2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright 2013-2014 Intel Mobile Communications GmbH
6 * Copyright 2015-2017 Intel Deutschland GmbH
7 * Copyright (C) 2018 Intel Corporation
11 #include <linux/module.h>
12 #include <linux/err.h>
13 #include <linux/slab.h>
14 #include <linux/list.h>
15 #include <linux/if_ether.h>
16 #include <linux/ieee80211.h>
17 #include <linux/nl80211.h>
18 #include <linux/rtnetlink.h>
19 #include <linux/netlink.h>
20 #include <linux/nospec.h>
21 #include <linux/etherdevice.h>
22 #include <net/net_namespace.h>
23 #include <net/genetlink.h>
24 #include <net/cfg80211.h>
26 #include <net/inet_connection_sock.h>
32 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
33 struct genl_info *info,
34 struct cfg80211_crypto_settings *settings,
37 /* the netlink family */
38 static struct genl_family nl80211_fam;
40 /* multicast groups */
41 enum nl80211_multicast_groups {
44 NL80211_MCGRP_REGULATORY,
48 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
51 static const struct genl_multicast_group nl80211_mcgrps[] = {
52 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
53 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
54 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
55 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
56 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
57 [NL80211_MCGRP_NAN] = { .name = NL80211_MULTICAST_GROUP_NAN },
58 #ifdef CONFIG_NL80211_TESTMODE
59 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
63 /* returns ERR_PTR values */
64 static struct wireless_dev *
65 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
67 struct cfg80211_registered_device *rdev;
68 struct wireless_dev *result = NULL;
69 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
70 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
77 if (!have_ifidx && !have_wdev_id)
78 return ERR_PTR(-EINVAL);
81 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
83 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
84 wiphy_idx = wdev_id >> 32;
87 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
88 struct wireless_dev *wdev;
90 if (wiphy_net(&rdev->wiphy) != netns)
93 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
96 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
97 if (have_ifidx && wdev->netdev &&
98 wdev->netdev->ifindex == ifidx) {
102 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
114 return ERR_PTR(-ENODEV);
117 static struct cfg80211_registered_device *
118 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
120 struct cfg80211_registered_device *rdev = NULL, *tmp;
121 struct net_device *netdev;
125 if (!attrs[NL80211_ATTR_WIPHY] &&
126 !attrs[NL80211_ATTR_IFINDEX] &&
127 !attrs[NL80211_ATTR_WDEV])
128 return ERR_PTR(-EINVAL);
130 if (attrs[NL80211_ATTR_WIPHY])
131 rdev = cfg80211_rdev_by_wiphy_idx(
132 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
134 if (attrs[NL80211_ATTR_WDEV]) {
135 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
136 struct wireless_dev *wdev;
139 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
141 /* make sure wdev exists */
142 list_for_each_entry(wdev, &tmp->wiphy.wdev_list, list) {
143 if (wdev->identifier != (u32)wdev_id)
152 if (rdev && tmp != rdev)
153 return ERR_PTR(-EINVAL);
158 if (attrs[NL80211_ATTR_IFINDEX]) {
159 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
161 netdev = __dev_get_by_index(netns, ifindex);
163 if (netdev->ieee80211_ptr)
165 netdev->ieee80211_ptr->wiphy);
169 /* not wireless device -- return error */
171 return ERR_PTR(-EINVAL);
173 /* mismatch -- return error */
174 if (rdev && tmp != rdev)
175 return ERR_PTR(-EINVAL);
182 return ERR_PTR(-ENODEV);
184 if (netns != wiphy_net(&rdev->wiphy))
185 return ERR_PTR(-ENODEV);
191 * This function returns a pointer to the driver
192 * that the genl_info item that is passed refers to.
194 * The result of this can be a PTR_ERR and hence must
195 * be checked with IS_ERR() for errors.
197 static struct cfg80211_registered_device *
198 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
200 return __cfg80211_rdev_from_attrs(netns, info->attrs);
203 /* policy for the attributes */
204 static const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
205 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
206 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
208 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
210 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
211 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
212 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
213 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
214 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
216 [NL80211_ATTR_WIPHY_RETRY_SHORT] = { .type = NLA_U8 },
217 [NL80211_ATTR_WIPHY_RETRY_LONG] = { .type = NLA_U8 },
218 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
219 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
220 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
221 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
223 [NL80211_ATTR_IFTYPE] = { .type = NLA_U32 },
224 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
225 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
227 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
228 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
230 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
231 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
232 .len = WLAN_MAX_KEY_LEN },
233 [NL80211_ATTR_KEY_IDX] = { .type = NLA_U8 },
234 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
235 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
236 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
237 [NL80211_ATTR_KEY_TYPE] = { .type = NLA_U32 },
239 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
240 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
241 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
242 .len = IEEE80211_MAX_DATA_LEN },
243 [NL80211_ATTR_BEACON_TAIL] = { .type = NLA_BINARY,
244 .len = IEEE80211_MAX_DATA_LEN },
245 [NL80211_ATTR_STA_AID] = { .type = NLA_U16 },
246 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
247 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
248 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
249 .len = NL80211_MAX_SUPP_RATES },
250 [NL80211_ATTR_STA_PLINK_ACTION] = { .type = NLA_U8 },
251 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
252 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
253 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
254 .len = IEEE80211_MAX_MESH_ID_LEN },
255 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
257 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
258 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
260 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
261 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
262 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
263 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
264 .len = NL80211_MAX_SUPP_RATES },
265 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
267 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
268 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
270 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
272 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
273 [NL80211_ATTR_IE] = { .type = NLA_BINARY,
274 .len = IEEE80211_MAX_DATA_LEN },
275 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
276 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
278 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
279 .len = IEEE80211_MAX_SSID_LEN },
280 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
281 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
282 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
283 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
284 [NL80211_ATTR_USE_MFP] = { .type = NLA_U32 },
285 [NL80211_ATTR_STA_FLAGS2] = {
286 .len = sizeof(struct nl80211_sta_flag_update),
288 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
289 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
290 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
291 [NL80211_ATTR_CONTROL_PORT_OVER_NL80211] = { .type = NLA_FLAG },
292 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
293 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
294 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
295 [NL80211_ATTR_PID] = { .type = NLA_U32 },
296 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
297 [NL80211_ATTR_PMKID] = { .len = WLAN_PMKID_LEN },
298 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
299 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
300 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
301 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
302 .len = IEEE80211_MAX_DATA_LEN },
303 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
304 [NL80211_ATTR_PS_STATE] = { .type = NLA_U32 },
305 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
306 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
307 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
308 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
309 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
310 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
311 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
312 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
313 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
314 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
315 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
316 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
317 [NL80211_ATTR_STA_PLINK_STATE] = { .type = NLA_U8 },
318 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
319 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
320 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
321 [NL80211_ATTR_HIDDEN_SSID] = { .type = NLA_U32 },
322 [NL80211_ATTR_IE_PROBE_RESP] = { .type = NLA_BINARY,
323 .len = IEEE80211_MAX_DATA_LEN },
324 [NL80211_ATTR_IE_ASSOC_RESP] = { .type = NLA_BINARY,
325 .len = IEEE80211_MAX_DATA_LEN },
326 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
327 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
328 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
329 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
330 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
331 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
332 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
333 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
334 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
335 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
336 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
337 .len = IEEE80211_MAX_DATA_LEN },
338 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
339 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
340 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
341 .len = NL80211_HT_CAPABILITY_LEN
343 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
344 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
345 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
346 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
347 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
348 [NL80211_ATTR_AUTH_DATA] = { .type = NLA_BINARY, },
349 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
350 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
351 [NL80211_ATTR_P2P_CTWINDOW] = { .type = NLA_U8 },
352 [NL80211_ATTR_P2P_OPPPS] = { .type = NLA_U8 },
353 [NL80211_ATTR_LOCAL_MESH_POWER_MODE] = {. type = NLA_U32 },
354 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
355 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
356 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
357 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
358 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
359 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
360 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
361 .len = NL80211_VHT_CAPABILITY_LEN,
363 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
364 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
365 .len = IEEE80211_MAX_DATA_LEN },
366 [NL80211_ATTR_PEER_AID] = { .type = NLA_U16 },
367 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
368 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
369 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
370 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
371 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
372 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
373 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
374 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
375 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
376 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
377 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
378 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
379 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
380 .len = IEEE80211_QOS_MAP_LEN_MAX },
381 [NL80211_ATTR_MAC_HINT] = { .len = ETH_ALEN },
382 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
383 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
384 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
385 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
386 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
387 [NL80211_ATTR_TSID] = { .type = NLA_U8 },
388 [NL80211_ATTR_USER_PRIO] = { .type = NLA_U8 },
389 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
390 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
391 [NL80211_ATTR_MAC_MASK] = { .len = ETH_ALEN },
392 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
393 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
394 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
395 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
396 [NL80211_ATTR_PBSS] = { .type = NLA_FLAG },
397 [NL80211_ATTR_BSS_SELECT] = { .type = NLA_NESTED },
398 [NL80211_ATTR_STA_SUPPORT_P2P_PS] = { .type = NLA_U8 },
399 [NL80211_ATTR_MU_MIMO_GROUP_DATA] = {
400 .len = VHT_MUMIMO_GROUPS_DATA_LEN
402 [NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR] = { .len = ETH_ALEN },
403 [NL80211_ATTR_NAN_MASTER_PREF] = { .type = NLA_U8 },
404 [NL80211_ATTR_BANDS] = { .type = NLA_U32 },
405 [NL80211_ATTR_NAN_FUNC] = { .type = NLA_NESTED },
406 [NL80211_ATTR_FILS_KEK] = { .type = NLA_BINARY,
407 .len = FILS_MAX_KEK_LEN },
408 [NL80211_ATTR_FILS_NONCES] = { .len = 2 * FILS_NONCE_LEN },
409 [NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED] = { .type = NLA_FLAG, },
410 [NL80211_ATTR_BSSID] = { .len = ETH_ALEN },
411 [NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] = { .type = NLA_S8 },
412 [NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST] = {
413 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
415 [NL80211_ATTR_TIMEOUT_REASON] = { .type = NLA_U32 },
416 [NL80211_ATTR_FILS_ERP_USERNAME] = { .type = NLA_BINARY,
417 .len = FILS_ERP_MAX_USERNAME_LEN },
418 [NL80211_ATTR_FILS_ERP_REALM] = { .type = NLA_BINARY,
419 .len = FILS_ERP_MAX_REALM_LEN },
420 [NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] = { .type = NLA_U16 },
421 [NL80211_ATTR_FILS_ERP_RRK] = { .type = NLA_BINARY,
422 .len = FILS_ERP_MAX_RRK_LEN },
423 [NL80211_ATTR_FILS_CACHE_ID] = { .len = 2 },
424 [NL80211_ATTR_PMK] = { .type = NLA_BINARY, .len = PMK_MAX_LEN },
425 [NL80211_ATTR_SCHED_SCAN_MULTI] = { .type = NLA_FLAG },
426 [NL80211_ATTR_EXTERNAL_AUTH_SUPPORT] = { .type = NLA_FLAG },
428 [NL80211_ATTR_TXQ_LIMIT] = { .type = NLA_U32 },
429 [NL80211_ATTR_TXQ_MEMORY_LIMIT] = { .type = NLA_U32 },
430 [NL80211_ATTR_TXQ_QUANTUM] = { .type = NLA_U32 },
431 [NL80211_ATTR_HE_CAPABILITY] = { .type = NLA_BINARY,
432 .len = NL80211_HE_MAX_CAPABILITY_LEN },
435 /* policy for the key attributes */
436 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
437 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
438 [NL80211_KEY_IDX] = { .type = NLA_U8 },
439 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
440 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
441 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
442 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
443 [NL80211_KEY_TYPE] = { .type = NLA_U32 },
444 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
447 /* policy for the key default flags */
448 static const struct nla_policy
449 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
450 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
451 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
455 /* policy for WoWLAN attributes */
456 static const struct nla_policy
457 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
458 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
459 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
460 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
461 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
462 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
463 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
464 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
465 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
466 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
467 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
470 static const struct nla_policy
471 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
472 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
473 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
474 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
475 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
476 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
477 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
478 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
479 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
481 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
482 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
484 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
485 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
486 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
488 #endif /* CONFIG_PM */
490 /* policy for coalesce rule attributes */
491 static const struct nla_policy
492 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
493 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
494 [NL80211_ATTR_COALESCE_RULE_CONDITION] = { .type = NLA_U32 },
495 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
498 /* policy for GTK rekey offload attributes */
499 static const struct nla_policy
500 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
501 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
502 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
503 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
506 static const struct nla_policy
507 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
508 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
509 .len = IEEE80211_MAX_SSID_LEN },
510 [NL80211_SCHED_SCAN_MATCH_ATTR_BSSID] = { .len = ETH_ALEN },
511 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
514 static const struct nla_policy
515 nl80211_plan_policy[NL80211_SCHED_SCAN_PLAN_MAX + 1] = {
516 [NL80211_SCHED_SCAN_PLAN_INTERVAL] = { .type = NLA_U32 },
517 [NL80211_SCHED_SCAN_PLAN_ITERATIONS] = { .type = NLA_U32 },
520 static const struct nla_policy
521 nl80211_bss_select_policy[NL80211_BSS_SELECT_ATTR_MAX + 1] = {
522 [NL80211_BSS_SELECT_ATTR_RSSI] = { .type = NLA_FLAG },
523 [NL80211_BSS_SELECT_ATTR_BAND_PREF] = { .type = NLA_U32 },
524 [NL80211_BSS_SELECT_ATTR_RSSI_ADJUST] = {
525 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
529 /* policy for NAN function attributes */
530 static const struct nla_policy
531 nl80211_nan_func_policy[NL80211_NAN_FUNC_ATTR_MAX + 1] = {
532 [NL80211_NAN_FUNC_TYPE] = { .type = NLA_U8 },
533 [NL80211_NAN_FUNC_SERVICE_ID] = {
534 .len = NL80211_NAN_FUNC_SERVICE_ID_LEN },
535 [NL80211_NAN_FUNC_PUBLISH_TYPE] = { .type = NLA_U8 },
536 [NL80211_NAN_FUNC_PUBLISH_BCAST] = { .type = NLA_FLAG },
537 [NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE] = { .type = NLA_FLAG },
538 [NL80211_NAN_FUNC_FOLLOW_UP_ID] = { .type = NLA_U8 },
539 [NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] = { .type = NLA_U8 },
540 [NL80211_NAN_FUNC_FOLLOW_UP_DEST] = { .len = ETH_ALEN },
541 [NL80211_NAN_FUNC_CLOSE_RANGE] = { .type = NLA_FLAG },
542 [NL80211_NAN_FUNC_TTL] = { .type = NLA_U32 },
543 [NL80211_NAN_FUNC_SERVICE_INFO] = { .type = NLA_BINARY,
544 .len = NL80211_NAN_FUNC_SERVICE_SPEC_INFO_MAX_LEN },
545 [NL80211_NAN_FUNC_SRF] = { .type = NLA_NESTED },
546 [NL80211_NAN_FUNC_RX_MATCH_FILTER] = { .type = NLA_NESTED },
547 [NL80211_NAN_FUNC_TX_MATCH_FILTER] = { .type = NLA_NESTED },
548 [NL80211_NAN_FUNC_INSTANCE_ID] = { .type = NLA_U8 },
549 [NL80211_NAN_FUNC_TERM_REASON] = { .type = NLA_U8 },
552 /* policy for Service Response Filter attributes */
553 static const struct nla_policy
554 nl80211_nan_srf_policy[NL80211_NAN_SRF_ATTR_MAX + 1] = {
555 [NL80211_NAN_SRF_INCLUDE] = { .type = NLA_FLAG },
556 [NL80211_NAN_SRF_BF] = { .type = NLA_BINARY,
557 .len = NL80211_NAN_FUNC_SRF_MAX_LEN },
558 [NL80211_NAN_SRF_BF_IDX] = { .type = NLA_U8 },
559 [NL80211_NAN_SRF_MAC_ADDRS] = { .type = NLA_NESTED },
562 /* policy for packet pattern attributes */
563 static const struct nla_policy
564 nl80211_packet_pattern_policy[MAX_NL80211_PKTPAT + 1] = {
565 [NL80211_PKTPAT_MASK] = { .type = NLA_BINARY, },
566 [NL80211_PKTPAT_PATTERN] = { .type = NLA_BINARY, },
567 [NL80211_PKTPAT_OFFSET] = { .type = NLA_U32 },
570 static int nl80211_prepare_wdev_dump(struct sk_buff *skb,
571 struct netlink_callback *cb,
572 struct cfg80211_registered_device **rdev,
573 struct wireless_dev **wdev)
578 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
579 genl_family_attrbuf(&nl80211_fam),
580 nl80211_fam.maxattr, nl80211_policy, NULL);
584 *wdev = __cfg80211_wdev_from_attrs(
586 genl_family_attrbuf(&nl80211_fam));
588 return PTR_ERR(*wdev);
589 *rdev = wiphy_to_rdev((*wdev)->wiphy);
590 /* 0 is the first index - add 1 to parse only once */
591 cb->args[0] = (*rdev)->wiphy_idx + 1;
592 cb->args[1] = (*wdev)->identifier;
594 /* subtract the 1 again here */
595 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
596 struct wireless_dev *tmp;
600 *rdev = wiphy_to_rdev(wiphy);
603 list_for_each_entry(tmp, &(*rdev)->wiphy.wdev_list, list) {
604 if (tmp->identifier == cb->args[1]) {
618 static bool is_valid_ie_attr(const struct nlattr *attr)
626 pos = nla_data(attr);
647 /* message building helper */
648 static inline void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
651 /* since there is no private header just add the generic one */
652 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
655 static int nl80211_msg_put_wmm_rules(struct sk_buff *msg,
656 const struct ieee80211_reg_rule *rule)
659 struct nlattr *nl_wmm_rules =
660 nla_nest_start(msg, NL80211_FREQUENCY_ATTR_WMM);
663 goto nla_put_failure;
665 for (j = 0; j < IEEE80211_NUM_ACS; j++) {
666 struct nlattr *nl_wmm_rule = nla_nest_start(msg, j);
669 goto nla_put_failure;
671 if (nla_put_u16(msg, NL80211_WMMR_CW_MIN,
672 rule->wmm_rule.client[j].cw_min) ||
673 nla_put_u16(msg, NL80211_WMMR_CW_MAX,
674 rule->wmm_rule.client[j].cw_max) ||
675 nla_put_u8(msg, NL80211_WMMR_AIFSN,
676 rule->wmm_rule.client[j].aifsn) ||
677 nla_put_u16(msg, NL80211_WMMR_TXOP,
678 rule->wmm_rule.client[j].cot))
679 goto nla_put_failure;
681 nla_nest_end(msg, nl_wmm_rule);
683 nla_nest_end(msg, nl_wmm_rules);
691 static int nl80211_msg_put_channel(struct sk_buff *msg, struct wiphy *wiphy,
692 struct ieee80211_channel *chan,
695 /* Some channels must be completely excluded from the
696 * list to protect old user-space tools from breaking
698 if (!large && chan->flags &
699 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
702 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
704 goto nla_put_failure;
706 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
707 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
708 goto nla_put_failure;
709 if (chan->flags & IEEE80211_CHAN_NO_IR) {
710 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
711 goto nla_put_failure;
712 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
713 goto nla_put_failure;
715 if (chan->flags & IEEE80211_CHAN_RADAR) {
716 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
717 goto nla_put_failure;
721 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
723 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
725 goto nla_put_failure;
726 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
728 goto nla_put_failure;
730 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
732 goto nla_put_failure;
737 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
738 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
739 goto nla_put_failure;
740 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
741 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
742 goto nla_put_failure;
743 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
744 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
745 goto nla_put_failure;
746 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
747 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
748 goto nla_put_failure;
749 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
750 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
751 goto nla_put_failure;
752 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
753 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
754 goto nla_put_failure;
755 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
756 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
757 goto nla_put_failure;
758 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
759 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
760 goto nla_put_failure;
763 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
764 DBM_TO_MBM(chan->max_power)))
765 goto nla_put_failure;
768 const struct ieee80211_reg_rule *rule =
769 freq_reg_info(wiphy, MHZ_TO_KHZ(chan->center_freq));
771 if (!IS_ERR_OR_NULL(rule) && rule->has_wmm) {
772 if (nl80211_msg_put_wmm_rules(msg, rule))
773 goto nla_put_failure;
783 static bool nl80211_put_txq_stats(struct sk_buff *msg,
784 struct cfg80211_txq_stats *txqstats,
787 struct nlattr *txqattr;
789 #define PUT_TXQVAL_U32(attr, memb) do { \
790 if (txqstats->filled & BIT(NL80211_TXQ_STATS_ ## attr) && \
791 nla_put_u32(msg, NL80211_TXQ_STATS_ ## attr, txqstats->memb)) \
795 txqattr = nla_nest_start(msg, attrtype);
799 PUT_TXQVAL_U32(BACKLOG_BYTES, backlog_bytes);
800 PUT_TXQVAL_U32(BACKLOG_PACKETS, backlog_packets);
801 PUT_TXQVAL_U32(FLOWS, flows);
802 PUT_TXQVAL_U32(DROPS, drops);
803 PUT_TXQVAL_U32(ECN_MARKS, ecn_marks);
804 PUT_TXQVAL_U32(OVERLIMIT, overlimit);
805 PUT_TXQVAL_U32(OVERMEMORY, overmemory);
806 PUT_TXQVAL_U32(COLLISIONS, collisions);
807 PUT_TXQVAL_U32(TX_BYTES, tx_bytes);
808 PUT_TXQVAL_U32(TX_PACKETS, tx_packets);
809 PUT_TXQVAL_U32(MAX_FLOWS, max_flows);
810 nla_nest_end(msg, txqattr);
812 #undef PUT_TXQVAL_U32
816 /* netlink command implementations */
823 bool def_uni, def_multi;
826 static int nl80211_parse_key_new(struct genl_info *info, struct nlattr *key,
829 struct nlattr *tb[NL80211_KEY_MAX + 1];
830 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
831 nl80211_key_policy, info->extack);
835 k->def = !!tb[NL80211_KEY_DEFAULT];
836 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
845 if (tb[NL80211_KEY_IDX])
846 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
848 if (tb[NL80211_KEY_DATA]) {
849 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
850 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
853 if (tb[NL80211_KEY_SEQ]) {
854 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
855 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
858 if (tb[NL80211_KEY_CIPHER])
859 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
861 if (tb[NL80211_KEY_TYPE]) {
862 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
863 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES)
864 return genl_err_attr(info, -EINVAL,
865 tb[NL80211_KEY_TYPE]);
868 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
869 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
871 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
872 tb[NL80211_KEY_DEFAULT_TYPES],
873 nl80211_key_default_policy,
878 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
879 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
885 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
887 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
888 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
889 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
892 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
893 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
894 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
897 if (info->attrs[NL80211_ATTR_KEY_IDX])
898 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
900 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
901 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
903 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
904 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
913 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
914 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
915 if (k->type < 0 || k->type >= NUM_NL80211_KEYTYPES) {
916 GENL_SET_ERR_MSG(info, "key type out of range");
921 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
922 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
923 int err = nla_parse_nested(kdt,
924 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
925 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
926 nl80211_key_default_policy,
931 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
932 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
938 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
942 memset(k, 0, sizeof(*k));
946 if (info->attrs[NL80211_ATTR_KEY])
947 err = nl80211_parse_key_new(info, info->attrs[NL80211_ATTR_KEY], k);
949 err = nl80211_parse_key_old(info, k);
954 if (k->def && k->defmgmt) {
955 GENL_SET_ERR_MSG(info, "key with def && defmgmt is invalid");
960 if (k->def_uni || !k->def_multi) {
961 GENL_SET_ERR_MSG(info, "defmgmt key must be mcast");
968 if (k->idx < 4 || k->idx > 5) {
969 GENL_SET_ERR_MSG(info,
970 "defmgmt key idx not 4 or 5");
974 if (k->idx < 0 || k->idx > 3) {
975 GENL_SET_ERR_MSG(info, "def key idx not 0-3");
979 if (k->idx < 0 || k->idx > 5) {
980 GENL_SET_ERR_MSG(info, "key idx not 0-5");
989 static struct cfg80211_cached_keys *
990 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
991 struct genl_info *info, bool *no_ht)
993 struct nlattr *keys = info->attrs[NL80211_ATTR_KEYS];
994 struct key_parse parse;
996 struct cfg80211_cached_keys *result;
997 int rem, err, def = 0;
998 bool have_key = false;
1000 nla_for_each_nested(key, keys, rem) {
1008 result = kzalloc(sizeof(*result), GFP_KERNEL);
1010 return ERR_PTR(-ENOMEM);
1014 nla_for_each_nested(key, keys, rem) {
1015 memset(&parse, 0, sizeof(parse));
1018 err = nl80211_parse_key_new(info, key, &parse);
1024 if (parse.idx < 0 || parse.idx > 3) {
1025 GENL_SET_ERR_MSG(info, "key index out of range [0-3]");
1030 GENL_SET_ERR_MSG(info,
1031 "only one key can be default");
1035 result->def = parse.idx;
1036 if (!parse.def_uni || !parse.def_multi)
1038 } else if (parse.defmgmt)
1040 err = cfg80211_validate_key_settings(rdev, &parse.p,
1041 parse.idx, false, NULL);
1044 if (parse.p.cipher != WLAN_CIPHER_SUITE_WEP40 &&
1045 parse.p.cipher != WLAN_CIPHER_SUITE_WEP104) {
1046 GENL_SET_ERR_MSG(info, "connect key must be WEP");
1050 result->params[parse.idx].cipher = parse.p.cipher;
1051 result->params[parse.idx].key_len = parse.p.key_len;
1052 result->params[parse.idx].key = result->data[parse.idx];
1053 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
1055 /* must be WEP key if we got here */
1060 if (result->def < 0) {
1062 GENL_SET_ERR_MSG(info, "need a default/TX key");
1069 return ERR_PTR(err);
1072 static int nl80211_key_allowed(struct wireless_dev *wdev)
1074 ASSERT_WDEV_LOCK(wdev);
1076 switch (wdev->iftype) {
1077 case NL80211_IFTYPE_AP:
1078 case NL80211_IFTYPE_AP_VLAN:
1079 case NL80211_IFTYPE_P2P_GO:
1080 case NL80211_IFTYPE_MESH_POINT:
1082 case NL80211_IFTYPE_ADHOC:
1083 case NL80211_IFTYPE_STATION:
1084 case NL80211_IFTYPE_P2P_CLIENT:
1085 if (!wdev->current_bss)
1088 case NL80211_IFTYPE_UNSPECIFIED:
1089 case NL80211_IFTYPE_OCB:
1090 case NL80211_IFTYPE_MONITOR:
1091 case NL80211_IFTYPE_NAN:
1092 case NL80211_IFTYPE_P2P_DEVICE:
1093 case NL80211_IFTYPE_WDS:
1094 case NUM_NL80211_IFTYPES:
1101 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
1104 struct ieee80211_channel *chan;
1108 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
1109 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
1114 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
1116 struct nlattr *nl_modes = nla_nest_start(msg, attr);
1120 goto nla_put_failure;
1124 if ((ifmodes & 1) && nla_put_flag(msg, i))
1125 goto nla_put_failure;
1130 nla_nest_end(msg, nl_modes);
1137 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
1138 struct sk_buff *msg,
1141 struct nlattr *nl_combis;
1144 nl_combis = nla_nest_start(msg,
1145 NL80211_ATTR_INTERFACE_COMBINATIONS);
1147 goto nla_put_failure;
1149 for (i = 0; i < wiphy->n_iface_combinations; i++) {
1150 const struct ieee80211_iface_combination *c;
1151 struct nlattr *nl_combi, *nl_limits;
1153 c = &wiphy->iface_combinations[i];
1155 nl_combi = nla_nest_start(msg, i + 1);
1157 goto nla_put_failure;
1159 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
1161 goto nla_put_failure;
1163 for (j = 0; j < c->n_limits; j++) {
1164 struct nlattr *nl_limit;
1166 nl_limit = nla_nest_start(msg, j + 1);
1168 goto nla_put_failure;
1169 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
1171 goto nla_put_failure;
1172 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
1173 c->limits[j].types))
1174 goto nla_put_failure;
1175 nla_nest_end(msg, nl_limit);
1178 nla_nest_end(msg, nl_limits);
1180 if (c->beacon_int_infra_match &&
1181 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
1182 goto nla_put_failure;
1183 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
1184 c->num_different_channels) ||
1185 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
1187 goto nla_put_failure;
1189 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
1190 c->radar_detect_widths) ||
1191 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
1192 c->radar_detect_regions)))
1193 goto nla_put_failure;
1194 if (c->beacon_int_min_gcd &&
1195 nla_put_u32(msg, NL80211_IFACE_COMB_BI_MIN_GCD,
1196 c->beacon_int_min_gcd))
1197 goto nla_put_failure;
1199 nla_nest_end(msg, nl_combi);
1202 nla_nest_end(msg, nl_combis);
1210 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1211 struct sk_buff *msg)
1213 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1214 struct nlattr *nl_tcp;
1219 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1223 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1224 tcp->data_payload_max))
1227 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1228 tcp->data_payload_max))
1231 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1234 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1235 sizeof(*tcp->tok), tcp->tok))
1238 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1239 tcp->data_interval_max))
1242 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1243 tcp->wake_payload_max))
1246 nla_nest_end(msg, nl_tcp);
1250 static int nl80211_send_wowlan(struct sk_buff *msg,
1251 struct cfg80211_registered_device *rdev,
1254 struct nlattr *nl_wowlan;
1256 if (!rdev->wiphy.wowlan)
1259 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1263 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1264 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1265 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1266 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1267 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1268 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1269 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1270 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1271 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1272 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1273 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1274 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1275 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1276 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1277 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1278 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1281 if (rdev->wiphy.wowlan->n_patterns) {
1282 struct nl80211_pattern_support pat = {
1283 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1284 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1285 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1286 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1289 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1294 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1295 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1296 rdev->wiphy.wowlan->max_nd_match_sets))
1299 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1302 nla_nest_end(msg, nl_wowlan);
1308 static int nl80211_send_coalesce(struct sk_buff *msg,
1309 struct cfg80211_registered_device *rdev)
1311 struct nl80211_coalesce_rule_support rule;
1313 if (!rdev->wiphy.coalesce)
1316 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1317 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1318 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1319 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1320 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1321 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1323 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1330 nl80211_send_iftype_data(struct sk_buff *msg,
1331 const struct ieee80211_sband_iftype_data *iftdata)
1333 const struct ieee80211_sta_he_cap *he_cap = &iftdata->he_cap;
1335 if (nl80211_put_iftypes(msg, NL80211_BAND_IFTYPE_ATTR_IFTYPES,
1336 iftdata->types_mask))
1339 if (he_cap->has_he) {
1340 if (nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MAC,
1341 sizeof(he_cap->he_cap_elem.mac_cap_info),
1342 he_cap->he_cap_elem.mac_cap_info) ||
1343 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PHY,
1344 sizeof(he_cap->he_cap_elem.phy_cap_info),
1345 he_cap->he_cap_elem.phy_cap_info) ||
1346 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MCS_SET,
1347 sizeof(he_cap->he_mcs_nss_supp),
1348 &he_cap->he_mcs_nss_supp) ||
1349 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PPE,
1350 sizeof(he_cap->ppe_thres), he_cap->ppe_thres))
1357 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1358 struct ieee80211_supported_band *sband)
1360 struct nlattr *nl_rates, *nl_rate;
1361 struct ieee80211_rate *rate;
1365 if (sband->ht_cap.ht_supported &&
1366 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1367 sizeof(sband->ht_cap.mcs),
1368 &sband->ht_cap.mcs) ||
1369 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1370 sband->ht_cap.cap) ||
1371 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1372 sband->ht_cap.ampdu_factor) ||
1373 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1374 sband->ht_cap.ampdu_density)))
1378 if (sband->vht_cap.vht_supported &&
1379 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1380 sizeof(sband->vht_cap.vht_mcs),
1381 &sband->vht_cap.vht_mcs) ||
1382 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1383 sband->vht_cap.cap)))
1386 if (sband->n_iftype_data) {
1387 struct nlattr *nl_iftype_data =
1388 nla_nest_start(msg, NL80211_BAND_ATTR_IFTYPE_DATA);
1391 if (!nl_iftype_data)
1394 for (i = 0; i < sband->n_iftype_data; i++) {
1395 struct nlattr *iftdata;
1397 iftdata = nla_nest_start(msg, i + 1);
1401 err = nl80211_send_iftype_data(msg,
1402 &sband->iftype_data[i]);
1406 nla_nest_end(msg, iftdata);
1409 nla_nest_end(msg, nl_iftype_data);
1413 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1417 for (i = 0; i < sband->n_bitrates; i++) {
1418 nl_rate = nla_nest_start(msg, i);
1422 rate = &sband->bitrates[i];
1423 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1426 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1428 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1431 nla_nest_end(msg, nl_rate);
1434 nla_nest_end(msg, nl_rates);
1440 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1441 const struct ieee80211_txrx_stypes *mgmt_stypes)
1444 struct nlattr *nl_ftypes, *nl_ifs;
1445 enum nl80211_iftype ift;
1451 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1455 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1456 nl_ftypes = nla_nest_start(msg, ift);
1460 stypes = mgmt_stypes[ift].tx;
1463 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1464 (i << 4) | IEEE80211_FTYPE_MGMT))
1469 nla_nest_end(msg, nl_ftypes);
1472 nla_nest_end(msg, nl_ifs);
1474 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1478 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1479 nl_ftypes = nla_nest_start(msg, ift);
1483 stypes = mgmt_stypes[ift].rx;
1486 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1487 (i << 4) | IEEE80211_FTYPE_MGMT))
1492 nla_nest_end(msg, nl_ftypes);
1494 nla_nest_end(msg, nl_ifs);
1499 #define CMD(op, n) \
1501 if (rdev->ops->op) { \
1503 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1504 goto nla_put_failure; \
1508 static int nl80211_add_commands_unsplit(struct cfg80211_registered_device *rdev,
1509 struct sk_buff *msg)
1514 * do *NOT* add anything into this function, new things need to be
1515 * advertised only to new versions of userspace that can deal with
1516 * the split (and they can't possibly care about new features...
