3 * Copyright (c) 2003-2012, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
16 #include "crypto/random.h"
17 #include "crypto/sha1.h"
18 #include "eapol_supp/eapol_supp_sm.h"
19 #include "eap_peer/eap.h"
20 #include "eap_peer/eap_proxy.h"
21 #include "eap_server/eap_methods.h"
22 #include "rsn_supp/wpa.h"
25 #include "utils/ext_password.h"
26 #include "l2_packet/l2_packet.h"
27 #include "wpa_supplicant_i.h"
29 #include "ctrl_iface.h"
30 #include "pcsc_funcs.h"
31 #include "common/version.h"
32 #include "rsn_supp/preauth.h"
33 #include "rsn_supp/pmksa_cache.h"
34 #include "common/wpa_ctrl.h"
35 #include "common/ieee802_11_defs.h"
37 #include "blacklist.h"
38 #include "wpas_glue.h"
39 #include "wps_supplicant.h"
42 #include "gas_query.h"
44 #include "p2p_supplicant.h"
45 #include "wifi_display.h"
51 #include "offchannel.h"
52 #include "hs20_supplicant.h"
55 const char *wpa_supplicant_version =
56 "wpa_supplicant v" VERSION_STR "\n"
57 "Copyright (c) 2003-2013, Jouni Malinen <j@w1.fi> and contributors";
59 const char *wpa_supplicant_license =
60 "This software may be distributed under the terms of the BSD license.\n"
61 "See README for more details.\n"
62 #ifdef EAP_TLS_OPENSSL
63 "\nThis product includes software developed by the OpenSSL Project\n"
64 "for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
65 #endif /* EAP_TLS_OPENSSL */
68 #ifndef CONFIG_NO_STDOUT_DEBUG
69 /* Long text divided into parts in order to fit in C89 strings size limits. */
70 const char *wpa_supplicant_full_license1 =
72 const char *wpa_supplicant_full_license2 =
73 "This software may be distributed under the terms of the BSD license.\n"
75 "Redistribution and use in source and binary forms, with or without\n"
76 "modification, are permitted provided that the following conditions are\n"
79 const char *wpa_supplicant_full_license3 =
80 "1. Redistributions of source code must retain the above copyright\n"
81 " notice, this list of conditions and the following disclaimer.\n"
83 "2. Redistributions in binary form must reproduce the above copyright\n"
84 " notice, this list of conditions and the following disclaimer in the\n"
85 " documentation and/or other materials provided with the distribution.\n"
87 const char *wpa_supplicant_full_license4 =
88 "3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
89 " names of its contributors may be used to endorse or promote products\n"
90 " derived from this software without specific prior written permission.\n"
92 "THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
93 "\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
94 "LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
95 "A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
96 const char *wpa_supplicant_full_license5 =
97 "OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
98 "SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
99 "LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
100 "DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
101 "THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
102 "(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
103 "OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
105 #endif /* CONFIG_NO_STDOUT_DEBUG */
107 extern int wpa_debug_level;
108 extern int wpa_debug_show_keys;
109 extern int wpa_debug_timestamp;
110 extern struct wpa_driver_ops *wpa_drivers[];
112 /* Configure default/group WEP keys for static WEP */
113 int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
117 for (i = 0; i < NUM_WEP_KEYS; i++) {
118 if (ssid->wep_key_len[i] == 0)
122 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
123 i, i == ssid->wep_tx_keyidx, NULL, 0,
124 ssid->wep_key[i], ssid->wep_key_len[i]);
131 int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
132 struct wpa_ssid *ssid)
139 /* IBSS/WPA-None uses only one key (Group) for both receiving and
140 * sending unicast and multicast packets. */
142 if (ssid->mode != WPAS_MODE_IBSS) {
143 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
144 "IBSS/ad-hoc) for WPA-None", ssid->mode);
148 if (!ssid->psk_set) {
149 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
154 switch (wpa_s->group_cipher) {
155 case WPA_CIPHER_CCMP:
156 os_memcpy(key, ssid->psk, 16);
160 case WPA_CIPHER_GCMP:
161 os_memcpy(key, ssid->psk, 16);
165 case WPA_CIPHER_TKIP:
166 /* WPA-None uses the same Michael MIC key for both TX and RX */
167 os_memcpy(key, ssid->psk, 16 + 8);
168 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
173 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
174 "WPA-None", wpa_s->group_cipher);
178 /* TODO: should actually remember the previously used seq#, both for TX
179 * and RX from each STA.. */
181 return wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
185 static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
187 struct wpa_supplicant *wpa_s = eloop_ctx;
188 const u8 *bssid = wpa_s->bssid;
189 if (is_zero_ether_addr(bssid))
190 bssid = wpa_s->pending_bssid;
191 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
193 wpa_blacklist_add(wpa_s, bssid);
194 wpa_sm_notify_disassoc(wpa_s->wpa);
195 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
196 wpa_s->reassociate = 1;
199 * If we timed out, the AP or the local radio may be busy.
200 * So, wait a second until scanning again.
202 wpa_supplicant_req_scan(wpa_s, 1, 0);
204 wpas_p2p_continue_after_scan(wpa_s);
209 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
210 * @wpa_s: Pointer to wpa_supplicant data
211 * @sec: Number of seconds after which to time out authentication
212 * @usec: Number of microseconds after which to time out authentication
214 * This function is used to schedule a timeout for the current authentication
217 void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
220 if (wpa_s->conf && wpa_s->conf->ap_scan == 0 &&
221 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
224 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
225 "%d usec", sec, usec);
226 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
227 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
232 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
233 * @wpa_s: Pointer to wpa_supplicant data
235 * This function is used to cancel authentication timeout scheduled with
236 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
239 void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
241 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
242 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
243 wpa_blacklist_del(wpa_s, wpa_s->bssid);
248 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
249 * @wpa_s: Pointer to wpa_supplicant data
251 * This function is used to configure EAPOL state machine based on the selected
252 * authentication mode.
254 void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
256 #ifdef IEEE8021X_EAPOL
257 struct eapol_config eapol_conf;
258 struct wpa_ssid *ssid = wpa_s->current_ssid;
260 #ifdef CONFIG_IBSS_RSN
261 if (ssid->mode == WPAS_MODE_IBSS &&
262 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
263 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
265 * RSN IBSS authentication is per-STA and we can disable the
266 * per-BSSID EAPOL authentication.
268 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
269 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
270 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
273 #endif /* CONFIG_IBSS_RSN */
275 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
276 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
278 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
279 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
280 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
282 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
284 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
285 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
286 eapol_conf.accept_802_1x_keys = 1;
287 eapol_conf.required_keys = 0;
288 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
289 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
291 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
292 eapol_conf.required_keys |=
293 EAPOL_REQUIRE_KEY_BROADCAST;
296 if (wpa_s->conf && (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
297 eapol_conf.required_keys = 0;
300 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
301 eapol_conf.workaround = ssid->eap_workaround;
302 eapol_conf.eap_disabled =
303 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
304 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
305 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
306 eapol_conf.external_sim = wpa_s->conf->external_sim;
307 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
308 #endif /* IEEE8021X_EAPOL */
313 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
314 * @wpa_s: Pointer to wpa_supplicant data
315 * @ssid: Configuration data for the network
317 * This function is used to configure WPA state machine and related parameters
318 * to a mode where WPA is not enabled. This is called as part of the
319 * authentication configuration when the selected network does not use WPA.
321 void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
322 struct wpa_ssid *ssid)
326 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
327 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
328 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
329 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
331 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
332 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
333 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
334 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
335 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
336 wpa_s->group_cipher = WPA_CIPHER_NONE;
337 wpa_s->mgmt_group_cipher = 0;
339 for (i = 0; i < NUM_WEP_KEYS; i++) {
340 if (ssid->wep_key_len[i] > 5) {
341 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
342 wpa_s->group_cipher = WPA_CIPHER_WEP104;
344 } else if (ssid->wep_key_len[i] > 0) {
345 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
346 wpa_s->group_cipher = WPA_CIPHER_WEP40;
351 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
352 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
353 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
354 wpa_s->pairwise_cipher);
355 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
356 #ifdef CONFIG_IEEE80211W
357 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
358 wpa_s->mgmt_group_cipher);
359 #endif /* CONFIG_IEEE80211W */
361 pmksa_cache_clear_current(wpa_s->wpa);
365 void free_hw_features(struct wpa_supplicant *wpa_s)
368 if (wpa_s->hw.modes == NULL)
371 for (i = 0; i < wpa_s->hw.num_modes; i++) {
372 os_free(wpa_s->hw.modes[i].channels);
373 os_free(wpa_s->hw.modes[i].rates);
376 os_free(wpa_s->hw.modes);
377 wpa_s->hw.modes = NULL;
381 static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
383 bgscan_deinit(wpa_s);
384 autoscan_deinit(wpa_s);
385 scard_deinit(wpa_s->scard);
387 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
388 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
389 l2_packet_deinit(wpa_s->l2);
392 l2_packet_deinit(wpa_s->l2_br);
396 if (wpa_s->conf != NULL) {
397 struct wpa_ssid *ssid;
398 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
399 wpas_notify_network_removed(wpa_s, ssid);
402 os_free(wpa_s->confname);
403 wpa_s->confname = NULL;
405 os_free(wpa_s->confanother);
406 wpa_s->confanother = NULL;
408 wpa_sm_set_eapol(wpa_s->wpa, NULL);
409 eapol_sm_deinit(wpa_s->eapol);
412 rsn_preauth_deinit(wpa_s->wpa);
415 wpa_tdls_deinit(wpa_s->wpa);
416 #endif /* CONFIG_TDLS */
418 pmksa_candidate_free(wpa_s->wpa);
419 wpa_sm_deinit(wpa_s->wpa);
421 wpa_blacklist_clear(wpa_s);
423 wpa_bss_deinit(wpa_s);
425 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
426 wpa_supplicant_cancel_scan(wpa_s);
427 wpa_supplicant_cancel_auth_timeout(wpa_s);
428 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
429 #ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
430 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
432 #endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
434 wpas_wps_deinit(wpa_s);
436 wpabuf_free(wpa_s->pending_eapol_rx);
437 wpa_s->pending_eapol_rx = NULL;
439 #ifdef CONFIG_IBSS_RSN
440 ibss_rsn_deinit(wpa_s->ibss_rsn);
441 wpa_s->ibss_rsn = NULL;
442 #endif /* CONFIG_IBSS_RSN */
447 wpa_supplicant_ap_deinit(wpa_s);
448 #endif /* CONFIG_AP */
451 wpas_p2p_deinit(wpa_s);
452 #endif /* CONFIG_P2P */
454 #ifdef CONFIG_OFFCHANNEL
455 offchannel_deinit(wpa_s);
456 #endif /* CONFIG_OFFCHANNEL */
458 wpa_supplicant_cancel_sched_scan(wpa_s);
460 os_free(wpa_s->next_scan_freqs);
461 wpa_s->next_scan_freqs = NULL;
463 gas_query_deinit(wpa_s->gas);
466 free_hw_features(wpa_s);
468 os_free(wpa_s->bssid_filter);
469 wpa_s->bssid_filter = NULL;
471 os_free(wpa_s->disallow_aps_bssid);
472 wpa_s->disallow_aps_bssid = NULL;
473 os_free(wpa_s->disallow_aps_ssid);
474 wpa_s->disallow_aps_ssid = NULL;
476 wnm_bss_keep_alive_deinit(wpa_s);
478 wnm_deallocate_memory(wpa_s);
479 #endif /* CONFIG_WNM */
481 ext_password_deinit(wpa_s->ext_pw);
482 wpa_s->ext_pw = NULL;
484 wpabuf_free(wpa_s->last_gas_resp);
486 os_free(wpa_s->last_scan_res);
487 wpa_s->last_scan_res = NULL;
492 * wpa_clear_keys - Clear keys configured for the driver
493 * @wpa_s: Pointer to wpa_supplicant data
494 * @addr: Previously used BSSID or %NULL if not available
496 * This function clears the encryption keys that has been previously configured
499 void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
501 if (wpa_s->keys_cleared) {
502 /* Some drivers (e.g., ndiswrapper & NDIS drivers) seem to have
503 * timing issues with keys being cleared just before new keys
504 * are set or just after association or something similar. This
505 * shows up in group key handshake failing often because of the
506 * client not receiving the first encrypted packets correctly.
