */
1338 *pos |= 0x02; /* Bit 25 - SSID List */
1339 #endif /* CONFIG_WNM */
1340 #ifdef CONFIG_INTERWORKING
1341 if (wpa_s->conf->interworking)
1342 *pos |= 0x80; /* Bit 31 - Interworking */
1343 #endif /* CONFIG_INTERWORKING */
1345 case 4: /* Bits 32-39 */
1346 #ifdef CONFIG_INTERWORKING
1347 if (wpa_s->drv_flags / WPA_DRIVER_FLAGS_QOS_MAPPING)
1348 *pos |= 0x01; /* Bit 32 - QoS Map */
1349 #endif /* CONFIG_INTERWORKING */
1351 case 5: /* Bits 40-47 */
1353 if (wpa_s->conf->hs20)
1354 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1355 #endif /* CONFIG_HS20 */
1357 case 6: /* Bits 48-55 */
1363 int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf, size_t buflen)
1368 if (len < wpa_s->extended_capa_len)
1369 len = wpa_s->extended_capa_len;
1370 if (buflen < (size_t) len + 2) {
1371 wpa_printf(MSG_INFO,
1372 "Not enough room for building extended capabilities element");
1376 *pos++ = WLAN_EID_EXT_CAPAB;
1378 for (i = 0; i < len; i++, pos++) {
1379 wpas_ext_capab_byte(wpa_s, pos, i);
1381 if (i < wpa_s->extended_capa_len) {
1382 *pos &= ~wpa_s->extended_capa_mask[i];
1383 *pos |= wpa_s->extended_capa[i];
1387 while (len > 0 && buf[1 + len] == 0) {
1398 static int wpas_valid_bss(struct wpa_supplicant *wpa_s,
1399 struct wpa_bss *test_bss)
1401 struct wpa_bss *bss;
1403 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
1404 if (bss == test_bss)
1412 static int wpas_valid_ssid(struct wpa_supplicant *wpa_s,
1413 struct wpa_ssid *test_ssid)
1415 struct wpa_ssid *ssid;
1417 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next) {
1418 if (ssid == test_ssid)
1426 int wpas_valid_bss_ssid(struct wpa_supplicant *wpa_s, struct wpa_bss *test_bss,
1427 struct wpa_ssid *test_ssid)
1429 if (test_bss && !wpas_valid_bss(wpa_s, test_bss))
1432 return test_ssid == NULL || wpas_valid_ssid(wpa_s, test_ssid);
1436 void wpas_connect_work_free(struct wpa_connect_work *cwork)
1444 void wpas_connect_work_done(struct wpa_supplicant *wpa_s)
1446 struct wpa_connect_work *cwork;
1447 struct wpa_radio_work *work = wpa_s->connect_work;
1452 wpa_s->connect_work = NULL;
1455 wpas_connect_work_free(cwork);
1456 radio_work_done(work);
1460 int wpas_update_random_addr(struct wpa_supplicant *wpa_s, int style)
1462 struct os_reltime now;
1465 os_get_reltime(&now);
1466 if (wpa_s->last_mac_addr_style == style &&
1467 wpa_s->last_mac_addr_change.sec != 0 &&
1468 !os_reltime_expired(&now, &wpa_s->last_mac_addr_change,
1469 wpa_s->conf->rand_addr_lifetime)) {
1470 wpa_msg(wpa_s, MSG_DEBUG,
1471 "Previously selected random MAC address has not yet expired");
1477 if (random_mac_addr(addr) < 0)
1481 os_memcpy(addr, wpa_s->perm_addr, ETH_ALEN);
1482 if (random_mac_addr_keep_oui(addr) < 0)
1489 if (wpa_drv_set_mac_addr(wpa_s, addr) < 0) {
1490 wpa_msg(wpa_s, MSG_INFO,
1491 "Failed to set random MAC address");
1495 os_get_reltime(&wpa_s->last_mac_addr_change);
1496 wpa_s->mac_addr_changed = 1;
1497 wpa_s->last_mac_addr_style = style;
1499 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1500 wpa_msg(wpa_s, MSG_INFO,
1501 "Could not update MAC address information");
1505 wpa_msg(wpa_s, MSG_DEBUG, "Using random MAC address " MACSTR,
1512 int wpas_update_random_addr_disassoc(struct wpa_supplicant *wpa_s)
1514 if (wpa_s->wpa_state >= WPA_AUTHENTICATING ||
1515 !wpa_s->conf->preassoc_mac_addr)
1518 return wpas_update_random_addr(wpa_s, wpa_s->conf->preassoc_mac_addr);
1522 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit);
1525 * wpa_supplicant_associate - Request association
1526 * @wpa_s: Pointer to wpa_supplicant data
1527 * @bss: Scan results for the selected BSS, or %NULL if not available
1528 * @ssid: Configuration data for the selected network
1530 * This function is used to request %wpa_supplicant to associate with a BSS.
1532 void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
1533 struct wpa_bss *bss, struct wpa_ssid *ssid)
1535 struct wpa_connect_work *cwork;
1538 if (ssid->mac_addr == -1)
1539 rand_style = wpa_s->conf->mac_addr;
1541 rand_style = ssid->mac_addr;
1543 wmm_ac_clear_saved_tspecs(wpa_s);
1544 wpa_s->reassoc_same_bss = 0;
1546 if (wpa_s->last_ssid == ssid) {
1547 wpa_dbg(wpa_s, MSG_DEBUG, "Re-association to the same ESS");
1548 if (wpa_s->current_bss && wpa_s->current_bss == bss) {
1549 wmm_ac_save_tspecs(wpa_s);
1550 wpa_s->reassoc_same_bss = 1;
1552 } else if (rand_style > 0) {
1553 if (wpas_update_random_addr(wpa_s, rand_style) < 0)
1555 wpa_sm_pmksa_cache_flush(wpa_s->wpa, ssid);
1556 } else if (wpa_s->mac_addr_changed) {
1557 if (wpa_drv_set_mac_addr(wpa_s, NULL) < 0) {
1558 wpa_msg(wpa_s, MSG_INFO,
1559 "Could not restore permanent MAC address");
1562 wpa_s->mac_addr_changed = 0;
1563 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1564 wpa_msg(wpa_s, MSG_INFO,
1565 "Could not update MAC address information");
1568 wpa_msg(wpa_s, MSG_DEBUG, "Using permanent MAC address");
1570 wpa_s->last_ssid = ssid;
1572 #ifdef CONFIG_IBSS_RSN
1573 ibss_rsn_deinit(wpa_s->ibss_rsn);
1574 wpa_s->ibss_rsn = NULL;
1575 #endif /* CONFIG_IBSS_RSN */
1577 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1578 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1580 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
1581 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1585 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1586 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1587 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1588 wpas_p2p_ap_setup_failed(wpa_s);
1591 wpa_s->current_bss = bss;
1592 #else /* CONFIG_AP */
1593 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1595 #endif /* CONFIG_AP */
1599 if (ssid->mode == WPAS_MODE_MESH) {
1601 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_MESH)) {
1602 wpa_msg(wpa_s, MSG_INFO,
1603 "Driver does not support mesh mode");
1607 ssid->frequency = bss->freq;
1608 if (wpa_supplicant_join_mesh(wpa_s, ssid) < 0) {
1609 wpa_msg(wpa_s, MSG_ERROR, "Could not join mesh");
1612 wpa_s->current_bss = bss;
1613 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_STARTED
1614 "ssid=\"%s\" id=%d",
1615 wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
1617 #else /* CONFIG_MESH */
1618 wpa_msg(wpa_s, MSG_ERROR,
1619 "mesh mode support not included in the build");
1620 #endif /* CONFIG_MESH */
1626 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1628 #endif /* CONFIG_TDLS */
1630 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1631 ssid->mode == IEEE80211_MODE_INFRA) {
1632 sme_authenticate(wpa_s, bss, ssid);
1636 if (wpa_s->connect_work) {
1637 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since connect_work exist");
1641 if (radio_work_pending(wpa_s, "connect")) {
1642 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since pending work exist");
1646 cwork = os_zalloc(sizeof(*cwork));
1653 if (radio_add_work(wpa_s, bss ? bss->freq : 0, "connect", 1,
1654 wpas_start_assoc_cb, cwork) < 0) {
1660 static int bss_is_ibss(struct wpa_bss *bss)
1662 return (bss->caps & (IEEE80211_CAP_ESS | IEEE80211_CAP_IBSS)) ==
1667 void ibss_mesh_setup_freq(struct wpa_supplicant *wpa_s,
1668 const struct wpa_ssid *ssid,
1669 struct hostapd_freq_params *freq)
1671 enum hostapd_hw_mode hw_mode;
1672 struct hostapd_hw_modes *mode = NULL;
1673 int ht40plus[] = { 36, 44, 52, 60, 100, 108, 116, 124, 132, 149, 157,
1675 int vht80[] = { 36, 52, 100, 116, 132, 149 };
1676 struct hostapd_channel_data *pri_chan = NULL, *sec_chan = NULL;
1678 int i, chan_idx, ht40 = -1, res, obss_scan = 1;
1680 struct hostapd_freq_params vht_freq;
1682 freq->freq = ssid->frequency;
1684 for (j = 0; j < wpa_s->last_scan_res_used; j++) {
1685 struct wpa_bss *bss = wpa_s->last_scan_res[j];
1687 if (ssid->mode != WPAS_MODE_IBSS)
1690 /* Don't adjust control freq in case of fixed_freq */
1691 if (ssid->fixed_freq)
1694 if (!bss_is_ibss(bss))
1697 if (ssid->ssid_len == bss->ssid_len &&
1698 os_memcmp(ssid->ssid, bss->ssid, bss->ssid_len) == 0) {
1699 wpa_printf(MSG_DEBUG,
1700 "IBSS already found in scan results, adjust control freq: %d",
1702 freq->freq = bss->freq;
1708 /* For IBSS check HT_IBSS flag */
1709 if (ssid->mode == WPAS_MODE_IBSS &&
1710 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_HT_IBSS))
1713 if (wpa_s->group_cipher == WPA_CIPHER_WEP40 ||
1714 wpa_s->group_cipher == WPA_CIPHER_WEP104 ||
1715 wpa_s->pairwise_cipher == WPA_CIPHER_TKIP) {
1716 wpa_printf(MSG_DEBUG,
1717 "IBSS: WEP/TKIP detected, do not try to enable HT");
1721 hw_mode = ieee80211_freq_to_chan(freq->freq, &channel);
1722 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
1723 if (wpa_s->hw.modes[i].mode == hw_mode) {
1724 mode = &wpa_s->hw.modes[i];
1732 freq->ht_enabled = ht_supported(mode);
1733 if (!freq->ht_enabled)
1736 /* Setup higher BW only for 5 GHz */
1737 if (mode->mode != HOSTAPD_MODE_IEEE80211A)
1740 for (chan_idx = 0; chan_idx < mode->num_channels; chan_idx++) {
1741 pri_chan = &mode->channels[chan_idx];
1742 if (pri_chan->chan == channel)
1749 /* Check primary channel flags */
1750 if (pri_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1753 /* Check/setup HT40+/HT40- */
1754 for (j = 0; j < ARRAY_SIZE(ht40plus); j++) {
1755 if (ht40plus[j] == channel) {
1761 /* Find secondary channel */
1762 for (i = 0; i < mode->num_channels; i++) {
1763 sec_chan = &mode->channels[i];
1764 if (sec_chan->chan == channel + ht40 * 4)
1771 /* Check secondary channel flags */
1772 if (sec_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1775 freq->channel = pri_chan->chan;
1779 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40MINUS))
1781 freq->sec_channel_offset = -1;
1784 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40PLUS))
1786 freq->sec_channel_offset = 1;
1792 if (freq->sec_channel_offset && obss_scan) {
1793 struct wpa_scan_results *scan_res;
1795 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL, 0);
1796 if (scan_res == NULL) {
1798 freq->sec_channel_offset = 0;
1802 res = check_40mhz_5g(mode, scan_res, pri_chan->chan,
1807 freq->sec_channel_offset = 0;
1810 /* Configuration allowed */
1813 /* Switch pri/sec channels */
1814 freq->freq = hw_get_freq(mode, sec_chan->chan);
1815 freq->sec_channel_offset = -freq->sec_channel_offset;
1816 freq->channel = sec_chan->chan;
1819 freq->sec_channel_offset = 0;
1823 wpa_scan_results_free(scan_res);
1826 wpa_printf(MSG_DEBUG,
1827 "IBSS/mesh: setup freq channel %d, sec_channel_offset %d",
1828 freq->channel, freq->sec_channel_offset);
1830 /* Not sure if mesh is ready for VHT */
1831 if (ssid->mode != WPAS_MODE_IBSS)
1834 /* For IBSS check VHT_IBSS flag */
1835 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_VHT_IBSS))
1840 vht_freq.vht_enabled = vht_supported(mode);
1841 if (!vht_freq.vht_enabled)
1844 /* setup center_freq1, bandwidth */
1845 for (j = 0; j < ARRAY_SIZE(vht80); j++) {
1846 if (freq->channel >= vht80[j] &&
1847 freq->channel < vht80[j] + 16)
1851 if (j == ARRAY_SIZE(vht80))
1854 for (i = vht80[j]; i < vht80[j] + 16; i += 4) {
1855 struct hostapd_channel_data *chan;
1857 chan = hw_get_channel_chan(mode, i, NULL);
1861 /* Back to HT configuration if channel not usable */
1862 if (chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1866 if (hostapd_set_freq_params(&vht_freq, mode->mode, freq->freq,
1867 freq->channel, freq->ht_enabled,
1868 vht_freq.vht_enabled,
1869 freq->sec_channel_offset,
1870 VHT_CHANWIDTH_80MHZ,
1871 vht80[j] + 6, 0, 0) != 0)
1876 wpa_printf(MSG_DEBUG, "IBSS: VHT setup freq cf1 %d, cf2 %d, bw %d",
1877 freq->center_freq1, freq->center_freq2, freq->bandwidth);
1881 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit)
1883 struct wpa_connect_work *cwork = work->ctx;
1884 struct wpa_bss *bss = cwork->bss;
1885 struct wpa_ssid *ssid = cwork->ssid;
1886 struct wpa_supplicant *wpa_s = work->wpa_s;
1889 int use_crypt, ret, i, bssid_changed;
1890 int algs = WPA_AUTH_ALG_OPEN;
1891 unsigned int cipher_pairwise, cipher_group;
1892 struct wpa_driver_associate_params params;
1893 int wep_keys_set = 0;
1894 int assoc_failed = 0;
1895 struct wpa_ssid *old_ssid;
1896 #ifdef CONFIG_HT_OVERRIDES
1897 struct ieee80211_ht_capabilities htcaps;
1898 struct ieee80211_ht_capabilities htcaps_mask;
1899 #endif /* CONFIG_HT_OVERRIDES */
1900 #ifdef CONFIG_VHT_OVERRIDES
