2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
8 #include <linux/module.h>
10 #include <linux/slab.h>
11 #include <linux/list.h>
12 #include <linux/if_ether.h>
13 #include <linux/ieee80211.h>
14 #include <linux/nl80211.h>
15 #include <linux/rtnetlink.h>
16 #include <linux/netlink.h>
17 #include <linux/etherdevice.h>
18 #include <net/net_namespace.h>
19 #include <net/genetlink.h>
20 #include <net/cfg80211.h>
22 #include <net/inet_connection_sock.h>
28 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
29 struct genl_info *info,
30 struct cfg80211_crypto_settings *settings,
33 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
34 struct genl_info *info);
35 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
36 struct genl_info *info);
38 /* the netlink family */
39 static struct genl_family nl80211_fam = {
40 .id = GENL_ID_GENERATE, /* don't bother with a hardcoded ID */
41 .name = NL80211_GENL_NAME, /* have users key off the name instead */
42 .hdrsize = 0, /* no private header */
43 .version = 1, /* no particular meaning now */
44 .maxattr = NL80211_ATTR_MAX,
46 .pre_doit = nl80211_pre_doit,
47 .post_doit = nl80211_post_doit,
50 /* multicast groups */
51 enum nl80211_multicast_groups {
54 NL80211_MCGRP_REGULATORY,
57 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
60 static const struct genl_multicast_group nl80211_mcgrps[] = {
61 [NL80211_MCGRP_CONFIG] = { .name = "config", },
62 [NL80211_MCGRP_SCAN] = { .name = "scan", },
63 [NL80211_MCGRP_REGULATORY] = { .name = "regulatory", },
64 [NL80211_MCGRP_MLME] = { .name = "mlme", },
65 [NL80211_MCGRP_VENDOR] = { .name = "vendor", },
66 #ifdef CONFIG_NL80211_TESTMODE
67 [NL80211_MCGRP_TESTMODE] = { .name = "testmode", }
71 /* returns ERR_PTR values */
72 static struct wireless_dev *
73 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
75 struct cfg80211_registered_device *rdev;
76 struct wireless_dev *result = NULL;
77 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
78 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
85 if (!have_ifidx && !have_wdev_id)
86 return ERR_PTR(-EINVAL);
89 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
91 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
92 wiphy_idx = wdev_id >> 32;
95 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
96 struct wireless_dev *wdev;
98 if (wiphy_net(&rdev->wiphy) != netns)
101 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
104 list_for_each_entry(wdev, &rdev->wdev_list, list) {
105 if (have_ifidx && wdev->netdev &&
106 wdev->netdev->ifindex == ifidx) {
110 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
122 return ERR_PTR(-ENODEV);
125 static struct cfg80211_registered_device *
126 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
128 struct cfg80211_registered_device *rdev = NULL, *tmp;
129 struct net_device *netdev;
133 if (!attrs[NL80211_ATTR_WIPHY] &&
134 !attrs[NL80211_ATTR_IFINDEX] &&
135 !attrs[NL80211_ATTR_WDEV])
136 return ERR_PTR(-EINVAL);
138 if (attrs[NL80211_ATTR_WIPHY])
139 rdev = cfg80211_rdev_by_wiphy_idx(
140 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
142 if (attrs[NL80211_ATTR_WDEV]) {
143 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
144 struct wireless_dev *wdev;
147 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
149 /* make sure wdev exists */
150 list_for_each_entry(wdev, &tmp->wdev_list, list) {
151 if (wdev->identifier != (u32)wdev_id)
160 if (rdev && tmp != rdev)
161 return ERR_PTR(-EINVAL);
166 if (attrs[NL80211_ATTR_IFINDEX]) {
167 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
168 netdev = __dev_get_by_index(netns, ifindex);
170 if (netdev->ieee80211_ptr)
172 netdev->ieee80211_ptr->wiphy);
176 /* not wireless device -- return error */
178 return ERR_PTR(-EINVAL);
180 /* mismatch -- return error */
181 if (rdev && tmp != rdev)
182 return ERR_PTR(-EINVAL);
189 return ERR_PTR(-ENODEV);
191 if (netns != wiphy_net(&rdev->wiphy))
192 return ERR_PTR(-ENODEV);
198 * This function returns a pointer to the driver
199 * that the genl_info item that is passed refers to.
201 * The result of this can be a PTR_ERR and hence must
202 * be checked with IS_ERR() for errors.
204 static struct cfg80211_registered_device *
205 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
207 return __cfg80211_rdev_from_attrs(netns, info->attrs);
210 /* policy for the attributes */
211 static const struct nla_policy nl80211_policy[NL80211_ATTR_MAX+1] = {
212 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
213 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
215 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
217 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
218 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
219 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
220 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
221 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
223 [NL80211_ATTR_WIPHY_RETRY_SHORT] = { .type = NLA_U8 },
224 [NL80211_ATTR_WIPHY_RETRY_LONG] = { .type = NLA_U8 },
225 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
226 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
227 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
229 [NL80211_ATTR_IFTYPE] = { .type = NLA_U32 },
230 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
231 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
233 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
234 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
236 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
237 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
238 .len = WLAN_MAX_KEY_LEN },
239 [NL80211_ATTR_KEY_IDX] = { .type = NLA_U8 },
240 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
241 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
242 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
243 [NL80211_ATTR_KEY_TYPE] = { .type = NLA_U32 },
245 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
246 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
247 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
248 .len = IEEE80211_MAX_DATA_LEN },
249 [NL80211_ATTR_BEACON_TAIL] = { .type = NLA_BINARY,
250 .len = IEEE80211_MAX_DATA_LEN },
251 [NL80211_ATTR_STA_AID] = { .type = NLA_U16 },
252 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
253 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
254 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
255 .len = NL80211_MAX_SUPP_RATES },
256 [NL80211_ATTR_STA_PLINK_ACTION] = { .type = NLA_U8 },
257 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
258 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
259 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
260 .len = IEEE80211_MAX_MESH_ID_LEN },
261 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
263 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
264 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
266 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
267 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
268 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
269 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
270 .len = NL80211_MAX_SUPP_RATES },
271 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
273 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
274 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
276 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
278 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
279 [NL80211_ATTR_IE] = { .type = NLA_BINARY,
280 .len = IEEE80211_MAX_DATA_LEN },
281 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
282 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
284 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
285 .len = IEEE80211_MAX_SSID_LEN },
286 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
287 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
288 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
289 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
290 [NL80211_ATTR_USE_MFP] = { .type = NLA_U32 },
291 [NL80211_ATTR_STA_FLAGS2] = {
292 .len = sizeof(struct nl80211_sta_flag_update),
294 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
295 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
296 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
297 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
298 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
299 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
300 [NL80211_ATTR_PID] = { .type = NLA_U32 },
301 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
302 [NL80211_ATTR_PMKID] = { .type = NLA_BINARY,
303 .len = WLAN_PMKID_LEN },
304 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
305 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
306 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
307 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
308 .len = IEEE80211_MAX_DATA_LEN },
309 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
310 [NL80211_ATTR_PS_STATE] = { .type = NLA_U32 },
311 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
312 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
313 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
314 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
315 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
316 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
317 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
318 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
319 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
320 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
321 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
322 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
323 [NL80211_ATTR_STA_PLINK_STATE] = { .type = NLA_U8 },
324 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
325 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
326 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
327 [NL80211_ATTR_HIDDEN_SSID] = { .type = NLA_U32 },
328 [NL80211_ATTR_IE_PROBE_RESP] = { .type = NLA_BINARY,
329 .len = IEEE80211_MAX_DATA_LEN },
330 [NL80211_ATTR_IE_ASSOC_RESP] = { .type = NLA_BINARY,
331 .len = IEEE80211_MAX_DATA_LEN },
332 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
333 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
334 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
335 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
336 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
337 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
338 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
339 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
340 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
341 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
342 .len = IEEE80211_MAX_DATA_LEN },
343 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
344 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
345 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
346 .len = NL80211_HT_CAPABILITY_LEN
348 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
349 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
350 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
351 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
352 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
353 [NL80211_ATTR_SAE_DATA] = { .type = NLA_BINARY, },
354 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
355 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
356 [NL80211_ATTR_P2P_CTWINDOW] = { .type = NLA_U8 },
357 [NL80211_ATTR_P2P_OPPPS] = { .type = NLA_U8 },
358 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
359 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
360 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
361 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
362 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
363 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
364 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
365 .len = NL80211_VHT_CAPABILITY_LEN,
367 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
368 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
369 .len = IEEE80211_MAX_DATA_LEN },
370 [NL80211_ATTR_PEER_AID] = { .type = NLA_U16 },
371 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
372 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
373 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
374 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_U16 },
375 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_U16 },
376 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
377 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
378 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
379 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
380 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
381 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
382 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
383 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
384 .len = IEEE80211_QOS_MAP_LEN_MAX },
387 /* policy for the key attributes */
388 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
389 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
390 [NL80211_KEY_IDX] = { .type = NLA_U8 },
391 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
392 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
393 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
394 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
395 [NL80211_KEY_TYPE] = { .type = NLA_U32 },
396 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
399 /* policy for the key default flags */
400 static const struct nla_policy
401 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
402 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
403 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
406 /* policy for WoWLAN attributes */
407 static const struct nla_policy
408 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
409 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
410 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
411 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
412 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
413 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
414 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
415 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
416 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
417 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
420 static const struct nla_policy
421 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
422 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
423 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
424 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
425 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
426 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
427 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
428 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
429 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
431 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
432 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
434 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
435 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
436 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
439 /* policy for coalesce rule attributes */
440 static const struct nla_policy
441 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
442 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
443 [NL80211_ATTR_COALESCE_RULE_CONDITION] = { .type = NLA_U32 },
444 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
447 /* policy for GTK rekey offload attributes */
448 static const struct nla_policy
449 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
450 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
451 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
452 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
455 static const struct nla_policy
456 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
457 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
458 .len = IEEE80211_MAX_SSID_LEN },
459 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
462 static int nl80211_prepare_wdev_dump(struct sk_buff *skb,
463 struct netlink_callback *cb,
464 struct cfg80211_registered_device **rdev,
465 struct wireless_dev **wdev)
472 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
473 nl80211_fam.attrbuf, nl80211_fam.maxattr,
478 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk),
479 nl80211_fam.attrbuf);
481 err = PTR_ERR(*wdev);
484 *rdev = wiphy_to_dev((*wdev)->wiphy);
485 /* 0 is the first index - add 1 to parse only once */
486 cb->args[0] = (*rdev)->wiphy_idx + 1;
487 cb->args[1] = (*wdev)->identifier;
489 /* subtract the 1 again here */
490 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
491 struct wireless_dev *tmp;
497 *rdev = wiphy_to_dev(wiphy);
500 list_for_each_entry(tmp, &(*rdev)->wdev_list, list) {
501 if (tmp->identifier == cb->args[1]) {
519 static void nl80211_finish_wdev_dump(struct cfg80211_registered_device *rdev)
525 static bool is_valid_ie_attr(const struct nlattr *attr)
533 pos = nla_data(attr);
554 /* message building helper */
555 static inline void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
558 /* since there is no private header just add the generic one */
559 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
562 static int nl80211_msg_put_channel(struct sk_buff *msg,
563 struct ieee80211_channel *chan,
566 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
568 goto nla_put_failure;
570 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
571 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
572 goto nla_put_failure;
573 if (chan->flags & IEEE80211_CHAN_NO_IR) {
574 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
575 goto nla_put_failure;
576 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
577 goto nla_put_failure;
579 if (chan->flags & IEEE80211_CHAN_RADAR) {
580 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
581 goto nla_put_failure;
585 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
587 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
589 goto nla_put_failure;
590 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
592 goto nla_put_failure;
597 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
598 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
599 goto nla_put_failure;
600 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
601 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
602 goto nla_put_failure;
603 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
604 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
605 goto nla_put_failure;
606 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
607 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
608 goto nla_put_failure;
611 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
612 DBM_TO_MBM(chan->max_power)))
613 goto nla_put_failure;
621 /* netlink command implementations */
628 bool def_uni, def_multi;
631 static int nl80211_parse_key_new(struct nlattr *key, struct key_parse *k)
633 struct nlattr *tb[NL80211_KEY_MAX + 1];
634 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
639 k->def = !!tb[NL80211_KEY_DEFAULT];
640 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
649 if (tb[NL80211_KEY_IDX])
650 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
652 if (tb[NL80211_KEY_DATA]) {
653 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
654 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
657 if (tb[NL80211_KEY_SEQ]) {
658 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
659 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
662 if (tb[NL80211_KEY_CIPHER])
663 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
665 if (tb[NL80211_KEY_TYPE]) {
666 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
667 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
671 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
672 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
673 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
674 tb[NL80211_KEY_DEFAULT_TYPES],
675 nl80211_key_default_policy);
679 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
680 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
686 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
688 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
689 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
690 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
693 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
694 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
695 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
698 if (info->attrs[NL80211_ATTR_KEY_IDX])
699 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
701 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
702 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
704 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
705 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
714 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
715 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
716 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
720 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
721 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
722 int err = nla_parse_nested(
723 kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
724 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
725 nl80211_key_default_policy);
729 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
730 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
736 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
740 memset(k, 0, sizeof(*k));
744 if (info->attrs[NL80211_ATTR_KEY])
745 err = nl80211_parse_key_new(info->attrs[NL80211_ATTR_KEY], k);
747 err = nl80211_parse_key_old(info, k);
752 if (k->def && k->defmgmt)
756 if (k->def_uni || !k->def_multi)
762 if (k->idx < 4 || k->idx > 5)
765 if (k->idx < 0 || k->idx > 3)
768 if (k->idx < 0 || k->idx > 5)
776 static struct cfg80211_cached_keys *
777 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
778 struct nlattr *keys, bool *no_ht)
780 struct key_parse parse;
782 struct cfg80211_cached_keys *result;
783 int rem, err, def = 0;
785 result = kzalloc(sizeof(*result), GFP_KERNEL);
787 return ERR_PTR(-ENOMEM);
790 result->defmgmt = -1;
792 nla_for_each_nested(key, keys, rem) {
793 memset(&parse, 0, sizeof(parse));
796 err = nl80211_parse_key_new(key, &parse);
802 if (parse.idx < 0 || parse.idx > 4)
808 result->def = parse.idx;
809 if (!parse.def_uni || !parse.def_multi)
811 } else if (parse.defmgmt)
813 err = cfg80211_validate_key_settings(rdev, &parse.p,
814 parse.idx, false, NULL);
817 result->params[parse.idx].cipher = parse.p.cipher;
818 result->params[parse.idx].key_len = parse.p.key_len;
819 result->params[parse.idx].key = result->data[parse.idx];
820 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
822 if (parse.p.cipher == WLAN_CIPHER_SUITE_WEP40 ||
823 parse.p.cipher == WLAN_CIPHER_SUITE_WEP104) {
835 static int nl80211_key_allowed(struct wireless_dev *wdev)
837 ASSERT_WDEV_LOCK(wdev);
839 switch (wdev->iftype) {
840 case NL80211_IFTYPE_AP:
841 case NL80211_IFTYPE_AP_VLAN:
842 case NL80211_IFTYPE_P2P_GO:
843 case NL80211_IFTYPE_MESH_POINT:
845 case NL80211_IFTYPE_ADHOC:
846 case NL80211_IFTYPE_STATION:
847 case NL80211_IFTYPE_P2P_CLIENT:
848 if (!wdev->current_bss)
858 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
860 struct nlattr *nl_modes = nla_nest_start(msg, attr);
864 goto nla_put_failure;
868 if ((ifmodes & 1) && nla_put_flag(msg, i))
869 goto nla_put_failure;
874 nla_nest_end(msg, nl_modes);
881 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
885 struct nlattr *nl_combis;
888 nl_combis = nla_nest_start(msg,
889 NL80211_ATTR_INTERFACE_COMBINATIONS);
891 goto nla_put_failure;
893 for (i = 0; i < wiphy->n_iface_combinations; i++) {
894 const struct ieee80211_iface_combination *c;
895 struct nlattr *nl_combi, *nl_limits;
897 c = &wiphy->iface_combinations[i];
899 nl_combi = nla_nest_start(msg, i + 1);
901 goto nla_put_failure;
903 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
905 goto nla_put_failure;
907 for (j = 0; j < c->n_limits; j++) {
908 struct nlattr *nl_limit;
910 nl_limit = nla_nest_start(msg, j + 1);
912 goto nla_put_failure;
913 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
915 goto nla_put_failure;
916 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
918 goto nla_put_failure;
919 nla_nest_end(msg, nl_limit);
922 nla_nest_end(msg, nl_limits);
924 if (c->beacon_int_infra_match &&
925 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
926 goto nla_put_failure;
927 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
928 c->num_different_channels) ||
929 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
931 goto nla_put_failure;
933 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
934 c->radar_detect_widths))
935 goto nla_put_failure;
937 nla_nest_end(msg, nl_combi);
940 nla_nest_end(msg, nl_combis);
948 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
951 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
952 struct nlattr *nl_tcp;
957 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
961 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
962 tcp->data_payload_max))
965 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
966 tcp->data_payload_max))
969 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
972 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
973 sizeof(*tcp->tok), tcp->tok))
976 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
977 tcp->data_interval_max))
980 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
981 tcp->wake_payload_max))
984 nla_nest_end(msg, nl_tcp);
988 static int nl80211_send_wowlan(struct sk_buff *msg,
989 struct cfg80211_registered_device *dev,
992 struct nlattr *nl_wowlan;
994 if (!dev->wiphy.wowlan)
997 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1001 if (((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1002 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1003 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1004 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1005 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1006 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1007 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1008 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1009 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1010 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1011 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1012 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1013 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1014 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1015 ((dev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1016 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1019 if (dev->wiphy.wowlan->n_patterns) {
1020 struct nl80211_pattern_support pat = {
1021 .max_patterns = dev->wiphy.wowlan->n_patterns,
1022 .min_pattern_len = dev->wiphy.wowlan->pattern_min_len,
1023 .max_pattern_len = dev->wiphy.wowlan->pattern_max_len,
1024 .max_pkt_offset = dev->wiphy.wowlan->max_pkt_offset,
1027 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1032 if (large && nl80211_send_wowlan_tcp_caps(dev, msg))
1035 nla_nest_end(msg, nl_wowlan);
1041 static int nl80211_send_coalesce(struct sk_buff *msg,
1042 struct cfg80211_registered_device *dev)
1044 struct nl80211_coalesce_rule_support rule;
1046 if (!dev->wiphy.coalesce)
1049 rule.max_rules = dev->wiphy.coalesce->n_rules;
1050 rule.max_delay = dev->wiphy.coalesce->max_delay;
1051 rule.pat.max_patterns = dev->wiphy.coalesce->n_patterns;
1052 rule.pat.min_pattern_len = dev->wiphy.coalesce->pattern_min_len;
1053 rule.pat.max_pattern_len = dev->wiphy.coalesce->pattern_max_len;
1054 rule.pat.max_pkt_offset = dev->wiphy.coalesce->max_pkt_offset;
1056 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1062 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1063 struct ieee80211_supported_band *sband)
1065 struct nlattr *nl_rates, *nl_rate;
1066 struct ieee80211_rate *rate;
1070 if (sband->ht_cap.ht_supported &&
1071 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1072 sizeof(sband->ht_cap.mcs),
1073 &sband->ht_cap.mcs) ||
1074 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1075 sband->ht_cap.cap) ||
1076 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1077 sband->ht_cap.ampdu_factor) ||
1078 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1079 sband->ht_cap.ampdu_density)))
1083 if (sband->vht_cap.vht_supported &&
1084 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1085 sizeof(sband->vht_cap.vht_mcs),
1086 &sband->vht_cap.vht_mcs) ||
1087 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1088 sband->vht_cap.cap)))
1092 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1096 for (i = 0; i < sband->n_bitrates; i++) {
1097 nl_rate = nla_nest_start(msg, i);
1101 rate = &sband->bitrates[i];
1102 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1105 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1107 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1110 nla_nest_end(msg, nl_rate);
1113 nla_nest_end(msg, nl_rates);
1119 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1120 const struct ieee80211_txrx_stypes *mgmt_stypes)
1123 struct nlattr *nl_ftypes, *nl_ifs;
1124 enum nl80211_iftype ift;
1130 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1134 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1135 nl_ftypes = nla_nest_start(msg, ift);
1139 stypes = mgmt_stypes[ift].tx;
1142 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1143 (i << 4) | IEEE80211_FTYPE_MGMT))
1148 nla_nest_end(msg, nl_ftypes);
1151 nla_nest_end(msg, nl_ifs);
1153 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1157 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1158 nl_ftypes = nla_nest_start(msg, ift);
1162 stypes = mgmt_stypes[ift].rx;
1165 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1166 (i << 4) | IEEE80211_FTYPE_MGMT))
1171 nla_nest_end(msg, nl_ftypes);
1173 nla_nest_end(msg, nl_ifs);
1178 struct nl80211_dump_wiphy_state {
1181 long split_start, band_start, chan_start;
1185 static int nl80211_send_wiphy(struct cfg80211_registered_device *dev,
1186 struct sk_buff *msg, u32 portid, u32 seq,
1187 int flags, struct nl80211_dump_wiphy_state *state)
1190 struct nlattr *nl_bands, *nl_band;
1191 struct nlattr *nl_freqs, *nl_freq;
1192 struct nlattr *nl_cmds;
1193 enum ieee80211_band band;
1194 struct ieee80211_channel *chan;
1196 const struct ieee80211_txrx_stypes *mgmt_stypes =
1197 dev->wiphy.mgmt_stypes;
1200 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_WIPHY);
1204 if (WARN_ON(!state))
1207 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, dev->wiphy_idx) ||
1208 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1209 wiphy_name(&dev->wiphy)) ||
1210 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1211 cfg80211_rdev_list_generation))
1212 goto nla_put_failure;
1214 switch (state->split_start) {
1216 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1217 dev->wiphy.retry_short) ||
1218 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1219 dev->wiphy.retry_long) ||
1220 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1221 dev->wiphy.frag_threshold) ||
1222 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1223 dev->wiphy.rts_threshold) ||
1224 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1225 dev->wiphy.coverage_class) ||
1226 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1227 dev->wiphy.max_scan_ssids) ||
1228 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1229 dev->wiphy.max_sched_scan_ssids) ||
1230 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1231 dev->wiphy.max_scan_ie_len) ||
1232 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1233 dev->wiphy.max_sched_scan_ie_len) ||
1234 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1235 dev->wiphy.max_match_sets))
1236 goto nla_put_failure;
1238 if ((dev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1239 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1240 goto nla_put_failure;
1241 if ((dev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1242 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1243 goto nla_put_failure;
1244 if ((dev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1245 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1246 goto nla_put_failure;
1247 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1248 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1249 goto nla_put_failure;
1250 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1251 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1252 goto nla_put_failure;
1253 if ((dev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1254 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1255 goto nla_put_failure;
1256 state->split_start++;
1260 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1261 sizeof(u32) * dev->wiphy.n_cipher_suites,
1262 dev->wiphy.cipher_suites))
1263 goto nla_put_failure;
1265 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1266 dev->wiphy.max_num_pmkids))
1267 goto nla_put_failure;
1269 if ((dev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1270 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1271 goto nla_put_failure;
1273 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1274 dev->wiphy.available_antennas_tx) ||
1275 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1276 dev->wiphy.available_antennas_rx))
1277 goto nla_put_failure;
1279 if ((dev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1280 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1281 dev->wiphy.probe_resp_offload))
1282 goto nla_put_failure;
1284 if ((dev->wiphy.available_antennas_tx ||
1285 dev->wiphy.available_antennas_rx) &&
1286 dev->ops->get_antenna) {
1287 u32 tx_ant = 0, rx_ant = 0;
1289 res = rdev_get_antenna(dev, &tx_ant, &rx_ant);
1291 if (nla_put_u32(msg,
1292 NL80211_ATTR_WIPHY_ANTENNA_TX,
1295 NL80211_ATTR_WIPHY_ANTENNA_RX,
1297 goto nla_put_failure;
1301 state->split_start++;
1305 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1306 dev->wiphy.interface_modes))
1307 goto nla_put_failure;
1308 state->split_start++;
1312 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1314 goto nla_put_failure;
1316 for (band = state->band_start;
1317 band < IEEE80211_NUM_BANDS; band++) {
1318 struct ieee80211_supported_band *sband;
1320 sband = dev->wiphy.bands[band];
1325 nl_band = nla_nest_start(msg, band);
1327 goto nla_put_failure;
1329 switch (state->chan_start) {
1331 if (nl80211_send_band_rateinfo(msg, sband))
1332 goto nla_put_failure;
1333 state->chan_start++;
1337 /* add frequencies */
1338 nl_freqs = nla_nest_start(
1339 msg, NL80211_BAND_ATTR_FREQS);
1341 goto nla_put_failure;
1343 for (i = state->chan_start - 1;
1344 i < sband->n_channels;
1346 nl_freq = nla_nest_start(msg, i);
1348 goto nla_put_failure;
1350 chan = &sband->channels[i];
1352 if (nl80211_msg_put_channel(
1355 goto nla_put_failure;
1357 nla_nest_end(msg, nl_freq);
1361 if (i < sband->n_channels)
1362 state->chan_start = i + 2;
1364 state->chan_start = 0;
1365 nla_nest_end(msg, nl_freqs);
1368 nla_nest_end(msg, nl_band);
1371 /* start again here */
1372 if (state->chan_start)
1377 nla_nest_end(msg, nl_bands);
1379 if (band < IEEE80211_NUM_BANDS)
1380 state->band_start = band + 1;
1382 state->band_start = 0;
1384 /* if bands & channels are done, continue outside */
1385 if (state->band_start == 0 && state->chan_start == 0)
1386 state->split_start++;
1390 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1392 goto nla_put_failure;
1395 #define CMD(op, n) \
1397 if (dev->ops->op) { \
1399 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1400 goto nla_put_failure; \
1404 CMD(add_virtual_intf, NEW_INTERFACE);
1405 CMD(change_virtual_intf, SET_INTERFACE);
1406 CMD(add_key, NEW_KEY);
1407 CMD(start_ap, START_AP);
1408 CMD(add_station, NEW_STATION);
1409 CMD(add_mpath, NEW_MPATH);
1410 CMD(update_mesh_config, SET_MESH_CONFIG);
1411 CMD(change_bss, SET_BSS);
1412 CMD(auth, AUTHENTICATE);
1413 CMD(assoc, ASSOCIATE);
1414 CMD(deauth, DEAUTHENTICATE);
1415 CMD(disassoc, DISASSOCIATE);
1416 CMD(join_ibss, JOIN_IBSS);
1417 CMD(join_mesh, JOIN_MESH);
1418 CMD(set_pmksa, SET_PMKSA);
1419 CMD(del_pmksa, DEL_PMKSA);
1420 CMD(flush_pmksa, FLUSH_PMKSA);
1421 if (dev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1422 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1423 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1424 CMD(mgmt_tx, FRAME);
1425 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1426 if (dev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1428 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1429 goto nla_put_failure;
1431 if (dev->ops->set_monitor_channel || dev->ops->start_ap ||
1432 dev->ops->join_mesh) {
1434 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1435 goto nla_put_failure;
1437 CMD(set_wds_peer, SET_WDS_PEER);
1438 if (dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1439 CMD(tdls_mgmt, TDLS_MGMT);
1440 CMD(tdls_oper, TDLS_OPER);
1442 if (dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN)
1443 CMD(sched_scan_start, START_SCHED_SCAN);
1444 CMD(probe_client, PROBE_CLIENT);
1445 CMD(set_noack_map, SET_NOACK_MAP);
1446 if (dev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1448 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1449 goto nla_put_failure;
1451 CMD(start_p2p_device, START_P2P_DEVICE);
1452 CMD(set_mcast_rate, SET_MCAST_RATE);
1454 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1455 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1456 if (dev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1457 CMD(channel_switch, CHANNEL_SWITCH);
1459 CMD(set_qos_map, SET_QOS_MAP);
1461 #ifdef CONFIG_NL80211_TESTMODE
1462 CMD(testmode_cmd, TESTMODE);
1467 if (dev->ops->connect || dev->ops->auth) {
1469 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1470 goto nla_put_failure;
1473 if (dev->ops->disconnect || dev->ops->deauth) {
1475 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1476 goto nla_put_failure;
1479 nla_nest_end(msg, nl_cmds);
1480 state->split_start++;
1484 if (dev->ops->remain_on_channel &&
1485 (dev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
1487 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
1488 dev->wiphy.max_remain_on_channel_duration))
1489 goto nla_put_failure;
1491 if ((dev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
1492 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
1493 goto nla_put_failure;
1495 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
1496 goto nla_put_failure;
1497 state->split_start++;
1502 if (nl80211_send_wowlan(msg, dev, state->split))
1503 goto nla_put_failure;
1504 state->split_start++;
1508 state->split_start++;
1511 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
1512 dev->wiphy.software_iftypes))
1513 goto nla_put_failure;
1515 if (nl80211_put_iface_combinations(&dev->wiphy, msg,
1517 goto nla_put_failure;
1519 state->split_start++;
1523 if ((dev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
1524 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
1525 dev->wiphy.ap_sme_capa))
1526 goto nla_put_failure;
1528 features = dev->wiphy.features;
1530 * We can only add the per-channel limit information if the
1531 * dump is split, otherwise it makes it too big. Therefore
1532 * only advertise it in that case.
