2 * hostapd / Station table
3 * Copyright (c) 2002-2011, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
9 #include "utils/includes.h"
11 #include "utils/common.h"
12 #include "utils/eloop.h"
13 #include "common/ieee802_11_defs.h"
14 #include "common/wpa_ctrl.h"
15 #include "common/sae.h"
16 #include "radius/radius.h"
17 #include "radius/radius_client.h"
18 #include "drivers/driver.h"
21 #include "accounting.h"
22 #include "ieee802_1x.h"
23 #include "ieee802_11.h"
24 #include "ieee802_11_auth.h"
26 #include "preauth_auth.h"
27 #include "ap_config.h"
30 #include "vlan_init.h"
31 #include "p2p_hostapd.h"
32 #include "ap_drv_ops.h"
36 static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd,
37 struct sta_info *sta);
38 static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx);
39 static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx);
40 static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx);
41 #ifdef CONFIG_IEEE80211W
42 static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx);
43 #endif /* CONFIG_IEEE80211W */
44 static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta);
46 int ap_for_each_sta(struct hostapd_data *hapd,
47 int (*cb)(struct hostapd_data *hapd, struct sta_info *sta,
53 for (sta = hapd->sta_list; sta; sta = sta->next) {
54 if (cb(hapd, sta, ctx))
62 struct sta_info * ap_get_sta(struct hostapd_data *hapd, const u8 *sta)
66 s = hapd->sta_hash[STA_HASH(sta)];
67 while (s != NULL && os_memcmp(s->addr, sta, 6) != 0)
73 static void ap_sta_list_del(struct hostapd_data *hapd, struct sta_info *sta)
77 if (hapd->sta_list == sta) {
78 hapd->sta_list = sta->next;
83 while (tmp != NULL && tmp->next != sta)
86 wpa_printf(MSG_DEBUG, "Could not remove STA " MACSTR " from "
87 "list.", MAC2STR(sta->addr));
89 tmp->next = sta->next;
93 void ap_sta_hash_add(struct hostapd_data *hapd, struct sta_info *sta)
95 sta->hnext = hapd->sta_hash[STA_HASH(sta->addr)];
96 hapd->sta_hash[STA_HASH(sta->addr)] = sta;
100 static void ap_sta_hash_del(struct hostapd_data *hapd, struct sta_info *sta)
104 s = hapd->sta_hash[STA_HASH(sta->addr)];
105 if (s == NULL) return;
106 if (os_memcmp(s->addr, sta->addr, 6) == 0) {
107 hapd->sta_hash[STA_HASH(sta->addr)] = s->hnext;
111 while (s->hnext != NULL &&
112 os_memcmp(s->hnext->addr, sta->addr, ETH_ALEN) != 0)
114 if (s->hnext != NULL)
115 s->hnext = s->hnext->hnext;
117 wpa_printf(MSG_DEBUG, "AP: could not remove STA " MACSTR
118 " from hash table", MAC2STR(sta->addr));
122 void ap_free_sta(struct hostapd_data *hapd, struct sta_info *sta)
126 accounting_sta_stop(hapd, sta);
129 ap_sta_set_authorized(hapd, sta, 0);
131 if (sta->flags & WLAN_STA_WDS)
132 hostapd_set_wds_sta(hapd, sta->addr, sta->aid, 0);
134 if (!(sta->flags & WLAN_STA_PREAUTH))
135 hostapd_drv_sta_remove(hapd, sta->addr);
137 ap_sta_hash_del(hapd, sta);
138 ap_sta_list_del(hapd, sta);
141 hapd->sta_aid[(sta->aid - 1) / 32] &=
142 ~BIT((sta->aid - 1) % 32);
145 if (sta->nonerp_set) {
147 hapd->iface->num_sta_non_erp--;
148 if (hapd->iface->num_sta_non_erp == 0)
152 if (sta->no_short_slot_time_set) {
153 sta->no_short_slot_time_set = 0;
154 hapd->iface->num_sta_no_short_slot_time--;
155 if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G
156 && hapd->iface->num_sta_no_short_slot_time == 0)
160 if (sta->no_short_preamble_set) {
161 sta->no_short_preamble_set = 0;
162 hapd->iface->num_sta_no_short_preamble--;
163 if (hapd->iface->current_mode->mode == HOSTAPD_MODE_IEEE80211G
