2 * hostapd / Station table
3 * Copyright (c) 2002-2011, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
9 #include "utils/includes.h"
11 #include "utils/common.h"
12 #include "utils/eloop.h"
13 #include "common/ieee802_11_defs.h"
14 #include "common/wpa_ctrl.h"
15 #include "common/sae.h"
16 #include "radius/radius.h"
17 #include "radius/radius_client.h"
18 #include "drivers/driver.h"
21 #include "accounting.h"
22 #include "ieee802_1x.h"
23 #include "ieee802_11.h"
24 #include "ieee802_11_auth.h"
26 #include "preauth_auth.h"
27 #include "ap_config.h"
30 #include "vlan_init.h"
31 #include "p2p_hostapd.h"
32 #include "ap_drv_ops.h"
36 static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd,
37 struct sta_info *sta);
38 static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx);
39 static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx);
40 static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx);
41 #ifdef CONFIG_IEEE80211W
42 static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx);
43 #endif /* CONFIG_IEEE80211W */
44 static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta);
46 int ap_for_each_sta(struct hostapd_data *hapd,
47 int (*cb)(struct hostapd_data *hapd, struct sta_info *sta,
53 for (sta = hapd->sta_list; sta; sta = sta->next) {
54 if (cb(hapd, sta, ctx))
62 struct sta_info * ap_get_sta(struct hostapd_data *hapd, const u8 *sta)
66 s = hapd->sta_hash[STA_HASH(sta)];
67 while (s != NULL && os_memcmp(s->addr, sta, 6) != 0)
73 static void ap_sta_list_del(struct hostapd_data *hapd, struct sta_info *sta)
77 if (hapd->sta_list == sta) {
78 hapd->sta_list = sta->next;
83 while (tmp != NULL && tmp->next != sta)
86 wpa_printf(MSG_DEBUG, "Could not remove STA " MACSTR " from "
87 "list.", MAC2STR(sta->addr));
89 tmp->next = sta->next;
93 void ap_sta_hash_add(struct hostapd_data *hapd, struct sta_info *sta)
95 sta->hnext = hapd->sta_hash[STA_HASH(sta->addr)];
96 hapd->sta_hash[STA_HASH(sta->addr)] = sta;
100 static void ap_sta_hash_del(struct hostapd_data *hapd, struct sta_info *sta)
104 s = hapd->sta_hash[STA_HASH(sta->addr)];
105 if (s == NULL) return;
106 if (os_memcmp(s->addr, sta->addr, 6) == 0) {
107 hapd->sta_hash[STA_HASH(sta->addr)] = s->hnext;
111 while (s->hnext != NULL &&
112 os_memcmp(s->hnext->addr, sta->addr, ETH_ALEN) != 0)
114 if (s->hnext != NULL)
115 s->hnext = s->hnext->hnext;
117 wpa_printf(MSG_DEBUG, "AP: could not remove STA " MACSTR
118 " from hash table", MAC2STR(sta->addr));
122 void ap_free_sta(struct hostapd_data *hapd, struct sta_info *sta)
126 accounting_sta_stop(hapd, sta);
129 ap_sta_set_authorized(hapd, sta, 0);
131 if (sta->flags & WLAN_STA_WDS)
132 hostapd_set_wds_sta(hapd, sta->addr, sta->aid, 0);
134 if (!(sta->flags & WLAN_STA_PREAUTH))
135 hostapd_drv_sta_remove(hapd, sta->addr);
137 ap_sta_hash_del(hapd, sta);
138 ap_sta_list_del(hapd, sta);
141 hapd->sta_aid[(sta->aid - 1) / 32] &=
142 ~BIT((sta->aid - 1) % 32);
145 if (sta->nonerp_set) {
147 hapd->iface->num_sta_non_erp--;
148 if (hapd->iface->num_sta_non_erp == 0)
152 if (sta->no_short_slot_time_set) {
153 sta->no_short_slot_time_set = 0;
154 hapd->iface->num_sta_no_short_slot_time--;
155 if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G
156 && hapd->iface->num_sta_no_short_slot_time == 0)
160 if (sta->no_short_preamble_set) {
161 sta->no_short_preamble_set = 0;
162 hapd->iface->num_sta_no_short_preamble--;
163 if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G
164 && hapd->iface->num_sta_no_short_preamble == 0)
168 if (sta->no_ht_gf_set) {
169 sta->no_ht_gf_set = 0;
170 hapd->iface->num_sta_ht_no_gf--;