1535 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
1536 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
1537 goto nla_put_failure;
1539 if (dev->wiphy.ht_capa_mod_mask &&
1540 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
1541 sizeof(*dev->wiphy.ht_capa_mod_mask),
1542 dev->wiphy.ht_capa_mod_mask))
1543 goto nla_put_failure;
1545 if (dev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
1546 dev->wiphy.max_acl_mac_addrs &&
1547 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
1548 dev->wiphy.max_acl_mac_addrs))
1549 goto nla_put_failure;
1552 * Any information below this point is only available to
1553 * applications that can deal with it being split. This
1554 * helps ensure that newly added capabilities don't break
1555 * older tools by overrunning their buffers.
1557 * We still increment split_start so that in the split
1558 * case we'll continue with more data in the next round,
1559 * but break unconditionally so unsplit data stops here.
1561 state->split_start++;
1564 if (dev->wiphy.extended_capabilities &&
1565 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
1566 dev->wiphy.extended_capabilities_len,
1567 dev->wiphy.extended_capabilities) ||
1568 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
1569 dev->wiphy.extended_capabilities_len,
1570 dev->wiphy.extended_capabilities_mask)))
1571 goto nla_put_failure;
1573 if (dev->wiphy.vht_capa_mod_mask &&
1574 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
1575 sizeof(*dev->wiphy.vht_capa_mod_mask),
1576 dev->wiphy.vht_capa_mod_mask))
1577 goto nla_put_failure;
1579 state->split_start++;
1582 if (nl80211_send_coalesce(msg, dev))
1583 goto nla_put_failure;
1585 if ((dev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
1586 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
1587 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
1588 goto nla_put_failure;
1589 state->split_start++;
1592 if (dev->wiphy.n_vendor_commands) {
1593 const struct nl80211_vendor_cmd_info *info;
1594 struct nlattr *nested;
1596 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
1598 goto nla_put_failure;
1600 for (i = 0; i < dev->wiphy.n_vendor_commands; i++) {
1601 info = &dev->wiphy.vendor_commands[i].info;
1602 if (nla_put(msg, i + 1, sizeof(*info), info))
1603 goto nla_put_failure;
1605 nla_nest_end(msg, nested);
1608 if (dev->wiphy.n_vendor_events) {
1609 const struct nl80211_vendor_cmd_info *info;
1610 struct nlattr *nested;
1612 nested = nla_nest_start(msg,
1613 NL80211_ATTR_VENDOR_EVENTS);
1615 goto nla_put_failure;
1617 for (i = 0; i < dev->wiphy.n_vendor_events; i++) {
1618 info = &dev->wiphy.vendor_events[i];
1619 if (nla_put(msg, i + 1, sizeof(*info), info))
1620 goto nla_put_failure;
1622 nla_nest_end(msg, nested);
1626 state->split_start = 0;
1629 return genlmsg_end(msg, hdr);
1632 genlmsg_cancel(msg, hdr);
1636 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
1637 struct netlink_callback *cb,
1638 struct nl80211_dump_wiphy_state *state)
1640 struct nlattr **tb = nl80211_fam.attrbuf;
1641 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
1642 tb, nl80211_fam.maxattr, nl80211_policy);
1643 /* ignore parse errors for backward compatibility */
1647 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
1648 if (tb[NL80211_ATTR_WIPHY])
1649 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
1650 if (tb[NL80211_ATTR_WDEV])
1651 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
1652 if (tb[NL80211_ATTR_IFINDEX]) {
1653 struct net_device *netdev;
1654 struct cfg80211_registered_device *rdev;
1655 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
1657 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
1660 if (netdev->ieee80211_ptr) {
1661 rdev = wiphy_to_dev(
1662 netdev->ieee80211_ptr->wiphy);
1663 state->filter_wiphy = rdev->wiphy_idx;
1670 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
1673 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
1674 struct cfg80211_registered_device *dev;
1678 state = kzalloc(sizeof(*state), GFP_KERNEL);
1683 state->filter_wiphy = -1;
1684 ret = nl80211_dump_wiphy_parse(skb, cb, state);
1690 cb->args[0] = (long)state;
1693 list_for_each_entry(dev, &cfg80211_rdev_list, list) {
1694 if (!net_eq(wiphy_net(&dev->wiphy), sock_net(skb->sk)))
1696 if (++idx <= state->start)
1698 if (state->filter_wiphy != -1 &&
1699 state->filter_wiphy != dev->wiphy_idx)
1701 /* attempt to fit multiple wiphy data chunks into the skb */
1703 ret = nl80211_send_wiphy(dev, skb,
1704 NETLINK_CB(cb->skb).portid,
1706 NLM_F_MULTI, state);
1709 * If sending the wiphy data didn't fit (ENOBUFS
1710 * or EMSGSIZE returned), this SKB is still
1711 * empty (so it's not too big because another
1712 * wiphy dataset is already in the skb) and
1713 * we've not tried to adjust the dump allocation
1714 * yet ... then adjust the alloc size to be
1715 * bigger, and return 1 but with the empty skb.
1716 * This results in an empty message being RX'ed
1717 * in userspace, but that is ignored.
1719 * We can then retry with the larger buffer.
1721 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
1722 !skb->len && !state->split &&
1723 cb->min_dump_alloc < 4096) {
1724 cb->min_dump_alloc = 4096;
1725 state->split_start = 0;
1732 } while (state->split_start > 0);
1742 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
1744 kfree((void *)cb->args[0]);
1748 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
1750 struct sk_buff *msg;
1751 struct cfg80211_registered_device *dev = info->user_ptr[0];
1752 struct nl80211_dump_wiphy_state state = {};
1754 msg = nlmsg_new(4096, GFP_KERNEL);
1758 if (nl80211_send_wiphy(dev, msg, info->snd_portid, info->snd_seq, 0,
1764 return genlmsg_reply(msg, info);
1767 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
1768 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
1769 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
1770 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
1771 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
1772 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
1775 static int parse_txq_params(struct nlattr *tb[],
1776 struct ieee80211_txq_params *txq_params)
1778 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
1779 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
1780 !tb[NL80211_TXQ_ATTR_AIFS])
1783 txq_params->ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
1784 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
1785 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
1786 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
1787 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
1789 if (txq_params->ac >= NL80211_NUM_ACS)
1795 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
1798 * You can only set the channel explicitly for WDS interfaces,
1799 * all others have their channel managed via their respective
1800 * "establish a connection" command (connect, join, ...)
1802 * For AP/GO and mesh mode, the channel can be set with the
1803 * channel userspace API, but is only stored and passed to the
1804 * low-level driver when the AP starts or the mesh is joined.
1805 * This is for backward compatibility, userspace can also give
1806 * the channel in the start-ap or join-mesh commands instead.
1808 * Monitors are special as they are normally slaved to
1809 * whatever else is going on, so they have their own special
1810 * operation to set the monitor channel if possible.
1813 wdev->iftype == NL80211_IFTYPE_AP ||
1814 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
1815 wdev->iftype == NL80211_IFTYPE_MONITOR ||
1816 wdev->iftype == NL80211_IFTYPE_P2P_GO;
1819 static int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
1820 struct genl_info *info,
1821 struct cfg80211_chan_def *chandef)
1825 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
1828 control_freq = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]);
1830 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
1831 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
1832 chandef->center_freq1 = control_freq;
1833 chandef->center_freq2 = 0;
1835 /* Primary channel not allowed */
1836 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED)
1839 if (info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
1840 enum nl80211_channel_type chantype;
1842 chantype = nla_get_u32(
1843 info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
1846 case NL80211_CHAN_NO_HT:
1847 case NL80211_CHAN_HT20:
1848 case NL80211_CHAN_HT40PLUS:
1849 case NL80211_CHAN_HT40MINUS:
1850 cfg80211_chandef_create(chandef, chandef->chan,
1856 } else if (info->attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
1858 nla_get_u32(info->attrs[NL80211_ATTR_CHANNEL_WIDTH]);
1859 if (info->attrs[NL80211_ATTR_CENTER_FREQ1])
1860 chandef->center_freq1 =
1862 info->attrs[NL80211_ATTR_CENTER_FREQ1]);
1863 if (info->attrs[NL80211_ATTR_CENTER_FREQ2])
1864 chandef->center_freq2 =
1866 info->attrs[NL80211_ATTR_CENTER_FREQ2]);
1869 if (!cfg80211_chandef_valid(chandef))
1872 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
1873 IEEE80211_CHAN_DISABLED))
1876 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
1877 chandef->width == NL80211_CHAN_WIDTH_10) &&
1878 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ))
1884 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
1885 struct wireless_dev *wdev,
1886 struct genl_info *info)
1888 struct cfg80211_chan_def chandef;
1890 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
1893 iftype = wdev->iftype;
1895 if (!nl80211_can_set_dev_channel(wdev))
1898 result = nl80211_parse_chandef(rdev, info, &chandef);
1903 case NL80211_IFTYPE_AP:
1904 case NL80211_IFTYPE_P2P_GO:
1905 if (wdev->beacon_interval) {
1909 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &chandef)) {
1913 wdev->preset_chandef = chandef;
1916 case NL80211_IFTYPE_MESH_POINT:
1917 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
1919 case NL80211_IFTYPE_MONITOR:
1920 result = cfg80211_set_monitor_channel(rdev, &chandef);
1929 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
1931 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1932 struct net_device *netdev = info->user_ptr[1];
1934 return __nl80211_set_channel(rdev, netdev->ieee80211_ptr, info);
1937 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
1939 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1940 struct net_device *dev = info->user_ptr[1];
1941 struct wireless_dev *wdev = dev->ieee80211_ptr;
1944 if (!info->attrs[NL80211_ATTR_MAC])
1947 if (netif_running(dev))
1950 if (!rdev->ops->set_wds_peer)
1953 if (wdev->iftype != NL80211_IFTYPE_WDS)
1956 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
1957 return rdev_set_wds_peer(rdev, dev, bssid);
1961 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
1963 struct cfg80211_registered_device *rdev;
1964 struct net_device *netdev = NULL;
1965 struct wireless_dev *wdev;
1966 int result = 0, rem_txq_params = 0;
1967 struct nlattr *nl_txq_params;
1969 u8 retry_short = 0, retry_long = 0;
1970 u32 frag_threshold = 0, rts_threshold = 0;
1971 u8 coverage_class = 0;
1976 * Try to find the wiphy and netdev. Normally this
1977 * function shouldn't need the netdev, but this is
1978 * done for backward compatibility -- previously
1979 * setting the channel was done per wiphy, but now
1980 * it is per netdev. Previous userland like hostapd
1981 * also passed a netdev to set_wiphy, so that it is
1982 * possible to let that go to the right netdev!
1985 if (info->attrs[NL80211_ATTR_IFINDEX]) {
1986 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
1988 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
1989 if (netdev && netdev->ieee80211_ptr)
1990 rdev = wiphy_to_dev(netdev->ieee80211_ptr->wiphy);
1996 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
1999 return PTR_ERR(rdev);
2004 wdev = netdev->ieee80211_ptr;
2007 * end workaround code, by now the rdev is available
2008 * and locked, and wdev may or may not be NULL.
2011 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2012 result = cfg80211_dev_rename(
2013 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2018 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2019 struct ieee80211_txq_params txq_params;
2020 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2022 if (!rdev->ops->set_txq_params)
2028 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2029 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2032 if (!netif_running(netdev))
2035 nla_for_each_nested(nl_txq_params,
2036 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2038 nla_parse(tb, NL80211_TXQ_ATTR_MAX,
2039 nla_data(nl_txq_params),
2040 nla_len(nl_txq_params),
2042 result = parse_txq_params(tb, &txq_params);
2046 result = rdev_set_txq_params(rdev, netdev,
2053 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2054 result = __nl80211_set_channel(rdev,
2055 nl80211_can_set_dev_channel(wdev) ? wdev : NULL,
2061 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2062 struct wireless_dev *txp_wdev = wdev;
2063 enum nl80211_tx_power_setting type;
2066 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2069 if (!rdev->ops->set_tx_power)
2072 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2073 type = nla_get_u32(info->attrs[idx]);
2075 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2076 (type != NL80211_TX_POWER_AUTOMATIC))
2079 if (type != NL80211_TX_POWER_AUTOMATIC) {
2080 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2081 mbm = nla_get_u32(info->attrs[idx]);
2084 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2089 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2090 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2092 if ((!rdev->wiphy.available_antennas_tx &&
2093 !rdev->wiphy.available_antennas_rx) ||
2094 !rdev->ops->set_antenna)
2097 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2098 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2100 /* reject antenna configurations which don't match the
2101 * available antenna masks, except for the "all" mask */
2102 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2103 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2106 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2107 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2109 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2116 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2117 retry_short = nla_get_u8(
2118 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2119 if (retry_short == 0)
2122 changed |= WIPHY_PARAM_RETRY_SHORT;
2125 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2126 retry_long = nla_get_u8(
2127 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2128 if (retry_long == 0)
2131 changed |= WIPHY_PARAM_RETRY_LONG;
2134 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2135 frag_threshold = nla_get_u32(
2136 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2137 if (frag_threshold < 256)
2140 if (frag_threshold != (u32) -1) {
2142 * Fragments (apart from the last one) are required to
2143 * have even length. Make the fragmentation code
2144 * simpler by stripping LSB should someone try to use
2145 * odd threshold value.
2147 frag_threshold &= ~0x1;
2149 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2152 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2153 rts_threshold = nla_get_u32(
2154 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2155 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2158 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2159 coverage_class = nla_get_u8(
2160 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2161 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2165 u8 old_retry_short, old_retry_long;
2166 u32 old_frag_threshold, old_rts_threshold;
2167 u8 old_coverage_class;
2169 if (!rdev->ops->set_wiphy_params)
2172 old_retry_short = rdev->wiphy.retry_short;
2173 old_retry_long = rdev->wiphy.retry_long;
2174 old_frag_threshold = rdev->wiphy.frag_threshold;
2175 old_rts_threshold = rdev->wiphy.rts_threshold;
2176 old_coverage_class = rdev->wiphy.coverage_class;
2178 if (changed & WIPHY_PARAM_RETRY_SHORT)
2179 rdev->wiphy.retry_short = retry_short;
2180 if (changed & WIPHY_PARAM_RETRY_LONG)
2181 rdev->wiphy.retry_long = retry_long;
2182 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2183 rdev->wiphy.frag_threshold = frag_threshold;
2184 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2185 rdev->wiphy.rts_threshold = rts_threshold;
2186 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2187 rdev->wiphy.coverage_class = coverage_class;
2189 result = rdev_set_wiphy_params(rdev, changed);
2191 rdev->wiphy.retry_short = old_retry_short;
2192 rdev->wiphy.retry_long = old_retry_long;
2193 rdev->wiphy.frag_threshold = old_frag_threshold;
2194 rdev->wiphy.rts_threshold = old_rts_threshold;
2195 rdev->wiphy.coverage_class = old_coverage_class;
2201 static inline u64 wdev_id(struct wireless_dev *wdev)
2203 return (u64)wdev->identifier |
2204 ((u64)wiphy_to_dev(wdev->wiphy)->wiphy_idx << 32);
2207 static int nl80211_send_chandef(struct sk_buff *msg,
2208 const struct cfg80211_chan_def *chandef)
2210 WARN_ON(!cfg80211_chandef_valid(chandef));
2212 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2213 chandef->chan->center_freq))
2215 switch (chandef->width) {
2216 case NL80211_CHAN_WIDTH_20_NOHT:
2217 case NL80211_CHAN_WIDTH_20:
2218 case NL80211_CHAN_WIDTH_40:
2219 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2220 cfg80211_get_chandef_type(chandef)))
2226 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2228 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2230 if (chandef->center_freq2 &&
2231 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2236 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2237 struct cfg80211_registered_device *rdev,
2238 struct wireless_dev *wdev)
2240 struct net_device *dev = wdev->netdev;
2243 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_INTERFACE);
2248 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2249 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
2250 goto nla_put_failure;
2252 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
2253 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
2254 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
2255 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
2256 nla_put_u32(msg, NL80211_ATTR_GENERATION,
2257 rdev->devlist_generation ^
2258 (cfg80211_rdev_list_generation << 2)))
2259 goto nla_put_failure;
2261 if (rdev->ops->get_channel) {
2263 struct cfg80211_chan_def chandef;
2265 ret = rdev_get_channel(rdev, wdev, &chandef);
2267 if (nl80211_send_chandef(msg, &chandef))
2268 goto nla_put_failure;
2272 if (wdev->ssid_len) {
2273 if (nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
2274 goto nla_put_failure;
2277 return genlmsg_end(msg, hdr);
2280 genlmsg_cancel(msg, hdr);
2284 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
2288 int wp_start = cb->args[0];
2289 int if_start = cb->args[1];
2290 struct cfg80211_registered_device *rdev;
2291 struct wireless_dev *wdev;
2294 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2295 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2297 if (wp_idx < wp_start) {
2303 list_for_each_entry(wdev, &rdev->wdev_list, list) {
2304 if (if_idx < if_start) {
2308 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
2309 cb->nlh->nlmsg_seq, NLM_F_MULTI,
2321 cb->args[0] = wp_idx;
2322 cb->args[1] = if_idx;
2327 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
2329 struct sk_buff *msg;
2330 struct cfg80211_registered_device *dev = info->user_ptr[0];
2331 struct wireless_dev *wdev = info->user_ptr[1];
2333 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2337 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2343 return genlmsg_reply(msg, info);
2346 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
2347 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
2348 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
2349 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
2350 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
2351 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
2352 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
2355 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
2357 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
2365 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX,
2366 nla, mntr_flags_policy))
2369 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
2371 *mntrflags |= (1<<flag);
2376 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
2377 struct net_device *netdev, u8 use_4addr,
2378 enum nl80211_iftype iftype)
2381 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
2387 case NL80211_IFTYPE_AP_VLAN:
2388 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
2391 case NL80211_IFTYPE_STATION:
2392 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
2402 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
2404 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2405 struct vif_params params;
2407 enum nl80211_iftype otype, ntype;
2408 struct net_device *dev = info->user_ptr[1];
2409 u32 _flags, *flags = NULL;
2410 bool change = false;
2412 memset(¶ms, 0, sizeof(params));
2414 otype = ntype = dev->ieee80211_ptr->iftype;
2416 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2417 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2420 if (ntype > NL80211_IFTYPE_MAX)
2424 if (info->attrs[NL80211_ATTR_MESH_ID]) {
2425 struct wireless_dev *wdev = dev->ieee80211_ptr;
2427 if (ntype != NL80211_IFTYPE_MESH_POINT)
2429 if (netif_running(dev))
2433 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2434 IEEE80211_MAX_MESH_ID_LEN);
2435 wdev->mesh_id_up_len =
2436 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2437 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2438 wdev->mesh_id_up_len);
2442 if (info->attrs[NL80211_ATTR_4ADDR]) {
2443 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2445 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
2449 params.use_4addr = -1;
2452 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
2453 if (ntype != NL80211_IFTYPE_MONITOR)
2455 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
2464 if (flags && (*flags & MONITOR_FLAG_ACTIVE) &&
2465 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2469 err = cfg80211_change_iface(rdev, dev, ntype, flags, ¶ms);
2473 if (!err && params.use_4addr != -1)
2474 dev->ieee80211_ptr->use_4addr = params.use_4addr;
2479 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
2481 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2482 struct vif_params params;
2483 struct wireless_dev *wdev;
2484 struct sk_buff *msg;
2486 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
2489 memset(¶ms, 0, sizeof(params));
2491 if (!info->attrs[NL80211_ATTR_IFNAME])
2494 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2495 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2496 if (type > NL80211_IFTYPE_MAX)
2500 if (!rdev->ops->add_virtual_intf ||
2501 !(rdev->wiphy.interface_modes & (1 << type)))
2504 if (type == NL80211_IFTYPE_P2P_DEVICE && info->attrs[NL80211_ATTR_MAC]) {
2505 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
2507 if (!is_valid_ether_addr(params.macaddr))
2508 return -EADDRNOTAVAIL;
2511 if (info->attrs[NL80211_ATTR_4ADDR]) {
2512 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2513 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
2518 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2522 err = parse_monitor_flags(type == NL80211_IFTYPE_MONITOR ?
2523 info->attrs[NL80211_ATTR_MNTR_FLAGS] : NULL,
2526 if (!err && (flags & MONITOR_FLAG_ACTIVE) &&
2527 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2530 wdev = rdev_add_virtual_intf(rdev,
2531 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
2532 type, err ? NULL : &flags, ¶ms);
2535 return PTR_ERR(wdev);
2539 case NL80211_IFTYPE_MESH_POINT:
2540 if (!info->attrs[NL80211_ATTR_MESH_ID])
2543 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2544 IEEE80211_MAX_MESH_ID_LEN);
2545 wdev->mesh_id_up_len =
2546 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2547 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2548 wdev->mesh_id_up_len);
2551 case NL80211_IFTYPE_P2P_DEVICE:
2553 * P2P Device doesn't have a netdev, so doesn't go
2554 * through the netdev notifier and must be added here
2556 mutex_init(&wdev->mtx);
2557 INIT_LIST_HEAD(&wdev->event_list);
2558 spin_lock_init(&wdev->event_lock);
2559 INIT_LIST_HEAD(&wdev->mgmt_registrations);
2560 spin_lock_init(&wdev->mgmt_registrations_lock);
2562 wdev->identifier = ++rdev->wdev_id;
2563 list_add_rcu(&wdev->list, &rdev->wdev_list);
2564 rdev->devlist_generation++;
2570 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2576 return genlmsg_reply(msg, info);
2579 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
2581 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2582 struct wireless_dev *wdev = info->user_ptr[1];
2584 if (!rdev->ops->del_virtual_intf)
2588 * If we remove a wireless device without a netdev then clear
2589 * user_ptr[1] so that nl80211_post_doit won't dereference it
2590 * to check if it needs to do dev_put(). Otherwise it crashes
2591 * since the wdev has been freed, unlike with a netdev where
2592 * we need the dev_put() for the netdev to really be freed.
2595 info->user_ptr[1] = NULL;
2597 return rdev_del_virtual_intf(rdev, wdev);
2600 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
2602 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2603 struct net_device *dev = info->user_ptr[1];
2606 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
2609 if (!rdev->ops->set_noack_map)
2612 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
2614 return rdev_set_noack_map(rdev, dev, noack_map);
2617 struct get_key_cookie {
2618 struct sk_buff *msg;
2623 static void get_key_callback(void *c, struct key_params *params)
2626 struct get_key_cookie *cookie = c;
2629 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
2630 params->key_len, params->key)) ||
2632 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
2633 params->seq_len, params->seq)) ||
2635 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
2637 goto nla_put_failure;
2639 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
2641 goto nla_put_failure;
2644 nla_put(cookie->msg, NL80211_KEY_DATA,
2645 params->key_len, params->key)) ||
2647 nla_put(cookie->msg, NL80211_KEY_SEQ,
2648 params->seq_len, params->seq)) ||
2650 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
2652 goto nla_put_failure;
2654 if (nla_put_u8(cookie->msg, NL80211_ATTR_KEY_IDX, cookie->idx))
2655 goto nla_put_failure;
2657 nla_nest_end(cookie->msg, key);
2664 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
2666 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2668 struct net_device *dev = info->user_ptr[1];
2670 const u8 *mac_addr = NULL;
2672 struct get_key_cookie cookie = {
2676 struct sk_buff *msg;
2678 if (info->attrs[NL80211_ATTR_KEY_IDX])
2679 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
2684 if (info->attrs[NL80211_ATTR_MAC])
2685 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2687 pairwise = !!mac_addr;
2688 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
2689 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
2690 if (kt >= NUM_NL80211_KEYTYPES)
2692 if (kt != NL80211_KEYTYPE_GROUP &&
2693 kt != NL80211_KEYTYPE_PAIRWISE)
2695 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
2698 if (!rdev->ops->get_key)
2701 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2705 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
2706 NL80211_CMD_NEW_KEY);
2708 goto nla_put_failure;
2711 cookie.idx = key_idx;
2713 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2714 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
2715 goto nla_put_failure;
2717 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
2718 goto nla_put_failure;
2720 if (pairwise && mac_addr &&
2721 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2724 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
2731 goto nla_put_failure;
2733 genlmsg_end(msg, hdr);
2734 return genlmsg_reply(msg, info);
2743 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
2745 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2746 struct key_parse key;
2748 struct net_device *dev = info->user_ptr[1];
2750 err = nl80211_parse_key(info, &key);
2757 /* only support setting default key */
2758 if (!key.def && !key.defmgmt)
2761 wdev_lock(dev->ieee80211_ptr);
2764 if (!rdev->ops->set_default_key) {
2769 err = nl80211_key_allowed(dev->ieee80211_ptr);
2773 err = rdev_set_default_key(rdev, dev, key.idx,
2774 key.def_uni, key.def_multi);
2779 #ifdef CONFIG_CFG80211_WEXT
2780 dev->ieee80211_ptr->wext.default_key = key.idx;
2783 if (key.def_uni || !key.def_multi) {
2788 if (!rdev->ops->set_default_mgmt_key) {
2793 err = nl80211_key_allowed(dev->ieee80211_ptr);
2797 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
2801 #ifdef CONFIG_CFG80211_WEXT
2802 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
2807 wdev_unlock(dev->ieee80211_ptr);
2812 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
2814 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2816 struct net_device *dev = info->user_ptr[1];
2817 struct key_parse key;
2818 const u8 *mac_addr = NULL;
2820 err = nl80211_parse_key(info, &key);
2827 if (info->attrs[NL80211_ATTR_MAC])
2828 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2830 if (key.type == -1) {
2832 key.type = NL80211_KEYTYPE_PAIRWISE;
2834 key.type = NL80211_KEYTYPE_GROUP;
2838 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
2839 key.type != NL80211_KEYTYPE_GROUP)
2842 if (!rdev->ops->add_key)
2845 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
2846 key.type == NL80211_KEYTYPE_PAIRWISE,
2850 wdev_lock(dev->ieee80211_ptr);
2851 err = nl80211_key_allowed(dev->ieee80211_ptr);
2853 err = rdev_add_key(rdev, dev, key.idx,
2854 key.type == NL80211_KEYTYPE_PAIRWISE,
2856 wdev_unlock(dev->ieee80211_ptr);
2861 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
2863 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2865 struct net_device *dev = info->user_ptr[1];
2866 u8 *mac_addr = NULL;
2867 struct key_parse key;
2869 err = nl80211_parse_key(info, &key);
2873 if (info->attrs[NL80211_ATTR_MAC])
2874 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2876 if (key.type == -1) {
2878 key.type = NL80211_KEYTYPE_PAIRWISE;
2880 key.type = NL80211_KEYTYPE_GROUP;
2884 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
2885 key.type != NL80211_KEYTYPE_GROUP)
2888 if (!rdev->ops->del_key)
2891 wdev_lock(dev->ieee80211_ptr);
2892 err = nl80211_key_allowed(dev->ieee80211_ptr);
2894 if (key.type == NL80211_KEYTYPE_PAIRWISE && mac_addr &&
2895 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2899 err = rdev_del_key(rdev, dev, key.idx,
2900 key.type == NL80211_KEYTYPE_PAIRWISE,
2903 #ifdef CONFIG_CFG80211_WEXT
2905 if (key.idx == dev->ieee80211_ptr->wext.default_key)
2906 dev->ieee80211_ptr->wext.default_key = -1;
2907 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
2908 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
2911 wdev_unlock(dev->ieee80211_ptr);
2916 /* This function returns an error or the number of nested attributes */
2917 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
2919 struct nlattr *attr;
2920 int n_entries = 0, tmp;
2922 nla_for_each_nested(attr, nl_attr, tmp) {
2923 if (nla_len(attr) != ETH_ALEN)
2933 * This function parses ACL information and allocates memory for ACL data.
