/**
* wpas_dbus_iface_select_network - Attempt association with a configured network
* @message: Pointer to incoming dbus message
* @wpa_s: wpa_supplicant structure for a network interface
* Returns: A dbus message containing a UINT32 indicating success (1) or
* failure (0)
*
* Handler function for "selectNetwork" method call of network interface.
*/
DBusMessage * wpas_dbus_iface_select_network(DBusMessage *message,
struct wpa_supplicant *wpa_s)
{
DBusMessage *reply = NULL;
const char *op;
struct wpa_ssid *ssid;
char *iface_obj_path = NULL;
char *network = NULL;
if (os_strlen(dbus_message_get_signature(message)) == 0) {
/* Any network */
ssid = NULL;
} else {
int nid;
if (!dbus_message_get_args(message, NULL,
DBUS_TYPE_OBJECT_PATH, &op,
DBUS_TYPE_INVALID)) {
reply = wpas_dbus_new_invalid_opts_error(message,
NULL);
goto out;
}
/* Extract the network number */
iface_obj_path = wpas_dbus_decompose_object_path(op,
&network,
NULL);
if (iface_obj_path == NULL) {
reply = wpas_dbus_new_invalid_iface_error(message);
goto out;
}
/* Ensure the object path really points to this interface */
if (os_strcmp(iface_obj_path, wpa_s->dbus_path) != 0) {
reply = wpas_dbus_new_invalid_network_error(message);
goto out;
}
nid = strtoul(network, NULL, 10);
if (errno == EINVAL) {
reply = wpas_dbus_new_invalid_network_error(message);
goto out;
}
ssid = wpa_config_get_network(wpa_s->conf, nid);
if (ssid == NULL) {
reply = wpas_dbus_new_invalid_network_error(message);
goto out;
}
}
/* Finally, associate with the network */
wpa_supplicant_select_network(wpa_s, ssid);
reply = wpas_dbus_new_success_reply(message);
out:
os_free(iface_obj_path);
os_free(network);
return reply;
}
int interworking_connect(struct wpa_supplicant *wpa_s, struct wpa_bss *bss)
{
struct wpa_ssid *ssid;
struct nai_realm *realm;
struct nai_realm_eap *eap = NULL;
u16 count, i;
char buf[100];
const u8 *ie;
if (bss == NULL)
return -1;
ie = wpa_bss_get_ie(bss, WLAN_EID_SSID);
if (ie == NULL || ie[1] == 0) {
wpa_printf(MSG_DEBUG, "Interworking: No SSID known for "
MACSTR, MAC2STR(bss->bssid));
return -1;
}
realm = nai_realm_parse(bss->anqp_nai_realm, &count);
if (realm == NULL) {
wpa_printf(MSG_DEBUG, "Interworking: Could not parse NAI "
"Realm list from " MACSTR, MAC2STR(bss->bssid));
count = 0;
}
for (i = 0; i < count; i++) {
if (!nai_realm_match(&realm[i], wpa_s->conf->home_realm))
continue;
eap = nai_realm_find_eap(wpa_s, &realm[i]);
if (eap)
break;
}
if (!eap) {
if (interworking_connect_3gpp(wpa_s, bss) == 0) {
if (realm)
nai_realm_free(realm, count);
return 0;
}
wpa_printf(MSG_DEBUG, "Interworking: No matching credentials "
"and EAP method found for " MACSTR,
MAC2STR(bss->bssid));
nai_realm_free(realm, count);
return -1;
}
wpa_printf(MSG_DEBUG, "Interworking: Connect with " MACSTR,
MAC2STR(bss->bssid));
ssid = wpa_config_add_network(wpa_s->conf);
if (ssid == NULL) {
nai_realm_free(realm, count);
return -1;
}
wpas_notify_network_added(wpa_s, ssid);
wpa_config_set_network_defaults(ssid);
ssid->temporary = 1;
ssid->ssid = os_zalloc(ie[1] + 1);
if (ssid->ssid == NULL)
goto fail;
os_memcpy(ssid->ssid, ie + 2, ie[1]);
ssid->ssid_len = ie[1];
if (wpa_config_set(ssid, "eap", eap_get_name(EAP_VENDOR_IETF,
eap->method), 0) < 0)
goto fail;
if (wpa_s->conf->home_username && wpa_s->conf->home_username[0] &&
