#include "ieee802_11_auth.h"
#include "ap_list.h"
#include "sta_info.h"
-#include "driver.h"
+#include "driver_i.h"
#include "radius/radius_client.h"
#include "radius/radius_server.h"
+#include "radius/radius.h"
#include "wpa.h"
#include "preauth.h"
#include "wme.h"
struct hostapd_iface **iface;
};
-unsigned char rfc1042_header[6] = { 0xaa, 0xaa, 0x03, 0x00, 0x00, 0x00 };
-
extern int wpa_debug_level;
extern int wpa_debug_show_keys;
}
+void hostapd_tx_status(struct hostapd_data *hapd, const u8 *addr,
+ const u8 *buf, size_t len, int ack)
+{
+ struct sta_info *sta;
+
+ sta = ap_get_sta(hapd, addr);
+ if (sta && sta->flags & WLAN_STA_PENDING_POLL) {
+ wpa_printf(MSG_DEBUG, "STA " MACSTR " %s pending "
+ "activity poll", MAC2STR(sta->addr),
+ ack ? "ACKed" : "did not ACK");
+ if (ack)
+ sta->flags &= ~WLAN_STA_PENDING_POLL;
+ }
+ if (sta)
+ ieee802_1x_tx_status(hapd, sta, buf, len, ack);
+}
+
+
+void hostapd_rx_from_unknown_sta(struct hostapd_data *hapd, const u8 *addr)
+{
+ struct sta_info *sta;
+
+ sta = ap_get_sta(hapd, addr);
+ if (!sta || !(sta->flags & WLAN_STA_ASSOC)) {
+ wpa_printf(MSG_DEBUG, "Data/PS-poll frame from not associated "
+ "STA " MACSTR, MAC2STR(addr));
+ if (sta && (sta->flags & WLAN_STA_AUTH))
+ hostapd_sta_disassoc(
+ hapd, addr,
+ WLAN_REASON_CLASS3_FRAME_FROM_NONASSOC_STA);
+ else
+ hostapd_sta_deauth(
+ hapd, addr,
+ WLAN_REASON_CLASS3_FRAME_FROM_NONASSOC_STA);
+ }
+}
+
+
+int hostapd_notif_assoc(struct hostapd_data *hapd, const u8 *addr,
+ const u8 *ie, size_t ielen)
+{
+ struct sta_info *sta;
+ int new_assoc, res;
+
+ hostapd_logger(hapd, addr, HOSTAPD_MODULE_IEEE80211,
+ HOSTAPD_LEVEL_INFO, "associated");
+
+ sta = ap_get_sta(hapd, addr);
+ if (sta) {
+ accounting_sta_stop(hapd, sta);
+ } else {
+ sta = ap_sta_add(hapd, addr);
+ if (sta == NULL)
+ return -1;
+ }
+ sta->flags &= ~(WLAN_STA_WPS | WLAN_STA_MAYBE_WPS);
+
+ if (hapd->conf->wpa) {
+ if (ie == NULL || ielen == 0) {
+ if (hapd->conf->wps_state) {
+ wpa_printf(MSG_DEBUG, "STA did not include "
+ "WPA/RSN IE in (Re)Association "
+ "Request - possible WPS use");
+ sta->flags |= WLAN_STA_MAYBE_WPS;
+ goto skip_wpa_check;
+ }
+
+ wpa_printf(MSG_DEBUG, "No WPA/RSN IE from STA");
+ return -1;
+ }
+ if (hapd->conf->wps_state && ie[0] == 0xdd && ie[1] >= 4 &&
+ os_memcmp(ie + 2, "\x00\x50\xf2\x04", 4) == 0) {
+ sta->flags |= WLAN_STA_WPS;
+ goto skip_wpa_check;
+ }
+
+ if (sta->wpa_sm == NULL)
+ sta->wpa_sm = wpa_auth_sta_init(hapd->wpa_auth,
+ sta->addr);
+ if (sta->wpa_sm == NULL) {
+ wpa_printf(MSG_ERROR, "Failed to initialize WPA state "
+ "machine");
+ return -1;
+ }
+ res = wpa_validate_wpa_ie(hapd->wpa_auth, sta->wpa_sm,
+ ie, ielen, NULL, 0);
+ if (res != WPA_IE_OK) {
+ wpa_printf(MSG_DEBUG, "WPA/RSN information element "
+ "rejected? (res %u)", res);
+ wpa_hexdump(MSG_DEBUG, "IE", ie, ielen);
+ return -1;
+ }
+ }
+skip_wpa_check:
+
+ new_assoc = (sta->flags & WLAN_STA_ASSOC) == 0;
+ sta->flags |= WLAN_STA_AUTH | WLAN_STA_ASSOC;
+ wpa_auth_sm_event(sta->wpa_sm, WPA_ASSOC);
+
+ hostapd_new_assoc_sta(hapd, sta, !new_assoc);
+
+ ieee802_1x_notify_port_enabled(sta->eapol_sm, 1);
+
+ return 0;
+}
+
+
+void hostapd_notif_disassoc(struct hostapd_data *hapd, const u8 *addr)