507 * Skipping some of the extra key clearing steps seems to help
508 * in completing group key handshake more reliably. */
509 wpa_dbg(wpa_s, MSG_DEBUG, "No keys have been configured - "
510 "skip key clearing");
514 /* MLME-DELETEKEYS.request */
515 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 0, 0, NULL, 0, NULL, 0);
516 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 1, 0, NULL, 0, NULL, 0);
517 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 2, 0, NULL, 0, NULL, 0);
518 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 3, 0, NULL, 0, NULL, 0);
519 #ifdef CONFIG_IEEE80211W
520 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 4, 0, NULL, 0, NULL, 0);
521 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, 5, 0, NULL, 0, NULL, 0);
522 #endif /* CONFIG_IEEE80211W */
524 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
526 /* MLME-SETPROTECTION.request(None) */
527 wpa_drv_mlme_setprotection(
529 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
530 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
532 wpa_s->keys_cleared = 1;
537 * wpa_supplicant_state_txt - Get the connection state name as a text string
538 * @state: State (wpa_state; WPA_*)
539 * Returns: The state name as a printable text string
541 const char * wpa_supplicant_state_txt(enum wpa_states state)
544 case WPA_DISCONNECTED:
545 return "DISCONNECTED";
548 case WPA_INTERFACE_DISABLED:
549 return "INTERFACE_DISABLED";
552 case WPA_AUTHENTICATING:
553 return "AUTHENTICATING";
554 case WPA_ASSOCIATING:
555 return "ASSOCIATING";
558 case WPA_4WAY_HANDSHAKE:
559 return "4WAY_HANDSHAKE";
560 case WPA_GROUP_HANDSHAKE:
561 return "GROUP_HANDSHAKE";
572 static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
574 if (wpas_driver_bss_selection(wpa_s))
576 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
579 bgscan_deinit(wpa_s);
580 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan) {
581 if (bgscan_init(wpa_s, wpa_s->current_ssid)) {
582 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
585 * Live without bgscan; it is only used as a roaming
586 * optimization, so the initial connection is not
590 struct wpa_scan_results *scan_res;
591 wpa_s->bgscan_ssid = wpa_s->current_ssid;
592 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
595 bgscan_notify_scan(wpa_s, scan_res);
596 wpa_scan_results_free(scan_res);
600 wpa_s->bgscan_ssid = NULL;
604 static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
606 if (wpa_s->bgscan_ssid != NULL) {
607 bgscan_deinit(wpa_s);
608 wpa_s->bgscan_ssid = NULL;
612 #endif /* CONFIG_BGSCAN */
615 static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
617 if (autoscan_init(wpa_s, 0))
618 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
622 static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
624 autoscan_deinit(wpa_s);
628 void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
630 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
631 wpa_s->wpa_state == WPA_SCANNING) {
632 autoscan_deinit(wpa_s);
633 wpa_supplicant_start_autoscan(wpa_s);
639 * wpa_supplicant_set_state - Set current connection state
640 * @wpa_s: Pointer to wpa_supplicant data
641 * @state: The new connection state
643 * This function is called whenever the connection state changes, e.g.,
644 * association is completed for WPA/WPA2 4-Way Handshake is started.
646 void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
647 enum wpa_states state)
649 enum wpa_states old_state = wpa_s->wpa_state;
651 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
652 wpa_supplicant_state_txt(wpa_s->wpa_state),
653 wpa_supplicant_state_txt(state));
655 if (state != WPA_SCANNING)
656 wpa_supplicant_notify_scanning(wpa_s, 0);
658 if (state == WPA_COMPLETED && wpa_s->new_connection) {
659 struct wpa_ssid *ssid = wpa_s->current_ssid;
660 #if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
661 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
662 MACSTR " completed [id=%d id_str=%s]",
663 MAC2STR(wpa_s->bssid),
664 ssid ? ssid->id : -1,
665 ssid && ssid->id_str ? ssid->id_str : "");
666 #endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
667 wpas_clear_temp_disabled(wpa_s, ssid, 1);
668 wpa_s->extra_blacklist_count = 0;
669 wpa_s->new_connection = 0;
670 wpa_drv_set_operstate(wpa_s, 1);
671 #ifndef IEEE8021X_EAPOL
672 wpa_drv_set_supp_port(wpa_s, 1);
673 #endif /* IEEE8021X_EAPOL */
674 wpa_s->after_wps = 0;
676 wpas_p2p_completed(wpa_s);
677 #endif /* CONFIG_P2P */
679 sme_sched_obss_scan(wpa_s, 1);
680 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
681 state == WPA_ASSOCIATED) {
682 wpa_s->new_connection = 1;
683 wpa_drv_set_operstate(wpa_s, 0);
684 #ifndef IEEE8021X_EAPOL
685 wpa_drv_set_supp_port(wpa_s, 0);
686 #endif /* IEEE8021X_EAPOL */
687 sme_sched_obss_scan(wpa_s, 0);
689 wpa_s->wpa_state = state;
692 if (state == WPA_COMPLETED)
693 wpa_supplicant_start_bgscan(wpa_s);
695 wpa_supplicant_stop_bgscan(wpa_s);
696 #endif /* CONFIG_BGSCAN */
698 if (state == WPA_AUTHENTICATING)
699 wpa_supplicant_stop_autoscan(wpa_s);
701 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
702 wpa_supplicant_start_autoscan(wpa_s);
704 if (wpa_s->wpa_state != old_state) {
705 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
707 if (wpa_s->wpa_state == WPA_COMPLETED ||
708 old_state == WPA_COMPLETED)
709 wpas_notify_auth_changed(wpa_s);
714 void wpa_supplicant_terminate_proc(struct wpa_global *global)
718 struct wpa_supplicant *wpa_s = global->ifaces;
721 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
722 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
723 wpas_p2p_disconnect(wpa_s);
724 #endif /* CONFIG_P2P */
725 if (wpas_wps_terminate_pending(wpa_s) == 1)
729 #endif /* CONFIG_WPS */
736 static void wpa_supplicant_terminate(int sig, void *signal_ctx)
738 struct wpa_global *global = signal_ctx;
739 wpa_supplicant_terminate_proc(global);
743 void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
745 enum wpa_states old_state = wpa_s->wpa_state;
747 wpa_s->pairwise_cipher = 0;
748 wpa_s->group_cipher = 0;
749 wpa_s->mgmt_group_cipher = 0;
751 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
752 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
754 if (wpa_s->wpa_state != old_state)
755 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
760 * wpa_supplicant_reload_configuration - Reload configuration data
761 * @wpa_s: Pointer to wpa_supplicant data
762 * Returns: 0 on success or -1 if configuration parsing failed
764 * This function can be used to request that the configuration data is reloaded
765 * (e.g., after configuration file change). This function is reloading
766 * configuration only for one interface, so this may need to be called multiple
767 * times if %wpa_supplicant is controlling multiple interfaces and all
768 * interfaces need reconfiguration.
770 int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
772 struct wpa_config *conf;
776 if (wpa_s->confname == NULL)
778 conf = wpa_config_read(wpa_s->confname, NULL);
780 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
781 "file '%s' - exiting", wpa_s->confname);
784 wpa_config_read(wpa_s->confanother, conf);
786 conf->changed_parameters = (unsigned int) -1;
788 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
789 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
790 os_strcmp(conf->ctrl_interface,
791 wpa_s->conf->ctrl_interface) != 0);
793 if (reconf_ctrl && wpa_s->ctrl_iface) {
794 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
795 wpa_s->ctrl_iface = NULL;
798 eapol_sm_invalidate_cached_session(wpa_s->eapol);
799 if (wpa_s->current_ssid) {
800 wpa_supplicant_deauthenticate(wpa_s,
801 WLAN_REASON_DEAUTH_LEAVING);
805 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
806 * pkcs11_engine_path, pkcs11_module_path.
808 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
810 * Clear forced success to clear EAP state for next
813 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
815 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
816 wpa_sm_set_config(wpa_s->wpa, NULL);
817 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
818 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
819 rsn_preauth_deinit(wpa_s->wpa);
821 old_ap_scan = wpa_s->conf->ap_scan;
822 wpa_config_free(wpa_s->conf);
824 if (old_ap_scan != wpa_s->conf->ap_scan)
825 wpas_notify_ap_scan_changed(wpa_s);
828 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
830 wpa_supplicant_update_config(wpa_s);
832 wpa_supplicant_clear_status(wpa_s);
833 if (wpa_supplicant_enabled_networks(wpa_s)) {
834 wpa_s->reassociate = 1;
835 wpa_supplicant_req_scan(wpa_s, 0, 0);
837 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
842 static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
844 struct wpa_global *global = signal_ctx;
845 struct wpa_supplicant *wpa_s;
846 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
847 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
849 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
850 wpa_supplicant_terminate_proc(global);
856 enum wpa_key_mgmt key_mgmt2driver(int key_mgmt)
859 case WPA_KEY_MGMT_NONE:
860 return KEY_MGMT_NONE;
861 case WPA_KEY_MGMT_IEEE8021X_NO_WPA:
862 return KEY_MGMT_802_1X_NO_WPA;
863 case WPA_KEY_MGMT_IEEE8021X:
864 return KEY_MGMT_802_1X;
865 case WPA_KEY_MGMT_WPA_NONE:
866 return KEY_MGMT_WPA_NONE;
867 case WPA_KEY_MGMT_FT_IEEE8021X:
868 return KEY_MGMT_FT_802_1X;
869 case WPA_KEY_MGMT_FT_PSK:
870 return KEY_MGMT_FT_PSK;
871 case WPA_KEY_MGMT_IEEE8021X_SHA256:
872 return KEY_MGMT_802_1X_SHA256;
873 case WPA_KEY_MGMT_PSK_SHA256:
874 return KEY_MGMT_PSK_SHA256;
875 case WPA_KEY_MGMT_WPS:
877 case WPA_KEY_MGMT_PSK:
884 static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
885 struct wpa_ssid *ssid,
886 struct wpa_ie_data *ie)
888 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
891 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
892 "from association info");
897 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
899 if (!(ie->group_cipher & ssid->group_cipher)) {
900 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
901 "cipher 0x%x (mask 0x%x) - reject",
902 ie->group_cipher, ssid->group_cipher);
905 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
906 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
907 "cipher 0x%x (mask 0x%x) - reject",
908 ie->pairwise_cipher, ssid->pairwise_cipher);
911 if (!(ie->key_mgmt & ssid->key_mgmt)) {
912 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
913 "management 0x%x (mask 0x%x) - reject",
914 ie->key_mgmt, ssid->key_mgmt);
918 #ifdef CONFIG_IEEE80211W
919 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
920 (ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
921 wpa_s->conf->pmf : ssid->ieee80211w) ==
922 MGMT_FRAME_PROTECTION_REQUIRED) {
923 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
924 "that does not support management frame protection - "
928 #endif /* CONFIG_IEEE80211W */
935 * wpa_supplicant_set_suites - Set authentication and encryption parameters
936 * @wpa_s: Pointer to wpa_supplicant data
937 * @bss: Scan results for the selected BSS, or %NULL if not available
938 * @ssid: Configuration data for the selected network
939 * @wpa_ie: Buffer for the WPA/RSN IE
940 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
941 * used buffer length in case the functions returns success.
