#include "ac.h" #include "capwap_dtls.h" #include #ifndef CAPWAP_MULTITHREADING_ENABLE #error "AC request multithreading\n" #endif struct ac_t g_ac; #define AC_STANDARD_NAME "Unknown AC" /* Local param */ static char g_configurationfile[260] = AC_DEFAULT_CONFIGURATION_FILE; /* Alloc AC */ static int ac_init(void) { /* Network */ capwap_network_init(&g_ac.net); g_ac.mtu = CAPWAP_MTU_DEFAULT; g_ac.binding = capwap_array_create(sizeof(unsigned short), 0); /* Standard name */ strcpy(g_ac.acname.name, AC_STANDARD_NAME); /* Descriptor */ g_ac.descriptor.stationlimit = AC_DEFAULT_MAXSTATION; g_ac.descriptor.wtplimit = AC_DEFAULT_MAXSESSIONS; g_ac.descriptor.security = 0; g_ac.descriptor.rmacfield = CAPWAP_ACDESC_RMACFIELD_NOTSUPPORTED; g_ac.descriptor.dtlspolicy = CAPWAP_ACDESC_CLEAR_DATA_CHANNEL_ENABLED; g_ac.descriptor.descsubelement = capwap_array_create(sizeof(struct capwap_acdescriptor_desc_subelement), 0); /* */ g_ac.dfa.ecn.flag = CAPWAP_LIMITED_ECN_SUPPORT; g_ac.dfa.transport.type = CAPWAP_UDP_TRANSPORT; /* */ g_ac.dfa.timers.discovery = AC_DEFAULT_DISCOVERY_INTERVAL; g_ac.dfa.timers.echorequest = AC_DEFAULT_ECHO_INTERVAL; g_ac.dfa.decrypterrorreport_interval = AC_DEFAULT_DECRYPT_ERROR_PERIOD_INTERVAL; g_ac.dfa.idletimeout.timeout = AC_DEFAULT_IDLE_TIMEOUT_INTERVAL; g_ac.dfa.wtpfallback.mode = AC_DEFAULT_WTP_FALLBACK_MODE; /* */ g_ac.dfa.acipv4list = capwap_array_create(sizeof(struct capwap_acipv4list_element), 0); g_ac.dfa.acipv6list = capwap_array_create(sizeof(struct capwap_acipv6list_element), 0); /* */ g_ac.dfa.rfcWaitJoin = AC_DEFAULT_WAITJOIN_INTERVAL; g_ac.dfa.rfcWaitDTLS = AC_DEFAULT_WAITDTLS_INTERVAL; g_ac.dfa.rfcChangeStatePendingTimer = AC_DEFAULT_CHANGE_STATE_PENDING_TIMER; g_ac.dfa.rfcDataCheckTimer = AC_DEFAULT_DATA_CHECK_TIMER; /* Sessions */ capwap_event_init(&g_ac.changesessionlist); g_ac.sessions = capwap_list_create(); capwap_lock_init(&g_ac.sessionslock); g_ac.datasessionshandshake = capwap_list_create(); return 1; } /* Destroy AC */ static void ac_destroy(void) { /* Dtls */ capwap_crypt_freecontext(&g_ac.dtlscontext); /* */ capwap_array_free(g_ac.descriptor.descsubelement); capwap_array_free(g_ac.binding); /* */ capwap_array_free(g_ac.dfa.acipv4list); capwap_array_free(g_ac.dfa.acipv6list); /* Sessions */ capwap_list_free(g_ac.sessions); capwap_lock_destroy(&g_ac.sessionslock); capwap_event_destroy(&g_ac.changesessionlist); capwap_list_free(g_ac.datasessionshandshake); } /* Help */ static void ac_print_usage(void) { } /* Parsing configuration */ static int ac_parsing_configuration_1_0(config_t* config) { int i; int configInt; int configIPv4; int configIPv6; long int configLongInt; const char* configString; config_setting_t* configSetting; /* Logging configuration */ if (config_lookup_bool(config, "logging.enable", &configInt) == CONFIG_TRUE) { if (!configInt) { capwap_logging_verboselevel(CAPWAP_LOGGING_NONE); capwap_logging_disable_allinterface(); } else { if (config_lookup_string(config, "logging.level", &configString) == CONFIG_TRUE) { if (!strcmp(configString, "fatal")) { capwap_logging_verboselevel(CAPWAP_LOGGING_FATAL); } else if (!strcmp(configString, "error")) { capwap_logging_verboselevel(CAPWAP_LOGGING_ERROR); } else if (!strcmp(configString, "warning")) { capwap_logging_verboselevel(CAPWAP_LOGGING_WARNING); } else if (!strcmp(configString, "info")) { capwap_logging_verboselevel(CAPWAP_LOGGING_INFO); } else if (!strcmp(configString, "debug")) { capwap_logging_verboselevel(CAPWAP_LOGGING_DEBUG); } else { capwap_logging_error("Invalid configuration file, unknown logging.level value"); return 0; } } /* Logging output interface */ configSetting = config_lookup(config, "logging.output"); if (configSetting != NULL) { int count = config_setting_length(configSetting); /* Disable