Kernel/iwd
3
0
Fork 0
mirror of https://git.kernel.org/pub/scm/network/wireless/iwd.git synced 2024-11-05 03:29:24 +01:00
Code Releases Activity
a1a6c2d7d6
iwd/src/network.c

1261 lines
29 KiB
C
Raw Normal View History

network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
/*
*
* Wireless daemon for Linux
*
* Copyright (C) 2013-2015 Intel Corporation. All rights reserved.
*
* This library is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public
* License as published by the Free Software Foundation; either
* version 2.1 of the License, or (at your option) any later version.
*
* This library is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this library; if not, write to the Free Software
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
*
*/
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <sys/types.h>
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
#include <errno.h>
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
#include <limits.h>
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
#include <stdio.h>
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
#include <ell/ell.h>
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
#include "src/ie.h"
#include "src/crypto.h"
scan: Move scan_ssid_security to iwd.h Security type is used all over the place, so move it out to a more common place.
2016-05-11 22:52:43 +02:00
#include "src/iwd.h"
#include "src/common.h"
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
#include "src/storage.h"
#include "src/scan.h"
wiphy: Move __iwd_network_append_properties to network.c
2016-05-12 05:30:10 +02:00
#include "src/dbus.h"
network: Add network_remove
2016-05-16 04:37:12 +02:00
#include "src/agent.h"
wiphy: Move __iwd_network_append_properties to network.c
2016-05-12 05:30:10 +02:00
#include "src/device.h"
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
#include "src/wiphy.h"
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
#include "src/eap.h"
wiphy: Move __iwd_network_append_properties to network.c
2016-05-12 05:30:10 +02:00
#include "src/network.h"
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
network: Make network object opaque
2016-05-16 23:14:26 +02:00
struct network {
char *object_path;
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
struct device *device;
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
struct network_info *info;
network: Make network object opaque
2016-05-16 23:14:26 +02:00
unsigned char *psk;
unsigned int agent_request;
struct l_queue *bss_list;
struct l_settings *settings;
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
struct l_queue *secrets;
network: Make network object opaque
2016-05-16 23:14:26 +02:00
bool update_psk:1; /* Whether PSK should be written to storage */
bool ask_psk:1; /* Whether we should force-ask agent for PSK */
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
int rank;
network: Make network object opaque
2016-05-16 23:14:26 +02:00
};
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
static struct l_queue *networks = NULL;
network: Make network_load_settings static
2016-09-20 00:03:51 +02:00
static bool network_settings_load(struct network *network)
{
const char *strtype;
if (network->settings)
return true;
strtype = security_to_str(network_get_security(network));
if (!strtype)
return false;
network->settings = storage_network_open(strtype, network->info->ssid);
return network->settings != NULL;
}
network: Make network_settings_close private
2016-09-20 00:04:51 +02:00
static void network_settings_close(struct network *network)
{
if (!network->settings)
return;
network: free/zero psk in network_settings_close
2016-10-10 21:52:43 +02:00
l_free(network->psk);
network->psk = NULL;
network: Make network_settings_close private
2016-09-20 00:04:51 +02:00
l_settings_free(network->settings);
network->settings = NULL;
}
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
static int timespec_compare(const void *a, const void *b, void *user_data)
{
const struct network_info *ni_a = a;
const struct network_info *ni_b = b;
const struct timespec *tsa = &ni_a->connected_time;
const struct timespec *tsb = &ni_b->connected_time;
if (tsa->tv_sec > tsb->tv_sec)
return -1;
if (tsa->tv_sec < tsb->tv_sec)
return 1;
if (tsa->tv_nsec > tsb->tv_nsec)
return -1;
if (tsa->tv_nsec < tsb->tv_nsec)
return -1;
return 0;
}
static bool network_info_match(const void *a, const void *b)
{
const struct network_info *ni_a = a;
const struct network_info *ni_b = b;
if (ni_a->type != ni_b->type)
return false;
if (strcmp(ni_a->ssid, ni_b->ssid))
return false;
return true;
}
network: Basic last seen time tracking
2016-06-10 11:50:22 +02:00
bool network_seen(struct network *network, struct timespec *when)
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
{
network: Basic last seen time tracking
2016-06-10 11:50:22 +02:00
/*
* Update the last seen time. Note this is not preserved across
* the network going out of range and back, or program restarts.
* It may be desirable for it to be preserved in some way but
* without too frequent filesystem writes.
*/
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
memcpy(&network->info->seen_time, when, sizeof(struct timespec));
network: Basic last seen time tracking
2016-06-10 11:50:22 +02:00
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
return true;
}
networks: Simplify parameters for network_seen and network_connected Only accept a struct network pointer instead of separately the ssid and security type. This is needed so we can do some more simplification in the next patch by having access to the network struct.
2016-05-28 05:27:13 +02:00
bool network_connected(struct network *network)
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
{
int err;
network: Update network_connected implementation
2016-02-10 00:08:43 +01:00
const char *strtype;
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
l_queue_remove(networks, network->info);
l_queue_push_head(networks, network->info);
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
strtype = security_to_str(network_get_security(network));
network: Update network_connected implementation
2016-02-10 00:08:43 +01:00
if (!strtype)
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
return false;
network: Update network_connected implementation
2016-02-10 00:08:43 +01:00
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
err = storage_network_touch(strtype, network->info->ssid);
network: Don't fail if network config file exists
2016-10-10 22:59:36 +02:00
switch (err) {
case 0:
break;
case -ENOENT:
network: Create a settings file on connection Make sure networks of all 4 security types have a settings file created or updated with a new modification time on a successful connect so that autoconnect and network sorting works for networks other than PSK too. By doing this on storage_network_touch failure we make sure we don't overwrite anything dropped into the settings directory while we were connecting.
2016-06-07 05:29:51 +02:00
/*
network: Start checking outcomes of setting loads
2017-10-31 23:02:59 +01:00
* This is an open network seen for the first time:
*
network: Create a settings file on connection Make sure networks of all 4 security types have a settings file created or updated with a new modification time on a successful connect so that autoconnect and network sorting works for networks other than PSK too. By doing this on storage_network_touch failure we make sure we don't overwrite anything dropped into the settings directory while we were connecting.