2934 * On successful return, the calling function is responsible to free the
2935 * ACL buffer returned by this function.
2937 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
2938 struct genl_info *info)
2940 enum nl80211_acl_policy acl_policy;
2941 struct nlattr *attr;
2942 struct cfg80211_acl_data *acl;
2943 int i = 0, n_entries, tmp;
2945 if (!wiphy->max_acl_mac_addrs)
2946 return ERR_PTR(-EOPNOTSUPP);
2948 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
2949 return ERR_PTR(-EINVAL);
2951 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
2952 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
2953 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
2954 return ERR_PTR(-EINVAL);
2956 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
2957 return ERR_PTR(-EINVAL);
2959 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
2961 return ERR_PTR(n_entries);
2963 if (n_entries > wiphy->max_acl_mac_addrs)
2964 return ERR_PTR(-ENOTSUPP);
2966 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
2969 return ERR_PTR(-ENOMEM);
2971 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
2972 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
2976 acl->n_acl_entries = n_entries;
2977 acl->acl_policy = acl_policy;
2982 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
2984 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2985 struct net_device *dev = info->user_ptr[1];
2986 struct cfg80211_acl_data *acl;
2989 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2990 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2993 if (!dev->ieee80211_ptr->beacon_interval)
2996 acl = parse_acl_data(&rdev->wiphy, info);
2998 return PTR_ERR(acl);
3000 err = rdev_set_mac_acl(rdev, dev, acl);
3007 static int nl80211_parse_beacon(struct nlattr *attrs[],
3008 struct cfg80211_beacon_data *bcn)
3010 bool haveinfo = false;
3012 if (!is_valid_ie_attr(attrs[NL80211_ATTR_BEACON_TAIL]) ||
3013 !is_valid_ie_attr(attrs[NL80211_ATTR_IE]) ||
3014 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_PROBE_RESP]) ||
3015 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_ASSOC_RESP]))
3018 memset(bcn, 0, sizeof(*bcn));
3020 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
3021 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
3022 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
3028 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
3029 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
3030 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
3037 if (attrs[NL80211_ATTR_IE]) {
3038 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
3039 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
3042 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
3043 bcn->proberesp_ies =
3044 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3045 bcn->proberesp_ies_len =
3046 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3049 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
3050 bcn->assocresp_ies =
3051 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3052 bcn->assocresp_ies_len =
3053 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3056 if (attrs[NL80211_ATTR_PROBE_RESP]) {
3057 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
3058 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
3064 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
3065 struct cfg80211_ap_settings *params)
3067 struct wireless_dev *wdev;
3070 list_for_each_entry(wdev, &rdev->wdev_list, list) {
3071 if (wdev->iftype != NL80211_IFTYPE_AP &&
3072 wdev->iftype != NL80211_IFTYPE_P2P_GO)
3075 if (!wdev->preset_chandef.chan)
3078 params->chandef = wdev->preset_chandef;
3086 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
3087 enum nl80211_auth_type auth_type,
3088 enum nl80211_commands cmd)
3090 if (auth_type > NL80211_AUTHTYPE_MAX)
3094 case NL80211_CMD_AUTHENTICATE:
3095 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
3096 auth_type == NL80211_AUTHTYPE_SAE)
3099 case NL80211_CMD_CONNECT:
3100 case NL80211_CMD_START_AP:
3101 /* SAE not supported yet */
3102 if (auth_type == NL80211_AUTHTYPE_SAE)
3110 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
3112 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3113 struct net_device *dev = info->user_ptr[1];
3114 struct wireless_dev *wdev = dev->ieee80211_ptr;
3115 struct cfg80211_ap_settings params;
3117 u8 radar_detect_width = 0;
3119 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3120 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3123 if (!rdev->ops->start_ap)
3126 if (wdev->beacon_interval)
3129 memset(¶ms, 0, sizeof(params));
3131 /* these are required for START_AP */
3132 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
3133 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
3134 !info->attrs[NL80211_ATTR_BEACON_HEAD])
3137 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon);
3141 params.beacon_interval =
3142 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
3143 params.dtim_period =
3144 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
3146 err = cfg80211_validate_beacon_int(rdev, params.beacon_interval);
3151 * In theory, some of these attributes should be required here
3152 * but since they were not used when the command was originally
3153 * added, keep them optional for old user space programs to let
3154 * them continue to work with drivers that do not need the
3155 * additional information -- drivers must check!
3157 if (info->attrs[NL80211_ATTR_SSID]) {
3158 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
3160 nla_len(info->attrs[NL80211_ATTR_SSID]);
3161 if (params.ssid_len == 0 ||
3162 params.ssid_len > IEEE80211_MAX_SSID_LEN)
3166 if (info->attrs[NL80211_ATTR_HIDDEN_SSID]) {
3167 params.hidden_ssid = nla_get_u32(
3168 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
3169 if (params.hidden_ssid != NL80211_HIDDEN_SSID_NOT_IN_USE &&
3170 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_LEN &&
3171 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_CONTENTS)
3175 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
3177 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
3178 params.auth_type = nla_get_u32(
3179 info->attrs[NL80211_ATTR_AUTH_TYPE]);
3180 if (!nl80211_valid_auth_type(rdev, params.auth_type,
3181 NL80211_CMD_START_AP))
3184 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
3186 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
3187 NL80211_MAX_NR_CIPHER_SUITES);
3191 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
3192 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
3194 params.inactivity_timeout = nla_get_u16(
3195 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
3198 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
3199 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3201 params.p2p_ctwindow =
3202 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
3203 if (params.p2p_ctwindow > 127)
3205 if (params.p2p_ctwindow != 0 &&
3206 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
3210 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
3213 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3215 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
3218 params.p2p_opp_ps = tmp;
3219 if (params.p2p_opp_ps != 0 &&
3220 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
3224 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
3225 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
3228 } else if (wdev->preset_chandef.chan) {
3229 params.chandef = wdev->preset_chandef;
3230 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
3233 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef))
3236 err = cfg80211_chandef_dfs_required(wdev->wiphy, ¶ms.chandef);
3240 radar_detect_width = BIT(params.chandef.width);
3241 params.radar_required = true;
3244 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
3245 params.chandef.chan,
3247 radar_detect_width);
3251 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
3252 params.acl = parse_acl_data(&rdev->wiphy, info);
3253 if (IS_ERR(params.acl))
3254 return PTR_ERR(params.acl);
3258 err = rdev_start_ap(rdev, dev, ¶ms);
3260 wdev->preset_chandef = params.chandef;
3261 wdev->beacon_interval = params.beacon_interval;
3262 wdev->channel = params.chandef.chan;
3263 wdev->ssid_len = params.ssid_len;
3264 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
3273 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
3275 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3276 struct net_device *dev = info->user_ptr[1];
3277 struct wireless_dev *wdev = dev->ieee80211_ptr;
3278 struct cfg80211_beacon_data params;
3281 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3282 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3285 if (!rdev->ops->change_beacon)
3288 if (!wdev->beacon_interval)
3291 err = nl80211_parse_beacon(info->attrs, ¶ms);
3296 err = rdev_change_beacon(rdev, dev, ¶ms);
3302 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
3304 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3305 struct net_device *dev = info->user_ptr[1];
3307 return cfg80211_stop_ap(rdev, dev);
3310 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
3311 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
3312 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
3313 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
3314 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
3315 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
3316 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
3319 static int parse_station_flags(struct genl_info *info,
3320 enum nl80211_iftype iftype,
3321 struct station_parameters *params)
3323 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
3328 * Try parsing the new attribute first so userspace
3329 * can specify both for older kernels.
3331 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
3333 struct nl80211_sta_flag_update *sta_flags;
3335 sta_flags = nla_data(nla);
3336 params->sta_flags_mask = sta_flags->mask;
3337 params->sta_flags_set = sta_flags->set;
3338 params->sta_flags_set &= params->sta_flags_mask;
3339 if ((params->sta_flags_mask |
3340 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
3345 /* if present, parse the old attribute */
3347 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
3351 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX,
3352 nla, sta_flags_policy))
3356 * Only allow certain flags for interface types so that
3357 * other attributes are silently ignored. Remember that
3358 * this is backward compatibility code with old userspace
3359 * and shouldn't be hit in other cases anyway.
3362 case NL80211_IFTYPE_AP:
3363 case NL80211_IFTYPE_AP_VLAN:
3364 case NL80211_IFTYPE_P2P_GO:
3365 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3366 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3367 BIT(NL80211_STA_FLAG_WME) |
3368 BIT(NL80211_STA_FLAG_MFP);
3370 case NL80211_IFTYPE_P2P_CLIENT:
3371 case NL80211_IFTYPE_STATION:
3372 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3373 BIT(NL80211_STA_FLAG_TDLS_PEER);
3375 case NL80211_IFTYPE_MESH_POINT:
3376 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3377 BIT(NL80211_STA_FLAG_MFP) |
3378 BIT(NL80211_STA_FLAG_AUTHORIZED);
3383 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
3385 params->sta_flags_set |= (1<<flag);
3387 /* no longer support new API additions in old API */
3388 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
3396 static bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info,
3399 struct nlattr *rate;
3403 rate = nla_nest_start(msg, attr);
3407 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
3408 bitrate = cfg80211_calculate_bitrate(info);
3409 /* report 16-bit bitrate only if we can */
3410 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
3412 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
3414 if (bitrate_compat > 0 &&
3415 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
3418 if (info->flags & RATE_INFO_FLAGS_MCS) {
3419 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
3421 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3422 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3424 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3425 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3427 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
3428 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
3430 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
3432 if (info->flags & RATE_INFO_FLAGS_40_MHZ_WIDTH &&
3433 nla_put_flag(msg, NL80211_RATE_INFO_40_MHZ_WIDTH))
3435 if (info->flags & RATE_INFO_FLAGS_80_MHZ_WIDTH &&
3436 nla_put_flag(msg, NL80211_RATE_INFO_80_MHZ_WIDTH))
3438 if (info->flags & RATE_INFO_FLAGS_80P80_MHZ_WIDTH &&
3439 nla_put_flag(msg, NL80211_RATE_INFO_80P80_MHZ_WIDTH))
3441 if (info->flags & RATE_INFO_FLAGS_160_MHZ_WIDTH &&
3442 nla_put_flag(msg, NL80211_RATE_INFO_160_MHZ_WIDTH))
3444 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3445 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3449 nla_nest_end(msg, rate);
3453 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
3462 attr = nla_nest_start(msg, id);
3466 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
3467 if (!(mask & BIT(i)))
3470 if (nla_put_u8(msg, i, signal[i]))
3474 nla_nest_end(msg, attr);
3479 static int nl80211_send_station(struct sk_buff *msg, u32 portid, u32 seq,
3481 struct cfg80211_registered_device *rdev,
3482 struct net_device *dev,
3483 const u8 *mac_addr, struct station_info *sinfo)
3486 struct nlattr *sinfoattr, *bss_param;
3488 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_STATION);
3492 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3493 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
3494 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
3495 goto nla_put_failure;
3497 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
3499 goto nla_put_failure;
3500 if ((sinfo->filled & STATION_INFO_CONNECTED_TIME) &&
3501 nla_put_u32(msg, NL80211_STA_INFO_CONNECTED_TIME,
3502 sinfo->connected_time))
3503 goto nla_put_failure;
3504 if ((sinfo->filled & STATION_INFO_INACTIVE_TIME) &&
3505 nla_put_u32(msg, NL80211_STA_INFO_INACTIVE_TIME,
3506 sinfo->inactive_time))
3507 goto nla_put_failure;
3508 if ((sinfo->filled & (STATION_INFO_RX_BYTES |
3509 STATION_INFO_RX_BYTES64)) &&
3510 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
3511 (u32)sinfo->rx_bytes))
3512 goto nla_put_failure;
3513 if ((sinfo->filled & (STATION_INFO_TX_BYTES |
3514 STATION_INFO_TX_BYTES64)) &&
3515 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
3516 (u32)sinfo->tx_bytes))
3517 goto nla_put_failure;
3518 if ((sinfo->filled & STATION_INFO_RX_BYTES64) &&
3519 nla_put_u64(msg, NL80211_STA_INFO_RX_BYTES64,
3521 goto nla_put_failure;
3522 if ((sinfo->filled & STATION_INFO_TX_BYTES64) &&
3523 nla_put_u64(msg, NL80211_STA_INFO_TX_BYTES64,
3525 goto nla_put_failure;
3526 if ((sinfo->filled & STATION_INFO_LLID) &&
3527 nla_put_u16(msg, NL80211_STA_INFO_LLID, sinfo->llid))
3528 goto nla_put_failure;
3529 if ((sinfo->filled & STATION_INFO_PLID) &&
3530 nla_put_u16(msg, NL80211_STA_INFO_PLID, sinfo->plid))
3531 goto nla_put_failure;
3532 if ((sinfo->filled & STATION_INFO_PLINK_STATE) &&
3533 nla_put_u8(msg, NL80211_STA_INFO_PLINK_STATE,
3534 sinfo->plink_state))
3535 goto nla_put_failure;
3536 switch (rdev->wiphy.signal_type) {
3537 case CFG80211_SIGNAL_TYPE_MBM:
3538 if ((sinfo->filled & STATION_INFO_SIGNAL) &&
3539 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL,
3541 goto nla_put_failure;
3542 if ((sinfo->filled & STATION_INFO_SIGNAL_AVG) &&
3543 nla_put_u8(msg, NL80211_STA_INFO_SIGNAL_AVG,
3545 goto nla_put_failure;
3550 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL) {
3551 if (!nl80211_put_signal(msg, sinfo->chains,
3552 sinfo->chain_signal,
3553 NL80211_STA_INFO_CHAIN_SIGNAL))
3554 goto nla_put_failure;
3556 if (sinfo->filled & STATION_INFO_CHAIN_SIGNAL_AVG) {
3557 if (!nl80211_put_signal(msg, sinfo->chains,
3558 sinfo->chain_signal_avg,
3559 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
3560 goto nla_put_failure;
3562 if (sinfo->filled & STATION_INFO_TX_BITRATE) {
3563 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
3564 NL80211_STA_INFO_TX_BITRATE))
3565 goto nla_put_failure;
3567 if (sinfo->filled & STATION_INFO_RX_BITRATE) {
3568 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
3569 NL80211_STA_INFO_RX_BITRATE))
3570 goto nla_put_failure;
3572 if ((sinfo->filled & STATION_INFO_RX_PACKETS) &&
3573 nla_put_u32(msg, NL80211_STA_INFO_RX_PACKETS,
3575 goto nla_put_failure;
3576 if ((sinfo->filled & STATION_INFO_TX_PACKETS) &&
3577 nla_put_u32(msg, NL80211_STA_INFO_TX_PACKETS,
3579 goto nla_put_failure;
3580 if ((sinfo->filled & STATION_INFO_TX_RETRIES) &&
3581 nla_put_u32(msg, NL80211_STA_INFO_TX_RETRIES,
3583 goto nla_put_failure;
3584 if ((sinfo->filled & STATION_INFO_TX_FAILED) &&
3585 nla_put_u32(msg, NL80211_STA_INFO_TX_FAILED,
3587 goto nla_put_failure;
3588 if ((sinfo->filled & STATION_INFO_BEACON_LOSS_COUNT) &&
3589 nla_put_u32(msg, NL80211_STA_INFO_BEACON_LOSS,
3590 sinfo->beacon_loss_count))
3591 goto nla_put_failure;
3592 if ((sinfo->filled & STATION_INFO_LOCAL_PM) &&
3593 nla_put_u32(msg, NL80211_STA_INFO_LOCAL_PM,
3595 goto nla_put_failure;
3596 if ((sinfo->filled & STATION_INFO_PEER_PM) &&
3597 nla_put_u32(msg, NL80211_STA_INFO_PEER_PM,
3599 goto nla_put_failure;
3600 if ((sinfo->filled & STATION_INFO_NONPEER_PM) &&
3601 nla_put_u32(msg, NL80211_STA_INFO_NONPEER_PM,
3603 goto nla_put_failure;
3604 if (sinfo->filled & STATION_INFO_BSS_PARAM) {
3605 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
3607 goto nla_put_failure;
3609 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
3610 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
3611 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
3612 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
3613 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
3614 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
3615 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
3616 sinfo->bss_param.dtim_period) ||
3617 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
3618 sinfo->bss_param.beacon_interval))
3619 goto nla_put_failure;
3621 nla_nest_end(msg, bss_param);
3623 if ((sinfo->filled & STATION_INFO_STA_FLAGS) &&
3624 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
3625 sizeof(struct nl80211_sta_flag_update),
3627 goto nla_put_failure;
3628 if ((sinfo->filled & STATION_INFO_T_OFFSET) &&
3629 nla_put_u64(msg, NL80211_STA_INFO_T_OFFSET,
3631 goto nla_put_failure;
3632 nla_nest_end(msg, sinfoattr);
3634 if ((sinfo->filled & STATION_INFO_ASSOC_REQ_IES) &&
3635 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
3636 sinfo->assoc_req_ies))
3637 goto nla_put_failure;
3639 return genlmsg_end(msg, hdr);
3642 genlmsg_cancel(msg, hdr);
3646 static int nl80211_dump_station(struct sk_buff *skb,
3647 struct netlink_callback *cb)
3649 struct station_info sinfo;
3650 struct cfg80211_registered_device *dev;
3651 struct wireless_dev *wdev;
3652 u8 mac_addr[ETH_ALEN];
3653 int sta_idx = cb->args[2];
3656 err = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
3660 if (!wdev->netdev) {
3665 if (!dev->ops->dump_station) {
3671 memset(&sinfo, 0, sizeof(sinfo));
3672 err = rdev_dump_station(dev, wdev->netdev, sta_idx,
3679 if (nl80211_send_station(skb,
3680 NETLINK_CB(cb->skb).portid,
3681 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3682 dev, wdev->netdev, mac_addr,
3691 cb->args[2] = sta_idx;
3694 nl80211_finish_wdev_dump(dev);
3699 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
3701 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3702 struct net_device *dev = info->user_ptr[1];
3703 struct station_info sinfo;
3704 struct sk_buff *msg;
3705 u8 *mac_addr = NULL;
3708 memset(&sinfo, 0, sizeof(sinfo));
3710 if (!info->attrs[NL80211_ATTR_MAC])
3713 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3715 if (!rdev->ops->get_station)
3718 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
3722 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3726 if (nl80211_send_station(msg, info->snd_portid, info->snd_seq, 0,
3727 rdev, dev, mac_addr, &sinfo) < 0) {
3732 return genlmsg_reply(msg, info);
3735 int cfg80211_check_station_change(struct wiphy *wiphy,
3736 struct station_parameters *params,
3737 enum cfg80211_station_type statype)
3739 if (params->listen_interval != -1)
3744 /* When you run into this, adjust the code below for the new flag */
3745 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
3748 case CFG80211_STA_MESH_PEER_KERNEL:
3749 case CFG80211_STA_MESH_PEER_USER:
3751 * No ignoring the TDLS flag here -- the userspace mesh
3752 * code doesn't have the bug of including TDLS in the
3755 if (params->sta_flags_mask &
3756 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3757 BIT(NL80211_STA_FLAG_MFP) |
3758 BIT(NL80211_STA_FLAG_AUTHORIZED)))
3761 case CFG80211_STA_TDLS_PEER_SETUP:
3762 case CFG80211_STA_TDLS_PEER_ACTIVE:
3763 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
3765 /* ignore since it can't change */
3766 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3769 /* disallow mesh-specific things */
3770 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3772 if (params->local_pm)
3774 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3778 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
3779 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
3780 /* TDLS can't be set, ... */
3781 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
3784 * ... but don't bother the driver with it. This works around
3785 * a hostapd/wpa_supplicant issue -- it always includes the
3786 * TLDS_PEER flag in the mask even for AP mode.
3788 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3791 if (statype != CFG80211_STA_TDLS_PEER_SETUP) {
3792 /* reject other things that can't change */
3793 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
3795 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
3797 if (params->supported_rates)
3799 if (params->ext_capab || params->ht_capa || params->vht_capa)
3803 if (statype != CFG80211_STA_AP_CLIENT) {
3809 case CFG80211_STA_AP_MLME_CLIENT:
3810 /* Use this only for authorizing/unauthorizing a station */
3811 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
3814 case CFG80211_STA_AP_CLIENT:
3815 /* accept only the listed bits */
3816 if (params->sta_flags_mask &
3817 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
3818 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3819 BIT(NL80211_STA_FLAG_ASSOCIATED) |
3820 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3821 BIT(NL80211_STA_FLAG_WME) |
3822 BIT(NL80211_STA_FLAG_MFP)))
3825 /* but authenticated/associated only if driver handles it */
3826 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
3827 params->sta_flags_mask &
3828 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3829 BIT(NL80211_STA_FLAG_ASSOCIATED)))
3832 case CFG80211_STA_IBSS:
3833 case CFG80211_STA_AP_STA:
3834 /* reject any changes other than AUTHORIZED */
3835 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
3838 case CFG80211_STA_TDLS_PEER_SETUP:
3839 /* reject any changes other than AUTHORIZED or WME */
3840 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
3841 BIT(NL80211_STA_FLAG_WME)))
3843 /* force (at least) rates when authorizing */
3844 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
3845 !params->supported_rates)
3848 case CFG80211_STA_TDLS_PEER_ACTIVE:
3849 /* reject any changes */
3851 case CFG80211_STA_MESH_PEER_KERNEL:
3852 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3855 case CFG80211_STA_MESH_PEER_USER:
3856 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3863 EXPORT_SYMBOL(cfg80211_check_station_change);
3866 * Get vlan interface making sure it is running and on the right wiphy.
3868 static struct net_device *get_vlan(struct genl_info *info,
3869 struct cfg80211_registered_device *rdev)
3871 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
3872 struct net_device *v;
3878 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
3880 return ERR_PTR(-ENODEV);
3882 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
3887 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
3888 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3889 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
3894 if (!netif_running(v)) {
3902 return ERR_PTR(ret);
3905 static struct nla_policy
3906 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] __read_mostly = {
3907 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
3908 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
3911 static int nl80211_parse_sta_wme(struct genl_info *info,
3912 struct station_parameters *params)
3914 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
3918 /* parse WME attributes if present */
3919 if (!info->attrs[NL80211_ATTR_STA_WME])
3922 nla = info->attrs[NL80211_ATTR_STA_WME];
3923 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
3924 nl80211_sta_wme_policy);
3928 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
3929 params->uapsd_queues = nla_get_u8(
3930 tb[NL80211_STA_WME_UAPSD_QUEUES]);
3931 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
3934 if (tb[NL80211_STA_WME_MAX_SP])
3935 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
3937 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
3940 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
3945 static int nl80211_parse_sta_channel_info(struct genl_info *info,
3946 struct station_parameters *params)
3948 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
3949 params->supported_channels =
3950 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
3951 params->supported_channels_len =
3952 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
3954 * Need to include at least one (first channel, number of
3955 * channels) tuple for each subband, and must have proper
3956 * tuples for the rest of the data as well.
3958 if (params->supported_channels_len < 2)
3960 if (params->supported_channels_len % 2)
3964 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
3965 params->supported_oper_classes =
3966 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
3967 params->supported_oper_classes_len =
3968 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
3970 * The value of the Length field of the Supported Operating
3971 * Classes element is between 2 and 253.
3973 if (params->supported_oper_classes_len < 2 ||
3974 params->supported_oper_classes_len > 253)
3980 static int nl80211_set_station_tdls(struct genl_info *info,
3981 struct station_parameters *params)
3984 /* Dummy STA entry gets updated once the peer capabilities are known */
3985 if (info->attrs[NL80211_ATTR_PEER_AID])
3986 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
3987 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
3989 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
3990 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
3992 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
3994 err = nl80211_parse_sta_channel_info(info, params);
3998 return nl80211_parse_sta_wme(info, params);
4001 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
4003 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4004 struct net_device *dev = info->user_ptr[1];
4005 struct station_parameters params;
4009 memset(¶ms, 0, sizeof(params));
4011 params.listen_interval = -1;
4013 if (!rdev->ops->change_station)
4016 if (info->attrs[NL80211_ATTR_STA_AID])
4019 if (!info->attrs[NL80211_ATTR_MAC])
4022 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4024 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
4025 params.supported_rates =
4026 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4027 params.supported_rates_len =
4028 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4031 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4033 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4034 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4037 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4039 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4040 params.ext_capab_len =
4041 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4044 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4047 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4050 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4051 params.plink_action =
4052 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4053 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4057 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
4058 params.plink_state =
4059 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
4060 if (params.plink_state >= NUM_NL80211_PLINK_STATES)
4062 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
4065 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]) {
4066 enum nl80211_mesh_power_mode pm = nla_get_u32(
4067 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
4069 if (pm <= NL80211_MESH_POWER_UNKNOWN ||
4070 pm > NL80211_MESH_POWER_MAX)
4073 params.local_pm = pm;
4076 /* Include parameters for TDLS peer (will check later) */
4077 err = nl80211_set_station_tdls(info, ¶ms);
4081 params.vlan = get_vlan(info, rdev);
4082 if (IS_ERR(params.vlan))
4083 return PTR_ERR(params.vlan);
4085 switch (dev->ieee80211_ptr->iftype) {
4086 case NL80211_IFTYPE_AP:
4087 case NL80211_IFTYPE_AP_VLAN:
4088 case NL80211_IFTYPE_P2P_GO:
4089 case NL80211_IFTYPE_P2P_CLIENT:
4090 case NL80211_IFTYPE_STATION:
4091 case NL80211_IFTYPE_ADHOC:
4092 case NL80211_IFTYPE_MESH_POINT:
4099 /* driver will call cfg80211_check_station_change() */
4100 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
4104 dev_put(params.vlan);
4109 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
4111 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4113 struct net_device *dev = info->user_ptr[1];
4114 struct station_parameters params;
4115 u8 *mac_addr = NULL;
4117 memset(¶ms, 0, sizeof(params));
4119 if (!rdev->ops->add_station)
4122 if (!info->attrs[NL80211_ATTR_MAC])
4125 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4128 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
4131 if (!info->attrs[NL80211_ATTR_STA_AID] &&
4132 !info->attrs[NL80211_ATTR_PEER_AID])
4135 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4136 params.supported_rates =
4137 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4138 params.supported_rates_len =
4139 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4140 params.listen_interval =
4141 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
4143 if (info->attrs[NL80211_ATTR_PEER_AID])
4144 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4146 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
4147 if (!params.aid || params.aid > IEEE80211_MAX_AID)
4150 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4152 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4153 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4156 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4158 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4159 params.ext_capab_len =
4160 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4163 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4165 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4167 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4169 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4171 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
4172 params.opmode_notif_used = true;
4173 params.opmode_notif =
4174 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
4177 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4178 params.plink_action =
4179 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4180 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4184 err = nl80211_parse_sta_channel_info(info, ¶ms);
4188 err = nl80211_parse_sta_wme(info, ¶ms);
4192 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4195 /* When you run into this, adjust the code below for the new flag */
4196 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
4198 switch (dev->ieee80211_ptr->iftype) {
4199 case NL80211_IFTYPE_AP:
4200 case NL80211_IFTYPE_AP_VLAN:
4201 case NL80211_IFTYPE_P2P_GO:
4202 /* ignore WME attributes if iface/sta is not capable */
4203 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
4204 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
4205 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4207 /* TDLS peers cannot be added */
4208 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4209 info->attrs[NL80211_ATTR_PEER_AID])
4211 /* but don't bother the driver with it */
4212 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
4214 /* allow authenticated/associated only if driver handles it */
4215 if (!(rdev->wiphy.features &
4216 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4217 params.sta_flags_mask &
4218 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4219 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4222 /* must be last in here for error handling */
4223 params.vlan = get_vlan(info, rdev);
4224 if (IS_ERR(params.vlan))
4225 return PTR_ERR(params.vlan);
4227 case NL80211_IFTYPE_MESH_POINT:
4228 /* ignore uAPSD data */
4229 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4231 /* associated is disallowed */
4232 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
4234 /* TDLS peers cannot be added */
4235 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4236 info->attrs[NL80211_ATTR_PEER_AID])
4239 case NL80211_IFTYPE_STATION:
4240 case NL80211_IFTYPE_P2P_CLIENT:
4241 /* ignore uAPSD data */
4242 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4244 /* these are disallowed */
4245 if (params.sta_flags_mask &
4246 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
4247 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
4249 /* Only TDLS peers can be added */
4250 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
4252 /* Can only add if TDLS ... */
4253 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
4255 /* ... with external setup is supported */
4256 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
4259 * Older wpa_supplicant versions always mark the TDLS peer
4260 * as authorized, but it shouldn't yet be.
