search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Actually hook powernow.4 into the build.
[dragonfly.git] / contrib / hostapd / hostapd / driver_hostap.c
blobceff0998919c9c1685e6fb383b08b229ecf1e051
1 /*
2 * hostapd / Kernel driver communication with Linux Host AP driver
3 * Copyright (c) 2002-2007, Jouni Malinen <j@w1.fi>
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
8 *
9 * Alternatively, this software may be distributed under the terms of BSD
10 * license.
11 *
12 * See README and COPYING for more details.
13 */
14
15 #include "includes.h"
16 #include <sys/ioctl.h>
17
18 #ifdef USE_KERNEL_HEADERS
19 /* compat-wireless does not include linux/compiler.h to define __user, so
20 * define it here */
21 #ifndef __user
22 #define __user
23 #endif /* __user */
24 #include <asm/types.h>
25 #include <linux/if_packet.h>
26 #include <linux/if_ether.h> /* The L2 protocols */
27 #include <linux/if_arp.h>
28 #include <linux/wireless.h>
29 #else /* USE_KERNEL_HEADERS */
30 #include <net/if_arp.h>
31 #include <netpacket/packet.h>
32 #include "wireless_copy.h"
33 #endif /* USE_KERNEL_HEADERS */
34
35 #include "hostapd.h"
36 #include "driver.h"
37 #include "ieee802_1x.h"
38 #include "eloop.h"
39 #include "priv_netlink.h"
40 #include "ieee802_11.h"
41 #include "sta_info.h"
42 #include "hostap_common.h"
43 #include "hw_features.h"
44
45
46 struct hostap_driver_data {
47 struct hostapd_data *hapd;
48
49 char iface[IFNAMSIZ + 1];
50 int sock; /* raw packet socket for driver access */
51 int ioctl_sock; /* socket for ioctl() use */
52 int wext_sock; /* socket for wireless events */
53
54 int we_version;
55
56 u8 *generic_ie;
57 size_t generic_ie_len;
58 u8 *wps_ie;
59 size_t wps_ie_len;
60 };
61
62
63 static int hostapd_ioctl(void *priv, struct prism2_hostapd_param *param,
64 int len);
65 static int hostap_set_iface_flags(void *priv, int dev_up);
66
67 static void handle_data(struct hostapd_data *hapd, u8 *buf, size_t len,
68 u16 stype)
69 {
70 struct ieee80211_hdr *hdr;
71 u16 fc, ethertype;
72 u8 *pos, *sa;
73 size_t left;
74 struct sta_info *sta;
75
76 if (len < sizeof(struct ieee80211_hdr))
77 return;
78
79 hdr = (struct ieee80211_hdr *) buf;
80 fc = le_to_host16(hdr->frame_control);
81
82 if ((fc & (WLAN_FC_FROMDS | WLAN_FC_TODS)) != WLAN_FC_TODS) {
83 printf("Not ToDS data frame (fc=0x%04x)\n", fc);
84 return;
85 }
86
87 sa = hdr->addr2;
88 sta = ap_get_sta(hapd, sa);
89 if (!sta || !(sta->flags & WLAN_STA_ASSOC)) {
90 printf("Data frame from not associated STA " MACSTR "\n",
91 MAC2STR(sa));
92 if (sta && (sta->flags & WLAN_STA_AUTH))
93 hostapd_sta_disassoc(
94 hapd, sa,
95 WLAN_REASON_CLASS3_FRAME_FROM_NONASSOC_STA);
96 else
97 hostapd_sta_deauth(
98 hapd, sa,
99 WLAN_REASON_CLASS3_FRAME_FROM_NONASSOC_STA);
100 return;
101 }
102
103 pos = (u8 *) (hdr + 1);
104 left = len - sizeof(*hdr);
105
106 if (left < sizeof(rfc1042_header)) {
107 printf("Too short data frame\n");
108 return;
109 }
110
111 if (memcmp(pos, rfc1042_header, sizeof(rfc1042_header)) != 0) {
112 printf("Data frame with no RFC1042 header\n");
113 return;
114 }
115 pos += sizeof(rfc1042_header);
116 left -= sizeof(rfc1042_header);
117
118 if (left < 2) {
119 printf("No ethertype in data frame\n");
120 return;
121 }
122
123 ethertype = WPA_GET_BE16(pos);
124 pos += 2;
125 left -= 2;
126 switch (ethertype) {
127 case ETH_P_PAE:
128 ieee802_1x_receive(hapd, sa, pos, left);
129 break;
130
131 default:
132 printf("Unknown ethertype 0x%04x in data frame\n", ethertype);
133 break;
134 }
135 }
136
137
138 static void handle_tx_callback(struct hostapd_data *hapd, u8 *buf, size_t len,
139 int ok)
140 {
141 struct ieee80211_hdr *hdr;
142 u16 fc, type, stype;
143 struct sta_info *sta;
144
145 hdr = (struct ieee80211_hdr *) buf;
146 fc = le_to_host16(hdr->frame_control);
147
148 type = WLAN_FC_GET_TYPE(fc);
149 stype = WLAN_FC_GET_STYPE(fc);
150
151 switch (type) {
152 case WLAN_FC_TYPE_MGMT:
153 wpa_printf(MSG_DEBUG, "MGMT (TX callback) %s",
154 ok ? "ACK" : "fail");
155 ieee802_11_mgmt_cb(hapd, buf, len, stype, ok);
156 break;
157 case WLAN_FC_TYPE_CTRL:
158 wpa_printf(MSG_DEBUG, "CTRL (TX callback) %s",
159 ok ? "ACK" : "fail");
160 break;
161 case WLAN_FC_TYPE_DATA:
162 wpa_printf(MSG_DEBUG, "DATA (TX callback) %s",
163 ok ? "ACK" : "fail");
164 sta = ap_get_sta(hapd, hdr->addr1);
165 if (sta && sta->flags & WLAN_STA_PENDING_POLL) {
166 wpa_printf(MSG_DEBUG, "STA " MACSTR
167 " %s pending activity poll",
168 MAC2STR(sta->addr),
169 ok ? "ACKed" : "did not ACK");
170 if (ok)
