Work on join with DTLS
FossilOrigin-Name: 555c5e22a849ebc1ec62ef358a31c32cd2dbb1af099224897ef5c803370b543b
This commit is contained in:
7u83@mail.ru
@ -34,5 +34,6 @@ WITH_OPENSSL=1
|
|||||||
#
|
#
|
||||||
LIBDIR=lib
|
LIBDIR=lib
|
||||||
|
|
||||||
|
OPTFLAGS := -g -O0
|
||||||
CFLAGS := -D_XOPEN_SOURCE=600 -D_BSD_SOURCE -D_DEFAULT_SOURCE=1 -pedantic -std=c90 -Wall
|
CFLAGS := -D_XOPEN_SOURCE=600 -D_BSD_SOURCE -D_DEFAULT_SOURCE=1 -pedantic -std=c90 -Wall
|
||||||
|
|
||||||
|
|||||||
@ -20,25 +20,25 @@ endif
|
|||||||
|
|
||||||
ifeq ($(CC),clang)
|
ifeq ($(CC),clang)
|
||||||
LDFLAGS += -g -L/usr/local/lib
|
LDFLAGS += -g -L/usr/local/lib
|
||||||
CFLAGS += -fPIC -g -O0 -D_REENTRANT -I /usr/local/include -I../
|
CFLAGS += -fPIC $(OPTFLAGS) -D_REENTRANT -I /usr/local/include -I../
|
||||||
LD = clang
|
LD = clang
|
||||||
endif
|
endif
|
||||||
|
|
||||||
ifeq ($(CC),gcc)
|
ifeq ($(CC),gcc)
|
||||||
LDFLAGS += -g -L/usr/local/lib
|
LDFLAGS += -g -L/usr/local/lib
|
||||||
CFLAGS += -fPIC -g -O0 -D_REENTRANT -I /usr/local/include -I../
|
CFLAGS += -fPIC $(OPTFLAGS) -D_REENTRANT -I /usr/local/include -I../
|
||||||
LD = gcc
|
LD = gcc
|
||||||
endif
|
endif
|
||||||
|
|
||||||
ifeq ($(CC),tcc)
|
ifeq ($(CC),tcc)
|
||||||
LDFLAGS += -g -L/usr/local/lib
|
LDFLAGS += -g -L/usr/local/lib
|
||||||
CFLAGS += -Wall -Wunusupported -Wimplicit-function-declaration -I /usr/local/include -I../
|
CFLAGS += -Wall $(OPTFLAGS) -Wunusupported -Wimplicit-function-declaration -I /usr/local/include -I../
|
||||||
LD = tcc
|
LD = tcc
|
||||||
endif
|
endif
|
||||||
|
|
||||||
ifeq ($(CC),cc)
|
ifeq ($(CC),cc)
|
||||||
LDFLAGS += -g -L/usr/local/lib
|
LDFLAGS += -g -L/usr/local/lib
|
||||||
CFLAGS += -fPIC -g -O0 -D_REENTRANT -I /usr/local/include -I../
|
CFLAGS += -fPIC $(OPTFLAGS) -D_REENTRANT -I /usr/local/include -I../
|
||||||
LD = cc
|
LD = cc
|
||||||
endif
|
endif
|
||||||
|
|
||||||
|
|||||||
@ -1,7 +1,8 @@
|
|||||||
capwap/ac-descriptor/hardware/version:Bstr16: "ACTube 1.0"
|
capwap/ac-descriptor/hardware/version:Bstr16: "ACTube 1.0"
|
||||||
capwap/ac-descriptor/hardware/vendor:Bastr16: 12346
|
capwap/ac-descriptor/hardware/vendor:Bastr16: 12346
|
||||||
capwap/ssl-cert:Bstr16: "/usr/local/etc/ssl/tube.ssl"
|
capwap/ssl-cert:Str: "/usr/local/etc/ssl/tube.ssl"
|
||||||
capwap/ssl-key:Bstr16: "/usr/local/etc/key"
|
capwap/ssl-key:Str: "/usr/local/etc/key"
|
||||||
|
|
||||||
ac-descriptor/stations:Word:05
|
ac-descriptor/stations:Word:05
|
||||||
ac-descriptor/station-limit:Word:6
|
ac-descriptor/station-limit:Word:6
|
||||||
ac-descriptor/active-wtps:Word:7
|
ac-descriptor/active-wtps:Word:7
|
||||||
|
|||||||
@ -47,6 +47,7 @@ static int detect(struct conn *conn, const uint8_t * rawmsg, int rawlen, int ele
|
|||||||
int static setup_cfg(struct conn * conn)
|
int static setup_cfg(struct conn * conn)
|
||||||
{
|
{
|
||||||
int security;
|
int security;
|
||||||
|
|
||||||
security = cw_setup_dtls(conn,conn->local_cfg,"capwap",CAPWAP_CIPHER);
|
security = cw_setup_dtls(conn,conn->local_cfg,"capwap",CAPWAP_CIPHER);
|
||||||
cw_ktv_set_byte(conn->local_cfg,"ac-descriptor/security",security);
|
cw_ktv_set_byte(conn->local_cfg,"ac-descriptor/security",security);
|
||||||
|
|
||||||
|
|||||||
@ -191,6 +191,16 @@ static struct cw_Mod capwap_ac = {
|
|||||||
};
|
};
|
||||||
*/
|
*/
|
||||||
|
|
||||||
|
int static setup_cfg(struct conn * conn)
|
||||||
|
{
|
||||||
|
int security;
|
||||||
|
|
||||||
|
security = cw_setup_dtls(conn,conn->local_cfg,"cisco",CAPWAP_CIPHER);
|
||||||
|
cw_ktv_set_byte(conn->local_cfg,"ac-descriptor/security",security);
|
||||||
|
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
struct cw_Mod mod_cisco = {
|
struct cw_Mod mod_cisco = {
|
||||||
"cisco", /* name */
