2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright 2013-2014 Intel Mobile Communications GmbH
9 #include <linux/module.h>
10 #include <linux/err.h>
11 #include <linux/slab.h>
12 #include <linux/list.h>
13 #include <linux/if_ether.h>
14 #include <linux/ieee80211.h>
15 #include <linux/nl80211.h>
16 #include <linux/rtnetlink.h>
17 #include <linux/netlink.h>
18 #include <linux/etherdevice.h>
19 #include <net/net_namespace.h>
20 #include <net/genetlink.h>
21 #include <net/cfg80211.h>
23 #include <net/inet_connection_sock.h>
29 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
30 struct genl_info *info,
31 struct cfg80211_crypto_settings *settings,
34 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
35 struct genl_info *info);
36 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
37 struct genl_info *info);
39 /* the netlink family */
40 static struct genl_family nl80211_fam = {
41 .id = GENL_ID_GENERATE, /* don't bother with a hardcoded ID */
42 .name = NL80211_GENL_NAME, /* have users key off the name instead */
43 .hdrsize = 0, /* no private header */
44 .version = 1, /* no particular meaning now */
45 .maxattr = NL80211_ATTR_MAX,
47 .pre_doit = nl80211_pre_doit,
48 .post_doit = nl80211_post_doit,
51 /* multicast groups */
52 enum nl80211_multicast_groups {
55 NL80211_MCGRP_REGULATORY,
58 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
61 static const struct genl_multicast_group nl80211_mcgrps[] = {
62 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
63 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
64 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
65 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
66 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
67 #ifdef CONFIG_NL80211_TESTMODE
68 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
72 /* returns ERR_PTR values */
73 static struct wireless_dev *
74 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
76 struct cfg80211_registered_device *rdev;
77 struct wireless_dev *result = NULL;
78 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
79 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
86 if (!have_ifidx && !have_wdev_id)
87 return ERR_PTR(-EINVAL);
90 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
92 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
93 wiphy_idx = wdev_id >> 32;
96 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
97 struct wireless_dev *wdev;
99 if (wiphy_net(&rdev->wiphy) != netns)
102 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
105 list_for_each_entry(wdev, &rdev->wdev_list, list) {
106 if (have_ifidx && wdev->netdev &&
107 wdev->netdev->ifindex == ifidx) {
111 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
123 return ERR_PTR(-ENODEV);
126 static struct cfg80211_registered_device *
127 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
129 struct cfg80211_registered_device *rdev = NULL, *tmp;
130 struct net_device *netdev;
134 if (!attrs[NL80211_ATTR_WIPHY] &&
135 !attrs[NL80211_ATTR_IFINDEX] &&
136 !attrs[NL80211_ATTR_WDEV])
137 return ERR_PTR(-EINVAL);
139 if (attrs[NL80211_ATTR_WIPHY])
140 rdev = cfg80211_rdev_by_wiphy_idx(
141 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
143 if (attrs[NL80211_ATTR_WDEV]) {
144 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
145 struct wireless_dev *wdev;
148 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
150 /* make sure wdev exists */
151 list_for_each_entry(wdev, &tmp->wdev_list, list) {
152 if (wdev->identifier != (u32)wdev_id)
161 if (rdev && tmp != rdev)
162 return ERR_PTR(-EINVAL);
167 if (attrs[NL80211_ATTR_IFINDEX]) {
168 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
169 netdev = __dev_get_by_index(netns, ifindex);
171 if (netdev->ieee80211_ptr)
173 netdev->ieee80211_ptr->wiphy);
177 /* not wireless device -- return error */
179 return ERR_PTR(-EINVAL);
181 /* mismatch -- return error */
182 if (rdev && tmp != rdev)
183 return ERR_PTR(-EINVAL);
190 return ERR_PTR(-ENODEV);
192 if (netns != wiphy_net(&rdev->wiphy))
193 return ERR_PTR(-ENODEV);
199 * This function returns a pointer to the driver
200 * that the genl_info item that is passed refers to.
202 * The result of this can be a PTR_ERR and hence must
203 * be checked with IS_ERR() for errors.
205 static struct cfg80211_registered_device *
206 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
208 return __cfg80211_rdev_from_attrs(netns, info->attrs);
211 /* policy for the attributes */
212 static const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
213 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
214 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
216 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
218 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
219 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
220 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
221 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
222 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
224 [NL80211_ATTR_WIPHY_RETRY_SHORT] = { .type = NLA_U8 },
225 [NL80211_ATTR_WIPHY_RETRY_LONG] = { .type = NLA_U8 },
226 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
227 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
228 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
229 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
231 [NL80211_ATTR_IFTYPE] = { .type = NLA_U32 },
232 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
233 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
235 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
236 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
238 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
239 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
240 .len = WLAN_MAX_KEY_LEN },
241 [NL80211_ATTR_KEY_IDX] = { .type = NLA_U8 },
242 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
243 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
244 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
245 [NL80211_ATTR_KEY_TYPE] = { .type = NLA_U32 },
247 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
248 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
249 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
250 .len = IEEE80211_MAX_DATA_LEN },
251 [NL80211_ATTR_BEACON_TAIL] = { .type = NLA_BINARY,
252 .len = IEEE80211_MAX_DATA_LEN },
253 [NL80211_ATTR_STA_AID] = { .type = NLA_U16 },
254 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
255 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
256 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
257 .len = NL80211_MAX_SUPP_RATES },
258 [NL80211_ATTR_STA_PLINK_ACTION] = { .type = NLA_U8 },
259 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
260 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
261 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
262 .len = IEEE80211_MAX_MESH_ID_LEN },
263 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
265 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
266 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
268 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
269 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
270 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
271 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
272 .len = NL80211_MAX_SUPP_RATES },
273 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
275 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
276 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
278 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
280 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
281 [NL80211_ATTR_IE] = { .type = NLA_BINARY,
282 .len = IEEE80211_MAX_DATA_LEN },
283 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
284 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
286 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
287 .len = IEEE80211_MAX_SSID_LEN },
288 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
289 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
290 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
291 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
292 [NL80211_ATTR_USE_MFP] = { .type = NLA_U32 },
293 [NL80211_ATTR_STA_FLAGS2] = {
294 .len = sizeof(struct nl80211_sta_flag_update),
296 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
297 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
298 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
299 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
300 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
301 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
302 [NL80211_ATTR_PID] = { .type = NLA_U32 },
303 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
304 [NL80211_ATTR_PMKID] = { .type = NLA_BINARY,
305 .len = WLAN_PMKID_LEN },
306 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
307 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
308 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
309 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
310 .len = IEEE80211_MAX_DATA_LEN },
311 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
312 [NL80211_ATTR_PS_STATE] = { .type = NLA_U32 },
313 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
314 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
315 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
316 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
317 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
318 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
319 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
320 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
321 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
322 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
323 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
324 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
325 [NL80211_ATTR_STA_PLINK_STATE] = { .type = NLA_U8 },
326 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
327 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
328 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
329 [NL80211_ATTR_HIDDEN_SSID] = { .type = NLA_U32 },
330 [NL80211_ATTR_IE_PROBE_RESP] = { .type = NLA_BINARY,
331 .len = IEEE80211_MAX_DATA_LEN },
332 [NL80211_ATTR_IE_ASSOC_RESP] = { .type = NLA_BINARY,
333 .len = IEEE80211_MAX_DATA_LEN },
334 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
335 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
336 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
337 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
338 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
339 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
340 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
341 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
342 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
343 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
344 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
345 .len = IEEE80211_MAX_DATA_LEN },
346 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
347 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
348 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
349 .len = NL80211_HT_CAPABILITY_LEN
351 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
352 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
353 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
354 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
355 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
356 [NL80211_ATTR_SAE_DATA] = { .type = NLA_BINARY, },
357 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
358 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
359 [NL80211_ATTR_P2P_CTWINDOW] = { .type = NLA_U8 },
360 [NL80211_ATTR_P2P_OPPPS] = { .type = NLA_U8 },
361 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
362 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
363 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
364 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
365 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
366 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
367 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
368 .len = NL80211_VHT_CAPABILITY_LEN,
370 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
371 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
372 .len = IEEE80211_MAX_DATA_LEN },
373 [NL80211_ATTR_PEER_AID] = { .type = NLA_U16 },
374 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
375 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
376 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
377 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
378 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
379 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
380 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
381 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
382 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
383 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
384 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
385 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
386 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
387 .len = IEEE80211_QOS_MAP_LEN_MAX },
388 [NL80211_ATTR_MAC_HINT] = { .len = ETH_ALEN },
389 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
390 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
391 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
392 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
393 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
394 [NL80211_ATTR_TSID] = { .type = NLA_U8 },
395 [NL80211_ATTR_USER_PRIO] = { .type = NLA_U8 },
396 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
397 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
398 [NL80211_ATTR_MAC_MASK] = { .len = ETH_ALEN },
399 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
402 /* policy for the key attributes */
403 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
404 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
405 [NL80211_KEY_IDX] = { .type = NLA_U8 },
406 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
407 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
408 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
409 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
410 [NL80211_KEY_TYPE] = { .type = NLA_U32 },
411 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
414 /* policy for the key default flags */
415 static const struct nla_policy
416 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
417 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
418 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
421 /* policy for WoWLAN attributes */
422 static const struct nla_policy
423 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
424 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
425 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
426 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
427 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
428 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
429 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
430 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
431 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
432 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
433 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
436 static const struct nla_policy
437 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
438 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
439 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
440 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
441 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
442 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
443 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
444 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
445 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
447 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
448 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
450 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
451 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
452 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
455 /* policy for coalesce rule attributes */
456 static const struct nla_policy
457 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
458 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
459 [NL80211_ATTR_COALESCE_RULE_CONDITION] = { .type = NLA_U32 },
460 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
463 /* policy for GTK rekey offload attributes */
464 static const struct nla_policy
465 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
466 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
467 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
468 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
471 static const struct nla_policy
472 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
473 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
474 .len = IEEE80211_MAX_SSID_LEN },
475 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
478 static int nl80211_prepare_wdev_dump(struct sk_buff *skb,
479 struct netlink_callback *cb,
480 struct cfg80211_registered_device **rdev,
481 struct wireless_dev **wdev)
488 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
489 nl80211_fam.attrbuf, nl80211_fam.maxattr,
494 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk),
495 nl80211_fam.attrbuf);
497 err = PTR_ERR(*wdev);
500 *rdev = wiphy_to_rdev((*wdev)->wiphy);
501 /* 0 is the first index - add 1 to parse only once */
502 cb->args[0] = (*rdev)->wiphy_idx + 1;
503 cb->args[1] = (*wdev)->identifier;
505 /* subtract the 1 again here */
506 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
507 struct wireless_dev *tmp;
513 *rdev = wiphy_to_rdev(wiphy);
516 list_for_each_entry(tmp, &(*rdev)->wdev_list, list) {
517 if (tmp->identifier == cb->args[1]) {
535 static void nl80211_finish_wdev_dump(struct cfg80211_registered_device *rdev)
541 static bool is_valid_ie_attr(const struct nlattr *attr)
549 pos = nla_data(attr);
570 /* message building helper */
571 static inline void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
574 /* since there is no private header just add the generic one */
575 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
578 static int nl80211_msg_put_channel(struct sk_buff *msg,
579 struct ieee80211_channel *chan,
582 /* Some channels must be completely excluded from the
583 * list to protect old user-space tools from breaking
585 if (!large && chan->flags &
586 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
589 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
591 goto nla_put_failure;
593 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
594 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
595 goto nla_put_failure;
596 if (chan->flags & IEEE80211_CHAN_NO_IR) {
597 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
598 goto nla_put_failure;
599 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
600 goto nla_put_failure;
602 if (chan->flags & IEEE80211_CHAN_RADAR) {
603 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
604 goto nla_put_failure;
608 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
610 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
612 goto nla_put_failure;
613 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
615 goto nla_put_failure;
617 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
619 goto nla_put_failure;
624 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
625 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
626 goto nla_put_failure;
627 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
628 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
629 goto nla_put_failure;
630 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
631 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
632 goto nla_put_failure;
633 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
634 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
635 goto nla_put_failure;
636 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
637 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
638 goto nla_put_failure;
639 if ((chan->flags & IEEE80211_CHAN_GO_CONCURRENT) &&
640 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_GO_CONCURRENT))
641 goto nla_put_failure;
642 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
643 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
644 goto nla_put_failure;
645 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
646 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
647 goto nla_put_failure;
650 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
651 DBM_TO_MBM(chan->max_power)))
652 goto nla_put_failure;
660 /* netlink command implementations */
667 bool def_uni, def_multi;
670 static int nl80211_parse_key_new(struct nlattr *key, struct key_parse *k)
672 struct nlattr *tb[NL80211_KEY_MAX + 1];
673 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
678 k->def = !!tb[NL80211_KEY_DEFAULT];
679 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
688 if (tb[NL80211_KEY_IDX])
689 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
691 if (tb[NL80211_KEY_DATA]) {
692 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
693 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
696 if (tb[NL80211_KEY_SEQ]) {
697 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
698 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
701 if (tb[NL80211_KEY_CIPHER])
702 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
704 if (tb[NL80211_KEY_TYPE]) {
705 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
706 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
710 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
711 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
712 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
713 tb[NL80211_KEY_DEFAULT_TYPES],
714 nl80211_key_default_policy);
718 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
719 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
725 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
727 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
728 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
729 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
732 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
733 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
734 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
737 if (info->attrs[NL80211_ATTR_KEY_IDX])
738 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
740 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
741 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
743 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
744 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
753 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
754 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
755 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
759 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
760 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
761 int err = nla_parse_nested(
762 kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
763 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
764 nl80211_key_default_policy);
768 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
769 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
775 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
779 memset(k, 0, sizeof(*k));
783 if (info->attrs[NL80211_ATTR_KEY])
784 err = nl80211_parse_key_new(info->attrs[NL80211_ATTR_KEY], k);
786 err = nl80211_parse_key_old(info, k);
791 if (k->def && k->defmgmt)
795 if (k->def_uni || !k->def_multi)
801 if (k->idx < 4 || k->idx > 5)
804 if (k->idx < 0 || k->idx > 3)
807 if (k->idx < 0 || k->idx > 5)
815 static struct cfg80211_cached_keys *
816 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
817 struct nlattr *keys, bool *no_ht)
819 struct key_parse parse;
821 struct cfg80211_cached_keys *result;
822 int rem, err, def = 0;
824 result = kzalloc(sizeof(*result), GFP_KERNEL);
826 return ERR_PTR(-ENOMEM);
829 result->defmgmt = -1;
831 nla_for_each_nested(key, keys, rem) {
832 memset(&parse, 0, sizeof(parse));
835 err = nl80211_parse_key_new(key, &parse);
841 if (parse.idx < 0 || parse.idx > 4)
847 result->def = parse.idx;
848 if (!parse.def_uni || !parse.def_multi)
850 } else if (parse.defmgmt)
852 err = cfg80211_validate_key_settings(rdev, &parse.p,
853 parse.idx, false, NULL);
856 result->params[parse.idx].cipher = parse.p.cipher;
857 result->params[parse.idx].key_len = parse.p.key_len;
858 result->params[parse.idx].key = result->data[parse.idx];
859 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
861 if (parse.p.cipher == WLAN_CIPHER_SUITE_WEP40 ||
862 parse.p.cipher == WLAN_CIPHER_SUITE_WEP104) {
874 static int nl80211_key_allowed(struct wireless_dev *wdev)
876 ASSERT_WDEV_LOCK(wdev);
878 switch (wdev->iftype) {
879 case NL80211_IFTYPE_AP:
880 case NL80211_IFTYPE_AP_VLAN:
881 case NL80211_IFTYPE_P2P_GO:
882 case NL80211_IFTYPE_MESH_POINT:
884 case NL80211_IFTYPE_ADHOC:
885 case NL80211_IFTYPE_STATION:
886 case NL80211_IFTYPE_P2P_CLIENT:
887 if (!wdev->current_bss)
890 case NL80211_IFTYPE_UNSPECIFIED:
891 case NL80211_IFTYPE_OCB:
892 case NL80211_IFTYPE_MONITOR:
893 case NL80211_IFTYPE_P2P_DEVICE:
894 case NL80211_IFTYPE_WDS:
895 case NUM_NL80211_IFTYPES:
902 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
905 struct ieee80211_channel *chan;
909 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
910 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
915 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
917 struct nlattr *nl_modes = nla_nest_start(msg, attr);
921 goto nla_put_failure;
925 if ((ifmodes & 1) && nla_put_flag(msg, i))
926 goto nla_put_failure;
931 nla_nest_end(msg, nl_modes);
938 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
942 struct nlattr *nl_combis;
945 nl_combis = nla_nest_start(msg,
946 NL80211_ATTR_INTERFACE_COMBINATIONS);
948 goto nla_put_failure;
950 for (i = 0; i < wiphy->n_iface_combinations; i++) {
951 const struct ieee80211_iface_combination *c;
952 struct nlattr *nl_combi, *nl_limits;
954 c = &wiphy->iface_combinations[i];
956 nl_combi = nla_nest_start(msg, i + 1);
958 goto nla_put_failure;
960 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
962 goto nla_put_failure;
964 for (j = 0; j < c->n_limits; j++) {
965 struct nlattr *nl_limit;
967 nl_limit = nla_nest_start(msg, j + 1);
969 goto nla_put_failure;
970 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
972 goto nla_put_failure;
973 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
975 goto nla_put_failure;
976 nla_nest_end(msg, nl_limit);
979 nla_nest_end(msg, nl_limits);
981 if (c->beacon_int_infra_match &&
982 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
983 goto nla_put_failure;
984 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
985 c->num_different_channels) ||
986 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
988 goto nla_put_failure;
990 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
991 c->radar_detect_widths) ||
992 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
993 c->radar_detect_regions)))
994 goto nla_put_failure;
996 nla_nest_end(msg, nl_combi);
999 nla_nest_end(msg, nl_combis);
1007 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1008 struct sk_buff *msg)
1010 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1011 struct nlattr *nl_tcp;
1016 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1020 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1021 tcp->data_payload_max))
1024 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1025 tcp->data_payload_max))
1028 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1031 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1032 sizeof(*tcp->tok), tcp->tok))
1035 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1036 tcp->data_interval_max))
1039 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1040 tcp->wake_payload_max))
1043 nla_nest_end(msg, nl_tcp);
1047 static int nl80211_send_wowlan(struct sk_buff *msg,
1048 struct cfg80211_registered_device *rdev,
1051 struct nlattr *nl_wowlan;
1053 if (!rdev->wiphy.wowlan)
1056 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1060 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1061 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1062 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1063 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1064 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1065 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1066 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1067 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1068 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1069 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1070 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1071 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1072 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1073 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1074 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1075 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1078 if (rdev->wiphy.wowlan->n_patterns) {
1079 struct nl80211_pattern_support pat = {
1080 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1081 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1082 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1083 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1086 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1091 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1094 /* TODO: send wowlan net detect */
1096 nla_nest_end(msg, nl_wowlan);
1102 static int nl80211_send_coalesce(struct sk_buff *msg,
1103 struct cfg80211_registered_device *rdev)
1105 struct nl80211_coalesce_rule_support rule;
1107 if (!rdev->wiphy.coalesce)
1110 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1111 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1112 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1113 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1114 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1115 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1117 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1123 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1124 struct ieee80211_supported_band *sband)
1126 struct nlattr *nl_rates, *nl_rate;
1127 struct ieee80211_rate *rate;
1131 if (sband->ht_cap.ht_supported &&
1132 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1133 sizeof(sband->ht_cap.mcs),
1134 &sband->ht_cap.mcs) ||
1135 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1136 sband->ht_cap.cap) ||
1137 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1138 sband->ht_cap.ampdu_factor) ||
1139 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1140 sband->ht_cap.ampdu_density)))
1144 if (sband->vht_cap.vht_supported &&
1145 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1146 sizeof(sband->vht_cap.vht_mcs),
1147 &sband->vht_cap.vht_mcs) ||
1148 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1149 sband->vht_cap.cap)))
1153 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1157 for (i = 0; i < sband->n_bitrates; i++) {
1158 nl_rate = nla_nest_start(msg, i);
1162 rate = &sband->bitrates[i];
1163 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1166 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1168 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1171 nla_nest_end(msg, nl_rate);
1174 nla_nest_end(msg, nl_rates);
1180 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1181 const struct ieee80211_txrx_stypes *mgmt_stypes)
1184 struct nlattr *nl_ftypes, *nl_ifs;
1185 enum nl80211_iftype ift;
1191 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1195 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1196 nl_ftypes = nla_nest_start(msg, ift);
1200 stypes = mgmt_stypes[ift].tx;
1203 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1204 (i << 4) | IEEE80211_FTYPE_MGMT))
1209 nla_nest_end(msg, nl_ftypes);
1212 nla_nest_end(msg, nl_ifs);
1214 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1218 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1219 nl_ftypes = nla_nest_start(msg, ift);
1223 stypes = mgmt_stypes[ift].rx;
1226 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1227 (i << 4) | IEEE80211_FTYPE_MGMT))
1232 nla_nest_end(msg, nl_ftypes);
1234 nla_nest_end(msg, nl_ifs);
1239 struct nl80211_dump_wiphy_state {
1242 long split_start, band_start, chan_start;
1246 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1247 enum nl80211_commands cmd,
1248 struct sk_buff *msg, u32 portid, u32 seq,
1249 int flags, struct nl80211_dump_wiphy_state *state)
1252 struct nlattr *nl_bands, *nl_band;
1253 struct nlattr *nl_freqs, *nl_freq;
1254 struct nlattr *nl_cmds;
1255 enum ieee80211_band band;
1256 struct ieee80211_channel *chan;
1258 const struct ieee80211_txrx_stypes *mgmt_stypes =
1259 rdev->wiphy.mgmt_stypes;
1262 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1266 if (WARN_ON(!state))
1269 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1270 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1271 wiphy_name(&rdev->wiphy)) ||
1272 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1273 cfg80211_rdev_list_generation))
1274 goto nla_put_failure;
1276 if (cmd != NL80211_CMD_NEW_WIPHY)
1279 switch (state->split_start) {
1281 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1282 rdev->wiphy.retry_short) ||
1283 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1284 rdev->wiphy.retry_long) ||
1285 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1286 rdev->wiphy.frag_threshold) ||
1287 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1288 rdev->wiphy.rts_threshold) ||
1289 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1290 rdev->wiphy.coverage_class) ||
1291 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1292 rdev->wiphy.max_scan_ssids) ||
1293 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1294 rdev->wiphy.max_sched_scan_ssids) ||
1295 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1296 rdev->wiphy.max_scan_ie_len) ||
1297 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1298 rdev->wiphy.max_sched_scan_ie_len) ||
1299 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1300 rdev->wiphy.max_match_sets))
1301 goto nla_put_failure;
1303 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1304 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1305 goto nla_put_failure;
1306 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1307 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1308 goto nla_put_failure;
1309 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1310 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1311 goto nla_put_failure;
1312 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1313 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1314 goto nla_put_failure;
1315 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1316 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1317 goto nla_put_failure;
1318 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1319 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1320 goto nla_put_failure;
1321 state->split_start++;
1325 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1326 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1327 rdev->wiphy.cipher_suites))
1328 goto nla_put_failure;
1330 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1331 rdev->wiphy.max_num_pmkids))
1332 goto nla_put_failure;
1334 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1335 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1336 goto nla_put_failure;
1338 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1339 rdev->wiphy.available_antennas_tx) ||
1340 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1341 rdev->wiphy.available_antennas_rx))
1342 goto nla_put_failure;
1344 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1345 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1346 rdev->wiphy.probe_resp_offload))
1347 goto nla_put_failure;
1349 if ((rdev->wiphy.available_antennas_tx ||
1350 rdev->wiphy.available_antennas_rx) &&
1351 rdev->ops->get_antenna) {
1352 u32 tx_ant = 0, rx_ant = 0;
1354 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1356 if (nla_put_u32(msg,
1357 NL80211_ATTR_WIPHY_ANTENNA_TX,
1360 NL80211_ATTR_WIPHY_ANTENNA_RX,
1362 goto nla_put_failure;
1366 state->split_start++;
1370 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1371 rdev->wiphy.interface_modes))
1372 goto nla_put_failure;
1373 state->split_start++;
1377 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1379 goto nla_put_failure;
1381 for (band = state->band_start;
1382 band < IEEE80211_NUM_BANDS; band++) {
1383 struct ieee80211_supported_band *sband;
1385 sband = rdev->wiphy.bands[band];
1390 nl_band = nla_nest_start(msg, band);
1392 goto nla_put_failure;
1394 switch (state->chan_start) {
1396 if (nl80211_send_band_rateinfo(msg, sband))
1397 goto nla_put_failure;
1398 state->chan_start++;
1402 /* add frequencies */
1403 nl_freqs = nla_nest_start(
1404 msg, NL80211_BAND_ATTR_FREQS);
1406 goto nla_put_failure;
1408 for (i = state->chan_start - 1;
1409 i < sband->n_channels;
1411 nl_freq = nla_nest_start(msg, i);
1413 goto nla_put_failure;
1415 chan = &sband->channels[i];
1417 if (nl80211_msg_put_channel(
1420 goto nla_put_failure;
1422 nla_nest_end(msg, nl_freq);
1426 if (i < sband->n_channels)
1427 state->chan_start = i + 2;
1429 state->chan_start = 0;
1430 nla_nest_end(msg, nl_freqs);
1433 nla_nest_end(msg, nl_band);
1436 /* start again here */
1437 if (state->chan_start)
1442 nla_nest_end(msg, nl_bands);
1444 if (band < IEEE80211_NUM_BANDS)
1445 state->band_start = band + 1;
1447 state->band_start = 0;
1449 /* if bands & channels are done, continue outside */
1450 if (state->band_start == 0 && state->chan_start == 0)
1451 state->split_start++;
1455 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1457 goto nla_put_failure;
1460 #define CMD(op, n) \
1462 if (rdev->ops->op) { \
1464 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1465 goto nla_put_failure; \
1469 CMD(add_virtual_intf, NEW_INTERFACE);
1470 CMD(change_virtual_intf, SET_INTERFACE);
1471 CMD(add_key, NEW_KEY);
1472 CMD(start_ap, START_AP);
1473 CMD(add_station, NEW_STATION);
1474 CMD(add_mpath, NEW_MPATH);
1475 CMD(update_mesh_config, SET_MESH_CONFIG);
1476 CMD(change_bss, SET_BSS);
1477 CMD(auth, AUTHENTICATE);
1478 CMD(assoc, ASSOCIATE);
1479 CMD(deauth, DEAUTHENTICATE);
1480 CMD(disassoc, DISASSOCIATE);
1481 CMD(join_ibss, JOIN_IBSS);
1482 CMD(join_mesh, JOIN_MESH);
1483 CMD(set_pmksa, SET_PMKSA);
1484 CMD(del_pmksa, DEL_PMKSA);
1485 CMD(flush_pmksa, FLUSH_PMKSA);
1486 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1487 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1488 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1489 CMD(mgmt_tx, FRAME);
1490 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1491 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1493 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1494 goto nla_put_failure;
1496 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1497 rdev->ops->join_mesh) {
1499 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1500 goto nla_put_failure;
1502 CMD(set_wds_peer, SET_WDS_PEER);
1503 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1504 CMD(tdls_mgmt, TDLS_MGMT);
1505 CMD(tdls_oper, TDLS_OPER);
1507 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN)
1508 CMD(sched_scan_start, START_SCHED_SCAN);
1509 CMD(probe_client, PROBE_CLIENT);
1510 CMD(set_noack_map, SET_NOACK_MAP);
1511 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1513 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1514 goto nla_put_failure;
1516 CMD(start_p2p_device, START_P2P_DEVICE);
1517 CMD(set_mcast_rate, SET_MCAST_RATE);
1518 #ifdef CONFIG_NL80211_TESTMODE
1519 CMD(testmode_cmd, TESTMODE);
1522 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1523 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1524 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1525 CMD(channel_switch, CHANNEL_SWITCH);
1526 CMD(set_qos_map, SET_QOS_MAP);
1527 if (rdev->wiphy.features &
1528 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
1529 CMD(add_tx_ts, ADD_TX_TS);
1531 /* add into the if now */
1534 if (rdev->ops->connect || rdev->ops->auth) {
1536 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1537 goto nla_put_failure;
1540 if (rdev->ops->disconnect || rdev->ops->deauth) {
1542 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1543 goto nla_put_failure;
1546 nla_nest_end(msg, nl_cmds);
1547 state->split_start++;
1551 if (rdev->ops->remain_on_channel &&
1552 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
1554 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
1555 rdev->wiphy.max_remain_on_channel_duration))
1556 goto nla_put_failure;
1558 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
1559 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
1560 goto nla_put_failure;
1562 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
1563 goto nla_put_failure;
1564 state->split_start++;
1569 if (nl80211_send_wowlan(msg, rdev, state->split))
1570 goto nla_put_failure;
1571 state->split_start++;
1575 state->split_start++;
1578 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
1579 rdev->wiphy.software_iftypes))
1580 goto nla_put_failure;
1582 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
1584 goto nla_put_failure;
1586 state->split_start++;
1590 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
1591 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
1592 rdev->wiphy.ap_sme_capa))
1593 goto nla_put_failure;
1595 features = rdev->wiphy.features;
1597 * We can only add the per-channel limit information if the
1598 * dump is split, otherwise it makes it too big. Therefore
1599 * only advertise it in that case.
1602 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
1603 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
1604 goto nla_put_failure;
1606 if (rdev->wiphy.ht_capa_mod_mask &&
1607 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
1608 sizeof(*rdev->wiphy.ht_capa_mod_mask),
1609 rdev->wiphy.ht_capa_mod_mask))
1610 goto nla_put_failure;
1612 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
1613 rdev->wiphy.max_acl_mac_addrs &&
1614 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
1615 rdev->wiphy.max_acl_mac_addrs))
1616 goto nla_put_failure;
1619 * Any information below this point is only available to
1620 * applications that can deal with it being split. This
1621 * helps ensure that newly added capabilities don't break
1622 * older tools by overrunning their buffers.
1624 * We still increment split_start so that in the split
1625 * case we'll continue with more data in the next round,
1626 * but break unconditionally so unsplit data stops here.
