2 * WPA Supplicant / Configuration backend: Windows registry
3 * Copyright (c) 2003-2008, Jouni Malinen <j@w1.fi>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
9 * Alternatively, this software may be distributed under the terms of BSD
12 * See README and COPYING for more details.
14 * This file implements a configuration backend for Windows registry. All the
15 * configuration information is stored in the registry and the format for
16 * network configuration fields is same as described in the sample
17 * configuration file, wpa_supplicant.conf.
19 * Configuration data is in
20 * \a HKEY_LOCAL_MACHINE\\SOFTWARE\\%wpa_supplicant\\configs
21 * key. Each configuration profile has its own key under this. In terms of text
22 * files, each profile would map to a separate text file with possibly multiple
23 * networks. Under each profile, there is a networks key that lists all
24 * networks as a subkey. Each network has set of values in the same way as
25 * network block in the configuration file. In addition, blobs subkey has
26 * possible blobs as values.
28 * Example network configuration block:
30 HKEY_LOCAL_MACHINE\SOFTWARE\wpa_supplicant\configs\test\networks\0000
43 #define WPA_KEY_ROOT HKEY_LOCAL_MACHINE
45 #ifndef WPA_KEY_PREFIX
46 #define WPA_KEY_PREFIX TEXT("SOFTWARE\\wpa_supplicant")
56 static int wpa_config_read_blobs(struct wpa_config *config, HKEY hk)
58 struct wpa_config_blob *blob;
64 ret = RegOpenKeyEx(hk, TEXT("blobs"), 0, KEY_QUERY_VALUE, &bhk);
65 if (ret != ERROR_SUCCESS) {
66 wpa_printf(MSG_DEBUG, "Could not open wpa_supplicant config "
68 return 0; /* assume no blobs */
75 DWORD namelen, datalen, type;
78 datalen = sizeof(data);
79 ret = RegEnumValue(bhk, i, name, &namelen, NULL, &type,
80 (LPBYTE) data, &datalen);
82 if (ret == ERROR_NO_MORE_ITEMS)
85 if (ret != ERROR_SUCCESS) {
86 wpa_printf(MSG_DEBUG, "RegEnumValue failed: 0x%x",
91 if (namelen >= TNAMELEN)
92 namelen = TNAMELEN - 1;
93 name[namelen] = TEXT('\0');
94 wpa_unicode2ascii_inplace(name);
96 if (datalen >= sizeof(data))
97 datalen = sizeof(data) - 1;
99 wpa_printf(MSG_MSGDUMP, "blob %d: field='%s' len %d",
100 (int) i, name, (int) datalen);
102 blob = os_zalloc(sizeof(*blob));
107 blob->name = os_strdup((char *) name);
108 blob->data = os_malloc(datalen);
109 if (blob->name == NULL || blob->data == NULL) {
110 wpa_config_free_blob(blob);
114 os_memcpy(blob->data, data, datalen);
117 wpa_config_set_blob(config, blob);
122 return errors ? -1 : 0;
126 static int wpa_config_read_reg_dword(HKEY hk, const TCHAR *name, int *_val)
131 buflen = sizeof(val);
132 ret = RegQueryValueEx(hk, name, NULL, NULL, (LPBYTE) &val, &buflen);
133 if (ret == ERROR_SUCCESS && buflen == sizeof(val)) {
134 wpa_printf(MSG_DEBUG, TSTR "=%d", name, (int) val);
143 static char * wpa_config_read_reg_string(HKEY hk, const TCHAR *name)
150 ret = RegQueryValueEx(hk, name, NULL, NULL, NULL, &buflen);
151 if (ret != ERROR_SUCCESS)
