18d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* 28d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * UPnP SSDP for WPS 38d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Copyright (c) 2000-2003 Intel Corporation 48d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Copyright (c) 2006-2007 Sony Corporation 58d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Copyright (c) 2008-2009 Atheros Communications 64b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt * Copyright (c) 2009-2013, Jouni Malinen <j@w1.fi> 78d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 88d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * See wps_upnp.c for more details on licensing and code history. 98d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "includes.h" 128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include <fcntl.h> 148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include <sys/ioctl.h> 158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include <net/route.h> 164b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt#ifdef __linux__ 174b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt#include <net/if.h> 184b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt#endif /* __linux__ */ 198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "common.h" 218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "uuid.h" 228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "eloop.h" 238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "wps.h" 248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "wps_upnp.h" 258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#include "wps_upnp_i.h" 268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#define UPNP_CACHE_SEC (UPNP_CACHE_SEC_MIN + 1) /* cache time we use */ 288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#define UPNP_CACHE_SEC_MIN 1800 /* min cachable time per UPnP standard */ 298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#define UPNP_ADVERTISE_REPEAT 2 /* no more than 3 */ 308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#define MAX_MSEARCH 20 /* max simultaneous M-SEARCH replies ongoing */ 318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#define SSDP_TARGET "239.0.0.0" 328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#define SSDP_NETMASK "255.0.0.0" 338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* Check tokens for equality, where tokens consist of letters, digits, 368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * underscore and hyphen, and are matched case insensitive. 378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic int token_eq(const char *s1, const char *s2) 398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int c1; 418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int c2; 428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int end1 = 0; 438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int end2 = 0; 448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt for (;;) { 458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt c1 = *s1++; 468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt c2 = *s2++; 478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (isalpha(c1) && isupper(c1)) 488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt c1 = tolower(c1); 498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (isalpha(c2) && isupper(c2)) 508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt c2 = tolower(c2); 518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt end1 = !(isalnum(c1) || c1 == '_' || c1 == '-'); 528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt end2 = !(isalnum(c2) || c2 == '_' || c2 == '-'); 538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (end1 || end2 || c1 != c2) 548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return end1 && end2; /* reached end of both words? */ 578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* Return length of token (see above for definition of token) */ 618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic int token_length(const char *s) 628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const char *begin = s; 648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt for (;; s++) { 658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int c = *s; 668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int end = !(isalnum(c) || c == '_' || c == '-'); 678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (end) 688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return s - begin; 718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* return length of interword separation. 758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This accepts only spaces/tabs and thus will not traverse a line 768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * or buffer ending. 778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic int word_separation_length(const char *s) 798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const char *begin = s; 818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt for (;; s++) { 828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int c = *s; 838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (c == ' ' || c == '\t') 848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return s - begin; 888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* No. of chars through (including) end of line */ 928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic int line_length(const char *l) 938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const char *lp = l; 958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt while (*lp && *lp != '\n') 968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt lp++; 978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (*lp == '\n') 988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt lp++; 998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return lp - l; 1008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 1018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic int str_starts(const char *str, const char *start) 1048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 1058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return os_strncmp(str, start, os_strlen(start)) == 0; 1068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 1078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/*************************************************************************** 1108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Advertisements. 1118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * These are multicast to the world to tell them we are here. 1128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * The individual packets are spread out in time to limit loss, 1138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * and then after a much longer period of time the whole sequence 1148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * is repeated again (for NOTIFYs only). 1158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt **************************************************************************/ 1168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 1188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * next_advertisement - Build next message and advance the state machine 1198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @a: Advertisement state 1208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @islast: Buffer for indicating whether this is the last message (= 1) 1218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: The new message (caller is responsible for freeing this) 1228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 1238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Note: next_advertisement is shared code with msearchreply_* functions 1248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 1258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic struct wpabuf * 1268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtnext_advertisement(struct upnp_wps_device_sm *sm, 1278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct advertisement_state_machine *a, int *islast) 1288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 1298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wpabuf *msg; 1308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt char *NTString = ""; 1318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt char uuid_string[80]; 1328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_wps_device_interface *iface; 1338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt *islast = 0; 1358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt iface = dl_list_first(&sm->interfaces, 1368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_wps_device_interface, list); 1377832adbbd72a1b784b7fb74a71a5d4085b0cb0d3Dmitry Shmidt if (!iface) 1387832adbbd72a1b784b7fb74a71a5d4085b0cb0d3Dmitry Shmidt return NULL; 1398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt uuid_bin2str(iface->wps->uuid, uuid_string, sizeof(uuid_string)); 1408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msg = wpabuf_alloc(800); /* more than big enough */ 1418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (msg == NULL) 1428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 1438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt switch (a->type) { 1448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt case ADVERTISE_UP: 1458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt case ADVERTISE_DOWN: 1468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt NTString = "NT"; 1478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_str(msg, "NOTIFY * HTTP/1.1\r\n"); 1488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "HOST: %s:%d\r\n", 1498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt UPNP_MULTICAST_ADDRESS, UPNP_MULTICAST_PORT); 1508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "CACHE-CONTROL: max-age=%d\r\n", 1518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt UPNP_CACHE_SEC); 1528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "NTS: %s\r\n", 1538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt (a->type == ADVERTISE_UP ? 1548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "ssdp:alive" : "ssdp:byebye")); 1558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 1568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt case MSEARCH_REPLY: 1578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt NTString = "ST"; 1588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_str(msg, "HTTP/1.1 200 OK\r\n"); 1598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "CACHE-CONTROL: max-age=%d\r\n", 1608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt UPNP_CACHE_SEC); 1618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_str(msg, "DATE: "); 1638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt format_date(msg); 1648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_str(msg, "\r\n"); 1658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_str(msg, "EXT:\r\n"); 1678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 1688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 1698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (a->type != ADVERTISE_DOWN) { 1718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Where others may get our XML files from */ 1728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "LOCATION: http://%s:%d/%s\r\n", 1738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sm->ip_addr_text, sm->web_port, 1748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt UPNP_WPS_DEVICE_XML_FILE); 1758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 1768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* The SERVER line has three comma-separated fields: 1788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * operating system / version 1798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * upnp version 1808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * software package / version 1818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * However, only the UPnP version is really required, the 1828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * others can be place holders... for security reasons 1838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * it is better to NOT provide extra information. 1848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 1858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_str(msg, "SERVER: Unspecified, UPnP/1.0, Unspecified\r\n"); 1868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 1878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt switch (a->state / UPNP_ADVERTISE_REPEAT) { 1888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt case 0: 1898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "%s: upnp:rootdevice\r\n", NTString); 1908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "USN: uuid:%s::upnp:rootdevice\r\n", 1918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt uuid_string); 1928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 1938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt case 1: 1948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "%s: uuid:%s\r\n", NTString, uuid_string); 1958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "USN: uuid:%s\r\n", uuid_string); 1968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 1978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt case 2: 1988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "%s: urn:schemas-wifialliance-org:device:" 1998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "WFADevice:1\r\n", NTString); 2008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "USN: uuid:%s::urn:schemas-wifialliance-" 2018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "org:device:WFADevice:1\r\n", uuid_string); 2028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 2038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt case 3: 2048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "%s: urn:schemas-wifialliance-org:service:" 2058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "WFAWLANConfig:1\r\n", NTString); 2068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_printf(msg, "USN: uuid:%s::urn:schemas-wifialliance-" 2078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "org:service:WFAWLANConfig:1\r\n", uuid_string); 2088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 2098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 2108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_put_str(msg, "\r\n"); 2118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (a->state + 1 >= 4 * UPNP_ADVERTISE_REPEAT) 2138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt *islast = 1; 2148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return msg; 2168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtfail: 2188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(msg); 2198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return NULL; 2208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 2218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic void advertisement_state_machine_handler(void *eloop_data, 2248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt void *user_ctx); 2258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 2288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * advertisement_state_machine_stop - Stop SSDP advertisements 2298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @sm: WPS UPnP state machine from upnp_wps_device_init() 2308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @send_byebye: Send byebye advertisement messages immediately 2318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 2328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtvoid advertisement_state_machine_stop(struct upnp_wps_device_sm *sm, 2338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int send_byebye) 2348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 2358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct advertisement_state_machine *a = &sm->advertisement; 2368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int islast = 0; 2378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wpabuf *msg; 2388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct sockaddr_in dest; 2398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt eloop_cancel_timeout(advertisement_state_machine_handler, NULL, sm); 2418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!send_byebye || sm->multicast_sd < 0) 2428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 2438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->type = ADVERTISE_DOWN; 2458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state = 0; 2468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memset(&dest, 0, sizeof(dest)); 2488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dest.sin_family = AF_INET; 2498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dest.sin_addr.s_addr = inet_addr(UPNP_MULTICAST_ADDRESS); 2508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dest.sin_port = htons(UPNP_MULTICAST_PORT); 2518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt while (!islast) { 2538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msg = next_advertisement(sm, a, &islast); 2548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (msg == NULL) 2558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt break; 2568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sendto(sm->multicast_sd, wpabuf_head(msg), wpabuf_len(msg), 2578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 0, (struct sockaddr *) &dest, sizeof(dest)) < 0) { 2588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_INFO, "WPS UPnP: Advertisement sendto " 2598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "failed: %d (%s)", errno, strerror(errno)); 2608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 2618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(msg); 2628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state++; 2638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 2648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 2658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic void advertisement_state_machine_handler(void *eloop_data, 2688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt void *user_ctx) 2698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 2708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_wps_device_sm *sm = user_ctx; 2718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct advertisement_state_machine *a = &sm->advertisement; 2728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wpabuf *msg; 2738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int next_timeout_msec = 100; 2748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int next_timeout_sec = 0; 2758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct sockaddr_in dest; 2768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int islast = 0; 2778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 2798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Each is sent twice (in case lost) w/ 100 msec delay between; 2808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * spec says no more than 3 times. 2818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * One pair for rootdevice, one pair for uuid, and a pair each for 2828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * each of the two urns. 2838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * The entire sequence must be repeated before cache control timeout 2848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * (which is min 1800 seconds), 2858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * recommend random portion of half of the advertised cache control age 2868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * to ensure against loss... perhaps 1800/4 + rand*1800/4 ? 2878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Delay random interval < 100 msec prior to initial sending. 2888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * TTL of 4 2898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 2908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_MSGDUMP, "WPS UPnP: Advertisement state=%d", a->state); 2928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msg = next_advertisement(sm, a, &islast); 2938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (msg == NULL) 2948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 2958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 2968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memset(&dest, 0, sizeof(dest)); 2978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dest.sin_family = AF_INET; 2988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dest.sin_addr.s_addr = inet_addr(UPNP_MULTICAST_ADDRESS); 2998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dest.sin_port = htons(UPNP_MULTICAST_PORT); 3008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sendto(sm->multicast_sd, wpabuf_head(msg), wpabuf_len(msg), 0, 3028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt (struct sockaddr *) &dest, sizeof(dest)) == -1) { 3038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_ERROR, "WPS UPnP: Advertisement sendto failed:" 3048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "%d (%s)", errno, strerror(errno)); 3058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_msec = 0; 3068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_sec = 10; /* ... later */ 3078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else if (islast) { 3088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state = 0; /* wrap around */ 3098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (a->type == ADVERTISE_DOWN) { 3108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: ADVERTISE_DOWN->UP"); 3118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->type = ADVERTISE_UP; 3128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* do it all over again right away */ 3138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else { 3148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt u16 r; 3158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 3168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Start over again after a long timeout 3178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * (see notes above) 3188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_msec = 0; 3208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_get_random((void *) &r, sizeof(r)); 3218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_sec = UPNP_CACHE_SEC / 4 + 3228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt (((UPNP_CACHE_SEC / 4) * r) >> 16); 3238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sm->advertise_count++; 3248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: ADVERTISE_UP (#%u); " 3258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "next in %d sec", 3268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sm->advertise_count, next_timeout_sec); 3278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 3288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else { 3298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state++; 3308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 3318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(msg); 3338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt eloop_register_timeout(next_timeout_sec, next_timeout_msec, 3358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt advertisement_state_machine_handler, NULL, sm); 3368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 3378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 3408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * advertisement_state_machine_start - Start SSDP advertisements 3418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @sm: WPS UPnP state machine from upnp_wps_device_init() 3428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 0 on success, -1 on failure 3438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint advertisement_state_machine_start(struct upnp_wps_device_sm *sm) 3458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 3468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct advertisement_state_machine *a = &sm->advertisement; 3478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int next_timeout_msec; 3488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt advertisement_state_machine_stop(sm, 0); 3508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 3528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Start out advertising down, this automatically switches 3538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * to advertising up which signals our restart. 3548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->type = ADVERTISE_DOWN; 3568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state = 0; 3578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* (other fields not used here) */ 3588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* First timeout should be random interval < 100 msec */ 3608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_msec = (100 * (os_random() & 0xFF)) >> 8; 3618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return eloop_register_timeout(0, next_timeout_msec, 3628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt advertisement_state_machine_handler, 3638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt NULL, sm); 3648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 3658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/*************************************************************************** 3688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * M-SEARCH replies 3698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * These are very similar to the multicast advertisements, with some 3708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * small changes in data content; and they are sent (UDP) to a specific 3718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * unicast address instead of multicast. 