1628 state->split_start++;
1631 if (rdev->wiphy.extended_capabilities &&
1632 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
1633 rdev->wiphy.extended_capabilities_len,
1634 rdev->wiphy.extended_capabilities) ||
1635 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
1636 rdev->wiphy.extended_capabilities_len,
1637 rdev->wiphy.extended_capabilities_mask)))
1638 goto nla_put_failure;
1640 if (rdev->wiphy.vht_capa_mod_mask &&
1641 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
1642 sizeof(*rdev->wiphy.vht_capa_mod_mask),
1643 rdev->wiphy.vht_capa_mod_mask))
1644 goto nla_put_failure;
1646 state->split_start++;
1649 if (nl80211_send_coalesce(msg, rdev))
1650 goto nla_put_failure;
1652 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
1653 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
1654 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
1655 goto nla_put_failure;
1657 if (rdev->wiphy.max_ap_assoc_sta &&
1658 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
1659 rdev->wiphy.max_ap_assoc_sta))
1660 goto nla_put_failure;
1662 state->split_start++;
1665 if (rdev->wiphy.n_vendor_commands) {
1666 const struct nl80211_vendor_cmd_info *info;
1667 struct nlattr *nested;
1669 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
1671 goto nla_put_failure;
1673 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
1674 info = &rdev->wiphy.vendor_commands[i].info;
1675 if (nla_put(msg, i + 1, sizeof(*info), info))
1676 goto nla_put_failure;
1678 nla_nest_end(msg, nested);
1681 if (rdev->wiphy.n_vendor_events) {
1682 const struct nl80211_vendor_cmd_info *info;
1683 struct nlattr *nested;
1685 nested = nla_nest_start(msg,
1686 NL80211_ATTR_VENDOR_EVENTS);
1688 goto nla_put_failure;
1690 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
1691 info = &rdev->wiphy.vendor_events[i];
1692 if (nla_put(msg, i + 1, sizeof(*info), info))
1693 goto nla_put_failure;
1695 nla_nest_end(msg, nested);
1697 state->split_start++;
1700 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
1701 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
1702 rdev->wiphy.max_num_csa_counters))
1703 goto nla_put_failure;
1705 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
1706 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
1707 goto nla_put_failure;
1709 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
1710 sizeof(rdev->wiphy.ext_features),
1711 rdev->wiphy.ext_features))
1712 goto nla_put_failure;
1715 state->split_start = 0;
1719 return genlmsg_end(msg, hdr);
1722 genlmsg_cancel(msg, hdr);
1726 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
1727 struct netlink_callback *cb,
1728 struct nl80211_dump_wiphy_state *state)
1730 struct nlattr **tb = nl80211_fam.attrbuf;
1731 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
1732 tb, nl80211_fam.maxattr, nl80211_policy);
1733 /* ignore parse errors for backward compatibility */
1737 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
1738 if (tb[NL80211_ATTR_WIPHY])
1739 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
1740 if (tb[NL80211_ATTR_WDEV])
1741 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
1742 if (tb[NL80211_ATTR_IFINDEX]) {
1743 struct net_device *netdev;
1744 struct cfg80211_registered_device *rdev;
1745 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
1747 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
1750 if (netdev->ieee80211_ptr) {
1751 rdev = wiphy_to_rdev(
1752 netdev->ieee80211_ptr->wiphy);
1753 state->filter_wiphy = rdev->wiphy_idx;
1760 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
1763 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
1764 struct cfg80211_registered_device *rdev;
1768 state = kzalloc(sizeof(*state), GFP_KERNEL);
1773 state->filter_wiphy = -1;
1774 ret = nl80211_dump_wiphy_parse(skb, cb, state);
1780 cb->args[0] = (long)state;
1783 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
1784 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
1786 if (++idx <= state->start)
1788 if (state->filter_wiphy != -1 &&
1789 state->filter_wiphy != rdev->wiphy_idx)
1791 /* attempt to fit multiple wiphy data chunks into the skb */
1793 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
1795 NETLINK_CB(cb->skb).portid,
1797 NLM_F_MULTI, state);
1800 * If sending the wiphy data didn't fit (ENOBUFS
1801 * or EMSGSIZE returned), this SKB is still
1802 * empty (so it's not too big because another
1803 * wiphy dataset is already in the skb) and
1804 * we've not tried to adjust the dump allocation
1805 * yet ... then adjust the alloc size to be
1806 * bigger, and return 1 but with the empty skb.
1807 * This results in an empty message being RX'ed
1808 * in userspace, but that is ignored.
1810 * We can then retry with the larger buffer.
1812 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
1813 !skb->len && !state->split &&
1814 cb->min_dump_alloc < 4096) {
1815 cb->min_dump_alloc = 4096;
1816 state->split_start = 0;
1823 } while (state->split_start > 0);
1833 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
1835 kfree((void *)cb->args[0]);
1839 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
1841 struct sk_buff *msg;
1842 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1843 struct nl80211_dump_wiphy_state state = {};
1845 msg = nlmsg_new(4096, GFP_KERNEL);
1849 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
1850 info->snd_portid, info->snd_seq, 0,
1856 return genlmsg_reply(msg, info);
1859 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
1860 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
1861 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
1862 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
1863 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
1864 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
1867 static int parse_txq_params(struct nlattr *tb[],
1868 struct ieee80211_txq_params *txq_params)
1870 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
1871 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
1872 !tb[NL80211_TXQ_ATTR_AIFS])
1875 txq_params->ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
1876 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
1877 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
1878 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
1879 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
1881 if (txq_params->ac >= NL80211_NUM_ACS)
1887 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
1890 * You can only set the channel explicitly for WDS interfaces,
1891 * all others have their channel managed via their respective
1892 * "establish a connection" command (connect, join, ...)
1894 * For AP/GO and mesh mode, the channel can be set with the
1895 * channel userspace API, but is only stored and passed to the
1896 * low-level driver when the AP starts or the mesh is joined.
1897 * This is for backward compatibility, userspace can also give
1898 * the channel in the start-ap or join-mesh commands instead.
1900 * Monitors are special as they are normally slaved to
1901 * whatever else is going on, so they have their own special
1902 * operation to set the monitor channel if possible.
1905 wdev->iftype == NL80211_IFTYPE_AP ||
1906 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
1907 wdev->iftype == NL80211_IFTYPE_MONITOR ||
1908 wdev->iftype == NL80211_IFTYPE_P2P_GO;
1911 static int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
1912 struct genl_info *info,
1913 struct cfg80211_chan_def *chandef)
1917 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
1920 control_freq = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]);
1922 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
1923 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
1924 chandef->center_freq1 = control_freq;
1925 chandef->center_freq2 = 0;
1927 /* Primary channel not allowed */
1928 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED)
1931 if (info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
1932 enum nl80211_channel_type chantype;
1934 chantype = nla_get_u32(
1935 info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
1938 case NL80211_CHAN_NO_HT:
1939 case NL80211_CHAN_HT20:
1940 case NL80211_CHAN_HT40PLUS:
1941 case NL80211_CHAN_HT40MINUS:
1942 cfg80211_chandef_create(chandef, chandef->chan,
1948 } else if (info->attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
1950 nla_get_u32(info->attrs[NL80211_ATTR_CHANNEL_WIDTH]);
1951 if (info->attrs[NL80211_ATTR_CENTER_FREQ1])
1952 chandef->center_freq1 =
1954 info->attrs[NL80211_ATTR_CENTER_FREQ1]);
1955 if (info->attrs[NL80211_ATTR_CENTER_FREQ2])
1956 chandef->center_freq2 =
1958 info->attrs[NL80211_ATTR_CENTER_FREQ2]);
1961 if (!cfg80211_chandef_valid(chandef))
1964 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
1965 IEEE80211_CHAN_DISABLED))
1968 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
1969 chandef->width == NL80211_CHAN_WIDTH_10) &&
1970 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ))
1976 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
1977 struct net_device *dev,
1978 struct genl_info *info)
1980 struct cfg80211_chan_def chandef;
1982 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
1983 struct wireless_dev *wdev = NULL;
1986 wdev = dev->ieee80211_ptr;
1987 if (!nl80211_can_set_dev_channel(wdev))
1990 iftype = wdev->iftype;
1992 result = nl80211_parse_chandef(rdev, info, &chandef);
1997 case NL80211_IFTYPE_AP:
1998 case NL80211_IFTYPE_P2P_GO:
1999 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &chandef, iftype)) {
2003 if (wdev->beacon_interval) {
2004 if (!dev || !rdev->ops->set_ap_chanwidth ||
2005 !(rdev->wiphy.features &
2006 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2011 /* Only allow dynamic channel width changes */
2012 if (chandef.chan != wdev->preset_chandef.chan) {
2016 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2020 wdev->preset_chandef = chandef;
2023 case NL80211_IFTYPE_MESH_POINT:
2024 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2026 case NL80211_IFTYPE_MONITOR:
2027 result = cfg80211_set_monitor_channel(rdev, &chandef);
2036 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2038 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2039 struct net_device *netdev = info->user_ptr[1];
2041 return __nl80211_set_channel(rdev, netdev, info);
2044 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2046 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2047 struct net_device *dev = info->user_ptr[1];
2048 struct wireless_dev *wdev = dev->ieee80211_ptr;
2051 if (!info->attrs[NL80211_ATTR_MAC])
2054 if (netif_running(dev))
2057 if (!rdev->ops->set_wds_peer)
2060 if (wdev->iftype != NL80211_IFTYPE_WDS)
2063 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2064 return rdev_set_wds_peer(rdev, dev, bssid);
2068 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2070 struct cfg80211_registered_device *rdev;
2071 struct net_device *netdev = NULL;
2072 struct wireless_dev *wdev;
2073 int result = 0, rem_txq_params = 0;
2074 struct nlattr *nl_txq_params;
2076 u8 retry_short = 0, retry_long = 0;
2077 u32 frag_threshold = 0, rts_threshold = 0;
2078 u8 coverage_class = 0;
2083 * Try to find the wiphy and netdev. Normally this
2084 * function shouldn't need the netdev, but this is
2085 * done for backward compatibility -- previously
2086 * setting the channel was done per wiphy, but now
2087 * it is per netdev. Previous userland like hostapd
2088 * also passed a netdev to set_wiphy, so that it is
2089 * possible to let that go to the right netdev!
2092 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2093 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2095 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2096 if (netdev && netdev->ieee80211_ptr)
2097 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2103 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2106 return PTR_ERR(rdev);
2111 wdev = netdev->ieee80211_ptr;
2114 * end workaround code, by now the rdev is available
2115 * and locked, and wdev may or may not be NULL.
2118 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2119 result = cfg80211_dev_rename(
2120 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2125 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2126 struct ieee80211_txq_params txq_params;
2127 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2129 if (!rdev->ops->set_txq_params)
2135 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2136 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2139 if (!netif_running(netdev))
2142 nla_for_each_nested(nl_txq_params,
2143 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2145 result = nla_parse(tb, NL80211_TXQ_ATTR_MAX,
2146 nla_data(nl_txq_params),
2147 nla_len(nl_txq_params),
2151 result = parse_txq_params(tb, &txq_params);
2155 result = rdev_set_txq_params(rdev, netdev,
2162 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2163 result = __nl80211_set_channel(
2165 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2171 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2172 struct wireless_dev *txp_wdev = wdev;
2173 enum nl80211_tx_power_setting type;
2176 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2179 if (!rdev->ops->set_tx_power)
2182 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2183 type = nla_get_u32(info->attrs[idx]);
2185 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2186 (type != NL80211_TX_POWER_AUTOMATIC))
2189 if (type != NL80211_TX_POWER_AUTOMATIC) {
2190 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2191 mbm = nla_get_u32(info->attrs[idx]);
2194 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2199 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2200 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2202 if ((!rdev->wiphy.available_antennas_tx &&
2203 !rdev->wiphy.available_antennas_rx) ||
2204 !rdev->ops->set_antenna)
2207 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2208 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2210 /* reject antenna configurations which don't match the
2211 * available antenna masks, except for the "all" mask */
2212 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2213 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2216 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2217 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2219 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2226 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2227 retry_short = nla_get_u8(
2228 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2229 if (retry_short == 0)
2232 changed |= WIPHY_PARAM_RETRY_SHORT;
2235 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2236 retry_long = nla_get_u8(
2237 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2238 if (retry_long == 0)
2241 changed |= WIPHY_PARAM_RETRY_LONG;
2244 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2245 frag_threshold = nla_get_u32(
2246 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2247 if (frag_threshold < 256)
2250 if (frag_threshold != (u32) -1) {
2252 * Fragments (apart from the last one) are required to
2253 * have even length. Make the fragmentation code
2254 * simpler by stripping LSB should someone try to use
2255 * odd threshold value.
2257 frag_threshold &= ~0x1;
2259 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2262 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2263 rts_threshold = nla_get_u32(
2264 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2265 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2268 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2269 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2272 coverage_class = nla_get_u8(
2273 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2274 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2277 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2278 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2281 changed |= WIPHY_PARAM_DYN_ACK;
2285 u8 old_retry_short, old_retry_long;
2286 u32 old_frag_threshold, old_rts_threshold;
2287 u8 old_coverage_class;
2289 if (!rdev->ops->set_wiphy_params)
2292 old_retry_short = rdev->wiphy.retry_short;
2293 old_retry_long = rdev->wiphy.retry_long;
2294 old_frag_threshold = rdev->wiphy.frag_threshold;
2295 old_rts_threshold = rdev->wiphy.rts_threshold;
2296 old_coverage_class = rdev->wiphy.coverage_class;
2298 if (changed & WIPHY_PARAM_RETRY_SHORT)
2299 rdev->wiphy.retry_short = retry_short;
2300 if (changed & WIPHY_PARAM_RETRY_LONG)
2301 rdev->wiphy.retry_long = retry_long;
2302 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2303 rdev->wiphy.frag_threshold = frag_threshold;
2304 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2305 rdev->wiphy.rts_threshold = rts_threshold;
2306 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2307 rdev->wiphy.coverage_class = coverage_class;
2309 result = rdev_set_wiphy_params(rdev, changed);
2311 rdev->wiphy.retry_short = old_retry_short;
2312 rdev->wiphy.retry_long = old_retry_long;
2313 rdev->wiphy.frag_threshold = old_frag_threshold;
2314 rdev->wiphy.rts_threshold = old_rts_threshold;
2315 rdev->wiphy.coverage_class = old_coverage_class;
2321 static inline u64 wdev_id(struct wireless_dev *wdev)
2323 return (u64)wdev->identifier |
2324 ((u64)wiphy_to_rdev(wdev->wiphy)->wiphy_idx << 32);
2327 static int nl80211_send_chandef(struct sk_buff *msg,
2328 const struct cfg80211_chan_def *chandef)
2330 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
2333 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2334 chandef->chan->center_freq))
2336 switch (chandef->width) {
2337 case NL80211_CHAN_WIDTH_20_NOHT:
2338 case NL80211_CHAN_WIDTH_20:
2339 case NL80211_CHAN_WIDTH_40:
2340 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2341 cfg80211_get_chandef_type(chandef)))
2347 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2349 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2351 if (chandef->center_freq2 &&
2352 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2357 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2358 struct cfg80211_registered_device *rdev,
2359 struct wireless_dev *wdev, bool removal)
2361 struct net_device *dev = wdev->netdev;
2362 u8 cmd = NL80211_CMD_NEW_INTERFACE;
2366 cmd = NL80211_CMD_DEL_INTERFACE;
2368 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
2373 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2374 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
2375 goto nla_put_failure;
2377 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
2378 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
2379 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
2380 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
2381 nla_put_u32(msg, NL80211_ATTR_GENERATION,
2382 rdev->devlist_generation ^
2383 (cfg80211_rdev_list_generation << 2)))
2384 goto nla_put_failure;
2386 if (rdev->ops->get_channel) {
2388 struct cfg80211_chan_def chandef;
2390 ret = rdev_get_channel(rdev, wdev, &chandef);
2392 if (nl80211_send_chandef(msg, &chandef))
2393 goto nla_put_failure;
2397 if (wdev->ssid_len) {
2398 if (nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
2399 goto nla_put_failure;
2402 return genlmsg_end(msg, hdr);
2405 genlmsg_cancel(msg, hdr);
2409 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
2413 int wp_start = cb->args[0];
2414 int if_start = cb->args[1];
2415 struct cfg80211_registered_device *rdev;
2416 struct wireless_dev *wdev;
2419 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2420 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2422 if (wp_idx < wp_start) {
2428 list_for_each_entry(wdev, &rdev->wdev_list, list) {
2429 if (if_idx < if_start) {
2433 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
2434 cb->nlh->nlmsg_seq, NLM_F_MULTI,
2435 rdev, wdev, false) < 0) {
2446 cb->args[0] = wp_idx;
2447 cb->args[1] = if_idx;
2452 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
2454 struct sk_buff *msg;
2455 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2456 struct wireless_dev *wdev = info->user_ptr[1];
2458 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2462 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2463 rdev, wdev, false) < 0) {
2468 return genlmsg_reply(msg, info);
2471 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
2472 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
2473 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
2474 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
2475 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
2476 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
2477 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
2480 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
2482 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
2490 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX,
2491 nla, mntr_flags_policy))
2494 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
2496 *mntrflags |= (1<<flag);
2501 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
2502 struct net_device *netdev, u8 use_4addr,
2503 enum nl80211_iftype iftype)
2506 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
2512 case NL80211_IFTYPE_AP_VLAN:
2513 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
2516 case NL80211_IFTYPE_STATION:
2517 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
2527 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
2529 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2530 struct vif_params params;
2532 enum nl80211_iftype otype, ntype;
2533 struct net_device *dev = info->user_ptr[1];
2534 u32 _flags, *flags = NULL;
2535 bool change = false;
2537 memset(¶ms, 0, sizeof(params));
2539 otype = ntype = dev->ieee80211_ptr->iftype;
2541 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2542 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2545 if (ntype > NL80211_IFTYPE_MAX)
2549 if (info->attrs[NL80211_ATTR_MESH_ID]) {
2550 struct wireless_dev *wdev = dev->ieee80211_ptr;
2552 if (ntype != NL80211_IFTYPE_MESH_POINT)
2554 if (netif_running(dev))
2558 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2559 IEEE80211_MAX_MESH_ID_LEN);
2560 wdev->mesh_id_up_len =
2561 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2562 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2563 wdev->mesh_id_up_len);
2567 if (info->attrs[NL80211_ATTR_4ADDR]) {
2568 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2570 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
2574 params.use_4addr = -1;
2577 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
2578 if (ntype != NL80211_IFTYPE_MONITOR)
2580 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
2589 if (flags && (*flags & MONITOR_FLAG_ACTIVE) &&
2590 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2594 err = cfg80211_change_iface(rdev, dev, ntype, flags, ¶ms);
2598 if (!err && params.use_4addr != -1)
2599 dev->ieee80211_ptr->use_4addr = params.use_4addr;
2604 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
2606 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2607 struct vif_params params;
2608 struct wireless_dev *wdev;
2609 struct sk_buff *msg, *event;
2611 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
2614 /* to avoid failing a new interface creation due to pending removal */
2615 cfg80211_destroy_ifaces(rdev);
2617 memset(¶ms, 0, sizeof(params));
2619 if (!info->attrs[NL80211_ATTR_IFNAME])
2622 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2623 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2624 if (type > NL80211_IFTYPE_MAX)
2628 if (!rdev->ops->add_virtual_intf ||
2629 !(rdev->wiphy.interface_modes & (1 << type)))
2632 if ((type == NL80211_IFTYPE_P2P_DEVICE ||
2633 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
2634 info->attrs[NL80211_ATTR_MAC]) {
2635 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
2637 if (!is_valid_ether_addr(params.macaddr))
2638 return -EADDRNOTAVAIL;
2641 if (info->attrs[NL80211_ATTR_4ADDR]) {
2642 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2643 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
2648 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2652 err = parse_monitor_flags(type == NL80211_IFTYPE_MONITOR ?
2653 info->attrs[NL80211_ATTR_MNTR_FLAGS] : NULL,
2656 if (!err && (flags & MONITOR_FLAG_ACTIVE) &&
2657 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2660 wdev = rdev_add_virtual_intf(rdev,
2661 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
2662 type, err ? NULL : &flags, ¶ms);
2663 if (WARN_ON(!wdev)) {
2666 } else if (IS_ERR(wdev)) {
2668 return PTR_ERR(wdev);
2671 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
2672 wdev->owner_nlportid = info->snd_portid;
2675 case NL80211_IFTYPE_MESH_POINT:
2676 if (!info->attrs[NL80211_ATTR_MESH_ID])
2679 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2680 IEEE80211_MAX_MESH_ID_LEN);
2681 wdev->mesh_id_up_len =
2682 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2683 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2684 wdev->mesh_id_up_len);
2687 case NL80211_IFTYPE_P2P_DEVICE:
2689 * P2P Device doesn't have a netdev, so doesn't go
2690 * through the netdev notifier and must be added here
2692 mutex_init(&wdev->mtx);
2693 INIT_LIST_HEAD(&wdev->event_list);
2694 spin_lock_init(&wdev->event_lock);
2695 INIT_LIST_HEAD(&wdev->mgmt_registrations);
2696 spin_lock_init(&wdev->mgmt_registrations_lock);
2698 wdev->identifier = ++rdev->wdev_id;
2699 list_add_rcu(&wdev->list, &rdev->wdev_list);
2700 rdev->devlist_generation++;
2706 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2707 rdev, wdev, false) < 0) {
2712 event = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2714 if (nl80211_send_iface(event, 0, 0, 0,
2715 rdev, wdev, false) < 0) {
2720 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
2721 event, 0, NL80211_MCGRP_CONFIG,
2726 return genlmsg_reply(msg, info);
2729 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
2731 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2732 struct wireless_dev *wdev = info->user_ptr[1];
2733 struct sk_buff *msg;
2736 if (!rdev->ops->del_virtual_intf)
2739 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2740 if (msg && nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, true) < 0) {
2746 * If we remove a wireless device without a netdev then clear
2747 * user_ptr[1] so that nl80211_post_doit won't dereference it
2748 * to check if it needs to do dev_put(). Otherwise it crashes
2749 * since the wdev has been freed, unlike with a netdev where
2750 * we need the dev_put() for the netdev to really be freed.
2753 info->user_ptr[1] = NULL;
2755 status = rdev_del_virtual_intf(rdev, wdev);
2756 if (status >= 0 && msg)
2757 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
2758 msg, 0, NL80211_MCGRP_CONFIG,
2766 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
2768 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2769 struct net_device *dev = info->user_ptr[1];
2772 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
2775 if (!rdev->ops->set_noack_map)
2778 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
2780 return rdev_set_noack_map(rdev, dev, noack_map);
2783 struct get_key_cookie {
2784 struct sk_buff *msg;
2789 static void get_key_callback(void *c, struct key_params *params)
2792 struct get_key_cookie *cookie = c;
2795 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
2796 params->key_len, params->key)) ||
2798 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
2799 params->seq_len, params->seq)) ||
2801 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
2803 goto nla_put_failure;
2805 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
2807 goto nla_put_failure;
2810 nla_put(cookie->msg, NL80211_KEY_DATA,
2811 params->key_len, params->key)) ||
2813 nla_put(cookie->msg, NL80211_KEY_SEQ,
2814 params->seq_len, params->seq)) ||
2816 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
2818 goto nla_put_failure;
2820 if (nla_put_u8(cookie->msg, NL80211_ATTR_KEY_IDX, cookie->idx))
2821 goto nla_put_failure;
2823 nla_nest_end(cookie->msg, key);
2830 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
2832 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2834 struct net_device *dev = info->user_ptr[1];
2836 const u8 *mac_addr = NULL;
2838 struct get_key_cookie cookie = {
2842 struct sk_buff *msg;
2844 if (info->attrs[NL80211_ATTR_KEY_IDX])
2845 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
2850 if (info->attrs[NL80211_ATTR_MAC])
2851 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2853 pairwise = !!mac_addr;
2854 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
2855 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
2856 if (kt >= NUM_NL80211_KEYTYPES)
2858 if (kt != NL80211_KEYTYPE_GROUP &&
2859 kt != NL80211_KEYTYPE_PAIRWISE)
2861 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
2864 if (!rdev->ops->get_key)
2867 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2871 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
2872 NL80211_CMD_NEW_KEY);
2874 goto nla_put_failure;
2877 cookie.idx = key_idx;
2879 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2880 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
2881 goto nla_put_failure;
2883 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
2884 goto nla_put_failure;
2886 if (pairwise && mac_addr &&
2887 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2890 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
2897 goto nla_put_failure;
2899 genlmsg_end(msg, hdr);
2900 return genlmsg_reply(msg, info);
2909 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
2911 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2912 struct key_parse key;
2914 struct net_device *dev = info->user_ptr[1];
2916 err = nl80211_parse_key(info, &key);
2923 /* only support setting default key */
2924 if (!key.def && !key.defmgmt)
2927 wdev_lock(dev->ieee80211_ptr);
2930 if (!rdev->ops->set_default_key) {
2935 err = nl80211_key_allowed(dev->ieee80211_ptr);
2939 err = rdev_set_default_key(rdev, dev, key.idx,
2940 key.def_uni, key.def_multi);
2945 #ifdef CONFIG_CFG80211_WEXT
2946 dev->ieee80211_ptr->wext.default_key = key.idx;
2949 if (key.def_uni || !key.def_multi) {
2954 if (!rdev->ops->set_default_mgmt_key) {
2959 err = nl80211_key_allowed(dev->ieee80211_ptr);
2963 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
2967 #ifdef CONFIG_CFG80211_WEXT
2968 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
2973 wdev_unlock(dev->ieee80211_ptr);
2978 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
2980 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2982 struct net_device *dev = info->user_ptr[1];
2983 struct key_parse key;
2984 const u8 *mac_addr = NULL;
2986 err = nl80211_parse_key(info, &key);
2993 if (info->attrs[NL80211_ATTR_MAC])
2994 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2996 if (key.type == -1) {
2998 key.type = NL80211_KEYTYPE_PAIRWISE;
3000 key.type = NL80211_KEYTYPE_GROUP;
3004 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3005 key.type != NL80211_KEYTYPE_GROUP)
3008 if (!rdev->ops->add_key)
3011 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3012 key.type == NL80211_KEYTYPE_PAIRWISE,
3016 wdev_lock(dev->ieee80211_ptr);
3017 err = nl80211_key_allowed(dev->ieee80211_ptr);
3019 err = rdev_add_key(rdev, dev, key.idx,
3020 key.type == NL80211_KEYTYPE_PAIRWISE,
3022 wdev_unlock(dev->ieee80211_ptr);
3027 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3029 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3031 struct net_device *dev = info->user_ptr[1];
3032 u8 *mac_addr = NULL;
3033 struct key_parse key;
3035 err = nl80211_parse_key(info, &key);
3039 if (info->attrs[NL80211_ATTR_MAC])
3040 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3042 if (key.type == -1) {
3044 key.type = NL80211_KEYTYPE_PAIRWISE;
3046 key.type = NL80211_KEYTYPE_GROUP;
3050 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3051 key.type != NL80211_KEYTYPE_GROUP)
3054 if (!rdev->ops->del_key)
3057 wdev_lock(dev->ieee80211_ptr);
3058 err = nl80211_key_allowed(dev->ieee80211_ptr);
3060 if (key.type == NL80211_KEYTYPE_PAIRWISE && mac_addr &&
3061 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3065 err = rdev_del_key(rdev, dev, key.idx,
3066 key.type == NL80211_KEYTYPE_PAIRWISE,
3069 #ifdef CONFIG_CFG80211_WEXT
3071 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3072 dev->ieee80211_ptr->wext.default_key = -1;
3073 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3074 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3077 wdev_unlock(dev->ieee80211_ptr);
3082 /* This function returns an error or the number of nested attributes */
3083 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3085 struct nlattr *attr;
3086 int n_entries = 0, tmp;
3088 nla_for_each_nested(attr, nl_attr, tmp) {
3089 if (nla_len(attr) != ETH_ALEN)
3099 * This function parses ACL information and allocates memory for ACL data.
3100 * On successful return, the calling function is responsible to free the
3101 * ACL buffer returned by this function.
3103 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3104 struct genl_info *info)
3106 enum nl80211_acl_policy acl_policy;
3107 struct nlattr *attr;
3108 struct cfg80211_acl_data *acl;
3109 int i = 0, n_entries, tmp;
3111 if (!wiphy->max_acl_mac_addrs)
3112 return ERR_PTR(-EOPNOTSUPP);
3114 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3115 return ERR_PTR(-EINVAL);
3117 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3118 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3119 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3120 return ERR_PTR(-EINVAL);
3122 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3123 return ERR_PTR(-EINVAL);
3125 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3127 return ERR_PTR(n_entries);
3129 if (n_entries > wiphy->max_acl_mac_addrs)
3130 return ERR_PTR(-ENOTSUPP);
3132 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
3135 return ERR_PTR(-ENOMEM);
3137 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3138 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3142 acl->n_acl_entries = n_entries;
3143 acl->acl_policy = acl_policy;
3148 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3150 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3151 struct net_device *dev = info->user_ptr[1];
3152 struct cfg80211_acl_data *acl;
3155 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3156 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3159 if (!dev->ieee80211_ptr->beacon_interval)
3162 acl = parse_acl_data(&rdev->wiphy, info);
3164 return PTR_ERR(acl);
3166 err = rdev_set_mac_acl(rdev, dev, acl);
3173 static int nl80211_parse_beacon(struct nlattr *attrs[],
3174 struct cfg80211_beacon_data *bcn)
3176 bool haveinfo = false;
3178 if (!is_valid_ie_attr(attrs[NL80211_ATTR_BEACON_TAIL]) ||
3179 !is_valid_ie_attr(attrs[NL80211_ATTR_IE]) ||
3180 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_PROBE_RESP]) ||
3181 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_ASSOC_RESP]))
3184 memset(bcn, 0, sizeof(*bcn));
3186 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
3187 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
3188 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
3194 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
3195 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
3196 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
3203 if (attrs[NL80211_ATTR_IE]) {
3204 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
3205 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
3208 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
3209 bcn->proberesp_ies =
3210 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3211 bcn->proberesp_ies_len =
3212 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3215 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
3216 bcn->assocresp_ies =
3217 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3218 bcn->assocresp_ies_len =
3219 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3222 if (attrs[NL80211_ATTR_PROBE_RESP]) {
3223 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
3224 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
3230 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
3231 struct cfg80211_ap_settings *params)
3233 struct wireless_dev *wdev;
3236 list_for_each_entry(wdev, &rdev->wdev_list, list) {
3237 if (wdev->iftype != NL80211_IFTYPE_AP &&
3238 wdev->iftype != NL80211_IFTYPE_P2P_GO)
3241 if (!wdev->preset_chandef.chan)
3244 params->chandef = wdev->preset_chandef;
3252 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
3253 enum nl80211_auth_type auth_type,
3254 enum nl80211_commands cmd)
3256 if (auth_type > NL80211_AUTHTYPE_MAX)
3260 case NL80211_CMD_AUTHENTICATE:
3261 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
3262 auth_type == NL80211_AUTHTYPE_SAE)
3265 case NL80211_CMD_CONNECT:
3266 case NL80211_CMD_START_AP:
3267 /* SAE not supported yet */
3268 if (auth_type == NL80211_AUTHTYPE_SAE)
3276 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
3278 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3279 struct net_device *dev = info->user_ptr[1];
3280 struct wireless_dev *wdev = dev->ieee80211_ptr;
3281 struct cfg80211_ap_settings params;
3284 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3285 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3288 if (!rdev->ops->start_ap)
3291 if (wdev->beacon_interval)
3294 memset(¶ms, 0, sizeof(params));
3296 /* these are required for START_AP */
3297 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
3298 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
3299 !info->attrs[NL80211_ATTR_BEACON_HEAD])
3302 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon);
3306 params.beacon_interval =
3307 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
3308 params.dtim_period =
3309 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
3311 err = cfg80211_validate_beacon_int(rdev, params.beacon_interval);
3316 * In theory, some of these attributes should be required here
3317 * but since they were not used when the command was originally
3318 * added, keep them optional for old user space programs to let
3319 * them continue to work with drivers that do not need the
3320 * additional information -- drivers must check!
