wps.c revision 8d520ff1dc2da35cdca849e982051b86468016d8
18d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* 28d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Wi-Fi Protected Setup 38d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Copyright (c) 2007-2009, Jouni Malinen <j@w1.fi> 48d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 58d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This program is free software; you can redistribute it and/or modify 68d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * it under the terms of the GNU General Public License version 2 as 78d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * published by the Free Software Foundation. 88d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 98d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Alternatively, this software may be distributed under the terms of BSD 108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * license. 118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * See README and COPYING for more details. 138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "includes.h" 168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "common.h" 188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "crypto/dh_group5.h" 198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "common/ieee802_11_defs.h" 208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "wps_i.h" 218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "wps_dev_attr.h" 228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS_TESTING 258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint wps_version_number = 0x20; 268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint wps_testing_dummy_cred = 0; 278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS_TESTING */ 288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_init - Initialize WPS Registration protocol data 328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @cfg: WPS configuration 338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: Pointer to allocated data or %NULL on failure 348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This function is used to initialize WPS data for a registration protocol 368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * instance (i.e., each run of registration protocol as a Registrar of 378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Enrollee. The caller is responsible for freeing this data after the 388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * registration run has been completed by calling wps_deinit(). 398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstruct wps_data * wps_init(const struct wps_config *cfg) 418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_data *data = os_zalloc(sizeof(*data)); 438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (data == NULL) 448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->wps = cfg->wps; 468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->registrar = cfg->registrar; 478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (cfg->registrar) { 488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(data->uuid_r, cfg->wps->uuid, WPS_UUID_LEN); 498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else { 508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(data->mac_addr_e, cfg->wps->dev.mac_addr, ETH_ALEN); 518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(data->uuid_e, cfg->wps->uuid, WPS_UUID_LEN); 528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (cfg->pin) { 548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->dev_pw_id = data->wps->oob_dev_pw_id == 0 ? 558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt cfg->dev_pw_id : data->wps->oob_dev_pw_id; 568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->dev_password = os_malloc(cfg->pin_len); 578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (data->dev_password == NULL) { 588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data); 598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(data->dev_password, cfg->pin, cfg->pin_len); 628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->dev_password_len = cfg->pin_len; 638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->pbc = cfg->pbc; 668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (cfg->pbc) { 678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Use special PIN '00000000' for PBC */ 688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->dev_pw_id = DEV_PW_PUSHBUTTON; 698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data->dev_password); 708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->dev_password = os_malloc(8); 718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (data->dev_password == NULL) { 728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data); 738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memset(data->dev_password, '0', 8); 768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->dev_password_len = 8; 778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->state = data->registrar ? RECV_M1 : SEND_M1; 808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (cfg->assoc_wps_ie) { 828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_parse_attr attr; 838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_hexdump_buf(MSG_DEBUG, "WPS: WPS IE from (Re)AssocReq", 848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt cfg->assoc_wps_ie); 858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_parse_msg(cfg->assoc_wps_ie, &attr) < 0) { 868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: Failed to parse WPS IE " 878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "from (Re)AssocReq"); 888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else if (attr.request_type == NULL) { 898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: No Request Type attribute " 908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "in (Re)AssocReq WPS IE"); 918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else { 928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: Request Type (from WPS IE " 938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "in (Re)AssocReq WPS IE): %d", 948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt *attr.request_type); 958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->request_type = *attr.request_type; 968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (cfg->new_ap_settings) { 1008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->new_ap_settings = 1018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_malloc(sizeof(*data->new_ap_settings)); 1028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (data->new_ap_settings == NULL) { 1038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data); 1048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 1058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 1068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(data->new_ap_settings, cfg->new_ap_settings, 1078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sizeof(*data->new_ap_settings)); 1088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 1098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (cfg->peer_addr) 1118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(data->peer_dev.mac_addr, cfg->peer_addr, ETH_ALEN); 1128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (cfg->p2p_dev_addr) 1138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(data->p2p_dev_addr, cfg->p2p_dev_addr, ETH_ALEN); 1148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->use_psk_key = cfg->use_psk_key; 1168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return data; 1188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 1198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 1228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_deinit - Deinitialize WPS Registration protocol data 1238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @data: WPS Registration protocol data from wps_init() 1248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 1258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtvoid wps_deinit(struct wps_data *data) 1268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 