diff options
Diffstat (limited to 'contrib/wpa_supplicant/config_file.c')
-rw-r--r-- | contrib/wpa_supplicant/config_file.c | 365 |
1 files changed, 197 insertions, 168 deletions
diff --git a/contrib/wpa_supplicant/config_file.c b/contrib/wpa_supplicant/config_file.c index b203893..757a1b8 100644 --- a/contrib/wpa_supplicant/config_file.c +++ b/contrib/wpa_supplicant/config_file.c @@ -1,6 +1,6 @@ /* * WPA Supplicant / Configuration backend: text file - * Copyright (c) 2003-2005, Jouni Malinen <jkmaline@cc.hut.fi> + * Copyright (c) 2003-2006, Jouni Malinen <j@w1.fi> * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2 as @@ -16,18 +16,30 @@ * described in the sample configuration file, wpa_supplicant.conf. */ -#include <stdlib.h> -#include <stdio.h> -#include <string.h> +#include "includes.h" #include "common.h" -#include "wpa.h" -#include "wpa_supplicant.h" #include "config.h" #include "base64.h" - - -static char * wpa_config_get_line(char *s, int size, FILE *stream, int *line) +#include "eap_methods.h" + + +/** + * wpa_config_get_line - Read the next configuration file line + * @s: Buffer for the line + * @size: The buffer length + * @stream: File stream to read from + * @line: Pointer to a variable storing the file line number + * @_pos: Buffer for the pointer to the beginning of data on the text line or + * %NULL if not needed (returned value used instead) + * Returns: Pointer to the beginning of data on the text line or %NULL if no + * more text lines are available. + * + * This function reads the next non-empty line from the configuration file and + * removes comments. The returned string is guaranteed to be null-terminated. + */ +static char * wpa_config_get_line(char *s, int size, FILE *stream, int *line, + char **_pos) { char *pos, *end, *sstart; @@ -36,39 +48,82 @@ static char * wpa_config_get_line(char *s, int size, FILE *stream, int *line) s[size - 1] = '\0'; pos = s; + /* Skip white space from the beginning of line. */ while (*pos == ' ' || *pos == '\t' || *pos == '\r') pos++; - if (*pos == '#' || *pos == '\n' || *pos == '\0' || - *pos == '\r') + + /* Skip comment lines and empty lines */ + if (*pos == '#' || *pos == '\n' || *pos == '\0') continue; - /* Remove # comments unless they are within a double quoted - * string. Remove trailing white space. */ - sstart = strchr(pos, '"'); + /* + * Remove # comments unless they are within a double quoted + * string. + */ + sstart = os_strchr(pos, '"'); if (sstart) - sstart = strrchr(sstart + 1, '"'); + sstart = os_strrchr(sstart + 1, '"'); if (!sstart) sstart = pos; - end = strchr(sstart, '#'); + end = os_strchr(sstart, '#'); if (end) *end-- = '\0'; else - end = pos + strlen(pos) - 1; + end = pos + os_strlen(pos) - 1; + + /* Remove trailing white space. */ while (end > pos && (*end == '\n' || *end == ' ' || *end == '\t' || - *end == '\r')) { + *end == '\r')) *end-- = '\0'; - } + if (*pos == '\0') continue; + if (_pos) + *_pos = pos; return pos; } + if (_pos) + *_pos = NULL; return NULL; } +static int wpa_config_validate_network(struct wpa_ssid *ssid, int line) +{ + int errors = 0; + + if (ssid->passphrase) { + if (ssid->psk_set) { + wpa_printf(MSG_ERROR, "Line %d: both PSK and " + "passphrase configured.", line); + errors++; + } + wpa_config_update_psk(ssid); + } + + if ((ssid->key_mgmt & WPA_KEY_MGMT_PSK) && !ssid->psk_set) { + wpa_printf(MSG_ERROR, "Line %d: WPA-PSK accepted for key " + "management, but no PSK configured.", line); + errors++; + } + + if ((ssid->group_cipher & WPA_CIPHER_CCMP) && + !