+{
+ struct sta_info *sta;
+
+ hostapd_logger(hapd, addr, HOSTAPD_MODULE_IEEE80211,
+ HOSTAPD_LEVEL_INFO, "disassociated");
+
+ sta = ap_get_sta(hapd, addr);
+ if (sta == NULL) {
+ wpa_printf(MSG_DEBUG, "Disassociation notification for "
+ "unknown STA " MACSTR, MAC2STR(addr));
+ return;
+ }
+
+ sta->flags &= ~(WLAN_STA_AUTH | WLAN_STA_ASSOC);
+ wpa_auth_sm_event(sta->wpa_sm, WPA_DISASSOC);
+ sta->acct_terminate_cause = RADIUS_ACCT_TERMINATE_CAUSE_USER_REQUEST;
+ ieee802_1x_notify_port_enabled(sta->eapol_sm, 0);
+ ap_free_sta(hapd, sta);
+}
+
+
+void hostapd_eapol_receive(struct hostapd_data *hapd, const u8 *sa,
+ const u8 *buf, size_t len)
+{
+ ieee802_1x_receive(hapd, sa, buf, len);
+}
+
+
#ifdef EAP_SERVER
static int hostapd_sim_db_cb_sta(struct hostapd_data *hapd,
struct sta_info *sta, void *ctx)
*/
static void handle_term(int sig, void *eloop_ctx, void *signal_ctx)
{
- printf("Signal %d received - terminating\n", sig);
+ wpa_printf(MSG_DEBUG, "Signal %d received - terminating", sig);
eloop_terminate();
}
struct hapd_interfaces *hapds = (struct hapd_interfaces *) eloop_ctx;
size_t i;
- printf("Signal %d received - reloading configuration\n", sig);
+ wpa_printf(MSG_DEBUG, "Signal %d received - reloading configuration",
+ sig);
for (i = 0; i < hapds->count; i++) {
if (hostapd_reload_config(hapds->iface[i]) < 0) {
- printf("Failed to read new configuration file - "
- "continuing with old.\n");
+ wpa_printf(MSG_WARNING, "Failed to read new "
+ "configuration file - continuing with "
+ "old.");
continue;
}
}
char *buf;
if (!hapd->conf->dump_log_name) {
- printf("Dump file not defined - ignoring dump request\n");
+ wpa_printf(MSG_DEBUG, "Dump file not defined - ignoring dump "
+ "request");
return;
}
- printf("Dumping hostapd state to '%s'\n", hapd->conf->dump_log_name);
+ wpa_printf(MSG_DEBUG, "Dumping hostapd state to '%s'",
+ hapd->conf->dump_log_name);
f = fopen(hapd->conf->dump_log_name, "w");
if (f == NULL) {
- printf("Could not open dump file '%s' for writing.\n",
- hapd->conf->dump_log_name);
+ wpa_printf(MSG_WARNING, "Could not open dump file '%s' for "
+ "writing.", hapd->conf->dump_log_name);
return;
}
for (i = 0; i < NUM_WEP_KEYS; i++) {
if (hostapd_set_encryption(ifname, hapd, "none", NULL, i, NULL,
0, i == 0 ? 1 : 0)) {
- printf("Failed to clear default encryption keys "
- "(ifname=%s keyidx=%d)\n", ifname, i);
+ wpa_printf(MSG_DEBUG, "Failed to clear default "
+ "encryption keys (ifname=%s keyidx=%d)",
+ ifname, i);
}
}
#ifdef CONFIG_IEEE80211W
if (hostapd_set_encryption(ifname, hapd, "none", NULL,
i, NULL, 0,
i == 0 ? 1 : 0)) {
- printf("Failed to clear default mgmt "
- "encryption keys (ifname=%s keyidx=%d)"
- "\n", ifname, i);
+ wpa_printf(MSG_DEBUG, "Failed to clear "
+ "default mgmt encryption keys "
+ "(ifname=%s keyidx=%d)", ifname, i);
}
}
}
ssid->wep.key[idx],
ssid->wep.len[idx],
idx == ssid->wep.idx)) {
- printf("Could not set WEP encryption.\n");
+ wpa_printf(MSG_WARNING, "Could not set WEP encryption.");
errors++;
}
idx, key->key[idx],
key->len[idx],
idx == key->idx)) {
- printf("Could not set dynamic VLAN WEP "
- "encryption.\n");
+ wpa_printf(MSG_WARNING, "Could not set "
+ "dynamic VLAN WEP encryption.");
errors++;
}
}