1901 struct ieee80211_vht_capabilities vhtcaps;
1902 struct ieee80211_vht_capabilities vhtcaps_mask;
1903 #endif /* CONFIG_VHT_OVERRIDES */
1906 if (work->started) {
1907 wpa_s->connect_work = NULL;
1909 /* cancel possible auth. timeout */
1910 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s,
1913 wpas_connect_work_free(cwork);
1917 wpa_s->connect_work = work;
1919 if (cwork->bss_removed || !wpas_valid_bss_ssid(wpa_s, bss, ssid)) {
1920 wpa_dbg(wpa_s, MSG_DEBUG, "BSS/SSID entry for association not valid anymore - drop connection attempt");
1921 wpas_connect_work_done(wpa_s);
1925 os_memset(¶ms, 0, sizeof(params));
1926 wpa_s->reassociate = 0;
1927 wpa_s->eap_expected_failure = 0;
1929 (!wpas_driver_bss_selection(wpa_s) || wpas_wps_searching(wpa_s))) {
1930 #ifdef CONFIG_IEEE80211R
1931 const u8 *ie, *md = NULL;
1932 #endif /* CONFIG_IEEE80211R */
1933 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
1934 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
1935 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
1936 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
1937 os_memset(wpa_s->bssid, 0, ETH_ALEN);
1938 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
1940 wpas_notify_bssid_changed(wpa_s);
1941 #ifdef CONFIG_IEEE80211R
1942 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
1943 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
1945 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
1947 /* Prepare for the next transition */
1948 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
1950 #endif /* CONFIG_IEEE80211R */
1952 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
1953 wpa_s->conf->ap_scan == 2 &&
1954 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
1955 /* Use ap_scan==1 style network selection to find the network
1957 wpas_connect_work_done(wpa_s);
1958 wpa_s->scan_req = MANUAL_SCAN_REQ;
1959 wpa_s->reassociate = 1;
1960 wpa_supplicant_req_scan(wpa_s, 0, 0);
1962 #endif /* CONFIG_WPS */
1964 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
1965 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
1966 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1968 wpa_supplicant_cancel_sched_scan(wpa_s);
1969 wpa_supplicant_cancel_scan(wpa_s);
1971 /* Starting new association, so clear the possibly used WPA IE from the
1972 * previous association. */
1973 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
1975 #ifdef IEEE8021X_EAPOL
1976 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1978 if (ssid->non_leap == 0)
1979 algs = WPA_AUTH_ALG_LEAP;
1981 algs |= WPA_AUTH_ALG_LEAP;
1984 #endif /* IEEE8021X_EAPOL */
1985 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
1986 if (ssid->auth_alg) {
1987 algs = ssid->auth_alg;
1988 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
1992 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
1993 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
1994 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
1995 int try_opportunistic;
1996 try_opportunistic = (ssid->proactive_key_caching < 0 ?
1998 ssid->proactive_key_caching) &&
1999 (ssid->proto & WPA_PROTO_RSN);
2000 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
2001 ssid, try_opportunistic) == 0)
2002 eapol_sm_notify_pmkid_attempt(wpa_s->eapol);
2003 wpa_ie_len = sizeof(wpa_ie);
2004 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
2005 wpa_ie, &wpa_ie_len)) {
2006 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2007 "key management and encryption suites");
2008 wpas_connect_work_done(wpa_s);
2011 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
2012 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
2014 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
2015 * use non-WPA since the scan results did not indicate that the
2016 * AP is using WPA or WPA2.
2018 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2020 wpa_s->wpa_proto = 0;
2021 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
2022 wpa_ie_len = sizeof(wpa_ie);
2023 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
2024 wpa_ie, &wpa_ie_len)) {
2025 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2026 "key management and encryption suites (no "
2028 wpas_connect_work_done(wpa_s);
2032 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
2033 struct wpabuf *wps_ie;
2034 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
2035 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
2036 wpa_ie_len = wpabuf_len(wps_ie);
2037 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
2040 wpabuf_free(wps_ie);
2041 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2042 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
2043 params.wps = WPS_MODE_PRIVACY;
2045 params.wps = WPS_MODE_OPEN;
2046 wpa_s->wpa_proto = 0;
2047 #endif /* CONFIG_WPS */
2049 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2051 wpa_s->wpa_proto = 0;
2055 if (wpa_s->global->p2p) {
2059 pos = wpa_ie + wpa_ie_len;
2060 len = sizeof(wpa_ie) - wpa_ie_len;
2061 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
2067 wpa_s->cross_connect_disallowed = 0;
2070 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
2072 wpa_s->cross_connect_disallowed =
2073 p2p_get_cross_connect_disallowed(p2p);
2075 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
2077 wpa_s->cross_connect_disallowed ?
2078 "disallows" : "allows");
2082 os_memset(wpa_s->p2p_ip_addr_info, 0, sizeof(wpa_s->p2p_ip_addr_info));
2083 #endif /* CONFIG_P2P */
2086 if (is_hs20_network(wpa_s, ssid, bss)) {
2087 struct wpabuf *hs20;
2088 hs20 = wpabuf_alloc(20);
2090 int pps_mo_id = hs20_get_pps_mo_id(wpa_s, ssid);
2093 wpas_hs20_add_indication(hs20, pps_mo_id);
2094 len = sizeof(wpa_ie) - wpa_ie_len;
2095 if (wpabuf_len(hs20) <= len) {
2096 os_memcpy(wpa_ie + wpa_ie_len,
2097 wpabuf_head(hs20), wpabuf_len(hs20));
2098 wpa_ie_len += wpabuf_len(hs20);
2103 #endif /* CONFIG_HS20 */
2106 * Workaround: Add Extended Capabilities element only if the AP
2107 * included this element in Beacon/Probe Response frames. Some older
2108 * APs seem to have interoperability issues if this element is
2109 * included, so while the standard may require us to include the
2110 * element in all cases, it is justifiable to skip it to avoid
2111 * interoperability issues.
2113 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
2116 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab,
2118 if (ext_capab_len > 0) {
2120 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
2122 os_memmove(pos + ext_capab_len, pos,
2123 wpa_ie_len - (pos - wpa_ie));
2124 wpa_ie_len += ext_capab_len;
2125 os_memcpy(pos, ext_capab, ext_capab_len);
2129 if (wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ]) {
2130 struct wpabuf *buf = wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ];
2133 len = sizeof(wpa_ie) - wpa_ie_len;
2134 if (wpabuf_len(buf) <= len) {
2135 os_memcpy(wpa_ie + wpa_ie_len,
2136 wpabuf_head(buf), wpabuf_len(buf));
2137 wpa_ie_len += wpabuf_len(buf);
2141 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
2143 cipher_pairwise = wpa_s->pairwise_cipher;
2144 cipher_group = wpa_s->group_cipher;
2145 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
2146 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2147 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
2149 if (wpa_set_wep_keys(wpa_s, ssid)) {
2154 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
2157 #ifdef IEEE8021X_EAPOL
2158 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2159 if ((ssid->eapol_flags &
2160 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
2161 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
2165 /* Assume that dynamic WEP-104 keys will be used and
2166 * set cipher suites in order for drivers to expect
2168 cipher_pairwise = cipher_group = WPA_CIPHER_WEP104;
2171 #endif /* IEEE8021X_EAPOL */
2173 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2174 /* Set the key before (and later after) association */
2175 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2178 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
2180 params.ssid = bss->ssid;
2181 params.ssid_len = bss->ssid_len;
2182 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
2183 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
2184 MACSTR " freq=%u MHz based on scan results "
2186 MAC2STR(bss->bssid), bss->freq,
2188 params.bssid = bss->bssid;
2189 params.freq.freq = bss->freq;
2191 params.bssid_hint = bss->bssid;
2192 params.freq_hint = bss->freq;
2194 params.ssid = ssid->ssid;
2195 params.ssid_len = ssid->ssid_len;
2198 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
2199 wpa_s->conf->ap_scan == 2) {
2200 params.bssid = ssid->bssid;
2201 params.fixed_bssid = 1;
2204 /* Initial frequency for IBSS/mesh */
2205 if ((ssid->mode == WPAS_MODE_IBSS || ssid->mode == WPAS_MODE_MESH) &&
2206 ssid->frequency > 0 && params.freq.freq == 0)
2207 ibss_mesh_setup_freq(wpa_s, ssid, ¶ms.freq);
2209 if (ssid->mode == WPAS_MODE_IBSS) {
2210 params.fixed_freq = ssid->fixed_freq;
2211 if (ssid->beacon_int)
2212 params.beacon_int = ssid->beacon_int;
2214 params.beacon_int = wpa_s->conf->beacon_int;
2217 params.wpa_ie = wpa_ie;
2218 params.wpa_ie_len = wpa_ie_len;
2219 params.pairwise_suite = cipher_pairwise;
2220 params.group_suite = cipher_group;
2221 params.key_mgmt_suite = wpa_s->key_mgmt;
2222 params.wpa_proto = wpa_s->wpa_proto;
2223 params.auth_alg = algs;
2224 params.mode = ssid->mode;
2225 params.bg_scan_period = ssid->bg_scan_period;
2226 for (i = 0; i < NUM_WEP_KEYS; i++) {
2227 if (ssid->wep_key_len[i])
2228 params.wep_key[i] = ssid->wep_key[i];
2229 params.wep_key_len[i] = ssid->wep_key_len[i];
2231 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
2233 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
2234 (params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2235 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK)) {
2236 params.passphrase = ssid->passphrase;
2238 params.psk = ssid->psk;
2241 if (wpa_s->conf->key_mgmt_offload) {
2242 if (params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
2243 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
2244 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B ||
2245 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B_192)
2246 params.req_key_mgmt_offload =
2247 ssid->proactive_key_caching < 0 ?
2248 wpa_s->conf->okc : ssid->proactive_key_caching;
2250 params.req_key_mgmt_offload = 1;
2252 if ((params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2253 params.key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256 ||
2254 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK) &&
2256 params.psk = ssid->psk;
2259 params.drop_unencrypted = use_crypt;
2261 #ifdef CONFIG_IEEE80211W
2262 params.mgmt_frame_protection = wpas_get_ssid_pmf(wpa_s, ssid);
2263 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
2264 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
2265 struct wpa_ie_data ie;
2266 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
2268 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
2269 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
2270 "MFP: require MFP");
2271 params.mgmt_frame_protection =
2272 MGMT_FRAME_PROTECTION_REQUIRED;
2275 #endif /* CONFIG_IEEE80211W */
2277 params.p2p = ssid->p2p_group;
2279 if (wpa_s->parent->set_sta_uapsd)
2280 params.uapsd = wpa_s->parent->sta_uapsd;
2284 #ifdef CONFIG_HT_OVERRIDES
2285 os_memset(&htcaps, 0, sizeof(htcaps));
2286 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
2287 params.htcaps = (u8 *) &htcaps;
2288 params.htcaps_mask = (u8 *) &htcaps_mask;
2289 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, ¶ms);
2290 #endif /* CONFIG_HT_OVERRIDES */
2291 #ifdef CONFIG_VHT_OVERRIDES
2292 os_memset(&vhtcaps, 0, sizeof(vhtcaps));
2293 os_memset(&vhtcaps_mask, 0, sizeof(vhtcaps_mask));
2294 params.vhtcaps = &vhtcaps;
2295 params.vhtcaps_mask = &vhtcaps_mask;
2296 wpa_supplicant_apply_vht_overrides(wpa_s, ssid, ¶ms);
2297 #endif /* CONFIG_VHT_OVERRIDES */
2301 * If multi-channel concurrency is not supported, check for any
2302 * frequency conflict. In case of any frequency conflict, remove the
2303 * least prioritized connection.
