1f05cddf9SRui Paulo /*
2f05cddf9SRui Paulo * hostapd / EAP user database
3f05cddf9SRui Paulo * Copyright (c) 2012, Jouni Malinen <j@w1.fi>
4f05cddf9SRui Paulo *
5f05cddf9SRui Paulo * This software may be distributed under the terms of the BSD license.
6f05cddf9SRui Paulo * See README for more details.
7f05cddf9SRui Paulo */
8f05cddf9SRui Paulo
9f05cddf9SRui Paulo #include "includes.h"
10f05cddf9SRui Paulo #ifdef CONFIG_SQLITE
11f05cddf9SRui Paulo #include <sqlite3.h>
12f05cddf9SRui Paulo #endif /* CONFIG_SQLITE */
13f05cddf9SRui Paulo
14f05cddf9SRui Paulo #include "common.h"
15f05cddf9SRui Paulo #include "eap_common/eap_wsc_common.h"
16f05cddf9SRui Paulo #include "eap_server/eap_methods.h"
17f05cddf9SRui Paulo #include "eap_server/eap.h"
18f05cddf9SRui Paulo #include "ap_config.h"
19f05cddf9SRui Paulo #include "hostapd.h"
20f05cddf9SRui Paulo
21f05cddf9SRui Paulo #ifdef CONFIG_SQLITE
22f05cddf9SRui Paulo
set_user_methods(struct hostapd_eap_user * user,const char * methods)23f05cddf9SRui Paulo static void set_user_methods(struct hostapd_eap_user *user, const char *methods)
24f05cddf9SRui Paulo {
25f05cddf9SRui Paulo char *buf, *start;
26f05cddf9SRui Paulo int num_methods;
27f05cddf9SRui Paulo
28f05cddf9SRui Paulo buf = os_strdup(methods);
29f05cddf9SRui Paulo if (buf == NULL)
30f05cddf9SRui Paulo return;
31f05cddf9SRui Paulo
32f05cddf9SRui Paulo os_memset(&user->methods, 0, sizeof(user->methods));
33f05cddf9SRui Paulo num_methods = 0;
34f05cddf9SRui Paulo start = buf;
35f05cddf9SRui Paulo while (*start) {
36f05cddf9SRui Paulo char *pos3 = os_strchr(start, ',');
37f05cddf9SRui Paulo if (pos3)
38f05cddf9SRui Paulo *pos3++ = '\0';
39f05cddf9SRui Paulo user->methods[num_methods].method =
40f05cddf9SRui Paulo eap_server_get_type(start,
41f05cddf9SRui Paulo &user->methods[num_methods].vendor);
42f05cddf9SRui Paulo if (user->methods[num_methods].vendor == EAP_VENDOR_IETF &&
43f05cddf9SRui Paulo user->methods[num_methods].method == EAP_TYPE_NONE) {
44f05cddf9SRui Paulo if (os_strcmp(start, "TTLS-PAP") == 0) {
45f05cddf9SRui Paulo user->ttls_auth |= EAP_TTLS_AUTH_PAP;
46f05cddf9SRui Paulo goto skip_eap;
47f05cddf9SRui Paulo }
48f05cddf9SRui Paulo if (os_strcmp(start, "TTLS-CHAP") == 0) {
49f05cddf9SRui Paulo user->ttls_auth |= EAP_TTLS_AUTH_CHAP;
50f05cddf9SRui Paulo goto skip_eap;
51f05cddf9SRui Paulo }
52f05cddf9SRui Paulo if (os_strcmp(start, "TTLS-MSCHAP") == 0) {
53f05cddf9SRui Paulo user->ttls_auth |= EAP_TTLS_AUTH_MSCHAP;
54f05cddf9SRui Paulo goto skip_eap;
55f05cddf9SRui Paulo }
56f05cddf9SRui Paulo if (os_strcmp(start, "TTLS-MSCHAPV2") == 0) {
57f05cddf9SRui Paulo user->ttls_auth |= EAP_TTLS_AUTH_MSCHAPV2;
58f05cddf9SRui Paulo goto skip_eap;
59f05cddf9SRui Paulo }
60f05cddf9SRui Paulo wpa_printf(MSG_INFO, "DB: Unsupported EAP type '%s'",
61f05cddf9SRui Paulo start);
62f05cddf9SRui Paulo os_free(buf);