wpa_config_set_quoted(ssid, "identity",
wpa_s->conf->home_username) < 0)
goto fail;
if (wpa_s->conf->home_password && wpa_s->conf->home_password[0] &&
wpa_config_set_quoted(ssid, "password", wpa_s->conf->home_password)
< 0)
goto fail;
switch (eap->method) {
case EAP_TYPE_TTLS:
if (eap->inner_method) {
os_snprintf(buf, sizeof(buf), "\"autheap=%s\"",
eap_get_name(EAP_VENDOR_IETF,
eap->inner_method));
if (wpa_config_set(ssid, "phase2", buf, 0) < 0)
goto fail;
break;
}
switch (eap->inner_non_eap) {
case NAI_REALM_INNER_NON_EAP_PAP:
if (wpa_config_set(ssid, "phase2", "\"auth=PAP\"", 0) <
0)
goto fail;
break;
case NAI_REALM_INNER_NON_EAP_CHAP:
if (wpa_config_set(ssid, "phase2", "\"auth=CHAP\"", 0)
< 0)
goto fail;
break;
case NAI_REALM_INNER_NON_EAP_MSCHAP:
if (wpa_config_set(ssid, "phase2", "\"auth=MSCHAP\"",
0) < 0)
goto fail;
break;
case NAI_REALM_INNER_NON_EAP_MSCHAPV2:
if (wpa_config_set(ssid, "phase2", "\"auth=MSCHAPV2\"",
0) < 0)
goto fail;
break;
}
break;
case EAP_TYPE_PEAP:
os_snprintf(buf, sizeof(buf), "\"auth=%s\"",
eap_get_name(EAP_VENDOR_IETF, eap->inner_method));
if (wpa_config_set(ssid, "phase2", buf, 0) < 0)
goto fail;
break;
}
if (wpa_s->conf->home_ca_cert && wpa_s->conf->home_ca_cert[0] &&
wpa_config_set_quoted(ssid, "ca_cert", wpa_s->conf->home_ca_cert) <
0)
goto fail;
nai_realm_free(realm, count);
wpa_supplicant_select_network(wpa_s, ssid);
return 0;
fail:
wpas_notify_network_removed(wpa_s, ssid);
wpa_config_remove_network(wpa_s->conf, ssid->id);
nai_realm_free(realm, count);
return -1;
}
static int interworking_connect_3gpp(struct wpa_supplicant *wpa_s,
struct wpa_bss *bss)
{
#ifdef INTERWORKING_3GPP
struct wpa_ssid *ssid;
const u8 *ie;
ie = wpa_bss_get_ie(bss, WLAN_EID_SSID);
if (ie == NULL)
return -1;
wpa_printf(MSG_DEBUG, "Interworking: Connect with " MACSTR " (3GPP)",
MAC2STR(bss->bssid));
ssid = wpa_config_add_network(wpa_s->conf);
if (ssid == NULL)
return -1;
wpas_notify_network_added(wpa_s, ssid);
wpa_config_set_network_defaults(ssid);
ssid->temporary = 1;
ssid->ssid = os_zalloc(ie[1] + 1);
if (ssid->ssid == NULL)
goto fail;
os_memcpy(ssid->ssid, ie + 2, ie[1]);
ssid->ssid_len = ie[1];
/* TODO: figure out whether to use EAP-SIM, EAP-AKA, or EAP-AKA' */
if (wpa_config_set(ssid, "eap", "SIM", 0) < 0) {
wpa_printf(MSG_DEBUG, "EAP-SIM not supported");
goto fail;
}
if (set_root_nai(ssid, wpa_s->conf->home_imsi, '1') < 0) {
wpa_printf(MSG_DEBUG, "Failed to set Root NAI");
goto fail;
}
if (wpa_s->conf->home_milenage && wpa_s->conf->home_milenage[0]) {
if (wpa_config_set_quoted(ssid, "password",
wpa_s->conf->home_milenage) < 0)
goto fail;
} else {
/* TODO: PIN */
if (wpa_config_set_quoted(ssid, "pcsc", "") < 0)
goto fail;
}
if (wpa_s->conf->home_password && wpa_s->conf->home_password[0] &&
wpa_config_set_quoted(ssid, "password", wpa_s->conf->home_password)
< 0)
goto fail;
wpa_supplicant_select_network(wpa_s, ssid);
return 0;
fail:
wpas_notify_network_removed(wpa_s, ssid);
wpa_config_remove_network(wpa_s->conf, ssid->id);
#endif /* INTERWORKING_3GPP */
return -1;
}
status_t
WPASupplicantApp::_JoinNetwork(BMessage *message)
{
const char *interfaceName = NULL;
status_t status = message->FindString("device", &interfaceName);
if (status != B_OK)
return status;
// Check if we already registered this interface.
