config.c revision 88deb302e5a0b009dfddf4c22719665902ebf68d
1/* 2 * WPA Supplicant / Configuration parser and common functions 3 * Copyright (c) 2003-2012, Jouni Malinen <j@w1.fi> 4 * 5 * This software may be distributed under the terms of the BSD license. 6 * See README for more details. 7 */ 8 9#include "includes.h" 10 11#include "common.h" 12#include "utils/uuid.h" 13#include "utils/ip_addr.h" 14#include "crypto/sha1.h" 15#include "rsn_supp/wpa.h" 16#include "eap_peer/eap.h" 17#include "p2p/p2p.h" 18#include "config.h" 19 20 21#if !defined(CONFIG_CTRL_IFACE) && defined(CONFIG_NO_CONFIG_WRITE) 22#define NO_CONFIG_WRITE 23#endif 24 25/* 26 * Structure for network configuration parsing. This data is used to implement 27 * a generic parser for each network block variable. The table of configuration 28 * variables is defined below in this file (ssid_fields[]). 29 */ 30struct parse_data { 31 /* Configuration variable name */ 32 char *name; 33 34 /* Parser function for this variable */ 35 int (*parser)(const struct parse_data *data, struct wpa_ssid *ssid, 36 int line, const char *value); 37 38#ifndef NO_CONFIG_WRITE 39 /* Writer function (i.e., to get the variable in text format from 40 * internal presentation). */ 41 char * (*writer)(const struct parse_data *data, struct wpa_ssid *ssid); 42#endif /* NO_CONFIG_WRITE */ 43 44 /* Variable specific parameters for the parser. */ 45 void *param1, *param2, *param3, *param4; 46 47 /* 0 = this variable can be included in debug output and ctrl_iface 48 * 1 = this variable contains key/private data and it must not be 49 * included in debug output unless explicitly requested. In 50 * addition, this variable will not be readable through the 51 * ctrl_iface. 52 */ 53 int key_data; 54}; 55 56 57static int wpa_config_parse_str(const struct parse_data *data, 58 struct wpa_ssid *ssid, 59 int line, const char *value) 60{ 61 size_t res_len, *dst_len; 62 char **dst, *tmp; 63 64 if (os_strcmp(value, "NULL") == 0) { 65 wpa_printf(MSG_DEBUG, "Unset configuration string '%s'", 66 data->name); 67 tmp = NULL; 68 res_len = 0; 69 goto set; 70 } 71 72 tmp = wpa_config_parse_string(value, &res_len); 73 if (tmp == NULL) { 74 wpa_printf(MSG_ERROR, "Line %d: failed to parse %s '%s'.", 75 line, data->name, 76 data->key_data ? "[KEY DATA REMOVED]" : value); 77 return -1; 78 } 79 80 if (data->key_data) { 81 wpa_hexdump_ascii_key(MSG_MSGDUMP, data->name, 82 (u8 *) tmp, res_len); 83 } else { 84 wpa_hexdump_ascii(MSG_MSGDUMP, data->name, 85 (u8 *) tmp, res_len); 86 } 87 88 if (data->param3 && res_len < (size_t) data->param3) { 89 wpa_printf(MSG_ERROR, "Line %d: too short %s (len=%lu " 90 "min_len=%ld)", line, data->name, 91 (unsigned long) res_len, (long) data->param3); 92 os_free(tmp); 93 return -1; 94 } 95 96 if (data->param4 && res_len > (size_t) data->param4) { 97 wpa_printf(MSG_ERROR, "Line %d: too long %s (len=%lu " 98 "max_len=%ld)", line, data->name, 99 (unsigned long) res_len, (long) data->param4); 100 os_free(tmp); 101 return -1; 102 } 103 104set: 105 dst = (char **) (((u8 *) ssid) + (long) data->param1); 106 dst_len = (size_t *) (((u8 *) ssid) + (long) data->param2); 107 os_free(*dst); 108 *dst = tmp; 109 if (data->param2) 110 *dst_len = res_len; 111 112 return 0; 113} 114 115 116#ifndef NO_CONFIG_WRITE 117static char * wpa_config_write_string_ascii(const u8 *value, size_t len) 118{ 119 char *buf; 120 121 buf = os_malloc(len + 3); 122 if (buf == NULL) 123 return NULL; 124 buf[0] = '"'; 125 os_memcpy(buf + 1, value, len); 126 buf[len + 1] = '"'; 127 buf[len + 2] = '\0'; 128 129 return buf; 130} 131 132 133static char * wpa_config_write_string_hex(const u8 *value, size_t len) 134{ 135 char *buf; 136 137 buf = os_zalloc(2 * len + 1); 138 if (buf == NULL) 139 return NULL; 140 wpa_snprintf_hex(buf, 2 * len + 1, value, len); 141 142 return buf; 143} 144 145 146static char * wpa_config_write_string(const u8 *value, size_t len) 147{ 148 if (value == NULL) 149 return NULL; 150 151 if (is_hex(value, len)) 152 return wpa_config_write_string_hex(value, len); 153 else 154 return wpa_config_write_string_ascii(value, len); 155} 156 157 158static char * wpa_config_write_str(const struct parse_data *data, 159 struct wpa_ssid *ssid) 160{ 161 size_t len; 162 char **src; 163 164 src = (char **) (((u8 *) ssid) + (long) data->param1); 165 if (*src == NULL) 166 return NULL; 167 168 if (data->param2) 169 len = *((size_t *) (((u8 *) ssid) + (long) data->param2)); 170 else 171 len = os_strlen(*src); 172 173 return wpa_config_write_string((const u8 *) *src, len); 174} 175#endif /* NO_CONFIG_WRITE */ 176 177 178static int wpa_config_parse_int(const struct parse_data *data, 179 struct wpa_ssid *ssid, 180 int line, const char *value) 181{ 182 int val, *dst; 183 char *end; 184 185 dst = (int *) (((u8 *) ssid) + (long) data->param1); 186 val = strtol(value, &end, 0); 187 if (*end) { 188 wpa_printf(MSG_ERROR, "Line %d: invalid number \"%s\"", 189 line, value); 190 return -1; 191 } 192 *dst = val; 193 wpa_printf(MSG_MSGDUMP, "%s=%d (0x%x)", data->name, *dst, *dst); 194 195 if (data->param3 && *dst < (long) data->param3) { 196 wpa_printf(MSG_ERROR, "Line %d: too small %s (value=%d " 197 "min_value=%ld)", line, data->name, *dst, 198 (long) data->param3); 199 *dst = (long) data->param3; 200 return -1; 201 } 202 203 if (data->param4 && *dst > (long) data->param4) { 204 wpa_printf(MSG_ERROR, "Line %d: too large %s (value=%d " 205 "max_value=%ld)", line, data->name, *dst, 206 (long) data->param4); 207 *dst = (long) data->param4; 208 return -1; 209 } 210 211 return 0; 212} 213 214 215#ifndef NO_CONFIG_WRITE 216static char * wpa_config_write_int(const struct parse_data *data, 217 struct wpa_ssid *ssid) 218{ 219 int *src, res; 220 char *value; 221 222 src = (int *) (((u8 *) ssid) + (long) data->param1); 223 224 value = os_malloc(20); 225 if (value == NULL) 226 return NULL; 227 res = os_snprintf(value, 20, "%d", *src); 228 if (res < 0 || res >= 20) { 229 os_free(value); 230 return NULL; 231 } 232 value[20 - 1] = '\0'; 233 return value; 234} 235#endif /* NO_CONFIG_WRITE */ 236 237 238static int wpa_config_parse_bssid(const struct parse_data *data, 239 struct wpa_ssid *ssid, int line, 240 const char *value) 241{ 242 if (value[0] == '\0' || os_strcmp(value, "\"\"") == 0 || 243 os_strcmp(value, "any") == 0) { 244 ssid->bssid_set = 0; 245 wpa_printf(MSG_MSGDUMP, "BSSID any"); 246 return 0; 247 } 248 if (hwaddr_aton(value, ssid->bssid)) { 249 wpa_printf(MSG_ERROR, "Line %d: Invalid BSSID '%s'.", 250 line, value); 251 return -1; 252 } 253 ssid->bssid_set = 1; 254 wpa_hexdump(MSG_MSGDUMP, "BSSID", ssid->bssid, ETH_ALEN); 255 return 0; 256} 257 258 259#ifndef NO_CONFIG_WRITE 260static char * wpa_config_write_bssid(const struct parse_data *data, 261 struct wpa_ssid *ssid) 262{ 263 char *value; 264 int res; 265 266 if (!ssid->bssid_set) 267 return NULL; 268 269 value = os_malloc(20); 270 if (value == NULL) 271 return NULL; 272 res = os_snprintf(value, 20, MACSTR, MAC2STR(ssid->bssid)); 273 if (res < 0 || res >= 20) { 274 os_free(value); 275 return NULL; 276 } 277 value[20 - 1] = '\0'; 278 return value; 279} 280#endif /* NO_CONFIG_WRITE */ 281 282 283static int wpa_config_parse_psk(const struct parse_data *data, 284 struct wpa_ssid *ssid, int line, 285 const char *value) 286{ 287#ifdef CONFIG_EXT_PASSWORD 288 if (os_strncmp(value, "ext:", 4) == 0) { 289 str_clear_free(ssid->passphrase); 290 ssid->passphrase = NULL; 291 ssid->psk_set = 0; 292 os_free(ssid->ext_psk); 293 ssid->ext_psk = os_strdup(value + 4); 294 if (ssid->ext_psk == NULL) 295 return -1; 296 wpa_printf(MSG_DEBUG, "PSK: External password '%s'", 297 ssid->ext_psk); 298 return 0; 299 } 300#endif /* CONFIG_EXT_PASSWORD */ 301 302 if (*value == '"') { 303#ifndef CONFIG_NO_PBKDF2 304 const char *pos; 305 size_t len; 306 307 value++; 308 pos = os_strrchr(value, '"'); 309 if (pos) 310 len = pos - value; 311 else 312 len = os_strlen(value); 313 if (len < 8 || len > 63) { 314 wpa_printf(MSG_ERROR, "Line %d: Invalid passphrase " 315 "length %lu (expected: 8..63) '%s'.", 316 line, (unsigned long) len, value); 317 return -1; 318 } 319 wpa_hexdump_ascii_key(MSG_MSGDUMP, "PSK (ASCII passphrase)", 320 (u8 *) value, len); 321 if (ssid->passphrase && os_strlen(ssid->passphrase) == len && 322 os_memcmp(ssid->passphrase, value, len) == 0) 323 return 0; 324 ssid->psk_set = 0; 325 str_clear_free(ssid->passphrase); 326 ssid->passphrase = dup_binstr(value, len); 327 if (ssid->passphrase == NULL) 328 return -1; 329 return 0; 330#else /* CONFIG_NO_PBKDF2 */ 331 wpa_printf(MSG_ERROR, "Line %d: ASCII passphrase not " 332 "supported.", line); 333 return -1; 334#endif /* CONFIG_NO_PBKDF2 */ 335 } 336 337 if (hexstr2bin(value, ssid->psk, PMK_LEN) || 338 value[PMK_LEN * 2] != '\0') { 339 wpa_printf(MSG_ERROR, "Line %d: Invalid PSK '%s'.", 340 line, value); 341 return -1; 342 } 343 344 str_clear_free(ssid->passphrase); 345 ssid->passphrase = NULL; 346 347 ssid->psk_set = 1; 348 wpa_hexdump_key(MSG_MSGDUMP, "PSK", ssid->psk, PMK_LEN); 349 return 0; 350} 351 352 353#ifndef NO_CONFIG_WRITE 354static char * wpa_config_write_psk(const struct parse_data *data, 355 struct wpa_ssid *ssid) 356{ 357#ifdef CONFIG_EXT_PASSWORD 358 if (ssid->ext_psk) { 359 size_t len = 4 + os_strlen(ssid->ext_psk) + 1; 360 char *buf = os_malloc(len); 361 if (buf == NULL) 362 return NULL; 363 os_snprintf(buf, len, "ext:%s", ssid->ext_psk); 364 return buf; 365 } 366#endif /* CONFIG_EXT_PASSWORD */ 367 368 if (ssid->passphrase) 369 return wpa_config_write_string_ascii( 370 (const u8 *) ssid->passphrase, 371 os_strlen(ssid->passphrase)); 372 373 if (ssid->psk_set) 374 return wpa_config_write_string_hex(ssid->psk, PMK_LEN); 375 376 return NULL; 377} 378#endif /* NO_CONFIG_WRITE */ 379 380 381static int wpa_config_parse_proto(const struct parse_data *data, 382 struct wpa_ssid *ssid, int line, 383 const char *value) 384{ 385 int val = 0, last, errors = 0; 386 char *start, *end, *buf; 387 388 buf = os_strdup(value); 389 if (buf == NULL) 390 return -1; 391 start = buf; 392 393 while (*start != '\0') { 394 while (*start == ' ' || *start == '\t') 395 start++; 396 if (*start == '\0') 397 break; 398 end = start; 399 while (*end != ' ' && *end != '\t' && *end != '\0') 400 end++; 401 last = *end == '\0'; 402 *end = '\0'; 403 if (os_strcmp(start, "WPA") == 0) 404 val |= WPA_PROTO_WPA; 405 else if (os_strcmp(start, "RSN") == 0 || 406 os_strcmp(start, "WPA2") == 0) 407 val |= WPA_PROTO_RSN; 408 else if (os_strcmp(start, "OSEN") == 0) 409 val |= WPA_PROTO_OSEN; 410 else { 411 wpa_printf(MSG_ERROR, "Line %d: invalid proto '%s'", 412 line, start); 413 errors++; 414 } 415 416 if (last) 417 break; 418 start = end + 1; 419 } 420 os_free(buf); 421 422 if (val == 0) { 423 wpa_printf(MSG_ERROR, 424 "Line %d: no proto values configured.", line); 425 errors++; 426 } 427 428 wpa_printf(MSG_MSGDUMP, "proto: 0x%x", val); 429 ssid->proto = val; 430 return errors ? -1 : 0; 431} 432 433 434#ifndef NO_CONFIG_WRITE 435static char * wpa_config_write_proto(const struct parse_data *data, 436 struct wpa_ssid *ssid) 437{ 438 int ret; 439 char *buf, *pos, *end; 440 441 pos = buf = os_zalloc(20); 442 if (buf == NULL) 443 return NULL; 444 end = buf + 20; 445 446 if (ssid->proto & WPA_PROTO_WPA) { 447 ret = os_snprintf(pos, end - pos, "%sWPA", 448 pos == buf ? "" : " "); 449 if (ret < 0 || ret >= end - pos) 450 return buf; 451 pos += ret; 452 } 453 454 if (ssid->proto & WPA_PROTO_RSN) { 455 ret = os_snprintf(pos, end - pos, "%sRSN", 456 pos == buf ? "" : " "); 457 if (ret < 0 || ret >= end - pos) 458 return buf; 459 pos += ret; 460 } 461 462 if (ssid->proto & WPA_PROTO_OSEN) { 463 ret = os_snprintf(pos, end - pos, "%sOSEN", 464 pos == buf ? "" : " "); 465 if (ret < 0 || ret >= end - pos) 466 return buf; 467 pos += ret; 468 } 469 470 if (pos == buf) { 471 os_free(buf); 472 buf = NULL; 473 } 474 475 return buf; 476} 477#endif /* NO_CONFIG_WRITE */ 478 479 480static int wpa_config_parse_key_mgmt(const struct parse_data *data, 481 struct wpa_ssid *ssid, int line, 482 const char *value) 483{ 484 int val = 0, last, errors = 0; 485 char *start, *end, *buf; 486 487 buf = os_strdup(value); 488 if (buf == NULL) 489 return -1; 490 start = buf; 491 492 while (*start != '\0') { 493 while (*start == ' ' || *start == '\t') 494 start++; 495 if (*start == '\0') 496 break; 497 end = start; 498 while (*end != ' ' && *end != '\t' && *end != '\0') 499 end++; 500 last = *end == '\0'; 501 *end = '\0'; 502 if (os_strcmp(start, "WPA-PSK") == 0) 503 val |= WPA_KEY_MGMT_PSK; 504 else if (os_strcmp(start, "WPA-EAP") == 0) 505 val |= WPA_KEY_MGMT_IEEE8021X; 506 else if (os_strcmp(start, "IEEE8021X") == 0) 507 val |= WPA_KEY_MGMT_IEEE8021X_NO_WPA; 508 else if (os_strcmp(start, "NONE") == 0) 509 val |= WPA_KEY_MGMT_NONE; 510 else if (os_strcmp(start, "WPA-NONE") == 0) 511 val |= WPA_KEY_MGMT_WPA_NONE; 512#ifdef CONFIG_IEEE80211R 513 else if (os_strcmp(start, "FT-PSK") == 0) 514 val |= WPA_KEY_MGMT_FT_PSK; 515 else if (os_strcmp(start, "FT-EAP") == 0) 516 val |= WPA_KEY_MGMT_FT_IEEE8021X; 517#endif /* CONFIG_IEEE80211R */ 518#ifdef CONFIG_IEEE80211W 519 else if (os_strcmp(start, "WPA-PSK-SHA256") == 0) 520 val |= WPA_KEY_MGMT_PSK_SHA256; 521 else if (os_strcmp(start, "WPA-EAP-SHA256") == 0) 522 val |= WPA_KEY_MGMT_IEEE8021X_SHA256; 523#endif /* CONFIG_IEEE80211W */ 524#ifdef CONFIG_WPS 525 else if (os_strcmp(start, "WPS") == 0) 526 val |= WPA_KEY_MGMT_WPS; 527#endif /* CONFIG_WPS */ 528#ifdef CONFIG_SAE 529 else if (os_strcmp(start, "SAE") == 0) 530 val |= WPA_KEY_MGMT_SAE; 531 else if (os_strcmp(start, "FT-SAE") == 0) 532 val |= WPA_KEY_MGMT_FT_SAE; 533#endif /* CONFIG_SAE */ 534#ifdef CONFIG_HS20 535 else if (os_strcmp(start, "OSEN") == 0) 536 val |= WPA_KEY_MGMT_OSEN; 537#endif /* CONFIG_HS20 */ 538 else { 539 wpa_printf(MSG_ERROR, "Line %d: invalid key_mgmt '%s'", 540 line, start); 541 errors++; 542 } 543 544 if (last) 545 break; 546 start = end + 1; 547 } 548 os_free(buf); 549 550 if (val == 0) { 551 wpa_printf(MSG_ERROR, 552 "Line %d: no key_mgmt values configured.", line); 553 errors++; 554 } 555 556 wpa_printf(MSG_MSGDUMP, "key_mgmt: 0x%x", val); 557 ssid->key_mgmt = val; 558 return errors ? -1 : 0; 559} 560 561 562#ifndef NO_CONFIG_WRITE 563static char * wpa_config_write_key_mgmt(const struct parse_data *data, 564 struct wpa_ssid *ssid) 565{ 566 char *buf, *pos, *end; 567 int ret; 568 569 pos = buf = os_zalloc(100); 570 if (buf == NULL) 571 return NULL; 572 end = buf + 100; 573 574 if (ssid->key_mgmt & WPA_KEY_MGMT_PSK) { 575 ret = os_snprintf(pos, end - pos, "%sWPA-PSK", 576 pos == buf ? "" : " "); 577 if (ret < 0 || ret >= end - pos) { 578 end[-1] = '\0'; 579 return buf; 580 } 581 pos += ret; 582 } 583 584 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X) { 585 ret = os_snprintf(pos, end - pos, "%sWPA-EAP", 586 pos == buf ? "" : " "); 587 if (ret < 0 || ret >= end - pos) { 588 end[-1] = '\0'; 589 return buf; 590 } 591 pos += ret; 592 } 593 594 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_NO_WPA) { 595 ret = os_snprintf(pos, end - pos, "%sIEEE8021X", 596 pos == buf ? "" : " "); 597 if (ret < 0 || ret >= end - pos) { 598 end[-1] = '\0'; 599 return buf; 600 } 601 pos += ret; 602 } 603 604 if (ssid->key_mgmt & WPA_KEY_MGMT_NONE) { 605 ret = os_snprintf(pos, end - pos, "%sNONE", 606 pos == buf ? "" : " "); 607 if (ret < 0 || ret >= end - pos) { 608 end[-1] = '\0'; 609 return buf; 610 } 611 pos += ret; 612 } 613 614 if (ssid->key_mgmt & WPA_KEY_MGMT_WPA_NONE) { 615 ret = os_snprintf(pos, end - pos, "%sWPA-NONE", 616 pos == buf ? "" : " "); 617 if (ret < 0 || ret >= end - pos) { 618 end[-1] = '\0'; 619 return buf; 620 } 621 pos += ret; 622 } 623 624#ifdef CONFIG_IEEE80211R 625 if (ssid->key_mgmt & WPA_KEY_MGMT_FT_PSK) { 626 ret = os_snprintf(pos, end - pos, "%sFT-PSK", 627 pos == buf ? "" : " "); 628 if (ret < 0 || ret >= end - pos) { 629 end[-1] = '\0'; 630 return buf; 631 } 632 pos += ret; 633 } 634 635 if (ssid->key_mgmt & WPA_KEY_MGMT_FT_IEEE8021X) { 636 ret = os_snprintf(pos, end - pos, "%sFT-EAP", 637 pos == buf ? "" : " "); 638 if (ret < 0 || ret >= end - pos) { 639 end[-1] = '\0'; 640 return buf; 641 } 642 pos += ret; 643 } 644#endif /* CONFIG_IEEE80211R */ 645 646#ifdef CONFIG_IEEE80211W 647 if (ssid->key_mgmt & WPA_KEY_MGMT_PSK_SHA256) { 648 ret = os_snprintf(pos, end - pos, "%sWPA-PSK-SHA256", 649 pos == buf ? "" : " "); 650 if (ret < 0 || ret >= end - pos) { 651 end[-1] = '\0'; 652 return buf; 653 } 654 pos += ret; 655 } 656 657 if (ssid->key_mgmt & WPA_KEY_MGMT_IEEE8021X_SHA256) { 658 ret = os_snprintf(pos, end - pos, "%sWPA-EAP-SHA256", 659 pos == buf ? "" : " "); 660 if (ret < 0 || ret >= end - pos) { 661 end[-1] = '\0'; 662 return buf; 663 } 664 pos += ret; 665 } 666#endif /* CONFIG_IEEE80211W */ 667 668#ifdef CONFIG_WPS 669 if (ssid->key_mgmt & WPA_KEY_MGMT_WPS) { 670 ret = os_snprintf(pos, end - pos, "%sWPS", 671 pos == buf ? "" : " "); 672 if (ret < 0 || ret >= end - pos) { 673 end[-1] = '\0'; 674 return buf; 675 } 676 pos += ret; 677 } 678#endif /* CONFIG_WPS */ 679 680 if (pos == buf) { 681 os_free(buf); 682 buf = NULL; 683 } 684 685 return buf; 686} 687#endif /* NO_CONFIG_WRITE */ 688 689 690static int wpa_config_parse_cipher(int line, const char *value) 691{ 692 int val = wpa_parse_cipher(value); 693 if (val < 0) { 694 wpa_printf(MSG_ERROR, "Line %d: invalid cipher '%s'.", 695 line, value); 696 return -1; 697 } 698 if (val == 0) { 699 wpa_printf(MSG_ERROR, "Line %d: no cipher values configured.", 700 line); 701 return -1; 702 } 703 return val; 704} 705 706 707#ifndef NO_CONFIG_WRITE 708static char * wpa_config_write_cipher(int cipher) 709{ 710 char *buf = os_zalloc(50); 711 if (buf == NULL) 712 return NULL; 713 714 if (wpa_write_ciphers(buf, buf + 50, cipher, " ") < 0) { 715 os_free(buf); 716 return NULL; 717 } 718 719 return buf; 720} 721#endif /* NO_CONFIG_WRITE */ 722 723 724static int wpa_config_parse_pairwise(const struct parse_data *data, 725 struct wpa_ssid *ssid, int line, 726 const char *value) 727{ 728 int val; 729 val = wpa_config_parse_cipher(line, value); 730 if (val == -1) 731 return -1; 732 if (val & ~WPA_ALLOWED_PAIRWISE_CIPHERS) { 733 wpa_printf(MSG_ERROR, "Line %d: not allowed pairwise cipher " 734 "(0x%x).", line, val); 735 return -1; 736 } 737 738 wpa_printf(MSG_MSGDUMP, "pairwise: 0x%x", val); 739 ssid->pairwise_cipher = val; 740 return 0; 741} 742 743 744#ifndef NO_CONFIG_WRITE 745static char * wpa_config_write_pairwise(const struct parse_data *data, 746 struct wpa_ssid *ssid) 747{ 748 return wpa_config_write_cipher(ssid->pairwise_cipher); 749} 750#endif /* NO_CONFIG_WRITE */ 751 752 753static int wpa_config_parse_group(const struct parse_data *data, 754 struct wpa_ssid *ssid, int line, 755 const char *value) 756{ 757 int val; 758 val = wpa_config_parse_cipher(line, value); 759 if (val == -1) 760 return -1; 761 if (val & ~WPA_ALLOWED_GROUP_CIPHERS) { 762 wpa_printf(MSG_ERROR, "Line %d: not allowed group cipher " 763 "(0x%x).", line, val); 764 return -1; 765 } 766 767 wpa_printf(MSG_MSGDUMP, "group: 0x%x", val); 768 ssid->group_cipher = val; 769 return 0; 770} 771 772 773#ifndef NO_CONFIG_WRITE 774static char * wpa_config_write_group(const struct parse_data *data, 775 struct wpa_ssid *ssid) 776{ 777 return wpa_config_write_cipher(ssid->group_cipher); 778} 779#endif /* NO_CONFIG_WRITE */ 780 781 782static int wpa_config_parse_auth_alg(const struct parse_data *data, 783 struct wpa_ssid *ssid, int line, 784 const char *value) 785{ 786 int val = 0, last, errors = 0; 787 char *start, *end, *buf; 788 789 buf = os_strdup(value); 790 if (buf == NULL) 791 return -1; 792 start = buf; 793 794 while (*start != '\0') { 795 while (*start == ' ' || *start == '\t') 796 start++; 797 if (*start == '\0') 798 break; 799 end = start; 800 while (*end != ' ' && *end != '\t' && *end != '\0') 801 end++; 802 last = *end == '\0'; 803 *end = '\0'; 804 if (os_strcmp(start, "OPEN") == 0) 805 val |= WPA_AUTH_ALG_OPEN; 806 else if (os_strcmp(start, "SHARED") == 0) 807 val |= WPA_AUTH_ALG_SHARED; 808 else if (os_strcmp(start, "LEAP") == 0) 809 val |= WPA_AUTH_ALG_LEAP; 810 else { 811 wpa_printf(MSG_ERROR, "Line %d: invalid auth_alg '%s'", 812 line, start); 813 errors++; 814 } 815 816 if (last) 817 break; 818 start = end + 1; 819 } 820 os_free(buf); 821 822 if (val == 0) { 823 wpa_printf(MSG_ERROR, 824 "Line %d: no auth_alg values configured.", line); 825 errors++; 826 } 827 828 wpa_printf(MSG_MSGDUMP, "auth_alg: 0x%x", val); 829 ssid->auth_alg = val; 830 return errors ? -1 : 0; 831} 832 833 834#ifndef NO_CONFIG_WRITE 835static char * wpa_config_write_auth_alg(const struct parse_data *data, 836 struct wpa_ssid *ssid) 837{ 838 char *buf, *pos, *end; 839 int ret; 840 841 pos = buf = os_zalloc(30); 842 if (buf == NULL) 843 return NULL; 844 end = buf + 30; 845 846 if (ssid->auth_alg & WPA_AUTH_ALG_OPEN) { 847 ret = os_snprintf(pos, end - pos, "%sOPEN", 848 pos == buf ? "" : " "); 849 if (ret < 0 || ret >= end - pos) { 850 end[-1] = '\0'; 851 return buf; 852 } 853 pos += ret; 854 } 855 856 if (ssid->auth_alg & WPA_AUTH_ALG_SHARED) { 857 ret = os_snprintf(pos, end - pos, "%sSHARED", 858 pos == buf ? "" : " "); 859 if (ret < 0 || ret >= end - pos) { 860 end[-1] = '\0'; 861 return buf; 862 } 863 pos += ret; 864 } 865 866 if (ssid->auth_alg & WPA_AUTH_ALG_LEAP) { 867 ret = os_snprintf(pos, end - pos, "%sLEAP", 868 pos == buf ? "" : " "); 869 if (ret < 0 || ret >= end - pos) { 870 end[-1] = '\0'; 871 return buf; 872 } 873 pos += ret; 874 } 875 876 if (pos == buf) { 877 os_free(buf); 878 buf = NULL; 879 } 880 881 return buf; 882} 883#endif /* NO_CONFIG_WRITE */ 884 885 886static int * wpa_config_parse_int_array(const char *value) 887{ 888 int *freqs; 889 size_t used, len; 890 const char *pos; 891 892 used = 0; 893 len = 10; 894 freqs = os_calloc(len + 1, sizeof(int)); 895 if (freqs == NULL) 896 return NULL; 897 898 pos = value; 899 while (pos) { 900 while (*pos == ' ') 901 pos++; 902 if (used == len) { 903 int *n; 904 size_t i; 905 n = os_realloc_array(freqs, len * 2 + 1, sizeof(int)); 906 if (n == NULL) { 907 os_free(freqs); 908 return NULL; 909 } 910 for (i = len; i <= len * 2; i++) 911 n[i] = 0; 912 freqs = n; 913 len *= 2; 914 } 915 916 freqs[used] = atoi(pos); 917 if (freqs[used] == 0) 918 break; 919 used++; 920 pos = os_strchr(pos + 1, ' '); 921 } 922 923 return freqs; 924} 925 926 927static int wpa_config_parse_scan_freq(const struct parse_data *data, 928 struct wpa_ssid *ssid, int line, 929 const char *value) 930{ 931 int *freqs; 932 933 freqs = wpa_config_parse_int_array(value); 934 if (freqs == NULL) 935 return -1; 936 if (freqs[0] == 0) { 937 os_free(freqs); 938 freqs = NULL; 939 } 940 os_free(ssid->scan_freq); 941 ssid->scan_freq = freqs; 942 943 return 0; 944} 945 946 947static int wpa_config_parse_freq_list(const struct parse_data *data, 948 struct wpa_ssid *ssid, int line, 949 const char *value) 950{ 951 int *freqs; 952 953 freqs = wpa_config_parse_int_array(value); 954 if (freqs == NULL) 955 return -1; 956 if (freqs[0] == 0) { 957 os_free(freqs); 958 freqs = NULL; 959 } 960 os_free(ssid->freq_list); 961 ssid->freq_list = freqs; 962 963 return 0; 964} 965 966 967#ifndef NO_CONFIG_WRITE 968static char * wpa_config_write_freqs(const struct parse_data *data, 969 const int *freqs) 970{ 971 char *buf, *pos, *end; 972 int i, ret; 973 size_t count; 974 975 if (freqs == NULL) 976 return NULL; 977 978 count = 0; 979 for (i = 0; freqs[i]; i++) 980 count++; 981 982 pos = buf = os_zalloc(10 * count + 1); 983 if (buf == NULL) 984 return NULL; 985 end = buf + 10 * count + 1; 986 987 for (i = 0; freqs[i]; i++) { 988 ret = os_snprintf(pos, end - pos, "%s%u", 989 i == 0 ? "" : " ", freqs[i]); 990 if (ret < 0 || ret >= end - pos) { 991 end[-1] = '\0'; 992 return buf; 993 } 994 pos += ret; 995 } 996 997 return buf; 998} 999 1000 1001static char * wpa_config_write_scan_freq(const struct parse_data *data, 1002 struct wpa_ssid *ssid) 1003{ 1004 return wpa_config_write_freqs(data, ssid->scan_freq); 1005} 1006 1007 1008static char * wpa_config_write_freq_list(const struct parse_data *data, 1009 struct wpa_ssid *ssid) 1010{ 1011 return wpa_config_write_freqs(data, ssid->freq_list); 1012} 1013#endif /* NO_CONFIG_WRITE */ 1014 1015 1016#ifdef IEEE8021X_EAPOL 1017static int wpa_config_parse_eap(const struct parse_data *data, 1018 struct wpa_ssid *ssid, int line, 1019 const char *value) 1020{ 1021 int last, errors = 0; 1022 char *start, *end, *buf; 1023 struct eap_method_type *methods = NULL, *tmp; 1024 size_t num_methods = 0; 1025 1026 buf = os_strdup(value); 1027 if (buf == NULL) 1028 return -1; 1029 start = buf; 1030 1031 while (*start != '\0') { 1032 while (*start == ' ' || *start == '\t') 1033 start++; 1034 if (*start == '\0') 1035 break; 1036 end = start; 1037 while (*end != ' ' && *end != '\t' && *end != '\0') 1038 end++; 1039 last = *end == '\0'; 1040 *end = '\0'; 1041 tmp = methods; 1042 methods = os_realloc_array(methods, num_methods + 1, 1043 sizeof(*methods)); 1044 if (methods == NULL) { 1045 os_free(tmp); 1046 os_free(buf); 1047 return -1; 1048 } 1049 methods[num_methods].method = eap_peer_get_type( 1050 start, &methods[num_methods].vendor); 1051 if (methods[num_methods].vendor == EAP_VENDOR_IETF && 1052 methods[num_methods].method == EAP_TYPE_NONE) { 1053 wpa_printf(MSG_ERROR, "Line %d: unknown EAP method " 1054 "'%s'", line, start); 1055 wpa_printf(MSG_ERROR, "You may need to add support for" 1056 " this EAP method during wpa_supplicant\n" 1057 "build time configuration.