if (hapd->interface_added &&
hostapd_bss_remove(hapd, hapd->conf->iface)) {
- printf("Failed to remove BSS interface %s\n",
- hapd->conf->iface);
+ wpa_printf(MSG_WARNING, "Failed to remove BSS interface %s",
+ hapd->conf->iface);
}
}
i, hapd->conf->ssid.wep.key[i],
hapd->conf->ssid.wep.len[i],
i == hapd->conf->ssid.wep.idx)) {
- printf("Could not set WEP encryption.\n");
+ wpa_printf(MSG_WARNING, "Could not set WEP "
+ "encryption.");
return -1;
}
if (hapd->conf->ssid.wep.key[i] &&
wpa_printf(MSG_DEBUG, "Flushing old station entries");
if (hostapd_flush(hapd)) {
- printf("Could not connect to kernel driver.\n");
+ wpa_printf(MSG_WARNING, "Could not connect to kernel driver.");
ret = -1;
}
wpa_printf(MSG_DEBUG, "Deauthenticate all stations");
return 0;
if (res < 0) {
- printf("Driver did not accept BSSID mask " MACSTR " for start "
- "address " MACSTR ".\n",
- MAC2STR(mask), MAC2STR(hapd->own_addr));
+ wpa_printf(MSG_ERROR, "Driver did not accept BSSID mask "
+ MACSTR " for start address " MACSTR ".",
+ MAC2STR(mask), MAC2STR(hapd->own_addr));
return -1;
}
for (i = 0; i < ETH_ALEN; i++) {
if ((hapd->own_addr[i] & mask[i]) != hapd->own_addr[i]) {
- printf("Invalid BSSID mask " MACSTR " for start "
- "address " MACSTR ".\n"
- "Start address must be the first address in the"
- " block (i.e., addr AND mask == addr).\n",
- MAC2STR(mask), MAC2STR(hapd->own_addr));
+ wpa_printf(MSG_ERROR, "Invalid BSSID mask " MACSTR
+ " for start address " MACSTR ".",
+ MAC2STR(mask), MAC2STR(hapd->own_addr));
+ wpa_printf(MSG_ERROR, "Start address must be the "
+ "first address in the block (i.e., addr "
+ "AND mask == addr).");
return -1;
}
}
#endif /* CONFIG_IEEE80211R */
hapd->wpa_auth = wpa_init(hapd->own_addr, &_conf, &cb);
if (hapd->wpa_auth == NULL) {
- printf("WPA initialization failed.\n");
+ wpa_printf(MSG_ERROR, "WPA initialization failed.");
return -1;
}
}
if (rsn_preauth_iface_init(hapd)) {
- printf("Initialization of RSN pre-authentication "
- "failed.\n");
+ wpa_printf(MSG_ERROR, "Initialization of RSN "
+ "pre-authentication failed.");
return -1;
}
hapd->radius_srv = radius_server_init(&srv);
if (hapd->radius_srv == NULL) {
- printf("RADIUS server initialization failed.\n");
+ wpa_printf(MSG_ERROR, "RADIUS server initialization failed.");
return -1;
}
if (hostapd_mac_comp(hapd->own_addr,
hapd->iface->bss[0]->own_addr) ==
0) {
- printf("BSS '%s' may not have BSSID "
- "set to the MAC address of the radio\n",
- hapd->conf->iface);
+ wpa_printf(MSG_ERROR, "BSS '%s' may not have "
+ "BSSID set to the MAC address of "
+ "the radio", hapd->conf->iface);
return -1;
}
}
hapd->interface_added = 1;
if (hostapd_bss_add(hapd->iface->bss[0], hapd->conf->iface,
hapd->own_addr)) {
- printf("Failed to add BSS (BSSID=" MACSTR ")\n",
- MAC2STR(hapd->own_addr));
+ wpa_printf(MSG_ERROR, "Failed to add BSS (BSSID="
+ MACSTR ")", MAC2STR(hapd->own_addr));
return -1;
}
}
*/
ssid_len = hostapd_get_ssid(hapd, ssid, sizeof(ssid));
if (ssid_len < 0) {
- printf("Could not read SSID from system\n");
+ wpa_printf(MSG_ERROR, "Could not read SSID from system");
return -1;
}
if (conf->ssid.ssid_set) {
}
if (!hostapd_drv_none(hapd)) {
- printf("Using interface %s with hwaddr " MACSTR