1518 CMD(add_virtual_intf, NEW_INTERFACE);
1519 CMD(change_virtual_intf, SET_INTERFACE);
1520 CMD(add_key, NEW_KEY);
1521 CMD(start_ap, START_AP);
1522 CMD(add_station, NEW_STATION);
1523 CMD(add_mpath, NEW_MPATH);
1524 CMD(update_mesh_config, SET_MESH_CONFIG);
1525 CMD(change_bss, SET_BSS);
1526 CMD(auth, AUTHENTICATE);
1527 CMD(assoc, ASSOCIATE);
1528 CMD(deauth, DEAUTHENTICATE);
1529 CMD(disassoc, DISASSOCIATE);
1530 CMD(join_ibss, JOIN_IBSS);
1531 CMD(join_mesh, JOIN_MESH);
1532 CMD(set_pmksa, SET_PMKSA);
1533 CMD(del_pmksa, DEL_PMKSA);
1534 CMD(flush_pmksa, FLUSH_PMKSA);
1535 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1536 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1537 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1538 CMD(mgmt_tx, FRAME);
1539 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1540 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1542 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1543 goto nla_put_failure;
1545 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1546 rdev->ops->join_mesh) {
1548 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1549 goto nla_put_failure;
1551 CMD(set_wds_peer, SET_WDS_PEER);
1552 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1553 CMD(tdls_mgmt, TDLS_MGMT);
1554 CMD(tdls_oper, TDLS_OPER);
1556 if (rdev->wiphy.max_sched_scan_reqs)
1557 CMD(sched_scan_start, START_SCHED_SCAN);
1558 CMD(probe_client, PROBE_CLIENT);
1559 CMD(set_noack_map, SET_NOACK_MAP);
1560 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1562 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1563 goto nla_put_failure;
1565 CMD(start_p2p_device, START_P2P_DEVICE);
1566 CMD(set_mcast_rate, SET_MCAST_RATE);
1567 #ifdef CONFIG_NL80211_TESTMODE
1568 CMD(testmode_cmd, TESTMODE);
1571 if (rdev->ops->connect || rdev->ops->auth) {
1573 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1574 goto nla_put_failure;
1577 if (rdev->ops->disconnect || rdev->ops->deauth) {
1579 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1580 goto nla_put_failure;
1588 struct nl80211_dump_wiphy_state {
1591 long split_start, band_start, chan_start, capa_start;
1595 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1596 enum nl80211_commands cmd,
1597 struct sk_buff *msg, u32 portid, u32 seq,
1598 int flags, struct nl80211_dump_wiphy_state *state)
1601 struct nlattr *nl_bands, *nl_band;
1602 struct nlattr *nl_freqs, *nl_freq;
1603 struct nlattr *nl_cmds;
1604 enum nl80211_band band;
1605 struct ieee80211_channel *chan;
1607 const struct ieee80211_txrx_stypes *mgmt_stypes =
1608 rdev->wiphy.mgmt_stypes;
1611 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1615 if (WARN_ON(!state))
1618 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1619 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1620 wiphy_name(&rdev->wiphy)) ||
1621 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1622 cfg80211_rdev_list_generation))
1623 goto nla_put_failure;
1625 if (cmd != NL80211_CMD_NEW_WIPHY)
1628 switch (state->split_start) {
1630 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1631 rdev->wiphy.retry_short) ||
1632 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1633 rdev->wiphy.retry_long) ||
1634 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1635 rdev->wiphy.frag_threshold) ||
1636 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1637 rdev->wiphy.rts_threshold) ||
1638 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1639 rdev->wiphy.coverage_class) ||
1640 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1641 rdev->wiphy.max_scan_ssids) ||
1642 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1643 rdev->wiphy.max_sched_scan_ssids) ||
1644 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1645 rdev->wiphy.max_scan_ie_len) ||
1646 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1647 rdev->wiphy.max_sched_scan_ie_len) ||
1648 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1649 rdev->wiphy.max_match_sets) ||
1650 nla_put_u32(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_PLANS,
1651 rdev->wiphy.max_sched_scan_plans) ||
1652 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_INTERVAL,
1653 rdev->wiphy.max_sched_scan_plan_interval) ||
1654 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_ITERATIONS,
1655 rdev->wiphy.max_sched_scan_plan_iterations))
1656 goto nla_put_failure;
1658 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1659 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1660 goto nla_put_failure;
1661 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1662 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1663 goto nla_put_failure;
1664 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1665 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1666 goto nla_put_failure;
1667 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1668 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1669 goto nla_put_failure;
1670 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1671 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1672 goto nla_put_failure;
1673 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1674 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1675 goto nla_put_failure;
1676 state->split_start++;
1680 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1681 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1682 rdev->wiphy.cipher_suites))
1683 goto nla_put_failure;
1685 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1686 rdev->wiphy.max_num_pmkids))
1687 goto nla_put_failure;
1689 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1690 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1691 goto nla_put_failure;
1693 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1694 rdev->wiphy.available_antennas_tx) ||
1695 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1696 rdev->wiphy.available_antennas_rx))
1697 goto nla_put_failure;
1699 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1700 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1701 rdev->wiphy.probe_resp_offload))
1702 goto nla_put_failure;
1704 if ((rdev->wiphy.available_antennas_tx ||
1705 rdev->wiphy.available_antennas_rx) &&
1706 rdev->ops->get_antenna) {
1707 u32 tx_ant = 0, rx_ant = 0;
1710 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1712 if (nla_put_u32(msg,
1713 NL80211_ATTR_WIPHY_ANTENNA_TX,
1716 NL80211_ATTR_WIPHY_ANTENNA_RX,
1718 goto nla_put_failure;
1722 state->split_start++;
1726 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1727 rdev->wiphy.interface_modes))
1728 goto nla_put_failure;
1729 state->split_start++;
1733 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1735 goto nla_put_failure;
1737 for (band = state->band_start;
1738 band < NUM_NL80211_BANDS; band++) {
1739 struct ieee80211_supported_band *sband;
1741 sband = rdev->wiphy.bands[band];
1746 nl_band = nla_nest_start(msg, band);
1748 goto nla_put_failure;
1750 switch (state->chan_start) {
1752 if (nl80211_send_band_rateinfo(msg, sband))
1753 goto nla_put_failure;
1754 state->chan_start++;
1758 /* add frequencies */
1759 nl_freqs = nla_nest_start(
1760 msg, NL80211_BAND_ATTR_FREQS);
1762 goto nla_put_failure;
1764 for (i = state->chan_start - 1;
1765 i < sband->n_channels;
1767 nl_freq = nla_nest_start(msg, i);
1769 goto nla_put_failure;
1771 chan = &sband->channels[i];
1773 if (nl80211_msg_put_channel(
1774 msg, &rdev->wiphy, chan,
1776 goto nla_put_failure;
1778 nla_nest_end(msg, nl_freq);
1782 if (i < sband->n_channels)
1783 state->chan_start = i + 2;
1785 state->chan_start = 0;
1786 nla_nest_end(msg, nl_freqs);
1789 nla_nest_end(msg, nl_band);
1792 /* start again here */
1793 if (state->chan_start)
1798 nla_nest_end(msg, nl_bands);
1800 if (band < NUM_NL80211_BANDS)
1801 state->band_start = band + 1;
1803 state->band_start = 0;
1805 /* if bands & channels are done, continue outside */
1806 if (state->band_start == 0 && state->chan_start == 0)
1807 state->split_start++;
1811 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1813 goto nla_put_failure;
1815 i = nl80211_add_commands_unsplit(rdev, msg);
1817 goto nla_put_failure;
1819 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1820 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1821 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1822 CMD(channel_switch, CHANNEL_SWITCH);
1823 CMD(set_qos_map, SET_QOS_MAP);
1824 if (rdev->wiphy.features &
1825 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
1826 CMD(add_tx_ts, ADD_TX_TS);
1827 CMD(set_multicast_to_unicast, SET_MULTICAST_TO_UNICAST);
1828 CMD(update_connect_params, UPDATE_CONNECT_PARAMS);
1832 nla_nest_end(msg, nl_cmds);
1833 state->split_start++;
1837 if (rdev->ops->remain_on_channel &&
1838 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
1840 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
1841 rdev->wiphy.max_remain_on_channel_duration))
1842 goto nla_put_failure;
1844 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
1845 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
1846 goto nla_put_failure;
1848 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
1849 goto nla_put_failure;
1850 state->split_start++;
1855 if (nl80211_send_wowlan(msg, rdev, state->split))
1856 goto nla_put_failure;
1857 state->split_start++;
1861 state->split_start++;
1864 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
1865 rdev->wiphy.software_iftypes))
1866 goto nla_put_failure;
1868 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
1870 goto nla_put_failure;
1872 state->split_start++;
1876 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
1877 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
1878 rdev->wiphy.ap_sme_capa))
1879 goto nla_put_failure;
1881 features = rdev->wiphy.features;
1883 * We can only add the per-channel limit information if the
1884 * dump is split, otherwise it makes it too big. Therefore
1885 * only advertise it in that case.
1888 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
1889 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
1890 goto nla_put_failure;
1892 if (rdev->wiphy.ht_capa_mod_mask &&
1893 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
1894 sizeof(*rdev->wiphy.ht_capa_mod_mask),
1895 rdev->wiphy.ht_capa_mod_mask))
1896 goto nla_put_failure;
1898 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
1899 rdev->wiphy.max_acl_mac_addrs &&
1900 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
1901 rdev->wiphy.max_acl_mac_addrs))
1902 goto nla_put_failure;
1905 * Any information below this point is only available to
1906 * applications that can deal with it being split. This
1907 * helps ensure that newly added capabilities don't break
1908 * older tools by overrunning their buffers.
1910 * We still increment split_start so that in the split
1911 * case we'll continue with more data in the next round,
1912 * but break unconditionally so unsplit data stops here.
1914 state->split_start++;
1917 if (rdev->wiphy.extended_capabilities &&
1918 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
1919 rdev->wiphy.extended_capabilities_len,
1920 rdev->wiphy.extended_capabilities) ||
1921 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
1922 rdev->wiphy.extended_capabilities_len,
1923 rdev->wiphy.extended_capabilities_mask)))
1924 goto nla_put_failure;
1926 if (rdev->wiphy.vht_capa_mod_mask &&
1927 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
1928 sizeof(*rdev->wiphy.vht_capa_mod_mask),
1929 rdev->wiphy.vht_capa_mod_mask))
1930 goto nla_put_failure;
1932 state->split_start++;
1935 if (nl80211_send_coalesce(msg, rdev))
1936 goto nla_put_failure;
1938 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
1939 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
1940 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
1941 goto nla_put_failure;
1943 if (rdev->wiphy.max_ap_assoc_sta &&
1944 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
1945 rdev->wiphy.max_ap_assoc_sta))
1946 goto nla_put_failure;
1948 state->split_start++;
1951 if (rdev->wiphy.n_vendor_commands) {
1952 const struct nl80211_vendor_cmd_info *info;
1953 struct nlattr *nested;
1955 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
1957 goto nla_put_failure;
1959 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
1960 info = &rdev->wiphy.vendor_commands[i].info;
1961 if (nla_put(msg, i + 1, sizeof(*info), info))
1962 goto nla_put_failure;
1964 nla_nest_end(msg, nested);
1967 if (rdev->wiphy.n_vendor_events) {
1968 const struct nl80211_vendor_cmd_info *info;
1969 struct nlattr *nested;
1971 nested = nla_nest_start(msg,
1972 NL80211_ATTR_VENDOR_EVENTS);
1974 goto nla_put_failure;
1976 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
1977 info = &rdev->wiphy.vendor_events[i];
1978 if (nla_put(msg, i + 1, sizeof(*info), info))
1979 goto nla_put_failure;
1981 nla_nest_end(msg, nested);
1983 state->split_start++;
1986 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
1987 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
1988 rdev->wiphy.max_num_csa_counters))
1989 goto nla_put_failure;
1991 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
1992 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
1993 goto nla_put_failure;
1995 if (rdev->wiphy.max_sched_scan_reqs &&
1996 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_MAX_REQS,
1997 rdev->wiphy.max_sched_scan_reqs))
1998 goto nla_put_failure;
2000 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
2001 sizeof(rdev->wiphy.ext_features),
2002 rdev->wiphy.ext_features))
2003 goto nla_put_failure;
2005 if (rdev->wiphy.bss_select_support) {
2006 struct nlattr *nested;
2007 u32 bss_select_support = rdev->wiphy.bss_select_support;
2009 nested = nla_nest_start(msg, NL80211_ATTR_BSS_SELECT);
2011 goto nla_put_failure;
2014 while (bss_select_support) {
2015 if ((bss_select_support & 1) &&
2016 nla_put_flag(msg, i))
2017 goto nla_put_failure;
2019 bss_select_support >>= 1;
2021 nla_nest_end(msg, nested);
2024 state->split_start++;
2027 if (rdev->wiphy.num_iftype_ext_capab &&
2028 rdev->wiphy.iftype_ext_capab) {
2029 struct nlattr *nested_ext_capab, *nested;
2031 nested = nla_nest_start(msg,
2032 NL80211_ATTR_IFTYPE_EXT_CAPA);
2034 goto nla_put_failure;
2036 for (i = state->capa_start;
2037 i < rdev->wiphy.num_iftype_ext_capab; i++) {
2038 const struct wiphy_iftype_ext_capab *capab;
2040 capab = &rdev->wiphy.iftype_ext_capab[i];
2042 nested_ext_capab = nla_nest_start(msg, i);
2043 if (!nested_ext_capab ||
2044 nla_put_u32(msg, NL80211_ATTR_IFTYPE,
2046 nla_put(msg, NL80211_ATTR_EXT_CAPA,
2047 capab->extended_capabilities_len,
2048 capab->extended_capabilities) ||
2049 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2050 capab->extended_capabilities_len,
2051 capab->extended_capabilities_mask))
2052 goto nla_put_failure;
2054 nla_nest_end(msg, nested_ext_capab);
2058 nla_nest_end(msg, nested);
2059 if (i < rdev->wiphy.num_iftype_ext_capab) {
2060 state->capa_start = i + 1;
2065 if (nla_put_u32(msg, NL80211_ATTR_BANDS,
2066 rdev->wiphy.nan_supported_bands))
2067 goto nla_put_failure;
2069 if (wiphy_ext_feature_isset(&rdev->wiphy,
2070 NL80211_EXT_FEATURE_TXQS)) {
2071 struct cfg80211_txq_stats txqstats = {};
2074 res = rdev_get_txq_stats(rdev, NULL, &txqstats);
2076 !nl80211_put_txq_stats(msg, &txqstats,
2077 NL80211_ATTR_TXQ_STATS))
2078 goto nla_put_failure;
2080 if (nla_put_u32(msg, NL80211_ATTR_TXQ_LIMIT,
2081 rdev->wiphy.txq_limit))
2082 goto nla_put_failure;
2083 if (nla_put_u32(msg, NL80211_ATTR_TXQ_MEMORY_LIMIT,
2084 rdev->wiphy.txq_memory_limit))
2085 goto nla_put_failure;
2086 if (nla_put_u32(msg, NL80211_ATTR_TXQ_QUANTUM,
2087 rdev->wiphy.txq_quantum))
2088 goto nla_put_failure;
2092 state->split_start = 0;
2096 genlmsg_end(msg, hdr);
2100 genlmsg_cancel(msg, hdr);
2104 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
2105 struct netlink_callback *cb,
2106 struct nl80211_dump_wiphy_state *state)
2108 struct nlattr **tb = genl_family_attrbuf(&nl80211_fam);
2109 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, tb,
2110 nl80211_fam.maxattr, nl80211_policy, NULL);
2111 /* ignore parse errors for backward compatibility */
2115 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
2116 if (tb[NL80211_ATTR_WIPHY])
2117 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2118 if (tb[NL80211_ATTR_WDEV])
2119 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
2120 if (tb[NL80211_ATTR_IFINDEX]) {
2121 struct net_device *netdev;
2122 struct cfg80211_registered_device *rdev;
2123 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
2125 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
2128 if (netdev->ieee80211_ptr) {
2129 rdev = wiphy_to_rdev(
2130 netdev->ieee80211_ptr->wiphy);
2131 state->filter_wiphy = rdev->wiphy_idx;
2138 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
2141 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
2142 struct cfg80211_registered_device *rdev;
2146 state = kzalloc(sizeof(*state), GFP_KERNEL);
2151 state->filter_wiphy = -1;
2152 ret = nl80211_dump_wiphy_parse(skb, cb, state);
2158 cb->args[0] = (long)state;
2161 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2162 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2164 if (++idx <= state->start)
2166 if (state->filter_wiphy != -1 &&
2167 state->filter_wiphy != rdev->wiphy_idx)
2169 /* attempt to fit multiple wiphy data chunks into the skb */
2171 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
2173 NETLINK_CB(cb->skb).portid,
2175 NLM_F_MULTI, state);
2178 * If sending the wiphy data didn't fit (ENOBUFS
2179 * or EMSGSIZE returned), this SKB is still
2180 * empty (so it's not too big because another
2181 * wiphy dataset is already in the skb) and
2182 * we've not tried to adjust the dump allocation
2183 * yet ... then adjust the alloc size to be
2184 * bigger, and return 1 but with the empty skb.
2185 * This results in an empty message being RX'ed
2186 * in userspace, but that is ignored.
2188 * We can then retry with the larger buffer.
2190 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
2191 !skb->len && !state->split &&
2192 cb->min_dump_alloc < 4096) {
2193 cb->min_dump_alloc = 4096;
2194 state->split_start = 0;
2201 } while (state->split_start > 0);
2211 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
2213 kfree((void *)cb->args[0]);
2217 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
2219 struct sk_buff *msg;
2220 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2221 struct nl80211_dump_wiphy_state state = {};
2223 msg = nlmsg_new(4096, GFP_KERNEL);
2227 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
2228 info->snd_portid, info->snd_seq, 0,
2234 return genlmsg_reply(msg, info);
2237 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
2238 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
2239 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
2240 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
2241 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
2242 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
2245 static int parse_txq_params(struct nlattr *tb[],
2246 struct ieee80211_txq_params *txq_params)
2250 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
2251 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
2252 !tb[NL80211_TXQ_ATTR_AIFS])
2255 ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
2256 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
2257 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
2258 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
2259 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
2261 if (ac >= NL80211_NUM_ACS)
2263 txq_params->ac = array_index_nospec(ac, NL80211_NUM_ACS);
2267 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
2270 * You can only set the channel explicitly for WDS interfaces,
2271 * all others have their channel managed via their respective
2272 * "establish a connection" command (connect, join, ...)
2274 * For AP/GO and mesh mode, the channel can be set with the
2275 * channel userspace API, but is only stored and passed to the
2276 * low-level driver when the AP starts or the mesh is joined.
2277 * This is for backward compatibility, userspace can also give
2278 * the channel in the start-ap or join-mesh commands instead.
2280 * Monitors are special as they are normally slaved to
2281 * whatever else is going on, so they have their own special
2282 * operation to set the monitor channel if possible.
2285 wdev->iftype == NL80211_IFTYPE_AP ||
2286 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
2287 wdev->iftype == NL80211_IFTYPE_MONITOR ||
2288 wdev->iftype == NL80211_IFTYPE_P2P_GO;
2291 static int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
2292 struct genl_info *info,
2293 struct cfg80211_chan_def *chandef)
2297 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
2300 control_freq = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_FREQ]);
2302 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
2303 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
2304 chandef->center_freq1 = control_freq;
2305 chandef->center_freq2 = 0;
2307 /* Primary channel not allowed */
2308 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED)
2311 if (info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2312 enum nl80211_channel_type chantype;
2314 chantype = nla_get_u32(
2315 info->attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2318 case NL80211_CHAN_NO_HT:
2319 case NL80211_CHAN_HT20:
2320 case NL80211_CHAN_HT40PLUS:
2321 case NL80211_CHAN_HT40MINUS:
2322 cfg80211_chandef_create(chandef, chandef->chan,
2324 /* user input for center_freq is incorrect */
2325 if (info->attrs[NL80211_ATTR_CENTER_FREQ1] &&
2326 chandef->center_freq1 != nla_get_u32(
2327 info->attrs[NL80211_ATTR_CENTER_FREQ1]))
2329 /* center_freq2 must be zero */
2330 if (info->attrs[NL80211_ATTR_CENTER_FREQ2] &&
2331 nla_get_u32(info->attrs[NL80211_ATTR_CENTER_FREQ2]))
2337 } else if (info->attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
2339 nla_get_u32(info->attrs[NL80211_ATTR_CHANNEL_WIDTH]);
2340 if (info->attrs[NL80211_ATTR_CENTER_FREQ1])
2341 chandef->center_freq1 =
2343 info->attrs[NL80211_ATTR_CENTER_FREQ1]);
2344 if (info->attrs[NL80211_ATTR_CENTER_FREQ2])
2345 chandef->center_freq2 =
2347 info->attrs[NL80211_ATTR_CENTER_FREQ2]);
2350 if (!cfg80211_chandef_valid(chandef))
2353 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
2354 IEEE80211_CHAN_DISABLED))
2357 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
2358 chandef->width == NL80211_CHAN_WIDTH_10) &&
2359 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ))
2365 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
2366 struct net_device *dev,
2367 struct genl_info *info)
2369 struct cfg80211_chan_def chandef;
2371 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
2372 struct wireless_dev *wdev = NULL;
2375 wdev = dev->ieee80211_ptr;
2376 if (!nl80211_can_set_dev_channel(wdev))
2379 iftype = wdev->iftype;
2381 result = nl80211_parse_chandef(rdev, info, &chandef);
2386 case NL80211_IFTYPE_AP:
2387 case NL80211_IFTYPE_P2P_GO:
2388 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
2393 if (wdev->beacon_interval) {
2394 if (!dev || !rdev->ops->set_ap_chanwidth ||
2395 !(rdev->wiphy.features &
2396 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2401 /* Only allow dynamic channel width changes */
2402 if (chandef.chan != wdev->preset_chandef.chan) {
2406 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2410 wdev->preset_chandef = chandef;
2413 case NL80211_IFTYPE_MESH_POINT:
2414 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2416 case NL80211_IFTYPE_MONITOR:
2417 result = cfg80211_set_monitor_channel(rdev, &chandef);
2426 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2428 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2429 struct net_device *netdev = info->user_ptr[1];
2431 return __nl80211_set_channel(rdev, netdev, info);
2434 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2436 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2437 struct net_device *dev = info->user_ptr[1];
2438 struct wireless_dev *wdev = dev->ieee80211_ptr;
2441 if (!info->attrs[NL80211_ATTR_MAC])
2444 if (netif_running(dev))
2447 if (!rdev->ops->set_wds_peer)
2450 if (wdev->iftype != NL80211_IFTYPE_WDS)
2453 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2454 return rdev_set_wds_peer(rdev, dev, bssid);
2457 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2459 struct cfg80211_registered_device *rdev;
2460 struct net_device *netdev = NULL;
2461 struct wireless_dev *wdev;
2462 int result = 0, rem_txq_params = 0;
2463 struct nlattr *nl_txq_params;
2465 u8 retry_short = 0, retry_long = 0;
2466 u32 frag_threshold = 0, rts_threshold = 0;
2467 u8 coverage_class = 0;
2468 u32 txq_limit = 0, txq_memory_limit = 0, txq_quantum = 0;
2473 * Try to find the wiphy and netdev. Normally this
2474 * function shouldn't need the netdev, but this is
2475 * done for backward compatibility -- previously
2476 * setting the channel was done per wiphy, but now
2477 * it is per netdev. Previous userland like hostapd
2478 * also passed a netdev to set_wiphy, so that it is
2479 * possible to let that go to the right netdev!
2482 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2483 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2485 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2486 if (netdev && netdev->ieee80211_ptr)
2487 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2493 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2496 return PTR_ERR(rdev);
2501 wdev = netdev->ieee80211_ptr;
2504 * end workaround code, by now the rdev is available
2505 * and locked, and wdev may or may not be NULL.
2508 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2509 result = cfg80211_dev_rename(
2510 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2515 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2516 struct ieee80211_txq_params txq_params;
2517 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2519 if (!rdev->ops->set_txq_params)
2525 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2526 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2529 if (!netif_running(netdev))
2532 nla_for_each_nested(nl_txq_params,
2533 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2535 result = nla_parse_nested(tb, NL80211_TXQ_ATTR_MAX,
2541 result = parse_txq_params(tb, &txq_params);
2545 result = rdev_set_txq_params(rdev, netdev,
2552 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2553 result = __nl80211_set_channel(
2555 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2561 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2562 struct wireless_dev *txp_wdev = wdev;
2563 enum nl80211_tx_power_setting type;
2566 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2569 if (!rdev->ops->set_tx_power)
2572 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2573 type = nla_get_u32(info->attrs[idx]);
2575 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2576 (type != NL80211_TX_POWER_AUTOMATIC))
2579 if (type != NL80211_TX_POWER_AUTOMATIC) {
2580 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2581 mbm = nla_get_u32(info->attrs[idx]);
2584 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2589 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2590 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2593 if ((!rdev->wiphy.available_antennas_tx &&
2594 !rdev->wiphy.available_antennas_rx) ||
2595 !rdev->ops->set_antenna)
2598 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2599 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2601 /* reject antenna configurations which don't match the
2602 * available antenna masks, except for the "all" mask */
2603 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2604 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2607 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2608 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2610 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2617 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2618 retry_short = nla_get_u8(
2619 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2620 if (retry_short == 0)
2623 changed |= WIPHY_PARAM_RETRY_SHORT;
2626 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2627 retry_long = nla_get_u8(
2628 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2629 if (retry_long == 0)
2632 changed |= WIPHY_PARAM_RETRY_LONG;
2635 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2636 frag_threshold = nla_get_u32(
2637 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2638 if (frag_threshold < 256)
2641 if (frag_threshold != (u32) -1) {
2643 * Fragments (apart from the last one) are required to
2644 * have even length. Make the fragmentation code
2645 * simpler by stripping LSB should someone try to use
2646 * odd threshold value.