3728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * They are sent in response to a UDP M-SEARCH packet. 3738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt **************************************************************************/ 3748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 3768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * msearchreply_state_machine_stop - Stop M-SEARCH reply state machine 3778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @a: Selected advertisement/reply state 3788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 3798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtvoid msearchreply_state_machine_stop(struct advertisement_state_machine *a) 3808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 3818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: M-SEARCH stop"); 3828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dl_list_del(&a->list); 3838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(a); 3848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 3858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic void msearchreply_state_machine_handler(void *eloop_data, 3888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt void *user_ctx) 3898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 3908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct advertisement_state_machine *a = user_ctx; 3918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_wps_device_sm *sm = eloop_data; 3928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct wpabuf *msg; 3938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int next_timeout_msec = 100; 3948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int next_timeout_sec = 0; 3958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int islast = 0; 3968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 3978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 3988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Each response is sent twice (in case lost) w/ 100 msec delay 3998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * between; spec says no more than 3 times. 4008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * One pair for rootdevice, one pair for uuid, and a pair each for 4018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * each of the two urns. 4028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 4038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* TODO: should only send the requested response types */ 4058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_MSGDUMP, "WPS UPnP: M-SEARCH reply state=%d (%s:%d)", 4078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state, inet_ntoa(a->client.sin_addr), 4088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ntohs(a->client.sin_port)); 4098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msg = next_advertisement(sm, a, &islast); 4108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (msg == NULL) 4118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 4128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 4148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Send it on the multicast socket to avoid having to set up another 4158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * socket. 4168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 4178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sendto(sm->multicast_sd, wpabuf_head(msg), wpabuf_len(msg), 0, 4188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt (struct sockaddr *) &a->client, sizeof(a->client)) < 0) { 4198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: M-SEARCH reply sendto " 4208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "errno %d (%s) for %s:%d", 4218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt errno, strerror(errno), 4228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt inet_ntoa(a->client.sin_addr), 4238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ntohs(a->client.sin_port)); 4248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Ignore error and hope for the best */ 4258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 4268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpabuf_free(msg); 4278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (islast) { 4288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: M-SEARCH reply done"); 4298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msearchreply_state_machine_stop(a); 4308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 4318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 4328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state++; 4338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_MSGDUMP, "WPS UPnP: M-SEARCH reply in %d.%03d sec", 4358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_sec, next_timeout_msec); 4368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt eloop_register_timeout(next_timeout_sec, next_timeout_msec, 4378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msearchreply_state_machine_handler, sm, a); 4388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 4398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 4428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * msearchreply_state_machine_start - Reply to M-SEARCH discovery request 4438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @sm: WPS UPnP state machine from upnp_wps_device_init() 4448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @client: Client address 4458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @mx: Maximum delay in seconds 4468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 4478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Use TTL of 4 (this was done when socket set up). 4488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * A response should be given in randomized portion of min(MX,120) seconds 4498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 4508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * UPnP-arch-DeviceArchitecture, 1.2.3: 4518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * To be found, a device must send a UDP response to the source IP address and 4528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * port that sent the request to the multicast channel. Devices respond if the 4538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * ST header of the M-SEARCH request is "ssdp:all", "upnp:rootdevice", "uuid:" 4548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * followed by a UUID that exactly matches one advertised by the device. 4558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 4568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic void msearchreply_state_machine_start(struct upnp_wps_device_sm *sm, 4578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct sockaddr_in *client, 4588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int mx) 4598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 4608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct advertisement_state_machine *a; 4618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int next_timeout_sec; 4628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int next_timeout_msec; 4638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int replies; 4648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt replies = dl_list_len(&sm->msearch_replies); 4668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: M-SEARCH reply start (%d " 4678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "outstanding)", replies); 4688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (replies >= MAX_MSEARCH) { 4698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_INFO, "WPS UPnP: Too many outstanding " 4708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "M-SEARCH replies"); 4718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 4728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 4738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a = os_zalloc(sizeof(*a)); 4758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (a == NULL) 4768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 4778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->type = MSEARCH_REPLY; 4788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a->state = 0; 4798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memcpy(&a->client, client, sizeof(*client)); 