171 sta->flags &= ~WLAN_STA_PENDING_POLL;
172 }
173 if (sta)
174 ieee802_1x_tx_status(hapd, sta, buf, len, ok);
175 break;
176 default:
177 printf("unknown TX callback frame type %d\n", type);
178 break;
179 }
180 }
181
182
183 static void handle_frame(struct hostapd_data *hapd, u8 *buf, size_t len)
184 {
185 struct ieee80211_hdr *hdr;
186 u16 fc, extra_len, type, stype;
187 unsigned char *extra = NULL;
188 size_t data_len = len;
189 int ver;
190
191 /* PSPOLL is only 16 bytes, but driver does not (at least yet) pass
192 * these to user space */
193 if (len < 24) {
194 wpa_printf(MSG_MSGDUMP, "handle_frame: too short (%lu)",
195 (unsigned long) len);
196 return;
197 }
198
199 hdr = (struct ieee80211_hdr *) buf;
200 fc = le_to_host16(hdr->frame_control);
201 type = WLAN_FC_GET_TYPE(fc);
202 stype = WLAN_FC_GET_STYPE(fc);
203
204 if (type != WLAN_FC_TYPE_MGMT || stype != WLAN_FC_STYPE_BEACON) {
205 wpa_hexdump(MSG_MSGDUMP, "Received management frame",
206 buf, len);
207 }
208
209 ver = fc & WLAN_FC_PVER;
210
211 /* protocol version 3 is reserved for indicating extra data after the
212 * payload, version 2 for indicating ACKed frame (TX callbacks), and
213 * version 1 for indicating failed frame (no ACK, TX callbacks) */
214 if (ver == 3) {
215 u8 *pos = buf + len - 2;
216 extra_len = WPA_GET_LE16(pos);
217 printf("extra data in frame (elen=%d)\n", extra_len);
218 if ((size_t) extra_len + 2 > len) {
219 printf(" extra data overflow\n");
220 return;
221 }
222 len -= extra_len + 2;
223 extra = buf + len;
224 } else if (ver == 1 || ver == 2) {
225 handle_tx_callback(hapd, buf, data_len, ver == 2 ? 1 : 0);
226 return;
227 } else if (ver != 0) {
228 printf("unknown protocol version %d\n", ver);
229 return;
230 }
231
232 switch (type) {
233 case WLAN_FC_TYPE_MGMT:
234 if (stype != WLAN_FC_STYPE_BEACON)
235 wpa_printf(MSG_MSGDUMP, "MGMT");
236 ieee802_11_mgmt(hapd, buf, data_len, stype, NULL);
237 break;
238 case WLAN_FC_TYPE_CTRL:
239 wpa_printf(MSG_DEBUG, "CTRL");
240 break;
241 case WLAN_FC_TYPE_DATA:
242 wpa_printf(MSG_DEBUG, "DATA");
243 handle_data(hapd, buf, data_len, stype);
244 break;
245 default:
246 wpa_printf(MSG_DEBUG, "unknown frame type %d", type);
247 break;
248 }
249 }
250
251
252 static void handle_read(int sock, void *eloop_ctx, void *sock_ctx)
253 {
254 struct hostapd_data *hapd = (struct hostapd_data *) eloop_ctx;
255 int len;
256 unsigned char buf[3000];
257
258 len = recv(sock, buf, sizeof(buf), 0);
259 if (len < 0) {
260 perror("recv");
261 return;
262 }
263
264 handle_frame(hapd, buf, len);
265 }
266
267
268 static int hostap_init_sockets(struct hostap_driver_data *drv)
269 {
270 struct ifreq ifr;
271 struct sockaddr_ll addr;
272
273 drv->sock = socket(PF_PACKET, SOCK_RAW, htons(ETH_P_ALL));
274 if (drv->sock < 0) {
275 perror("socket[PF_PACKET,SOCK_RAW]");
276 return -1;
277 }
278
279 if (eloop_register_read_sock(drv->sock, handle_read, drv->hapd, NULL))
280 {
281 printf("Could not register read socket\n");
282 return -1;
283 }
284
285 memset(&ifr, 0, sizeof(ifr));
286 snprintf(ifr.ifr_name, sizeof(ifr.ifr_name), "%sap", drv->iface);
287 if (ioctl(drv->sock, SIOCGIFINDEX, &ifr) != 0) {
288 perror("ioctl(SIOCGIFINDEX)");
289 return -1;
290 }
291
292 if (hostap_set_iface_flags(drv, 1)) {
293 return -1;
294 }
295
296 memset(&addr, 0, sizeof(addr));
297 addr.sll_family = AF_PACKET;
298 addr.sll_ifindex = ifr.ifr_ifindex;
299 wpa_printf(MSG_DEBUG, "Opening raw packet socket for ifindex %d",
300 addr.sll_ifindex);
301
302 if (bind(drv->sock, (struct sockaddr *) &addr, sizeof(addr)) < 0) {
303 perror("bind");
304 return -1;
305 }
306
307 memset(&ifr, 0, sizeof(ifr));
308 os_strlcpy(ifr.ifr_name, drv->iface, sizeof(ifr.ifr_name));
309 if (ioctl(drv->sock, SIOCGIFHWADDR, &ifr) != 0) {
310 perror("ioctl(SIOCGIFHWADDR)");
311 return -1;
312 }
313
314 if (ifr.ifr_hwaddr.sa_family != ARPHRD_ETHER) {
315 printf("Invalid HW-addr family 0x%04x\n",
316 ifr.ifr_hwaddr.sa_family);
317 return -1;
318 }
319 memcpy(drv->hapd->own_addr, ifr.ifr_hwaddr.sa_data, ETH_ALEN);
320
321 return 0;
322 }
323
324
325 static int hostap_send_mgmt_frame(void *priv, const void *msg, size_t len,
326 int flags)
327 {
328 struct hostap_driver_data *drv = priv;
329 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) msg;
330 int res;
331
332 /* Request TX callback */
333 hdr->frame_control |= host_to_le16(BIT(1));
334 res = send(drv->sock, msg, len, flags);
335 hdr->frame_control &= ~host_to_le16(BIT(1));
336
337 return res;
338 }
339
340
