ap.c revision 623d63a3a443027e50efdaaec027befcc3882527
1/* 2 * WPA Supplicant - Basic AP mode support routines 3 * Copyright (c) 2003-2009, Jouni Malinen <j@w1.fi> 4 * Copyright (c) 2009, Atheros Communications 5 * 6 * This software may be distributed under the terms of the BSD license. 7 * See README for more details. 8 */ 9 10#include "utils/includes.h" 11 12#include "utils/common.h" 13#include "utils/eloop.h" 14#include "utils/uuid.h" 15#include "common/ieee802_11_defs.h" 16#include "common/wpa_ctrl.h" 17#include "eapol_supp/eapol_supp_sm.h" 18#include "crypto/dh_group5.h" 19#include "ap/hostapd.h" 20#include "ap/ap_config.h" 21#include "ap/ap_drv_ops.h" 22#ifdef NEED_AP_MLME 23#include "ap/ieee802_11.h" 24#endif /* NEED_AP_MLME */ 25#include "ap/beacon.h" 26#include "ap/ieee802_1x.h" 27#include "ap/wps_hostapd.h" 28#include "ap/ctrl_iface_ap.h" 29#include "wps/wps.h" 30#include "common/ieee802_11_defs.h" 31#include "config_ssid.h" 32#include "config.h" 33#include "wpa_supplicant_i.h" 34#include "driver_i.h" 35#include "p2p_supplicant.h" 36#include "ap.h" 37#include "ap/sta_info.h" 38#include "notify.h" 39 40 41#ifdef CONFIG_WPS 42static void wpas_wps_ap_pin_timeout(void *eloop_data, void *user_ctx); 43#endif /* CONFIG_WPS */ 44 45 46#ifdef CONFIG_IEEE80211N 47static void wpas_conf_ap_vht(struct wpa_supplicant *wpa_s, 48 struct hostapd_config *conf, 49 struct hostapd_hw_modes *mode) 50{ 51#ifdef CONFIG_P2P 52 u8 center_chan = 0; 53 u8 channel = conf->channel; 54 55 if (!conf->secondary_channel) 56 goto no_vht; 57 58 center_chan = wpas_p2p_get_vht80_center(wpa_s, mode, channel); 59 if (!center_chan) 60 goto no_vht; 61 62 /* Use 80 MHz channel */ 63 conf->vht_oper_chwidth = 1; 64 conf->vht_oper_centr_freq_seg0_idx = center_chan; 65 return; 66 67no_vht: 68 conf->vht_oper_centr_freq_seg0_idx = 69 channel + conf->secondary_channel * 2; 70#else /* CONFIG_P2P */ 71 conf->vht_oper_centr_freq_seg0_idx = 72 conf->channel + conf->secondary_channel * 2; 73#endif /* CONFIG_P2P */ 74} 75#endif /* CONFIG_IEEE80211N */ 76 77 78static int wpa_supplicant_conf_ap(struct wpa_supplicant *wpa_s, 79 struct wpa_ssid *ssid, 80 struct hostapd_config *conf) 81{ 82 struct hostapd_bss_config *bss = conf->bss[0]; 83 84 conf->driver = wpa_s->driver; 85 86 os_strlcpy(bss->iface, wpa_s->ifname, sizeof(bss->iface)); 87 88 conf->hw_mode = ieee80211_freq_to_chan(ssid->frequency, 89 &conf->channel); 90 if (conf->hw_mode == NUM_HOSTAPD_MODES) { 91 wpa_printf(MSG_ERROR, "Unsupported AP mode frequency: %d MHz", 92 ssid->frequency); 93 return -1; 94 } 95 96 /* TODO: enable HT40 if driver supports it; 97 * drop to 11b if driver does not support 11g */ 98 99#ifdef CONFIG_IEEE80211N 100 /* 101 * Enable HT20 if the driver supports it, by setting conf->ieee80211n 102 * and a mask of allowed capabilities within conf->ht_capab. 103 * Using default config settings for: conf->ht_op_mode_fixed, 104 * conf->secondary_channel, conf->require_ht 105 */ 106 if (wpa_s->hw.modes) { 107 struct hostapd_hw_modes *mode = NULL; 108 int i, no_ht = 0; 109 for (i = 0; i < wpa_s->hw.num_modes; i++) { 110 if (wpa_s->hw.modes[i].mode == conf->hw_mode) { 111 mode = &wpa_s->hw.modes[i]; 112 break; 113 } 114 } 115 116#ifdef CONFIG_HT_OVERRIDES 117 if (ssid->disable_ht) { 118 conf->ieee80211n = 0; 119 conf->ht_capab = 0; 120 no_ht = 1; 121 } 122#endif /* CONFIG_HT_OVERRIDES */ 123 124 if (!no_ht && mode && mode->ht_capab) { 125 conf->ieee80211n = 1; 126#ifdef CONFIG_P2P 127 if (conf->hw_mode == HOSTAPD_MODE_IEEE80211A && 128 (mode->ht_capab & 129 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET) && 130 ssid->ht40) 131 conf->secondary_channel = 132 wpas_p2p_get_ht40_mode(wpa_s, mode, 133 conf->channel); 134 if (conf->secondary_channel) 135 conf->ht_capab |= 136 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET; 137#endif /* CONFIG_P2P */ 138 139 /* 140 * white-list capabilities that won't cause issues 141 * to connecting stations, while leaving the current 142 * capabilities intact (currently disabled SMPS). 