4262 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
4268 /* be aware of params.vlan when changing code here */
4270 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
4273 dev_put(params.vlan);
4277 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
4279 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4280 struct net_device *dev = info->user_ptr[1];
4281 u8 *mac_addr = NULL;
4283 if (info->attrs[NL80211_ATTR_MAC])
4284 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4286 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4287 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
4288 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
4289 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4292 if (!rdev->ops->del_station)
4295 return rdev_del_station(rdev, dev, mac_addr);
4298 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
4299 int flags, struct net_device *dev,
4300 u8 *dst, u8 *next_hop,
4301 struct mpath_info *pinfo)
4304 struct nlattr *pinfoattr;
4306 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_STATION);
4310 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4311 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
4312 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
4313 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
4314 goto nla_put_failure;
4316 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
4318 goto nla_put_failure;
4319 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
4320 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
4322 goto nla_put_failure;
4323 if (((pinfo->filled & MPATH_INFO_SN) &&
4324 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
4325 ((pinfo->filled & MPATH_INFO_METRIC) &&
4326 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
4328 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
4329 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
4331 ((pinfo->filled & MPATH_INFO_FLAGS) &&
4332 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
4334 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
4335 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
4336 pinfo->discovery_timeout)) ||
4337 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
4338 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
4339 pinfo->discovery_retries)))
4340 goto nla_put_failure;
4342 nla_nest_end(msg, pinfoattr);
4344 return genlmsg_end(msg, hdr);
4347 genlmsg_cancel(msg, hdr);
4351 static int nl80211_dump_mpath(struct sk_buff *skb,
4352 struct netlink_callback *cb)
4354 struct mpath_info pinfo;
4355 struct cfg80211_registered_device *dev;
4356 struct wireless_dev *wdev;
4358 u8 next_hop[ETH_ALEN];
4359 int path_idx = cb->args[2];
4362 err = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
4366 if (!dev->ops->dump_mpath) {
4371 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
4377 err = rdev_dump_mpath(dev, wdev->netdev, path_idx, dst,
4384 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
4385 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4386 wdev->netdev, dst, next_hop,
4395 cb->args[2] = path_idx;
4398 nl80211_finish_wdev_dump(dev);
4402 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
4404 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4406 struct net_device *dev = info->user_ptr[1];
4407 struct mpath_info pinfo;
4408 struct sk_buff *msg;
4410 u8 next_hop[ETH_ALEN];
4412 memset(&pinfo, 0, sizeof(pinfo));
4414 if (!info->attrs[NL80211_ATTR_MAC])
4417 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4419 if (!rdev->ops->get_mpath)
4422 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4425 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
4429 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4433 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
4434 dev, dst, next_hop, &pinfo) < 0) {
4439 return genlmsg_reply(msg, info);
4442 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
4444 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4445 struct net_device *dev = info->user_ptr[1];
4447 u8 *next_hop = NULL;
4449 if (!info->attrs[NL80211_ATTR_MAC])
4452 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4455 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4456 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4458 if (!rdev->ops->change_mpath)
4461 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4464 return rdev_change_mpath(rdev, dev, dst, next_hop);
4467 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
4469 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4470 struct net_device *dev = info->user_ptr[1];
4472 u8 *next_hop = NULL;
4474 if (!info->attrs[NL80211_ATTR_MAC])
4477 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4480 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4481 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4483 if (!rdev->ops->add_mpath)
4486 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4489 return rdev_add_mpath(rdev, dev, dst, next_hop);
4492 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
4494 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4495 struct net_device *dev = info->user_ptr[1];
4498 if (info->attrs[NL80211_ATTR_MAC])
4499 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4501 if (!rdev->ops->del_mpath)
4504 return rdev_del_mpath(rdev, dev, dst);
4507 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
4509 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4510 struct net_device *dev = info->user_ptr[1];
4511 struct wireless_dev *wdev = dev->ieee80211_ptr;
4512 struct bss_parameters params;
4515 memset(¶ms, 0, sizeof(params));
4516 /* default to not changing parameters */
4517 params.use_cts_prot = -1;
4518 params.use_short_preamble = -1;
4519 params.use_short_slot_time = -1;
4520 params.ap_isolate = -1;
4521 params.ht_opmode = -1;
4522 params.p2p_ctwindow = -1;
4523 params.p2p_opp_ps = -1;
4525 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
4526 params.use_cts_prot =
4527 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
4528 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
4529 params.use_short_preamble =
4530 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
4531 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
4532 params.use_short_slot_time =
4533 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
4534 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
4535 params.basic_rates =
4536 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4537 params.basic_rates_len =
4538 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4540 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
4541 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
4542 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
4544 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
4546 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4547 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4549 params.p2p_ctwindow =
4550 nla_get_s8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4551 if (params.p2p_ctwindow < 0)
4553 if (params.p2p_ctwindow != 0 &&
4554 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4558 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4561 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4563 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4566 params.p2p_opp_ps = tmp;
4567 if (params.p2p_opp_ps &&
4568 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4572 if (!rdev->ops->change_bss)
4575 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4576 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4580 err = rdev_change_bss(rdev, dev, ¶ms);
4586 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
4587 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
4588 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
4589 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
4590 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
4591 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
4592 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
4595 static int parse_reg_rule(struct nlattr *tb[],
4596 struct ieee80211_reg_rule *reg_rule)
4598 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
4599 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
4601 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
4603 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
4605 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
4607 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
4609 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
4612 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
4614 freq_range->start_freq_khz =
4615 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
4616 freq_range->end_freq_khz =
4617 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
4618 freq_range->max_bandwidth_khz =
4619 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
4621 power_rule->max_eirp =
4622 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
4624 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
4625 power_rule->max_antenna_gain =
4626 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
4631 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
4635 enum nl80211_user_reg_hint_type user_reg_hint_type;
4638 * You should only get this when cfg80211 hasn't yet initialized
4639 * completely when built-in to the kernel right between the time
4640 * window between nl80211_init() and regulatory_init(), if that is
4643 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
4644 return -EINPROGRESS;
4646 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
4649 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
4651 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
4652 user_reg_hint_type =
4653 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
4655 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
4657 switch (user_reg_hint_type) {
4658 case NL80211_USER_REG_HINT_USER:
4659 case NL80211_USER_REG_HINT_CELL_BASE:
4665 r = regulatory_hint_user(data, user_reg_hint_type);
4670 static int nl80211_get_mesh_config(struct sk_buff *skb,
4671 struct genl_info *info)
4673 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4674 struct net_device *dev = info->user_ptr[1];
4675 struct wireless_dev *wdev = dev->ieee80211_ptr;
4676 struct mesh_config cur_params;
4679 struct nlattr *pinfoattr;
4680 struct sk_buff *msg;
4682 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
4685 if (!rdev->ops->get_mesh_config)
4689 /* If not connected, get default parameters */
4690 if (!wdev->mesh_id_len)
4691 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
4693 err = rdev_get_mesh_config(rdev, dev, &cur_params);
4699 /* Draw up a netlink message to send back */
4700 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4703 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
4704 NL80211_CMD_GET_MESH_CONFIG);
4707 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
4709 goto nla_put_failure;
4710 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4711 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
4712 cur_params.dot11MeshRetryTimeout) ||
4713 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
4714 cur_params.dot11MeshConfirmTimeout) ||
4715 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
4716 cur_params.dot11MeshHoldingTimeout) ||
4717 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
4718 cur_params.dot11MeshMaxPeerLinks) ||
4719 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
4720 cur_params.dot11MeshMaxRetries) ||
4721 nla_put_u8(msg, NL80211_MESHCONF_TTL,
4722 cur_params.dot11MeshTTL) ||
4723 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
4724 cur_params.element_ttl) ||
4725 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
4726 cur_params.auto_open_plinks) ||
4727 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
4728 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
4729 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
4730 cur_params.dot11MeshHWMPmaxPREQretries) ||
4731 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
4732 cur_params.path_refresh_time) ||
4733 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
4734 cur_params.min_discovery_timeout) ||
4735 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
4736 cur_params.dot11MeshHWMPactivePathTimeout) ||
4737 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
4738 cur_params.dot11MeshHWMPpreqMinInterval) ||
4739 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
4740 cur_params.dot11MeshHWMPperrMinInterval) ||
4741 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
4742 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
4743 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
4744 cur_params.dot11MeshHWMPRootMode) ||
4745 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
4746 cur_params.dot11MeshHWMPRannInterval) ||
4747 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
4748 cur_params.dot11MeshGateAnnouncementProtocol) ||
4749 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
4750 cur_params.dot11MeshForwarding) ||
4751 nla_put_u32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
4752 cur_params.rssi_threshold) ||
4753 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
4754 cur_params.ht_opmode) ||
4755 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
4756 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
4757 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
4758 cur_params.dot11MeshHWMProotInterval) ||
4759 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
4760 cur_params.dot11MeshHWMPconfirmationInterval) ||
4761 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
4762 cur_params.power_mode) ||
4763 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
4764 cur_params.dot11MeshAwakeWindowDuration) ||
4765 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
4766 cur_params.plink_timeout))
4767 goto nla_put_failure;
4768 nla_nest_end(msg, pinfoattr);
4769 genlmsg_end(msg, hdr);
4770 return genlmsg_reply(msg, info);
4773 genlmsg_cancel(msg, hdr);
4779 static const struct nla_policy nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
4780 [NL80211_MESHCONF_RETRY_TIMEOUT] = { .type = NLA_U16 },
4781 [NL80211_MESHCONF_CONFIRM_TIMEOUT] = { .type = NLA_U16 },
4782 [NL80211_MESHCONF_HOLDING_TIMEOUT] = { .type = NLA_U16 },
4783 [NL80211_MESHCONF_MAX_PEER_LINKS] = { .type = NLA_U16 },
4784 [NL80211_MESHCONF_MAX_RETRIES] = { .type = NLA_U8 },
4785 [NL80211_MESHCONF_TTL] = { .type = NLA_U8 },
4786 [NL80211_MESHCONF_ELEMENT_TTL] = { .type = NLA_U8 },
4787 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = { .type = NLA_U8 },
4788 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] = { .type = NLA_U32 },
4789 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
4790 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
4791 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = { .type = NLA_U16 },
4792 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
4793 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] = { .type = NLA_U16 },
4794 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] = { .type = NLA_U16 },
4795 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] = { .type = NLA_U16 },
4796 [NL80211_MESHCONF_HWMP_ROOTMODE] = { .type = NLA_U8 },
4797 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] = { .type = NLA_U16 },
4798 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = { .type = NLA_U8 },
4799 [NL80211_MESHCONF_FORWARDING] = { .type = NLA_U8 },
4800 [NL80211_MESHCONF_RSSI_THRESHOLD] = { .type = NLA_U32 },
4801 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
4802 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
4803 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] = { .type = NLA_U16 },
4804 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] = { .type = NLA_U16 },
4805 [NL80211_MESHCONF_POWER_MODE] = { .type = NLA_U32 },
4806 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
4807 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
4810 static const struct nla_policy
4811 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
4812 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
4813 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
4814 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
4815 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
4816 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
4817 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
4818 [NL80211_MESH_SETUP_IE] = { .type = NLA_BINARY,
4819 .len = IEEE80211_MAX_DATA_LEN },
4820 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
4823 static int nl80211_parse_mesh_config(struct genl_info *info,
4824 struct mesh_config *cfg,
4827 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
4830 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, min, max, mask, attr, fn) \
4833 if (fn(tb[attr]) < min || fn(tb[attr]) > max) \
4835 cfg->param = fn(tb[attr]); \
4836 mask |= (1 << (attr - 1)); \
4841 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
4843 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
4844 info->attrs[NL80211_ATTR_MESH_CONFIG],
4845 nl80211_meshconf_params_policy))
4848 /* This makes sure that there aren't more than 32 mesh config
4849 * parameters (otherwise our bitfield scheme would not work.) */
4850 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
4852 /* Fill in the params struct */
4853 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, 1, 255,
4854 mask, NL80211_MESHCONF_RETRY_TIMEOUT,
4856 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, 1, 255,
4857 mask, NL80211_MESHCONF_CONFIRM_TIMEOUT,
4859 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, 1, 255,
4860 mask, NL80211_MESHCONF_HOLDING_TIMEOUT,
4862 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, 0, 255,
4863 mask, NL80211_MESHCONF_MAX_PEER_LINKS,
4865 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, 0, 16,
4866 mask, NL80211_MESHCONF_MAX_RETRIES,
4868 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, 1, 255,
4869 mask, NL80211_MESHCONF_TTL, nla_get_u8);
4870 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, 1, 255,
4871 mask, NL80211_MESHCONF_ELEMENT_TTL,
4873 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, 0, 1,
4874 mask, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
4876 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
4878 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
4880 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, 0, 255,
4881 mask, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
4883 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, 1, 65535,
4884 mask, NL80211_MESHCONF_PATH_REFRESH_TIME,
4886 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, 1, 65535,
4887 mask, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
4889 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
4891 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
4893 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval,
4895 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
4897 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval,
4899 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
4901 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4902 dot11MeshHWMPnetDiameterTraversalTime,
4904 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
4906 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, 0, 4,
4907 mask, NL80211_MESHCONF_HWMP_ROOTMODE,
4909 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, 1, 65535,
4910 mask, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
4912 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4913 dot11MeshGateAnnouncementProtocol, 0, 1,
4914 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
4916 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, 0, 1,
4917 mask, NL80211_MESHCONF_FORWARDING,
4919 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, -255, 0,
4920 mask, NL80211_MESHCONF_RSSI_THRESHOLD,
4922 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, ht_opmode, 0, 16,
4923 mask, NL80211_MESHCONF_HT_OPMODE,
4925 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathToRootTimeout,
4927 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
4929 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, 1, 65535,
4930 mask, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
4932 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
4933 dot11MeshHWMPconfirmationInterval,
4935 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
4937 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode,
4938 NL80211_MESH_POWER_ACTIVE,
4939 NL80211_MESH_POWER_MAX,
4940 mask, NL80211_MESHCONF_POWER_MODE,
4942 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration,
4944 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
4945 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, 1, 0xffffffff,
4946 mask, NL80211_MESHCONF_PLINK_TIMEOUT,
4953 #undef FILL_IN_MESH_PARAM_IF_SET
4956 static int nl80211_parse_mesh_setup(struct genl_info *info,
4957 struct mesh_setup *setup)
4959 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4960 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
4962 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
4964 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
4965 info->attrs[NL80211_ATTR_MESH_SETUP],
4966 nl80211_mesh_setup_params_policy))
4969 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
4970 setup->sync_method =
4971 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
4972 IEEE80211_SYNC_METHOD_VENDOR :
4973 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
4975 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
4976 setup->path_sel_proto =
4977 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
4978 IEEE80211_PATH_PROTOCOL_VENDOR :
4979 IEEE80211_PATH_PROTOCOL_HWMP;
4981 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
4982 setup->path_metric =
4983 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
4984 IEEE80211_PATH_METRIC_VENDOR :
4985 IEEE80211_PATH_METRIC_AIRTIME;
4988 if (tb[NL80211_MESH_SETUP_IE]) {
4989 struct nlattr *ieattr =
4990 tb[NL80211_MESH_SETUP_IE];
4991 if (!is_valid_ie_attr(ieattr))
4993 setup->ie = nla_data(ieattr);
4994 setup->ie_len = nla_len(ieattr);
4996 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
4997 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
4999 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
5000 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
5001 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
5002 if (setup->is_secure)
5003 setup->user_mpm = true;
5005 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
5006 if (!setup->user_mpm)
5009 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
5015 static int nl80211_update_mesh_config(struct sk_buff *skb,
5016 struct genl_info *info)
5018 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5019 struct net_device *dev = info->user_ptr[1];
5020 struct wireless_dev *wdev = dev->ieee80211_ptr;
5021 struct mesh_config cfg;
5025 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
5028 if (!rdev->ops->update_mesh_config)
5031 err = nl80211_parse_mesh_config(info, &cfg, &mask);
5036 if (!wdev->mesh_id_len)
5040 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
5047 static int nl80211_get_reg(struct sk_buff *skb, struct genl_info *info)
5049 const struct ieee80211_regdomain *regdom;
5050 struct sk_buff *msg;
5052 struct nlattr *nl_reg_rules;
5055 if (!cfg80211_regdomain)
5058 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5062 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
5063 NL80211_CMD_GET_REG);
5067 if (reg_last_request_cell_base() &&
5068 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
5069 NL80211_USER_REG_HINT_CELL_BASE))
5070 goto nla_put_failure;
5073 regdom = rcu_dereference(cfg80211_regdomain);
5075 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
5076 (regdom->dfs_region &&
5077 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
5078 goto nla_put_failure_rcu;
5080 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
5082 goto nla_put_failure_rcu;
5084 for (i = 0; i < regdom->n_reg_rules; i++) {
5085 struct nlattr *nl_reg_rule;
5086 const struct ieee80211_reg_rule *reg_rule;
5087 const struct ieee80211_freq_range *freq_range;
5088 const struct ieee80211_power_rule *power_rule;
5090 reg_rule = ®dom->reg_rules[i];
5091 freq_range = ®_rule->freq_range;
5092 power_rule = ®_rule->power_rule;
5094 nl_reg_rule = nla_nest_start(msg, i);
5096 goto nla_put_failure_rcu;
5098 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
5100 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
5101 freq_range->start_freq_khz) ||
5102 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
5103 freq_range->end_freq_khz) ||
5104 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
5105 freq_range->max_bandwidth_khz) ||
5106 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
5107 power_rule->max_antenna_gain) ||
5108 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
5109 power_rule->max_eirp))
5110 goto nla_put_failure_rcu;
5112 nla_nest_end(msg, nl_reg_rule);
5116 nla_nest_end(msg, nl_reg_rules);
5118 genlmsg_end(msg, hdr);
5119 return genlmsg_reply(msg, info);
5121 nla_put_failure_rcu:
5124 genlmsg_cancel(msg, hdr);
5130 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
5132 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
5133 struct nlattr *nl_reg_rule;
5134 char *alpha2 = NULL;
5135 int rem_reg_rules = 0, r = 0;
5136 u32 num_rules = 0, rule_idx = 0, size_of_regd;
5137 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
5138 struct ieee80211_regdomain *rd = NULL;
5140 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
5143 if (!info->attrs[NL80211_ATTR_REG_RULES])
5146 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
5148 if (info->attrs[NL80211_ATTR_DFS_REGION])
5149 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
5151 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5154 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
5158 if (!reg_is_valid_request(alpha2))
5161 size_of_regd = sizeof(struct ieee80211_regdomain) +
5162 num_rules * sizeof(struct ieee80211_reg_rule);
5164 rd = kzalloc(size_of_regd, GFP_KERNEL);
5168 rd->n_reg_rules = num_rules;
5169 rd->alpha2[0] = alpha2[0];
5170 rd->alpha2[1] = alpha2[1];
5173 * Disable DFS master mode if the DFS region was
5174 * not supported or known on this kernel.
5176 if (reg_supported_dfs_region(dfs_region))
5177 rd->dfs_region = dfs_region;
5179 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5181 nla_parse(tb, NL80211_REG_RULE_ATTR_MAX,
5182 nla_data(nl_reg_rule), nla_len(nl_reg_rule),
5184 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
5190 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
5197 /* set_regdom took ownership */
5205 static int validate_scan_freqs(struct nlattr *freqs)
5207 struct nlattr *attr1, *attr2;
5208 int n_channels = 0, tmp1, tmp2;
5210 nla_for_each_nested(attr1, freqs, tmp1) {
5213 * Some hardware has a limited channel list for
5214 * scanning, and it is pretty much nonsensical
5215 * to scan for a channel twice, so disallow that
5216 * and don't require drivers to check that the
5217 * channel list they get isn't longer than what
5218 * they can scan, as long as they can scan all
5219 * the channels they registered at once.
5221 nla_for_each_nested(attr2, freqs, tmp2)
5222 if (attr1 != attr2 &&
5223 nla_get_u32(attr1) == nla_get_u32(attr2))
5230 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
5232 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5233 struct wireless_dev *wdev = info->user_ptr[1];
5234 struct cfg80211_scan_request *request;
5235 struct nlattr *attr;
5236 struct wiphy *wiphy;
5237 int err, tmp, n_ssids = 0, n_channels, i;
5240 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5243 wiphy = &rdev->wiphy;
5245 if (!rdev->ops->scan)
5248 if (rdev->scan_req || rdev->scan_msg) {
5253 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5254 n_channels = validate_scan_freqs(
5255 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5261 n_channels = ieee80211_get_num_supported_channels(wiphy);
5264 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5265 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
5268 if (n_ssids > wiphy->max_scan_ssids) {
5273 if (info->attrs[NL80211_ATTR_IE])
5274 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5278 if (ie_len > wiphy->max_scan_ie_len) {
5283 request = kzalloc(sizeof(*request)
5284 + sizeof(*request->ssids) * n_ssids
5285 + sizeof(*request->channels) * n_channels
5286 + ie_len, GFP_KERNEL);
5293 request->ssids = (void *)&request->channels[n_channels];
5294 request->n_ssids = n_ssids;
5297 request->ie = (void *)(request->ssids + n_ssids);
5299 request->ie = (void *)(request->channels + n_channels);
5303 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5304 /* user specified, bail out if channel not found */
5305 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
5306 struct ieee80211_channel *chan;
5308 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5315 /* ignore disabled channels */
5316 if (chan->flags & IEEE80211_CHAN_DISABLED)
5319 request->channels[i] = chan;
5323 enum ieee80211_band band;
5326 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5328 if (!wiphy->bands[band])
5330 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5331 struct ieee80211_channel *chan;
5333 chan = &wiphy->bands[band]->channels[j];
5335 if (chan->flags & IEEE80211_CHAN_DISABLED)
5338 request->channels[i] = chan;
5349 request->n_channels = i;
5352 if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
5353 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
5354 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5358 request->ssids[i].ssid_len = nla_len(attr);
5359 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
5364 if (info->attrs[NL80211_ATTR_IE]) {
5365 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5366 memcpy((void *)request->ie,
5367 nla_data(info->attrs[NL80211_ATTR_IE]),
5371 for (i = 0; i < IEEE80211_NUM_BANDS; i++)
5372 if (wiphy->bands[i])
5374 (1 << wiphy->bands[i]->n_bitrates) - 1;
5376 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
5377 nla_for_each_nested(attr,
5378 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
5380 enum ieee80211_band band = nla_type(attr);
5382 if (band < 0 || band >= IEEE80211_NUM_BANDS) {
5387 if (!wiphy->bands[band])
5390 err = ieee80211_get_ratemask(wiphy->bands[band],
5393 &request->rates[band]);
5399 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5400 request->flags = nla_get_u32(
5401 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5402 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5403 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5410 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
5412 request->wdev = wdev;
5413 request->wiphy = &rdev->wiphy;
5414 request->scan_start = jiffies;
5416 rdev->scan_req = request;
5417 err = rdev_scan(rdev, request);
5420 nl80211_send_scan_start(rdev, wdev);
5422 dev_hold(wdev->netdev);
5425 rdev->scan_req = NULL;
5433 static int nl80211_start_sched_scan(struct sk_buff *skb,
5434 struct genl_info *info)
5436 struct cfg80211_sched_scan_request *request;
5437 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5438 struct net_device *dev = info->user_ptr[1];
5439 struct nlattr *attr;
5440 struct wiphy *wiphy;
5441 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i;
5443 enum ieee80211_band band;
5445 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
5447 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
5448 !rdev->ops->sched_scan_start)
5451 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5454 if (!info->attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
5457 interval = nla_get_u32(info->attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
5461 wiphy = &rdev->wiphy;
5463 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5464 n_channels = validate_scan_freqs(
5465 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5469 n_channels = ieee80211_get_num_supported_channels(wiphy);
5472 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5473 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS],
5477 if (n_ssids > wiphy->max_sched_scan_ssids)
5480 if (info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH])
5481 nla_for_each_nested(attr,
5482 info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
5486 if (n_match_sets > wiphy->max_match_sets)
5489 if (info->attrs[NL80211_ATTR_IE])
5490 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5494 if (ie_len > wiphy->max_sched_scan_ie_len)
5497 if (rdev->sched_scan_req) {
5502 request = kzalloc(sizeof(*request)
5503 + sizeof(*request->ssids) * n_ssids
5504 + sizeof(*request->match_sets) * n_match_sets
5505 + sizeof(*request->channels) * n_channels
5506 + ie_len, GFP_KERNEL);
5513 request->ssids = (void *)&request->channels[n_channels];
5514 request->n_ssids = n_ssids;
5517 request->ie = (void *)(request->ssids + n_ssids);
5519 request->ie = (void *)(request->channels + n_channels);
5524 request->match_sets = (void *)(request->ie + ie_len);
5525 else if (request->ssids)
5526 request->match_sets =
5527 (void *)(request->ssids + n_ssids);
5529 request->match_sets =
5530 (void *)(request->channels + n_channels);
5532 request->n_match_sets = n_match_sets;
5535 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5536 /* user specified, bail out if channel not found */
5537 nla_for_each_nested(attr,
5538 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES],
5540 struct ieee80211_channel *chan;
5542 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5549 /* ignore disabled channels */
5550 if (chan->flags & IEEE80211_CHAN_DISABLED)
5553 request->channels[i] = chan;
5558 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5560 if (!wiphy->bands[band])
5562 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5563 struct ieee80211_channel *chan;
5565 chan = &wiphy->bands[band]->channels[j];
5567 if (chan->flags & IEEE80211_CHAN_DISABLED)
5570 request->channels[i] = chan;
5581 request->n_channels = i;
5584 if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
5585 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS],
5587 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5591 request->ssids[i].ssid_len = nla_len(attr);
5592 memcpy(request->ssids[i].ssid, nla_data(attr),
5599 if (info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
5600 nla_for_each_nested(attr,
5601 info->attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
5603 struct nlattr *ssid, *rssi;
5605 nla_parse(tb, NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
5606 nla_data(attr), nla_len(attr),
5607 nl80211_match_policy);
5608 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
5610 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
5614 memcpy(request->match_sets[i].ssid.ssid,
5615 nla_data(ssid), nla_len(ssid));
5616 request->match_sets[i].ssid.ssid_len =
5619 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
5621 request->rssi_thold = nla_get_u32(rssi);
5623 request->rssi_thold =
5624 NL80211_SCAN_RSSI_THOLD_OFF;
5629 if (info->attrs[NL80211_ATTR_IE]) {
5630 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5631 memcpy((void *)request->ie,
5632 nla_data(info->attrs[NL80211_ATTR_IE]),
5636 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5637 request->flags = nla_get_u32(
5638 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5639 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5640 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5647 request->wiphy = &rdev->wiphy;
5648 request->interval = interval;
5649 request->scan_start = jiffies;
5651 err = rdev_sched_scan_start(rdev, dev, request);
5653 rdev->sched_scan_req = request;
5654 nl80211_send_sched_scan(rdev, dev,
5655 NL80211_CMD_START_SCHED_SCAN);
5665 static int nl80211_stop_sched_scan(struct sk_buff *skb,
5666 struct genl_info *info)
5668 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5670 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
5671 !rdev->ops->sched_scan_stop)
5674 return __cfg80211_stop_sched_scan(rdev, false);
5677 static int nl80211_start_radar_detection(struct sk_buff *skb,
5678 struct genl_info *info)
5680 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5681 struct net_device *dev = info->user_ptr[1];
5682 struct wireless_dev *wdev = dev->ieee80211_ptr;
5683 struct cfg80211_chan_def chandef;
5684 enum nl80211_dfs_regions dfs_region;
5687 dfs_region = reg_get_dfs_region(wdev->wiphy);
5688 if (dfs_region == NL80211_DFS_UNSET)
5691 err = nl80211_parse_chandef(rdev, info, &chandef);
5695 if (netif_carrier_ok(dev))
5698 if (wdev->cac_started)
5701 err = cfg80211_chandef_dfs_required(wdev->wiphy, &chandef);
5708 if (!cfg80211_chandef_dfs_usable(wdev->wiphy, &chandef))
5711 if (!rdev->ops->start_radar_detection)
5714 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
5715 chandef.chan, CHAN_MODE_SHARED,
5716 BIT(chandef.width));
5720 err = rdev->ops->start_radar_detection(&rdev->wiphy, dev, &chandef);
5722 wdev->channel = chandef.chan;
5723 wdev->cac_started = true;
5724 wdev->cac_start_time = jiffies;
5729 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
5731 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5732 struct net_device *dev = info->user_ptr[1];
5733 struct wireless_dev *wdev = dev->ieee80211_ptr;
5734 struct cfg80211_csa_settings params;
5735 /* csa_attrs is defined static to avoid waste of stack size - this
5736 * function is called under RTNL lock, so this should not be a problem.