2305 if (wpa_s->num_multichan_concurrent < 2) {
2307 num = get_shared_radio_freqs(wpa_s, &freq, 1);
2308 if (num > 0 && freq > 0 && freq != params.freq.freq) {
2309 wpa_printf(MSG_DEBUG,
2310 "Assoc conflicting freq found (%d != %d)",
2311 freq, params.freq.freq);
2312 if (wpas_p2p_handle_frequency_conflicts(
2313 wpa_s, params.freq.freq, ssid) < 0) {
2314 wpas_connect_work_done(wpa_s);
2319 #endif /* CONFIG_P2P */
2321 ret = wpa_drv_associate(wpa_s, ¶ms);
2323 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
2325 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
2327 * The driver is known to mean what is saying, so we
2328 * can stop right here; the association will not
2331 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
2332 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
2333 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2336 /* try to continue anyway; new association will be tried again
2341 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2342 /* Set the key after the association just in case association
2343 * cleared the previously configured key. */
2344 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2345 /* No need to timeout authentication since there is no key
2347 wpa_supplicant_cancel_auth_timeout(wpa_s);
2348 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
2349 #ifdef CONFIG_IBSS_RSN
2350 } else if (ssid->mode == WPAS_MODE_IBSS &&
2351 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
2352 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
2354 * RSN IBSS authentication is per-STA and we can disable the
2355 * per-BSSID authentication.
2357 wpa_supplicant_cancel_auth_timeout(wpa_s);
2358 #endif /* CONFIG_IBSS_RSN */
2360 /* Timeout for IEEE 802.11 authentication and association */
2364 /* give IBSS a bit more time */
2365 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
2366 } else if (wpa_s->conf->ap_scan == 1) {
2367 /* give IBSS a bit more time */
2368 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
2370 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
2374 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
2375 /* Set static WEP keys again */
2376 wpa_set_wep_keys(wpa_s, ssid);
2379 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
2381 * Do not allow EAP session resumption between different
2382 * network configurations.
2384 eapol_sm_invalidate_cached_session(wpa_s->eapol);
2386 old_ssid = wpa_s->current_ssid;
2387 wpa_s->current_ssid = ssid;
2388 wpa_s->current_bss = bss;
2389 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
2390 wpa_supplicant_initiate_eapol(wpa_s);
2391 if (old_ssid != wpa_s->current_ssid)
2392 wpas_notify_network_changed(wpa_s);
2396 static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
2399 struct wpa_ssid *old_ssid;
2401 wpas_connect_work_done(wpa_s);
2402 wpa_clear_keys(wpa_s, addr);
2403 old_ssid = wpa_s->current_ssid;
2404 wpa_supplicant_mark_disassoc(wpa_s);
2405 wpa_sm_set_config(wpa_s->wpa, NULL);
2406 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2407 if (old_ssid != wpa_s->current_ssid)
2408 wpas_notify_network_changed(wpa_s);
2409 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
2414 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
2415 * @wpa_s: Pointer to wpa_supplicant data
2416 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
2418 * This function is used to request %wpa_supplicant to deauthenticate from the
2421 void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
2425 union wpa_event_data event;
2428 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
2429 " pending_bssid=" MACSTR " reason=%d state=%s",
2430 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
2431 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
2433 if (!is_zero_ether_addr(wpa_s->bssid))
2434 addr = wpa_s->bssid;
2435 else if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
2436 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
2437 wpa_s->wpa_state == WPA_ASSOCIATING))
2438 addr = wpa_s->pending_bssid;
2439 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
2441 * When using driver-based BSS selection, we may not know the
2442 * BSSID with which we are currently trying to associate. We
2443 * need to notify the driver of this disconnection even in such
2444 * a case, so use the all zeros address here.
2446 addr = wpa_s->bssid;
2451 wpa_tdls_teardown_peers(wpa_s->wpa);
2452 #endif /* CONFIG_TDLS */
2456 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_REMOVED "%s",
2458 wpa_supplicant_leave_mesh(wpa_s);
2460 #endif /* CONFIG_MESH */
2463 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
2464 os_memset(&event, 0, sizeof(event));
2465 event.deauth_info.reason_code = (u16) reason_code;
2466 event.deauth_info.locally_generated = 1;
2467 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
2472 wpa_supplicant_clear_connection(wpa_s, addr);
2475 static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
2476 struct wpa_ssid *ssid)
2478 if (!ssid || !ssid->disabled || ssid->disabled == 2)
2482 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2483 wpas_notify_network_enabled_changed(wpa_s, ssid);
2486 * Try to reassociate since there is no current configuration and a new
2487 * network was made available.
2489 if (!wpa_s->current_ssid && !wpa_s->disconnected)
2490 wpa_s->reassociate = 1;
2495 * wpa_supplicant_enable_network - Mark a configured network as enabled
2496 * @wpa_s: wpa_supplicant structure for a network interface
2497 * @ssid: wpa_ssid structure for a configured network or %NULL
2499 * Enables the specified network or all networks if no network specified.
2501 void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
2502 struct wpa_ssid *ssid)
2505 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
2506 wpa_supplicant_enable_one_network(wpa_s, ssid);
2508 wpa_supplicant_enable_one_network(wpa_s, ssid);
2510 if (wpa_s->reassociate && !wpa_s->disconnected) {
2511 if (wpa_s->sched_scanning) {
2512 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
2513 "new network to scan filters");
2514 wpa_supplicant_cancel_sched_scan(wpa_s);
2517 if (wpa_supplicant_fast_associate(wpa_s) != 1)
2518 wpa_supplicant_req_scan(wpa_s, 0, 0);
2524 * wpa_supplicant_disable_network - Mark a configured network as disabled
2525 * @wpa_s: wpa_supplicant structure for a network interface
2526 * @ssid: wpa_ssid structure for a configured network or %NULL
2528 * Disables the specified network or all networks if no network specified.
2530 void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
2531 struct wpa_ssid *ssid)
2533 struct wpa_ssid *other_ssid;
2537 if (wpa_s->sched_scanning)
2538 wpa_supplicant_cancel_sched_scan(wpa_s);
2540 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2541 other_ssid = other_ssid->next) {
2542 was_disabled = other_ssid->disabled;
2543 if (was_disabled == 2)
2544 continue; /* do not change persistent P2P group
2547 other_ssid->disabled = 1;
2549 if (was_disabled != other_ssid->disabled)
2550 wpas_notify_network_enabled_changed(
2553 if (wpa_s->current_ssid)
2554 wpa_supplicant_deauthenticate(
2555 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2556 } else if (ssid->disabled != 2) {
2557 if (ssid == wpa_s->current_ssid)
2558 wpa_supplicant_deauthenticate(
2559 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2561 was_disabled = ssid->disabled;
2565 if (was_disabled != ssid->disabled) {
2566 wpas_notify_network_enabled_changed(wpa_s, ssid);
2567 if (wpa_s->sched_scanning) {
2568 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
2569 "to remove network from filters");
2570 wpa_supplicant_cancel_sched_scan(wpa_s);
2571 wpa_supplicant_req_scan(wpa_s, 0, 0);
2579 * wpa_supplicant_select_network - Attempt association with a network
2580 * @wpa_s: wpa_supplicant structure for a network interface
2581 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
2583 void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
2584 struct wpa_ssid *ssid)
2587 struct wpa_ssid *other_ssid;
2588 int disconnected = 0;
2590 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
2591 wpa_s->own_disconnect_req = 1;
2592 wpa_supplicant_deauthenticate(
2593 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2598 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2601 * Mark all other networks disabled or mark all networks enabled if no
2602 * network specified.
2604 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2605 other_ssid = other_ssid->next) {
2606 int was_disabled = other_ssid->disabled;
2607 if (was_disabled == 2)
2608 continue; /* do not change persistent P2P group data */
2610 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
2611 if (was_disabled && !other_ssid->disabled)
2612 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
2614 if (was_disabled != other_ssid->disabled)
2615 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
2618 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid) {
2619 /* We are already associated with the selected network */
2620 wpa_printf(MSG_DEBUG, "Already associated with the "
2621 "selected network - do nothing");
2626 wpa_s->current_ssid = ssid;
2627 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2628 wpa_s->connect_without_scan =
2629 (ssid->mode == WPAS_MODE_MESH) ? ssid : NULL;
2632 * Don't optimize next scan freqs since a new ESS has been
2635 os_free(wpa_s->next_scan_freqs);
2636 wpa_s->next_scan_freqs = NULL;
2638 wpa_s->connect_without_scan = NULL;
2641 wpa_s->disconnected = 0;
2642 wpa_s->reassociate = 1;
2644 if (wpa_s->connect_without_scan ||
2645 wpa_supplicant_fast_associate(wpa_s) != 1)
2646 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
2649 wpas_notify_network_selected(wpa_s, ssid);
2654 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
2655 * @wpa_s: wpa_supplicant structure for a network interface
2656 * @pkcs11_engine_path: PKCS #11 engine path or NULL
2657 * @pkcs11_module_path: PKCS #11 module path or NULL
2658 * Returns: 0 on success; -1 on failure
2660 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
2661 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
2662 * module path fails the paths will be reset to the default value (NULL).
2664 int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
2665 const char *pkcs11_engine_path,
2666 const char *pkcs11_module_path)
2668 char *pkcs11_engine_path_copy = NULL;
2669 char *pkcs11_module_path_copy = NULL;
2671 if (pkcs11_engine_path != NULL) {
2672 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
2673 if (pkcs11_engine_path_copy == NULL)
2676 if (pkcs11_module_path != NULL) {
2677 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
2678 if (pkcs11_module_path_copy == NULL) {
2679 os_free(pkcs11_engine_path_copy);
2684 os_free(wpa_s->conf->pkcs11_engine_path);
2685 os_free(wpa_s->conf->pkcs11_module_path);
2686 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
2687 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
2689 wpa_sm_set_eapol(wpa_s->wpa, NULL);
2690 eapol_sm_deinit(wpa_s->eapol);
2691 wpa_s->eapol = NULL;
2692 if (wpa_supplicant_init_eapol(wpa_s)) {
2693 /* Error -> Reset paths to the default value (NULL) once. */
2694 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
2695 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
2700 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
2707 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
2708 * @wpa_s: wpa_supplicant structure for a network interface
2709 * @ap_scan: AP scan mode
2710 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
2713 int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
2718 if (ap_scan < 0 || ap_scan > 2)
2722 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
2723 wpa_s->wpa_state >= WPA_ASSOCIATING &&
2724 wpa_s->wpa_state < WPA_COMPLETED) {
2725 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
2726 "associating", wpa_s->conf->ap_scan, ap_scan);
2729 #endif /* ANDROID */
2731 old_ap_scan = wpa_s->conf->ap_scan;
2732 wpa_s->conf->ap_scan = ap_scan;
2734 if (old_ap_scan != wpa_s->conf->ap_scan)
2735 wpas_notify_ap_scan_changed(wpa_s);
2742 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
2743 * @wpa_s: wpa_supplicant structure for a network interface
2744 * @expire_age: Expiration age in seconds
2745 * Returns: 0 if succeed or -1 if expire_age has an invalid value
2748 int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
2749 unsigned int bss_expire_age)
2751 if (bss_expire_age < 10) {
2752 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
2756 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
2758 wpa_s->conf->bss_expiration_age = bss_expire_age;
2765 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
2766 * @wpa_s: wpa_supplicant structure for a network interface
2767 * @expire_count: number of scans after which an unseen BSS is reclaimed
2768 * Returns: 0 if succeed or -1 if expire_count has an invalid value
2771 int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
2772 unsigned int bss_expire_count)
2774 if (bss_expire_count < 1) {
2775 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
2779 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
2781 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
2788 * wpa_supplicant_set_scan_interval - Set scan interval
2789 * @wpa_s: wpa_supplicant structure for a network interface
2790 * @scan_interval: scan interval in seconds
2791 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
2794 int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
2797 if (scan_interval < 0) {
2798 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
2802 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
2804 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
2811 * wpa_supplicant_set_debug_params - Set global debug params
2812 * @global: wpa_global structure
2813 * @debug_level: debug level
2814 * @debug_timestamp: determines if show timestamp in debug data
2815 * @debug_show_keys: determines if show keys in debug data
2816 * Returns: 0 if succeed or -1 if debug_level has wrong value
2818 int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
2819 int debug_timestamp, int debug_show_keys)
2822 int old_level, old_timestamp, old_show_keys;
2824 /* check for allowed debuglevels */
2825 if (debug_level != MSG_EXCESSIVE &&
2826 debug_level != MSG_MSGDUMP &&
2827 debug_level != MSG_DEBUG &&
2828 debug_level != MSG_INFO &&
2829 debug_level != MSG_WARNING &&
2830 debug_level != MSG_ERROR)
2833 old_level = wpa_debug_level;
2834 old_timestamp = wpa_debug_timestamp;
2835 old_show_keys = wpa_debug_show_keys;
2837 wpa_debug_level = debug_level;
2838 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
2839 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
2841 if (wpa_debug_level != old_level)
2842 wpas_notify_debug_level_changed(global);
2843 if (wpa_debug_timestamp != old_timestamp)
2844 wpas_notify_debug_timestamp_changed(global);
2845 if (wpa_debug_show_keys != old_show_keys)
2846 wpas_notify_debug_show_keys_changed(global);
2853 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
2854 * @wpa_s: Pointer to wpa_supplicant data
2855 * Returns: A pointer to the current network structure or %NULL on failure
2857 struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
2859 struct wpa_ssid *entry;
2860 u8 ssid[MAX_SSID_LEN];
2866 res = wpa_drv_get_ssid(wpa_s, ssid);
2868 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
2874 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
2875 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
2880 wired = wpa_s->conf->ap_scan == 0 &&
2881 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
2883 entry = wpa_s->conf->ssid;
2885 if (!wpas_network_disabled(wpa_s, entry) &&
2886 ((ssid_len == entry->ssid_len &&
2887 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
2888 (!entry->bssid_set ||
2889 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2892 if (!wpas_network_disabled(wpa_s, entry) &&
2893 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
2894 (entry->ssid == NULL || entry->ssid_len == 0) &&
2895 (!entry->bssid_set ||
2896 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2898 #endif /* CONFIG_WPS */
2900 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
2901 entry->ssid_len == 0 &&
2902 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
2905 entry = entry->next;
2912 static int select_driver(struct wpa_supplicant *wpa_s, int i)
2914 struct wpa_global *global = wpa_s->global;
2916 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
2917 global->drv_priv[i] = wpa_drivers[i]->global_init();
2918 if (global->drv_priv[i] == NULL) {
2919 wpa_printf(MSG_ERROR, "Failed to initialize driver "
2920 "'%s'", wpa_drivers[i]->name);
2925 wpa_s->driver = wpa_drivers[i];
2926 wpa_s->global_drv_priv = global->drv_priv[i];
2932 static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
2937 const char *pos, *driver = name;
2942 if (wpa_drivers[0] == NULL) {
2943 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
2949 /* default to first driver in the list */
2950 return select_driver(wpa_s, 0);
2954 pos = os_strchr(driver, ',');
2958 len = os_strlen(driver);
2960 for (i = 0; wpa_drivers[i]; i++) {
2961 if (os_strlen(wpa_drivers[i]->name) == len &&
2962 os_strncmp(driver, wpa_drivers[i]->name, len) ==
2964 /* First driver that succeeds wins */
2965 if (select_driver(wpa_s, i) == 0)
2973 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
2979 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
2980 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
2981 * with struct wpa_driver_ops::init()
2982 * @src_addr: Source address of the EAPOL frame
2983 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
2984 * @len: Length of the EAPOL data
2986 * This function is called for each received EAPOL frame. Most driver
2987 * interfaces rely on more generic OS mechanism for receiving frames through
2988 * l2_packet, but if such a mechanism is not available, the driver wrapper may
2989 * take care of received EAPOL frames and deliver them to the core supplicant
2990 * code by calling this function.