164 && hapd->iface->num_sta_no_short_preamble == 0)
168 if (sta->no_ht_gf_set) {
169 sta->no_ht_gf_set = 0;
170 hapd->iface->num_sta_ht_no_gf--;
173 if (sta->no_ht_set) {
175 hapd->iface->num_sta_no_ht--;
178 if (sta->ht_20mhz_set) {
179 sta->ht_20mhz_set = 0;
180 hapd->iface->num_sta_ht_20mhz--;
184 if (sta->no_p2p_set) {
186 hapd->num_sta_no_p2p--;
187 if (hapd->num_sta_no_p2p == 0)
188 hostapd_p2p_non_p2p_sta_disconnected(hapd);
190 #endif /* CONFIG_P2P */
192 #if defined(NEED_AP_MLME) && defined(CONFIG_IEEE80211N)
193 if (hostapd_ht_operation_update(hapd->iface) > 0)
195 #endif /* NEED_AP_MLME && CONFIG_IEEE80211N */
198 ieee802_11_set_beacons(hapd->iface);
200 wpa_printf(MSG_DEBUG, "%s: cancel ap_handle_timer for " MACSTR,
201 __func__, MAC2STR(sta->addr));
202 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
203 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
204 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
205 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
207 ieee802_1x_free_station(sta);
208 wpa_auth_sta_deinit(sta->wpa_sm);
209 rsn_preauth_free_station(hapd, sta);
210 #ifndef CONFIG_NO_RADIUS
211 radius_client_flush_auth(hapd->radius, sta->addr);
212 #endif /* CONFIG_NO_RADIUS */
214 os_free(sta->last_assoc_req);
215 os_free(sta->challenge);
217 #ifdef CONFIG_IEEE80211W
218 os_free(sta->sa_query_trans_id);
219 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
220 #endif /* CONFIG_IEEE80211W */
223 p2p_group_notif_disassoc(hapd->p2p_group, sta->addr);
224 #endif /* CONFIG_P2P */
226 #ifdef CONFIG_INTERWORKING
227 if (sta->gas_dialog) {
229 for (i = 0; i < GAS_DIALOG_MAX; i++)
230 gas_serv_dialog_clear(&sta->gas_dialog[i]);
231 os_free(sta->gas_dialog);
233 #endif /* CONFIG_INTERWORKING */
235 wpabuf_free(sta->wps_ie);
236 wpabuf_free(sta->p2p_ie);
237 wpabuf_free(sta->hs20_ie);
239 os_free(sta->ht_capabilities);
240 hostapd_free_psk_list(sta->psk);
241 os_free(sta->identity);
242 os_free(sta->radius_cui);
245 sae_clear_data(sta->sae);
247 #endif /* CONFIG_SAE */
253 void hostapd_free_stas(struct hostapd_data *hapd)
255 struct sta_info *sta, *prev;
257 sta = hapd->sta_list;
261 if (sta->flags & WLAN_STA_AUTH) {
262 mlme_deauthenticate_indication(
263 hapd, sta, WLAN_REASON_UNSPECIFIED);
266 wpa_printf(MSG_DEBUG, "Removing station " MACSTR,
267 MAC2STR(prev->addr));
268 ap_free_sta(hapd, prev);
274 * ap_handle_timer - Per STA timer handler
275 * @eloop_ctx: struct hostapd_data *
276 * @timeout_ctx: struct sta_info *
278 * This function is called to check station activity and to remove inactive
281 void ap_handle_timer(void *eloop_ctx, void *timeout_ctx)
283 struct hostapd_data *hapd = eloop_ctx;
284 struct sta_info *sta = timeout_ctx;
285 unsigned long next_time = 0;
288 wpa_printf(MSG_DEBUG, "%s: " MACSTR " flags=0x%x timeout_next=%d",
289 __func__, MAC2STR(sta->addr), sta->flags,
291 if (sta->timeout_next == STA_REMOVE) {
292 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
293 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
294 "local deauth request");
295 ap_free_sta(hapd, sta);
299 if ((sta->flags & WLAN_STA_ASSOC) &&
300 (sta->timeout_next == STA_NULLFUNC ||
301 sta->timeout_next == STA_DISASSOC)) {
304 * Add random value to timeout so that we don't end up bouncing
305 * all stations at the same time if we have lots of associated
306 * stations that are idle (but keep re-associating).