\n" 1058 "See README for more information."); 1059 errors++; 1060 } else if (methods[num_methods].vendor == EAP_VENDOR_IETF && 1061 methods[num_methods].method == EAP_TYPE_LEAP) 1062 ssid->leap++; 1063 else 1064 ssid->non_leap++; 1065 num_methods++; 1066 if (last) 1067 break; 1068 start = end + 1; 1069 } 1070 os_free(buf); 1071 1072 tmp = methods; 1073 methods = os_realloc_array(methods, num_methods + 1, sizeof(*methods)); 1074 if (methods == NULL) { 1075 os_free(tmp); 1076 return -1; 1077 } 1078 methods[num_methods].vendor = EAP_VENDOR_IETF; 1079 methods[num_methods].method = EAP_TYPE_NONE; 1080 num_methods++; 1081 1082 wpa_hexdump(MSG_MSGDUMP, "eap methods", 1083 (u8 *) methods, num_methods * sizeof(*methods)); 1084 os_free(ssid->eap.eap_methods); 1085 ssid->eap.eap_methods = methods; 1086 return errors ? -1 : 0; 1087} 1088 1089 1090static char * wpa_config_write_eap(const struct parse_data *data, 1091 struct wpa_ssid *ssid) 1092{ 1093 int i, ret; 1094 char *buf, *pos, *end; 1095 const struct eap_method_type *eap_methods = ssid->eap.eap_methods; 1096 const char *name; 1097 1098 if (eap_methods == NULL) 1099 return NULL; 1100 1101 pos = buf = os_zalloc(100); 1102 if (buf == NULL) 1103 return NULL; 1104 end = buf + 100; 1105 1106 for (i = 0; eap_methods[i].vendor != EAP_VENDOR_IETF || 1107 eap_methods[i].method != EAP_TYPE_NONE; i++) { 1108 name = eap_get_name(eap_methods[i].vendor, 1109 eap_methods[i].method); 1110 if (name) { 1111 ret = os_snprintf(pos, end - pos, "%s%s", 1112 pos == buf ? "" : " ", name); 1113 if (ret < 0 || ret >= end - pos) 1114 break; 1115 pos += ret; 1116 } 1117 } 1118 1119 end[-1] = '\0'; 1120 1121 return buf; 1122} 1123 1124 1125static int wpa_config_parse_password(const struct parse_data *data, 1126 struct wpa_ssid *ssid, int line, 1127 const char *value) 1128{ 1129 u8 *hash; 1130 1131 if (os_strcmp(value, "NULL") == 0) { 1132 wpa_printf(MSG_DEBUG, "Unset configuration string 'password'"); 1133 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1134 ssid->eap.password = NULL; 1135 ssid->eap.password_len = 0; 1136 return 0; 1137 } 1138 1139#ifdef CONFIG_EXT_PASSWORD 1140 if (os_strncmp(value, "ext:", 4) == 0) { 1141 char *name = os_strdup(value + 4); 1142 if (name == NULL) 1143 return -1; 1144 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1145 ssid->eap.password = (u8 *) name; 1146 ssid->eap.password_len = os_strlen(name); 1147 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_PASSWORD_NTHASH; 1148 ssid->eap.flags |= EAP_CONFIG_FLAGS_EXT_PASSWORD; 1149 return 0; 1150 } 1151#endif /* CONFIG_EXT_PASSWORD */ 1152 1153 if (os_strncmp(value, "hash:", 5) != 0) { 1154 char *tmp; 1155 size_t res_len; 1156 1157 tmp = wpa_config_parse_string(value, &res_len); 1158 if (tmp == NULL) { 1159 wpa_printf(MSG_ERROR, "Line %d: failed to parse " 1160 "password.", line); 1161 return -1; 1162 } 1163 wpa_hexdump_ascii_key(MSG_MSGDUMP, data->name, 1164 (u8 *) tmp, res_len); 1165 1166 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1167 ssid->eap.password = (u8 *) tmp; 1168 ssid->eap.password_len = res_len; 1169 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_PASSWORD_NTHASH; 1170 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_EXT_PASSWORD; 1171 1172 return 0; 1173 } 1174 1175 1176 /* NtPasswordHash: hash:<32 hex digits> */ 1177 if (os_strlen(value + 5) != 2 * 16) { 1178 wpa_printf(MSG_ERROR, "Line %d: Invalid password hash length " 1179 "(expected 32 hex digits)", line); 1180 return -1; 1181 } 1182 1183 hash = os_malloc(16); 1184 if (hash == NULL) 1185 return -1; 1186 1187 if (hexstr2bin(value + 5, hash, 16)) { 1188 os_free(hash); 1189 wpa_printf(MSG_ERROR, "Line %d: Invalid password hash", line); 1190 return -1; 1191 } 1192 1193 wpa_hexdump_key(MSG_MSGDUMP, data->name, hash, 16); 1194 1195 bin_clear_free(ssid->eap.password, ssid->eap.password_len); 1196 ssid->eap.password = hash; 1197 ssid->eap.password_len = 16; 1198 ssid->eap.flags |= EAP_CONFIG_FLAGS_PASSWORD_NTHASH; 1199 ssid->eap.flags &= ~EAP_CONFIG_FLAGS_EXT_PASSWORD; 1200 1201 return 0; 1202} 1203 1204 1205static char * wpa_config_write_password(const struct parse_data *data, 1206 struct wpa_ssid *ssid) 1207{ 1208 char *buf; 1209 1210 if (ssid->eap.password == NULL) 1211 return NULL; 1212 1213#ifdef CONFIG_EXT_PASSWORD 1214 if (ssid->eap.flags & EAP_CONFIG_FLAGS_EXT_PASSWORD) { 1215 buf = os_zalloc(4 + ssid->eap.password_len + 1); 1216 if (buf == NULL) 1217 return NULL; 1218 os_memcpy(buf, "ext:", 4); 1219 os_memcpy(buf + 4, ssid->eap.password, ssid->eap.password_len); 1220 return buf; 1221 } 1222#endif /* CONFIG_EXT_PASSWORD */ 1223 1224 if (!(ssid->eap.flags & EAP_CONFIG_FLAGS_PASSWORD_NTHASH)) { 1225 return wpa_config_write_string( 1226 ssid->eap.password, ssid->eap.password_len); 1227 } 1228 1229 buf = os_malloc(5 + 32 + 1); 1230 if (buf == NULL) 1231 return NULL; 1232 1233 os_memcpy(buf, "hash:", 5); 1234 wpa_snprintf_hex(buf + 5, 32 + 1, ssid->eap.password, 16); 1235 1236 return buf; 1237} 1238#endif /* IEEE8021X_EAPOL */ 1239 1240 1241static int wpa_config_parse_wep_key(u8 *key, size_t *len, int line, 1242 const char *value, int idx) 1243{ 1244 char *buf, title[20]; 1245 int res; 1246 1247 buf = wpa_config_parse_string(value, len); 1248 if (buf == NULL) { 1249 wpa_printf(MSG_ERROR, "Line %d: Invalid WEP key %d '%s'.", 1250 line, idx, value); 1251 return -1; 1252 } 1253 if (*len > MAX_WEP_KEY_LEN) { 1254 wpa_printf(MSG_ERROR, "Line %d: Too long WEP key %d '%s'.", 1255 line, idx, value); 1256 os_free(buf); 1257 return -1; 1258 } 1259 if (*len && *len != 5 && *len != 13 && *len != 16) { 1260 wpa_printf(MSG_ERROR, "Line %d: Invalid WEP key length %u - " 1261 "this network block will be ignored", 1262 line, (unsigned int) *len); 1263 } 1264 os_memcpy(key, buf, *len); 1265 str_clear_free(buf); 1266 res = os_snprintf(title, sizeof(title), "wep_key%d", idx); 1267 if (res >= 0 && (size_t) res < sizeof(title)) 1268 wpa_hexdump_key(MSG_MSGDUMP, title, key, *len); 1269 return 0; 1270} 1271 1272 1273static int wpa_config_parse_wep_key0(const struct parse_data *data, 1274 struct wpa_ssid *ssid, int line, 1275 const char *value) 1276{ 1277 return wpa_config_parse_wep_key(ssid->wep_key[0], 1278 &ssid->wep_key_len[0], line, 1279 value, 0); 1280} 1281 1282 1283static int wpa_config_parse_wep_key1(const struct parse_data *data, 1284 struct wpa_ssid *ssid, int line, 1285 const char *value) 1286{ 1287 return wpa_config_parse_wep_key(ssid->wep_key[1], 1288 &ssid->wep_key_len[1], line, 1289 value, 1); 1290} 1291 1292 1293static int wpa_config_parse_wep_key2(const struct parse_data *data, 1294 struct wpa_ssid *ssid, int line, 1295 const char *value) 1296{ 1297 return wpa_config_parse_wep_key(ssid->wep_key[2], 1298 &ssid->wep_key_len[2], line, 1299 value, 2); 1300} 1301 1302 1303static int wpa_config_parse_wep_key3(const struct parse_data *data, 1304 struct wpa_ssid *ssid, int line, 1305 const char *value) 1306{ 1307 return wpa_config_parse_wep_key(ssid->wep_key[3], 1308 &ssid->wep_key_len[3], line, 1309 value, 3); 1310} 1311 1312 1313#ifndef NO_CONFIG_WRITE 1314static char * wpa_config_write_wep_key(struct wpa_ssid *ssid, int idx) 1315{ 1316 if (ssid->wep_key_len[idx] == 0) 1317 return NULL; 1318 return wpa_config_write_string(ssid->wep_key[idx], 1319 ssid->wep_key_len[idx]); 1320} 1321 1322 1323static char * wpa_config_write_wep_key0(const struct parse_data *data, 1324 struct wpa_ssid *ssid) 1325{ 1326 return wpa_config_write_wep_key(ssid, 0); 1327} 1328 1329 1330static char * wpa_config_write_wep_key1(const struct parse_data *data, 1331 struct wpa_ssid *ssid) 1332{ 1333 return wpa_config_write_wep_key(ssid, 1); 1334} 1335 1336 1337static char * wpa_config_write_wep_key2(const struct parse_data *data, 1338 struct wpa_ssid *ssid) 1339{ 1340 return wpa_config_write_wep_key(ssid, 2); 1341} 1342 1343 1344static char * wpa_config_write_wep_key3(const struct parse_data *data, 1345 struct wpa_ssid *ssid) 1346{ 1347 return wpa_config_write_wep_key(ssid, 3); 1348} 1349#endif /* NO_CONFIG_WRITE */ 1350 1351 1352#ifdef CONFIG_P2P 1353 1354static int wpa_config_parse_go_p2p_dev_addr(const struct parse_data *data, 1355 struct wpa_ssid *ssid, int line, 1356 const char *value) 1357{ 1358 if (value[0] == '\0' || os_strcmp(value, "\"\"") == 0 || 1359 os_strcmp(value, "any") == 0) { 1360 os_memset(ssid->go_p2p_dev_addr, 0, ETH_ALEN); 1361 wpa_printf(MSG_MSGDUMP, "GO P2P Device Address any"); 1362 return 0; 1363 } 1364 if (hwaddr_aton(value, ssid->go_p2p_dev_addr)) { 1365 wpa_printf(MSG_ERROR, "Line %d: Invalid GO P2P Device Address '%s'.", 1366 line, value); 1367 return -1; 1368 } 1369 ssid->bssid_set = 1; 1370 wpa_printf(MSG_MSGDUMP, "GO P2P Device Address " MACSTR, 1371 MAC2STR(ssid->go_p2p_dev_addr)); 1372 return 0; 1373} 1374 1375 1376#ifndef NO_CONFIG_WRITE 1377static char * wpa_config_write_go_p2p_dev_addr(const struct parse_data *data, 1378 struct wpa_ssid *ssid) 1379{ 1380 char *value; 1381 int res; 1382 1383 if (is_zero_ether_addr(ssid->go_p2p_dev_addr)) 1384 return NULL; 1385 1386 value = os_malloc(20); 1387 if (value == NULL) 1388 return NULL; 1389 res = os_snprintf(value, 20, MACSTR, MAC2STR(ssid->go_p2p_dev_addr)); 1390 if (res < 0 || res >= 20) { 1391 os_free(value); 1392 return NULL; 1393 } 1394 value[20 - 1] = '\0'; 1395 return value; 1396} 1397#endif /* NO_CONFIG_WRITE */ 1398 1399 1400static int wpa_config_parse_p2p_client_list(const struct parse_data *data, 1401 struct wpa_ssid *ssid, int line, 1402 const char *value) 1403{ 1404 const char *pos; 1405 u8 *buf, *n, addr[ETH_ALEN]; 1406 size_t count; 1407 1408 buf = NULL; 1409 count = 0; 1410 1411 pos = value; 1412 while (pos && *pos) { 1413 while (*pos == ' ') 1414 pos++; 1415 1416 if (hwaddr_aton(pos, addr)) { 1417 if (count == 0) { 1418 wpa_printf(MSG_ERROR, "Line %d: Invalid " 1419 "p2p_client_list address '%s'.", 1420 line, value); 1421 os_free(buf); 1422 return -1; 1423 } 1424 /* continue anyway since this could have been from a 1425 * truncated configuration file line */ 1426 wpa_printf(MSG_INFO, "Line %d: Ignore likely " 1427 "truncated p2p_client_list address '%s'", 1428 line, pos); 1429 } else { 1430 n = os_realloc_array(buf, count + 1, ETH_ALEN); 1431 if (n == NULL) { 1432 os_free(buf); 1433 return -1; 1434 } 1435 buf = n; 1436 os_memmove(buf + ETH_ALEN, buf, count * ETH_ALEN); 1437 os_memcpy(buf, addr, ETH_ALEN); 1438 count++; 1439 wpa_hexdump(MSG_MSGDUMP, "p2p_client_list", 1440 addr, ETH_ALEN); 1441 } 1442 1443 pos = os_strchr(pos, ' '); 1444 } 1445 1446 os_free(ssid->p2p_client_list); 1447 ssid->p2p_client_list = buf; 1448 ssid->num_p2p_clients = count; 1449 1450 return 0; 1451} 1452 1453 1454#ifndef NO_CONFIG_WRITE 1455static char * wpa_config_write_p2p_client_list(const struct parse_data *data, 1456 struct wpa_ssid *ssid) 1457{ 1458 char *value, *end, *pos; 1459 int res; 1460 size_t i; 1461 1462 if (ssid->p2p_client_list == NULL || ssid->num_p2p_clients == 0) 1463 return NULL; 1464 1465 value = os_malloc(20 * ssid->num_p2p_clients); 1466 if (value == NULL) 1467 return NULL; 1468 pos = value; 1469 end = value + 20 * ssid->num_p2p_clients; 1470 1471 for (i = ssid->num_p2p_clients; i > 0; i--) { 1472 res = os_snprintf(pos, end - pos, MACSTR " ", 1473 MAC2STR(ssid->p2p_client_list + 1474 (i - 1) * ETH_ALEN)); 1475 if (res < 0 || res >= end - pos) { 1476 os_free(value); 1477 return NULL; 1478 } 1479 pos += res; 1480 } 1481 1482 if (pos > value) 1483 pos[-1] = '\0'; 1484 1485 return value; 1486} 1487#endif /* NO_CONFIG_WRITE */ 1488 1489 1490static int wpa_config_parse_psk_list(const struct parse_data *data, 1491 struct wpa_ssid *ssid, int line, 1492 const char *value) 1493{ 1494 struct psk_list_entry *p; 1495 const char *pos; 1496 1497 p = os_zalloc(sizeof(*p)); 1498 if (p == NULL) 1499 return -1; 1500 1501 pos = value; 1502 if (os_strncmp(pos, "P2P-", 4) == 0) { 1503 p->p2p = 1; 1504 pos += 4; 1505 } 1506 1507 if (hwaddr_aton(pos, p->addr)) { 1508 wpa_printf(MSG_ERROR, "Line %d: Invalid psk_list address '%s'", 1509 line, pos); 1510 os_free(p); 1511 return -1; 1512 } 1513 pos += 17; 1514 if (*pos != '-') { 1515 wpa_printf(MSG_ERROR, "Line %d: Invalid psk_list '%s'", 1516 line, pos); 1517 os_free(p); 1518 return -1; 1519 } 1520 pos++; 1521 1522 if (hexstr2bin(pos, p->psk, PMK_LEN) || pos[PMK_LEN * 2] != '\0') { 1523 wpa_printf(MSG_ERROR, "Line %d: Invalid psk_list PSK '%s'", 1524 line, pos); 1525 os_free(p); 1526 return -1; 1527 } 1528 1529 dl_list_add(&ssid->psk_list, &p->list); 1530 1531 return 0; 1532} 1533 1534 1535#ifndef NO_CONFIG_WRITE 1536static char * wpa_config_write_psk_list(const struct parse_data *data, 1537 struct wpa_ssid *ssid) 1538{ 1539 return NULL; 1540} 1541#endif /* NO_CONFIG_WRITE */ 1542 1543#endif /* CONFIG_P2P */ 1544 1545/* Helper macros for network block parser */ 1546 1547#ifdef OFFSET 1548#undef OFFSET 1549#endif /* OFFSET */ 1550/* OFFSET: Get offset of a variable within the wpa_ssid structure */ 1551#define OFFSET(v) ((void *) &((struct wpa_ssid *) 0)->v) 1552 1553/* STR: Define a string variable for an ASCII string; f = field name */ 1554#ifdef NO_CONFIG_WRITE 1555#define _STR(f) #f, wpa_config_parse_str, OFFSET(f) 1556#define _STRe(f) #f, wpa_config_parse_str, OFFSET(eap.f) 1557#else /* NO_CONFIG_WRITE */ 1558#define _STR(f) #f, wpa_config_parse_str, wpa_config_write_str, OFFSET(f) 1559#define _STRe(f) #f, wpa_config_parse_str, wpa_config_write_str, OFFSET(eap.f) 1560#endif /* NO_CONFIG_WRITE */ 1561#define STR(f) _STR(f), NULL, NULL, NULL, 0 1562#define STRe(f) _STRe(f), NULL, NULL, NULL, 0 1563#define STR_KEY(f) _STR(f), NULL, NULL, NULL, 1 1564#define STR_KEYe(f) _STRe(f), NULL, NULL, NULL, 1 1565 1566/* STR_LEN: Define a string variable with a separate variable for storing the 1567 * data length. Unlike STR(), this can be used to store arbitrary binary data 1568 * (i.e., even nul termination character). */ 1569#define _STR_LEN(f) _STR(f), OFFSET(f ## _len) 1570#define _STR_LENe(f) _STRe(f), OFFSET(eap.f ## _len) 1571#define STR_LEN(f) _STR_LEN(f), NULL, NULL, 0 1572#define STR_LENe(f) _STR_LENe(f), NULL, NULL, 0 1573#define STR_LEN_KEY(f) _STR_LEN(f), NULL, NULL, 1 1574 1575/* STR_RANGE: Like STR_LEN(), but with minimum and maximum allowed length 1576 * explicitly specified. */ 1577#define _STR_RANGE(f, min, max) _STR_LEN(f), (void *) (min), (void *) (max) 1578#define STR_RANGE(f, min, max) _STR_RANGE(f, min, max), 0 1579#define STR_RANGE_KEY(f, min, max) _STR_RANGE(f, min, max), 1 1580 1581#ifdef NO_CONFIG_WRITE 1582#define _INT(f) #f, wpa_config_parse_int, OFFSET(f), (void *) 0 1583#define _INTe(f) #f, wpa_config_parse_int, OFFSET(eap.f), (void *) 0 1584#else /* NO_CONFIG_WRITE */ 1585#define _INT(f) #f, wpa_config_parse_int, wpa_config_write_int, \ 1586 OFFSET(f), (void *) 0 1587#define _INTe(f) #f, wpa_config_parse_int, wpa_config_write_int, \ 1588 OFFSET(eap.f), (void *) 0 1589#endif /* NO_CONFIG_WRITE */ 1590 1591/* INT: Define an integer variable */ 1592#define INT(f) _INT(f), NULL, NULL, 0 1593#define INTe(f) _INTe(f), NULL, NULL, 0 1594 1595/* INT_RANGE: Define an integer variable with allowed value range */ 1596#define INT_RANGE(f, min, max) _INT(f), (void *) (min), (void *) (max), 0 1597 1598/* FUNC: Define a configuration variable that uses a custom function for 1599 * parsing and writing the value. */ 1600#ifdef NO_CONFIG_WRITE 1601#define _FUNC(f) #f, wpa_config_parse_ ## f, NULL, NULL, NULL, NULL 1602#else /* NO_CONFIG_WRITE */ 1603#define _FUNC(f) #f, wpa_config_parse_ ## f, wpa_config_write_ ## f, \ 1604 NULL, NULL, NULL, NULL 1605#endif /* NO_CONFIG_WRITE */ 1606#define FUNC(f) _FUNC(f), 0 1607#define FUNC_KEY(f) _FUNC(f), 1 1608 1609/* 1610 * Table of network configuration variables. This table is used to parse each 1611 * network configuration variable, e.g., each line in wpa_supplicant.conf file 1612 * that is inside a network block. 