2992 void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
2993 const u8 *buf, size_t len)
2995 struct wpa_supplicant *wpa_s = ctx;
2997 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
2998 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
3000 #ifdef CONFIG_PEERKEY
3001 if (wpa_s->wpa_state > WPA_ASSOCIATED && wpa_s->current_ssid &&
3002 wpa_s->current_ssid->peerkey &&
3003 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
3004 wpa_sm_rx_eapol_peerkey(wpa_s->wpa, src_addr, buf, len) == 1) {
3005 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: Processed PeerKey EAPOL-Key");
3008 #endif /* CONFIG_PEERKEY */
3010 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
3011 (wpa_s->last_eapol_matches_bssid &&
3014 #endif /* CONFIG_AP */
3015 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
3017 * There is possible race condition between receiving the
3018 * association event and the EAPOL frame since they are coming
3019 * through different paths from the driver. In order to avoid
3020 * issues in trying to process the EAPOL frame before receiving
3021 * association information, lets queue it for processing until
3022 * the association event is received. This may also be needed in
3023 * driver-based roaming case, so also use src_addr != BSSID as a
3024 * trigger if we have previously confirmed that the
3025 * Authenticator uses BSSID as the src_addr (which is not the
3026 * case with wired IEEE 802.1X).
3028 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
3029 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
3030 wpa_supplicant_state_txt(wpa_s->wpa_state),
3031 MAC2STR(wpa_s->bssid));
3032 wpabuf_free(wpa_s->pending_eapol_rx);
3033 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
3034 if (wpa_s->pending_eapol_rx) {
3035 os_get_reltime(&wpa_s->pending_eapol_rx_time);
3036 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
3042 wpa_s->last_eapol_matches_bssid =
3043 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
3046 if (wpa_s->ap_iface) {
3047 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
3050 #endif /* CONFIG_AP */
3052 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
3053 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
3054 "no key management is configured");
3058 if (wpa_s->eapol_received == 0 &&
3059 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
3060 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
3061 wpa_s->wpa_state != WPA_COMPLETED) &&
3062 (wpa_s->current_ssid == NULL ||
3063 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
3064 /* Timeout for completing IEEE 802.1X and WPA authentication */
3065 wpa_supplicant_req_auth_timeout(
3067 (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
3068 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
3069 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) ?
3072 wpa_s->eapol_received++;
3074 if (wpa_s->countermeasures) {
3075 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
3080 #ifdef CONFIG_IBSS_RSN
3081 if (wpa_s->current_ssid &&
3082 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
3083 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
3086 #endif /* CONFIG_IBSS_RSN */
3088 /* Source address of the incoming EAPOL frame could be compared to the
3089 * current BSSID. However, it is possible that a centralized
3090 * Authenticator could be using another MAC address than the BSSID of
3091 * an AP, so just allow any address to be used for now. The replies are
3092 * still sent to the current BSSID (if available), though. */
3094 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
3095 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
3096 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
3098 wpa_drv_poll(wpa_s);
3099 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
3100 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
3101 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
3103 * Set portValid = TRUE here since we are going to skip 4-way
3104 * handshake processing which would normally set portValid. We
3105 * need this to allow the EAPOL state machines to be completed
3106 * without going through EAPOL-Key handshake.
3108 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
3113 int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
3115 if ((!wpa_s->p2p_mgmt ||
3116 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3117 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
3118 l2_packet_deinit(wpa_s->l2);
3119 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
3120 wpa_drv_get_mac_addr(wpa_s),
3122 wpa_supplicant_rx_eapol, wpa_s, 0);
3123 if (wpa_s->l2 == NULL)
3126 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
3128 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
3131 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
3132 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
3136 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3142 static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
3143 const u8 *buf, size_t len)
3145 struct wpa_supplicant *wpa_s = ctx;
3146 const struct l2_ethhdr *eth;
3148 if (len < sizeof(*eth))
3150 eth = (const struct l2_ethhdr *) buf;
3152 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
3153 !(eth->h_dest[0] & 0x01)) {
3154 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3155 " (bridge - not for this interface - ignore)",
3156 MAC2STR(src_addr), MAC2STR(eth->h_dest));
3160 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3161 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
3162 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
3163 len - sizeof(*eth));
3168 * wpa_supplicant_driver_init - Initialize driver interface parameters
3169 * @wpa_s: Pointer to wpa_supplicant data
3170 * Returns: 0 on success, -1 on failure
3172 * This function is called to initialize driver interface parameters.
3173 * wpa_drv_init() must have been called before this function to initialize the
3176 int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
3178 static int interface_count = 0;
3180 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
3183 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
3184 MAC2STR(wpa_s->own_addr));
3185 os_memcpy(wpa_s->perm_addr, wpa_s->own_addr, ETH_ALEN);
3186 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3188 if (wpa_s->bridge_ifname[0]) {
3189 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
3190 "interface '%s'", wpa_s->bridge_ifname);
3191 wpa_s->l2_br = l2_packet_init_bridge(
3192 wpa_s->bridge_ifname, wpa_s->ifname, wpa_s->own_addr,
3193 ETH_P_EAPOL, wpa_supplicant_rx_eapol_bridge, wpa_s, 1);
3194 if (wpa_s->l2_br == NULL) {
3195 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
3196 "connection for the bridge interface '%s'",
3197 wpa_s->bridge_ifname);
3202 wpa_clear_keys(wpa_s, NULL);
3204 /* Make sure that TKIP countermeasures are not left enabled (could
3205 * happen if wpa_supplicant is killed during countermeasures. */
3206 wpa_drv_set_countermeasures(wpa_s, 0);
3208 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
3209 wpa_drv_flush_pmkid(wpa_s);
3211 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
3212 wpa_s->prev_scan_wildcard = 0;
3214 if (wpa_supplicant_enabled_networks(wpa_s)) {
3215 if (wpa_s->wpa_state == WPA_INTERFACE_DISABLED) {
3216 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3217 interface_count = 0;
3220 if (!wpa_s->p2p_mgmt &&
3221 wpa_supplicant_delayed_sched_scan(wpa_s,
3222 interface_count % 3,
3224 wpa_supplicant_req_scan(wpa_s, interface_count % 3,
3226 #endif /* ANDROID */
3229 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
3235 static int wpa_supplicant_daemon(const char *pid_file)
3237 wpa_printf(MSG_DEBUG, "Daemonize..");
3238 return os_daemonize(pid_file);
3242 static struct wpa_supplicant *
3243 wpa_supplicant_alloc(struct wpa_supplicant *parent)
3245 struct wpa_supplicant *wpa_s;
3247 wpa_s = os_zalloc(sizeof(*wpa_s));
3250 wpa_s->scan_req = INITIAL_SCAN_REQ;
3251 wpa_s->scan_interval = 5;
3252 wpa_s->new_connection = 1;
3253 wpa_s->parent = parent ? parent : wpa_s;
3254 wpa_s->sched_scanning = 0;
3260 #ifdef CONFIG_HT_OVERRIDES
3262 static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
3263 struct ieee80211_ht_capabilities *htcaps,
3264 struct ieee80211_ht_capabilities *htcaps_mask,
3267 /* parse ht_mcs into hex array */
3269 const char *tmp = ht_mcs;
3272 /* If ht_mcs is null, do not set anything */
3276 /* This is what we are setting in the kernel */
3277 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
3279 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
3281 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
3283 long v = strtol(tmp, &end, 16);
3285 wpa_msg(wpa_s, MSG_DEBUG,
3286 "htcap value[%i]: %ld end: %p tmp: %p",
3291 htcaps->supported_mcs_set[i] = v;
3294 wpa_msg(wpa_s, MSG_ERROR,
3295 "Failed to parse ht-mcs: %s, error: %s\n",
3296 ht_mcs, strerror(errno));
3302 * If we were able to parse any values, then set mask for the MCS set.