5738 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
5739 u8 radar_detect_width = 0;
5741 bool need_new_beacon = false;
5743 if (!rdev->ops->channel_switch ||
5744 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
5747 switch (dev->ieee80211_ptr->iftype) {
5748 case NL80211_IFTYPE_AP:
5749 case NL80211_IFTYPE_P2P_GO:
5750 need_new_beacon = true;
5752 /* useless if AP is not running */
5753 if (!wdev->beacon_interval)
5756 case NL80211_IFTYPE_ADHOC:
5757 case NL80211_IFTYPE_MESH_POINT:
5763 memset(¶ms, 0, sizeof(params));
5765 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
5766 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
5769 /* only important for AP, IBSS and mesh create IEs internally */
5770 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
5773 params.count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
5775 if (!need_new_beacon)
5778 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon_after);
5782 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
5783 info->attrs[NL80211_ATTR_CSA_IES],
5788 err = nl80211_parse_beacon(csa_attrs, ¶ms.beacon_csa);
5792 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
5795 params.counter_offset_beacon =
5796 nla_get_u16(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
5797 if (params.counter_offset_beacon >= params.beacon_csa.tail_len)
5800 /* sanity check - counters should be the same */
5801 if (params.beacon_csa.tail[params.counter_offset_beacon] !=
5805 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
5806 params.counter_offset_presp =
5807 nla_get_u16(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
5808 if (params.counter_offset_presp >=
5809 params.beacon_csa.probe_resp_len)
5812 if (params.beacon_csa.probe_resp[params.counter_offset_presp] !=
5818 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
5822 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef))
5825 if (dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP ||
5826 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO ||
5827 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_ADHOC) {
5828 err = cfg80211_chandef_dfs_required(wdev->wiphy,
5833 radar_detect_width = BIT(params.chandef.width);
5834 params.radar_required = true;
5838 err = cfg80211_can_use_iftype_chan(rdev, wdev, wdev->iftype,
5839 params.chandef.chan,
5841 radar_detect_width);
5845 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
5846 params.block_tx = true;
5849 err = rdev_channel_switch(rdev, dev, ¶ms);
5855 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
5857 struct cfg80211_registered_device *rdev,
5858 struct wireless_dev *wdev,
5859 struct cfg80211_internal_bss *intbss)
5861 struct cfg80211_bss *res = &intbss->pub;
5862 const struct cfg80211_bss_ies *ies;
5867 ASSERT_WDEV_LOCK(wdev);
5869 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
5870 NL80211_CMD_NEW_SCAN_RESULTS);
5874 genl_dump_check_consistent(cb, hdr, &nl80211_fam);
5876 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
5877 goto nla_put_failure;
5879 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
5880 goto nla_put_failure;
5881 if (nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
5882 goto nla_put_failure;
5884 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
5886 goto nla_put_failure;
5887 if ((!is_zero_ether_addr(res->bssid) &&
5888 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
5889 goto nla_put_failure;
5892 ies = rcu_dereference(res->ies);
5894 if (nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
5895 goto fail_unlock_rcu;
5897 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
5898 ies->len, ies->data))
5899 goto fail_unlock_rcu;
5901 ies = rcu_dereference(res->beacon_ies);
5903 if (!tsf && nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
5904 goto fail_unlock_rcu;
5905 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
5906 ies->len, ies->data))
5907 goto fail_unlock_rcu;
5911 if (res->beacon_interval &&
5912 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
5913 goto nla_put_failure;
5914 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
5915 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
5916 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
5917 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
5918 jiffies_to_msecs(jiffies - intbss->ts)))
5919 goto nla_put_failure;
5921 switch (rdev->wiphy.signal_type) {
5922 case CFG80211_SIGNAL_TYPE_MBM:
5923 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
5924 goto nla_put_failure;
5926 case CFG80211_SIGNAL_TYPE_UNSPEC:
5927 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
5928 goto nla_put_failure;
5934 switch (wdev->iftype) {
5935 case NL80211_IFTYPE_P2P_CLIENT:
5936 case NL80211_IFTYPE_STATION:
5937 if (intbss == wdev->current_bss &&
5938 nla_put_u32(msg, NL80211_BSS_STATUS,
5939 NL80211_BSS_STATUS_ASSOCIATED))
5940 goto nla_put_failure;
5942 case NL80211_IFTYPE_ADHOC:
5943 if (intbss == wdev->current_bss &&
5944 nla_put_u32(msg, NL80211_BSS_STATUS,
5945 NL80211_BSS_STATUS_IBSS_JOINED))
5946 goto nla_put_failure;
5952 nla_nest_end(msg, bss);
5954 return genlmsg_end(msg, hdr);
5959 genlmsg_cancel(msg, hdr);
5963 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
5965 struct cfg80211_registered_device *rdev;
5966 struct cfg80211_internal_bss *scan;
5967 struct wireless_dev *wdev;
5968 int start = cb->args[2], idx = 0;
5971 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
5976 spin_lock_bh(&rdev->bss_lock);
5977 cfg80211_bss_expire(rdev);
5979 cb->seq = rdev->bss_generation;
5981 list_for_each_entry(scan, &rdev->bss_list, list) {
5984 if (nl80211_send_bss(skb, cb,
5985 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5986 rdev, wdev, scan) < 0) {
5992 spin_unlock_bh(&rdev->bss_lock);
5996 nl80211_finish_wdev_dump(rdev);
6001 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
6002 int flags, struct net_device *dev,
6003 struct survey_info *survey)
6006 struct nlattr *infoattr;
6008 hdr = nl80211hdr_put(msg, portid, seq, flags,
6009 NL80211_CMD_NEW_SURVEY_RESULTS);
6013 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
6014 goto nla_put_failure;
6016 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
6018 goto nla_put_failure;
6020 if (nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
6021 survey->channel->center_freq))
6022 goto nla_put_failure;
6024 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
6025 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
6026 goto nla_put_failure;
6027 if ((survey->filled & SURVEY_INFO_IN_USE) &&
6028 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
6029 goto nla_put_failure;
6030 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME) &&
6031 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME,
6032 survey->channel_time))
6033 goto nla_put_failure;
6034 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_BUSY) &&
6035 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_BUSY,
6036 survey->channel_time_busy))
6037 goto nla_put_failure;
6038 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_EXT_BUSY) &&
6039 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_EXT_BUSY,
6040 survey->channel_time_ext_busy))
6041 goto nla_put_failure;
6042 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_RX) &&
6043 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_RX,
6044 survey->channel_time_rx))
6045 goto nla_put_failure;
6046 if ((survey->filled & SURVEY_INFO_CHANNEL_TIME_TX) &&
6047 nla_put_u64(msg, NL80211_SURVEY_INFO_CHANNEL_TIME_TX,
6048 survey->channel_time_tx))
6049 goto nla_put_failure;
6051 nla_nest_end(msg, infoattr);
6053 return genlmsg_end(msg, hdr);
6056 genlmsg_cancel(msg, hdr);
6060 static int nl80211_dump_survey(struct sk_buff *skb,
6061 struct netlink_callback *cb)
6063 struct survey_info survey;
6064 struct cfg80211_registered_device *dev;
6065 struct wireless_dev *wdev;
6066 int survey_idx = cb->args[2];
6069 res = nl80211_prepare_wdev_dump(skb, cb, &dev, &wdev);
6073 if (!wdev->netdev) {
6078 if (!dev->ops->dump_survey) {
6084 struct ieee80211_channel *chan;
6086 res = rdev_dump_survey(dev, wdev->netdev, survey_idx, &survey);
6092 /* Survey without a channel doesn't make sense */
6093 if (!survey.channel) {
6098 chan = ieee80211_get_channel(&dev->wiphy,
6099 survey.channel->center_freq);
6100 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED) {
6105 if (nl80211_send_survey(skb,
6106 NETLINK_CB(cb->skb).portid,
6107 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6108 wdev->netdev, &survey) < 0)
6114 cb->args[2] = survey_idx;
6117 nl80211_finish_wdev_dump(dev);
6121 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
6123 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
6124 NL80211_WPA_VERSION_2));
6127 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
6129 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6130 struct net_device *dev = info->user_ptr[1];
6131 struct ieee80211_channel *chan;
6132 const u8 *bssid, *ssid, *ie = NULL, *sae_data = NULL;
6133 int err, ssid_len, ie_len = 0, sae_data_len = 0;
6134 enum nl80211_auth_type auth_type;
6135 struct key_parse key;
6136 bool local_state_change;
6138 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6141 if (!info->attrs[NL80211_ATTR_MAC])
6144 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
6147 if (!info->attrs[NL80211_ATTR_SSID])
6150 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
6153 err = nl80211_parse_key(info, &key);
6158 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
6160 if (!key.p.key || !key.p.key_len)
6162 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
6163 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
6164 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
6165 key.p.key_len != WLAN_KEY_LEN_WEP104))
6177 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
6178 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
6187 if (!rdev->ops->auth)
6190 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6191 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6194 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6195 chan = ieee80211_get_channel(&rdev->wiphy,
6196 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
6197 if (!chan || (chan->flags & IEEE80211_CHAN_DISABLED))
6200 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6201 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6203 if (info->attrs[NL80211_ATTR_IE]) {
6204 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6205 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6208 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6209 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
6212 if (auth_type == NL80211_AUTHTYPE_SAE &&
6213 !info->attrs[NL80211_ATTR_SAE_DATA])
6216 if (info->attrs[NL80211_ATTR_SAE_DATA]) {
6217 if (auth_type != NL80211_AUTHTYPE_SAE)
6219 sae_data = nla_data(info->attrs[NL80211_ATTR_SAE_DATA]);
6220 sae_data_len = nla_len(info->attrs[NL80211_ATTR_SAE_DATA]);
6221 /* need to include at least Auth Transaction and Status Code */
6222 if (sae_data_len < 4)
6226 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6229 * Since we no longer track auth state, ignore
6230 * requests to only change local state.
6232 if (local_state_change)
6235 wdev_lock(dev->ieee80211_ptr);
6236 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
6237 ssid, ssid_len, ie, ie_len,
6238 key.p.key, key.p.key_len, key.idx,
6239 sae_data, sae_data_len);
6240 wdev_unlock(dev->ieee80211_ptr);
6244 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
6245 struct genl_info *info,
6246 struct cfg80211_crypto_settings *settings,
6249 memset(settings, 0, sizeof(*settings));
6251 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
6253 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
6255 proto = nla_get_u16(
6256 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
6257 settings->control_port_ethertype = cpu_to_be16(proto);
6258 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
6261 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
6262 settings->control_port_no_encrypt = true;
6264 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
6266 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
6270 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6271 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6272 settings->n_ciphers_pairwise = len / sizeof(u32);
6274 if (len % sizeof(u32))
6277 if (settings->n_ciphers_pairwise > cipher_limit)
6280 memcpy(settings->ciphers_pairwise, data, len);
6282 for (i = 0; i < settings->n_ciphers_pairwise; i++)
6283 if (!cfg80211_supported_cipher_suite(
6285 settings->ciphers_pairwise[i]))
6289 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
6290 settings->cipher_group =
6291 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
6292 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
6293 settings->cipher_group))
6297 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
6298 settings->wpa_versions =
6299 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
6300 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
6304 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
6308 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
6309 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
6310 settings->n_akm_suites = len / sizeof(u32);
6312 if (len % sizeof(u32))
6315 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
6318 memcpy(settings->akm_suites, data, len);
6324 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
6326 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6327 struct net_device *dev = info->user_ptr[1];
6328 struct ieee80211_channel *chan;
6329 struct cfg80211_assoc_request req = {};
6330 const u8 *bssid, *ssid;
6331 int err, ssid_len = 0;
6333 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6336 if (!info->attrs[NL80211_ATTR_MAC] ||
6337 !info->attrs[NL80211_ATTR_SSID] ||
6338 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
6341 if (!rdev->ops->assoc)
6344 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6345 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6348 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6350 chan = ieee80211_get_channel(&rdev->wiphy,
6351 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
6352 if (!chan || (chan->flags & IEEE80211_CHAN_DISABLED))
6355 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6356 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6358 if (info->attrs[NL80211_ATTR_IE]) {
6359 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6360 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6363 if (info->attrs[NL80211_ATTR_USE_MFP]) {
6364 enum nl80211_mfp mfp =
6365 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
6366 if (mfp == NL80211_MFP_REQUIRED)
6368 else if (mfp != NL80211_MFP_NO)
6372 if (info->attrs[NL80211_ATTR_PREV_BSSID])
6373 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
6375 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
6376 req.flags |= ASSOC_REQ_DISABLE_HT;
6378 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6379 memcpy(&req.ht_capa_mask,
6380 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
6381 sizeof(req.ht_capa_mask));
6383 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
6384 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6386 memcpy(&req.ht_capa,
6387 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
6388 sizeof(req.ht_capa));
6391 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
6392 req.flags |= ASSOC_REQ_DISABLE_VHT;
6394 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
6395 memcpy(&req.vht_capa_mask,
6396 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
6397 sizeof(req.vht_capa_mask));
6399 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
6400 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
6402 memcpy(&req.vht_capa,
6403 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
6404 sizeof(req.vht_capa));
6407 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
6409 wdev_lock(dev->ieee80211_ptr);
6410 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
6411 ssid, ssid_len, &req);
6412 wdev_unlock(dev->ieee80211_ptr);
6418 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
6420 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6421 struct net_device *dev = info->user_ptr[1];
6422 const u8 *ie = NULL, *bssid;
6423 int ie_len = 0, err;
6425 bool local_state_change;
6427 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6430 if (!info->attrs[NL80211_ATTR_MAC])
6433 if (!info->attrs[NL80211_ATTR_REASON_CODE])
6436 if (!rdev->ops->deauth)
6439 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6440 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6443 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6445 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
6446 if (reason_code == 0) {
6447 /* Reason Code 0 is reserved */
6451 if (info->attrs[NL80211_ATTR_IE]) {
6452 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6453 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6456 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6458 wdev_lock(dev->ieee80211_ptr);
6459 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
6460 local_state_change);
6461 wdev_unlock(dev->ieee80211_ptr);
6465 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
6467 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6468 struct net_device *dev = info->user_ptr[1];
6469 const u8 *ie = NULL, *bssid;
6470 int ie_len = 0, err;
6472 bool local_state_change;
6474 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6477 if (!info->attrs[NL80211_ATTR_MAC])
6480 if (!info->attrs[NL80211_ATTR_REASON_CODE])
6483 if (!rdev->ops->disassoc)
6486 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6487 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6490 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6492 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
6493 if (reason_code == 0) {
6494 /* Reason Code 0 is reserved */
6498 if (info->attrs[NL80211_ATTR_IE]) {
6499 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6500 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6503 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6505 wdev_lock(dev->ieee80211_ptr);
6506 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
6507 local_state_change);
6508 wdev_unlock(dev->ieee80211_ptr);
6513 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
6514 int mcast_rate[IEEE80211_NUM_BANDS],
6517 struct wiphy *wiphy = &rdev->wiphy;
6521 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
6522 struct ieee80211_supported_band *sband;
6524 sband = wiphy->bands[band];
6528 for (i = 0; i < sband->n_bitrates; i++) {
6529 if (sband->bitrates[i].bitrate == rateval) {
6530 mcast_rate[band] = i + 1;
6540 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
6542 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6543 struct net_device *dev = info->user_ptr[1];
6544 struct cfg80211_ibss_params ibss;
6545 struct wiphy *wiphy;
6546 struct cfg80211_cached_keys *connkeys = NULL;
6549 memset(&ibss, 0, sizeof(ibss));
6551 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6554 if (!info->attrs[NL80211_ATTR_SSID] ||
6555 !nla_len(info->attrs[NL80211_ATTR_SSID]))
6558 ibss.beacon_interval = 100;
6560 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
6561 ibss.beacon_interval =
6562 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
6563 if (ibss.beacon_interval < 1 || ibss.beacon_interval > 10000)
6567 if (!rdev->ops->join_ibss)
6570 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
6573 wiphy = &rdev->wiphy;
6575 if (info->attrs[NL80211_ATTR_MAC]) {
6576 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6578 if (!is_valid_ether_addr(ibss.bssid))
6581 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6582 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6584 if (info->attrs[NL80211_ATTR_IE]) {
6585 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6586 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6589 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
6593 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef))
6596 switch (ibss.chandef.width) {
6597 case NL80211_CHAN_WIDTH_5:
6598 case NL80211_CHAN_WIDTH_10:
6599 case NL80211_CHAN_WIDTH_20_NOHT:
6601 case NL80211_CHAN_WIDTH_20:
6602 case NL80211_CHAN_WIDTH_40:
6603 if (rdev->wiphy.features & NL80211_FEATURE_HT_IBSS)
6609 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
6610 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
6612 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6614 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6616 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6617 struct ieee80211_supported_band *sband =
6618 wiphy->bands[ibss.chandef.chan->band];
6620 err = ieee80211_get_ratemask(sband, rates, n_rates,
6626 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6627 memcpy(&ibss.ht_capa_mask,
6628 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
6629 sizeof(ibss.ht_capa_mask));
6631 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
6632 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
6634 memcpy(&ibss.ht_capa,
6635 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
6636 sizeof(ibss.ht_capa));
6639 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
6640 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
6641 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
6644 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
6647 connkeys = nl80211_parse_connkeys(rdev,
6648 info->attrs[NL80211_ATTR_KEYS],
6650 if (IS_ERR(connkeys))
6651 return PTR_ERR(connkeys);
6653 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
6661 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
6663 ibss.userspace_handles_dfs =
6664 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
6666 err = cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
6672 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
6674 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6675 struct net_device *dev = info->user_ptr[1];
6677 if (!rdev->ops->leave_ibss)
6680 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
6683 return cfg80211_leave_ibss(rdev, dev, false);
6686 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
6688 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6689 struct net_device *dev = info->user_ptr[1];
6690 int mcast_rate[IEEE80211_NUM_BANDS];
6694 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
6695 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6698 if (!rdev->ops->set_mcast_rate)
6701 memset(mcast_rate, 0, sizeof(mcast_rate));
6703 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
6706 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
6707 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
6710 err = rdev->ops->set_mcast_rate(&rdev->wiphy, dev, mcast_rate);
6715 static struct sk_buff *
6716 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
6717 int approxlen, u32 portid, u32 seq,
6718 enum nl80211_commands cmd,
6719 enum nl80211_attrs attr,
6720 const struct nl80211_vendor_cmd_info *info,
6723 struct sk_buff *skb;
6725 struct nlattr *data;
6727 skb = nlmsg_new(approxlen + 100, gfp);
6731 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
6737 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
6738 goto nla_put_failure;
6741 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
6743 goto nla_put_failure;
6744 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
6746 goto nla_put_failure;
6749 data = nla_nest_start(skb, attr);
6751 ((void **)skb->cb)[0] = rdev;
6752 ((void **)skb->cb)[1] = hdr;
6753 ((void **)skb->cb)[2] = data;
6762 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
6763 enum nl80211_commands cmd,
6764 enum nl80211_attrs attr,
6765 int vendor_event_idx,
6766 int approxlen, gfp_t gfp)
6768 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
6769 const struct nl80211_vendor_cmd_info *info;
6772 case NL80211_CMD_TESTMODE:
6773 if (WARN_ON(vendor_event_idx != -1))
6777 case NL80211_CMD_VENDOR:
6778 if (WARN_ON(vendor_event_idx < 0 ||
6779 vendor_event_idx >= wiphy->n_vendor_events))
6781 info = &wiphy->vendor_events[vendor_event_idx];
6788 return __cfg80211_alloc_vendor_skb(rdev, approxlen, 0, 0,
6789 cmd, attr, info, gfp);
6791 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
6793 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
6795 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
6796 void *hdr = ((void **)skb->cb)[1];
6797 struct nlattr *data = ((void **)skb->cb)[2];
6798 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
6800 nla_nest_end(skb, data);
6801 genlmsg_end(skb, hdr);
6803 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
6804 mcgrp = NL80211_MCGRP_VENDOR;
6806 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), skb, 0,
6809 EXPORT_SYMBOL(__cfg80211_send_event_skb);
6811 #ifdef CONFIG_NL80211_TESTMODE
6812 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
6814 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6815 struct wireless_dev *wdev =
6816 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
6819 if (!rdev->ops->testmode_cmd)
6823 err = PTR_ERR(wdev);
6827 } else if (wdev->wiphy != &rdev->wiphy) {
6831 if (!info->attrs[NL80211_ATTR_TESTDATA])
6834 rdev->cur_cmd_info = info;
6835 err = rdev_testmode_cmd(rdev, wdev,
6836 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
6837 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
6838 rdev->cur_cmd_info = NULL;
6843 static int nl80211_testmode_dump(struct sk_buff *skb,
6844 struct netlink_callback *cb)
6846 struct cfg80211_registered_device *rdev;
6856 * 0 is a valid index, but not valid for args[0],
6857 * so we need to offset by 1.
6859 phy_idx = cb->args[0] - 1;
6861 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
6862 nl80211_fam.attrbuf, nl80211_fam.maxattr,
6867 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk),
6868 nl80211_fam.attrbuf);
6870 err = PTR_ERR(rdev);
6873 phy_idx = rdev->wiphy_idx;
6876 if (nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA])
6878 (long)nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA];
6882 data = nla_data((void *)cb->args[1]);
6883 data_len = nla_len((void *)cb->args[1]);
6886 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
6892 if (!rdev->ops->testmode_dump) {
6898 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
6899 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6900 NL80211_CMD_TESTMODE);
6901 struct nlattr *tmdata;
6906 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
6907 genlmsg_cancel(skb, hdr);
6911 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
6913 genlmsg_cancel(skb, hdr);
6916 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
6917 nla_nest_end(skb, tmdata);
6919 if (err == -ENOBUFS || err == -ENOENT) {
6920 genlmsg_cancel(skb, hdr);
6923 genlmsg_cancel(skb, hdr);
6927 genlmsg_end(skb, hdr);
6932 cb->args[0] = phy_idx + 1;
6939 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
6941 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6942 struct net_device *dev = info->user_ptr[1];
6943 struct cfg80211_connect_params connect;
6944 struct wiphy *wiphy;
6945 struct cfg80211_cached_keys *connkeys = NULL;
6948 memset(&connect, 0, sizeof(connect));
6950 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6953 if (!info->attrs[NL80211_ATTR_SSID] ||
6954 !nla_len(info->attrs[NL80211_ATTR_SSID]))
6957 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
6959 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6960 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
6961 NL80211_CMD_CONNECT))
6964 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
6966 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
6968 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
6969 NL80211_MAX_NR_CIPHER_SUITES);
6973 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6974 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6977 wiphy = &rdev->wiphy;
6979 connect.bg_scan_period = -1;
6980 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
6981 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
6982 connect.bg_scan_period =
6983 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
6986 if (info->attrs[NL80211_ATTR_MAC])
6987 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6988 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6989 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6991 if (info->attrs[NL80211_ATTR_IE]) {
6992 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6993 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6996 if (info->attrs[NL80211_ATTR_USE_MFP]) {
6997 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
6998 if (connect.mfp != NL80211_MFP_REQUIRED &&
6999 connect.mfp != NL80211_MFP_NO)
7002 connect.mfp = NL80211_MFP_NO;
7005 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7007 ieee80211_get_channel(wiphy,
7008 nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]));
7009 if (!connect.channel ||
7010 connect.channel->flags & IEEE80211_CHAN_DISABLED)
7014 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
7015 connkeys = nl80211_parse_connkeys(rdev,
7016 info->attrs[NL80211_ATTR_KEYS], NULL);
7017 if (IS_ERR(connkeys))
7018 return PTR_ERR(connkeys);
7021 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
7022 connect.flags |= ASSOC_REQ_DISABLE_HT;
7024 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7025 memcpy(&connect.ht_capa_mask,
7026 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7027 sizeof(connect.ht_capa_mask));
7029 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7030 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
7034 memcpy(&connect.ht_capa,
7035 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7036 sizeof(connect.ht_capa));
7039 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
7040 connect.flags |= ASSOC_REQ_DISABLE_VHT;
7042 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7043 memcpy(&connect.vht_capa_mask,
7044 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
7045 sizeof(connect.vht_capa_mask));
7047 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
7048 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
7052 memcpy(&connect.vht_capa,
7053 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
7054 sizeof(connect.vht_capa));
7057 wdev_lock(dev->ieee80211_ptr);
7058 err = cfg80211_connect(rdev, dev, &connect, connkeys, NULL);
7059 wdev_unlock(dev->ieee80211_ptr);
7065 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
7067 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7068 struct net_device *dev = info->user_ptr[1];
7072 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7073 reason = WLAN_REASON_DEAUTH_LEAVING;
7075 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7080 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7081 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7084 wdev_lock(dev->ieee80211_ptr);
7085 ret = cfg80211_disconnect(rdev, dev, reason, true);
7086 wdev_unlock(dev->ieee80211_ptr);
7090 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
7092 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7097 if (!info->attrs[NL80211_ATTR_PID])
7100 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
7102 net = get_net_ns_by_pid(pid);
7104 return PTR_ERR(net);
7108 /* check if anything to do */
7109 if (!net_eq(wiphy_net(&rdev->wiphy), net))
7110 err = cfg80211_switch_netns(rdev, net);
7116 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
7118 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7119 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
7120 struct cfg80211_pmksa *pmksa) = NULL;
7121 struct net_device *dev = info->user_ptr[1];
7122 struct cfg80211_pmksa pmksa;
7124 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
7126 if (!info->attrs[NL80211_ATTR_MAC])
7129 if (!info->attrs[NL80211_ATTR_PMKID])
7132 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
7133 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7135 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7136 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7139 switch (info->genlhdr->cmd) {
7140 case NL80211_CMD_SET_PMKSA:
7141 rdev_ops = rdev->ops->set_pmksa;
7143 case NL80211_CMD_DEL_PMKSA:
7144 rdev_ops = rdev->ops->del_pmksa;
7154 return rdev_ops(&rdev->wiphy, dev, &pmksa);
7157 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
7159 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7160 struct net_device *dev = info->user_ptr[1];
7162 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7163 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7166 if (!rdev->ops->flush_pmksa)
7169 return rdev_flush_pmksa(rdev, dev);
7172 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
7174 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7175 struct net_device *dev = info->user_ptr[1];
7176 u8 action_code, dialog_token;
7180 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7181 !rdev->ops->tdls_mgmt)
7184 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
7185 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
7186 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
7187 !info->attrs[NL80211_ATTR_IE] ||
7188 !info->attrs[NL80211_ATTR_MAC])
7191 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7192 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
7193 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
7194 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
7196 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
7197 dialog_token, status_code,
7198 nla_data(info->attrs[NL80211_ATTR_IE]),
7199 nla_len(info->attrs[NL80211_ATTR_IE]));
7202 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
7204 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7205 struct net_device *dev = info->user_ptr[1];
7206 enum nl80211_tdls_operation operation;
7209 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7210 !rdev->ops->tdls_oper)
7213 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
7214 !info->attrs[NL80211_ATTR_MAC])
7217 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
7218 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7220 return rdev_tdls_oper(rdev, dev, peer, operation);
7223 static int nl80211_remain_on_channel(struct sk_buff *skb,
7224 struct genl_info *info)
7226 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7227 struct wireless_dev *wdev = info->user_ptr[1];
7228 struct cfg80211_chan_def chandef;
7229 struct sk_buff *msg;
7235 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
7236 !info->attrs[NL80211_ATTR_DURATION])
7239 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7241 if (!rdev->ops->remain_on_channel ||
7242 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
7246 * We should be on that channel for at least a minimum amount of
7247 * time (10ms) but no longer than the driver supports.