3322 if (info->attrs[NL80211_ATTR_SSID]) {
3323 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
3325 nla_len(info->attrs[NL80211_ATTR_SSID]);
3326 if (params.ssid_len == 0 ||
3327 params.ssid_len > IEEE80211_MAX_SSID_LEN)
3331 if (info->attrs[NL80211_ATTR_HIDDEN_SSID]) {
3332 params.hidden_ssid = nla_get_u32(
3333 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
3334 if (params.hidden_ssid != NL80211_HIDDEN_SSID_NOT_IN_USE &&
3335 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_LEN &&
3336 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_CONTENTS)
3340 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
3342 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
3343 params.auth_type = nla_get_u32(
3344 info->attrs[NL80211_ATTR_AUTH_TYPE]);
3345 if (!nl80211_valid_auth_type(rdev, params.auth_type,
3346 NL80211_CMD_START_AP))
3349 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
3351 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
3352 NL80211_MAX_NR_CIPHER_SUITES);
3356 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
3357 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
3359 params.inactivity_timeout = nla_get_u16(
3360 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
3363 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
3364 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3366 params.p2p_ctwindow =
3367 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
3368 if (params.p2p_ctwindow > 127)
3370 if (params.p2p_ctwindow != 0 &&
3371 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
3375 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
3378 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3380 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
3383 params.p2p_opp_ps = tmp;
3384 if (params.p2p_opp_ps != 0 &&
3385 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
3389 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
3390 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
3393 } else if (wdev->preset_chandef.chan) {
3394 params.chandef = wdev->preset_chandef;
3395 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
3398 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef,
3402 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
3403 params.acl = parse_acl_data(&rdev->wiphy, info);
3404 if (IS_ERR(params.acl))
3405 return PTR_ERR(params.acl);
3408 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
3410 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
3411 switch (params.smps_mode) {
3412 case NL80211_SMPS_OFF:
3414 case NL80211_SMPS_STATIC:
3415 if (!(rdev->wiphy.features &
3416 NL80211_FEATURE_STATIC_SMPS))
3419 case NL80211_SMPS_DYNAMIC:
3420 if (!(rdev->wiphy.features &
3421 NL80211_FEATURE_DYNAMIC_SMPS))
3428 params.smps_mode = NL80211_SMPS_OFF;
3432 err = rdev_start_ap(rdev, dev, ¶ms);
3434 wdev->preset_chandef = params.chandef;
3435 wdev->beacon_interval = params.beacon_interval;
3436 wdev->chandef = params.chandef;
3437 wdev->ssid_len = params.ssid_len;
3438 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
3447 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
3449 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3450 struct net_device *dev = info->user_ptr[1];
3451 struct wireless_dev *wdev = dev->ieee80211_ptr;
3452 struct cfg80211_beacon_data params;
3455 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3456 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3459 if (!rdev->ops->change_beacon)
3462 if (!wdev->beacon_interval)
3465 err = nl80211_parse_beacon(info->attrs, ¶ms);
3470 err = rdev_change_beacon(rdev, dev, ¶ms);
3476 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
3478 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3479 struct net_device *dev = info->user_ptr[1];
3481 return cfg80211_stop_ap(rdev, dev, false);
3484 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
3485 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
3486 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
3487 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
3488 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
3489 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
3490 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
3493 static int parse_station_flags(struct genl_info *info,
3494 enum nl80211_iftype iftype,
3495 struct station_parameters *params)
3497 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
3502 * Try parsing the new attribute first so userspace
3503 * can specify both for older kernels.
3505 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
3507 struct nl80211_sta_flag_update *sta_flags;
3509 sta_flags = nla_data(nla);
3510 params->sta_flags_mask = sta_flags->mask;
3511 params->sta_flags_set = sta_flags->set;
3512 params->sta_flags_set &= params->sta_flags_mask;
3513 if ((params->sta_flags_mask |
3514 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
3519 /* if present, parse the old attribute */
3521 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
3525 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX,
3526 nla, sta_flags_policy))
3530 * Only allow certain flags for interface types so that
3531 * other attributes are silently ignored. Remember that
3532 * this is backward compatibility code with old userspace
3533 * and shouldn't be hit in other cases anyway.
3536 case NL80211_IFTYPE_AP:
3537 case NL80211_IFTYPE_AP_VLAN:
3538 case NL80211_IFTYPE_P2P_GO:
3539 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3540 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3541 BIT(NL80211_STA_FLAG_WME) |
3542 BIT(NL80211_STA_FLAG_MFP);
3544 case NL80211_IFTYPE_P2P_CLIENT:
3545 case NL80211_IFTYPE_STATION:
3546 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3547 BIT(NL80211_STA_FLAG_TDLS_PEER);
3549 case NL80211_IFTYPE_MESH_POINT:
3550 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3551 BIT(NL80211_STA_FLAG_MFP) |
3552 BIT(NL80211_STA_FLAG_AUTHORIZED);
3557 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
3559 params->sta_flags_set |= (1<<flag);
3561 /* no longer support new API additions in old API */
3562 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
3570 static bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info,
3573 struct nlattr *rate;
3577 rate = nla_nest_start(msg, attr);
3581 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
3582 bitrate = cfg80211_calculate_bitrate(info);
3583 /* report 16-bit bitrate only if we can */
3584 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
3586 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
3588 if (bitrate_compat > 0 &&
3589 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
3592 if (info->flags & RATE_INFO_FLAGS_MCS) {
3593 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
3595 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3596 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3598 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3599 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3601 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
3602 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
3604 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
3606 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3607 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3609 if (info->flags & RATE_INFO_FLAGS_80_MHZ_WIDTH &&
3610 nla_put_flag(msg, NL80211_RATE_INFO_80_MHZ_WIDTH))
3612 if (info->flags & RATE_INFO_FLAGS_80P80_MHZ_WIDTH &&
3613 nla_put_flag(msg, NL80211_RATE_INFO_80P80_MHZ_WIDTH))
3615 if (info->flags & RATE_INFO_FLAGS_160_MHZ_WIDTH &&
3616 nla_put_flag(msg, NL80211_RATE_INFO_160_MHZ_WIDTH))
3618 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3619 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3623 nla_nest_end(msg, rate);
3627 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
3636 attr = nla_nest_start(msg, id);
3640 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
3641 if (!(mask & BIT(i)))
3644 if (nla_put_u8(msg, i, signal[i]))
3648 nla_nest_end(msg, attr);
3653 static int nl80211_send_station(struct sk_buff *msg, u32 portid, u32 seq,
3655 struct cfg80211_registered_device *rdev,
3656 struct net_device *dev,
3657 const u8 *mac_addr, struct station_info *sinfo)
3660 struct nlattr *sinfoattr, *bss_param;
3662 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_STATION);
3666 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3667 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
3668 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
3669 goto nla_put_failure;
3671 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
3673 goto nla_put_failure;
3674 if ((sinfo->filled & STATION_INFO_CONNECTED_TIME) &&
3675 nla_put_u32(msg, NL80211_STA_INFO_CONNECTED_TIME,
3676 sinfo->connected_time))
3677 goto nla_put_failure;
3678 if ((sinfo->filled & STATION_INFO_INACTIVE_TIME) &&
3679 nla_put_u32(msg, NL80211_STA_INFO_INACTIVE_TIME,
3680 sinfo->inactive_time))
3681 goto nla_put_failure;
3682 if ((sinfo->filled & (STATION_INFO_RX_BYTES |
3683 STATION_INFO_RX_BYTES64)) &&
3684 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
3685 (u32)sinfo->rx_bytes))
3686 goto nla_put_failure;
3687 if ((sinfo->filled & (STATION_INFO_TX_BYTES |
3688 STATION_INFO_TX_BYTES64)) &&
3689 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
3690 (u32)sinfo->tx_bytes))
3691 goto nla_put_failure;
3692 if ((sinfo->filled & STATION_INFO_RX_BYTES64) &&
3693 nla_put_u64(msg, NL80211_STA_INFO_RX_BYTES64,
3695 goto nla_put_failure;
3696 if ((sinfo->filled & STATION_INFO_TX_BYTES64) &&
3697 nla_put_u64(msg, NL80211_STA_INFO_TX_BYTES64,
3699 goto nla_put_failure;
3700 if ((sinfo->filled & STATION_INFO_LLID) &&
3701 nla_put_u16(msg, NL80211_STA_INFO_LLID, sinfo->llid))
3702 goto nla_put_failure;
3703 if ((sinfo->filled & STATION_INFO_PLID) &&
3704 nla_put_u16(msg, NL80211_STA_INFO_PLID, sinfo->plid))
3705 goto nla_put_failure;
3706 if ((sinfo->filled & STATION_INFO_PLINK_STATE) &&
3707 nla_put_u8(msg, NL80211_STA_INFO_PLINK_STATE,
3708 sinfo->plink_state))
3709 goto nla_put_failure;
3710 switch (rdev->wiphy.signal_type) {
3711 case CFG80211_SIGNAL_TYPE_MBM:
3712 if ((sinfo->filled & STATION_INFO_SIGNAL) &&
3713 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL,
3715 goto nla_put_failure;
3716 if ((sinfo->filled & STATION_INFO_SIGNAL_AVG) &&
3717 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL_AVG,
3719 goto nla_put_failure;
3724 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL) {
3725 if (!nl80211_put_signal(msg, sinfo->chains,
3726 sinfo->chain_signal,
3727 NL80211_STA_INFO_CHAIN_SIGNAL))
3728 goto nla_put_failure;
3730 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL_AVG) {
3731 if (!nl80211_put_signal(msg, sinfo->chains,
3732 sinfo->chain_signal_avg,
3733 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
3734 goto nla_put_failure;
3736 if (sinfo->filled & STATION_INFO_TX_BITRATE) {
3737 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
3738 NL80211_STA_INFO_TX_BITRATE))
3739 goto nla_put_failure;
3741 if (sinfo->filled & STATION_INFO_RX_BITRATE) {
3742 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
3743 NL80211_STA_INFO_RX_BITRATE))
3744 goto nla_put_failure;
3746 if ((sinfo->filled & STATION_INFO_RX_PACKETS) &&
3747 nla_put_u32(msg, NL80211_STA_INFO_RX_PACKETS,
3749 goto nla_put_failure;
3750 if ((sinfo->filled & STATION_INFO_TX_PACKETS) &&
3751 nla_put_u32(msg, NL80211_STA_INFO_TX_PACKETS,
3753 goto nla_put_failure;
3754 if ((sinfo->filled & STATION_INFO_TX_RETRIES) &&
3755 nla_put_u32(msg, NL80211_STA_INFO_TX_RETRIES,
3757 goto nla_put_failure;
3758 if ((sinfo->filled & STATION_INFO_TX_FAILED) &&
3759 nla_put_u32(msg, NL80211_STA_INFO_TX_FAILED,
3761 goto nla_put_failure;
3762 if ((sinfo->filled & STATION_INFO_EXPECTED_THROUGHPUT) &&
3763 nla_put_u32(msg, NL80211_STA_INFO_EXPECTED_THROUGHPUT,
3764 sinfo->expected_throughput))
3765 goto nla_put_failure;
3766 if ((sinfo->filled & STATION_INFO_BEACON_LOSS_COUNT) &&
3767 nla_put_u32(msg, NL80211_STA_INFO_BEACON_LOSS,
3768 sinfo->beacon_loss_count))
3769 goto nla_put_failure;
3770 if ((sinfo->filled & STATION_INFO_LOCAL_PM) &&
3771 nla_put_u32(msg, NL80211_STA_INFO_LOCAL_PM,
3773 goto nla_put_failure;
3774 if ((sinfo->filled & STATION_INFO_PEER_PM) &&
3775 nla_put_u32(msg, NL80211_STA_INFO_PEER_PM,
3777 goto nla_put_failure;
3778 if ((sinfo->filled & STATION_INFO_NONPEER_PM) &&
3779 nla_put_u32(msg, NL80211_STA_INFO_NONPEER_PM,
3781 goto nla_put_failure;
3782 if (sinfo->filled & STATION_INFO_BSS_PARAM) {
3783 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
3785 goto nla_put_failure;
3787 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
3788 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
3789 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
3790 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
3791 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
3792 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
3793 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
3794 sinfo->bss_param.dtim_period) ||
3795 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
3796 sinfo->bss_param.beacon_interval))
3797 goto nla_put_failure;
3799 nla_nest_end(msg, bss_param);
3801 if ((sinfo->filled & STATION_INFO_STA_FLAGS) &&
3802 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
3803 sizeof(struct nl80211_sta_flag_update),
3805 goto nla_put_failure;
3806 if ((sinfo->filled & STATION_INFO_T_OFFSET) &&
3807 nla_put_u64(msg, NL80211_STA_INFO_T_OFFSET,
3809 goto nla_put_failure;
3810 nla_nest_end(msg, sinfoattr);
3812 if ((sinfo->filled & STATION_INFO_ASSOC_REQ_IES) &&
3813 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
3814 sinfo->assoc_req_ies))
3815 goto nla_put_failure;
3817 return genlmsg_end(msg, hdr);
3820 genlmsg_cancel(msg, hdr);
3824 static int nl80211_dump_station(struct sk_buff *skb,
3825 struct netlink_callback *cb)
3827 struct station_info sinfo;
3828 struct cfg80211_registered_device *rdev;
3829 struct wireless_dev *wdev;
3830 u8 mac_addr[ETH_ALEN];
3831 int sta_idx = cb->args[2];
3834 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
3838 if (!wdev->netdev) {
3843 if (!rdev->ops->dump_station) {
3849 memset(&sinfo, 0, sizeof(sinfo));
3850 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
3857 if (nl80211_send_station(skb,
3858 NETLINK_CB(cb->skb).portid,
3859 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3860 rdev, wdev->netdev, mac_addr,
3869 cb->args[2] = sta_idx;
3872 nl80211_finish_wdev_dump(rdev);
3877 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
3879 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3880 struct net_device *dev = info->user_ptr[1];
3881 struct station_info sinfo;
3882 struct sk_buff *msg;
3883 u8 *mac_addr = NULL;
3886 memset(&sinfo, 0, sizeof(sinfo));
3888 if (!info->attrs[NL80211_ATTR_MAC])
3891 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3893 if (!rdev->ops->get_station)
3896 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
3900 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3904 if (nl80211_send_station(msg, info->snd_portid, info->snd_seq, 0,
3905 rdev, dev, mac_addr, &sinfo) < 0) {
3910 return genlmsg_reply(msg, info);
3913 int cfg80211_check_station_change(struct wiphy *wiphy,
3914 struct station_parameters *params,
3915 enum cfg80211_station_type statype)
3917 if (params->listen_interval != -1)
3920 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
3923 /* When you run into this, adjust the code below for the new flag */
3924 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
3927 case CFG80211_STA_MESH_PEER_KERNEL:
3928 case CFG80211_STA_MESH_PEER_USER:
3930 * No ignoring the TDLS flag here -- the userspace mesh
3931 * code doesn't have the bug of including TDLS in the
3934 if (params->sta_flags_mask &
3935 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3936 BIT(NL80211_STA_FLAG_MFP) |
3937 BIT(NL80211_STA_FLAG_AUTHORIZED)))
3940 case CFG80211_STA_TDLS_PEER_SETUP:
3941 case CFG80211_STA_TDLS_PEER_ACTIVE:
3942 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
3944 /* ignore since it can't change */
3945 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3948 /* disallow mesh-specific things */
3949 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3951 if (params->local_pm)
3953 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3957 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
3958 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
3959 /* TDLS can't be set, ... */
3960 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
3963 * ... but don't bother the driver with it. This works around
3964 * a hostapd/wpa_supplicant issue -- it always includes the
3965 * TLDS_PEER flag in the mask even for AP mode.
3967 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3970 if (statype != CFG80211_STA_TDLS_PEER_SETUP) {
3971 /* reject other things that can't change */
3972 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
3974 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
3976 if (params->supported_rates)
3978 if (params->ext_capab || params->ht_capa || params->vht_capa)
3982 if (statype != CFG80211_STA_AP_CLIENT) {
3988 case CFG80211_STA_AP_MLME_CLIENT:
3989 /* Use this only for authorizing/unauthorizing a station */
3990 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
3993 case CFG80211_STA_AP_CLIENT:
3994 /* accept only the listed bits */
3995 if (params->sta_flags_mask &
3996 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
3997 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3998 BIT(NL80211_STA_FLAG_ASSOCIATED) |
3999 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4000 BIT(NL80211_STA_FLAG_WME) |
4001 BIT(NL80211_STA_FLAG_MFP)))
4004 /* but authenticated/associated only if driver handles it */
4005 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4006 params->sta_flags_mask &
4007 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4008 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4011 case CFG80211_STA_IBSS:
4012 case CFG80211_STA_AP_STA:
4013 /* reject any changes other than AUTHORIZED */
4014 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
4017 case CFG80211_STA_TDLS_PEER_SETUP:
4018 /* reject any changes other than AUTHORIZED or WME */
4019 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
4020 BIT(NL80211_STA_FLAG_WME)))
4022 /* force (at least) rates when authorizing */
4023 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
4024 !params->supported_rates)
4027 case CFG80211_STA_TDLS_PEER_ACTIVE:
4028 /* reject any changes */
4030 case CFG80211_STA_MESH_PEER_KERNEL:
4031 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
4034 case CFG80211_STA_MESH_PEER_USER:
4035 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
4042 EXPORT_SYMBOL(cfg80211_check_station_change);
4045 * Get vlan interface making sure it is running and on the right wiphy.
4047 static struct net_device *get_vlan(struct genl_info *info,
4048 struct cfg80211_registered_device *rdev)
4050 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
4051 struct net_device *v;
4057 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
4059 return ERR_PTR(-ENODEV);
4061 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
4066 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
4067 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4068 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
4073 if (!netif_running(v)) {
4081 return ERR_PTR(ret);
4084 static const struct nla_policy
4085 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
4086 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
4087 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
4090 static int nl80211_parse_sta_wme(struct genl_info *info,
4091 struct station_parameters *params)
4093 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
4097 /* parse WME attributes if present */
4098 if (!info->attrs[NL80211_ATTR_STA_WME])
4101 nla = info->attrs[NL80211_ATTR_STA_WME];
4102 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
4103 nl80211_sta_wme_policy);
4107 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
4108 params->uapsd_queues = nla_get_u8(
4109 tb[NL80211_STA_WME_UAPSD_QUEUES]);
4110 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
4113 if (tb[NL80211_STA_WME_MAX_SP])
4114 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
4116 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
4119 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
4124 static int nl80211_parse_sta_channel_info(struct genl_info *info,
4125 struct station_parameters *params)
4127 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
4128 params->supported_channels =
4129 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
4130 params->supported_channels_len =
4131 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
4133 * Need to include at least one (first channel, number of
4134 * channels) tuple for each subband, and must have proper
4135 * tuples for the rest of the data as well.
4137 if (params->supported_channels_len < 2)
4139 if (params->supported_channels_len % 2)
4143 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
4144 params->supported_oper_classes =
4145 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
4146 params->supported_oper_classes_len =
4147 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
4149 * The value of the Length field of the Supported Operating
4150 * Classes element is between 2 and 253.
4152 if (params->supported_oper_classes_len < 2 ||
4153 params->supported_oper_classes_len > 253)
4159 static int nl80211_set_station_tdls(struct genl_info *info,
4160 struct station_parameters *params)
4163 /* Dummy STA entry gets updated once the peer capabilities are known */
4164 if (info->attrs[NL80211_ATTR_PEER_AID])
4165 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4166 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4168 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4169 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4171 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4173 err = nl80211_parse_sta_channel_info(info, params);
4177 return nl80211_parse_sta_wme(info, params);
4180 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
4182 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4183 struct net_device *dev = info->user_ptr[1];
4184 struct station_parameters params;
4188 memset(¶ms, 0, sizeof(params));
4190 params.listen_interval = -1;
4192 if (!rdev->ops->change_station)
4195 if (info->attrs[NL80211_ATTR_STA_AID])
4198 if (!info->attrs[NL80211_ATTR_MAC])
4201 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4203 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
4204 params.supported_rates =
4205 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4206 params.supported_rates_len =
4207 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4210 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4212 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4213 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4216 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4218 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4219 params.ext_capab_len =
4220 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4223 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4226 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4229 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4230 params.plink_action =
4231 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4232 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4236 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
4237 params.plink_state =
4238 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
4239 if (params.plink_state >= NUM_NL80211_PLINK_STATES)
4241 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
4244 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]) {
4245 enum nl80211_mesh_power_mode pm = nla_get_u32(
4246 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
4248 if (pm <= NL80211_MESH_POWER_UNKNOWN ||
4249 pm > NL80211_MESH_POWER_MAX)
4252 params.local_pm = pm;
4255 /* Include parameters for TDLS peer (will check later) */
4256 err = nl80211_set_station_tdls(info, ¶ms);
4260 params.vlan = get_vlan(info, rdev);
4261 if (IS_ERR(params.vlan))
4262 return PTR_ERR(params.vlan);
4264 switch (dev->ieee80211_ptr->iftype) {
4265 case NL80211_IFTYPE_AP:
4266 case NL80211_IFTYPE_AP_VLAN:
4267 case NL80211_IFTYPE_P2P_GO:
4268 case NL80211_IFTYPE_P2P_CLIENT:
4269 case NL80211_IFTYPE_STATION:
4270 case NL80211_IFTYPE_ADHOC:
4271 case NL80211_IFTYPE_MESH_POINT:
4278 /* driver will call cfg80211_check_station_change() */
4279 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
4283 dev_put(params.vlan);
4288 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
4290 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4292 struct net_device *dev = info->user_ptr[1];
4293 struct station_parameters params;
4294 u8 *mac_addr = NULL;
4296 memset(¶ms, 0, sizeof(params));
4298 if (!rdev->ops->add_station)
4301 if (!info->attrs[NL80211_ATTR_MAC])
4304 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4307 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
4310 if (!info->attrs[NL80211_ATTR_STA_AID] &&
4311 !info->attrs[NL80211_ATTR_PEER_AID])
4314 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4315 params.supported_rates =
4316 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4317 params.supported_rates_len =
4318 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4319 params.listen_interval =
4320 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
4322 if (info->attrs[NL80211_ATTR_PEER_AID])
4323 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4325 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
4326 if (!params.aid || params.aid > IEEE80211_MAX_AID)
4329 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4331 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4332 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4335 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4337 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4338 params.ext_capab_len =
4339 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4342 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4344 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4346 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4348 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4350 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
4351 params.opmode_notif_used = true;
4352 params.opmode_notif =
4353 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
4356 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4357 params.plink_action =
4358 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4359 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4363 err = nl80211_parse_sta_channel_info(info, ¶ms);
4367 err = nl80211_parse_sta_wme(info, ¶ms);
4371 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4374 /* When you run into this, adjust the code below for the new flag */
4375 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
4377 switch (dev->ieee80211_ptr->iftype) {
4378 case NL80211_IFTYPE_AP:
4379 case NL80211_IFTYPE_AP_VLAN:
4380 case NL80211_IFTYPE_P2P_GO:
4381 /* ignore WME attributes if iface/sta is not capable */
4382 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
4383 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
4384 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4386 /* TDLS peers cannot be added */
4387 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4388 info->attrs[NL80211_ATTR_PEER_AID])
4390 /* but don't bother the driver with it */
4391 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
4393 /* allow authenticated/associated only if driver handles it */
4394 if (!(rdev->wiphy.features &
4395 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4396 params.sta_flags_mask &
4397 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4398 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4401 /* must be last in here for error handling */
4402 params.vlan = get_vlan(info, rdev);
4403 if (IS_ERR(params.vlan))
4404 return PTR_ERR(params.vlan);
4406 case NL80211_IFTYPE_MESH_POINT:
4407 /* ignore uAPSD data */
4408 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4410 /* associated is disallowed */
4411 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
4413 /* TDLS peers cannot be added */
4414 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4415 info->attrs[NL80211_ATTR_PEER_AID])
4418 case NL80211_IFTYPE_STATION:
4419 case NL80211_IFTYPE_P2P_CLIENT:
4420 /* ignore uAPSD data */
4421 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4423 /* these are disallowed */
4424 if (params.sta_flags_mask &
4425 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
4426 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
4428 /* Only TDLS peers can be added */
4429 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
4431 /* Can only add if TDLS ... */
4432 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
4434 /* ... with external setup is supported */
4435 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
4438 * Older wpa_supplicant versions always mark the TDLS peer
4439 * as authorized, but it shouldn't yet be.