341 static int hostap_send_eapol(void *priv, const u8 *addr, const u8 *data,
342 size_t data_len, int encrypt, const u8 *own_addr)
343 {
344 struct hostap_driver_data *drv = priv;
345 struct ieee80211_hdr *hdr;
346 size_t len;
347 u8 *pos;
348 int res;
349
350 len = sizeof(*hdr) + sizeof(rfc1042_header) + 2 + data_len;
351 hdr = os_zalloc(len);
352 if (hdr == NULL) {
353 printf("malloc() failed for hostapd_send_data(len=%lu)\n",
354 (unsigned long) len);
355 return -1;
356 }
357
358 hdr->frame_control =
359 IEEE80211_FC(WLAN_FC_TYPE_DATA, WLAN_FC_STYPE_DATA);
360 hdr->frame_control |= host_to_le16(WLAN_FC_FROMDS);
361 if (encrypt)
362 hdr->frame_control |= host_to_le16(WLAN_FC_ISWEP);
363 memcpy(hdr->IEEE80211_DA_FROMDS, addr, ETH_ALEN);
364 memcpy(hdr->IEEE80211_BSSID_FROMDS, own_addr, ETH_ALEN);
365 memcpy(hdr->IEEE80211_SA_FROMDS, own_addr, ETH_ALEN);
366
367 pos = (u8 *) (hdr + 1);
368 memcpy(pos, rfc1042_header, sizeof(rfc1042_header));
369 pos += sizeof(rfc1042_header);
370 *((u16 *) pos) = htons(ETH_P_PAE);
371 pos += 2;
372 memcpy(pos, data, data_len);
373
374 res = hostap_send_mgmt_frame(drv, (u8 *) hdr, len, 0);
375 free(hdr);
376
377 if (res < 0) {
378 perror("hostapd_send_eapol: send");
379 printf("hostapd_send_eapol - packet len: %lu - failed\n",
380 (unsigned long) len);
381 }
382
383 return res;
384 }
385
386
387 static int hostap_sta_set_flags(void *priv, const u8 *addr,
388 int total_flags, int flags_or, int flags_and)
389 {
390 struct hostap_driver_data *drv = priv;
391 struct prism2_hostapd_param param;
392
393 memset(&param, 0, sizeof(param));
394 param.cmd = PRISM2_HOSTAPD_SET_FLAGS_STA;
395 memcpy(param.sta_addr, addr, ETH_ALEN);
396 param.u.set_flags_sta.flags_or = flags_or;
397 param.u.set_flags_sta.flags_and = flags_and;
398 return hostapd_ioctl(drv, &param, sizeof(param));
399 }
400
401
402 static int hostap_set_iface_flags(void *priv, int dev_up)
403 {
404 struct hostap_driver_data *drv = priv;
405 struct ifreq ifr;
406
407 if (drv->ioctl_sock < 0)
408 return -1;
409
410 memset(&ifr, 0, sizeof(ifr));
411 snprintf(ifr.ifr_name, IFNAMSIZ, "%sap", drv->iface);
412
413 if (ioctl(drv->ioctl_sock, SIOCGIFFLAGS, &ifr) != 0) {
414 perror("ioctl[SIOCGIFFLAGS]");
415 return -1;
416 }
417
418 if (dev_up)
419 ifr.ifr_flags |= IFF_UP;
420 else
421 ifr.ifr_flags &= ~IFF_UP;
422
423 if (ioctl(drv->ioctl_sock, SIOCSIFFLAGS, &ifr) != 0) {
424 perror("ioctl[SIOCSIFFLAGS]");
425 return -1;
426 }
427
428 if (dev_up) {
429 memset(&ifr, 0, sizeof(ifr));
430 snprintf(ifr.ifr_name, IFNAMSIZ, "%sap", drv->iface);
431 ifr.ifr_mtu = HOSTAPD_MTU;
432 if (ioctl(drv->ioctl_sock, SIOCSIFMTU, &ifr) != 0) {
433 perror("ioctl[SIOCSIFMTU]");
434 printf("Setting MTU failed - trying to survive with "
435 "current value\n");
436 }
437 }
438
439 return 0;
440 }
441
442
443 static int hostapd_ioctl(void *priv, struct prism2_hostapd_param *param,
444 int len)
445 {
446 struct hostap_driver_data *drv = priv;
447 struct iwreq iwr;
448
449 memset(&iwr, 0, sizeof(iwr));
450 os_strlcpy(iwr.ifr_name, drv->iface, IFNAMSIZ);
451 iwr.u.data.pointer = (caddr_t) param;
452 iwr.u.data.length = len;
453
454 if (ioctl(drv->ioctl_sock, PRISM2_IOCTL_HOSTAPD, &iwr) < 0) {
455 perror("ioctl[PRISM2_IOCTL_HOSTAPD]");
456 return -1;
457 }
458
459 return 0;
460 }
461
462
463 static int hostap_set_encryption(const char *ifname, void *priv,
464 const char *alg, const u8 *addr,
465 int idx, const u8 *key, size_t key_len,
466 int txkey)
467 {
468 struct hostap_driver_data *drv = priv;
469 struct prism2_hostapd_param *param;
470 u8 *buf;
471 size_t blen;
472 int ret = 0;
473
474 blen = sizeof(*param) + key_len;
475 buf = os_zalloc(blen);
476 if (buf == NULL)
477 return -1;
478
479 param = (struct prism2_hostapd_param *) buf;
480 param->cmd = PRISM2_SET_ENCRYPTION;
481 if (addr == NULL)
482 memset(param->sta_addr, 0xff, ETH_ALEN);
483 else
484 memcpy(param->sta_addr, addr, ETH_ALEN);
485 os_strlcpy((char *) param->u.crypt.alg, alg,
486 HOSTAP_CRYPT_ALG_NAME_LEN);
487 param->u.crypt.flags = txkey ? HOSTAP_CRYPT_FLAG_SET_TX_KEY : 0;
488 param->u.crypt.idx = idx;
489 param->u.crypt.key_len = key_len;
490 memcpy((u8 *) (param + 1), key, key_len);
491
492 if (hostapd_ioctl(drv, param, blen)) {
493 printf("Failed to set encryption.\n");
494 ret = -1;
495 }
496 free(buf);
497
498 return ret;
499 }
500
501
502 static int hostap_get_seqnum(const char *ifname, void *priv, const u8 *addr,
503 int idx, u8 *seq)
504 {
505 struct hostap_driver_data *drv = priv;
506 struct prism2_hostapd_param *param;
