[03/13] mbssid: configure all BSSes before beacon setup

Message ID	20220302222634.22185-4-quic_alokad@quicinc.com
State	Changes Requested
Headers	show Return-Path: <hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org> From: Aloka Dixit <quic_alokad@quicinc.com> To: <hostap@lists.infradead.org>, <j@w1.fi> Subject: [PATCH 03/13] mbssid: configure all BSSes before beacon setup Date: Wed, 2 Mar 2022 14:26:24 -0800 Message-ID: <20220302222634.22185-4-quic_alokad@quicinc.com> In-Reply-To: <20220302222634.22185-1-quic_alokad@quicinc.com> References: <20220302222634.22185-1-quic_alokad@quicinc.com> MIME-Version: 1.0 preview: With existing design, the transmitted beacon is set before RSN information element is formed for any nontransmitted profile hence the beacon has these profiles with open encryption. It also sets wrong [...] Content analysis details: (-2.5 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -2.3 RCVD_IN_DNSWL_MED RBL: Sender listed at https://www.dnswl.org/, medium trust [129.46.98.28 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain Precedence: list Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "Hostap" <hostap-bounces@lists.infradead.org> Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org
Series	hostapd: MBSSID and EMA support \| expand [00/13] hostapd: MBSSID and EMA support [01/13] mbssid: add configuration options [02/13] mbssid: retrieve driver capabilities [03/13] mbssid: configure all BSSes before beacon setup [04/13] mbssid: get and set configuration parameters [05/13] mbssid: add multiple BSSID elements [06/13] mbssid: add MBSSID configuration element [07/13] mbssid: add non-inheritance element [08/13] mbssid: make the AID space shared [09/13] mbssid: set extended capabilities [10/13] mbssid: DTIM period configuration for EMA AP [11/13] mbssid: hidden SSID support [12/13] mbssid: process known BSSID element [13/13] mbssid: add nl80211 support

Message ID

20220302222634.22185-4-quic_alokad@quicinc.com

State

Changes Requested

Headers

From: Aloka Dixit <quic_alokad@quicinc.com>
To: <hostap@lists.infradead.org>, <j@w1.fi>
Subject: [PATCH 03/13] mbssid: configure all BSSes before beacon setup
Date: Wed, 2 Mar 2022 14:26:24 -0800
Message-ID: <20220302222634.22185-4-quic_alokad@quicinc.com>
In-Reply-To: <20220302222634.22185-1-quic_alokad@quicinc.com>
References: <20220302222634.22185-1-quic_alokad@quicinc.com>
MIME-Version: 1.0
Precedence: list
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "Hostap" <hostap-bounces@lists.infradead.org>
Errors-To: hostap-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org

Series

hostapd: MBSSID and EMA support | expand

Commit Message

Aloka Dixit March 2, 2022, 10:26 p.m. UTC

With existing design, the transmitted beacon is set before RSN
information element is formed for any nontransmitted profile hence the
beacon has these profiles with open encryption.
It also sets wrong DTIM period, profile periodicity values until all
non-transmitting BSSes are up.

Retrieve configurations for all nontransmitted profiles before setting
the beacon to ensures that beacons reflect correct information.

Signed-off-by: Aloka Dixit <quic_alokad@quicinc.com>
---
 src/ap/hostapd.c | 90 ++++++++++++++++++++++++++++++++++--------------
 1 file changed, 64 insertions(+), 26 deletions(-)

Comments

Jouni Malinen April 7, 2022, 8:06 p.m. UTC | #1

On Wed, Mar 02, 2022 at 02:26:24PM -0800, Aloka Dixit wrote:
> With existing design, the transmitted beacon is set before RSN
> information element is formed for any nontransmitted profile hence the
> beacon has these profiles with open encryption.
> It also sets wrong DTIM period, profile periodicity values until all
> non-transmitting BSSes are up.

That seems to imply that there is something wrong in the current
implementation which is not really the case here. This should be
reworded to describe how these changes are needed for MBSSID instead of
claiming that something is set incorrectly.

> Retrieve configurations for all nontransmitted profiles before setting
> the beacon to ensures that beacons reflect correct information.

It would be good to explicitly note that this does not change behavior
for the case of multiple BSSIDs where each BSS is beaconing.

> diff --git a/src/ap/hostapd.c b/src/ap/hostapd.c
> +static int hostapd_set_beacon(struct hostapd_data *hapd)
...
> +	if (hapd->wpa_auth && wpa_init_keys(hapd->wpa_auth) < 0)
> +		return -1;
...

That wpa_init_keys() looks really strange in a function called
hostapd_set_beacon().. Why would it be moved there?

