PageRenderTime 24ms CodeModel.GetById 12ms RepoModel.GetById 0ms app.codeStats 0ms

/external/wpa_supplicant_6/wpa_supplicant/src/rsn_supp/preauth.c

https://gitlab.com/brian0218/rk3066_r-box_android4.2.2_sdk
C | 529 lines | 340 code | 79 blank | 110 comment | 77 complexity | 13e7e296445f4ab038eb32641b9b3ddd MD5 | raw file
    

  1. /*
    2. 

  2.  * WPA Supplicant - RSN pre-authentication
    3. 

  3.  * Copyright (c) 2003-2008, Jouni Malinen <j@w1.fi>
    4. 

  4.  *
    5. 

  5.  * This program is free software; you can redistribute it and/or modify
    6. 

  6.  * it under the terms of the GNU General Public License version 2 as
    7. 

  7.  * published by the Free Software Foundation.
    8. 

  8.  *
    9. 

  9.  * Alternatively, this software may be distributed under the terms of BSD
    10. 

  10.  * license.
    11. 

  11.  *
    12. 

  12.  * See README and COPYING for more details.
    13. 

  13.  */
    14. 

  14. 

  15. #include "includes.h"
    16. 

  16. 

  17. #include "common.h"
    18. 

  18. #include "wpa.h"
    19. 

  19. #include "drivers/driver.h"
    20. 

  20. #include "eloop.h"
    21. 

  21. #include "l2_packet/l2_packet.h"
    22. 

  22. #include "eapol_supp/eapol_supp_sm.h"
    23. 

  23. #include "preauth.h"
    24. 

  24. #include "pmksa_cache.h"
    25. 

  25. #include "wpa_i.h"
    26. 

  26. #include "ieee802_11_defs.h"
    27. 

  27. 

  28. 

  29. #if defined(IEEE8021X_EAPOL) && !defined(CONFIG_NO_WPA2)
    30. 

  30. 

  31. #define PMKID_CANDIDATE_PRIO_SCAN 1000
    32. 

  32. 

  33. 

  34. struct rsn_pmksa_candidate {
    35. 

  35. 	struct rsn_pmksa_candidate *next;
    36. 

  36. 	u8 bssid[ETH_ALEN];
    37. 

  37. 	int priority;
    38. 

  38. };
    39. 

  39. 

  40. 

  41. /**
    42. 

  42.  * pmksa_candidate_free - Free all entries in PMKSA candidate list
    43. 

  43.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    44. 

  44.  */
    45. 

  45. void pmksa_candidate_free(struct wpa_sm *sm)
    46. 

  46. {
    47. 

  47. 	struct rsn_pmksa_candidate *entry, *prev;
    48. 

  48. 

  49. 	if (sm == NULL)
    50. 

  50. 		return;
    51. 

  51. 

  52. 	entry = sm->pmksa_candidates;
    53. 

  53. 	sm->pmksa_candidates = NULL;
    54. 

  54. 	while (entry) {
    55. 

  55. 		prev = entry;
    56. 

  56. 		entry = entry->next;
    57. 

  57. 		os_free(prev);
    58. 

  58. 	}
    59. 

  59. }
    60. 

  60. 

  61. 

  62. static void rsn_preauth_receive(void *ctx, const u8 *src_addr,
    63. 

  63. 				const u8 *buf, size_t len)
    64. 

  64. {
    65. 

  65. 	struct wpa_sm *sm = ctx;
    66. 

  66. 

  67. 	wpa_printf(MSG_DEBUG, "RX pre-auth from " MACSTR, MAC2STR(src_addr));
    68. 

  68. 	wpa_hexdump(MSG_MSGDUMP, "RX pre-auth", buf, len);
    69. 

  69. 

  70. 	if (sm->preauth_eapol == NULL ||
    71. 

  71. 	    is_zero_ether_addr(sm->preauth_bssid) ||
    72. 

  72. 	    os_memcmp(sm->preauth_bssid, src_addr, ETH_ALEN) != 0) {
    73. 

  73. 		wpa_printf(MSG_WARNING, "RSN pre-auth frame received from "
    74. 

  74. 			   "unexpected source " MACSTR " - dropped",
    75. 

  75. 			   MAC2STR(src_addr));
    76. 

  76. 		return;
    77. 

  77. 	}
    78. 