507 u8 *buf;
508 size_t blen;
509 int ret = 0;
510
511 blen = sizeof(*param) + 32;
512 buf = os_zalloc(blen);
513 if (buf == NULL)
514 return -1;
515
516 param = (struct prism2_hostapd_param *) buf;
517 param->cmd = PRISM2_GET_ENCRYPTION;
518 if (addr == NULL)
519 memset(param->sta_addr, 0xff, ETH_ALEN);
520 else
521 memcpy(param->sta_addr, addr, ETH_ALEN);
522 param->u.crypt.idx = idx;
523
524 if (hostapd_ioctl(drv, param, blen)) {
525 printf("Failed to get encryption.\n");
526 ret = -1;
527 } else {
528 memcpy(seq, param->u.crypt.seq, 8);
529 }
530 free(buf);
531
532 return ret;
533 }
534
535
536 static int hostap_ioctl_prism2param(void *priv, int param, int value)
537 {
538 struct hostap_driver_data *drv = priv;
539 struct iwreq iwr;
540 int *i;
541
542 memset(&iwr, 0, sizeof(iwr));
543 os_strlcpy(iwr.ifr_name, drv->iface, IFNAMSIZ);
544 i = (int *) iwr.u.name;
545 *i++ = param;
546 *i++ = value;
547
548 if (ioctl(drv->ioctl_sock, PRISM2_IOCTL_PRISM2_PARAM, &iwr) < 0) {
549 perror("ioctl[PRISM2_IOCTL_PRISM2_PARAM]");
550 return -1;
551 }
552
553 return 0;
554 }
555
556
557 static int hostap_set_ieee8021x(const char *ifname, void *priv, int enabled)
558 {
559 struct hostap_driver_data *drv = priv;
560
561 /* enable kernel driver support for IEEE 802.1X */
562 if (hostap_ioctl_prism2param(drv, PRISM2_PARAM_IEEE_802_1X, enabled)) {
563 printf("Could not setup IEEE 802.1X support in kernel driver."
564 "\n");
565 return -1;
566 }
567
568 if (!enabled)
569 return 0;
570
571 /* use host driver implementation of encryption to allow
572 * individual keys and passing plaintext EAPOL frames */
573 if (hostap_ioctl_prism2param(drv, PRISM2_PARAM_HOST_DECRYPT, 1) ||
574 hostap_ioctl_prism2param(drv, PRISM2_PARAM_HOST_ENCRYPT, 1)) {
575 printf("Could not setup host-based encryption in kernel "
576 "driver.\n");
577 return -1;
578 }
579
580 return 0;
581 }
582
583
584 static int hostap_set_privacy(const char *ifname, void *priv, int enabled)
585 {
586 struct hostap_drvier_data *drv = priv;
587
588 return hostap_ioctl_prism2param(drv, PRISM2_PARAM_PRIVACY_INVOKED,
589 enabled);
590 }
591
592
593 static int hostap_set_ssid(const char *ifname, void *priv, const u8 *buf,
594 int len)
595 {
596 struct hostap_driver_data *drv = priv;
597 struct iwreq iwr;
598
599 memset(&iwr, 0, sizeof(iwr));
600 os_strlcpy(iwr.ifr_name, drv->iface, IFNAMSIZ);
601 iwr.u.essid.flags = 1; /* SSID active */
602 iwr.u.essid.pointer = (caddr_t) buf;
603 iwr.u.essid.length = len + 1;
604
605 if (ioctl(drv->ioctl_sock, SIOCSIWESSID, &iwr) < 0) {
606 perror("ioctl[SIOCSIWESSID]");
607 printf("len=%d\n", len);
608 return -1;
609 }
610
611 return 0;
612 }
613
614
615 static int hostap_flush(void *priv)
616 {
617 struct hostap_driver_data *drv = priv;
618 struct prism2_hostapd_param param;
619
620 memset(&param, 0, sizeof(param));
621 param.cmd = PRISM2_HOSTAPD_FLUSH;
622 return hostapd_ioctl(drv, &param, sizeof(param));
623 }
624
625
626 static int hostap_read_sta_data(void *priv,
627 struct hostap_sta_driver_data *data,
628 const u8 *addr)
629 {
630 struct hostap_driver_data *drv = priv;
631 char buf[1024], line[128], *pos;
632 FILE *f;
633 unsigned long val;
634
635 memset(data, 0, sizeof(*data));
636 snprintf(buf, sizeof(buf), "/proc/net/hostap/%s/" MACSTR,
637 drv->iface, MAC2STR(addr));
638
639 f = fopen(buf, "r");
640 if (!f)
641 return -1;
642 /* Need to read proc file with in one piece, so use large enough
643 * buffer. */
644 setbuffer(f, buf, sizeof(buf));
645
646 while (fgets(line, sizeof(line), f)) {
647 pos = strchr(line, '=');
648 if (!pos)
649 continue;
650 *pos++ = '\0';
651 val = strtoul(pos, NULL, 10);
652 if (strcmp(line, "rx_packets") == 0)
653 data->rx_packets = val;
654 else if (strcmp(line, "tx_packets") == 0)
655 data->tx_packets = val;
656 else if (strcmp(line, "rx_bytes") == 0)
657 data->rx_bytes = val;
658 else if (strcmp(line, "tx_bytes") == 0)
659 data->tx_bytes = val;
660 }
661
662 fclose(f);
663
664 return 0;
665 }
666
667
668 static int hostap_sta_add(const char *ifname, void *priv, const u8 *addr,
669 u16 aid, u16 capability, u8 *supp_rates,
670 size_t supp_rates_len, int flags,
671 u16 listen_interval)
672 {
673 struct hostap_driver_data *drv = priv;
674 struct prism2_hostapd_param param;
675 int tx_supp_rates = 0;
676 size_t i;
677
678 #define WLAN_RATE_1M BIT(0)
679 #define WLAN_RATE_2M BIT(1)
680 #define WLAN_RATE_5M5 BIT(2)
681 #define WLAN_RATE_11M BIT(3)
682
683 for (i = 0; i < supp_rates_len; i++) {
684 if ((supp_rates[i] & 0x7f) == 2)