942 * Returns: 0 on success or -1 on failure
944 * This function is used to configure authentication and encryption parameters
945 * based on the network configuration and scan result for the selected BSS (if
948 int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
949 struct wpa_bss *bss, struct wpa_ssid *ssid,
950 u8 *wpa_ie, size_t *wpa_ie_len)
952 struct wpa_ie_data ie;
954 const u8 *bss_wpa, *bss_rsn;
957 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
958 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
960 bss_wpa = bss_rsn = NULL;
962 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
963 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
964 (ie.group_cipher & ssid->group_cipher) &&
965 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
966 (ie.key_mgmt & ssid->key_mgmt)) {
967 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
968 proto = WPA_PROTO_RSN;
969 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
970 wpa_parse_wpa_ie(bss_wpa, 2 +bss_wpa[1], &ie) == 0 &&
971 (ie.group_cipher & ssid->group_cipher) &&
972 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
973 (ie.key_mgmt & ssid->key_mgmt)) {
974 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
975 proto = WPA_PROTO_WPA;
977 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
980 if (ssid->proto & WPA_PROTO_RSN)
981 proto = WPA_PROTO_RSN;
983 proto = WPA_PROTO_WPA;
984 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
985 os_memset(&ie, 0, sizeof(ie));
986 ie.group_cipher = ssid->group_cipher;
987 ie.pairwise_cipher = ssid->pairwise_cipher;
988 ie.key_mgmt = ssid->key_mgmt;
989 #ifdef CONFIG_IEEE80211W
990 ie.mgmt_group_cipher =
991 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
992 WPA_CIPHER_AES_128_CMAC : 0;
993 #endif /* CONFIG_IEEE80211W */
994 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
995 "based on configuration");
1000 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1001 "pairwise %d key_mgmt %d proto %d",
1002 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
1003 #ifdef CONFIG_IEEE80211W
1004 if (ssid->ieee80211w) {
1005 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1006 ie.mgmt_group_cipher);
1008 #endif /* CONFIG_IEEE80211W */
1010 wpa_s->wpa_proto = proto;
1011 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1012 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1013 !!(ssid->proto & WPA_PROTO_RSN));
1015 if (bss || !wpa_s->ap_ies_from_associnfo) {
1016 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1017 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1018 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1019 bss_rsn ? 2 + bss_rsn[1] : 0))
1023 sel = ie.group_cipher & ssid->group_cipher;
1024 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1025 if (wpa_s->group_cipher < 0) {
1026 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1030 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1031 wpa_cipher_txt(wpa_s->group_cipher));
1033 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
1034 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1035 if (wpa_s->pairwise_cipher < 0) {
1036 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1040 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1041 wpa_cipher_txt(wpa_s->pairwise_cipher));
1043 sel = ie.key_mgmt & ssid->key_mgmt;
1045 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1046 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1047 #endif /* CONFIG_SAE */
1049 #ifdef CONFIG_IEEE80211R
1050 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1051 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
1052 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
1053 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1054 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
1055 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
1056 #endif /* CONFIG_IEEE80211R */
1058 } else if (sel & WPA_KEY_MGMT_SAE) {
1059 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1060 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1061 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1062 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1063 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1064 #endif /* CONFIG_SAE */
1065 #ifdef CONFIG_IEEE80211W
1066 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1067 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
1068 wpa_dbg(wpa_s, MSG_DEBUG,
1069 "WPA: using KEY_MGMT 802.1X with SHA256");
1070 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1071 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
1072 wpa_dbg(wpa_s, MSG_DEBUG,
1073 "WPA: using KEY_MGMT PSK with SHA256");
1074 #endif /* CONFIG_IEEE80211W */
1075 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1076 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
1077 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
1078 } else if (sel & WPA_KEY_MGMT_PSK) {
1079 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
1080 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
1081 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1082 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
1083 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
1085 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1086 "authenticated key management type");
1090 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1091 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1092 wpa_s->pairwise_cipher);
1093 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1095 #ifdef CONFIG_IEEE80211W
1096 sel = ie.mgmt_group_cipher;
1097 if ((ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1098 wpa_s->conf->pmf : ssid->ieee80211w) == NO_MGMT_FRAME_PROTECTION ||
1099 !(ie.capabilities & WPA_CAPABILITY_MFPC))
1101 if (sel & WPA_CIPHER_AES_128_CMAC) {
1102 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
1103 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1106 wpa_s->mgmt_group_cipher = 0;
1107 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
1109 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1110 wpa_s->mgmt_group_cipher);
1111 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1112 (ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1113 wpa_s->conf->pmf : ssid->ieee80211w));
1114 #endif /* CONFIG_IEEE80211W */
1116 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
1117 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
1121 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
1122 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN);
1123 #ifndef CONFIG_NO_PBKDF2
1124 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1127 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1128 4096, psk, PMK_LEN);
1129 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1131 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1133 #endif /* CONFIG_NO_PBKDF2 */
1134 #ifdef CONFIG_EXT_PASSWORD
1135 if (ssid->ext_psk) {
1136 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1138 char pw_str[64 + 1];
1142 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1143 "found from external storage");
1147 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1148 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1149 "PSK length %d in external storage",
1150 (int) wpabuf_len(pw));
1151 ext_password_free(pw);
1155 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1156 pw_str[wpabuf_len(pw)] = '\0';
1158 #ifndef CONFIG_NO_PBKDF2
1159 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1161 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1162 4096, psk, PMK_LEN);
1163 os_memset(pw_str, 0, sizeof(pw_str));
1164 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1165 "external passphrase)",
1167 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1169 #endif /* CONFIG_NO_PBKDF2 */
1170 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1171 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1172 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1173 "Invalid PSK hex string");
1174 os_memset(pw_str, 0, sizeof(pw_str));
1175 ext_password_free(pw);
1178 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN);
1180 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1182 os_memset(pw_str, 0, sizeof(pw_str));
1183 ext_password_free(pw);
1187 os_memset(pw_str, 0, sizeof(pw_str));
1188 ext_password_free(pw);
1190 #endif /* CONFIG_EXT_PASSWORD */
1192 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1198 static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
1203 case 0: /* Bits 0-7 */
1205 case 1: /* Bits 8-15 */
1207 case 2: /* Bits 16-23 */
1209 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1210 *pos |= 0x08; /* Bit 19 - BSS Transition */
1211 #endif /* CONFIG_WNM */
1213 case 3: /* Bits 24-31 */
1215 *pos |= 0x02; /* Bit 25 - SSID List */
1216 #endif /* CONFIG_WNM */
1217 #ifdef CONFIG_INTERWORKING
1218 if (wpa_s->conf->interworking)
1219 *pos |= 0x80; /* Bit 31 - Interworking */
1220 #endif /* CONFIG_INTERWORKING */
1222 case 4: /* Bits 32-39 */
1223 #ifdef CONFIG_INTERWORKING
1224 *pos |= 0x01; /* Bit 32 - QoS Map */
1225 #endif /* CONFIG_INTERWORKING */
1227 case 5: /* Bits 40-47 */
1229 case 6: /* Bits 48-55 */
1235 int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf)
1240 if (len < wpa_s->extended_capa_len)
1241 len = wpa_s->extended_capa_len;
1243 *pos++ = WLAN_EID_EXT_CAPAB;
1245 for (i = 0; i < len; i++, pos++) {
1246 wpas_ext_capab_byte(wpa_s, pos, i);
1248 if (i < wpa_s->extended_capa_len) {
1249 *pos &= ~wpa_s->extended_capa_mask[i];
1250 *pos |= wpa_s->extended_capa[i];
1254 while (len > 0 && buf[1 + len] == 0) {
1266 * wpa_supplicant_associate - Request association
1267 * @wpa_s: Pointer to wpa_supplicant data
1268 * @bss: Scan results for the selected BSS, or %NULL if not available
1269 * @ssid: Configuration data for the selected network
1271 * This function is used to request %wpa_supplicant to associate with a BSS.
1273 void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
1274 struct wpa_bss *bss, struct wpa_ssid *ssid)
1278 int use_crypt, ret, i, bssid_changed;
1279 int algs = WPA_AUTH_ALG_OPEN;
1280 enum wpa_cipher cipher_pairwise, cipher_group;
1281 struct wpa_driver_associate_params params;
1282 int wep_keys_set = 0;
1283 int assoc_failed = 0;
1284 struct wpa_ssid *old_ssid;
1285 #ifdef CONFIG_HT_OVERRIDES
1286 struct ieee80211_ht_capabilities htcaps;
1287 struct ieee80211_ht_capabilities htcaps_mask;
1288 #endif /* CONFIG_HT_OVERRIDES */
1290 #ifdef CONFIG_IBSS_RSN
1291 ibss_rsn_deinit(wpa_s->ibss_rsn);
1292 wpa_s->ibss_rsn = NULL;
1293 #endif /* CONFIG_IBSS_RSN */
1295 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1296 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1298 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
1299 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1303 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1304 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1305 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1306 wpas_p2p_ap_setup_failed(wpa_s);
1309 wpa_s->current_bss = bss;
1310 #else /* CONFIG_AP */
1311 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1313 #endif /* CONFIG_AP */
1319 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1321 #endif /* CONFIG_TDLS */
1323 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1324 ssid->mode == IEEE80211_MODE_INFRA) {
1325 sme_authenticate(wpa_s, bss, ssid);
1329 os_memset(¶ms, 0, sizeof(params));
1330 wpa_s->reassociate = 0;
1331 if (bss && !wpas_driver_bss_selection(wpa_s)) {
1332 #ifdef CONFIG_IEEE80211R
1333 const u8 *ie, *md = NULL;
1334 #endif /* CONFIG_IEEE80211R */
1335 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
1336 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
1337 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
1338 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
1339 os_memset(wpa_s->bssid, 0, ETH_ALEN);
1340 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
1342 wpas_notify_bssid_changed(wpa_s);
1343 #ifdef CONFIG_IEEE80211R
1344 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
1345 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
1347 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
1349 /* Prepare for the next transition */
1350 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
1352 #endif /* CONFIG_IEEE80211R */
1354 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
1355 wpa_s->conf->ap_scan == 2 &&
1356 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
1357 /* Use ap_scan==1 style network selection to find the network
1359 wpa_s->scan_req = MANUAL_SCAN_REQ;
1360 wpa_s->reassociate = 1;
1361 wpa_supplicant_req_scan(wpa_s, 0, 0);
1363 #endif /* CONFIG_WPS */
1365 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
1366 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
1367 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1369 wpa_supplicant_cancel_sched_scan(wpa_s);
1370 wpa_supplicant_cancel_scan(wpa_s);
1372 /* Starting new association, so clear the possibly used WPA IE from the
1373 * previous association. */
1374 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
1376 #ifdef IEEE8021X_EAPOL
1377 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1379 if (ssid->non_leap == 0)
1380 algs = WPA_AUTH_ALG_LEAP;
1382 algs |= WPA_AUTH_ALG_LEAP;
1385 #endif /* IEEE8021X_EAPOL */
1386 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
1387 if (ssid->auth_alg) {
1388 algs = ssid->auth_alg;
1389 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
1393 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
1394 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
1395 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
1396 int try_opportunistic;
1397 try_opportunistic = (ssid->proactive_key_caching < 0 ?
1399 ssid->proactive_key_caching) &&
1400 (ssid->proto & WPA_PROTO_RSN);
1401 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
1402 ssid, try_opportunistic) == 0)
1403 eapol_sm_notify_pmkid_attempt(wpa_s->eapol, 1);
1404 wpa_ie_len = sizeof(wpa_ie);
1405 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
1406 wpa_ie, &wpa_ie_len)) {
1407 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1408 "key management and encryption suites");
1411 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
1412 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
1414 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
1415 * use non-WPA since the scan results did not indicate that the
1416 * AP is using WPA or WPA2.
1418 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1420 wpa_s->wpa_proto = 0;
1421 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
1422 wpa_ie_len = sizeof(wpa_ie);
1423 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
1424 wpa_ie, &wpa_ie_len)) {
1425 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1426 "key management and encryption suites (no "
1431 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
1432 struct wpabuf *wps_ie;
1433 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
1434 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
1435 wpa_ie_len = wpabuf_len(wps_ie);
1436 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
1439 wpabuf_free(wps_ie);
1440 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1441 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
1442 params.wps = WPS_MODE_PRIVACY;
1444 params.wps = WPS_MODE_OPEN;
1445 wpa_s->wpa_proto = 0;
1446 #endif /* CONFIG_WPS */
1448 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1450 wpa_s->wpa_proto = 0;
1454 if (wpa_s->global->p2p) {
1458 pos = wpa_ie + wpa_ie_len;
1459 len = sizeof(wpa_ie) - wpa_ie_len;
1460 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
1466 wpa_s->cross_connect_disallowed = 0;
1469 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
1471 wpa_s->cross_connect_disallowed =
1472 p2p_get_cross_connect_disallowed(p2p);
1474 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
1476 wpa_s->cross_connect_disallowed ?
