2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
8 #include <linux/module.h>
10 #include <linux/slab.h>
11 #include <linux/list.h>
12 #include <linux/if_ether.h>
13 #include <linux/ieee80211.h>
14 #include <linux/nl80211.h>
15 #include <linux/rtnetlink.h>
16 #include <linux/netlink.h>
17 #include <linux/etherdevice.h>
18 #include <net/net_namespace.h>
19 #include <net/genetlink.h>
20 #include <net/cfg80211.h>
22 #include <net/inet_connection_sock.h>
28 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
29 struct genl_info *info,
30 struct cfg80211_crypto_settings *settings,
33 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
34 struct genl_info *info);
35 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
36 struct genl_info *info);
38 /* the netlink family */
39 static struct genl_family nl80211_fam = {
40 .id = GENL_ID_GENERATE, /* don't bother with a hardcoded ID */
41 .name = NL80211_GENL_NAME, /* have users key off the name instead */
42 .hdrsize = 0, /* no private header */
43 .version = 1, /* no particular meaning now */
44 .maxattr = NL80211_ATTR_MAX,
46 .pre_doit = nl80211_pre_doit,
47 .post_doit = nl80211_post_doit,
50 /* multicast groups */
51 enum nl80211_multicast_groups {
54 NL80211_MCGRP_REGULATORY,
57 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
60 static const struct genl_multicast_group nl80211_mcgrps[] = {
61 [NL80211_MCGRP_CONFIG] = { .name = "config", },
62 [NL80211_MCGRP_SCAN] = { .name = "scan", },
63 [NL80211_MCGRP_REGULATORY] = { .name = "regulatory", },
64 [NL80211_MCGRP_MLME] = { .name = "mlme", },
65 [NL80211_MCGRP_VENDOR] = { .name = "vendor", },
66 #ifdef CONFIG_NL80211_TESTMODE
67 [NL80211_MCGRP_TESTMODE] = { .name = "testmode", }
71 /* returns ERR_PTR values */
72 static struct wireless_dev *
73 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
75 struct cfg80211_registered_device *rdev;
76 struct wireless_dev *result = NULL;
77 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
78 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
85 if (!have_ifidx && !have_wdev_id)
86 return ERR_PTR(-EINVAL);
89 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
91 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
92 wiphy_idx = wdev_id >> 32;
95 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
96 struct wireless_dev *wdev;
98 if (wiphy_net(&rdev->wiphy) != netns)
101 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
104 list_for_each_entry(wdev, &rdev->wdev_list, list) {
105 if (have_ifidx && wdev->netdev &&
106 wdev->netdev->ifindex == ifidx) {
110 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
122 return ERR_PTR(-ENODEV);
125 static struct cfg80211_registered_device *
126 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
128 struct cfg80211_registered_device *rdev = NULL, *tmp;
129 struct net_device *netdev;
133 if (!attrs[NL80211_ATTR_WIPHY] &&
134 !attrs[NL80211_ATTR_IFINDEX] &&
135 !attrs[NL80211_ATTR_WDEV])
136 return ERR_PTR(-EINVAL);
138 if (attrs[NL80211_ATTR_WIPHY])
139 rdev = cfg80211_rdev_by_wiphy_idx(
140 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
142 if (attrs[NL80211_ATTR_WDEV]) {
143 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
144 struct wireless_dev *wdev;
147 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
149 /* make sure wdev exists */
150 list_for_each_entry(wdev, &tmp->wdev_list, list) {
151 if (wdev->identifier != (u32)wdev_id)
160 if (rdev && tmp != rdev)
161 return ERR_PTR(-EINVAL);
166 if (attrs[NL80211_ATTR_IFINDEX]) {
167 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
168 netdev = dev_get_by_index(netns, ifindex);
170 if (netdev->ieee80211_ptr)
172 netdev->ieee80211_ptr->wiphy);
178 /* not wireless device -- return error */
180 return ERR_PTR(-EINVAL);
182 /* mismatch -- return error */
183 if (rdev && tmp != rdev)
184 return ERR_PTR(-EINVAL);
191 return ERR_PTR(-ENODEV);
193 if (netns != wiphy_net(&rdev->wiphy))
194 return ERR_PTR(-ENODEV);
200 * This function returns a pointer to the driver
201 * that the genl_info item that is passed refers to.
203 * The result of this can be a PTR_ERR and hence must
204 * be checked with IS_ERR() for errors.
206 static struct cfg80211_registered_device *
207 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
209 return __cfg80211_rdev_from_attrs(netns, info->attrs);
212 /* policy for the attributes */
213 static const struct nla_policy nl80211_policy[NL80211_ATTR_MAX+1] = {
214 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
215 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
217 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
219 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
220 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
221 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
222 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
223 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
225 [NL80211_ATTR_WIPHY_RETRY_SHORT] = { .type = NLA_U8 },
226 [NL80211_ATTR_WIPHY_RETRY_LONG] = { .type = NLA_U8 },
227 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
228 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
229 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
231 [NL80211_ATTR_IFTYPE] = { .type = NLA_U32 },
232 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
233 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
235 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
236 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
238 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
239 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
240 .len = WLAN_MAX_KEY_LEN },
241 [NL80211_ATTR_KEY_IDX] = { .type = NLA_U8 },
242 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
243 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
244 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
245 [NL80211_ATTR_KEY_TYPE] = { .type = NLA_U32 },
247 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
248 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
249 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
250 .len = IEEE80211_MAX_DATA_LEN },
251 [NL80211_ATTR_BEACON_TAIL] = { .type = NLA_BINARY,
252 .len = IEEE80211_MAX_DATA_LEN },
253 [NL80211_ATTR_STA_AID] = { .type = NLA_U16 },
254 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
255 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
256 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
257 .len = NL80211_MAX_SUPP_RATES },
258 [NL80211_ATTR_STA_PLINK_ACTION] = { .type = NLA_U8 },
259 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
260 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
261 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
262 .len = IEEE80211_MAX_MESH_ID_LEN },
263 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
265 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
266 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
268 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
269 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
270 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
271 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
272 .len = NL80211_MAX_SUPP_RATES },
273 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
275 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
276 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
278 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
280 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
281 [NL80211_ATTR_IE] = { .type = NLA_BINARY,
282 .len = IEEE80211_MAX_DATA_LEN },
283 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
284 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
286 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
287 .len = IEEE80211_MAX_SSID_LEN },
288 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
289 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
290 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
291 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
292 [NL80211_ATTR_USE_MFP] = { .type = NLA_U32 },
293 [NL80211_ATTR_STA_FLAGS2] = {
294 .len = sizeof(struct nl80211_sta_flag_update),
296 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
297 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
298 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
299 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
300 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
301 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
302 [NL80211_ATTR_PID] = { .type = NLA_U32 },
303 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
304 [NL80211_ATTR_PMKID] = { .type = NLA_BINARY,
305 .len = WLAN_PMKID_LEN },
306 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
307 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
308 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
309 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
310 .len = IEEE80211_MAX_DATA_LEN },
311 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
312 [NL80211_ATTR_PS_STATE] = { .type = NLA_U32 },
313 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
314 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
315 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
316 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
317 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
318 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
319 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
320 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
321 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
322 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
323 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
324 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
325 [NL80211_ATTR_STA_PLINK_STATE] = { .type = NLA_U8 },
326 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
327 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
328 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
329 [NL80211_ATTR_HIDDEN_SSID] = { .type = NLA_U32 },
330 [NL80211_ATTR_IE_PROBE_RESP] = { .type = NLA_BINARY,
331 .len = IEEE80211_MAX_DATA_LEN },
332 [NL80211_ATTR_IE_ASSOC_RESP] = { .type = NLA_BINARY,
333 .len = IEEE80211_MAX_DATA_LEN },
334 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
335 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
336 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
337 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
338 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
339 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
340 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
341 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
342 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
343 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
344 .len = IEEE80211_MAX_DATA_LEN },
345 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
346 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
347 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
348 .len = NL80211_HT_CAPABILITY_LEN
350 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
351 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
352 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
353 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
354 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
355 [NL80211_ATTR_SAE_DATA] = { .type = NLA_BINARY, },
356 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
357 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
358 [NL80211_ATTR_P2P_CTWINDOW] = { .type = NLA_U8 },
359 [NL80211_ATTR_P2P_OPPPS] = { .type = NLA_U8 },
360 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
361 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
362 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
363 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
364 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
365 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
366 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
367 .len = NL80211_VHT_CAPABILITY_LEN,
369 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
370 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
371 .len = IEEE80211_MAX_DATA_LEN },
372 [NL80211_ATTR_PEER_AID] = { .type = NLA_U16 },
373 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
374 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
375 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
376 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_U16 },
377 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_U16 },
378 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
379 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
380 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
381 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
382 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
383 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
384 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
385 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
386 .len = IEEE80211_QOS_MAP_LEN_MAX },
389 /* policy for the key attributes */
390 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
391 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
392 [NL80211_KEY_IDX] = { .type = NLA_U8 },
393 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
394 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
395 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
396 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
397 [NL80211_KEY_TYPE] = { .type = NLA_U32 },
398 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
401 /* policy for the key default flags */
402 static const struct nla_policy
403 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
404 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
405 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
408 /* policy for WoWLAN attributes */
409 static const struct nla_policy
410 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
411 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
412 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
413 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
414 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
415 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
416 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
417 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
418 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
419 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
422 static const struct nla_policy
423 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
424 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
425 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
426 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
427 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
428 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
429 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
430 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
431 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
433 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
434 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
436 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
437 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
438 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
441 /* policy for coalesce rule attributes */
442 static const struct nla_policy
443 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
444 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
445 [NL80211_ATTR_COALESCE_RULE_CONDITION] = { .type = NLA_U32 },
446 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
449 /* policy for GTK rekey offload attributes */
450 static const struct nla_policy
451 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
452 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
453 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
454 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
457 static const struct nla_policy
458 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
459 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
460 .len = IEEE80211_MAX_SSID_LEN },
461 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
464 static int nl80211_prepare_wdev_dump(struct sk_buff *skb,
465 struct netlink_callback *cb,
466 struct cfg80211_registered_device **rdev,
467 struct wireless_dev **wdev)
474 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
475 nl80211_fam.attrbuf, nl80211_fam.maxattr,
480 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk),
481 nl80211_fam.attrbuf);
483 err = PTR_ERR(*wdev);
486 *rdev = wiphy_to_dev((*wdev)->wiphy);
487 /* 0 is the first index - add 1 to parse only once */
488 cb->args[0] = (*rdev)->wiphy_idx + 1;
489 cb->args[1] = (*wdev)->identifier;
491 /* subtract the 1 again here */
492 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
493 struct wireless_dev *tmp;
499 *rdev = wiphy_to_dev(wiphy);
502 list_for_each_entry(tmp, &(*rdev)->wdev_list, list) {
503 if (tmp->identifier == cb->args[1]) {
521 static void nl80211_finish_wdev_dump(struct cfg80211_registered_device *rdev)
527 static bool is_valid_ie_attr(const struct nlattr *attr)
535 pos = nla_data(attr);
556 /* message building helper */
557 static inline void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
560 /* since there is no private header just add the generic one */
561 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
564 static int nl80211_msg_put_channel(struct sk_buff *msg,
565 struct ieee80211_channel *chan,
568 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
570 goto nla_put_failure;
572 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
573 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
574 goto nla_put_failure;
575 if (chan->flags & IEEE80211_CHAN_NO_IR) {
576 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
577 goto nla_put_failure;
578 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
579 goto nla_put_failure;
581 if (chan->flags & IEEE80211_CHAN_RADAR) {
582 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
583 goto nla_put_failure;
587 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
589 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
591 goto nla_put_failure;
592 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
594 goto nla_put_failure;
599 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
600 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
601 goto nla_put_failure;
602 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
603 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
604 goto nla_put_failure;
605 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
606 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
607 goto nla_put_failure;
608 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
609 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
610 goto nla_put_failure;
613 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
614 DBM_TO_MBM(chan->max_power)))
615 goto nla_put_failure;
623 /* netlink command implementations */
630 bool def_uni, def_multi;
633 static int nl80211_parse_key_new(struct nlattr *key, struct key_parse *k)
635 struct nlattr *tb[NL80211_KEY_MAX + 1];
636 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
641 k->def = !!tb[NL80211_KEY_DEFAULT];
642 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
651 if (tb[NL80211_KEY_IDX])
652 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
654 if (tb[NL80211_KEY_DATA]) {
655 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
656 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
659 if (tb[NL80211_KEY_SEQ]) {
660 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
661 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
664 if (tb[NL80211_KEY_CIPHER])
665 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
667 if (tb[NL80211_KEY_TYPE]) {
668 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
669 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
673 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
674 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
675 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
676 tb[NL80211_KEY_DEFAULT_TYPES],
677 nl80211_key_default_policy);
681 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
682 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
688 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
690 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
691 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
692 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
695 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
696 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
697 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
700 if (info->attrs[NL80211_ATTR_KEY_IDX])
701 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
703 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
704 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
706 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
707 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
716 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
717 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
718 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
722 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
723 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
724 int err = nla_parse_nested(
725 kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
726 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
727 nl80211_key_default_policy);
731 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
732 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
738 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
742 memset(k, 0, sizeof(*k));
746 if (info->attrs[NL80211_ATTR_KEY])
747 err = nl80211_parse_key_new(info->attrs[NL80211_ATTR_KEY], k);
749 err = nl80211_parse_key_old(info, k);
754 if (k->def && k->defmgmt)
758 if (k->def_uni || !k->def_multi)
764 if (k->idx < 4 || k->idx > 5)
767 if (k->idx < 0 || k->idx > 3)
770 if (k->idx < 0 || k->idx > 5)
778 static struct cfg80211_cached_keys *
779 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
780 struct nlattr *keys, bool *no_ht)
782 struct key_parse parse;
784 struct cfg80211_cached_keys *result;
785 int rem, err, def = 0;
787 result = kzalloc(sizeof(*result), GFP_KERNEL);
789 return ERR_PTR(-ENOMEM);
792 result->defmgmt = -1;
794 nla_for_each_nested(key, keys, rem) {
795 memset(&parse, 0, sizeof(parse));
798 err = nl80211_parse_key_new(key, &parse);
804 if (parse.idx < 0 || parse.idx > 4)
810 result->def = parse.idx;
811 if (!parse.def_uni || !parse.def_multi)
813 } else if (parse.defmgmt)
815 err = cfg80211_validate_key_settings(rdev, &parse.p,
816 parse.idx, false, NULL);
819 result->params[parse.idx].cipher = parse.p.cipher;
820 result->params[parse.idx].key_len = parse.p.key_len;
821 result->params[parse.idx].key = result->data[parse.idx];
822 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
824 if (parse.p.cipher == WLAN_CIPHER_SUITE_WEP40 ||
825 parse.p.cipher == WLAN_CIPHER_SUITE_WEP104) {
837 static int nl80211_key_allowed(struct wireless_dev *wdev)
839 ASSERT_WDEV_LOCK(wdev);
841 switch (wdev->iftype) {
842 case NL80211_IFTYPE_AP:
843 case NL80211_IFTYPE_AP_VLAN:
844 case NL80211_IFTYPE_P2P_GO:
845 case NL80211_IFTYPE_MESH_POINT:
847 case NL80211_IFTYPE_ADHOC:
848 case NL80211_IFTYPE_STATION:
849 case NL80211_IFTYPE_P2P_CLIENT:
850 if (!wdev->current_bss)
860 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
862 struct nlattr *nl_modes = nla_nest_start(msg, attr);
866 goto nla_put_failure;
870 if ((ifmodes & 1) && nla_put_flag(msg, i))
871 goto nla_put_failure;
876 nla_nest_end(msg, nl_modes);
883 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
887 struct nlattr *nl_combis;
890 nl_combis = nla_nest_start(msg,
891 NL80211_ATTR_INTERFACE_COMBINATIONS);
893 goto nla_put_failure;
895 for (i = 0; i < wiphy->n_iface_combinations; i++) {
896 const struct ieee80211_iface_combination *c;
897 struct nlattr *nl_combi, *nl_limits;
899 c = &wiphy->iface_combinations[i];
901 nl_combi = nla_nest_start(msg, i + 1);
903 goto nla_put_failure;
905 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
907 goto nla_put_failure;
909 for (j = 0; j < c->n_limits; j++) {
910 struct nlattr *nl_limit;
912 nl_limit = nla_nest_start(msg, j + 1);
914 goto nla_put_failure;
915 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
917 goto nla_put_failure;
918 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
920 goto nla_put_failure;
921 nla_nest_end(msg, nl_limit);
924 nla_nest_end(msg, nl_limits);
926 if (c->beacon_int_infra_match &&
927 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
928 goto nla_put_failure;
929 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
930 c->num_different_channels) ||
931 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
933 goto nla_put_failure;
935 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
936 c->radar_detect_widths))
937 goto nla_put_failure;
939 nla_nest_end(msg, nl_combi);
942 nla_nest_end(msg, nl_combis);
950 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
953 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
954 struct nlattr *nl_tcp;
959 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
963 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
964 tcp->data_payload_max))
967 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
968 tcp->data_payload_max))
971 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
974 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
975 sizeof(*tcp->tok), tcp->tok))
978 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
979 tcp->data_interval_max))
982 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
983 tcp->wake_payload_max))
986 nla_nest_end(msg, nl_tcp);
990 static int nl80211_send_wowlan(struct sk_buff *msg,
991 struct cfg80211_registered_device *dev,
994 struct nlattr *nl_wowlan;
996 if (!dev->wiphy.wowlan)
999 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1003 if (((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1004 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1005 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1006 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1007 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1008 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1009 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1010 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1011 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1012 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1013 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1014 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1015 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1016 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1017 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1018 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1021 if (dev->wiphy.wowlan->n_patterns) {
1022 struct nl80211_pattern_support pat = {
1023 .max_patterns = dev->wiphy.wowlan->n_patterns,
1024 .min_pattern_len = dev->wiphy.wowlan->pattern_min_len,
1025 .max_pattern_len = dev->wiphy.wowlan->pattern_max_len,
1026 .max_pkt_offset = dev->wiphy.wowlan->max_pkt_offset,
1029 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1034 if (large && nl80211_send_wowlan_tcp_caps(dev, msg))
1037 nla_nest_end(msg, nl_wowlan);
1043 static int nl80211_send_coalesce(struct sk_buff *msg,
1044 struct cfg80211_registered_device *dev)
1046 struct nl80211_coalesce_rule_support rule;
1048 if (!dev->wiphy.coalesce)
1051 rule.max_rules = dev->wiphy.coalesce->n_rules;
1052 rule.max_delay = dev->wiphy.coalesce->max_delay;
1053 rule.pat.max_patterns = dev->wiphy.coalesce->n_patterns;
1054 rule.pat.min_pattern_len = dev->wiphy.coalesce->pattern_min_len;
1055 rule.pat.max_pattern_len = dev->wiphy.coalesce->pattern_max_len;
1056 rule.pat.max_pkt_offset = dev->wiphy.coalesce->max_pkt_offset;
1058 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1064 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1065 struct ieee80211_supported_band *sband)
1067 struct nlattr *nl_rates, *nl_rate;
1068 struct ieee80211_rate *rate;
1072 if (sband->ht_cap.ht_supported &&
1073 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1074 sizeof(sband->ht_cap.mcs),
1075 &sband->ht_cap.mcs) ||
1076 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1077 sband->ht_cap.cap) ||
1078 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1079 sband->ht_cap.ampdu_factor) ||
1080 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1081 sband->ht_cap.ampdu_density)))
1085 if (sband->vht_cap.vht_supported &&
1086 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1087 sizeof(sband->vht_cap.vht_mcs),
1088 &sband->vht_cap.vht_mcs) ||
1089 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1090 sband->vht_cap.cap)))
1094 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1098 for (i = 0; i < sband->n_bitrates; i++) {
1099 nl_rate = nla_nest_start(msg, i);
1103 rate = &sband->bitrates[i];
1104 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1107 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1109 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1112 nla_nest_end(msg, nl_rate);
1115 nla_nest_end(msg, nl_rates);
1121 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1122 const struct ieee80211_txrx_stypes *mgmt_stypes)
1125 struct nlattr *nl_ftypes, *nl_ifs;
1126 enum nl80211_iftype ift;
1132 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1136 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1137 nl_ftypes = nla_nest_start(msg, ift);
1141 stypes = mgmt_stypes[ift].tx;
1144 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1145 (i << 4) | IEEE80211_FTYPE_MGMT))
1150 nla_nest_end(msg, nl_ftypes);
1153 nla_nest_end(msg, nl_ifs);
1155 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1159 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1160 nl_ftypes = nla_nest_start(msg, ift);
1164 stypes = mgmt_stypes[ift].rx;
1167 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1168 (i << 4) | IEEE80211_FTYPE_MGMT))
1173 nla_nest_end(msg, nl_ftypes);
1175 nla_nest_end(msg, nl_ifs);
1180 struct nl80211_dump_wiphy_state {
1183 long split_start, band_start, chan_start;
1187 static int nl80211_send_wiphy(struct cfg80211_registered_device *dev,
1188 struct sk_buff *msg, u32 portid, u32 seq,
1189 int flags, struct nl80211_dump_wiphy_state *state)
1192 struct nlattr *nl_bands, *nl_band;
1193 struct nlattr *nl_freqs, *nl_freq;
1194 struct nlattr *nl_cmds;
1195 enum ieee80211_band band;
1196 struct ieee80211_channel *chan;
1198 const struct ieee80211_txrx_stypes *mgmt_stypes =
1199 dev->wiphy.mgmt_stypes;
1202 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_WIPHY);
1206 if (WARN_ON(!state))
1209 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, dev->wiphy_idx) ||
1210 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1211 wiphy_name(&dev->wiphy)) ||
1212 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1213 cfg80211_rdev_list_generation))
1214 goto nla_put_failure;
1216 switch (state->split_start) {
1218 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1219 dev->wiphy.retry_short) ||
1220 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1221 dev->wiphy.retry_long) ||
1222 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1223 dev->wiphy.frag_threshold) ||
1224 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1225 dev->wiphy.rts_threshold) ||
1226 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1227 dev->wiphy.coverage_class) ||
1228 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1229 dev->wiphy.max_scan_ssids) ||
1230 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1231 dev->wiphy.max_sched_scan_ssids) ||
1232 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1233 dev->wiphy.max_scan_ie_len) ||
1234 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1235 dev->wiphy.max_sched_scan_ie_len) ||
1236 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1237 dev->wiphy.max_match_sets))
1238 goto nla_put_failure;
1240 if ((dev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1241 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1242 goto nla_put_failure;
1243 if ((dev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1244 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1245 goto nla_put_failure;
1246 if ((dev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1247 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1248 goto nla_put_failure;
1249 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1250 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1251 goto nla_put_failure;
1252 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1253 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1254 goto nla_put_failure;
1255 if ((dev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1256 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1257 goto nla_put_failure;
1258 state->split_start++;
1262 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1263 sizeof(u32) * dev->wiphy.n_cipher_suites,
1264 dev->wiphy.cipher_suites))
1265 goto nla_put_failure;
1267 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1268 dev->wiphy.max_num_pmkids))
1269 goto nla_put_failure;
1271 if ((dev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1272 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1273 goto nla_put_failure;
1275 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1276 dev->wiphy.available_antennas_tx) ||
1277 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1278 dev->wiphy.available_antennas_rx))
1279 goto nla_put_failure;
1281 if ((dev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1282 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1283 dev->wiphy.probe_resp_offload))
1284 goto nla_put_failure;
1286 if ((dev->wiphy.available_antennas_tx ||
1287 dev->wiphy.available_antennas_rx) &&
1288 dev->ops->get_antenna) {
1289 u32 tx_ant = 0, rx_ant = 0;
1291 res = rdev_get_antenna(dev, &tx_ant, &rx_ant);
1293 if (nla_put_u32(msg,
1294 NL80211_ATTR_WIPHY_ANTENNA_TX,
1297 NL80211_ATTR_WIPHY_ANTENNA_RX,
1299 goto nla_put_failure;
1303 state->split_start++;
1307 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1308 dev->wiphy.interface_modes))
1309 goto nla_put_failure;
1310 state->split_start++;
1314 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1316 goto nla_put_failure;
1318 for (band = state->band_start;
1319 band < IEEE80211_NUM_BANDS; band++) {
1320 struct ieee80211_supported_band *sband;
1322 sband = dev->wiphy.bands[band];
1327 nl_band = nla_nest_start(msg, band);
1329 goto nla_put_failure;
1331 switch (state->chan_start) {
1333 if (nl80211_send_band_rateinfo(msg, sband))
1334 goto nla_put_failure;
1335 state->chan_start++;
1339 /* add frequencies */
1340 nl_freqs = nla_nest_start(
1341 msg, NL80211_BAND_ATTR_FREQS);
1343 goto nla_put_failure;
1345 for (i = state->chan_start - 1;
1346 i < sband->n_channels;
1348 nl_freq = nla_nest_start(msg, i);
1350 goto nla_put_failure;
1352 chan = &sband->channels[i];
1354 if (nl80211_msg_put_channel(
1357 goto nla_put_failure;
1359 nla_nest_end(msg, nl_freq);
1363 if (i < sband->n_channels)
1364 state->chan_start = i + 2;
1366 state->chan_start = 0;
1367 nla_nest_end(msg, nl_freqs);
1370 nla_nest_end(msg, nl_band);
1373 /* start again here */
1374 if (state->chan_start)
1379 nla_nest_end(msg, nl_bands);
1381 if (band < IEEE80211_NUM_BANDS)
1382 state->band_start = band + 1;
1384 state->band_start = 0;
1386 /* if bands & channels are done, continue outside */
1387 if (state->band_start == 0 && state->chan_start == 0)
1388 state->split_start++;
1392 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1394 goto nla_put_failure;
1397 #define CMD(op, n) \
1399 if (dev->ops->op) { \
1401 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1402 goto nla_put_failure; \
1406 CMD(add_virtual_intf, NEW_INTERFACE);
1407 CMD(change_virtual_intf, SET_INTERFACE);
1408 CMD(add_key, NEW_KEY);
1409 CMD(start_ap, START_AP);
1410 CMD(add_station, NEW_STATION);
1411 CMD(add_mpath, NEW_MPATH);
1412 CMD(update_mesh_config, SET_MESH_CONFIG);
1413 CMD(change_bss, SET_BSS);
1414 CMD(auth, AUTHENTICATE);
1415 CMD(assoc, ASSOCIATE);
1416 CMD(deauth, DEAUTHENTICATE);
1417 CMD(disassoc, DISASSOCIATE);
1418 CMD(join_ibss, JOIN_IBSS);
1419 CMD(join_mesh, JOIN_MESH);
1420 CMD(set_pmksa, SET_PMKSA);
1421 CMD(del_pmksa, DEL_PMKSA);
1422 CMD(flush_pmksa, FLUSH_PMKSA);
1423 if (dev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1424 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1425 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1426 CMD(mgmt_tx, FRAME);
1427 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1428 if (dev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1430 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1431 goto nla_put_failure;
1433 if (dev->ops->set_monitor_channel || dev->ops->start_ap ||
1434 dev->ops->join_mesh) {
1436 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1437 goto nla_put_failure;
1439 CMD(set_wds_peer, SET_WDS_PEER);
1440 if (dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1441 CMD(tdls_mgmt, TDLS_MGMT);
1442 CMD(tdls_oper, TDLS_OPER);
1444 if (dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN)
1445 CMD(sched_scan_start, START_SCHED_SCAN);
1446 CMD(probe_client, PROBE_CLIENT);
1447 CMD(set_noack_map, SET_NOACK_MAP);
1448 if (dev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1450 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1451 goto nla_put_failure;
1453 CMD(start_p2p_device, START_P2P_DEVICE);
1454 CMD(set_mcast_rate, SET_MCAST_RATE);
1456 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1457 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1458 if (dev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1459 CMD(channel_switch, CHANNEL_SWITCH);
1461 CMD(set_qos_map, SET_QOS_MAP);
1463 #ifdef CONFIG_NL80211_TESTMODE
1464 CMD(testmode_cmd, TESTMODE);
1469 if (dev->ops->connect || dev->ops->auth) {
1471 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1472 goto nla_put_failure;
1475 if (dev->ops->disconnect || dev->ops->deauth) {
1477 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1478 goto nla_put_failure;
1481 nla_nest_end(msg, nl_cmds);
1482 state->split_start++;
1486 if (dev->ops->remain_on_channel &&
1487 (dev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
1489 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
1490 dev->wiphy.max_remain_on_channel_duration))
1491 goto nla_put_failure;
1493 if ((dev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
1494 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
1495 goto nla_put_failure;
1497 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
1498 goto nla_put_failure;
1499 state->split_start++;
1504 if (nl80211_send_wowlan(msg, dev, state->split))
1505 goto nla_put_failure;
1506 state->split_start++;
1510 state->split_start++;
1513 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
1514 dev->wiphy.software_iftypes))
1515 goto nla_put_failure;
1517 if (nl80211_put_iface_combinations(&dev->wiphy, msg,
1519 goto nla_put_failure;
1521 state->split_start++;
1525 if ((dev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
1526 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
1527 dev->wiphy.ap_sme_capa))
1528 goto nla_put_failure;
1530 features = dev->wiphy.features;
1532 * We can only add the per-channel limit information if the
1533 * dump is split, otherwise it makes it too big. Therefore
1534 * only advertise it in that case.