> + * @set_beacon: Whether beacon should be set. When MBSSID IE is enabled,
> + *	information regarding all BSSes should be retrieved before setting
> + *	beacons.

"should"? Isn't that a requirement rather than recommendation? In other
words, "is set" for the first "should" and "need" for the second one.

> -static int hostapd_setup_bss(struct hostapd_data *hapd, int first)
> +static int hostapd_setup_bss(struct hostapd_data *hapd, int first,
> +			     bool set_beacon)

> @@ -1379,29 +1419,8 @@ static int hostapd_setup_bss(struct hostapd_data *hapd, int first)
> -	if (!conf->start_disabled && ieee802_11_set_beacon(hapd) < 0)
> -		return -1;

So moving this into hostapd_set_beacon() looks appropriate.

> -	if (flush_old_stations && !conf->start_disabled &&
> -	    conf->broadcast_deauth) {
> -		u8 addr[ETH_ALEN];
> -
> -		/* Should any previously associated STA not have noticed that
> -		 * the AP had stopped and restarted, send one more
> -		 * deauthentication notification now that the AP is ready to
> -		 * operate. */
> -		wpa_dbg(hapd->msg_ctx, MSG_DEBUG,
> -			"Deauthenticate all stations at BSS start");
> -		os_memset(addr, 0xff, ETH_ALEN);
> -		hostapd_drv_sta_deauth(hapd, addr,
> -				       WLAN_REASON_PREV_AUTH_NOT_VALID);
> -	}

And I guess I could see why this is moved as well even though it is not
really about setting Beacon frame contents.

> -	if (hapd->wpa_auth && wpa_init_keys(hapd->wpa_auth) < 0)
> -		return -1;

But this does not really have much, if anything, to do with Beacon
frames.

> -	if (hapd->driver && hapd->driver->set_operstate)
> -		hapd->driver->set_operstate(hapd->drv_priv, 1);

And this is kind of related to starting beaconing even if not really
about setting a Beacon frame contents.

> +	if (set_beacon)
> +		return hostapd_set_beacon(hapd);

Maybe this should be more about starting beaconing than setting a
beacon..

> @@ -2112,7 +2131,8 @@ static int hostapd_setup_interface_complete_sync(struct hostapd_iface *iface,

> -		if (hostapd_setup_bss(hapd, j == 0)) {
> +		if (hostapd_setup_bss(hapd, j == 0,
> +				      (hapd->iconf->mbssid ? 0 : 1))) {

0/1 are not valid bool values; false/true should be used instead.
Though, !hapd->iconf->mbssid would be clearer here (or
hapd->iconf->mbssid == MBSSID_DISABLED (or something like that) if my
comment about using a single config option with an enum were
implemented.

> @@ -3007,7 +3045,7 @@ int hostapd_add_iface(struct hapd_interfaces *interfaces, char *buf)
> -			     hostapd_setup_bss(hapd, -1))) {
> +			     hostapd_setup_bss(hapd, -1, 1))) {

1 --> true

diff --git a/src/ap/hostapd.c b/src/ap/hostapd.c
index 4b88641a2dde..14b608e67c23 100644
--- a/src/ap/hostapd.c
+++ b/src/ap/hostapd.c
@@ -1095,19 +1095,59 @@  static int db_table_create_radius_attributes(sqlite3 *db)
 
 #endif /* CONFIG_NO_RADIUS */
 
+static int hostapd_set_beacon(struct hostapd_data *hapd)
+{
+	struct hostapd_bss_config *conf = hapd->conf;
+	int flush_old_stations = 1;
+
+#ifdef CONFIG_MESH
+	if ((hapd->conf->mesh & MESH_ENABLED) && hapd->iface->mconf == NULL)
+		flush_old_stations = 0;
+#endif /* CONFIG_MESH */
+
+	if (!conf->start_disabled && ieee802_11_set_beacon(hapd) < 0)
+		return -1;
+
+	if (flush_old_stations && !conf->start_disabled &&
+	    conf->broadcast_deauth) {
+		u8 addr[ETH_ALEN];
+
+		/* Should any previously associated STA not have noticed that
+		 * the AP had stopped and restarted, send one more
+		 * deauthentication notification now that the AP is ready to
+		 * operate. */
+		wpa_dbg(hapd->msg_ctx, MSG_DEBUG,
+			"Deauthenticate all stations at BSS start");
+		os_memset(addr, 0xff, ETH_ALEN);
+		hostapd_drv_sta_deauth(hapd, addr,
+				       WLAN_REASON_PREV_AUTH_NOT_VALID);
+	}
+
+	if (hapd->wpa_auth && wpa_init_keys(hapd->wpa_auth) < 0)
+		return -1;
+
+	if (hapd->driver && hapd->driver->set_operstate)
+		hapd->driver->set_operstate(hapd->drv_priv, 1);
+
+	return 0;
+}
 