2016-06-07 05:29:51 +02:00
* Write an empty settings file to keep track of the
* last connected time. This will also make iwd autoconnect
* to this network in the future.
*/
network: Start checking outcomes of setting loads
2017-10-31 23:02:59 +01:00
network->settings = l_settings_new();
network: Create a settings file on connection Make sure networks of all 4 security types have a settings file created or updated with a new modification time on a successful connect so that autoconnect and network sorting works for networks other than PSK too. By doing this on storage_network_touch failure we make sure we don't overwrite anything dropped into the settings directory while we were connecting.
2016-06-07 05:29:51 +02:00
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
storage_network_sync(strtype, network->info->ssid,
network->settings);
network: Don't fail if network config file exists
2016-10-10 22:59:36 +02:00
break;
default:
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
return false;
network: Don't fail if network config file exists
2016-10-10 22:59:36 +02:00
}
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
err = storage_network_get_mtime(strtype, network->info->ssid,
&network->info->connected_time);
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
if (err < 0)
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
return false;
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
network->info->is_known = true;
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
return true;
}
network: Add network_disconnected Let network handle anything that needs to be done on a disconnection, this way keep the settings opening and closing logic in network.c.
2016-06-09 19:55:18 +02:00
void network_disconnected(struct network *network)
{
network_settings_close(network);
}
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
static int network_find_rank_index(const struct network_info *info)
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
{
const struct l_queue_entry *entry;
int n;
for (n = 0, entry = l_queue_get_entries(networks); entry;
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
entry = entry->next) {
struct network_info *network = entry->data;
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
if (network == info)
return n;
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
if (network->is_known && network->seen_count)
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
n++;
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
}
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
return -1;
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
}
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
/* First 64 entries calculated by 1 / pow(n, 0.3) for n >= 1 */
static const double rankmod_table[] = {
network: Fix typo
2015-06-22 22:08:02 +02:00
1.0000000000, 0.8122523964, 0.7192230933, 0.6597539554,
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
0.6170338627, 0.5841906811, 0.5577898253, 0.5358867313,
0.5172818580, 0.5011872336, 0.4870596972, 0.4745102806,
0.4632516708, 0.4530661223, 0.4437850034, 0.4352752816,
0.4274303178, 0.4201634287, 0.4134032816, 0.4070905315,
0.4011753236, 0.3956154062, 0.3903746872, 0.3854221125,
0.3807307877, 0.3762772797, 0.3720410580, 0.3680040435,
0.3641502401, 0.3604654325, 0.3569369365, 0.3535533906,
0.3503045821, 0.3471812999, 0.3441752105, 0.3412787518,
0.3384850430, 0.3357878061, 0.3331812996, 0.3306602598,
0.3282198502, 0.3258556179, 0.3235634544, 0.3213395618,
0.3191804229, 0.3170827751, 0.3150435863, 0.3130600345,
0.3111294892, 0.3092494947, 0.3074177553, 0.3056321221,
0.3038905808, 0.3021912409, 0.3005323264, 0.2989121662,
0.2973291870, 0.2957819051, 0.2942689208, 0.2927889114,
0.2913406263, 0.2899228820, 0.2885345572, 0.2871745887,
};
network: return boolean from network_rankmod Since the rankmod value only makes sense for autoconnectable networks, change network_rankmod to return an indication of whether the rankmod is valid as a boolean instead of as a double, as discussed before.
2016-06-09 19:55:20 +02:00
bool network_rankmod(const struct network *network, double *rankmod)
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
{
network: Fix autoconnect candidate logic Fix autoconnect trying to connect to networks never used before as found by Tim Kourt. Update the comments to be consistent with the use of the is_known field and the docs, in that a Known Network is any network that has a config file in the iwd storage, and an autoconnect candidate is a network that has been connected to before.
2016-09-26 18:55:38 +02:00
int n;
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
int nmax;
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
network: Fix autoconnect candidate logic Fix autoconnect trying to connect to networks never used before as found by Tim Kourt. Update the comments to be consistent with the use of the is_known field and the docs, in that a Known Network is any network that has a config file in the iwd storage, and an autoconnect candidate is a network that has been connected to before.
2016-09-26 18:55:38 +02:00
/*
* Current policy is that only networks successfully connected
* to at least once are autoconnectable. Known Networks that
* we have never connected to are not.
*/
if (!network->info->connected_time.tv_sec)
return false;
n = network_find_rank_index(network->info);
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
if (n == -1)
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
return false;
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
nmax = L_ARRAY_SIZE(rankmod_table);
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
if (n >= nmax)
n = nmax - 1;
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
*rankmod = rankmod_table[n];
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
return true;
network: Add network_rankmod
2015-06-18 13:11:14 +02:00
}
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
static void network_info_free(void *data)
{
struct network_info *network = data;
l_free(network);
}
static struct network_info *network_info_get(const char *ssid,
enum security security)
{
struct network_info *network, search;
search.type = security;
strcpy(search.ssid, ssid);
network = l_queue_find(networks, network_info_match, &search);
if (!network) {
network = l_new(struct network_info, 1);
strcpy(network->ssid, ssid);
network->type = security;
l_queue_push_tail(networks, network);
}
network->seen_count++;
return network;
}
static void network_info_put(struct network_info *network)
{
if (!networks)
return;
if (--network->seen_count)
return;
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
if (network->is_known)
return;
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
l_queue_remove(networks, network);
network_info_free(network);
}
network: Use const char * to represent ssid This also fixes a potential buffer overflow since the ssid was cast to a string inside network_create. However, ssid is a buffer of 32 bytes, and would not be null-terminated in the case of a 32-byte SSID.
2016-09-20 03:17:32 +02:00
struct network *network_create(struct device *device, const char *ssid,
network: Add network_new
2016-05-16 04:11:01 +02:00
enum security security)
{
struct network *network;
network = l_new(struct network, 1);
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
network->device = device;
network: Use const char * to represent ssid This also fixes a potential buffer overflow since the ssid was cast to a string inside network_create. However, ssid is a buffer of 32 bytes, and would not be null-terminated in the case of a 32-byte SSID.