7249 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7250 duration > rdev->wiphy.max_remain_on_channel_duration)
7253 err = nl80211_parse_chandef(rdev, info, &chandef);
7257 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7261 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7262 NL80211_CMD_REMAIN_ON_CHANNEL);
7268 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
7274 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
7275 goto nla_put_failure;
7277 genlmsg_end(msg, hdr);
7279 return genlmsg_reply(msg, info);
7288 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
7289 struct genl_info *info)
7291 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7292 struct wireless_dev *wdev = info->user_ptr[1];
7295 if (!info->attrs[NL80211_ATTR_COOKIE])
7298 if (!rdev->ops->cancel_remain_on_channel)
7301 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7303 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
7306 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
7307 u8 *rates, u8 rates_len)
7312 for (i = 0; i < rates_len; i++) {
7313 int rate = (rates[i] & 0x7f) * 5;
7315 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
7316 struct ieee80211_rate *srate =
7317 &sband->bitrates[ridx];
7318 if (rate == srate->bitrate) {
7323 if (ridx == sband->n_bitrates)
7324 return 0; /* rate not found */
7330 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
7331 u8 *rates, u8 rates_len,
7332 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
7336 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
7338 for (i = 0; i < rates_len; i++) {
7341 ridx = rates[i] / 8;
7342 rbit = BIT(rates[i] % 8);
7344 /* check validity */
7345 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
7348 /* check availability */
7349 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
7358 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
7362 switch (vht_mcs_map) {
7363 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
7365 case IEEE80211_VHT_MCS_SUPPORT_0_7:
7368 case IEEE80211_VHT_MCS_SUPPORT_0_8:
7371 case IEEE80211_VHT_MCS_SUPPORT_0_9:
7381 static void vht_build_mcs_mask(u16 vht_mcs_map,
7382 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
7386 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
7387 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
7392 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
7393 struct nl80211_txrate_vht *txrate,
7394 u16 mcs[NL80211_VHT_NSS_MAX])
7396 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
7397 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
7400 if (!sband->vht_cap.vht_supported)
7403 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
7405 /* Build vht_mcs_mask from VHT capabilities */
7406 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
7408 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
7409 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
7410 mcs[i] = txrate->mcs[i];
7418 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
7419 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
7420 .len = NL80211_MAX_SUPP_RATES },
7421 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
7422 .len = NL80211_MAX_SUPP_HT_RATES },
7423 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
7426 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
7427 struct genl_info *info)
7429 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
7430 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7431 struct cfg80211_bitrate_mask mask;
7433 struct net_device *dev = info->user_ptr[1];
7434 struct nlattr *tx_rates;
7435 struct ieee80211_supported_band *sband;
7438 if (!rdev->ops->set_bitrate_mask)
7441 memset(&mask, 0, sizeof(mask));
7442 /* Default to all rates enabled */
7443 for (i = 0; i < IEEE80211_NUM_BANDS; i++) {
7444 sband = rdev->wiphy.bands[i];
7449 mask.control[i].legacy = (1 << sband->n_bitrates) - 1;
7450 memcpy(mask.control[i].ht_mcs,
7451 sband->ht_cap.mcs.rx_mask,
7452 sizeof(mask.control[i].ht_mcs));
7454 if (!sband->vht_cap.vht_supported)
7457 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
7458 vht_build_mcs_mask(vht_tx_mcs_map, mask.control[i].vht_mcs);
7461 /* if no rates are given set it back to the defaults */
7462 if (!info->attrs[NL80211_ATTR_TX_RATES])
7466 * The nested attribute uses enum nl80211_band as the index. This maps
7467 * directly to the enum ieee80211_band values used in cfg80211.
7469 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
7470 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem)
7472 enum ieee80211_band band = nla_type(tx_rates);
7473 if (band < 0 || band >= IEEE80211_NUM_BANDS)
7475 sband = rdev->wiphy.bands[band];
7478 nla_parse(tb, NL80211_TXRATE_MAX, nla_data(tx_rates),
7479 nla_len(tx_rates), nl80211_txattr_policy);
7480 if (tb[NL80211_TXRATE_LEGACY]) {
7481 mask.control[band].legacy = rateset_to_mask(
7483 nla_data(tb[NL80211_TXRATE_LEGACY]),
7484 nla_len(tb[NL80211_TXRATE_LEGACY]));
7485 if ((mask.control[band].legacy == 0) &&
7486 nla_len(tb[NL80211_TXRATE_LEGACY]))
7489 if (tb[NL80211_TXRATE_HT]) {
7490 if (!ht_rateset_to_mask(
7492 nla_data(tb[NL80211_TXRATE_HT]),
7493 nla_len(tb[NL80211_TXRATE_HT]),
7494 mask.control[band].ht_mcs))
7497 if (tb[NL80211_TXRATE_VHT]) {
7498 if (!vht_set_mcs_mask(
7500 nla_data(tb[NL80211_TXRATE_VHT]),
7501 mask.control[band].vht_mcs))
7505 if (mask.control[band].legacy == 0) {
7506 /* don't allow empty legacy rates if HT or VHT
7507 * are not even supported.
7509 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
7510 rdev->wiphy.bands[band]->vht_cap.vht_supported))
7513 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
7514 if (mask.control[band].ht_mcs[i])
7517 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
7518 if (mask.control[band].vht_mcs[i])
7521 /* legacy and mcs rates may not be both empty */
7527 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
7530 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
7532 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7533 struct wireless_dev *wdev = info->user_ptr[1];
7534 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
7536 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
7539 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
7540 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
7542 switch (wdev->iftype) {
7543 case NL80211_IFTYPE_STATION:
7544 case NL80211_IFTYPE_ADHOC:
7545 case NL80211_IFTYPE_P2P_CLIENT:
7546 case NL80211_IFTYPE_AP:
7547 case NL80211_IFTYPE_AP_VLAN:
7548 case NL80211_IFTYPE_MESH_POINT:
7549 case NL80211_IFTYPE_P2P_GO:
7550 case NL80211_IFTYPE_P2P_DEVICE:
7556 /* not much point in registering if we can't reply */
7557 if (!rdev->ops->mgmt_tx)
7560 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
7561 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
7562 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
7565 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
7567 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7568 struct wireless_dev *wdev = info->user_ptr[1];
7569 struct cfg80211_chan_def chandef;
7573 struct sk_buff *msg = NULL;
7574 struct cfg80211_mgmt_tx_params params = {
7575 .dont_wait_for_ack =
7576 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
7579 if (!info->attrs[NL80211_ATTR_FRAME])
7582 if (!rdev->ops->mgmt_tx)
7585 switch (wdev->iftype) {
7586 case NL80211_IFTYPE_P2P_DEVICE:
7587 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
7589 case NL80211_IFTYPE_STATION:
7590 case NL80211_IFTYPE_ADHOC:
7591 case NL80211_IFTYPE_P2P_CLIENT:
7592 case NL80211_IFTYPE_AP:
7593 case NL80211_IFTYPE_AP_VLAN:
7594 case NL80211_IFTYPE_MESH_POINT:
7595 case NL80211_IFTYPE_P2P_GO:
7601 if (info->attrs[NL80211_ATTR_DURATION]) {
7602 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
7604 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7607 * We should wait on the channel for at least a minimum amount
7608 * of time (10ms) but no longer than the driver supports.
7610 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7611 params.wait > rdev->wiphy.max_remain_on_channel_duration)
7616 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
7618 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
7621 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7623 /* get the channel if any has been specified, otherwise pass NULL to
7624 * the driver. The latter will use the current one
7626 chandef.chan = NULL;
7627 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7628 err = nl80211_parse_chandef(rdev, info, &chandef);
7633 if (!chandef.chan && params.offchan)
7636 if (!params.dont_wait_for_ack) {
7637 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7641 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7649 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
7650 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
7651 params.chan = chandef.chan;
7652 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
7657 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
7658 goto nla_put_failure;
7660 genlmsg_end(msg, hdr);
7661 return genlmsg_reply(msg, info);
7673 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
7675 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7676 struct wireless_dev *wdev = info->user_ptr[1];
7679 if (!info->attrs[NL80211_ATTR_COOKIE])
7682 if (!rdev->ops->mgmt_tx_cancel_wait)
7685 switch (wdev->iftype) {
7686 case NL80211_IFTYPE_STATION:
7687 case NL80211_IFTYPE_ADHOC:
7688 case NL80211_IFTYPE_P2P_CLIENT:
7689 case NL80211_IFTYPE_AP:
7690 case NL80211_IFTYPE_AP_VLAN:
7691 case NL80211_IFTYPE_P2P_GO:
7692 case NL80211_IFTYPE_P2P_DEVICE:
7698 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7700 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
7703 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
7705 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7706 struct wireless_dev *wdev;
7707 struct net_device *dev = info->user_ptr[1];
7712 if (!info->attrs[NL80211_ATTR_PS_STATE])
7715 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
7717 if (ps_state != NL80211_PS_DISABLED && ps_state != NL80211_PS_ENABLED)
7720 wdev = dev->ieee80211_ptr;
7722 if (!rdev->ops->set_power_mgmt)
7725 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
7727 if (state == wdev->ps)
7730 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
7736 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
7738 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7739 enum nl80211_ps_state ps_state;
7740 struct wireless_dev *wdev;
7741 struct net_device *dev = info->user_ptr[1];
7742 struct sk_buff *msg;
7746 wdev = dev->ieee80211_ptr;
7748 if (!rdev->ops->set_power_mgmt)
7751 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7755 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7756 NL80211_CMD_GET_POWER_SAVE);
7763 ps_state = NL80211_PS_ENABLED;
7765 ps_state = NL80211_PS_DISABLED;
7767 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
7768 goto nla_put_failure;
7770 genlmsg_end(msg, hdr);
7771 return genlmsg_reply(msg, info);
7780 static struct nla_policy
7781 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] __read_mostly = {
7782 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_U32 },
7783 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
7784 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
7785 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
7786 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
7787 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
7790 static int nl80211_set_cqm_txe(struct genl_info *info,
7791 u32 rate, u32 pkts, u32 intvl)
7793 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7794 struct net_device *dev = info->user_ptr[1];
7795 struct wireless_dev *wdev = dev->ieee80211_ptr;
7797 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
7800 if (!rdev->ops->set_cqm_txe_config)
7803 if (wdev->iftype != NL80211_IFTYPE_STATION &&
7804 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
7807 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
7810 static int nl80211_set_cqm_rssi(struct genl_info *info,
7811 s32 threshold, u32 hysteresis)
7813 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7814 struct net_device *dev = info->user_ptr[1];
7815 struct wireless_dev *wdev = dev->ieee80211_ptr;
7820 /* disabling - hysteresis should also be zero then */
7824 if (!rdev->ops->set_cqm_rssi_config)
7827 if (wdev->iftype != NL80211_IFTYPE_STATION &&
7828 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
7831 return rdev_set_cqm_rssi_config(rdev, dev, threshold, hysteresis);
7834 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
7836 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
7840 cqm = info->attrs[NL80211_ATTR_CQM];
7844 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
7845 nl80211_attr_cqm_policy);
7849 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
7850 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
7851 s32 threshold = nla_get_s32(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
7852 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
7854 return nl80211_set_cqm_rssi(info, threshold, hysteresis);
7857 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
7858 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
7859 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
7860 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
7861 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
7862 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
7864 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
7870 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
7872 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7873 struct net_device *dev = info->user_ptr[1];
7874 struct mesh_config cfg;
7875 struct mesh_setup setup;
7878 /* start with default */
7879 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
7880 memcpy(&setup, &default_mesh_setup, sizeof(setup));
7882 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
7883 /* and parse parameters if given */
7884 err = nl80211_parse_mesh_config(info, &cfg, NULL);
7889 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
7890 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
7893 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
7894 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
7896 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
7897 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
7898 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
7901 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
7902 setup.beacon_interval =
7903 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
7904 if (setup.beacon_interval < 10 ||
7905 setup.beacon_interval > 10000)
7909 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
7911 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
7912 if (setup.dtim_period < 1 || setup.dtim_period > 100)
7916 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
7917 /* parse additional setup parameters if given */
7918 err = nl80211_parse_mesh_setup(info, &setup);
7924 cfg.auto_open_plinks = false;
7926 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7927 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
7931 /* cfg80211_join_mesh() will sort it out */
7932 setup.chandef.chan = NULL;
7935 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
7936 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7938 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7939 struct ieee80211_supported_band *sband;
7941 if (!setup.chandef.chan)
7944 sband = rdev->wiphy.bands[setup.chandef.chan->band];
7946 err = ieee80211_get_ratemask(sband, rates, n_rates,
7947 &setup.basic_rates);
7952 return cfg80211_join_mesh(rdev, dev, &setup, &cfg);
7955 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
7957 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7958 struct net_device *dev = info->user_ptr[1];
7960 return cfg80211_leave_mesh(rdev, dev);
7964 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
7965 struct cfg80211_registered_device *rdev)
7967 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
7968 struct nlattr *nl_pats, *nl_pat;
7971 if (!wowlan->n_patterns)
7974 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
7978 for (i = 0; i < wowlan->n_patterns; i++) {
7979 nl_pat = nla_nest_start(msg, i + 1);
7982 pat_len = wowlan->patterns[i].pattern_len;
7983 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
7984 wowlan->patterns[i].mask) ||
7985 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
7986 wowlan->patterns[i].pattern) ||
7987 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
7988 wowlan->patterns[i].pkt_offset))
7990 nla_nest_end(msg, nl_pat);
7992 nla_nest_end(msg, nl_pats);
7997 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
7998 struct cfg80211_wowlan_tcp *tcp)
8000 struct nlattr *nl_tcp;
8005 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
8009 if (nla_put_be32(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
8010 nla_put_be32(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
8011 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
8012 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
8013 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
8014 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
8015 tcp->payload_len, tcp->payload) ||
8016 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
8017 tcp->data_interval) ||
8018 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
8019 tcp->wake_len, tcp->wake_data) ||
8020 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
8021 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
8024 if (tcp->payload_seq.len &&
8025 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
8026 sizeof(tcp->payload_seq), &tcp->payload_seq))
8029 if (tcp->payload_tok.len &&
8030 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
8031 sizeof(tcp->payload_tok) + tcp->tokens_size,
8035 nla_nest_end(msg, nl_tcp);
8040 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
8042 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8043 struct sk_buff *msg;
8045 u32 size = NLMSG_DEFAULT_SIZE;
8047 if (!rdev->wiphy.wowlan)
8050 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
8051 /* adjust size to have room for all the data */
8052 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
8053 rdev->wiphy.wowlan_config->tcp->payload_len +
8054 rdev->wiphy.wowlan_config->tcp->wake_len +
8055 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
8058 msg = nlmsg_new(size, GFP_KERNEL);
8062 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8063 NL80211_CMD_GET_WOWLAN);
8065 goto nla_put_failure;
8067 if (rdev->wiphy.wowlan_config) {
8068 struct nlattr *nl_wowlan;
8070 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
8072 goto nla_put_failure;
8074 if ((rdev->wiphy.wowlan_config->any &&
8075 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
8076 (rdev->wiphy.wowlan_config->disconnect &&
8077 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
8078 (rdev->wiphy.wowlan_config->magic_pkt &&
8079 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
8080 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
8081 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
8082 (rdev->wiphy.wowlan_config->eap_identity_req &&
8083 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
8084 (rdev->wiphy.wowlan_config->four_way_handshake &&
8085 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
8086 (rdev->wiphy.wowlan_config->rfkill_release &&
8087 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
8088 goto nla_put_failure;
8090 if (nl80211_send_wowlan_patterns(msg, rdev))
8091 goto nla_put_failure;
8093 if (nl80211_send_wowlan_tcp(msg,
8094 rdev->wiphy.wowlan_config->tcp))
8095 goto nla_put_failure;
8097 nla_nest_end(msg, nl_wowlan);
8100 genlmsg_end(msg, hdr);
8101 return genlmsg_reply(msg, info);
8108 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
8109 struct nlattr *attr,
8110 struct cfg80211_wowlan *trig)
8112 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
8113 struct cfg80211_wowlan_tcp *cfg;
8114 struct nl80211_wowlan_tcp_data_token *tok = NULL;
8115 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
8117 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
8120 if (!rdev->wiphy.wowlan->tcp)
8123 err = nla_parse(tb, MAX_NL80211_WOWLAN_TCP,
8124 nla_data(attr), nla_len(attr),
8125 nl80211_wowlan_tcp_policy);
8129 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
8130 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
8131 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
8132 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
8133 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
8134 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
8135 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
8136 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
8139 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
8140 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
8143 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
8144 rdev->wiphy.wowlan->tcp->data_interval_max ||
8145 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
8148 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
8149 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
8152 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
8153 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
8156 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
8157 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8159 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8160 tokens_size = tokln - sizeof(*tok);
8162 if (!tok->len || tokens_size % tok->len)
8164 if (!rdev->wiphy.wowlan->tcp->tok)
8166 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
8168 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
8170 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
8172 if (tok->offset + tok->len > data_size)
8176 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
8177 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
8178 if (!rdev->wiphy.wowlan->tcp->seq)
8180 if (seq->len == 0 || seq->len > 4)
8182 if (seq->len + seq->offset > data_size)
8186 size = sizeof(*cfg);
8188 size += wake_size + wake_mask_size;
8189 size += tokens_size;
8191 cfg = kzalloc(size, GFP_KERNEL);
8194 cfg->src = nla_get_be32(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
8195 cfg->dst = nla_get_be32(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
8196 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
8198 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
8199 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
8203 /* allocate a socket and port for it and use it */
8204 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
8205 IPPROTO_TCP, &cfg->sock, 1);
8210 if (inet_csk_get_port(cfg->sock->sk, port)) {
8211 sock_release(cfg->sock);
8215 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
8221 cfg->src_port = port;
8224 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
8225 cfg->payload_len = data_size;
8226 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
8227 memcpy((void *)cfg->payload,
8228 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
8231 cfg->payload_seq = *seq;
8232 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
8233 cfg->wake_len = wake_size;
8234 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
8235 memcpy((void *)cfg->wake_data,
8236 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
8238 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
8239 data_size + wake_size;
8240 memcpy((void *)cfg->wake_mask,
8241 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
8244 cfg->tokens_size = tokens_size;
8245 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
8253 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
8255 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8256 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
8257 struct cfg80211_wowlan new_triggers = {};
8258 struct cfg80211_wowlan *ntrig;
8259 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
8261 bool prev_enabled = rdev->wiphy.wowlan_config;
8266 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
8267 cfg80211_rdev_free_wowlan(rdev);
8268 rdev->wiphy.wowlan_config = NULL;
8272 err = nla_parse(tb, MAX_NL80211_WOWLAN_TRIG,
8273 nla_data(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
8274 nla_len(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
8275 nl80211_wowlan_policy);
8279 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
8280 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
8282 new_triggers.any = true;
8285 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
8286 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
8288 new_triggers.disconnect = true;
8291 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
8292 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
8294 new_triggers.magic_pkt = true;
8297 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
8300 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
8301 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
8303 new_triggers.gtk_rekey_failure = true;
8306 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
8307 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
8309 new_triggers.eap_identity_req = true;
8312 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
8313 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
8315 new_triggers.four_way_handshake = true;
8318 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
8319 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
8321 new_triggers.rfkill_release = true;
8324 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
8327 int rem, pat_len, mask_len, pkt_offset;
8328 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
8330 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
8333 if (n_patterns > wowlan->n_patterns)
8336 new_triggers.patterns = kcalloc(n_patterns,
8337 sizeof(new_triggers.patterns[0]),
8339 if (!new_triggers.patterns)
8342 new_triggers.n_patterns = n_patterns;
8345 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
8347 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
8348 nla_len(pat), NULL);
8350 if (!pat_tb[NL80211_PKTPAT_MASK] ||
8351 !pat_tb[NL80211_PKTPAT_PATTERN])
8353 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
8354 mask_len = DIV_ROUND_UP(pat_len, 8);
8355 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
8357 if (pat_len > wowlan->pattern_max_len ||
8358 pat_len < wowlan->pattern_min_len)
8361 if (!pat_tb[NL80211_PKTPAT_OFFSET])
8364 pkt_offset = nla_get_u32(
8365 pat_tb[NL80211_PKTPAT_OFFSET]);
8366 if (pkt_offset > wowlan->max_pkt_offset)
8368 new_triggers.patterns[i].pkt_offset = pkt_offset;
8370 new_triggers.patterns[i].mask =
8371 kmalloc(mask_len + pat_len, GFP_KERNEL);
8372 if (!new_triggers.patterns[i].mask) {
8376 new_triggers.patterns[i].pattern =
8377 new_triggers.patterns[i].mask + mask_len;
8378 memcpy(new_triggers.patterns[i].mask,
8379 nla_data(pat_tb[NL80211_PKTPAT_MASK]),
8381 new_triggers.patterns[i].pattern_len = pat_len;
8382 memcpy(new_triggers.patterns[i].pattern,
8383 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
8389 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
8390 err = nl80211_parse_wowlan_tcp(
8391 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
8397 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
8402 cfg80211_rdev_free_wowlan(rdev);
8403 rdev->wiphy.wowlan_config = ntrig;
8406 if (rdev->ops->set_wakeup &&
8407 prev_enabled != !!rdev->wiphy.wowlan_config)
8408 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
8412 for (i = 0; i < new_triggers.n_patterns; i++)
8413 kfree(new_triggers.patterns[i].mask);
8414 kfree(new_triggers.patterns);
8415 if (new_triggers.tcp && new_triggers.tcp->sock)
8416 sock_release(new_triggers.tcp->sock);
8417 kfree(new_triggers.tcp);
8422 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
8423 struct cfg80211_registered_device *rdev)
8425 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
8427 struct cfg80211_coalesce_rules *rule;
8429 if (!rdev->coalesce->n_rules)
8432 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
8436 for (i = 0; i < rdev->coalesce->n_rules; i++) {
8437 nl_rule = nla_nest_start(msg, i + 1);
8441 rule = &rdev->coalesce->rules[i];
8442 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
8446 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
8450 nl_pats = nla_nest_start(msg,
8451 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
8455 for (j = 0; j < rule->n_patterns; j++) {
8456 nl_pat = nla_nest_start(msg, j + 1);
8459 pat_len = rule->patterns[j].pattern_len;
8460 if (nla_put(msg, NL80211_PKTPAT_MASK,
8461 DIV_ROUND_UP(pat_len, 8),
8462 rule->patterns[j].mask) ||
8463 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
8464 rule->patterns[j].pattern) ||
8465 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
8466 rule->patterns[j].pkt_offset))
8468 nla_nest_end(msg, nl_pat);
8470 nla_nest_end(msg, nl_pats);
8471 nla_nest_end(msg, nl_rule);
8473 nla_nest_end(msg, nl_rules);
8478 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
8480 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8481 struct sk_buff *msg;
8484 if (!rdev->wiphy.coalesce)
8487 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8491 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8492 NL80211_CMD_GET_COALESCE);
8494 goto nla_put_failure;
8496 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
8497 goto nla_put_failure;
8499 genlmsg_end(msg, hdr);
8500 return genlmsg_reply(msg, info);
8507 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
8509 struct cfg80211_coalesce *coalesce = rdev->coalesce;
8511 struct cfg80211_coalesce_rules *rule;
8516 for (i = 0; i < coalesce->n_rules; i++) {
8517 rule = &coalesce->rules[i];
8518 for (j = 0; j < rule->n_patterns; j++)
8519 kfree(rule->patterns[j].mask);
8520 kfree(rule->patterns);
8522 kfree(coalesce->rules);
8524 rdev->coalesce = NULL;
8527 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
8528 struct nlattr *rule,
8529 struct cfg80211_coalesce_rules *new_rule)
8532 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
8533 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
8534 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
8535 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
8537 err = nla_parse(tb, NL80211_ATTR_COALESCE_RULE_MAX, nla_data(rule),
8538 nla_len(rule), nl80211_coalesce_policy);
8542 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
8544 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
8545 if (new_rule->delay > coalesce->max_delay)
8548 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
8549 new_rule->condition =
8550 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
8551 if (new_rule->condition != NL80211_COALESCE_CONDITION_MATCH &&
8552 new_rule->condition != NL80211_COALESCE_CONDITION_NO_MATCH)
8555 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
8558 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
8561 if (n_patterns > coalesce->n_patterns)
8564 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
8566 if (!new_rule->patterns)
8569 new_rule->n_patterns = n_patterns;
8572 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
8574 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
8575 nla_len(pat), NULL);
8576 if (!pat_tb[NL80211_PKTPAT_MASK] ||
8577 !pat_tb[NL80211_PKTPAT_PATTERN])
8579 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
8580 mask_len = DIV_ROUND_UP(pat_len, 8);
8581 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
8583 if (pat_len > coalesce->pattern_max_len ||
8584 pat_len < coalesce->pattern_min_len)
8587 if (!pat_tb[NL80211_PKTPAT_OFFSET])
8590 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
8591 if (pkt_offset > coalesce->max_pkt_offset)
8593 new_rule->patterns[i].pkt_offset = pkt_offset;
8595 new_rule->patterns[i].mask =
8596 kmalloc(mask_len + pat_len, GFP_KERNEL);
8597 if (!new_rule->patterns[i].mask)
8599 new_rule->patterns[i].pattern =
8600 new_rule->patterns[i].mask + mask_len;
8601 memcpy(new_rule->patterns[i].mask,
8602 nla_data(pat_tb[NL80211_PKTPAT_MASK]), mask_len);
8603 new_rule->patterns[i].pattern_len = pat_len;
8604 memcpy(new_rule->patterns[i].pattern,
8605 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]), pat_len);
8612 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
8614 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8615 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
8616 struct cfg80211_coalesce new_coalesce = {};
8617 struct cfg80211_coalesce *n_coalesce;
8618 int err, rem_rule, n_rules = 0, i, j;
8619 struct nlattr *rule;
8620 struct cfg80211_coalesce_rules *tmp_rule;
8622 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
8625 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
8626 cfg80211_rdev_free_coalesce(rdev);
8627 rdev->ops->set_coalesce(&rdev->wiphy, NULL);
8631 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
8634 if (n_rules > coalesce->n_rules)
8637 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
8639 if (!new_coalesce.rules)
8642 new_coalesce.n_rules = n_rules;
8645 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
8647 err = nl80211_parse_coalesce_rule(rdev, rule,
8648 &new_coalesce.rules[i]);
8655 err = rdev->ops->set_coalesce(&rdev->wiphy, &new_coalesce);
8659 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
8664 cfg80211_rdev_free_coalesce(rdev);
8665 rdev->coalesce = n_coalesce;
8669 for (i = 0; i < new_coalesce.n_rules; i++) {
8670 tmp_rule = &new_coalesce.rules[i];
8671 for (j = 0; j < tmp_rule->n_patterns; j++)