- " and ssid '%s'\n",
- hapd->conf->iface, MAC2STR(hapd->own_addr),
- hapd->conf->ssid.ssid);
+ wpa_printf(MSG_ERROR, "Using interface %s with hwaddr " MACSTR
+ " and ssid '%s'",
+ hapd->conf->iface, MAC2STR(hapd->own_addr),
+ hapd->conf->ssid.ssid);
}
if (hostapd_setup_wpa_psk(conf)) {
- printf("WPA-PSK setup failed.\n");
+ wpa_printf(MSG_ERROR, "WPA-PSK setup failed.");
return -1;
}
/* Set flag for whether SSID is broadcast in beacons */
if (hostapd_set_broadcast_ssid(hapd,
!!hapd->conf->ignore_broadcast_ssid)) {
- printf("Could not set broadcast SSID flag for kernel "
- "driver\n");
+ wpa_printf(MSG_ERROR, "Could not set broadcast SSID flag for "
+ "kernel driver");
return -1;
}
if (hostapd_set_dtim_period(hapd, hapd->conf->dtim_period)) {
- printf("Could not set DTIM period for kernel driver\n");
+ wpa_printf(MSG_ERROR, "Could not set DTIM period for kernel "
+ "driver");
return -1;
}
* response frames) */
if (set_ssid && hostapd_set_ssid(hapd, (u8 *) conf->ssid.ssid,
conf->ssid.ssid_len)) {
- printf("Could not set SSID for kernel driver\n");
+ wpa_printf(MSG_ERROR, "Could not set SSID for kernel driver");
return -1;
}
conf->radius->msg_dumps = 1;
hapd->radius = radius_client_init(hapd, conf->radius);
if (hapd->radius == NULL) {
- printf("RADIUS client initialization failed.\n");
+ wpa_printf(MSG_ERROR, "RADIUS client initialization failed.");
return -1;
}
if (hostapd_acl_init(hapd)) {
- printf("ACL initialization failed.\n");
+ wpa_printf(MSG_ERROR, "ACL initialization failed.");
return -1;
}
if (hostapd_init_wps(hapd, conf))
return -1;
if (ieee802_1x_init(hapd)) {
- printf("IEEE 802.1X initialization failed.\n");
+ wpa_printf(MSG_ERROR, "IEEE 802.1X initialization failed.");
return -1;
}
return -1;
if (accounting_init(hapd)) {
- printf("Accounting initialization failed.\n");
+ wpa_printf(MSG_ERROR, "Accounting initialization failed.");
return -1;
}
if (hapd->conf->ieee802_11f &&
(hapd->iapp = iapp_init(hapd, hapd->conf->iapp_iface)) == NULL) {
- printf("IEEE 802.11F (IAPP) initialization failed.\n");
+ wpa_printf(MSG_ERROR, "IEEE 802.11F (IAPP) initialization "
+ "failed.");
return -1;
}
if (hostapd_ctrl_iface_init(hapd)) {
- printf("Failed to setup control interface\n");
+ wpa_printf(MSG_ERROR, "Failed to setup control interface");
return -1;
}
if (!hostapd_drv_none(hapd) && vlan_init(hapd)) {
- printf("VLAN initialization failed.\n");
+ wpa_printf(MSG_ERROR, "VLAN initialization failed.");
return -1;
}
if (hapd->l2 == NULL &&
(hapd->driver == NULL ||
hapd->driver->send_ether == NULL)) {
- printf("Failed to open l2_packet interface\n");
+ wpa_printf(MSG_ERROR, "Failed to open l2_packet "
+ "interface");
return -1;
}
}
if (hostapd_set_tx_queue_params(hapd, i, p->aifs, p->cwmin,
p->cwmax, p->burst)) {
- printf("Failed to set TX queue parameters for queue %d"
- ".\n", i);
+ wpa_printf(MSG_DEBUG, "Failed to set TX queue "
+ "parameters for queue %d.", i);
/* Continue anyway */
}
}
}
if (hapd->drv_priv == NULL) {
- printf("%s driver initialization failed.\n",
- hapd->driver ? hapd->driver->name : "Unknown");
+ wpa_printf(MSG_ERROR, "%s driver initialization failed.",
+ hapd->driver ? hapd->driver->name : "Unknown");
hapd->driver = NULL;
return -1;
}