3305 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
3306 IEEE80211_HT_MCS_MASK_LEN - 1);
3307 /* skip the 3 reserved bits */
3308 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
3316 static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
3317 struct ieee80211_ht_capabilities *htcaps,
3318 struct ieee80211_ht_capabilities *htcaps_mask,
3323 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
3328 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
3329 htcaps_mask->ht_capabilities_info |= msk;
3331 htcaps->ht_capabilities_info &= msk;
3333 htcaps->ht_capabilities_info |= msk;
3339 static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
3340 struct ieee80211_ht_capabilities *htcaps,
3341 struct ieee80211_ht_capabilities *htcaps_mask,
3344 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
3349 if (factor < 0 || factor > 3) {
3350 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
3351 "Must be 0-3 or -1", factor);
3355 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
3356 htcaps->a_mpdu_params &= ~0x3;
3357 htcaps->a_mpdu_params |= factor & 0x3;
3363 static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
3364 struct ieee80211_ht_capabilities *htcaps,
3365 struct ieee80211_ht_capabilities *htcaps_mask,
3368 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
3373 if (density < 0 || density > 7) {
3374 wpa_msg(wpa_s, MSG_ERROR,
3375 "ampdu_density: %d out of range. Must be 0-7 or -1.",
3380 htcaps_mask->a_mpdu_params |= 0x1C;
3381 htcaps->a_mpdu_params &= ~(0x1C);
3382 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
3388 static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
3389 struct ieee80211_ht_capabilities *htcaps,
3390 struct ieee80211_ht_capabilities *htcaps_mask,
3393 /* Masking these out disables HT40 */
3394 le16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
3395 HT_CAP_INFO_SHORT_GI40MHZ);
3397 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
3400 htcaps->ht_capabilities_info &= ~msk;
3402 htcaps->ht_capabilities_info |= msk;
3404 htcaps_mask->ht_capabilities_info |= msk;
3410 static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
3411 struct ieee80211_ht_capabilities *htcaps,
3412 struct ieee80211_ht_capabilities *htcaps_mask,
3415 /* Masking these out disables SGI */
3416 le16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
3417 HT_CAP_INFO_SHORT_GI40MHZ);
3419 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
3422 htcaps->ht_capabilities_info &= ~msk;
3424 htcaps->ht_capabilities_info |= msk;
3426 htcaps_mask->ht_capabilities_info |= msk;
3432 static int wpa_set_disable_ldpc(struct wpa_supplicant *wpa_s,
3433 struct ieee80211_ht_capabilities *htcaps,
3434 struct ieee80211_ht_capabilities *htcaps_mask,
3437 /* Masking these out disables LDPC */
3438 le16 msk = host_to_le16(HT_CAP_INFO_LDPC_CODING_CAP);
3440 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ldpc: %d", disabled);
3443 htcaps->ht_capabilities_info &= ~msk;
3445 htcaps->ht_capabilities_info |= msk;
3447 htcaps_mask->ht_capabilities_info |= msk;
3453 void wpa_supplicant_apply_ht_overrides(
3454 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3455 struct wpa_driver_associate_params *params)
3457 struct ieee80211_ht_capabilities *htcaps;
3458 struct ieee80211_ht_capabilities *htcaps_mask;
3463 params->disable_ht = ssid->disable_ht;
3464 if (!params->htcaps || !params->htcaps_mask)
3467 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
3468 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
3469 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
3470 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
3471 ssid->disable_max_amsdu);
3472 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
3473 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
3474 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
3475 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
3476 wpa_set_disable_ldpc(wpa_s, htcaps, htcaps_mask, ssid->disable_ldpc);
3478 if (ssid->ht40_intolerant) {
3479 le16 bit = host_to_le16(HT_CAP_INFO_40MHZ_INTOLERANT);
3480 htcaps->ht_capabilities_info |= bit;
3481 htcaps_mask->ht_capabilities_info |= bit;
3485 #endif /* CONFIG_HT_OVERRIDES */
3488 #ifdef CONFIG_VHT_OVERRIDES
3489 void wpa_supplicant_apply_vht_overrides(
3490 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3491 struct wpa_driver_associate_params *params)
3493 struct ieee80211_vht_capabilities *vhtcaps;
3494 struct ieee80211_vht_capabilities *vhtcaps_mask;
3499 params->disable_vht = ssid->disable_vht;
3501 vhtcaps = (void *) params->vhtcaps;
3502 vhtcaps_mask = (void *) params->vhtcaps_mask;
3504 if (!vhtcaps || !vhtcaps_mask)
3507 vhtcaps->vht_capabilities_info = ssid->vht_capa;
3508 vhtcaps_mask->vht_capabilities_info = ssid->vht_capa_mask;
3510 #ifdef CONFIG_HT_OVERRIDES
3511 /* if max ampdu is <= 3, we have to make the HT cap the same */
3512 if (ssid->vht_capa_mask & VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) {
3515 max_ampdu = (ssid->vht_capa &
3516 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) >>
3517 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX_SHIFT;
3519 max_ampdu = max_ampdu < 3 ? max_ampdu : 3;
3520 wpa_set_ampdu_factor(wpa_s,
3521 (void *) params->htcaps,
3522 (void *) params->htcaps_mask,
3525 #endif /* CONFIG_HT_OVERRIDES */
3527 #define OVERRIDE_MCS(i) \
3528 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
3529 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
3531 vhtcaps->vht_supported_mcs_set.tx_map |= \
3532 ssid->vht_tx_mcs_nss_ ##i << 2 * (i - 1); \
3534 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
3535 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
3537 vhtcaps->vht_supported_mcs_set.rx_map |= \
3538 ssid->vht_rx_mcs_nss_ ##i << 2 * (i - 1); \
3550 #endif /* CONFIG_VHT_OVERRIDES */
3553 static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
3558 if (!wpa_s->conf->pcsc_reader)
3561 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
3565 if (wpa_s->conf->pcsc_pin &&
3566 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
3567 scard_deinit(wpa_s->scard);
3568 wpa_s->scard = NULL;
3569 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
3573 len = sizeof(wpa_s->imsi) - 1;
3574 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
3575 scard_deinit(wpa_s->scard);
3576 wpa_s->scard = NULL;
3577 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
3580 wpa_s->imsi[len] = '\0';
3582 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
3584 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
3585 wpa_s->imsi, wpa_s->mnc_len);
3587 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
3588 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
3589 #endif /* PCSC_FUNCS */
3595 int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
3599 ext_password_deinit(wpa_s->ext_pw);
3600 wpa_s->ext_pw = NULL;
3601 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
3603 if (!wpa_s->conf->ext_password_backend)
3606 val = os_strdup(wpa_s->conf->ext_password_backend);
3609 pos = os_strchr(val, ':');
3613 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
3615 wpa_s->ext_pw = ext_password_init(val, pos);
3617 if (wpa_s->ext_pw == NULL) {
3618 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
3621 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
3627 static int wpas_set_wowlan_triggers(struct wpa_supplicant *wpa_s,
3628 const struct wpa_driver_capa *capa)
3630 struct wowlan_triggers *triggers;
3633 if (!wpa_s->conf->wowlan_triggers)
3636 triggers = wpa_get_wowlan_triggers(wpa_s->conf->wowlan_triggers, capa);
3638 ret = wpa_drv_wowlan(wpa_s, triggers);
3645 static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
3648 struct wpa_supplicant *iface = wpa_s->global->ifaces;
3649 struct wpa_radio *radio;
3651 while (rn && iface) {
3652 radio = iface->radio;
3653 if (radio && os_strcmp(rn, radio->name) == 0) {
3654 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
3656 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3660 iface = iface->next;
3663 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
3664 wpa_s->ifname, rn ? rn : "N/A");
3665 radio = os_zalloc(sizeof(*radio));
3670 os_strlcpy(radio->name, rn, sizeof(radio->name));
3671 dl_list_init(&radio->ifaces);
3672 dl_list_init(&radio->work);
3673 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3679 static void radio_work_free(struct wpa_radio_work *work)
3681 if (work->wpa_s->scan_work == work) {
3682 /* This should not really happen. */
3683 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as scan_work",
3684 work->type, work, work->started);
3685 work->wpa_s->scan_work = NULL;
3689 if (work->wpa_s->p2p_scan_work == work) {
3690 /* This should not really happen. */
3691 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as p2p_scan_work",
3692 work->type, work, work->started);
3693 work->wpa_s->p2p_scan_work = NULL;
3695 #endif /* CONFIG_P2P */
3697 dl_list_del(&work->list);
3702 static void radio_start_next_work(void *eloop_ctx, void *timeout_ctx)
3704 struct wpa_radio *radio = eloop_ctx;
3705 struct wpa_radio_work *work;
3706 struct os_reltime now, diff;
3707 struct wpa_supplicant *wpa_s;
3709 work = dl_list_first(&radio->work, struct wpa_radio_work, list);
3714 return; /* already started and still in progress */
3716 wpa_s = dl_list_first(&radio->ifaces, struct wpa_supplicant,
3718 if (wpa_s && wpa_s->radio->external_scan_running) {
3719 wpa_printf(MSG_DEBUG, "Delay radio work start until externally triggered scan completes");
3723 os_get_reltime(&now);
3724 os_reltime_sub(&now, &work->time, &diff);
3725 wpa_dbg(work->wpa_s, MSG_DEBUG, "Starting radio work '%s'@%p after %ld.%06ld second wait",
3726 work->type, work, diff.sec, diff.usec);
3734 * This function removes both started and pending radio works running on
3735 * the provided interface's radio.
3736 * Prior to the removal of the radio work, its callback (cb) is called with
3737 * deinit set to be 1. Each work's callback is responsible for clearing its
3738 * internal data and restoring to a correct state.
3739 * @wpa_s: wpa_supplicant data
3740 * @type: type of works to be removed
3741 * @remove_all: 1 to remove all the works on this radio, 0 to remove only
3742 * this interface's works.
3744 void radio_remove_works(struct wpa_supplicant *wpa_s,
3745 const char *type, int remove_all)
3747 struct wpa_radio_work *work, *tmp;
3748 struct wpa_radio *radio = wpa_s->radio;
3750 dl_list_for_each_safe(work, tmp, &radio->work, struct wpa_radio_work,
3752 if (type && os_strcmp(type, work->type) != 0)
3755 /* skip other ifaces' works */
3756 if (!remove_all && work->wpa_s != wpa_s)
3759 wpa_dbg(wpa_s, MSG_DEBUG, "Remove radio work '%s'@%p%s",
3760 work->type, work, work->started ? " (started)" : "");
3762 radio_work_free(work);
3765 /* in case we removed the started work */
3766 radio_work_check_next(wpa_s);
3770 static void radio_remove_interface(struct wpa_supplicant *wpa_s)
3772 struct wpa_radio *radio = wpa_s->radio;
3777 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
3778 wpa_s->ifname, radio->name);
3779 dl_list_del(&wpa_s->radio_list);
3780 radio_remove_works(wpa_s, NULL, 0);
3781 wpa_s->radio = NULL;
3782 if (!dl_list_empty(&radio->ifaces))
3783 return; /* Interfaces remain for this radio */
3785 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
3786 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3791 void radio_work_check_next(struct wpa_supplicant *wpa_s)
3793 struct wpa_radio *radio = wpa_s->radio;
3795 if (dl_list_empty(&radio->work))
3797 if (wpa_s->ext_work_in_progress) {
3798 wpa_printf(MSG_DEBUG,
3799 "External radio work in progress - delay start of pending item");
3802 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3803 eloop_register_timeout(0, 0, radio_start_next_work, radio, NULL);
3808 * radio_add_work - Add a radio work item
3809 * @wpa_s: Pointer to wpa_supplicant data
3810 * @freq: Frequency of the offchannel operation in MHz or 0
3811 * @type: Unique identifier for each type of work
3812 * @next: Force as the next work to be executed
3813 * @cb: Callback function for indicating when radio is available
3814 * @ctx: Context pointer for the work (work->ctx in cb())
3815 * Returns: 0 on success, -1 on failure
3817 * This function is used to request time for an operation that requires
3818 * exclusive radio control. Once the radio is available, the registered callback
3819 * function will be called. radio_work_done() must be called once the exclusive
3820 * radio operation has been completed, so that the radio is freed for other
3821 * operations. The special case of deinit=1 is used to free the context data
3822 * during interface removal. That does not allow the callback function to start
3823 * the radio operation, i.e., it must free any resources allocated for the radio
3826 * The @freq parameter can be used to indicate a single channel on which the
3827 * offchannel operation will occur. This may allow multiple radio work
3828 * operations to be performed in parallel if they apply for the same channel.
3829 * Setting this to 0 indicates that the work item may use multiple channels or
3830 * requires exclusive control of the radio.
3832 int radio_add_work(struct wpa_supplicant *wpa_s, unsigned int freq,
3833 const char *type, int next,
3834 void (*cb)(struct wpa_radio_work *work, int deinit),
3837 struct wpa_radio_work *work;
3840 work = os_zalloc(sizeof(*work));
3843 wpa_dbg(wpa_s, MSG_DEBUG, "Add radio work '%s'@%p", type, work);
3844 os_get_reltime(&work->time);
3847 work->wpa_s = wpa_s;
3851 was_empty = dl_list_empty(&wpa_s->radio->work);
3853 dl_list_add(&wpa_s->radio->work, &work->list);
3855 dl_list_add_tail(&wpa_s->radio->work, &work->list);
3857 wpa_dbg(wpa_s, MSG_DEBUG, "First radio work item in the queue - schedule start immediately");
3858 radio_work_check_next(wpa_s);
3866 * radio_work_done - Indicate that a radio work item has been completed
3867 * @work: Completed work
3869 * This function is called once the callback function registered with
3870 * radio_add_work() has completed its work.
3872 void radio_work_done(struct wpa_radio_work *work)
3874 struct wpa_supplicant *wpa_s = work->wpa_s;
3875 struct os_reltime now, diff;
3876 unsigned int started = work->started;
3878 os_get_reltime(&now);
3879 os_reltime_sub(&now, &work->time, &diff);
3880 wpa_dbg(wpa_s, MSG_DEBUG, "Radio work '%s'@%p %s in %ld.%06ld seconds",
3881 work->type, work, started ? "done" : "canceled",
3882 diff.sec, diff.usec);
3883 radio_work_free(work);
3885 radio_work_check_next(wpa_s);
3889 struct wpa_radio_work *
3890 radio_work_pending(struct wpa_supplicant *wpa_s, const char *type)
3892 struct wpa_radio_work *work;
3893 struct wpa_radio *radio = wpa_s->radio;
3895 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
3896 if (work->wpa_s == wpa_s && os_strcmp(work->type, type) == 0)
3904 static int wpas_init_driver(struct wpa_supplicant *wpa_s,
3905 struct wpa_interface *iface)
3907 const char *ifname, *driver, *rn;
3909 driver = iface->driver;
3911 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
3914 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
3915 if (wpa_s->drv_priv == NULL) {
3917 pos = driver ? os_strchr(driver, ',') : NULL;
3919 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
3920 "driver interface - try next driver wrapper");
3924 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
3928 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
3929 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
3930 "driver_param '%s'", wpa_s->conf->driver_param);
3934 ifname = wpa_drv_get_ifname(wpa_s);
3935 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
3936 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
3937 "interface name with '%s'", ifname);
3938 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
3941 rn = wpa_driver_get_radio_name(wpa_s);
3942 if (rn && rn[0] == '\0')
3945 wpa_s->radio = radio_add_interface(wpa_s, rn);
3946 if (wpa_s->radio == NULL)
3953 static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
3954 struct wpa_interface *iface)
3956 struct wpa_driver_capa capa;
3959 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
3960 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
3961 iface->confname ? iface->confname : "N/A",
3962 iface->driver ? iface->driver : "default",
3963 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
3964 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
3966 if (iface->confname) {
3967 #ifdef CONFIG_BACKEND_FILE
3968 wpa_s->confname = os_rel2abs_path(iface->confname);
3969 if (wpa_s->confname == NULL) {
3970 wpa_printf(MSG_ERROR, "Failed to get absolute path "
3971 "for configuration file '%s'.",
3975 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
3976 iface->confname, wpa_s->confname);
3977 #else /* CONFIG_BACKEND_FILE */
3978 wpa_s->confname = os_strdup(iface->confname);
3979 #endif /* CONFIG_BACKEND_FILE */
3980 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
3981 if (wpa_s->conf == NULL) {
3982 wpa_printf(MSG_ERROR, "Failed to read or parse "
3983 "configuration '%s'.", wpa_s->confname);
3986 wpa_s->confanother = os_rel2abs_path(iface->confanother);
3987 wpa_config_read(wpa_s->confanother, wpa_s->conf);
3990 * Override ctrl_interface and driver_param if set on command
3993 if (iface->ctrl_interface) {
3994 os_free(wpa_s->conf->ctrl_interface);
3995 wpa_s->conf->ctrl_interface =
3996 os_strdup(iface->ctrl_interface);
3999 if (iface->driver_param) {
4000 os_free(wpa_s->conf->driver_param);
4001 wpa_s->conf->driver_param =
4002 os_strdup(iface->driver_param);
4005 if (iface->p2p_mgmt && !iface->ctrl_interface) {
4006 os_free(wpa_s->conf->ctrl_interface);
4007 wpa_s->conf->ctrl_interface = NULL;
4010 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
4011 iface->driver_param);
4013 if (wpa_s->conf == NULL) {
4014 wpa_printf(MSG_ERROR, "\nNo configuration found.");
4018 if (iface->ifname == NULL) {
4019 wpa_printf(MSG_ERROR, "\nInterface name is required.");
4022 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
4023 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
4027 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
4029 if (iface->bridge_ifname) {
4030 if (os_strlen(iface->bridge_ifname) >=
4031 sizeof(wpa_s->bridge_ifname)) {
4032 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
4033 "name '%s'.", iface->bridge_ifname);
4036 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
4037 sizeof(wpa_s->bridge_ifname));
4040 /* RSNA Supplicant Key Management - INITIALIZE */
4041 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
4042 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
4044 /* Initialize driver interface and register driver event handler before
4045 * L2 receive handler so that association events are processed before
4046 * EAPOL-Key packets if both become available for the same select()
4048 if (wpas_init_driver(wpa_s, iface) < 0)
4051 if (wpa_supplicant_init_wpa(wpa_s) < 0)
4054 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
4055 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
4057 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
4059 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
4060 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
4061 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
4062 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4063 "dot11RSNAConfigPMKLifetime");
4067 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
4068 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
4069 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
4070 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4071 "dot11RSNAConfigPMKReauthThreshold");
4075 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
4076 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
4077 wpa_s->conf->dot11RSNAConfigSATimeout)) {
4078 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4079 "dot11RSNAConfigSATimeout");
4083 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
4084 &wpa_s->hw.num_modes,
4086 if (wpa_s->hw.modes) {
4089 for (i = 0; i < wpa_s->hw.num_modes; i++) {
4090 if (wpa_s->hw.modes[i].vht_capab) {
4091 wpa_s->hw_capab = CAPAB_VHT;
4095 if (wpa_s->hw.modes[i].ht_capab &
4096 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET)
4097 wpa_s->hw_capab = CAPAB_HT40;
4098 else if (wpa_s->hw.modes[i].ht_capab &&
4099 wpa_s->hw_capab == CAPAB_NO_HT_VHT)
4100 wpa_s->hw_capab = CAPAB_HT;
4104 capa_res = wpa_drv_get_capa(wpa_s, &capa);
4105 if (capa_res == 0) {
4106 wpa_s->drv_capa_known = 1;
4107 wpa_s->drv_flags = capa.flags;
4108 wpa_s->drv_enc = capa.enc;
4109 wpa_s->drv_smps_modes = capa.smps_modes;
4110 wpa_s->drv_rrm_flags = capa.rrm_flags;
4111 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
4112 wpa_s->max_scan_ssids = capa.max_scan_ssids;
4113 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
4114 wpa_s->sched_scan_supported = capa.sched_scan_supported;
4115 wpa_s->max_match_sets = capa.max_match_sets;
4116 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
4117 wpa_s->max_stations = capa.max_stations;
4118 wpa_s->extended_capa = capa.extended_capa;
4119 wpa_s->extended_capa_mask = capa.extended_capa_mask;
4120 wpa_s->extended_capa_len = capa.extended_capa_len;
4121 wpa_s->num_multichan_concurrent =
4122 capa.num_multichan_concurrent;
4123 wpa_s->wmm_ac_supported = capa.wmm_ac_supported;
4125 if (capa.mac_addr_rand_scan_supported)
4126 wpa_s->mac_addr_rand_supported |= MAC_ADDR_RAND_SCAN;
4127 if (wpa_s->sched_scan_supported &&
4128 capa.mac_addr_rand_sched_scan_supported)
4129 wpa_s->mac_addr_rand_supported |=
4130 (MAC_ADDR_RAND_SCHED_SCAN | MAC_ADDR_RAND_PNO);
4132 if (wpa_s->max_remain_on_chan == 0)
4133 wpa_s->max_remain_on_chan = 1000;
4136 * Only take p2p_mgmt parameters when P2P Device is supported.