685 tx_supp_rates |= WLAN_RATE_1M;
686 if ((supp_rates[i] & 0x7f) == 4)
687 tx_supp_rates |= WLAN_RATE_2M;
688 if ((supp_rates[i] & 0x7f) == 11)
689 tx_supp_rates |= WLAN_RATE_5M5;
690 if ((supp_rates[i] & 0x7f) == 22)
691 tx_supp_rates |= WLAN_RATE_11M;
692 }
693
694 memset(&param, 0, sizeof(param));
695 param.cmd = PRISM2_HOSTAPD_ADD_STA;
696 memcpy(param.sta_addr, addr, ETH_ALEN);
697 param.u.add_sta.aid = aid;
698 param.u.add_sta.capability = capability;
699 param.u.add_sta.tx_supp_rates = tx_supp_rates;
700 return hostapd_ioctl(drv, &param, sizeof(param));
701 }
702
703
704 static int hostap_sta_remove(void *priv, const u8 *addr)
705 {
706 struct hostap_driver_data *drv = priv;
707 struct prism2_hostapd_param param;
708
709 hostap_sta_set_flags(drv, addr, 0, 0, ~WLAN_STA_AUTHORIZED);
710
711 memset(&param, 0, sizeof(param));
712 param.cmd = PRISM2_HOSTAPD_REMOVE_STA;
713 memcpy(param.sta_addr, addr, ETH_ALEN);
714 if (hostapd_ioctl(drv, &param, sizeof(param))) {
715 printf("Could not remove station from kernel driver.\n");
716 return -1;
717 }
718 return 0;
719 }
720
721
722 static int hostap_get_inact_sec(void *priv, const u8 *addr)
723 {
724 struct hostap_driver_data *drv = priv;
725 struct prism2_hostapd_param param;
726
727 memset(&param, 0, sizeof(param));
728 param.cmd = PRISM2_HOSTAPD_GET_INFO_STA;
729 memcpy(param.sta_addr, addr, ETH_ALEN);
730 if (hostapd_ioctl(drv, &param, sizeof(param))) {
731 return -1;
732 }
733
734 return param.u.get_info_sta.inactive_sec;
735 }
736
737
738 static int hostap_sta_clear_stats(void *priv, const u8 *addr)
739 {
740 struct hostap_driver_data *drv = priv;
741 struct prism2_hostapd_param param;
742
743 memset(&param, 0, sizeof(param));
744 param.cmd = PRISM2_HOSTAPD_STA_CLEAR_STATS;
745 memcpy(param.sta_addr, addr, ETH_ALEN);
746 if (hostapd_ioctl(drv, &param, sizeof(param))) {
747 return -1;
748 }
749
750 return 0;
751 }
752
753
754 static int hostap_set_assoc_ap(void *priv, const u8 *addr)
755 {
756 struct hostap_driver_data *drv = priv;
757 struct prism2_hostapd_param param;
758
759 memset(&param, 0, sizeof(param));
760 param.cmd = PRISM2_HOSTAPD_SET_ASSOC_AP_ADDR;
761 memcpy(param.sta_addr, addr, ETH_ALEN);
762 if (hostapd_ioctl(drv, &param, sizeof(param)))
763 return -1;
764
765 return 0;
766 }
767
768
769 static int hostapd_ioctl_set_generic_elem(struct hostap_driver_data *drv)
770 {
771 struct prism2_hostapd_param *param;
772 int res;
773 size_t blen, elem_len;
774
775 elem_len = drv->generic_ie_len + drv->wps_ie_len;
776 blen = PRISM2_HOSTAPD_GENERIC_ELEMENT_HDR_LEN + elem_len;
777 if (blen < sizeof(*param))
778 blen = sizeof(*param);
779
780 param = os_zalloc(blen);
781 if (param == NULL)
782 return -1;
783
784 param->cmd = PRISM2_HOSTAPD_SET_GENERIC_ELEMENT;
785 param->u.generic_elem.len = elem_len;
786 if (drv->generic_ie) {
787 os_memcpy(param->u.generic_elem.data, drv->generic_ie,
788 drv->generic_ie_len);
789 }
790 if (drv->wps_ie) {
791 os_memcpy(&param->u.generic_elem.data[drv->generic_ie_len],
792 drv->wps_ie, drv->wps_ie_len);
793 }
794 wpa_hexdump(MSG_DEBUG, "hostap: Set generic IE",
795 param->u.generic_elem.data, elem_len);
796 res = hostapd_ioctl(drv, param, blen);
797
798 os_free(param);
799
800 return res;
801 }
802
803
804 static int hostap_set_generic_elem(const char *ifname, void *priv,
805 const u8 *elem, size_t elem_len)
806 {
807 struct hostap_driver_data *drv = priv;
808
809 os_free(drv->generic_ie);
810 drv->generic_ie = NULL;
811 drv->generic_ie_len = 0;
812 if (elem) {
813 drv->generic_ie = os_malloc(elem_len);
814 if (drv->generic_ie == NULL)
815 return -1;
816 os_memcpy(drv->generic_ie, elem, elem_len);
817 drv->generic_ie_len = elem_len;
818 }
819
820 return hostapd_ioctl_set_generic_elem(drv);
821 }
822
823
824 static int hostap_set_wps_beacon_ie(const char *ifname, void *priv,
825 const u8 *ie, size_t len)
826 {
827 /* Host AP driver supports only one set of extra IEs, so we need to
828 * use the ProbeResp IEs also for Beacon frames since they include more
829 * information. */
830 return 0;
831 }
832
833
834 static int hostap_set_wps_probe_resp_ie(const char *ifname, void *priv,
835 const u8 *ie, size_t len)
836 {
837 struct hostap_driver_data *drv = priv;
838
839 os_free(drv->wps_ie);
840 drv->wps_ie = NULL;
841 drv->wps_ie_len = 0;
842 if (ie) {
843 drv->wps_ie = os_malloc(len);
844 if (drv->wps_ie == NULL)
845 return -1;
846 os_memcpy(drv->wps_ie, ie, len);
847 drv->wps_ie_len = len;
848 }
849
850 return hostapd_ioctl_set_generic_elem(drv);