1537 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
1538 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
1539 goto nla_put_failure;
1541 if (dev->wiphy.ht_capa_mod_mask &&
1542 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
1543 sizeof(*dev->wiphy.ht_capa_mod_mask),
1544 dev->wiphy.ht_capa_mod_mask))
1545 goto nla_put_failure;
1547 if (dev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
1548 dev->wiphy.max_acl_mac_addrs &&
1549 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
1550 dev->wiphy.max_acl_mac_addrs))
1551 goto nla_put_failure;
1554 * Any information below this point is only available to
1555 * applications that can deal with it being split. This
1556 * helps ensure that newly added capabilities don't break
1557 * older tools by overrunning their buffers.
1559 * We still increment split_start so that in the split
1560 * case we'll continue with more data in the next round,
1561 * but break unconditionally so unsplit data stops here.
1563 state->split_start++;
1566 if (dev->wiphy.extended_capabilities &&
1567 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
1568 dev->wiphy.extended_capabilities_len,
1569 dev->wiphy.extended_capabilities) ||
1570 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
1571 dev->wiphy.extended_capabilities_len,
1572 dev->wiphy.extended_capabilities_mask)))
1573 goto nla_put_failure;
1575 if (dev->wiphy.vht_capa_mod_mask &&
1576 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
1577 sizeof(*dev->wiphy.vht_capa_mod_mask),
1578 dev->wiphy.vht_capa_mod_mask))
1579 goto nla_put_failure;
1581 state->split_start++;
1584 if (nl80211_send_coalesce(msg, dev))
1585 goto nla_put_failure;
1587 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
1588 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
1589 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
1590 goto nla_put_failure;
1591 state->split_start++;
1594 if (dev->wiphy.n_vendor_commands) {
1595 const struct nl80211_vendor_cmd_info *info;
1596 struct nlattr *nested;
1598 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
1600 goto nla_put_failure;
1602 for (i = 0; i < dev->wiphy.n_vendor_commands; i++) {
1603 info = &dev->wiphy.vendor_commands[i].info;
1604 if (nla_put(msg, i + 1, sizeof(*info), info))
1605 goto nla_put_failure;
1607 nla_nest_end(msg, nested);
1610 if (dev->wiphy.n_vendor_events) {
1611 const struct nl80211_vendor_cmd_info *info;
1612 struct nlattr *nested;
1614 nested = nla_nest_start(msg,
1615 NL80211_ATTR_VENDOR_EVENTS);
1617 goto nla_put_failure;
1619 for (i = 0; i < dev->wiphy.n_vendor_events; i++) {
1620 info = &dev->wiphy.vendor_events[i];
1621 if (nla_put(msg, i + 1, sizeof(*info), info))
1622 goto nla_put_failure;
1624 nla_nest_end(msg, nested);
1628 state->split_start = 0;
1631 return genlmsg_end(msg, hdr);
1634 genlmsg_cancel(msg, hdr);
1638 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
1639 struct netlink_callback *cb,
1640 struct nl80211_dump_wiphy_state *state)
1642 struct nlattr **tb = nl80211_fam.attrbuf;
1643 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
1644 tb, nl80211_fam.maxattr, nl80211_policy);
1645 /* ignore parse errors for backward compatibility */
1649 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
1650 if (tb[NL80211_ATTR_WIPHY])
1651 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
1652 if (tb[NL80211_ATTR_WDEV])
1653 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
1654 if (tb[NL80211_ATTR_IFINDEX]) {
1655 struct net_device *netdev;
1656 struct cfg80211_registered_device *rdev;
1657 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
1659 netdev = dev_get_by_index(sock_net(skb->sk), ifidx);
1662 if (netdev->ieee80211_ptr) {
1663 rdev = wiphy_to_dev(
1664 netdev->ieee80211_ptr->wiphy);
1665 state->filter_wiphy = rdev->wiphy_idx;
1673 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
1676 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
1677 struct cfg80211_registered_device *dev;
1681 state = kzalloc(sizeof(*state), GFP_KERNEL);
1686 state->filter_wiphy = -1;
1687 ret = nl80211_dump_wiphy_parse(skb, cb, state);
1693 cb->args[0] = (long)state;
1696 list_for_each_entry(dev, &cfg80211_rdev_list, list) {
1697 if (!net_eq(wiphy_net(&dev->wiphy), sock_net(skb->sk)))
1699 if (++idx <= state->start)
1701 if (state->filter_wiphy != -1 &&
1702 state->filter_wiphy != dev->wiphy_idx)
1704 /* attempt to fit multiple wiphy data chunks into the skb */
1706 ret = nl80211_send_wiphy(dev, skb,
1707 NETLINK_CB(cb->skb).portid,
1709 NLM_F_MULTI, state);
1712 * If sending the wiphy data didn't fit (ENOBUFS
1713 * or EMSGSIZE returned), this SKB is still
1714 * empty (so it's not too big because another
1715 * wiphy dataset is already in the skb) and
1716 * we've not tried to adjust the dump allocation
1717 * yet ... then adjust the alloc size to be
1718 * bigger, and return 1 but with the empty skb.
1719 * This results in an empty message being RX'ed
1720 * in userspace, but that is ignored.
1722 * We can then retry with the larger buffer.
1724 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
1726 cb->min_dump_alloc < 4096) {
1727 cb->min_dump_alloc = 4096;
1734 } while (state->split_start > 0);
1744 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
1746 kfree((void *)cb->args[0]);
1750 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
1752 struct sk_buff *msg;
1753 struct cfg80211_registered_device *dev = info->user_ptr[0];
1754 struct nl80211_dump_wiphy_state state = {};
1756 msg = nlmsg_new(4096, GFP_KERNEL);
1760 if (nl80211_send_wiphy(dev, msg, info->snd_portid, info->snd_seq, 0,
1766 return genlmsg_reply(msg, info);
1769 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
1770 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
1771 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
1772 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
1773 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
1774 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
1777 static int parse_txq_params(struct nlattr *tb[],
1778 struct ieee80211_txq_params *txq_params)
1780 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
1781 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
1782 !tb[NL80211_TXQ_ATTR_AIFS])
1785 txq_params->ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
1786 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
1787 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
1788 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
1789 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
1791 if (txq_params->ac >= NL80211_NUM_ACS)
1797 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
1800 * You can only set the channel explicitly for WDS interfaces,
1801 * all others have their channel managed via their respective
1802 * "establish a connection" command (connect, join, ...)
1804 * For AP/GO and mesh mode, the channel can be set with the
1805 * channel userspace API, but is only stored and passed to the
1806 * low-level driver when the AP starts or the mesh is joined.
1807 * This is for backward compatibility, userspace can also give
1808 * the channel in the start-ap or join-mesh commands instead.
1810 * Monitors are special as they are normally slaved to
1811 * whatever else is going on, so they have their own special
1812 * operation to set the monitor channel if possible.
1815 wdev->iftype == NL80211_IFTYPE_AP ||
1816 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
1817 wdev->iftype == NL80211_IFTYPE_MONITOR ||
1818 wdev->iftype == NL80211_IFTYPE_P2P_GO;
1821 static int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
1822 struct genl_info *info,
1823 struct cfg80211_chan_def *chandef)
1827 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
1830 control_freq = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]);
1832 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
1833 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
1834 chandef->center_freq1 = control_freq;
1835 chandef->center_freq2 = 0;
1837 /* Primary channel not allowed */
1838 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED)
1841 if (info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
1842 enum nl80211_channel_type chantype;
1844 chantype = nla_get_u32(
1845 info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
1848 case NL80211_CHAN_NO_HT:
1849 case NL80211_CHAN_HT20:
1850 case NL80211_CHAN_HT40PLUS:
1851 case NL80211_CHAN_HT40MINUS:
1852 cfg80211_chandef_create(chandef, chandef->chan,
1858 } else if (info->attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
1860 nla_get_u32(info->attrs[NL80211_ATTR_CHANNEL_WIDTH]);
1861 if (info->attrs[NL80211_ATTR_CENTER_FREQ1])
1862 chandef->center_freq1 =
1864 info->attrs[NL80211_ATTR_CENTER_FREQ1]);
1865 if (info->attrs[NL80211_ATTR_CENTER_FREQ2])
1866 chandef->center_freq2 =
1868 info->attrs[NL80211_ATTR_CENTER_FREQ2]);
1871 if (!cfg80211_chandef_valid(chandef))
1874 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
1875 IEEE80211_CHAN_DISABLED))
1878 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
1879 chandef->width == NL80211_CHAN_WIDTH_10) &&
1880 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ))
1886 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
1887 struct wireless_dev *wdev,
1888 struct genl_info *info)
1890 struct cfg80211_chan_def chandef;
1892 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
1895 iftype = wdev->iftype;
1897 if (!nl80211_can_set_dev_channel(wdev))
1900 result = nl80211_parse_chandef(rdev, info, &chandef);
1905 case NL80211_IFTYPE_AP:
1906 case NL80211_IFTYPE_P2P_GO:
1907 if (wdev->beacon_interval) {
1911 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &chandef)) {
1915 wdev->preset_chandef = chandef;
1918 case NL80211_IFTYPE_MESH_POINT:
1919 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
1921 case NL80211_IFTYPE_MONITOR:
1922 result = cfg80211_set_monitor_channel(rdev, &chandef);
1931 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
1933 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1934 struct net_device *netdev = info->user_ptr[1];
1936 return __nl80211_set_channel(rdev, netdev->ieee80211_ptr, info);
1939 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
1941 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1942 struct net_device *dev = info->user_ptr[1];
1943 struct wireless_dev *wdev = dev->ieee80211_ptr;
1946 if (!info->attrs[NL80211_ATTR_MAC])
1949 if (netif_running(dev))
1952 if (!rdev->ops->set_wds_peer)
1955 if (wdev->iftype != NL80211_IFTYPE_WDS)
1958 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
1959 return rdev_set_wds_peer(rdev, dev, bssid);
1963 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
1965 struct cfg80211_registered_device *rdev;
1966 struct net_device *netdev = NULL;
1967 struct wireless_dev *wdev;
1968 int result = 0, rem_txq_params = 0;
1969 struct nlattr *nl_txq_params;
1971 u8 retry_short = 0, retry_long = 0;
1972 u32 frag_threshold = 0, rts_threshold = 0;
1973 u8 coverage_class = 0;
1978 * Try to find the wiphy and netdev. Normally this
1979 * function shouldn't need the netdev, but this is
1980 * done for backward compatibility -- previously
1981 * setting the channel was done per wiphy, but now
1982 * it is per netdev. Previous userland like hostapd
1983 * also passed a netdev to set_wiphy, so that it is
1984 * possible to let that go to the right netdev!
1987 if (info->attrs[NL80211_ATTR_IFINDEX]) {
1988 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
1990 netdev = dev_get_by_index(genl_info_net(info), ifindex);
1991 if (netdev && netdev->ieee80211_ptr)
1992 rdev = wiphy_to_dev(netdev->ieee80211_ptr->wiphy);
1998 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2001 return PTR_ERR(rdev);
2006 wdev = netdev->ieee80211_ptr;
2009 * end workaround code, by now the rdev is available
2010 * and locked, and wdev may or may not be NULL.
2013 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2014 result = cfg80211_dev_rename(
2015 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2020 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2021 struct ieee80211_txq_params txq_params;
2022 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2024 if (!rdev->ops->set_txq_params) {
2025 result = -EOPNOTSUPP;
2034 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2035 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
2040 if (!netif_running(netdev)) {
2045 nla_for_each_nested(nl_txq_params,
2046 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2048 nla_parse(tb, NL80211_TXQ_ATTR_MAX,
2049 nla_data(nl_txq_params),
2050 nla_len(nl_txq_params),
2052 result = parse_txq_params(tb, &txq_params);
2056 result = rdev_set_txq_params(rdev, netdev,
2063 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2064 result = __nl80211_set_channel(rdev,
2065 nl80211_can_set_dev_channel(wdev) ? wdev : NULL,
2071 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2072 struct wireless_dev *txp_wdev = wdev;
2073 enum nl80211_tx_power_setting type;
2076 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2079 if (!rdev->ops->set_tx_power) {
2080 result = -EOPNOTSUPP;
2084 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2085 type = nla_get_u32(info->attrs[idx]);
2087 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2088 (type != NL80211_TX_POWER_AUTOMATIC)) {
2093 if (type != NL80211_TX_POWER_AUTOMATIC) {
2094 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2095 mbm = nla_get_u32(info->attrs[idx]);
2098 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2103 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2104 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2106 if ((!rdev->wiphy.available_antennas_tx &&
2107 !rdev->wiphy.available_antennas_rx) ||
2108 !rdev->ops->set_antenna) {
2109 result = -EOPNOTSUPP;
2113 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2114 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2116 /* reject antenna configurations which don't match the
2117 * available antenna masks, except for the "all" mask */
2118 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2119 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx))) {
2124 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2125 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2127 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2134 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2135 retry_short = nla_get_u8(
2136 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2137 if (retry_short == 0) {
2141 changed |= WIPHY_PARAM_RETRY_SHORT;
2144 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2145 retry_long = nla_get_u8(
2146 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2147 if (retry_long == 0) {
2151 changed |= WIPHY_PARAM_RETRY_LONG;
2154 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2155 frag_threshold = nla_get_u32(
2156 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2157 if (frag_threshold < 256) {
2161 if (frag_threshold != (u32) -1) {
2163 * Fragments (apart from the last one) are required to
2164 * have even length. Make the fragmentation code
2165 * simpler by stripping LSB should someone try to use
2166 * odd threshold value.
2168 frag_threshold &= ~0x1;
2170 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2173 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2174 rts_threshold = nla_get_u32(
2175 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2176 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2179 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2180 coverage_class = nla_get_u8(
2181 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2182 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2186 u8 old_retry_short, old_retry_long;
2187 u32 old_frag_threshold, old_rts_threshold;
2188 u8 old_coverage_class;
2190 if (!rdev->ops->set_wiphy_params) {
2191 result = -EOPNOTSUPP;
2195 old_retry_short = rdev->wiphy.retry_short;
2196 old_retry_long = rdev->wiphy.retry_long;
2197 old_frag_threshold = rdev->wiphy.frag_threshold;
2198 old_rts_threshold = rdev->wiphy.rts_threshold;
2199 old_coverage_class = rdev->wiphy.coverage_class;
2201 if (changed & WIPHY_PARAM_RETRY_SHORT)
2202 rdev->wiphy.retry_short = retry_short;
2203 if (changed & WIPHY_PARAM_RETRY_LONG)
2204 rdev->wiphy.retry_long = retry_long;
2205 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2206 rdev->wiphy.frag_threshold = frag_threshold;
2207 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2208 rdev->wiphy.rts_threshold = rts_threshold;
2209 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2210 rdev->wiphy.coverage_class = coverage_class;
2212 result = rdev_set_wiphy_params(rdev, changed);
2214 rdev->wiphy.retry_short = old_retry_short;
2215 rdev->wiphy.retry_long = old_retry_long;
2216 rdev->wiphy.frag_threshold = old_frag_threshold;
2217 rdev->wiphy.rts_threshold = old_rts_threshold;
2218 rdev->wiphy.coverage_class = old_coverage_class;
2228 static inline u64 wdev_id(struct wireless_dev *wdev)
2230 return (u64)wdev->identifier |
2231 ((u64)wiphy_to_dev(wdev->wiphy)->wiphy_idx << 32);
2234 static int nl80211_send_chandef(struct sk_buff *msg,
2235 const struct cfg80211_chan_def *chandef)
2237 WARN_ON(!cfg80211_chandef_valid(chandef));
2239 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2240 chandef->chan->center_freq))
2242 switch (chandef->width) {
2243 case NL80211_CHAN_WIDTH_20_NOHT:
2244 case NL80211_CHAN_WIDTH_20:
2245 case NL80211_CHAN_WIDTH_40:
2246 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2247 cfg80211_get_chandef_type(chandef)))
2253 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2255 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2257 if (chandef->center_freq2 &&
2258 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2263 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2264 struct cfg80211_registered_device *rdev,
2265 struct wireless_dev *wdev)
2267 struct net_device *dev = wdev->netdev;
2270 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_INTERFACE);
2275 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2276 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
2277 goto nla_put_failure;
2279 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
2280 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
2281 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
2282 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
2283 nla_put_u32(msg, NL80211_ATTR_GENERATION,
2284 rdev->devlist_generation ^
2285 (cfg80211_rdev_list_generation << 2)))
2286 goto nla_put_failure;
2288 if (rdev->ops->get_channel) {
2290 struct cfg80211_chan_def chandef;
2292 ret = rdev_get_channel(rdev, wdev, &chandef);
2294 if (nl80211_send_chandef(msg, &chandef))
2295 goto nla_put_failure;
2299 if (wdev->ssid_len) {
2300 if (nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
2301 goto nla_put_failure;
2304 return genlmsg_end(msg, hdr);
2307 genlmsg_cancel(msg, hdr);
2311 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
2315 int wp_start = cb->args[0];
2316 int if_start = cb->args[1];
2317 struct cfg80211_registered_device *rdev;
2318 struct wireless_dev *wdev;
2321 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2322 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2324 if (wp_idx < wp_start) {
2330 list_for_each_entry(wdev, &rdev->wdev_list, list) {
2331 if (if_idx < if_start) {
2335 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
2336 cb->nlh->nlmsg_seq, NLM_F_MULTI,
2348 cb->args[0] = wp_idx;
2349 cb->args[1] = if_idx;
2354 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
2356 struct sk_buff *msg;
2357 struct cfg80211_registered_device *dev = info->user_ptr[0];
2358 struct wireless_dev *wdev = info->user_ptr[1];
2360 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2364 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2370 return genlmsg_reply(msg, info);
2373 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
2374 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
2375 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
2376 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
2377 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
2378 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
2379 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
2382 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
2384 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
2392 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX,
2393 nla, mntr_flags_policy))
2396 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
2398 *mntrflags |= (1<<flag);
2403 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
2404 struct net_device *netdev, u8 use_4addr,
2405 enum nl80211_iftype iftype)
2408 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
2414 case NL80211_IFTYPE_AP_VLAN:
2415 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
2418 case NL80211_IFTYPE_STATION:
2419 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
2429 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
2431 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2432 struct vif_params params;
2434 enum nl80211_iftype otype, ntype;
2435 struct net_device *dev = info->user_ptr[1];
2436 u32 _flags, *flags = NULL;
2437 bool change = false;
2439 memset(¶ms, 0, sizeof(params));
2441 otype = ntype = dev->ieee80211_ptr->iftype;
2443 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2444 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2447 if (ntype > NL80211_IFTYPE_MAX)
2451 if (info->attrs[NL80211_ATTR_MESH_ID]) {
2452 struct wireless_dev *wdev = dev->ieee80211_ptr;
2454 if (ntype != NL80211_IFTYPE_MESH_POINT)
2456 if (netif_running(dev))
2460 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2461 IEEE80211_MAX_MESH_ID_LEN);
2462 wdev->mesh_id_up_len =
2463 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2464 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2465 wdev->mesh_id_up_len);
2469 if (info->attrs[NL80211_ATTR_4ADDR]) {
2470 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2472 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
2476 params.use_4addr = -1;
2479 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
2480 if (ntype != NL80211_IFTYPE_MONITOR)
2482 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
2491 if (flags && (*flags & MONITOR_FLAG_ACTIVE) &&
2492 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2496 err = cfg80211_change_iface(rdev, dev, ntype, flags, ¶ms);
2500 if (!err && params.use_4addr != -1)
2501 dev->ieee80211_ptr->use_4addr = params.use_4addr;
2506 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
2508 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2509 struct vif_params params;
2510 struct wireless_dev *wdev;
2511 struct sk_buff *msg;
2513 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
2516 memset(¶ms, 0, sizeof(params));
2518 if (!info->attrs[NL80211_ATTR_IFNAME])
2521 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2522 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2523 if (type > NL80211_IFTYPE_MAX)
2527 if (!rdev->ops->add_virtual_intf ||
2528 !(rdev->wiphy.interface_modes & (1 << type)))
2531 if (type == NL80211_IFTYPE_P2P_DEVICE && info->attrs[NL80211_ATTR_MAC]) {
2532 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
2534 if (!is_valid_ether_addr(params.macaddr))
2535 return -EADDRNOTAVAIL;
2538 if (info->attrs[NL80211_ATTR_4ADDR]) {
2539 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2540 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
2545 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2549 err = parse_monitor_flags(type == NL80211_IFTYPE_MONITOR ?
2550 info->attrs[NL80211_ATTR_MNTR_FLAGS] : NULL,
2553 if (!err && (flags & MONITOR_FLAG_ACTIVE) &&
2554 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2557 wdev = rdev_add_virtual_intf(rdev,
2558 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
2559 type, err ? NULL : &flags, ¶ms);
2562 return PTR_ERR(wdev);
2566 case NL80211_IFTYPE_MESH_POINT:
2567 if (!info->attrs[NL80211_ATTR_MESH_ID])
2570 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2571 IEEE80211_MAX_MESH_ID_LEN);
2572 wdev->mesh_id_up_len =
2573 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2574 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2575 wdev->mesh_id_up_len);
2578 case NL80211_IFTYPE_P2P_DEVICE:
2580 * P2P Device doesn't have a netdev, so doesn't go
2581 * through the netdev notifier and must be added here
2583 mutex_init(&wdev->mtx);
2584 INIT_LIST_HEAD(&wdev->event_list);
2585 spin_lock_init(&wdev->event_lock);
2586 INIT_LIST_HEAD(&wdev->mgmt_registrations);
2587 spin_lock_init(&wdev->mgmt_registrations_lock);
2589 wdev->identifier = ++rdev->wdev_id;
2590 list_add_rcu(&wdev->list, &rdev->wdev_list);
2591 rdev->devlist_generation++;
2597 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2603 return genlmsg_reply(msg, info);
2606 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
2608 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2609 struct wireless_dev *wdev = info->user_ptr[1];
2611 if (!rdev->ops->del_virtual_intf)
2615 * If we remove a wireless device without a netdev then clear
2616 * user_ptr[1] so that nl80211_post_doit won't dereference it
2617 * to check if it needs to do dev_put(). Otherwise it crashes
2618 * since the wdev has been freed, unlike with a netdev where
2619 * we need the dev_put() for the netdev to really be freed.
2622 info->user_ptr[1] = NULL;
2624 return rdev_del_virtual_intf(rdev, wdev);
2627 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
2629 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2630 struct net_device *dev = info->user_ptr[1];
2633 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
2636 if (!rdev->ops->set_noack_map)
2639 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
2641 return rdev_set_noack_map(rdev, dev, noack_map);
2644 struct get_key_cookie {
2645 struct sk_buff *msg;
2650 static void get_key_callback(void *c, struct key_params *params)
2653 struct get_key_cookie *cookie = c;
2656 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
2657 params->key_len, params->key)) ||
2659 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
2660 params->seq_len, params->seq)) ||
2662 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
2664 goto nla_put_failure;
2666 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
2668 goto nla_put_failure;
2671 nla_put(cookie->msg, NL80211_KEY_DATA,
2672 params->key_len, params->key)) ||
2674 nla_put(cookie->msg, NL80211_KEY_SEQ,
2675 params->seq_len, params->seq)) ||
2677 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
2679 goto nla_put_failure;
2681 if (nla_put_u8(cookie->msg, NL80211_ATTR_KEY_IDX, cookie->idx))
2682 goto nla_put_failure;
2684 nla_nest_end(cookie->msg, key);
2691 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
2693 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2695 struct net_device *dev = info->user_ptr[1];
2697 const u8 *mac_addr = NULL;
2699 struct get_key_cookie cookie = {
2703 struct sk_buff *msg;
2705 if (info->attrs[NL80211_ATTR_KEY_IDX])
2706 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
2711 if (info->attrs[NL80211_ATTR_MAC])
2712 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2714 pairwise = !!mac_addr;
2715 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
2716 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
2717 if (kt >= NUM_NL80211_KEYTYPES)
2719 if (kt != NL80211_KEYTYPE_GROUP &&
2720 kt != NL80211_KEYTYPE_PAIRWISE)
2722 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
2725 if (!rdev->ops->get_key)
2728 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2732 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
2733 NL80211_CMD_NEW_KEY);
2735 goto nla_put_failure;
2738 cookie.idx = key_idx;
2740 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2741 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
2742 goto nla_put_failure;
2744 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
2745 goto nla_put_failure;
2747 if (pairwise && mac_addr &&
2748 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2751 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
2758 goto nla_put_failure;
2760 genlmsg_end(msg, hdr);
2761 return genlmsg_reply(msg, info);
2770 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
2772 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2773 struct key_parse key;
2775 struct net_device *dev = info->user_ptr[1];
2777 err = nl80211_parse_key(info, &key);
2784 /* only support setting default key */
2785 if (!key.def && !key.defmgmt)
2788 wdev_lock(dev->ieee80211_ptr);
2791 if (!rdev->ops->set_default_key) {
2796 err = nl80211_key_allowed(dev->ieee80211_ptr);
2800 err = rdev_set_default_key(rdev, dev, key.idx,
2801 key.def_uni, key.def_multi);
2806 #ifdef CONFIG_CFG80211_WEXT
2807 dev->ieee80211_ptr->wext.default_key = key.idx;
2810 if (key.def_uni || !key.def_multi) {
2815 if (!rdev->ops->set_default_mgmt_key) {
2820 err = nl80211_key_allowed(dev->ieee80211_ptr);
2824 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
2828 #ifdef CONFIG_CFG80211_WEXT
2829 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
2834 wdev_unlock(dev->ieee80211_ptr);
2839 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
2841 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2843 struct net_device *dev = info->user_ptr[1];
2844 struct key_parse key;
2845 const u8 *mac_addr = NULL;
2847 err = nl80211_parse_key(info, &key);
2854 if (info->attrs[NL80211_ATTR_MAC])
2855 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2857 if (key.type == -1) {
2859 key.type = NL80211_KEYTYPE_PAIRWISE;
2861 key.type = NL80211_KEYTYPE_GROUP;
2865 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
2866 key.type != NL80211_KEYTYPE_GROUP)
2869 if (!rdev->ops->add_key)
2872 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
2873 key.type == NL80211_KEYTYPE_PAIRWISE,
2877 wdev_lock(dev->ieee80211_ptr);
2878 err = nl80211_key_allowed(dev->ieee80211_ptr);
2880 err = rdev_add_key(rdev, dev, key.idx,
2881 key.type == NL80211_KEYTYPE_PAIRWISE,
2883 wdev_unlock(dev->ieee80211_ptr);
2888 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
2890 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2892 struct net_device *dev = info->user_ptr[1];
2893 u8 *mac_addr = NULL;
2894 struct key_parse key;
2896 err = nl80211_parse_key(info, &key);
2900 if (info->attrs[NL80211_ATTR_MAC])
2901 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2903 if (key.type == -1) {
2905 key.type = NL80211_KEYTYPE_PAIRWISE;
2907 key.type = NL80211_KEYTYPE_GROUP;
2911 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
2912 key.type != NL80211_KEYTYPE_GROUP)
2915 if (!rdev->ops->del_key)
2918 wdev_lock(dev->ieee80211_ptr);
2919 err = nl80211_key_allowed(dev->ieee80211_ptr);
2921 if (key.type == NL80211_KEYTYPE_PAIRWISE && mac_addr &&
2922 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2926 err = rdev_del_key(rdev, dev, key.idx,
2927 key.type == NL80211_KEYTYPE_PAIRWISE,
2930 #ifdef CONFIG_CFG80211_WEXT
2932 if (key.idx == dev->ieee80211_ptr->wext.default_key)
2933 dev->ieee80211_ptr->wext.default_key = -1;
2934 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
2935 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
2938 wdev_unlock(dev->ieee80211_ptr);
2943 /* This function returns an error or the number of nested attributes */
2944 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
2946 struct nlattr *attr;
2947 int n_entries = 0, tmp;
2949 nla_for_each_nested(attr, nl_attr, tmp) {
2950 if (nla_len(attr) != ETH_ALEN)
2960 * This function parses ACL information and allocates memory for ACL data.