8672 kfree(tmp_rule->patterns[j].mask);
8673 kfree(tmp_rule->patterns);
8675 kfree(new_coalesce.rules);
8680 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
8682 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8683 struct net_device *dev = info->user_ptr[1];
8684 struct wireless_dev *wdev = dev->ieee80211_ptr;
8685 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
8686 struct cfg80211_gtk_rekey_data rekey_data;
8689 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
8692 err = nla_parse(tb, MAX_NL80211_REKEY_DATA,
8693 nla_data(info->attrs[NL80211_ATTR_REKEY_DATA]),
8694 nla_len(info->attrs[NL80211_ATTR_REKEY_DATA]),
8695 nl80211_rekey_policy);
8699 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
8701 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
8703 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
8706 memcpy(rekey_data.kek, nla_data(tb[NL80211_REKEY_DATA_KEK]),
8708 memcpy(rekey_data.kck, nla_data(tb[NL80211_REKEY_DATA_KCK]),
8710 memcpy(rekey_data.replay_ctr,
8711 nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]),
8712 NL80211_REPLAY_CTR_LEN);
8715 if (!wdev->current_bss) {
8720 if (!rdev->ops->set_rekey_data) {
8725 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
8731 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
8732 struct genl_info *info)
8734 struct net_device *dev = info->user_ptr[1];
8735 struct wireless_dev *wdev = dev->ieee80211_ptr;
8737 if (wdev->iftype != NL80211_IFTYPE_AP &&
8738 wdev->iftype != NL80211_IFTYPE_P2P_GO)
8741 if (wdev->ap_unexpected_nlportid)
8744 wdev->ap_unexpected_nlportid = info->snd_portid;
8748 static int nl80211_probe_client(struct sk_buff *skb,
8749 struct genl_info *info)
8751 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8752 struct net_device *dev = info->user_ptr[1];
8753 struct wireless_dev *wdev = dev->ieee80211_ptr;
8754 struct sk_buff *msg;
8760 if (wdev->iftype != NL80211_IFTYPE_AP &&
8761 wdev->iftype != NL80211_IFTYPE_P2P_GO)
8764 if (!info->attrs[NL80211_ATTR_MAC])
8767 if (!rdev->ops->probe_client)
8770 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8774 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8775 NL80211_CMD_PROBE_CLIENT);
8781 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
8783 err = rdev_probe_client(rdev, dev, addr, &cookie);
8787 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
8788 goto nla_put_failure;
8790 genlmsg_end(msg, hdr);
8792 return genlmsg_reply(msg, info);
8801 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
8803 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8804 struct cfg80211_beacon_registration *reg, *nreg;
8807 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
8810 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
8814 /* First, check if already registered. */
8815 spin_lock_bh(&rdev->beacon_registrations_lock);
8816 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
8817 if (reg->nlportid == info->snd_portid) {
8822 /* Add it to the list */
8823 nreg->nlportid = info->snd_portid;
8824 list_add(&nreg->list, &rdev->beacon_registrations);
8826 spin_unlock_bh(&rdev->beacon_registrations_lock);
8830 spin_unlock_bh(&rdev->beacon_registrations_lock);
8835 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
8837 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8838 struct wireless_dev *wdev = info->user_ptr[1];
8841 if (!rdev->ops->start_p2p_device)
8844 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
8847 if (wdev->p2p_started)
8850 err = cfg80211_can_add_interface(rdev, wdev->iftype);
8854 err = rdev_start_p2p_device(rdev, wdev);
8858 wdev->p2p_started = true;
8864 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
8866 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8867 struct wireless_dev *wdev = info->user_ptr[1];
8869 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
8872 if (!rdev->ops->stop_p2p_device)
8875 cfg80211_stop_p2p_device(rdev, wdev);
8880 static int nl80211_get_protocol_features(struct sk_buff *skb,
8881 struct genl_info *info)
8884 struct sk_buff *msg;
8886 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8890 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8891 NL80211_CMD_GET_PROTOCOL_FEATURES);
8893 goto nla_put_failure;
8895 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
8896 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
8897 goto nla_put_failure;
8899 genlmsg_end(msg, hdr);
8900 return genlmsg_reply(msg, info);
8907 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
8909 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8910 struct cfg80211_update_ft_ies_params ft_params;
8911 struct net_device *dev = info->user_ptr[1];
8913 if (!rdev->ops->update_ft_ies)
8916 if (!info->attrs[NL80211_ATTR_MDID] ||
8917 !is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8920 memset(&ft_params, 0, sizeof(ft_params));
8921 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
8922 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8923 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8925 return rdev_update_ft_ies(rdev, dev, &ft_params);
8928 static int nl80211_crit_protocol_start(struct sk_buff *skb,
8929 struct genl_info *info)
8931 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8932 struct wireless_dev *wdev = info->user_ptr[1];
8933 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
8937 if (!rdev->ops->crit_proto_start)
8940 if (WARN_ON(!rdev->ops->crit_proto_stop))
8943 if (rdev->crit_proto_nlportid)
8946 /* determine protocol if provided */
8947 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
8948 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
8950 if (proto >= NUM_NL80211_CRIT_PROTO)
8953 /* timeout must be provided */
8954 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
8958 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
8960 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
8963 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
8965 rdev->crit_proto_nlportid = info->snd_portid;
8970 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
8971 struct genl_info *info)
8973 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8974 struct wireless_dev *wdev = info->user_ptr[1];
8976 if (!rdev->ops->crit_proto_stop)
8979 if (rdev->crit_proto_nlportid) {
8980 rdev->crit_proto_nlportid = 0;
8981 rdev_crit_proto_stop(rdev, wdev);
8986 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
8988 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8989 struct wireless_dev *wdev =
8990 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
8994 if (!rdev->wiphy.vendor_commands)
8998 err = PTR_ERR(wdev);
9002 } else if (wdev->wiphy != &rdev->wiphy) {
9006 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
9007 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
9010 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
9011 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
9012 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
9013 const struct wiphy_vendor_command *vcmd;
9017 vcmd = &rdev->wiphy.vendor_commands[i];
9019 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
9022 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
9023 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
9026 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
9030 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
9032 !netif_running(wdev->netdev))
9034 if (!wdev->netdev && !wdev->p2p_started)
9041 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
9042 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9043 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9046 rdev->cur_cmd_info = info;
9047 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
9049 rdev->cur_cmd_info = NULL;
9056 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
9057 enum nl80211_commands cmd,
9058 enum nl80211_attrs attr,
9061 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
9063 if (WARN_ON(!rdev->cur_cmd_info))
9066 return __cfg80211_alloc_vendor_skb(rdev, approxlen,
9067 rdev->cur_cmd_info->snd_portid,
9068 rdev->cur_cmd_info->snd_seq,
9069 cmd, attr, NULL, GFP_KERNEL);
9071 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
9073 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
9075 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9076 void *hdr = ((void **)skb->cb)[1];
9077 struct nlattr *data = ((void **)skb->cb)[2];
9079 if (WARN_ON(!rdev->cur_cmd_info)) {
9084 nla_nest_end(skb, data);
9085 genlmsg_end(skb, hdr);
9086 return genlmsg_reply(skb, rdev->cur_cmd_info);
9088 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
9091 static int nl80211_set_qos_map(struct sk_buff *skb,
9092 struct genl_info *info)
9094 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9095 struct cfg80211_qos_map *qos_map = NULL;
9096 struct net_device *dev = info->user_ptr[1];
9097 u8 *pos, len, num_des, des_len, des;
9100 if (!rdev->ops->set_qos_map)
9103 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
9104 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
9105 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
9107 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
9108 len > IEEE80211_QOS_MAP_LEN_MAX)
9111 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
9115 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
9118 sizeof(struct cfg80211_dscp_exception);
9119 memcpy(qos_map->dscp_exception, pos, des_len);
9120 qos_map->num_des = num_des;
9121 for (des = 0; des < num_des; des++) {
9122 if (qos_map->dscp_exception[des].up > 7) {
9129 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
9132 wdev_lock(dev->ieee80211_ptr);
9133 ret = nl80211_key_allowed(dev->ieee80211_ptr);
9135 ret = rdev_set_qos_map(rdev, dev, qos_map);
9136 wdev_unlock(dev->ieee80211_ptr);
9142 #define NL80211_FLAG_NEED_WIPHY 0x01
9143 #define NL80211_FLAG_NEED_NETDEV 0x02
9144 #define NL80211_FLAG_NEED_RTNL 0x04
9145 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
9146 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
9147 NL80211_FLAG_CHECK_NETDEV_UP)
9148 #define NL80211_FLAG_NEED_WDEV 0x10
9149 /* If a netdev is associated, it must be UP, P2P must be started */
9150 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
9151 NL80211_FLAG_CHECK_NETDEV_UP)
9153 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
9154 struct genl_info *info)
9156 struct cfg80211_registered_device *rdev;
9157 struct wireless_dev *wdev;
9158 struct net_device *dev;
9159 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
9164 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
9165 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
9169 return PTR_ERR(rdev);
9171 info->user_ptr[0] = rdev;
9172 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
9173 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
9176 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
9181 return PTR_ERR(wdev);
9185 rdev = wiphy_to_dev(wdev->wiphy);
9187 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
9194 info->user_ptr[1] = dev;
9196 info->user_ptr[1] = wdev;
9200 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
9201 !netif_running(dev)) {
9208 } else if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP) {
9209 if (!wdev->p2p_started) {
9216 info->user_ptr[0] = rdev;
9222 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
9223 struct genl_info *info)
9225 if (info->user_ptr[1]) {
9226 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
9227 struct wireless_dev *wdev = info->user_ptr[1];
9230 dev_put(wdev->netdev);
9232 dev_put(info->user_ptr[1]);
9235 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
9239 static const struct genl_ops nl80211_ops[] = {
9241 .cmd = NL80211_CMD_GET_WIPHY,
9242 .doit = nl80211_get_wiphy,
9243 .dumpit = nl80211_dump_wiphy,
9244 .done = nl80211_dump_wiphy_done,
9245 .policy = nl80211_policy,
9246 /* can be retrieved by unprivileged users */
9247 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9248 NL80211_FLAG_NEED_RTNL,
9251 .cmd = NL80211_CMD_SET_WIPHY,
9252 .doit = nl80211_set_wiphy,
9253 .policy = nl80211_policy,
9254 .flags = GENL_ADMIN_PERM,
9255 .internal_flags = NL80211_FLAG_NEED_RTNL,
9258 .cmd = NL80211_CMD_GET_INTERFACE,
9259 .doit = nl80211_get_interface,
9260 .dumpit = nl80211_dump_interface,
9261 .policy = nl80211_policy,
9262 /* can be retrieved by unprivileged users */
9263 .internal_flags = NL80211_FLAG_NEED_WDEV |
9264 NL80211_FLAG_NEED_RTNL,
9267 .cmd = NL80211_CMD_SET_INTERFACE,
9268 .doit = nl80211_set_interface,
9269 .policy = nl80211_policy,
9270 .flags = GENL_ADMIN_PERM,
9271 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9272 NL80211_FLAG_NEED_RTNL,
9275 .cmd = NL80211_CMD_NEW_INTERFACE,
9276 .doit = nl80211_new_interface,
9277 .policy = nl80211_policy,
9278 .flags = GENL_ADMIN_PERM,
9279 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9280 NL80211_FLAG_NEED_RTNL,
9283 .cmd = NL80211_CMD_DEL_INTERFACE,
9284 .doit = nl80211_del_interface,
9285 .policy = nl80211_policy,
9286 .flags = GENL_ADMIN_PERM,
9287 .internal_flags = NL80211_FLAG_NEED_WDEV |
9288 NL80211_FLAG_NEED_RTNL,
9291 .cmd = NL80211_CMD_GET_KEY,
9292 .doit = nl80211_get_key,
9293 .policy = nl80211_policy,
9294 .flags = GENL_ADMIN_PERM,
9295 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9296 NL80211_FLAG_NEED_RTNL,
9299 .cmd = NL80211_CMD_SET_KEY,
9300 .doit = nl80211_set_key,
9301 .policy = nl80211_policy,
9302 .flags = GENL_ADMIN_PERM,
9303 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9304 NL80211_FLAG_NEED_RTNL,
9307 .cmd = NL80211_CMD_NEW_KEY,
9308 .doit = nl80211_new_key,
9309 .policy = nl80211_policy,
9310 .flags = GENL_ADMIN_PERM,
9311 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9312 NL80211_FLAG_NEED_RTNL,
9315 .cmd = NL80211_CMD_DEL_KEY,
9316 .doit = nl80211_del_key,
9317 .policy = nl80211_policy,
9318 .flags = GENL_ADMIN_PERM,
9319 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9320 NL80211_FLAG_NEED_RTNL,
9323 .cmd = NL80211_CMD_SET_BEACON,
9324 .policy = nl80211_policy,
9325 .flags = GENL_ADMIN_PERM,
9326 .doit = nl80211_set_beacon,
9327 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9328 NL80211_FLAG_NEED_RTNL,
9331 .cmd = NL80211_CMD_START_AP,
9332 .policy = nl80211_policy,
9333 .flags = GENL_ADMIN_PERM,
9334 .doit = nl80211_start_ap,
9335 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9336 NL80211_FLAG_NEED_RTNL,
9339 .cmd = NL80211_CMD_STOP_AP,
9340 .policy = nl80211_policy,
9341 .flags = GENL_ADMIN_PERM,
9342 .doit = nl80211_stop_ap,
9343 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9344 NL80211_FLAG_NEED_RTNL,
9347 .cmd = NL80211_CMD_GET_STATION,
9348 .doit = nl80211_get_station,
9349 .dumpit = nl80211_dump_station,
9350 .policy = nl80211_policy,
9351 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9352 NL80211_FLAG_NEED_RTNL,
9355 .cmd = NL80211_CMD_SET_STATION,
9356 .doit = nl80211_set_station,
9357 .policy = nl80211_policy,
9358 .flags = GENL_ADMIN_PERM,
9359 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9360 NL80211_FLAG_NEED_RTNL,
9363 .cmd = NL80211_CMD_NEW_STATION,
9364 .doit = nl80211_new_station,
9365 .policy = nl80211_policy,
9366 .flags = GENL_ADMIN_PERM,
9367 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9368 NL80211_FLAG_NEED_RTNL,
9371 .cmd = NL80211_CMD_DEL_STATION,
9372 .doit = nl80211_del_station,
9373 .policy = nl80211_policy,
9374 .flags = GENL_ADMIN_PERM,
9375 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9376 NL80211_FLAG_NEED_RTNL,
9379 .cmd = NL80211_CMD_GET_MPATH,
9380 .doit = nl80211_get_mpath,
9381 .dumpit = nl80211_dump_mpath,
9382 .policy = nl80211_policy,
9383 .flags = GENL_ADMIN_PERM,
9384 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9385 NL80211_FLAG_NEED_RTNL,
9388 .cmd = NL80211_CMD_SET_MPATH,
9389 .doit = nl80211_set_mpath,
9390 .policy = nl80211_policy,
9391 .flags = GENL_ADMIN_PERM,
9392 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9393 NL80211_FLAG_NEED_RTNL,
9396 .cmd = NL80211_CMD_NEW_MPATH,
9397 .doit = nl80211_new_mpath,
9398 .policy = nl80211_policy,
9399 .flags = GENL_ADMIN_PERM,
9400 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9401 NL80211_FLAG_NEED_RTNL,
9404 .cmd = NL80211_CMD_DEL_MPATH,
9405 .doit = nl80211_del_mpath,
9406 .policy = nl80211_policy,
9407 .flags = GENL_ADMIN_PERM,
9408 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9409 NL80211_FLAG_NEED_RTNL,
9412 .cmd = NL80211_CMD_SET_BSS,
9413 .doit = nl80211_set_bss,
9414 .policy = nl80211_policy,
9415 .flags = GENL_ADMIN_PERM,
9416 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9417 NL80211_FLAG_NEED_RTNL,
9420 .cmd = NL80211_CMD_GET_REG,
9421 .doit = nl80211_get_reg,
9422 .policy = nl80211_policy,
9423 .internal_flags = NL80211_FLAG_NEED_RTNL,
9424 /* can be retrieved by unprivileged users */
9427 .cmd = NL80211_CMD_SET_REG,
9428 .doit = nl80211_set_reg,
9429 .policy = nl80211_policy,
9430 .flags = GENL_ADMIN_PERM,
9431 .internal_flags = NL80211_FLAG_NEED_RTNL,
9434 .cmd = NL80211_CMD_REQ_SET_REG,
9435 .doit = nl80211_req_set_reg,
9436 .policy = nl80211_policy,
9437 .flags = GENL_ADMIN_PERM,
9440 .cmd = NL80211_CMD_GET_MESH_CONFIG,
9441 .doit = nl80211_get_mesh_config,
9442 .policy = nl80211_policy,
9443 /* can be retrieved by unprivileged users */
9444 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9445 NL80211_FLAG_NEED_RTNL,
9448 .cmd = NL80211_CMD_SET_MESH_CONFIG,
9449 .doit = nl80211_update_mesh_config,
9450 .policy = nl80211_policy,
9451 .flags = GENL_ADMIN_PERM,
9452 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9453 NL80211_FLAG_NEED_RTNL,
9456 .cmd = NL80211_CMD_TRIGGER_SCAN,
9457 .doit = nl80211_trigger_scan,
9458 .policy = nl80211_policy,
9459 .flags = GENL_ADMIN_PERM,
9460 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9461 NL80211_FLAG_NEED_RTNL,
9464 .cmd = NL80211_CMD_GET_SCAN,
9465 .policy = nl80211_policy,
9466 .dumpit = nl80211_dump_scan,
9469 .cmd = NL80211_CMD_START_SCHED_SCAN,
9470 .doit = nl80211_start_sched_scan,
9471 .policy = nl80211_policy,
9472 .flags = GENL_ADMIN_PERM,
9473 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9474 NL80211_FLAG_NEED_RTNL,
9477 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
9478 .doit = nl80211_stop_sched_scan,
9479 .policy = nl80211_policy,
9480 .flags = GENL_ADMIN_PERM,
9481 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9482 NL80211_FLAG_NEED_RTNL,
9485 .cmd = NL80211_CMD_AUTHENTICATE,
9486 .doit = nl80211_authenticate,
9487 .policy = nl80211_policy,
9488 .flags = GENL_ADMIN_PERM,
9489 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9490 NL80211_FLAG_NEED_RTNL,
9493 .cmd = NL80211_CMD_ASSOCIATE,
9494 .doit = nl80211_associate,
9495 .policy = nl80211_policy,
9496 .flags = GENL_ADMIN_PERM,
9497 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9498 NL80211_FLAG_NEED_RTNL,
9501 .cmd = NL80211_CMD_DEAUTHENTICATE,
9502 .doit = nl80211_deauthenticate,
9503 .policy = nl80211_policy,
9504 .flags = GENL_ADMIN_PERM,
9505 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9506 NL80211_FLAG_NEED_RTNL,
9509 .cmd = NL80211_CMD_DISASSOCIATE,
9510 .doit = nl80211_disassociate,
9511 .policy = nl80211_policy,
9512 .flags = GENL_ADMIN_PERM,
9513 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9514 NL80211_FLAG_NEED_RTNL,
9517 .cmd = NL80211_CMD_JOIN_IBSS,
9518 .doit = nl80211_join_ibss,
9519 .policy = nl80211_policy,
9520 .flags = GENL_ADMIN_PERM,
9521 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9522 NL80211_FLAG_NEED_RTNL,
9525 .cmd = NL80211_CMD_LEAVE_IBSS,
9526 .doit = nl80211_leave_ibss,
9527 .policy = nl80211_policy,
9528 .flags = GENL_ADMIN_PERM,
9529 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9530 NL80211_FLAG_NEED_RTNL,
9532 #ifdef CONFIG_NL80211_TESTMODE
9534 .cmd = NL80211_CMD_TESTMODE,
9535 .doit = nl80211_testmode_do,
9536 .dumpit = nl80211_testmode_dump,
9537 .policy = nl80211_policy,
9538 .flags = GENL_ADMIN_PERM,
9539 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9540 NL80211_FLAG_NEED_RTNL,
9544 .cmd = NL80211_CMD_CONNECT,
9545 .doit = nl80211_connect,
9546 .policy = nl80211_policy,
9547 .flags = GENL_ADMIN_PERM,
9548 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9549 NL80211_FLAG_NEED_RTNL,
9552 .cmd = NL80211_CMD_DISCONNECT,
9553 .doit = nl80211_disconnect,
9554 .policy = nl80211_policy,
9555 .flags = GENL_ADMIN_PERM,
9556 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9557 NL80211_FLAG_NEED_RTNL,
9560 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
9561 .doit = nl80211_wiphy_netns,
9562 .policy = nl80211_policy,
9563 .flags = GENL_ADMIN_PERM,
9564 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9565 NL80211_FLAG_NEED_RTNL,
9568 .cmd = NL80211_CMD_GET_SURVEY,
9569 .policy = nl80211_policy,
9570 .dumpit = nl80211_dump_survey,
9573 .cmd = NL80211_CMD_SET_PMKSA,
9574 .doit = nl80211_setdel_pmksa,
9575 .policy = nl80211_policy,
9576 .flags = GENL_ADMIN_PERM,
9577 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9578 NL80211_FLAG_NEED_RTNL,
9581 .cmd = NL80211_CMD_DEL_PMKSA,
9582 .doit = nl80211_setdel_pmksa,
9583 .policy = nl80211_policy,
9584 .flags = GENL_ADMIN_PERM,
9585 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9586 NL80211_FLAG_NEED_RTNL,
9589 .cmd = NL80211_CMD_FLUSH_PMKSA,
9590 .doit = nl80211_flush_pmksa,
9591 .policy = nl80211_policy,
9592 .flags = GENL_ADMIN_PERM,
9593 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9594 NL80211_FLAG_NEED_RTNL,
9597 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
9598 .doit = nl80211_remain_on_channel,
9599 .policy = nl80211_policy,
9600 .flags = GENL_ADMIN_PERM,
9601 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9602 NL80211_FLAG_NEED_RTNL,
9605 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
9606 .doit = nl80211_cancel_remain_on_channel,
9607 .policy = nl80211_policy,
9608 .flags = GENL_ADMIN_PERM,
9609 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9610 NL80211_FLAG_NEED_RTNL,
9613 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
9614 .doit = nl80211_set_tx_bitrate_mask,
9615 .policy = nl80211_policy,
9616 .flags = GENL_ADMIN_PERM,
9617 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9618 NL80211_FLAG_NEED_RTNL,
9621 .cmd = NL80211_CMD_REGISTER_FRAME,
9622 .doit = nl80211_register_mgmt,
9623 .policy = nl80211_policy,
9624 .flags = GENL_ADMIN_PERM,
9625 .internal_flags = NL80211_FLAG_NEED_WDEV |
9626 NL80211_FLAG_NEED_RTNL,
9629 .cmd = NL80211_CMD_FRAME,
9630 .doit = nl80211_tx_mgmt,
9631 .policy = nl80211_policy,
9632 .flags = GENL_ADMIN_PERM,
9633 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9634 NL80211_FLAG_NEED_RTNL,
9637 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
9638 .doit = nl80211_tx_mgmt_cancel_wait,
9639 .policy = nl80211_policy,
9640 .flags = GENL_ADMIN_PERM,
9641 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9642 NL80211_FLAG_NEED_RTNL,
9645 .cmd = NL80211_CMD_SET_POWER_SAVE,
9646 .doit = nl80211_set_power_save,
9647 .policy = nl80211_policy,
9648 .flags = GENL_ADMIN_PERM,
9649 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9650 NL80211_FLAG_NEED_RTNL,
9653 .cmd = NL80211_CMD_GET_POWER_SAVE,
9654 .doit = nl80211_get_power_save,
9655 .policy = nl80211_policy,
9656 /* can be retrieved by unprivileged users */
9657 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9658 NL80211_FLAG_NEED_RTNL,
9661 .cmd = NL80211_CMD_SET_CQM,
9662 .doit = nl80211_set_cqm,
9663 .policy = nl80211_policy,
9664 .flags = GENL_ADMIN_PERM,
9665 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9666 NL80211_FLAG_NEED_RTNL,
9669 .cmd = NL80211_CMD_SET_CHANNEL,
9670 .doit = nl80211_set_channel,
9671 .policy = nl80211_policy,
9672 .flags = GENL_ADMIN_PERM,
9673 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9674 NL80211_FLAG_NEED_RTNL,
9677 .cmd = NL80211_CMD_SET_WDS_PEER,
9678 .doit = nl80211_set_wds_peer,
9679 .policy = nl80211_policy,
9680 .flags = GENL_ADMIN_PERM,
9681 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9682 NL80211_FLAG_NEED_RTNL,
9685 .cmd = NL80211_CMD_JOIN_MESH,
9686 .doit = nl80211_join_mesh,
9687 .policy = nl80211_policy,
9688 .flags = GENL_ADMIN_PERM,
9689 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9690 NL80211_FLAG_NEED_RTNL,
9693 .cmd = NL80211_CMD_LEAVE_MESH,
9694 .doit = nl80211_leave_mesh,
9695 .policy = nl80211_policy,
9696 .flags = GENL_ADMIN_PERM,
9697 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9698 NL80211_FLAG_NEED_RTNL,
9702 .cmd = NL80211_CMD_GET_WOWLAN,
9703 .doit = nl80211_get_wowlan,
9704 .policy = nl80211_policy,
9705 /* can be retrieved by unprivileged users */
9706 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9707 NL80211_FLAG_NEED_RTNL,
9710 .cmd = NL80211_CMD_SET_WOWLAN,
9711 .doit = nl80211_set_wowlan,
9712 .policy = nl80211_policy,
9713 .flags = GENL_ADMIN_PERM,
9714 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9715 NL80211_FLAG_NEED_RTNL,
9719 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
9720 .doit = nl80211_set_rekey_data,
9721 .policy = nl80211_policy,
9722 .flags = GENL_ADMIN_PERM,
9723 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9724 NL80211_FLAG_NEED_RTNL,
9727 .cmd = NL80211_CMD_TDLS_MGMT,
9728 .doit = nl80211_tdls_mgmt,
9729 .policy = nl80211_policy,
9730 .flags = GENL_ADMIN_PERM,
9731 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9732 NL80211_FLAG_NEED_RTNL,
9735 .cmd = NL80211_CMD_TDLS_OPER,
9736 .doit = nl80211_tdls_oper,
9737 .policy = nl80211_policy,
9738 .flags = GENL_ADMIN_PERM,
9739 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9740 NL80211_FLAG_NEED_RTNL,
9743 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
9744 .doit = nl80211_register_unexpected_frame,
9745 .policy = nl80211_policy,
9746 .flags = GENL_ADMIN_PERM,
9747 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9748 NL80211_FLAG_NEED_RTNL,
9751 .cmd = NL80211_CMD_PROBE_CLIENT,
9752 .doit = nl80211_probe_client,
9753 .policy = nl80211_policy,
9754 .flags = GENL_ADMIN_PERM,
9755 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9756 NL80211_FLAG_NEED_RTNL,
9759 .cmd = NL80211_CMD_REGISTER_BEACONS,
9760 .doit = nl80211_register_beacons,
9761 .policy = nl80211_policy,
9762 .flags = GENL_ADMIN_PERM,
9763 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9764 NL80211_FLAG_NEED_RTNL,
9767 .cmd = NL80211_CMD_SET_NOACK_MAP,
9768 .doit = nl80211_set_noack_map,
9769 .policy = nl80211_policy,
9770 .flags = GENL_ADMIN_PERM,
9771 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9772 NL80211_FLAG_NEED_RTNL,
9775 .cmd = NL80211_CMD_START_P2P_DEVICE,
9776 .doit = nl80211_start_p2p_device,
9777 .policy = nl80211_policy,
9778 .flags = GENL_ADMIN_PERM,
9779 .internal_flags = NL80211_FLAG_NEED_WDEV |
9780 NL80211_FLAG_NEED_RTNL,
9783 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
9784 .doit = nl80211_stop_p2p_device,
9785 .policy = nl80211_policy,
9786 .flags = GENL_ADMIN_PERM,
9787 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9788 NL80211_FLAG_NEED_RTNL,
9791 .cmd = NL80211_CMD_SET_MCAST_RATE,
9792 .doit = nl80211_set_mcast_rate,
9793 .policy = nl80211_policy,
9794 .flags = GENL_ADMIN_PERM,
9795 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9796 NL80211_FLAG_NEED_RTNL,
9799 .cmd = NL80211_CMD_SET_MAC_ACL,
9800 .doit = nl80211_set_mac_acl,
9801 .policy = nl80211_policy,
9802 .flags = GENL_ADMIN_PERM,
9803 .internal_flags = NL80211_FLAG_NEED_NETDEV |
9804 NL80211_FLAG_NEED_RTNL,
9807 .cmd = NL80211_CMD_RADAR_DETECT,
9808 .doit = nl80211_start_radar_detection,
9809 .policy = nl80211_policy,
9810 .flags = GENL_ADMIN_PERM,
9811 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9812 NL80211_FLAG_NEED_RTNL,
9815 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
9816 .doit = nl80211_get_protocol_features,
9817 .policy = nl80211_policy,
9820 .cmd = NL80211_CMD_UPDATE_FT_IES,
9821 .doit = nl80211_update_ft_ies,
9822 .policy = nl80211_policy,
9823 .flags = GENL_ADMIN_PERM,
9824 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9825 NL80211_FLAG_NEED_RTNL,
9828 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
9829 .doit = nl80211_crit_protocol_start,
9830 .policy = nl80211_policy,
9831 .flags = GENL_ADMIN_PERM,
9832 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9833 NL80211_FLAG_NEED_RTNL,
9836 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
9837 .doit = nl80211_crit_protocol_stop,
9838 .policy = nl80211_policy,
9839 .flags = GENL_ADMIN_PERM,
9840 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
9841 NL80211_FLAG_NEED_RTNL,
9844 .cmd = NL80211_CMD_GET_COALESCE,
9845 .doit = nl80211_get_coalesce,
9846 .policy = nl80211_policy,
9847 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9848 NL80211_FLAG_NEED_RTNL,
9851 .cmd = NL80211_CMD_SET_COALESCE,
9852 .doit = nl80211_set_coalesce,
9853 .policy = nl80211_policy,
9854 .flags = GENL_ADMIN_PERM,
9855 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9856 NL80211_FLAG_NEED_RTNL,
9859 .cmd = NL80211_CMD_CHANNEL_SWITCH,
9860 .doit = nl80211_channel_switch,
9861 .policy = nl80211_policy,
9862 .flags = GENL_ADMIN_PERM,
9863 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9864 NL80211_FLAG_NEED_RTNL,
9867 .cmd = NL80211_CMD_VENDOR,
9868 .doit = nl80211_vendor_cmd,
9869 .policy = nl80211_policy,
9870 .flags = GENL_ADMIN_PERM,
9871 .internal_flags = NL80211_FLAG_NEED_WIPHY |
9872 NL80211_FLAG_NEED_RTNL,
9875 .cmd = NL80211_CMD_SET_QOS_MAP,
9876 .doit = nl80211_set_qos_map,
9877 .policy = nl80211_policy,
9878 .flags = GENL_ADMIN_PERM,
9879 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
9880 NL80211_FLAG_NEED_RTNL,
9884 /* notification functions */
9886 void nl80211_notify_dev_rename(struct cfg80211_registered_device *rdev)
9888 struct sk_buff *msg;
9889 struct nl80211_dump_wiphy_state state = {};
9891 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9895 if (nl80211_send_wiphy(rdev, msg, 0, 0, 0, &state) < 0) {
9900 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
9901 NL80211_MCGRP_CONFIG, GFP_KERNEL);
9904 static int nl80211_add_scan_req(struct sk_buff *msg,
9905 struct cfg80211_registered_device *rdev)
9907 struct cfg80211_scan_request *req = rdev->scan_req;
9908 struct nlattr *nest;
9914 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
9916 goto nla_put_failure;
9917 for (i = 0; i < req->n_ssids; i++) {
9918 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
9919 goto nla_put_failure;
9921 nla_nest_end(msg, nest);
9923 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
9925 goto nla_put_failure;
9926 for (i = 0; i < req->n_channels; i++) {
9927 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
9928 goto nla_put_failure;
9930 nla_nest_end(msg, nest);
9933 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
9934 goto nla_put_failure;
9937 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
9938 goto nla_put_failure;
9945 static int nl80211_send_scan_msg(struct sk_buff *msg,
9946 struct cfg80211_registered_device *rdev,
9947 struct wireless_dev *wdev,
9948 u32 portid, u32 seq, int flags,
9953 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
9957 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
9958 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
9959 wdev->netdev->ifindex)) ||
9960 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
9961 goto nla_put_failure;
9963 /* ignore errors and send incomplete event anyway */
9964 nl80211_add_scan_req(msg, rdev);
9966 return genlmsg_end(msg, hdr);
9969 genlmsg_cancel(msg, hdr);
9974 nl80211_send_sched_scan_msg(struct sk_buff *msg,
9975 struct cfg80211_registered_device *rdev,
9976 struct net_device *netdev,
9977 u32 portid, u32 seq, int flags, u32 cmd)
9981 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
9985 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
9986 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
9987 goto nla_put_failure;
9989 return genlmsg_end(msg, hdr);
9992 genlmsg_cancel(msg, hdr);
9996 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
9997 struct wireless_dev *wdev)
9999 struct sk_buff *msg;
10001 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10005 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
10006 NL80211_CMD_TRIGGER_SCAN) < 0) {
10011 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10012 NL80211_MCGRP_SCAN, GFP_KERNEL);
10015 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
10016 struct wireless_dev *wdev, bool aborted)
10018 struct sk_buff *msg;
10020 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10024 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
10025 aborted ? NL80211_CMD_SCAN_ABORTED :
10026 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
10034 void nl80211_send_scan_result(struct cfg80211_registered_device *rdev,
10035 struct sk_buff *msg)
10040 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10041 NL80211_MCGRP_SCAN, GFP_KERNEL);
10044 void nl80211_send_sched_scan_results(struct cfg80211_registered_device *rdev,
10045 struct net_device *netdev)
10047 struct sk_buff *msg;
10049 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10053 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0,
10054 NL80211_CMD_SCHED_SCAN_RESULTS) < 0) {
10059 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10060 NL80211_MCGRP_SCAN, GFP_KERNEL);
10063 void nl80211_send_sched_scan(struct cfg80211_registered_device *rdev,
10064 struct net_device *netdev, u32 cmd)
10066 struct sk_buff *msg;
10068 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10072 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0, cmd) < 0) {
10077 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10078 NL80211_MCGRP_SCAN, GFP_KERNEL);
10082 * This can happen on global regulatory changes or device specific settings
10083 * based on custom world regulatory domains.