143 */ 144 conf->ht_capab |= mode->ht_capab & 145 (HT_CAP_INFO_GREEN_FIELD | 146 HT_CAP_INFO_SHORT_GI20MHZ | 147 HT_CAP_INFO_SHORT_GI40MHZ | 148 HT_CAP_INFO_RX_STBC_MASK | 149 HT_CAP_INFO_MAX_AMSDU_SIZE); 150 151 if (mode->vht_capab && ssid->vht) { 152 conf->ieee80211ac = 1; 153 wpas_conf_ap_vht(wpa_s, conf, mode); 154 } 155 } 156 } 157#endif /* CONFIG_IEEE80211N */ 158 159#ifdef CONFIG_P2P 160 if (conf->hw_mode == HOSTAPD_MODE_IEEE80211G && 161 (ssid->mode == WPAS_MODE_P2P_GO || 162 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION)) { 163 /* Remove 802.11b rates from supported and basic rate sets */ 164 int *list = os_malloc(4 * sizeof(int)); 165 if (list) { 166 list[0] = 60; 167 list[1] = 120; 168 list[2] = 240; 169 list[3] = -1; 170 } 171 conf->basic_rates = list; 172 173 list = os_malloc(9 * sizeof(int)); 174 if (list) { 175 list[0] = 60; 176 list[1] = 90; 177 list[2] = 120; 178 list[3] = 180; 179 list[4] = 240; 180 list[5] = 360; 181 list[6] = 480; 182 list[7] = 540; 183 list[8] = -1; 184 } 185 conf->supported_rates = list; 186 } 187 188 bss->isolate = !wpa_s->conf->p2p_intra_bss; 189 bss->force_per_enrollee_psk = wpa_s->global->p2p_per_sta_psk; 190 191 if (ssid->p2p_group) { 192 os_memcpy(bss->ip_addr_go, wpa_s->parent->conf->ip_addr_go, 4); 193 os_memcpy(bss->ip_addr_mask, wpa_s->parent->conf->ip_addr_mask, 194 4); 195 os_memcpy(bss->ip_addr_start, 196 wpa_s->parent->conf->ip_addr_start, 4); 197 os_memcpy(bss->ip_addr_end, wpa_s->parent->conf->ip_addr_end, 198 4); 199 } 200#endif /* CONFIG_P2P */ 201 202 if (ssid->ssid_len == 0) { 203 wpa_printf(MSG_ERROR, "No SSID configured for AP mode"); 204 return -1; 205 } 206 os_memcpy(bss->ssid.ssid, ssid->ssid, ssid->ssid_len); 207 bss->ssid.ssid_len = ssid->ssid_len; 208 bss->ssid.ssid_set = 1; 209 210 bss->ignore_broadcast_ssid = ssid->ignore_broadcast_ssid; 211 212 if (ssid->auth_alg) 213 bss->auth_algs = ssid->auth_alg; 214 215 if (wpa_key_mgmt_wpa_psk(ssid->key_mgmt)) 216 bss->wpa = ssid->proto; 217 bss->wpa_key_mgmt = ssid->key_mgmt; 218 bss->wpa_pairwise = ssid->pairwise_cipher; 219 if (ssid->psk_set) { 220 os_free(bss->ssid.wpa_psk); 221 bss->ssid.wpa_psk = os_zalloc(sizeof(struct hostapd_wpa_psk)); 222 if (bss->ssid.wpa_psk == NULL) 223 return -1; 224 os_memcpy(bss->ssid.wpa_psk->psk, ssid->psk, PMK_LEN); 225 bss->ssid.wpa_psk->group = 1; 226 } else if (ssid->passphrase) { 227 bss->ssid.wpa_passphrase = os_strdup(ssid->passphrase); 228 } else if (ssid->wep_key_len[0] || ssid->wep_key_len[1] || 229 ssid->wep_key_len[2] || ssid->wep_key_len[3]) { 230 struct hostapd_wep_keys *wep = &bss->ssid.wep; 231 int i; 232 for (i = 0; i < NUM_WEP_KEYS; i++) { 233 if (ssid->wep_key_len[i] == 0) 234 continue; 235 wep->key[i] = os_malloc(ssid->wep_key_len[i]); 236 if (wep->key[i] == NULL) 237 return -1; 238 os_memcpy(wep->key[i], ssid->wep_key[i], 239 ssid->wep_key_len[i]); 240 wep->len[i] = ssid->wep_key_len[i]; 241 } 242 wep->idx = ssid->wep_tx_keyidx; 243 wep->keys_set = 1; 244 } 245 246 if (ssid->ap_max_inactivity) 247 bss->ap_max_inactivity = ssid->ap_max_inactivity; 248 249 if (ssid->dtim_period) 250 bss->dtim_period = ssid->dtim_period; 251 else if (wpa_s->conf->dtim_period) 252 bss->dtim_period = wpa_s->conf->dtim_period; 253 254 if (ssid->beacon_int) 255 conf->beacon_int = ssid->beacon_int; 256 else if (wpa_s->conf->beacon_int) 257 conf->beacon_int = wpa_s->conf->beacon_int; 258 259 if ((bss->wpa & 2) && bss->rsn_pairwise == 0) 260 bss->rsn_pairwise = bss->wpa_pairwise; 261 bss->wpa_group = wpa_select_ap_group_cipher(bss->wpa, bss->wpa_pairwise, 262 bss->rsn_pairwise); 263 264 if (bss->wpa && bss->ieee802_1x) 265 bss->ssid.security_policy = SECURITY_WPA; 266 else if (bss->wpa) 267 bss->ssid.security_policy = SECURITY_WPA_PSK; 268 else if (bss->ieee802_1x) { 269 int cipher = WPA_CIPHER_NONE; 270 bss->ssid.security_policy = SECURITY_IEEE_802_1X; 271 bss->ssid.wep.default_len = bss->default_wep_key_len; 272 if (bss->default_wep_key_len) 273 cipher = bss->default_wep_key_len >= 13 ? 274 WPA_CIPHER_WEP104 : WPA_CIPHER_WEP40; 275 bss->wpa_group = cipher; 276 bss->wpa_pairwise = cipher; 277 bss->rsn_pairwise = cipher; 278 } else if (bss->ssid.wep.keys_set) { 279 int cipher = WPA_CIPHER_WEP40; 280 if (bss->ssid.wep.len[0] >= 13) 281 cipher = WPA_CIPHER_WEP104; 282 bss->ssid.security_policy = SECURITY_STATIC_WEP; 283 bss->wpa_group = cipher; 284 bss->wpa_pairwise = cipher; 285 bss->rsn_pairwise = cipher; 286 } else { 287 bss->ssid.security_policy = SECURITY_PLAINTEXT; 288 bss->wpa_group = WPA_CIPHER_NONE; 289 bss->wpa_pairwise = WPA_CIPHER_NONE; 290 bss->rsn_pairwise = WPA_CIPHER_NONE; 291 } 292 293 if (bss->wpa_group_rekey < 86400 && (bss->wpa & 2) && 294 (bss->wpa_group == WPA_CIPHER_CCMP || 295 bss->wpa_group == WPA_CIPHER_GCMP || 296 bss->wpa_group == WPA_CIPHER_CCMP_256 || 297 bss->wpa_group == WPA_CIPHER_GCMP_256)) { 298 /* 299 * Strong ciphers do not need frequent rekeying, so increase 300 * the default GTK rekeying period to 24 hours. 