2648 frag_threshold &= ~0x1;
2650 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2653 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2654 rts_threshold = nla_get_u32(
2655 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2656 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2659 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2660 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2663 coverage_class = nla_get_u8(
2664 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2665 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2668 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2669 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2672 changed |= WIPHY_PARAM_DYN_ACK;
2675 if (info->attrs[NL80211_ATTR_TXQ_LIMIT]) {
2676 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2677 NL80211_EXT_FEATURE_TXQS))
2679 txq_limit = nla_get_u32(
2680 info->attrs[NL80211_ATTR_TXQ_LIMIT]);
2681 changed |= WIPHY_PARAM_TXQ_LIMIT;
2684 if (info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]) {
2685 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2686 NL80211_EXT_FEATURE_TXQS))
2688 txq_memory_limit = nla_get_u32(
2689 info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]);
2690 changed |= WIPHY_PARAM_TXQ_MEMORY_LIMIT;
2693 if (info->attrs[NL80211_ATTR_TXQ_QUANTUM]) {
2694 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2695 NL80211_EXT_FEATURE_TXQS))
2697 txq_quantum = nla_get_u32(
2698 info->attrs[NL80211_ATTR_TXQ_QUANTUM]);
2699 changed |= WIPHY_PARAM_TXQ_QUANTUM;
2703 u8 old_retry_short, old_retry_long;
2704 u32 old_frag_threshold, old_rts_threshold;
2705 u8 old_coverage_class;
2706 u32 old_txq_limit, old_txq_memory_limit, old_txq_quantum;
2708 if (!rdev->ops->set_wiphy_params)
2711 old_retry_short = rdev->wiphy.retry_short;
2712 old_retry_long = rdev->wiphy.retry_long;
2713 old_frag_threshold = rdev->wiphy.frag_threshold;
2714 old_rts_threshold = rdev->wiphy.rts_threshold;
2715 old_coverage_class = rdev->wiphy.coverage_class;
2716 old_txq_limit = rdev->wiphy.txq_limit;
2717 old_txq_memory_limit = rdev->wiphy.txq_memory_limit;
2718 old_txq_quantum = rdev->wiphy.txq_quantum;
2720 if (changed & WIPHY_PARAM_RETRY_SHORT)
2721 rdev->wiphy.retry_short = retry_short;
2722 if (changed & WIPHY_PARAM_RETRY_LONG)
2723 rdev->wiphy.retry_long = retry_long;
2724 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2725 rdev->wiphy.frag_threshold = frag_threshold;
2726 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2727 rdev->wiphy.rts_threshold = rts_threshold;
2728 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2729 rdev->wiphy.coverage_class = coverage_class;
2730 if (changed & WIPHY_PARAM_TXQ_LIMIT)
2731 rdev->wiphy.txq_limit = txq_limit;
2732 if (changed & WIPHY_PARAM_TXQ_MEMORY_LIMIT)
2733 rdev->wiphy.txq_memory_limit = txq_memory_limit;
2734 if (changed & WIPHY_PARAM_TXQ_QUANTUM)
2735 rdev->wiphy.txq_quantum = txq_quantum;
2737 result = rdev_set_wiphy_params(rdev, changed);
2739 rdev->wiphy.retry_short = old_retry_short;
2740 rdev->wiphy.retry_long = old_retry_long;
2741 rdev->wiphy.frag_threshold = old_frag_threshold;
2742 rdev->wiphy.rts_threshold = old_rts_threshold;
2743 rdev->wiphy.coverage_class = old_coverage_class;
2744 rdev->wiphy.txq_limit = old_txq_limit;
2745 rdev->wiphy.txq_memory_limit = old_txq_memory_limit;
2746 rdev->wiphy.txq_quantum = old_txq_quantum;
2753 static inline u64 wdev_id(struct wireless_dev *wdev)
2755 return (u64)wdev->identifier |
2756 ((u64)wiphy_to_rdev(wdev->wiphy)->wiphy_idx << 32);
2759 static int nl80211_send_chandef(struct sk_buff *msg,
2760 const struct cfg80211_chan_def *chandef)
2762 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
2765 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2766 chandef->chan->center_freq))
2768 switch (chandef->width) {
2769 case NL80211_CHAN_WIDTH_20_NOHT:
2770 case NL80211_CHAN_WIDTH_20:
2771 case NL80211_CHAN_WIDTH_40:
2772 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2773 cfg80211_get_chandef_type(chandef)))
2779 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2781 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2783 if (chandef->center_freq2 &&
2784 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2789 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2790 struct cfg80211_registered_device *rdev,
2791 struct wireless_dev *wdev, bool removal)
2793 struct net_device *dev = wdev->netdev;
2794 u8 cmd = NL80211_CMD_NEW_INTERFACE;
2798 cmd = NL80211_CMD_DEL_INTERFACE;
2800 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
2805 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2806 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
2807 goto nla_put_failure;
2809 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
2810 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
2811 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
2812 NL80211_ATTR_PAD) ||
2813 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
2814 nla_put_u32(msg, NL80211_ATTR_GENERATION,
2815 rdev->devlist_generation ^
2816 (cfg80211_rdev_list_generation << 2)) ||
2817 nla_put_u8(msg, NL80211_ATTR_4ADDR, wdev->use_4addr))
2818 goto nla_put_failure;
2820 if (rdev->ops->get_channel) {
2822 struct cfg80211_chan_def chandef;
2824 ret = rdev_get_channel(rdev, wdev, &chandef);
2826 if (nl80211_send_chandef(msg, &chandef))
2827 goto nla_put_failure;
2831 if (rdev->ops->get_tx_power) {
2834 ret = rdev_get_tx_power(rdev, wdev, &dbm);
2836 nla_put_u32(msg, NL80211_ATTR_WIPHY_TX_POWER_LEVEL,
2838 goto nla_put_failure;
2842 switch (wdev->iftype) {
2843 case NL80211_IFTYPE_AP:
2844 if (wdev->ssid_len &&
2845 nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
2846 goto nla_put_failure_locked;
2848 case NL80211_IFTYPE_STATION:
2849 case NL80211_IFTYPE_P2P_CLIENT:
2850 case NL80211_IFTYPE_ADHOC: {
2852 if (!wdev->current_bss)
2855 ssid_ie = ieee80211_bss_get_ie(&wdev->current_bss->pub,
2858 nla_put(msg, NL80211_ATTR_SSID, ssid_ie[1], ssid_ie + 2))
2859 goto nla_put_failure_rcu_locked;
2869 if (rdev->ops->get_txq_stats) {
2870 struct cfg80211_txq_stats txqstats = {};
2871 int ret = rdev_get_txq_stats(rdev, wdev, &txqstats);
2874 !nl80211_put_txq_stats(msg, &txqstats,
2875 NL80211_ATTR_TXQ_STATS))
2876 goto nla_put_failure;
2879 genlmsg_end(msg, hdr);
2882 nla_put_failure_rcu_locked:
2884 nla_put_failure_locked:
2887 genlmsg_cancel(msg, hdr);
2891 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
2895 int wp_start = cb->args[0];
2896 int if_start = cb->args[1];
2897 int filter_wiphy = -1;
2898 struct cfg80211_registered_device *rdev;
2899 struct wireless_dev *wdev;
2904 struct nl80211_dump_wiphy_state state = {
2908 ret = nl80211_dump_wiphy_parse(skb, cb, &state);
2912 filter_wiphy = state.filter_wiphy;
2915 * if filtering, set cb->args[2] to +1 since 0 is the default
2916 * value needed to determine that parsing is necessary.
2918 if (filter_wiphy >= 0)
2919 cb->args[2] = filter_wiphy + 1;
2922 } else if (cb->args[2] > 0) {
2923 filter_wiphy = cb->args[2] - 1;
2926 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2927 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2929 if (wp_idx < wp_start) {
2934 if (filter_wiphy >= 0 && filter_wiphy != rdev->wiphy_idx)
2939 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
2940 if (if_idx < if_start) {
2944 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
2945 cb->nlh->nlmsg_seq, NLM_F_MULTI,
2946 rdev, wdev, false) < 0) {
2955 cb->args[0] = wp_idx;
2956 cb->args[1] = if_idx;
2965 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
2967 struct sk_buff *msg;
2968 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2969 struct wireless_dev *wdev = info->user_ptr[1];
2971 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
2975 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
2976 rdev, wdev, false) < 0) {
2981 return genlmsg_reply(msg, info);
2984 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
2985 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
2986 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
2987 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
2988 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
2989 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
2990 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
2993 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
2995 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
3003 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX, nla,
3004 mntr_flags_policy, NULL))
3007 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
3009 *mntrflags |= (1<<flag);
3011 *mntrflags |= MONITOR_FLAG_CHANGED;
3016 static int nl80211_parse_mon_options(struct cfg80211_registered_device *rdev,
3017 enum nl80211_iftype type,
3018 struct genl_info *info,
3019 struct vif_params *params)
3021 bool change = false;
3024 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
3025 if (type != NL80211_IFTYPE_MONITOR)
3028 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
3036 if (params->flags & MONITOR_FLAG_ACTIVE &&
3037 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
3040 if (info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]) {
3041 const u8 *mumimo_groups;
3042 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3044 if (type != NL80211_IFTYPE_MONITOR)
3047 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3051 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]);
3053 /* bits 0 and 63 are reserved and must be zero */
3054 if ((mumimo_groups[0] & BIT(0)) ||
3055 (mumimo_groups[VHT_MUMIMO_GROUPS_DATA_LEN - 1] & BIT(7)))
3058 params->vht_mumimo_groups = mumimo_groups;
3062 if (info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]) {
3063 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3065 if (type != NL80211_IFTYPE_MONITOR)
3068 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3071 params->vht_mumimo_follow_addr =
3072 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]);
3076 return change ? 1 : 0;
3079 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
3080 struct net_device *netdev, u8 use_4addr,
3081 enum nl80211_iftype iftype)
3084 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
3090 case NL80211_IFTYPE_AP_VLAN:
3091 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
3094 case NL80211_IFTYPE_STATION:
3095 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
3105 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
3107 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3108 struct vif_params params;
3110 enum nl80211_iftype otype, ntype;
3111 struct net_device *dev = info->user_ptr[1];
3112 bool change = false;
3114 memset(¶ms, 0, sizeof(params));
3116 otype = ntype = dev->ieee80211_ptr->iftype;
3118 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3119 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3122 if (ntype > NL80211_IFTYPE_MAX)
3126 if (info->attrs[NL80211_ATTR_MESH_ID]) {
3127 struct wireless_dev *wdev = dev->ieee80211_ptr;
3129 if (ntype != NL80211_IFTYPE_MESH_POINT)
3131 if (netif_running(dev))
3135 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3136 IEEE80211_MAX_MESH_ID_LEN);
3137 wdev->mesh_id_up_len =
3138 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3139 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3140 wdev->mesh_id_up_len);
3144 if (info->attrs[NL80211_ATTR_4ADDR]) {
3145 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3147 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
3151 params.use_4addr = -1;
3154 err = nl80211_parse_mon_options(rdev, ntype, info, ¶ms);
3161 err = cfg80211_change_iface(rdev, dev, ntype, ¶ms);
3165 if (!err && params.use_4addr != -1)
3166 dev->ieee80211_ptr->use_4addr = params.use_4addr;
3171 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
3173 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3174 struct vif_params params;
3175 struct wireless_dev *wdev;
3176 struct sk_buff *msg;
3178 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
3180 /* to avoid failing a new interface creation due to pending removal */
3181 cfg80211_destroy_ifaces(rdev);
3183 memset(¶ms, 0, sizeof(params));
3185 if (!info->attrs[NL80211_ATTR_IFNAME])
3188 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3189 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3190 if (type > NL80211_IFTYPE_MAX)
3194 if (!rdev->ops->add_virtual_intf ||
3195 !(rdev->wiphy.interface_modes & (1 << type)))
3198 if ((type == NL80211_IFTYPE_P2P_DEVICE || type == NL80211_IFTYPE_NAN ||
3199 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
3200 info->attrs[NL80211_ATTR_MAC]) {
3201 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
3203 if (!is_valid_ether_addr(params.macaddr))
3204 return -EADDRNOTAVAIL;
3207 if (info->attrs[NL80211_ATTR_4ADDR]) {
3208 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3209 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
3214 err = nl80211_parse_mon_options(rdev, type, info, ¶ms);
3218 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3222 wdev = rdev_add_virtual_intf(rdev,
3223 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
3224 NET_NAME_USER, type, ¶ms);
3225 if (WARN_ON(!wdev)) {
3228 } else if (IS_ERR(wdev)) {
3230 return PTR_ERR(wdev);
3233 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
3234 wdev->owner_nlportid = info->snd_portid;
3237 case NL80211_IFTYPE_MESH_POINT:
3238 if (!info->attrs[NL80211_ATTR_MESH_ID])
3241 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3242 IEEE80211_MAX_MESH_ID_LEN);
3243 wdev->mesh_id_up_len =
3244 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3245 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3246 wdev->mesh_id_up_len);
3249 case NL80211_IFTYPE_NAN:
3250 case NL80211_IFTYPE_P2P_DEVICE:
3252 * P2P Device and NAN do not have a netdev, so don't go
3253 * through the netdev notifier and must be added here
3255 mutex_init(&wdev->mtx);
3256 INIT_LIST_HEAD(&wdev->event_list);
3257 spin_lock_init(&wdev->event_lock);
3258 INIT_LIST_HEAD(&wdev->mgmt_registrations);
3259 spin_lock_init(&wdev->mgmt_registrations_lock);
3261 wdev->identifier = ++rdev->wdev_id;
3262 list_add_rcu(&wdev->list, &rdev->wiphy.wdev_list);
3263 rdev->devlist_generation++;
3269 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3270 rdev, wdev, false) < 0) {
3276 * For wdevs which have no associated netdev object (e.g. of type
3277 * NL80211_IFTYPE_P2P_DEVICE), emit the NEW_INTERFACE event here.
3278 * For all other types, the event will be generated from the
3282 nl80211_notify_iface(rdev, wdev, NL80211_CMD_NEW_INTERFACE);
3284 return genlmsg_reply(msg, info);
3287 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
3289 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3290 struct wireless_dev *wdev = info->user_ptr[1];
3292 if (!rdev->ops->del_virtual_intf)
3296 * If we remove a wireless device without a netdev then clear
3297 * user_ptr[1] so that nl80211_post_doit won't dereference it
3298 * to check if it needs to do dev_put(). Otherwise it crashes
3299 * since the wdev has been freed, unlike with a netdev where
3300 * we need the dev_put() for the netdev to really be freed.
3303 info->user_ptr[1] = NULL;
3305 return rdev_del_virtual_intf(rdev, wdev);
3308 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
3310 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3311 struct net_device *dev = info->user_ptr[1];
3314 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
3317 if (!rdev->ops->set_noack_map)
3320 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
3322 return rdev_set_noack_map(rdev, dev, noack_map);
3325 struct get_key_cookie {
3326 struct sk_buff *msg;
3331 static void get_key_callback(void *c, struct key_params *params)
3334 struct get_key_cookie *cookie = c;
3337 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
3338 params->key_len, params->key)) ||
3340 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
3341 params->seq_len, params->seq)) ||
3343 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
3345 goto nla_put_failure;
3347 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
3349 goto nla_put_failure;
3352 nla_put(cookie->msg, NL80211_KEY_DATA,
3353 params->key_len, params->key)) ||
3355 nla_put(cookie->msg, NL80211_KEY_SEQ,
3356 params->seq_len, params->seq)) ||
3358 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
3360 goto nla_put_failure;
3362 if (nla_put_u8(cookie->msg, NL80211_ATTR_KEY_IDX, cookie->idx))
3363 goto nla_put_failure;
3365 nla_nest_end(cookie->msg, key);
3372 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
3374 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3376 struct net_device *dev = info->user_ptr[1];
3378 const u8 *mac_addr = NULL;
3380 struct get_key_cookie cookie = {
3384 struct sk_buff *msg;
3386 if (info->attrs[NL80211_ATTR_KEY_IDX])
3387 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
3392 if (info->attrs[NL80211_ATTR_MAC])
3393 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3395 pairwise = !!mac_addr;
3396 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
3397 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
3399 if (kt >= NUM_NL80211_KEYTYPES)
3401 if (kt != NL80211_KEYTYPE_GROUP &&
3402 kt != NL80211_KEYTYPE_PAIRWISE)
3404 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
3407 if (!rdev->ops->get_key)
3410 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3413 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3417 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
3418 NL80211_CMD_NEW_KEY);
3420 goto nla_put_failure;
3423 cookie.idx = key_idx;
3425 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3426 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
3427 goto nla_put_failure;
3429 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
3430 goto nla_put_failure;
3432 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
3439 goto nla_put_failure;
3441 genlmsg_end(msg, hdr);
3442 return genlmsg_reply(msg, info);
3451 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
3453 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3454 struct key_parse key;
3456 struct net_device *dev = info->user_ptr[1];
3458 err = nl80211_parse_key(info, &key);
3465 /* only support setting default key */
3466 if (!key.def && !key.defmgmt)
3469 wdev_lock(dev->ieee80211_ptr);
3472 if (!rdev->ops->set_default_key) {
3477 err = nl80211_key_allowed(dev->ieee80211_ptr);
3481 err = rdev_set_default_key(rdev, dev, key.idx,
3482 key.def_uni, key.def_multi);
3487 #ifdef CONFIG_CFG80211_WEXT
3488 dev->ieee80211_ptr->wext.default_key = key.idx;
3491 if (key.def_uni || !key.def_multi) {
3496 if (!rdev->ops->set_default_mgmt_key) {
3501 err = nl80211_key_allowed(dev->ieee80211_ptr);
3505 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
3509 #ifdef CONFIG_CFG80211_WEXT
3510 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
3515 wdev_unlock(dev->ieee80211_ptr);
3520 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
3522 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3524 struct net_device *dev = info->user_ptr[1];
3525 struct key_parse key;
3526 const u8 *mac_addr = NULL;
3528 err = nl80211_parse_key(info, &key);
3535 if (info->attrs[NL80211_ATTR_MAC])
3536 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3538 if (key.type == -1) {
3540 key.type = NL80211_KEYTYPE_PAIRWISE;
3542 key.type = NL80211_KEYTYPE_GROUP;
3546 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3547 key.type != NL80211_KEYTYPE_GROUP)
3550 if (!rdev->ops->add_key)
3553 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3554 key.type == NL80211_KEYTYPE_PAIRWISE,
3558 wdev_lock(dev->ieee80211_ptr);
3559 err = nl80211_key_allowed(dev->ieee80211_ptr);
3561 err = rdev_add_key(rdev, dev, key.idx,
3562 key.type == NL80211_KEYTYPE_PAIRWISE,
3564 wdev_unlock(dev->ieee80211_ptr);
3569 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3571 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3573 struct net_device *dev = info->user_ptr[1];
3574 u8 *mac_addr = NULL;
3575 struct key_parse key;
3577 err = nl80211_parse_key(info, &key);
3581 if (info->attrs[NL80211_ATTR_MAC])
3582 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3584 if (key.type == -1) {
3586 key.type = NL80211_KEYTYPE_PAIRWISE;
3588 key.type = NL80211_KEYTYPE_GROUP;
3592 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3593 key.type != NL80211_KEYTYPE_GROUP)
3596 if (!rdev->ops->del_key)
3599 wdev_lock(dev->ieee80211_ptr);
3600 err = nl80211_key_allowed(dev->ieee80211_ptr);
3602 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
3603 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3607 err = rdev_del_key(rdev, dev, key.idx,
3608 key.type == NL80211_KEYTYPE_PAIRWISE,
3611 #ifdef CONFIG_CFG80211_WEXT
3613 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3614 dev->ieee80211_ptr->wext.default_key = -1;
3615 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3616 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3619 wdev_unlock(dev->ieee80211_ptr);
3624 /* This function returns an error or the number of nested attributes */
3625 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3627 struct nlattr *attr;
3628 int n_entries = 0, tmp;
3630 nla_for_each_nested(attr, nl_attr, tmp) {
3631 if (nla_len(attr) != ETH_ALEN)
3641 * This function parses ACL information and allocates memory for ACL data.
3642 * On successful return, the calling function is responsible to free the
3643 * ACL buffer returned by this function.
3645 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3646 struct genl_info *info)
3648 enum nl80211_acl_policy acl_policy;
3649 struct nlattr *attr;
3650 struct cfg80211_acl_data *acl;
3651 int i = 0, n_entries, tmp;
3653 if (!wiphy->max_acl_mac_addrs)
3654 return ERR_PTR(-EOPNOTSUPP);
3656 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3657 return ERR_PTR(-EINVAL);
3659 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3660 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3661 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3662 return ERR_PTR(-EINVAL);
3664 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3665 return ERR_PTR(-EINVAL);
3667 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3669 return ERR_PTR(n_entries);
3671 if (n_entries > wiphy->max_acl_mac_addrs)
3672 return ERR_PTR(-ENOTSUPP);
3674 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
3677 return ERR_PTR(-ENOMEM);
3679 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3680 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3684 acl->n_acl_entries = n_entries;
3685 acl->acl_policy = acl_policy;
3690 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3692 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3693 struct net_device *dev = info->user_ptr[1];
3694 struct cfg80211_acl_data *acl;
3697 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3698 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3701 if (!dev->ieee80211_ptr->beacon_interval)
3704 acl = parse_acl_data(&rdev->wiphy, info);
3706 return PTR_ERR(acl);
3708 err = rdev_set_mac_acl(rdev, dev, acl);
3715 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
3716 u8 *rates, u8 rates_len)
3721 for (i = 0; i < rates_len; i++) {
3722 int rate = (rates[i] & 0x7f) * 5;
3725 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
3726 struct ieee80211_rate *srate =
3727 &sband->bitrates[ridx];
3728 if (rate == srate->bitrate) {
3733 if (ridx == sband->n_bitrates)
3734 return 0; /* rate not found */
3740 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
3741 u8 *rates, u8 rates_len,
3742 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
3746 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
3748 for (i = 0; i < rates_len; i++) {
3751 ridx = rates[i] / 8;
3752 rbit = BIT(rates[i] % 8);
3754 /* check validity */
3755 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
3758 /* check availability */
3759 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
3768 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
3772 switch (vht_mcs_map) {
3773 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
3775 case IEEE80211_VHT_MCS_SUPPORT_0_7:
3778 case IEEE80211_VHT_MCS_SUPPORT_0_8:
3781 case IEEE80211_VHT_MCS_SUPPORT_0_9:
3791 static void vht_build_mcs_mask(u16 vht_mcs_map,
3792 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
3796 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
3797 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
3802 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
3803 struct nl80211_txrate_vht *txrate,
3804 u16 mcs[NL80211_VHT_NSS_MAX])
3806 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
3807 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
3810 if (!sband->vht_cap.vht_supported)
3813 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
3815 /* Build vht_mcs_mask from VHT capabilities */
3816 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
3818 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
3819 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
3820 mcs[i] = txrate->mcs[i];
3828 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
3829 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
3830 .len = NL80211_MAX_SUPP_RATES },
3831 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
3832 .len = NL80211_MAX_SUPP_HT_RATES },
3833 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
3834 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
3837 static int nl80211_parse_tx_bitrate_mask(struct genl_info *info,
3838 struct cfg80211_bitrate_mask *mask)
3840 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
3841 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3843 struct nlattr *tx_rates;
3844 struct ieee80211_supported_band *sband;
3847 memset(mask, 0, sizeof(*mask));
3848 /* Default to all rates enabled */
3849 for (i = 0; i < NUM_NL80211_BANDS; i++) {
3850 sband = rdev->wiphy.bands[i];
3855 mask->control[i].legacy = (1 << sband->n_bitrates) - 1;
3856 memcpy(mask->control[i].ht_mcs,
3857 sband->ht_cap.mcs.rx_mask,
3858 sizeof(mask->control[i].ht_mcs));
3860 if (!sband->vht_cap.vht_supported)
3863 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
3864 vht_build_mcs_mask(vht_tx_mcs_map, mask->control[i].vht_mcs);
3867 /* if no rates are given set it back to the defaults */
3868 if (!info->attrs[NL80211_ATTR_TX_RATES])
3871 /* The nested attribute uses enum nl80211_band as the index. This maps
3872 * directly to the enum nl80211_band values used in cfg80211.
3874 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
3875 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
3876 enum nl80211_band band = nla_type(tx_rates);
3879 if (band < 0 || band >= NUM_NL80211_BANDS)
3881 sband = rdev->wiphy.bands[band];
3884 err = nla_parse_nested(tb, NL80211_TXRATE_MAX, tx_rates,
3885 nl80211_txattr_policy, info->extack);
3888 if (tb[NL80211_TXRATE_LEGACY]) {
3889 mask->control[band].legacy = rateset_to_mask(
3891 nla_data(tb[NL80211_TXRATE_LEGACY]),
3892 nla_len(tb[NL80211_TXRATE_LEGACY]));
3893 if ((mask->control[band].legacy == 0) &&
3894 nla_len(tb[NL80211_TXRATE_LEGACY]))
3897 if (tb[NL80211_TXRATE_HT]) {
3898 if (!ht_rateset_to_mask(
3900 nla_data(tb[NL80211_TXRATE_HT]),
3901 nla_len(tb[NL80211_TXRATE_HT]),
3902 mask->control[band].ht_mcs))
3905 if (tb[NL80211_TXRATE_VHT]) {
3906 if (!vht_set_mcs_mask(
3908 nla_data(tb[NL80211_TXRATE_VHT]),
3909 mask->control[band].vht_mcs))
3912 if (tb[NL80211_TXRATE_GI]) {
3913 mask->control[band].gi =
3914 nla_get_u8(tb[NL80211_TXRATE_GI]);
3915 if (mask->control[band].gi > NL80211_TXRATE_FORCE_LGI)
3919 if (mask->control[band].legacy == 0) {
3920 /* don't allow empty legacy rates if HT or VHT
3921 * are not even supported.
3923 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
3924 rdev->wiphy.bands[band]->vht_cap.vht_supported))
3927 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
3928 if (mask->control[band].ht_mcs[i])
3931 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
3932 if (mask->control[band].vht_mcs[i])
3935 /* legacy and mcs rates may not be both empty */
3944 static int validate_beacon_tx_rate(struct cfg80211_registered_device *rdev,
3945 enum nl80211_band band,
3946 struct cfg80211_bitrate_mask *beacon_rate)
3948 u32 count_ht, count_vht, i;
3949 u32 rate = beacon_rate->control[band].legacy;
3951 /* Allow only one rate */
3952 if (hweight32(rate) > 1)
3956 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
3957 if (hweight8(beacon_rate->control[band].ht_mcs[i]) > 1) {
3959 } else if (beacon_rate->control[band].ht_mcs[i]) {
3964 if (count_ht && rate)
3969 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
3970 if (hweight16(beacon_rate->control[band].vht_mcs[i]) > 1) {
3972 } else if (beacon_rate->control[band].vht_mcs[i]) {
3977 if (count_vht && rate)
3981 if ((count_ht && count_vht) || (!rate && !count_ht && !count_vht))
3985 !wiphy_ext_feature_isset(&rdev->wiphy,
3986 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY))
3989 !wiphy_ext_feature_isset(&rdev->wiphy,
3990 NL80211_EXT_FEATURE_BEACON_RATE_HT))
3993 !wiphy_ext_feature_isset(&rdev->wiphy,
3994 NL80211_EXT_FEATURE_BEACON_RATE_VHT))
4000 static int nl80211_parse_beacon(struct nlattr *attrs[],
4001 struct cfg80211_beacon_data *bcn)
4003 bool haveinfo = false;
4005 if (!is_valid_ie_attr(attrs[NL80211_ATTR_BEACON_TAIL]) ||
4006 !is_valid_ie_attr(attrs[NL80211_ATTR_IE]) ||
4007 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_PROBE_RESP]) ||
4008 !is_valid_ie_attr(attrs[NL80211_ATTR_IE_ASSOC_RESP]))
4011 memset(bcn, 0, sizeof(*bcn));
4013 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
4014 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
4015 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
4021 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
4022 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
4023 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
4030 if (attrs[NL80211_ATTR_IE]) {
4031 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
4032 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
4035 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
4036 bcn->proberesp_ies =
4037 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4038 bcn->proberesp_ies_len =
4039 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4042 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
4043 bcn->assocresp_ies =
4044 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4045 bcn->assocresp_ies_len =
4046 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4049 if (attrs[NL80211_ATTR_PROBE_RESP]) {
4050 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
4051 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
4057 static void nl80211_check_ap_rate_selectors(struct cfg80211_ap_settings *params,
4065 for (i = 0; i < rates[1]; i++) {
4066 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_HT_PHY)
4067 params->ht_required = true;
4068 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_VHT_PHY)
4069 params->vht_required = true;
4074 * Since the nl80211 API didn't include, from the beginning, attributes about
4075 * HT/VHT requirements/capabilities, we parse them out of the IEs for the
4076 * benefit of drivers that rebuild IEs in the firmware.
4078 static void nl80211_calculate_ap_params(struct cfg80211_ap_settings *params)
4080 const struct cfg80211_beacon_data *bcn = ¶ms->beacon;
4081 size_t ies_len = bcn->tail_len;
4082 const u8 *ies = bcn->tail;
4086 rates = cfg80211_find_ie(WLAN_EID_SUPP_RATES, ies, ies_len);
4087 nl80211_check_ap_rate_selectors(params, rates);
4089 rates = cfg80211_find_ie(WLAN_EID_EXT_SUPP_RATES, ies, ies_len);
4090 nl80211_check_ap_rate_selectors(params, rates);
4092 cap = cfg80211_find_ie(WLAN_EID_HT_CAPABILITY, ies, ies_len);
4093 if (cap && cap[1] >= sizeof(*params->ht_cap))
4094 params->ht_cap = (void *)(cap + 2);
4095 cap = cfg80211_find_ie(WLAN_EID_VHT_CAPABILITY, ies, ies_len);
4096 if (cap && cap[1] >= sizeof(*params->vht_cap))
4097 params->vht_cap = (void *)(cap + 2);
4100 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
4101 struct cfg80211_ap_settings *params)
4103 struct wireless_dev *wdev;
4106 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
4107 if (wdev->iftype != NL80211_IFTYPE_AP &&
4108 wdev->iftype != NL80211_IFTYPE_P2P_GO)
4111 if (!wdev->preset_chandef.chan)
4114 params->chandef = wdev->preset_chandef;
4122 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
4123 enum nl80211_auth_type auth_type,
4124 enum nl80211_commands cmd)
4126 if (auth_type > NL80211_AUTHTYPE_MAX)
4130 case NL80211_CMD_AUTHENTICATE:
4131 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4132 auth_type == NL80211_AUTHTYPE_SAE)
4134 if (!wiphy_ext_feature_isset(&rdev->wiphy,
4135 NL80211_EXT_FEATURE_FILS_STA) &&
4136 (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4137 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4138 auth_type == NL80211_AUTHTYPE_FILS_PK))
4141 case NL80211_CMD_CONNECT:
4142 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4143 auth_type == NL80211_AUTHTYPE_SAE)
4146 /* FILS with SK PFS or PK not supported yet */
4147 if (auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4148 auth_type == NL80211_AUTHTYPE_FILS_PK)
4150 if (!wiphy_ext_feature_isset(
4152 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
4153 auth_type == NL80211_AUTHTYPE_FILS_SK)
4156 case NL80211_CMD_START_AP:
4157 /* SAE not supported yet */
4158 if (auth_type == NL80211_AUTHTYPE_SAE)
4160 /* FILS not supported yet */
4161 if (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4162 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4163 auth_type == NL80211_AUTHTYPE_FILS_PK)
4171 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
4173 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4174 struct net_device *dev = info->user_ptr[1];
4175 struct wireless_dev *wdev = dev->ieee80211_ptr;
4176 struct cfg80211_ap_settings params;
4179 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4180 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4183 if (!rdev->ops->start_ap)
4186 if (wdev->beacon_interval)
4189 memset(¶ms, 0, sizeof(params));
4191 /* these are required for START_AP */
4192 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
4193 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
4194 !info->attrs[NL80211_ATTR_BEACON_HEAD])
4197 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon);
4201 params.beacon_interval =
4202 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
4203 params.dtim_period =
4204 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
4206 err = cfg80211_validate_beacon_int(rdev, dev->ieee80211_ptr->iftype,
4207 params.beacon_interval);
4212 * In theory, some of these attributes should be required here
4213 * but since they were not used when the command was originally
4214 * added, keep them optional for old user space programs to let
4215 * them continue to work with drivers that do not need the
4216 * additional information -- drivers must check!
