3 * Copyright (c) 2003-2015, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
16 #include "crypto/random.h"
17 #include "crypto/sha1.h"
18 #include "eapol_supp/eapol_supp_sm.h"
19 #include "eap_peer/eap.h"
20 #include "eap_peer/eap_proxy.h"
21 #include "eap_server/eap_methods.h"
22 #include "rsn_supp/wpa.h"
25 #include "utils/ext_password.h"
26 #include "l2_packet/l2_packet.h"
27 #include "wpa_supplicant_i.h"
29 #include "ctrl_iface.h"
30 #include "pcsc_funcs.h"
31 #include "common/version.h"
32 #include "rsn_supp/preauth.h"
33 #include "rsn_supp/pmksa_cache.h"
34 #include "common/wpa_ctrl.h"
35 #include "common/ieee802_11_defs.h"
36 #include "common/hw_features_common.h"
38 #include "blacklist.h"
39 #include "wpas_glue.h"
40 #include "wps_supplicant.h"
43 #include "gas_query.h"
45 #include "p2p_supplicant.h"
46 #include "wifi_display.h"
52 #include "offchannel.h"
53 #include "hs20_supplicant.h"
58 const char *wpa_supplicant_version =
59 "wpa_supplicant v" VERSION_STR "\n"
60 "Copyright (c) 2003-2015, Jouni Malinen <j@w1.fi> and contributors";
62 const char *wpa_supplicant_license =
63 "This software may be distributed under the terms of the BSD license.\n"
64 "See README for more details.\n"
65 #ifdef EAP_TLS_OPENSSL
66 "\nThis product includes software developed by the OpenSSL Project\n"
67 "for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
68 #endif /* EAP_TLS_OPENSSL */
71 #ifndef CONFIG_NO_STDOUT_DEBUG
72 /* Long text divided into parts in order to fit in C89 strings size limits. */
73 const char *wpa_supplicant_full_license1 =
75 const char *wpa_supplicant_full_license2 =
76 "This software may be distributed under the terms of the BSD license.\n"
78 "Redistribution and use in source and binary forms, with or without\n"
79 "modification, are permitted provided that the following conditions are\n"
82 const char *wpa_supplicant_full_license3 =
83 "1. Redistributions of source code must retain the above copyright\n"
84 " notice, this list of conditions and the following disclaimer.\n"
86 "2. Redistributions in binary form must reproduce the above copyright\n"
87 " notice, this list of conditions and the following disclaimer in the\n"
88 " documentation and/or other materials provided with the distribution.\n"
90 const char *wpa_supplicant_full_license4 =
91 "3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
92 " names of its contributors may be used to endorse or promote products\n"
93 " derived from this software without specific prior written permission.\n"
95 "THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
96 "\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
97 "LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
98 "A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
99 const char *wpa_supplicant_full_license5 =
100 "OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
101 "SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
102 "LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
103 "DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
104 "THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
105 "(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
106 "OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
108 #endif /* CONFIG_NO_STDOUT_DEBUG */
110 /* Configure default/group WEP keys for static WEP */
111 int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
115 for (i = 0; i < NUM_WEP_KEYS; i++) {
116 if (ssid->wep_key_len[i] == 0)
120 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
121 i, i == ssid->wep_tx_keyidx, NULL, 0,
122 ssid->wep_key[i], ssid->wep_key_len[i]);
129 int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
130 struct wpa_ssid *ssid)
138 /* IBSS/WPA-None uses only one key (Group) for both receiving and
139 * sending unicast and multicast packets. */
141 if (ssid->mode != WPAS_MODE_IBSS) {
142 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
143 "IBSS/ad-hoc) for WPA-None", ssid->mode);
147 if (!ssid->psk_set) {
148 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
153 switch (wpa_s->group_cipher) {
154 case WPA_CIPHER_CCMP:
155 os_memcpy(key, ssid->psk, 16);
159 case WPA_CIPHER_GCMP:
160 os_memcpy(key, ssid->psk, 16);
164 case WPA_CIPHER_TKIP:
165 /* WPA-None uses the same Michael MIC key for both TX and RX */
166 os_memcpy(key, ssid->psk, 16 + 8);
167 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
172 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
173 "WPA-None", wpa_s->group_cipher);
177 /* TODO: should actually remember the previously used seq#, both for TX
178 * and RX from each STA.. */
180 ret = wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
181 os_memset(key, 0, sizeof(key));
186 static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
188 struct wpa_supplicant *wpa_s = eloop_ctx;
189 const u8 *bssid = wpa_s->bssid;
190 if (is_zero_ether_addr(bssid))
191 bssid = wpa_s->pending_bssid;
192 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
194 wpa_blacklist_add(wpa_s, bssid);
195 wpa_sm_notify_disassoc(wpa_s->wpa);
196 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
197 wpa_s->reassociate = 1;
200 * If we timed out, the AP or the local radio may be busy.
201 * So, wait a second until scanning again.
203 wpa_supplicant_req_scan(wpa_s, 1, 0);
208 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
209 * @wpa_s: Pointer to wpa_supplicant data
210 * @sec: Number of seconds after which to time out authentication
211 * @usec: Number of microseconds after which to time out authentication
213 * This function is used to schedule a timeout for the current authentication
216 void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
219 if (wpa_s->conf->ap_scan == 0 &&
220 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
223 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
224 "%d usec", sec, usec);
225 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
226 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
231 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
232 * @wpa_s: Pointer to wpa_supplicant data
234 * This function is used to cancel authentication timeout scheduled with
235 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
238 void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
240 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
241 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
242 wpa_blacklist_del(wpa_s, wpa_s->bssid);
247 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
248 * @wpa_s: Pointer to wpa_supplicant data
250 * This function is used to configure EAPOL state machine based on the selected
251 * authentication mode.
253 void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
255 #ifdef IEEE8021X_EAPOL
256 struct eapol_config eapol_conf;
257 struct wpa_ssid *ssid = wpa_s->current_ssid;
259 #ifdef CONFIG_IBSS_RSN
260 if (ssid->mode == WPAS_MODE_IBSS &&
261 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
262 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
264 * RSN IBSS authentication is per-STA and we can disable the
265 * per-BSSID EAPOL authentication.
267 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
268 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
269 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
272 #endif /* CONFIG_IBSS_RSN */
274 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
275 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
277 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
278 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
279 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
281 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
283 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
284 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
285 eapol_conf.accept_802_1x_keys = 1;
286 eapol_conf.required_keys = 0;
287 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
288 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
290 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
291 eapol_conf.required_keys |=
292 EAPOL_REQUIRE_KEY_BROADCAST;
295 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
296 eapol_conf.required_keys = 0;
298 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
299 eapol_conf.workaround = ssid->eap_workaround;
300 eapol_conf.eap_disabled =
301 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
302 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
303 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
304 eapol_conf.external_sim = wpa_s->conf->external_sim;
307 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
308 eapol_conf.wps |= EAPOL_LOCAL_WPS_IN_USE;
309 if (wpa_s->current_bss) {
311 ie = wpa_bss_get_vendor_ie_multi(wpa_s->current_bss,
316 EAPOL_PEER_IS_WPS20_AP;
321 #endif /* CONFIG_WPS */
323 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
325 ieee802_1x_alloc_kay_sm(wpa_s, ssid);
326 #endif /* IEEE8021X_EAPOL */
331 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
332 * @wpa_s: Pointer to wpa_supplicant data
333 * @ssid: Configuration data for the network
335 * This function is used to configure WPA state machine and related parameters
336 * to a mode where WPA is not enabled. This is called as part of the
337 * authentication configuration when the selected network does not use WPA.
339 void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
340 struct wpa_ssid *ssid)
344 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
345 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
346 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
347 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
349 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
350 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
351 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
352 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
353 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
354 wpa_s->group_cipher = WPA_CIPHER_NONE;
355 wpa_s->mgmt_group_cipher = 0;
357 for (i = 0; i < NUM_WEP_KEYS; i++) {
358 if (ssid->wep_key_len[i] > 5) {
359 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
360 wpa_s->group_cipher = WPA_CIPHER_WEP104;
362 } else if (ssid->wep_key_len[i] > 0) {
363 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
364 wpa_s->group_cipher = WPA_CIPHER_WEP40;
369 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
370 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
371 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
372 wpa_s->pairwise_cipher);
373 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
374 #ifdef CONFIG_IEEE80211W
375 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
376 wpa_s->mgmt_group_cipher);
377 #endif /* CONFIG_IEEE80211W */
379 pmksa_cache_clear_current(wpa_s->wpa);
383 void free_hw_features(struct wpa_supplicant *wpa_s)
386 if (wpa_s->hw.modes == NULL)
389 for (i = 0; i < wpa_s->hw.num_modes; i++) {
390 os_free(wpa_s->hw.modes[i].channels);
391 os_free(wpa_s->hw.modes[i].rates);
394 os_free(wpa_s->hw.modes);
395 wpa_s->hw.modes = NULL;
399 static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
403 bgscan_deinit(wpa_s);
404 autoscan_deinit(wpa_s);
405 scard_deinit(wpa_s->scard);
407 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
408 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
409 l2_packet_deinit(wpa_s->l2);
412 l2_packet_deinit(wpa_s->l2_br);
415 #ifdef CONFIG_TESTING_OPTIONS
416 l2_packet_deinit(wpa_s->l2_test);
417 wpa_s->l2_test = NULL;
418 #endif /* CONFIG_TESTING_OPTIONS */
420 if (wpa_s->conf != NULL) {
421 struct wpa_ssid *ssid;
422 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
423 wpas_notify_network_removed(wpa_s, ssid);
426 os_free(wpa_s->confname);
427 wpa_s->confname = NULL;
429 os_free(wpa_s->confanother);
430 wpa_s->confanother = NULL;
432 wpa_sm_set_eapol(wpa_s->wpa, NULL);
433 eapol_sm_deinit(wpa_s->eapol);
436 rsn_preauth_deinit(wpa_s->wpa);
439 wpa_tdls_deinit(wpa_s->wpa);
440 #endif /* CONFIG_TDLS */
442 wmm_ac_clear_saved_tspecs(wpa_s);
443 pmksa_candidate_free(wpa_s->wpa);
444 wpa_sm_deinit(wpa_s->wpa);
446 wpa_blacklist_clear(wpa_s);
448 wpa_bss_deinit(wpa_s);
450 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
451 wpa_supplicant_cancel_scan(wpa_s);
452 wpa_supplicant_cancel_auth_timeout(wpa_s);
453 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
454 #ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
455 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
457 #endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
459 wpas_wps_deinit(wpa_s);
461 wpabuf_free(wpa_s->pending_eapol_rx);
462 wpa_s->pending_eapol_rx = NULL;
464 #ifdef CONFIG_IBSS_RSN
465 ibss_rsn_deinit(wpa_s->ibss_rsn);
466 wpa_s->ibss_rsn = NULL;
467 #endif /* CONFIG_IBSS_RSN */
472 wpa_supplicant_ap_deinit(wpa_s);
473 #endif /* CONFIG_AP */
475 wpas_p2p_deinit(wpa_s);
477 #ifdef CONFIG_OFFCHANNEL
478 offchannel_deinit(wpa_s);
479 #endif /* CONFIG_OFFCHANNEL */
481 wpa_supplicant_cancel_sched_scan(wpa_s);
483 os_free(wpa_s->next_scan_freqs);
484 wpa_s->next_scan_freqs = NULL;
486 os_free(wpa_s->manual_scan_freqs);
487 wpa_s->manual_scan_freqs = NULL;
489 os_free(wpa_s->manual_sched_scan_freqs);
490 wpa_s->manual_sched_scan_freqs = NULL;
492 wpas_mac_addr_rand_scan_clear(wpa_s, MAC_ADDR_RAND_ALL);
494 gas_query_deinit(wpa_s->gas);
497 free_hw_features(wpa_s);
499 ieee802_1x_dealloc_kay_sm(wpa_s);
501 os_free(wpa_s->bssid_filter);
502 wpa_s->bssid_filter = NULL;
504 os_free(wpa_s->disallow_aps_bssid);
505 wpa_s->disallow_aps_bssid = NULL;
506 os_free(wpa_s->disallow_aps_ssid);
507 wpa_s->disallow_aps_ssid = NULL;
509 wnm_bss_keep_alive_deinit(wpa_s);
511 wnm_deallocate_memory(wpa_s);
512 #endif /* CONFIG_WNM */
514 ext_password_deinit(wpa_s->ext_pw);
515 wpa_s->ext_pw = NULL;
517 wpabuf_free(wpa_s->last_gas_resp);
518 wpa_s->last_gas_resp = NULL;
519 wpabuf_free(wpa_s->prev_gas_resp);
520 wpa_s->prev_gas_resp = NULL;
522 os_free(wpa_s->last_scan_res);
523 wpa_s->last_scan_res = NULL;
527 #endif /* CONFIG_HS20 */
529 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
530 wpabuf_free(wpa_s->vendor_elem[i]);
531 wpa_s->vendor_elem[i] = NULL;
534 wmm_ac_notify_disassoc(wpa_s);
539 * wpa_clear_keys - Clear keys configured for the driver
540 * @wpa_s: Pointer to wpa_supplicant data
541 * @addr: Previously used BSSID or %NULL if not available
543 * This function clears the encryption keys that has been previously configured
546 void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
550 #ifdef CONFIG_IEEE80211W
552 #else /* CONFIG_IEEE80211W */
554 #endif /* CONFIG_IEEE80211W */
556 /* MLME-DELETEKEYS.request */
557 for (i = 0; i < max; i++) {
558 if (wpa_s->keys_cleared & BIT(i))
560 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, i, 0, NULL, 0,
563 if (!(wpa_s->keys_cleared & BIT(0)) && addr &&
564 !is_zero_ether_addr(addr)) {
565 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
567 /* MLME-SETPROTECTION.request(None) */
568 wpa_drv_mlme_setprotection(
570 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
571 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
573 wpa_s->keys_cleared = (u32) -1;
578 * wpa_supplicant_state_txt - Get the connection state name as a text string
579 * @state: State (wpa_state; WPA_*)
580 * Returns: The state name as a printable text string
582 const char * wpa_supplicant_state_txt(enum wpa_states state)
585 case WPA_DISCONNECTED:
586 return "DISCONNECTED";
589 case WPA_INTERFACE_DISABLED:
590 return "INTERFACE_DISABLED";
593 case WPA_AUTHENTICATING:
594 return "AUTHENTICATING";
595 case WPA_ASSOCIATING:
596 return "ASSOCIATING";
599 case WPA_4WAY_HANDSHAKE:
600 return "4WAY_HANDSHAKE";
601 case WPA_GROUP_HANDSHAKE:
602 return "GROUP_HANDSHAKE";
613 static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
617 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
618 name = wpa_s->current_ssid->bgscan;
620 name = wpa_s->conf->bgscan;
621 if (name == NULL || name[0] == '\0')
623 if (wpas_driver_bss_selection(wpa_s))
625 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
628 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE)
630 #endif /* CONFIG_P2P */
632 bgscan_deinit(wpa_s);
633 if (wpa_s->current_ssid) {
634 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
635 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
638 * Live without bgscan; it is only used as a roaming
639 * optimization, so the initial connection is not
643 struct wpa_scan_results *scan_res;
644 wpa_s->bgscan_ssid = wpa_s->current_ssid;
645 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
648 bgscan_notify_scan(wpa_s, scan_res);
649 wpa_scan_results_free(scan_res);
653 wpa_s->bgscan_ssid = NULL;
657 static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
659 if (wpa_s->bgscan_ssid != NULL) {
660 bgscan_deinit(wpa_s);
661 wpa_s->bgscan_ssid = NULL;
665 #endif /* CONFIG_BGSCAN */
668 static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
670 if (autoscan_init(wpa_s, 0))
671 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
675 static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
677 autoscan_deinit(wpa_s);
681 void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
683 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
684 wpa_s->wpa_state == WPA_SCANNING) {
685 autoscan_deinit(wpa_s);
686 wpa_supplicant_start_autoscan(wpa_s);
692 * wpa_supplicant_set_state - Set current connection state
693 * @wpa_s: Pointer to wpa_supplicant data
694 * @state: The new connection state
696 * This function is called whenever the connection state changes, e.g.,
697 * association is completed for WPA/WPA2 4-Way Handshake is started.