63f05cddf9SRui Paulo return;
64f05cddf9SRui Paulo }
65f05cddf9SRui Paulo
66f05cddf9SRui Paulo num_methods++;
67f05cddf9SRui Paulo if (num_methods >= EAP_MAX_METHODS)
68f05cddf9SRui Paulo break;
69f05cddf9SRui Paulo skip_eap:
70f05cddf9SRui Paulo if (pos3 == NULL)
71f05cddf9SRui Paulo break;
72f05cddf9SRui Paulo start = pos3;
73f05cddf9SRui Paulo }
74f05cddf9SRui Paulo
75f05cddf9SRui Paulo os_free(buf);
76f05cddf9SRui Paulo }
77f05cddf9SRui Paulo
78f05cddf9SRui Paulo
get_user_cb(void * ctx,int argc,char * argv[],char * col[])79f05cddf9SRui Paulo static int get_user_cb(void *ctx, int argc, char *argv[], char *col[])
80f05cddf9SRui Paulo {
81f05cddf9SRui Paulo struct hostapd_eap_user *user = ctx;
82f05cddf9SRui Paulo int i;
83f05cddf9SRui Paulo
84f05cddf9SRui Paulo for (i = 0; i < argc; i++) {
85f05cddf9SRui Paulo if (os_strcmp(col[i], "password") == 0 && argv[i]) {
865b9c547cSRui Paulo bin_clear_free(user->password, user->password_len);
87f05cddf9SRui Paulo user->password_len = os_strlen(argv[i]);
88f05cddf9SRui Paulo user->password = (u8 *) os_strdup(argv[i]);
89f05cddf9SRui Paulo user->next = (void *) 1;
90f05cddf9SRui Paulo } else if (os_strcmp(col[i], "methods") == 0 && argv[i]) {
91f05cddf9SRui Paulo set_user_methods(user, argv[i]);
925b9c547cSRui Paulo } else if (os_strcmp(col[i], "remediation") == 0 && argv[i]) {
935b9c547cSRui Paulo user->remediation = strlen(argv[i]) > 0;
9485732ac8SCy Schubert } else if (os_strcmp(col[i], "t_c_timestamp") == 0 && argv[i]) {
9585732ac8SCy Schubert user->t_c_timestamp = strtol(argv[i], NULL, 10);
96f05cddf9SRui Paulo }
97f05cddf9SRui Paulo }
98f05cddf9SRui Paulo
99f05cddf9SRui Paulo return 0;
100f05cddf9SRui Paulo }
101f05cddf9SRui Paulo
102f05cddf9SRui Paulo
get_wildcard_cb(void * ctx,int argc,char * argv[],char * col[])103f05cddf9SRui Paulo static int get_wildcard_cb(void *ctx, int argc, char *argv[], char *col[])
104f05cddf9SRui Paulo {
105f05cddf9SRui Paulo struct hostapd_eap_user *user = ctx;
106f05cddf9SRui Paulo int i, id = -1, methods = -1;
107f05cddf9SRui Paulo size_t len;
108f05cddf9SRui Paulo
109f05cddf9SRui Paulo for (i = 0; i < argc; i++) {
110f05cddf9SRui Paulo if (os_strcmp(col[i], "identity") == 0 && argv[i])
111f05cddf9SRui Paulo id = i;
112f05cddf9SRui Paulo else if (os_strcmp(col[i], "methods") == 0 && argv[i])
113f05cddf9SRui Paulo methods = i;
114f05cddf9SRui Paulo }
115f05cddf9SRui Paulo
116f05cddf9SRui Paulo if (id < 0 || methods < 0)
117f05cddf9SRui Paulo return 0;
118f05cddf9SRui Paulo
119f05cddf9SRui Paulo len = os_strlen(argv[id]);
120f05cddf9SRui Paulo if (len <= user->identity_len &&
121f05cddf9SRui Paulo os_memcmp(argv[id], user->identity, len) == 0 &&
122f05cddf9SRui Paulo (user->password == NULL || len > user->password_len)) {
1235b9c547cSRui Paulo bin_clear_free(user->password, user->password_len);