173 if (sta->no_ht_set) {
175 hapd->iface->num_sta_no_ht--;
178 if (sta->ht_20mhz_set) {
179 sta->ht_20mhz_set = 0;
180 hapd->iface->num_sta_ht_20mhz--;
184 if (sta->no_p2p_set) {
186 hapd->num_sta_no_p2p--;
187 if (hapd->num_sta_no_p2p == 0)
188 hostapd_p2p_non_p2p_sta_disconnected(hapd);
190 #endif /* CONFIG_P2P */
192 #if defined(NEED_AP_MLME) && defined(CONFIG_IEEE80211N)
193 if (hostapd_ht_operation_update(hapd->iface) > 0)
195 #endif /* NEED_AP_MLME && CONFIG_IEEE80211N */
198 ieee802_11_set_beacons(hapd->iface);
200 wpa_printf(MSG_DEBUG, "%s: cancel ap_handle_timer for " MACSTR,
201 __func__, MAC2STR(sta->addr));
202 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
203 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
204 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
205 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
207 ieee802_1x_free_station(sta);
208 wpa_auth_sta_deinit(sta->wpa_sm);
209 rsn_preauth_free_station(hapd, sta);
210 #ifndef CONFIG_NO_RADIUS
211 radius_client_flush_auth(hapd->radius, sta->addr);
212 #endif /* CONFIG_NO_RADIUS */
214 os_free(sta->last_assoc_req);
215 os_free(sta->challenge);
217 #ifdef CONFIG_IEEE80211W
218 os_free(sta->sa_query_trans_id);
219 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
220 #endif /* CONFIG_IEEE80211W */
223 p2p_group_notif_disassoc(hapd->p2p_group, sta->addr);
224 #endif /* CONFIG_P2P */
226 #ifdef CONFIG_INTERWORKING
227 if (sta->gas_dialog) {
229 for (i = 0; i < GAS_DIALOG_MAX; i++)
230 gas_serv_dialog_clear(&sta->gas_dialog[i]);
231 os_free(sta->gas_dialog);
233 #endif /* CONFIG_INTERWORKING */
235 wpabuf_free(sta->wps_ie);
236 wpabuf_free(sta->p2p_ie);
237 wpabuf_free(sta->hs20_ie);
239 os_free(sta->ht_capabilities);
240 hostapd_free_psk_list(sta->psk);
241 os_free(sta->identity);
242 os_free(sta->radius_cui);
245 sae_clear_data(sta->sae);
247 #endif /* CONFIG_SAE */
253 void hostapd_free_stas(struct hostapd_data *hapd)
255 struct sta_info *sta, *prev;
257 sta = hapd->sta_list;
261 if (sta->flags & WLAN_STA_AUTH) {
262 mlme_deauthenticate_indication(
263 hapd, sta, WLAN_REASON_UNSPECIFIED);
266 wpa_printf(MSG_DEBUG, "Removing station " MACSTR,
267 MAC2STR(prev->addr));
268 ap_free_sta(hapd, prev);
274 * ap_handle_timer - Per STA timer handler
275 * @eloop_ctx: struct hostapd_data *
276 * @timeout_ctx: struct sta_info *
278 * This function is called to check station activity and to remove inactive
281 void ap_handle_timer(void *eloop_ctx, void *timeout_ctx)
283 struct hostapd_data *hapd = eloop_ctx;
284 struct sta_info *sta = timeout_ctx;
285 unsigned long next_time = 0;
287 wpa_printf(MSG_DEBUG, "%s: " MACSTR " flags=0x%x timeout_next=%d",
288 __func__, MAC2STR(sta->addr), sta->flags,
290 if (sta->timeout_next == STA_REMOVE) {
291 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
292 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
293 "local deauth request");
294 ap_free_sta(hapd, sta);
298 if ((sta->flags & WLAN_STA_ASSOC) &&
299 (sta->timeout_next == STA_NULLFUNC ||
300 sta->timeout_next == STA_DISASSOC)) {
303 * Add random value to timeout so that we don't end up bouncing
304 * all stations at the same time if we have lots of associated
305 * stations that are idle (but keep re-associating).
307 int fuzz = os_random() % 20;
308 inactive_sec = hostapd_drv_get_inact_sec(hapd, sta->addr);
309 if (inactive_sec == -1) {
310 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
311 "Check inactivity: Could not "
312 "get station info from kernel driver for "
313 MACSTR, MAC2STR(sta->addr));
315 * The driver may not support this functionality.