301 */ 302 bss->wpa_group_rekey = 86400; 303 } 304 305#ifdef CONFIG_IEEE80211W 306 if (ssid->ieee80211w != MGMT_FRAME_PROTECTION_DEFAULT) 307 bss->ieee80211w = ssid->ieee80211w; 308#endif /* CONFIG_IEEE80211W */ 309 310#ifdef CONFIG_WPS 311 /* 312 * Enable WPS by default for open and WPA/WPA2-Personal network, but 313 * require user interaction to actually use it. Only the internal 314 * Registrar is supported. 315 */ 316 if (bss->ssid.security_policy != SECURITY_WPA_PSK && 317 bss->ssid.security_policy != SECURITY_PLAINTEXT) 318 goto no_wps; 319 if (bss->ssid.security_policy == SECURITY_WPA_PSK && 320 (!(bss->rsn_pairwise & WPA_CIPHER_CCMP) || !(bss->wpa & 2))) 321 goto no_wps; /* WPS2 does not allow WPA/TKIP-only 322 * configuration */ 323 bss->eap_server = 1; 324 325 if (!ssid->ignore_broadcast_ssid) 326 bss->wps_state = 2; 327 328 bss->ap_setup_locked = 2; 329 if (wpa_s->conf->config_methods) 330 bss->config_methods = os_strdup(wpa_s->conf->config_methods); 331 os_memcpy(bss->device_type, wpa_s->conf->device_type, 332 WPS_DEV_TYPE_LEN); 333 if (wpa_s->conf->device_name) { 334 bss->device_name = os_strdup(wpa_s->conf->device_name); 335 bss->friendly_name = os_strdup(wpa_s->conf->device_name); 336 } 337 if (wpa_s->conf->manufacturer) 338 bss->manufacturer = os_strdup(wpa_s->conf->manufacturer); 339 if (wpa_s->conf->model_name) 340 bss->model_name = os_strdup(wpa_s->conf->model_name); 341 if (wpa_s->conf->model_number) 342 bss->model_number = os_strdup(wpa_s->conf->model_number); 343 if (wpa_s->conf->serial_number) 344 bss->serial_number = os_strdup(wpa_s->conf->serial_number); 345 if (is_nil_uuid(wpa_s->conf->uuid)) 346 os_memcpy(bss->uuid, wpa_s->wps->uuid, WPS_UUID_LEN); 347 else 348 os_memcpy(bss->uuid, wpa_s->conf->uuid, WPS_UUID_LEN); 349 os_memcpy(bss->os_version, wpa_s->conf->os_version, 4); 350 bss->pbc_in_m1 = wpa_s->conf->pbc_in_m1; 351no_wps: 352#endif /* CONFIG_WPS */ 353 354 if (wpa_s->max_stations && 355 wpa_s->max_stations < wpa_s->conf->max_num_sta) 356 bss->max_num_sta = wpa_s->max_stations; 357 else 358 bss->max_num_sta = wpa_s->conf->max_num_sta; 359 360 bss->disassoc_low_ack = wpa_s->conf->disassoc_low_ack; 361 362 if (wpa_s->conf->ap_vendor_elements) { 363 bss->vendor_elements = 364 wpabuf_dup(wpa_s->conf->ap_vendor_elements); 365 } 366 367 return 0; 368} 369 370 371static void ap_public_action_rx(void *ctx, const u8 *buf, size_t len, int freq) 372{ 373#ifdef CONFIG_P2P 374 struct wpa_supplicant *wpa_s = ctx; 375 const struct ieee80211_mgmt *mgmt; 376 377 mgmt = (const struct ieee80211_mgmt *) buf; 378 if (len < IEEE80211_HDRLEN + 1) 379 return; 380 if (mgmt->u.action.category != WLAN_ACTION_PUBLIC) 381 return; 382 wpas_p2p_rx_action(wpa_s, mgmt->da, mgmt->sa, mgmt->bssid, 383 mgmt->u.action.category, 384 buf + IEEE80211_HDRLEN + 1, 385 len - IEEE80211_HDRLEN - 1, freq); 386#endif /* CONFIG_P2P */ 387} 388 389 390static void ap_wps_event_cb(void *ctx, enum wps_event event, 391 union wps_event_data *data) 392{ 393#ifdef CONFIG_P2P 394 struct wpa_supplicant *wpa_s = ctx; 395 396 if (event == WPS_EV_FAIL) { 397 struct wps_event_fail *fail = &data->fail; 398 399 if (wpa_s->parent && wpa_s->parent != wpa_s && 400 wpa_s == wpa_s->global->p2p_group_formation) { 401 /* 402 * src/ap/wps_hostapd.c has already sent this on the 403 * main interface, so only send on the parent interface 404 * here if needed. 405 */ 406 wpa_msg(wpa_s->parent, MSG_INFO, WPS_EVENT_FAIL 407 "msg=%d config_error=%d", 408 fail->msg, fail->config_error); 409 } 410 wpas_p2p_wps_failed(wpa_s, fail); 411 } 412#endif /* CONFIG_P2P */ 413} 414 415 416static void ap_sta_authorized_cb(void *ctx, const u8 *mac_addr, 417 int authorized, const u8 *p2p_dev_addr) 418{ 419 wpas_notify_sta_authorized(ctx, mac_addr, authorized, p2p_dev_addr); 420} 421 422 423#ifdef CONFIG_P2P 424static void ap_new_psk_cb(void *ctx, const u8 *mac_addr, const u8 *p2p_dev_addr, 425 const u8 *psk, size_t psk_len) 426{ 427 428 struct wpa_supplicant *wpa_s = ctx; 429 if (wpa_s->ap_iface == NULL || wpa_s->current_ssid == NULL) 430 return; 431 