|
"cisco", /* name */
|
||||||
@ -198,7 +208,8 @@ struct cw_Mod mod_cisco = {
|
|||||||
detect, /* detect */
|
detect, /* detect */
|
||||||
register_messages, /* register_messages */
|
register_messages, /* register_messages */
|
||||||
NULL, /* dll_handle */
|
NULL, /* dll_handle */
|
||||||
NULL /* data */
|
NULL, /* data */
|
||||||
|
setup_cfg /* setup_cfg */
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
@ -4,6 +4,8 @@
|
|||||||
|
|
||||||
capwap/ssl-certfile:Str:"../../ssl/certs/wtp.crt"
|
capwap/ssl-certfile:Str:"../../ssl/certs/wtp.crt"
|
||||||
capwap/ssl-keyfile:Str:"../../ssl/certs/wtp.key"
|
capwap/ssl-keyfile:Str:"../../ssl/certs/wtp.key"
|
||||||
|
cisco/ssl-certfile:Str:"../../ssl/certs/wtp.crt"
|
||||||
|
cisco/ssl-keyfile:Str:"../../ssl/certs/wtp.key"
|
||||||
|
|
||||||
discovery-type:Byte:0
|
discovery-type:Byte:0
|
||||||
wtp-frame-tunnel-mode:Byte:1
|
wtp-frame-tunnel-mode:Byte:1
|
||||||
|
|||||||
@ -104,11 +104,22 @@ int run_join_d(struct conn * conn, struct sockaddr *sa)
|
|||||||
char addrstr[SOCK_ADDR_BUFSIZE];
|
char addrstr[SOCK_ADDR_BUFSIZE];
|
||||||
int sockfd;
|
int sockfd;
|
||||||
|
|
||||||
|
int rsec,lsec;
|
||||||
|
|
||||||
|
lsec = cw_ktv_get_byte(conn->local_cfg,"ac-descriptor/security",0);
|
||||||
|
rsec = cw_ktv_get_byte(conn->remote_cfg,"ac-descriptor/security",0);
|
||||||
|
|
||||||
|
if ((lsec & rsec) == 0){
|
||||||
|
cw_log(LOG_ERR, "Can't establish DTLS with AC, my sec: %d, remote sec %d",lsec,rsec);
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
|
||||||
/* struct conn *conn = get_conn();*/
|
/* struct conn *conn = get_conn();*/
|
||||||
|
|
||||||
conn->capwap_state = CAPWAP_STATE_JOIN;
|
conn->capwap_state = CAPWAP_STATE_JOIN;
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
sockfd = socket(sa->sa_family, SOCK_DGRAM, 0);
|
sockfd = socket(sa->sa_family, SOCK_DGRAM, 0);
|
||||||
if (sockfd == -1) {
|
if (sockfd == -1) {
|
||||||
cw_log(LOG_ERR, "Can't create socket: %s\n", strerror(errno));
|
cw_log(LOG_ERR, "Can't create socket: %s\n", strerror(errno));
|
||||||
@ -218,8 +229,6 @@ int run_join(struct conn *conn)
|
|||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
int join(struct conn * conn, struct cw_DiscoveryResult * dis)
|
int join(struct conn * conn, struct cw_DiscoveryResult * dis)
|
||||||
{
|
{
|
||||||
|
|
||||||
@ -232,6 +241,7 @@ int join(struct conn * conn, struct cw_DiscoveryResult * dis)
|
|||||||
char * rk;
|
char * rk;
|
||||||
char ipstr[100];
|
char ipstr[100];
|
||||||
char ac_name[CAPWAP_MAX_AC_NAME_LEN];
|
char ac_name[CAPWAP_MAX_AC_NAME_LEN];
|
||||||
|
struct sockaddr_storage sockaddr;
|
||||||
|
|
||||||
val = mavliter_get(&ii);
|
val = mavliter_get(&ii);
|
||||||
rk = val->key;
|
rk = val->key;
|
||||||
@ -248,7 +258,16 @@ int join(struct conn * conn, struct cw_DiscoveryResult * dis)
|
|||||||
strcpy(ac_name,"");
|
strcpy(ac_name,"");
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
cw_dbg(DBG_INFO, "Going to join CAPWAP controller '%s' at %s.",ac_name,ipstr);
|
cw_dbg(DBG_INFO, "Going to join CAPWAP controller '%s' at %s.",ac_name,ipstr);
|
||||||
|
|
||||||
|
conn->remote_cfg=rcfg;
|
||||||
|
|
||||||
|
/*cw_dbg_ktv_dump(conn->local_cfg,DBG_INFO,"remopte ac","preifx**: ","bottom");
|
||||||
|
*/
|
||||||
|
|
||||||
|
sock_strtoaddr(ipstr,(struct sockaddr*)(&sockaddr));
|
||||||
|
run_join_d(conn,(struct sockaddr*)(&sockaddr));
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
@ -159,6 +159,8 @@ int main (int argc, char **argv)
|
|||||||
mod->setup_cfg(conn);
|
mod->setup_cfg(conn);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/*cw_dbg_ktv_dump(conn->local_cfg,DBG_INFO,"head","BREP: ","bot");*/
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user