2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright 2013-2014 Intel Mobile Communications GmbH
9 #include <linux/module.h>
10 #include <linux/err.h>
11 #include <linux/slab.h>
12 #include <linux/list.h>
13 #include <linux/if_ether.h>
14 #include <linux/ieee80211.h>
15 #include <linux/nl80211.h>
16 #include <linux/rtnetlink.h>
17 #include <linux/netlink.h>
18 #include <linux/etherdevice.h>
19 #include <net/net_namespace.h>
20 #include <net/genetlink.h>
21 #include <net/cfg80211.h>
23 #include <net/inet_connection_sock.h>
29 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
30 struct genl_info *info,
31 struct cfg80211_crypto_settings *settings,
34 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
35 struct genl_info *info);
36 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
37 struct genl_info *info);
39 /* the netlink family */
40 static struct genl_family nl80211_fam = {
41 .id = GENL_ID_GENERATE, /* don't bother with a hardcoded ID */
42 .name = NL80211_GENL_NAME, /* have users key off the name instead */
43 .hdrsize = 0, /* no private header */
44 .version = 1, /* no particular meaning now */
45 .maxattr = NL80211_ATTR_MAX,
47 .pre_doit = nl80211_pre_doit,
48 .post_doit = nl80211_post_doit,
51 /* multicast groups */
52 enum nl80211_multicast_groups {
55 NL80211_MCGRP_REGULATORY,
58 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
61 static const struct genl_multicast_group nl80211_mcgrps[] = {
62 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
63 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
64 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
65 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
66 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
67 #ifdef CONFIG_NL80211_TESTMODE
68 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
72 /* returns ERR_PTR values */
73 static struct wireless_dev *
74 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
76 struct cfg80211_registered_device *rdev;
77 struct wireless_dev *result = NULL;
78 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
79 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
86 if (!have_ifidx && !have_wdev_id)
87 return ERR_PTR(-EINVAL);
90 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
92 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
93 wiphy_idx = wdev_id >> 32;
96 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
97 struct wireless_dev *wdev;
99 if (wiphy_net(&rdev->wiphy) != netns)
102 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
105 list_for_each_entry(wdev, &rdev->wdev_list, list) {
106 if (have_ifidx && wdev->netdev &&
107 wdev->netdev->ifindex == ifidx) {
111 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
123 return ERR_PTR(-ENODEV);
126 static struct cfg80211_registered_device *
127 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
129 struct cfg80211_registered_device *rdev = NULL, *tmp;
130 struct net_device *netdev;
134 if (!attrs[NL80211_ATTR_WIPHY] &&
135 !attrs[NL80211_ATTR_IFINDEX] &&
136 !attrs[NL80211_ATTR_WDEV])
137 return ERR_PTR(-EINVAL);
139 if (attrs[NL80211_ATTR_WIPHY])
140 rdev = cfg80211_rdev_by_wiphy_idx(
141 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
143 if (attrs[NL80211_ATTR_WDEV]) {
144 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
145 struct wireless_dev *wdev;
148 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
150 /* make sure wdev exists */
151 list_for_each_entry(wdev, &tmp->wdev_list, list) {
152 if (wdev->identifier != (u32)wdev_id)
161 if (rdev && tmp != rdev)
162 return ERR_PTR(-EINVAL);
167 if (attrs[NL80211_ATTR_IFINDEX]) {
168 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
169 netdev = __dev_get_by_index(netns, ifindex);
171 if (netdev->ieee80211_ptr)
173 netdev->ieee80211_ptr->wiphy);
177 /* not wireless device -- return error */
179 return ERR_PTR(-EINVAL);
181 /* mismatch -- return error */
182 if (rdev && tmp != rdev)
183 return ERR_PTR(-EINVAL);
190 return ERR_PTR(-ENODEV);
192 if (netns != wiphy_net(&rdev->wiphy))
193 return ERR_PTR(-ENODEV);
199 * This function returns a pointer to the driver
200 * that the genl_info item that is passed refers to.
202 * The result of this can be a PTR_ERR and hence must
203 * be checked with IS_ERR() for errors.
205 static struct cfg80211_registered_device *
206 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
208 return __cfg80211_rdev_from_attrs(netns, info->attrs);
211 /* policy for the attributes */
212 static const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
213 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
214 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
216 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
218 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
219 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
220 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
221 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
222 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
224 [NL80211_ATTR_WIPHY_RETRY_SHORT] = { .type = NLA_U8 },
225 [NL80211_ATTR_WIPHY_RETRY_LONG] = { .type = NLA_U8 },
226 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
227 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
228 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
229 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
231 [NL80211_ATTR_IFTYPE] = { .type = NLA_U32 },
232 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
233 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
235 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
236 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
238 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
239 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
240 .len = WLAN_MAX_KEY_LEN },
241 [NL80211_ATTR_KEY_IDX] = { .type = NLA_U8 },
242 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
243 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
244 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
245 [NL80211_ATTR_KEY_TYPE] = { .type = NLA_U32 },
247 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
248 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
249 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
250 .len = IEEE80211_MAX_DATA_LEN },
251 [NL80211_ATTR_BEACON_TAIL] = { .type = NLA_BINARY,
252 .len = IEEE80211_MAX_DATA_LEN },
253 [NL80211_ATTR_STA_AID] = { .type = NLA_U16 },
254 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
255 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
256 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
257 .len = NL80211_MAX_SUPP_RATES },
258 [NL80211_ATTR_STA_PLINK_ACTION] = { .type = NLA_U8 },
259 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
260 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
261 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
262 .len = IEEE80211_MAX_MESH_ID_LEN },
263 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
265 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
266 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
268 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
269 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
270 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
271 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
272 .len = NL80211_MAX_SUPP_RATES },
273 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
275 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
276 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
278 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
280 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
281 [NL80211_ATTR_IE] = { .type = NLA_BINARY,
282 .len = IEEE80211_MAX_DATA_LEN },
283 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
284 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
286 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
287 .len = IEEE80211_MAX_SSID_LEN },
288 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
289 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
290 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
291 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
292 [NL80211_ATTR_USE_MFP] = { .type = NLA_U32 },
293 [NL80211_ATTR_STA_FLAGS2] = {
294 .len = sizeof(struct nl80211_sta_flag_update),
296 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
297 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
298 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
299 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
300 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
301 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
302 [NL80211_ATTR_PID] = { .type = NLA_U32 },
303 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
304 [NL80211_ATTR_PMKID] = { .type = NLA_BINARY,
305 .len = WLAN_PMKID_LEN },
306 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
307 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
308 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
309 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
310 .len = IEEE80211_MAX_DATA_LEN },
311 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
312 [NL80211_ATTR_PS_STATE] = { .type = NLA_U32 },
313 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
314 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
315 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
316 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
317 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
318 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
319 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
320 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
321 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
322 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
323 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
324 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
325 [NL80211_ATTR_STA_PLINK_STATE] = { .type = NLA_U8 },
326 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
327 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
328 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
329 [NL80211_ATTR_HIDDEN_SSID] = { .type = NLA_U32 },
330 [NL80211_ATTR_IE_PROBE_RESP] = { .type = NLA_BINARY,
331 .len = IEEE80211_MAX_DATA_LEN },
332 [NL80211_ATTR_IE_ASSOC_RESP] = { .type = NLA_BINARY,
333 .len = IEEE80211_MAX_DATA_LEN },
334 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
335 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
336 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
337 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
338 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
339 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
340 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
341 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
342 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
343 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
344 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
345 .len = IEEE80211_MAX_DATA_LEN },
346 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
347 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
348 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
349 .len = NL80211_HT_CAPABILITY_LEN
351 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
352 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
353 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
354 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
355 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
356 [NL80211_ATTR_SAE_DATA] = { .type = NLA_BINARY, },
357 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
358 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
359 [NL80211_ATTR_P2P_CTWINDOW] = { .type = NLA_U8 },
360 [NL80211_ATTR_P2P_OPPPS] = { .type = NLA_U8 },
361 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
362 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
363 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
364 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
365 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
366 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
367 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
368 .len = NL80211_VHT_CAPABILITY_LEN,
370 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
371 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
372 .len = IEEE80211_MAX_DATA_LEN },
373 [NL80211_ATTR_PEER_AID] = { .type = NLA_U16 },
374 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
375 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
376 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
377 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
378 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
379 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
380 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
381 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
382 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
383 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
384 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
385 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
386 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
387 .len = IEEE80211_QOS_MAP_LEN_MAX },
388 [NL80211_ATTR_MAC_HINT] = { .len = ETH_ALEN },
389 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
390 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
391 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
392 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
393 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
394 [NL80211_ATTR_TSID] = { .type = NLA_U8 },
395 [NL80211_ATTR_USER_PRIO] = { .type = NLA_U8 },
396 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
397 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
398 [NL80211_ATTR_MAC_MASK] = { .len = ETH_ALEN },
399 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
400 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
401 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
402 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
405 /* policy for the key attributes */
406 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
407 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
408 [NL80211_KEY_IDX] = { .type = NLA_U8 },
409 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
410 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
411 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
412 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
413 [NL80211_KEY_TYPE] = { .type = NLA_U32 },
414 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
417 /* policy for the key default flags */
418 static const struct nla_policy
419 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
420 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
421 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
424 /* policy for WoWLAN attributes */
425 static const struct nla_policy
426 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
427 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
428 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
429 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
430 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
431 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
432 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
433 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
434 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
435 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
436 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
439 static const struct nla_policy
440 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
441 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
442 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
443 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
444 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
445 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
446 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
447 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
448 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
450 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
451 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
453 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
454 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
455 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
458 /* policy for coalesce rule attributes */
459 static const struct nla_policy
460 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
461 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
462 [NL80211_ATTR_COALESCE_RULE_CONDITION] = { .type = NLA_U32 },
463 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
466 /* policy for GTK rekey offload attributes */
467 static const struct nla_policy
468 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
469 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
470 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
471 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
474 static const struct nla_policy
475 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
476 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
477 .len = IEEE80211_MAX_SSID_LEN },
478 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
481 static int nl80211_prepare_wdev_dump(struct sk_buff *skb,
482 struct netlink_callback *cb,
483 struct cfg80211_registered_device **rdev,
484 struct wireless_dev **wdev)
491 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
492 nl80211_fam.attrbuf, nl80211_fam.maxattr,
497 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk),
498 nl80211_fam.attrbuf);
500 err = PTR_ERR(*wdev);
503 *rdev = wiphy_to_rdev((*wdev)->wiphy);
504 /* 0 is the first index - add 1 to parse only once */
505 cb->args[0] = (*rdev)->wiphy_idx + 1;
506 cb->args[1] = (*wdev)->identifier;
508 /* subtract the 1 again here */
509 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
510 struct wireless_dev *tmp;
516 *rdev = wiphy_to_rdev(wiphy);
519 list_for_each_entry(tmp, &(*rdev)->wdev_list, list) {
520 if (tmp->identifier == cb->args[1]) {
538 static void nl80211_finish_wdev_dump(struct cfg80211_registered_device *rdev)
544 static bool is_valid_ie_attr(const struct nlattr *attr)
552 pos = nla_data(attr);
573 /* message building helper */
574 static inline void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
577 /* since there is no private header just add the generic one */
578 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
581 static int nl80211_msg_put_channel(struct sk_buff *msg,
582 struct ieee80211_channel *chan,
585 /* Some channels must be completely excluded from the
586 * list to protect old user-space tools from breaking
588 if (!large && chan->flags &
589 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
592 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
594 goto nla_put_failure;
596 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
597 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
598 goto nla_put_failure;
599 if (chan->flags & IEEE80211_CHAN_NO_IR) {
600 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
601 goto nla_put_failure;
602 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
603 goto nla_put_failure;
605 if (chan->flags & IEEE80211_CHAN_RADAR) {
606 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
607 goto nla_put_failure;
611 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
613 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
615 goto nla_put_failure;
616 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
618 goto nla_put_failure;
620 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
622 goto nla_put_failure;
627 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
628 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
629 goto nla_put_failure;
630 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
631 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
632 goto nla_put_failure;
633 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
634 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
635 goto nla_put_failure;
636 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
637 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
638 goto nla_put_failure;
639 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
640 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
641 goto nla_put_failure;
642 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
643 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
644 goto nla_put_failure;
645 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
646 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
647 goto nla_put_failure;
648 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
649 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
650 goto nla_put_failure;
653 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
654 DBM_TO_MBM(chan->max_power)))
655 goto nla_put_failure;
663 /* netlink command implementations */
670 bool def_uni, def_multi;
673 static int nl80211_parse_key_new(struct nlattr *key, struct key_parse *k)
675 struct nlattr *tb[NL80211_KEY_MAX + 1];
676 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
681 k->def = !!tb[NL80211_KEY_DEFAULT];
682 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
691 if (tb[NL80211_KEY_IDX])
692 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
694 if (tb[NL80211_KEY_DATA]) {
695 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
696 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
699 if (tb[NL80211_KEY_SEQ]) {
700 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
701 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
704 if (tb[NL80211_KEY_CIPHER])
705 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
707 if (tb[NL80211_KEY_TYPE]) {
708 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
709 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
713 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
714 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
715 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
716 tb[NL80211_KEY_DEFAULT_TYPES],
717 nl80211_key_default_policy);
721 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
722 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
728 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
730 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
731 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
732 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
735 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
736 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
737 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
740 if (info->attrs[NL80211_ATTR_KEY_IDX])
741 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
743 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
744 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
746 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
747 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
756 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
757 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
758 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
762 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
763 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
764 int err = nla_parse_nested(
765 kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
766 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
767 nl80211_key_default_policy);
771 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
772 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
778 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
782 memset(k, 0, sizeof(*k));
786 if (info->attrs[NL80211_ATTR_KEY])
787 err = nl80211_parse_key_new(info->attrs[NL80211_ATTR_KEY], k);
789 err = nl80211_parse_key_old(info, k);
794 if (k->def && k->defmgmt)
798 if (k->def_uni || !k->def_multi)
804 if (k->idx < 4 || k->idx > 5)
807 if (k->idx < 0 || k->idx > 3)
810 if (k->idx < 0 || k->idx > 5)
818 static struct cfg80211_cached_keys *
819 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
820 struct nlattr *keys, bool *no_ht)
822 struct key_parse parse;
824 struct cfg80211_cached_keys *result;
825 int rem, err, def = 0;
827 result = kzalloc(sizeof(*result), GFP_KERNEL);
829 return ERR_PTR(-ENOMEM);
832 result->defmgmt = -1;
834 nla_for_each_nested(key, keys, rem) {
835 memset(&parse, 0, sizeof(parse));
838 err = nl80211_parse_key_new(key, &parse);
844 if (parse.idx < 0 || parse.idx > 4)
850 result->def = parse.idx;
851 if (!parse.def_uni || !parse.def_multi)
853 } else if (parse.defmgmt)
855 err = cfg80211_validate_key_settings(rdev, &parse.p,
856 parse.idx, false, NULL);
859 result->params[parse.idx].cipher = parse.p.cipher;
860 result->params[parse.idx].key_len = parse.p.key_len;
861 result->params[parse.idx].key = result->data[parse.idx];
862 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
864 if (parse.p.cipher == WLAN_CIPHER_SUITE_WEP40 ||
865 parse.p.cipher == WLAN_CIPHER_SUITE_WEP104) {
877 static int nl80211_key_allowed(struct wireless_dev *wdev)
879 ASSERT_WDEV_LOCK(wdev);
881 switch (wdev->iftype) {
882 case NL80211_IFTYPE_AP:
883 case NL80211_IFTYPE_AP_VLAN:
884 case NL80211_IFTYPE_P2P_GO:
885 case NL80211_IFTYPE_MESH_POINT:
887 case NL80211_IFTYPE_ADHOC:
888 case NL80211_IFTYPE_STATION:
889 case NL80211_IFTYPE_P2P_CLIENT:
890 if (!wdev->current_bss)
893 case NL80211_IFTYPE_UNSPECIFIED:
894 case NL80211_IFTYPE_OCB:
895 case NL80211_IFTYPE_MONITOR:
896 case NL80211_IFTYPE_P2P_DEVICE:
897 case NL80211_IFTYPE_WDS:
898 case NUM_NL80211_IFTYPES:
905 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
908 struct ieee80211_channel *chan;
912 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
913 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
918 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
920 struct nlattr *nl_modes = nla_nest_start(msg, attr);
924 goto nla_put_failure;
928 if ((ifmodes & 1) && nla_put_flag(msg, i))
929 goto nla_put_failure;
934 nla_nest_end(msg, nl_modes);
941 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
945 struct nlattr *nl_combis;
948 nl_combis = nla_nest_start(msg,
949 NL80211_ATTR_INTERFACE_COMBINATIONS);
951 goto nla_put_failure;
953 for (i = 0; i < wiphy->n_iface_combinations; i++) {
954 const struct ieee80211_iface_combination *c;
955 struct nlattr *nl_combi, *nl_limits;
957 c = &wiphy->iface_combinations[i];
959 nl_combi = nla_nest_start(msg, i + 1);
961 goto nla_put_failure;
963 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
965 goto nla_put_failure;
967 for (j = 0; j < c->n_limits; j++) {
968 struct nlattr *nl_limit;
970 nl_limit = nla_nest_start(msg, j + 1);
972 goto nla_put_failure;
973 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
975 goto nla_put_failure;
976 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
978 goto nla_put_failure;
979 nla_nest_end(msg, nl_limit);
982 nla_nest_end(msg, nl_limits);
984 if (c->beacon_int_infra_match &&
985 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
986 goto nla_put_failure;
987 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
988 c->num_different_channels) ||
989 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
991 goto nla_put_failure;
993 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
994 c->radar_detect_widths) ||
995 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
996 c->radar_detect_regions)))
997 goto nla_put_failure;
999 nla_nest_end(msg, nl_combi);
1002 nla_nest_end(msg, nl_combis);
1010 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1011 struct sk_buff *msg)
1013 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1014 struct nlattr *nl_tcp;
1019 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1023 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1024 tcp->data_payload_max))
1027 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1028 tcp->data_payload_max))
1031 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1034 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1035 sizeof(*tcp->tok), tcp->tok))
1038 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1039 tcp->data_interval_max))
1042 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1043 tcp->wake_payload_max))
1046 nla_nest_end(msg, nl_tcp);
1050 static int nl80211_send_wowlan(struct sk_buff *msg,
1051 struct cfg80211_registered_device *rdev,
1054 struct nlattr *nl_wowlan;
1056 if (!rdev->wiphy.wowlan)
1059 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1063 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1064 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1065 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1066 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1067 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1068 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1069 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1070 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1071 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1072 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1073 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1074 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1075 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1076 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1077 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1078 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1081 if (rdev->wiphy.wowlan->n_patterns) {
1082 struct nl80211_pattern_support pat = {
1083 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1084 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1085 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1086 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1089 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1094 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1095 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1096 rdev->wiphy.wowlan->max_nd_match_sets))
1099 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1102 nla_nest_end(msg, nl_wowlan);
1108 static int nl80211_send_coalesce(struct sk_buff *msg,
1109 struct cfg80211_registered_device *rdev)
1111 struct nl80211_coalesce_rule_support rule;
1113 if (!rdev->wiphy.coalesce)
1116 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1117 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1118 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1119 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1120 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1121 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1123 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1129 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1130 struct ieee80211_supported_band *sband)
1132 struct nlattr *nl_rates, *nl_rate;
1133 struct ieee80211_rate *rate;
1137 if (sband->ht_cap.ht_supported &&
1138 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1139 sizeof(sband->ht_cap.mcs),
1140 &sband->ht_cap.mcs) ||
1141 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1142 sband->ht_cap.cap) ||
1143 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1144 sband->ht_cap.ampdu_factor) ||
1145 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1146 sband->ht_cap.ampdu_density)))
1150 if (sband->vht_cap.vht_supported &&
1151 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1152 sizeof(sband->vht_cap.vht_mcs),
1153 &sband->vht_cap.vht_mcs) ||
1154 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1155 sband->vht_cap.cap)))
1159 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1163 for (i = 0; i < sband->n_bitrates; i++) {
1164 nl_rate = nla_nest_start(msg, i);
1168 rate = &sband->bitrates[i];
1169 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1172 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1174 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1177 nla_nest_end(msg, nl_rate);
1180 nla_nest_end(msg, nl_rates);
1186 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1187 const struct ieee80211_txrx_stypes *mgmt_stypes)
1190 struct nlattr *nl_ftypes, *nl_ifs;
1191 enum nl80211_iftype ift;
1197 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1201 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1202 nl_ftypes = nla_nest_start(msg, ift);
1206 stypes = mgmt_stypes[ift].tx;
1209 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1210 (i << 4) | IEEE80211_FTYPE_MGMT))
1215 nla_nest_end(msg, nl_ftypes);
1218 nla_nest_end(msg, nl_ifs);
1220 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1224 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1225 nl_ftypes = nla_nest_start(msg, ift);
1229 stypes = mgmt_stypes[ift].rx;
1232 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1233 (i << 4) | IEEE80211_FTYPE_MGMT))
1238 nla_nest_end(msg, nl_ftypes);
1240 nla_nest_end(msg, nl_ifs);
1245 struct nl80211_dump_wiphy_state {
1248 long split_start, band_start, chan_start;
1252 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1253 enum nl80211_commands cmd,
1254 struct sk_buff *msg, u32 portid, u32 seq,
1255 int flags, struct nl80211_dump_wiphy_state *state)
1258 struct nlattr *nl_bands, *nl_band;
1259 struct nlattr *nl_freqs, *nl_freq;
1260 struct nlattr *nl_cmds;
1261 enum ieee80211_band band;
1262 struct ieee80211_channel *chan;
1264 const struct ieee80211_txrx_stypes *mgmt_stypes =
1265 rdev->wiphy.mgmt_stypes;
1268 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1272 if (WARN_ON(!state))
1275 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1276 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1277 wiphy_name(&rdev->wiphy)) ||
1278 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1279 cfg80211_rdev_list_generation))
1280 goto nla_put_failure;
1282 if (cmd != NL80211_CMD_NEW_WIPHY)
1285 switch (state->split_start) {
1287 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1288 rdev->wiphy.retry_short) ||
1289 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1290 rdev->wiphy.retry_long) ||
1291 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1292 rdev->wiphy.frag_threshold) ||
1293 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1294 rdev->wiphy.rts_threshold) ||
1295 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1296 rdev->wiphy.coverage_class) ||
1297 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1298 rdev->wiphy.max_scan_ssids) ||
1299 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1300 rdev->wiphy.max_sched_scan_ssids) ||
1301 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1302 rdev->wiphy.max_scan_ie_len) ||
1303 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1304 rdev->wiphy.max_sched_scan_ie_len) ||
1305 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1306 rdev->wiphy.max_match_sets))
1307 goto nla_put_failure;
1309 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1310 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1311 goto nla_put_failure;
1312 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1313 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1314 goto nla_put_failure;
1315 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1316 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1317 goto nla_put_failure;
1318 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1319 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1320 goto nla_put_failure;
1321 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1322 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1323 goto nla_put_failure;
1324 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1325 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1326 goto nla_put_failure;
1327 state->split_start++;
1331 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1332 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1333 rdev->wiphy.cipher_suites))
1334 goto nla_put_failure;
1336 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1337 rdev->wiphy.max_num_pmkids))
1338 goto nla_put_failure;
1340 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1341 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1342 goto nla_put_failure;
1344 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1345 rdev->wiphy.available_antennas_tx) ||
1346 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1347 rdev->wiphy.available_antennas_rx))
1348 goto nla_put_failure;
1350 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1351 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1352 rdev->wiphy.probe_resp_offload))
1353 goto nla_put_failure;
1355 if ((rdev->wiphy.available_antennas_tx ||
1356 rdev->wiphy.available_antennas_rx) &&
1357 rdev->ops->get_antenna) {
1358 u32 tx_ant = 0, rx_ant = 0;
1360 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1362 if (nla_put_u32(msg,
1363 NL80211_ATTR_WIPHY_ANTENNA_TX,
1366 NL80211_ATTR_WIPHY_ANTENNA_RX,
1368 goto nla_put_failure;
1372 state->split_start++;
1376 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1377 rdev->wiphy.interface_modes))
1378 goto nla_put_failure;
1379 state->split_start++;
1383 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1385 goto nla_put_failure;
1387 for (band = state->band_start;
1388 band < IEEE80211_NUM_BANDS; band++) {
1389 struct ieee80211_supported_band *sband;
1391 sband = rdev->wiphy.bands[band];
1396 nl_band = nla_nest_start(msg, band);
1398 goto nla_put_failure;
1400 switch (state->chan_start) {
1402 if (nl80211_send_band_rateinfo(msg, sband))
1403 goto nla_put_failure;
1404 state->chan_start++;
1408 /* add frequencies */
1409 nl_freqs = nla_nest_start(
1410 msg, NL80211_BAND_ATTR_FREQS);
1412 goto nla_put_failure;
1414 for (i = state->chan_start - 1;
1415 i < sband->n_channels;
1417 nl_freq = nla_nest_start(msg, i);
1419 goto nla_put_failure;
1421 chan = &sband->channels[i];
1423 if (nl80211_msg_put_channel(
1426 goto nla_put_failure;
1428 nla_nest_end(msg, nl_freq);
1432 if (i < sband->n_channels)
1433 state->chan_start = i + 2;
1435 state->chan_start = 0;
1436 nla_nest_end(msg, nl_freqs);
1439 nla_nest_end(msg, nl_band);
1442 /* start again here */
1443 if (state->chan_start)
1448 nla_nest_end(msg, nl_bands);
1450 if (band < IEEE80211_NUM_BANDS)
1451 state->band_start = band + 1;
1453 state->band_start = 0;
1455 /* if bands & channels are done, continue outside */
1456 if (state->band_start == 0 && state->chan_start == 0)
1457 state->split_start++;
1461 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1463 goto nla_put_failure;
1466 #define CMD(op, n) \
1468 if (rdev->ops->op) { \
1470 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1471 goto nla_put_failure; \
1475 CMD(add_virtual_intf, NEW_INTERFACE);
1476 CMD(change_virtual_intf, SET_INTERFACE);
1477 CMD(add_key, NEW_KEY);
1478 CMD(start_ap, START_AP);
1479 CMD(add_station, NEW_STATION);
1480 CMD(add_mpath, NEW_MPATH);
1481 CMD(update_mesh_config, SET_MESH_CONFIG);
1482 CMD(change_bss, SET_BSS);
1483 CMD(auth, AUTHENTICATE);
1484 CMD(assoc, ASSOCIATE);
1485 CMD(deauth, DEAUTHENTICATE);
1486 CMD(disassoc, DISASSOCIATE);
1487 CMD(join_ibss, JOIN_IBSS);
1488 CMD(join_mesh, JOIN_MESH);
1489 CMD(set_pmksa, SET_PMKSA);
1490 CMD(del_pmksa, DEL_PMKSA);
1491 CMD(flush_pmksa, FLUSH_PMKSA);
1492 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1493 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1494 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1495 CMD(mgmt_tx, FRAME);
1496 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1497 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1499 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1500 goto nla_put_failure;
1502 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1503 rdev->ops->join_mesh) {
1505 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1506 goto nla_put_failure;
1508 CMD(set_wds_peer, SET_WDS_PEER);
1509 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1510 CMD(tdls_mgmt, TDLS_MGMT);
1511 CMD(tdls_oper, TDLS_OPER);
1513 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN)
1514 CMD(sched_scan_start, START_SCHED_SCAN);
1515 CMD(probe_client, PROBE_CLIENT);
1516 CMD(set_noack_map, SET_NOACK_MAP);
1517 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1519 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1520 goto nla_put_failure;
1522 CMD(start_p2p_device, START_P2P_DEVICE);
1523 CMD(set_mcast_rate, SET_MCAST_RATE);
1524 #ifdef CONFIG_NL80211_TESTMODE
1525 CMD(testmode_cmd, TESTMODE);
1528 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1529 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1530 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1531 CMD(channel_switch, CHANNEL_SWITCH);
1532 CMD(set_qos_map, SET_QOS_MAP);
1533 if (rdev->wiphy.features &
1534 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
1535 CMD(add_tx_ts, ADD_TX_TS);
1537 /* add into the if now */
1540 if (rdev->ops->connect || rdev->ops->auth) {
1542 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1543 goto nla_put_failure;
1546 if (rdev->ops->disconnect || rdev->ops->deauth) {
1548 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1549 goto nla_put_failure;
1552 nla_nest_end(msg, nl_cmds);
1553 state->split_start++;
1557 if (rdev->ops->remain_on_channel &&
1558 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
1560 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
1561 rdev->wiphy.max_remain_on_channel_duration))
1562 goto nla_put_failure;
1564 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
1565 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
1566 goto nla_put_failure;
1568 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
1569 goto nla_put_failure;
1570 state->split_start++;
1575 if (nl80211_send_wowlan(msg, rdev, state->split))
1576 goto nla_put_failure;
1577 state->split_start++;
1581 state->split_start++;
1584 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
1585 rdev->wiphy.software_iftypes))
1586 goto nla_put_failure;
1588 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
1590 goto nla_put_failure;
1592 state->split_start++;
1596 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
1597 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
1598 rdev->wiphy.ap_sme_capa))
1599 goto nla_put_failure;
1601 features = rdev->wiphy.features;
1603 * We can only add the per-channel limit information if the
1604 * dump is split, otherwise it makes it too big. Therefore
1605 * only advertise it in that case.
1608 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
1609 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
1610 goto nla_put_failure;
1612 if (rdev->wiphy.ht_capa_mod_mask &&
1613 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
1614 sizeof(*rdev->wiphy.ht_capa_mod_mask),
1615 rdev->wiphy.ht_capa_mod_mask))
1616 goto nla_put_failure;
1618 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
1619 rdev->wiphy.max_acl_mac_addrs &&
1620 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
1621 rdev->wiphy.max_acl_mac_addrs))
1622 goto nla_put_failure;
1625 * Any information below this point is only available to
1626 * applications that can deal with it being split. This
1627 * helps ensure that newly added capabilities don't break
1628 * older tools by overrunning their buffers.
1630 * We still increment split_start so that in the split
1631 * case we'll continue with more data in the next round,
1632 * but break unconditionally so unsplit data stops here.