1613 * 1614 * This table is generated using the helper macros defined above and with 1615 * generous help from the C pre-processor. The field name is stored as a string 1616 * into .name and for STR and INT types, the offset of the target buffer within 1617 * struct wpa_ssid is stored in .param1. .param2 (if not NULL) is similar 1618 * offset to the field containing the length of the configuration variable. 1619 * .param3 and .param4 can be used to mark the allowed range (length for STR 1620 * and value for INT). 1621 * 1622 * For each configuration line in wpa_supplicant.conf, the parser goes through 1623 * this table and select the entry that matches with the field name. The parser 1624 * function (.parser) is then called to parse the actual value of the field. 1625 * 1626 * This kind of mechanism makes it easy to add new configuration parameters, 1627 * since only one line needs to be added into this table and into the 1628 * struct wpa_ssid definition if the new variable is either a string or 1629 * integer. More complex types will need to use their own parser and writer 1630 * functions. 1631 */ 1632static const struct parse_data ssid_fields[] = { 1633 { STR_RANGE(ssid, 0, MAX_SSID_LEN) }, 1634 { INT_RANGE(scan_ssid, 0, 1) }, 1635 { FUNC(bssid) }, 1636 { FUNC_KEY(psk) }, 1637 { FUNC(proto) }, 1638 { FUNC(key_mgmt) }, 1639 { INT(bg_scan_period) }, 1640 { FUNC(pairwise) }, 1641 { FUNC(group) }, 1642 { FUNC(auth_alg) }, 1643 { FUNC(scan_freq) }, 1644 { FUNC(freq_list) }, 1645#ifdef IEEE8021X_EAPOL 1646 { FUNC(eap) }, 1647 { STR_LENe(identity) }, 1648 { STR_LENe(anonymous_identity) }, 1649 { FUNC_KEY(password) }, 1650 { STRe(ca_cert) }, 1651 { STRe(ca_path) }, 1652 { STRe(client_cert) }, 1653 { STRe(private_key) }, 1654 { STR_KEYe(private_key_passwd) }, 1655 { STRe(dh_file) }, 1656 { STRe(subject_match) }, 1657 { STRe(altsubject_match) }, 1658 { STRe(domain_suffix_match) }, 1659 { STRe(ca_cert2) }, 1660 { STRe(ca_path2) }, 1661 { STRe(client_cert2) }, 1662 { STRe(private_key2) }, 1663 { STR_KEYe(private_key2_passwd) }, 1664 { STRe(dh_file2) }, 1665 { STRe(subject_match2) }, 1666 { STRe(altsubject_match2) }, 1667 { STRe(domain_suffix_match2) }, 1668 { STRe(phase1) }, 1669 { STRe(phase2) }, 1670 { STRe(pcsc) }, 1671 { STR_KEYe(pin) }, 1672 { STRe(engine_id) }, 1673 { STRe(key_id) }, 1674 { STRe(cert_id) }, 1675 { STRe(ca_cert_id) }, 1676 { STR_KEYe(pin2) }, 1677 { STRe(engine2_id) }, 1678 { STRe(key2_id) }, 1679 { STRe(cert2_id) }, 1680 { STRe(ca_cert2_id) }, 1681 { INTe(engine) }, 1682 { INTe(engine2) }, 1683 { INT(eapol_flags) }, 1684 { INTe(sim_num) }, 1685#endif /* IEEE8021X_EAPOL */ 1686 { FUNC_KEY(wep_key0) }, 1687 { FUNC_KEY(wep_key1) }, 1688 { FUNC_KEY(wep_key2) }, 1689 { FUNC_KEY(wep_key3) }, 1690 { INT(wep_tx_keyidx) }, 1691 { INT(priority) }, 1692#ifdef IEEE8021X_EAPOL 1693 { INT(eap_workaround) }, 1694 { STRe(pac_file) }, 1695 { INTe(fragment_size) }, 1696 { INTe(ocsp) }, 1697#endif /* IEEE8021X_EAPOL */ 1698 { INT_RANGE(mode, 0, 4) }, 1699 { INT_RANGE(proactive_key_caching, 0, 1) }, 1700 { INT_RANGE(disabled, 0, 2) }, 1701 { STR(id_str) }, 1702#ifdef CONFIG_IEEE80211W 1703 { INT_RANGE(ieee80211w, 0, 2) }, 1704#endif /* CONFIG_IEEE80211W */ 1705 { INT_RANGE(peerkey, 0, 1) }, 1706 { INT_RANGE(mixed_cell, 0, 1) }, 1707 { INT_RANGE(frequency, 0, 65000) }, 1708 { INT(wpa_ptk_rekey) }, 1709 { STR(bgscan) }, 1710 { INT_RANGE(ignore_broadcast_ssid, 0, 2) }, 1711#ifdef CONFIG_P2P 1712 { FUNC(go_p2p_dev_addr) }, 1713 { FUNC(p2p_client_list) }, 1714 { FUNC(psk_list) }, 1715#endif /* CONFIG_P2P */ 1716#ifdef CONFIG_HT_OVERRIDES 1717 { INT_RANGE(disable_ht, 0, 1) }, 1718 { INT_RANGE(disable_ht40, -1, 1) }, 1719 { INT_RANGE(disable_sgi, 0, 1) }, 1720 { INT_RANGE(disable_ldpc, 0, 1) }, 1721 { INT_RANGE(ht40_intolerant, 0, 1) }, 1722 { INT_RANGE(disable_max_amsdu, -1, 1) }, 1723 { INT_RANGE(ampdu_factor, -1, 3) }, 1724 { INT_RANGE(ampdu_density, -1, 7) }, 1725 { STR(ht_mcs) }, 1726#endif /* CONFIG_HT_OVERRIDES */ 1727#ifdef CONFIG_VHT_OVERRIDES 1728 { INT_RANGE(disable_vht, 0, 1) }, 1729 { INT(vht_capa) }, 1730 { INT(vht_capa_mask) }, 1731 { INT_RANGE(vht_rx_mcs_nss_1, -1, 3) }, 1732 { INT_RANGE(vht_rx_mcs_nss_2, -1, 3) }, 1733 { INT_RANGE(vht_rx_mcs_nss_3, -1, 3) }, 1734 { INT_RANGE(vht_rx_mcs_nss_4, -1, 3) }, 1735 { INT_RANGE(vht_rx_mcs_nss_5, -1, 3) }, 1736 { INT_RANGE(vht_rx_mcs_nss_6, -1, 3) }, 1737 { INT_RANGE(vht_rx_mcs_nss_7, -1, 3) }, 1738 { INT_RANGE(vht_rx_mcs_nss_8, -1, 3) }, 1739 { INT_RANGE(vht_tx_mcs_nss_1, -1, 3) }, 1740 { INT_RANGE(vht_tx_mcs_nss_2, -1, 3) }, 1741 { INT_RANGE(vht_tx_mcs_nss_3, -1, 3) }, 1742 { INT_RANGE(vht_tx_mcs_nss_4, -1, 3) }, 1743 { INT_RANGE(vht_tx_mcs_nss_5, -1, 3) }, 1744 { INT_RANGE(vht_tx_mcs_nss_6, -1, 3) }, 1745 { INT_RANGE(vht_tx_mcs_nss_7, -1, 3) }, 1746 { INT_RANGE(vht_tx_mcs_nss_8, -1, 3) }, 1747#endif /* CONFIG_VHT_OVERRIDES */ 1748 { INT(ap_max_inactivity) }, 1749 { INT(dtim_period) }, 1750 { INT(beacon_int) }, 1751#ifdef CONFIG_MACSEC 1752 { INT_RANGE(macsec_policy, 0, 1) }, 1753#endif /* CONFIG_MACSEC */ 1754#ifdef CONFIG_HS20 1755 { INT(update_identifier) }, 1756#endif /* CONFIG_HS20 */ 1757 { INT_RANGE(mac_addr, 0, 2) }, 1758}; 1759 1760#undef OFFSET 1761#undef _STR 1762#undef STR 1763#undef STR_KEY 1764#undef _STR_LEN 1765#undef STR_LEN 1766#undef STR_LEN_KEY 1767#undef _STR_RANGE 1768#undef STR_RANGE 1769#undef STR_RANGE_KEY 1770#undef _INT 1771#undef INT 1772#undef INT_RANGE 1773#undef _FUNC 1774#undef FUNC 1775#undef FUNC_KEY 1776#define NUM_SSID_FIELDS ARRAY_SIZE(ssid_fields) 1777 1778 1779/** 1780 * wpa_config_add_prio_network - Add a network to priority lists 1781 * @config: Configuration data from wpa_config_read() 1782 * @ssid: Pointer to the network configuration to be added to the list 1783 * Returns: 0 on success, -1 on failure 1784 * 1785 * This function is used to add a network block to the priority list of 1786 * networks. This must be called for each network when reading in the full 1787 * configuration. In addition, this can be used indirectly when updating 1788 * priorities by calling wpa_config_update_prio_list(). 1789 */ 1790int wpa_config_add_prio_network(struct wpa_config *config, 1791 struct wpa_ssid *ssid) 1792{ 1793 int prio; 1794 struct wpa_ssid *prev, **nlist; 1795 1796 /* 1797 * Add to an existing priority list if one is available for the 1798 * configured priority level for this network. 1799 */ 1800 for (prio = 0; prio < config->num_prio; prio++) { 1801 prev = config->pssid[prio]; 1802 if (prev->priority == ssid->priority) { 1803 while (prev->pnext) 1804 prev = prev->pnext; 1805 prev->pnext = ssid; 1806 return 0; 1807 } 1808 } 1809 1810 /* First network for this priority - add a new priority list */ 1811 nlist = os_realloc_array(config->pssid, config->num_prio + 1, 1812 sizeof(struct wpa_ssid *)); 1813 if (nlist == NULL) 1814 return -1; 1815 1816 for (prio = 0; prio < config->num_prio; prio++) { 1817 if (nlist[prio]->priority < ssid->priority) { 1818 os_memmove(&nlist[prio + 1], &nlist[prio], 1819 (config->num_prio - prio) * 1820 sizeof(struct wpa_ssid *)); 1821 break; 1822 } 1823 } 1824 1825 nlist[prio] = ssid; 1826 config->num_prio++; 1827 config->pssid = nlist; 1828 1829 return 0; 1830} 1831 1832 1833/** 1834 * wpa_config_update_prio_list - Update network priority list 1835 * @config: Configuration data from wpa_config_read() 1836 * Returns: 0 on success, -1 on failure 1837 * 1838 * This function is called to update the priority list of networks in the 1839 * configuration when a network is being added or removed. This is also called 1840 * if a priority for a network is changed. 1841 */ 1842int wpa_config_update_prio_list(struct wpa_config *config) 1843{ 1844 struct wpa_ssid *ssid; 1845 int ret = 0; 1846 1847 os_free(config->pssid); 1848 config->pssid = NULL; 1849 config->num_prio = 0; 1850 1851 ssid = config->ssid; 1852 while (ssid) { 1853 ssid->pnext = NULL; 1854 if (wpa_config_add_prio_network(config, ssid) < 0) 1855 ret = -1; 1856 ssid = ssid->next; 1857 } 1858 1859 return ret; 1860} 1861 1862 1863#ifdef IEEE8021X_EAPOL 1864static void eap_peer_config_free(struct eap_peer_config *eap) 1865{ 1866 os_free(eap->eap_methods); 1867 bin_clear_free(eap->identity, eap->identity_len); 1868 os_free(eap->anonymous_identity); 1869 bin_clear_free(eap->password, eap->password_len); 1870 os_free(eap->ca_cert); 1871 os_free(eap->ca_path); 1872 os_free(eap->client_cert); 1873 os_free(eap->private_key); 1874 str_clear_free(eap->private_key_passwd); 1875 os_free(eap->dh_file); 1876 os_free(eap->subject_match); 1877 os_free(eap->altsubject_match); 1878 os_free(eap->domain_suffix_match); 1879 os_free(eap->ca_cert2); 1880 os_free(eap->ca_path2); 1881 os_free(eap->client_cert2); 1882 os_free(eap->private_key2); 1883 str_clear_free(eap->private_key2_passwd); 1884 os_free(eap->dh_file2); 1885 os_free(eap->subject_match2); 1886 os_free(eap->altsubject_match2); 1887 os_free(eap->domain_suffix_match2); 1888 os_free(eap->phase1); 1889 os_free(eap->phase2); 1890 os_free(eap->pcsc); 1891 str_clear_free(eap->pin); 1892 os_free(eap->engine_id); 1893 os_free(eap->key_id); 1894 os_free(eap->cert_id); 1895 os_free(eap->ca_cert_id); 1896 os_free(eap->key2_id); 1897 os_free(eap->cert2_id); 1898 os_free(eap->ca_cert2_id); 1899 str_clear_free(eap->pin2); 1900 os_free(eap->engine2_id); 1901 os_free(eap->otp); 1902 os_free(eap->pending_req_otp); 1903 os_free(eap->pac_file); 1904 bin_clear_free(eap->new_password, eap->new_password_len); 1905 str_clear_free(eap->external_sim_resp); 1906} 1907#endif /* IEEE8021X_EAPOL */ 1908 1909 1910/** 1911 * wpa_config_free_ssid - Free network/ssid configuration data 1912 * @ssid: Configuration data for the network 1913 * 1914 * This function frees all resources allocated for the network configuration 1915 * data. 1916 */ 1917void wpa_config_free_ssid(struct wpa_ssid *ssid) 1918{ 1919 struct psk_list_entry *psk; 1920 1921 os_free(ssid->ssid); 1922 os_memset(ssid->psk, 0, sizeof(ssid->psk)); 1923 str_clear_free(ssid->passphrase); 1924 os_free(ssid->ext_psk); 1925#ifdef IEEE8021X_EAPOL 1926 eap_peer_config_free(&ssid->eap); 1927#endif /* IEEE8021X_EAPOL */ 1928 os_free(ssid->id_str); 1929 os_free(ssid->scan_freq); 1930 os_free(ssid->freq_list); 1931 os_free(ssid->bgscan); 1932 os_free(ssid->p2p_client_list); 1933#ifdef CONFIG_HT_OVERRIDES 1934 os_free(ssid->ht_mcs); 1935#endif /* CONFIG_HT_OVERRIDES */ 1936 while ((psk = dl_list_first(&ssid->psk_list, struct psk_list_entry, 1937 list))) { 1938 dl_list_del(&psk->list); 1939 os_free(psk); 1940 } 1941 os_free(ssid); 1942} 1943 1944 1945void wpa_config_free_cred(struct wpa_cred *cred) 1946{ 1947 size_t i; 1948 1949 os_free(cred->realm); 1950 str_clear_free(cred->username); 1951 str_clear_free(cred->password); 1952 os_free(cred->ca_cert); 1953 os_free(cred->client_cert); 1954 os_free(cred->private_key); 1955 str_clear_free(cred->private_key_passwd); 1956 os_free(cred->imsi); 1957 str_clear_free(cred->milenage); 1958 for (i = 0; i < cred->num_domain; i++) 1959 os_free(cred->domain[i]); 1960 os_free(cred->domain); 1961 os_free(cred->domain_suffix_match); 1962 os_free(cred->eap_method); 1963 os_free(cred->phase1); 1964 os_free(cred->phase2); 1965 os_free(cred->excluded_ssid); 1966 os_free(cred->roaming_partner); 1967 os_free(cred->provisioning_sp); 1968 for (i = 0; i < cred->num_req_conn_capab; i++) 1969 os_free(cred->req_conn_capab_port[i]); 1970 os_free(cred->req_conn_capab_port); 1971 os_free(cred->req_conn_capab_proto); 1972 os_free(cred); 1973} 1974 1975 1976void wpa_config_flush_blobs(struct wpa_config *config) 1977{ 1978#ifndef CONFIG_NO_CONFIG_BLOBS 1979 struct wpa_config_blob *blob, *prev; 1980 1981 blob = config->blobs; 1982 config->blobs = NULL; 1983 while (blob) { 1984 prev = blob; 1985 blob = blob->next; 1986 wpa_config_free_blob(prev); 1987 } 1988#endif /* CONFIG_NO_CONFIG_BLOBS */ 1989} 1990 1991 1992/** 1993 * wpa_config_free - Free configuration data 1994 * @config: Configuration data from wpa_config_read() 1995 * 1996 * This function frees all resources allocated for the configuration data by 1997 * wpa_config_read(). 