wpas_p2p_new_psk_cb(wpa_s, mac_addr, p2p_dev_addr, psk, psk_len); 432} 433#endif /* CONFIG_P2P */ 434 435 436static int ap_vendor_action_rx(void *ctx, const u8 *buf, size_t len, int freq) 437{ 438#ifdef CONFIG_P2P 439 struct wpa_supplicant *wpa_s = ctx; 440 const struct ieee80211_mgmt *mgmt; 441 442 mgmt = (const struct ieee80211_mgmt *) buf; 443 if (len < IEEE80211_HDRLEN + 1) 444 return -1; 445 wpas_p2p_rx_action(wpa_s, mgmt->da, mgmt->sa, mgmt->bssid, 446 mgmt->u.action.category, 447 buf + IEEE80211_HDRLEN + 1, 448 len - IEEE80211_HDRLEN - 1, freq); 449#endif /* CONFIG_P2P */ 450 return 0; 451} 452 453 454static int ap_probe_req_rx(void *ctx, const u8 *sa, const u8 *da, 455 const u8 *bssid, const u8 *ie, size_t ie_len, 456 int ssi_signal) 457{ 458#ifdef CONFIG_P2P 459 struct wpa_supplicant *wpa_s = ctx; 460 return wpas_p2p_probe_req_rx(wpa_s, sa, da, bssid, ie, ie_len, 461 ssi_signal); 462#else /* CONFIG_P2P */ 463 return 0; 464#endif /* CONFIG_P2P */ 465} 466 467 468static void ap_wps_reg_success_cb(void *ctx, const u8 *mac_addr, 469 const u8 *uuid_e) 470{ 471#ifdef CONFIG_P2P 472 struct wpa_supplicant *wpa_s = ctx; 473 wpas_p2p_wps_success(wpa_s, mac_addr, 1); 474#endif /* CONFIG_P2P */ 475} 476 477 478static void wpas_ap_configured_cb(void *ctx) 479{ 480 struct wpa_supplicant *wpa_s = ctx; 481 482 wpa_supplicant_set_state(wpa_s, WPA_COMPLETED); 483 484 if (wpa_s->ap_configured_cb) 485 wpa_s->ap_configured_cb(wpa_s->ap_configured_cb_ctx, 486 wpa_s->ap_configured_cb_data); 487} 488 489 490int wpa_supplicant_create_ap(struct wpa_supplicant *wpa_s, 491 struct wpa_ssid *ssid) 492{ 493 struct wpa_driver_associate_params params; 494 struct hostapd_iface *hapd_iface; 495 struct hostapd_config *conf; 496 size_t i; 497 498 if (ssid->ssid == NULL || ssid->ssid_len == 0) { 499 wpa_printf(MSG_ERROR, "No SSID configured for AP mode"); 500 return -1; 501 } 502 503 wpa_supplicant_ap_deinit(wpa_s); 504 505 wpa_printf(MSG_DEBUG, "Setting up AP (SSID='%s')", 506 wpa_ssid_txt(ssid->ssid, ssid->ssid_len)); 507 508 os_memset(¶ms, 0, sizeof(params)); 509 params.ssid = ssid->ssid; 510 params.ssid_len = ssid->ssid_len; 511 switch (ssid->mode) { 512 case WPAS_MODE_AP: 513 case WPAS_MODE_P2P_GO: 514 case WPAS_MODE_P2P_GROUP_FORMATION: 515 params.mode = IEEE80211_MODE_AP; 516 break; 517 default: 518 return -1; 519 } 520 if (ssid->frequency == 0) 521 ssid->frequency = 2462; /* default channel 11 */ 522 params.freq = ssid->frequency; 523 524 params.wpa_proto = ssid->proto; 525 if (ssid->key_mgmt & WPA_KEY_MGMT_PSK) 526 wpa_s->key_mgmt = WPA_KEY_MGMT_PSK; 527 else 528 wpa_s->key_mgmt = WPA_KEY_MGMT_NONE; 529 params.key_mgmt_suite = wpa_s->key_mgmt; 530 531 wpa_s->pairwise_cipher = wpa_pick_pairwise_cipher(ssid->pairwise_cipher, 532 1); 533 if (wpa_s->pairwise_cipher < 0) { 534 wpa_printf(MSG_WARNING, "WPA: Failed to select pairwise " 535 "cipher."); 536 return -1; 537 } 538 params.pairwise_suite = wpa_s->pairwise_cipher; 539 params.group_suite = params.pairwise_suite; 540 541#ifdef CONFIG_P2P 542 if (ssid->mode == WPAS_MODE_P2P_GO || 543 ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) 544 params.p2p = 1; 545#endif /* CONFIG_P2P */ 546 547 if (wpa_s->parent->set_ap_uapsd) 548 params.uapsd = wpa_s->parent->ap_uapsd; 549 else if (params.p2p && (wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP_UAPSD)) 550 params.uapsd = 1; /* mandatory for P2P GO */ 551 else 552 params.uapsd = -1; 553 554 if (wpa_drv_associate(wpa_s, ¶ms) < 0) { 555 wpa_msg(wpa_s, MSG_INFO, "Failed to start AP functionality"); 556 return -1; 557 } 558 559 wpa_s->ap_iface = hapd_iface = os_zalloc(sizeof(*wpa_s->ap_iface)); 560 if (hapd_iface == NULL) 561 return -1; 562 hapd_iface->owner = wpa_s; 563 hapd_iface->drv_flags = wpa_s->drv_flags; 564 hapd_iface->probe_resp_offloads = wpa_s->probe_resp_offloads; 565 hapd_iface->extended_capa = wpa_s->extended_capa; 566 hapd_iface->extended_capa_mask = wpa_s->extended_capa_mask; 567 hapd_iface->extended_capa_len = wpa_s->extended_capa_len; 568 569 wpa_s->ap_iface->conf = conf = hostapd_config_defaults(); 570 if (conf == NULL) { 571 wpa_supplicant_ap_deinit(wpa_s); 572 return -1; 573 } 574 575 os_memcpy(wpa_s->ap_iface->conf->wmm_ac_params, 576 wpa_s->conf->wmm_ac_params, 577 sizeof(wpa_s->conf->wmm_ac_params)); 578 579 if (params.uapsd > 0) { 580 conf->bss[0]->wmm_enabled = 1; 581 conf->bss[0]->wmm_uapsd = 