# wpa_supplicant config file # Copyright (c) 2014, Jouni Malinen # # This software may be distributed under the terms of the BSD license. # See README for more details. import logging logger = logging.getLogger() import os from wpasupplicant import WpaSupplicant import hostapd def check_config(config): with open(config, "r") as f: data = f.read() if "update_config=1\n" not in data: raise Exception("Missing update_config") if "device_name=name\n" not in data: raise Exception("Missing device_name") if "eapol_version=2\n" not in data: raise Exception("Missing eapol_version") if "ctrl_interface=DIR=/var/run/wpa_supplicant GROUP=" not in data: raise Exception("Missing ctrl_interface") if "blob-base64-foo={" not in data: raise Exception("Missing blob") if "cred={" not in data: raise Exception("Missing cred") if "network={" not in data: raise Exception("Missing network") if "wps_priority=5\n" not in data: raise Exception("Missing wps_priority") if "ip_addr_go=192.168.1.1\n" not in data: raise Exception("Missing ip_addr_go") if "ip_addr_mask=255.255.255.0\n" not in data: raise Exception("Missing ip_addr_mask") if "ip_addr_start=192.168.1.10\n" not in data: raise Exception("Missing ip_addr_start") if "ip_addr_end=192.168.1.20\n" not in data: raise Exception("Missing ip_addr_end") return data def test_wpas_config_file(dev, apdev, params): """wpa_supplicant config file parsing/writing""" config = os.path.join(params['logdir'], 'wpas_config_file.conf') if os.path.exists(config): try: os.remove(config) except: pass try: os.rmdir(config) except: pass wpas = WpaSupplicant(global_iface='/tmp/wpas-wlan5') try: wpas.interface_add("wlan5", config=config) initialized = True except: initialized = False if initialized: raise Exception("Missing config file did not result in an error") try: with open(config, "w") as f: f.write("update_config=1 \t\r\n") f.write("# foo\n") f.write("\n") f.write(" \t\reapol_version=2") for i in range(0, 100): f.write(" ") f.write("foo\n") f.write("device_name=name#foo\n") wpas.interface_add("wlan5", config=config) wpas.request("SET wps_priority 5") id = wpas.add_network() wpas.set_network_quoted(id, "ssid", "foo") wpas.set_network_quoted(id, "psk", "12345678") wpas.set_network(id, "bssid", "00:11:22:33:44:55") wpas.set_network(id, "proto", "RSN") wpas.set_network(id, "key_mgmt", "WPA-PSK-SHA256") wpas.set_network(id, "pairwise", "CCMP") wpas.set_network(id, "group", "CCMP") wpas.set_network(id, "auth_alg", "OPEN") id = wpas.add_cred() wpas.set_cred(id, "priority", "3") wpas.set_cred(id, "sp_priority", "6") wpas.set_cred(id, "update_identifier", "4") wpas.set_cred(id, "ocsp", "1") wpas.set_cred(id, "eap", "TTLS") wpas.set_cred(id, "req_conn_capab", "6:1234") wpas.set_cred_quoted(id, "realm", "example.com") wpas.set_cred_quoted(id, "provisioning_sp", "example.com") wpas.set_cred_quoted(id, "domain", "example.com") wpas.set_cred_quoted(id, "domain_suffix_match", "example.com") wpas.set_cred(id, "roaming_consortium", "112233") wpas.set_cred(id, "required_roaming_consortium", "112233") wpas.set_cred_quoted(id, "roaming_partner", "roaming.example.net,1,127,*") wpas.set_cred_quoted(id, "ca_cert", "/tmp/ca.pem") wpas.set_cred_quoted(id, "username", "user") wpas.set_cred_quoted(id, "password", "secret") ev = wpas.wait_event(["CRED-MODIFIED 0 password"]) wpas.request("SET blob foo 12345678") wpas.request("SET ip_addr_go 192.168.1.1") wpas.request("SET ip_addr_mask 255.255.255.0") wpas.request("SET ip_addr_start 192.168.1.10") wpas.request("SET ip_addr_end 192.168.1.20") if "OK" not in wpas.request("SAVE_CONFIG"): raise Exception("Failed to save configuration file") if "OK" not in