os_memcpy(country, hapd->iconf->country, 3);
country[3] = '\0';
if (hostapd_set_country(hapd, country) < 0) {
- printf("Failed to set country code\n");
+ wpa_printf(MSG_ERROR, "Failed to set country code");
return -1;
}
if (hapd->iconf->ieee80211d &&
hostapd_set_ieee80211d(hapd, 1) < 0) {
- printf("Failed to set ieee80211d (%d)\n",
- hapd->iconf->ieee80211d);
+ wpa_printf(MSG_ERROR, "Failed to set ieee80211d (%d)",
+ hapd->iconf->ieee80211d);
return -1;
}
if (hapd->iconf->bridge_packets != INTERNAL_BRIDGE_DO_NOT_CONTROL &&
hostapd_set_internal_bridge(hapd, hapd->iconf->bridge_packets)) {
- printf("Failed to set bridge_packets for kernel driver\n");
+ wpa_printf(MSG_ERROR, "Failed to set bridge_packets for "
+ "kernel driver");
return -1;
}
} else {
int ret = hostapd_select_hw_mode(iface);
if (ret < 0) {
- printf("Could not select hw_mode and channel. (%d)\n",
- ret);
+ wpa_printf(MSG_ERROR, "Could not select hw_mode and "
+ "channel. (%d)", ret);
return -1;
}
}
if (hapd->iconf->channel) {
freq = hostapd_hw_get_freq(hapd, hapd->iconf->channel);
- printf("Mode: %s Channel: %d Frequency: %d MHz\n",
- hostapd_hw_mode_txt(hapd->iconf->hw_mode),
- hapd->iconf->channel, freq);
+ wpa_printf(MSG_DEBUG, "Mode: %s Channel: %d "
+ "Frequency: %d MHz",
+ hostapd_hw_mode_txt(hapd->iconf->hw_mode),
+ hapd->iconf->channel, freq);
if (hostapd_set_freq(hapd, hapd->iconf->hw_mode, freq,
hapd->iconf->ieee80211n,
hapd->iconf->secondary_channel)) {
- printf("Could not set channel for kernel driver\n");
+ wpa_printf(MSG_ERROR, "Could not set channel for "
+ "kernel driver");
return -1;
}
}
if (hapd->iconf->rts_threshold > -1 &&
hostapd_set_rts(hapd, hapd->iconf->rts_threshold)) {
- printf("Could not set RTS threshold for kernel driver\n");
+ wpa_printf(MSG_ERROR, "Could not set RTS threshold for "
+ "kernel driver");
return -1;
}
if (hapd->iconf->fragm_threshold > -1 &&
hostapd_set_frag(hapd, hapd->iconf->fragm_threshold)) {
- printf("Could not set fragmentation threshold for kernel "
- "driver\n");
+ wpa_printf(MSG_ERROR, "Could not set fragmentation threshold "
+ "for kernel driver");
return -1;
}
hapd->ssl_ctx = tls_init(NULL);
if (hapd->ssl_ctx == NULL) {
- printf("Failed to initialize TLS\n");
+ wpa_printf(MSG_ERROR, "Failed to initialize TLS");
goto fail;
}
params.dh_file = hapd->conf->dh_file;
if (tls_global_set_params(hapd->ssl_ctx, ¶ms)) {
- printf("Failed to set TLS parameters\n");
+ wpa_printf(MSG_ERROR, "Failed to set TLS parameters");
goto fail;
}
if (tls_global_set_verify(hapd->ssl_ctx,
hapd->conf->check_crl)) {
- printf("Failed to enable check_crl\n");
+ wpa_printf(MSG_ERROR, "Failed to enable check_crl");
goto fail;
}
}
eap_sim_db_init(hapd->conf->eap_sim_db,
hostapd_sim_db_cb, hapd);
if (hapd->eap_sim_db_priv == NULL) {
- printf("Failed to initialize EAP-SIM database "
- "interface\n");
+ wpa_printf(MSG_ERROR, "Failed to initialize EAP-SIM "
+ "database interface");
goto fail;
}
}
/* Initialize interfaces */
for (i = 0; i < interfaces.count; i++) {
- printf("Configuration file: %s\n", argv[optind + i]);
+ wpa_printf(MSG_ERROR, "Configuration file: %s",
+ argv[optind + i]);
interfaces.iface[i] = hostapd_init(argv[optind + i]);
if (!interfaces.iface[i])
goto out;