1634 state->split_start++;
1637 if (rdev->wiphy.extended_capabilities &&
1638 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
1639 rdev->wiphy.extended_capabilities_len,
1640 rdev->wiphy.extended_capabilities) ||
1641 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
1642 rdev->wiphy.extended_capabilities_len,
1643 rdev->wiphy.extended_capabilities_mask)))
1644 goto nla_put_failure;
1646 if (rdev->wiphy.vht_capa_mod_mask &&
1647 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
1648 sizeof(*rdev->wiphy.vht_capa_mod_mask),
1649 rdev->wiphy.vht_capa_mod_mask))
1650 goto nla_put_failure;
1652 state->split_start++;
1655 if (nl80211_send_coalesce(msg, rdev))
1656 goto nla_put_failure;
1658 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
1659 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
1660 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
1661 goto nla_put_failure;
1663 if (rdev->wiphy.max_ap_assoc_sta &&
1664 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
1665 rdev->wiphy.max_ap_assoc_sta))
1666 goto nla_put_failure;
1668 state->split_start++;
1671 if (rdev->wiphy.n_vendor_commands) {
1672 const struct nl80211_vendor_cmd_info *info;
1673 struct nlattr *nested;
1675 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
1677 goto nla_put_failure;
1679 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
1680 info = &rdev->wiphy.vendor_commands[i].info;
1681 if (nla_put(msg, i + 1, sizeof(*info), info))
1682 goto nla_put_failure;
1684 nla_nest_end(msg, nested);
1687 if (rdev->wiphy.n_vendor_events) {
1688 const struct nl80211_vendor_cmd_info *info;
1689 struct nlattr *nested;
1691 nested = nla_nest_start(msg,
1692 NL80211_ATTR_VENDOR_EVENTS);
1694 goto nla_put_failure;
1696 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
1697 info = &rdev->wiphy.vendor_events[i];
1698 if (nla_put(msg, i + 1, sizeof(*info), info))
1699 goto nla_put_failure;
1701 nla_nest_end(msg, nested);
1703 state->split_start++;
1706 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
1707 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
1708 rdev->wiphy.max_num_csa_counters))
1709 goto nla_put_failure;
1711 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
1712 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
1713 goto nla_put_failure;
1715 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
1716 sizeof(rdev->wiphy.ext_features),
1717 rdev->wiphy.ext_features))
1718 goto nla_put_failure;
1721 state->split_start = 0;
1725 genlmsg_end(msg, hdr);
1729 genlmsg_cancel(msg, hdr);
1733 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
1734 struct netlink_callback *cb,
1735 struct nl80211_dump_wiphy_state *state)
1737 struct nlattr **tb = nl80211_fam.attrbuf;
1738 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
1739 tb, nl80211_fam.maxattr, nl80211_policy);
1740 /* ignore parse errors for backward compatibility */
1744 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
1745 if (tb[NL80211_ATTR_WIPHY])
1746 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
1747 if (tb[NL80211_ATTR_WDEV])
1748 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
1749 if (tb[NL80211_ATTR_IFINDEX]) {
1750 struct net_device *netdev;
1751 struct cfg80211_registered_device *rdev;
1752 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
1754 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
1757 if (netdev->ieee80211_ptr) {
1758 rdev = wiphy_to_rdev(
1759 netdev->ieee80211_ptr->wiphy);
1760 state->filter_wiphy = rdev->wiphy_idx;
1767 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
1770 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
1771 struct cfg80211_registered_device *rdev;
1775 state = kzalloc(sizeof(*state), GFP_KERNEL);
1780 state->filter_wiphy = -1;
1781 ret = nl80211_dump_wiphy_parse(skb, cb, state);
1787 cb->args[0] = (long)state;
1790 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
1791 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
1793 if (++idx <= state->start)
1795 if (state->filter_wiphy != -1 &&
1796 state->filter_wiphy != rdev->wiphy_idx)
1798 /* attempt to fit multiple wiphy data chunks into the skb */
1800 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
1802 NETLINK_CB(cb->skb).portid,
1804 NLM_F_MULTI, state);
1807 * If sending the wiphy data didn't fit (ENOBUFS
1808 * or EMSGSIZE returned), this SKB is still
1809 * empty (so it's not too big because another
1810 * wiphy dataset is already in the skb) and
1811 * we've not tried to adjust the dump allocation
1812 * yet ... then adjust the alloc size to be
1813 * bigger, and return 1 but with the empty skb.
1814 * This results in an empty message being RX'ed
1815 * in userspace, but that is ignored.
1817 * We can then retry with the larger buffer.
1819 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
1820 !skb->len && !state->split &&
1821 cb->min_dump_alloc < 4096) {
1822 cb->min_dump_alloc = 4096;
1823 state->split_start = 0;
1830 } while (state->split_start > 0);
1840 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
1842 kfree((void *)cb->args[0]);
1846 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
1848 struct sk_buff *msg;
1849 struct cfg80211_registered_device *rdev = info->user_ptr[0];
1850 struct nl80211_dump_wiphy_state state = {};
1852 msg = nlmsg_new(4096, GFP_KERNEL);
1856 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
1857 info->snd_portid, info->snd_seq, 0,
1863 return genlmsg_reply(msg, info);
1866 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
1867 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
1868 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
1869 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
1870 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
1871 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
1874 static int parse_txq_params(struct nlattr *tb[],
1875 struct ieee80211_txq_params *txq_params)
1877 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
1878 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
1879 !tb[NL80211_TXQ_ATTR_AIFS])
1882 txq_params->ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
1883 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
1884 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
1885 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
1886 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
1888 if (txq_params->ac >= NL80211_NUM_ACS)
1894 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
1897 * You can only set the channel explicitly for WDS interfaces,
1898 * all others have their channel managed via their respective
1899 * "establish a connection" command (connect, join, ...)
1901 * For AP/GO and mesh mode, the channel can be set with the
1902 * channel userspace API, but is only stored and passed to the
1903 * low-level driver when the AP starts or the mesh is joined.
1904 * This is for backward compatibility, userspace can also give
1905 * the channel in the start-ap or join-mesh commands instead.
1907 * Monitors are special as they are normally slaved to
1908 * whatever else is going on, so they have their own special
1909 * operation to set the monitor channel if possible.
1912 wdev->iftype == NL80211_IFTYPE_AP ||
1913 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
1914 wdev->iftype == NL80211_IFTYPE_MONITOR ||
1915 wdev->iftype == NL80211_IFTYPE_P2P_GO;
1918 static int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
1919 struct genl_info *info,
1920 struct cfg80211_chan_def *chandef)
1924 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
1927 control_freq = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]);
1929 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
1930 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
1931 chandef->center_freq1 = control_freq;
1932 chandef->center_freq2 = 0;
1934 /* Primary channel not allowed */
1935 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED)
1938 if (info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
1939 enum nl80211_channel_type chantype;
1941 chantype = nla_get_u32(
1942 info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
1945 case NL80211_CHAN_NO_HT:
1946 case NL80211_CHAN_HT20:
1947 case NL80211_CHAN_HT40PLUS:
1948 case NL80211_CHAN_HT40MINUS:
1949 cfg80211_chandef_create(chandef, chandef->chan,
1955 } else if (info->attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
1957 nla_get_u32(info->attrs[NL80211_ATTR_CHANNEL_WIDTH]);
1958 if (info->attrs[NL80211_ATTR_CENTER_FREQ1])
1959 chandef->center_freq1 =
1961 info->attrs[NL80211_ATTR_CENTER_FREQ1]);
1962 if (info->attrs[NL80211_ATTR_CENTER_FREQ2])
1963 chandef->center_freq2 =
1965 info->attrs[NL80211_ATTR_CENTER_FREQ2]);
1968 if (!cfg80211_chandef_valid(chandef))
1971 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
1972 IEEE80211_CHAN_DISABLED))
1975 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
1976 chandef->width == NL80211_CHAN_WIDTH_10) &&
1977 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ))
1983 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
1984 struct net_device *dev,
1985 struct genl_info *info)
1987 struct cfg80211_chan_def chandef;
1989 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
1990 struct wireless_dev *wdev = NULL;
1993 wdev = dev->ieee80211_ptr;
1994 if (!nl80211_can_set_dev_channel(wdev))
1997 iftype = wdev->iftype;
1999 result = nl80211_parse_chandef(rdev, info, &chandef);
2004 case NL80211_IFTYPE_AP:
2005 case NL80211_IFTYPE_P2P_GO:
2006 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &chandef, iftype)) {
2010 if (wdev->beacon_interval) {
2011 if (!dev || !rdev->ops->set_ap_chanwidth ||
2012 !(rdev->wiphy.features &
2013 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2018 /* Only allow dynamic channel width changes */
2019 if (chandef.chan != wdev->preset_chandef.chan) {
2023 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2027 wdev->preset_chandef = chandef;
2030 case NL80211_IFTYPE_MESH_POINT:
2031 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2033 case NL80211_IFTYPE_MONITOR:
2034 result = cfg80211_set_monitor_channel(rdev, &chandef);
2043 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2045 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2046 struct net_device *netdev = info->user_ptr[1];
2048 return __nl80211_set_channel(rdev, netdev, info);
2051 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2053 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2054 struct net_device *dev = info->user_ptr[1];
2055 struct wireless_dev *wdev = dev->ieee80211_ptr;
2058 if (!info->attrs[NL80211_ATTR_MAC])
2061 if (netif_running(dev))
2064 if (!rdev->ops->set_wds_peer)
2067 if (wdev->iftype != NL80211_IFTYPE_WDS)
2070 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2071 return rdev_set_wds_peer(rdev, dev, bssid);
2075 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2077 struct cfg80211_registered_device *rdev;
2078 struct net_device *netdev = NULL;
2079 struct wireless_dev *wdev;
2080 int result = 0, rem_txq_params = 0;
2081 struct nlattr *nl_txq_params;
2083 u8 retry_short = 0, retry_long = 0;
2084 u32 frag_threshold = 0, rts_threshold = 0;
2085 u8 coverage_class = 0;
2090 * Try to find the wiphy and netdev. Normally this
2091 * function shouldn't need the netdev, but this is
2092 * done for backward compatibility -- previously
2093 * setting the channel was done per wiphy, but now
2094 * it is per netdev. Previous userland like hostapd
2095 * also passed a netdev to set_wiphy, so that it is
2096 * possible to let that go to the right netdev!
2099 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2100 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2102 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2103 if (netdev && netdev->ieee80211_ptr)
2104 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2110 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2113 return PTR_ERR(rdev);
2118 wdev = netdev->ieee80211_ptr;
2121 * end workaround code, by now the rdev is available
2122 * and locked, and wdev may or may not be NULL.
2125 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2126 result = cfg80211_dev_rename(
2127 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2132 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2133 struct ieee80211_txq_params txq_params;
2134 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2136 if (!rdev->ops->set_txq_params)
2142 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2143 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2146 if (!netif_running(netdev))
2149 nla_for_each_nested(nl_txq_params,
2150 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2152 result = nla_parse(tb, NL80211_TXQ_ATTR_MAX,
2153 nla_data(nl_txq_params),
2154 nla_len(nl_txq_params),
2158 result = parse_txq_params(tb, &txq_params);
2162 result = rdev_set_txq_params(rdev, netdev,
2169 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2170 result = __nl80211_set_channel(
2172 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2178 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2179 struct wireless_dev *txp_wdev = wdev;
2180 enum nl80211_tx_power_setting type;
2183 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2186 if (!rdev->ops->set_tx_power)
2189 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2190 type = nla_get_u32(info->attrs[idx]);
2192 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2193 (type != NL80211_TX_POWER_AUTOMATIC))
2196 if (type != NL80211_TX_POWER_AUTOMATIC) {
2197 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2198 mbm = nla_get_u32(info->attrs[idx]);
2201 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2206 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2207 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2209 if ((!rdev->wiphy.available_antennas_tx &&
2210 !rdev->wiphy.available_antennas_rx) ||
2211 !rdev->ops->set_antenna)
2214 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2215 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2217 /* reject antenna configurations which don't match the
2218 * available antenna masks, except for the "all" mask */
2219 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2220 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2223 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2224 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2226 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2233 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2234 retry_short = nla_get_u8(
2235 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2236 if (retry_short == 0)
2239 changed |= WIPHY_PARAM_RETRY_SHORT;
2242 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2243 retry_long = nla_get_u8(
2244 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2245 if (retry_long == 0)
2248 changed |= WIPHY_PARAM_RETRY_LONG;
2251 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2252 frag_threshold = nla_get_u32(
2253 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2254 if (frag_threshold < 256)
2257 if (frag_threshold != (u32) -1) {
2259 * Fragments (apart from the last one) are required to
2260 * have even length. Make the fragmentation code
2261 * simpler by stripping LSB should someone try to use
2262 * odd threshold value.
2264 frag_threshold &= ~0x1;
2266 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2269 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2270 rts_threshold = nla_get_u32(
2271 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2272 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2275 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2276 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2279 coverage_class = nla_get_u8(
2280 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2281 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2284 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2285 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2288 changed |= WIPHY_PARAM_DYN_ACK;
2292 u8 old_retry_short, old_retry_long;
2293 u32 old_frag_threshold, old_rts_threshold;
2294 u8 old_coverage_class;
2296 if (!rdev->ops->set_wiphy_params)
2299 old_retry_short = rdev->wiphy.retry_short;
2300 old_retry_long = rdev->wiphy.retry_long;
2301 old_frag_threshold = rdev->wiphy.frag_threshold;
2302 old_rts_threshold = rdev->wiphy.rts_threshold;
2303 old_coverage_class = rdev->wiphy.coverage_class;
2305 if (changed & WIPHY_PARAM_RETRY_SHORT)
2306 rdev->wiphy.retry_short = retry_short;
2307 if (changed & WIPHY_PARAM_RETRY_LONG)
2308 rdev->wiphy.retry_long = retry_long;
2309 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2310 rdev->wiphy.frag_threshold = frag_threshold;
2311 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2312 rdev->wiphy.rts_threshold = rts_threshold;
2313 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2314 rdev->wiphy.coverage_class = coverage_class;
2316 result = rdev_set_wiphy_params(rdev, changed);
2318 rdev->wiphy.retry_short = old_retry_short;
2319 rdev->wiphy.retry_long = old_retry_long;
2320 rdev->wiphy.frag_threshold = old_frag_threshold;
2321 rdev->wiphy.rts_threshold = old_rts_threshold;
2322 rdev->wiphy.coverage_class = old_coverage_class;
2328 static inline u64 wdev_id(struct wireless_dev *wdev)
2330 return (u64)wdev->identifier |
2331 ((u64)wiphy_to_rdev(wdev->wiphy)->wiphy_idx << 32);
2334 static int nl80211_send_chandef(struct sk_buff *msg,
2335 const struct cfg80211_chan_def *chandef)
2337 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
2340 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2341 chandef->chan->center_freq))
2343 switch (chandef->width) {
2344 case NL80211_CHAN_WIDTH_20_NOHT:
2345 case NL80211_CHAN_WIDTH_20:
2346 case NL80211_CHAN_WIDTH_40:
2347 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2348 cfg80211_get_chandef_type(chandef)))
2354 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2356 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2358 if (chandef->center_freq2 &&
2359 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2364 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2365 struct cfg80211_registered_device *rdev,
2366 struct wireless_dev *wdev, bool removal)
2368 struct net_device *dev = wdev->netdev;
2369 u8 cmd = NL80211_CMD_NEW_INTERFACE;
2373 cmd = NL80211_CMD_DEL_INTERFACE;
2375 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
2380 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2381 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
2382 goto nla_put_failure;
2384 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
2385 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
2386 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
2387 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
2388 nla_put_u32(msg, NL80211_ATTR_GENERATION,
2389 rdev->devlist_generation ^
2390 (cfg80211_rdev_list_generation << 2)))
2391 goto nla_put_failure;
2393 if (rdev->ops->get_channel) {
2395 struct cfg80211_chan_def chandef;
2397 ret = rdev_get_channel(rdev, wdev, &chandef);
2399 if (nl80211_send_chandef(msg, &chandef))
2400 goto nla_put_failure;
2404 if (wdev->ssid_len) {
2405 if (nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
2406 goto nla_put_failure;
2409 genlmsg_end(msg, hdr);
2413 genlmsg_cancel(msg, hdr);
2417 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
2421 int wp_start = cb->args[0];
2422 int if_start = cb->args[1];
2423 struct cfg80211_registered_device *rdev;
2424 struct wireless_dev *wdev;
2427 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2428 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2430 if (wp_idx < wp_start) {
2436 list_for_each_entry(wdev, &rdev->wdev_list, list) {
2437 if (if_idx < if_start) {
2441 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
2442 cb->nlh->nlmsg_seq, NLM_F_MULTI,
2443 rdev, wdev, false) < 0) {
2454 cb->args[0] = wp_idx;
2455 cb->args[1] = if_idx;
2460 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
2462 struct sk_buff *msg;
2463 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2464 struct wireless_dev *wdev = info->user_ptr[1];
2466 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2470 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2471 rdev, wdev, false) < 0) {
2476 return genlmsg_reply(msg, info);
2479 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
2480 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
2481 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
2482 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
2483 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
2484 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
2485 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
2488 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
2490 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
2498 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX,
2499 nla, mntr_flags_policy))
2502 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
2504 *mntrflags |= (1<<flag);
2509 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
2510 struct net_device *netdev, u8 use_4addr,
2511 enum nl80211_iftype iftype)
2514 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
2520 case NL80211_IFTYPE_AP_VLAN:
2521 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
2524 case NL80211_IFTYPE_STATION:
2525 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
2535 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
2537 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2538 struct vif_params params;
2540 enum nl80211_iftype otype, ntype;
2541 struct net_device *dev = info->user_ptr[1];
2542 u32 _flags, *flags = NULL;
2543 bool change = false;
2545 memset(¶ms, 0, sizeof(params));
2547 otype = ntype = dev->ieee80211_ptr->iftype;
2549 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2550 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2553 if (ntype > NL80211_IFTYPE_MAX)
2557 if (info->attrs[NL80211_ATTR_MESH_ID]) {
2558 struct wireless_dev *wdev = dev->ieee80211_ptr;
2560 if (ntype != NL80211_IFTYPE_MESH_POINT)
2562 if (netif_running(dev))
2566 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2567 IEEE80211_MAX_MESH_ID_LEN);
2568 wdev->mesh_id_up_len =
2569 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2570 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2571 wdev->mesh_id_up_len);
2575 if (info->attrs[NL80211_ATTR_4ADDR]) {
2576 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2578 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
2582 params.use_4addr = -1;
2585 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
2586 if (ntype != NL80211_IFTYPE_MONITOR)
2588 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
2597 if (flags && (*flags & MONITOR_FLAG_ACTIVE) &&
2598 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2602 err = cfg80211_change_iface(rdev, dev, ntype, flags, ¶ms);
2606 if (!err && params.use_4addr != -1)
2607 dev->ieee80211_ptr->use_4addr = params.use_4addr;
2612 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
2614 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2615 struct vif_params params;
2616 struct wireless_dev *wdev;
2617 struct sk_buff *msg, *event;
2619 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
2622 /* to avoid failing a new interface creation due to pending removal */
2623 cfg80211_destroy_ifaces(rdev);
2625 memset(¶ms, 0, sizeof(params));
2627 if (!info->attrs[NL80211_ATTR_IFNAME])
2630 if (info->attrs[NL80211_ATTR_IFTYPE]) {
2631 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
2632 if (type > NL80211_IFTYPE_MAX)
2636 if (!rdev->ops->add_virtual_intf ||
2637 !(rdev->wiphy.interface_modes & (1 << type)))
2640 if ((type == NL80211_IFTYPE_P2P_DEVICE ||
2641 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
2642 info->attrs[NL80211_ATTR_MAC]) {
2643 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
2645 if (!is_valid_ether_addr(params.macaddr))
2646 return -EADDRNOTAVAIL;
2649 if (info->attrs[NL80211_ATTR_4ADDR]) {
2650 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
2651 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
2656 err = parse_monitor_flags(type == NL80211_IFTYPE_MONITOR ?
2657 info->attrs[NL80211_ATTR_MNTR_FLAGS] : NULL,
2660 if (!err && (flags & MONITOR_FLAG_ACTIVE) &&
2661 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
2664 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2668 wdev = rdev_add_virtual_intf(rdev,
2669 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
2670 NET_NAME_USER, type, err ? NULL : &flags,
2672 if (WARN_ON(!wdev)) {
2675 } else if (IS_ERR(wdev)) {
2677 return PTR_ERR(wdev);
2680 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
2681 wdev->owner_nlportid = info->snd_portid;
2684 case NL80211_IFTYPE_MESH_POINT:
2685 if (!info->attrs[NL80211_ATTR_MESH_ID])
2688 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
2689 IEEE80211_MAX_MESH_ID_LEN);
2690 wdev->mesh_id_up_len =
2691 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
2692 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
2693 wdev->mesh_id_up_len);
2696 case NL80211_IFTYPE_P2P_DEVICE:
2698 * P2P Device doesn't have a netdev, so doesn't go
2699 * through the netdev notifier and must be added here
2701 mutex_init(&wdev->mtx);
2702 INIT_LIST_HEAD(&wdev->event_list);
2703 spin_lock_init(&wdev->event_lock);
2704 INIT_LIST_HEAD(&wdev->mgmt_registrations);
2705 spin_lock_init(&wdev->mgmt_registrations_lock);
2707 wdev->identifier = ++rdev->wdev_id;
2708 list_add_rcu(&wdev->list, &rdev->wdev_list);
2709 rdev->devlist_generation++;
2715 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2716 rdev, wdev, false) < 0) {
2721 event = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2723 if (nl80211_send_iface(event, 0, 0, 0,
2724 rdev, wdev, false) < 0) {
2729 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
2730 event, 0, NL80211_MCGRP_CONFIG,
2735 return genlmsg_reply(msg, info);
2738 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
2740 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2741 struct wireless_dev *wdev = info->user_ptr[1];
2742 struct sk_buff *msg;
2745 if (!rdev->ops->del_virtual_intf)
2748 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2749 if (msg && nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, true) < 0) {
2755 * If we remove a wireless device without a netdev then clear
2756 * user_ptr[1] so that nl80211_post_doit won't dereference it
2757 * to check if it needs to do dev_put(). Otherwise it crashes
2758 * since the wdev has been freed, unlike with a netdev where
2759 * we need the dev_put() for the netdev to really be freed.
2762 info->user_ptr[1] = NULL;
2764 status = rdev_del_virtual_intf(rdev, wdev);
2765 if (status >= 0 && msg)
2766 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
2767 msg, 0, NL80211_MCGRP_CONFIG,
2775 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
2777 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2778 struct net_device *dev = info->user_ptr[1];
2781 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
2784 if (!rdev->ops->set_noack_map)
2787 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
2789 return rdev_set_noack_map(rdev, dev, noack_map);
2792 struct get_key_cookie {
2793 struct sk_buff *msg;
2798 static void get_key_callback(void *c, struct key_params *params)
2801 struct get_key_cookie *cookie = c;
2804 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
2805 params->key_len, params->key)) ||
2807 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
2808 params->seq_len, params->seq)) ||
2810 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
2812 goto nla_put_failure;
2814 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
2816 goto nla_put_failure;
2819 nla_put(cookie->msg, NL80211_KEY_DATA,
2820 params->key_len, params->key)) ||
2822 nla_put(cookie->msg, NL80211_KEY_SEQ,
2823 params->seq_len, params->seq)) ||
2825 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
2827 goto nla_put_failure;
2829 if (nla_put_u8(cookie->msg, NL80211_ATTR_KEY_IDX, cookie->idx))
2830 goto nla_put_failure;
2832 nla_nest_end(cookie->msg, key);
2839 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
2841 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2843 struct net_device *dev = info->user_ptr[1];
2845 const u8 *mac_addr = NULL;
2847 struct get_key_cookie cookie = {
2851 struct sk_buff *msg;
2853 if (info->attrs[NL80211_ATTR_KEY_IDX])
2854 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
2859 if (info->attrs[NL80211_ATTR_MAC])
2860 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
2862 pairwise = !!mac_addr;
2863 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
2864 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
2865 if (kt >= NUM_NL80211_KEYTYPES)
2867 if (kt != NL80211_KEYTYPE_GROUP &&
2868 kt != NL80211_KEYTYPE_PAIRWISE)
2870 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
2873 if (!rdev->ops->get_key)
2876 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
2879 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2883 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
2884 NL80211_CMD_NEW_KEY);
2886 goto nla_put_failure;
2889 cookie.idx = key_idx;
2891 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2892 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
2893 goto nla_put_failure;
2895 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
2896 goto nla_put_failure;
2898 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
2905 goto nla_put_failure;
2907 genlmsg_end(msg, hdr);
2908 return genlmsg_reply(msg, info);
2917 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
2919 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2920 struct key_parse key;
2922 struct net_device *dev = info->user_ptr[1];
2924 err = nl80211_parse_key(info, &key);
2931 /* only support setting default key */
2932 if (!key.def && !key.defmgmt)
2935 wdev_lock(dev->ieee80211_ptr);
2938 if (!rdev->ops->set_default_key) {
2943 err = nl80211_key_allowed(dev->ieee80211_ptr);
2947 err = rdev_set_default_key(rdev, dev, key.idx,
2948 key.def_uni, key.def_multi);
2953 #ifdef CONFIG_CFG80211_WEXT
2954 dev->ieee80211_ptr->wext.default_key = key.idx;
2957 if (key.def_uni || !key.def_multi) {
2962 if (!rdev->ops->set_default_mgmt_key) {
2967 err = nl80211_key_allowed(dev->ieee80211_ptr);
2971 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
2975 #ifdef CONFIG_CFG80211_WEXT
2976 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
2981 wdev_unlock(dev->ieee80211_ptr);
2986 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
2988 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2990 struct net_device *dev = info->user_ptr[1];
2991 struct key_parse key;
2992 const u8 *mac_addr = NULL;
2994 err = nl80211_parse_key(info, &key);
3001 if (info->attrs[NL80211_ATTR_MAC])
3002 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3004 if (key.type == -1) {
3006 key.type = NL80211_KEYTYPE_PAIRWISE;
3008 key.type = NL80211_KEYTYPE_GROUP;
3012 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3013 key.type != NL80211_KEYTYPE_GROUP)
3016 if (!rdev->ops->add_key)
3019 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3020 key.type == NL80211_KEYTYPE_PAIRWISE,
3024 wdev_lock(dev->ieee80211_ptr);
3025 err = nl80211_key_allowed(dev->ieee80211_ptr);
3027 err = rdev_add_key(rdev, dev, key.idx,
3028 key.type == NL80211_KEYTYPE_PAIRWISE,
3030 wdev_unlock(dev->ieee80211_ptr);
3035 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3037 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3039 struct net_device *dev = info->user_ptr[1];
3040 u8 *mac_addr = NULL;
3041 struct key_parse key;
3043 err = nl80211_parse_key(info, &key);
3047 if (info->attrs[NL80211_ATTR_MAC])
3048 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3050 if (key.type == -1) {
3052 key.type = NL80211_KEYTYPE_PAIRWISE;
3054 key.type = NL80211_KEYTYPE_GROUP;
3058 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3059 key.type != NL80211_KEYTYPE_GROUP)
3062 if (!rdev->ops->del_key)
3065 wdev_lock(dev->ieee80211_ptr);
3066 err = nl80211_key_allowed(dev->ieee80211_ptr);
3068 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
3069 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3073 err = rdev_del_key(rdev, dev, key.idx,
3074 key.type == NL80211_KEYTYPE_PAIRWISE,
3077 #ifdef CONFIG_CFG80211_WEXT
3079 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3080 dev->ieee80211_ptr->wext.default_key = -1;
3081 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3082 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3085 wdev_unlock(dev->ieee80211_ptr);
3090 /* This function returns an error or the number of nested attributes */
3091 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3093 struct nlattr *attr;
3094 int n_entries = 0, tmp;
3096 nla_for_each_nested(attr, nl_attr, tmp) {
3097 if (nla_len(attr) != ETH_ALEN)
3107 * This function parses ACL information and allocates memory for ACL data.
3108 * On successful return, the calling function is responsible to free the
3109 * ACL buffer returned by this function.
3111 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3112 struct genl_info *info)
3114 enum nl80211_acl_policy acl_policy;
3115 struct nlattr *attr;
3116 struct cfg80211_acl_data *acl;
3117 int i = 0, n_entries, tmp;
3119 if (!wiphy->max_acl_mac_addrs)
3120 return ERR_PTR(-EOPNOTSUPP);
3122 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3123 return ERR_PTR(-EINVAL);
3125 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3126 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3127 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3128 return ERR_PTR(-EINVAL);
3130 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3131 return ERR_PTR(-EINVAL);
3133 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3135 return ERR_PTR(n_entries);
3137 if (n_entries > wiphy->max_acl_mac_addrs)
3138 return ERR_PTR(-ENOTSUPP);
3140 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
3143 return ERR_PTR(-ENOMEM);
3145 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3146 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3150 acl->n_acl_entries = n_entries;
3151 acl->acl_policy = acl_policy;
3156 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3158 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3159 struct net_device *dev = info->user_ptr[1];
3160 struct cfg80211_acl_data *acl;
3163 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3164 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3167 if (!dev->ieee80211_ptr->beacon_interval)
3170 acl = parse_acl_data(&rdev->wiphy, info);
3172 return PTR_ERR(acl);
3174 err = rdev_set_mac_acl(rdev, dev, acl);
3181 static int nl80211_parse_beacon(struct nlattr *attrs[],
3182 struct cfg80211_beacon_data *bcn)
3184 bool haveinfo = false;
3186 if (!is_valid_ie_attr(attrs[NL80211_ATTR_BEACON_TAIL]) ||
3187 !is_valid_ie_attr(attrs[NL80211_ATTR_IE]) ||
3188 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_PROBE_RESP]) ||
3189 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_ASSOC_RESP]))
3192 memset(bcn, 0, sizeof(*bcn));
3194 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
3195 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
3196 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
3202 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
3203 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
3204 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
3211 if (attrs[NL80211_ATTR_IE]) {
3212 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
3213 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
3216 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
3217 bcn->proberesp_ies =
3218 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3219 bcn->proberesp_ies_len =
3220 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
3223 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
3224 bcn->assocresp_ies =
3225 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3226 bcn->assocresp_ies_len =
3227 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
3230 if (attrs[NL80211_ATTR_PROBE_RESP]) {
3231 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
3232 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
3238 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
3239 struct cfg80211_ap_settings *params)
3241 struct wireless_dev *wdev;
3244 list_for_each_entry(wdev, &rdev->wdev_list, list) {
3245 if (wdev->iftype != NL80211_IFTYPE_AP &&
3246 wdev->iftype != NL80211_IFTYPE_P2P_GO)
3249 if (!wdev->preset_chandef.chan)
3252 params->chandef = wdev->preset_chandef;
3260 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
3261 enum nl80211_auth_type auth_type,
3262 enum nl80211_commands cmd)
3264 if (auth_type > NL80211_AUTHTYPE_MAX)
3268 case NL80211_CMD_AUTHENTICATE:
3269 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
3270 auth_type == NL80211_AUTHTYPE_SAE)
3273 case NL80211_CMD_CONNECT:
3274 case NL80211_CMD_START_AP:
3275 /* SAE not supported yet */
3276 if (auth_type == NL80211_AUTHTYPE_SAE)
3284 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
3286 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3287 struct net_device *dev = info->user_ptr[1];
3288 struct wireless_dev *wdev = dev->ieee80211_ptr;
3289 struct cfg80211_ap_settings params;
3292 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3293 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3296 if (!rdev->ops->start_ap)
3299 if (wdev->beacon_interval)
3302 memset(¶ms, 0, sizeof(params));
3304 /* these are required for START_AP */
3305 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
3306 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
3307 !info->attrs[NL80211_ATTR_BEACON_HEAD])
3310 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon);
3314 params.beacon_interval =
3315 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
3316 params.dtim_period =
3317 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
3319 err = cfg80211_validate_beacon_int(rdev, params.beacon_interval);
3324 * In theory, some of these attributes should be required here
3325 * but since they were not used when the command was originally
3326 * added, keep them optional for old user space programs to let
3327 * them continue to work with drivers that do not need the
3328 * additional information -- drivers must check!