1477 "disallows" : "allows");
1480 #endif /* CONFIG_P2P */
1483 if (is_hs20_network(wpa_s, ssid, bss)) {
1484 struct wpabuf *hs20;
1485 hs20 = wpabuf_alloc(20);
1487 wpas_hs20_add_indication(hs20);
1488 os_memcpy(wpa_ie + wpa_ie_len, wpabuf_head(hs20),
1490 wpa_ie_len += wpabuf_len(hs20);
1494 #endif /* CONFIG_HS20 */
1497 * Workaround: Add Extended Capabilities element only if the AP
1498 * included this element in Beacon/Probe Response frames. Some older
1499 * APs seem to have interoperability issues if this element is
1500 * included, so while the standard may require us to include the
1501 * element in all cases, it is justifiable to skip it to avoid
1502 * interoperability issues.
1504 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
1507 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab);
1508 if (ext_capab_len > 0) {
1510 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
1512 os_memmove(pos + ext_capab_len, pos,
1513 wpa_ie_len - (pos - wpa_ie));
1514 wpa_ie_len += ext_capab_len;
1515 os_memcpy(pos, ext_capab, ext_capab_len);
1519 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
1521 cipher_pairwise = wpa_cipher_to_suite_driver(wpa_s->pairwise_cipher);
1522 cipher_group = wpa_cipher_to_suite_driver(wpa_s->group_cipher);
1523 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
1524 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1525 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
1527 if (wpa_set_wep_keys(wpa_s, ssid)) {
1532 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
1535 #ifdef IEEE8021X_EAPOL
1536 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1537 if ((ssid->eapol_flags &
1538 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
1539 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
1543 /* Assume that dynamic WEP-104 keys will be used and
1544 * set cipher suites in order for drivers to expect
1546 cipher_pairwise = cipher_group = CIPHER_WEP104;
1549 #endif /* IEEE8021X_EAPOL */
1551 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
1552 /* Set the key before (and later after) association */
1553 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
1556 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
1558 params.ssid = bss->ssid;
1559 params.ssid_len = bss->ssid_len;
1560 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
1561 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
1562 MACSTR " freq=%u MHz based on scan results "
1564 MAC2STR(bss->bssid), bss->freq,
1566 params.bssid = bss->bssid;
1567 params.freq = bss->freq;
1570 params.ssid = ssid->ssid;
1571 params.ssid_len = ssid->ssid_len;
1574 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
1575 wpa_s->conf->ap_scan == 2) {
1576 params.bssid = ssid->bssid;
1577 params.fixed_bssid = 1;
1580 if (ssid->mode == WPAS_MODE_IBSS && ssid->frequency > 0 &&
1582 params.freq = ssid->frequency; /* Initial channel for IBSS */
1583 params.wpa_ie = wpa_ie;
1584 params.wpa_ie_len = wpa_ie_len;
1585 params.pairwise_suite = cipher_pairwise;
1586 params.group_suite = cipher_group;
1587 params.key_mgmt_suite = key_mgmt2driver(wpa_s->key_mgmt);
1588 params.wpa_proto = wpa_s->wpa_proto;
1589 params.auth_alg = algs;
1590 params.mode = ssid->mode;
1591 params.bg_scan_period = ssid->bg_scan_period;
1592 for (i = 0; i < NUM_WEP_KEYS; i++) {
1593 if (ssid->wep_key_len[i])
1594 params.wep_key[i] = ssid->wep_key[i];
1595 params.wep_key_len[i] = ssid->wep_key_len[i];
1597 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
1599 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
1600 (params.key_mgmt_suite == KEY_MGMT_PSK ||
1601 params.key_mgmt_suite == KEY_MGMT_FT_PSK)) {
1602 params.passphrase = ssid->passphrase;
1604 params.psk = ssid->psk;
1607 params.drop_unencrypted = use_crypt;
1609 #ifdef CONFIG_IEEE80211W
1610 params.mgmt_frame_protection =
1611 ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT ?
1612 wpa_s->conf->pmf : ssid->ieee80211w;
1613 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
1614 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
1615 struct wpa_ie_data ie;
1616 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
1618 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
1619 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
1620 "MFP: require MFP");
1621 params.mgmt_frame_protection =
1622 MGMT_FRAME_PROTECTION_REQUIRED;
1625 #endif /* CONFIG_IEEE80211W */
1627 params.p2p = ssid->p2p_group;
1629 if (wpa_s->parent->set_sta_uapsd)
1630 params.uapsd = wpa_s->parent->sta_uapsd;
1634 #ifdef CONFIG_HT_OVERRIDES
1635 os_memset(&htcaps, 0, sizeof(htcaps));
1636 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
1637 params.htcaps = (u8 *) &htcaps;
1638 params.htcaps_mask = (u8 *) &htcaps_mask;
1639 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, ¶ms);
1640 #endif /* CONFIG_HT_OVERRIDES */
1642 ret = wpa_drv_associate(wpa_s, ¶ms);
1644 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
1646 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
1648 * The driver is known to mean what is saying, so we
1649 * can stop right here; the association will not
1652 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
1653 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1654 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1657 /* try to continue anyway; new association will be tried again
1662 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
1663 /* Set the key after the association just in case association
1664 * cleared the previously configured key. */
1665 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
1666 /* No need to timeout authentication since there is no key
1668 wpa_supplicant_cancel_auth_timeout(wpa_s);
1669 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
1670 #ifdef CONFIG_IBSS_RSN
1671 } else if (ssid->mode == WPAS_MODE_IBSS &&
1672 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
1673 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
1675 * RSN IBSS authentication is per-STA and we can disable the
1676 * per-BSSID authentication.
1678 wpa_supplicant_cancel_auth_timeout(wpa_s);
1679 #endif /* CONFIG_IBSS_RSN */
1681 /* Timeout for IEEE 802.11 authentication and association */
1685 /* give IBSS a bit more time */
1686 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
1687 } else if (wpa_s->conf->ap_scan == 1) {
1688 /* give IBSS a bit more time */
1689 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
1691 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
1695 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
1696 /* Set static WEP keys again */
1697 wpa_set_wep_keys(wpa_s, ssid);
1700 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
1702 * Do not allow EAP session resumption between different
1703 * network configurations.
1705 eapol_sm_invalidate_cached_session(wpa_s->eapol);
1707 old_ssid = wpa_s->current_ssid;
1708 wpa_s->current_ssid = ssid;
1709 wpa_s->current_bss = bss;
1710 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
1711 wpa_supplicant_initiate_eapol(wpa_s);
1712 if (old_ssid != wpa_s->current_ssid)
1713 wpas_notify_network_changed(wpa_s);
1717 static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
1720 struct wpa_ssid *old_ssid;
1722 wpa_clear_keys(wpa_s, addr);
1723 old_ssid = wpa_s->current_ssid;
1724 wpa_supplicant_mark_disassoc(wpa_s);
1725 wpa_sm_set_config(wpa_s->wpa, NULL);
1726 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
1727 if (old_ssid != wpa_s->current_ssid)
1728 wpas_notify_network_changed(wpa_s);
1729 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
1734 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
1735 * @wpa_s: Pointer to wpa_supplicant data
1736 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
1738 * This function is used to request %wpa_supplicant to deauthenticate from the
1741 void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
1745 union wpa_event_data event;
1748 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
1749 " pending_bssid=" MACSTR " reason=%d state=%s",
1750 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
1751 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
1753 if (!is_zero_ether_addr(wpa_s->bssid))
1754 addr = wpa_s->bssid;
1755 else if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
1756 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
1757 wpa_s->wpa_state == WPA_ASSOCIATING))
1758 addr = wpa_s->pending_bssid;
1759 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
1761 * When using driver-based BSS selection, we may not know the
1762 * BSSID with which we are currently trying to associate. We
1763 * need to notify the driver of this disconnection even in such
1764 * a case, so use the all zeros address here.
1766 addr = wpa_s->bssid;
1771 wpa_tdls_teardown_peers(wpa_s->wpa);
1772 #endif /* CONFIG_TDLS */
1775 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
1776 os_memset(&event, 0, sizeof(event));
1777 event.deauth_info.reason_code = (u16) reason_code;
1778 event.deauth_info.locally_generated = 1;
1779 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
1784 wpa_supplicant_clear_connection(wpa_s, addr);
1787 static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
1788 struct wpa_ssid *ssid)
1790 if (!ssid || !ssid->disabled || ssid->disabled == 2)
1794 wpas_clear_temp_disabled(wpa_s, ssid, 1);
1795 wpas_notify_network_enabled_changed(wpa_s, ssid);
1798 * Try to reassociate since there is no current configuration and a new
1799 * network was made available.
1801 if (!wpa_s->current_ssid && !wpa_s->disconnected)
1802 wpa_s->reassociate = 1;
1807 * wpa_supplicant_enable_network - Mark a configured network as enabled
1808 * @wpa_s: wpa_supplicant structure for a network interface
1809 * @ssid: wpa_ssid structure for a configured network or %NULL
1811 * Enables the specified network or all networks if no network specified.
1813 void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
1814 struct wpa_ssid *ssid)
1817 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
1818 wpa_supplicant_enable_one_network(wpa_s, ssid);
1820 wpa_supplicant_enable_one_network(wpa_s, ssid);
1822 if (wpa_s->reassociate && !wpa_s->disconnected) {
1823 if (wpa_s->sched_scanning) {
1824 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
1825 "new network to scan filters");
1826 wpa_supplicant_cancel_sched_scan(wpa_s);
1829 if (wpa_supplicant_fast_associate(wpa_s) != 1)
1830 wpa_supplicant_req_scan(wpa_s, 0, 0);
1836 * wpa_supplicant_disable_network - Mark a configured network as disabled
1837 * @wpa_s: wpa_supplicant structure for a network interface
1838 * @ssid: wpa_ssid structure for a configured network or %NULL
1840 * Disables the specified network or all networks if no network specified.
1842 void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
1843 struct wpa_ssid *ssid)
1845 struct wpa_ssid *other_ssid;
1849 if (wpa_s->sched_scanning)
1850 wpa_supplicant_cancel_sched_scan(wpa_s);
1852 for (other_ssid = wpa_s->conf->ssid; other_ssid;
1853 other_ssid = other_ssid->next) {
1854 was_disabled = other_ssid->disabled;
1855 if (was_disabled == 2)
1856 continue; /* do not change persistent P2P group
1859 other_ssid->disabled = 1;
1861 if (was_disabled != other_ssid->disabled)
1862 wpas_notify_network_enabled_changed(
1865 if (wpa_s->current_ssid)
1866 wpa_supplicant_deauthenticate(
1867 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
1868 } else if (ssid->disabled != 2) {
1869 if (ssid == wpa_s->current_ssid)
1870 wpa_supplicant_deauthenticate(
1871 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
1873 was_disabled = ssid->disabled;
1877 if (was_disabled != ssid->disabled) {
1878 wpas_notify_network_enabled_changed(wpa_s, ssid);
1879 if (wpa_s->sched_scanning) {
1880 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
1881 "to remove network from filters");
1882 wpa_supplicant_cancel_sched_scan(wpa_s);
1883 wpa_supplicant_req_scan(wpa_s, 0, 0);
1891 * wpa_supplicant_select_network - Attempt association with a network
1892 * @wpa_s: wpa_supplicant structure for a network interface
1893 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
1895 void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
1896 struct wpa_ssid *ssid)
1899 struct wpa_ssid *other_ssid;
1900 int disconnected = 0;
1902 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
1903 wpa_supplicant_deauthenticate(
1904 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
1909 wpas_clear_temp_disabled(wpa_s, ssid, 1);
1912 * Mark all other networks disabled or mark all networks enabled if no
1913 * network specified.