4808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Wait time depending on MX value */ 4818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_msec = (1000 * mx * (os_random() & 0xFF)) >> 8; 4828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_sec = next_timeout_msec / 1000; 4838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt next_timeout_msec = next_timeout_msec % 1000; 4848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (eloop_register_timeout(next_timeout_sec, next_timeout_msec, 4858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msearchreply_state_machine_handler, sm, 4868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt a)) { 4878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* No way to recover (from malloc failure) */ 4888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 4898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 4908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Remember for future cleanup */ 4918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt dl_list_add(&sm->msearch_replies, &a->list); 4928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 4938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 4948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtfail: 4958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_INFO, "WPS UPnP: M-SEARCH reply failure!"); 4968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt eloop_cancel_timeout(msearchreply_state_machine_handler, sm, a); 4978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_free(a); 4988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 4998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 5028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * ssdp_parse_msearch - Process a received M-SEARCH 5038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @sm: WPS UPnP state machine from upnp_wps_device_init() 5048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @client: Client address 5058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @data: NULL terminated M-SEARCH message 5068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 5078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Given that we have received a header w/ M-SEARCH, act upon it 5088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 5098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Format of M-SEARCH (case insensitive!): 5108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 5118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * First line must be: 5128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * M-SEARCH * HTTP/1.1 5138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Other lines in arbitrary order: 5148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * HOST:239.255.255.250:1900 5158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * ST:<varies -- must match> 5168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * MAN:"ssdp:discover" 5178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * MX:<varies> 5188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 5198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * It should be noted that when Microsoft Vista is still learning its IP 5208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * address, it sends out host lines like: HOST:[FF02::C]:1900 5218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 5228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic void ssdp_parse_msearch(struct upnp_wps_device_sm *sm, 5238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct sockaddr_in *client, const char *data) 5248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 5258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifndef CONFIG_NO_STDOUT_DEBUG 5268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt const char *start = data; 5278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* CONFIG_NO_STDOUT_DEBUG */ 5288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int got_host = 0; 5298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int got_st = 0, st_match = 0; 5308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int got_man = 0; 5318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int got_mx = 0; 5328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int mx = 0; 5338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 5358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Skip first line M-SEARCH * HTTP/1.1 5368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * (perhaps we should check remainder of the line for syntax) 5378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 5388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += line_length(data); 5398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 5408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Parse remaining lines */ 5418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt for (; *data != '\0'; data += line_length(data)) { 5428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (token_eq(data, "host")) { 5438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* The host line indicates who the packet 5448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * is addressed to... but do we really care? 5458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Note that Microsoft sometimes does funny 5468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * stuff with the HOST: line. 5478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 5488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#if 0 /* could be */ 5498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += token_length(data); 5508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 5518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (*data != ':') 5528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto bad; 5538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data++; 5548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 5558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* UPNP_MULTICAST_ADDRESS */ 5568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!str_starts(data, "239.255.255.250")) 5578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto bad; 5588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += os_strlen("239.255.255.250"); 5598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (*data == ':') { 5608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!str_starts(data, ":1900")) 5618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto bad; 5628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* could be */ 5648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt got_host = 1; 5658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 5668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else if (token_eq(data, "st")) { 5678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* There are a number of forms; we look 5688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * for one that matches our case. 5698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 5708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt got_st = 1; 5718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += token_length(data); 5728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 5738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (*data != ':') 5748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 5758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data++; 5768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 5778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(data, "ssdp:all")) { 5788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt st_match = 1; 5798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 5808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(data, "upnp:rootdevice")) { 5828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt st_match = 1; 5838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 5848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 5858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(data, "uuid:")) { 5868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt char uuid_string[80]; 5878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_wps_device_interface *iface; 5888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt iface = dl_list_first( 5898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt &sm->interfaces, 5908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_wps_device_interface, 5918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt list); 5927832adbbd72a1b784b7fb74a71a5d4085b0cb0d3Dmitry Shmidt if (!iface) 5937832adbbd72a1b784b7fb74a71a5d4085b0cb0d3Dmitry Shmidt continue; 