1278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (data->wps_pin_revealed) { 1288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: Full PIN information revealed and " 1298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "negotiation failed"); 1308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (data->registrar) 1318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_registrar_invalidate_pin(data->wps->registrar, 1328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data->uuid_e); 1338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else if (data->registrar) 1348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_registrar_unlock_pin(data->wps->registrar, data->uuid_e); 1358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(data->dh_privkey); 1378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(data->dh_pubkey_e); 1388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(data->dh_pubkey_r); 1398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(data->last_msg); 1408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data->dev_password); 1418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data->new_psk); 1428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_device_data_free(&data->peer_dev); 1438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data->new_ap_settings); 1448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dh5_free(data->dh_ctx); 1458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(data); 1468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 1478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 1508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_process_msg - Process a WPS message 1518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @wps: WPS Registration protocol data from wps_init() 1528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @op_code: Message OP Code 1538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @msg: Message data 1548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: Processing result 1558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 1568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This function is used to process WPS messages with OP Codes WSC_ACK, 1578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * WSC_NACK, WSC_MSG, and WSC_Done. The caller (e.g., EAP server/peer) is 1588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * responsible for reassembling the messages before calling this function. 1598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Response to this message is built by calling wps_get_msg(). 1608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 1618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtenum wps_process_res wps_process_msg(struct wps_data *wps, 1628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt enum wsc_op_code op_code, 1638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const struct wpabuf *msg) 1648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 1658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps->registrar) 1668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return wps_registrar_process_msg(wps, op_code, msg); 1678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt else 1688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return wps_enrollee_process_msg(wps, op_code, msg); 1698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 1708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 1738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_get_msg - Build a WPS message 1748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @wps: WPS Registration protocol data from wps_init() 1758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @op_code: Buffer for returning message OP Code 1768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: The generated WPS message or %NULL on failure 1778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 1788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This function is used to build a response to a message processed by calling 1798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_process_msg(). The caller is responsible for freeing the buffer. 1808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 1818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstruct wpabuf * wps_get_msg(struct wps_data *wps, enum wsc_op_code *op_code) 1828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 1838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps->registrar) 1848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return wps_registrar_get_msg(wps, op_code); 1858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt else 1868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return wps_enrollee_get_msg(wps, op_code); 1878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 1888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 1918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_is_selected_pbc_registrar - Check whether WPS IE indicates active PBC 1928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @msg: WPS IE contents from Beacon or Probe Response frame 1938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 1 if PBC Registrar is active, 0 if not 1948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 1958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint wps_is_selected_pbc_registrar(const struct wpabuf *msg) 1968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 1978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_parse_attr attr; 1988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 2008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * In theory, this could also verify that attr.sel_reg_config_methods 2018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * includes WPS_CONFIG_PUSHBUTTON, but some deployed AP implementations 2028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * do not set Selected Registrar Config Methods attribute properly, so 2038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * it is safer to just use Device Password ID here. 2048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 2058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_parse_msg(msg, &attr) < 0 || 2078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt !attr.selected_registrar || *attr.selected_registrar == 0 || 2088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt !attr.dev_password_id || 2098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPA_GET_BE16(attr.dev_password_id) != DEV_PW_PUSHBUTTON) 2108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS_STRICT 2138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!attr.sel_reg_config_methods || 2148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt !(WPA_GET_BE16(attr.sel_reg_config_methods) & 2158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPS_CONFIG_PUSHBUTTON)) 2168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS_STRICT */ 2188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 1; 2208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 2218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic int is_selected_pin_registrar(struct wps_parse_attr *attr) 2248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 2258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 2268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * In theory, this could also verify that attr.sel_reg_config_methods 2278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * includes WPS_CONFIG_LABEL, WPS_CONFIG_DISPLAY, or WPS_CONFIG_KEYPAD, 2288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * but some deployed AP implementations do not set Selected Registrar 2298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Config Methods attribute properly, so it is safer to just use 2308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Device Password ID here. 2318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 2328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!attr->selected_registrar || *attr->selected_registrar == 0) 2348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr->dev_password_id != NULL && 2378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPA_GET_BE16(attr->dev_password_id) == DEV_PW_PUSHBUTTON) 2388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS_STRICT 2418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!attr->sel_reg_config_methods || 2428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt !(WPA_GET_BE16(attr->sel_reg_config_methods) & 2438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt (WPS_CONFIG_LABEL | WPS_CONFIG_DISPLAY | WPS_CONFIG_KEYPAD))) 2448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS_STRICT */ 2468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 1; 2488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 2498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 2528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_is_selected_pin_registrar - Check whether WPS IE indicates active PIN 2538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @msg: WPS IE contents from Beacon or Probe Response frame 2548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 1 if PIN Registrar is active, 0 if not 2558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 2568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint wps_is_selected_pin_registrar(const struct wpabuf *msg) 2578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 2588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_parse_attr attr; 2598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_parse_msg(msg, &attr) < 0) 2618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return is_selected_pin_registrar(&attr); 2648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 2658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 2688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_is_addr_authorized - Check whether WPS IE authorizes MAC address 2698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @msg: WPS IE contents from Beacon or Probe Response frame 2708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @addr: MAC address to search for 2718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @ver1_compat: Whether to use version 1 compatibility mode 2728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 1 if address is authorized, 0 if not 2738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 2748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint wps_is_addr_authorized(const struct wpabuf *msg, const u8 *addr, 2758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int ver1_compat) 2768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 2778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_parse_attr attr; 2788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt unsigned int i; 2798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 *pos; 2808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 bcast[ETH_ALEN] = { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff }; 2818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_parse_msg(msg, &attr) < 0) 2838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!attr.version2 && ver1_compat) { 2868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 2878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Version 1.0 AP - AuthorizedMACs not used, so revert back to 2888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * old mechanism of using SelectedRegistrar. 2898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 2908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return is_selected_pin_registrar(&attr); 2918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 2928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!attr.authorized_macs) 2948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 2958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos = attr.authorized_macs; 2978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt for (i = 0; i < attr.authorized_macs_len / ETH_ALEN; i++) { 2988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (os_memcmp(pos, addr, ETH_ALEN) == 0 || 2998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcmp(pos, bcast, ETH_ALEN) == 0) 3008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 1; 3018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ETH_ALEN; 3028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 3038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 3058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 3068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 3098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_ap_priority_compar - Prioritize WPS IE from two APs 3108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @wps_a: WPS IE contents from Beacon or Probe Response frame 3118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @wps_b: WPS IE contents from Beacon or Probe Response frame 3128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 1 if wps_b is considered more likely selection for WPS 3138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * provisioning, -1 if wps_a is considered more like, or 0 if no preference 3148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint wps_ap_priority_compar(const struct wpabuf *wps_a, 3168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const struct wpabuf *wps_b) 3178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 3188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_parse_attr attr_a, attr_b; 3198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int sel_a, sel_b; 3208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_a == NULL || wps_parse_msg(wps_a, &attr_a) < 0) 3228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 1; 3238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_b == NULL || wps_parse_msg(wps_b, &attr_b) < 0) 3248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 3258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sel_a = attr_a.selected_registrar && *attr_a.selected_registrar != 0; 3278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sel_b = attr_b.selected_registrar && *attr_b.selected_registrar != 0; 3288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sel_a && !sel_b) 3308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 3318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!sel_a && sel_b) 3328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 1; 3338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 3358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 3368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 3398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_get_uuid_e - Get UUID-E from WPS IE 3408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @msg: WPS IE contents from Beacon or Probe Response frame 3418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: Pointer to UUID-E or %NULL if not included 3428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 3438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * The returned pointer is to the msg contents and it remains valid only as 3448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * long as the msg buffer is valid. 3458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtconst u8 * wps_get_uuid_e(const struct wpabuf *msg) 3478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 3488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_parse_attr attr; 3498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_parse_msg(msg, &attr) < 0) 3518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 3528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return attr.uuid_e; 3538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 3548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 3578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_build_assoc_req_ie - Build WPS IE for (Re)Association Request 3588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @req_type: Value for Request Type attribute 3598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: WPS IE or %NULL on failure 3608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 3618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * The caller is responsible for freeing the buffer. 