4137 * Doing it here as it determines whether l2_packet_init() will be done
4138 * during wpa_supplicant_driver_init().
4140 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
4141 wpa_s->p2p_mgmt = iface->p2p_mgmt;
4143 iface->p2p_mgmt = 1;
4145 if (wpa_s->num_multichan_concurrent == 0)
4146 wpa_s->num_multichan_concurrent = 1;
4148 if (wpa_supplicant_driver_init(wpa_s) < 0)
4152 if ((!iface->p2p_mgmt ||
4153 !(wpa_s->drv_flags &
4154 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
4155 wpa_tdls_init(wpa_s->wpa))
4157 #endif /* CONFIG_TDLS */
4159 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
4160 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
4161 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
4165 if (wpas_wps_init(wpa_s))
4168 if (wpa_supplicant_init_eapol(wpa_s) < 0)
4170 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
4172 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
4173 if (wpa_s->ctrl_iface == NULL) {
4174 wpa_printf(MSG_ERROR,
4175 "Failed to initialize control interface '%s'.\n"
4176 "You may have another wpa_supplicant process "
4177 "already running or the file was\n"
4178 "left by an unclean termination of wpa_supplicant "
4179 "in which case you will need\n"
4180 "to manually remove this file before starting "
4181 "wpa_supplicant again.\n",
4182 wpa_s->conf->ctrl_interface);
4186 wpa_s->gas = gas_query_init(wpa_s);
4187 if (wpa_s->gas == NULL) {
4188 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
4192 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
4193 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
4197 if (wpa_bss_init(wpa_s) < 0)
4201 * Set Wake-on-WLAN triggers, if configured.
4202 * Note: We don't restore/remove the triggers on shutdown (it doesn't
4203 * have effect anyway when the interface is down).
4205 if (capa_res == 0 && wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
4208 #ifdef CONFIG_EAP_PROXY
4211 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
4213 if (wpa_s->mnc_len > 0) {
4214 wpa_s->imsi[len] = '\0';
4215 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
4216 wpa_s->imsi, wpa_s->mnc_len);
4218 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
4221 #endif /* CONFIG_EAP_PROXY */
4223 if (pcsc_reader_init(wpa_s) < 0)
4226 if (wpas_init_ext_pw(wpa_s) < 0)
4229 wpas_rrm_reset(wpa_s);
4235 static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
4236 int notify, int terminate)
4238 struct wpa_global *global = wpa_s->global;
4239 struct wpa_supplicant *iface, *prev;
4241 if (wpa_s == wpa_s->parent)
4242 wpas_p2p_group_remove(wpa_s, "*");
4244 iface = global->ifaces;
4246 if (iface == wpa_s || iface->parent != wpa_s) {
4247 iface = iface->next;
4250 wpa_printf(MSG_DEBUG,
4251 "Remove remaining child interface %s from parent %s",
4252 iface->ifname, wpa_s->ifname);
4254 iface = iface->next;
4255 wpa_supplicant_remove_iface(global, prev, terminate);
4258 wpa_s->disconnected = 1;
4259 if (wpa_s->drv_priv) {
4260 wpa_supplicant_deauthenticate(wpa_s,
4261 WLAN_REASON_DEAUTH_LEAVING);
4263 wpa_drv_set_countermeasures(wpa_s, 0);
4264 wpa_clear_keys(wpa_s, NULL);
4267 wpa_supplicant_cleanup(wpa_s);
4268 wpas_p2p_deinit_iface(wpa_s);
4270 wpas_ctrl_radio_work_flush(wpa_s);
4271 radio_remove_interface(wpa_s);
4273 if (wpa_s->drv_priv)
4274 wpa_drv_deinit(wpa_s);
4277 wpas_notify_iface_removed(wpa_s);
4280 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
4282 if (wpa_s->ctrl_iface) {
4283 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
4284 wpa_s->ctrl_iface = NULL;
4289 wpa_supplicant_mesh_iface_deinit(wpa_s, wpa_s->ifmsh);
4290 wpa_s->ifmsh = NULL;
4292 #endif /* CONFIG_MESH */
4294 if (wpa_s->conf != NULL) {
4295 wpa_config_free(wpa_s->conf);
4304 * wpa_supplicant_add_iface - Add a new network interface
4305 * @global: Pointer to global data from wpa_supplicant_init()
4306 * @iface: Interface configuration options
4307 * @parent: Parent interface or %NULL to assign new interface as parent
4308 * Returns: Pointer to the created interface or %NULL on failure
4310 * This function is used to add new network interfaces for %wpa_supplicant.
4311 * This can be called before wpa_supplicant_run() to add interfaces before the
4312 * main event loop has been started. In addition, new interfaces can be added
4313 * dynamically while %wpa_supplicant is already running. This could happen,
4314 * e.g., when a hotplug network adapter is inserted.
4316 struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
4317 struct wpa_interface *iface,
4318 struct wpa_supplicant *parent)
4320 struct wpa_supplicant *wpa_s;
4321 struct wpa_interface t_iface;
4322 struct wpa_ssid *ssid;
4324 if (global == NULL || iface == NULL)
4327 wpa_s = wpa_supplicant_alloc(parent);
4331 wpa_s->global = global;
4334 if (global->params.override_driver) {
4335 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
4337 iface->driver, global->params.override_driver);
4338 t_iface.driver = global->params.override_driver;
4340 if (global->params.override_ctrl_interface) {
4341 wpa_printf(MSG_DEBUG, "Override interface parameter: "
4342 "ctrl_interface ('%s' -> '%s')",
4343 iface->ctrl_interface,
4344 global->params.override_ctrl_interface);
4345 t_iface.ctrl_interface =
4346 global->params.override_ctrl_interface;
4348 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
4349 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
4351 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
4355 if (iface->p2p_mgmt == 0) {
4356 /* Notify the control interfaces about new iface */
4357 if (wpas_notify_iface_added(wpa_s)) {
4358 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
4362 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
4363 wpas_notify_network_added(wpa_s, ssid);
4366 wpa_s->next = global->ifaces;
4367 global->ifaces = wpa_s;
4369 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
4370 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
4373 if (wpa_s->global->p2p == NULL &&
4374 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) &&
4375 wpas_p2p_add_p2pdev_interface(wpa_s, iface->conf_p2p_dev) < 0) {
4376 wpa_printf(MSG_INFO,
4377 "P2P: Failed to enable P2P Device interface");
4378 /* Try to continue without. P2P will be disabled. */
4380 #endif /* CONFIG_P2P */
4387 * wpa_supplicant_remove_iface - Remove a network interface
4388 * @global: Pointer to global data from wpa_supplicant_init()
4389 * @wpa_s: Pointer to the network interface to be removed
4390 * Returns: 0 if interface was removed, -1 if interface was not found
4392 * This function can be used to dynamically remove network interfaces from
4393 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
4394 * addition, this function is used to remove all remaining interfaces when
4395 * %wpa_supplicant is terminated.
4397 int wpa_supplicant_remove_iface(struct wpa_global *global,
4398 struct wpa_supplicant *wpa_s,
4401 struct wpa_supplicant *prev;
4403 unsigned int mesh_if_created = wpa_s->mesh_if_created;
4404 char *ifname = NULL;
4405 #endif /* CONFIG_MESH */
4407 /* Remove interface from the global list of interfaces */
4408 prev = global->ifaces;
4409 if (prev == wpa_s) {
4410 global->ifaces = wpa_s->next;
4412 while (prev && prev->next != wpa_s)
4416 prev->next = wpa_s->next;
4419 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
4422 if (mesh_if_created) {
4423 ifname = os_strdup(wpa_s->ifname);
4424 if (ifname == NULL) {
4425 wpa_dbg(wpa_s, MSG_ERROR,
4426 "mesh: Failed to malloc ifname");
4430 #endif /* CONFIG_MESH */
4432 if (global->p2p_group_formation == wpa_s)
4433 global->p2p_group_formation = NULL;
4434 if (global->p2p_invite_group == wpa_s)
4435 global->p2p_invite_group = NULL;
4436 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
4439 if (mesh_if_created) {
4440 wpa_drv_if_remove(global->ifaces, WPA_IF_MESH, ifname);
4443 #endif /* CONFIG_MESH */
4450 * wpa_supplicant_get_eap_mode - Get the current EAP mode
4451 * @wpa_s: Pointer to the network interface
4452 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
4454 const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
4456 const char *eapol_method;
4458 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
4459 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
4463 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
4464 if (eapol_method == NULL)
4465 return "UNKNOWN-EAP";
4467 return eapol_method;
4472 * wpa_supplicant_get_iface - Get a new network interface
4473 * @global: Pointer to global data from wpa_supplicant_init()
4474 * @ifname: Interface name
4475 * Returns: Pointer to the interface or %NULL if not found
4477 struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
4480 struct wpa_supplicant *wpa_s;
4482 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
4483 if (os_strcmp(wpa_s->ifname, ifname) == 0)
4490 #ifndef CONFIG_NO_WPA_MSG
4491 static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
4493 struct wpa_supplicant *wpa_s = ctx;
4496 return wpa_s->ifname;
4498 #endif /* CONFIG_NO_WPA_MSG */
4502 * wpa_supplicant_init - Initialize %wpa_supplicant
4503 * @params: Parameters for %wpa_supplicant
4504 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
4506 * This function is used to initialize %wpa_supplicant. After successful
4507 * initialization, the returned data pointer can be used to add and remove
4508 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
4510 struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
4512 struct wpa_global *global;
4518 #ifdef CONFIG_DRIVER_NDIS
4520 void driver_ndis_init_ops(void);
4521 driver_ndis_init_ops();
4523 #endif /* CONFIG_DRIVER_NDIS */
4525 #ifndef CONFIG_NO_WPA_MSG
4526 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
4527 #endif /* CONFIG_NO_WPA_MSG */
4529 if (params->wpa_debug_file_path)
4530 wpa_debug_open_file(params->wpa_debug_file_path);
4532 wpa_debug_setup_stdout();
4533 if (params->wpa_debug_syslog)
4534 wpa_debug_open_syslog();
4535 if (params->wpa_debug_tracing) {
4536 ret = wpa_debug_open_linux_tracing();
4538 wpa_printf(MSG_ERROR,
4539 "Failed to enable trace logging");
4544 ret = eap_register_methods();
4546 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
4548 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
4549 "the same EAP type.");
4553 global = os_zalloc(sizeof(*global));
4556 dl_list_init(&global->p2p_srv_bonjour);
4557 dl_list_init(&global->p2p_srv_upnp);
4558 global->params.daemonize = params->daemonize;
4559 global->params.wait_for_monitor = params->wait_for_monitor;
4560 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
4561 if (params->pid_file)
4562 global->params.pid_file = os_strdup(params->pid_file);
4563 if (params->ctrl_interface)
4564 global->params.ctrl_interface =
4565 os_strdup(params->ctrl_interface);
4566 if (params->ctrl_interface_group)
4567 global->params.ctrl_interface_group =
4568 os_strdup(params->ctrl_interface_group);
4569 if (params->override_driver)
4570 global->params.override_driver =
4571 os_strdup(params->override_driver);
4572 if (params->override_ctrl_interface)
4573 global->params.override_ctrl_interface =
4574 os_strdup(params->override_ctrl_interface);
4575 wpa_debug_level = global->params.wpa_debug_level =
4576 params->wpa_debug_level;
4577 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
4578 params->wpa_debug_show_keys;
4579 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
4580 params->wpa_debug_timestamp;
4582 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
4585 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
4586 wpa_supplicant_deinit(global);
4590 random_init(params->entropy_file);
4592 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
4593 if (global->ctrl_iface == NULL) {
4594 wpa_supplicant_deinit(global);
4598 if (wpas_notify_supplicant_initialized(global)) {
4599 wpa_supplicant_deinit(global);
4603 for (i = 0; wpa_drivers[i]; i++)
4604 global->drv_count++;
4605 if (global->drv_count == 0) {
4606 wpa_printf(MSG_ERROR, "No drivers enabled");
4607 wpa_supplicant_deinit(global);
4610 global->drv_priv = os_calloc(global->drv_count, sizeof(void *));
4611 if (global->drv_priv == NULL) {
4612 wpa_supplicant_deinit(global);
4616 #ifdef CONFIG_WIFI_DISPLAY
4617 if (wifi_display_init(global) < 0) {
4618 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
4619 wpa_supplicant_deinit(global);
4622 #endif /* CONFIG_WIFI_DISPLAY */
4629 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
4630 * @global: Pointer to global data from wpa_supplicant_init()
4631 * Returns: 0 after successful event loop run, -1 on failure
4633 * This function starts the main event loop and continues running as long as
4634 * there are any remaining events. In most cases, this function is running as
4635 * long as the %wpa_supplicant process in still in use.