308 int fuzz = os_random() % 20;
309 inactive_sec = hostapd_drv_get_inact_sec(hapd, sta->addr);
310 if (inactive_sec == -1) {
311 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
312 "Check inactivity: Could not "
313 "get station info from kernel driver for "
314 MACSTR, MAC2STR(sta->addr));
316 * The driver may not support this functionality.
317 * Anyway, try again after the next inactivity timeout,
318 * but do not disconnect the station now.
320 next_time = hapd->conf->ap_max_inactivity + fuzz;
321 } else if (inactive_sec < hapd->conf->ap_max_inactivity &&
322 sta->flags & WLAN_STA_ASSOC) {
323 /* station activity detected; reset timeout state */
324 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
325 "Station " MACSTR " has been active %is ago",
326 MAC2STR(sta->addr), inactive_sec);
327 sta->timeout_next = STA_NULLFUNC;
328 next_time = hapd->conf->ap_max_inactivity + fuzz -
331 wpa_msg(hapd->msg_ctx, MSG_DEBUG,
332 "Station " MACSTR " has been "
333 "inactive too long: %d sec, max allowed: %d",
334 MAC2STR(sta->addr), inactive_sec,
335 hapd->conf->ap_max_inactivity);
337 if (hapd->conf->skip_inactivity_poll)
338 sta->timeout_next = STA_DISASSOC;
342 if ((sta->flags & WLAN_STA_ASSOC) &&
343 sta->timeout_next == STA_DISASSOC &&
344 !(sta->flags & WLAN_STA_PENDING_POLL) &&
345 !hapd->conf->skip_inactivity_poll) {
346 wpa_msg(hapd->msg_ctx, MSG_DEBUG, "Station " MACSTR
347 " has ACKed data poll", MAC2STR(sta->addr));
348 /* data nullfunc frame poll did not produce TX errors; assume
349 * station ACKed it */
350 sta->timeout_next = STA_NULLFUNC;
351 next_time = hapd->conf->ap_max_inactivity;
355 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
356 "for " MACSTR " (%lu seconds)",
357 __func__, MAC2STR(sta->addr), next_time);
358 eloop_register_timeout(next_time, 0, ap_handle_timer, hapd,
363 if (sta->timeout_next == STA_NULLFUNC &&
364 (sta->flags & WLAN_STA_ASSOC)) {
365 wpa_printf(MSG_DEBUG, " Polling STA");
366 sta->flags |= WLAN_STA_PENDING_POLL;
367 hostapd_drv_poll_client(hapd, hapd->own_addr, sta->addr,
368 sta->flags & WLAN_STA_WMM);
369 } else if (sta->timeout_next != STA_REMOVE) {
370 int deauth = sta->timeout_next == STA_DEAUTH;
372 wpa_dbg(hapd->msg_ctx, MSG_DEBUG,
373 "Timeout, sending %s info to STA " MACSTR,
374 deauth ? "deauthentication" : "disassociation",
378 hostapd_drv_sta_deauth(
380 WLAN_REASON_PREV_AUTH_NOT_VALID);
382 reason = (sta->timeout_next == STA_DISASSOC) ?