4218 if (info->attrs[NL80211_ATTR_SSID]) {
4219 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
4221 nla_len(info->attrs[NL80211_ATTR_SSID]);
4222 if (params.ssid_len == 0 ||
4223 params.ssid_len > IEEE80211_MAX_SSID_LEN)
4227 if (info->attrs[NL80211_ATTR_HIDDEN_SSID]) {
4228 params.hidden_ssid = nla_get_u32(
4229 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
4230 if (params.hidden_ssid != NL80211_HIDDEN_SSID_NOT_IN_USE &&
4231 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_LEN &&
4232 params.hidden_ssid != NL80211_HIDDEN_SSID_ZERO_CONTENTS)
4236 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
4238 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
4239 params.auth_type = nla_get_u32(
4240 info->attrs[NL80211_ATTR_AUTH_TYPE]);
4241 if (!nl80211_valid_auth_type(rdev, params.auth_type,
4242 NL80211_CMD_START_AP))
4245 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
4247 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
4248 NL80211_MAX_NR_CIPHER_SUITES);
4252 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
4253 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
4255 params.inactivity_timeout = nla_get_u16(
4256 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
4259 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4260 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4262 params.p2p_ctwindow =
4263 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4264 if (params.p2p_ctwindow > 127)
4266 if (params.p2p_ctwindow != 0 &&
4267 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4271 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4274 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4276 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4279 params.p2p_opp_ps = tmp;
4280 if (params.p2p_opp_ps != 0 &&
4281 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4285 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
4286 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
4289 } else if (wdev->preset_chandef.chan) {
4290 params.chandef = wdev->preset_chandef;
4291 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
4294 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
4298 if (info->attrs[NL80211_ATTR_TX_RATES]) {
4299 err = nl80211_parse_tx_bitrate_mask(info, ¶ms.beacon_rate);
4303 err = validate_beacon_tx_rate(rdev, params.chandef.chan->band,
4304 ¶ms.beacon_rate);
4309 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
4311 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
4312 switch (params.smps_mode) {
4313 case NL80211_SMPS_OFF:
4315 case NL80211_SMPS_STATIC:
4316 if (!(rdev->wiphy.features &
4317 NL80211_FEATURE_STATIC_SMPS))
4320 case NL80211_SMPS_DYNAMIC:
4321 if (!(rdev->wiphy.features &
4322 NL80211_FEATURE_DYNAMIC_SMPS))
4329 params.smps_mode = NL80211_SMPS_OFF;
4332 params.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
4333 if (params.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ])
4336 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
4337 params.acl = parse_acl_data(&rdev->wiphy, info);
4338 if (IS_ERR(params.acl))
4339 return PTR_ERR(params.acl);
4342 nl80211_calculate_ap_params(¶ms);
4345 err = rdev_start_ap(rdev, dev, ¶ms);
4347 wdev->preset_chandef = params.chandef;
4348 wdev->beacon_interval = params.beacon_interval;
4349 wdev->chandef = params.chandef;
4350 wdev->ssid_len = params.ssid_len;
4351 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
4353 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
4354 wdev->conn_owner_nlportid = info->snd_portid;
4363 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
4365 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4366 struct net_device *dev = info->user_ptr[1];
4367 struct wireless_dev *wdev = dev->ieee80211_ptr;
4368 struct cfg80211_beacon_data params;
4371 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4372 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4375 if (!rdev->ops->change_beacon)
4378 if (!wdev->beacon_interval)
4381 err = nl80211_parse_beacon(info->attrs, ¶ms);
4386 err = rdev_change_beacon(rdev, dev, ¶ms);
4392 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
4394 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4395 struct net_device *dev = info->user_ptr[1];
4397 return cfg80211_stop_ap(rdev, dev, false);
4400 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
4401 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
4402 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
4403 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
4404 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
4405 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
4406 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
4409 static int parse_station_flags(struct genl_info *info,
4410 enum nl80211_iftype iftype,
4411 struct station_parameters *params)
4413 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
4418 * Try parsing the new attribute first so userspace
4419 * can specify both for older kernels.
4421 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
4423 struct nl80211_sta_flag_update *sta_flags;
4425 sta_flags = nla_data(nla);
4426 params->sta_flags_mask = sta_flags->mask;
4427 params->sta_flags_set = sta_flags->set;
4428 params->sta_flags_set &= params->sta_flags_mask;
4429 if ((params->sta_flags_mask |
4430 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
4435 /* if present, parse the old attribute */
4437 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
4441 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX, nla,
4442 sta_flags_policy, info->extack))
4446 * Only allow certain flags for interface types so that
4447 * other attributes are silently ignored. Remember that
4448 * this is backward compatibility code with old userspace
4449 * and shouldn't be hit in other cases anyway.
4452 case NL80211_IFTYPE_AP:
4453 case NL80211_IFTYPE_AP_VLAN:
4454 case NL80211_IFTYPE_P2P_GO:
4455 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4456 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4457 BIT(NL80211_STA_FLAG_WME) |
4458 BIT(NL80211_STA_FLAG_MFP);
4460 case NL80211_IFTYPE_P2P_CLIENT:
4461 case NL80211_IFTYPE_STATION:
4462 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4463 BIT(NL80211_STA_FLAG_TDLS_PEER);
4465 case NL80211_IFTYPE_MESH_POINT:
4466 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4467 BIT(NL80211_STA_FLAG_MFP) |
4468 BIT(NL80211_STA_FLAG_AUTHORIZED);
4474 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
4476 params->sta_flags_set |= (1<<flag);
4478 /* no longer support new API additions in old API */
4479 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
4487 static bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info,
4490 struct nlattr *rate;
4493 enum nl80211_rate_info rate_flg;
4495 rate = nla_nest_start(msg, attr);
4499 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
4500 bitrate = cfg80211_calculate_bitrate(info);
4501 /* report 16-bit bitrate only if we can */
4502 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
4504 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
4506 if (bitrate_compat > 0 &&
4507 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
4511 case RATE_INFO_BW_5:
4512 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
4514 case RATE_INFO_BW_10:
4515 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
4520 case RATE_INFO_BW_20:
4523 case RATE_INFO_BW_40:
4524 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
4526 case RATE_INFO_BW_80:
4527 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
4529 case RATE_INFO_BW_160:
4530 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
4532 case RATE_INFO_BW_HE_RU:
4534 WARN_ON(!(info->flags & RATE_INFO_FLAGS_HE_MCS));
4537 if (rate_flg && nla_put_flag(msg, rate_flg))
4540 if (info->flags & RATE_INFO_FLAGS_MCS) {
4541 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
4543 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4544 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4546 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
4547 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
4549 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
4551 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4552 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4554 } else if (info->flags & RATE_INFO_FLAGS_HE_MCS) {
4555 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_MCS, info->mcs))
4557 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_NSS, info->nss))
4559 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_GI, info->he_gi))
4561 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_DCM, info->he_dcm))
4563 if (info->bw == RATE_INFO_BW_HE_RU &&
4564 nla_put_u8(msg, NL80211_RATE_INFO_HE_RU_ALLOC,
4569 nla_nest_end(msg, rate);
4573 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
4582 attr = nla_nest_start(msg, id);
4586 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
4587 if (!(mask & BIT(i)))
4590 if (nla_put_u8(msg, i, signal[i]))
4594 nla_nest_end(msg, attr);
4599 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
4601 struct cfg80211_registered_device *rdev,
4602 struct net_device *dev,
4603 const u8 *mac_addr, struct station_info *sinfo)
4606 struct nlattr *sinfoattr, *bss_param;
4608 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
4612 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4613 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
4614 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
4615 goto nla_put_failure;
4617 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
4619 goto nla_put_failure;
4621 #define PUT_SINFO(attr, memb, type) do { \
4622 BUILD_BUG_ON(sizeof(type) == sizeof(u64)); \
4623 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4624 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
4626 goto nla_put_failure; \
4628 #define PUT_SINFO_U64(attr, memb) do { \
4629 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4630 nla_put_u64_64bit(msg, NL80211_STA_INFO_ ## attr, \
4631 sinfo->memb, NL80211_STA_INFO_PAD)) \
4632 goto nla_put_failure; \
4635 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
4636 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
4638 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_RX_BYTES) |
4639 BIT_ULL(NL80211_STA_INFO_RX_BYTES64)) &&
4640 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
4641 (u32)sinfo->rx_bytes))
4642 goto nla_put_failure;
4644 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_TX_BYTES) |
4645 BIT_ULL(NL80211_STA_INFO_TX_BYTES64)) &&
4646 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
4647 (u32)sinfo->tx_bytes))
4648 goto nla_put_failure;
4650 PUT_SINFO_U64(RX_BYTES64, rx_bytes);
4651 PUT_SINFO_U64(TX_BYTES64, tx_bytes);
4652 PUT_SINFO(LLID, llid, u16);
4653 PUT_SINFO(PLID, plid, u16);
4654 PUT_SINFO(PLINK_STATE, plink_state, u8);
4655 PUT_SINFO_U64(RX_DURATION, rx_duration);
4657 switch (rdev->wiphy.signal_type) {
4658 case CFG80211_SIGNAL_TYPE_MBM:
4659 PUT_SINFO(SIGNAL, signal, u8);
4660 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
4665 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL)) {
4666 if (!nl80211_put_signal(msg, sinfo->chains,
4667 sinfo->chain_signal,
4668 NL80211_STA_INFO_CHAIN_SIGNAL))
4669 goto nla_put_failure;
4671 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
4672 if (!nl80211_put_signal(msg, sinfo->chains,
4673 sinfo->chain_signal_avg,
4674 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
4675 goto nla_put_failure;
4677 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_TX_BITRATE)) {
4678 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
4679 NL80211_STA_INFO_TX_BITRATE))
4680 goto nla_put_failure;
4682 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_RX_BITRATE)) {
4683 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
4684 NL80211_STA_INFO_RX_BITRATE))
4685 goto nla_put_failure;
4688 PUT_SINFO(RX_PACKETS, rx_packets, u32);
4689 PUT_SINFO(TX_PACKETS, tx_packets, u32);
4690 PUT_SINFO(TX_RETRIES, tx_retries, u32);
4691 PUT_SINFO(TX_FAILED, tx_failed, u32);
4692 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
4693 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
4694 PUT_SINFO(LOCAL_PM, local_pm, u32);
4695 PUT_SINFO(PEER_PM, peer_pm, u32);
4696 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
4698 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_BSS_PARAM)) {
4699 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
4701 goto nla_put_failure;
4703 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
4704 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
4705 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
4706 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
4707 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
4708 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
4709 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
4710 sinfo->bss_param.dtim_period) ||
4711 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
4712 sinfo->bss_param.beacon_interval))
4713 goto nla_put_failure;
4715 nla_nest_end(msg, bss_param);
4717 if ((sinfo->filled & BIT_ULL(NL80211_STA_INFO_STA_FLAGS)) &&
4718 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
4719 sizeof(struct nl80211_sta_flag_update),
4721 goto nla_put_failure;
4723 PUT_SINFO_U64(T_OFFSET, t_offset);
4724 PUT_SINFO_U64(RX_DROP_MISC, rx_dropped_misc);
4725 PUT_SINFO_U64(BEACON_RX, rx_beacon);
4726 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
4727 PUT_SINFO(ACK_SIGNAL, ack_signal, u8);
4728 if (wiphy_ext_feature_isset(&rdev->wiphy,
4729 NL80211_EXT_FEATURE_DATA_ACK_SIGNAL_SUPPORT))
4730 PUT_SINFO(DATA_ACK_SIGNAL_AVG, avg_ack_signal, s8);
4733 #undef PUT_SINFO_U64
4735 if (sinfo->pertid) {
4736 struct nlattr *tidsattr;
4739 tidsattr = nla_nest_start(msg, NL80211_STA_INFO_TID_STATS);
4741 goto nla_put_failure;
4743 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
4744 struct cfg80211_tid_stats *tidstats;
4745 struct nlattr *tidattr;
4747 tidstats = &sinfo->pertid[tid];
4749 if (!tidstats->filled)
4752 tidattr = nla_nest_start(msg, tid + 1);
4754 goto nla_put_failure;
4756 #define PUT_TIDVAL_U64(attr, memb) do { \
4757 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
4758 nla_put_u64_64bit(msg, NL80211_TID_STATS_ ## attr, \
4759 tidstats->memb, NL80211_TID_STATS_PAD)) \
4760 goto nla_put_failure; \
4763 PUT_TIDVAL_U64(RX_MSDU, rx_msdu);
4764 PUT_TIDVAL_U64(TX_MSDU, tx_msdu);
4765 PUT_TIDVAL_U64(TX_MSDU_RETRIES, tx_msdu_retries);
4766 PUT_TIDVAL_U64(TX_MSDU_FAILED, tx_msdu_failed);
4768 #undef PUT_TIDVAL_U64
4769 if ((tidstats->filled &
4770 BIT(NL80211_TID_STATS_TXQ_STATS)) &&
4771 !nl80211_put_txq_stats(msg, &tidstats->txq_stats,
4772 NL80211_TID_STATS_TXQ_STATS))
4773 goto nla_put_failure;
4775 nla_nest_end(msg, tidattr);
4778 nla_nest_end(msg, tidsattr);
4781 nla_nest_end(msg, sinfoattr);
4783 if (sinfo->assoc_req_ies_len &&
4784 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
4785 sinfo->assoc_req_ies))
4786 goto nla_put_failure;
4788 cfg80211_sinfo_release_content(sinfo);
4789 genlmsg_end(msg, hdr);
4793 cfg80211_sinfo_release_content(sinfo);
4794 genlmsg_cancel(msg, hdr);
4798 static int nl80211_dump_station(struct sk_buff *skb,
4799 struct netlink_callback *cb)
4801 struct station_info sinfo;
4802 struct cfg80211_registered_device *rdev;
4803 struct wireless_dev *wdev;
4804 u8 mac_addr[ETH_ALEN];
4805 int sta_idx = cb->args[2];
4809 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
4813 if (!wdev->netdev) {
4818 if (!rdev->ops->dump_station) {
4824 memset(&sinfo, 0, sizeof(sinfo));
4825 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
4832 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
4833 NETLINK_CB(cb->skb).portid,
4834 cb->nlh->nlmsg_seq, NLM_F_MULTI,
4835 rdev, wdev->netdev, mac_addr,
4843 cb->args[2] = sta_idx;
4851 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
4853 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4854 struct net_device *dev = info->user_ptr[1];
4855 struct station_info sinfo;
4856 struct sk_buff *msg;
4857 u8 *mac_addr = NULL;
4860 memset(&sinfo, 0, sizeof(sinfo));
4862 if (!info->attrs[NL80211_ATTR_MAC])
4865 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
4867 if (!rdev->ops->get_station)
4870 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
4874 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
4876 cfg80211_sinfo_release_content(&sinfo);
4880 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
4881 info->snd_portid, info->snd_seq, 0,
4882 rdev, dev, mac_addr, &sinfo) < 0) {
4887 return genlmsg_reply(msg, info);
4890 int cfg80211_check_station_change(struct wiphy *wiphy,
4891 struct station_parameters *params,
4892 enum cfg80211_station_type statype)
4894 if (params->listen_interval != -1 &&
4895 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
4898 if (params->support_p2p_ps != -1 &&
4899 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
4903 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) &&
4904 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
4907 /* When you run into this, adjust the code below for the new flag */
4908 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
4911 case CFG80211_STA_MESH_PEER_KERNEL:
4912 case CFG80211_STA_MESH_PEER_USER:
4914 * No ignoring the TDLS flag here -- the userspace mesh
4915 * code doesn't have the bug of including TDLS in the
4918 if (params->sta_flags_mask &
4919 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4920 BIT(NL80211_STA_FLAG_MFP) |
4921 BIT(NL80211_STA_FLAG_AUTHORIZED)))
4924 case CFG80211_STA_TDLS_PEER_SETUP:
4925 case CFG80211_STA_TDLS_PEER_ACTIVE:
4926 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
4928 /* ignore since it can't change */
4929 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
4932 /* disallow mesh-specific things */
4933 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
4935 if (params->local_pm)
4937 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
4941 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
4942 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
4943 /* TDLS can't be set, ... */
4944 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
4947 * ... but don't bother the driver with it. This works around
4948 * a hostapd/wpa_supplicant issue -- it always includes the
4949 * TLDS_PEER flag in the mask even for AP mode.
4951 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
4954 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
4955 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
4956 /* reject other things that can't change */
4957 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
4959 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
4961 if (params->supported_rates)
4963 if (params->ext_capab || params->ht_capa || params->vht_capa ||
4968 if (statype != CFG80211_STA_AP_CLIENT &&
4969 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
4975 case CFG80211_STA_AP_MLME_CLIENT:
4976 /* Use this only for authorizing/unauthorizing a station */
4977 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
4980 case CFG80211_STA_AP_CLIENT:
4981 case CFG80211_STA_AP_CLIENT_UNASSOC:
4982 /* accept only the listed bits */
4983 if (params->sta_flags_mask &
4984 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
4985 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4986 BIT(NL80211_STA_FLAG_ASSOCIATED) |
4987 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4988 BIT(NL80211_STA_FLAG_WME) |
4989 BIT(NL80211_STA_FLAG_MFP)))
4992 /* but authenticated/associated only if driver handles it */
4993 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
4994 params->sta_flags_mask &
4995 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4996 BIT(NL80211_STA_FLAG_ASSOCIATED)))
4999 case CFG80211_STA_IBSS:
5000 case CFG80211_STA_AP_STA:
5001 /* reject any changes other than AUTHORIZED */
5002 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
5005 case CFG80211_STA_TDLS_PEER_SETUP:
5006 /* reject any changes other than AUTHORIZED or WME */
5007 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5008 BIT(NL80211_STA_FLAG_WME)))
5010 /* force (at least) rates when authorizing */
5011 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
5012 !params->supported_rates)
5015 case CFG80211_STA_TDLS_PEER_ACTIVE:
5016 /* reject any changes */
5018 case CFG80211_STA_MESH_PEER_KERNEL:
5019 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5022 case CFG80211_STA_MESH_PEER_USER:
5023 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
5024 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
5030 * Older kernel versions ignored this attribute entirely, so don't
5031 * reject attempts to update it but mark it as unused instead so the
5032 * driver won't look at the data.
5034 if (statype != CFG80211_STA_AP_CLIENT_UNASSOC &&
5035 statype != CFG80211_STA_TDLS_PEER_SETUP)
5036 params->opmode_notif_used = false;
5040 EXPORT_SYMBOL(cfg80211_check_station_change);
5043 * Get vlan interface making sure it is running and on the right wiphy.
5045 static struct net_device *get_vlan(struct genl_info *info,
5046 struct cfg80211_registered_device *rdev)
5048 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
5049 struct net_device *v;
5055 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
5057 return ERR_PTR(-ENODEV);
5059 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
5064 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5065 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5066 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
5071 if (!netif_running(v)) {
5079 return ERR_PTR(ret);
5082 static const struct nla_policy
5083 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
5084 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
5085 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
5088 static int nl80211_parse_sta_wme(struct genl_info *info,
5089 struct station_parameters *params)
5091 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
5095 /* parse WME attributes if present */
5096 if (!info->attrs[NL80211_ATTR_STA_WME])
5099 nla = info->attrs[NL80211_ATTR_STA_WME];
5100 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
5101 nl80211_sta_wme_policy, info->extack);
5105 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
5106 params->uapsd_queues = nla_get_u8(
5107 tb[NL80211_STA_WME_UAPSD_QUEUES]);
5108 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
5111 if (tb[NL80211_STA_WME_MAX_SP])
5112 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
5114 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
5117 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
5122 static int nl80211_parse_sta_channel_info(struct genl_info *info,
5123 struct station_parameters *params)
5125 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
5126 params->supported_channels =
5127 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5128 params->supported_channels_len =
5129 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5131 * Need to include at least one (first channel, number of
5132 * channels) tuple for each subband, and must have proper
5133 * tuples for the rest of the data as well.
5135 if (params->supported_channels_len < 2)
5137 if (params->supported_channels_len % 2)
5141 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
5142 params->supported_oper_classes =
5143 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5144 params->supported_oper_classes_len =
5145 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5147 * The value of the Length field of the Supported Operating
5148 * Classes element is between 2 and 253.
5150 if (params->supported_oper_classes_len < 2 ||
5151 params->supported_oper_classes_len > 253)
5157 static int nl80211_set_station_tdls(struct genl_info *info,
5158 struct station_parameters *params)
5161 /* Dummy STA entry gets updated once the peer capabilities are known */
5162 if (info->attrs[NL80211_ATTR_PEER_AID])
5163 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5164 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5166 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5167 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5169 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5170 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5172 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5173 params->he_capa_len =
5174 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5176 if (params->he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5180 err = nl80211_parse_sta_channel_info(info, params);
5184 return nl80211_parse_sta_wme(info, params);
5187 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
5189 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5190 struct net_device *dev = info->user_ptr[1];
5191 struct station_parameters params;
5195 memset(¶ms, 0, sizeof(params));
5197 if (!rdev->ops->change_station)
5201 * AID and listen_interval properties can be set only for unassociated
5202 * station. Include these parameters here and will check them in
5203 * cfg80211_check_station_change().
5205 if (info->attrs[NL80211_ATTR_STA_AID])
5206 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5208 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5209 params.listen_interval =
5210 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5212 params.listen_interval = -1;
5214 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5217 tmp = nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5218 if (tmp >= NUM_NL80211_P2P_PS_STATUS)
5221 params.support_p2p_ps = tmp;
5223 params.support_p2p_ps = -1;
5226 if (!info->attrs[NL80211_ATTR_MAC])
5229 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5231 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
5232 params.supported_rates =
5233 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5234 params.supported_rates_len =
5235 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5238 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5240 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5241 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5244 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5246 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5247 params.ext_capab_len =
5248 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5251 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5254 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
5255 params.plink_action =
5256 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5257 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
5261 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
5262 params.plink_state =
5263 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
5264 if (params.plink_state >= NUM_NL80211_PLINK_STATES)
5266 if (info->attrs[NL80211_ATTR_MESH_PEER_AID]) {
5267 params.peer_aid = nla_get_u16(
5268 info->attrs[NL80211_ATTR_MESH_PEER_AID]);
5269 if (params.peer_aid > IEEE80211_MAX_AID)
5272 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
5275 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]) {
5276 enum nl80211_mesh_power_mode pm = nla_get_u32(
5277 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
5279 if (pm <= NL80211_MESH_POWER_UNKNOWN ||
5280 pm > NL80211_MESH_POWER_MAX)
5283 params.local_pm = pm;
5286 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5287 params.opmode_notif_used = true;
5288 params.opmode_notif =
5289 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5292 /* Include parameters for TDLS peer (will check later) */
5293 err = nl80211_set_station_tdls(info, ¶ms);
5297 params.vlan = get_vlan(info, rdev);
5298 if (IS_ERR(params.vlan))
5299 return PTR_ERR(params.vlan);
5301 switch (dev->ieee80211_ptr->iftype) {
5302 case NL80211_IFTYPE_AP:
5303 case NL80211_IFTYPE_AP_VLAN:
5304 case NL80211_IFTYPE_P2P_GO:
5305 case NL80211_IFTYPE_P2P_CLIENT:
5306 case NL80211_IFTYPE_STATION:
5307 case NL80211_IFTYPE_ADHOC:
5308 case NL80211_IFTYPE_MESH_POINT:
5315 /* driver will call cfg80211_check_station_change() */
5316 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
5320 dev_put(params.vlan);
5325 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
5327 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5329 struct net_device *dev = info->user_ptr[1];
5330 struct station_parameters params;
5331 u8 *mac_addr = NULL;
5332 u32 auth_assoc = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5333 BIT(NL80211_STA_FLAG_ASSOCIATED);
5335 memset(¶ms, 0, sizeof(params));
5337 if (!rdev->ops->add_station)
5340 if (!info->attrs[NL80211_ATTR_MAC])
5343 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5346 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
5349 if (!info->attrs[NL80211_ATTR_STA_AID] &&
5350 !info->attrs[NL80211_ATTR_PEER_AID])
5353 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5354 params.supported_rates =
5355 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5356 params.supported_rates_len =
5357 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5358 params.listen_interval =
5359 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5361 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5364 tmp = nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5365 if (tmp >= NUM_NL80211_P2P_PS_STATUS)
5368 params.support_p2p_ps = tmp;
5371 * if not specified, assume it's supported for P2P GO interface,
5372 * and is NOT supported for AP interface
5374 params.support_p2p_ps =
5375 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO;
5378 if (info->attrs[NL80211_ATTR_PEER_AID])
5379 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5381 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5382 if (!params.aid || params.aid > IEEE80211_MAX_AID)
5385 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5387 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5388 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5391 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5393 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5394 params.ext_capab_len =
5395 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5398 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5400 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5402 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5404 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5406 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5408 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5409 params.he_capa_len =
5410 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5412 /* max len is validated in nla policy */
5413 if (params.he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5417 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5418 params.opmode_notif_used = true;
5419 params.opmode_notif =
5420 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5423 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION]) {
5424 params.plink_action =
5425 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5426 if (params.plink_action >= NUM_NL80211_PLINK_ACTIONS)
5430 err = nl80211_parse_sta_channel_info(info, ¶ms);
5434 err = nl80211_parse_sta_wme(info, ¶ms);
5438 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5441 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
5442 * as userspace might just pass through the capabilities from the IEs
5443 * directly, rather than enforcing this restriction and returning an
5444 * error in this case.
5446 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
5447 params.ht_capa = NULL;
5448 params.vht_capa = NULL;
5450 /* HE requires WME */
5451 if (params.he_capa_len)
5455 /* When you run into this, adjust the code below for the new flag */
5456 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5458 switch (dev->ieee80211_ptr->iftype) {
5459 case NL80211_IFTYPE_AP:
5460 case NL80211_IFTYPE_AP_VLAN:
5461 case NL80211_IFTYPE_P2P_GO:
5462 /* ignore WME attributes if iface/sta is not capable */
5463 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
5464 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
5465 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5467 /* TDLS peers cannot be added */
5468 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5469 info->attrs[NL80211_ATTR_PEER_AID])
5471 /* but don't bother the driver with it */
5472 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5474 /* allow authenticated/associated only if driver handles it */
5475 if (!(rdev->wiphy.features &
5476 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5477 params.sta_flags_mask & auth_assoc)
5480 /* Older userspace, or userspace wanting to be compatible with
5481 * !NL80211_FEATURE_FULL_AP_CLIENT_STATE, will not set the auth
5482 * and assoc flags in the mask, but assumes the station will be
5483 * added as associated anyway since this was the required driver
5484 * behaviour before NL80211_FEATURE_FULL_AP_CLIENT_STATE was
5486 * In order to not bother drivers with this quirk in the API
5487 * set the flags in both the mask and set for new stations in
5490 if (!(params.sta_flags_mask & auth_assoc)) {
5491 params.sta_flags_mask |= auth_assoc;
5492 params.sta_flags_set |= auth_assoc;
5495 /* must be last in here for error handling */
5496 params.vlan = get_vlan(info, rdev);
5497 if (IS_ERR(params.vlan))
5498 return PTR_ERR(params.vlan);
5500 case NL80211_IFTYPE_MESH_POINT:
5501 /* ignore uAPSD data */
5502 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5504 /* associated is disallowed */
5505 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
5507 /* TDLS peers cannot be added */
5508 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5509 info->attrs[NL80211_ATTR_PEER_AID])
5512 case NL80211_IFTYPE_STATION:
5513 case NL80211_IFTYPE_P2P_CLIENT:
5514 /* ignore uAPSD data */
5515 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5517 /* these are disallowed */
5518 if (params.sta_flags_mask &
5519 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
5520 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
5522 /* Only TDLS peers can be added */
5523 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5525 /* Can only add if TDLS ... */
5526 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
5528 /* ... with external setup is supported */
5529 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
5532 * Older wpa_supplicant versions always mark the TDLS peer
5533 * as authorized, but it shouldn't yet be.
