3 * Copyright (c) 2003-2016, Jouni Malinen <j@w1.fi>
5 * This software may be distributed under the terms of the BSD license.
6 * See README for more details.
8 * This file implements functions for registering and unregistering
9 * %wpa_supplicant interfaces. In addition, this file contains number of
10 * functions for managing network connections.
14 #ifdef CONFIG_MATCH_IFACE
17 #endif /* CONFIG_MATCH_IFACE */
20 #include "crypto/random.h"
21 #include "crypto/sha1.h"
22 #include "eapol_supp/eapol_supp_sm.h"
23 #include "eap_peer/eap.h"
24 #include "eap_peer/eap_proxy.h"
25 #include "eap_server/eap_methods.h"
26 #include "rsn_supp/wpa.h"
29 #include "utils/ext_password.h"
30 #include "l2_packet/l2_packet.h"
31 #include "wpa_supplicant_i.h"
33 #include "ctrl_iface.h"
34 #include "pcsc_funcs.h"
35 #include "common/version.h"
36 #include "rsn_supp/preauth.h"
37 #include "rsn_supp/pmksa_cache.h"
38 #include "common/wpa_ctrl.h"
39 #include "common/ieee802_11_defs.h"
40 #include "common/hw_features_common.h"
43 #include "blacklist.h"
44 #include "wpas_glue.h"
45 #include "wps_supplicant.h"
48 #include "gas_query.h"
50 #include "p2p_supplicant.h"
51 #include "wifi_display.h"
57 #include "offchannel.h"
58 #include "hs20_supplicant.h"
63 const char *const wpa_supplicant_version =
64 "wpa_supplicant v" VERSION_STR "\n"
65 "Copyright (c) 2003-2016, Jouni Malinen <j@w1.fi> and contributors";
67 const char *const wpa_supplicant_license =
68 "This software may be distributed under the terms of the BSD license.\n"
69 "See README for more details.\n"
70 #ifdef EAP_TLS_OPENSSL
71 "\nThis product includes software developed by the OpenSSL Project\n"
72 "for use in the OpenSSL Toolkit (http://www.openssl.org/)\n"
73 #endif /* EAP_TLS_OPENSSL */
76 #ifndef CONFIG_NO_STDOUT_DEBUG
77 /* Long text divided into parts in order to fit in C89 strings size limits. */
78 const char *const wpa_supplicant_full_license1 =
80 const char *const wpa_supplicant_full_license2 =
81 "This software may be distributed under the terms of the BSD license.\n"
83 "Redistribution and use in source and binary forms, with or without\n"
84 "modification, are permitted provided that the following conditions are\n"
87 const char *const wpa_supplicant_full_license3 =
88 "1. Redistributions of source code must retain the above copyright\n"
89 " notice, this list of conditions and the following disclaimer.\n"
91 "2. Redistributions in binary form must reproduce the above copyright\n"
92 " notice, this list of conditions and the following disclaimer in the\n"
93 " documentation and/or other materials provided with the distribution.\n"
95 const char *const wpa_supplicant_full_license4 =
96 "3. Neither the name(s) of the above-listed copyright holder(s) nor the\n"
97 " names of its contributors may be used to endorse or promote products\n"
98 " derived from this software without specific prior written permission.\n"
100 "THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS\n"
101 "\"AS IS\" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT\n"
102 "LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR\n"
103 "A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT\n";
104 const char *const wpa_supplicant_full_license5 =
105 "OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,\n"
106 "SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT\n"
107 "LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,\n"
108 "DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY\n"
109 "THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT\n"
110 "(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE\n"
111 "OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n"
113 #endif /* CONFIG_NO_STDOUT_DEBUG */
115 /* Configure default/group WEP keys for static WEP */
116 int wpa_set_wep_keys(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
120 for (i = 0; i < NUM_WEP_KEYS; i++) {
121 if (ssid->wep_key_len[i] == 0)
125 wpa_drv_set_key(wpa_s, WPA_ALG_WEP, NULL,
126 i, i == ssid->wep_tx_keyidx, NULL, 0,
127 ssid->wep_key[i], ssid->wep_key_len[i]);
134 int wpa_supplicant_set_wpa_none_key(struct wpa_supplicant *wpa_s,
135 struct wpa_ssid *ssid)
143 /* IBSS/WPA-None uses only one key (Group) for both receiving and
144 * sending unicast and multicast packets. */
146 if (ssid->mode != WPAS_MODE_IBSS) {
147 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid mode %d (not "
148 "IBSS/ad-hoc) for WPA-None", ssid->mode);
152 if (!ssid->psk_set) {
153 wpa_msg(wpa_s, MSG_INFO, "WPA: No PSK configured for "
158 switch (wpa_s->group_cipher) {
159 case WPA_CIPHER_CCMP:
160 os_memcpy(key, ssid->psk, 16);
164 case WPA_CIPHER_GCMP:
165 os_memcpy(key, ssid->psk, 16);
169 case WPA_CIPHER_TKIP:
170 /* WPA-None uses the same Michael MIC key for both TX and RX */
171 os_memcpy(key, ssid->psk, 16 + 8);
172 os_memcpy(key + 16 + 8, ssid->psk + 16, 8);
177 wpa_msg(wpa_s, MSG_INFO, "WPA: Invalid group cipher %d for "
178 "WPA-None", wpa_s->group_cipher);
182 /* TODO: should actually remember the previously used seq#, both for TX
183 * and RX from each STA.. */
185 ret = wpa_drv_set_key(wpa_s, alg, NULL, 0, 1, seq, 6, key, keylen);
186 os_memset(key, 0, sizeof(key));
191 static void wpa_supplicant_timeout(void *eloop_ctx, void *timeout_ctx)
193 struct wpa_supplicant *wpa_s = eloop_ctx;
194 const u8 *bssid = wpa_s->bssid;
195 if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
196 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
197 wpa_s->wpa_state == WPA_ASSOCIATING))
198 bssid = wpa_s->pending_bssid;
199 wpa_msg(wpa_s, MSG_INFO, "Authentication with " MACSTR " timed out.",
201 wpa_blacklist_add(wpa_s, bssid);
202 wpa_sm_notify_disassoc(wpa_s->wpa);
203 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
204 wpa_s->reassociate = 1;
207 * If we timed out, the AP or the local radio may be busy.
208 * So, wait a second until scanning again.
210 wpa_supplicant_req_scan(wpa_s, 1, 0);
215 * wpa_supplicant_req_auth_timeout - Schedule a timeout for authentication
216 * @wpa_s: Pointer to wpa_supplicant data
217 * @sec: Number of seconds after which to time out authentication
218 * @usec: Number of microseconds after which to time out authentication
220 * This function is used to schedule a timeout for the current authentication
223 void wpa_supplicant_req_auth_timeout(struct wpa_supplicant *wpa_s,
226 if (wpa_s->conf->ap_scan == 0 &&
227 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED))
230 wpa_dbg(wpa_s, MSG_DEBUG, "Setting authentication timeout: %d sec "
231 "%d usec", sec, usec);
232 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
233 eloop_register_timeout(sec, usec, wpa_supplicant_timeout, wpa_s, NULL);
238 * wpa_supplicant_cancel_auth_timeout - Cancel authentication timeout
239 * @wpa_s: Pointer to wpa_supplicant data
241 * This function is used to cancel authentication timeout scheduled with
242 * wpa_supplicant_req_auth_timeout() and it is called when authentication has
245 void wpa_supplicant_cancel_auth_timeout(struct wpa_supplicant *wpa_s)
247 wpa_dbg(wpa_s, MSG_DEBUG, "Cancelling authentication timeout");
248 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
249 wpa_blacklist_del(wpa_s, wpa_s->bssid);
254 * wpa_supplicant_initiate_eapol - Configure EAPOL state machine
255 * @wpa_s: Pointer to wpa_supplicant data
257 * This function is used to configure EAPOL state machine based on the selected
258 * authentication mode.
260 void wpa_supplicant_initiate_eapol(struct wpa_supplicant *wpa_s)
262 #ifdef IEEE8021X_EAPOL
263 struct eapol_config eapol_conf;
264 struct wpa_ssid *ssid = wpa_s->current_ssid;
266 #ifdef CONFIG_IBSS_RSN
267 if (ssid->mode == WPAS_MODE_IBSS &&
268 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
269 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
271 * RSN IBSS authentication is per-STA and we can disable the
272 * per-BSSID EAPOL authentication.
274 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
275 eapol_sm_notify_eap_success(wpa_s->eapol, TRUE);
276 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
279 #endif /* CONFIG_IBSS_RSN */
281 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
282 eapol_sm_notify_eap_fail(wpa_s->eapol, FALSE);
284 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
285 wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE)
286 eapol_sm_notify_portControl(wpa_s->eapol, ForceAuthorized);
288 eapol_sm_notify_portControl(wpa_s->eapol, Auto);
290 os_memset(&eapol_conf, 0, sizeof(eapol_conf));
291 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
292 eapol_conf.accept_802_1x_keys = 1;
293 eapol_conf.required_keys = 0;
294 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_UNICAST) {
295 eapol_conf.required_keys |= EAPOL_REQUIRE_KEY_UNICAST;
297 if (ssid->eapol_flags & EAPOL_FLAG_REQUIRE_KEY_BROADCAST) {
298 eapol_conf.required_keys |=
299 EAPOL_REQUIRE_KEY_BROADCAST;
302 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED)
303 eapol_conf.required_keys = 0;
305 eapol_conf.fast_reauth = wpa_s->conf->fast_reauth;
306 eapol_conf.workaround = ssid->eap_workaround;
307 eapol_conf.eap_disabled =
308 !wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) &&
309 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA &&
310 wpa_s->key_mgmt != WPA_KEY_MGMT_WPS;
311 eapol_conf.external_sim = wpa_s->conf->external_sim;
314 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
315 eapol_conf.wps |= EAPOL_LOCAL_WPS_IN_USE;
316 if (wpa_s->current_bss) {
318 ie = wpa_bss_get_vendor_ie_multi(wpa_s->current_bss,
323 EAPOL_PEER_IS_WPS20_AP;
328 #endif /* CONFIG_WPS */
330 eapol_sm_notify_config(wpa_s->eapol, &ssid->eap, &eapol_conf);
332 ieee802_1x_alloc_kay_sm(wpa_s, ssid);
333 #endif /* IEEE8021X_EAPOL */
338 * wpa_supplicant_set_non_wpa_policy - Set WPA parameters to non-WPA mode
339 * @wpa_s: Pointer to wpa_supplicant data
340 * @ssid: Configuration data for the network
342 * This function is used to configure WPA state machine and related parameters
343 * to a mode where WPA is not enabled. This is called as part of the
344 * authentication configuration when the selected network does not use WPA.
346 void wpa_supplicant_set_non_wpa_policy(struct wpa_supplicant *wpa_s,
347 struct wpa_ssid *ssid)
351 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS)
352 wpa_s->key_mgmt = WPA_KEY_MGMT_WPS;
353 else if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA)
354 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_NO_WPA;
356 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE;
357 wpa_sm_set_ap_wpa_ie(wpa_s->wpa, NULL, 0);
358 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, NULL, 0);
359 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
360 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
361 wpa_s->group_cipher = WPA_CIPHER_NONE;
362 wpa_s->mgmt_group_cipher = 0;
364 for (i = 0; i < NUM_WEP_KEYS; i++) {
365 if (ssid->wep_key_len[i] > 5) {
366 wpa_s->pairwise_cipher = WPA_CIPHER_WEP104;
367 wpa_s->group_cipher = WPA_CIPHER_WEP104;
369 } else if (ssid->wep_key_len[i] > 0) {
370 wpa_s->pairwise_cipher = WPA_CIPHER_WEP40;
371 wpa_s->group_cipher = WPA_CIPHER_WEP40;
376 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED, 0);
377 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
378 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
379 wpa_s->pairwise_cipher);
380 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
381 #ifdef CONFIG_IEEE80211W
382 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
383 wpa_s->mgmt_group_cipher);
384 #endif /* CONFIG_IEEE80211W */
386 pmksa_cache_clear_current(wpa_s->wpa);
390 void free_hw_features(struct wpa_supplicant *wpa_s)
393 if (wpa_s->hw.modes == NULL)
396 for (i = 0; i < wpa_s->hw.num_modes; i++) {
397 os_free(wpa_s->hw.modes[i].channels);
398 os_free(wpa_s->hw.modes[i].rates);
401 os_free(wpa_s->hw.modes);
402 wpa_s->hw.modes = NULL;
406 static void free_bss_tmp_disallowed(struct wpa_supplicant *wpa_s)
408 struct wpa_bss_tmp_disallowed *bss, *prev;
410 dl_list_for_each_safe(bss, prev, &wpa_s->bss_tmp_disallowed,
411 struct wpa_bss_tmp_disallowed, list) {
412 dl_list_del(&bss->list);
418 static void wpa_supplicant_cleanup(struct wpa_supplicant *wpa_s)
422 bgscan_deinit(wpa_s);
423 autoscan_deinit(wpa_s);
424 scard_deinit(wpa_s->scard);
426 wpa_sm_set_scard_ctx(wpa_s->wpa, NULL);
427 eapol_sm_register_scard_ctx(wpa_s->eapol, NULL);
428 l2_packet_deinit(wpa_s->l2);
431 l2_packet_deinit(wpa_s->l2_br);
434 #ifdef CONFIG_TESTING_OPTIONS
435 l2_packet_deinit(wpa_s->l2_test);
436 wpa_s->l2_test = NULL;
437 #endif /* CONFIG_TESTING_OPTIONS */
439 if (wpa_s->conf != NULL) {
440 struct wpa_ssid *ssid;
441 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
442 wpas_notify_network_removed(wpa_s, ssid);
445 os_free(wpa_s->confname);
446 wpa_s->confname = NULL;
448 os_free(wpa_s->confanother);
449 wpa_s->confanother = NULL;
451 wpa_sm_set_eapol(wpa_s->wpa, NULL);
452 eapol_sm_deinit(wpa_s->eapol);
455 rsn_preauth_deinit(wpa_s->wpa);
458 wpa_tdls_deinit(wpa_s->wpa);
459 #endif /* CONFIG_TDLS */
461 wmm_ac_clear_saved_tspecs(wpa_s);
462 pmksa_candidate_free(wpa_s->wpa);
463 wpa_sm_deinit(wpa_s->wpa);
465 wpa_blacklist_clear(wpa_s);
467 wpa_bss_deinit(wpa_s);
469 wpa_supplicant_cancel_delayed_sched_scan(wpa_s);
470 wpa_supplicant_cancel_scan(wpa_s);
471 wpa_supplicant_cancel_auth_timeout(wpa_s);
472 eloop_cancel_timeout(wpa_supplicant_stop_countermeasures, wpa_s, NULL);
473 #ifdef CONFIG_DELAYED_MIC_ERROR_REPORT
474 eloop_cancel_timeout(wpa_supplicant_delayed_mic_error_report,
476 #endif /* CONFIG_DELAYED_MIC_ERROR_REPORT */
478 eloop_cancel_timeout(wpas_network_reenabled, wpa_s, NULL);
480 wpas_wps_deinit(wpa_s);
482 wpabuf_free(wpa_s->pending_eapol_rx);
483 wpa_s->pending_eapol_rx = NULL;
485 #ifdef CONFIG_IBSS_RSN
486 ibss_rsn_deinit(wpa_s->ibss_rsn);
487 wpa_s->ibss_rsn = NULL;
488 #endif /* CONFIG_IBSS_RSN */
493 wpa_supplicant_ap_deinit(wpa_s);
494 #endif /* CONFIG_AP */
496 wpas_p2p_deinit(wpa_s);
498 #ifdef CONFIG_OFFCHANNEL
499 offchannel_deinit(wpa_s);
500 #endif /* CONFIG_OFFCHANNEL */
502 wpa_supplicant_cancel_sched_scan(wpa_s);
504 os_free(wpa_s->next_scan_freqs);
505 wpa_s->next_scan_freqs = NULL;
507 os_free(wpa_s->manual_scan_freqs);
508 wpa_s->manual_scan_freqs = NULL;
510 os_free(wpa_s->manual_sched_scan_freqs);
511 wpa_s->manual_sched_scan_freqs = NULL;
513 wpas_mac_addr_rand_scan_clear(wpa_s, MAC_ADDR_RAND_ALL);
516 * Need to remove any pending gas-query radio work before the
517 * gas_query_deinit() call because gas_query::work has not yet been set
518 * for works that have not been started. gas_query_free() will be unable
519 * to cancel such pending radio works and once the pending gas-query
520 * radio work eventually gets removed, the deinit notification call to
521 * gas_query_start_cb() would result in dereferencing freed memory.
524 radio_remove_works(wpa_s, "gas-query", 0);
525 gas_query_deinit(wpa_s->gas);
528 free_hw_features(wpa_s);
530 ieee802_1x_dealloc_kay_sm(wpa_s);
532 os_free(wpa_s->bssid_filter);
533 wpa_s->bssid_filter = NULL;
535 os_free(wpa_s->disallow_aps_bssid);
536 wpa_s->disallow_aps_bssid = NULL;
537 os_free(wpa_s->disallow_aps_ssid);
538 wpa_s->disallow_aps_ssid = NULL;
540 wnm_bss_keep_alive_deinit(wpa_s);
542 wnm_deallocate_memory(wpa_s);
543 #endif /* CONFIG_WNM */
545 ext_password_deinit(wpa_s->ext_pw);
546 wpa_s->ext_pw = NULL;
548 wpabuf_free(wpa_s->last_gas_resp);
549 wpa_s->last_gas_resp = NULL;
550 wpabuf_free(wpa_s->prev_gas_resp);
551 wpa_s->prev_gas_resp = NULL;
553 os_free(wpa_s->last_scan_res);
554 wpa_s->last_scan_res = NULL;
558 wpa_drv_configure_frame_filters(wpa_s, 0);
560 #endif /* CONFIG_HS20 */
562 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
563 wpabuf_free(wpa_s->vendor_elem[i]);
564 wpa_s->vendor_elem[i] = NULL;
567 wmm_ac_notify_disassoc(wpa_s);
569 wpa_s->sched_scan_plans_num = 0;
570 os_free(wpa_s->sched_scan_plans);
571 wpa_s->sched_scan_plans = NULL;
574 wpa_s->non_pref_chan_num = 0;
575 os_free(wpa_s->non_pref_chan);
576 wpa_s->non_pref_chan = NULL;
577 #endif /* CONFIG_MBO */
579 free_bss_tmp_disallowed(wpa_s);
581 wpabuf_free(wpa_s->lci);
587 * wpa_clear_keys - Clear keys configured for the driver
588 * @wpa_s: Pointer to wpa_supplicant data
589 * @addr: Previously used BSSID or %NULL if not available
591 * This function clears the encryption keys that has been previously configured
594 void wpa_clear_keys(struct wpa_supplicant *wpa_s, const u8 *addr)
598 #ifdef CONFIG_IEEE80211W
600 #else /* CONFIG_IEEE80211W */
602 #endif /* CONFIG_IEEE80211W */
604 /* MLME-DELETEKEYS.request */
605 for (i = 0; i < max; i++) {
606 if (wpa_s->keys_cleared & BIT(i))
608 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, NULL, i, 0, NULL, 0,
611 if (!(wpa_s->keys_cleared & BIT(0)) && addr &&
612 !is_zero_ether_addr(addr)) {
613 wpa_drv_set_key(wpa_s, WPA_ALG_NONE, addr, 0, 0, NULL, 0, NULL,
615 /* MLME-SETPROTECTION.request(None) */
616 wpa_drv_mlme_setprotection(
618 MLME_SETPROTECTION_PROTECT_TYPE_NONE,
619 MLME_SETPROTECTION_KEY_TYPE_PAIRWISE);
621 wpa_s->keys_cleared = (u32) -1;
626 * wpa_supplicant_state_txt - Get the connection state name as a text string
627 * @state: State (wpa_state; WPA_*)
628 * Returns: The state name as a printable text string
630 const char * wpa_supplicant_state_txt(enum wpa_states state)
633 case WPA_DISCONNECTED:
634 return "DISCONNECTED";
637 case WPA_INTERFACE_DISABLED:
638 return "INTERFACE_DISABLED";
641 case WPA_AUTHENTICATING:
642 return "AUTHENTICATING";
643 case WPA_ASSOCIATING:
644 return "ASSOCIATING";
647 case WPA_4WAY_HANDSHAKE:
648 return "4WAY_HANDSHAKE";
649 case WPA_GROUP_HANDSHAKE:
650 return "GROUP_HANDSHAKE";
661 static void wpa_supplicant_start_bgscan(struct wpa_supplicant *wpa_s)
665 if (wpa_s->current_ssid && wpa_s->current_ssid->bgscan)
666 name = wpa_s->current_ssid->bgscan;
668 name = wpa_s->conf->bgscan;
669 if (name == NULL || name[0] == '\0')
671 if (wpas_driver_bss_selection(wpa_s))
673 if (wpa_s->current_ssid == wpa_s->bgscan_ssid)
676 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE)
678 #endif /* CONFIG_P2P */
680 bgscan_deinit(wpa_s);
681 if (wpa_s->current_ssid) {
682 if (bgscan_init(wpa_s, wpa_s->current_ssid, name)) {
683 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
686 * Live without bgscan; it is only used as a roaming
687 * optimization, so the initial connection is not
691 struct wpa_scan_results *scan_res;
692 wpa_s->bgscan_ssid = wpa_s->current_ssid;
693 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL,
696 bgscan_notify_scan(wpa_s, scan_res);
697 wpa_scan_results_free(scan_res);
701 wpa_s->bgscan_ssid = NULL;
705 static void wpa_supplicant_stop_bgscan(struct wpa_supplicant *wpa_s)
707 if (wpa_s->bgscan_ssid != NULL) {
708 bgscan_deinit(wpa_s);
709 wpa_s->bgscan_ssid = NULL;
713 #endif /* CONFIG_BGSCAN */
716 static void wpa_supplicant_start_autoscan(struct wpa_supplicant *wpa_s)
718 if (autoscan_init(wpa_s, 0))
719 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize autoscan");
723 static void wpa_supplicant_stop_autoscan(struct wpa_supplicant *wpa_s)
725 autoscan_deinit(wpa_s);
729 void wpa_supplicant_reinit_autoscan(struct wpa_supplicant *wpa_s)
731 if (wpa_s->wpa_state == WPA_DISCONNECTED ||
732 wpa_s->wpa_state == WPA_SCANNING) {
733 autoscan_deinit(wpa_s);
734 wpa_supplicant_start_autoscan(wpa_s);
740 * wpa_supplicant_set_state - Set current connection state
741 * @wpa_s: Pointer to wpa_supplicant data
742 * @state: The new connection state
744 * This function is called whenever the connection state changes, e.g.,
745 * association is completed for WPA/WPA2 4-Way Handshake is started.
747 void wpa_supplicant_set_state(struct wpa_supplicant *wpa_s,
748 enum wpa_states state)
750 enum wpa_states old_state = wpa_s->wpa_state;
752 wpa_dbg(wpa_s, MSG_DEBUG, "State: %s -> %s",
753 wpa_supplicant_state_txt(wpa_s->wpa_state),
754 wpa_supplicant_state_txt(state));
756 if (state == WPA_INTERFACE_DISABLED) {
757 /* Assure normal scan when interface is restored */
758 wpa_s->normal_scans = 0;
761 if (state == WPA_COMPLETED) {
762 wpas_connect_work_done(wpa_s);
763 /* Reinitialize normal_scan counter */
764 wpa_s->normal_scans = 0;
769 * P2PS client has to reply to Probe Request frames received on the
770 * group operating channel. Enable Probe Request frame reporting for
771 * P2P connected client in case p2p_cli_probe configuration property is
774 if (wpa_s->conf->p2p_cli_probe && wpa_s->current_ssid &&
775 wpa_s->current_ssid->mode == WPAS_MODE_INFRA &&
776 wpa_s->current_ssid->p2p_group) {
777 if (state == WPA_COMPLETED && !wpa_s->p2p_cli_probe) {
778 wpa_dbg(wpa_s, MSG_DEBUG,
779 "P2P: Enable CLI Probe Request RX reporting");
780 wpa_s->p2p_cli_probe =
781 wpa_drv_probe_req_report(wpa_s, 1) >= 0;
782 } else if (state != WPA_COMPLETED && wpa_s->p2p_cli_probe) {
783 wpa_dbg(wpa_s, MSG_DEBUG,
784 "P2P: Disable CLI Probe Request RX reporting");
785 wpa_s->p2p_cli_probe = 0;
786 wpa_drv_probe_req_report(wpa_s, 0);
789 #endif /* CONFIG_P2P */
791 if (state != WPA_SCANNING)
792 wpa_supplicant_notify_scanning(wpa_s, 0);
794 if (state == WPA_COMPLETED && wpa_s->new_connection) {
795 struct wpa_ssid *ssid = wpa_s->current_ssid;
796 #if defined(CONFIG_CTRL_IFACE) || !defined(CONFIG_NO_STDOUT_DEBUG)
797 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_CONNECTED "- Connection to "
798 MACSTR " completed [id=%d id_str=%s]",
799 MAC2STR(wpa_s->bssid),
800 ssid ? ssid->id : -1,
801 ssid && ssid->id_str ? ssid->id_str : "");
802 #endif /* CONFIG_CTRL_IFACE || !CONFIG_NO_STDOUT_DEBUG */
803 wpas_clear_temp_disabled(wpa_s, ssid, 1);
804 wpa_blacklist_clear(wpa_s);
805 wpa_s->extra_blacklist_count = 0;
806 wpa_s->new_connection = 0;
807 wpa_drv_set_operstate(wpa_s, 1);
808 #ifndef IEEE8021X_EAPOL
809 wpa_drv_set_supp_port(wpa_s, 1);
810 #endif /* IEEE8021X_EAPOL */
811 wpa_s->after_wps = 0;
812 wpa_s->known_wps_freq = 0;
813 wpas_p2p_completed(wpa_s);
815 sme_sched_obss_scan(wpa_s, 1);
816 } else if (state == WPA_DISCONNECTED || state == WPA_ASSOCIATING ||
817 state == WPA_ASSOCIATED) {
818 wpa_s->new_connection = 1;
819 wpa_drv_set_operstate(wpa_s, 0);
820 #ifndef IEEE8021X_EAPOL
821 wpa_drv_set_supp_port(wpa_s, 0);
822 #endif /* IEEE8021X_EAPOL */
823 sme_sched_obss_scan(wpa_s, 0);
825 wpa_s->wpa_state = state;
828 if (state == WPA_COMPLETED)
829 wpa_supplicant_start_bgscan(wpa_s);
830 else if (state < WPA_ASSOCIATED)
831 wpa_supplicant_stop_bgscan(wpa_s);
832 #endif /* CONFIG_BGSCAN */
834 if (state == WPA_AUTHENTICATING)
835 wpa_supplicant_stop_autoscan(wpa_s);
837 if (state == WPA_DISCONNECTED || state == WPA_INACTIVE)
838 wpa_supplicant_start_autoscan(wpa_s);
840 if (old_state >= WPA_ASSOCIATED && wpa_s->wpa_state < WPA_ASSOCIATED)
841 wmm_ac_notify_disassoc(wpa_s);
843 if (wpa_s->wpa_state != old_state) {
844 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
847 * Notify the P2P Device interface about a state change in one
850 wpas_p2p_indicate_state_change(wpa_s);
852 if (wpa_s->wpa_state == WPA_COMPLETED ||
853 old_state == WPA_COMPLETED)
854 wpas_notify_auth_changed(wpa_s);
859 void wpa_supplicant_terminate_proc(struct wpa_global *global)
863 struct wpa_supplicant *wpa_s = global->ifaces;
865 struct wpa_supplicant *next = wpa_s->next;
866 if (wpas_wps_terminate_pending(wpa_s) == 1)
869 if (wpa_s->p2p_group_interface != NOT_P2P_GROUP_INTERFACE ||
870 (wpa_s->current_ssid && wpa_s->current_ssid->p2p_group))
871 wpas_p2p_disconnect(wpa_s);
872 #endif /* CONFIG_P2P */
875 #endif /* CONFIG_WPS */
882 static void wpa_supplicant_terminate(int sig, void *signal_ctx)
884 struct wpa_global *global = signal_ctx;
885 wpa_supplicant_terminate_proc(global);
889 void wpa_supplicant_clear_status(struct wpa_supplicant *wpa_s)
891 enum wpa_states old_state = wpa_s->wpa_state;
893 wpa_s->pairwise_cipher = 0;
894 wpa_s->group_cipher = 0;
895 wpa_s->mgmt_group_cipher = 0;
897 if (wpa_s->wpa_state != WPA_INTERFACE_DISABLED)
898 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
900 if (wpa_s->wpa_state != old_state)
901 wpas_notify_state_changed(wpa_s, wpa_s->wpa_state, old_state);
906 * wpa_supplicant_reload_configuration - Reload configuration data
907 * @wpa_s: Pointer to wpa_supplicant data
908 * Returns: 0 on success or -1 if configuration parsing failed
910 * This function can be used to request that the configuration data is reloaded
911 * (e.g., after configuration file change). This function is reloading
912 * configuration only for one interface, so this may need to be called multiple
913 * times if %wpa_supplicant is controlling multiple interfaces and all
914 * interfaces need reconfiguration.