124f05cddf9SRui Paulo user->password_len = os_strlen(argv[id]);
125f05cddf9SRui Paulo user->password = (u8 *) os_strdup(argv[id]);
126f05cddf9SRui Paulo user->next = (void *) 1;
127f05cddf9SRui Paulo set_user_methods(user, argv[methods]);
128f05cddf9SRui Paulo }
129f05cddf9SRui Paulo
130f05cddf9SRui Paulo return 0;
131f05cddf9SRui Paulo }
132f05cddf9SRui Paulo
133f05cddf9SRui Paulo
134f05cddf9SRui Paulo static const struct hostapd_eap_user *
eap_user_sqlite_get(struct hostapd_data * hapd,const u8 * identity,size_t identity_len,int phase2)135f05cddf9SRui Paulo eap_user_sqlite_get(struct hostapd_data *hapd, const u8 *identity,
136f05cddf9SRui Paulo size_t identity_len, int phase2)
137f05cddf9SRui Paulo {
138f05cddf9SRui Paulo sqlite3 *db;
139f05cddf9SRui Paulo struct hostapd_eap_user *user = NULL;
140f05cddf9SRui Paulo char id_str[256], cmd[300];
141f05cddf9SRui Paulo size_t i;
142*4bc52338SCy Schubert int res;
143f05cddf9SRui Paulo
144325151a3SRui Paulo if (identity_len >= sizeof(id_str)) {
145325151a3SRui Paulo wpa_printf(MSG_DEBUG, "%s: identity len too big: %d >= %d",
146325151a3SRui Paulo __func__, (int) identity_len,
147325151a3SRui Paulo (int) (sizeof(id_str)));
148f05cddf9SRui Paulo return NULL;
149325151a3SRui Paulo }
150f05cddf9SRui Paulo os_memcpy(id_str, identity, identity_len);
151f05cddf9SRui Paulo id_str[identity_len] = '\0';
152f05cddf9SRui Paulo for (i = 0; i < identity_len; i++) {
153f05cddf9SRui Paulo if (id_str[i] >= 'a' && id_str[i] <= 'z')
154f05cddf9SRui Paulo continue;
155f05cddf9SRui Paulo if (id_str[i] >= 'A' && id_str[i] <= 'Z')
156f05cddf9SRui Paulo continue;
157f05cddf9SRui Paulo if (id_str[i] >= '0' && id_str[i] <= '9')
158f05cddf9SRui Paulo continue;
159f05cddf9SRui Paulo if (id_str[i] == '-' || id_str[i] == '_' || id_str[i] == '.' ||
160f05cddf9SRui Paulo id_str[i] == ',' || id_str[i] == '@' || id_str[i] == '\\' ||
161f05cddf9SRui Paulo id_str[i] == '!' || id_str[i] == '#' || id_str[i] == '%' ||
162f05cddf9SRui Paulo id_str[i] == '=' || id_str[i] == ' ')
163f05cddf9SRui Paulo continue;
164f05cddf9SRui Paulo wpa_printf(MSG_INFO, "DB: Unsupported character in identity");
165f05cddf9SRui Paulo return NULL;
166f05cddf9SRui Paulo }
167f05cddf9SRui Paulo
1685b9c547cSRui Paulo bin_clear_free(hapd->tmp_eap_user.identity,
1695b9c547cSRui Paulo hapd->tmp_eap_user.identity_len);
1705b9c547cSRui Paulo bin_clear_free(hapd->tmp_eap_user.password,
1715b9c547cSRui Paulo hapd->tmp_eap_user.password_len);
172f05cddf9SRui Paulo os_memset(&hapd->tmp_eap_user, 0, sizeof(hapd->tmp_eap_user));
173f05cddf9SRui Paulo hapd->tmp_eap_user.phase2 = phase2;
174f05cddf9SRui Paulo hapd->tmp_eap_user.identity = os_zalloc(identity_len + 1);
175f05cddf9SRui Paulo if (hapd->tmp_eap_user.identity == NULL)
176f05cddf9SRui Paulo return NULL;
177f05cddf9SRui Paulo os_memcpy(hapd->tmp_eap_user.identity, identity, identity_len);
