2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
8 #include <linux/module.h>
10 #include <linux/slab.h>
11 #include <linux/list.h>
12 #include <linux/if_ether.h>
13 #include <linux/ieee80211.h>
14 #include <linux/nl80211.h>
15 #include <linux/rtnetlink.h>
16 #include <linux/netlink.h>
17 #include <linux/etherdevice.h>
18 #include <net/net_namespace.h>
19 #include <net/genetlink.h>
20 #include <net/cfg80211.h>
22 #include <net/inet_connection_sock.h>
28 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
29 struct genl_info *info,
30 struct cfg80211_crypto_settings *settings,
33 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
34 struct genl_info *info);
35 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
36 struct genl_info *info);
38 /* the netlink family */
39 static struct genl_family nl80211_fam = {
40 .id = GENL_ID_GENERATE, /* don't bother with a hardcoded ID */
41 .name = NL80211_GENL_NAME, /* have users key off the name instead */
42 .hdrsize = 0, /* no private header */
43 .version = 1, /* no particular meaning now */
44 .maxattr = NL80211_ATTR_MAX,
46 .pre_doit = nl80211_pre_doit,
47 .post_doit = nl80211_post_doit,
50 /* multicast groups */
51 enum nl80211_multicast_groups {
54 NL80211_MCGRP_REGULATORY,
57 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
60 static const struct genl_multicast_group nl80211_mcgrps[] = {
61 [NL80211_MCGRP_CONFIG] = { .name = "config", },
62 [NL80211_MCGRP_SCAN] = { .name = "scan", },
63 [NL80211_MCGRP_REGULATORY] = { .name = "regulatory", },
64 [NL80211_MCGRP_MLME] = { .name = "mlme", },
65 [NL80211_MCGRP_VENDOR] = { .name = "vendor", },
66 #ifdef CONFIG_NL80211_TESTMODE
67 [NL80211_MCGRP_TESTMODE] = { .name = "testmode", }
71 /* returns ERR_PTR values */
72 static struct wireless_dev *
73 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
75 struct cfg80211_registered_device *rdev;
76 struct wireless_dev *result = NULL;
77 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
78 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
85 if (!have_ifidx && !have_wdev_id)
86 return ERR_PTR(-EINVAL);
89 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
91 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
92 wiphy_idx = wdev_id >> 32;
95 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
96 struct wireless_dev *wdev;
98 if (wiphy_net(&rdev->wiphy) != netns)
101 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
104 list_for_each_entry(wdev, &rdev->wdev_list, list) {
105 if (have_ifidx && wdev->netdev &&
106 wdev->netdev->ifindex == ifidx) {
110 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
122 return ERR_PTR(-ENODEV);
125 static struct cfg80211_registered_device *
126 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
128 struct cfg80211_registered_device *rdev = NULL, *tmp;
129 struct net_device *netdev;
133 if (!attrs[NL80211_ATTR_WIPHY] &&
134 !attrs[NL80211_ATTR_IFINDEX] &&
135 !attrs[NL80211_ATTR_WDEV])
136 return ERR_PTR(-EINVAL);
138 if (attrs[NL80211_ATTR_WIPHY])
139 rdev = cfg80211_rdev_by_wiphy_idx(
140 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
142 if (attrs[NL80211_ATTR_WDEV]) {
143 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
144 struct wireless_dev *wdev;
147 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
149 /* make sure wdev exists */
150 list_for_each_entry(wdev, &tmp->wdev_list, list) {
151 if (wdev->identifier != (u32)wdev_id)
160 if (rdev && tmp != rdev)
161 return ERR_PTR(-EINVAL);
166 if (attrs[NL80211_ATTR_IFINDEX]) {
167 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
168 netdev = dev_get_by_index(netns, ifindex);
170 if (netdev->ieee80211_ptr)
172 netdev->ieee80211_ptr->wiphy);
178 /* not wireless device -- return error */
180 return ERR_PTR(-EINVAL);
182 /* mismatch -- return error */
183 if (rdev && tmp != rdev)
184 return ERR_PTR(-EINVAL);
191 return ERR_PTR(-ENODEV);
193 if (netns != wiphy_net(&rdev->wiphy))
194 return ERR_PTR(-ENODEV);
200 * This function returns a pointer to the driver
201 * that the genl_info item that is passed refers to.
203 * The result of this can be a PTR_ERR and hence must
204 * be checked with IS_ERR() for errors.
206 static struct cfg80211_registered_device *
207 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
209 return __cfg80211_rdev_from_attrs(netns, info->attrs);
212 /* policy for the attributes */
213 static const struct nla_policy nl80211_policy[NL80211_ATTR_MAX+1] = {
214 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
215 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
217 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
219 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
220 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
221 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
222 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
223 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
225 [NL80211_ATTR_WIPHY_RETRY_SHORT] = { .type = NLA_U8 },
226 [NL80211_ATTR_WIPHY_RETRY_LONG] = { .type = NLA_U8 },
227 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
228 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
229 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
231 [NL80211_ATTR_IFTYPE] = { .type = NLA_U32 },
232 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
233 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
235 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
236 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
238 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
239 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
240 .len = WLAN_MAX_KEY_LEN },
241 [NL80211_ATTR_KEY_IDX] = { .type = NLA_U8 },
242 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
243 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
244 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
245 [NL80211_ATTR_KEY_TYPE] = { .type = NLA_U32 },
247 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
248 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
249 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
250 .len = IEEE80211_MAX_DATA_LEN },
251 [NL80211_ATTR_BEACON_TAIL] = { .type = NLA_BINARY,
252 .len = IEEE80211_MAX_DATA_LEN },
253 [NL80211_ATTR_STA_AID] = { .type = NLA_U16 },
254 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
255 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
256 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
257 .len = NL80211_MAX_SUPP_RATES },
258 [NL80211_ATTR_STA_PLINK_ACTION] = { .type = NLA_U8 },
259 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
260 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
261 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
262 .len = IEEE80211_MAX_MESH_ID_LEN },
263 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
265 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
266 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
268 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
269 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
270 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
271 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
272 .len = NL80211_MAX_SUPP_RATES },
273 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
275 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
276 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
278 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
280 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
281 [NL80211_ATTR_IE] = { .type = NLA_BINARY,
282 .len = IEEE80211_MAX_DATA_LEN },
283 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
284 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
286 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
287 .len = IEEE80211_MAX_SSID_LEN },
288 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
289 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
290 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
291 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
292 [NL80211_ATTR_USE_MFP] = { .type = NLA_U32 },
293 [NL80211_ATTR_STA_FLAGS2] = {
294 .len = sizeof(struct nl80211_sta_flag_update),
296 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
297 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
298 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
299 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
300 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
301 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
302 [NL80211_ATTR_PID] = { .type = NLA_U32 },
303 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
304 [NL80211_ATTR_PMKID] = { .type = NLA_BINARY,
305 .len = WLAN_PMKID_LEN },
306 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
307 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
308 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
309 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
310 .len = IEEE80211_MAX_DATA_LEN },
311 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
312 [NL80211_ATTR_PS_STATE] = { .type = NLA_U32 },
313 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
314 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
315 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
316 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
317 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
318 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
319 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
320 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
321 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
322 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
323 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
324 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
325 [NL80211_ATTR_STA_PLINK_STATE] = { .type = NLA_U8 },
326 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
327 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
328 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
329 [NL80211_ATTR_HIDDEN_SSID] = { .type = NLA_U32 },
330 [NL80211_ATTR_IE_PROBE_RESP] = { .type = NLA_BINARY,
331 .len = IEEE80211_MAX_DATA_LEN },
332 [NL80211_ATTR_IE_ASSOC_RESP] = { .type = NLA_BINARY,
333 .len = IEEE80211_MAX_DATA_LEN },
334 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
335 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
336 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
337 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
338 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
339 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
340 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
341 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
342 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
343 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
344 .len = IEEE80211_MAX_DATA_LEN },
345 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
346 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
347 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
348 .len = NL80211_HT_CAPABILITY_LEN
350 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
351 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
352 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
353 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
354 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
355 [NL80211_ATTR_SAE_DATA] = { .type = NLA_BINARY, },
356 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
357 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
358 [NL80211_ATTR_P2P_CTWINDOW] = { .type = NLA_U8 },
359 [NL80211_ATTR_P2P_OPPPS] = { .type = NLA_U8 },
360 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
361 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
362 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
363 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
364 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
365 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
366 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
367 .len = NL80211_VHT_CAPABILITY_LEN,
369 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
370 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
371 .len = IEEE80211_MAX_DATA_LEN },
372 [NL80211_ATTR_PEER_AID] = { .type = NLA_U16 },
373 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
374 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
375 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
376 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_U16 },
377 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_U16 },
378 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
379 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
380 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
381 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
382 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
383 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
384 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
387 /* policy for the key attributes */
388 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
389 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
390 [NL80211_KEY_IDX] = { .type = NLA_U8 },
391 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
392 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
393 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
394 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
395 [NL80211_KEY_TYPE] = { .type = NLA_U32 },
396 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
399 /* policy for the key default flags */
400 static const struct nla_policy
401 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
402 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
403 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
406 /* policy for WoWLAN attributes */
407 static const struct nla_policy
408 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
409 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
410 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
411 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
412 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
413 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
414 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
415 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
416 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
417 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
420 static const struct nla_policy
421 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
422 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
423 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
424 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
425 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
426 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
427 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
428 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
429 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
431 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
432 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
434 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
435 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
436 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
439 /* policy for coalesce rule attributes */
440 static const struct nla_policy
441 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
442 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
443 [NL80211_ATTR_COALESCE_RULE_CONDITION] = { .type = NLA_U32 },
444 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
447 /* policy for GTK rekey offload attributes */
448 static const struct nla_policy
449 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
450 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
451 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
452 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
455 static const struct nla_policy
456 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
457 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
458 .len = IEEE80211_MAX_SSID_LEN },
459 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
462 static int nl80211_prepare_wdev_dump(struct sk_buff *skb,
463 struct netlink_callback *cb,
464 struct cfg80211_registered_device **rdev,
465 struct wireless_dev **wdev)
472 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
473 nl80211_fam.attrbuf, nl80211_fam.maxattr,
478 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk),
479 nl80211_fam.attrbuf);
481 err = PTR_ERR(*wdev);
484 *rdev = wiphy_to_dev((*wdev)->wiphy);
485 /* 0 is the first index - add 1 to parse only once */
486 cb->args[0] = (*rdev)->wiphy_idx + 1;
487 cb->args[1] = (*wdev)->identifier;
489 /* subtract the 1 again here */
490 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
491 struct wireless_dev *tmp;
497 *rdev = wiphy_to_dev(wiphy);
500 list_for_each_entry(tmp, &(*rdev)->wdev_list, list) {
501 if (tmp->identifier == cb->args[1]) {
519 static void nl80211_finish_wdev_dump(struct cfg80211_registered_device *rdev)
525 static bool is_valid_ie_attr(const struct nlattr *attr)
533 pos = nla_data(attr);
554 /* message building helper */
555 static inline void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
558 /* since there is no private header just add the generic one */
559 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
562 static int nl80211_msg_put_channel(struct sk_buff *msg,
563 struct ieee80211_channel *chan,
566 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
568 goto nla_put_failure;
570 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
571 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
572 goto nla_put_failure;
573 if (chan->flags & IEEE80211_CHAN_NO_IR) {
574 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
575 goto nla_put_failure;
576 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
577 goto nla_put_failure;
579 if (chan->flags & IEEE80211_CHAN_RADAR) {
580 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
581 goto nla_put_failure;
585 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
587 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
589 goto nla_put_failure;
590 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
592 goto nla_put_failure;
597 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
598 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
599 goto nla_put_failure;
600 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
601 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
602 goto nla_put_failure;
603 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
604 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
605 goto nla_put_failure;
606 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
607 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
608 goto nla_put_failure;
611 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
612 DBM_TO_MBM(chan->max_power)))
613 goto nla_put_failure;
621 /* netlink command implementations */
628 bool def_uni, def_multi;
631 static int nl80211_parse_key_new(struct nlattr *key, struct key_parse *k)
633 struct nlattr *tb[NL80211_KEY_MAX + 1];
634 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
639 k->def = !!tb[NL80211_KEY_DEFAULT];
640 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
649 if (tb[NL80211_KEY_IDX])
650 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
652 if (tb[NL80211_KEY_DATA]) {
653 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
654 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
657 if (tb[NL80211_KEY_SEQ]) {
658 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
659 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
662 if (tb[NL80211_KEY_CIPHER])
663 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
665 if (tb[NL80211_KEY_TYPE]) {
666 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
667 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
671 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
672 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
673 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
674 tb[NL80211_KEY_DEFAULT_TYPES],
675 nl80211_key_default_policy);
679 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
680 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
686 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
688 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
689 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
690 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
693 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
694 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
695 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
698 if (info->attrs[NL80211_ATTR_KEY_IDX])
699 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
701 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
702 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
704 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
705 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
714 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
715 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
716 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
720 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
721 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
722 int err = nla_parse_nested(
723 kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
724 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
725 nl80211_key_default_policy);
729 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
730 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
736 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
740 memset(k, 0, sizeof(*k));
744 if (info->attrs[NL80211_ATTR_KEY])
745 err = nl80211_parse_key_new(info->attrs[NL80211_ATTR_KEY], k);
747 err = nl80211_parse_key_old(info, k);
752 if (k->def && k->defmgmt)
756 if (k->def_uni || !k->def_multi)
762 if (k->idx < 4 || k->idx > 5)
765 if (k->idx < 0 || k->idx > 3)
768 if (k->idx < 0 || k->idx > 5)
776 static struct cfg80211_cached_keys *
777 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
778 struct nlattr *keys, bool *no_ht)
780 struct key_parse parse;
782 struct cfg80211_cached_keys *result;
783 int rem, err, def = 0;
785 result = kzalloc(sizeof(*result), GFP_KERNEL);
787 return ERR_PTR(-ENOMEM);
790 result->defmgmt = -1;
792 nla_for_each_nested(key, keys, rem) {
793 memset(&parse, 0, sizeof(parse));
796 err = nl80211_parse_key_new(key, &parse);
802 if (parse.idx < 0 || parse.idx > 4)
808 result->def = parse.idx;
809 if (!parse.def_uni || !parse.def_multi)
811 } else if (parse.defmgmt)
813 err = cfg80211_validate_key_settings(rdev, &parse.p,
814 parse.idx, false, NULL);
817 result->params[parse.idx].cipher = parse.p.cipher;
818 result->params[parse.idx].key_len = parse.p.key_len;
819 result->params[parse.idx].key = result->data[parse.idx];
820 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
822 if (parse.p.cipher == WLAN_CIPHER_SUITE_WEP40 ||
823 parse.p.cipher == WLAN_CIPHER_SUITE_WEP104) {
835 static int nl80211_key_allowed(struct wireless_dev *wdev)
837 ASSERT_WDEV_LOCK(wdev);
839 switch (wdev->iftype) {
840 case NL80211_IFTYPE_AP:
841 case NL80211_IFTYPE_AP_VLAN:
842 case NL80211_IFTYPE_P2P_GO:
843 case NL80211_IFTYPE_MESH_POINT:
845 case NL80211_IFTYPE_ADHOC:
846 case NL80211_IFTYPE_STATION:
847 case NL80211_IFTYPE_P2P_CLIENT:
848 if (!wdev->current_bss)
858 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
860 struct nlattr *nl_modes = nla_nest_start(msg, attr);
864 goto nla_put_failure;
868 if ((ifmodes & 1) && nla_put_flag(msg, i))
869 goto nla_put_failure;
874 nla_nest_end(msg, nl_modes);
881 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
885 struct nlattr *nl_combis;
888 nl_combis = nla_nest_start(msg,
889 NL80211_ATTR_INTERFACE_COMBINATIONS);
891 goto nla_put_failure;
893 for (i = 0; i < wiphy->n_iface_combinations; i++) {
894 const struct ieee80211_iface_combination *c;
895 struct nlattr *nl_combi, *nl_limits;
897 c = &wiphy->iface_combinations[i];
899 nl_combi = nla_nest_start(msg, i + 1);
901 goto nla_put_failure;
903 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
905 goto nla_put_failure;
907 for (j = 0; j < c->n_limits; j++) {
908 struct nlattr *nl_limit;
910 nl_limit = nla_nest_start(msg, j + 1);
912 goto nla_put_failure;
913 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
915 goto nla_put_failure;
916 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
918 goto nla_put_failure;
919 nla_nest_end(msg, nl_limit);
922 nla_nest_end(msg, nl_limits);
924 if (c->beacon_int_infra_match &&
925 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
926 goto nla_put_failure;
927 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
928 c->num_different_channels) ||
929 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
931 goto nla_put_failure;
933 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
934 c->radar_detect_widths))
935 goto nla_put_failure;
937 nla_nest_end(msg, nl_combi);
940 nla_nest_end(msg, nl_combis);
948 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
951 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
952 struct nlattr *nl_tcp;
957 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
961 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
962 tcp->data_payload_max))
965 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
966 tcp->data_payload_max))
969 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
972 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
973 sizeof(*tcp->tok), tcp->tok))
976 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
977 tcp->data_interval_max))
980 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
981 tcp->wake_payload_max))
984 nla_nest_end(msg, nl_tcp);
988 static int nl80211_send_wowlan(struct sk_buff *msg,
989 struct cfg80211_registered_device *dev,
992 struct nlattr *nl_wowlan;
994 if (!dev->wiphy.wowlan)
997 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1001 if (((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1002 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1003 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1004 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1005 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1006 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1007 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1008 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1009 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1010 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1011 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1012 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1013 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1014 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1015 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1016 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1019 if (dev->wiphy.wowlan->n_patterns) {
1020 struct nl80211_pattern_support pat = {
1021 .max_patterns = dev->wiphy.wowlan->n_patterns,
1022 .min_pattern_len = dev->wiphy.wowlan->pattern_min_len,
1023 .max_pattern_len = dev->wiphy.wowlan->pattern_max_len,
1024 .max_pkt_offset = dev->wiphy.wowlan->max_pkt_offset,
1027 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1032 if (large && nl80211_send_wowlan_tcp_caps(dev, msg))
1035 nla_nest_end(msg, nl_wowlan);
1041 static int nl80211_send_coalesce(struct sk_buff *msg,
1042 struct cfg80211_registered_device *dev)
1044 struct nl80211_coalesce_rule_support rule;
1046 if (!dev->wiphy.coalesce)
1049 rule.max_rules = dev->wiphy.coalesce->n_rules;
1050 rule.max_delay = dev->wiphy.coalesce->max_delay;
1051 rule.pat.max_patterns = dev->wiphy.coalesce->n_patterns;
1052 rule.pat.min_pattern_len = dev->wiphy.coalesce->pattern_min_len;
1053 rule.pat.max_pattern_len = dev->wiphy.coalesce->pattern_max_len;
1054 rule.pat.max_pkt_offset = dev->wiphy.coalesce->max_pkt_offset;
1056 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1062 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1063 struct ieee80211_supported_band *sband)
1065 struct nlattr *nl_rates, *nl_rate;
1066 struct ieee80211_rate *rate;
1070 if (sband->ht_cap.ht_supported &&
1071 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1072 sizeof(sband->ht_cap.mcs),
1073 &sband->ht_cap.mcs) ||
1074 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1075 sband->ht_cap.cap) ||
1076 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1077 sband->ht_cap.ampdu_factor) ||
1078 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1079 sband->ht_cap.ampdu_density)))
1083 if (sband->vht_cap.vht_supported &&
1084 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1085 sizeof(sband->vht_cap.vht_mcs),
1086 &sband->vht_cap.vht_mcs) ||
1087 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1088 sband->vht_cap.cap)))
1092 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1096 for (i = 0; i < sband->n_bitrates; i++) {
1097 nl_rate = nla_nest_start(msg, i);
1101 rate = &sband->bitrates[i];
1102 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1105 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1107 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1110 nla_nest_end(msg, nl_rate);
1113 nla_nest_end(msg, nl_rates);
1119 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1120 const struct ieee80211_txrx_stypes *mgmt_stypes)
1123 struct nlattr *nl_ftypes, *nl_ifs;
1124 enum nl80211_iftype ift;
1130 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1134 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1135 nl_ftypes = nla_nest_start(msg, ift);
1139 stypes = mgmt_stypes[ift].tx;
1142 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1143 (i << 4) | IEEE80211_FTYPE_MGMT))
1148 nla_nest_end(msg, nl_ftypes);
1151 nla_nest_end(msg, nl_ifs);
1153 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1157 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1158 nl_ftypes = nla_nest_start(msg, ift);
1162 stypes = mgmt_stypes[ift].rx;
1165 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1166 (i << 4) | IEEE80211_FTYPE_MGMT))
1171 nla_nest_end(msg, nl_ftypes);
1173 nla_nest_end(msg, nl_ifs);
1178 struct nl80211_dump_wiphy_state {
1181 long split_start, band_start, chan_start;
1185 static int nl80211_send_wiphy(struct cfg80211_registered_device *dev,
1186 struct sk_buff *msg, u32 portid, u32 seq,
1187 int flags, struct nl80211_dump_wiphy_state *state)
1190 struct nlattr *nl_bands, *nl_band;
1191 struct nlattr *nl_freqs, *nl_freq;
1192 struct nlattr *nl_cmds;
1193 enum ieee80211_band band;
1194 struct ieee80211_channel *chan;
1196 const struct ieee80211_txrx_stypes *mgmt_stypes =
1197 dev->wiphy.mgmt_stypes;
1200 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_WIPHY);
1204 if (WARN_ON(!state))
1207 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, dev->wiphy_idx) ||
1208 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1209 wiphy_name(&dev->wiphy)) ||
1210 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1211 cfg80211_rdev_list_generation))
1212 goto nla_put_failure;
1214 switch (state->split_start) {
1216 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1217 dev->wiphy.retry_short) ||
1218 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1219 dev->wiphy.retry_long) ||
1220 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1221 dev->wiphy.frag_threshold) ||
1222 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1223 dev->wiphy.rts_threshold) ||
1224 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1225 dev->wiphy.coverage_class) ||
1226 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1227 dev->wiphy.max_scan_ssids) ||
1228 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1229 dev->wiphy.max_sched_scan_ssids) ||
1230 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1231 dev->wiphy.max_scan_ie_len) ||
1232 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1233 dev->wiphy.max_sched_scan_ie_len) ||
1234 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1235 dev->wiphy.max_match_sets))
1236 goto nla_put_failure;
1238 if ((dev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1239 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1240 goto nla_put_failure;
1241 if ((dev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1242 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1243 goto nla_put_failure;
1244 if ((dev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1245 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1246 goto nla_put_failure;
1247 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1248 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1249 goto nla_put_failure;
1250 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1251 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1252 goto nla_put_failure;
1253 if ((dev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1254 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1255 goto nla_put_failure;
1256 state->split_start++;
1260 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1261 sizeof(u32) * dev->wiphy.n_cipher_suites,
1262 dev->wiphy.cipher_suites))
1263 goto nla_put_failure;
1265 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1266 dev->wiphy.max_num_pmkids))
1267 goto nla_put_failure;
1269 if ((dev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1270 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1271 goto nla_put_failure;
1273 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1274 dev->wiphy.available_antennas_tx) ||
1275 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1276 dev->wiphy.available_antennas_rx))
1277 goto nla_put_failure;
1279 if ((dev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1280 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1281 dev->wiphy.probe_resp_offload))
1282 goto nla_put_failure;
1284 if ((dev->wiphy.available_antennas_tx ||
1285 dev->wiphy.available_antennas_rx) &&
1286 dev->ops->get_antenna) {
1287 u32 tx_ant = 0, rx_ant = 0;
1289 res = rdev_get_antenna(dev, &tx_ant, &rx_ant);
1291 if (nla_put_u32(msg,
1292 NL80211_ATTR_WIPHY_ANTENNA_TX,
1295 NL80211_ATTR_WIPHY_ANTENNA_RX,
1297 goto nla_put_failure;
1301 state->split_start++;
1305 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1306 dev->wiphy.interface_modes))
1307 goto nla_put_failure;
1308 state->split_start++;
1312 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1314 goto nla_put_failure;
1316 for (band = state->band_start;
1317 band < IEEE80211_NUM_BANDS; band++) {
1318 struct ieee80211_supported_band *sband;
1320 sband = dev->wiphy.bands[band];
1325 nl_band = nla_nest_start(msg, band);
1327 goto nla_put_failure;
1329 switch (state->chan_start) {
1331 if (nl80211_send_band_rateinfo(msg, sband))
1332 goto nla_put_failure;
1333 state->chan_start++;
1337 /* add frequencies */
1338 nl_freqs = nla_nest_start(
1339 msg, NL80211_BAND_ATTR_FREQS);
1341 goto nla_put_failure;
1343 for (i = state->chan_start - 1;
1344 i < sband->n_channels;
1346 nl_freq = nla_nest_start(msg, i);
1348 goto nla_put_failure;
1350 chan = &sband->channels[i];
1352 if (nl80211_msg_put_channel(
1355 goto nla_put_failure;
1357 nla_nest_end(msg, nl_freq);
1361 if (i < sband->n_channels)
1362 state->chan_start = i + 2;
1364 state->chan_start = 0;
1365 nla_nest_end(msg, nl_freqs);
1368 nla_nest_end(msg, nl_band);
1371 /* start again here */
1372 if (state->chan_start)
1377 nla_nest_end(msg, nl_bands);
1379 if (band < IEEE80211_NUM_BANDS)
1380 state->band_start = band + 1;
1382 state->band_start = 0;
1384 /* if bands & channels are done, continue outside */
1385 if (state->band_start == 0 && state->chan_start == 0)
1386 state->split_start++;
1390 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1392 goto nla_put_failure;
1395 #define CMD(op, n) \
1397 if (dev->ops->op) { \
1399 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1400 goto nla_put_failure; \
1404 CMD(add_virtual_intf, NEW_INTERFACE);
1405 CMD(change_virtual_intf, SET_INTERFACE);
1406 CMD(add_key, NEW_KEY);
1407 CMD(start_ap, START_AP);
1408 CMD(add_station, NEW_STATION);
1409 CMD(add_mpath, NEW_MPATH);
1410 CMD(update_mesh_config, SET_MESH_CONFIG);
1411 CMD(change_bss, SET_BSS);
1412 CMD(auth, AUTHENTICATE);
1413 CMD(assoc, ASSOCIATE);
1414 CMD(deauth, DEAUTHENTICATE);
1415 CMD(disassoc, DISASSOCIATE);
1416 CMD(join_ibss, JOIN_IBSS);
1417 CMD(join_mesh, JOIN_MESH);
1418 CMD(set_pmksa, SET_PMKSA);
1419 CMD(del_pmksa, DEL_PMKSA);
1420 CMD(flush_pmksa, FLUSH_PMKSA);
1421 if (dev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1422 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1423 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1424 CMD(mgmt_tx, FRAME);
1425 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1426 if (dev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1428 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1429 goto nla_put_failure;
1431 if (dev->ops->set_monitor_channel || dev->ops->start_ap ||
1432 dev->ops->join_mesh) {
1434 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1435 goto nla_put_failure;
1437 CMD(set_wds_peer, SET_WDS_PEER);
1438 if (dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1439 CMD(tdls_mgmt, TDLS_MGMT);
1440 CMD(tdls_oper, TDLS_OPER);
1442 if (dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN)
1443 CMD(sched_scan_start, START_SCHED_SCAN);
1444 CMD(probe_client, PROBE_CLIENT);
1445 CMD(set_noack_map, SET_NOACK_MAP);
1446 if (dev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1448 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1449 goto nla_put_failure;
1451 CMD(start_p2p_device, START_P2P_DEVICE);
1452 CMD(set_mcast_rate, SET_MCAST_RATE);
1454 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1455 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1456 if (dev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1457 CMD(channel_switch, CHANNEL_SWITCH);
1460 #ifdef CONFIG_NL80211_TESTMODE
1461 CMD(testmode_cmd, TESTMODE);
1466 if (dev->ops->connect || dev->ops->auth) {
1468 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1469 goto nla_put_failure;
1472 if (dev->ops->disconnect || dev->ops->deauth) {
1474 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1475 goto nla_put_failure;
1478 nla_nest_end(msg, nl_cmds);
1479 state->split_start++;
1483 if (dev->ops->remain_on_channel &&
1484 (dev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
1486 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
1487 dev->wiphy.max_remain_on_channel_duration))
1488 goto nla_put_failure;
1490 if ((dev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
1491 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
1492 goto nla_put_failure;
1494 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
1495 goto nla_put_failure;
1496 state->split_start++;
1501 if (nl80211_send_wowlan(msg, dev, state->split))
1502 goto nla_put_failure;
1503 state->split_start++;
1507 state->split_start++;
1510 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
1511 dev->wiphy.software_iftypes))
1512 goto nla_put_failure;
1514 if (nl80211_put_iface_combinations(&dev->wiphy, msg,
1516 goto nla_put_failure;
1518 state->split_start++;
1522 if ((dev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
1523 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
1524 dev->wiphy.ap_sme_capa))
1525 goto nla_put_failure;
1527 features = dev->wiphy.features;
1529 * We can only add the per-channel limit information if the
1530 * dump is split, otherwise it makes it too big. Therefore
1531 * only advertise it in that case.