3628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstruct wpabuf * wps_build_assoc_req_ie(enum wps_request_type req_type) 3648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 3658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wpabuf *ie; 3668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt u8 *len; 3678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: Building WPS IE for (Re)Association " 3698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "Request"); 3708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ie = wpabuf_alloc(100); 3718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ie == NULL) 3728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 3738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_u8(ie, WLAN_EID_VENDOR_SPECIFIC); 3758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt len = wpabuf_put(ie, 1); 3768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_be32(ie, WPS_DEV_OUI_WFA); 3778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_build_version(ie) || 3798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_req_type(ie, req_type) || 3808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_wfa_ext(ie, 0, NULL, 0)) { 3818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(ie); 3828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 3838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 3848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt *len = wpabuf_len(ie) - 2; 3868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return ie; 3888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 3898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 3928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_build_assoc_resp_ie - Build WPS IE for (Re)Association Response 3938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: WPS IE or %NULL on failure 3948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 3958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * The caller is responsible for freeing the buffer. 3968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstruct wpabuf * wps_build_assoc_resp_ie(void) 3988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 3998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wpabuf *ie; 4008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt u8 *len; 4018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: Building WPS IE for (Re)Association " 4038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "Response"); 4048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ie = wpabuf_alloc(100); 4058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ie == NULL) 4068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 4078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_u8(ie, WLAN_EID_VENDOR_SPECIFIC); 4098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt len = wpabuf_put(ie, 1); 4108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_be32(ie, WPS_DEV_OUI_WFA); 4118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_build_version(ie) || 4138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_resp_type(ie, WPS_RESP_AP) || 4148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_wfa_ext(ie, 0, NULL, 0)) { 4158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(ie); 4168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 4178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 4188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt *len = wpabuf_len(ie) - 2; 4208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return ie; 4228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 4238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 4268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * wps_build_probe_req_ie - Build WPS IE for Probe Request 4278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @pbc: Whether searching for PBC mode APs 4288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @dev: Device attributes 4298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @uuid: Own UUID 4308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @req_type: Value for Request Type attribute 4318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @num_req_dev_types: Number of requested device types 4328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @req_dev_types: Requested device types (8 * num_req_dev_types octets) or 4338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * %NULL if none 4348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: WPS IE or %NULL on failure 4358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 4368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * The caller is responsible for freeing the buffer. 4378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 4388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstruct wpabuf * wps_build_probe_req_ie(int pbc, struct wps_device_data *dev, 4398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 *uuid, 4408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt enum wps_request_type req_type, 4418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt unsigned int num_req_dev_types, 4428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const u8 *req_dev_types) 4438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 4448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wpabuf *ie; 4458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt u16 methods = 0; 4468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: Building WPS IE for Probe Request"); 4488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ie = wpabuf_alloc(500); 4508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ie == NULL) 4518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 4528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt methods |= WPS_CONFIG_PUSHBUTTON; 4548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS2 4558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 4568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * TODO: Should figure out whether this device has a physical or 4578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * virtual pushbutton. 4588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 4598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt methods |= WPS_CONFIG_VIRT_PUSHBUTTON; 4608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS2 */ 4618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 4638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * TODO: Should figure out whether this Probe Request was triggered 4648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * using physical or virtual display. Also, if the device has a PIN on 4658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * a label, that should be indicated here. 4668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 4678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt methods |= WPS_CONFIG_DISPLAY | 4688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS2 4698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPS_CONFIG_VIRT_DISPLAY | 4708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS2 */ 4718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPS_CONFIG_KEYPAD; 4728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS_UFD 4738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt methods |= WPS_CONFIG_USBA; 4748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS_UFD */ 4758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS_NFC 4768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt methods |= WPS_CONFIG_NFC_INTERFACE; 4778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS_NFC */ 4788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_build_version(ie) || 4808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_req_type(ie, req_type) || 4818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_config_methods(ie, methods) || 4828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_uuid_e(ie, uuid) || 4838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_primary_dev_type(dev, ie) || 4848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_rf_bands(dev, ie) || 4858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_assoc_state(NULL, ie) || 4868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_config_error(ie, WPS_CFG_NO_ERROR) || 4878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_dev_password_id(ie, pbc ? DEV_PW_PUSHBUTTON : 