2961 * On successful return, the calling function is responsible to free the
2962 * ACL buffer returned by this function.
2964 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
2965 struct genl_info *info)
2967 enum nl80211_acl_policy acl_policy;
2968 struct nlattr *attr;
2969 struct cfg80211_acl_data *acl;
2970 int i = 0, n_entries, tmp;
2972 if (!wiphy->max_acl_mac_addrs)
2973 return ERR_PTR(-EOPNOTSUPP);
2975 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
2976 return ERR_PTR(-EINVAL);
2978 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
2979 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
2980 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
2981 return ERR_PTR(-EINVAL);
2983 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
2984 return ERR_PTR(-EINVAL);
2986 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
2988 return ERR_PTR(n_entries);
2990 if (n_entries > wiphy->max_acl_mac_addrs)
2991 return ERR_PTR(-ENOTSUPP);
2993 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
2996 return ERR_PTR(-ENOMEM);
2998 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
2999 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3003 acl->n_acl_entries = n_entries;
3004 acl->acl_policy = acl_policy;
3009 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3011 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3012 struct net_device *dev = info->user_ptr[1];
3013 struct cfg80211_acl_data *acl;
3016 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3017 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3020 if (!dev->ieee80211_ptr->beacon_interval)
3023 acl = parse_acl_data(&rdev->wiphy, info);
3025 return PTR_ERR(acl);
3027 err = rdev_set_mac_acl(rdev, dev, acl);
3034 static int nl80211_parse_beacon(struct nlattr *attrs[],
3035 struct cfg80211_beacon_data *bcn)
3037 bool haveinfo = false;
3039 if (!is_valid_ie_attr(attrs[NL80211_ATTR_BEACON_TAIL]) ||
3040 !is_valid_ie_attr(attrs[NL80211_ATTR_IE]) ||
3041 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_PROBE_RESP]) ||
3042 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_ASSOC_RESP]))
3045 memset(bcn, 0, sizeof(*bcn));
3047 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
3048 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
3049 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
3055 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
3056 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
3057 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
3064 if (attrs[NL80211_ATTR_IE]) {
3065 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
3066 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
3069 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
3070 bcn->proberesp_ies =
3071 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3072 bcn->proberesp_ies_len =
3073 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3076 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
3077 bcn->assocresp_ies =
3078 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3079 bcn->assocresp_ies_len =
3080 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3083 if (attrs[NL80211_ATTR_PROBE_RESP]) {
3084 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
3085 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
3091 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
3092 struct cfg80211_ap_settings *params)
3094 struct wireless_dev *wdev;
3097 list_for_each_entry(wdev, &rdev->wdev_list, list) {
3098 if (wdev->iftype != NL80211_IFTYPE_AP &&
3099 wdev->iftype != NL80211_IFTYPE_P2P_GO)
3102 if (!wdev->preset_chandef.chan)
3105 params->chandef = wdev->preset_chandef;
3113 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
3114 enum nl80211_auth_type auth_type,
3115 enum nl80211_commands cmd)
3117 if (auth_type > NL80211_AUTHTYPE_MAX)
3121 case NL80211_CMD_AUTHENTICATE:
3122 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
3123 auth_type == NL80211_AUTHTYPE_SAE)
3126 case NL80211_CMD_CONNECT:
3127 case NL80211_CMD_START_AP:
3128 /* SAE not supported yet */
3129 if (auth_type == NL80211_AUTHTYPE_SAE)
3137 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
3139 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3140 struct net_device *dev = info->user_ptr[1];
3141 struct wireless_dev *wdev = dev->ieee80211_ptr;
3142 struct cfg80211_ap_settings params;
3144 u8 radar_detect_width = 0;
3146 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3147 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3150 if (!rdev->ops->start_ap)
3153 if (wdev->beacon_interval)
3156 memset(¶ms, 0, sizeof(params));
3158 /* these are required for START_AP */
3159 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
3160 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
3161 !info->attrs[NL80211_ATTR_BEACON_HEAD])
3164 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon);
3168 params.beacon_interval =
3169 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
3170 params.dtim_period =
3171 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
3173 err = cfg80211_validate_beacon_int(rdev, params.beacon_interval);
3178 * In theory, some of these attributes should be required here
3179 * but since they were not used when the command was originally
3180 * added, keep them optional for old user space programs to let
3181 * them continue to work with drivers that do not need the
3182 * additional information -- drivers must check!
3184 if (info->attrs[NL80211_ATTR_SSID]) {
3185 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
3187 nla_len(info->attrs[NL80211_ATTR_SSID]);
3188 if (params.ssid_len == 0 ||
3189 params.ssid_len > IEEE80211_MAX_SSID_LEN)
3193 if (info->attrs[NL80211_ATTR_HIDDEN_SSID]) {
3194 params.hidden_ssid = nla_get_u32(
3195 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
3196 if (params.hidden_ssid != NL80211_HIDDEN_SSID_NOT_IN_USE &&
3197 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_LEN &&
3198 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_CONTENTS)
3202 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
3204 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
3205 params.auth_type = nla_get_u32(
3206 info->attrs[NL80211_ATTR_AUTH_TYPE]);
3207 if (!nl80211_valid_auth_type(rdev, params.auth_type,
3208 NL80211_CMD_START_AP))
3211 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
3213 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
3214 NL80211_MAX_NR_CIPHER_SUITES);
3218 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
3219 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
3221 params.inactivity_timeout = nla_get_u16(
3222 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
3225 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
3226 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3228 params.p2p_ctwindow =
3229 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
3230 if (params.p2p_ctwindow > 127)
3232 if (params.p2p_ctwindow != 0 &&
3233 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
3237 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
3240 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3242 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
3245 params.p2p_opp_ps = tmp;
3246 if (params.p2p_opp_ps != 0 &&
3247 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
3251 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
3252 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
3255 } else if (wdev->preset_chandef.chan) {
3256 params.chandef = wdev->preset_chandef;
3257 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
3260 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef))
3263 err = cfg80211_chandef_dfs_required(wdev->wiphy, ¶ms.chandef);
3267 radar_detect_width = BIT(params.chandef.width);
3268 params.radar_required = true;
3271 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
3272 params.chandef.chan,
3274 radar_detect_width);
3278 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
3279 params.acl = parse_acl_data(&rdev->wiphy, info);
3280 if (IS_ERR(params.acl))
3281 return PTR_ERR(params.acl);
3285 err = rdev_start_ap(rdev, dev, ¶ms);
3287 wdev->preset_chandef = params.chandef;
3288 wdev->beacon_interval = params.beacon_interval;
3289 wdev->channel = params.chandef.chan;
3290 wdev->ssid_len = params.ssid_len;
3291 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
3300 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
3302 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3303 struct net_device *dev = info->user_ptr[1];
3304 struct wireless_dev *wdev = dev->ieee80211_ptr;
3305 struct cfg80211_beacon_data params;
3308 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3309 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3312 if (!rdev->ops->change_beacon)
3315 if (!wdev->beacon_interval)
3318 err = nl80211_parse_beacon(info->attrs, ¶ms);
3323 err = rdev_change_beacon(rdev, dev, ¶ms);
3329 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
3331 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3332 struct net_device *dev = info->user_ptr[1];
3334 return cfg80211_stop_ap(rdev, dev);
3337 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
3338 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
3339 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
3340 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
3341 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
3342 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
3343 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
3346 static int parse_station_flags(struct genl_info *info,
3347 enum nl80211_iftype iftype,
3348 struct station_parameters *params)
3350 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
3355 * Try parsing the new attribute first so userspace
3356 * can specify both for older kernels.
3358 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
3360 struct nl80211_sta_flag_update *sta_flags;
3362 sta_flags = nla_data(nla);
3363 params->sta_flags_mask = sta_flags->mask;
3364 params->sta_flags_set = sta_flags->set;
3365 params->sta_flags_set &= params->sta_flags_mask;
3366 if ((params->sta_flags_mask |
3367 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
3372 /* if present, parse the old attribute */
3374 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
3378 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX,
3379 nla, sta_flags_policy))
3383 * Only allow certain flags for interface types so that
3384 * other attributes are silently ignored. Remember that
3385 * this is backward compatibility code with old userspace
3386 * and shouldn't be hit in other cases anyway.
3389 case NL80211_IFTYPE_AP:
3390 case NL80211_IFTYPE_AP_VLAN:
3391 case NL80211_IFTYPE_P2P_GO:
3392 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3393 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3394 BIT(NL80211_STA_FLAG_WME) |
3395 BIT(NL80211_STA_FLAG_MFP);
3397 case NL80211_IFTYPE_P2P_CLIENT:
3398 case NL80211_IFTYPE_STATION:
3399 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3400 BIT(NL80211_STA_FLAG_TDLS_PEER);
3402 case NL80211_IFTYPE_MESH_POINT:
3403 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3404 BIT(NL80211_STA_FLAG_MFP) |
3405 BIT(NL80211_STA_FLAG_AUTHORIZED);
3410 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
3412 params->sta_flags_set |= (1<<flag);
3414 /* no longer support new API additions in old API */
3415 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
3423 static bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info,
3426 struct nlattr *rate;
3430 rate = nla_nest_start(msg, attr);
3434 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
3435 bitrate = cfg80211_calculate_bitrate(info);
3436 /* report 16-bit bitrate only if we can */
3437 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
3439 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
3441 if (bitrate_compat > 0 &&
3442 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
3445 if (info->flags & RATE_INFO_FLAGS_MCS) {
3446 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
3448 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3449 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3451 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3452 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3454 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
3455 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
3457 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
3459 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3460 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3462 if (info->flags & RATE_INFO_FLAGS_80_MHZ_WIDTH &&
3463 nla_put_flag(msg, NL80211_RATE_INFO_80_MHZ_WIDTH))
3465 if (info->flags & RATE_INFO_FLAGS_80P80_MHZ_WIDTH &&
3466 nla_put_flag(msg, NL80211_RATE_INFO_80P80_MHZ_WIDTH))
3468 if (info->flags & RATE_INFO_FLAGS_160_MHZ_WIDTH &&
3469 nla_put_flag(msg, NL80211_RATE_INFO_160_MHZ_WIDTH))
3471 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3472 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3476 nla_nest_end(msg, rate);
3480 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
3489 attr = nla_nest_start(msg, id);
3493 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
3494 if (!(mask & BIT(i)))
3497 if (nla_put_u8(msg, i, signal[i]))
3501 nla_nest_end(msg, attr);
3506 static int nl80211_send_station(struct sk_buff *msg, u32 portid, u32 seq,
3508 struct cfg80211_registered_device *rdev,
3509 struct net_device *dev,
3510 const u8 *mac_addr, struct station_info *sinfo)
3513 struct nlattr *sinfoattr, *bss_param;
3515 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_STATION);
3519 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3520 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
3521 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
3522 goto nla_put_failure;
3524 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
3526 goto nla_put_failure;
3527 if ((sinfo->filled & STATION_INFO_CONNECTED_TIME) &&
3528 nla_put_u32(msg, NL80211_STA_INFO_CONNECTED_TIME,
3529 sinfo->connected_time))
3530 goto nla_put_failure;
3531 if ((sinfo->filled & STATION_INFO_INACTIVE_TIME) &&
3532 nla_put_u32(msg, NL80211_STA_INFO_INACTIVE_TIME,
3533 sinfo->inactive_time))
3534 goto nla_put_failure;
3535 if ((sinfo->filled & (STATION_INFO_RX_BYTES |
3536 STATION_INFO_RX_BYTES64)) &&
3537 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
3538 (u32)sinfo->rx_bytes))
3539 goto nla_put_failure;
3540 if ((sinfo->filled & (STATION_INFO_TX_BYTES |
3541 STATION_INFO_TX_BYTES64)) &&
3542 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
3543 (u32)sinfo->tx_bytes))
3544 goto nla_put_failure;
3545 if ((sinfo->filled & STATION_INFO_RX_BYTES64) &&
3546 nla_put_u64(msg, NL80211_STA_INFO_RX_BYTES64,
3548 goto nla_put_failure;
3549 if ((sinfo->filled & STATION_INFO_TX_BYTES64) &&
3550 nla_put_u64(msg, NL80211_STA_INFO_TX_BYTES64,
3552 goto nla_put_failure;
3553 if ((sinfo->filled & STATION_INFO_LLID) &&
3554 nla_put_u16(msg, NL80211_STA_INFO_LLID, sinfo->llid))
3555 goto nla_put_failure;
3556 if ((sinfo->filled & STATION_INFO_PLID) &&
3557 nla_put_u16(msg, NL80211_STA_INFO_PLID, sinfo->plid))
3558 goto nla_put_failure;
3559 if ((sinfo->filled & STATION_INFO_PLINK_STATE) &&
3560 nla_put_u8(msg, NL80211_STA_INFO_PLINK_STATE,
3561 sinfo->plink_state))
3562 goto nla_put_failure;
3563 switch (rdev->wiphy.signal_type) {
3564 case CFG80211_SIGNAL_TYPE_MBM:
3565 if ((sinfo->filled & STATION_INFO_SIGNAL) &&
3566 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL,
3568 goto nla_put_failure;
3569 if ((sinfo->filled & STATION_INFO_SIGNAL_AVG) &&
3570 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL_AVG,
3572 goto nla_put_failure;
3577 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL) {
3578 if (!nl80211_put_signal(msg, sinfo->chains,
3579 sinfo->chain_signal,
3580 NL80211_STA_INFO_CHAIN_SIGNAL))
3581 goto nla_put_failure;
3583 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL_AVG) {
3584 if (!nl80211_put_signal(msg, sinfo->chains,
3585 sinfo->chain_signal_avg,
3586 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
3587 goto nla_put_failure;
3589 if (sinfo->filled & STATION_INFO_TX_BITRATE) {
3590 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
3591 NL80211_STA_INFO_TX_BITRATE))
3592 goto nla_put_failure;
3594 if (sinfo->filled & STATION_INFO_RX_BITRATE) {
3595 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
3596 NL80211_STA_INFO_RX_BITRATE))
3597 goto nla_put_failure;
3599 if ((sinfo->filled & STATION_INFO_RX_PACKETS) &&
3600 nla_put_u32(msg, NL80211_STA_INFO_RX_PACKETS,
3602 goto nla_put_failure;
3603 if ((sinfo->filled & STATION_INFO_TX_PACKETS) &&
3604 nla_put_u32(msg, NL80211_STA_INFO_TX_PACKETS,
3606 goto nla_put_failure;
3607 if ((sinfo->filled & STATION_INFO_TX_RETRIES) &&
3608 nla_put_u32(msg, NL80211_STA_INFO_TX_RETRIES,
3610 goto nla_put_failure;
3611 if ((sinfo->filled & STATION_INFO_TX_FAILED) &&
3612 nla_put_u32(msg, NL80211_STA_INFO_TX_FAILED,
3614 goto nla_put_failure;
3615 if ((sinfo->filled & STATION_INFO_BEACON_LOSS_COUNT) &&
3616 nla_put_u32(msg, NL80211_STA_INFO_BEACON_LOSS,
3617 sinfo->beacon_loss_count))
3618 goto nla_put_failure;
3619 if ((sinfo->filled & STATION_INFO_LOCAL_PM) &&
3620 nla_put_u32(msg, NL80211_STA_INFO_LOCAL_PM,
3622 goto nla_put_failure;
3623 if ((sinfo->filled & STATION_INFO_PEER_PM) &&
3624 nla_put_u32(msg, NL80211_STA_INFO_PEER_PM,
3626 goto nla_put_failure;
3627 if ((sinfo->filled & STATION_INFO_NONPEER_PM) &&
3628 nla_put_u32(msg, NL80211_STA_INFO_NONPEER_PM,
3630 goto nla_put_failure;
3631 if (sinfo->filled & STATION_INFO_BSS_PARAM) {
3632 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
3634 goto nla_put_failure;
3636 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
3637 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
3638 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
3639 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
3640 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
3641 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
3642 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
3643 sinfo->bss_param.dtim_period) ||
3644 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
3645 sinfo->bss_param.beacon_interval))
3646 goto nla_put_failure;
3648 nla_nest_end(msg, bss_param);
3650 if ((sinfo->filled & STATION_INFO_STA_FLAGS) &&
3651 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
3652 sizeof(struct nl80211_sta_flag_update),
3654 goto nla_put_failure;
3655 if ((sinfo->filled & STATION_INFO_T_OFFSET) &&
3656 nla_put_u64(msg, NL80211_STA_INFO_T_OFFSET,
3658 goto nla_put_failure;
3659 nla_nest_end(msg, sinfoattr);
3661 if ((sinfo->filled & STATION_INFO_ASSOC_REQ_IES) &&
3662 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
3663 sinfo->assoc_req_ies))
3664 goto nla_put_failure;
3666 return genlmsg_end(msg, hdr);
3669 genlmsg_cancel(msg, hdr);
3673 static int nl80211_dump_station(struct sk_buff *skb,
3674 struct netlink_callback *cb)
3676 struct station_info sinfo;
3677 struct cfg80211_registered_device *dev;
3678 struct wireless_dev *wdev;
3679 u8 mac_addr[ETH_ALEN];
3680 int sta_idx = cb->args[2];
3683 err = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
3687 if (!wdev->netdev) {
3692 if (!dev->ops->dump_station) {
3698 memset(&sinfo, 0, sizeof(sinfo));
3699 err = rdev_dump_station(dev, wdev->netdev, sta_idx,
3706 if (nl80211_send_station(skb,
3707 NETLINK_CB(cb->skb).portid,
3708 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3709 dev, wdev->netdev, mac_addr,
3718 cb->args[2] = sta_idx;
3721 nl80211_finish_wdev_dump(dev);
3726 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
3728 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3729 struct net_device *dev = info->user_ptr[1];
3730 struct station_info sinfo;
3731 struct sk_buff *msg;
3732 u8 *mac_addr = NULL;
3735 memset(&sinfo, 0, sizeof(sinfo));
3737 if (!info->attrs[NL80211_ATTR_MAC])
3740 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3742 if (!rdev->ops->get_station)
3745 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
3749 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3753 if (nl80211_send_station(msg, info->snd_portid, info->snd_seq, 0,
3754 rdev, dev, mac_addr, &sinfo) < 0) {
3759 return genlmsg_reply(msg, info);
3762 int cfg80211_check_station_change(struct wiphy *wiphy,
3763 struct station_parameters *params,
3764 enum cfg80211_station_type statype)
3766 if (params->listen_interval != -1)
3771 /* When you run into this, adjust the code below for the new flag */
3772 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
3775 case CFG80211_STA_MESH_PEER_KERNEL:
3776 case CFG80211_STA_MESH_PEER_USER:
3778 * No ignoring the TDLS flag here -- the userspace mesh
3779 * code doesn't have the bug of including TDLS in the
3782 if (params->sta_flags_mask &
3783 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3784 BIT(NL80211_STA_FLAG_MFP) |
3785 BIT(NL80211_STA_FLAG_AUTHORIZED)))
3788 case CFG80211_STA_TDLS_PEER_SETUP:
3789 case CFG80211_STA_TDLS_PEER_ACTIVE:
3790 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
3792 /* ignore since it can't change */
3793 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3796 /* disallow mesh-specific things */
3797 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3799 if (params->local_pm)
3801 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3805 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
3806 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
3807 /* TDLS can't be set, ... */
3808 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
3811 * ... but don't bother the driver with it. This works around
3812 * a hostapd/wpa_supplicant issue -- it always includes the
3813 * TLDS_PEER flag in the mask even for AP mode.
3815 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3818 if (statype != CFG80211_STA_TDLS_PEER_SETUP) {
3819 /* reject other things that can't change */
3820 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
3822 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
3824 if (params->supported_rates)
3826 if (params->ext_capab || params->ht_capa || params->vht_capa)
3830 if (statype != CFG80211_STA_AP_CLIENT) {
3836 case CFG80211_STA_AP_MLME_CLIENT:
3837 /* Use this only for authorizing/unauthorizing a station */
3838 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
3841 case CFG80211_STA_AP_CLIENT:
3842 /* accept only the listed bits */
3843 if (params->sta_flags_mask &
3844 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
3845 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3846 BIT(NL80211_STA_FLAG_ASSOCIATED) |
3847 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3848 BIT(NL80211_STA_FLAG_WME) |
3849 BIT(NL80211_STA_FLAG_MFP)))
3852 /* but authenticated/associated only if driver handles it */
3853 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
3854 params->sta_flags_mask &
3855 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3856 BIT(NL80211_STA_FLAG_ASSOCIATED)))
3859 case CFG80211_STA_IBSS:
3860 case CFG80211_STA_AP_STA:
3861 /* reject any changes other than AUTHORIZED */
3862 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
3865 case CFG80211_STA_TDLS_PEER_SETUP:
3866 /* reject any changes other than AUTHORIZED or WME */
3867 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
3868 BIT(NL80211_STA_FLAG_WME)))
3870 /* force (at least) rates when authorizing */
3871 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
3872 !params->supported_rates)
3875 case CFG80211_STA_TDLS_PEER_ACTIVE:
3876 /* reject any changes */
3878 case CFG80211_STA_MESH_PEER_KERNEL:
3879 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3882 case CFG80211_STA_MESH_PEER_USER:
3883 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3890 EXPORT_SYMBOL(cfg80211_check_station_change);
3893 * Get vlan interface making sure it is running and on the right wiphy.
3895 static struct net_device *get_vlan(struct genl_info *info,
3896 struct cfg80211_registered_device *rdev)
3898 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
3899 struct net_device *v;
3905 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
3907 return ERR_PTR(-ENODEV);
3909 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
3914 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
3915 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3916 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
3921 if (!netif_running(v)) {
3929 return ERR_PTR(ret);
3932 static struct nla_policy
3933 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] __read_mostly = {
3934 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
3935 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
3938 static int nl80211_parse_sta_wme(struct genl_info *info,
3939 struct station_parameters *params)
3941 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
3945 /* parse WME attributes if present */
3946 if (!info->attrs[NL80211_ATTR_STA_WME])
3949 nla = info->attrs[NL80211_ATTR_STA_WME];
3950 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
3951 nl80211_sta_wme_policy);
3955 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
3956 params->uapsd_queues = nla_get_u8(
3957 tb[NL80211_STA_WME_UAPSD_QUEUES]);
3958 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
3961 if (tb[NL80211_STA_WME_MAX_SP])
3962 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
3964 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
3967 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
3972 static int nl80211_parse_sta_channel_info(struct genl_info *info,
3973 struct station_parameters *params)
3975 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
3976 params->supported_channels =
3977 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
3978 params->supported_channels_len =
3979 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
3981 * Need to include at least one (first channel, number of
3982 * channels) tuple for each subband, and must have proper
3983 * tuples for the rest of the data as well.
3985 if (params->supported_channels_len < 2)
3987 if (params->supported_channels_len % 2)
3991 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
3992 params->supported_oper_classes =
3993 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
3994 params->supported_oper_classes_len =
3995 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
3997 * The value of the Length field of the Supported Operating
3998 * Classes element is between 2 and 253.
4000 if (params->supported_oper_classes_len < 2 ||
4001 params->supported_oper_classes_len > 253)
4007 static int nl80211_set_station_tdls(struct genl_info *info,
4008 struct station_parameters *params)
4011 /* Dummy STA entry gets updated once the peer capabilities are known */
4012 if (info->attrs[NL80211_ATTR_PEER_AID])
4013 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4014 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4016 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4017 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4019 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4021 err = nl80211_parse_sta_channel_info(info, params);
4025 return nl80211_parse_sta_wme(info, params);
4028 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
4030 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4031 struct net_device *dev = info->user_ptr[1];
4032 struct station_parameters params;
4036 memset(¶ms, 0, sizeof(params));
4038 params.listen_interval = -1;
4040 if (!rdev->ops->change_station)
4043 if (info->attrs[NL80211_ATTR_STA_AID])
4046 if (!info->attrs[NL80211_ATTR_MAC])
4049 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4051 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
4052 params.supported_rates =
4053 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4054 params.supported_rates_len =
4055 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4058 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4060 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4061 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4064 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4066 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4067 params.ext_capab_len =
4068 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4071 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4074 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4077 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4078 params.plink_action =
4079 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4080 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4084 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
4085 params.plink_state =
4086 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
4087 if (params.plink_state >= NUM_NL80211_PLINK_STATES)
4089 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
4092 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]) {
4093 enum nl80211_mesh_power_mode pm = nla_get_u32(
4094 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
4096 if (pm <= NL80211_MESH_POWER_UNKNOWN ||
4097 pm > NL80211_MESH_POWER_MAX)
4100 params.local_pm = pm;
4103 /* Include parameters for TDLS peer (will check later) */
4104 err = nl80211_set_station_tdls(info, ¶ms);
4108 params.vlan = get_vlan(info, rdev);
4109 if (IS_ERR(params.vlan))
4110 return PTR_ERR(params.vlan);
4112 switch (dev->ieee80211_ptr->iftype) {
4113 case NL80211_IFTYPE_AP:
4114 case NL80211_IFTYPE_AP_VLAN:
4115 case NL80211_IFTYPE_P2P_GO:
4116 case NL80211_IFTYPE_P2P_CLIENT:
4117 case NL80211_IFTYPE_STATION:
4118 case NL80211_IFTYPE_ADHOC:
4119 case NL80211_IFTYPE_MESH_POINT:
4126 /* driver will call cfg80211_check_station_change() */
4127 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
4131 dev_put(params.vlan);
4136 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
4138 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4140 struct net_device *dev = info->user_ptr[1];
4141 struct station_parameters params;
4142 u8 *mac_addr = NULL;
4144 memset(¶ms, 0, sizeof(params));
4146 if (!rdev->ops->add_station)
4149 if (!info->attrs[NL80211_ATTR_MAC])
4152 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4155 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
4158 if (!info->attrs[NL80211_ATTR_STA_AID] &&
4159 !info->attrs[NL80211_ATTR_PEER_AID])
4162 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4163 params.supported_rates =
4164 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4165 params.supported_rates_len =
4166 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4167 params.listen_interval =
4168 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
4170 if (info->attrs[NL80211_ATTR_PEER_AID])
4171 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4173 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
4174 if (!params.aid || params.aid > IEEE80211_MAX_AID)
4177 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4179 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4180 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4183 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4185 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4186 params.ext_capab_len =
4187 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4190 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4192 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4194 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4196 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4198 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
4199 params.opmode_notif_used = true;
4200 params.opmode_notif =
4201 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
4204 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4205 params.plink_action =
4206 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4207 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4211 err = nl80211_parse_sta_channel_info(info, ¶ms);
4215 err = nl80211_parse_sta_wme(info, ¶ms);
4219 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4222 /* When you run into this, adjust the code below for the new flag */
4223 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
4225 switch (dev->ieee80211_ptr->iftype) {
4226 case NL80211_IFTYPE_AP:
4227 case NL80211_IFTYPE_AP_VLAN:
4228 case NL80211_IFTYPE_P2P_GO:
4229 /* ignore WME attributes if iface/sta is not capable */
4230 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
4231 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
4232 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4234 /* TDLS peers cannot be added */
4235 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4236 info->attrs[NL80211_ATTR_PEER_AID])
4238 /* but don't bother the driver with it */
4239 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
4241 /* allow authenticated/associated only if driver handles it */
4242 if (!(rdev->wiphy.features &
4243 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4244 params.sta_flags_mask &
4245 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4246 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4249 /* must be last in here for error handling */
4250 params.vlan = get_vlan(info, rdev);
4251 if (IS_ERR(params.vlan))
4252 return PTR_ERR(params.vlan);
4254 case NL80211_IFTYPE_MESH_POINT:
4255 /* ignore uAPSD data */
4256 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4258 /* associated is disallowed */
4259 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
4261 /* TDLS peers cannot be added */
4262 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4263 info->attrs[NL80211_ATTR_PEER_AID])
4266 case NL80211_IFTYPE_STATION:
4267 case NL80211_IFTYPE_P2P_CLIENT:
4268 /* ignore uAPSD data */
4269 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4271 /* these are disallowed */
4272 if (params.sta_flags_mask &
4273 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
4274 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
4276 /* Only TDLS peers can be added */
4277 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
4279 /* Can only add if TDLS ... */
4280 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
4282 /* ... with external setup is supported */
4283 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
4286 * Older wpa_supplicant versions always mark the TDLS peer
4287 * as authorized, but it shouldn't yet be.