316 * Anyway, try again after the next inactivity timeout,
317 * but do not disconnect the station now.
319 next_time = hapd->conf->ap_max_inactivity + fuzz;
320 } else if (inactive_sec < hapd->conf->ap_max_inactivity &&
321 sta->flags & WLAN_STA_ASSOC) {
322 /* station activity detected; reset timeout state */
323 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
324 "Station " MACSTR " has been active %is ago",
325 MAC2STR(sta->addr), inactive_sec);
326 sta->timeout_next = STA_NULLFUNC;
327 next_time = hapd->conf->ap_max_inactivity + fuzz -
330 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
331 "Station " MACSTR " has been "
332 "inactive too long: %d sec, max allowed: %d",
333 MAC2STR(sta->addr), inactive_sec,
334 hapd->conf->ap_max_inactivity);
336 if (hapd->conf->skip_inactivity_poll)
337 sta->timeout_next = STA_DISASSOC;
341 if ((sta->flags & WLAN_STA_ASSOC) &&
342 sta->timeout_next == STA_DISASSOC &&
343 !(sta->flags & WLAN_STA_PENDING_POLL) &&
344 !hapd->conf->skip_inactivity_poll) {
345 wpa_msg(hapd->msg_ctx, MSG_DEBUG, "Station " MACSTR
346 " has ACKed data poll", MAC2STR(sta->addr));
347 /* data nullfunc frame poll did not produce TX errors; assume
348 * station ACKed it */
349 sta->timeout_next = STA_NULLFUNC;
350 next_time = hapd->conf->ap_max_inactivity;
354 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
355 "for " MACSTR " (%lu seconds)",
356 __func__, MAC2STR(sta->addr), next_time);
357 eloop_register_timeout(next_time, 0, ap_handle_timer, hapd,
362 if (sta->timeout_next == STA_NULLFUNC &&
363 (sta->flags & WLAN_STA_ASSOC)) {
364 wpa_printf(MSG_DEBUG, " Polling STA");
365 sta->flags |= WLAN_STA_PENDING_POLL;
366 hostapd_drv_poll_client(hapd, hapd->own_addr, sta->addr,
367 sta->flags & WLAN_STA_WMM);
368 } else if (sta->timeout_next != STA_REMOVE) {
369 int deauth = sta->timeout_next == STA_DEAUTH;
371 wpa_dbg(hapd->msg_ctx, MSG_DEBUG,
372 "Timeout, sending %s info to STA " MACSTR,
373 deauth ? "deauthentication" : "disassociation",
377 hostapd_drv_sta_deauth(
379 WLAN_REASON_PREV_AUTH_NOT_VALID);
381 hostapd_drv_sta_disassoc(
383 WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY);
387 switch (sta->timeout_next) {
389 sta->timeout_next = STA_DISASSOC;
390 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
391 "for " MACSTR " (%d seconds - AP_DISASSOC_DELAY)",
392 __func__, MAC2STR(sta->addr), AP_DISASSOC_DELAY);
393 eloop_register_timeout(AP_DISASSOC_DELAY, 0, ap_handle_timer,
397 ap_sta_set_authorized(hapd, sta, 0);
398 sta->flags &= ~WLAN_STA_ASSOC;
399 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
400 if (!sta->acct_terminate_cause)
401 sta->acct_terminate_cause =
402 RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT;
403 accounting_sta_stop(hapd, sta);
404 ieee802_1x_free_station(sta);
405 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
406 HOSTAPD_LEVEL_INFO, "disassociated due to "
408 sta->timeout_next = STA_DEAUTH;
409 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
410 "for " MACSTR " (%d seconds - AP_DEAUTH_DELAY)",
411 __func__, MAC2STR(sta->addr), AP_DEAUTH_DELAY);
412 eloop_register_timeout(AP_DEAUTH_DELAY, 0, ap_handle_timer,
414 mlme_disassociate_indication(
415 hapd, sta, WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY);
419 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
420 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
421 "inactivity (timer DEAUTH/REMOVE)");
422 if (!sta->acct_terminate_cause)