851 }
852
853
854 static void
855 hostapd_wireless_event_wireless_custom(struct hostap_driver_data *drv,
856 char *custom)
857 {
858 wpa_printf(MSG_DEBUG, "Custom wireless event: '%s'", custom);
859
860 if (strncmp(custom, "MLME-MICHAELMICFAILURE.indication", 33) == 0) {
861 char *pos;
862 u8 addr[ETH_ALEN];
863 pos = strstr(custom, "addr=");
864 if (pos == NULL) {
865 wpa_printf(MSG_DEBUG,
866 "MLME-MICHAELMICFAILURE.indication "
867 "without sender address ignored");
868 return;
869 }
870 pos += 5;
871 if (hwaddr_aton(pos, addr) == 0) {
872 ieee80211_michael_mic_failure(drv->hapd, addr, 1);
873 } else {
874 wpa_printf(MSG_DEBUG,
875 "MLME-MICHAELMICFAILURE.indication "
876 "with invalid MAC address");
877 }
878 }
879 }
880
881
882 static void hostapd_wireless_event_wireless(struct hostap_driver_data *drv,
883 char *data, int len)
884 {
885 struct iw_event iwe_buf, *iwe = &iwe_buf;
886 char *pos, *end, *custom, *buf;
887
888 pos = data;
889 end = data + len;
890
891 while (pos + IW_EV_LCP_LEN <= end) {
892 /* Event data may be unaligned, so make a local, aligned copy
893 * before processing. */
894 memcpy(&iwe_buf, pos, IW_EV_LCP_LEN);
895 wpa_printf(MSG_DEBUG, "Wireless event: cmd=0x%x len=%d",
896 iwe->cmd, iwe->len);
897 if (iwe->len <= IW_EV_LCP_LEN)
898 return;
899
900 custom = pos + IW_EV_POINT_LEN;
901 if (drv->we_version > 18 &&
902 (iwe->cmd == IWEVMICHAELMICFAILURE ||
903 iwe->cmd == IWEVCUSTOM)) {
904 /* WE-19 removed the pointer from struct iw_point */
905 char *dpos = (char *) &iwe_buf.u.data.length;
906 int dlen = dpos - (char *) &iwe_buf;
907 memcpy(dpos, pos + IW_EV_LCP_LEN,
908 sizeof(struct iw_event) - dlen);
909 } else {
910 memcpy(&iwe_buf, pos, sizeof(struct iw_event));
911 custom += IW_EV_POINT_OFF;
912 }
913
914 switch (iwe->cmd) {
915 case IWEVCUSTOM:
916 if (custom + iwe->u.data.length > end)
917 return;
918 buf = malloc(iwe->u.data.length + 1);
919 if (buf == NULL)
920 return;
921 memcpy(buf, custom, iwe->u.data.length);
922 buf[iwe->u.data.length] = '\0';
923 hostapd_wireless_event_wireless_custom(drv, buf);
924 free(buf);
925 break;
926 }
927
928 pos += iwe->len;
929 }
930 }
931
932
933 static void hostapd_wireless_event_rtm_newlink(struct hostap_driver_data *drv,
934 struct nlmsghdr *h, int len)
935 {
936 struct ifinfomsg *ifi;
937 int attrlen, nlmsg_len, rta_len;
938 struct rtattr * attr;
939
940 if (len < (int) sizeof(*ifi))
941 return;
942
943 ifi = NLMSG_DATA(h);
944
945 /* TODO: use ifi->ifi_index to filter out wireless events from other
946 * interfaces */
947
948 nlmsg_len = NLMSG_ALIGN(sizeof(struct ifinfomsg));
949
950 attrlen = h->nlmsg_len - nlmsg_len;
951 if (attrlen < 0)
952 return;
953
954 attr = (struct rtattr *) (((char *) ifi) + nlmsg_len);
955
956 rta_len = RTA_ALIGN(sizeof(struct rtattr));
957 while (RTA_OK(attr, attrlen)) {
958 if (attr->rta_type == IFLA_WIRELESS) {
959 hostapd_wireless_event_wireless(
960 drv, ((char *) attr) + rta_len,
961 attr->rta_len - rta_len);
962 }
963 attr = RTA_NEXT(attr, attrlen);
964 }
965 }
966
967
968 static void hostapd_wireless_event_receive(int sock, void *eloop_ctx,
969 void *sock_ctx)
970 {
971 char buf[256];
972 int left;
973 struct sockaddr_nl from;
974 socklen_t fromlen;
975 struct nlmsghdr *h;
976 struct hostap_driver_data *drv = eloop_ctx;
977
978 fromlen = sizeof(from);
979 left = recvfrom(sock, buf, sizeof(buf), MSG_DONTWAIT,
980 (struct sockaddr *) &from, &fromlen);
981 if (left < 0) {
982 if (errno != EINTR && errno != EAGAIN)
983 perror("recvfrom(netlink)");
984 return;
985 }
986
987 h = (struct nlmsghdr *) buf;
988 while (left >= (int) sizeof(*h)) {
989 int len, plen;
990
991 len = h->nlmsg_len;
992 plen = len - sizeof(*h);
993 if (len > left || plen < 0) {
994 printf("Malformed netlink message: "
995 "len=%d left=%d plen=%d\n",
996 len, left, plen);
997 break;
998 }
999
1000 switch (h->nlmsg_type) {
1001 case RTM_NEWLINK:
1002 hostapd_wireless_event_rtm_newlink(drv, h, plen);
1003 break;
1004 }
1005
1006 len = NLMSG_ALIGN(len);
1007 left -= len;
1008 h = (struct nlmsghdr *) ((char *) h + len);
1009 }
1010
1011 if (left > 0) {
1012 printf("%d extra bytes in the end of netlink message\n", left);
1013 }
1014 }
1015
1016
1017 static int hostap_get_we_version(struct hostap_driver_data *drv)
1018 {
1019 struct iw_range *range;
1020 struct iwreq iwr;
1021 int minlen;
1022 size_t buflen;
1023
1024 drv->we_version = 0;
1025
1026 /*
1027 * Use larger buffer than struct iw_range in order to allow the
1028 * structure to grow in the future.