3330 if (info->attrs[NL80211_ATTR_SSID]) {
3331 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
3333 nla_len(info->attrs[NL80211_ATTR_SSID]);
3334 if (params.ssid_len == 0 ||
3335 params.ssid_len > IEEE80211_MAX_SSID_LEN)
3339 if (info->attrs[NL80211_ATTR_HIDDEN_SSID]) {
3340 params.hidden_ssid = nla_get_u32(
3341 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
3342 if (params.hidden_ssid != NL80211_HIDDEN_SSID_NOT_IN_USE &&
3343 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_LEN &&
3344 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_CONTENTS)
3348 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
3350 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
3351 params.auth_type = nla_get_u32(
3352 info->attrs[NL80211_ATTR_AUTH_TYPE]);
3353 if (!nl80211_valid_auth_type(rdev, params.auth_type,
3354 NL80211_CMD_START_AP))
3357 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
3359 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
3360 NL80211_MAX_NR_CIPHER_SUITES);
3364 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
3365 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
3367 params.inactivity_timeout = nla_get_u16(
3368 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
3371 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
3372 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3374 params.p2p_ctwindow =
3375 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
3376 if (params.p2p_ctwindow > 127)
3378 if (params.p2p_ctwindow != 0 &&
3379 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
3383 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
3386 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3388 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
3391 params.p2p_opp_ps = tmp;
3392 if (params.p2p_opp_ps != 0 &&
3393 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
3397 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
3398 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
3401 } else if (wdev->preset_chandef.chan) {
3402 params.chandef = wdev->preset_chandef;
3403 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
3406 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef,
3410 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
3411 params.acl = parse_acl_data(&rdev->wiphy, info);
3412 if (IS_ERR(params.acl))
3413 return PTR_ERR(params.acl);
3416 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
3418 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
3419 switch (params.smps_mode) {
3420 case NL80211_SMPS_OFF:
3422 case NL80211_SMPS_STATIC:
3423 if (!(rdev->wiphy.features &
3424 NL80211_FEATURE_STATIC_SMPS))
3427 case NL80211_SMPS_DYNAMIC:
3428 if (!(rdev->wiphy.features &
3429 NL80211_FEATURE_DYNAMIC_SMPS))
3436 params.smps_mode = NL80211_SMPS_OFF;
3440 err = rdev_start_ap(rdev, dev, ¶ms);
3442 wdev->preset_chandef = params.chandef;
3443 wdev->beacon_interval = params.beacon_interval;
3444 wdev->chandef = params.chandef;
3445 wdev->ssid_len = params.ssid_len;
3446 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
3455 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
3457 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3458 struct net_device *dev = info->user_ptr[1];
3459 struct wireless_dev *wdev = dev->ieee80211_ptr;
3460 struct cfg80211_beacon_data params;
3463 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3464 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3467 if (!rdev->ops->change_beacon)
3470 if (!wdev->beacon_interval)
3473 err = nl80211_parse_beacon(info->attrs, ¶ms);
3478 err = rdev_change_beacon(rdev, dev, ¶ms);
3484 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
3486 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3487 struct net_device *dev = info->user_ptr[1];
3489 return cfg80211_stop_ap(rdev, dev, false);
3492 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
3493 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
3494 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
3495 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
3496 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
3497 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
3498 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
3501 static int parse_station_flags(struct genl_info *info,
3502 enum nl80211_iftype iftype,
3503 struct station_parameters *params)
3505 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
3510 * Try parsing the new attribute first so userspace
3511 * can specify both for older kernels.
3513 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
3515 struct nl80211_sta_flag_update *sta_flags;
3517 sta_flags = nla_data(nla);
3518 params->sta_flags_mask = sta_flags->mask;
3519 params->sta_flags_set = sta_flags->set;
3520 params->sta_flags_set &= params->sta_flags_mask;
3521 if ((params->sta_flags_mask |
3522 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
3527 /* if present, parse the old attribute */
3529 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
3533 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX,
3534 nla, sta_flags_policy))
3538 * Only allow certain flags for interface types so that
3539 * other attributes are silently ignored. Remember that
3540 * this is backward compatibility code with old userspace
3541 * and shouldn't be hit in other cases anyway.
3544 case NL80211_IFTYPE_AP:
3545 case NL80211_IFTYPE_AP_VLAN:
3546 case NL80211_IFTYPE_P2P_GO:
3547 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3548 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
3549 BIT(NL80211_STA_FLAG_WME) |
3550 BIT(NL80211_STA_FLAG_MFP);
3552 case NL80211_IFTYPE_P2P_CLIENT:
3553 case NL80211_IFTYPE_STATION:
3554 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
3555 BIT(NL80211_STA_FLAG_TDLS_PEER);
3557 case NL80211_IFTYPE_MESH_POINT:
3558 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3559 BIT(NL80211_STA_FLAG_MFP) |
3560 BIT(NL80211_STA_FLAG_AUTHORIZED);
3565 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
3567 params->sta_flags_set |= (1<<flag);
3569 /* no longer support new API additions in old API */
3570 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
3578 static bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info,
3581 struct nlattr *rate;
3584 enum nl80211_attrs rate_flg;
3586 rate = nla_nest_start(msg, attr);
3590 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
3591 bitrate = cfg80211_calculate_bitrate(info);
3592 /* report 16-bit bitrate only if we can */
3593 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
3595 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
3597 if (bitrate_compat > 0 &&
3598 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
3602 case RATE_INFO_BW_5:
3603 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
3605 case RATE_INFO_BW_10:
3606 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
3611 case RATE_INFO_BW_20:
3614 case RATE_INFO_BW_40:
3615 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
3617 case RATE_INFO_BW_80:
3618 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
3620 case RATE_INFO_BW_160:
3621 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
3625 if (rate_flg && nla_put_flag(msg, rate_flg))
3628 if (info->flags & RATE_INFO_FLAGS_MCS) {
3629 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
3631 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3632 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3634 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
3635 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
3637 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
3639 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
3640 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
3644 nla_nest_end(msg, rate);
3648 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
3657 attr = nla_nest_start(msg, id);
3661 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
3662 if (!(mask & BIT(i)))
3665 if (nla_put_u8(msg, i, signal[i]))
3669 nla_nest_end(msg, attr);
3674 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
3676 struct cfg80211_registered_device *rdev,
3677 struct net_device *dev,
3678 const u8 *mac_addr, struct station_info *sinfo)
3681 struct nlattr *sinfoattr, *bss_param;
3683 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
3687 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3688 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
3689 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
3690 goto nla_put_failure;
3692 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
3694 goto nla_put_failure;
3696 #define PUT_SINFO(attr, memb, type) do { \
3697 if (sinfo->filled & BIT(NL80211_STA_INFO_ ## attr) && \
3698 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
3700 goto nla_put_failure; \
3703 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
3704 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
3706 if (sinfo->filled & (BIT(NL80211_STA_INFO_RX_BYTES) |
3707 BIT(NL80211_STA_INFO_RX_BYTES64)) &&
3708 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
3709 (u32)sinfo->rx_bytes))
3710 goto nla_put_failure;
3712 if (sinfo->filled & (BIT(NL80211_STA_INFO_TX_BYTES) |
3713 BIT(NL80211_STA_INFO_TX_BYTES64)) &&
3714 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
3715 (u32)sinfo->tx_bytes))
3716 goto nla_put_failure;
3718 PUT_SINFO(RX_BYTES64, rx_bytes, u64);
3719 PUT_SINFO(TX_BYTES64, tx_bytes, u64);
3720 PUT_SINFO(LLID, llid, u16);
3721 PUT_SINFO(PLID, plid, u16);
3722 PUT_SINFO(PLINK_STATE, plink_state, u8);
3724 switch (rdev->wiphy.signal_type) {
3725 case CFG80211_SIGNAL_TYPE_MBM:
3726 PUT_SINFO(SIGNAL, signal, u8);
3727 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
3732 if (sinfo->filled & BIT(NL80211_STA_INFO_CHAIN_SIGNAL)) {
3733 if (!nl80211_put_signal(msg, sinfo->chains,
3734 sinfo->chain_signal,
3735 NL80211_STA_INFO_CHAIN_SIGNAL))
3736 goto nla_put_failure;
3738 if (sinfo->filled & BIT(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
3739 if (!nl80211_put_signal(msg, sinfo->chains,
3740 sinfo->chain_signal_avg,
3741 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
3742 goto nla_put_failure;
3744 if (sinfo->filled & BIT(NL80211_STA_INFO_TX_BITRATE)) {
3745 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
3746 NL80211_STA_INFO_TX_BITRATE))
3747 goto nla_put_failure;
3749 if (sinfo->filled & BIT(NL80211_STA_INFO_RX_BITRATE)) {
3750 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
3751 NL80211_STA_INFO_RX_BITRATE))
3752 goto nla_put_failure;
3755 PUT_SINFO(RX_PACKETS, rx_packets, u32);
3756 PUT_SINFO(TX_PACKETS, tx_packets, u32);
3757 PUT_SINFO(TX_RETRIES, tx_retries, u32);
3758 PUT_SINFO(TX_FAILED, tx_failed, u32);
3759 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
3760 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
3761 PUT_SINFO(LOCAL_PM, local_pm, u32);
3762 PUT_SINFO(PEER_PM, peer_pm, u32);
3763 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
3765 if (sinfo->filled & BIT(NL80211_STA_INFO_BSS_PARAM)) {
3766 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
3768 goto nla_put_failure;
3770 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
3771 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
3772 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
3773 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
3774 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
3775 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
3776 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
3777 sinfo->bss_param.dtim_period) ||
3778 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
3779 sinfo->bss_param.beacon_interval))
3780 goto nla_put_failure;
3782 nla_nest_end(msg, bss_param);
3784 if ((sinfo->filled & BIT(NL80211_STA_INFO_STA_FLAGS)) &&
3785 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
3786 sizeof(struct nl80211_sta_flag_update),
3788 goto nla_put_failure;
3790 PUT_SINFO(T_OFFSET, t_offset, u64);
3791 PUT_SINFO(RX_DROP_MISC, rx_dropped_misc, u64);
3792 PUT_SINFO(BEACON_RX, rx_beacon, u64);
3793 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
3797 if (sinfo->filled & BIT(NL80211_STA_INFO_TID_STATS)) {
3798 struct nlattr *tidsattr;
3801 tidsattr = nla_nest_start(msg, NL80211_STA_INFO_TID_STATS);
3803 goto nla_put_failure;
3805 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
3806 struct cfg80211_tid_stats *tidstats;
3807 struct nlattr *tidattr;
3809 tidstats = &sinfo->pertid[tid];
3811 if (!tidstats->filled)
3814 tidattr = nla_nest_start(msg, tid + 1);
3816 goto nla_put_failure;
3818 #define PUT_TIDVAL(attr, memb, type) do { \
3819 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
3820 nla_put_ ## type(msg, NL80211_TID_STATS_ ## attr, \
3822 goto nla_put_failure; \
3825 PUT_TIDVAL(RX_MSDU, rx_msdu, u64);
3826 PUT_TIDVAL(TX_MSDU, tx_msdu, u64);
3827 PUT_TIDVAL(TX_MSDU_RETRIES, tx_msdu_retries, u64);
3828 PUT_TIDVAL(TX_MSDU_FAILED, tx_msdu_failed, u64);
3831 nla_nest_end(msg, tidattr);
3834 nla_nest_end(msg, tidsattr);
3837 nla_nest_end(msg, sinfoattr);
3839 if (sinfo->assoc_req_ies_len &&
3840 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
3841 sinfo->assoc_req_ies))
3842 goto nla_put_failure;
3844 genlmsg_end(msg, hdr);
3848 genlmsg_cancel(msg, hdr);
3852 static int nl80211_dump_station(struct sk_buff *skb,
3853 struct netlink_callback *cb)
3855 struct station_info sinfo;
3856 struct cfg80211_registered_device *rdev;
3857 struct wireless_dev *wdev;
3858 u8 mac_addr[ETH_ALEN];
3859 int sta_idx = cb->args[2];
3862 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
3866 if (!wdev->netdev) {
3871 if (!rdev->ops->dump_station) {
3877 memset(&sinfo, 0, sizeof(sinfo));
3878 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
3885 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
3886 NETLINK_CB(cb->skb).portid,
3887 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3888 rdev, wdev->netdev, mac_addr,
3897 cb->args[2] = sta_idx;
3900 nl80211_finish_wdev_dump(rdev);
3905 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
3907 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3908 struct net_device *dev = info->user_ptr[1];
3909 struct station_info sinfo;
3910 struct sk_buff *msg;
3911 u8 *mac_addr = NULL;
3914 memset(&sinfo, 0, sizeof(sinfo));
3916 if (!info->attrs[NL80211_ATTR_MAC])
3919 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3921 if (!rdev->ops->get_station)
3924 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
3928 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3932 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
3933 info->snd_portid, info->snd_seq, 0,
3934 rdev, dev, mac_addr, &sinfo) < 0) {
3939 return genlmsg_reply(msg, info);
3942 int cfg80211_check_station_change(struct wiphy *wiphy,
3943 struct station_parameters *params,
3944 enum cfg80211_station_type statype)
3946 if (params->listen_interval != -1)
3949 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
3952 /* When you run into this, adjust the code below for the new flag */
3953 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
3956 case CFG80211_STA_MESH_PEER_KERNEL:
3957 case CFG80211_STA_MESH_PEER_USER:
3959 * No ignoring the TDLS flag here -- the userspace mesh
3960 * code doesn't have the bug of including TDLS in the
3963 if (params->sta_flags_mask &
3964 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
3965 BIT(NL80211_STA_FLAG_MFP) |
3966 BIT(NL80211_STA_FLAG_AUTHORIZED)))
3969 case CFG80211_STA_TDLS_PEER_SETUP:
3970 case CFG80211_STA_TDLS_PEER_ACTIVE:
3971 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
3973 /* ignore since it can't change */
3974 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3977 /* disallow mesh-specific things */
3978 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
3980 if (params->local_pm)
3982 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
3986 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
3987 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
3988 /* TDLS can't be set, ... */
3989 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
3992 * ... but don't bother the driver with it. This works around
3993 * a hostapd/wpa_supplicant issue -- it always includes the
3994 * TLDS_PEER flag in the mask even for AP mode.
3996 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
3999 if (statype != CFG80211_STA_TDLS_PEER_SETUP) {
4000 /* reject other things that can't change */
4001 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
4003 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
4005 if (params->supported_rates)
4007 if (params->ext_capab || params->ht_capa || params->vht_capa)
4011 if (statype != CFG80211_STA_AP_CLIENT) {
4017 case CFG80211_STA_AP_MLME_CLIENT:
4018 /* Use this only for authorizing/unauthorizing a station */
4019 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
4022 case CFG80211_STA_AP_CLIENT:
4023 /* accept only the listed bits */
4024 if (params->sta_flags_mask &
4025 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
4026 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4027 BIT(NL80211_STA_FLAG_ASSOCIATED) |
4028 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4029 BIT(NL80211_STA_FLAG_WME) |
4030 BIT(NL80211_STA_FLAG_MFP)))
4033 /* but authenticated/associated only if driver handles it */
4034 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4035 params->sta_flags_mask &
4036 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4037 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4040 case CFG80211_STA_IBSS:
4041 case CFG80211_STA_AP_STA:
4042 /* reject any changes other than AUTHORIZED */
4043 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
4046 case CFG80211_STA_TDLS_PEER_SETUP:
4047 /* reject any changes other than AUTHORIZED or WME */
4048 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
4049 BIT(NL80211_STA_FLAG_WME)))
4051 /* force (at least) rates when authorizing */
4052 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
4053 !params->supported_rates)
4056 case CFG80211_STA_TDLS_PEER_ACTIVE:
4057 /* reject any changes */
4059 case CFG80211_STA_MESH_PEER_KERNEL:
4060 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
4063 case CFG80211_STA_MESH_PEER_USER:
4064 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
4065 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
4072 EXPORT_SYMBOL(cfg80211_check_station_change);
4075 * Get vlan interface making sure it is running and on the right wiphy.
4077 static struct net_device *get_vlan(struct genl_info *info,
4078 struct cfg80211_registered_device *rdev)
4080 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
4081 struct net_device *v;
4087 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
4089 return ERR_PTR(-ENODEV);
4091 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
4096 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
4097 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4098 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
4103 if (!netif_running(v)) {
4111 return ERR_PTR(ret);
4114 static const struct nla_policy
4115 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
4116 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
4117 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
4120 static int nl80211_parse_sta_wme(struct genl_info *info,
4121 struct station_parameters *params)
4123 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
4127 /* parse WME attributes if present */
4128 if (!info->attrs[NL80211_ATTR_STA_WME])
4131 nla = info->attrs[NL80211_ATTR_STA_WME];
4132 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
4133 nl80211_sta_wme_policy);
4137 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
4138 params->uapsd_queues = nla_get_u8(
4139 tb[NL80211_STA_WME_UAPSD_QUEUES]);
4140 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
4143 if (tb[NL80211_STA_WME_MAX_SP])
4144 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
4146 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
4149 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
4154 static int nl80211_parse_sta_channel_info(struct genl_info *info,
4155 struct station_parameters *params)
4157 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
4158 params->supported_channels =
4159 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
4160 params->supported_channels_len =
4161 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
4163 * Need to include at least one (first channel, number of
4164 * channels) tuple for each subband, and must have proper
4165 * tuples for the rest of the data as well.
4167 if (params->supported_channels_len < 2)
4169 if (params->supported_channels_len % 2)
4173 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
4174 params->supported_oper_classes =
4175 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
4176 params->supported_oper_classes_len =
4177 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
4179 * The value of the Length field of the Supported Operating
4180 * Classes element is between 2 and 253.
4182 if (params->supported_oper_classes_len < 2 ||
4183 params->supported_oper_classes_len > 253)
4189 static int nl80211_set_station_tdls(struct genl_info *info,
4190 struct station_parameters *params)
4193 /* Dummy STA entry gets updated once the peer capabilities are known */
4194 if (info->attrs[NL80211_ATTR_PEER_AID])
4195 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4196 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4198 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4199 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4201 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4203 err = nl80211_parse_sta_channel_info(info, params);
4207 return nl80211_parse_sta_wme(info, params);
4210 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
4212 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4213 struct net_device *dev = info->user_ptr[1];
4214 struct station_parameters params;
4218 memset(¶ms, 0, sizeof(params));
4220 params.listen_interval = -1;
4222 if (!rdev->ops->change_station)
4225 if (info->attrs[NL80211_ATTR_STA_AID])
4228 if (!info->attrs[NL80211_ATTR_MAC])
4231 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4233 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
4234 params.supported_rates =
4235 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4236 params.supported_rates_len =
4237 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4240 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4242 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4243 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4246 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4248 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4249 params.ext_capab_len =
4250 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4253 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4256 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4259 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4260 params.plink_action =
4261 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4262 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4266 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
4267 params.plink_state =
4268 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
4269 if (params.plink_state >= NUM_NL80211_PLINK_STATES)
4271 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
4274 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]) {
4275 enum nl80211_mesh_power_mode pm = nla_get_u32(
4276 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
4278 if (pm <= NL80211_MESH_POWER_UNKNOWN ||
4279 pm > NL80211_MESH_POWER_MAX)
4282 params.local_pm = pm;
4285 /* Include parameters for TDLS peer (will check later) */
4286 err = nl80211_set_station_tdls(info, ¶ms);
4290 params.vlan = get_vlan(info, rdev);
4291 if (IS_ERR(params.vlan))
4292 return PTR_ERR(params.vlan);
4294 switch (dev->ieee80211_ptr->iftype) {
4295 case NL80211_IFTYPE_AP:
4296 case NL80211_IFTYPE_AP_VLAN:
4297 case NL80211_IFTYPE_P2P_GO:
4298 case NL80211_IFTYPE_P2P_CLIENT:
4299 case NL80211_IFTYPE_STATION:
4300 case NL80211_IFTYPE_ADHOC:
4301 case NL80211_IFTYPE_MESH_POINT:
4308 /* driver will call cfg80211_check_station_change() */
4309 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
4313 dev_put(params.vlan);
4318 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
4320 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4322 struct net_device *dev = info->user_ptr[1];
4323 struct station_parameters params;
4324 u8 *mac_addr = NULL;
4326 memset(¶ms, 0, sizeof(params));
4328 if (!rdev->ops->add_station)
4331 if (!info->attrs[NL80211_ATTR_MAC])
4334 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
4337 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
4340 if (!info->attrs[NL80211_ATTR_STA_AID] &&
4341 !info->attrs[NL80211_ATTR_PEER_AID])
4344 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4345 params.supported_rates =
4346 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4347 params.supported_rates_len =
4348 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
4349 params.listen_interval =
4350 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
4352 if (info->attrs[NL80211_ATTR_PEER_AID])
4353 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
4355 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
4356 if (!params.aid || params.aid > IEEE80211_MAX_AID)
4359 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
4361 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
4362 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
4365 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
4367 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4368 params.ext_capab_len =
4369 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
4372 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
4374 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
4376 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
4378 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
4380 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
4381 params.opmode_notif_used = true;
4382 params.opmode_notif =
4383 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
4386 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
4387 params.plink_action =
4388 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
4389 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
4393 err = nl80211_parse_sta_channel_info(info, ¶ms);
4397 err = nl80211_parse_sta_wme(info, ¶ms);
4401 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
4404 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
4405 * as userspace might just pass through the capabilities from the IEs
4406 * directly, rather than enforcing this restriction and returning an
4407 * error in this case.
4409 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
4410 params.ht_capa = NULL;
4411 params.vht_capa = NULL;
4414 /* When you run into this, adjust the code below for the new flag */
4415 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
4417 switch (dev->ieee80211_ptr->iftype) {
4418 case NL80211_IFTYPE_AP:
4419 case NL80211_IFTYPE_AP_VLAN:
4420 case NL80211_IFTYPE_P2P_GO:
4421 /* ignore WME attributes if iface/sta is not capable */
4422 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
4423 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
4424 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4426 /* TDLS peers cannot be added */
4427 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4428 info->attrs[NL80211_ATTR_PEER_AID])
4430 /* but don't bother the driver with it */
4431 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
4433 /* allow authenticated/associated only if driver handles it */
4434 if (!(rdev->wiphy.features &
4435 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4436 params.sta_flags_mask &
4437 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4438 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4441 /* must be last in here for error handling */
4442 params.vlan = get_vlan(info, rdev);
4443 if (IS_ERR(params.vlan))
4444 return PTR_ERR(params.vlan);
4446 case NL80211_IFTYPE_MESH_POINT:
4447 /* ignore uAPSD data */
4448 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4450 /* associated is disallowed */
4451 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
4453 /* TDLS peers cannot be added */
4454 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
4455 info->attrs[NL80211_ATTR_PEER_AID])
4458 case NL80211_IFTYPE_STATION:
4459 case NL80211_IFTYPE_P2P_CLIENT:
4460 /* ignore uAPSD data */
4461 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
4463 /* these are disallowed */
4464 if (params.sta_flags_mask &
4465 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
4466 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
4468 /* Only TDLS peers can be added */
4469 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
4471 /* Can only add if TDLS ... */
4472 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
4474 /* ... with external setup is supported */
4475 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
4478 * Older wpa_supplicant versions always mark the TDLS peer
4479 * as authorized, but it shouldn't yet be.