423 sta->acct_terminate_cause =
424 RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT;
425 mlme_deauthenticate_indication(
427 WLAN_REASON_PREV_AUTH_NOT_VALID);
428 ap_free_sta(hapd, sta);
434 static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx)
436 struct hostapd_data *hapd = eloop_ctx;
437 struct sta_info *sta = timeout_ctx;
440 if (!(sta->flags & WLAN_STA_AUTH)) {
441 if (sta->flags & WLAN_STA_GAS) {
442 wpa_printf(MSG_DEBUG, "GAS: Remove temporary STA "
443 "entry " MACSTR, MAC2STR(sta->addr));
444 ap_free_sta(hapd, sta);
449 mlme_deauthenticate_indication(hapd, sta,
450 WLAN_REASON_PREV_AUTH_NOT_VALID);
451 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
452 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
454 sta->acct_terminate_cause =
455 RADIUS_ACCT_TERMINATE_CAUSE_SESSION_TIMEOUT;
456 os_memcpy(addr, sta->addr, ETH_ALEN);
457 ap_free_sta(hapd, sta);
458 hostapd_drv_sta_deauth(hapd, addr, WLAN_REASON_PREV_AUTH_NOT_VALID);
462 void ap_sta_session_timeout(struct hostapd_data *hapd, struct sta_info *sta,
465 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
466 HOSTAPD_LEVEL_DEBUG, "setting session timeout to %d "
467 "seconds", session_timeout);
468 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
469 eloop_register_timeout(session_timeout, 0, ap_handle_session_timer,
474 void ap_sta_no_session_timeout(struct hostapd_data *hapd, struct sta_info *sta)
476 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
480 struct sta_info * ap_sta_add(struct hostapd_data *hapd, const u8 *addr)
482 struct sta_info *sta;
484 sta = ap_get_sta(hapd, addr);
488 wpa_printf(MSG_DEBUG, " New STA");
489 if (hapd->num_sta >= hapd->conf->max_num_sta) {
490 /* FIX: might try to remove some old STAs first? */
491 wpa_printf(MSG_DEBUG, "no more room for new STAs (%d/%d)",
492 hapd->num_sta, hapd->conf->max_num_sta);
496 sta = os_zalloc(sizeof(struct sta_info));
498 wpa_printf(MSG_ERROR, "malloc failed");
501 sta->acct_interim_interval = hapd->conf->acct_interim_interval;
502 accounting_sta_get_id(hapd, sta);
504 /* initialize STA info data */
505 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
506 "for " MACSTR " (%d seconds - ap_max_inactivity)",
507 __func__, MAC2STR(addr),
508 hapd->conf->ap_max_inactivity);
509 eloop_register_timeout(hapd->conf->ap_max_inactivity, 0,
510 ap_handle_timer, hapd, sta);
511 os_memcpy(sta->addr, addr, ETH_ALEN);
512 sta->next = hapd->sta_list;
513 hapd->sta_list = sta;
515 ap_sta_hash_add(hapd, sta);
516 sta->ssid = &hapd->conf->ssid;
517 ap_sta_remove_in_other_bss(hapd, sta);
523 static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta)
525 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
527 wpa_printf(MSG_DEBUG, "Removing STA " MACSTR " from kernel driver",
529 if (hostapd_drv_sta_remove(hapd, sta->addr) &&
530 sta->flags & WLAN_STA_ASSOC) {
531 wpa_printf(MSG_DEBUG, "Could not remove station " MACSTR
532 " from kernel driver.", MAC2STR(sta->addr));
539 static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd,
540 struct sta_info *sta)
542 struct hostapd_iface *iface = hapd->iface;
545 for (i = 0; i < iface->num_bss; i++) {
546 struct hostapd_data *bss = iface->bss[i];
547 struct sta_info *sta2;
548 /* bss should always be set during operation, but it may be
549 * NULL during reconfiguration. Assume the STA is not
550 * associated to another BSS in that case to avoid NULL pointer
552 if (bss == hapd || bss == NULL)