output interface */ capwap_logging_disable_allinterface(); /* Enable selected interface */ for (i = 0; i < count; i++) { config_setting_t* configElement = config_setting_get_elem(configSetting, i); if ((configElement != NULL) && (config_setting_lookup_string(configElement, "mode", &configString) == CONFIG_TRUE)) { if (!strcmp(configString, "stdout")) { capwap_logging_enable_console(0); } else if (!strcmp(configString, "stderr")) { capwap_logging_enable_console(1); } else { capwap_logging_error("Invalid configuration file, unknown logging.output value"); return 0; } } } } } } /* Set name of AC */ if (config_lookup_string(config, "application.name", &configString) == CONFIG_TRUE) { if (strlen(configString) > CAPWAP_ACNAME_MAXLENGTH) { capwap_logging_error("Invalid configuration file, application.name string length exceeded"); return 0; } strcpy(g_ac.acname.name, configString); } /* Set binding of AC */ configSetting = config_lookup(config, "application.binding"); if (configSetting != NULL) { int count = config_setting_length(configSetting); for (i = 0; i < count; i++) { const char* bindingName = config_setting_get_string_elem(configSetting, i); if (bindingName != NULL) { unsigned short* binding = (unsigned short*)capwap_array_get_item_pointer(g_ac.binding, g_ac.binding->count); if (!strcmp(bindingName, "802.11")) { *binding = CAPWAP_WIRELESS_BINDING_IEEE80211; } else if (!strcmp(bindingName, "EPCGlobal")) { *binding = CAPWAP_WIRELESS_BINDING_EPCGLOBAL; } else { capwap_logging_error("Invalid configuration file, unknown application.binding value"); return 0; } } } } /* Set max stations of AC */ if (config_lookup_int(config, "application.descriptor.maxstations", &configLongInt) == CONFIG_TRUE) { if ((configLongInt > 0) && (configLongInt < 65536)) { g_ac.descriptor.stationlimit = (unsigned short)configLongInt; } else { capwap_logging_error("Invalid configuration file, unknown application.descriptor.maxstations value"); return 0; } } /* Set max wtp of AC */ if (config_lookup_int(config, "application.descriptor.maxwtp", &configLongInt) == CONFIG_TRUE) { if ((configLongInt > 0) && (configLongInt < 65536)) { g_ac.descriptor.wtplimit = (unsigned short)configLongInt; } else { capwap_logging_error("Invalid configuration file, unknown application.descriptor.maxwtp value"); return 0; } } /* Set security of AC */ if (config_lookup(config, "application.descriptor.security") != NULL) { g_ac.descriptor.security = 0; if (config_lookup_bool(config, "application.descriptor.security.presharedkey", &configInt) == CONFIG_TRUE) { if (configInt != 0) { g_ac.descriptor.security |= CAPWAP_ACDESC_SECURITY_PRESHARED_KEY; } } if (config_lookup_bool(config, "application.descriptor.security.x509", &configInt) == CONFIG_TRUE) { if (configInt != 0) { g_ac.descriptor.security |= CAPWAP_ACDESC_SECURITY_X509_CERT; } } } /* Set rmacfiled of AC */ if (config_lookup_bool(config, "application.descriptor.rmacfiled.supported", &configInt) == CONFIG_TRUE) { g_ac.descriptor.rmacfield = ((configInt != 0) ? CAPWAP_ACDESC_RMACFIELD_SUPPORTED : CAPWAP_ACDESC_RMACFIELD_NOTSUPPORTED); } /* Set DTLS policy of AC */ if (config_lookup(config, "application.descriptor.dtlspolicy") != NULL) { g_ac.descriptor.dtlspolicy = 0; if (config_lookup_bool(config, "application.descriptor.dtlspolicy.cleardatachannel", &configInt) == CONFIG_TRUE) { if (configInt != 0) { g_ac.descriptor.dtlspolicy |= CAPWAP_ACDESC_CLEAR_DATA_CHANNEL_ENABLED; } } if (config_lookup_bool(config, "application.descriptor.dtlspolicy.dtlsdatachannel", &configInt) == CONFIG_TRUE) { if (configInt != 0) { g_ac.descriptor.dtlspolicy |= CAPWAP_ACDESC_DTLS_DATA_CHANNEL_ENABLED; } } } /* Set info descriptor of AC */ configSetting = config_lookup(config, "application.descriptor.info"); if (configSetting != NULL) { int count = config_setting_length(configSetting); for (i = 0; i < count; i++) { config_setting_t* configElement = config_setting_get_elem(configSetting, i); if (configElement != NULL) { long int configVendor; if (config_setting_lookup_int(configElement, "idvendor", &configVendor) == CONFIG_TRUE) { const char* configType; if (config_setting_lookup_string(configElement, "type", &configType) == CONFIG_TRUE) { const char* configValue; if (config_setting_lookup_string(configElement, "value", &configValue) == CONFIG_TRUE) { int lengthValue = strlen(configValue); if (lengthValue < CAPWAP_ACDESC_SUBELEMENT_MAXDATA) { unsigned short type; struct capwap_acdescriptor_desc_subelement* desc; if (!strcmp(configType, "hardware")) { type = CAPWAP_ACDESC_SUBELEMENT_HARDWAREVERSION; } else if (!strcmp(configType, "software")) { type = CAPWAP_ACDESC_SUBELEMENT_SOFTWAREVERSION; } else { capwap_logging_error("Invalid configuration file, unknown application.descriptor.info.type value"); return 0; } desc = (struct capwap_acdescriptor_desc_subelement*)capwap_array_get_item_pointer(g_ac.descriptor.descsubelement, g_ac.descriptor.descsubelement->count); desc->vendor = (unsigned long)configVendor; desc->type = type; desc->length = lengthValue; strcpy(desc->data, configValue); } else { capwap_logging_error("Invalid configuration file, application.descriptor.info.value string length exceeded"); return 0; } } else { capwap_logging_error("Invalid configuration file, element application.descriptor.info.value not found"); return 0; } } else { capwap_logging_error("Invalid configuration file, element application.descriptor.info.type not found"); return 0; } } else { capwap_logging_error("Invalid configuration file, element application.descriptor.info.idvendor not found"); return 0; } } } } /* Set ECN of AC */ if (config_lookup_string(config, "application.ecn", &configString) == CONFIG_TRUE) { if (!strcmp(configString, "full")) { g_ac.dfa.ecn.flag = CAPWAP_FULL_ECN_SUPPORT; } else if (!strcmp(configString, "limited")) { g_ac.dfa.ecn.flag = CAPWAP_LIMITED_ECN_SUPPORT; } else { capwap_logging_error("Invalid configuration file, unknown application.ecn value"); return 0; } } /* Set Timer of AC */ if (config_lookup_int(config, "application.timer.discovery", &configLongInt) == CONFIG_TRUE) { if ((configLongInt >= AC_DEFAULT_DISCOVERY_INTERVAL) && (configLongInt <= AC_MAX_DISCOVERY_INTERVAL)) { g_ac.dfa.timers.discovery = (unsigned char)configLongInt; } else { capwap_logging_error("Invalid configuration file, invalid application.timer.discovery value"); return 0; } } if (config_lookup_int(config, "application.timer.echorequest", &configLongInt) == CONFIG_TRUE) { if ((configLongInt > 0) && (configLongInt < AC_MAX_ECHO_INTERVAL)) { g_ac.dfa.timers.echorequest = (unsigned char)configLongInt; } else { capwap_logging_error("Invalid configuration file, invalid application.timer.echorequest value"); return 0; } } if (config_lookup_int(config, "application.timer.decrypterrorreport", &configLongInt) == CONFIG_TRUE) { if ((configLongInt > 0) && (configLongInt < 65536)) { g_ac.dfa.decrypterrorreport_interval = (unsigned short)configLongInt; } else { capwap_logging_error("Invalid configuration file, invalid application.timer.decrypterrorreport value"); return 0; } } if (config_lookup_int(config, "application.timer.idletimeout", &configLongInt) == CONFIG_TRUE) { if (configLongInt > 0) { g_ac.dfa.idletimeout.timeout = (unsigned long)configLongInt; } else { capwap_logging_error("Invalid configuration file, invalid application.timer.idletimeout value"); return 0; } } /* Set wtpfallback of AC */ if (config_lookup_bool(config, "application.wtpfallback", &configInt) == CONFIG_TRUE) { g_ac.dfa.wtpfallback.mode = ((configInt != 0) ? CAPWAP_WTP_FALLBACK_ENABLED : CAPWAP_WTP_FALLBACK_DISABLED); } /* Set DTLS of WTP */ if (config_lookup_bool(config, "application.dtls.enable", &configInt) == CONFIG_TRUE) { if (configInt != 0) { struct capwap_dtls_param dtlsparam; /* Init dtls param */ memset(&dtlsparam, 0, sizeof(struct capwap_dtls_param)); dtlsparam.type = CAPWAP_DTLS_SERVER; /* Set DTLS type of AC */ if (config_lookup_string(config, "application.dtls.type", &configString) == CONFIG_TRUE) { if (!strcmp(configString, "x509")) { dtlsparam.mode = CAPWAP_DTLS_MODE_CERTIFICATE; } else if (!strcmp(configString, "presharedkey")) { dtlsparam.mode = CAPWAP_DTLS_MODE_PRESHAREDKEY; } else { capwap_logging_error("Invalid configuration file, unknown application.dtls.type value"); return 0; } } /* Set DTLS configuration of AC */ if (dtlsparam.mode == CAPWAP_DTLS_MODE_CERTIFICATE) { if (config_lookup_string(config, "application.dtls.x509.calist", &configString) == CONFIG_TRUE) { if (strlen(configString) > 0) { dtlsparam.cert.fileca = capwap_duplicate_string(configString); } } if (config_lookup_string(config, "application.dtls.x509.certificate", &configString) == CONFIG_TRUE) { if (strlen(configString) > 0) { dtlsparam.cert.filecert = capwap_duplicate_string(configString); } } if (config_lookup_string(config, "application.dtls.x509.privatekey", &configString) == CONFIG_TRUE) { if (strlen(configString) > 0) { dtlsparam.cert.filekey = capwap_duplicate_string(configString); } } if (config_lookup_string(config, "application.dtls.x509.privatekeypassword", &configString) == CONFIG_TRUE) { if (strlen(configString) > 0) { dtlsparam.cert.pwdprivatekey = capwap_duplicate_string(configString); } } if (dtlsparam.cert.fileca && dtlsparam.cert.filecert && dtlsparam.cert.filekey) { if (capwap_crypt_createcontext(&g_ac.dtlscontext, &dtlsparam)) { g_ac.enabledtls = 1; } } /* Free dtls param */ if (dtlsparam.cert.fileca) { capwap_free(dtlsparam.cert.fileca); } if (dtlsparam.cert.filecert) { capwap_free(dtlsparam.cert.filecert); } if (dtlsparam.cert.filekey) { capwap_free(dtlsparam.cert.filekey); } if (dtlsparam.cert.pwdprivatekey) { capwap_free(dtlsparam.cert.pwdprivatekey); } if (!g_ac.enabledtls) { return 0; } } else if (dtlsparam.mode == CAPWAP_DTLS_MODE_PRESHAREDKEY) { /* TODO */ } } } /* Set interface binding of AC */ if (config_lookup_string(config, "application.network.binding", &configString) == CONFIG_TRUE) { if (strlen(configString) > (IFNAMSIZ - 1)) { capwap_logging_error("Invalid configuration file, application.network.binding string length exceeded"); return 0; } strcpy(g_ac.net.bind_interface, configString); } /* Set mtu of AC */ if (config_lookup_int(config, "application.network.mtu", &configLongInt) == CONFIG_TRUE) { if ((configLongInt > 0) && (configLongInt < 65536)) { g_ac.mtu = (unsigned short)configLongInt; } else { capwap_logging_error("Invalid configuration file, invalid application.network.mtu value"); return 0; } } /* Set transport of AC */ if (config_lookup_string(config, "application.network.transport", &configString) == CONFIG_TRUE) { if (!strcmp(configString, "udp")) { g_ac.dfa.transport.type = CAPWAP_UDP_TRANSPORT; } else if (!strcmp(configString, "udplite")) { g_ac.dfa.transport.type = CAPWAP_UDPLITE_TRANSPORT; } else { capwap_logging_error("Invalid configuration file, unknown application.network.transport value"); return 0; } } /* Set ipv4 & ipv6 of AC */ if (config_lookup_bool(config, "application.network.ipv4", &configIPv4) != CONFIG_TRUE) { configIPv4 = 1; } if (config_lookup_bool(config, "application.network.ipv6", &configIPv6) != CONFIG_TRUE) { configIPv6 = 1; } if (configIPv4 && configIPv6) { g_ac.net.sock_family = AF_UNSPEC; } else if (!configIPv4 && !configIPv6) { capwap_logging_error("Invalid configuration file, request enable application.network.ipv4 or