1534 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
1535 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
1536 goto nla_put_failure;
1538 if (dev->wiphy.ht_capa_mod_mask &&
1539 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
1540 sizeof(*dev->wiphy.ht_capa_mod_mask),
1541 dev->wiphy.ht_capa_mod_mask))
1542 goto nla_put_failure;
1544 if (dev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
1545 dev->wiphy.max_acl_mac_addrs &&
1546 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
1547 dev->wiphy.max_acl_mac_addrs))
1548 goto nla_put_failure;
1551 * Any information below this point is only available to
1552 * applications that can deal with it being split. This
1553 * helps ensure that newly added capabilities don't break
1554 * older tools by overrunning their buffers.
1556 * We still increment split_start so that in the split
1557 * case we'll continue with more data in the next round,
1558 * but break unconditionally so unsplit data stops here.
1560 state->split_start++;
1563 if (dev->wiphy.extended_capabilities &&
1564 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
1565 dev->wiphy.extended_capabilities_len,
1566 dev->wiphy.extended_capabilities) ||
1567 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
1568 dev->wiphy.extended_capabilities_len,
1569 dev->wiphy.extended_capabilities_mask)))
1570 goto nla_put_failure;
1572 if (dev->wiphy.vht_capa_mod_mask &&
1573 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
1574 sizeof(*dev->wiphy.vht_capa_mod_mask),
1575 dev->wiphy.vht_capa_mod_mask))
1576 goto nla_put_failure;
1578 state->split_start++;
1581 if (nl80211_send_coalesce(msg, dev))
1582 goto nla_put_failure;
1584 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
1585 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
1586 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
1587 goto nla_put_failure;
1588 state->split_start++;
1591 if (dev->wiphy.n_vendor_commands) {
1592 const struct nl80211_vendor_cmd_info *info;
1593 struct nlattr *nested;
1595 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
1597 goto nla_put_failure;
1599 for (i = 0; i < dev->wiphy.n_vendor_commands; i++) {
1600 info = &dev->wiphy.vendor_commands[i].info;
1601 if (nla_put(msg, i + 1, sizeof(*info), info))
1602 goto nla_put_failure;
1604 nla_nest_end(msg, nested);
1607 if (dev->wiphy.n_vendor_events) {
1608 const struct nl80211_vendor_cmd_info *info;
1609 struct nlattr *nested;
1611 nested = nla_nest_start(msg,
1612 NL80211_ATTR_VENDOR_EVENTS);
1614 goto nla_put_failure;
1616 for (i = 0; i < dev->wiphy.n_vendor_events; i++) {
1617 info = &dev->wiphy.vendor_events[i];
1618 if (nla_put(msg, i + 1, sizeof(*info), info))
1619 goto nla_put_failure;
1621 nla_nest_end(msg, nested);
1625 state->split_start = 0;
1628 return genlmsg_end(msg, hdr);
1631 genlmsg_cancel(msg, hdr);
1635 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
1636 struct netlink_callback *cb,
1637 struct nl80211_dump_wiphy_state *state)
1639 struct nlattr **tb = nl80211_fam.attrbuf;
1640 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
1641 tb, nl80211_fam.maxattr, nl80211_policy);
1642 /* ignore parse errors for backward compatibility */
1646 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
1647 if (tb[NL80211_ATTR_WIPHY])
1648 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
1649 if (tb[NL80211_ATTR_WDEV])
1650 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
1651 if (tb[NL80211_ATTR_IFINDEX]) {
1652 struct net_device *netdev;
1653 struct cfg80211_registered_device *rdev;
1654 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
1656 netdev = dev_get_by_index(sock_net(skb->sk), ifidx);
1659 if (netdev->ieee80211_ptr) {
1660 rdev = wiphy_to_dev(
1661 netdev->ieee80211_ptr->wiphy);
1662 state->filter_wiphy = rdev->wiphy_idx;
1670 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
1673 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
1674 struct cfg80211_registered_device *dev;
1678 state = kzalloc(sizeof(*state), GFP_KERNEL);
1683 state->filter_wiphy = -1;
1684 ret = nl80211_dump_wiphy_parse(skb, cb, state);
1690 cb->args[0] = (long)state;
1693 list_for_each_entry(dev, &cfg80211_rdev_list, list) {
1694 if (!net_eq(wiphy_net(&dev->wiphy), sock_net(skb->sk)))
1696 if (++idx <= state->start)
1698 if (state->filter_wiphy != -1 &&
1699 state->filter_wiphy != dev->wiphy_idx)
1701 /* attempt to fit multiple wiphy data chunks into the skb */
1703 ret = nl80211_send_wiphy(dev, skb,
1704 NETLINK_CB(cb->skb).portid,
1706 NLM_F_MULTI, state);
1709 * If sending the wiphy data didn't fit (ENOBUFS
1710 * or EMSGSIZE returned), this SKB is still
1711 * empty (so it's not too big because another
1712 * wiphy dataset is already in the skb) and
1713 * we've not tried to adjust the dump allocation
1714 * yet ... then adjust the alloc size to be
1715 * bigger, and return 1 but with the empty skb.
1716 * This results in an empty message being RX'ed
1717 * in userspace, but that is ignored.
1719 * We can then retry with the larger buffer.
1721 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
1723 cb->min_dump_alloc < 4096) {
1724 cb->min_dump_alloc = 4096;
1731 } while (state->split_start > 0);
1741 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
1743 kfree((void *)cb->args[0]);
1747 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
1749 struct sk_buff *msg;
1750 struct cfg80211_registered_device *dev = info->user_ptr[0];
1751 struct nl80211_dump_wiphy_state state = {};
1753 msg = nlmsg_new(4096, GFP_KERNEL);
1757 if (nl80211_send_wiphy(dev, msg, info->snd_portid, info->snd_seq, 0,
1763 return genlmsg_reply(msg, info);
1766 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
1767 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
1768 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
1769 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
1770 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
1771 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
1774 static int parse_txq_params(struct nlattr *tb[],
1775 struct ieee80211_txq_params *txq_params)
1777 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
1778 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
1779 !tb[NL80211_TXQ_ATTR_AIFS])
1782 txq_params->ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
1783 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
1784 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
1785 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
1786 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
1788 if (txq_params->ac >= NL80211_NUM_ACS)
1794 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
1797 * You can only set the channel explicitly for WDS interfaces,
1798 * all others have their channel managed via their respective
1799 * "establish a connection" command (connect, join, ...)
1801 * For AP/GO and mesh mode, the channel can be set with the
1802 * channel userspace API, but is only stored and passed to the
1803 * low-level driver when the AP starts or the mesh is joined.
1804 * This is for backward compatibility, userspace can also give
1805 * the channel in the start-ap or join-mesh commands instead.
1807 * Monitors are special as they are normally slaved to
1808 * whatever else is going on, so they have their own special
1809 * operation to set the monitor channel if possible.
1812 wdev->iftype == NL80211_IFTYPE_AP ||
1813 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
1814 wdev->iftype == NL80211_IFTYPE_MONITOR ||
1815 wdev->iftype == NL80211_IFTYPE_P2P_GO;
1818 static int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
1819 struct genl_info *info,
1820 struct cfg80211_chan_def *chandef)
1824 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
1827 control_freq = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]);
1829 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
1830 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
1831 chandef->center_freq1 = control_freq;
1832 chandef->center_freq2 = 0;
1834 /* Primary channel not allowed */
1835 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED)
1838 if (info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
1839 enum nl80211_channel_type chantype;
1841 chantype = nla_get_u32(
1842 info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
1845 case NL80211_CHAN_NO_HT:
1846 case NL80211_CHAN_HT20:
1847 case NL80211_CHAN_HT40PLUS:
1848 case NL80211_CHAN_HT40MINUS:
1849 cfg80211_chandef_create(chandef, chandef->chan,
1855 } else if (info->attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
1857 nla_get_u32(info->attrs[NL80211_ATTR_CHANNEL_WIDTH]);
1858 if (info->attrs[NL80211_ATTR_CENTER_FREQ1])
1859 chandef->center_freq1 =
1861 info->attrs[NL80211_ATTR_CENTER_FREQ1]);
1862 if (info->attrs[NL80211_ATTR_CENTER_FREQ2])
1863 chandef->center_freq2 =
1865 info->attrs[NL80211_ATTR_CENTER_FREQ2]);
1868 if (!cfg80211_chandef_valid(chandef))
1871 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
1872 IEEE80211_CHAN_DISABLED))
1875 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
1876 chandef->width == NL80211_CHAN_WIDTH_10) &&
1877 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ))
1883 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
1884 struct wireless_dev *wdev,
1885 struct genl_info *info)
1887 struct cfg80211_chan_def chandef;
1889 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
1892 iftype = wdev->iftype;
1894 if (!nl80211_can_set_dev_channel(wdev))
1897 result = nl80211_parse_chandef(rdev, info, &chandef);
1902 case NL80211_IFTYPE_AP:
1903 case NL80211_IFTYPE_P2P_GO:
1904 if (wdev->beacon_interval) {
1908 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &chandef)) {
1912 wdev->preset_chandef = chandef;
1915 case NL80211_IFTYPE_MESH_POINT:
1916 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
1918 case NL80211_IFTYPE_MONITOR:
1919 result = cfg80211_set_monitor_channel(rdev, &chandef);
1928 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
1930 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1931 struct net_device *netdev = info->user_ptr[1];
1933 return __nl80211_set_channel(rdev, netdev->ieee80211_ptr, info);
1936 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
1938 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1939 struct net_device *dev = info->user_ptr[1];
1940 struct wireless_dev *wdev = dev->ieee80211_ptr;
1943 if (!info->attrs[NL80211_ATTR_MAC])
1946 if (netif_running(dev))
1949 if (!rdev->ops->set_wds_peer)
1952 if (wdev->iftype != NL80211_IFTYPE_WDS)
1955 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
1956 return rdev_set_wds_peer(rdev, dev, bssid);
1960 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
1962 struct cfg80211_registered_device *rdev;
1963 struct net_device *netdev = NULL;
1964 struct wireless_dev *wdev;
1965 int result = 0, rem_txq_params = 0;
1966 struct nlattr *nl_txq_params;
1968 u8 retry_short = 0, retry_long = 0;
1969 u32 frag_threshold = 0, rts_threshold = 0;
1970 u8 coverage_class = 0;
1975 * Try to find the wiphy and netdev. Normally this
1976 * function shouldn't need the netdev, but this is
1977 * done for backward compatibility -- previously
1978 * setting the channel was done per wiphy, but now
1979 * it is per netdev. Previous userland like hostapd
1980 * also passed a netdev to set_wiphy, so that it is
1981 * possible to let that go to the right netdev!
1984 if (info->attrs[NL80211_ATTR_IFINDEX]) {
1985 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
1987 netdev = dev_get_by_index(genl_info_net(info), ifindex);
1988 if (netdev && netdev->ieee80211_ptr)
1989 rdev = wiphy_to_dev(netdev->ieee80211_ptr->wiphy);
1995 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
1998 return PTR_ERR(rdev);
2003 wdev = netdev->ieee80211_ptr;
2006 * end workaround code, by now the rdev is available
2007 * and locked, and wdev may or may not be NULL.
2010 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2011 result = cfg80211_dev_rename(
2012 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2017 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2018 struct ieee80211_txq_params txq_params;
2019 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2021 if (!rdev->ops->set_txq_params) {
2022 result = -EOPNOTSUPP;
2031 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2032 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
2037 if (!netif_running(netdev)) {
2042 nla_for_each_nested(nl_txq_params,
2043 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2045 nla_parse(tb, NL80211_TXQ_ATTR_MAX,
2046 nla_data(nl_txq_params),
2047 nla_len(nl_txq_params),
2049 result = parse_txq_params(tb, &txq_params);
2053 result = rdev_set_txq_params(rdev, netdev,
2060 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2061 result = __nl80211_set_channel(rdev,
2062 nl80211_can_set_dev_channel(wdev) ? wdev : NULL,
2068 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2069 struct wireless_dev *txp_wdev = wdev;
2070 enum nl80211_tx_power_setting type;
2073 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2076 if (!rdev->ops->set_tx_power) {
2077 result = -EOPNOTSUPP;
2081 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2082 type = nla_get_u32(info->attrs[idx]);
2084 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2085 (type != NL80211_TX_POWER_AUTOMATIC)) {
2090 if (type != NL80211_TX_POWER_AUTOMATIC) {
2091 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2092 mbm = nla_get_u32(info->attrs[idx]);
2095 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2100 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2101 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2103 if ((!rdev->wiphy.available_antennas_tx &&
2104 !rdev->wiphy.available_antennas_rx) ||
2105 !rdev->ops->set_antenna) {
2106 result = -EOPNOTSUPP;
2110 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2111 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2113 /* reject antenna configurations which don't match the
2114 * available antenna masks, except for the "all" mask */
2115 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2116 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx))) {
2121 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2122 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2124 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2131 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2132 retry_short = nla_get_u8(
2133 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2134 if (retry_short == 0) {
2138 changed |= WIPHY_PARAM_RETRY_SHORT;
2141 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2142 retry_long = nla_get_u8(
2143 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2144 if (retry_long == 0) {
2148 changed |= WIPHY_PARAM_RETRY_LONG;
2151 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2152 frag_threshold = nla_get_u32(
2153 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2154 if (frag_threshold < 256) {
2158 if (frag_threshold != (u32) -1) {
2160 * Fragments (apart from the last one) are required to
2161 * have even length. Make the fragmentation code
2162 * simpler by stripping LSB should someone try to use
2163 * odd threshold value.
2165 frag_threshold &= ~0x1;
2167 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2170 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2171 rts_threshold = nla_get_u32(
2172 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2173 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2176 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2177 coverage_class = nla_get_u8(
2178 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2179 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2183 u8 old_retry_short, old_retry_long;
2184 u32 old_frag_threshold, old_rts_threshold;
2185 u8 old_coverage_class;
2187 if (!rdev->ops->set_wiphy_params) {
2188 result = -EOPNOTSUPP;
2192 old_retry_short = rdev->wiphy.retry_short;
2193 old_retry_long = rdev->wiphy.retry_long;
2194 old_frag_threshold = rdev->wiphy.frag_threshold;
2195 old_rts_threshold = rdev->wiphy.rts_threshold;
2196 old_coverage_class = rdev->wiphy.coverage_class;
2198 if (changed & WIPHY_PARAM_RETRY_SHORT)
2199 rdev->wiphy.retry_short = retry_short;
2200 if (changed & WIPHY_PARAM_RETRY_LONG)
2201 rdev->wiphy.retry_long = retry_long;
2202 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2203 rdev->wiphy.frag_threshold = frag_threshold;
2204 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2205 rdev->wiphy.rts_threshold = rts_threshold;
2206 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2207 rdev->wiphy.coverage_class = coverage_class;
2209 result = rdev_set_wiphy_params(rdev, changed);
2211 rdev->wiphy.retry_short = old_retry_short;
2212 rdev->wiphy.retry_long = old_retry_long;
2213 rdev->wiphy.frag_threshold = old_frag_threshold;
2214 rdev->wiphy.rts_threshold = old_rts_threshold;
2215 rdev->wiphy.coverage_class = old_coverage_class;
2225 static inline u64 wdev_id(struct wireless_dev *wdev)
2227 return (u64)wdev->identifier |
2228 ((u64)wiphy_to_dev(wdev->wiphy)->wiphy_idx << 32);
2231 static int nl80211_send_chandef(struct sk_buff *msg,
2232 const struct cfg80211_chan_def *chandef)
2234 WARN_ON(!cfg80211_chandef_valid(chandef));
2236 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2237 chandef->chan->center_freq))
2239 switch (chandef->width) {
2240 case NL80211_CHAN_WIDTH_20_NOHT:
2241 case NL80211_CHAN_WIDTH_20:
2242 case NL80211_CHAN_WIDTH_40:
2243 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2244 cfg80211_get_chandef_type(chandef)))
2250 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2252 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2254 if (chandef->center_freq2 &&
2255 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2260 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2261 struct cfg80211_registered_device *rdev,
2262 struct wireless_dev *wdev)
2264 struct net_device *dev = wdev->netdev;
2267 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_INTERFACE);
2272 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2273 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
2274 goto nla_put_failure;
2276 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
2277 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
2278 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
2279 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
2280 nla_put_u32(msg, NL80211_ATTR_GENERATION,
2281 rdev->devlist_generation ^
2282 (cfg80211_rdev_list_generation << 2)))
2283 goto nla_put_failure;
2285 if (rdev->ops->get_channel) {
2287 struct cfg80211_chan_def chandef;
2289 ret = rdev_get_channel(rdev, wdev, &chandef);
2291 if (nl80211_send_chandef(msg, &chandef))
2292 goto nla_put_failure;
2296 if (wdev->ssid_len) {
2297 if (nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
2298 goto nla_put_failure;
2301 return genlmsg_end(msg, hdr);
2304 genlmsg_cancel(msg, hdr);
2308 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
2312 int wp_start = cb->args[0];
2313 int if_start = cb->args[1];
2314 struct cfg80211_registered_device *rdev;
2315 struct wireless_dev *wdev;
2318 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2319 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2321 if (wp_idx < wp_start) {
2327 list_for_each_entry(wdev, &rdev->wdev_list, list) {
2328 if (if_idx < if_start) {
2332 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
2333 cb->nlh->nlmsg_seq, NLM_F_MULTI,
2345 cb->args[0] = wp_idx;
2346 cb->args[1] = if_idx;
2351 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
2353 struct sk_buff *msg;
2354 struct cfg80211_registered_device *dev = info->user_ptr[0];
2355 struct wireless_dev *wdev = info->user_ptr[1];
2357 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2361 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2367 return genlmsg_reply(msg, info);
2370 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
2371 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
2372 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
2373 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
2374 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
2375 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
2376 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
2379 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
2381 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
2389 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX,
2390 nla, mntr_flags_policy))
2393 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
2395 *mntrflags |= (1<<flag);
2400 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
2401 struct net_device *netdev, u8 use_4addr,
2402 enum nl80211_iftype iftype)
2405 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
2411 case NL80211_IFTYPE_AP_VLAN:
2412 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
2415 case NL80211_IFTYPE_STATION:
2416 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
2426 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
2428 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2429 struct vif_params params;
2431 enum nl80211_iftype otype, ntype;
2432 struct net_device *dev = info->user_ptr[1];
2433 u32 _flags, *flags = NULL;
2434 bool change = false;
2436 memset(¶ms, 0, sizeof(params));
2438 otype = ntype = dev->ieee80211_ptr->iftype;
2440 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2441 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2444 if (ntype > NL80211_IFTYPE_MAX)
2448 if (info->attrs[NL80211_ATTR_MESH_ID]) {
2449 struct wireless_dev *wdev = dev->ieee80211_ptr;
2451 if (ntype != NL80211_IFTYPE_MESH_POINT)
2453 if (netif_running(dev))
2457 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2458 IEEE80211_MAX_MESH_ID_LEN);
2459 wdev->mesh_id_up_len =
2460 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2461 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2462 wdev->mesh_id_up_len);
2466 if (info->attrs[NL80211_ATTR_4ADDR]) {
2467 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2469 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
2473 params.use_4addr = -1;
2476 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
2477 if (ntype != NL80211_IFTYPE_MONITOR)
2479 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
2488 if (flags && (*flags & MONITOR_FLAG_ACTIVE) &&
2489 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2493 err = cfg80211_change_iface(rdev, dev, ntype, flags, ¶ms);
2497 if (!err && params.use_4addr != -1)
2498 dev->ieee80211_ptr->use_4addr = params.use_4addr;
2503 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
2505 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2506 struct vif_params params;
2507 struct wireless_dev *wdev;
2508 struct sk_buff *msg;
2510 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
2513 memset(¶ms, 0, sizeof(params));
2515 if (!info->attrs[NL80211_ATTR_IFNAME])
2518 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2519 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2520 if (type > NL80211_IFTYPE_MAX)
2524 if (!rdev->ops->add_virtual_intf ||
2525 !(rdev->wiphy.interface_modes & (1 << type)))
2528 if (type == NL80211_IFTYPE_P2P_DEVICE && info->attrs[NL80211_ATTR_MAC]) {
2529 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
2531 if (!is_valid_ether_addr(params.macaddr))
2532 return -EADDRNOTAVAIL;
2535 if (info->attrs[NL80211_ATTR_4ADDR]) {
2536 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2537 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
2542 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2546 err = parse_monitor_flags(type == NL80211_IFTYPE_MONITOR ?
2547 info->attrs[NL80211_ATTR_MNTR_FLAGS] : NULL,
2550 if (!err && (flags & MONITOR_FLAG_ACTIVE) &&
2551 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2554 wdev = rdev_add_virtual_intf(rdev,
2555 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
2556 type, err ? NULL : &flags, ¶ms);
2559 return PTR_ERR(wdev);
2563 case NL80211_IFTYPE_MESH_POINT:
2564 if (!info->attrs[NL80211_ATTR_MESH_ID])
2567 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2568 IEEE80211_MAX_MESH_ID_LEN);
2569 wdev->mesh_id_up_len =
2570 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2571 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2572 wdev->mesh_id_up_len);
2575 case NL80211_IFTYPE_P2P_DEVICE:
2577 * P2P Device doesn't have a netdev, so doesn't go
2578 * through the netdev notifier and must be added here
2580 mutex_init(&wdev->mtx);
2581 INIT_LIST_HEAD(&wdev->event_list);
2582 spin_lock_init(&wdev->event_lock);
2583 INIT_LIST_HEAD(&wdev->mgmt_registrations);
2584 spin_lock_init(&wdev->mgmt_registrations_lock);
2586 wdev->identifier = ++rdev->wdev_id;
2587 list_add_rcu(&wdev->list, &rdev->wdev_list);
2588 rdev->devlist_generation++;
2594 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2600 return genlmsg_reply(msg, info);
2603 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
2605 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2606 struct wireless_dev *wdev = info->user_ptr[1];
2608 if (!rdev->ops->del_virtual_intf)
2612 * If we remove a wireless device without a netdev then clear
2613 * user_ptr[1] so that nl80211_post_doit won't dereference it
2614 * to check if it needs to do dev_put(). Otherwise it crashes
2615 * since the wdev has been freed, unlike with a netdev where
2616 * we need the dev_put() for the netdev to really be freed.
2619 info->user_ptr[1] = NULL;
2621 return rdev_del_virtual_intf(rdev, wdev);
2624 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
2626 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2627 struct net_device *dev = info->user_ptr[1];
2630 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
2633 if (!rdev->ops->set_noack_map)
2636 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
2638 return rdev_set_noack_map(rdev, dev, noack_map);
2641 struct get_key_cookie {
2642 struct sk_buff *msg;
2647 static void get_key_callback(void *c, struct key_params *params)
2650 struct get_key_cookie *cookie = c;
2653 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
2654 params->key_len, params->key)) ||
2656 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
2657 params->seq_len, params->seq)) ||
2659 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
2661 goto nla_put_failure;
2663 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
2665 goto nla_put_failure;
2668 nla_put(cookie->msg, NL80211_KEY_DATA,
2669 params->key_len, params->key)) ||
2671 nla_put(cookie->msg, NL80211_KEY_SEQ,
2672 params->seq_len, params->seq)) ||
2674 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
2676 goto nla_put_failure;
2678 if (nla_put_u8(cookie->msg, NL80211_ATTR_KEY_IDX, cookie->idx))
2679 goto nla_put_failure;
2681 nla_nest_end(cookie->msg, key);
2688 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
2690 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2692 struct net_device *dev = info->user_ptr[1];
2694 const u8 *mac_addr = NULL;
2696 struct get_key_cookie cookie = {
2700 struct sk_buff *msg;
2702 if (info->attrs[NL80211_ATTR_KEY_IDX])
2703 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
2708 if (info->attrs[NL80211_ATTR_MAC])
2709 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2711 pairwise = !!mac_addr;
2712 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
2713 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
2714 if (kt >= NUM_NL80211_KEYTYPES)
2716 if (kt != NL80211_KEYTYPE_GROUP &&
2717 kt != NL80211_KEYTYPE_PAIRWISE)
2719 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
2722 if (!rdev->ops->get_key)
2725 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2729 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
2730 NL80211_CMD_NEW_KEY);
2732 goto nla_put_failure;
2735 cookie.idx = key_idx;
2737 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2738 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
2739 goto nla_put_failure;
2741 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
2742 goto nla_put_failure;
2744 if (pairwise && mac_addr &&
2745 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2748 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
2755 goto nla_put_failure;
2757 genlmsg_end(msg, hdr);
2758 return genlmsg_reply(msg, info);
2767 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
2769 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2770 struct key_parse key;
2772 struct net_device *dev = info->user_ptr[1];
2774 err = nl80211_parse_key(info, &key);
2781 /* only support setting default key */
2782 if (!key.def && !key.defmgmt)
2785 wdev_lock(dev->ieee80211_ptr);
2788 if (!rdev->ops->set_default_key) {
2793 err = nl80211_key_allowed(dev->ieee80211_ptr);
2797 err = rdev_set_default_key(rdev, dev, key.idx,
2798 key.def_uni, key.def_multi);
2803 #ifdef CONFIG_CFG80211_WEXT
2804 dev->ieee80211_ptr->wext.default_key = key.idx;
2807 if (key.def_uni || !key.def_multi) {
2812 if (!rdev->ops->set_default_mgmt_key) {
2817 err = nl80211_key_allowed(dev->ieee80211_ptr);
2821 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
2825 #ifdef CONFIG_CFG80211_WEXT
2826 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
2831 wdev_unlock(dev->ieee80211_ptr);
2836 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
2838 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2840 struct net_device *dev = info->user_ptr[1];
2841 struct key_parse key;
2842 const u8 *mac_addr = NULL;
2844 err = nl80211_parse_key(info, &key);
2851 if (info->attrs[NL80211_ATTR_MAC])
2852 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2854 if (key.type == -1) {
2856 key.type = NL80211_KEYTYPE_PAIRWISE;
2858 key.type = NL80211_KEYTYPE_GROUP;
2862 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
2863 key.type != NL80211_KEYTYPE_GROUP)
2866 if (!rdev->ops->add_key)
2869 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
2870 key.type == NL80211_KEYTYPE_PAIRWISE,
2874 wdev_lock(dev->ieee80211_ptr);
2875 err = nl80211_key_allowed(dev->ieee80211_ptr);
2877 err = rdev_add_key(rdev, dev, key.idx,
2878 key.type == NL80211_KEYTYPE_PAIRWISE,
2880 wdev_unlock(dev->ieee80211_ptr);
2885 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
2887 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2889 struct net_device *dev = info->user_ptr[1];
2890 u8 *mac_addr = NULL;
2891 struct key_parse key;
2893 err = nl80211_parse_key(info, &key);
2897 if (info->attrs[NL80211_ATTR_MAC])
2898 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2900 if (key.type == -1) {
2902 key.type = NL80211_KEYTYPE_PAIRWISE;
2904 key.type = NL80211_KEYTYPE_GROUP;
2908 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
2909 key.type != NL80211_KEYTYPE_GROUP)
2912 if (!rdev->ops->del_key)
2915 wdev_lock(dev->ieee80211_ptr);
2916 err = nl80211_key_allowed(dev->ieee80211_ptr);
2918 if (key.type == NL80211_KEYTYPE_PAIRWISE && mac_addr &&
2919 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2923 err = rdev_del_key(rdev, dev, key.idx,
2924 key.type == NL80211_KEYTYPE_PAIRWISE,
2927 #ifdef CONFIG_CFG80211_WEXT
2929 if (key.idx == dev->ieee80211_ptr->wext.default_key)
2930 dev->ieee80211_ptr->wext.default_key = -1;
2931 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
2932 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
2935 wdev_unlock(dev->ieee80211_ptr);
2940 /* This function returns an error or the number of nested attributes */
2941 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
2943 struct nlattr *attr;
2944 int n_entries = 0, tmp;
2946 nla_for_each_nested(attr, nl_attr, tmp) {
2947 if (nla_len(attr) != ETH_ALEN)
2957 * This function parses ACL information and allocates memory for ACL data.