1; 582 } 583 584 if (wpa_supplicant_conf_ap(wpa_s, ssid, conf)) { 585 wpa_printf(MSG_ERROR, "Failed to create AP configuration"); 586 wpa_supplicant_ap_deinit(wpa_s); 587 return -1; 588 } 589 590#ifdef CONFIG_P2P 591 if (ssid->mode == WPAS_MODE_P2P_GO) 592 conf->bss[0]->p2p = P2P_ENABLED | P2P_GROUP_OWNER; 593 else if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) 594 conf->bss[0]->p2p = P2P_ENABLED | P2P_GROUP_OWNER | 595 P2P_GROUP_FORMATION; 596#endif /* CONFIG_P2P */ 597 598 hapd_iface->num_bss = conf->num_bss; 599 hapd_iface->bss = os_calloc(conf->num_bss, 600 sizeof(struct hostapd_data *)); 601 if (hapd_iface->bss == NULL) { 602 wpa_supplicant_ap_deinit(wpa_s); 603 return -1; 604 } 605 606 for (i = 0; i < conf->num_bss; i++) { 607 hapd_iface->bss[i] = 608 hostapd_alloc_bss_data(hapd_iface, conf, 609 conf->bss[i]); 610 if (hapd_iface->bss[i] == NULL) { 611 wpa_supplicant_ap_deinit(wpa_s); 612 return -1; 613 } 614 615 hapd_iface->bss[i]->msg_ctx = wpa_s; 616 hapd_iface->bss[i]->msg_ctx_parent = wpa_s->parent; 617 hapd_iface->bss[i]->public_action_cb = ap_public_action_rx; 618 hapd_iface->bss[i]->public_action_cb_ctx = wpa_s; 619 hapd_iface->bss[i]->vendor_action_cb = ap_vendor_action_rx; 620 hapd_iface->bss[i]->vendor_action_cb_ctx = wpa_s; 621 hostapd_register_probereq_cb(hapd_iface->bss[i], 622 ap_probe_req_rx, wpa_s); 623 hapd_iface->bss[i]->wps_reg_success_cb = ap_wps_reg_success_cb; 624 hapd_iface->bss[i]->wps_reg_success_cb_ctx = wpa_s; 625 hapd_iface->bss[i]->wps_event_cb = ap_wps_event_cb; 626 hapd_iface->bss[i]->wps_event_cb_ctx = wpa_s; 627 hapd_iface->bss[i]->sta_authorized_cb = ap_sta_authorized_cb; 628 hapd_iface->bss[i]->sta_authorized_cb_ctx = wpa_s; 629#ifdef CONFIG_P2P 630 hapd_iface->bss[i]->new_psk_cb = ap_new_psk_cb; 631 hapd_iface->bss[i]->new_psk_cb_ctx = wpa_s; 632 hapd_iface->bss[i]->p2p = wpa_s->global->p2p; 633 hapd_iface->bss[i]->p2p_group = wpas_p2p_group_init(wpa_s, 634 ssid); 635#endif /* CONFIG_P2P */ 636 hapd_iface->bss[i]->setup_complete_cb = wpas_ap_configured_cb; 637 hapd_iface->bss[i]->setup_complete_cb_ctx = wpa_s; 638 } 639 640 os_memcpy(hapd_iface->bss[0]->own_addr, wpa_s->own_addr, ETH_ALEN); 641 hapd_iface->bss[0]->driver = wpa_s->driver; 642 hapd_iface->bss[0]->drv_priv = wpa_s->drv_priv; 643 644 wpa_s->current_ssid = ssid; 645 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL); 646 os_memcpy(wpa_s->bssid, wpa_s->own_addr, ETH_ALEN); 647 wpa_s->assoc_freq = ssid->frequency; 648 649 if (hostapd_setup_interface(wpa_s->ap_iface)) { 650 wpa_printf(MSG_ERROR, "Failed to initialize AP interface"); 651 wpa_supplicant_ap_deinit(wpa_s); 652 return -1; 653 } 654 655 return 0; 656} 657 658 659void wpa_supplicant_ap_deinit(struct wpa_supplicant *wpa_s) 660{ 661#ifdef CONFIG_WPS 662 eloop_cancel_timeout(wpas_wps_ap_pin_timeout, wpa_s, NULL); 663#endif /* CONFIG_WPS */ 664 665 if (wpa_s->ap_iface == NULL) 666 return; 667 668 wpa_s->current_ssid = NULL; 669 eapol_sm_notify_config(wpa_s->eapol, NULL, NULL); 670 wpa_s->assoc_freq = 0; 671#ifdef CONFIG_P2P 672 if (wpa_s->ap_iface->bss) 673 wpa_s->ap_iface->bss[0]->p2p_group = NULL; 674 wpas_p2p_group_deinit(wpa_s); 675#endif /* CONFIG_P2P */ 676 wpa_s->ap_iface->driver_ap_teardown = 677 !!(wpa_s->drv_flags & WPA_DRIVER_FLAGS_AP_TEARDOWN_SUPPORT); 678 679 hostapd_interface_deinit(wpa_s->ap_iface); 680 hostapd_interface_free(wpa_s->ap_iface); 681 wpa_s->ap_iface = NULL; 682 wpa_drv_deinit_ap(wpa_s); 683} 684 685 686void ap_tx_status(void *ctx, const u8 *addr, 687 const u8 *buf, size_t len, int ack) 688{ 689#ifdef NEED_AP_MLME 690 struct wpa_supplicant *wpa_s = ctx; 691 hostapd_tx_status(wpa_s->ap_iface->bss[0], addr, buf, len, ack); 692#endif /* NEED_AP_MLME */ 693} 694 695 696void ap_eapol_tx_status(void *ctx, const u8 *dst, 697 const u8 *data, size_t len, int ack) 698{ 699#ifdef NEED_AP_MLME 700 struct wpa_supplicant *wpa_s = ctx; 701 if (!wpa_s->ap_iface) 702 return; 703 hostapd_tx_status(wpa_s->ap_iface->bss[0], dst, data, len, ack); 704#endif /* NEED_AP_MLME */ 705} 706 707 708void ap_client_poll_ok(void *ctx, const u8 *addr) 709{ 710#ifdef NEED_AP_MLME 711 struct wpa_supplicant *wpa_s = ctx; 712 if (wpa_s->ap_iface) 713 hostapd_client_poll_ok(wpa_s->ap_iface->bss[0], addr); 714#endif /* NEED_AP_MLME */ 715} 716 717 718void ap_rx_from_unknown_sta(void *ctx, const u8 *addr, int wds) 719{ 720#ifdef