4441 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
4447 /* be aware of params.vlan when changing code here */
4449 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
4452 dev_put(params.vlan);
4456 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
4458 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4459 struct net_device *dev = info->user_ptr[1];
4460 struct station_del_parameters params;
4462 memset(¶ms, 0, sizeof(params));
4464 if (info->attrs[NL80211_ATTR_MAC])
4465 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
4467 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4468 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
4469 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
4470 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4473 if (!rdev->ops->del_station)
4476 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
4478 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
4479 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
4480 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
4483 /* Default to Deauthentication frame */
4484 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
4487 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
4488 params.reason_code =
4489 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
4490 if (params.reason_code == 0)
4491 return -EINVAL; /* 0 is reserved */
4493 /* Default to reason code 2 */
4494 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
4497 return rdev_del_station(rdev, dev, ¶ms);
4500 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
4501 int flags, struct net_device *dev,
4502 u8 *dst, u8 *next_hop,
4503 struct mpath_info *pinfo)
4506 struct nlattr *pinfoattr;
4508 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
4512 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4513 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
4514 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
4515 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
4516 goto nla_put_failure;
4518 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
4520 goto nla_put_failure;
4521 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
4522 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
4524 goto nla_put_failure;
4525 if (((pinfo->filled & MPATH_INFO_SN) &&
4526 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
4527 ((pinfo->filled & MPATH_INFO_METRIC) &&
4528 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
4530 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
4531 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
4533 ((pinfo->filled & MPATH_INFO_FLAGS) &&
4534 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
4536 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
4537 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
4538 pinfo->discovery_timeout)) ||
4539 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
4540 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
4541 pinfo->discovery_retries)))
4542 goto nla_put_failure;
4544 nla_nest_end(msg, pinfoattr);
4546 return genlmsg_end(msg, hdr);
4549 genlmsg_cancel(msg, hdr);
4553 static int nl80211_dump_mpath(struct sk_buff *skb,
4554 struct netlink_callback *cb)
4556 struct mpath_info pinfo;
4557 struct cfg80211_registered_device *rdev;
4558 struct wireless_dev *wdev;
4560 u8 next_hop[ETH_ALEN];
4561 int path_idx = cb->args[2];
4564 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
4568 if (!rdev->ops->dump_mpath) {
4573 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
4579 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
4586 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
4587 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4588 wdev->netdev, dst, next_hop,
4597 cb->args[2] = path_idx;
4600 nl80211_finish_wdev_dump(rdev);
4604 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
4606 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4608 struct net_device *dev = info->user_ptr[1];
4609 struct mpath_info pinfo;
4610 struct sk_buff *msg;
4612 u8 next_hop[ETH_ALEN];
4614 memset(&pinfo, 0, sizeof(pinfo));
4616 if (!info->attrs[NL80211_ATTR_MAC])
4619 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4621 if (!rdev->ops->get_mpath)
4624 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4627 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
4631 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4635 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
4636 dev, dst, next_hop, &pinfo) < 0) {
4641 return genlmsg_reply(msg, info);
4644 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
4646 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4647 struct net_device *dev = info->user_ptr[1];
4649 u8 *next_hop = NULL;
4651 if (!info->attrs[NL80211_ATTR_MAC])
4654 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4657 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4658 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4660 if (!rdev->ops->change_mpath)
4663 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4666 return rdev_change_mpath(rdev, dev, dst, next_hop);
4669 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
4671 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4672 struct net_device *dev = info->user_ptr[1];
4674 u8 *next_hop = NULL;
4676 if (!info->attrs[NL80211_ATTR_MAC])
4679 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4682 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4683 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4685 if (!rdev->ops->add_mpath)
4688 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4691 return rdev_add_mpath(rdev, dev, dst, next_hop);
4694 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
4696 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4697 struct net_device *dev = info->user_ptr[1];
4700 if (info->attrs[NL80211_ATTR_MAC])
4701 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4703 if (!rdev->ops->del_mpath)
4706 return rdev_del_mpath(rdev, dev, dst);
4709 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
4711 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4713 struct net_device *dev = info->user_ptr[1];
4714 struct mpath_info pinfo;
4715 struct sk_buff *msg;
4719 memset(&pinfo, 0, sizeof(pinfo));
4721 if (!info->attrs[NL80211_ATTR_MAC])
4724 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4726 if (!rdev->ops->get_mpp)
4729 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4732 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
4736 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4740 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
4741 dev, dst, mpp, &pinfo) < 0) {
4746 return genlmsg_reply(msg, info);
4749 static int nl80211_dump_mpp(struct sk_buff *skb,
4750 struct netlink_callback *cb)
4752 struct mpath_info pinfo;
4753 struct cfg80211_registered_device *rdev;
4754 struct wireless_dev *wdev;
4757 int path_idx = cb->args[2];
4760 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
4764 if (!rdev->ops->dump_mpp) {
4769 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
4775 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
4782 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
4783 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4784 wdev->netdev, dst, mpp,
4792 cb->args[2] = path_idx;
4795 nl80211_finish_wdev_dump(rdev);
4799 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
4801 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4802 struct net_device *dev = info->user_ptr[1];
4803 struct wireless_dev *wdev = dev->ieee80211_ptr;
4804 struct bss_parameters params;
4807 memset(¶ms, 0, sizeof(params));
4808 /* default to not changing parameters */
4809 params.use_cts_prot = -1;
4810 params.use_short_preamble = -1;
4811 params.use_short_slot_time = -1;
4812 params.ap_isolate = -1;
4813 params.ht_opmode = -1;
4814 params.p2p_ctwindow = -1;
4815 params.p2p_opp_ps = -1;
4817 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
4818 params.use_cts_prot =
4819 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
4820 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
4821 params.use_short_preamble =
4822 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
4823 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
4824 params.use_short_slot_time =
4825 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
4826 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
4827 params.basic_rates =
4828 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4829 params.basic_rates_len =
4830 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4832 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
4833 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
4834 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
4836 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
4838 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4839 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4841 params.p2p_ctwindow =
4842 nla_get_s8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4843 if (params.p2p_ctwindow < 0)
4845 if (params.p2p_ctwindow != 0 &&
4846 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4850 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4853 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4855 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4858 params.p2p_opp_ps = tmp;
4859 if (params.p2p_opp_ps &&
4860 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4864 if (!rdev->ops->change_bss)
4867 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4868 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4872 err = rdev_change_bss(rdev, dev, ¶ms);
4878 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
4879 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
4880 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
4881 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
4882 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
4883 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
4884 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
4885 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
4888 static int parse_reg_rule(struct nlattr *tb[],
4889 struct ieee80211_reg_rule *reg_rule)
4891 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
4892 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
4894 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
4896 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
4898 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
4900 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
4902 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
4905 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
4907 freq_range->start_freq_khz =
4908 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
4909 freq_range->end_freq_khz =
4910 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
4911 freq_range->max_bandwidth_khz =
4912 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
4914 power_rule->max_eirp =
4915 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
4917 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
4918 power_rule->max_antenna_gain =
4919 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
4921 if (tb[NL80211_ATTR_DFS_CAC_TIME])
4922 reg_rule->dfs_cac_ms =
4923 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
4928 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
4931 enum nl80211_user_reg_hint_type user_reg_hint_type;
4934 * You should only get this when cfg80211 hasn't yet initialized
4935 * completely when built-in to the kernel right between the time
4936 * window between nl80211_init() and regulatory_init(), if that is
4939 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
4940 return -EINPROGRESS;
4942 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
4943 user_reg_hint_type =
4944 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
4946 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
4948 switch (user_reg_hint_type) {
4949 case NL80211_USER_REG_HINT_USER:
4950 case NL80211_USER_REG_HINT_CELL_BASE:
4951 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
4954 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
4955 return regulatory_hint_user(data, user_reg_hint_type);
4956 case NL80211_USER_REG_HINT_INDOOR:
4957 return regulatory_hint_indoor_user();
4963 static int nl80211_get_mesh_config(struct sk_buff *skb,
4964 struct genl_info *info)
4966 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4967 struct net_device *dev = info->user_ptr[1];
4968 struct wireless_dev *wdev = dev->ieee80211_ptr;
4969 struct mesh_config cur_params;
4972 struct nlattr *pinfoattr;
4973 struct sk_buff *msg;
4975 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
4978 if (!rdev->ops->get_mesh_config)
4982 /* If not connected, get default parameters */
4983 if (!wdev->mesh_id_len)
4984 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
4986 err = rdev_get_mesh_config(rdev, dev, &cur_params);
4992 /* Draw up a netlink message to send back */
4993 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4996 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
4997 NL80211_CMD_GET_MESH_CONFIG);
5000 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
5002 goto nla_put_failure;
5003 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5004 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
5005 cur_params.dot11MeshRetryTimeout) ||
5006 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
5007 cur_params.dot11MeshConfirmTimeout) ||
5008 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
5009 cur_params.dot11MeshHoldingTimeout) ||
5010 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
5011 cur_params.dot11MeshMaxPeerLinks) ||
5012 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
5013 cur_params.dot11MeshMaxRetries) ||
5014 nla_put_u8(msg, NL80211_MESHCONF_TTL,
5015 cur_params.dot11MeshTTL) ||
5016 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
5017 cur_params.element_ttl) ||
5018 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
5019 cur_params.auto_open_plinks) ||
5020 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
5021 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
5022 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
5023 cur_params.dot11MeshHWMPmaxPREQretries) ||
5024 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
5025 cur_params.path_refresh_time) ||
5026 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
5027 cur_params.min_discovery_timeout) ||
5028 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
5029 cur_params.dot11MeshHWMPactivePathTimeout) ||
5030 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
5031 cur_params.dot11MeshHWMPpreqMinInterval) ||
5032 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
5033 cur_params.dot11MeshHWMPperrMinInterval) ||
5034 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
5035 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
5036 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
5037 cur_params.dot11MeshHWMPRootMode) ||
5038 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
5039 cur_params.dot11MeshHWMPRannInterval) ||
5040 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
5041 cur_params.dot11MeshGateAnnouncementProtocol) ||
5042 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
5043 cur_params.dot11MeshForwarding) ||
5044 nla_put_u32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
5045 cur_params.rssi_threshold) ||
5046 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
5047 cur_params.ht_opmode) ||
5048 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
5049 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
5050 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
5051 cur_params.dot11MeshHWMProotInterval) ||
5052 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
5053 cur_params.dot11MeshHWMPconfirmationInterval) ||
5054 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
5055 cur_params.power_mode) ||
5056 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
5057 cur_params.dot11MeshAwakeWindowDuration) ||
5058 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
5059 cur_params.plink_timeout))
5060 goto nla_put_failure;
5061 nla_nest_end(msg, pinfoattr);
5062 genlmsg_end(msg, hdr);
5063 return genlmsg_reply(msg, info);
5066 genlmsg_cancel(msg, hdr);
5072 static const struct nla_policy nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
5073 [NL80211_MESHCONF_RETRY_TIMEOUT] = { .type = NLA_U16 },
5074 [NL80211_MESHCONF_CONFIRM_TIMEOUT] = { .type = NLA_U16 },
5075 [NL80211_MESHCONF_HOLDING_TIMEOUT] = { .type = NLA_U16 },
5076 [NL80211_MESHCONF_MAX_PEER_LINKS] = { .type = NLA_U16 },
5077 [NL80211_MESHCONF_MAX_RETRIES] = { .type = NLA_U8 },
5078 [NL80211_MESHCONF_TTL] = { .type = NLA_U8 },
5079 [NL80211_MESHCONF_ELEMENT_TTL] = { .type = NLA_U8 },
5080 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = { .type = NLA_U8 },
5081 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] = { .type = NLA_U32 },
5082 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
5083 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
5084 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = { .type = NLA_U16 },
5085 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
5086 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] = { .type = NLA_U16 },
5087 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] = { .type = NLA_U16 },
5088 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] = { .type = NLA_U16 },
5089 [NL80211_MESHCONF_HWMP_ROOTMODE] = { .type = NLA_U8 },
5090 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] = { .type = NLA_U16 },
5091 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = { .type = NLA_U8 },
5092 [NL80211_MESHCONF_FORWARDING] = { .type = NLA_U8 },
5093 [NL80211_MESHCONF_RSSI_THRESHOLD] = { .type = NLA_U32 },
5094 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
5095 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
5096 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] = { .type = NLA_U16 },
5097 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] = { .type = NLA_U16 },
5098 [NL80211_MESHCONF_POWER_MODE] = { .type = NLA_U32 },
5099 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
5100 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
5103 static const struct nla_policy
5104 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
5105 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
5106 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
5107 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
5108 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
5109 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
5110 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
5111 [NL80211_MESH_SETUP_IE] = { .type = NLA_BINARY,
5112 .len = IEEE80211_MAX_DATA_LEN },
5113 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
5116 static int nl80211_parse_mesh_config(struct genl_info *info,
5117 struct mesh_config *cfg,
5120 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
5123 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, min, max, mask, attr, fn) \
5126 if (fn(tb[attr]) < min || fn(tb[attr]) > max) \
5128 cfg->param = fn(tb[attr]); \
5129 mask |= (1 << (attr - 1)); \
5134 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
5136 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
5137 info->attrs[NL80211_ATTR_MESH_CONFIG],
5138 nl80211_meshconf_params_policy))
5141 /* This makes sure that there aren't more than 32 mesh config
5142 * parameters (otherwise our bitfield scheme would not work.) */
5143 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
5145 /* Fill in the params struct */
5146 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, 1, 255,
5147 mask, NL80211_MESHCONF_RETRY_TIMEOUT,
5149 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, 1, 255,
5150 mask, NL80211_MESHCONF_CONFIRM_TIMEOUT,
5152 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, 1, 255,
5153 mask, NL80211_MESHCONF_HOLDING_TIMEOUT,
5155 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, 0, 255,
5156 mask, NL80211_MESHCONF_MAX_PEER_LINKS,
5158 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, 0, 16,
5159 mask, NL80211_MESHCONF_MAX_RETRIES,
5161 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, 1, 255,
5162 mask, NL80211_MESHCONF_TTL, nla_get_u8);
5163 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, 1, 255,
5164 mask, NL80211_MESHCONF_ELEMENT_TTL,
5166 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, 0, 1,
5167 mask, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
5169 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
5171 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
5173 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, 0, 255,
5174 mask, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
5176 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, 1, 65535,
5177 mask, NL80211_MESHCONF_PATH_REFRESH_TIME,
5179 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, 1, 65535,
5180 mask, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
5182 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
5184 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
5186 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval,
5188 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
5190 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval,
5192 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
5194 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
5195 dot11MeshHWMPnetDiameterTraversalTime,
5197 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
5199 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, 0, 4,
5200 mask, NL80211_MESHCONF_HWMP_ROOTMODE,
5202 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, 1, 65535,
5203 mask, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
5205 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
5206 dot11MeshGateAnnouncementProtocol, 0, 1,
5207 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
5209 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, 0, 1,
5210 mask, NL80211_MESHCONF_FORWARDING,
5212 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, -255, 0,
5213 mask, NL80211_MESHCONF_RSSI_THRESHOLD,
5215 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, ht_opmode, 0, 16,
5216 mask, NL80211_MESHCONF_HT_OPMODE,
5218 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathToRootTimeout,
5220 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
5222 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, 1, 65535,
5223 mask, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
5225 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
5226 dot11MeshHWMPconfirmationInterval,
5228 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
5230 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode,
5231 NL80211_MESH_POWER_ACTIVE,
5232 NL80211_MESH_POWER_MAX,
5233 mask, NL80211_MESHCONF_POWER_MODE,
5235 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration,
5237 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
5238 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, 1, 0xffffffff,
5239 mask, NL80211_MESHCONF_PLINK_TIMEOUT,
5246 #undef FILL_IN_MESH_PARAM_IF_SET
5249 static int nl80211_parse_mesh_setup(struct genl_info *info,
5250 struct mesh_setup *setup)
5252 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5253 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
5255 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
5257 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
5258 info->attrs[NL80211_ATTR_MESH_SETUP],
5259 nl80211_mesh_setup_params_policy))
5262 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
5263 setup->sync_method =
5264 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
5265 IEEE80211_SYNC_METHOD_VENDOR :
5266 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
5268 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
5269 setup->path_sel_proto =
5270 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
5271 IEEE80211_PATH_PROTOCOL_VENDOR :
5272 IEEE80211_PATH_PROTOCOL_HWMP;
5274 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
5275 setup->path_metric =
5276 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
5277 IEEE80211_PATH_METRIC_VENDOR :
5278 IEEE80211_PATH_METRIC_AIRTIME;
5281 if (tb[NL80211_MESH_SETUP_IE]) {
5282 struct nlattr *ieattr =
5283 tb[NL80211_MESH_SETUP_IE];
5284 if (!is_valid_ie_attr(ieattr))
5286 setup->ie = nla_data(ieattr);
5287 setup->ie_len = nla_len(ieattr);
5289 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
5290 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
5292 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
5293 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
5294 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
5295 if (setup->is_secure)
5296 setup->user_mpm = true;
5298 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
5299 if (!setup->user_mpm)
5302 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
5308 static int nl80211_update_mesh_config(struct sk_buff *skb,
5309 struct genl_info *info)
5311 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5312 struct net_device *dev = info->user_ptr[1];
5313 struct wireless_dev *wdev = dev->ieee80211_ptr;
5314 struct mesh_config cfg;
5318 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
5321 if (!rdev->ops->update_mesh_config)
5324 err = nl80211_parse_mesh_config(info, &cfg, &mask);
5329 if (!wdev->mesh_id_len)
5333 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
5340 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
5341 struct sk_buff *msg)
5343 struct nlattr *nl_reg_rules;
5346 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
5347 (regdom->dfs_region &&
5348 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
5349 goto nla_put_failure;
5351 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
5353 goto nla_put_failure;
5355 for (i = 0; i < regdom->n_reg_rules; i++) {
5356 struct nlattr *nl_reg_rule;
5357 const struct ieee80211_reg_rule *reg_rule;
5358 const struct ieee80211_freq_range *freq_range;
5359 const struct ieee80211_power_rule *power_rule;
5360 unsigned int max_bandwidth_khz;
5362 reg_rule = ®dom->reg_rules[i];
5363 freq_range = ®_rule->freq_range;
5364 power_rule = ®_rule->power_rule;
5366 nl_reg_rule = nla_nest_start(msg, i);
5368 goto nla_put_failure;
5370 max_bandwidth_khz = freq_range->max_bandwidth_khz;
5371 if (!max_bandwidth_khz)
5372 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
5375 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
5377 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
5378 freq_range->start_freq_khz) ||
5379 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
5380 freq_range->end_freq_khz) ||
5381 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
5382 max_bandwidth_khz) ||
5383 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
5384 power_rule->max_antenna_gain) ||
5385 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
5386 power_rule->max_eirp) ||
5387 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
5388 reg_rule->dfs_cac_ms))
5389 goto nla_put_failure;
5391 nla_nest_end(msg, nl_reg_rule);
5394 nla_nest_end(msg, nl_reg_rules);
5401 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
5403 const struct ieee80211_regdomain *regdom = NULL;
5404 struct cfg80211_registered_device *rdev;
5405 struct wiphy *wiphy = NULL;
5406 struct sk_buff *msg;
5409 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5413 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
5414 NL80211_CMD_GET_REG);
5418 if (info->attrs[NL80211_ATTR_WIPHY]) {
5421 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
5424 return PTR_ERR(rdev);
5427 wiphy = &rdev->wiphy;
5428 self_managed = wiphy->regulatory_flags &
5429 REGULATORY_WIPHY_SELF_MANAGED;
5430 regdom = get_wiphy_regdom(wiphy);
5432 /* a self-managed-reg device must have a private regdom */
5433 if (WARN_ON(!regdom && self_managed)) {
5439 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
5440 goto nla_put_failure;
5443 if (!wiphy && reg_last_request_cell_base() &&
5444 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
5445 NL80211_USER_REG_HINT_CELL_BASE))
5446 goto nla_put_failure;
5451 regdom = rcu_dereference(cfg80211_regdomain);
5453 if (nl80211_put_regdom(regdom, msg))
5454 goto nla_put_failure_rcu;
5458 genlmsg_end(msg, hdr);
5459 return genlmsg_reply(msg, info);
5461 nla_put_failure_rcu:
5464 genlmsg_cancel(msg, hdr);
5470 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
5471 u32 seq, int flags, struct wiphy *wiphy,
5472 const struct ieee80211_regdomain *regdom)
5474 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
5475 NL80211_CMD_GET_REG);
5480 genl_dump_check_consistent(cb, hdr, &nl80211_fam);
5482 if (nl80211_put_regdom(regdom, msg))
5483 goto nla_put_failure;
5485 if (!wiphy && reg_last_request_cell_base() &&
5486 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
5487 NL80211_USER_REG_HINT_CELL_BASE))
5488 goto nla_put_failure;
5491 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
5492 goto nla_put_failure;
5494 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
5495 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
5496 goto nla_put_failure;
5498 return genlmsg_end(msg, hdr);
5501 genlmsg_cancel(msg, hdr);
5505 static int nl80211_get_reg_dump(struct sk_buff *skb,
5506 struct netlink_callback *cb)
5508 const struct ieee80211_regdomain *regdom = NULL;
5509 struct cfg80211_registered_device *rdev;
5510 int err, reg_idx, start = cb->args[2];
5514 if (cfg80211_regdomain && start == 0) {
5515 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
5517 rtnl_dereference(cfg80211_regdomain));
5522 /* the global regdom is idx 0 */
5524 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
5525 regdom = get_wiphy_regdom(&rdev->wiphy);
5529 if (++reg_idx <= start)
5532 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
5533 NLM_F_MULTI, &rdev->wiphy, regdom);
5540 cb->args[2] = reg_idx;
5547 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
5549 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
5550 struct nlattr *nl_reg_rule;
5552 int rem_reg_rules, r;
5553 u32 num_rules = 0, rule_idx = 0, size_of_regd;
5554 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
5555 struct ieee80211_regdomain *rd;
5557 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
5560 if (!info->attrs[NL80211_ATTR_REG_RULES])
5563 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
5565 if (info->attrs[NL80211_ATTR_DFS_REGION])
5566 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
5568 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5571 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
5575 if (!reg_is_valid_request(alpha2))
5578 size_of_regd = sizeof(struct ieee80211_regdomain) +
5579 num_rules * sizeof(struct ieee80211_reg_rule);
5581 rd = kzalloc(size_of_regd, GFP_KERNEL);
5585 rd->n_reg_rules = num_rules;
5586 rd->alpha2[0] = alpha2[0];
5587 rd->alpha2[1] = alpha2[1];
5590 * Disable DFS master mode if the DFS region was
5591 * not supported or known on this kernel.
5593 if (reg_supported_dfs_region(dfs_region))
5594 rd->dfs_region = dfs_region;
5596 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5598 r = nla_parse(tb, NL80211_REG_RULE_ATTR_MAX,
5599 nla_data(nl_reg_rule), nla_len(nl_reg_rule),
5603 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
5609 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
5616 /* set_regdom took ownership */
5624 static int validate_scan_freqs(struct nlattr *freqs)
5626 struct nlattr *attr1, *attr2;
5627 int n_channels = 0, tmp1, tmp2;
5629 nla_for_each_nested(attr1, freqs, tmp1) {
5632 * Some hardware has a limited channel list for
5633 * scanning, and it is pretty much nonsensical
5634 * to scan for a channel twice, so disallow that
5635 * and don't require drivers to check that the
5636 * channel list they get isn't longer than what
5637 * they can scan, as long as they can scan all
5638 * the channels they registered at once.
5640 nla_for_each_nested(attr2, freqs, tmp2)
5641 if (attr1 != attr2 &&
5642 nla_get_u32(attr1) == nla_get_u32(attr2))
5649 static int nl80211_parse_random_mac(struct nlattr **attrs,
5650 u8 *mac_addr, u8 *mac_addr_mask)
5654 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
5655 memset(mac_addr, 0, ETH_ALEN);
5656 memset(mac_addr_mask, 0, ETH_ALEN);
5658 mac_addr_mask[0] = 0x3;
5663 /* need both or none */
5664 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
5667 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
5668 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
5670 /* don't allow or configure an mcast address */
5671 if (!is_multicast_ether_addr(mac_addr_mask) ||
5672 is_multicast_ether_addr(mac_addr))
5676 * allow users to pass a MAC address that has bits set outside
5677 * of the mask, but don't bother drivers with having to deal
5680 for (i = 0; i < ETH_ALEN; i++)
5681 mac_addr[i] &= mac_addr_mask[i];
5686 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
5688 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5689 struct wireless_dev *wdev = info->user_ptr[1];
5690 struct cfg80211_scan_request *request;
5691 struct nlattr *attr;
5692 struct wiphy *wiphy;
5693 int err, tmp, n_ssids = 0, n_channels, i;
5696 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5699 wiphy = &rdev->wiphy;
5701 if (!rdev->ops->scan)
5704 if (rdev->scan_req || rdev->scan_msg) {
5709 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5710 n_channels = validate_scan_freqs(
5711 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5717 n_channels = ieee80211_get_num_supported_channels(wiphy);
5720 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5721 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
5724 if (n_ssids > wiphy->max_scan_ssids) {
5729 if (info->attrs[NL80211_ATTR_IE])
5730 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5734 if (ie_len > wiphy->max_scan_ie_len) {
5739 request = kzalloc(sizeof(*request)
5740 + sizeof(*request->ssids) * n_ssids
5741 + sizeof(*request->channels) * n_channels
5742 + ie_len, GFP_KERNEL);
5749 request->ssids = (void *)&request->channels[n_channels];
5750 request->n_ssids = n_ssids;
5753 request->ie = (void *)(request->ssids + n_ssids);
5755 request->ie = (void *)(request->channels + n_channels);
5759 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5760 /* user specified, bail out if channel not found */
5761 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
5762 struct ieee80211_channel *chan;
5764 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5771 /* ignore disabled channels */
5772 if (chan->flags & IEEE80211_CHAN_DISABLED)
5775 request->channels[i] = chan;
5779 enum ieee80211_band band;
5782 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5784 if (!wiphy->bands[band])
5786 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5787 struct ieee80211_channel *chan;
5789 chan = &wiphy->bands[band]->channels[j];
5791 if (chan->flags & IEEE80211_CHAN_DISABLED)
5794 request->channels[i] = chan;
5805 request->n_channels = i;
5808 if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
5809 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
5810 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5814 request->ssids[i].ssid_len = nla_len(attr);
5815 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
5820 if (info->attrs[NL80211_ATTR_IE]) {
5821 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5822 memcpy((void *)request->ie,
5823 nla_data(info->attrs[NL80211_ATTR_IE]),
5827 for (i = 0; i < IEEE80211_NUM_BANDS; i++)
5828 if (wiphy->bands[i])
5830 (1 << wiphy->bands[i]->n_bitrates) - 1;
5832 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
5833 nla_for_each_nested(attr,
5834 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
5836 enum ieee80211_band band = nla_type(attr);
5838 if (band < 0 || band >= IEEE80211_NUM_BANDS) {
5843 if (!wiphy->bands[band])
5846 err = ieee80211_get_ratemask(wiphy->bands[band],
5849 &request->rates[band]);
5855 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5856 request->flags = nla_get_u32(
5857 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5858 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5859 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5864 if (request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
5865 if (!(wiphy->features &
5866 NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR)) {
5871 if (wdev->current_bss) {
5876 err = nl80211_parse_random_mac(info->attrs,
5878 request->mac_addr_mask);
5885 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
5887 request->wdev = wdev;
5888 request->wiphy = &rdev->wiphy;
5889 request->scan_start = jiffies;
5891 rdev->scan_req = request;
5892 err = rdev_scan(rdev, request);
5895 nl80211_send_scan_start(rdev, wdev);
5897 dev_hold(wdev->netdev);
5900 rdev->scan_req = NULL;
5908 static struct cfg80211_sched_scan_request *
5909 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
5910 struct nlattr **attrs)
5912 struct cfg80211_sched_scan_request *request;
5913 struct nlattr *attr;
5914 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i;
5916 enum ieee80211_band band;
5918 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
5919 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
5921 if (!is_valid_ie_attr(attrs[NL80211_ATTR_IE]))
5922 return ERR_PTR(-EINVAL);
5924 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
5925 return ERR_PTR(-EINVAL);
5927 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
5929 return ERR_PTR(-EINVAL);
5931 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5932 n_channels = validate_scan_freqs(
5933 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5935 return ERR_PTR(-EINVAL);
5937 n_channels = ieee80211_get_num_supported_channels(wiphy);
5940 if (attrs[NL80211_ATTR_SCAN_SSIDS])
5941 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
5945 if (n_ssids > wiphy->max_sched_scan_ssids)
5946 return ERR_PTR(-EINVAL);
5949 * First, count the number of 'real' matchsets. Due to an issue with
5950 * the old implementation, matchsets containing only the RSSI attribute
5951 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
5952 * RSSI for all matchsets, rather than their own matchset for reporting
5953 * all APs with a strong RSSI. This is needed to be compatible with
5954 * older userspace that treated a matchset with only the RSSI as the
5955 * global RSSI for all other matchsets - if there are other matchsets.
5957 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
5958 nla_for_each_nested(attr,
5959 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
5961 struct nlattr *rssi;
5963 err = nla_parse(tb, NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
5964 nla_data(attr), nla_len(attr),
5965 nl80211_match_policy);
5967 return ERR_PTR(err);
5968 /* add other standalone attributes here */
5969 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID]) {
5973 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
5975 default_match_rssi = nla_get_s32(rssi);
5979 /* However, if there's no other matchset, add the RSSI one */
5980 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
5983 if (n_match_sets > wiphy->max_match_sets)
5984 return ERR_PTR(-EINVAL);
5986 if (attrs[NL80211_ATTR_IE])
5987 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
5991 if (ie_len > wiphy->max_sched_scan_ie_len)
5992 return ERR_PTR(-EINVAL);
5994 request = kzalloc(sizeof(*request)
5995 + sizeof(*request->ssids) * n_ssids
5996 + sizeof(*request->match_sets) * n_match_sets
5997 + sizeof(*request->channels) * n_channels
5998 + ie_len, GFP_KERNEL);
6000 return ERR_PTR(-ENOMEM);
6003 request->ssids = (void *)&request->channels[n_channels];
6004 request->n_ssids = n_ssids;
6007 request->ie = (void *)(request->ssids + n_ssids);
6009 request->ie = (void *)(request->channels + n_channels);
6014 request->match_sets = (void *)(request->ie + ie_len);
6015 else if (request->ssids)
6016 request->match_sets =
6017 (void *)(request->ssids + n_ssids);
6019 request->match_sets =
6020 (void *)(request->channels + n_channels);
6022 request->n_match_sets = n_match_sets;
6025 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
6026 /* user specified, bail out if channel not found */
6027 nla_for_each_nested(attr,
6028 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
6030 struct ieee80211_channel *chan;
6032 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
6039 /* ignore disabled channels */
6040 if (chan->flags & IEEE80211_CHAN_DISABLED)
6043 request->channels[i] = chan;
6048 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
6050 if (!wiphy->bands[band])
6052 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
6053 struct ieee80211_channel *chan;
6055 chan = &wiphy->bands[band]->channels[j];
6057 if (chan->flags & IEEE80211_CHAN_DISABLED)
6060 request->channels[i] = chan;
6071 request->n_channels = i;
6074 if (attrs[NL80211_ATTR_SCAN_SSIDS]) {
6075 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
6077 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
6081 request->ssids[i].ssid_len = nla_len(attr);
6082 memcpy(request->ssids[i].ssid, nla_data(attr),
6089 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
6090 nla_for_each_nested(attr,
6091 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
6093 struct nlattr *ssid, *rssi;
6095 err = nla_parse(tb, NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
6096 nla_data(attr), nla_len(attr),
6097 nl80211_match_policy);
6100 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
6102 if (WARN_ON(i >= n_match_sets)) {
6103 /* this indicates a programming error,
6104 * the loop above should have verified
6111 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
6115 memcpy(request->match_sets[i].ssid.ssid,
6116 nla_data(ssid), nla_len(ssid));
6117 request->match_sets[i].ssid.ssid_len =
6119 /* special attribute - old implemenation w/a */
6120 request->match_sets[i].rssi_thold =
6122 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
6124 request->match_sets[i].rssi_thold =
6130 /* there was no other matchset, so the RSSI one is alone */
6131 if (i == 0 && n_match_sets)
6132 request->match_sets[0].rssi_thold = default_match_rssi;
6134 request->min_rssi_thold = INT_MAX;
6135 for (i = 0; i < n_match_sets; i++)
6136 request->min_rssi_thold =
6137 min(request->match_sets[i].rssi_thold,
6138 request->min_rssi_thold);
6140 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
6144 request->ie_len = ie_len;
6145 memcpy((void *)request->ie,
6146 nla_data(attrs[NL80211_ATTR_IE]),
6150 if (attrs[NL80211_ATTR_SCAN_FLAGS]) {
6151 request->flags = nla_get_u32(
6152 attrs[NL80211_ATTR_SCAN_FLAGS]);
6153 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
6154 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
6159 if (request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
6160 u32 flg = NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR;
6162 if (!wdev) /* must be net-detect */
6163 flg = NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
6165 if (!(wiphy->features & flg)) {
6170 if (wdev && wdev->current_bss) {
6175 err = nl80211_parse_random_mac(attrs, request->mac_addr,
6176 request->mac_addr_mask);
6182 request->interval = interval;
6183 request->scan_start = jiffies;
6189 return ERR_PTR(err);
6192 static int nl80211_start_sched_scan(struct sk_buff *skb,
6193 struct genl_info *info)
6195 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6196 struct net_device *dev = info->user_ptr[1];
6197 struct wireless_dev *wdev = dev->ieee80211_ptr;
6198 struct cfg80211_sched_scan_request *sched_scan_req;
6201 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
6202 !rdev->ops->sched_scan_start)
6205 if (rdev->sched_scan_req)
6206 return -EINPROGRESS;
6208 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
6211 err = PTR_ERR_OR_ZERO(sched_scan_req);
6215 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
6219 sched_scan_req->dev = dev;
6220 sched_scan_req->wiphy = &rdev->wiphy;
6222 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
6223 sched_scan_req->owner_nlportid = info->snd_portid;
6225 rcu_assign_pointer(rdev->sched_scan_req, sched_scan_req);
6227 nl80211_send_sched_scan(rdev, dev,
6228 NL80211_CMD_START_SCHED_SCAN);
6232 kfree(sched_scan_req);
6237 static int nl80211_stop_sched_scan(struct sk_buff *skb,
6238 struct genl_info *info)
6240 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6242 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
6243 !rdev->ops->sched_scan_stop)
6246 return __cfg80211_stop_sched_scan(rdev, false);
6249 static int nl80211_start_radar_detection(struct sk_buff *skb,
6250 struct genl_info *info)
6252 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6253 struct net_device *dev = info->user_ptr[1];
6254 struct wireless_dev *wdev = dev->ieee80211_ptr;
6255 struct cfg80211_chan_def chandef;
6256 enum nl80211_dfs_regions dfs_region;
6257 unsigned int cac_time_ms;
6260 dfs_region = reg_get_dfs_region(wdev->wiphy);
6261 if (dfs_region == NL80211_DFS_UNSET)
6264 err = nl80211_parse_chandef(rdev, info, &chandef);
6268 if (netif_carrier_ok(dev))
6271 if (wdev->cac_started)
6274 err = cfg80211_chandef_dfs_required(wdev->wiphy, &chandef,
6282 if (!cfg80211_chandef_dfs_usable(wdev->wiphy, &chandef))
6285 if (!rdev->ops->start_radar_detection)
6288 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
6289 if (WARN_ON(!cac_time_ms))
6290 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
6292 err = rdev->ops->start_radar_detection(&rdev->wiphy, dev, &chandef,
6295 wdev->chandef = chandef;
6296 wdev->cac_started = true;
6297 wdev->cac_start_time = jiffies;
6298 wdev->cac_time_ms = cac_time_ms;
6303 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
6305 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6306 struct net_device *dev = info->user_ptr[1];
6307 struct wireless_dev *wdev = dev->ieee80211_ptr;
6308 struct cfg80211_csa_settings params;
6309 /* csa_attrs is defined static to avoid waste of stack size - this
6310 * function is called under RTNL lock, so this should not be a problem.
6312 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
6314 bool need_new_beacon = false;
6318 if (!rdev->ops->channel_switch ||
6319 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
6322 switch (dev->ieee80211_ptr->iftype) {
6323 case NL80211_IFTYPE_AP:
6324 case NL80211_IFTYPE_P2P_GO:
6325 need_new_beacon = true;
6327 /* useless if AP is not running */
6328 if (!wdev->beacon_interval)
6331 case NL80211_IFTYPE_ADHOC:
6332 if (!wdev->ssid_len)
6335 case NL80211_IFTYPE_MESH_POINT:
6336 if (!wdev->mesh_id_len)
6343 memset(¶ms, 0, sizeof(params));
6345 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
6346 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
6349 /* only important for AP, IBSS and mesh create IEs internally */
6350 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
6353 /* Even though the attribute is u32, the specification says
6354 * u8, so let's make sure we don't overflow.