(ssid->pairwise_cipher & WPA_CIPHER_CCMP) && + !(ssid->pairwise_cipher & WPA_CIPHER_NONE)) { + /* Group cipher cannot be stronger than the pairwise cipher. */ + wpa_printf(MSG_DEBUG, "Line %d: removed CCMP from group cipher" + " list since it was not allowed for pairwise " + "cipher", line); + ssid->group_cipher &= ~WPA_CIPHER_CCMP; + } + + return errors; +} + + static struct wpa_ssid * wpa_config_read_network(FILE *f, int *line, int id) { struct wpa_ssid *ssid; @@ -77,21 +132,20 @@ static struct wpa_ssid * wpa_config_read_network(FILE *f, int *line, int id) wpa_printf(MSG_MSGDUMP, "Line: %d - start of a new network block", *line); - ssid = (struct wpa_ssid *) malloc(sizeof(*ssid)); + ssid = os_zalloc(sizeof(*ssid)); if (ssid == NULL) return NULL; - memset(ssid, 0, sizeof(*ssid)); ssid->id = id; wpa_config_set_network_defaults(ssid); - while ((pos = wpa_config_get_line(buf, sizeof(buf), f, line))) { - if (strcmp(pos, "}") == 0) { + while (wpa_config_get_line(buf, sizeof(buf), f, line, &pos)) { + if (os_strcmp(pos, "}") == 0) { end = 1; break; } - pos2 = strchr(pos, '='); + pos2 = os_strchr(pos, '='); if (pos2 == NULL) { wpa_printf(MSG_ERROR, "Line %d: Invalid SSID line " "'%s'.", *line, pos); @@ -101,7 +155,7 @@ static struct wpa_ssid * wpa_config_read_network(FILE *f, int *line, int id) *pos2++ = '\0'; if (*pos2 == '"') { - if (strchr(pos2 + 1, '"') == NULL) { + if (os_strchr(pos2 + 1, '"') == NULL) { wpa_printf(MSG_ERROR, "Line %d: invalid " "quotation '%s'.", *line, pos2); errors++; @@ -119,32 +173,10 @@ static struct wpa_ssid * wpa_config_read_network(FILE *f, int *line, int id) errors++; } - if (ssid->passphrase) { - if (ssid->psk_set) { - wpa_printf(MSG_ERROR, "Line %d: both PSK and " - "passphrase configured.", *line); - errors++; - } - wpa_config_update_psk(ssid); - } - - if ((ssid->key_mgmt & WPA_KEY_MGMT_PSK) && !ssid->psk_set) { - wpa_printf(MSG_ERROR, "Line %d: WPA-PSK accepted for key " - "management, but no PSK configured.", *line); - errors++; - } - - if ((ssid->group_cipher & WPA_CIPHER_CCMP) && - !(ssid->pairwise_cipher & WPA_CIPHER_CCMP)) { - /* Group cipher cannot be stronger than the pairwise cipher. */ - wpa_printf(MSG_DEBUG, "Line %d: removed CCMP from group cipher" - " list since it was not allowed for pairwise " - "cipher", *line); - ssid->group_cipher &= ~WPA_CIPHER_CCMP; - } + errors += wpa_config_validate_network(ssid, *line); if (errors) { - free(ssid); + wpa_config_free_ssid(ssid); ssid = NULL; } @@ -164,41 +196,40 @@ static struct wpa_config_blob * wpa_config_read_blob(FILE *f, int *line, wpa_printf(MSG_MSGDUMP, "Line: %d - start of a new named blob '%s'", *line, name); - while ((pos = wpa_config_get_line(buf, sizeof(buf), f, line))) { - if (strcmp(pos, "}") == 0) { + while (wpa_config_get_line(buf, sizeof(buf), f, line, &pos)) { + if (os_strcmp(pos, "}") == 0) { end = 1; break; } - len = strlen(pos); - nencoded = realloc(encoded, encoded_len + len); + len = os_strlen(pos); + nencoded = os_realloc(encoded, encoded_len + len); if (nencoded == NULL) { wpa_printf(MSG_ERROR, "Line %d: not enough memory for " "blob", *line); - free(encoded); + os_free(encoded); return NULL; } encoded = nencoded; - memcpy(encoded + encoded_len, pos, len); + os_memcpy(encoded + encoded_len, pos, len); encoded_len += len; } if (!end) { wpa_printf(MSG_ERROR, "Line %d: blob was not terminated " "properly", *line); - free(encoded); + os_free(encoded); return NULL; } - blob = malloc(sizeof(*blob)); + blob = os_zalloc(sizeof(*blob)); if (blob == NULL) { - free(encoded); + os_free(encoded); return NULL; } - memset(blob, 0, sizeof(*blob)); - blob->name = strdup(name); + blob->name = os_strdup(name); blob->data = base64_decode(encoded, encoded_len, &blob->len); - free(encoded); + os_free(encoded); if (blob->name == NULL || blob->data == NULL) { wpa_config_free_blob(blob); @@ -216,7 +247,7 @@ struct wpa_config * wpa_config_read(const char *name) int errors = 0, line = 0; struct wpa_ssid *ssid, *tail = NULL, *head = NULL; struct wpa_config *config; - int id = 0, prio; + int id = 0; config = wpa_config_alloc_empty(NULL, NULL); if (config == NULL) @@ -224,12 +255,12 @@ struct wpa_config * wpa_config_read(const char *name) wpa_printf(MSG_DEBUG, "Reading configuration file '%s'", name); f = fopen(name, "r"); if (f == NULL) { - free(config); + os_free(config); return NULL; } - while ((pos = wpa_config_get_line(buf, sizeof(buf), f, &line))) { - if (strcmp(pos, "network={") == 0) { + while (wpa_config_get_line(buf, sizeof(buf), f, &line, &pos)) { + if (os_strcmp(pos, "network={") == 0) { ssid = wpa_config_read_network(f, &line, id++); if (ssid == NULL) { wpa_printf(MSG_ERROR, "Line %d: failed to " @@ -250,11 +281,11 @@ struct wpa_config * wpa_config_read(const char *name) errors++; continue; } - } else if (strncmp(pos, "blob-base64-", 12) == 0) { - char *name = pos + 12, *name_end; + } else if (os_strncmp(pos, "blob-base64-", 12) == 0) { + char *bname = pos + 12, *name_end; struct wpa_config_blob *blob; - name_end = strchr(name, '='); + name_end = os_strchr(bname, '='); if (name_end == NULL) { wpa_printf(MSG_ERROR, "Line %d: no blob name " "terminator", line); @@ -263,51 +294,28 @@ struct wpa_config * wpa_config_read(const char *name) } *name_end = '\0'; - blob = wpa_config_read_blob(f, &line, name); + blob = wpa_config_read_blob(f, &line, bname); if (blob == NULL) { wpa_printf(MSG_ERROR, "Line %d: failed to read" - " blob %s", line, name); + " blob %s", line, bname); errors++; continue; } wpa_config_set_blob(config, blob); #ifdef CONFIG_CTRL_IFACE - } else if (strncmp(pos, "ctrl_interface=", 15) == 0) { - free(config->ctrl_interface); - config->ctrl_interface = strdup(pos + 15); + } else if (os_strncmp(pos, "ctrl_interface=", 15) == 0) { + os_free(config->ctrl_interface); + config->ctrl_interface = os_strdup(pos + 15); wpa_printf(MSG_DEBUG, "ctrl_interface='%s'", config->ctrl_interface); -#ifndef CONFIG_CTRL_IFACE_UDP - } else if (strncmp(pos, "ctrl_interface_group=", 21) == 0) { - struct group *grp; - char *endp; - const char *group = pos + 21; - - grp = getgrnam(group); - if (grp) { - config->ctrl_interface_gid = grp->gr_gid; - config->ctrl_interface_gid_set = 1; - wpa_printf(MSG_DEBUG, "ctrl_interface_group=%d" - " (from group name '%s')", - (int) config->ctrl_interface_gid, - group); - continue; - } - - /* Group name not found - try to parse this as gid */ - config->ctrl_interface_gid = strtol(group, &endp, 10); - if (*group == '\0' || *endp != '\0') { - wpa_printf(MSG_DEBUG, "Line %d: Invalid group " - "'%s'", line, group); - errors++; - continue; - } - config->ctrl_interface_gid_set = 1; - wpa_printf(MSG_DEBUG, "ctrl_interface_group=%d", - (int) config->ctrl_interface_gid); -#endif /* CONFIG_CTRL_IFACE_UDP */ + } else if (os_strncmp(pos, "ctrl_interface_group=", 21) == 0) { + os_free(config->ctrl_interface_group); + config->ctrl_interface_group = os_strdup(pos + 21); + wpa_printf(MSG_DEBUG, "ctrl_interface_group='%s' " + "(DEPRECATED)", + config->ctrl_interface_group); #endif /* CONFIG_CTRL_IFACE */ - } else if (strncmp(pos, "eapol_version=", 14) == 0) { + } else if (os_strncmp(pos, "eapol_version=", 14) == 0) { config->eapol_version = atoi(pos + 14); if (config->eapol_version < 1 || config->eapol_version > 2) { @@ -319,55 +327,69 @@ struct wpa_config * wpa_config_read(const char *name) } wpa_printf(MSG_DEBUG, "eapol_version=%d", config->eapol_version); - } else if (strncmp(pos, "ap_scan=", 8) == 0) { + } else if (os_strncmp(pos, "ap_scan=", 8) == 0) { config->ap_scan = atoi(pos + 8); wpa_printf(MSG_DEBUG, "ap_scan=%d", config->ap_scan); - } else if (strncmp(pos, "fast_reauth=", 12) == 0) { + } else if (os_strncmp(pos, "fast_reauth=", 12) == 0) { config->fast_reauth = atoi(pos + 12); wpa_printf(MSG_DEBUG, "fast_reauth=%d", config->fast_reauth); - } else if (strncmp(pos, "opensc_engine_path=", 19) == 0) { - free(config->opensc_engine_path); - config->opensc_engine_path = strdup(pos + 19); + } else if (os_strncmp(pos, "opensc_engine_path=", 19) == 0) { + os_free(config->opensc_engine_path); + config->opensc_engine_path = os_strdup(pos + 19); wpa_printf(MSG_DEBUG, "opensc_engine_path='%s'", config->opensc_engine_path); - } else if (strncmp(pos, "pkcs11_engine_path=", 19) == 0) { - free(config->pkcs11_engine_path); - config->pkcs11_engine_path = strdup(pos + 19); + } else if (os_strncmp(pos, "pkcs11_engine_path=", 19) == 0) { + os_free(config->pkcs11_engine_path); + config->pkcs11_engine_path = os_strdup(pos + 19); wpa_printf(MSG_DEBUG, "pkcs11_engine_path='%s'", config->pkcs11_engine_path); - } else if (strncmp(pos, "pkcs11_module_path=", 19) == 0) { - free(config->pkcs11_module_path); - config->pkcs11_module_path = strdup(pos + 19); + } else if (os_strncmp(pos, "pkcs11_module_path=", 19) == 0) { + os_free(config->pkcs11_module_path); + config->pkcs11_module_path = os_strdup(pos + 19); wpa_printf(MSG_DEBUG, "pkcs11_module_path='%s'", config->pkcs11_module_path); - } else if (strncmp(pos, "driver_param=", 13) == 0) { - free(config->driver_param); - config->driver_param = strdup(pos + 13); + } else if (os_strncmp(pos, "driver_param=", 13) == 0) { + os_free(config->driver_param); + config->driver_param = os_strdup(pos + 13); wpa_printf(MSG_DEBUG, "driver_param='%s'", config->driver_param); - } else if (strncmp(pos, "dot11RSNAConfigPMKLifetime=", 27) == - 0) { + } else if (os_strncmp(pos, "dot11RSNAConfigPMKLifetime=", 27) + == 0) { config->dot11RSNAConfigPMKLifetime = atoi(pos + 27); wpa_printf(MSG_DEBUG, "dot11RSNAConfigPMKLifetime=%d", config->dot11RSNAConfigPMKLifetime); - } else if (strncmp(pos, "dot11RSNAConfigPMKReauthThreshold=", - 34) == - 0) { + } else if (os_strncmp(pos, + "dot11RSNAConfigPMKReauthThreshold=", 34) + == 0) { config->dot11RSNAConfigPMKReauthThreshold = atoi(pos + 34); wpa_printf(MSG_DEBUG, "dot11RSNAConfigPMKReauthThreshold=%d", config->dot11RSNAConfigPMKReauthThreshold); - } else