  78. 

  79. 	eapol_sm_rx_eapol(sm->preauth_eapol, src_addr, buf, len);
    80. 

  80. }
    81. 

  81. 

  82. 

  83. static void rsn_preauth_eapol_cb(struct eapol_sm *eapol, int success,
    84. 

  84. 				 void *ctx)
    85. 

  85. {
    86. 

  86. 	struct wpa_sm *sm = ctx;
    87. 

  87. 	u8 pmk[PMK_LEN];
    88. 

  88. 

  89. 	if (success) {
    90. 

  90. 		int res, pmk_len;
    91. 

  91. 		pmk_len = PMK_LEN;
    92. 

  92. 		res = eapol_sm_get_key(eapol, pmk, PMK_LEN);
    93. 

  93. 		if (res) {
    94. 

  94. 			/*
    95. 

  95. 			 * EAP-LEAP is an exception from other EAP methods: it
    96. 

  96. 			 * uses only 16-byte PMK.
    97. 

  97. 			 */
    98. 

  98. 			res = eapol_sm_get_key(eapol, pmk, 16);
    99. 

  99. 			pmk_len = 16;
    100. 

  100. 		}
    101. 

  101. 		if (res == 0) {
    102. 

  102. 			wpa_hexdump_key(MSG_DEBUG, "RSN: PMK from pre-auth",
    103. 

  103. 					pmk, pmk_len);
    104. 

  104. 			sm->pmk_len = pmk_len;
    105. 

  105. 			pmksa_cache_add(sm->pmksa, pmk, pmk_len,
    106. 

  106. 					sm->preauth_bssid, sm->own_addr,
    107. 

  107. 					sm->network_ctx,
    108. 

  108. 					WPA_KEY_MGMT_IEEE8021X);
    109. 

  109. 		} else {
    110. 

  110. 			wpa_msg(sm->ctx->ctx, MSG_INFO, "RSN: failed to get "
    111. 

  111. 				"master session key from pre-auth EAPOL state "
    112. 

  112. 				"machines");
    113. 

  113. 			success = 0;
    114. 

  114. 		}
    115. 

  115. 	}
    116. 

  116. 

  117. 	wpa_msg(sm->ctx->ctx, MSG_INFO, "RSN: pre-authentication with " MACSTR
    118. 

  118. 		" %s", MAC2STR(sm->preauth_bssid),
    119. 

  119. 		success ? "completed successfully" : "failed");
    120. 

  120. 

  121. 	rsn_preauth_deinit(sm);
    122. 

  122. 	rsn_preauth_candidate_process(sm);
    123. 

  123. }
    124. 

  124. 

  125. 

  126. static void rsn_preauth_timeout(void *eloop_ctx, void *timeout_ctx)
    127. 

  127. {
    128. 

  128. 	struct wpa_sm *sm = eloop_ctx;
    129. 

  129. 

  130. 	wpa_msg(sm->ctx->ctx, MSG_INFO, "RSN: pre-authentication with " MACSTR
    131. 

  131. 		" timed out", MAC2STR(sm->preauth_bssid));
    132. 

  132. 	rsn_preauth_deinit(sm);
    133. 

  133. 	rsn_preauth_candidate_process(sm);
    134. 

  134. }
    135. 

  135. 

  136. 

  137. static int rsn_preauth_eapol_send(void *ctx, int type, const u8 *buf,
    138. 

  138. 				  size_t len)
    139. 

  139. {
    140. 

  140. 	struct wpa_sm *sm = ctx;
    141. 

  141. 	u8 *msg;
    142. 

  142. 	size_t msglen;
    143. 

  143. 	int res;
    144. 

  144. 

  145. 	/* TODO: could add l2_packet_sendmsg that allows fragments to avoid
    146. 

  146. 	 * extra copy here */
    147. 

  147. 

  148. 	if (sm->l2_preauth == NULL)
    149. 

  149. 		return -1;
    150. 

  150. 

  151. 	msg = wpa_sm_alloc_eapol(sm, type, buf, len, &msglen, NULL);
    152. 

  152. 	if (msg == NULL)
    153. 

  153. 		return -1;
    154. 

  154. 

  155. 	wpa_hexdump(MSG_MSGDUMP, "TX EAPOL (preauth)", msg, msglen);
    156. 