6356 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
6360 params.count = cs_count;
6362 if (!need_new_beacon)
6365 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon_after);
6369 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
6370 info->attrs[NL80211_ATTR_CSA_IES],
6375 err = nl80211_parse_beacon(csa_attrs, ¶ms.beacon_csa);
6379 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
6382 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
6383 if (!len || (len % sizeof(u16)))
6386 params.n_counter_offsets_beacon = len / sizeof(u16);
6387 if (rdev->wiphy.max_num_csa_counters &&
6388 (params.n_counter_offsets_beacon >
6389 rdev->wiphy.max_num_csa_counters))
6392 params.counter_offsets_beacon =
6393 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
6395 /* sanity checks - counters should fit and be the same */
6396 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
6397 u16 offset = params.counter_offsets_beacon[i];
6399 if (offset >= params.beacon_csa.tail_len)
6402 if (params.beacon_csa.tail[offset] != params.count)
6406 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
6407 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
6408 if (!len || (len % sizeof(u16)))
6411 params.n_counter_offsets_presp = len / sizeof(u16);
6412 if (rdev->wiphy.max_num_csa_counters &&
6413 (params.n_counter_offsets_beacon >
6414 rdev->wiphy.max_num_csa_counters))
6417 params.counter_offsets_presp =
6418 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
6420 /* sanity checks - counters should fit and be the same */
6421 for (i = 0; i < params.n_counter_offsets_presp; i++) {
6422 u16 offset = params.counter_offsets_presp[i];
6424 if (offset >= params.beacon_csa.probe_resp_len)
6427 if (params.beacon_csa.probe_resp[offset] !=
6434 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
6438 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef,
6442 err = cfg80211_chandef_dfs_required(wdev->wiphy,
6449 params.radar_required = true;
6451 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
6452 params.block_tx = true;
6455 err = rdev_channel_switch(rdev, dev, ¶ms);
6461 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
6463 struct cfg80211_registered_device *rdev,
6464 struct wireless_dev *wdev,
6465 struct cfg80211_internal_bss *intbss)
6467 struct cfg80211_bss *res = &intbss->pub;
6468 const struct cfg80211_bss_ies *ies;
6472 ASSERT_WDEV_LOCK(wdev);
6474 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6475 NL80211_CMD_NEW_SCAN_RESULTS);
6479 genl_dump_check_consistent(cb, hdr, &nl80211_fam);
6481 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
6482 goto nla_put_failure;
6484 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
6485 goto nla_put_failure;
6486 if (nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
6487 goto nla_put_failure;
6489 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
6491 goto nla_put_failure;
6492 if ((!is_zero_ether_addr(res->bssid) &&
6493 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
6494 goto nla_put_failure;
6497 /* indicate whether we have probe response data or not */
6498 if (rcu_access_pointer(res->proberesp_ies) &&
6499 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
6500 goto fail_unlock_rcu;
6502 /* this pointer prefers to be pointed to probe response data
6503 * but is always valid
6505 ies = rcu_dereference(res->ies);
6507 if (nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
6508 goto fail_unlock_rcu;
6509 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
6510 ies->len, ies->data))
6511 goto fail_unlock_rcu;
6514 /* and this pointer is always (unless driver didn't know) beacon data */
6515 ies = rcu_dereference(res->beacon_ies);
6516 if (ies && ies->from_beacon) {
6517 if (nla_put_u64(msg, NL80211_BSS_BEACON_TSF, ies->tsf))
6518 goto fail_unlock_rcu;
6519 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
6520 ies->len, ies->data))
6521 goto fail_unlock_rcu;
6525 if (res->beacon_interval &&
6526 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
6527 goto nla_put_failure;
6528 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
6529 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
6530 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
6531 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
6532 jiffies_to_msecs(jiffies - intbss->ts)))
6533 goto nla_put_failure;
6535 switch (rdev->wiphy.signal_type) {
6536 case CFG80211_SIGNAL_TYPE_MBM:
6537 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
6538 goto nla_put_failure;
6540 case CFG80211_SIGNAL_TYPE_UNSPEC:
6541 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
6542 goto nla_put_failure;
6548 switch (wdev->iftype) {
6549 case NL80211_IFTYPE_P2P_CLIENT:
6550 case NL80211_IFTYPE_STATION:
6551 if (intbss == wdev->current_bss &&
6552 nla_put_u32(msg, NL80211_BSS_STATUS,
6553 NL80211_BSS_STATUS_ASSOCIATED))
6554 goto nla_put_failure;
6556 case NL80211_IFTYPE_ADHOC:
6557 if (intbss == wdev->current_bss &&
6558 nla_put_u32(msg, NL80211_BSS_STATUS,
6559 NL80211_BSS_STATUS_IBSS_JOINED))
6560 goto nla_put_failure;
6566 nla_nest_end(msg, bss);
6568 return genlmsg_end(msg, hdr);
6573 genlmsg_cancel(msg, hdr);
6577 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
6579 struct cfg80211_registered_device *rdev;
6580 struct cfg80211_internal_bss *scan;
6581 struct wireless_dev *wdev;
6582 int start = cb->args[2], idx = 0;
6585 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
6590 spin_lock_bh(&rdev->bss_lock);
6591 cfg80211_bss_expire(rdev);
6593 cb->seq = rdev->bss_generation;
6595 list_for_each_entry(scan, &rdev->bss_list, list) {
6598 if (nl80211_send_bss(skb, cb,
6599 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6600 rdev, wdev, scan) < 0) {
6606 spin_unlock_bh(&rdev->bss_lock);
6610 nl80211_finish_wdev_dump(rdev);
6615 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
6616 int flags, struct net_device *dev,
6617 bool allow_radio_stats,
6618 struct survey_info *survey)
6621 struct nlattr *infoattr;
6623 /* skip radio stats if userspace didn't request them */
6624 if (!survey->channel && !allow_radio_stats)
6627 hdr = nl80211hdr_put(msg, portid, seq, flags,
6628 NL80211_CMD_NEW_SURVEY_RESULTS);
6632 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
6633 goto nla_put_failure;
6635 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
6637 goto nla_put_failure;
6639 if (survey->channel &&
6640 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
6641 survey->channel->center_freq))
6642 goto nla_put_failure;
6644 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
6645 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
6646 goto nla_put_failure;
6647 if ((survey->filled & SURVEY_INFO_IN_USE) &&
6648 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
6649 goto nla_put_failure;
6650 if ((survey->filled & SURVEY_INFO_TIME) &&
6651 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME,
6653 goto nla_put_failure;
6654 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
6655 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_BUSY,
6657 goto nla_put_failure;
6658 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
6659 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
6660 survey->time_ext_busy))
6661 goto nla_put_failure;
6662 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
6663 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_RX,
6665 goto nla_put_failure;
6666 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
6667 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_TX,
6669 goto nla_put_failure;
6670 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
6671 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_SCAN,
6673 goto nla_put_failure;
6675 nla_nest_end(msg, infoattr);
6677 return genlmsg_end(msg, hdr);
6680 genlmsg_cancel(msg, hdr);
6684 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
6686 struct survey_info survey;
6687 struct cfg80211_registered_device *rdev;
6688 struct wireless_dev *wdev;
6689 int survey_idx = cb->args[2];
6693 res = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
6697 /* prepare_wdev_dump parsed the attributes */
6698 radio_stats = nl80211_fam.attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
6700 if (!wdev->netdev) {
6705 if (!rdev->ops->dump_survey) {
6711 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
6717 /* don't send disabled channels, but do send non-channel data */
6718 if (survey.channel &&
6719 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
6724 if (nl80211_send_survey(skb,
6725 NETLINK_CB(cb->skb).portid,
6726 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6727 wdev->netdev, radio_stats, &survey) < 0)
6733 cb->args[2] = survey_idx;
6736 nl80211_finish_wdev_dump(rdev);
6740 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
6742 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
6743 NL80211_WPA_VERSION_2));
6746 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
6748 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6749 struct net_device *dev = info->user_ptr[1];
6750 struct ieee80211_channel *chan;
6751 const u8 *bssid, *ssid, *ie = NULL, *sae_data = NULL;
6752 int err, ssid_len, ie_len = 0, sae_data_len = 0;
6753 enum nl80211_auth_type auth_type;
6754 struct key_parse key;
6755 bool local_state_change;
6757 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6760 if (!info->attrs[NL80211_ATTR_MAC])
6763 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
6766 if (!info->attrs[NL80211_ATTR_SSID])
6769 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
6772 err = nl80211_parse_key(info, &key);
6777 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
6779 if (!key.p.key || !key.p.key_len)
6781 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
6782 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
6783 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
6784 key.p.key_len != WLAN_KEY_LEN_WEP104))
6796 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
6797 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
6806 if (!rdev->ops->auth)
6809 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6810 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6813 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6814 chan = nl80211_get_valid_chan(&rdev->wiphy,
6815 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
6819 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6820 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6822 if (info->attrs[NL80211_ATTR_IE]) {
6823 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6824 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6827 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6828 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
6831 if (auth_type == NL80211_AUTHTYPE_SAE &&
6832 !info->attrs[NL80211_ATTR_SAE_DATA])
6835 if (info->attrs[NL80211_ATTR_SAE_DATA]) {
6836 if (auth_type != NL80211_AUTHTYPE_SAE)
6838 sae_data = nla_data(info->attrs[NL80211_ATTR_SAE_DATA]);
6839 sae_data_len = nla_len(info->attrs[NL80211_ATTR_SAE_DATA]);
6840 /* need to include at least Auth Transaction and Status Code */
6841 if (sae_data_len < 4)
6845 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6848 * Since we no longer track auth state, ignore
6849 * requests to only change local state.
6851 if (local_state_change)
6854 wdev_lock(dev->ieee80211_ptr);
6855 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
6856 ssid, ssid_len, ie, ie_len,
6857 key.p.key, key.p.key_len, key.idx,
6858 sae_data, sae_data_len);
6859 wdev_unlock(dev->ieee80211_ptr);
6863 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
6864 struct genl_info *info,
6865 struct cfg80211_crypto_settings *settings,
6868 memset(settings, 0, sizeof(*settings));
6870 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
6872 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
6874 proto = nla_get_u16(
6875 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
6876 settings->control_port_ethertype = cpu_to_be16(proto);
6877 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
6880 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
6881 settings->control_port_no_encrypt = true;
6883 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
6885 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
6889 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6890 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6891 settings->n_ciphers_pairwise = len / sizeof(u32);
6893 if (len % sizeof(u32))
6896 if (settings->n_ciphers_pairwise > cipher_limit)
6899 memcpy(settings->ciphers_pairwise, data, len);
6901 for (i = 0; i < settings->n_ciphers_pairwise; i++)
6902 if (!cfg80211_supported_cipher_suite(
6904 settings->ciphers_pairwise[i]))
6908 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
6909 settings->cipher_group =
6910 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
6911 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
6912 settings->cipher_group))
6916 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
6917 settings->wpa_versions =
6918 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
6919 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
6923 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
6927 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
6928 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
6929 settings->n_akm_suites = len / sizeof(u32);
6931 if (len % sizeof(u32))
6934 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
6937 memcpy(settings->akm_suites, data, len);
6943 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
6945 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6946 struct net_device *dev = info->user_ptr[1];
6947 struct ieee80211_channel *chan;
6948 struct cfg80211_assoc_request req = {};
6949 const u8 *bssid, *ssid;
6950 int err, ssid_len = 0;
6952 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6955 if (!info->attrs[NL80211_ATTR_MAC] ||
6956 !info->attrs[NL80211_ATTR_SSID] ||
6957 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
6960 if (!rdev->ops->assoc)
6963 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6964 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6967 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6969 chan = nl80211_get_valid_chan(&rdev->wiphy,
6970 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
6974 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6975 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6977 if (info->attrs[NL80211_ATTR_IE]) {
6978 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6979 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6982 if (info->attrs[NL80211_ATTR_USE_MFP]) {
6983 enum nl80211_mfp mfp =
6984 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
6985 if (mfp == NL80211_MFP_REQUIRED)
6987 else if (mfp != NL80211_MFP_NO)
6991 if (info->attrs[NL80211_ATTR_PREV_BSSID])
6992 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
6994 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
6995 req.flags |= ASSOC_REQ_DISABLE_HT;
6997 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6998 memcpy(&req.ht_capa_mask,
6999 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7000 sizeof(req.ht_capa_mask));
7002 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7003 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7005 memcpy(&req.ht_capa,
7006 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7007 sizeof(req.ht_capa));
7010 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
7011 req.flags |= ASSOC_REQ_DISABLE_VHT;
7013 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7014 memcpy(&req.vht_capa_mask,
7015 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
7016 sizeof(req.vht_capa_mask));
7018 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
7019 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7021 memcpy(&req.vht_capa,
7022 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
7023 sizeof(req.vht_capa));
7026 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
7027 if (!(rdev->wiphy.features &
7028 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) ||
7029 !(rdev->wiphy.features & NL80211_FEATURE_QUIET))
7031 req.flags |= ASSOC_REQ_USE_RRM;
7034 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
7036 wdev_lock(dev->ieee80211_ptr);
7037 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
7038 ssid, ssid_len, &req);
7039 wdev_unlock(dev->ieee80211_ptr);
7045 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
7047 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7048 struct net_device *dev = info->user_ptr[1];
7049 const u8 *ie = NULL, *bssid;
7050 int ie_len = 0, err;
7052 bool local_state_change;
7054 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7057 if (!info->attrs[NL80211_ATTR_MAC])
7060 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7063 if (!rdev->ops->deauth)
7066 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7067 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7070 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7072 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7073 if (reason_code == 0) {
7074 /* Reason Code 0 is reserved */
7078 if (info->attrs[NL80211_ATTR_IE]) {
7079 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7080 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7083 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
7085 wdev_lock(dev->ieee80211_ptr);
7086 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
7087 local_state_change);
7088 wdev_unlock(dev->ieee80211_ptr);
7092 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
7094 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7095 struct net_device *dev = info->user_ptr[1];
7096 const u8 *ie = NULL, *bssid;
7097 int ie_len = 0, err;
7099 bool local_state_change;
7101 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7104 if (!info->attrs[NL80211_ATTR_MAC])
7107 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7110 if (!rdev->ops->disassoc)
7113 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7114 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7117 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7119 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7120 if (reason_code == 0) {
7121 /* Reason Code 0 is reserved */
7125 if (info->attrs[NL80211_ATTR_IE]) {
7126 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7127 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7130 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
7132 wdev_lock(dev->ieee80211_ptr);
7133 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
7134 local_state_change);
7135 wdev_unlock(dev->ieee80211_ptr);
7140 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
7141 int mcast_rate[IEEE80211_NUM_BANDS],
7144 struct wiphy *wiphy = &rdev->wiphy;
7148 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
7149 struct ieee80211_supported_band *sband;
7151 sband = wiphy->bands[band];
7155 for (i = 0; i < sband->n_bitrates; i++) {
7156 if (sband->bitrates[i].bitrate == rateval) {
7157 mcast_rate[band] = i + 1;
7167 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
7169 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7170 struct net_device *dev = info->user_ptr[1];
7171 struct cfg80211_ibss_params ibss;
7172 struct wiphy *wiphy;
7173 struct cfg80211_cached_keys *connkeys = NULL;
7176 memset(&ibss, 0, sizeof(ibss));
7178 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7181 if (!info->attrs[NL80211_ATTR_SSID] ||
7182 !nla_len(info->attrs[NL80211_ATTR_SSID]))
7185 ibss.beacon_interval = 100;
7187 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
7188 ibss.beacon_interval =
7189 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
7190 if (ibss.beacon_interval < 1 || ibss.beacon_interval > 10000)
7194 if (!rdev->ops->join_ibss)
7197 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
7200 wiphy = &rdev->wiphy;
7202 if (info->attrs[NL80211_ATTR_MAC]) {
7203 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7205 if (!is_valid_ether_addr(ibss.bssid))
7208 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
7209 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
7211 if (info->attrs[NL80211_ATTR_IE]) {
7212 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7213 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7216 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
7220 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
7221 NL80211_IFTYPE_ADHOC))
7224 switch (ibss.chandef.width) {
7225 case NL80211_CHAN_WIDTH_5:
7226 case NL80211_CHAN_WIDTH_10:
7227 case NL80211_CHAN_WIDTH_20_NOHT:
7229 case NL80211_CHAN_WIDTH_20:
7230 case NL80211_CHAN_WIDTH_40:
7231 if (rdev->wiphy.features & NL80211_FEATURE_HT_IBSS)
7237 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
7238 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
7240 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
7242 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7244 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7245 struct ieee80211_supported_band *sband =
7246 wiphy->bands[ibss.chandef.chan->band];
7248 err = ieee80211_get_ratemask(sband, rates, n_rates,
7254 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7255 memcpy(&ibss.ht_capa_mask,
7256 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7257 sizeof(ibss.ht_capa_mask));
7259 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7260 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7262 memcpy(&ibss.ht_capa,
7263 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7264 sizeof(ibss.ht_capa));
7267 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
7268 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
7269 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
7272 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
7275 connkeys = nl80211_parse_connkeys(rdev,
7276 info->attrs[NL80211_ATTR_KEYS],
7278 if (IS_ERR(connkeys))
7279 return PTR_ERR(connkeys);
7281 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
7289 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
7291 ibss.userspace_handles_dfs =
7292 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
7294 err = cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
7300 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
7302 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7303 struct net_device *dev = info->user_ptr[1];
7305 if (!rdev->ops->leave_ibss)
7308 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
7311 return cfg80211_leave_ibss(rdev, dev, false);
7314 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
7316 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7317 struct net_device *dev = info->user_ptr[1];
7318 int mcast_rate[IEEE80211_NUM_BANDS];
7322 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
7323 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
7326 if (!rdev->ops->set_mcast_rate)
7329 memset(mcast_rate, 0, sizeof(mcast_rate));
7331 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
7334 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
7335 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
7338 err = rdev->ops->set_mcast_rate(&rdev->wiphy, dev, mcast_rate);
7343 static struct sk_buff *
7344 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
7345 int approxlen, u32 portid, u32 seq,
7346 enum nl80211_commands cmd,
7347 enum nl80211_attrs attr,
7348 const struct nl80211_vendor_cmd_info *info,
7351 struct sk_buff *skb;
7353 struct nlattr *data;
7355 skb = nlmsg_new(approxlen + 100, gfp);
7359 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
7365 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
7366 goto nla_put_failure;
7369 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
7371 goto nla_put_failure;
7372 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
7374 goto nla_put_failure;
7377 data = nla_nest_start(skb, attr);
7379 ((void **)skb->cb)[0] = rdev;
7380 ((void **)skb->cb)[1] = hdr;
7381 ((void **)skb->cb)[2] = data;
7390 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
7391 enum nl80211_commands cmd,
7392 enum nl80211_attrs attr,
7393 int vendor_event_idx,
7394 int approxlen, gfp_t gfp)
7396 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
7397 const struct nl80211_vendor_cmd_info *info;
7400 case NL80211_CMD_TESTMODE:
7401 if (WARN_ON(vendor_event_idx != -1))
7405 case NL80211_CMD_VENDOR:
7406 if (WARN_ON(vendor_event_idx < 0 ||
7407 vendor_event_idx >= wiphy->n_vendor_events))
7409 info = &wiphy->vendor_events[vendor_event_idx];
7416 return __cfg80211_alloc_vendor_skb(rdev, approxlen, 0, 0,
7417 cmd, attr, info, gfp);
7419 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
7421 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
7423 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
7424 void *hdr = ((void **)skb->cb)[1];
7425 struct nlattr *data = ((void **)skb->cb)[2];
7426 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
7428 /* clear CB data for netlink core to own from now on */
7429 memset(skb->cb, 0, sizeof(skb->cb));
7431 nla_nest_end(skb, data);
7432 genlmsg_end(skb, hdr);
7434 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
7435 mcgrp = NL80211_MCGRP_VENDOR;
7437 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), skb, 0,
7440 EXPORT_SYMBOL(__cfg80211_send_event_skb);
7442 #ifdef CONFIG_NL80211_TESTMODE
7443 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
7445 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7446 struct wireless_dev *wdev =
7447 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
7450 if (!rdev->ops->testmode_cmd)
7454 err = PTR_ERR(wdev);
7458 } else if (wdev->wiphy != &rdev->wiphy) {
7462 if (!info->attrs[NL80211_ATTR_TESTDATA])
7465 rdev->cur_cmd_info = info;
7466 err = rdev_testmode_cmd(rdev, wdev,
7467 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
7468 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
7469 rdev->cur_cmd_info = NULL;
7474 static int nl80211_testmode_dump(struct sk_buff *skb,
7475 struct netlink_callback *cb)
7477 struct cfg80211_registered_device *rdev;
7487 * 0 is a valid index, but not valid for args[0],
7488 * so we need to offset by 1.
7490 phy_idx = cb->args[0] - 1;
7492 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
7493 nl80211_fam.attrbuf, nl80211_fam.maxattr,
7498 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk),
7499 nl80211_fam.attrbuf);
7501 err = PTR_ERR(rdev);
7504 phy_idx = rdev->wiphy_idx;
7507 if (nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA])
7509 (long)nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA];
7513 data = nla_data((void *)cb->args[1]);
7514 data_len = nla_len((void *)cb->args[1]);
7517 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
7523 if (!rdev->ops->testmode_dump) {
7529 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
7530 cb->nlh->nlmsg_seq, NLM_F_MULTI,
7531 NL80211_CMD_TESTMODE);
7532 struct nlattr *tmdata;
7537 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
7538 genlmsg_cancel(skb, hdr);
7542 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
7544 genlmsg_cancel(skb, hdr);
7547 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
7548 nla_nest_end(skb, tmdata);
7550 if (err == -ENOBUFS || err == -ENOENT) {
7551 genlmsg_cancel(skb, hdr);
7554 genlmsg_cancel(skb, hdr);
7558 genlmsg_end(skb, hdr);
7563 cb->args[0] = phy_idx + 1;
7570 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
7572 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7573 struct net_device *dev = info->user_ptr[1];
7574 struct cfg80211_connect_params connect;
7575 struct wiphy *wiphy;
7576 struct cfg80211_cached_keys *connkeys = NULL;
7579 memset(&connect, 0, sizeof(connect));
7581 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7584 if (!info->attrs[NL80211_ATTR_SSID] ||
7585 !nla_len(info->attrs[NL80211_ATTR_SSID]))
7588 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
7590 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
7591 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
7592 NL80211_CMD_CONNECT))
7595 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
7597 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
7599 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
7600 NL80211_MAX_NR_CIPHER_SUITES);
7604 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7605 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7608 wiphy = &rdev->wiphy;
7610 connect.bg_scan_period = -1;
7611 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
7612 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
7613 connect.bg_scan_period =
7614 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
7617 if (info->attrs[NL80211_ATTR_MAC])
7618 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7619 else if (info->attrs[NL80211_ATTR_MAC_HINT])
7620 connect.bssid_hint =
7621 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
7622 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
7623 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
7625 if (info->attrs[NL80211_ATTR_IE]) {
7626 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7627 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7630 if (info->attrs[NL80211_ATTR_USE_MFP]) {
7631 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
7632 if (connect.mfp != NL80211_MFP_REQUIRED &&
7633 connect.mfp != NL80211_MFP_NO)
7636 connect.mfp = NL80211_MFP_NO;
7639 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7640 connect.channel = nl80211_get_valid_chan(
7641 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
7642 if (!connect.channel)
7644 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
7645 connect.channel_hint = nl80211_get_valid_chan(
7646 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
7647 if (!connect.channel_hint)
7651 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
7652 connkeys = nl80211_parse_connkeys(rdev,
7653 info->attrs[NL80211_ATTR_KEYS], NULL);
7654 if (IS_ERR(connkeys))
7655 return PTR_ERR(connkeys);
7658 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
7659 connect.flags |= ASSOC_REQ_DISABLE_HT;
7661 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7662 memcpy(&connect.ht_capa_mask,
7663 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7664 sizeof(connect.ht_capa_mask));
7666 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7667 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
7671 memcpy(&connect.ht_capa,
7672 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7673 sizeof(connect.ht_capa));
7676 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
7677 connect.flags |= ASSOC_REQ_DISABLE_VHT;
7679 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7680 memcpy(&connect.vht_capa_mask,
7681 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
7682 sizeof(connect.vht_capa_mask));
7684 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
7685 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
7689 memcpy(&connect.vht_capa,
7690 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
7691 sizeof(connect.vht_capa));
7694 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
7695 if (!(rdev->wiphy.features &
7696 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) ||
7697 !(rdev->wiphy.features & NL80211_FEATURE_QUIET))
7699 connect.flags |= ASSOC_REQ_USE_RRM;
7702 wdev_lock(dev->ieee80211_ptr);
7703 err = cfg80211_connect(rdev, dev, &connect, connkeys, NULL);
7704 wdev_unlock(dev->ieee80211_ptr);
7710 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
7712 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7713 struct net_device *dev = info->user_ptr[1];
7717 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7718 reason = WLAN_REASON_DEAUTH_LEAVING;
7720 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7725 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7726 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7729 wdev_lock(dev->ieee80211_ptr);
7730 ret = cfg80211_disconnect(rdev, dev, reason, true);
7731 wdev_unlock(dev->ieee80211_ptr);
7735 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
7737 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7742 if (!info->attrs[NL80211_ATTR_PID])
7745 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
7747 net = get_net_ns_by_pid(pid);
7749 return PTR_ERR(net);
7753 /* check if anything to do */
7754 if (!net_eq(wiphy_net(&rdev->wiphy), net))
7755 err = cfg80211_switch_netns(rdev, net);
7761 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
7763 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7764 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
7765 struct cfg80211_pmksa *pmksa) = NULL;
7766 struct net_device *dev = info->user_ptr[1];
7767 struct cfg80211_pmksa pmksa;
7769 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
7771 if (!info->attrs[NL80211_ATTR_MAC])
7774 if (!info->attrs[NL80211_ATTR_PMKID])
7777 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
7778 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7780 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7781 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7784 switch (info->genlhdr->cmd) {
7785 case NL80211_CMD_SET_PMKSA:
7786 rdev_ops = rdev->ops->set_pmksa;
7788 case NL80211_CMD_DEL_PMKSA:
7789 rdev_ops = rdev->ops->del_pmksa;
7799 return rdev_ops(&rdev->wiphy, dev, &pmksa);
7802 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
7804 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7805 struct net_device *dev = info->user_ptr[1];
7807 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7808 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7811 if (!rdev->ops->flush_pmksa)
7814 return rdev_flush_pmksa(rdev, dev);
7817 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
7819 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7820 struct net_device *dev = info->user_ptr[1];
7821 u8 action_code, dialog_token;
7822 u32 peer_capability = 0;
7827 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7828 !rdev->ops->tdls_mgmt)
7831 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
7832 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
7833 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
7834 !info->attrs[NL80211_ATTR_IE] ||
7835 !info->attrs[NL80211_ATTR_MAC])
7838 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7839 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
7840 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
7841 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
7842 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
7843 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
7845 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
7847 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
7848 dialog_token, status_code, peer_capability,
7850 nla_data(info->attrs[NL80211_ATTR_IE]),
7851 nla_len(info->attrs[NL80211_ATTR_IE]));
7854 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
7856 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7857 struct net_device *dev = info->user_ptr[1];
7858 enum nl80211_tdls_operation operation;
7861 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7862 !rdev->ops->tdls_oper)
7865 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
7866 !info->attrs[NL80211_ATTR_MAC])
7869 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
7870 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7872 return rdev_tdls_oper(rdev, dev, peer, operation);
7875 static int nl80211_remain_on_channel(struct sk_buff *skb,
7876 struct genl_info *info)
7878 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7879 struct wireless_dev *wdev = info->user_ptr[1];
7880 struct cfg80211_chan_def chandef;
7881 struct sk_buff *msg;
7887 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
7888 !info->attrs[NL80211_ATTR_DURATION])
7891 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7893 if (!rdev->ops->remain_on_channel ||
7894 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
7898 * We should be on that channel for at least a minimum amount of
7899 * time (10ms) but no longer than the driver supports.
7901 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7902 duration > rdev->wiphy.max_remain_on_channel_duration)
7905 err = nl80211_parse_chandef(rdev, info, &chandef);
7909 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7913 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7914 NL80211_CMD_REMAIN_ON_CHANNEL);
7920 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
7926 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
7927 goto nla_put_failure;
7929 genlmsg_end(msg, hdr);
7931 return genlmsg_reply(msg, info);
7940 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
7941 struct genl_info *info)
7943 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7944 struct wireless_dev *wdev = info->user_ptr[1];
7947 if (!info->attrs[NL80211_ATTR_COOKIE])
7950 if (!rdev->ops->cancel_remain_on_channel)
7953 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7955 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
7958 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
7959 u8 *rates, u8 rates_len)
7964 for (i = 0; i < rates_len; i++) {
7965 int rate = (rates[i] & 0x7f) * 5;
7967 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
7968 struct ieee80211_rate *srate =
7969 &sband->bitrates[ridx];
7970 if (rate == srate->bitrate) {
7975 if (ridx == sband->n_bitrates)
7976 return 0; /* rate not found */
7982 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
7983 u8 *rates, u8 rates_len,
7984 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
7988 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
7990 for (i = 0; i < rates_len; i++) {
7993 ridx = rates[i] / 8;
7994 rbit = BIT(rates[i] % 8);
7996 /* check validity */
7997 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
8000 /* check availability */
8001 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
8010 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
8014 switch (vht_mcs_map) {
8015 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
8017 case IEEE80211_VHT_MCS_SUPPORT_0_7:
8020 case IEEE80211_VHT_MCS_SUPPORT_0_8:
8023 case IEEE80211_VHT_MCS_SUPPORT_0_9:
8033 static void vht_build_mcs_mask(u16 vht_mcs_map,
8034 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
8038 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
8039 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
8044 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
8045 struct nl80211_txrate_vht *txrate,
8046 u16 mcs[NL80211_VHT_NSS_MAX])
8048 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
8049 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
8052 if (!sband->vht_cap.vht_supported)
8055 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
8057 /* Build vht_mcs_mask from VHT capabilities */
8058 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
8060 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
8061 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
8062 mcs[i] = txrate->mcs[i];
8070 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
8071 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
8072 .len = NL80211_MAX_SUPP_RATES },
8073 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
8074 .len = NL80211_MAX_SUPP_HT_RATES },
8075 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
8076 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
8079 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
8080 struct genl_info *info)
8082 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
8083 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8084 struct cfg80211_bitrate_mask mask;
8086 struct net_device *dev = info->user_ptr[1];
8087 struct nlattr *tx_rates;
8088 struct ieee80211_supported_band *sband;
8091 if (!rdev->ops->set_bitrate_mask)
8094 memset(&mask, 0, sizeof(mask));
8095 /* Default to all rates enabled */
8096 for (i = 0; i < IEEE80211_NUM_BANDS; i++) {
8097 sband = rdev->wiphy.bands[i];
8102 mask.control[i].legacy = (1 << sband->n_bitrates) - 1;
8103 memcpy(mask.control[i].ht_mcs,
8104 sband->ht_cap.mcs.rx_mask,
8105 sizeof(mask.control[i].ht_mcs));
8107 if (!sband->vht_cap.vht_supported)
8110 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
8111 vht_build_mcs_mask(vht_tx_mcs_map, mask.control[i].vht_mcs);
8114 /* if no rates are given set it back to the defaults */
8115 if (!info->attrs[NL80211_ATTR_TX_RATES])
8119 * The nested attribute uses enum nl80211_band as the index. This maps
8120 * directly to the enum ieee80211_band values used in cfg80211.