NEED_AP_MLME 721 struct wpa_supplicant *wpa_s = ctx; 722 ieee802_11_rx_from_unknown(wpa_s->ap_iface->bss[0], addr, wds); 723#endif /* NEED_AP_MLME */ 724} 725 726 727void ap_mgmt_rx(void *ctx, struct rx_mgmt *rx_mgmt) 728{ 729#ifdef NEED_AP_MLME 730 struct wpa_supplicant *wpa_s = ctx; 731 struct hostapd_frame_info fi; 732 os_memset(&fi, 0, sizeof(fi)); 733 fi.datarate = rx_mgmt->datarate; 734 fi.ssi_signal = rx_mgmt->ssi_signal; 735 ieee802_11_mgmt(wpa_s->ap_iface->bss[0], rx_mgmt->frame, 736 rx_mgmt->frame_len, &fi); 737#endif /* NEED_AP_MLME */ 738} 739 740 741void ap_mgmt_tx_cb(void *ctx, const u8 *buf, size_t len, u16 stype, int ok) 742{ 743#ifdef NEED_AP_MLME 744 struct wpa_supplicant *wpa_s = ctx; 745 ieee802_11_mgmt_cb(wpa_s->ap_iface->bss[0], buf, len, stype, ok); 746#endif /* NEED_AP_MLME */ 747} 748 749 750void wpa_supplicant_ap_rx_eapol(struct wpa_supplicant *wpa_s, 751 const u8 *src_addr, const u8 *buf, size_t len) 752{ 753 ieee802_1x_receive(wpa_s->ap_iface->bss[0], src_addr, buf, len); 754} 755 756 757#ifdef CONFIG_WPS 758 759int wpa_supplicant_ap_wps_pbc(struct wpa_supplicant *wpa_s, const u8 *bssid, 760 const u8 *p2p_dev_addr) 761{ 762 if (!wpa_s->ap_iface) 763 return -1; 764 return hostapd_wps_button_pushed(wpa_s->ap_iface->bss[0], 765 p2p_dev_addr); 766} 767 768 769int wpa_supplicant_ap_wps_cancel(struct wpa_supplicant *wpa_s) 770{ 771 struct wps_registrar *reg; 772 int reg_sel = 0, wps_sta = 0; 773 774 if (!wpa_s->ap_iface || !wpa_s->ap_iface->bss[0]->wps) 775 return -1; 776 777 reg = wpa_s->ap_iface->bss[0]->wps->registrar; 778 reg_sel = wps_registrar_wps_cancel(reg); 779 wps_sta = ap_for_each_sta(wpa_s->ap_iface->bss[0], 780 ap_sta_wps_cancel, NULL); 781 782 if (!reg_sel && !wps_sta) { 783 wpa_printf(MSG_DEBUG, "No WPS operation in progress at this " 784 "time"); 785 return -1; 786 } 787 788 /* 789 * There are 2 cases to return wps cancel as success: 790 * 1. When wps cancel was initiated but no connection has been 791 * established with client yet. 792 * 2. Client is in the middle of exchanging WPS messages. 793 */ 794 795 return 0; 796} 797 798 799int wpa_supplicant_ap_wps_pin(struct wpa_supplicant *wpa_s, const u8 *bssid, 800 const char *pin, char *buf, size_t buflen, 801 int timeout) 802{ 803 int ret, ret_len = 0; 804 805 if (!wpa_s->ap_iface) 806 return -1; 807 808 if (pin == NULL) { 809 unsigned int rpin = wps_generate_pin(); 810 ret_len = os_snprintf(buf, buflen, "%08d", rpin); 811 pin = buf; 812 } else 813 ret_len = os_snprintf(buf, buflen, "%s", pin); 814 815 ret = hostapd_wps_add_pin(wpa_s->ap_iface->bss[0], bssid, "any", pin, 816 timeout); 817 if (ret) 818 return -1; 819 return ret_len; 820} 821 822 823static void wpas_wps_ap_pin_timeout(void *eloop_data, void *user_ctx) 824{ 825 struct wpa_supplicant *wpa_s = eloop_data; 826 wpa_printf(MSG_DEBUG, "WPS: AP PIN timed out"); 827 wpas_wps_ap_pin_disable(wpa_s); 828} 829 830 831static void wpas_wps_ap_pin_enable(struct wpa_supplicant *wpa_s, int timeout) 832{ 833 struct hostapd_data *hapd; 834 835 if (wpa_s->ap_iface == NULL) 836 return; 837 hapd = wpa_s->ap_iface->bss[0]; 838 wpa_printf(MSG_DEBUG, "WPS: Enabling AP PIN (timeout=%d)", timeout); 839 hapd->ap_pin_failures = 0; 840 eloop_cancel_timeout(wpas_wps_ap_pin_timeout, wpa_s, NULL); 841 if (timeout > 0) 842 eloop_register_timeout(timeout, 0, 843 wpas_wps_ap_pin_timeout, wpa_s, NULL); 844} 845 846 847void wpas_wps_ap_pin_disable(struct wpa_supplicant *wpa_s) 848{ 849 struct hostapd_data *hapd; 850 851 if (wpa_s->ap_iface == NULL) 852 return; 853 wpa_printf(MSG_DEBUG, "WPS: Disabling AP PIN"); 854 hapd = wpa_s->ap_iface->bss[0]; 855 os_free(hapd->conf->ap_pin); 856 hapd->conf->ap_pin = NULL; 857 eloop_cancel_timeout(wpas_wps_ap_pin_timeout, wpa_s, NULL); 858} 859 860 861const char * wpas_wps_ap_pin_random(struct wpa_supplicant *wpa_s, int timeout) 862{ 863 struct hostapd_data *hapd; 864 unsigned int pin; 865 char pin_txt[9]; 866 867 if (wpa_s->ap_iface == NULL) 868 return NULL; 869 hapd = wpa_s->ap_iface->bss[0]; 870 pin = wps_generate_pin(); 871 os_snprintf(pin_txt, sizeof(pin_txt), "%08u", pin); 872 os_free(hapd->conf->ap_pin); 873 hapd->conf->ap_pin = os_strdup(pin_txt); 874 if (hapd->conf->ap_pin == NULL) 875 return NULL; 876 wpas_wps_ap_pin_enable(wpa_s, timeout); 877 878 return hapd->conf->ap_pin; 879} 880 881 882const char * wpas_wps_ap_pin_get(struct