wpas.global_request("SAVE_CONFIG"): raise Exception("Failed to save configuration file") wpas.interface_remove("wlan5") data1 = check_config(config) wpas.interface_add("wlan5", config=config) if len(wpas.list_networks()) != 1: raise Exception("Unexpected number of networks") if len(wpas.request("LIST_CREDS").splitlines()) != 2: raise Exception("Unexpected number of credentials") if "OK" not in wpas.request("SAVE_CONFIG"): raise Exception("Failed to save configuration file") data2 = check_config(config) if data1 != data2: logger.debug(data1) logger.debug(data2) raise Exception("Unexpected configuration change") wpas.request("SET update_config 0") wpas.global_request("SET update_config 0") if "OK" in wpas.request("SAVE_CONFIG"): raise Exception("SAVE_CONFIG succeeded unexpectedly") if "OK" in wpas.global_request("SAVE_CONFIG"): raise Exception("SAVE_CONFIG (global) succeeded unexpectedly") # replace the config file with a directory to break writing/renaming os.remove(config) os.mkdir(config) wpas.request("SET update_config 1") wpas.global_request("SET update_config 1") if "OK" in wpas.request("SAVE_CONFIG"): raise Exception("SAVE_CONFIG succeeded unexpectedly") if "OK" in wpas.global_request("SAVE_CONFIG"): raise Exception("SAVE_CONFIG (global) succeeded unexpectedly") finally: try: os.rmdir(config) except: pass def test_wpas_config_file_wps(dev, apdev): """wpa_supplicant config file parsing/writing with WPS""" config = "/tmp/test_wpas_config_file.conf" if os.path.exists(config): os.remove(config) params = { "ssid": "test-wps", "eap_server": "1", "wps_state": "2", "skip_cred_build": "1", "extra_cred": "wps-ctrl-cred" } hapd = hostapd.add_ap(apdev[0]['ifname'], params) wpas = WpaSupplicant(global_iface='/tmp/wpas-wlan5') try: with open(config, "w") as f: f.write("update_config=1\n") wpas.interface_add("wlan5", config=config) hapd.request("WPS_PIN any 12345670") wpas.scan_for_bss(apdev[0]['bssid'], freq="2412") wpas.request("WPS_PIN " + apdev[0]['bssid'] + " 12345670") ev = wpas.wait_event(["WPS-FAIL"], timeout=10) if ev is None: raise Exception("WPS-FAIL event timed out") with open(config, "r") as f: data = f.read() logger.info("Configuration file contents: " + data) if "network=" in data: raise Exception("Unexpected network block in configuration data") finally: try: os.remove(config) except: pass try: os.remove(config + ".tmp") except: pass try: os.rmdir(config) except: pass def test_wpas_config_file_wps2(dev, apdev): """wpa_supplicant config file parsing/writing with WPS (2)""" config = "/tmp/test_wpas_config_file.conf" if os.path.exists(config): os.remove(config) params = { "ssid": "test-wps", "eap_server": "1", "wps_state": "2", "skip_cred_build": "1", "extra_cred": "wps-ctrl-cred2" } hapd = hostapd.add_ap(apdev[0]['ifname'], params) wpas = WpaSupplicant(global_iface='/tmp/wpas-wlan5') try: with open(config, "w") as f: f.write("update_config=1\n") wpas.interface_add("wlan5", config=config) hapd.request("WPS_PIN any 12345670") wpas.scan_for_bss(apdev[0]['bssid'], freq="2412") wpas.request("WPS_PIN " + apdev[0]['bssid'] + " 12345670") ev = wpas.wait_event(["WPS-SUCCESS"], timeout=10) if ev is None: raise Exception("WPS-SUCCESS event timed out") with open(config, "r") as f: data = f.read() logger.info("Configuration file contents: " + data) with open(config, "r") as f: data = f.read() if "network=" not in data: raise Exception("Missing network block in configuration data") if "ssid=410a420d430044" not in data: raise Exception("Unexpected ssid parameter value") finally: try: os.remove(config) except: pass try: os.remove(config + ".tmp") except: pass try: os.rmdir(config) except: pass def