5535 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
5541 /* be aware of params.vlan when changing code here */
5543 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
5546 dev_put(params.vlan);
5550 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
5552 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5553 struct net_device *dev = info->user_ptr[1];
5554 struct station_del_parameters params;
5556 memset(¶ms, 0, sizeof(params));
5558 if (info->attrs[NL80211_ATTR_MAC])
5559 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
5561 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5562 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5563 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
5564 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5567 if (!rdev->ops->del_station)
5570 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
5572 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
5573 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
5574 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
5577 /* Default to Deauthentication frame */
5578 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
5581 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
5582 params.reason_code =
5583 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
5584 if (params.reason_code == 0)
5585 return -EINVAL; /* 0 is reserved */
5587 /* Default to reason code 2 */
5588 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
5591 return rdev_del_station(rdev, dev, ¶ms);
5594 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
5595 int flags, struct net_device *dev,
5596 u8 *dst, u8 *next_hop,
5597 struct mpath_info *pinfo)
5600 struct nlattr *pinfoattr;
5602 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
5606 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5607 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
5608 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
5609 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
5610 goto nla_put_failure;
5612 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
5614 goto nla_put_failure;
5615 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
5616 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
5618 goto nla_put_failure;
5619 if (((pinfo->filled & MPATH_INFO_SN) &&
5620 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
5621 ((pinfo->filled & MPATH_INFO_METRIC) &&
5622 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
5624 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
5625 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
5627 ((pinfo->filled & MPATH_INFO_FLAGS) &&
5628 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
5630 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
5631 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
5632 pinfo->discovery_timeout)) ||
5633 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
5634 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
5635 pinfo->discovery_retries)))
5636 goto nla_put_failure;
5638 nla_nest_end(msg, pinfoattr);
5640 genlmsg_end(msg, hdr);
5644 genlmsg_cancel(msg, hdr);
5648 static int nl80211_dump_mpath(struct sk_buff *skb,
5649 struct netlink_callback *cb)
5651 struct mpath_info pinfo;
5652 struct cfg80211_registered_device *rdev;
5653 struct wireless_dev *wdev;
5655 u8 next_hop[ETH_ALEN];
5656 int path_idx = cb->args[2];
5660 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
5664 if (!rdev->ops->dump_mpath) {
5669 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
5675 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
5682 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
5683 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5684 wdev->netdev, dst, next_hop,
5692 cb->args[2] = path_idx;
5699 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
5701 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5703 struct net_device *dev = info->user_ptr[1];
5704 struct mpath_info pinfo;
5705 struct sk_buff *msg;
5707 u8 next_hop[ETH_ALEN];
5709 memset(&pinfo, 0, sizeof(pinfo));
5711 if (!info->attrs[NL80211_ATTR_MAC])
5714 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5716 if (!rdev->ops->get_mpath)
5719 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5722 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
5726 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5730 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
5731 dev, dst, next_hop, &pinfo) < 0) {
5736 return genlmsg_reply(msg, info);
5739 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
5741 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5742 struct net_device *dev = info->user_ptr[1];
5744 u8 *next_hop = NULL;
5746 if (!info->attrs[NL80211_ATTR_MAC])
5749 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
5752 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5753 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
5755 if (!rdev->ops->change_mpath)
5758 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5761 return rdev_change_mpath(rdev, dev, dst, next_hop);
5764 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
5766 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5767 struct net_device *dev = info->user_ptr[1];
5769 u8 *next_hop = NULL;
5771 if (!info->attrs[NL80211_ATTR_MAC])
5774 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
5777 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5778 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
5780 if (!rdev->ops->add_mpath)
5783 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5786 return rdev_add_mpath(rdev, dev, dst, next_hop);
5789 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
5791 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5792 struct net_device *dev = info->user_ptr[1];
5795 if (info->attrs[NL80211_ATTR_MAC])
5796 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5798 if (!rdev->ops->del_mpath)
5801 return rdev_del_mpath(rdev, dev, dst);
5804 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
5806 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5808 struct net_device *dev = info->user_ptr[1];
5809 struct mpath_info pinfo;
5810 struct sk_buff *msg;
5814 memset(&pinfo, 0, sizeof(pinfo));
5816 if (!info->attrs[NL80211_ATTR_MAC])
5819 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5821 if (!rdev->ops->get_mpp)
5824 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5827 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
5831 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5835 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
5836 dev, dst, mpp, &pinfo) < 0) {
5841 return genlmsg_reply(msg, info);
5844 static int nl80211_dump_mpp(struct sk_buff *skb,
5845 struct netlink_callback *cb)
5847 struct mpath_info pinfo;
5848 struct cfg80211_registered_device *rdev;
5849 struct wireless_dev *wdev;
5852 int path_idx = cb->args[2];
5856 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
5860 if (!rdev->ops->dump_mpp) {
5865 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
5871 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
5878 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
5879 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5880 wdev->netdev, dst, mpp,
5888 cb->args[2] = path_idx;
5895 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
5897 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5898 struct net_device *dev = info->user_ptr[1];
5899 struct wireless_dev *wdev = dev->ieee80211_ptr;
5900 struct bss_parameters params;
5903 memset(¶ms, 0, sizeof(params));
5904 /* default to not changing parameters */
5905 params.use_cts_prot = -1;
5906 params.use_short_preamble = -1;
5907 params.use_short_slot_time = -1;
5908 params.ap_isolate = -1;
5909 params.ht_opmode = -1;
5910 params.p2p_ctwindow = -1;
5911 params.p2p_opp_ps = -1;
5913 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
5914 params.use_cts_prot =
5915 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
5916 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
5917 params.use_short_preamble =
5918 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
5919 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
5920 params.use_short_slot_time =
5921 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
5922 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
5923 params.basic_rates =
5924 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
5925 params.basic_rates_len =
5926 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
5928 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
5929 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
5930 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
5932 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
5934 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
5935 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5937 params.p2p_ctwindow =
5938 nla_get_s8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
5939 if (params.p2p_ctwindow < 0)
5941 if (params.p2p_ctwindow != 0 &&
5942 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
5946 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
5949 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5951 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
5954 params.p2p_opp_ps = tmp;
5955 if (params.p2p_opp_ps &&
5956 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
5960 if (!rdev->ops->change_bss)
5963 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5964 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5968 err = rdev_change_bss(rdev, dev, ¶ms);
5974 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
5978 enum nl80211_user_reg_hint_type user_reg_hint_type;
5982 * You should only get this when cfg80211 hasn't yet initialized
5983 * completely when built-in to the kernel right between the time
5984 * window between nl80211_init() and regulatory_init(), if that is
5987 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
5988 return -EINPROGRESS;
5990 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
5991 user_reg_hint_type =
5992 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
5994 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
5996 switch (user_reg_hint_type) {
5997 case NL80211_USER_REG_HINT_USER:
5998 case NL80211_USER_REG_HINT_CELL_BASE:
5999 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6002 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6003 return regulatory_hint_user(data, user_reg_hint_type);
6004 case NL80211_USER_REG_HINT_INDOOR:
6005 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
6006 owner_nlportid = info->snd_portid;
6007 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
6013 return regulatory_hint_indoor(is_indoor, owner_nlportid);
6019 static int nl80211_reload_regdb(struct sk_buff *skb, struct genl_info *info)
6021 return reg_reload_regdb();
6024 static int nl80211_get_mesh_config(struct sk_buff *skb,
6025 struct genl_info *info)
6027 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6028 struct net_device *dev = info->user_ptr[1];
6029 struct wireless_dev *wdev = dev->ieee80211_ptr;
6030 struct mesh_config cur_params;
6033 struct nlattr *pinfoattr;
6034 struct sk_buff *msg;
6036 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6039 if (!rdev->ops->get_mesh_config)
6043 /* If not connected, get default parameters */
6044 if (!wdev->mesh_id_len)
6045 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
6047 err = rdev_get_mesh_config(rdev, dev, &cur_params);
6053 /* Draw up a netlink message to send back */
6054 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6057 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6058 NL80211_CMD_GET_MESH_CONFIG);
6061 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
6063 goto nla_put_failure;
6064 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6065 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
6066 cur_params.dot11MeshRetryTimeout) ||
6067 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6068 cur_params.dot11MeshConfirmTimeout) ||
6069 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
6070 cur_params.dot11MeshHoldingTimeout) ||
6071 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
6072 cur_params.dot11MeshMaxPeerLinks) ||
6073 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
6074 cur_params.dot11MeshMaxRetries) ||
6075 nla_put_u8(msg, NL80211_MESHCONF_TTL,
6076 cur_params.dot11MeshTTL) ||
6077 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
6078 cur_params.element_ttl) ||
6079 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6080 cur_params.auto_open_plinks) ||
6081 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6082 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
6083 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6084 cur_params.dot11MeshHWMPmaxPREQretries) ||
6085 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
6086 cur_params.path_refresh_time) ||
6087 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6088 cur_params.min_discovery_timeout) ||
6089 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6090 cur_params.dot11MeshHWMPactivePathTimeout) ||
6091 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6092 cur_params.dot11MeshHWMPpreqMinInterval) ||
6093 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6094 cur_params.dot11MeshHWMPperrMinInterval) ||
6095 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6096 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
6097 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
6098 cur_params.dot11MeshHWMPRootMode) ||
6099 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6100 cur_params.dot11MeshHWMPRannInterval) ||
6101 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6102 cur_params.dot11MeshGateAnnouncementProtocol) ||
6103 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
6104 cur_params.dot11MeshForwarding) ||
6105 nla_put_s32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
6106 cur_params.rssi_threshold) ||
6107 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
6108 cur_params.ht_opmode) ||
6109 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6110 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
6111 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6112 cur_params.dot11MeshHWMProotInterval) ||
6113 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6114 cur_params.dot11MeshHWMPconfirmationInterval) ||
6115 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
6116 cur_params.power_mode) ||
6117 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
6118 cur_params.dot11MeshAwakeWindowDuration) ||
6119 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
6120 cur_params.plink_timeout))
6121 goto nla_put_failure;
6122 nla_nest_end(msg, pinfoattr);
6123 genlmsg_end(msg, hdr);
6124 return genlmsg_reply(msg, info);
6132 static const struct nla_policy nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
6133 [NL80211_MESHCONF_RETRY_TIMEOUT] = { .type = NLA_U16 },
6134 [NL80211_MESHCONF_CONFIRM_TIMEOUT] = { .type = NLA_U16 },
6135 [NL80211_MESHCONF_HOLDING_TIMEOUT] = { .type = NLA_U16 },
6136 [NL80211_MESHCONF_MAX_PEER_LINKS] = { .type = NLA_U16 },
6137 [NL80211_MESHCONF_MAX_RETRIES] = { .type = NLA_U8 },
6138 [NL80211_MESHCONF_TTL] = { .type = NLA_U8 },
6139 [NL80211_MESHCONF_ELEMENT_TTL] = { .type = NLA_U8 },
6140 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = { .type = NLA_U8 },
6141 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] = { .type = NLA_U32 },
6142 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
6143 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
6144 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = { .type = NLA_U16 },
6145 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
6146 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] = { .type = NLA_U16 },
6147 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] = { .type = NLA_U16 },
6148 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] = { .type = NLA_U16 },
6149 [NL80211_MESHCONF_HWMP_ROOTMODE] = { .type = NLA_U8 },
6150 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] = { .type = NLA_U16 },
6151 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = { .type = NLA_U8 },
6152 [NL80211_MESHCONF_FORWARDING] = { .type = NLA_U8 },
6153 [NL80211_MESHCONF_RSSI_THRESHOLD] = { .type = NLA_U32 },
6154 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
6155 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
6156 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] = { .type = NLA_U16 },
6157 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] = { .type = NLA_U16 },
6158 [NL80211_MESHCONF_POWER_MODE] = { .type = NLA_U32 },
6159 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
6160 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
6163 static const struct nla_policy
6164 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
6165 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
6166 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
6167 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
6168 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
6169 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
6170 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
6171 [NL80211_MESH_SETUP_IE] = { .type = NLA_BINARY,
6172 .len = IEEE80211_MAX_DATA_LEN },
6173 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
6176 static int nl80211_check_bool(const struct nlattr *nla, u8 min, u8 max, bool *out)
6178 u8 val = nla_get_u8(nla);
6179 if (val < min || val > max)
6185 static int nl80211_check_u8(const struct nlattr *nla, u8 min, u8 max, u8 *out)
6187 u8 val = nla_get_u8(nla);
6188 if (val < min || val > max)
6194 static int nl80211_check_u16(const struct nlattr *nla, u16 min, u16 max, u16 *out)
6196 u16 val = nla_get_u16(nla);
6197 if (val < min || val > max)
6203 static int nl80211_check_u32(const struct nlattr *nla, u32 min, u32 max, u32 *out)
6205 u32 val = nla_get_u32(nla);
6206 if (val < min || val > max)
6212 static int nl80211_check_s32(const struct nlattr *nla, s32 min, s32 max, s32 *out)
6214 s32 val = nla_get_s32(nla);
6215 if (val < min || val > max)
6221 static int nl80211_check_power_mode(const struct nlattr *nla,
6222 enum nl80211_mesh_power_mode min,
6223 enum nl80211_mesh_power_mode max,
6224 enum nl80211_mesh_power_mode *out)
6226 u32 val = nla_get_u32(nla);
6227 if (val < min || val > max)
6233 static int nl80211_parse_mesh_config(struct genl_info *info,
6234 struct mesh_config *cfg,
6237 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
6241 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, min, max, mask, attr, fn) \
6244 if (fn(tb[attr], min, max, &cfg->param)) \
6246 mask |= (1 << (attr - 1)); \
6250 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
6252 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
6253 info->attrs[NL80211_ATTR_MESH_CONFIG],
6254 nl80211_meshconf_params_policy, info->extack))
6257 /* This makes sure that there aren't more than 32 mesh config
6258 * parameters (otherwise our bitfield scheme would not work.) */
6259 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
6261 /* Fill in the params struct */
6262 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, 1, 255,
6263 mask, NL80211_MESHCONF_RETRY_TIMEOUT,
6265 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, 1, 255,
6266 mask, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6268 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, 1, 255,
6269 mask, NL80211_MESHCONF_HOLDING_TIMEOUT,
6271 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, 0, 255,
6272 mask, NL80211_MESHCONF_MAX_PEER_LINKS,
6274 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, 0, 16,
6275 mask, NL80211_MESHCONF_MAX_RETRIES,
6277 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, 1, 255,
6278 mask, NL80211_MESHCONF_TTL, nl80211_check_u8);
6279 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, 1, 255,
6280 mask, NL80211_MESHCONF_ELEMENT_TTL,
6282 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, 0, 1,
6283 mask, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6284 nl80211_check_bool);
6285 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
6287 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6289 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, 0, 255,
6290 mask, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6292 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, 1, 65535,
6293 mask, NL80211_MESHCONF_PATH_REFRESH_TIME,
6295 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, 1, 65535,
6296 mask, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6298 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
6300 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6302 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval,
6304 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6306 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval,
6308 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6310 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6311 dot11MeshHWMPnetDiameterTraversalTime,
6313 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6315 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, 0, 4,
6316 mask, NL80211_MESHCONF_HWMP_ROOTMODE,
6318 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, 1, 65535,
6319 mask, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6321 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6322 dot11MeshGateAnnouncementProtocol, 0, 1,
6323 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6324 nl80211_check_bool);
6325 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, 0, 1,
6326 mask, NL80211_MESHCONF_FORWARDING,
6327 nl80211_check_bool);
6328 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, -255, 0,
6329 mask, NL80211_MESHCONF_RSSI_THRESHOLD,
6332 * Check HT operation mode based on
6333 * IEEE 802.11-2016 9.4.2.57 HT Operation element.
6335 if (tb[NL80211_MESHCONF_HT_OPMODE]) {
6336 ht_opmode = nla_get_u16(tb[NL80211_MESHCONF_HT_OPMODE]);
6338 if (ht_opmode & ~(IEEE80211_HT_OP_MODE_PROTECTION |
6339 IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT |
6340 IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT))
6343 /* NON_HT_STA bit is reserved, but some programs set it */
6344 ht_opmode &= ~IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT;
6346 cfg->ht_opmode = ht_opmode;
6347 mask |= (1 << (NL80211_MESHCONF_HT_OPMODE - 1));
6349 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathToRootTimeout,
6351 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6353 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, 1, 65535,
6354 mask, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6356 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6357 dot11MeshHWMPconfirmationInterval,
6359 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6361 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode,
6362 NL80211_MESH_POWER_ACTIVE,
6363 NL80211_MESH_POWER_MAX,
6364 mask, NL80211_MESHCONF_POWER_MODE,
6365 nl80211_check_power_mode);
6366 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration,
6368 NL80211_MESHCONF_AWAKE_WINDOW, nl80211_check_u16);
6369 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, 0, 0xffffffff,
6370 mask, NL80211_MESHCONF_PLINK_TIMEOUT,
6377 #undef FILL_IN_MESH_PARAM_IF_SET
6380 static int nl80211_parse_mesh_setup(struct genl_info *info,
6381 struct mesh_setup *setup)
6383 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6384 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
6386 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
6388 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
6389 info->attrs[NL80211_ATTR_MESH_SETUP],
6390 nl80211_mesh_setup_params_policy, info->extack))
6393 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
6394 setup->sync_method =
6395 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
6396 IEEE80211_SYNC_METHOD_VENDOR :
6397 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
6399 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
6400 setup->path_sel_proto =
6401 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
6402 IEEE80211_PATH_PROTOCOL_VENDOR :
6403 IEEE80211_PATH_PROTOCOL_HWMP;
6405 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
6406 setup->path_metric =
6407 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
6408 IEEE80211_PATH_METRIC_VENDOR :
6409 IEEE80211_PATH_METRIC_AIRTIME;
6411 if (tb[NL80211_MESH_SETUP_IE]) {
6412 struct nlattr *ieattr =
6413 tb[NL80211_MESH_SETUP_IE];
6414 if (!is_valid_ie_attr(ieattr))
6416 setup->ie = nla_data(ieattr);
6417 setup->ie_len = nla_len(ieattr);
6419 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
6420 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
6422 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
6423 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
6424 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
6425 if (setup->is_secure)
6426 setup->user_mpm = true;
6428 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
6429 if (!setup->user_mpm)
6432 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
6438 static int nl80211_update_mesh_config(struct sk_buff *skb,
6439 struct genl_info *info)
6441 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6442 struct net_device *dev = info->user_ptr[1];
6443 struct wireless_dev *wdev = dev->ieee80211_ptr;
6444 struct mesh_config cfg;
6448 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6451 if (!rdev->ops->update_mesh_config)
6454 err = nl80211_parse_mesh_config(info, &cfg, &mask);
6459 if (!wdev->mesh_id_len)
6463 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
6470 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
6471 struct sk_buff *msg)
6473 struct nlattr *nl_reg_rules;
6476 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
6477 (regdom->dfs_region &&
6478 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
6479 goto nla_put_failure;
6481 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
6483 goto nla_put_failure;
6485 for (i = 0; i < regdom->n_reg_rules; i++) {
6486 struct nlattr *nl_reg_rule;
6487 const struct ieee80211_reg_rule *reg_rule;
6488 const struct ieee80211_freq_range *freq_range;
6489 const struct ieee80211_power_rule *power_rule;
6490 unsigned int max_bandwidth_khz;
6492 reg_rule = ®dom->reg_rules[i];
6493 freq_range = ®_rule->freq_range;
6494 power_rule = ®_rule->power_rule;
6496 nl_reg_rule = nla_nest_start(msg, i);
6498 goto nla_put_failure;
6500 max_bandwidth_khz = freq_range->max_bandwidth_khz;
6501 if (!max_bandwidth_khz)
6502 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
6505 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
6507 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
6508 freq_range->start_freq_khz) ||
6509 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
6510 freq_range->end_freq_khz) ||
6511 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
6512 max_bandwidth_khz) ||
6513 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
6514 power_rule->max_antenna_gain) ||
6515 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
6516 power_rule->max_eirp) ||
6517 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
6518 reg_rule->dfs_cac_ms))
6519 goto nla_put_failure;
6521 nla_nest_end(msg, nl_reg_rule);
6524 nla_nest_end(msg, nl_reg_rules);
6531 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
6533 const struct ieee80211_regdomain *regdom = NULL;
6534 struct cfg80211_registered_device *rdev;
6535 struct wiphy *wiphy = NULL;
6536 struct sk_buff *msg;
6539 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6543 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6544 NL80211_CMD_GET_REG);
6548 if (info->attrs[NL80211_ATTR_WIPHY]) {
6551 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
6554 return PTR_ERR(rdev);
6557 wiphy = &rdev->wiphy;
6558 self_managed = wiphy->regulatory_flags &
6559 REGULATORY_WIPHY_SELF_MANAGED;
6560 regdom = get_wiphy_regdom(wiphy);
6562 /* a self-managed-reg device must have a private regdom */
6563 if (WARN_ON(!regdom && self_managed)) {
6569 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6570 goto nla_put_failure;
6573 if (!wiphy && reg_last_request_cell_base() &&
6574 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6575 NL80211_USER_REG_HINT_CELL_BASE))
6576 goto nla_put_failure;
6581 regdom = rcu_dereference(cfg80211_regdomain);
6583 if (nl80211_put_regdom(regdom, msg))
6584 goto nla_put_failure_rcu;
6588 genlmsg_end(msg, hdr);
6589 return genlmsg_reply(msg, info);
6591 nla_put_failure_rcu:
6599 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
6600 u32 seq, int flags, struct wiphy *wiphy,
6601 const struct ieee80211_regdomain *regdom)
6603 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6604 NL80211_CMD_GET_REG);
6609 genl_dump_check_consistent(cb, hdr);
6611 if (nl80211_put_regdom(regdom, msg))
6612 goto nla_put_failure;
6614 if (!wiphy && reg_last_request_cell_base() &&
6615 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6616 NL80211_USER_REG_HINT_CELL_BASE))
6617 goto nla_put_failure;
6620 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6621 goto nla_put_failure;
6623 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
6624 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
6625 goto nla_put_failure;
6627 genlmsg_end(msg, hdr);
6631 genlmsg_cancel(msg, hdr);
6635 static int nl80211_get_reg_dump(struct sk_buff *skb,
6636 struct netlink_callback *cb)
6638 const struct ieee80211_regdomain *regdom = NULL;
6639 struct cfg80211_registered_device *rdev;
6640 int err, reg_idx, start = cb->args[2];
6644 if (cfg80211_regdomain && start == 0) {
6645 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6647 rtnl_dereference(cfg80211_regdomain));
6652 /* the global regdom is idx 0 */
6654 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
6655 regdom = get_wiphy_regdom(&rdev->wiphy);
6659 if (++reg_idx <= start)
6662 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6663 NLM_F_MULTI, &rdev->wiphy, regdom);
6670 cb->args[2] = reg_idx;
6677 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
6678 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
6679 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
6680 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
6681 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
6682 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
6683 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
6684 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
6685 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
6688 static int parse_reg_rule(struct nlattr *tb[],
6689 struct ieee80211_reg_rule *reg_rule)
6691 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
6692 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
6694 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
6696 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
6698 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
6700 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
6702 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
6705 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
6707 freq_range->start_freq_khz =
6708 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
6709 freq_range->end_freq_khz =
6710 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
6711 freq_range->max_bandwidth_khz =
6712 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
6714 power_rule->max_eirp =
6715 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
6717 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
6718 power_rule->max_antenna_gain =
6719 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
6721 if (tb[NL80211_ATTR_DFS_CAC_TIME])
6722 reg_rule->dfs_cac_ms =
6723 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
6728 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
6730 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
6731 struct nlattr *nl_reg_rule;
6733 int rem_reg_rules, r;
6734 u32 num_rules = 0, rule_idx = 0, size_of_regd;
6735 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
6736 struct ieee80211_regdomain *rd;
6738 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6741 if (!info->attrs[NL80211_ATTR_REG_RULES])
6744 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6746 if (info->attrs[NL80211_ATTR_DFS_REGION])
6747 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
6749 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
6752 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
6756 if (!reg_is_valid_request(alpha2))
6759 size_of_regd = sizeof(struct ieee80211_regdomain) +
6760 num_rules * sizeof(struct ieee80211_reg_rule);
6762 rd = kzalloc(size_of_regd, GFP_KERNEL);
6766 rd->n_reg_rules = num_rules;
6767 rd->alpha2[0] = alpha2[0];
6768 rd->alpha2[1] = alpha2[1];
6771 * Disable DFS master mode if the DFS region was
6772 * not supported or known on this kernel.
6774 if (reg_supported_dfs_region(dfs_region))
6775 rd->dfs_region = dfs_region;
6777 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
6779 r = nla_parse_nested(tb, NL80211_REG_RULE_ATTR_MAX,
6780 nl_reg_rule, reg_rule_policy,
6784 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
6790 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
6796 /* set_regdom takes ownership of rd */
6797 return set_regdom(rd, REGD_SOURCE_CRDA);
6802 #endif /* CONFIG_CFG80211_CRDA_SUPPORT */
6804 static int validate_scan_freqs(struct nlattr *freqs)
6806 struct nlattr *attr1, *attr2;
6807 int n_channels = 0, tmp1, tmp2;
6809 nla_for_each_nested(attr1, freqs, tmp1)
6810 if (nla_len(attr1) != sizeof(u32))
6813 nla_for_each_nested(attr1, freqs, tmp1) {
6816 * Some hardware has a limited channel list for
6817 * scanning, and it is pretty much nonsensical
6818 * to scan for a channel twice, so disallow that
6819 * and don't require drivers to check that the
6820 * channel list they get isn't longer than what
6821 * they can scan, as long as they can scan all
6822 * the channels they registered at once.
6824 nla_for_each_nested(attr2, freqs, tmp2)
6825 if (attr1 != attr2 &&
6826 nla_get_u32(attr1) == nla_get_u32(attr2))
6833 static bool is_band_valid(struct wiphy *wiphy, enum nl80211_band b)
6835 return b < NUM_NL80211_BANDS && wiphy->bands[b];
6838 static int parse_bss_select(struct nlattr *nla, struct wiphy *wiphy,
6839 struct cfg80211_bss_selection *bss_select)
6841 struct nlattr *attr[NL80211_BSS_SELECT_ATTR_MAX + 1];
6842 struct nlattr *nest;
6847 /* only process one nested attribute */
6848 nest = nla_data(nla);
6849 if (!nla_ok(nest, nla_len(nest)))
6852 err = nla_parse_nested(attr, NL80211_BSS_SELECT_ATTR_MAX, nest,
6853 nl80211_bss_select_policy, NULL);
6857 /* only one attribute may be given */
6858 for (i = 0; i <= NL80211_BSS_SELECT_ATTR_MAX; i++) {
6866 bss_select->behaviour = __NL80211_BSS_SELECT_ATTR_INVALID;
6868 if (attr[NL80211_BSS_SELECT_ATTR_RSSI])
6869 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI;
6871 if (attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]) {
6872 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_BAND_PREF;
6873 bss_select->param.band_pref =
6874 nla_get_u32(attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]);
6875 if (!is_band_valid(wiphy, bss_select->param.band_pref))
6879 if (attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]) {
6880 struct nl80211_bss_select_rssi_adjust *adj_param;
6882 adj_param = nla_data(attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]);
6883 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI_ADJUST;
6884 bss_select->param.adjust.band = adj_param->band;
6885 bss_select->param.adjust.delta = adj_param->delta;
6886 if (!is_band_valid(wiphy, bss_select->param.adjust.band))
6890 /* user-space did not provide behaviour attribute */
6891 if (bss_select->behaviour == __NL80211_BSS_SELECT_ATTR_INVALID)
6894 if (!(wiphy->bss_select_support & BIT(bss_select->behaviour)))
6900 static int nl80211_parse_random_mac(struct nlattr **attrs,
6901 u8 *mac_addr, u8 *mac_addr_mask)
6905 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
6906 eth_zero_addr(mac_addr);
6907 eth_zero_addr(mac_addr_mask);
6909 mac_addr_mask[0] = 0x3;
6914 /* need both or none */
6915 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
6918 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
6919 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
6921 /* don't allow or configure an mcast address */
6922 if (!is_multicast_ether_addr(mac_addr_mask) ||
6923 is_multicast_ether_addr(mac_addr))
6927 * allow users to pass a MAC address that has bits set outside
6928 * of the mask, but don't bother drivers with having to deal
6931 for (i = 0; i < ETH_ALEN; i++)
6932 mac_addr[i] &= mac_addr_mask[i];
6937 static bool cfg80211_off_channel_oper_allowed(struct wireless_dev *wdev)
6939 ASSERT_WDEV_LOCK(wdev);
6941 if (!cfg80211_beaconing_iface_active(wdev))
6944 if (!(wdev->chandef.chan->flags & IEEE80211_CHAN_RADAR))
6947 return regulatory_pre_cac_allowed(wdev->wiphy);
6950 static bool nl80211_check_scan_feat(struct wiphy *wiphy, u32 flags, u32 flag,
6951 enum nl80211_ext_feature_index feat)
6953 if (!(flags & flag))
6955 if (wiphy_ext_feature_isset(wiphy, feat))
6961 nl80211_check_scan_flags(struct wiphy *wiphy, struct wireless_dev *wdev,
6962 void *request, struct nlattr **attrs,
6965 u8 *mac_addr, *mac_addr_mask;
6967 enum nl80211_feature_flags randomness_flag;
6969 if (!attrs[NL80211_ATTR_SCAN_FLAGS])
6972 if (is_sched_scan) {
6973 struct cfg80211_sched_scan_request *req = request;
6975 randomness_flag = wdev ?
6976 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR :
6977 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
6978 flags = &req->flags;
6979 mac_addr = req->mac_addr;
6980 mac_addr_mask = req->mac_addr_mask;
6982 struct cfg80211_scan_request *req = request;
6984 randomness_flag = NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
6985 flags = &req->flags;
6986 mac_addr = req->mac_addr;
6987 mac_addr_mask = req->mac_addr_mask;
6990 *flags = nla_get_u32(attrs[NL80211_ATTR_SCAN_FLAGS]);
6992 if (((*flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
6993 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) ||
6994 !nl80211_check_scan_feat(wiphy, *flags,
6995 NL80211_SCAN_FLAG_LOW_SPAN,
6996 NL80211_EXT_FEATURE_LOW_SPAN_SCAN) ||
6997 !nl80211_check_scan_feat(wiphy, *flags,
6998 NL80211_SCAN_FLAG_LOW_POWER,
6999 NL80211_EXT_FEATURE_LOW_POWER_SCAN) ||
7000 !nl80211_check_scan_feat(wiphy, *flags,
7001 NL80211_SCAN_FLAG_HIGH_ACCURACY,
7002 NL80211_EXT_FEATURE_HIGH_ACCURACY_SCAN) ||
7003 !nl80211_check_scan_feat(wiphy, *flags,
7004 NL80211_SCAN_FLAG_FILS_MAX_CHANNEL_TIME,
7005 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME) ||
7006 !nl80211_check_scan_feat(wiphy, *flags,
7007 NL80211_SCAN_FLAG_ACCEPT_BCAST_PROBE_RESP,
7008 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP) ||
7009 !nl80211_check_scan_feat(wiphy, *flags,
7010 NL80211_SCAN_FLAG_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION,
7011 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION) ||
7012 !nl80211_check_scan_feat(wiphy, *flags,
7013 NL80211_SCAN_FLAG_OCE_PROBE_REQ_HIGH_TX_RATE,
7014 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE) ||
7015 !nl80211_check_scan_feat(wiphy, *flags,
7016 NL80211_SCAN_FLAG_RANDOM_SN,
7017 NL80211_EXT_FEATURE_SCAN_RANDOM_SN) ||
7018 !nl80211_check_scan_feat(wiphy, *flags,
7019 NL80211_SCAN_FLAG_MIN_PREQ_CONTENT,
7020 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT))
7023 if (*flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
7026 if (!(wiphy->features & randomness_flag) ||
7027 (wdev && wdev->current_bss))
7030 err = nl80211_parse_random_mac(attrs, mac_addr, mac_addr_mask);
7038 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
7040 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7041 struct wireless_dev *wdev = info->user_ptr[1];
7042 struct cfg80211_scan_request *request;
7043 struct nlattr *attr;
7044 struct wiphy *wiphy;
7045 int err, tmp, n_ssids = 0, n_channels, i;
7048 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
7051 wiphy = &rdev->wiphy;
7053 if (wdev->iftype == NL80211_IFTYPE_NAN)
7056 if (!rdev->ops->scan)
7059 if (rdev->scan_req || rdev->scan_msg) {
7064 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7065 n_channels = validate_scan_freqs(
7066 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7072 n_channels = ieee80211_get_num_supported_channels(wiphy);
7075 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
7076 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
7079 if (n_ssids > wiphy->max_scan_ssids) {
7084 if (info->attrs[NL80211_ATTR_IE])
7085 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7089 if (ie_len > wiphy->max_scan_ie_len) {
7094 request = kzalloc(sizeof(*request)
7095 + sizeof(*request->ssids) * n_ssids
7096 + sizeof(*request->channels) * n_channels
7097 + ie_len, GFP_KERNEL);
7104 request->ssids = (void *)&request->channels[n_channels];
7105 request->n_ssids = n_ssids;
7108 request->ie = (void *)(request->ssids + n_ssids);
7110 request->ie = (void *)(request->channels + n_channels);
7114 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7115 /* user specified, bail out if channel not found */
7116 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
7117 struct ieee80211_channel *chan;
7119 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7126 /* ignore disabled channels */
7127 if (chan->flags & IEEE80211_CHAN_DISABLED)
7130 request->channels[i] = chan;
7134 enum nl80211_band band;
7137 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7140 if (!wiphy->bands[band])
7142 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7143 struct ieee80211_channel *chan;
7145 chan = &wiphy->bands[band]->channels[j];
7147 if (chan->flags & IEEE80211_CHAN_DISABLED)
7150 request->channels[i] = chan;
7161 request->n_channels = i;
7164 if (!cfg80211_off_channel_oper_allowed(wdev)) {
7165 struct ieee80211_channel *chan;
7167 if (request->n_channels != 1) {
7173 chan = request->channels[0];
7174 if (chan->center_freq != wdev->chandef.chan->center_freq) {
7184 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
7185 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7189 request->ssids[i].ssid_len = nla_len(attr);
7190 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
7195 if (info->attrs[NL80211_ATTR_IE]) {
7196 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7197 memcpy((void *)request->ie,
7198 nla_data(info->attrs[NL80211_ATTR_IE]),
7202 for (i = 0; i < NUM_NL80211_BANDS; i++)
7203 if (wiphy->bands[i])
7205 (1 << wiphy->bands[i]->n_bitrates) - 1;
7207 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
7208 nla_for_each_nested(attr,
7209 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
7211 enum nl80211_band band = nla_type(attr);
7213 if (band < 0 || band >= NUM_NL80211_BANDS) {
7218 if (!wiphy->bands[band])
7221 err = ieee80211_get_ratemask(wiphy->bands[band],
7224 &request->rates[band]);
7230 if (info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]) {
7231 if (!wiphy_ext_feature_isset(wiphy,
7232 NL80211_EXT_FEATURE_SET_SCAN_DWELL)) {
7238 nla_get_u16(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]);
7239 request->duration_mandatory =
7240 nla_get_flag(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY]);
7243 err = nl80211_check_scan_flags(wiphy, wdev, request, info->attrs,
7249 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7251 /* Initial implementation used NL80211_ATTR_MAC to set the specific
7252 * BSSID to scan for. This was problematic because that same attribute
7253 * was already used for another purpose (local random MAC address). The
7254 * NL80211_ATTR_BSSID attribute was added to fix this. For backwards
7255 * compatibility with older userspace components, also use the
7256 * NL80211_ATTR_MAC value here if it can be determined to be used for
7257 * the specific BSSID use case instead of the random MAC address
7258 * (NL80211_ATTR_SCAN_FLAGS is used to enable random MAC address use).