wpa_supplicant *wpa_s) 883{ 884 struct hostapd_data *hapd; 885 if (wpa_s->ap_iface == NULL) 886 return NULL; 887 hapd = wpa_s->ap_iface->bss[0]; 888 return hapd->conf->ap_pin; 889} 890 891 892int wpas_wps_ap_pin_set(struct wpa_supplicant *wpa_s, const char *pin, 893 int timeout) 894{ 895 struct hostapd_data *hapd; 896 char pin_txt[9]; 897 int ret; 898 899 if (wpa_s->ap_iface == NULL) 900 return -1; 901 hapd = wpa_s->ap_iface->bss[0]; 902 ret = os_snprintf(pin_txt, sizeof(pin_txt), "%s", pin); 903 if (ret < 0 || ret >= (int) sizeof(pin_txt)) 904 return -1; 905 os_free(hapd->conf->ap_pin); 906 hapd->conf->ap_pin = os_strdup(pin_txt); 907 if (hapd->conf->ap_pin == NULL) 908 return -1; 909 wpas_wps_ap_pin_enable(wpa_s, timeout); 910 911 return 0; 912} 913 914 915void wpa_supplicant_ap_pwd_auth_fail(struct wpa_supplicant *wpa_s) 916{ 917 struct hostapd_data *hapd; 918 919 if (wpa_s->ap_iface == NULL) 920 return; 921 hapd = wpa_s->ap_iface->bss[0]; 922 923 /* 924 * Registrar failed to prove its knowledge of the AP PIN. Disable AP 925 * PIN if this happens multiple times to slow down brute force attacks. 926 */ 927 hapd->ap_pin_failures++; 928 wpa_printf(MSG_DEBUG, "WPS: AP PIN authentication failure number %u", 929 hapd->ap_pin_failures); 930 if (hapd->ap_pin_failures < 3) 931 return; 932 933 wpa_printf(MSG_DEBUG, "WPS: Disable AP PIN"); 934 hapd->ap_pin_failures = 0; 935 os_free(hapd->conf->ap_pin); 936 hapd->conf->ap_pin = NULL; 937} 938 939 940#ifdef CONFIG_WPS_NFC 941 942struct wpabuf * wpas_ap_wps_nfc_config_token(struct wpa_supplicant *wpa_s, 943 int ndef) 944{ 945 struct hostapd_data *hapd; 946 947 if (wpa_s->ap_iface == NULL) 948 return NULL; 949 hapd = wpa_s->ap_iface->bss[0]; 950 return hostapd_wps_nfc_config_token(hapd, ndef); 951} 952 953 954struct wpabuf * wpas_ap_wps_nfc_handover_sel(struct wpa_supplicant *wpa_s, 955 int ndef) 956{ 957 struct hostapd_data *hapd; 958 959 if (wpa_s->ap_iface == NULL) 960 return NULL; 961 hapd = wpa_s->ap_iface->bss[0]; 962 return hostapd_wps_nfc_hs_cr(hapd, ndef); 963} 964 965 966int wpas_ap_wps_nfc_report_handover(struct wpa_supplicant *wpa_s, 967 const struct wpabuf *req, 968 const struct wpabuf *sel) 969{ 970 struct hostapd_data *hapd; 971 972 if (wpa_s->ap_iface == NULL) 973 return -1; 974 hapd = wpa_s->ap_iface->bss[0]; 975 return hostapd_wps_nfc_report_handover(hapd, req, sel); 976} 977 978#endif /* CONFIG_WPS_NFC */ 979 980#endif /* CONFIG_WPS */ 981 982 983#ifdef CONFIG_CTRL_IFACE 984 985int ap_ctrl_iface_sta_first(struct wpa_supplicant *wpa_s, 986 char *buf, size_t buflen) 987{ 988 if (wpa_s->ap_iface == NULL) 989 return -1; 990 return hostapd_ctrl_iface_sta_first(wpa_s->ap_iface->bss[0], 991 buf, buflen); 992} 993 994 995int ap_ctrl_iface_sta(struct wpa_supplicant *wpa_s, const char *txtaddr, 996 char *buf, size_t buflen) 997{ 998 if (wpa_s->ap_iface == NULL) 999 return -1; 1000 return hostapd_ctrl_iface_sta(wpa_s->ap_iface->bss[0], txtaddr, 1001 buf, buflen); 1002} 1003 1004 1005int ap_ctrl_iface_sta_next(struct wpa_supplicant *wpa_s, const char *txtaddr, 1006 char *buf, size_t buflen) 1007{ 1008 if (wpa_s->ap_iface == NULL) 1009 return -1; 1010 return hostapd_ctrl_iface_sta_next(wpa_s->ap_iface->bss[0], txtaddr, 1011 buf, buflen); 1012} 1013 1014 1015int ap_ctrl_iface_sta_disassociate(struct wpa_supplicant *wpa_s, 1016 const char *txtaddr) 1017{ 1018 if (wpa_s->ap_iface == NULL) 1019 return -1; 1020 return hostapd_ctrl_iface_disassociate(wpa_s->ap_iface->bss[0], 1021 txtaddr); 1022} 1023 1024 1025int ap_ctrl_iface_sta_deauthenticate(struct wpa_supplicant *wpa_s, 1026 const char *txtaddr) 1027{ 1028 if (wpa_s->ap_iface == NULL) 1029 return -1; 1030 return hostapd_ctrl_iface_deauthenticate(wpa_s->ap_iface->bss[0], 1031 txtaddr); 1032} 1033 1034 1035int ap_ctrl_iface_wpa_get_status(struct wpa_supplicant *wpa_s, char *buf, 1036 size_t buflen, int verbose) 1037{ 1038 char *pos = buf, *end = buf + buflen; 1039 int ret; 1040 struct hostapd_bss_config *conf; 1041 1042 if (wpa_s->ap_iface == NULL) 1043 return -1; 1044 1045 conf = wpa_s->ap_iface->bss[0]->conf; 1046 if (conf->wpa == 0) 1047 return 0; 1048 1049 ret = os_snprintf(pos, end - pos, 1050 "pairwise_cipher=%s\n" 1051 "group_cipher=%s\n" 1052 "key_mgmt=%s\n", 1053 wpa_cipher_txt(conf->rsn_pairwise), 1054 wpa_cipher_txt(conf->wpa_group), 1055 wpa_key_mgmt_txt(conf->wpa_key_mgmt, 