test_wpas_config_file_set_psk(dev): """wpa_supplicant config file parsing/writing with arbitrary PSK value""" config = "/tmp/test_wpas_config_file.conf" if os.path.exists(config): os.remove(config) wpas = WpaSupplicant(global_iface='/tmp/wpas-wlan5') try: with open(config, "w") as f: f.write("update_config=1\n") wpas.interface_add("wlan5", config=config) id = wpas.add_network() wpas.set_network_quoted(id, "ssid", "foo") if "OK" in wpas.request('SET_NETWORK %d psk "12345678"\n}\nmodel_name=foobar\nnetwork={\n#\"' % id): raise Exception("Invalid psk value accepted") if "OK" not in wpas.request("SAVE_CONFIG"): raise Exception("Failed to save configuration file") with open(config, "r") as f: data = f.read() logger.info("Configuration file contents: " + data) if "model_name" in data: raise Exception("Unexpected parameter added to configuration") wpas.interface_remove("wlan5") wpas.interface_add("wlan5", config=config) finally: try: os.remove(config) except: pass try: os.remove(config + ".tmp") except: pass try: os.rmdir(config) except: pass def test_wpas_config_file_set_cred(dev): """wpa_supplicant config file parsing/writing with arbitrary cred values""" config = "/tmp/test_wpas_config_file.conf" if os.path.exists(config): os.remove(config) wpas = WpaSupplicant(global_iface='/tmp/wpas-wlan5') try: with open(config, "w") as f: f.write("update_config=1\n") wpas.interface_add("wlan5", config=config) id = wpas.add_cred() wpas.set_cred_quoted(id, "username", "hello") fields = [ "username", "milenage", "imsi", "password", "realm", "phase1", "phase2", "provisioning_sp" ] for field in fields: if "FAIL" not in wpas.request('SET_CRED %d %s "hello"\n}\nmodel_name=foobar\ncred={\n#\"' % (id, field)): raise Exception("Invalid %s value accepted" % field) if "OK" not in wpas.request("SAVE_CONFIG"): raise Exception("Failed to save configuration file") with open(config, "r") as f: data = f.read() logger.info("Configuration file contents: " + data) if "model_name" in data: raise Exception("Unexpected parameter added to configuration") wpas.interface_remove("wlan5") wpas.interface_add("wlan5", config=config) finally: try: os.remove(config) except: pass try: os.remove(config + ".tmp") except: pass try: os.rmdir(config) except: pass def test_wpas_config_file_set_global(dev): """wpa_supplicant config file parsing/writing with arbitrary global values""" config = "/tmp/test_wpas_config_file.conf" if os.path.exists(config): os.remove(config) wpas = WpaSupplicant(global_iface='/tmp/wpas-wlan5') try: with open(config, "w") as f: f.write("update_config=1\n") wpas.interface_add("wlan5", config=config) fields = [ "model_name", "device_name", "ctrl_interface_group", "opensc_engine_path", "pkcs11_engine_path", "pkcs11_module_path", "openssl_ciphers", "pcsc_reader", "pcsc_pin", "driver_param", "manufacturer", "model_name", "model_number", "serial_number", "config_methods", "p2p_ssid_postfix", "autoscan", "ext_password_backend", "osu_dir", "wowlan_triggers", "fst_group_id", "sched_scan_plans", "non_pref_chan" ] for field in fields: if "FAIL" not in wpas.request('SET %s hello\nmodel_name=foobar' % field): raise Exception("Invalid %s value accepted" % field) if "OK" not in wpas.request("SAVE_CONFIG"): raise Exception("Failed to save configuration file") with open(config, "r") as f: data = f.read() logger.info("Configuration file contents: " + data) if "model_name" in data: raise Exception("Unexpected parameter added to configuration") wpas.interface_remove("wlan5") wpas.interface_add("wlan5", config=config) finally: try: os.remove(config) except: pass try: os.remove(config + ".tmp") except: pass try: os.rmdir(config) except: pass