  156. 	res = l2_packet_send(sm->l2_preauth, sm->preauth_bssid,
    157. 

  157. 			     ETH_P_RSN_PREAUTH, msg, msglen);
    158. 

  158. 	os_free(msg);
    159. 

  159. 	return res;
    160. 

  160. }
    161. 

  161. 

  162. 

  163. /**
    164. 

  164.  * rsn_preauth_init - Start new RSN pre-authentication
    165. 

  165.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    166. 

  166.  * @dst: Authenticator address (BSSID) with which to preauthenticate
    167. 

  167.  * @eap_conf: Current EAP configuration
    168. 

  168.  * Returns: 0 on success, -1 on another pre-authentication is in progress,
    169. 

  169.  * -2 on layer 2 packet initialization failure, -3 on EAPOL state machine
    170. 

  170.  * initialization failure, -4 on memory allocation failure
    171. 

  171.  *
    172. 

  172.  * This function request an RSN pre-authentication with a given destination
    173. 

  173.  * address. This is usually called for PMKSA candidates found from scan results
    174. 

  174.  * or from driver reports. In addition, ctrl_iface PREAUTH command can trigger
    175. 

  175.  * pre-authentication.
    176. 

  176.  */
    177. 

  177. int rsn_preauth_init(struct wpa_sm *sm, const u8 *dst,
    178. 

  178. 		     struct eap_peer_config *eap_conf)
    179. 

  179. {
    180. 

  180. 	struct eapol_config eapol_conf;
    181. 

  181. 	struct eapol_ctx *ctx;
    182. 

  182. 

  183. 	if (sm->preauth_eapol)
    184. 

  184. 		return -1;
    185. 

  185. 

  186. 	wpa_msg(sm->ctx->ctx, MSG_DEBUG, "RSN: starting pre-authentication "
    187. 

  187. 		"with " MACSTR, MAC2STR(dst));
    188. 

  188. 

  189. 	sm->l2_preauth = l2_packet_init(sm->ifname, sm->own_addr,
    190. 

  190. 					ETH_P_RSN_PREAUTH,
    191. 

  191. 					rsn_preauth_receive, sm, 0);
    192. 

  192. 	if (sm->l2_preauth == NULL) {
    193. 

  193. 		wpa_printf(MSG_WARNING, "RSN: Failed to initialize L2 packet "
    194. 

  194. 			   "processing for pre-authentication");
    195. 

  195. 		return -2;
    196. 

  196. 	}
    197. 

  197. 

  198. 	if (sm->bridge_ifname) {
    199. 

  199. 		sm->l2_preauth_br = l2_packet_init(sm->bridge_ifname,
    200. 

  200. 						   sm->own_addr,
    201. 

  201. 						   ETH_P_RSN_PREAUTH,
    202. 

  202. 						   rsn_preauth_receive, sm, 0);
    203. 

  203. 		if (sm->l2_preauth_br == NULL) {
    204. 

  204. 			wpa_printf(MSG_WARNING, "RSN: Failed to initialize L2 "
    205. 

  205. 				   "packet processing (bridge) for "
    206. 

  206. 				   "pre-authentication");
    207. 

  207. 			return -2;
    208. 

  208. 		}
    209. 

  209. 	}
    210. 

  210. 

  211. 	ctx = os_zalloc(sizeof(*ctx));
    212. 

  212. 	if (ctx == NULL) {
    213. 

  213. 		wpa_printf(MSG_WARNING, "Failed to allocate EAPOL context.");
    214. 

  214. 		return -4;
    215. 

  215. 	}
    216. 

  216. 	ctx->ctx = sm->ctx->ctx;
    217. 

  217. 	ctx->msg_ctx = sm->ctx->ctx;
    218. 

  218. 	ctx->preauth = 1;
    219. 

  219. 	ctx->cb = rsn_preauth_eapol_cb;
    220. 

  220. 	ctx->cb_ctx = sm;
    221. 

  221. 	ctx->scard_ctx = sm->scard_ctx;
    222. 

  222. 	ctx->eapol_send = rsn_preauth_eapol_send;
    223. 

  223. 	ctx->eapol_send_ctx = sm;
    224. 

  224. 	ctx->set_config_blob = sm->ctx->set_config_blob;
    225. 

  225. 	ctx->get_config_blob = sm->ctx->get_config_blob;
    226. 

  226. 

