config.c revision 6d6d685fd8e7ace3d5d5f79aee86f192759a030c
1/* 2 * WPA Supplicant / Configuration parser and common functions 3 * Copyright (c) 2003-2012, Jouni Malinen <j@w1.fi> 4 * 5 * This software may be distributed under the terms of the BSD license. 6 * See README for more details. 7 */ 8 9#include "includes.h" 10 11#include "common.h" 12#include "utils/uuid.h" 13#include "utils/ip_addr.h" 14#include "crypto/sha1.h" 15#include "rsn_supp/wpa.h" 16#include "eap_peer/eap.h" 17#include "p2p/p2p.h" 18#include "config.h" 19 20 21#if !defined(CONFIG_CTRL_IFACE) && defined(CONFIG_NO_CONFIG_WRITE) 22#define NO_CONFIG_WRITE 23#endif 24 25/* 26 * Structure for network configuration parsing. This data is used to implement 27 * a generic parser for each network block variable. The table of configuration 28 * variables is defined below in this file (ssid_fields[]). 29 */ 30struct parse_data { 31 /* Configuration variable name */ 32 char *name; 33 34 /* Parser function for this variable */ 35 int (*parser)(const struct parse_data *data, struct wpa_ssid *ssid, 36 int line, const char *value); 37 38#ifndef NO_CONFIG_WRITE 39 /* Writer function (i.e., to get the variable in text format from 40 * internal presentation). */ 41 char * (*writer)(const struct parse_data *data, struct wpa_ssid *ssid); 42#endif /* NO_CONFIG_WRITE */ 43 44 /* Variable specific parameters for the parser. */ 45 void *param1, *param2, *param3, *param4; 46 47 /* 0 = this variable can be included in debug output and ctrl_iface 48 * 1 = this variable contains key/private data and it must not be 49 * included in debug output unless explicitly requested. In 50 * addition, this variable will not be readable through the 51 * ctrl_iface. 52 */ 53 int key_data; 54}; 55 56 57static int wpa_config_parse_str(const struct parse_data *data, 58 struct wpa_ssid *ssid, 59 int line, const char *value) 60{ 61 size_t res_len, *dst_len; 62 char **dst, *tmp; 63 64 if (os_strcmp(value, "NULL") == 0) { 65 wpa_printf(MSG_DEBUG, "Unset configuration string '%s'", 66 data->name); 67 tmp = NULL; 68 res_len = 0; 69 goto set; 70 } 71 72 tmp = wpa_config_parse_string(value, &res_len); 73 if (tmp == NULL) { 74 wpa_printf(MSG_ERROR, "Line %d: failed to parse %s '%s'.", 75 line, data->name, 76 data->key_data ? "[KEY DATA REMOVED]" : value); 77 return -1; 78 } 79 80 if (data->key_data) { 81 wpa_hexdump_ascii_key(MSG_MSGDUMP, data->name, 82 (u8 *) tmp, res_len); 83 } else { 84 wpa_hexdump_ascii(MSG_MSGDUMP, data->name, 85 (u8 *) tmp, res_len); 86 } 87 88 if (data->param3 && res_len < (size_t) data->param3) { 89 wpa_printf(MSG_ERROR, "Line %d: too short %s (len=%lu " 90 "min_len=%ld)", line, data->name, 91 (unsigned long) res_len, (long) data->param3); 92 os_free(tmp); 93 return -1; 94 } 95 96 if (data->param4 && res_len > (size_t) data->param4) { 97 wpa_printf(MSG_ERROR, "Line %d: too long %s (len=%lu " 98 "max_len=%ld)", line, data->name, 99 (unsigned long) res_len, (long) data->param4); 100 os_free(tmp); 101 return -1; 102 } 103 104set: 105 dst = (char **) (((u8 *) ssid) + (long) data->param1); 106 dst_len = (size_t *) (((u8 *) ssid) + (long) data->param2); 107 os_free(*dst); 108 *dst = tmp; 109 if (data->param2) 110 *dst_len = res_len; 111 112 return 0; 113} 114 115 116#ifndef NO_CONFIG_WRITE 117static char * wpa_config_write_string_ascii(const u8 *value, size_t len) 118{ 119 char *buf; 120 121 buf = os_malloc(len + 3); 122 if (buf == NULL) 123 return NULL; 124 buf[0] = '"'; 125 os_memcpy(buf + 1, value, len); 126 buf[len + 1] = '"'; 127 buf[len + 2] = '\0'; 128 129 return buf; 130} 131 132 133static char * wpa_config_write_string_hex(const u8 *value, size_t len) 134{ 135 char *buf; 136 137 buf = os_zalloc(2 * len + 1); 138 if (buf == NULL) 139 return NULL; 140 wpa_snprintf_hex(buf, 2 * len + 1, value, len); 141 142 return buf; 143} 144 145 146static char * wpa_config_write_string(const u8 *value, size_t len) 147{ 148 if (value == NULL) 149 return NULL; 150 151 if (is_hex(value, len)) 152 return wpa_config_write_string_hex(value, len); 153 else 154 return wpa_config_write_string_ascii(value, len); 155} 156 157 158static char * wpa_config_write_str(const struct parse_data *data, 159 struct wpa_ssid *ssid) 160{ 161 size_t len; 162 char **src; 163 164 src = (char **) (((u8 *) ssid) + (long) data->param1); 165 if (*src == NULL) 166 return NULL; 167 168 if (data->param2) 169 len = *((size_t *) (((u8 *) ssid) + (long) data->param2)); 170 else 171 len = os_strlen(*src); 172 173 return wpa_config_write_string((const u8 *) *src, len); 174} 175#endif /* NO_CONFIG_WRITE */ 176 177 178static int wpa_config_parse_int(const struct parse_data *data, 179 struct wpa_ssid *ssid, 180 int line, const char *value) 181{ 182 int val, *dst; 183 char *end; 184 185 dst = (int *) (((u8 *) ssid) + (long) data->param1); 186 val = strtol(value, &end, 0); 187 if (*end) { 188 wpa_printf(MSG_ERROR, "Line %d: invalid number \"%s\"", 189 line, value); 190 return -1; 191 } 192 *dst = val; 193 wpa_printf(MSG_MSGDUMP, "%s=%d (0x%x)", data->name, *dst, *dst); 194 195 if (data->param3 && *dst < (long) data->param3) { 196 wpa_printf(MSG_ERROR, "Line %d: too small %s (value=%d " 197 "min_value=%ld)", line, data->name, *dst, 198 (long) data->param3); 199 *dst = (long) data->param3; 200 return -1; 201 } 202 203 if (data->param4 && *dst > (long) data->param4) { 204 wpa_printf(MSG_ERROR, "Line %d: too large %s (value=%d " 205 "max_value=%ld)", line, data->name, *dst, 206 (long) data->param4); 207 *dst = (long) data->param4; 208 return -1; 209 } 210 211 return 0; 212} 213 214 215#ifndef NO_CONFIG_WRITE 216static char * wpa_config_write_int(const struct parse_data *data, 217 struct wpa_ssid *ssid) 218{ 219 int *src, res; 220 char *value; 221 222 src = (int *) (((u8 *) ssid) + (long) data->param1); 223 224 value = os_malloc(20); 225 if (value == NULL) 226 return NULL; 227 res = os_snprintf(value, 20, "%d", *src); 228 if (res < 0 || res >= 20) { 229 os_free(value); 230 return NULL; 231 } 232 value[20 - 1] = '\0'; 233 return value; 234} 235#endif /* NO_CONFIG_WRITE */ 236 237 238static int wpa_config_parse_bssid(const struct parse_data *data, 239 struct wpa_ssid *ssid, int line, 240 const char *value) 241{ 242 if (value[0] == '\0' || os_strcmp(value, "\"\"") == 0 || 243 os_strcmp(value, "any") == 0) { 244 ssid->bssid_set = 0; 245 wpa_printf(MSG_MSGDUMP, "BSSID any"); 246 return 0; 247 } 248 if (hwaddr_aton(value, ssid->bssid)) { 249 wpa_printf(MSG_ERROR, "Line %d: Invalid BSSID '%s'.", 250 line, value); 251 return -1; 252 } 253 ssid->bssid_set = 1; 254 wpa_hexdump(MSG_MSGDUMP, "BSSID", ssid->bssid, ETH_ALEN); 255 return 0; 256} 257 258 259#ifndef NO_CONFIG_WRITE 260static char * wpa_config_write_bssid(const struct parse_data *data, 261 struct wpa_ssid *ssid) 262{ 263 char *value; 264 int res; 265 266 if (!ssid->bssid_set) 267 return NULL; 268 269 value = os_malloc(20); 270 if (value == NULL) 271 return NULL; 272 res = os_snprintf(value, 20, MACSTR, MAC2STR(ssid->bssid)); 273 if (res < 0 || res >= 20) { 274 os_free(value); 275 return NULL; 276 } 277 value[20 - 1] = '\0'; 278 return value; 279} 280#endif /* NO_CONFIG_WRITE */ 281 282 283static int wpa_config_parse_psk(const struct parse_data *data, 284 struct wpa_ssid *ssid, int line, 285 const char *value) 286{ 287#ifdef CONFIG_EXT_PASSWORD 288 if (os_strncmp(value, "ext:", 4) == 0) { 289 str_clear_free(ssid->passphrase); 290 ssid->passphrase = NULL; 291 ssid->psk_set = 0; 292 os_free(ssid->ext_psk); 293 ssid->ext_psk = os_strdup(value + 4); 294 if (ssid->ext_psk == NULL) 295 return -1; 296 wpa_printf(MSG_DEBUG, "PSK: External password '%s'", 297 ssid->ext_psk); 298 return 0; 299 } 300#endif /* CONFIG_EXT_PASSWORD */ 301 302 if (*value == '"') { 303#ifndef CONFIG_NO_PBKDF2 304 const char *pos; 305 size_t len; 306 307 value++; 308 pos = os_strrchr(value, '"'); 309 if (pos) 310 len = pos - value; 311 else 312 len = os_strlen(value); 313 if (len < 8 || len > 63) { 314 wpa_printf(MSG_ERROR, "Line %d: Invalid passphrase " 315 "length %lu (expected: 8..63) '%s'.", 316 line, (unsigned long) len, value); 317 return -1; 318 } 319 wpa_hexdump_ascii_key(MSG_MSGDUMP, "PSK (ASCII passphrase)", 320 (u8 *) value, len); 321 if (ssid->passphrase && os_strlen(ssid->passphrase) == len && 322 os_memcmp(ssid->passphrase, value, len) == 0) 323 return 0; 324 ssid->psk_set = 0; 325 str_clear_free(ssid->passphrase); 326 ssid->passphrase = dup_binstr(value, len); 327 if (ssid->passphrase == NULL) 328 return -1; 329 return 0; 330#else /* CONFIG_NO_PBKDF2 */ 331 wpa_printf(MSG_ERROR, "Line %d: ASCII passphrase not " 332 "supported.", line); 333 return -1; 334#endif /* CONFIG_NO_PBKDF2 */ 335 } 336 337 if (hexstr2bin(value, ssid->psk, PMK_LEN) || 338 value[PMK_LEN * 2] != '\0') { 339 wpa_printf(MSG_ERROR, "Line %d: Invalid PSK '%s'.", 340 line, value); 341 return -1; 342 } 343 344 str_clear_free(ssid->passphrase); 345 ssid->passphrase = NULL; 346 347 ssid->psk_set = 1; 348 wpa_hexdump_key(MSG_MSGDUMP, "PSK", ssid->psk, PMK_LEN); 349 return 0; 350} 351 352 353#ifndef NO_CONFIG_WRITE 354static char * wpa_config_write_psk(const struct parse_data *data, 355 struct wpa_ssid *ssid) 356{ 357#ifdef CONFIG_EXT_PASSWORD 358 if (ssid->ext_psk) { 359 size_t len = 4 + os_strlen(ssid->ext_psk) + 1; 360 char *buf = os_malloc(len); 361 if (buf == NULL) 362 return NULL; 363 os_snprintf(buf, len, "ext:%s", ssid->ext_psk); 364 return buf; 365 } 366#endif /* CONFIG_EXT_PASSWORD */ 367 368 if (ssid->passphrase) 369 return wpa_config_write_string_ascii( 370 (const u8 *) ssid->passphrase, 371 os_strlen(ssid->passphrase)); 372 373 if (ssid->psk_set) 374 return wpa_config_write_string_hex(ssid->psk, PMK_LEN); 375 376 return NULL; 377} 378#endif /* NO_CONFIG_WRITE */ 379 380 381static int wpa_config_parse_proto(const struct parse_data *data, 382 struct wpa_ssid *ssid, int line, 383 const char *value) 384{ 385 int val = 0, last, errors = 0; 386 char *start, *end, *buf; 387 388 buf = os_strdup(value); 389 if (buf == NULL) 390 return -1; 391 start = buf; 392 393 while (*start != '\0') { 394 while (*start == ' ' || *start == '\t') 395 start++; 396 if (*start == '\0') 397 break; 398 end = start; 399 while (*end != ' ' && *end != '\t' && *end != '\0') 400 end++; 401 last = *end == '\0'; 402 *end = '\0'; 403 if (os_strcmp(start, "WPA") == 0) 404 val |= WPA_PROTO_WPA; 405 else if (os_strcmp(start, "RSN") == 0 || 406 os_strcmp(start, "WPA2") == 0) 407 val |= WPA_PROTO_RSN; 408 else if (os_strcmp(start, "OSEN") == 0) 409 val |= WPA_PROTO_OSEN; 410 else { 411 wpa_printf(MSG_ERROR, "Line %d: invalid proto '%s'", 412 line, start); 413 errors++; 414 } 415 416 if (last) 417 break; 418 start = end + 1; 419 } 420 os_free(buf); 421 422 if (val == 0) { 423 wpa_printf(MSG_ERROR, 424 "Line %d: no proto values configured.", line); 425 errors++; 426 } 427 428 wpa_printf(MSG_MSGDUMP, "proto: 0x%x", val); 429 ssid->proto = val; 430 return errors ? -1 : 0; 431} 432 433 434#ifndef NO_CONFIG_WRITE 435static char * wpa_config_write_proto(const struct parse_data *data, 436 struct wpa_ssid *ssid) 437{ 438 int ret; 439 char *buf, *pos, *end; 440 441 pos = buf = os_zalloc(20); 442 if (buf == NULL) 443 return NULL; 444 end = buf + 20; 445 446 if (ssid->proto & WPA_PROTO_WPA) { 447 ret = os_snprintf(pos, end - pos, "%sWPA", 448 pos == buf ? "" : " "); 449 if (ret < 0 || ret >= end - pos) 450 return buf; 451 pos += ret; 452 } 453 454 if (ssid->proto & WPA_PROTO_RSN) { 455 ret = os_snprintf(pos, end - pos, "%sRSN", 456 pos == buf ? "" : " "); 457 if (ret < 0 || ret >= end - pos) 458 return buf; 459 pos += ret; 460 } 461 462 if (ssid->proto & WPA_PROTO_OSEN) { 463 ret = os_snprintf(pos, end - pos, "%sOSEN", 464 pos == buf ? "" : " "); 465 if (ret < 0 || ret >= end - pos) 466 return buf; 467 pos += ret; 468 } 469 470 if (pos == buf) { 471 os_free(buf); 472 buf = NULL; 473 } 474 475 return buf; 476} 477#endif /* NO_CONFIG_WRITE */ 478 479 480static int wpa_config_parse_key_mgmt(const struct parse_data *data, 481 struct wpa_ssid *ssid, int line, 482 const char *value) 483{ 484 int val = 0, last, errors = 0; 485 char *start, *end, *buf; 486 487 buf = os_strdup(value); 488 if (buf == NULL) 489 return -1; 490 start = buf; 491 492 while (*start != '\0') { 493 while (*start == ' ' || *start == '\t') 494 start++; 495 if (*start == '\0') 496 break; 497 end = start; 498 while (*end != ' ' && *end != '\t' && *end != '\0') 499 end++; 500 last = *end == '\0'; 501 *end = '\0'; 502 if (os_strcmp(start, "WPA-PSK") == 0) 503 val |= WPA_KEY_MGMT_PSK; 504 else if (os_strcmp(start, "WPA-EAP") == 0) 505 val |= WPA_KEY_MGMT_IEEE8021X; 506 else if (os_strcmp(start, "IEEE8021X") == 0) 507 val |= WPA_KEY_MGMT_IEEE8021X_NO_WPA; 508 else if (os_strcmp(start, "NONE") == 0) 509 val |= WPA_KEY_MGMT_NONE; 510 else if (os_strcmp(start, "WPA-NONE") == 0) 511 val |= WPA_KEY_MGMT_WPA_NONE; 512#ifdef CONFIG_IEEE80211R 513 else if (os_strcmp(start, "FT-PSK") == 0) 514 val |= WPA_KEY_MGMT_FT_PSK; 515 else if (os_strcmp(start, "FT-EAP") == 0) 516 val |= WPA_KEY_MGMT_FT_IEEE8021X; 517#endif /* CONFIG_IEEE80211R */ 518#ifdef CONFIG_IEEE80211W 519 else if (os_strcmp(start, "WPA-PSK-SHA256") == 0) 520 val |= WPA_KEY_MGMT_PSK_SHA256; 521 else if (os_strcmp(start, "WPA-EAP-SHA256") == 0) 522 val |= WPA_KEY_MGMT_IEEE8021X_SHA256; 523#endif /* CONFIG_IEEE80211W */ 524#ifdef CONFIG_WPS 525 else if (os_strcmp(start, "WPS") == 0) 526 val |= WPA_KEY_MGMT_WPS; 527#endif /* CONFIG_WPS */ 528#ifdef CONFIG_SAE 529 