699 void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
700 enum wpa_states state)
702 enum wpa_states old_state = wpa_s->wpa_state;
704 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
705 wpa_supplicant_state_txt(wpa_s->wpa_state),
706 wpa_supplicant_state_txt(state));
708 if (state == WPA_INTERFACE_DISABLED) {
709 /* Assure normal scan when interface is restored */
710 wpa_s->normal_scans = 0;
713 if (state == WPA_COMPLETED) {
714 wpas_connect_work_done(wpa_s);
715 /* Reinitialize normal_scan counter */
716 wpa_s->normal_scans = 0;
719 if (state != WPA_SCANNING)
720 wpa_supplicant_notify_scanning(wpa_s, 0);
722 if (state == WPA_COMPLETED && wpa_s->new_connection) {
723 struct wpa_ssid *ssid = wpa_s->current_ssid;
724 #if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
725 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
726 MACSTR " completed [id=%d id_str=%s]",
727 MAC2STR(wpa_s->bssid),
728 ssid ? ssid->id : -1,
729 ssid && ssid->id_str ? ssid->id_str : "");
730 #endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
731 wpas_clear_temp_disabled(wpa_s, ssid, 1);
732 wpa_s->extra_blacklist_count = 0;
733 wpa_s->new_connection = 0;
734 wpa_drv_set_operstate(wpa_s, 1);
735 #ifndef IEEE8021X_EAPOL
736 wpa_drv_set_supp_port(wpa_s, 1);
737 #endif /* IEEE8021X_EAPOL */
738 wpa_s->after_wps = 0;
739 wpa_s->known_wps_freq = 0;
740 wpas_p2p_completed(wpa_s);
742 sme_sched_obss_scan(wpa_s, 1);
743 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
744 state == WPA_ASSOCIATED) {
745 wpa_s->new_connection = 1;
746 wpa_drv_set_operstate(wpa_s, 0);
747 #ifndef IEEE8021X_EAPOL
748 wpa_drv_set_supp_port(wpa_s, 0);
749 #endif /* IEEE8021X_EAPOL */
750 sme_sched_obss_scan(wpa_s, 0);
752 wpa_s->wpa_state = state;
755 if (state == WPA_COMPLETED)
756 wpa_supplicant_start_bgscan(wpa_s);
757 else if (state < WPA_ASSOCIATED)
758 wpa_supplicant_stop_bgscan(wpa_s);
759 #endif /* CONFIG_BGSCAN */
761 if (state == WPA_AUTHENTICATING)
762 wpa_supplicant_stop_autoscan(wpa_s);
764 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
765 wpa_supplicant_start_autoscan(wpa_s);
767 if (old_state >= WPA_ASSOCIATED && wpa_s->wpa_state < WPA_ASSOCIATED)
768 wmm_ac_notify_disassoc(wpa_s);
770 if (wpa_s->wpa_state != old_state) {
771 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
774 * Notify the P2P Device interface about a state change in one
777 wpas_p2p_indicate_state_change(wpa_s);
779 if (wpa_s->wpa_state == WPA_COMPLETED ||
780 old_state == WPA_COMPLETED)
781 wpas_notify_auth_changed(wpa_s);
786 void wpa_supplicant_terminate_proc(struct wpa_global *global)
790 struct wpa_supplicant *wpa_s = global->ifaces;
792 struct wpa_supplicant *next = wpa_s->next;
793 if (wpas_wps_terminate_pending(wpa_s) == 1)
796 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
797 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
798 wpas_p2p_disconnect(wpa_s);
799 #endif /* CONFIG_P2P */
802 #endif /* CONFIG_WPS */
809 static void wpa_supplicant_terminate(int sig, void *signal_ctx)
811 struct wpa_global *global = signal_ctx;
812 wpa_supplicant_terminate_proc(global);
816 void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
818 enum wpa_states old_state = wpa_s->wpa_state;
820 wpa_s->pairwise_cipher = 0;
821 wpa_s->group_cipher = 0;
822 wpa_s->mgmt_group_cipher = 0;
824 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
825 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
827 if (wpa_s->wpa_state != old_state)
828 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
833 * wpa_supplicant_reload_configuration - Reload configuration data
834 * @wpa_s: Pointer to wpa_supplicant data
835 * Returns: 0 on success or -1 if configuration parsing failed
837 * This function can be used to request that the configuration data is reloaded
838 * (e.g., after configuration file change). This function is reloading
839 * configuration only for one interface, so this may need to be called multiple
840 * times if %wpa_supplicant is controlling multiple interfaces and all
841 * interfaces need reconfiguration.
843 int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
845 struct wpa_config *conf;
849 if (wpa_s->confname == NULL)
851 conf = wpa_config_read(wpa_s->confname, NULL);
853 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
854 "file '%s' - exiting", wpa_s->confname);
857 wpa_config_read(wpa_s->confanother, conf);
859 conf->changed_parameters = (unsigned int) -1;
861 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
862 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
863 os_strcmp(conf->ctrl_interface,
864 wpa_s->conf->ctrl_interface) != 0);
866 if (reconf_ctrl && wpa_s->ctrl_iface) {
867 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
868 wpa_s->ctrl_iface = NULL;
871 eapol_sm_invalidate_cached_session(wpa_s->eapol);
872 if (wpa_s->current_ssid) {
873 wpa_supplicant_deauthenticate(wpa_s,
874 WLAN_REASON_DEAUTH_LEAVING);
878 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
879 * pkcs11_engine_path, pkcs11_module_path, openssl_ciphers.
881 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
883 * Clear forced success to clear EAP state for next
886 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
888 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
889 wpa_sm_set_config(wpa_s->wpa, NULL);
890 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
891 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
892 rsn_preauth_deinit(wpa_s->wpa);
894 old_ap_scan = wpa_s->conf->ap_scan;
895 wpa_config_free(wpa_s->conf);
897 if (old_ap_scan != wpa_s->conf->ap_scan)
898 wpas_notify_ap_scan_changed(wpa_s);
901 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
903 wpa_supplicant_update_config(wpa_s);
905 wpa_supplicant_clear_status(wpa_s);
906 if (wpa_supplicant_enabled_networks(wpa_s)) {
907 wpa_s->reassociate = 1;
908 wpa_supplicant_req_scan(wpa_s, 0, 0);
910 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
915 static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
917 struct wpa_global *global = signal_ctx;
918 struct wpa_supplicant *wpa_s;
919 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
920 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
922 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
923 wpa_supplicant_terminate_proc(global);
929 static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
930 struct wpa_ssid *ssid,
931 struct wpa_ie_data *ie)
933 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
936 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
937 "from association info");
942 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
944 if (!(ie->group_cipher & ssid->group_cipher)) {
945 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
946 "cipher 0x%x (mask 0x%x) - reject",
947 ie->group_cipher, ssid->group_cipher);
950 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
951 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
952 "cipher 0x%x (mask 0x%x) - reject",
953 ie->pairwise_cipher, ssid->pairwise_cipher);
956 if (!(ie->key_mgmt & ssid->key_mgmt)) {
957 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
958 "management 0x%x (mask 0x%x) - reject",
959 ie->key_mgmt, ssid->key_mgmt);
963 #ifdef CONFIG_IEEE80211W
964 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
965 wpas_get_ssid_pmf(wpa_s, ssid) == MGMT_FRAME_PROTECTION_REQUIRED) {
966 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
967 "that does not support management frame protection - "
971 #endif /* CONFIG_IEEE80211W */
978 * wpa_supplicant_set_suites - Set authentication and encryption parameters
979 * @wpa_s: Pointer to wpa_supplicant data
980 * @bss: Scan results for the selected BSS, or %NULL if not available
981 * @ssid: Configuration data for the selected network
982 * @wpa_ie: Buffer for the WPA/RSN IE
983 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
984 * used buffer length in case the functions returns success.
985 * Returns: 0 on success or -1 on failure
987 * This function is used to configure authentication and encryption parameters
988 * based on the network configuration and scan result for the selected BSS (if
991 int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
992 struct wpa_bss *bss, struct wpa_ssid *ssid,
993 u8 *wpa_ie, size_t *wpa_ie_len)
995 struct wpa_ie_data ie;
997 const u8 *bss_wpa, *bss_rsn, *bss_osen;
1000 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
1001 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
1002 bss_osen = wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE);
1004 bss_wpa = bss_rsn = bss_osen = NULL;
1006 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
1007 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
1008 (ie.group_cipher & ssid->group_cipher) &&
1009 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1010 (ie.key_mgmt & ssid->key_mgmt)) {
1011 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
1012 proto = WPA_PROTO_RSN;
1013 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
1014 wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie) == 0 &&
1015 (ie.group_cipher & ssid->group_cipher) &&
1016 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1017 (ie.key_mgmt & ssid->key_mgmt)) {
1018 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
1019 proto = WPA_PROTO_WPA;
1021 } else if (bss_osen && (ssid->proto & WPA_PROTO_OSEN)) {
1022 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using OSEN");
1023 /* TODO: parse OSEN element */
1024 os_memset(&ie, 0, sizeof(ie));
1025 ie.group_cipher = WPA_CIPHER_CCMP;
1026 ie.pairwise_cipher = WPA_CIPHER_CCMP;
1027 ie.key_mgmt = WPA_KEY_MGMT_OSEN;
1028 proto = WPA_PROTO_OSEN;
1029 #endif /* CONFIG_HS20 */
1031 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
1032 wpa_dbg(wpa_s, MSG_DEBUG,
1033 "WPA: ssid proto=0x%x pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1034 ssid->proto, ssid->pairwise_cipher, ssid->group_cipher,
1036 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: BSS " MACSTR " ssid='%s'%s%s%s",
1037 MAC2STR(bss->bssid),
1038 wpa_ssid_txt(bss->ssid, bss->ssid_len),
1039 bss_wpa ? " WPA" : "",
1040 bss_rsn ? " RSN" : "",
1041 bss_osen ? " OSEN" : "");
1043 wpa_hexdump(MSG_DEBUG, "RSN", bss_rsn, 2 + bss_rsn[1]);
1044 if (wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie)) {
1045 wpa_dbg(wpa_s, MSG_DEBUG,
1046 "Could not parse RSN element");
1048 wpa_dbg(wpa_s, MSG_DEBUG,
1049 "RSN: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1050 ie.pairwise_cipher, ie.group_cipher,
1055 wpa_hexdump(MSG_DEBUG, "WPA", bss_wpa, 2 + bss_wpa[1]);
1056 if (wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie)) {
1057 wpa_dbg(wpa_s, MSG_DEBUG,
1058 "Could not parse WPA element");
1060 wpa_dbg(wpa_s, MSG_DEBUG,
1061 "WPA: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1062 ie.pairwise_cipher, ie.group_cipher,
1068 if (ssid->proto & WPA_PROTO_OSEN)
1069 proto = WPA_PROTO_OSEN;
1070 else if (ssid->proto & WPA_PROTO_RSN)
1071 proto = WPA_PROTO_RSN;
1073 proto = WPA_PROTO_WPA;
1074 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
1075 os_memset(&ie, 0, sizeof(ie));
1076 ie.group_cipher = ssid->group_cipher;
1077 ie.pairwise_cipher = ssid->pairwise_cipher;
1078 ie.key_mgmt = ssid->key_mgmt;
1079 #ifdef CONFIG_IEEE80211W
1080 ie.mgmt_group_cipher =
1081 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
1082 WPA_CIPHER_AES_128_CMAC : 0;
1083 #endif /* CONFIG_IEEE80211W */
1084 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1085 "based on configuration");
1090 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1091 "pairwise %d key_mgmt %d proto %d",
1092 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
1093 #ifdef CONFIG_IEEE80211W
1094 if (ssid->ieee80211w) {
1095 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1096 ie.mgmt_group_cipher);
1098 #endif /* CONFIG_IEEE80211W */
1100 wpa_s->wpa_proto = proto;
1101 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1102 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1103 !!(ssid->proto & (WPA_PROTO_RSN | WPA_PROTO_OSEN)));
1105 if (bss || !wpa_s->ap_ies_from_associnfo) {
1106 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1107 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1108 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1109 bss_rsn ? 2 + bss_rsn[1] : 0))
1113 sel = ie.group_cipher & ssid->group_cipher;
1114 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1115 if (wpa_s->group_cipher < 0) {
1116 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1120 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1121 wpa_cipher_txt(wpa_s->group_cipher));
1123 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
1124 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1125 if (wpa_s->pairwise_cipher < 0) {
1126 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1130 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1131 wpa_cipher_txt(wpa_s->pairwise_cipher));
1133 sel = ie.key_mgmt & ssid->key_mgmt;
1135 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1136 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1137 #endif /* CONFIG_SAE */
1139 #ifdef CONFIG_SUITEB192
1140 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B_192) {
1141 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B_192;
1142 wpa_dbg(wpa_s, MSG_DEBUG,
1143 "WPA: using KEY_MGMT 802.1X with Suite B (192-bit)");
1144 #endif /* CONFIG_SUITEB192 */
1145 #ifdef CONFIG_SUITEB
1146 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B) {
1147 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B;
1148 wpa_dbg(wpa_s, MSG_DEBUG,
1149 "WPA: using KEY_MGMT 802.1X with Suite B");
1150 #endif /* CONFIG_SUITEB */
1151 #ifdef CONFIG_IEEE80211R
1152 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1153 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
1154 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
1155 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1156 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
1157 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
1158 #endif /* CONFIG_IEEE80211R */
1160 } else if (sel & WPA_KEY_MGMT_SAE) {
1161 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1162 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1163 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1164 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1165 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1166 #endif /* CONFIG_SAE */
1167 #ifdef CONFIG_IEEE80211W
1168 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1169 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
1170 wpa_dbg(wpa_s, MSG_DEBUG,
1171 "WPA: using KEY_MGMT 802.1X with SHA256");
1172 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1173 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
1174 wpa_dbg(wpa_s, MSG_DEBUG,
1175 "WPA: using KEY_MGMT PSK with SHA256");
1176 #endif /* CONFIG_IEEE80211W */
1177 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1178 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
1179 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
1180 } else if (sel & WPA_KEY_MGMT_PSK) {
1181 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
1182 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
1183 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1184 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
1185 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
1187 } else if (sel & WPA_KEY_MGMT_OSEN) {
1188 wpa_s->key_mgmt = WPA_KEY_MGMT_OSEN;
1189 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using KEY_MGMT OSEN");
1190 #endif /* CONFIG_HS20 */
1192 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1193 "authenticated key management type");
1197 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1198 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1199 wpa_s->pairwise_cipher);
1200 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1202 #ifdef CONFIG_IEEE80211W
1203 sel = ie.mgmt_group_cipher;
1204 if (wpas_get_ssid_pmf(wpa_s, ssid) == NO_MGMT_FRAME_PROTECTION ||
1205 !(ie.capabilities & WPA_CAPABILITY_MFPC))
1207 if (sel & WPA_CIPHER_AES_128_CMAC) {
1208 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
1209 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1211 } else if (sel & WPA_CIPHER_BIP_GMAC_128) {
1212 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_128;
1213 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1215 } else if (sel & WPA_CIPHER_BIP_GMAC_256) {
1216 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_256;
1217 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1219 } else if (sel & WPA_CIPHER_BIP_CMAC_256) {
1220 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_CMAC_256;
1221 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1224 wpa_s->mgmt_group_cipher = 0;
1225 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
1227 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1228 wpa_s->mgmt_group_cipher);
1229 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1230 wpas_get_ssid_pmf(wpa_s, ssid));
1231 #endif /* CONFIG_IEEE80211W */
1233 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
1234 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
1238 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
1239 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN, NULL);
1240 #ifndef CONFIG_NO_PBKDF2
1241 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1244 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1245 4096, psk, PMK_LEN);
1246 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1248 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1249 os_memset(psk, 0, sizeof(psk));
1251 #endif /* CONFIG_NO_PBKDF2 */
1252 #ifdef CONFIG_EXT_PASSWORD
1253 if (ssid->ext_psk) {
1254 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1256 char pw_str[64 + 1];
1260 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1261 "found from external storage");
1265 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1266 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1267 "PSK length %d in external storage",
1268 (int) wpabuf_len(pw));
1269 ext_password_free(pw);
1273 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1274 pw_str[wpabuf_len(pw)] = '\0';
1276 #ifndef CONFIG_NO_PBKDF2
1277 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1279 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1280 4096, psk, PMK_LEN);
1281 os_memset(pw_str, 0, sizeof(pw_str));
1282 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1283 "external passphrase)",
1285 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1286 os_memset(psk, 0, sizeof(psk));
1288 #endif /* CONFIG_NO_PBKDF2 */
1289 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1290 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1291 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1292 "Invalid PSK hex string");
1293 os_memset(pw_str, 0, sizeof(pw_str));
1294 ext_password_free(pw);
1297 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL);
1298 os_memset(psk, 0, sizeof(psk));
1300 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1302 os_memset(pw_str, 0, sizeof(pw_str));
1303 ext_password_free(pw);
1307 os_memset(pw_str, 0, sizeof(pw_str));
1308 ext_password_free(pw);
1310 #endif /* CONFIG_EXT_PASSWORD */
1312 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1318 static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
1323 case 0: /* Bits 0-7 */
1325 case 1: /* Bits 8-15 */
1327 case 2: /* Bits 16-23 */
1329 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1330 *pos |= 0x08; /* Bit 19 - BSS Transition */
1331 #endif /* CONFIG_WNM */
1333 case 3: /* Bits 24-31 */
1335 *pos |= 0x02; /* Bit 25 - SSID List */
1336 #endif /* CONFIG_WNM */
1337 #ifdef CONFIG_INTERWORKING
1338 if (wpa_s->conf->interworking)
1339 *pos |= 0x80; /* Bit 31 - Interworking */
1340 #endif /* CONFIG_INTERWORKING */
1342 case 4: /* Bits 32-39 */
1343 #ifdef CONFIG_INTERWORKING
1344 if (wpa_s->drv_flags / WPA_DRIVER_FLAGS_QOS_MAPPING)
1345 *pos |= 0x01; /* Bit 32 - QoS Map */
1346 #endif /* CONFIG_INTERWORKING */
1348 case 5: /* Bits 40-47 */
1350 if (wpa_s->conf->hs20)
1351 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1352 #endif /* CONFIG_HS20 */
1354 case 6: /* Bits 48-55 */
1360 int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf, size_t buflen)
1365 if (len < wpa_s->extended_capa_len)
1366 len = wpa_s->extended_capa_len;
1367 if (buflen < (size_t) len + 2) {
1368 wpa_printf(MSG_INFO,
1369 "Not enough room for building extended capabilities element");
1373 *pos++ = WLAN_EID_EXT_CAPAB;
1375 for (i = 0; i < len; i++, pos++) {
1376 wpas_ext_capab_byte(wpa_s, pos, i);
1378 if (i < wpa_s->extended_capa_len) {
1379 *pos &= ~wpa_s->extended_capa_mask[i];
1380 *pos |= wpa_s->extended_capa[i];
1384 while (len > 0 && buf[1 + len] == 0) {
1395 static int wpas_valid_bss(struct wpa_supplicant *wpa_s,
1396 struct wpa_bss *test_bss)
1398 struct wpa_bss *bss;
1400 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
1401 if (bss == test_bss)
1409 static int wpas_valid_ssid(struct wpa_supplicant *wpa_s,
1410 struct wpa_ssid *test_ssid)
1412 struct wpa_ssid *ssid;
1414 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next) {
1415 if (ssid == test_ssid)
1423 int wpas_valid_bss_ssid(struct wpa_supplicant *wpa_s, struct wpa_bss *test_bss,
1424 struct wpa_ssid *test_ssid)
1426 if (test_bss && !wpas_valid_bss(wpa_s, test_bss))
1429 return test_ssid == NULL || wpas_valid_ssid(wpa_s, test_ssid);
1433 void wpas_connect_work_free(struct wpa_connect_work *cwork)
1441 void wpas_connect_work_done(struct wpa_supplicant *wpa_s)
1443 struct wpa_connect_work *cwork;
1444 struct wpa_radio_work *work = wpa_s->connect_work;
1449 wpa_s->connect_work = NULL;
1452 wpas_connect_work_free(cwork);
1453 radio_work_done(work);
1457 int wpas_update_random_addr(struct wpa_supplicant *wpa_s, int style)
1459 struct os_reltime now;
1462 os_get_reltime(&now);
1463 if (wpa_s->last_mac_addr_style == style &&
1464 wpa_s->last_mac_addr_change.sec != 0 &&
1465 !os_reltime_expired(&now, &wpa_s->last_mac_addr_change,
1466 wpa_s->conf->rand_addr_lifetime)) {
1467 wpa_msg(wpa_s, MSG_DEBUG,
1468 "Previously selected random MAC address has not yet expired");
1474 if (random_mac_addr(addr) < 0)
1478 os_memcpy(addr, wpa_s->perm_addr, ETH_ALEN);
1479 if (random_mac_addr_keep_oui(addr) < 0)
1486 if (wpa_drv_set_mac_addr(wpa_s, addr) < 0) {
1487 wpa_msg(wpa_s, MSG_INFO,
1488 "Failed to set random MAC address");
1492 os_get_reltime(&wpa_s->last_mac_addr_change);
1493 wpa_s->mac_addr_changed = 1;
1494 wpa_s->last_mac_addr_style = style;
1496 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1497 wpa_msg(wpa_s, MSG_INFO,
1498 "Could not update MAC address information");
1502 wpa_msg(wpa_s, MSG_DEBUG, "Using random MAC address " MACSTR,
1509 int wpas_update_random_addr_disassoc(struct wpa_supplicant *wpa_s)
1511 if (wpa_s->wpa_state >= WPA_AUTHENTICATING ||
1512 !wpa_s->conf->preassoc_mac_addr)
1515 return wpas_update_random_addr(wpa_s, wpa_s->conf->preassoc_mac_addr);
1519 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit);
1522 * wpa_supplicant_associate - Request association
1523 * @wpa_s: Pointer to wpa_supplicant data
1524 * @bss: Scan results for the selected BSS, or %NULL if not available
1525 * @ssid: Configuration data for the selected network
1527 * This function is used to request %wpa_supplicant to associate with a BSS.