  227. 	sm->preauth_eapol = eapol_sm_init(ctx);
    228. 

  228. 	if (sm->preauth_eapol == NULL) {
    229. 

  229. 		os_free(ctx);
    230. 

  230. 		wpa_printf(MSG_WARNING, "RSN: Failed to initialize EAPOL "
    231. 

  231. 			   "state machines for pre-authentication");
    232. 

  232. 		return -3;
    233. 

  233. 	}
    234. 

  234. 	os_memset(&eapol_conf, 0, sizeof(eapol_conf));
    235. 

  235. 	eapol_conf.accept_802_1x_keys = 0;
    236. 

  236. 	eapol_conf.required_keys = 0;
    237. 

  237. 	eapol_conf.fast_reauth = sm->fast_reauth;
    238. 

  238. 	eapol_conf.workaround = sm->eap_workaround;
    239. 

  239. 	eapol_sm_notify_config(sm->preauth_eapol, eap_conf, &eapol_conf);
    240. 

  240. 	/*
    241. 

  241. 	 * Use a shorter startPeriod with preauthentication since the first
    242. 

  242. 	 * preauth EAPOL-Start frame may end up being dropped due to race
    243. 

  243. 	 * condition in the AP between the data receive and key configuration
    244. 

  244. 	 * after the 4-Way Handshake.
    245. 

  245. 	 */
    246. 

  246. 	eapol_sm_configure(sm->preauth_eapol, -1, -1, 5, 6);
    247. 

  247. 	os_memcpy(sm->preauth_bssid, dst, ETH_ALEN);
    248. 

  248. 

  249. 	eapol_sm_notify_portValid(sm->preauth_eapol, TRUE);
    250. 

  250. 	/* 802.1X::portControl = Auto */
    251. 

  251. 	eapol_sm_notify_portEnabled(sm->preauth_eapol, TRUE);
    252. 

  252. 

  253. 	eloop_register_timeout(sm->dot11RSNAConfigSATimeout, 0,
    254. 

  254. 			       rsn_preauth_timeout, sm, NULL);
    255. 

  255. 

  256. 	return 0;
    257. 

  257. }
    258. 

  258. 

  259. 

  260. /**
    261. 

  261.  * rsn_preauth_deinit - Abort RSN pre-authentication
    262. 

  262.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    263. 

  263.  *
    264. 

  264.  * This function aborts the current RSN pre-authentication (if one is started)
    265. 

  265.  * and frees resources allocated for it.
    266. 

  266.  */
    267. 

  267. void rsn_preauth_deinit(struct wpa_sm *sm)
    268. 

  268. {
    269. 

  269. 	if (sm == NULL || !sm->preauth_eapol)
    270. 

  270. 		return;
    271. 

  271. 

  272. 	eloop_cancel_timeout(rsn_preauth_timeout, sm, NULL);
    273. 

  273. 	eapol_sm_deinit(sm->preauth_eapol);
    274. 

  274. 	sm->preauth_eapol = NULL;
    275. 

  275. 	os_memset(sm->preauth_bssid, 0, ETH_ALEN);
    276. 

  276. 

  277. 	l2_packet_deinit(sm->l2_preauth);
    278. 

  278. 	sm->l2_preauth = NULL;
    279. 

  279. 	if (sm->l2_preauth_br) {
    280. 

  280. 		l2_packet_deinit(sm->l2_preauth_br);
    281. 

  281. 		sm->l2_preauth_br = NULL;
    282. 

  282. 	}
    283. 

  283. }
    284. 

  284. 

  285. 

  286. /**
    287. 

  287.  * rsn_preauth_candidate_process - Process PMKSA candidates
    288. 

  288.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    289. 

  289.  *
    290. 

  290.  * Go through the PMKSA candidates and start pre-authentication if a candidate
    291. 

  291.  * without an existing PMKSA cache entry is found. Processed candidates will be
    292. 

  292.  * removed from the list.
    293. 

  293.  */
    294. 

  294. void rsn_preauth_candidate_process(struct wpa_sm *sm)
    295. 

  295. {
    296. 

  296. 	struct rsn_pmksa_candidate *candidate;
    297. 

  297. 

  298. 	if (sm->pmksa_candidates == NULL)
    299. 

  299. 		return;
    300. 

  300. 

  301. 	/* TODO: drop priority for old candidate entries */
    302. 