else if (os_strcmp(start, "SAE") == 0) 530 val |= WPA_KEY_MGMT_SAE; 531 else if (os_strcmp(start, "FT-SAE") == 0) 532 val |= WPA_KEY_MGMT_FT_SAE; 533#endif /* CONFIG_SAE */ 534#ifdef CONFIG_HS20 535 else if (os_strcmp(start, "OSEN") == 0) 536 val |= WPA_KEY_MGMT_OSEN; 537#endif /* CONFIG_HS20 */ 538 else { 539 wpa_printf(MSG_ERROR, "Line %d: invalid key_mgmt '%s'", 540 line, start); 541 errors++; 542 } 543 544 if (last) 545 break; 546 start = end + 1; 547 } 548 os_free(buf); 549 550 if (val == 0) { 551 wpa_printf(MSG_ERROR, 552 "Line %d: no key_mgmt values configured.", line); 553 errors++; 554 } 555 556 wpa_printf(MSG_MSGDUMP, "key_mgmt: 0x%x", val); 557 ssid->key_mgmt = val; 558 return errors ? -1 : 0; 559} 560 561 562#ifndef NO_CONFIG_WRITE 563static char * wpa_config_write_key_mgmt(const struct parse_data *data, 564 struct wpa_ssid *ssid) 565{ 566 char *buf, *pos, *end; 567 int ret; 568 569 pos = buf = os_zalloc(100); 570 if (buf == NULL) 571 return NULL; 572 end = buf + 100; 573 574 if (ssid->key_mgmt & WPA_KEY_MGMT_PSK) { 575 ret = os_snprintf(pos, end - pos, "%sWPA-PSK", 576 pos == buf ? "" : " "); 577 if (ret < 0 || ret >= end - pos) { 578 end[-1] = '\0'; 579 return buf; 580 } 581 pos += ret; 582 } 583 584 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X) { 585 ret = os_snprintf(pos, end - pos, "%sWPA-EAP", 586 pos == buf ? "" : " "); 587 if (ret < 0 || ret >= end - pos) { 588 end[-1] = '\0'; 589 return buf; 590 } 591 pos += ret; 592 } 593 594 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) { 595 ret = os_snprintf(pos, end - pos, "%sIEEE8021X", 596 pos == buf ? "" : " "); 597 if (ret < 0 || ret >= end - pos) { 598 end[-1] = '\0'; 599 return buf; 600 } 601 pos += ret; 602 } 603 604 if (ssid->key_mgmt & WPA_KEY_MGMT_NONE) { 605 ret = os_snprintf(pos, end - pos, "%sNONE", 606 pos == buf ? "" : " "); 607 if (ret < 0 || ret >= end - pos) { 608 end[-1] = '\0'; 609 return buf; 610 } 611 pos += ret; 612 } 613 614 if (ssid->key_mgmt & WPA_KEY_MGMT_WPA_NONE) { 615 ret = os_snprintf(pos, end - pos, "%sWPA-NONE", 616 pos == buf ? "" : " "); 617 if (ret < 0 || ret >= end - pos) { 618 end[-1] = '\0'; 619 return buf; 620 } 621 pos += ret; 622 } 623 624#ifdef CONFIG_IEEE80211R 625 if (ssid->key_mgmt & WPA_KEY_MGMT_FT_PSK) { 626 ret = os_snprintf(pos, end - pos, "%sFT-PSK", 627 pos == buf ? "" : " "); 628 if (ret < 0 || ret >= end - pos) { 629 end[-1] = '\0'; 630 return buf; 631 } 632 pos += ret; 633 } 634 635 if (ssid->key_mgmt & WPA_KEY_MGMT_FT_IEEE8021X) { 636 ret = os_snprintf(pos, end - pos, "%sFT-EAP", 637 pos == buf ? "" : " "); 638 if (ret < 0 || ret >= end - pos) { 639 end[-1] = '\0'; 640 return buf; 641 } 642 pos += ret; 643 } 644#endif /* CONFIG_IEEE80211R */ 645 646#ifdef CONFIG_IEEE80211W 647 if (ssid->key_mgmt & WPA_KEY_MGMT_PSK_SHA256) { 648 ret = os_snprintf(pos, end - pos, "%sWPA-PSK-SHA256", 649 pos == buf ? "" : " "); 650 if (ret < 0 || ret >= end - pos) { 651 end[-1] = '\0'; 652 return buf; 653 } 654 pos += ret; 655 } 656 657 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_SHA256) { 658 ret = os_snprintf(pos, end - pos, "%sWPA-EAP-SHA256", 659 pos == buf ? "" : " "); 660 if (ret < 0 || ret >= end - pos) { 661 end[-1] = '\0'; 662 return buf; 663 } 664 pos += ret; 665 } 666#endif /* CONFIG_IEEE80211W */ 667 668#ifdef CONFIG_WPS 669 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) { 670 ret = os_snprintf(pos, end - pos, "%sWPS", 671 pos == buf ? "" : " "); 672 if (ret < 0 || ret >= end - pos) { 673 end[-1] = '\0'; 674 return buf; 675 } 676 pos += ret; 677 } 678#endif /* CONFIG_WPS */ 679 680 if (pos == buf) { 681 os_free(buf); 682 buf = NULL; 683 } 684 685 return buf; 686} 687#endif /* NO_CONFIG_WRITE */ 688 689 690static int wpa_config_parse_cipher(int line, const char *value) 691{ 692 int val = wpa_parse_cipher(value); 693 if (val < 0) { 694 wpa_printf(MSG_ERROR, "Line %d: invalid cipher '%s'.", 695 line, value); 696 return -1; 697 } 698 if (val == 0) { 699 wpa_printf(MSG_ERROR, "Line %d: no cipher values configured.", 700 line); 701 return -1; 702 } 703 return val; 704} 705 706 707#ifndef NO_CONFIG_WRITE 708static char * wpa_config_write_cipher(int cipher) 709{ 710 char *buf = os_zalloc(50); 711 if (buf == NULL) 712 return NULL; 713 714 if (wpa_write_ciphers(buf, buf + 50, cipher, " ") < 0) { 715 os_free(buf); 716 return NULL; 717 } 718 719 return buf; 720} 721#endif /* NO_CONFIG_WRITE */ 722 723 724static int wpa_config_parse_pairwise(const struct parse_data *data, 725 struct wpa_ssid *ssid, int line, 726 const char *value) 727{ 728 int val; 729 val = wpa_config_parse_cipher(line, value); 730 if (val == -1) 731 return -1; 732 if (val & ~WPA_ALLOWED_PAIRWISE_CIPHERS) { 733 wpa_printf(MSG_ERROR, "Line %d: not allowed pairwise cipher " 734 "(0x%x).", line, val); 735 return -1; 736 } 737 738 wpa_printf(MSG_MSGDUMP, "pairwise: 0x%x", val); 739 ssid->pairwise_cipher = val; 740 return 0; 741} 742 743 744#ifndef NO_CONFIG_WRITE 745static char * wpa_config_write_pairwise(const struct parse_data *data, 746 struct wpa_ssid *ssid) 747{ 748 return wpa_config_write_cipher(ssid->pairwise_cipher); 749} 750#endif /* NO_CONFIG_WRITE */ 751 752 753static int wpa_config_parse_group(const struct parse_data *data, 754 struct wpa_ssid *ssid, int line, 755 const char *value) 756{ 757 int val; 758 val = wpa_config_parse_cipher(line, value); 759 if (val == -1) 760 return -1; 761 if (val & ~WPA_ALLOWED_GROUP_CIPHERS) { 762 wpa_printf(MSG_ERROR, "Line %d: not allowed group cipher " 763 "(0x%x).", line, val); 764 return -1; 765 } 766 767 wpa_printf(MSG_MSGDUMP, "group: 0x%x", val); 768 ssid->group_cipher = val; 769 return 0; 770} 771 772 773#ifndef NO_CONFIG_WRITE 774static char * wpa_config_write_group(const struct parse_data *data, 775 struct wpa_ssid *ssid) 776{ 777 return wpa_config_write_cipher(ssid->group_cipher); 778} 779#endif /* NO_CONFIG_WRITE */ 780 781 782static int wpa_config_parse_auth_alg(const struct parse_data *data, 783 struct wpa_ssid *ssid, int line, 784 const char *value) 785{ 786 int val = 0, last, errors = 0; 787 char *start, *end, *buf; 788 789 buf = os_strdup(value); 790 if (buf == NULL) 791 return -1; 792 start = buf; 793 794 while (*start != '\0') { 795 while (*start == ' ' || *start == '\t') 796 start++; 797 if (*start == '\0') 798 break; 799 end = start; 800 while (*end != ' ' && *end != '\t' && *end != '\0') 801 end++; 802 last = *end == '\0'; 803 *end = '\0'; 804 if (os_strcmp(start, "OPEN") == 0) 805 val |= WPA_AUTH_ALG_OPEN; 806 else if (os_strcmp(start, "SHARED") == 0) 807 val |= WPA_AUTH_ALG_SHARED; 808 else if (os_strcmp(start, "LEAP") == 0) 809 val |= WPA_AUTH_ALG_LEAP; 810 else { 811 wpa_printf(MSG_ERROR, "Line %d: invalid auth_alg '%s'", 812 line, start); 813 errors++; 814 } 815 816 if (last) 817 break; 818 start = end + 1; 819 } 820 os_free(buf); 821 822 if (val == 0) { 823 wpa_printf(MSG_ERROR, 824 "Line %d: no auth_alg values configured.", line); 825 errors++; 826 } 827 828 wpa_printf(MSG_MSGDUMP, "auth_alg: 0x%x", val); 829 ssid->auth_alg = val; 830 return errors ? -1 : 0; 831} 832 833 834#ifndef NO_CONFIG_WRITE 835static char * wpa_config_write_auth_alg(const struct parse_data *data, 836 struct wpa_ssid *ssid) 837{ 838 char *buf, *pos, *end; 839 int ret; 840 841 pos = buf = os_zalloc(30); 842 if (buf == NULL) 843 return NULL; 844 end = buf + 30; 845 846 if (ssid->auth_alg & WPA_AUTH_ALG_OPEN) { 847 ret = os_snprintf(pos, end - pos, "%sOPEN", 848 pos == buf ? "" : " "); 849 if (ret < 0 || ret >= end - pos) { 850 end[-1] = '\0'; 851 return buf; 852 } 853 pos += ret; 854 } 855 856 if (ssid->auth_alg & WPA_AUTH_ALG_SHARED) { 857 ret = os_snprintf(pos, end - pos, "%sSHARED", 858 pos == buf ? "" : " "); 859 if (ret < 0 || ret >= end - pos) { 860 end[-1] = '\0'; 861 return buf; 862 } 863 pos += ret; 864 } 865 866 if (ssid->auth_alg & WPA_AUTH_ALG_LEAP) { 867 ret = os_snprintf(pos, end - pos, "%sLEAP", 868 pos == buf ? "" : " "); 869 if (ret < 0 || ret >= end - pos) { 870 end[-1] = '\0'; 871 return buf; 872 } 873 pos += ret; 874 } 875 876 if (pos == buf) { 877 os_free(buf); 878 buf = NULL; 879 } 880 881 return buf; 882} 883#endif /* NO_CONFIG_WRITE */ 884 885 886static int * wpa_config_parse_int_array(const char *value) 887{ 888 int *freqs; 889 size_t used, len; 890 const char *pos; 891 892 used = 0; 893 len = 10; 894 freqs = os_calloc(len + 1, sizeof(int)); 895 if (freqs == NULL) 896 return NULL; 897 898 pos = value; 899 while (pos) { 900 while (*pos == ' ') 901 pos++; 902 if (used == len) { 903 int *n; 904 size_t i; 905 n = os_realloc_array(freqs, len * 2 + 1, sizeof(int)); 906 if (n == NULL) { 907 os_free(freqs); 908 return NULL; 909 } 910 for (i = len; i <= len * 2; i++) 911 n[i] = 0; 912 freqs = n; 913 len *= 2; 914 } 915 916 freqs[used] = atoi(pos); 917 if (freqs[used] == 0) 918 break; 919 used++; 920 pos = os_strchr(pos + 1, ' '); 921 } 922 923 return freqs; 924} 925 926 927static int wpa_config_parse_scan_freq(const struct parse_data *data, 928 struct wpa_ssid *ssid, int line, 929 const char *value) 930{ 931 int *freqs; 932 933 freqs = wpa_config_parse_int_array(value); 934 if (freqs == NULL) 935 return -1; 936 if (freqs[0] == 0) { 937 os_free(freqs); 938 freqs = NULL; 939 } 940 os_free(ssid->scan_freq); 941 ssid->scan_freq = freqs; 942 943 return 0; 944} 945 946 947static int wpa_config_parse_freq_list(const struct parse_data *data, 948 struct wpa_ssid *ssid, int line, 949 const char *value) 950{ 951 int *freqs; 952 953 freqs = wpa_config_parse_int_array(value); 954 if (freqs == NULL) 955 return -1; 956 if (freqs[0] == 0) { 957 os_free(freqs); 958 freqs = NULL; 959 } 960 os_free(ssid->freq_list); 961 ssid->freq_list = freqs; 962 963 return 0; 964} 965 966 967#ifndef NO_CONFIG_WRITE 968static char * wpa_config_write_freqs(const struct parse_data *data, 969 const int *freqs) 970{ 971 char *buf, *pos, *end; 972 int i, ret; 973 size_t count; 974 975 if (freqs == NULL) 976 return NULL; 977 978 count = 0; 979 for (i = 0; freqs[i]; i++) 980 count++; 981 982 pos = buf = os_zalloc(10 * count + 1); 983 if (buf == NULL) 984 return NULL; 985 end = buf + 10 * count + 1; 986 987 for (i = 0; freqs[i]; i++) { 988 ret = os_snprintf(pos, end - pos, "%s%u", 989 i == 0 ? "" : " ", freqs[i]); 990 if (ret < 0 || ret >= end - pos) { 991 end[-1] = '\0'; 992 return buf; 993 } 994 pos += ret; 995 } 996 997 return buf; 998} 999 1000 1001static char * wpa_config_write_scan_freq(const struct parse_data *data, 1002 struct wpa_ssid *ssid) 1003{ 1004 return wpa_config_write_freqs(data, ssid->scan_freq); 1005} 1006 1007 1008static char * wpa_config_write_freq_list(const struct parse_data *data, 1009 struct wpa_ssid *ssid) 1010{ 1011 return wpa_config_write_freqs(data, ssid->freq_list); 1012} 1013#endif /* NO_CONFIG_WRITE */ 1014 1015 1016#ifdef IEEE8021X_EAPOL 1017static int wpa_config_parse_eap(const struct parse_data *data, 1018 struct wpa_ssid *ssid, int line, 1019 const char *value) 1020{ 1021 int last, errors = 0; 1022 char *start, *end, *buf; 1023 struct eap_method_type *methods = NULL, *tmp; 1024 size_t num_methods = 0; 1025 1026 buf = os_strdup(value); 1027 if (buf == NULL) 1028 return -1; 1029 start = buf; 1030 1031 while (*start != '\0') { 1032 while (*start == ' ' || *start == '\t') 1033 start++; 1034 if (*start == '\0') 1035 break; 1036 end = start; 1037 while (*end != ' ' && *end != '\t' && *end != '\0') 1038 end++; 1039 last = *end == '\0'; 1040 *end = '\0'; 1041 tmp = methods; 1042 methods = os_realloc_array(methods, num_methods + 1, 1043 sizeof(*methods)); 1044 if (methods == NULL) { 1045 os_free(tmp); 1046 os_free(buf); 1047 return -1; 1048 } 1049 methods[num_methods].method = eap_peer_get_type( 1050 start, &methods[num_methods].vendor); 1051 if (methods[num_methods].vendor == EAP_VENDOR_IETF && 1052 methods[num_methods].method == EAP_TYPE_NONE) { 1053 wpa_printf(MSG_ERROR, "Line %d: unknown EAP method " 1054 "'%s'", line, start); 1055 wpa_printf(MSG_ERROR, "You may need to add support for" 1056 " this EAP method during wpa_supplicant\n" 1057 "build time configuration.