383 WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY :
384 WLAN_REASON_PREV_AUTH_NOT_VALID;
386 hostapd_drv_sta_disassoc(hapd, sta->addr, reason);
390 switch (sta->timeout_next) {
392 sta->timeout_next = STA_DISASSOC;
393 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
394 "for " MACSTR " (%d seconds - AP_DISASSOC_DELAY)",
395 __func__, MAC2STR(sta->addr), AP_DISASSOC_DELAY);
396 eloop_register_timeout(AP_DISASSOC_DELAY, 0, ap_handle_timer,
400 case STA_DISASSOC_FROM_CLI:
401 ap_sta_set_authorized(hapd, sta, 0);
402 sta->flags &= ~WLAN_STA_ASSOC;
403 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
404 if (!sta->acct_terminate_cause)
405 sta->acct_terminate_cause =
406 RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT;
407 accounting_sta_stop(hapd, sta);
408 ieee802_1x_free_station(sta);
409 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
410 HOSTAPD_LEVEL_INFO, "disassociated due to "
412 reason = (sta->timeout_next == STA_DISASSOC) ?
413 WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY :
414 WLAN_REASON_PREV_AUTH_NOT_VALID;
415 sta->timeout_next = STA_DEAUTH;
416 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
417 "for " MACSTR " (%d seconds - AP_DEAUTH_DELAY)",
418 __func__, MAC2STR(sta->addr), AP_DEAUTH_DELAY);
419 eloop_register_timeout(AP_DEAUTH_DELAY, 0, ap_handle_timer,
421 mlme_disassociate_indication(hapd, sta, reason);
425 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
426 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
427 "inactivity (timer DEAUTH/REMOVE)");
428 if (!sta->acct_terminate_cause)
429 sta->acct_terminate_cause =
430 RADIUS_ACCT_TERMINATE_CAUSE_IDLE_TIMEOUT;
431 mlme_deauthenticate_indication(
433 WLAN_REASON_PREV_AUTH_NOT_VALID);
434 ap_free_sta(hapd, sta);
440 static void ap_handle_session_timer(void *eloop_ctx, void *timeout_ctx)
442 struct hostapd_data *hapd = eloop_ctx;
443 struct sta_info *sta = timeout_ctx;
446 if (!(sta->flags & WLAN_STA_AUTH)) {
447 if (sta->flags & WLAN_STA_GAS) {
448 wpa_printf(MSG_DEBUG, "GAS: Remove temporary STA "
449 "entry " MACSTR, MAC2STR(sta->addr));
450 ap_free_sta(hapd, sta);
455 mlme_deauthenticate_indication(hapd, sta,
456 WLAN_REASON_PREV_AUTH_NOT_VALID);
457 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
458 HOSTAPD_LEVEL_INFO, "deauthenticated due to "
460 sta->acct_terminate_cause =
461 RADIUS_ACCT_TERMINATE_CAUSE_SESSION_TIMEOUT;
462 os_memcpy(addr, sta->addr, ETH_ALEN);
463 ap_free_sta(hapd, sta);
464 hostapd_drv_sta_deauth(hapd, addr, WLAN_REASON_PREV_AUTH_NOT_VALID);
468 void ap_sta_session_timeout(struct hostapd_data *hapd, struct sta_info *sta,
471 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
472 HOSTAPD_LEVEL_DEBUG, "setting session timeout to %d "
473 "seconds", session_timeout);
474 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
475 eloop_register_timeout(session_timeout, 0, ap_handle_session_timer,
480 void ap_sta_no_session_timeout(struct hostapd_data *hapd, struct sta_info *sta)
482 eloop_cancel_timeout(ap_handle_session_timer, hapd, sta);
486 struct sta_info * ap_sta_add(struct hostapd_data *hapd, const u8 *addr)
488 struct sta_info *sta;
490 sta = ap_get_sta(hapd, addr);
494 wpa_printf(MSG_DEBUG, " New STA");
495 if (hapd->num_sta >= hapd->conf->max_num_sta) {
496 /* FIX: might try to remove some old STAs first? */
497 wpa_printf(MSG_DEBUG, "no more room for new STAs (%d/%d)",
498 hapd->num_sta, hapd->conf->max_num_sta);