  302. 

  303. 	wpa_msg(sm->ctx->ctx, MSG_DEBUG, "RSN: processing PMKSA candidate "
    304. 

  304. 		"list");
    305. 

  305. 	if (sm->preauth_eapol ||
    306. 

  306. 	    sm->proto != WPA_PROTO_RSN ||
    307. 

  307. 	    wpa_sm_get_state(sm) != WPA_COMPLETED ||
    308. 

  308. 	    (sm->key_mgmt != WPA_KEY_MGMT_IEEE8021X &&
    309. 

  309. 	     sm->key_mgmt != WPA_KEY_MGMT_IEEE8021X_SHA256)) {
    310. 

  310. 		wpa_msg(sm->ctx->ctx, MSG_DEBUG, "RSN: not in suitable state "
    311. 

  311. 			"for new pre-authentication");
    312. 

  312. 		return; /* invalid state for new pre-auth */
    313. 

  313. 	}
    314. 

  314. 

  315. 	while (sm->pmksa_candidates) {
    316. 

  316. 		struct rsn_pmksa_cache_entry *p = NULL;
    317. 

  317. 		candidate = sm->pmksa_candidates;
    318. 

  318. 		p = pmksa_cache_get(sm->pmksa, candidate->bssid, NULL);
    319. 

  319. 		if (os_memcmp(sm->bssid, candidate->bssid, ETH_ALEN) != 0 &&
    320. 

  320. 		    (p == NULL || p->opportunistic)) {
    321. 

  321. 			wpa_msg(sm->ctx->ctx, MSG_DEBUG, "RSN: PMKSA "
    322. 

  322. 				"candidate " MACSTR
    323. 

  323. 				" selected for pre-authentication",
    324. 

  324. 				MAC2STR(candidate->bssid));
    325. 

  325. 			sm->pmksa_candidates = candidate->next;
    326. 

  326. 			rsn_preauth_init(sm, candidate->bssid,
    327. 

  327. 					 sm->eap_conf_ctx);
    328. 

  328. 			os_free(candidate);
    329. 

  329. 			return;
    330. 

  330. 		}
    331. 

  331. 		wpa_msg(sm->ctx->ctx, MSG_DEBUG, "RSN: PMKSA candidate "
    332. 

  332. 			MACSTR " does not need pre-authentication anymore",
    333. 

  333. 			MAC2STR(candidate->bssid));
    334. 

  334. 		/* Some drivers (e.g., NDIS) expect to get notified about the
    335. 

  335. 		 * PMKIDs again, so report the existing data now. */
    336. 

  336. 		if (p) {
    337. 

  337. 			wpa_sm_add_pmkid(sm, candidate->bssid, p->pmkid);
    338. 

  338. 		}
    339. 

  339. 

  340. 		sm->pmksa_candidates = candidate->next;
    341. 

  341. 		os_free(candidate);
    342. 

  342. 	}
    343. 

  343. 	wpa_msg(sm->ctx->ctx, MSG_DEBUG, "RSN: no more pending PMKSA "
    344. 

  344. 		"candidates");
    345. 

  345. }
    346. 

  346. 

  347. 

  348. /**
    349. 

  349.  * pmksa_candidate_add - Add a new PMKSA candidate
    350. 

  350.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    351. 

  351.  * @bssid: BSSID (authenticator address) of the candidate
    352. 

  352.  * @prio: Priority (the smaller number, the higher priority)
    353. 

  353.  * @preauth: Whether the candidate AP advertises support for pre-authentication
    354. 

  354.  *
    355. 

  355.  * This function is used to add PMKSA candidates for RSN pre-authentication. It
    356. 

  356.  * is called from scan result processing and from driver events for PMKSA
    357. 

  357.  * candidates, i.e., EVENT_PMKID_CANDIDATE events to wpa_supplicant_event().
    358. 

  358.  */
    359. 

  359. void pmksa_candidate_add(struct wpa_sm *sm, const u8 *bssid,
    360. 

  360. 			 int prio, int preauth)
    361. 

  361. {
    362. 

  362. 	struct rsn_pmksa_candidate *cand, *prev, *pos;
    363. 

  363. 

  364. 	if (sm->network_ctx && sm->proactive_key_caching)
    365. 

  365. 		pmksa_cache_get_opportunistic(sm->pmksa, sm->network_ctx,
    366. 