if (strncmp(pos, "dot11RSNAConfigSATimeout=", 25) == + } else if (os_strncmp(pos, "dot11RSNAConfigSATimeout=", 25) == 0) { config->dot11RSNAConfigSATimeout = atoi(pos + 25); wpa_printf(MSG_DEBUG, "dot11RSNAConfigSATimeout=%d", config->dot11RSNAConfigSATimeout); - } else if (strncmp(pos, "update_config=", 14) == 0) { + } else if (os_strncmp(pos, "update_config=", 14) == 0) { config->update_config = atoi(pos + 14); wpa_printf(MSG_DEBUG, "update_config=%d", config->update_config); + } else if (os_strncmp(pos, "load_dynamic_eap=", 17) == 0) { + char *so = pos + 17; + int ret; + wpa_printf(MSG_DEBUG, "load_dynamic_eap=%s", so); + ret = eap_peer_method_load(so); + if (ret == -2) { + wpa_printf(MSG_DEBUG, "This EAP type was " + "already loaded - not reloading."); + } else if (ret) { + wpa_printf(MSG_ERROR, "Line %d: Failed to " + "load dynamic EAP method '%s'.", + line, so); + errors++; + } } else { wpa_printf(MSG_ERROR, "Line %d: Invalid configuration " "line '%s'.", line, pos); @@ -379,17 +401,8 @@ struct wpa_config * wpa_config_read(const char *name) fclose(f); config->ssid = head; - for (prio = 0; prio < config->num_prio; prio++) { - ssid = config->pssid[prio]; - wpa_printf(MSG_DEBUG, "Priority group %d", - ssid->priority); - while (ssid) { - wpa_printf(MSG_DEBUG, " id=%d ssid='%s'", - ssid->id, - wpa_ssid_txt(ssid->ssid, ssid->ssid_len)); - ssid = ssid->pnext; - } - } + wpa_config_debug_dump_networks(config); + if (errors) { wpa_config_free(config); config = NULL; @@ -406,7 +419,7 @@ static void write_str(FILE *f, const char *field, struct wpa_ssid *ssid) if (value == NULL) return; fprintf(f, "\t%s=%s\n", field, value); - free(value); + os_free(value); } @@ -424,7 +437,7 @@ static void write_bssid(FILE *f, struct wpa_ssid *ssid) if (value == NULL) return; fprintf(f, "\tbssid=%s\n", value); - free(value); + os_free(value); } @@ -434,7 +447,7 @@ static void write_psk(FILE *f, struct wpa_ssid *ssid) if (value == NULL) return; fprintf(f, "\tpsk=%s\n", value); - free(value); + os_free(value); } @@ -450,7 +463,7 @@ static void write_proto(FILE *f, struct wpa_ssid *ssid) return; if (value[0]) fprintf(f, "\tproto=%s\n", value); - free(value); + os_free(value); } @@ -466,7 +479,7 @@ static void write_key_mgmt(FILE *f, struct wpa_ssid *ssid) return; if (value[0]) fprintf(f, "\tkey_mgmt=%s\n", value); - free(value); + os_free(value); } @@ -482,7 +495,7 @@ static void write_pairwise(FILE *f, struct wpa_ssid *ssid) return; if (value[0]) fprintf(f, "\tpairwise=%s\n", value); - free(value); + os_free(value); } @@ -498,7 +511,7 @@ static void write_group(FILE *f, struct wpa_ssid *ssid) return; if (value[0]) fprintf(f, "\tgroup=%s\n", value); - free(value); + os_free(value); } @@ -514,10 +527,11 @@ static void write_auth_alg(FILE *f, struct wpa_ssid *ssid) return; if (value[0]) fprintf(f, "\tauth_alg=%s\n", value); - free(value); + os_free(value); } +#ifdef IEEE8021X_EAPOL static void write_eap(FILE *f, struct wpa_ssid *ssid) { char *value; @@ -528,19 +542,20 @@ static void write_eap(FILE *f, struct wpa_ssid *ssid) if (value[0]) fprintf(f, "\teap=%s\n", value); - free(value); + os_free(value); } +#endif /* IEEE8021X_EAPOL */ static void write_wep_key(FILE *f, int idx, struct wpa_ssid *ssid) { char field[20], *value; - snprintf(field, sizeof(field), "wep_key%d", idx); + os_snprintf(field, sizeof(field), "wep_key%d", idx); value = wpa_config_get(ssid, field); if (value) { fprintf(f, "\t%s=%s\n", field, value); - free(value); + os_free(value); } } @@ -562,6 +577,7 @@ static void wpa_config_write_network(FILE *f, struct wpa_ssid *ssid) write_pairwise(f, ssid); write_group(f, ssid); write_auth_alg(f, ssid); +#ifdef IEEE8021X_EAPOL write_eap(f, ssid); STR(identity); STR(anonymous_identity); @@ -569,6 +585,7 @@ static void wpa_config_write_network(FILE *f, struct wpa_ssid *ssid) STR(nai); STR(password); STR(ca_cert); + STR(ca_path); STR(client_cert); STR(private_key); STR(private_key_passwd); @@ -576,6 +593,7 @@ static void wpa_config_write_network(FILE *f, struct wpa_ssid *ssid) STR(subject_match); STR(altsubject_match); STR(ca_cert2); + STR(ca_path2); STR(client_cert2); STR(private_key2); STR(private_key2_passwd); @@ -590,15 +608,24 @@ static void wpa_config_write_network(FILE *f, struct wpa_ssid *ssid) STR(key_id); INT(engine); INT_DEF(eapol_flags, DEFAULT_EAPOL_FLAGS); +#endif /* IEEE8021X_EAPOL */ for (i = 0; i < 4; i++) write_wep_key(f, i, ssid); INT(wep_tx_keyidx); INT(priority); +#ifdef IEEE8021X_EAPOL INT_DEF(eap_workaround, DEFAULT_EAP_WORKAROUND); STR(pac_file); + INT_DEF(fragment_size, DEFAULT_FRAGMENT_SIZE); +#endif /* IEEE8021X_EAPOL */ INT(mode); INT(proactive_key_caching); INT(disabled); + INT(peerkey); +#ifdef CONFIG_IEEE80211W + INT(ieee80211w); +#endif /* CONFIG_IEEE80211W */ + STR(id_str); #undef STR #undef INT @@ -615,36 +642,19 @@ static int wpa_config_write_blob(FILE *f, struct wpa_config_blob *blob) return -1; fprintf(f, "\nblob-base64-%s={\n%s}\n", blob->name, encoded); - free(encoded); + os_free(encoded); return 0; } -int wpa_config_write(const char *name, struct wpa_config *config) +static void wpa_config_write_global(FILE *f, struct wpa_config *config) { - FILE *f; - struct wpa_ssid *ssid; - struct wpa_config_blob *blob; - int ret = 0; - - wpa_printf(MSG_DEBUG, "Writing configuration file '%s'", name); - - - f = fopen(name, "w"); - if (f == NULL) { - wpa_printf(MSG_DEBUG, "Failed to open '%s' for writing", name); - return -1; - } - #ifdef CONFIG_CTRL_IFACE if (config->ctrl_interface) fprintf(f, "ctrl_interface=%s\n", config->ctrl_interface); -#ifndef CONFIG_CTRL_IFACE_UDP - if (config->ctrl_interface_gid_set) { - fprintf(f, "ctrl_interface_group=%d\n", - (int) config->ctrl_interface_gid); - } -#endif /* CONFIG_CTRL_IFACE_UDP */ + if (config->ctrl_interface_group) + fprintf(f, "ctrl_interface_group=%s\n", + config->ctrl_interface_group); #endif /* CONFIG_CTRL_IFACE */ if (config->eapol_version != DEFAULT_EAPOL_VERSION) fprintf(f, "eapol_version=%d\n", config->eapol_version); @@ -674,6 +684,25 @@ int wpa_config_write(const char *name, struct wpa_config *config) config->dot11RSNAConfigSATimeout); if (config->update_config) fprintf(f, "update_config=%d\n", config->update_config); +} + + +int wpa_config_write(const char *name, struct wpa_config *config) +{ + FILE *f; + struct wpa_ssid *ssid; + struct wpa_config_blob *blob; + int ret = 0; + + wpa_printf(MSG_DEBUG, "Writing configuration file '%s'", name); + + f = fopen(name, "w"); + if (f == NULL) { + wpa_printf(MSG_DEBUG, "Failed to open '%s' for writing", name); + return -1; + } + + wpa_config_write_global(f, config); for (ssid = config->ssid; ssid; ssid = ssid->next) { fprintf(f, "\nnetwork={\n"); |