2958 * On successful return, the calling function is responsible to free the
2959 * ACL buffer returned by this function.
2961 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
2962 struct genl_info *info)
2964 enum nl80211_acl_policy acl_policy;
2965 struct nlattr *attr;
2966 struct cfg80211_acl_data *acl;
2967 int i = 0, n_entries, tmp;
2969 if (!wiphy->max_acl_mac_addrs)
2970 return ERR_PTR(-EOPNOTSUPP);
2972 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
2973 return ERR_PTR(-EINVAL);
2975 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
2976 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
2977 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
2978 return ERR_PTR(-EINVAL);
2980 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
2981 return ERR_PTR(-EINVAL);
2983 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
2985 return ERR_PTR(n_entries);
2987 if (n_entries > wiphy->max_acl_mac_addrs)
2988 return ERR_PTR(-ENOTSUPP);
2990 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
2993 return ERR_PTR(-ENOMEM);
2995 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
2996 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3000 acl->n_acl_entries = n_entries;
3001 acl->acl_policy = acl_policy;
3006 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3008 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3009 struct net_device *dev = info->user_ptr[1];
3010 struct cfg80211_acl_data *acl;
3013 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3014 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3017 if (!dev->ieee80211_ptr->beacon_interval)
3020 acl = parse_acl_data(&rdev->wiphy, info);
3022 return PTR_ERR(acl);
3024 err = rdev_set_mac_acl(rdev, dev, acl);
3031 static int nl80211_parse_beacon(struct nlattr *attrs[],
3032 struct cfg80211_beacon_data *bcn)
3034 bool haveinfo = false;
3036 if (!is_valid_ie_attr(attrs[NL80211_ATTR_BEACON_TAIL]) ||
3037 !is_valid_ie_attr(attrs[NL80211_ATTR_IE]) ||
3038 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_PROBE_RESP]) ||
3039 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_ASSOC_RESP]))
3042 memset(bcn, 0, sizeof(*bcn));
3044 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
3045 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
3046 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
3052 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
3053 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
3054 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
3061 if (attrs[NL80211_ATTR_IE]) {
3062 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
3063 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
3066 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
3067 bcn->proberesp_ies =
3068 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3069 bcn->proberesp_ies_len =
3070 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3073 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
3074 bcn->assocresp_ies =
3075 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3076 bcn->assocresp_ies_len =
3077 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3080 if (attrs[NL80211_ATTR_PROBE_RESP]) {
3081 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
3082 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
3088 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
3089 struct cfg80211_ap_settings *params)
3091 struct wireless_dev *wdev;
3094 list_for_each_entry(wdev, &rdev->wdev_list, list) {
3095 if (wdev->iftype != NL80211_IFTYPE_AP &&
3096 wdev->iftype != NL80211_IFTYPE_P2P_GO)
3099 if (!wdev->preset_chandef.chan)
3102 params->chandef = wdev->preset_chandef;
3110 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
3111 enum nl80211_auth_type auth_type,
3112 enum nl80211_commands cmd)
3114 if (auth_type > NL80211_AUTHTYPE_MAX)
3118 case NL80211_CMD_AUTHENTICATE:
3119 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
3120 auth_type == NL80211_AUTHTYPE_SAE)
3123 case NL80211_CMD_CONNECT:
3124 case NL80211_CMD_START_AP:
3125 /* SAE not supported yet */
3126 if (auth_type == NL80211_AUTHTYPE_SAE)
3134 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
3136 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3137 struct net_device *dev = info->user_ptr[1];
3138 struct wireless_dev *wdev = dev->ieee80211_ptr;
3139 struct cfg80211_ap_settings params;
3141 u8 radar_detect_width = 0;
3143 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3144 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3147 if (!rdev->ops->start_ap)
3150 if (wdev->beacon_interval)
3153 memset(¶ms, 0, sizeof(params));
3155 /* these are required for START_AP */
3156 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
3157 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
3158 !info->attrs[NL80211_ATTR_BEACON_HEAD])
3161 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon);
3165 params.beacon_interval =
3166 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
3167 params.dtim_period =
3168 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
3170 err = cfg80211_validate_beacon_int(rdev, params.beacon_interval);
3175 * In theory, some of these attributes should be required here
3176 * but since they were not used when the command was originally
3177 * added, keep them optional for old user space programs to let
3178 * them continue to work with drivers that do not need the
3179 * additional information -- drivers must check!
3181 if (info->attrs[NL80211_ATTR_SSID]) {
3182 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
3184 nla_len(info->attrs[NL80211_ATTR_SSID]);
3185 if (params.ssid_len == 0 ||
3186 params.ssid_len > IEEE80211_MAX_SSID_LEN)
3190 if (info->attrs[NL80211_ATTR_HIDDEN_SSID]) {
3191 params.hidden_ssid = nla_get_u32(
3192 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
3193 if (params.hidden_ssid != NL80211_HIDDEN_SSID_NOT_IN_USE &&
3194 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_LEN &&
3195 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_CONTENTS)
3199 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
3201 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
3202 params.auth_type = nla_get_u32(
3203 info->attrs[NL80211_ATTR_AUTH_TYPE]);
3204 if (!nl80211_valid_auth_type(rdev, params.auth_type,
3205 NL80211_CMD_START_AP))
3208 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
3210 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
3211 NL80211_MAX_NR_CIPHER_SUITES);
3215 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
3216 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
3218 params.inactivity_timeout = nla_get_u16(
3219 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
3222 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
3223 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3225 params.p2p_ctwindow =
3226 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
3227 if (params.p2p_ctwindow > 127)
3229 if (params.p2p_ctwindow != 0 &&
3230 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
3234 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
3237 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3239 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
3242 params.p2p_opp_ps = tmp;
3243 if (params.p2p_opp_ps != 0 &&
3244 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
3248 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
3249 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
3252 } else if (wdev->preset_chandef.chan) {
3253 params.chandef = wdev->preset_chandef;
3254 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
3257 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef))
3260 err = cfg80211_chandef_dfs_required(wdev->wiphy, ¶ms.chandef);
3264 radar_detect_width = BIT(params.chandef.width);
3265 params.radar_required = true;
3268 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
3269 params.chandef.chan,
3271 radar_detect_width);
3275 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
3276 params.acl = parse_acl_data(&rdev->wiphy, info);
3277 if (IS_ERR(params.acl))
3278 return PTR_ERR(params.acl);
3282 err = rdev_start_ap(rdev, dev, ¶ms);
3284 wdev->preset_chandef = params.chandef;
3285 wdev->beacon_interval = params.beacon_interval;
3286 wdev->channel = params.chandef.chan;
3287 wdev->ssid_len = params.ssid_len;
3288 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
3297 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
3299 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3300 struct net_device *dev = info->user_ptr[1];
3301 struct wireless_dev *wdev = dev->ieee80211_ptr;
3302 struct cfg80211_beacon_data params;
3305 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3306 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3309 if (!rdev->ops->change_beacon)
3312 if (!wdev->beacon_interval)
3315 err = nl80211_parse_beacon(info->attrs, ¶ms);
3320 err = rdev_change_beacon(rdev, dev, ¶ms);
3326 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
3328 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3329 struct net_device *dev = info->user_ptr[1];
3331 return cfg80211_stop_ap(rdev, dev);
3334 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
3335 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
3336 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
3337 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
3338 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
3339 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
3340 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
3343 static int parse_station_flags(struct genl_info *info,
3344 enum nl80211_iftype iftype,
3345 struct station_parameters *params)
3347 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
3352 * Try parsing the new attribute first so userspace
3353 * can specify both for older kernels.
3355 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
3357 struct nl80211_sta_flag_update *sta_flags;
3359 sta_flags = nla_data(nla);
3360 params->sta_flags_mask = sta_flags->mask;
3361 params->sta_flags_set = sta_flags->set;
3362 params->sta_flags_set &= params->sta_flags_mask;
3363 if ((params->sta_flags_mask |
3364 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
3369 /* if present, parse the old attribute */
3371 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
3375 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX,
3376 nla, sta_flags_policy))
3380 * Only allow certain flags for interface types so that
3381 * other attributes are silently ignored. Remember that
3382 * this is backward compatibility code with old userspace
3383 * and shouldn't be hit in other cases anyway.
3386 case NL80211_IFTYPE_AP:
3387 case NL80211_IFTYPE_AP_VLAN:
3388 case NL80211_IFTYPE_P2P_GO:
3389 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3390 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3391 BIT(NL80211_STA_FLAG_WME) |
3392 BIT(NL80211_STA_FLAG_MFP);
3394 case NL80211_IFTYPE_P2P_CLIENT:
3395 case NL80211_IFTYPE_STATION:
3396 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3397 BIT(NL80211_STA_FLAG_TDLS_PEER);
3399 case NL80211_IFTYPE_MESH_POINT:
3400 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3401 BIT(NL80211_STA_FLAG_MFP) |
3402 BIT(NL80211_STA_FLAG_AUTHORIZED);
3407 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
3409 params->sta_flags_set |= (1<<flag);
3411 /* no longer support new API additions in old API */
3412 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
3420 static bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info,
3423 struct nlattr *rate;
3427 rate = nla_nest_start(msg, attr);
3431 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
3432 bitrate = cfg80211_calculate_bitrate(info);
3433 /* report 16-bit bitrate only if we can */
3434 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
3436 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
3438 if (bitrate_compat > 0 &&
3439 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
3442 if (info->flags & RATE_INFO_FLAGS_MCS) {
3443 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
3445 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3446 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3448 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3449 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3451 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
3452 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
3454 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
3456 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3457 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3459 if (info->flags & RATE_INFO_FLAGS_80_MHZ_WIDTH &&
3460 nla_put_flag(msg, NL80211_RATE_INFO_80_MHZ_WIDTH))
3462 if (info->flags & RATE_INFO_FLAGS_80P80_MHZ_WIDTH &&
3463 nla_put_flag(msg, NL80211_RATE_INFO_80P80_MHZ_WIDTH))
3465 if (info->flags & RATE_INFO_FLAGS_160_MHZ_WIDTH &&
3466 nla_put_flag(msg, NL80211_RATE_INFO_160_MHZ_WIDTH))
3468 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3469 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3473 nla_nest_end(msg, rate);
3477 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
3486 attr = nla_nest_start(msg, id);
3490 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
3491 if (!(mask & BIT(i)))
3494 if (nla_put_u8(msg, i, signal[i]))
3498 nla_nest_end(msg, attr);
3503 static int nl80211_send_station(struct sk_buff *msg, u32 portid, u32 seq,
3505 struct cfg80211_registered_device *rdev,
3506 struct net_device *dev,
3507 const u8 *mac_addr, struct station_info *sinfo)
3510 struct nlattr *sinfoattr, *bss_param;
3512 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_STATION);
3516 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3517 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
3518 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
3519 goto nla_put_failure;
3521 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
3523 goto nla_put_failure;
3524 if ((sinfo->filled & STATION_INFO_CONNECTED_TIME) &&
3525 nla_put_u32(msg, NL80211_STA_INFO_CONNECTED_TIME,
3526 sinfo->connected_time))
3527 goto nla_put_failure;
3528 if ((sinfo->filled & STATION_INFO_INACTIVE_TIME) &&
3529 nla_put_u32(msg, NL80211_STA_INFO_INACTIVE_TIME,
3530 sinfo->inactive_time))
3531 goto nla_put_failure;
3532 if ((sinfo->filled & (STATION_INFO_RX_BYTES |
3533 STATION_INFO_RX_BYTES64)) &&
3534 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
3535 (u32)sinfo->rx_bytes))
3536 goto nla_put_failure;
3537 if ((sinfo->filled & (STATION_INFO_TX_BYTES |
3538 STATION_INFO_TX_BYTES64)) &&
3539 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
3540 (u32)sinfo->tx_bytes))
3541 goto nla_put_failure;
3542 if ((sinfo->filled & STATION_INFO_RX_BYTES64) &&
3543 nla_put_u64(msg, NL80211_STA_INFO_RX_BYTES64,
3545 goto nla_put_failure;
3546 if ((sinfo->filled & STATION_INFO_TX_BYTES64) &&
3547 nla_put_u64(msg, NL80211_STA_INFO_TX_BYTES64,
3549 goto nla_put_failure;
3550 if ((sinfo->filled & STATION_INFO_LLID) &&
3551 nla_put_u16(msg, NL80211_STA_INFO_LLID, sinfo->llid))
3552 goto nla_put_failure;
3553 if ((sinfo->filled & STATION_INFO_PLID) &&
3554 nla_put_u16(msg, NL80211_STA_INFO_PLID, sinfo->plid))
3555 goto nla_put_failure;
3556 if ((sinfo->filled & STATION_INFO_PLINK_STATE) &&
3557 nla_put_u8(msg, NL80211_STA_INFO_PLINK_STATE,
3558 sinfo->plink_state))
3559 goto nla_put_failure;
3560 switch (rdev->wiphy.signal_type) {
3561 case CFG80211_SIGNAL_TYPE_MBM:
3562 if ((sinfo->filled & STATION_INFO_SIGNAL) &&
3563 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL,
3565 goto nla_put_failure;
3566 if ((sinfo->filled & STATION_INFO_SIGNAL_AVG) &&
3567 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL_AVG,
3569 goto nla_put_failure;
3574 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL) {
3575 if (!nl80211_put_signal(msg, sinfo->chains,
3576 sinfo->chain_signal,
3577 NL80211_STA_INFO_CHAIN_SIGNAL))
3578 goto nla_put_failure;
3580 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL_AVG) {
3581 if (!nl80211_put_signal(msg, sinfo->chains,
3582 sinfo->chain_signal_avg,
3583 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
3584 goto nla_put_failure;
3586 if (sinfo->filled & STATION_INFO_TX_BITRATE) {
3587 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
3588 NL80211_STA_INFO_TX_BITRATE))
3589 goto nla_put_failure;
3591 if (sinfo->filled & STATION_INFO_RX_BITRATE) {
3592 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
3593 NL80211_STA_INFO_RX_BITRATE))
3594 goto nla_put_failure;
3596 if ((sinfo->filled & STATION_INFO_RX_PACKETS) &&
3597 nla_put_u32(msg, NL80211_STA_INFO_RX_PACKETS,
3599 goto nla_put_failure;
3600 if ((sinfo->filled & STATION_INFO_TX_PACKETS) &&
3601 nla_put_u32(msg, NL80211_STA_INFO_TX_PACKETS,
3603 goto nla_put_failure;
3604 if ((sinfo->filled & STATION_INFO_TX_RETRIES) &&
3605 nla_put_u32(msg, NL80211_STA_INFO_TX_RETRIES,
3607 goto nla_put_failure;
3608 if ((sinfo->filled & STATION_INFO_TX_FAILED) &&
3609 nla_put_u32(msg, NL80211_STA_INFO_TX_FAILED,
3611 goto nla_put_failure;
3612 if ((sinfo->filled & STATION_INFO_BEACON_LOSS_COUNT) &&
3613 nla_put_u32(msg, NL80211_STA_INFO_BEACON_LOSS,
3614 sinfo->beacon_loss_count))
3615 goto nla_put_failure;
3616 if ((sinfo->filled & STATION_INFO_LOCAL_PM) &&
3617 nla_put_u32(msg, NL80211_STA_INFO_LOCAL_PM,
3619 goto nla_put_failure;
3620 if ((sinfo->filled & STATION_INFO_PEER_PM) &&
3621 nla_put_u32(msg, NL80211_STA_INFO_PEER_PM,
3623 goto nla_put_failure;
3624 if ((sinfo->filled & STATION_INFO_NONPEER_PM) &&
3625 nla_put_u32(msg, NL80211_STA_INFO_NONPEER_PM,
3627 goto nla_put_failure;
3628 if (sinfo->filled & STATION_INFO_BSS_PARAM) {
3629 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
3631 goto nla_put_failure;
3633 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
3634 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
3635 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
3636 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
3637 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
3638 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
3639 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
3640 sinfo->bss_param.dtim_period) ||
3641 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
3642 sinfo->bss_param.beacon_interval))
3643 goto nla_put_failure;
3645 nla_nest_end(msg, bss_param);
3647 if ((sinfo->filled & STATION_INFO_STA_FLAGS) &&
3648 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
3649 sizeof(struct nl80211_sta_flag_update),
3651 goto nla_put_failure;
3652 if ((sinfo->filled & STATION_INFO_T_OFFSET) &&
3653 nla_put_u64(msg, NL80211_STA_INFO_T_OFFSET,
3655 goto nla_put_failure;
3656 nla_nest_end(msg, sinfoattr);
3658 if ((sinfo->filled & STATION_INFO_ASSOC_REQ_IES) &&
3659 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
3660 sinfo->assoc_req_ies))
3661 goto nla_put_failure;
3663 return genlmsg_end(msg, hdr);
3666 genlmsg_cancel(msg, hdr);
3670 static int nl80211_dump_station(struct sk_buff *skb,
3671 struct netlink_callback *cb)
3673 struct station_info sinfo;
3674 struct cfg80211_registered_device *dev;
3675 struct wireless_dev *wdev;
3676 u8 mac_addr[ETH_ALEN];
3677 int sta_idx = cb->args[2];
3680 err = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
3684 if (!wdev->netdev) {
3689 if (!dev->ops->dump_station) {
3695 memset(&sinfo, 0, sizeof(sinfo));
3696 err = rdev_dump_station(dev, wdev->netdev, sta_idx,
3703 if (nl80211_send_station(skb,
3704 NETLINK_CB(cb->skb).portid,
3705 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3706 dev, wdev->netdev, mac_addr,
3715 cb->args[2] = sta_idx;
3718 nl80211_finish_wdev_dump(dev);
3723 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
3725 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3726 struct net_device *dev = info->user_ptr[1];
3727 struct station_info sinfo;
3728 struct sk_buff *msg;
3729 u8 *mac_addr = NULL;
3732 memset(&sinfo, 0, sizeof(sinfo));
3734 if (!info->attrs[NL80211_ATTR_MAC])
3737 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3739 if (!rdev->ops->get_station)
3742 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
3746 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3750 if (nl80211_send_station(msg, info->snd_portid, info->snd_seq, 0,
3751 rdev, dev, mac_addr, &sinfo) < 0) {
3756 return genlmsg_reply(msg, info);
3759 int cfg80211_check_station_change(struct wiphy *wiphy,
3760 struct station_parameters *params,
3761 enum cfg80211_station_type statype)
3763 if (params->listen_interval != -1)
3768 /* When you run into this, adjust the code below for the new flag */
3769 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
3772 case CFG80211_STA_MESH_PEER_KERNEL:
3773 case CFG80211_STA_MESH_PEER_USER:
3775 * No ignoring the TDLS flag here -- the userspace mesh
3776 * code doesn't have the bug of including TDLS in the
3779 if (params->sta_flags_mask &
3780 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3781 BIT(NL80211_STA_FLAG_MFP) |
3782 BIT(NL80211_STA_FLAG_AUTHORIZED)))
3785 case CFG80211_STA_TDLS_PEER_SETUP:
3786 case CFG80211_STA_TDLS_PEER_ACTIVE:
3787 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
3789 /* ignore since it can't change */
3790 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3793 /* disallow mesh-specific things */
3794 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3796 if (params->local_pm)
3798 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3802 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
3803 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
3804 /* TDLS can't be set, ... */
3805 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
3808 * ... but don't bother the driver with it. This works around
3809 * a hostapd/wpa_supplicant issue -- it always includes the
3810 * TLDS_PEER flag in the mask even for AP mode.
3812 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3815 if (statype != CFG80211_STA_TDLS_PEER_SETUP) {
3816 /* reject other things that can't change */
3817 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
3819 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
3821 if (params->supported_rates)
3823 if (params->ext_capab || params->ht_capa || params->vht_capa)
3827 if (statype != CFG80211_STA_AP_CLIENT) {
3833 case CFG80211_STA_AP_MLME_CLIENT:
3834 /* Use this only for authorizing/unauthorizing a station */
3835 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
3838 case CFG80211_STA_AP_CLIENT:
3839 /* accept only the listed bits */
3840 if (params->sta_flags_mask &
3841 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
3842 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3843 BIT(NL80211_STA_FLAG_ASSOCIATED) |
3844 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3845 BIT(NL80211_STA_FLAG_WME) |
3846 BIT(NL80211_STA_FLAG_MFP)))
3849 /* but authenticated/associated only if driver handles it */
3850 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
3851 params->sta_flags_mask &
3852 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3853 BIT(NL80211_STA_FLAG_ASSOCIATED)))
3856 case CFG80211_STA_IBSS:
3857 case CFG80211_STA_AP_STA:
3858 /* reject any changes other than AUTHORIZED */
3859 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
3862 case CFG80211_STA_TDLS_PEER_SETUP:
3863 /* reject any changes other than AUTHORIZED or WME */
3864 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
3865 BIT(NL80211_STA_FLAG_WME)))
3867 /* force (at least) rates when authorizing */
3868 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
3869 !params->supported_rates)
3872 case CFG80211_STA_TDLS_PEER_ACTIVE:
3873 /* reject any changes */
3875 case CFG80211_STA_MESH_PEER_KERNEL:
3876 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3879 case CFG80211_STA_MESH_PEER_USER:
3880 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3887 EXPORT_SYMBOL(cfg80211_check_station_change);
3890 * Get vlan interface making sure it is running and on the right wiphy.
3892 static struct net_device *get_vlan(struct genl_info *info,
3893 struct cfg80211_registered_device *rdev)
3895 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
3896 struct net_device *v;
3902 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
3904 return ERR_PTR(-ENODEV);
3906 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
3911 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
3912 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3913 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
3918 if (!netif_running(v)) {
3926 return ERR_PTR(ret);
3929 static struct nla_policy
3930 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] __read_mostly = {
3931 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
3932 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
3935 static int nl80211_parse_sta_wme(struct genl_info *info,
3936 struct station_parameters *params)
3938 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
3942 /* parse WME attributes if present */
3943 if (!info->attrs[NL80211_ATTR_STA_WME])
3946 nla = info->attrs[NL80211_ATTR_STA_WME];
3947 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
3948 nl80211_sta_wme_policy);
3952 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
3953 params->uapsd_queues = nla_get_u8(
3954 tb[NL80211_STA_WME_UAPSD_QUEUES]);
3955 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
3958 if (tb[NL80211_STA_WME_MAX_SP])
3959 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
3961 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
3964 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
3969 static int nl80211_parse_sta_channel_info(struct genl_info *info,
3970 struct station_parameters *params)
3972 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
3973 params->supported_channels =
3974 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
3975 params->supported_channels_len =
3976 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
3978 * Need to include at least one (first channel, number of
3979 * channels) tuple for each subband, and must have proper
3980 * tuples for the rest of the data as well.
3982 if (params->supported_channels_len < 2)
3984 if (params->supported_channels_len % 2)
3988 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
3989 params->supported_oper_classes =
3990 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
3991 params->supported_oper_classes_len =
3992 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
3994 * The value of the Length field of the Supported Operating
3995 * Classes element is between 2 and 253.
3997 if (params->supported_oper_classes_len < 2 ||
3998 params->supported_oper_classes_len > 253)
4004 static int nl80211_set_station_tdls(struct genl_info *info,
4005 struct station_parameters *params)
4008 /* Dummy STA entry gets updated once the peer capabilities are known */
4009 if (info->attrs[NL80211_ATTR_PEER_AID])
4010 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4011 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4013 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4014 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4016 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4018 err = nl80211_parse_sta_channel_info(info, params);
4022 return nl80211_parse_sta_wme(info, params);
4025 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
4027 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4028 struct net_device *dev = info->user_ptr[1];
4029 struct station_parameters params;
4033 memset(¶ms, 0, sizeof(params));
4035 params.listen_interval = -1;
4037 if (!rdev->ops->change_station)
4040 if (info->attrs[NL80211_ATTR_STA_AID])
4043 if (!info->attrs[NL80211_ATTR_MAC])
4046 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4048 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
4049 params.supported_rates =
4050 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4051 params.supported_rates_len =
4052 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4055 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4057 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4058 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4061 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4063 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4064 params.ext_capab_len =
4065 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4068 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4071 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4074 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4075 params.plink_action =
4076 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4077 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4081 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
4082 params.plink_state =
4083 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
4084 if (params.plink_state >= NUM_NL80211_PLINK_STATES)
4086 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
4089 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]) {
4090 enum nl80211_mesh_power_mode pm = nla_get_u32(
4091 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
4093 if (pm <= NL80211_MESH_POWER_UNKNOWN ||
4094 pm > NL80211_MESH_POWER_MAX)
4097 params.local_pm = pm;
4100 /* Include parameters for TDLS peer (will check later) */
4101 err = nl80211_set_station_tdls(info, ¶ms);
4105 params.vlan = get_vlan(info, rdev);
4106 if (IS_ERR(params.vlan))
4107 return PTR_ERR(params.vlan);
4109 switch (dev->ieee80211_ptr->iftype) {
4110 case NL80211_IFTYPE_AP:
4111 case NL80211_IFTYPE_AP_VLAN:
4112 case NL80211_IFTYPE_P2P_GO:
4113 case NL80211_IFTYPE_P2P_CLIENT:
4114 case NL80211_IFTYPE_STATION:
4115 case NL80211_IFTYPE_ADHOC:
4116 case NL80211_IFTYPE_MESH_POINT:
4123 /* driver will call cfg80211_check_station_change() */
4124 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
4128 dev_put(params.vlan);
4133 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
4135 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4137 struct net_device *dev = info->user_ptr[1];
4138 struct station_parameters params;
4139 u8 *mac_addr = NULL;
4141 memset(¶ms, 0, sizeof(params));
4143 if (!rdev->ops->add_station)
4146 if (!info->attrs[NL80211_ATTR_MAC])
4149 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4152 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
4155 if (!info->attrs[NL80211_ATTR_STA_AID] &&
4156 !info->attrs[NL80211_ATTR_PEER_AID])
4159 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4160 params.supported_rates =
4161 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4162 params.supported_rates_len =
4163 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4164 params.listen_interval =
4165 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
4167 if (info->attrs[NL80211_ATTR_PEER_AID])
4168 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4170 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
4171 if (!params.aid || params.aid > IEEE80211_MAX_AID)
4174 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4176 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4177 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4180 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4182 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4183 params.ext_capab_len =
4184 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4187 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4189 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4191 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4193 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4195 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
4196 params.opmode_notif_used = true;
4197 params.opmode_notif =
4198 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
4201 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4202 params.plink_action =
4203 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4204 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4208 err = nl80211_parse_sta_channel_info(info, ¶ms);
4212 err = nl80211_parse_sta_wme(info, ¶ms);
4216 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4219 /* When you run into this, adjust the code below for the new flag */
4220 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
4222 switch (dev->ieee80211_ptr->iftype) {
4223 case NL80211_IFTYPE_AP:
4224 case NL80211_IFTYPE_AP_VLAN:
4225 case NL80211_IFTYPE_P2P_GO:
4226 /* ignore WME attributes if iface/sta is not capable */
4227 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
4228 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
4229 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4231 /* TDLS peers cannot be added */
4232 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4233 info->attrs[NL80211_ATTR_PEER_AID])
4235 /* but don't bother the driver with it */
4236 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
4238 /* allow authenticated/associated only if driver handles it */
4239 if (!(rdev->wiphy.features &
4240 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4241 params.sta_flags_mask &
4242 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4243 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4246 /* must be last in here for error handling */
4247 params.vlan = get_vlan(info, rdev);
4248 if (IS_ERR(params.vlan))
4249 return PTR_ERR(params.vlan);
4251 case NL80211_IFTYPE_MESH_POINT:
4252 /* ignore uAPSD data */
4253 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4255 /* associated is disallowed */
4256 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
4258 /* TDLS peers cannot be added */
4259 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4260 info->attrs[NL80211_ATTR_PEER_AID])
4263 case NL80211_IFTYPE_STATION:
4264 case NL80211_IFTYPE_P2P_CLIENT:
4265 /* ignore uAPSD data */
4266 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4268 /* these are disallowed */
4269 if (params.sta_flags_mask &
4270 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
4271 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
4273 /* Only TDLS peers can be added */
4274 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
4276 /* Can only add if TDLS ... */
4277 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
4279 /* ... with external setup is supported */
4280 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
4283 * Older wpa_supplicant versions always mark the TDLS peer
4284 * as authorized, but it shouldn't yet be.