wpa_supplicant *interface = wpa_supplicant_get_iface(fWPAGlobal,
interfaceName);
if (interface == NULL) {
wpa_interface interfaceOptions;
memset(&interfaceOptions, 0, sizeof(wpa_interface));
interfaceOptions.ifname = interfaceName;
interface = wpa_supplicant_add_iface(fWPAGlobal, &interfaceOptions);
if (interface == NULL)
return B_NO_MEMORY;
} else {
// Disable everything
wpa_supplicant_disable_network(interface, NULL);
// Try to remove any existing network
while (true) {
wpa_ssid *network = wpa_config_get_network(interface->conf, 0);
if (network == NULL)
break;
wpas_notify_network_removed(interface, network);
wpa_config_remove_network(interface->conf, network->id);
}
}
const char *networkName = NULL;
status = message->FindString("name", &networkName);
if (status != B_OK)
return status;
uint32 authMode = B_NETWORK_AUTHENTICATION_NONE;
status = message->FindUInt32("authentication", &authMode);
if (status != B_OK)
return status;
uint32 encapMode = B_NETWORK_EAP_ENCAPSULATION_NONE;
if (authMode == B_NETWORK_AUTHENTICATION_EAP)
message->FindUInt32("encapsulation", &encapMode);
const char *username = NULL;
if (encapMode > B_NETWORK_EAP_ENCAPSULATION_NONE) {
status = message->FindString("username", &username);
if (status != B_OK)
return status;
}
const char *password = NULL;
if (authMode > B_NETWORK_AUTHENTICATION_NONE) {
status = message->FindString("password", &password);
if (status != B_OK)
return status;
}
wpa_ssid *network = wpa_config_add_network(interface->conf);
if (network == NULL)
return B_NO_MEMORY;
wpas_notify_network_added(interface, network);
network->disabled = 1;
wpa_config_set_network_defaults(network);
// Fill in the info from the join request
// The format includes the quotes
BString value;
value = "\"";
value += networkName;
value += "\"";
int result = wpa_config_set(network, "ssid", value.String(), 0);
if (result == 0)
result = wpa_config_set(network, "scan_ssid", "1", 1);
if (authMode >= B_NETWORK_AUTHENTICATION_WPA) {
if (result == 0)
result = wpa_config_set(network, "proto", "WPA RSN", 2);
if (result == 0) {
switch (authMode) {
case B_NETWORK_AUTHENTICATION_WPA:
case B_NETWORK_AUTHENTICATION_WPA2:
default:
result = wpa_config_set(network, "key_mgmt", "WPA-PSK", 3);
break;
case B_NETWORK_AUTHENTICATION_EAP:
result = wpa_config_set(network, "key_mgmt", "WPA-EAP", 3);
break;
}
}
if (result == 0)
result = wpa_config_set(network, "pairwise", "CCMP TKIP NONE", 4);
if (result == 0) {
result = wpa_config_set(network, "group",
"CCMP TKIP WEP104 WEP40", 5);
}
if (result == 0) {
if (encapMode > B_NETWORK_EAP_ENCAPSULATION_NONE) {
switch (encapMode) {
case B_NETWORK_EAP_ENCAPSULATION_PEAP:
result = wpa_config_set(network, "eap", "PEAP", 6);
break;
case B_NETWORK_EAP_ENCAPSULATION_TLS:
result = wpa_config_set(network, "eap", "TLS", 6);
break;
}
}
}
} else {
// Open or WEP.
if (result == 0)
result = wpa_config_set(network, "key_mgmt", "NONE", 6);
}
if (result == 0) {
if (authMode == B_NETWORK_AUTHENTICATION_WEP) {
if (strncmp("0x", password, 2) == 0) {
// interpret as hex key
// TODO: make this non-ambiguous
result = wpa_config_set(network, "wep_key0", password + 2, 7);
} else {
value = "\"";
value += password;
value += "\"";
result = wpa_config_set(network, "wep_key0", value.String(), 8);
}
if (result == 0)
result = wpa_config_set(network, "wep_tx_keyidx", "0", 9);
} else if (authMode == B_NETWORK_AUTHENTICATION_EAP) {
// EAP
value = "\"";
value += password;
value += "\"";
result = wpa_config_set(network, "password", value.String(), 10);
if (encapMode > B_NETWORK_EAP_ENCAPSULATION_NONE) {
value = "\"";
value += username;
value += "\"";
result = wpa_config_set(network, "identity",
value.String(), 11);
}
// TODO: Does EAP need the same thing?
#if 0
if (result == 0) {
// We need to actually "apply" the PSK
wpa_config_update_psk(network);
}
#endif
} else if (authMode >= B_NETWORK_AUTHENTICATION_WPA) {
// WPA/WPA2
value = "\"";
value += password;
value += "\"";
result = wpa_config_set(network, "psk", value.String(), 10);
if (result == 0) {
// We need to actually "apply" the PSK
wpa_config_update_psk(network);
}
}
if (result != 0) {
// The key format is invalid, we need to ask for another password.
BMessage newJoinRequest = *message;
newJoinRequest.RemoveName("password");
newJoinRequest.AddString("error", "Password format invalid");
newJoinRequest.AddBool("forceDialog", true);
PostMessage(&newJoinRequest);
}
}
if (result != 0) {
wpas_notify_network_removed(interface, network);
wpa_config_remove_network(interface->conf, network->id);
return B_ERROR;
}
// Set up watching for the completion event
_StartWatchingInterfaceChanges(interface, _InterfaceStateChangeCallback,
message);
// Now attempt to connect
wpa_supplicant_select_network(interface, network);
// Use a message runner to return a timeout and stop watching after a while
BMessage timeout(kMsgJoinTimeout);
timeout.AddPointer("interface", interface);
BMessageRunner::StartSending(be_app_messenger, &timeout,
15 * 1000 * 1000, 1);
// Note that we don't need to cancel this. If joining works before the
// timeout happens, it will take the StateChangeWatchingEntry with it
// and the timeout message won't match anything and be discarded.
return B_OK;
}