1056 conf->wpa)); 1057 if (ret < 0 || ret >= end - pos) 1058 return pos - buf; 1059 pos += ret; 1060 return pos - buf; 1061} 1062 1063#endif /* CONFIG_CTRL_IFACE */ 1064 1065 1066int wpa_supplicant_ap_update_beacon(struct wpa_supplicant *wpa_s) 1067{ 1068 struct hostapd_iface *iface = wpa_s->ap_iface; 1069 struct wpa_ssid *ssid = wpa_s->current_ssid; 1070 struct hostapd_data *hapd; 1071 1072 if (ssid == NULL || wpa_s->ap_iface == NULL || 1073 ssid->mode == WPAS_MODE_INFRA || 1074 ssid->mode == WPAS_MODE_IBSS) 1075 return -1; 1076 1077#ifdef CONFIG_P2P 1078 if (ssid->mode == WPAS_MODE_P2P_GO) 1079 iface->conf->bss[0]->p2p = P2P_ENABLED | P2P_GROUP_OWNER; 1080 else if (ssid->mode == WPAS_MODE_P2P_GROUP_FORMATION) 1081 iface->conf->bss[0]->p2p = P2P_ENABLED | P2P_GROUP_OWNER | 1082 P2P_GROUP_FORMATION; 1083#endif /* CONFIG_P2P */ 1084 1085 hapd = iface->bss[0]; 1086 if (hapd->drv_priv == NULL) 1087 return -1; 1088 ieee802_11_set_beacons(iface); 1089 hostapd_set_ap_wps_ie(hapd); 1090 1091 return 0; 1092} 1093 1094 1095int ap_switch_channel(struct wpa_supplicant *wpa_s, 1096 struct csa_settings *settings) 1097{ 1098#ifdef NEED_AP_MLME 1099 if (!wpa_s->ap_iface || !wpa_s->ap_iface->bss[0]) 1100 return -1; 1101 1102 return hostapd_switch_channel(wpa_s->ap_iface->bss[0], settings); 1103#else /* NEED_AP_MLME */ 1104 return -1; 1105#endif /* NEED_AP_MLME */ 1106} 1107 1108 1109int ap_ctrl_iface_chanswitch(struct wpa_supplicant *wpa_s, const char *pos) 1110{ 1111 struct csa_settings settings; 1112 int ret = hostapd_parse_csa_settings(pos, &settings); 1113 1114 if (ret) 1115 return ret; 1116 1117 return ap_switch_channel(wpa_s, &settings); 1118} 1119 1120 1121void wpas_ap_ch_switch(struct wpa_supplicant *wpa_s, int freq, int ht, 1122 int offset, int width, int cf1, int cf2) 1123{ 1124 if (!wpa_s->ap_iface) 1125 return; 1126 1127 wpa_s->assoc_freq = freq; 1128 hostapd_event_ch_switch(wpa_s->ap_iface->bss[0], freq, ht, offset, width, cf1, cf1); 1129} 1130 1131 1132int wpa_supplicant_ap_mac_addr_filter(struct wpa_supplicant *wpa_s, 1133 const u8 *addr) 1134{ 1135 struct hostapd_data *hapd; 1136 struct hostapd_bss_config *conf; 1137 1138 if (!wpa_s->ap_iface) 1139 return -1; 1140 1141 if (addr) 1142 wpa_printf(MSG_DEBUG, "AP: Set MAC address filter: " MACSTR, 1143 MAC2STR(addr)); 1144 else 1145 wpa_printf(MSG_DEBUG, "AP: Clear MAC address filter"); 1146 1147 hapd = wpa_s->ap_iface->bss[0]; 1148 conf = hapd->conf; 1149 1150 os_free(conf->accept_mac); 1151 conf->accept_mac = NULL; 1152 conf->num_accept_mac = 0; 1153 os_free(conf->deny_mac); 1154 conf->deny_mac = NULL; 1155 conf->num_deny_mac = 0; 1156 1157 if (addr == NULL) { 1158 conf->macaddr_acl = ACCEPT_UNLESS_DENIED; 1159 return 0; 1160 } 1161 1162 conf->macaddr_acl = DENY_UNLESS_ACCEPTED; 1163 conf->accept_mac = os_zalloc(sizeof(struct mac_acl_entry)); 1164 if (conf->accept_mac == NULL) 1165 return -1; 1166 os_memcpy(conf->accept_mac[0].addr, addr, ETH_ALEN); 1167 conf->num_accept_mac = 1; 1168 1169 return 0; 1170} 1171 1172 1173#ifdef CONFIG_WPS_NFC 1174int wpas_ap_wps_add_nfc_pw(struct wpa_supplicant *wpa_s, u16 pw_id, 1175 const struct wpabuf *pw, const u8 *pubkey_hash) 1176{ 1177 struct hostapd_data *hapd; 1178 struct wps_context *wps; 1179 1180 if (!wpa_s->ap_iface) 1181 return -1; 1182 hapd = wpa_s->ap_iface->bss[0]; 1183 wps = hapd->wps; 1184 1185 if (wpa_s->parent->conf->wps_nfc_dh_pubkey == NULL || 1186 wpa_s->parent->conf->wps_nfc_dh_privkey == NULL) { 1187 wpa_printf(MSG_DEBUG, "P2P: No NFC DH key known"); 1188 return -1; 1189 } 1190 1191 dh5_free(wps->dh_ctx); 1192 wpabuf_free(wps->dh_pubkey); 1193 wpabuf_free(wps->dh_privkey); 1194 wps->dh_privkey = wpabuf_dup( 1195 wpa_s->parent->conf->wps_nfc_dh_privkey); 1196 wps->dh_pubkey = wpabuf_dup( 1197 wpa_s->parent->conf->wps_nfc_dh_pubkey); 1198 if (wps->dh_privkey == NULL || wps->dh_pubkey == NULL) { 1199 wps->dh_ctx = NULL; 1200 wpabuf_free(wps->dh_pubkey); 1201 wps->dh_pubkey = NULL; 1202 wpabuf_free(wps->dh_privkey); 1203 wps->dh_privkey = NULL; 1204 return -1; 1205 } 1206 wps->dh_ctx = dh5_init_fixed(wps->dh_privkey, wps->dh_pubkey); 1207 if (wps->dh_ctx == NULL) 1208 return -1; 1209 1210 return wps_registrar_add_nfc_pw_token(hapd->wps->registrar, pubkey_hash, 1211 pw_id, 1212 pw ? wpabuf_head(pw) : NULL, 1213 pw ? wpabuf_len(pw) : 0, 1); 1214} 1215#endif /* CONFIG_WPS_NFC */ 1216