2016-09-20 03:17:32 +02:00
network->info = network_info_get(ssid, security);
network: Add network_new
2016-05-16 04:11:01 +02:00
network->bss_list = l_queue_new();
return network;
}
network: Add "const" to the getter argument types
2016-05-28 05:27:12 +02:00
const char *network_get_ssid(const struct network *network)
network: Add network_get_ssid
2016-05-12 05:00:58 +02:00
{
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
return network->info->ssid;
network: Add network_get_ssid
2016-05-12 05:00:58 +02:00
}
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
struct device *network_get_device(const struct network *network)
network: Add network_get_netdev
2016-05-12 05:02:49 +02:00
{
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
return network->device;
network: Add network_get_netdev
2016-05-12 05:02:49 +02:00
}
network: Add "const" to the getter argument types
2016-05-28 05:27:12 +02:00
const char *network_get_path(const struct network *network)
network: Add network_get_path()
2016-05-12 05:07:38 +02:00
{
return network->object_path;
}
network: Add "const" to the getter argument types
2016-05-28 05:27:12 +02:00
enum security network_get_security(const struct network *network)
network: Add network_get_security()
2016-05-12 05:10:18 +02:00
{
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
return network->info->type;
network: Add network_get_security()
2016-05-12 05:10:18 +02:00
}
network: Use uint8_t instead of unsigned char
2016-09-21 21:38:43 +02:00
const uint8_t *network_get_psk(const struct network *network)
network: Add network_get_psk
2016-05-16 21:22:24 +02:00
{
return network->psk;
}
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
struct l_queue *network_get_secrets(const struct network *network)
{
return network->secrets;
}
network: Add network_set_psk
2016-09-21 23:20:09 +02:00
bool network_set_psk(struct network *network, const uint8_t *psk)
{
if (network->info->type != SECURITY_PSK)
return false;
network: Fix memory leak in network_set_psk ==1057== 32 bytes in 1 blocks are definitely lost in loss record 1 of 1 ==1057== at 0x4C2AF0F: malloc (vg_replace_malloc.c:299) ==1057== by 0x15E9A2: l_malloc (util.c:62) ==1057== by 0x15EA9D: l_memdup (util.c:121) ==1057== by 0x133D9A: network_set_psk (network.c:350) ==1057== by 0x13BD29: wsc_try_credentials (wsc.c:136) ==1057== by 0x13C121: wsc_connect_cb (wsc.c:220) ==1057== by 0x110FAF: netdev_connect_failed (netdev.c:525) ==1057== by 0x16AAF4: process_unicast (genl.c:390) ==1057== by 0x16AF03: received_data (genl.c:509) ==1057== by 0x166CB6: io_callback (io.c:123) ==1057== by 0x16580D: l_main_iterate (main.c:376) ==1057== by 0x16594B: l_main_run (main.c:423)
2018-06-22 03:08:59 +02:00
if (!network_settings_load(network))
return false;
network: Add network_set_psk
2016-09-21 23:20:09 +02:00
l_free(network->psk);
network->psk = l_memdup(psk, 32);
return true;
}
network: Add network_get_signal_strength
2016-06-09 19:55:22 +02:00
int network_get_signal_strength(const struct network *network)
{
struct scan_bss *best_bss = l_queue_peek_head(network->bss_list);
return best_bss->signal_strength;
}
network: Add "const" to the getter argument types
2016-05-28 05:27:12 +02:00
struct l_settings *network_get_settings(const struct network *network)
network: Add network_get_settings
2016-05-16 21:36:32 +02:00
{
return network->settings;
}
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
static bool network_set_8021x_secrets(struct network *network)
{
const struct l_queue_entry *entry;
if (!network->settings)
return false;
for (entry = l_queue_get_entries(network->secrets); entry;
entry = entry->next) {
struct eap_secret_info *secret = entry->data;
char *setting;
switch (secret->type) {
case EAP_SECRET_LOCAL_PKEY_PASSPHRASE:
case EAP_SECRET_REMOTE_PASSWORD:
if (!l_settings_set_string(network->settings,
"Security", secret->id,
secret->value))
return false;
break;
case EAP_SECRET_REMOTE_USER_PASSWORD:
if (!l_settings_set_string(network->settings,
eap: Accept a second id parameter in eap_append_secret Accept two setting IDs in eap_append_secret, first for the username and second for the password in case of the EAP_SECRET_REMOTE_USER_PASSWORD EAP secret type. In all other cases only the first setting is used. Until now for EAP_SECRET_REMOTE_USER_PASSWORD secrets we'd generate the two setting names by adding different suffixes to the ID parameter. Using the two different setting names automatically fixes the issues with using the EAP Identity returned by the agent in EAP-MSCHAPv2 and EAP-PWD.
2018-06-14 03:45:23 +02:00
"Security", secret->id,
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
secret->value))
return false;
eap: Accept a second id parameter in eap_append_secret Accept two setting IDs in eap_append_secret, first for the username and second for the password in case of the EAP_SECRET_REMOTE_USER_PASSWORD EAP secret type. In all other cases only the first setting is used. Until now for EAP_SECRET_REMOTE_USER_PASSWORD secrets we'd generate the two setting names by adding different suffixes to the ID parameter. Using the two different setting names automatically fixes the issues with using the EAP Identity returned by the agent in EAP-MSCHAPv2 and EAP-PWD.