7260 if (info->attrs[NL80211_ATTR_BSSID])
7261 memcpy(request->bssid,
7262 nla_data(info->attrs[NL80211_ATTR_BSSID]), ETH_ALEN);
7263 else if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) &&
7264 info->attrs[NL80211_ATTR_MAC])
7265 memcpy(request->bssid, nla_data(info->attrs[NL80211_ATTR_MAC]),
7268 eth_broadcast_addr(request->bssid);
7270 request->wdev = wdev;
7271 request->wiphy = &rdev->wiphy;
7272 request->scan_start = jiffies;
7274 rdev->scan_req = request;
7275 err = rdev_scan(rdev, request);
7278 nl80211_send_scan_start(rdev, wdev);
7280 dev_hold(wdev->netdev);
7283 rdev->scan_req = NULL;
7291 static int nl80211_abort_scan(struct sk_buff *skb, struct genl_info *info)
7293 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7294 struct wireless_dev *wdev = info->user_ptr[1];
7296 if (!rdev->ops->abort_scan)
7302 if (!rdev->scan_req)
7305 rdev_abort_scan(rdev, wdev);
7310 nl80211_parse_sched_scan_plans(struct wiphy *wiphy, int n_plans,
7311 struct cfg80211_sched_scan_request *request,
7312 struct nlattr **attrs)
7314 int tmp, err, i = 0;
7315 struct nlattr *attr;
7317 if (!attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7321 * If scan plans are not specified,
7322 * %NL80211_ATTR_SCHED_SCAN_INTERVAL will be specified. In this
7323 * case one scan plan will be set with the specified scan
7324 * interval and infinite number of iterations.
7326 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
7330 request->scan_plans[0].interval =
7331 DIV_ROUND_UP(interval, MSEC_PER_SEC);
7332 if (!request->scan_plans[0].interval)
7335 if (request->scan_plans[0].interval >
7336 wiphy->max_sched_scan_plan_interval)
7337 request->scan_plans[0].interval =
7338 wiphy->max_sched_scan_plan_interval;
7343 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp) {
7344 struct nlattr *plan[NL80211_SCHED_SCAN_PLAN_MAX + 1];
7346 if (WARN_ON(i >= n_plans))
7349 err = nla_parse_nested(plan, NL80211_SCHED_SCAN_PLAN_MAX,
7350 attr, nl80211_plan_policy, NULL);
7354 if (!plan[NL80211_SCHED_SCAN_PLAN_INTERVAL])
7357 request->scan_plans[i].interval =
7358 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_INTERVAL]);
7359 if (!request->scan_plans[i].interval ||
7360 request->scan_plans[i].interval >
7361 wiphy->max_sched_scan_plan_interval)
7364 if (plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]) {
7365 request->scan_plans[i].iterations =
7366 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]);
7367 if (!request->scan_plans[i].iterations ||
7368 (request->scan_plans[i].iterations >
7369 wiphy->max_sched_scan_plan_iterations))
7371 } else if (i < n_plans - 1) {
7373 * All scan plans but the last one must specify
7374 * a finite number of iterations
7383 * The last scan plan must not specify the number of
7384 * iterations, it is supposed to run infinitely
7386 if (request->scan_plans[n_plans - 1].iterations)
7392 static struct cfg80211_sched_scan_request *
7393 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
7394 struct nlattr **attrs, int max_match_sets)
7396 struct cfg80211_sched_scan_request *request;
7397 struct nlattr *attr;
7398 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i, n_plans = 0;
7399 enum nl80211_band band;
7401 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
7402 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
7404 if (!is_valid_ie_attr(attrs[NL80211_ATTR_IE]))
7405 return ERR_PTR(-EINVAL);
7407 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7408 n_channels = validate_scan_freqs(
7409 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7411 return ERR_PTR(-EINVAL);
7413 n_channels = ieee80211_get_num_supported_channels(wiphy);
7416 if (attrs[NL80211_ATTR_SCAN_SSIDS])
7417 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7421 if (n_ssids > wiphy->max_sched_scan_ssids)
7422 return ERR_PTR(-EINVAL);
7425 * First, count the number of 'real' matchsets. Due to an issue with
7426 * the old implementation, matchsets containing only the RSSI attribute
7427 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
7428 * RSSI for all matchsets, rather than their own matchset for reporting
7429 * all APs with a strong RSSI. This is needed to be compatible with
7430 * older userspace that treated a matchset with only the RSSI as the
7431 * global RSSI for all other matchsets - if there are other matchsets.
7433 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7434 nla_for_each_nested(attr,
7435 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7437 struct nlattr *rssi;
7439 err = nla_parse_nested(tb,
7440 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7441 attr, nl80211_match_policy,
7444 return ERR_PTR(err);
7446 /* SSID and BSSID are mutually exclusive */
7447 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] &&
7448 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID])
7449 return ERR_PTR(-EINVAL);
7451 /* add other standalone attributes here */
7452 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] ||
7453 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID]) {
7457 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7459 default_match_rssi = nla_get_s32(rssi);
7463 /* However, if there's no other matchset, add the RSSI one */
7464 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
7467 if (n_match_sets > max_match_sets)
7468 return ERR_PTR(-EINVAL);
7470 if (attrs[NL80211_ATTR_IE])
7471 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
7475 if (ie_len > wiphy->max_sched_scan_ie_len)
7476 return ERR_PTR(-EINVAL);
7478 if (attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7480 * NL80211_ATTR_SCHED_SCAN_INTERVAL must not be specified since
7481 * each scan plan already specifies its own interval
7483 if (attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7484 return ERR_PTR(-EINVAL);
7486 nla_for_each_nested(attr,
7487 attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp)
7491 * The scan interval attribute is kept for backward
7492 * compatibility. If no scan plans are specified and sched scan
7493 * interval is specified, one scan plan will be set with this
7494 * scan interval and infinite number of iterations.
7496 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7497 return ERR_PTR(-EINVAL);
7502 if (!n_plans || n_plans > wiphy->max_sched_scan_plans)
7503 return ERR_PTR(-EINVAL);
7505 if (!wiphy_ext_feature_isset(
7506 wiphy, NL80211_EXT_FEATURE_SCHED_SCAN_RELATIVE_RSSI) &&
7507 (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] ||
7508 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]))
7509 return ERR_PTR(-EINVAL);
7511 request = kzalloc(sizeof(*request)
7512 + sizeof(*request->ssids) * n_ssids
7513 + sizeof(*request->match_sets) * n_match_sets
7514 + sizeof(*request->scan_plans) * n_plans
7515 + sizeof(*request->channels) * n_channels
7516 + ie_len, GFP_KERNEL);
7518 return ERR_PTR(-ENOMEM);
7521 request->ssids = (void *)&request->channels[n_channels];
7522 request->n_ssids = n_ssids;
7525 request->ie = (void *)(request->ssids + n_ssids);
7527 request->ie = (void *)(request->channels + n_channels);
7532 request->match_sets = (void *)(request->ie + ie_len);
7534 request->match_sets =
7535 (void *)(request->ssids + n_ssids);
7537 request->match_sets =
7538 (void *)(request->channels + n_channels);
7540 request->n_match_sets = n_match_sets;
7543 request->scan_plans = (void *)(request->match_sets +
7545 else if (request->ie)
7546 request->scan_plans = (void *)(request->ie + ie_len);
7548 request->scan_plans = (void *)(request->ssids + n_ssids);
7550 request->scan_plans = (void *)(request->channels + n_channels);
7552 request->n_scan_plans = n_plans;
7555 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7556 /* user specified, bail out if channel not found */
7557 nla_for_each_nested(attr,
7558 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
7560 struct ieee80211_channel *chan;
7562 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7569 /* ignore disabled channels */
7570 if (chan->flags & IEEE80211_CHAN_DISABLED)
7573 request->channels[i] = chan;
7578 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7581 if (!wiphy->bands[band])
7583 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7584 struct ieee80211_channel *chan;
7586 chan = &wiphy->bands[band]->channels[j];
7588 if (chan->flags & IEEE80211_CHAN_DISABLED)
7591 request->channels[i] = chan;
7602 request->n_channels = i;
7606 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7608 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7612 request->ssids[i].ssid_len = nla_len(attr);
7613 memcpy(request->ssids[i].ssid, nla_data(attr),
7620 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7621 nla_for_each_nested(attr,
7622 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7624 struct nlattr *ssid, *bssid, *rssi;
7626 err = nla_parse_nested(tb,
7627 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7628 attr, nl80211_match_policy,
7632 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
7633 bssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID];
7634 if (ssid || bssid) {
7635 if (WARN_ON(i >= n_match_sets)) {
7636 /* this indicates a programming error,
7637 * the loop above should have verified
7645 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
7649 memcpy(request->match_sets[i].ssid.ssid,
7650 nla_data(ssid), nla_len(ssid));
7651 request->match_sets[i].ssid.ssid_len =
7655 if (nla_len(bssid) != ETH_ALEN) {
7659 memcpy(request->match_sets[i].bssid,
7660 nla_data(bssid), ETH_ALEN);
7663 /* special attribute - old implementation w/a */
7664 request->match_sets[i].rssi_thold =
7666 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7668 request->match_sets[i].rssi_thold =
7674 /* there was no other matchset, so the RSSI one is alone */
7675 if (i == 0 && n_match_sets)
7676 request->match_sets[0].rssi_thold = default_match_rssi;
7678 request->min_rssi_thold = INT_MAX;
7679 for (i = 0; i < n_match_sets; i++)
7680 request->min_rssi_thold =
7681 min(request->match_sets[i].rssi_thold,
7682 request->min_rssi_thold);
7684 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
7688 request->ie_len = ie_len;
7689 memcpy((void *)request->ie,
7690 nla_data(attrs[NL80211_ATTR_IE]),
7694 err = nl80211_check_scan_flags(wiphy, wdev, request, attrs, true);
7698 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
7700 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
7702 if (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]) {
7703 request->relative_rssi = nla_get_s8(
7704 attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]);
7705 request->relative_rssi_set = true;
7708 if (request->relative_rssi_set &&
7709 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]) {
7710 struct nl80211_bss_select_rssi_adjust *rssi_adjust;
7712 rssi_adjust = nla_data(
7713 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]);
7714 request->rssi_adjust.band = rssi_adjust->band;
7715 request->rssi_adjust.delta = rssi_adjust->delta;
7716 if (!is_band_valid(wiphy, request->rssi_adjust.band)) {
7722 err = nl80211_parse_sched_scan_plans(wiphy, n_plans, request, attrs);
7726 request->scan_start = jiffies;
7732 return ERR_PTR(err);
7735 static int nl80211_start_sched_scan(struct sk_buff *skb,
7736 struct genl_info *info)
7738 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7739 struct net_device *dev = info->user_ptr[1];
7740 struct wireless_dev *wdev = dev->ieee80211_ptr;
7741 struct cfg80211_sched_scan_request *sched_scan_req;
7745 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_start)
7748 want_multi = info->attrs[NL80211_ATTR_SCHED_SCAN_MULTI];
7749 err = cfg80211_sched_scan_req_possible(rdev, want_multi);
7753 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
7755 rdev->wiphy.max_match_sets);
7757 err = PTR_ERR_OR_ZERO(sched_scan_req);
7761 /* leave request id zero for legacy request
7762 * or if driver does not support multi-scheduled scan
7764 if (want_multi && rdev->wiphy.max_sched_scan_reqs > 1) {
7765 while (!sched_scan_req->reqid)
7766 sched_scan_req->reqid = rdev->wiphy.cookie_counter++;
7769 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
7773 sched_scan_req->dev = dev;
7774 sched_scan_req->wiphy = &rdev->wiphy;
7776 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
7777 sched_scan_req->owner_nlportid = info->snd_portid;
7779 cfg80211_add_sched_scan_req(rdev, sched_scan_req);
7781 nl80211_send_sched_scan(sched_scan_req, NL80211_CMD_START_SCHED_SCAN);
7785 kfree(sched_scan_req);
7790 static int nl80211_stop_sched_scan(struct sk_buff *skb,
7791 struct genl_info *info)
7793 struct cfg80211_sched_scan_request *req;
7794 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7797 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_stop)
7800 if (info->attrs[NL80211_ATTR_COOKIE]) {
7801 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7802 return __cfg80211_stop_sched_scan(rdev, cookie, false);
7805 req = list_first_or_null_rcu(&rdev->sched_scan_req_list,
7806 struct cfg80211_sched_scan_request,
7808 if (!req || req->reqid ||
7809 (req->owner_nlportid &&
7810 req->owner_nlportid != info->snd_portid))
7813 return cfg80211_stop_sched_scan_req(rdev, req, false);
7816 static int nl80211_start_radar_detection(struct sk_buff *skb,
7817 struct genl_info *info)
7819 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7820 struct net_device *dev = info->user_ptr[1];
7821 struct wireless_dev *wdev = dev->ieee80211_ptr;
7822 struct wiphy *wiphy = wdev->wiphy;
7823 struct cfg80211_chan_def chandef;
7824 enum nl80211_dfs_regions dfs_region;
7825 unsigned int cac_time_ms;
7828 dfs_region = reg_get_dfs_region(wiphy);
7829 if (dfs_region == NL80211_DFS_UNSET)
7832 err = nl80211_parse_chandef(rdev, info, &chandef);
7836 if (netif_carrier_ok(dev))
7839 if (wdev->cac_started)
7842 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
7849 if (!cfg80211_chandef_dfs_usable(wiphy, &chandef))
7852 /* CAC start is offloaded to HW and can't be started manually */
7853 if (wiphy_ext_feature_isset(wiphy, NL80211_EXT_FEATURE_DFS_OFFLOAD))
7856 if (!rdev->ops->start_radar_detection)
7859 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
7860 if (WARN_ON(!cac_time_ms))
7861 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
7863 err = rdev_start_radar_detection(rdev, dev, &chandef, cac_time_ms);
7865 wdev->chandef = chandef;
7866 wdev->cac_started = true;
7867 wdev->cac_start_time = jiffies;
7868 wdev->cac_time_ms = cac_time_ms;
7873 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
7875 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7876 struct net_device *dev = info->user_ptr[1];
7877 struct wireless_dev *wdev = dev->ieee80211_ptr;
7878 struct cfg80211_csa_settings params;
7879 /* csa_attrs is defined static to avoid waste of stack size - this
7880 * function is called under RTNL lock, so this should not be a problem.
7882 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
7884 bool need_new_beacon = false;
7885 bool need_handle_dfs_flag = true;
7889 if (!rdev->ops->channel_switch ||
7890 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
7893 switch (dev->ieee80211_ptr->iftype) {
7894 case NL80211_IFTYPE_AP:
7895 case NL80211_IFTYPE_P2P_GO:
7896 need_new_beacon = true;
7897 /* For all modes except AP the handle_dfs flag needs to be
7898 * supplied to tell the kernel that userspace will handle radar
7899 * events when they happen. Otherwise a switch to a channel
7900 * requiring DFS will be rejected.
7902 need_handle_dfs_flag = false;
7904 /* useless if AP is not running */
7905 if (!wdev->beacon_interval)
7908 case NL80211_IFTYPE_ADHOC:
7909 if (!wdev->ssid_len)
7912 case NL80211_IFTYPE_MESH_POINT:
7913 if (!wdev->mesh_id_len)
7920 memset(¶ms, 0, sizeof(params));
7922 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
7923 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
7926 /* only important for AP, IBSS and mesh create IEs internally */
7927 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
7930 /* Even though the attribute is u32, the specification says
7931 * u8, so let's make sure we don't overflow.
7933 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
7937 params.count = cs_count;
7939 if (!need_new_beacon)
7942 err = nl80211_parse_beacon(info->attrs, ¶ms.beacon_after);
7946 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
7947 info->attrs[NL80211_ATTR_CSA_IES],
7948 nl80211_policy, info->extack);
7952 err = nl80211_parse_beacon(csa_attrs, ¶ms.beacon_csa);
7956 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
7959 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
7960 if (!len || (len % sizeof(u16)))
7963 params.n_counter_offsets_beacon = len / sizeof(u16);
7964 if (rdev->wiphy.max_num_csa_counters &&
7965 (params.n_counter_offsets_beacon >
7966 rdev->wiphy.max_num_csa_counters))
7969 params.counter_offsets_beacon =
7970 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
7972 /* sanity checks - counters should fit and be the same */
7973 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
7974 u16 offset = params.counter_offsets_beacon[i];
7976 if (offset >= params.beacon_csa.tail_len)
7979 if (params.beacon_csa.tail[offset] != params.count)
7983 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
7984 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
7985 if (!len || (len % sizeof(u16)))
7988 params.n_counter_offsets_presp = len / sizeof(u16);
7989 if (rdev->wiphy.max_num_csa_counters &&
7990 (params.n_counter_offsets_presp >
7991 rdev->wiphy.max_num_csa_counters))
7994 params.counter_offsets_presp =
7995 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
7997 /* sanity checks - counters should fit and be the same */
7998 for (i = 0; i < params.n_counter_offsets_presp; i++) {
7999 u16 offset = params.counter_offsets_presp[i];
8001 if (offset >= params.beacon_csa.probe_resp_len)
8004 if (params.beacon_csa.probe_resp[offset] !=
8011 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
8015 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
8019 err = cfg80211_chandef_dfs_required(wdev->wiphy,
8026 params.radar_required = true;
8027 if (need_handle_dfs_flag &&
8028 !nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS])) {
8033 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
8034 params.block_tx = true;
8037 err = rdev_channel_switch(rdev, dev, ¶ms);
8043 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
8045 struct cfg80211_registered_device *rdev,
8046 struct wireless_dev *wdev,
8047 struct cfg80211_internal_bss *intbss)
8049 struct cfg80211_bss *res = &intbss->pub;
8050 const struct cfg80211_bss_ies *ies;
8054 ASSERT_WDEV_LOCK(wdev);
8056 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
8057 NL80211_CMD_NEW_SCAN_RESULTS);
8061 genl_dump_check_consistent(cb, hdr);
8063 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
8064 goto nla_put_failure;
8066 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
8067 goto nla_put_failure;
8068 if (nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
8070 goto nla_put_failure;
8072 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
8074 goto nla_put_failure;
8075 if ((!is_zero_ether_addr(res->bssid) &&
8076 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
8077 goto nla_put_failure;
8080 /* indicate whether we have probe response data or not */
8081 if (rcu_access_pointer(res->proberesp_ies) &&
8082 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
8083 goto fail_unlock_rcu;
8085 /* this pointer prefers to be pointed to probe response data
8086 * but is always valid
8088 ies = rcu_dereference(res->ies);
8090 if (nla_put_u64_64bit(msg, NL80211_BSS_TSF, ies->tsf,
8092 goto fail_unlock_rcu;
8093 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
8094 ies->len, ies->data))
8095 goto fail_unlock_rcu;
8098 /* and this pointer is always (unless driver didn't know) beacon data */
8099 ies = rcu_dereference(res->beacon_ies);
8100 if (ies && ies->from_beacon) {
8101 if (nla_put_u64_64bit(msg, NL80211_BSS_BEACON_TSF, ies->tsf,
8103 goto fail_unlock_rcu;
8104 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
8105 ies->len, ies->data))
8106 goto fail_unlock_rcu;
8110 if (res->beacon_interval &&
8111 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
8112 goto nla_put_failure;
8113 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
8114 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
8115 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
8116 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
8117 jiffies_to_msecs(jiffies - intbss->ts)))
8118 goto nla_put_failure;
8120 if (intbss->parent_tsf &&
8121 (nla_put_u64_64bit(msg, NL80211_BSS_PARENT_TSF,
8122 intbss->parent_tsf, NL80211_BSS_PAD) ||
8123 nla_put(msg, NL80211_BSS_PARENT_BSSID, ETH_ALEN,
8124 intbss->parent_bssid)))
8125 goto nla_put_failure;
8127 if (intbss->ts_boottime &&
8128 nla_put_u64_64bit(msg, NL80211_BSS_LAST_SEEN_BOOTTIME,
8129 intbss->ts_boottime, NL80211_BSS_PAD))
8130 goto nla_put_failure;
8132 if (!nl80211_put_signal(msg, intbss->pub.chains,
8133 intbss->pub.chain_signal,
8134 NL80211_BSS_CHAIN_SIGNAL))
8135 goto nla_put_failure;
8137 switch (rdev->wiphy.signal_type) {
8138 case CFG80211_SIGNAL_TYPE_MBM:
8139 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
8140 goto nla_put_failure;
8142 case CFG80211_SIGNAL_TYPE_UNSPEC:
8143 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
8144 goto nla_put_failure;
8150 switch (wdev->iftype) {
8151 case NL80211_IFTYPE_P2P_CLIENT:
8152 case NL80211_IFTYPE_STATION:
8153 if (intbss == wdev->current_bss &&
8154 nla_put_u32(msg, NL80211_BSS_STATUS,
8155 NL80211_BSS_STATUS_ASSOCIATED))
8156 goto nla_put_failure;
8158 case NL80211_IFTYPE_ADHOC:
8159 if (intbss == wdev->current_bss &&
8160 nla_put_u32(msg, NL80211_BSS_STATUS,
8161 NL80211_BSS_STATUS_IBSS_JOINED))
8162 goto nla_put_failure;
8168 nla_nest_end(msg, bss);
8170 genlmsg_end(msg, hdr);
8176 genlmsg_cancel(msg, hdr);
8180 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
8182 struct cfg80211_registered_device *rdev;
8183 struct cfg80211_internal_bss *scan;
8184 struct wireless_dev *wdev;
8185 int start = cb->args[2], idx = 0;
8189 err = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
8196 spin_lock_bh(&rdev->bss_lock);
8199 * dump_scan will be called multiple times to break up the scan results
8200 * into multiple messages. It is unlikely that any more bss-es will be
8201 * expired after the first call, so only call only call this on the
8202 * first dump_scan invocation.
8205 cfg80211_bss_expire(rdev);
8207 cb->seq = rdev->bss_generation;
8209 list_for_each_entry(scan, &rdev->bss_list, list) {
8212 if (nl80211_send_bss(skb, cb,
8213 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8214 rdev, wdev, scan) < 0) {
8220 spin_unlock_bh(&rdev->bss_lock);
8229 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
8230 int flags, struct net_device *dev,
8231 bool allow_radio_stats,
8232 struct survey_info *survey)
8235 struct nlattr *infoattr;
8237 /* skip radio stats if userspace didn't request them */
8238 if (!survey->channel && !allow_radio_stats)
8241 hdr = nl80211hdr_put(msg, portid, seq, flags,
8242 NL80211_CMD_NEW_SURVEY_RESULTS);
8246 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
8247 goto nla_put_failure;
8249 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
8251 goto nla_put_failure;
8253 if (survey->channel &&
8254 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
8255 survey->channel->center_freq))
8256 goto nla_put_failure;
8258 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
8259 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
8260 goto nla_put_failure;
8261 if ((survey->filled & SURVEY_INFO_IN_USE) &&
8262 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
8263 goto nla_put_failure;
8264 if ((survey->filled & SURVEY_INFO_TIME) &&
8265 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME,
8266 survey->time, NL80211_SURVEY_INFO_PAD))
8267 goto nla_put_failure;
8268 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
8269 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BUSY,
8270 survey->time_busy, NL80211_SURVEY_INFO_PAD))
8271 goto nla_put_failure;
8272 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
8273 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
8274 survey->time_ext_busy, NL80211_SURVEY_INFO_PAD))
8275 goto nla_put_failure;
8276 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
8277 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_RX,
8278 survey->time_rx, NL80211_SURVEY_INFO_PAD))
8279 goto nla_put_failure;
8280 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
8281 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_TX,
8282 survey->time_tx, NL80211_SURVEY_INFO_PAD))
8283 goto nla_put_failure;
8284 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
8285 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_SCAN,
8286 survey->time_scan, NL80211_SURVEY_INFO_PAD))
8287 goto nla_put_failure;
8289 nla_nest_end(msg, infoattr);
8291 genlmsg_end(msg, hdr);
8295 genlmsg_cancel(msg, hdr);
8299 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
8301 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
8302 struct survey_info survey;
8303 struct cfg80211_registered_device *rdev;
8304 struct wireless_dev *wdev;
8305 int survey_idx = cb->args[2];
8310 res = nl80211_prepare_wdev_dump(skb, cb, &rdev, &wdev);
8314 /* prepare_wdev_dump parsed the attributes */
8315 radio_stats = attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
8317 if (!wdev->netdev) {
8322 if (!rdev->ops->dump_survey) {
8328 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
8334 /* don't send disabled channels, but do send non-channel data */
8335 if (survey.channel &&
8336 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
8341 if (nl80211_send_survey(skb,
8342 NETLINK_CB(cb->skb).portid,
8343 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8344 wdev->netdev, radio_stats, &survey) < 0)
8350 cb->args[2] = survey_idx;
8357 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
8359 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
8360 NL80211_WPA_VERSION_2));
8363 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
8365 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8366 struct net_device *dev = info->user_ptr[1];
8367 struct ieee80211_channel *chan;
8368 const u8 *bssid, *ssid, *ie = NULL, *auth_data = NULL;
8369 int err, ssid_len, ie_len = 0, auth_data_len = 0;
8370 enum nl80211_auth_type auth_type;
8371 struct key_parse key;
8372 bool local_state_change;
8374 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8377 if (!info->attrs[NL80211_ATTR_MAC])
8380 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
8383 if (!info->attrs[NL80211_ATTR_SSID])
8386 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8389 err = nl80211_parse_key(info, &key);
8394 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
8396 if (!key.p.key || !key.p.key_len)
8398 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
8399 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
8400 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
8401 key.p.key_len != WLAN_KEY_LEN_WEP104))
8414 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
8415 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
8424 if (!rdev->ops->auth)
8427 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8428 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8431 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8432 chan = nl80211_get_valid_chan(&rdev->wiphy,
8433 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8437 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8438 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8440 if (info->attrs[NL80211_ATTR_IE]) {
8441 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8442 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8445 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
8446 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
8449 if ((auth_type == NL80211_AUTHTYPE_SAE ||
8450 auth_type == NL80211_AUTHTYPE_FILS_SK ||
8451 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
8452 auth_type == NL80211_AUTHTYPE_FILS_PK) &&
8453 !info->attrs[NL80211_ATTR_AUTH_DATA])
8456 if (info->attrs[NL80211_ATTR_AUTH_DATA]) {
8457 if (auth_type != NL80211_AUTHTYPE_SAE &&
8458 auth_type != NL80211_AUTHTYPE_FILS_SK &&
8459 auth_type != NL80211_AUTHTYPE_FILS_SK_PFS &&
8460 auth_type != NL80211_AUTHTYPE_FILS_PK)
8462 auth_data = nla_data(info->attrs[NL80211_ATTR_AUTH_DATA]);
8463 auth_data_len = nla_len(info->attrs[NL80211_ATTR_AUTH_DATA]);
8464 /* need to include at least Auth Transaction and Status Code */
8465 if (auth_data_len < 4)
8469 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8472 * Since we no longer track auth state, ignore
8473 * requests to only change local state.