153 val = os_malloc(buflen);
157 ret = RegQueryValueEx(hk, name, NULL, NULL, (LPBYTE) val, &buflen);
158 if (ret != ERROR_SUCCESS) {
163 wpa_unicode2ascii_inplace(val);
164 wpa_printf(MSG_DEBUG, TSTR "=%s", name, (char *) val);
170 static int wpa_config_read_global_uuid(struct wpa_config *config, HKEY hk)
175 str = wpa_config_read_reg_string(hk, TEXT("uuid"));
179 if (uuid_str2bin(str, config->uuid))
188 static int wpa_config_read_global_os_version(struct wpa_config *config,
194 str = wpa_config_read_reg_string(hk, TEXT("os_version"));
198 if (hexstr2bin(str, config->os_version, 4))
205 #endif /* CONFIG_WPS */
208 static int wpa_config_read_global(struct wpa_config *config, HKEY hk)
212 wpa_config_read_reg_dword(hk, TEXT("ap_scan"), &config->ap_scan);
213 wpa_config_read_reg_dword(hk, TEXT("fast_reauth"),
214 &config->fast_reauth);
215 wpa_config_read_reg_dword(hk, TEXT("dot11RSNAConfigPMKLifetime"),
216 (int *) &config->dot11RSNAConfigPMKLifetime);
217 wpa_config_read_reg_dword(hk,
218 TEXT("dot11RSNAConfigPMKReauthThreshold"),
220 &config->dot11RSNAConfigPMKReauthThreshold);
221 wpa_config_read_reg_dword(hk, TEXT("dot11RSNAConfigSATimeout"),
222 (int *) &config->dot11RSNAConfigSATimeout);
223 wpa_config_read_reg_dword(hk, TEXT("update_config"),
224 &config->update_config);
226 if (wpa_config_read_reg_dword(hk, TEXT("eapol_version"),
227 &config->eapol_version) == 0) {
228 if (config->eapol_version < 1 ||
229 config->eapol_version > 2) {
230 wpa_printf(MSG_ERROR, "Invalid EAPOL version (%d)",
231 config->eapol_version);
236 config->ctrl_interface = wpa_config_read_reg_string(
237 hk, TEXT("ctrl_interface"));
240 if (wpa_config_read_global_uuid(config, hk))
242 config->device_name = wpa_config_read_reg_string(
243 hk, TEXT("device_name"));
244 config->manufacturer = wpa_config_read_reg_string(
245 hk, TEXT("manufacturer"));
246 config->model_name = wpa_config_read_reg_string(
247 hk, TEXT("model_name"));
248 config->serial_number = wpa_config_read_reg_string(
249 hk, TEXT("serial_number"));
250 config->device_type = wpa_config_read_reg_string(
251 hk, TEXT("device_type"));
252 if (wpa_config_read_global_os_version(config, hk))
254 #endif /* CONFIG_WPS */
256 return errors ? -1 : 0;
260 static struct wpa_ssid * wpa_config_read_network(HKEY hk, const TCHAR *netw,
266 struct wpa_ssid *ssid;
269 ret = RegOpenKeyEx(hk, netw, 0, KEY_QUERY_VALUE, &nhk);
270 if (ret != ERROR_SUCCESS) {
271 wpa_printf(MSG_DEBUG, "Could not open wpa_supplicant config "
272 "network '" TSTR "'", netw);
276 wpa_printf(MSG_MSGDUMP, "Start of a new network '" TSTR "'", netw);
277 ssid = os_zalloc(sizeof(*ssid));
284 wpa_config_set_network_defaults(ssid);
287 TCHAR name[255], data[1024];
288 DWORD namelen, datalen, type;
291 datalen = sizeof(data);
292 ret = RegEnumValue(nhk, i, name, &namelen, NULL, &type,
293 (LPBYTE) data, &datalen);
295 if (ret == ERROR_NO_MORE_ITEMS)