1529 void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
1530 struct wpa_bss *bss, struct wpa_ssid *ssid)
1532 struct wpa_connect_work *cwork;
1535 if (ssid->mac_addr == -1)
1536 rand_style = wpa_s->conf->mac_addr;
1538 rand_style = ssid->mac_addr;
1540 wmm_ac_clear_saved_tspecs(wpa_s);
1541 wpa_s->reassoc_same_bss = 0;
1543 if (wpa_s->last_ssid == ssid) {
1544 wpa_dbg(wpa_s, MSG_DEBUG, "Re-association to the same ESS");
1545 if (wpa_s->current_bss && wpa_s->current_bss == bss) {
1546 wmm_ac_save_tspecs(wpa_s);
1547 wpa_s->reassoc_same_bss = 1;
1549 } else if (rand_style > 0) {
1550 if (wpas_update_random_addr(wpa_s, rand_style) < 0)
1552 wpa_sm_pmksa_cache_flush(wpa_s->wpa, ssid);
1553 } else if (wpa_s->mac_addr_changed) {
1554 if (wpa_drv_set_mac_addr(wpa_s, NULL) < 0) {
1555 wpa_msg(wpa_s, MSG_INFO,
1556 "Could not restore permanent MAC address");
1559 wpa_s->mac_addr_changed = 0;
1560 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1561 wpa_msg(wpa_s, MSG_INFO,
1562 "Could not update MAC address information");
1565 wpa_msg(wpa_s, MSG_DEBUG, "Using permanent MAC address");
1567 wpa_s->last_ssid = ssid;
1569 #ifdef CONFIG_IBSS_RSN
1570 ibss_rsn_deinit(wpa_s->ibss_rsn);
1571 wpa_s->ibss_rsn = NULL;
1572 #endif /* CONFIG_IBSS_RSN */
1574 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1575 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1577 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
1578 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1582 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1583 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1584 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1585 wpas_p2p_ap_setup_failed(wpa_s);
1588 wpa_s->current_bss = bss;
1589 #else /* CONFIG_AP */
1590 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1592 #endif /* CONFIG_AP */
1596 if (ssid->mode == WPAS_MODE_MESH) {
1598 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_MESH)) {
1599 wpa_msg(wpa_s, MSG_INFO,
1600 "Driver does not support mesh mode");
1604 ssid->frequency = bss->freq;
1605 if (wpa_supplicant_join_mesh(wpa_s, ssid) < 0) {
1606 wpa_msg(wpa_s, MSG_ERROR, "Could not join mesh");
1609 wpa_s->current_bss = bss;
1610 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_STARTED
1611 "ssid=\"%s\" id=%d",
1612 wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
1614 #else /* CONFIG_MESH */
1615 wpa_msg(wpa_s, MSG_ERROR,
1616 "mesh mode support not included in the build");
1617 #endif /* CONFIG_MESH */
1623 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1625 #endif /* CONFIG_TDLS */
1627 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1628 ssid->mode == IEEE80211_MODE_INFRA) {
1629 sme_authenticate(wpa_s, bss, ssid);
1633 if (wpa_s->connect_work) {
1634 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since connect_work exist");
1638 if (radio_work_pending(wpa_s, "connect")) {
1639 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since pending work exist");
1643 cwork = os_zalloc(sizeof(*cwork));
1650 if (radio_add_work(wpa_s, bss ? bss->freq : 0, "connect", 1,
1651 wpas_start_assoc_cb, cwork) < 0) {
1657 void ibss_mesh_setup_freq(struct wpa_supplicant *wpa_s,
1658 const struct wpa_ssid *ssid,
1659 struct hostapd_freq_params *freq)
1661 enum hostapd_hw_mode hw_mode;
1662 struct hostapd_hw_modes *mode = NULL;
1663 int ht40plus[] = { 36, 44, 52, 60, 100, 108, 116, 124, 132, 149, 157,
1665 struct hostapd_channel_data *pri_chan = NULL, *sec_chan = NULL;
1667 int i, chan_idx, ht40 = -1, res;
1670 freq->freq = ssid->frequency;
1672 /* For IBSS check HT_IBSS flag */
1673 if (ssid->mode == WPAS_MODE_IBSS &&
1674 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_HT_IBSS))
1677 if (wpa_s->group_cipher == WPA_CIPHER_WEP40 ||
1678 wpa_s->group_cipher == WPA_CIPHER_WEP104 ||
1679 wpa_s->pairwise_cipher == WPA_CIPHER_TKIP) {
1680 wpa_printf(MSG_DEBUG,
1681 "IBSS: WEP/TKIP detected, do not try to enable HT");
1685 hw_mode = ieee80211_freq_to_chan(ssid->frequency, &channel);
1686 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
1687 if (wpa_s->hw.modes[i].mode == hw_mode) {
1688 mode = &wpa_s->hw.modes[i];
1696 freq->ht_enabled = ht_supported(mode);
1697 if (!freq->ht_enabled)
1700 /* Setup higher BW only for 5 GHz */
1701 if (mode->mode != HOSTAPD_MODE_IEEE80211A)
1704 for (chan_idx = 0; chan_idx < mode->num_channels; chan_idx++) {
1705 pri_chan = &mode->channels[chan_idx];
1706 if (pri_chan->chan == channel)
1713 /* Check primary channel flags */
1714 if (pri_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1717 /* Check/setup HT40+/HT40- */
1718 for (j = 0; j < ARRAY_SIZE(ht40plus); j++) {
1719 if (ht40plus[j] == channel) {
1725 /* Find secondary channel */
1726 for (i = 0; i < mode->num_channels; i++) {
1727 sec_chan = &mode->channels[i];
1728 if (sec_chan->chan == channel + ht40 * 4)
1735 /* Check secondary channel flags */
1736 if (sec_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1739 freq->channel = pri_chan->chan;
1743 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40MINUS))
1745 freq->sec_channel_offset = -1;
1748 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40PLUS))
1750 freq->sec_channel_offset = 1;
1756 if (freq->sec_channel_offset) {
1757 struct wpa_scan_results *scan_res;
1759 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL, 0);
1760 if (scan_res == NULL) {
1762 freq->sec_channel_offset = 0;
1766 res = check_40mhz_5g(mode, scan_res, pri_chan->chan,
1771 freq->sec_channel_offset = 0;
1774 /* Configuration allowed */
1777 /* Switch pri/sec channels */
1778 freq->freq = hw_get_freq(mode, sec_chan->chan);
1779 freq->sec_channel_offset = -freq->sec_channel_offset;
1780 freq->channel = sec_chan->chan;
1783 freq->sec_channel_offset = 0;
1787 wpa_scan_results_free(scan_res);
1790 wpa_printf(MSG_DEBUG,
1791 "IBSS/mesh: setup freq channel %d, sec_channel_offset %d",
1792 freq->channel, freq->sec_channel_offset);
1796 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit)
1798 struct wpa_connect_work *cwork = work->ctx;
1799 struct wpa_bss *bss = cwork->bss;
1800 struct wpa_ssid *ssid = cwork->ssid;
1801 struct wpa_supplicant *wpa_s = work->wpa_s;
1804 int use_crypt, ret, i, bssid_changed;
1805 int algs = WPA_AUTH_ALG_OPEN;
1806 unsigned int cipher_pairwise, cipher_group;
1807 struct wpa_driver_associate_params params;
1808 int wep_keys_set = 0;
1809 int assoc_failed = 0;
1810 struct wpa_ssid *old_ssid;
1811 #ifdef CONFIG_HT_OVERRIDES
1812 struct ieee80211_ht_capabilities htcaps;
1813 struct ieee80211_ht_capabilities htcaps_mask;
1814 #endif /* CONFIG_HT_OVERRIDES */
1815 #ifdef CONFIG_VHT_OVERRIDES
1816 struct ieee80211_vht_capabilities vhtcaps;
1817 struct ieee80211_vht_capabilities vhtcaps_mask;
1818 #endif /* CONFIG_VHT_OVERRIDES */
1821 if (work->started) {
1822 wpa_s->connect_work = NULL;
1824 /* cancel possible auth. timeout */
1825 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s,
1828 wpas_connect_work_free(cwork);
1832 wpa_s->connect_work = work;
1834 if (cwork->bss_removed || !wpas_valid_bss_ssid(wpa_s, bss, ssid)) {
1835 wpa_dbg(wpa_s, MSG_DEBUG, "BSS/SSID entry for association not valid anymore - drop connection attempt");
1836 wpas_connect_work_done(wpa_s);
1840 os_memset(¶ms, 0, sizeof(params));
1841 wpa_s->reassociate = 0;
1842 wpa_s->eap_expected_failure = 0;
1844 (!wpas_driver_bss_selection(wpa_s) || wpas_wps_searching(wpa_s))) {
1845 #ifdef CONFIG_IEEE80211R
1846 const u8 *ie, *md = NULL;
1847 #endif /* CONFIG_IEEE80211R */
1848 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
1849 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
1850 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
1851 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
1852 os_memset(wpa_s->bssid, 0, ETH_ALEN);
1853 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
1855 wpas_notify_bssid_changed(wpa_s);
1856 #ifdef CONFIG_IEEE80211R
1857 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
1858 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
1860 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
1862 /* Prepare for the next transition */
1863 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
1865 #endif /* CONFIG_IEEE80211R */
1867 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
1868 wpa_s->conf->ap_scan == 2 &&
1869 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
1870 /* Use ap_scan==1 style network selection to find the network
1872 wpas_connect_work_done(wpa_s);
1873 wpa_s->scan_req = MANUAL_SCAN_REQ;
1874 wpa_s->reassociate = 1;
1875 wpa_supplicant_req_scan(wpa_s, 0, 0);
1877 #endif /* CONFIG_WPS */
1879 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
1880 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
1881 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
1883 wpa_supplicant_cancel_sched_scan(wpa_s);
1884 wpa_supplicant_cancel_scan(wpa_s);
1886 /* Starting new association, so clear the possibly used WPA IE from the
1887 * previous association. */
1888 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
1890 #ifdef IEEE8021X_EAPOL
1891 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
1893 if (ssid->non_leap == 0)
1894 algs = WPA_AUTH_ALG_LEAP;
1896 algs |= WPA_AUTH_ALG_LEAP;
1899 #endif /* IEEE8021X_EAPOL */
1900 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
1901 if (ssid->auth_alg) {
1902 algs = ssid->auth_alg;
1903 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
1907 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
1908 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
1909 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
1910 int try_opportunistic;
1911 try_opportunistic = (ssid->proactive_key_caching < 0 ?
1913 ssid->proactive_key_caching) &&
1914 (ssid->proto & WPA_PROTO_RSN);
1915 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
1916 ssid, try_opportunistic) == 0)
1917 eapol_sm_notify_pmkid_attempt(wpa_s->eapol);
1918 wpa_ie_len = sizeof(wpa_ie);
1919 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
1920 wpa_ie, &wpa_ie_len)) {
1921 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1922 "key management and encryption suites");
1923 wpas_connect_work_done(wpa_s);
1926 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
1927 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
1929 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
1930 * use non-WPA since the scan results did not indicate that the
1931 * AP is using WPA or WPA2.
1933 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1935 wpa_s->wpa_proto = 0;
1936 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
1937 wpa_ie_len = sizeof(wpa_ie);
1938 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
1939 wpa_ie, &wpa_ie_len)) {
1940 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
1941 "key management and encryption suites (no "
1943 wpas_connect_work_done(wpa_s);
1947 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
1948 struct wpabuf *wps_ie;
1949 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
1950 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
1951 wpa_ie_len = wpabuf_len(wps_ie);
1952 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
1955 wpabuf_free(wps_ie);
1956 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1957 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
1958 params.wps = WPS_MODE_PRIVACY;
1960 params.wps = WPS_MODE_OPEN;
1961 wpa_s->wpa_proto = 0;
1962 #endif /* CONFIG_WPS */
1964 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
1966 wpa_s->wpa_proto = 0;
1970 if (wpa_s->global->p2p) {
1974 pos = wpa_ie + wpa_ie_len;
1975 len = sizeof(wpa_ie) - wpa_ie_len;
1976 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
1982 wpa_s->cross_connect_disallowed = 0;
1985 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
1987 wpa_s->cross_connect_disallowed =
1988 p2p_get_cross_connect_disallowed(p2p);
1990 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
1992 wpa_s->cross_connect_disallowed ?
1993 "disallows" : "allows");
1997 os_memset(wpa_s->p2p_ip_addr_info, 0, sizeof(wpa_s->p2p_ip_addr_info));
1998 #endif /* CONFIG_P2P */
2001 if (is_hs20_network(wpa_s, ssid, bss)) {
2002 struct wpabuf *hs20;
2003 hs20 = wpabuf_alloc(20);
2005 int pps_mo_id = hs20_get_pps_mo_id(wpa_s, ssid);
2008 wpas_hs20_add_indication(hs20, pps_mo_id);
2009 len = sizeof(wpa_ie) - wpa_ie_len;
2010 if (wpabuf_len(hs20) <= len) {
2011 os_memcpy(wpa_ie + wpa_ie_len,
2012 wpabuf_head(hs20), wpabuf_len(hs20));
2013 wpa_ie_len += wpabuf_len(hs20);
2018 #endif /* CONFIG_HS20 */
2021 * Workaround: Add Extended Capabilities element only if the AP
2022 * included this element in Beacon/Probe Response frames. Some older
2023 * APs seem to have interoperability issues if this element is
2024 * included, so while the standard may require us to include the
2025 * element in all cases, it is justifiable to skip it to avoid
2026 * interoperability issues.