916 int wpa_supplicant_reload_configuration(struct wpa_supplicant *wpa_s)
918 struct wpa_config *conf;
922 if (wpa_s->confname == NULL)
924 conf = wpa_config_read(wpa_s->confname, NULL);
926 wpa_msg(wpa_s, MSG_ERROR, "Failed to parse the configuration "
927 "file '%s' - exiting", wpa_s->confname);
930 wpa_config_read(wpa_s->confanother, conf);
932 conf->changed_parameters = (unsigned int) -1;
934 reconf_ctrl = !!conf->ctrl_interface != !!wpa_s->conf->ctrl_interface
935 || (conf->ctrl_interface && wpa_s->conf->ctrl_interface &&
936 os_strcmp(conf->ctrl_interface,
937 wpa_s->conf->ctrl_interface) != 0);
939 if (reconf_ctrl && wpa_s->ctrl_iface) {
940 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
941 wpa_s->ctrl_iface = NULL;
944 eapol_sm_invalidate_cached_session(wpa_s->eapol);
945 if (wpa_s->current_ssid) {
946 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
947 wpa_s->own_disconnect_req = 1;
948 wpa_supplicant_deauthenticate(wpa_s,
949 WLAN_REASON_DEAUTH_LEAVING);
953 * TODO: should notify EAPOL SM about changes in opensc_engine_path,
954 * pkcs11_engine_path, pkcs11_module_path, openssl_ciphers.
956 if (wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt)) {
958 * Clear forced success to clear EAP state for next
961 eapol_sm_notify_eap_success(wpa_s->eapol, FALSE);
963 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
964 wpa_sm_set_config(wpa_s->wpa, NULL);
965 wpa_sm_pmksa_cache_flush(wpa_s->wpa, NULL);
966 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
967 rsn_preauth_deinit(wpa_s->wpa);
969 old_ap_scan = wpa_s->conf->ap_scan;
970 wpa_config_free(wpa_s->conf);
972 if (old_ap_scan != wpa_s->conf->ap_scan)
973 wpas_notify_ap_scan_changed(wpa_s);
976 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
978 wpa_supplicant_update_config(wpa_s);
980 wpa_supplicant_clear_status(wpa_s);
981 if (wpa_supplicant_enabled_networks(wpa_s)) {
982 wpa_s->reassociate = 1;
983 wpa_supplicant_req_scan(wpa_s, 0, 0);
985 wpa_dbg(wpa_s, MSG_DEBUG, "Reconfiguration completed");
990 static void wpa_supplicant_reconfig(int sig, void *signal_ctx)
992 struct wpa_global *global = signal_ctx;
993 struct wpa_supplicant *wpa_s;
994 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
995 wpa_dbg(wpa_s, MSG_DEBUG, "Signal %d received - reconfiguring",
997 if (wpa_supplicant_reload_configuration(wpa_s) < 0) {
998 wpa_supplicant_terminate_proc(global);
1002 if (wpa_debug_reopen_file() < 0) {
1003 /* Ignore errors since we cannot really do much to fix this */
1004 wpa_printf(MSG_DEBUG, "Could not reopen debug log file");
1009 static int wpa_supplicant_suites_from_ai(struct wpa_supplicant *wpa_s,
1010 struct wpa_ssid *ssid,
1011 struct wpa_ie_data *ie)
1013 int ret = wpa_sm_parse_own_wpa_ie(wpa_s->wpa, ie);
1016 wpa_msg(wpa_s, MSG_INFO, "WPA: Failed to parse WPA IE "
1017 "from association info");
1022 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Using WPA IE from AssocReq to set "
1024 if (!(ie->group_cipher & ssid->group_cipher)) {
1025 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled group "
1026 "cipher 0x%x (mask 0x%x) - reject",
1027 ie->group_cipher, ssid->group_cipher);
1030 if (!(ie->pairwise_cipher & ssid->pairwise_cipher)) {
1031 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled pairwise "
1032 "cipher 0x%x (mask 0x%x) - reject",
1033 ie->pairwise_cipher, ssid->pairwise_cipher);
1036 if (!(ie->key_mgmt & ssid->key_mgmt)) {
1037 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver used disabled key "
1038 "management 0x%x (mask 0x%x) - reject",
1039 ie->key_mgmt, ssid->key_mgmt);
1043 #ifdef CONFIG_IEEE80211W
1044 if (!(ie->capabilities & WPA_CAPABILITY_MFPC) &&
1045 wpas_get_ssid_pmf(wpa_s, ssid) == MGMT_FRAME_PROTECTION_REQUIRED) {
1046 wpa_msg(wpa_s, MSG_INFO, "WPA: Driver associated with an AP "
1047 "that does not support management frame protection - "
1051 #endif /* CONFIG_IEEE80211W */
1058 * wpa_supplicant_set_suites - Set authentication and encryption parameters
1059 * @wpa_s: Pointer to wpa_supplicant data
1060 * @bss: Scan results for the selected BSS, or %NULL if not available
1061 * @ssid: Configuration data for the selected network
1062 * @wpa_ie: Buffer for the WPA/RSN IE
1063 * @wpa_ie_len: Maximum wpa_ie buffer size on input. This is changed to be the
1064 * used buffer length in case the functions returns success.
1065 * Returns: 0 on success or -1 on failure
1067 * This function is used to configure authentication and encryption parameters
1068 * based on the network configuration and scan result for the selected BSS (if
1071 int wpa_supplicant_set_suites(struct wpa_supplicant *wpa_s,
1072 struct wpa_bss *bss, struct wpa_ssid *ssid,
1073 u8 *wpa_ie, size_t *wpa_ie_len)
1075 struct wpa_ie_data ie;
1077 const u8 *bss_wpa, *bss_rsn, *bss_osen;
1080 bss_wpa = wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE);
1081 bss_rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
1082 bss_osen = wpa_bss_get_vendor_ie(bss, OSEN_IE_VENDOR_TYPE);
1084 bss_wpa = bss_rsn = bss_osen = NULL;
1086 if (bss_rsn && (ssid->proto & WPA_PROTO_RSN) &&
1087 wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie) == 0 &&
1088 (ie.group_cipher & ssid->group_cipher) &&
1089 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1090 (ie.key_mgmt & ssid->key_mgmt)) {
1091 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using IEEE 802.11i/D9.0");
1092 proto = WPA_PROTO_RSN;
1093 } else if (bss_wpa && (ssid->proto & WPA_PROTO_WPA) &&
1094 wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie) == 0 &&
1095 (ie.group_cipher & ssid->group_cipher) &&
1096 (ie.pairwise_cipher & ssid->pairwise_cipher) &&
1097 (ie.key_mgmt & ssid->key_mgmt)) {
1098 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using IEEE 802.11i/D3.0");
1099 proto = WPA_PROTO_WPA;
1101 } else if (bss_osen && (ssid->proto & WPA_PROTO_OSEN)) {
1102 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using OSEN");
1103 /* TODO: parse OSEN element */
1104 os_memset(&ie, 0, sizeof(ie));
1105 ie.group_cipher = WPA_CIPHER_CCMP;
1106 ie.pairwise_cipher = WPA_CIPHER_CCMP;
1107 ie.key_mgmt = WPA_KEY_MGMT_OSEN;
1108 proto = WPA_PROTO_OSEN;
1109 #endif /* CONFIG_HS20 */
1111 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select WPA/RSN");
1112 wpa_dbg(wpa_s, MSG_DEBUG,
1113 "WPA: ssid proto=0x%x pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1114 ssid->proto, ssid->pairwise_cipher, ssid->group_cipher,
1116 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: BSS " MACSTR " ssid='%s'%s%s%s",
1117 MAC2STR(bss->bssid),
1118 wpa_ssid_txt(bss->ssid, bss->ssid_len),
1119 bss_wpa ? " WPA" : "",
1120 bss_rsn ? " RSN" : "",
1121 bss_osen ? " OSEN" : "");
1123 wpa_hexdump(MSG_DEBUG, "RSN", bss_rsn, 2 + bss_rsn[1]);
1124 if (wpa_parse_wpa_ie(bss_rsn, 2 + bss_rsn[1], &ie)) {
1125 wpa_dbg(wpa_s, MSG_DEBUG,
1126 "Could not parse RSN element");
1128 wpa_dbg(wpa_s, MSG_DEBUG,
1129 "RSN: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1130 ie.pairwise_cipher, ie.group_cipher,
1135 wpa_hexdump(MSG_DEBUG, "WPA", bss_wpa, 2 + bss_wpa[1]);
1136 if (wpa_parse_wpa_ie(bss_wpa, 2 + bss_wpa[1], &ie)) {
1137 wpa_dbg(wpa_s, MSG_DEBUG,
1138 "Could not parse WPA element");
1140 wpa_dbg(wpa_s, MSG_DEBUG,
1141 "WPA: pairwise_cipher=0x%x group_cipher=0x%x key_mgmt=0x%x",
1142 ie.pairwise_cipher, ie.group_cipher,
1148 if (ssid->proto & WPA_PROTO_OSEN)
1149 proto = WPA_PROTO_OSEN;
1150 else if (ssid->proto & WPA_PROTO_RSN)
1151 proto = WPA_PROTO_RSN;
1153 proto = WPA_PROTO_WPA;
1154 if (wpa_supplicant_suites_from_ai(wpa_s, ssid, &ie) < 0) {
1155 os_memset(&ie, 0, sizeof(ie));
1156 ie.group_cipher = ssid->group_cipher;
1157 ie.pairwise_cipher = ssid->pairwise_cipher;
1158 ie.key_mgmt = ssid->key_mgmt;
1159 #ifdef CONFIG_IEEE80211W
1160 ie.mgmt_group_cipher =
1161 ssid->ieee80211w != NO_MGMT_FRAME_PROTECTION ?
1162 WPA_CIPHER_AES_128_CMAC : 0;
1163 #endif /* CONFIG_IEEE80211W */
1164 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Set cipher suites "
1165 "based on configuration");
1170 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected cipher suites: group %d "
1171 "pairwise %d key_mgmt %d proto %d",
1172 ie.group_cipher, ie.pairwise_cipher, ie.key_mgmt, proto);
1173 #ifdef CONFIG_IEEE80211W
1174 if (ssid->ieee80211w) {
1175 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected mgmt group cipher %d",
1176 ie.mgmt_group_cipher);
1178 #endif /* CONFIG_IEEE80211W */
1180 wpa_s->wpa_proto = proto;
1181 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PROTO, proto);
1182 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_RSN_ENABLED,
1183 !!(ssid->proto & (WPA_PROTO_RSN | WPA_PROTO_OSEN)));
1185 if (bss || !wpa_s->ap_ies_from_associnfo) {
1186 if (wpa_sm_set_ap_wpa_ie(wpa_s->wpa, bss_wpa,
1187 bss_wpa ? 2 + bss_wpa[1] : 0) ||
1188 wpa_sm_set_ap_rsn_ie(wpa_s->wpa, bss_rsn,
1189 bss_rsn ? 2 + bss_rsn[1] : 0))
1193 #ifdef CONFIG_NO_WPA
1194 wpa_s->group_cipher = WPA_CIPHER_NONE;
1195 wpa_s->pairwise_cipher = WPA_CIPHER_NONE;
1196 #else /* CONFIG_NO_WPA */
1197 sel = ie.group_cipher & ssid->group_cipher;
1198 wpa_s->group_cipher = wpa_pick_group_cipher(sel);
1199 if (wpa_s->group_cipher < 0) {
1200 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select group "
1204 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using GTK %s",
1205 wpa_cipher_txt(wpa_s->group_cipher));
1207 sel = ie.pairwise_cipher & ssid->pairwise_cipher;
1208 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(sel, 1);
1209 if (wpa_s->pairwise_cipher < 0) {
1210 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select pairwise "
1214 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using PTK %s",
1215 wpa_cipher_txt(wpa_s->pairwise_cipher));
1216 #endif /* CONFIG_NO_WPA */
1218 sel = ie.key_mgmt & ssid->key_mgmt;
1220 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_SAE))
1221 sel &= ~(WPA_KEY_MGMT_SAE | WPA_KEY_MGMT_FT_SAE);
1222 #endif /* CONFIG_SAE */
1224 #ifdef CONFIG_SUITEB192
1225 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B_192) {
1226 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B_192;
1227 wpa_dbg(wpa_s, MSG_DEBUG,
1228 "WPA: using KEY_MGMT 802.1X with Suite B (192-bit)");
1229 #endif /* CONFIG_SUITEB192 */
1230 #ifdef CONFIG_SUITEB
1231 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SUITE_B) {
1232 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SUITE_B;
1233 wpa_dbg(wpa_s, MSG_DEBUG,
1234 "WPA: using KEY_MGMT 802.1X with Suite B");
1235 #endif /* CONFIG_SUITEB */
1236 #ifdef CONFIG_IEEE80211R
1237 } else if (sel & WPA_KEY_MGMT_FT_IEEE8021X) {
1238 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_IEEE8021X;
1239 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/802.1X");
1240 } else if (sel & WPA_KEY_MGMT_FT_PSK) {
1241 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_PSK;
1242 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT FT/PSK");
1243 #endif /* CONFIG_IEEE80211R */
1245 } else if (sel & WPA_KEY_MGMT_SAE) {
1246 wpa_s->key_mgmt = WPA_KEY_MGMT_SAE;
1247 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT SAE");
1248 } else if (sel & WPA_KEY_MGMT_FT_SAE) {
1249 wpa_s->key_mgmt = WPA_KEY_MGMT_FT_SAE;
1250 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: using KEY_MGMT FT/SAE");
1251 #endif /* CONFIG_SAE */
1252 #ifdef CONFIG_IEEE80211W
1253 } else if (sel & WPA_KEY_MGMT_IEEE8021X_SHA256) {
1254 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X_SHA256;
1255 wpa_dbg(wpa_s, MSG_DEBUG,
1256 "WPA: using KEY_MGMT 802.1X with SHA256");
1257 } else if (sel & WPA_KEY_MGMT_PSK_SHA256) {
1258 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK_SHA256;
1259 wpa_dbg(wpa_s, MSG_DEBUG,
1260 "WPA: using KEY_MGMT PSK with SHA256");
1261 #endif /* CONFIG_IEEE80211W */
1262 } else if (sel & WPA_KEY_MGMT_IEEE8021X) {
1263 wpa_s->key_mgmt = WPA_KEY_MGMT_IEEE8021X;
1264 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT 802.1X");
1265 } else if (sel & WPA_KEY_MGMT_PSK) {
1266 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK;
1267 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-PSK");
1268 } else if (sel & WPA_KEY_MGMT_WPA_NONE) {
1269 wpa_s->key_mgmt = WPA_KEY_MGMT_WPA_NONE;
1270 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using KEY_MGMT WPA-NONE");
1272 } else if (sel & WPA_KEY_MGMT_OSEN) {
1273 wpa_s->key_mgmt = WPA_KEY_MGMT_OSEN;
1274 wpa_dbg(wpa_s, MSG_DEBUG, "HS 2.0: using KEY_MGMT OSEN");
1275 #endif /* CONFIG_HS20 */
1277 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to select "
1278 "authenticated key management type");
1282 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_KEY_MGMT, wpa_s->key_mgmt);
1283 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_PAIRWISE,
1284 wpa_s->pairwise_cipher);
1285 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_GROUP, wpa_s->group_cipher);
1287 #ifdef CONFIG_IEEE80211W
1288 sel = ie.mgmt_group_cipher;
1289 if (wpas_get_ssid_pmf(wpa_s, ssid) == NO_MGMT_FRAME_PROTECTION ||
1290 !(ie.capabilities & WPA_CAPABILITY_MFPC))
1292 if (sel & WPA_CIPHER_AES_128_CMAC) {
1293 wpa_s->mgmt_group_cipher = WPA_CIPHER_AES_128_CMAC;
1294 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1296 } else if (sel & WPA_CIPHER_BIP_GMAC_128) {
1297 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_128;
1298 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1300 } else if (sel & WPA_CIPHER_BIP_GMAC_256) {
1301 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_GMAC_256;
1302 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1304 } else if (sel & WPA_CIPHER_BIP_CMAC_256) {
1305 wpa_s->mgmt_group_cipher = WPA_CIPHER_BIP_CMAC_256;
1306 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: using MGMT group cipher "
1309 wpa_s->mgmt_group_cipher = 0;
1310 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: not using MGMT group cipher");
1312 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MGMT_GROUP,
1313 wpa_s->mgmt_group_cipher);
1314 wpa_sm_set_param(wpa_s->wpa, WPA_PARAM_MFP,
1315 wpas_get_ssid_pmf(wpa_s, ssid));
1316 #endif /* CONFIG_IEEE80211W */
1318 if (wpa_sm_set_assoc_wpa_ie_default(wpa_s->wpa, wpa_ie, wpa_ie_len)) {
1319 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to generate WPA IE");
1323 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) {
1326 if (ssid->psk_set) {
1327 wpa_sm_set_pmk(wpa_s->wpa, ssid->psk, PMK_LEN, NULL,
1331 #ifndef CONFIG_NO_PBKDF2
1332 if (bss && ssid->bssid_set && ssid->ssid_len == 0 &&
1335 pbkdf2_sha1(ssid->passphrase, bss->ssid, bss->ssid_len,
1336 4096, psk, PMK_LEN);
1337 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)",
1339 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL, NULL);
1341 os_memset(psk, 0, sizeof(psk));
1343 #endif /* CONFIG_NO_PBKDF2 */
1344 #ifdef CONFIG_EXT_PASSWORD
1345 if (ssid->ext_psk) {
1346 struct wpabuf *pw = ext_password_get(wpa_s->ext_pw,
1348 char pw_str[64 + 1];
1352 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No PSK "
1353 "found from external storage");
1357 if (wpabuf_len(pw) < 8 || wpabuf_len(pw) > 64) {
1358 wpa_msg(wpa_s, MSG_INFO, "EXT PW: Unexpected "
1359 "PSK length %d in external storage",
1360 (int) wpabuf_len(pw));
1361 ext_password_free(pw);
1365 os_memcpy(pw_str, wpabuf_head(pw), wpabuf_len(pw));
1366 pw_str[wpabuf_len(pw)] = '\0';
1368 #ifndef CONFIG_NO_PBKDF2
1369 if (wpabuf_len(pw) >= 8 && wpabuf_len(pw) < 64 && bss)
1371 pbkdf2_sha1(pw_str, bss->ssid, bss->ssid_len,
1372 4096, psk, PMK_LEN);
1373 os_memset(pw_str, 0, sizeof(pw_str));
1374 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from "
1375 "external passphrase)",
1377 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL,
1380 os_memset(psk, 0, sizeof(psk));
1382 #endif /* CONFIG_NO_PBKDF2 */
1383 if (wpabuf_len(pw) == 2 * PMK_LEN) {
1384 if (hexstr2bin(pw_str, psk, PMK_LEN) < 0) {
1385 wpa_msg(wpa_s, MSG_INFO, "EXT PW: "
1386 "Invalid PSK hex string");
1387 os_memset(pw_str, 0, sizeof(pw_str));
1388 ext_password_free(pw);
1391 wpa_sm_set_pmk(wpa_s->wpa, psk, PMK_LEN, NULL,
1394 os_memset(psk, 0, sizeof(psk));
1396 wpa_msg(wpa_s, MSG_INFO, "EXT PW: No suitable "
1398 os_memset(pw_str, 0, sizeof(pw_str));
1399 ext_password_free(pw);
1403 os_memset(pw_str, 0, sizeof(pw_str));
1404 ext_password_free(pw);
1406 #endif /* CONFIG_EXT_PASSWORD */
1409 wpa_msg(wpa_s, MSG_INFO,
1410 "No PSK available for association");
1414 wpa_sm_set_pmk_from_pmksa(wpa_s->wpa);
1420 static void wpas_ext_capab_byte(struct wpa_supplicant *wpa_s, u8 *pos, int idx)
1425 case 0: /* Bits 0-7 */
1427 case 1: /* Bits 8-15 */
1429 case 2: /* Bits 16-23 */
1431 *pos |= 0x02; /* Bit 17 - WNM-Sleep Mode */
1432 *pos |= 0x08; /* Bit 19 - BSS Transition */
1433 #endif /* CONFIG_WNM */
1435 case 3: /* Bits 24-31 */
1437 *pos |= 0x02; /* Bit 25 - SSID List */
1438 #endif /* CONFIG_WNM */
1439 #ifdef CONFIG_INTERWORKING
1440 if (wpa_s->conf->interworking)
1441 *pos |= 0x80; /* Bit 31 - Interworking */
1442 #endif /* CONFIG_INTERWORKING */
1444 case 4: /* Bits 32-39 */
1445 #ifdef CONFIG_INTERWORKING
1446 if (wpa_s->drv_flags / WPA_DRIVER_FLAGS_QOS_MAPPING)
1447 *pos |= 0x01; /* Bit 32 - QoS Map */
1448 #endif /* CONFIG_INTERWORKING */
1450 case 5: /* Bits 40-47 */
1452 if (wpa_s->conf->hs20)
1453 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1454 #endif /* CONFIG_HS20 */
1456 *pos |= 0x40; /* Bit 46 - WNM-Notification */
1457 #endif /* CONFIG_MBO */
1459 case 6: /* Bits 48-55 */
1461 case 7: /* Bits 56-63 */
1463 case 8: /* Bits 64-71 */
1464 if (wpa_s->conf->ftm_responder)
1465 *pos |= 0x40; /* Bit 70 - FTM responder */
1466 if (wpa_s->conf->ftm_initiator)
1467 *pos |= 0x80; /* Bit 71 - FTM initiator */
1473 int wpas_build_ext_capab(struct wpa_supplicant *wpa_s, u8 *buf, size_t buflen)
1479 (wpa_s->conf->ftm_initiator || wpa_s->conf->ftm_responder))
1481 if (len < wpa_s->extended_capa_len)
1482 len = wpa_s->extended_capa_len;
1483 if (buflen < (size_t) len + 2) {
1484 wpa_printf(MSG_INFO,
1485 "Not enough room for building extended capabilities element");
1489 *pos++ = WLAN_EID_EXT_CAPAB;
1491 for (i = 0; i < len; i++, pos++) {
1492 wpas_ext_capab_byte(wpa_s, pos, i);
1494 if (i < wpa_s->extended_capa_len) {
1495 *pos &= ~wpa_s->extended_capa_mask[i];
1496 *pos |= wpa_s->extended_capa[i];
1500 while (len > 0 && buf[1 + len] == 0) {
1511 static int wpas_valid_bss(struct wpa_supplicant *wpa_s,
1512 struct wpa_bss *test_bss)
1514 struct wpa_bss *bss;
1516 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
1517 if (bss == test_bss)
1525 static int wpas_valid_ssid(struct wpa_supplicant *wpa_s,
1526 struct wpa_ssid *test_ssid)
1528 struct wpa_ssid *ssid;
1530 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next) {
1531 if (ssid == test_ssid)
1539 int wpas_valid_bss_ssid(struct wpa_supplicant *wpa_s, struct wpa_bss *test_bss,
1540 struct wpa_ssid *test_ssid)
1542 if (test_bss && !wpas_valid_bss(wpa_s, test_bss))
1545 return test_ssid == NULL || wpas_valid_ssid(wpa_s, test_ssid);
1549 void wpas_connect_work_free(struct wpa_connect_work *cwork)
1557 void wpas_connect_work_done(struct wpa_supplicant *wpa_s)
1559 struct wpa_connect_work *cwork;
1560 struct wpa_radio_work *work = wpa_s->connect_work;
1565 wpa_s->connect_work = NULL;
1568 wpas_connect_work_free(cwork);
1569 radio_work_done(work);
1573 int wpas_update_random_addr(struct wpa_supplicant *wpa_s, int style)
1575 struct os_reltime now;
1578 os_get_reltime(&now);
1579 if (wpa_s->last_mac_addr_style == style &&
1580 wpa_s->last_mac_addr_change.sec != 0 &&
1581 !os_reltime_expired(&now, &wpa_s->last_mac_addr_change,
1582 wpa_s->conf->rand_addr_lifetime)) {
1583 wpa_msg(wpa_s, MSG_DEBUG,
1584 "Previously selected random MAC address has not yet expired");
1590 if (random_mac_addr(addr) < 0)
1594 os_memcpy(addr, wpa_s->perm_addr, ETH_ALEN);
1595 if (random_mac_addr_keep_oui(addr) < 0)
1602 if (wpa_drv_set_mac_addr(wpa_s, addr) < 0) {
1603 wpa_msg(wpa_s, MSG_INFO,
1604 "Failed to set random MAC address");
1608 os_get_reltime(&wpa_s->last_mac_addr_change);
1609 wpa_s->mac_addr_changed = 1;
1610 wpa_s->last_mac_addr_style = style;
1612 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1613 wpa_msg(wpa_s, MSG_INFO,
1614 "Could not update MAC address information");
1618 wpa_msg(wpa_s, MSG_DEBUG, "Using random MAC address " MACSTR,
1625 int wpas_update_random_addr_disassoc(struct wpa_supplicant *wpa_s)
1627 if (wpa_s->wpa_state >= WPA_AUTHENTICATING ||
1628 !wpa_s->conf->preassoc_mac_addr)
1631 return wpas_update_random_addr(wpa_s, wpa_s->conf->preassoc_mac_addr);
1635 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit);
1638 * wpa_supplicant_associate - Request association
1639 * @wpa_s: Pointer to wpa_supplicant data
1640 * @bss: Scan results for the selected BSS, or %NULL if not available
1641 * @ssid: Configuration data for the selected network
1643 * This function is used to request %wpa_supplicant to associate with a BSS.
1645 void wpa_supplicant_associate(struct wpa_supplicant *wpa_s,
1646 struct wpa_bss *bss, struct wpa_ssid *ssid)
1648 struct wpa_connect_work *cwork;
1651 wpa_s->own_disconnect_req = 0;
1654 * If we are starting a new connection, any previously pending EAPOL
1655 * RX cannot be valid anymore.