1998 */ 1999void wpa_config_free(struct wpa_config *config) 2000{ 2001 struct wpa_ssid *ssid, *prev = NULL; 2002 struct wpa_cred *cred, *cprev; 2003 2004 ssid = config->ssid; 2005 while (ssid) { 2006 prev = ssid; 2007 ssid = ssid->next; 2008 wpa_config_free_ssid(prev); 2009 } 2010 2011 cred = config->cred; 2012 while (cred) { 2013 cprev = cred; 2014 cred = cred->next; 2015 wpa_config_free_cred(cprev); 2016 } 2017 2018 wpa_config_flush_blobs(config); 2019 2020 wpabuf_free(config->wps_vendor_ext_m1); 2021 os_free(config->ctrl_interface); 2022 os_free(config->ctrl_interface_group); 2023 os_free(config->opensc_engine_path); 2024 os_free(config->pkcs11_engine_path); 2025 os_free(config->pkcs11_module_path); 2026 os_free(config->pcsc_reader); 2027 str_clear_free(config->pcsc_pin); 2028 os_free(config->driver_param); 2029 os_free(config->device_name); 2030 os_free(config->manufacturer); 2031 os_free(config->model_name); 2032 os_free(config->model_number); 2033 os_free(config->serial_number); 2034 os_free(config->config_methods); 2035 os_free(config->p2p_ssid_postfix); 2036 os_free(config->pssid); 2037 os_free(config->p2p_pref_chan); 2038 os_free(config->p2p_no_go_freq.range); 2039 os_free(config->autoscan); 2040 os_free(config->freq_list); 2041 wpabuf_free(config->wps_nfc_dh_pubkey); 2042 wpabuf_free(config->wps_nfc_dh_privkey); 2043 wpabuf_free(config->wps_nfc_dev_pw); 2044 os_free(config->ext_password_backend); 2045 os_free(config->sae_groups); 2046 wpabuf_free(config->ap_vendor_elements); 2047 os_free(config->osu_dir); 2048 os_free(config->wowlan_triggers); 2049 os_free(config); 2050} 2051 2052 2053/** 2054 * wpa_config_foreach_network - Iterate over each configured network 2055 * @config: Configuration data from wpa_config_read() 2056 * @func: Callback function to process each network 2057 * @arg: Opaque argument to pass to callback function 2058 * 2059 * Iterate over the set of configured networks calling the specified 2060 * function for each item. We guard against callbacks removing the 2061 * supplied network. 2062 */ 2063void wpa_config_foreach_network(struct wpa_config *config, 2064 void (*func)(void *, struct wpa_ssid *), 2065 void *arg) 2066{ 2067 struct wpa_ssid *ssid, *next; 2068 2069 ssid = config->ssid; 2070 while (ssid) { 2071 next = ssid->next; 2072 func(arg, ssid); 2073 ssid = next; 2074 } 2075} 2076 2077 2078/** 2079 * wpa_config_get_network - Get configured network based on id 2080 * @config: Configuration data from wpa_config_read() 2081 * @id: Unique network id to search for 2082 * Returns: Network configuration or %NULL if not found 2083 */ 2084struct wpa_ssid * wpa_config_get_network(struct wpa_config *config, int id) 2085{ 2086 struct wpa_ssid *ssid; 2087 2088 ssid = config->ssid; 2089 while (ssid) { 2090 if (id == ssid->id) 2091 break; 2092 ssid = ssid->next; 2093 } 2094 2095 return ssid; 2096} 2097 2098 2099/** 2100 * wpa_config_add_network - Add a new network with empty configuration 2101 * @config: Configuration data from wpa_config_read() 2102 * Returns: The new network configuration or %NULL if operation failed 2103 */ 2104struct wpa_ssid * wpa_config_add_network(struct wpa_config *config) 2105{ 2106 int id; 2107 struct wpa_ssid *ssid, *last = NULL; 2108 2109 id = -1; 2110 ssid = config->ssid; 2111 while (ssid) { 2112 if (ssid->id > id) 2113 id = ssid->id; 2114 last = ssid; 2115 ssid = ssid->next; 2116 } 2117 id++; 2118 2119 ssid = os_zalloc(sizeof(*ssid)); 2120 if (ssid == NULL) 2121 return NULL; 2122 ssid->id = id; 2123 dl_list_init(&ssid->psk_list); 2124 if (last) 2125 last->next = ssid; 2126 else 2127 config->ssid = ssid; 2128 2129 wpa_config_update_prio_list(config); 2130 2131 return ssid; 2132} 2133 2134 2135/** 2136 * wpa_config_remove_network - Remove a configured network based on id 2137 * @config: Configuration data from wpa_config_read() 2138 * @id: Unique network id to search for 2139 * Returns: 0 on success, or -1 if the network was not found 2140 */ 2141int wpa_config_remove_network(struct wpa_config *config, int id) 2142{ 2143 struct wpa_ssid *ssid, *prev = NULL; 2144 2145 ssid = config->ssid; 2146 while (ssid) { 2147 if (id == ssid->id) 2148 break; 2149 prev = ssid; 2150 ssid = ssid->next; 2151 } 2152 2153 if (ssid == NULL) 2154 return -1; 2155 2156 if (prev) 2157 prev->next = ssid->next; 2158 else 2159 config->ssid = ssid->next; 2160 2161 wpa_config_update_prio_list(config); 2162 wpa_config_free_ssid(ssid); 2163 return 0; 2164} 2165 2166 2167/** 2168 * wpa_config_set_network_defaults - Set network default values 2169 * @ssid: Pointer to network configuration data 2170 */ 2171void wpa_config_set_network_defaults(struct wpa_ssid *ssid) 2172{ 2173 ssid->proto = DEFAULT_PROTO; 2174 ssid->pairwise_cipher = DEFAULT_PAIRWISE; 2175 ssid->group_cipher = DEFAULT_GROUP; 2176 ssid->key_mgmt = DEFAULT_KEY_MGMT; 2177 ssid->bg_scan_period = DEFAULT_BG_SCAN_PERIOD; 2178#ifdef IEEE8021X_EAPOL 2179 ssid->eapol_flags = DEFAULT_EAPOL_FLAGS; 2180 ssid->eap_workaround = DEFAULT_EAP_WORKAROUND; 2181 ssid->eap.fragment_size = DEFAULT_FRAGMENT_SIZE; 2182 ssid->eap.sim_num = DEFAULT_USER_SELECTED_SIM; 2183#endif /* IEEE8021X_EAPOL */ 2184#ifdef CONFIG_HT_OVERRIDES 2185 ssid->disable_ht = DEFAULT_DISABLE_HT; 2186 ssid->disable_ht40 = DEFAULT_DISABLE_HT40; 2187 ssid->disable_sgi = DEFAULT_DISABLE_SGI; 2188 ssid->disable_ldpc = DEFAULT_DISABLE_LDPC; 2189 ssid->disable_max_amsdu = DEFAULT_DISABLE_MAX_AMSDU; 2190 ssid->ampdu_factor = DEFAULT_AMPDU_FACTOR; 2191 ssid->ampdu_density = DEFAULT_AMPDU_DENSITY; 2192#endif /* CONFIG_HT_OVERRIDES */ 2193#ifdef CONFIG_VHT_OVERRIDES 2194 ssid->vht_rx_mcs_nss_1 = -1; 2195 ssid->vht_rx_mcs_nss_2 = -1; 2196 ssid->vht_rx_mcs_nss_3 = -1; 2197 ssid->vht_rx_mcs_nss_4 = -1; 2198 ssid->vht_rx_mcs_nss_5 = -1; 2199 ssid->vht_rx_mcs_nss_6 = -1; 2200 ssid->vht_rx_mcs_nss_7 = -1; 2201 ssid->vht_rx_mcs_nss_8 = -1; 2202 ssid->vht_tx_mcs_nss_1 = -1; 2203 ssid->vht_tx_mcs_nss_2 = -1; 2204 ssid->vht_tx_mcs_nss_3 = -1; 2205 ssid->vht_tx_mcs_nss_4 = -1; 2206 ssid->vht_tx_mcs_nss_5 = -1; 2207 ssid->vht_tx_mcs_nss_6 = -1; 2208 ssid->vht_tx_mcs_nss_7 = -1; 2209 ssid->vht_tx_mcs_nss_8 = -1; 2210#endif /* CONFIG_VHT_OVERRIDES */ 2211 ssid->proactive_key_caching = -1; 2212#ifdef CONFIG_IEEE80211W 2213 ssid->ieee80211w = MGMT_FRAME_PROTECTION_DEFAULT; 2214#endif /* CONFIG_IEEE80211W */ 2215 ssid->mac_addr = -1; 2216} 2217 2218 2219/** 2220 * wpa_config_set - Set a variable in network configuration 2221 * @ssid: Pointer to network configuration data 2222 * @var: Variable name, e.g., "ssid" 2223 * @value: Variable value 2224 * @line: Line number in configuration file or 0 if not used 2225 * Returns: 0 on success, -1 on failure 2226 * 2227 * This function can be used to set network configuration variables based on 2228 * both the configuration file and management interface input. The value 2229 * parameter must be in the same format as the text-based configuration file is 2230 * using. For example, strings are using double quotation marks. 2231 */ 2232int wpa_config_set(struct wpa_ssid *ssid, const char *var, const char *value, 2233 int line) 2234{ 2235 size_t i; 2236 int ret = 0; 2237 2238 if (ssid == NULL || var == NULL || value == NULL) 2239 return -1; 2240 2241 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2242 const struct parse_data *field = &ssid_fields[i]; 2243 if (os_strcmp(var, field->name) != 0) 2244 continue; 2245 2246 if (field->parser(field, ssid, line, value)) { 2247 if (line) { 2248 wpa_printf(MSG_ERROR, "Line %d: failed to " 2249 "parse %s '%s'.", line, var, value); 2250 } 2251 ret = -1; 2252 } 2253 break; 2254 } 2255 if (i == NUM_SSID_FIELDS) { 2256 if (line) { 2257 wpa_printf(MSG_ERROR, "Line %d: unknown network field " 2258 "'%s'.", line, var); 2259 } 2260 ret = -1; 2261 } 2262 2263 return ret; 2264} 2265 2266 2267int wpa_config_set_quoted(struct wpa_ssid *ssid, const char *var, 2268 const char *value) 2269{ 2270 size_t len; 2271 char *buf; 2272 int ret; 2273 2274 len = os_strlen(value); 2275 buf = os_malloc(len + 3); 2276 if (buf == NULL) 2277 return -1; 2278 buf[0] = '"'; 2279 os_memcpy(buf + 1, value, len); 2280 buf[len + 1] = '"'; 2281 buf[len + 2] = '\0'; 2282 ret = wpa_config_set(ssid, var, buf, 0); 2283 os_free(buf); 2284 return ret; 2285} 2286 2287 2288/** 2289 * wpa_config_get_all - Get all options from network configuration 2290 * @ssid: Pointer to network configuration data 2291 * @get_keys: Determines if keys/passwords will be included in returned list 2292 * (if they may be exported) 2293 * Returns: %NULL terminated list of all set keys and their values in the form 2294 * of [key1, val1, key2, val2, ... , NULL] 2295 * 2296 * This function can be used to get list of all configured network properties. 2297 * The caller is responsible for freeing the returned list and all its 2298 * elements. 2299 */ 2300char ** wpa_config_get_all(struct wpa_ssid *ssid, int get_keys) 2301{ 2302 const struct parse_data *field; 2303 char *key, *value; 2304 size_t i; 2305 char **props; 2306 int fields_num; 2307 2308 get_keys = get_keys && ssid->export_keys; 2309 2310 props = os_calloc(2 * NUM_SSID_FIELDS + 1, sizeof(char *)); 2311 if (!props) 2312 return NULL; 2313 2314 fields_num = 0; 2315 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2316 field = &ssid_fields[i]; 2317 if (field->key_data && !get_keys) 2318 continue; 2319 value = field->writer(field, ssid); 2320 if (value == NULL) 2321 continue; 2322 if (os_strlen(value) == 0) { 2323 os_free(value); 2324 continue; 2325 } 2326 2327 key = os_strdup(field->name); 2328 if (key == NULL) { 2329 os_free(value); 2330 goto err; 2331 } 2332 2333 props[fields_num * 2] = key; 2334 props[fields_num * 2 + 1] = value; 2335 2336 fields_num++; 2337 } 2338 2339 return props; 2340 2341err: 2342 value = *props; 2343 while (value) 2344 os_free(value++); 2345 os_free(props); 2346 return NULL; 2347} 2348 2349 2350#ifndef NO_CONFIG_WRITE 2351/** 2352 * wpa_config_get - Get a variable in network configuration 2353 * @ssid: Pointer to network configuration data 2354 * @var: Variable name, e.g., "ssid" 2355 * Returns: Value of the variable or %NULL on failure 2356 * 2357 * This function can be used to get network configuration variables. The 2358 * returned value is a copy of the configuration variable in text format, i.e,. 2359 * the same format that the text-based configuration file and wpa_config_set() 2360 * are using for the value. The caller is responsible for freeing the returned 2361 * value. 2362 */ 2363char * wpa_config_get(struct wpa_ssid *ssid, const char *var) 2364{ 2365 size_t i; 2366 2367 if (ssid == NULL || var == NULL) 2368 return NULL; 2369 2370 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2371 const struct parse_data *field = &ssid_fields[i]; 2372 if (os_strcmp(var, field->name) == 0) { 2373 char *ret = field->writer(field, ssid); 2374 if (os_strchr(ret, '\r') != NULL || os_strchr(ret, '\n') != NULL) { 2375 wpa_printf(MSG_ERROR, "Found newline in value for %s; " 2376 "not returning it", var); 2377 os_free(ret); 2378 ret = NULL; 2379 } 2380 return ret; 2381 } 2382 } 2383 2384 return NULL; 2385} 2386 2387 2388/** 2389 * wpa_config_get_no_key - Get a variable in network configuration (no keys) 2390 * @ssid: Pointer to network configuration data 2391 * @var: Variable name, e.g., "ssid" 2392 * Returns: Value of the variable or %NULL on failure 2393 * 2394 * This function can be used to get network configuration variable like 2395 * wpa_config_get(). The only difference is that this functions does not expose 2396 * key/password material from the configuration. In case a key/password field 2397 * is requested, the returned value is an empty string or %NULL if the variable 2398 * is not set or "*" if the variable is set (regardless of its value). The 2399 * returned value is a copy of the configuration variable in text format, i.e,. 2400 * the same format that the text-based configuration file and wpa_config_set() 2401 * are using for the value. The caller is responsible for freeing the returned 2402 * value. 2403 */ 2404char * wpa_config_get_no_key(struct wpa_ssid *ssid, const char *var) 2405{ 2406 size_t i; 2407 2408 if (ssid == NULL || var == NULL) 2409 return NULL; 2410 2411 for (i = 0; i < NUM_SSID_FIELDS; i++) { 2412 const struct parse_data *field = &ssid_fields[i]; 2413 if (os_strcmp(var, field->name) == 0) { 2414 char *res = field->writer(field, ssid); 2415 if (field->key_data) { 2416 if (res && res[0]) { 2417 wpa_printf(MSG_DEBUG, "Do not allow " 2418 "key_data field to be " 2419 "exposed"); 2420 str_clear_free(res); 2421 return os_strdup("*"); 2422 } 2423 2424 os_free(res); 2425 return NULL; 2426 } 2427 return res; 2428 } 2429 } 2430 2431 return NULL; 2432} 2433#endif /* NO_CONFIG_WRITE */ 2434 2435 2436/** 2437 * wpa_config_update_psk - Update WPA PSK based on passphrase and SSID 2438 * @ssid: Pointer to network configuration data 2439 * 2440 * This function must be called to update WPA PSK when either SSID or the 2441 * passphrase has changed for the network configuration. 