4888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt DEV_PW_DEFAULT) || 4898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef CONFIG_WPS2 4908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_manufacturer(dev, ie) || 4918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_model_name(dev, ie) || 4928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_model_number(dev, ie) || 4938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_dev_name(dev, ie) || 4948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_wfa_ext(ie, req_type == WPS_REQ_ENROLLEE, NULL, 0) || 4958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS2 */ 4968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_req_dev_type(dev, ie, num_req_dev_types, req_dev_types) 4978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt || 4988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_build_secondary_dev_type(dev, ie) 4998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ) { 5008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(ie); 5018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 5028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifndef CONFIG_WPS2 5058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (dev->p2p && wps_build_dev_name(dev, ie)) { 5068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(ie); 5078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 5088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_WPS2 */ 5108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return wps_ie_encapsulate(ie); 5128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 5138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtvoid wps_free_pending_msgs(struct upnp_pending_message *msgs) 5168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 5178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_pending_message *p, *prev; 5188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt p = msgs; 5198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt while (p) { 5208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt prev = p; 5218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt p = p->next; 5228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(prev->msg); 5238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(prev); 5248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 5268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint wps_attr_text(struct wpabuf *data, char *buf, char *end) 5298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 5308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wps_parse_attr attr; 5318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt char *pos = buf; 5328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int ret; 5338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (wps_parse_msg(data, &attr) < 0) 5358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 5368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.wps_state) { 5388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (*attr.wps_state == WPS_STATE_NOT_CONFIGURED) 5398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 5408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_state=unconfigured\n"); 5418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt else if (*attr.wps_state == WPS_STATE_CONFIGURED) 5428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 5438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_state=configured\n"); 5448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt else 5458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = 0; 5468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 5478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 5488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 5498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.ap_setup_locked && *attr.ap_setup_locked) { 5528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 5538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_ap_setup_locked=1\n"); 5548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 5558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 5568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 5578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.selected_registrar && *attr.selected_registrar) { 5608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 5618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_selected_registrar=1\n"); 5628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 5638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 5648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 5658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.dev_password_id) { 5688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 5698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_device_password_id=%u\n", 5708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPA_GET_BE16(attr.dev_password_id)); 5718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 5728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 5738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 5748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.sel_reg_config_methods) { 5778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 5788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_selected_registrar_config_methods=" 5798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "0x%04x\n", 5808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPA_GET_BE16(attr.sel_reg_config_methods)); 5818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 5828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 5838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 5848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.primary_dev_type) { 5878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt char devtype[WPS_DEV_TYPE_BUFSIZE]; 5888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 5898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_primary_device_type=%s\n", 5908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wps_dev_type_bin2str(attr.primary_dev_type, 5918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt devtype, 5928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sizeof(devtype))); 5938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 5948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 5958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 5968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.dev_name) { 5998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt char *str = os_malloc(attr.dev_name_len + 1); 6008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt size_t i; 6018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str == NULL) 6028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 6038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt for (i = 0; i < attr.dev_name_len; i++) { 6048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.dev_name[i] < 32) 6058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt str[i] = '_'; 6068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt else 6078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt str[i] = attr.dev_name[i]; 6088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt str[i] = '\0'; 6108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, "wps_device_name=%s\n", str); 6118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(str); 6128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 6138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 6148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 6158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (attr.config_methods) { 6188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = os_snprintf(pos, end - pos, 6198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "wps_config_methods=0x%04x\n", 6208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt WPA_GET_BE16(attr.config_methods)); 6218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ret < 0 || ret >= end - pos) 6228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 6238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos += ret; 6248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return pos - buf; 6278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 628