178*4bc52338SCy Schubert hapd->tmp_eap_user.identity_len = identity_len;
179f05cddf9SRui Paulo
180f05cddf9SRui Paulo if (sqlite3_open(hapd->conf->eap_user_sqlite, &db)) {
181f05cddf9SRui Paulo wpa_printf(MSG_INFO, "DB: Failed to open database %s: %s",
182f05cddf9SRui Paulo hapd->conf->eap_user_sqlite, sqlite3_errmsg(db));
183f05cddf9SRui Paulo sqlite3_close(db);
184f05cddf9SRui Paulo return NULL;
185f05cddf9SRui Paulo }
186f05cddf9SRui Paulo
187*4bc52338SCy Schubert res = os_snprintf(cmd, sizeof(cmd),
1885b9c547cSRui Paulo "SELECT * FROM users WHERE identity='%s' AND phase2=%d;",
1895b9c547cSRui Paulo id_str, phase2);
190*4bc52338SCy Schubert if (os_snprintf_error(sizeof(cmd), res))
191*4bc52338SCy Schubert goto fail;
192*4bc52338SCy Schubert
193f05cddf9SRui Paulo wpa_printf(MSG_DEBUG, "DB: %s", cmd);
194f05cddf9SRui Paulo if (sqlite3_exec(db, cmd, get_user_cb, &hapd->tmp_eap_user, NULL) !=
195f05cddf9SRui Paulo SQLITE_OK) {
196325151a3SRui Paulo wpa_printf(MSG_DEBUG,
197325151a3SRui Paulo "DB: Failed to complete SQL operation: %s db: %s",
198325151a3SRui Paulo sqlite3_errmsg(db), hapd->conf->eap_user_sqlite);
199f05cddf9SRui Paulo } else if (hapd->tmp_eap_user.next)
200f05cddf9SRui Paulo user = &hapd->tmp_eap_user;
201f05cddf9SRui Paulo
202f05cddf9SRui Paulo if (user == NULL && !phase2) {
203f05cddf9SRui Paulo os_snprintf(cmd, sizeof(cmd),
204f05cddf9SRui Paulo "SELECT identity,methods FROM wildcards;");
205f05cddf9SRui Paulo wpa_printf(MSG_DEBUG, "DB: %s", cmd);
206f05cddf9SRui Paulo if (sqlite3_exec(db, cmd, get_wildcard_cb, &hapd->tmp_eap_user,
207f05cddf9SRui Paulo NULL) != SQLITE_OK) {
208325151a3SRui Paulo wpa_printf(MSG_DEBUG,
209325151a3SRui Paulo "DB: Failed to complete SQL operation: %s db: %s",
210325151a3SRui Paulo sqlite3_errmsg(db),
211325151a3SRui Paulo hapd->conf->eap_user_sqlite);
212f05cddf9SRui Paulo } else if (hapd->tmp_eap_user.next) {
213f05cddf9SRui Paulo user = &hapd->tmp_eap_user;
214f05cddf9SRui Paulo os_free(user->identity);
215f05cddf9SRui Paulo user->identity = user->password;
216f05cddf9SRui Paulo user->identity_len = user->password_len;
217f05cddf9SRui Paulo user->password = NULL;
218f05cddf9SRui Paulo user->password_len = 0;
219f05cddf9SRui Paulo }
220f05cddf9SRui Paulo }
221f05cddf9SRui Paulo
222*4bc52338SCy Schubert fail:
223f05cddf9SRui Paulo sqlite3_close(db);
224f05cddf9SRui Paulo
225f05cddf9SRui Paulo return user;
226f05cddf9SRui Paulo }
227f05cddf9SRui Paulo
228f05cddf9SRui Paulo #endif /* CONFIG_SQLITE */
229f05cddf9SRui Paulo
230f05cddf9SRui Paulo
231f05cddf9SRui Paulo const struct hostapd_eap_user *
hostapd_get_eap_user(struct hostapd_data * hapd,const u8 * identity,size_t identity_len,int phase2)232f05cddf9SRui Paulo hostapd_get_eap_user(struct hostapd_data *hapd, const u8 *identity,
233f05cddf9SRui Paulo size_t identity_len, int phase2)