2028 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
2031 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab,
2033 if (ext_capab_len > 0) {
2035 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
2037 os_memmove(pos + ext_capab_len, pos,
2038 wpa_ie_len - (pos - wpa_ie));
2039 wpa_ie_len += ext_capab_len;
2040 os_memcpy(pos, ext_capab, ext_capab_len);
2044 if (wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ]) {
2045 struct wpabuf *buf = wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ];
2048 len = sizeof(wpa_ie) - wpa_ie_len;
2049 if (wpabuf_len(buf) <= len) {
2050 os_memcpy(wpa_ie + wpa_ie_len,
2051 wpabuf_head(buf), wpabuf_len(buf));
2052 wpa_ie_len += wpabuf_len(buf);
2056 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
2058 cipher_pairwise = wpa_s->pairwise_cipher;
2059 cipher_group = wpa_s->group_cipher;
2060 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
2061 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2062 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
2064 if (wpa_set_wep_keys(wpa_s, ssid)) {
2069 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
2072 #ifdef IEEE8021X_EAPOL
2073 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2074 if ((ssid->eapol_flags &
2075 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
2076 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
2080 /* Assume that dynamic WEP-104 keys will be used and
2081 * set cipher suites in order for drivers to expect
2083 cipher_pairwise = cipher_group = WPA_CIPHER_WEP104;
2086 #endif /* IEEE8021X_EAPOL */
2088 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2089 /* Set the key before (and later after) association */
2090 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2093 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
2095 params.ssid = bss->ssid;
2096 params.ssid_len = bss->ssid_len;
2097 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
2098 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
2099 MACSTR " freq=%u MHz based on scan results "
2101 MAC2STR(bss->bssid), bss->freq,
2103 params.bssid = bss->bssid;
2104 params.freq.freq = bss->freq;
2106 params.bssid_hint = bss->bssid;
2107 params.freq_hint = bss->freq;
2109 params.ssid = ssid->ssid;
2110 params.ssid_len = ssid->ssid_len;
2113 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
2114 wpa_s->conf->ap_scan == 2) {
2115 params.bssid = ssid->bssid;
2116 params.fixed_bssid = 1;
2119 /* Initial frequency for IBSS/mesh */
2120 if ((ssid->mode == WPAS_MODE_IBSS || ssid->mode == WPAS_MODE_MESH) &&
2121 ssid->frequency > 0 && params.freq.freq == 0)
2122 ibss_mesh_setup_freq(wpa_s, ssid, ¶ms.freq);
2124 if (ssid->mode == WPAS_MODE_IBSS) {
2125 params.fixed_freq = ssid->fixed_freq;
2126 if (ssid->beacon_int)
2127 params.beacon_int = ssid->beacon_int;
2129 params.beacon_int = wpa_s->conf->beacon_int;
2132 params.wpa_ie = wpa_ie;
2133 params.wpa_ie_len = wpa_ie_len;
2134 params.pairwise_suite = cipher_pairwise;
2135 params.group_suite = cipher_group;
2136 params.key_mgmt_suite = wpa_s->key_mgmt;
2137 params.wpa_proto = wpa_s->wpa_proto;
2138 params.auth_alg = algs;
2139 params.mode = ssid->mode;
2140 params.bg_scan_period = ssid->bg_scan_period;
2141 for (i = 0; i < NUM_WEP_KEYS; i++) {
2142 if (ssid->wep_key_len[i])
2143 params.wep_key[i] = ssid->wep_key[i];
2144 params.wep_key_len[i] = ssid->wep_key_len[i];
2146 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
2148 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
2149 (params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2150 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK)) {
2151 params.passphrase = ssid->passphrase;
2153 params.psk = ssid->psk;
2156 if (wpa_s->conf->key_mgmt_offload) {
2157 if (params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
2158 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
2159 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B ||
2160 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B_192)
2161 params.req_key_mgmt_offload =
2162 ssid->proactive_key_caching < 0 ?
2163 wpa_s->conf->okc : ssid->proactive_key_caching;
2165 params.req_key_mgmt_offload = 1;
2167 if ((params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2168 params.key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256 ||
2169 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK) &&
2171 params.psk = ssid->psk;
2174 params.drop_unencrypted = use_crypt;
2176 #ifdef CONFIG_IEEE80211W
2177 params.mgmt_frame_protection = wpas_get_ssid_pmf(wpa_s, ssid);
2178 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
2179 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
2180 struct wpa_ie_data ie;
2181 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
2183 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
2184 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
2185 "MFP: require MFP");
2186 params.mgmt_frame_protection =
2187 MGMT_FRAME_PROTECTION_REQUIRED;
2190 #endif /* CONFIG_IEEE80211W */
2192 params.p2p = ssid->p2p_group;
2194 if (wpa_s->parent->set_sta_uapsd)
2195 params.uapsd = wpa_s->parent->sta_uapsd;
2199 #ifdef CONFIG_HT_OVERRIDES
2200 os_memset(&htcaps, 0, sizeof(htcaps));
2201 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
2202 params.htcaps = (u8 *) &htcaps;
2203 params.htcaps_mask = (u8 *) &htcaps_mask;
2204 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, ¶ms);
2205 #endif /* CONFIG_HT_OVERRIDES */
2206 #ifdef CONFIG_VHT_OVERRIDES
2207 os_memset(&vhtcaps, 0, sizeof(vhtcaps));
2208 os_memset(&vhtcaps_mask, 0, sizeof(vhtcaps_mask));
2209 params.vhtcaps = &vhtcaps;
2210 params.vhtcaps_mask = &vhtcaps_mask;
2211 wpa_supplicant_apply_vht_overrides(wpa_s, ssid, ¶ms);
2212 #endif /* CONFIG_VHT_OVERRIDES */
2216 * If multi-channel concurrency is not supported, check for any
2217 * frequency conflict. In case of any frequency conflict, remove the
2218 * least prioritized connection.
2220 if (wpa_s->num_multichan_concurrent < 2) {
2222 num = get_shared_radio_freqs(wpa_s, &freq, 1);
2223 if (num > 0 && freq > 0 && freq != params.freq.freq) {
2224 wpa_printf(MSG_DEBUG,
2225 "Assoc conflicting freq found (%d != %d)",
2226 freq, params.freq.freq);
2227 if (wpas_p2p_handle_frequency_conflicts(
2228 wpa_s, params.freq.freq, ssid) < 0) {
2229 wpas_connect_work_done(wpa_s);
2234 #endif /* CONFIG_P2P */
2236 ret = wpa_drv_associate(wpa_s, ¶ms);
2238 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
2240 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
2242 * The driver is known to mean what is saying, so we
2243 * can stop right here; the association will not
2246 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
2247 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
2248 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2251 /* try to continue anyway; new association will be tried again
2256 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2257 /* Set the key after the association just in case association
2258 * cleared the previously configured key. */
2259 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2260 /* No need to timeout authentication since there is no key
2262 wpa_supplicant_cancel_auth_timeout(wpa_s);
2263 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
2264 #ifdef CONFIG_IBSS_RSN
2265 } else if (ssid->mode == WPAS_MODE_IBSS &&
2266 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
2267 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
2269 * RSN IBSS authentication is per-STA and we can disable the
2270 * per-BSSID authentication.
2272 wpa_supplicant_cancel_auth_timeout(wpa_s);
2273 #endif /* CONFIG_IBSS_RSN */
2275 /* Timeout for IEEE 802.11 authentication and association */
2279 /* give IBSS a bit more time */
2280 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
2281 } else if (wpa_s->conf->ap_scan == 1) {
2282 /* give IBSS a bit more time */
2283 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
2285 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
2289 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
2290 /* Set static WEP keys again */
2291 wpa_set_wep_keys(wpa_s, ssid);
2294 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
2296 * Do not allow EAP session resumption between different
2297 * network configurations.
2299 eapol_sm_invalidate_cached_session(wpa_s->eapol);
2301 old_ssid = wpa_s->current_ssid;
2302 wpa_s->current_ssid = ssid;
2303 wpa_s->current_bss = bss;
2304 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
2305 wpa_supplicant_initiate_eapol(wpa_s);
2306 if (old_ssid != wpa_s->current_ssid)
2307 wpas_notify_network_changed(wpa_s);
2311 static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
2314 struct wpa_ssid *old_ssid;
2316 wpas_connect_work_done(wpa_s);
2317 wpa_clear_keys(wpa_s, addr);
2318 old_ssid = wpa_s->current_ssid;
2319 wpa_supplicant_mark_disassoc(wpa_s);
2320 wpa_sm_set_config(wpa_s->wpa, NULL);
2321 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2322 if (old_ssid != wpa_s->current_ssid)
2323 wpas_notify_network_changed(wpa_s);
2324 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
2329 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
2330 * @wpa_s: Pointer to wpa_supplicant data
2331 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
2333 * This function is used to request %wpa_supplicant to deauthenticate from the
2336 void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
2340 union wpa_event_data event;
2343 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
2344 " pending_bssid=" MACSTR " reason=%d state=%s",
2345 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
2346 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
2348 if (!is_zero_ether_addr(wpa_s->bssid))
2349 addr = wpa_s->bssid;
2350 else if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
2351 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
2352 wpa_s->wpa_state == WPA_ASSOCIATING))
2353 addr = wpa_s->pending_bssid;
2354 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
2356 * When using driver-based BSS selection, we may not know the
2357 * BSSID with which we are currently trying to associate. We
2358 * need to notify the driver of this disconnection even in such
2359 * a case, so use the all zeros address here.
2361 addr = wpa_s->bssid;
2366 wpa_tdls_teardown_peers(wpa_s->wpa);
2367 #endif /* CONFIG_TDLS */
2371 wpa_msg_ctrl(wpa_s, MSG_INFO, MESH_GROUP_REMOVED "%s",
2373 wpa_supplicant_leave_mesh(wpa_s);
2375 #endif /* CONFIG_MESH */
2378 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
2379 os_memset(&event, 0, sizeof(event));
2380 event.deauth_info.reason_code = (u16) reason_code;
2381 event.deauth_info.locally_generated = 1;
2382 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
2387 wpa_supplicant_clear_connection(wpa_s, addr);
2390 static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
2391 struct wpa_ssid *ssid)
2393 if (!ssid || !ssid->disabled || ssid->disabled == 2)
2397 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2398 wpas_notify_network_enabled_changed(wpa_s, ssid);
2401 * Try to reassociate since there is no current configuration and a new
2402 * network was made available.
2404 if (!wpa_s->current_ssid && !wpa_s->disconnected)
2405 wpa_s->reassociate = 1;
2410 * wpa_supplicant_enable_network - Mark a configured network as enabled
2411 * @wpa_s: wpa_supplicant structure for a network interface
2412 * @ssid: wpa_ssid structure for a configured network or %NULL
2414 * Enables the specified network or all networks if no network specified.
2416 void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
2417 struct wpa_ssid *ssid)
2420 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
2421 wpa_supplicant_enable_one_network(wpa_s, ssid);
2423 wpa_supplicant_enable_one_network(wpa_s, ssid);
2425 if (wpa_s->reassociate && !wpa_s->disconnected) {
2426 if (wpa_s->sched_scanning) {
2427 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
2428 "new network to scan filters");
2429 wpa_supplicant_cancel_sched_scan(wpa_s);
2432 if (wpa_supplicant_fast_associate(wpa_s) != 1)
2433 wpa_supplicant_req_scan(wpa_s, 0, 0);
2439 * wpa_supplicant_disable_network - Mark a configured network as disabled
2440 * @wpa_s: wpa_supplicant structure for a network interface
2441 * @ssid: wpa_ssid structure for a configured network or %NULL
2443 * Disables the specified network or all networks if no network specified.
2445 void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
2446 struct wpa_ssid *ssid)
2448 struct wpa_ssid *other_ssid;
2452 if (wpa_s->sched_scanning)
2453 wpa_supplicant_cancel_sched_scan(wpa_s);
2455 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2456 other_ssid = other_ssid->next) {
2457 was_disabled = other_ssid->disabled;
2458 if (was_disabled == 2)
2459 continue; /* do not change persistent P2P group
2462 other_ssid->disabled = 1;
2464 if (was_disabled != other_ssid->disabled)
2465 wpas_notify_network_enabled_changed(
2468 if (wpa_s->current_ssid)
2469 wpa_supplicant_deauthenticate(
2470 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2471 } else if (ssid->disabled != 2) {
2472 if (ssid == wpa_s->current_ssid)
2473 wpa_supplicant_deauthenticate(
2474 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2476 was_disabled = ssid->disabled;
2480 if (was_disabled != ssid->disabled) {
2481 wpas_notify_network_enabled_changed(wpa_s, ssid);
2482 if (wpa_s->sched_scanning) {
2483 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
2484 "to remove network from filters");
2485 wpa_supplicant_cancel_sched_scan(wpa_s);
2486 wpa_supplicant_req_scan(wpa_s, 0, 0);
2494 * wpa_supplicant_select_network - Attempt association with a network
2495 * @wpa_s: wpa_supplicant structure for a network interface
2496 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
2498 void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
2499 struct wpa_ssid *ssid)
2502 struct wpa_ssid *other_ssid;
2503 int disconnected = 0;
2505 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
2506 wpa_supplicant_deauthenticate(
2507 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2512 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2515 * Mark all other networks disabled or mark all networks enabled if no
2516 * network specified.
2518 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2519 other_ssid = other_ssid->next) {
2520 int was_disabled = other_ssid->disabled;
2521 if (was_disabled == 2)
2522 continue; /* do not change persistent P2P group data */
2524 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
2525 if (was_disabled && !other_ssid->disabled)
2526 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
2528 if (was_disabled != other_ssid->disabled)
2529 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
2532 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid) {
2533 /* We are already associated with the selected network */
2534 wpa_printf(MSG_DEBUG, "Already associated with the "
2535 "selected network - do nothing");
2540 wpa_s->current_ssid = ssid;
2541 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2542 wpa_s->connect_without_scan =
2543 (ssid->mode == WPAS_MODE_MESH) ? ssid : NULL;
2545 wpa_s->connect_without_scan = NULL;
2548 wpa_s->disconnected = 0;
2549 wpa_s->reassociate = 1;
2551 if (wpa_s->connect_without_scan ||
2552 wpa_supplicant_fast_associate(wpa_s) != 1)
2553 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
2556 wpas_notify_network_selected(wpa_s, ssid);
2561 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
2562 * @wpa_s: wpa_supplicant structure for a network interface
2563 * @pkcs11_engine_path: PKCS #11 engine path or NULL
2564 * @pkcs11_module_path: PKCS #11 module path or NULL
2565 * Returns: 0 on success; -1 on failure
2567 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
2568 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
2569 * module path fails the paths will be reset to the default value (NULL).