1657 wpabuf_free(wpa_s->pending_eapol_rx);
1658 wpa_s->pending_eapol_rx = NULL;
1660 if (ssid->mac_addr == -1)
1661 rand_style = wpa_s->conf->mac_addr;
1663 rand_style = ssid->mac_addr;
1665 wmm_ac_clear_saved_tspecs(wpa_s);
1666 wpa_s->reassoc_same_bss = 0;
1667 wpa_s->reassoc_same_ess = 0;
1669 if (wpa_s->last_ssid == ssid) {
1670 wpa_dbg(wpa_s, MSG_DEBUG, "Re-association to the same ESS");
1671 wpa_s->reassoc_same_ess = 1;
1672 if (wpa_s->current_bss && wpa_s->current_bss == bss) {
1673 wmm_ac_save_tspecs(wpa_s);
1674 wpa_s->reassoc_same_bss = 1;
1676 } else if (rand_style > 0) {
1677 if (wpas_update_random_addr(wpa_s, rand_style) < 0)
1679 wpa_sm_pmksa_cache_flush(wpa_s->wpa, ssid);
1680 } else if (wpa_s->mac_addr_changed) {
1681 if (wpa_drv_set_mac_addr(wpa_s, NULL) < 0) {
1682 wpa_msg(wpa_s, MSG_INFO,
1683 "Could not restore permanent MAC address");
1686 wpa_s->mac_addr_changed = 0;
1687 if (wpa_supplicant_update_mac_addr(wpa_s) < 0) {
1688 wpa_msg(wpa_s, MSG_INFO,
1689 "Could not update MAC address information");
1692 wpa_msg(wpa_s, MSG_DEBUG, "Using permanent MAC address");
1694 wpa_s->last_ssid = ssid;
1696 #ifdef CONFIG_IBSS_RSN
1697 ibss_rsn_deinit(wpa_s->ibss_rsn);
1698 wpa_s->ibss_rsn = NULL;
1699 #endif /* CONFIG_IBSS_RSN */
1701 if (ssid->mode == WPAS_MODE_AP || ssid->mode == WPAS_MODE_P2P_GO ||
1702 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) {
1704 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP)) {
1705 wpa_msg(wpa_s, MSG_INFO, "Driver does not support AP "
1709 if (wpa_supplicant_create_ap(wpa_s, ssid) < 0) {
1710 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
1711 if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)
1712 wpas_p2p_ap_setup_failed(wpa_s);
1715 wpa_s->current_bss = bss;
1716 #else /* CONFIG_AP */
1717 wpa_msg(wpa_s, MSG_ERROR, "AP mode support not included in "
1719 #endif /* CONFIG_AP */
1723 if (ssid->mode == WPAS_MODE_MESH) {
1725 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_MESH)) {
1726 wpa_msg(wpa_s, MSG_INFO,
1727 "Driver does not support mesh mode");
1731 ssid->frequency = bss->freq;
1732 if (wpa_supplicant_join_mesh(wpa_s, ssid) < 0) {
1733 wpa_msg(wpa_s, MSG_ERROR, "Could not join mesh");
1736 wpa_s->current_bss = bss;
1737 wpa_msg(wpa_s, MSG_INFO, MESH_GROUP_STARTED "ssid=\"%s\" id=%d",
1738 wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
1740 #else /* CONFIG_MESH */
1741 wpa_msg(wpa_s, MSG_ERROR,
1742 "mesh mode support not included in the build");
1743 #endif /* CONFIG_MESH */
1749 wpa_tdls_ap_ies(wpa_s->wpa, (const u8 *) (bss + 1),
1751 #endif /* CONFIG_TDLS */
1753 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_SME) &&
1754 ssid->mode == IEEE80211_MODE_INFRA) {
1755 sme_authenticate(wpa_s, bss, ssid);
1759 if (wpa_s->connect_work) {
1760 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since connect_work exist");
1764 if (radio_work_pending(wpa_s, "connect")) {
1765 wpa_dbg(wpa_s, MSG_DEBUG, "Reject wpa_supplicant_associate() call since pending work exist");
1769 wpas_abort_ongoing_scan(wpa_s);
1771 cwork = os_zalloc(sizeof(*cwork));
1778 if (radio_add_work(wpa_s, bss ? bss->freq : 0, "connect", 1,
1779 wpas_start_assoc_cb, cwork) < 0) {
1785 static int bss_is_ibss(struct wpa_bss *bss)
1787 return (bss->caps & (IEEE80211_CAP_ESS | IEEE80211_CAP_IBSS)) ==
1792 static int drv_supports_vht(struct wpa_supplicant *wpa_s,
1793 const struct wpa_ssid *ssid)
1795 enum hostapd_hw_mode hw_mode;
1796 struct hostapd_hw_modes *mode = NULL;
1800 #ifdef CONFIG_HT_OVERRIDES
1801 if (ssid->disable_ht)
1803 #endif /* CONFIG_HT_OVERRIDES */
1805 hw_mode = ieee80211_freq_to_chan(ssid->frequency, &channel);
1806 if (hw_mode == NUM_HOSTAPD_MODES)
1808 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
1809 if (wpa_s->hw.modes[i].mode == hw_mode) {
1810 mode = &wpa_s->hw.modes[i];
1818 return mode->vht_capab != 0;
1822 void ibss_mesh_setup_freq(struct wpa_supplicant *wpa_s,
1823 const struct wpa_ssid *ssid,
1824 struct hostapd_freq_params *freq)
1826 enum hostapd_hw_mode hw_mode;
1827 struct hostapd_hw_modes *mode = NULL;
1828 int ht40plus[] = { 36, 44, 52, 60, 100, 108, 116, 124, 132, 149, 157,
1830 int vht80[] = { 36, 52, 100, 116, 132, 149 };
1831 struct hostapd_channel_data *pri_chan = NULL, *sec_chan = NULL;
1833 int i, chan_idx, ht40 = -1, res, obss_scan = 1;
1835 struct hostapd_freq_params vht_freq;
1836 int chwidth, seg0, seg1;
1839 freq->freq = ssid->frequency;
1841 for (j = 0; j < wpa_s->last_scan_res_used; j++) {
1842 struct wpa_bss *bss = wpa_s->last_scan_res[j];
1844 if (ssid->mode != WPAS_MODE_IBSS)
1847 /* Don't adjust control freq in case of fixed_freq */
1848 if (ssid->fixed_freq)
1851 if (!bss_is_ibss(bss))
1854 if (ssid->ssid_len == bss->ssid_len &&
1855 os_memcmp(ssid->ssid, bss->ssid, bss->ssid_len) == 0) {
1856 wpa_printf(MSG_DEBUG,
1857 "IBSS already found in scan results, adjust control freq: %d",
1859 freq->freq = bss->freq;
1865 /* For IBSS check HT_IBSS flag */
1866 if (ssid->mode == WPAS_MODE_IBSS &&
1867 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_HT_IBSS))
1870 if (wpa_s->group_cipher == WPA_CIPHER_WEP40 ||
1871 wpa_s->group_cipher == WPA_CIPHER_WEP104 ||
1872 wpa_s->pairwise_cipher == WPA_CIPHER_TKIP) {
1873 wpa_printf(MSG_DEBUG,
1874 "IBSS: WEP/TKIP detected, do not try to enable HT");
1878 hw_mode = ieee80211_freq_to_chan(freq->freq, &channel);
1879 for (i = 0; wpa_s->hw.modes && i < wpa_s->hw.num_modes; i++) {
1880 if (wpa_s->hw.modes[i].mode == hw_mode) {
1881 mode = &wpa_s->hw.modes[i];
1889 #ifdef CONFIG_HT_OVERRIDES
1890 if (ssid->disable_ht) {
1891 freq->ht_enabled = 0;
1894 #endif /* CONFIG_HT_OVERRIDES */
1896 freq->ht_enabled = ht_supported(mode);
1897 if (!freq->ht_enabled)
1900 /* Setup higher BW only for 5 GHz */
1901 if (mode->mode != HOSTAPD_MODE_IEEE80211A)
1904 for (chan_idx = 0; chan_idx < mode->num_channels; chan_idx++) {
1905 pri_chan = &mode->channels[chan_idx];
1906 if (pri_chan->chan == channel)
1913 /* Check primary channel flags */
1914 if (pri_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1917 #ifdef CONFIG_HT_OVERRIDES
1918 if (ssid->disable_ht40)
1920 #endif /* CONFIG_HT_OVERRIDES */
1922 /* Check/setup HT40+/HT40- */
1923 for (j = 0; j < ARRAY_SIZE(ht40plus); j++) {
1924 if (ht40plus[j] == channel) {
1930 /* Find secondary channel */
1931 for (i = 0; i < mode->num_channels; i++) {
1932 sec_chan = &mode->channels[i];
1933 if (sec_chan->chan == channel + ht40 * 4)
1940 /* Check secondary channel flags */
1941 if (sec_chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
1944 freq->channel = pri_chan->chan;
1947 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40MINUS))
1950 if (!(pri_chan->flag & HOSTAPD_CHAN_HT40PLUS))
1953 freq->sec_channel_offset = ht40;
1956 struct wpa_scan_results *scan_res;
1958 scan_res = wpa_supplicant_get_scan_results(wpa_s, NULL, 0);
1959 if (scan_res == NULL) {
1961 freq->sec_channel_offset = 0;
1965 res = check_40mhz_5g(mode, scan_res, pri_chan->chan,
1970 freq->sec_channel_offset = 0;
1973 /* Configuration allowed */
1976 /* Switch pri/sec channels */
1977 freq->freq = hw_get_freq(mode, sec_chan->chan);
1978 freq->sec_channel_offset = -freq->sec_channel_offset;
1979 freq->channel = sec_chan->chan;
1982 freq->sec_channel_offset = 0;
1986 wpa_scan_results_free(scan_res);
1989 wpa_printf(MSG_DEBUG,
1990 "IBSS/mesh: setup freq channel %d, sec_channel_offset %d",
1991 freq->channel, freq->sec_channel_offset);
1993 if (!drv_supports_vht(wpa_s, ssid))
1996 /* For IBSS check VHT_IBSS flag */
1997 if (ssid->mode == WPAS_MODE_IBSS &&
1998 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_VHT_IBSS))
2003 vht_freq.vht_enabled = vht_supported(mode);
2004 if (!vht_freq.vht_enabled)
2007 /* setup center_freq1, bandwidth */
2008 for (j = 0; j < ARRAY_SIZE(vht80); j++) {
2009 if (freq->channel >= vht80[j] &&
2010 freq->channel < vht80[j] + 16)
2014 if (j == ARRAY_SIZE(vht80))
2017 for (i = vht80[j]; i < vht80[j] + 16; i += 4) {
2018 struct hostapd_channel_data *chan;
2020 chan = hw_get_channel_chan(mode, i, NULL);
2024 /* Back to HT configuration if channel not usable */
2025 if (chan->flag & (HOSTAPD_CHAN_DISABLED | HOSTAPD_CHAN_NO_IR))
2029 chwidth = VHT_CHANWIDTH_80MHZ;
2030 seg0 = vht80[j] + 6;
2033 if (ssid->max_oper_chwidth == VHT_CHANWIDTH_80P80MHZ) {
2034 /* setup center_freq2, bandwidth */
2035 for (k = 0; k < ARRAY_SIZE(vht80); k++) {
2036 /* Only accept 80 MHz segments separated by a gap */
2037 if (j == k || abs(vht80[j] - vht80[k]) == 16)
2039 for (i = vht80[k]; i < vht80[k] + 16; i += 4) {
2040 struct hostapd_channel_data *chan;
2042 chan = hw_get_channel_chan(mode, i, NULL);
2046 if (chan->flag & (HOSTAPD_CHAN_DISABLED |
2047 HOSTAPD_CHAN_NO_IR |
2048 HOSTAPD_CHAN_RADAR))
2051 /* Found a suitable second segment for 80+80 */
2052 chwidth = VHT_CHANWIDTH_80P80MHZ;
2054 VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ;
2055 seg1 = vht80[k] + 6;
2058 if (chwidth == VHT_CHANWIDTH_80P80MHZ)
2061 } else if (ssid->max_oper_chwidth == VHT_CHANWIDTH_160MHZ) {
2062 if (freq->freq == 5180) {
2063 chwidth = VHT_CHANWIDTH_160MHZ;
2064 vht_caps |= VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
2066 } else if (freq->freq == 5520) {
2067 chwidth = VHT_CHANWIDTH_160MHZ;
2068 vht_caps |= VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
2073 if (hostapd_set_freq_params(&vht_freq, mode->mode, freq->freq,
2074 freq->channel, freq->ht_enabled,
2075 vht_freq.vht_enabled,
2076 freq->sec_channel_offset,
2077 chwidth, seg0, seg1, vht_caps) != 0)
2082 wpa_printf(MSG_DEBUG, "IBSS: VHT setup freq cf1 %d, cf2 %d, bw %d",
2083 freq->center_freq1, freq->center_freq2, freq->bandwidth);
2087 static void wpas_start_assoc_cb(struct wpa_radio_work *work, int deinit)
2089 struct wpa_connect_work *cwork = work->ctx;
2090 struct wpa_bss *bss = cwork->bss;
2091 struct wpa_ssid *ssid = cwork->ssid;
2092 struct wpa_supplicant *wpa_s = work->wpa_s;
2095 int use_crypt, ret, i, bssid_changed;
2096 int algs = WPA_AUTH_ALG_OPEN;
2097 unsigned int cipher_pairwise, cipher_group;
2098 struct wpa_driver_associate_params params;
2099 int wep_keys_set = 0;
2100 int assoc_failed = 0;
2101 struct wpa_ssid *old_ssid;
2102 u8 prev_bssid[ETH_ALEN];
2103 #ifdef CONFIG_HT_OVERRIDES
2104 struct ieee80211_ht_capabilities htcaps;
2105 struct ieee80211_ht_capabilities htcaps_mask;
2106 #endif /* CONFIG_HT_OVERRIDES */
2107 #ifdef CONFIG_VHT_OVERRIDES
2108 struct ieee80211_vht_capabilities vhtcaps;
2109 struct ieee80211_vht_capabilities vhtcaps_mask;
2110 #endif /* CONFIG_VHT_OVERRIDES */
2112 const u8 *mbo = NULL;
2113 #endif /* CONFIG_MBO */
2116 if (work->started) {
2117 wpa_s->connect_work = NULL;
2119 /* cancel possible auth. timeout */
2120 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s,
2123 wpas_connect_work_free(cwork);
2127 wpa_s->connect_work = work;
2129 if (cwork->bss_removed || !wpas_valid_bss_ssid(wpa_s, bss, ssid) ||
2130 wpas_network_disabled(wpa_s, ssid)) {
2131 wpa_dbg(wpa_s, MSG_DEBUG, "BSS/SSID entry for association not valid anymore - drop connection attempt");
2132 wpas_connect_work_done(wpa_s);
2136 os_memcpy(prev_bssid, wpa_s->bssid, ETH_ALEN);
2137 os_memset(¶ms, 0, sizeof(params));
2138 wpa_s->reassociate = 0;
2139 wpa_s->eap_expected_failure = 0;
2141 (!wpas_driver_bss_selection(wpa_s) || wpas_wps_searching(wpa_s))) {
2142 #ifdef CONFIG_IEEE80211R
2143 const u8 *ie, *md = NULL;
2144 #endif /* CONFIG_IEEE80211R */
2145 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with " MACSTR
2146 " (SSID='%s' freq=%d MHz)", MAC2STR(bss->bssid),
2147 wpa_ssid_txt(bss->ssid, bss->ssid_len), bss->freq);
2148 bssid_changed = !is_zero_ether_addr(wpa_s->bssid);
2149 os_memset(wpa_s->bssid, 0, ETH_ALEN);
2150 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
2152 wpas_notify_bssid_changed(wpa_s);
2153 #ifdef CONFIG_IEEE80211R
2154 ie = wpa_bss_get_ie(bss, WLAN_EID_MOBILITY_DOMAIN);
2155 if (ie && ie[1] >= MOBILITY_DOMAIN_ID_LEN)
2157 wpa_sm_set_ft_params(wpa_s->wpa, ie, ie ? 2 + ie[1] : 0);
2159 /* Prepare for the next transition */
2160 wpa_ft_prepare_auth_request(wpa_s->wpa, ie);
2162 #endif /* CONFIG_IEEE80211R */
2164 } else if ((ssid->ssid == NULL || ssid->ssid_len == 0) &&
2165 wpa_s->conf->ap_scan == 2 &&
2166 (ssid->key_mgmt & WPA_KEY_MGMT_WPS)) {
2167 /* Use ap_scan==1 style network selection to find the network
2169 wpas_connect_work_done(wpa_s);
2170 wpa_s->scan_req = MANUAL_SCAN_REQ;
2171 wpa_s->reassociate = 1;
2172 wpa_supplicant_req_scan(wpa_s, 0, 0);
2174 #endif /* CONFIG_WPS */
2176 wpa_msg(wpa_s, MSG_INFO, "Trying to associate with SSID '%s'",
2177 wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
2179 os_memcpy(wpa_s->pending_bssid, bss->bssid, ETH_ALEN);
2181 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2184 wpa_supplicant_cancel_sched_scan(wpa_s);
2186 wpa_supplicant_cancel_scan(wpa_s);
2188 /* Starting new association, so clear the possibly used WPA IE from the
2189 * previous association. */
2190 wpa_sm_set_assoc_wpa_ie(wpa_s->wpa, NULL, 0);
2192 #ifdef IEEE8021X_EAPOL
2193 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2195 if (ssid->non_leap == 0)
2196 algs = WPA_AUTH_ALG_LEAP;
2198 algs |= WPA_AUTH_ALG_LEAP;
2201 #endif /* IEEE8021X_EAPOL */
2202 wpa_dbg(wpa_s, MSG_DEBUG, "Automatic auth_alg selection: 0x%x", algs);
2203 if (ssid->auth_alg) {
2204 algs = ssid->auth_alg;
2205 wpa_dbg(wpa_s, MSG_DEBUG, "Overriding auth_alg selection: "
2209 if (bss && (wpa_bss_get_vendor_ie(bss, WPA_IE_VENDOR_TYPE) ||
2210 wpa_bss_get_ie(bss, WLAN_EID_RSN)) &&
2211 wpa_key_mgmt_wpa(ssid->key_mgmt)) {
2212 int try_opportunistic;
2213 try_opportunistic = (ssid->proactive_key_caching < 0 ?
2215 ssid->proactive_key_caching) &&
2216 (ssid->proto & WPA_PROTO_RSN);
2217 if (pmksa_cache_set_current(wpa_s->wpa, NULL, bss->bssid,
2218 ssid, try_opportunistic) == 0)
2219 eapol_sm_notify_pmkid_attempt(wpa_s->eapol);
2220 wpa_ie_len = sizeof(wpa_ie);
2221 if (wpa_supplicant_set_suites(wpa_s, bss, ssid,
2222 wpa_ie, &wpa_ie_len)) {
2223 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2224 "key management and encryption suites");
2225 wpas_connect_work_done(wpa_s);
2228 } else if ((ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) && bss &&
2229 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt)) {
2231 * Both WPA and non-WPA IEEE 802.1X enabled in configuration -
2232 * use non-WPA since the scan results did not indicate that the
2233 * AP is using WPA or WPA2.
2235 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2237 wpa_s->wpa_proto = 0;
2238 } else if (wpa_key_mgmt_wpa_any(ssid->key_mgmt)) {
2239 wpa_ie_len = sizeof(wpa_ie);
2240 if (wpa_supplicant_set_suites(wpa_s, NULL, ssid,
2241 wpa_ie, &wpa_ie_len)) {
2242 wpa_msg(wpa_s, MSG_WARNING, "WPA: Failed to set WPA "
2243 "key management and encryption suites (no "
2245 wpas_connect_work_done(wpa_s);
2249 } else if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) {
2250 struct wpabuf *wps_ie;
2251 wps_ie = wps_build_assoc_req_ie(wpas_wps_get_req_type(ssid));
2252 if (wps_ie && wpabuf_len(wps_ie) <= sizeof(wpa_ie)) {
2253 wpa_ie_len = wpabuf_len(wps_ie);
2254 os_memcpy(wpa_ie, wpabuf_head(wps_ie), wpa_ie_len);
2257 wpabuf_free(wps_ie);
2258 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2259 if (!bss || (bss->caps & IEEE80211_CAP_PRIVACY))
2260 params.wps = WPS_MODE_PRIVACY;
2262 params.wps = WPS_MODE_OPEN;
2263 wpa_s->wpa_proto = 0;
2264 #endif /* CONFIG_WPS */
2266 wpa_supplicant_set_non_wpa_policy(wpa_s, ssid);
2268 wpa_s->wpa_proto = 0;
2272 if (wpa_s->global->p2p) {
2276 pos = wpa_ie + wpa_ie_len;
2277 len = sizeof(wpa_ie) - wpa_ie_len;
2278 res = wpas_p2p_assoc_req_ie(wpa_s, bss, pos, len,
2284 wpa_s->cross_connect_disallowed = 0;
2287 p2p = wpa_bss_get_vendor_ie_multi(bss, P2P_IE_VENDOR_TYPE);
2289 wpa_s->cross_connect_disallowed =
2290 p2p_get_cross_connect_disallowed(p2p);
2292 wpa_dbg(wpa_s, MSG_DEBUG, "P2P: WLAN AP %s cross "
2294 wpa_s->cross_connect_disallowed ?
2295 "disallows" : "allows");
2299 os_memset(wpa_s->p2p_ip_addr_info, 0, sizeof(wpa_s->p2p_ip_addr_info));
2300 #endif /* CONFIG_P2P */
2304 mbo = wpa_bss_get_vendor_ie(bss, MBO_IE_VENDOR_TYPE);
2308 len = wpas_mbo_supp_op_class_ie(wpa_s, bss->freq,
2309 wpa_ie + wpa_ie_len,
2316 #endif /* CONFIG_MBO */
2319 * Workaround: Add Extended Capabilities element only if the AP
2320 * included this element in Beacon/Probe Response frames. Some older
2321 * APs seem to have interoperability issues if this element is
2322 * included, so while the standard may require us to include the
2323 * element in all cases, it is justifiable to skip it to avoid
2324 * interoperability issues.
2326 if (ssid->p2p_group)
2327 wpa_drv_get_ext_capa(wpa_s, WPA_IF_P2P_CLIENT);
2329 wpa_drv_get_ext_capa(wpa_s, WPA_IF_STATION);
2331 if (!bss || wpa_bss_get_ie(bss, WLAN_EID_EXT_CAPAB)) {
2334 ext_capab_len = wpas_build_ext_capab(wpa_s, ext_capab,
2336 if (ext_capab_len > 0) {
2338 if (wpa_ie_len > 0 && pos[0] == WLAN_EID_RSN)
2340 os_memmove(pos + ext_capab_len, pos,
2341 wpa_ie_len - (pos - wpa_ie));
2342 wpa_ie_len += ext_capab_len;
2343 os_memcpy(pos, ext_capab, ext_capab_len);
2348 if (is_hs20_network(wpa_s, ssid, bss)) {
2349 struct wpabuf *hs20;
2351 hs20 = wpabuf_alloc(20);
2353 int pps_mo_id = hs20_get_pps_mo_id(wpa_s, ssid);
2356 wpas_hs20_add_indication(hs20, pps_mo_id);
2357 len = sizeof(wpa_ie) - wpa_ie_len;
2358 if (wpabuf_len(hs20) <= len) {
2359 os_memcpy(wpa_ie + wpa_ie_len,
2360 wpabuf_head(hs20), wpabuf_len(hs20));
2361 wpa_ie_len += wpabuf_len(hs20);
2365 hs20_configure_frame_filters(wpa_s);
2368 #endif /* CONFIG_HS20 */
2370 if (wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ]) {
2371 struct wpabuf *buf = wpa_s->vendor_elem[VENDOR_ELEM_ASSOC_REQ];
2374 len = sizeof(wpa_ie) - wpa_ie_len;
2375 if (wpabuf_len(buf) <= len) {
2376 os_memcpy(wpa_ie + wpa_ie_len,
2377 wpabuf_head(buf), wpabuf_len(buf));
2378 wpa_ie_len += wpabuf_len(buf);
2383 if (wpa_s->fst_ies) {
2384 int fst_ies_len = wpabuf_len(wpa_s->fst_ies);
2386 if (wpa_ie_len + fst_ies_len <= sizeof(wpa_ie)) {
2387 os_memcpy(wpa_ie + wpa_ie_len,
2388 wpabuf_head(wpa_s->fst_ies), fst_ies_len);
2389 wpa_ie_len += fst_ies_len;
2392 #endif /* CONFIG_FST */
2398 len = wpas_mbo_ie(wpa_s, wpa_ie + wpa_ie_len,
2399 sizeof(wpa_ie) - wpa_ie_len);
2403 #endif /* CONFIG_MBO */
2405 wpa_clear_keys(wpa_s, bss ? bss->bssid : NULL);
2407 cipher_pairwise = wpa_s->pairwise_cipher;
2408 cipher_group = wpa_s->group_cipher;
2409 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE ||
2410 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2411 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE)
2413 if (wpa_set_wep_keys(wpa_s, ssid)) {
2418 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPS)
2421 #ifdef IEEE8021X_EAPOL
2422 if (wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
2423 if ((ssid->eapol_flags &
2424 (EAPOL_FLAG_REQUIRE_KEY_UNICAST |
2425 EAPOL_FLAG_REQUIRE_KEY_BROADCAST)) == 0 &&
2429 /* Assume that dynamic WEP-104 keys will be used and
2430 * set cipher suites in order for drivers to expect
2432 cipher_pairwise = cipher_group = WPA_CIPHER_WEP104;
2435 #endif /* IEEE8021X_EAPOL */
2437 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2438 /* Set the key before (and later after) association */
2439 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2442 wpa_supplicant_set_state(wpa_s, WPA_ASSOCIATING);
2444 params.ssid = bss->ssid;
2445 params.ssid_len = bss->ssid_len;
2446 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
2447 wpa_printf(MSG_DEBUG, "Limit connection to BSSID "
2448 MACSTR " freq=%u MHz based on scan results "
2450 MAC2STR(bss->bssid), bss->freq,
2452 params.bssid = bss->bssid;
2453 params.freq.freq = bss->freq;
2455 params.bssid_hint = bss->bssid;
2456 params.freq_hint = bss->freq;
2457 params.pbss = bss_is_pbss(bss);
2459 params.ssid = ssid->ssid;
2460 params.ssid_len = ssid->ssid_len;
2461 params.pbss = (ssid->pbss != 2) ? ssid->pbss : 0;
2464 if (ssid->mode == WPAS_MODE_IBSS && ssid->bssid_set &&
2465 wpa_s->conf->ap_scan == 2) {
2466 params.bssid = ssid->bssid;
2467 params.fixed_bssid = 1;
2470 /* Initial frequency for IBSS/mesh */
2471 if ((ssid->mode == WPAS_MODE_IBSS || ssid->mode == WPAS_MODE_MESH) &&
2472 ssid->frequency > 0 && params.freq.freq == 0)
2473 ibss_mesh_setup_freq(wpa_s, ssid, ¶ms.freq);
2475 if (ssid->mode == WPAS_MODE_IBSS) {
2476 params.fixed_freq = ssid->fixed_freq;
2477 if (ssid->beacon_int)
2478 params.beacon_int = ssid->beacon_int;
2480 params.beacon_int = wpa_s->conf->beacon_int;
2483 params.wpa_ie = wpa_ie;
2484 params.wpa_ie_len = wpa_ie_len;
2485 params.pairwise_suite = cipher_pairwise;
2486 params.group_suite = cipher_group;
2487 params.key_mgmt_suite = wpa_s->key_mgmt;
2488 params.wpa_proto = wpa_s->wpa_proto;
2489 params.auth_alg = algs;
2490 params.mode = ssid->mode;
2491 params.bg_scan_period = ssid->bg_scan_period;
2492 for (i = 0; i < NUM_WEP_KEYS; i++) {
2493 if (ssid->wep_key_len[i])
2494 params.wep_key[i] = ssid->wep_key[i];
2495 params.wep_key_len[i] = ssid->wep_key_len[i];
2497 params.wep_tx_keyidx = ssid->wep_tx_keyidx;
2499 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
2500 (params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2501 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK)) {
2502 params.passphrase = ssid->passphrase;
2504 params.psk = ssid->psk;
2507 if (wpa_s->conf->key_mgmt_offload) {
2508 if (params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
2509 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
2510 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B ||
2511 params.key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SUITE_B_192)
2512 params.req_key_mgmt_offload =
2513 ssid->proactive_key_caching < 0 ?
2514 wpa_s->conf->okc : ssid->proactive_key_caching;
2516 params.req_key_mgmt_offload = 1;
2518 if ((params.key_mgmt_suite == WPA_KEY_MGMT_PSK ||
2519 params.key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256 ||
2520 params.key_mgmt_suite == WPA_KEY_MGMT_FT_PSK) &&
2522 params.psk = ssid->psk;
2525 params.drop_unencrypted = use_crypt;
2527 #ifdef CONFIG_IEEE80211W
2528 params.mgmt_frame_protection = wpas_get_ssid_pmf(wpa_s, ssid);
2529 if (params.mgmt_frame_protection != NO_MGMT_FRAME_PROTECTION && bss) {
2530 const u8 *rsn = wpa_bss_get_ie(bss, WLAN_EID_RSN);
2531 struct wpa_ie_data ie;
2532 if (rsn && wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie) == 0 &&
2534 (WPA_CAPABILITY_MFPC | WPA_CAPABILITY_MFPR)) {
2535 wpa_dbg(wpa_s, MSG_DEBUG, "WPA: Selected AP supports "
2536 "MFP: require MFP");
2537 params.mgmt_frame_protection =
2538 MGMT_FRAME_PROTECTION_REQUIRED;
2541 #endif /* CONFIG_IEEE80211W */
2543 params.p2p = ssid->p2p_group;
2545 if (wpa_s->p2pdev->set_sta_uapsd)
2546 params.uapsd = wpa_s->p2pdev->sta_uapsd;
2550 #ifdef CONFIG_HT_OVERRIDES
2551 os_memset(&htcaps, 0, sizeof(htcaps));
2552 os_memset(&htcaps_mask, 0, sizeof(htcaps_mask));
2553 params.htcaps = (u8 *) &htcaps;
2554 params.htcaps_mask = (u8 *) &htcaps_mask;
2555 wpa_supplicant_apply_ht_overrides(wpa_s, ssid, ¶ms);
2556 #endif /* CONFIG_HT_OVERRIDES */
2557 #ifdef CONFIG_VHT_OVERRIDES
2558 os_memset(&vhtcaps, 0, sizeof(vhtcaps));
2559 os_memset(&vhtcaps_mask, 0, sizeof(vhtcaps_mask));
2560 params.vhtcaps = &vhtcaps;
2561 params.vhtcaps_mask = &vhtcaps_mask;
2562 wpa_supplicant_apply_vht_overrides(wpa_s, ssid, ¶ms);
2563 #endif /* CONFIG_VHT_OVERRIDES */
2567 * If multi-channel concurrency is not supported, check for any
2568 * frequency conflict. In case of any frequency conflict, remove the
2569 * least prioritized connection.