8122 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
8123 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
8124 enum ieee80211_band band = nla_type(tx_rates);
8127 if (band < 0 || band >= IEEE80211_NUM_BANDS)
8129 sband = rdev->wiphy.bands[band];
8132 err = nla_parse(tb, NL80211_TXRATE_MAX, nla_data(tx_rates),
8133 nla_len(tx_rates), nl80211_txattr_policy);
8136 if (tb[NL80211_TXRATE_LEGACY]) {
8137 mask.control[band].legacy = rateset_to_mask(
8139 nla_data(tb[NL80211_TXRATE_LEGACY]),
8140 nla_len(tb[NL80211_TXRATE_LEGACY]));
8141 if ((mask.control[band].legacy == 0) &&
8142 nla_len(tb[NL80211_TXRATE_LEGACY]))
8145 if (tb[NL80211_TXRATE_HT]) {
8146 if (!ht_rateset_to_mask(
8148 nla_data(tb[NL80211_TXRATE_HT]),
8149 nla_len(tb[NL80211_TXRATE_HT]),
8150 mask.control[band].ht_mcs))
8153 if (tb[NL80211_TXRATE_VHT]) {
8154 if (!vht_set_mcs_mask(
8156 nla_data(tb[NL80211_TXRATE_VHT]),
8157 mask.control[band].vht_mcs))
8160 if (tb[NL80211_TXRATE_GI]) {
8161 mask.control[band].gi =
8162 nla_get_u8(tb[NL80211_TXRATE_GI]);
8163 if (mask.control[band].gi > NL80211_TXRATE_FORCE_LGI)
8167 if (mask.control[band].legacy == 0) {
8168 /* don't allow empty legacy rates if HT or VHT
8169 * are not even supported.
8171 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
8172 rdev->wiphy.bands[band]->vht_cap.vht_supported))
8175 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
8176 if (mask.control[band].ht_mcs[i])
8179 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
8180 if (mask.control[band].vht_mcs[i])
8183 /* legacy and mcs rates may not be both empty */
8189 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
8192 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
8194 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8195 struct wireless_dev *wdev = info->user_ptr[1];
8196 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
8198 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
8201 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
8202 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
8204 switch (wdev->iftype) {
8205 case NL80211_IFTYPE_STATION:
8206 case NL80211_IFTYPE_ADHOC:
8207 case NL80211_IFTYPE_P2P_CLIENT:
8208 case NL80211_IFTYPE_AP:
8209 case NL80211_IFTYPE_AP_VLAN:
8210 case NL80211_IFTYPE_MESH_POINT:
8211 case NL80211_IFTYPE_P2P_GO:
8212 case NL80211_IFTYPE_P2P_DEVICE:
8218 /* not much point in registering if we can't reply */
8219 if (!rdev->ops->mgmt_tx)
8222 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
8223 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
8224 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
8227 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
8229 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8230 struct wireless_dev *wdev = info->user_ptr[1];
8231 struct cfg80211_chan_def chandef;
8235 struct sk_buff *msg = NULL;
8236 struct cfg80211_mgmt_tx_params params = {
8237 .dont_wait_for_ack =
8238 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
8241 if (!info->attrs[NL80211_ATTR_FRAME])
8244 if (!rdev->ops->mgmt_tx)
8247 switch (wdev->iftype) {
8248 case NL80211_IFTYPE_P2P_DEVICE:
8249 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8251 case NL80211_IFTYPE_STATION:
8252 case NL80211_IFTYPE_ADHOC:
8253 case NL80211_IFTYPE_P2P_CLIENT:
8254 case NL80211_IFTYPE_AP:
8255 case NL80211_IFTYPE_AP_VLAN:
8256 case NL80211_IFTYPE_MESH_POINT:
8257 case NL80211_IFTYPE_P2P_GO:
8263 if (info->attrs[NL80211_ATTR_DURATION]) {
8264 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
8266 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
8269 * We should wait on the channel for at least a minimum amount
8270 * of time (10ms) but no longer than the driver supports.
8272 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
8273 params.wait > rdev->wiphy.max_remain_on_channel_duration)
8278 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
8280 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
8283 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
8285 /* get the channel if any has been specified, otherwise pass NULL to
8286 * the driver. The latter will use the current one
8288 chandef.chan = NULL;
8289 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
8290 err = nl80211_parse_chandef(rdev, info, &chandef);
8295 if (!chandef.chan && params.offchan)
8298 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
8299 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
8301 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
8302 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
8305 if (len % sizeof(u16))
8308 params.n_csa_offsets = len / sizeof(u16);
8309 params.csa_offsets =
8310 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
8312 /* check that all the offsets fit the frame */
8313 for (i = 0; i < params.n_csa_offsets; i++) {
8314 if (params.csa_offsets[i] >= params.len)
8319 if (!params.dont_wait_for_ack) {
8320 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8324 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8332 params.chan = chandef.chan;
8333 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
8338 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
8339 goto nla_put_failure;
8341 genlmsg_end(msg, hdr);
8342 return genlmsg_reply(msg, info);
8354 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
8356 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8357 struct wireless_dev *wdev = info->user_ptr[1];
8360 if (!info->attrs[NL80211_ATTR_COOKIE])
8363 if (!rdev->ops->mgmt_tx_cancel_wait)
8366 switch (wdev->iftype) {
8367 case NL80211_IFTYPE_STATION:
8368 case NL80211_IFTYPE_ADHOC:
8369 case NL80211_IFTYPE_P2P_CLIENT:
8370 case NL80211_IFTYPE_AP:
8371 case NL80211_IFTYPE_AP_VLAN:
8372 case NL80211_IFTYPE_P2P_GO:
8373 case NL80211_IFTYPE_P2P_DEVICE:
8379 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8381 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
8384 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
8386 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8387 struct wireless_dev *wdev;
8388 struct net_device *dev = info->user_ptr[1];
8393 if (!info->attrs[NL80211_ATTR_PS_STATE])
8396 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
8398 if (ps_state != NL80211_PS_DISABLED && ps_state != NL80211_PS_ENABLED)
8401 wdev = dev->ieee80211_ptr;
8403 if (!rdev->ops->set_power_mgmt)
8406 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
8408 if (state == wdev->ps)
8411 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
8417 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
8419 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8420 enum nl80211_ps_state ps_state;
8421 struct wireless_dev *wdev;
8422 struct net_device *dev = info->user_ptr[1];
8423 struct sk_buff *msg;
8427 wdev = dev->ieee80211_ptr;
8429 if (!rdev->ops->set_power_mgmt)
8432 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8436 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8437 NL80211_CMD_GET_POWER_SAVE);
8444 ps_state = NL80211_PS_ENABLED;
8446 ps_state = NL80211_PS_DISABLED;
8448 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
8449 goto nla_put_failure;
8451 genlmsg_end(msg, hdr);
8452 return genlmsg_reply(msg, info);
8461 static const struct nla_policy
8462 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
8463 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_U32 },
8464 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
8465 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
8466 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
8467 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
8468 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
8471 static int nl80211_set_cqm_txe(struct genl_info *info,
8472 u32 rate, u32 pkts, u32 intvl)
8474 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8475 struct net_device *dev = info->user_ptr[1];
8476 struct wireless_dev *wdev = dev->ieee80211_ptr;
8478 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
8481 if (!rdev->ops->set_cqm_txe_config)
8484 if (wdev->iftype != NL80211_IFTYPE_STATION &&
8485 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
8488 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
8491 static int nl80211_set_cqm_rssi(struct genl_info *info,
8492 s32 threshold, u32 hysteresis)
8494 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8495 struct net_device *dev = info->user_ptr[1];
8496 struct wireless_dev *wdev = dev->ieee80211_ptr;
8501 /* disabling - hysteresis should also be zero then */
8505 if (!rdev->ops->set_cqm_rssi_config)
8508 if (wdev->iftype != NL80211_IFTYPE_STATION &&
8509 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
8512 return rdev_set_cqm_rssi_config(rdev, dev, threshold, hysteresis);
8515 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
8517 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
8521 cqm = info->attrs[NL80211_ATTR_CQM];
8525 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
8526 nl80211_attr_cqm_policy);
8530 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
8531 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
8532 s32 threshold = nla_get_s32(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
8533 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
8535 return nl80211_set_cqm_rssi(info, threshold, hysteresis);
8538 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
8539 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
8540 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
8541 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
8542 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
8543 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
8545 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
8551 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
8553 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8554 struct net_device *dev = info->user_ptr[1];
8555 struct ocb_setup setup = {};
8558 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
8562 return cfg80211_join_ocb(rdev, dev, &setup);
8565 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
8567 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8568 struct net_device *dev = info->user_ptr[1];
8570 return cfg80211_leave_ocb(rdev, dev);
8573 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
8575 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8576 struct net_device *dev = info->user_ptr[1];
8577 struct mesh_config cfg;
8578 struct mesh_setup setup;
8581 /* start with default */
8582 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
8583 memcpy(&setup, &default_mesh_setup, sizeof(setup));
8585 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
8586 /* and parse parameters if given */
8587 err = nl80211_parse_mesh_config(info, &cfg, NULL);
8592 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
8593 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
8596 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
8597 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
8599 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
8600 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
8601 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
8604 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
8605 setup.beacon_interval =
8606 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
8607 if (setup.beacon_interval < 10 ||
8608 setup.beacon_interval > 10000)
8612 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
8614 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
8615 if (setup.dtim_period < 1 || setup.dtim_period > 100)
8619 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
8620 /* parse additional setup parameters if given */
8621 err = nl80211_parse_mesh_setup(info, &setup);
8627 cfg.auto_open_plinks = false;
8629 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
8630 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
8634 /* cfg80211_join_mesh() will sort it out */
8635 setup.chandef.chan = NULL;
8638 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
8639 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
8641 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
8642 struct ieee80211_supported_band *sband;
8644 if (!setup.chandef.chan)
8647 sband = rdev->wiphy.bands[setup.chandef.chan->band];
8649 err = ieee80211_get_ratemask(sband, rates, n_rates,
8650 &setup.basic_rates);
8655 return cfg80211_join_mesh(rdev, dev, &setup, &cfg);
8658 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
8660 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8661 struct net_device *dev = info->user_ptr[1];
8663 return cfg80211_leave_mesh(rdev, dev);
8667 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
8668 struct cfg80211_registered_device *rdev)
8670 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
8671 struct nlattr *nl_pats, *nl_pat;
8674 if (!wowlan->n_patterns)
8677 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
8681 for (i = 0; i < wowlan->n_patterns; i++) {
8682 nl_pat = nla_nest_start(msg, i + 1);
8685 pat_len = wowlan->patterns[i].pattern_len;
8686 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
8687 wowlan->patterns[i].mask) ||
8688 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
8689 wowlan->patterns[i].pattern) ||
8690 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
8691 wowlan->patterns[i].pkt_offset))
8693 nla_nest_end(msg, nl_pat);
8695 nla_nest_end(msg, nl_pats);
8700 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
8701 struct cfg80211_wowlan_tcp *tcp)
8703 struct nlattr *nl_tcp;
8708 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
8712 if (nla_put_be32(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
8713 nla_put_be32(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
8714 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
8715 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
8716 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
8717 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
8718 tcp->payload_len, tcp->payload) ||
8719 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
8720 tcp->data_interval) ||
8721 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
8722 tcp->wake_len, tcp->wake_data) ||
8723 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
8724 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
8727 if (tcp->payload_seq.len &&
8728 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
8729 sizeof(tcp->payload_seq), &tcp->payload_seq))
8732 if (tcp->payload_tok.len &&
8733 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
8734 sizeof(tcp->payload_tok) + tcp->tokens_size,
8738 nla_nest_end(msg, nl_tcp);
8743 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
8745 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8746 struct sk_buff *msg;
8748 u32 size = NLMSG_DEFAULT_SIZE;
8750 if (!rdev->wiphy.wowlan)
8753 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
8754 /* adjust size to have room for all the data */
8755 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
8756 rdev->wiphy.wowlan_config->tcp->payload_len +
8757 rdev->wiphy.wowlan_config->tcp->wake_len +
8758 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
8761 msg = nlmsg_new(size, GFP_KERNEL);
8765 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8766 NL80211_CMD_GET_WOWLAN);
8768 goto nla_put_failure;
8770 if (rdev->wiphy.wowlan_config) {
8771 struct nlattr *nl_wowlan;
8773 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
8775 goto nla_put_failure;
8777 if ((rdev->wiphy.wowlan_config->any &&
8778 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
8779 (rdev->wiphy.wowlan_config->disconnect &&
8780 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
8781 (rdev->wiphy.wowlan_config->magic_pkt &&
8782 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
8783 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
8784 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
8785 (rdev->wiphy.wowlan_config->eap_identity_req &&
8786 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
8787 (rdev->wiphy.wowlan_config->four_way_handshake &&
8788 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
8789 (rdev->wiphy.wowlan_config->rfkill_release &&
8790 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
8791 goto nla_put_failure;
8793 if (nl80211_send_wowlan_patterns(msg, rdev))
8794 goto nla_put_failure;
8796 if (nl80211_send_wowlan_tcp(msg,
8797 rdev->wiphy.wowlan_config->tcp))
8798 goto nla_put_failure;
8800 nla_nest_end(msg, nl_wowlan);
8803 genlmsg_end(msg, hdr);
8804 return genlmsg_reply(msg, info);
8811 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
8812 struct nlattr *attr,
8813 struct cfg80211_wowlan *trig)
8815 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
8816 struct cfg80211_wowlan_tcp *cfg;
8817 struct nl80211_wowlan_tcp_data_token *tok = NULL;
8818 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
8820 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
8823 if (!rdev->wiphy.wowlan->tcp)
8826 err = nla_parse(tb, MAX_NL80211_WOWLAN_TCP,
8827 nla_data(attr), nla_len(attr),
8828 nl80211_wowlan_tcp_policy);
8832 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
8833 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
8834 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
8835 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
8836 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
8837 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
8838 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
8839 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
8842 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
8843 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
8846 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
8847 rdev->wiphy.wowlan->tcp->data_interval_max ||
8848 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
8851 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
8852 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
8855 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
8856 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
8859 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
8860 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8862 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8863 tokens_size = tokln - sizeof(*tok);
8865 if (!tok->len || tokens_size % tok->len)
8867 if (!rdev->wiphy.wowlan->tcp->tok)
8869 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
8871 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
8873 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
8875 if (tok->offset + tok->len > data_size)
8879 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
8880 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
8881 if (!rdev->wiphy.wowlan->tcp->seq)
8883 if (seq->len == 0 || seq->len > 4)
8885 if (seq->len + seq->offset > data_size)
8889 size = sizeof(*cfg);
8891 size += wake_size + wake_mask_size;
8892 size += tokens_size;
8894 cfg = kzalloc(size, GFP_KERNEL);
8897 cfg->src = nla_get_be32(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
8898 cfg->dst = nla_get_be32(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
8899 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
8901 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
8902 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
8906 /* allocate a socket and port for it and use it */
8907 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
8908 IPPROTO_TCP, &cfg->sock, 1);
8913 if (inet_csk_get_port(cfg->sock->sk, port)) {
8914 sock_release(cfg->sock);
8918 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
8924 cfg->src_port = port;
8927 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
8928 cfg->payload_len = data_size;
8929 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
8930 memcpy((void *)cfg->payload,
8931 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
8934 cfg->payload_seq = *seq;
8935 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
8936 cfg->wake_len = wake_size;
8937 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
8938 memcpy((void *)cfg->wake_data,
8939 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
8941 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
8942 data_size + wake_size;
8943 memcpy((void *)cfg->wake_mask,
8944 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
8947 cfg->tokens_size = tokens_size;
8948 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
8956 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
8957 const struct wiphy_wowlan_support *wowlan,
8958 struct nlattr *attr,
8959 struct cfg80211_wowlan *trig)
8964 tb = kzalloc(NUM_NL80211_ATTR * sizeof(*tb), GFP_KERNEL);
8968 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
8973 err = nla_parse(tb, NL80211_ATTR_MAX,
8974 nla_data(attr), nla_len(attr),
8979 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb);
8980 err = PTR_ERR_OR_ZERO(trig->nd_config);
8982 trig->nd_config = NULL;
8989 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
8991 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8992 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
8993 struct cfg80211_wowlan new_triggers = {};
8994 struct cfg80211_wowlan *ntrig;
8995 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
8997 bool prev_enabled = rdev->wiphy.wowlan_config;
9002 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
9003 cfg80211_rdev_free_wowlan(rdev);
9004 rdev->wiphy.wowlan_config = NULL;
9008 err = nla_parse(tb, MAX_NL80211_WOWLAN_TRIG,
9009 nla_data(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
9010 nla_len(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
9011 nl80211_wowlan_policy);
9015 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
9016 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
9018 new_triggers.any = true;
9021 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
9022 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
9024 new_triggers.disconnect = true;
9027 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
9028 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
9030 new_triggers.magic_pkt = true;
9033 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
9036 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
9037 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
9039 new_triggers.gtk_rekey_failure = true;
9042 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
9043 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
9045 new_triggers.eap_identity_req = true;
9048 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
9049 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
9051 new_triggers.four_way_handshake = true;
9054 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
9055 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
9057 new_triggers.rfkill_release = true;
9060 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
9063 int rem, pat_len, mask_len, pkt_offset;
9064 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
9066 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
9069 if (n_patterns > wowlan->n_patterns)
9072 new_triggers.patterns = kcalloc(n_patterns,
9073 sizeof(new_triggers.patterns[0]),
9075 if (!new_triggers.patterns)
9078 new_triggers.n_patterns = n_patterns;
9081 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
9085 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
9086 nla_len(pat), NULL);
9088 if (!pat_tb[NL80211_PKTPAT_MASK] ||
9089 !pat_tb[NL80211_PKTPAT_PATTERN])
9091 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
9092 mask_len = DIV_ROUND_UP(pat_len, 8);
9093 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
9095 if (pat_len > wowlan->pattern_max_len ||
9096 pat_len < wowlan->pattern_min_len)
9099 if (!pat_tb[NL80211_PKTPAT_OFFSET])
9102 pkt_offset = nla_get_u32(
9103 pat_tb[NL80211_PKTPAT_OFFSET]);
9104 if (pkt_offset > wowlan->max_pkt_offset)
9106 new_triggers.patterns[i].pkt_offset = pkt_offset;
9108 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
9113 new_triggers.patterns[i].mask = mask_pat;
9114 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
9116 mask_pat += mask_len;
9117 new_triggers.patterns[i].pattern = mask_pat;
9118 new_triggers.patterns[i].pattern_len = pat_len;
9120 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
9126 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
9127 err = nl80211_parse_wowlan_tcp(
9128 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
9134 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
9135 err = nl80211_parse_wowlan_nd(
9136 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
9142 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
9147 cfg80211_rdev_free_wowlan(rdev);
9148 rdev->wiphy.wowlan_config = ntrig;
9151 if (rdev->ops->set_wakeup &&
9152 prev_enabled != !!rdev->wiphy.wowlan_config)
9153 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
9157 for (i = 0; i < new_triggers.n_patterns; i++)
9158 kfree(new_triggers.patterns[i].mask);
9159 kfree(new_triggers.patterns);
9160 if (new_triggers.tcp && new_triggers.tcp->sock)
9161 sock_release(new_triggers.tcp->sock);
9162 kfree(new_triggers.tcp);
9167 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
9168 struct cfg80211_registered_device *rdev)
9170 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
9172 struct cfg80211_coalesce_rules *rule;
9174 if (!rdev->coalesce->n_rules)
9177 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
9181 for (i = 0; i < rdev->coalesce->n_rules; i++) {
9182 nl_rule = nla_nest_start(msg, i + 1);
9186 rule = &rdev->coalesce->rules[i];
9187 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
9191 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
9195 nl_pats = nla_nest_start(msg,
9196 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
9200 for (j = 0; j < rule->n_patterns; j++) {
9201 nl_pat = nla_nest_start(msg, j + 1);
9204 pat_len = rule->patterns[j].pattern_len;
9205 if (nla_put(msg, NL80211_PKTPAT_MASK,
9206 DIV_ROUND_UP(pat_len, 8),
9207 rule->patterns[j].mask) ||
9208 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
9209 rule->patterns[j].pattern) ||
9210 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
9211 rule->patterns[j].pkt_offset))
9213 nla_nest_end(msg, nl_pat);
9215 nla_nest_end(msg, nl_pats);
9216 nla_nest_end(msg, nl_rule);
9218 nla_nest_end(msg, nl_rules);
9223 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
9225 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9226 struct sk_buff *msg;
9229 if (!rdev->wiphy.coalesce)
9232 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9236 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
9237 NL80211_CMD_GET_COALESCE);
9239 goto nla_put_failure;
9241 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
9242 goto nla_put_failure;
9244 genlmsg_end(msg, hdr);
9245 return genlmsg_reply(msg, info);
9252 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
9254 struct cfg80211_coalesce *coalesce = rdev->coalesce;
9256 struct cfg80211_coalesce_rules *rule;
9261 for (i = 0; i < coalesce->n_rules; i++) {
9262 rule = &coalesce->rules[i];
9263 for (j = 0; j < rule->n_patterns; j++)
9264 kfree(rule->patterns[j].mask);
9265 kfree(rule->patterns);
9267 kfree(coalesce->rules);
9269 rdev->coalesce = NULL;
9272 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
9273 struct nlattr *rule,
9274 struct cfg80211_coalesce_rules *new_rule)
9277 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
9278 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
9279 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
9280 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
9282 err = nla_parse(tb, NL80211_ATTR_COALESCE_RULE_MAX, nla_data(rule),
9283 nla_len(rule), nl80211_coalesce_policy);
9287 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
9289 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
9290 if (new_rule->delay > coalesce->max_delay)
9293 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
9294 new_rule->condition =
9295 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
9296 if (new_rule->condition != NL80211_COALESCE_CONDITION_MATCH &&
9297 new_rule->condition != NL80211_COALESCE_CONDITION_NO_MATCH)
9300 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
9303 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
9306 if (n_patterns > coalesce->n_patterns)
9309 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
9311 if (!new_rule->patterns)
9314 new_rule->n_patterns = n_patterns;
9317 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
9321 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
9322 nla_len(pat), NULL);
9323 if (!pat_tb[NL80211_PKTPAT_MASK] ||
9324 !pat_tb[NL80211_PKTPAT_PATTERN])
9326 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
9327 mask_len = DIV_ROUND_UP(pat_len, 8);
9328 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
9330 if (pat_len > coalesce->pattern_max_len ||
9331 pat_len < coalesce->pattern_min_len)
9334 if (!pat_tb[NL80211_PKTPAT_OFFSET])
9337 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
9338 if (pkt_offset > coalesce->max_pkt_offset)
9340 new_rule->patterns[i].pkt_offset = pkt_offset;
9342 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
9346 new_rule->patterns[i].mask = mask_pat;
9347 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
9350 mask_pat += mask_len;
9351 new_rule->patterns[i].pattern = mask_pat;
9352 new_rule->patterns[i].pattern_len = pat_len;
9353 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
9361 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
9363 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9364 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
9365 struct cfg80211_coalesce new_coalesce = {};
9366 struct cfg80211_coalesce *n_coalesce;
9367 int err, rem_rule, n_rules = 0, i, j;
9368 struct nlattr *rule;
9369 struct cfg80211_coalesce_rules *tmp_rule;
9371 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
9374 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
9375 cfg80211_rdev_free_coalesce(rdev);
9376 rdev->ops->set_coalesce(&rdev->wiphy, NULL);
9380 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
9383 if (n_rules > coalesce->n_rules)
9386 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
9388 if (!new_coalesce.rules)
9391 new_coalesce.n_rules = n_rules;
9394 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
9396 err = nl80211_parse_coalesce_rule(rdev, rule,
9397 &new_coalesce.rules[i]);
9404 err = rdev->ops->set_coalesce(&rdev->wiphy, &new_coalesce);
9408 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
9413 cfg80211_rdev_free_coalesce(rdev);
9414 rdev->coalesce = n_coalesce;
9418 for (i = 0; i < new_coalesce.n_rules; i++) {
9419 tmp_rule = &new_coalesce.rules[i];
9420 for (j = 0; j < tmp_rule->n_patterns; j++)
9421 kfree(tmp_rule->patterns[j].mask);
9422 kfree(tmp_rule->patterns);
9424 kfree(new_coalesce.rules);
9429 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
9431 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9432 struct net_device *dev = info->user_ptr[1];
9433 struct wireless_dev *wdev = dev->ieee80211_ptr;
9434 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
9435 struct cfg80211_gtk_rekey_data rekey_data;
9438 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
9441 err = nla_parse(tb, MAX_NL80211_REKEY_DATA,
9442 nla_data(info->attrs[NL80211_ATTR_REKEY_DATA]),
9443 nla_len(info->attrs[NL80211_ATTR_REKEY_DATA]),
9444 nl80211_rekey_policy);
9448 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
9450 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
9452 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
9455 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
9456 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
9457 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
9460 if (!wdev->current_bss) {
9465 if (!rdev->ops->set_rekey_data) {
9470 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
9476 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
9477 struct genl_info *info)
9479 struct net_device *dev = info->user_ptr[1];
9480 struct wireless_dev *wdev = dev->ieee80211_ptr;
9482 if (wdev->iftype != NL80211_IFTYPE_AP &&
9483 wdev->iftype != NL80211_IFTYPE_P2P_GO)
9486 if (wdev->ap_unexpected_nlportid)
9489 wdev->ap_unexpected_nlportid = info->snd_portid;
9493 static int nl80211_probe_client(struct sk_buff *skb,
9494 struct genl_info *info)
9496 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9497 struct net_device *dev = info->user_ptr[1];
9498 struct wireless_dev *wdev = dev->ieee80211_ptr;
9499 struct sk_buff *msg;
9505 if (wdev->iftype != NL80211_IFTYPE_AP &&
9506 wdev->iftype != NL80211_IFTYPE_P2P_GO)
9509 if (!info->attrs[NL80211_ATTR_MAC])
9512 if (!rdev->ops->probe_client)
9515 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9519 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
9520 NL80211_CMD_PROBE_CLIENT);
9526 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
9528 err = rdev_probe_client(rdev, dev, addr, &cookie);
9532 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
9533 goto nla_put_failure;
9535 genlmsg_end(msg, hdr);
9537 return genlmsg_reply(msg, info);
9546 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
9548 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9549 struct cfg80211_beacon_registration *reg, *nreg;
9552 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
9555 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
9559 /* First, check if already registered. */
9560 spin_lock_bh(&rdev->beacon_registrations_lock);
9561 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
9562 if (reg->nlportid == info->snd_portid) {
9567 /* Add it to the list */
9568 nreg->nlportid = info->snd_portid;
9569 list_add(&nreg->list, &rdev->beacon_registrations);
9571 spin_unlock_bh(&rdev->beacon_registrations_lock);
9575 spin_unlock_bh(&rdev->beacon_registrations_lock);
9580 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
9582 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9583 struct wireless_dev *wdev = info->user_ptr[1];
9586 if (!rdev->ops->start_p2p_device)
9589 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
9592 if (wdev->p2p_started)
9595 if (rfkill_blocked(rdev->rfkill))
9598 err = rdev_start_p2p_device(rdev, wdev);
9602 wdev->p2p_started = true;
9608 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
9610 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9611 struct wireless_dev *wdev = info->user_ptr[1];
9613 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
9616 if (!rdev->ops->stop_p2p_device)
9619 cfg80211_stop_p2p_device(rdev, wdev);
9624 static int nl80211_get_protocol_features(struct sk_buff *skb,
9625 struct genl_info *info)
9628 struct sk_buff *msg;
9630 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9634 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
9635 NL80211_CMD_GET_PROTOCOL_FEATURES);
9637 goto nla_put_failure;
9639 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
9640 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
9641 goto nla_put_failure;
9643 genlmsg_end(msg, hdr);
9644 return genlmsg_reply(msg, info);
9651 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
9653 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9654 struct cfg80211_update_ft_ies_params ft_params;
9655 struct net_device *dev = info->user_ptr[1];
9657 if (!rdev->ops->update_ft_ies)
9660 if (!info->attrs[NL80211_ATTR_MDID] ||
9661 !is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
9664 memset(&ft_params, 0, sizeof(ft_params));
9665 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
9666 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9667 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9669 return rdev_update_ft_ies(rdev, dev, &ft_params);
9672 static int nl80211_crit_protocol_start(struct sk_buff *skb,
9673 struct genl_info *info)
9675 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9676 struct wireless_dev *wdev = info->user_ptr[1];
9677 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
9681 if (!rdev->ops->crit_proto_start)
9684 if (WARN_ON(!rdev->ops->crit_proto_stop))
9687 if (rdev->crit_proto_nlportid)
9690 /* determine protocol if provided */
9691 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
9692 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
9694 if (proto >= NUM_NL80211_CRIT_PROTO)
9697 /* timeout must be provided */
9698 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
9702 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
9704 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
9707 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
9709 rdev->crit_proto_nlportid = info->snd_portid;
9714 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
9715 struct genl_info *info)
9717 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9718 struct wireless_dev *wdev = info->user_ptr[1];
9720 if (!rdev->ops->crit_proto_stop)
9723 if (rdev->crit_proto_nlportid) {
9724 rdev->crit_proto_nlportid = 0;
9725 rdev_crit_proto_stop(rdev, wdev);
9730 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
9732 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9733 struct wireless_dev *wdev =
9734 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9738 if (!rdev->wiphy.vendor_commands)
9742 err = PTR_ERR(wdev);
9746 } else if (wdev->wiphy != &rdev->wiphy) {
9750 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
9751 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
9754 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
9755 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
9756 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
9757 const struct wiphy_vendor_command *vcmd;
9761 vcmd = &rdev->wiphy.vendor_commands[i];
9763 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
9766 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
9767 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
9770 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
9774 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
9776 !netif_running(wdev->netdev))
9778 if (!wdev->netdev && !wdev->p2p_started)
9785 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
9786 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9787 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9790 rdev->cur_cmd_info = info;
9791 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
9793 rdev->cur_cmd_info = NULL;
9800 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
9801 enum nl80211_commands cmd,
9802 enum nl80211_attrs attr,
9805 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9807 if (WARN_ON(!rdev->cur_cmd_info))
9810 return __cfg80211_alloc_vendor_skb(rdev, approxlen,
9811 rdev->cur_cmd_info->snd_portid,
9812 rdev->cur_cmd_info->snd_seq,
9813 cmd, attr, NULL, GFP_KERNEL);
9815 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
9817 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
9819 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9820 void *hdr = ((void **)skb->cb)[1];
9821 struct nlattr *data = ((void **)skb->cb)[2];
9823 /* clear CB data for netlink core to own from now on */
9824 memset(skb->cb, 0, sizeof(skb->cb));
9826 if (WARN_ON(!rdev->cur_cmd_info)) {
9831 nla_nest_end(skb, data);
9832 genlmsg_end(skb, hdr);
9833 return genlmsg_reply(skb, rdev->cur_cmd_info);
9835 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
9838 static int nl80211_set_qos_map(struct sk_buff *skb,
9839 struct genl_info *info)
9841 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9842 struct cfg80211_qos_map *qos_map = NULL;
9843 struct net_device *dev = info->user_ptr[1];
9844 u8 *pos, len, num_des, des_len, des;
9847 if (!rdev->ops->set_qos_map)
9850 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
9851 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
9852 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
9854 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
9855 len > IEEE80211_QOS_MAP_LEN_MAX)
9858 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
9862 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
9865 sizeof(struct cfg80211_dscp_exception);
9866 memcpy(qos_map->dscp_exception, pos, des_len);
9867 qos_map->num_des = num_des;
9868 for (des = 0; des < num_des; des++) {
9869 if (qos_map->dscp_exception[des].up > 7) {
9876 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
9879 wdev_lock(dev->ieee80211_ptr);
9880 ret = nl80211_key_allowed(dev->ieee80211_ptr);
9882 ret = rdev_set_qos_map(rdev, dev, qos_map);
9883 wdev_unlock(dev->ieee80211_ptr);
9889 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
9891 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9892 struct net_device *dev = info->user_ptr[1];
9893 struct wireless_dev *wdev = dev->ieee80211_ptr;
9896 u16 admitted_time = 0;
9899 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
9902 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
9903 !info->attrs[NL80211_ATTR_USER_PRIO])
9906 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
9907 if (tsid >= IEEE80211_NUM_TIDS)
9910 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
9911 if (up >= IEEE80211_NUM_UPS)
9914 /* WMM uses TIDs 0-7 even for TSPEC */
9915 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
9916 /* TODO: handle 802.11 TSPEC/admission control
9917 * need more attributes for that (e.g. BA session requirement);
9918 * change the WMM adminssion test above to allow both then
9923 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
9925 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
9927 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
9933 switch (wdev->iftype) {
9934 case NL80211_IFTYPE_STATION:
9935 case NL80211_IFTYPE_P2P_CLIENT:
9936 if (wdev->current_bss)
9945 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
9952 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
9954 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9955 struct net_device *dev = info->user_ptr[1];
9956 struct wireless_dev *wdev = dev->ieee80211_ptr;
9961 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
9964 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
9965 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
9968 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
9974 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
9975 struct genl_info *info)
9977 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9978 struct net_device *dev = info->user_ptr[1];
9979 struct wireless_dev *wdev = dev->ieee80211_ptr;
9980 struct cfg80211_chan_def chandef = {};
9985 if (!rdev->ops->tdls_channel_switch ||
9986 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
9989 switch (dev->ieee80211_ptr->iftype) {
9990 case NL80211_IFTYPE_STATION:
9991 case NL80211_IFTYPE_P2P_CLIENT:
9997 if (!info->attrs[NL80211_ATTR_MAC] ||
9998 !info->attrs[NL80211_ATTR_OPER_CLASS])
10001 err = nl80211_parse_chandef(rdev, info, &chandef);
10006 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
10007 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
10008 * specification is not defined for them.