2018-06-14 03:45:23 +02:00
if (secret->id2)
setting = secret->id2;
else {
setting = alloca(strlen(secret->id) + 10);
sprintf(setting, "%s-Password", secret->id);
}
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
if (!l_settings_set_string(network->settings,
"Security", setting,
secret->value + 1 +
strlen(secret->value)))
return false;
break;
}
}
return true;
}
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
static int network_load_psk(struct network *network)
{
size_t len;
const char *psk = l_settings_get_value(network->settings,
"Security", "PreSharedKey");
if (!psk)
return -ENOKEY;
l_free(network->psk);
network->psk = l_util_from_hexstring(psk, &len);
if (!network->psk)
return -EINVAL;
if (len != 32) {
l_free(network->psk);
network->psk = NULL;
return -EINVAL;
}
return 0;
}
network: Move PSK sync to network.c
2016-05-16 04:04:02 +02:00
void network_sync_psk(struct network *network)
{
char *hex;
if (!network->update_psk)
return;
network->update_psk = false;
hex = l_util_hexstring(network->psk, 32);
l_settings_set_value(network->settings, "Security",
"PreSharedKey", hex);
l_free(hex);
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
storage_network_sync("psk", network->info->ssid, network->settings);
network: Move PSK sync to network.c
2016-05-16 04:04:02 +02:00
}
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
int network_autoconnect(struct network *network, struct scan_bss *bss)
{
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
struct wiphy *wiphy = device_get_wiphy(network->device);
network: add check for autoconnect flag in settings
2018-01-23 20:42:45 +01:00
bool is_autoconnectable;
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
bool is_rsn;
int ret;
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
switch (network_get_security(network)) {
case SECURITY_NONE:
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
is_rsn = false;
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
break;
case SECURITY_PSK:
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
if (network->ask_psk)
return -ENOKEY;
/* Fall through */
case SECURITY_8021X:
is_rsn = true;
break;
default:
return -ENOTSUP;
}
if (is_rsn) {
scan: Refactor bss_get_supported_ciphers In many cases the pairwise and group cipher information is not the only information needed from the BSS RSN/WPA elements in order to make a decision. For example, th MFPC/MFPR bits might be needed, or pre-authentication capability bits, group management ciphers, etc. This patch refactors bss_get_supported_ciphers into the more general scan_bss_get_rsn_info function
2016-10-25 05:12:25 +02:00
struct ie_rsn_info rsn;
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
scan: Refactor bss_get_supported_ciphers In many cases the pairwise and group cipher information is not the only information needed from the BSS RSN/WPA elements in order to make a decision. For example, th MFPC/MFPR bits might be needed, or pre-authentication capability bits, group management ciphers, etc. This patch refactors bss_get_supported_ciphers into the more general scan_bss_get_rsn_info function
2016-10-25 05:12:25 +02:00
memset(&rsn, 0, sizeof(rsn));
scan_bss_get_rsn_info(bss, &rsn);
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
scan: Refactor bss_get_supported_ciphers In many cases the pairwise and group cipher information is not the only information needed from the BSS RSN/WPA elements in order to make a decision. For example, th MFPC/MFPR bits might be needed, or pre-authentication capability bits, group management ciphers, etc. This patch refactors bss_get_supported_ciphers into the more general scan_bss_get_rsn_info function
2016-10-25 05:12:25 +02:00
if (!wiphy_select_cipher(wiphy, rsn.pairwise_ciphers) ||
!wiphy_select_cipher(wiphy, rsn.group_cipher)) {
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
l_debug("Cipher mis-match");
return -ENETUNREACH;
}
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
}
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
if (!network_settings_load(network))
return -ENOKEY;
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
/* If no entry, default to Autoconnectable=True */
if (!l_settings_get_bool(network->settings, "Settings",
"Autoconnect", &is_autoconnectable))
is_autoconnectable = true;
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
ret = -EPERM;
if (!is_autoconnectable)
goto close_settings;
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
if (network_get_security(network) == SECURITY_PSK) {
ret = network_load_psk(network);
if (ret < 0)
goto close_settings;
} else if (network_get_security(network) == SECURITY_8021X) {
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
struct l_queue *missing_secrets = NULL;
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
ret = eap_check_settings(network->settings, network->secrets,
"EAP-", true, &missing_secrets);
if (ret < 0)
goto close_settings;
network: Start checking outcomes of setting loads
2017-10-31 23:02:59 +01:00
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
ret = -ENOKEY;
if (!l_queue_isempty(missing_secrets)) {
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
l_queue_destroy(missing_secrets, eap_secret_info_free);
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
goto close_settings;
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
}
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
if (!network_set_8021x_secrets(network))
goto close_settings;
network: add check for autoconnect flag in settings
2018-01-23 20:42:45 +01:00
}
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
device_connect_network(network->device, network, bss, NULL);
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
return 0;
network: Rework autoconnect logic
2018-06-15 01:08:54 +02:00
close_settings:
network_settings_close(network);
return ret;
network: Add network_autoconnect
2016-05-16 21:24:21 +02:00
}
network: Add network_connect_failed
2016-05-16 22:43:32 +02:00
void network_connect_failed(struct network *network)
{
/*
* Connection failed, if PSK try asking for the passphrase
* once more
*/
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
if (network_get_security(network) == SECURITY_PSK) {
network: Add network_connect_failed
2016-05-16 22:43:32 +02:00
network->update_psk = false;
network->ask_psk = true;
}
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
l_queue_destroy(network->secrets, eap_secret_info_free);
network->secrets = NULL;
network: Add network_connect_failed
2016-05-16 22:43:32 +02:00
}
network: Add network_bss_add
2016-05-16 23:06:41 +02:00
bool network_bss_add(struct network *network, struct scan_bss *bss)
{
return l_queue_insert(network->bss_list, bss,
scan_bss_rank_compare, NULL);
}
network: Add network_bss_list_isempty
2016-05-16 23:13:36 +02:00
bool network_bss_list_isempty(struct network *network)
{
return l_queue_isempty(network->bss_list);
}
network: Add network_bss_list_clear
2016-05-16 23:13:52 +02:00
void network_bss_list_clear(struct network *network)
{
l_queue_destroy(network->bss_list, NULL);
network->bss_list = l_queue_new();
}
network: Add network_bss_find_by_addr
2016-09-20 03:26:41 +02:00
struct scan_bss *network_bss_find_by_addr(struct network *network,
const uint8_t *addr)
{
const struct l_queue_entry *bss_entry;
for (bss_entry = l_queue_get_entries(network->bss_list); bss_entry;
bss_entry = bss_entry->next) {
struct scan_bss *bss = bss_entry->data;
if (!memcmp(bss->addr, addr, sizeof(bss->addr)))
return bss;
}
return NULL;
}
network: Expose network_bss_select
2016-09-21 21:00:59 +02:00
/* Selects what we think is the best BSS to connect to */
struct scan_bss *network_bss_select(struct network *network)
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
{
struct l_queue *bss_list = network->bss_list;
network: Expose network_bss_select
2016-09-21 21:00:59 +02:00
struct wiphy *wiphy = device_get_wiphy(network->device);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
const struct l_queue_entry *bss_entry;
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
switch (network_get_security(network)) {
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
case SECURITY_NONE:
/* Pick the first bss (strongest signal) */
return l_queue_peek_head(bss_list);
case SECURITY_PSK:
case SECURITY_8021X:
wiphy: Add utility to check if bss ciphers compatible Move the BSS's supported ciphers checks from network_bss_select to a new function in wiphy.c so we can reuse it in device.c.