4289 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
4295 /* be aware of params.vlan when changing code here */
4297 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
4300 dev_put(params.vlan);
4304 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
4306 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4307 struct net_device *dev = info->user_ptr[1];
4308 u8 *mac_addr = NULL;
4310 if (info->attrs[NL80211_ATTR_MAC])
4311 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4313 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4314 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
4315 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
4316 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4319 if (!rdev->ops->del_station)
4322 return rdev_del_station(rdev, dev, mac_addr);
4325 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
4326 int flags, struct net_device *dev,
4327 u8 *dst, u8 *next_hop,
4328 struct mpath_info *pinfo)
4331 struct nlattr *pinfoattr;
4333 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_STATION);
4337 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4338 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
4339 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
4340 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
4341 goto nla_put_failure;
4343 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
4345 goto nla_put_failure;
4346 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
4347 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
4349 goto nla_put_failure;
4350 if (((pinfo->filled & MPATH_INFO_SN) &&
4351 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
4352 ((pinfo->filled & MPATH_INFO_METRIC) &&
4353 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
4355 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
4356 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
4358 ((pinfo->filled & MPATH_INFO_FLAGS) &&
4359 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
4361 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
4362 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
4363 pinfo->discovery_timeout)) ||
4364 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
4365 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
4366 pinfo->discovery_retries)))
4367 goto nla_put_failure;
4369 nla_nest_end(msg, pinfoattr);
4371 return genlmsg_end(msg, hdr);
4374 genlmsg_cancel(msg, hdr);
4378 static int nl80211_dump_mpath(struct sk_buff *skb,
4379 struct netlink_callback *cb)
4381 struct mpath_info pinfo;
4382 struct cfg80211_registered_device *dev;
4383 struct wireless_dev *wdev;
4385 u8 next_hop[ETH_ALEN];
4386 int path_idx = cb->args[2];
4389 err = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
4393 if (!dev->ops->dump_mpath) {
4398 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
4404 err = rdev_dump_mpath(dev, wdev->netdev, path_idx, dst,
4411 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
4412 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4413 wdev->netdev, dst, next_hop,
4422 cb->args[2] = path_idx;
4425 nl80211_finish_wdev_dump(dev);
4429 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
4431 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4433 struct net_device *dev = info->user_ptr[1];
4434 struct mpath_info pinfo;
4435 struct sk_buff *msg;
4437 u8 next_hop[ETH_ALEN];
4439 memset(&pinfo, 0, sizeof(pinfo));
4441 if (!info->attrs[NL80211_ATTR_MAC])
4444 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4446 if (!rdev->ops->get_mpath)
4449 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4452 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
4456 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4460 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
4461 dev, dst, next_hop, &pinfo) < 0) {
4466 return genlmsg_reply(msg, info);
4469 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
4471 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4472 struct net_device *dev = info->user_ptr[1];
4474 u8 *next_hop = NULL;
4476 if (!info->attrs[NL80211_ATTR_MAC])
4479 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4482 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4483 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4485 if (!rdev->ops->change_mpath)
4488 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4491 return rdev_change_mpath(rdev, dev, dst, next_hop);
4494 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
4496 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4497 struct net_device *dev = info->user_ptr[1];
4499 u8 *next_hop = NULL;
4501 if (!info->attrs[NL80211_ATTR_MAC])
4504 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4507 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4508 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4510 if (!rdev->ops->add_mpath)
4513 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4516 return rdev_add_mpath(rdev, dev, dst, next_hop);
4519 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
4521 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4522 struct net_device *dev = info->user_ptr[1];
4525 if (info->attrs[NL80211_ATTR_MAC])
4526 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4528 if (!rdev->ops->del_mpath)
4531 return rdev_del_mpath(rdev, dev, dst);
4534 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
4536 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4537 struct net_device *dev = info->user_ptr[1];
4538 struct wireless_dev *wdev = dev->ieee80211_ptr;
4539 struct bss_parameters params;
4542 memset(¶ms, 0, sizeof(params));
4543 /* default to not changing parameters */
4544 params.use_cts_prot = -1;
4545 params.use_short_preamble = -1;
4546 params.use_short_slot_time = -1;
4547 params.ap_isolate = -1;
4548 params.ht_opmode = -1;
4549 params.p2p_ctwindow = -1;
4550 params.p2p_opp_ps = -1;
4552 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
4553 params.use_cts_prot =
4554 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
4555 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
4556 params.use_short_preamble =
4557 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
4558 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
4559 params.use_short_slot_time =
4560 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
4561 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
4562 params.basic_rates =
4563 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4564 params.basic_rates_len =
4565 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4567 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
4568 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
4569 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
4571 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
4573 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4574 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4576 params.p2p_ctwindow =
4577 nla_get_s8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4578 if (params.p2p_ctwindow < 0)
4580 if (params.p2p_ctwindow != 0 &&
4581 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4585 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4588 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4590 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4593 params.p2p_opp_ps = tmp;
4594 if (params.p2p_opp_ps &&
4595 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4599 if (!rdev->ops->change_bss)
4602 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4603 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4607 err = rdev_change_bss(rdev, dev, ¶ms);
4613 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
4614 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
4615 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
4616 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
4617 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
4618 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
4619 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
4622 static int parse_reg_rule(struct nlattr *tb[],
4623 struct ieee80211_reg_rule *reg_rule)
4625 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
4626 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
4628 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
4630 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
4632 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
4634 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
4636 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
4639 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
4641 freq_range->start_freq_khz =
4642 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
4643 freq_range->end_freq_khz =
4644 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
4645 freq_range->max_bandwidth_khz =
4646 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
4648 power_rule->max_eirp =
4649 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
4651 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
4652 power_rule->max_antenna_gain =
4653 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
4658 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
4662 enum nl80211_user_reg_hint_type user_reg_hint_type;
4665 * You should only get this when cfg80211 hasn't yet initialized
4666 * completely when built-in to the kernel right between the time
4667 * window between nl80211_init() and regulatory_init(), if that is
4670 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
4671 return -EINPROGRESS;
4673 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
4676 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
4678 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
4679 user_reg_hint_type =
4680 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
4682 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
4684 switch (user_reg_hint_type) {
4685 case NL80211_USER_REG_HINT_USER:
4686 case NL80211_USER_REG_HINT_CELL_BASE:
4692 r = regulatory_hint_user(data, user_reg_hint_type);
4697 static int nl80211_get_mesh_config(struct sk_buff *skb,
4698 struct genl_info *info)
4700 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4701 struct net_device *dev = info->user_ptr[1];
4702 struct wireless_dev *wdev = dev->ieee80211_ptr;
4703 struct mesh_config cur_params;
4706 struct nlattr *pinfoattr;
4707 struct sk_buff *msg;
4709 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
4712 if (!rdev->ops->get_mesh_config)
4716 /* If not connected, get default parameters */
4717 if (!wdev->mesh_id_len)
4718 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
4720 err = rdev_get_mesh_config(rdev, dev, &cur_params);
4726 /* Draw up a netlink message to send back */
4727 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4730 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
4731 NL80211_CMD_GET_MESH_CONFIG);
4734 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
4736 goto nla_put_failure;
4737 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4738 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
4739 cur_params.dot11MeshRetryTimeout) ||
4740 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
4741 cur_params.dot11MeshConfirmTimeout) ||
4742 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
4743 cur_params.dot11MeshHoldingTimeout) ||
4744 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
4745 cur_params.dot11MeshMaxPeerLinks) ||
4746 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
4747 cur_params.dot11MeshMaxRetries) ||
4748 nla_put_u8(msg, NL80211_MESHCONF_TTL,
4749 cur_params.dot11MeshTTL) ||
4750 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
4751 cur_params.element_ttl) ||
4752 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
4753 cur_params.auto_open_plinks) ||
4754 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
4755 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
4756 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
4757 cur_params.dot11MeshHWMPmaxPREQretries) ||
4758 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
4759 cur_params.path_refresh_time) ||
4760 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
4761 cur_params.min_discovery_timeout) ||
4762 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
4763 cur_params.dot11MeshHWMPactivePathTimeout) ||
4764 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
4765 cur_params.dot11MeshHWMPpreqMinInterval) ||
4766 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
4767 cur_params.dot11MeshHWMPperrMinInterval) ||
4768 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
4769 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
4770 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
4771 cur_params.dot11MeshHWMPRootMode) ||
4772 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
4773 cur_params.dot11MeshHWMPRannInterval) ||
4774 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
4775 cur_params.dot11MeshGateAnnouncementProtocol) ||
4776 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
4777 cur_params.dot11MeshForwarding) ||
4778 nla_put_u32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
4779 cur_params.rssi_threshold) ||
4780 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
4781 cur_params.ht_opmode) ||
4782 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
4783 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
4784 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
4785 cur_params.dot11MeshHWMProotInterval) ||
4786 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
4787 cur_params.dot11MeshHWMPconfirmationInterval) ||
4788 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
4789 cur_params.power_mode) ||
4790 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
4791 cur_params.dot11MeshAwakeWindowDuration) ||
4792 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
4793 cur_params.plink_timeout))
4794 goto nla_put_failure;
4795 nla_nest_end(msg, pinfoattr);
4796 genlmsg_end(msg, hdr);
4797 return genlmsg_reply(msg, info);
4800 genlmsg_cancel(msg, hdr);
4806 static const struct nla_policy nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
4807 [NL80211_MESHCONF_RETRY_TIMEOUT] = { .type = NLA_U16 },
4808 [NL80211_MESHCONF_CONFIRM_TIMEOUT] = { .type = NLA_U16 },
4809 [NL80211_MESHCONF_HOLDING_TIMEOUT] = { .type = NLA_U16 },
4810 [NL80211_MESHCONF_MAX_PEER_LINKS] = { .type = NLA_U16 },
4811 [NL80211_MESHCONF_MAX_RETRIES] = { .type = NLA_U8 },
4812 [NL80211_MESHCONF_TTL] = { .type = NLA_U8 },
4813 [NL80211_MESHCONF_ELEMENT_TTL] = { .type = NLA_U8 },
4814 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = { .type = NLA_U8 },
4815 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] = { .type = NLA_U32 },
4816 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
4817 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
4818 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = { .type = NLA_U16 },
4819 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
4820 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] = { .type = NLA_U16 },
4821 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] = { .type = NLA_U16 },
4822 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] = { .type = NLA_U16 },
4823 [NL80211_MESHCONF_HWMP_ROOTMODE] = { .type = NLA_U8 },
4824 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] = { .type = NLA_U16 },
4825 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = { .type = NLA_U8 },
4826 [NL80211_MESHCONF_FORWARDING] = { .type = NLA_U8 },
4827 [NL80211_MESHCONF_RSSI_THRESHOLD] = { .type = NLA_U32 },
4828 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
4829 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
4830 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] = { .type = NLA_U16 },
4831 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] = { .type = NLA_U16 },
4832 [NL80211_MESHCONF_POWER_MODE] = { .type = NLA_U32 },
4833 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
4834 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
4837 static const struct nla_policy
4838 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
4839 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
4840 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
4841 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
4842 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
4843 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
4844 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
4845 [NL80211_MESH_SETUP_IE] = { .type = NLA_BINARY,
4846 .len = IEEE80211_MAX_DATA_LEN },
4847 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
4850 static int nl80211_parse_mesh_config(struct genl_info *info,
4851 struct mesh_config *cfg,
4854 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
4857 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, min, max, mask, attr, fn) \
4860 if (fn(tb[attr]) < min || fn(tb[attr]) > max) \
4862 cfg->param = fn(tb[attr]); \
4863 mask |= (1 << (attr - 1)); \
4868 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
4870 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
4871 info->attrs[NL80211_ATTR_MESH_CONFIG],
4872 nl80211_meshconf_params_policy))
4875 /* This makes sure that there aren't more than 32 mesh config
4876 * parameters (otherwise our bitfield scheme would not work.) */
4877 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
4879 /* Fill in the params struct */
4880 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, 1, 255,
4881 mask, NL80211_MESHCONF_RETRY_TIMEOUT,
4883 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, 1, 255,
4884 mask, NL80211_MESHCONF_CONFIRM_TIMEOUT,
4886 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, 1, 255,
4887 mask, NL80211_MESHCONF_HOLDING_TIMEOUT,
4889 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, 0, 255,
4890 mask, NL80211_MESHCONF_MAX_PEER_LINKS,
4892 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, 0, 16,
4893 mask, NL80211_MESHCONF_MAX_RETRIES,
4895 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, 1, 255,
4896 mask, NL80211_MESHCONF_TTL, nla_get_u8);
4897 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, 1, 255,
4898 mask, NL80211_MESHCONF_ELEMENT_TTL,
4900 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, 0, 1,
4901 mask, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
4903 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
4905 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
4907 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, 0, 255,
4908 mask, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
4910 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, 1, 65535,
4911 mask, NL80211_MESHCONF_PATH_REFRESH_TIME,
4913 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, 1, 65535,
4914 mask, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
4916 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
4918 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
4920 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval,
4922 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
4924 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval,
4926 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
4928 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4929 dot11MeshHWMPnetDiameterTraversalTime,
4931 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
4933 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, 0, 4,
4934 mask, NL80211_MESHCONF_HWMP_ROOTMODE,
4936 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, 1, 65535,
4937 mask, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
4939 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4940 dot11MeshGateAnnouncementProtocol, 0, 1,
4941 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
4943 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, 0, 1,
4944 mask, NL80211_MESHCONF_FORWARDING,
4946 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, -255, 0,
4947 mask, NL80211_MESHCONF_RSSI_THRESHOLD,
4949 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, ht_opmode, 0, 16,
4950 mask, NL80211_MESHCONF_HT_OPMODE,
4952 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathToRootTimeout,
4954 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
4956 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, 1, 65535,
4957 mask, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
4959 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4960 dot11MeshHWMPconfirmationInterval,
4962 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
4964 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode,
4965 NL80211_MESH_POWER_ACTIVE,
4966 NL80211_MESH_POWER_MAX,
4967 mask, NL80211_MESHCONF_POWER_MODE,
4969 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration,
4971 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
4972 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, 1, 0xffffffff,
4973 mask, NL80211_MESHCONF_PLINK_TIMEOUT,
4980 #undef FILL_IN_MESH_PARAM_IF_SET
4983 static int nl80211_parse_mesh_setup(struct genl_info *info,
4984 struct mesh_setup *setup)
4986 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4987 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
4989 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
4991 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
4992 info->attrs[NL80211_ATTR_MESH_SETUP],
4993 nl80211_mesh_setup_params_policy))
4996 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
4997 setup->sync_method =
4998 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
4999 IEEE80211_SYNC_METHOD_VENDOR :
5000 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
5002 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
5003 setup->path_sel_proto =
5004 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
5005 IEEE80211_PATH_PROTOCOL_VENDOR :
5006 IEEE80211_PATH_PROTOCOL_HWMP;
5008 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
5009 setup->path_metric =
5010 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
5011 IEEE80211_PATH_METRIC_VENDOR :
5012 IEEE80211_PATH_METRIC_AIRTIME;
5015 if (tb[NL80211_MESH_SETUP_IE]) {
5016 struct nlattr *ieattr =
5017 tb[NL80211_MESH_SETUP_IE];
5018 if (!is_valid_ie_attr(ieattr))
5020 setup->ie = nla_data(ieattr);
5021 setup->ie_len = nla_len(ieattr);
5023 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
5024 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
5026 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
5027 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
5028 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
5029 if (setup->is_secure)
5030 setup->user_mpm = true;
5032 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
5033 if (!setup->user_mpm)
5036 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
5042 static int nl80211_update_mesh_config(struct sk_buff *skb,
5043 struct genl_info *info)
5045 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5046 struct net_device *dev = info->user_ptr[1];
5047 struct wireless_dev *wdev = dev->ieee80211_ptr;
5048 struct mesh_config cfg;
5052 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
5055 if (!rdev->ops->update_mesh_config)
5058 err = nl80211_parse_mesh_config(info, &cfg, &mask);
5063 if (!wdev->mesh_id_len)
5067 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
5074 static int nl80211_get_reg(struct sk_buff *skb, struct genl_info *info)
5076 const struct ieee80211_regdomain *regdom;
5077 struct sk_buff *msg;
5079 struct nlattr *nl_reg_rules;
5082 if (!cfg80211_regdomain)
5085 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5089 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
5090 NL80211_CMD_GET_REG);
5094 if (reg_last_request_cell_base() &&
5095 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
5096 NL80211_USER_REG_HINT_CELL_BASE))
5097 goto nla_put_failure;
5100 regdom = rcu_dereference(cfg80211_regdomain);
5102 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
5103 (regdom->dfs_region &&
5104 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
5105 goto nla_put_failure_rcu;
5107 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
5109 goto nla_put_failure_rcu;
5111 for (i = 0; i < regdom->n_reg_rules; i++) {
5112 struct nlattr *nl_reg_rule;
5113 const struct ieee80211_reg_rule *reg_rule;
5114 const struct ieee80211_freq_range *freq_range;
5115 const struct ieee80211_power_rule *power_rule;
5117 reg_rule = ®dom->reg_rules[i];
5118 freq_range = ®_rule->freq_range;
5119 power_rule = ®_rule->power_rule;
5121 nl_reg_rule = nla_nest_start(msg, i);
5123 goto nla_put_failure_rcu;
5125 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
5127 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
5128 freq_range->start_freq_khz) ||
5129 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
5130 freq_range->end_freq_khz) ||
5131 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
5132 freq_range->max_bandwidth_khz) ||
5133 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
5134 power_rule->max_antenna_gain) ||
5135 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
5136 power_rule->max_eirp))
5137 goto nla_put_failure_rcu;
5139 nla_nest_end(msg, nl_reg_rule);
5143 nla_nest_end(msg, nl_reg_rules);
5145 genlmsg_end(msg, hdr);
5146 return genlmsg_reply(msg, info);
5148 nla_put_failure_rcu:
5151 genlmsg_cancel(msg, hdr);
5157 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
5159 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
5160 struct nlattr *nl_reg_rule;
5161 char *alpha2 = NULL;
5162 int rem_reg_rules = 0, r = 0;
5163 u32 num_rules = 0, rule_idx = 0, size_of_regd;
5164 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
5165 struct ieee80211_regdomain *rd = NULL;
5167 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
5170 if (!info->attrs[NL80211_ATTR_REG_RULES])
5173 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
5175 if (info->attrs[NL80211_ATTR_DFS_REGION])
5176 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
5178 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5181 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
5185 if (!reg_is_valid_request(alpha2))
5188 size_of_regd = sizeof(struct ieee80211_regdomain) +
5189 num_rules * sizeof(struct ieee80211_reg_rule);
5191 rd = kzalloc(size_of_regd, GFP_KERNEL);
5195 rd->n_reg_rules = num_rules;
5196 rd->alpha2[0] = alpha2[0];
5197 rd->alpha2[1] = alpha2[1];
5200 * Disable DFS master mode if the DFS region was
5201 * not supported or known on this kernel.
5203 if (reg_supported_dfs_region(dfs_region))
5204 rd->dfs_region = dfs_region;
5206 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5208 nla_parse(tb, NL80211_REG_RULE_ATTR_MAX,
5209 nla_data(nl_reg_rule), nla_len(nl_reg_rule),
5211 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
5217 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
5224 /* set_regdom took ownership */
5232 static int validate_scan_freqs(struct nlattr *freqs)
5234 struct nlattr *attr1, *attr2;
5235 int n_channels = 0, tmp1, tmp2;
5237 nla_for_each_nested(attr1, freqs, tmp1) {
5240 * Some hardware has a limited channel list for
5241 * scanning, and it is pretty much nonsensical
5242 * to scan for a channel twice, so disallow that
5243 * and don't require drivers to check that the
5244 * channel list they get isn't longer than what
5245 * they can scan, as long as they can scan all
5246 * the channels they registered at once.
5248 nla_for_each_nested(attr2, freqs, tmp2)
5249 if (attr1 != attr2 &&
5250 nla_get_u32(attr1) == nla_get_u32(attr2))
5257 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
5259 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5260 struct wireless_dev *wdev = info->user_ptr[1];
5261 struct cfg80211_scan_request *request;
5262 struct nlattr *attr;
5263 struct wiphy *wiphy;
5264 int err, tmp, n_ssids = 0, n_channels, i;
5267 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5270 wiphy = &rdev->wiphy;
5272 if (!rdev->ops->scan)
5275 if (rdev->scan_req) {
5280 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5281 n_channels = validate_scan_freqs(
5282 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5288 n_channels = ieee80211_get_num_supported_channels(wiphy);
5291 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5292 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
5295 if (n_ssids > wiphy->max_scan_ssids) {
5300 if (info->attrs[NL80211_ATTR_IE])
5301 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5305 if (ie_len > wiphy->max_scan_ie_len) {
5310 request = kzalloc(sizeof(*request)
5311 + sizeof(*request->ssids) * n_ssids
5312 + sizeof(*request->channels) * n_channels
5313 + ie_len, GFP_KERNEL);
5320 request->ssids = (void *)&request->channels[n_channels];
5321 request->n_ssids = n_ssids;
5324 request->ie = (void *)(request->ssids + n_ssids);
5326 request->ie = (void *)(request->channels + n_channels);
5330 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5331 /* user specified, bail out if channel not found */
5332 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
5333 struct ieee80211_channel *chan;
5335 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5342 /* ignore disabled channels */
5343 if (chan->flags & IEEE80211_CHAN_DISABLED)
5346 request->channels[i] = chan;
5350 enum ieee80211_band band;
5353 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5355 if (!wiphy->bands[band])
5357 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5358 struct ieee80211_channel *chan;
5360 chan = &wiphy->bands[band]->channels[j];
5362 if (chan->flags & IEEE80211_CHAN_DISABLED)
5365 request->channels[i] = chan;
5376 request->n_channels = i;
5379 if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
5380 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
5381 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5385 request->ssids[i].ssid_len = nla_len(attr);
5386 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
5391 if (info->attrs[NL80211_ATTR_IE]) {
5392 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5393 memcpy((void *)request->ie,
5394 nla_data(info->attrs[NL80211_ATTR_IE]),
5398 for (i = 0; i < IEEE80211_NUM_BANDS; i++)
5399 if (wiphy->bands[i])
5401 (1 << wiphy->bands[i]->n_bitrates) - 1;
5403 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
5404 nla_for_each_nested(attr,
5405 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
5407 enum ieee80211_band band = nla_type(attr);
5409 if (band < 0 || band >= IEEE80211_NUM_BANDS) {
5414 if (!wiphy->bands[band])
5417 err = ieee80211_get_ratemask(wiphy->bands[band],
5420 &request->rates[band]);
5426 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5427 request->flags = nla_get_u32(
5428 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5429 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5430 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5437 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
5439 request->wdev = wdev;
5440 request->wiphy = &rdev->wiphy;
5441 request->scan_start = jiffies;
5443 rdev->scan_req = request;
5444 err = rdev_scan(rdev, request);
5447 nl80211_send_scan_start(rdev, wdev);
5449 dev_hold(wdev->netdev);
5452 rdev->scan_req = NULL;
5460 static int nl80211_start_sched_scan(struct sk_buff *skb,
5461 struct genl_info *info)
5463 struct cfg80211_sched_scan_request *request;
5464 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5465 struct net_device *dev = info->user_ptr[1];
5466 struct nlattr *attr;
5467 struct wiphy *wiphy;
5468 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i;
5470 enum ieee80211_band band;
5472 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
5474 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
5475 !rdev->ops->sched_scan_start)
5478 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5481 if (!info->attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
5484 interval = nla_get_u32(info->attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
5488 wiphy = &rdev->wiphy;
5490 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5491 n_channels = validate_scan_freqs(
5492 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5496 n_channels = ieee80211_get_num_supported_channels(wiphy);
5499 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5500 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS],
5504 if (n_ssids > wiphy->max_sched_scan_ssids)
5507 if (info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH])
5508 nla_for_each_nested(attr,
5509 info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
5513 if (n_match_sets > wiphy->max_match_sets)
5516 if (info->attrs[NL80211_ATTR_IE])
5517 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5521 if (ie_len > wiphy->max_sched_scan_ie_len)
5524 if (rdev->sched_scan_req) {
5529 request = kzalloc(sizeof(*request)
5530 + sizeof(*request->ssids) * n_ssids
5531 + sizeof(*request->match_sets) * n_match_sets
5532 + sizeof(*request->channels) * n_channels
5533 + ie_len, GFP_KERNEL);
5540 request->ssids = (void *)&request->channels[n_channels];
5541 request->n_ssids = n_ssids;
5544 request->ie = (void *)(request->ssids + n_ssids);
5546 request->ie = (void *)(request->channels + n_channels);
5551 request->match_sets = (void *)(request->ie + ie_len);
5552 else if (request->ssids)
5553 request->match_sets =
5554 (void *)(request->ssids + n_ssids);
5556 request->match_sets =
5557 (void *)(request->channels + n_channels);
5559 request->n_match_sets = n_match_sets;
5562 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5563 /* user specified, bail out if channel not found */
5564 nla_for_each_nested(attr,
5565 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES],
5567 struct ieee80211_channel *chan;
5569 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5576 /* ignore disabled channels */
5577 if (chan->flags & IEEE80211_CHAN_DISABLED)
5580 request->channels[i] = chan;
5585 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5587 if (!wiphy->bands[band])
5589 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5590 struct ieee80211_channel *chan;
5592 chan = &wiphy->bands[band]->channels[j];
5594 if (chan->flags & IEEE80211_CHAN_DISABLED)
5597 request->channels[i] = chan;
5608 request->n_channels = i;
5611 if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
5612 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS],
5614 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5618 request->ssids[i].ssid_len = nla_len(attr);
5619 memcpy(request->ssids[i].ssid, nla_data(attr),
5626 if (info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
5627 nla_for_each_nested(attr,
5628 info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
5630 struct nlattr *ssid, *rssi;
5632 nla_parse(tb, NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
5633 nla_data(attr), nla_len(attr),
5634 nl80211_match_policy);
5635 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
5637 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
5641 memcpy(request->match_sets[i].ssid.ssid,
5642 nla_data(ssid), nla_len(ssid));
5643 request->match_sets[i].ssid.ssid_len =
5646 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
5648 request->rssi_thold = nla_get_u32(rssi);
5650 request->rssi_thold =
5651 NL80211_SCAN_RSSI_THOLD_OFF;
5656 if (info->attrs[NL80211_ATTR_IE]) {
5657 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5658 memcpy((void *)request->ie,
5659 nla_data(info->attrs[NL80211_ATTR_IE]),
5663 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5664 request->flags = nla_get_u32(
5665 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5666 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5667 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5674 request->wiphy = &rdev->wiphy;
5675 request->interval = interval;
5676 request->scan_start = jiffies;
5678 err = rdev_sched_scan_start(rdev, dev, request);
5680 rdev->sched_scan_req = request;
5681 nl80211_send_sched_scan(rdev, dev,
5682 NL80211_CMD_START_SCHED_SCAN);
5692 static int nl80211_stop_sched_scan(struct sk_buff *skb,
5693 struct genl_info *info)
5695 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5697 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
5698 !rdev->ops->sched_scan_stop)
5701 return __cfg80211_stop_sched_scan(rdev, false);
5704 static int nl80211_start_radar_detection(struct sk_buff *skb,
5705 struct genl_info *info)
5707 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5708 struct net_device *dev = info->user_ptr[1];
5709 struct wireless_dev *wdev = dev->ieee80211_ptr;
5710 struct cfg80211_chan_def chandef;
5711 enum nl80211_dfs_regions dfs_region;
5714 dfs_region = reg_get_dfs_region(wdev->wiphy);
5715 if (dfs_region == NL80211_DFS_UNSET)
5718 err = nl80211_parse_chandef(rdev, info, &chandef);
5722 if (netif_carrier_ok(dev))
5725 if (wdev->cac_started)
5728 err = cfg80211_chandef_dfs_required(wdev->wiphy, &chandef);
5735 if (!cfg80211_chandef_dfs_usable(wdev->wiphy, &chandef))
5738 if (!rdev->ops->start_radar_detection)
5741 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
5742 chandef.chan, CHAN_MODE_SHARED,
5743 BIT(chandef.width));
5747 err = rdev->ops->start_radar_detection(&rdev->wiphy, dev, &chandef);
5749 wdev->channel = chandef.chan;
5750 wdev->cac_started = true;
5751 wdev->cac_start_time = jiffies;
5756 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
5758 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5759 struct net_device *dev = info->user_ptr[1];
5760 struct wireless_dev *wdev = dev->ieee80211_ptr;
5761 struct cfg80211_csa_settings params;
5762 /* csa_attrs is defined static to avoid waste of stack size - this
5763 * function is called under RTNL lock, so this should not be a problem.