10010 if (chandef.chan->band == IEEE80211_BAND_2GHZ &&
10011 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
10012 chandef.width != NL80211_CHAN_WIDTH_20)
10015 /* we will be active on the TDLS link */
10016 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &chandef, wdev->iftype))
10019 /* don't allow switching to DFS channels */
10020 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
10023 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
10024 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
10027 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
10033 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
10034 struct genl_info *info)
10036 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10037 struct net_device *dev = info->user_ptr[1];
10038 struct wireless_dev *wdev = dev->ieee80211_ptr;
10041 if (!rdev->ops->tdls_channel_switch ||
10042 !rdev->ops->tdls_cancel_channel_switch ||
10043 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
10044 return -EOPNOTSUPP;
10046 switch (dev->ieee80211_ptr->iftype) {
10047 case NL80211_IFTYPE_STATION:
10048 case NL80211_IFTYPE_P2P_CLIENT:
10051 return -EOPNOTSUPP;
10054 if (!info->attrs[NL80211_ATTR_MAC])
10057 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
10060 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
10066 #define NL80211_FLAG_NEED_WIPHY 0x01
10067 #define NL80211_FLAG_NEED_NETDEV 0x02
10068 #define NL80211_FLAG_NEED_RTNL 0x04
10069 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
10070 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
10071 NL80211_FLAG_CHECK_NETDEV_UP)
10072 #define NL80211_FLAG_NEED_WDEV 0x10
10073 /* If a netdev is associated, it must be UP, P2P must be started */
10074 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
10075 NL80211_FLAG_CHECK_NETDEV_UP)
10076 #define NL80211_FLAG_CLEAR_SKB 0x20
10078 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
10079 struct genl_info *info)
10081 struct cfg80211_registered_device *rdev;
10082 struct wireless_dev *wdev;
10083 struct net_device *dev;
10084 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
10089 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
10090 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
10091 if (IS_ERR(rdev)) {
10094 return PTR_ERR(rdev);
10096 info->user_ptr[0] = rdev;
10097 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
10098 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
10101 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
10103 if (IS_ERR(wdev)) {
10106 return PTR_ERR(wdev);
10109 dev = wdev->netdev;
10110 rdev = wiphy_to_rdev(wdev->wiphy);
10112 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
10119 info->user_ptr[1] = dev;
10121 info->user_ptr[1] = wdev;
10125 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
10126 !netif_running(dev)) {
10133 } else if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP) {
10134 if (!wdev->p2p_started) {
10141 info->user_ptr[0] = rdev;
10147 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
10148 struct genl_info *info)
10150 if (info->user_ptr[1]) {
10151 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
10152 struct wireless_dev *wdev = info->user_ptr[1];
10155 dev_put(wdev->netdev);
10157 dev_put(info->user_ptr[1]);
10161 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
10164 /* If needed, clear the netlink message payload from the SKB
10165 * as it might contain key data that shouldn't stick around on
10166 * the heap after the SKB is freed. The netlink message header
10167 * is still needed for further processing, so leave it intact.
10169 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
10170 struct nlmsghdr *nlh = nlmsg_hdr(skb);
10172 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
10176 static const struct genl_ops nl80211_ops[] = {
10178 .cmd = NL80211_CMD_GET_WIPHY,
10179 .doit = nl80211_get_wiphy,
10180 .dumpit = nl80211_dump_wiphy,
10181 .done = nl80211_dump_wiphy_done,
10182 .policy = nl80211_policy,
10183 /* can be retrieved by unprivileged users */
10184 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10185 NL80211_FLAG_NEED_RTNL,
10188 .cmd = NL80211_CMD_SET_WIPHY,
10189 .doit = nl80211_set_wiphy,
10190 .policy = nl80211_policy,
10191 .flags = GENL_ADMIN_PERM,
10192 .internal_flags = NL80211_FLAG_NEED_RTNL,
10195 .cmd = NL80211_CMD_GET_INTERFACE,
10196 .doit = nl80211_get_interface,
10197 .dumpit = nl80211_dump_interface,
10198 .policy = nl80211_policy,
10199 /* can be retrieved by unprivileged users */
10200 .internal_flags = NL80211_FLAG_NEED_WDEV |
10201 NL80211_FLAG_NEED_RTNL,
10204 .cmd = NL80211_CMD_SET_INTERFACE,
10205 .doit = nl80211_set_interface,
10206 .policy = nl80211_policy,
10207 .flags = GENL_ADMIN_PERM,
10208 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10209 NL80211_FLAG_NEED_RTNL,
10212 .cmd = NL80211_CMD_NEW_INTERFACE,
10213 .doit = nl80211_new_interface,
10214 .policy = nl80211_policy,
10215 .flags = GENL_ADMIN_PERM,
10216 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10217 NL80211_FLAG_NEED_RTNL,
10220 .cmd = NL80211_CMD_DEL_INTERFACE,
10221 .doit = nl80211_del_interface,
10222 .policy = nl80211_policy,
10223 .flags = GENL_ADMIN_PERM,
10224 .internal_flags = NL80211_FLAG_NEED_WDEV |
10225 NL80211_FLAG_NEED_RTNL,
10228 .cmd = NL80211_CMD_GET_KEY,
10229 .doit = nl80211_get_key,
10230 .policy = nl80211_policy,
10231 .flags = GENL_ADMIN_PERM,
10232 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10233 NL80211_FLAG_NEED_RTNL,
10236 .cmd = NL80211_CMD_SET_KEY,
10237 .doit = nl80211_set_key,
10238 .policy = nl80211_policy,
10239 .flags = GENL_ADMIN_PERM,
10240 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10241 NL80211_FLAG_NEED_RTNL |
10242 NL80211_FLAG_CLEAR_SKB,
10245 .cmd = NL80211_CMD_NEW_KEY,
10246 .doit = nl80211_new_key,
10247 .policy = nl80211_policy,
10248 .flags = GENL_ADMIN_PERM,
10249 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10250 NL80211_FLAG_NEED_RTNL |
10251 NL80211_FLAG_CLEAR_SKB,
10254 .cmd = NL80211_CMD_DEL_KEY,
10255 .doit = nl80211_del_key,
10256 .policy = nl80211_policy,
10257 .flags = GENL_ADMIN_PERM,
10258 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10259 NL80211_FLAG_NEED_RTNL,
10262 .cmd = NL80211_CMD_SET_BEACON,
10263 .policy = nl80211_policy,
10264 .flags = GENL_ADMIN_PERM,
10265 .doit = nl80211_set_beacon,
10266 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10267 NL80211_FLAG_NEED_RTNL,
10270 .cmd = NL80211_CMD_START_AP,
10271 .policy = nl80211_policy,
10272 .flags = GENL_ADMIN_PERM,
10273 .doit = nl80211_start_ap,
10274 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10275 NL80211_FLAG_NEED_RTNL,
10278 .cmd = NL80211_CMD_STOP_AP,
10279 .policy = nl80211_policy,
10280 .flags = GENL_ADMIN_PERM,
10281 .doit = nl80211_stop_ap,
10282 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10283 NL80211_FLAG_NEED_RTNL,
10286 .cmd = NL80211_CMD_GET_STATION,
10287 .doit = nl80211_get_station,
10288 .dumpit = nl80211_dump_station,
10289 .policy = nl80211_policy,
10290 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10291 NL80211_FLAG_NEED_RTNL,
10294 .cmd = NL80211_CMD_SET_STATION,
10295 .doit = nl80211_set_station,
10296 .policy = nl80211_policy,
10297 .flags = GENL_ADMIN_PERM,
10298 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10299 NL80211_FLAG_NEED_RTNL,
10302 .cmd = NL80211_CMD_NEW_STATION,
10303 .doit = nl80211_new_station,
10304 .policy = nl80211_policy,
10305 .flags = GENL_ADMIN_PERM,
10306 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10307 NL80211_FLAG_NEED_RTNL,
10310 .cmd = NL80211_CMD_DEL_STATION,
10311 .doit = nl80211_del_station,
10312 .policy = nl80211_policy,
10313 .flags = GENL_ADMIN_PERM,
10314 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10315 NL80211_FLAG_NEED_RTNL,
10318 .cmd = NL80211_CMD_GET_MPATH,
10319 .doit = nl80211_get_mpath,
10320 .dumpit = nl80211_dump_mpath,
10321 .policy = nl80211_policy,
10322 .flags = GENL_ADMIN_PERM,
10323 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10324 NL80211_FLAG_NEED_RTNL,
10327 .cmd = NL80211_CMD_GET_MPP,
10328 .doit = nl80211_get_mpp,
10329 .dumpit = nl80211_dump_mpp,
10330 .policy = nl80211_policy,
10331 .flags = GENL_ADMIN_PERM,
10332 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10333 NL80211_FLAG_NEED_RTNL,
10336 .cmd = NL80211_CMD_SET_MPATH,
10337 .doit = nl80211_set_mpath,
10338 .policy = nl80211_policy,
10339 .flags = GENL_ADMIN_PERM,
10340 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10341 NL80211_FLAG_NEED_RTNL,
10344 .cmd = NL80211_CMD_NEW_MPATH,
10345 .doit = nl80211_new_mpath,
10346 .policy = nl80211_policy,
10347 .flags = GENL_ADMIN_PERM,
10348 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10349 NL80211_FLAG_NEED_RTNL,
10352 .cmd = NL80211_CMD_DEL_MPATH,
10353 .doit = nl80211_del_mpath,
10354 .policy = nl80211_policy,
10355 .flags = GENL_ADMIN_PERM,
10356 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10357 NL80211_FLAG_NEED_RTNL,
10360 .cmd = NL80211_CMD_SET_BSS,
10361 .doit = nl80211_set_bss,
10362 .policy = nl80211_policy,
10363 .flags = GENL_ADMIN_PERM,
10364 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10365 NL80211_FLAG_NEED_RTNL,
10368 .cmd = NL80211_CMD_GET_REG,
10369 .doit = nl80211_get_reg_do,
10370 .dumpit = nl80211_get_reg_dump,
10371 .policy = nl80211_policy,
10372 .internal_flags = NL80211_FLAG_NEED_RTNL,
10373 /* can be retrieved by unprivileged users */
10376 .cmd = NL80211_CMD_SET_REG,
10377 .doit = nl80211_set_reg,
10378 .policy = nl80211_policy,
10379 .flags = GENL_ADMIN_PERM,
10380 .internal_flags = NL80211_FLAG_NEED_RTNL,
10383 .cmd = NL80211_CMD_REQ_SET_REG,
10384 .doit = nl80211_req_set_reg,
10385 .policy = nl80211_policy,
10386 .flags = GENL_ADMIN_PERM,
10389 .cmd = NL80211_CMD_GET_MESH_CONFIG,
10390 .doit = nl80211_get_mesh_config,
10391 .policy = nl80211_policy,
10392 /* can be retrieved by unprivileged users */
10393 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10394 NL80211_FLAG_NEED_RTNL,
10397 .cmd = NL80211_CMD_SET_MESH_CONFIG,
10398 .doit = nl80211_update_mesh_config,
10399 .policy = nl80211_policy,
10400 .flags = GENL_ADMIN_PERM,
10401 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10402 NL80211_FLAG_NEED_RTNL,
10405 .cmd = NL80211_CMD_TRIGGER_SCAN,
10406 .doit = nl80211_trigger_scan,
10407 .policy = nl80211_policy,
10408 .flags = GENL_ADMIN_PERM,
10409 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10410 NL80211_FLAG_NEED_RTNL,
10413 .cmd = NL80211_CMD_GET_SCAN,
10414 .policy = nl80211_policy,
10415 .dumpit = nl80211_dump_scan,
10418 .cmd = NL80211_CMD_START_SCHED_SCAN,
10419 .doit = nl80211_start_sched_scan,
10420 .policy = nl80211_policy,
10421 .flags = GENL_ADMIN_PERM,
10422 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10423 NL80211_FLAG_NEED_RTNL,
10426 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
10427 .doit = nl80211_stop_sched_scan,
10428 .policy = nl80211_policy,
10429 .flags = GENL_ADMIN_PERM,
10430 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10431 NL80211_FLAG_NEED_RTNL,
10434 .cmd = NL80211_CMD_AUTHENTICATE,
10435 .doit = nl80211_authenticate,
10436 .policy = nl80211_policy,
10437 .flags = GENL_ADMIN_PERM,
10438 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10439 NL80211_FLAG_NEED_RTNL |
10440 NL80211_FLAG_CLEAR_SKB,
10443 .cmd = NL80211_CMD_ASSOCIATE,
10444 .doit = nl80211_associate,
10445 .policy = nl80211_policy,
10446 .flags = GENL_ADMIN_PERM,
10447 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10448 NL80211_FLAG_NEED_RTNL,
10451 .cmd = NL80211_CMD_DEAUTHENTICATE,
10452 .doit = nl80211_deauthenticate,
10453 .policy = nl80211_policy,
10454 .flags = GENL_ADMIN_PERM,
10455 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10456 NL80211_FLAG_NEED_RTNL,
10459 .cmd = NL80211_CMD_DISASSOCIATE,
10460 .doit = nl80211_disassociate,
10461 .policy = nl80211_policy,
10462 .flags = GENL_ADMIN_PERM,
10463 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10464 NL80211_FLAG_NEED_RTNL,
10467 .cmd = NL80211_CMD_JOIN_IBSS,
10468 .doit = nl80211_join_ibss,
10469 .policy = nl80211_policy,
10470 .flags = GENL_ADMIN_PERM,
10471 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10472 NL80211_FLAG_NEED_RTNL,
10475 .cmd = NL80211_CMD_LEAVE_IBSS,
10476 .doit = nl80211_leave_ibss,
10477 .policy = nl80211_policy,
10478 .flags = GENL_ADMIN_PERM,
10479 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10480 NL80211_FLAG_NEED_RTNL,
10482 #ifdef CONFIG_NL80211_TESTMODE
10484 .cmd = NL80211_CMD_TESTMODE,
10485 .doit = nl80211_testmode_do,
10486 .dumpit = nl80211_testmode_dump,
10487 .policy = nl80211_policy,
10488 .flags = GENL_ADMIN_PERM,
10489 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10490 NL80211_FLAG_NEED_RTNL,
10494 .cmd = NL80211_CMD_CONNECT,
10495 .doit = nl80211_connect,
10496 .policy = nl80211_policy,
10497 .flags = GENL_ADMIN_PERM,
10498 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10499 NL80211_FLAG_NEED_RTNL,
10502 .cmd = NL80211_CMD_DISCONNECT,
10503 .doit = nl80211_disconnect,
10504 .policy = nl80211_policy,
10505 .flags = GENL_ADMIN_PERM,
10506 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10507 NL80211_FLAG_NEED_RTNL,
10510 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
10511 .doit = nl80211_wiphy_netns,
10512 .policy = nl80211_policy,
10513 .flags = GENL_ADMIN_PERM,
10514 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10515 NL80211_FLAG_NEED_RTNL,
10518 .cmd = NL80211_CMD_GET_SURVEY,
10519 .policy = nl80211_policy,
10520 .dumpit = nl80211_dump_survey,
10523 .cmd = NL80211_CMD_SET_PMKSA,
10524 .doit = nl80211_setdel_pmksa,
10525 .policy = nl80211_policy,
10526 .flags = GENL_ADMIN_PERM,
10527 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10528 NL80211_FLAG_NEED_RTNL,
10531 .cmd = NL80211_CMD_DEL_PMKSA,
10532 .doit = nl80211_setdel_pmksa,
10533 .policy = nl80211_policy,
10534 .flags = GENL_ADMIN_PERM,
10535 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10536 NL80211_FLAG_NEED_RTNL,
10539 .cmd = NL80211_CMD_FLUSH_PMKSA,
10540 .doit = nl80211_flush_pmksa,
10541 .policy = nl80211_policy,
10542 .flags = GENL_ADMIN_PERM,
10543 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10544 NL80211_FLAG_NEED_RTNL,
10547 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
10548 .doit = nl80211_remain_on_channel,
10549 .policy = nl80211_policy,
10550 .flags = GENL_ADMIN_PERM,
10551 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10552 NL80211_FLAG_NEED_RTNL,
10555 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
10556 .doit = nl80211_cancel_remain_on_channel,
10557 .policy = nl80211_policy,
10558 .flags = GENL_ADMIN_PERM,
10559 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10560 NL80211_FLAG_NEED_RTNL,
10563 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
10564 .doit = nl80211_set_tx_bitrate_mask,
10565 .policy = nl80211_policy,
10566 .flags = GENL_ADMIN_PERM,
10567 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10568 NL80211_FLAG_NEED_RTNL,
10571 .cmd = NL80211_CMD_REGISTER_FRAME,
10572 .doit = nl80211_register_mgmt,
10573 .policy = nl80211_policy,
10574 .flags = GENL_ADMIN_PERM,
10575 .internal_flags = NL80211_FLAG_NEED_WDEV |
10576 NL80211_FLAG_NEED_RTNL,
10579 .cmd = NL80211_CMD_FRAME,
10580 .doit = nl80211_tx_mgmt,
10581 .policy = nl80211_policy,
10582 .flags = GENL_ADMIN_PERM,
10583 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10584 NL80211_FLAG_NEED_RTNL,
10587 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
10588 .doit = nl80211_tx_mgmt_cancel_wait,
10589 .policy = nl80211_policy,
10590 .flags = GENL_ADMIN_PERM,
10591 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10592 NL80211_FLAG_NEED_RTNL,
10595 .cmd = NL80211_CMD_SET_POWER_SAVE,
10596 .doit = nl80211_set_power_save,
10597 .policy = nl80211_policy,
10598 .flags = GENL_ADMIN_PERM,
10599 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10600 NL80211_FLAG_NEED_RTNL,
10603 .cmd = NL80211_CMD_GET_POWER_SAVE,
10604 .doit = nl80211_get_power_save,
10605 .policy = nl80211_policy,
10606 /* can be retrieved by unprivileged users */
10607 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10608 NL80211_FLAG_NEED_RTNL,
10611 .cmd = NL80211_CMD_SET_CQM,
10612 .doit = nl80211_set_cqm,
10613 .policy = nl80211_policy,
10614 .flags = GENL_ADMIN_PERM,
10615 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10616 NL80211_FLAG_NEED_RTNL,
10619 .cmd = NL80211_CMD_SET_CHANNEL,
10620 .doit = nl80211_set_channel,
10621 .policy = nl80211_policy,
10622 .flags = GENL_ADMIN_PERM,
10623 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10624 NL80211_FLAG_NEED_RTNL,
10627 .cmd = NL80211_CMD_SET_WDS_PEER,
10628 .doit = nl80211_set_wds_peer,
10629 .policy = nl80211_policy,
10630 .flags = GENL_ADMIN_PERM,
10631 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10632 NL80211_FLAG_NEED_RTNL,
10635 .cmd = NL80211_CMD_JOIN_MESH,
10636 .doit = nl80211_join_mesh,
10637 .policy = nl80211_policy,
10638 .flags = GENL_ADMIN_PERM,
10639 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10640 NL80211_FLAG_NEED_RTNL,
10643 .cmd = NL80211_CMD_LEAVE_MESH,
10644 .doit = nl80211_leave_mesh,
10645 .policy = nl80211_policy,
10646 .flags = GENL_ADMIN_PERM,
10647 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10648 NL80211_FLAG_NEED_RTNL,
10651 .cmd = NL80211_CMD_JOIN_OCB,
10652 .doit = nl80211_join_ocb,
10653 .policy = nl80211_policy,
10654 .flags = GENL_ADMIN_PERM,
10655 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10656 NL80211_FLAG_NEED_RTNL,
10659 .cmd = NL80211_CMD_LEAVE_OCB,
10660 .doit = nl80211_leave_ocb,
10661 .policy = nl80211_policy,
10662 .flags = GENL_ADMIN_PERM,
10663 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10664 NL80211_FLAG_NEED_RTNL,
10668 .cmd = NL80211_CMD_GET_WOWLAN,
10669 .doit = nl80211_get_wowlan,
10670 .policy = nl80211_policy,
10671 /* can be retrieved by unprivileged users */
10672 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10673 NL80211_FLAG_NEED_RTNL,
10676 .cmd = NL80211_CMD_SET_WOWLAN,
10677 .doit = nl80211_set_wowlan,
10678 .policy = nl80211_policy,
10679 .flags = GENL_ADMIN_PERM,
10680 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10681 NL80211_FLAG_NEED_RTNL,
10685 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
10686 .doit = nl80211_set_rekey_data,
10687 .policy = nl80211_policy,
10688 .flags = GENL_ADMIN_PERM,
10689 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10690 NL80211_FLAG_NEED_RTNL |
10691 NL80211_FLAG_CLEAR_SKB,
10694 .cmd = NL80211_CMD_TDLS_MGMT,
10695 .doit = nl80211_tdls_mgmt,
10696 .policy = nl80211_policy,
10697 .flags = GENL_ADMIN_PERM,
10698 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10699 NL80211_FLAG_NEED_RTNL,
10702 .cmd = NL80211_CMD_TDLS_OPER,
10703 .doit = nl80211_tdls_oper,
10704 .policy = nl80211_policy,
10705 .flags = GENL_ADMIN_PERM,
10706 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10707 NL80211_FLAG_NEED_RTNL,
10710 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
10711 .doit = nl80211_register_unexpected_frame,
10712 .policy = nl80211_policy,
10713 .flags = GENL_ADMIN_PERM,
10714 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10715 NL80211_FLAG_NEED_RTNL,
10718 .cmd = NL80211_CMD_PROBE_CLIENT,
10719 .doit = nl80211_probe_client,
10720 .policy = nl80211_policy,
10721 .flags = GENL_ADMIN_PERM,
10722 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10723 NL80211_FLAG_NEED_RTNL,
10726 .cmd = NL80211_CMD_REGISTER_BEACONS,
10727 .doit = nl80211_register_beacons,
10728 .policy = nl80211_policy,
10729 .flags = GENL_ADMIN_PERM,
10730 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10731 NL80211_FLAG_NEED_RTNL,
10734 .cmd = NL80211_CMD_SET_NOACK_MAP,
10735 .doit = nl80211_set_noack_map,
10736 .policy = nl80211_policy,
10737 .flags = GENL_ADMIN_PERM,
10738 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10739 NL80211_FLAG_NEED_RTNL,
10742 .cmd = NL80211_CMD_START_P2P_DEVICE,
10743 .doit = nl80211_start_p2p_device,
10744 .policy = nl80211_policy,
10745 .flags = GENL_ADMIN_PERM,
10746 .internal_flags = NL80211_FLAG_NEED_WDEV |
10747 NL80211_FLAG_NEED_RTNL,
10750 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
10751 .doit = nl80211_stop_p2p_device,
10752 .policy = nl80211_policy,
10753 .flags = GENL_ADMIN_PERM,
10754 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10755 NL80211_FLAG_NEED_RTNL,
10758 .cmd = NL80211_CMD_SET_MCAST_RATE,
10759 .doit = nl80211_set_mcast_rate,
10760 .policy = nl80211_policy,
10761 .flags = GENL_ADMIN_PERM,
10762 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10763 NL80211_FLAG_NEED_RTNL,
10766 .cmd = NL80211_CMD_SET_MAC_ACL,
10767 .doit = nl80211_set_mac_acl,
10768 .policy = nl80211_policy,
10769 .flags = GENL_ADMIN_PERM,
10770 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10771 NL80211_FLAG_NEED_RTNL,
10774 .cmd = NL80211_CMD_RADAR_DETECT,
10775 .doit = nl80211_start_radar_detection,
10776 .policy = nl80211_policy,
10777 .flags = GENL_ADMIN_PERM,
10778 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10779 NL80211_FLAG_NEED_RTNL,
10782 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
10783 .doit = nl80211_get_protocol_features,
10784 .policy = nl80211_policy,
10787 .cmd = NL80211_CMD_UPDATE_FT_IES,
10788 .doit = nl80211_update_ft_ies,
10789 .policy = nl80211_policy,
10790 .flags = GENL_ADMIN_PERM,
10791 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10792 NL80211_FLAG_NEED_RTNL,
10795 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
10796 .doit = nl80211_crit_protocol_start,
10797 .policy = nl80211_policy,
10798 .flags = GENL_ADMIN_PERM,
10799 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10800 NL80211_FLAG_NEED_RTNL,
10803 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
10804 .doit = nl80211_crit_protocol_stop,
10805 .policy = nl80211_policy,
10806 .flags = GENL_ADMIN_PERM,
10807 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10808 NL80211_FLAG_NEED_RTNL,
10811 .cmd = NL80211_CMD_GET_COALESCE,
10812 .doit = nl80211_get_coalesce,
10813 .policy = nl80211_policy,
10814 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10815 NL80211_FLAG_NEED_RTNL,
10818 .cmd = NL80211_CMD_SET_COALESCE,
10819 .doit = nl80211_set_coalesce,
10820 .policy = nl80211_policy,
10821 .flags = GENL_ADMIN_PERM,
10822 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10823 NL80211_FLAG_NEED_RTNL,
10826 .cmd = NL80211_CMD_CHANNEL_SWITCH,
10827 .doit = nl80211_channel_switch,
10828 .policy = nl80211_policy,
10829 .flags = GENL_ADMIN_PERM,
10830 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10831 NL80211_FLAG_NEED_RTNL,
10834 .cmd = NL80211_CMD_VENDOR,
10835 .doit = nl80211_vendor_cmd,
10836 .policy = nl80211_policy,
10837 .flags = GENL_ADMIN_PERM,
10838 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10839 NL80211_FLAG_NEED_RTNL,
10842 .cmd = NL80211_CMD_SET_QOS_MAP,
10843 .doit = nl80211_set_qos_map,
10844 .policy = nl80211_policy,
10845 .flags = GENL_ADMIN_PERM,
10846 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10847 NL80211_FLAG_NEED_RTNL,
10850 .cmd = NL80211_CMD_ADD_TX_TS,
10851 .doit = nl80211_add_tx_ts,
10852 .policy = nl80211_policy,
10853 .flags = GENL_ADMIN_PERM,
10854 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10855 NL80211_FLAG_NEED_RTNL,
10858 .cmd = NL80211_CMD_DEL_TX_TS,
10859 .doit = nl80211_del_tx_ts,
10860 .policy = nl80211_policy,
10861 .flags = GENL_ADMIN_PERM,
10862 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10863 NL80211_FLAG_NEED_RTNL,
10866 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
10867 .doit = nl80211_tdls_channel_switch,
10868 .policy = nl80211_policy,
10869 .flags = GENL_ADMIN_PERM,
10870 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10871 NL80211_FLAG_NEED_RTNL,
10874 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
10875 .doit = nl80211_tdls_cancel_channel_switch,
10876 .policy = nl80211_policy,
10877 .flags = GENL_ADMIN_PERM,
10878 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10879 NL80211_FLAG_NEED_RTNL,
10883 /* notification functions */
10885 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
10886 enum nl80211_commands cmd)
10888 struct sk_buff *msg;
10889 struct nl80211_dump_wiphy_state state = {};
10891 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
10892 cmd != NL80211_CMD_DEL_WIPHY);
10894 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10898 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
10903 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10904 NL80211_MCGRP_CONFIG, GFP_KERNEL);
10907 static int nl80211_add_scan_req(struct sk_buff *msg,
10908 struct cfg80211_registered_device *rdev)
10910 struct cfg80211_scan_request *req = rdev->scan_req;
10911 struct nlattr *nest;
10917 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
10919 goto nla_put_failure;
10920 for (i = 0; i < req->n_ssids; i++) {
10921 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
10922 goto nla_put_failure;
10924 nla_nest_end(msg, nest);
10926 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
10928 goto nla_put_failure;
10929 for (i = 0; i < req->n_channels; i++) {
10930 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
10931 goto nla_put_failure;
10933 nla_nest_end(msg, nest);
10936 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
10937 goto nla_put_failure;
10940 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
10941 goto nla_put_failure;
10948 static int nl80211_send_scan_msg(struct sk_buff *msg,
10949 struct cfg80211_registered_device *rdev,
10950 struct wireless_dev *wdev,
10951 u32 portid, u32 seq, int flags,
10956 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
10960 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10961 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10962 wdev->netdev->ifindex)) ||
10963 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
10964 goto nla_put_failure;
10966 /* ignore errors and send incomplete event anyway */
10967 nl80211_add_scan_req(msg, rdev);
10969 return genlmsg_end(msg, hdr);
10972 genlmsg_cancel(msg, hdr);
10977 nl80211_send_sched_scan_msg(struct sk_buff *msg,
10978 struct cfg80211_registered_device *rdev,
10979 struct net_device *netdev,
10980 u32 portid, u32 seq, int flags, u32 cmd)
10984 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
10988 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10989 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
10990 goto nla_put_failure;
10992 return genlmsg_end(msg, hdr);
10995 genlmsg_cancel(msg, hdr);
10999 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
11000 struct wireless_dev *wdev)
11002 struct sk_buff *msg;
11004 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11008 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
11009 NL80211_CMD_TRIGGER_SCAN) < 0) {
11014 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11015 NL80211_MCGRP_SCAN, GFP_KERNEL);
11018 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
11019 struct wireless_dev *wdev, bool aborted)
11021 struct sk_buff *msg;
11023 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11027 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
11028 aborted ? NL80211_CMD_SCAN_ABORTED :
11029 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
11037 void nl80211_send_scan_result(struct cfg80211_registered_device *rdev,
11038 struct sk_buff *msg)
11043 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11044 NL80211_MCGRP_SCAN, GFP_KERNEL);
11047 void nl80211_send_sched_scan_results(struct cfg80211_registered_device *rdev,
11048 struct net_device *netdev)
11050 struct sk_buff *msg;
11052 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11056 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0,
11057 NL80211_CMD_SCHED_SCAN_RESULTS) < 0) {
11062 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11063 NL80211_MCGRP_SCAN, GFP_KERNEL);
11066 void nl80211_send_sched_scan(struct cfg80211_registered_device *rdev,
11067 struct net_device *netdev, u32 cmd)
11069 struct sk_buff *msg;
11071 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11075 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0, cmd) < 0) {
11080 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11081 NL80211_MCGRP_SCAN, GFP_KERNEL);
11084 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
11085 struct regulatory_request *request)
11087 /* Userspace can always count this one always being set */
11088 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
11089 goto nla_put_failure;
11091 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
11092 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11093 NL80211_REGDOM_TYPE_WORLD))
11094 goto nla_put_failure;
11095 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
11096 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11097 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
11098 goto nla_put_failure;
11099 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
11100 request->intersect) {
11101 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11102 NL80211_REGDOM_TYPE_INTERSECTION))
11103 goto nla_put_failure;
11105 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11106 NL80211_REGDOM_TYPE_COUNTRY) ||
11107 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
11109 goto nla_put_failure;
11112 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
11113 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
11116 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
11117 goto nla_put_failure;
11120 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
11121 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
11122 goto nla_put_failure;
11132 * This can happen on global regulatory changes or device specific settings
11133 * based on custom regulatory domains.