4286 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
4292 /* be aware of params.vlan when changing code here */
4294 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
4297 dev_put(params.vlan);
4301 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
4303 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4304 struct net_device *dev = info->user_ptr[1];
4305 u8 *mac_addr = NULL;
4307 if (info->attrs[NL80211_ATTR_MAC])
4308 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4310 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4311 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
4312 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
4313 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4316 if (!rdev->ops->del_station)
4319 return rdev_del_station(rdev, dev, mac_addr);
4322 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
4323 int flags, struct net_device *dev,
4324 u8 *dst, u8 *next_hop,
4325 struct mpath_info *pinfo)
4328 struct nlattr *pinfoattr;
4330 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_STATION);
4334 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4335 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
4336 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
4337 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
4338 goto nla_put_failure;
4340 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
4342 goto nla_put_failure;
4343 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
4344 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
4346 goto nla_put_failure;
4347 if (((pinfo->filled & MPATH_INFO_SN) &&
4348 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
4349 ((pinfo->filled & MPATH_INFO_METRIC) &&
4350 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
4352 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
4353 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
4355 ((pinfo->filled & MPATH_INFO_FLAGS) &&
4356 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
4358 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
4359 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
4360 pinfo->discovery_timeout)) ||
4361 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
4362 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
4363 pinfo->discovery_retries)))
4364 goto nla_put_failure;
4366 nla_nest_end(msg, pinfoattr);
4368 return genlmsg_end(msg, hdr);
4371 genlmsg_cancel(msg, hdr);
4375 static int nl80211_dump_mpath(struct sk_buff *skb,
4376 struct netlink_callback *cb)
4378 struct mpath_info pinfo;
4379 struct cfg80211_registered_device *dev;
4380 struct wireless_dev *wdev;
4382 u8 next_hop[ETH_ALEN];
4383 int path_idx = cb->args[2];
4386 err = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
4390 if (!dev->ops->dump_mpath) {
4395 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
4401 err = rdev_dump_mpath(dev, wdev->netdev, path_idx, dst,
4408 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
4409 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4410 wdev->netdev, dst, next_hop,
4419 cb->args[2] = path_idx;
4422 nl80211_finish_wdev_dump(dev);
4426 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
4428 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4430 struct net_device *dev = info->user_ptr[1];
4431 struct mpath_info pinfo;
4432 struct sk_buff *msg;
4434 u8 next_hop[ETH_ALEN];
4436 memset(&pinfo, 0, sizeof(pinfo));
4438 if (!info->attrs[NL80211_ATTR_MAC])
4441 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4443 if (!rdev->ops->get_mpath)
4446 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4449 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
4453 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4457 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
4458 dev, dst, next_hop, &pinfo) < 0) {
4463 return genlmsg_reply(msg, info);
4466 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
4468 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4469 struct net_device *dev = info->user_ptr[1];
4471 u8 *next_hop = NULL;
4473 if (!info->attrs[NL80211_ATTR_MAC])
4476 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4479 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4480 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4482 if (!rdev->ops->change_mpath)
4485 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4488 return rdev_change_mpath(rdev, dev, dst, next_hop);
4491 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
4493 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4494 struct net_device *dev = info->user_ptr[1];
4496 u8 *next_hop = NULL;
4498 if (!info->attrs[NL80211_ATTR_MAC])
4501 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4504 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4505 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4507 if (!rdev->ops->add_mpath)
4510 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4513 return rdev_add_mpath(rdev, dev, dst, next_hop);
4516 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
4518 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4519 struct net_device *dev = info->user_ptr[1];
4522 if (info->attrs[NL80211_ATTR_MAC])
4523 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4525 if (!rdev->ops->del_mpath)
4528 return rdev_del_mpath(rdev, dev, dst);
4531 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
4533 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4534 struct net_device *dev = info->user_ptr[1];
4535 struct wireless_dev *wdev = dev->ieee80211_ptr;
4536 struct bss_parameters params;
4539 memset(¶ms, 0, sizeof(params));
4540 /* default to not changing parameters */
4541 params.use_cts_prot = -1;
4542 params.use_short_preamble = -1;
4543 params.use_short_slot_time = -1;
4544 params.ap_isolate = -1;
4545 params.ht_opmode = -1;
4546 params.p2p_ctwindow = -1;
4547 params.p2p_opp_ps = -1;
4549 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
4550 params.use_cts_prot =
4551 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
4552 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
4553 params.use_short_preamble =
4554 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
4555 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
4556 params.use_short_slot_time =
4557 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
4558 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
4559 params.basic_rates =
4560 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4561 params.basic_rates_len =
4562 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4564 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
4565 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
4566 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
4568 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
4570 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4571 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4573 params.p2p_ctwindow =
4574 nla_get_s8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4575 if (params.p2p_ctwindow < 0)
4577 if (params.p2p_ctwindow != 0 &&
4578 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4582 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4585 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4587 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4590 params.p2p_opp_ps = tmp;
4591 if (params.p2p_opp_ps &&
4592 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4596 if (!rdev->ops->change_bss)
4599 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4600 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4604 err = rdev_change_bss(rdev, dev, ¶ms);
4610 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
4611 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
4612 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
4613 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
4614 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
4615 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
4616 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
4619 static int parse_reg_rule(struct nlattr *tb[],
4620 struct ieee80211_reg_rule *reg_rule)
4622 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
4623 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
4625 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
4627 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
4629 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
4631 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
4633 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
4636 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
4638 freq_range->start_freq_khz =
4639 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
4640 freq_range->end_freq_khz =
4641 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
4642 freq_range->max_bandwidth_khz =
4643 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
4645 power_rule->max_eirp =
4646 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
4648 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
4649 power_rule->max_antenna_gain =
4650 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
4655 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
4659 enum nl80211_user_reg_hint_type user_reg_hint_type;
4662 * You should only get this when cfg80211 hasn't yet initialized
4663 * completely when built-in to the kernel right between the time
4664 * window between nl80211_init() and regulatory_init(), if that is
4667 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
4668 return -EINPROGRESS;
4670 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
4673 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
4675 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
4676 user_reg_hint_type =
4677 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
4679 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
4681 switch (user_reg_hint_type) {
4682 case NL80211_USER_REG_HINT_USER:
4683 case NL80211_USER_REG_HINT_CELL_BASE:
4689 r = regulatory_hint_user(data, user_reg_hint_type);
4694 static int nl80211_get_mesh_config(struct sk_buff *skb,
4695 struct genl_info *info)
4697 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4698 struct net_device *dev = info->user_ptr[1];
4699 struct wireless_dev *wdev = dev->ieee80211_ptr;
4700 struct mesh_config cur_params;
4703 struct nlattr *pinfoattr;
4704 struct sk_buff *msg;
4706 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
4709 if (!rdev->ops->get_mesh_config)
4713 /* If not connected, get default parameters */
4714 if (!wdev->mesh_id_len)
4715 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
4717 err = rdev_get_mesh_config(rdev, dev, &cur_params);
4723 /* Draw up a netlink message to send back */
4724 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4727 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
4728 NL80211_CMD_GET_MESH_CONFIG);
4731 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
4733 goto nla_put_failure;
4734 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4735 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
4736 cur_params.dot11MeshRetryTimeout) ||
4737 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
4738 cur_params.dot11MeshConfirmTimeout) ||
4739 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
4740 cur_params.dot11MeshHoldingTimeout) ||
4741 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
4742 cur_params.dot11MeshMaxPeerLinks) ||
4743 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
4744 cur_params.dot11MeshMaxRetries) ||
4745 nla_put_u8(msg, NL80211_MESHCONF_TTL,
4746 cur_params.dot11MeshTTL) ||
4747 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
4748 cur_params.element_ttl) ||
4749 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
4750 cur_params.auto_open_plinks) ||
4751 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
4752 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
4753 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
4754 cur_params.dot11MeshHWMPmaxPREQretries) ||
4755 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
4756 cur_params.path_refresh_time) ||
4757 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
4758 cur_params.min_discovery_timeout) ||
4759 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
4760 cur_params.dot11MeshHWMPactivePathTimeout) ||
4761 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
4762 cur_params.dot11MeshHWMPpreqMinInterval) ||
4763 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
4764 cur_params.dot11MeshHWMPperrMinInterval) ||
4765 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
4766 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
4767 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
4768 cur_params.dot11MeshHWMPRootMode) ||
4769 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
4770 cur_params.dot11MeshHWMPRannInterval) ||
4771 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
4772 cur_params.dot11MeshGateAnnouncementProtocol) ||
4773 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
4774 cur_params.dot11MeshForwarding) ||
4775 nla_put_u32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
4776 cur_params.rssi_threshold) ||
4777 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
4778 cur_params.ht_opmode) ||
4779 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
4780 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
4781 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
4782 cur_params.dot11MeshHWMProotInterval) ||
4783 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
4784 cur_params.dot11MeshHWMPconfirmationInterval) ||
4785 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
4786 cur_params.power_mode) ||
4787 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
4788 cur_params.dot11MeshAwakeWindowDuration) ||
4789 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
4790 cur_params.plink_timeout))
4791 goto nla_put_failure;
4792 nla_nest_end(msg, pinfoattr);
4793 genlmsg_end(msg, hdr);
4794 return genlmsg_reply(msg, info);
4797 genlmsg_cancel(msg, hdr);
4803 static const struct nla_policy nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
4804 [NL80211_MESHCONF_RETRY_TIMEOUT] = { .type = NLA_U16 },
4805 [NL80211_MESHCONF_CONFIRM_TIMEOUT] = { .type = NLA_U16 },
4806 [NL80211_MESHCONF_HOLDING_TIMEOUT] = { .type = NLA_U16 },
4807 [NL80211_MESHCONF_MAX_PEER_LINKS] = { .type = NLA_U16 },
4808 [NL80211_MESHCONF_MAX_RETRIES] = { .type = NLA_U8 },
4809 [NL80211_MESHCONF_TTL] = { .type = NLA_U8 },
4810 [NL80211_MESHCONF_ELEMENT_TTL] = { .type = NLA_U8 },
4811 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = { .type = NLA_U8 },
4812 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] = { .type = NLA_U32 },
4813 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
4814 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
4815 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = { .type = NLA_U16 },
4816 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
4817 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] = { .type = NLA_U16 },
4818 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] = { .type = NLA_U16 },
4819 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] = { .type = NLA_U16 },
4820 [NL80211_MESHCONF_HWMP_ROOTMODE] = { .type = NLA_U8 },
4821 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] = { .type = NLA_U16 },
4822 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = { .type = NLA_U8 },
4823 [NL80211_MESHCONF_FORWARDING] = { .type = NLA_U8 },
4824 [NL80211_MESHCONF_RSSI_THRESHOLD] = { .type = NLA_U32 },
4825 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
4826 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
4827 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] = { .type = NLA_U16 },
4828 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] = { .type = NLA_U16 },
4829 [NL80211_MESHCONF_POWER_MODE] = { .type = NLA_U32 },
4830 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
4831 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
4834 static const struct nla_policy
4835 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
4836 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
4837 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
4838 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
4839 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
4840 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
4841 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
4842 [NL80211_MESH_SETUP_IE] = { .type = NLA_BINARY,
4843 .len = IEEE80211_MAX_DATA_LEN },
4844 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
4847 static int nl80211_parse_mesh_config(struct genl_info *info,
4848 struct mesh_config *cfg,
4851 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
4854 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, min, max, mask, attr, fn) \
4857 if (fn(tb[attr]) < min || fn(tb[attr]) > max) \
4859 cfg->param = fn(tb[attr]); \
4860 mask |= (1 << (attr - 1)); \
4865 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
4867 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
4868 info->attrs[NL80211_ATTR_MESH_CONFIG],
4869 nl80211_meshconf_params_policy))
4872 /* This makes sure that there aren't more than 32 mesh config
4873 * parameters (otherwise our bitfield scheme would not work.) */
4874 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
4876 /* Fill in the params struct */
4877 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, 1, 255,
4878 mask, NL80211_MESHCONF_RETRY_TIMEOUT,
4880 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, 1, 255,
4881 mask, NL80211_MESHCONF_CONFIRM_TIMEOUT,
4883 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, 1, 255,
4884 mask, NL80211_MESHCONF_HOLDING_TIMEOUT,
4886 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, 0, 255,
4887 mask, NL80211_MESHCONF_MAX_PEER_LINKS,
4889 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, 0, 16,
4890 mask, NL80211_MESHCONF_MAX_RETRIES,
4892 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, 1, 255,
4893 mask, NL80211_MESHCONF_TTL, nla_get_u8);
4894 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, 1, 255,
4895 mask, NL80211_MESHCONF_ELEMENT_TTL,
4897 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, 0, 1,
4898 mask, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
4900 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
4902 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
4904 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, 0, 255,
4905 mask, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
4907 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, 1, 65535,
4908 mask, NL80211_MESHCONF_PATH_REFRESH_TIME,
4910 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, 1, 65535,
4911 mask, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
4913 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
4915 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
4917 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval,
4919 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
4921 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval,
4923 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
4925 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4926 dot11MeshHWMPnetDiameterTraversalTime,
4928 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
4930 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, 0, 4,
4931 mask, NL80211_MESHCONF_HWMP_ROOTMODE,
4933 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, 1, 65535,
4934 mask, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
4936 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4937 dot11MeshGateAnnouncementProtocol, 0, 1,
4938 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
4940 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, 0, 1,
4941 mask, NL80211_MESHCONF_FORWARDING,
4943 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, -255, 0,
4944 mask, NL80211_MESHCONF_RSSI_THRESHOLD,
4946 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, ht_opmode, 0, 16,
4947 mask, NL80211_MESHCONF_HT_OPMODE,
4949 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathToRootTimeout,
4951 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
4953 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, 1, 65535,
4954 mask, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
4956 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4957 dot11MeshHWMPconfirmationInterval,
4959 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
4961 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode,
4962 NL80211_MESH_POWER_ACTIVE,
4963 NL80211_MESH_POWER_MAX,
4964 mask, NL80211_MESHCONF_POWER_MODE,
4966 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration,
4968 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
4969 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, 1, 0xffffffff,
4970 mask, NL80211_MESHCONF_PLINK_TIMEOUT,
4977 #undef FILL_IN_MESH_PARAM_IF_SET
4980 static int nl80211_parse_mesh_setup(struct genl_info *info,
4981 struct mesh_setup *setup)
4983 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4984 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
4986 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
4988 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
4989 info->attrs[NL80211_ATTR_MESH_SETUP],
4990 nl80211_mesh_setup_params_policy))
4993 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
4994 setup->sync_method =
4995 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
4996 IEEE80211_SYNC_METHOD_VENDOR :
4997 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
4999 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
5000 setup->path_sel_proto =
5001 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
5002 IEEE80211_PATH_PROTOCOL_VENDOR :
5003 IEEE80211_PATH_PROTOCOL_HWMP;
5005 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
5006 setup->path_metric =
5007 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
5008 IEEE80211_PATH_METRIC_VENDOR :
5009 IEEE80211_PATH_METRIC_AIRTIME;
5012 if (tb[NL80211_MESH_SETUP_IE]) {
5013 struct nlattr *ieattr =
5014 tb[NL80211_MESH_SETUP_IE];
5015 if (!is_valid_ie_attr(ieattr))
5017 setup->ie = nla_data(ieattr);
5018 setup->ie_len = nla_len(ieattr);
5020 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
5021 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
5023 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
5024 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
5025 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
5026 if (setup->is_secure)
5027 setup->user_mpm = true;
5029 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
5030 if (!setup->user_mpm)
5033 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
5039 static int nl80211_update_mesh_config(struct sk_buff *skb,
5040 struct genl_info *info)
5042 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5043 struct net_device *dev = info->user_ptr[1];
5044 struct wireless_dev *wdev = dev->ieee80211_ptr;
5045 struct mesh_config cfg;
5049 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
5052 if (!rdev->ops->update_mesh_config)
5055 err = nl80211_parse_mesh_config(info, &cfg, &mask);
5060 if (!wdev->mesh_id_len)
5064 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
5071 static int nl80211_get_reg(struct sk_buff *skb, struct genl_info *info)
5073 const struct ieee80211_regdomain *regdom;
5074 struct sk_buff *msg;
5076 struct nlattr *nl_reg_rules;
5079 if (!cfg80211_regdomain)
5082 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5086 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
5087 NL80211_CMD_GET_REG);
5091 if (reg_last_request_cell_base() &&
5092 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
5093 NL80211_USER_REG_HINT_CELL_BASE))
5094 goto nla_put_failure;
5097 regdom = rcu_dereference(cfg80211_regdomain);
5099 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
5100 (regdom->dfs_region &&
5101 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
5102 goto nla_put_failure_rcu;
5104 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
5106 goto nla_put_failure_rcu;
5108 for (i = 0; i < regdom->n_reg_rules; i++) {
5109 struct nlattr *nl_reg_rule;
5110 const struct ieee80211_reg_rule *reg_rule;
5111 const struct ieee80211_freq_range *freq_range;
5112 const struct ieee80211_power_rule *power_rule;
5114 reg_rule = ®dom->reg_rules[i];
5115 freq_range = ®_rule->freq_range;
5116 power_rule = ®_rule->power_rule;
5118 nl_reg_rule = nla_nest_start(msg, i);
5120 goto nla_put_failure_rcu;
5122 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
5124 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
5125 freq_range->start_freq_khz) ||
5126 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
5127 freq_range->end_freq_khz) ||
5128 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
5129 freq_range->max_bandwidth_khz) ||
5130 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
5131 power_rule->max_antenna_gain) ||
5132 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
5133 power_rule->max_eirp))
5134 goto nla_put_failure_rcu;
5136 nla_nest_end(msg, nl_reg_rule);
5140 nla_nest_end(msg, nl_reg_rules);
5142 genlmsg_end(msg, hdr);
5143 return genlmsg_reply(msg, info);
5145 nla_put_failure_rcu:
5148 genlmsg_cancel(msg, hdr);
5154 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
5156 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
5157 struct nlattr *nl_reg_rule;
5158 char *alpha2 = NULL;
5159 int rem_reg_rules = 0, r = 0;
5160 u32 num_rules = 0, rule_idx = 0, size_of_regd;
5161 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
5162 struct ieee80211_regdomain *rd = NULL;
5164 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
5167 if (!info->attrs[NL80211_ATTR_REG_RULES])
5170 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
5172 if (info->attrs[NL80211_ATTR_DFS_REGION])
5173 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
5175 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5178 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
5182 if (!reg_is_valid_request(alpha2))
5185 size_of_regd = sizeof(struct ieee80211_regdomain) +
5186 num_rules * sizeof(struct ieee80211_reg_rule);
5188 rd = kzalloc(size_of_regd, GFP_KERNEL);
5192 rd->n_reg_rules = num_rules;
5193 rd->alpha2[0] = alpha2[0];
5194 rd->alpha2[1] = alpha2[1];
5197 * Disable DFS master mode if the DFS region was
5198 * not supported or known on this kernel.
5200 if (reg_supported_dfs_region(dfs_region))
5201 rd->dfs_region = dfs_region;
5203 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5205 nla_parse(tb, NL80211_REG_RULE_ATTR_MAX,
5206 nla_data(nl_reg_rule), nla_len(nl_reg_rule),
5208 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
5214 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
5221 /* set_regdom took ownership */
5229 static int validate_scan_freqs(struct nlattr *freqs)
5231 struct nlattr *attr1, *attr2;
5232 int n_channels = 0, tmp1, tmp2;
5234 nla_for_each_nested(attr1, freqs, tmp1) {
5237 * Some hardware has a limited channel list for
5238 * scanning, and it is pretty much nonsensical
5239 * to scan for a channel twice, so disallow that
5240 * and don't require drivers to check that the
5241 * channel list they get isn't longer than what
5242 * they can scan, as long as they can scan all
5243 * the channels they registered at once.
5245 nla_for_each_nested(attr2, freqs, tmp2)
5246 if (attr1 != attr2 &&
5247 nla_get_u32(attr1) == nla_get_u32(attr2))
5254 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
5256 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5257 struct wireless_dev *wdev = info->user_ptr[1];
5258 struct cfg80211_scan_request *request;
5259 struct nlattr *attr;
5260 struct wiphy *wiphy;
5261 int err, tmp, n_ssids = 0, n_channels, i;
5264 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5267 wiphy = &rdev->wiphy;
5269 if (!rdev->ops->scan)
5272 if (rdev->scan_req) {
5277 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5278 n_channels = validate_scan_freqs(
5279 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5285 enum ieee80211_band band;
5288 for (band = 0; band < IEEE80211_NUM_BANDS; band++)
5289 if (wiphy->bands[band])
5290 n_channels += wiphy->bands[band]->n_channels;
5293 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5294 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
5297 if (n_ssids > wiphy->max_scan_ssids) {
5302 if (info->attrs[NL80211_ATTR_IE])
5303 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5307 if (ie_len > wiphy->max_scan_ie_len) {
5312 request = kzalloc(sizeof(*request)
5313 + sizeof(*request->ssids) * n_ssids
5314 + sizeof(*request->channels) * n_channels
5315 + ie_len, GFP_KERNEL);
5322 request->ssids = (void *)&request->channels[n_channels];
5323 request->n_ssids = n_ssids;
5326 request->ie = (void *)(request->ssids + n_ssids);
5328 request->ie = (void *)(request->channels + n_channels);
5332 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5333 /* user specified, bail out if channel not found */
5334 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
5335 struct ieee80211_channel *chan;
5337 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5344 /* ignore disabled channels */
5345 if (chan->flags & IEEE80211_CHAN_DISABLED)
5348 request->channels[i] = chan;
5352 enum ieee80211_band band;
5355 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5357 if (!wiphy->bands[band])
5359 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5360 struct ieee80211_channel *chan;
5362 chan = &wiphy->bands[band]->channels[j];
5364 if (chan->flags & IEEE80211_CHAN_DISABLED)
5367 request->channels[i] = chan;
5378 request->n_channels = i;
5381 if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
5382 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
5383 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5387 request->ssids[i].ssid_len = nla_len(attr);
5388 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
5393 if (info->attrs[NL80211_ATTR_IE]) {
5394 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5395 memcpy((void *)request->ie,
5396 nla_data(info->attrs[NL80211_ATTR_IE]),
5400 for (i = 0; i < IEEE80211_NUM_BANDS; i++)
5401 if (wiphy->bands[i])
5403 (1 << wiphy->bands[i]->n_bitrates) - 1;
5405 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
5406 nla_for_each_nested(attr,
5407 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
5409 enum ieee80211_band band = nla_type(attr);
5411 if (band < 0 || band >= IEEE80211_NUM_BANDS) {
5416 if (!wiphy->bands[band])
5419 err = ieee80211_get_ratemask(wiphy->bands[band],
5422 &request->rates[band]);
5428 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5429 request->flags = nla_get_u32(
5430 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5431 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5432 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5439 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
5441 request->wdev = wdev;
5442 request->wiphy = &rdev->wiphy;
5443 request->scan_start = jiffies;
5445 rdev->scan_req = request;
5446 err = rdev_scan(rdev, request);
5449 nl80211_send_scan_start(rdev, wdev);
5451 dev_hold(wdev->netdev);
5454 rdev->scan_req = NULL;
5462 static int nl80211_start_sched_scan(struct sk_buff *skb,
5463 struct genl_info *info)
5465 struct cfg80211_sched_scan_request *request;
5466 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5467 struct net_device *dev = info->user_ptr[1];
5468 struct nlattr *attr;
5469 struct wiphy *wiphy;
5470 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i;
5472 enum ieee80211_band band;
5474 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
5476 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
5477 !rdev->ops->sched_scan_start)
5480 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5483 if (!info->attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
5486 interval = nla_get_u32(info->attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
5490 wiphy = &rdev->wiphy;
5492 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5493 n_channels = validate_scan_freqs(
5494 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5500 for (band = 0; band < IEEE80211_NUM_BANDS; band++)
5501 if (wiphy->bands[band])
5502 n_channels += wiphy->bands[band]->n_channels;
5505 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5506 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS],
5510 if (n_ssids > wiphy->max_sched_scan_ssids)
5513 if (info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH])
5514 nla_for_each_nested(attr,
5515 info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
5519 if (n_match_sets > wiphy->max_match_sets)
5522 if (info->attrs[NL80211_ATTR_IE])
5523 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5527 if (ie_len > wiphy->max_sched_scan_ie_len)
5530 if (rdev->sched_scan_req) {
5535 request = kzalloc(sizeof(*request)
5536 + sizeof(*request->ssids) * n_ssids
5537 + sizeof(*request->match_sets) * n_match_sets
5538 + sizeof(*request->channels) * n_channels
5539 + ie_len, GFP_KERNEL);
5546 request->ssids = (void *)&request->channels[n_channels];
5547 request->n_ssids = n_ssids;
5550 request->ie = (void *)(request->ssids + n_ssids);
5552 request->ie = (void *)(request->channels + n_channels);
5557 request->match_sets = (void *)(request->ie + ie_len);
5558 else if (request->ssids)
5559 request->match_sets =
5560 (void *)(request->ssids + n_ssids);
5562 request->match_sets =
5563 (void *)(request->channels + n_channels);
5565 request->n_match_sets = n_match_sets;
5568 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5569 /* user specified, bail out if channel not found */
5570 nla_for_each_nested(attr,
5571 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES],
5573 struct ieee80211_channel *chan;
5575 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5582 /* ignore disabled channels */
5583 if (chan->flags & IEEE80211_CHAN_DISABLED)
5586 request->channels[i] = chan;
5591 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5593 if (!wiphy->bands[band])
5595 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5596 struct ieee80211_channel *chan;
5598 chan = &wiphy->bands[band]->channels[j];
5600 if (chan->flags & IEEE80211_CHAN_DISABLED)
5603 request->channels[i] = chan;
5614 request->n_channels = i;
5617 if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
5618 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS],
5620 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5624 request->ssids[i].ssid_len = nla_len(attr);
5625 memcpy(request->ssids[i].ssid, nla_data(attr),
5632 if (info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
5633 nla_for_each_nested(attr,
5634 info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
5636 struct nlattr *ssid, *rssi;
5638 nla_parse(tb, NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
5639 nla_data(attr), nla_len(attr),
5640 nl80211_match_policy);
5641 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
5643 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
5647 memcpy(request->match_sets[i].ssid.ssid,
5648 nla_data(ssid), nla_len(ssid));
5649 request->match_sets[i].ssid.ssid_len =
5652 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
5654 request->rssi_thold = nla_get_u32(rssi);
5656 request->rssi_thold =
5657 NL80211_SCAN_RSSI_THOLD_OFF;
5662 if (info->attrs[NL80211_ATTR_IE]) {
5663 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5664 memcpy((void *)request->ie,
5665 nla_data(info->attrs[NL80211_ATTR_IE]),
5669 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5670 request->flags = nla_get_u32(
5671 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5672 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5673 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5680 request->wiphy = &rdev->wiphy;
5681 request->interval = interval;
5682 request->scan_start = jiffies;
5684 err = rdev_sched_scan_start(rdev, dev, request);
5686 rdev->sched_scan_req = request;
5687 nl80211_send_sched_scan(rdev, dev,
5688 NL80211_CMD_START_SCHED_SCAN);
5698 static int nl80211_stop_sched_scan(struct sk_buff *skb,
5699 struct genl_info *info)
5701 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5703 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
5704 !rdev->ops->sched_scan_stop)
5707 return __cfg80211_stop_sched_scan(rdev, false);
5710 static int nl80211_start_radar_detection(struct sk_buff *skb,
5711 struct genl_info *info)
5713 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5714 struct net_device *dev = info->user_ptr[1];
5715 struct wireless_dev *wdev = dev->ieee80211_ptr;
5716 struct cfg80211_chan_def chandef;
5717 enum nl80211_dfs_regions dfs_region;
5720 dfs_region = reg_get_dfs_region(wdev->wiphy);
5721 if (dfs_region == NL80211_DFS_UNSET)
5724 err = nl80211_parse_chandef(rdev, info, &chandef);
5728 if (netif_carrier_ok(dev))
5731 if (wdev->cac_started)
5734 err = cfg80211_chandef_dfs_required(wdev->wiphy, &chandef);
5741 if (!cfg80211_chandef_dfs_usable(wdev->wiphy, &chandef))
5744 if (!rdev->ops->start_radar_detection)
5747 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
5748 chandef.chan, CHAN_MODE_SHARED,
5749 BIT(chandef.width));
5753 err = rdev->ops->start_radar_detection(&rdev->wiphy, dev, &chandef);
5755 wdev->channel = chandef.chan;
5756 wdev->cac_started = true;
5757 wdev->cac_start_time = jiffies;
5762 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
5764 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5765 struct net_device *dev = info->user_ptr[1];
5766 struct wireless_dev *wdev = dev->ieee80211_ptr;
5767 struct cfg80211_csa_settings params;
5768 /* csa_attrs is defined static to avoid waste of stack size - this
5769 * function is called under RTNL lock, so this should not be a problem.