 /**
  * hostapd_setup_bss - Per-BSS setup (initialization)
  * @hapd: Pointer to BSS data
  * @first: Whether this BSS is the first BSS of an interface; -1 = not first,
  *	but interface may exist
+ * @set_beacon: Whether beacon should be set. When MBSSID IE is enabled,
+ *	information regarding all BSSes should be retrieved before setting
+ *	beacons.
  *
  * This function is used to initialize all per-BSS data structures and
  * resources. This gets called in a loop for each BSS when an interface is
  * initialized. Most of the modules that are initialized here will be
  * deinitialized in hostapd_cleanup().
  */
-static int hostapd_setup_bss(struct hostapd_data *hapd, int first)
+static int hostapd_setup_bss(struct hostapd_data *hapd, int first,
+			     bool set_beacon)
 {
 	struct hostapd_bss_config *conf = hapd->conf;
 	u8 ssid[SSID_MAX_LEN + 1];
@@ -1379,29 +1419,8 @@  static int hostapd_setup_bss(struct hostapd_data *hapd, int first)
 		return -1;
 	}
 
-	if (!conf->start_disabled && ieee802_11_set_beacon(hapd) < 0)
-		return -1;
-
-	if (flush_old_stations && !conf->start_disabled &&
-	    conf->broadcast_deauth) {
-		u8 addr[ETH_ALEN];
-
-		/* Should any previously associated STA not have noticed that
-		 * the AP had stopped and restarted, send one more
-		 * deauthentication notification now that the AP is ready to
-		 * operate. */
-		wpa_dbg(hapd->msg_ctx, MSG_DEBUG,
-			"Deauthenticate all stations at BSS start");
-		os_memset(addr, 0xff, ETH_ALEN);
-		hostapd_drv_sta_deauth(hapd, addr,
-				       WLAN_REASON_PREV_AUTH_NOT_VALID);
-	}
-
-	if (hapd->wpa_auth && wpa_init_keys(hapd->wpa_auth) < 0)
-		return -1;
-
-	if (hapd->driver && hapd->driver->set_operstate)
-		hapd->driver->set_operstate(hapd->drv_priv, 1);
+	if (set_beacon)
+		return hostapd_set_beacon(hapd);
 
 	return 0;
 }
@@ -2112,7 +2131,8 @@  static int hostapd_setup_interface_complete_sync(struct hostapd_iface *iface,
 		hapd = iface->bss[j];
 		if (j)
 			os_memcpy(hapd->own_addr, prev_addr, ETH_ALEN);
-		if (hostapd_setup_bss(hapd, j == 0)) {
+		if (hostapd_setup_bss(hapd, j == 0,
+				      (hapd->iconf->mbssid ? 0 : 1))) {
 			for (;;) {
 				hapd = iface->bss[j];
 				hostapd_bss_deinit_no_free(hapd);
@@ -2126,6 +2146,24 @@  static int hostapd_setup_interface_complete_sync(struct hostapd_iface *iface,
 		if (is_zero_ether_addr(hapd->conf->bssid))
 			prev_addr = hapd->own_addr;
 	}
+
+	if (hapd->iconf->mbssid) {
+		for (j = 0; j < iface->num_bss; j++) {
+			hapd = iface->bss[j];
+			if (hostapd_set_beacon(hapd)) {
+				for (;;) {
+					hapd = iface->bss[j];
+					hostapd_bss_deinit_no_free(hapd);
+					hostapd_free_hapd_data(hapd);
+					if (j == 0)
+						break;
+					j--;
+				}
+				goto fail;
+			}
+		}
+	}
+
 	hapd = iface->bss[0];
 
 	hostapd_tx_queue_params(iface);
@@ -3007,7 +3045,7 @@  int hostapd_add_iface(struct hapd_interfaces *interfaces, char *buf)
 
 			if (start_ctrl_iface_bss(hapd) < 0 ||
 			    (hapd_iface->state == HAPD_IFACE_ENABLED &&
-			     hostapd_setup_bss(hapd, -1))) {
+			     hostapd_setup_bss(hapd, -1, 1))) {
 				hostapd_cleanup(hapd);
 				hapd_iface->bss[hapd_iface->num_bss - 1] = NULL;
 				hapd_iface->conf->num_bss--;

[03/13] mbssid: configure all BSSes before beacon setup

Commit Message

Comments

Patch