5948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += os_strlen("uuid:"); 5958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt uuid_bin2str(iface->wps->uuid, uuid_string, 5968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sizeof(uuid_string)); 5978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(data, uuid_string)) 5988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt st_match = 1; 5998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#if 0 6028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* FIX: should we really reply to IGD string? */ 6038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(data, "urn:schemas-upnp-org:device:" 6048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "InternetGatewayDevice:1")) { 6058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt st_match = 1; 6068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif 6098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(data, "urn:schemas-wifialliance-org:" 6108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "service:WFAWLANConfig:1")) { 6118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt st_match = 1; 6128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(data, "urn:schemas-wifialliance-org:" 6158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "device:WFADevice:1")) { 6168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt st_match = 1; 6178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else if (token_eq(data, "man")) { 6218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += token_length(data); 6228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 6238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (*data != ':') 6248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data++; 6268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 6278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!str_starts(data, "\"ssdp:discover\"")) { 6288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: Unexpected " 6298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "M-SEARCH man-field"); 6308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto bad; 6318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt got_man = 1; 6338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else if (token_eq(data, "mx")) { 6358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += token_length(data); 6368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 6378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (*data != ':') 6388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data++; 6408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt data += word_separation_length(data); 6418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mx = atol(data); 6428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt got_mx = 1; 6438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt continue; 6448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* ignore anything else */ 6468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!got_host || !got_st || !got_man || !got_mx || mx < 0) { 6488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: Invalid M-SEARCH: %d %d %d " 6498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "%d mx=%d", got_host, got_st, got_man, got_mx, mx); 6508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto bad; 6518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!st_match) { 6538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: Ignored M-SEARCH (no ST " 6548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "match)"); 6558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 6568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (mx > 120) 6588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mx = 120; /* UPnP-arch-DeviceArchitecture, 1.2.3 */ 6598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt msearchreply_state_machine_start(sm, client, mx); 6608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 6618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtbad: 6638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_INFO, "WPS UPnP: Failed to parse M-SEARCH"); 6648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_MSGDUMP, "WPS UPnP: M-SEARCH data:\n%s", start); 6658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 6668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/* Listening for (UDP) discovery (M-SEARCH) packets */ 6698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 6718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * ssdp_listener_stop - Stop SSDP listered 6728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @sm: WPS UPnP state machine from upnp_wps_device_init() 6738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 6748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This function stops the SSDP listener that was started by calling 6758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * ssdp_listener_start(). 6768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 6778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtvoid ssdp_listener_stop(struct upnp_wps_device_sm *sm) 6788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 6798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sm->ssdp_sd_registered) { 6808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt eloop_unregister_sock(sm->ssdp_sd, EVENT_TYPE_READ); 6818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sm->ssdp_sd_registered = 0; 6828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sm->ssdp_sd != -1) { 6858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt close(sm->ssdp_sd); 6868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sm->ssdp_sd = -1; 6878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 6888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt eloop_cancel_timeout(msearchreply_state_machine_handler, sm, 6908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ELOOP_ALL_CTX); 6918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 6928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 6948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtstatic void ssdp_listener_handler(int sd, void *eloop_ctx, void *sock_ctx) 6958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 6968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct upnp_wps_device_sm *sm = sock_ctx; 6978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct sockaddr_in addr; /* client address */ 6988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt socklen_t addr_len; 6998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int nread; 7008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt char buf[MULTICAST_MAX_READ], *pos; 7018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt addr_len = sizeof(addr); 7038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt nread = recvfrom(sm->ssdp_sd, buf, sizeof(buf) - 1, 0, 7048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt (struct sockaddr *) &addr, &addr_len); 7058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (nread <= 0) 7068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 7078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt buf[nread] = '\0'; /* need null termination for algorithm */ 7088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (str_starts(buf, "NOTIFY ")) { 7108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 7118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Silently ignore NOTIFYs to avoid filling debug log with 7128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * unwanted messages. 