1915 for (other_ssid = wpa_s->conf->ssid; other_ssid;
1916 other_ssid = other_ssid->next) {
1917 int was_disabled = other_ssid->disabled;
1918 if (was_disabled == 2)
1919 continue; /* do not change persistent P2P group data */
1921 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
1922 if (was_disabled && !other_ssid->disabled)
1923 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
1925 if (was_disabled != other_ssid->disabled)
1926 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
1929 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid) {
1930 /* We are already associated with the selected network */
1931 wpa_printf(MSG_DEBUG, "Already associated with the "
1932 "selected network - do nothing");
1937 wpa_s->current_ssid = ssid;
1938 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
1940 wpa_s->connect_without_scan = NULL;
1941 wpa_s->disconnected = 0;
1942 wpa_s->reassociate = 1;
1944 if (wpa_supplicant_fast_associate(wpa_s) != 1)
1945 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
1948 wpas_notify_network_selected(wpa_s, ssid);
1953 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
1954 * @wpa_s: wpa_supplicant structure for a network interface
1955 * @ap_scan: AP scan mode
1956 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
1959 int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
1964 if (ap_scan < 0 || ap_scan > 2)
1968 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
1969 wpa_s->wpa_state >= WPA_ASSOCIATING &&
1970 wpa_s->wpa_state < WPA_COMPLETED) {
1971 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
1972 "associating", wpa_s->conf->ap_scan, ap_scan);
1975 #endif /* ANDROID */
1977 old_ap_scan = wpa_s->conf->ap_scan;
1978 wpa_s->conf->ap_scan = ap_scan;
1980 if (old_ap_scan != wpa_s->conf->ap_scan)
1981 wpas_notify_ap_scan_changed(wpa_s);
1988 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
1989 * @wpa_s: wpa_supplicant structure for a network interface
1990 * @expire_age: Expiration age in seconds
1991 * Returns: 0 if succeed or -1 if expire_age has an invalid value
1994 int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
1995 unsigned int bss_expire_age)
1997 if (bss_expire_age < 10) {
1998 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
2002 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
2004 wpa_s->conf->bss_expiration_age = bss_expire_age;
2011 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
2012 * @wpa_s: wpa_supplicant structure for a network interface
2013 * @expire_count: number of scans after which an unseen BSS is reclaimed
2014 * Returns: 0 if succeed or -1 if expire_count has an invalid value
2017 int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
2018 unsigned int bss_expire_count)
2020 if (bss_expire_count < 1) {
2021 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
2025 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
2027 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
2034 * wpa_supplicant_set_scan_interval - Set scan interval
2035 * @wpa_s: wpa_supplicant structure for a network interface
2036 * @scan_interval: scan interval in seconds
2037 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
2040 int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
2043 if (scan_interval < 0) {
2044 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
2048 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
2050 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
2057 * wpa_supplicant_set_debug_params - Set global debug params
2058 * @global: wpa_global structure
2059 * @debug_level: debug level
2060 * @debug_timestamp: determines if show timestamp in debug data
2061 * @debug_show_keys: determines if show keys in debug data
2062 * Returns: 0 if succeed or -1 if debug_level has wrong value
2064 int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
2065 int debug_timestamp, int debug_show_keys)
2068 int old_level, old_timestamp, old_show_keys;
2070 /* check for allowed debuglevels */
2071 if (debug_level != MSG_EXCESSIVE &&
2072 debug_level != MSG_MSGDUMP &&
2073 debug_level != MSG_DEBUG &&
2074 debug_level != MSG_INFO &&
2075 debug_level != MSG_WARNING &&
2076 debug_level != MSG_ERROR)
2079 old_level = wpa_debug_level;
2080 old_timestamp = wpa_debug_timestamp;
2081 old_show_keys = wpa_debug_show_keys;
2083 wpa_debug_level = debug_level;
2084 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
2085 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
2087 if (wpa_debug_level != old_level)
2088 wpas_notify_debug_level_changed(global);
2089 if (wpa_debug_timestamp != old_timestamp)
2090 wpas_notify_debug_timestamp_changed(global);
2091 if (wpa_debug_show_keys != old_show_keys)
2092 wpas_notify_debug_show_keys_changed(global);
2099 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
2100 * @wpa_s: Pointer to wpa_supplicant data
2101 * Returns: A pointer to the current network structure or %NULL on failure
2103 struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
2105 struct wpa_ssid *entry;
2106 u8 ssid[MAX_SSID_LEN];
2112 res = wpa_drv_get_ssid(wpa_s, ssid);
2114 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
2120 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
2121 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
2126 wired = wpa_s->conf->ap_scan == 0 &&
2127 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
2129 entry = wpa_s->conf->ssid;
2131 if (!wpas_network_disabled(wpa_s, entry) &&
2132 ((ssid_len == entry->ssid_len &&
2133 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
2134 (!entry->bssid_set ||
2135 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2138 if (!wpas_network_disabled(wpa_s, entry) &&
2139 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
2140 (entry->ssid == NULL || entry->ssid_len == 0) &&
2141 (!entry->bssid_set ||
2142 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2144 #endif /* CONFIG_WPS */
2146 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
2147 entry->ssid_len == 0 &&
2148 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
2151 entry = entry->next;
2158 static int select_driver(struct wpa_supplicant *wpa_s, int i)
2160 struct wpa_global *global = wpa_s->global;
2162 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
2163 global->drv_priv[i] = wpa_drivers[i]->global_init();
2164 if (global->drv_priv[i] == NULL) {
2165 wpa_printf(MSG_ERROR, "Failed to initialize driver "
2166 "'%s'", wpa_drivers[i]->name);
2171 wpa_s->driver = wpa_drivers[i];
2172 wpa_s->global_drv_priv = global->drv_priv[i];
2178 static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
2183 const char *pos, *driver = name;
2188 if (wpa_drivers[0] == NULL) {
2189 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
2195 /* default to first driver in the list */
2196 return select_driver(wpa_s, 0);
2200 pos = os_strchr(driver, ',');
2204 len = os_strlen(driver);
2206 for (i = 0; wpa_drivers[i]; i++) {
2207 if (os_strlen(wpa_drivers[i]->name) == len &&
2208 os_strncmp(driver, wpa_drivers[i]->name, len) ==
2210 /* First driver that succeeds wins */
2211 if (select_driver(wpa_s, i) == 0)
2219 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
2225 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
2226 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
2227 * with struct wpa_driver_ops::init()
2228 * @src_addr: Source address of the EAPOL frame
2229 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
2230 * @len: Length of the EAPOL data
2232 * This function is called for each received EAPOL frame. Most driver
2233 * interfaces rely on more generic OS mechanism for receiving frames through
2234 * l2_packet, but if such a mechanism is not available, the driver wrapper may
2235 * take care of received EAPOL frames and deliver them to the core supplicant
2236 * code by calling this function.
2238 void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
2239 const u8 *buf, size_t len)
2241 struct wpa_supplicant *wpa_s = ctx;
2243 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
2244 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
2246 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
2247 (wpa_s->last_eapol_matches_bssid &&
2250 #endif /* CONFIG_AP */
2251 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
2253 * There is possible race condition between receiving the
2254 * association event and the EAPOL frame since they are coming
2255 * through different paths from the driver. In order to avoid
2256 * issues in trying to process the EAPOL frame before receiving
2257 * association information, lets queue it for processing until
2258 * the association event is received. This may also be needed in
2259 * driver-based roaming case, so also use src_addr != BSSID as a
2260 * trigger if we have previously confirmed that the
2261 * Authenticator uses BSSID as the src_addr (which is not the
2262 * case with wired IEEE 802.1X).
2264 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
2265 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
2266 wpa_supplicant_state_txt(wpa_s->wpa_state),
2267 MAC2STR(wpa_s->bssid));
2268 wpabuf_free(wpa_s->pending_eapol_rx);
2269 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
2270 if (wpa_s->pending_eapol_rx) {
2271 os_get_time(&wpa_s->pending_eapol_rx_time);
2272 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
2278 wpa_s->last_eapol_matches_bssid =
2279 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
2282 if (wpa_s->ap_iface) {
2283 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
2286 #endif /* CONFIG_AP */
2288 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
2289 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
2290 "no key management is configured");
2294 if (wpa_s->eapol_received == 0 &&
2295 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
2296 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
2297 wpa_s->wpa_state != WPA_COMPLETED) &&
2298 (wpa_s->current_ssid == NULL ||
2299 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
2300 /* Timeout for completing IEEE 802.1X and WPA authentication */
2301 wpa_supplicant_req_auth_timeout(
2303 (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
2304 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
2305 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) ?
2308 wpa_s->eapol_received++;
2310 if (wpa_s->countermeasures) {
2311 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
2316 #ifdef CONFIG_IBSS_RSN
2317 if (wpa_s->current_ssid &&
2318 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
2319 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
2322 #endif /* CONFIG_IBSS_RSN */
2324 /* Source address of the incoming EAPOL frame could be compared to the
2325 * current BSSID. However, it is possible that a centralized
2326 * Authenticator could be using another MAC address than the BSSID of
2327 * an AP, so just allow any address to be used for now. The replies are
2328 * still sent to the current BSSID (if available), though. */
2330 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
2331 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
2332 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
2334 wpa_drv_poll(wpa_s);
2335 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
2336 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
2337 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
2339 * Set portValid = TRUE here since we are going to skip 4-way
2340 * handshake processing which would normally set portValid. We
2341 * need this to allow the EAPOL state machines to be completed
2342 * without going through EAPOL-Key handshake.
2344 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
2349 int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
2351 if (wpa_s->driver->send_eapol) {
2352 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
2354 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
2355 } else if ((!wpa_s->p2p_mgmt ||
2356 !(wpa_s->drv_flags &
2357 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
2358 !(wpa_s->drv_flags &
2359 WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
2360 l2_packet_deinit(wpa_s->l2);
2361 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
2362 wpa_drv_get_mac_addr(wpa_s),
2364 wpa_supplicant_rx_eapol, wpa_s, 0);
2365 if (wpa_s->l2 == NULL)
2368 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
2370 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
2373 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
2374 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
2382 static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
2383 const u8 *buf, size_t len)
2385 struct wpa_supplicant *wpa_s = ctx;
2386 const struct l2_ethhdr *eth;
2388 if (len < sizeof(*eth))
2390 eth = (const struct l2_ethhdr *) buf;
2392 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
2393 !(eth->h_dest[0] & 0x01)) {
2394 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
2395 " (bridge - not for this interface - ignore)",
2396 MAC2STR(src_addr), MAC2STR(eth->h_dest));
2400 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
2401 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
2402 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
2403 len - sizeof(*eth));
2408 * wpa_supplicant_driver_init - Initialize driver interface parameters
2409 * @wpa_s: Pointer to wpa_supplicant data
2410 * Returns: 0 on success, -1 on failure
2412 * This function is called to initialize driver interface parameters.
2413 * wpa_drv_init() must have been called before this function to initialize the
2416 int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
2418 static int interface_count = 0;
2420 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
2423 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
2424 MAC2STR(wpa_s->own_addr));
2425 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
2427 if (wpa_s->bridge_ifname[0]) {
2428 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
2429 "interface '%s'", wpa_s->bridge_ifname);
2430 wpa_s->l2_br = l2_packet_init(wpa_s->bridge_ifname,
2433 wpa_supplicant_rx_eapol_bridge,
2435 if (wpa_s->l2_br == NULL) {
2436 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
2437 "connection for the bridge interface '%s'",
2438 wpa_s->bridge_ifname);
2443 wpa_clear_keys(wpa_s, NULL);
2445 /* Make sure that TKIP countermeasures are not left enabled (could
2446 * happen if wpa_supplicant is killed during countermeasures. */
2447 wpa_drv_set_countermeasures(wpa_s, 0);
2449 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
2450 wpa_drv_flush_pmkid(wpa_s);
2452 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
2453 wpa_s->prev_scan_wildcard = 0;
2455 if (wpa_supplicant_enabled_networks(wpa_s)) {
2456 if (wpa_supplicant_delayed_sched_scan(wpa_s, interface_count,
2458 wpa_supplicant_req_scan(wpa_s, interface_count,
2462 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
2468 static int wpa_supplicant_daemon(const char *pid_file)
2470 wpa_printf(MSG_DEBUG, "Daemonize..");
2471 return os_daemonize(pid_file);
2475 static struct wpa_supplicant * wpa_supplicant_alloc(void)
2477 struct wpa_supplicant *wpa_s;
2479 wpa_s = os_zalloc(sizeof(*wpa_s));
2482 wpa_s->scan_req = INITIAL_SCAN_REQ;
2483 wpa_s->scan_interval = 5;
2484 wpa_s->new_connection = 1;
2485 wpa_s->parent = wpa_s;
2486 wpa_s->sched_scanning = 0;
2492 #ifdef CONFIG_HT_OVERRIDES
2494 static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
2495 struct ieee80211_ht_capabilities *htcaps,
2496 struct ieee80211_ht_capabilities *htcaps_mask,
2499 /* parse ht_mcs into hex array */
2501 const char *tmp = ht_mcs;
2504 /* If ht_mcs is null, do not set anything */
2508 /* This is what we are setting in the kernel */
2509 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
2511 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
2513 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
2515 long v = strtol(tmp, &end, 16);
2517 wpa_msg(wpa_s, MSG_DEBUG,
2518 "htcap value[%i]: %ld end: %p tmp: %p",
2523 htcaps->supported_mcs_set[i] = v;
2526 wpa_msg(wpa_s, MSG_ERROR,
2527 "Failed to parse ht-mcs: %s, error: %s\n",
2528 ht_mcs, strerror(errno));
2534 * If we were able to parse any values, then set mask for the MCS set.