5771 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
5772 u8 radar_detect_width = 0;
5774 bool need_new_beacon = false;
5776 if (!rdev->ops->channel_switch ||
5777 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
5780 switch (dev->ieee80211_ptr->iftype) {
5781 case NL80211_IFTYPE_AP:
5782 case NL80211_IFTYPE_P2P_GO:
5783 need_new_beacon = true;
5785 /* useless if AP is not running */
5786 if (!wdev->beacon_interval)
5789 case NL80211_IFTYPE_ADHOC:
5790 case NL80211_IFTYPE_MESH_POINT:
5796 memset(¶ms, 0, sizeof(params));
5798 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
5799 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
5802 /* only important for AP, IBSS and mesh create IEs internally */
5803 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
5806 params.count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
5808 if (!need_new_beacon)
5811 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon_after);
5815 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
5816 info->attrs[NL80211_ATTR_CSA_IES],
5821 err = nl80211_parse_beacon(csa_attrs, ¶ms.beacon_csa);
5825 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
5828 params.counter_offset_beacon =
5829 nla_get_u16(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
5830 if (params.counter_offset_beacon >= params.beacon_csa.tail_len)
5833 /* sanity check - counters should be the same */
5834 if (params.beacon_csa.tail[params.counter_offset_beacon] !=
5838 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
5839 params.counter_offset_presp =
5840 nla_get_u16(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
5841 if (params.counter_offset_presp >=
5842 params.beacon_csa.probe_resp_len)
5845 if (params.beacon_csa.probe_resp[params.counter_offset_presp] !=
5851 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
5855 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef))
5858 if (dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP ||
5859 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO ||
5860 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_ADHOC) {
5861 err = cfg80211_chandef_dfs_required(wdev->wiphy,
5866 radar_detect_width = BIT(params.chandef.width);
5867 params.radar_required = true;
5871 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
5872 params.chandef.chan,
5874 radar_detect_width);
5878 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
5879 params.block_tx = true;
5882 err = rdev_channel_switch(rdev, dev, ¶ms);
5888 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
5890 struct cfg80211_registered_device *rdev,
5891 struct wireless_dev *wdev,
5892 struct cfg80211_internal_bss *intbss)
5894 struct cfg80211_bss *res = &intbss->pub;
5895 const struct cfg80211_bss_ies *ies;
5900 ASSERT_WDEV_LOCK(wdev);
5902 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
5903 NL80211_CMD_NEW_SCAN_RESULTS);
5907 genl_dump_check_consistent(cb, hdr, &nl80211_fam);
5909 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
5910 goto nla_put_failure;
5912 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
5913 goto nla_put_failure;
5914 if (nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
5915 goto nla_put_failure;
5917 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
5919 goto nla_put_failure;
5920 if ((!is_zero_ether_addr(res->bssid) &&
5921 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
5922 goto nla_put_failure;
5925 ies = rcu_dereference(res->ies);
5927 if (nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
5928 goto fail_unlock_rcu;
5930 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
5931 ies->len, ies->data))
5932 goto fail_unlock_rcu;
5934 ies = rcu_dereference(res->beacon_ies);
5936 if (!tsf && nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
5937 goto fail_unlock_rcu;
5938 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
5939 ies->len, ies->data))
5940 goto fail_unlock_rcu;
5944 if (res->beacon_interval &&
5945 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
5946 goto nla_put_failure;
5947 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
5948 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
5949 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
5950 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
5951 jiffies_to_msecs(jiffies - intbss->ts)))
5952 goto nla_put_failure;
5954 switch (rdev->wiphy.signal_type) {
5955 case CFG80211_SIGNAL_TYPE_MBM:
5956 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
5957 goto nla_put_failure;
5959 case CFG80211_SIGNAL_TYPE_UNSPEC:
5960 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
5961 goto nla_put_failure;
5967 switch (wdev->iftype) {
5968 case NL80211_IFTYPE_P2P_CLIENT:
5969 case NL80211_IFTYPE_STATION:
5970 if (intbss == wdev->current_bss &&
5971 nla_put_u32(msg, NL80211_BSS_STATUS,
5972 NL80211_BSS_STATUS_ASSOCIATED))
5973 goto nla_put_failure;
5975 case NL80211_IFTYPE_ADHOC:
5976 if (intbss == wdev->current_bss &&
5977 nla_put_u32(msg, NL80211_BSS_STATUS,
5978 NL80211_BSS_STATUS_IBSS_JOINED))
5979 goto nla_put_failure;
5985 nla_nest_end(msg, bss);
5987 return genlmsg_end(msg, hdr);
5992 genlmsg_cancel(msg, hdr);
5996 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
5998 struct cfg80211_registered_device *rdev;
5999 struct cfg80211_internal_bss *scan;
6000 struct wireless_dev *wdev;
6001 int start = cb->args[2], idx = 0;
6004 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
6009 spin_lock_bh(&rdev->bss_lock);
6010 cfg80211_bss_expire(rdev);
6012 cb->seq = rdev->bss_generation;
6014 list_for_each_entry(scan, &rdev->bss_list, list) {
6017 if (nl80211_send_bss(skb, cb,
6018 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6019 rdev, wdev, scan) < 0) {
6025 spin_unlock_bh(&rdev->bss_lock);
6029 nl80211_finish_wdev_dump(rdev);
6034 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
6035 int flags, struct net_device *dev,
6036 struct survey_info *survey)
6039 struct nlattr *infoattr;
6041 hdr = nl80211hdr_put(msg, portid, seq, flags,
6042 NL80211_CMD_NEW_SURVEY_RESULTS);
6046 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
6047 goto nla_put_failure;
6049 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
6051 goto nla_put_failure;
6053 if (nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
6054 survey->channel->center_freq))
6055 goto nla_put_failure;
6057 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
6058 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
6059 goto nla_put_failure;
6060 if ((survey->filled & SURVEY_INFO_IN_USE) &&
6061 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
6062 goto nla_put_failure;
6063 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME) &&
6064 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME,
6065 survey->channel_time))
6066 goto nla_put_failure;
6067 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_BUSY) &&
6068 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_BUSY,
6069 survey->channel_time_busy))
6070 goto nla_put_failure;
6071 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_EXT_BUSY) &&
6072 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_EXT_BUSY,
6073 survey->channel_time_ext_busy))
6074 goto nla_put_failure;
6075 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_RX) &&
6076 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_RX,
6077 survey->channel_time_rx))
6078 goto nla_put_failure;
6079 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_TX) &&
6080 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_TX,
6081 survey->channel_time_tx))
6082 goto nla_put_failure;
6084 nla_nest_end(msg, infoattr);
6086 return genlmsg_end(msg, hdr);
6089 genlmsg_cancel(msg, hdr);
6093 static int nl80211_dump_survey(struct sk_buff *skb,
6094 struct netlink_callback *cb)
6096 struct survey_info survey;
6097 struct cfg80211_registered_device *dev;
6098 struct wireless_dev *wdev;
6099 int survey_idx = cb->args[2];
6102 res = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
6106 if (!wdev->netdev) {
6111 if (!dev->ops->dump_survey) {
6117 struct ieee80211_channel *chan;
6119 res = rdev_dump_survey(dev, wdev->netdev, survey_idx, &survey);
6125 /* Survey without a channel doesn't make sense */
6126 if (!survey.channel) {
6131 chan = ieee80211_get_channel(&dev->wiphy,
6132 survey.channel->center_freq);
6133 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED) {
6138 if (nl80211_send_survey(skb,
6139 NETLINK_CB(cb->skb).portid,
6140 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6141 wdev->netdev, &survey) < 0)
6147 cb->args[2] = survey_idx;
6150 nl80211_finish_wdev_dump(dev);
6154 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
6156 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
6157 NL80211_WPA_VERSION_2));
6160 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
6162 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6163 struct net_device *dev = info->user_ptr[1];
6164 struct ieee80211_channel *chan;
6165 const u8 *bssid, *ssid, *ie = NULL, *sae_data = NULL;
6166 int err, ssid_len, ie_len = 0, sae_data_len = 0;
6167 enum nl80211_auth_type auth_type;
6168 struct key_parse key;
6169 bool local_state_change;
6171 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6174 if (!info->attrs[NL80211_ATTR_MAC])
6177 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
6180 if (!info->attrs[NL80211_ATTR_SSID])
6183 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
6186 err = nl80211_parse_key(info, &key);
6191 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
6193 if (!key.p.key || !key.p.key_len)
6195 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
6196 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
6197 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
6198 key.p.key_len != WLAN_KEY_LEN_WEP104))
6210 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
6211 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
6220 if (!rdev->ops->auth)
6223 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6224 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6227 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6228 chan = ieee80211_get_channel(&rdev->wiphy,
6229 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
6230 if (!chan || (chan->flags & IEEE80211_CHAN_DISABLED))
6233 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6234 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6236 if (info->attrs[NL80211_ATTR_IE]) {
6237 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6238 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6241 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6242 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
6245 if (auth_type == NL80211_AUTHTYPE_SAE &&
6246 !info->attrs[NL80211_ATTR_SAE_DATA])
6249 if (info->attrs[NL80211_ATTR_SAE_DATA]) {
6250 if (auth_type != NL80211_AUTHTYPE_SAE)
6252 sae_data = nla_data(info->attrs[NL80211_ATTR_SAE_DATA]);
6253 sae_data_len = nla_len(info->attrs[NL80211_ATTR_SAE_DATA]);
6254 /* need to include at least Auth Transaction and Status Code */
6255 if (sae_data_len < 4)
6259 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6262 * Since we no longer track auth state, ignore
6263 * requests to only change local state.
6265 if (local_state_change)
6268 wdev_lock(dev->ieee80211_ptr);
6269 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
6270 ssid, ssid_len, ie, ie_len,
6271 key.p.key, key.p.key_len, key.idx,
6272 sae_data, sae_data_len);
6273 wdev_unlock(dev->ieee80211_ptr);
6277 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
6278 struct genl_info *info,
6279 struct cfg80211_crypto_settings *settings,
6282 memset(settings, 0, sizeof(*settings));
6284 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
6286 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
6288 proto = nla_get_u16(
6289 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
6290 settings->control_port_ethertype = cpu_to_be16(proto);
6291 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
6294 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
6295 settings->control_port_no_encrypt = true;
6297 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
6299 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
6303 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6304 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6305 settings->n_ciphers_pairwise = len / sizeof(u32);
6307 if (len % sizeof(u32))
6310 if (settings->n_ciphers_pairwise > cipher_limit)
6313 memcpy(settings->ciphers_pairwise, data, len);
6315 for (i = 0; i < settings->n_ciphers_pairwise; i++)
6316 if (!cfg80211_supported_cipher_suite(
6318 settings->ciphers_pairwise[i]))
6322 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
6323 settings->cipher_group =
6324 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
6325 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
6326 settings->cipher_group))
6330 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
6331 settings->wpa_versions =
6332 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
6333 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
6337 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
6341 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
6342 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
6343 settings->n_akm_suites = len / sizeof(u32);
6345 if (len % sizeof(u32))
6348 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
6351 memcpy(settings->akm_suites, data, len);
6357 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
6359 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6360 struct net_device *dev = info->user_ptr[1];
6361 struct ieee80211_channel *chan;
6362 struct cfg80211_assoc_request req = {};
6363 const u8 *bssid, *ssid;
6364 int err, ssid_len = 0;
6366 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6369 if (!info->attrs[NL80211_ATTR_MAC] ||
6370 !info->attrs[NL80211_ATTR_SSID] ||
6371 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
6374 if (!rdev->ops->assoc)
6377 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6378 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6381 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6383 chan = ieee80211_get_channel(&rdev->wiphy,
6384 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
6385 if (!chan || (chan->flags & IEEE80211_CHAN_DISABLED))
6388 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6389 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6391 if (info->attrs[NL80211_ATTR_IE]) {
6392 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6393 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6396 if (info->attrs[NL80211_ATTR_USE_MFP]) {
6397 enum nl80211_mfp mfp =
6398 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
6399 if (mfp == NL80211_MFP_REQUIRED)
6401 else if (mfp != NL80211_MFP_NO)
6405 if (info->attrs[NL80211_ATTR_PREV_BSSID])
6406 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
6408 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
6409 req.flags |= ASSOC_REQ_DISABLE_HT;
6411 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6412 memcpy(&req.ht_capa_mask,
6413 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
6414 sizeof(req.ht_capa_mask));
6416 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
6417 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6419 memcpy(&req.ht_capa,
6420 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
6421 sizeof(req.ht_capa));
6424 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
6425 req.flags |= ASSOC_REQ_DISABLE_VHT;
6427 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
6428 memcpy(&req.vht_capa_mask,
6429 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
6430 sizeof(req.vht_capa_mask));
6432 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
6433 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
6435 memcpy(&req.vht_capa,
6436 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
6437 sizeof(req.vht_capa));
6440 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
6442 wdev_lock(dev->ieee80211_ptr);
6443 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
6444 ssid, ssid_len, &req);
6445 wdev_unlock(dev->ieee80211_ptr);
6451 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
6453 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6454 struct net_device *dev = info->user_ptr[1];
6455 const u8 *ie = NULL, *bssid;
6456 int ie_len = 0, err;
6458 bool local_state_change;
6460 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6463 if (!info->attrs[NL80211_ATTR_MAC])
6466 if (!info->attrs[NL80211_ATTR_REASON_CODE])
6469 if (!rdev->ops->deauth)
6472 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6473 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6476 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6478 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
6479 if (reason_code == 0) {
6480 /* Reason Code 0 is reserved */
6484 if (info->attrs[NL80211_ATTR_IE]) {
6485 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6486 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6489 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6491 wdev_lock(dev->ieee80211_ptr);
6492 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
6493 local_state_change);
6494 wdev_unlock(dev->ieee80211_ptr);
6498 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
6500 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6501 struct net_device *dev = info->user_ptr[1];
6502 const u8 *ie = NULL, *bssid;
6503 int ie_len = 0, err;
6505 bool local_state_change;
6507 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6510 if (!info->attrs[NL80211_ATTR_MAC])
6513 if (!info->attrs[NL80211_ATTR_REASON_CODE])
6516 if (!rdev->ops->disassoc)
6519 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6520 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6523 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6525 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
6526 if (reason_code == 0) {
6527 /* Reason Code 0 is reserved */
6531 if (info->attrs[NL80211_ATTR_IE]) {
6532 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6533 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6536 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6538 wdev_lock(dev->ieee80211_ptr);
6539 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
6540 local_state_change);
6541 wdev_unlock(dev->ieee80211_ptr);
6546 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
6547 int mcast_rate[IEEE80211_NUM_BANDS],
6550 struct wiphy *wiphy = &rdev->wiphy;
6554 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
6555 struct ieee80211_supported_band *sband;
6557 sband = wiphy->bands[band];
6561 for (i = 0; i < sband->n_bitrates; i++) {
6562 if (sband->bitrates[i].bitrate == rateval) {
6563 mcast_rate[band] = i + 1;
6573 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
6575 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6576 struct net_device *dev = info->user_ptr[1];
6577 struct cfg80211_ibss_params ibss;
6578 struct wiphy *wiphy;
6579 struct cfg80211_cached_keys *connkeys = NULL;
6582 memset(&ibss, 0, sizeof(ibss));
6584 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6587 if (!info->attrs[NL80211_ATTR_SSID] ||
6588 !nla_len(info->attrs[NL80211_ATTR_SSID]))
6591 ibss.beacon_interval = 100;
6593 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
6594 ibss.beacon_interval =
6595 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
6596 if (ibss.beacon_interval < 1 || ibss.beacon_interval > 10000)
6600 if (!rdev->ops->join_ibss)
6603 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
6606 wiphy = &rdev->wiphy;
6608 if (info->attrs[NL80211_ATTR_MAC]) {
6609 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6611 if (!is_valid_ether_addr(ibss.bssid))
6614 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6615 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6617 if (info->attrs[NL80211_ATTR_IE]) {
6618 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6619 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6622 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
6626 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef))
6629 switch (ibss.chandef.width) {
6630 case NL80211_CHAN_WIDTH_5:
6631 case NL80211_CHAN_WIDTH_10:
6632 case NL80211_CHAN_WIDTH_20_NOHT:
6634 case NL80211_CHAN_WIDTH_20:
6635 case NL80211_CHAN_WIDTH_40:
6636 if (rdev->wiphy.features & NL80211_FEATURE_HT_IBSS)
6642 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
6643 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
6645 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6647 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6649 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6650 struct ieee80211_supported_band *sband =
6651 wiphy->bands[ibss.chandef.chan->band];
6653 err = ieee80211_get_ratemask(sband, rates, n_rates,
6659 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6660 memcpy(&ibss.ht_capa_mask,
6661 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
6662 sizeof(ibss.ht_capa_mask));
6664 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
6665 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6667 memcpy(&ibss.ht_capa,
6668 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
6669 sizeof(ibss.ht_capa));
6672 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
6673 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
6674 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
6677 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
6680 connkeys = nl80211_parse_connkeys(rdev,
6681 info->attrs[NL80211_ATTR_KEYS],
6683 if (IS_ERR(connkeys))
6684 return PTR_ERR(connkeys);
6686 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
6694 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
6696 ibss.userspace_handles_dfs =
6697 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
6699 err = cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
6705 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
6707 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6708 struct net_device *dev = info->user_ptr[1];
6710 if (!rdev->ops->leave_ibss)
6713 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
6716 return cfg80211_leave_ibss(rdev, dev, false);
6719 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
6721 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6722 struct net_device *dev = info->user_ptr[1];
6723 int mcast_rate[IEEE80211_NUM_BANDS];
6727 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
6728 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6731 if (!rdev->ops->set_mcast_rate)
6734 memset(mcast_rate, 0, sizeof(mcast_rate));
6736 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
6739 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
6740 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
6743 err = rdev->ops->set_mcast_rate(&rdev->wiphy, dev, mcast_rate);
6748 static struct sk_buff *
6749 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
6750 int approxlen, u32 portid, u32 seq,
6751 enum nl80211_commands cmd,
6752 enum nl80211_attrs attr,
6753 const struct nl80211_vendor_cmd_info *info,
6756 struct sk_buff *skb;
6758 struct nlattr *data;
6760 skb = nlmsg_new(approxlen + 100, gfp);
6764 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
6770 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
6771 goto nla_put_failure;
6774 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
6776 goto nla_put_failure;
6777 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
6779 goto nla_put_failure;
6782 data = nla_nest_start(skb, attr);
6784 ((void **)skb->cb)[0] = rdev;
6785 ((void **)skb->cb)[1] = hdr;
6786 ((void **)skb->cb)[2] = data;
6795 #ifdef CONFIG_NL80211_TESTMODE
6796 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
6798 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6799 struct wireless_dev *wdev =
6800 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
6803 if (!rdev->ops->testmode_cmd)
6807 err = PTR_ERR(wdev);
6811 } else if (wdev->wiphy != &rdev->wiphy) {
6815 if (!info->attrs[NL80211_ATTR_TESTDATA])
6818 rdev->cur_cmd_info = info;
6819 err = rdev_testmode_cmd(rdev, wdev,
6820 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
6821 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
6822 rdev->cur_cmd_info = NULL;
6827 static int nl80211_testmode_dump(struct sk_buff *skb,
6828 struct netlink_callback *cb)
6830 struct cfg80211_registered_device *rdev;
6840 * 0 is a valid index, but not valid for args[0],
6841 * so we need to offset by 1.
6843 phy_idx = cb->args[0] - 1;
6845 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
6846 nl80211_fam.attrbuf, nl80211_fam.maxattr,
6851 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk),
6852 nl80211_fam.attrbuf);
6854 err = PTR_ERR(rdev);
6857 phy_idx = rdev->wiphy_idx;
6860 if (nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA])
6862 (long)nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA];
6866 data = nla_data((void *)cb->args[1]);
6867 data_len = nla_len((void *)cb->args[1]);
6870 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
6876 if (!rdev->ops->testmode_dump) {
6882 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
6883 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6884 NL80211_CMD_TESTMODE);
6885 struct nlattr *tmdata;
6890 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
6891 genlmsg_cancel(skb, hdr);
6895 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
6897 genlmsg_cancel(skb, hdr);
6900 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
6901 nla_nest_end(skb, tmdata);
6903 if (err == -ENOBUFS || err == -ENOENT) {
6904 genlmsg_cancel(skb, hdr);
6907 genlmsg_cancel(skb, hdr);
6911 genlmsg_end(skb, hdr);
6916 cb->args[0] = phy_idx + 1;
6922 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
6923 enum nl80211_commands cmd,
6924 enum nl80211_attrs attr,
6925 int vendor_event_idx,
6926 int approxlen, gfp_t gfp)
6928 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
6929 const struct nl80211_vendor_cmd_info *info;
6932 case NL80211_CMD_TESTMODE:
6933 if (WARN_ON(vendor_event_idx != -1))
6937 case NL80211_CMD_VENDOR:
6938 if (WARN_ON(vendor_event_idx < 0 ||
6939 vendor_event_idx >= wiphy->n_vendor_events))
6941 info = &wiphy->vendor_events[vendor_event_idx];
6948 return __cfg80211_alloc_vendor_skb(rdev, approxlen, 0, 0,
6949 cmd, attr, info, gfp);
6951 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
6953 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
6955 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
6956 void *hdr = ((void **)skb->cb)[1];
6957 struct nlattr *data = ((void **)skb->cb)[2];
6958 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
6960 nla_nest_end(skb, data);
6961 genlmsg_end(skb, hdr);
6963 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
6964 mcgrp = NL80211_MCGRP_VENDOR;
6966 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), skb, 0,
6969 EXPORT_SYMBOL(__cfg80211_send_event_skb);
6972 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
6974 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6975 struct net_device *dev = info->user_ptr[1];
6976 struct cfg80211_connect_params connect;
6977 struct wiphy *wiphy;
6978 struct cfg80211_cached_keys *connkeys = NULL;
6981 memset(&connect, 0, sizeof(connect));
6983 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6986 if (!info->attrs[NL80211_ATTR_SSID] ||
6987 !nla_len(info->attrs[NL80211_ATTR_SSID]))
6990 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
6992 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6993 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
6994 NL80211_CMD_CONNECT))
6997 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
6999 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
7001 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
7002 NL80211_MAX_NR_CIPHER_SUITES);
7006 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7007 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7010 wiphy = &rdev->wiphy;
7012 connect.bg_scan_period = -1;
7013 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
7014 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
7015 connect.bg_scan_period =
7016 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
7019 if (info->attrs[NL80211_ATTR_MAC])
7020 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7021 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
7022 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
7024 if (info->attrs[NL80211_ATTR_IE]) {
7025 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7026 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7029 if (info->attrs[NL80211_ATTR_USE_MFP]) {
7030 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
7031 if (connect.mfp != NL80211_MFP_REQUIRED &&
7032 connect.mfp != NL80211_MFP_NO)
7035 connect.mfp = NL80211_MFP_NO;
7038 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7040 ieee80211_get_channel(wiphy,
7041 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
7042 if (!connect.channel ||
7043 connect.channel->flags & IEEE80211_CHAN_DISABLED)
7047 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
7048 connkeys = nl80211_parse_connkeys(rdev,
7049 info->attrs[NL80211_ATTR_KEYS], NULL);
7050 if (IS_ERR(connkeys))
7051 return PTR_ERR(connkeys);
7054 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
7055 connect.flags |= ASSOC_REQ_DISABLE_HT;
7057 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7058 memcpy(&connect.ht_capa_mask,
7059 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7060 sizeof(connect.ht_capa_mask));
7062 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7063 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
7067 memcpy(&connect.ht_capa,
7068 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7069 sizeof(connect.ht_capa));
7072 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
7073 connect.flags |= ASSOC_REQ_DISABLE_VHT;
7075 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7076 memcpy(&connect.vht_capa_mask,
7077 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
7078 sizeof(connect.vht_capa_mask));
7080 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
7081 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
7085 memcpy(&connect.vht_capa,
7086 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
7087 sizeof(connect.vht_capa));
7090 wdev_lock(dev->ieee80211_ptr);
7091 err = cfg80211_connect(rdev, dev, &connect, connkeys, NULL);
7092 wdev_unlock(dev->ieee80211_ptr);
7098 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
7100 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7101 struct net_device *dev = info->user_ptr[1];
7105 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7106 reason = WLAN_REASON_DEAUTH_LEAVING;
7108 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7113 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7114 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7117 wdev_lock(dev->ieee80211_ptr);
7118 ret = cfg80211_disconnect(rdev, dev, reason, true);
7119 wdev_unlock(dev->ieee80211_ptr);
7123 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
7125 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7130 if (!info->attrs[NL80211_ATTR_PID])
7133 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
7135 net = get_net_ns_by_pid(pid);
7137 return PTR_ERR(net);
7141 /* check if anything to do */
7142 if (!net_eq(wiphy_net(&rdev->wiphy), net))
7143 err = cfg80211_switch_netns(rdev, net);
7149 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
7151 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7152 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
7153 struct cfg80211_pmksa *pmksa) = NULL;
7154 struct net_device *dev = info->user_ptr[1];
7155 struct cfg80211_pmksa pmksa;
7157 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
7159 if (!info->attrs[NL80211_ATTR_MAC])
7162 if (!info->attrs[NL80211_ATTR_PMKID])
7165 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
7166 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7168 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7169 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7172 switch (info->genlhdr->cmd) {
7173 case NL80211_CMD_SET_PMKSA:
7174 rdev_ops = rdev->ops->set_pmksa;
7176 case NL80211_CMD_DEL_PMKSA:
7177 rdev_ops = rdev->ops->del_pmksa;
7187 return rdev_ops(&rdev->wiphy, dev, &pmksa);
7190 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
7192 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7193 struct net_device *dev = info->user_ptr[1];
7195 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7196 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7199 if (!rdev->ops->flush_pmksa)
7202 return rdev_flush_pmksa(rdev, dev);
7205 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
7207 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7208 struct net_device *dev = info->user_ptr[1];
7209 u8 action_code, dialog_token;
7213 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7214 !rdev->ops->tdls_mgmt)
7217 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
7218 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
7219 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
7220 !info->attrs[NL80211_ATTR_IE] ||
7221 !info->attrs[NL80211_ATTR_MAC])
7224 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7225 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
7226 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
7227 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
7229 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
7230 dialog_token, status_code,
7231 nla_data(info->attrs[NL80211_ATTR_IE]),
7232 nla_len(info->attrs[NL80211_ATTR_IE]));
7235 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
7237 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7238 struct net_device *dev = info->user_ptr[1];
7239 enum nl80211_tdls_operation operation;
7242 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7243 !rdev->ops->tdls_oper)
7246 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
7247 !info->attrs[NL80211_ATTR_MAC])
7250 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
7251 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7253 return rdev_tdls_oper(rdev, dev, peer, operation);
7256 static int nl80211_remain_on_channel(struct sk_buff *skb,
7257 struct genl_info *info)
7259 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7260 struct wireless_dev *wdev = info->user_ptr[1];
7261 struct cfg80211_chan_def chandef;
7262 struct sk_buff *msg;
7268 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
7269 !info->attrs[NL80211_ATTR_DURATION])
7272 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7274 if (!rdev->ops->remain_on_channel ||
7275 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
7279 * We should be on that channel for at least a minimum amount of
7280 * time (10ms) but no longer than the driver supports.