502 sta = os_zalloc(sizeof(struct sta_info));
504 wpa_printf(MSG_ERROR, "malloc failed");
507 sta->acct_interim_interval = hapd->conf->acct_interim_interval;
508 accounting_sta_get_id(hapd, sta);
510 /* initialize STA info data */
511 wpa_printf(MSG_DEBUG, "%s: register ap_handle_timer timeout "
512 "for " MACSTR " (%d seconds - ap_max_inactivity)",
513 __func__, MAC2STR(addr),
514 hapd->conf->ap_max_inactivity);
515 eloop_register_timeout(hapd->conf->ap_max_inactivity, 0,
516 ap_handle_timer, hapd, sta);
517 os_memcpy(sta->addr, addr, ETH_ALEN);
518 sta->next = hapd->sta_list;
519 hapd->sta_list = sta;
521 ap_sta_hash_add(hapd, sta);
522 sta->ssid = &hapd->conf->ssid;
523 ap_sta_remove_in_other_bss(hapd, sta);
529 static int ap_sta_remove(struct hostapd_data *hapd, struct sta_info *sta)
531 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
533 wpa_printf(MSG_DEBUG, "Removing STA " MACSTR " from kernel driver",
535 if (hostapd_drv_sta_remove(hapd, sta->addr) &&
536 sta->flags & WLAN_STA_ASSOC) {
537 wpa_printf(MSG_DEBUG, "Could not remove station " MACSTR
538 " from kernel driver.", MAC2STR(sta->addr));
545 static void ap_sta_remove_in_other_bss(struct hostapd_data *hapd,
546 struct sta_info *sta)
548 struct hostapd_iface *iface = hapd->iface;
551 for (i = 0; i < iface->num_bss; i++) {
552 struct hostapd_data *bss = iface->bss[i];
553 struct sta_info *sta2;
554 /* bss should always be set during operation, but it may be
555 * NULL during reconfiguration. Assume the STA is not
556 * associated to another BSS in that case to avoid NULL pointer
558 if (bss == hapd || bss == NULL)
560 sta2 = ap_get_sta(bss, sta->addr);
564 ap_sta_disconnect(bss, sta2, sta2->addr,
565 WLAN_REASON_PREV_AUTH_NOT_VALID);
570 static void ap_sta_disassoc_cb_timeout(void *eloop_ctx, void *timeout_ctx)
572 struct hostapd_data *hapd = eloop_ctx;
573 struct sta_info *sta = timeout_ctx;
575 ap_sta_remove(hapd, sta);
576 mlme_disassociate_indication(hapd, sta, sta->disassoc_reason);
580 void ap_sta_disassociate(struct hostapd_data *hapd, struct sta_info *sta,
583 wpa_printf(MSG_DEBUG, "%s: disassociate STA " MACSTR,
584 hapd->conf->iface, MAC2STR(sta->addr));
585 sta->flags &= ~(WLAN_STA_ASSOC | WLAN_STA_ASSOC_REQ_OK);
586 ap_sta_set_authorized(hapd, sta, 0);
587 sta->timeout_next = STA_DEAUTH;
588 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
589 "for " MACSTR " (%d seconds - "
590 "AP_MAX_INACTIVITY_AFTER_DISASSOC)",
591 __func__, MAC2STR(sta->addr),
592 AP_MAX_INACTIVITY_AFTER_DISASSOC);
593 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
594 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DISASSOC, 0,
595 ap_handle_timer, hapd, sta);
596 accounting_sta_stop(hapd, sta);
597 ieee802_1x_free_station(sta);
599 sta->disassoc_reason = reason;
600 sta->flags |= WLAN_STA_PENDING_DISASSOC_CB;
601 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
602 eloop_register_timeout(hapd->iface->drv_flags &
603 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
604 ap_sta_disassoc_cb_timeout, hapd, sta);
608 static void ap_sta_deauth_cb_timeout(void *eloop_ctx, void *timeout_ctx)
610 struct hostapd_data *hapd = eloop_ctx;
611 struct sta_info *sta = timeout_ctx;
613 ap_sta_remove(hapd, sta);
614 mlme_deauthenticate_indication(hapd, sta, sta->deauth_reason);
618 void ap_sta_deauthenticate(struct hostapd_data *hapd, struct sta_info *sta,