2571 if (wpa_s->num_multichan_concurrent < 2) {
2573 num = get_shared_radio_freqs(wpa_s, &freq, 1);
2574 if (num > 0 && freq > 0 && freq != params.freq.freq) {
2575 wpa_printf(MSG_DEBUG,
2576 "Assoc conflicting freq found (%d != %d)",
2577 freq, params.freq.freq);
2578 if (wpas_p2p_handle_frequency_conflicts(
2579 wpa_s, params.freq.freq, ssid) < 0) {
2580 wpas_connect_work_done(wpa_s);
2585 #endif /* CONFIG_P2P */
2587 if (wpa_s->reassoc_same_ess && !is_zero_ether_addr(prev_bssid) &&
2588 wpa_s->current_ssid)
2589 params.prev_bssid = prev_bssid;
2591 ret = wpa_drv_associate(wpa_s, ¶ms);
2593 wpa_msg(wpa_s, MSG_INFO, "Association request to the driver "
2595 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SANE_ERROR_CODES) {
2597 * The driver is known to mean what is saying, so we
2598 * can stop right here; the association will not
2601 wpas_connection_failed(wpa_s, wpa_s->pending_bssid);
2602 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
2603 os_memset(wpa_s->pending_bssid, 0, ETH_ALEN);
2606 /* try to continue anyway; new association will be tried again
2611 if (wpa_s->key_mgmt == WPA_KEY_MGMT_WPA_NONE) {
2612 /* Set the key after the association just in case association
2613 * cleared the previously configured key. */
2614 wpa_supplicant_set_wpa_none_key(wpa_s, ssid);
2615 /* No need to timeout authentication since there is no key
2617 wpa_supplicant_cancel_auth_timeout(wpa_s);
2618 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED);
2619 #ifdef CONFIG_IBSS_RSN
2620 } else if (ssid->mode == WPAS_MODE_IBSS &&
2621 wpa_s->key_mgmt != WPA_KEY_MGMT_NONE &&
2622 wpa_s->key_mgmt != WPA_KEY_MGMT_WPA_NONE) {
2624 * RSN IBSS authentication is per-STA and we can disable the
2625 * per-BSSID authentication.
2627 wpa_supplicant_cancel_auth_timeout(wpa_s);
2628 #endif /* CONFIG_IBSS_RSN */
2630 /* Timeout for IEEE 802.11 authentication and association */
2634 /* give IBSS a bit more time */
2635 timeout = ssid->mode == WPAS_MODE_IBSS ? 10 : 5;
2636 } else if (wpa_s->conf->ap_scan == 1) {
2637 /* give IBSS a bit more time */
2638 timeout = ssid->mode == WPAS_MODE_IBSS ? 20 : 10;
2640 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
2644 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC)) {
2645 /* Set static WEP keys again */
2646 wpa_set_wep_keys(wpa_s, ssid);
2649 if (wpa_s->current_ssid && wpa_s->current_ssid != ssid) {
2651 * Do not allow EAP session resumption between different
2652 * network configurations.
2654 eapol_sm_invalidate_cached_session(wpa_s->eapol);
2656 old_ssid = wpa_s->current_ssid;
2657 wpa_s->current_ssid = ssid;
2659 if (!wpas_driver_bss_selection(wpa_s) || ssid->bssid_set) {
2660 wpa_s->current_bss = bss;
2662 hs20_configure_frame_filters(wpa_s);
2663 #endif /* CONFIG_HS20 */
2666 wpa_supplicant_rsn_supp_set_config(wpa_s, wpa_s->current_ssid);
2667 wpa_supplicant_initiate_eapol(wpa_s);
2668 if (old_ssid != wpa_s->current_ssid)
2669 wpas_notify_network_changed(wpa_s);
2673 static void wpa_supplicant_clear_connection(struct wpa_supplicant *wpa_s,
2676 struct wpa_ssid *old_ssid;
2678 wpas_connect_work_done(wpa_s);
2679 wpa_clear_keys(wpa_s, addr);
2680 old_ssid = wpa_s->current_ssid;
2681 wpa_supplicant_mark_disassoc(wpa_s);
2682 wpa_sm_set_config(wpa_s->wpa, NULL);
2683 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2684 if (old_ssid != wpa_s->current_ssid)
2685 wpas_notify_network_changed(wpa_s);
2686 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
2691 * wpa_supplicant_deauthenticate - Deauthenticate the current connection
2692 * @wpa_s: Pointer to wpa_supplicant data
2693 * @reason_code: IEEE 802.11 reason code for the deauthenticate frame
2695 * This function is used to request %wpa_supplicant to deauthenticate from the
2698 void wpa_supplicant_deauthenticate(struct wpa_supplicant *wpa_s,
2702 union wpa_event_data event;
2705 wpa_dbg(wpa_s, MSG_DEBUG, "Request to deauthenticate - bssid=" MACSTR
2706 " pending_bssid=" MACSTR " reason=%d state=%s",
2707 MAC2STR(wpa_s->bssid), MAC2STR(wpa_s->pending_bssid),
2708 reason_code, wpa_supplicant_state_txt(wpa_s->wpa_state));
2710 if (!is_zero_ether_addr(wpa_s->pending_bssid) &&
2711 (wpa_s->wpa_state == WPA_AUTHENTICATING ||
2712 wpa_s->wpa_state == WPA_ASSOCIATING))
2713 addr = wpa_s->pending_bssid;
2714 else if (!is_zero_ether_addr(wpa_s->bssid))
2715 addr = wpa_s->bssid;
2716 else if (wpa_s->wpa_state == WPA_ASSOCIATING) {
2718 * When using driver-based BSS selection, we may not know the
2719 * BSSID with which we are currently trying to associate. We
2720 * need to notify the driver of this disconnection even in such
2721 * a case, so use the all zeros address here.
2723 addr = wpa_s->bssid;
2728 wpa_tdls_teardown_peers(wpa_s->wpa);
2729 #endif /* CONFIG_TDLS */
2733 wpa_msg(wpa_s, MSG_INFO, MESH_GROUP_REMOVED "%s",
2735 wpa_supplicant_leave_mesh(wpa_s);
2737 #endif /* CONFIG_MESH */
2740 wpa_drv_deauthenticate(wpa_s, addr, reason_code);
2741 os_memset(&event, 0, sizeof(event));
2742 event.deauth_info.reason_code = (u16) reason_code;
2743 event.deauth_info.locally_generated = 1;
2744 wpa_supplicant_event(wpa_s, EVENT_DEAUTH, &event);
2749 wpa_supplicant_clear_connection(wpa_s, addr);
2752 static void wpa_supplicant_enable_one_network(struct wpa_supplicant *wpa_s,
2753 struct wpa_ssid *ssid)
2755 if (!ssid || !ssid->disabled || ssid->disabled == 2)
2759 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2760 wpas_notify_network_enabled_changed(wpa_s, ssid);
2763 * Try to reassociate since there is no current configuration and a new
2764 * network was made available.
2766 if (!wpa_s->current_ssid && !wpa_s->disconnected)
2767 wpa_s->reassociate = 1;
2772 * wpa_supplicant_add_network - Add a new network
2773 * @wpa_s: wpa_supplicant structure for a network interface
2774 * Returns: The new network configuration or %NULL if operation failed
2776 * This function performs the following operations:
2777 * 1. Adds a new network.
2778 * 2. Send network addition notification.
2779 * 3. Marks the network disabled.
2780 * 4. Set network default parameters.
2782 struct wpa_ssid * wpa_supplicant_add_network(struct wpa_supplicant *wpa_s)
2784 struct wpa_ssid *ssid;
2786 ssid = wpa_config_add_network(wpa_s->conf);
2789 wpas_notify_network_added(wpa_s, ssid);
2791 wpa_config_set_network_defaults(ssid);
2798 * wpa_supplicant_remove_network - Remove a configured network based on id
2799 * @wpa_s: wpa_supplicant structure for a network interface
2800 * @id: Unique network id to search for
2801 * Returns: 0 on success, or -1 if the network was not found, -2 if the network
2802 * could not be removed
2804 * This function performs the following operations:
2805 * 1. Removes the network.
2806 * 2. Send network removal notification.
2807 * 3. Update internal state machines.
2808 * 4. Stop any running sched scans.
2810 int wpa_supplicant_remove_network(struct wpa_supplicant *wpa_s, int id)
2812 struct wpa_ssid *ssid;
2815 ssid = wpa_config_get_network(wpa_s->conf, id);
2818 wpas_notify_network_removed(wpa_s, ssid);
2820 if (wpa_s->last_ssid == ssid)
2821 wpa_s->last_ssid = NULL;
2823 if (ssid == wpa_s->current_ssid || !wpa_s->current_ssid) {
2825 wpa_s->sme.prev_bssid_set = 0;
2826 #endif /* CONFIG_SME */
2828 * Invalidate the EAP session cache if the current or
2829 * previously used network is removed.
2831 eapol_sm_invalidate_cached_session(wpa_s->eapol);
2834 if (ssid == wpa_s->current_ssid) {
2835 wpa_sm_set_config(wpa_s->wpa, NULL);
2836 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
2838 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
2839 wpa_s->own_disconnect_req = 1;
2840 wpa_supplicant_deauthenticate(wpa_s,
2841 WLAN_REASON_DEAUTH_LEAVING);
2844 was_disabled = ssid->disabled;
2846 if (wpa_config_remove_network(wpa_s->conf, id) < 0)
2849 if (!was_disabled && wpa_s->sched_scanning) {
2850 wpa_printf(MSG_DEBUG,
2851 "Stop ongoing sched_scan to remove network from filters");
2852 wpa_supplicant_cancel_sched_scan(wpa_s);
2853 wpa_supplicant_req_scan(wpa_s, 0, 0);
2861 * wpa_supplicant_enable_network - Mark a configured network as enabled
2862 * @wpa_s: wpa_supplicant structure for a network interface
2863 * @ssid: wpa_ssid structure for a configured network or %NULL
2865 * Enables the specified network or all networks if no network specified.
2867 void wpa_supplicant_enable_network(struct wpa_supplicant *wpa_s,
2868 struct wpa_ssid *ssid)
2871 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
2872 wpa_supplicant_enable_one_network(wpa_s, ssid);
2874 wpa_supplicant_enable_one_network(wpa_s, ssid);
2876 if (wpa_s->reassociate && !wpa_s->disconnected &&
2877 (!wpa_s->current_ssid ||
2878 wpa_s->wpa_state == WPA_DISCONNECTED ||
2879 wpa_s->wpa_state == WPA_SCANNING)) {
2880 if (wpa_s->sched_scanning) {
2881 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan to add "
2882 "new network to scan filters");
2883 wpa_supplicant_cancel_sched_scan(wpa_s);
2886 if (wpa_supplicant_fast_associate(wpa_s) != 1) {
2887 wpa_s->scan_req = NORMAL_SCAN_REQ;
2888 wpa_supplicant_req_scan(wpa_s, 0, 0);
2895 * wpa_supplicant_disable_network - Mark a configured network as disabled
2896 * @wpa_s: wpa_supplicant structure for a network interface
2897 * @ssid: wpa_ssid structure for a configured network or %NULL
2899 * Disables the specified network or all networks if no network specified.
2901 void wpa_supplicant_disable_network(struct wpa_supplicant *wpa_s,
2902 struct wpa_ssid *ssid)
2904 struct wpa_ssid *other_ssid;
2908 if (wpa_s->sched_scanning)
2909 wpa_supplicant_cancel_sched_scan(wpa_s);
2911 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2912 other_ssid = other_ssid->next) {
2913 was_disabled = other_ssid->disabled;
2914 if (was_disabled == 2)
2915 continue; /* do not change persistent P2P group
2918 other_ssid->disabled = 1;
2920 if (was_disabled != other_ssid->disabled)
2921 wpas_notify_network_enabled_changed(
2924 if (wpa_s->current_ssid)
2925 wpa_supplicant_deauthenticate(
2926 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2927 } else if (ssid->disabled != 2) {
2928 if (ssid == wpa_s->current_ssid)
2929 wpa_supplicant_deauthenticate(
2930 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2932 was_disabled = ssid->disabled;
2936 if (was_disabled != ssid->disabled) {
2937 wpas_notify_network_enabled_changed(wpa_s, ssid);
2938 if (wpa_s->sched_scanning) {
2939 wpa_printf(MSG_DEBUG, "Stop ongoing sched_scan "
2940 "to remove network from filters");
2941 wpa_supplicant_cancel_sched_scan(wpa_s);
2942 wpa_supplicant_req_scan(wpa_s, 0, 0);
2950 * wpa_supplicant_select_network - Attempt association with a network
2951 * @wpa_s: wpa_supplicant structure for a network interface
2952 * @ssid: wpa_ssid structure for a configured network or %NULL for any network
2954 void wpa_supplicant_select_network(struct wpa_supplicant *wpa_s,
2955 struct wpa_ssid *ssid)
2958 struct wpa_ssid *other_ssid;
2959 int disconnected = 0;
2961 if (ssid && ssid != wpa_s->current_ssid && wpa_s->current_ssid) {
2962 if (wpa_s->wpa_state >= WPA_AUTHENTICATING)
2963 wpa_s->own_disconnect_req = 1;
2964 wpa_supplicant_deauthenticate(
2965 wpa_s, WLAN_REASON_DEAUTH_LEAVING);
2970 wpas_clear_temp_disabled(wpa_s, ssid, 1);
2973 * Mark all other networks disabled or mark all networks enabled if no
2974 * network specified.
2976 for (other_ssid = wpa_s->conf->ssid; other_ssid;
2977 other_ssid = other_ssid->next) {
2978 int was_disabled = other_ssid->disabled;
2979 if (was_disabled == 2)
2980 continue; /* do not change persistent P2P group data */
2982 other_ssid->disabled = ssid ? (ssid->id != other_ssid->id) : 0;
2983 if (was_disabled && !other_ssid->disabled)
2984 wpas_clear_temp_disabled(wpa_s, other_ssid, 0);
2986 if (was_disabled != other_ssid->disabled)
2987 wpas_notify_network_enabled_changed(wpa_s, other_ssid);
2990 if (ssid && ssid == wpa_s->current_ssid && wpa_s->current_ssid &&
2991 wpa_s->wpa_state >= WPA_AUTHENTICATING) {
2992 /* We are already associated with the selected network */
2993 wpa_printf(MSG_DEBUG, "Already associated with the "
2994 "selected network - do nothing");
2999 wpa_s->current_ssid = ssid;
3000 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL);
3001 wpa_s->connect_without_scan =
3002 (ssid->mode == WPAS_MODE_MESH) ? ssid : NULL;
3005 * Don't optimize next scan freqs since a new ESS has been
3008 os_free(wpa_s->next_scan_freqs);
3009 wpa_s->next_scan_freqs = NULL;
3011 wpa_s->connect_without_scan = NULL;
3014 wpa_s->disconnected = 0;
3015 wpa_s->reassociate = 1;
3017 if (wpa_s->connect_without_scan ||
3018 wpa_supplicant_fast_associate(wpa_s) != 1) {
3019 wpa_s->scan_req = NORMAL_SCAN_REQ;
3020 wpas_scan_reset_sched_scan(wpa_s);
3021 wpa_supplicant_req_scan(wpa_s, 0, disconnected ? 100000 : 0);
3025 wpas_notify_network_selected(wpa_s, ssid);
3030 * wpas_set_pkcs11_engine_and_module_path - Set PKCS #11 engine and module path
3031 * @wpa_s: wpa_supplicant structure for a network interface
3032 * @pkcs11_engine_path: PKCS #11 engine path or NULL
3033 * @pkcs11_module_path: PKCS #11 module path or NULL
3034 * Returns: 0 on success; -1 on failure
3036 * Sets the PKCS #11 engine and module path. Both have to be NULL or a valid
3037 * path. If resetting the EAPOL state machine with the new PKCS #11 engine and
3038 * module path fails the paths will be reset to the default value (NULL).
3040 int wpas_set_pkcs11_engine_and_module_path(struct wpa_supplicant *wpa_s,
3041 const char *pkcs11_engine_path,
3042 const char *pkcs11_module_path)
3044 char *pkcs11_engine_path_copy = NULL;
3045 char *pkcs11_module_path_copy = NULL;
3047 if (pkcs11_engine_path != NULL) {
3048 pkcs11_engine_path_copy = os_strdup(pkcs11_engine_path);
3049 if (pkcs11_engine_path_copy == NULL)
3052 if (pkcs11_module_path != NULL) {
3053 pkcs11_module_path_copy = os_strdup(pkcs11_module_path);
3054 if (pkcs11_module_path_copy == NULL) {
3055 os_free(pkcs11_engine_path_copy);
3060 os_free(wpa_s->conf->pkcs11_engine_path);
3061 os_free(wpa_s->conf->pkcs11_module_path);
3062 wpa_s->conf->pkcs11_engine_path = pkcs11_engine_path_copy;
3063 wpa_s->conf->pkcs11_module_path = pkcs11_module_path_copy;
3065 wpa_sm_set_eapol(wpa_s->wpa, NULL);
3066 eapol_sm_deinit(wpa_s->eapol);
3067 wpa_s->eapol = NULL;
3068 if (wpa_supplicant_init_eapol(wpa_s)) {
3069 /* Error -> Reset paths to the default value (NULL) once. */
3070 if (pkcs11_engine_path != NULL && pkcs11_module_path != NULL)
3071 wpas_set_pkcs11_engine_and_module_path(wpa_s, NULL,
3076 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
3083 * wpa_supplicant_set_ap_scan - Set AP scan mode for interface
3084 * @wpa_s: wpa_supplicant structure for a network interface
3085 * @ap_scan: AP scan mode
3086 * Returns: 0 if succeed or -1 if ap_scan has an invalid value
3089 int wpa_supplicant_set_ap_scan(struct wpa_supplicant *wpa_s, int ap_scan)
3094 if (ap_scan < 0 || ap_scan > 2)
3097 if (ap_scan == 2 && os_strcmp(wpa_s->driver->name, "nl80211") == 0) {
3098 wpa_printf(MSG_INFO,
3099 "Note: nl80211 driver interface is not designed to be used with ap_scan=2; this can result in connection failures");
3103 if (ap_scan == 2 && ap_scan != wpa_s->conf->ap_scan &&
3104 wpa_s->wpa_state >= WPA_ASSOCIATING &&
3105 wpa_s->wpa_state < WPA_COMPLETED) {
3106 wpa_printf(MSG_ERROR, "ap_scan = %d (%d) rejected while "
3107 "associating", wpa_s->conf->ap_scan, ap_scan);
3110 #endif /* ANDROID */
3112 old_ap_scan = wpa_s->conf->ap_scan;
3113 wpa_s->conf->ap_scan = ap_scan;
3115 if (old_ap_scan != wpa_s->conf->ap_scan)
3116 wpas_notify_ap_scan_changed(wpa_s);
3123 * wpa_supplicant_set_bss_expiration_age - Set BSS entry expiration age
3124 * @wpa_s: wpa_supplicant structure for a network interface
3125 * @expire_age: Expiration age in seconds
3126 * Returns: 0 if succeed or -1 if expire_age has an invalid value
3129 int wpa_supplicant_set_bss_expiration_age(struct wpa_supplicant *wpa_s,
3130 unsigned int bss_expire_age)
3132 if (bss_expire_age < 10) {
3133 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration age %u",
3137 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration age: %d sec",
3139 wpa_s->conf->bss_expiration_age = bss_expire_age;
3146 * wpa_supplicant_set_bss_expiration_count - Set BSS entry expiration scan count
3147 * @wpa_s: wpa_supplicant structure for a network interface
3148 * @expire_count: number of scans after which an unseen BSS is reclaimed
3149 * Returns: 0 if succeed or -1 if expire_count has an invalid value
3152 int wpa_supplicant_set_bss_expiration_count(struct wpa_supplicant *wpa_s,
3153 unsigned int bss_expire_count)
3155 if (bss_expire_count < 1) {
3156 wpa_msg(wpa_s, MSG_ERROR, "Invalid bss expiration count %u",
3160 wpa_msg(wpa_s, MSG_DEBUG, "Setting bss expiration scan count: %u",
3162 wpa_s->conf->bss_expiration_scan_count = bss_expire_count;
3169 * wpa_supplicant_set_scan_interval - Set scan interval
3170 * @wpa_s: wpa_supplicant structure for a network interface
3171 * @scan_interval: scan interval in seconds
3172 * Returns: 0 if succeed or -1 if scan_interval has an invalid value
3175 int wpa_supplicant_set_scan_interval(struct wpa_supplicant *wpa_s,
3178 if (scan_interval < 0) {
3179 wpa_msg(wpa_s, MSG_ERROR, "Invalid scan interval %d",
3183 wpa_msg(wpa_s, MSG_DEBUG, "Setting scan interval: %d sec",
3185 wpa_supplicant_update_scan_int(wpa_s, scan_interval);
3192 * wpa_supplicant_set_debug_params - Set global debug params
3193 * @global: wpa_global structure
3194 * @debug_level: debug level
3195 * @debug_timestamp: determines if show timestamp in debug data
3196 * @debug_show_keys: determines if show keys in debug data
3197 * Returns: 0 if succeed or -1 if debug_level has wrong value
3199 int wpa_supplicant_set_debug_params(struct wpa_global *global, int debug_level,
3200 int debug_timestamp, int debug_show_keys)
3203 int old_level, old_timestamp, old_show_keys;
3205 /* check for allowed debuglevels */
3206 if (debug_level != MSG_EXCESSIVE &&
3207 debug_level != MSG_MSGDUMP &&
3208 debug_level != MSG_DEBUG &&
3209 debug_level != MSG_INFO &&
3210 debug_level != MSG_WARNING &&
3211 debug_level != MSG_ERROR)
3214 old_level = wpa_debug_level;
3215 old_timestamp = wpa_debug_timestamp;
3216 old_show_keys = wpa_debug_show_keys;
3218 wpa_debug_level = debug_level;
3219 wpa_debug_timestamp = debug_timestamp ? 1 : 0;
3220 wpa_debug_show_keys = debug_show_keys ? 1 : 0;
3222 if (wpa_debug_level != old_level)
3223 wpas_notify_debug_level_changed(global);
3224 if (wpa_debug_timestamp != old_timestamp)
3225 wpas_notify_debug_timestamp_changed(global);
3226 if (wpa_debug_show_keys != old_show_keys)
3227 wpas_notify_debug_show_keys_changed(global);
3234 * wpa_supplicant_get_ssid - Get a pointer to the current network structure
3235 * @wpa_s: Pointer to wpa_supplicant data
3236 * Returns: A pointer to the current network structure or %NULL on failure
3238 struct wpa_ssid * wpa_supplicant_get_ssid(struct wpa_supplicant *wpa_s)
3240 struct wpa_ssid *entry;
3241 u8 ssid[SSID_MAX_LEN];
3247 res = wpa_drv_get_ssid(wpa_s, ssid);
3249 wpa_msg(wpa_s, MSG_WARNING, "Could not read SSID from "
3255 if (wpa_drv_get_bssid(wpa_s, bssid) < 0) {
3256 wpa_msg(wpa_s, MSG_WARNING, "Could not read BSSID from "
3261 wired = wpa_s->conf->ap_scan == 0 &&
3262 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_WIRED);
3264 entry = wpa_s->conf->ssid;
3266 if (!wpas_network_disabled(wpa_s, entry) &&
3267 ((ssid_len == entry->ssid_len &&
3268 os_memcmp(ssid, entry->ssid, ssid_len) == 0) || wired) &&
3269 (!entry->bssid_set ||
3270 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
3273 if (!wpas_network_disabled(wpa_s, entry) &&
3274 (entry->key_mgmt & WPA_KEY_MGMT_WPS) &&
3275 (entry->ssid == NULL || entry->ssid_len == 0) &&
3276 (!entry->bssid_set ||
3277 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0))
3279 #endif /* CONFIG_WPS */
3281 if (!wpas_network_disabled(wpa_s, entry) && entry->bssid_set &&
3282 entry->ssid_len == 0 &&
3283 os_memcmp(bssid, entry->bssid, ETH_ALEN) == 0)
3286 entry = entry->next;
3293 static int select_driver(struct wpa_supplicant *wpa_s, int i)
3295 struct wpa_global *global = wpa_s->global;
3297 if (wpa_drivers[i]->global_init && global->drv_priv[i] == NULL) {
3298 global->drv_priv[i] = wpa_drivers[i]->global_init(global);
3299 if (global->drv_priv[i] == NULL) {
3300 wpa_printf(MSG_ERROR, "Failed to initialize driver "
3301 "'%s'", wpa_drivers[i]->name);
3306 wpa_s->driver = wpa_drivers[i];
3307 wpa_s->global_drv_priv = global->drv_priv[i];
3313 static int wpa_supplicant_set_driver(struct wpa_supplicant *wpa_s,
3318 const char *pos, *driver = name;
3323 if (wpa_drivers[0] == NULL) {
3324 wpa_msg(wpa_s, MSG_ERROR, "No driver interfaces build into "
3330 /* default to first driver in the list */
3331 return select_driver(wpa_s, 0);
3335 pos = os_strchr(driver, ',');
3339 len = os_strlen(driver);
3341 for (i = 0; wpa_drivers[i]; i++) {
3342 if (os_strlen(wpa_drivers[i]->name) == len &&
3343 os_strncmp(driver, wpa_drivers[i]->name, len) ==
3345 /* First driver that succeeds wins */
3346 if (select_driver(wpa_s, i) == 0)
3354 wpa_msg(wpa_s, MSG_ERROR, "Unsupported driver '%s'", name);
3360 * wpa_supplicant_rx_eapol - Deliver a received EAPOL frame to wpa_supplicant
3361 * @ctx: Context pointer (wpa_s); this is the ctx variable registered
3362 * with struct wpa_driver_ops::init()
3363 * @src_addr: Source address of the EAPOL frame
3364 * @buf: EAPOL data starting from the EAPOL header (i.e., no Ethernet header)
3365 * @len: Length of the EAPOL data
3367 * This function is called for each received EAPOL frame. Most driver
3368 * interfaces rely on more generic OS mechanism for receiving frames through
3369 * l2_packet, but if such a mechanism is not available, the driver wrapper may
3370 * take care of received EAPOL frames and deliver them to the core supplicant
3371 * code by calling this function.
3373 void wpa_supplicant_rx_eapol(void *ctx, const u8 *src_addr,
3374 const u8 *buf, size_t len)
3376 struct wpa_supplicant *wpa_s = ctx;
3378 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR, MAC2STR(src_addr));
3379 wpa_hexdump(MSG_MSGDUMP, "RX EAPOL", buf, len);
3381 #ifdef CONFIG_TESTING_OPTIONS
3382 if (wpa_s->ignore_auth_resp) {
3383 wpa_printf(MSG_INFO, "RX EAPOL - ignore_auth_resp active!");
3386 #endif /* CONFIG_TESTING_OPTIONS */
3388 #ifdef CONFIG_PEERKEY
3389 if (wpa_s->wpa_state > WPA_ASSOCIATED && wpa_s->current_ssid &&
3390 wpa_s->current_ssid->peerkey &&
3391 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) &&
3392 wpa_sm_rx_eapol_peerkey(wpa_s->wpa, src_addr, buf, len) == 1) {
3393 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: Processed PeerKey EAPOL-Key");
3396 #endif /* CONFIG_PEERKEY */
3398 if (wpa_s->wpa_state < WPA_ASSOCIATED ||
3399 (wpa_s->last_eapol_matches_bssid &&
3402 #endif /* CONFIG_AP */
3403 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) != 0)) {
3405 * There is possible race condition between receiving the
3406 * association event and the EAPOL frame since they are coming
3407 * through different paths from the driver. In order to avoid
3408 * issues in trying to process the EAPOL frame before receiving
3409 * association information, lets queue it for processing until
3410 * the association event is received. This may also be needed in
3411 * driver-based roaming case, so also use src_addr != BSSID as a
3412 * trigger if we have previously confirmed that the
3413 * Authenticator uses BSSID as the src_addr (which is not the
3414 * case with wired IEEE 802.1X).