234f05cddf9SRui Paulo {
235f05cddf9SRui Paulo const struct hostapd_bss_config *conf = hapd->conf;
236f05cddf9SRui Paulo struct hostapd_eap_user *user = conf->eap_user;
237f05cddf9SRui Paulo
238f05cddf9SRui Paulo #ifdef CONFIG_WPS
239f05cddf9SRui Paulo if (conf->wps_state && identity_len == WSC_ID_ENROLLEE_LEN &&
240f05cddf9SRui Paulo os_memcmp(identity, WSC_ID_ENROLLEE, WSC_ID_ENROLLEE_LEN) == 0) {
241f05cddf9SRui Paulo static struct hostapd_eap_user wsc_enrollee;
242f05cddf9SRui Paulo os_memset(&wsc_enrollee, 0, sizeof(wsc_enrollee));
243f05cddf9SRui Paulo wsc_enrollee.methods[0].method = eap_server_get_type(
244f05cddf9SRui Paulo "WSC", &wsc_enrollee.methods[0].vendor);
245f05cddf9SRui Paulo return &wsc_enrollee;
246f05cddf9SRui Paulo }
247f05cddf9SRui Paulo
248f05cddf9SRui Paulo if (conf->wps_state && identity_len == WSC_ID_REGISTRAR_LEN &&
249f05cddf9SRui Paulo os_memcmp(identity, WSC_ID_REGISTRAR, WSC_ID_REGISTRAR_LEN) == 0) {
250f05cddf9SRui Paulo static struct hostapd_eap_user wsc_registrar;
251f05cddf9SRui Paulo os_memset(&wsc_registrar, 0, sizeof(wsc_registrar));
252f05cddf9SRui Paulo wsc_registrar.methods[0].method = eap_server_get_type(
253f05cddf9SRui Paulo "WSC", &wsc_registrar.methods[0].vendor);
254f05cddf9SRui Paulo wsc_registrar.password = (u8 *) conf->ap_pin;
255f05cddf9SRui Paulo wsc_registrar.password_len = conf->ap_pin ?
256f05cddf9SRui Paulo os_strlen(conf->ap_pin) : 0;
257f05cddf9SRui Paulo return &wsc_registrar;
258f05cddf9SRui Paulo }
259f05cddf9SRui Paulo #endif /* CONFIG_WPS */
260f05cddf9SRui Paulo
261f05cddf9SRui Paulo while (user) {
262f05cddf9SRui Paulo if (!phase2 && user->identity == NULL) {
263f05cddf9SRui Paulo /* Wildcard match */
264f05cddf9SRui Paulo break;
265f05cddf9SRui Paulo }
266f05cddf9SRui Paulo
267f05cddf9SRui Paulo if (user->phase2 == !!phase2 && user->wildcard_prefix &&
268f05cddf9SRui Paulo identity_len >= user->identity_len &&
269f05cddf9SRui Paulo os_memcmp(user->identity, identity, user->identity_len) ==
270f05cddf9SRui Paulo 0) {
271f05cddf9SRui Paulo /* Wildcard prefix match */
272f05cddf9SRui Paulo break;
273f05cddf9SRui Paulo }
274f05cddf9SRui Paulo
275f05cddf9SRui Paulo if (user->phase2 == !!phase2 &&
276f05cddf9SRui Paulo user->identity_len == identity_len &&
277f05cddf9SRui Paulo os_memcmp(user->identity, identity, identity_len) == 0)
278f05cddf9SRui Paulo break;
279f05cddf9SRui Paulo user = user->next;
280f05cddf9SRui Paulo }
281f05cddf9SRui Paulo
282f05cddf9SRui Paulo #ifdef CONFIG_SQLITE
283f05cddf9SRui Paulo if (user == NULL && conf->eap_user_sqlite) {
284f05cddf9SRui Paulo return eap_user_sqlite_get(hapd, identity, identity_len,
285f05cddf9SRui Paulo phase2);
286f05cddf9SRui Paulo }
287f05cddf9SRui Paulo #endif /* CONFIG_SQLITE */
288f05cddf9SRui Paulo
289f05cddf9SRui Paulo return user;
290f05cddf9SRui Paulo }
291