4481 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
4487 /* be aware of params.vlan when changing code here */
4489 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
4492 dev_put(params.vlan);
4496 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
4498 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4499 struct net_device *dev = info->user_ptr[1];
4500 struct station_del_parameters params;
4502 memset(¶ms, 0, sizeof(params));
4504 if (info->attrs[NL80211_ATTR_MAC])
4505 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
4507 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4508 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
4509 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
4510 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4513 if (!rdev->ops->del_station)
4516 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
4518 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
4519 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
4520 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
4523 /* Default to Deauthentication frame */
4524 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
4527 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
4528 params.reason_code =
4529 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
4530 if (params.reason_code == 0)
4531 return -EINVAL; /* 0 is reserved */
4533 /* Default to reason code 2 */
4534 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
4537 return rdev_del_station(rdev, dev, ¶ms);
4540 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
4541 int flags, struct net_device *dev,
4542 u8 *dst, u8 *next_hop,
4543 struct mpath_info *pinfo)
4546 struct nlattr *pinfoattr;
4548 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
4552 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4553 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
4554 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
4555 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
4556 goto nla_put_failure;
4558 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
4560 goto nla_put_failure;
4561 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
4562 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
4564 goto nla_put_failure;
4565 if (((pinfo->filled & MPATH_INFO_SN) &&
4566 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
4567 ((pinfo->filled & MPATH_INFO_METRIC) &&
4568 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
4570 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
4571 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
4573 ((pinfo->filled & MPATH_INFO_FLAGS) &&
4574 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
4576 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
4577 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
4578 pinfo->discovery_timeout)) ||
4579 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
4580 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
4581 pinfo->discovery_retries)))
4582 goto nla_put_failure;
4584 nla_nest_end(msg, pinfoattr);
4586 genlmsg_end(msg, hdr);
4590 genlmsg_cancel(msg, hdr);
4594 static int nl80211_dump_mpath(struct sk_buff *skb,
4595 struct netlink_callback *cb)
4597 struct mpath_info pinfo;
4598 struct cfg80211_registered_device *rdev;
4599 struct wireless_dev *wdev;
4601 u8 next_hop[ETH_ALEN];
4602 int path_idx = cb->args[2];
4605 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
4609 if (!rdev->ops->dump_mpath) {
4614 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
4620 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
4627 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
4628 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4629 wdev->netdev, dst, next_hop,
4638 cb->args[2] = path_idx;
4641 nl80211_finish_wdev_dump(rdev);
4645 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
4647 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4649 struct net_device *dev = info->user_ptr[1];
4650 struct mpath_info pinfo;
4651 struct sk_buff *msg;
4653 u8 next_hop[ETH_ALEN];
4655 memset(&pinfo, 0, sizeof(pinfo));
4657 if (!info->attrs[NL80211_ATTR_MAC])
4660 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4662 if (!rdev->ops->get_mpath)
4665 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4668 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
4672 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4676 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
4677 dev, dst, next_hop, &pinfo) < 0) {
4682 return genlmsg_reply(msg, info);
4685 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
4687 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4688 struct net_device *dev = info->user_ptr[1];
4690 u8 *next_hop = NULL;
4692 if (!info->attrs[NL80211_ATTR_MAC])
4695 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4698 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4699 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4701 if (!rdev->ops->change_mpath)
4704 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4707 return rdev_change_mpath(rdev, dev, dst, next_hop);
4710 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
4712 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4713 struct net_device *dev = info->user_ptr[1];
4715 u8 *next_hop = NULL;
4717 if (!info->attrs[NL80211_ATTR_MAC])
4720 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
4723 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4724 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
4726 if (!rdev->ops->add_mpath)
4729 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4732 return rdev_add_mpath(rdev, dev, dst, next_hop);
4735 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
4737 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4738 struct net_device *dev = info->user_ptr[1];
4741 if (info->attrs[NL80211_ATTR_MAC])
4742 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4744 if (!rdev->ops->del_mpath)
4747 return rdev_del_mpath(rdev, dev, dst);
4750 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
4752 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4754 struct net_device *dev = info->user_ptr[1];
4755 struct mpath_info pinfo;
4756 struct sk_buff *msg;
4760 memset(&pinfo, 0, sizeof(pinfo));
4762 if (!info->attrs[NL80211_ATTR_MAC])
4765 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
4767 if (!rdev->ops->get_mpp)
4770 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
4773 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
4777 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4781 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
4782 dev, dst, mpp, &pinfo) < 0) {
4787 return genlmsg_reply(msg, info);
4790 static int nl80211_dump_mpp(struct sk_buff *skb,
4791 struct netlink_callback *cb)
4793 struct mpath_info pinfo;
4794 struct cfg80211_registered_device *rdev;
4795 struct wireless_dev *wdev;
4798 int path_idx = cb->args[2];
4801 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
4805 if (!rdev->ops->dump_mpp) {
4810 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
4816 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
4823 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
4824 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4825 wdev->netdev, dst, mpp,
4833 cb->args[2] = path_idx;
4836 nl80211_finish_wdev_dump(rdev);
4840 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
4842 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4843 struct net_device *dev = info->user_ptr[1];
4844 struct wireless_dev *wdev = dev->ieee80211_ptr;
4845 struct bss_parameters params;
4848 memset(¶ms, 0, sizeof(params));
4849 /* default to not changing parameters */
4850 params.use_cts_prot = -1;
4851 params.use_short_preamble = -1;
4852 params.use_short_slot_time = -1;
4853 params.ap_isolate = -1;
4854 params.ht_opmode = -1;
4855 params.p2p_ctwindow = -1;
4856 params.p2p_opp_ps = -1;
4858 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
4859 params.use_cts_prot =
4860 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
4861 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
4862 params.use_short_preamble =
4863 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
4864 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
4865 params.use_short_slot_time =
4866 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
4867 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
4868 params.basic_rates =
4869 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4870 params.basic_rates_len =
4871 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
4873 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
4874 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
4875 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
4877 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
4879 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4880 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4882 params.p2p_ctwindow =
4883 nla_get_s8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4884 if (params.p2p_ctwindow < 0)
4886 if (params.p2p_ctwindow != 0 &&
4887 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4891 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4894 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4896 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4899 params.p2p_opp_ps = tmp;
4900 if (params.p2p_opp_ps &&
4901 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4905 if (!rdev->ops->change_bss)
4908 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4909 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4913 err = rdev_change_bss(rdev, dev, ¶ms);
4919 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
4920 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
4921 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
4922 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
4923 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
4924 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
4925 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
4926 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
4929 static int parse_reg_rule(struct nlattr *tb[],
4930 struct ieee80211_reg_rule *reg_rule)
4932 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
4933 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
4935 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
4937 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
4939 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
4941 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
4943 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
4946 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
4948 freq_range->start_freq_khz =
4949 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
4950 freq_range->end_freq_khz =
4951 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
4952 freq_range->max_bandwidth_khz =
4953 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
4955 power_rule->max_eirp =
4956 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
4958 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
4959 power_rule->max_antenna_gain =
4960 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
4962 if (tb[NL80211_ATTR_DFS_CAC_TIME])
4963 reg_rule->dfs_cac_ms =
4964 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
4969 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
4973 enum nl80211_user_reg_hint_type user_reg_hint_type;
4978 * You should only get this when cfg80211 hasn't yet initialized
4979 * completely when built-in to the kernel right between the time
4980 * window between nl80211_init() and regulatory_init(), if that is
4983 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
4984 return -EINPROGRESS;
4986 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
4987 user_reg_hint_type =
4988 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
4990 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
4992 switch (user_reg_hint_type) {
4993 case NL80211_USER_REG_HINT_USER:
4994 case NL80211_USER_REG_HINT_CELL_BASE:
4995 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
4998 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
4999 return regulatory_hint_user(data, user_reg_hint_type);
5000 case NL80211_USER_REG_HINT_INDOOR:
5001 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
5002 owner_nlportid = info->snd_portid;
5003 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
5009 return regulatory_hint_indoor(is_indoor, owner_nlportid);
5015 static int nl80211_get_mesh_config(struct sk_buff *skb,
5016 struct genl_info *info)
5018 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5019 struct net_device *dev = info->user_ptr[1];
5020 struct wireless_dev *wdev = dev->ieee80211_ptr;
5021 struct mesh_config cur_params;
5024 struct nlattr *pinfoattr;
5025 struct sk_buff *msg;
5027 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
5030 if (!rdev->ops->get_mesh_config)
5034 /* If not connected, get default parameters */
5035 if (!wdev->mesh_id_len)
5036 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
5038 err = rdev_get_mesh_config(rdev, dev, &cur_params);
5044 /* Draw up a netlink message to send back */
5045 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5048 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
5049 NL80211_CMD_GET_MESH_CONFIG);
5052 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
5054 goto nla_put_failure;
5055 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5056 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
5057 cur_params.dot11MeshRetryTimeout) ||
5058 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
5059 cur_params.dot11MeshConfirmTimeout) ||
5060 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
5061 cur_params.dot11MeshHoldingTimeout) ||
5062 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
5063 cur_params.dot11MeshMaxPeerLinks) ||
5064 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
5065 cur_params.dot11MeshMaxRetries) ||
5066 nla_put_u8(msg, NL80211_MESHCONF_TTL,
5067 cur_params.dot11MeshTTL) ||
5068 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
5069 cur_params.element_ttl) ||
5070 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
5071 cur_params.auto_open_plinks) ||
5072 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
5073 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
5074 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
5075 cur_params.dot11MeshHWMPmaxPREQretries) ||
5076 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
5077 cur_params.path_refresh_time) ||
5078 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
5079 cur_params.min_discovery_timeout) ||
5080 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
5081 cur_params.dot11MeshHWMPactivePathTimeout) ||
5082 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
5083 cur_params.dot11MeshHWMPpreqMinInterval) ||
5084 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
5085 cur_params.dot11MeshHWMPperrMinInterval) ||
5086 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
5087 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
5088 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
5089 cur_params.dot11MeshHWMPRootMode) ||
5090 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
5091 cur_params.dot11MeshHWMPRannInterval) ||
5092 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
5093 cur_params.dot11MeshGateAnnouncementProtocol) ||
5094 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
5095 cur_params.dot11MeshForwarding) ||
5096 nla_put_u32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
5097 cur_params.rssi_threshold) ||
5098 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
5099 cur_params.ht_opmode) ||
5100 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
5101 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
5102 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
5103 cur_params.dot11MeshHWMProotInterval) ||
5104 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
5105 cur_params.dot11MeshHWMPconfirmationInterval) ||
5106 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
5107 cur_params.power_mode) ||
5108 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
5109 cur_params.dot11MeshAwakeWindowDuration) ||
5110 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
5111 cur_params.plink_timeout))
5112 goto nla_put_failure;
5113 nla_nest_end(msg, pinfoattr);
5114 genlmsg_end(msg, hdr);
5115 return genlmsg_reply(msg, info);
5118 genlmsg_cancel(msg, hdr);
5124 static const struct nla_policy nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
5125 [NL80211_MESHCONF_RETRY_TIMEOUT] = { .type = NLA_U16 },
5126 [NL80211_MESHCONF_CONFIRM_TIMEOUT] = { .type = NLA_U16 },
5127 [NL80211_MESHCONF_HOLDING_TIMEOUT] = { .type = NLA_U16 },
5128 [NL80211_MESHCONF_MAX_PEER_LINKS] = { .type = NLA_U16 },
5129 [NL80211_MESHCONF_MAX_RETRIES] = { .type = NLA_U8 },
5130 [NL80211_MESHCONF_TTL] = { .type = NLA_U8 },
5131 [NL80211_MESHCONF_ELEMENT_TTL] = { .type = NLA_U8 },
5132 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = { .type = NLA_U8 },
5133 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] = { .type = NLA_U32 },
5134 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
5135 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
5136 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = { .type = NLA_U16 },
5137 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
5138 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] = { .type = NLA_U16 },
5139 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] = { .type = NLA_U16 },
5140 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] = { .type = NLA_U16 },
5141 [NL80211_MESHCONF_HWMP_ROOTMODE] = { .type = NLA_U8 },
5142 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] = { .type = NLA_U16 },
5143 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = { .type = NLA_U8 },
5144 [NL80211_MESHCONF_FORWARDING] = { .type = NLA_U8 },
5145 [NL80211_MESHCONF_RSSI_THRESHOLD] = { .type = NLA_U32 },
5146 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
5147 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
5148 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] = { .type = NLA_U16 },
5149 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] = { .type = NLA_U16 },
5150 [NL80211_MESHCONF_POWER_MODE] = { .type = NLA_U32 },
5151 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
5152 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
5155 static const struct nla_policy
5156 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
5157 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
5158 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
5159 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
5160 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
5161 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
5162 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
5163 [NL80211_MESH_SETUP_IE] = { .type = NLA_BINARY,
5164 .len = IEEE80211_MAX_DATA_LEN },
5165 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
5168 static int nl80211_parse_mesh_config(struct genl_info *info,
5169 struct mesh_config *cfg,
5172 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
5175 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, min, max, mask, attr, fn) \
5178 if (fn(tb[attr]) < min || fn(tb[attr]) > max) \
5180 cfg->param = fn(tb[attr]); \
5181 mask |= (1 << (attr - 1)); \
5186 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
5188 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
5189 info->attrs[NL80211_ATTR_MESH_CONFIG],
5190 nl80211_meshconf_params_policy))
5193 /* This makes sure that there aren't more than 32 mesh config
5194 * parameters (otherwise our bitfield scheme would not work.) */
5195 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
5197 /* Fill in the params struct */
5198 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, 1, 255,
5199 mask, NL80211_MESHCONF_RETRY_TIMEOUT,
5201 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, 1, 255,
5202 mask, NL80211_MESHCONF_CONFIRM_TIMEOUT,
5204 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, 1, 255,
5205 mask, NL80211_MESHCONF_HOLDING_TIMEOUT,
5207 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, 0, 255,
5208 mask, NL80211_MESHCONF_MAX_PEER_LINKS,
5210 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, 0, 16,
5211 mask, NL80211_MESHCONF_MAX_RETRIES,
5213 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, 1, 255,
5214 mask, NL80211_MESHCONF_TTL, nla_get_u8);
5215 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, 1, 255,
5216 mask, NL80211_MESHCONF_ELEMENT_TTL,
5218 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, 0, 1,
5219 mask, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
5221 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
5223 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
5225 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, 0, 255,
5226 mask, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
5228 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, 1, 65535,
5229 mask, NL80211_MESHCONF_PATH_REFRESH_TIME,
5231 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, 1, 65535,
5232 mask, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
5234 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
5236 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
5238 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval,
5240 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
5242 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval,
5244 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
5246 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
5247 dot11MeshHWMPnetDiameterTraversalTime,
5249 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
5251 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, 0, 4,
5252 mask, NL80211_MESHCONF_HWMP_ROOTMODE,
5254 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, 1, 65535,
5255 mask, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
5257 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
5258 dot11MeshGateAnnouncementProtocol, 0, 1,
5259 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
5261 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, 0, 1,
5262 mask, NL80211_MESHCONF_FORWARDING,
5264 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, -255, 0,
5265 mask, NL80211_MESHCONF_RSSI_THRESHOLD,
5267 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, ht_opmode, 0, 16,
5268 mask, NL80211_MESHCONF_HT_OPMODE,
5270 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathToRootTimeout,
5272 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
5274 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, 1, 65535,
5275 mask, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
5277 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
5278 dot11MeshHWMPconfirmationInterval,
5280 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
5282 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode,
5283 NL80211_MESH_POWER_ACTIVE,
5284 NL80211_MESH_POWER_MAX,
5285 mask, NL80211_MESHCONF_POWER_MODE,
5287 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration,
5289 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
5290 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, 0, 0xffffffff,
5291 mask, NL80211_MESHCONF_PLINK_TIMEOUT,
5298 #undef FILL_IN_MESH_PARAM_IF_SET
5301 static int nl80211_parse_mesh_setup(struct genl_info *info,
5302 struct mesh_setup *setup)
5304 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5305 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
5307 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
5309 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
5310 info->attrs[NL80211_ATTR_MESH_SETUP],
5311 nl80211_mesh_setup_params_policy))
5314 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
5315 setup->sync_method =
5316 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
5317 IEEE80211_SYNC_METHOD_VENDOR :
5318 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
5320 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
5321 setup->path_sel_proto =
5322 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
5323 IEEE80211_PATH_PROTOCOL_VENDOR :
5324 IEEE80211_PATH_PROTOCOL_HWMP;
5326 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
5327 setup->path_metric =
5328 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
5329 IEEE80211_PATH_METRIC_VENDOR :
5330 IEEE80211_PATH_METRIC_AIRTIME;
5333 if (tb[NL80211_MESH_SETUP_IE]) {
5334 struct nlattr *ieattr =
5335 tb[NL80211_MESH_SETUP_IE];
5336 if (!is_valid_ie_attr(ieattr))
5338 setup->ie = nla_data(ieattr);
5339 setup->ie_len = nla_len(ieattr);
5341 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
5342 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
5344 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
5345 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
5346 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
5347 if (setup->is_secure)
5348 setup->user_mpm = true;
5350 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
5351 if (!setup->user_mpm)
5354 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
5360 static int nl80211_update_mesh_config(struct sk_buff *skb,
5361 struct genl_info *info)
5363 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5364 struct net_device *dev = info->user_ptr[1];
5365 struct wireless_dev *wdev = dev->ieee80211_ptr;
5366 struct mesh_config cfg;
5370 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
5373 if (!rdev->ops->update_mesh_config)
5376 err = nl80211_parse_mesh_config(info, &cfg, &mask);
5381 if (!wdev->mesh_id_len)
5385 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
5392 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
5393 struct sk_buff *msg)
5395 struct nlattr *nl_reg_rules;
5398 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
5399 (regdom->dfs_region &&
5400 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
5401 goto nla_put_failure;
5403 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
5405 goto nla_put_failure;
5407 for (i = 0; i < regdom->n_reg_rules; i++) {
5408 struct nlattr *nl_reg_rule;
5409 const struct ieee80211_reg_rule *reg_rule;
5410 const struct ieee80211_freq_range *freq_range;
5411 const struct ieee80211_power_rule *power_rule;
5412 unsigned int max_bandwidth_khz;
5414 reg_rule = ®dom->reg_rules[i];
5415 freq_range = ®_rule->freq_range;
5416 power_rule = ®_rule->power_rule;
5418 nl_reg_rule = nla_nest_start(msg, i);
5420 goto nla_put_failure;
5422 max_bandwidth_khz = freq_range->max_bandwidth_khz;
5423 if (!max_bandwidth_khz)
5424 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
5427 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
5429 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
5430 freq_range->start_freq_khz) ||
5431 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
5432 freq_range->end_freq_khz) ||
5433 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
5434 max_bandwidth_khz) ||
5435 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
5436 power_rule->max_antenna_gain) ||
5437 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
5438 power_rule->max_eirp) ||
5439 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
5440 reg_rule->dfs_cac_ms))
5441 goto nla_put_failure;
5443 nla_nest_end(msg, nl_reg_rule);
5446 nla_nest_end(msg, nl_reg_rules);
5453 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
5455 const struct ieee80211_regdomain *regdom = NULL;
5456 struct cfg80211_registered_device *rdev;
5457 struct wiphy *wiphy = NULL;
5458 struct sk_buff *msg;
5461 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5465 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
5466 NL80211_CMD_GET_REG);
5470 if (info->attrs[NL80211_ATTR_WIPHY]) {
5473 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
5476 return PTR_ERR(rdev);
5479 wiphy = &rdev->wiphy;
5480 self_managed = wiphy->regulatory_flags &
5481 REGULATORY_WIPHY_SELF_MANAGED;
5482 regdom = get_wiphy_regdom(wiphy);
5484 /* a self-managed-reg device must have a private regdom */
5485 if (WARN_ON(!regdom && self_managed)) {
5491 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
5492 goto nla_put_failure;
5495 if (!wiphy && reg_last_request_cell_base() &&
5496 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
5497 NL80211_USER_REG_HINT_CELL_BASE))
5498 goto nla_put_failure;
5503 regdom = rcu_dereference(cfg80211_regdomain);
5505 if (nl80211_put_regdom(regdom, msg))
5506 goto nla_put_failure_rcu;
5510 genlmsg_end(msg, hdr);
5511 return genlmsg_reply(msg, info);
5513 nla_put_failure_rcu:
5516 genlmsg_cancel(msg, hdr);
5522 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
5523 u32 seq, int flags, struct wiphy *wiphy,
5524 const struct ieee80211_regdomain *regdom)
5526 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
5527 NL80211_CMD_GET_REG);
5532 genl_dump_check_consistent(cb, hdr, &nl80211_fam);
5534 if (nl80211_put_regdom(regdom, msg))
5535 goto nla_put_failure;
5537 if (!wiphy && reg_last_request_cell_base() &&
5538 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
5539 NL80211_USER_REG_HINT_CELL_BASE))
5540 goto nla_put_failure;
5543 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
5544 goto nla_put_failure;
5546 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
5547 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
5548 goto nla_put_failure;
5550 genlmsg_end(msg, hdr);
5554 genlmsg_cancel(msg, hdr);
5558 static int nl80211_get_reg_dump(struct sk_buff *skb,
5559 struct netlink_callback *cb)
5561 const struct ieee80211_regdomain *regdom = NULL;
5562 struct cfg80211_registered_device *rdev;
5563 int err, reg_idx, start = cb->args[2];
5567 if (cfg80211_regdomain && start == 0) {
5568 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
5570 rtnl_dereference(cfg80211_regdomain));
5575 /* the global regdom is idx 0 */
5577 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
5578 regdom = get_wiphy_regdom(&rdev->wiphy);
5582 if (++reg_idx <= start)
5585 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
5586 NLM_F_MULTI, &rdev->wiphy, regdom);
5593 cb->args[2] = reg_idx;
5600 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
5602 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
5603 struct nlattr *nl_reg_rule;
5605 int rem_reg_rules, r;
5606 u32 num_rules = 0, rule_idx = 0, size_of_regd;
5607 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
5608 struct ieee80211_regdomain *rd;
5610 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
5613 if (!info->attrs[NL80211_ATTR_REG_RULES])
5616 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
5618 if (info->attrs[NL80211_ATTR_DFS_REGION])
5619 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
5621 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5624 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
5628 if (!reg_is_valid_request(alpha2))
5631 size_of_regd = sizeof(struct ieee80211_regdomain) +
5632 num_rules * sizeof(struct ieee80211_reg_rule);
5634 rd = kzalloc(size_of_regd, GFP_KERNEL);
5638 rd->n_reg_rules = num_rules;
5639 rd->alpha2[0] = alpha2[0];
5640 rd->alpha2[1] = alpha2[1];
5643 * Disable DFS master mode if the DFS region was
5644 * not supported or known on this kernel.
5646 if (reg_supported_dfs_region(dfs_region))
5647 rd->dfs_region = dfs_region;
5649 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
5651 r = nla_parse(tb, NL80211_REG_RULE_ATTR_MAX,
5652 nla_data(nl_reg_rule), nla_len(nl_reg_rule),
5656 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
5662 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
5668 r = set_regdom(rd, REGD_SOURCE_CRDA);
5669 /* set_regdom took ownership */
5677 static int validate_scan_freqs(struct nlattr *freqs)
5679 struct nlattr *attr1, *attr2;
5680 int n_channels = 0, tmp1, tmp2;
5682 nla_for_each_nested(attr1, freqs, tmp1) {
5685 * Some hardware has a limited channel list for
5686 * scanning, and it is pretty much nonsensical
5687 * to scan for a channel twice, so disallow that
5688 * and don't require drivers to check that the
5689 * channel list they get isn't longer than what
5690 * they can scan, as long as they can scan all
5691 * the channels they registered at once.
5693 nla_for_each_nested(attr2, freqs, tmp2)
5694 if (attr1 != attr2 &&
5695 nla_get_u32(attr1) == nla_get_u32(attr2))
5702 static int nl80211_parse_random_mac(struct nlattr **attrs,
5703 u8 *mac_addr, u8 *mac_addr_mask)
5707 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
5708 eth_zero_addr(mac_addr);
5709 eth_zero_addr(mac_addr_mask);
5711 mac_addr_mask[0] = 0x3;
5716 /* need both or none */
5717 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
5720 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
5721 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
5723 /* don't allow or configure an mcast address */
5724 if (!is_multicast_ether_addr(mac_addr_mask) ||
5725 is_multicast_ether_addr(mac_addr))
5729 * allow users to pass a MAC address that has bits set outside
5730 * of the mask, but don't bother drivers with having to deal
5733 for (i = 0; i < ETH_ALEN; i++)
5734 mac_addr[i] &= mac_addr_mask[i];
5739 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
5741 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5742 struct wireless_dev *wdev = info->user_ptr[1];
5743 struct cfg80211_scan_request *request;
5744 struct nlattr *attr;
5745 struct wiphy *wiphy;
5746 int err, tmp, n_ssids = 0, n_channels, i;
5749 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
5752 wiphy = &rdev->wiphy;
5754 if (!rdev->ops->scan)
5757 if (rdev->scan_req || rdev->scan_msg) {
5762 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5763 n_channels = validate_scan_freqs(
5764 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5770 n_channels = ieee80211_get_num_supported_channels(wiphy);
5773 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
5774 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
5777 if (n_ssids > wiphy->max_scan_ssids) {
5782 if (info->attrs[NL80211_ATTR_IE])
5783 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5787 if (ie_len > wiphy->max_scan_ie_len) {
5792 request = kzalloc(sizeof(*request)
5793 + sizeof(*request->ssids) * n_ssids
5794 + sizeof(*request->channels) * n_channels
5795 + ie_len, GFP_KERNEL);
5802 request->ssids = (void *)&request->channels[n_channels];
5803 request->n_ssids = n_ssids;
5806 request->ie = (void *)(request->ssids + n_ssids);
5808 request->ie = (void *)(request->channels + n_channels);
5812 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5813 /* user specified, bail out if channel not found */
5814 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
5815 struct ieee80211_channel *chan;
5817 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
5824 /* ignore disabled channels */
5825 if (chan->flags & IEEE80211_CHAN_DISABLED)
5828 request->channels[i] = chan;
5832 enum ieee80211_band band;
5835 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
5837 if (!wiphy->bands[band])
5839 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
5840 struct ieee80211_channel *chan;
5842 chan = &wiphy->bands[band]->channels[j];
5844 if (chan->flags & IEEE80211_CHAN_DISABLED)
5847 request->channels[i] = chan;
5858 request->n_channels = i;
5862 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
5863 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
5867 request->ssids[i].ssid_len = nla_len(attr);
5868 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
5873 if (info->attrs[NL80211_ATTR_IE]) {
5874 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
5875 memcpy((void *)request->ie,
5876 nla_data(info->attrs[NL80211_ATTR_IE]),
5880 for (i = 0; i < IEEE80211_NUM_BANDS; i++)
5881 if (wiphy->bands[i])
5883 (1 << wiphy->bands[i]->n_bitrates) - 1;
5885 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
5886 nla_for_each_nested(attr,
5887 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
5889 enum ieee80211_band band = nla_type(attr);
5891 if (band < 0 || band >= IEEE80211_NUM_BANDS) {
5896 if (!wiphy->bands[band])
5899 err = ieee80211_get_ratemask(wiphy->bands[band],
5902 &request->rates[band]);
5908 if (info->attrs[NL80211_ATTR_SCAN_FLAGS]) {
5909 request->flags = nla_get_u32(
5910 info->attrs[NL80211_ATTR_SCAN_FLAGS]);
5911 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
5912 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
5917 if (request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
5918 if (!(wiphy->features &
5919 NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR)) {
5924 if (wdev->current_bss) {
5929 err = nl80211_parse_random_mac(info->attrs,
5931 request->mac_addr_mask);
5938 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
5940 request->wdev = wdev;
5941 request->wiphy = &rdev->wiphy;
5942 request->scan_start = jiffies;
5944 rdev->scan_req = request;
5945 err = rdev_scan(rdev, request);
5948 nl80211_send_scan_start(rdev, wdev);
5950 dev_hold(wdev->netdev);
5953 rdev->scan_req = NULL;
5961 static struct cfg80211_sched_scan_request *
5962 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
5963 struct nlattr **attrs)
5965 struct cfg80211_sched_scan_request *request;
5966 struct nlattr *attr;
5967 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i;
5969 enum ieee80211_band band;
5971 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
5972 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
5974 if (!is_valid_ie_attr(attrs[NL80211_ATTR_IE]))
5975 return ERR_PTR(-EINVAL);
5977 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
5978 return ERR_PTR(-EINVAL);
5980 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
5982 return ERR_PTR(-EINVAL);
5984 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
5985 n_channels = validate_scan_freqs(
5986 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
5988 return ERR_PTR(-EINVAL);
5990 n_channels = ieee80211_get_num_supported_channels(wiphy);
5993 if (attrs[NL80211_ATTR_SCAN_SSIDS])
5994 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
5998 if (n_ssids > wiphy->max_sched_scan_ssids)
5999 return ERR_PTR(-EINVAL);
6002 * First, count the number of 'real' matchsets. Due to an issue with
6003 * the old implementation, matchsets containing only the RSSI attribute
6004 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
6005 * RSSI for all matchsets, rather than their own matchset for reporting
6006 * all APs with a strong RSSI. This is needed to be compatible with
6007 * older userspace that treated a matchset with only the RSSI as the
6008 * global RSSI for all other matchsets - if there are other matchsets.
6010 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
6011 nla_for_each_nested(attr,
6012 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
6014 struct nlattr *rssi;
6016 err = nla_parse(tb, NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
6017 nla_data(attr), nla_len(attr),
6018 nl80211_match_policy);
6020 return ERR_PTR(err);
6021 /* add other standalone attributes here */
6022 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID]) {
6026 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
6028 default_match_rssi = nla_get_s32(rssi);
6032 /* However, if there's no other matchset, add the RSSI one */
6033 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
6036 if (n_match_sets > wiphy->max_match_sets)
6037 return ERR_PTR(-EINVAL);
6039 if (attrs[NL80211_ATTR_IE])
6040 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
6044 if (ie_len > wiphy->max_sched_scan_ie_len)
6045 return ERR_PTR(-EINVAL);
6047 request = kzalloc(sizeof(*request)
6048 + sizeof(*request->ssids) * n_ssids
6049 + sizeof(*request->match_sets) * n_match_sets
6050 + sizeof(*request->channels) * n_channels
6051 + ie_len, GFP_KERNEL);
6053 return ERR_PTR(-ENOMEM);
6056 request->ssids = (void *)&request->channels[n_channels];
6057 request->n_ssids = n_ssids;
6060 request->ie = (void *)(request->ssids + n_ssids);
6062 request->ie = (void *)(request->channels + n_channels);
6067 request->match_sets = (void *)(request->ie + ie_len);
6069 request->match_sets =
6070 (void *)(request->ssids + n_ssids);
6072 request->match_sets =
6073 (void *)(request->channels + n_channels);
6075 request->n_match_sets = n_match_sets;
6078 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
6079 /* user specified, bail out if channel not found */
6080 nla_for_each_nested(attr,
6081 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
6083 struct ieee80211_channel *chan;
6085 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
6092 /* ignore disabled channels */
6093 if (chan->flags & IEEE80211_CHAN_DISABLED)
6096 request->channels[i] = chan;
6101 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
6103 if (!wiphy->bands[band])
6105 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
6106 struct ieee80211_channel *chan;
6108 chan = &wiphy->bands[band]->channels[j];
6110 if (chan->flags & IEEE80211_CHAN_DISABLED)
6113 request->channels[i] = chan;
6124 request->n_channels = i;
6128 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
6130 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
6134 request->ssids[i].ssid_len = nla_len(attr);
6135 memcpy(request->ssids[i].ssid, nla_data(attr),
6142 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
6143 nla_for_each_nested(attr,
6144 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
6146 struct nlattr *ssid, *rssi;
6148 err = nla_parse(tb, NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
6149 nla_data(attr), nla_len(attr),
6150 nl80211_match_policy);
6153 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
6155 if (WARN_ON(i >= n_match_sets)) {
6156 /* this indicates a programming error,
6157 * the loop above should have verified
6164 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
6168 memcpy(request->match_sets[i].ssid.ssid,
6169 nla_data(ssid), nla_len(ssid));
6170 request->match_sets[i].ssid.ssid_len =
6172 /* special attribute - old implemenation w/a */
6173 request->match_sets[i].rssi_thold =
6175 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
6177 request->match_sets[i].rssi_thold =
6183 /* there was no other matchset, so the RSSI one is alone */
6184 if (i == 0 && n_match_sets)
6185 request->match_sets[0].rssi_thold = default_match_rssi;
6187 request->min_rssi_thold = INT_MAX;
6188 for (i = 0; i < n_match_sets; i++)
6189 request->min_rssi_thold =
6190 min(request->match_sets[i].rssi_thold,
6191 request->min_rssi_thold);
6193 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
6197 request->ie_len = ie_len;
6198 memcpy((void *)request->ie,
6199 nla_data(attrs[NL80211_ATTR_IE]),
6203 if (attrs[NL80211_ATTR_SCAN_FLAGS]) {
6204 request->flags = nla_get_u32(
6205 attrs[NL80211_ATTR_SCAN_FLAGS]);
6206 if ((request->flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
6207 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) {
6212 if (request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
6213 u32 flg = NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR;
6215 if (!wdev) /* must be net-detect */
6216 flg = NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
6218 if (!(wiphy->features & flg)) {
6223 if (wdev && wdev->current_bss) {
6228 err = nl80211_parse_random_mac(attrs, request->mac_addr,
6229 request->mac_addr_mask);
6235 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
6237 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
6239 request->interval = interval;
6240 request->scan_start = jiffies;
6246 return ERR_PTR(err);
6249 static int nl80211_start_sched_scan(struct sk_buff *skb,
6250 struct genl_info *info)
6252 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6253 struct net_device *dev = info->user_ptr[1];
6254 struct wireless_dev *wdev = dev->ieee80211_ptr;
6255 struct cfg80211_sched_scan_request *sched_scan_req;
6258 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
6259 !rdev->ops->sched_scan_start)
6262 if (rdev->sched_scan_req)
6263 return -EINPROGRESS;
6265 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
6268 err = PTR_ERR_OR_ZERO(sched_scan_req);
6272 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
6276 sched_scan_req->dev = dev;
6277 sched_scan_req->wiphy = &rdev->wiphy;
6279 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
6280 sched_scan_req->owner_nlportid = info->snd_portid;
6282 rcu_assign_pointer(rdev->sched_scan_req, sched_scan_req);
6284 nl80211_send_sched_scan(rdev, dev,
6285 NL80211_CMD_START_SCHED_SCAN);
6289 kfree(sched_scan_req);
6294 static int nl80211_stop_sched_scan(struct sk_buff *skb,
6295 struct genl_info *info)
6297 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6299 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN) ||
6300 !rdev->ops->sched_scan_stop)
6303 return __cfg80211_stop_sched_scan(rdev, false);
6306 static int nl80211_start_radar_detection(struct sk_buff *skb,
6307 struct genl_info *info)
6309 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6310 struct net_device *dev = info->user_ptr[1];
6311 struct wireless_dev *wdev = dev->ieee80211_ptr;
6312 struct cfg80211_chan_def chandef;
6313 enum nl80211_dfs_regions dfs_region;
6314 unsigned int cac_time_ms;
6317 dfs_region = reg_get_dfs_region(wdev->wiphy);
6318 if (dfs_region == NL80211_DFS_UNSET)
6321 err = nl80211_parse_chandef(rdev, info, &chandef);
6325 if (netif_carrier_ok(dev))
6328 if (wdev->cac_started)
6331 err = cfg80211_chandef_dfs_required(wdev->wiphy, &chandef,
6339 if (!cfg80211_chandef_dfs_usable(wdev->wiphy, &chandef))
6342 if (!rdev->ops->start_radar_detection)
6345 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
6346 if (WARN_ON(!cac_time_ms))
6347 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
6349 err = rdev->ops->start_radar_detection(&rdev->wiphy, dev, &chandef,
6352 wdev->chandef = chandef;
6353 wdev->cac_started = true;
6354 wdev->cac_start_time = jiffies;
6355 wdev->cac_time_ms = cac_time_ms;
6360 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
6362 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6363 struct net_device *dev = info->user_ptr[1];
6364 struct wireless_dev *wdev = dev->ieee80211_ptr;
6365 struct cfg80211_csa_settings params;
6366 /* csa_attrs is defined static to avoid waste of stack size - this
6367 * function is called under RTNL lock, so this should not be a problem.
6369 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
6371 bool need_new_beacon = false;
6375 if (!rdev->ops->channel_switch ||
6376 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
6379 switch (dev->ieee80211_ptr->iftype) {
6380 case NL80211_IFTYPE_AP:
6381 case NL80211_IFTYPE_P2P_GO:
6382 need_new_beacon = true;
6384 /* useless if AP is not running */
6385 if (!wdev->beacon_interval)
6388 case NL80211_IFTYPE_ADHOC:
6389 if (!wdev->ssid_len)
6392 case NL80211_IFTYPE_MESH_POINT:
6393 if (!wdev->mesh_id_len)
6400 memset(¶ms, 0, sizeof(params));
6402 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
6403 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
6406 /* only important for AP, IBSS and mesh create IEs internally */
6407 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
6410 /* Even though the attribute is u32, the specification says
6411 * u8, so let's make sure we don't overflow.