7138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 7148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 7158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 7168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt pos = os_strchr(buf, '\n'); 7188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (pos) 7198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt *pos = '\0'; 7208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_MSGDUMP, "WPS UPnP: Received SSDP packet from %s:%d: " 7218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "%s", inet_ntoa(addr.sin_addr), ntohs(addr.sin_port), buf); 7228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (pos) 7238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt *pos = '\n'; 7248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Parse first line */ 7268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (os_strncasecmp(buf, "M-SEARCH", os_strlen("M-SEARCH")) == 0 && 7278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt !isgraph(buf[strlen("M-SEARCH")])) { 7288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ssdp_parse_msearch(sm, &addr, buf); 7298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return; 7308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 7318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Ignore anything else */ 7338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 7348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint ssdp_listener_open(void) 7378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 7388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct sockaddr_in addr; 7398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct ip_mreq mcast_addr; 7408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int on = 1; 7418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* per UPnP spec, keep IP packet time to live (TTL) small */ 7428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt unsigned char ttl = 4; 7438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int sd; 7448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sd = socket(AF_INET, SOCK_DGRAM, 0); 7468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sd < 0) 7478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 7488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (fcntl(sd, F_SETFL, O_NONBLOCK) != 0) 7498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 7508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (setsockopt(sd, SOL_SOCKET, SO_REUSEADDR, &on, sizeof(on))) 7518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 7528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memset(&addr, 0, sizeof(addr)); 7538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt addr.sin_family = AF_INET; 7548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt addr.sin_addr.s_addr = htonl(INADDR_ANY); 7558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt addr.sin_port = htons(UPNP_MULTICAST_PORT); 7568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (bind(sd, (struct sockaddr *) &addr, sizeof(addr))) 7578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 7588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memset(&mcast_addr, 0, sizeof(mcast_addr)); 7598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mcast_addr.imr_interface.s_addr = htonl(INADDR_ANY); 7608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mcast_addr.imr_multiaddr.s_addr = inet_addr(UPNP_MULTICAST_ADDRESS); 7618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (setsockopt(sd, IPPROTO_IP, IP_ADD_MEMBERSHIP, 7628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt (char *) &mcast_addr, sizeof(mcast_addr))) 7638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 7648d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (setsockopt(sd, IPPROTO_IP, IP_MULTICAST_TTL, 7658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt &ttl, sizeof(ttl))) 7668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 7678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return sd; 7698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtfail: 7718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sd >= 0) 7728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt close(sd); 7738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 7748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 7758d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7768d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7778d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 7788d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * ssdp_listener_start - Set up for receiving discovery (UDP) packets 7798d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @sm: WPS UPnP state machine from upnp_wps_device_init() 7808d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 0 on success, -1 on failure 7818d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 7828d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * The SSDP listener is stopped by calling ssdp_listener_stop(). 7838d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 7848d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint ssdp_listener_start(struct upnp_wps_device_sm *sm) 7858d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 7868d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sm->ssdp_sd = ssdp_listener_open(); 7878d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7888d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (eloop_register_sock(sm->ssdp_sd, EVENT_TYPE_READ, 7898d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ssdp_listener_handler, NULL, sm)) 7908d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 7918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sm->ssdp_sd_registered = 1; 7928d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 7938d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 7948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtfail: 7958d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Error */ 7968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_ERROR, "WPS UPnP: ssdp_listener_start failed"); 7978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ssdp_listener_stop(sm); 7988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 7998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 8008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8028d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 8038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * add_ssdp_network - Add routing entry for SSDP 8048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @net_if: Selected network interface name 8058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 0 on success, -1 on failure 8068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * 8078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This function assures that the multicast address will be properly 8088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * handled by Linux networking code (by a modification to routing tables). 8098d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * This must be done per network interface. It really only needs to be done 8108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * once after booting up, but it does not hurt to call this more frequently 8118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * "to be safe". 8128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 8138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint add_ssdp_network(const char *net_if) 8148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 8158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#ifdef __linux__ 8168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int ret = -1; 8178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int sock = -1; 8188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct rtentry rt; 8198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct sockaddr_in *sin; 8208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (!net_if) 8228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 8238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt os_memset(&rt, 0, sizeof(rt)); 8258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sock = socket(AF_INET, SOCK_DGRAM, 0); 8268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sock < 0) 8278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 8288d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt rt.rt_dev = (char *) net_if; 8308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin = aliasing_hide_typecast(&rt.rt_dst, struct sockaddr_in); 8318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin->sin_family = AF_INET; 8328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin->sin_port = 0; 8338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin->sin_addr.s_addr = inet_addr(SSDP_TARGET); 8348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin = aliasing_hide_typecast(&rt.rt_genmask, struct sockaddr_in); 8358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin->sin_family = AF_INET; 8368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin->sin_port = 0; 8378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sin->sin_addr.s_addr = inet_addr(SSDP_NETMASK); 8388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt rt.rt_flags = RTF_UP; 8398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (ioctl(sock, SIOCADDRT, &rt) < 0) { 8408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (errno == EPERM) { 8418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "add_ssdp_network: No " 8428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "permissions to add routing table entry"); 8438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* Continue to allow testing as non-root */ 