5765 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
5766 u8 radar_detect_width = 0;
5768 bool need_new_beacon = false;
5770 if (!rdev->ops->channel_switch ||
5771 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
5774 switch (dev->ieee80211_ptr->iftype) {
5775 case NL80211_IFTYPE_AP:
5776 case NL80211_IFTYPE_P2P_GO:
5777 need_new_beacon = true;
5779 /* useless if AP is not running */
5780 if (!wdev->beacon_interval)
5783 case NL80211_IFTYPE_ADHOC:
5784 case NL80211_IFTYPE_MESH_POINT:
5790 memset(¶ms, 0, sizeof(params));
5792 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
5793 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
5796 /* only important for AP, IBSS and mesh create IEs internally */
5797 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
5800 params.count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
5802 if (!need_new_beacon)
5805 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon_after);
5809 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
5810 info->attrs[NL80211_ATTR_CSA_IES],
5815 err = nl80211_parse_beacon(csa_attrs, ¶ms.beacon_csa);
5819 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
5822 params.counter_offset_beacon =
5823 nla_get_u16(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
5824 if (params.counter_offset_beacon >= params.beacon_csa.tail_len)
5827 /* sanity check - counters should be the same */
5828 if (params.beacon_csa.tail[params.counter_offset_beacon] !=
5832 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
5833 params.counter_offset_presp =
5834 nla_get_u16(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
5835 if (params.counter_offset_presp >=
5836 params.beacon_csa.probe_resp_len)
5839 if (params.beacon_csa.probe_resp[params.counter_offset_presp] !=
5845 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
5849 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef))
5852 if (dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP ||
5853 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO ||
5854 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_ADHOC) {
5855 err = cfg80211_chandef_dfs_required(wdev->wiphy,
5860 radar_detect_width = BIT(params.chandef.width);
5861 params.radar_required = true;
5865 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
5866 params.chandef.chan,
5868 radar_detect_width);
5872 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
5873 params.block_tx = true;
5876 err = rdev_channel_switch(rdev, dev, ¶ms);
5882 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
5884 struct cfg80211_registered_device *rdev,
5885 struct wireless_dev *wdev,
5886 struct cfg80211_internal_bss *intbss)
5888 struct cfg80211_bss *res = &intbss->pub;
5889 const struct cfg80211_bss_ies *ies;
5894 ASSERT_WDEV_LOCK(wdev);
5896 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
5897 NL80211_CMD_NEW_SCAN_RESULTS);
5901 genl_dump_check_consistent(cb, hdr, &nl80211_fam);
5903 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
5904 goto nla_put_failure;
5906 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
5907 goto nla_put_failure;
5908 if (nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
5909 goto nla_put_failure;
5911 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
5913 goto nla_put_failure;
5914 if ((!is_zero_ether_addr(res->bssid) &&
5915 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
5916 goto nla_put_failure;
5919 ies = rcu_dereference(res->ies);
5921 if (nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
5922 goto fail_unlock_rcu;
5924 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
5925 ies->len, ies->data))
5926 goto fail_unlock_rcu;
5928 ies = rcu_dereference(res->beacon_ies);
5930 if (!tsf && nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
5931 goto fail_unlock_rcu;
5932 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
5933 ies->len, ies->data))
5934 goto fail_unlock_rcu;
5938 if (res->beacon_interval &&
5939 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
5940 goto nla_put_failure;
5941 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
5942 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
5943 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
5944 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
5945 jiffies_to_msecs(jiffies - intbss->ts)))
5946 goto nla_put_failure;
5948 switch (rdev->wiphy.signal_type) {
5949 case CFG80211_SIGNAL_TYPE_MBM:
5950 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
5951 goto nla_put_failure;
5953 case CFG80211_SIGNAL_TYPE_UNSPEC:
5954 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
5955 goto nla_put_failure;
5961 switch (wdev->iftype) {
5962 case NL80211_IFTYPE_P2P_CLIENT:
5963 case NL80211_IFTYPE_STATION:
5964 if (intbss == wdev->current_bss &&
5965 nla_put_u32(msg, NL80211_BSS_STATUS,
5966 NL80211_BSS_STATUS_ASSOCIATED))
5967 goto nla_put_failure;
5969 case NL80211_IFTYPE_ADHOC:
5970 if (intbss == wdev->current_bss &&
5971 nla_put_u32(msg, NL80211_BSS_STATUS,
5972 NL80211_BSS_STATUS_IBSS_JOINED))
5973 goto nla_put_failure;
5979 nla_nest_end(msg, bss);
5981 return genlmsg_end(msg, hdr);
5986 genlmsg_cancel(msg, hdr);
5990 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
5992 struct cfg80211_registered_device *rdev;
5993 struct cfg80211_internal_bss *scan;
5994 struct wireless_dev *wdev;
5995 int start = cb->args[2], idx = 0;
5998 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
6003 spin_lock_bh(&rdev->bss_lock);
6004 cfg80211_bss_expire(rdev);
6006 cb->seq = rdev->bss_generation;
6008 list_for_each_entry(scan, &rdev->bss_list, list) {
6011 if (nl80211_send_bss(skb, cb,
6012 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6013 rdev, wdev, scan) < 0) {
6019 spin_unlock_bh(&rdev->bss_lock);
6023 nl80211_finish_wdev_dump(rdev);
6028 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
6029 int flags, struct net_device *dev,
6030 struct survey_info *survey)
6033 struct nlattr *infoattr;
6035 hdr = nl80211hdr_put(msg, portid, seq, flags,
6036 NL80211_CMD_NEW_SURVEY_RESULTS);
6040 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
6041 goto nla_put_failure;
6043 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
6045 goto nla_put_failure;
6047 if (nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
6048 survey->channel->center_freq))
6049 goto nla_put_failure;
6051 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
6052 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
6053 goto nla_put_failure;
6054 if ((survey->filled & SURVEY_INFO_IN_USE) &&
6055 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
6056 goto nla_put_failure;
6057 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME) &&
6058 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME,
6059 survey->channel_time))
6060 goto nla_put_failure;
6061 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_BUSY) &&
6062 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_BUSY,
6063 survey->channel_time_busy))
6064 goto nla_put_failure;
6065 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_EXT_BUSY) &&
6066 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_EXT_BUSY,
6067 survey->channel_time_ext_busy))
6068 goto nla_put_failure;
6069 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_RX) &&
6070 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_RX,
6071 survey->channel_time_rx))
6072 goto nla_put_failure;
6073 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_TX) &&
6074 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_TX,
6075 survey->channel_time_tx))
6076 goto nla_put_failure;
6078 nla_nest_end(msg, infoattr);
6080 return genlmsg_end(msg, hdr);
6083 genlmsg_cancel(msg, hdr);
6087 static int nl80211_dump_survey(struct sk_buff *skb,
6088 struct netlink_callback *cb)
6090 struct survey_info survey;
6091 struct cfg80211_registered_device *dev;
6092 struct wireless_dev *wdev;
6093 int survey_idx = cb->args[2];
6096 res = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
6100 if (!wdev->netdev) {
6105 if (!dev->ops->dump_survey) {
6111 struct ieee80211_channel *chan;
6113 res = rdev_dump_survey(dev, wdev->netdev, survey_idx, &survey);
6119 /* Survey without a channel doesn't make sense */
6120 if (!survey.channel) {
6125 chan = ieee80211_get_channel(&dev->wiphy,
6126 survey.channel->center_freq);
6127 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED) {
6132 if (nl80211_send_survey(skb,
6133 NETLINK_CB(cb->skb).portid,
6134 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6135 wdev->netdev, &survey) < 0)
6141 cb->args[2] = survey_idx;
6144 nl80211_finish_wdev_dump(dev);
6148 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
6150 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
6151 NL80211_WPA_VERSION_2));
6154 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
6156 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6157 struct net_device *dev = info->user_ptr[1];
6158 struct ieee80211_channel *chan;
6159 const u8 *bssid, *ssid, *ie = NULL, *sae_data = NULL;
6160 int err, ssid_len, ie_len = 0, sae_data_len = 0;
6161 enum nl80211_auth_type auth_type;
6162 struct key_parse key;
6163 bool local_state_change;
6165 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6168 if (!info->attrs[NL80211_ATTR_MAC])
6171 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
6174 if (!info->attrs[NL80211_ATTR_SSID])
6177 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
6180 err = nl80211_parse_key(info, &key);
6185 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
6187 if (!key.p.key || !key.p.key_len)
6189 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
6190 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
6191 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
6192 key.p.key_len != WLAN_KEY_LEN_WEP104))
6204 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
6205 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
6214 if (!rdev->ops->auth)
6217 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6218 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6221 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6222 chan = ieee80211_get_channel(&rdev->wiphy,
6223 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
6224 if (!chan || (chan->flags & IEEE80211_CHAN_DISABLED))
6227 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6228 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6230 if (info->attrs[NL80211_ATTR_IE]) {
6231 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6232 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6235 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6236 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
6239 if (auth_type == NL80211_AUTHTYPE_SAE &&
6240 !info->attrs[NL80211_ATTR_SAE_DATA])
6243 if (info->attrs[NL80211_ATTR_SAE_DATA]) {
6244 if (auth_type != NL80211_AUTHTYPE_SAE)
6246 sae_data = nla_data(info->attrs[NL80211_ATTR_SAE_DATA]);
6247 sae_data_len = nla_len(info->attrs[NL80211_ATTR_SAE_DATA]);
6248 /* need to include at least Auth Transaction and Status Code */
6249 if (sae_data_len < 4)
6253 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6256 * Since we no longer track auth state, ignore
6257 * requests to only change local state.
6259 if (local_state_change)
6262 wdev_lock(dev->ieee80211_ptr);
6263 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
6264 ssid, ssid_len, ie, ie_len,
6265 key.p.key, key.p.key_len, key.idx,
6266 sae_data, sae_data_len);
6267 wdev_unlock(dev->ieee80211_ptr);
6271 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
6272 struct genl_info *info,
6273 struct cfg80211_crypto_settings *settings,
6276 memset(settings, 0, sizeof(*settings));
6278 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
6280 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
6282 proto = nla_get_u16(
6283 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
6284 settings->control_port_ethertype = cpu_to_be16(proto);
6285 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
6288 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
6289 settings->control_port_no_encrypt = true;
6291 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
6293 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
6297 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6298 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6299 settings->n_ciphers_pairwise = len / sizeof(u32);
6301 if (len % sizeof(u32))
6304 if (settings->n_ciphers_pairwise > cipher_limit)
6307 memcpy(settings->ciphers_pairwise, data, len);
6309 for (i = 0; i < settings->n_ciphers_pairwise; i++)
6310 if (!cfg80211_supported_cipher_suite(
6312 settings->ciphers_pairwise[i]))
6316 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
6317 settings->cipher_group =
6318 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
6319 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
6320 settings->cipher_group))
6324 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
6325 settings->wpa_versions =
6326 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
6327 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
6331 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
6335 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
6336 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
6337 settings->n_akm_suites = len / sizeof(u32);
6339 if (len % sizeof(u32))
6342 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
6345 memcpy(settings->akm_suites, data, len);
6351 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
6353 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6354 struct net_device *dev = info->user_ptr[1];
6355 struct ieee80211_channel *chan;
6356 struct cfg80211_assoc_request req = {};
6357 const u8 *bssid, *ssid;
6358 int err, ssid_len = 0;
6360 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6363 if (!info->attrs[NL80211_ATTR_MAC] ||
6364 !info->attrs[NL80211_ATTR_SSID] ||
6365 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
6368 if (!rdev->ops->assoc)
6371 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6372 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6375 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6377 chan = ieee80211_get_channel(&rdev->wiphy,
6378 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
6379 if (!chan || (chan->flags & IEEE80211_CHAN_DISABLED))
6382 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6383 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6385 if (info->attrs[NL80211_ATTR_IE]) {
6386 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6387 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6390 if (info->attrs[NL80211_ATTR_USE_MFP]) {
6391 enum nl80211_mfp mfp =
6392 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
6393 if (mfp == NL80211_MFP_REQUIRED)
6395 else if (mfp != NL80211_MFP_NO)
6399 if (info->attrs[NL80211_ATTR_PREV_BSSID])
6400 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
6402 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
6403 req.flags |= ASSOC_REQ_DISABLE_HT;
6405 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6406 memcpy(&req.ht_capa_mask,
6407 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
6408 sizeof(req.ht_capa_mask));
6410 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
6411 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6413 memcpy(&req.ht_capa,
6414 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
6415 sizeof(req.ht_capa));
6418 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
6419 req.flags |= ASSOC_REQ_DISABLE_VHT;
6421 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
6422 memcpy(&req.vht_capa_mask,
6423 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
6424 sizeof(req.vht_capa_mask));
6426 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
6427 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
6429 memcpy(&req.vht_capa,
6430 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
6431 sizeof(req.vht_capa));
6434 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
6436 wdev_lock(dev->ieee80211_ptr);
6437 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
6438 ssid, ssid_len, &req);
6439 wdev_unlock(dev->ieee80211_ptr);
6445 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
6447 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6448 struct net_device *dev = info->user_ptr[1];
6449 const u8 *ie = NULL, *bssid;
6450 int ie_len = 0, err;
6452 bool local_state_change;
6454 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6457 if (!info->attrs[NL80211_ATTR_MAC])
6460 if (!info->attrs[NL80211_ATTR_REASON_CODE])
6463 if (!rdev->ops->deauth)
6466 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6467 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6470 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6472 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
6473 if (reason_code == 0) {
6474 /* Reason Code 0 is reserved */
6478 if (info->attrs[NL80211_ATTR_IE]) {
6479 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6480 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6483 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6485 wdev_lock(dev->ieee80211_ptr);
6486 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
6487 local_state_change);
6488 wdev_unlock(dev->ieee80211_ptr);
6492 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
6494 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6495 struct net_device *dev = info->user_ptr[1];
6496 const u8 *ie = NULL, *bssid;
6497 int ie_len = 0, err;
6499 bool local_state_change;
6501 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6504 if (!info->attrs[NL80211_ATTR_MAC])
6507 if (!info->attrs[NL80211_ATTR_REASON_CODE])
6510 if (!rdev->ops->disassoc)
6513 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6514 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6517 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6519 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
6520 if (reason_code == 0) {
6521 /* Reason Code 0 is reserved */
6525 if (info->attrs[NL80211_ATTR_IE]) {
6526 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6527 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6530 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6532 wdev_lock(dev->ieee80211_ptr);
6533 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
6534 local_state_change);
6535 wdev_unlock(dev->ieee80211_ptr);
6540 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
6541 int mcast_rate[IEEE80211_NUM_BANDS],
6544 struct wiphy *wiphy = &rdev->wiphy;
6548 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
6549 struct ieee80211_supported_band *sband;
6551 sband = wiphy->bands[band];
6555 for (i = 0; i < sband->n_bitrates; i++) {
6556 if (sband->bitrates[i].bitrate == rateval) {
6557 mcast_rate[band] = i + 1;
6567 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
6569 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6570 struct net_device *dev = info->user_ptr[1];
6571 struct cfg80211_ibss_params ibss;
6572 struct wiphy *wiphy;
6573 struct cfg80211_cached_keys *connkeys = NULL;
6576 memset(&ibss, 0, sizeof(ibss));
6578 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6581 if (!info->attrs[NL80211_ATTR_SSID] ||
6582 !nla_len(info->attrs[NL80211_ATTR_SSID]))
6585 ibss.beacon_interval = 100;
6587 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
6588 ibss.beacon_interval =
6589 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
6590 if (ibss.beacon_interval < 1 || ibss.beacon_interval > 10000)
6594 if (!rdev->ops->join_ibss)
6597 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
6600 wiphy = &rdev->wiphy;
6602 if (info->attrs[NL80211_ATTR_MAC]) {
6603 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6605 if (!is_valid_ether_addr(ibss.bssid))
6608 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6609 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6611 if (info->attrs[NL80211_ATTR_IE]) {
6612 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6613 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6616 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
6620 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef))
6623 switch (ibss.chandef.width) {
6624 case NL80211_CHAN_WIDTH_5:
6625 case NL80211_CHAN_WIDTH_10:
6626 case NL80211_CHAN_WIDTH_20_NOHT:
6628 case NL80211_CHAN_WIDTH_20:
6629 case NL80211_CHAN_WIDTH_40:
6630 if (rdev->wiphy.features & NL80211_FEATURE_HT_IBSS)
6636 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
6637 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
6639 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6641 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6643 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6644 struct ieee80211_supported_band *sband =
6645 wiphy->bands[ibss.chandef.chan->band];
6647 err = ieee80211_get_ratemask(sband, rates, n_rates,
6653 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6654 memcpy(&ibss.ht_capa_mask,
6655 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
6656 sizeof(ibss.ht_capa_mask));
6658 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
6659 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6661 memcpy(&ibss.ht_capa,
6662 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
6663 sizeof(ibss.ht_capa));
6666 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
6667 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
6668 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
6671 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
6674 connkeys = nl80211_parse_connkeys(rdev,
6675 info->attrs[NL80211_ATTR_KEYS],
6677 if (IS_ERR(connkeys))
6678 return PTR_ERR(connkeys);
6680 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
6688 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
6690 ibss.userspace_handles_dfs =
6691 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
6693 err = cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
6699 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
6701 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6702 struct net_device *dev = info->user_ptr[1];
6704 if (!rdev->ops->leave_ibss)
6707 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
6710 return cfg80211_leave_ibss(rdev, dev, false);
6713 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
6715 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6716 struct net_device *dev = info->user_ptr[1];
6717 int mcast_rate[IEEE80211_NUM_BANDS];
6721 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
6722 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6725 if (!rdev->ops->set_mcast_rate)
6728 memset(mcast_rate, 0, sizeof(mcast_rate));
6730 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
6733 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
6734 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
6737 err = rdev->ops->set_mcast_rate(&rdev->wiphy, dev, mcast_rate);
6742 static struct sk_buff *
6743 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
6744 int approxlen, u32 portid, u32 seq,
6745 enum nl80211_commands cmd,
6746 enum nl80211_attrs attr,
6747 const struct nl80211_vendor_cmd_info *info,
6750 struct sk_buff *skb;
6752 struct nlattr *data;
6754 skb = nlmsg_new(approxlen + 100, gfp);
6758 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
6764 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
6765 goto nla_put_failure;
6768 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
6770 goto nla_put_failure;
6771 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
6773 goto nla_put_failure;
6776 data = nla_nest_start(skb, attr);
6778 ((void **)skb->cb)[0] = rdev;
6779 ((void **)skb->cb)[1] = hdr;
6780 ((void **)skb->cb)[2] = data;
6789 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
6790 enum nl80211_commands cmd,
6791 enum nl80211_attrs attr,
6792 int vendor_event_idx,
6793 int approxlen, gfp_t gfp)
6795 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
6796 const struct nl80211_vendor_cmd_info *info;
6799 case NL80211_CMD_TESTMODE:
6800 if (WARN_ON(vendor_event_idx != -1))
6804 case NL80211_CMD_VENDOR:
6805 if (WARN_ON(vendor_event_idx < 0 ||
6806 vendor_event_idx >= wiphy->n_vendor_events))
6808 info = &wiphy->vendor_events[vendor_event_idx];
6815 return __cfg80211_alloc_vendor_skb(rdev, approxlen, 0, 0,
6816 cmd, attr, info, gfp);
6818 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
6820 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
6822 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
6823 void *hdr = ((void **)skb->cb)[1];
6824 struct nlattr *data = ((void **)skb->cb)[2];
6825 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
6827 nla_nest_end(skb, data);
6828 genlmsg_end(skb, hdr);
6830 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
6831 mcgrp = NL80211_MCGRP_VENDOR;
6833 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), skb, 0,
6836 EXPORT_SYMBOL(__cfg80211_send_event_skb);
6838 #ifdef CONFIG_NL80211_TESTMODE
6839 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
6841 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6842 struct wireless_dev *wdev =
6843 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
6846 if (!rdev->ops->testmode_cmd)
6850 err = PTR_ERR(wdev);
6854 } else if (wdev->wiphy != &rdev->wiphy) {
6858 if (!info->attrs[NL80211_ATTR_TESTDATA])
6861 rdev->cur_cmd_info = info;
6862 err = rdev_testmode_cmd(rdev, wdev,
6863 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
6864 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
6865 rdev->cur_cmd_info = NULL;
6870 static int nl80211_testmode_dump(struct sk_buff *skb,
6871 struct netlink_callback *cb)
6873 struct cfg80211_registered_device *rdev;
6883 * 0 is a valid index, but not valid for args[0],
6884 * so we need to offset by 1.
6886 phy_idx = cb->args[0] - 1;
6888 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
6889 nl80211_fam.attrbuf, nl80211_fam.maxattr,
6894 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk),
6895 nl80211_fam.attrbuf);
6897 err = PTR_ERR(rdev);
6900 phy_idx = rdev->wiphy_idx;
6903 if (nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA])
6905 (long)nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA];
6909 data = nla_data((void *)cb->args[1]);
6910 data_len = nla_len((void *)cb->args[1]);
6913 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
6919 if (!rdev->ops->testmode_dump) {
6925 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
6926 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6927 NL80211_CMD_TESTMODE);
6928 struct nlattr *tmdata;
6933 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
6934 genlmsg_cancel(skb, hdr);
6938 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
6940 genlmsg_cancel(skb, hdr);
6943 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
6944 nla_nest_end(skb, tmdata);
6946 if (err == -ENOBUFS || err == -ENOENT) {
6947 genlmsg_cancel(skb, hdr);
6950 genlmsg_cancel(skb, hdr);
6954 genlmsg_end(skb, hdr);
6959 cb->args[0] = phy_idx + 1;
6966 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
6968 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6969 struct net_device *dev = info->user_ptr[1];
6970 struct cfg80211_connect_params connect;
6971 struct wiphy *wiphy;
6972 struct cfg80211_cached_keys *connkeys = NULL;
6975 memset(&connect, 0, sizeof(connect));
6977 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6980 if (!info->attrs[NL80211_ATTR_SSID] ||
6981 !nla_len(info->attrs[NL80211_ATTR_SSID]))
6984 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
6986 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6987 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
6988 NL80211_CMD_CONNECT))
6991 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
6993 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
6995 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
6996 NL80211_MAX_NR_CIPHER_SUITES);
7000 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7001 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7004 wiphy = &rdev->wiphy;
7006 connect.bg_scan_period = -1;
7007 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
7008 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
7009 connect.bg_scan_period =
7010 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
7013 if (info->attrs[NL80211_ATTR_MAC])
7014 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7015 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
7016 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
7018 if (info->attrs[NL80211_ATTR_IE]) {
7019 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7020 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7023 if (info->attrs[NL80211_ATTR_USE_MFP]) {
7024 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
7025 if (connect.mfp != NL80211_MFP_REQUIRED &&
7026 connect.mfp != NL80211_MFP_NO)
7029 connect.mfp = NL80211_MFP_NO;
7032 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7034 ieee80211_get_channel(wiphy,
7035 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
7036 if (!connect.channel ||
7037 connect.channel->flags & IEEE80211_CHAN_DISABLED)
7041 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
7042 connkeys = nl80211_parse_connkeys(rdev,
7043 info->attrs[NL80211_ATTR_KEYS], NULL);
7044 if (IS_ERR(connkeys))
7045 return PTR_ERR(connkeys);
7048 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
7049 connect.flags |= ASSOC_REQ_DISABLE_HT;
7051 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7052 memcpy(&connect.ht_capa_mask,
7053 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7054 sizeof(connect.ht_capa_mask));
7056 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7057 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
7061 memcpy(&connect.ht_capa,
7062 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7063 sizeof(connect.ht_capa));
7066 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
7067 connect.flags |= ASSOC_REQ_DISABLE_VHT;
7069 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7070 memcpy(&connect.vht_capa_mask,
7071 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
7072 sizeof(connect.vht_capa_mask));
7074 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
7075 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
7079 memcpy(&connect.vht_capa,
7080 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
7081 sizeof(connect.vht_capa));
7084 wdev_lock(dev->ieee80211_ptr);
7085 err = cfg80211_connect(rdev, dev, &connect, connkeys, NULL);
7086 wdev_unlock(dev->ieee80211_ptr);
7092 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
7094 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7095 struct net_device *dev = info->user_ptr[1];
7099 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7100 reason = WLAN_REASON_DEAUTH_LEAVING;
7102 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7107 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7108 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7111 wdev_lock(dev->ieee80211_ptr);
7112 ret = cfg80211_disconnect(rdev, dev, reason, true);
7113 wdev_unlock(dev->ieee80211_ptr);
7117 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
7119 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7124 if (!info->attrs[NL80211_ATTR_PID])
7127 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
7129 net = get_net_ns_by_pid(pid);
7131 return PTR_ERR(net);
7135 /* check if anything to do */
7136 if (!net_eq(wiphy_net(&rdev->wiphy), net))
7137 err = cfg80211_switch_netns(rdev, net);
7143 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
7145 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7146 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
7147 struct cfg80211_pmksa *pmksa) = NULL;
7148 struct net_device *dev = info->user_ptr[1];
7149 struct cfg80211_pmksa pmksa;
7151 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
7153 if (!info->attrs[NL80211_ATTR_MAC])
7156 if (!info->attrs[NL80211_ATTR_PMKID])
7159 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
7160 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7162 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7163 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7166 switch (info->genlhdr->cmd) {
7167 case NL80211_CMD_SET_PMKSA:
7168 rdev_ops = rdev->ops->set_pmksa;
7170 case NL80211_CMD_DEL_PMKSA:
7171 rdev_ops = rdev->ops->del_pmksa;
7181 return rdev_ops(&rdev->wiphy, dev, &pmksa);
7184 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
7186 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7187 struct net_device *dev = info->user_ptr[1];
7189 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7190 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7193 if (!rdev->ops->flush_pmksa)
7196 return rdev_flush_pmksa(rdev, dev);
7199 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
7201 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7202 struct net_device *dev = info->user_ptr[1];
7203 u8 action_code, dialog_token;
7207 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7208 !rdev->ops->tdls_mgmt)
7211 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
7212 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
7213 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
7214 !info->attrs[NL80211_ATTR_IE] ||
7215 !info->attrs[NL80211_ATTR_MAC])
7218 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7219 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
7220 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
7221 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
7223 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
7224 dialog_token, status_code,
7225 nla_data(info->attrs[NL80211_ATTR_IE]),
7226 nla_len(info->attrs[NL80211_ATTR_IE]));
7229 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
7231 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7232 struct net_device *dev = info->user_ptr[1];
7233 enum nl80211_tdls_operation operation;
7236 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7237 !rdev->ops->tdls_oper)
7240 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
7241 !info->attrs[NL80211_ATTR_MAC])
7244 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
7245 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7247 return rdev_tdls_oper(rdev, dev, peer, operation);
7250 static int nl80211_remain_on_channel(struct sk_buff *skb,
7251 struct genl_info *info)
7253 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7254 struct wireless_dev *wdev = info->user_ptr[1];
7255 struct cfg80211_chan_def chandef;
7256 struct sk_buff *msg;
7262 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
7263 !info->attrs[NL80211_ATTR_DURATION])
7266 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7268 if (!rdev->ops->remain_on_channel ||
7269 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
7273 * We should be on that channel for at least a minimum amount of
7274 * time (10ms) but no longer than the driver supports.