621 wpa_printf(MSG_DEBUG, "%s: deauthenticate STA " MACSTR,
622 hapd->conf->iface, MAC2STR(sta->addr));
623 sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC);
624 ap_sta_set_authorized(hapd, sta, 0);
625 sta->timeout_next = STA_REMOVE;
626 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
627 "for " MACSTR " (%d seconds - "
628 "AP_MAX_INACTIVITY_AFTER_DEAUTH)",
629 __func__, MAC2STR(sta->addr),
630 AP_MAX_INACTIVITY_AFTER_DEAUTH);
631 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
632 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0,
633 ap_handle_timer, hapd, sta);
634 accounting_sta_stop(hapd, sta);
635 ieee802_1x_free_station(sta);
637 sta->deauth_reason = reason;
638 sta->flags |= WLAN_STA_PENDING_DEAUTH_CB;
639 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
640 eloop_register_timeout(hapd->iface->drv_flags &
641 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
642 ap_sta_deauth_cb_timeout, hapd, sta);
647 int ap_sta_wps_cancel(struct hostapd_data *hapd,
648 struct sta_info *sta, void *ctx)
650 if (sta && (sta->flags & WLAN_STA_WPS)) {
651 ap_sta_deauthenticate(hapd, sta,
652 WLAN_REASON_PREV_AUTH_NOT_VALID);
653 wpa_printf(MSG_DEBUG, "WPS: %s: Deauth sta=" MACSTR,
654 __func__, MAC2STR(sta->addr));
660 #endif /* CONFIG_WPS */
663 int ap_sta_bind_vlan(struct hostapd_data *hapd, struct sta_info *sta,
666 #ifndef CONFIG_NO_VLAN
668 struct hostapd_vlan *vlan = NULL;
672 * Do not proceed furthur if the vlan id remains same. We do not want
673 * duplicate dynamic vlan entries.
675 if (sta->vlan_id == old_vlanid)
679 * During 1x reauth, if the vlan id changes, then remove the old id and
680 * proceed furthur to add the new one.
683 vlan_remove_dynamic(hapd, old_vlanid);
685 iface = hapd->conf->iface;
686 if (sta->ssid->vlan[0])
687 iface = sta->ssid->vlan;
689 if (sta->ssid->dynamic_vlan == DYNAMIC_VLAN_DISABLED)
691 else if (sta->vlan_id > 0) {
692 vlan = hapd->conf->vlan;
694 if (vlan->vlan_id == sta->vlan_id ||
695 vlan->vlan_id == VLAN_ID_WILDCARD) {
696 iface = vlan->ifname;
703 if (sta->vlan_id > 0 && vlan == NULL) {
704 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
705 HOSTAPD_LEVEL_DEBUG, "could not find VLAN for "
706 "binding station to (vlan_id=%d)",
709 } else if (sta->vlan_id > 0 && vlan->vlan_id == VLAN_ID_WILDCARD) {
710 vlan = vlan_add_dynamic(hapd, vlan, sta->vlan_id);
712 hostapd_logger(hapd, sta->addr,
713 HOSTAPD_MODULE_IEEE80211,
714 HOSTAPD_LEVEL_DEBUG, "could not add "
715 "dynamic VLAN interface for vlan_id=%d",
720 iface = vlan->ifname;
721 if (vlan_setup_encryption_dyn(hapd, sta->ssid, iface) != 0) {
722 hostapd_logger(hapd, sta->addr,
723 HOSTAPD_MODULE_IEEE80211,
724 HOSTAPD_LEVEL_DEBUG, "could not "
725 "configure encryption for dynamic VLAN "
726 "interface for vlan_id=%d",
730 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
731 HOSTAPD_LEVEL_DEBUG, "added new dynamic VLAN "
732 "interface '%s'", iface);
733 } else if (vlan && vlan->vlan_id == sta->vlan_id) {
734 if (sta->vlan_id > 0) {
735 vlan->dynamic_vlan++;
736 hostapd_logger(hapd, sta->addr,
737 HOSTAPD_MODULE_IEEE80211,
738 HOSTAPD_LEVEL_DEBUG, "updated existing "
739 "dynamic VLAN interface '%s'", iface);
743 * Update encryption configuration for statically generated
744 * VLAN interface. This is only used for static WEP
745 * configuration for the case where hostapd did not yet know
746 * which keys are to be used when the interface was added.