\n" 1058 "See README for more information."); 1059 errors++; 1060 } else if (methods[num_methods].vendor == EAP_VENDOR_IETF && 1061 methods[num_methods].method == EAP_TYPE_LEAP) 1062 ssid->leap++; 1063 else 1064 ssid->non_leap++; 1065 num_methods++; 1066 if (last) 1067 break; 1068 start = end + 1; 1069 } 1070 os_free(buf); 1071 1072 tmp = methods; 1073 methods = os_realloc_array(methods, num_methods + 1, sizeof(*methods)); 1074 if (methods == NULL) { 1075 os_free(tmp); 1076 return -1; 1077 } 1078 methods[num_methods].vendor = EAP_VENDOR_IETF; 1079 methods[num_methods].method = EAP_TYPE_NONE; 1080 num_methods++; 1081 1082 wpa_hexdump(MSG_MSGDUMP, "eap methods", 1083 (u8 *) methods, num_methods * sizeof(*methods)); 1084 os_free(ssid->eap.eap_methods); 1085 ssid->eap.eap_methods = methods; 1086 return errors ? -1 : 0; 1087} 1088 1089 1090static char * wpa_config_write_eap(const struct parse_data *data, 1091 struct wpa_ssid *ssid) 1092{ 1093 int i, ret; 1094 char *buf, *pos, *end; 1095 const struct eap_method_type *eap_methods = ssid->eap.eap_methods; 1096 const char *name; 1097 1098 if (eap_methods == NULL) 1099 return NULL; 1100 1101 pos = buf = os_zalloc(100); 1102 if (buf == NULL) 1103 return NULL; 1104 end = buf + 100; 1105 1106 for (i = 0; eap_methods[i].vendor != EAP_VENDOR_IETF || 1107 eap_methods[i].method != EAP_TYPE_NONE; i++) { 1108 name = eap_get_name(eap_methods[i].vendor, 1109 eap_methods[i].method); 1110 if (name) { 1111 ret = os_snprintf(pos, end - pos, "%s%s", 1112 pos == buf ? "" : " ", name); 1113 if (ret < 0 || ret >= end - pos) 1114 break; 1115 pos += ret; 1116 } 1117 } 1118 1119 end[-1] = '\0'; 1120 1121 return buf; 1122} 1123 1124 1125static int wpa_config_parse_password(const struct parse_data *data, 1126 struct wpa_ssid *ssid, int line, 1127 const char *value) 1128{ 1129 u8 *hash; 1130 1131 if (os_strcmp(value, "NULL") == 0) { 1132 wpa_printf(MSG_DEBUG, "Unset configuration string 'password'"); 1133 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1134 ssid->eap.password = NULL; 1135 ssid->eap.password_len = 0; 1136 return 0; 1137 } 1138 1139#ifdef CONFIG_EXT_PASSWORD 1140 if (os_strncmp(value, "ext:", 4) == 0) { 1141 char *name = os_strdup(value + 4); 1142 if (name == NULL) 1143 return -1; 1144 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1145 ssid->eap.password = (u8 *) name; 1146 ssid->eap.password_len = os_strlen(name); 1147 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_PASSWORD_NTHASH; 1148 ssid->eap.flags |= EAP_CONFIG_FLAGS_EXT_PASSWORD; 1149 return 0; 1150 } 1151#endif /* CONFIG_EXT_PASSWORD */ 1152 1153 if (os_strncmp(value, "hash:", 5) != 0) { 1154 char *tmp; 1155 size_t res_len; 1156 1157 tmp = wpa_config_parse_string(value, &res_len); 1158 if (tmp == NULL) { 1159 wpa_printf(MSG_ERROR, "Line %d: failed to parse " 1160 "password.", line); 1161 return -1; 1162 } 1163 wpa_hexdump_ascii_key(MSG_MSGDUMP, data->name, 1164 (u8 *) tmp, res_len); 1165 1166 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1167 ssid->eap.password = (u8 *) tmp; 1168 ssid->eap.password_len = res_len; 1169 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_PASSWORD_NTHASH; 1170 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_EXT_PASSWORD; 1171 1172 return 0; 1173 } 1174 1175 1176 /* NtPasswordHash: hash:<32 hex digits> */ 1177 if (os_strlen(value + 5) != 2 * 16) { 1178 wpa_printf(MSG_ERROR, "Line %d: Invalid password hash length " 1179 "(expected 32 hex digits)", line); 1180 return -1; 1181 } 1182 1183 hash = os_malloc(16); 1184 if (hash == NULL) 1185 return -1; 1186 1187 if (hexstr2bin(value + 5, hash, 16)) { 1188 os_free(hash); 1189 wpa_printf(MSG_ERROR, "Line %d: Invalid password hash", line); 1190 return -1; 1191 } 1192 1193 wpa_hexdump_key(MSG_MSGDUMP, data->name, hash, 16); 1194 1195 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1196 ssid->eap.password = hash; 1197 ssid->eap.password_len = 16; 1198 ssid->eap.flags |= EAP_CONFIG_FLAGS_PASSWORD_NTHASH; 1199 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_EXT_PASSWORD; 1200 1201 return 0; 1202} 1203 1204 1205static char * wpa_config_write_password(const struct parse_data *data, 1206 struct wpa_ssid *ssid) 1207{ 1208 char *buf; 1209 1210 if (ssid->eap.password == NULL) 1211 return NULL; 1212 1213#ifdef CONFIG_EXT_PASSWORD 1214 if (ssid->eap.flags & EAP_CONFIG_FLAGS_EXT_PASSWORD) { 1215 buf = os_zalloc(4 + ssid->eap.password_len + 1); 1216 if (buf == NULL) 1217 return NULL; 1218 os_memcpy(buf, "ext:", 4); 1219 os_memcpy(buf + 4, ssid->eap.password, ssid->eap.password_len); 1220 return buf; 1221 } 1222#endif /* CONFIG_EXT_PASSWORD */ 1223 1224 if (!(ssid->eap.flags & EAP_CONFIG_FLAGS_PASSWORD_NTHASH)) { 1225 return wpa_config_write_string( 1226 ssid->eap.password, ssid->eap.password_len); 1227 } 1228 1229 buf = os_malloc(5 + 32 + 1); 1230 if (buf == NULL) 1231 return NULL; 1232 1233 os_memcpy(buf, "hash:", 5); 1234 wpa_snprintf_hex(buf + 5, 32 + 1, ssid->eap.password, 16); 1235 1236 return buf; 1237} 1238#endif /* IEEE8021X_EAPOL */ 1239 1240 1241static int wpa_config_parse_wep_key(u8 *key, size_t *len, int line, 1242 const char *value, int idx) 1243{ 1244 char *buf, title[20]; 1245 int res; 1246 1247 buf = wpa_config_parse_string(value, len); 1248 if (buf == NULL) { 1249 wpa_printf(MSG_ERROR, "Line %d: Invalid WEP key %d '%s'.", 1250 line, idx, value); 1251 return -1; 1252 } 1253 if (*len > MAX_WEP_KEY_LEN) { 1254 wpa_printf(MSG_ERROR, "Line %d: Too long WEP key %d '%s'.", 1255 line, idx, value); 1256 os_free(buf); 1257 return -1; 1258 } 1259 if (*len && *len != 5 && *len != 13 && *len != 16) { 1260 wpa_printf(MSG_ERROR, "Line %d: Invalid WEP key length %u - " 1261 "this network block will be ignored", 1262 line, (unsigned int) *len); 1263 } 1264 os_memcpy(key, buf, *len); 1265 str_clear_free(buf); 1266 res = os_snprintf(title, sizeof(title), "wep_key%d", idx); 1267 if (res >= 0 && (size_t) res < sizeof(title)) 1268 wpa_hexdump_key(MSG_MSGDUMP, title, key, *len); 1269 return 0; 1270} 1271 1272 1273static int wpa_config_parse_wep_key0(const struct parse_data *data, 1274 struct wpa_ssid *ssid, int line, 1275 const char *value) 1276{ 1277 return wpa_config_parse_wep_key(ssid->wep_key[0], 1278 &ssid->wep_key_len[0], line, 1279 value, 0); 1280} 1281 1282 1283static int wpa_config_parse_wep_key1(const struct parse_data *data, 1284 struct wpa_ssid *ssid, int line, 1285 const char *value) 1286{ 1287 return wpa_config_parse_wep_key(ssid->wep_key[1], 1288 &ssid->wep_key_len[1], line, 1289 value, 1); 1290} 1291 1292 1293static int wpa_config_parse_wep_key2(const struct parse_data *data, 1294 struct wpa_ssid *ssid, int line, 1295 const char *value) 1296{ 1297 return wpa_config_parse_wep_key(ssid->wep_key[2], 1298 &ssid->wep_key_len[2], line, 1299 value, 2); 1300} 1301 1302 1303static int wpa_config_parse_wep_key3(const struct parse_data *data, 1304 struct wpa_ssid *ssid, int line, 1305 const char *value) 1306{ 1307 return wpa_config_parse_wep_key(ssid->wep_key[3], 1308 &ssid->wep_key_len[3], line, 1309 value, 3); 1310} 1311 1312 1313#ifndef NO_CONFIG_WRITE 1314static char * wpa_config_write_wep_key(struct wpa_ssid *ssid, int idx) 1315{ 1316 if (ssid->wep_key_len[idx] == 0) 1317 return NULL; 1318 return wpa_config_write_string(ssid->wep_key[idx], 1319 ssid->wep_key_len[idx]); 1320} 1321 1322 1323static char * wpa_config_write_wep_key0(const struct parse_data *data, 1324 struct wpa_ssid *ssid) 1325{ 1326 return wpa_config_write_wep_key(ssid, 0); 1327} 1328 1329 1330static char * wpa_config_write_wep_key1(const struct parse_data *data, 1331 struct wpa_ssid *ssid) 1332{ 1333 return wpa_config_write_wep_key(ssid, 1); 1334} 1335 1336 1337static char * wpa_config_write_wep_key2(const struct parse_data *data, 1338 struct wpa_ssid *ssid) 1339{ 1340 return wpa_config_write_wep_key(ssid, 2); 1341} 1342 1343 1344static char * wpa_config_write_wep_key3(const struct parse_data *data, 1345 struct wpa_ssid *ssid) 1346{ 1347 return wpa_config_write_wep_key(ssid, 3); 1348} 1349#endif /* NO_CONFIG_WRITE */ 1350 1351 1352#ifdef CONFIG_P2P 1353 1354static int wpa_config_parse_go_p2p_dev_addr(const struct parse_data *data, 1355 struct wpa_ssid *ssid, int line, 1356 const char *value) 1357{ 1358 if (value[0] == '\0' || os_strcmp(value, "\"\"") == 0 || 1359 os_strcmp(value, "any") == 0) { 1360 os_memset(ssid->go_p2p_dev_addr, 0, ETH_ALEN); 1361 wpa_printf(MSG_MSGDUMP, "GO P2P Device Address any"); 1362 return 0; 1363 } 1364 if (hwaddr_aton(value, ssid->go_p2p_dev_addr)) { 1365 wpa_printf(MSG_ERROR, "Line %d: Invalid GO P2P Device Address '%s'.", 1366 line, value); 1367 return -1; 1368 } 1369 ssid->bssid_set = 1; 1370 wpa_printf(MSG_MSGDUMP, "GO P2P Device Address " MACSTR, 1371 MAC2STR(ssid->go_p2p_dev_addr)); 1372 return 0; 1373} 1374 1375 1376#ifndef NO_CONFIG_WRITE 1377static char * wpa_config_write_go_p2p_dev_addr(const struct parse_data *data, 1378 struct wpa_ssid *ssid) 1379{ 1380 char *value; 1381 int res; 1382 1383 if (is_zero_ether_addr(ssid->go_p2p_dev_addr)) 1384 return NULL; 1385 1386 value = os_malloc(20); 1387 if (value == NULL) 1388 return NULL; 1389 res = os_snprintf(value, 20, MACSTR, MAC2STR(ssid->go_p2p_dev_addr)); 1390 if (res < 0 || res >= 20) { 1391 os_free(value); 1392 return NULL; 1393 } 1394 value[20 - 1] = '\0'; 1395 return value; 1396} 1397#endif /* NO_CONFIG_WRITE */ 1398 1399 1400static int wpa_config_parse_p2p_client_list(const struct parse_data *data, 1401 struct wpa_ssid *ssid, int line, 1402 const char *value) 1403{ 1404 const char *pos; 1405 u8 *buf, *n, addr[ETH_ALEN]; 1406 size_t count; 1407 1408 buf = NULL; 1409 count = 0; 1410 1411 pos = value; 1412 while (pos && *pos) { 1413 while (*pos == ' ') 1414 pos++; 1415 1416 if (hwaddr_aton(pos, addr)) { 1417 if (count == 0) { 1418 wpa_printf(MSG_ERROR, "Line %d: Invalid " 1419 "p2p_client_list address '%s'.", 1420 line, value); 1421 os_free(buf); 1422 return -1; 1423 } 1424 /* continue anyway since this could have been from a 1425 * truncated configuration file line */ 1426 wpa_printf(MSG_INFO, "Line %d: Ignore likely " 1427 "truncated p2p_client_list address '%s'", 1428 line, pos); 1429 } else { 1430 n = os_realloc_array(buf, count + 1, ETH_ALEN); 1431 if (n == NULL) { 1432 os_free(buf); 1433 return -1; 1434 } 1435 buf = n; 1436 os_memmove(buf + ETH_ALEN, buf, count * ETH_ALEN); 1437 os_memcpy(buf, addr, ETH_ALEN); 1438 count++; 1439 wpa_hexdump(MSG_MSGDUMP, "p2p_client_list", 1440 addr, ETH_ALEN); 1441 } 1442 1443 pos = os_strchr(pos, ' '); 1444 } 1445 1446 os_free(ssid->p2p_client_list); 1447 ssid->p2p_client_list = buf; 1448 ssid->num_p2p_clients = count; 1449 1450 return 0; 1451} 1452 1453 1454#ifndef NO_CONFIG_WRITE 1455static char * wpa_config_write_p2p_client_list(const struct parse_data *data, 1456 struct wpa_ssid *ssid) 1457{ 1458 char *value, *end, *pos; 1459 int res; 1460 size_t i; 1461 1462 if (ssid->p2p_client_list == NULL || ssid->num_p2p_clients == 0) 1463 return NULL; 1464 1465 value = os_malloc(20 * ssid->num_p2p_clients); 1466 if (value == NULL) 1467 return NULL; 1468 pos = value; 1469 end = value + 20 * ssid->num_p2p_clients; 1470 1471 for (i = ssid->num_p2p_clients; i > 0; i--) { 1472 res = os_snprintf(pos, end - pos, MACSTR " ", 1473 MAC2STR(ssid->p2p_client_list + 1474 (i - 1) * ETH_ALEN)); 1475 if (res < 0 || res >= end - pos) { 1476 os_free(value); 1477 return NULL; 1478 } 1479 pos += res; 1480 } 1481 1482 if (pos > value) 1483 pos[-1] = '\0'; 1484 1485 return value; 1486} 1487#endif /* NO_CONFIG_WRITE */ 1488 1489 1490static int wpa_config_parse_psk_list(const struct parse_data *data, 1491 struct wpa_ssid *ssid, int line, 1492 const char *value) 1493{ 1494 struct psk_list_entry *p; 1495 const char *pos; 1496 1497 p = os_zalloc(sizeof(*p)); 1498 if (p == NULL) 1499 return -1; 1500 1501 pos = value; 1502 if (os_strncmp(pos, "P2P-", 4) == 0) { 1503 p->p2p = 1; 1504 pos += 4; 1505 } 1506 1507 if (hwaddr_aton(pos, p->addr)) { 1508 wpa_printf(MSG_ERROR, "Line %d: Invalid psk_list address '%s'", 1509 line, pos); 1510 os_free(p); 1511 return -1; 1512 } 1513 pos += 17; 1514 if (*pos != '-') { 1515 wpa_printf(MSG_ERROR, "Line %d: Invalid psk_list '%s'", 1516 line, pos); 1517 os_free(p); 1518 return -1; 1519 } 1520 pos++; 1521 1522 if (hexstr2bin(pos, p->psk, PMK_LEN) || pos[PMK_LEN * 2] != '\0') { 1523 wpa_printf(MSG_ERROR, "Line %d: Invalid psk_list PSK '%s'", 1524 line, pos); 1525 os_free(p); 1526 return -1; 1527 } 1528 1529 dl_list_add(&ssid->psk_list, &p->list); 1530 1531 return 0; 1532} 1533 1534 1535#ifndef NO_CONFIG_WRITE 1536static char * wpa_config_write_psk_list(const struct parse_data *data, 1537 struct wpa_ssid *ssid) 1538{ 1539 return NULL; 1540} 1541#endif /* NO_CONFIG_WRITE */ 1542 1543#endif /* CONFIG_P2P */ 1544 1545/* Helper macros for network block parser */ 1546 1547#ifdef OFFSET 1548#undef OFFSET 1549#endif /* OFFSET */ 1550/* OFFSET: Get offset of a variable within the wpa_ssid structure */ 1551#define OFFSET(v) ((void *) &((struct wpa_ssid *) 0)->v) 1552 1553/* STR: Define a string variable for an ASCII string; f = field name */ 1554#ifdef NO_CONFIG_WRITE 1555#define _STR(f) #f, wpa_config_parse_str, OFFSET(f) 1556#define _STRe(f) #f, wpa_config_parse_str, OFFSET(eap.f) 1557#else /* NO_CONFIG_WRITE */ 1558#define _STR(f) #f, wpa_config_parse_str, wpa_config_write_str, OFFSET(f) 1559#define _STRe(f) #f, wpa_config_parse_str, wpa_config_write_str, OFFSET(eap.f) 1560#endif /* NO_CONFIG_WRITE */ 1561#define STR(f) _STR(f), NULL, NULL, NULL, 0 1562#define STRe(f) _STRe(f), NULL, NULL, NULL, 0 1563#define STR_KEY(f) _STR(f), NULL, NULL, NULL, 1 1564#define STR_KEYe(f) _STRe(f), NULL, NULL, NULL, 1 1565 1566/* STR_LEN: Define a string variable with a separate variable for storing the 1567 * data length. Unlike STR(), this can be used to store arbitrary binary data 1568 * (i.e., even nul termination character). */ 1569#define _STR_LEN(f) _STR(f), OFFSET(f ## _len) 1570#define _STR_LENe(f) _STRe(f), OFFSET(eap.f ## _len) 1571#define STR_LEN(f) _STR_LEN(f), NULL, NULL, 0 1572#define STR_LENe(f) _STR_LENe(f), NULL, NULL, 0 1573#define STR_LEN_KEY(f) _STR_LEN(f), NULL, NULL, 1 1574 1575/* STR_RANGE: Like STR_LEN(), but with minimum and maximum allowed length 1576 * explicitly specified. */ 1577#define _STR_RANGE(f, min, max) _STR_LEN(f), (void *) (min), (void *) (max) 1578#define STR_RANGE(f, min, max) _STR_RANGE(f, min, max), 0 1579#define STR_RANGE_KEY(f, min, max) _STR_RANGE(f, min, max), 1 1580 1581#ifdef NO_CONFIG_WRITE 1582#define _INT(f) #f, wpa_config_parse_int, OFFSET(f), (void *) 0 1583#define _INTe(f) #f, wpa_config_parse_int, OFFSET(eap.f), (void *) 0 1584#else /* NO_CONFIG_WRITE */ 1585#define _INT(f) #f, wpa_config_parse_int, wpa_config_write_int, \ 1586 OFFSET(f), (void *) 0 1587#define _INTe(f) #f, wpa_config_parse_int, wpa_config_write_int, \ 1588 OFFSET(eap.f), (void *) 0 1589#endif /* NO_CONFIG_WRITE */ 1590 1591/* INT: Define an integer variable */ 1592#define INT(f) _INT(f), NULL, NULL, 0 1593#define INTe(f) _INTe(f), NULL, NULL, 0 1594 1595/* INT_RANGE: Define an integer variable with allowed value range */ 1596#define INT_RANGE(f, min, max) _INT(f), (void *) (min), (void *) (max), 0 1597 1598/* FUNC: Define a configuration variable that uses a custom function for 1599 * parsing and writing the value. */ 1600#ifdef NO_CONFIG_WRITE 1601#define _FUNC(f) #f, wpa_config_parse_ ## f, NULL, NULL, NULL, NULL 1602#else /* NO_CONFIG_WRITE */ 1603#define _FUNC(f) #f, wpa_config_parse_ ## f, wpa_config_write_ ## f, \ 1604 NULL, NULL, NULL, NULL 1605#endif /* NO_CONFIG_WRITE */ 1606#define FUNC(f) _FUNC(f), 0 1607#define FUNC_KEY(f) _FUNC(f), 1 1608 1609/* 1610 * Table of network configuration variables. This table is used to parse each 1611 * network configuration variable, e.g., each line in wpa_supplicant.conf file 1612 * that is inside a network block. 