2571 int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
2572 const char *pkcs11_engine_path,
2573 const char *pkcs11_module_path)
2575 char *pkcs11_engine_path_copy = NULL;
2576 char *pkcs11_module_path_copy = NULL;
2578 if (pkcs11_engine_path != NULL) {
2579 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
2580 if (pkcs11_engine_path_copy == NULL)
2583 if (pkcs11_module_path != NULL) {
2584 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
2585 if (pkcs11_module_path_copy == NULL) {
2586 os_free(pkcs11_engine_path_copy);
2591 os_free(wpa_s->conf->pkcs11_engine_path);
2592 os_free(wpa_s->conf->pkcs11_module_path);
2593 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
2594 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
2596 wpa_sm_set_eapol(wpa_s->wpa, NULL);
2597 eapol_sm_deinit(wpa_s->eapol);
2598 wpa_s->eapol = NULL;
2599 if (wpa_supplicant_init_eapol(wpa_s)) {
2600 /* Error -> Reset paths to the default value (NULL) once. */
2601 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
2602 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
2607 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
2614 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
2615 * @wpa_s: wpa_supplicant structure for a network interface
2616 * @ap_scan: AP scan mode
2617 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
2620 int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
2625 if (ap_scan < 0 || ap_scan > 2)
2629 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
2630 wpa_s->wpa_state >= WPA_ASSOCIATING &&
2631 wpa_s->wpa_state < WPA_COMPLETED) {
2632 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
2633 "associating", wpa_s->conf->ap_scan, ap_scan);
2636 #endif /* ANDROID */
2638 old_ap_scan = wpa_s->conf->ap_scan;
2639 wpa_s->conf->ap_scan = ap_scan;
2641 if (old_ap_scan != wpa_s->conf->ap_scan)
2642 wpas_notify_ap_scan_changed(wpa_s);
2649 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
2650 * @wpa_s: wpa_supplicant structure for a network interface
2651 * @expire_age: Expiration age in seconds
2652 * Returns: 0 if succeed or -1 if expire_age has an invalid value
2655 int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
2656 unsigned int bss_expire_age)
2658 if (bss_expire_age < 10) {
2659 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
2663 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
2665 wpa_s->conf->bss_expiration_age = bss_expire_age;
2672 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
2673 * @wpa_s: wpa_supplicant structure for a network interface
2674 * @expire_count: number of scans after which an unseen BSS is reclaimed
2675 * Returns: 0 if succeed or -1 if expire_count has an invalid value
2678 int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
2679 unsigned int bss_expire_count)
2681 if (bss_expire_count < 1) {
2682 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
2686 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
2688 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
2695 * wpa_supplicant_set_scan_interval - Set scan interval
2696 * @wpa_s: wpa_supplicant structure for a network interface
2697 * @scan_interval: scan interval in seconds
2698 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
2701 int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
2704 if (scan_interval < 0) {
2705 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
2709 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
2711 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
2718 * wpa_supplicant_set_debug_params - Set global debug params
2719 * @global: wpa_global structure
2720 * @debug_level: debug level
2721 * @debug_timestamp: determines if show timestamp in debug data
2722 * @debug_show_keys: determines if show keys in debug data
2723 * Returns: 0 if succeed or -1 if debug_level has wrong value
2725 int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
2726 int debug_timestamp, int debug_show_keys)
2729 int old_level, old_timestamp, old_show_keys;
2731 /* check for allowed debuglevels */
2732 if (debug_level != MSG_EXCESSIVE &&
2733 debug_level != MSG_MSGDUMP &&
2734 debug_level != MSG_DEBUG &&
2735 debug_level != MSG_INFO &&
2736 debug_level != MSG_WARNING &&
2737 debug_level != MSG_ERROR)
2740 old_level = wpa_debug_level;
2741 old_timestamp = wpa_debug_timestamp;
2742 old_show_keys = wpa_debug_show_keys;
2744 wpa_debug_level = debug_level;
2745 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
2746 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
2748 if (wpa_debug_level != old_level)
2749 wpas_notify_debug_level_changed(global);
2750 if (wpa_debug_timestamp != old_timestamp)
2751 wpas_notify_debug_timestamp_changed(global);
2752 if (wpa_debug_show_keys != old_show_keys)
2753 wpas_notify_debug_show_keys_changed(global);
2760 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
2761 * @wpa_s: Pointer to wpa_supplicant data
2762 * Returns: A pointer to the current network structure or %NULL on failure
2764 struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
2766 struct wpa_ssid *entry;
2767 u8 ssid[MAX_SSID_LEN];
2773 res = wpa_drv_get_ssid(wpa_s, ssid);
2775 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
2781 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
2782 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
2787 wired = wpa_s->conf->ap_scan == 0 &&
2788 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
2790 entry = wpa_s->conf->ssid;
2792 if (!wpas_network_disabled(wpa_s, entry) &&
2793 ((ssid_len == entry->ssid_len &&
2794 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
2795 (!entry->bssid_set ||
2796 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2799 if (!wpas_network_disabled(wpa_s, entry) &&
2800 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
2801 (entry->ssid == NULL || entry->ssid_len == 0) &&
2802 (!entry->bssid_set ||
2803 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
2805 #endif /* CONFIG_WPS */
2807 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
2808 entry->ssid_len == 0 &&
2809 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
2812 entry = entry->next;
2819 static int select_driver(struct wpa_supplicant *wpa_s, int i)
2821 struct wpa_global *global = wpa_s->global;
2823 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
2824 global->drv_priv[i] = wpa_drivers[i]->global_init();
2825 if (global->drv_priv[i] == NULL) {
2826 wpa_printf(MSG_ERROR, "Failed to initialize driver "
2827 "'%s'", wpa_drivers[i]->name);
2832 wpa_s->driver = wpa_drivers[i];
2833 wpa_s->global_drv_priv = global->drv_priv[i];
2839 static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
2844 const char *pos, *driver = name;
2849 if (wpa_drivers[0] == NULL) {
2850 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
2856 /* default to first driver in the list */
2857 return select_driver(wpa_s, 0);
2861 pos = os_strchr(driver, ',');
2865 len = os_strlen(driver);
2867 for (i = 0; wpa_drivers[i]; i++) {
2868 if (os_strlen(wpa_drivers[i]->name) == len &&
2869 os_strncmp(driver, wpa_drivers[i]->name, len) ==
2871 /* First driver that succeeds wins */
2872 if (select_driver(wpa_s, i) == 0)
2880 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
2886 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
2887 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
2888 * with struct wpa_driver_ops::init()
2889 * @src_addr: Source address of the EAPOL frame
2890 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
2891 * @len: Length of the EAPOL data
2893 * This function is called for each received EAPOL frame. Most driver
2894 * interfaces rely on more generic OS mechanism for receiving frames through
2895 * l2_packet, but if such a mechanism is not available, the driver wrapper may
2896 * take care of received EAPOL frames and deliver them to the core supplicant
2897 * code by calling this function.
2899 void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
2900 const u8 *buf, size_t len)
2902 struct wpa_supplicant *wpa_s = ctx;
2904 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
2905 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
2907 #ifdef CONFIG_PEERKEY
2908 if (wpa_s->wpa_state > WPA_ASSOCIATED && wpa_s->current_ssid &&
2909 wpa_s->current_ssid->peerkey &&
2910 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
2911 wpa_sm_rx_eapol_peerkey(wpa_s->wpa, src_addr, buf, len) == 1) {
2912 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: Processed PeerKey EAPOL-Key");
2915 #endif /* CONFIG_PEERKEY */
2917 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
2918 (wpa_s->last_eapol_matches_bssid &&
2921 #endif /* CONFIG_AP */
2922 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
2924 * There is possible race condition between receiving the
2925 * association event and the EAPOL frame since they are coming
2926 * through different paths from the driver. In order to avoid
2927 * issues in trying to process the EAPOL frame before receiving
2928 * association information, lets queue it for processing until
2929 * the association event is received. This may also be needed in
2930 * driver-based roaming case, so also use src_addr != BSSID as a
2931 * trigger if we have previously confirmed that the
2932 * Authenticator uses BSSID as the src_addr (which is not the
2933 * case with wired IEEE 802.1X).
2935 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
2936 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
2937 wpa_supplicant_state_txt(wpa_s->wpa_state),
2938 MAC2STR(wpa_s->bssid));
2939 wpabuf_free(wpa_s->pending_eapol_rx);
2940 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
2941 if (wpa_s->pending_eapol_rx) {
2942 os_get_reltime(&wpa_s->pending_eapol_rx_time);
2943 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
2949 wpa_s->last_eapol_matches_bssid =
2950 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
2953 if (wpa_s->ap_iface) {
2954 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
2957 #endif /* CONFIG_AP */
2959 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
2960 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
2961 "no key management is configured");
2965 if (wpa_s->eapol_received == 0 &&
2966 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
2967 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
2968 wpa_s->wpa_state != WPA_COMPLETED) &&
2969 (wpa_s->current_ssid == NULL ||
2970 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
2971 /* Timeout for completing IEEE 802.1X and WPA authentication */
2972 wpa_supplicant_req_auth_timeout(
2974 (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
2975 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
2976 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) ?
2979 wpa_s->eapol_received++;
2981 if (wpa_s->countermeasures) {
2982 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
2987 #ifdef CONFIG_IBSS_RSN
2988 if (wpa_s->current_ssid &&
2989 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
2990 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
2993 #endif /* CONFIG_IBSS_RSN */
2995 /* Source address of the incoming EAPOL frame could be compared to the
2996 * current BSSID. However, it is possible that a centralized
2997 * Authenticator could be using another MAC address than the BSSID of
2998 * an AP, so just allow any address to be used for now. The replies are
2999 * still sent to the current BSSID (if available), though. */
3001 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
3002 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
3003 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
3005 wpa_drv_poll(wpa_s);
3006 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
3007 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
3008 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
3010 * Set portValid = TRUE here since we are going to skip 4-way
3011 * handshake processing which would normally set portValid. We
3012 * need this to allow the EAPOL state machines to be completed
3013 * without going through EAPOL-Key handshake.
3015 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
3020 int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
3022 if ((!wpa_s->p2p_mgmt ||
3023 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3024 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
3025 l2_packet_deinit(wpa_s->l2);
3026 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
3027 wpa_drv_get_mac_addr(wpa_s),
3029 wpa_supplicant_rx_eapol, wpa_s, 0);
3030 if (wpa_s->l2 == NULL)
3033 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
3035 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
3038 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
3039 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
3043 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3049 static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
3050 const u8 *buf, size_t len)
3052 struct wpa_supplicant *wpa_s = ctx;
3053 const struct l2_ethhdr *eth;
3055 if (len < sizeof(*eth))
3057 eth = (const struct l2_ethhdr *) buf;
3059 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
3060 !(eth->h_dest[0] & 0x01)) {
3061 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3062 " (bridge - not for this interface - ignore)",
3063 MAC2STR(src_addr), MAC2STR(eth->h_dest));
3067 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3068 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
3069 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
3070 len - sizeof(*eth));
3075 * wpa_supplicant_driver_init - Initialize driver interface parameters
3076 * @wpa_s: Pointer to wpa_supplicant data
3077 * Returns: 0 on success, -1 on failure
3079 * This function is called to initialize driver interface parameters.
3080 * wpa_drv_init() must have been called before this function to initialize the
3083 int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
3085 static int interface_count = 0;
3087 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
3090 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
3091 MAC2STR(wpa_s->own_addr));
3092 os_memcpy(wpa_s->perm_addr, wpa_s->own_addr, ETH_ALEN);
3093 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3095 if (wpa_s->bridge_ifname[0]) {
3096 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
3097 "interface '%s'", wpa_s->bridge_ifname);
3098 wpa_s->l2_br = l2_packet_init_bridge(
3099 wpa_s->bridge_ifname, wpa_s->ifname, wpa_s->own_addr,
3100 ETH_P_EAPOL, wpa_supplicant_rx_eapol_bridge, wpa_s, 1);
3101 if (wpa_s->l2_br == NULL) {
3102 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
3103 "connection for the bridge interface '%s'",
3104 wpa_s->bridge_ifname);
3109 wpa_clear_keys(wpa_s, NULL);
3111 /* Make sure that TKIP countermeasures are not left enabled (could
3112 * happen if wpa_supplicant is killed during countermeasures. */
3113 wpa_drv_set_countermeasures(wpa_s, 0);
3115 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
3116 wpa_drv_flush_pmkid(wpa_s);
3118 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
3119 wpa_s->prev_scan_wildcard = 0;
3121 if (wpa_supplicant_enabled_networks(wpa_s)) {
3122 if (wpa_s->wpa_state == WPA_INTERFACE_DISABLED) {
3123 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3124 interface_count = 0;
3127 if (!wpa_s->p2p_mgmt &&
3128 wpa_supplicant_delayed_sched_scan(wpa_s,
3129 interface_count % 3,
3131 wpa_supplicant_req_scan(wpa_s, interface_count % 3,
3133 #endif /* ANDROID */
3136 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
3142 static int wpa_supplicant_daemon(const char *pid_file)
3144 wpa_printf(MSG_DEBUG, "Daemonize..");
3145 return os_daemonize(pid_file);
3149 static struct wpa_supplicant * wpa_supplicant_alloc(void)
3151 struct wpa_supplicant *wpa_s;
3153 wpa_s = os_zalloc(sizeof(*wpa_s));
3156 wpa_s->scan_req = INITIAL_SCAN_REQ;
3157 wpa_s->scan_interval = 5;
3158 wpa_s->new_connection = 1;
3159 wpa_s->parent = wpa_s;
3160 wpa_s->sched_scanning = 0;
3166 #ifdef CONFIG_HT_OVERRIDES
3168 static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
3169 struct ieee80211_ht_capabilities *htcaps,
3170 struct ieee80211_ht_capabilities *htcaps_mask,
3173 /* parse ht_mcs into hex array */
3175 const char *tmp = ht_mcs;
3178 /* If ht_mcs is null, do not set anything */
3182 /* This is what we are setting in the kernel */
3183 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
3185 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
3187 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
3189 long v = strtol(tmp, &end, 16);
3191 wpa_msg(wpa_s, MSG_DEBUG,
3192 "htcap value[%i]: %ld end: %p tmp: %p",
3197 htcaps->supported_mcs_set[i] = v;
3200 wpa_msg(wpa_s, MSG_ERROR,
3201 "Failed to parse ht-mcs: %s, error: %s\n",
3202 ht_mcs, strerror(errno));
3208 * If we were able to parse any values, then set mask for the MCS set.
3211 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
3212 IEEE80211_HT_MCS_MASK_LEN - 1);
3213 /* skip the 3 reserved bits */
3214 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
3222 static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
3223 struct ieee80211_ht_capabilities *htcaps,
3224 struct ieee80211_ht_capabilities *htcaps_mask,
3229 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
3234 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
3235 htcaps_mask->ht_capabilities_info |= msk;
3237 htcaps->ht_capabilities_info &= msk;
3239 htcaps->ht_capabilities_info |= msk;
3245 static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
3246 struct ieee80211_ht_capabilities *htcaps,
3247 struct ieee80211_ht_capabilities *htcaps_mask,
3250 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
3255 if (factor < 0 || factor > 3) {
3256 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
3257 "Must be 0-3 or -1", factor);
3261 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
3262 htcaps->a_mpdu_params &= ~0x3;
3263 htcaps->a_mpdu_params |= factor & 0x3;
3269 static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
3270 struct ieee80211_ht_capabilities *htcaps,
3271 struct ieee80211_ht_capabilities *htcaps_mask,
3274 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
3279 if (density < 0 || density > 7) {
3280 wpa_msg(wpa_s, MSG_ERROR,
3281 "ampdu_density: %d out of range. Must be 0-7 or -1.",
3286 htcaps_mask->a_mpdu_params |= 0x1C;
3287 htcaps->a_mpdu_params &= ~(0x1C);
3288 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
3294 static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
3295 struct ieee80211_ht_capabilities *htcaps,
3296 struct ieee80211_ht_capabilities *htcaps_mask,
3299 /* Masking these out disables HT40 */
3300 le16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
3301 HT_CAP_INFO_SHORT_GI40MHZ);
3303 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
3306 htcaps->ht_capabilities_info &= ~msk;
3308 htcaps->ht_capabilities_info |= msk;
3310 htcaps_mask->ht_capabilities_info |= msk;
3316 static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
3317 struct ieee80211_ht_capabilities *htcaps,
3318 struct ieee80211_ht_capabilities *htcaps_mask,
3321 /* Masking these out disables SGI */
3322 le16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
3323 HT_CAP_INFO_SHORT_GI40MHZ);
3325 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
3328 htcaps->ht_capabilities_info &= ~msk;
3330 htcaps->ht_capabilities_info |= msk;
3332 htcaps_mask->ht_capabilities_info |= msk;
3338 static int wpa_set_disable_ldpc(struct wpa_supplicant *wpa_s,
3339 struct ieee80211_ht_capabilities *htcaps,
3340 struct ieee80211_ht_capabilities *htcaps_mask,
3343 /* Masking these out disables LDPC */
3344 le16 msk = host_to_le16(HT_CAP_INFO_LDPC_CODING_CAP);
3346 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ldpc: %d", disabled);
3349 htcaps->ht_capabilities_info &= ~msk;
3351 htcaps->ht_capabilities_info |= msk;
3353 htcaps_mask->ht_capabilities_info |= msk;
3359 void wpa_supplicant_apply_ht_overrides(
3360 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3361 struct wpa_driver_associate_params *params)
3363 struct ieee80211_ht_capabilities *htcaps;
3364 struct ieee80211_ht_capabilities *htcaps_mask;
3369 params->disable_ht = ssid->disable_ht;
3370 if (!params->htcaps || !params->htcaps_mask)
3373 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
3374 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
3375 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
3376 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
3377 ssid->disable_max_amsdu);
3378 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
3379 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
3380 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
3381 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
3382 wpa_set_disable_ldpc(wpa_s, htcaps, htcaps_mask, ssid->disable_ldpc);
3384 if (ssid->ht40_intolerant) {
3385 le16 bit = host_to_le16(HT_CAP_INFO_40MHZ_INTOLERANT);
3386 htcaps->ht_capabilities_info |= bit;
3387 htcaps_mask->ht_capabilities_info |= bit;
3391 #endif /* CONFIG_HT_OVERRIDES */
3394 #ifdef CONFIG_VHT_OVERRIDES
3395 void wpa_supplicant_apply_vht_overrides(
3396 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3397 struct wpa_driver_associate_params *params)
3399 struct ieee80211_vht_capabilities *vhtcaps;
3400 struct ieee80211_vht_capabilities *vhtcaps_mask;
3405 params->disable_vht = ssid->disable_vht;
3407 vhtcaps = (void *) params->vhtcaps;
3408 vhtcaps_mask = (void *) params->vhtcaps_mask;
3410 if (!vhtcaps || !vhtcaps_mask)
3413 vhtcaps->vht_capabilities_info = ssid->vht_capa;
3414 vhtcaps_mask->vht_capabilities_info = ssid->vht_capa_mask;
3416 #ifdef CONFIG_HT_OVERRIDES
3417 /* if max ampdu is <= 3, we have to make the HT cap the same */
3418 if (ssid->vht_capa_mask & VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) {
3421 max_ampdu = (ssid->vht_capa &
3422 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) >>
3423 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX_SHIFT;
3425 max_ampdu = max_ampdu < 3 ? max_ampdu : 3;
3426 wpa_set_ampdu_factor(wpa_s,
3427 (void *) params->htcaps,
3428 (void *) params->htcaps_mask,
3431 #endif /* CONFIG_HT_OVERRIDES */
3433 #define OVERRIDE_MCS(i) \
3434 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
3435 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
3437 vhtcaps->vht_supported_mcs_set.tx_map |= \
3438 ssid->vht_tx_mcs_nss_ ##i << 2 * (i - 1); \
3440 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
3441 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
3443 vhtcaps->vht_supported_mcs_set.rx_map |= \
3444 ssid->vht_rx_mcs_nss_ ##i << 2 * (i - 1); \
3456 #endif /* CONFIG_VHT_OVERRIDES */
3459 static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
3464 if (!wpa_s->conf->pcsc_reader)
3467 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
3471 if (wpa_s->conf->pcsc_pin &&
3472 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
3473 scard_deinit(wpa_s->scard);
3474 wpa_s->scard = NULL;
3475 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
3479 len = sizeof(wpa_s->imsi) - 1;
3480 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
3481 scard_deinit(wpa_s->scard);
3482 wpa_s->scard = NULL;
3483 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
3486 wpa_s->imsi[len] = '\0';
3488 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
3490 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
3491 wpa_s->imsi, wpa_s->mnc_len);
3493 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
3494 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
3495 #endif /* PCSC_FUNCS */
3501 int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
3505 ext_password_deinit(wpa_s->ext_pw);
3506 wpa_s->ext_pw = NULL;
3507 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
3509 if (!wpa_s->conf->ext_password_backend)
3512 val = os_strdup(wpa_s->conf->ext_password_backend);
3515 pos = os_strchr(val, ':');
3519 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
3521 wpa_s->ext_pw = ext_password_init(val, pos);
3523 if (wpa_s->ext_pw == NULL) {
3524 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
3527 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
3533 static int wpas_set_wowlan_triggers(struct wpa_supplicant *wpa_s,
3534 const struct wpa_driver_capa *capa)
3536 struct wowlan_triggers *triggers;
3539 if (!wpa_s->conf->wowlan_triggers)
3542 triggers = wpa_get_wowlan_triggers(wpa_s->conf->wowlan_triggers, capa);
3544 ret = wpa_drv_wowlan(wpa_s, triggers);
3551 static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
3554 struct wpa_supplicant *iface = wpa_s->global->ifaces;
3555 struct wpa_radio *radio;
3557 while (rn && iface) {
3558 radio = iface->radio;
3559 if (radio && os_strcmp(rn, radio->name) == 0) {
3560 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
3562 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3566 iface = iface->next;
3569 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
3570 wpa_s->ifname, rn ? rn : "N/A");
3571 radio = os_zalloc(sizeof(*radio));
3576 os_strlcpy(radio->name, rn, sizeof(radio->name));
3577 dl_list_init(&radio->ifaces);
3578 dl_list_init(&radio->work);
3579 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
3585 static void radio_work_free(struct wpa_radio_work *work)
3587 if (work->wpa_s->scan_work == work) {
3588 /* This should not really happen. */
3589 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as scan_work",
3590 work->type, work, work->started);
3591 work->wpa_s->scan_work = NULL;
3595 if (work->wpa_s->p2p_scan_work == work) {
3596 /* This should not really happen. */
3597 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as p2p_scan_work",
3598 work->type, work, work->started);
3599 work->wpa_s->p2p_scan_work = NULL;
3601 #endif /* CONFIG_P2P */
3603 dl_list_del(&work->list);
3608 static void radio_start_next_work(void *eloop_ctx, void *timeout_ctx)
3610 struct wpa_radio *radio = eloop_ctx;
3611 struct wpa_radio_work *work;
3612 struct os_reltime now, diff;
3613 struct wpa_supplicant *wpa_s;
3615 work = dl_list_first(&radio->work, struct wpa_radio_work, list);
3620 return; /* already started and still in progress */
3622 wpa_s = dl_list_first(&radio->ifaces, struct wpa_supplicant,
3624 if (wpa_s && wpa_s->radio->external_scan_running) {
3625 wpa_printf(MSG_DEBUG, "Delay radio work start until externally triggered scan completes");
3629 os_get_reltime(&now);
3630 os_reltime_sub(&now, &work->time, &diff);
3631 wpa_dbg(work->wpa_s, MSG_DEBUG, "Starting radio work '%s'@%p after %ld.%06ld second wait",
3632 work->type, work, diff.sec, diff.usec);
3640 * This function removes both started and pending radio works running on
3641 * the provided interface's radio.