748 if (vlan_setup_encryption_dyn(hapd, sta->ssid, iface) != 0) {
749 hostapd_logger(hapd, sta->addr,
750 HOSTAPD_MODULE_IEEE80211,
751 HOSTAPD_LEVEL_DEBUG, "could not "
752 "configure encryption for VLAN "
753 "interface for vlan_id=%d",
758 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
759 HOSTAPD_LEVEL_DEBUG, "binding station to interface "
762 if (wpa_auth_sta_set_vlan(sta->wpa_sm, sta->vlan_id) < 0)
763 wpa_printf(MSG_INFO, "Failed to update VLAN-ID for WPA");
765 ret = hostapd_drv_set_sta_vlan(iface, hapd, sta->addr, sta->vlan_id);
767 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
768 HOSTAPD_LEVEL_DEBUG, "could not bind the STA "
769 "entry to vlan_id=%d", sta->vlan_id);
772 #else /* CONFIG_NO_VLAN */
774 #endif /* CONFIG_NO_VLAN */
778 #ifdef CONFIG_IEEE80211W
780 int ap_check_sa_query_timeout(struct hostapd_data *hapd, struct sta_info *sta)
783 struct os_time now, passed;
785 os_time_sub(&now, &sta->sa_query_start, &passed);
786 tu = (passed.sec * 1000000 + passed.usec) / 1024;
787 if (hapd->conf->assoc_sa_query_max_timeout < tu) {
788 hostapd_logger(hapd, sta->addr,
789 HOSTAPD_MODULE_IEEE80211,
791 "association SA Query timed out");
792 sta->sa_query_timed_out = 1;
793 os_free(sta->sa_query_trans_id);
794 sta->sa_query_trans_id = NULL;
795 sta->sa_query_count = 0;
796 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
804 static void ap_sa_query_timer(void *eloop_ctx, void *timeout_ctx)
806 struct hostapd_data *hapd = eloop_ctx;
807 struct sta_info *sta = timeout_ctx;
808 unsigned int timeout, sec, usec;
811 if (sta->sa_query_count > 0 &&
812 ap_check_sa_query_timeout(hapd, sta))
815 nbuf = os_realloc_array(sta->sa_query_trans_id,
816 sta->sa_query_count + 1,
817 WLAN_SA_QUERY_TR_ID_LEN);
820 if (sta->sa_query_count == 0) {
821 /* Starting a new SA Query procedure */
822 os_get_time(&sta->sa_query_start);
824 trans_id = nbuf + sta->sa_query_count * WLAN_SA_QUERY_TR_ID_LEN;
825 sta->sa_query_trans_id = nbuf;
826 sta->sa_query_count++;
828 os_get_random(trans_id, WLAN_SA_QUERY_TR_ID_LEN);
830 timeout = hapd->conf->assoc_sa_query_retry_timeout;
831 sec = ((timeout / 1000) * 1024) / 1000;
832 usec = (timeout % 1000) * 1024;
833 eloop_register_timeout(sec, usec, ap_sa_query_timer, hapd, sta);
835 hostapd_logger(hapd, sta->addr, HOSTAPD_MODULE_IEEE80211,
837 "association SA Query attempt %d", sta->sa_query_count);
839 ieee802_11_send_sa_query_req(hapd, sta->addr, trans_id);
843 void ap_sta_start_sa_query(struct hostapd_data *hapd, struct sta_info *sta)
845 ap_sa_query_timer(hapd, sta);
849 void ap_sta_stop_sa_query(struct hostapd_data *hapd, struct sta_info *sta)
851 eloop_cancel_timeout(ap_sa_query_timer, hapd, sta);
852 os_free(sta->sa_query_trans_id);
853 sta->sa_query_trans_id = NULL;
854 sta->sa_query_count = 0;
857 #endif /* CONFIG_IEEE80211W */
860 void ap_sta_set_authorized(struct hostapd_data *hapd, struct sta_info *sta,
863 const u8 *dev_addr = NULL;
867 #endif /* CONFIG_P2P */