application.network.ipv6"); return 0; } else { g_ac.net.sock_family = (configIPv4 ? AF_INET : AF_INET6); } /* Set ip dual stack of WTP */ if (config_lookup_bool(config, "application.network.ipdualstack", &configInt) == CONFIG_TRUE) { if (!configInt) { g_ac.net.bind_ctrl_flags |= CAPWAP_IPV6ONLY_FLAG; g_ac.net.bind_data_flags |= CAPWAP_IPV6ONLY_FLAG; } else { g_ac.net.bind_ctrl_flags &= ~CAPWAP_IPV6ONLY_FLAG; g_ac.net.bind_data_flags &= ~CAPWAP_IPV6ONLY_FLAG; } } return 1; } /* Parsing configuration */ static int ac_parsing_configuration(config_t* config) { const char* configString; if (config_lookup_string(config, "version", &configString) == CONFIG_TRUE) { if (strcmp(configString, "1.0") == 0) { return ac_parsing_configuration_1_0(config); } capwap_logging_error("Invalid configuration file, '%s' is not supported", configString); } else { capwap_logging_error("Invalid configuration file, unable to found version tag"); } return 0; } /* Load configuration */ static int ac_load_configuration(int argc, char** argv) { int c; int result = 0; config_t config; ASSERT(argc >= 0); ASSERT(argv != NULL); /* Parsing command line */ opterr = 0; while ((c = getopt(argc, argv, "hc:")) != -1) { switch (c) { case 'h': { ac_print_usage(); return 0; } case 'c': { if (strlen(optarg) < sizeof(g_configurationfile)) { strcpy(g_configurationfile, optarg); } else { capwap_logging_error("Invalid -%c argument", optopt); return -1; } break; } case '?': { if (optopt == 'c') { capwap_logging_error("Option -%c requires an argument", optopt); } else { capwap_logging_error("Unknown option character `\\x%x'", optopt); } ac_print_usage(); return -1; } } } /* Init libconfig */ config_init(&config); /* Load configuration */ if (config_read_file(&config, g_configurationfile) == CONFIG_TRUE) { result = ac_parsing_configuration(&config); } else { result = -1; capwap_logging_error("Unable load the configuration file '%s': %s (%d)", g_configurationfile, config_error_text(&config), config_error_line(&config)); } /* Free libconfig */ config_destroy(&config); return result; } /* Init AC */ static int ac_configure(void) { /* Bind to any address */ if (!capwap_bind_sockets(&g_ac.net)) { capwap_logging_fatal("Cannot bind address"); return AC_ERROR_NETWORK; } return CAPWAP_SUCCESSFUL; } /* Close AC */ static void ac_close(void) { ASSERT(g_ac.sessions->count == 0); /* Close socket */ capwap_close_sockets(&g_ac.net); } /* Check is valid binding */ int ac_valid_binding(unsigned short binding) { int i; for (i = 0; i < g_ac.binding->count; i++) { if (binding == *(unsigned short*)capwap_array_get_item_pointer(g_ac.binding, i)) { return 1; } } return 0; } /* Main*/ int main(int argc, char** argv) { int value; int result = CAPWAP_SUCCESSFUL; /* Init logging */ capwap_logging_init(); capwap_logging_verboselevel(CAPWAP_LOGGING_ERROR); capwap_logging_enable_console(1); /* Init capwap */ if (geteuid() != 0) { capwap_logging_fatal("Request root privileges"); return CAPWAP_REQUEST_ROOT; } /* Init random generator */ capwap_init_rand(); /* Init crypt */ if (!capwap_crypt_init()) { capwap_logging_fatal("Error to init crypt engine"); return CAPWAP_CRYPT_ERROR; } /* Alloc AC */ if (!ac_init()) { return AC_ERROR_SYSTEM_FAILER; } /* Read configuration file */ value = ac_load_configuration(argc, argv); if (value < 0) { result = AC_ERROR_LOAD_CONFIGURATION; } else if (value > 0) { /* Complete configuration AC */ result = ac_configure(); if (result == CAPWAP_SUCCESSFUL) { /* Running AC */ result = ac_execute(); ac_close(); } } /* Free memory */ ac_destroy(); /* Free crypt */ capwap_crypt_free(); /* Check memory leak */ if (capwap_check_memory_leak(1)) { if (result == CAPWAP_SUCCESSFUL) result = AC_ERROR_MEMORY_LEAK; } /* Close logging */ capwap_logging_close(); return result; }