3642 * Prior to the removal of the radio work, its callback (cb) is called with
3643 * deinit set to be 1. Each work's callback is responsible for clearing its
3644 * internal data and restoring to a correct state.
3645 * @wpa_s: wpa_supplicant data
3646 * @type: type of works to be removed
3647 * @remove_all: 1 to remove all the works on this radio, 0 to remove only
3648 * this interface's works.
3650 void radio_remove_works(struct wpa_supplicant *wpa_s,
3651 const char *type, int remove_all)
3653 struct wpa_radio_work *work, *tmp;
3654 struct wpa_radio *radio = wpa_s->radio;
3656 dl_list_for_each_safe(work, tmp, &radio->work, struct wpa_radio_work,
3658 if (type && os_strcmp(type, work->type) != 0)
3661 /* skip other ifaces' works */
3662 if (!remove_all && work->wpa_s != wpa_s)
3665 wpa_dbg(wpa_s, MSG_DEBUG, "Remove radio work '%s'@%p%s",
3666 work->type, work, work->started ? " (started)" : "");
3668 radio_work_free(work);
3671 /* in case we removed the started work */
3672 radio_work_check_next(wpa_s);
3676 static void radio_remove_interface(struct wpa_supplicant *wpa_s)
3678 struct wpa_radio *radio = wpa_s->radio;
3683 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
3684 wpa_s->ifname, radio->name);
3685 dl_list_del(&wpa_s->radio_list);
3686 radio_remove_works(wpa_s, NULL, 0);
3687 wpa_s->radio = NULL;
3688 if (!dl_list_empty(&radio->ifaces))
3689 return; /* Interfaces remain for this radio */
3691 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
3692 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3697 void radio_work_check_next(struct wpa_supplicant *wpa_s)
3699 struct wpa_radio *radio = wpa_s->radio;
3701 if (dl_list_empty(&radio->work))
3703 if (wpa_s->ext_work_in_progress) {
3704 wpa_printf(MSG_DEBUG,
3705 "External radio work in progress - delay start of pending item");
3708 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
3709 eloop_register_timeout(0, 0, radio_start_next_work, radio, NULL);
3714 * radio_add_work - Add a radio work item
3715 * @wpa_s: Pointer to wpa_supplicant data
3716 * @freq: Frequency of the offchannel operation in MHz or 0
3717 * @type: Unique identifier for each type of work
3718 * @next: Force as the next work to be executed
3719 * @cb: Callback function for indicating when radio is available
3720 * @ctx: Context pointer for the work (work->ctx in cb())
3721 * Returns: 0 on success, -1 on failure
3723 * This function is used to request time for an operation that requires
3724 * exclusive radio control. Once the radio is available, the registered callback
3725 * function will be called. radio_work_done() must be called once the exclusive
3726 * radio operation has been completed, so that the radio is freed for other
3727 * operations. The special case of deinit=1 is used to free the context data
3728 * during interface removal. That does not allow the callback function to start
3729 * the radio operation, i.e., it must free any resources allocated for the radio
3732 * The @freq parameter can be used to indicate a single channel on which the
3733 * offchannel operation will occur. This may allow multiple radio work
3734 * operations to be performed in parallel if they apply for the same channel.
3735 * Setting this to 0 indicates that the work item may use multiple channels or
3736 * requires exclusive control of the radio.
3738 int radio_add_work(struct wpa_supplicant *wpa_s, unsigned int freq,
3739 const char *type, int next,
3740 void (*cb)(struct wpa_radio_work *work, int deinit),
3743 struct wpa_radio_work *work;
3746 work = os_zalloc(sizeof(*work));
3749 wpa_dbg(wpa_s, MSG_DEBUG, "Add radio work '%s'@%p", type, work);
3750 os_get_reltime(&work->time);
3753 work->wpa_s = wpa_s;
3757 was_empty = dl_list_empty(&wpa_s->radio->work);
3759 dl_list_add(&wpa_s->radio->work, &work->list);
3761 dl_list_add_tail(&wpa_s->radio->work, &work->list);
3763 wpa_dbg(wpa_s, MSG_DEBUG, "First radio work item in the queue - schedule start immediately");
3764 radio_work_check_next(wpa_s);
3772 * radio_work_done - Indicate that a radio work item has been completed
3773 * @work: Completed work
3775 * This function is called once the callback function registered with
3776 * radio_add_work() has completed its work.
3778 void radio_work_done(struct wpa_radio_work *work)
3780 struct wpa_supplicant *wpa_s = work->wpa_s;
3781 struct os_reltime now, diff;
3782 unsigned int started = work->started;
3784 os_get_reltime(&now);
3785 os_reltime_sub(&now, &work->time, &diff);
3786 wpa_dbg(wpa_s, MSG_DEBUG, "Radio work '%s'@%p %s in %ld.%06ld seconds",
3787 work->type, work, started ? "done" : "canceled",
3788 diff.sec, diff.usec);
3789 radio_work_free(work);
3791 radio_work_check_next(wpa_s);
3795 struct wpa_radio_work *
3796 radio_work_pending(struct wpa_supplicant *wpa_s, const char *type)
3798 struct wpa_radio_work *work;
3799 struct wpa_radio *radio = wpa_s->radio;
3801 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
3802 if (work->wpa_s == wpa_s && os_strcmp(work->type, type) == 0)
3810 static int wpas_init_driver(struct wpa_supplicant *wpa_s,
3811 struct wpa_interface *iface)
3813 const char *ifname, *driver, *rn;
3815 driver = iface->driver;
3817 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
3820 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
3821 if (wpa_s->drv_priv == NULL) {
3823 pos = driver ? os_strchr(driver, ',') : NULL;
3825 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
3826 "driver interface - try next driver wrapper");
3830 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
3834 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
3835 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
3836 "driver_param '%s'", wpa_s->conf->driver_param);
3840 ifname = wpa_drv_get_ifname(wpa_s);
3841 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
3842 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
3843 "interface name with '%s'", ifname);
3844 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
3847 rn = wpa_driver_get_radio_name(wpa_s);
3848 if (rn && rn[0] == '\0')
3851 wpa_s->radio = radio_add_interface(wpa_s, rn);
3852 if (wpa_s->radio == NULL)
3859 static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
3860 struct wpa_interface *iface)
3862 struct wpa_driver_capa capa;
3865 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
3866 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
3867 iface->confname ? iface->confname : "N/A",
3868 iface->driver ? iface->driver : "default",
3869 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
3870 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
3872 if (iface->confname) {
3873 #ifdef CONFIG_BACKEND_FILE
3874 wpa_s->confname = os_rel2abs_path(iface->confname);
3875 if (wpa_s->confname == NULL) {
3876 wpa_printf(MSG_ERROR, "Failed to get absolute path "
3877 "for configuration file '%s'.",
3881 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
3882 iface->confname, wpa_s->confname);
3883 #else /* CONFIG_BACKEND_FILE */
3884 wpa_s->confname = os_strdup(iface->confname);
3885 #endif /* CONFIG_BACKEND_FILE */
3886 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
3887 if (wpa_s->conf == NULL) {
3888 wpa_printf(MSG_ERROR, "Failed to read or parse "
3889 "configuration '%s'.", wpa_s->confname);
3892 wpa_s->confanother = os_rel2abs_path(iface->confanother);
3893 wpa_config_read(wpa_s->confanother, wpa_s->conf);
3896 * Override ctrl_interface and driver_param if set on command
3899 if (iface->ctrl_interface) {
3900 os_free(wpa_s->conf->ctrl_interface);
3901 wpa_s->conf->ctrl_interface =
3902 os_strdup(iface->ctrl_interface);
3905 if (iface->driver_param) {
3906 os_free(wpa_s->conf->driver_param);
3907 wpa_s->conf->driver_param =
3908 os_strdup(iface->driver_param);
3911 if (iface->p2p_mgmt && !iface->ctrl_interface) {
3912 os_free(wpa_s->conf->ctrl_interface);
3913 wpa_s->conf->ctrl_interface = NULL;
3916 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
3917 iface->driver_param);
3919 if (wpa_s->conf == NULL) {
3920 wpa_printf(MSG_ERROR, "\nNo configuration found.");
3924 if (iface->ifname == NULL) {
3925 wpa_printf(MSG_ERROR, "\nInterface name is required.");
3928 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
3929 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
3933 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
3935 if (iface->bridge_ifname) {
3936 if (os_strlen(iface->bridge_ifname) >=
3937 sizeof(wpa_s->bridge_ifname)) {
3938 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
3939 "name '%s'.", iface->bridge_ifname);
3942 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
3943 sizeof(wpa_s->bridge_ifname));
3946 /* RSNA Supplicant Key Management - INITIALIZE */
3947 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
3948 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
3950 /* Initialize driver interface and register driver event handler before
3951 * L2 receive handler so that association events are processed before
3952 * EAPOL-Key packets if both become available for the same select()
3954 if (wpas_init_driver(wpa_s, iface) < 0)
3957 if (wpa_supplicant_init_wpa(wpa_s) < 0)
3960 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
3961 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
3963 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
3965 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
3966 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
3967 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
3968 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3969 "dot11RSNAConfigPMKLifetime");
3973 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
3974 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
3975 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
3976 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3977 "dot11RSNAConfigPMKReauthThreshold");
3981 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
3982 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
3983 wpa_s->conf->dot11RSNAConfigSATimeout)) {
3984 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
3985 "dot11RSNAConfigSATimeout");
3989 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
3990 &wpa_s->hw.num_modes,
3993 capa_res = wpa_drv_get_capa(wpa_s, &capa);
3994 if (capa_res == 0) {
3995 wpa_s->drv_capa_known = 1;
3996 wpa_s->drv_flags = capa.flags;
3997 wpa_s->drv_enc = capa.enc;
3998 wpa_s->drv_smps_modes = capa.smps_modes;
3999 wpa_s->drv_rrm_flags = capa.rrm_flags;
4000 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
4001 wpa_s->max_scan_ssids = capa.max_scan_ssids;
4002 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
4003 wpa_s->sched_scan_supported = capa.sched_scan_supported;
4004 wpa_s->max_match_sets = capa.max_match_sets;
4005 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
4006 wpa_s->max_stations = capa.max_stations;
4007 wpa_s->extended_capa = capa.extended_capa;
4008 wpa_s->extended_capa_mask = capa.extended_capa_mask;
4009 wpa_s->extended_capa_len = capa.extended_capa_len;
4010 wpa_s->num_multichan_concurrent =
4011 capa.num_multichan_concurrent;
4012 wpa_s->wmm_ac_supported = capa.wmm_ac_supported;
4014 if (capa.mac_addr_rand_scan_supported)
4015 wpa_s->mac_addr_rand_supported |= MAC_ADDR_RAND_SCAN;
4016 if (wpa_s->sched_scan_supported &&
4017 capa.mac_addr_rand_sched_scan_supported)
4018 wpa_s->mac_addr_rand_supported |=
4019 (MAC_ADDR_RAND_SCHED_SCAN | MAC_ADDR_RAND_PNO);
4021 if (wpa_s->max_remain_on_chan == 0)
4022 wpa_s->max_remain_on_chan = 1000;
4025 * Only take p2p_mgmt parameters when P2P Device is supported.
4026 * Doing it here as it determines whether l2_packet_init() will be done
4027 * during wpa_supplicant_driver_init().
4029 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
4030 wpa_s->p2p_mgmt = iface->p2p_mgmt;
4032 iface->p2p_mgmt = 1;
4034 if (wpa_s->num_multichan_concurrent == 0)
4035 wpa_s->num_multichan_concurrent = 1;
4037 if (wpa_supplicant_driver_init(wpa_s) < 0)
4041 if ((!iface->p2p_mgmt ||
4042 !(wpa_s->drv_flags &
4043 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
4044 wpa_tdls_init(wpa_s->wpa))
4046 #endif /* CONFIG_TDLS */
4048 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
4049 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
4050 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
4054 if (wpas_wps_init(wpa_s))
4057 if (wpa_supplicant_init_eapol(wpa_s) < 0)
4059 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
4061 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
4062 if (wpa_s->ctrl_iface == NULL) {
4063 wpa_printf(MSG_ERROR,
4064 "Failed to initialize control interface '%s'.\n"
4065 "You may have another wpa_supplicant process "
4066 "already running or the file was\n"
4067 "left by an unclean termination of wpa_supplicant "
4068 "in which case you will need\n"
4069 "to manually remove this file before starting "
4070 "wpa_supplicant again.\n",
4071 wpa_s->conf->ctrl_interface);
4075 wpa_s->gas = gas_query_init(wpa_s);
4076 if (wpa_s->gas == NULL) {
4077 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
4081 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
4082 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
4086 if (wpa_bss_init(wpa_s) < 0)
4090 * Set Wake-on-WLAN triggers, if configured.
4091 * Note: We don't restore/remove the triggers on shutdown (it doesn't
4092 * have effect anyway when the interface is down).