6413 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
6417 params.count = cs_count;
6419 if (!need_new_beacon)
6422 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon_after);
6426 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
6427 info->attrs[NL80211_ATTR_CSA_IES],
6432 err = nl80211_parse_beacon(csa_attrs, ¶ms.beacon_csa);
6436 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
6439 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
6440 if (!len || (len % sizeof(u16)))
6443 params.n_counter_offsets_beacon = len / sizeof(u16);
6444 if (rdev->wiphy.max_num_csa_counters &&
6445 (params.n_counter_offsets_beacon >
6446 rdev->wiphy.max_num_csa_counters))
6449 params.counter_offsets_beacon =
6450 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
6452 /* sanity checks - counters should fit and be the same */
6453 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
6454 u16 offset = params.counter_offsets_beacon[i];
6456 if (offset >= params.beacon_csa.tail_len)
6459 if (params.beacon_csa.tail[offset] != params.count)
6463 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
6464 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
6465 if (!len || (len % sizeof(u16)))
6468 params.n_counter_offsets_presp = len / sizeof(u16);
6469 if (rdev->wiphy.max_num_csa_counters &&
6470 (params.n_counter_offsets_beacon >
6471 rdev->wiphy.max_num_csa_counters))
6474 params.counter_offsets_presp =
6475 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
6477 /* sanity checks - counters should fit and be the same */
6478 for (i = 0; i < params.n_counter_offsets_presp; i++) {
6479 u16 offset = params.counter_offsets_presp[i];
6481 if (offset >= params.beacon_csa.probe_resp_len)
6484 if (params.beacon_csa.probe_resp[offset] !=
6491 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
6495 if (!cfg80211_reg_can_beacon(&rdev->wiphy, ¶ms.chandef,
6499 err = cfg80211_chandef_dfs_required(wdev->wiphy,
6506 params.radar_required = true;
6508 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
6509 params.block_tx = true;
6512 err = rdev_channel_switch(rdev, dev, ¶ms);
6518 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
6520 struct cfg80211_registered_device *rdev,
6521 struct wireless_dev *wdev,
6522 struct cfg80211_internal_bss *intbss)
6524 struct cfg80211_bss *res = &intbss->pub;
6525 const struct cfg80211_bss_ies *ies;
6529 ASSERT_WDEV_LOCK(wdev);
6531 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6532 NL80211_CMD_NEW_SCAN_RESULTS);
6536 genl_dump_check_consistent(cb, hdr, &nl80211_fam);
6538 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
6539 goto nla_put_failure;
6541 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
6542 goto nla_put_failure;
6543 if (nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
6544 goto nla_put_failure;
6546 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
6548 goto nla_put_failure;
6549 if ((!is_zero_ether_addr(res->bssid) &&
6550 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
6551 goto nla_put_failure;
6554 /* indicate whether we have probe response data or not */
6555 if (rcu_access_pointer(res->proberesp_ies) &&
6556 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
6557 goto fail_unlock_rcu;
6559 /* this pointer prefers to be pointed to probe response data
6560 * but is always valid
6562 ies = rcu_dereference(res->ies);
6564 if (nla_put_u64(msg, NL80211_BSS_TSF, ies->tsf))
6565 goto fail_unlock_rcu;
6566 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
6567 ies->len, ies->data))
6568 goto fail_unlock_rcu;
6571 /* and this pointer is always (unless driver didn't know) beacon data */
6572 ies = rcu_dereference(res->beacon_ies);
6573 if (ies && ies->from_beacon) {
6574 if (nla_put_u64(msg, NL80211_BSS_BEACON_TSF, ies->tsf))
6575 goto fail_unlock_rcu;
6576 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
6577 ies->len, ies->data))
6578 goto fail_unlock_rcu;
6582 if (res->beacon_interval &&
6583 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
6584 goto nla_put_failure;
6585 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
6586 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
6587 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
6588 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
6589 jiffies_to_msecs(jiffies - intbss->ts)))
6590 goto nla_put_failure;
6592 switch (rdev->wiphy.signal_type) {
6593 case CFG80211_SIGNAL_TYPE_MBM:
6594 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
6595 goto nla_put_failure;
6597 case CFG80211_SIGNAL_TYPE_UNSPEC:
6598 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
6599 goto nla_put_failure;
6605 switch (wdev->iftype) {
6606 case NL80211_IFTYPE_P2P_CLIENT:
6607 case NL80211_IFTYPE_STATION:
6608 if (intbss == wdev->current_bss &&
6609 nla_put_u32(msg, NL80211_BSS_STATUS,
6610 NL80211_BSS_STATUS_ASSOCIATED))
6611 goto nla_put_failure;
6613 case NL80211_IFTYPE_ADHOC:
6614 if (intbss == wdev->current_bss &&
6615 nla_put_u32(msg, NL80211_BSS_STATUS,
6616 NL80211_BSS_STATUS_IBSS_JOINED))
6617 goto nla_put_failure;
6623 nla_nest_end(msg, bss);
6625 genlmsg_end(msg, hdr);
6631 genlmsg_cancel(msg, hdr);
6635 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
6637 struct cfg80211_registered_device *rdev;
6638 struct cfg80211_internal_bss *scan;
6639 struct wireless_dev *wdev;
6640 int start = cb->args[2], idx = 0;
6643 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
6648 spin_lock_bh(&rdev->bss_lock);
6649 cfg80211_bss_expire(rdev);
6651 cb->seq = rdev->bss_generation;
6653 list_for_each_entry(scan, &rdev->bss_list, list) {
6656 if (nl80211_send_bss(skb, cb,
6657 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6658 rdev, wdev, scan) < 0) {
6664 spin_unlock_bh(&rdev->bss_lock);
6668 nl80211_finish_wdev_dump(rdev);
6673 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
6674 int flags, struct net_device *dev,
6675 bool allow_radio_stats,
6676 struct survey_info *survey)
6679 struct nlattr *infoattr;
6681 /* skip radio stats if userspace didn't request them */
6682 if (!survey->channel && !allow_radio_stats)
6685 hdr = nl80211hdr_put(msg, portid, seq, flags,
6686 NL80211_CMD_NEW_SURVEY_RESULTS);
6690 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
6691 goto nla_put_failure;
6693 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
6695 goto nla_put_failure;
6697 if (survey->channel &&
6698 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
6699 survey->channel->center_freq))
6700 goto nla_put_failure;
6702 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
6703 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
6704 goto nla_put_failure;
6705 if ((survey->filled & SURVEY_INFO_IN_USE) &&
6706 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
6707 goto nla_put_failure;
6708 if ((survey->filled & SURVEY_INFO_TIME) &&
6709 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME,
6711 goto nla_put_failure;
6712 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
6713 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_BUSY,
6715 goto nla_put_failure;
6716 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
6717 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
6718 survey->time_ext_busy))
6719 goto nla_put_failure;
6720 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
6721 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_RX,
6723 goto nla_put_failure;
6724 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
6725 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_TX,
6727 goto nla_put_failure;
6728 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
6729 nla_put_u64(msg, NL80211_SURVEY_INFO_TIME_SCAN,
6731 goto nla_put_failure;
6733 nla_nest_end(msg, infoattr);
6735 genlmsg_end(msg, hdr);
6739 genlmsg_cancel(msg, hdr);
6743 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
6745 struct survey_info survey;
6746 struct cfg80211_registered_device *rdev;
6747 struct wireless_dev *wdev;
6748 int survey_idx = cb->args[2];
6752 res = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
6756 /* prepare_wdev_dump parsed the attributes */
6757 radio_stats = nl80211_fam.attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
6759 if (!wdev->netdev) {
6764 if (!rdev->ops->dump_survey) {
6770 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
6776 /* don't send disabled channels, but do send non-channel data */
6777 if (survey.channel &&
6778 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
6783 if (nl80211_send_survey(skb,
6784 NETLINK_CB(cb->skb).portid,
6785 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6786 wdev->netdev, radio_stats, &survey) < 0)
6792 cb->args[2] = survey_idx;
6795 nl80211_finish_wdev_dump(rdev);
6799 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
6801 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
6802 NL80211_WPA_VERSION_2));
6805 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
6807 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6808 struct net_device *dev = info->user_ptr[1];
6809 struct ieee80211_channel *chan;
6810 const u8 *bssid, *ssid, *ie = NULL, *sae_data = NULL;
6811 int err, ssid_len, ie_len = 0, sae_data_len = 0;
6812 enum nl80211_auth_type auth_type;
6813 struct key_parse key;
6814 bool local_state_change;
6816 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
6819 if (!info->attrs[NL80211_ATTR_MAC])
6822 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
6825 if (!info->attrs[NL80211_ATTR_SSID])
6828 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
6831 err = nl80211_parse_key(info, &key);
6836 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
6838 if (!key.p.key || !key.p.key_len)
6840 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
6841 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
6842 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
6843 key.p.key_len != WLAN_KEY_LEN_WEP104))
6855 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
6856 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
6865 if (!rdev->ops->auth)
6868 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
6869 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
6872 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
6873 chan = nl80211_get_valid_chan(&rdev->wiphy,
6874 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
6878 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
6879 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
6881 if (info->attrs[NL80211_ATTR_IE]) {
6882 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
6883 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
6886 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
6887 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
6890 if (auth_type == NL80211_AUTHTYPE_SAE &&
6891 !info->attrs[NL80211_ATTR_SAE_DATA])
6894 if (info->attrs[NL80211_ATTR_SAE_DATA]) {
6895 if (auth_type != NL80211_AUTHTYPE_SAE)
6897 sae_data = nla_data(info->attrs[NL80211_ATTR_SAE_DATA]);
6898 sae_data_len = nla_len(info->attrs[NL80211_ATTR_SAE_DATA]);
6899 /* need to include at least Auth Transaction and Status Code */
6900 if (sae_data_len < 4)
6904 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
6907 * Since we no longer track auth state, ignore
6908 * requests to only change local state.
6910 if (local_state_change)
6913 wdev_lock(dev->ieee80211_ptr);
6914 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
6915 ssid, ssid_len, ie, ie_len,
6916 key.p.key, key.p.key_len, key.idx,
6917 sae_data, sae_data_len);
6918 wdev_unlock(dev->ieee80211_ptr);
6922 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
6923 struct genl_info *info,
6924 struct cfg80211_crypto_settings *settings,
6927 memset(settings, 0, sizeof(*settings));
6929 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
6931 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
6933 proto = nla_get_u16(
6934 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
6935 settings->control_port_ethertype = cpu_to_be16(proto);
6936 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
6939 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
6940 settings->control_port_no_encrypt = true;
6942 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
6944 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
6948 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6949 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
6950 settings->n_ciphers_pairwise = len / sizeof(u32);
6952 if (len % sizeof(u32))
6955 if (settings->n_ciphers_pairwise > cipher_limit)
6958 memcpy(settings->ciphers_pairwise, data, len);
6960 for (i = 0; i < settings->n_ciphers_pairwise; i++)
6961 if (!cfg80211_supported_cipher_suite(
6963 settings->ciphers_pairwise[i]))
6967 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
6968 settings->cipher_group =
6969 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
6970 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
6971 settings->cipher_group))
6975 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
6976 settings->wpa_versions =
6977 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
6978 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
6982 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
6986 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
6987 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
6988 settings->n_akm_suites = len / sizeof(u32);
6990 if (len % sizeof(u32))
6993 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
6996 memcpy(settings->akm_suites, data, len);
7002 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
7004 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7005 struct net_device *dev = info->user_ptr[1];
7006 struct ieee80211_channel *chan;
7007 struct cfg80211_assoc_request req = {};
7008 const u8 *bssid, *ssid;
7009 int err, ssid_len = 0;
7011 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7014 if (!info->attrs[NL80211_ATTR_MAC] ||
7015 !info->attrs[NL80211_ATTR_SSID] ||
7016 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
7019 if (!rdev->ops->assoc)
7022 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7023 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7026 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7028 chan = nl80211_get_valid_chan(&rdev->wiphy,
7029 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
7033 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
7034 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
7036 if (info->attrs[NL80211_ATTR_IE]) {
7037 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7038 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7041 if (info->attrs[NL80211_ATTR_USE_MFP]) {
7042 enum nl80211_mfp mfp =
7043 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
7044 if (mfp == NL80211_MFP_REQUIRED)
7046 else if (mfp != NL80211_MFP_NO)
7050 if (info->attrs[NL80211_ATTR_PREV_BSSID])
7051 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
7053 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
7054 req.flags |= ASSOC_REQ_DISABLE_HT;
7056 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7057 memcpy(&req.ht_capa_mask,
7058 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7059 sizeof(req.ht_capa_mask));
7061 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7062 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7064 memcpy(&req.ht_capa,
7065 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7066 sizeof(req.ht_capa));
7069 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
7070 req.flags |= ASSOC_REQ_DISABLE_VHT;
7072 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7073 memcpy(&req.vht_capa_mask,
7074 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
7075 sizeof(req.vht_capa_mask));
7077 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
7078 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7080 memcpy(&req.vht_capa,
7081 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
7082 sizeof(req.vht_capa));
7085 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
7086 if (!(rdev->wiphy.features &
7087 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) ||
7088 !(rdev->wiphy.features & NL80211_FEATURE_QUIET))
7090 req.flags |= ASSOC_REQ_USE_RRM;
7093 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
7095 wdev_lock(dev->ieee80211_ptr);
7096 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
7097 ssid, ssid_len, &req);
7098 wdev_unlock(dev->ieee80211_ptr);
7104 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
7106 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7107 struct net_device *dev = info->user_ptr[1];
7108 const u8 *ie = NULL, *bssid;
7109 int ie_len = 0, err;
7111 bool local_state_change;
7113 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7116 if (!info->attrs[NL80211_ATTR_MAC])
7119 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7122 if (!rdev->ops->deauth)
7125 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7126 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7129 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7131 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7132 if (reason_code == 0) {
7133 /* Reason Code 0 is reserved */
7137 if (info->attrs[NL80211_ATTR_IE]) {
7138 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7139 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7142 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
7144 wdev_lock(dev->ieee80211_ptr);
7145 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
7146 local_state_change);
7147 wdev_unlock(dev->ieee80211_ptr);
7151 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
7153 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7154 struct net_device *dev = info->user_ptr[1];
7155 const u8 *ie = NULL, *bssid;
7156 int ie_len = 0, err;
7158 bool local_state_change;
7160 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7163 if (!info->attrs[NL80211_ATTR_MAC])
7166 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7169 if (!rdev->ops->disassoc)
7172 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7173 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7176 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7178 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7179 if (reason_code == 0) {
7180 /* Reason Code 0 is reserved */
7184 if (info->attrs[NL80211_ATTR_IE]) {
7185 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7186 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7189 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
7191 wdev_lock(dev->ieee80211_ptr);
7192 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
7193 local_state_change);
7194 wdev_unlock(dev->ieee80211_ptr);
7199 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
7200 int mcast_rate[IEEE80211_NUM_BANDS],
7203 struct wiphy *wiphy = &rdev->wiphy;
7207 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
7208 struct ieee80211_supported_band *sband;
7210 sband = wiphy->bands[band];
7214 for (i = 0; i < sband->n_bitrates; i++) {
7215 if (sband->bitrates[i].bitrate == rateval) {
7216 mcast_rate[band] = i + 1;
7226 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
7228 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7229 struct net_device *dev = info->user_ptr[1];
7230 struct cfg80211_ibss_params ibss;
7231 struct wiphy *wiphy;
7232 struct cfg80211_cached_keys *connkeys = NULL;
7235 memset(&ibss, 0, sizeof(ibss));
7237 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7240 if (!info->attrs[NL80211_ATTR_SSID] ||
7241 !nla_len(info->attrs[NL80211_ATTR_SSID]))
7244 ibss.beacon_interval = 100;
7246 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
7247 ibss.beacon_interval =
7248 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
7249 if (ibss.beacon_interval < 1 || ibss.beacon_interval > 10000)
7253 if (!rdev->ops->join_ibss)
7256 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
7259 wiphy = &rdev->wiphy;
7261 if (info->attrs[NL80211_ATTR_MAC]) {
7262 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7264 if (!is_valid_ether_addr(ibss.bssid))
7267 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
7268 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
7270 if (info->attrs[NL80211_ATTR_IE]) {
7271 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7272 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7275 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
7279 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
7280 NL80211_IFTYPE_ADHOC))
7283 switch (ibss.chandef.width) {
7284 case NL80211_CHAN_WIDTH_5:
7285 case NL80211_CHAN_WIDTH_10:
7286 case NL80211_CHAN_WIDTH_20_NOHT:
7288 case NL80211_CHAN_WIDTH_20:
7289 case NL80211_CHAN_WIDTH_40:
7290 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
7293 case NL80211_CHAN_WIDTH_80:
7294 case NL80211_CHAN_WIDTH_80P80:
7295 case NL80211_CHAN_WIDTH_160:
7296 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
7298 if (!wiphy_ext_feature_isset(&rdev->wiphy,
7299 NL80211_EXT_FEATURE_VHT_IBSS))
7306 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
7307 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
7309 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
7311 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7313 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
7314 struct ieee80211_supported_band *sband =
7315 wiphy->bands[ibss.chandef.chan->band];
7317 err = ieee80211_get_ratemask(sband, rates, n_rates,
7323 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7324 memcpy(&ibss.ht_capa_mask,
7325 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7326 sizeof(ibss.ht_capa_mask));
7328 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7329 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7331 memcpy(&ibss.ht_capa,
7332 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7333 sizeof(ibss.ht_capa));
7336 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
7337 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
7338 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
7341 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
7344 connkeys = nl80211_parse_connkeys(rdev,
7345 info->attrs[NL80211_ATTR_KEYS],
7347 if (IS_ERR(connkeys))
7348 return PTR_ERR(connkeys);
7350 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
7358 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
7360 ibss.userspace_handles_dfs =
7361 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
7363 err = cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
7369 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
7371 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7372 struct net_device *dev = info->user_ptr[1];
7374 if (!rdev->ops->leave_ibss)
7377 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
7380 return cfg80211_leave_ibss(rdev, dev, false);
7383 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
7385 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7386 struct net_device *dev = info->user_ptr[1];
7387 int mcast_rate[IEEE80211_NUM_BANDS];
7391 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
7392 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
7395 if (!rdev->ops->set_mcast_rate)
7398 memset(mcast_rate, 0, sizeof(mcast_rate));
7400 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
7403 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
7404 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
7407 err = rdev->ops->set_mcast_rate(&rdev->wiphy, dev, mcast_rate);
7412 static struct sk_buff *
7413 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
7414 struct wireless_dev *wdev, int approxlen,
7415 u32 portid, u32 seq, enum nl80211_commands cmd,
7416 enum nl80211_attrs attr,
7417 const struct nl80211_vendor_cmd_info *info,
7420 struct sk_buff *skb;
7422 struct nlattr *data;
7424 skb = nlmsg_new(approxlen + 100, gfp);
7428 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
7434 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
7435 goto nla_put_failure;
7438 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
7440 goto nla_put_failure;
7441 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
7443 goto nla_put_failure;
7447 if (nla_put_u64(skb, NL80211_ATTR_WDEV,
7449 goto nla_put_failure;
7451 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
7452 wdev->netdev->ifindex))
7453 goto nla_put_failure;
7456 data = nla_nest_start(skb, attr);
7458 ((void **)skb->cb)[0] = rdev;
7459 ((void **)skb->cb)[1] = hdr;
7460 ((void **)skb->cb)[2] = data;
7469 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
7470 struct wireless_dev *wdev,
7471 enum nl80211_commands cmd,
7472 enum nl80211_attrs attr,
7473 int vendor_event_idx,
7474 int approxlen, gfp_t gfp)
7476 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
7477 const struct nl80211_vendor_cmd_info *info;
7480 case NL80211_CMD_TESTMODE:
7481 if (WARN_ON(vendor_event_idx != -1))
7485 case NL80211_CMD_VENDOR:
7486 if (WARN_ON(vendor_event_idx < 0 ||
7487 vendor_event_idx >= wiphy->n_vendor_events))
7489 info = &wiphy->vendor_events[vendor_event_idx];
7496 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, 0, 0,
7497 cmd, attr, info, gfp);
7499 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
7501 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
7503 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
7504 void *hdr = ((void **)skb->cb)[1];
7505 struct nlattr *data = ((void **)skb->cb)[2];
7506 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
7508 /* clear CB data for netlink core to own from now on */
7509 memset(skb->cb, 0, sizeof(skb->cb));
7511 nla_nest_end(skb, data);
7512 genlmsg_end(skb, hdr);
7514 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
7515 mcgrp = NL80211_MCGRP_VENDOR;
7517 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), skb, 0,
7520 EXPORT_SYMBOL(__cfg80211_send_event_skb);
7522 #ifdef CONFIG_NL80211_TESTMODE
7523 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
7525 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7526 struct wireless_dev *wdev =
7527 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
7530 if (!rdev->ops->testmode_cmd)
7534 err = PTR_ERR(wdev);
7538 } else if (wdev->wiphy != &rdev->wiphy) {
7542 if (!info->attrs[NL80211_ATTR_TESTDATA])
7545 rdev->cur_cmd_info = info;
7546 err = rdev_testmode_cmd(rdev, wdev,
7547 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
7548 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
7549 rdev->cur_cmd_info = NULL;
7554 static int nl80211_testmode_dump(struct sk_buff *skb,
7555 struct netlink_callback *cb)
7557 struct cfg80211_registered_device *rdev;
7567 * 0 is a valid index, but not valid for args[0],
7568 * so we need to offset by 1.
7570 phy_idx = cb->args[0] - 1;
7572 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
7573 nl80211_fam.attrbuf, nl80211_fam.maxattr,
7578 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk),
7579 nl80211_fam.attrbuf);
7581 err = PTR_ERR(rdev);
7584 phy_idx = rdev->wiphy_idx;
7587 if (nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA])
7589 (long)nl80211_fam.attrbuf[NL80211_ATTR_TESTDATA];
7593 data = nla_data((void *)cb->args[1]);
7594 data_len = nla_len((void *)cb->args[1]);
7597 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
7603 if (!rdev->ops->testmode_dump) {
7609 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
7610 cb->nlh->nlmsg_seq, NLM_F_MULTI,
7611 NL80211_CMD_TESTMODE);
7612 struct nlattr *tmdata;
7617 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
7618 genlmsg_cancel(skb, hdr);
7622 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
7624 genlmsg_cancel(skb, hdr);
7627 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
7628 nla_nest_end(skb, tmdata);
7630 if (err == -ENOBUFS || err == -ENOENT) {
7631 genlmsg_cancel(skb, hdr);
7634 genlmsg_cancel(skb, hdr);
7638 genlmsg_end(skb, hdr);
7643 cb->args[0] = phy_idx + 1;
7650 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
7652 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7653 struct net_device *dev = info->user_ptr[1];
7654 struct cfg80211_connect_params connect;
7655 struct wiphy *wiphy;
7656 struct cfg80211_cached_keys *connkeys = NULL;
7659 memset(&connect, 0, sizeof(connect));
7661 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7664 if (!info->attrs[NL80211_ATTR_SSID] ||
7665 !nla_len(info->attrs[NL80211_ATTR_SSID]))
7668 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
7670 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
7671 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
7672 NL80211_CMD_CONNECT))
7675 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
7677 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
7679 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
7680 NL80211_MAX_NR_CIPHER_SUITES);
7684 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7685 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7688 wiphy = &rdev->wiphy;
7690 connect.bg_scan_period = -1;
7691 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
7692 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
7693 connect.bg_scan_period =
7694 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
7697 if (info->attrs[NL80211_ATTR_MAC])
7698 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7699 else if (info->attrs[NL80211_ATTR_MAC_HINT])
7700 connect.bssid_hint =
7701 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
7702 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
7703 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
7705 if (info->attrs[NL80211_ATTR_IE]) {
7706 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
7707 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7710 if (info->attrs[NL80211_ATTR_USE_MFP]) {
7711 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
7712 if (connect.mfp != NL80211_MFP_REQUIRED &&
7713 connect.mfp != NL80211_MFP_NO)
7716 connect.mfp = NL80211_MFP_NO;
7719 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
7720 connect.channel = nl80211_get_valid_chan(
7721 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
7722 if (!connect.channel)
7724 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
7725 connect.channel_hint = nl80211_get_valid_chan(
7726 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
7727 if (!connect.channel_hint)
7731 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
7732 connkeys = nl80211_parse_connkeys(rdev,
7733 info->attrs[NL80211_ATTR_KEYS], NULL);
7734 if (IS_ERR(connkeys))
7735 return PTR_ERR(connkeys);
7738 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
7739 connect.flags |= ASSOC_REQ_DISABLE_HT;
7741 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
7742 memcpy(&connect.ht_capa_mask,
7743 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
7744 sizeof(connect.ht_capa_mask));
7746 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
7747 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
7751 memcpy(&connect.ht_capa,
7752 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
7753 sizeof(connect.ht_capa));
7756 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
7757 connect.flags |= ASSOC_REQ_DISABLE_VHT;
7759 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
7760 memcpy(&connect.vht_capa_mask,
7761 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
7762 sizeof(connect.vht_capa_mask));
7764 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
7765 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
7769 memcpy(&connect.vht_capa,
7770 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
7771 sizeof(connect.vht_capa));
7774 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
7775 if (!(rdev->wiphy.features &
7776 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) ||
7777 !(rdev->wiphy.features & NL80211_FEATURE_QUIET))
7779 connect.flags |= ASSOC_REQ_USE_RRM;
7782 wdev_lock(dev->ieee80211_ptr);
7783 err = cfg80211_connect(rdev, dev, &connect, connkeys, NULL);
7784 wdev_unlock(dev->ieee80211_ptr);
7790 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
7792 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7793 struct net_device *dev = info->user_ptr[1];
7797 if (!info->attrs[NL80211_ATTR_REASON_CODE])
7798 reason = WLAN_REASON_DEAUTH_LEAVING;
7800 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
7805 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7806 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7809 wdev_lock(dev->ieee80211_ptr);
7810 ret = cfg80211_disconnect(rdev, dev, reason, true);
7811 wdev_unlock(dev->ieee80211_ptr);
7815 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
7817 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7821 if (info->attrs[NL80211_ATTR_PID]) {
7822 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
7824 net = get_net_ns_by_pid(pid);
7825 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
7826 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
7828 net = get_net_ns_by_fd(fd);
7834 return PTR_ERR(net);
7838 /* check if anything to do */
7839 if (!net_eq(wiphy_net(&rdev->wiphy), net))
7840 err = cfg80211_switch_netns(rdev, net);
7846 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
7848 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7849 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
7850 struct cfg80211_pmksa *pmksa) = NULL;
7851 struct net_device *dev = info->user_ptr[1];
7852 struct cfg80211_pmksa pmksa;
7854 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
7856 if (!info->attrs[NL80211_ATTR_MAC])
7859 if (!info->attrs[NL80211_ATTR_PMKID])
7862 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
7863 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
7865 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7866 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7869 switch (info->genlhdr->cmd) {
7870 case NL80211_CMD_SET_PMKSA:
7871 rdev_ops = rdev->ops->set_pmksa;
7873 case NL80211_CMD_DEL_PMKSA:
7874 rdev_ops = rdev->ops->del_pmksa;
7884 return rdev_ops(&rdev->wiphy, dev, &pmksa);
7887 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
7889 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7890 struct net_device *dev = info->user_ptr[1];
7892 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
7893 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
7896 if (!rdev->ops->flush_pmksa)
7899 return rdev_flush_pmksa(rdev, dev);
7902 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
7904 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7905 struct net_device *dev = info->user_ptr[1];
7906 u8 action_code, dialog_token;
7907 u32 peer_capability = 0;
7912 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7913 !rdev->ops->tdls_mgmt)
7916 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
7917 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
7918 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
7919 !info->attrs[NL80211_ATTR_IE] ||
7920 !info->attrs[NL80211_ATTR_MAC])
7923 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7924 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
7925 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
7926 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
7927 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
7928 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
7930 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
7932 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
7933 dialog_token, status_code, peer_capability,
7935 nla_data(info->attrs[NL80211_ATTR_IE]),
7936 nla_len(info->attrs[NL80211_ATTR_IE]));
7939 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
7941 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7942 struct net_device *dev = info->user_ptr[1];
7943 enum nl80211_tdls_operation operation;
7946 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
7947 !rdev->ops->tdls_oper)
7950 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
7951 !info->attrs[NL80211_ATTR_MAC])
7954 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
7955 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
7957 return rdev_tdls_oper(rdev, dev, peer, operation);
7960 static int nl80211_remain_on_channel(struct sk_buff *skb,
7961 struct genl_info *info)
7963 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7964 struct wireless_dev *wdev = info->user_ptr[1];
7965 struct cfg80211_chan_def chandef;
7966 struct sk_buff *msg;
7972 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
7973 !info->attrs[NL80211_ATTR_DURATION])
7976 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
7978 if (!rdev->ops->remain_on_channel ||
7979 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
7983 * We should be on that channel for at least a minimum amount of
7984 * time (10ms) but no longer than the driver supports.
7986 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
7987 duration > rdev->wiphy.max_remain_on_channel_duration)
7990 err = nl80211_parse_chandef(rdev, info, &chandef);
7994 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7998 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7999 NL80211_CMD_REMAIN_ON_CHANNEL);
8005 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
8011 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
8012 goto nla_put_failure;
8014 genlmsg_end(msg, hdr);
8016 return genlmsg_reply(msg, info);
8025 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
8026 struct genl_info *info)
8028 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8029 struct wireless_dev *wdev = info->user_ptr[1];
8032 if (!info->attrs[NL80211_ATTR_COOKIE])
8035 if (!rdev->ops->cancel_remain_on_channel)
8038 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8040 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
8043 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
8044 u8 *rates, u8 rates_len)
8049 for (i = 0; i < rates_len; i++) {
8050 int rate = (rates[i] & 0x7f) * 5;
8052 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
8053 struct ieee80211_rate *srate =
8054 &sband->bitrates[ridx];
8055 if (rate == srate->bitrate) {
8060 if (ridx == sband->n_bitrates)
8061 return 0; /* rate not found */
8067 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
8068 u8 *rates, u8 rates_len,
8069 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
8073 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
8075 for (i = 0; i < rates_len; i++) {
8078 ridx = rates[i] / 8;
8079 rbit = BIT(rates[i] % 8);
8081 /* check validity */
8082 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
8085 /* check availability */
8086 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
8095 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
8099 switch (vht_mcs_map) {
8100 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
8102 case IEEE80211_VHT_MCS_SUPPORT_0_7:
8105 case IEEE80211_VHT_MCS_SUPPORT_0_8:
8108 case IEEE80211_VHT_MCS_SUPPORT_0_9:
8118 static void vht_build_mcs_mask(u16 vht_mcs_map,
8119 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
8123 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
8124 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
8129 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
8130 struct nl80211_txrate_vht *txrate,
8131 u16 mcs[NL80211_VHT_NSS_MAX])
8133 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
8134 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
8137 if (!sband->vht_cap.vht_supported)
8140 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
8142 /* Build vht_mcs_mask from VHT capabilities */
8143 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
8145 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
8146 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
8147 mcs[i] = txrate->mcs[i];
8155 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
8156 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
8157 .len = NL80211_MAX_SUPP_RATES },
8158 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
8159 .len = NL80211_MAX_SUPP_HT_RATES },
8160 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
8161 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
8164 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
8165 struct genl_info *info)
8167 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
8168 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8169 struct cfg80211_bitrate_mask mask;
8171 struct net_device *dev = info->user_ptr[1];
8172 struct nlattr *tx_rates;
8173 struct ieee80211_supported_band *sband;
8176 if (!rdev->ops->set_bitrate_mask)
8179 memset(&mask, 0, sizeof(mask));
8180 /* Default to all rates enabled */
8181 for (i = 0; i < IEEE80211_NUM_BANDS; i++) {
8182 sband = rdev->wiphy.bands[i];
8187 mask.control[i].legacy = (1 << sband->n_bitrates) - 1;
8188 memcpy(mask.control[i].ht_mcs,
8189 sband->ht_cap.mcs.rx_mask,
8190 sizeof(mask.control[i].ht_mcs));
8192 if (!sband->vht_cap.vht_supported)
8195 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
8196 vht_build_mcs_mask(vht_tx_mcs_map, mask.control[i].vht_mcs);
8199 /* if no rates are given set it back to the defaults */
8200 if (!info->attrs[NL80211_ATTR_TX_RATES])
8204 * The nested attribute uses enum nl80211_band as the index. This maps
8205 * directly to the enum ieee80211_band values used in cfg80211.