2537 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
2538 IEEE80211_HT_MCS_MASK_LEN - 1);
2539 /* skip the 3 reserved bits */
2540 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
2548 static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
2549 struct ieee80211_ht_capabilities *htcaps,
2550 struct ieee80211_ht_capabilities *htcaps_mask,
2555 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
2560 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
2561 htcaps_mask->ht_capabilities_info |= msk;
2563 htcaps->ht_capabilities_info &= msk;
2565 htcaps->ht_capabilities_info |= msk;
2571 static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
2572 struct ieee80211_ht_capabilities *htcaps,
2573 struct ieee80211_ht_capabilities *htcaps_mask,
2576 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
2581 if (factor < 0 || factor > 3) {
2582 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
2583 "Must be 0-3 or -1", factor);
2587 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
2588 htcaps->a_mpdu_params &= ~0x3;
2589 htcaps->a_mpdu_params |= factor & 0x3;
2595 static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
2596 struct ieee80211_ht_capabilities *htcaps,
2597 struct ieee80211_ht_capabilities *htcaps_mask,
2600 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
2605 if (density < 0 || density > 7) {
2606 wpa_msg(wpa_s, MSG_ERROR,
2607 "ampdu_density: %d out of range. Must be 0-7 or -1.",
2612 htcaps_mask->a_mpdu_params |= 0x1C;
2613 htcaps->a_mpdu_params &= ~(0x1C);
2614 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
2620 static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
2621 struct ieee80211_ht_capabilities *htcaps,
2622 struct ieee80211_ht_capabilities *htcaps_mask,
2625 /* Masking these out disables HT40 */
2626 u16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
2627 HT_CAP_INFO_SHORT_GI40MHZ);
2629 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
2632 htcaps->ht_capabilities_info &= ~msk;
2634 htcaps->ht_capabilities_info |= msk;
2636 htcaps_mask->ht_capabilities_info |= msk;
2642 static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
2643 struct ieee80211_ht_capabilities *htcaps,
2644 struct ieee80211_ht_capabilities *htcaps_mask,
2647 /* Masking these out disables SGI */
2648 u16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
2649 HT_CAP_INFO_SHORT_GI40MHZ);
2651 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
2654 htcaps->ht_capabilities_info &= ~msk;
2656 htcaps->ht_capabilities_info |= msk;
2658 htcaps_mask->ht_capabilities_info |= msk;
2664 void wpa_supplicant_apply_ht_overrides(
2665 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
2666 struct wpa_driver_associate_params *params)
2668 struct ieee80211_ht_capabilities *htcaps;
2669 struct ieee80211_ht_capabilities *htcaps_mask;
2674 params->disable_ht = ssid->disable_ht;
2675 if (!params->htcaps || !params->htcaps_mask)
2678 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
2679 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
2680 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
2681 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
2682 ssid->disable_max_amsdu);
2683 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
2684 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
2685 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
2686 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
2689 #endif /* CONFIG_HT_OVERRIDES */
2692 #ifdef CONFIG_VHT_OVERRIDES
2693 void wpa_supplicant_apply_vht_overrides(
2694 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
2695 struct wpa_driver_associate_params *params)
2697 struct ieee80211_vht_capabilities *vhtcaps;
2698 struct ieee80211_vht_capabilities *vhtcaps_mask;
2703 params->disable_vht = ssid->disable_vht;
2705 vhtcaps = (void *) params->vhtcaps;
2706 vhtcaps_mask = (void *) params->vhtcaps_mask;
2708 if (!vhtcaps || !vhtcaps_mask)
2711 vhtcaps->vht_capabilities_info = ssid->vht_capa;
2712 vhtcaps_mask->vht_capabilities_info = ssid->vht_capa_mask;
2714 #define OVERRIDE_MCS(i) \
2715 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
2716 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
2718 vhtcaps->vht_supported_mcs_set.tx_map |= \
2719 ssid->vht_tx_mcs_nss_ ##i << 2 * (i - 1); \
2721 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
2722 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
2724 vhtcaps->vht_supported_mcs_set.rx_map |= \
2725 ssid->vht_rx_mcs_nss_ ##i << 2 * (i - 1); \
2737 #endif /* CONFIG_VHT_OVERRIDES */
2740 static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
2745 if (!wpa_s->conf->pcsc_reader)
2748 wpa_s->scard = scard_init(SCARD_TRY_BOTH, wpa_s->conf->pcsc_reader);
2752 if (wpa_s->conf->pcsc_pin &&
2753 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
2754 scard_deinit(wpa_s->scard);
2755 wpa_s->scard = NULL;
2756 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
2760 len = sizeof(wpa_s->imsi) - 1;
2761 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
2762 scard_deinit(wpa_s->scard);
2763 wpa_s->scard = NULL;
2764 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
2767 wpa_s->imsi[len] = '\0';
2769 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
2771 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
2772 wpa_s->imsi, wpa_s->mnc_len);
2774 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
2775 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
2776 #endif /* PCSC_FUNCS */
2782 int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
2786 ext_password_deinit(wpa_s->ext_pw);
2787 wpa_s->ext_pw = NULL;
2788 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
2790 if (!wpa_s->conf->ext_password_backend)
2793 val = os_strdup(wpa_s->conf->ext_password_backend);
2796 pos = os_strchr(val, ':');
2800 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
2802 wpa_s->ext_pw = ext_password_init(val, pos);
2804 if (wpa_s->ext_pw == NULL) {
2805 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
2808 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
2814 static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
2815 struct wpa_interface *iface)
2817 const char *ifname, *driver;
2818 struct wpa_driver_capa capa;
2820 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
2821 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
2822 iface->confname ? iface->confname : "N/A",
2823 iface->driver ? iface->driver : "default",
2824 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
2825 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
2827 if (iface->confname) {
2828 #ifdef CONFIG_BACKEND_FILE
2829 wpa_s->confname = os_rel2abs_path(iface->confname);
2830 if (wpa_s->confname == NULL) {
2831 wpa_printf(MSG_ERROR, "Failed to get absolute path "
2832 "for configuration file '%s'.",
2836 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
2837 iface->confname, wpa_s->confname);
2838 #else /* CONFIG_BACKEND_FILE */
2839 wpa_s->confname = os_strdup(iface->confname);
2840 #endif /* CONFIG_BACKEND_FILE */
2841 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
2842 if (wpa_s->conf == NULL) {
2843 wpa_printf(MSG_ERROR, "Failed to read or parse "
2844 "configuration '%s'.", wpa_s->confname);
2847 wpa_s->confanother = os_rel2abs_path(iface->confanother);
2848 wpa_config_read(wpa_s->confanother, wpa_s->conf);
2851 * Override ctrl_interface and driver_param if set on command
2854 if (iface->ctrl_interface) {
2855 os_free(wpa_s->conf->ctrl_interface);
2856 wpa_s->conf->ctrl_interface =
2857 os_strdup(iface->ctrl_interface);
2860 if (iface->driver_param) {
2861 os_free(wpa_s->conf->driver_param);
2862 wpa_s->conf->driver_param =
2863 os_strdup(iface->driver_param);
2866 if (iface->p2p_mgmt && !iface->ctrl_interface) {
2867 os_free(wpa_s->conf->ctrl_interface);
2868 wpa_s->conf->ctrl_interface = NULL;
2871 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
2872 iface->driver_param);
2874 if (wpa_s->conf == NULL) {
2875 wpa_printf(MSG_ERROR, "\nNo configuration found.");
2879 if (iface->ifname == NULL) {
2880 wpa_printf(MSG_ERROR, "\nInterface name is required.");
2883 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
2884 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
2888 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
2890 if (iface->bridge_ifname) {
2891 if (os_strlen(iface->bridge_ifname) >=
2892 sizeof(wpa_s->bridge_ifname)) {
2893 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
2894 "name '%s'.", iface->bridge_ifname);
2897 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
2898 sizeof(wpa_s->bridge_ifname));
2901 /* RSNA Supplicant Key Management - INITIALIZE */
2902 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
2903 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
2905 /* Initialize driver interface and register driver event handler before
2906 * L2 receive handler so that association events are processed before
2907 * EAPOL-Key packets if both become available for the same select()
2909 driver = iface->driver;
2911 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
2914 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
2915 if (wpa_s->drv_priv == NULL) {
2917 pos = driver ? os_strchr(driver, ',') : NULL;
2919 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
2920 "driver interface - try next driver wrapper");
2924 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
2928 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
2929 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
2930 "driver_param '%s'", wpa_s->conf->driver_param);
2934 ifname = wpa_drv_get_ifname(wpa_s);
2935 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
2936 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
2937 "interface name with '%s'", ifname);
2938 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
2941 if (wpa_supplicant_init_wpa(wpa_s) < 0)
2944 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
2945 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
2947 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
2949 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
2950 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
2951 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
2952 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
2953 "dot11RSNAConfigPMKLifetime");
2957 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
2958 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
2959 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
2960 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
2961 "dot11RSNAConfigPMKReauthThreshold");
2965 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
2966 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
2967 wpa_s->conf->dot11RSNAConfigSATimeout)) {
2968 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
2969 "dot11RSNAConfigSATimeout");
2973 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
2974 &wpa_s->hw.num_modes,
2977 if (wpa_drv_get_capa(wpa_s, &capa) == 0) {
2978 wpa_s->drv_capa_known = 1;
2979 wpa_s->drv_flags = capa.flags;
2980 wpa_s->drv_enc = capa.enc;
2981 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
2982 wpa_s->max_scan_ssids = capa.max_scan_ssids;
2983 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
2984 wpa_s->sched_scan_supported = capa.sched_scan_supported;
2985 wpa_s->max_match_sets = capa.max_match_sets;
2986 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
2987 wpa_s->max_stations = capa.max_stations;
2988 wpa_s->extended_capa = capa.extended_capa;
2989 wpa_s->extended_capa_mask = capa.extended_capa_mask;
2990 wpa_s->extended_capa_len = capa.extended_capa_len;
2991 wpa_s->num_multichan_concurrent =
2992 capa.num_multichan_concurrent;
2994 if (wpa_s->max_remain_on_chan == 0)
2995 wpa_s->max_remain_on_chan = 1000;
2998 * Only take p2p_mgmt parameters when P2P Device is supported.
2999 * Doing it here as it determines whether l2_packet_init() will be done
3000 * during wpa_supplicant_driver_init().