3416 wpa_dbg(wpa_s, MSG_DEBUG, "Not associated - Delay processing "
3417 "of received EAPOL frame (state=%s bssid=" MACSTR ")",
3418 wpa_supplicant_state_txt(wpa_s->wpa_state),
3419 MAC2STR(wpa_s->bssid));
3420 wpabuf_free(wpa_s->pending_eapol_rx);
3421 wpa_s->pending_eapol_rx = wpabuf_alloc_copy(buf, len);
3422 if (wpa_s->pending_eapol_rx) {
3423 os_get_reltime(&wpa_s->pending_eapol_rx_time);
3424 os_memcpy(wpa_s->pending_eapol_rx_src, src_addr,
3430 wpa_s->last_eapol_matches_bssid =
3431 os_memcmp(src_addr, wpa_s->bssid, ETH_ALEN) == 0;
3434 if (wpa_s->ap_iface) {
3435 wpa_supplicant_ap_rx_eapol(wpa_s, src_addr, buf, len);
3438 #endif /* CONFIG_AP */
3440 if (wpa_s->key_mgmt == WPA_KEY_MGMT_NONE) {
3441 wpa_dbg(wpa_s, MSG_DEBUG, "Ignored received EAPOL frame since "
3442 "no key management is configured");
3446 if (wpa_s->eapol_received == 0 &&
3447 (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE) ||
3448 !wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) ||
3449 wpa_s->wpa_state != WPA_COMPLETED) &&
3450 (wpa_s->current_ssid == NULL ||
3451 wpa_s->current_ssid->mode != IEEE80211_MODE_IBSS)) {
3452 /* Timeout for completing IEEE 802.1X and WPA authentication */
3455 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) ||
3456 wpa_s->key_mgmt == WPA_KEY_MGMT_IEEE8021X_NO_WPA ||
3457 wpa_s->key_mgmt == WPA_KEY_MGMT_WPS) {
3458 /* Use longer timeout for IEEE 802.1X/EAP */
3463 if (wpa_s->current_ssid && wpa_s->current_bss &&
3464 (wpa_s->current_ssid->key_mgmt & WPA_KEY_MGMT_WPS) &&
3465 eap_is_wps_pin_enrollee(&wpa_s->current_ssid->eap)) {
3467 * Use shorter timeout if going through WPS AP iteration
3468 * for PIN config method with an AP that does not
3469 * advertise Selected Registrar.
3471 struct wpabuf *wps_ie;
3473 wps_ie = wpa_bss_get_vendor_ie_multi(
3474 wpa_s->current_bss, WPS_IE_VENDOR_TYPE);
3476 !wps_is_addr_authorized(wps_ie, wpa_s->own_addr, 1))
3478 wpabuf_free(wps_ie);
3480 #endif /* CONFIG_WPS */
3482 wpa_supplicant_req_auth_timeout(wpa_s, timeout, 0);
3484 wpa_s->eapol_received++;
3486 if (wpa_s->countermeasures) {
3487 wpa_msg(wpa_s, MSG_INFO, "WPA: Countermeasures - dropped "
3492 #ifdef CONFIG_IBSS_RSN
3493 if (wpa_s->current_ssid &&
3494 wpa_s->current_ssid->mode == WPAS_MODE_IBSS) {
3495 ibss_rsn_rx_eapol(wpa_s->ibss_rsn, src_addr, buf, len);
3498 #endif /* CONFIG_IBSS_RSN */
3500 /* Source address of the incoming EAPOL frame could be compared to the
3501 * current BSSID. However, it is possible that a centralized
3502 * Authenticator could be using another MAC address than the BSSID of
3503 * an AP, so just allow any address to be used for now. The replies are
3504 * still sent to the current BSSID (if available), though. */
3506 os_memcpy(wpa_s->last_eapol_src, src_addr, ETH_ALEN);
3507 if (!wpa_key_mgmt_wpa_psk(wpa_s->key_mgmt) &&
3508 eapol_sm_rx_eapol(wpa_s->eapol, src_addr, buf, len) > 0)
3510 wpa_drv_poll(wpa_s);
3511 if (!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
3512 wpa_sm_rx_eapol(wpa_s->wpa, src_addr, buf, len);
3513 else if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt)) {
3515 * Set portValid = TRUE here since we are going to skip 4-way
3516 * handshake processing which would normally set portValid. We
3517 * need this to allow the EAPOL state machines to be completed
3518 * without going through EAPOL-Key handshake.
3520 eapol_sm_notify_portValid(wpa_s->eapol, TRUE);
3525 int wpa_supplicant_update_mac_addr(struct wpa_supplicant *wpa_s)
3527 if ((!wpa_s->p2p_mgmt ||
3528 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
3529 !(wpa_s->drv_flags & WPA_DRIVER_FLAGS_P2P_DEDICATED_INTERFACE)) {
3530 l2_packet_deinit(wpa_s->l2);
3531 wpa_s->l2 = l2_packet_init(wpa_s->ifname,
3532 wpa_drv_get_mac_addr(wpa_s),
3534 wpa_supplicant_rx_eapol, wpa_s, 0);
3535 if (wpa_s->l2 == NULL)
3538 const u8 *addr = wpa_drv_get_mac_addr(wpa_s);
3540 os_memcpy(wpa_s->own_addr, addr, ETH_ALEN);
3543 if (wpa_s->l2 && l2_packet_get_own_addr(wpa_s->l2, wpa_s->own_addr)) {
3544 wpa_msg(wpa_s, MSG_ERROR, "Failed to get own L2 address");
3548 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3554 static void wpa_supplicant_rx_eapol_bridge(void *ctx, const u8 *src_addr,
3555 const u8 *buf, size_t len)
3557 struct wpa_supplicant *wpa_s = ctx;
3558 const struct l2_ethhdr *eth;
3560 if (len < sizeof(*eth))
3562 eth = (const struct l2_ethhdr *) buf;
3564 if (os_memcmp(eth->h_dest, wpa_s->own_addr, ETH_ALEN) != 0 &&
3565 !(eth->h_dest[0] & 0x01)) {
3566 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3567 " (bridge - not for this interface - ignore)",
3568 MAC2STR(src_addr), MAC2STR(eth->h_dest));
3572 wpa_dbg(wpa_s, MSG_DEBUG, "RX EAPOL from " MACSTR " to " MACSTR
3573 " (bridge)", MAC2STR(src_addr), MAC2STR(eth->h_dest));
3574 wpa_supplicant_rx_eapol(wpa_s, src_addr, buf + sizeof(*eth),
3575 len - sizeof(*eth));
3580 * wpa_supplicant_driver_init - Initialize driver interface parameters
3581 * @wpa_s: Pointer to wpa_supplicant data
3582 * Returns: 0 on success, -1 on failure
3584 * This function is called to initialize driver interface parameters.
3585 * wpa_drv_init() must have been called before this function to initialize the
3588 int wpa_supplicant_driver_init(struct wpa_supplicant *wpa_s)
3590 static int interface_count = 0;
3592 if (wpa_supplicant_update_mac_addr(wpa_s) < 0)
3595 wpa_dbg(wpa_s, MSG_DEBUG, "Own MAC address: " MACSTR,
3596 MAC2STR(wpa_s->own_addr));
3597 os_memcpy(wpa_s->perm_addr, wpa_s->own_addr, ETH_ALEN);
3598 wpa_sm_set_own_addr(wpa_s->wpa, wpa_s->own_addr);
3600 if (wpa_s->bridge_ifname[0]) {
3601 wpa_dbg(wpa_s, MSG_DEBUG, "Receiving packets from bridge "
3602 "interface '%s'", wpa_s->bridge_ifname);
3603 wpa_s->l2_br = l2_packet_init_bridge(
3604 wpa_s->bridge_ifname, wpa_s->ifname, wpa_s->own_addr,
3605 ETH_P_EAPOL, wpa_supplicant_rx_eapol_bridge, wpa_s, 1);
3606 if (wpa_s->l2_br == NULL) {
3607 wpa_msg(wpa_s, MSG_ERROR, "Failed to open l2_packet "
3608 "connection for the bridge interface '%s'",
3609 wpa_s->bridge_ifname);
3614 if (wpa_s->conf->ap_scan == 2 &&
3615 os_strcmp(wpa_s->driver->name, "nl80211") == 0) {
3616 wpa_printf(MSG_INFO,
3617 "Note: nl80211 driver interface is not designed to be used with ap_scan=2; this can result in connection failures");
3620 wpa_clear_keys(wpa_s, NULL);
3622 /* Make sure that TKIP countermeasures are not left enabled (could
3623 * happen if wpa_supplicant is killed during countermeasures. */
3624 wpa_drv_set_countermeasures(wpa_s, 0);
3626 wpa_dbg(wpa_s, MSG_DEBUG, "RSN: flushing PMKID list in the driver");
3627 wpa_drv_flush_pmkid(wpa_s);
3629 wpa_s->prev_scan_ssid = WILDCARD_SSID_SCAN;
3630 wpa_s->prev_scan_wildcard = 0;
3632 if (wpa_supplicant_enabled_networks(wpa_s)) {
3633 if (wpa_s->wpa_state == WPA_INTERFACE_DISABLED) {
3634 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
3635 interface_count = 0;
3638 if (!wpa_s->p2p_mgmt &&
3639 wpa_supplicant_delayed_sched_scan(wpa_s,
3640 interface_count % 3,
3642 wpa_supplicant_req_scan(wpa_s, interface_count % 3,
3644 #endif /* ANDROID */
3647 wpa_supplicant_set_state(wpa_s, WPA_INACTIVE);
3653 static int wpa_supplicant_daemon(const char *pid_file)
3655 wpa_printf(MSG_DEBUG, "Daemonize..");
3656 return os_daemonize(pid_file);
3660 static struct wpa_supplicant *
3661 wpa_supplicant_alloc(struct wpa_supplicant *parent)
3663 struct wpa_supplicant *wpa_s;
3665 wpa_s = os_zalloc(sizeof(*wpa_s));
3668 wpa_s->scan_req = INITIAL_SCAN_REQ;
3669 wpa_s->scan_interval = 5;
3670 wpa_s->new_connection = 1;
3671 wpa_s->parent = parent ? parent : wpa_s;
3672 wpa_s->p2pdev = wpa_s->parent;
3673 wpa_s->sched_scanning = 0;
3675 dl_list_init(&wpa_s->bss_tmp_disallowed);
3681 #ifdef CONFIG_HT_OVERRIDES
3683 static int wpa_set_htcap_mcs(struct wpa_supplicant *wpa_s,
3684 struct ieee80211_ht_capabilities *htcaps,
3685 struct ieee80211_ht_capabilities *htcaps_mask,
3688 /* parse ht_mcs into hex array */
3690 const char *tmp = ht_mcs;
3693 /* If ht_mcs is null, do not set anything */
3697 /* This is what we are setting in the kernel */
3698 os_memset(&htcaps->supported_mcs_set, 0, IEEE80211_HT_MCS_MASK_LEN);
3700 wpa_msg(wpa_s, MSG_DEBUG, "set_htcap, ht_mcs -:%s:-", ht_mcs);
3702 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
3704 long v = strtol(tmp, &end, 16);
3706 wpa_msg(wpa_s, MSG_DEBUG,
3707 "htcap value[%i]: %ld end: %p tmp: %p",
3712 htcaps->supported_mcs_set[i] = v;
3715 wpa_msg(wpa_s, MSG_ERROR,
3716 "Failed to parse ht-mcs: %s, error: %s\n",
3717 ht_mcs, strerror(errno));
3723 * If we were able to parse any values, then set mask for the MCS set.
3726 os_memset(&htcaps_mask->supported_mcs_set, 0xff,
3727 IEEE80211_HT_MCS_MASK_LEN - 1);
3728 /* skip the 3 reserved bits */
3729 htcaps_mask->supported_mcs_set[IEEE80211_HT_MCS_MASK_LEN - 1] =
3737 static int wpa_disable_max_amsdu(struct wpa_supplicant *wpa_s,
3738 struct ieee80211_ht_capabilities *htcaps,
3739 struct ieee80211_ht_capabilities *htcaps_mask,
3744 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_max_amsdu: %d", disabled);
3749 msk = host_to_le16(HT_CAP_INFO_MAX_AMSDU_SIZE);
3750 htcaps_mask->ht_capabilities_info |= msk;
3752 htcaps->ht_capabilities_info &= msk;
3754 htcaps->ht_capabilities_info |= msk;
3760 static int wpa_set_ampdu_factor(struct wpa_supplicant *wpa_s,
3761 struct ieee80211_ht_capabilities *htcaps,
3762 struct ieee80211_ht_capabilities *htcaps_mask,
3765 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_factor: %d", factor);
3770 if (factor < 0 || factor > 3) {
3771 wpa_msg(wpa_s, MSG_ERROR, "ampdu_factor: %d out of range. "
3772 "Must be 0-3 or -1", factor);
3776 htcaps_mask->a_mpdu_params |= 0x3; /* 2 bits for factor */
3777 htcaps->a_mpdu_params &= ~0x3;
3778 htcaps->a_mpdu_params |= factor & 0x3;
3784 static int wpa_set_ampdu_density(struct wpa_supplicant *wpa_s,
3785 struct ieee80211_ht_capabilities *htcaps,
3786 struct ieee80211_ht_capabilities *htcaps_mask,
3789 wpa_msg(wpa_s, MSG_DEBUG, "set_ampdu_density: %d", density);
3794 if (density < 0 || density > 7) {
3795 wpa_msg(wpa_s, MSG_ERROR,
3796 "ampdu_density: %d out of range. Must be 0-7 or -1.",
3801 htcaps_mask->a_mpdu_params |= 0x1C;
3802 htcaps->a_mpdu_params &= ~(0x1C);
3803 htcaps->a_mpdu_params |= (density << 2) & 0x1C;
3809 static int wpa_set_disable_ht40(struct wpa_supplicant *wpa_s,
3810 struct ieee80211_ht_capabilities *htcaps,
3811 struct ieee80211_ht_capabilities *htcaps_mask,
3814 /* Masking these out disables HT40 */
3815 le16 msk = host_to_le16(HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET |
3816 HT_CAP_INFO_SHORT_GI40MHZ);
3818 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ht40: %d", disabled);
3821 htcaps->ht_capabilities_info &= ~msk;
3823 htcaps->ht_capabilities_info |= msk;
3825 htcaps_mask->ht_capabilities_info |= msk;
3831 static int wpa_set_disable_sgi(struct wpa_supplicant *wpa_s,
3832 struct ieee80211_ht_capabilities *htcaps,
3833 struct ieee80211_ht_capabilities *htcaps_mask,
3836 /* Masking these out disables SGI */
3837 le16 msk = host_to_le16(HT_CAP_INFO_SHORT_GI20MHZ |
3838 HT_CAP_INFO_SHORT_GI40MHZ);
3840 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_sgi: %d", disabled);
3843 htcaps->ht_capabilities_info &= ~msk;
3845 htcaps->ht_capabilities_info |= msk;
3847 htcaps_mask->ht_capabilities_info |= msk;
3853 static int wpa_set_disable_ldpc(struct wpa_supplicant *wpa_s,
3854 struct ieee80211_ht_capabilities *htcaps,
3855 struct ieee80211_ht_capabilities *htcaps_mask,
3858 /* Masking these out disables LDPC */
3859 le16 msk = host_to_le16(HT_CAP_INFO_LDPC_CODING_CAP);
3861 wpa_msg(wpa_s, MSG_DEBUG, "set_disable_ldpc: %d", disabled);
3864 htcaps->ht_capabilities_info &= ~msk;
3866 htcaps->ht_capabilities_info |= msk;
3868 htcaps_mask->ht_capabilities_info |= msk;
3874 void wpa_supplicant_apply_ht_overrides(
3875 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3876 struct wpa_driver_associate_params *params)
3878 struct ieee80211_ht_capabilities *htcaps;
3879 struct ieee80211_ht_capabilities *htcaps_mask;
3884 params->disable_ht = ssid->disable_ht;
3885 if (!params->htcaps || !params->htcaps_mask)
3888 htcaps = (struct ieee80211_ht_capabilities *) params->htcaps;
3889 htcaps_mask = (struct ieee80211_ht_capabilities *) params->htcaps_mask;
3890 wpa_set_htcap_mcs(wpa_s, htcaps, htcaps_mask, ssid->ht_mcs);
3891 wpa_disable_max_amsdu(wpa_s, htcaps, htcaps_mask,
3892 ssid->disable_max_amsdu);
3893 wpa_set_ampdu_factor(wpa_s, htcaps, htcaps_mask, ssid->ampdu_factor);
3894 wpa_set_ampdu_density(wpa_s, htcaps, htcaps_mask, ssid->ampdu_density);
3895 wpa_set_disable_ht40(wpa_s, htcaps, htcaps_mask, ssid->disable_ht40);
3896 wpa_set_disable_sgi(wpa_s, htcaps, htcaps_mask, ssid->disable_sgi);
3897 wpa_set_disable_ldpc(wpa_s, htcaps, htcaps_mask, ssid->disable_ldpc);
3899 if (ssid->ht40_intolerant) {
3900 le16 bit = host_to_le16(HT_CAP_INFO_40MHZ_INTOLERANT);
3901 htcaps->ht_capabilities_info |= bit;
3902 htcaps_mask->ht_capabilities_info |= bit;
3906 #endif /* CONFIG_HT_OVERRIDES */
3909 #ifdef CONFIG_VHT_OVERRIDES
3910 void wpa_supplicant_apply_vht_overrides(
3911 struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid,
3912 struct wpa_driver_associate_params *params)
3914 struct ieee80211_vht_capabilities *vhtcaps;
3915 struct ieee80211_vht_capabilities *vhtcaps_mask;
3920 params->disable_vht = ssid->disable_vht;
3922 vhtcaps = (void *) params->vhtcaps;
3923 vhtcaps_mask = (void *) params->vhtcaps_mask;
3925 if (!vhtcaps || !vhtcaps_mask)
3928 vhtcaps->vht_capabilities_info = host_to_le32(ssid->vht_capa);
3929 vhtcaps_mask->vht_capabilities_info = host_to_le32(ssid->vht_capa_mask);
3931 #ifdef CONFIG_HT_OVERRIDES
3932 /* if max ampdu is <= 3, we have to make the HT cap the same */
3933 if (ssid->vht_capa_mask & VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) {
3936 max_ampdu = (ssid->vht_capa &
3937 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX) >>
3938 VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MAX_SHIFT;
3940 max_ampdu = max_ampdu < 3 ? max_ampdu : 3;
3941 wpa_set_ampdu_factor(wpa_s,
3942 (void *) params->htcaps,
3943 (void *) params->htcaps_mask,
3946 #endif /* CONFIG_HT_OVERRIDES */
3948 #define OVERRIDE_MCS(i) \
3949 if (ssid->vht_tx_mcs_nss_ ##i >= 0) { \
3950 vhtcaps_mask->vht_supported_mcs_set.tx_map |= \
3951 host_to_le16(3 << 2 * (i - 1)); \
3952 vhtcaps->vht_supported_mcs_set.tx_map |= \
3953 host_to_le16(ssid->vht_tx_mcs_nss_ ##i << \
3956 if (ssid->vht_rx_mcs_nss_ ##i >= 0) { \
3957 vhtcaps_mask->vht_supported_mcs_set.rx_map |= \
3958 host_to_le16(3 << 2 * (i - 1)); \
3959 vhtcaps->vht_supported_mcs_set.rx_map |= \
3960 host_to_le16(ssid->vht_rx_mcs_nss_ ##i << \
3973 #endif /* CONFIG_VHT_OVERRIDES */
3976 static int pcsc_reader_init(struct wpa_supplicant *wpa_s)
3981 if (!wpa_s->conf->pcsc_reader)
3984 wpa_s->scard = scard_init(wpa_s->conf->pcsc_reader);
3988 if (wpa_s->conf->pcsc_pin &&
3989 scard_set_pin(wpa_s->scard, wpa_s->conf->pcsc_pin) < 0) {
3990 scard_deinit(wpa_s->scard);
3991 wpa_s->scard = NULL;
3992 wpa_msg(wpa_s, MSG_ERROR, "PC/SC PIN validation failed");
3996 len = sizeof(wpa_s->imsi) - 1;
3997 if (scard_get_imsi(wpa_s->scard, wpa_s->imsi, &len)) {
3998 scard_deinit(wpa_s->scard);
3999 wpa_s->scard = NULL;
4000 wpa_msg(wpa_s, MSG_ERROR, "Could not read IMSI");
4003 wpa_s->imsi[len] = '\0';
4005 wpa_s->mnc_len = scard_get_mnc_len(wpa_s->scard);
4007 wpa_printf(MSG_DEBUG, "SCARD: IMSI %s (MNC length %d)",
4008 wpa_s->imsi, wpa_s->mnc_len);
4010 wpa_sm_set_scard_ctx(wpa_s->wpa, wpa_s->scard);
4011 eapol_sm_register_scard_ctx(wpa_s->eapol, wpa_s->scard);
4012 #endif /* PCSC_FUNCS */
4018 int wpas_init_ext_pw(struct wpa_supplicant *wpa_s)
4022 ext_password_deinit(wpa_s->ext_pw);
4023 wpa_s->ext_pw = NULL;
4024 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, NULL);
4026 if (!wpa_s->conf->ext_password_backend)
4029 val = os_strdup(wpa_s->conf->ext_password_backend);
4032 pos = os_strchr(val, ':');
4036 wpa_printf(MSG_DEBUG, "EXT PW: Initialize backend '%s'", val);
4038 wpa_s->ext_pw = ext_password_init(val, pos);
4040 if (wpa_s->ext_pw == NULL) {
4041 wpa_printf(MSG_DEBUG, "EXT PW: Failed to initialize backend");
4044 eapol_sm_set_ext_pw_ctx(wpa_s->eapol, wpa_s->ext_pw);
4052 static const u8 * wpas_fst_get_bssid_cb(void *ctx)
4054 struct wpa_supplicant *wpa_s = ctx;
4056 return (is_zero_ether_addr(wpa_s->bssid) ||
4057 wpa_s->wpa_state != WPA_COMPLETED) ? NULL : wpa_s->bssid;
4061 static void wpas_fst_get_channel_info_cb(void *ctx,
4062 enum hostapd_hw_mode *hw_mode,
4065 struct wpa_supplicant *wpa_s = ctx;
4067 if (wpa_s->current_bss) {
4068 *hw_mode = ieee80211_freq_to_chan(wpa_s->current_bss->freq,
4070 } else if (wpa_s->hw.num_modes) {
4071 *hw_mode = wpa_s->hw.modes[0].mode;
4079 static int wpas_fst_get_hw_modes(void *ctx, struct hostapd_hw_modes **modes)
4081 struct wpa_supplicant *wpa_s = ctx;
4083 *modes = wpa_s->hw.modes;
4084 return wpa_s->hw.num_modes;
4088 static void wpas_fst_set_ies_cb(void *ctx, const struct wpabuf *fst_ies)
4090 struct wpa_supplicant *wpa_s = ctx;
4092 wpa_hexdump_buf(MSG_DEBUG, "FST: Set IEs", fst_ies);
4093 wpa_s->fst_ies = fst_ies;
4097 static int wpas_fst_send_action_cb(void *ctx, const u8 *da, struct wpabuf *data)
4099 struct wpa_supplicant *wpa_s = ctx;
4101 WPA_ASSERT(os_memcmp(wpa_s->bssid, da, ETH_ALEN) == 0);
4102 return wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
4103 wpa_s->own_addr, wpa_s->bssid,
4104 wpabuf_head(data), wpabuf_len(data),
4109 static const struct wpabuf * wpas_fst_get_mb_ie_cb(void *ctx, const u8 *addr)
4111 struct wpa_supplicant *wpa_s = ctx;
4113 WPA_ASSERT(os_memcmp(wpa_s->bssid, addr, ETH_ALEN) == 0);
4114 return wpa_s->received_mb_ies;
4118 static void wpas_fst_update_mb_ie_cb(void *ctx, const u8 *addr,
4119 const u8 *buf, size_t size)
4121 struct wpa_supplicant *wpa_s = ctx;
4122 struct mb_ies_info info;
4124 WPA_ASSERT(os_memcmp(wpa_s->bssid, addr, ETH_ALEN) == 0);
4126 if (!mb_ies_info_by_ies(&info, buf, size)) {
4127 wpabuf_free(wpa_s->received_mb_ies);
4128 wpa_s->received_mb_ies = mb_ies_by_info(&info);
4133 static const u8 * wpas_fst_get_peer_first(void *ctx,
4134 struct fst_get_peer_ctx **get_ctx,
4137 struct wpa_supplicant *wpa_s = ctx;
4140 if (!is_zero_ether_addr(wpa_s->bssid))
4141 return (wpa_s->received_mb_ies || !mb_only) ?
4142 wpa_s->bssid : NULL;
4147 static const u8 * wpas_fst_get_peer_next(void *ctx,
4148 struct fst_get_peer_ctx **get_ctx,
4154 void fst_wpa_supplicant_fill_iface_obj(struct wpa_supplicant *wpa_s,
4155 struct fst_wpa_obj *iface_obj)
4157 iface_obj->ctx = wpa_s;
4158 iface_obj->get_bssid = wpas_fst_get_bssid_cb;
4159 iface_obj->get_channel_info = wpas_fst_get_channel_info_cb;
4160 iface_obj->get_hw_modes = wpas_fst_get_hw_modes;
4161 iface_obj->set_ies = wpas_fst_set_ies_cb;
4162 iface_obj->send_action = wpas_fst_send_action_cb;
4163 iface_obj->get_mb_ie = wpas_fst_get_mb_ie_cb;
4164 iface_obj->update_mb_ie = wpas_fst_update_mb_ie_cb;
4165 iface_obj->get_peer_first = wpas_fst_get_peer_first;
4166 iface_obj->get_peer_next = wpas_fst_get_peer_next;
4168 #endif /* CONFIG_FST */
4170 static int wpas_set_wowlan_triggers(struct wpa_supplicant *wpa_s,
4171 const struct wpa_driver_capa *capa)
4173 struct wowlan_triggers *triggers;
4176 if (!wpa_s->conf->wowlan_triggers)
4179 triggers = wpa_get_wowlan_triggers(wpa_s->conf->wowlan_triggers, capa);
4181 ret = wpa_drv_wowlan(wpa_s, triggers);
4188 enum wpa_radio_work_band wpas_freq_to_band(int freq)
4191 return BAND_2_4_GHZ;
4198 unsigned int wpas_get_bands(struct wpa_supplicant *wpa_s, const int *freqs)
4201 unsigned int band = 0;
4204 /* freqs are specified for the radio work */
4205 for (i = 0; freqs[i]; i++)
4206 band |= wpas_freq_to_band(freqs[i]);
4209 * freqs are not specified, implies all
4210 * the supported freqs by HW
4212 for (i = 0; i < wpa_s->hw.num_modes; i++) {
4213 if (wpa_s->hw.modes[i].num_channels != 0) {
4214 if (wpa_s->hw.modes[i].mode ==
4215 HOSTAPD_MODE_IEEE80211B ||
4216 wpa_s->hw.modes[i].mode ==
4217 HOSTAPD_MODE_IEEE80211G)
4218 band |= BAND_2_4_GHZ;
4219 else if (wpa_s->hw.modes[i].mode ==
4220 HOSTAPD_MODE_IEEE80211A)
4222 else if (wpa_s->hw.modes[i].mode ==
4223 HOSTAPD_MODE_IEEE80211AD)
4224 band |= BAND_60_GHZ;
4225 else if (wpa_s->hw.modes[i].mode ==
4226 HOSTAPD_MODE_IEEE80211ANY)
4227 band = BAND_2_4_GHZ | BAND_5_GHZ |
4237 static struct wpa_radio * radio_add_interface(struct wpa_supplicant *wpa_s,
4240 struct wpa_supplicant *iface = wpa_s->global->ifaces;
4241 struct wpa_radio *radio;
4243 while (rn && iface) {
4244 radio = iface->radio;
4245 if (radio && os_strcmp(rn, radio->name) == 0) {
4246 wpa_printf(MSG_DEBUG, "Add interface %s to existing radio %s",
4248 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
4252 iface = iface->next;
4255 wpa_printf(MSG_DEBUG, "Add interface %s to a new radio %s",
4256 wpa_s->ifname, rn ? rn : "N/A");
4257 radio = os_zalloc(sizeof(*radio));
4262 os_strlcpy(radio->name, rn, sizeof(radio->name));
4263 dl_list_init(&radio->ifaces);
4264 dl_list_init(&radio->work);
4265 dl_list_add(&radio->ifaces, &wpa_s->radio_list);
4271 static void radio_work_free(struct wpa_radio_work *work)
4273 if (work->wpa_s->scan_work == work) {
4274 /* This should not really happen. */
4275 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as scan_work",
4276 work->type, work, work->started);
4277 work->wpa_s->scan_work = NULL;
4281 if (work->wpa_s->p2p_scan_work == work) {
4282 /* This should not really happen. */
4283 wpa_dbg(work->wpa_s, MSG_INFO, "Freeing radio work '%s'@%p (started=%d) that is marked as p2p_scan_work",
4284 work->type, work, work->started);
4285 work->wpa_s->p2p_scan_work = NULL;
4287 #endif /* CONFIG_P2P */
4289 if (work->started) {
4290 work->wpa_s->radio->num_active_works--;
4291 wpa_dbg(work->wpa_s, MSG_DEBUG,
4292 "radio_work_free('%s'@%p: num_active_works --> %u",
4294 work->wpa_s->radio->num_active_works);
4297 dl_list_del(&work->list);
4302 static struct wpa_radio_work * radio_work_get_next_work(struct wpa_radio *radio)
4304 struct wpa_radio_work *active_work = NULL;
4305 struct wpa_radio_work *tmp;
4307 /* Get the active work to know the type and band. */
4308 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work, list) {
4316 /* No active work, start one */
4317 radio->num_active_works = 0;
4318 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work,
4320 if (os_strcmp(tmp->type, "scan") == 0 &&
4321 radio->external_scan_running &&
4322 (((struct wpa_driver_scan_params *)
4323 tmp->ctx)->only_new_results ||
4324 tmp->wpa_s->clear_driver_scan_cache))
4331 if (os_strcmp(active_work->type, "sme-connect") == 0 ||
4332 os_strcmp(active_work->type, "connect") == 0) {
4334 * If the active work is either connect or sme-connect,
4335 * do not parallelize them with other radio works.