8475 if (local_state_change)
8478 wdev_lock(dev->ieee80211_ptr);
8479 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
8480 ssid, ssid_len, ie, ie_len,
8481 key.p.key, key.p.key_len, key.idx,
8482 auth_data, auth_data_len);
8483 wdev_unlock(dev->ieee80211_ptr);
8487 static int validate_pae_over_nl80211(struct cfg80211_registered_device *rdev,
8488 struct genl_info *info)
8490 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8491 GENL_SET_ERR_MSG(info, "SOCKET_OWNER not set");
8495 if (!rdev->ops->tx_control_port ||
8496 !wiphy_ext_feature_isset(&rdev->wiphy,
8497 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
8503 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
8504 struct genl_info *info,
8505 struct cfg80211_crypto_settings *settings,
8508 memset(settings, 0, sizeof(*settings));
8510 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
8512 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
8515 proto = nla_get_u16(
8516 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
8517 settings->control_port_ethertype = cpu_to_be16(proto);
8518 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
8521 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
8522 settings->control_port_no_encrypt = true;
8524 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
8526 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
8527 int r = validate_pae_over_nl80211(rdev, info);
8532 settings->control_port_over_nl80211 = true;
8535 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
8539 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8540 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8541 settings->n_ciphers_pairwise = len / sizeof(u32);
8543 if (len % sizeof(u32))
8546 if (settings->n_ciphers_pairwise > cipher_limit)
8549 memcpy(settings->ciphers_pairwise, data, len);
8551 for (i = 0; i < settings->n_ciphers_pairwise; i++)
8552 if (!cfg80211_supported_cipher_suite(
8554 settings->ciphers_pairwise[i]))
8558 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
8559 settings->cipher_group =
8560 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
8561 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
8562 settings->cipher_group))
8566 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
8567 settings->wpa_versions =
8568 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
8569 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
8573 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
8577 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
8578 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
8579 settings->n_akm_suites = len / sizeof(u32);
8581 if (len % sizeof(u32))
8584 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
8587 memcpy(settings->akm_suites, data, len);
8590 if (info->attrs[NL80211_ATTR_PMK]) {
8591 if (nla_len(info->attrs[NL80211_ATTR_PMK]) != WLAN_PMK_LEN)
8593 if (!wiphy_ext_feature_isset(&rdev->wiphy,
8594 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK))
8596 settings->psk = nla_data(info->attrs[NL80211_ATTR_PMK]);
8602 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
8604 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8605 struct net_device *dev = info->user_ptr[1];
8606 struct ieee80211_channel *chan;
8607 struct cfg80211_assoc_request req = {};
8608 const u8 *bssid, *ssid;
8609 int err, ssid_len = 0;
8611 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8612 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8615 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8618 if (!info->attrs[NL80211_ATTR_MAC] ||
8619 !info->attrs[NL80211_ATTR_SSID] ||
8620 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
8623 if (!rdev->ops->assoc)
8626 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8627 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8630 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8632 chan = nl80211_get_valid_chan(&rdev->wiphy,
8633 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8637 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8638 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8640 if (info->attrs[NL80211_ATTR_IE]) {
8641 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8642 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8645 if (info->attrs[NL80211_ATTR_USE_MFP]) {
8646 enum nl80211_mfp mfp =
8647 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
8648 if (mfp == NL80211_MFP_REQUIRED)
8650 else if (mfp != NL80211_MFP_NO)
8654 if (info->attrs[NL80211_ATTR_PREV_BSSID])
8655 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
8657 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
8658 req.flags |= ASSOC_REQ_DISABLE_HT;
8660 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8661 memcpy(&req.ht_capa_mask,
8662 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
8663 sizeof(req.ht_capa_mask));
8665 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
8666 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8668 memcpy(&req.ht_capa,
8669 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
8670 sizeof(req.ht_capa));
8673 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
8674 req.flags |= ASSOC_REQ_DISABLE_VHT;
8676 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8677 memcpy(&req.vht_capa_mask,
8678 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
8679 sizeof(req.vht_capa_mask));
8681 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
8682 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8684 memcpy(&req.vht_capa,
8685 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
8686 sizeof(req.vht_capa));
8689 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
8690 if (!((rdev->wiphy.features &
8691 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
8692 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
8693 !wiphy_ext_feature_isset(&rdev->wiphy,
8694 NL80211_EXT_FEATURE_RRM))
8696 req.flags |= ASSOC_REQ_USE_RRM;
8699 if (info->attrs[NL80211_ATTR_FILS_KEK]) {
8700 req.fils_kek = nla_data(info->attrs[NL80211_ATTR_FILS_KEK]);
8701 req.fils_kek_len = nla_len(info->attrs[NL80211_ATTR_FILS_KEK]);
8702 if (!info->attrs[NL80211_ATTR_FILS_NONCES])
8705 nla_data(info->attrs[NL80211_ATTR_FILS_NONCES]);
8708 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
8710 wdev_lock(dev->ieee80211_ptr);
8712 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
8713 ssid, ssid_len, &req);
8715 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8716 dev->ieee80211_ptr->conn_owner_nlportid =
8718 memcpy(dev->ieee80211_ptr->disconnect_bssid,
8722 wdev_unlock(dev->ieee80211_ptr);
8728 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
8730 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8731 struct net_device *dev = info->user_ptr[1];
8732 const u8 *ie = NULL, *bssid;
8733 int ie_len = 0, err;
8735 bool local_state_change;
8737 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8738 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8741 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8744 if (!info->attrs[NL80211_ATTR_MAC])
8747 if (!info->attrs[NL80211_ATTR_REASON_CODE])
8750 if (!rdev->ops->deauth)
8753 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8754 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8757 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8759 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
8760 if (reason_code == 0) {
8761 /* Reason Code 0 is reserved */
8765 if (info->attrs[NL80211_ATTR_IE]) {
8766 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8767 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8770 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8772 wdev_lock(dev->ieee80211_ptr);
8773 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
8774 local_state_change);
8775 wdev_unlock(dev->ieee80211_ptr);
8779 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
8781 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8782 struct net_device *dev = info->user_ptr[1];
8783 const u8 *ie = NULL, *bssid;
8784 int ie_len = 0, err;
8786 bool local_state_change;
8788 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8789 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8792 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8795 if (!info->attrs[NL80211_ATTR_MAC])
8798 if (!info->attrs[NL80211_ATTR_REASON_CODE])
8801 if (!rdev->ops->disassoc)
8804 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8805 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8808 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8810 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
8811 if (reason_code == 0) {
8812 /* Reason Code 0 is reserved */
8816 if (info->attrs[NL80211_ATTR_IE]) {
8817 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8818 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8821 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8823 wdev_lock(dev->ieee80211_ptr);
8824 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
8825 local_state_change);
8826 wdev_unlock(dev->ieee80211_ptr);
8831 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
8832 int mcast_rate[NUM_NL80211_BANDS],
8835 struct wiphy *wiphy = &rdev->wiphy;
8839 for (band = 0; band < NUM_NL80211_BANDS; band++) {
8840 struct ieee80211_supported_band *sband;
8842 sband = wiphy->bands[band];
8846 for (i = 0; i < sband->n_bitrates; i++) {
8847 if (sband->bitrates[i].bitrate == rateval) {
8848 mcast_rate[band] = i + 1;
8858 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
8860 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8861 struct net_device *dev = info->user_ptr[1];
8862 struct cfg80211_ibss_params ibss;
8863 struct wiphy *wiphy;
8864 struct cfg80211_cached_keys *connkeys = NULL;
8867 memset(&ibss, 0, sizeof(ibss));
8869 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
8872 if (!info->attrs[NL80211_ATTR_SSID] ||
8873 !nla_len(info->attrs[NL80211_ATTR_SSID]))
8876 ibss.beacon_interval = 100;
8878 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL])
8879 ibss.beacon_interval =
8880 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
8882 err = cfg80211_validate_beacon_int(rdev, NL80211_IFTYPE_ADHOC,
8883 ibss.beacon_interval);
8887 if (!rdev->ops->join_ibss)
8890 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
8893 wiphy = &rdev->wiphy;
8895 if (info->attrs[NL80211_ATTR_MAC]) {
8896 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8898 if (!is_valid_ether_addr(ibss.bssid))
8901 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8902 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8904 if (info->attrs[NL80211_ATTR_IE]) {
8905 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8906 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8909 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
8913 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
8914 NL80211_IFTYPE_ADHOC))
8917 switch (ibss.chandef.width) {
8918 case NL80211_CHAN_WIDTH_5:
8919 case NL80211_CHAN_WIDTH_10:
8920 case NL80211_CHAN_WIDTH_20_NOHT:
8922 case NL80211_CHAN_WIDTH_20:
8923 case NL80211_CHAN_WIDTH_40:
8924 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
8927 case NL80211_CHAN_WIDTH_80:
8928 case NL80211_CHAN_WIDTH_80P80:
8929 case NL80211_CHAN_WIDTH_160:
8930 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
8932 if (!wiphy_ext_feature_isset(&rdev->wiphy,
8933 NL80211_EXT_FEATURE_VHT_IBSS))
8940 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
8941 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
8943 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
8945 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
8947 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
8948 struct ieee80211_supported_band *sband =
8949 wiphy->bands[ibss.chandef.chan->band];
8951 err = ieee80211_get_ratemask(sband, rates, n_rates,
8957 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8958 memcpy(&ibss.ht_capa_mask,
8959 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
8960 sizeof(ibss.ht_capa_mask));
8962 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
8963 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8965 memcpy(&ibss.ht_capa,
8966 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
8967 sizeof(ibss.ht_capa));
8970 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
8971 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
8972 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
8975 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
8978 connkeys = nl80211_parse_connkeys(rdev, info, &no_ht);
8979 if (IS_ERR(connkeys))
8980 return PTR_ERR(connkeys);
8982 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
8990 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
8992 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
8993 int r = validate_pae_over_nl80211(rdev, info);
8998 ibss.control_port_over_nl80211 = true;
9001 ibss.userspace_handles_dfs =
9002 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
9004 wdev_lock(dev->ieee80211_ptr);
9005 err = __cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
9008 else if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
9009 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9010 wdev_unlock(dev->ieee80211_ptr);
9015 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
9017 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9018 struct net_device *dev = info->user_ptr[1];
9020 if (!rdev->ops->leave_ibss)
9023 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9026 return cfg80211_leave_ibss(rdev, dev, false);
9029 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
9031 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9032 struct net_device *dev = info->user_ptr[1];
9033 int mcast_rate[NUM_NL80211_BANDS];
9037 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
9038 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
9039 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_OCB)
9042 if (!rdev->ops->set_mcast_rate)
9045 memset(mcast_rate, 0, sizeof(mcast_rate));
9047 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
9050 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
9051 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
9054 err = rdev_set_mcast_rate(rdev, dev, mcast_rate);
9059 static struct sk_buff *
9060 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
9061 struct wireless_dev *wdev, int approxlen,
9062 u32 portid, u32 seq, enum nl80211_commands cmd,
9063 enum nl80211_attrs attr,
9064 const struct nl80211_vendor_cmd_info *info,
9067 struct sk_buff *skb;
9069 struct nlattr *data;
9071 skb = nlmsg_new(approxlen + 100, gfp);
9075 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
9081 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
9082 goto nla_put_failure;
9085 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
9087 goto nla_put_failure;
9088 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
9090 goto nla_put_failure;
9094 if (nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
9095 wdev_id(wdev), NL80211_ATTR_PAD))
9096 goto nla_put_failure;
9098 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
9099 wdev->netdev->ifindex))
9100 goto nla_put_failure;
9103 data = nla_nest_start(skb, attr);
9105 goto nla_put_failure;
9107 ((void **)skb->cb)[0] = rdev;
9108 ((void **)skb->cb)[1] = hdr;
9109 ((void **)skb->cb)[2] = data;
9118 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
9119 struct wireless_dev *wdev,
9120 enum nl80211_commands cmd,
9121 enum nl80211_attrs attr,
9122 int vendor_event_idx,
9123 int approxlen, gfp_t gfp)
9125 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9126 const struct nl80211_vendor_cmd_info *info;
9129 case NL80211_CMD_TESTMODE:
9130 if (WARN_ON(vendor_event_idx != -1))
9134 case NL80211_CMD_VENDOR:
9135 if (WARN_ON(vendor_event_idx < 0 ||
9136 vendor_event_idx >= wiphy->n_vendor_events))
9138 info = &wiphy->vendor_events[vendor_event_idx];
9145 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, 0, 0,
9146 cmd, attr, info, gfp);
9148 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
9150 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
9152 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9153 void *hdr = ((void **)skb->cb)[1];
9154 struct nlattr *data = ((void **)skb->cb)[2];
9155 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
9157 /* clear CB data for netlink core to own from now on */
9158 memset(skb->cb, 0, sizeof(skb->cb));
9160 nla_nest_end(skb, data);
9161 genlmsg_end(skb, hdr);
9163 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
9164 mcgrp = NL80211_MCGRP_VENDOR;
9166 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), skb, 0,
9169 EXPORT_SYMBOL(__cfg80211_send_event_skb);
9171 #ifdef CONFIG_NL80211_TESTMODE
9172 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
9174 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9175 struct wireless_dev *wdev =
9176 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9179 if (!rdev->ops->testmode_cmd)
9183 err = PTR_ERR(wdev);
9187 } else if (wdev->wiphy != &rdev->wiphy) {
9191 if (!info->attrs[NL80211_ATTR_TESTDATA])
9194 rdev->cur_cmd_info = info;
9195 err = rdev_testmode_cmd(rdev, wdev,
9196 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
9197 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
9198 rdev->cur_cmd_info = NULL;
9203 static int nl80211_testmode_dump(struct sk_buff *skb,
9204 struct netlink_callback *cb)
9206 struct cfg80211_registered_device *rdev;
9216 * 0 is a valid index, but not valid for args[0],
9217 * so we need to offset by 1.
9219 phy_idx = cb->args[0] - 1;
9221 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
9227 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
9229 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
9230 attrbuf, nl80211_fam.maxattr,
9231 nl80211_policy, NULL);
9235 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
9237 err = PTR_ERR(rdev);
9240 phy_idx = rdev->wiphy_idx;
9242 if (attrbuf[NL80211_ATTR_TESTDATA])
9243 cb->args[1] = (long)attrbuf[NL80211_ATTR_TESTDATA];
9247 data = nla_data((void *)cb->args[1]);
9248 data_len = nla_len((void *)cb->args[1]);
9251 if (!rdev->ops->testmode_dump) {
9257 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
9258 cb->nlh->nlmsg_seq, NLM_F_MULTI,
9259 NL80211_CMD_TESTMODE);
9260 struct nlattr *tmdata;
9265 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
9266 genlmsg_cancel(skb, hdr);
9270 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
9272 genlmsg_cancel(skb, hdr);
9275 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
9276 nla_nest_end(skb, tmdata);
9278 if (err == -ENOBUFS || err == -ENOENT) {
9279 genlmsg_cancel(skb, hdr);
9282 genlmsg_cancel(skb, hdr);
9286 genlmsg_end(skb, hdr);
9291 cb->args[0] = phy_idx + 1;
9298 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
9300 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9301 struct net_device *dev = info->user_ptr[1];
9302 struct cfg80211_connect_params connect;
9303 struct wiphy *wiphy;
9304 struct cfg80211_cached_keys *connkeys = NULL;
9307 memset(&connect, 0, sizeof(connect));
9309 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
9312 if (!info->attrs[NL80211_ATTR_SSID] ||
9313 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9316 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9318 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9319 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
9320 NL80211_CMD_CONNECT))
9323 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
9325 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
9327 if (info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS] &&
9328 !wiphy_ext_feature_isset(&rdev->wiphy,
9329 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
9331 connect.want_1x = info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS];
9333 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
9334 NL80211_MAX_NR_CIPHER_SUITES);
9338 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9339 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9342 wiphy = &rdev->wiphy;
9344 connect.bg_scan_period = -1;
9345 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
9346 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
9347 connect.bg_scan_period =
9348 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
9351 if (info->attrs[NL80211_ATTR_MAC])
9352 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9353 else if (info->attrs[NL80211_ATTR_MAC_HINT])
9354 connect.bssid_hint =
9355 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
9356 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9357 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9359 if (info->attrs[NL80211_ATTR_IE]) {
9360 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9361 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9364 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9365 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9366 if (connect.mfp == NL80211_MFP_OPTIONAL &&
9367 !wiphy_ext_feature_isset(&rdev->wiphy,
9368 NL80211_EXT_FEATURE_MFP_OPTIONAL))
9371 if (connect.mfp != NL80211_MFP_REQUIRED &&
9372 connect.mfp != NL80211_MFP_NO &&
9373 connect.mfp != NL80211_MFP_OPTIONAL)
9376 connect.mfp = NL80211_MFP_NO;
9379 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9380 connect.prev_bssid =
9381 nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9383 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
9384 connect.channel = nl80211_get_valid_chan(
9385 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9386 if (!connect.channel)
9388 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
9389 connect.channel_hint = nl80211_get_valid_chan(
9390 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
9391 if (!connect.channel_hint)
9395 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9396 connkeys = nl80211_parse_connkeys(rdev, info, NULL);
9397 if (IS_ERR(connkeys))
9398 return PTR_ERR(connkeys);
9401 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9402 connect.flags |= ASSOC_REQ_DISABLE_HT;
9404 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9405 memcpy(&connect.ht_capa_mask,
9406 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9407 sizeof(connect.ht_capa_mask));
9409 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9410 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
9414 memcpy(&connect.ht_capa,
9415 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9416 sizeof(connect.ht_capa));
9419 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9420 connect.flags |= ASSOC_REQ_DISABLE_VHT;
9422 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9423 memcpy(&connect.vht_capa_mask,
9424 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9425 sizeof(connect.vht_capa_mask));
9427 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9428 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
9432 memcpy(&connect.vht_capa,
9433 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9434 sizeof(connect.vht_capa));
9437 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9438 if (!((rdev->wiphy.features &
9439 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9440 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9441 !wiphy_ext_feature_isset(&rdev->wiphy,
9442 NL80211_EXT_FEATURE_RRM)) {
9446 connect.flags |= ASSOC_REQ_USE_RRM;
9449 connect.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
9450 if (connect.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ]) {
9455 if (info->attrs[NL80211_ATTR_BSS_SELECT]) {
9456 /* bss selection makes no sense if bssid is set */
9457 if (connect.bssid) {
9462 err = parse_bss_select(info->attrs[NL80211_ATTR_BSS_SELECT],
9463 wiphy, &connect.bss_select);
9470 if (wiphy_ext_feature_isset(&rdev->wiphy,
9471 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
9472 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9473 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9474 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9475 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9476 connect.fils_erp_username =
9477 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9478 connect.fils_erp_username_len =
9479 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9480 connect.fils_erp_realm =
9481 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9482 connect.fils_erp_realm_len =
9483 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9484 connect.fils_erp_next_seq_num =
9486 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9487 connect.fils_erp_rrk =
9488 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9489 connect.fils_erp_rrk_len =
9490 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9491 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9492 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9493 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9494 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9499 if (nla_get_flag(info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])) {
9500 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9502 GENL_SET_ERR_MSG(info,
9503 "external auth requires connection ownership");
9506 connect.flags |= CONNECT_REQ_EXTERNAL_AUTH_SUPPORT;
9509 wdev_lock(dev->ieee80211_ptr);
9511 err = cfg80211_connect(rdev, dev, &connect, connkeys,
9512 connect.prev_bssid);
9516 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9517 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9519 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9520 connect.bssid, ETH_ALEN);
9522 memset(dev->ieee80211_ptr->disconnect_bssid,
9526 wdev_unlock(dev->ieee80211_ptr);
9531 static int nl80211_update_connect_params(struct sk_buff *skb,
9532 struct genl_info *info)
9534 struct cfg80211_connect_params connect = {};
9535 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9536 struct net_device *dev = info->user_ptr[1];
9537 struct wireless_dev *wdev = dev->ieee80211_ptr;
9538 bool fils_sk_offload;
9543 if (!rdev->ops->update_connect_params)
9546 if (info->attrs[NL80211_ATTR_IE]) {
9547 if (!is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
9549 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9550 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9551 changed |= UPDATE_ASSOC_IES;
9554 fils_sk_offload = wiphy_ext_feature_isset(&rdev->wiphy,
9555 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD);
9558 * when driver supports fils-sk offload all attributes must be
9559 * provided. So the else covers "fils-sk-not-all" and
9562 if (fils_sk_offload &&
9563 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9564 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9565 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9566 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9567 connect.fils_erp_username =
9568 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9569 connect.fils_erp_username_len =
9570 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9571 connect.fils_erp_realm =
9572 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9573 connect.fils_erp_realm_len =
9574 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9575 connect.fils_erp_next_seq_num =
9577 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9578 connect.fils_erp_rrk =
9579 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9580 connect.fils_erp_rrk_len =
9581 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9582 changed |= UPDATE_FILS_ERP_INFO;
9583 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9584 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9585 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9586 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9590 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9591 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9592 if (!nl80211_valid_auth_type(rdev, auth_type,
9593 NL80211_CMD_CONNECT))
9596 if (auth_type == NL80211_AUTHTYPE_FILS_SK &&
9597 fils_sk_offload && !(changed & UPDATE_FILS_ERP_INFO))
9600 connect.auth_type = auth_type;
9601 changed |= UPDATE_AUTH_TYPE;
9604 wdev_lock(dev->ieee80211_ptr);
9605 if (!wdev->current_bss)
9608 ret = rdev_update_connect_params(rdev, dev, &connect, changed);
9609 wdev_unlock(dev->ieee80211_ptr);
9614 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
9616 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9617 struct net_device *dev = info->user_ptr[1];
9621 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9622 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9625 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9626 reason = WLAN_REASON_DEAUTH_LEAVING;
9628 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9633 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9634 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9637 wdev_lock(dev->ieee80211_ptr);
9638 ret = cfg80211_disconnect(rdev, dev, reason, true);
9639 wdev_unlock(dev->ieee80211_ptr);
9643 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
9645 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9649 if (info->attrs[NL80211_ATTR_PID]) {
9650 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
9652 net = get_net_ns_by_pid(pid);
9653 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
9654 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
9656 net = get_net_ns_by_fd(fd);
9662 return PTR_ERR(net);
9666 /* check if anything to do */
9667 if (!net_eq(wiphy_net(&rdev->wiphy), net))
9668 err = cfg80211_switch_netns(rdev, net);
9674 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
9676 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9677 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
9678 struct cfg80211_pmksa *pmksa) = NULL;
9679 struct net_device *dev = info->user_ptr[1];
9680 struct cfg80211_pmksa pmksa;
9682 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
9684 if (!info->attrs[NL80211_ATTR_PMKID])
9687 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
9689 if (info->attrs[NL80211_ATTR_MAC]) {
9690 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9691 } else if (info->attrs[NL80211_ATTR_SSID] &&
9692 info->attrs[NL80211_ATTR_FILS_CACHE_ID] &&
9693 (info->genlhdr->cmd == NL80211_CMD_DEL_PMKSA ||
9694 info->attrs[NL80211_ATTR_PMK])) {
9695 pmksa.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9696 pmksa.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9698 nla_data(info->attrs[NL80211_ATTR_FILS_CACHE_ID]);
9702 if (info->attrs[NL80211_ATTR_PMK]) {
9703 pmksa.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
9704 pmksa.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
9707 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9708 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9711 switch (info->genlhdr->cmd) {
9712 case NL80211_CMD_SET_PMKSA:
9713 rdev_ops = rdev->ops->set_pmksa;
9715 case NL80211_CMD_DEL_PMKSA:
9716 rdev_ops = rdev->ops->del_pmksa;
9726 return rdev_ops(&rdev->wiphy, dev, &pmksa);
9729 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
9731 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9732 struct net_device *dev = info->user_ptr[1];
9734 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9735 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9738 if (!rdev->ops->flush_pmksa)
9741 return rdev_flush_pmksa(rdev, dev);
9744 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
9746 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9747 struct net_device *dev = info->user_ptr[1];
9748 u8 action_code, dialog_token;
9749 u32 peer_capability = 0;
9754 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
9755 !rdev->ops->tdls_mgmt)
9758 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
9759 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
9760 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
9761 !info->attrs[NL80211_ATTR_IE] ||
9762 !info->attrs[NL80211_ATTR_MAC])
9765 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
9766 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
9767 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
9768 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
9769 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
9770 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
9772 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
9774 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
9775 dialog_token, status_code, peer_capability,
9777 nla_data(info->attrs[NL80211_ATTR_IE]),
9778 nla_len(info->attrs[NL80211_ATTR_IE]));
9781 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
9783 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9784 struct net_device *dev = info->user_ptr[1];
9785 enum nl80211_tdls_operation operation;
9788 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
9789 !rdev->ops->tdls_oper)
9792 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
9793 !info->attrs[NL80211_ATTR_MAC])
9796 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
9797 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
9799 return rdev_tdls_oper(rdev, dev, peer, operation);
9802 static int nl80211_remain_on_channel(struct sk_buff *skb,
9803 struct genl_info *info)
9805 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9806 struct wireless_dev *wdev = info->user_ptr[1];
9807 struct cfg80211_chan_def chandef;
9808 const struct cfg80211_chan_def *compat_chandef;
9809 struct sk_buff *msg;
9815 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
9816 !info->attrs[NL80211_ATTR_DURATION])
9819 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
9821 if (!rdev->ops->remain_on_channel ||
9822 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
9826 * We should be on that channel for at least a minimum amount of
9827 * time (10ms) but no longer than the driver supports.
9829 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
9830 duration > rdev->wiphy.max_remain_on_channel_duration)
9833 err = nl80211_parse_chandef(rdev, info, &chandef);
9838 if (!cfg80211_off_channel_oper_allowed(wdev) &&
9839 !cfg80211_chandef_identical(&wdev->chandef, &chandef)) {
9840 compat_chandef = cfg80211_chandef_compatible(&wdev->chandef,
9842 if (compat_chandef != &chandef) {
9849 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
9853 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
9854 NL80211_CMD_REMAIN_ON_CHANNEL);
9860 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
9866 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
9868 goto nla_put_failure;
9870 genlmsg_end(msg, hdr);
9872 return genlmsg_reply(msg, info);
9881 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
9882 struct genl_info *info)
9884 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9885 struct wireless_dev *wdev = info->user_ptr[1];
9888 if (!info->attrs[NL80211_ATTR_COOKIE])
9891 if (!rdev->ops->cancel_remain_on_channel)
9894 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
9896 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
9899 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
9900 struct genl_info *info)
9902 struct cfg80211_bitrate_mask mask;
9903 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9904 struct net_device *dev = info->user_ptr[1];
9907 if (!rdev->ops->set_bitrate_mask)
9910 err = nl80211_parse_tx_bitrate_mask(info, &mask);
9914 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
9917 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
9919 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9920 struct wireless_dev *wdev = info->user_ptr[1];
9921 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
9923 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
9926 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
9927 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
9929 switch (wdev->iftype) {
9930 case NL80211_IFTYPE_STATION:
9931 case NL80211_IFTYPE_ADHOC:
9932 case NL80211_IFTYPE_P2P_CLIENT:
9933 case NL80211_IFTYPE_AP:
9934 case NL80211_IFTYPE_AP_VLAN:
9935 case NL80211_IFTYPE_MESH_POINT:
9936 case NL80211_IFTYPE_P2P_GO:
9937 case NL80211_IFTYPE_P2P_DEVICE:
9939 case NL80211_IFTYPE_NAN:
9944 /* not much point in registering if we can't reply */
9945 if (!rdev->ops->mgmt_tx)
9948 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
9949 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
9950 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
9953 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
9955 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9956 struct wireless_dev *wdev = info->user_ptr[1];
9957 struct cfg80211_chan_def chandef;
9961 struct sk_buff *msg = NULL;
9962 struct cfg80211_mgmt_tx_params params = {
9963 .dont_wait_for_ack =
9964 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
9967 if (!info->attrs[NL80211_ATTR_FRAME])
9970 if (!rdev->ops->mgmt_tx)
9973 switch (wdev->iftype) {
9974 case NL80211_IFTYPE_P2P_DEVICE:
9975 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
9977 case NL80211_IFTYPE_STATION:
9978 case NL80211_IFTYPE_ADHOC:
9979 case NL80211_IFTYPE_P2P_CLIENT:
9980 case NL80211_IFTYPE_AP:
9981 case NL80211_IFTYPE_AP_VLAN:
9982 case NL80211_IFTYPE_MESH_POINT:
9983 case NL80211_IFTYPE_P2P_GO:
9985 case NL80211_IFTYPE_NAN:
9990 if (info->attrs[NL80211_ATTR_DURATION]) {
9991 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
9993 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
9996 * We should wait on the channel for at least a minimum amount
9997 * of time (10ms) but no longer than the driver supports.