3002 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
3003 wpa_s->p2p_mgmt = iface->p2p_mgmt;
3005 iface->p2p_mgmt = 1;
3007 if (wpa_s->num_multichan_concurrent == 0)
3008 wpa_s->num_multichan_concurrent = 1;
3010 if (wpa_supplicant_driver_init(wpa_s) < 0)
3014 if ((!iface->p2p_mgmt ||
3015 !(wpa_s->drv_flags &
3016 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3017 wpa_tdls_init(wpa_s->wpa))
3019 #endif /* CONFIG_TDLS */
3021 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
3022 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
3023 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
3027 if (wpas_wps_init(wpa_s))
3030 if (wpa_supplicant_init_eapol(wpa_s) < 0)
3032 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
3034 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
3035 if (wpa_s->ctrl_iface == NULL) {
3036 wpa_printf(MSG_ERROR,
3037 "Failed to initialize control interface '%s'.\n"
3038 "You may have another wpa_supplicant process "
3039 "already running or the file was\n"
3040 "left by an unclean termination of wpa_supplicant "
3041 "in which case you will need\n"
3042 "to manually remove this file before starting "
3043 "wpa_supplicant again.\n",
3044 wpa_s->conf->ctrl_interface);
3048 wpa_s->gas = gas_query_init(wpa_s);
3049 if (wpa_s->gas == NULL) {
3050 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
3055 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
3056 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
3059 #endif /* CONFIG_P2P */
3061 if (wpa_bss_init(wpa_s) < 0)
3064 #ifdef CONFIG_EAP_PROXY
3067 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
3069 if (wpa_s->mnc_len > 0) {
3070 wpa_s->imsi[len] = '\0';
3071 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
3072 wpa_s->imsi, wpa_s->mnc_len);
3074 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
3077 #endif /* CONFIG_EAP_PROXY */
3079 if (pcsc_reader_init(wpa_s) < 0)
3082 if (wpas_init_ext_pw(wpa_s) < 0)
3089 static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
3090 int notify, int terminate)
3092 wpa_s->disconnected = 1;
3093 if (wpa_s->drv_priv) {
3094 wpa_supplicant_deauthenticate(wpa_s,
3095 WLAN_REASON_DEAUTH_LEAVING);
3097 wpa_drv_set_countermeasures(wpa_s, 0);
3098 wpa_clear_keys(wpa_s, NULL);
3101 wpa_supplicant_cleanup(wpa_s);
3104 if (wpa_s == wpa_s->global->p2p_init_wpa_s && wpa_s->global->p2p) {
3105 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: Disable P2P since removing "
3106 "the management interface is being removed");
3107 wpas_p2p_deinit_global(wpa_s->global);
3109 #endif /* CONFIG_P2P */
3111 if (wpa_s->drv_priv)
3112 wpa_drv_deinit(wpa_s);
3115 wpas_notify_iface_removed(wpa_s);
3118 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
3120 if (wpa_s->ctrl_iface) {
3121 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
3122 wpa_s->ctrl_iface = NULL;
3125 if (wpa_s->conf != NULL) {
3126 wpa_config_free(wpa_s->conf);
3135 * wpa_supplicant_add_iface - Add a new network interface
3136 * @global: Pointer to global data from wpa_supplicant_init()
3137 * @iface: Interface configuration options
3138 * Returns: Pointer to the created interface or %NULL on failure
3140 * This function is used to add new network interfaces for %wpa_supplicant.
3141 * This can be called before wpa_supplicant_run() to add interfaces before the
3142 * main event loop has been started. In addition, new interfaces can be added
3143 * dynamically while %wpa_supplicant is already running. This could happen,
3144 * e.g., when a hotplug network adapter is inserted.
3146 struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
3147 struct wpa_interface *iface)
3149 struct wpa_supplicant *wpa_s;
3150 struct wpa_interface t_iface;
3151 struct wpa_ssid *ssid;
3153 if (global == NULL || iface == NULL)
3156 wpa_s = wpa_supplicant_alloc();
3160 wpa_s->global = global;
3163 if (global->params.override_driver) {
3164 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
3166 iface->driver, global->params.override_driver);
3167 t_iface.driver = global->params.override_driver;
3169 if (global->params.override_ctrl_interface) {
3170 wpa_printf(MSG_DEBUG, "Override interface parameter: "
3171 "ctrl_interface ('%s' -> '%s')",
3172 iface->ctrl_interface,
3173 global->params.override_ctrl_interface);
3174 t_iface.ctrl_interface =
3175 global->params.override_ctrl_interface;
3177 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
3178 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
3180 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
3184 /* Notify the control interfaces about new iface */
3185 if (wpas_notify_iface_added(wpa_s)) {
3186 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
3190 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
3191 wpas_notify_network_added(wpa_s, ssid);
3193 wpa_s->next = global->ifaces;
3194 global->ifaces = wpa_s;
3196 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
3197 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3204 * wpa_supplicant_remove_iface - Remove a network interface
3205 * @global: Pointer to global data from wpa_supplicant_init()
3206 * @wpa_s: Pointer to the network interface to be removed
3207 * Returns: 0 if interface was removed, -1 if interface was not found
3209 * This function can be used to dynamically remove network interfaces from
3210 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
3211 * addition, this function is used to remove all remaining interfaces when
3212 * %wpa_supplicant is terminated.
3214 int wpa_supplicant_remove_iface(struct wpa_global *global,
3215 struct wpa_supplicant *wpa_s,
3218 struct wpa_supplicant *prev;
3220 /* Remove interface from the global list of interfaces */
3221 prev = global->ifaces;
3222 if (prev == wpa_s) {
3223 global->ifaces = wpa_s->next;
3225 while (prev && prev->next != wpa_s)
3229 prev->next = wpa_s->next;
3232 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
3234 if (global->p2p_group_formation == wpa_s)
3235 global->p2p_group_formation = NULL;
3236 if (global->p2p_invite_group == wpa_s)
3237 global->p2p_invite_group = NULL;
3238 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
3245 * wpa_supplicant_get_eap_mode - Get the current EAP mode
3246 * @wpa_s: Pointer to the network interface
3247 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
3249 const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
3251 const char *eapol_method;
3253 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
3254 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
3258 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
3259 if (eapol_method == NULL)
3260 return "UNKNOWN-EAP";
3262 return eapol_method;
3267 * wpa_supplicant_get_iface - Get a new network interface
3268 * @global: Pointer to global data from wpa_supplicant_init()
3269 * @ifname: Interface name
3270 * Returns: Pointer to the interface or %NULL if not found
3272 struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
3275 struct wpa_supplicant *wpa_s;
3277 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
3278 if (os_strcmp(wpa_s->ifname, ifname) == 0)
3285 #ifndef CONFIG_NO_WPA_MSG
3286 static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
3288 struct wpa_supplicant *wpa_s = ctx;
3291 return wpa_s->ifname;
3293 #endif /* CONFIG_NO_WPA_MSG */
3297 * wpa_supplicant_init - Initialize %wpa_supplicant
3298 * @params: Parameters for %wpa_supplicant
3299 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
3301 * This function is used to initialize %wpa_supplicant. After successful
3302 * initialization, the returned data pointer can be used to add and remove
3303 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
3305 struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
3307 struct wpa_global *global;
3313 #ifdef CONFIG_DRIVER_NDIS
3315 void driver_ndis_init_ops(void);
3316 driver_ndis_init_ops();
3318 #endif /* CONFIG_DRIVER_NDIS */
3320 #ifndef CONFIG_NO_WPA_MSG
3321 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
3322 #endif /* CONFIG_NO_WPA_MSG */
3324 wpa_debug_open_file(params->wpa_debug_file_path);
3325 if (params->wpa_debug_syslog)
3326 wpa_debug_open_syslog();
3327 if (params->wpa_debug_tracing) {
3328 ret = wpa_debug_open_linux_tracing();
3330 wpa_printf(MSG_ERROR,
3331 "Failed to enable trace logging");
3336 ret = eap_register_methods();
3338 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
3340 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
3341 "the same EAP type.");
3345 global = os_zalloc(sizeof(*global));
3348 dl_list_init(&global->p2p_srv_bonjour);
3349 dl_list_init(&global->p2p_srv_upnp);
3350 global->params.daemonize = params->daemonize;
3351 global->params.wait_for_monitor = params->wait_for_monitor;
3352 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
3353 if (params->pid_file)
3354 global->params.pid_file = os_strdup(params->pid_file);
3355 if (params->ctrl_interface)
3356 global->params.ctrl_interface =
3357 os_strdup(params->ctrl_interface);
3358 if (params->ctrl_interface_group)
3359 global->params.ctrl_interface_group =
3360 os_strdup(params->ctrl_interface_group);
3361 if (params->override_driver)
3362 global->params.override_driver =
3363 os_strdup(params->override_driver);
3364 if (params->override_ctrl_interface)
3365 global->params.override_ctrl_interface =
3366 os_strdup(params->override_ctrl_interface);
3367 wpa_debug_level = global->params.wpa_debug_level =
3368 params->wpa_debug_level;
3369 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
3370 params->wpa_debug_show_keys;
3371 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
3372 params->wpa_debug_timestamp;
3374 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
3377 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
3378 wpa_supplicant_deinit(global);
3382 random_init(params->entropy_file);
3384 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
3385 if (global->ctrl_iface == NULL) {
3386 wpa_supplicant_deinit(global);
3390 if (wpas_notify_supplicant_initialized(global)) {
3391 wpa_supplicant_deinit(global);
3395 for (i = 0; wpa_drivers[i]; i++)
3396 global->drv_count++;
3397 if (global->drv_count == 0) {
3398 wpa_printf(MSG_ERROR, "No drivers enabled");
3399 wpa_supplicant_deinit(global);
3402 global->drv_priv = os_zalloc(global->drv_count * sizeof(void *));
3403 if (global->drv_priv == NULL) {
3404 wpa_supplicant_deinit(global);
3408 #ifdef CONFIG_WIFI_DISPLAY
3409 if (wifi_display_init(global) < 0) {
3410 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
3411 wpa_supplicant_deinit(global);
3414 #endif /* CONFIG_WIFI_DISPLAY */
3421 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
3422 * @global: Pointer to global data from wpa_supplicant_init()
3423 * Returns: 0 after successful event loop run, -1 on failure
3425 * This function starts the main event loop and continues running as long as
3426 * there are any remaining events. In most cases, this function is running as
3427 * long as the %wpa_supplicant process in still in use.
3429 int wpa_supplicant_run(struct wpa_global *global)
3431 struct wpa_supplicant *wpa_s;
3433 if (global->params.daemonize &&
3434 wpa_supplicant_daemon(global->params.pid_file))
3437 if (global->params.wait_for_monitor) {
3438 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
3439 if (wpa_s->ctrl_iface)
3440 wpa_supplicant_ctrl_iface_wait(
3444 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
3445 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
3454 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
3455 * @global: Pointer to global data from wpa_supplicant_init()
3457 * This function is called to deinitialize %wpa_supplicant and to free all
3458 * allocated resources. Remaining network interfaces will also be removed.
3460 void wpa_supplicant_deinit(struct wpa_global *global)
3467 #ifdef CONFIG_WIFI_DISPLAY
3468 wifi_display_deinit(global);
3469 #endif /* CONFIG_WIFI_DISPLAY */
3471 while (global->ifaces)
3472 wpa_supplicant_remove_iface(global, global->ifaces, 1);
3474 if (global->ctrl_iface)
3475 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
3477 wpas_notify_supplicant_deinitialized(global);
3479 eap_peer_unregister_methods();
3481 eap_server_unregister_methods();
3482 #endif /* CONFIG_AP */
3484 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
3485 if (!global->drv_priv[i])
3487 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
3489 os_free(global->drv_priv);
3495 if (global->params.pid_file) {
3496 os_daemonize_terminate(global->params.pid_file);
3497 os_free(global->params.pid_file);
3499 os_free(global->params.ctrl_interface);
3500 os_free(global->params.ctrl_interface_group);
3501 os_free(global->params.override_driver);
3502 os_free(global->params.override_ctrl_interface);
3504 os_free(global->p2p_disallow_freq.range);
3505 os_free(global->add_psk);
3508 wpa_debug_close_syslog();
3509 wpa_debug_close_file();
3510 wpa_debug_close_linux_tracing();
3514 void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
3516 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
3517 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
3519 country[0] = wpa_s->conf->country[0];
3520 country[1] = wpa_s->conf->country[1];
3522 if (wpa_drv_set_country(wpa_s, country) < 0) {
3523 wpa_printf(MSG_ERROR, "Failed to set country code "
3528 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
3529 wpas_init_ext_pw(wpa_s);
3532 wpas_wps_update_config(wpa_s);
3533 #endif /* CONFIG_WPS */
3536 wpas_p2p_update_config(wpa_s);
3537 #endif /* CONFIG_P2P */
3539 wpa_s->conf->changed_parameters = 0;
3543 static void add_freq(int *freqs, int *num_freqs, int freq)
3547 for (i = 0; i < *num_freqs; i++) {
3548 if (freqs[i] == freq)
3552 freqs[*num_freqs] = freq;
3557 static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
3559 struct wpa_bss *bss, *cbss;
3560 const int max_freqs = 10;
3564 freqs = os_zalloc(sizeof(int) * (max_freqs + 1));
3568 cbss = wpa_s->current_bss;
3570 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
3573 if (bss->ssid_len == cbss->ssid_len &&
3574 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
3575 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
3576 add_freq(freqs, &num_freqs, bss->freq);
3577 if (num_freqs == max_freqs)
3582 if (num_freqs == 0) {
3591 void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
3598 * Remove possible authentication timeout since the connection failed.