10085 void nl80211_send_reg_change_event(struct regulatory_request *request)
10087 struct sk_buff *msg;
10090 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10094 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_CHANGE);
10100 /* Userspace can always count this one always being set */
10101 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
10102 goto nla_put_failure;
10104 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
10105 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10106 NL80211_REGDOM_TYPE_WORLD))
10107 goto nla_put_failure;
10108 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
10109 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10110 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
10111 goto nla_put_failure;
10112 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
10113 request->intersect) {
10114 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10115 NL80211_REGDOM_TYPE_INTERSECTION))
10116 goto nla_put_failure;
10118 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
10119 NL80211_REGDOM_TYPE_COUNTRY) ||
10120 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
10122 goto nla_put_failure;
10125 if (request->wiphy_idx != WIPHY_IDX_INVALID &&
10126 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
10127 goto nla_put_failure;
10129 genlmsg_end(msg, hdr);
10132 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
10133 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
10139 genlmsg_cancel(msg, hdr);
10143 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
10144 struct net_device *netdev,
10145 const u8 *buf, size_t len,
10146 enum nl80211_commands cmd, gfp_t gfp)
10148 struct sk_buff *msg;
10151 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10155 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10161 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10162 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10163 nla_put(msg, NL80211_ATTR_FRAME, len, buf))
10164 goto nla_put_failure;
10166 genlmsg_end(msg, hdr);
10168 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10169 NL80211_MCGRP_MLME, gfp);
10173 genlmsg_cancel(msg, hdr);
10177 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
10178 struct net_device *netdev, const u8 *buf,
10179 size_t len, gfp_t gfp)
10181 nl80211_send_mlme_event(rdev, netdev, buf, len,
10182 NL80211_CMD_AUTHENTICATE, gfp);
10185 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
10186 struct net_device *netdev, const u8 *buf,
10187 size_t len, gfp_t gfp)
10189 nl80211_send_mlme_event(rdev, netdev, buf, len,
10190 NL80211_CMD_ASSOCIATE, gfp);
10193 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
10194 struct net_device *netdev, const u8 *buf,
10195 size_t len, gfp_t gfp)
10197 nl80211_send_mlme_event(rdev, netdev, buf, len,
10198 NL80211_CMD_DEAUTHENTICATE, gfp);
10201 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
10202 struct net_device *netdev, const u8 *buf,
10203 size_t len, gfp_t gfp)
10205 nl80211_send_mlme_event(rdev, netdev, buf, len,
10206 NL80211_CMD_DISASSOCIATE, gfp);
10209 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
10212 struct wireless_dev *wdev = dev->ieee80211_ptr;
10213 struct wiphy *wiphy = wdev->wiphy;
10214 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10215 const struct ieee80211_mgmt *mgmt = (void *)buf;
10218 if (WARN_ON(len < 2))
10221 if (ieee80211_is_deauth(mgmt->frame_control))
10222 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
10224 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
10226 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
10227 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC);
10229 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
10231 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
10232 struct net_device *netdev, int cmd,
10233 const u8 *addr, gfp_t gfp)
10235 struct sk_buff *msg;
10238 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10242 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10248 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10249 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10250 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
10251 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
10252 goto nla_put_failure;
10254 genlmsg_end(msg, hdr);
10256 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10257 NL80211_MCGRP_MLME, gfp);
10261 genlmsg_cancel(msg, hdr);
10265 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
10266 struct net_device *netdev, const u8 *addr,
10269 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
10273 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
10274 struct net_device *netdev, const u8 *addr,
10277 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
10281 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
10282 struct net_device *netdev, const u8 *bssid,
10283 const u8 *req_ie, size_t req_ie_len,
10284 const u8 *resp_ie, size_t resp_ie_len,
10285 u16 status, gfp_t gfp)
10287 struct sk_buff *msg;
10290 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10294 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
10300 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10301 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10302 (bssid && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid)) ||
10303 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE, status) ||
10305 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
10307 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
10308 goto nla_put_failure;
10310 genlmsg_end(msg, hdr);
10312 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10313 NL80211_MCGRP_MLME, gfp);
10317 genlmsg_cancel(msg, hdr);
10322 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
10323 struct net_device *netdev, const u8 *bssid,
10324 const u8 *req_ie, size_t req_ie_len,
10325 const u8 *resp_ie, size_t resp_ie_len, gfp_t gfp)
10327 struct sk_buff *msg;
10330 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10334 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
10340 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10341 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10342 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
10344 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
10346 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
10347 goto nla_put_failure;
10349 genlmsg_end(msg, hdr);
10351 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10352 NL80211_MCGRP_MLME, gfp);
10356 genlmsg_cancel(msg, hdr);
10361 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
10362 struct net_device *netdev, u16 reason,
10363 const u8 *ie, size_t ie_len, bool from_ap)
10365 struct sk_buff *msg;
10368 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10372 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
10378 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10379 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10380 (from_ap && reason &&
10381 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
10383 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
10384 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
10385 goto nla_put_failure;
10387 genlmsg_end(msg, hdr);
10389 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10390 NL80211_MCGRP_MLME, GFP_KERNEL);
10394 genlmsg_cancel(msg, hdr);
10399 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
10400 struct net_device *netdev, const u8 *bssid,
10403 struct sk_buff *msg;
10406 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10410 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
10416 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10417 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10418 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
10419 goto nla_put_failure;
10421 genlmsg_end(msg, hdr);
10423 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10424 NL80211_MCGRP_MLME, gfp);
10428 genlmsg_cancel(msg, hdr);
10432 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
10433 const u8* ie, u8 ie_len, gfp_t gfp)
10435 struct wireless_dev *wdev = dev->ieee80211_ptr;
10436 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
10437 struct sk_buff *msg;
10440 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
10443 trace_cfg80211_notify_new_peer_candidate(dev, addr);
10445 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10449 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
10455 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10456 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10457 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
10459 nla_put(msg, NL80211_ATTR_IE, ie_len , ie)))
10460 goto nla_put_failure;
10462 genlmsg_end(msg, hdr);
10464 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10465 NL80211_MCGRP_MLME, gfp);
10469 genlmsg_cancel(msg, hdr);
10472 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
10474 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
10475 struct net_device *netdev, const u8 *addr,
10476 enum nl80211_key_type key_type, int key_id,
10477 const u8 *tsc, gfp_t gfp)
10479 struct sk_buff *msg;
10482 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10486 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
10492 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10493 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10494 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
10495 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
10497 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
10498 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
10499 goto nla_put_failure;
10501 genlmsg_end(msg, hdr);
10503 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10504 NL80211_MCGRP_MLME, gfp);
10508 genlmsg_cancel(msg, hdr);
10512 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
10513 struct ieee80211_channel *channel_before,
10514 struct ieee80211_channel *channel_after)
10516 struct sk_buff *msg;
10518 struct nlattr *nl_freq;
10520 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
10524 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
10531 * Since we are applying the beacon hint to a wiphy we know its
10532 * wiphy_idx is valid
10534 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
10535 goto nla_put_failure;
10538 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
10540 goto nla_put_failure;
10541 if (nl80211_msg_put_channel(msg, channel_before, false))
10542 goto nla_put_failure;
10543 nla_nest_end(msg, nl_freq);
10546 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
10548 goto nla_put_failure;
10549 if (nl80211_msg_put_channel(msg, channel_after, false))
10550 goto nla_put_failure;
10551 nla_nest_end(msg, nl_freq);
10553 genlmsg_end(msg, hdr);
10556 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
10557 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
10563 genlmsg_cancel(msg, hdr);
10567 static void nl80211_send_remain_on_chan_event(
10568 int cmd, struct cfg80211_registered_device *rdev,
10569 struct wireless_dev *wdev, u64 cookie,
10570 struct ieee80211_channel *chan,
10571 unsigned int duration, gfp_t gfp)
10573 struct sk_buff *msg;
10576 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10580 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10586 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10587 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10588 wdev->netdev->ifindex)) ||
10589 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10590 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
10591 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
10592 NL80211_CHAN_NO_HT) ||
10593 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
10594 goto nla_put_failure;
10596 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
10597 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
10598 goto nla_put_failure;
10600 genlmsg_end(msg, hdr);
10602 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10603 NL80211_MCGRP_MLME, gfp);
10607 genlmsg_cancel(msg, hdr);
10611 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
10612 struct ieee80211_channel *chan,
10613 unsigned int duration, gfp_t gfp)
10615 struct wiphy *wiphy = wdev->wiphy;
10616 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10618 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
10619 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
10620 rdev, wdev, cookie, chan,
10623 EXPORT_SYMBOL(cfg80211_ready_on_channel);
10625 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
10626 struct ieee80211_channel *chan,
10629 struct wiphy *wiphy = wdev->wiphy;
10630 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10632 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
10633 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
10634 rdev, wdev, cookie, chan, 0, gfp);
10636 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
10638 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
10639 struct station_info *sinfo, gfp_t gfp)
10641 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10642 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10643 struct sk_buff *msg;
10645 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
10647 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10651 if (nl80211_send_station(msg, 0, 0, 0,
10652 rdev, dev, mac_addr, sinfo) < 0) {
10657 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10658 NL80211_MCGRP_MLME, gfp);
10660 EXPORT_SYMBOL(cfg80211_new_sta);
10662 void cfg80211_del_sta(struct net_device *dev, const u8 *mac_addr, gfp_t gfp)
10664 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10665 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10666 struct sk_buff *msg;
10669 trace_cfg80211_del_sta(dev, mac_addr);
10671 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10675 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_STATION);
10681 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10682 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
10683 goto nla_put_failure;
10685 genlmsg_end(msg, hdr);
10687 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10688 NL80211_MCGRP_MLME, gfp);
10692 genlmsg_cancel(msg, hdr);
10695 EXPORT_SYMBOL(cfg80211_del_sta);
10697 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
10698 enum nl80211_connect_failed_reason reason,
10701 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
10702 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10703 struct sk_buff *msg;
10706 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
10710 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
10716 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10717 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
10718 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
10719 goto nla_put_failure;
10721 genlmsg_end(msg, hdr);
10723 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10724 NL80211_MCGRP_MLME, gfp);
10728 genlmsg_cancel(msg, hdr);
10731 EXPORT_SYMBOL(cfg80211_conn_failed);
10733 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
10734 const u8 *addr, gfp_t gfp)
10736 struct wireless_dev *wdev = dev->ieee80211_ptr;
10737 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
10738 struct sk_buff *msg;
10740 u32 nlportid = ACCESS_ONCE(wdev->ap_unexpected_nlportid);
10745 msg = nlmsg_new(100, gfp);
10749 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
10755 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10756 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
10757 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
10758 goto nla_put_failure;
10760 genlmsg_end(msg, hdr);
10761 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
10765 genlmsg_cancel(msg, hdr);
10770 bool cfg80211_rx_spurious_frame(struct net_device *dev,
10771 const u8 *addr, gfp_t gfp)
10773 struct wireless_dev *wdev = dev->ieee80211_ptr;
10776 trace_cfg80211_rx_spurious_frame(dev, addr);
10778 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
10779 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
10780 trace_cfg80211_return_bool(false);
10783 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
10785 trace_cfg80211_return_bool(ret);
10788 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
10790 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
10791 const u8 *addr, gfp_t gfp)
10793 struct wireless_dev *wdev = dev->ieee80211_ptr;
10796 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
10798 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
10799 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
10800 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
10801 trace_cfg80211_return_bool(false);
10804 ret = __nl80211_unexpected_frame(dev,
10805 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
10807 trace_cfg80211_return_bool(ret);
10810 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
10812 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
10813 struct wireless_dev *wdev, u32 nlportid,
10814 int freq, int sig_dbm,
10815 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
10817 struct net_device *netdev = wdev->netdev;
10818 struct sk_buff *msg;
10821 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10825 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
10831 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10832 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10833 netdev->ifindex)) ||
10834 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10835 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
10837 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
10838 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
10840 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
10841 goto nla_put_failure;
10843 genlmsg_end(msg, hdr);
10845 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
10848 genlmsg_cancel(msg, hdr);
10853 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
10854 const u8 *buf, size_t len, bool ack, gfp_t gfp)
10856 struct wiphy *wiphy = wdev->wiphy;
10857 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10858 struct net_device *netdev = wdev->netdev;
10859 struct sk_buff *msg;
10862 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
10864 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10868 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
10874 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10875 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
10876 netdev->ifindex)) ||
10877 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
10878 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
10879 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
10880 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
10881 goto nla_put_failure;
10883 genlmsg_end(msg, hdr);
10885 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10886 NL80211_MCGRP_MLME, gfp);
10890 genlmsg_cancel(msg, hdr);
10893 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
10895 void cfg80211_cqm_rssi_notify(struct net_device *dev,
10896 enum nl80211_cqm_rssi_threshold_event rssi_event,
10899 struct wireless_dev *wdev = dev->ieee80211_ptr;
10900 struct wiphy *wiphy = wdev->wiphy;
10901 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10902 struct sk_buff *msg;
10903 struct nlattr *pinfoattr;
10906 trace_cfg80211_cqm_rssi_notify(dev, rssi_event);
10908 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10912 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
10918 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10919 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
10920 goto nla_put_failure;
10922 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
10924 goto nla_put_failure;
10926 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
10928 goto nla_put_failure;
10930 nla_nest_end(msg, pinfoattr);
10932 genlmsg_end(msg, hdr);
10934 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10935 NL80211_MCGRP_MLME, gfp);
10939 genlmsg_cancel(msg, hdr);
10942 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
10944 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
10945 struct net_device *netdev, const u8 *bssid,
10946 const u8 *replay_ctr, gfp_t gfp)
10948 struct sk_buff *msg;
10949 struct nlattr *rekey_attr;
10952 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
10956 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
10962 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
10963 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
10964 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
10965 goto nla_put_failure;
10967 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
10969 goto nla_put_failure;
10971 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
10972 NL80211_REPLAY_CTR_LEN, replay_ctr))
10973 goto nla_put_failure;
10975 nla_nest_end(msg, rekey_attr);
10977 genlmsg_end(msg, hdr);
10979 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
10980 NL80211_MCGRP_MLME, gfp);
10984 genlmsg_cancel(msg, hdr);
10988 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
10989 const u8 *replay_ctr, gfp_t gfp)
10991 struct wireless_dev *wdev = dev->ieee80211_ptr;
10992 struct wiphy *wiphy = wdev->wiphy;
10993 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
10995 trace_cfg80211_gtk_rekey_notify(dev, bssid);
10996 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
10998 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
11001 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
11002 struct net_device *netdev, int index,
11003 const u8 *bssid, bool preauth, gfp_t gfp)
11005 struct sk_buff *msg;
11006 struct nlattr *attr;
11009 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11013 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
11019 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11020 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
11021 goto nla_put_failure;
11023 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
11025 goto nla_put_failure;
11027 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
11028 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
11030 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
11031 goto nla_put_failure;
11033 nla_nest_end(msg, attr);
11035 genlmsg_end(msg, hdr);
11037 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11038 NL80211_MCGRP_MLME, gfp);
11042 genlmsg_cancel(msg, hdr);
11046 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
11047 const u8 *bssid, bool preauth, gfp_t gfp)
11049 struct wireless_dev *wdev = dev->ieee80211_ptr;
11050 struct wiphy *wiphy = wdev->wiphy;
11051 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11053 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
11054 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
11056 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
11058 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
11059 struct net_device *netdev,
11060 struct cfg80211_chan_def *chandef,
11063 struct sk_buff *msg;
11066 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11070 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CH_SWITCH_NOTIFY);
11076 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
11077 goto nla_put_failure;
11079 if (nl80211_send_chandef(msg, chandef))
11080 goto nla_put_failure;
11082 genlmsg_end(msg, hdr);
11084 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11085 NL80211_MCGRP_MLME, gfp);
11089 genlmsg_cancel(msg, hdr);
11093 void cfg80211_ch_switch_notify(struct net_device *dev,
11094 struct cfg80211_chan_def *chandef)
11096 struct wireless_dev *wdev = dev->ieee80211_ptr;
11097 struct wiphy *wiphy = wdev->wiphy;
11098 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11100 ASSERT_WDEV_LOCK(wdev);
11102 trace_cfg80211_ch_switch_notify(dev, chandef);
11104 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
11105 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
11106 wdev->iftype != NL80211_IFTYPE_ADHOC &&
11107 wdev->iftype != NL80211_IFTYPE_MESH_POINT))
11110 wdev->channel = chandef->chan;
11111 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL);
11113 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
11115 void cfg80211_cqm_txe_notify(struct net_device *dev,
11116 const u8 *peer, u32 num_packets,
11117 u32 rate, u32 intvl, gfp_t gfp)
11119 struct wireless_dev *wdev = dev->ieee80211_ptr;
11120 struct wiphy *wiphy = wdev->wiphy;
11121 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11122 struct sk_buff *msg;
11123 struct nlattr *pinfoattr;
11126 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
11130 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
11136 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11137 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11138 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer))
11139 goto nla_put_failure;
11141 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
11143 goto nla_put_failure;
11145 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
11146 goto nla_put_failure;
11148 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
11149 goto nla_put_failure;
11151 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
11152 goto nla_put_failure;
11154 nla_nest_end(msg, pinfoattr);
11156 genlmsg_end(msg, hdr);
11158 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11159 NL80211_MCGRP_MLME, gfp);
11163 genlmsg_cancel(msg, hdr);
11166 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
11169 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
11170 const struct cfg80211_chan_def *chandef,
11171 enum nl80211_radar_event event,
11172 struct net_device *netdev, gfp_t gfp)
11174 struct sk_buff *msg;
11177 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11181 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
11187 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
11188 goto nla_put_failure;
11190 /* NOP and radar events don't need a netdev parameter */
11192 struct wireless_dev *wdev = netdev->ieee80211_ptr;
11194 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11195 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11196 goto nla_put_failure;
11199 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
11200 goto nla_put_failure;
11202 if (nl80211_send_chandef(msg, chandef))
11203 goto nla_put_failure;
11205 genlmsg_end(msg, hdr);
11207 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11208 NL80211_MCGRP_MLME, gfp);
11212 genlmsg_cancel(msg, hdr);
11216 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
11217 const u8 *peer, u32 num_packets, gfp_t gfp)
11219 struct wireless_dev *wdev = dev->ieee80211_ptr;
11220 struct wiphy *wiphy = wdev->wiphy;
11221 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11222 struct sk_buff *msg;
11223 struct nlattr *pinfoattr;
11226 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
11228 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11232 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
11238 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11239 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11240 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer))
11241 goto nla_put_failure;
11243 pinfoattr = nla_nest_start(msg, NL80211_ATTR_CQM);
11245 goto nla_put_failure;
11247 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
11248 goto nla_put_failure;
11250 nla_nest_end(msg, pinfoattr);
11252 genlmsg_end(msg, hdr);
11254 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11255 NL80211_MCGRP_MLME, gfp);
11259 genlmsg_cancel(msg, hdr);
11262 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
11264 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
11265 u64 cookie, bool acked, gfp_t gfp)
11267 struct wireless_dev *wdev = dev->ieee80211_ptr;
11268 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11269 struct sk_buff *msg;
11272 trace_cfg80211_probe_status(dev, addr, cookie, acked);
11274 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11279 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
11285 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11286 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11287 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
11288 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
11289 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)))
11290 goto nla_put_failure;
11292 genlmsg_end(msg, hdr);
11294 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11295 NL80211_MCGRP_MLME, gfp);
11299 genlmsg_cancel(msg, hdr);
11302 EXPORT_SYMBOL(cfg80211_probe_status);
11304 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
11305 const u8 *frame, size_t len,
11306 int freq, int sig_dbm)
11308 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11309 struct sk_buff *msg;
11311 struct cfg80211_beacon_registration *reg;
11313 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
11315 spin_lock_bh(&rdev->beacon_registrations_lock);
11316 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11317 msg = nlmsg_new(len + 100, GFP_ATOMIC);
11319 spin_unlock_bh(&rdev->beacon_registrations_lock);
11323 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
11325 goto nla_put_failure;
11327 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11329 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
11331 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
11332 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
11333 goto nla_put_failure;
11335 genlmsg_end(msg, hdr);
11337 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
11339 spin_unlock_bh(&rdev->beacon_registrations_lock);
11343 spin_unlock_bh(&rdev->beacon_registrations_lock);
11345 genlmsg_cancel(msg, hdr);
11348 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
11351 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
11352 struct cfg80211_wowlan_wakeup *wakeup,
11355 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11356 struct sk_buff *msg;
11360 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
11363 size += wakeup->packet_present_len;
11365 msg = nlmsg_new(size, gfp);
11369 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
11373 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11374 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11377 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11378 wdev->netdev->ifindex))
11382 struct nlattr *reasons;
11384 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
11388 if (wakeup->disconnect &&
11389 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
11391 if (wakeup->magic_pkt &&
11392 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
11394 if (wakeup->gtk_rekey_failure &&
11395 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
11397 if (wakeup->eap_identity_req &&
11398 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
11400 if (wakeup->four_way_handshake &&
11401 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
11403 if (wakeup->rfkill_release &&
11404 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
11407 if (wakeup->pattern_idx >= 0 &&
11408 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
11409 wakeup->pattern_idx))
11412 if (wakeup->tcp_match &&
11413 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
11416 if (wakeup->tcp_connlost &&
11417 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
11420 if (wakeup->tcp_nomoretokens &&
11422 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
11425 if (wakeup->packet) {
11426 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
11427 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
11429 if (!wakeup->packet_80211) {
11431 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
11433 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
11436 if (wakeup->packet_len &&
11437 nla_put_u32(msg, len_attr, wakeup->packet_len))
11440 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
11445 nla_nest_end(msg, reasons);
11448 genlmsg_end(msg, hdr);
11450 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11451 NL80211_MCGRP_MLME, gfp);
11457 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
11460 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
11461 enum nl80211_tdls_operation oper,
11462 u16 reason_code, gfp_t gfp)
11464 struct wireless_dev *wdev = dev->ieee80211_ptr;
11465 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
11466 struct sk_buff *msg;
11469 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
11472 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11476 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
11482 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11483 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11484 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
11485 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
11486 (reason_code > 0 &&
11487 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
11488 goto nla_put_failure;
11490 genlmsg_end(msg, hdr);
11492 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11493 NL80211_MCGRP_MLME, gfp);
11497 genlmsg_cancel(msg, hdr);
11500 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
11502 static int nl80211_netlink_notify(struct notifier_block * nb,
11503 unsigned long state,
11506 struct netlink_notify *notify = _notify;
11507 struct cfg80211_registered_device *rdev;
11508 struct wireless_dev *wdev;
11509 struct cfg80211_beacon_registration *reg, *tmp;
11511 if (state != NETLINK_URELEASE)
11512 return NOTIFY_DONE;
11516 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
11517 list_for_each_entry_rcu(wdev, &rdev->wdev_list, list)
11518 cfg80211_mlme_unregister_socket(wdev, notify->portid);
11520 spin_lock_bh(&rdev->beacon_registrations_lock);
11521 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
11523 if (reg->nlportid == notify->portid) {
11524 list_del(®->list);
11529 spin_unlock_bh(&rdev->beacon_registrations_lock);
11534 return NOTIFY_DONE;
11537 static struct notifier_block nl80211_netlink_notifier = {
11538 .notifier_call = nl80211_netlink_notify,
11541 void cfg80211_ft_event(struct net_device *netdev,
11542 struct cfg80211_ft_event_params *ft_event)
11544 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
11545 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
11546 struct sk_buff *msg;
11549 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
11551 if (!ft_event->target_ap)
11554 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11558 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
11562 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11563 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11564 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
11567 if (ft_event->ies &&
11568 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
11570 if (ft_event->ric_ies &&
11571 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
11572 ft_event->ric_ies))
11575 genlmsg_end(msg, hdr);
11577 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11578 NL80211_MCGRP_MLME, GFP_KERNEL);
11583 EXPORT_SYMBOL(cfg80211_ft_event);
11585 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
11587 struct cfg80211_registered_device *rdev;
11588 struct sk_buff *msg;
11592 rdev = wiphy_to_dev(wdev->wiphy);
11593 if (!rdev->crit_proto_nlportid)
11596 nlportid = rdev->crit_proto_nlportid;
11597 rdev->crit_proto_nlportid = 0;
11599 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11603 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
11605 goto nla_put_failure;
11607 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11608 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11609 goto nla_put_failure;
11611 genlmsg_end(msg, hdr);
11613 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
11618 genlmsg_cancel(msg, hdr);
11622 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
11624 /* initialisation/exit functions */
11626 int nl80211_init(void)
11630 err = genl_register_family_with_ops_groups(&nl80211_fam, nl80211_ops,
11635 err = netlink_register_notifier(&nl80211_netlink_notifier);
11641 genl_unregister_family(&nl80211_fam);
11645 void nl80211_exit(void)
11647 netlink_unregister_notifier(&nl80211_netlink_notifier);
11648 genl_unregister_family(&nl80211_fam);
projects / karo-tx-linux.git / blob