4094 if (capa_res == 0 && wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
4097 #ifdef CONFIG_EAP_PROXY
4100 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
4102 if (wpa_s->mnc_len > 0) {
4103 wpa_s->imsi[len] = '\0';
4104 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
4105 wpa_s->imsi, wpa_s->mnc_len);
4107 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
4110 #endif /* CONFIG_EAP_PROXY */
4112 if (pcsc_reader_init(wpa_s) < 0)
4115 if (wpas_init_ext_pw(wpa_s) < 0)
4118 wpas_rrm_reset(wpa_s);
4124 static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
4125 int notify, int terminate)
4127 struct wpa_global *global = wpa_s->global;
4128 struct wpa_supplicant *iface, *prev;
4130 if (wpa_s == wpa_s->parent)
4131 wpas_p2p_group_remove(wpa_s, "*");
4133 iface = global->ifaces;
4135 if (iface == wpa_s || iface->parent != wpa_s) {
4136 iface = iface->next;
4139 wpa_printf(MSG_DEBUG,
4140 "Remove remaining child interface %s from parent %s",
4141 iface->ifname, wpa_s->ifname);
4143 iface = iface->next;
4144 wpa_supplicant_remove_iface(global, prev, terminate);
4147 wpa_s->disconnected = 1;
4148 if (wpa_s->drv_priv) {
4149 wpa_supplicant_deauthenticate(wpa_s,
4150 WLAN_REASON_DEAUTH_LEAVING);
4152 wpa_drv_set_countermeasures(wpa_s, 0);
4153 wpa_clear_keys(wpa_s, NULL);
4156 wpa_supplicant_cleanup(wpa_s);
4157 wpas_p2p_deinit_iface(wpa_s);
4159 wpas_ctrl_radio_work_flush(wpa_s);
4160 radio_remove_interface(wpa_s);
4162 if (wpa_s->drv_priv)
4163 wpa_drv_deinit(wpa_s);
4166 wpas_notify_iface_removed(wpa_s);
4169 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
4171 if (wpa_s->ctrl_iface) {
4172 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
4173 wpa_s->ctrl_iface = NULL;
4178 wpa_supplicant_mesh_iface_deinit(wpa_s, wpa_s->ifmsh);
4179 wpa_s->ifmsh = NULL;
4181 #endif /* CONFIG_MESH */
4183 if (wpa_s->conf != NULL) {
4184 wpa_config_free(wpa_s->conf);
4193 * wpa_supplicant_add_iface - Add a new network interface
4194 * @global: Pointer to global data from wpa_supplicant_init()
4195 * @iface: Interface configuration options
4196 * Returns: Pointer to the created interface or %NULL on failure
4198 * This function is used to add new network interfaces for %wpa_supplicant.
4199 * This can be called before wpa_supplicant_run() to add interfaces before the
4200 * main event loop has been started. In addition, new interfaces can be added
4201 * dynamically while %wpa_supplicant is already running. This could happen,
4202 * e.g., when a hotplug network adapter is inserted.
4204 struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
4205 struct wpa_interface *iface)
4207 struct wpa_supplicant *wpa_s;
4208 struct wpa_interface t_iface;
4209 struct wpa_ssid *ssid;
4211 if (global == NULL || iface == NULL)
4214 wpa_s = wpa_supplicant_alloc();
4218 wpa_s->global = global;
4221 if (global->params.override_driver) {
4222 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
4224 iface->driver, global->params.override_driver);
4225 t_iface.driver = global->params.override_driver;
4227 if (global->params.override_ctrl_interface) {
4228 wpa_printf(MSG_DEBUG, "Override interface parameter: "
4229 "ctrl_interface ('%s' -> '%s')",
4230 iface->ctrl_interface,
4231 global->params.override_ctrl_interface);
4232 t_iface.ctrl_interface =
4233 global->params.override_ctrl_interface;
4235 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
4236 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
4238 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
4242 if (iface->p2p_mgmt == 0) {
4243 /* Notify the control interfaces about new iface */
4244 if (wpas_notify_iface_added(wpa_s)) {
4245 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
4249 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
4250 wpas_notify_network_added(wpa_s, ssid);
4253 wpa_s->next = global->ifaces;
4254 global->ifaces = wpa_s;
4256 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
4257 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
4260 if (wpa_s->global->p2p == NULL &&
4261 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) &&
4262 wpas_p2p_add_p2pdev_interface(wpa_s, iface->conf_p2p_dev) < 0) {
4263 wpa_printf(MSG_INFO,
4264 "P2P: Failed to enable P2P Device interface");
4265 /* Try to continue without. P2P will be disabled. */
4267 #endif /* CONFIG_P2P */
4274 * wpa_supplicant_remove_iface - Remove a network interface
4275 * @global: Pointer to global data from wpa_supplicant_init()
4276 * @wpa_s: Pointer to the network interface to be removed
4277 * Returns: 0 if interface was removed, -1 if interface was not found
4279 * This function can be used to dynamically remove network interfaces from
4280 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
4281 * addition, this function is used to remove all remaining interfaces when
4282 * %wpa_supplicant is terminated.
4284 int wpa_supplicant_remove_iface(struct wpa_global *global,
4285 struct wpa_supplicant *wpa_s,
4288 struct wpa_supplicant *prev;
4290 unsigned int mesh_if_created = wpa_s->mesh_if_created;
4291 char *ifname = NULL;
4292 #endif /* CONFIG_MESH */
4294 /* Remove interface from the global list of interfaces */
4295 prev = global->ifaces;
4296 if (prev == wpa_s) {
4297 global->ifaces = wpa_s->next;
4299 while (prev && prev->next != wpa_s)
4303 prev->next = wpa_s->next;
4306 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
4309 if (mesh_if_created) {
4310 ifname = os_strdup(wpa_s->ifname);
4311 if (ifname == NULL) {
4312 wpa_dbg(wpa_s, MSG_ERROR,
4313 "mesh: Failed to malloc ifname");
4317 #endif /* CONFIG_MESH */
4319 if (global->p2p_group_formation == wpa_s)
4320 global->p2p_group_formation = NULL;
4321 if (global->p2p_invite_group == wpa_s)
4322 global->p2p_invite_group = NULL;
4323 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
4326 if (mesh_if_created) {
4327 wpa_drv_if_remove(global->ifaces, WPA_IF_MESH, ifname);
4330 #endif /* CONFIG_MESH */
4337 * wpa_supplicant_get_eap_mode - Get the current EAP mode
4338 * @wpa_s: Pointer to the network interface
4339 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
4341 const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
4343 const char *eapol_method;
4345 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
4346 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
4350 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
4351 if (eapol_method == NULL)
4352 return "UNKNOWN-EAP";
4354 return eapol_method;
4359 * wpa_supplicant_get_iface - Get a new network interface
4360 * @global: Pointer to global data from wpa_supplicant_init()
4361 * @ifname: Interface name
4362 * Returns: Pointer to the interface or %NULL if not found
4364 struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
4367 struct wpa_supplicant *wpa_s;
4369 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
4370 if (os_strcmp(wpa_s->ifname, ifname) == 0)
4377 #ifndef CONFIG_NO_WPA_MSG
4378 static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
4380 struct wpa_supplicant *wpa_s = ctx;
4383 return wpa_s->ifname;
4385 #endif /* CONFIG_NO_WPA_MSG */
4389 * wpa_supplicant_init - Initialize %wpa_supplicant
4390 * @params: Parameters for %wpa_supplicant
4391 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
4393 * This function is used to initialize %wpa_supplicant. After successful
4394 * initialization, the returned data pointer can be used to add and remove
4395 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
4397 struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
4399 struct wpa_global *global;
4405 #ifdef CONFIG_DRIVER_NDIS
4407 void driver_ndis_init_ops(void);
4408 driver_ndis_init_ops();
4410 #endif /* CONFIG_DRIVER_NDIS */
4412 #ifndef CONFIG_NO_WPA_MSG
4413 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
4414 #endif /* CONFIG_NO_WPA_MSG */
4416 if (params->wpa_debug_file_path)
4417 wpa_debug_open_file(params->wpa_debug_file_path);
4419 wpa_debug_setup_stdout();
4420 if (params->wpa_debug_syslog)
4421 wpa_debug_open_syslog();
4422 if (params->wpa_debug_tracing) {
4423 ret = wpa_debug_open_linux_tracing();
4425 wpa_printf(MSG_ERROR,
4426 "Failed to enable trace logging");
4431 ret = eap_register_methods();
4433 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
4435 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
4436 "the same EAP type.");
4440 global = os_zalloc(sizeof(*global));
4443 dl_list_init(&global->p2p_srv_bonjour);
4444 dl_list_init(&global->p2p_srv_upnp);
4445 global->params.daemonize = params->daemonize;
4446 global->params.wait_for_monitor = params->wait_for_monitor;
4447 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
4448 if (params->pid_file)
4449 global->params.pid_file = os_strdup(params->pid_file);
4450 if (params->ctrl_interface)
4451 global->params.ctrl_interface =
4452 os_strdup(params->ctrl_interface);
4453 if (params->ctrl_interface_group)
4454 global->params.ctrl_interface_group =
4455 os_strdup(params->ctrl_interface_group);
4456 if (params->override_driver)
4457 global->params.override_driver =
4458 os_strdup(params->override_driver);
4459 if (params->override_ctrl_interface)
4460 global->params.override_ctrl_interface =
4461 os_strdup(params->override_ctrl_interface);
4462 wpa_debug_level = global->params.wpa_debug_level =
4463 params->wpa_debug_level;
4464 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
4465 params->wpa_debug_show_keys;
4466 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
4467 params->wpa_debug_timestamp;
4469 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
4472 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
4473 wpa_supplicant_deinit(global);
4477 random_init(params->entropy_file);
4479 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
4480 if (global->ctrl_iface == NULL) {
4481 wpa_supplicant_deinit(global);
4485 if (wpas_notify_supplicant_initialized(global)) {
4486 wpa_supplicant_deinit(global);
4490 for (i = 0; wpa_drivers[i]; i++)
4491 global->drv_count++;
4492 if (global->drv_count == 0) {
4493 wpa_printf(MSG_ERROR, "No drivers enabled");
4494 wpa_supplicant_deinit(global);
4497 global->drv_priv = os_calloc(global->drv_count, sizeof(void *));
4498 if (global->drv_priv == NULL) {
4499 wpa_supplicant_deinit(global);
4503 #ifdef CONFIG_WIFI_DISPLAY
4504 if (wifi_display_init(global) < 0) {
4505 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
4506 wpa_supplicant_deinit(global);
4509 #endif /* CONFIG_WIFI_DISPLAY */
4516 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
4517 * @global: Pointer to global data from wpa_supplicant_init()
4518 * Returns: 0 after successful event loop run, -1 on failure
4520 * This function starts the main event loop and continues running as long as
4521 * there are any remaining events. In most cases, this function is running as
4522 * long as the %wpa_supplicant process in still in use.
4524 int wpa_supplicant_run(struct wpa_global *global)
4526 struct wpa_supplicant *wpa_s;
4528 if (global->params.daemonize &&
4529 wpa_supplicant_daemon(global->params.pid_file))
4532 if (global->params.wait_for_monitor) {
4533 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
4534 if (wpa_s->ctrl_iface)
4535 wpa_supplicant_ctrl_iface_wait(
4539 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
4540 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
4549 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
4550 * @global: Pointer to global data from wpa_supplicant_init()
4552 * This function is called to deinitialize %wpa_supplicant and to free all
4553 * allocated resources. Remaining network interfaces will also be removed.
4555 void wpa_supplicant_deinit(struct wpa_global *global)
4562 #ifdef CONFIG_WIFI_DISPLAY
4563 wifi_display_deinit(global);
4564 #endif /* CONFIG_WIFI_DISPLAY */
4566 while (global->ifaces)
4567 wpa_supplicant_remove_iface(global, global->ifaces, 1);
4569 if (global->ctrl_iface)
4570 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
4572 wpas_notify_supplicant_deinitialized(global);
4574 eap_peer_unregister_methods();
4576 eap_server_unregister_methods();
4577 #endif /* CONFIG_AP */
4579 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
4580 if (!global->drv_priv[i])
4582 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
4584 os_free(global->drv_priv);
4590 if (global->params.pid_file) {
4591 os_daemonize_terminate(global->params.pid_file);
4592 os_free(global->params.pid_file);
4594 os_free(global->params.ctrl_interface);
4595 os_free(global->params.ctrl_interface_group);
4596 os_free(global->params.override_driver);
4597 os_free(global->params.override_ctrl_interface);
4599 os_free(global->p2p_disallow_freq.range);
4600 os_free(global->p2p_go_avoid_freq.range);
4601 os_free(global->add_psk);
4604 wpa_debug_close_syslog();
4605 wpa_debug_close_file();
4606 wpa_debug_close_linux_tracing();
4610 void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
4612 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
4613 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
4615 country[0] = wpa_s->conf->country[0];
4616 country[1] = wpa_s->conf->country[1];
4618 if (wpa_drv_set_country(wpa_s, country) < 0) {
4619 wpa_printf(MSG_ERROR, "Failed to set country code "
4624 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
4625 wpas_init_ext_pw(wpa_s);
4628 wpas_wps_update_config(wpa_s);
4629 #endif /* CONFIG_WPS */
4630 wpas_p2p_update_config(wpa_s);
4631 wpa_s->conf->changed_parameters = 0;
4635 void add_freq(int *freqs, int *num_freqs, int freq)
4639 for (i = 0; i < *num_freqs; i++) {
4640 if (freqs[i] == freq)
4644 freqs[*num_freqs] = freq;
4649 static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
4651 struct wpa_bss *bss, *cbss;
4652 const int max_freqs = 10;
4656 freqs = os_calloc(max_freqs + 1, sizeof(int));
4660 cbss = wpa_s->current_bss;
4662 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
4665 if (bss->ssid_len == cbss->ssid_len &&
4666 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
4667 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
4668 add_freq(freqs, &num_freqs, bss->freq);
4669 if (num_freqs == max_freqs)
4674 if (num_freqs == 0) {
4683 void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
4689 wpas_connect_work_done(wpa_s);
4692 * Remove possible authentication timeout since the connection failed.
4694 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
4696 if (wpa_s->disconnected) {
4698 * There is no point in blacklisting the AP if this event is
4699 * generated based on local request to disconnect.
4701 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
4702 "indication since interface has been put into "
4703 "disconnected state");
4708 * Add the failed BSSID into the blacklist and speed up next scan
4709 * attempt if there could be other APs that could accept association.
4710 * The current blacklist count indicates how many times we have tried
4711 * connecting to this AP and multiple attempts mean that other APs are
4712 * either not available or has already been tried, so that we can start
4713 * increasing the delay here to avoid constant scanning.
4715 count = wpa_blacklist_add(wpa_s, bssid);
4716 if (count == 1 && wpa_s->current_bss) {
4718 * This BSS was not in the blacklist before. If there is
4719 * another BSS available for the same ESS, we should try that
4720 * next. Otherwise, we may as well try this one once more
4721 * before allowing other, likely worse, ESSes to be considered.
4723 freqs = get_bss_freqs_in_ess(wpa_s);
4725 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
4726 "has been seen; try it next");
4727 wpa_blacklist_add(wpa_s, bssid);
4729 * On the next scan, go through only the known channels
4730 * used in this ESS based on previous scans to speed up
4731 * common load balancing use case.
4733 os_free(wpa_s->next_scan_freqs);
4734 wpa_s->next_scan_freqs = freqs;
4739 * Add previous failure count in case the temporary blacklist was
4740 * cleared due to no other BSSes being available.
4742 count += wpa_s->extra_blacklist_count;
4744 if (count > 3 && wpa_s->current_ssid) {
4745 wpa_printf(MSG_DEBUG, "Continuous association failures - "
4746 "consider temporary network disabling");
4747 wpas_auth_failed(wpa_s, "CONN_FAILED");
4768 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
4769 "ms", count, timeout);
4772 * TODO: if more than one possible AP is available in scan results,
4773 * could try the other ones before requesting a new scan.