8207 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
8208 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
8209 enum ieee80211_band band = nla_type(tx_rates);
8212 if (band < 0 || band >= IEEE80211_NUM_BANDS)
8214 sband = rdev->wiphy.bands[band];
8217 err = nla_parse(tb, NL80211_TXRATE_MAX, nla_data(tx_rates),
8218 nla_len(tx_rates), nl80211_txattr_policy);
8221 if (tb[NL80211_TXRATE_LEGACY]) {
8222 mask.control[band].legacy = rateset_to_mask(
8224 nla_data(tb[NL80211_TXRATE_LEGACY]),
8225 nla_len(tb[NL80211_TXRATE_LEGACY]));
8226 if ((mask.control[band].legacy == 0) &&
8227 nla_len(tb[NL80211_TXRATE_LEGACY]))
8230 if (tb[NL80211_TXRATE_HT]) {
8231 if (!ht_rateset_to_mask(
8233 nla_data(tb[NL80211_TXRATE_HT]),
8234 nla_len(tb[NL80211_TXRATE_HT]),
8235 mask.control[band].ht_mcs))
8238 if (tb[NL80211_TXRATE_VHT]) {
8239 if (!vht_set_mcs_mask(
8241 nla_data(tb[NL80211_TXRATE_VHT]),
8242 mask.control[band].vht_mcs))
8245 if (tb[NL80211_TXRATE_GI]) {
8246 mask.control[band].gi =
8247 nla_get_u8(tb[NL80211_TXRATE_GI]);
8248 if (mask.control[band].gi > NL80211_TXRATE_FORCE_LGI)
8252 if (mask.control[band].legacy == 0) {
8253 /* don't allow empty legacy rates if HT or VHT
8254 * are not even supported.
8256 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
8257 rdev->wiphy.bands[band]->vht_cap.vht_supported))
8260 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
8261 if (mask.control[band].ht_mcs[i])
8264 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
8265 if (mask.control[band].vht_mcs[i])
8268 /* legacy and mcs rates may not be both empty */
8274 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
8277 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
8279 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8280 struct wireless_dev *wdev = info->user_ptr[1];
8281 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
8283 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
8286 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
8287 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
8289 switch (wdev->iftype) {
8290 case NL80211_IFTYPE_STATION:
8291 case NL80211_IFTYPE_ADHOC:
8292 case NL80211_IFTYPE_P2P_CLIENT:
8293 case NL80211_IFTYPE_AP:
8294 case NL80211_IFTYPE_AP_VLAN:
8295 case NL80211_IFTYPE_MESH_POINT:
8296 case NL80211_IFTYPE_P2P_GO:
8297 case NL80211_IFTYPE_P2P_DEVICE:
8303 /* not much point in registering if we can't reply */
8304 if (!rdev->ops->mgmt_tx)
8307 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
8308 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
8309 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
8312 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
8314 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8315 struct wireless_dev *wdev = info->user_ptr[1];
8316 struct cfg80211_chan_def chandef;
8320 struct sk_buff *msg = NULL;
8321 struct cfg80211_mgmt_tx_params params = {
8322 .dont_wait_for_ack =
8323 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
8326 if (!info->attrs[NL80211_ATTR_FRAME])
8329 if (!rdev->ops->mgmt_tx)
8332 switch (wdev->iftype) {
8333 case NL80211_IFTYPE_P2P_DEVICE:
8334 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8336 case NL80211_IFTYPE_STATION:
8337 case NL80211_IFTYPE_ADHOC:
8338 case NL80211_IFTYPE_P2P_CLIENT:
8339 case NL80211_IFTYPE_AP:
8340 case NL80211_IFTYPE_AP_VLAN:
8341 case NL80211_IFTYPE_MESH_POINT:
8342 case NL80211_IFTYPE_P2P_GO:
8348 if (info->attrs[NL80211_ATTR_DURATION]) {
8349 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
8351 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
8354 * We should wait on the channel for at least a minimum amount
8355 * of time (10ms) but no longer than the driver supports.
8357 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
8358 params.wait > rdev->wiphy.max_remain_on_channel_duration)
8363 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
8365 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
8368 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
8370 /* get the channel if any has been specified, otherwise pass NULL to
8371 * the driver. The latter will use the current one
8373 chandef.chan = NULL;
8374 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
8375 err = nl80211_parse_chandef(rdev, info, &chandef);
8380 if (!chandef.chan && params.offchan)
8383 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
8384 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
8386 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
8387 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
8390 if (len % sizeof(u16))
8393 params.n_csa_offsets = len / sizeof(u16);
8394 params.csa_offsets =
8395 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
8397 /* check that all the offsets fit the frame */
8398 for (i = 0; i < params.n_csa_offsets; i++) {
8399 if (params.csa_offsets[i] >= params.len)
8404 if (!params.dont_wait_for_ack) {
8405 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8409 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8417 params.chan = chandef.chan;
8418 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
8423 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
8424 goto nla_put_failure;
8426 genlmsg_end(msg, hdr);
8427 return genlmsg_reply(msg, info);
8439 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
8441 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8442 struct wireless_dev *wdev = info->user_ptr[1];
8445 if (!info->attrs[NL80211_ATTR_COOKIE])
8448 if (!rdev->ops->mgmt_tx_cancel_wait)
8451 switch (wdev->iftype) {
8452 case NL80211_IFTYPE_STATION:
8453 case NL80211_IFTYPE_ADHOC:
8454 case NL80211_IFTYPE_P2P_CLIENT:
8455 case NL80211_IFTYPE_AP:
8456 case NL80211_IFTYPE_AP_VLAN:
8457 case NL80211_IFTYPE_P2P_GO:
8458 case NL80211_IFTYPE_P2P_DEVICE:
8464 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8466 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
8469 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
8471 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8472 struct wireless_dev *wdev;
8473 struct net_device *dev = info->user_ptr[1];
8478 if (!info->attrs[NL80211_ATTR_PS_STATE])
8481 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
8483 if (ps_state != NL80211_PS_DISABLED && ps_state != NL80211_PS_ENABLED)
8486 wdev = dev->ieee80211_ptr;
8488 if (!rdev->ops->set_power_mgmt)
8491 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
8493 if (state == wdev->ps)
8496 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
8502 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
8504 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8505 enum nl80211_ps_state ps_state;
8506 struct wireless_dev *wdev;
8507 struct net_device *dev = info->user_ptr[1];
8508 struct sk_buff *msg;
8512 wdev = dev->ieee80211_ptr;
8514 if (!rdev->ops->set_power_mgmt)
8517 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
8521 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8522 NL80211_CMD_GET_POWER_SAVE);
8529 ps_state = NL80211_PS_ENABLED;
8531 ps_state = NL80211_PS_DISABLED;
8533 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
8534 goto nla_put_failure;
8536 genlmsg_end(msg, hdr);
8537 return genlmsg_reply(msg, info);
8546 static const struct nla_policy
8547 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
8548 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_U32 },
8549 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
8550 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
8551 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
8552 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
8553 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
8556 static int nl80211_set_cqm_txe(struct genl_info *info,
8557 u32 rate, u32 pkts, u32 intvl)
8559 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8560 struct net_device *dev = info->user_ptr[1];
8561 struct wireless_dev *wdev = dev->ieee80211_ptr;
8563 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
8566 if (!rdev->ops->set_cqm_txe_config)
8569 if (wdev->iftype != NL80211_IFTYPE_STATION &&
8570 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
8573 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
8576 static int nl80211_set_cqm_rssi(struct genl_info *info,
8577 s32 threshold, u32 hysteresis)
8579 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8580 struct net_device *dev = info->user_ptr[1];
8581 struct wireless_dev *wdev = dev->ieee80211_ptr;
8586 /* disabling - hysteresis should also be zero then */
8590 if (!rdev->ops->set_cqm_rssi_config)
8593 if (wdev->iftype != NL80211_IFTYPE_STATION &&
8594 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
8597 return rdev_set_cqm_rssi_config(rdev, dev, threshold, hysteresis);
8600 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
8602 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
8606 cqm = info->attrs[NL80211_ATTR_CQM];
8610 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
8611 nl80211_attr_cqm_policy);
8615 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
8616 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
8617 s32 threshold = nla_get_s32(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
8618 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
8620 return nl80211_set_cqm_rssi(info, threshold, hysteresis);
8623 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
8624 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
8625 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
8626 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
8627 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
8628 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
8630 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
8636 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
8638 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8639 struct net_device *dev = info->user_ptr[1];
8640 struct ocb_setup setup = {};
8643 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
8647 return cfg80211_join_ocb(rdev, dev, &setup);
8650 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
8652 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8653 struct net_device *dev = info->user_ptr[1];
8655 return cfg80211_leave_ocb(rdev, dev);
8658 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
8660 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8661 struct net_device *dev = info->user_ptr[1];
8662 struct mesh_config cfg;
8663 struct mesh_setup setup;
8666 /* start with default */
8667 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
8668 memcpy(&setup, &default_mesh_setup, sizeof(setup));
8670 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
8671 /* and parse parameters if given */
8672 err = nl80211_parse_mesh_config(info, &cfg, NULL);
8677 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
8678 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
8681 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
8682 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
8684 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
8685 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
8686 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
8689 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
8690 setup.beacon_interval =
8691 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
8692 if (setup.beacon_interval < 10 ||
8693 setup.beacon_interval > 10000)
8697 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
8699 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
8700 if (setup.dtim_period < 1 || setup.dtim_period > 100)
8704 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
8705 /* parse additional setup parameters if given */
8706 err = nl80211_parse_mesh_setup(info, &setup);
8712 cfg.auto_open_plinks = false;
8714 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
8715 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
8719 /* cfg80211_join_mesh() will sort it out */
8720 setup.chandef.chan = NULL;
8723 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
8724 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
8726 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
8727 struct ieee80211_supported_band *sband;
8729 if (!setup.chandef.chan)
8732 sband = rdev->wiphy.bands[setup.chandef.chan->band];
8734 err = ieee80211_get_ratemask(sband, rates, n_rates,
8735 &setup.basic_rates);
8740 return cfg80211_join_mesh(rdev, dev, &setup, &cfg);
8743 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
8745 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8746 struct net_device *dev = info->user_ptr[1];
8748 return cfg80211_leave_mesh(rdev, dev);
8752 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
8753 struct cfg80211_registered_device *rdev)
8755 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
8756 struct nlattr *nl_pats, *nl_pat;
8759 if (!wowlan->n_patterns)
8762 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
8766 for (i = 0; i < wowlan->n_patterns; i++) {
8767 nl_pat = nla_nest_start(msg, i + 1);
8770 pat_len = wowlan->patterns[i].pattern_len;
8771 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
8772 wowlan->patterns[i].mask) ||
8773 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
8774 wowlan->patterns[i].pattern) ||
8775 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
8776 wowlan->patterns[i].pkt_offset))
8778 nla_nest_end(msg, nl_pat);
8780 nla_nest_end(msg, nl_pats);
8785 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
8786 struct cfg80211_wowlan_tcp *tcp)
8788 struct nlattr *nl_tcp;
8793 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
8797 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
8798 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
8799 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
8800 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
8801 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
8802 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
8803 tcp->payload_len, tcp->payload) ||
8804 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
8805 tcp->data_interval) ||
8806 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
8807 tcp->wake_len, tcp->wake_data) ||
8808 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
8809 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
8812 if (tcp->payload_seq.len &&
8813 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
8814 sizeof(tcp->payload_seq), &tcp->payload_seq))
8817 if (tcp->payload_tok.len &&
8818 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
8819 sizeof(tcp->payload_tok) + tcp->tokens_size,
8823 nla_nest_end(msg, nl_tcp);
8828 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
8829 struct cfg80211_sched_scan_request *req)
8831 struct nlattr *nd, *freqs, *matches, *match;
8837 nd = nla_nest_start(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
8841 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL, req->interval))
8844 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
8847 freqs = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
8851 for (i = 0; i < req->n_channels; i++)
8852 nla_put_u32(msg, i, req->channels[i]->center_freq);
8854 nla_nest_end(msg, freqs);
8856 if (req->n_match_sets) {
8857 matches = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_MATCH);
8858 for (i = 0; i < req->n_match_sets; i++) {
8859 match = nla_nest_start(msg, i);
8860 nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
8861 req->match_sets[i].ssid.ssid_len,
8862 req->match_sets[i].ssid.ssid);
8863 nla_nest_end(msg, match);
8865 nla_nest_end(msg, matches);
8868 nla_nest_end(msg, nd);
8873 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
8875 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8876 struct sk_buff *msg;
8878 u32 size = NLMSG_DEFAULT_SIZE;
8880 if (!rdev->wiphy.wowlan)
8883 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
8884 /* adjust size to have room for all the data */
8885 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
8886 rdev->wiphy.wowlan_config->tcp->payload_len +
8887 rdev->wiphy.wowlan_config->tcp->wake_len +
8888 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
8891 msg = nlmsg_new(size, GFP_KERNEL);
8895 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
8896 NL80211_CMD_GET_WOWLAN);
8898 goto nla_put_failure;
8900 if (rdev->wiphy.wowlan_config) {
8901 struct nlattr *nl_wowlan;
8903 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
8905 goto nla_put_failure;
8907 if ((rdev->wiphy.wowlan_config->any &&
8908 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
8909 (rdev->wiphy.wowlan_config->disconnect &&
8910 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
8911 (rdev->wiphy.wowlan_config->magic_pkt &&
8912 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
8913 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
8914 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
8915 (rdev->wiphy.wowlan_config->eap_identity_req &&
8916 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
8917 (rdev->wiphy.wowlan_config->four_way_handshake &&
8918 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
8919 (rdev->wiphy.wowlan_config->rfkill_release &&
8920 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
8921 goto nla_put_failure;
8923 if (nl80211_send_wowlan_patterns(msg, rdev))
8924 goto nla_put_failure;
8926 if (nl80211_send_wowlan_tcp(msg,
8927 rdev->wiphy.wowlan_config->tcp))
8928 goto nla_put_failure;
8930 if (nl80211_send_wowlan_nd(
8932 rdev->wiphy.wowlan_config->nd_config))
8933 goto nla_put_failure;
8935 nla_nest_end(msg, nl_wowlan);
8938 genlmsg_end(msg, hdr);
8939 return genlmsg_reply(msg, info);
8946 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
8947 struct nlattr *attr,
8948 struct cfg80211_wowlan *trig)
8950 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
8951 struct cfg80211_wowlan_tcp *cfg;
8952 struct nl80211_wowlan_tcp_data_token *tok = NULL;
8953 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
8955 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
8958 if (!rdev->wiphy.wowlan->tcp)
8961 err = nla_parse(tb, MAX_NL80211_WOWLAN_TCP,
8962 nla_data(attr), nla_len(attr),
8963 nl80211_wowlan_tcp_policy);
8967 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
8968 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
8969 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
8970 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
8971 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
8972 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
8973 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
8974 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
8977 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
8978 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
8981 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
8982 rdev->wiphy.wowlan->tcp->data_interval_max ||
8983 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
8986 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
8987 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
8990 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
8991 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
8994 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
8995 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8997 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
8998 tokens_size = tokln - sizeof(*tok);
9000 if (!tok->len || tokens_size % tok->len)
9002 if (!rdev->wiphy.wowlan->tcp->tok)
9004 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
9006 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
9008 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
9010 if (tok->offset + tok->len > data_size)
9014 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
9015 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
9016 if (!rdev->wiphy.wowlan->tcp->seq)
9018 if (seq->len == 0 || seq->len > 4)
9020 if (seq->len + seq->offset > data_size)
9024 size = sizeof(*cfg);
9026 size += wake_size + wake_mask_size;
9027 size += tokens_size;
9029 cfg = kzalloc(size, GFP_KERNEL);
9032 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
9033 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
9034 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
9036 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
9037 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
9041 /* allocate a socket and port for it and use it */
9042 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
9043 IPPROTO_TCP, &cfg->sock, 1);
9048 if (inet_csk_get_port(cfg->sock->sk, port)) {
9049 sock_release(cfg->sock);
9053 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
9059 cfg->src_port = port;
9062 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
9063 cfg->payload_len = data_size;
9064 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
9065 memcpy((void *)cfg->payload,
9066 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
9069 cfg->payload_seq = *seq;
9070 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
9071 cfg->wake_len = wake_size;
9072 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
9073 memcpy((void *)cfg->wake_data,
9074 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
9076 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
9077 data_size + wake_size;
9078 memcpy((void *)cfg->wake_mask,
9079 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
9082 cfg->tokens_size = tokens_size;
9083 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
9091 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
9092 const struct wiphy_wowlan_support *wowlan,
9093 struct nlattr *attr,
9094 struct cfg80211_wowlan *trig)
9099 tb = kzalloc(NUM_NL80211_ATTR * sizeof(*tb), GFP_KERNEL);
9103 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
9108 err = nla_parse(tb, NL80211_ATTR_MAX,
9109 nla_data(attr), nla_len(attr),
9114 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb);
9115 err = PTR_ERR_OR_ZERO(trig->nd_config);
9117 trig->nd_config = NULL;
9124 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
9126 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9127 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
9128 struct cfg80211_wowlan new_triggers = {};
9129 struct cfg80211_wowlan *ntrig;
9130 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
9132 bool prev_enabled = rdev->wiphy.wowlan_config;
9133 bool regular = false;
9138 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
9139 cfg80211_rdev_free_wowlan(rdev);
9140 rdev->wiphy.wowlan_config = NULL;
9144 err = nla_parse(tb, MAX_NL80211_WOWLAN_TRIG,
9145 nla_data(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
9146 nla_len(info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]),
9147 nl80211_wowlan_policy);
9151 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
9152 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
9154 new_triggers.any = true;
9157 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
9158 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
9160 new_triggers.disconnect = true;
9164 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
9165 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
9167 new_triggers.magic_pkt = true;
9171 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
9174 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
9175 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
9177 new_triggers.gtk_rekey_failure = true;
9181 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
9182 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
9184 new_triggers.eap_identity_req = true;
9188 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
9189 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
9191 new_triggers.four_way_handshake = true;
9195 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
9196 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
9198 new_triggers.rfkill_release = true;
9202 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
9205 int rem, pat_len, mask_len, pkt_offset;
9206 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
9210 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
9213 if (n_patterns > wowlan->n_patterns)
9216 new_triggers.patterns = kcalloc(n_patterns,
9217 sizeof(new_triggers.patterns[0]),
9219 if (!new_triggers.patterns)
9222 new_triggers.n_patterns = n_patterns;
9225 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
9229 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
9230 nla_len(pat), NULL);
9232 if (!pat_tb[NL80211_PKTPAT_MASK] ||
9233 !pat_tb[NL80211_PKTPAT_PATTERN])
9235 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
9236 mask_len = DIV_ROUND_UP(pat_len, 8);
9237 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
9239 if (pat_len > wowlan->pattern_max_len ||
9240 pat_len < wowlan->pattern_min_len)
9243 if (!pat_tb[NL80211_PKTPAT_OFFSET])
9246 pkt_offset = nla_get_u32(
9247 pat_tb[NL80211_PKTPAT_OFFSET]);
9248 if (pkt_offset > wowlan->max_pkt_offset)
9250 new_triggers.patterns[i].pkt_offset = pkt_offset;
9252 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
9257 new_triggers.patterns[i].mask = mask_pat;
9258 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
9260 mask_pat += mask_len;
9261 new_triggers.patterns[i].pattern = mask_pat;
9262 new_triggers.patterns[i].pattern_len = pat_len;
9264 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
9270 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
9272 err = nl80211_parse_wowlan_tcp(
9273 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
9279 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
9281 err = nl80211_parse_wowlan_nd(
9282 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
9288 /* The 'any' trigger means the device continues operating more or less
9289 * as in its normal operation mode and wakes up the host on most of the
9290 * normal interrupts (like packet RX, ...)
9291 * It therefore makes little sense to combine with the more constrained
9292 * wakeup trigger modes.
9294 if (new_triggers.any && regular) {
9299 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
9304 cfg80211_rdev_free_wowlan(rdev);
9305 rdev->wiphy.wowlan_config = ntrig;
9308 if (rdev->ops->set_wakeup &&
9309 prev_enabled != !!rdev->wiphy.wowlan_config)
9310 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
9314 for (i = 0; i < new_triggers.n_patterns; i++)
9315 kfree(new_triggers.patterns[i].mask);
9316 kfree(new_triggers.patterns);
9317 if (new_triggers.tcp && new_triggers.tcp->sock)
9318 sock_release(new_triggers.tcp->sock);
9319 kfree(new_triggers.tcp);
9324 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
9325 struct cfg80211_registered_device *rdev)
9327 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
9329 struct cfg80211_coalesce_rules *rule;
9331 if (!rdev->coalesce->n_rules)
9334 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
9338 for (i = 0; i < rdev->coalesce->n_rules; i++) {
9339 nl_rule = nla_nest_start(msg, i + 1);
9343 rule = &rdev->coalesce->rules[i];
9344 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
9348 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
9352 nl_pats = nla_nest_start(msg,
9353 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
9357 for (j = 0; j < rule->n_patterns; j++) {
9358 nl_pat = nla_nest_start(msg, j + 1);
9361 pat_len = rule->patterns[j].pattern_len;
9362 if (nla_put(msg, NL80211_PKTPAT_MASK,
9363 DIV_ROUND_UP(pat_len, 8),
9364 rule->patterns[j].mask) ||
9365 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
9366 rule->patterns[j].pattern) ||
9367 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
9368 rule->patterns[j].pkt_offset))
9370 nla_nest_end(msg, nl_pat);
9372 nla_nest_end(msg, nl_pats);
9373 nla_nest_end(msg, nl_rule);
9375 nla_nest_end(msg, nl_rules);
9380 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
9382 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9383 struct sk_buff *msg;
9386 if (!rdev->wiphy.coalesce)
9389 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9393 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
9394 NL80211_CMD_GET_COALESCE);
9396 goto nla_put_failure;
9398 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
9399 goto nla_put_failure;
9401 genlmsg_end(msg, hdr);
9402 return genlmsg_reply(msg, info);
9409 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
9411 struct cfg80211_coalesce *coalesce = rdev->coalesce;
9413 struct cfg80211_coalesce_rules *rule;
9418 for (i = 0; i < coalesce->n_rules; i++) {
9419 rule = &coalesce->rules[i];
9420 for (j = 0; j < rule->n_patterns; j++)
9421 kfree(rule->patterns[j].mask);
9422 kfree(rule->patterns);
9424 kfree(coalesce->rules);
9426 rdev->coalesce = NULL;
9429 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
9430 struct nlattr *rule,
9431 struct cfg80211_coalesce_rules *new_rule)
9434 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
9435 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
9436 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
9437 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
9439 err = nla_parse(tb, NL80211_ATTR_COALESCE_RULE_MAX, nla_data(rule),
9440 nla_len(rule), nl80211_coalesce_policy);
9444 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
9446 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
9447 if (new_rule->delay > coalesce->max_delay)
9450 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
9451 new_rule->condition =
9452 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
9453 if (new_rule->condition != NL80211_COALESCE_CONDITION_MATCH &&
9454 new_rule->condition != NL80211_COALESCE_CONDITION_NO_MATCH)
9457 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
9460 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
9463 if (n_patterns > coalesce->n_patterns)
9466 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
9468 if (!new_rule->patterns)
9471 new_rule->n_patterns = n_patterns;
9474 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
9478 nla_parse(pat_tb, MAX_NL80211_PKTPAT, nla_data(pat),
9479 nla_len(pat), NULL);
9480 if (!pat_tb[NL80211_PKTPAT_MASK] ||
9481 !pat_tb[NL80211_PKTPAT_PATTERN])
9483 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
9484 mask_len = DIV_ROUND_UP(pat_len, 8);
9485 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
9487 if (pat_len > coalesce->pattern_max_len ||
9488 pat_len < coalesce->pattern_min_len)
9491 if (!pat_tb[NL80211_PKTPAT_OFFSET])
9494 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
9495 if (pkt_offset > coalesce->max_pkt_offset)
9497 new_rule->patterns[i].pkt_offset = pkt_offset;
9499 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
9503 new_rule->patterns[i].mask = mask_pat;
9504 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
9507 mask_pat += mask_len;
9508 new_rule->patterns[i].pattern = mask_pat;
9509 new_rule->patterns[i].pattern_len = pat_len;
9510 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
9518 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
9520 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9521 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
9522 struct cfg80211_coalesce new_coalesce = {};
9523 struct cfg80211_coalesce *n_coalesce;
9524 int err, rem_rule, n_rules = 0, i, j;
9525 struct nlattr *rule;
9526 struct cfg80211_coalesce_rules *tmp_rule;
9528 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
9531 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
9532 cfg80211_rdev_free_coalesce(rdev);
9533 rdev->ops->set_coalesce(&rdev->wiphy, NULL);
9537 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
9540 if (n_rules > coalesce->n_rules)
9543 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
9545 if (!new_coalesce.rules)
9548 new_coalesce.n_rules = n_rules;
9551 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
9553 err = nl80211_parse_coalesce_rule(rdev, rule,
9554 &new_coalesce.rules[i]);
9561 err = rdev->ops->set_coalesce(&rdev->wiphy, &new_coalesce);
9565 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
9570 cfg80211_rdev_free_coalesce(rdev);
9571 rdev->coalesce = n_coalesce;
9575 for (i = 0; i < new_coalesce.n_rules; i++) {
9576 tmp_rule = &new_coalesce.rules[i];
9577 for (j = 0; j < tmp_rule->n_patterns; j++)
9578 kfree(tmp_rule->patterns[j].mask);
9579 kfree(tmp_rule->patterns);
9581 kfree(new_coalesce.rules);
9586 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
9588 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9589 struct net_device *dev = info->user_ptr[1];
9590 struct wireless_dev *wdev = dev->ieee80211_ptr;
9591 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
9592 struct cfg80211_gtk_rekey_data rekey_data;
9595 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
9598 err = nla_parse(tb, MAX_NL80211_REKEY_DATA,
9599 nla_data(info->attrs[NL80211_ATTR_REKEY_DATA]),
9600 nla_len(info->attrs[NL80211_ATTR_REKEY_DATA]),
9601 nl80211_rekey_policy);
9605 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
9607 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
9609 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
9612 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
9613 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
9614 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
9617 if (!wdev->current_bss) {
9622 if (!rdev->ops->set_rekey_data) {
9627 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
9633 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
9634 struct genl_info *info)
9636 struct net_device *dev = info->user_ptr[1];
9637 struct wireless_dev *wdev = dev->ieee80211_ptr;
9639 if (wdev->iftype != NL80211_IFTYPE_AP &&
9640 wdev->iftype != NL80211_IFTYPE_P2P_GO)
9643 if (wdev->ap_unexpected_nlportid)
9646 wdev->ap_unexpected_nlportid = info->snd_portid;
9650 static int nl80211_probe_client(struct sk_buff *skb,
9651 struct genl_info *info)
9653 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9654 struct net_device *dev = info->user_ptr[1];
9655 struct wireless_dev *wdev = dev->ieee80211_ptr;
9656 struct sk_buff *msg;
9662 if (wdev->iftype != NL80211_IFTYPE_AP &&
9663 wdev->iftype != NL80211_IFTYPE_P2P_GO)
9666 if (!info->attrs[NL80211_ATTR_MAC])
9669 if (!rdev->ops->probe_client)
9672 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9676 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
9677 NL80211_CMD_PROBE_CLIENT);
9683 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
9685 err = rdev_probe_client(rdev, dev, addr, &cookie);
9689 if (nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
9690 goto nla_put_failure;
9692 genlmsg_end(msg, hdr);
9694 return genlmsg_reply(msg, info);
9703 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
9705 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9706 struct cfg80211_beacon_registration *reg, *nreg;
9709 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
9712 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
9716 /* First, check if already registered. */
9717 spin_lock_bh(&rdev->beacon_registrations_lock);
9718 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
9719 if (reg->nlportid == info->snd_portid) {
9724 /* Add it to the list */
9725 nreg->nlportid = info->snd_portid;
9726 list_add(&nreg->list, &rdev->beacon_registrations);
9728 spin_unlock_bh(&rdev->beacon_registrations_lock);
9732 spin_unlock_bh(&rdev->beacon_registrations_lock);
9737 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
9739 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9740 struct wireless_dev *wdev = info->user_ptr[1];
9743 if (!rdev->ops->start_p2p_device)
9746 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
9749 if (wdev->p2p_started)
9752 if (rfkill_blocked(rdev->rfkill))
9755 err = rdev_start_p2p_device(rdev, wdev);
9759 wdev->p2p_started = true;
9765 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
9767 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9768 struct wireless_dev *wdev = info->user_ptr[1];
9770 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
9773 if (!rdev->ops->stop_p2p_device)
9776 cfg80211_stop_p2p_device(rdev, wdev);
9781 static int nl80211_get_protocol_features(struct sk_buff *skb,
9782 struct genl_info *info)
9785 struct sk_buff *msg;
9787 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9791 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
9792 NL80211_CMD_GET_PROTOCOL_FEATURES);
9794 goto nla_put_failure;
9796 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
9797 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
9798 goto nla_put_failure;
9800 genlmsg_end(msg, hdr);
9801 return genlmsg_reply(msg, info);
9808 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
9810 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9811 struct cfg80211_update_ft_ies_params ft_params;
9812 struct net_device *dev = info->user_ptr[1];
9814 if (!rdev->ops->update_ft_ies)
9817 if (!info->attrs[NL80211_ATTR_MDID] ||
9818 !is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
9821 memset(&ft_params, 0, sizeof(ft_params));
9822 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
9823 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9824 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9826 return rdev_update_ft_ies(rdev, dev, &ft_params);
9829 static int nl80211_crit_protocol_start(struct sk_buff *skb,
9830 struct genl_info *info)
9832 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9833 struct wireless_dev *wdev = info->user_ptr[1];
9834 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
9838 if (!rdev->ops->crit_proto_start)
9841 if (WARN_ON(!rdev->ops->crit_proto_stop))
9844 if (rdev->crit_proto_nlportid)
9847 /* determine protocol if provided */
9848 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
9849 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
9851 if (proto >= NUM_NL80211_CRIT_PROTO)
9854 /* timeout must be provided */
9855 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
9859 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
9861 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
9864 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
9866 rdev->crit_proto_nlportid = info->snd_portid;
9871 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
9872 struct genl_info *info)
9874 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9875 struct wireless_dev *wdev = info->user_ptr[1];
9877 if (!rdev->ops->crit_proto_stop)
9880 if (rdev->crit_proto_nlportid) {
9881 rdev->crit_proto_nlportid = 0;
9882 rdev_crit_proto_stop(rdev, wdev);
9887 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
9889 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9890 struct wireless_dev *wdev =
9891 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9895 if (!rdev->wiphy.vendor_commands)
9899 err = PTR_ERR(wdev);
9903 } else if (wdev->wiphy != &rdev->wiphy) {
9907 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
9908 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
9911 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
9912 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
9913 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
9914 const struct wiphy_vendor_command *vcmd;
9918 vcmd = &rdev->wiphy.vendor_commands[i];
9920 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
9923 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
9924 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
9927 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
9931 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
9933 !netif_running(wdev->netdev))
9935 if (!wdev->netdev && !wdev->p2p_started)
9942 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
9943 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9944 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
9947 rdev->cur_cmd_info = info;
9948 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
9950 rdev->cur_cmd_info = NULL;
9957 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
9958 enum nl80211_commands cmd,
9959 enum nl80211_attrs attr,
9962 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9964 if (WARN_ON(!rdev->cur_cmd_info))
9967 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
9968 rdev->cur_cmd_info->snd_portid,
9969 rdev->cur_cmd_info->snd_seq,
9970 cmd, attr, NULL, GFP_KERNEL);
9972 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
9974 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
9976 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9977 void *hdr = ((void **)skb->cb)[1];
9978 struct nlattr *data = ((void **)skb->cb)[2];
9980 /* clear CB data for netlink core to own from now on */
9981 memset(skb->cb, 0, sizeof(skb->cb));
9983 if (WARN_ON(!rdev->cur_cmd_info)) {
9988 nla_nest_end(skb, data);
9989 genlmsg_end(skb, hdr);
9990 return genlmsg_reply(skb, rdev->cur_cmd_info);
9992 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
9995 static int nl80211_set_qos_map(struct sk_buff *skb,
9996 struct genl_info *info)
9998 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9999 struct cfg80211_qos_map *qos_map = NULL;
10000 struct net_device *dev = info->user_ptr[1];
10001 u8 *pos, len, num_des, des_len, des;
10004 if (!rdev->ops->set_qos_map)
10005 return -EOPNOTSUPP;
10007 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
10008 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
10009 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
10011 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
10012 len > IEEE80211_QOS_MAP_LEN_MAX)
10015 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
10019 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
10021 des_len = num_des *
10022 sizeof(struct cfg80211_dscp_exception);
10023 memcpy(qos_map->dscp_exception, pos, des_len);
10024 qos_map->num_des = num_des;
10025 for (des = 0; des < num_des; des++) {
10026 if (qos_map->dscp_exception[des].up > 7) {
10033 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
10036 wdev_lock(dev->ieee80211_ptr);
10037 ret = nl80211_key_allowed(dev->ieee80211_ptr);
10039 ret = rdev_set_qos_map(rdev, dev, qos_map);
10040 wdev_unlock(dev->ieee80211_ptr);
10046 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
10048 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10049 struct net_device *dev = info->user_ptr[1];
10050 struct wireless_dev *wdev = dev->ieee80211_ptr;
10053 u16 admitted_time = 0;
10056 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
10057 return -EOPNOTSUPP;
10059 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
10060 !info->attrs[NL80211_ATTR_USER_PRIO])
10063 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
10064 if (tsid >= IEEE80211_NUM_TIDS)
10067 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
10068 if (up >= IEEE80211_NUM_UPS)
10071 /* WMM uses TIDs 0-7 even for TSPEC */
10072 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
10073 /* TODO: handle 802.11 TSPEC/admission control
10074 * need more attributes for that (e.g. BA session requirement);
10075 * change the WMM adminssion test above to allow both then
10080 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10082 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
10084 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
10085 if (!admitted_time)
10090 switch (wdev->iftype) {
10091 case NL80211_IFTYPE_STATION:
10092 case NL80211_IFTYPE_P2P_CLIENT:
10093 if (wdev->current_bss)
10102 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
10109 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
10111 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10112 struct net_device *dev = info->user_ptr[1];
10113 struct wireless_dev *wdev = dev->ieee80211_ptr;
10118 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
10121 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
10122 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10125 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
10131 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
10132 struct genl_info *info)
10134 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10135 struct net_device *dev = info->user_ptr[1];
10136 struct wireless_dev *wdev = dev->ieee80211_ptr;
10137 struct cfg80211_chan_def chandef = {};
10142 if (!rdev->ops->tdls_channel_switch ||
10143 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
10144 return -EOPNOTSUPP;
10146 switch (dev->ieee80211_ptr->iftype) {
10147 case NL80211_IFTYPE_STATION:
10148 case NL80211_IFTYPE_P2P_CLIENT:
10151 return -EOPNOTSUPP;
10154 if (!info->attrs[NL80211_ATTR_MAC] ||
10155 !info->attrs[NL80211_ATTR_OPER_CLASS])
10158 err = nl80211_parse_chandef(rdev, info, &chandef);
10163 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
10164 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
10165 * specification is not defined for them.