1613 * 1614 * This table is generated using the helper macros defined above and with 1615 * generous help from the C pre-processor. The field name is stored as a string 1616 * into .name and for STR and INT types, the offset of the target buffer within 1617 * struct wpa_ssid is stored in .param1. .param2 (if not NULL) is similar 1618 * offset to the field containing the length of the configuration variable. 1619 * .param3 and .param4 can be used to mark the allowed range (length for STR 1620 * and value for INT). 1621 * 1622 * For each configuration line in wpa_supplicant.conf, the parser goes through 1623 * this table and select the entry that matches with the field name. The parser 1624 * function (.parser) is then called to parse the actual value of the field. 1625 * 1626 * This kind of mechanism makes it easy to add new configuration parameters, 1627 * since only one line needs to be added into this table and into the 1628 * struct wpa_ssid definition if the new variable is either a string or 1629 * integer. More complex types will need to use their own parser and writer 1630 * functions. 1631 */ 1632static const struct parse_data ssid_fields[] = { 1633 { STR_RANGE(ssid, 0, MAX_SSID_LEN) }, 1634 { INT_RANGE(scan_ssid, 0, 1) }, 1635 { FUNC(bssid) }, 1636 { FUNC_KEY(psk) }, 1637 { FUNC(proto) }, 1638 { FUNC(key_mgmt) }, 1639 { INT(bg_scan_period) }, 1640 { FUNC(pairwise) }, 1641 { FUNC(group) }, 1642 { FUNC(auth_alg) }, 1643 { FUNC(scan_freq) }, 1644 { FUNC(freq_list) }, 1645#ifdef IEEE8021X_EAPOL 1646 { FUNC(eap) }, 1647 { STR_LENe(identity) }, 1648 { STR_LENe(anonymous_identity) }, 1649 { FUNC_KEY(password) }, 1650 { STRe(ca_cert) }, 1651 { STRe(ca_path) }, 1652 { STRe(client_cert) }, 1653 { STRe(private_key) }, 1654 { STR_KEYe(private_key_passwd) }, 1655 { STRe(dh_file) }, 1656 { STRe(subject_match) }, 1657 { STRe(altsubject_match) }, 1658 { STRe(domain_suffix_match) }, 1659 { STRe(ca_cert2) }, 1660 { STRe(ca_path2) }, 1661 { STRe(client_cert2) }, 1662 { STRe(private_key2) }, 1663 { STR_KEYe(private_key2_passwd) }, 1664 { STRe(dh_file2) }, 1665 { STRe(subject_match2) }, 1666 { STRe(altsubject_match2) }, 1667 { STRe(domain_suffix_match2) }, 1668 { STRe(phase1) }, 1669 { STRe(phase2) }, 1670 { STRe(pcsc) }, 1671 { STR_KEYe(pin) }, 1672 { STRe(engine_id) }, 1673 { STRe(key_id) }, 1674 { STRe(cert_id) }, 1675 { STRe(ca_cert_id) }, 1676 { STR_KEYe(pin2) }, 1677 { STRe(engine2_id) }, 1678 { STRe(key2_id) }, 1679 { STRe(cert2_id) }, 1680 { STRe(ca_cert2_id) }, 1681 { INTe(engine) }, 1682 { INTe(engine2) }, 1683 { INT(eapol_flags) }, 1684 { INTe(sim_num) }, 1685#endif /* IEEE8021X_EAPOL */ 1686 { FUNC_KEY(wep_key0) }, 1687 { FUNC_KEY(wep_key1) }, 1688 { FUNC_KEY(wep_key2) }, 1689 { FUNC_KEY(wep_key3) }, 1690 { INT(wep_tx_keyidx) }, 1691 { INT(priority) }, 1692#ifdef IEEE8021X_EAPOL 1693 { INT(eap_workaround) }, 1694 { STRe(pac_file) }, 1695 { INTe(fragment_size) }, 1696 { INTe(ocsp) }, 1697#endif /* IEEE8021X_EAPOL */ 1698 { INT_RANGE(mode, 0, 4) }, 1699 { INT_RANGE(proactive_key_caching, 0, 1) }, 1700 { INT_RANGE(disabled, 0, 2) }, 1701 { STR(id_str) }, 1702#ifdef CONFIG_IEEE80211W 1703 { INT_RANGE(ieee80211w, 0, 2) }, 1704#endif /* CONFIG_IEEE80211W */ 1705 { INT_RANGE(peerkey, 0, 1) }, 1706 { INT_RANGE(mixed_cell, 0, 1) }, 1707 { INT_RANGE(frequency, 0, 65000) }, 1708 { INT(wpa_ptk_rekey) }, 1709 { STR(bgscan) }, 1710 { INT_RANGE(ignore_broadcast_ssid, 0, 2) }, 1711#ifdef CONFIG_P2P 1712 { FUNC(go_p2p_dev_addr) }, 1713 { FUNC(p2p_client_list) }, 1714 { FUNC(psk_list) }, 1715#endif /* CONFIG_P2P */ 1716#ifdef CONFIG_HT_OVERRIDES 1717 { INT_RANGE(disable_ht, 0, 1) }, 1718 { INT_RANGE(disable_ht40, -1, 1) }, 1719 { INT_RANGE(disable_sgi, 0, 1) }, 1720 { INT_RANGE(disable_ldpc, 0, 1) }, 1721 { INT_RANGE(ht40_intolerant, 0, 1) }, 1722 { INT_RANGE(disable_max_amsdu, -1, 1) }, 1723 { INT_RANGE(ampdu_factor, -1, 3) }, 1724 { INT_RANGE(ampdu_density, -1, 7) }, 1725 { STR(ht_mcs) }, 1726#endif /* CONFIG_HT_OVERRIDES */ 1727#ifdef CONFIG_VHT_OVERRIDES 1728 { INT_RANGE(disable_vht, 0, 1) }, 1729 { INT(vht_capa) }, 1730 { INT(vht_capa_mask) }, 1731 { INT_RANGE(vht_rx_mcs_nss_1, -1, 3) }, 1732 { INT_RANGE(vht_rx_mcs_nss_2, -1, 3) }, 1733 { INT_RANGE(vht_rx_mcs_nss_3, -1, 3) }, 1734 { INT_RANGE(vht_rx_mcs_nss_4, -1, 3) }, 1735 { INT_RANGE(vht_rx_mcs_nss_5, -1, 3) }, 1736 { INT_RANGE(vht_rx_mcs_nss_6, -1, 3) }, 1737 { INT_RANGE(vht_rx_mcs_nss_7, -1, 3) }, 1738 { INT_RANGE(vht_rx_mcs_nss_8, -1, 3) }, 1739 { INT_RANGE(vht_tx_mcs_nss_1, -1, 3) }, 1740 { INT_RANGE(vht_tx_mcs_nss_2, -1, 3) }, 1741 { INT_RANGE(vht_tx_mcs_nss_3, -1, 3) }, 1742 { INT_RANGE(vht_tx_mcs_nss_4, -1, 3) }, 1743 { INT_RANGE(vht_tx_mcs_nss_5, -1, 3) }, 1744 { INT_RANGE(vht_tx_mcs_nss_6, -1, 3) }, 1745 { INT_RANGE(vht_tx_mcs_nss_7, -1, 3) }, 1746 { INT_RANGE(vht_tx_mcs_nss_8, -1, 3) }, 1747#endif /* CONFIG_VHT_OVERRIDES */ 1748 { INT(ap_max_inactivity) }, 1749 { INT(dtim_period) }, 1750 { INT(beacon_int) }, 1751#ifdef CONFIG_MACSEC 1752 { INT_RANGE(macsec_policy, 0, 1) }, 1753#endif /* CONFIG_MACSEC */ 1754#ifdef CONFIG_HS20 1755 { INT(update_identifier) }, 1756#endif /* CONFIG_HS20 */ 1757}; 1758 1759#undef OFFSET 1760#undef _STR 1761#undef STR 1762#undef STR_KEY 1763#undef _STR_LEN 1764#undef STR_LEN 1765#undef STR_LEN_KEY 1766#undef _STR_RANGE 1767#undef STR_RANGE 1768#undef STR_RANGE_KEY 1769#undef _INT 1770#undef INT 1771#undef INT_RANGE 1772#undef _FUNC 1773#undef FUNC 1774#undef FUNC_KEY 1775#define NUM_SSID_FIELDS ARRAY_SIZE(ssid_fields) 1776 1777 1778/** 1779 * wpa_config_add_prio_network - Add a network to priority lists 1780 * @config: Configuration data from wpa_config_read() 1781 * @ssid: Pointer to the network configuration to be added to the list 1782 * Returns: 0 on success, -1 on failure 1783 * 1784 * This function is used to add a network block to the priority list of 1785 * networks. This must be called for each network when reading in the full 1786 * configuration. In addition, this can be used indirectly when updating 1787 * priorities by calling wpa_config_update_prio_list(). 1788 */ 1789int wpa_config_add_prio_network(struct wpa_config *config, 1790 struct wpa_ssid *ssid) 1791{ 1792 int prio; 1793 struct wpa_ssid *prev, **nlist; 1794 1795 /* 1796 * Add to an existing priority list if one is available for the 1797 * configured priority level for this network. 1798 */ 1799 for (prio = 0; prio < config->num_prio; prio++) { 1800 prev = config->pssid[prio]; 1801 if (prev->priority == ssid->priority) { 1802 while (prev->pnext) 1803 prev = prev->pnext; 1804 prev->pnext = ssid; 1805 return 0; 1806 } 1807 } 1808 1809 /* First network for this priority - add a new priority list */ 1810 nlist = os_realloc_array(config->pssid, config->num_prio + 1, 1811 sizeof(struct wpa_ssid *)); 1812 if (nlist == NULL) 1813 return -1; 1814 1815 for (prio = 0; prio < config->num_prio; prio++) { 1816 if (nlist[prio]->priority < ssid->priority) { 1817 os_memmove(&nlist[prio + 1], &nlist[prio], 1818 (config->num_prio - prio) * 1819 sizeof(struct wpa_ssid *)); 1820 break; 1821 } 1822 } 1823 1824 nlist[prio] = ssid; 1825 config->num_prio++; 1826 config->pssid = nlist; 1827 1828 return 0; 1829} 1830 1831 1832/** 1833 * wpa_config_update_prio_list - Update network priority list 1834 * @config: Configuration data from wpa_config_read() 1835 * Returns: 0 on success, -1 on failure 1836 * 1837 * This function is called to update the priority list of networks in the 1838 * configuration when a network is being added or removed. This is also called 1839 * if a priority for a network is changed. 1840 */ 1841int wpa_config_update_prio_list(struct wpa_config *config) 1842{ 1843 struct wpa_ssid *ssid; 1844 int ret = 0; 1845 1846 os_free(config->pssid); 1847 config->pssid = NULL; 1848 config->num_prio = 0; 1849 1850 ssid = config->ssid; 1851 while (ssid) { 1852 ssid->pnext = NULL; 1853 if (wpa_config_add_prio_network(config, ssid) < 0) 1854 ret = -1; 1855 ssid = ssid->next; 1856 } 1857 1858 return ret; 1859} 1860 1861 1862#ifdef IEEE8021X_EAPOL 1863static void eap_peer_config_free(struct eap_peer_config *eap) 1864{ 1865 os_free(eap->eap_methods); 1866 bin_clear_free(eap->identity, eap->identity_len); 1867 os_free(eap->anonymous_identity); 1868 bin_clear_free(eap->password, eap->password_len); 1869 os_free(eap->ca_cert); 1870 os_free(eap->ca_path); 1871 os_free(eap->client_cert); 1872 os_free(eap->private_key); 1873 str_clear_free(eap->private_key_passwd); 1874 os_free(eap->dh_file); 1875 os_free(eap->subject_match); 1876 os_free(eap->altsubject_match); 1877 os_free(eap->domain_suffix_match); 1878 os_free(eap->ca_cert2); 1879 os_free(eap->ca_path2); 1880 os_free(eap->client_cert2); 1881 os_free(eap->private_key2); 1882 str_clear_free(eap->private_key2_passwd); 1883 os_free(eap->dh_file2); 1884 os_free(eap->subject_match2); 1885 os_free(eap->altsubject_match2); 1886 os_free(eap->domain_suffix_match2); 1887 os_free(eap->phase1); 1888 os_free(eap->phase2); 1889 os_free(eap->pcsc); 1890 str_clear_free(eap->pin); 1891 os_free(eap->engine_id); 1892 os_free(eap->key_id); 1893 os_free(eap->cert_id); 1894 os_free(eap->ca_cert_id); 1895 os_free(eap->key2_id); 1896 os_free(eap->cert2_id); 1897 os_free(eap->ca_cert2_id); 1898 str_clear_free(eap->pin2); 1899 os_free(eap->engine2_id); 1900 os_free(eap->otp); 1901 os_free(eap->pending_req_otp); 1902 os_free(eap->pac_file); 1903 bin_clear_free(eap->new_password, eap->new_password_len); 1904 str_clear_free(eap->external_sim_resp); 1905} 1906#endif /* IEEE8021X_EAPOL */ 1907 1908 1909/** 1910 * wpa_config_free_ssid - Free network/ssid configuration data 1911 * @ssid: Configuration data for the network 1912 * 1913 * This function frees all resources allocated for the network configuration 1914 * data. 1915 */ 1916void wpa_config_free_ssid(struct wpa_ssid *ssid) 1917{ 1918 struct psk_list_entry *psk; 1919 1920 os_free(ssid->ssid); 1921 os_memset(ssid->psk, 0, sizeof(ssid->psk)); 1922 str_clear_free(ssid->passphrase); 1923 os_free(ssid->ext_psk); 1924#ifdef IEEE8021X_EAPOL 1925 eap_peer_config_free(&ssid->eap); 1926#endif /* IEEE8021X_EAPOL */ 1927 os_free(ssid->id_str); 1928 os_free(ssid->scan_freq); 1929 os_free(ssid->freq_list); 1930 os_free(ssid->bgscan); 1931 os_free(ssid->p2p_client_list); 1932#ifdef CONFIG_HT_OVERRIDES 1933 os_free(ssid->ht_mcs); 1934#endif /* CONFIG_HT_OVERRIDES */ 1935 while ((psk = dl_list_first(&ssid->psk_list, struct psk_list_entry, 1936 list))) { 1937 dl_list_del(&psk->list); 1938 os_free(psk); 1939 } 1940 os_free(ssid); 1941} 1942 1943 1944void wpa_config_free_cred(struct wpa_cred *cred) 1945{ 1946 size_t i; 1947 1948 os_free(cred->realm); 1949 str_clear_free(cred->username); 1950 str_clear_free(cred->password); 1951 os_free(cred->ca_cert); 1952 os_free(cred->client_cert); 1953 os_free(cred->private_key); 1954 str_clear_free(cred->private_key_passwd); 1955 os_free(cred->imsi); 1956 str_clear_free(cred->milenage); 1957 for (i = 0; i < cred->num_domain; i++) 1958 os_free(cred->domain[i]); 1959 os_free(cred->domain); 1960 os_free(cred->domain_suffix_match); 1961 os_free(cred->eap_method); 1962 os_free(cred->phase1); 1963 os_free(cred->phase2); 1964 os_free(cred->excluded_ssid); 1965 os_free(cred->roaming_partner); 1966 os_free(cred->provisioning_sp); 1967 for (i = 0; i < cred->num_req_conn_capab; i++) 1968 os_free(cred->req_conn_capab_port[i]); 1969 os_free(cred->req_conn_capab_port); 1970 os_free(cred->req_conn_capab_proto); 1971 os_free(cred); 1972} 1973 1974 1975void wpa_config_flush_blobs(struct wpa_config *config) 1976{ 1977#ifndef CONFIG_NO_CONFIG_BLOBS 1978 struct wpa_config_blob *blob, *prev; 1979 1980 blob = config->blobs; 1981 config->blobs = NULL; 1982 while (blob) { 1983 prev = blob; 1984 blob = blob->next; 1985 wpa_config_free_blob(prev); 1986 } 1987#endif /* CONFIG_NO_CONFIG_BLOBS */ 1988} 1989 1990 1991/** 1992 * wpa_config_free - Free configuration data 1993 * @config: Configuration data from wpa_config_read() 1994 * 1995 * This function frees all resources allocated for the configuration data by 1996 * wpa_config_read(). 