298 if (ret != ERROR_SUCCESS) {
299 wpa_printf(MSG_ERROR, "RegEnumValue failed: 0x%x",
306 name[namelen] = TEXT('\0');
310 data[datalen] = TEXT('\0');
312 wpa_unicode2ascii_inplace(name);
313 wpa_unicode2ascii_inplace(data);
314 if (wpa_config_set(ssid, (char *) name, (char *) data, 0) < 0)
320 if (ssid->passphrase) {
322 wpa_printf(MSG_ERROR, "Both PSK and passphrase "
323 "configured for network '" TSTR "'.", netw);
326 wpa_config_update_psk(ssid);
329 if ((ssid->key_mgmt & (WPA_KEY_MGMT_PSK | WPA_KEY_MGMT_FT_PSK |
330 WPA_KEY_MGMT_PSK_SHA256)) &&
332 wpa_printf(MSG_ERROR, "WPA-PSK accepted for key management, "
333 "but no PSK configured for network '" TSTR "'.",
338 if ((ssid->group_cipher & WPA_CIPHER_CCMP) &&
339 !(ssid->pairwise_cipher & WPA_CIPHER_CCMP) &&
340 !(ssid->pairwise_cipher & WPA_CIPHER_NONE)) {
341 /* Group cipher cannot be stronger than the pairwise cipher. */
342 wpa_printf(MSG_DEBUG, "Removed CCMP from group cipher "
343 "list since it was not allowed for pairwise "
344 "cipher for network '" TSTR "'.", netw);
345 ssid->group_cipher &= ~WPA_CIPHER_CCMP;
349 wpa_config_free_ssid(ssid);
357 static int wpa_config_read_networks(struct wpa_config *config, HKEY hk)
360 struct wpa_ssid *ssid, *tail = NULL, *head = NULL;
365 ret = RegOpenKeyEx(hk, TEXT("networks"), 0, KEY_ENUMERATE_SUB_KEYS,
367 if (ret != ERROR_SUCCESS) {
368 wpa_printf(MSG_ERROR, "Could not open wpa_supplicant networks "
378 ret = RegEnumKeyEx(nhk, i, name, &namelen, NULL, NULL, NULL,
381 if (ret == ERROR_NO_MORE_ITEMS)
384 if (ret != ERROR_SUCCESS) {
385 wpa_printf(MSG_DEBUG, "RegEnumKeyEx failed: 0x%x",
392 name[namelen] = '\0';
394 ssid = wpa_config_read_network(nhk, name, i);
396 wpa_printf(MSG_ERROR, "Failed to parse network "
397 "profile '%s'.", name);
407 if (wpa_config_add_prio_network(config, ssid)) {
408 wpa_printf(MSG_ERROR, "Failed to add network profile "
409 "'%s' to priority list.", name);
419 return errors ? -1 : 0;
423 struct wpa_config * wpa_config_read(const char *name)
427 struct wpa_config *config;
431 config = wpa_config_alloc_empty(NULL, NULL);
434 wpa_printf(MSG_DEBUG, "Reading configuration profile '%s'", name);
437 _snwprintf(buf, 256, WPA_KEY_PREFIX TEXT("\\configs\\%S"), name);
439 os_snprintf(buf, 256, WPA_KEY_PREFIX TEXT("\\configs\\%s"), name);
442 ret = RegOpenKeyEx(WPA_KEY_ROOT, buf, 0, KEY_QUERY_VALUE, &hk);
443 if (ret != ERROR_SUCCESS) {
444 wpa_printf(MSG_ERROR, "Could not open wpa_supplicant "
445 "configuration registry HKLM\\" TSTR, buf);
450 if (wpa_config_read_global(config, hk))
453 if (wpa_config_read_networks(config, hk))
456 if (wpa_config_read_blobs(config, hk))
459 wpa_config_debug_dump_networks(config);
464 wpa_config_free(config);
472 static int wpa_config_write_reg_dword(HKEY hk, const TCHAR *name, int val,
479 RegDeleteValue(hk, name);
483 ret = RegSetValueEx(hk, name, 0, REG_DWORD, (LPBYTE) &_val,
485 if (ret != ERROR_SUCCESS) {