4775 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
4776 1000 * (timeout % 1000));
4780 int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
4782 return wpa_s->conf->ap_scan == 2 ||
4783 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
4787 #if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
4788 int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
4789 struct wpa_ssid *ssid,
4793 #ifdef IEEE8021X_EAPOL
4794 struct eap_peer_config *eap = &ssid->eap;
4796 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
4797 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
4798 (const u8 *) value, os_strlen(value));
4800 switch (wpa_supplicant_ctrl_req_from_string(field)) {
4801 case WPA_CTRL_REQ_EAP_IDENTITY:
4802 os_free(eap->identity);
4803 eap->identity = (u8 *) os_strdup(value);
4804 eap->identity_len = os_strlen(value);
4805 eap->pending_req_identity = 0;
4806 if (ssid == wpa_s->current_ssid)
4807 wpa_s->reassociate = 1;
4809 case WPA_CTRL_REQ_EAP_PASSWORD:
4810 bin_clear_free(eap->password, eap->password_len);
4811 eap->password = (u8 *) os_strdup(value);
4812 eap->password_len = os_strlen(value);
4813 eap->pending_req_password = 0;
4814 if (ssid == wpa_s->current_ssid)
4815 wpa_s->reassociate = 1;
4817 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
4818 bin_clear_free(eap->new_password, eap->new_password_len);
4819 eap->new_password = (u8 *) os_strdup(value);
4820 eap->new_password_len = os_strlen(value);
4821 eap->pending_req_new_password = 0;
4822 if (ssid == wpa_s->current_ssid)
4823 wpa_s->reassociate = 1;
4825 case WPA_CTRL_REQ_EAP_PIN:
4826 str_clear_free(eap->pin);
4827 eap->pin = os_strdup(value);
4828 eap->pending_req_pin = 0;
4829 if (ssid == wpa_s->current_ssid)
4830 wpa_s->reassociate = 1;
4832 case WPA_CTRL_REQ_EAP_OTP:
4833 bin_clear_free(eap->otp, eap->otp_len);
4834 eap->otp = (u8 *) os_strdup(value);
4835 eap->otp_len = os_strlen(value);
4836 os_free(eap->pending_req_otp);
4837 eap->pending_req_otp = NULL;
4838 eap->pending_req_otp_len = 0;
4840 case WPA_CTRL_REQ_EAP_PASSPHRASE:
4841 str_clear_free(eap->private_key_passwd);
4842 eap->private_key_passwd = os_strdup(value);
4843 eap->pending_req_passphrase = 0;
4844 if (ssid == wpa_s->current_ssid)
4845 wpa_s->reassociate = 1;
4847 case WPA_CTRL_REQ_SIM:
4848 str_clear_free(eap->external_sim_resp);
4849 eap->external_sim_resp = os_strdup(value);
4852 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
4857 #else /* IEEE8021X_EAPOL */
4858 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
4860 #endif /* IEEE8021X_EAPOL */
4862 #endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
4865 int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
4868 unsigned int drv_enc;
4876 if (wpa_s && wpa_s->drv_capa_known)
4877 drv_enc = wpa_s->drv_enc;
4879 drv_enc = (unsigned int) -1;
4881 for (i = 0; i < NUM_WEP_KEYS; i++) {
4882 size_t len = ssid->wep_key_len[i];
4885 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
4887 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
4889 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
4891 return 1; /* invalid WEP key */
4894 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
4895 (!ssid->passphrase || ssid->ssid_len != 0) && !ssid->ext_psk)
4902 int wpas_get_ssid_pmf(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
4904 #ifdef CONFIG_IEEE80211W
4905 if (ssid == NULL || ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT) {
4906 if (wpa_s->conf->pmf == MGMT_FRAME_PROTECTION_OPTIONAL &&
4907 !(wpa_s->drv_enc & WPA_DRIVER_CAPA_ENC_BIP)) {
4909 * Driver does not support BIP -- ignore pmf=1 default
4910 * since the connection with PMF would fail and the
4911 * configuration does not require PMF to be enabled.
4913 return NO_MGMT_FRAME_PROTECTION;
4916 return wpa_s->conf->pmf;
4919 return ssid->ieee80211w;
4920 #else /* CONFIG_IEEE80211W */
4921 return NO_MGMT_FRAME_PROTECTION;
4922 #endif /* CONFIG_IEEE80211W */
4926 int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
4928 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
4930 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
4936 void wpas_auth_failed(struct wpa_supplicant *wpa_s, char *reason)
4938 struct wpa_ssid *ssid = wpa_s->current_ssid;
4940 struct os_reltime now;
4943 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
4948 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
4951 ssid->auth_failures++;
4954 if (ssid->p2p_group &&
4955 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
4957 * Skip the wait time since there is a short timeout on the
4958 * connection to a P2P group.
4962 #endif /* CONFIG_P2P */
4964 if (ssid->auth_failures > 50)
4966 else if (ssid->auth_failures > 10)
4968 else if (ssid->auth_failures > 5)
4970 else if (ssid->auth_failures > 3)
4972 else if (ssid->auth_failures > 2)
4974 else if (ssid->auth_failures > 1)
4979 if (ssid->auth_failures > 1 &&
4980 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt))
4981 dur += os_random() % (ssid->auth_failures * 10);
4983 os_get_reltime(&now);
4984 if (now.sec + dur <= ssid->disabled_until.sec)
4987 ssid->disabled_until.sec = now.sec + dur;
4989 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
4990 "id=%d ssid=\"%s\" auth_failures=%u duration=%d reason=%s",
4991 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
4992 ssid->auth_failures, dur, reason);
4996 void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
4997 struct wpa_ssid *ssid, int clear_failures)
5002 if (ssid->disabled_until.sec) {
5003 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
5004 "id=%d ssid=\"%s\"",
5005 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
5007 ssid->disabled_until.sec = 0;
5008 ssid->disabled_until.usec = 0;
5010 ssid->auth_failures = 0;
5014 int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
5018 if (wpa_s->disallow_aps_bssid == NULL)
5021 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
5022 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
5023 bssid, ETH_ALEN) == 0)
5031 int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
5036 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
5039 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
5040 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
5041 if (ssid_len == s->ssid_len &&
5042 os_memcmp(ssid, s->ssid, ssid_len) == 0)
5051 * wpas_request_connection - Request a new connection
5052 * @wpa_s: Pointer to the network interface
5054 * This function is used to request a new connection to be found. It will mark
5055 * the interface to allow reassociation and request a new scan to find a
5056 * suitable network to connect to.
5058 void wpas_request_connection(struct wpa_supplicant *wpa_s)
5060 wpa_s->normal_scans = 0;
5061 wpa_s->scan_req = NORMAL_SCAN_REQ;
5062 wpa_supplicant_reinit_autoscan(wpa_s);
5063 wpa_s->extra_blacklist_count = 0;
5064 wpa_s->disconnected = 0;
5065 wpa_s->reassociate = 1;
5067 if (wpa_supplicant_fast_associate(wpa_s) != 1)
5068 wpa_supplicant_req_scan(wpa_s, 0, 0);
5070 wpa_s->reattach = 0;
5074 void dump_freq_data(struct wpa_supplicant *wpa_s, const char *title,
5075 struct wpa_used_freq_data *freqs_data,
5080 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
5082 for (i = 0; i < len; i++) {
5083 struct wpa_used_freq_data *cur = &freqs_data[i];
5084 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d, flags=0x%X",
5085 i, cur->freq, cur->flags);
5091 * Find the operating frequencies of any of the virtual interfaces that
5092 * are using the same radio as the current interface, and in addition, get
5093 * information about the interface types that are using the frequency.
5095 int get_shared_radio_freqs_data(struct wpa_supplicant *wpa_s,
5096 struct wpa_used_freq_data *freqs_data,
5099 struct wpa_supplicant *ifs;
5102 unsigned int idx = 0, i;
5104 wpa_dbg(wpa_s, MSG_DEBUG,
5105 "Determining shared radio frequencies (max len %u)", len);
5106 os_memset(freqs_data, 0, sizeof(struct wpa_used_freq_data) * len);
5108 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
5113 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
5116 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
5117 ifs->current_ssid->mode == WPAS_MODE_P2P_GO)
5118 freq = ifs->current_ssid->frequency;
5119 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
5120 freq = ifs->assoc_freq;
5124 /* Hold only distinct freqs */
5125 for (i = 0; i < idx; i++)
5126 if (freqs_data[i].freq == freq)
5130 freqs_data[idx++].freq = freq;
5132 if (ifs->current_ssid->mode == WPAS_MODE_INFRA) {
5133 freqs_data[i].flags = ifs->current_ssid->p2p_group ?
5134 WPA_FREQ_USED_BY_P2P_CLIENT :
5135 WPA_FREQ_USED_BY_INFRA_STATION;
5139 dump_freq_data(wpa_s, "completed iteration", freqs_data, idx);
5145 * Find the operating frequencies of any of the virtual interfaces that
5146 * are using the same radio as the current interface.
5148 int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
5149 int *freq_array, unsigned int len)
5151 struct wpa_used_freq_data *freqs_data;
5154 os_memset(freq_array, 0, sizeof(int) * len);
5156 freqs_data = os_calloc(len, sizeof(struct wpa_used_freq_data));
5160 num = get_shared_radio_freqs_data(wpa_s, freqs_data, len);
5161 for (i = 0; i < num; i++)
5162 freq_array[i] = freqs_data[i].freq;
5164 os_free(freqs_data);
5170 static void wpas_rrm_neighbor_rep_timeout_handler(void *data, void *user_ctx)
5172 struct rrm_data *rrm = data;
5174 if (!rrm->notify_neighbor_rep) {
5175 wpa_printf(MSG_ERROR,
5176 "RRM: Unexpected neighbor report timeout");
5180 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report - NONE");
5181 rrm->notify_neighbor_rep(rrm->neighbor_rep_cb_ctx, NULL);
5183 rrm->notify_neighbor_rep = NULL;
5184 rrm->neighbor_rep_cb_ctx = NULL;
5189 * wpas_rrm_reset - Clear and reset all RRM data in wpa_supplicant
5190 * @wpa_s: Pointer to wpa_supplicant
5192 void wpas_rrm_reset(struct wpa_supplicant *wpa_s)
5194 wpa_s->rrm.rrm_used = 0;
5196 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5198 if (wpa_s->rrm.notify_neighbor_rep)
5199 wpas_rrm_neighbor_rep_timeout_handler(&wpa_s->rrm, NULL);
5200 wpa_s->rrm.next_neighbor_rep_token = 1;
5205 * wpas_rrm_process_neighbor_rep - Handle incoming neighbor report
5206 * @wpa_s: Pointer to wpa_supplicant
5207 * @report: Neighbor report buffer, prefixed by a 1-byte dialog token
5208 * @report_len: Length of neighbor report buffer
5210 void wpas_rrm_process_neighbor_rep(struct wpa_supplicant *wpa_s,
5211 const u8 *report, size_t report_len)
5213 struct wpabuf *neighbor_rep;
5215 wpa_hexdump(MSG_DEBUG, "RRM: New Neighbor Report", report, report_len);
5219 if (report[0] != wpa_s->rrm.next_neighbor_rep_token - 1) {
5220 wpa_printf(MSG_DEBUG,
5221 "RRM: Discarding neighbor report with token %d (expected %d)",
5222 report[0], wpa_s->rrm.next_neighbor_rep_token - 1);
5226 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
5229 if (!wpa_s->rrm.notify_neighbor_rep) {
5230 wpa_printf(MSG_ERROR, "RRM: Unexpected neighbor report");
5234 /* skipping the first byte, which is only an id (dialog token) */
5235 neighbor_rep = wpabuf_alloc(report_len - 1);
5236 if (neighbor_rep == NULL)
5238 wpabuf_put_data(neighbor_rep, report + 1, report_len - 1);
5239 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report (token = %d)",
5241 wpa_s->rrm.notify_neighbor_rep(wpa_s->rrm.neighbor_rep_cb_ctx,
5243 wpa_s->rrm.notify_neighbor_rep = NULL;
5244 wpa_s->rrm.neighbor_rep_cb_ctx = NULL;
5248 #if defined(__CYGWIN__) || defined(CONFIG_NATIVE_WINDOWS)
5249 /* Workaround different, undefined for Windows, error codes used here */
5251 #define EOPNOTSUPP -1
5252 #define ECANCELED -1
5256 * wpas_rrm_send_neighbor_rep_request - Request a neighbor report from our AP
5257 * @wpa_s: Pointer to wpa_supplicant
5258 * @ssid: if not null, this is sent in the request. Otherwise, no SSID IE
5259 * is sent in the request.
5260 * @cb: Callback function to be called once the requested report arrives, or
5261 * timed out after RRM_NEIGHBOR_REPORT_TIMEOUT seconds.
5262 * In the former case, 'neighbor_rep' is a newly allocated wpabuf, and it's
5263 * the requester's responsibility to free it.
5264 * In the latter case NULL will be sent in 'neighbor_rep'.
5265 * @cb_ctx: Context value to send the callback function
5266 * Returns: 0 in case of success, negative error code otherwise
5268 * In case there is a previous request which has not been answered yet, the
5269 * new request fails. The caller may retry after RRM_NEIGHBOR_REPORT_TIMEOUT.
5270 * Request must contain a callback function.
5272 int wpas_rrm_send_neighbor_rep_request(struct wpa_supplicant *wpa_s,
5273 const struct wpa_ssid *ssid,
5274 void (*cb)(void *ctx,
5275 struct wpabuf *neighbor_rep),
5281 if (wpa_s->wpa_state != WPA_COMPLETED || wpa_s->current_ssid == NULL) {
5282 wpa_printf(MSG_DEBUG, "RRM: No connection, no RRM.");
5286 if (!wpa_s->rrm.rrm_used) {
5287 wpa_printf(MSG_DEBUG, "RRM: No RRM in current connection.");
5291 rrm_ie = wpa_bss_get_ie(wpa_s->current_bss,
5292 WLAN_EID_RRM_ENABLED_CAPABILITIES);
5293 if (!rrm_ie || !(wpa_s->current_bss->caps & IEEE80211_CAP_RRM) ||
5294 !(rrm_ie[2] & WLAN_RRM_CAPS_NEIGHBOR_REPORT)) {
5295 wpa_printf(MSG_DEBUG,
5296 "RRM: No network support for Neighbor Report.");
5301 wpa_printf(MSG_DEBUG,
5302 "RRM: Neighbor Report request must provide a callback.");
5306 /* Refuse if there's a live request */
5307 if (wpa_s->rrm.notify_neighbor_rep) {
5308 wpa_printf(MSG_DEBUG,
5309 "RRM: Currently handling previous Neighbor Report.");
5313 /* 3 = action category + action code + dialog token */
5314 buf = wpabuf_alloc(3 + (ssid ? 2 + ssid->ssid_len : 0));
5316 wpa_printf(MSG_DEBUG,
5317 "RRM: Failed to allocate Neighbor Report Request");
5321 wpa_printf(MSG_DEBUG, "RRM: Neighbor report request (for %s), token=%d",
5322 (ssid ? wpa_ssid_txt(ssid->ssid, ssid->ssid_len) : ""),
5323 wpa_s->rrm.next_neighbor_rep_token);
5325 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
5326 wpabuf_put_u8(buf, WLAN_RRM_NEIGHBOR_REPORT_REQUEST);
5327 wpabuf_put_u8(buf, wpa_s->rrm.next_neighbor_rep_token);
5329 wpabuf_put_u8(buf, WLAN_EID_SSID);
5330 wpabuf_put_u8(buf, ssid->ssid_len);
5331 wpabuf_put_data(buf, ssid->ssid, ssid->ssid_len);
5334 wpa_s->rrm.next_neighbor_rep_token++;
5336 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
5337 wpa_s->own_addr, wpa_s->bssid,
5338 wpabuf_head(buf), wpabuf_len(buf), 0) < 0) {
5339 wpa_printf(MSG_DEBUG,
5340 "RRM: Failed to send Neighbor Report Request");
5345 wpa_s->rrm.neighbor_rep_cb_ctx = cb_ctx;
5346 wpa_s->rrm.notify_neighbor_rep = cb;
5347 eloop_register_timeout(RRM_NEIGHBOR_REPORT_TIMEOUT, 0,
5348 wpas_rrm_neighbor_rep_timeout_handler,
5356 void wpas_rrm_handle_link_measurement_request(struct wpa_supplicant *wpa_s,
5358 const u8 *frame, size_t len,
5362 const struct rrm_link_measurement_request *req;
5363 struct rrm_link_measurement_report report;
5365 if (wpa_s->wpa_state != WPA_COMPLETED) {
5366 wpa_printf(MSG_INFO,
5367 "RRM: Ignoring link measurement request. Not associated");
5371 if (!wpa_s->rrm.rrm_used) {
5372 wpa_printf(MSG_INFO,
5373 "RRM: Ignoring link measurement request. Not RRM network");
5377 if (!(wpa_s->drv_rrm_flags & WPA_DRIVER_FLAGS_TX_POWER_INSERTION)) {
5378 wpa_printf(MSG_INFO,
5379 "RRM: Measurement report failed. TX power insertion not supported");
5383 req = (const struct rrm_link_measurement_request *) frame;
5384 if (len < sizeof(*req)) {
5385 wpa_printf(MSG_INFO,
5386 "RRM: Link measurement report failed. Request too short");
5390 os_memset(&report, 0, sizeof(report));
5391 report.tpc.eid = WLAN_EID_TPC_REPORT;
5393 report.rsni = 255; /* 255 indicates that RSNI is not available */
5394 report.dialog_token = req->dialog_token;
5397 * It's possible to estimate RCPI based on RSSI in dBm. This
5398 * calculation will not reflect the correct value for high rates,
5399 * but it's good enough for Action frames which are transmitted
5400 * with up to 24 Mbps rates.
5403 report.rcpi = 255; /* not available */
5404 else if (rssi < -110)
5409 report.rcpi = (rssi + 110) * 2;
5411 /* action_category + action_code */
5412 buf = wpabuf_alloc(2 + sizeof(report));
5414 wpa_printf(MSG_ERROR,
5415 "RRM: Link measurement report failed. Buffer allocation failed");
5419 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
5420 wpabuf_put_u8(buf, WLAN_RRM_LINK_MEASUREMENT_REPORT);
5421 wpabuf_put_data(buf, &report, sizeof(report));
5422 wpa_hexdump(MSG_DEBUG, "RRM: Link measurement report:",
5423 wpabuf_head(buf), wpabuf_len(buf));
5425 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, src,
5426 wpa_s->own_addr, wpa_s->bssid,
5427 wpabuf_head(buf), wpabuf_len(buf), 0)) {
5428 wpa_printf(MSG_ERROR,
5429 "RRM: Link measurement report failed. Send action failed");