554 sta2 = ap_get_sta(bss, sta->addr);
558 ap_sta_disconnect(bss, sta2, sta2->addr,
559 WLAN_REASON_PREV_AUTH_NOT_VALID);
564 static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx)
566 struct hostapd_data *hapd = eloop_ctx;
567 struct sta_info *sta = timeout_ctx;
569 ap_sta_remove(hapd, sta);
570 mlme_disassociate_indication(hapd, sta, sta->disassoc_reason);
574 void ap_sta_disassociate(struct hostapd_data *hapd, struct sta_info *sta,
577 wpa_printf(MSG_DEBUG, "%s: disassociate STA " MACSTR,
578 hapd->conf->iface, MAC2STR(sta->addr));
579 sta->flags &= ~(WLAN_STA_ASSOC | WLAN_STA_ASSOC_REQ_OK);
580 ap_sta_set_authorized(hapd, sta, 0);
581 sta->timeout_next = STA_DEAUTH;
582 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
583 "for " MACSTR " (%d seconds - "
584 "AP_MAX_INACTIVITY_AFTER_DISASSOC)",
585 __func__, MAC2STR(sta->addr),
586 AP_MAX_INACTIVITY_AFTER_DISASSOC);
587 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
588 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DISASSOC, 0,
589 ap_handle_timer, hapd, sta);
590 accounting_sta_stop(hapd, sta);
591 ieee802_1x_free_station(sta);
593 sta->disassoc_reason = reason;
594 sta->flags |= WLAN_STA_PENDING_DISASSOC_CB;
595 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
596 eloop_register_timeout(hapd->iface->drv_flags &
597 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
598 ap_sta_disassoc_cb_timeout, hapd, sta);
602 static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx)
604 struct hostapd_data *hapd = eloop_ctx;
605 struct sta_info *sta = timeout_ctx;
607 ap_sta_remove(hapd, sta);
608 mlme_deauthenticate_indication(hapd, sta, sta->deauth_reason);
612 void ap_sta_deauthenticate(struct hostapd_data *hapd, struct sta_info *sta,
615 wpa_printf(MSG_DEBUG, "%s: deauthenticate STA " MACSTR,
616 hapd->conf->iface, MAC2STR(sta->addr));
617 sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC);
618 ap_sta_set_authorized(hapd, sta, 0);
619 sta->timeout_next = STA_REMOVE;
620 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
621 "for " MACSTR " (%d seconds - "
622 "AP_MAX_INACTIVITY_AFTER_DEAUTH)",
623 __func__, MAC2STR(sta->addr),
624 AP_MAX_INACTIVITY_AFTER_DEAUTH);
625 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
626 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0,
627 ap_handle_timer, hapd, sta);
628 accounting_sta_stop(hapd, sta);
629 ieee802_1x_free_station(sta);
631 sta->deauth_reason = reason;
632 sta->flags |= WLAN_STA_PENDING_DEAUTH_CB;
633 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
634 eloop_register_timeout(hapd->iface->drv_flags &
635 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
636 ap_sta_deauth_cb_timeout, hapd, sta);
641 int ap_sta_wps_cancel(struct hostapd_data *hapd,
642 struct sta_info *sta, void *ctx)
644 if (sta && (sta->flags & WLAN_STA_WPS)) {
645 ap_sta_deauthenticate(hapd, sta,
646 WLAN_REASON_PREV_AUTH_NOT_VALID);
647 wpa_printf(MSG_DEBUG, "WPS: %s: Deauth sta=" MACSTR,
648 __func__, MAC2STR(sta->addr));
654 #endif /* CONFIG_WPS */
657 int ap_sta_bind_vlan(struct hostapd_data *hapd, struct sta_info *sta,
660 #ifndef CONFIG_NO_VLAN
662 struct hostapd_vlan *vlan = NULL;
666 * Do not proceed furthur if the vlan id remains same. We do not want
667 * duplicate dynamic vlan entries.
669 if (sta->vlan_id == old_vlanid)
673 * During 1x reauth, if the vlan id changes, then remove the old id and
674 * proceed furthur to add the new one.