  366. 					      bssid);
    367. 

  367. 

  368. 	if (!preauth) {
    369. 

  369. 		wpa_printf(MSG_DEBUG, "RSN: Ignored PMKID candidate without "
    370. 

  370. 			   "preauth flag");
    371. 

  371. 		return;
    372. 

  372. 	}
    373. 

  373. 

  374. 	/* If BSSID already on candidate list, update the priority of the old
    375. 

  375. 	 * entry. Do not override priority based on normal scan results. */
    376. 

  376. 	prev = NULL;
    377. 

  377. 	cand = sm->pmksa_candidates;
    378. 

  378. 	while (cand) {
    379. 

  379. 		if (os_memcmp(cand->bssid, bssid, ETH_ALEN) == 0) {
    380. 

  380. 			if (prev)
    381. 

  381. 				prev->next = cand->next;
    382. 

  382. 			else
    383. 

  383. 				sm->pmksa_candidates = cand->next;
    384. 

  384. 			break;
    385. 

  385. 		}
    386. 

  386. 		prev = cand;
    387. 

  387. 		cand = cand->next;
    388. 

  388. 	}
    389. 

  389. 

  390. 	if (cand) {
    391. 

  391. 		if (prio < PMKID_CANDIDATE_PRIO_SCAN)
    392. 

  392. 			cand->priority = prio;
    393. 

  393. 	} else {
    394. 

  394. 		cand = os_zalloc(sizeof(*cand));
    395. 

  395. 		if (cand == NULL)
    396. 

  396. 			return;
    397. 

  397. 		os_memcpy(cand->bssid, bssid, ETH_ALEN);
    398. 

  398. 		cand->priority = prio;
    399. 

  399. 	}
    400. 

  400. 

  401. 	/* Add candidate to the list; order by increasing priority value. i.e.,
    402. 

  402. 	 * highest priority (smallest value) first. */
    403. 

  403. 	prev = NULL;
    404. 

  404. 	pos = sm->pmksa_candidates;
    405. 

  405. 	while (pos) {
    406. 

  406. 		if (cand->priority <= pos->priority)
    407. 

  407. 			break;
    408. 

  408. 		prev = pos;
    409. 

  409. 		pos = pos->next;
    410. 

  410. 	}
    411. 

  411. 	cand->next = pos;
    412. 

  412. 	if (prev)
    413. 

  413. 		prev->next = cand;
    414. 

  414. 	else
    415. 

  415. 		sm->pmksa_candidates = cand;
    416. 

  416. 

  417. 	wpa_msg(sm->ctx->ctx, MSG_DEBUG, "RSN: added PMKSA cache "
    418. 

  418. 		"candidate " MACSTR " prio %d", MAC2STR(bssid), prio);
    419. 

  419. 	rsn_preauth_candidate_process(sm);
    420. 

  420. }
    421. 

  421. 

  422. 

  423. /* TODO: schedule periodic scans if current AP supports preauth */
    424. 

  424. 

  425. /**
    426. 

  426.  * rsn_preauth_scan_results - Process scan results to find PMKSA candidates
    427. 

  427.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    428. 

  428.  * @results: Scan results
    429. 

  429.  *
    430. 

  430.  * This functions goes through the scan results and adds all suitable APs
    431. 

  431.  * (Authenticators) into PMKSA candidate list.
    432. 

  432.  */
    433. 

  433. void rsn_preauth_scan_results(struct wpa_sm *sm,
    434. 

  434. 			      struct wpa_scan_results *results)
    435. 

  435. {
    436. 

  436. 	struct wpa_scan_res *r;
    437. 

  437. 	struct wpa_ie_data ie;
    438. 

  438. 	int i;
    439. 

  439. 	struct rsn_pmksa_cache_entry *pmksa;
    440. 

  440. 

  441. 	if (sm->ssid_len == 0)
    442. 

  442. 		return;
    443. 

  443. 

  444. 	/*
    445. 

  445. 	 * TODO: is it ok to free all candidates? What about the entries
    446. 

  446. 	 * received from EVENT_PMKID_CANDIDATE?
    447. 

  447. 	 */
    448. 

  448. 	pmksa_candidate_free(sm);
    449. 

  449. 

  450. 	for (i = results->num - 1; i >= 0; i--) {
    451. 