486 wpa_printf(MSG_ERROR, "WINREG: Failed to set %s=%d: error %d",
487 name, val, (int) GetLastError());
495 static int wpa_config_write_reg_string(HKEY hk, const char *name,
501 _name = wpa_strdup_tchar(name);
506 RegDeleteValue(hk, _name);
511 _val = wpa_strdup_tchar(val);
516 ret = RegSetValueEx(hk, _name, 0, REG_SZ, (BYTE *) _val,
517 (os_strlen(val) + 1) * sizeof(TCHAR));
518 if (ret != ERROR_SUCCESS) {
519 wpa_printf(MSG_ERROR, "WINREG: Failed to set %s='%s': "
520 "error %d", name, val, (int) GetLastError());
532 static int wpa_config_write_global(struct wpa_config *config, HKEY hk)
534 #ifdef CONFIG_CTRL_IFACE
535 wpa_config_write_reg_string(hk, "ctrl_interface",
536 config->ctrl_interface);
537 #endif /* CONFIG_CTRL_IFACE */
539 wpa_config_write_reg_dword(hk, TEXT("eapol_version"),
540 config->eapol_version,
541 DEFAULT_EAPOL_VERSION);
542 wpa_config_write_reg_dword(hk, TEXT("ap_scan"), config->ap_scan,
544 wpa_config_write_reg_dword(hk, TEXT("fast_reauth"),
545 config->fast_reauth, DEFAULT_FAST_REAUTH);
546 wpa_config_write_reg_dword(hk, TEXT("dot11RSNAConfigPMKLifetime"),
547 config->dot11RSNAConfigPMKLifetime, 0);
548 wpa_config_write_reg_dword(hk,
549 TEXT("dot11RSNAConfigPMKReauthThreshold"),
550 config->dot11RSNAConfigPMKReauthThreshold,
552 wpa_config_write_reg_dword(hk, TEXT("dot11RSNAConfigSATimeout"),
553 config->dot11RSNAConfigSATimeout, 0);
554 wpa_config_write_reg_dword(hk, TEXT("update_config"),
555 config->update_config,
558 if (!is_nil_uuid(config->uuid)) {
560 uuid_bin2str(config->uuid, buf, sizeof(buf));
561 wpa_config_write_reg_string(hk, "uuid", buf);
563 wpa_config_write_reg_string(hk, "device_name", config->device_name);
564 wpa_config_write_reg_string(hk, "manufacturer", config->manufacturer);
565 wpa_config_write_reg_string(hk, "model_name", config->model_name);
566 wpa_config_write_reg_string(hk, "model_number", config->model_number);
567 wpa_config_write_reg_string(hk, "serial_number",
568 config->serial_number);
569 wpa_config_write_reg_string(hk, "device_type", config->device_type);
570 if (WPA_GET_BE32(config->os_version)) {
572 os_snprintf(vbuf, sizeof(vbuf), "%08x",
573 WPA_GET_BE32(config->os_version));
574 wpa_config_write_reg_string(hk, "os_version", vbuf);
576 #endif /* CONFIG_WPS */
582 static int wpa_config_delete_subkeys(HKEY hk, const TCHAR *key)
588 ret = RegOpenKeyEx(hk, key, 0, KEY_ENUMERATE_SUB_KEYS | DELETE, &nhk);
589 if (ret != ERROR_SUCCESS) {
590 wpa_printf(MSG_DEBUG, "WINREG: Could not open key '" TSTR
591 "' for subkey deletion: error 0x%x (%d)", key,
592 (unsigned int) ret, (int) GetLastError());
601 ret = RegEnumKeyEx(nhk, i, name, &namelen, NULL, NULL, NULL,
604 if (ret == ERROR_NO_MORE_ITEMS)
607 if (ret != ERROR_SUCCESS) {
608 wpa_printf(MSG_DEBUG, "RegEnumKeyEx failed: 0x%x (%d)",
609 (unsigned int) ret, (int) GetLastError());
615 name[namelen] = TEXT('\0');
617 ret = RegDeleteKey(nhk, name);
618 if (ret != ERROR_SUCCESS) {