2017-01-20 06:49:40 +01:00
/*
* Pick the first bss that advertises ciphers compatible with
* the wiphy.
*/
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
for (bss_entry = l_queue_get_entries(bss_list); bss_entry;
bss_entry = bss_entry->next) {
struct scan_bss *bss = bss_entry->data;
network: update network_bss_select for mfp Update network_bss_select for MFP. Particularly the scenario when all BSSes inside the bss_list have MFPR set, but we're not BIP capable.
2016-11-02 22:23:22 +01:00
wiphy: Add utility to check if bss ciphers compatible Move the BSS's supported ciphers checks from network_bss_select to a new function in wiphy.c so we can reuse it in device.c.
2017-01-20 06:49:40 +01:00
if (wiphy_can_connect(wiphy, bss))
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
return bss;
}
return NULL;
default:
return NULL;
}
}
static void passphrase_callback(enum agent_result result,
const char *passphrase,
struct l_dbus_message *message,
void *user_data)
{
struct network *network = user_data;
struct scan_bss *bss;
l_debug("result %d", result);
network->agent_request = 0;
network: Sort out reference counting Agent implementation inside agent.c takes a reference of the trigger message associated with the request. When the callback is called, the message is passed as an argument. The callback is responsible for taking the message reference if necessary. Once the callback returns, agent releases its reference. For error paths, our code was using dbus_pending_reply which in turn uses dbus_message_unref. This caused the agent to try an unref operation on an already freed object.
2017-05-12 02:48:07 +02:00
/*
* agent will release its reference to message after invoking this
* callback. So if we want this message, we need to take a reference
* to it
*/
l_dbus_message_ref(message);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
if (result != AGENT_RESULT_OK) {
dbus_pending_reply(&message, dbus_error_aborted(message));
goto err;
}
network: Expose network_bss_select
2016-09-21 21:00:59 +02:00
bss = network_bss_select(network);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
/* Did all good BSSes go away while we waited */
if (!bss) {
dbus_pending_reply(&message, dbus_error_failed(message));
goto err;
}
l_free(network->psk);
network->psk = l_malloc(32);
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
if (crypto_psk_from_passphrase(passphrase,
(uint8_t *) network->info->ssid,
strlen(network->info->ssid),
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
network->psk) < 0) {
l_error("PMK generation failed. "
"Ensure Crypto Engine is properly configured");
dbus_pending_reply(&message, dbus_error_failed(message));
goto err;
}
/*
* We need to store the PSK in our permanent store. However, before
* we do that, make sure the PSK works. We write to the store only
* when we are connected
*/
network->update_psk = true;
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
device_connect_network(network->device, network, bss, message);
network: Sort out reference counting Agent implementation inside agent.c takes a reference of the trigger message associated with the request. When the callback is called, the message is passed as an argument. The callback is responsible for taking the message reference if necessary. Once the callback returns, agent releases its reference. For error paths, our code was using dbus_pending_reply which in turn uses dbus_message_unref. This caused the agent to try an unref operation on an already freed object.
2017-05-12 02:48:07 +02:00
l_dbus_message_unref(message);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
return;
err:
network_settings_close(network);
}
static struct l_dbus_message *network_connect_psk(struct network *network,
struct scan_bss *bss,
struct l_dbus_message *message)
{
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
struct device *device = network->device;
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
l_debug("");
network: Use network_load_psk in network_connect_psk
2018-06-15 02:20:26 +02:00
if (network_settings_load(network))
network_load_psk(network);
else
network: Start checking outcomes of setting loads
2017-10-31 23:02:59 +01:00
network->settings = l_settings_new();
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
l_debug("ask_psk: %s", network->ask_psk ? "true" : "false");
if (network->ask_psk || !network->psk) {
network->ask_psk = false;
network->agent_request =
agent_request_passphrase(network->object_path,
passphrase_callback,
agent: Add a destroy function parameter for agent requests
2017-08-18 00:20:39 +02:00
message, network, NULL);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
if (!network->agent_request)
return dbus_error_no_agent(message);
} else
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
device_connect_network(device, network, bss, message);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
return NULL;
}
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
struct eap_secret_request {
struct network *network;
struct eap_secret_info *secret;
struct l_queue *pending_secrets;
void (*callback)(enum agent_result result,
struct l_dbus_message *message,
struct eap_secret_request *req);
};
static void eap_secret_request_free(void *data)
{
struct eap_secret_request *req = data;
eap_secret_info_free(req->secret);
l_queue_destroy(req->pending_secrets, eap_secret_info_free);
l_free(req);
}
static bool eap_secret_info_match_local(const void *a, const void *b)
{
const struct eap_secret_info *info = a;
return info->type == EAP_SECRET_LOCAL_PKEY_PASSPHRASE;
}
static void eap_password_callback(enum agent_result result, const char *value,
struct l_dbus_message *message,
void *user_data)
{
struct eap_secret_request *req = user_data;
req->network->agent_request = 0;
req->secret->value = l_strdup(value);
req->callback(result, message, req);
}
static void eap_user_password_callback(enum agent_result result,
const char *user, const char *passwd,
struct l_dbus_message *message,
void *user_data)
{
struct eap_secret_request *req = user_data;
req->network->agent_request = 0;
if (user && passwd) {
size_t len1 = strlen(user) + 1;
size_t len2 = strlen(passwd) + 1;
req->secret->value = l_malloc(len1 + len2);
memcpy(req->secret->value, user, len1);
memcpy(req->secret->value + len1, passwd, len2);
}
req->callback(result, message, req);
}
static bool eap_send_agent_req(struct network *network,
struct l_queue *pending_secrets,
struct l_dbus_message *message,
void *callback)
{
struct eap_secret_request *req;
struct eap_secret_info *info;
/*
* Request the locally-verifiable data first, i.e.