1997 */ 1998void wpa_config_free(struct wpa_config *config) 1999{ 2000 struct wpa_ssid *ssid, *prev = NULL; 2001 struct wpa_cred *cred, *cprev; 2002 2003 ssid = config->ssid; 2004 while (ssid) { 2005 prev = ssid; 2006 ssid = ssid->next; 2007 wpa_config_free_ssid(prev); 2008 } 2009 2010 cred = config->cred; 2011 while (cred) { 2012 cprev = cred; 2013 cred = cred->next; 2014 wpa_config_free_cred(cprev); 2015 } 2016 2017 wpa_config_flush_blobs(config); 2018 2019 wpabuf_free(config->wps_vendor_ext_m1); 2020 os_free(config->ctrl_interface); 2021 os_free(config->ctrl_interface_group); 2022 os_free(config->opensc_engine_path); 2023 os_free(config->pkcs11_engine_path); 2024 os_free(config->pkcs11_module_path); 2025 os_free(config->pcsc_reader); 2026 str_clear_free(config->pcsc_pin); 2027 os_free(config->driver_param); 2028 os_free(config->device_name); 2029 os_free(config->manufacturer); 2030 os_free(config->model_name); 2031 os_free(config->model_number); 2032 os_free(config->serial_number); 2033 os_free(config->config_methods); 2034 os_free(config->p2p_ssid_postfix); 2035 os_free(config->pssid); 2036 os_free(config->p2p_pref_chan); 2037 os_free(config->p2p_no_go_freq.range); 2038 os_free(config->autoscan); 2039 os_free(config->freq_list); 2040 wpabuf_free(config->wps_nfc_dh_pubkey); 2041 wpabuf_free(config->wps_nfc_dh_privkey); 2042 wpabuf_free(config->wps_nfc_dev_pw); 2043 os_free(config->ext_password_backend); 2044 os_free(config->sae_groups); 2045 wpabuf_free(config->ap_vendor_elements); 2046 os_free(config->osu_dir); 2047 os_free(config->wowlan_triggers); 2048 os_free(config); 2049} 2050 2051 2052/** 2053 * wpa_config_foreach_network - Iterate over each configured network 2054 * @config: Configuration data from wpa_config_read() 2055 * @func: Callback function to process each network 2056 * @arg: Opaque argument to pass to callback function 2057 * 2058 * Iterate over the set of configured networks calling the specified 2059 * function for each item. We guard against callbacks removing the 2060 * supplied network. 2061 */ 2062void wpa_config_foreach_network(struct wpa_config *config, 2063 void (*func)(void *, struct wpa_ssid *), 2064 void *arg) 2065{ 2066 struct wpa_ssid *ssid, *next; 2067 2068 ssid = config->ssid; 2069 while (ssid) { 2070 next = ssid->next; 2071 func(arg, ssid); 2072 ssid = next; 2073 } 2074} 2075 2076 2077/** 2078 * wpa_config_get_network - Get configured network based on id 2079 * @config: Configuration data from wpa_config_read() 2080 * @id: Unique network id to search for 2081 * Returns: Network configuration or %NULL if not found 2082 */ 2083struct wpa_ssid * wpa_config_get_network(struct wpa_config *config, int id) 2084{ 2085 struct wpa_ssid *ssid; 2086 2087 ssid = config->ssid; 2088 while (ssid) { 2089 if (id == ssid->id) 2090 break; 2091 ssid = ssid->next; 2092 } 2093 2094 return ssid; 2095} 2096 2097 2098/** 2099 * wpa_config_add_network - Add a new network with empty configuration 2100 * @config: Configuration data from wpa_config_read() 2101 * Returns: The new network configuration or %NULL if operation failed 2102 */ 2103struct wpa_ssid * wpa_config_add_network(struct wpa_config *config) 2104{ 2105 int id; 2106 struct wpa_ssid *ssid, *last = NULL; 2107 2108 id = -1; 2109 ssid = config->ssid; 2110 while (ssid) { 2111 if (ssid->id > id) 2112 id = ssid->id; 2113 last = ssid; 2114 ssid = ssid->next; 2115 } 2116 id++; 2117 2118 ssid = os_zalloc(sizeof(*ssid)); 2119 if (ssid == NULL) 2120 return NULL; 2121 ssid->id = id; 2122 dl_list_init(&ssid->psk_list); 2123 if (last) 2124 last->next = ssid; 2125 else 2126 config->ssid = ssid; 2127 2128 wpa_config_update_prio_list(config); 2129 2130 return ssid; 2131} 2132 2133 2134/** 2135 * wpa_config_remove_network - Remove a configured network based on id 2136 * @config: Configuration data from wpa_config_read() 2137 * @id: Unique network id to search for 2138 * Returns: 0 on success, or -1 if the network was not found 2139 */ 2140int wpa_config_remove_network(struct wpa_config *config, int id) 2141{ 2142 struct wpa_ssid *ssid, *prev = NULL; 2143 2144 ssid = config->ssid; 2145 while (ssid) { 2146 if (id == ssid->id) 2147 break; 2148 prev = ssid; 2149 ssid = ssid->next; 2150 } 2151 2152 if (ssid == NULL) 2153 return -1; 2154 2155 if (prev) 2156 prev->next = ssid->next; 2157 else 2158 config->ssid = ssid->next; 2159 2160 wpa_config_update_prio_list(config); 2161 wpa_config_free_ssid(ssid); 2162 return 0; 2163} 2164 2165 2166/** 2167 * wpa_config_set_network_defaults - Set network default values 2168 * @ssid: Pointer to network configuration data 2169 */ 2170void wpa_config_set_network_defaults(struct wpa_ssid *ssid) 2171{ 2172 ssid->proto = DEFAULT_PROTO; 2173 ssid->pairwise_cipher = DEFAULT_PAIRWISE; 2174 ssid->group_cipher = DEFAULT_GROUP; 2175 ssid->key_mgmt = DEFAULT_KEY_MGMT; 2176 ssid->bg_scan_period = DEFAULT_BG_SCAN_PERIOD; 2177#ifdef IEEE8021X_EAPOL 2178 ssid->eapol_flags = DEFAULT_EAPOL_FLAGS; 2179 ssid->eap_workaround = DEFAULT_EAP_WORKAROUND; 2180 ssid->eap.fragment_size = DEFAULT_FRAGMENT_SIZE; 2181 ssid->eap.sim_num = DEFAULT_USER_SELECTED_SIM; 2182#endif /* IEEE8021X_EAPOL */ 2183#ifdef CONFIG_HT_OVERRIDES 2184 ssid->disable_ht = DEFAULT_DISABLE_HT; 2185 ssid->disable_ht40 = DEFAULT_DISABLE_HT40; 2186 ssid->disable_sgi = DEFAULT_DISABLE_SGI; 2187 ssid->disable_ldpc = DEFAULT_DISABLE_LDPC; 2188 ssid->disable_max_amsdu = DEFAULT_DISABLE_MAX_AMSDU; 2189 ssid->ampdu_factor = DEFAULT_AMPDU_FACTOR; 2190 ssid->ampdu_density = DEFAULT_AMPDU_DENSITY; 2191#endif /* CONFIG_HT_OVERRIDES */ 2192#ifdef CONFIG_VHT_OVERRIDES 2193 ssid->vht_rx_mcs_nss_1 = -1; 2194 ssid->vht_rx_mcs_nss_2 = -1; 2195 ssid->vht_rx_mcs_nss_3 = -1; 2196 ssid->vht_rx_mcs_nss_4 = -1; 2197 ssid->vht_rx_mcs_nss_5 = -1; 2198 ssid->vht_rx_mcs_nss_6 = -1; 2199 ssid->vht_rx_mcs_nss_7 = -1; 2200 ssid->vht_rx_mcs_nss_8 = -1; 2201 ssid->vht_tx_mcs_nss_1 = -1; 2202 ssid->vht_tx_mcs_nss_2 = -1; 2203 ssid->vht_tx_mcs_nss_3 = -1; 2204 ssid->vht_tx_mcs_nss_4 = -1; 2205 ssid->vht_tx_mcs_nss_5 = -1; 2206 ssid->vht_tx_mcs_nss_6 = -1; 2207 ssid->vht_tx_mcs_nss_7 = -1; 2208 ssid->vht_tx_mcs_nss_8 = -1; 2209#endif /* CONFIG_VHT_OVERRIDES */ 2210 ssid->proactive_key_caching = -1; 2211#ifdef CONFIG_IEEE80211W 2212 ssid->ieee80211w = MGMT_FRAME_PROTECTION_DEFAULT; 2213#endif /* CONFIG_IEEE80211W */ 2214} 2215 2216 2217/** 2218 * wpa_config_set - Set a variable in network configuration 2219 * @ssid: Pointer to network configuration data 2220 * @var: Variable name, e.g., "ssid" 2221 * @value: Variable value 2222 * @line: Line number in configuration file or 0 if not used 2223 * Returns: 0 on success, -1 on failure 2224 * 2225 * This function can be used to set network configuration variables based on 2226 * both the configuration file and management interface input. The value 2227 * parameter must be in the same format as the text-based configuration file is 2228 * using. For example, strings are using double quotation marks. 2229 */ 2230int wpa_config_set(struct wpa_ssid *ssid, const char *var, const char *value, 2231 int line) 2232{ 2233 size_t i; 2234 int ret = 0; 2235 2236 if (ssid == NULL || var == NULL || value == NULL) 2237 return -1; 2238 2239 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2240 const struct parse_data *field = &ssid_fields[i]; 2241 if (os_strcmp(var, field->name) != 0) 2242 continue; 2243 2244 if (field->parser(field, ssid, line, value)) { 2245 if (line) { 2246 wpa_printf(MSG_ERROR, "Line %d: failed to " 2247 "parse %s '%s'.", line, var, value); 2248 } 2249 ret = -1; 2250 } 2251 break; 2252 } 2253 if (i == NUM_SSID_FIELDS) { 2254 if (line) { 2255 wpa_printf(MSG_ERROR, "Line %d: unknown network field " 2256 "'%s'.", line, var); 2257 } 2258 ret = -1; 2259 } 2260 2261 return ret; 2262} 2263 2264 2265int wpa_config_set_quoted(struct wpa_ssid *ssid, const char *var, 2266 const char *value) 2267{ 2268 size_t len; 2269 char *buf; 2270 int ret; 2271 2272 len = os_strlen(value); 2273 buf = os_malloc(len + 3); 2274 if (buf == NULL) 2275 return -1; 2276 buf[0] = '"'; 2277 os_memcpy(buf + 1, value, len); 2278 buf[len + 1] = '"'; 2279 buf[len + 2] = '\0'; 2280 ret = wpa_config_set(ssid, var, buf, 0); 2281 os_free(buf); 2282 return ret; 2283} 2284 2285 2286/** 2287 * wpa_config_get_all - Get all options from network configuration 2288 * @ssid: Pointer to network configuration data 2289 * @get_keys: Determines if keys/passwords will be included in returned list 2290 * (if they may be exported) 2291 * Returns: %NULL terminated list of all set keys and their values in the form 2292 * of [key1, val1, key2, val2, ... , NULL] 2293 * 2294 * This function can be used to get list of all configured network properties. 2295 * The caller is responsible for freeing the returned list and all its 2296 * elements. 2297 */ 2298char ** wpa_config_get_all(struct wpa_ssid *ssid, int get_keys) 2299{ 2300 const struct parse_data *field; 2301 char *key, *value; 2302 size_t i; 2303 char **props; 2304 int fields_num; 2305 2306 get_keys = get_keys && ssid->export_keys; 2307 2308 props = os_calloc(2 * NUM_SSID_FIELDS + 1, sizeof(char *)); 2309 if (!props) 2310 return NULL; 2311 2312 fields_num = 0; 2313 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2314 field = &ssid_fields[i]; 2315 if (field->key_data && !get_keys) 2316 continue; 2317 value = field->writer(field, ssid); 2318 if (value == NULL) 2319 continue; 2320 if (os_strlen(value) == 0) { 2321 os_free(value); 2322 continue; 2323 } 2324 2325 key = os_strdup(field->name); 2326 if (key == NULL) { 2327 os_free(value); 2328 goto err; 2329 } 2330 2331 props[fields_num * 2] = key; 2332 props[fields_num * 2 + 1] = value; 2333 2334 fields_num++; 2335 } 2336 2337 return props; 2338 2339err: 2340 value = *props; 2341 while (value) 2342 os_free(value++); 2343 os_free(props); 2344 return NULL; 2345} 2346 2347 2348#ifndef NO_CONFIG_WRITE 2349/** 2350 * wpa_config_get - Get a variable in network configuration 2351 * @ssid: Pointer to network configuration data 2352 * @var: Variable name, e.g., "ssid" 2353 * Returns: Value of the variable or %NULL on failure 2354 * 2355 * This function can be used to get network configuration variables. The 2356 * returned value is a copy of the configuration variable in text format, i.e,. 2357 * the same format that the text-based configuration file and wpa_config_set() 2358 * are using for the value. The caller is responsible for freeing the returned 2359 * value. 2360 */ 2361char * wpa_config_get(struct wpa_ssid *ssid, const char *var) 2362{ 2363 size_t i; 2364 2365 if (ssid == NULL || var == NULL) 2366 return NULL; 2367 2368 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2369 const struct parse_data *field = &ssid_fields[i]; 2370 if (os_strcmp(var, field->name) == 0) { 2371 char *ret = field->writer(field, ssid); 2372 if (os_strchr(ret, '\r') != NULL || os_strchr(ret, '\n') != NULL) { 2373 wpa_printf(MSG_ERROR, "Found newline in value for %s; " 2374 "not returning it", var); 2375 os_free(ret); 2376 ret = NULL; 2377 } 2378 return ret; 2379 } 2380 } 2381 2382 return NULL; 2383} 2384 2385 2386/** 2387 * wpa_config_get_no_key - Get a variable in network configuration (no keys) 2388 * @ssid: Pointer to network configuration data 2389 * @var: Variable name, e.g., "ssid" 2390 * Returns: Value of the variable or %NULL on failure 2391 * 2392 * This function can be used to get network configuration variable like 2393 * wpa_config_get(). The only difference is that this functions does not expose 2394 * key/password material from the configuration. In case a key/password field 2395 * is requested, the returned value is an empty string or %NULL if the variable 2396 * is not set or "*" if the variable is set (regardless of its value). The 2397 * returned value is a copy of the configuration variable in text format, i.e,. 2398 * the same format that the text-based configuration file and wpa_config_set() 2399 * are using for the value. The caller is responsible for freeing the returned 2400 * value. 2401 */ 2402char * wpa_config_get_no_key(struct wpa_ssid *ssid, const char *var) 2403{ 2404 size_t i; 2405 2406 if (ssid == NULL || var == NULL) 2407 return NULL; 2408 2409 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2410 const struct parse_data *field = &ssid_fields[i]; 2411 if (os_strcmp(var, field->name) == 0) { 2412 char *res = field->writer(field, ssid); 2413 if (field->key_data) { 2414 if (res && res[0]) { 2415 wpa_printf(MSG_DEBUG, "Do not allow " 2416 "key_data field to be " 2417 "exposed"); 2418 str_clear_free(res); 2419 return os_strdup("*"); 2420 } 2421 2422 os_free(res); 2423 return NULL; 2424 } 2425 return res; 2426 } 2427 } 2428 2429 return NULL; 2430} 2431#endif /* NO_CONFIG_WRITE */ 2432 2433 2434/** 2435 * wpa_config_update_psk - Update WPA PSK based on passphrase and SSID 2436 * @ssid: Pointer to network configuration data 2437 * 2438 * This function must be called to update WPA PSK when either SSID or the 2439 * passphrase has changed for the network configuration. 