619 wpa_printf(MSG_DEBUG, "RegDeleteKey failed: 0x%x (%d)",
620 (unsigned int) ret, (int) GetLastError());
627 return errors ? -1 : 0;
631 static void write_str(HKEY hk, const char *field, struct wpa_ssid *ssid)
633 char *value = wpa_config_get(ssid, field);
636 wpa_config_write_reg_string(hk, field, value);
641 static void write_int(HKEY hk, const char *field, int value, int def)
646 os_snprintf(val, sizeof(val), "%d", value);
647 wpa_config_write_reg_string(hk, field, val);
651 static void write_bssid(HKEY hk, struct wpa_ssid *ssid)
653 char *value = wpa_config_get(ssid, "bssid");
656 wpa_config_write_reg_string(hk, "bssid", value);
661 static void write_psk(HKEY hk, struct wpa_ssid *ssid)
663 char *value = wpa_config_get(ssid, "psk");
666 wpa_config_write_reg_string(hk, "psk", value);
671 static void write_proto(HKEY hk, struct wpa_ssid *ssid)
675 if (ssid->proto == DEFAULT_PROTO)
678 value = wpa_config_get(ssid, "proto");
682 wpa_config_write_reg_string(hk, "proto", value);
687 static void write_key_mgmt(HKEY hk, struct wpa_ssid *ssid)
691 if (ssid->key_mgmt == DEFAULT_KEY_MGMT)
694 value = wpa_config_get(ssid, "key_mgmt");
698 wpa_config_write_reg_string(hk, "key_mgmt", value);
703 static void write_pairwise(HKEY hk, struct wpa_ssid *ssid)
707 if (ssid->pairwise_cipher == DEFAULT_PAIRWISE)
710 value = wpa_config_get(ssid, "pairwise");
714 wpa_config_write_reg_string(hk, "pairwise", value);
719 static void write_group(HKEY hk, struct wpa_ssid *ssid)
723 if (ssid->group_cipher == DEFAULT_GROUP)
726 value = wpa_config_get(ssid, "group");
730 wpa_config_write_reg_string(hk, "group", value);
735 static void write_auth_alg(HKEY hk, struct wpa_ssid *ssid)
739 if (ssid->auth_alg == 0)
742 value = wpa_config_get(ssid, "auth_alg");
746 wpa_config_write_reg_string(hk, "auth_alg", value);
751 #ifdef IEEE8021X_EAPOL
752 static void write_eap(HKEY hk, struct wpa_ssid *ssid)
756 value = wpa_config_get(ssid, "eap");
761 wpa_config_write_reg_string(hk, "eap", value);
764 #endif /* IEEE8021X_EAPOL */
767 static void write_wep_key(HKEY hk, int idx, struct wpa_ssid *ssid)
769 char field[20], *value;
771 os_snprintf(field, sizeof(field), "wep_key%d", idx);
772 value = wpa_config_get(ssid, field);
774 wpa_config_write_reg_string(hk, field, value);
780 static int wpa_config_write_network(HKEY hk, struct wpa_ssid *ssid, int id)
787 ret = RegOpenKeyEx(hk, TEXT("networks"), 0, KEY_CREATE_SUB_KEY, &nhk);
788 if (ret != ERROR_SUCCESS) {
789 wpa_printf(MSG_DEBUG, "WINREG: Could not open networks key "
790 "for subkey addition: error 0x%x (%d)",
791 (unsigned int) ret, (int) GetLastError());
796 wsprintf(name, L"%04d", id);
798 os_snprintf(name, sizeof(name), "%04d", id);
800 ret = RegCreateKeyEx(nhk, name, 0, NULL, 0, KEY_WRITE, NULL, &netw,
803 if (ret != ERROR_SUCCESS) {
804 wpa_printf(MSG_DEBUG, "WINREG: Could not add network key '%s':"
806 name, (unsigned int) ret, (int) GetLastError());