1029 */
1030 buflen = sizeof(struct iw_range) + 500;
1031 range = os_zalloc(buflen);
1032 if (range == NULL)
1033 return -1;
1034
1035 memset(&iwr, 0, sizeof(iwr));
1036 os_strlcpy(iwr.ifr_name, drv->iface, IFNAMSIZ);
1037 iwr.u.data.pointer = (caddr_t) range;
1038 iwr.u.data.length = buflen;
1039
1040 minlen = ((char *) &range->enc_capa) - (char *) range +
1041 sizeof(range->enc_capa);
1042
1043 if (ioctl(drv->ioctl_sock, SIOCGIWRANGE, &iwr) < 0) {
1044 perror("ioctl[SIOCGIWRANGE]");
1045 free(range);
1046 return -1;
1047 } else if (iwr.u.data.length >= minlen &&
1048 range->we_version_compiled >= 18) {
1049 wpa_printf(MSG_DEBUG, "SIOCGIWRANGE: WE(compiled)=%d "
1050 "WE(source)=%d enc_capa=0x%x",
1051 range->we_version_compiled,
1052 range->we_version_source,
1053 range->enc_capa);
1054 drv->we_version = range->we_version_compiled;
1055 }
1056
1057 free(range);
1058 return 0;
1059 }
1060
1061
1062 static int hostap_wireless_event_init(void *priv)
1063 {
1064 struct hostap_driver_data *drv = priv;
1065 int s;
1066 struct sockaddr_nl local;
1067
1068 hostap_get_we_version(drv);
1069
1070 drv->wext_sock = -1;
1071
1072 s = socket(PF_NETLINK, SOCK_RAW, NETLINK_ROUTE);
1073 if (s < 0) {
1074 perror("socket(PF_NETLINK,SOCK_RAW,NETLINK_ROUTE)");
1075 return -1;
1076 }
1077
1078 memset(&local, 0, sizeof(local));
1079 local.nl_family = AF_NETLINK;
1080 local.nl_groups = RTMGRP_LINK;
1081 if (bind(s, (struct sockaddr *) &local, sizeof(local)) < 0) {
1082 perror("bind(netlink)");
1083 close(s);
1084 return -1;
1085 }
1086
1087 eloop_register_read_sock(s, hostapd_wireless_event_receive, drv,
1088 NULL);
1089 drv->wext_sock = s;
1090
1091 return 0;
1092 }
1093
1094
1095 static void hostap_wireless_event_deinit(void *priv)
1096 {
1097 struct hostap_driver_data *drv = priv;
1098 if (drv->wext_sock < 0)
1099 return;
1100 eloop_unregister_read_sock(drv->wext_sock);
1101 close(drv->wext_sock);
1102 }
1103
1104
1105 static void * hostap_init(struct hostapd_data *hapd)
1106 {
1107 struct hostap_driver_data *drv;
1108
1109 drv = os_zalloc(sizeof(struct hostap_driver_data));
1110 if (drv == NULL) {
1111 printf("Could not allocate memory for hostapd driver data\n");
1112 return NULL;
1113 }
1114
1115 drv->hapd = hapd;
1116 drv->ioctl_sock = drv->sock = -1;
1117 memcpy(drv->iface, hapd->conf->iface, sizeof(drv->iface));
1118
1119 drv->ioctl_sock = socket(PF_INET, SOCK_DGRAM, 0);
1120 if (drv->ioctl_sock < 0) {
1121 perror("socket[PF_INET,SOCK_DGRAM]");
1122 free(drv);
1123 return NULL;
1124 }
1125
1126 if (hostap_ioctl_prism2param(drv, PRISM2_PARAM_HOSTAPD, 1)) {
1127 printf("Could not enable hostapd mode for interface %s\n",
1128 drv->iface);
1129 close(drv->ioctl_sock);
1130 free(drv);
1131 return NULL;
1132 }
1133
1134 if (hostap_init_sockets(drv)) {
1135 close(drv->ioctl_sock);
1136 free(drv);
1137 return NULL;
1138 }
1139
1140 return drv;
1141 }
1142
1143
1144 static void hostap_driver_deinit(void *priv)
1145 {
1146 struct hostap_driver_data *drv = priv;
1147
1148 (void) hostap_set_iface_flags(drv, 0);
1149 (void) hostap_ioctl_prism2param(drv, PRISM2_PARAM_HOSTAPD, 0);
1150 (void) hostap_ioctl_prism2param(drv, PRISM2_PARAM_HOSTAPD_STA, 0);
1151
1152 if (drv->ioctl_sock >= 0)
1153 close(drv->ioctl_sock);
1154
1155 if (drv->sock >= 0)
1156 close(drv->sock);
1157
1158 os_free(drv->generic_ie);
1159 os_free(drv->wps_ie);
1160
1161 free(drv);
1162 }
1163
1164
1165 static int hostap_sta_deauth(void *priv, const u8 *addr, int reason)
1166 {
1167 struct hostap_driver_data *drv = priv;
1168 struct ieee80211_mgmt mgmt;
1169
1170 memset(&mgmt, 0, sizeof(mgmt));
1171 mgmt.frame_control = IEEE80211_FC(WLAN_FC_TYPE_MGMT,