4337 wpa_dbg(active_work->wpa_s, MSG_DEBUG,
4338 "Do not parallelize radio work with %s",
4343 dl_list_for_each(tmp, &radio->work, struct wpa_radio_work, list) {
4348 * If connect or sme-connect are enqueued, parallelize only
4349 * those operations ahead of them in the queue.
4351 if (os_strcmp(tmp->type, "connect") == 0 ||
4352 os_strcmp(tmp->type, "sme-connect") == 0)
4356 * Check that the radio works are distinct and
4357 * on different bands.
4359 if (os_strcmp(active_work->type, tmp->type) != 0 &&
4360 (active_work->bands != tmp->bands)) {
4362 * If a scan has to be scheduled through nl80211 scan
4363 * interface and if an external scan is already running,
4364 * do not schedule the scan since it is likely to get
4365 * rejected by kernel.
4367 if (os_strcmp(tmp->type, "scan") == 0 &&
4368 radio->external_scan_running &&
4369 (((struct wpa_driver_scan_params *)
4370 tmp->ctx)->only_new_results ||
4371 tmp->wpa_s->clear_driver_scan_cache))
4374 wpa_dbg(active_work->wpa_s, MSG_DEBUG,
4375 "active_work:%s new_work:%s",
4376 active_work->type, tmp->type);
4381 /* Did not find a radio work to schedule in parallel. */
4386 static void radio_start_next_work(void *eloop_ctx, void *timeout_ctx)
4388 struct wpa_radio *radio = eloop_ctx;
4389 struct wpa_radio_work *work;
4390 struct os_reltime now, diff;
4391 struct wpa_supplicant *wpa_s;
4393 work = dl_list_first(&radio->work, struct wpa_radio_work, list);
4395 radio->num_active_works = 0;
4399 wpa_s = dl_list_first(&radio->ifaces, struct wpa_supplicant,
4403 wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS)) {
4405 return; /* already started and still in progress */
4407 if (wpa_s && wpa_s->radio->external_scan_running) {
4408 wpa_printf(MSG_DEBUG, "Delay radio work start until externally triggered scan completes");
4413 if (radio->num_active_works < MAX_ACTIVE_WORKS) {
4414 /* get the work to schedule next */
4415 work = radio_work_get_next_work(radio);
4421 wpa_s = work->wpa_s;
4422 os_get_reltime(&now);
4423 os_reltime_sub(&now, &work->time, &diff);
4424 wpa_dbg(wpa_s, MSG_DEBUG,
4425 "Starting radio work '%s'@%p after %ld.%06ld second wait",
4426 work->type, work, diff.sec, diff.usec);
4429 radio->num_active_works++;
4433 if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS) &&
4434 radio->num_active_works < MAX_ACTIVE_WORKS)
4435 radio_work_check_next(wpa_s);
4440 * This function removes both started and pending radio works running on
4441 * the provided interface's radio.
4442 * Prior to the removal of the radio work, its callback (cb) is called with
4443 * deinit set to be 1. Each work's callback is responsible for clearing its
4444 * internal data and restoring to a correct state.
4445 * @wpa_s: wpa_supplicant data
4446 * @type: type of works to be removed
4447 * @remove_all: 1 to remove all the works on this radio, 0 to remove only
4448 * this interface's works.
4450 void radio_remove_works(struct wpa_supplicant *wpa_s,
4451 const char *type, int remove_all)
4453 struct wpa_radio_work *work, *tmp;
4454 struct wpa_radio *radio = wpa_s->radio;
4456 dl_list_for_each_safe(work, tmp, &radio->work, struct wpa_radio_work,
4458 if (type && os_strcmp(type, work->type) != 0)
4461 /* skip other ifaces' works */
4462 if (!remove_all && work->wpa_s != wpa_s)
4465 wpa_dbg(wpa_s, MSG_DEBUG, "Remove radio work '%s'@%p%s",
4466 work->type, work, work->started ? " (started)" : "");
4468 radio_work_free(work);
4471 /* in case we removed the started work */
4472 radio_work_check_next(wpa_s);
4476 static void radio_remove_interface(struct wpa_supplicant *wpa_s)
4478 struct wpa_radio *radio = wpa_s->radio;
4483 wpa_printf(MSG_DEBUG, "Remove interface %s from radio %s",
4484 wpa_s->ifname, radio->name);
4485 dl_list_del(&wpa_s->radio_list);
4486 radio_remove_works(wpa_s, NULL, 0);
4487 wpa_s->radio = NULL;
4488 if (!dl_list_empty(&radio->ifaces))
4489 return; /* Interfaces remain for this radio */
4491 wpa_printf(MSG_DEBUG, "Remove radio %s", radio->name);
4492 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
4497 void radio_work_check_next(struct wpa_supplicant *wpa_s)
4499 struct wpa_radio *radio = wpa_s->radio;
4501 if (dl_list_empty(&radio->work))
4503 if (wpa_s->ext_work_in_progress) {
4504 wpa_printf(MSG_DEBUG,
4505 "External radio work in progress - delay start of pending item");
4508 eloop_cancel_timeout(radio_start_next_work, radio, NULL);
4509 eloop_register_timeout(0, 0, radio_start_next_work, radio, NULL);
4514 * radio_add_work - Add a radio work item
4515 * @wpa_s: Pointer to wpa_supplicant data
4516 * @freq: Frequency of the offchannel operation in MHz or 0
4517 * @type: Unique identifier for each type of work
4518 * @next: Force as the next work to be executed
4519 * @cb: Callback function for indicating when radio is available
4520 * @ctx: Context pointer for the work (work->ctx in cb())
4521 * Returns: 0 on success, -1 on failure
4523 * This function is used to request time for an operation that requires
4524 * exclusive radio control. Once the radio is available, the registered callback
4525 * function will be called. radio_work_done() must be called once the exclusive
4526 * radio operation has been completed, so that the radio is freed for other
4527 * operations. The special case of deinit=1 is used to free the context data
4528 * during interface removal. That does not allow the callback function to start
4529 * the radio operation, i.e., it must free any resources allocated for the radio
4532 * The @freq parameter can be used to indicate a single channel on which the
4533 * offchannel operation will occur. This may allow multiple radio work
4534 * operations to be performed in parallel if they apply for the same channel.
4535 * Setting this to 0 indicates that the work item may use multiple channels or
4536 * requires exclusive control of the radio.
4538 int radio_add_work(struct wpa_supplicant *wpa_s, unsigned int freq,
4539 const char *type, int next,
4540 void (*cb)(struct wpa_radio_work *work, int deinit),
4543 struct wpa_radio *radio = wpa_s->radio;
4544 struct wpa_radio_work *work;
4547 work = os_zalloc(sizeof(*work));
4550 wpa_dbg(wpa_s, MSG_DEBUG, "Add radio work '%s'@%p", type, work);
4551 os_get_reltime(&work->time);
4554 work->wpa_s = wpa_s;
4559 work->bands = wpas_freq_to_band(freq);
4560 else if (os_strcmp(type, "scan") == 0 ||
4561 os_strcmp(type, "p2p-scan") == 0)
4562 work->bands = wpas_get_bands(wpa_s,
4563 ((struct wpa_driver_scan_params *)
4566 work->bands = wpas_get_bands(wpa_s, NULL);
4568 was_empty = dl_list_empty(&wpa_s->radio->work);
4570 dl_list_add(&wpa_s->radio->work, &work->list);
4572 dl_list_add_tail(&wpa_s->radio->work, &work->list);
4574 wpa_dbg(wpa_s, MSG_DEBUG, "First radio work item in the queue - schedule start immediately");
4575 radio_work_check_next(wpa_s);
4576 } else if ((wpa_s->drv_flags & WPA_DRIVER_FLAGS_OFFCHANNEL_SIMULTANEOUS)
4577 && radio->num_active_works < MAX_ACTIVE_WORKS) {
4578 wpa_dbg(wpa_s, MSG_DEBUG,
4579 "Try to schedule a radio work (num_active_works=%u)",
4580 radio->num_active_works);
4581 radio_work_check_next(wpa_s);
4589 * radio_work_done - Indicate that a radio work item has been completed
4590 * @work: Completed work
4592 * This function is called once the callback function registered with
4593 * radio_add_work() has completed its work.
4595 void radio_work_done(struct wpa_radio_work *work)
4597 struct wpa_supplicant *wpa_s = work->wpa_s;
4598 struct os_reltime now, diff;
4599 unsigned int started = work->started;
4601 os_get_reltime(&now);
4602 os_reltime_sub(&now, &work->time, &diff);
4603 wpa_dbg(wpa_s, MSG_DEBUG, "Radio work '%s'@%p %s in %ld.%06ld seconds",
4604 work->type, work, started ? "done" : "canceled",
4605 diff.sec, diff.usec);
4606 radio_work_free(work);
4608 radio_work_check_next(wpa_s);
4612 struct wpa_radio_work *
4613 radio_work_pending(struct wpa_supplicant *wpa_s, const char *type)
4615 struct wpa_radio_work *work;
4616 struct wpa_radio *radio = wpa_s->radio;
4618 dl_list_for_each(work, &radio->work, struct wpa_radio_work, list) {
4619 if (work->wpa_s == wpa_s && os_strcmp(work->type, type) == 0)
4627 static int wpas_init_driver(struct wpa_supplicant *wpa_s,
4628 struct wpa_interface *iface)
4630 const char *ifname, *driver, *rn;
4632 driver = iface->driver;
4634 if (wpa_supplicant_set_driver(wpa_s, driver) < 0)
4637 wpa_s->drv_priv = wpa_drv_init(wpa_s, wpa_s->ifname);
4638 if (wpa_s->drv_priv == NULL) {
4640 pos = driver ? os_strchr(driver, ',') : NULL;
4642 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to initialize "
4643 "driver interface - try next driver wrapper");
4647 wpa_msg(wpa_s, MSG_ERROR, "Failed to initialize driver "
4651 if (wpa_drv_set_param(wpa_s, wpa_s->conf->driver_param) < 0) {
4652 wpa_msg(wpa_s, MSG_ERROR, "Driver interface rejected "
4653 "driver_param '%s'", wpa_s->conf->driver_param);
4657 ifname = wpa_drv_get_ifname(wpa_s);
4658 if (ifname && os_strcmp(ifname, wpa_s->ifname) != 0) {
4659 wpa_dbg(wpa_s, MSG_DEBUG, "Driver interface replaced "
4660 "interface name with '%s'", ifname);
4661 os_strlcpy(wpa_s->ifname, ifname, sizeof(wpa_s->ifname));
4664 rn = wpa_driver_get_radio_name(wpa_s);
4665 if (rn && rn[0] == '\0')
4668 wpa_s->radio = radio_add_interface(wpa_s, rn);
4669 if (wpa_s->radio == NULL)
4676 static int wpa_supplicant_init_iface(struct wpa_supplicant *wpa_s,
4677 struct wpa_interface *iface)
4679 struct wpa_driver_capa capa;
4682 wpa_printf(MSG_DEBUG, "Initializing interface '%s' conf '%s' driver "
4683 "'%s' ctrl_interface '%s' bridge '%s'", iface->ifname,
4684 iface->confname ? iface->confname : "N/A",
4685 iface->driver ? iface->driver : "default",
4686 iface->ctrl_interface ? iface->ctrl_interface : "N/A",
4687 iface->bridge_ifname ? iface->bridge_ifname : "N/A");
4689 if (iface->confname) {
4690 #ifdef CONFIG_BACKEND_FILE
4691 wpa_s->confname = os_rel2abs_path(iface->confname);
4692 if (wpa_s->confname == NULL) {
4693 wpa_printf(MSG_ERROR, "Failed to get absolute path "
4694 "for configuration file '%s'.",
4698 wpa_printf(MSG_DEBUG, "Configuration file '%s' -> '%s'",
4699 iface->confname, wpa_s->confname);
4700 #else /* CONFIG_BACKEND_FILE */
4701 wpa_s->confname = os_strdup(iface->confname);
4702 #endif /* CONFIG_BACKEND_FILE */
4703 wpa_s->conf = wpa_config_read(wpa_s->confname, NULL);
4704 if (wpa_s->conf == NULL) {
4705 wpa_printf(MSG_ERROR, "Failed to read or parse "
4706 "configuration '%s'.", wpa_s->confname);
4709 wpa_s->confanother = os_rel2abs_path(iface->confanother);
4710 wpa_config_read(wpa_s->confanother, wpa_s->conf);
4713 * Override ctrl_interface and driver_param if set on command
4716 if (iface->ctrl_interface) {
4717 os_free(wpa_s->conf->ctrl_interface);
4718 wpa_s->conf->ctrl_interface =
4719 os_strdup(iface->ctrl_interface);
4722 if (iface->driver_param) {
4723 os_free(wpa_s->conf->driver_param);
4724 wpa_s->conf->driver_param =
4725 os_strdup(iface->driver_param);
4728 if (iface->p2p_mgmt && !iface->ctrl_interface) {
4729 os_free(wpa_s->conf->ctrl_interface);
4730 wpa_s->conf->ctrl_interface = NULL;
4733 wpa_s->conf = wpa_config_alloc_empty(iface->ctrl_interface,
4734 iface->driver_param);
4736 if (wpa_s->conf == NULL) {
4737 wpa_printf(MSG_ERROR, "\nNo configuration found.");
4741 if (iface->ifname == NULL) {
4742 wpa_printf(MSG_ERROR, "\nInterface name is required.");
4745 if (os_strlen(iface->ifname) >= sizeof(wpa_s->ifname)) {
4746 wpa_printf(MSG_ERROR, "\nToo long interface name '%s'.",
4750 os_strlcpy(wpa_s->ifname, iface->ifname, sizeof(wpa_s->ifname));
4752 if (iface->bridge_ifname) {
4753 if (os_strlen(iface->bridge_ifname) >=
4754 sizeof(wpa_s->bridge_ifname)) {
4755 wpa_printf(MSG_ERROR, "\nToo long bridge interface "
4756 "name '%s'.", iface->bridge_ifname);
4759 os_strlcpy(wpa_s->bridge_ifname, iface->bridge_ifname,
4760 sizeof(wpa_s->bridge_ifname));
4763 /* RSNA Supplicant Key Management - INITIALIZE */
4764 eapol_sm_notify_portEnabled(wpa_s->eapol, FALSE);
4765 eapol_sm_notify_portValid(wpa_s->eapol, FALSE);
4767 /* Initialize driver interface and register driver event handler before
4768 * L2 receive handler so that association events are processed before
4769 * EAPOL-Key packets if both become available for the same select()
4771 if (wpas_init_driver(wpa_s, iface) < 0)
4774 if (wpa_supplicant_init_wpa(wpa_s) < 0)
4777 wpa_sm_set_ifname(wpa_s->wpa, wpa_s->ifname,
4778 wpa_s->bridge_ifname[0] ? wpa_s->bridge_ifname :
4780 wpa_sm_set_fast_reauth(wpa_s->wpa, wpa_s->conf->fast_reauth);
4782 if (wpa_s->conf->dot11RSNAConfigPMKLifetime &&
4783 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_LIFETIME,
4784 wpa_s->conf->dot11RSNAConfigPMKLifetime)) {
4785 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4786 "dot11RSNAConfigPMKLifetime");
4790 if (wpa_s->conf->dot11RSNAConfigPMKReauthThreshold &&
4791 wpa_sm_set_param(wpa_s->wpa, RSNA_PMK_REAUTH_THRESHOLD,
4792 wpa_s->conf->dot11RSNAConfigPMKReauthThreshold)) {
4793 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4794 "dot11RSNAConfigPMKReauthThreshold");
4798 if (wpa_s->conf->dot11RSNAConfigSATimeout &&
4799 wpa_sm_set_param(wpa_s->wpa, RSNA_SA_TIMEOUT,
4800 wpa_s->conf->dot11RSNAConfigSATimeout)) {
4801 wpa_msg(wpa_s, MSG_ERROR, "Invalid WPA parameter value for "
4802 "dot11RSNAConfigSATimeout");
4806 wpa_s->hw.modes = wpa_drv_get_hw_feature_data(wpa_s,
4807 &wpa_s->hw.num_modes,
4809 if (wpa_s->hw.modes) {
4812 for (i = 0; i < wpa_s->hw.num_modes; i++) {
4813 if (wpa_s->hw.modes[i].vht_capab) {
4814 wpa_s->hw_capab = CAPAB_VHT;
4818 if (wpa_s->hw.modes[i].ht_capab &
4819 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET)
4820 wpa_s->hw_capab = CAPAB_HT40;
4821 else if (wpa_s->hw.modes[i].ht_capab &&
4822 wpa_s->hw_capab == CAPAB_NO_HT_VHT)
4823 wpa_s->hw_capab = CAPAB_HT;
4827 capa_res = wpa_drv_get_capa(wpa_s, &capa);
4828 if (capa_res == 0) {
4829 wpa_s->drv_capa_known = 1;
4830 wpa_s->drv_flags = capa.flags;
4831 wpa_s->drv_enc = capa.enc;
4832 wpa_s->drv_smps_modes = capa.smps_modes;
4833 wpa_s->drv_rrm_flags = capa.rrm_flags;
4834 wpa_s->probe_resp_offloads = capa.probe_resp_offloads;
4835 wpa_s->max_scan_ssids = capa.max_scan_ssids;
4836 wpa_s->max_sched_scan_ssids = capa.max_sched_scan_ssids;
4837 wpa_s->max_sched_scan_plans = capa.max_sched_scan_plans;
4838 wpa_s->max_sched_scan_plan_interval =
4839 capa.max_sched_scan_plan_interval;
4840 wpa_s->max_sched_scan_plan_iterations =
4841 capa.max_sched_scan_plan_iterations;
4842 wpa_s->sched_scan_supported = capa.sched_scan_supported;
4843 wpa_s->max_match_sets = capa.max_match_sets;
4844 wpa_s->max_remain_on_chan = capa.max_remain_on_chan;
4845 wpa_s->max_stations = capa.max_stations;
4846 wpa_s->extended_capa = capa.extended_capa;
4847 wpa_s->extended_capa_mask = capa.extended_capa_mask;
4848 wpa_s->extended_capa_len = capa.extended_capa_len;
4849 wpa_s->num_multichan_concurrent =
4850 capa.num_multichan_concurrent;
4851 wpa_s->wmm_ac_supported = capa.wmm_ac_supported;
4853 if (capa.mac_addr_rand_scan_supported)
4854 wpa_s->mac_addr_rand_supported |= MAC_ADDR_RAND_SCAN;
4855 if (wpa_s->sched_scan_supported &&
4856 capa.mac_addr_rand_sched_scan_supported)
4857 wpa_s->mac_addr_rand_supported |=
4858 (MAC_ADDR_RAND_SCHED_SCAN | MAC_ADDR_RAND_PNO);
4860 if (wpa_s->max_remain_on_chan == 0)
4861 wpa_s->max_remain_on_chan = 1000;
4864 * Only take p2p_mgmt parameters when P2P Device is supported.
4865 * Doing it here as it determines whether l2_packet_init() will be done
4866 * during wpa_supplicant_driver_init().
4868 if (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)
4869 wpa_s->p2p_mgmt = iface->p2p_mgmt;
4871 iface->p2p_mgmt = 1;
4873 if (wpa_s->num_multichan_concurrent == 0)
4874 wpa_s->num_multichan_concurrent = 1;
4876 if (wpa_supplicant_driver_init(wpa_s) < 0)
4880 if ((!iface->p2p_mgmt ||
4881 !(wpa_s->drv_flags &
4882 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE)) &&
4883 wpa_tdls_init(wpa_s->wpa))
4885 #endif /* CONFIG_TDLS */
4887 if (wpa_s->conf->country[0] && wpa_s->conf->country[1] &&
4888 wpa_drv_set_country(wpa_s, wpa_s->conf->country)) {
4889 wpa_dbg(wpa_s, MSG_DEBUG, "Failed to set country");
4894 if (wpa_s->conf->fst_group_id) {
4895 struct fst_iface_cfg cfg;
4896 struct fst_wpa_obj iface_obj;
4898 fst_wpa_supplicant_fill_iface_obj(wpa_s, &iface_obj);
4899 os_strlcpy(cfg.group_id, wpa_s->conf->fst_group_id,
4900 sizeof(cfg.group_id));
4901 cfg.priority = wpa_s->conf->fst_priority;
4902 cfg.llt = wpa_s->conf->fst_llt;
4904 wpa_s->fst = fst_attach(wpa_s->ifname, wpa_s->own_addr,
4907 wpa_msg(wpa_s, MSG_ERROR,
4908 "FST: Cannot attach iface %s to group %s",
4909 wpa_s->ifname, cfg.group_id);
4913 #endif /* CONFIG_FST */
4915 if (wpas_wps_init(wpa_s))
4918 if (wpa_supplicant_init_eapol(wpa_s) < 0)
4920 wpa_sm_set_eapol(wpa_s->wpa, wpa_s->eapol);
4922 wpa_s->ctrl_iface = wpa_supplicant_ctrl_iface_init(wpa_s);
4923 if (wpa_s->ctrl_iface == NULL) {
4924 wpa_printf(MSG_ERROR,
4925 "Failed to initialize control interface '%s'.\n"
4926 "You may have another wpa_supplicant process "
4927 "already running or the file was\n"
4928 "left by an unclean termination of wpa_supplicant "
4929 "in which case you will need\n"
4930 "to manually remove this file before starting "
4931 "wpa_supplicant again.\n",
4932 wpa_s->conf->ctrl_interface);
4936 wpa_s->gas = gas_query_init(wpa_s);
4937 if (wpa_s->gas == NULL) {
4938 wpa_printf(MSG_ERROR, "Failed to initialize GAS query");
4942 if (iface->p2p_mgmt && wpas_p2p_init(wpa_s->global, wpa_s) < 0) {
4943 wpa_msg(wpa_s, MSG_ERROR, "Failed to init P2P");
4947 if (wpa_bss_init(wpa_s) < 0)
4951 * Set Wake-on-WLAN triggers, if configured.
4952 * Note: We don't restore/remove the triggers on shutdown (it doesn't
4953 * have effect anyway when the interface is down).
4955 if (capa_res == 0 && wpas_set_wowlan_triggers(wpa_s, &capa) < 0)
4958 #ifdef CONFIG_EAP_PROXY
4961 wpa_s->mnc_len = eapol_sm_get_eap_proxy_imsi(wpa_s->eapol, wpa_s->imsi,
4963 if (wpa_s->mnc_len > 0) {
4964 wpa_s->imsi[len] = '\0';
4965 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI %s (MNC length %d)",
4966 wpa_s->imsi, wpa_s->mnc_len);
4968 wpa_printf(MSG_DEBUG, "eap_proxy: IMSI not available");
4971 #endif /* CONFIG_EAP_PROXY */
4973 if (pcsc_reader_init(wpa_s) < 0)
4976 if (wpas_init_ext_pw(wpa_s) < 0)
4979 wpas_rrm_reset(wpa_s);
4981 wpas_sched_scan_plans_set(wpa_s, wpa_s->conf->sched_scan_plans);
4985 #endif /* CONFIG_HS20 */
4987 wpas_mbo_update_non_pref_chan(wpa_s, wpa_s->conf->non_pref_chan);
4988 #endif /* CONFIG_MBO */
4990 wpa_supplicant_set_default_scan_ies(wpa_s);
4996 static void wpa_supplicant_deinit_iface(struct wpa_supplicant *wpa_s,
4997 int notify, int terminate)
4999 struct wpa_global *global = wpa_s->global;
5000 struct wpa_supplicant *iface, *prev;
5002 if (wpa_s == wpa_s->parent)
5003 wpas_p2p_group_remove(wpa_s, "*");
5005 iface = global->ifaces;
5007 if (iface->p2pdev == wpa_s)
5008 iface->p2pdev = iface->parent;
5009 if (iface == wpa_s || iface->parent != wpa_s) {
5010 iface = iface->next;
5013 wpa_printf(MSG_DEBUG,
5014 "Remove remaining child interface %s from parent %s",
5015 iface->ifname, wpa_s->ifname);
5017 iface = iface->next;
5018 wpa_supplicant_remove_iface(global, prev, terminate);
5021 wpa_s->disconnected = 1;
5022 if (wpa_s->drv_priv) {
5023 wpa_supplicant_deauthenticate(wpa_s,
5024 WLAN_REASON_DEAUTH_LEAVING);
5026 wpa_drv_set_countermeasures(wpa_s, 0);
5027 wpa_clear_keys(wpa_s, NULL);
5030 wpa_supplicant_cleanup(wpa_s);
5031 wpas_p2p_deinit_iface(wpa_s);
5033 wpas_ctrl_radio_work_flush(wpa_s);
5034 radio_remove_interface(wpa_s);
5038 fst_detach(wpa_s->fst);
5041 if (wpa_s->received_mb_ies) {
5042 wpabuf_free(wpa_s->received_mb_ies);
5043 wpa_s->received_mb_ies = NULL;
5045 #endif /* CONFIG_FST */
5047 if (wpa_s->drv_priv)
5048 wpa_drv_deinit(wpa_s);
5051 wpas_notify_iface_removed(wpa_s);
5054 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TERMINATING);
5056 if (wpa_s->ctrl_iface) {
5057 wpa_supplicant_ctrl_iface_deinit(wpa_s->ctrl_iface);
5058 wpa_s->ctrl_iface = NULL;
5063 wpa_supplicant_mesh_iface_deinit(wpa_s, wpa_s->ifmsh);
5064 wpa_s->ifmsh = NULL;
5066 #endif /* CONFIG_MESH */
5068 if (wpa_s->conf != NULL) {
5069 wpa_config_free(wpa_s->conf);
5073 os_free(wpa_s->ssids_from_scan_req);
5079 #ifdef CONFIG_MATCH_IFACE
5082 * wpa_supplicant_match_iface - Match an interface description to a name
5083 * @global: Pointer to global data from wpa_supplicant_init()
5084 * @ifname: Name of the interface to match
5085 * Returns: Pointer to the created interface description or %NULL on failure
5087 struct wpa_interface * wpa_supplicant_match_iface(struct wpa_global *global,
5091 struct wpa_interface *iface, *miface;
5093 for (i = 0; i < global->params.match_iface_count; i++) {
5094 miface = &global->params.match_ifaces[i];
5095 if (!miface->ifname ||
5096 fnmatch(miface->ifname, ifname, 0) == 0) {
5097 iface = os_zalloc(sizeof(*iface));
5101 iface->ifname = ifname;
5111 * wpa_supplicant_match_existing - Match existing interfaces
5112 * @global: Pointer to global data from wpa_supplicant_init()
5113 * Returns: 0 on success, -1 on failure
5115 static int wpa_supplicant_match_existing(struct wpa_global *global)
5117 struct if_nameindex *ifi, *ifp;
5118 struct wpa_supplicant *wpa_s;
5119 struct wpa_interface *iface;
5121 ifp = if_nameindex();
5123 wpa_printf(MSG_ERROR, "if_nameindex: %s", strerror(errno));
5127 for (ifi = ifp; ifi->if_name; ifi++) {
5128 wpa_s = wpa_supplicant_get_iface(global, ifi->if_name);
5131 iface = wpa_supplicant_match_iface(global, ifi->if_name);
5133 wpa_s = wpa_supplicant_add_iface(global, iface, NULL);
5140 if_freenameindex(ifp);
5144 #endif /* CONFIG_MATCH_IFACE */
5148 * wpa_supplicant_add_iface - Add a new network interface
5149 * @global: Pointer to global data from wpa_supplicant_init()
5150 * @iface: Interface configuration options
5151 * @parent: Parent interface or %NULL to assign new interface as parent
5152 * Returns: Pointer to the created interface or %NULL on failure
5154 * This function is used to add new network interfaces for %wpa_supplicant.