677 vlan_remove_dynamic(hapd, old_vlanid);
679 iface = hapd->conf->iface;
680 if (sta->ssid->vlan[0])
681 iface = sta->ssid->vlan;
683 if (sta->ssid->dynamic_vlan == DYNAMIC_VLAN_DISABLED)
685 else if (sta->vlan_id > 0) {
686 vlan = hapd->conf->vlan;
688 if (vlan->vlan_id == sta->vlan_id ||
689 vlan->vlan_id == VLAN_ID_WILDCARD) {
690 iface = vlan->ifname;
697 if (sta->vlan_id > 0 && vlan == NULL) {
698 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
699 HOSTAPD_LEVEL_DEBUG, "could not find VLAN for "
700 "binding station to (vlan_id=%d)",
703 } else if (sta->vlan_id > 0 && vlan->vlan_id == VLAN_ID_WILDCARD) {
704 vlan = vlan_add_dynamic(hapd, vlan, sta->vlan_id);
706 hostapd_logger(hapd, sta->addr,
707 HOSTAPD_MODULE_IEEE80211,
708 HOSTAPD_LEVEL_DEBUG, "could not add "
709 "dynamic VLAN interface for vlan_id=%d",
714 iface = vlan->ifname;
715 if (vlan_setup_encryption_dyn(hapd, sta->ssid, iface) != 0) {
716 hostapd_logger(hapd, sta->addr,
717 HOSTAPD_MODULE_IEEE80211,
718 HOSTAPD_LEVEL_DEBUG, "could not "
719 "configure encryption for dynamic VLAN "
720 "interface for vlan_id=%d",
724 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
725 HOSTAPD_LEVEL_DEBUG, "added new dynamic VLAN "
726 "interface '%s'", iface);
727 } else if (vlan && vlan->vlan_id == sta->vlan_id) {
728 if (sta->vlan_id > 0) {
729 vlan->dynamic_vlan++;
730 hostapd_logger(hapd, sta->addr,
731 HOSTAPD_MODULE_IEEE80211,
732 HOSTAPD_LEVEL_DEBUG, "updated existing "
733 "dynamic VLAN interface '%s'", iface);
737 * Update encryption configuration for statically generated
738 * VLAN interface. This is only used for static WEP
739 * configuration for the case where hostapd did not yet know
740 * which keys are to be used when the interface was added.
742 if (vlan_setup_encryption_dyn(hapd, sta->ssid, iface) != 0) {
743 hostapd_logger(hapd, sta->addr,
744 HOSTAPD_MODULE_IEEE80211,
745 HOSTAPD_LEVEL_DEBUG, "could not "
746 "configure encryption for VLAN "
747 "interface for vlan_id=%d",
752 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
753 HOSTAPD_LEVEL_DEBUG, "binding station to interface "
756 if (wpa_auth_sta_set_vlan(sta->wpa_sm, sta->vlan_id) < 0)
757 wpa_printf(MSG_INFO, "Failed to update VLAN-ID for WPA");
759 ret = hostapd_drv_set_sta_vlan(iface, hapd, sta->addr, sta->vlan_id);
761 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
762 HOSTAPD_LEVEL_DEBUG, "could not bind the STA "
763 "entry to vlan_id=%d", sta->vlan_id);
766 #else /* CONFIG_NO_VLAN */
768 #endif /* CONFIG_NO_VLAN */
772 #ifdef CONFIG_IEEE80211W
774 int ap_check_sa_query_timeout(struct hostapd_data *hapd, struct sta_info *sta)
777 struct os_time now, passed;
779 os_time_sub(&now, &sta->sa_query_start, &passed);
780 tu = (passed.sec * 1000000 + passed.usec) / 1024;
781 if (hapd->conf->assoc_sa_query_max_timeout < tu) {
782 hostapd_logger(hapd, sta->addr,
783 HOSTAPD_MODULE_IEEE80211,
785 "association SA Query timed out");
786 sta->sa_query_timed_out = 1;
787 os_free(sta->sa_query_trans_id);
788 sta->sa_query_trans_id = NULL;
789 sta->sa_query_count = 0;
790 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
798 static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx)
800 struct hostapd_data *hapd = eloop_ctx;
801 struct sta_info *sta = timeout_ctx;
802 unsigned int timeout, sec, usec;
805 if (sta->sa_query_count > 0 &&
806 ap_check_sa_query_timeout(hapd, sta))
809 nbuf = os_realloc_array(sta->sa_query_trans_id,
810 sta->sa_query_count + 1,
811 WLAN_SA_QUERY_TR_ID_LEN);
814 if (sta->sa_query_count == 0) {
815 /* Starting a new SA Query procedure */
816 os_get_time(&sta->sa_query_start);
818 trans_id = nbuf + sta->sa_query_count * WLAN_SA_QUERY_TR_ID_LEN;
819 sta->sa_query_trans_id = nbuf;
820 sta->sa_query_count++;
822 os_get_random(trans_id, WLAN_SA_QUERY_TR_ID_LEN);
824 timeout = hapd->conf->assoc_sa_query_retry_timeout;