10167 if (chandef.chan->band == IEEE80211_BAND_2GHZ &&
10168 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
10169 chandef.width != NL80211_CHAN_WIDTH_20)
10172 /* we will be active on the TDLS link */
10173 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &chandef, wdev->iftype))
10176 /* don't allow switching to DFS channels */
10177 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
10180 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
10181 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
10184 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
10190 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
10191 struct genl_info *info)
10193 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10194 struct net_device *dev = info->user_ptr[1];
10195 struct wireless_dev *wdev = dev->ieee80211_ptr;
10198 if (!rdev->ops->tdls_channel_switch ||
10199 !rdev->ops->tdls_cancel_channel_switch ||
10200 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
10201 return -EOPNOTSUPP;
10203 switch (dev->ieee80211_ptr->iftype) {
10204 case NL80211_IFTYPE_STATION:
10205 case NL80211_IFTYPE_P2P_CLIENT:
10208 return -EOPNOTSUPP;
10211 if (!info->attrs[NL80211_ATTR_MAC])
10214 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
10217 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
10223 #define NL80211_FLAG_NEED_WIPHY 0x01
10224 #define NL80211_FLAG_NEED_NETDEV 0x02
10225 #define NL80211_FLAG_NEED_RTNL 0x04
10226 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
10227 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
10228 NL80211_FLAG_CHECK_NETDEV_UP)
10229 #define NL80211_FLAG_NEED_WDEV 0x10
10230 /* If a netdev is associated, it must be UP, P2P must be started */
10231 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
10232 NL80211_FLAG_CHECK_NETDEV_UP)
10233 #define NL80211_FLAG_CLEAR_SKB 0x20
10235 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
10236 struct genl_info *info)
10238 struct cfg80211_registered_device *rdev;
10239 struct wireless_dev *wdev;
10240 struct net_device *dev;
10241 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
10246 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
10247 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
10248 if (IS_ERR(rdev)) {
10251 return PTR_ERR(rdev);
10253 info->user_ptr[0] = rdev;
10254 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
10255 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
10258 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
10260 if (IS_ERR(wdev)) {
10263 return PTR_ERR(wdev);
10266 dev = wdev->netdev;
10267 rdev = wiphy_to_rdev(wdev->wiphy);
10269 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
10276 info->user_ptr[1] = dev;
10278 info->user_ptr[1] = wdev;
10282 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
10283 !netif_running(dev)) {
10290 } else if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP) {
10291 if (!wdev->p2p_started) {
10298 info->user_ptr[0] = rdev;
10304 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
10305 struct genl_info *info)
10307 if (info->user_ptr[1]) {
10308 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
10309 struct wireless_dev *wdev = info->user_ptr[1];
10312 dev_put(wdev->netdev);
10314 dev_put(info->user_ptr[1]);
10318 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
10321 /* If needed, clear the netlink message payload from the SKB
10322 * as it might contain key data that shouldn't stick around on
10323 * the heap after the SKB is freed. The netlink message header
10324 * is still needed for further processing, so leave it intact.
10326 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
10327 struct nlmsghdr *nlh = nlmsg_hdr(skb);
10329 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
10333 static const struct genl_ops nl80211_ops[] = {
10335 .cmd = NL80211_CMD_GET_WIPHY,
10336 .doit = nl80211_get_wiphy,
10337 .dumpit = nl80211_dump_wiphy,
10338 .done = nl80211_dump_wiphy_done,
10339 .policy = nl80211_policy,
10340 /* can be retrieved by unprivileged users */
10341 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10342 NL80211_FLAG_NEED_RTNL,
10345 .cmd = NL80211_CMD_SET_WIPHY,
10346 .doit = nl80211_set_wiphy,
10347 .policy = nl80211_policy,
10348 .flags = GENL_ADMIN_PERM,
10349 .internal_flags = NL80211_FLAG_NEED_RTNL,
10352 .cmd = NL80211_CMD_GET_INTERFACE,
10353 .doit = nl80211_get_interface,
10354 .dumpit = nl80211_dump_interface,
10355 .policy = nl80211_policy,
10356 /* can be retrieved by unprivileged users */
10357 .internal_flags = NL80211_FLAG_NEED_WDEV |
10358 NL80211_FLAG_NEED_RTNL,
10361 .cmd = NL80211_CMD_SET_INTERFACE,
10362 .doit = nl80211_set_interface,
10363 .policy = nl80211_policy,
10364 .flags = GENL_ADMIN_PERM,
10365 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10366 NL80211_FLAG_NEED_RTNL,
10369 .cmd = NL80211_CMD_NEW_INTERFACE,
10370 .doit = nl80211_new_interface,
10371 .policy = nl80211_policy,
10372 .flags = GENL_ADMIN_PERM,
10373 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10374 NL80211_FLAG_NEED_RTNL,
10377 .cmd = NL80211_CMD_DEL_INTERFACE,
10378 .doit = nl80211_del_interface,
10379 .policy = nl80211_policy,
10380 .flags = GENL_ADMIN_PERM,
10381 .internal_flags = NL80211_FLAG_NEED_WDEV |
10382 NL80211_FLAG_NEED_RTNL,
10385 .cmd = NL80211_CMD_GET_KEY,
10386 .doit = nl80211_get_key,
10387 .policy = nl80211_policy,
10388 .flags = GENL_ADMIN_PERM,
10389 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10390 NL80211_FLAG_NEED_RTNL,
10393 .cmd = NL80211_CMD_SET_KEY,
10394 .doit = nl80211_set_key,
10395 .policy = nl80211_policy,
10396 .flags = GENL_ADMIN_PERM,
10397 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10398 NL80211_FLAG_NEED_RTNL |
10399 NL80211_FLAG_CLEAR_SKB,
10402 .cmd = NL80211_CMD_NEW_KEY,
10403 .doit = nl80211_new_key,
10404 .policy = nl80211_policy,
10405 .flags = GENL_ADMIN_PERM,
10406 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10407 NL80211_FLAG_NEED_RTNL |
10408 NL80211_FLAG_CLEAR_SKB,
10411 .cmd = NL80211_CMD_DEL_KEY,
10412 .doit = nl80211_del_key,
10413 .policy = nl80211_policy,
10414 .flags = GENL_ADMIN_PERM,
10415 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10416 NL80211_FLAG_NEED_RTNL,
10419 .cmd = NL80211_CMD_SET_BEACON,
10420 .policy = nl80211_policy,
10421 .flags = GENL_ADMIN_PERM,
10422 .doit = nl80211_set_beacon,
10423 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10424 NL80211_FLAG_NEED_RTNL,
10427 .cmd = NL80211_CMD_START_AP,
10428 .policy = nl80211_policy,
10429 .flags = GENL_ADMIN_PERM,
10430 .doit = nl80211_start_ap,
10431 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10432 NL80211_FLAG_NEED_RTNL,
10435 .cmd = NL80211_CMD_STOP_AP,
10436 .policy = nl80211_policy,
10437 .flags = GENL_ADMIN_PERM,
10438 .doit = nl80211_stop_ap,
10439 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10440 NL80211_FLAG_NEED_RTNL,
10443 .cmd = NL80211_CMD_GET_STATION,
10444 .doit = nl80211_get_station,
10445 .dumpit = nl80211_dump_station,
10446 .policy = nl80211_policy,
10447 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10448 NL80211_FLAG_NEED_RTNL,
10451 .cmd = NL80211_CMD_SET_STATION,
10452 .doit = nl80211_set_station,
10453 .policy = nl80211_policy,
10454 .flags = GENL_ADMIN_PERM,
10455 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10456 NL80211_FLAG_NEED_RTNL,
10459 .cmd = NL80211_CMD_NEW_STATION,
10460 .doit = nl80211_new_station,
10461 .policy = nl80211_policy,
10462 .flags = GENL_ADMIN_PERM,
10463 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10464 NL80211_FLAG_NEED_RTNL,
10467 .cmd = NL80211_CMD_DEL_STATION,
10468 .doit = nl80211_del_station,
10469 .policy = nl80211_policy,
10470 .flags = GENL_ADMIN_PERM,
10471 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10472 NL80211_FLAG_NEED_RTNL,
10475 .cmd = NL80211_CMD_GET_MPATH,
10476 .doit = nl80211_get_mpath,
10477 .dumpit = nl80211_dump_mpath,
10478 .policy = nl80211_policy,
10479 .flags = GENL_ADMIN_PERM,
10480 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10481 NL80211_FLAG_NEED_RTNL,
10484 .cmd = NL80211_CMD_GET_MPP,
10485 .doit = nl80211_get_mpp,
10486 .dumpit = nl80211_dump_mpp,
10487 .policy = nl80211_policy,
10488 .flags = GENL_ADMIN_PERM,
10489 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10490 NL80211_FLAG_NEED_RTNL,
10493 .cmd = NL80211_CMD_SET_MPATH,
10494 .doit = nl80211_set_mpath,
10495 .policy = nl80211_policy,
10496 .flags = GENL_ADMIN_PERM,
10497 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10498 NL80211_FLAG_NEED_RTNL,
10501 .cmd = NL80211_CMD_NEW_MPATH,
10502 .doit = nl80211_new_mpath,
10503 .policy = nl80211_policy,
10504 .flags = GENL_ADMIN_PERM,
10505 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10506 NL80211_FLAG_NEED_RTNL,
10509 .cmd = NL80211_CMD_DEL_MPATH,
10510 .doit = nl80211_del_mpath,
10511 .policy = nl80211_policy,
10512 .flags = GENL_ADMIN_PERM,
10513 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10514 NL80211_FLAG_NEED_RTNL,
10517 .cmd = NL80211_CMD_SET_BSS,
10518 .doit = nl80211_set_bss,
10519 .policy = nl80211_policy,
10520 .flags = GENL_ADMIN_PERM,
10521 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10522 NL80211_FLAG_NEED_RTNL,
10525 .cmd = NL80211_CMD_GET_REG,
10526 .doit = nl80211_get_reg_do,
10527 .dumpit = nl80211_get_reg_dump,
10528 .policy = nl80211_policy,
10529 .internal_flags = NL80211_FLAG_NEED_RTNL,
10530 /* can be retrieved by unprivileged users */
10533 .cmd = NL80211_CMD_SET_REG,
10534 .doit = nl80211_set_reg,
10535 .policy = nl80211_policy,
10536 .flags = GENL_ADMIN_PERM,
10537 .internal_flags = NL80211_FLAG_NEED_RTNL,
10540 .cmd = NL80211_CMD_REQ_SET_REG,
10541 .doit = nl80211_req_set_reg,
10542 .policy = nl80211_policy,
10543 .flags = GENL_ADMIN_PERM,
10546 .cmd = NL80211_CMD_GET_MESH_CONFIG,
10547 .doit = nl80211_get_mesh_config,
10548 .policy = nl80211_policy,
10549 /* can be retrieved by unprivileged users */
10550 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10551 NL80211_FLAG_NEED_RTNL,
10554 .cmd = NL80211_CMD_SET_MESH_CONFIG,
10555 .doit = nl80211_update_mesh_config,
10556 .policy = nl80211_policy,
10557 .flags = GENL_ADMIN_PERM,
10558 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10559 NL80211_FLAG_NEED_RTNL,
10562 .cmd = NL80211_CMD_TRIGGER_SCAN,
10563 .doit = nl80211_trigger_scan,
10564 .policy = nl80211_policy,
10565 .flags = GENL_ADMIN_PERM,
10566 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10567 NL80211_FLAG_NEED_RTNL,
10570 .cmd = NL80211_CMD_GET_SCAN,
10571 .policy = nl80211_policy,
10572 .dumpit = nl80211_dump_scan,
10575 .cmd = NL80211_CMD_START_SCHED_SCAN,
10576 .doit = nl80211_start_sched_scan,
10577 .policy = nl80211_policy,
10578 .flags = GENL_ADMIN_PERM,
10579 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10580 NL80211_FLAG_NEED_RTNL,
10583 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
10584 .doit = nl80211_stop_sched_scan,
10585 .policy = nl80211_policy,
10586 .flags = GENL_ADMIN_PERM,
10587 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10588 NL80211_FLAG_NEED_RTNL,
10591 .cmd = NL80211_CMD_AUTHENTICATE,
10592 .doit = nl80211_authenticate,
10593 .policy = nl80211_policy,
10594 .flags = GENL_ADMIN_PERM,
10595 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10596 NL80211_FLAG_NEED_RTNL |
10597 NL80211_FLAG_CLEAR_SKB,
10600 .cmd = NL80211_CMD_ASSOCIATE,
10601 .doit = nl80211_associate,
10602 .policy = nl80211_policy,
10603 .flags = GENL_ADMIN_PERM,
10604 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10605 NL80211_FLAG_NEED_RTNL,
10608 .cmd = NL80211_CMD_DEAUTHENTICATE,
10609 .doit = nl80211_deauthenticate,
10610 .policy = nl80211_policy,
10611 .flags = GENL_ADMIN_PERM,
10612 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10613 NL80211_FLAG_NEED_RTNL,
10616 .cmd = NL80211_CMD_DISASSOCIATE,
10617 .doit = nl80211_disassociate,
10618 .policy = nl80211_policy,
10619 .flags = GENL_ADMIN_PERM,
10620 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10621 NL80211_FLAG_NEED_RTNL,
10624 .cmd = NL80211_CMD_JOIN_IBSS,
10625 .doit = nl80211_join_ibss,
10626 .policy = nl80211_policy,
10627 .flags = GENL_ADMIN_PERM,
10628 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10629 NL80211_FLAG_NEED_RTNL,
10632 .cmd = NL80211_CMD_LEAVE_IBSS,
10633 .doit = nl80211_leave_ibss,
10634 .policy = nl80211_policy,
10635 .flags = GENL_ADMIN_PERM,
10636 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10637 NL80211_FLAG_NEED_RTNL,
10639 #ifdef CONFIG_NL80211_TESTMODE
10641 .cmd = NL80211_CMD_TESTMODE,
10642 .doit = nl80211_testmode_do,
10643 .dumpit = nl80211_testmode_dump,
10644 .policy = nl80211_policy,
10645 .flags = GENL_ADMIN_PERM,
10646 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10647 NL80211_FLAG_NEED_RTNL,
10651 .cmd = NL80211_CMD_CONNECT,
10652 .doit = nl80211_connect,
10653 .policy = nl80211_policy,
10654 .flags = GENL_ADMIN_PERM,
10655 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10656 NL80211_FLAG_NEED_RTNL,
10659 .cmd = NL80211_CMD_DISCONNECT,
10660 .doit = nl80211_disconnect,
10661 .policy = nl80211_policy,
10662 .flags = GENL_ADMIN_PERM,
10663 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10664 NL80211_FLAG_NEED_RTNL,
10667 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
10668 .doit = nl80211_wiphy_netns,
10669 .policy = nl80211_policy,
10670 .flags = GENL_ADMIN_PERM,
10671 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10672 NL80211_FLAG_NEED_RTNL,
10675 .cmd = NL80211_CMD_GET_SURVEY,
10676 .policy = nl80211_policy,
10677 .dumpit = nl80211_dump_survey,
10680 .cmd = NL80211_CMD_SET_PMKSA,
10681 .doit = nl80211_setdel_pmksa,
10682 .policy = nl80211_policy,
10683 .flags = GENL_ADMIN_PERM,
10684 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10685 NL80211_FLAG_NEED_RTNL,
10688 .cmd = NL80211_CMD_DEL_PMKSA,
10689 .doit = nl80211_setdel_pmksa,
10690 .policy = nl80211_policy,
10691 .flags = GENL_ADMIN_PERM,
10692 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10693 NL80211_FLAG_NEED_RTNL,
10696 .cmd = NL80211_CMD_FLUSH_PMKSA,
10697 .doit = nl80211_flush_pmksa,
10698 .policy = nl80211_policy,
10699 .flags = GENL_ADMIN_PERM,
10700 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10701 NL80211_FLAG_NEED_RTNL,
10704 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
10705 .doit = nl80211_remain_on_channel,
10706 .policy = nl80211_policy,
10707 .flags = GENL_ADMIN_PERM,
10708 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10709 NL80211_FLAG_NEED_RTNL,
10712 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
10713 .doit = nl80211_cancel_remain_on_channel,
10714 .policy = nl80211_policy,
10715 .flags = GENL_ADMIN_PERM,
10716 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10717 NL80211_FLAG_NEED_RTNL,
10720 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
10721 .doit = nl80211_set_tx_bitrate_mask,
10722 .policy = nl80211_policy,
10723 .flags = GENL_ADMIN_PERM,
10724 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10725 NL80211_FLAG_NEED_RTNL,
10728 .cmd = NL80211_CMD_REGISTER_FRAME,
10729 .doit = nl80211_register_mgmt,
10730 .policy = nl80211_policy,
10731 .flags = GENL_ADMIN_PERM,
10732 .internal_flags = NL80211_FLAG_NEED_WDEV |
10733 NL80211_FLAG_NEED_RTNL,
10736 .cmd = NL80211_CMD_FRAME,
10737 .doit = nl80211_tx_mgmt,
10738 .policy = nl80211_policy,
10739 .flags = GENL_ADMIN_PERM,
10740 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10741 NL80211_FLAG_NEED_RTNL,
10744 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
10745 .doit = nl80211_tx_mgmt_cancel_wait,
10746 .policy = nl80211_policy,
10747 .flags = GENL_ADMIN_PERM,
10748 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10749 NL80211_FLAG_NEED_RTNL,
10752 .cmd = NL80211_CMD_SET_POWER_SAVE,
10753 .doit = nl80211_set_power_save,
10754 .policy = nl80211_policy,
10755 .flags = GENL_ADMIN_PERM,
10756 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10757 NL80211_FLAG_NEED_RTNL,
10760 .cmd = NL80211_CMD_GET_POWER_SAVE,
10761 .doit = nl80211_get_power_save,
10762 .policy = nl80211_policy,
10763 /* can be retrieved by unprivileged users */
10764 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10765 NL80211_FLAG_NEED_RTNL,
10768 .cmd = NL80211_CMD_SET_CQM,
10769 .doit = nl80211_set_cqm,
10770 .policy = nl80211_policy,
10771 .flags = GENL_ADMIN_PERM,
10772 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10773 NL80211_FLAG_NEED_RTNL,
10776 .cmd = NL80211_CMD_SET_CHANNEL,
10777 .doit = nl80211_set_channel,
10778 .policy = nl80211_policy,
10779 .flags = GENL_ADMIN_PERM,
10780 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10781 NL80211_FLAG_NEED_RTNL,
10784 .cmd = NL80211_CMD_SET_WDS_PEER,
10785 .doit = nl80211_set_wds_peer,
10786 .policy = nl80211_policy,
10787 .flags = GENL_ADMIN_PERM,
10788 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10789 NL80211_FLAG_NEED_RTNL,
10792 .cmd = NL80211_CMD_JOIN_MESH,
10793 .doit = nl80211_join_mesh,
10794 .policy = nl80211_policy,
10795 .flags = GENL_ADMIN_PERM,
10796 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10797 NL80211_FLAG_NEED_RTNL,
10800 .cmd = NL80211_CMD_LEAVE_MESH,
10801 .doit = nl80211_leave_mesh,
10802 .policy = nl80211_policy,
10803 .flags = GENL_ADMIN_PERM,
10804 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10805 NL80211_FLAG_NEED_RTNL,
10808 .cmd = NL80211_CMD_JOIN_OCB,
10809 .doit = nl80211_join_ocb,
10810 .policy = nl80211_policy,
10811 .flags = GENL_ADMIN_PERM,
10812 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10813 NL80211_FLAG_NEED_RTNL,
10816 .cmd = NL80211_CMD_LEAVE_OCB,
10817 .doit = nl80211_leave_ocb,
10818 .policy = nl80211_policy,
10819 .flags = GENL_ADMIN_PERM,
10820 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10821 NL80211_FLAG_NEED_RTNL,
10825 .cmd = NL80211_CMD_GET_WOWLAN,
10826 .doit = nl80211_get_wowlan,
10827 .policy = nl80211_policy,
10828 /* can be retrieved by unprivileged users */
10829 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10830 NL80211_FLAG_NEED_RTNL,
10833 .cmd = NL80211_CMD_SET_WOWLAN,
10834 .doit = nl80211_set_wowlan,
10835 .policy = nl80211_policy,
10836 .flags = GENL_ADMIN_PERM,
10837 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10838 NL80211_FLAG_NEED_RTNL,
10842 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
10843 .doit = nl80211_set_rekey_data,
10844 .policy = nl80211_policy,
10845 .flags = GENL_ADMIN_PERM,
10846 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10847 NL80211_FLAG_NEED_RTNL |
10848 NL80211_FLAG_CLEAR_SKB,
10851 .cmd = NL80211_CMD_TDLS_MGMT,
10852 .doit = nl80211_tdls_mgmt,
10853 .policy = nl80211_policy,
10854 .flags = GENL_ADMIN_PERM,
10855 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10856 NL80211_FLAG_NEED_RTNL,
10859 .cmd = NL80211_CMD_TDLS_OPER,
10860 .doit = nl80211_tdls_oper,
10861 .policy = nl80211_policy,
10862 .flags = GENL_ADMIN_PERM,
10863 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10864 NL80211_FLAG_NEED_RTNL,
10867 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
10868 .doit = nl80211_register_unexpected_frame,
10869 .policy = nl80211_policy,
10870 .flags = GENL_ADMIN_PERM,
10871 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10872 NL80211_FLAG_NEED_RTNL,
10875 .cmd = NL80211_CMD_PROBE_CLIENT,
10876 .doit = nl80211_probe_client,
10877 .policy = nl80211_policy,
10878 .flags = GENL_ADMIN_PERM,
10879 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10880 NL80211_FLAG_NEED_RTNL,
10883 .cmd = NL80211_CMD_REGISTER_BEACONS,
10884 .doit = nl80211_register_beacons,
10885 .policy = nl80211_policy,
10886 .flags = GENL_ADMIN_PERM,
10887 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10888 NL80211_FLAG_NEED_RTNL,
10891 .cmd = NL80211_CMD_SET_NOACK_MAP,
10892 .doit = nl80211_set_noack_map,
10893 .policy = nl80211_policy,
10894 .flags = GENL_ADMIN_PERM,
10895 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10896 NL80211_FLAG_NEED_RTNL,
10899 .cmd = NL80211_CMD_START_P2P_DEVICE,
10900 .doit = nl80211_start_p2p_device,
10901 .policy = nl80211_policy,
10902 .flags = GENL_ADMIN_PERM,
10903 .internal_flags = NL80211_FLAG_NEED_WDEV |
10904 NL80211_FLAG_NEED_RTNL,
10907 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
10908 .doit = nl80211_stop_p2p_device,
10909 .policy = nl80211_policy,
10910 .flags = GENL_ADMIN_PERM,
10911 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10912 NL80211_FLAG_NEED_RTNL,
10915 .cmd = NL80211_CMD_SET_MCAST_RATE,
10916 .doit = nl80211_set_mcast_rate,
10917 .policy = nl80211_policy,
10918 .flags = GENL_ADMIN_PERM,
10919 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10920 NL80211_FLAG_NEED_RTNL,
10923 .cmd = NL80211_CMD_SET_MAC_ACL,
10924 .doit = nl80211_set_mac_acl,
10925 .policy = nl80211_policy,
10926 .flags = GENL_ADMIN_PERM,
10927 .internal_flags = NL80211_FLAG_NEED_NETDEV |
10928 NL80211_FLAG_NEED_RTNL,
10931 .cmd = NL80211_CMD_RADAR_DETECT,
10932 .doit = nl80211_start_radar_detection,
10933 .policy = nl80211_policy,
10934 .flags = GENL_ADMIN_PERM,
10935 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10936 NL80211_FLAG_NEED_RTNL,
10939 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
10940 .doit = nl80211_get_protocol_features,
10941 .policy = nl80211_policy,
10944 .cmd = NL80211_CMD_UPDATE_FT_IES,
10945 .doit = nl80211_update_ft_ies,
10946 .policy = nl80211_policy,
10947 .flags = GENL_ADMIN_PERM,
10948 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10949 NL80211_FLAG_NEED_RTNL,
10952 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
10953 .doit = nl80211_crit_protocol_start,
10954 .policy = nl80211_policy,
10955 .flags = GENL_ADMIN_PERM,
10956 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10957 NL80211_FLAG_NEED_RTNL,
10960 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
10961 .doit = nl80211_crit_protocol_stop,
10962 .policy = nl80211_policy,
10963 .flags = GENL_ADMIN_PERM,
10964 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
10965 NL80211_FLAG_NEED_RTNL,
10968 .cmd = NL80211_CMD_GET_COALESCE,
10969 .doit = nl80211_get_coalesce,
10970 .policy = nl80211_policy,
10971 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10972 NL80211_FLAG_NEED_RTNL,
10975 .cmd = NL80211_CMD_SET_COALESCE,
10976 .doit = nl80211_set_coalesce,
10977 .policy = nl80211_policy,
10978 .flags = GENL_ADMIN_PERM,
10979 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10980 NL80211_FLAG_NEED_RTNL,
10983 .cmd = NL80211_CMD_CHANNEL_SWITCH,
10984 .doit = nl80211_channel_switch,
10985 .policy = nl80211_policy,
10986 .flags = GENL_ADMIN_PERM,
10987 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
10988 NL80211_FLAG_NEED_RTNL,
10991 .cmd = NL80211_CMD_VENDOR,
10992 .doit = nl80211_vendor_cmd,
10993 .policy = nl80211_policy,
10994 .flags = GENL_ADMIN_PERM,
10995 .internal_flags = NL80211_FLAG_NEED_WIPHY |
10996 NL80211_FLAG_NEED_RTNL,
10999 .cmd = NL80211_CMD_SET_QOS_MAP,
11000 .doit = nl80211_set_qos_map,
11001 .policy = nl80211_policy,
11002 .flags = GENL_ADMIN_PERM,
11003 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
11004 NL80211_FLAG_NEED_RTNL,
11007 .cmd = NL80211_CMD_ADD_TX_TS,
11008 .doit = nl80211_add_tx_ts,
11009 .policy = nl80211_policy,
11010 .flags = GENL_ADMIN_PERM,
11011 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
11012 NL80211_FLAG_NEED_RTNL,
11015 .cmd = NL80211_CMD_DEL_TX_TS,
11016 .doit = nl80211_del_tx_ts,
11017 .policy = nl80211_policy,
11018 .flags = GENL_ADMIN_PERM,
11019 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
11020 NL80211_FLAG_NEED_RTNL,
11023 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
11024 .doit = nl80211_tdls_channel_switch,
11025 .policy = nl80211_policy,
11026 .flags = GENL_ADMIN_PERM,
11027 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
11028 NL80211_FLAG_NEED_RTNL,
11031 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
11032 .doit = nl80211_tdls_cancel_channel_switch,
11033 .policy = nl80211_policy,
11034 .flags = GENL_ADMIN_PERM,
11035 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
11036 NL80211_FLAG_NEED_RTNL,
11040 /* notification functions */
11042 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
11043 enum nl80211_commands cmd)
11045 struct sk_buff *msg;
11046 struct nl80211_dump_wiphy_state state = {};
11048 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
11049 cmd != NL80211_CMD_DEL_WIPHY);
11051 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11055 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
11060 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11061 NL80211_MCGRP_CONFIG, GFP_KERNEL);
11064 static int nl80211_add_scan_req(struct sk_buff *msg,
11065 struct cfg80211_registered_device *rdev)
11067 struct cfg80211_scan_request *req = rdev->scan_req;
11068 struct nlattr *nest;
11074 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
11076 goto nla_put_failure;
11077 for (i = 0; i < req->n_ssids; i++) {
11078 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
11079 goto nla_put_failure;
11081 nla_nest_end(msg, nest);
11083 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
11085 goto nla_put_failure;
11086 for (i = 0; i < req->n_channels; i++) {
11087 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
11088 goto nla_put_failure;
11090 nla_nest_end(msg, nest);
11093 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
11094 goto nla_put_failure;
11097 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
11098 goto nla_put_failure;
11105 static int nl80211_send_scan_msg(struct sk_buff *msg,
11106 struct cfg80211_registered_device *rdev,
11107 struct wireless_dev *wdev,
11108 u32 portid, u32 seq, int flags,
11113 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
11117 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11118 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11119 wdev->netdev->ifindex)) ||
11120 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
11121 goto nla_put_failure;
11123 /* ignore errors and send incomplete event anyway */
11124 nl80211_add_scan_req(msg, rdev);
11126 genlmsg_end(msg, hdr);
11130 genlmsg_cancel(msg, hdr);
11135 nl80211_send_sched_scan_msg(struct sk_buff *msg,
11136 struct cfg80211_registered_device *rdev,
11137 struct net_device *netdev,
11138 u32 portid, u32 seq, int flags, u32 cmd)
11142 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
11146 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11147 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
11148 goto nla_put_failure;
11150 genlmsg_end(msg, hdr);
11154 genlmsg_cancel(msg, hdr);
11158 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
11159 struct wireless_dev *wdev)
11161 struct sk_buff *msg;
11163 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11167 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
11168 NL80211_CMD_TRIGGER_SCAN) < 0) {
11173 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11174 NL80211_MCGRP_SCAN, GFP_KERNEL);
11177 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
11178 struct wireless_dev *wdev, bool aborted)
11180 struct sk_buff *msg;
11182 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11186 if (nl80211_send_scan_msg(msg, rdev, wdev, 0, 0, 0,
11187 aborted ? NL80211_CMD_SCAN_ABORTED :
11188 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
11196 void nl80211_send_scan_result(struct cfg80211_registered_device *rdev,
11197 struct sk_buff *msg)
11202 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11203 NL80211_MCGRP_SCAN, GFP_KERNEL);
11206 void nl80211_send_sched_scan_results(struct cfg80211_registered_device *rdev,
11207 struct net_device *netdev)
11209 struct sk_buff *msg;
11211 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11215 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0,
11216 NL80211_CMD_SCHED_SCAN_RESULTS) < 0) {
11221 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11222 NL80211_MCGRP_SCAN, GFP_KERNEL);
11225 void nl80211_send_sched_scan(struct cfg80211_registered_device *rdev,
11226 struct net_device *netdev, u32 cmd)
11228 struct sk_buff *msg;
11230 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11234 if (nl80211_send_sched_scan_msg(msg, rdev, netdev, 0, 0, 0, cmd) < 0) {
11239 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11240 NL80211_MCGRP_SCAN, GFP_KERNEL);
11243 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
11244 struct regulatory_request *request)
11246 /* Userspace can always count this one always being set */
11247 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
11248 goto nla_put_failure;
11250 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
11251 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11252 NL80211_REGDOM_TYPE_WORLD))
11253 goto nla_put_failure;
11254 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
11255 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11256 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
11257 goto nla_put_failure;
11258 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
11259 request->intersect) {
11260 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11261 NL80211_REGDOM_TYPE_INTERSECTION))
11262 goto nla_put_failure;
11264 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
11265 NL80211_REGDOM_TYPE_COUNTRY) ||
11266 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
11268 goto nla_put_failure;
11271 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
11272 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
11275 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
11276 goto nla_put_failure;
11279 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
11280 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
11281 goto nla_put_failure;
11291 * This can happen on global regulatory changes or device specific settings
11292 * based on custom regulatory domains.