  451. 		const u8 *ssid, *rsn;
    452. 

  452. 

  453. 		r = results->res[i];
    454. 

  454. 

  455. 		ssid = wpa_scan_get_ie(r, WLAN_EID_SSID);
    456. 

  456. 		if (ssid == NULL || ssid[1] != sm->ssid_len ||
    457. 

  457. 		    os_memcmp(ssid + 2, sm->ssid, ssid[1]) != 0)
    458. 

  458. 			continue;
    459. 

  459. 

  460. 		if (os_memcmp(r->bssid, sm->bssid, ETH_ALEN) == 0)
    461. 

  461. 			continue;
    462. 

  462. 

  463. 		rsn = wpa_scan_get_ie(r, WLAN_EID_RSN);
    464. 

  464. 		if (rsn == NULL || wpa_parse_wpa_ie(rsn, 2 + rsn[1], &ie))
    465. 

  465. 			continue;
    466. 

  466. 

  467. 		pmksa = pmksa_cache_get(sm->pmksa, r->bssid, NULL);
    468. 

  468. 		if (pmksa &&
    469. 

  469. 		    (!pmksa->opportunistic ||
    470. 

  470. 		     !(ie.capabilities & WPA_CAPABILITY_PREAUTH)))
    471. 

  471. 			continue;
    472. 

  472. 

  473. 		/*
    474. 

  474. 		 * Give less priority to candidates found from normal
    475. 

  475. 		 * scan results.
    476. 

  476. 		 */
    477. 

  477. 		pmksa_candidate_add(sm, r->bssid,
    478. 

  478. 				    PMKID_CANDIDATE_PRIO_SCAN,
    479. 

  479. 				    ie.capabilities & WPA_CAPABILITY_PREAUTH);
    480. 

  480. 	}
    481. 

  481. }
    482. 

  482. 

  483. 

  484. #ifdef CONFIG_CTRL_IFACE
    485. 

  485. /**
    486. 

  486.  * rsn_preauth_get_status - Get pre-authentication status
    487. 

  487.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    488. 

  488.  * @buf: Buffer for status information
    489. 

  489.  * @buflen: Maximum buffer length
    490. 

  490.  * @verbose: Whether to include verbose status information
    491. 

  491.  * Returns: Number of bytes written to buf.
    492. 

  492.  *
    493. 

  493.  * Query WPA2 pre-authentication for status information. This function fills in
    494. 

  494.  * a text area with current status information. If the buffer (buf) is not
    495. 

  495.  * large enough, status information will be truncated to fit the buffer.
    496. 

  496.  */
    497. 

  497. int rsn_preauth_get_status(struct wpa_sm *sm, char *buf, size_t buflen,
    498. 

  498. 			   int verbose)
    499. 

  499. {
    500. 

  500. 	char *pos = buf, *end = buf + buflen;
    501. 

  501. 	int res, ret;
    502. 

  502. 

  503. 	if (sm->preauth_eapol) {
    504. 

  504. 		ret = os_snprintf(pos, end - pos, "Pre-authentication "
    505. 

  505. 				  "EAPOL state machines:\n");
    506. 

  506. 		if (ret < 0 || ret >= end - pos)
    507. 

  507. 			return pos - buf;
    508. 

  508. 		pos += ret;
    509. 

  509. 		res = eapol_sm_get_status(sm->preauth_eapol,
    510. 

  510. 					  pos, end - pos, verbose);
    511. 

  511. 		if (res >= 0)
    512. 

  512. 			pos += res;
    513. 

  513. 	}
    514. 

  514. 

  515. 	return pos - buf;
    516. 

  516. }
    517. 

  517. #endif /* CONFIG_CTRL_IFACE */
    518. 

  518. 

  519. 

  520. /**
    521. 

  521.  * rsn_preauth_in_progress - Verify whether pre-authentication is in progress
    522. 

  522.  * @sm: Pointer to WPA state machine data from wpa_sm_init()
    523. 

  523.  */
    524. 

  524. int rsn_preauth_in_progress(struct wpa_sm *sm)
    525. 

  525. {
    526. 

  526. 	return sm->preauth_eapol != NULL;
    527. 

  527. }
    528. 

  528. 

  529. #endif /* IEEE8021X_EAPOL and !CONFIG_NO_WPA2 */
    530. 

  530.