11135 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
11136 struct regulatory_request *request)
11138 struct sk_buff *msg;
11141 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11145 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
11151 if (nl80211_reg_change_event_fill(msg, request) == false)
11152 goto nla_put_failure;
11154 genlmsg_end(msg, hdr);
11157 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
11158 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
11164 genlmsg_cancel(msg, hdr);
11168 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
11169 struct net_device *netdev,
11170 const u8 *buf, size_t len,
11171 enum nl80211_commands cmd, gfp_t gfp,
11174 struct sk_buff *msg;
11177 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11181 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11187 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11188 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11189 nla_put(msg, NL80211_ATTR_FRAME, len, buf))
11190 goto nla_put_failure;
11192 if (uapsd_queues >= 0) {
11193 struct nlattr *nla_wmm =
11194 nla_nest_start(msg, NL80211_ATTR_STA_WME);
11196 goto nla_put_failure;
11198 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
11200 goto nla_put_failure;
11202 nla_nest_end(msg, nla_wmm);
11205 genlmsg_end(msg, hdr);
11207 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11208 NL80211_MCGRP_MLME, gfp);
11212 genlmsg_cancel(msg, hdr);
11216 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
11217 struct net_device *netdev, const u8 *buf,
11218 size_t len, gfp_t gfp)
11220 nl80211_send_mlme_event(rdev, netdev, buf, len,
11221 NL80211_CMD_AUTHENTICATE, gfp, -1);
11224 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
11225 struct net_device *netdev, const u8 *buf,
11226 size_t len, gfp_t gfp, int uapsd_queues)
11228 nl80211_send_mlme_event(rdev, netdev, buf, len,
11229 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues);
11232 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
11233 struct net_device *netdev, const u8 *buf,
11234 size_t len, gfp_t gfp)
11236 nl80211_send_mlme_event(rdev, netdev, buf, len,
11237 NL80211_CMD_DEAUTHENTICATE, gfp, -1);
11240 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
11241 struct net_device *netdev, const u8 *buf,
11242 size_t len, gfp_t gfp)
11244 nl80211_send_mlme_event(rdev, netdev, buf, len,
11245 NL80211_CMD_DISASSOCIATE, gfp, -1);
11248 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
11251 struct wireless_dev *wdev = dev->ieee80211_ptr;
11252 struct wiphy *wiphy = wdev->wiphy;
11253 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11254 const struct ieee80211_mgmt *mgmt = (void *)buf;
11257 if (WARN_ON(len < 2))
11260 if (ieee80211_is_deauth(mgmt->frame_control))
11261 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
11263 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
11265 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
11266 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1);
11268 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
11270 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
11271 struct net_device *netdev, int cmd,
11272 const u8 *addr, gfp_t gfp)
11274 struct sk_buff *msg;
11277 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11281 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11287 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11288 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11289 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
11290 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
11291 goto nla_put_failure;
11293 genlmsg_end(msg, hdr);
11295 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11296 NL80211_MCGRP_MLME, gfp);
11300 genlmsg_cancel(msg, hdr);
11304 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
11305 struct net_device *netdev, const u8 *addr,
11308 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
11312 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
11313 struct net_device *netdev, const u8 *addr,
11316 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
11320 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
11321 struct net_device *netdev, const u8 *bssid,
11322 const u8 *req_ie, size_t req_ie_len,
11323 const u8 *resp_ie, size_t resp_ie_len,
11324 u16 status, gfp_t gfp)
11326 struct sk_buff *msg;
11329 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11333 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
11339 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11340 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11341 (bssid && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid)) ||
11342 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE, status) ||
11344 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
11346 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
11347 goto nla_put_failure;
11349 genlmsg_end(msg, hdr);
11351 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11352 NL80211_MCGRP_MLME, gfp);
11356 genlmsg_cancel(msg, hdr);
11361 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
11362 struct net_device *netdev, const u8 *bssid,
11363 const u8 *req_ie, size_t req_ie_len,
11364 const u8 *resp_ie, size_t resp_ie_len, gfp_t gfp)
11366 struct sk_buff *msg;
11369 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11373 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
11379 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11380 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11381 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
11383 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
11385 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
11386 goto nla_put_failure;
11388 genlmsg_end(msg, hdr);
11390 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11391 NL80211_MCGRP_MLME, gfp);
11395 genlmsg_cancel(msg, hdr);
11400 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
11401 struct net_device *netdev, u16 reason,
11402 const u8 *ie, size_t ie_len, bool from_ap)
11404 struct sk_buff *msg;
11407 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11411 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
11417 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11418 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11419 (from_ap && reason &&
11420 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
11422 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
11423 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
11424 goto nla_put_failure;
11426 genlmsg_end(msg, hdr);
11428 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11429 NL80211_MCGRP_MLME, GFP_KERNEL);
11433 genlmsg_cancel(msg, hdr);
11438 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
11439 struct net_device *netdev, const u8 *bssid,
11442 struct sk_buff *msg;
11445 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11449 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
11455 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11456 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11457 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
11458 goto nla_put_failure;
11460 genlmsg_end(msg, hdr);
11462 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11463 NL80211_MCGRP_MLME, gfp);
11467 genlmsg_cancel(msg, hdr);
11471 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
11472 const u8* ie, u8 ie_len, gfp_t gfp)
11474 struct wireless_dev *wdev = dev->ieee80211_ptr;
11475 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
11476 struct sk_buff *msg;
11479 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
11482 trace_cfg80211_notify_new_peer_candidate(dev, addr);
11484 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11488 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
11494 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11495 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11496 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
11498 nla_put(msg, NL80211_ATTR_IE, ie_len , ie)))
11499 goto nla_put_failure;
11501 genlmsg_end(msg, hdr);
11503 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11504 NL80211_MCGRP_MLME, gfp);
11508 genlmsg_cancel(msg, hdr);
11511 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
11513 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
11514 struct net_device *netdev, const u8 *addr,
11515 enum nl80211_key_type key_type, int key_id,
11516 const u8 *tsc, gfp_t gfp)
11518 struct sk_buff *msg;
11521 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11525 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
11531 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11532 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11533 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
11534 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
11536 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
11537 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
11538 goto nla_put_failure;
11540 genlmsg_end(msg, hdr);
11542 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11543 NL80211_MCGRP_MLME, gfp);
11547 genlmsg_cancel(msg, hdr);
11551 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
11552 struct ieee80211_channel *channel_before,
11553 struct ieee80211_channel *channel_after)
11555 struct sk_buff *msg;
11557 struct nlattr *nl_freq;
11559 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
11563 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
11570 * Since we are applying the beacon hint to a wiphy we know its
11571 * wiphy_idx is valid
11573 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
11574 goto nla_put_failure;
11577 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
11579 goto nla_put_failure;
11580 if (nl80211_msg_put_channel(msg, channel_before, false))
11581 goto nla_put_failure;
11582 nla_nest_end(msg, nl_freq);
11585 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
11587 goto nla_put_failure;
11588 if (nl80211_msg_put_channel(msg, channel_after, false))
11589 goto nla_put_failure;
11590 nla_nest_end(msg, nl_freq);
11592 genlmsg_end(msg, hdr);
11595 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
11596 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
11602 genlmsg_cancel(msg, hdr);
11606 static void nl80211_send_remain_on_chan_event(
11607 int cmd, struct cfg80211_registered_device *rdev,
11608 struct wireless_dev *wdev, u64 cookie,
11609 struct ieee80211_channel *chan,
11610 unsigned int duration, gfp_t gfp)
11612 struct sk_buff *msg;
11615 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11619 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11625 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11626 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11627 wdev->netdev->ifindex)) ||
11628 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
11629 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
11630 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
11631 NL80211_CHAN_NO_HT) ||
11632 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
11633 goto nla_put_failure;
11635 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
11636 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
11637 goto nla_put_failure;
11639 genlmsg_end(msg, hdr);
11641 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11642 NL80211_MCGRP_MLME, gfp);
11646 genlmsg_cancel(msg, hdr);
11650 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
11651 struct ieee80211_channel *chan,
11652 unsigned int duration, gfp_t gfp)
11654 struct wiphy *wiphy = wdev->wiphy;
11655 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11657 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
11658 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
11659 rdev, wdev, cookie, chan,
11662 EXPORT_SYMBOL(cfg80211_ready_on_channel);
11664 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
11665 struct ieee80211_channel *chan,
11668 struct wiphy *wiphy = wdev->wiphy;
11669 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11671 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
11672 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
11673 rdev, wdev, cookie, chan, 0, gfp);
11675 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
11677 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
11678 struct station_info *sinfo, gfp_t gfp)
11680 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
11681 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11682 struct sk_buff *msg;
11684 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
11686 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11690 if (nl80211_send_station(msg, 0, 0, 0,
11691 rdev, dev, mac_addr, sinfo) < 0) {
11696 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11697 NL80211_MCGRP_MLME, gfp);
11699 EXPORT_SYMBOL(cfg80211_new_sta);
11701 void cfg80211_del_sta(struct net_device *dev, const u8 *mac_addr, gfp_t gfp)
11703 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
11704 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11705 struct sk_buff *msg;
11708 trace_cfg80211_del_sta(dev, mac_addr);
11710 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11714 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_STATION);
11720 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11721 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
11722 goto nla_put_failure;
11724 genlmsg_end(msg, hdr);
11726 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11727 NL80211_MCGRP_MLME, gfp);
11731 genlmsg_cancel(msg, hdr);
11734 EXPORT_SYMBOL(cfg80211_del_sta);
11736 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
11737 enum nl80211_connect_failed_reason reason,
11740 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
11741 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11742 struct sk_buff *msg;
11745 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
11749 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
11755 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11756 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
11757 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
11758 goto nla_put_failure;
11760 genlmsg_end(msg, hdr);
11762 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11763 NL80211_MCGRP_MLME, gfp);
11767 genlmsg_cancel(msg, hdr);
11770 EXPORT_SYMBOL(cfg80211_conn_failed);
11772 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
11773 const u8 *addr, gfp_t gfp)
11775 struct wireless_dev *wdev = dev->ieee80211_ptr;
11776 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
11777 struct sk_buff *msg;
11779 u32 nlportid = ACCESS_ONCE(wdev->ap_unexpected_nlportid);
11784 msg = nlmsg_new(100, gfp);
11788 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11794 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11795 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11796 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
11797 goto nla_put_failure;
11799 genlmsg_end(msg, hdr);
11800 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
11804 genlmsg_cancel(msg, hdr);
11809 bool cfg80211_rx_spurious_frame(struct net_device *dev,
11810 const u8 *addr, gfp_t gfp)
11812 struct wireless_dev *wdev = dev->ieee80211_ptr;
11815 trace_cfg80211_rx_spurious_frame(dev, addr);
11817 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
11818 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
11819 trace_cfg80211_return_bool(false);
11822 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
11824 trace_cfg80211_return_bool(ret);
11827 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
11829 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
11830 const u8 *addr, gfp_t gfp)
11832 struct wireless_dev *wdev = dev->ieee80211_ptr;
11835 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
11837 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
11838 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
11839 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
11840 trace_cfg80211_return_bool(false);
11843 ret = __nl80211_unexpected_frame(dev,
11844 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
11846 trace_cfg80211_return_bool(ret);
11849 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
11851 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
11852 struct wireless_dev *wdev, u32 nlportid,
11853 int freq, int sig_dbm,
11854 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
11856 struct net_device *netdev = wdev->netdev;
11857 struct sk_buff *msg;
11860 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11864 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
11870 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11871 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11872 netdev->ifindex)) ||
11873 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
11874 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
11876 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
11877 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
11879 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
11880 goto nla_put_failure;
11882 genlmsg_end(msg, hdr);
11884 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
11887 genlmsg_cancel(msg, hdr);
11892 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
11893 const u8 *buf, size_t len, bool ack, gfp_t gfp)
11895 struct wiphy *wiphy = wdev->wiphy;
11896 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11897 struct net_device *netdev = wdev->netdev;
11898 struct sk_buff *msg;
11901 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
11903 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11907 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
11913 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11914 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11915 netdev->ifindex)) ||
11916 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
11917 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
11918 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
11919 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
11920 goto nla_put_failure;
11922 genlmsg_end(msg, hdr);
11924 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11925 NL80211_MCGRP_MLME, gfp);
11929 genlmsg_cancel(msg, hdr);
11932 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
11934 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
11935 const char *mac, gfp_t gfp)
11937 struct wireless_dev *wdev = dev->ieee80211_ptr;
11938 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
11939 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11945 cb = (void **)msg->cb;
11947 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
11953 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11954 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
11955 goto nla_put_failure;
11957 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
11958 goto nla_put_failure;
11960 cb[1] = nla_nest_start(msg, NL80211_ATTR_CQM);
11962 goto nla_put_failure;
11972 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
11974 void **cb = (void **)msg->cb;
11975 struct cfg80211_registered_device *rdev = cb[2];
11977 nla_nest_end(msg, cb[1]);
11978 genlmsg_end(msg, cb[0]);
11980 memset(msg->cb, 0, sizeof(msg->cb));
11982 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11983 NL80211_MCGRP_MLME, gfp);
11986 void cfg80211_cqm_rssi_notify(struct net_device *dev,
11987 enum nl80211_cqm_rssi_threshold_event rssi_event,
11990 struct sk_buff *msg;
11992 trace_cfg80211_cqm_rssi_notify(dev, rssi_event);
11994 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
11995 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
11998 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
12002 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
12004 goto nla_put_failure;
12006 cfg80211_send_cqm(msg, gfp);
12013 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
12015 void cfg80211_cqm_txe_notify(struct net_device *dev,
12016 const u8 *peer, u32 num_packets,
12017 u32 rate, u32 intvl, gfp_t gfp)
12019 struct sk_buff *msg;
12021 msg = cfg80211_prepare_cqm(dev, peer, gfp);
12025 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
12026 goto nla_put_failure;
12028 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
12029 goto nla_put_failure;
12031 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
12032 goto nla_put_failure;
12034 cfg80211_send_cqm(msg, gfp);
12040 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
12042 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
12043 const u8 *peer, u32 num_packets, gfp_t gfp)
12045 struct sk_buff *msg;
12047 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
12049 msg = cfg80211_prepare_cqm(dev, peer, gfp);
12053 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
12054 goto nla_put_failure;
12056 cfg80211_send_cqm(msg, gfp);
12062 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
12064 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
12066 struct sk_buff *msg;
12068 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
12072 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
12073 goto nla_put_failure;
12075 cfg80211_send_cqm(msg, gfp);
12081 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
12083 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
12084 struct net_device *netdev, const u8 *bssid,
12085 const u8 *replay_ctr, gfp_t gfp)
12087 struct sk_buff *msg;
12088 struct nlattr *rekey_attr;
12091 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12095 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
12101 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12102 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
12103 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
12104 goto nla_put_failure;
12106 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
12108 goto nla_put_failure;
12110 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
12111 NL80211_REPLAY_CTR_LEN, replay_ctr))
12112 goto nla_put_failure;
12114 nla_nest_end(msg, rekey_attr);
12116 genlmsg_end(msg, hdr);
12118 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12119 NL80211_MCGRP_MLME, gfp);
12123 genlmsg_cancel(msg, hdr);
12127 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
12128 const u8 *replay_ctr, gfp_t gfp)
12130 struct wireless_dev *wdev = dev->ieee80211_ptr;
12131 struct wiphy *wiphy = wdev->wiphy;
12132 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12134 trace_cfg80211_gtk_rekey_notify(dev, bssid);
12135 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
12137 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
12140 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
12141 struct net_device *netdev, int index,
12142 const u8 *bssid, bool preauth, gfp_t gfp)
12144 struct sk_buff *msg;
12145 struct nlattr *attr;
12148 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12152 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
12158 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12159 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
12160 goto nla_put_failure;
12162 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
12164 goto nla_put_failure;
12166 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
12167 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
12169 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
12170 goto nla_put_failure;
12172 nla_nest_end(msg, attr);
12174 genlmsg_end(msg, hdr);
12176 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12177 NL80211_MCGRP_MLME, gfp);
12181 genlmsg_cancel(msg, hdr);
12185 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
12186 const u8 *bssid, bool preauth, gfp_t gfp)
12188 struct wireless_dev *wdev = dev->ieee80211_ptr;
12189 struct wiphy *wiphy = wdev->wiphy;
12190 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12192 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
12193 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
12195 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
12197 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
12198 struct net_device *netdev,
12199 struct cfg80211_chan_def *chandef,
12201 enum nl80211_commands notif,
12204 struct sk_buff *msg;
12207 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12211 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
12217 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
12218 goto nla_put_failure;
12220 if (nl80211_send_chandef(msg, chandef))
12221 goto nla_put_failure;
12223 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
12224 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
12225 goto nla_put_failure;
12227 genlmsg_end(msg, hdr);
12229 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12230 NL80211_MCGRP_MLME, gfp);
12234 genlmsg_cancel(msg, hdr);
12238 void cfg80211_ch_switch_notify(struct net_device *dev,
12239 struct cfg80211_chan_def *chandef)
12241 struct wireless_dev *wdev = dev->ieee80211_ptr;
12242 struct wiphy *wiphy = wdev->wiphy;
12243 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12245 ASSERT_WDEV_LOCK(wdev);
12247 trace_cfg80211_ch_switch_notify(dev, chandef);
12249 wdev->chandef = *chandef;
12250 wdev->preset_chandef = *chandef;
12251 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
12252 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
12254 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
12256 void cfg80211_ch_switch_started_notify(struct net_device *dev,
12257 struct cfg80211_chan_def *chandef,
12260 struct wireless_dev *wdev = dev->ieee80211_ptr;
12261 struct wiphy *wiphy = wdev->wiphy;
12262 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12264 trace_cfg80211_ch_switch_started_notify(dev, chandef);
12266 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
12267 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
12269 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
12272 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
12273 const struct cfg80211_chan_def *chandef,
12274 enum nl80211_radar_event event,
12275 struct net_device *netdev, gfp_t gfp)
12277 struct sk_buff *msg;
12280 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12284 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
12290 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
12291 goto nla_put_failure;
12293 /* NOP and radar events don't need a netdev parameter */
12295 struct wireless_dev *wdev = netdev->ieee80211_ptr;
12297 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
12298 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12299 goto nla_put_failure;
12302 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
12303 goto nla_put_failure;
12305 if (nl80211_send_chandef(msg, chandef))
12306 goto nla_put_failure;
12308 genlmsg_end(msg, hdr);
12310 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12311 NL80211_MCGRP_MLME, gfp);
12315 genlmsg_cancel(msg, hdr);
12319 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
12320 u64 cookie, bool acked, gfp_t gfp)
12322 struct wireless_dev *wdev = dev->ieee80211_ptr;
12323 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
12324 struct sk_buff *msg;
12327 trace_cfg80211_probe_status(dev, addr, cookie, acked);
12329 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12334 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
12340 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12341 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
12342 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
12343 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
12344 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)))
12345 goto nla_put_failure;
12347 genlmsg_end(msg, hdr);
12349 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12350 NL80211_MCGRP_MLME, gfp);
12354 genlmsg_cancel(msg, hdr);
12357 EXPORT_SYMBOL(cfg80211_probe_status);
12359 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
12360 const u8 *frame, size_t len,
12361 int freq, int sig_dbm)
12363 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12364 struct sk_buff *msg;
12366 struct cfg80211_beacon_registration *reg;
12368 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
12370 spin_lock_bh(&rdev->beacon_registrations_lock);
12371 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
12372 msg = nlmsg_new(len + 100, GFP_ATOMIC);
12374 spin_unlock_bh(&rdev->beacon_registrations_lock);
12378 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
12380 goto nla_put_failure;
12382 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12384 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
12386 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
12387 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
12388 goto nla_put_failure;
12390 genlmsg_end(msg, hdr);
12392 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
12394 spin_unlock_bh(&rdev->beacon_registrations_lock);
12398 spin_unlock_bh(&rdev->beacon_registrations_lock);
12400 genlmsg_cancel(msg, hdr);
12403 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
12406 static int cfg80211_net_detect_results(struct sk_buff *msg,
12407 struct cfg80211_wowlan_wakeup *wakeup)
12409 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
12410 struct nlattr *nl_results, *nl_match, *nl_freqs;
12413 nl_results = nla_nest_start(
12414 msg, NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
12418 for (i = 0; i < nd->n_matches; i++) {
12419 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
12421 nl_match = nla_nest_start(msg, i);
12425 /* The SSID attribute is optional in nl80211, but for
12426 * simplicity reasons it's always present in the
12427 * cfg80211 structure. If a driver can't pass the
12428 * SSID, that needs to be changed. A zero length SSID
12429 * is still a valid SSID (wildcard), so it cannot be
12430 * used for this purpose.
12432 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
12433 match->ssid.ssid)) {
12434 nla_nest_cancel(msg, nl_match);
12438 if (match->n_channels) {
12439 nl_freqs = nla_nest_start(
12440 msg, NL80211_ATTR_SCAN_FREQUENCIES);
12442 nla_nest_cancel(msg, nl_match);
12446 for (j = 0; j < match->n_channels; j++) {
12447 if (nla_put_u32(msg,
12448 NL80211_ATTR_WIPHY_FREQ,
12449 match->channels[j])) {
12450 nla_nest_cancel(msg, nl_freqs);
12451 nla_nest_cancel(msg, nl_match);
12456 nla_nest_end(msg, nl_freqs);
12459 nla_nest_end(msg, nl_match);
12463 nla_nest_end(msg, nl_results);
12467 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
12468 struct cfg80211_wowlan_wakeup *wakeup,
12471 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
12472 struct sk_buff *msg;
12476 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
12479 size += wakeup->packet_present_len;
12481 msg = nlmsg_new(size, gfp);
12485 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
12489 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12490 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12493 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12494 wdev->netdev->ifindex))
12498 struct nlattr *reasons;
12500 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
12504 if (wakeup->disconnect &&
12505 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
12507 if (wakeup->magic_pkt &&
12508 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
12510 if (wakeup->gtk_rekey_failure &&
12511 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
12513 if (wakeup->eap_identity_req &&
12514 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
12516 if (wakeup->four_way_handshake &&
12517 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
12519 if (wakeup->rfkill_release &&
12520 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
12523 if (wakeup->pattern_idx >= 0 &&
12524 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
12525 wakeup->pattern_idx))
12528 if (wakeup->tcp_match &&
12529 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
12532 if (wakeup->tcp_connlost &&
12533 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
12536 if (wakeup->tcp_nomoretokens &&
12538 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
12541 if (wakeup->packet) {
12542 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
12543 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
12545 if (!wakeup->packet_80211) {
12547 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
12549 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
12552 if (wakeup->packet_len &&
12553 nla_put_u32(msg, len_attr, wakeup->packet_len))
12556 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
12561 if (wakeup->net_detect &&
12562 cfg80211_net_detect_results(msg, wakeup))
12565 nla_nest_end(msg, reasons);
12568 genlmsg_end(msg, hdr);
12570 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12571 NL80211_MCGRP_MLME, gfp);
12577 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
12580 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
12581 enum nl80211_tdls_operation oper,
12582 u16 reason_code, gfp_t gfp)
12584 struct wireless_dev *wdev = dev->ieee80211_ptr;
12585 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
12586 struct sk_buff *msg;
12589 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
12592 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12596 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
12602 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12603 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
12604 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
12605 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
12606 (reason_code > 0 &&
12607 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
12608 goto nla_put_failure;
12610 genlmsg_end(msg, hdr);
12612 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12613 NL80211_MCGRP_MLME, gfp);
12617 genlmsg_cancel(msg, hdr);
12620 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
12622 static int nl80211_netlink_notify(struct notifier_block * nb,
12623 unsigned long state,
12626 struct netlink_notify *notify = _notify;
12627 struct cfg80211_registered_device *rdev;
12628 struct wireless_dev *wdev;
12629 struct cfg80211_beacon_registration *reg, *tmp;
12631 if (state != NETLINK_URELEASE)
12632 return NOTIFY_DONE;
12636 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
12637 bool schedule_destroy_work = false;
12638 bool schedule_scan_stop = false;
12639 struct cfg80211_sched_scan_request *sched_scan_req =
12640 rcu_dereference(rdev->sched_scan_req);
12642 if (sched_scan_req && notify->portid &&
12643 sched_scan_req->owner_nlportid == notify->portid)
12644 schedule_scan_stop = true;
12646 list_for_each_entry_rcu(wdev, &rdev->wdev_list, list) {
12647 cfg80211_mlme_unregister_socket(wdev, notify->portid);
12649 if (wdev->owner_nlportid == notify->portid)
12650 schedule_destroy_work = true;
12653 spin_lock_bh(&rdev->beacon_registrations_lock);
12654 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
12656 if (reg->nlportid == notify->portid) {
12657 list_del(®->list);
12662 spin_unlock_bh(&rdev->beacon_registrations_lock);
12664 if (schedule_destroy_work) {
12665 struct cfg80211_iface_destroy *destroy;
12667 destroy = kzalloc(sizeof(*destroy), GFP_ATOMIC);
12669 destroy->nlportid = notify->portid;
12670 spin_lock(&rdev->destroy_list_lock);
12671 list_add(&destroy->list, &rdev->destroy_list);
12672 spin_unlock(&rdev->destroy_list_lock);
12673 schedule_work(&rdev->destroy_work);
12675 } else if (schedule_scan_stop) {
12676 sched_scan_req->owner_nlportid = 0;
12678 if (rdev->ops->sched_scan_stop &&
12679 rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN)
12680 schedule_work(&rdev->sched_scan_stop_wk);
12689 static struct notifier_block nl80211_netlink_notifier = {
12690 .notifier_call = nl80211_netlink_notify,
12693 void cfg80211_ft_event(struct net_device *netdev,
12694 struct cfg80211_ft_event_params *ft_event)
12696 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
12697 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12698 struct sk_buff *msg;
12701 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
12703 if (!ft_event->target_ap)
12706 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12710 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
12714 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12715 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
12716 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
12719 if (ft_event->ies &&
12720 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
12722 if (ft_event->ric_ies &&
12723 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
12724 ft_event->ric_ies))
12727 genlmsg_end(msg, hdr);
12729 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12730 NL80211_MCGRP_MLME, GFP_KERNEL);
12735 EXPORT_SYMBOL(cfg80211_ft_event);
12737 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
12739 struct cfg80211_registered_device *rdev;
12740 struct sk_buff *msg;
12744 rdev = wiphy_to_rdev(wdev->wiphy);
12745 if (!rdev->crit_proto_nlportid)
12748 nlportid = rdev->crit_proto_nlportid;
12749 rdev->crit_proto_nlportid = 0;
12751 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12755 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
12757 goto nla_put_failure;
12759 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12760 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12761 goto nla_put_failure;
12763 genlmsg_end(msg, hdr);
12765 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
12770 genlmsg_cancel(msg, hdr);
12774 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
12776 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
12778 struct wiphy *wiphy = wdev->wiphy;
12779 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12780 struct sk_buff *msg;
12783 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12787 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
12791 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12792 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
12793 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12796 genlmsg_end(msg, hdr);
12798 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
12799 NL80211_MCGRP_MLME, GFP_KERNEL);
12805 /* initialisation/exit functions */
12807 int nl80211_init(void)
12811 err = genl_register_family_with_ops_groups(&nl80211_fam, nl80211_ops,
12816 err = netlink_register_notifier(&nl80211_netlink_notifier);
12822 genl_unregister_family(&nl80211_fam);
12826 void nl80211_exit(void)
12828 netlink_unregister_notifier(&nl80211_netlink_notifier);
12829 genl_unregister_family(&nl80211_fam);
git.openpandora.org / pandora-kernel.git / blob