8448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } else if (errno != EEXIST) { 8458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_INFO, "add_ssdp_network() ioctl errno " 8468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "%d (%s)", errno, strerror(errno)); 8478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt goto fail; 8488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 8498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 8508d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt ret = 0; 8528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtfail: 8548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sock >= 0) 8558d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt close(sock); 8568d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8578d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return ret; 8588d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#else /* __linux__ */ 8598d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 8608d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* __linux__ */ 8618d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 8628d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8638d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8644b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidtint ssdp_open_multicast_sock(u32 ip_addr, const char *forced_ifname) 8658d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 8668d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt int sd; 8678d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* per UPnP-arch-DeviceArchitecture, 1. Discovery, keep IP packet 8688d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * time to live (TTL) small */ 8698d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt unsigned char ttl = 4; 8708d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8718d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sd = socket(AF_INET, SOCK_DGRAM, 0); 8728d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sd < 0) 8738d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 8748d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8754b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt if (forced_ifname) { 8764b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt#ifdef __linux__ 8774b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt struct ifreq req; 8784b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt os_memset(&req, 0, sizeof(req)); 8794b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt os_strlcpy(req.ifr_name, forced_ifname, sizeof(req.ifr_name)); 8804b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt if (setsockopt(sd, SOL_SOCKET, SO_BINDTODEVICE, &req, 8814b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt sizeof(req)) < 0) { 8824b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt wpa_printf(MSG_INFO, "WPS UPnP: Failed to bind " 8834b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt "multicast socket to ifname %s: %s", 8844b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt forced_ifname, strerror(errno)); 8854b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt close(sd); 8864b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt return -1; 8874b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt } 8884b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt#endif /* __linux__ */ 8894b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt } 8904b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt 8918d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#if 0 /* maybe ok if we sometimes block on writes */ 89204949598a23f501be6eec21697465fd46a28840aDmitry Shmidt if (fcntl(sd, F_SETFL, O_NONBLOCK) != 0) { 89304949598a23f501be6eec21697465fd46a28840aDmitry Shmidt close(sd); 8948d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 89504949598a23f501be6eec21697465fd46a28840aDmitry Shmidt } 8968d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif 8978d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 8988d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (setsockopt(sd, IPPROTO_IP, IP_MULTICAST_IF, 8998d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt &ip_addr, sizeof(ip_addr))) { 9008d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: setsockopt(IP_MULTICAST_IF) %x: " 9018d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "%d (%s)", ip_addr, errno, strerror(errno)); 90204949598a23f501be6eec21697465fd46a28840aDmitry Shmidt close(sd); 9038d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 9048d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 9058d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (setsockopt(sd, IPPROTO_IP, IP_MULTICAST_TTL, 9068d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt &ttl, sizeof(ttl))) { 9078d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS: setsockopt(IP_MULTICAST_TTL): " 9088d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "%d (%s)", errno, strerror(errno)); 90904949598a23f501be6eec21697465fd46a28840aDmitry Shmidt close(sd); 9108d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 9118d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 9128d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 9138d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#if 0 /* not needed, because we don't receive using multicast_sd */ 9148d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt { 9158d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt struct ip_mreq mreq; 9168d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mreq.imr_multiaddr.s_addr = inet_addr(UPNP_MULTICAST_ADDRESS); 9178d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mreq.imr_interface.s_addr = ip_addr; 9188d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_DEBUG, "WPS UPnP: Multicast addr 0x%x if addr " 9198d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "0x%x", 9208d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mreq.imr_multiaddr.s_addr, 9218d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt mreq.imr_interface.s_addr); 9228d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (setsockopt(sd, IPPROTO_IP, IP_ADD_MEMBERSHIP, &mreq, 9238d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt sizeof(mreq))) { 9248d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt wpa_printf(MSG_ERROR, 9258d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "WPS UPnP: setsockopt " 9268d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt "IP_ADD_MEMBERSHIP errno %d (%s)", 9278d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt errno, strerror(errno)); 92804949598a23f501be6eec21697465fd46a28840aDmitry Shmidt close(sd); 9298d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 9308d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 9318d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt } 9328d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt#endif /* not needed */ 9338d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 9348d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt /* 9358d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * TODO: What about IP_MULTICAST_LOOP? It seems to be on by default? 9368d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * which aids debugging I suppose but isn't really necessary? 9378d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 9388d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 9398d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return sd; 9408d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 9418d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 9428d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt 9438d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt/** 9448d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * ssdp_open_multicast - Open socket for sending multicast SSDP messages 9458d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * @sm: WPS UPnP state machine from upnp_wps_device_init() 9468d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt * Returns: 0 on success, -1 on failure 9478d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt */ 9488d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidtint ssdp_open_multicast(struct upnp_wps_device_sm *sm) 9498d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt{ 9504b06059785b935dd1f4f09314e4e12c417d2c6a4Dmitry Shmidt sm->multicast_sd = ssdp_open_multicast_sock(sm->ip_addr, NULL); 9518d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt if (sm->multicast_sd < 0) 9528d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return -1; 9538d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt return 0; 9548d520ff1dc2da35cdca849e982051b86468016d8Dmitry Shmidt} 955