2442 */ 2443void wpa_config_update_psk(struct wpa_ssid *ssid) 2444{ 2445#ifndef CONFIG_NO_PBKDF2 2446 pbkdf2_sha1(ssid->passphrase, ssid->ssid, ssid->ssid_len, 4096, 2447 ssid->psk, PMK_LEN); 2448 wpa_hexdump_key(MSG_MSGDUMP, "PSK (from passphrase)", 2449 ssid->psk, PMK_LEN); 2450 ssid->psk_set = 1; 2451#endif /* CONFIG_NO_PBKDF2 */ 2452} 2453 2454 2455static int wpa_config_set_cred_req_conn_capab(struct wpa_cred *cred, 2456 const char *value) 2457{ 2458 u8 *proto; 2459 int **port; 2460 int *ports, *nports; 2461 const char *pos; 2462 unsigned int num_ports; 2463 2464 proto = os_realloc_array(cred->req_conn_capab_proto, 2465 cred->num_req_conn_capab + 1, sizeof(u8)); 2466 if (proto == NULL) 2467 return -1; 2468 cred->req_conn_capab_proto = proto; 2469 2470 port = os_realloc_array(cred->req_conn_capab_port, 2471 cred->num_req_conn_capab + 1, sizeof(int *)); 2472 if (port == NULL) 2473 return -1; 2474 cred->req_conn_capab_port = port; 2475 2476 proto[cred->num_req_conn_capab] = atoi(value); 2477 2478 pos = os_strchr(value, ':'); 2479 if (pos == NULL) { 2480 port[cred->num_req_conn_capab] = NULL; 2481 cred->num_req_conn_capab++; 2482 return 0; 2483 } 2484 pos++; 2485 2486 ports = NULL; 2487 num_ports = 0; 2488 2489 while (*pos) { 2490 nports = os_realloc_array(ports, num_ports + 1, sizeof(int)); 2491 if (nports == NULL) { 2492 os_free(ports); 2493 return -1; 2494 } 2495 ports = nports; 2496 ports[num_ports++] = atoi(pos); 2497 2498 pos = os_strchr(pos, ','); 2499 if (pos == NULL) 2500 break; 2501 pos++; 2502 } 2503 2504 nports = os_realloc_array(ports, num_ports + 1, sizeof(int)); 2505 if (nports == NULL) { 2506 os_free(ports); 2507 return -1; 2508 } 2509 ports = nports; 2510 ports[num_ports] = -1; 2511 2512 port[cred->num_req_conn_capab] = ports; 2513 cred->num_req_conn_capab++; 2514 return 0; 2515} 2516 2517 2518int wpa_config_set_cred(struct wpa_cred *cred, const char *var, 2519 const char *value, int line) 2520{ 2521 char *val; 2522 size_t len; 2523 2524 if (os_strcmp(var, "temporary") == 0) { 2525 cred->temporary = atoi(value); 2526 return 0; 2527 } 2528 2529 if (os_strcmp(var, "priority") == 0) { 2530 cred->priority = atoi(value); 2531 return 0; 2532 } 2533 2534 if (os_strcmp(var, "sp_priority") == 0) { 2535 int prio = atoi(value); 2536 if (prio < 0 || prio > 255) 2537 return -1; 2538 cred->sp_priority = prio; 2539 return 0; 2540 } 2541 2542 if (os_strcmp(var, "pcsc") == 0) { 2543 cred->pcsc = atoi(value); 2544 return 0; 2545 } 2546 2547 if (os_strcmp(var, "eap") == 0) { 2548 struct eap_method_type method; 2549 method.method = eap_peer_get_type(value, &method.vendor); 2550 if (method.vendor == EAP_VENDOR_IETF && 2551 method.method == EAP_TYPE_NONE) { 2552 wpa_printf(MSG_ERROR, "Line %d: unknown EAP type '%s' " 2553 "for a credential", line, value); 2554 return -1; 2555 } 2556 os_free(cred->eap_method); 2557 cred->eap_method = os_malloc(sizeof(*cred->eap_method)); 2558 if (cred->eap_method == NULL) 2559 return -1; 2560 os_memcpy(cred->eap_method, &method, sizeof(method)); 2561 return 0; 2562 } 2563 2564 if (os_strcmp(var, "password") == 0 && 2565 os_strncmp(value, "ext:", 4) == 0) { 2566 str_clear_free(cred->password); 2567 cred->password = os_strdup(value); 2568 cred->ext_password = 1; 2569 return 0; 2570 } 2571 2572 if (os_strcmp(var, "update_identifier") == 0) { 2573 cred->update_identifier = atoi(value); 2574 return 0; 2575 } 2576 2577 if (os_strcmp(var, "min_dl_bandwidth_home") == 0) { 2578 cred->min_dl_bandwidth_home = atoi(value); 2579 return 0; 2580 } 2581 2582 if (os_strcmp(var, "min_ul_bandwidth_home") == 0) { 2583 cred->min_ul_bandwidth_home = atoi(value); 2584 return 0; 2585 } 2586 2587 if (os_strcmp(var, "min_dl_bandwidth_roaming") == 0) { 2588 cred->min_dl_bandwidth_roaming = atoi(value); 2589 return 0; 2590 } 2591 2592 if (os_strcmp(var, "min_ul_bandwidth_roaming") == 0) { 2593 cred->min_ul_bandwidth_roaming = atoi(value); 2594 return 0; 2595 } 2596 2597 if (os_strcmp(var, "max_bss_load") == 0) { 2598 cred->max_bss_load = atoi(value); 2599 return 0; 2600 } 2601 2602 if (os_strcmp(var, "req_conn_capab") == 0) 2603 return wpa_config_set_cred_req_conn_capab(cred, value); 2604 2605 if (os_strcmp(var, "ocsp") == 0) { 2606 cred->ocsp = atoi(value); 2607 return 0; 2608 } 2609 2610 if (os_strcmp(var, "sim_num") == 0) { 2611 cred->sim_num = atoi(value); 2612 return 0; 2613 } 2614 2615 val = wpa_config_parse_string(value, &len); 2616 if (val == NULL) { 2617 wpa_printf(MSG_ERROR, "Line %d: invalid field '%s' string " 2618 "value '%s'.", line, var, value); 2619 return -1; 2620 } 2621 2622 if (os_strcmp(var, "realm") == 0) { 2623 os_free(cred->realm); 2624 cred->realm = val; 2625 return 0; 2626 } 2627 2628 if (os_strcmp(var, "username") == 0) { 2629 str_clear_free(cred->username); 2630 cred->username = val; 2631 return 0; 2632 } 2633 2634 if (os_strcmp(var, "password") == 0) { 2635 str_clear_free(cred->password); 2636 cred->password = val; 2637 cred->ext_password = 0; 2638 return 0; 2639 } 2640 2641 if (os_strcmp(var, "ca_cert") == 0) { 2642 os_free(cred->ca_cert); 2643 cred->ca_cert = val; 2644 return 0; 2645 } 2646 2647 if (os_strcmp(var, "client_cert") == 0) { 2648 os_free(cred->client_cert); 2649 cred->client_cert = val; 2650 return 0; 2651 } 2652 2653 if (os_strcmp(var, "private_key") == 0) { 2654 os_free(cred->private_key); 2655 cred->private_key = val; 2656 return 0; 2657 } 2658 2659 if (os_strcmp(var, "private_key_passwd") == 0) { 2660 str_clear_free(cred->private_key_passwd); 2661 cred->private_key_passwd = val; 2662 return 0; 2663 } 2664 2665 if (os_strcmp(var, "imsi") == 0) { 2666 os_free(cred->imsi); 2667 cred->imsi = val; 2668 return 0; 2669 } 2670 2671 if (os_strcmp(var, "milenage") == 0) { 2672 str_clear_free(cred->milenage); 2673 cred->milenage = val; 2674 return 0; 2675 } 2676 2677 if (os_strcmp(var, "domain_suffix_match") == 0) { 2678 os_free(cred->domain_suffix_match); 2679 cred->domain_suffix_match = val; 2680 return 0; 2681 } 2682 2683 if (os_strcmp(var, "domain") == 0) { 2684 char **new_domain; 2685 new_domain = os_realloc_array(cred->domain, 2686 cred->num_domain + 1, 2687 sizeof(char *)); 2688 if (new_domain == NULL) { 2689 os_free(val); 2690 return -1; 2691 } 2692 new_domain[cred->num_domain++] = val; 2693 cred->domain = new_domain; 2694 return 0; 2695 } 2696 2697 if (os_strcmp(var, "phase1") == 0) { 2698 os_free(cred->phase1); 2699 cred->phase1 = val; 2700 return 0; 2701 } 2702 2703 if (os_strcmp(var, "phase2") == 0) { 2704 os_free(cred->phase2); 2705 cred->phase2 = val; 2706 return 0; 2707 } 2708 2709 if (os_strcmp(var, "roaming_consortium") == 0) { 2710 if (len < 3 || len > sizeof(cred->roaming_consortium)) { 2711 wpa_printf(MSG_ERROR, "Line %d: invalid " 2712 "roaming_consortium length %d (3..15 " 2713 "expected)", line, (int) len); 2714 os_free(val); 2715 return -1; 2716 } 2717 os_memcpy(cred->roaming_consortium, val, len); 2718 cred->roaming_consortium_len = len; 2719 os_free(val); 2720 return 0; 2721 } 2722 2723 if (os_strcmp(var, "required_roaming_consortium") == 0) { 2724 if (len < 3 || len > sizeof(cred->required_roaming_consortium)) 2725 { 2726 wpa_printf(MSG_ERROR, "Line %d: invalid " 2727 "required_roaming_consortium length %d " 2728 "(3..15 expected)", line, (int) len); 2729 os_free(val); 2730 return -1; 2731 } 2732 os_memcpy(cred->required_roaming_consortium, val, len); 2733 cred->required_roaming_consortium_len = len; 2734 os_free(val); 2735 return 0; 2736 } 2737 2738 if (os_strcmp(var, "excluded_ssid") == 0) { 2739 struct excluded_ssid *e; 2740 2741 if (len > MAX_SSID_LEN) { 2742 wpa_printf(MSG_ERROR, "Line %d: invalid " 2743 "excluded_ssid length %d", line, (int) len); 2744 os_free(val); 2745 return -1; 2746 } 2747 2748 e = os_realloc_array(cred->excluded_ssid, 2749 cred->num_excluded_ssid + 1, 2750 sizeof(struct excluded_ssid)); 2751 if (e == NULL) { 2752 os_free(val); 2753 return -1; 2754 } 2755 cred->excluded_ssid = e; 2756 2757 e = &cred->excluded_ssid[cred->num_excluded_ssid++]; 2758 os_memcpy(e->ssid, val, len); 2759 e->ssid_len = len; 2760 2761 os_free(val); 2762 2763 return 0; 2764 } 2765 2766 if (os_strcmp(var, "roaming_partner") == 0) { 2767 struct roaming_partner *p; 2768 char *pos; 2769 2770 p = os_realloc_array(cred->roaming_partner, 2771 cred->num_roaming_partner + 1, 2772 sizeof(struct roaming_partner)); 2773 if (p == NULL) { 2774 os_free(val); 2775 return -1; 2776 } 2777 cred->roaming_partner = p; 2778 2779 p = &cred->roaming_partner[cred->num_roaming_partner]; 2780 2781 pos = os_strchr(val, ','); 2782 if (pos == NULL) { 2783 os_free(val); 2784 return -1; 2785 } 2786 *pos++ = '\0'; 2787 if (pos - val - 1 >= (int) sizeof(p->fqdn)) { 2788 os_free(val); 2789 return -1; 2790 } 2791 os_memcpy(p->fqdn, val, pos - val); 2792 2793 p->exact_match = atoi(pos); 2794 2795 pos = os_strchr(pos, ','); 2796 if (pos == NULL) { 2797 os_free(val); 2798 return -1; 2799 } 2800 *pos++ = '\0'; 2801 2802 p->priority = atoi(pos); 2803 2804 pos = os_strchr(pos, ','); 2805 if (pos == NULL) { 2806 os_free(val); 2807 return -1; 2808 } 2809 *pos++ = '\0'; 2810 2811 if (os_strlen(pos) >= sizeof(p->country)) { 2812 os_free(val); 2813 return -1; 2814 } 2815 os_memcpy(p->country, pos, os_strlen(pos) + 1); 2816 2817 cred->num_roaming_partner++; 2818 os_free(val); 2819 2820 return 0; 2821 } 2822 2823 if (os_strcmp(var, "provisioning_sp") == 0) { 2824 os_free(cred->provisioning_sp); 2825 cred->provisioning_sp = val; 2826 return 0; 2827 } 2828 2829 if (line) { 2830 wpa_printf(MSG_ERROR, "Line %d: unknown cred field '%s'.", 2831 line, var); 2832 } 2833 2834 os_free(val); 2835 2836 return -1; 2837} 2838 2839 2840static char * alloc_int_str(int val) 2841{ 2842 char *buf; 2843 2844 buf = os_malloc(20); 2845 if (buf == NULL) 2846 return NULL; 2847 os_snprintf(buf, 20, "%d", val); 2848 return buf; 2849} 2850 2851 2852static char * alloc_strdup(const char *str) 2853{ 2854 if (str == NULL) 2855 return NULL; 2856 return os_strdup(str); 2857} 2858 2859 2860char * wpa_config_get_cred_no_key(struct wpa_cred *cred, const char *var) 2861{ 2862 if (os_strcmp(var, "temporary") == 0) 2863 return alloc_int_str(cred->temporary); 2864 2865 if (os_strcmp(var, "priority") == 0) 2866 return alloc_int_str(cred->priority); 2867 2868 if (os_strcmp(var, "sp_priority") == 0) 2869 return alloc_int_str(cred->sp_priority); 2870 2871 if (os_strcmp(var, "pcsc") == 0) 2872 return alloc_int_str(cred->pcsc); 2873 2874 if (os_strcmp(var, "eap") == 0) { 2875 if (!cred->eap_method) 2876 return NULL; 2877 return alloc_strdup(eap_get_name(cred->eap_method[0].vendor, 2878 cred->eap_method[0].method)); 2879 } 2880 2881 if (os_strcmp(var, "update_identifier") == 0) 2882 return alloc_int_str(cred->update_identifier); 2883 2884 if (os_strcmp(var, "min_dl_bandwidth_home") == 0) 2885 return alloc_int_str(cred->min_dl_bandwidth_home); 2886 2887 if (os_strcmp(var, "min_ul_bandwidth_home") == 0) 2888 return alloc_int_str(cred->min_ul_bandwidth_home); 2889 2890 if (os_strcmp(var, "min_dl_bandwidth_roaming") == 0) 2891 return alloc_int_str(cred->min_dl_bandwidth_roaming); 2892 2893 if (os_strcmp(var, "min_ul_bandwidth_roaming") == 0) 2894 return alloc_int_str(cred->min_ul_bandwidth_roaming); 2895 2896 if (os_strcmp(var, "max_bss_load") == 0) 2897 return alloc_int_str(cred->max_bss_load); 2898 2899 if (os_strcmp(var, "req_conn_capab") == 0) { 2900 unsigned int i; 2901 char *buf, *end, *pos; 2902 int ret; 2903 2904 if (!cred->num_req_conn_capab) 2905 return NULL; 2906 2907 buf = os_malloc(4000); 2908 if (buf == NULL) 2909 return NULL; 2910 pos = buf; 2911 end = pos + 4000; 2912 for (i = 0; i < cred->num_req_conn_capab; i++) { 2913 int *ports; 2914 2915 ret = os_snprintf(pos, end - pos, "%s%u", 2916 i > 0 ? "\n" : "", 2917 cred->req_conn_capab_proto[i]); 2918 if (ret < 0 || ret >= end - pos) 2919 return buf; 2920 pos += ret; 2921 2922 ports = cred->req_conn_capab_port[i]; 2923 if (ports) { 2924 int j; 2925 for (j = 0; ports[j] != -1; j++) { 2926 ret = os_snprintf(pos, end - pos, 2927 "%s%d", 2928 j > 0 ? "," : ":", 2929 ports[j]); 2930 if (ret < 0 || ret >= end - pos) 2931 return buf; 2932 pos += ret; 2933 } 2934 } 2935 } 2936 2937 return buf; 2938 } 2939 2940 if (os_strcmp(var, "ocsp") == 0) 2941 return alloc_int_str(cred->ocsp); 2942 2943 if (os_strcmp(var, "realm") == 0) 2944 return alloc_strdup(cred->realm); 2945 2946 if (os_strcmp(var, "username") == 0) 2947 return alloc_strdup(cred->username); 2948 2949 if (os_strcmp(var, "password") == 0) { 2950 if (!cred->password) 2951 return NULL; 2952 return alloc_strdup("*"); 2953 } 2954 2955 if (os_strcmp(var, "ca_cert") == 0) 2956 return alloc_strdup(cred->ca_cert); 2957 2958 if (os_strcmp(var, "client_cert") == 0) 2959 return alloc_strdup(cred->client_cert); 2960 2961 if (os_strcmp(var, "private_key") == 0) 2962 return alloc_strdup(cred->private_key); 2963 2964 if (os_strcmp(var, "private_key_passwd") == 0) { 2965 if (!cred->private_key_passwd) 2966 return NULL; 2967 return alloc_strdup("*"); 2968 } 2969 2970 if (os_strcmp(var, "imsi") == 0) 2971 return alloc_strdup(cred->imsi); 2972 2973 if (os_strcmp(var, "milenage") == 0) { 2974 if (!