7282 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7283 duration > rdev->wiphy.max_remain_on_channel_duration)
7286 err = nl80211_parse_chandef(rdev, info, &chandef);
7290 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7294 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7295 NL80211_CMD_REMAIN_ON_CHANNEL);
7301 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
7307 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
7308 goto nla_put_failure;
7310 genlmsg_end(msg, hdr);
7312 return genlmsg_reply(msg, info);
7321 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
7322 struct genl_info *info)
7324 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7325 struct wireless_dev *wdev = info->user_ptr[1];
7328 if (!info->attrs[NL80211_ATTR_COOKIE])
7331 if (!rdev->ops->cancel_remain_on_channel)
7334 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7336 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
7339 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
7340 u8 *rates, u8 rates_len)
7345 for (i = 0; i < rates_len; i++) {
7346 int rate = (rates[i] & 0x7f) * 5;
7348 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
7349 struct ieee80211_rate *srate =
7350 &sband->bitrates[ridx];
7351 if (rate == srate->bitrate) {
7356 if (ridx == sband->n_bitrates)
7357 return 0; /* rate not found */
7363 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
7364 u8 *rates, u8 rates_len,
7365 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
7369 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
7371 for (i = 0; i < rates_len; i++) {
7374 ridx = rates[i] / 8;
7375 rbit = BIT(rates[i] % 8);
7377 /* check validity */
7378 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
7381 /* check availability */
7382 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
7391 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
7395 switch (vht_mcs_map) {
7396 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
7398 case IEEE80211_VHT_MCS_SUPPORT_0_7:
7401 case IEEE80211_VHT_MCS_SUPPORT_0_8:
7404 case IEEE80211_VHT_MCS_SUPPORT_0_9:
7414 static void vht_build_mcs_mask(u16 vht_mcs_map,
7415 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
7419 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
7420 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
7425 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
7426 struct nl80211_txrate_vht *txrate,
7427 u16 mcs[NL80211_VHT_NSS_MAX])
7429 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
7430 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
7433 if (!sband->vht_cap.vht_supported)
7436 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
7438 /* Build vht_mcs_mask from VHT capabilities */
7439 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
7441 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
7442 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
7443 mcs[i] = txrate->mcs[i];
7451 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
7452 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
7453 .len = NL80211_MAX_SUPP_RATES },
7454 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
7455 .len = NL80211_MAX_SUPP_HT_RATES },
7456 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
7459 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
7460 struct genl_info *info)
7462 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
7463 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7464 struct cfg80211_bitrate_mask mask;
7466 struct net_device *dev = info->user_ptr[1];
7467 struct nlattr *tx_rates;
7468 struct ieee80211_supported_band *sband;
7471 if (!rdev->ops->set_bitrate_mask)
7474 memset(&mask, 0, sizeof(mask));
7475 /* Default to all rates enabled */
7476 for (i = 0; i < IEEE80211_NUM_BANDS; i++) {
7477 sband = rdev->wiphy.bands[i];
7482 mask.control[i].legacy = (1 << sband->n_bitrates) - 1;
7483 memcpy(mask.control[i].ht_mcs,
7484 sband->ht_cap.mcs.rx_mask,
7485 sizeof(mask.control[i].ht_mcs));
7487 if (!sband->vht_cap.vht_supported)
7490 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
7491 vht_build_mcs_mask(vht_tx_mcs_map, mask.control[i].vht_mcs);
7494 /* if no rates are given set it back to the defaults */
7495 if (!info->attrs[NL80211_ATTR_TX_RATES])
7499 * The nested attribute uses enum nl80211_band as the index. This maps
7500 * directly to the enum ieee80211_band values used in cfg80211.
7502 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
7503 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem)
7505 enum ieee80211_band band = nla_type(tx_rates);
7506 if (band < 0 || band >= IEEE80211_NUM_BANDS)
7508 sband = rdev->wiphy.bands[band];
7511 nla_parse(tb, NL80211_TXRATE_MAX, nla_data(tx_rates),
7512 nla_len(tx_rates), nl80211_txattr_policy);
7513 if (tb[NL80211_TXRATE_LEGACY]) {
7514 mask.control[band].legacy = rateset_to_mask(
7516 nla_data(tb[NL80211_TXRATE_LEGACY]),
7517 nla_len(tb[NL80211_TXRATE_LEGACY]));
7518 if ((mask.control[band].legacy == 0) &&
7519 nla_len(tb[NL80211_TXRATE_LEGACY]))
7522 if (tb[NL80211_TXRATE_HT]) {
7523 if (!ht_rateset_to_mask(
7525 nla_data(tb[NL80211_TXRATE_HT]),
7526 nla_len(tb[NL80211_TXRATE_HT]),
7527 mask.control[band].ht_mcs))
7530 if (tb[NL80211_TXRATE_VHT]) {
7531 if (!vht_set_mcs_mask(
7533 nla_data(tb[NL80211_TXRATE_VHT]),
7534 mask.control[band].vht_mcs))
7538 if (mask.control[band].legacy == 0) {
7539 /* don't allow empty legacy rates if HT or VHT
7540 * are not even supported.
7542 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
7543 rdev->wiphy.bands[band]->vht_cap.vht_supported))
7546 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
7547 if (mask.control[band].ht_mcs[i])
7550 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
7551 if (mask.control[band].vht_mcs[i])
7554 /* legacy and mcs rates may not be both empty */
7560 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
7563 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
7565 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7566 struct wireless_dev *wdev = info->user_ptr[1];
7567 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
7569 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
7572 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
7573 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
7575 switch (wdev->iftype) {
7576 case NL80211_IFTYPE_STATION:
7577 case NL80211_IFTYPE_ADHOC:
7578 case NL80211_IFTYPE_P2P_CLIENT:
7579 case NL80211_IFTYPE_AP:
7580 case NL80211_IFTYPE_AP_VLAN:
7581 case NL80211_IFTYPE_MESH_POINT:
7582 case NL80211_IFTYPE_P2P_GO:
7583 case NL80211_IFTYPE_P2P_DEVICE:
7589 /* not much point in registering if we can't reply */
7590 if (!rdev->ops->mgmt_tx)
7593 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
7594 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
7595 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
7598 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
7600 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7601 struct wireless_dev *wdev = info->user_ptr[1];
7602 struct cfg80211_chan_def chandef;
7606 struct sk_buff *msg = NULL;
7607 struct cfg80211_mgmt_tx_params params = {
7608 .dont_wait_for_ack =
7609 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
7612 if (!info->attrs[NL80211_ATTR_FRAME])
7615 if (!rdev->ops->mgmt_tx)
7618 switch (wdev->iftype) {
7619 case NL80211_IFTYPE_P2P_DEVICE:
7620 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
7622 case NL80211_IFTYPE_STATION:
7623 case NL80211_IFTYPE_ADHOC:
7624 case NL80211_IFTYPE_P2P_CLIENT:
7625 case NL80211_IFTYPE_AP:
7626 case NL80211_IFTYPE_AP_VLAN:
7627 case NL80211_IFTYPE_MESH_POINT:
7628 case NL80211_IFTYPE_P2P_GO:
7634 if (info->attrs[NL80211_ATTR_DURATION]) {
7635 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
7637 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7640 * We should wait on the channel for at least a minimum amount
7641 * of time (10ms) but no longer than the driver supports.
7643 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7644 params.wait > rdev->wiphy.max_remain_on_channel_duration)
7649 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
7651 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
7654 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7656 /* get the channel if any has been specified, otherwise pass NULL to
7657 * the driver. The latter will use the current one
7659 chandef.chan = NULL;
7660 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7661 err = nl80211_parse_chandef(rdev, info, &chandef);
7666 if (!chandef.chan && params.offchan)
7669 if (!params.dont_wait_for_ack) {
7670 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7674 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7682 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
7683 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
7684 params.chan = chandef.chan;
7685 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
7690 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
7691 goto nla_put_failure;
7693 genlmsg_end(msg, hdr);
7694 return genlmsg_reply(msg, info);
7706 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
7708 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7709 struct wireless_dev *wdev = info->user_ptr[1];
7712 if (!info->attrs[NL80211_ATTR_COOKIE])
7715 if (!rdev->ops->mgmt_tx_cancel_wait)
7718 switch (wdev->iftype) {
7719 case NL80211_IFTYPE_STATION:
7720 case NL80211_IFTYPE_ADHOC:
7721 case NL80211_IFTYPE_P2P_CLIENT:
7722 case NL80211_IFTYPE_AP:
7723 case NL80211_IFTYPE_AP_VLAN:
7724 case NL80211_IFTYPE_P2P_GO:
7725 case NL80211_IFTYPE_P2P_DEVICE:
7731 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7733 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
7736 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
7738 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7739 struct wireless_dev *wdev;
7740 struct net_device *dev = info->user_ptr[1];
7745 if (!info->attrs[NL80211_ATTR_PS_STATE])
7748 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
7750 if (ps_state != NL80211_PS_DISABLED && ps_state != NL80211_PS_ENABLED)
7753 wdev = dev->ieee80211_ptr;
7755 if (!rdev->ops->set_power_mgmt)
7758 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
7760 if (state == wdev->ps)
7763 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
7769 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
7771 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7772 enum nl80211_ps_state ps_state;
7773 struct wireless_dev *wdev;
7774 struct net_device *dev = info->user_ptr[1];
7775 struct sk_buff *msg;
7779 wdev = dev->ieee80211_ptr;
7781 if (!rdev->ops->set_power_mgmt)
7784 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7788 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7789 NL80211_CMD_GET_POWER_SAVE);
7796 ps_state = NL80211_PS_ENABLED;
7798 ps_state = NL80211_PS_DISABLED;
7800 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
7801 goto nla_put_failure;
7803 genlmsg_end(msg, hdr);
7804 return genlmsg_reply(msg, info);
7813 static struct nla_policy
7814 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] __read_mostly = {
7815 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_U32 },
7816 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
7817 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
7818 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
7819 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
7820 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
7823 static int nl80211_set_cqm_txe(struct genl_info *info,
7824 u32 rate, u32 pkts, u32 intvl)
7826 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7827 struct net_device *dev = info->user_ptr[1];
7828 struct wireless_dev *wdev = dev->ieee80211_ptr;
7830 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
7833 if (!rdev->ops->set_cqm_txe_config)
7836 if (wdev->iftype != NL80211_IFTYPE_STATION &&
7837 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
7840 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
7843 static int nl80211_set_cqm_rssi(struct genl_info *info,
7844 s32 threshold, u32 hysteresis)
7846 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7847 struct net_device *dev = info->user_ptr[1];
7848 struct wireless_dev *wdev = dev->ieee80211_ptr;
7853 /* disabling - hysteresis should also be zero then */
7857 if (!rdev->ops->set_cqm_rssi_config)
7860 if (wdev->iftype != NL80211_IFTYPE_STATION &&
7861 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
7864 return rdev_set_cqm_rssi_config(rdev, dev, threshold, hysteresis);
7867 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
7869 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
7873 cqm = info->attrs[NL80211_ATTR_CQM];
7877 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
7878 nl80211_attr_cqm_policy);
7882 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
7883 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
7884 s32 threshold = nla_get_s32(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
7885 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
7887 return nl80211_set_cqm_rssi(info, threshold, hysteresis);
7890 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
7891 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
7892 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
7893 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
7894 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
7895 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
7897 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
7903 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
7905 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7906 struct net_device *dev = info->user_ptr[1];
7907 struct mesh_config cfg;
7908 struct mesh_setup setup;
7911 /* start with default */
7912 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
7913 memcpy(&setup, &default_mesh_setup, sizeof(setup));
7915 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
7916 /* and parse parameters if given */
7917 err = nl80211_parse_mesh_config(info, &cfg, NULL);
7922 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
7923 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
7926 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
7927 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
7929 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
7930 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
7931 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
7934 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
7935 setup.beacon_interval =
7936 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
7937 if (setup.beacon_interval < 10 ||
7938 setup.beacon_interval > 10000)
7942 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
7944 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
7945 if (setup.dtim_period < 1 || setup.dtim_period > 100)
7949 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
7950 /* parse additional setup parameters if given */
7951 err = nl80211_parse_mesh_setup(info, &setup);
7957 cfg.auto_open_plinks = false;
7959 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7960 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
7964 /* cfg80211_join_mesh() will sort it out */
7965 setup.chandef.chan = NULL;
7968 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
7969 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7971 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7972 struct ieee80211_supported_band *sband;
7974 if (!setup.chandef.chan)
7977 sband = rdev->wiphy.bands[setup.chandef.chan->band];
7979 err = ieee80211_get_ratemask(sband, rates, n_rates,
7980 &setup.basic_rates);
7985 return cfg80211_join_mesh(rdev, dev, &setup, &cfg);
7988 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
7990 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7991 struct net_device *dev = info->user_ptr[1];
7993 return cfg80211_leave_mesh(rdev, dev);
7997 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
7998 struct cfg80211_registered_device *rdev)
8000 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
8001 struct nlattr *nl_pats, *nl_pat;
8004 if (!wowlan->n_patterns)
8007 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
8011 for (i = 0; i < wowlan->n_patterns; i++) {
8012 nl_pat = nla_nest_start(msg, i + 1);
8015 pat_len = wowlan->patterns[i].pattern_len;
8016 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
8017 wowlan->patterns[i].mask) ||
8018 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
8019 wowlan->patterns[i].pattern) ||
8020 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
8021 wowlan->patterns[i].pkt_offset))
8023 nla_nest_end(msg, nl_pat);
8025 nla_nest_end(msg, nl_pats);
8030 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
8031 struct cfg80211_wowlan_tcp *tcp)
8033 struct nlattr *nl_tcp;
8038 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
8042 if (nla_put_be32(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
8043 nla_put_be32(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
8044 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
8045 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
8046 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
8047 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
8048 tcp->payload_len, tcp->payload) ||
8049 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
8050 tcp->data_interval) ||
8051 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
8052 tcp->wake_len, tcp->wake_data) ||
8053 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
8054 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
8057 if (tcp->payload_seq.len &&
8058 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
8059 sizeof(tcp->payload_seq), &tcp->payload_seq))
8062 if (tcp->payload_tok.len &&
8063 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
8064 sizeof(tcp->payload_tok) + tcp->tokens_size,
8068 nla_nest_end(msg, nl_tcp);
8073 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
8075 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8076 struct sk_buff *msg;
8078 u32 size = NLMSG_DEFAULT_SIZE;
8080 if (!rdev->wiphy.wowlan)
8083 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
8084 /* adjust size to have room for all the data */
8085 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
8086 rdev->wiphy.wowlan_config->tcp->payload_len +
8087 rdev->wiphy.wowlan_config->tcp->wake_len +
8088 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
8091 msg = nlmsg_new(size, GFP_KERNEL);
8095 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8096 NL80211_CMD_GET_WOWLAN);
8098 goto nla_put_failure;
8100 if (rdev->wiphy.wowlan_config) {
8101 struct nlattr *nl_wowlan;
8103 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
8105 goto nla_put_failure;
8107 if ((rdev->wiphy.wowlan_config->any &&
8108 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
8109 (rdev->wiphy.wowlan_config->disconnect &&
8110 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
8111 (rdev->wiphy.wowlan_config->magic_pkt &&
8112 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
8113 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
8114 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
8115 (rdev->wiphy.wowlan_config->eap_identity_req &&
8116 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
8117 (rdev->wiphy.wowlan_config->four_way_handshake &&
8118 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
8119 (rdev->wiphy.wowlan_config->rfkill_release &&
8120 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
8121 goto nla_put_failure;
8123 if (nl80211_send_wowlan_patterns(msg, rdev))
8124 goto nla_put_failure;
8126 if (nl80211_send_wowlan_tcp(msg,
8127 rdev->wiphy.wowlan_config->tcp))
8128 goto nla_put_failure;
8130 nla_nest_end(msg, nl_wowlan);
8133 genlmsg_end(msg, hdr);
8134 return genlmsg_reply(msg, info);
8141 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
8142 struct nlattr *attr,
8143 struct cfg80211_wowlan *trig)
8145 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
8146 struct cfg80211_wowlan_tcp *cfg;
8147 struct nl80211_wowlan_tcp_data_token *tok = NULL;
8148 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
8150 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
8153 if (!rdev->wiphy.wowlan->tcp)
8156 err = nla_parse(tb, MAX_NL80211_WOWLAN_TCP,
8157 nla_data(attr), nla_len(attr),
8158 nl80211_wowlan_tcp_policy);
8162 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
8163 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
8164 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
8165 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
8166 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
8167 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
8168 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
8169 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
8172 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
8173 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
8176 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
8177 rdev->wiphy.wowlan->tcp->data_interval_max ||
8178 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
8181 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
8182 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
8185 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
8186 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
8189 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
8190 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8192 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8193 tokens_size = tokln - sizeof(*tok);
8195 if (!tok->len || tokens_size % tok->len)
8197 if (!rdev->wiphy.wowlan->tcp->tok)
8199 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
8201 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
8203 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
8205 if (tok->offset + tok->len > data_size)
8209 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
8210 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
8211 if (!rdev->wiphy.wowlan->tcp->seq)
8213 if (seq->len == 0 || seq->len > 4)
8215 if (seq->len + seq->offset > data_size)
8219 size = sizeof(*cfg);
8221 size += wake_size + wake_mask_size;
8222 size += tokens_size;
8224 cfg = kzalloc(size, GFP_KERNEL);
8227 cfg->src = nla_get_be32(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
8228 cfg->dst = nla_get_be32(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
8229 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
8231 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
8232 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
8236 /* allocate a socket and port for it and use it */
8237 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
8238 IPPROTO_TCP, &cfg->sock, 1);
8243 if (inet_csk_get_port(cfg->sock->sk, port)) {
8244 sock_release(cfg->sock);
8248 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
8254 cfg->src_port = port;
8257 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
8258 cfg->payload_len = data_size;
8259 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
8260 memcpy((void *)cfg->payload,
8261 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
8264 cfg->payload_seq = *seq;
8265 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
8266 cfg->wake_len = wake_size;
8267 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
8268 memcpy((void *)cfg->wake_data,
8269 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
8271 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
8272 data_size + wake_size;
8273 memcpy((void *)cfg->wake_mask,
8274 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
8277 cfg->tokens_size = tokens_size;
8278 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
8286 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
8288 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8289 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
8290 struct cfg80211_wowlan new_triggers = {};
8291 struct cfg80211_wowlan *ntrig;
8292 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
8294 bool prev_enabled = rdev->wiphy.wowlan_config;
8299 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
8300 cfg80211_rdev_free_wowlan(rdev);
8301 rdev->wiphy.wowlan_config = NULL;
8305 err = nla_parse(tb, MAX_NL80211_WOWLAN_TRIG,
8306 nla_data(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
8307 nla_len(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
8308 nl80211_wowlan_policy);
8312 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
8313 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
8315 new_triggers.any = true;
8318 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
8319 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
8321 new_triggers.disconnect = true;
8324 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
8325 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
8327 new_triggers.magic_pkt = true;
8330 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
8333 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
8334 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
8336 new_triggers.gtk_rekey_failure = true;
8339 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
8340 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
8342 new_triggers.eap_identity_req = true;
8345 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
8346 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
8348 new_triggers.four_way_handshake = true;
8351 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
8352 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
8354 new_triggers.rfkill_release = true;
8357 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
8360 int rem, pat_len, mask_len, pkt_offset;
8361 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
8363 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
8366 if (n_patterns > wowlan->n_patterns)
8369 new_triggers.patterns = kcalloc(n_patterns,
8370 sizeof(new_triggers.patterns[0]),
8372 if (!new_triggers.patterns)
8375 new_triggers.n_patterns = n_patterns;
8378 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
8380 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
8381 nla_len(pat), NULL);
8383 if (!pat_tb[NL80211_PKTPAT_MASK] ||
8384 !pat_tb[NL80211_PKTPAT_PATTERN])
8386 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
8387 mask_len = DIV_ROUND_UP(pat_len, 8);
8388 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
8390 if (pat_len > wowlan->pattern_max_len ||
8391 pat_len < wowlan->pattern_min_len)
8394 if (!pat_tb[NL80211_PKTPAT_OFFSET])
8397 pkt_offset = nla_get_u32(
8398 pat_tb[NL80211_PKTPAT_OFFSET]);
8399 if (pkt_offset > wowlan->max_pkt_offset)
8401 new_triggers.patterns[i].pkt_offset = pkt_offset;
8403 new_triggers.patterns[i].mask =
8404 kmalloc(mask_len + pat_len, GFP_KERNEL);
8405 if (!new_triggers.patterns[i].mask) {
8409 new_triggers.patterns[i].pattern =
8410 new_triggers.patterns[i].mask + mask_len;
8411 memcpy(new_triggers.patterns[i].mask,
8412 nla_data(pat_tb[NL80211_PKTPAT_MASK]),
8414 new_triggers.patterns[i].pattern_len = pat_len;
8415 memcpy(new_triggers.patterns[i].pattern,
8416 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
8422 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
8423 err = nl80211_parse_wowlan_tcp(
8424 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
8430 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
8435 cfg80211_rdev_free_wowlan(rdev);
8436 rdev->wiphy.wowlan_config = ntrig;
8439 if (rdev->ops->set_wakeup &&
8440 prev_enabled != !!rdev->wiphy.wowlan_config)
8441 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
8445 for (i = 0; i < new_triggers.n_patterns; i++)
8446 kfree(new_triggers.patterns[i].mask);
8447 kfree(new_triggers.patterns);
8448 if (new_triggers.tcp && new_triggers.tcp->sock)
8449 sock_release(new_triggers.tcp->sock);
8450 kfree(new_triggers.tcp);
8455 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
8456 struct cfg80211_registered_device *rdev)
8458 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
8460 struct cfg80211_coalesce_rules *rule;
8462 if (!rdev->coalesce->n_rules)
8465 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
8469 for (i = 0; i < rdev->coalesce->n_rules; i++) {
8470 nl_rule = nla_nest_start(msg, i + 1);
8474 rule = &rdev->coalesce->rules[i];
8475 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
8479 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
8483 nl_pats = nla_nest_start(msg,
8484 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
8488 for (j = 0; j < rule->n_patterns; j++) {
8489 nl_pat = nla_nest_start(msg, j + 1);
8492 pat_len = rule->patterns[j].pattern_len;
8493 if (nla_put(msg, NL80211_PKTPAT_MASK,
8494 DIV_ROUND_UP(pat_len, 8),
8495 rule->patterns[j].mask) ||
8496 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
8497 rule->patterns[j].pattern) ||
8498 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
8499 rule->patterns[j].pkt_offset))
8501 nla_nest_end(msg, nl_pat);
8503 nla_nest_end(msg, nl_pats);
8504 nla_nest_end(msg, nl_rule);
8506 nla_nest_end(msg, nl_rules);
8511 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
8513 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8514 struct sk_buff *msg;
8517 if (!rdev->wiphy.coalesce)
8520 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8524 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8525 NL80211_CMD_GET_COALESCE);
8527 goto nla_put_failure;
8529 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
8530 goto nla_put_failure;
8532 genlmsg_end(msg, hdr);
8533 return genlmsg_reply(msg, info);
8540 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
8542 struct cfg80211_coalesce *coalesce = rdev->coalesce;
8544 struct cfg80211_coalesce_rules *rule;
8549 for (i = 0; i < coalesce->n_rules; i++) {
8550 rule = &coalesce->rules[i];
8551 for (j = 0; j < rule->n_patterns; j++)
8552 kfree(rule->patterns[j].mask);
8553 kfree(rule->patterns);
8555 kfree(coalesce->rules);
8557 rdev->coalesce = NULL;
8560 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
8561 struct nlattr *rule,
8562 struct cfg80211_coalesce_rules *new_rule)
8565 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
8566 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
8567 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
8568 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
8570 err = nla_parse(tb, NL80211_ATTR_COALESCE_RULE_MAX, nla_data(rule),
8571 nla_len(rule), nl80211_coalesce_policy);
8575 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
8577 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
8578 if (new_rule->delay > coalesce->max_delay)
8581 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
8582 new_rule->condition =
8583 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
8584 if (new_rule->condition != NL80211_COALESCE_CONDITION_MATCH &&
8585 new_rule->condition != NL80211_COALESCE_CONDITION_NO_MATCH)
8588 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
8591 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
8594 if (n_patterns > coalesce->n_patterns)
8597 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
8599 if (!new_rule->patterns)
8602 new_rule->n_patterns = n_patterns;
8605 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
8607 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
8608 nla_len(pat), NULL);
8609 if (!pat_tb[NL80211_PKTPAT_MASK] ||
8610 !pat_tb[NL80211_PKTPAT_PATTERN])
8612 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
8613 mask_len = DIV_ROUND_UP(pat_len, 8);
8614 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
8616 if (pat_len > coalesce->pattern_max_len ||
8617 pat_len < coalesce->pattern_min_len)
8620 if (!pat_tb[NL80211_PKTPAT_OFFSET])
8623 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
8624 if (pkt_offset > coalesce->max_pkt_offset)
8626 new_rule->patterns[i].pkt_offset = pkt_offset;
8628 new_rule->patterns[i].mask =
8629 kmalloc(mask_len + pat_len, GFP_KERNEL);
8630 if (!new_rule->patterns[i].mask)
8632 new_rule->patterns[i].pattern =
8633 new_rule->patterns[i].mask + mask_len;
8634 memcpy(new_rule->patterns[i].mask,
8635 nla_data(pat_tb[NL80211_PKTPAT_MASK]), mask_len);
8636 new_rule->patterns[i].pattern_len = pat_len;
8637 memcpy(new_rule->patterns[i].pattern,
8638 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]), pat_len);
8645 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
8647 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8648 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
8649 struct cfg80211_coalesce new_coalesce = {};
8650 struct cfg80211_coalesce *n_coalesce;
8651 int err, rem_rule, n_rules = 0, i, j;
8652 struct nlattr *rule;
8653 struct cfg80211_coalesce_rules *tmp_rule;
8655 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
8658 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
8659 cfg80211_rdev_free_coalesce(rdev);
8660 rdev->ops->set_coalesce(&rdev->wiphy, NULL);
8664 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
8667 if (n_rules > coalesce->n_rules)
8670 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