11294 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
11295 struct regulatory_request *request)
11297 struct sk_buff *msg;
11300 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11304 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
11310 if (nl80211_reg_change_event_fill(msg, request) == false)
11311 goto nla_put_failure;
11313 genlmsg_end(msg, hdr);
11316 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
11317 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
11323 genlmsg_cancel(msg, hdr);
11327 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
11328 struct net_device *netdev,
11329 const u8 *buf, size_t len,
11330 enum nl80211_commands cmd, gfp_t gfp,
11333 struct sk_buff *msg;
11336 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11340 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11346 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11347 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11348 nla_put(msg, NL80211_ATTR_FRAME, len, buf))
11349 goto nla_put_failure;
11351 if (uapsd_queues >= 0) {
11352 struct nlattr *nla_wmm =
11353 nla_nest_start(msg, NL80211_ATTR_STA_WME);
11355 goto nla_put_failure;
11357 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
11359 goto nla_put_failure;
11361 nla_nest_end(msg, nla_wmm);
11364 genlmsg_end(msg, hdr);
11366 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11367 NL80211_MCGRP_MLME, gfp);
11371 genlmsg_cancel(msg, hdr);
11375 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
11376 struct net_device *netdev, const u8 *buf,
11377 size_t len, gfp_t gfp)
11379 nl80211_send_mlme_event(rdev, netdev, buf, len,
11380 NL80211_CMD_AUTHENTICATE, gfp, -1);
11383 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
11384 struct net_device *netdev, const u8 *buf,
11385 size_t len, gfp_t gfp, int uapsd_queues)
11387 nl80211_send_mlme_event(rdev, netdev, buf, len,
11388 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues);
11391 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
11392 struct net_device *netdev, const u8 *buf,
11393 size_t len, gfp_t gfp)
11395 nl80211_send_mlme_event(rdev, netdev, buf, len,
11396 NL80211_CMD_DEAUTHENTICATE, gfp, -1);
11399 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
11400 struct net_device *netdev, const u8 *buf,
11401 size_t len, gfp_t gfp)
11403 nl80211_send_mlme_event(rdev, netdev, buf, len,
11404 NL80211_CMD_DISASSOCIATE, gfp, -1);
11407 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
11410 struct wireless_dev *wdev = dev->ieee80211_ptr;
11411 struct wiphy *wiphy = wdev->wiphy;
11412 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11413 const struct ieee80211_mgmt *mgmt = (void *)buf;
11416 if (WARN_ON(len < 2))
11419 if (ieee80211_is_deauth(mgmt->frame_control))
11420 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
11422 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
11424 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
11425 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1);
11427 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
11429 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
11430 struct net_device *netdev, int cmd,
11431 const u8 *addr, gfp_t gfp)
11433 struct sk_buff *msg;
11436 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11440 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11446 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11447 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11448 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
11449 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
11450 goto nla_put_failure;
11452 genlmsg_end(msg, hdr);
11454 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11455 NL80211_MCGRP_MLME, gfp);
11459 genlmsg_cancel(msg, hdr);
11463 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
11464 struct net_device *netdev, const u8 *addr,
11467 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
11471 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
11472 struct net_device *netdev, const u8 *addr,
11475 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
11479 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
11480 struct net_device *netdev, const u8 *bssid,
11481 const u8 *req_ie, size_t req_ie_len,
11482 const u8 *resp_ie, size_t resp_ie_len,
11483 u16 status, gfp_t gfp)
11485 struct sk_buff *msg;
11488 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11492 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
11498 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11499 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11500 (bssid && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid)) ||
11501 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE, status) ||
11503 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
11505 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
11506 goto nla_put_failure;
11508 genlmsg_end(msg, hdr);
11510 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11511 NL80211_MCGRP_MLME, gfp);
11515 genlmsg_cancel(msg, hdr);
11520 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
11521 struct net_device *netdev, const u8 *bssid,
11522 const u8 *req_ie, size_t req_ie_len,
11523 const u8 *resp_ie, size_t resp_ie_len, gfp_t gfp)
11525 struct sk_buff *msg;
11528 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11532 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
11538 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11539 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11540 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
11542 nla_put(msg, NL80211_ATTR_REQ_IE, req_ie_len, req_ie)) ||
11544 nla_put(msg, NL80211_ATTR_RESP_IE, resp_ie_len, resp_ie)))
11545 goto nla_put_failure;
11547 genlmsg_end(msg, hdr);
11549 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11550 NL80211_MCGRP_MLME, gfp);
11554 genlmsg_cancel(msg, hdr);
11559 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
11560 struct net_device *netdev, u16 reason,
11561 const u8 *ie, size_t ie_len, bool from_ap)
11563 struct sk_buff *msg;
11566 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11570 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
11576 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11577 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11578 (from_ap && reason &&
11579 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
11581 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
11582 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
11583 goto nla_put_failure;
11585 genlmsg_end(msg, hdr);
11587 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11588 NL80211_MCGRP_MLME, GFP_KERNEL);
11592 genlmsg_cancel(msg, hdr);
11597 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
11598 struct net_device *netdev, const u8 *bssid,
11601 struct sk_buff *msg;
11604 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11608 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
11614 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11615 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11616 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
11617 goto nla_put_failure;
11619 genlmsg_end(msg, hdr);
11621 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11622 NL80211_MCGRP_MLME, gfp);
11626 genlmsg_cancel(msg, hdr);
11630 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
11631 const u8* ie, u8 ie_len, gfp_t gfp)
11633 struct wireless_dev *wdev = dev->ieee80211_ptr;
11634 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
11635 struct sk_buff *msg;
11638 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
11641 trace_cfg80211_notify_new_peer_candidate(dev, addr);
11643 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11647 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
11653 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11654 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11655 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
11657 nla_put(msg, NL80211_ATTR_IE, ie_len , ie)))
11658 goto nla_put_failure;
11660 genlmsg_end(msg, hdr);
11662 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11663 NL80211_MCGRP_MLME, gfp);
11667 genlmsg_cancel(msg, hdr);
11670 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
11672 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
11673 struct net_device *netdev, const u8 *addr,
11674 enum nl80211_key_type key_type, int key_id,
11675 const u8 *tsc, gfp_t gfp)
11677 struct sk_buff *msg;
11680 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11684 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
11690 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11691 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
11692 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
11693 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
11695 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
11696 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
11697 goto nla_put_failure;
11699 genlmsg_end(msg, hdr);
11701 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11702 NL80211_MCGRP_MLME, gfp);
11706 genlmsg_cancel(msg, hdr);
11710 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
11711 struct ieee80211_channel *channel_before,
11712 struct ieee80211_channel *channel_after)
11714 struct sk_buff *msg;
11716 struct nlattr *nl_freq;
11718 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
11722 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
11729 * Since we are applying the beacon hint to a wiphy we know its
11730 * wiphy_idx is valid
11732 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
11733 goto nla_put_failure;
11736 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
11738 goto nla_put_failure;
11739 if (nl80211_msg_put_channel(msg, channel_before, false))
11740 goto nla_put_failure;
11741 nla_nest_end(msg, nl_freq);
11744 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
11746 goto nla_put_failure;
11747 if (nl80211_msg_put_channel(msg, channel_after, false))
11748 goto nla_put_failure;
11749 nla_nest_end(msg, nl_freq);
11751 genlmsg_end(msg, hdr);
11754 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
11755 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
11761 genlmsg_cancel(msg, hdr);
11765 static void nl80211_send_remain_on_chan_event(
11766 int cmd, struct cfg80211_registered_device *rdev,
11767 struct wireless_dev *wdev, u64 cookie,
11768 struct ieee80211_channel *chan,
11769 unsigned int duration, gfp_t gfp)
11771 struct sk_buff *msg;
11774 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11778 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11784 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11785 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
11786 wdev->netdev->ifindex)) ||
11787 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
11788 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
11789 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
11790 NL80211_CHAN_NO_HT) ||
11791 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie))
11792 goto nla_put_failure;
11794 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
11795 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
11796 goto nla_put_failure;
11798 genlmsg_end(msg, hdr);
11800 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11801 NL80211_MCGRP_MLME, gfp);
11805 genlmsg_cancel(msg, hdr);
11809 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
11810 struct ieee80211_channel *chan,
11811 unsigned int duration, gfp_t gfp)
11813 struct wiphy *wiphy = wdev->wiphy;
11814 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11816 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
11817 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
11818 rdev, wdev, cookie, chan,
11821 EXPORT_SYMBOL(cfg80211_ready_on_channel);
11823 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
11824 struct ieee80211_channel *chan,
11827 struct wiphy *wiphy = wdev->wiphy;
11828 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11830 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
11831 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
11832 rdev, wdev, cookie, chan, 0, gfp);
11834 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
11836 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
11837 struct station_info *sinfo, gfp_t gfp)
11839 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
11840 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11841 struct sk_buff *msg;
11843 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
11845 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11849 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
11850 rdev, dev, mac_addr, sinfo) < 0) {
11855 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11856 NL80211_MCGRP_MLME, gfp);
11858 EXPORT_SYMBOL(cfg80211_new_sta);
11860 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
11861 struct station_info *sinfo, gfp_t gfp)
11863 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
11864 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11865 struct sk_buff *msg;
11866 struct station_info empty_sinfo = {};
11869 sinfo = &empty_sinfo;
11871 trace_cfg80211_del_sta(dev, mac_addr);
11873 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
11877 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
11878 rdev, dev, mac_addr, sinfo) < 0) {
11883 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11884 NL80211_MCGRP_MLME, gfp);
11886 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
11888 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
11889 enum nl80211_connect_failed_reason reason,
11892 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
11893 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
11894 struct sk_buff *msg;
11897 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
11901 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
11907 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11908 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
11909 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
11910 goto nla_put_failure;
11912 genlmsg_end(msg, hdr);
11914 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
11915 NL80211_MCGRP_MLME, gfp);
11919 genlmsg_cancel(msg, hdr);
11922 EXPORT_SYMBOL(cfg80211_conn_failed);
11924 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
11925 const u8 *addr, gfp_t gfp)
11927 struct wireless_dev *wdev = dev->ieee80211_ptr;
11928 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
11929 struct sk_buff *msg;
11931 u32 nlportid = ACCESS_ONCE(wdev->ap_unexpected_nlportid);
11936 msg = nlmsg_new(100, gfp);
11940 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
11946 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
11947 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
11948 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
11949 goto nla_put_failure;
11951 genlmsg_end(msg, hdr);
11952 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
11956 genlmsg_cancel(msg, hdr);
11961 bool cfg80211_rx_spurious_frame(struct net_device *dev,
11962 const u8 *addr, gfp_t gfp)
11964 struct wireless_dev *wdev = dev->ieee80211_ptr;
11967 trace_cfg80211_rx_spurious_frame(dev, addr);
11969 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
11970 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
11971 trace_cfg80211_return_bool(false);
11974 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
11976 trace_cfg80211_return_bool(ret);
11979 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
11981 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
11982 const u8 *addr, gfp_t gfp)
11984 struct wireless_dev *wdev = dev->ieee80211_ptr;
11987 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
11989 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
11990 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
11991 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
11992 trace_cfg80211_return_bool(false);
11995 ret = __nl80211_unexpected_frame(dev,
11996 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
11998 trace_cfg80211_return_bool(ret);
12001 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
12003 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
12004 struct wireless_dev *wdev, u32 nlportid,
12005 int freq, int sig_dbm,
12006 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
12008 struct net_device *netdev = wdev->netdev;
12009 struct sk_buff *msg;
12012 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12016 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
12022 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12023 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12024 netdev->ifindex)) ||
12025 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
12026 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
12028 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
12029 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
12031 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
12032 goto nla_put_failure;
12034 genlmsg_end(msg, hdr);
12036 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
12039 genlmsg_cancel(msg, hdr);
12044 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
12045 const u8 *buf, size_t len, bool ack, gfp_t gfp)
12047 struct wiphy *wiphy = wdev->wiphy;
12048 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12049 struct net_device *netdev = wdev->netdev;
12050 struct sk_buff *msg;
12053 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
12055 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12059 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
12065 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12066 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12067 netdev->ifindex)) ||
12068 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)) ||
12069 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
12070 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
12071 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
12072 goto nla_put_failure;
12074 genlmsg_end(msg, hdr);
12076 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12077 NL80211_MCGRP_MLME, gfp);
12081 genlmsg_cancel(msg, hdr);
12084 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
12086 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
12087 const char *mac, gfp_t gfp)
12089 struct wireless_dev *wdev = dev->ieee80211_ptr;
12090 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
12091 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12097 cb = (void **)msg->cb;
12099 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
12105 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12106 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
12107 goto nla_put_failure;
12109 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
12110 goto nla_put_failure;
12112 cb[1] = nla_nest_start(msg, NL80211_ATTR_CQM);
12114 goto nla_put_failure;
12124 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
12126 void **cb = (void **)msg->cb;
12127 struct cfg80211_registered_device *rdev = cb[2];
12129 nla_nest_end(msg, cb[1]);
12130 genlmsg_end(msg, cb[0]);
12132 memset(msg->cb, 0, sizeof(msg->cb));
12134 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12135 NL80211_MCGRP_MLME, gfp);
12138 void cfg80211_cqm_rssi_notify(struct net_device *dev,
12139 enum nl80211_cqm_rssi_threshold_event rssi_event,
12142 struct sk_buff *msg;
12144 trace_cfg80211_cqm_rssi_notify(dev, rssi_event);
12146 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
12147 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
12150 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
12154 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
12156 goto nla_put_failure;
12158 cfg80211_send_cqm(msg, gfp);
12165 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
12167 void cfg80211_cqm_txe_notify(struct net_device *dev,
12168 const u8 *peer, u32 num_packets,
12169 u32 rate, u32 intvl, gfp_t gfp)
12171 struct sk_buff *msg;
12173 msg = cfg80211_prepare_cqm(dev, peer, gfp);
12177 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
12178 goto nla_put_failure;
12180 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
12181 goto nla_put_failure;
12183 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
12184 goto nla_put_failure;
12186 cfg80211_send_cqm(msg, gfp);
12192 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
12194 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
12195 const u8 *peer, u32 num_packets, gfp_t gfp)
12197 struct sk_buff *msg;
12199 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
12201 msg = cfg80211_prepare_cqm(dev, peer, gfp);
12205 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
12206 goto nla_put_failure;
12208 cfg80211_send_cqm(msg, gfp);
12214 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
12216 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
12218 struct sk_buff *msg;
12220 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
12224 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
12225 goto nla_put_failure;
12227 cfg80211_send_cqm(msg, gfp);
12233 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
12235 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
12236 struct net_device *netdev, const u8 *bssid,
12237 const u8 *replay_ctr, gfp_t gfp)
12239 struct sk_buff *msg;
12240 struct nlattr *rekey_attr;
12243 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12247 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
12253 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12254 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
12255 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
12256 goto nla_put_failure;
12258 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
12260 goto nla_put_failure;
12262 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
12263 NL80211_REPLAY_CTR_LEN, replay_ctr))
12264 goto nla_put_failure;
12266 nla_nest_end(msg, rekey_attr);
12268 genlmsg_end(msg, hdr);
12270 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12271 NL80211_MCGRP_MLME, gfp);
12275 genlmsg_cancel(msg, hdr);
12279 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
12280 const u8 *replay_ctr, gfp_t gfp)
12282 struct wireless_dev *wdev = dev->ieee80211_ptr;
12283 struct wiphy *wiphy = wdev->wiphy;
12284 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12286 trace_cfg80211_gtk_rekey_notify(dev, bssid);
12287 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
12289 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
12292 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
12293 struct net_device *netdev, int index,
12294 const u8 *bssid, bool preauth, gfp_t gfp)
12296 struct sk_buff *msg;
12297 struct nlattr *attr;
12300 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12304 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
12310 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12311 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
12312 goto nla_put_failure;
12314 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
12316 goto nla_put_failure;
12318 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
12319 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
12321 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
12322 goto nla_put_failure;
12324 nla_nest_end(msg, attr);
12326 genlmsg_end(msg, hdr);
12328 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12329 NL80211_MCGRP_MLME, gfp);
12333 genlmsg_cancel(msg, hdr);
12337 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
12338 const u8 *bssid, bool preauth, gfp_t gfp)
12340 struct wireless_dev *wdev = dev->ieee80211_ptr;
12341 struct wiphy *wiphy = wdev->wiphy;
12342 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12344 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
12345 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
12347 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
12349 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
12350 struct net_device *netdev,
12351 struct cfg80211_chan_def *chandef,
12353 enum nl80211_commands notif,
12356 struct sk_buff *msg;
12359 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12363 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
12369 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
12370 goto nla_put_failure;
12372 if (nl80211_send_chandef(msg, chandef))
12373 goto nla_put_failure;
12375 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
12376 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
12377 goto nla_put_failure;
12379 genlmsg_end(msg, hdr);
12381 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12382 NL80211_MCGRP_MLME, gfp);
12386 genlmsg_cancel(msg, hdr);
12390 void cfg80211_ch_switch_notify(struct net_device *dev,
12391 struct cfg80211_chan_def *chandef)
12393 struct wireless_dev *wdev = dev->ieee80211_ptr;
12394 struct wiphy *wiphy = wdev->wiphy;
12395 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12397 ASSERT_WDEV_LOCK(wdev);
12399 trace_cfg80211_ch_switch_notify(dev, chandef);
12401 wdev->chandef = *chandef;
12402 wdev->preset_chandef = *chandef;
12403 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
12404 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
12406 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
12408 void cfg80211_ch_switch_started_notify(struct net_device *dev,
12409 struct cfg80211_chan_def *chandef,
12412 struct wireless_dev *wdev = dev->ieee80211_ptr;
12413 struct wiphy *wiphy = wdev->wiphy;
12414 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12416 trace_cfg80211_ch_switch_started_notify(dev, chandef);
12418 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
12419 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
12421 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
12424 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
12425 const struct cfg80211_chan_def *chandef,
12426 enum nl80211_radar_event event,
12427 struct net_device *netdev, gfp_t gfp)
12429 struct sk_buff *msg;
12432 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12436 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
12442 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
12443 goto nla_put_failure;
12445 /* NOP and radar events don't need a netdev parameter */
12447 struct wireless_dev *wdev = netdev->ieee80211_ptr;
12449 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
12450 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12451 goto nla_put_failure;
12454 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
12455 goto nla_put_failure;
12457 if (nl80211_send_chandef(msg, chandef))
12458 goto nla_put_failure;
12460 genlmsg_end(msg, hdr);
12462 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12463 NL80211_MCGRP_MLME, gfp);
12467 genlmsg_cancel(msg, hdr);
12471 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
12472 u64 cookie, bool acked, gfp_t gfp)
12474 struct wireless_dev *wdev = dev->ieee80211_ptr;
12475 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
12476 struct sk_buff *msg;
12479 trace_cfg80211_probe_status(dev, addr, cookie, acked);
12481 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12486 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
12492 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12493 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
12494 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
12495 nla_put_u64(msg, NL80211_ATTR_COOKIE, cookie) ||
12496 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)))
12497 goto nla_put_failure;
12499 genlmsg_end(msg, hdr);
12501 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12502 NL80211_MCGRP_MLME, gfp);
12506 genlmsg_cancel(msg, hdr);
12509 EXPORT_SYMBOL(cfg80211_probe_status);
12511 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
12512 const u8 *frame, size_t len,
12513 int freq, int sig_dbm)
12515 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12516 struct sk_buff *msg;
12518 struct cfg80211_beacon_registration *reg;
12520 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
12522 spin_lock_bh(&rdev->beacon_registrations_lock);
12523 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
12524 msg = nlmsg_new(len + 100, GFP_ATOMIC);
12526 spin_unlock_bh(&rdev->beacon_registrations_lock);
12530 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
12532 goto nla_put_failure;
12534 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12536 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
12538 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
12539 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
12540 goto nla_put_failure;
12542 genlmsg_end(msg, hdr);
12544 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
12546 spin_unlock_bh(&rdev->beacon_registrations_lock);
12550 spin_unlock_bh(&rdev->beacon_registrations_lock);
12552 genlmsg_cancel(msg, hdr);
12555 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
12558 static int cfg80211_net_detect_results(struct sk_buff *msg,
12559 struct cfg80211_wowlan_wakeup *wakeup)
12561 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
12562 struct nlattr *nl_results, *nl_match, *nl_freqs;
12565 nl_results = nla_nest_start(
12566 msg, NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
12570 for (i = 0; i < nd->n_matches; i++) {
12571 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
12573 nl_match = nla_nest_start(msg, i);
12577 /* The SSID attribute is optional in nl80211, but for
12578 * simplicity reasons it's always present in the
12579 * cfg80211 structure. If a driver can't pass the
12580 * SSID, that needs to be changed. A zero length SSID
12581 * is still a valid SSID (wildcard), so it cannot be
12582 * used for this purpose.
12584 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
12585 match->ssid.ssid)) {
12586 nla_nest_cancel(msg, nl_match);
12590 if (match->n_channels) {
12591 nl_freqs = nla_nest_start(
12592 msg, NL80211_ATTR_SCAN_FREQUENCIES);
12594 nla_nest_cancel(msg, nl_match);
12598 for (j = 0; j < match->n_channels; j++) {
12599 if (nla_put_u32(msg, j, match->channels[j])) {
12600 nla_nest_cancel(msg, nl_freqs);
12601 nla_nest_cancel(msg, nl_match);
12606 nla_nest_end(msg, nl_freqs);
12609 nla_nest_end(msg, nl_match);
12613 nla_nest_end(msg, nl_results);
12617 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
12618 struct cfg80211_wowlan_wakeup *wakeup,
12621 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
12622 struct sk_buff *msg;
12626 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
12629 size += wakeup->packet_present_len;
12631 msg = nlmsg_new(size, gfp);
12635 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
12639 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12640 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12643 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12644 wdev->netdev->ifindex))
12648 struct nlattr *reasons;
12650 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
12654 if (wakeup->disconnect &&
12655 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
12657 if (wakeup->magic_pkt &&
12658 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
12660 if (wakeup->gtk_rekey_failure &&
12661 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
12663 if (wakeup->eap_identity_req &&
12664 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
12666 if (wakeup->four_way_handshake &&
12667 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
12669 if (wakeup->rfkill_release &&
12670 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
12673 if (wakeup->pattern_idx >= 0 &&
12674 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
12675 wakeup->pattern_idx))
12678 if (wakeup->tcp_match &&
12679 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
12682 if (wakeup->tcp_connlost &&
12683 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
12686 if (wakeup->tcp_nomoretokens &&
12688 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
12691 if (wakeup->packet) {
12692 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
12693 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
12695 if (!wakeup->packet_80211) {
12697 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
12699 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
12702 if (wakeup->packet_len &&
12703 nla_put_u32(msg, len_attr, wakeup->packet_len))
12706 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
12711 if (wakeup->net_detect &&
12712 cfg80211_net_detect_results(msg, wakeup))
12715 nla_nest_end(msg, reasons);
12718 genlmsg_end(msg, hdr);
12720 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12721 NL80211_MCGRP_MLME, gfp);
12727 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
12730 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
12731 enum nl80211_tdls_operation oper,
12732 u16 reason_code, gfp_t gfp)
12734 struct wireless_dev *wdev = dev->ieee80211_ptr;
12735 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
12736 struct sk_buff *msg;
12739 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
12742 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12746 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
12752 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12753 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
12754 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
12755 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
12756 (reason_code > 0 &&
12757 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
12758 goto nla_put_failure;
12760 genlmsg_end(msg, hdr);
12762 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12763 NL80211_MCGRP_MLME, gfp);
12767 genlmsg_cancel(msg, hdr);
12770 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
12772 static int nl80211_netlink_notify(struct notifier_block * nb,
12773 unsigned long state,
12776 struct netlink_notify *notify = _notify;
12777 struct cfg80211_registered_device *rdev;
12778 struct wireless_dev *wdev;
12779 struct cfg80211_beacon_registration *reg, *tmp;
12781 if (state != NETLINK_URELEASE)
12782 return NOTIFY_DONE;
12786 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
12787 bool schedule_destroy_work = false;
12788 bool schedule_scan_stop = false;
12789 struct cfg80211_sched_scan_request *sched_scan_req =
12790 rcu_dereference(rdev->sched_scan_req);
12792 if (sched_scan_req && notify->portid &&
12793 sched_scan_req->owner_nlportid == notify->portid)
12794 schedule_scan_stop = true;
12796 list_for_each_entry_rcu(wdev, &rdev->wdev_list, list) {
12797 cfg80211_mlme_unregister_socket(wdev, notify->portid);
12799 if (wdev->owner_nlportid == notify->portid)
12800 schedule_destroy_work = true;
12803 spin_lock_bh(&rdev->beacon_registrations_lock);
12804 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
12806 if (reg->nlportid == notify->portid) {
12807 list_del(®->list);
12812 spin_unlock_bh(&rdev->beacon_registrations_lock);
12814 if (schedule_destroy_work) {
12815 struct cfg80211_iface_destroy *destroy;
12817 destroy = kzalloc(sizeof(*destroy), GFP_ATOMIC);
12819 destroy->nlportid = notify->portid;
12820 spin_lock(&rdev->destroy_list_lock);
12821 list_add(&destroy->list, &rdev->destroy_list);
12822 spin_unlock(&rdev->destroy_list_lock);
12823 schedule_work(&rdev->destroy_work);
12825 } else if (schedule_scan_stop) {
12826 sched_scan_req->owner_nlportid = 0;
12828 if (rdev->ops->sched_scan_stop &&
12829 rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_SCHED_SCAN)
12830 schedule_work(&rdev->sched_scan_stop_wk);
12837 * It is possible that the user space process that is controlling the
12838 * indoor setting disappeared, so notify the regulatory core.
12840 regulatory_netlink_notify(notify->portid);
12844 static struct notifier_block nl80211_netlink_notifier = {
12845 .notifier_call = nl80211_netlink_notify,
12848 void cfg80211_ft_event(struct net_device *netdev,
12849 struct cfg80211_ft_event_params *ft_event)
12851 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
12852 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12853 struct sk_buff *msg;
12856 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
12858 if (!ft_event->target_ap)
12861 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12865 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
12869 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12870 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
12871 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
12874 if (ft_event->ies &&
12875 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
12877 if (ft_event->ric_ies &&
12878 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
12879 ft_event->ric_ies))
12882 genlmsg_end(msg, hdr);
12884 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
12885 NL80211_MCGRP_MLME, GFP_KERNEL);
12890 EXPORT_SYMBOL(cfg80211_ft_event);
12892 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
12894 struct cfg80211_registered_device *rdev;
12895 struct sk_buff *msg;
12899 rdev = wiphy_to_rdev(wdev->wiphy);
12900 if (!rdev->crit_proto_nlportid)
12903 nlportid = rdev->crit_proto_nlportid;
12904 rdev->crit_proto_nlportid = 0;
12906 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12910 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
12912 goto nla_put_failure;
12914 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12915 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12916 goto nla_put_failure;
12918 genlmsg_end(msg, hdr);
12920 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
12925 genlmsg_cancel(msg, hdr);
12929 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
12931 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
12933 struct wiphy *wiphy = wdev->wiphy;
12934 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12935 struct sk_buff *msg;
12938 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12942 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
12946 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12947 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
12948 nla_put_u64(msg, NL80211_ATTR_WDEV, wdev_id(wdev)))
12951 genlmsg_end(msg, hdr);
12953 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
12954 NL80211_MCGRP_MLME, GFP_KERNEL);
12960 /* initialisation/exit functions */
12962 int nl80211_init(void)
12966 err = genl_register_family_with_ops_groups(&nl80211_fam, nl80211_ops,
12971 err = netlink_register_notifier(&nl80211_netlink_notifier);
12977 genl_unregister_family(&nl80211_fam);
12981 void nl80211_exit(void)
12983 netlink_unregister_notifier(&nl80211_netlink_notifier);
12984 genl_unregister_family(&nl80211_fam);
projects / linux-2.6-block.git / blob