* the private key encryption passphrases so that we don't bother
* asking for any other data if these passphrases turn out to
* be wrong.
*/
info = l_queue_remove_if(pending_secrets, eap_secret_info_match_local,
NULL);
if (!info)
info = l_queue_pop_head(pending_secrets);
req = l_new(struct eap_secret_request, 1);
req->network = network;
req->secret = info;
req->pending_secrets = pending_secrets;
req->callback = callback;
switch (info->type) {
case EAP_SECRET_LOCAL_PKEY_PASSPHRASE:
network->agent_request = agent_request_pkey_passphrase(
network->object_path,
eap_password_callback,
message, req,
eap_secret_request_free);
break;
case EAP_SECRET_REMOTE_PASSWORD:
network->agent_request = agent_request_user_password(
network->object_path,
info->parameter,
eap_password_callback,
message, req,
eap_secret_request_free);
break;
case EAP_SECRET_REMOTE_USER_PASSWORD:
network->agent_request = agent_request_user_name_password(
network->object_path,
eap_user_password_callback,
message, req,
eap_secret_request_free);
break;
}
if (network->agent_request)
return true;
eap_secret_request_free(req);
return false;
}
static struct l_dbus_message *network_connect_8021x(struct network *network,
struct scan_bss *bss,
struct l_dbus_message *message);
static void eap_secret_done(enum agent_result result,
struct l_dbus_message *message,
struct eap_secret_request *req)
{
struct network *network = req->network;
struct eap_secret_info *secret = req->secret;
struct l_queue *pending = req->pending_secrets;
struct scan_bss *bss;
l_debug("result %d", result);
/*
* Agent will release its reference to message after invoking this
* callback. So if we want this message, we need to take a reference
* to it.
*/
l_dbus_message_ref(message);
if (result != AGENT_RESULT_OK) {
dbus_pending_reply(&message, dbus_error_aborted(message));
goto err;
}
bss = network_bss_select(network);
/* Did all good BSSes go away while we waited */
if (!bss) {
dbus_pending_reply(&message, dbus_error_failed(message));
goto err;
}
if (!network->secrets)
network->secrets = l_queue_new();
l_queue_push_tail(network->secrets, secret);
req->secret = NULL;
/*
* If we have any other missing secrets in the queue, send the
* next request immediately unless we've just received a passphrase
* for a local private key. In that case we will first call
* network_connect_8021x to have it validate the new passphrase.
*/
if (secret->type == EAP_SECRET_LOCAL_PKEY_PASSPHRASE ||
l_queue_isempty(req->pending_secrets)) {
struct l_dbus_message *reply;
reply = network_connect_8021x(network, bss, message);
if (reply)
dbus_pending_reply(&message, reply);
else
l_dbus_message_unref(message);
return;
}
req->pending_secrets = NULL;
if (eap_send_agent_req(network, pending, message,
eap_secret_done)) {
l_dbus_message_unref(message);
return;
}
dbus_pending_reply(&message, dbus_error_no_agent(message));
err:
network_settings_close(network);
}
static struct l_dbus_message *network_connect_8021x(struct network *network,
struct scan_bss *bss,
struct l_dbus_message *message)
{
eap: Return specific error when check_settings fails Change the check_settings eap functions to return a negative errno and return more granular Dbus error from the Connect method.
2018-04-28 04:28:44 +02:00
int r;
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
struct l_queue *missing_secrets = NULL;
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
struct l_dbus_message *reply;
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
l_debug("");
r = eap_check_settings(network->settings, network->secrets, "EAP-",
true, &missing_secrets);
eap: Return specific error when check_settings fails Change the check_settings eap functions to return a negative errno and return more granular Dbus error from the Connect method.
2018-04-28 04:28:44 +02:00
if (r) {
if (r == -EUNATCH)
reply = dbus_error_not_available(message);
else if (r == -ENOTSUP)
reply = dbus_error_not_supported(message);
else if (r == -EACCES)
reply = dbus_error_failed(message);
else
reply = dbus_error_not_configured(message);
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
goto error;
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
}
l_debug("supplied %u secrets, %u more needed for EAP",
l_queue_length(network->secrets),
l_queue_length(missing_secrets));
if (l_queue_isempty(missing_secrets)) {
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
if (!network_set_8021x_secrets(network)) {
reply = dbus_error_failed(message);
goto error;
}
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
device_connect_network(network->device, network, bss, message);
return NULL;
}
if (eap_send_agent_req(network, missing_secrets, message,
eap_secret_done))
return NULL;
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
reply = dbus_error_no_agent(message);
error:
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
network_settings_close(network);
network: Pass secrets to EAP methods On connect add any secrets we've received through the agent to the l_settings objects which the EAP methods will process in load_settings. The settings object is modified but is never written to storage. If this was to change because some settings need to be saved to storage, a new l_settings object might be needed with the union of the settings from the file and the secrets so as to avoid saving the sensitive data.
2018-04-26 11:29:23 +02:00
l_queue_destroy(network->secrets, eap_secret_info_free);
network->secrets = NULL;
return reply;
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
}
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
static struct l_dbus_message *network_connect(struct l_dbus *dbus,
struct l_dbus_message *message,
void *user_data)
{
struct network *network = user_data;
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
struct device *device = network->device;
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
struct scan_bss *bss;
l_debug("");
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
if (device_is_busy(device))
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
return dbus_error_busy(message);
/*
* Select the best BSS to use at this time. If we have to query the
* agent this may not be the final choice because BSS visibility can
* change while we wait for the agent.