2440 */ 2441void wpa_config_update_psk(struct wpa_ssid *ssid) 2442{ 2443#ifndef CONFIG_NO_PBKDF2 2444 pbkdf2_sha1(ssid->passphrase, ssid->ssid, ssid->ssid_len, 4096, 2445 ssid->psk, PMK_LEN); 2446 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)", 2447 ssid->psk, PMK_LEN); 2448 ssid->psk_set = 1; 2449#endif /* CONFIG_NO_PBKDF2 */ 2450} 2451 2452 2453static int wpa_config_set_cred_req_conn_capab(struct wpa_cred *cred, 2454 const char *value) 2455{ 2456 u8 *proto; 2457 int **port; 2458 int *ports, *nports; 2459 const char *pos; 2460 unsigned int num_ports; 2461 2462 proto = os_realloc_array(cred->req_conn_capab_proto, 2463 cred->num_req_conn_capab + 1, sizeof(u8)); 2464 if (proto == NULL) 2465 return -1; 2466 cred->req_conn_capab_proto = proto; 2467 2468 port = os_realloc_array(cred->req_conn_capab_port, 2469 cred->num_req_conn_capab + 1, sizeof(int *)); 2470 if (port == NULL) 2471 return -1; 2472 cred->req_conn_capab_port = port; 2473 2474 proto[cred->num_req_conn_capab] = atoi(value); 2475 2476 pos = os_strchr(value, ':'); 2477 if (pos == NULL) { 2478 port[cred->num_req_conn_capab] = NULL; 2479 cred->num_req_conn_capab++; 2480 return 0; 2481 } 2482 pos++; 2483 2484 ports = NULL; 2485 num_ports = 0; 2486 2487 while (*pos) { 2488 nports = os_realloc_array(ports, num_ports + 1, sizeof(int)); 2489 if (nports == NULL) { 2490 os_free(ports); 2491 return -1; 2492 } 2493 ports = nports; 2494 ports[num_ports++] = atoi(pos); 2495 2496 pos = os_strchr(pos, ','); 2497 if (pos == NULL) 2498 break; 2499 pos++; 2500 } 2501 2502 nports = os_realloc_array(ports, num_ports + 1, sizeof(int)); 2503 if (nports == NULL) { 2504 os_free(ports); 2505 return -1; 2506 } 2507 ports = nports; 2508 ports[num_ports] = -1; 2509 2510 port[cred->num_req_conn_capab] = ports; 2511 cred->num_req_conn_capab++; 2512 return 0; 2513} 2514 2515 2516int wpa_config_set_cred(struct wpa_cred *cred, const char *var, 2517 const char *value, int line) 2518{ 2519 char *val; 2520 size_t len; 2521 2522 if (os_strcmp(var, "temporary") == 0) { 2523 cred->temporary = atoi(value); 2524 return 0; 2525 } 2526 2527 if (os_strcmp(var, "priority") == 0) { 2528 cred->priority = atoi(value); 2529 return 0; 2530 } 2531 2532 if (os_strcmp(var, "sp_priority") == 0) { 2533 int prio = atoi(value); 2534 if (prio < 0 || prio > 255) 2535 return -1; 2536 cred->sp_priority = prio; 2537 return 0; 2538 } 2539 2540 if (os_strcmp(var, "pcsc") == 0) { 2541 cred->pcsc = atoi(value); 2542 return 0; 2543 } 2544 2545 if (os_strcmp(var, "eap") == 0) { 2546 struct eap_method_type method; 2547 method.method = eap_peer_get_type(value, &method.vendor); 2548 if (method.vendor == EAP_VENDOR_IETF && 2549 method.method == EAP_TYPE_NONE) { 2550 wpa_printf(MSG_ERROR, "Line %d: unknown EAP type '%s' " 2551 "for a credential", line, value); 2552 return -1; 2553 } 2554 os_free(cred->eap_method); 2555 cred->eap_method = os_malloc(sizeof(*cred->eap_method)); 2556 if (cred->eap_method == NULL) 2557 return -1; 2558 os_memcpy(cred->eap_method, &method, sizeof(method)); 2559 return 0; 2560 } 2561 2562 if (os_strcmp(var, "password") == 0 && 2563 os_strncmp(value, "ext:", 4) == 0) { 2564 str_clear_free(cred->password); 2565 cred->password = os_strdup(value); 2566 cred->ext_password = 1; 2567 return 0; 2568 } 2569 2570 if (os_strcmp(var, "update_identifier") == 0) { 2571 cred->update_identifier = atoi(value); 2572 return 0; 2573 } 2574 2575 if (os_strcmp(var, "min_dl_bandwidth_home") == 0) { 2576 cred->min_dl_bandwidth_home = atoi(value); 2577 return 0; 2578 } 2579 2580 if (os_strcmp(var, "min_ul_bandwidth_home") == 0) { 2581 cred->min_ul_bandwidth_home = atoi(value); 2582 return 0; 2583 } 2584 2585 if (os_strcmp(var, "min_dl_bandwidth_roaming") == 0) { 2586 cred->min_dl_bandwidth_roaming = atoi(value); 2587 return 0; 2588 } 2589 2590 if (os_strcmp(var, "min_ul_bandwidth_roaming") == 0) { 2591 cred->min_ul_bandwidth_roaming = atoi(value); 2592 return 0; 2593 } 2594 2595 if (os_strcmp(var, "max_bss_load") == 0) { 2596 cred->max_bss_load = atoi(value); 2597 return 0; 2598 } 2599 2600 if (os_strcmp(var, "req_conn_capab") == 0) 2601 return wpa_config_set_cred_req_conn_capab(cred, value); 2602 2603 if (os_strcmp(var, "ocsp") == 0) { 2604 cred->ocsp = atoi(value); 2605 return 0; 2606 } 2607 2608 if (os_strcmp(var, "sim_num") == 0) { 2609 cred->sim_num = atoi(value); 2610 return 0; 2611 } 2612 2613 val = wpa_config_parse_string(value, &len); 2614 if (val == NULL) { 2615 wpa_printf(MSG_ERROR, "Line %d: invalid field '%s' string " 2616 "value '%s'.", line, var, value); 2617 return -1; 2618 } 2619 2620 if (os_strcmp(var, "realm") == 0) { 2621 os_free(cred->realm); 2622 cred->realm = val; 2623 return 0; 2624 } 2625 2626 if (os_strcmp(var, "username") == 0) { 2627 str_clear_free(cred->username); 2628 cred->username = val; 2629 return 0; 2630 } 2631 2632 if (os_strcmp(var, "password") == 0) { 2633 str_clear_free(cred->password); 2634 cred->password = val; 2635 cred->ext_password = 0; 2636 return 0; 2637 } 2638 2639 if (os_strcmp(var, "ca_cert") == 0) { 2640 os_free(cred->ca_cert); 2641 cred->ca_cert = val; 2642 return 0; 2643 } 2644 2645 if (os_strcmp(var, "client_cert") == 0) { 2646 os_free(cred->client_cert); 2647 cred->client_cert = val; 2648 return 0; 2649 } 2650 2651 if (os_strcmp(var, "private_key") == 0) { 2652 os_free(cred->private_key); 2653 cred->private_key = val; 2654 return 0; 2655 } 2656 2657 if (os_strcmp(var, "private_key_passwd") == 0) { 2658 str_clear_free(cred->private_key_passwd); 2659 cred->private_key_passwd = val; 2660 return 0; 2661 } 2662 2663 if (os_strcmp(var, "imsi") == 0) { 2664 os_free(cred->imsi); 2665 cred->imsi = val; 2666 return 0; 2667 } 2668 2669 if (os_strcmp(var, "milenage") == 0) { 2670 str_clear_free(cred->milenage); 2671 cred->milenage = val; 2672 return 0; 2673 } 2674 2675 if (os_strcmp(var, "domain_suffix_match") == 0) { 2676 os_free(cred->domain_suffix_match); 2677 cred->domain_suffix_match = val; 2678 return 0; 2679 } 2680 2681 if (os_strcmp(var, "domain") == 0) { 2682 char **new_domain; 2683 new_domain = os_realloc_array(cred->domain, 2684 cred->num_domain + 1, 2685 sizeof(char *)); 2686 if (new_domain == NULL) { 2687 os_free(val); 2688 return -1; 2689 } 2690 new_domain[cred->num_domain++] = val; 2691 cred->domain = new_domain; 2692 return 0; 2693 } 2694 2695 if (os_strcmp(var, "phase1") == 0) { 2696 os_free(cred->phase1); 2697 cred->phase1 = val; 2698 return 0; 2699 } 2700 2701 if (os_strcmp(var, "phase2") == 0) { 2702 os_free(cred->phase2); 2703 cred->phase2 = val; 2704 return 0; 2705 } 2706 2707 if (os_strcmp(var, "roaming_consortium") == 0) { 2708 if (len < 3 || len > sizeof(cred->roaming_consortium)) { 2709 wpa_printf(MSG_ERROR, "Line %d: invalid " 2710 "roaming_consortium length %d (3..15 " 2711 "expected)", line, (int) len); 2712 os_free(val); 2713 return -1; 2714 } 2715 os_memcpy(cred->roaming_consortium, val, len); 2716 cred->roaming_consortium_len = len; 2717 os_free(val); 2718 return 0; 2719 } 2720 2721 if (os_strcmp(var, "required_roaming_consortium") == 0) { 2722 if (len < 3 || len > sizeof(cred->required_roaming_consortium)) 2723 { 2724 wpa_printf(MSG_ERROR, "Line %d: invalid " 2725 "required_roaming_consortium length %d " 2726 "(3..15 expected)", line, (int) len); 2727 os_free(val); 2728 return -1; 2729 } 2730 os_memcpy(cred->required_roaming_consortium, val, len); 2731 cred->required_roaming_consortium_len = len; 2732 os_free(val); 2733 return 0; 2734 } 2735 2736 if (os_strcmp(var, "excluded_ssid") == 0) { 2737 struct excluded_ssid *e; 2738 2739 if (len > MAX_SSID_LEN) { 2740 wpa_printf(MSG_ERROR, "Line %d: invalid " 2741 "excluded_ssid length %d", line, (int) len); 2742 os_free(val); 2743 return -1; 2744 } 2745 2746 e = os_realloc_array(cred->excluded_ssid, 2747 cred->num_excluded_ssid + 1, 2748 sizeof(struct excluded_ssid)); 2749 if (e == NULL) { 2750 os_free(val); 2751 return -1; 2752 } 2753 cred->excluded_ssid = e; 2754 2755 e = &cred->excluded_ssid[cred->num_excluded_ssid++]; 2756 os_memcpy(e->ssid, val, len); 2757 e->ssid_len = len; 2758 2759 os_free(val); 2760 2761 return 0; 2762 } 2763 2764 if (os_strcmp(var, "roaming_partner") == 0) { 2765 struct roaming_partner *p; 2766 char *pos; 2767 2768 p = os_realloc_array(cred->roaming_partner, 2769 cred->num_roaming_partner + 1, 2770 sizeof(struct roaming_partner)); 2771 if (p == NULL) { 2772 os_free(val); 2773 return -1; 2774 } 2775 cred->roaming_partner = p; 2776 2777 p = &cred->roaming_partner[cred->num_roaming_partner]; 2778 2779 pos = os_strchr(val, ','); 2780 if (pos == NULL) { 2781 os_free(val); 2782 return -1; 2783 } 2784 *pos++ = '\0'; 2785 if (pos - val - 1 >= (int) sizeof(p->fqdn)) { 2786 os_free(val); 2787 return -1; 2788 } 2789 os_memcpy(p->fqdn, val, pos - val); 2790 2791 p->exact_match = atoi(pos); 2792 2793 pos = os_strchr(pos, ','); 2794 if (pos == NULL) { 2795 os_free(val); 2796 return -1; 2797 } 2798 *pos++ = '\0'; 2799 2800 p->priority = atoi(pos); 2801 2802 pos = os_strchr(pos, ','); 2803 if (pos == NULL) { 2804 os_free(val); 2805 return -1; 2806 } 2807 *pos++ = '\0'; 2808 2809 if (os_strlen(pos) >= sizeof(p->country)) { 2810 os_free(val); 2811 return -1; 2812 } 2813 os_memcpy(p->country, pos, os_strlen(pos) + 1); 2814 2815 cred->num_roaming_partner++; 2816 os_free(val); 2817 2818 return 0; 2819 } 2820 2821 if (os_strcmp(var, "provisioning_sp") == 0) { 2822 os_free(cred->provisioning_sp); 2823 cred->provisioning_sp = val; 2824 return 0; 2825 } 2826 2827 if (line) { 2828 wpa_printf(MSG_ERROR, "Line %d: unknown cred field '%s'.", 2829 line, var); 2830 } 2831 2832 os_free(val); 2833 2834 return -1; 2835} 2836 2837 2838static char * alloc_int_str(int val) 2839{ 2840 char *buf; 2841 2842 buf = os_malloc(20); 2843 if (buf == NULL) 2844 return NULL; 2845 os_snprintf(buf, 20, "%d", val); 2846 return buf; 2847} 2848 2849 2850static char * alloc_strdup(const char *str) 2851{ 2852 if (str == NULL) 2853 return NULL; 2854 return os_strdup(str); 2855} 2856 2857 2858char * wpa_config_get_cred_no_key(struct wpa_cred *cred, const char *var) 2859{ 2860 if (os_strcmp(var, "temporary") == 0) 2861 return alloc_int_str(cred->temporary); 2862 2863 if (os_strcmp(var, "priority") == 0) 2864 return alloc_int_str(cred->priority); 2865 2866 if (os_strcmp(var, "sp_priority") == 0) 2867 return alloc_int_str(cred->sp_priority); 2868 2869 if (os_strcmp(var, "pcsc") == 0) 2870 return alloc_int_str(cred->pcsc); 2871 2872 if (os_strcmp(var, "eap") == 0) { 2873 if (!cred->eap_method) 2874 return NULL; 2875 return alloc_strdup(eap_get_name(cred->eap_method[0].vendor, 2876 cred->eap_method[0].method)); 2877 } 2878 2879 if (os_strcmp(var, "update_identifier") == 0) 2880 return alloc_int_str(cred->update_identifier); 2881 2882 if (os_strcmp(var, "min_dl_bandwidth_home") == 0) 2883 return alloc_int_str(cred->min_dl_bandwidth_home); 2884 2885 if (os_strcmp(var, "min_ul_bandwidth_home") == 0) 2886 return alloc_int_str(cred->min_ul_bandwidth_home); 2887 2888 if (os_strcmp(var, "min_dl_bandwidth_roaming") == 0) 2889 return alloc_int_str(cred->min_dl_bandwidth_roaming); 2890 2891 if (os_strcmp(var, "min_ul_bandwidth_roaming") == 0) 2892 return alloc_int_str(cred->min_ul_bandwidth_roaming); 2893 2894 if (os_strcmp(var, "max_bss_load") == 0) 2895 return alloc_int_str(cred->max_bss_load); 2896 2897 if (os_strcmp(var, "req_conn_capab") == 0) { 2898 unsigned int i; 2899 char *buf, *end, *pos; 2900 int ret; 2901 2902 if (!cred->num_req_conn_capab) 2903 return NULL; 2904 2905 buf = os_malloc(4000); 2906 if (buf == NULL) 2907 return NULL; 2908 pos = buf; 2909 end = pos + 4000; 2910 for (i = 0; i < cred->num_req_conn_capab; i++) { 2911 int *ports; 2912 2913 ret = os_snprintf(pos, end - pos, "%s%u", 2914 i > 0 ? "\n" : "", 2915 cred->req_conn_capab_proto[i]); 2916 if (ret < 0 || ret >= end - pos) 2917 return buf; 2918 pos += ret; 2919 2920 ports = cred->req_conn_capab_port[i]; 2921 if (ports) { 2922 int j; 2923 for (j = 0; ports[j] != -1; j++) { 2924 ret = os_snprintf(pos, end - pos, 2925 "%s%d", 2926 j > 0 ? "," : ":", 2927 ports[j]); 2928 if (ret < 0 || ret >= end - pos) 2929 return buf; 2930 pos += ret; 2931 } 2932 } 2933 } 2934 2935 return buf; 2936 } 2937 2938 if (os_strcmp(var, "ocsp") == 0) 2939 return alloc_int_str(cred->ocsp); 2940 2941 if (os_strcmp(var, "realm") == 0) 2942 return alloc_strdup(cred->realm); 2943 2944 if (os_strcmp(var, "username") == 0) 2945 return alloc_strdup(cred->username); 2946 2947 if (os_strcmp(var, "password") == 0) { 2948 if (!cred->password) 2949 return NULL; 2950 return alloc_strdup("*"); 2951 } 2952 2953 if (os_strcmp(var, "ca_cert") == 0) 2954 return alloc_strdup(cred->ca_cert); 2955 2956 if (os_strcmp(var, "client_cert") == 0) 2957 return alloc_strdup(cred->client_cert); 2958 2959 if (os_strcmp(var, "private_key") == 0) 2960 return alloc_strdup(cred->private_key); 2961 2962 if (os_strcmp(var, "private_key_passwd") == 0) { 2963 if (!cred->private_key_passwd) 2964 return NULL; 2965 return alloc_strdup("*"); 2966 } 2967 2968 if (os_strcmp(var, "imsi") == 0) 2969 return alloc_strdup(cred->imsi); 2970 2971 if (os_strcmp(var, "milenage") == 0) { 2972 if (!