7276 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7277 duration > rdev->wiphy.max_remain_on_channel_duration)
7280 err = nl80211_parse_chandef(rdev, info, &chandef);
7284 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7288 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7289 NL80211_CMD_REMAIN_ON_CHANNEL);
7295 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
7301 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
7302 goto nla_put_failure;
7304 genlmsg_end(msg, hdr);
7306 return genlmsg_reply(msg, info);
7315 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
7316 struct genl_info *info)
7318 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7319 struct wireless_dev *wdev = info->user_ptr[1];
7322 if (!info->attrs[NL80211_ATTR_COOKIE])
7325 if (!rdev->ops->cancel_remain_on_channel)
7328 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7330 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
7333 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
7334 u8 *rates, u8 rates_len)
7339 for (i = 0; i < rates_len; i++) {
7340 int rate = (rates[i] & 0x7f) * 5;
7342 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
7343 struct ieee80211_rate *srate =
7344 &sband->bitrates[ridx];
7345 if (rate == srate->bitrate) {
7350 if (ridx == sband->n_bitrates)
7351 return 0; /* rate not found */
7357 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
7358 u8 *rates, u8 rates_len,
7359 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
7363 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
7365 for (i = 0; i < rates_len; i++) {
7368 ridx = rates[i] / 8;
7369 rbit = BIT(rates[i] % 8);
7371 /* check validity */
7372 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
7375 /* check availability */
7376 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
7385 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
7389 switch (vht_mcs_map) {
7390 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
7392 case IEEE80211_VHT_MCS_SUPPORT_0_7:
7395 case IEEE80211_VHT_MCS_SUPPORT_0_8:
7398 case IEEE80211_VHT_MCS_SUPPORT_0_9:
7408 static void vht_build_mcs_mask(u16 vht_mcs_map,
7409 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
7413 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
7414 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
7419 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
7420 struct nl80211_txrate_vht *txrate,
7421 u16 mcs[NL80211_VHT_NSS_MAX])
7423 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
7424 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
7427 if (!sband->vht_cap.vht_supported)
7430 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
7432 /* Build vht_mcs_mask from VHT capabilities */
7433 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
7435 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
7436 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
7437 mcs[i] = txrate->mcs[i];
7445 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
7446 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
7447 .len = NL80211_MAX_SUPP_RATES },
7448 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
7449 .len = NL80211_MAX_SUPP_HT_RATES },
7450 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
7453 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
7454 struct genl_info *info)
7456 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
7457 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7458 struct cfg80211_bitrate_mask mask;
7460 struct net_device *dev = info->user_ptr[1];
7461 struct nlattr *tx_rates;
7462 struct ieee80211_supported_band *sband;
7465 if (!rdev->ops->set_bitrate_mask)
7468 memset(&mask, 0, sizeof(mask));
7469 /* Default to all rates enabled */
7470 for (i = 0; i < IEEE80211_NUM_BANDS; i++) {
7471 sband = rdev->wiphy.bands[i];
7476 mask.control[i].legacy = (1 << sband->n_bitrates) - 1;
7477 memcpy(mask.control[i].ht_mcs,
7478 sband->ht_cap.mcs.rx_mask,
7479 sizeof(mask.control[i].ht_mcs));
7481 if (!sband->vht_cap.vht_supported)
7484 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
7485 vht_build_mcs_mask(vht_tx_mcs_map, mask.control[i].vht_mcs);
7488 /* if no rates are given set it back to the defaults */
7489 if (!info->attrs[NL80211_ATTR_TX_RATES])
7493 * The nested attribute uses enum nl80211_band as the index. This maps
7494 * directly to the enum ieee80211_band values used in cfg80211.
7496 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
7497 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem)
7499 enum ieee80211_band band = nla_type(tx_rates);
7500 if (band < 0 || band >= IEEE80211_NUM_BANDS)
7502 sband = rdev->wiphy.bands[band];
7505 nla_parse(tb, NL80211_TXRATE_MAX, nla_data(tx_rates),
7506 nla_len(tx_rates), nl80211_txattr_policy);
7507 if (tb[NL80211_TXRATE_LEGACY]) {
7508 mask.control[band].legacy = rateset_to_mask(
7510 nla_data(tb[NL80211_TXRATE_LEGACY]),
7511 nla_len(tb[NL80211_TXRATE_LEGACY]));
7512 if ((mask.control[band].legacy == 0) &&
7513 nla_len(tb[NL80211_TXRATE_LEGACY]))
7516 if (tb[NL80211_TXRATE_HT]) {
7517 if (!ht_rateset_to_mask(
7519 nla_data(tb[NL80211_TXRATE_HT]),
7520 nla_len(tb[NL80211_TXRATE_HT]),
7521 mask.control[band].ht_mcs))
7524 if (tb[NL80211_TXRATE_VHT]) {
7525 if (!vht_set_mcs_mask(
7527 nla_data(tb[NL80211_TXRATE_VHT]),
7528 mask.control[band].vht_mcs))
7532 if (mask.control[band].legacy == 0) {
7533 /* don't allow empty legacy rates if HT or VHT
7534 * are not even supported.
7536 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
7537 rdev->wiphy.bands[band]->vht_cap.vht_supported))
7540 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
7541 if (mask.control[band].ht_mcs[i])
7544 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
7545 if (mask.control[band].vht_mcs[i])
7548 /* legacy and mcs rates may not be both empty */
7554 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
7557 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
7559 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7560 struct wireless_dev *wdev = info->user_ptr[1];
7561 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
7563 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
7566 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
7567 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
7569 switch (wdev->iftype) {
7570 case NL80211_IFTYPE_STATION:
7571 case NL80211_IFTYPE_ADHOC:
7572 case NL80211_IFTYPE_P2P_CLIENT:
7573 case NL80211_IFTYPE_AP:
7574 case NL80211_IFTYPE_AP_VLAN:
7575 case NL80211_IFTYPE_MESH_POINT:
7576 case NL80211_IFTYPE_P2P_GO:
7577 case NL80211_IFTYPE_P2P_DEVICE:
7583 /* not much point in registering if we can't reply */
7584 if (!rdev->ops->mgmt_tx)
7587 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
7588 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
7589 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
7592 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
7594 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7595 struct wireless_dev *wdev = info->user_ptr[1];
7596 struct cfg80211_chan_def chandef;
7600 struct sk_buff *msg = NULL;
7601 struct cfg80211_mgmt_tx_params params = {
7602 .dont_wait_for_ack =
7603 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
7606 if (!info->attrs[NL80211_ATTR_FRAME])
7609 if (!rdev->ops->mgmt_tx)
7612 switch (wdev->iftype) {
7613 case NL80211_IFTYPE_P2P_DEVICE:
7614 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
7616 case NL80211_IFTYPE_STATION:
7617 case NL80211_IFTYPE_ADHOC:
7618 case NL80211_IFTYPE_P2P_CLIENT:
7619 case NL80211_IFTYPE_AP:
7620 case NL80211_IFTYPE_AP_VLAN:
7621 case NL80211_IFTYPE_MESH_POINT:
7622 case NL80211_IFTYPE_P2P_GO:
7628 if (info->attrs[NL80211_ATTR_DURATION]) {
7629 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
7631 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7634 * We should wait on the channel for at least a minimum amount
7635 * of time (10ms) but no longer than the driver supports.
7637 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7638 params.wait > rdev->wiphy.max_remain_on_channel_duration)
7643 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
7645 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
7648 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7650 /* get the channel if any has been specified, otherwise pass NULL to
7651 * the driver. The latter will use the current one
7653 chandef.chan = NULL;
7654 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7655 err = nl80211_parse_chandef(rdev, info, &chandef);
7660 if (!chandef.chan && params.offchan)
7663 if (!params.dont_wait_for_ack) {
7664 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7668 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7676 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
7677 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
7678 params.chan = chandef.chan;
7679 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
7684 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
7685 goto nla_put_failure;
7687 genlmsg_end(msg, hdr);
7688 return genlmsg_reply(msg, info);
7700 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
7702 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7703 struct wireless_dev *wdev = info->user_ptr[1];
7706 if (!info->attrs[NL80211_ATTR_COOKIE])
7709 if (!rdev->ops->mgmt_tx_cancel_wait)
7712 switch (wdev->iftype) {
7713 case NL80211_IFTYPE_STATION:
7714 case NL80211_IFTYPE_ADHOC:
7715 case NL80211_IFTYPE_P2P_CLIENT:
7716 case NL80211_IFTYPE_AP:
7717 case NL80211_IFTYPE_AP_VLAN:
7718 case NL80211_IFTYPE_P2P_GO:
7719 case NL80211_IFTYPE_P2P_DEVICE:
7725 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7727 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
7730 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
7732 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7733 struct wireless_dev *wdev;
7734 struct net_device *dev = info->user_ptr[1];
7739 if (!info->attrs[NL80211_ATTR_PS_STATE])
7742 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
7744 if (ps_state != NL80211_PS_DISABLED && ps_state != NL80211_PS_ENABLED)
7747 wdev = dev->ieee80211_ptr;
7749 if (!rdev->ops->set_power_mgmt)
7752 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
7754 if (state == wdev->ps)
7757 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
7763 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
7765 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7766 enum nl80211_ps_state ps_state;
7767 struct wireless_dev *wdev;
7768 struct net_device *dev = info->user_ptr[1];
7769 struct sk_buff *msg;
7773 wdev = dev->ieee80211_ptr;
7775 if (!rdev->ops->set_power_mgmt)
7778 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7782 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7783 NL80211_CMD_GET_POWER_SAVE);
7790 ps_state = NL80211_PS_ENABLED;
7792 ps_state = NL80211_PS_DISABLED;
7794 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
7795 goto nla_put_failure;
7797 genlmsg_end(msg, hdr);
7798 return genlmsg_reply(msg, info);
7807 static struct nla_policy
7808 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] __read_mostly = {
7809 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_U32 },
7810 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
7811 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
7812 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
7813 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
7814 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
7817 static int nl80211_set_cqm_txe(struct genl_info *info,
7818 u32 rate, u32 pkts, u32 intvl)
7820 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7821 struct net_device *dev = info->user_ptr[1];
7822 struct wireless_dev *wdev = dev->ieee80211_ptr;
7824 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
7827 if (!rdev->ops->set_cqm_txe_config)
7830 if (wdev->iftype != NL80211_IFTYPE_STATION &&
7831 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
7834 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
7837 static int nl80211_set_cqm_rssi(struct genl_info *info,
7838 s32 threshold, u32 hysteresis)
7840 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7841 struct net_device *dev = info->user_ptr[1];
7842 struct wireless_dev *wdev = dev->ieee80211_ptr;
7847 /* disabling - hysteresis should also be zero then */
7851 if (!rdev->ops->set_cqm_rssi_config)
7854 if (wdev->iftype != NL80211_IFTYPE_STATION &&
7855 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
7858 return rdev_set_cqm_rssi_config(rdev, dev, threshold, hysteresis);
7861 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
7863 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
7867 cqm = info->attrs[NL80211_ATTR_CQM];
7871 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
7872 nl80211_attr_cqm_policy);
7876 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
7877 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
7878 s32 threshold = nla_get_s32(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
7879 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
7881 return nl80211_set_cqm_rssi(info, threshold, hysteresis);
7884 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
7885 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
7886 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
7887 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
7888 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
7889 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
7891 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
7897 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
7899 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7900 struct net_device *dev = info->user_ptr[1];
7901 struct mesh_config cfg;
7902 struct mesh_setup setup;
7905 /* start with default */
7906 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
7907 memcpy(&setup, &default_mesh_setup, sizeof(setup));
7909 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
7910 /* and parse parameters if given */
7911 err = nl80211_parse_mesh_config(info, &cfg, NULL);
7916 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
7917 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
7920 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
7921 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
7923 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
7924 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
7925 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
7928 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
7929 setup.beacon_interval =
7930 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
7931 if (setup.beacon_interval < 10 ||
7932 setup.beacon_interval > 10000)
7936 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
7938 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
7939 if (setup.dtim_period < 1 || setup.dtim_period > 100)
7943 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
7944 /* parse additional setup parameters if given */
7945 err = nl80211_parse_mesh_setup(info, &setup);
7951 cfg.auto_open_plinks = false;
7953 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7954 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
7958 /* cfg80211_join_mesh() will sort it out */
7959 setup.chandef.chan = NULL;
7962 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
7963 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7965 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7966 struct ieee80211_supported_band *sband;
7968 if (!setup.chandef.chan)
7971 sband = rdev->wiphy.bands[setup.chandef.chan->band];
7973 err = ieee80211_get_ratemask(sband, rates, n_rates,
7974 &setup.basic_rates);
7979 return cfg80211_join_mesh(rdev, dev, &setup, &cfg);
7982 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
7984 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7985 struct net_device *dev = info->user_ptr[1];
7987 return cfg80211_leave_mesh(rdev, dev);
7991 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
7992 struct cfg80211_registered_device *rdev)
7994 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
7995 struct nlattr *nl_pats, *nl_pat;
7998 if (!wowlan->n_patterns)
8001 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
8005 for (i = 0; i < wowlan->n_patterns; i++) {
8006 nl_pat = nla_nest_start(msg, i + 1);
8009 pat_len = wowlan->patterns[i].pattern_len;
8010 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
8011 wowlan->patterns[i].mask) ||
8012 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
8013 wowlan->patterns[i].pattern) ||
8014 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
8015 wowlan->patterns[i].pkt_offset))
8017 nla_nest_end(msg, nl_pat);
8019 nla_nest_end(msg, nl_pats);
8024 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
8025 struct cfg80211_wowlan_tcp *tcp)
8027 struct nlattr *nl_tcp;
8032 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
8036 if (nla_put_be32(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
8037 nla_put_be32(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
8038 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
8039 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
8040 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
8041 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
8042 tcp->payload_len, tcp->payload) ||
8043 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
8044 tcp->data_interval) ||
8045 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
8046 tcp->wake_len, tcp->wake_data) ||
8047 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
8048 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
8051 if (tcp->payload_seq.len &&
8052 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
8053 sizeof(tcp->payload_seq), &tcp->payload_seq))
8056 if (tcp->payload_tok.len &&
8057 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
8058 sizeof(tcp->payload_tok) + tcp->tokens_size,
8062 nla_nest_end(msg, nl_tcp);
8067 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
8069 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8070 struct sk_buff *msg;
8072 u32 size = NLMSG_DEFAULT_SIZE;
8074 if (!rdev->wiphy.wowlan)
8077 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
8078 /* adjust size to have room for all the data */
8079 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
8080 rdev->wiphy.wowlan_config->tcp->payload_len +
8081 rdev->wiphy.wowlan_config->tcp->wake_len +
8082 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
8085 msg = nlmsg_new(size, GFP_KERNEL);
8089 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8090 NL80211_CMD_GET_WOWLAN);
8092 goto nla_put_failure;
8094 if (rdev->wiphy.wowlan_config) {
8095 struct nlattr *nl_wowlan;
8097 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
8099 goto nla_put_failure;
8101 if ((rdev->wiphy.wowlan_config->any &&
8102 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
8103 (rdev->wiphy.wowlan_config->disconnect &&
8104 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
8105 (rdev->wiphy.wowlan_config->magic_pkt &&
8106 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
8107 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
8108 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
8109 (rdev->wiphy.wowlan_config->eap_identity_req &&
8110 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
8111 (rdev->wiphy.wowlan_config->four_way_handshake &&
8112 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
8113 (rdev->wiphy.wowlan_config->rfkill_release &&
8114 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
8115 goto nla_put_failure;
8117 if (nl80211_send_wowlan_patterns(msg, rdev))
8118 goto nla_put_failure;
8120 if (nl80211_send_wowlan_tcp(msg,
8121 rdev->wiphy.wowlan_config->tcp))
8122 goto nla_put_failure;
8124 nla_nest_end(msg, nl_wowlan);
8127 genlmsg_end(msg, hdr);
8128 return genlmsg_reply(msg, info);
8135 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
8136 struct nlattr *attr,
8137 struct cfg80211_wowlan *trig)
8139 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
8140 struct cfg80211_wowlan_tcp *cfg;
8141 struct nl80211_wowlan_tcp_data_token *tok = NULL;
8142 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
8144 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
8147 if (!rdev->wiphy.wowlan->tcp)
8150 err = nla_parse(tb, MAX_NL80211_WOWLAN_TCP,
8151 nla_data(attr), nla_len(attr),
8152 nl80211_wowlan_tcp_policy);
8156 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
8157 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
8158 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
8159 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
8160 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
8161 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
8162 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
8163 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
8166 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
8167 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
8170 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
8171 rdev->wiphy.wowlan->tcp->data_interval_max ||
8172 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
8175 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
8176 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
8179 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
8180 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
8183 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
8184 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8186 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8187 tokens_size = tokln - sizeof(*tok);
8189 if (!tok->len || tokens_size % tok->len)
8191 if (!rdev->wiphy.wowlan->tcp->tok)
8193 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
8195 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
8197 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
8199 if (tok->offset + tok->len > data_size)
8203 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
8204 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
8205 if (!rdev->wiphy.wowlan->tcp->seq)
8207 if (seq->len == 0 || seq->len > 4)
8209 if (seq->len + seq->offset > data_size)
8213 size = sizeof(*cfg);
8215 size += wake_size + wake_mask_size;
8216 size += tokens_size;
8218 cfg = kzalloc(size, GFP_KERNEL);
8221 cfg->src = nla_get_be32(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
8222 cfg->dst = nla_get_be32(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
8223 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
8225 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
8226 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
8230 /* allocate a socket and port for it and use it */
8231 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
8232 IPPROTO_TCP, &cfg->sock, 1);
8237 if (inet_csk_get_port(cfg->sock->sk, port)) {
8238 sock_release(cfg->sock);
8242 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
8248 cfg->src_port = port;
8251 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
8252 cfg->payload_len = data_size;
8253 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
8254 memcpy((void *)cfg->payload,
8255 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
8258 cfg->payload_seq = *seq;
8259 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
8260 cfg->wake_len = wake_size;
8261 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
8262 memcpy((void *)cfg->wake_data,
8263 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
8265 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
8266 data_size + wake_size;
8267 memcpy((void *)cfg->wake_mask,
8268 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
8271 cfg->tokens_size = tokens_size;
8272 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
8280 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
8282 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8283 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
8284 struct cfg80211_wowlan new_triggers = {};
8285 struct cfg80211_wowlan *ntrig;
8286 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
8288 bool prev_enabled = rdev->wiphy.wowlan_config;
8293 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
8294 cfg80211_rdev_free_wowlan(rdev);
8295 rdev->wiphy.wowlan_config = NULL;
8299 err = nla_parse(tb, MAX_NL80211_WOWLAN_TRIG,
8300 nla_data(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
8301 nla_len(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
8302 nl80211_wowlan_policy);
8306 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
8307 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
8309 new_triggers.any = true;
8312 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
8313 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
8315 new_triggers.disconnect = true;
8318 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
8319 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
8321 new_triggers.magic_pkt = true;
8324 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
8327 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
8328 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
8330 new_triggers.gtk_rekey_failure = true;
8333 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
8334 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
8336 new_triggers.eap_identity_req = true;
8339 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
8340 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
8342 new_triggers.four_way_handshake = true;
8345 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
8346 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
8348 new_triggers.rfkill_release = true;
8351 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
8354 int rem, pat_len, mask_len, pkt_offset;
8355 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
8357 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
8360 if (n_patterns > wowlan->n_patterns)
8363 new_triggers.patterns = kcalloc(n_patterns,
8364 sizeof(new_triggers.patterns[0]),
8366 if (!new_triggers.patterns)
8369 new_triggers.n_patterns = n_patterns;
8372 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
8374 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
8375 nla_len(pat), NULL);
8377 if (!pat_tb[NL80211_PKTPAT_MASK] ||
8378 !pat_tb[NL80211_PKTPAT_PATTERN])
8380 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
8381 mask_len = DIV_ROUND_UP(pat_len, 8);
8382 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
8384 if (pat_len > wowlan->pattern_max_len ||
8385 pat_len < wowlan->pattern_min_len)
8388 if (!pat_tb[NL80211_PKTPAT_OFFSET])
8391 pkt_offset = nla_get_u32(
8392 pat_tb[NL80211_PKTPAT_OFFSET]);
8393 if (pkt_offset > wowlan->max_pkt_offset)
8395 new_triggers.patterns[i].pkt_offset = pkt_offset;
8397 new_triggers.patterns[i].mask =
8398 kmalloc(mask_len + pat_len, GFP_KERNEL);
8399 if (!new_triggers.patterns[i].mask) {
8403 new_triggers.patterns[i].pattern =
8404 new_triggers.patterns[i].mask + mask_len;
8405 memcpy(new_triggers.patterns[i].mask,
8406 nla_data(pat_tb[NL80211_PKTPAT_MASK]),
8408 new_triggers.patterns[i].pattern_len = pat_len;
8409 memcpy(new_triggers.patterns[i].pattern,
8410 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
8416 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
8417 err = nl80211_parse_wowlan_tcp(
8418 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
8424 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
8429 cfg80211_rdev_free_wowlan(rdev);
8430 rdev->wiphy.wowlan_config = ntrig;
8433 if (rdev->ops->set_wakeup &&
8434 prev_enabled != !!rdev->wiphy.wowlan_config)
8435 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
8439 for (i = 0; i < new_triggers.n_patterns; i++)
8440 kfree(new_triggers.patterns[i].mask);
8441 kfree(new_triggers.patterns);
8442 if (new_triggers.tcp && new_triggers.tcp->sock)
8443 sock_release(new_triggers.tcp->sock);
8444 kfree(new_triggers.tcp);
8449 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
8450 struct cfg80211_registered_device *rdev)
8452 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
8454 struct cfg80211_coalesce_rules *rule;
8456 if (!rdev->coalesce->n_rules)
8459 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
8463 for (i = 0; i < rdev->coalesce->n_rules; i++) {
8464 nl_rule = nla_nest_start(msg, i + 1);
8468 rule = &rdev->coalesce->rules[i];
8469 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
8473 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
8477 nl_pats = nla_nest_start(msg,
8478 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
8482 for (j = 0; j < rule->n_patterns; j++) {
8483 nl_pat = nla_nest_start(msg, j + 1);
8486 pat_len = rule->patterns[j].pattern_len;
8487 if (nla_put(msg, NL80211_PKTPAT_MASK,
8488 DIV_ROUND_UP(pat_len, 8),
8489 rule->patterns[j].mask) ||
8490 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
8491 rule->patterns[j].pattern) ||
8492 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
8493 rule->patterns[j].pkt_offset))
8495 nla_nest_end(msg, nl_pat);
8497 nla_nest_end(msg, nl_pats);
8498 nla_nest_end(msg, nl_rule);
8500 nla_nest_end(msg, nl_rules);
8505 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
8507 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8508 struct sk_buff *msg;
8511 if (!rdev->wiphy.coalesce)
8514 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8518 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8519 NL80211_CMD_GET_COALESCE);
8521 goto nla_put_failure;
8523 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
8524 goto nla_put_failure;
8526 genlmsg_end(msg, hdr);
8527 return genlmsg_reply(msg, info);
8534 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
8536 struct cfg80211_coalesce *coalesce = rdev->coalesce;
8538 struct cfg80211_coalesce_rules *rule;
8543 for (i = 0; i < coalesce->n_rules; i++) {
8544 rule = &coalesce->rules[i];
8545 for (j = 0; j < rule->n_patterns; j++)
8546 kfree(rule->patterns[j].mask);
8547 kfree(rule->patterns);
8549 kfree(coalesce->rules);
8551 rdev->coalesce = NULL;
8554 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
8555 struct nlattr *rule,
8556 struct cfg80211_coalesce_rules *new_rule)
8559 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
8560 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
8561 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
8562 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
8564 err = nla_parse(tb, NL80211_ATTR_COALESCE_RULE_MAX, nla_data(rule),
8565 nla_len(rule), nl80211_coalesce_policy);
8569 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
8571 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
8572 if (new_rule->delay > coalesce->max_delay)
8575 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
8576 new_rule->condition =
8577 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
8578 if (new_rule->condition != NL80211_COALESCE_CONDITION_MATCH &&
8579 new_rule->condition != NL80211_COALESCE_CONDITION_NO_MATCH)
8582 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
8585 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
8588 if (n_patterns > coalesce->n_patterns)
8591 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
8593 if (!new_rule->patterns)
8596 new_rule->n_patterns = n_patterns;
8599 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
8601 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
8602 nla_len(pat), NULL);
8603 if (!pat_tb[NL80211_PKTPAT_MASK] ||
8604 !pat_tb[NL80211_PKTPAT_PATTERN])
8606 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
8607 mask_len = DIV_ROUND_UP(pat_len, 8);
8608 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
8610 if (pat_len > coalesce->pattern_max_len ||
8611 pat_len < coalesce->pattern_min_len)
8614 if (!pat_tb[NL80211_PKTPAT_OFFSET])
8617 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
8618 if (pkt_offset > coalesce->max_pkt_offset)
8620 new_rule->patterns[i].pkt_offset = pkt_offset;
8622 new_rule->patterns[i].mask =
8623 kmalloc(mask_len + pat_len, GFP_KERNEL);
8624 if (!new_rule->patterns[i].mask)
8626 new_rule->patterns[i].pattern =
8627 new_rule->patterns[i].mask + mask_len;
8628 memcpy(new_rule->patterns[i].mask,
8629 nla_data(pat_tb[NL80211_PKTPAT_MASK]), mask_len);
8630 new_rule->patterns[i].pattern_len = pat_len;
8631 memcpy(new_rule->patterns[i].pattern,
8632 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]), pat_len);
8639 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
8641 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8642 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
8643 struct cfg80211_coalesce new_coalesce = {};
8644 struct cfg80211_coalesce *n_coalesce;
8645 int err, rem_rule, n_rules = 0, i, j;
8646 struct nlattr *rule;
8647 struct cfg80211_coalesce_rules *tmp_rule;
8649 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
8652 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
8653 cfg80211_rdev_free_coalesce(rdev);
8654 rdev->ops->set_coalesce(&rdev->wiphy, NULL);
8658 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
8661 if (n_rules > coalesce->n_rules)
8664 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
8666 if (!new_coalesce.rules)
8669 new_coalesce.n_rules = n_rules;
8672 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
8674 err = nl80211_parse_coalesce_rule(rdev, rule,
8675 &new_coalesce.rules[i]);
8682 err = rdev->ops->set_coalesce(&rdev->wiphy, &new_coalesce);
8686 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
8691 cfg80211_rdev_free_coalesce(rdev);
8692 rdev->coalesce = n_coalesce;
8696 for (i = 0; i < new_coalesce.n_rules; i++) {
8697 tmp_rule = &new_coalesce.rules[i];
8698 for (j = 0; j < tmp_rule->n_patterns; j++)
8699 kfree(tmp_rule->patterns[j].mask);
8700 kfree(tmp_rule->patterns);
8702 kfree(new_coalesce.rules);
8707 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