*/
network: Expose network_bss_select
2016-09-21 21:00:59 +02:00
bss = network_bss_select(network);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
/* None of the BSSes is compatible with our stack */
if (!bss)
return dbus_error_not_supported(message);
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
switch (network_get_security(network)) {
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
case SECURITY_PSK:
return network_connect_psk(network, bss, message);
case SECURITY_NONE:
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
device_connect_network(device, network, bss, message);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
return NULL;
case SECURITY_8021X:
network: Start checking outcomes of setting loads
2017-10-31 23:02:59 +01:00
if (!network_settings_load(network))
return dbus_error_not_configured(message);
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
return network_connect_8021x(network, bss, message);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
default:
return dbus_error_not_supported(message);
}
}
static bool network_property_get_name(struct l_dbus *dbus,
struct l_dbus_message *message,
struct l_dbus_message_builder *builder,
void *user_data)
{
struct network *network = user_data;
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
l_dbus_message_builder_append_basic(builder, 's', network->info->ssid);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
return true;
}
static bool network_property_is_connected(struct l_dbus *dbus,
struct l_dbus_message *message,
struct l_dbus_message_builder *builder,
void *user_data)
{
struct network *network = user_data;
bool connected;
wiphy: Rename netdev to device
2016-05-31 19:57:24 +02:00
connected = device_get_connected_network(network->device) == network;
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
l_dbus_message_builder_append_basic(builder, 'b', &connected);
return true;
}
network: Add Device property to D-Bus API
2016-11-02 15:24:32 +01:00
static bool network_property_get_device(struct l_dbus *dbus,
struct l_dbus_message *message,
struct l_dbus_message_builder *builder,
void *user_data)
{
struct network *network = user_data;
l_dbus_message_builder_append_basic(builder, 'o',
device_get_path(network->device));
return true;
}
network: Add Type property to D-Bus API
2016-11-02 15:24:33 +01:00
static bool network_property_get_type(struct l_dbus *dbus,
struct l_dbus_message *message,
struct l_dbus_message_builder *builder,
void *user_data)
{
struct network *network = user_data;
enum security security = network_get_security(network);
l_dbus_message_builder_append_basic(builder, 's',
security_to_str(security));
return true;
}
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
static void setup_network_interface(struct l_dbus_interface *interface)
{
l_dbus_interface_method(interface, "Connect", 0,
network_connect,
"", "");
l_dbus_interface_property(interface, "Name", 0, "s",
network_property_get_name, NULL);
l_dbus_interface_property(interface, "Connected", 0, "b",
network_property_is_connected,
NULL);
network: Add Device property to D-Bus API
2016-11-02 15:24:32 +01:00
l_dbus_interface_property(interface, "Device", 0, "o",
network_property_get_device, NULL);
network: Add Type property to D-Bus API
2016-11-02 15:24:33 +01:00
l_dbus_interface_property(interface, "Type", 0, "s",
network_property_get_type, NULL);
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
}
network: Add network_register
2016-05-16 04:30:10 +02:00
bool network_register(struct network *network, const char *path)
{
if (!l_dbus_object_add_interface(dbus_get_bus(), path,
IWD_NETWORK_INTERFACE, network)) {
l_info("Unable to register %s interface",
IWD_NETWORK_INTERFACE);
return false;
}
dbus: Switch to using org.freedesktop.DBus.Properties Use the org.freedesktop.DBus.Properties interfaces on objects with properties and drop the old style GetProperty/SetProperty methods on individual interfaces. Agent and KnownNetworks have no properties at this time so don't add org.freedesktop.DBus.Properties interfaces.
2016-09-21 18:51:55 +02:00
if (!l_dbus_object_add_interface(dbus_get_bus(), path,
L_DBUS_INTERFACE_PROPERTIES, network))
l_info("Unable to register %s interface",
L_DBUS_INTERFACE_PROPERTIES);
network: Add network_register
2016-05-16 04:30:10 +02:00
network->object_path = strdup(path);
return true;
}
agent: Add reason parameter to Cancel Add a parameter the UI can use to show user an explanation of why a password prompt is disappearing.
2016-06-10 11:49:34 +02:00
static void network_unregister(struct network *network, int reason)
network: Add network_remove
2016-05-16 04:37:12 +02:00
{
struct l_dbus *dbus = dbus_get_bus();
agent: Add reason parameter to Cancel Add a parameter the UI can use to show user an explanation of why a password prompt is disappearing.
2016-06-10 11:49:34 +02:00
agent_request_cancel(network->agent_request, reason);
network: Add network_remove
2016-05-16 04:37:12 +02:00
network_settings_close(network);
l_dbus_unregister_object(dbus, network->object_path);
l_free(network->object_path);
network->object_path = NULL;
}
agent: Add reason parameter to Cancel Add a parameter the UI can use to show user an explanation of why a password prompt is disappearing.
2016-06-10 11:49:34 +02:00
void network_remove(struct network *network, int reason)
network: Add network_remove
2016-05-16 04:37:12 +02:00
{
if (network->object_path)
agent: Add reason parameter to Cancel Add a parameter the UI can use to show user an explanation of why a password prompt is disappearing.
2016-06-10 11:49:34 +02:00
network_unregister(network, reason);
network: Add network_remove
2016-05-16 04:37:12 +02:00
network: Validate 8021x settings and request passwords Use eap_check_settings directly from network.c before we start the connection attempt at netdev.c level, to obtain all of the required passwords/passphrases through the agent. This is in network.c because here we can decide the policies for whether to call the agent in autoconnect or only if we had a request from the user, also whether we want to save any of that for later re-use (either password data or kernel-side key serial), etc. In this patch we save the credentials for the lifetime of the network object in memory, and we skip the network if it requires any passphrases we don't have while in autoconnect, same as with PSK networks where the PSK isn't given in the settings. Note that NetworkManager does pop up the password window for PSK or EAP passwords even in autoconnect. If EAP needs multiple passwords we will call the agent sequentially for each.
2018-04-18 07:03:34 +02:00
l_queue_destroy(network->secrets, eap_secret_info_free);
network->secrets = NULL;
network: Add network_remove
2016-05-16 04:37:12 +02:00
l_queue_destroy(network->bss_list, NULL);
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
network_info_put(network->info);
network: Add network_remove
2016-05-16 04:37:12 +02:00
l_free(network);
}
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
void network_init()
{
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
if (!l_dbus_register_interface(dbus_get_bus(), IWD_NETWORK_INTERFACE,
dbus: Switch to using org.freedesktop.DBus.Properties Use the org.freedesktop.DBus.Properties interfaces on objects with properties and drop the old style GetProperty/SetProperty methods on individual interfaces. Agent and KnownNetworks have no properties at this time so don't add org.freedesktop.DBus.Properties interfaces.