5155 * This can be called before wpa_supplicant_run() to add interfaces before the
5156 * main event loop has been started. In addition, new interfaces can be added
5157 * dynamically while %wpa_supplicant is already running. This could happen,
5158 * e.g., when a hotplug network adapter is inserted.
5160 struct wpa_supplicant * wpa_supplicant_add_iface(struct wpa_global *global,
5161 struct wpa_interface *iface,
5162 struct wpa_supplicant *parent)
5164 struct wpa_supplicant *wpa_s;
5165 struct wpa_interface t_iface;
5166 struct wpa_ssid *ssid;
5168 if (global == NULL || iface == NULL)
5171 wpa_s = wpa_supplicant_alloc(parent);
5175 wpa_s->global = global;
5178 if (global->params.override_driver) {
5179 wpa_printf(MSG_DEBUG, "Override interface parameter: driver "
5181 iface->driver, global->params.override_driver);
5182 t_iface.driver = global->params.override_driver;
5184 if (global->params.override_ctrl_interface) {
5185 wpa_printf(MSG_DEBUG, "Override interface parameter: "
5186 "ctrl_interface ('%s' -> '%s')",
5187 iface->ctrl_interface,
5188 global->params.override_ctrl_interface);
5189 t_iface.ctrl_interface =
5190 global->params.override_ctrl_interface;
5192 if (wpa_supplicant_init_iface(wpa_s, &t_iface)) {
5193 wpa_printf(MSG_DEBUG, "Failed to add interface %s",
5195 wpa_supplicant_deinit_iface(wpa_s, 0, 0);
5199 if (iface->p2p_mgmt == 0) {
5200 /* Notify the control interfaces about new iface */
5201 if (wpas_notify_iface_added(wpa_s)) {
5202 wpa_supplicant_deinit_iface(wpa_s, 1, 0);
5206 for (ssid = wpa_s->conf->ssid; ssid; ssid = ssid->next)
5207 wpas_notify_network_added(wpa_s, ssid);
5210 wpa_s->next = global->ifaces;
5211 global->ifaces = wpa_s;
5213 wpa_dbg(wpa_s, MSG_DEBUG, "Added interface %s", wpa_s->ifname);
5214 wpa_supplicant_set_state(wpa_s, WPA_DISCONNECTED);
5217 if (wpa_s->global->p2p == NULL &&
5218 !wpa_s->global->p2p_disabled && !wpa_s->conf->p2p_disabled &&
5219 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) &&
5220 wpas_p2p_add_p2pdev_interface(
5221 wpa_s, wpa_s->global->params.conf_p2p_dev) < 0) {
5222 wpa_printf(MSG_INFO,
5223 "P2P: Failed to enable P2P Device interface");
5224 /* Try to continue without. P2P will be disabled. */
5226 #endif /* CONFIG_P2P */
5233 * wpa_supplicant_remove_iface - Remove a network interface
5234 * @global: Pointer to global data from wpa_supplicant_init()
5235 * @wpa_s: Pointer to the network interface to be removed
5236 * Returns: 0 if interface was removed, -1 if interface was not found
5238 * This function can be used to dynamically remove network interfaces from
5239 * %wpa_supplicant, e.g., when a hotplug network adapter is ejected. In
5240 * addition, this function is used to remove all remaining interfaces when
5241 * %wpa_supplicant is terminated.
5243 int wpa_supplicant_remove_iface(struct wpa_global *global,
5244 struct wpa_supplicant *wpa_s,
5247 struct wpa_supplicant *prev;
5249 unsigned int mesh_if_created = wpa_s->mesh_if_created;
5250 char *ifname = NULL;
5251 #endif /* CONFIG_MESH */
5253 /* Remove interface from the global list of interfaces */
5254 prev = global->ifaces;
5255 if (prev == wpa_s) {
5256 global->ifaces = wpa_s->next;
5258 while (prev && prev->next != wpa_s)
5262 prev->next = wpa_s->next;
5265 wpa_dbg(wpa_s, MSG_DEBUG, "Removing interface %s", wpa_s->ifname);
5268 if (mesh_if_created) {
5269 ifname = os_strdup(wpa_s->ifname);
5270 if (ifname == NULL) {
5271 wpa_dbg(wpa_s, MSG_ERROR,
5272 "mesh: Failed to malloc ifname");
5276 #endif /* CONFIG_MESH */
5278 if (global->p2p_group_formation == wpa_s)
5279 global->p2p_group_formation = NULL;
5280 if (global->p2p_invite_group == wpa_s)
5281 global->p2p_invite_group = NULL;
5282 wpa_supplicant_deinit_iface(wpa_s, 1, terminate);
5285 if (mesh_if_created) {
5286 wpa_drv_if_remove(global->ifaces, WPA_IF_MESH, ifname);
5289 #endif /* CONFIG_MESH */
5296 * wpa_supplicant_get_eap_mode - Get the current EAP mode
5297 * @wpa_s: Pointer to the network interface
5298 * Returns: Pointer to the eap mode or the string "UNKNOWN" if not found
5300 const char * wpa_supplicant_get_eap_mode(struct wpa_supplicant *wpa_s)
5302 const char *eapol_method;
5304 if (wpa_key_mgmt_wpa_ieee8021x(wpa_s->key_mgmt) == 0 &&
5305 wpa_s->key_mgmt != WPA_KEY_MGMT_IEEE8021X_NO_WPA) {
5309 eapol_method = eapol_sm_get_method_name(wpa_s->eapol);
5310 if (eapol_method == NULL)
5311 return "UNKNOWN-EAP";
5313 return eapol_method;
5318 * wpa_supplicant_get_iface - Get a new network interface
5319 * @global: Pointer to global data from wpa_supplicant_init()
5320 * @ifname: Interface name
5321 * Returns: Pointer to the interface or %NULL if not found
5323 struct wpa_supplicant * wpa_supplicant_get_iface(struct wpa_global *global,
5326 struct wpa_supplicant *wpa_s;
5328 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
5329 if (os_strcmp(wpa_s->ifname, ifname) == 0)
5336 #ifndef CONFIG_NO_WPA_MSG
5337 static const char * wpa_supplicant_msg_ifname_cb(void *ctx)
5339 struct wpa_supplicant *wpa_s = ctx;
5342 return wpa_s->ifname;
5344 #endif /* CONFIG_NO_WPA_MSG */
5347 #ifndef WPA_SUPPLICANT_CLEANUP_INTERVAL
5348 #define WPA_SUPPLICANT_CLEANUP_INTERVAL 10
5349 #endif /* WPA_SUPPLICANT_CLEANUP_INTERVAL */
5351 /* Periodic cleanup tasks */
5352 static void wpas_periodic(void *eloop_ctx, void *timeout_ctx)
5354 struct wpa_global *global = eloop_ctx;
5355 struct wpa_supplicant *wpa_s;
5357 eloop_register_timeout(WPA_SUPPLICANT_CLEANUP_INTERVAL, 0,
5358 wpas_periodic, global, NULL);
5362 p2p_expire_peers(global->p2p);
5363 #endif /* CONFIG_P2P */
5365 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next) {
5366 wpa_bss_flush_by_age(wpa_s, wpa_s->conf->bss_expiration_age);
5369 #endif /* CONFIG_AP */
5375 * wpa_supplicant_init - Initialize %wpa_supplicant
5376 * @params: Parameters for %wpa_supplicant
5377 * Returns: Pointer to global %wpa_supplicant data, or %NULL on failure
5379 * This function is used to initialize %wpa_supplicant. After successful
5380 * initialization, the returned data pointer can be used to add and remove
5381 * network interfaces, and eventually, to deinitialize %wpa_supplicant.
5383 struct wpa_global * wpa_supplicant_init(struct wpa_params *params)
5385 struct wpa_global *global;
5391 #ifdef CONFIG_DRIVER_NDIS
5393 void driver_ndis_init_ops(void);
5394 driver_ndis_init_ops();
5396 #endif /* CONFIG_DRIVER_NDIS */
5398 #ifndef CONFIG_NO_WPA_MSG
5399 wpa_msg_register_ifname_cb(wpa_supplicant_msg_ifname_cb);
5400 #endif /* CONFIG_NO_WPA_MSG */
5402 if (params->wpa_debug_file_path)
5403 wpa_debug_open_file(params->wpa_debug_file_path);
5405 wpa_debug_setup_stdout();
5406 if (params->wpa_debug_syslog)
5407 wpa_debug_open_syslog();
5408 if (params->wpa_debug_tracing) {
5409 ret = wpa_debug_open_linux_tracing();
5411 wpa_printf(MSG_ERROR,
5412 "Failed to enable trace logging");
5417 ret = eap_register_methods();
5419 wpa_printf(MSG_ERROR, "Failed to register EAP methods");
5421 wpa_printf(MSG_ERROR, "Two or more EAP methods used "
5422 "the same EAP type.");
5426 global = os_zalloc(sizeof(*global));
5429 dl_list_init(&global->p2p_srv_bonjour);
5430 dl_list_init(&global->p2p_srv_upnp);
5431 global->params.daemonize = params->daemonize;
5432 global->params.wait_for_monitor = params->wait_for_monitor;
5433 global->params.dbus_ctrl_interface = params->dbus_ctrl_interface;
5434 if (params->pid_file)
5435 global->params.pid_file = os_strdup(params->pid_file);
5436 if (params->ctrl_interface)
5437 global->params.ctrl_interface =
5438 os_strdup(params->ctrl_interface);
5439 if (params->ctrl_interface_group)
5440 global->params.ctrl_interface_group =
5441 os_strdup(params->ctrl_interface_group);
5442 if (params->override_driver)
5443 global->params.override_driver =
5444 os_strdup(params->override_driver);
5445 if (params->override_ctrl_interface)
5446 global->params.override_ctrl_interface =
5447 os_strdup(params->override_ctrl_interface);
5448 #ifdef CONFIG_MATCH_IFACE
5449 global->params.match_iface_count = params->match_iface_count;
5450 if (params->match_iface_count) {
5451 global->params.match_ifaces =
5452 os_calloc(params->match_iface_count,
5453 sizeof(struct wpa_interface));
5454 os_memcpy(global->params.match_ifaces,
5455 params->match_ifaces,
5456 params->match_iface_count *
5457 sizeof(struct wpa_interface));
5459 #endif /* CONFIG_MATCH_IFACE */
5461 if (params->conf_p2p_dev)
5462 global->params.conf_p2p_dev =
5463 os_strdup(params->conf_p2p_dev);
5464 #endif /* CONFIG_P2P */
5465 wpa_debug_level = global->params.wpa_debug_level =
5466 params->wpa_debug_level;
5467 wpa_debug_show_keys = global->params.wpa_debug_show_keys =
5468 params->wpa_debug_show_keys;
5469 wpa_debug_timestamp = global->params.wpa_debug_timestamp =
5470 params->wpa_debug_timestamp;
5472 wpa_printf(MSG_DEBUG, "wpa_supplicant v" VERSION_STR);
5475 wpa_printf(MSG_ERROR, "Failed to initialize event loop");
5476 wpa_supplicant_deinit(global);
5480 random_init(params->entropy_file);
5482 global->ctrl_iface = wpa_supplicant_global_ctrl_iface_init(global);
5483 if (global->ctrl_iface == NULL) {
5484 wpa_supplicant_deinit(global);
5488 if (wpas_notify_supplicant_initialized(global)) {
5489 wpa_supplicant_deinit(global);
5493 for (i = 0; wpa_drivers[i]; i++)
5494 global->drv_count++;
5495 if (global->drv_count == 0) {
5496 wpa_printf(MSG_ERROR, "No drivers enabled");
5497 wpa_supplicant_deinit(global);
5500 global->drv_priv = os_calloc(global->drv_count, sizeof(void *));
5501 if (global->drv_priv == NULL) {
5502 wpa_supplicant_deinit(global);
5506 #ifdef CONFIG_WIFI_DISPLAY
5507 if (wifi_display_init(global) < 0) {
5508 wpa_printf(MSG_ERROR, "Failed to initialize Wi-Fi Display");
5509 wpa_supplicant_deinit(global);
5512 #endif /* CONFIG_WIFI_DISPLAY */
5514 eloop_register_timeout(WPA_SUPPLICANT_CLEANUP_INTERVAL, 0,
5515 wpas_periodic, global, NULL);
5522 * wpa_supplicant_run - Run the %wpa_supplicant main event loop
5523 * @global: Pointer to global data from wpa_supplicant_init()
5524 * Returns: 0 after successful event loop run, -1 on failure
5526 * This function starts the main event loop and continues running as long as
5527 * there are any remaining events. In most cases, this function is running as
5528 * long as the %wpa_supplicant process in still in use.
5530 int wpa_supplicant_run(struct wpa_global *global)
5532 struct wpa_supplicant *wpa_s;
5534 if (global->params.daemonize &&
5535 (wpa_supplicant_daemon(global->params.pid_file) ||
5536 eloop_sock_requeue()))
5539 #ifdef CONFIG_MATCH_IFACE
5540 if (wpa_supplicant_match_existing(global))
5544 if (global->params.wait_for_monitor) {
5545 for (wpa_s = global->ifaces; wpa_s; wpa_s = wpa_s->next)
5546 if (wpa_s->ctrl_iface && !wpa_s->p2p_mgmt)
5547 wpa_supplicant_ctrl_iface_wait(
5551 eloop_register_signal_terminate(wpa_supplicant_terminate, global);
5552 eloop_register_signal_reconfig(wpa_supplicant_reconfig, global);
5561 * wpa_supplicant_deinit - Deinitialize %wpa_supplicant
5562 * @global: Pointer to global data from wpa_supplicant_init()
5564 * This function is called to deinitialize %wpa_supplicant and to free all
5565 * allocated resources. Remaining network interfaces will also be removed.
5567 void wpa_supplicant_deinit(struct wpa_global *global)
5574 eloop_cancel_timeout(wpas_periodic, global, NULL);
5576 #ifdef CONFIG_WIFI_DISPLAY
5577 wifi_display_deinit(global);
5578 #endif /* CONFIG_WIFI_DISPLAY */
5580 while (global->ifaces)
5581 wpa_supplicant_remove_iface(global, global->ifaces, 1);
5583 if (global->ctrl_iface)
5584 wpa_supplicant_global_ctrl_iface_deinit(global->ctrl_iface);
5586 wpas_notify_supplicant_deinitialized(global);
5588 eap_peer_unregister_methods();
5590 eap_server_unregister_methods();
5591 #endif /* CONFIG_AP */
5593 for (i = 0; wpa_drivers[i] && global->drv_priv; i++) {
5594 if (!global->drv_priv[i])
5596 wpa_drivers[i]->global_deinit(global->drv_priv[i]);
5598 os_free(global->drv_priv);
5604 if (global->params.pid_file) {
5605 os_daemonize_terminate(global->params.pid_file);
5606 os_free(global->params.pid_file);
5608 os_free(global->params.ctrl_interface);
5609 os_free(global->params.ctrl_interface_group);
5610 os_free(global->params.override_driver);
5611 os_free(global->params.override_ctrl_interface);
5612 #ifdef CONFIG_MATCH_IFACE
5613 os_free(global->params.match_ifaces);
5614 #endif /* CONFIG_MATCH_IFACE */
5616 os_free(global->params.conf_p2p_dev);
5617 #endif /* CONFIG_P2P */
5619 os_free(global->p2p_disallow_freq.range);
5620 os_free(global->p2p_go_avoid_freq.range);
5621 os_free(global->add_psk);
5624 wpa_debug_close_syslog();
5625 wpa_debug_close_file();
5626 wpa_debug_close_linux_tracing();
5630 void wpa_supplicant_update_config(struct wpa_supplicant *wpa_s)
5632 if ((wpa_s->conf->changed_parameters & CFG_CHANGED_COUNTRY) &&
5633 wpa_s->conf->country[0] && wpa_s->conf->country[1]) {
5635 country[0] = wpa_s->conf->country[0];
5636 country[1] = wpa_s->conf->country[1];
5638 if (wpa_drv_set_country(wpa_s, country) < 0) {
5639 wpa_printf(MSG_ERROR, "Failed to set country code "
5644 if (wpa_s->conf->changed_parameters & CFG_CHANGED_EXT_PW_BACKEND)
5645 wpas_init_ext_pw(wpa_s);
5647 if (wpa_s->conf->changed_parameters & CFG_CHANGED_SCHED_SCAN_PLANS)
5648 wpas_sched_scan_plans_set(wpa_s, wpa_s->conf->sched_scan_plans);
5651 wpas_wps_update_config(wpa_s);
5652 #endif /* CONFIG_WPS */
5653 wpas_p2p_update_config(wpa_s);
5654 wpa_s->conf->changed_parameters = 0;
5658 void add_freq(int *freqs, int *num_freqs, int freq)
5662 for (i = 0; i < *num_freqs; i++) {
5663 if (freqs[i] == freq)
5667 freqs[*num_freqs] = freq;
5672 static int * get_bss_freqs_in_ess(struct wpa_supplicant *wpa_s)
5674 struct wpa_bss *bss, *cbss;
5675 const int max_freqs = 10;
5679 freqs = os_calloc(max_freqs + 1, sizeof(int));
5683 cbss = wpa_s->current_bss;
5685 dl_list_for_each(bss, &wpa_s->bss, struct wpa_bss, list) {
5688 if (bss->ssid_len == cbss->ssid_len &&
5689 os_memcmp(bss->ssid, cbss->ssid, bss->ssid_len) == 0 &&
5690 wpa_blacklist_get(wpa_s, bss->bssid) == NULL) {
5691 add_freq(freqs, &num_freqs, bss->freq);
5692 if (num_freqs == max_freqs)
5697 if (num_freqs == 0) {
5706 void wpas_connection_failed(struct wpa_supplicant *wpa_s, const u8 *bssid)
5712 wpas_connect_work_done(wpa_s);
5715 * Remove possible authentication timeout since the connection failed.
5717 eloop_cancel_timeout(wpa_supplicant_timeout, wpa_s, NULL);
5720 * There is no point in blacklisting the AP if this event is
5721 * generated based on local request to disconnect.
5723 if (wpa_s->own_disconnect_req) {
5724 wpa_s->own_disconnect_req = 0;
5725 wpa_dbg(wpa_s, MSG_DEBUG,
5726 "Ignore connection failure due to local request to disconnect");
5729 if (wpa_s->disconnected) {
5730 wpa_dbg(wpa_s, MSG_DEBUG, "Ignore connection failure "
5731 "indication since interface has been put into "
5732 "disconnected state");
5737 * Add the failed BSSID into the blacklist and speed up next scan
5738 * attempt if there could be other APs that could accept association.
5739 * The current blacklist count indicates how many times we have tried
5740 * connecting to this AP and multiple attempts mean that other APs are
5741 * either not available or has already been tried, so that we can start
5742 * increasing the delay here to avoid constant scanning.
5744 count = wpa_blacklist_add(wpa_s, bssid);
5745 if (count == 1 && wpa_s->current_bss) {
5747 * This BSS was not in the blacklist before. If there is
5748 * another BSS available for the same ESS, we should try that
5749 * next. Otherwise, we may as well try this one once more
5750 * before allowing other, likely worse, ESSes to be considered.
5752 freqs = get_bss_freqs_in_ess(wpa_s);
5754 wpa_dbg(wpa_s, MSG_DEBUG, "Another BSS in this ESS "
5755 "has been seen; try it next");
5756 wpa_blacklist_add(wpa_s, bssid);
5758 * On the next scan, go through only the known channels
5759 * used in this ESS based on previous scans to speed up
5760 * common load balancing use case.
5762 os_free(wpa_s->next_scan_freqs);
5763 wpa_s->next_scan_freqs = freqs;
5768 * Add previous failure count in case the temporary blacklist was
5769 * cleared due to no other BSSes being available.
5771 count += wpa_s->extra_blacklist_count;
5773 if (count > 3 && wpa_s->current_ssid) {
5774 wpa_printf(MSG_DEBUG, "Continuous association failures - "
5775 "consider temporary network disabling");
5776 wpas_auth_failed(wpa_s, "CONN_FAILED");
5797 wpa_dbg(wpa_s, MSG_DEBUG, "Blacklist count %d --> request scan in %d "
5798 "ms", count, timeout);
5801 * TODO: if more than one possible AP is available in scan results,
5802 * could try the other ones before requesting a new scan.
5804 wpa_supplicant_req_scan(wpa_s, timeout / 1000,
5805 1000 * (timeout % 1000));
5809 int wpas_driver_bss_selection(struct wpa_supplicant *wpa_s)
5811 return wpa_s->conf->ap_scan == 2 ||
5812 (wpa_s->drv_flags & WPA_DRIVER_FLAGS_BSS_SELECTION);
5816 #if defined(CONFIG_CTRL_IFACE) || defined(CONFIG_CTRL_IFACE_DBUS_NEW)
5817 int wpa_supplicant_ctrl_iface_ctrl_rsp_handle(struct wpa_supplicant *wpa_s,
5818 struct wpa_ssid *ssid,
5822 #ifdef IEEE8021X_EAPOL
5823 struct eap_peer_config *eap = &ssid->eap;
5825 wpa_printf(MSG_DEBUG, "CTRL_IFACE: response handle field=%s", field);
5826 wpa_hexdump_ascii_key(MSG_DEBUG, "CTRL_IFACE: response value",
5827 (const u8 *) value, os_strlen(value));
5829 switch (wpa_supplicant_ctrl_req_from_string(field)) {
5830 case WPA_CTRL_REQ_EAP_IDENTITY:
5831 os_free(eap->identity);
5832 eap->identity = (u8 *) os_strdup(value);
5833 eap->identity_len = os_strlen(value);
5834 eap->pending_req_identity = 0;
5835 if (ssid == wpa_s->current_ssid)
5836 wpa_s->reassociate = 1;
5838 case WPA_CTRL_REQ_EAP_PASSWORD:
5839 bin_clear_free(eap->password, eap->password_len);
5840 eap->password = (u8 *) os_strdup(value);
5841 eap->password_len = os_strlen(value);
5842 eap->pending_req_password = 0;
5843 if (ssid == wpa_s->current_ssid)
5844 wpa_s->reassociate = 1;
5846 case WPA_CTRL_REQ_EAP_NEW_PASSWORD:
5847 bin_clear_free(eap->new_password, eap->new_password_len);
5848 eap->new_password = (u8 *) os_strdup(value);
5849 eap->new_password_len = os_strlen(value);
5850 eap->pending_req_new_password = 0;
5851 if (ssid == wpa_s->current_ssid)
5852 wpa_s->reassociate = 1;
5854 case WPA_CTRL_REQ_EAP_PIN:
5855 str_clear_free(eap->pin);
5856 eap->pin = os_strdup(value);
5857 eap->pending_req_pin = 0;
5858 if (ssid == wpa_s->current_ssid)
5859 wpa_s->reassociate = 1;
5861 case WPA_CTRL_REQ_EAP_OTP:
5862 bin_clear_free(eap->otp, eap->otp_len);
5863 eap->otp = (u8 *) os_strdup(value);
5864 eap->otp_len = os_strlen(value);
5865 os_free(eap->pending_req_otp);
5866 eap->pending_req_otp = NULL;
5867 eap->pending_req_otp_len = 0;
5869 case WPA_CTRL_REQ_EAP_PASSPHRASE:
5870 str_clear_free(eap->private_key_passwd);
5871 eap->private_key_passwd = os_strdup(value);
5872 eap->pending_req_passphrase = 0;
5873 if (ssid == wpa_s->current_ssid)
5874 wpa_s->reassociate = 1;
5876 case WPA_CTRL_REQ_SIM:
5877 str_clear_free(eap->external_sim_resp);
5878 eap->external_sim_resp = os_strdup(value);
5880 case WPA_CTRL_REQ_PSK_PASSPHRASE:
5881 if (wpa_config_set(ssid, "psk", value, 0) < 0)
5883 ssid->mem_only_psk = 1;
5884 if (ssid->passphrase)
5885 wpa_config_update_psk(ssid);
5886 if (wpa_s->wpa_state == WPA_SCANNING && !wpa_s->scanning)
5887 wpa_supplicant_req_scan(wpa_s, 0, 0);
5889 case WPA_CTRL_REQ_EXT_CERT_CHECK:
5890 if (eap->pending_ext_cert_check != PENDING_CHECK)
5892 if (os_strcmp(value, "good") == 0)
5893 eap->pending_ext_cert_check = EXT_CERT_CHECK_GOOD;
5894 else if (os_strcmp(value, "bad") == 0)
5895 eap->pending_ext_cert_check = EXT_CERT_CHECK_BAD;
5900 wpa_printf(MSG_DEBUG, "CTRL_IFACE: Unknown field '%s'", field);
5905 #else /* IEEE8021X_EAPOL */
5906 wpa_printf(MSG_DEBUG, "CTRL_IFACE: IEEE 802.1X not included");
5908 #endif /* IEEE8021X_EAPOL */
5910 #endif /* CONFIG_CTRL_IFACE || CONFIG_CTRL_IFACE_DBUS_NEW */
5913 int wpas_network_disabled(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
5916 unsigned int drv_enc;
5918 if (wpa_s->p2p_mgmt)
5919 return 1; /* no normal network profiles on p2p_mgmt interface */
5927 if (wpa_s->drv_capa_known)
5928 drv_enc = wpa_s->drv_enc;
5930 drv_enc = (unsigned int) -1;
5932 for (i = 0; i < NUM_WEP_KEYS; i++) {
5933 size_t len = ssid->wep_key_len[i];
5936 if (len == 5 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP40))
5938 if (len == 13 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP104))
5940 if (len == 16 && (drv_enc & WPA_DRIVER_CAPA_ENC_WEP128))
5942 return 1; /* invalid WEP key */
5945 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt) && !ssid->psk_set &&
5946 (!ssid->passphrase || ssid->ssid_len != 0) && !ssid->ext_psk &&
5947 !ssid->mem_only_psk)
5954 int wpas_get_ssid_pmf(struct wpa_supplicant *wpa_s, struct wpa_ssid *ssid)
5956 #ifdef CONFIG_IEEE80211W
5957 if (ssid == NULL || ssid->ieee80211w == MGMT_FRAME_PROTECTION_DEFAULT) {
5958 if (wpa_s->conf->pmf == MGMT_FRAME_PROTECTION_OPTIONAL &&
5959 !(wpa_s->drv_enc & WPA_DRIVER_CAPA_ENC_BIP)) {
5961 * Driver does not support BIP -- ignore pmf=1 default
5962 * since the connection with PMF would fail and the
5963 * configuration does not require PMF to be enabled.
5965 return NO_MGMT_FRAME_PROTECTION;
5970 ~(WPA_KEY_MGMT_NONE | WPA_KEY_MGMT_WPS |
5971 WPA_KEY_MGMT_IEEE8021X_NO_WPA)) == 0) {
5973 * Do not use the default PMF value for non-RSN networks
5974 * since PMF is available only with RSN and pmf=2
5975 * configuration would otherwise prevent connections to
5976 * all open networks.
5978 return NO_MGMT_FRAME_PROTECTION;
5981 return wpa_s->conf->pmf;
5984 return ssid->ieee80211w;
5985 #else /* CONFIG_IEEE80211W */
5986 return NO_MGMT_FRAME_PROTECTION;
5987 #endif /* CONFIG_IEEE80211W */
5991 int wpas_is_p2p_prioritized(struct wpa_supplicant *wpa_s)
5993 if (wpa_s->global->conc_pref == WPA_CONC_PREF_P2P)
5995 if (wpa_s->global->conc_pref == WPA_CONC_PREF_STA)
6001 void wpas_auth_failed(struct wpa_supplicant *wpa_s, char *reason)
6003 struct wpa_ssid *ssid = wpa_s->current_ssid;
6005 struct os_reltime now;
6008 wpa_printf(MSG_DEBUG, "Authentication failure but no known "
6013 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
6016 ssid->auth_failures++;
6019 if (ssid->p2p_group &&
6020 (wpa_s->p2p_in_provisioning || wpa_s->show_group_started)) {
6022 * Skip the wait time since there is a short timeout on the
6023 * connection to a P2P group.