825 sec = ((timeout / 1000) * 1024) / 1000;
826 usec = (timeout % 1000) * 1024;
827 eloop_register_timeout(sec, usec, ap_sa_query_timer, hapd, sta);
829 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
831 "association SA Query attempt %d", sta->sa_query_count);
833 ieee802_11_send_sa_query_req(hapd, sta->addr, trans_id);
837 void ap_sta_start_sa_query(struct hostapd_data *hapd, struct sta_info *sta)
839 ap_sa_query_timer(hapd, sta);
843 void ap_sta_stop_sa_query(struct hostapd_data *hapd, struct sta_info *sta)
845 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
846 os_free(sta->sa_query_trans_id);
847 sta->sa_query_trans_id = NULL;
848 sta->sa_query_count = 0;
851 #endif /* CONFIG_IEEE80211W */
854 void ap_sta_set_authorized(struct hostapd_data *hapd, struct sta_info *sta,
857 const u8 *dev_addr = NULL;
861 #endif /* CONFIG_P2P */
863 if (!!authorized == !!(sta->flags & WLAN_STA_AUTHORIZED))
867 if (hapd->p2p_group == NULL) {
868 if (sta->p2p_ie != NULL &&
869 p2p_parse_dev_addr_in_p2p_ie(sta->p2p_ie, addr) == 0)
872 dev_addr = p2p_group_get_dev_addr(hapd->p2p_group, sta->addr);
873 #endif /* CONFIG_P2P */
876 os_snprintf(buf, sizeof(buf), MACSTR " p2p_dev_addr=" MACSTR,
877 MAC2STR(sta->addr), MAC2STR(dev_addr));
879 os_snprintf(buf, sizeof(buf), MACSTR, MAC2STR(sta->addr));
882 wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_CONNECTED "%s", buf);
884 if (hapd->msg_ctx_parent &&
885 hapd->msg_ctx_parent != hapd->msg_ctx)
886 wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO,
887 AP_STA_CONNECTED "%s", buf);
889 sta->flags |= WLAN_STA_AUTHORIZED;
891 wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_DISCONNECTED "%s", buf);
893 if (hapd->msg_ctx_parent &&
894 hapd->msg_ctx_parent != hapd->msg_ctx)
895 wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO,
896 AP_STA_DISCONNECTED "%s", buf);
898 sta->flags &= ~WLAN_STA_AUTHORIZED;
901 if (hapd->sta_authorized_cb)
902 hapd->sta_authorized_cb(hapd->sta_authorized_cb_ctx,
903 sta->addr, authorized, dev_addr);
907 void ap_sta_disconnect(struct hostapd_data *hapd, struct sta_info *sta,
908 const u8 *addr, u16 reason)
911 if (sta == NULL && addr)
912 sta = ap_get_sta(hapd, addr);
915 hostapd_drv_sta_deauth(hapd, addr, reason);
919 ap_sta_set_authorized(hapd, sta, 0);
920 wpa_auth_sm_event(sta->wpa_sm, WPA_DEAUTH);
921 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
922 sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC);
923 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
924 "for " MACSTR " (%d seconds - "
925 "AP_MAX_INACTIVITY_AFTER_DEAUTH)",
926 __func__, MAC2STR(sta->addr),
927 AP_MAX_INACTIVITY_AFTER_DEAUTH);
928 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
929 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0,
930 ap_handle_timer, hapd, sta);
931 sta->timeout_next = STA_REMOVE;
933 sta->deauth_reason = reason;
934 sta->flags |= WLAN_STA_PENDING_DEAUTH_CB;
935 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
936 eloop_register_timeout(hapd->iface->drv_flags &
937 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
938 ap_sta_deauth_cb_timeout, hapd, sta);
942 void ap_sta_deauth_cb(struct hostapd_data *hapd, struct sta_info *sta)
944 if (!(sta->flags & WLAN_STA_PENDING_DEAUTH_CB)) {
945 wpa_printf(MSG_DEBUG, "Ignore deauth cb for test frame");
948 sta->flags &= ~WLAN_STA_PENDING_DEAUTH_CB;
949 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
950 ap_sta_deauth_cb_timeout(hapd, sta);
954 void ap_sta_disassoc_cb(struct hostapd_data *hapd, struct sta_info *sta)
956 if (!(sta->flags & WLAN_STA_PENDING_DISASSOC_CB)) {
957 wpa_printf(MSG_DEBUG, "Ignore disassoc cb for test frame");
960 sta->flags &= ~WLAN_STA_PENDING_DISASSOC_CB;
961 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
962 ap_sta_disassoc_cb_timeout(hapd, sta);