2016-09-21 18:51:55 +02:00
setup_network_interface, NULL, false))
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
l_error("Unable to register %s interface",
IWD_NETWORK_INTERFACE);
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
networks = l_queue_new();
}
void network_exit()
{
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
l_queue_destroy(networks, network_info_free);
networks = NULL;
network: Move network related code into network.c away from wiphy.c
2016-05-16 19:37:48 +02:00
l_dbus_unregister_interface(dbus_get_bus(), IWD_NETWORK_INTERFACE);
network: Add initial network usage tracking
2015-06-18 12:18:26 +02:00
}
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
int network_rank_compare(const void *a, const void *b, void *user)
{
const struct network *new_network = a;
const struct network *network = b;
return network->rank - new_network->rank;
}
void network_rank_update(struct network *network)
{
bool connected;
int rank;
/*
* Theoretically there may be difference between the BSS selection
network: Expose network_bss_select
2016-09-21 21:00:59 +02:00
* here and in network_bss_select but those should be rare cases.
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
*/
struct scan_bss *best_bss = l_queue_peek_head(network->bss_list);
connected = device_get_connected_network(network->device) == network;
/*
* The rank should separate networks into four groups that use
* non-overlapping ranges for:
* - current connected network,
* - other networks we've connected to before,
* - networks with preprovisioned settings file that we haven't
* used yet,
* - other networks.
*
* Within the 2nd group the last connection time is the main factor,
* for the other two groups it's the BSS rank - mainly signal strength.
*/
if (connected)
rank = INT_MAX;
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
else if (network->info->connected_time.tv_sec != 0) {
int n = network_find_rank_index(network->info);
if (n >= (int) L_ARRAY_SIZE(rankmod_table))
n = L_ARRAY_SIZE(rankmod_table) - 1;
rank = rankmod_table[n] * best_bss->rank + USHRT_MAX;
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
} else if (network->info->is_known)
rank = best_bss->rank;
else
network: General network rank calculation A function that calculates a new rank type to order all networks currently seen by a netdev. The order is designed for displaying the list to user so that the networks most likely to be wanted by the user are first on the list.
2016-06-10 11:50:20 +02:00
rank = (int) best_bss->rank - USHRT_MAX; /* Negative rank */
network->rank = rank;
}
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
bool network_info_add_known(const char *ssid, enum security security)
{
struct network_info *network;
network: introduce the concept of hidden networks
2018-06-29 06:02:52 +02:00
struct l_settings *settings;
bool is_hidden;
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
int err;
network = l_new(struct network_info, 1);
strcpy(network->ssid, ssid);
network->type = security;
err = storage_network_get_mtime(security_to_str(security), ssid,
&network->connected_time);
if (err < 0) {
l_free(network);
return false;
}
network->is_known = true;
network: introduce the concept of hidden networks
2018-06-29 06:02:52 +02:00
settings = storage_network_open(security_to_str(security), ssid);
if (l_settings_get_bool(settings, "Settings", "Hidden", &is_hidden))
network->is_hidden = is_hidden;
l_settings_free(settings);
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
l_queue_insert(networks, network, timespec_compare, NULL);
return true;
}
network: Disconnect from known network in Forget() Note that the autoconnect_list may still contain the network. Currently only the top entry from the list is ever used and only on new_scan_results(), i.e. at the same time the list is being created. If at some point it becomes part of actual device state it needs to also be reset when a network is being forgotten.
2016-07-02 16:42:33 +02:00
static void network_info_check_device(struct device *device, void *user_data)
{
struct network_info *info = user_data;
struct network *network;
network = device_get_connected_network(device);
if (network && network->info == info)
device_disconnect(device);
}
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
bool network_info_forget_known(const char *ssid, enum security security)
{
struct network_info *network, search;
search.type = security;
strcpy(search.ssid, ssid);
network = l_queue_remove_if(networks, network_info_match, &search);
if (!network)
return false;
network: Disconnect from known network in Forget() Note that the autoconnect_list may still contain the network. Currently only the top entry from the list is ever used and only on new_scan_results(), i.e. at the same time the list is being created. If at some point it becomes part of actual device state it needs to also be reset when a network is being forgotten.
2016-07-02 16:42:33 +02:00
if (!network->seen_count) {
network_info_free(network);
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
network: Disconnect from known network in Forget() Note that the autoconnect_list may still contain the network. Currently only the top entry from the list is ever used and only on new_scan_results(), i.e. at the same time the list is being created. If at some point it becomes part of actual device state it needs to also be reset when a network is being forgotten.
2016-07-02 16:42:33 +02:00
return true;
}
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
network: Disconnect from known network in Forget() Note that the autoconnect_list may still contain the network. Currently only the top entry from the list is ever used and only on new_scan_results(), i.e. at the same time the list is being created. If at some point it becomes part of actual device state it needs to also be reset when a network is being forgotten.
2016-07-02 16:42:33 +02:00
memset(&network->connected_time, 0, sizeof(struct timespec));
network->is_known = false;
l_queue_push_tail(networks, network);
__iwd_device_foreach(network_info_check_device, network);
network: track whether network is known network_info gets a is_known flag that is used for the GetOrderedNetworks tracking and to implement the KnownNetworks interface - loading of the list of known networks on startup and forgetting networks.
2016-06-17 00:54:14 +02:00
return true;
}
network: Refactor network_info usage For simplicity and future use (possibly performance), every struct network gets a pointer to a network_info structure, there's one network_info for every network being by any interface, not only known networks. The SSID and security type information is removed from struct network because the network_info holds that information. network_info also gets a seen_count field to count how many references from network.info fields it has, so as to fix the removal of network_info structures. Previously, once they were added to the networks list, they'd stay there forever possibly skewing the network ranking results. This also fixed the network ranking used by GetOrderedNetwork which wasn't working due to a missing assignment of *index in network_find_info also triggering valgrind alerts.
2016-06-17 00:54:13 +02:00
void network_info_foreach(network_info_foreach_func_t function,
void *user_data)
{
const struct l_queue_entry *entry;
for (entry = l_queue_get_entries(networks); entry; entry = entry->next)
function(entry->data, user_data);
}
network: Add stub for network_info_has_hidden
2018-06-28 01:33:05 +02:00
bool network_info_has_hidden(void)
{
return false;
}
Copy Permalink