(cred->milenage)) 2973 return NULL; 2974 return alloc_strdup("*"); 2975 } 2976 2977 if (os_strcmp(var, "domain_suffix_match") == 0) 2978 return alloc_strdup(cred->domain_suffix_match); 2979 2980 if (os_strcmp(var, "domain") == 0) { 2981 unsigned int i; 2982 char *buf, *end, *pos; 2983 int ret; 2984 2985 if (!cred->num_domain) 2986 return NULL; 2987 2988 buf = os_malloc(4000); 2989 if (buf == NULL) 2990 return NULL; 2991 pos = buf; 2992 end = pos + 4000; 2993 2994 for (i = 0; i < cred->num_domain; i++) { 2995 ret = os_snprintf(pos, end - pos, "%s%s", 2996 i > 0 ? "\n" : "", cred->domain[i]); 2997 if (ret < 0 || ret >= end - pos) 2998 return buf; 2999 pos += ret; 3000 } 3001 3002 return buf; 3003 } 3004 3005 if (os_strcmp(var, "phase1") == 0) 3006 return alloc_strdup(cred->phase1); 3007 3008 if (os_strcmp(var, "phase2") == 0) 3009 return alloc_strdup(cred->phase2); 3010 3011 if (os_strcmp(var, "roaming_consortium") == 0) { 3012 size_t buflen; 3013 char *buf; 3014 3015 if (!cred->roaming_consortium_len) 3016 return NULL; 3017 buflen = cred->roaming_consortium_len * 2 + 1; 3018 buf = os_malloc(buflen); 3019 if (buf == NULL) 3020 return NULL; 3021 wpa_snprintf_hex(buf, buflen, cred->roaming_consortium, 3022 cred->roaming_consortium_len); 3023 return buf; 3024 } 3025 3026 if (os_strcmp(var, "required_roaming_consortium") == 0) { 3027 size_t buflen; 3028 char *buf; 3029 3030 if (!cred->required_roaming_consortium_len) 3031 return NULL; 3032 buflen = cred->required_roaming_consortium_len * 2 + 1; 3033 buf = os_malloc(buflen); 3034 if (buf == NULL) 3035 return NULL; 3036 wpa_snprintf_hex(buf, buflen, cred->required_roaming_consortium, 3037 cred->required_roaming_consortium_len); 3038 return buf; 3039 } 3040 3041 if (os_strcmp(var, "excluded_ssid") == 0) { 3042 unsigned int i; 3043 char *buf, *end, *pos; 3044 3045 if (!cred->num_excluded_ssid) 3046 return NULL; 3047 3048 buf = os_malloc(4000); 3049 if (buf == NULL) 3050 return NULL; 3051 pos = buf; 3052 end = pos + 4000; 3053 3054 for (i = 0; i < cred->num_excluded_ssid; i++) { 3055 struct excluded_ssid *e; 3056 int ret; 3057 3058 e = &cred->excluded_ssid[i]; 3059 ret = os_snprintf(pos, end - pos, "%s%s", 3060 i > 0 ? "\n" : "", 3061 wpa_ssid_txt(e->ssid, e->ssid_len)); 3062 if (ret < 0 || ret >= end - pos) 3063 return buf; 3064 pos += ret; 3065 } 3066 3067 return buf; 3068 } 3069 3070 if (os_strcmp(var, "roaming_partner") == 0) { 3071 unsigned int i; 3072 char *buf, *end, *pos; 3073 3074 if (!cred->num_roaming_partner) 3075 return NULL; 3076 3077 buf = os_malloc(4000); 3078 if (buf == NULL) 3079 return NULL; 3080 pos = buf; 3081 end = pos + 4000; 3082 3083 for (i = 0; i < cred->num_roaming_partner; i++) { 3084 struct roaming_partner *p; 3085 int ret; 3086 3087 p = &cred->roaming_partner[i]; 3088 ret = os_snprintf(pos, end - pos, "%s%s,%d,%u,%s", 3089 i > 0 ? "\n" : "", 3090 p->fqdn, p->exact_match, p->priority, 3091 p->country); 3092 if (ret < 0 || ret >= end - pos) 3093 return buf; 3094 pos += ret; 3095 } 3096 3097 return buf; 3098 } 3099 3100 if (os_strcmp(var, "provisioning_sp") == 0) 3101 return alloc_strdup(cred->provisioning_sp); 3102 3103 return NULL; 3104} 3105 3106 3107struct wpa_cred * wpa_config_get_cred(struct wpa_config *config, int id) 3108{ 3109 struct wpa_cred *cred; 3110 3111 cred = config->cred; 3112 while (cred) { 3113 if (id == cred->id) 3114 break; 3115 cred = cred->next; 3116 } 3117 3118 return cred; 3119} 3120 3121 3122struct wpa_cred * wpa_config_add_cred(struct wpa_config *config) 3123{ 3124 int id; 3125 struct wpa_cred *cred, *last = NULL; 3126 3127 id = -1; 3128 cred = config->cred; 3129 while (cred) { 3130 if (cred->id > id) 3131 id = cred->id; 3132 last = cred; 3133 cred = cred->next; 3134 } 3135 id++; 3136 3137 cred = os_zalloc(sizeof(*cred)); 3138 if (cred == NULL) 3139 return NULL; 3140 cred->id = id; 3141 cred->sim_num = DEFAULT_USER_SELECTED_SIM; 3142 if (last) 3143 last->next = cred; 3144 else 3145 config->cred = cred; 3146 3147 return cred; 3148} 3149 3150 3151int wpa_config_remove_cred(struct wpa_config *config, int id) 3152{ 3153 struct wpa_cred *cred, *prev = NULL; 3154 3155 cred = config->cred; 3156 while (cred) { 3157 if (id == cred->id) 3158 break; 3159 prev = cred; 3160 cred = cred->next; 3161 } 3162 3163 if (cred == NULL) 3164 return -1; 3165 3166 if (prev) 3167 prev->next = cred->next; 3168 else 3169 config->cred = cred->next; 3170 3171 wpa_config_free_cred(cred); 3172 return 0; 3173} 3174 3175 3176#ifndef CONFIG_NO_CONFIG_BLOBS 3177/** 3178 * wpa_config_get_blob - Get a named configuration blob 3179 * @config: Configuration data from wpa_config_read() 3180 * @name: Name of the blob 3181 * Returns: Pointer to blob data or %NULL if not found 3182 */ 3183const struct wpa_config_blob * wpa_config_get_blob(struct wpa_config *config, 3184 const char *name) 3185{ 3186 struct wpa_config_blob *blob = config->blobs; 3187 3188 while (blob) { 3189 if (os_strcmp(blob->name, name) == 0) 3190 return blob; 3191 blob = blob->next; 3192 } 3193 return NULL; 3194} 3195 3196 3197/** 3198 * wpa_config_set_blob - Set or add a named configuration blob 3199 * @config: Configuration data from wpa_config_read() 3200 * @blob: New value for the blob 3201 * 3202 * Adds a new configuration blob or replaces the current value of an existing 3203 * blob. 3204 */ 3205void wpa_config_set_blob(struct wpa_config *config, 3206 struct wpa_config_blob *blob) 3207{ 3208 wpa_config_remove_blob(config, blob->name); 3209 blob->next = config->blobs; 3210 config->blobs = blob; 3211} 3212 3213 3214/** 3215 * wpa_config_free_blob - Free blob data 3216 * @blob: Pointer to blob to be freed 3217 */ 3218void wpa_config_free_blob(struct wpa_config_blob *blob) 3219{ 3220 if (blob) { 3221 os_free(blob->name); 3222 bin_clear_free(blob->data, blob->len); 3223 os_free(blob); 3224 } 3225} 3226 3227 3228/** 3229 * wpa_config_remove_blob - Remove a named configuration blob 3230 * @config: Configuration data from wpa_config_read() 3231 * @name: Name of the blob to remove 3232 * Returns: 0 if blob was removed or -1 if blob was not found 3233 */ 3234int wpa_config_remove_blob(struct wpa_config *config, const char *name) 3235{ 3236 struct wpa_config_blob *pos = config->blobs, *prev = NULL; 3237 3238 while (pos) { 3239 if (os_strcmp(pos->name, name) == 0) { 3240 if (prev) 3241 prev->next = pos->next; 3242 else 3243 config->blobs = pos->next; 3244 wpa_config_free_blob(pos); 3245 return 0; 3246 } 3247 prev = pos; 3248 pos = pos->next; 3249 } 3250 3251 return -1; 3252} 3253#endif /* CONFIG_NO_CONFIG_BLOBS */ 3254 3255 3256/** 3257 * wpa_config_alloc_empty - Allocate an empty configuration 3258 * @ctrl_interface: Control interface parameters, e.g., path to UNIX domain 3259 * socket 3260 * @driver_param: Driver parameters 3261 * Returns: Pointer to allocated configuration data or %NULL on failure 3262 */ 3263struct wpa_config * wpa_config_alloc_empty(const char *ctrl_interface, 3264 const char *driver_param) 3265{ 3266 struct wpa_config *config; 3267 const int aCWmin = 4, aCWmax = 10; 3268 const struct hostapd_wmm_ac_params ac_bk = 3269 { aCWmin, aCWmax, 7, 0, 0 }; /* background traffic */ 3270 const struct hostapd_wmm_ac_params ac_be = 3271 { aCWmin, aCWmax, 3, 0, 0 }; /* best effort traffic */ 3272 const struct hostapd_wmm_ac_params ac_vi = /* video traffic */ 3273 { aCWmin - 1, aCWmin, 2, 3000 / 32, 0 }; 3274 const struct hostapd_wmm_ac_params ac_vo = /* voice traffic */ 3275 { aCWmin - 2, aCWmin - 1, 2, 1500 / 32, 0 }; 3276 3277 config = os_zalloc(sizeof(*config)); 3278 if (config == NULL) 3279 return NULL; 3280 config->eapol_version = DEFAULT_EAPOL_VERSION; 3281 config->ap_scan = DEFAULT_AP_SCAN; 3282 config->fast_reauth = DEFAULT_FAST_REAUTH; 3283 config->p2p_go_intent = DEFAULT_P2P_GO_INTENT; 3284 config->p2p_intra_bss = DEFAULT_P2P_INTRA_BSS; 3285 config->p2p_go_max_inactivity = DEFAULT_P2P_GO_MAX_INACTIVITY; 3286 config->p2p_optimize_listen_chan = DEFAULT_P2P_OPTIMIZE_LISTEN_CHAN; 3287 config->bss_max_count = DEFAULT_BSS_MAX_COUNT; 3288 config->bss_expiration_age = DEFAULT_BSS_EXPIRATION_AGE; 3289 config->bss_expiration_scan_count = DEFAULT_BSS_EXPIRATION_SCAN_COUNT; 3290 config->max_num_sta = DEFAULT_MAX_NUM_STA; 3291 config->access_network_type = DEFAULT_ACCESS_NETWORK_TYPE; 3292 config->scan_cur_freq = DEFAULT_SCAN_CUR_FREQ; 3293 config->wmm_ac_params[0] = ac_be; 3294 config->wmm_ac_params[1] = ac_bk; 3295 config->wmm_ac_params[2] = ac_vi; 3296 config->wmm_ac_params[3] = ac_vo; 3297 config->p2p_search_delay = DEFAULT_P2P_SEARCH_DELAY; 3298 3299 if (ctrl_interface) 3300 config->ctrl_interface = os_strdup(ctrl_interface); 3301 if (driver_param) 3302 config->driver_param = os_strdup(driver_param); 3303 3304 return config; 3305} 3306 3307 3308#ifndef CONFIG_NO_STDOUT_DEBUG 3309/** 3310 * wpa_config_debug_dump_networks - Debug dump of configured networks 3311 * @config: Configuration data from wpa_config_read() 3312 */ 3313void wpa_config_debug_dump_networks(struct wpa_config *config) 3314{ 3315 int prio; 3316 struct wpa_ssid *ssid; 3317 3318 for (prio = 0; prio < config->num_prio; prio++) { 3319 ssid = config->pssid[prio]; 3320 wpa_printf(MSG_DEBUG, "Priority group %d", 3321 ssid->priority); 3322 while (ssid) { 3323 wpa_printf(MSG_DEBUG, " id=%d ssid='%s'", 3324 ssid->id, 3325 wpa_ssid_txt(ssid->ssid, ssid->ssid_len)); 3326 ssid = ssid->pnext; 3327 } 3328 } 3329} 3330#endif /* CONFIG_NO_STDOUT_DEBUG */ 3331 3332 3333struct global_parse_data { 3334 char *name; 3335 int (*parser)(const struct global_parse_data *data, 3336 struct wpa_config *config, int line, const char *value); 3337 void *param1, *param2, *param3; 3338 unsigned int changed_flag; 3339}; 3340 3341 3342static int wpa_global_config_parse_int(const struct global_parse_data *data, 3343 struct wpa_config *config, int line, 3344 const char *pos) 3345{ 3346 int val, *dst; 3347 char *end; 3348 3349 dst = (int *) (((u8 *) config) + (long) data->param1); 3350 val = strtol(pos, &end, 0); 3351 if (*end) { 3352 wpa_printf(MSG_ERROR, "Line %d: invalid number \"%s\"", 3353 line, pos); 3354 return -1; 3355 } 3356 *dst = val; 3357 3358 wpa_printf(MSG_DEBUG, "%s=%d", data->name, *dst); 3359 3360 if (data->param2 && *dst < (long) data->param2) { 3361 wpa_printf(MSG_ERROR, "Line %d: too small %s (value=%d " 3362 "min_value=%ld)", line, data->name, *dst, 3363 (long) data->param2); 3364 *dst = (long) data->param2; 3365 return -1; 3366 } 3367 3368 if (data->param3 && *dst > (long) data->param3) { 3369 wpa_printf(MSG_ERROR, "Line %d: too large %s (value=%d " 3370 "max_value=%ld)", line, data->name, *dst, 3371 (long) data->param3); 3372 *dst = (long) data->param3; 3373 return -1; 3374 } 3375 3376 return 0; 3377} 3378 3379 3380static int wpa_global_config_parse_str(const struct global_parse_data *data, 3381 struct wpa_config *config, int line, 3382 const char *pos) 3383{ 3384 size_t len; 3385 char **dst, *tmp; 3386 3387 len = os_strlen(pos); 3388 if (data->param2 && len < (size_t) data->param2) { 3389 wpa_printf(MSG_ERROR, "Line %d: too short %s (len=%lu " 3390 "min_len=%ld)", line, data->name, 3391 (unsigned long) len, (long) data->param2); 3392 return -1; 3393 } 3394 3395 if (data->param3 && len > (size_t) data->param3) { 3396 wpa_printf(MSG_ERROR, "Line %d: too long %s (len=%lu " 3397 "max_len=%ld)", line, data->name, 3398 (unsigned long) len, (long) data->param3); 3399 return -1; 3400 } 3401 3402 tmp = os_strdup(pos); 3403 if (tmp == NULL) 3404 return -1; 3405 3406 dst = (char **) (((u8 *) config) + (long) data->param1); 3407 os_free(*dst); 3408 *dst = tmp; 3409 wpa_printf(MSG_DEBUG, "%s='%s'", data->name, *dst); 3410 3411 return 0; 3412} 3413 3414 3415static int wpa_config_process_bgscan(const struct global_parse_data *data, 3416 struct wpa_config *config, int line, 3417 const char *pos) 3418{ 3419 size_t len; 3420 char *tmp; 3421 int res; 3422 3423 tmp = wpa_config_parse_string(pos, &len); 3424 if (tmp == NULL) { 3425 wpa_printf(MSG_ERROR, "Line %d: failed to parse %s", 3426 line, data->name); 3427 return -1; 3428 } 3429 3430 res = wpa_global_config_parse_str(data, config, line, tmp); 3431 os_free(tmp); 3432 return res; 3433} 3434 3435 3436static int wpa_global_config_parse_bin(const struct global_parse_data *data, 3437 struct wpa_config *config, int line, 3438 const char *pos) 3439{ 3440 size_t len; 3441 struct wpabuf **dst, *tmp; 3442 3443 len = os_strlen(pos); 3444 if (len & 0x01) 3445 return -1; 3446 3447 tmp = wpabuf_alloc(len / 2); 3448 if (tmp == NULL) 3449 return -1; 3450 3451 if (hexstr2bin(pos, wpabuf_put(tmp, len / 2), len / 2)) { 3452 wpabuf_free(tmp); 3453 return -1; 3454 } 3455 3456 dst = (struct wpabuf **) (((u8 *) config) + (long) data->param1); 3457 wpabuf_free(*dst); 3458 *dst = tmp; 3459 wpa_printf(MSG_DEBUG, "%s", data->name); 3460 3461 return 0; 3462} 3463 3464 3465static int wpa_config_process_freq_list(const struct global_parse_data *data, 3466 struct wpa_config *config, int line, 3467 const char *value) 3468{ 3469 int *freqs; 3470 3471 freqs = wpa_config_parse_int_array(value); 3472 if (freqs == NULL) 3473 return -1; 3474 if (freqs[0] == 0) { 3475 os_free(freqs); 3476 freqs = NULL; 3477 } 3478 os_free(config->freq_list); 3479 config->freq_list = freqs; 3480 return 0; 3481} 3482 3483 3484#ifdef CONFIG_P2P 3485static int wpa_global_config_parse_ipv4(const struct global_parse_data *data, 3486 struct wpa_config *config, int line, 3487 const char *pos) 3488{ 3489 u32 *dst; 3490 struct hostapd_ip_addr addr; 3491 3492 if (hostapd_parse_ip_addr(pos, &addr) < 0) 3493 return -1; 3494 if (addr.af != AF_INET) 3495 return -1; 3496 3497 dst = (u32 *) (((u8 *) config) + (long) data->param1); 3498 os_memcpy(dst, &addr.u.v4.s_addr, 4); 3499 wpa_printf(MSG_DEBUG, "%s = 0x%x", data->name, 3500 WPA_GET_BE32((u8 *) dst)); 3501 3502 return 0; 3503} 3504#endif /* CONFIG_P2P */ 3505 3506 3507static int wpa_config_process_country(const struct global_parse_data *data, 3508 struct wpa_config *config, int line, 3509 const char *pos) 3510{ 3511 if (!pos[0] || !pos[1]) { 3512 wpa_printf(MSG_DEBUG, "Invalid country set"); 3513 return -1; 3514 } 3515 config->country[0] = pos[0]; 3516 config->country[1] = pos[1]; 3517 wpa_printf(MSG_DEBUG, "country='%c%c'", 3518 config->country[0], config->country[1]); 3519 return 0; 3520} 3521 3522 3523static int wpa_config_process_load_dynamic_eap( 3524 const struct global_parse_data *data, struct wpa_config *config, 3525 int line, const char *so) 3526{ 3527 int ret; 3528 wpa_printf(MSG_DEBUG, "load_dynamic_eap=%s", so); 3529 ret = eap_peer_method_load(so); 3530 if (ret == -2) { 3531 wpa_printf(MSG_DEBUG, "This EAP type was already loaded - not " 3532 "reloading."); 3533 } else if (ret) { 3534 wpa_printf(MSG_ERROR, "Line %d: Failed to load dynamic EAP " 3535 "method '%s'.", line, so); 3536 return -1; 3537 } 3538 3539 return 0; 3540} 3541 3542 3543#ifdef CONFIG_WPS 3544 3545static int wpa_config_process_uuid(const struct global_parse_data *data, 3546 struct wpa_config *config, int line, 3547 const char *pos) 3548{ 3549 char buf[40]; 3550 if (uuid_str2bin(pos, config->uuid)) { 3551 wpa_printf(MSG_ERROR, "Line %d: invalid UUID", line); 3552 return -1; 3553 } 3554 uuid_bin2str(config->uuid, buf, sizeof(buf)); 3555 wpa_printf(MSG_DEBUG, "uuid=%s", buf); 3556 return 0; 3557} 3558 3559 3560static int wpa_config_process_device_type( 3561 const struct global_parse_data *data, 3562 struct wpa_config *config, int line, const char *pos) 3563{ 3564 return wps_dev_type_str2bin(pos, config->device_type); 3565} 3566 3567 3568static int wpa_config_process_os_version(const struct global_parse_data *data, 3569 struct wpa_config *config, int line, 3570 const char *pos) 3571{ 3572 if (hexstr2bin(pos, config->os_version, 4)) { 3573 wpa_printf(MSG_ERROR, "Line %d: invalid os_version", line); 3574 return -1; 3575 } 3576 wpa_printf(MSG_DEBUG, "os_version=%08x", 3577 WPA_GET_BE32(config->os_version)); 3578 return 0; 3579} 3580 3581 3582static int wpa_config_process_wps_vendor_ext_m1( 3583 const struct global_parse_data *data, 3584 struct wpa_config *config, int line, const char *pos) 3585{ 3586 struct wpabuf *tmp; 3587 int len = os_strlen(pos) / 2; 3588 u8 *p; 3589 3590 if (!len) { 3591 wpa_printf(MSG_ERROR, "Line %d: " 3592 "invalid wps_vendor_ext_m1", line); 3593 return -1; 3594 } 3595 3596 tmp = wpabuf_alloc(len); 3597 if (tmp) { 3598 p = wpabuf_put(tmp, len); 3599 3600 if (hexstr2bin(pos, p, len)) { 3601 wpa_printf(MSG_ERROR, "Line %d: " 3602 "invalid wps_vendor_ext_m1", line); 3603 wpabuf_free(tmp); 3604 return -1; 3605 } 3606 3607 wpabuf_free(config->wps_vendor_ext_m1); 3608 config->wps_vendor_ext_m1 = tmp; 3609 } else { 3610 wpa_printf(MSG_ERROR, "Can not allocate " 3611 "memory for wps_vendor_ext_m1"); 3612 return -1; 3613 } 3614 3615 return 0; 3616} 3617 3618#endif /* CONFIG_WPS */ 3619 3620#ifdef CONFIG_P2P 3621static int wpa_config_process_sec_device_type( 3622 const struct global_parse_data *data, 3623 struct wpa_config *config, int line, const char *pos) 3624{ 3625 int idx; 3626 3627 if (config->num_sec_device_types >= MAX_SEC_DEVICE_TYPES) { 3628 wpa_printf(MSG_ERROR, "Line %d: too many sec_device_type " 3629 "items", line); 3630 return -1; 3631 } 3632 3633 idx = config->num_sec_device_types; 3634 3635 if (wps_dev_type_str2bin(pos, config->sec_device_type[idx])) 3636 return -1; 3637 3638 config->num_sec_device_types++; 3639 return 0; 3640} 3641 3642 3643static int wpa_config_process_p2p_pref_chan( 3644 const struct global_parse_data *data, 3645 struct wpa_config *config, int line, const char *pos) 3646{ 3647 struct p2p_channel *pref = NULL, *n; 3648 unsigned int num = 0; 3649 const char *pos2; 3650 u8 op_class, chan; 3651 3652 /* format: class:chan,class:chan,... */ 3653 3654 while (*pos) { 3655 op_class = atoi(pos); 3656 pos2 = os_strchr(pos, ':'); 3657 if (pos2 == NULL) 3658 goto fail; 3659 pos2++; 3660 chan = atoi(pos2); 3661 3662 n = os_realloc_array(pref, num + 1, 3663 sizeof(struct p2p_channel)); 3664 if (n == NULL) 3665 goto fail; 3666 pref = n; 3667 pref[num].op_class = op_class; 3668 pref[num].chan = chan; 3669 num++; 3670 3671 pos = os_strchr(pos2, ','); 3672 if (pos == NULL) 3673 break; 3674 pos++; 3675 } 3676 3677 os_free(config->p2p_pref_chan); 3678 config->p2p_pref_chan = pref; 3679 config->num_p2p_pref_chan = num; 3680 wpa_hexdump(MSG_DEBUG, "P2P: Preferred class/channel pairs", 3681 (u8 *) config->p2p_pref_chan, 3682 config->num_p2p_pref_chan * sizeof(struct p2p_channel)); 3683 3684 return 0; 3685 3686fail: 3687 os_free(pref); 3688 wpa_printf(MSG_ERROR, "Line %d: Invalid p2p_pref_chan list", line); 3689 return -1; 3690} 3691 3692 3693static int wpa_config_process_p2p_no_go_freq( 3694 const struct global_parse_data *data, 3695 struct wpa_config *config, int line, const char *pos) 3696{ 3697 int ret; 3698 3699 ret = freq_range_list_parse(&config->p2p_no_go_freq, pos); 3700 if (ret < 0) { 3701 wpa_printf(MSG_ERROR, "Line %d: Invalid p2p_no_go_freq", line); 3702 return -1; 3703 } 3704 3705 wpa_printf(MSG_DEBUG, "P2P: p2p_no_go_freq with %u items", 3706 config->p2p_no_go_freq.num); 3707 3708 return 0; 3709} 3710 3711#endif /* CONFIG_P2P */ 3712 3713 3714static int wpa_config_process_hessid( 3715 const struct global_parse_data *data, 3716 struct wpa_config *config, int line, const char *pos) 3717{ 3718 if (hwaddr_aton2(pos, config->hessid) < 0) { 3719 wpa_printf(MSG_ERROR, "Line %d: Invalid hessid '%s'", 3720 line, pos); 3721 return -1; 3722 } 3723 3724 return 0; 3725} 3726 3727 3728static int wpa_config_process_sae_groups( 3729 const struct global_parse_data *data, 3730 struct wpa_config *config, int line, const char *pos) 3731{ 3732 int *groups = wpa_config_parse_int_array(pos); 3733 if (groups == NULL) { 3734 wpa_printf(MSG_ERROR, "Line %d: Invalid sae_groups '%s'", 3735 line, pos); 3736 return -1; 3737 } 3738 3739 os_free(config->sae_groups); 3740 config->sae_groups = groups; 3741 3742 return 0; 3743} 3744 3745 3746static int wpa_config_process_ap_vendor_elements( 3747 const struct global_parse_data *data, 3748 struct wpa_config *config, int line, const char *pos) 3749{ 3750 struct wpabuf *tmp; 3751 int len = os_strlen(pos) / 2; 3752 u8 *p; 3753 3754 if (!len) { 3755 wpa_printf(MSG_ERROR, "Line %d: invalid ap_vendor_elements", 3756 line); 3757 return -1; 3758 } 3759 3760 tmp = wpabuf_alloc(len); 3761 if (tmp) { 3762 p = wpabuf_put(tmp, len); 3763 3764 if (hexstr2bin(pos, p, len)) { 3765 wpa_printf(MSG_ERROR, "Line %d: invalid " 3766 "ap_vendor_elements", line); 3767 wpabuf_free(tmp); 3768 return -1; 3769 } 3770 3771 wpabuf_free(config->ap_vendor_elements); 3772 config->ap_vendor_elements = tmp; 3773 } else { 3774 wpa_printf(MSG_ERROR, "Cannot allocate memory for " 3775 "ap_vendor_elements"); 3776 return -1; 3777 } 3778 3779 return 0; 3780} 3781 3782 3783#ifdef CONFIG_CTRL_IFACE 3784static int wpa_config_process_no_ctrl_interface( 3785 const struct global_parse_data *data, 3786 struct wpa_config *config, int line, const char *pos) 3787{ 3788 wpa_printf(MSG_DEBUG, "no_ctrl_interface -> ctrl_interface=NULL"); 3789 os_free(config->ctrl_interface); 3790 config->ctrl_interface = NULL; 3791 return 0; 3792} 3793#endif /* CONFIG_CTRL_IFACE */ 3794 3795 3796#ifdef OFFSET 3797#undef OFFSET 3798#endif /* OFFSET */ 3799/* OFFSET: Get offset of a variable within the wpa_config structure */ 3800#define OFFSET(v) ((void *) &((struct wpa_config *) 0)->v) 3801 3802#define FUNC(f) #f, wpa_config_process_ ## f, OFFSET(f), NULL, NULL 3803#define FUNC_NO_VAR(f) #f, wpa_config_process_ ## f, NULL, NULL, NULL 3804#define _INT(f) #f, wpa_global_config_parse_int, OFFSET(f) 3805#define INT(f) _INT(f), NULL, NULL 3806#define INT_RANGE(f, min, max) _INT(f), (void *) min, (void *) max 3807#define _STR(f) #f, wpa_global_config_parse_str, OFFSET(f) 3808#define STR(f) _STR(f), NULL, NULL 3809#define STR_RANGE(f, min, max) _STR(f), (void *) min, (void *) max 3810#define BIN(f) #f, wpa_global_config_parse_bin, OFFSET(f), NULL, NULL 3811#define IPV4(f) #f, wpa_global_config_parse_ipv4, OFFSET(f), NULL, NULL 3812 3813static const struct global_parse_data global_fields[] = { 3814#ifdef CONFIG_CTRL_IFACE 3815 { STR(ctrl_interface), 0 }, 3816 { FUNC_NO_VAR(no_ctrl_interface), 0 }, 3817 { STR(ctrl_interface_group), 0 } /* deprecated */, 3818#endif /* CONFIG_CTRL_IFACE */ 3819#ifdef CONFIG_MACSEC 3820 { INT_RANGE(eapol_version, 1, 3), 0 }, 3821#else /* CONFIG_MACSEC */ 3822 { INT_RANGE(eapol_version, 1, 2), 0 }, 3823#endif /* CONFIG_MACSEC */ 3824 { INT(ap_scan), 0 }, 3825 { FUNC(bgscan), 0 }, 3826 { INT(disable_scan_offload), 0 }, 3827 { INT(fast_reauth), 0 }, 3828 { STR(opensc_engine_path), 0 }, 3829 { STR(pkcs11_engine_path), 0 }, 3830 { STR(pkcs11_module_path), 0 }, 3831 { STR(pcsc_reader), 0 }, 3832 { STR(pcsc_pin), 0 }, 3833 { INT(external_sim), 0 }, 3834 { STR(driver_param), 0 }, 3835 { INT(dot11RSNAConfigPMKLifetime), 0 }, 3836 { INT(dot11RSNAConfigPMKReauthThreshold), 0 }, 3837 { INT(dot11RSNAConfigSATimeout), 0 }, 3838#ifndef CONFIG_NO_CONFIG_WRITE 3839 { INT(update_config), 0 }, 3840#endif /* CONFIG_NO_CONFIG_WRITE */ 3841 { FUNC_NO_VAR(load_dynamic_eap), 0 }, 3842#ifdef CONFIG_WPS 3843 { FUNC(uuid), CFG_CHANGED_UUID }, 3844 { STR_RANGE(device_name, 0, 32), CFG_CHANGED_DEVICE_NAME }, 3845 { STR_RANGE(manufacturer, 0, 64), CFG_CHANGED_WPS_STRING }, 3846 { STR_RANGE(model_name, 0, 32), CFG_CHANGED_WPS_STRING }, 3847 { STR_RANGE(model_number, 0, 32), CFG_CHANGED_WPS_STRING }, 3848 { STR_RANGE(serial_number, 0, 32), CFG_CHANGED_WPS_STRING }, 3849 { FUNC(device_type), CFG_CHANGED_DEVICE_TYPE }, 3850 { FUNC(os_version), CFG_CHANGED_OS_VERSION }, 3851 { STR(config_methods), CFG_CHANGED_CONFIG_METHODS }, 3852 { INT_RANGE(wps_cred_processing, 0, 2), 0 }, 3853 { FUNC(wps_vendor_ext_m1), CFG_CHANGED_VENDOR_EXTENSION }, 3854#endif /* CONFIG_WPS */ 3855#ifdef CONFIG_P2P 3856 { FUNC(sec_device_type), CFG_CHANGED_SEC_DEVICE_TYPE }, 3857 { INT(p2p_listen_reg_class), 0 }, 3858 { INT(p2p_listen_channel), 0 }, 3859 { INT(p2p_oper_reg_class), CFG_CHANGED_P2P_OPER_CHANNEL }, 3860 { INT(p2p_oper_channel), CFG_CHANGED_P2P_OPER_CHANNEL }, 3861 { INT_RANGE(p2p_go_intent, 0, 15), 0 }, 3862 { STR(p2p_ssid_postfix), CFG_CHANGED_P2P_SSID_POSTFIX }, 3863 { INT_RANGE(persistent_reconnect, 0, 1), 0 }, 3864 { INT_RANGE(p2p_intra_bss, 0, 1), CFG_CHANGED_P2P_INTRA_BSS }, 3865 { INT(p2p_group_idle), 0 }, 3866 { INT_RANGE(p2p_passphrase_len, 8, 63), 3867 CFG_CHANGED_P2P_PASSPHRASE_LEN }, 3868 { FUNC(p2p_pref_chan), CFG_CHANGED_P2P_PREF_CHAN }, 3869 { FUNC(p2p_no_go_freq), CFG_CHANGED_P2P_PREF_CHAN }, 3870 { INT_RANGE(p2p_add_cli_chan, 0, 1), 0 }, 3871 { INT_RANGE(p2p_optimize_listen_chan, 0, 1), 0 }, 3872 { INT(p2p_go_ht40), 0 }, 3873 { INT(p2p_go_vht), 0 }, 3874 { INT(p2p_disabled), 0 }, 3875 { INT(p2p_no_group_iface), 0 }, 3876 { INT_RANGE(p2p_ignore_shared_freq, 0, 1), 0 }, 3877 { IPV4(ip_addr_go), 0 }, 3878 { IPV4(ip_addr_mask), 0 }, 3879 { IPV4(ip_addr_start), 0 }, 3880 { IPV4(ip_addr_end), 0 }, 3881#endif /* CONFIG_P2P */ 3882 { FUNC(country), CFG_CHANGED_COUNTRY }, 3883 { INT(bss_max_count), 0 }, 3884 { INT(bss_expiration_age), 0 }, 3885 { INT(bss_expiration_scan_count), 0 }, 3886 { INT_RANGE(filter_ssids, 0, 1), 0 }, 3887 { INT_RANGE(filter_rssi, -100, 0), 0 }, 3888 { INT(max_num_sta), 0 }, 3889 { INT_RANGE(disassoc_low_ack, 0, 1), 0 }, 3890#ifdef CONFIG_HS20 3891 { INT_RANGE(hs20, 0, 1), 0 }, 3892#endif /* CONFIG_HS20 */ 3893 { INT_RANGE(interworking, 0, 1), 0 }, 3894 { FUNC(hessid), 0 }, 3895 { INT_RANGE(access_network_type, 0, 15), 0 }, 3896 { INT_RANGE(pbc_in_m1, 0, 1), 0 }, 3897 { STR(autoscan), 0 }, 3898 { INT_RANGE(wps_nfc_dev_pw_id, 0x10, 0xffff), 3899 CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3900 { BIN(wps_nfc_dh_pubkey), CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3901 { BIN(wps_nfc_dh_privkey), CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3902 { BIN(wps_nfc_dev_pw), CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3903 { STR(ext_password_backend), CFG_CHANGED_EXT_PW_BACKEND }, 3904 { INT(p2p_go_max_inactivity), 0 }, 3905 { INT_RANGE(auto_interworking, 0, 1), 0 }, 3906 { INT(okc), 0 }, 3907 { INT(pmf), 0 }, 3908 { FUNC(sae_groups), 0 }, 3909 { INT(dtim_period), 0 }, 3910 { INT(beacon_int), 0 }, 3911 { FUNC(ap_vendor_elements), 0 }, 3912 { INT_RANGE(ignore_old_scan_res, 0, 1), 0 }, 3913 { FUNC(freq_list), 0 }, 3914 { INT(scan_cur_freq), 0 }, 3915 { INT(sched_scan_interval), 0 }, 3916 { INT(tdls_external_control), 0}, 3917 { STR(osu_dir), 0 }, 3918 { STR(wowlan_triggers), 0 }, 3919 { INT(p2p_search_delay), 0}, 3920}; 3921 3922#undef FUNC 3923#undef _INT 3924#undef INT 3925#undef INT_RANGE 3926#undef _STR 3927#undef STR 3928#undef STR_RANGE 3929#undef BIN 3930#undef IPV4 3931#define NUM_GLOBAL_FIELDS ARRAY_SIZE(global_fields) 3932 3933 3934int wpa_config_process_global(struct wpa_config *config, char *pos, int line) 3935{ 3936 size_t i; 3937 int ret = 0; 3938 3939 for (i = 0; i < NUM_GLOBAL_FIELDS; i++) { 3940 const struct global_parse_data *field = &global_fields[i]; 3941 size_t flen = os_strlen(field->name); 3942 if (os_strncmp(pos, field->name, flen) != 0 || 3943 pos[flen] != '=') 3944 continue; 3945 3946 if (field->parser(field, config, line, pos + flen + 1)) { 3947 wpa_printf(MSG_ERROR, "Line %d: failed to " 3948 "parse '%s'.", line, pos); 3949 ret = -1; 3950 } 3951 if (field->changed_flag == CFG_CHANGED_NFC_PASSWORD_TOKEN) 3952 config->wps_nfc_pw_from_config = 1; 3953 config->changed_parameters |= field->changed_flag; 3954 break; 3955 } 3956 if (i == NUM_GLOBAL_FIELDS) { 3957#ifdef CONFIG_AP 3958 if (os_strncmp(pos, "wmm_ac_", 7) == 0) { 3959 char *tmp = os_strchr(pos, '='); 3960 if (tmp == NULL) { 3961 if (line < 0) 3962 return -1; 3963 wpa_printf(MSG_ERROR, "Line %d: invalid line " 3964 "'%s'", line, pos); 3965 return -1; 3966 } 3967 *tmp++ = '\0'; 3968 if (hostapd_config_wmm_ac(config->wmm_ac_params, pos, 3969 tmp)) { 3970 wpa_printf(MSG_ERROR, "Line %d: invalid WMM " 3971 "AC item", line); 3972 return -1; 3973 } 3974 } 3975#endif /* CONFIG_AP */ 3976 if (line < 0) 3977 return -1; 3978 wpa_printf(MSG_ERROR, "Line %d: unknown global field '%s'.", 3979 line, pos); 3980 ret = -1; 3981 } 3982 3983 return ret; 3984} 3985