(cred->milenage)) 2975 return NULL; 2976 return alloc_strdup("*"); 2977 } 2978 2979 if (os_strcmp(var, "domain_suffix_match") == 0) 2980 return alloc_strdup(cred->domain_suffix_match); 2981 2982 if (os_strcmp(var, "domain") == 0) { 2983 unsigned int i; 2984 char *buf, *end, *pos; 2985 int ret; 2986 2987 if (!cred->num_domain) 2988 return NULL; 2989 2990 buf = os_malloc(4000); 2991 if (buf == NULL) 2992 return NULL; 2993 pos = buf; 2994 end = pos + 4000; 2995 2996 for (i = 0; i < cred->num_domain; i++) { 2997 ret = os_snprintf(pos, end - pos, "%s%s", 2998 i > 0 ? "\n" : "", cred->domain[i]); 2999 if (ret < 0 || ret >= end - pos) 3000 return buf; 3001 pos += ret; 3002 } 3003 3004 return buf; 3005 } 3006 3007 if (os_strcmp(var, "phase1") == 0) 3008 return alloc_strdup(cred->phase1); 3009 3010 if (os_strcmp(var, "phase2") == 0) 3011 return alloc_strdup(cred->phase2); 3012 3013 if (os_strcmp(var, "roaming_consortium") == 0) { 3014 size_t buflen; 3015 char *buf; 3016 3017 if (!cred->roaming_consortium_len) 3018 return NULL; 3019 buflen = cred->roaming_consortium_len * 2 + 1; 3020 buf = os_malloc(buflen); 3021 if (buf == NULL) 3022 return NULL; 3023 wpa_snprintf_hex(buf, buflen, cred->roaming_consortium, 3024 cred->roaming_consortium_len); 3025 return buf; 3026 } 3027 3028 if (os_strcmp(var, "required_roaming_consortium") == 0) { 3029 size_t buflen; 3030 char *buf; 3031 3032 if (!cred->required_roaming_consortium_len) 3033 return NULL; 3034 buflen = cred->required_roaming_consortium_len * 2 + 1; 3035 buf = os_malloc(buflen); 3036 if (buf == NULL) 3037 return NULL; 3038 wpa_snprintf_hex(buf, buflen, cred->required_roaming_consortium, 3039 cred->required_roaming_consortium_len); 3040 return buf; 3041 } 3042 3043 if (os_strcmp(var, "excluded_ssid") == 0) { 3044 unsigned int i; 3045 char *buf, *end, *pos; 3046 3047 if (!cred->num_excluded_ssid) 3048 return NULL; 3049 3050 buf = os_malloc(4000); 3051 if (buf == NULL) 3052 return NULL; 3053 pos = buf; 3054 end = pos + 4000; 3055 3056 for (i = 0; i < cred->num_excluded_ssid; i++) { 3057 struct excluded_ssid *e; 3058 int ret; 3059 3060 e = &cred->excluded_ssid[i]; 3061 ret = os_snprintf(pos, end - pos, "%s%s", 3062 i > 0 ? "\n" : "", 3063 wpa_ssid_txt(e->ssid, e->ssid_len)); 3064 if (ret < 0 || ret >= end - pos) 3065 return buf; 3066 pos += ret; 3067 } 3068 3069 return buf; 3070 } 3071 3072 if (os_strcmp(var, "roaming_partner") == 0) { 3073 unsigned int i; 3074 char *buf, *end, *pos; 3075 3076 if (!cred->num_roaming_partner) 3077 return NULL; 3078 3079 buf = os_malloc(4000); 3080 if (buf == NULL) 3081 return NULL; 3082 pos = buf; 3083 end = pos + 4000; 3084 3085 for (i = 0; i < cred->num_roaming_partner; i++) { 3086 struct roaming_partner *p; 3087 int ret; 3088 3089 p = &cred->roaming_partner[i]; 3090 ret = os_snprintf(pos, end - pos, "%s%s,%d,%u,%s", 3091 i > 0 ? "\n" : "", 3092 p->fqdn, p->exact_match, p->priority, 3093 p->country); 3094 if (ret < 0 || ret >= end - pos) 3095 return buf; 3096 pos += ret; 3097 } 3098 3099 return buf; 3100 } 3101 3102 if (os_strcmp(var, "provisioning_sp") == 0) 3103 return alloc_strdup(cred->provisioning_sp); 3104 3105 return NULL; 3106} 3107 3108 3109struct wpa_cred * wpa_config_get_cred(struct wpa_config *config, int id) 3110{ 3111 struct wpa_cred *cred; 3112 3113 cred = config->cred; 3114 while (cred) { 3115 if (id == cred->id) 3116 break; 3117 cred = cred->next; 3118 } 3119 3120 return cred; 3121} 3122 3123 3124struct wpa_cred * wpa_config_add_cred(struct wpa_config *config) 3125{ 3126 int id; 3127 struct wpa_cred *cred, *last = NULL; 3128 3129 id = -1; 3130 cred = config->cred; 3131 while (cred) { 3132 if (cred->id > id) 3133 id = cred->id; 3134 last = cred; 3135 cred = cred->next; 3136 } 3137 id++; 3138 3139 cred = os_zalloc(sizeof(*cred)); 3140 if (cred == NULL) 3141 return NULL; 3142 cred->id = id; 3143 cred->sim_num = DEFAULT_USER_SELECTED_SIM; 3144 if (last) 3145 last->next = cred; 3146 else 3147 config->cred = cred; 3148 3149 return cred; 3150} 3151 3152 3153int wpa_config_remove_cred(struct wpa_config *config, int id) 3154{ 3155 struct wpa_cred *cred, *prev = NULL; 3156 3157 cred = config->cred; 3158 while (cred) { 3159 if (id == cred->id) 3160 break; 3161 prev = cred; 3162 cred = cred->next; 3163 } 3164 3165 if (cred == NULL) 3166 return -1; 3167 3168 if (prev) 3169 prev->next = cred->next; 3170 else 3171 config->cred = cred->next; 3172 3173 wpa_config_free_cred(cred); 3174 return 0; 3175} 3176 3177 3178#ifndef CONFIG_NO_CONFIG_BLOBS 3179/** 3180 * wpa_config_get_blob - Get a named configuration blob 3181 * @config: Configuration data from wpa_config_read() 3182 * @name: Name of the blob 3183 * Returns: Pointer to blob data or %NULL if not found 3184 */ 3185const struct wpa_config_blob * wpa_config_get_blob(struct wpa_config *config, 3186 const char *name) 3187{ 3188 struct wpa_config_blob *blob = config->blobs; 3189 3190 while (blob) { 3191 if (os_strcmp(blob->name, name) == 0) 3192 return blob; 3193 blob = blob->next; 3194 } 3195 return NULL; 3196} 3197 3198 3199/** 3200 * wpa_config_set_blob - Set or add a named configuration blob 3201 * @config: Configuration data from wpa_config_read() 3202 * @blob: New value for the blob 3203 * 3204 * Adds a new configuration blob or replaces the current value of an existing 3205 * blob. 3206 */ 3207void wpa_config_set_blob(struct wpa_config *config, 3208 struct wpa_config_blob *blob) 3209{ 3210 wpa_config_remove_blob(config, blob->name); 3211 blob->next = config->blobs; 3212 config->blobs = blob; 3213} 3214 3215 3216/** 3217 * wpa_config_free_blob - Free blob data 3218 * @blob: Pointer to blob to be freed 3219 */ 3220void wpa_config_free_blob(struct wpa_config_blob *blob) 3221{ 3222 if (blob) { 3223 os_free(blob->name); 3224 bin_clear_free(blob->data, blob->len); 3225 os_free(blob); 3226 } 3227} 3228 3229 3230/** 3231 * wpa_config_remove_blob - Remove a named configuration blob 3232 * @config: Configuration data from wpa_config_read() 3233 * @name: Name of the blob to remove 3234 * Returns: 0 if blob was removed or -1 if blob was not found 3235 */ 3236int wpa_config_remove_blob(struct wpa_config *config, const char *name) 3237{ 3238 struct wpa_config_blob *pos = config->blobs, *prev = NULL; 3239 3240 while (pos) { 3241 if (os_strcmp(pos->name, name) == 0) { 3242 if (prev) 3243 prev->next = pos->next; 3244 else 3245 config->blobs = pos->next; 3246 wpa_config_free_blob(pos); 3247 return 0; 3248 } 3249 prev = pos; 3250 pos = pos->next; 3251 } 3252 3253 return -1; 3254} 3255#endif /* CONFIG_NO_CONFIG_BLOBS */ 3256 3257 3258/** 3259 * wpa_config_alloc_empty - Allocate an empty configuration 3260 * @ctrl_interface: Control interface parameters, e.g., path to UNIX domain 3261 * socket 3262 * @driver_param: Driver parameters 3263 * Returns: Pointer to allocated configuration data or %NULL on failure 3264 */ 3265struct wpa_config * wpa_config_alloc_empty(const char *ctrl_interface, 3266 const char *driver_param) 3267{ 3268 struct wpa_config *config; 3269 const int aCWmin = 4, aCWmax = 10; 3270 const struct hostapd_wmm_ac_params ac_bk = 3271 { aCWmin, aCWmax, 7, 0, 0 }; /* background traffic */ 3272 const struct hostapd_wmm_ac_params ac_be = 3273 { aCWmin, aCWmax, 3, 0, 0 }; /* best effort traffic */ 3274 const struct hostapd_wmm_ac_params ac_vi = /* video traffic */ 3275 { aCWmin - 1, aCWmin, 2, 3000 / 32, 0 }; 3276 const struct hostapd_wmm_ac_params ac_vo = /* voice traffic */ 3277 { aCWmin - 2, aCWmin - 1, 2, 1500 / 32, 0 }; 3278 3279 config = os_zalloc(sizeof(*config)); 3280 if (config == NULL) 3281 return NULL; 3282 config->eapol_version = DEFAULT_EAPOL_VERSION; 3283 config->ap_scan = DEFAULT_AP_SCAN; 3284 config->fast_reauth = DEFAULT_FAST_REAUTH; 3285 config->p2p_go_intent = DEFAULT_P2P_GO_INTENT; 3286 config->p2p_intra_bss = DEFAULT_P2P_INTRA_BSS; 3287 config->p2p_go_max_inactivity = DEFAULT_P2P_GO_MAX_INACTIVITY; 3288 config->p2p_optimize_listen_chan = DEFAULT_P2P_OPTIMIZE_LISTEN_CHAN; 3289 config->bss_max_count = DEFAULT_BSS_MAX_COUNT; 3290 config->bss_expiration_age = DEFAULT_BSS_EXPIRATION_AGE; 3291 config->bss_expiration_scan_count = DEFAULT_BSS_EXPIRATION_SCAN_COUNT; 3292 config->max_num_sta = DEFAULT_MAX_NUM_STA; 3293 config->access_network_type = DEFAULT_ACCESS_NETWORK_TYPE; 3294 config->scan_cur_freq = DEFAULT_SCAN_CUR_FREQ; 3295 config->wmm_ac_params[0] = ac_be; 3296 config->wmm_ac_params[1] = ac_bk; 3297 config->wmm_ac_params[2] = ac_vi; 3298 config->wmm_ac_params[3] = ac_vo; 3299 config->p2p_search_delay = DEFAULT_P2P_SEARCH_DELAY; 3300 config->rand_addr_lifetime = DEFAULT_RAND_ADDR_LIFETIME; 3301 3302 if (ctrl_interface) 3303 config->ctrl_interface = os_strdup(ctrl_interface); 3304 if (driver_param) 3305 config->driver_param = os_strdup(driver_param); 3306 3307 return config; 3308} 3309 3310 3311#ifndef CONFIG_NO_STDOUT_DEBUG 3312/** 3313 * wpa_config_debug_dump_networks - Debug dump of configured networks 3314 * @config: Configuration data from wpa_config_read() 3315 */ 3316void wpa_config_debug_dump_networks(struct wpa_config *config) 3317{ 3318 int prio; 3319 struct wpa_ssid *ssid; 3320 3321 for (prio = 0; prio < config->num_prio; prio++) { 3322 ssid = config->pssid[prio]; 3323 wpa_printf(MSG_DEBUG, "Priority group %d", 3324 ssid->priority); 3325 while (ssid) { 3326 wpa_printf(MSG_DEBUG, " id=%d ssid='%s'", 3327 ssid->id, 3328 wpa_ssid_txt(ssid->ssid, ssid->ssid_len)); 3329 ssid = ssid->pnext; 3330 } 3331 } 3332} 3333#endif /* CONFIG_NO_STDOUT_DEBUG */ 3334 3335 3336struct global_parse_data { 3337 char *name; 3338 int (*parser)(const struct global_parse_data *data, 3339 struct wpa_config *config, int line, const char *value); 3340 void *param1, *param2, *param3; 3341 unsigned int changed_flag; 3342}; 3343 3344 3345static int wpa_global_config_parse_int(const struct global_parse_data *data, 3346 struct wpa_config *config, int line, 3347 const char *pos) 3348{ 3349 int val, *dst; 3350 char *end; 3351 3352 dst = (int *) (((u8 *) config) + (long) data->param1); 3353 val = strtol(pos, &end, 0); 3354 if (*end) { 3355 wpa_printf(MSG_ERROR, "Line %d: invalid number \"%s\"", 3356 line, pos); 3357 return -1; 3358 } 3359 *dst = val; 3360 3361 wpa_printf(MSG_DEBUG, "%s=%d", data->name, *dst); 3362 3363 if (data->param2 && *dst < (long) data->param2) { 3364 wpa_printf(MSG_ERROR, "Line %d: too small %s (value=%d " 3365 "min_value=%ld)", line, data->name, *dst, 3366 (long) data->param2); 3367 *dst = (long) data->param2; 3368 return -1; 3369 } 3370 3371 if (data->param3 && *dst > (long) data->param3) { 3372 wpa_printf(MSG_ERROR, "Line %d: too large %s (value=%d " 3373 "max_value=%ld)", line, data->name, *dst, 3374 (long) data->param3); 3375 *dst = (long) data->param3; 3376 return -1; 3377 } 3378 3379 return 0; 3380} 3381 3382 3383static int wpa_global_config_parse_str(const struct global_parse_data *data, 3384 struct wpa_config *config, int line, 3385 const char *pos) 3386{ 3387 size_t len; 3388 char **dst, *tmp; 3389 3390 len = os_strlen(pos); 3391 if (data->param2 && len < (size_t) data->param2) { 3392 wpa_printf(MSG_ERROR, "Line %d: too short %s (len=%lu " 3393 "min_len=%ld)", line, data->name, 3394 (unsigned long) len, (long) data->param2); 3395 return -1; 3396 } 3397 3398 if (data->param3 && len > (size_t) data->param3) { 3399 wpa_printf(MSG_ERROR, "Line %d: too long %s (len=%lu " 3400 "max_len=%ld)", line, data->name, 3401 (unsigned long) len, (long) data->param3); 3402 return -1; 3403 } 3404 3405 tmp = os_strdup(pos); 3406 if (tmp == NULL) 3407 return -1; 3408 3409 dst = (char **) (((u8 *) config) + (long) data->param1); 3410 os_free(*dst); 3411 *dst = tmp; 3412 wpa_printf(MSG_DEBUG, "%s='%s'", data->name, *dst); 3413 3414 return 0; 3415} 3416 3417 3418static int wpa_config_process_bgscan(const struct global_parse_data *data, 3419 struct wpa_config *config, int line, 3420 const char *pos) 3421{ 3422 size_t len; 3423 char *tmp; 3424 int res; 3425 3426 tmp = wpa_config_parse_string(pos, &len); 3427 if (tmp == NULL) { 3428 wpa_printf(MSG_ERROR, "Line %d: failed to parse %s", 3429 line, data->name); 3430 return -1; 3431 } 3432 3433 res = wpa_global_config_parse_str(data, config, line, tmp); 3434 os_free(tmp); 3435 return res; 3436} 3437 3438 3439static int wpa_global_config_parse_bin(const struct global_parse_data *data, 3440 struct wpa_config *config, int line, 3441 const char *pos) 3442{ 3443 size_t len; 3444 struct wpabuf **dst, *tmp; 3445 3446 len = os_strlen(pos); 3447 if (len & 0x01) 3448 return -1; 3449 3450 tmp = wpabuf_alloc(len / 2); 3451 if (tmp == NULL) 3452 return -1; 3453 3454 if (hexstr2bin(pos, wpabuf_put(tmp, len / 2), len / 2)) { 3455 wpabuf_free(tmp); 3456 return -1; 3457 } 3458 3459 dst = (struct wpabuf **) (((u8 *) config) + (long) data->param1); 3460 wpabuf_free(*dst); 3461 *dst = tmp; 3462 wpa_printf(MSG_DEBUG, "%s", data->name); 3463 3464 return 0; 3465} 3466 3467 3468static int wpa_config_process_freq_list(const struct global_parse_data *data, 3469 struct wpa_config *config, int line, 3470 const char *value) 3471{ 3472 int *freqs; 3473 3474 freqs = wpa_config_parse_int_array(value); 3475 if (freqs == NULL) 3476 return -1; 3477 if (freqs[0] == 0) { 3478 os_free(freqs); 3479 freqs = NULL; 3480 } 3481 os_free(config->freq_list); 3482 config->freq_list = freqs; 3483 return 0; 3484} 3485 3486 3487#ifdef CONFIG_P2P 3488static int wpa_global_config_parse_ipv4(const struct global_parse_data *data, 3489 struct wpa_config *config, int line, 3490 const char *pos) 3491{ 3492 u32 *dst; 3493 struct hostapd_ip_addr addr; 3494 3495 if (hostapd_parse_ip_addr(pos, &addr) < 0) 3496 return -1; 3497 if (addr.af != AF_INET) 3498 return -1; 3499 3500 dst = (u32 *) (((u8 *) config) + (long) data->param1); 3501 os_memcpy(dst, &addr.u.v4.s_addr, 4); 3502 wpa_printf(MSG_DEBUG, "%s = 0x%x", data->name, 3503 WPA_GET_BE32((u8 *) dst)); 3504 3505 return 0; 3506} 3507#endif /* CONFIG_P2P */ 3508 3509 3510static int wpa_config_process_country(const struct global_parse_data *data, 3511 struct wpa_config *config, int line, 3512 const char *pos) 3513{ 3514 if (!pos[0] || !pos[1]) { 3515 wpa_printf(MSG_DEBUG, "Invalid country set"); 3516 return -1; 3517 } 3518 config->country[0] = pos[0]; 3519 config->country[1] = pos[1]; 3520 wpa_printf(MSG_DEBUG, "country='%c%c'", 3521 config->country[0], config->country[1]); 3522 return 0; 3523} 3524 3525 3526static int wpa_config_process_load_dynamic_eap( 3527 const struct global_parse_data *data, struct wpa_config *config, 3528 int line, const char *so) 3529{ 3530 int ret; 3531 wpa_printf(MSG_DEBUG, "load_dynamic_eap=%s", so); 3532 ret = eap_peer_method_load(so); 3533 if (ret == -2) { 3534 wpa_printf(MSG_DEBUG, "This EAP type was already loaded - not " 3535 "reloading."); 3536 } else if (ret) { 3537 wpa_printf(MSG_ERROR, "Line %d: Failed to load dynamic EAP " 3538 "method '%s'.", line, so); 