8672 if (!new_coalesce.rules)
8675 new_coalesce.n_rules = n_rules;
8678 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
8680 err = nl80211_parse_coalesce_rule(rdev, rule,
8681 &new_coalesce.rules[i]);
8688 err = rdev->ops->set_coalesce(&rdev->wiphy, &new_coalesce);
8692 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
8697 cfg80211_rdev_free_coalesce(rdev);
8698 rdev->coalesce = n_coalesce;
8702 for (i = 0; i < new_coalesce.n_rules; i++) {
8703 tmp_rule = &new_coalesce.rules[i];
8704 for (j = 0; j < tmp_rule->n_patterns; j++)
8705 kfree(tmp_rule->patterns[j].mask);
8706 kfree(tmp_rule->patterns);
8708 kfree(new_coalesce.rules);
8713 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
8715 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8716 struct net_device *dev = info->user_ptr[1];
8717 struct wireless_dev *wdev = dev->ieee80211_ptr;
8718 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
8719 struct cfg80211_gtk_rekey_data rekey_data;
8722 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
8725 err = nla_parse(tb, MAX_NL80211_REKEY_DATA,
8726 nla_data(info->attrs[NL80211_ATTR_REKEY_DATA]),
8727 nla_len(info->attrs[NL80211_ATTR_REKEY_DATA]),
8728 nl80211_rekey_policy);
8732 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
8734 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
8736 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
8739 memcpy(rekey_data.kek, nla_data(tb[NL80211_REKEY_DATA_KEK]),
8741 memcpy(rekey_data.kck, nla_data(tb[NL80211_REKEY_DATA_KCK]),
8743 memcpy(rekey_data.replay_ctr,
8744 nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]),
8745 NL80211_REPLAY_CTR_LEN);
8748 if (!wdev->current_bss) {
8753 if (!rdev->ops->set_rekey_data) {
8758 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
8764 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
8765 struct genl_info *info)
8767 struct net_device *dev = info->user_ptr[1];
8768 struct wireless_dev *wdev = dev->ieee80211_ptr;
8770 if (wdev->iftype != NL80211_IFTYPE_AP &&
8771 wdev->iftype != NL80211_IFTYPE_P2P_GO)
8774 if (wdev->ap_unexpected_nlportid)
8777 wdev->ap_unexpected_nlportid = info->snd_portid;
8781 static int nl80211_probe_client(struct sk_buff *skb,
8782 struct genl_info *info)
8784 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8785 struct net_device *dev = info->user_ptr[1];
8786 struct wireless_dev *wdev = dev->ieee80211_ptr;
8787 struct sk_buff *msg;
8793 if (wdev->iftype != NL80211_IFTYPE_AP &&
8794 wdev->iftype != NL80211_IFTYPE_P2P_GO)
8797 if (!info->attrs[NL80211_ATTR_MAC])
8800 if (!rdev->ops->probe_client)
8803 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8807 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8808 NL80211_CMD_PROBE_CLIENT);
8814 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
8816 err = rdev_probe_client(rdev, dev, addr, &cookie);
8820 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
8821 goto nla_put_failure;
8823 genlmsg_end(msg, hdr);
8825 return genlmsg_reply(msg, info);
8834 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
8836 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8837 struct cfg80211_beacon_registration *reg, *nreg;
8840 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
8843 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
8847 /* First, check if already registered. */
8848 spin_lock_bh(&rdev->beacon_registrations_lock);
8849 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
8850 if (reg->nlportid == info->snd_portid) {
8855 /* Add it to the list */
8856 nreg->nlportid = info->snd_portid;
8857 list_add(&nreg->list, &rdev->beacon_registrations);
8859 spin_unlock_bh(&rdev->beacon_registrations_lock);
8863 spin_unlock_bh(&rdev->beacon_registrations_lock);
8868 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
8870 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8871 struct wireless_dev *wdev = info->user_ptr[1];
8874 if (!rdev->ops->start_p2p_device)
8877 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
8880 if (wdev->p2p_started)
8883 err = cfg80211_can_add_interface(rdev, wdev->iftype);
8887 err = rdev_start_p2p_device(rdev, wdev);
8891 wdev->p2p_started = true;
8897 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
8899 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8900 struct wireless_dev *wdev = info->user_ptr[1];
8902 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
8905 if (!rdev->ops->stop_p2p_device)
8908 cfg80211_stop_p2p_device(rdev, wdev);
8913 static int nl80211_get_protocol_features(struct sk_buff *skb,
8914 struct genl_info *info)
8917 struct sk_buff *msg;
8919 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8923 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8924 NL80211_CMD_GET_PROTOCOL_FEATURES);
8926 goto nla_put_failure;
8928 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
8929 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
8930 goto nla_put_failure;
8932 genlmsg_end(msg, hdr);
8933 return genlmsg_reply(msg, info);
8940 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
8942 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8943 struct cfg80211_update_ft_ies_params ft_params;
8944 struct net_device *dev = info->user_ptr[1];
8946 if (!rdev->ops->update_ft_ies)
8949 if (!info->attrs[NL80211_ATTR_MDID] ||
8950 !is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8953 memset(&ft_params, 0, sizeof(ft_params));
8954 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
8955 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8956 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8958 return rdev_update_ft_ies(rdev, dev, &ft_params);
8961 static int nl80211_crit_protocol_start(struct sk_buff *skb,
8962 struct genl_info *info)
8964 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8965 struct wireless_dev *wdev = info->user_ptr[1];
8966 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
8970 if (!rdev->ops->crit_proto_start)
8973 if (WARN_ON(!rdev->ops->crit_proto_stop))
8976 if (rdev->crit_proto_nlportid)
8979 /* determine protocol if provided */
8980 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
8981 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
8983 if (proto >= NUM_NL80211_CRIT_PROTO)
8986 /* timeout must be provided */
8987 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
8991 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
8993 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
8996 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
8998 rdev->crit_proto_nlportid = info->snd_portid;
9003 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
9004 struct genl_info *info)
9006 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9007 struct wireless_dev *wdev = info->user_ptr[1];
9009 if (!rdev->ops->crit_proto_stop)
9012 if (rdev->crit_proto_nlportid) {
9013 rdev->crit_proto_nlportid = 0;
9014 rdev_crit_proto_stop(rdev, wdev);
9019 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
9021 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9022 struct wireless_dev *wdev =
9023 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9027 if (!rdev->wiphy.vendor_commands)
9031 err = PTR_ERR(wdev);
9035 } else if (wdev->wiphy != &rdev->wiphy) {
9039 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
9040 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
9043 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
9044 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
9045 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
9046 const struct wiphy_vendor_command *vcmd;
9050 vcmd = &rdev->wiphy.vendor_commands[i];
9052 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
9055 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
9056 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
9059 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
9063 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
9065 !netif_running(wdev->netdev))
9067 if (!wdev->netdev && !wdev->p2p_started)
9074 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
9075 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9076 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9079 rdev->cur_cmd_info = info;
9080 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
9082 rdev->cur_cmd_info = NULL;
9089 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
9090 enum nl80211_commands cmd,
9091 enum nl80211_attrs attr,
9094 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
9096 if (WARN_ON(!rdev->cur_cmd_info))
9099 return __cfg80211_alloc_vendor_skb(rdev, approxlen,
9100 rdev->cur_cmd_info->snd_portid,
9101 rdev->cur_cmd_info->snd_seq,
9102 cmd, attr, NULL, GFP_KERNEL);
9104 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
9106 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
9108 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9109 void *hdr = ((void **)skb->cb)[1];
9110 struct nlattr *data = ((void **)skb->cb)[2];
9112 if (WARN_ON(!rdev->cur_cmd_info)) {
9117 nla_nest_end(skb, data);
9118 genlmsg_end(skb, hdr);
9119 return genlmsg_reply(skb, rdev->cur_cmd_info);
9121 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
9124 #define NL80211_FLAG_NEED_WIPHY 0x01
9125 #define NL80211_FLAG_NEED_NETDEV 0x02
9126 #define NL80211_FLAG_NEED_RTNL 0x04
9127 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
9128 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
9129 NL80211_FLAG_CHECK_NETDEV_UP)
9130 #define NL80211_FLAG_NEED_WDEV 0x10
9131 /* If a netdev is associated, it must be UP, P2P must be started */
9132 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
9133 NL80211_FLAG_CHECK_NETDEV_UP)
9135 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
9136 struct genl_info *info)
9138 struct cfg80211_registered_device *rdev;
9139 struct wireless_dev *wdev;
9140 struct net_device *dev;
9141 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
9146 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
9147 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
9151 return PTR_ERR(rdev);
9153 info->user_ptr[0] = rdev;
9154 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
9155 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
9158 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
9163 return PTR_ERR(wdev);
9167 rdev = wiphy_to_dev(wdev->wiphy);
9169 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
9176 info->user_ptr[1] = dev;
9178 info->user_ptr[1] = wdev;
9182 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
9183 !netif_running(dev)) {
9190 } else if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP) {
9191 if (!wdev->p2p_started) {
9198 info->user_ptr[0] = rdev;
9204 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
9205 struct genl_info *info)
9207 if (info->user_ptr[1]) {
9208 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
9209 struct wireless_dev *wdev = info->user_ptr[1];
9212 dev_put(wdev->netdev);
9214 dev_put(info->user_ptr[1]);
9217 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
9221 static const struct genl_ops nl80211_ops[] = {
9223 .cmd = NL80211_CMD_GET_WIPHY,
9224 .doit = nl80211_get_wiphy,
9225 .dumpit = nl80211_dump_wiphy,
9226 .done = nl80211_dump_wiphy_done,
9227 .policy = nl80211_policy,
9228 /* can be retrieved by unprivileged users */
9229 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9230 NL80211_FLAG_NEED_RTNL,
9233 .cmd = NL80211_CMD_SET_WIPHY,
9234 .doit = nl80211_set_wiphy,
9235 .policy = nl80211_policy,
9236 .flags = GENL_ADMIN_PERM,
9237 .internal_flags = NL80211_FLAG_NEED_RTNL,
9240 .cmd = NL80211_CMD_GET_INTERFACE,
9241 .doit = nl80211_get_interface,
9242 .dumpit = nl80211_dump_interface,
9243 .policy = nl80211_policy,
9244 /* can be retrieved by unprivileged users */
9245 .internal_flags = NL80211_FLAG_NEED_WDEV |
9246 NL80211_FLAG_NEED_RTNL,
9249 .cmd = NL80211_CMD_SET_INTERFACE,
9250 .doit = nl80211_set_interface,
9251 .policy = nl80211_policy,
9252 .flags = GENL_ADMIN_PERM,
9253 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9254 NL80211_FLAG_NEED_RTNL,
9257 .cmd = NL80211_CMD_NEW_INTERFACE,
9258 .doit = nl80211_new_interface,
9259 .policy = nl80211_policy,
9260 .flags = GENL_ADMIN_PERM,
9261 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9262 NL80211_FLAG_NEED_RTNL,
9265 .cmd = NL80211_CMD_DEL_INTERFACE,
9266 .doit = nl80211_del_interface,
9267 .policy = nl80211_policy,
9268 .flags = GENL_ADMIN_PERM,
9269 .internal_flags = NL80211_FLAG_NEED_WDEV |
9270 NL80211_FLAG_NEED_RTNL,
9273 .cmd = NL80211_CMD_GET_KEY,
9274 .doit = nl80211_get_key,
9275 .policy = nl80211_policy,
9276 .flags = GENL_ADMIN_PERM,
9277 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9278 NL80211_FLAG_NEED_RTNL,
9281 .cmd = NL80211_CMD_SET_KEY,
9282 .doit = nl80211_set_key,
9283 .policy = nl80211_policy,
9284 .flags = GENL_ADMIN_PERM,
9285 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9286 NL80211_FLAG_NEED_RTNL,
9289 .cmd = NL80211_CMD_NEW_KEY,
9290 .doit = nl80211_new_key,
9291 .policy = nl80211_policy,
9292 .flags = GENL_ADMIN_PERM,
9293 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9294 NL80211_FLAG_NEED_RTNL,
9297 .cmd = NL80211_CMD_DEL_KEY,
9298 .doit = nl80211_del_key,
9299 .policy = nl80211_policy,
9300 .flags = GENL_ADMIN_PERM,
9301 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9302 NL80211_FLAG_NEED_RTNL,
9305 .cmd = NL80211_CMD_SET_BEACON,
9306 .policy = nl80211_policy,
9307 .flags = GENL_ADMIN_PERM,
9308 .doit = nl80211_set_beacon,
9309 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9310 NL80211_FLAG_NEED_RTNL,
9313 .cmd = NL80211_CMD_START_AP,
9314 .policy = nl80211_policy,
9315 .flags = GENL_ADMIN_PERM,
9316 .doit = nl80211_start_ap,
9317 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9318 NL80211_FLAG_NEED_RTNL,
9321 .cmd = NL80211_CMD_STOP_AP,
9322 .policy = nl80211_policy,
9323 .flags = GENL_ADMIN_PERM,
9324 .doit = nl80211_stop_ap,
9325 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9326 NL80211_FLAG_NEED_RTNL,
9329 .cmd = NL80211_CMD_GET_STATION,
9330 .doit = nl80211_get_station,
9331 .dumpit = nl80211_dump_station,
9332 .policy = nl80211_policy,
9333 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9334 NL80211_FLAG_NEED_RTNL,
9337 .cmd = NL80211_CMD_SET_STATION,
9338 .doit = nl80211_set_station,
9339 .policy = nl80211_policy,
9340 .flags = GENL_ADMIN_PERM,
9341 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9342 NL80211_FLAG_NEED_RTNL,
9345 .cmd = NL80211_CMD_NEW_STATION,
9346 .doit = nl80211_new_station,
9347 .policy = nl80211_policy,
9348 .flags = GENL_ADMIN_PERM,
9349 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9350 NL80211_FLAG_NEED_RTNL,
9353 .cmd = NL80211_CMD_DEL_STATION,
9354 .doit = nl80211_del_station,
9355 .policy = nl80211_policy,
9356 .flags = GENL_ADMIN_PERM,
9357 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9358 NL80211_FLAG_NEED_RTNL,
9361 .cmd = NL80211_CMD_GET_MPATH,
9362 .doit = nl80211_get_mpath,
9363 .dumpit = nl80211_dump_mpath,
9364 .policy = nl80211_policy,
9365 .flags = GENL_ADMIN_PERM,
9366 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9367 NL80211_FLAG_NEED_RTNL,
9370 .cmd = NL80211_CMD_SET_MPATH,
9371 .doit = nl80211_set_mpath,
9372 .policy = nl80211_policy,
9373 .flags = GENL_ADMIN_PERM,
9374 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9375 NL80211_FLAG_NEED_RTNL,
9378 .cmd = NL80211_CMD_NEW_MPATH,
9379 .doit = nl80211_new_mpath,
9380 .policy = nl80211_policy,
9381 .flags = GENL_ADMIN_PERM,
9382 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9383 NL80211_FLAG_NEED_RTNL,
9386 .cmd = NL80211_CMD_DEL_MPATH,
9387 .doit = nl80211_del_mpath,
9388 .policy = nl80211_policy,
9389 .flags = GENL_ADMIN_PERM,
9390 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9391 NL80211_FLAG_NEED_RTNL,
9394 .cmd = NL80211_CMD_SET_BSS,
9395 .doit = nl80211_set_bss,
9396 .policy = nl80211_policy,
9397 .flags = GENL_ADMIN_PERM,
9398 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9399 NL80211_FLAG_NEED_RTNL,
9402 .cmd = NL80211_CMD_GET_REG,
9403 .doit = nl80211_get_reg,
9404 .policy = nl80211_policy,
9405 .internal_flags = NL80211_FLAG_NEED_RTNL,
9406 /* can be retrieved by unprivileged users */
9409 .cmd = NL80211_CMD_SET_REG,
9410 .doit = nl80211_set_reg,
9411 .policy = nl80211_policy,
9412 .flags = GENL_ADMIN_PERM,
9413 .internal_flags = NL80211_FLAG_NEED_RTNL,
9416 .cmd = NL80211_CMD_REQ_SET_REG,
9417 .doit = nl80211_req_set_reg,
9418 .policy = nl80211_policy,
9419 .flags = GENL_ADMIN_PERM,
9422 .cmd = NL80211_CMD_GET_MESH_CONFIG,
9423 .doit = nl80211_get_mesh_config,
9424 .policy = nl80211_policy,
9425 /* can be retrieved by unprivileged users */
9426 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9427 NL80211_FLAG_NEED_RTNL,
9430 .cmd = NL80211_CMD_SET_MESH_CONFIG,
9431 .doit = nl80211_update_mesh_config,
9432 .policy = nl80211_policy,
9433 .flags = GENL_ADMIN_PERM,
9434 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9435 NL80211_FLAG_NEED_RTNL,
9438 .cmd = NL80211_CMD_TRIGGER_SCAN,
9439 .doit = nl80211_trigger_scan,
9440 .policy = nl80211_policy,
9441 .flags = GENL_ADMIN_PERM,
9442 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9443 NL80211_FLAG_NEED_RTNL,
9446 .cmd = NL80211_CMD_GET_SCAN,
9447 .policy = nl80211_policy,
9448 .dumpit = nl80211_dump_scan,
9451 .cmd = NL80211_CMD_START_SCHED_SCAN,
9452 .doit = nl80211_start_sched_scan,
9453 .policy = nl80211_policy,
9454 .flags = GENL_ADMIN_PERM,
9455 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9456 NL80211_FLAG_NEED_RTNL,
9459 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
9460 .doit = nl80211_stop_sched_scan,
9461 .policy = nl80211_policy,
9462 .flags = GENL_ADMIN_PERM,
9463 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9464 NL80211_FLAG_NEED_RTNL,
9467 .cmd = NL80211_CMD_AUTHENTICATE,
9468 .doit = nl80211_authenticate,
9469 .policy = nl80211_policy,
9470 .flags = GENL_ADMIN_PERM,
9471 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9472 NL80211_FLAG_NEED_RTNL,
9475 .cmd = NL80211_CMD_ASSOCIATE,
9476 .doit = nl80211_associate,
9477 .policy = nl80211_policy,
9478 .flags = GENL_ADMIN_PERM,
9479 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9480 NL80211_FLAG_NEED_RTNL,
9483 .cmd = NL80211_CMD_DEAUTHENTICATE,
9484 .doit = nl80211_deauthenticate,
9485 .policy = nl80211_policy,
9486 .flags = GENL_ADMIN_PERM,
9487 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9488 NL80211_FLAG_NEED_RTNL,
9491 .cmd = NL80211_CMD_DISASSOCIATE,
9492 .doit = nl80211_disassociate,
9493 .policy = nl80211_policy,
9494 .flags = GENL_ADMIN_PERM,
9495 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9496 NL80211_FLAG_NEED_RTNL,
9499 .cmd = NL80211_CMD_JOIN_IBSS,
9500 .doit = nl80211_join_ibss,
9501 .policy = nl80211_policy,
9502 .flags = GENL_ADMIN_PERM,
9503 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9504 NL80211_FLAG_NEED_RTNL,
9507 .cmd = NL80211_CMD_LEAVE_IBSS,
9508 .doit = nl80211_leave_ibss,
9509 .policy = nl80211_policy,
9510 .flags = GENL_ADMIN_PERM,
9511 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9512 NL80211_FLAG_NEED_RTNL,
9514 #ifdef CONFIG_NL80211_TESTMODE
9516 .cmd = NL80211_CMD_TESTMODE,
9517 .doit = nl80211_testmode_do,
9518 .dumpit = nl80211_testmode_dump,
9519 .policy = nl80211_policy,
9520 .flags = GENL_ADMIN_PERM,
9521 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9522 NL80211_FLAG_NEED_RTNL,
9526 .cmd = NL80211_CMD_CONNECT,
9527 .doit = nl80211_connect,
9528 .policy = nl80211_policy,
9529 .flags = GENL_ADMIN_PERM,
9530 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9531 NL80211_FLAG_NEED_RTNL,
9534 .cmd = NL80211_CMD_DISCONNECT,
9535 .doit = nl80211_disconnect,
9536 .policy = nl80211_policy,
9537 .flags = GENL_ADMIN_PERM,
9538 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9539 NL80211_FLAG_NEED_RTNL,
9542 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
9543 .doit = nl80211_wiphy_netns,
9544 .policy = nl80211_policy,
9545 .flags = GENL_ADMIN_PERM,
9546 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9547 NL80211_FLAG_NEED_RTNL,
9550 .cmd = NL80211_CMD_GET_SURVEY,
9551 .policy = nl80211_policy,
9552 .dumpit = nl80211_dump_survey,
9555 .cmd = NL80211_CMD_SET_PMKSA,
9556 .doit = nl80211_setdel_pmksa,
9557 .policy = nl80211_policy,
9558 .flags = GENL_ADMIN_PERM,
9559 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9560 NL80211_FLAG_NEED_RTNL,
9563 .cmd = NL80211_CMD_DEL_PMKSA,
9564 .doit = nl80211_setdel_pmksa,
9565 .policy = nl80211_policy,
9566 .flags = GENL_ADMIN_PERM,
9567 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9568 NL80211_FLAG_NEED_RTNL,
9571 .cmd = NL80211_CMD_FLUSH_PMKSA,
9572 .doit = nl80211_flush_pmksa,
9573 .policy = nl80211_policy,
9574 .flags = GENL_ADMIN_PERM,
9575 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9576 NL80211_FLAG_NEED_RTNL,
9579 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
9580 .doit = nl80211_remain_on_channel,
9581 .policy = nl80211_policy,
9582 .flags = GENL_ADMIN_PERM,
9583 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9584 NL80211_FLAG_NEED_RTNL,
9587 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
9588 .doit = nl80211_cancel_remain_on_channel,
9589 .policy = nl80211_policy,
9590 .flags = GENL_ADMIN_PERM,
9591 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9592 NL80211_FLAG_NEED_RTNL,
9595 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
9596 .doit = nl80211_set_tx_bitrate_mask,
9597 .policy = nl80211_policy,
9598 .flags = GENL_ADMIN_PERM,
9599 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9600 NL80211_FLAG_NEED_RTNL,
9603 .cmd = NL80211_CMD_REGISTER_FRAME,
9604 .doit = nl80211_register_mgmt,
9605 .policy = nl80211_policy,
9606 .flags = GENL_ADMIN_PERM,
9607 .internal_flags = NL80211_FLAG_NEED_WDEV |
9608 NL80211_FLAG_NEED_RTNL,
9611 .cmd = NL80211_CMD_FRAME,
9612 .doit = nl80211_tx_mgmt,
9613 .policy = nl80211_policy,
9614 .flags = GENL_ADMIN_PERM,
9615 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9616 NL80211_FLAG_NEED_RTNL,
9619 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
9620 .doit = nl80211_tx_mgmt_cancel_wait,
9621 .policy = nl80211_policy,
9622 .flags = GENL_ADMIN_PERM,
9623 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9624 NL80211_FLAG_NEED_RTNL,
9627 .cmd = NL80211_CMD_SET_POWER_SAVE,
9628 .doit = nl80211_set_power_save,
9629 .policy = nl80211_policy,
9630 .flags = GENL_ADMIN_PERM,
9631 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9632 NL80211_FLAG_NEED_RTNL,
9635 .cmd = NL80211_CMD_GET_POWER_SAVE,
9636 .doit = nl80211_get_power_save,
9637 .policy = nl80211_policy,
9638 /* can be retrieved by unprivileged users */
9639 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9640 NL80211_FLAG_NEED_RTNL,
9643 .cmd = NL80211_CMD_SET_CQM,
9644 .doit = nl80211_set_cqm,
9645 .policy = nl80211_policy,
9646 .flags = GENL_ADMIN_PERM,
9647 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9648 NL80211_FLAG_NEED_RTNL,
9651 .cmd = NL80211_CMD_SET_CHANNEL,
9652 .doit = nl80211_set_channel,
9653 .policy = nl80211_policy,
9654 .flags = GENL_ADMIN_PERM,
9655 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9656 NL80211_FLAG_NEED_RTNL,
9659 .cmd = NL80211_CMD_SET_WDS_PEER,
9660 .doit = nl80211_set_wds_peer,
9661 .policy = nl80211_policy,
9662 .flags = GENL_ADMIN_PERM,
9663 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9664 NL80211_FLAG_NEED_RTNL,
9667 .cmd = NL80211_CMD_JOIN_MESH,
9668 .doit = nl80211_join_mesh,
9669 .policy = nl80211_policy,
9670 .flags = GENL_ADMIN_PERM,
9671 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9672 NL80211_FLAG_NEED_RTNL,
9675 .cmd = NL80211_CMD_LEAVE_MESH,
9676 .doit = nl80211_leave_mesh,
9677 .policy = nl80211_policy,
9678 .flags = GENL_ADMIN_PERM,
9679 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9680 NL80211_FLAG_NEED_RTNL,
9684 .cmd = NL80211_CMD_GET_WOWLAN,
9685 .doit = nl80211_get_wowlan,
9686 .policy = nl80211_policy,
9687 /* can be retrieved by unprivileged users */
9688 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9689 NL80211_FLAG_NEED_RTNL,
9692 .cmd = NL80211_CMD_SET_WOWLAN,
9693 .doit = nl80211_set_wowlan,
9694 .policy = nl80211_policy,
9695 .flags = GENL_ADMIN_PERM,
9696 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9697 NL80211_FLAG_NEED_RTNL,
9701 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
9702 .doit = nl80211_set_rekey_data,
9703 .policy = nl80211_policy,
9704 .flags = GENL_ADMIN_PERM,
9705 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9706 NL80211_FLAG_NEED_RTNL,
9709 .cmd = NL80211_CMD_TDLS_MGMT,
9710 .doit = nl80211_tdls_mgmt,
9711 .policy = nl80211_policy,
9712 .flags = GENL_ADMIN_PERM,
9713 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9714 NL80211_FLAG_NEED_RTNL,
9717 .cmd = NL80211_CMD_TDLS_OPER,
9718 .doit = nl80211_tdls_oper,
9719 .policy = nl80211_policy,
9720 .flags = GENL_ADMIN_PERM,
9721 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9722 NL80211_FLAG_NEED_RTNL,
9725 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
9726 .doit = nl80211_register_unexpected_frame,
9727 .policy = nl80211_policy,
9728 .flags = GENL_ADMIN_PERM,
9729 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9730 NL80211_FLAG_NEED_RTNL,
9733 .cmd = NL80211_CMD_PROBE_CLIENT,
9734 .doit = nl80211_probe_client,
9735 .policy = nl80211_policy,
9736 .flags = GENL_ADMIN_PERM,
9737 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9738 NL80211_FLAG_NEED_RTNL,
9741 .cmd = NL80211_CMD_REGISTER_BEACONS,
9742 .doit = nl80211_register_beacons,
9743 .policy = nl80211_policy,
9744 .flags = GENL_ADMIN_PERM,
9745 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9746 NL80211_FLAG_NEED_RTNL,
9749 .cmd = NL80211_CMD_SET_NOACK_MAP,
9750 .doit = nl80211_set_noack_map,
9751 .policy = nl80211_policy,
9752 .flags = GENL_ADMIN_PERM,
9753 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9754 NL80211_FLAG_NEED_RTNL,
9757 .cmd = NL80211_CMD_START_P2P_DEVICE,
9758 .doit = nl80211_start_p2p_device,
9759 .policy = nl80211_policy,
9760 .flags = GENL_ADMIN_PERM,
9761 .internal_flags = NL80211_FLAG_NEED_WDEV |
9762 NL80211_FLAG_NEED_RTNL,
9765 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
9766 .doit = nl80211_stop_p2p_device,
9767 .policy = nl80211_policy,
9768 .flags = GENL_ADMIN_PERM,
9769 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9770 NL80211_FLAG_NEED_RTNL,
9773 .cmd = NL80211_CMD_SET_MCAST_RATE,
9774 .doit = nl80211_set_mcast_rate,
9775 .policy = nl80211_policy,
9776 .flags = GENL_ADMIN_PERM,
9777 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9778 NL80211_FLAG_NEED_RTNL,
9781 .cmd = NL80211_CMD_SET_MAC_ACL,
9782 .doit = nl80211_set_mac_acl,
9783 .policy = nl80211_policy,
9784 .flags = GENL_ADMIN_PERM,
9785 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9786 NL80211_FLAG_NEED_RTNL,
9789 .cmd = NL80211_CMD_RADAR_DETECT,
9790 .doit = nl80211_start_radar_detection,
9791 .policy = nl80211_policy,
9792 .flags = GENL_ADMIN_PERM,
9793 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9794 NL80211_FLAG_NEED_RTNL,
9797 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
9798 .doit = nl80211_get_protocol_features,
9799 .policy = nl80211_policy,
9802 .cmd = NL80211_CMD_UPDATE_FT_IES,
9803 .doit = nl80211_update_ft_ies,
9804 .policy = nl80211_policy,
9805 .flags = GENL_ADMIN_PERM,
9806 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9807 NL80211_FLAG_NEED_RTNL,
9810 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
9811 .doit = nl80211_crit_protocol_start,
9812 .policy = nl80211_policy,
9813 .flags = GENL_ADMIN_PERM,
9814 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9815 NL80211_FLAG_NEED_RTNL,
9818 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
9819 .doit = nl80211_crit_protocol_stop,
9820 .policy = nl80211_policy,
9821 .flags = GENL_ADMIN_PERM,
9822 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9823 NL80211_FLAG_NEED_RTNL,
9826 .cmd = NL80211_CMD_GET_COALESCE,
9827 .doit = nl80211_get_coalesce,
9828 .policy = nl80211_policy,
9829 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9830 NL80211_FLAG_NEED_RTNL,
9833 .cmd = NL80211_CMD_SET_COALESCE,
9834 .doit = nl80211_set_coalesce,
9835 .policy = nl80211_policy,
9836 .flags = GENL_ADMIN_PERM,
9837 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9838 NL80211_FLAG_NEED_RTNL,
9841 .cmd = NL80211_CMD_CHANNEL_SWITCH,
9842 .doit = nl80211_channel_switch,
9843 .policy = nl80211_policy,
9844 .flags = GENL_ADMIN_PERM,
9845 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9846 NL80211_FLAG_NEED_RTNL,
9849 .cmd = NL80211_CMD_VENDOR,
9850 .doit = nl80211_vendor_cmd,
9851 .policy = nl80211_policy,
9852 .flags = GENL_ADMIN_PERM,
9853 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9854 NL80211_FLAG_NEED_RTNL,
9858 /* notification functions */
9860 void nl80211_notify_dev_rename(struct cfg80211_registered_device *rdev)
9862 struct sk_buff *msg;
9863 struct nl80211_dump_wiphy_state state = {};
9865 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9869 if (nl80211_send_wiphy(rdev, msg, 0, 0, 0, &state) < 0) {
9874 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
9875 NL80211_MCGRP_CONFIG, GFP_KERNEL);
9878 static int nl80211_add_scan_req(struct sk_buff *msg,
9879 struct cfg80211_registered_device *rdev)
9881 struct cfg80211_scan_request *req = rdev->scan_req;
9882 struct nlattr *nest;
9888 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
9890 goto nla_put_failure;
9891 for (i = 0; i < req->n_ssids; i++) {
9892 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
9893 goto nla_put_failure;
9895 nla_nest_end(msg, nest);
9897 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
9899 goto nla_put_failure;
9900 for (i = 0; i < req->n_channels; i++) {
9901 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
9902 goto nla_put_failure;
9904 nla_nest_end(msg, nest);
9907 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
9908 goto nla_put_failure;
9911 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
9912 goto nla_put_failure;
9919 static int nl80211_send_scan_msg(struct sk_buff *msg,
9920 struct cfg80211_registered_device *rdev,
9921 struct wireless_dev *wdev,
9922 u32 portid, u32 seq, int flags,
9927 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
9931 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
9932 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
9933 wdev->netdev->ifindex)) ||
9934 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
9935 goto nla_put_failure;
9937 /* ignore errors and send incomplete event anyway */
9938 nl80211_add_scan_req(msg, rdev);
9940 return genlmsg_end(msg, hdr);
9943 genlmsg_cancel(msg, hdr);
9948 nl80211_send_sched_scan_msg(struct sk_buff *msg,
9949 struct cfg80211_registered_device *rdev,
9950 struct net_device *netdev,
9951 u32 portid, u32 seq, int flags, u32 cmd)
9955 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
9959 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
9960 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
9961 goto nla_put_failure;
9963 return genlmsg_end(msg, hdr);
9966 genlmsg_cancel(msg, hdr);
9970 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
9971 struct wireless_dev *wdev)
9973 struct sk_buff *msg;
9975 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9979 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
9980 NL80211_CMD_TRIGGER_SCAN) < 0) {
9985 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
9986 NL80211_MCGRP_SCAN, GFP_KERNEL);
9989 void nl80211_send_scan_done(struct cfg80211_registered_device *rdev,
9990 struct wireless_dev *wdev)
9992 struct sk_buff *msg;
9994 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9998 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
9999 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
10004 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10005 NL80211_MCGRP_SCAN, GFP_KERNEL);
10008 void nl80211_send_scan_aborted(struct cfg80211_registered_device *rdev,
10009 struct wireless_dev *wdev)
10011 struct sk_buff *msg;
10013 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10017 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
10018 NL80211_CMD_SCAN_ABORTED) < 0) {
10023 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10024 NL80211_MCGRP_SCAN, GFP_KERNEL);
10027 void nl80211_send_sched_scan_results(struct cfg80211_registered_device *rdev,
10028 struct net_device *netdev)
10030 struct sk_buff *msg;
10032 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10036 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0,
10037 NL80211_CMD_SCHED_SCAN_RESULTS) < 0) {
10042 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10043 NL80211_MCGRP_SCAN, GFP_KERNEL);
10046 void nl80211_send_sched_scan(struct cfg80211_registered_device *rdev,
10047 struct net_device *netdev, u32 cmd)
10049 struct sk_buff *msg;
10051 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10055 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0, cmd) < 0) {
10060 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10061 NL80211_MCGRP_SCAN, GFP_KERNEL);
10065 * This can happen on global regulatory changes or device specific settings
10066 * based on custom world regulatory domains.