3600 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
3602 if (wpa_s->disconnected) {
3604 * There is no point in blacklisting the AP if this event is
3605 * generated based on local request to disconnect.
3607 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
3608 "indication since interface has been put into "
3609 "disconnected state");
3614 * Add the failed BSSID into the blacklist and speed up next scan
3615 * attempt if there could be other APs that could accept association.
3616 * The current blacklist count indicates how many times we have tried
3617 * connecting to this AP and multiple attempts mean that other APs are
3618 * either not available or has already been tried, so that we can start
3619 * increasing the delay here to avoid constant scanning.
3621 count = wpa_blacklist_add(wpa_s, bssid);
3622 if (count == 1 && wpa_s->current_bss) {
3624 * This BSS was not in the blacklist before. If there is
3625 * another BSS available for the same ESS, we should try that
3626 * next. Otherwise, we may as well try this one once more
3627 * before allowing other, likely worse, ESSes to be considered.
3629 freqs = get_bss_freqs_in_ess(wpa_s);
3631 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
3632 "has been seen; try it next");
3633 wpa_blacklist_add(wpa_s, bssid);
3635 * On the next scan, go through only the known channels
3636 * used in this ESS based on previous scans to speed up
3637 * common load balancing use case.
3639 os_free(wpa_s->next_scan_freqs);
3640 wpa_s->next_scan_freqs = freqs;
3645 * Add previous failure count in case the temporary blacklist was
3646 * cleared due to no other BSSes being available.
3648 count += wpa_s->extra_blacklist_count;
3650 if (count > 3 && wpa_s->current_ssid) {
3651 wpa_printf(MSG_DEBUG, "Continuous association failures - "
3652 "consider temporary network disabling");
3653 wpas_auth_failed(wpa_s);
3674 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
3675 "ms", count, timeout);
3678 * TODO: if more than one possible AP is available in scan results,
3679 * could try the other ones before requesting a new scan.
3681 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
3682 1000 * (timeout % 1000));
3684 wpas_p2p_continue_after_scan(wpa_s);
3688 int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
3690 return wpa_s->conf->ap_scan == 2 ||
3691 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
3695 #if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
3696 int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
3697 struct wpa_ssid *ssid,
3701 #ifdef IEEE8021X_EAPOL
3702 struct eap_peer_config *eap = &ssid->eap;
3704 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
3705 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
3706 (const u8 *) value, os_strlen(value));
3708 switch (wpa_supplicant_ctrl_req_from_string(field)) {
3709 case WPA_CTRL_REQ_EAP_IDENTITY:
3710 os_free(eap->identity);
3711 eap->identity = (u8 *) os_strdup(value);
3712 eap->identity_len = os_strlen(value);
3713 eap->pending_req_identity = 0;
3714 if (ssid == wpa_s->current_ssid)
3715 wpa_s->reassociate = 1;
3717 case WPA_CTRL_REQ_EAP_PASSWORD:
3718 os_free(eap->password);
3719 eap->password = (u8 *) os_strdup(value);
3720 eap->password_len = os_strlen(value);
3721 eap->pending_req_password = 0;
3722 if (ssid == wpa_s->current_ssid)
3723 wpa_s->reassociate = 1;
3725 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
3726 os_free(eap->new_password);
3727 eap->new_password = (u8 *) os_strdup(value);
3728 eap->new_password_len = os_strlen(value);
3729 eap->pending_req_new_password = 0;
3730 if (ssid == wpa_s->current_ssid)
3731 wpa_s->reassociate = 1;
3733 case WPA_CTRL_REQ_EAP_PIN:
3735 eap->pin = os_strdup(value);
3736 eap->pending_req_pin = 0;
3737 if (ssid == wpa_s->current_ssid)
3738 wpa_s->reassociate = 1;
3740 case WPA_CTRL_REQ_EAP_OTP:
3742 eap->otp = (u8 *) os_strdup(value);
3743 eap->otp_len = os_strlen(value);
3744 os_free(eap->pending_req_otp);
3745 eap->pending_req_otp = NULL;
3746 eap->pending_req_otp_len = 0;
3748 case WPA_CTRL_REQ_EAP_PASSPHRASE:
3749 os_free(eap->private_key_passwd);
3750 eap->private_key_passwd = (u8 *) os_strdup(value);
3751 eap->pending_req_passphrase = 0;
3752 if (ssid == wpa_s->current_ssid)
3753 wpa_s->reassociate = 1;
3755 case WPA_CTRL_REQ_SIM:
3756 os_free(eap->external_sim_resp);
3757 eap->external_sim_resp = os_strdup(value);
3760 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
3765 #else /* IEEE8021X_EAPOL */
3766 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
3768 #endif /* IEEE8021X_EAPOL */
3770 #endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
3773 int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
3776 unsigned int drv_enc;
3784 if (wpa_s && wpa_s->drv_capa_known)
3785 drv_enc = wpa_s->drv_enc;
3787 drv_enc = (unsigned int) -1;
3789 for (i = 0; i < NUM_WEP_KEYS; i++) {
3790 size_t len = ssid->wep_key_len[i];
3793 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
3795 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
3797 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
3799 return 1; /* invalid WEP key */
3802 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
3810 int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
3812 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
3814 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
3820 void wpas_auth_failed(struct wpa_supplicant *wpa_s)
3822 struct wpa_ssid *ssid = wpa_s->current_ssid;
3827 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
3832 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
3835 ssid->auth_failures++;
3838 if (ssid->p2p_group &&
3839 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
3841 * Skip the wait time since there is a short timeout on the
3842 * connection to a P2P group.
3846 #endif /* CONFIG_P2P */
3848 if (ssid->auth_failures > 50)
3850 else if (ssid->auth_failures > 20)
3852 else if (ssid->auth_failures > 10)
3854 else if (ssid->auth_failures > 5)
3856 else if (ssid->auth_failures > 1)
3862 if (now.sec + dur <= ssid->disabled_until.sec)
3865 ssid->disabled_until.sec = now.sec + dur;
3867 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
3868 "id=%d ssid=\"%s\" auth_failures=%u duration=%d",
3869 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
3870 ssid->auth_failures, dur);
3874 void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
3875 struct wpa_ssid *ssid, int clear_failures)
3880 if (ssid->disabled_until.sec) {
3881 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
3882 "id=%d ssid=\"%s\"",
3883 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
3885 ssid->disabled_until.sec = 0;
3886 ssid->disabled_until.usec = 0;
3888 ssid->auth_failures = 0;
3892 int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
3896 if (wpa_s->disallow_aps_bssid == NULL)
3899 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
3900 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
3901 bssid, ETH_ALEN) == 0)
3909 int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
3914 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
3917 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
3918 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
3919 if (ssid_len == s->ssid_len &&
3920 os_memcmp(ssid, s->ssid, ssid_len) == 0)
3929 * wpas_request_connection - Request a new connection
3930 * @wpa_s: Pointer to the network interface
3932 * This function is used to request a new connection to be found. It will mark
3933 * the interface to allow reassociation and request a new scan to find a
3934 * suitable network to connect to.
3936 void wpas_request_connection(struct wpa_supplicant *wpa_s)
3938 wpa_s->normal_scans = 0;
3939 wpa_supplicant_reinit_autoscan(wpa_s);
3940 wpa_s->extra_blacklist_count = 0;
3941 wpa_s->disconnected = 0;
3942 wpa_s->reassociate = 1;
3944 if (wpa_supplicant_fast_associate(wpa_s) != 1)
3945 wpa_supplicant_req_scan(wpa_s, 0, 0);
3949 static int wpas_conn_in_progress(struct wpa_supplicant *wpa_s)
3951 return wpa_s->wpa_state >= WPA_AUTHENTICATING &&
3952 wpa_s->wpa_state != WPA_COMPLETED;
3957 * wpas_wpa_is_in_progress - Check whether a connection is in progress
3958 * @wpa_s: Pointer to wpa_supplicant data
3959 * @include_current: Whether to consider specified interface
3961 * This function is to check if the wpa state is in beginning of the connection
3962 * during 4-way handshake or group key handshake with WPA on any shared
3965 int wpas_wpa_is_in_progress(struct wpa_supplicant *wpa_s, int include_current)
3967 const char *rn, *rn2;
3968 struct wpa_supplicant *ifs;
3970 if (!wpa_s->driver->get_radio_name) {
3971 if (include_current && wpas_conn_in_progress(wpa_s)) {
3972 wpa_dbg(wpa_s, MSG_DEBUG, "Connection is in progress on interface %s - defer",
3980 rn = wpa_s->driver->get_radio_name(wpa_s->drv_priv);
3981 if (rn == NULL || rn[0] == '\0')
3984 for (ifs = wpa_s->global->ifaces; ifs; ifs = ifs->next) {
3985 if (!include_current && ifs == wpa_s)
3987 if (!ifs->driver->get_radio_name)
3990 rn2 = ifs->driver->get_radio_name(ifs->drv_priv);
3991 if (!rn2 || os_strcmp(rn, rn2) != 0)
3993 if (wpas_conn_in_progress(ifs)) {
3994 wpa_dbg(wpa_s, MSG_DEBUG, "Connection is in progress "
3995 "on interface %s - defer", ifs->ifname);
4005 * Find the operating frequencies of any of the virtual interfaces that
4006 * are using the same radio as the current interface.
4008 int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
4009 int *freq_array, unsigned int len)
4011 const char *rn, *rn2;
4012 struct wpa_supplicant *ifs;
4015 unsigned int idx = 0, i;
4017 os_memset(freq_array, 0, sizeof(int) * len);
4019 /* First add the frequency of the local interface */
4020 if (wpa_s->current_ssid != NULL && wpa_s->assoc_freq != 0) {
4021 if (wpa_s->current_ssid->mode == WPAS_MODE_AP ||
4022 wpa_s->current_ssid->mode == WPAS_MODE_P2P_GO)
4023 freq_array[idx++] = wpa_s->current_ssid->frequency;
4024 else if (wpa_drv_get_bssid(wpa_s, bssid) == 0)
4025 freq_array[idx++] = wpa_s->assoc_freq;
4028 /* If get_radio_name is not supported, use only the local freq */
4029 if (!wpa_s->driver->get_radio_name) {
4030 freq = wpa_drv_shared_freq(wpa_s);
4031 if (freq > 0 && idx < len &&
4032 (idx == 0 || freq_array[0] != freq))
4033 freq_array[idx++] = freq;
4037 rn = wpa_s->driver->get_radio_name(wpa_s->drv_priv);
4038 if (rn == NULL || rn[0] == '\0')
4041 for (ifs = wpa_s->global->ifaces, idx = 0; ifs && idx < len;
4043 if (wpa_s == ifs || !ifs->driver->get_radio_name)
4046 rn2 = ifs->driver->get_radio_name(ifs->drv_priv);
4047 if (!rn2 || os_strcmp(rn, rn2) != 0)
4050 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
4053 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
4054 ifs->current_ssid->mode == WPAS_MODE_P2P_GO)
4055 freq = ifs->current_ssid->frequency;
4056 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
4057 freq = ifs->assoc_freq;
4061 /* Hold only distinct freqs */
4062 for (i = 0; i < idx; i++)
4063 if (freq_array[i] == freq)
4067 freq_array[idx++] = freq;