3539 return -1; 3540 } 3541 3542 return 0; 3543} 3544 3545 3546#ifdef CONFIG_WPS 3547 3548static int wpa_config_process_uuid(const struct global_parse_data *data, 3549 struct wpa_config *config, int line, 3550 const char *pos) 3551{ 3552 char buf[40]; 3553 if (uuid_str2bin(pos, config->uuid)) { 3554 wpa_printf(MSG_ERROR, "Line %d: invalid UUID", line); 3555 return -1; 3556 } 3557 uuid_bin2str(config->uuid, buf, sizeof(buf)); 3558 wpa_printf(MSG_DEBUG, "uuid=%s", buf); 3559 return 0; 3560} 3561 3562 3563static int wpa_config_process_device_type( 3564 const struct global_parse_data *data, 3565 struct wpa_config *config, int line, const char *pos) 3566{ 3567 return wps_dev_type_str2bin(pos, config->device_type); 3568} 3569 3570 3571static int wpa_config_process_os_version(const struct global_parse_data *data, 3572 struct wpa_config *config, int line, 3573 const char *pos) 3574{ 3575 if (hexstr2bin(pos, config->os_version, 4)) { 3576 wpa_printf(MSG_ERROR, "Line %d: invalid os_version", line); 3577 return -1; 3578 } 3579 wpa_printf(MSG_DEBUG, "os_version=%08x", 3580 WPA_GET_BE32(config->os_version)); 3581 return 0; 3582} 3583 3584 3585static int wpa_config_process_wps_vendor_ext_m1( 3586 const struct global_parse_data *data, 3587 struct wpa_config *config, int line, const char *pos) 3588{ 3589 struct wpabuf *tmp; 3590 int len = os_strlen(pos) / 2; 3591 u8 *p; 3592 3593 if (!len) { 3594 wpa_printf(MSG_ERROR, "Line %d: " 3595 "invalid wps_vendor_ext_m1", line); 3596 return -1; 3597 } 3598 3599 tmp = wpabuf_alloc(len); 3600 if (tmp) { 3601 p = wpabuf_put(tmp, len); 3602 3603 if (hexstr2bin(pos, p, len)) { 3604 wpa_printf(MSG_ERROR, "Line %d: " 3605 "invalid wps_vendor_ext_m1", line); 3606 wpabuf_free(tmp); 3607 return -1; 3608 } 3609 3610 wpabuf_free(config->wps_vendor_ext_m1); 3611 config->wps_vendor_ext_m1 = tmp; 3612 } else { 3613 wpa_printf(MSG_ERROR, "Can not allocate " 3614 "memory for wps_vendor_ext_m1"); 3615 return -1; 3616 } 3617 3618 return 0; 3619} 3620 3621#endif /* CONFIG_WPS */ 3622 3623#ifdef CONFIG_P2P 3624static int wpa_config_process_sec_device_type( 3625 const struct global_parse_data *data, 3626 struct wpa_config *config, int line, const char *pos) 3627{ 3628 int idx; 3629 3630 if (config->num_sec_device_types >= MAX_SEC_DEVICE_TYPES) { 3631 wpa_printf(MSG_ERROR, "Line %d: too many sec_device_type " 3632 "items", line); 3633 return -1; 3634 } 3635 3636 idx = config->num_sec_device_types; 3637 3638 if (wps_dev_type_str2bin(pos, config->sec_device_type[idx])) 3639 return -1; 3640 3641 config->num_sec_device_types++; 3642 return 0; 3643} 3644 3645 3646static int wpa_config_process_p2p_pref_chan( 3647 const struct global_parse_data *data, 3648 struct wpa_config *config, int line, const char *pos) 3649{ 3650 struct p2p_channel *pref = NULL, *n; 3651 unsigned int num = 0; 3652 const char *pos2; 3653 u8 op_class, chan; 3654 3655 /* format: class:chan,class:chan,... */ 3656 3657 while (*pos) { 3658 op_class = atoi(pos); 3659 pos2 = os_strchr(pos, ':'); 3660 if (pos2 == NULL) 3661 goto fail; 3662 pos2++; 3663 chan = atoi(pos2); 3664 3665 n = os_realloc_array(pref, num + 1, 3666 sizeof(struct p2p_channel)); 3667 if (n == NULL) 3668 goto fail; 3669 pref = n; 3670 pref[num].op_class = op_class; 3671 pref[num].chan = chan; 3672 num++; 3673 3674 pos = os_strchr(pos2, ','); 3675 if (pos == NULL) 3676 break; 3677 pos++; 3678 } 3679 3680 os_free(config->p2p_pref_chan); 3681 config->p2p_pref_chan = pref; 3682 config->num_p2p_pref_chan = num; 3683 wpa_hexdump(MSG_DEBUG, "P2P: Preferred class/channel pairs", 3684 (u8 *) config->p2p_pref_chan, 3685 config->num_p2p_pref_chan * sizeof(struct p2p_channel)); 3686 3687 return 0; 3688 3689fail: 3690 os_free(pref); 3691 wpa_printf(MSG_ERROR, "Line %d: Invalid p2p_pref_chan list", line); 3692 return -1; 3693} 3694 3695 3696static int wpa_config_process_p2p_no_go_freq( 3697 const struct global_parse_data *data, 3698 struct wpa_config *config, int line, const char *pos) 3699{ 3700 int ret; 3701 3702 ret = freq_range_list_parse(&config->p2p_no_go_freq, pos); 3703 if (ret < 0) { 3704 wpa_printf(MSG_ERROR, "Line %d: Invalid p2p_no_go_freq", line); 3705 return -1; 3706 } 3707 3708 wpa_printf(MSG_DEBUG, "P2P: p2p_no_go_freq with %u items", 3709 config->p2p_no_go_freq.num); 3710 3711 return 0; 3712} 3713 3714#endif /* CONFIG_P2P */ 3715 3716 3717static int wpa_config_process_hessid( 3718 const struct global_parse_data *data, 3719 struct wpa_config *config, int line, const char *pos) 3720{ 3721 if (hwaddr_aton2(pos, config->hessid) < 0) { 3722 wpa_printf(MSG_ERROR, "Line %d: Invalid hessid '%s'", 3723 line, pos); 3724 return -1; 3725 } 3726 3727 return 0; 3728} 3729 3730 3731static int wpa_config_process_sae_groups( 3732 const struct global_parse_data *data, 3733 struct wpa_config *config, int line, const char *pos) 3734{ 3735 int *groups = wpa_config_parse_int_array(pos); 3736 if (groups == NULL) { 3737 wpa_printf(MSG_ERROR, "Line %d: Invalid sae_groups '%s'", 3738 line, pos); 3739 return -1; 3740 } 3741 3742 os_free(config->sae_groups); 3743 config->sae_groups = groups; 3744 3745 return 0; 3746} 3747 3748 3749static int wpa_config_process_ap_vendor_elements( 3750 const struct global_parse_data *data, 3751 struct wpa_config *config, int line, const char *pos) 3752{ 3753 struct wpabuf *tmp; 3754 int len = os_strlen(pos) / 2; 3755 u8 *p; 3756 3757 if (!len) { 3758 wpa_printf(MSG_ERROR, "Line %d: invalid ap_vendor_elements", 3759 line); 3760 return -1; 3761 } 3762 3763 tmp = wpabuf_alloc(len); 3764 if (tmp) { 3765 p = wpabuf_put(tmp, len); 3766 3767 if (hexstr2bin(pos, p, len)) { 3768 wpa_printf(MSG_ERROR, "Line %d: invalid " 3769 "ap_vendor_elements", line); 3770 wpabuf_free(tmp); 3771 return -1; 3772 } 3773 3774 wpabuf_free(config->ap_vendor_elements); 3775 config->ap_vendor_elements = tmp; 3776 } else { 3777 wpa_printf(MSG_ERROR, "Cannot allocate memory for " 3778 "ap_vendor_elements"); 3779 return -1; 3780 } 3781 3782 return 0; 3783} 3784 3785 3786#ifdef CONFIG_CTRL_IFACE 3787static int wpa_config_process_no_ctrl_interface( 3788 const struct global_parse_data *data, 3789 struct wpa_config *config, int line, const char *pos) 3790{ 3791 wpa_printf(MSG_DEBUG, "no_ctrl_interface -> ctrl_interface=NULL"); 3792 os_free(config->ctrl_interface); 3793 config->ctrl_interface = NULL; 3794 return 0; 3795} 3796#endif /* CONFIG_CTRL_IFACE */ 3797 3798 3799#ifdef OFFSET 3800#undef OFFSET 3801#endif /* OFFSET */ 3802/* OFFSET: Get offset of a variable within the wpa_config structure */ 3803#define OFFSET(v) ((void *) &((struct wpa_config *) 0)->v) 3804 3805#define FUNC(f) #f, wpa_config_process_ ## f, OFFSET(f), NULL, NULL 3806#define FUNC_NO_VAR(f) #f, wpa_config_process_ ## f, NULL, NULL, NULL 3807#define _INT(f) #f, wpa_global_config_parse_int, OFFSET(f) 3808#define INT(f) _INT(f), NULL, NULL 3809#define INT_RANGE(f, min, max) _INT(f), (void *) min, (void *) max 3810#define _STR(f) #f, wpa_global_config_parse_str, OFFSET(f) 3811#define STR(f) _STR(f), NULL, NULL 3812#define STR_RANGE(f, min, max) _STR(f), (void *) min, (void *) max 3813#define BIN(f) #f, wpa_global_config_parse_bin, OFFSET(f), NULL, NULL 3814#define IPV4(f) #f, wpa_global_config_parse_ipv4, OFFSET(f), NULL, NULL 3815 3816static const struct global_parse_data global_fields[] = { 3817#ifdef CONFIG_CTRL_IFACE 3818 { STR(ctrl_interface), 0 }, 3819 { FUNC_NO_VAR(no_ctrl_interface), 0 }, 3820 { STR(ctrl_interface_group), 0 } /* deprecated */, 3821#endif /* CONFIG_CTRL_IFACE */ 3822#ifdef CONFIG_MACSEC 3823 { INT_RANGE(eapol_version, 1, 3), 0 }, 3824#else /* CONFIG_MACSEC */ 3825 { INT_RANGE(eapol_version, 1, 2), 0 }, 3826#endif /* CONFIG_MACSEC */ 3827 { INT(ap_scan), 0 }, 3828 { FUNC(bgscan), 0 }, 3829 { INT(disable_scan_offload), 0 }, 3830 { INT(fast_reauth), 0 }, 3831 { STR(opensc_engine_path), 0 }, 3832 { STR(pkcs11_engine_path), 0 }, 3833 { STR(pkcs11_module_path), 0 }, 3834 { STR(pcsc_reader), 0 }, 3835 { STR(pcsc_pin), 0 }, 3836 { INT(external_sim), 0 }, 3837 { STR(driver_param), 0 }, 3838 { INT(dot11RSNAConfigPMKLifetime), 0 }, 3839 { INT(dot11RSNAConfigPMKReauthThreshold), 0 }, 3840 { INT(dot11RSNAConfigSATimeout), 0 }, 3841#ifndef CONFIG_NO_CONFIG_WRITE 3842 { INT(update_config), 0 }, 3843#endif /* CONFIG_NO_CONFIG_WRITE */ 3844 { FUNC_NO_VAR(load_dynamic_eap), 0 }, 3845#ifdef CONFIG_WPS 3846 { FUNC(uuid), CFG_CHANGED_UUID }, 3847 { STR_RANGE(device_name, 0, 32), CFG_CHANGED_DEVICE_NAME }, 3848 { STR_RANGE(manufacturer, 0, 64), CFG_CHANGED_WPS_STRING }, 3849 { STR_RANGE(model_name, 0, 32), CFG_CHANGED_WPS_STRING }, 3850 { STR_RANGE(model_number, 0, 32), CFG_CHANGED_WPS_STRING }, 3851 { STR_RANGE(serial_number, 0, 32), CFG_CHANGED_WPS_STRING }, 3852 { FUNC(device_type), CFG_CHANGED_DEVICE_TYPE }, 3853 { FUNC(os_version), CFG_CHANGED_OS_VERSION }, 3854 { STR(config_methods), CFG_CHANGED_CONFIG_METHODS }, 3855 { INT_RANGE(wps_cred_processing, 0, 2), 0 }, 3856 { FUNC(wps_vendor_ext_m1), CFG_CHANGED_VENDOR_EXTENSION }, 3857#endif /* CONFIG_WPS */ 3858#ifdef CONFIG_P2P 3859 { FUNC(sec_device_type), CFG_CHANGED_SEC_DEVICE_TYPE }, 3860 { INT(p2p_listen_reg_class), 0 }, 3861 { INT(p2p_listen_channel), 0 }, 3862 { INT(p2p_oper_reg_class), CFG_CHANGED_P2P_OPER_CHANNEL }, 3863 { INT(p2p_oper_channel), CFG_CHANGED_P2P_OPER_CHANNEL }, 3864 { INT_RANGE(p2p_go_intent, 0, 15), 0 }, 3865 { STR(p2p_ssid_postfix), CFG_CHANGED_P2P_SSID_POSTFIX }, 3866 { INT_RANGE(persistent_reconnect, 0, 1), 0 }, 3867 { INT_RANGE(p2p_intra_bss, 0, 1), CFG_CHANGED_P2P_INTRA_BSS }, 3868 { INT(p2p_group_idle), 0 }, 3869 { INT_RANGE(p2p_passphrase_len, 8, 63), 3870 CFG_CHANGED_P2P_PASSPHRASE_LEN }, 3871 { FUNC(p2p_pref_chan), CFG_CHANGED_P2P_PREF_CHAN }, 3872 { FUNC(p2p_no_go_freq), CFG_CHANGED_P2P_PREF_CHAN }, 3873 { INT_RANGE(p2p_add_cli_chan, 0, 1), 0 }, 3874 { INT_RANGE(p2p_optimize_listen_chan, 0, 1), 0 }, 3875 { INT(p2p_go_ht40), 0 }, 3876 { INT(p2p_go_vht), 0 }, 3877 { INT(p2p_disabled), 0 }, 3878 { INT(p2p_no_group_iface), 0 }, 3879 { INT_RANGE(p2p_ignore_shared_freq, 0, 1), 0 }, 3880 { IPV4(ip_addr_go), 0 }, 3881 { IPV4(ip_addr_mask), 0 }, 3882 { IPV4(ip_addr_start), 0 }, 3883 { IPV4(ip_addr_end), 0 }, 3884#endif /* CONFIG_P2P */ 3885 { FUNC(country), CFG_CHANGED_COUNTRY }, 3886 { INT(bss_max_count), 0 }, 3887 { INT(bss_expiration_age), 0 }, 3888 { INT(bss_expiration_scan_count), 0 }, 3889 { INT_RANGE(filter_ssids, 0, 1), 0 }, 3890 { INT_RANGE(filter_rssi, -100, 0), 0 }, 3891 { INT(max_num_sta), 0 }, 3892 { INT_RANGE(disassoc_low_ack, 0, 1), 0 }, 3893#ifdef CONFIG_HS20 3894 { INT_RANGE(hs20, 0, 1), 0 }, 3895#endif /* CONFIG_HS20 */ 3896 { INT_RANGE(interworking, 0, 1), 0 }, 3897 { FUNC(hessid), 0 }, 3898 { INT_RANGE(access_network_type, 0, 15), 0 }, 3899 { INT_RANGE(pbc_in_m1, 0, 1), 0 }, 3900 { STR(autoscan), 0 }, 3901 { INT_RANGE(wps_nfc_dev_pw_id, 0x10, 0xffff), 3902 CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3903 { BIN(wps_nfc_dh_pubkey), CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3904 { BIN(wps_nfc_dh_privkey), CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3905 { BIN(wps_nfc_dev_pw), CFG_CHANGED_NFC_PASSWORD_TOKEN }, 3906 { STR(ext_password_backend), CFG_CHANGED_EXT_PW_BACKEND }, 3907 { INT(p2p_go_max_inactivity), 0 }, 3908 { INT_RANGE(auto_interworking, 0, 1), 0 }, 3909 { INT(okc), 0 }, 3910 { INT(pmf), 0 }, 3911 { FUNC(sae_groups), 0 }, 3912 { INT(dtim_period), 0 }, 3913 { INT(beacon_int), 0 }, 3914 { FUNC(ap_vendor_elements), 0 }, 3915 { INT_RANGE(ignore_old_scan_res, 0, 1), 0 }, 3916 { FUNC(freq_list), 0 }, 3917 { INT(scan_cur_freq), 0 }, 3918 { INT(sched_scan_interval), 0 }, 3919 { INT(tdls_external_control), 0}, 3920 { STR(osu_dir), 0 }, 3921 { STR(wowlan_triggers), 0 }, 3922 { INT(p2p_search_delay), 0}, 3923 { INT(mac_addr), 0 }, 3924 { INT(rand_addr_lifetime), 0 }, 3925 { INT(preassoc_mac_addr), 0 }, 3926}; 3927 3928#undef FUNC 3929#undef _INT 3930#undef INT 3931#undef INT_RANGE 3932#undef _STR 3933#undef STR 3934#undef STR_RANGE 3935#undef BIN 3936#undef IPV4 3937#define NUM_GLOBAL_FIELDS ARRAY_SIZE(global_fields) 3938 3939 3940int wpa_config_process_global(struct wpa_config *config, char *pos, int line) 3941{ 3942 size_t i; 3943 int ret = 0; 3944 3945 for (i = 0; i < NUM_GLOBAL_FIELDS; i++) { 3946 const struct global_parse_data *field = &global_fields[i]; 3947 size_t flen = os_strlen(field->name); 3948 if (os_strncmp(pos, field->name, flen) != 0 || 3949 pos[flen] != '=') 3950 continue; 3951 3952 if (field->parser(field, config, line, pos + flen + 1)) { 3953 wpa_printf(MSG_ERROR, "Line %d: failed to " 3954 "parse '%s'.", line, pos); 3955 ret = -1; 3956 } 3957 if (field->changed_flag == CFG_CHANGED_NFC_PASSWORD_TOKEN) 3958 config->wps_nfc_pw_from_config = 1; 3959 config->changed_parameters |= field->changed_flag; 3960 break; 3961 } 3962 if (i == NUM_GLOBAL_FIELDS) { 3963#ifdef CONFIG_AP 3964 if (os_strncmp(pos, "wmm_ac_", 7) == 0) { 3965 char *tmp = os_strchr(pos, '='); 3966 if (tmp == NULL) { 3967 if (line < 0) 3968 return -1; 3969 wpa_printf(MSG_ERROR, "Line %d: invalid line " 3970 "'%s'", line, pos); 3971 return -1; 3972 } 3973 *tmp++ = '\0'; 3974 if (hostapd_config_wmm_ac(config->wmm_ac_params, pos, 3975 tmp)) { 3976 wpa_printf(MSG_ERROR, "Line %d: invalid WMM " 3977 "AC item", line); 3978 return -1; 3979 } 3980 } 3981#endif /* CONFIG_AP */ 3982 if (line < 0) 3983 return -1; 3984 wpa_printf(MSG_ERROR, "Line %d: unknown global field '%s'.", 3985 line, pos); 3986 ret = -1; 3987 } 3988 3989 return ret; 3990} 3991