10068 void nl80211_send_reg_change_event(struct regulatory_request *request)
10070 struct sk_buff *msg;
10073 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10077 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_CHANGE);
10083 /* Userspace can always count this one always being set */
10084 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
10085 goto nla_put_failure;
10087 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
10088 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10089 NL80211_REGDOM_TYPE_WORLD))
10090 goto nla_put_failure;
10091 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
10092 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10093 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
10094 goto nla_put_failure;
10095 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
10096 request->intersect) {
10097 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10098 NL80211_REGDOM_TYPE_INTERSECTION))
10099 goto nla_put_failure;
10101 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10102 NL80211_REGDOM_TYPE_COUNTRY) ||
10103 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
10105 goto nla_put_failure;
10108 if (request->wiphy_idx != WIPHY_IDX_INVALID &&
10109 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
10110 goto nla_put_failure;
10112 genlmsg_end(msg, hdr);
10115 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
10116 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
10122 genlmsg_cancel(msg, hdr);
10126 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
10127 struct net_device *netdev,
10128 const u8 *buf, size_t len,
10129 enum nl80211_commands cmd, gfp_t gfp)
10131 struct sk_buff *msg;
10134 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10138 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10144 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10145 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10146 nla_put(msg, NL80211_ATTR_FRAME, len, buf))
10147 goto nla_put_failure;
10149 genlmsg_end(msg, hdr);
10151 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10152 NL80211_MCGRP_MLME, gfp);
10156 genlmsg_cancel(msg, hdr);
10160 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
10161 struct net_device *netdev, const u8 *buf,
10162 size_t len, gfp_t gfp)
10164 nl80211_send_mlme_event(rdev, netdev, buf, len,
10165 NL80211_CMD_AUTHENTICATE, gfp);
10168 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
10169 struct net_device *netdev, const u8 *buf,
10170 size_t len, gfp_t gfp)
10172 nl80211_send_mlme_event(rdev, netdev, buf, len,
10173 NL80211_CMD_ASSOCIATE, gfp);
10176 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
10177 struct net_device *netdev, const u8 *buf,
10178 size_t len, gfp_t gfp)
10180 nl80211_send_mlme_event(rdev, netdev, buf, len,
10181 NL80211_CMD_DEAUTHENTICATE, gfp);
10184 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
10185 struct net_device *netdev, const u8 *buf,
10186 size_t len, gfp_t gfp)
10188 nl80211_send_mlme_event(rdev, netdev, buf, len,
10189 NL80211_CMD_DISASSOCIATE, gfp);
10192 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
10195 struct wireless_dev *wdev = dev->ieee80211_ptr;
10196 struct wiphy *wiphy = wdev->wiphy;
10197 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10198 const struct ieee80211_mgmt *mgmt = (void *)buf;
10201 if (WARN_ON(len < 2))
10204 if (ieee80211_is_deauth(mgmt->frame_control))
10205 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
10207 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
10209 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
10210 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC);
10212 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
10214 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
10215 struct net_device *netdev, int cmd,
10216 const u8 *addr, gfp_t gfp)
10218 struct sk_buff *msg;
10221 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10225 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10231 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10232 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10233 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
10234 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
10235 goto nla_put_failure;
10237 genlmsg_end(msg, hdr);
10239 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10240 NL80211_MCGRP_MLME, gfp);
10244 genlmsg_cancel(msg, hdr);
10248 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
10249 struct net_device *netdev, const u8 *addr,
10252 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
10256 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
10257 struct net_device *netdev, const u8 *addr,
10260 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
10264 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
10265 struct net_device *netdev, const u8 *bssid,
10266 const u8 *req_ie, size_t req_ie_len,
10267 const u8 *resp_ie, size_t resp_ie_len,
10268 u16 status, gfp_t gfp)
10270 struct sk_buff *msg;
10273 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10277 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
10283 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10284 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10285 (bssid && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid)) ||
10286 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE, status) ||
10288 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
10290 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
10291 goto nla_put_failure;
10293 genlmsg_end(msg, hdr);
10295 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10296 NL80211_MCGRP_MLME, gfp);
10300 genlmsg_cancel(msg, hdr);
10305 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
10306 struct net_device *netdev, const u8 *bssid,
10307 const u8 *req_ie, size_t req_ie_len,
10308 const u8 *resp_ie, size_t resp_ie_len, gfp_t gfp)
10310 struct sk_buff *msg;
10313 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10317 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
10323 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10324 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10325 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
10327 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
10329 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
10330 goto nla_put_failure;
10332 genlmsg_end(msg, hdr);
10334 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10335 NL80211_MCGRP_MLME, gfp);
10339 genlmsg_cancel(msg, hdr);
10344 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
10345 struct net_device *netdev, u16 reason,
10346 const u8 *ie, size_t ie_len, bool from_ap)
10348 struct sk_buff *msg;
10351 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10355 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
10361 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10362 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10363 (from_ap && reason &&
10364 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
10366 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
10367 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
10368 goto nla_put_failure;
10370 genlmsg_end(msg, hdr);
10372 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10373 NL80211_MCGRP_MLME, GFP_KERNEL);
10377 genlmsg_cancel(msg, hdr);
10382 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
10383 struct net_device *netdev, const u8 *bssid,
10386 struct sk_buff *msg;
10389 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10393 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
10399 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10400 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10401 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
10402 goto nla_put_failure;
10404 genlmsg_end(msg, hdr);
10406 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10407 NL80211_MCGRP_MLME, gfp);
10411 genlmsg_cancel(msg, hdr);
10415 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
10416 const u8* ie, u8 ie_len, gfp_t gfp)
10418 struct wireless_dev *wdev = dev->ieee80211_ptr;
10419 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
10420 struct sk_buff *msg;
10423 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
10426 trace_cfg80211_notify_new_peer_candidate(dev, addr);
10428 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10432 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
10438 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10439 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10440 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
10442 nla_put(msg, NL80211_ATTR_IE, ie_len , ie)))
10443 goto nla_put_failure;
10445 genlmsg_end(msg, hdr);
10447 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10448 NL80211_MCGRP_MLME, gfp);
10452 genlmsg_cancel(msg, hdr);
10455 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
10457 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
10458 struct net_device *netdev, const u8 *addr,
10459 enum nl80211_key_type key_type, int key_id,
10460 const u8 *tsc, gfp_t gfp)
10462 struct sk_buff *msg;
10465 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10469 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
10475 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10476 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10477 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
10478 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
10480 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
10481 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
10482 goto nla_put_failure;
10484 genlmsg_end(msg, hdr);
10486 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10487 NL80211_MCGRP_MLME, gfp);
10491 genlmsg_cancel(msg, hdr);
10495 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
10496 struct ieee80211_channel *channel_before,
10497 struct ieee80211_channel *channel_after)
10499 struct sk_buff *msg;
10501 struct nlattr *nl_freq;
10503 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
10507 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
10514 * Since we are applying the beacon hint to a wiphy we know its
10515 * wiphy_idx is valid
10517 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
10518 goto nla_put_failure;
10521 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
10523 goto nla_put_failure;
10524 if (nl80211_msg_put_channel(msg, channel_before, false))
10525 goto nla_put_failure;
10526 nla_nest_end(msg, nl_freq);
10529 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
10531 goto nla_put_failure;
10532 if (nl80211_msg_put_channel(msg, channel_after, false))
10533 goto nla_put_failure;
10534 nla_nest_end(msg, nl_freq);
10536 genlmsg_end(msg, hdr);
10539 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
10540 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
10546 genlmsg_cancel(msg, hdr);
10550 static void nl80211_send_remain_on_chan_event(
10551 int cmd, struct cfg80211_registered_device *rdev,
10552 struct wireless_dev *wdev, u64 cookie,
10553 struct ieee80211_channel *chan,
10554 unsigned int duration, gfp_t gfp)
10556 struct sk_buff *msg;
10559 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10563 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10569 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10570 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10571 wdev->netdev->ifindex)) ||
10572 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10573 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
10574 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
10575 NL80211_CHAN_NO_HT) ||
10576 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
10577 goto nla_put_failure;
10579 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
10580 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
10581 goto nla_put_failure;
10583 genlmsg_end(msg, hdr);
10585 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10586 NL80211_MCGRP_MLME, gfp);
10590 genlmsg_cancel(msg, hdr);
10594 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
10595 struct ieee80211_channel *chan,
10596 unsigned int duration, gfp_t gfp)
10598 struct wiphy *wiphy = wdev->wiphy;
10599 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10601 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
10602 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
10603 rdev, wdev, cookie, chan,
10606 EXPORT_SYMBOL(cfg80211_ready_on_channel);
10608 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
10609 struct ieee80211_channel *chan,
10612 struct wiphy *wiphy = wdev->wiphy;
10613 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10615 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
10616 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
10617 rdev, wdev, cookie, chan, 0, gfp);
10619 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
10621 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
10622 struct station_info *sinfo, gfp_t gfp)
10624 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10625 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10626 struct sk_buff *msg;
10628 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
10630 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10634 if (nl80211_send_station(msg, 0, 0, 0,
10635 rdev, dev, mac_addr, sinfo) < 0) {
10640 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10641 NL80211_MCGRP_MLME, gfp);
10643 EXPORT_SYMBOL(cfg80211_new_sta);
10645 void cfg80211_del_sta(struct net_device *dev, const u8 *mac_addr, gfp_t gfp)
10647 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10648 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10649 struct sk_buff *msg;
10652 trace_cfg80211_del_sta(dev, mac_addr);
10654 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10658 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_STATION);
10664 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10665 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
10666 goto nla_put_failure;
10668 genlmsg_end(msg, hdr);
10670 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10671 NL80211_MCGRP_MLME, gfp);
10675 genlmsg_cancel(msg, hdr);
10678 EXPORT_SYMBOL(cfg80211_del_sta);
10680 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
10681 enum nl80211_connect_failed_reason reason,
10684 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10685 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10686 struct sk_buff *msg;
10689 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
10693 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
10699 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10700 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
10701 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
10702 goto nla_put_failure;
10704 genlmsg_end(msg, hdr);
10706 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10707 NL80211_MCGRP_MLME, gfp);
10711 genlmsg_cancel(msg, hdr);
10714 EXPORT_SYMBOL(cfg80211_conn_failed);
10716 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
10717 const u8 *addr, gfp_t gfp)
10719 struct wireless_dev *wdev = dev->ieee80211_ptr;
10720 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
10721 struct sk_buff *msg;
10723 u32 nlportid = ACCESS_ONCE(wdev->ap_unexpected_nlportid);
10728 msg = nlmsg_new(100, gfp);
10732 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10738 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10739 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10740 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
10741 goto nla_put_failure;
10743 genlmsg_end(msg, hdr);
10744 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
10748 genlmsg_cancel(msg, hdr);
10753 bool cfg80211_rx_spurious_frame(struct net_device *dev,
10754 const u8 *addr, gfp_t gfp)
10756 struct wireless_dev *wdev = dev->ieee80211_ptr;
10759 trace_cfg80211_rx_spurious_frame(dev, addr);
10761 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
10762 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
10763 trace_cfg80211_return_bool(false);
10766 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
10768 trace_cfg80211_return_bool(ret);
10771 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
10773 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
10774 const u8 *addr, gfp_t gfp)
10776 struct wireless_dev *wdev = dev->ieee80211_ptr;
10779 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
10781 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
10782 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
10783 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
10784 trace_cfg80211_return_bool(false);
10787 ret = __nl80211_unexpected_frame(dev,
10788 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
10790 trace_cfg80211_return_bool(ret);
10793 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
10795 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
10796 struct wireless_dev *wdev, u32 nlportid,
10797 int freq, int sig_dbm,
10798 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
10800 struct net_device *netdev = wdev->netdev;
10801 struct sk_buff *msg;
10804 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10808 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
10814 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10815 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10816 netdev->ifindex)) ||
10817 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10818 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
10820 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
10821 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
10823 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
10824 goto nla_put_failure;
10826 genlmsg_end(msg, hdr);
10828 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
10831 genlmsg_cancel(msg, hdr);
10836 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
10837 const u8 *buf, size_t len, bool ack, gfp_t gfp)
10839 struct wiphy *wiphy = wdev->wiphy;
10840 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10841 struct net_device *netdev = wdev->netdev;
10842 struct sk_buff *msg;
10845 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
10847 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10851 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
10857 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10858 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10859 netdev->ifindex)) ||
10860 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10861 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
10862 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
10863 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
10864 goto nla_put_failure;
10866 genlmsg_end(msg, hdr);
10868 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10869 NL80211_MCGRP_MLME, gfp);
10873 genlmsg_cancel(msg, hdr);
10876 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
10878 void cfg80211_cqm_rssi_notify(struct net_device *dev,
10879 enum nl80211_cqm_rssi_threshold_event rssi_event,
10882 struct wireless_dev *wdev = dev->ieee80211_ptr;
10883 struct wiphy *wiphy = wdev->wiphy;
10884 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10885 struct sk_buff *msg;
10886 struct nlattr *pinfoattr;
10889 trace_cfg80211_cqm_rssi_notify(dev, rssi_event);
10891 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10895 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
10901 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10902 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
10903 goto nla_put_failure;
10905 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
10907 goto nla_put_failure;
10909 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
10911 goto nla_put_failure;
10913 nla_nest_end(msg, pinfoattr);
10915 genlmsg_end(msg, hdr);
10917 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10918 NL80211_MCGRP_MLME, gfp);
10922 genlmsg_cancel(msg, hdr);
10925 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
10927 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
10928 struct net_device *netdev, const u8 *bssid,
10929 const u8 *replay_ctr, gfp_t gfp)
10931 struct sk_buff *msg;
10932 struct nlattr *rekey_attr;
10935 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10939 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
10945 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10946 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10947 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
10948 goto nla_put_failure;
10950 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
10952 goto nla_put_failure;
10954 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
10955 NL80211_REPLAY_CTR_LEN, replay_ctr))
10956 goto nla_put_failure;
10958 nla_nest_end(msg, rekey_attr);
10960 genlmsg_end(msg, hdr);
10962 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10963 NL80211_MCGRP_MLME, gfp);
10967 genlmsg_cancel(msg, hdr);
10971 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
10972 const u8 *replay_ctr, gfp_t gfp)
10974 struct wireless_dev *wdev = dev->ieee80211_ptr;
10975 struct wiphy *wiphy = wdev->wiphy;
10976 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10978 trace_cfg80211_gtk_rekey_notify(dev, bssid);
10979 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
10981 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
10984 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
10985 struct net_device *netdev, int index,
10986 const u8 *bssid, bool preauth, gfp_t gfp)
10988 struct sk_buff *msg;
10989 struct nlattr *attr;
10992 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10996 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
11002 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11003 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
11004 goto nla_put_failure;
11006 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
11008 goto nla_put_failure;
11010 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
11011 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
11013 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
11014 goto nla_put_failure;
11016 nla_nest_end(msg, attr);
11018 genlmsg_end(msg, hdr);
11020 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11021 NL80211_MCGRP_MLME, gfp);
11025 genlmsg_cancel(msg, hdr);
11029 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
11030 const u8 *bssid, bool preauth, gfp_t gfp)
11032 struct wireless_dev *wdev = dev->ieee80211_ptr;
11033 struct wiphy *wiphy = wdev->wiphy;
11034 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11036 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
11037 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
11039 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
11041 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
11042 struct net_device *netdev,
11043 struct cfg80211_chan_def *chandef,
11046 struct sk_buff *msg;
11049 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11053 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CH_SWITCH_NOTIFY);
11059 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
11060 goto nla_put_failure;
11062 if (nl80211_send_chandef(msg, chandef))
11063 goto nla_put_failure;
11065 genlmsg_end(msg, hdr);
11067 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11068 NL80211_MCGRP_MLME, gfp);
11072 genlmsg_cancel(msg, hdr);
11076 void cfg80211_ch_switch_notify(struct net_device *dev,
11077 struct cfg80211_chan_def *chandef)
11079 struct wireless_dev *wdev = dev->ieee80211_ptr;
11080 struct wiphy *wiphy = wdev->wiphy;
11081 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11083 ASSERT_WDEV_LOCK(wdev);
11085 trace_cfg80211_ch_switch_notify(dev, chandef);
11087 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
11088 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
11089 wdev->iftype != NL80211_IFTYPE_ADHOC &&
11090 wdev->iftype != NL80211_IFTYPE_MESH_POINT))
11093 wdev->channel = chandef->chan;
11094 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL);
11096 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
11098 void cfg80211_cqm_txe_notify(struct net_device *dev,
11099 const u8 *peer, u32 num_packets,
11100 u32 rate, u32 intvl, gfp_t gfp)
11102 struct wireless_dev *wdev = dev->ieee80211_ptr;
11103 struct wiphy *wiphy = wdev->wiphy;
11104 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11105 struct sk_buff *msg;
11106 struct nlattr *pinfoattr;
11109 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
11113 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
11119 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11120 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11121 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer))
11122 goto nla_put_failure;
11124 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
11126 goto nla_put_failure;
11128 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
11129 goto nla_put_failure;
11131 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
11132 goto nla_put_failure;
11134 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
11135 goto nla_put_failure;
11137 nla_nest_end(msg, pinfoattr);
11139 genlmsg_end(msg, hdr);
11141 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11142 NL80211_MCGRP_MLME, gfp);
11146 genlmsg_cancel(msg, hdr);
11149 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
11152 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
11153 const struct cfg80211_chan_def *chandef,
11154 enum nl80211_radar_event event,
11155 struct net_device *netdev, gfp_t gfp)
11157 struct sk_buff *msg;
11160 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11164 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
11170 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
11171 goto nla_put_failure;
11173 /* NOP and radar events don't need a netdev parameter */
11175 struct wireless_dev *wdev = netdev->ieee80211_ptr;
11177 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11178 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11179 goto nla_put_failure;
11182 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
11183 goto nla_put_failure;
11185 if (nl80211_send_chandef(msg, chandef))
11186 goto nla_put_failure;
11188 genlmsg_end(msg, hdr);
11190 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11191 NL80211_MCGRP_MLME, gfp);
11195 genlmsg_cancel(msg, hdr);
11199 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
11200 const u8 *peer, u32 num_packets, gfp_t gfp)
11202 struct wireless_dev *wdev = dev->ieee80211_ptr;
11203 struct wiphy *wiphy = wdev->wiphy;
11204 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11205 struct sk_buff *msg;
11206 struct nlattr *pinfoattr;
11209 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
11211 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11215 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
11221 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11222 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11223 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer))
11224 goto nla_put_failure;
11226 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
11228 goto nla_put_failure;
11230 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
11231 goto nla_put_failure;
11233 nla_nest_end(msg, pinfoattr);
11235 genlmsg_end(msg, hdr);
11237 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11238 NL80211_MCGRP_MLME, gfp);
11242 genlmsg_cancel(msg, hdr);
11245 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
11247 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
11248 u64 cookie, bool acked, gfp_t gfp)
11250 struct wireless_dev *wdev = dev->ieee80211_ptr;
11251 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11252 struct sk_buff *msg;
11255 trace_cfg80211_probe_status(dev, addr, cookie, acked);
11257 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11262 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
11268 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11269 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11270 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
11271 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
11272 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)))
11273 goto nla_put_failure;
11275 genlmsg_end(msg, hdr);
11277 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11278 NL80211_MCGRP_MLME, gfp);
11282 genlmsg_cancel(msg, hdr);
11285 EXPORT_SYMBOL(cfg80211_probe_status);
11287 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
11288 const u8 *frame, size_t len,
11289 int freq, int sig_dbm)
11291 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11292 struct sk_buff *msg;
11294 struct cfg80211_beacon_registration *reg;
11296 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
11298 spin_lock_bh(&rdev->beacon_registrations_lock);
11299 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11300 msg = nlmsg_new(len + 100, GFP_ATOMIC);
11302 spin_unlock_bh(&rdev->beacon_registrations_lock);
11306 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
11308 goto nla_put_failure;
11310 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11312 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
11314 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
11315 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
11316 goto nla_put_failure;
11318 genlmsg_end(msg, hdr);
11320 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
11322 spin_unlock_bh(&rdev->beacon_registrations_lock);
11326 spin_unlock_bh(&rdev->beacon_registrations_lock);
11328 genlmsg_cancel(msg, hdr);
11331 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
11334 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
11335 struct cfg80211_wowlan_wakeup *wakeup,
11338 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11339 struct sk_buff *msg;
11343 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
11346 size += wakeup->packet_present_len;
11348 msg = nlmsg_new(size, gfp);
11352 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
11356 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11357 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11360 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11361 wdev->netdev->ifindex))
11365 struct nlattr *reasons;
11367 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
11371 if (wakeup->disconnect &&
11372 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
11374 if (wakeup->magic_pkt &&
11375 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
11377 if (wakeup->gtk_rekey_failure &&
11378 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
11380 if (wakeup->eap_identity_req &&
11381 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
11383 if (wakeup->four_way_handshake &&
11384 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
11386 if (wakeup->rfkill_release &&
11387 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
11390 if (wakeup->pattern_idx >= 0 &&
11391 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
11392 wakeup->pattern_idx))
11395 if (wakeup->tcp_match &&
11396 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
11399 if (wakeup->tcp_connlost &&
11400 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
11403 if (wakeup->tcp_nomoretokens &&
11405 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
11408 if (wakeup->packet) {
11409 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
11410 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
11412 if (!wakeup->packet_80211) {
11414 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
11416 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
11419 if (wakeup->packet_len &&
11420 nla_put_u32(msg, len_attr, wakeup->packet_len))
11423 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
11428 nla_nest_end(msg, reasons);
11431 genlmsg_end(msg, hdr);
11433 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11434 NL80211_MCGRP_MLME, gfp);
11440 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
11443 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
11444 enum nl80211_tdls_operation oper,
11445 u16 reason_code, gfp_t gfp)
11447 struct wireless_dev *wdev = dev->ieee80211_ptr;
11448 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11449 struct sk_buff *msg;
11452 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
11455 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11459 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
11465 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11466 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11467 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
11468 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
11469 (reason_code > 0 &&
11470 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
11471 goto nla_put_failure;
11473 genlmsg_end(msg, hdr);
11475 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11476 NL80211_MCGRP_MLME, gfp);
11480 genlmsg_cancel(msg, hdr);
11483 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
11485 static int nl80211_netlink_notify(struct notifier_block * nb,
11486 unsigned long state,
11489 struct netlink_notify *notify = _notify;
11490 struct cfg80211_registered_device *rdev;
11491 struct wireless_dev *wdev;
11492 struct cfg80211_beacon_registration *reg, *tmp;
11494 if (state != NETLINK_URELEASE)
11495 return NOTIFY_DONE;
11499 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
11500 list_for_each_entry_rcu(wdev, &rdev->wdev_list, list)
11501 cfg80211_mlme_unregister_socket(wdev, notify->portid);
11503 spin_lock_bh(&rdev->beacon_registrations_lock);
11504 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
11506 if (reg->nlportid == notify->portid) {
11507 list_del(®->list);
11512 spin_unlock_bh(&rdev->beacon_registrations_lock);
11517 return NOTIFY_DONE;
11520 static struct notifier_block nl80211_netlink_notifier = {
11521 .notifier_call = nl80211_netlink_notify,
11524 void cfg80211_ft_event(struct net_device *netdev,
11525 struct cfg80211_ft_event_params *ft_event)
11527 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
11528 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11529 struct sk_buff *msg;
11532 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
11534 if (!ft_event->target_ap)
11537 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11541 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
11545 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11546 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11547 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
11550 if (ft_event->ies &&
11551 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
11553 if (ft_event->ric_ies &&
11554 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
11555 ft_event->ric_ies))
11558 genlmsg_end(msg, hdr);
11560 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11561 NL80211_MCGRP_MLME, GFP_KERNEL);
11566 EXPORT_SYMBOL(cfg80211_ft_event);
11568 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
11570 struct cfg80211_registered_device *rdev;
11571 struct sk_buff *msg;
11575 rdev = wiphy_to_dev(wdev->wiphy);
11576 if (!rdev->crit_proto_nlportid)
11579 nlportid = rdev->crit_proto_nlportid;
11580 rdev->crit_proto_nlportid = 0;
11582 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11586 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
11588 goto nla_put_failure;
11590 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11591 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11592 goto nla_put_failure;
11594 genlmsg_end(msg, hdr);
11596 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
11601 genlmsg_cancel(msg, hdr);
11605 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
11607 /* initialisation/exit functions */
11609 int nl80211_init(void)
11613 err = genl_register_family_with_ops_groups(&nl80211_fam, nl80211_ops,
11618 err = netlink_register_notifier(&nl80211_netlink_notifier);
11624 genl_unregister_family(&nl80211_fam);
11628 void nl80211_exit(void)
11630 netlink_unregister_notifier(&nl80211_netlink_notifier);
11631 genl_unregister_family(&nl80211_fam);
projects / ~andy / linux / blob