4637 int wpa_supplicant_run(struct wpa_global *global)
4639 struct wpa_supplicant *wpa_s;
4641 if (global->params.daemonize &&
4642 wpa_supplicant_daemon(global->params.pid_file))
4645 if (global->params.wait_for_monitor) {
4646 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
4647 if (wpa_s->ctrl_iface)
4648 wpa_supplicant_ctrl_iface_wait(
4652 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
4653 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
4662 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
4663 * @global: Pointer to global data from wpa_supplicant_init()
4665 * This function is called to deinitialize %wpa_supplicant and to free all
4666 * allocated resources. Remaining network interfaces will also be removed.
4668 void wpa_supplicant_deinit(struct wpa_global *global)
4675 #ifdef CONFIG_WIFI_DISPLAY
4676 wifi_display_deinit(global);
4677 #endif /* CONFIG_WIFI_DISPLAY */
4679 while (global->ifaces)
4680 wpa_supplicant_remove_iface(global, global->ifaces, 1);
4682 if (global->ctrl_iface)
4683 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
4685 wpas_notify_supplicant_deinitialized(global);
4687 eap_peer_unregister_methods();
4689 eap_server_unregister_methods();
4690 #endif /* CONFIG_AP */
4692 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
4693 if (!global->drv_priv[i])
4695 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
4697 os_free(global->drv_priv);
4703 if (global->params.pid_file) {
4704 os_daemonize_terminate(global->params.pid_file);
4705 os_free(global->params.pid_file);
4707 os_free(global->params.ctrl_interface);
4708 os_free(global->params.ctrl_interface_group);
4709 os_free(global->params.override_driver);
4710 os_free(global->params.override_ctrl_interface);
4712 os_free(global->p2p_disallow_freq.range);
4713 os_free(global->p2p_go_avoid_freq.range);
4714 os_free(global->add_psk);
4717 wpa_debug_close_syslog();
4718 wpa_debug_close_file();
4719 wpa_debug_close_linux_tracing();
4723 void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
4725 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
4726 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
4728 country[0] = wpa_s->conf->country[0];
4729 country[1] = wpa_s->conf->country[1];
4731 if (wpa_drv_set_country(wpa_s, country) < 0) {
4732 wpa_printf(MSG_ERROR, "Failed to set country code "
4737 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
4738 wpas_init_ext_pw(wpa_s);
4741 wpas_wps_update_config(wpa_s);
4742 #endif /* CONFIG_WPS */
4743 wpas_p2p_update_config(wpa_s);
4744 wpa_s->conf->changed_parameters = 0;
4748 void add_freq(int *freqs, int *num_freqs, int freq)
4752 for (i = 0; i < *num_freqs; i++) {
4753 if (freqs[i] == freq)
4757 freqs[*num_freqs] = freq;
4762 static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
4764 struct wpa_bss *bss, *cbss;
4765 const int max_freqs = 10;
4769 freqs = os_calloc(max_freqs + 1, sizeof(int));
4773 cbss = wpa_s->current_bss;
4775 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
4778 if (bss->ssid_len == cbss->ssid_len &&
4779 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
4780 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
4781 add_freq(freqs, &num_freqs, bss->freq);
4782 if (num_freqs == max_freqs)
4787 if (num_freqs == 0) {
4796 void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
4802 wpas_connect_work_done(wpa_s);
4805 * Remove possible authentication timeout since the connection failed.
4807 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
4810 * There is no point in blacklisting the AP if this event is
4811 * generated based on local request to disconnect.
4813 if (wpa_s->own_disconnect_req) {
4814 wpa_s->own_disconnect_req = 0;
4815 wpa_dbg(wpa_s, MSG_DEBUG,
4816 "Ignore connection failure due to local request to disconnect");
4819 if (wpa_s->disconnected) {
4820 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
4821 "indication since interface has been put into "
4822 "disconnected state");
4827 * Add the failed BSSID into the blacklist and speed up next scan
4828 * attempt if there could be other APs that could accept association.
4829 * The current blacklist count indicates how many times we have tried
4830 * connecting to this AP and multiple attempts mean that other APs are
4831 * either not available or has already been tried, so that we can start
4832 * increasing the delay here to avoid constant scanning.
4834 count = wpa_blacklist_add(wpa_s, bssid);
4835 if (count == 1 && wpa_s->current_bss) {
4837 * This BSS was not in the blacklist before. If there is
4838 * another BSS available for the same ESS, we should try that
4839 * next. Otherwise, we may as well try this one once more
4840 * before allowing other, likely worse, ESSes to be considered.
4842 freqs = get_bss_freqs_in_ess(wpa_s);
4844 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
4845 "has been seen; try it next");
4846 wpa_blacklist_add(wpa_s, bssid);
4848 * On the next scan, go through only the known channels
4849 * used in this ESS based on previous scans to speed up
4850 * common load balancing use case.
4852 os_free(wpa_s->next_scan_freqs);
4853 wpa_s->next_scan_freqs = freqs;
4858 * Add previous failure count in case the temporary blacklist was
4859 * cleared due to no other BSSes being available.
4861 count += wpa_s->extra_blacklist_count;
4863 if (count > 3 && wpa_s->current_ssid) {
4864 wpa_printf(MSG_DEBUG, "Continuous association failures - "
4865 "consider temporary network disabling");
4866 wpas_auth_failed(wpa_s, "CONN_FAILED");
4887 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
4888 "ms", count, timeout);
4891 * TODO: if more than one possible AP is available in scan results,
4892 * could try the other ones before requesting a new scan.
4894 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
4895 1000 * (timeout % 1000));
4899 int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
4901 return wpa_s->conf->ap_scan == 2 ||
4902 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
4906 #if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
4907 int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
4908 struct wpa_ssid *ssid,
4912 #ifdef IEEE8021X_EAPOL
4913 struct eap_peer_config *eap = &ssid->eap;
4915 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
4916 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
4917 (const u8 *) value, os_strlen(value));
4919 switch (wpa_supplicant_ctrl_req_from_string(field)) {
4920 case WPA_CTRL_REQ_EAP_IDENTITY:
4921 os_free(eap->identity);
4922 eap->identity = (u8 *) os_strdup(value);
4923 eap->identity_len = os_strlen(value);
4924 eap->pending_req_identity = 0;
4925 if (ssid == wpa_s->current_ssid)
4926 wpa_s->reassociate = 1;
4928 case WPA_CTRL_REQ_EAP_PASSWORD:
4929 bin_clear_free(eap->password, eap->password_len);
4930 eap->password = (u8 *) os_strdup(value);
4931 eap->password_len = os_strlen(value);
4932 eap->pending_req_password = 0;
4933 if (ssid == wpa_s->current_ssid)
4934 wpa_s->reassociate = 1;
4936 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
4937 bin_clear_free(eap->new_password, eap->new_password_len);
4938 eap->new_password = (u8 *) os_strdup(value);
4939 eap->new_password_len = os_strlen(value);
4940 eap->pending_req_new_password = 0;
4941 if (ssid == wpa_s->current_ssid)
4942 wpa_s->reassociate = 1;
4944 case WPA_CTRL_REQ_EAP_PIN:
4945 str_clear_free(eap->pin);
4946 eap->pin = os_strdup(value);
4947 eap->pending_req_pin = 0;
4948 if (ssid == wpa_s->current_ssid)
4949 wpa_s->reassociate = 1;
4951 case WPA_CTRL_REQ_EAP_OTP:
4952 bin_clear_free(eap->otp, eap->otp_len);
4953 eap->otp = (u8 *) os_strdup(value);
4954 eap->otp_len = os_strlen(value);
4955 os_free(eap->pending_req_otp);
4956 eap->pending_req_otp = NULL;
4957 eap->pending_req_otp_len = 0;
4959 case WPA_CTRL_REQ_EAP_PASSPHRASE:
4960 str_clear_free(eap->private_key_passwd);
4961 eap->private_key_passwd = os_strdup(value);
4962 eap->pending_req_passphrase = 0;
4963 if (ssid == wpa_s->current_ssid)
4964 wpa_s->reassociate = 1;
4966 case WPA_CTRL_REQ_SIM:
4967 str_clear_free(eap->external_sim_resp);
4968 eap->external_sim_resp = os_strdup(value);
4971 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
4976 #else /* IEEE8021X_EAPOL */
4977 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
4979 #endif /* IEEE8021X_EAPOL */
4981 #endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
4984 int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
4987 unsigned int drv_enc;
4989 if (wpa_s->p2p_mgmt)
4990 return 1; /* no normal network profiles on p2p_mgmt interface */
4998 if (wpa_s->drv_capa_known)
4999 drv_enc = wpa_s->drv_enc;
5001 drv_enc = (unsigned int) -1;
5003 for (i = 0; i < NUM_WEP_KEYS; i++) {
5004 size_t len = ssid->wep_key_len[i];
5007 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
5009 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
5011 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
5013 return 1; /* invalid WEP key */
5016 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
5017 (!ssid->passphrase || ssid->ssid_len != 0) && !ssid->ext_psk)
5024 int wpas_get_ssid_pmf(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
5026 #ifdef CONFIG_IEEE80211W
5027 if (ssid == NULL || ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT) {
5028 if (wpa_s->conf->pmf == MGMT_FRAME_PROTECTION_OPTIONAL &&
5029 !(wpa_s->drv_enc & WPA_DRIVER_CAPA_ENC_BIP)) {
5031 * Driver does not support BIP -- ignore pmf=1 default
5032 * since the connection with PMF would fail and the
5033 * configuration does not require PMF to be enabled.
5035 return NO_MGMT_FRAME_PROTECTION;
5038 return wpa_s->conf->pmf;
5041 return ssid->ieee80211w;
5042 #else /* CONFIG_IEEE80211W */
5043 return NO_MGMT_FRAME_PROTECTION;
5044 #endif /* CONFIG_IEEE80211W */
5048 int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
5050 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
5052 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
5058 void wpas_auth_failed(struct wpa_supplicant *wpa_s, char *reason)
5060 struct wpa_ssid *ssid = wpa_s->current_ssid;
5062 struct os_reltime now;
5065 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
5070 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
5073 ssid->auth_failures++;
5076 if (ssid->p2p_group &&
5077 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
5079 * Skip the wait time since there is a short timeout on the
5080 * connection to a P2P group.