810 #define STR(t) write_str(netw, #t, ssid)
811 #define INT(t) write_int(netw, #t, ssid->t, 0)
812 #define INTe(t) write_int(netw, #t, ssid->eap.t, 0)
813 #define INT_DEF(t, def) write_int(netw, #t, ssid->t, def)
814 #define INT_DEFe(t, def) write_int(netw, #t, ssid->eap.t, def)
818 write_bssid(netw, ssid);
819 write_psk(netw, ssid);
820 write_proto(netw, ssid);
821 write_key_mgmt(netw, ssid);
822 write_pairwise(netw, ssid);
823 write_group(netw, ssid);
824 write_auth_alg(netw, ssid);
825 #ifdef IEEE8021X_EAPOL
826 write_eap(netw, ssid);
828 STR(anonymous_identity);
834 STR(private_key_passwd);
837 STR(altsubject_match);
842 STR(private_key2_passwd);
845 STR(altsubject_match2);
861 INT_DEF(eapol_flags, DEFAULT_EAPOL_FLAGS);
862 #endif /* IEEE8021X_EAPOL */
863 for (i = 0; i < 4; i++)
864 write_wep_key(netw, i, ssid);
867 #ifdef IEEE8021X_EAPOL
868 INT_DEF(eap_workaround, DEFAULT_EAP_WORKAROUND);
870 INT_DEFe(fragment_size, DEFAULT_FRAGMENT_SIZE);
871 #endif /* IEEE8021X_EAPOL */
873 INT(proactive_key_caching);
876 #ifdef CONFIG_IEEE80211W
878 #endif /* CONFIG_IEEE80211W */
887 return errors ? -1 : 0;
891 static int wpa_config_write_blob(HKEY hk, struct wpa_config_blob *blob)
897 ret = RegCreateKeyEx(hk, TEXT("blobs"), 0, NULL, 0, KEY_WRITE, NULL,
899 if (ret != ERROR_SUCCESS) {
900 wpa_printf(MSG_DEBUG, "WINREG: Could not add blobs key: "
902 (unsigned int) ret, (int) GetLastError());
906 name = wpa_strdup_tchar(blob->name);
907 ret = RegSetValueEx(bhk, name, 0, REG_BINARY, blob->data,
909 if (ret != ERROR_SUCCESS) {
910 wpa_printf(MSG_ERROR, "WINREG: Failed to set blob %s': "
911 "error 0x%x (%d)", blob->name, (unsigned int) ret,
912 (int) GetLastError());
925 int wpa_config_write(const char *name, struct wpa_config *config)
931 struct wpa_ssid *ssid;
932 struct wpa_config_blob *blob;
935 wpa_printf(MSG_DEBUG, "Writing configuration file '%s'", name);
938 _snwprintf(buf, 256, WPA_KEY_PREFIX TEXT("\\configs\\%S"), name);
940 os_snprintf(buf, 256, WPA_KEY_PREFIX TEXT("\\configs\\%s"), name);
943 ret = RegOpenKeyEx(WPA_KEY_ROOT, buf, 0, KEY_SET_VALUE | DELETE, &hk);
944 if (ret != ERROR_SUCCESS) {
945 wpa_printf(MSG_ERROR, "Could not open wpa_supplicant "
946 "configuration registry %s: error %d", buf,
947 (int) GetLastError());
951 if (wpa_config_write_global(config, hk)) {
952 wpa_printf(MSG_ERROR, "Failed to write global configuration "
957 wpa_config_delete_subkeys(hk, TEXT("networks"));
958 for (ssid = config->ssid, id = 0; ssid; ssid = ssid->next, id++) {
959 if (ssid->key_mgmt == WPA_KEY_MGMT_WPS)
960 continue; /* do not save temporary WPS networks */
961 if (wpa_config_write_network(hk, ssid, id))
965 RegDeleteKey(hk, TEXT("blobs"));
966 for (blob = config->blobs; blob; blob = blob->next) {
967 if (wpa_config_write_blob(hk, blob))
973 wpa_printf(MSG_DEBUG, "Configuration '%s' written %ssuccessfully",
974 name, errors ? "un" : "");
975 return errors ? -1 : 0;