869 if (!!authorized == !!(sta->flags & WLAN_STA_AUTHORIZED))
873 if (hapd->p2p_group == NULL) {
874 if (sta->p2p_ie != NULL &&
875 p2p_parse_dev_addr_in_p2p_ie(sta->p2p_ie, addr) == 0)
878 dev_addr = p2p_group_get_dev_addr(hapd->p2p_group, sta->addr);
879 #endif /* CONFIG_P2P */
882 os_snprintf(buf, sizeof(buf), MACSTR " p2p_dev_addr=" MACSTR,
883 MAC2STR(sta->addr), MAC2STR(dev_addr));
885 os_snprintf(buf, sizeof(buf), MACSTR, MAC2STR(sta->addr));
888 wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_CONNECTED "%s", buf);
890 if (hapd->msg_ctx_parent &&
891 hapd->msg_ctx_parent != hapd->msg_ctx)
892 wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO,
893 AP_STA_CONNECTED "%s", buf);
895 sta->flags |= WLAN_STA_AUTHORIZED;
897 wpa_msg(hapd->msg_ctx, MSG_INFO, AP_STA_DISCONNECTED "%s", buf);
899 if (hapd->msg_ctx_parent &&
900 hapd->msg_ctx_parent != hapd->msg_ctx)
901 wpa_msg_no_global(hapd->msg_ctx_parent, MSG_INFO,
902 AP_STA_DISCONNECTED "%s", buf);
904 sta->flags &= ~WLAN_STA_AUTHORIZED;
907 if (hapd->sta_authorized_cb)
908 hapd->sta_authorized_cb(hapd->sta_authorized_cb_ctx,
909 sta->addr, authorized, dev_addr);
913 void ap_sta_disconnect(struct hostapd_data *hapd, struct sta_info *sta,
914 const u8 *addr, u16 reason)
917 if (sta == NULL && addr)
918 sta = ap_get_sta(hapd, addr);
921 hostapd_drv_sta_deauth(hapd, addr, reason);
925 ap_sta_set_authorized(hapd, sta, 0);
926 wpa_auth_sm_event(sta->wpa_sm, WPA_DEAUTH);
927 ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
928 sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC);
929 wpa_printf(MSG_DEBUG, "%s: reschedule ap_handle_timer timeout "
930 "for " MACSTR " (%d seconds - "
931 "AP_MAX_INACTIVITY_AFTER_DEAUTH)",
932 __func__, MAC2STR(sta->addr),
933 AP_MAX_INACTIVITY_AFTER_DEAUTH);
934 eloop_cancel_timeout(ap_handle_timer, hapd, sta);
935 eloop_register_timeout(AP_MAX_INACTIVITY_AFTER_DEAUTH, 0,
936 ap_handle_timer, hapd, sta);
937 sta->timeout_next = STA_REMOVE;
939 sta->deauth_reason = reason;
940 sta->flags |= WLAN_STA_PENDING_DEAUTH_CB;
941 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
942 eloop_register_timeout(hapd->iface->drv_flags &
943 WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS ? 2 : 0, 0,
944 ap_sta_deauth_cb_timeout, hapd, sta);
948 void ap_sta_deauth_cb(struct hostapd_data *hapd, struct sta_info *sta)
950 if (!(sta->flags & WLAN_STA_PENDING_DEAUTH_CB)) {
951 wpa_printf(MSG_DEBUG, "Ignore deauth cb for test frame");
954 sta->flags &= ~WLAN_STA_PENDING_DEAUTH_CB;
955 eloop_cancel_timeout(ap_sta_deauth_cb_timeout, hapd, sta);
956 ap_sta_deauth_cb_timeout(hapd, sta);
960 void ap_sta_disassoc_cb(struct hostapd_data *hapd, struct sta_info *sta)
962 if (!(sta->flags & WLAN_STA_PENDING_DISASSOC_CB)) {
963 wpa_printf(MSG_DEBUG, "Ignore disassoc cb for test frame");
966 sta->flags &= ~WLAN_STA_PENDING_DISASSOC_CB;
967 eloop_cancel_timeout(ap_sta_disassoc_cb_timeout, hapd, sta);
968 ap_sta_disassoc_cb_timeout(hapd, sta);