5084 #endif /* CONFIG_P2P */
5086 if (ssid->auth_failures > 50)
5088 else if (ssid->auth_failures > 10)
5090 else if (ssid->auth_failures > 5)
5092 else if (ssid->auth_failures > 3)
5094 else if (ssid->auth_failures > 2)
5096 else if (ssid->auth_failures > 1)
5101 if (ssid->auth_failures > 1 &&
5102 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt))
5103 dur += os_random() % (ssid->auth_failures * 10);
5105 os_get_reltime(&now);
5106 if (now.sec + dur <= ssid->disabled_until.sec)
5109 ssid->disabled_until.sec = now.sec + dur;
5111 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
5112 "id=%d ssid=\"%s\" auth_failures=%u duration=%d reason=%s",
5113 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
5114 ssid->auth_failures, dur, reason);
5118 void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
5119 struct wpa_ssid *ssid, int clear_failures)
5124 if (ssid->disabled_until.sec) {
5125 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
5126 "id=%d ssid=\"%s\"",
5127 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
5129 ssid->disabled_until.sec = 0;
5130 ssid->disabled_until.usec = 0;
5132 ssid->auth_failures = 0;
5136 int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
5140 if (wpa_s->disallow_aps_bssid == NULL)
5143 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
5144 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
5145 bssid, ETH_ALEN) == 0)
5153 int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
5158 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
5161 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
5162 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
5163 if (ssid_len == s->ssid_len &&
5164 os_memcmp(ssid, s->ssid, ssid_len) == 0)
5173 * wpas_request_connection - Request a new connection
5174 * @wpa_s: Pointer to the network interface
5176 * This function is used to request a new connection to be found. It will mark
5177 * the interface to allow reassociation and request a new scan to find a
5178 * suitable network to connect to.
5180 void wpas_request_connection(struct wpa_supplicant *wpa_s)
5182 wpa_s->normal_scans = 0;
5183 wpa_s->scan_req = NORMAL_SCAN_REQ;
5184 wpa_supplicant_reinit_autoscan(wpa_s);
5185 wpa_s->extra_blacklist_count = 0;
5186 wpa_s->disconnected = 0;
5187 wpa_s->reassociate = 1;
5189 if (wpa_supplicant_fast_associate(wpa_s) != 1)
5190 wpa_supplicant_req_scan(wpa_s, 0, 0);
5192 wpa_s->reattach = 0;
5196 void dump_freq_data(struct wpa_supplicant *wpa_s, const char *title,
5197 struct wpa_used_freq_data *freqs_data,
5202 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
5204 for (i = 0; i < len; i++) {
5205 struct wpa_used_freq_data *cur = &freqs_data[i];
5206 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d, flags=0x%X",
5207 i, cur->freq, cur->flags);
5213 * Find the operating frequencies of any of the virtual interfaces that
5214 * are using the same radio as the current interface, and in addition, get
5215 * information about the interface types that are using the frequency.
5217 int get_shared_radio_freqs_data(struct wpa_supplicant *wpa_s,
5218 struct wpa_used_freq_data *freqs_data,
5221 struct wpa_supplicant *ifs;
5224 unsigned int idx = 0, i;
5226 wpa_dbg(wpa_s, MSG_DEBUG,
5227 "Determining shared radio frequencies (max len %u)", len);
5228 os_memset(freqs_data, 0, sizeof(struct wpa_used_freq_data) * len);
5230 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
5235 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
5238 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
5239 ifs->current_ssid->mode == WPAS_MODE_P2P_GO)
5240 freq = ifs->current_ssid->frequency;
5241 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
5242 freq = ifs->assoc_freq;
5246 /* Hold only distinct freqs */
5247 for (i = 0; i < idx; i++)
5248 if (freqs_data[i].freq == freq)
5252 freqs_data[idx++].freq = freq;
5254 if (ifs->current_ssid->mode == WPAS_MODE_INFRA) {
5255 freqs_data[i].flags = ifs->current_ssid->p2p_group ?
5256 WPA_FREQ_USED_BY_P2P_CLIENT :
5257 WPA_FREQ_USED_BY_INFRA_STATION;
5261 dump_freq_data(wpa_s, "completed iteration", freqs_data, idx);
5267 * Find the operating frequencies of any of the virtual interfaces that
5268 * are using the same radio as the current interface.
5270 int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
5271 int *freq_array, unsigned int len)
5273 struct wpa_used_freq_data *freqs_data;
5276 os_memset(freq_array, 0, sizeof(int) * len);
5278 freqs_data = os_calloc(len, sizeof(struct wpa_used_freq_data));
5282 num = get_shared_radio_freqs_data(wpa_s, freqs_data, len);
5283 for (i = 0; i < num; i++)
5284 freq_array[i] = freqs_data[i].freq;
5286 os_free(freqs_data);
5292 static void wpas_rrm_neighbor_rep_timeout_handler(void *data, void *user_ctx)
5294 struct rrm_data *rrm = data;
5296 if (!rrm->notify_neighbor_rep) {
5297 wpa_printf(MSG_ERROR,
5298 "RRM: Unexpected neighbor report timeout");
5302 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report - NONE");
5303 rrm->notify_neighbor_rep(rrm->neighbor_rep_cb_ctx, NULL);
5305 rrm->notify_neighbor_rep = NULL;
5306 rrm->neighbor_rep_cb_ctx = NULL;
5311 * wpas_rrm_reset - Clear and reset all RRM data in wpa_supplicant
5312 * @wpa_s: Pointer to wpa_supplicant
5314 void wpas_rrm_reset(struct wpa_supplicant *wpa_s)
5316 wpa_s->rrm.rrm_used = 0;
5318 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5320 if (wpa_s->rrm.notify_neighbor_rep)
5321 wpas_rrm_neighbor_rep_timeout_handler(&wpa_s->rrm, NULL);
5322 wpa_s->rrm.next_neighbor_rep_token = 1;
5327 * wpas_rrm_process_neighbor_rep - Handle incoming neighbor report
5328 * @wpa_s: Pointer to wpa_supplicant
5329 * @report: Neighbor report buffer, prefixed by a 1-byte dialog token
5330 * @report_len: Length of neighbor report buffer
5332 void wpas_rrm_process_neighbor_rep(struct wpa_supplicant *wpa_s,
5333 const u8 *report, size_t report_len)
5335 struct wpabuf *neighbor_rep;
5337 wpa_hexdump(MSG_DEBUG, "RRM: New Neighbor Report", report, report_len);
5341 if (report[0] != wpa_s->rrm.next_neighbor_rep_token - 1) {
5342 wpa_printf(MSG_DEBUG,
5343 "RRM: Discarding neighbor report with token %d (expected %d)",
5344 report[0], wpa_s->rrm.next_neighbor_rep_token - 1);
5348 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5351 if (!wpa_s->rrm.notify_neighbor_rep) {
5352 wpa_printf(MSG_ERROR, "RRM: Unexpected neighbor report");
5356 /* skipping the first byte, which is only an id (dialog token) */
5357 neighbor_rep = wpabuf_alloc(report_len - 1);
5358 if (neighbor_rep == NULL)
5360 wpabuf_put_data(neighbor_rep, report + 1, report_len - 1);
5361 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report (token = %d)",
5363 wpa_s->rrm.notify_neighbor_rep(wpa_s->rrm.neighbor_rep_cb_ctx,
5365 wpa_s->rrm.notify_neighbor_rep = NULL;
5366 wpa_s->rrm.neighbor_rep_cb_ctx = NULL;
5370 #if defined(__CYGWIN__) || defined(CONFIG_NATIVE_WINDOWS)
5371 /* Workaround different, undefined for Windows, error codes used here */
5373 #define EOPNOTSUPP -1
5374 #define ECANCELED -1
5378 * wpas_rrm_send_neighbor_rep_request - Request a neighbor report from our AP
5379 * @wpa_s: Pointer to wpa_supplicant
5380 * @ssid: if not null, this is sent in the request. Otherwise, no SSID IE
5381 * is sent in the request.
5382 * @cb: Callback function to be called once the requested report arrives, or
5383 * timed out after RRM_NEIGHBOR_REPORT_TIMEOUT seconds.
5384 * In the former case, 'neighbor_rep' is a newly allocated wpabuf, and it's
5385 * the requester's responsibility to free it.
5386 * In the latter case NULL will be sent in 'neighbor_rep'.
5387 * @cb_ctx: Context value to send the callback function
5388 * Returns: 0 in case of success, negative error code otherwise
5390 * In case there is a previous request which has not been answered yet, the
5391 * new request fails. The caller may retry after RRM_NEIGHBOR_REPORT_TIMEOUT.
5392 * Request must contain a callback function.
5394 int wpas_rrm_send_neighbor_rep_request(struct wpa_supplicant *wpa_s,
5395 const struct wpa_ssid *ssid,
5396 void (*cb)(void *ctx,
5397 struct wpabuf *neighbor_rep),
5403 if (wpa_s->wpa_state != WPA_COMPLETED || wpa_s->current_ssid == NULL) {
5404 wpa_printf(MSG_DEBUG, "RRM: No connection, no RRM.");
5408 if (!wpa_s->rrm.rrm_used) {
5409 wpa_printf(MSG_DEBUG, "RRM: No RRM in current connection.");
5413 rrm_ie = wpa_bss_get_ie(wpa_s->current_bss,
5414 WLAN_EID_RRM_ENABLED_CAPABILITIES);
5415 if (!rrm_ie || !(wpa_s->current_bss->caps & IEEE80211_CAP_RRM) ||
5416 !(rrm_ie[2] & WLAN_RRM_CAPS_NEIGHBOR_REPORT)) {
5417 wpa_printf(MSG_DEBUG,
5418 "RRM: No network support for Neighbor Report.");
5423 wpa_printf(MSG_DEBUG,
5424 "RRM: Neighbor Report request must provide a callback.");
5428 /* Refuse if there's a live request */
5429 if (wpa_s->rrm.notify_neighbor_rep) {
5430 wpa_printf(MSG_DEBUG,
5431 "RRM: Currently handling previous Neighbor Report.");
5435 /* 3 = action category + action code + dialog token */
5436 buf = wpabuf_alloc(3 + (ssid ? 2 + ssid->ssid_len : 0));
5438 wpa_printf(MSG_DEBUG,
5439 "RRM: Failed to allocate Neighbor Report Request");
5443 wpa_printf(MSG_DEBUG, "RRM: Neighbor report request (for %s), token=%d",
5444 (ssid ? wpa_ssid_txt(ssid->ssid, ssid->ssid_len) : ""),
5445 wpa_s->rrm.next_neighbor_rep_token);
5447 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
5448 wpabuf_put_u8(buf, WLAN_RRM_NEIGHBOR_REPORT_REQUEST);
5449 wpabuf_put_u8(buf, wpa_s->rrm.next_neighbor_rep_token);
5451 wpabuf_put_u8(buf, WLAN_EID_SSID);
5452 wpabuf_put_u8(buf, ssid->ssid_len);
5453 wpabuf_put_data(buf, ssid->ssid, ssid->ssid_len);
5456 wpa_s->rrm.next_neighbor_rep_token++;
5458 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
5459 wpa_s->own_addr, wpa_s->bssid,
5460 wpabuf_head(buf), wpabuf_len(buf), 0) < 0) {
5461 wpa_printf(MSG_DEBUG,
5462 "RRM: Failed to send Neighbor Report Request");
5467 wpa_s->rrm.neighbor_rep_cb_ctx = cb_ctx;
5468 wpa_s->rrm.notify_neighbor_rep = cb;
5469 eloop_register_timeout(RRM_NEIGHBOR_REPORT_TIMEOUT, 0,
5470 wpas_rrm_neighbor_rep_timeout_handler,
5478 void wpas_rrm_handle_link_measurement_request(struct wpa_supplicant *wpa_s,
5480 const u8 *frame, size_t len,
5484 const struct rrm_link_measurement_request *req;
5485 struct rrm_link_measurement_report report;
5487 if (wpa_s->wpa_state != WPA_COMPLETED) {
5488 wpa_printf(MSG_INFO,
5489 "RRM: Ignoring link measurement request. Not associated");
5493 if (!wpa_s->rrm.rrm_used) {
5494 wpa_printf(MSG_INFO,
5495 "RRM: Ignoring link measurement request. Not RRM network");
5499 if (!(wpa_s->drv_rrm_flags & WPA_DRIVER_FLAGS_TX_POWER_INSERTION)) {
5500 wpa_printf(MSG_INFO,
5501 "RRM: Measurement report failed. TX power insertion not supported");
5505 req = (const struct rrm_link_measurement_request *) frame;
5506 if (len < sizeof(*req)) {
5507 wpa_printf(MSG_INFO,
5508 "RRM: Link measurement report failed. Request too short");
5512 os_memset(&report, 0, sizeof(report));
5513 report.tpc.eid = WLAN_EID_TPC_REPORT;
5515 report.rsni = 255; /* 255 indicates that RSNI is not available */
5516 report.dialog_token = req->dialog_token;
5519 * It's possible to estimate RCPI based on RSSI in dBm. This
5520 * calculation will not reflect the correct value for high rates,
5521 * but it's good enough for Action frames which are transmitted
5522 * with up to 24 Mbps rates.
5525 report.rcpi = 255; /* not available */
5526 else if (rssi < -110)
5531 report.rcpi = (rssi + 110) * 2;
5533 /* action_category + action_code */
5534 buf = wpabuf_alloc(2 + sizeof(report));
5536 wpa_printf(MSG_ERROR,
5537 "RRM: Link measurement report failed. Buffer allocation failed");
5541 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
5542 wpabuf_put_u8(buf, WLAN_RRM_LINK_MEASUREMENT_REPORT);
5543 wpabuf_put_data(buf, &report, sizeof(report));
5544 wpa_hexdump(MSG_DEBUG, "RRM: Link measurement report:",
5545 wpabuf_head(buf), wpabuf_len(buf));
5547 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, src,
5548 wpa_s->own_addr, wpa_s->bssid,
5549 wpabuf_head(buf), wpabuf_len(buf), 0)) {
5550 wpa_printf(MSG_ERROR,
5551 "RRM: Link measurement report failed. Send action failed");