1172 WLAN_FC_STYPE_DEAUTH);
1173 memcpy(mgmt.da, addr, ETH_ALEN);
1174 memcpy(mgmt.sa, drv->hapd->own_addr, ETH_ALEN);
1175 memcpy(mgmt.bssid, drv->hapd->own_addr, ETH_ALEN);
1176 mgmt.u.deauth.reason_code = host_to_le16(reason);
1177 return hostap_send_mgmt_frame(drv, &mgmt, IEEE80211_HDRLEN +
1178 sizeof(mgmt.u.deauth), 0);
1179 }
1180
1181
1182 static int hostap_sta_disassoc(void *priv, const u8 *addr, int reason)
1183 {
1184 struct hostap_driver_data *drv = priv;
1185 struct ieee80211_mgmt mgmt;
1186
1187 memset(&mgmt, 0, sizeof(mgmt));
1188 mgmt.frame_control = IEEE80211_FC(WLAN_FC_TYPE_MGMT,
1189 WLAN_FC_STYPE_DISASSOC);
1190 memcpy(mgmt.da, addr, ETH_ALEN);
1191 memcpy(mgmt.sa, drv->hapd->own_addr, ETH_ALEN);
1192 memcpy(mgmt.bssid, drv->hapd->own_addr, ETH_ALEN);
1193 mgmt.u.disassoc.reason_code = host_to_le16(reason);
1194 return hostap_send_mgmt_frame(drv, &mgmt, IEEE80211_HDRLEN +
1195 sizeof(mgmt.u.disassoc), 0);
1196 }
1197
1198
1199 static struct hostapd_hw_modes * hostap_get_hw_feature_data(void *priv,
1200 u16 *num_modes,
1201 u16 *flags)
1202 {
1203 struct hostapd_hw_modes *mode;
1204 int i, clen, rlen;
1205 const short chan2freq[14] = {
1206 2412, 2417, 2422, 2427, 2432, 2437, 2442,
1207 2447, 2452, 2457, 2462, 2467, 2472, 2484
1208 };
1209
1210 mode = os_zalloc(sizeof(struct hostapd_hw_modes));
1211 if (mode == NULL)
1212 return NULL;
1213
1214 *num_modes = 1;
1215 *flags = 0;
1216
1217 mode->mode = HOSTAPD_MODE_IEEE80211B;
1218 mode->num_channels = 14;
1219 mode->num_rates = 4;
1220
1221 clen = mode->num_channels * sizeof(struct hostapd_channel_data);
1222 rlen = mode->num_rates * sizeof(struct hostapd_rate_data);
1223
1224 mode->channels = os_zalloc(clen);
1225 mode->rates = os_zalloc(rlen);
1226 if (mode->channels == NULL || mode->rates == NULL) {
1227 hostapd_free_hw_features(mode, *num_modes);
1228 return NULL;
1229 }
1230
1231 for (i = 0; i < 14; i++) {
1232 mode->channels[i].chan = i + 1;
1233 mode->channels[i].freq = chan2freq[i];
1234 /* TODO: Get allowed channel list from the driver */
1235 if (i >= 11)
1236 mode->channels[i].flag = HOSTAPD_CHAN_DISABLED;
1237 }
1238
1239 mode->rates[0].rate = 10;
1240 mode->rates[0].flags = HOSTAPD_RATE_CCK;
1241 mode->rates[1].rate = 20;
1242 mode->rates[1].flags = HOSTAPD_RATE_CCK;
1243 mode->rates[2].rate = 55;
1244 mode->rates[2].flags = HOSTAPD_RATE_CCK;
1245 mode->rates[3].rate = 110;
1246 mode->rates[3].flags = HOSTAPD_RATE_CCK;
1247
1248 return mode;
1249 }
1250
1251
1252 const struct wpa_driver_ops wpa_driver_hostap_ops = {
1253 .name = "hostap",
1254 .init = hostap_init,
1255 .deinit = hostap_driver_deinit,
1256 .wireless_event_init = hostap_wireless_event_init,
1257 .wireless_event_deinit = hostap_wireless_event_deinit,
1258 .set_ieee8021x = hostap_set_ieee8021x,
1259 .set_privacy = hostap_set_privacy,
1260 .set_encryption = hostap_set_encryption,
1261 .get_seqnum = hostap_get_seqnum,
1262 .flush = hostap_flush,
1263 .set_generic_elem = hostap_set_generic_elem,
1264 .read_sta_data = hostap_read_sta_data,
1265 .send_eapol = hostap_send_eapol,
1266 .sta_set_flags = hostap_sta_set_flags,
1267 .sta_deauth = hostap_sta_deauth,
1268 .sta_disassoc = hostap_sta_disassoc,
1269 .sta_remove = hostap_sta_remove,
1270 .set_ssid = hostap_set_ssid,
1271 .send_mgmt_frame = hostap_send_mgmt_frame,
1272 .set_assoc_ap = hostap_set_assoc_ap,
1273 .sta_add = hostap_sta_add,
1274 .get_inact_sec = hostap_get_inact_sec,
1275 .sta_clear_stats = hostap_sta_clear_stats,
1276 .get_hw_feature_data = hostap_get_hw_feature_data,
1277 .set_wps_beacon_ie = hostap_set_wps_beacon_ie,
1278 .set_wps_probe_resp_ie = hostap_set_wps_probe_resp_ie,
1279 };
DragonFly BSD