8709 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8710 struct net_device *dev = info->user_ptr[1];
8711 struct wireless_dev *wdev = dev->ieee80211_ptr;
8712 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
8713 struct cfg80211_gtk_rekey_data rekey_data;
8716 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
8719 err = nla_parse(tb, MAX_NL80211_REKEY_DATA,
8720 nla_data(info->attrs[NL80211_ATTR_REKEY_DATA]),
8721 nla_len(info->attrs[NL80211_ATTR_REKEY_DATA]),
8722 nl80211_rekey_policy);
8726 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
8728 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
8730 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
8733 memcpy(rekey_data.kek, nla_data(tb[NL80211_REKEY_DATA_KEK]),
8735 memcpy(rekey_data.kck, nla_data(tb[NL80211_REKEY_DATA_KCK]),
8737 memcpy(rekey_data.replay_ctr,
8738 nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]),
8739 NL80211_REPLAY_CTR_LEN);
8742 if (!wdev->current_bss) {
8747 if (!rdev->ops->set_rekey_data) {
8752 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
8758 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
8759 struct genl_info *info)
8761 struct net_device *dev = info->user_ptr[1];
8762 struct wireless_dev *wdev = dev->ieee80211_ptr;
8764 if (wdev->iftype != NL80211_IFTYPE_AP &&
8765 wdev->iftype != NL80211_IFTYPE_P2P_GO)
8768 if (wdev->ap_unexpected_nlportid)
8771 wdev->ap_unexpected_nlportid = info->snd_portid;
8775 static int nl80211_probe_client(struct sk_buff *skb,
8776 struct genl_info *info)
8778 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8779 struct net_device *dev = info->user_ptr[1];
8780 struct wireless_dev *wdev = dev->ieee80211_ptr;
8781 struct sk_buff *msg;
8787 if (wdev->iftype != NL80211_IFTYPE_AP &&
8788 wdev->iftype != NL80211_IFTYPE_P2P_GO)
8791 if (!info->attrs[NL80211_ATTR_MAC])
8794 if (!rdev->ops->probe_client)
8797 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8801 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8802 NL80211_CMD_PROBE_CLIENT);
8808 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
8810 err = rdev_probe_client(rdev, dev, addr, &cookie);
8814 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
8815 goto nla_put_failure;
8817 genlmsg_end(msg, hdr);
8819 return genlmsg_reply(msg, info);
8828 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
8830 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8831 struct cfg80211_beacon_registration *reg, *nreg;
8834 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
8837 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
8841 /* First, check if already registered. */
8842 spin_lock_bh(&rdev->beacon_registrations_lock);
8843 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
8844 if (reg->nlportid == info->snd_portid) {
8849 /* Add it to the list */
8850 nreg->nlportid = info->snd_portid;
8851 list_add(&nreg->list, &rdev->beacon_registrations);
8853 spin_unlock_bh(&rdev->beacon_registrations_lock);
8857 spin_unlock_bh(&rdev->beacon_registrations_lock);
8862 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
8864 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8865 struct wireless_dev *wdev = info->user_ptr[1];
8868 if (!rdev->ops->start_p2p_device)
8871 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
8874 if (wdev->p2p_started)
8877 err = cfg80211_can_add_interface(rdev, wdev->iftype);
8881 err = rdev_start_p2p_device(rdev, wdev);
8885 wdev->p2p_started = true;
8891 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
8893 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8894 struct wireless_dev *wdev = info->user_ptr[1];
8896 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
8899 if (!rdev->ops->stop_p2p_device)
8902 cfg80211_stop_p2p_device(rdev, wdev);
8907 static int nl80211_get_protocol_features(struct sk_buff *skb,
8908 struct genl_info *info)
8911 struct sk_buff *msg;
8913 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8917 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8918 NL80211_CMD_GET_PROTOCOL_FEATURES);
8920 goto nla_put_failure;
8922 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
8923 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
8924 goto nla_put_failure;
8926 genlmsg_end(msg, hdr);
8927 return genlmsg_reply(msg, info);
8934 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
8936 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8937 struct cfg80211_update_ft_ies_params ft_params;
8938 struct net_device *dev = info->user_ptr[1];
8940 if (!rdev->ops->update_ft_ies)
8943 if (!info->attrs[NL80211_ATTR_MDID] ||
8944 !is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8947 memset(&ft_params, 0, sizeof(ft_params));
8948 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
8949 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8950 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8952 return rdev_update_ft_ies(rdev, dev, &ft_params);
8955 static int nl80211_crit_protocol_start(struct sk_buff *skb,
8956 struct genl_info *info)
8958 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8959 struct wireless_dev *wdev = info->user_ptr[1];
8960 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
8964 if (!rdev->ops->crit_proto_start)
8967 if (WARN_ON(!rdev->ops->crit_proto_stop))
8970 if (rdev->crit_proto_nlportid)
8973 /* determine protocol if provided */
8974 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
8975 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
8977 if (proto >= NUM_NL80211_CRIT_PROTO)
8980 /* timeout must be provided */
8981 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
8985 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
8987 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
8990 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
8992 rdev->crit_proto_nlportid = info->snd_portid;
8997 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
8998 struct genl_info *info)
9000 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9001 struct wireless_dev *wdev = info->user_ptr[1];
9003 if (!rdev->ops->crit_proto_stop)
9006 if (rdev->crit_proto_nlportid) {
9007 rdev->crit_proto_nlportid = 0;
9008 rdev_crit_proto_stop(rdev, wdev);
9013 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
9015 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9016 struct wireless_dev *wdev =
9017 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9021 if (!rdev->wiphy.vendor_commands)
9025 err = PTR_ERR(wdev);
9029 } else if (wdev->wiphy != &rdev->wiphy) {
9033 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
9034 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
9037 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
9038 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
9039 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
9040 const struct wiphy_vendor_command *vcmd;
9044 vcmd = &rdev->wiphy.vendor_commands[i];
9046 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
9049 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
9050 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
9053 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
9057 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
9059 !netif_running(wdev->netdev))
9061 if (!wdev->netdev && !wdev->p2p_started)
9068 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
9069 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9070 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9073 rdev->cur_cmd_info = info;
9074 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
9076 rdev->cur_cmd_info = NULL;
9083 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
9084 enum nl80211_commands cmd,
9085 enum nl80211_attrs attr,
9088 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
9090 if (WARN_ON(!rdev->cur_cmd_info))
9093 return __cfg80211_alloc_vendor_skb(rdev, approxlen,
9094 rdev->cur_cmd_info->snd_portid,
9095 rdev->cur_cmd_info->snd_seq,
9096 cmd, attr, NULL, GFP_KERNEL);
9098 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
9100 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
9102 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9103 void *hdr = ((void **)skb->cb)[1];
9104 struct nlattr *data = ((void **)skb->cb)[2];
9106 if (WARN_ON(!rdev->cur_cmd_info)) {
9111 nla_nest_end(skb, data);
9112 genlmsg_end(skb, hdr);
9113 return genlmsg_reply(skb, rdev->cur_cmd_info);
9115 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
9118 static int nl80211_set_qos_map(struct sk_buff *skb,
9119 struct genl_info *info)
9121 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9122 struct cfg80211_qos_map *qos_map = NULL;
9123 struct net_device *dev = info->user_ptr[1];
9124 u8 *pos, len, num_des, des_len, des;
9127 if (!rdev->ops->set_qos_map)
9130 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
9131 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
9132 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
9134 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
9135 len > IEEE80211_QOS_MAP_LEN_MAX)
9138 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
9142 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
9145 sizeof(struct cfg80211_dscp_exception);
9146 memcpy(qos_map->dscp_exception, pos, des_len);
9147 qos_map->num_des = num_des;
9148 for (des = 0; des < num_des; des++) {
9149 if (qos_map->dscp_exception[des].up > 7) {
9156 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
9159 wdev_lock(dev->ieee80211_ptr);
9160 ret = nl80211_key_allowed(dev->ieee80211_ptr);
9162 ret = rdev_set_qos_map(rdev, dev, qos_map);
9163 wdev_unlock(dev->ieee80211_ptr);
9169 #define NL80211_FLAG_NEED_WIPHY 0x01
9170 #define NL80211_FLAG_NEED_NETDEV 0x02
9171 #define NL80211_FLAG_NEED_RTNL 0x04
9172 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
9173 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
9174 NL80211_FLAG_CHECK_NETDEV_UP)
9175 #define NL80211_FLAG_NEED_WDEV 0x10
9176 /* If a netdev is associated, it must be UP, P2P must be started */
9177 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
9178 NL80211_FLAG_CHECK_NETDEV_UP)
9180 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
9181 struct genl_info *info)
9183 struct cfg80211_registered_device *rdev;
9184 struct wireless_dev *wdev;
9185 struct net_device *dev;
9186 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
9191 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
9192 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
9196 return PTR_ERR(rdev);
9198 info->user_ptr[0] = rdev;
9199 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
9200 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
9203 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
9208 return PTR_ERR(wdev);
9212 rdev = wiphy_to_dev(wdev->wiphy);
9214 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
9221 info->user_ptr[1] = dev;
9223 info->user_ptr[1] = wdev;
9227 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
9228 !netif_running(dev)) {
9235 } else if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP) {
9236 if (!wdev->p2p_started) {
9243 info->user_ptr[0] = rdev;
9249 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
9250 struct genl_info *info)
9252 if (info->user_ptr[1]) {
9253 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
9254 struct wireless_dev *wdev = info->user_ptr[1];
9257 dev_put(wdev->netdev);
9259 dev_put(info->user_ptr[1]);
9262 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
9266 static const struct genl_ops nl80211_ops[] = {
9268 .cmd = NL80211_CMD_GET_WIPHY,
9269 .doit = nl80211_get_wiphy,
9270 .dumpit = nl80211_dump_wiphy,
9271 .done = nl80211_dump_wiphy_done,
9272 .policy = nl80211_policy,
9273 /* can be retrieved by unprivileged users */
9274 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9275 NL80211_FLAG_NEED_RTNL,
9278 .cmd = NL80211_CMD_SET_WIPHY,
9279 .doit = nl80211_set_wiphy,
9280 .policy = nl80211_policy,
9281 .flags = GENL_ADMIN_PERM,
9282 .internal_flags = NL80211_FLAG_NEED_RTNL,
9285 .cmd = NL80211_CMD_GET_INTERFACE,
9286 .doit = nl80211_get_interface,
9287 .dumpit = nl80211_dump_interface,
9288 .policy = nl80211_policy,
9289 /* can be retrieved by unprivileged users */
9290 .internal_flags = NL80211_FLAG_NEED_WDEV |
9291 NL80211_FLAG_NEED_RTNL,
9294 .cmd = NL80211_CMD_SET_INTERFACE,
9295 .doit = nl80211_set_interface,
9296 .policy = nl80211_policy,
9297 .flags = GENL_ADMIN_PERM,
9298 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9299 NL80211_FLAG_NEED_RTNL,
9302 .cmd = NL80211_CMD_NEW_INTERFACE,
9303 .doit = nl80211_new_interface,
9304 .policy = nl80211_policy,
9305 .flags = GENL_ADMIN_PERM,
9306 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9307 NL80211_FLAG_NEED_RTNL,
9310 .cmd = NL80211_CMD_DEL_INTERFACE,
9311 .doit = nl80211_del_interface,
9312 .policy = nl80211_policy,
9313 .flags = GENL_ADMIN_PERM,
9314 .internal_flags = NL80211_FLAG_NEED_WDEV |
9315 NL80211_FLAG_NEED_RTNL,
9318 .cmd = NL80211_CMD_GET_KEY,
9319 .doit = nl80211_get_key,
9320 .policy = nl80211_policy,
9321 .flags = GENL_ADMIN_PERM,
9322 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9323 NL80211_FLAG_NEED_RTNL,
9326 .cmd = NL80211_CMD_SET_KEY,
9327 .doit = nl80211_set_key,
9328 .policy = nl80211_policy,
9329 .flags = GENL_ADMIN_PERM,
9330 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9331 NL80211_FLAG_NEED_RTNL,
9334 .cmd = NL80211_CMD_NEW_KEY,
9335 .doit = nl80211_new_key,
9336 .policy = nl80211_policy,
9337 .flags = GENL_ADMIN_PERM,
9338 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9339 NL80211_FLAG_NEED_RTNL,
9342 .cmd = NL80211_CMD_DEL_KEY,
9343 .doit = nl80211_del_key,
9344 .policy = nl80211_policy,
9345 .flags = GENL_ADMIN_PERM,
9346 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9347 NL80211_FLAG_NEED_RTNL,
9350 .cmd = NL80211_CMD_SET_BEACON,
9351 .policy = nl80211_policy,
9352 .flags = GENL_ADMIN_PERM,
9353 .doit = nl80211_set_beacon,
9354 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9355 NL80211_FLAG_NEED_RTNL,
9358 .cmd = NL80211_CMD_START_AP,
9359 .policy = nl80211_policy,
9360 .flags = GENL_ADMIN_PERM,
9361 .doit = nl80211_start_ap,
9362 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9363 NL80211_FLAG_NEED_RTNL,
9366 .cmd = NL80211_CMD_STOP_AP,
9367 .policy = nl80211_policy,
9368 .flags = GENL_ADMIN_PERM,
9369 .doit = nl80211_stop_ap,
9370 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9371 NL80211_FLAG_NEED_RTNL,
9374 .cmd = NL80211_CMD_GET_STATION,
9375 .doit = nl80211_get_station,
9376 .dumpit = nl80211_dump_station,
9377 .policy = nl80211_policy,
9378 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9379 NL80211_FLAG_NEED_RTNL,
9382 .cmd = NL80211_CMD_SET_STATION,
9383 .doit = nl80211_set_station,
9384 .policy = nl80211_policy,
9385 .flags = GENL_ADMIN_PERM,
9386 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9387 NL80211_FLAG_NEED_RTNL,
9390 .cmd = NL80211_CMD_NEW_STATION,
9391 .doit = nl80211_new_station,
9392 .policy = nl80211_policy,
9393 .flags = GENL_ADMIN_PERM,
9394 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9395 NL80211_FLAG_NEED_RTNL,
9398 .cmd = NL80211_CMD_DEL_STATION,
9399 .doit = nl80211_del_station,
9400 .policy = nl80211_policy,
9401 .flags = GENL_ADMIN_PERM,
9402 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9403 NL80211_FLAG_NEED_RTNL,
9406 .cmd = NL80211_CMD_GET_MPATH,
9407 .doit = nl80211_get_mpath,
9408 .dumpit = nl80211_dump_mpath,
9409 .policy = nl80211_policy,
9410 .flags = GENL_ADMIN_PERM,
9411 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9412 NL80211_FLAG_NEED_RTNL,
9415 .cmd = NL80211_CMD_SET_MPATH,
9416 .doit = nl80211_set_mpath,
9417 .policy = nl80211_policy,
9418 .flags = GENL_ADMIN_PERM,
9419 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9420 NL80211_FLAG_NEED_RTNL,
9423 .cmd = NL80211_CMD_NEW_MPATH,
9424 .doit = nl80211_new_mpath,
9425 .policy = nl80211_policy,
9426 .flags = GENL_ADMIN_PERM,
9427 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9428 NL80211_FLAG_NEED_RTNL,
9431 .cmd = NL80211_CMD_DEL_MPATH,
9432 .doit = nl80211_del_mpath,
9433 .policy = nl80211_policy,
9434 .flags = GENL_ADMIN_PERM,
9435 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9436 NL80211_FLAG_NEED_RTNL,
9439 .cmd = NL80211_CMD_SET_BSS,
9440 .doit = nl80211_set_bss,
9441 .policy = nl80211_policy,
9442 .flags = GENL_ADMIN_PERM,
9443 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9444 NL80211_FLAG_NEED_RTNL,
9447 .cmd = NL80211_CMD_GET_REG,
9448 .doit = nl80211_get_reg,
9449 .policy = nl80211_policy,
9450 .internal_flags = NL80211_FLAG_NEED_RTNL,
9451 /* can be retrieved by unprivileged users */
9454 .cmd = NL80211_CMD_SET_REG,
9455 .doit = nl80211_set_reg,
9456 .policy = nl80211_policy,
9457 .flags = GENL_ADMIN_PERM,
9458 .internal_flags = NL80211_FLAG_NEED_RTNL,
9461 .cmd = NL80211_CMD_REQ_SET_REG,
9462 .doit = nl80211_req_set_reg,
9463 .policy = nl80211_policy,
9464 .flags = GENL_ADMIN_PERM,
9467 .cmd = NL80211_CMD_GET_MESH_CONFIG,
9468 .doit = nl80211_get_mesh_config,
9469 .policy = nl80211_policy,
9470 /* can be retrieved by unprivileged users */
9471 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9472 NL80211_FLAG_NEED_RTNL,
9475 .cmd = NL80211_CMD_SET_MESH_CONFIG,
9476 .doit = nl80211_update_mesh_config,
9477 .policy = nl80211_policy,
9478 .flags = GENL_ADMIN_PERM,
9479 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9480 NL80211_FLAG_NEED_RTNL,
9483 .cmd = NL80211_CMD_TRIGGER_SCAN,
9484 .doit = nl80211_trigger_scan,
9485 .policy = nl80211_policy,
9486 .flags = GENL_ADMIN_PERM,
9487 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9488 NL80211_FLAG_NEED_RTNL,
9491 .cmd = NL80211_CMD_GET_SCAN,
9492 .policy = nl80211_policy,
9493 .dumpit = nl80211_dump_scan,
9496 .cmd = NL80211_CMD_START_SCHED_SCAN,
9497 .doit = nl80211_start_sched_scan,
9498 .policy = nl80211_policy,
9499 .flags = GENL_ADMIN_PERM,
9500 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9501 NL80211_FLAG_NEED_RTNL,
9504 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
9505 .doit = nl80211_stop_sched_scan,
9506 .policy = nl80211_policy,
9507 .flags = GENL_ADMIN_PERM,
9508 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9509 NL80211_FLAG_NEED_RTNL,
9512 .cmd = NL80211_CMD_AUTHENTICATE,
9513 .doit = nl80211_authenticate,
9514 .policy = nl80211_policy,
9515 .flags = GENL_ADMIN_PERM,
9516 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9517 NL80211_FLAG_NEED_RTNL,
9520 .cmd = NL80211_CMD_ASSOCIATE,
9521 .doit = nl80211_associate,
9522 .policy = nl80211_policy,
9523 .flags = GENL_ADMIN_PERM,
9524 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9525 NL80211_FLAG_NEED_RTNL,
9528 .cmd = NL80211_CMD_DEAUTHENTICATE,
9529 .doit = nl80211_deauthenticate,
9530 .policy = nl80211_policy,
9531 .flags = GENL_ADMIN_PERM,
9532 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9533 NL80211_FLAG_NEED_RTNL,
9536 .cmd = NL80211_CMD_DISASSOCIATE,
9537 .doit = nl80211_disassociate,
9538 .policy = nl80211_policy,
9539 .flags = GENL_ADMIN_PERM,
9540 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9541 NL80211_FLAG_NEED_RTNL,
9544 .cmd = NL80211_CMD_JOIN_IBSS,
9545 .doit = nl80211_join_ibss,
9546 .policy = nl80211_policy,
9547 .flags = GENL_ADMIN_PERM,
9548 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9549 NL80211_FLAG_NEED_RTNL,
9552 .cmd = NL80211_CMD_LEAVE_IBSS,
9553 .doit = nl80211_leave_ibss,
9554 .policy = nl80211_policy,
9555 .flags = GENL_ADMIN_PERM,
9556 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9557 NL80211_FLAG_NEED_RTNL,
9559 #ifdef CONFIG_NL80211_TESTMODE
9561 .cmd = NL80211_CMD_TESTMODE,
9562 .doit = nl80211_testmode_do,
9563 .dumpit = nl80211_testmode_dump,
9564 .policy = nl80211_policy,
9565 .flags = GENL_ADMIN_PERM,
9566 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9567 NL80211_FLAG_NEED_RTNL,
9571 .cmd = NL80211_CMD_CONNECT,
9572 .doit = nl80211_connect,
9573 .policy = nl80211_policy,
9574 .flags = GENL_ADMIN_PERM,
9575 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9576 NL80211_FLAG_NEED_RTNL,
9579 .cmd = NL80211_CMD_DISCONNECT,
9580 .doit = nl80211_disconnect,
9581 .policy = nl80211_policy,
9582 .flags = GENL_ADMIN_PERM,
9583 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9584 NL80211_FLAG_NEED_RTNL,
9587 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
9588 .doit = nl80211_wiphy_netns,
9589 .policy = nl80211_policy,
9590 .flags = GENL_ADMIN_PERM,
9591 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9592 NL80211_FLAG_NEED_RTNL,
9595 .cmd = NL80211_CMD_GET_SURVEY,
9596 .policy = nl80211_policy,
9597 .dumpit = nl80211_dump_survey,
9600 .cmd = NL80211_CMD_SET_PMKSA,
9601 .doit = nl80211_setdel_pmksa,
9602 .policy = nl80211_policy,
9603 .flags = GENL_ADMIN_PERM,
9604 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9605 NL80211_FLAG_NEED_RTNL,
9608 .cmd = NL80211_CMD_DEL_PMKSA,
9609 .doit = nl80211_setdel_pmksa,
9610 .policy = nl80211_policy,
9611 .flags = GENL_ADMIN_PERM,
9612 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9613 NL80211_FLAG_NEED_RTNL,
9616 .cmd = NL80211_CMD_FLUSH_PMKSA,
9617 .doit = nl80211_flush_pmksa,
9618 .policy = nl80211_policy,
9619 .flags = GENL_ADMIN_PERM,
9620 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9621 NL80211_FLAG_NEED_RTNL,
9624 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
9625 .doit = nl80211_remain_on_channel,
9626 .policy = nl80211_policy,
9627 .flags = GENL_ADMIN_PERM,
9628 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9629 NL80211_FLAG_NEED_RTNL,
9632 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
9633 .doit = nl80211_cancel_remain_on_channel,
9634 .policy = nl80211_policy,
9635 .flags = GENL_ADMIN_PERM,
9636 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9637 NL80211_FLAG_NEED_RTNL,
9640 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
9641 .doit = nl80211_set_tx_bitrate_mask,
9642 .policy = nl80211_policy,
9643 .flags = GENL_ADMIN_PERM,
9644 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9645 NL80211_FLAG_NEED_RTNL,
9648 .cmd = NL80211_CMD_REGISTER_FRAME,
9649 .doit = nl80211_register_mgmt,
9650 .policy = nl80211_policy,
9651 .flags = GENL_ADMIN_PERM,
9652 .internal_flags = NL80211_FLAG_NEED_WDEV |
9653 NL80211_FLAG_NEED_RTNL,
9656 .cmd = NL80211_CMD_FRAME,
9657 .doit = nl80211_tx_mgmt,
9658 .policy = nl80211_policy,
9659 .flags = GENL_ADMIN_PERM,
9660 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9661 NL80211_FLAG_NEED_RTNL,
9664 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
9665 .doit = nl80211_tx_mgmt_cancel_wait,
9666 .policy = nl80211_policy,
9667 .flags = GENL_ADMIN_PERM,
9668 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9669 NL80211_FLAG_NEED_RTNL,
9672 .cmd = NL80211_CMD_SET_POWER_SAVE,
9673 .doit = nl80211_set_power_save,
9674 .policy = nl80211_policy,
9675 .flags = GENL_ADMIN_PERM,
9676 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9677 NL80211_FLAG_NEED_RTNL,
9680 .cmd = NL80211_CMD_GET_POWER_SAVE,
9681 .doit = nl80211_get_power_save,
9682 .policy = nl80211_policy,
9683 /* can be retrieved by unprivileged users */
9684 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9685 NL80211_FLAG_NEED_RTNL,
9688 .cmd = NL80211_CMD_SET_CQM,
9689 .doit = nl80211_set_cqm,
9690 .policy = nl80211_policy,
9691 .flags = GENL_ADMIN_PERM,
9692 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9693 NL80211_FLAG_NEED_RTNL,
9696 .cmd = NL80211_CMD_SET_CHANNEL,
9697 .doit = nl80211_set_channel,
9698 .policy = nl80211_policy,
9699 .flags = GENL_ADMIN_PERM,
9700 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9701 NL80211_FLAG_NEED_RTNL,
9704 .cmd = NL80211_CMD_SET_WDS_PEER,
9705 .doit = nl80211_set_wds_peer,
9706 .policy = nl80211_policy,
9707 .flags = GENL_ADMIN_PERM,
9708 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9709 NL80211_FLAG_NEED_RTNL,
9712 .cmd = NL80211_CMD_JOIN_MESH,
9713 .doit = nl80211_join_mesh,
9714 .policy = nl80211_policy,
9715 .flags = GENL_ADMIN_PERM,
9716 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9717 NL80211_FLAG_NEED_RTNL,
9720 .cmd = NL80211_CMD_LEAVE_MESH,
9721 .doit = nl80211_leave_mesh,
9722 .policy = nl80211_policy,
9723 .flags = GENL_ADMIN_PERM,
9724 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9725 NL80211_FLAG_NEED_RTNL,
9729 .cmd = NL80211_CMD_GET_WOWLAN,
9730 .doit = nl80211_get_wowlan,
9731 .policy = nl80211_policy,
9732 /* can be retrieved by unprivileged users */
9733 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9734 NL80211_FLAG_NEED_RTNL,
9737 .cmd = NL80211_CMD_SET_WOWLAN,
9738 .doit = nl80211_set_wowlan,
9739 .policy = nl80211_policy,
9740 .flags = GENL_ADMIN_PERM,
9741 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9742 NL80211_FLAG_NEED_RTNL,
9746 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
9747 .doit = nl80211_set_rekey_data,
9748 .policy = nl80211_policy,
9749 .flags = GENL_ADMIN_PERM,
9750 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9751 NL80211_FLAG_NEED_RTNL,
9754 .cmd = NL80211_CMD_TDLS_MGMT,
9755 .doit = nl80211_tdls_mgmt,
9756 .policy = nl80211_policy,
9757 .flags = GENL_ADMIN_PERM,
9758 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9759 NL80211_FLAG_NEED_RTNL,
9762 .cmd = NL80211_CMD_TDLS_OPER,
9763 .doit = nl80211_tdls_oper,
9764 .policy = nl80211_policy,
9765 .flags = GENL_ADMIN_PERM,
9766 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9767 NL80211_FLAG_NEED_RTNL,
9770 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
9771 .doit = nl80211_register_unexpected_frame,
9772 .policy = nl80211_policy,
9773 .flags = GENL_ADMIN_PERM,
9774 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9775 NL80211_FLAG_NEED_RTNL,
9778 .cmd = NL80211_CMD_PROBE_CLIENT,
9779 .doit = nl80211_probe_client,
9780 .policy = nl80211_policy,
9781 .flags = GENL_ADMIN_PERM,
9782 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9783 NL80211_FLAG_NEED_RTNL,
9786 .cmd = NL80211_CMD_REGISTER_BEACONS,
9787 .doit = nl80211_register_beacons,
9788 .policy = nl80211_policy,
9789 .flags = GENL_ADMIN_PERM,
9790 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9791 NL80211_FLAG_NEED_RTNL,
9794 .cmd = NL80211_CMD_SET_NOACK_MAP,
9795 .doit = nl80211_set_noack_map,
9796 .policy = nl80211_policy,
9797 .flags = GENL_ADMIN_PERM,
9798 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9799 NL80211_FLAG_NEED_RTNL,
9802 .cmd = NL80211_CMD_START_P2P_DEVICE,
9803 .doit = nl80211_start_p2p_device,
9804 .policy = nl80211_policy,
9805 .flags = GENL_ADMIN_PERM,
9806 .internal_flags = NL80211_FLAG_NEED_WDEV |
9807 NL80211_FLAG_NEED_RTNL,
9810 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
9811 .doit = nl80211_stop_p2p_device,
9812 .policy = nl80211_policy,
9813 .flags = GENL_ADMIN_PERM,
9814 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9815 NL80211_FLAG_NEED_RTNL,
9818 .cmd = NL80211_CMD_SET_MCAST_RATE,
9819 .doit = nl80211_set_mcast_rate,
9820 .policy = nl80211_policy,
9821 .flags = GENL_ADMIN_PERM,
9822 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9823 NL80211_FLAG_NEED_RTNL,
9826 .cmd = NL80211_CMD_SET_MAC_ACL,
9827 .doit = nl80211_set_mac_acl,
9828 .policy = nl80211_policy,
9829 .flags = GENL_ADMIN_PERM,
9830 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9831 NL80211_FLAG_NEED_RTNL,
9834 .cmd = NL80211_CMD_RADAR_DETECT,
9835 .doit = nl80211_start_radar_detection,
9836 .policy = nl80211_policy,
9837 .flags = GENL_ADMIN_PERM,
9838 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9839 NL80211_FLAG_NEED_RTNL,
9842 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
9843 .doit = nl80211_get_protocol_features,
9844 .policy = nl80211_policy,
9847 .cmd = NL80211_CMD_UPDATE_FT_IES,
9848 .doit = nl80211_update_ft_ies,
9849 .policy = nl80211_policy,
9850 .flags = GENL_ADMIN_PERM,
9851 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9852 NL80211_FLAG_NEED_RTNL,
9855 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
9856 .doit = nl80211_crit_protocol_start,
9857 .policy = nl80211_policy,
9858 .flags = GENL_ADMIN_PERM,
9859 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9860 NL80211_FLAG_NEED_RTNL,
9863 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
9864 .doit = nl80211_crit_protocol_stop,
9865 .policy = nl80211_policy,
9866 .flags = GENL_ADMIN_PERM,
9867 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9868 NL80211_FLAG_NEED_RTNL,
9871 .cmd = NL80211_CMD_GET_COALESCE,
9872 .doit = nl80211_get_coalesce,
9873 .policy = nl80211_policy,
9874 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9875 NL80211_FLAG_NEED_RTNL,
9878 .cmd = NL80211_CMD_SET_COALESCE,
9879 .doit = nl80211_set_coalesce,
9880 .policy = nl80211_policy,
9881 .flags = GENL_ADMIN_PERM,
9882 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9883 NL80211_FLAG_NEED_RTNL,
9886 .cmd = NL80211_CMD_CHANNEL_SWITCH,
9887 .doit = nl80211_channel_switch,
9888 .policy = nl80211_policy,
9889 .flags = GENL_ADMIN_PERM,
9890 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9891 NL80211_FLAG_NEED_RTNL,
9894 .cmd = NL80211_CMD_VENDOR,
9895 .doit = nl80211_vendor_cmd,
9896 .policy = nl80211_policy,
9897 .flags = GENL_ADMIN_PERM,
9898 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9899 NL80211_FLAG_NEED_RTNL,
9902 .cmd = NL80211_CMD_SET_QOS_MAP,
9903 .doit = nl80211_set_qos_map,
9904 .policy = nl80211_policy,
9905 .flags = GENL_ADMIN_PERM,
9906 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9907 NL80211_FLAG_NEED_RTNL,
9911 /* notification functions */
9913 void nl80211_notify_dev_rename(struct cfg80211_registered_device *rdev)
9915 struct sk_buff *msg;
9916 struct nl80211_dump_wiphy_state state = {};
9918 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9922 if (nl80211_send_wiphy(rdev, msg, 0, 0, 0, &state) < 0) {
9927 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
9928 NL80211_MCGRP_CONFIG, GFP_KERNEL);
9931 static int nl80211_add_scan_req(struct sk_buff *msg,
9932 struct cfg80211_registered_device *rdev)
9934 struct cfg80211_scan_request *req = rdev->scan_req;
9935 struct nlattr *nest;
9941 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
9943 goto nla_put_failure;
9944 for (i = 0; i < req->n_ssids; i++) {
9945 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
9946 goto nla_put_failure;
9948 nla_nest_end(msg, nest);
9950 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
9952 goto nla_put_failure;
9953 for (i = 0; i < req->n_channels; i++) {
9954 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
9955 goto nla_put_failure;
9957 nla_nest_end(msg, nest);
9960 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
9961 goto nla_put_failure;
9964 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
9965 goto nla_put_failure;
9972 static int nl80211_send_scan_msg(struct sk_buff *msg,
9973 struct cfg80211_registered_device *rdev,
9974 struct wireless_dev *wdev,
9975 u32 portid, u32 seq, int flags,
9980 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
9984 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
9985 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
9986 wdev->netdev->ifindex)) ||
9987 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
9988 goto nla_put_failure;
9990 /* ignore errors and send incomplete event anyway */
9991 nl80211_add_scan_req(msg, rdev);
9993 return genlmsg_end(msg, hdr);
9996 genlmsg_cancel(msg, hdr);
10001 nl80211_send_sched_scan_msg(struct sk_buff *msg,
10002 struct cfg80211_registered_device *rdev,
10003 struct net_device *netdev,
10004 u32 portid, u32 seq, int flags, u32 cmd)
10008 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
10012 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10013 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
10014 goto nla_put_failure;
10016 return genlmsg_end(msg, hdr);
10019 genlmsg_cancel(msg, hdr);
10023 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
10024 struct wireless_dev *wdev)
10026 struct sk_buff *msg;
10028 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10032 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
10033 NL80211_CMD_TRIGGER_SCAN) < 0) {
10038 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10039 NL80211_MCGRP_SCAN, GFP_KERNEL);
10042 void nl80211_send_scan_done(struct cfg80211_registered_device *rdev,
10043 struct wireless_dev *wdev)
10045 struct sk_buff *msg;
10047 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10051 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
10052 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
10057 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10058 NL80211_MCGRP_SCAN, GFP_KERNEL);
10061 void nl80211_send_scan_aborted(struct cfg80211_registered_device *rdev,
10062 struct wireless_dev *wdev)
10064 struct sk_buff *msg;
10066 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10070 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
10071 NL80211_CMD_SCAN_ABORTED) < 0) {
10076 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10077 NL80211_MCGRP_SCAN, GFP_KERNEL);
10080 void nl80211_send_sched_scan_results(struct cfg80211_registered_device *rdev,
10081 struct net_device *netdev)
10083 struct sk_buff *msg;
10085 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10089 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0,
10090 NL80211_CMD_SCHED_SCAN_RESULTS) < 0) {
10095 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10096 NL80211_MCGRP_SCAN, GFP_KERNEL);
10099 void nl80211_send_sched_scan(struct cfg80211_registered_device *rdev,
10100 struct net_device *netdev, u32 cmd)
10102 struct sk_buff *msg;
10104 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10108 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0, cmd) < 0) {
10113 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10114 NL80211_MCGRP_SCAN, GFP_KERNEL);
10118 * This can happen on global regulatory changes or device specific settings
10119 * based on custom world regulatory domains.