6027 #endif /* CONFIG_P2P */
6029 if (ssid->auth_failures > 50)
6031 else if (ssid->auth_failures > 10)
6033 else if (ssid->auth_failures > 5)
6035 else if (ssid->auth_failures > 3)
6037 else if (ssid->auth_failures > 2)
6039 else if (ssid->auth_failures > 1)
6044 if (ssid->auth_failures > 1 &&
6045 wpa_key_mgmt_wpa_ieee8021x(ssid->key_mgmt))
6046 dur += os_random() % (ssid->auth_failures * 10);
6048 os_get_reltime(&now);
6049 if (now.sec + dur <= ssid->disabled_until.sec)
6052 ssid->disabled_until.sec = now.sec + dur;
6054 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_TEMP_DISABLED
6055 "id=%d ssid=\"%s\" auth_failures=%u duration=%d reason=%s",
6056 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len),
6057 ssid->auth_failures, dur, reason);
6061 void wpas_clear_temp_disabled(struct wpa_supplicant *wpa_s,
6062 struct wpa_ssid *ssid, int clear_failures)
6067 if (ssid->disabled_until.sec) {
6068 wpa_msg(wpa_s, MSG_INFO, WPA_EVENT_REENABLED
6069 "id=%d ssid=\"%s\"",
6070 ssid->id, wpa_ssid_txt(ssid->ssid, ssid->ssid_len));
6072 ssid->disabled_until.sec = 0;
6073 ssid->disabled_until.usec = 0;
6075 ssid->auth_failures = 0;
6079 int disallowed_bssid(struct wpa_supplicant *wpa_s, const u8 *bssid)
6083 if (wpa_s->disallow_aps_bssid == NULL)
6086 for (i = 0; i < wpa_s->disallow_aps_bssid_count; i++) {
6087 if (os_memcmp(wpa_s->disallow_aps_bssid + i * ETH_ALEN,
6088 bssid, ETH_ALEN) == 0)
6096 int disallowed_ssid(struct wpa_supplicant *wpa_s, const u8 *ssid,
6101 if (wpa_s->disallow_aps_ssid == NULL || ssid == NULL)
6104 for (i = 0; i < wpa_s->disallow_aps_ssid_count; i++) {
6105 struct wpa_ssid_value *s = &wpa_s->disallow_aps_ssid[i];
6106 if (ssid_len == s->ssid_len &&
6107 os_memcmp(ssid, s->ssid, ssid_len) == 0)
6116 * wpas_request_connection - Request a new connection
6117 * @wpa_s: Pointer to the network interface
6119 * This function is used to request a new connection to be found. It will mark
6120 * the interface to allow reassociation and request a new scan to find a
6121 * suitable network to connect to.
6123 void wpas_request_connection(struct wpa_supplicant *wpa_s)
6125 wpa_s->normal_scans = 0;
6126 wpa_s->scan_req = NORMAL_SCAN_REQ;
6127 wpa_supplicant_reinit_autoscan(wpa_s);
6128 wpa_s->extra_blacklist_count = 0;
6129 wpa_s->disconnected = 0;
6130 wpa_s->reassociate = 1;
6132 if (wpa_supplicant_fast_associate(wpa_s) != 1)
6133 wpa_supplicant_req_scan(wpa_s, 0, 0);
6135 wpa_s->reattach = 0;
6140 * wpas_request_disconnection - Request disconnection
6141 * @wpa_s: Pointer to the network interface
6143 * This function is used to request disconnection from the currently connected
6144 * network. This will stop any ongoing scans and initiate deauthentication.
6146 void wpas_request_disconnection(struct wpa_supplicant *wpa_s)
6149 wpa_s->sme.prev_bssid_set = 0;
6150 #endif /* CONFIG_SME */
6151 wpa_s->reassociate = 0;
6152 wpa_s->disconnected = 1;
6153 wpa_supplicant_cancel_sched_scan(wpa_s);
6154 wpa_supplicant_cancel_scan(wpa_s);
6155 wpa_supplicant_deauthenticate(wpa_s, WLAN_REASON_DEAUTH_LEAVING);
6156 eloop_cancel_timeout(wpas_network_reenabled, wpa_s, NULL);
6160 void dump_freq_data(struct wpa_supplicant *wpa_s, const char *title,
6161 struct wpa_used_freq_data *freqs_data,
6166 wpa_dbg(wpa_s, MSG_DEBUG, "Shared frequencies (len=%u): %s",
6168 for (i = 0; i < len; i++) {
6169 struct wpa_used_freq_data *cur = &freqs_data[i];
6170 wpa_dbg(wpa_s, MSG_DEBUG, "freq[%u]: %d, flags=0x%X",
6171 i, cur->freq, cur->flags);
6177 * Find the operating frequencies of any of the virtual interfaces that
6178 * are using the same radio as the current interface, and in addition, get
6179 * information about the interface types that are using the frequency.
6181 int get_shared_radio_freqs_data(struct wpa_supplicant *wpa_s,
6182 struct wpa_used_freq_data *freqs_data,
6185 struct wpa_supplicant *ifs;
6188 unsigned int idx = 0, i;
6190 wpa_dbg(wpa_s, MSG_DEBUG,
6191 "Determining shared radio frequencies (max len %u)", len);
6192 os_memset(freqs_data, 0, sizeof(struct wpa_used_freq_data) * len);
6194 dl_list_for_each(ifs, &wpa_s->radio->ifaces, struct wpa_supplicant,
6199 if (ifs->current_ssid == NULL || ifs->assoc_freq == 0)
6202 if (ifs->current_ssid->mode == WPAS_MODE_AP ||
6203 ifs->current_ssid->mode == WPAS_MODE_P2P_GO ||
6204 ifs->current_ssid->mode == WPAS_MODE_MESH)
6205 freq = ifs->current_ssid->frequency;
6206 else if (wpa_drv_get_bssid(ifs, bssid) == 0)
6207 freq = ifs->assoc_freq;
6211 /* Hold only distinct freqs */
6212 for (i = 0; i < idx; i++)
6213 if (freqs_data[i].freq == freq)
6217 freqs_data[idx++].freq = freq;
6219 if (ifs->current_ssid->mode == WPAS_MODE_INFRA) {
6220 freqs_data[i].flags |= ifs->current_ssid->p2p_group ?
6221 WPA_FREQ_USED_BY_P2P_CLIENT :
6222 WPA_FREQ_USED_BY_INFRA_STATION;
6226 dump_freq_data(wpa_s, "completed iteration", freqs_data, idx);
6232 * Find the operating frequencies of any of the virtual interfaces that
6233 * are using the same radio as the current interface.
6235 int get_shared_radio_freqs(struct wpa_supplicant *wpa_s,
6236 int *freq_array, unsigned int len)
6238 struct wpa_used_freq_data *freqs_data;
6241 os_memset(freq_array, 0, sizeof(int) * len);
6243 freqs_data = os_calloc(len, sizeof(struct wpa_used_freq_data));
6247 num = get_shared_radio_freqs_data(wpa_s, freqs_data, len);
6248 for (i = 0; i < num; i++)
6249 freq_array[i] = freqs_data[i].freq;
6251 os_free(freqs_data);
6257 static void wpas_rrm_neighbor_rep_timeout_handler(void *data, void *user_ctx)
6259 struct rrm_data *rrm = data;
6261 if (!rrm->notify_neighbor_rep) {
6262 wpa_printf(MSG_ERROR,
6263 "RRM: Unexpected neighbor report timeout");
6267 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report - NONE");
6268 rrm->notify_neighbor_rep(rrm->neighbor_rep_cb_ctx, NULL);
6270 rrm->notify_neighbor_rep = NULL;
6271 rrm->neighbor_rep_cb_ctx = NULL;
6276 * wpas_rrm_reset - Clear and reset all RRM data in wpa_supplicant
6277 * @wpa_s: Pointer to wpa_supplicant
6279 void wpas_rrm_reset(struct wpa_supplicant *wpa_s)
6281 wpa_s->rrm.rrm_used = 0;
6283 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
6285 if (wpa_s->rrm.notify_neighbor_rep)
6286 wpas_rrm_neighbor_rep_timeout_handler(&wpa_s->rrm, NULL);
6287 wpa_s->rrm.next_neighbor_rep_token = 1;
6292 * wpas_rrm_process_neighbor_rep - Handle incoming neighbor report
6293 * @wpa_s: Pointer to wpa_supplicant
6294 * @report: Neighbor report buffer, prefixed by a 1-byte dialog token
6295 * @report_len: Length of neighbor report buffer
6297 void wpas_rrm_process_neighbor_rep(struct wpa_supplicant *wpa_s,
6298 const u8 *report, size_t report_len)
6300 struct wpabuf *neighbor_rep;
6302 wpa_hexdump(MSG_DEBUG, "RRM: New Neighbor Report", report, report_len);
6306 if (report[0] != wpa_s->rrm.next_neighbor_rep_token - 1) {
6307 wpa_printf(MSG_DEBUG,
6308 "RRM: Discarding neighbor report with token %d (expected %d)",
6309 report[0], wpa_s->rrm.next_neighbor_rep_token - 1);
6313 eloop_cancel_timeout(wpas_rrm_neighbor_rep_timeout_handler, &wpa_s->rrm,
6316 if (!wpa_s->rrm.notify_neighbor_rep) {
6317 wpa_printf(MSG_ERROR, "RRM: Unexpected neighbor report");
6321 /* skipping the first byte, which is only an id (dialog token) */
6322 neighbor_rep = wpabuf_alloc(report_len - 1);
6323 if (neighbor_rep == NULL)
6325 wpabuf_put_data(neighbor_rep, report + 1, report_len - 1);
6326 wpa_printf(MSG_DEBUG, "RRM: Notifying neighbor report (token = %d)",
6328 wpa_s->rrm.notify_neighbor_rep(wpa_s->rrm.neighbor_rep_cb_ctx,
6330 wpa_s->rrm.notify_neighbor_rep = NULL;
6331 wpa_s->rrm.neighbor_rep_cb_ctx = NULL;
6335 #if defined(__CYGWIN__) || defined(CONFIG_NATIVE_WINDOWS)
6336 /* Workaround different, undefined for Windows, error codes used here */
6338 #define EOPNOTSUPP -1
6339 #define ECANCELED -1
6342 /* Measurement Request element + Location Subject + Maximum Age subelement */
6343 #define MEASURE_REQUEST_LCI_LEN (3 + 1 + 4)
6344 /* Measurement Request element + Location Civic Request */
6345 #define MEASURE_REQUEST_CIVIC_LEN (3 + 5)
6349 * wpas_rrm_send_neighbor_rep_request - Request a neighbor report from our AP
6350 * @wpa_s: Pointer to wpa_supplicant
6351 * @ssid: if not null, this is sent in the request. Otherwise, no SSID IE
6352 * is sent in the request.
6353 * @lci: if set, neighbor request will include LCI request
6354 * @civic: if set, neighbor request will include civic location request
6355 * @cb: Callback function to be called once the requested report arrives, or
6356 * timed out after RRM_NEIGHBOR_REPORT_TIMEOUT seconds.
6357 * In the former case, 'neighbor_rep' is a newly allocated wpabuf, and it's
6358 * the requester's responsibility to free it.
6359 * In the latter case NULL will be sent in 'neighbor_rep'.
6360 * @cb_ctx: Context value to send the callback function
6361 * Returns: 0 in case of success, negative error code otherwise
6363 * In case there is a previous request which has not been answered yet, the
6364 * new request fails. The caller may retry after RRM_NEIGHBOR_REPORT_TIMEOUT.
6365 * Request must contain a callback function.
6367 int wpas_rrm_send_neighbor_rep_request(struct wpa_supplicant *wpa_s,
6368 const struct wpa_ssid_value *ssid,
6370 void (*cb)(void *ctx,
6371 struct wpabuf *neighbor_rep),
6377 if (wpa_s->wpa_state != WPA_COMPLETED || wpa_s->current_ssid == NULL) {
6378 wpa_printf(MSG_DEBUG, "RRM: No connection, no RRM.");
6382 if (!wpa_s->rrm.rrm_used) {
6383 wpa_printf(MSG_DEBUG, "RRM: No RRM in current connection.");
6387 rrm_ie = wpa_bss_get_ie(wpa_s->current_bss,
6388 WLAN_EID_RRM_ENABLED_CAPABILITIES);
6389 if (!rrm_ie || !(wpa_s->current_bss->caps & IEEE80211_CAP_RRM) ||
6390 !(rrm_ie[2] & WLAN_RRM_CAPS_NEIGHBOR_REPORT)) {
6391 wpa_printf(MSG_DEBUG,
6392 "RRM: No network support for Neighbor Report.");
6397 wpa_printf(MSG_DEBUG,
6398 "RRM: Neighbor Report request must provide a callback.");
6402 /* Refuse if there's a live request */
6403 if (wpa_s->rrm.notify_neighbor_rep) {
6404 wpa_printf(MSG_DEBUG,
6405 "RRM: Currently handling previous Neighbor Report.");
6409 /* 3 = action category + action code + dialog token */
6410 buf = wpabuf_alloc(3 + (ssid ? 2 + ssid->ssid_len : 0) +
6411 (lci ? 2 + MEASURE_REQUEST_LCI_LEN : 0) +
6412 (civic ? 2 + MEASURE_REQUEST_CIVIC_LEN : 0));
6414 wpa_printf(MSG_DEBUG,
6415 "RRM: Failed to allocate Neighbor Report Request");
6419 wpa_printf(MSG_DEBUG, "RRM: Neighbor report request (for %s), token=%d",
6420 (ssid ? wpa_ssid_txt(ssid->ssid, ssid->ssid_len) : ""),
6421 wpa_s->rrm.next_neighbor_rep_token);
6423 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
6424 wpabuf_put_u8(buf, WLAN_RRM_NEIGHBOR_REPORT_REQUEST);
6425 wpabuf_put_u8(buf, wpa_s->rrm.next_neighbor_rep_token);
6427 wpabuf_put_u8(buf, WLAN_EID_SSID);
6428 wpabuf_put_u8(buf, ssid->ssid_len);
6429 wpabuf_put_data(buf, ssid->ssid, ssid->ssid_len);
6433 /* IEEE P802.11-REVmc/D5.0 9.4.2.21 */
6434 wpabuf_put_u8(buf, WLAN_EID_MEASURE_REQUEST);
6435 wpabuf_put_u8(buf, MEASURE_REQUEST_LCI_LEN);
6438 * Measurement token; nonzero number that is unique among the
6439 * Measurement Request elements in a particular frame.
6441 wpabuf_put_u8(buf, 1); /* Measurement Token */
6444 * Parallel, Enable, Request, and Report bits are 0, Duration is
6447 wpabuf_put_u8(buf, 0); /* Measurement Request Mode */
6448 wpabuf_put_u8(buf, MEASURE_TYPE_LCI); /* Measurement Type */
6450 /* IEEE P802.11-REVmc/D5.0 9.4.2.21.10 - LCI request */
6451 /* Location Subject */
6452 wpabuf_put_u8(buf, LOCATION_SUBJECT_REMOTE);
6454 /* Optional Subelements */
6456 * IEEE P802.11-REVmc/D5.0 Figure 9-170
6457 * The Maximum Age subelement is required, otherwise the AP can
6458 * send only data that was determined after receiving the
6459 * request. Setting it here to unlimited age.
6461 wpabuf_put_u8(buf, LCI_REQ_SUBELEM_MAX_AGE);
6462 wpabuf_put_u8(buf, 2);
6463 wpabuf_put_le16(buf, 0xffff);
6467 /* IEEE P802.11-REVmc/D5.0 9.4.2.21 */
6468 wpabuf_put_u8(buf, WLAN_EID_MEASURE_REQUEST);
6469 wpabuf_put_u8(buf, MEASURE_REQUEST_CIVIC_LEN);
6472 * Measurement token; nonzero number that is unique among the
6473 * Measurement Request elements in a particular frame.
6475 wpabuf_put_u8(buf, 2); /* Measurement Token */
6478 * Parallel, Enable, Request, and Report bits are 0, Duration is
6481 wpabuf_put_u8(buf, 0); /* Measurement Request Mode */
6482 /* Measurement Type */
6483 wpabuf_put_u8(buf, MEASURE_TYPE_LOCATION_CIVIC);
6485 /* IEEE P802.11-REVmc/D5.0 9.4.2.21.14:
6486 * Location Civic request */
6487 /* Location Subject */
6488 wpabuf_put_u8(buf, LOCATION_SUBJECT_REMOTE);
6489 wpabuf_put_u8(buf, 0); /* Civic Location Type: IETF RFC 4776 */
6490 /* Location Service Interval Units: Seconds */
6491 wpabuf_put_u8(buf, 0);
6492 /* Location Service Interval: 0 - Only one report is requested
6494 wpabuf_put_le16(buf, 0);
6495 /* No optional subelements */
6498 wpa_s->rrm.next_neighbor_rep_token++;
6500 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, wpa_s->bssid,
6501 wpa_s->own_addr, wpa_s->bssid,
6502 wpabuf_head(buf), wpabuf_len(buf), 0) < 0) {
6503 wpa_printf(MSG_DEBUG,
6504 "RRM: Failed to send Neighbor Report Request");
6509 wpa_s->rrm.neighbor_rep_cb_ctx = cb_ctx;
6510 wpa_s->rrm.notify_neighbor_rep = cb;
6511 eloop_register_timeout(RRM_NEIGHBOR_REPORT_TIMEOUT, 0,
6512 wpas_rrm_neighbor_rep_timeout_handler,
6520 static struct wpabuf * wpas_rrm_build_lci_report(struct wpa_supplicant *wpa_s,
6521 const u8 *request, size_t len,
6522 struct wpabuf *report)
6524 u8 token, type, subject;
6526 struct os_reltime t, diff;
6527 unsigned long diff_l;
6531 if (!wpa_s->lci || len < 3 + 4)
6535 /* Measurement request mode isn't used */
6538 subject = *request++;
6540 wpa_printf(MSG_DEBUG,
6541 "Measurement request token %u type %u location subject %u",
6542 token, type, subject);
6544 if (type != MEASURE_TYPE_LCI || subject != LOCATION_SUBJECT_REMOTE) {
6545 wpa_printf(MSG_INFO,
6546 "Not building LCI report - bad type or location subject");
6550 /* Subelements are formatted exactly like elements */
6551 subelem = get_ie(request, len, LCI_REQ_SUBELEM_MAX_AGE);
6552 if (subelem && subelem[1] == 2)
6553 max_age = WPA_GET_LE16(subelem + 2);
6555 if (os_get_reltime(&t))
6558 os_reltime_sub(&t, &wpa_s->lci_time, &diff);
6559 /* LCI age is calculated in 10th of a second units. */
6560 diff_l = diff.sec * 10 + diff.usec / 100000;
6562 if (max_age != 0xffff && max_age < diff_l)
6565 if (wpabuf_resize(&report, 2 + wpabuf_len(wpa_s->lci)))
6568 wpabuf_put_u8(report, WLAN_EID_MEASURE_REPORT);
6569 wpabuf_put_u8(report, wpabuf_len(wpa_s->lci));
6570 /* We'll override user's measurement token */
6571 ptoken = wpabuf_put(report, 0);
6572 wpabuf_put_buf(report, wpa_s->lci);
6579 void wpas_rrm_handle_radio_measurement_request(struct wpa_supplicant *wpa_s,
6581 const u8 *frame, size_t len)
6583 struct wpabuf *buf, *report;
6587 if (wpa_s->wpa_state != WPA_COMPLETED) {
6588 wpa_printf(MSG_INFO,
6589 "RRM: Ignoring radio measurement request: Not associated");
6593 if (!wpa_s->rrm.rrm_used) {
6594 wpa_printf(MSG_INFO,
6595 "RRM: Ignoring radio measurement request: Not RRM network");
6600 wpa_printf(MSG_INFO,
6601 "RRM: Ignoring too short radio measurement request");
6609 /* Ignore number of repetitions because it's not used in LCI request */
6613 while ((ie = get_ie(frame, end - frame, WLAN_EID_MEASURE_REQUEST)) &&
6618 wpa_printf(MSG_DEBUG, "RRM request %d", msmt_type);
6620 switch (msmt_type) {
6621 case MEASURE_TYPE_LCI:
6622 report = wpas_rrm_build_lci_report(wpa_s, ie + 2, ie[1],
6626 wpa_printf(MSG_INFO,
6627 "RRM: Unsupported radio measurement request %d",
6632 frame = ie + ie[1] + 2;
6638 buf = wpabuf_alloc(3 + wpabuf_len(report));
6640 wpabuf_free(report);
6644 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
6645 wpabuf_put_u8(buf, WLAN_RRM_RADIO_MEASUREMENT_REPORT);
6646 wpabuf_put_u8(buf, token);
6648 wpabuf_put_buf(buf, report);
6649 wpabuf_free(report);
6651 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, src,
6652 wpa_s->own_addr, wpa_s->bssid,
6653 wpabuf_head(buf), wpabuf_len(buf), 0)) {
6654 wpa_printf(MSG_ERROR,
6655 "RRM: Radio measurement report failed: Sending Action frame failed");
6661 void wpas_rrm_handle_link_measurement_request(struct wpa_supplicant *wpa_s,
6663 const u8 *frame, size_t len,
6667 const struct rrm_link_measurement_request *req;
6668 struct rrm_link_measurement_report report;
6670 if (wpa_s->wpa_state != WPA_COMPLETED) {
6671 wpa_printf(MSG_INFO,
6672 "RRM: Ignoring link measurement request. Not associated");
6676 if (!wpa_s->rrm.rrm_used) {
6677 wpa_printf(MSG_INFO,
6678 "RRM: Ignoring link measurement request. Not RRM network");
6682 if (!(wpa_s->drv_rrm_flags & WPA_DRIVER_FLAGS_TX_POWER_INSERTION)) {
6683 wpa_printf(MSG_INFO,
6684 "RRM: Measurement report failed. TX power insertion not supported");
6688 req = (const struct rrm_link_measurement_request *) frame;
6689 if (len < sizeof(*req)) {
6690 wpa_printf(MSG_INFO,
6691 "RRM: Link measurement report failed. Request too short");
6695 os_memset(&report, 0, sizeof(report));
6696 report.tpc.eid = WLAN_EID_TPC_REPORT;
6698 report.rsni = 255; /* 255 indicates that RSNI is not available */
6699 report.dialog_token = req->dialog_token;
6702 * It's possible to estimate RCPI based on RSSI in dBm. This
6703 * calculation will not reflect the correct value for high rates,
6704 * but it's good enough for Action frames which are transmitted
6705 * with up to 24 Mbps rates.
6708 report.rcpi = 255; /* not available */
6709 else if (rssi < -110)
6714 report.rcpi = (rssi + 110) * 2;
6716 /* action_category + action_code */
6717 buf = wpabuf_alloc(2 + sizeof(report));
6719 wpa_printf(MSG_ERROR,
6720 "RRM: Link measurement report failed. Buffer allocation failed");
6724 wpabuf_put_u8(buf, WLAN_ACTION_RADIO_MEASUREMENT);
6725 wpabuf_put_u8(buf, WLAN_RRM_LINK_MEASUREMENT_REPORT);
6726 wpabuf_put_data(buf, &report, sizeof(report));
6727 wpa_hexdump(MSG_DEBUG, "RRM: Link measurement report:",
6728 wpabuf_head(buf), wpabuf_len(buf));
6730 if (wpa_drv_send_action(wpa_s, wpa_s->assoc_freq, 0, src,
6731 wpa_s->own_addr, wpa_s->bssid,
6732 wpabuf_head(buf), wpabuf_len(buf), 0)) {
6733 wpa_printf(MSG_ERROR,
6734 "RRM: Link measurement report failed. Send action failed");
6740 struct wpa_supplicant *
6741 wpas_vendor_elem(struct wpa_supplicant *wpa_s, enum wpa_vendor_elem_frame frame)
6745 case VENDOR_ELEM_PROBE_REQ_P2P:
6746 case VENDOR_ELEM_PROBE_RESP_P2P:
6747 case VENDOR_ELEM_PROBE_RESP_P2P_GO:
6748 case VENDOR_ELEM_BEACON_P2P_GO:
6749 case VENDOR_ELEM_P2P_PD_REQ:
6750 case VENDOR_ELEM_P2P_PD_RESP:
6751 case VENDOR_ELEM_P2P_GO_NEG_REQ:
6752 case VENDOR_ELEM_P2P_GO_NEG_RESP:
6753 case VENDOR_ELEM_P2P_GO_NEG_CONF:
6754 case VENDOR_ELEM_P2P_INV_REQ:
6755 case VENDOR_ELEM_P2P_INV_RESP:
6756 case VENDOR_ELEM_P2P_ASSOC_REQ:
6757 case VENDOR_ELEM_P2P_ASSOC_RESP:
6758 return wpa_s->p2pdev;
6759 #endif /* CONFIG_P2P */
6766 void wpas_vendor_elem_update(struct wpa_supplicant *wpa_s)
6771 wpa_printf(MSG_DEBUG, "Update vendor elements");
6773 for (i = 0; i < NUM_VENDOR_ELEM_FRAMES; i++) {
6774 if (wpa_s->vendor_elem[i]) {
6777 res = os_snprintf(buf, sizeof(buf), "frame[%u]", i);
6778 if (!os_snprintf_error(sizeof(buf), res)) {
6779 wpa_hexdump_buf(MSG_DEBUG, buf,
6780 wpa_s->vendor_elem[i]);
6786 if (wpa_s->parent == wpa_s &&
6787 wpa_s->global->p2p &&
6788 !wpa_s->global->p2p_disabled)
6789 p2p_set_vendor_elems(wpa_s->global->p2p, wpa_s->vendor_elem);
6790 #endif /* CONFIG_P2P */
6794 int wpas_vendor_elem_remove(struct wpa_supplicant *wpa_s, int frame,
6795 const u8 *elem, size_t len)
6799 ie = wpabuf_mhead_u8(wpa_s->vendor_elem[frame]);
6800 end = ie + wpabuf_len(wpa_s->vendor_elem[frame]);
6802 for (; ie + 1 < end; ie += 2 + ie[1]) {
6805 if (os_memcmp(ie, elem, len) != 0)
6808 if (wpabuf_len(wpa_s->vendor_elem[frame]) == len) {
6809 wpabuf_free(wpa_s->vendor_elem[frame]);
6810 wpa_s->vendor_elem[frame] = NULL;
6812 os_memmove(ie, ie + len, end - (ie + len));
6813 wpa_s->vendor_elem[frame]->used -= len;
6815 wpas_vendor_elem_update(wpa_s);
6823 struct hostapd_hw_modes * get_mode(struct hostapd_hw_modes *modes,
6824 u16 num_modes, enum hostapd_hw_mode mode)
6828 for (i = 0; i < num_modes; i++) {
6829 if (modes[i].mode == mode)
6838 wpa_bss_tmp_disallowed * wpas_get_disallowed_bss(struct wpa_supplicant *wpa_s,
6841 struct wpa_bss_tmp_disallowed *bss;
6843 dl_list_for_each(bss, &wpa_s->bss_tmp_disallowed,
6844 struct wpa_bss_tmp_disallowed, list) {
6845 if (os_memcmp(bssid, bss->bssid, ETH_ALEN) == 0)
6853 void wpa_bss_tmp_disallow(struct wpa_supplicant *wpa_s, const u8 *bssid,
6856 struct wpa_bss_tmp_disallowed *bss;
6857 struct os_reltime until;
6859 os_get_reltime(&until);
6862 bss = wpas_get_disallowed_bss(wpa_s, bssid);
6864 bss->disallowed_until = until;
6868 bss = os_malloc(sizeof(*bss));
6870 wpa_printf(MSG_DEBUG,
6871 "Failed to allocate memory for temp disallow BSS");
6875 bss->disallowed_until = until;
6876 os_memcpy(bss->bssid, bssid, ETH_ALEN);
6877 dl_list_add(&wpa_s->bss_tmp_disallowed, &bss->list);
6881 int wpa_is_bss_tmp_disallowed(struct wpa_supplicant *wpa_s, const u8 *bssid)
6883 struct wpa_bss_tmp_disallowed *bss = NULL, *tmp, *prev;
6884 struct os_reltime now, age;
6886 os_get_reltime(&now);
6888 dl_list_for_each_safe(tmp, prev, &wpa_s->bss_tmp_disallowed,
6889 struct wpa_bss_tmp_disallowed, list) {
6890 if (!os_reltime_before(&now, &tmp->disallowed_until)) {
6891 /* This BSS is not disallowed anymore */
6892 dl_list_del(&tmp->list);
6896 if (os_memcmp(bssid, tmp->bssid, ETH_ALEN) == 0) {
6904 os_reltime_sub(&bss->disallowed_until, &now, &age);
6905 wpa_printf(MSG_DEBUG,
6906 "BSS " MACSTR " disabled for %ld.%0ld seconds",
6907 MAC2STR(bss->bssid), age.sec, age.usec);
projects / mech_eap.git / blob