10121 void nl80211_send_reg_change_event(struct regulatory_request *request)
10123 struct sk_buff *msg;
10126 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10130 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_CHANGE);
10136 /* Userspace can always count this one always being set */
10137 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
10138 goto nla_put_failure;
10140 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
10141 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10142 NL80211_REGDOM_TYPE_WORLD))
10143 goto nla_put_failure;
10144 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
10145 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10146 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
10147 goto nla_put_failure;
10148 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
10149 request->intersect) {
10150 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10151 NL80211_REGDOM_TYPE_INTERSECTION))
10152 goto nla_put_failure;
10154 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10155 NL80211_REGDOM_TYPE_COUNTRY) ||
10156 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
10158 goto nla_put_failure;
10161 if (request->wiphy_idx != WIPHY_IDX_INVALID &&
10162 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
10163 goto nla_put_failure;
10165 genlmsg_end(msg, hdr);
10168 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
10169 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
10175 genlmsg_cancel(msg, hdr);
10179 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
10180 struct net_device *netdev,
10181 const u8 *buf, size_t len,
10182 enum nl80211_commands cmd, gfp_t gfp)
10184 struct sk_buff *msg;
10187 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10191 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10197 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10198 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10199 nla_put(msg, NL80211_ATTR_FRAME, len, buf))
10200 goto nla_put_failure;
10202 genlmsg_end(msg, hdr);
10204 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10205 NL80211_MCGRP_MLME, gfp);
10209 genlmsg_cancel(msg, hdr);
10213 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
10214 struct net_device *netdev, const u8 *buf,
10215 size_t len, gfp_t gfp)
10217 nl80211_send_mlme_event(rdev, netdev, buf, len,
10218 NL80211_CMD_AUTHENTICATE, gfp);
10221 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
10222 struct net_device *netdev, const u8 *buf,
10223 size_t len, gfp_t gfp)
10225 nl80211_send_mlme_event(rdev, netdev, buf, len,
10226 NL80211_CMD_ASSOCIATE, gfp);
10229 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
10230 struct net_device *netdev, const u8 *buf,
10231 size_t len, gfp_t gfp)
10233 nl80211_send_mlme_event(rdev, netdev, buf, len,
10234 NL80211_CMD_DEAUTHENTICATE, gfp);
10237 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
10238 struct net_device *netdev, const u8 *buf,
10239 size_t len, gfp_t gfp)
10241 nl80211_send_mlme_event(rdev, netdev, buf, len,
10242 NL80211_CMD_DISASSOCIATE, gfp);
10245 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
10248 struct wireless_dev *wdev = dev->ieee80211_ptr;
10249 struct wiphy *wiphy = wdev->wiphy;
10250 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10251 const struct ieee80211_mgmt *mgmt = (void *)buf;
10254 if (WARN_ON(len < 2))
10257 if (ieee80211_is_deauth(mgmt->frame_control))
10258 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
10260 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
10262 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
10263 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC);
10265 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
10267 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
10268 struct net_device *netdev, int cmd,
10269 const u8 *addr, gfp_t gfp)
10271 struct sk_buff *msg;
10274 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10278 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10284 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10285 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10286 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
10287 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
10288 goto nla_put_failure;
10290 genlmsg_end(msg, hdr);
10292 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10293 NL80211_MCGRP_MLME, gfp);
10297 genlmsg_cancel(msg, hdr);
10301 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
10302 struct net_device *netdev, const u8 *addr,
10305 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
10309 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
10310 struct net_device *netdev, const u8 *addr,
10313 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
10317 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
10318 struct net_device *netdev, const u8 *bssid,
10319 const u8 *req_ie, size_t req_ie_len,
10320 const u8 *resp_ie, size_t resp_ie_len,
10321 u16 status, gfp_t gfp)
10323 struct sk_buff *msg;
10326 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10330 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
10336 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10337 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10338 (bssid && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid)) ||
10339 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE, status) ||
10341 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
10343 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
10344 goto nla_put_failure;
10346 genlmsg_end(msg, hdr);
10348 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10349 NL80211_MCGRP_MLME, gfp);
10353 genlmsg_cancel(msg, hdr);
10358 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
10359 struct net_device *netdev, const u8 *bssid,
10360 const u8 *req_ie, size_t req_ie_len,
10361 const u8 *resp_ie, size_t resp_ie_len, gfp_t gfp)
10363 struct sk_buff *msg;
10366 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10370 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
10376 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10377 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10378 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
10380 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
10382 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
10383 goto nla_put_failure;
10385 genlmsg_end(msg, hdr);
10387 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10388 NL80211_MCGRP_MLME, gfp);
10392 genlmsg_cancel(msg, hdr);
10397 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
10398 struct net_device *netdev, u16 reason,
10399 const u8 *ie, size_t ie_len, bool from_ap)
10401 struct sk_buff *msg;
10404 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10408 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
10414 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10415 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10416 (from_ap && reason &&
10417 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
10419 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
10420 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
10421 goto nla_put_failure;
10423 genlmsg_end(msg, hdr);
10425 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10426 NL80211_MCGRP_MLME, GFP_KERNEL);
10430 genlmsg_cancel(msg, hdr);
10435 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
10436 struct net_device *netdev, const u8 *bssid,
10439 struct sk_buff *msg;
10442 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10446 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
10452 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10453 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10454 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
10455 goto nla_put_failure;
10457 genlmsg_end(msg, hdr);
10459 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10460 NL80211_MCGRP_MLME, gfp);
10464 genlmsg_cancel(msg, hdr);
10468 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
10469 const u8* ie, u8 ie_len, gfp_t gfp)
10471 struct wireless_dev *wdev = dev->ieee80211_ptr;
10472 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
10473 struct sk_buff *msg;
10476 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
10479 trace_cfg80211_notify_new_peer_candidate(dev, addr);
10481 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10485 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
10491 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10492 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10493 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
10495 nla_put(msg, NL80211_ATTR_IE, ie_len , ie)))
10496 goto nla_put_failure;
10498 genlmsg_end(msg, hdr);
10500 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10501 NL80211_MCGRP_MLME, gfp);
10505 genlmsg_cancel(msg, hdr);
10508 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
10510 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
10511 struct net_device *netdev, const u8 *addr,
10512 enum nl80211_key_type key_type, int key_id,
10513 const u8 *tsc, gfp_t gfp)
10515 struct sk_buff *msg;
10518 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10522 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
10528 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10529 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10530 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
10531 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
10533 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
10534 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
10535 goto nla_put_failure;
10537 genlmsg_end(msg, hdr);
10539 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10540 NL80211_MCGRP_MLME, gfp);
10544 genlmsg_cancel(msg, hdr);
10548 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
10549 struct ieee80211_channel *channel_before,
10550 struct ieee80211_channel *channel_after)
10552 struct sk_buff *msg;
10554 struct nlattr *nl_freq;
10556 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
10560 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
10567 * Since we are applying the beacon hint to a wiphy we know its
10568 * wiphy_idx is valid
10570 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
10571 goto nla_put_failure;
10574 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
10576 goto nla_put_failure;
10577 if (nl80211_msg_put_channel(msg, channel_before, false))
10578 goto nla_put_failure;
10579 nla_nest_end(msg, nl_freq);
10582 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
10584 goto nla_put_failure;
10585 if (nl80211_msg_put_channel(msg, channel_after, false))
10586 goto nla_put_failure;
10587 nla_nest_end(msg, nl_freq);
10589 genlmsg_end(msg, hdr);
10592 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
10593 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
10599 genlmsg_cancel(msg, hdr);
10603 static void nl80211_send_remain_on_chan_event(
10604 int cmd, struct cfg80211_registered_device *rdev,
10605 struct wireless_dev *wdev, u64 cookie,
10606 struct ieee80211_channel *chan,
10607 unsigned int duration, gfp_t gfp)
10609 struct sk_buff *msg;
10612 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10616 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10622 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10623 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10624 wdev->netdev->ifindex)) ||
10625 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10626 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
10627 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
10628 NL80211_CHAN_NO_HT) ||
10629 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
10630 goto nla_put_failure;
10632 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
10633 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
10634 goto nla_put_failure;
10636 genlmsg_end(msg, hdr);
10638 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10639 NL80211_MCGRP_MLME, gfp);
10643 genlmsg_cancel(msg, hdr);
10647 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
10648 struct ieee80211_channel *chan,
10649 unsigned int duration, gfp_t gfp)
10651 struct wiphy *wiphy = wdev->wiphy;
10652 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10654 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
10655 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
10656 rdev, wdev, cookie, chan,
10659 EXPORT_SYMBOL(cfg80211_ready_on_channel);
10661 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
10662 struct ieee80211_channel *chan,
10665 struct wiphy *wiphy = wdev->wiphy;
10666 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10668 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
10669 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
10670 rdev, wdev, cookie, chan, 0, gfp);
10672 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
10674 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
10675 struct station_info *sinfo, gfp_t gfp)
10677 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10678 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10679 struct sk_buff *msg;
10681 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
10683 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10687 if (nl80211_send_station(msg, 0, 0, 0,
10688 rdev, dev, mac_addr, sinfo) < 0) {
10693 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10694 NL80211_MCGRP_MLME, gfp);
10696 EXPORT_SYMBOL(cfg80211_new_sta);
10698 void cfg80211_del_sta(struct net_device *dev, const u8 *mac_addr, gfp_t gfp)
10700 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10701 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10702 struct sk_buff *msg;
10705 trace_cfg80211_del_sta(dev, mac_addr);
10707 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10711 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_STATION);
10717 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10718 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
10719 goto nla_put_failure;
10721 genlmsg_end(msg, hdr);
10723 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10724 NL80211_MCGRP_MLME, gfp);
10728 genlmsg_cancel(msg, hdr);
10731 EXPORT_SYMBOL(cfg80211_del_sta);
10733 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
10734 enum nl80211_connect_failed_reason reason,
10737 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10738 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10739 struct sk_buff *msg;
10742 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
10746 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
10752 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10753 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
10754 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
10755 goto nla_put_failure;
10757 genlmsg_end(msg, hdr);
10759 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10760 NL80211_MCGRP_MLME, gfp);
10764 genlmsg_cancel(msg, hdr);
10767 EXPORT_SYMBOL(cfg80211_conn_failed);
10769 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
10770 const u8 *addr, gfp_t gfp)
10772 struct wireless_dev *wdev = dev->ieee80211_ptr;
10773 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
10774 struct sk_buff *msg;
10776 u32 nlportid = ACCESS_ONCE(wdev->ap_unexpected_nlportid);
10781 msg = nlmsg_new(100, gfp);
10785 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10791 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10792 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10793 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
10794 goto nla_put_failure;
10796 genlmsg_end(msg, hdr);
10797 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
10801 genlmsg_cancel(msg, hdr);
10806 bool cfg80211_rx_spurious_frame(struct net_device *dev,
10807 const u8 *addr, gfp_t gfp)
10809 struct wireless_dev *wdev = dev->ieee80211_ptr;
10812 trace_cfg80211_rx_spurious_frame(dev, addr);
10814 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
10815 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
10816 trace_cfg80211_return_bool(false);
10819 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
10821 trace_cfg80211_return_bool(ret);
10824 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
10826 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
10827 const u8 *addr, gfp_t gfp)
10829 struct wireless_dev *wdev = dev->ieee80211_ptr;
10832 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
10834 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
10835 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
10836 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
10837 trace_cfg80211_return_bool(false);
10840 ret = __nl80211_unexpected_frame(dev,
10841 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
10843 trace_cfg80211_return_bool(ret);
10846 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
10848 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
10849 struct wireless_dev *wdev, u32 nlportid,
10850 int freq, int sig_dbm,
10851 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
10853 struct net_device *netdev = wdev->netdev;
10854 struct sk_buff *msg;
10857 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10861 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
10867 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10868 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10869 netdev->ifindex)) ||
10870 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10871 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
10873 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
10874 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
10876 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
10877 goto nla_put_failure;
10879 genlmsg_end(msg, hdr);
10881 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
10884 genlmsg_cancel(msg, hdr);
10889 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
10890 const u8 *buf, size_t len, bool ack, gfp_t gfp)
10892 struct wiphy *wiphy = wdev->wiphy;
10893 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10894 struct net_device *netdev = wdev->netdev;
10895 struct sk_buff *msg;
10898 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
10900 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10904 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
10910 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10911 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10912 netdev->ifindex)) ||
10913 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10914 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
10915 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
10916 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
10917 goto nla_put_failure;
10919 genlmsg_end(msg, hdr);
10921 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10922 NL80211_MCGRP_MLME, gfp);
10926 genlmsg_cancel(msg, hdr);
10929 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
10931 void cfg80211_cqm_rssi_notify(struct net_device *dev,
10932 enum nl80211_cqm_rssi_threshold_event rssi_event,
10935 struct wireless_dev *wdev = dev->ieee80211_ptr;
10936 struct wiphy *wiphy = wdev->wiphy;
10937 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10938 struct sk_buff *msg;
10939 struct nlattr *pinfoattr;
10942 trace_cfg80211_cqm_rssi_notify(dev, rssi_event);
10944 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10948 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
10954 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10955 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
10956 goto nla_put_failure;
10958 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
10960 goto nla_put_failure;
10962 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
10964 goto nla_put_failure;
10966 nla_nest_end(msg, pinfoattr);
10968 genlmsg_end(msg, hdr);
10970 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10971 NL80211_MCGRP_MLME, gfp);
10975 genlmsg_cancel(msg, hdr);
10978 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
10980 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
10981 struct net_device *netdev, const u8 *bssid,
10982 const u8 *replay_ctr, gfp_t gfp)
10984 struct sk_buff *msg;
10985 struct nlattr *rekey_attr;
10988 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10992 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
10998 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10999 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11000 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
11001 goto nla_put_failure;
11003 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
11005 goto nla_put_failure;
11007 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
11008 NL80211_REPLAY_CTR_LEN, replay_ctr))
11009 goto nla_put_failure;
11011 nla_nest_end(msg, rekey_attr);
11013 genlmsg_end(msg, hdr);
11015 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11016 NL80211_MCGRP_MLME, gfp);
11020 genlmsg_cancel(msg, hdr);
11024 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
11025 const u8 *replay_ctr, gfp_t gfp)
11027 struct wireless_dev *wdev = dev->ieee80211_ptr;
11028 struct wiphy *wiphy = wdev->wiphy;
11029 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11031 trace_cfg80211_gtk_rekey_notify(dev, bssid);
11032 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
11034 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
11037 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
11038 struct net_device *netdev, int index,
11039 const u8 *bssid, bool preauth, gfp_t gfp)
11041 struct sk_buff *msg;
11042 struct nlattr *attr;
11045 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11049 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
11055 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11056 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
11057 goto nla_put_failure;
11059 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
11061 goto nla_put_failure;
11063 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
11064 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
11066 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
11067 goto nla_put_failure;
11069 nla_nest_end(msg, attr);
11071 genlmsg_end(msg, hdr);
11073 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11074 NL80211_MCGRP_MLME, gfp);
11078 genlmsg_cancel(msg, hdr);
11082 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
11083 const u8 *bssid, bool preauth, gfp_t gfp)
11085 struct wireless_dev *wdev = dev->ieee80211_ptr;
11086 struct wiphy *wiphy = wdev->wiphy;
11087 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11089 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
11090 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
11092 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
11094 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
11095 struct net_device *netdev,
11096 struct cfg80211_chan_def *chandef,
11099 struct sk_buff *msg;
11102 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11106 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CH_SWITCH_NOTIFY);
11112 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
11113 goto nla_put_failure;
11115 if (nl80211_send_chandef(msg, chandef))
11116 goto nla_put_failure;
11118 genlmsg_end(msg, hdr);
11120 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11121 NL80211_MCGRP_MLME, gfp);
11125 genlmsg_cancel(msg, hdr);
11129 void cfg80211_ch_switch_notify(struct net_device *dev,
11130 struct cfg80211_chan_def *chandef)
11132 struct wireless_dev *wdev = dev->ieee80211_ptr;
11133 struct wiphy *wiphy = wdev->wiphy;
11134 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11136 ASSERT_WDEV_LOCK(wdev);
11138 trace_cfg80211_ch_switch_notify(dev, chandef);
11140 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
11141 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
11142 wdev->iftype != NL80211_IFTYPE_ADHOC &&
11143 wdev->iftype != NL80211_IFTYPE_MESH_POINT))
11146 wdev->channel = chandef->chan;
11147 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL);
11149 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
11151 void cfg80211_cqm_txe_notify(struct net_device *dev,
11152 const u8 *peer, u32 num_packets,
11153 u32 rate, u32 intvl, gfp_t gfp)
11155 struct wireless_dev *wdev = dev->ieee80211_ptr;
11156 struct wiphy *wiphy = wdev->wiphy;
11157 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11158 struct sk_buff *msg;
11159 struct nlattr *pinfoattr;
11162 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
11166 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
11172 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11173 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11174 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer))
11175 goto nla_put_failure;
11177 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
11179 goto nla_put_failure;
11181 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
11182 goto nla_put_failure;
11184 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
11185 goto nla_put_failure;
11187 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
11188 goto nla_put_failure;
11190 nla_nest_end(msg, pinfoattr);
11192 genlmsg_end(msg, hdr);
11194 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11195 NL80211_MCGRP_MLME, gfp);
11199 genlmsg_cancel(msg, hdr);
11202 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
11205 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
11206 const struct cfg80211_chan_def *chandef,
11207 enum nl80211_radar_event event,
11208 struct net_device *netdev, gfp_t gfp)
11210 struct sk_buff *msg;
11213 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11217 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
11223 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
11224 goto nla_put_failure;
11226 /* NOP and radar events don't need a netdev parameter */
11228 struct wireless_dev *wdev = netdev->ieee80211_ptr;
11230 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11231 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11232 goto nla_put_failure;
11235 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
11236 goto nla_put_failure;
11238 if (nl80211_send_chandef(msg, chandef))
11239 goto nla_put_failure;
11241 genlmsg_end(msg, hdr);
11243 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11244 NL80211_MCGRP_MLME, gfp);
11248 genlmsg_cancel(msg, hdr);
11252 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
11253 const u8 *peer, u32 num_packets, gfp_t gfp)
11255 struct wireless_dev *wdev = dev->ieee80211_ptr;
11256 struct wiphy *wiphy = wdev->wiphy;
11257 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11258 struct sk_buff *msg;
11259 struct nlattr *pinfoattr;
11262 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
11264 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11268 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
11274 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11275 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11276 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer))
11277 goto nla_put_failure;
11279 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
11281 goto nla_put_failure;
11283 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
11284 goto nla_put_failure;
11286 nla_nest_end(msg, pinfoattr);
11288 genlmsg_end(msg, hdr);
11290 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11291 NL80211_MCGRP_MLME, gfp);
11295 genlmsg_cancel(msg, hdr);
11298 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
11300 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
11301 u64 cookie, bool acked, gfp_t gfp)
11303 struct wireless_dev *wdev = dev->ieee80211_ptr;
11304 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11305 struct sk_buff *msg;
11308 trace_cfg80211_probe_status(dev, addr, cookie, acked);
11310 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11315 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
11321 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11322 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11323 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
11324 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
11325 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)))
11326 goto nla_put_failure;
11328 genlmsg_end(msg, hdr);
11330 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11331 NL80211_MCGRP_MLME, gfp);
11335 genlmsg_cancel(msg, hdr);
11338 EXPORT_SYMBOL(cfg80211_probe_status);
11340 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
11341 const u8 *frame, size_t len,
11342 int freq, int sig_dbm)
11344 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11345 struct sk_buff *msg;
11347 struct cfg80211_beacon_registration *reg;
11349 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
11351 spin_lock_bh(&rdev->beacon_registrations_lock);
11352 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11353 msg = nlmsg_new(len + 100, GFP_ATOMIC);
11355 spin_unlock_bh(&rdev->beacon_registrations_lock);
11359 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
11361 goto nla_put_failure;
11363 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11365 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
11367 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
11368 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
11369 goto nla_put_failure;
11371 genlmsg_end(msg, hdr);
11373 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
11375 spin_unlock_bh(&rdev->beacon_registrations_lock);
11379 spin_unlock_bh(&rdev->beacon_registrations_lock);
11381 genlmsg_cancel(msg, hdr);
11384 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
11387 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
11388 struct cfg80211_wowlan_wakeup *wakeup,
11391 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11392 struct sk_buff *msg;
11396 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
11399 size += wakeup->packet_present_len;
11401 msg = nlmsg_new(size, gfp);
11405 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
11409 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11410 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11413 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11414 wdev->netdev->ifindex))
11418 struct nlattr *reasons;
11420 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
11424 if (wakeup->disconnect &&
11425 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
11427 if (wakeup->magic_pkt &&
11428 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
11430 if (wakeup->gtk_rekey_failure &&
11431 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
11433 if (wakeup->eap_identity_req &&
11434 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
11436 if (wakeup->four_way_handshake &&
11437 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
11439 if (wakeup->rfkill_release &&
11440 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
11443 if (wakeup->pattern_idx >= 0 &&
11444 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
11445 wakeup->pattern_idx))
11448 if (wakeup->tcp_match &&
11449 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
11452 if (wakeup->tcp_connlost &&
11453 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
11456 if (wakeup->tcp_nomoretokens &&
11458 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
11461 if (wakeup->packet) {
11462 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
11463 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
11465 if (!wakeup->packet_80211) {
11467 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
11469 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
11472 if (wakeup->packet_len &&
11473 nla_put_u32(msg, len_attr, wakeup->packet_len))
11476 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
11481 nla_nest_end(msg, reasons);
11484 genlmsg_end(msg, hdr);
11486 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11487 NL80211_MCGRP_MLME, gfp);
11493 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
11496 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
11497 enum nl80211_tdls_operation oper,
11498 u16 reason_code, gfp_t gfp)
11500 struct wireless_dev *wdev = dev->ieee80211_ptr;
11501 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11502 struct sk_buff *msg;
11505 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
11508 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11512 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
11518 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11519 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11520 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
11521 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
11522 (reason_code > 0 &&
11523 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
11524 goto nla_put_failure;
11526 genlmsg_end(msg, hdr);
11528 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11529 NL80211_MCGRP_MLME, gfp);
11533 genlmsg_cancel(msg, hdr);
11536 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
11538 static int nl80211_netlink_notify(struct notifier_block * nb,
11539 unsigned long state,
11542 struct netlink_notify *notify = _notify;
11543 struct cfg80211_registered_device *rdev;
11544 struct wireless_dev *wdev;
11545 struct cfg80211_beacon_registration *reg, *tmp;
11547 if (state != NETLINK_URELEASE)
11548 return NOTIFY_DONE;
11552 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
11553 list_for_each_entry_rcu(wdev, &rdev->wdev_list, list)
11554 cfg80211_mlme_unregister_socket(wdev, notify->portid);
11556 spin_lock_bh(&rdev->beacon_registrations_lock);
11557 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
11559 if (reg->nlportid == notify->portid) {
11560 list_del(®->list);
11565 spin_unlock_bh(&rdev->beacon_registrations_lock);
11570 return NOTIFY_DONE;
11573 static struct notifier_block nl80211_netlink_notifier = {
11574 .notifier_call = nl80211_netlink_notify,
11577 void cfg80211_ft_event(struct net_device *netdev,
11578 struct cfg80211_ft_event_params *ft_event)
11580 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
11581 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11582 struct sk_buff *msg;
11585 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
11587 if (!ft_event->target_ap)
11590 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11594 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
11598 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11599 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11600 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
11603 if (ft_event->ies &&
11604 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
11606 if (ft_event->ric_ies &&
11607 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
11608 ft_event->ric_ies))
11611 genlmsg_end(msg, hdr);
11613 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11614 NL80211_MCGRP_MLME, GFP_KERNEL);
11619 EXPORT_SYMBOL(cfg80211_ft_event);
11621 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
11623 struct cfg80211_registered_device *rdev;
11624 struct sk_buff *msg;
11628 rdev = wiphy_to_dev(wdev->wiphy);
11629 if (!rdev->crit_proto_nlportid)
11632 nlportid = rdev->crit_proto_nlportid;
11633 rdev->crit_proto_nlportid = 0;
11635 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11639 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
11641 goto nla_put_failure;
11643 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11644 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11645 goto nla_put_failure;
11647 genlmsg_end(msg, hdr);
11649 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
11654 genlmsg_cancel(msg, hdr);
11658 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
11660 /* initialisation/exit functions */
11662 int nl80211_init(void)
11666 err = genl_register_family_with_ops_groups(&nl80211_fam, nl80211_ops,
11671 err = netlink_register_notifier(&nl80211_netlink_notifier);
11677 genl_unregister_family(&nl80211_fam);
11681 void nl80211_exit(void)
11683 netlink_unregister_notifier(&nl80211_netlink_notifier);
11684 genl_unregister_family(&nl80211_fam);
projects / ~andy / linux / blob