9999 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10000 params.wait > rdev->wiphy.max_remain_on_channel_duration)
10004 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
10006 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10009 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
10011 /* get the channel if any has been specified, otherwise pass NULL to
10012 * the driver. The latter will use the current one
10014 chandef.chan = NULL;
10015 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10016 err = nl80211_parse_chandef(rdev, info, &chandef);
10021 if (!chandef.chan && params.offchan)
10025 if (params.offchan && !cfg80211_off_channel_oper_allowed(wdev)) {
10031 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
10032 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
10034 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
10035 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10038 if (len % sizeof(u16))
10041 params.n_csa_offsets = len / sizeof(u16);
10042 params.csa_offsets =
10043 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10045 /* check that all the offsets fit the frame */
10046 for (i = 0; i < params.n_csa_offsets; i++) {
10047 if (params.csa_offsets[i] >= params.len)
10052 if (!params.dont_wait_for_ack) {
10053 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10057 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10058 NL80211_CMD_FRAME);
10065 params.chan = chandef.chan;
10066 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
10071 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10073 goto nla_put_failure;
10075 genlmsg_end(msg, hdr);
10076 return genlmsg_reply(msg, info);
10088 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
10090 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10091 struct wireless_dev *wdev = info->user_ptr[1];
10094 if (!info->attrs[NL80211_ATTR_COOKIE])
10097 if (!rdev->ops->mgmt_tx_cancel_wait)
10098 return -EOPNOTSUPP;
10100 switch (wdev->iftype) {
10101 case NL80211_IFTYPE_STATION:
10102 case NL80211_IFTYPE_ADHOC:
10103 case NL80211_IFTYPE_P2P_CLIENT:
10104 case NL80211_IFTYPE_AP:
10105 case NL80211_IFTYPE_AP_VLAN:
10106 case NL80211_IFTYPE_P2P_GO:
10107 case NL80211_IFTYPE_P2P_DEVICE:
10109 case NL80211_IFTYPE_NAN:
10111 return -EOPNOTSUPP;
10114 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10116 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
10119 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
10121 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10122 struct wireless_dev *wdev;
10123 struct net_device *dev = info->user_ptr[1];
10128 if (!info->attrs[NL80211_ATTR_PS_STATE])
10131 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
10133 if (ps_state != NL80211_PS_DISABLED && ps_state != NL80211_PS_ENABLED)
10136 wdev = dev->ieee80211_ptr;
10138 if (!rdev->ops->set_power_mgmt)
10139 return -EOPNOTSUPP;
10141 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
10143 if (state == wdev->ps)
10146 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
10152 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
10154 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10155 enum nl80211_ps_state ps_state;
10156 struct wireless_dev *wdev;
10157 struct net_device *dev = info->user_ptr[1];
10158 struct sk_buff *msg;
10162 wdev = dev->ieee80211_ptr;
10164 if (!rdev->ops->set_power_mgmt)
10165 return -EOPNOTSUPP;
10167 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10171 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10172 NL80211_CMD_GET_POWER_SAVE);
10179 ps_state = NL80211_PS_ENABLED;
10181 ps_state = NL80211_PS_DISABLED;
10183 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
10184 goto nla_put_failure;
10186 genlmsg_end(msg, hdr);
10187 return genlmsg_reply(msg, info);
10196 static const struct nla_policy
10197 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
10198 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_BINARY },
10199 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
10200 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
10201 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
10202 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
10203 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
10204 [NL80211_ATTR_CQM_RSSI_LEVEL] = { .type = NLA_S32 },
10207 static int nl80211_set_cqm_txe(struct genl_info *info,
10208 u32 rate, u32 pkts, u32 intvl)
10210 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10211 struct net_device *dev = info->user_ptr[1];
10212 struct wireless_dev *wdev = dev->ieee80211_ptr;
10214 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
10217 if (!rdev->ops->set_cqm_txe_config)
10218 return -EOPNOTSUPP;
10220 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10221 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10222 return -EOPNOTSUPP;
10224 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
10227 static int cfg80211_cqm_rssi_update(struct cfg80211_registered_device *rdev,
10228 struct net_device *dev)
10230 struct wireless_dev *wdev = dev->ieee80211_ptr;
10231 s32 last, low, high;
10236 /* RSSI reporting disabled? */
10237 if (!wdev->cqm_config)
10238 return rdev_set_cqm_rssi_range_config(rdev, dev, 0, 0);
10241 * Obtain current RSSI value if possible, if not and no RSSI threshold
10242 * event has been received yet, we should receive an event after a
10243 * connection is established and enough beacons received to calculate
10246 if (!wdev->cqm_config->last_rssi_event_value && wdev->current_bss &&
10247 rdev->ops->get_station) {
10248 struct station_info sinfo = {};
10251 mac_addr = wdev->current_bss->pub.bssid;
10253 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
10257 if (sinfo.filled & BIT_ULL(NL80211_STA_INFO_BEACON_SIGNAL_AVG))
10258 wdev->cqm_config->last_rssi_event_value =
10259 (s8) sinfo.rx_beacon_signal_avg;
10262 last = wdev->cqm_config->last_rssi_event_value;
10263 hyst = wdev->cqm_config->rssi_hyst;
10264 n = wdev->cqm_config->n_rssi_thresholds;
10266 for (i = 0; i < n; i++)
10267 if (last < wdev->cqm_config->rssi_thresholds[i])
10271 (wdev->cqm_config->rssi_thresholds[i - 1] - hyst) : S32_MIN;
10273 (wdev->cqm_config->rssi_thresholds[i] + hyst - 1) : S32_MAX;
10275 return rdev_set_cqm_rssi_range_config(rdev, dev, low, high);
10278 static int nl80211_set_cqm_rssi(struct genl_info *info,
10279 const s32 *thresholds, int n_thresholds,
10282 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10283 struct net_device *dev = info->user_ptr[1];
10284 struct wireless_dev *wdev = dev->ieee80211_ptr;
10286 s32 prev = S32_MIN;
10288 /* Check all values negative and sorted */
10289 for (i = 0; i < n_thresholds; i++) {
10290 if (thresholds[i] > 0 || thresholds[i] <= prev)
10293 prev = thresholds[i];
10296 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10297 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10298 return -EOPNOTSUPP;
10301 cfg80211_cqm_config_free(wdev);
10304 if (n_thresholds <= 1 && rdev->ops->set_cqm_rssi_config) {
10305 if (n_thresholds == 0 || thresholds[0] == 0) /* Disabling */
10306 return rdev_set_cqm_rssi_config(rdev, dev, 0, 0);
10308 return rdev_set_cqm_rssi_config(rdev, dev,
10309 thresholds[0], hysteresis);
10312 if (!wiphy_ext_feature_isset(&rdev->wiphy,
10313 NL80211_EXT_FEATURE_CQM_RSSI_LIST))
10314 return -EOPNOTSUPP;
10316 if (n_thresholds == 1 && thresholds[0] == 0) /* Disabling */
10320 if (n_thresholds) {
10321 struct cfg80211_cqm_config *cqm_config;
10323 cqm_config = kzalloc(sizeof(struct cfg80211_cqm_config) +
10324 n_thresholds * sizeof(s32), GFP_KERNEL);
10330 cqm_config->rssi_hyst = hysteresis;
10331 cqm_config->n_rssi_thresholds = n_thresholds;
10332 memcpy(cqm_config->rssi_thresholds, thresholds,
10333 n_thresholds * sizeof(s32));
10335 wdev->cqm_config = cqm_config;
10338 err = cfg80211_cqm_rssi_update(rdev, dev);
10346 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
10348 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
10349 struct nlattr *cqm;
10352 cqm = info->attrs[NL80211_ATTR_CQM];
10356 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
10357 nl80211_attr_cqm_policy, info->extack);
10361 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
10362 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
10363 const s32 *thresholds =
10364 nla_data(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10365 int len = nla_len(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10366 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
10371 return nl80211_set_cqm_rssi(info, thresholds, len / 4,
10375 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
10376 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
10377 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
10378 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
10379 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
10380 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
10382 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
10388 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
10390 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10391 struct net_device *dev = info->user_ptr[1];
10392 struct ocb_setup setup = {};
10395 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10399 return cfg80211_join_ocb(rdev, dev, &setup);
10402 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
10404 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10405 struct net_device *dev = info->user_ptr[1];
10407 return cfg80211_leave_ocb(rdev, dev);
10410 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
10412 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10413 struct net_device *dev = info->user_ptr[1];
10414 struct mesh_config cfg;
10415 struct mesh_setup setup;
10418 /* start with default */
10419 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
10420 memcpy(&setup, &default_mesh_setup, sizeof(setup));
10422 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
10423 /* and parse parameters if given */
10424 err = nl80211_parse_mesh_config(info, &cfg, NULL);
10429 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
10430 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
10433 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
10434 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
10436 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
10437 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
10438 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
10441 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
10442 setup.beacon_interval =
10443 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
10445 err = cfg80211_validate_beacon_int(rdev,
10446 NL80211_IFTYPE_MESH_POINT,
10447 setup.beacon_interval);
10452 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
10453 setup.dtim_period =
10454 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
10455 if (setup.dtim_period < 1 || setup.dtim_period > 100)
10459 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
10460 /* parse additional setup parameters if given */
10461 err = nl80211_parse_mesh_setup(info, &setup);
10466 if (setup.user_mpm)
10467 cfg.auto_open_plinks = false;
10469 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10470 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10474 /* __cfg80211_join_mesh() will sort it out */
10475 setup.chandef.chan = NULL;
10478 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
10479 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10481 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10482 struct ieee80211_supported_band *sband;
10484 if (!setup.chandef.chan)
10487 sband = rdev->wiphy.bands[setup.chandef.chan->band];
10489 err = ieee80211_get_ratemask(sband, rates, n_rates,
10490 &setup.basic_rates);
10495 if (info->attrs[NL80211_ATTR_TX_RATES]) {
10496 err = nl80211_parse_tx_bitrate_mask(info, &setup.beacon_rate);
10500 if (!setup.chandef.chan)
10503 err = validate_beacon_tx_rate(rdev, setup.chandef.chan->band,
10504 &setup.beacon_rate);
10509 setup.userspace_handles_dfs =
10510 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
10512 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
10513 int r = validate_pae_over_nl80211(rdev, info);
10518 setup.control_port_over_nl80211 = true;
10521 wdev_lock(dev->ieee80211_ptr);
10522 err = __cfg80211_join_mesh(rdev, dev, &setup, &cfg);
10523 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER])
10524 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
10525 wdev_unlock(dev->ieee80211_ptr);
10530 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
10532 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10533 struct net_device *dev = info->user_ptr[1];
10535 return cfg80211_leave_mesh(rdev, dev);
10539 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
10540 struct cfg80211_registered_device *rdev)
10542 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
10543 struct nlattr *nl_pats, *nl_pat;
10546 if (!wowlan->n_patterns)
10549 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
10553 for (i = 0; i < wowlan->n_patterns; i++) {
10554 nl_pat = nla_nest_start(msg, i + 1);
10557 pat_len = wowlan->patterns[i].pattern_len;
10558 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
10559 wowlan->patterns[i].mask) ||
10560 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
10561 wowlan->patterns[i].pattern) ||
10562 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
10563 wowlan->patterns[i].pkt_offset))
10565 nla_nest_end(msg, nl_pat);
10567 nla_nest_end(msg, nl_pats);
10572 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
10573 struct cfg80211_wowlan_tcp *tcp)
10575 struct nlattr *nl_tcp;
10580 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
10584 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
10585 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
10586 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
10587 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
10588 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
10589 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
10590 tcp->payload_len, tcp->payload) ||
10591 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
10592 tcp->data_interval) ||
10593 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
10594 tcp->wake_len, tcp->wake_data) ||
10595 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
10596 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
10599 if (tcp->payload_seq.len &&
10600 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
10601 sizeof(tcp->payload_seq), &tcp->payload_seq))
10604 if (tcp->payload_tok.len &&
10605 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
10606 sizeof(tcp->payload_tok) + tcp->tokens_size,
10607 &tcp->payload_tok))
10610 nla_nest_end(msg, nl_tcp);
10615 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
10616 struct cfg80211_sched_scan_request *req)
10618 struct nlattr *nd, *freqs, *matches, *match, *scan_plans, *scan_plan;
10624 nd = nla_nest_start(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
10628 if (req->n_scan_plans == 1 &&
10629 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL,
10630 req->scan_plans[0].interval * 1000))
10633 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
10636 if (req->relative_rssi_set) {
10637 struct nl80211_bss_select_rssi_adjust rssi_adjust;
10639 if (nla_put_s8(msg, NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI,
10640 req->relative_rssi))
10643 rssi_adjust.band = req->rssi_adjust.band;
10644 rssi_adjust.delta = req->rssi_adjust.delta;
10645 if (nla_put(msg, NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST,
10646 sizeof(rssi_adjust), &rssi_adjust))
10650 freqs = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
10654 for (i = 0; i < req->n_channels; i++) {
10655 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
10659 nla_nest_end(msg, freqs);
10661 if (req->n_match_sets) {
10662 matches = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_MATCH);
10666 for (i = 0; i < req->n_match_sets; i++) {
10667 match = nla_nest_start(msg, i);
10671 if (nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
10672 req->match_sets[i].ssid.ssid_len,
10673 req->match_sets[i].ssid.ssid))
10675 nla_nest_end(msg, match);
10677 nla_nest_end(msg, matches);
10680 scan_plans = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_PLANS);
10684 for (i = 0; i < req->n_scan_plans; i++) {
10685 scan_plan = nla_nest_start(msg, i + 1);
10690 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_INTERVAL,
10691 req->scan_plans[i].interval) ||
10692 (req->scan_plans[i].iterations &&
10693 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_ITERATIONS,
10694 req->scan_plans[i].iterations)))
10696 nla_nest_end(msg, scan_plan);
10698 nla_nest_end(msg, scan_plans);
10700 nla_nest_end(msg, nd);
10705 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
10707 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10708 struct sk_buff *msg;
10710 u32 size = NLMSG_DEFAULT_SIZE;
10712 if (!rdev->wiphy.wowlan)
10713 return -EOPNOTSUPP;
10715 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
10716 /* adjust size to have room for all the data */
10717 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
10718 rdev->wiphy.wowlan_config->tcp->payload_len +
10719 rdev->wiphy.wowlan_config->tcp->wake_len +
10720 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
10723 msg = nlmsg_new(size, GFP_KERNEL);
10727 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10728 NL80211_CMD_GET_WOWLAN);
10730 goto nla_put_failure;
10732 if (rdev->wiphy.wowlan_config) {
10733 struct nlattr *nl_wowlan;
10735 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
10737 goto nla_put_failure;
10739 if ((rdev->wiphy.wowlan_config->any &&
10740 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
10741 (rdev->wiphy.wowlan_config->disconnect &&
10742 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
10743 (rdev->wiphy.wowlan_config->magic_pkt &&
10744 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
10745 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
10746 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
10747 (rdev->wiphy.wowlan_config->eap_identity_req &&
10748 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
10749 (rdev->wiphy.wowlan_config->four_way_handshake &&
10750 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
10751 (rdev->wiphy.wowlan_config->rfkill_release &&
10752 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
10753 goto nla_put_failure;
10755 if (nl80211_send_wowlan_patterns(msg, rdev))
10756 goto nla_put_failure;
10758 if (nl80211_send_wowlan_tcp(msg,
10759 rdev->wiphy.wowlan_config->tcp))
10760 goto nla_put_failure;
10762 if (nl80211_send_wowlan_nd(
10764 rdev->wiphy.wowlan_config->nd_config))
10765 goto nla_put_failure;
10767 nla_nest_end(msg, nl_wowlan);
10770 genlmsg_end(msg, hdr);
10771 return genlmsg_reply(msg, info);
10778 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
10779 struct nlattr *attr,
10780 struct cfg80211_wowlan *trig)
10782 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
10783 struct cfg80211_wowlan_tcp *cfg;
10784 struct nl80211_wowlan_tcp_data_token *tok = NULL;
10785 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
10787 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
10790 if (!rdev->wiphy.wowlan->tcp)
10793 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TCP, attr,
10794 nl80211_wowlan_tcp_policy, NULL);
10798 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
10799 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
10800 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
10801 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
10802 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
10803 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
10804 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
10805 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
10808 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
10809 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
10812 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
10813 rdev->wiphy.wowlan->tcp->data_interval_max ||
10814 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
10817 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
10818 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
10821 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
10822 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
10825 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
10826 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
10828 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
10829 tokens_size = tokln - sizeof(*tok);
10831 if (!tok->len || tokens_size % tok->len)
10833 if (!rdev->wiphy.wowlan->tcp->tok)
10835 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
10837 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
10839 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
10841 if (tok->offset + tok->len > data_size)
10845 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
10846 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
10847 if (!rdev->wiphy.wowlan->tcp->seq)
10849 if (seq->len == 0 || seq->len > 4)
10851 if (seq->len + seq->offset > data_size)
10855 size = sizeof(*cfg);
10857 size += wake_size + wake_mask_size;
10858 size += tokens_size;
10860 cfg = kzalloc(size, GFP_KERNEL);
10863 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
10864 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
10865 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
10867 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
10868 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
10872 /* allocate a socket and port for it and use it */
10873 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
10874 IPPROTO_TCP, &cfg->sock, 1);
10879 if (inet_csk_get_port(cfg->sock->sk, port)) {
10880 sock_release(cfg->sock);
10882 return -EADDRINUSE;
10884 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
10890 cfg->src_port = port;
10893 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
10894 cfg->payload_len = data_size;
10895 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
10896 memcpy((void *)cfg->payload,
10897 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
10900 cfg->payload_seq = *seq;
10901 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
10902 cfg->wake_len = wake_size;
10903 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
10904 memcpy((void *)cfg->wake_data,
10905 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
10907 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
10908 data_size + wake_size;
10909 memcpy((void *)cfg->wake_mask,
10910 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
10913 cfg->tokens_size = tokens_size;
10914 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
10922 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
10923 const struct wiphy_wowlan_support *wowlan,
10924 struct nlattr *attr,
10925 struct cfg80211_wowlan *trig)
10927 struct nlattr **tb;
10930 tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
10934 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
10939 err = nla_parse_nested(tb, NL80211_ATTR_MAX, attr, nl80211_policy,
10944 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb,
10945 wowlan->max_nd_match_sets);
10946 err = PTR_ERR_OR_ZERO(trig->nd_config);
10948 trig->nd_config = NULL;
10955 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
10957 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10958 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
10959 struct cfg80211_wowlan new_triggers = {};
10960 struct cfg80211_wowlan *ntrig;
10961 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
10963 bool prev_enabled = rdev->wiphy.wowlan_config;
10964 bool regular = false;
10967 return -EOPNOTSUPP;
10969 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
10970 cfg80211_rdev_free_wowlan(rdev);
10971 rdev->wiphy.wowlan_config = NULL;
10975 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TRIG,
10976 info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS],
10977 nl80211_wowlan_policy, info->extack);
10981 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
10982 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
10984 new_triggers.any = true;
10987 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
10988 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
10990 new_triggers.disconnect = true;
10994 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
10995 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
10997 new_triggers.magic_pkt = true;
11001 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
11004 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
11005 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
11007 new_triggers.gtk_rekey_failure = true;
11011 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
11012 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
11014 new_triggers.eap_identity_req = true;
11018 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
11019 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
11021 new_triggers.four_way_handshake = true;
11025 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
11026 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
11028 new_triggers.rfkill_release = true;
11032 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
11033 struct nlattr *pat;
11034 int n_patterns = 0;
11035 int rem, pat_len, mask_len, pkt_offset;
11036 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11040 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11043 if (n_patterns > wowlan->n_patterns)
11046 new_triggers.patterns = kcalloc(n_patterns,
11047 sizeof(new_triggers.patterns[0]),
11049 if (!new_triggers.patterns)
11052 new_triggers.n_patterns = n_patterns;
11055 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11059 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11060 nl80211_packet_pattern_policy,
11066 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11067 !pat_tb[NL80211_PKTPAT_PATTERN])
11069 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11070 mask_len = DIV_ROUND_UP(pat_len, 8);
11071 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11073 if (pat_len > wowlan->pattern_max_len ||
11074 pat_len < wowlan->pattern_min_len)
11077 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11080 pkt_offset = nla_get_u32(
11081 pat_tb[NL80211_PKTPAT_OFFSET]);
11082 if (pkt_offset > wowlan->max_pkt_offset)
11084 new_triggers.patterns[i].pkt_offset = pkt_offset;
11086 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11091 new_triggers.patterns[i].mask = mask_pat;
11092 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11094 mask_pat += mask_len;
11095 new_triggers.patterns[i].pattern = mask_pat;
11096 new_triggers.patterns[i].pattern_len = pat_len;
11098 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11104 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
11106 err = nl80211_parse_wowlan_tcp(
11107 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
11113 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
11115 err = nl80211_parse_wowlan_nd(
11116 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
11122 /* The 'any' trigger means the device continues operating more or less
11123 * as in its normal operation mode and wakes up the host on most of the
11124 * normal interrupts (like packet RX, ...)
11125 * It therefore makes little sense to combine with the more constrained
11126 * wakeup trigger modes.
11128 if (new_triggers.any && regular) {
11133 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
11138 cfg80211_rdev_free_wowlan(rdev);
11139 rdev->wiphy.wowlan_config = ntrig;
11142 if (rdev->ops->set_wakeup &&
11143 prev_enabled != !!rdev->wiphy.wowlan_config)
11144 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
11148 for (i = 0; i < new_triggers.n_patterns; i++)
11149 kfree(new_triggers.patterns[i].mask);
11150 kfree(new_triggers.patterns);
11151 if (new_triggers.tcp && new_triggers.tcp->sock)
11152 sock_release(new_triggers.tcp->sock);
11153 kfree(new_triggers.tcp);
11154 kfree(new_triggers.nd_config);
11159 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
11160 struct cfg80211_registered_device *rdev)
11162 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
11164 struct cfg80211_coalesce_rules *rule;
11166 if (!rdev->coalesce->n_rules)
11169 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
11173 for (i = 0; i < rdev->coalesce->n_rules; i++) {
11174 nl_rule = nla_nest_start(msg, i + 1);
11178 rule = &rdev->coalesce->rules[i];
11179 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
11183 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
11187 nl_pats = nla_nest_start(msg,
11188 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
11192 for (j = 0; j < rule->n_patterns; j++) {
11193 nl_pat = nla_nest_start(msg, j + 1);
11196 pat_len = rule->patterns[j].pattern_len;
11197 if (nla_put(msg, NL80211_PKTPAT_MASK,
11198 DIV_ROUND_UP(pat_len, 8),
11199 rule->patterns[j].mask) ||
11200 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11201 rule->patterns[j].pattern) ||
11202 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11203 rule->patterns[j].pkt_offset))
11205 nla_nest_end(msg, nl_pat);
11207 nla_nest_end(msg, nl_pats);
11208 nla_nest_end(msg, nl_rule);
11210 nla_nest_end(msg, nl_rules);
11215 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
11217 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11218 struct sk_buff *msg;
11221 if (!rdev->wiphy.coalesce)
11222 return -EOPNOTSUPP;
11224 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11228 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11229 NL80211_CMD_GET_COALESCE);
11231 goto nla_put_failure;
11233 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
11234 goto nla_put_failure;
11236 genlmsg_end(msg, hdr);
11237 return genlmsg_reply(msg, info);
11244 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
11246 struct cfg80211_coalesce *coalesce = rdev->coalesce;
11248 struct cfg80211_coalesce_rules *rule;
11253 for (i = 0; i < coalesce->n_rules; i++) {
11254 rule = &coalesce->rules[i];
11255 for (j = 0; j < rule->n_patterns; j++)
11256 kfree(rule->patterns[j].mask);
11257 kfree(rule->patterns);
11259 kfree(coalesce->rules);
11261 rdev->coalesce = NULL;
11264 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
11265 struct nlattr *rule,
11266 struct cfg80211_coalesce_rules *new_rule)
11269 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11270 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
11271 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
11272 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11274 err = nla_parse_nested(tb, NL80211_ATTR_COALESCE_RULE_MAX, rule,
11275 nl80211_coalesce_policy, NULL);
11279 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
11281 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
11282 if (new_rule->delay > coalesce->max_delay)
11285 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
11286 new_rule->condition =
11287 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
11288 if (new_rule->condition != NL80211_COALESCE_CONDITION_MATCH &&
11289 new_rule->condition != NL80211_COALESCE_CONDITION_NO_MATCH)
11292 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
11295 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11298 if (n_patterns > coalesce->n_patterns)
11301 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
11303 if (!new_rule->patterns)
11306 new_rule->n_patterns = n_patterns;
11309 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11313 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11314 nl80211_packet_pattern_policy, NULL);
11318 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11319 !pat_tb[NL80211_PKTPAT_PATTERN])
11321 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11322 mask_len = DIV_ROUND_UP(pat_len, 8);
11323 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11325 if (pat_len > coalesce->pattern_max_len ||
11326 pat_len < coalesce->pattern_min_len)
11329 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11332 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
11333 if (pkt_offset > coalesce->max_pkt_offset)
11335 new_rule->patterns[i].pkt_offset = pkt_offset;
11337 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11341 new_rule->patterns[i].mask = mask_pat;
11342 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11345 mask_pat += mask_len;
11346 new_rule->patterns[i].pattern = mask_pat;
11347 new_rule->patterns[i].pattern_len = pat_len;
11348 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11356 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
11358 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11359 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11360 struct cfg80211_coalesce new_coalesce = {};
11361 struct cfg80211_coalesce *n_coalesce;
11362 int err, rem_rule, n_rules = 0, i, j;
11363 struct nlattr *rule;
11364 struct cfg80211_coalesce_rules *tmp_rule;
11366 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
11367 return -EOPNOTSUPP;
11369 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
11370 cfg80211_rdev_free_coalesce(rdev);
11371 rdev_set_coalesce(rdev, NULL);
11375 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11378 if (n_rules > coalesce->n_rules)
11381 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
11383 if (!new_coalesce.rules)
11386 new_coalesce.n_rules = n_rules;
11389 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11391 err = nl80211_parse_coalesce_rule(rdev, rule,
11392 &new_coalesce.rules[i]);
11399 err = rdev_set_coalesce(rdev, &new_coalesce);
11403 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
11408 cfg80211_rdev_free_coalesce(rdev);
11409 rdev->coalesce = n_coalesce;
11413 for (i = 0; i < new_coalesce.n_rules; i++) {
11414 tmp_rule = &new_coalesce.rules[i];
11415 for (j = 0; j < tmp_rule->n_patterns; j++)
11416 kfree(tmp_rule->patterns[j].mask);
11417 kfree(tmp_rule->patterns);
11419 kfree(new_coalesce.rules);
11424 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
11426 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11427 struct net_device *dev = info->user_ptr[1];
11428 struct wireless_dev *wdev = dev->ieee80211_ptr;
11429 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
11430 struct cfg80211_gtk_rekey_data rekey_data;
11433 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
11436 err = nla_parse_nested(tb, MAX_NL80211_REKEY_DATA,
11437 info->attrs[NL80211_ATTR_REKEY_DATA],
11438 nl80211_rekey_policy, info->extack);
11442 if (!tb[NL80211_REKEY_DATA_REPLAY_CTR] || !tb[NL80211_REKEY_DATA_KEK] ||
11443 !tb[NL80211_REKEY_DATA_KCK])
11445 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
11447 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
11449 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
11452 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
11453 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
11454 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
11457 if (!wdev->current_bss) {
11462 if (!rdev->ops->set_rekey_data) {
11467 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
11473 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
11474 struct genl_info *info)
11476 struct net_device *dev = info->user_ptr[1];
11477 struct wireless_dev *wdev = dev->ieee80211_ptr;
11479 if (wdev->iftype != NL80211_IFTYPE_AP &&
11480 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11483 if (wdev->ap_unexpected_nlportid)
11486 wdev->ap_unexpected_nlportid = info->snd_portid;
11490 static int nl80211_probe_client(struct sk_buff *skb,
11491 struct genl_info *info)
11493 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11494 struct net_device *dev = info->user_ptr[1];
11495 struct wireless_dev *wdev = dev->ieee80211_ptr;
11496 struct sk_buff *msg;
11502 if (wdev->iftype != NL80211_IFTYPE_AP &&
11503 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11504 return -EOPNOTSUPP;
11506 if (!info->attrs[NL80211_ATTR_MAC])
11509 if (!rdev->ops->probe_client)
11510 return -EOPNOTSUPP;
11512 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11516 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11517 NL80211_CMD_PROBE_CLIENT);
11523 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
11525 err = rdev_probe_client(rdev, dev, addr, &cookie);
11529 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
11531 goto nla_put_failure;
11533 genlmsg_end(msg, hdr);
11535 return genlmsg_reply(msg, info);
11544 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
11546 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11547 struct cfg80211_beacon_registration *reg, *nreg;
11550 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
11551 return -EOPNOTSUPP;
11553 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
11557 /* First, check if already registered. */
11558 spin_lock_bh(&rdev->beacon_registrations_lock);
11559 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11560 if (reg->nlportid == info->snd_portid) {
11565 /* Add it to the list */
11566 nreg->nlportid = info->snd_portid;
11567 list_add(&nreg->list, &rdev->beacon_registrations);
11569 spin_unlock_bh(&rdev->beacon_registrations_lock);
11573 spin_unlock_bh(&rdev->beacon_registrations_lock);
11578 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
11580 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11581 struct wireless_dev *wdev = info->user_ptr[1];
11584 if (!rdev->ops->start_p2p_device)
11585 return -EOPNOTSUPP;
11587 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11588 return -EOPNOTSUPP;
11590 if (wdev_running(wdev))
11593 if (rfkill_blocked(rdev->rfkill))
11596 err = rdev_start_p2p_device(rdev, wdev);
11600 wdev->is_running = true;
11606 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
11608 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11609 struct wireless_dev *wdev = info->user_ptr[1];
11611 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11612 return -EOPNOTSUPP;
11614 if (!rdev->ops->stop_p2p_device)
11615 return -EOPNOTSUPP;
11617 cfg80211_stop_p2p_device(rdev, wdev);
11622 static int nl80211_start_nan(struct sk_buff *skb, struct genl_info *info)
11624 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11625 struct wireless_dev *wdev = info->user_ptr[1];
11626 struct cfg80211_nan_conf conf = {};
11629 if (wdev->iftype != NL80211_IFTYPE_NAN)
11630 return -EOPNOTSUPP;
11632 if (wdev_running(wdev))
11635 if (rfkill_blocked(rdev->rfkill))
11638 if (!info->attrs[NL80211_ATTR_NAN_MASTER_PREF])
11642 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
11643 if (!conf.master_pref)
11646 if (info->attrs[NL80211_ATTR_BANDS]) {
11647 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
11649 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
11650 return -EOPNOTSUPP;
11652 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
11655 conf.bands = bands;
11658 err = rdev_start_nan(rdev, wdev, &conf);
11662 wdev->is_running = true;
11668 static int nl80211_stop_nan(struct sk_buff *skb, struct genl_info *info)
11670 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11671 struct wireless_dev *wdev = info->user_ptr[1];
11673 if (wdev->iftype != NL80211_IFTYPE_NAN)
11674 return -EOPNOTSUPP;
11676 cfg80211_stop_nan(rdev, wdev);
11681 static int validate_nan_filter(struct nlattr *filter_attr)
11683 struct nlattr *attr;
11684 int len = 0, n_entries = 0, rem;
11686 nla_for_each_nested(attr, filter_attr, rem) {
11687 len += nla_len(attr);
11697 static int handle_nan_filter(struct nlattr *attr_filter,
11698 struct cfg80211_nan_func *func,
11701 struct nlattr *attr;
11702 int n_entries, rem, i;
11703 struct cfg80211_nan_func_filter *filter;
11705 n_entries = validate_nan_filter(attr_filter);
11709 BUILD_BUG_ON(sizeof(*func->rx_filters) != sizeof(*func->tx_filters));
11711 filter = kcalloc(n_entries, sizeof(*func->rx_filters), GFP_KERNEL);
11716 nla_for_each_nested(attr, attr_filter, rem) {
11717 filter[i].filter = nla_memdup(attr, GFP_KERNEL);
11718 filter[i].len = nla_len(attr);
11722 func->num_tx_filters = n_entries;
11723 func->tx_filters = filter;
11725 func->num_rx_filters = n_entries;
11726 func->rx_filters = filter;
11732 static int nl80211_nan_add_func(struct sk_buff *skb,
11733 struct genl_info *info)
11735 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11736 struct wireless_dev *wdev = info->user_ptr[1];
11737 struct nlattr *tb[NUM_NL80211_NAN_FUNC_ATTR], *func_attr;
11738 struct cfg80211_nan_func *func;
11739 struct sk_buff *msg = NULL;
11743 if (wdev->iftype != NL80211_IFTYPE_NAN)
11744 return -EOPNOTSUPP;
11746 if (!wdev_running(wdev))
11749 if (!info->attrs[NL80211_ATTR_NAN_FUNC])
11752 err = nla_parse_nested(tb, NL80211_NAN_FUNC_ATTR_MAX,
11753 info->attrs[NL80211_ATTR_NAN_FUNC],
11754 nl80211_nan_func_policy, info->extack);
11758 func = kzalloc(sizeof(*func), GFP_KERNEL);
11762 func->cookie = wdev->wiphy->cookie_counter++;
11764 if (!tb[NL80211_NAN_FUNC_TYPE] ||
11765 nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]) > NL80211_NAN_FUNC_MAX_TYPE) {
11771 func->type = nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]);
11773 if (!tb[NL80211_NAN_FUNC_SERVICE_ID]) {
11778 memcpy(func->service_id, nla_data(tb[NL80211_NAN_FUNC_SERVICE_ID]),
11779 sizeof(func->service_id));
11781 func->close_range =
11782 nla_get_flag(tb[NL80211_NAN_FUNC_CLOSE_RANGE]);
11784 if (tb[NL80211_NAN_FUNC_SERVICE_INFO]) {
11785 func->serv_spec_info_len =
11786 nla_len(tb[NL80211_NAN_FUNC_SERVICE_INFO]);
11787 func->serv_spec_info =
11788 kmemdup(nla_data(tb[NL80211_NAN_FUNC_SERVICE_INFO]),
11789 func->serv_spec_info_len,
11791 if (!func->serv_spec_info) {
11797 if (tb[NL80211_NAN_FUNC_TTL])
11798 func->ttl = nla_get_u32(tb[NL80211_NAN_FUNC_TTL]);
11800 switch (func->type) {
11801 case NL80211_NAN_FUNC_PUBLISH:
11802 if (!tb[NL80211_NAN_FUNC_PUBLISH_TYPE]) {
11807 func->publish_type =
11808 nla_get_u8(tb[NL80211_NAN_FUNC_PUBLISH_TYPE]);
11809 func->publish_bcast =
11810 nla_get_flag(tb[NL80211_NAN_FUNC_PUBLISH_BCAST]);
11812 if ((!(func->publish_type & NL80211_NAN_SOLICITED_PUBLISH)) &&
11813 func->publish_bcast) {
11818 case NL80211_NAN_FUNC_SUBSCRIBE:
11819 func->subscribe_active =
11820 nla_get_flag(tb[NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE]);
11822 case NL80211_NAN_FUNC_FOLLOW_UP:
11823 if (!tb[NL80211_NAN_FUNC_FOLLOW_UP_ID] ||
11824 !tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] ||
11825 !tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]) {
11830 func->followup_id =
11831 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_ID]);
11832 func->followup_reqid =
11833 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID]);
11834 memcpy(func->followup_dest.addr,
11835 nla_data(tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]),
11836 sizeof(func->followup_dest.addr));
11847 if (tb[NL80211_NAN_FUNC_SRF]) {
11848 struct nlattr *srf_tb[NUM_NL80211_NAN_SRF_ATTR];
11850 err = nla_parse_nested(srf_tb, NL80211_NAN_SRF_ATTR_MAX,
11851 tb[NL80211_NAN_FUNC_SRF],
11852 nl80211_nan_srf_policy, info->extack);
11856 func->srf_include =
11857 nla_get_flag(srf_tb[NL80211_NAN_SRF_INCLUDE]);
11859 if (srf_tb[NL80211_NAN_SRF_BF]) {
11860 if (srf_tb[NL80211_NAN_SRF_MAC_ADDRS] ||
11861 !srf_tb[NL80211_NAN_SRF_BF_IDX]) {
11867 nla_len(srf_tb[NL80211_NAN_SRF_BF]);
11869 kmemdup(nla_data(srf_tb[NL80211_NAN_SRF_BF]),
11870 func->srf_bf_len, GFP_KERNEL);
11871 if (!func->srf_bf) {
11877 nla_get_u8(srf_tb[NL80211_NAN_SRF_BF_IDX]);
11879 struct nlattr *attr, *mac_attr =
11880 srf_tb[NL80211_NAN_SRF_MAC_ADDRS];
11881 int n_entries, rem, i = 0;
11888 n_entries = validate_acl_mac_addrs(mac_attr);
11889 if (n_entries <= 0) {
11894 func->srf_num_macs = n_entries;
11896 kcalloc(n_entries, sizeof(*func->srf_macs),
11898 if (!func->srf_macs) {
11903 nla_for_each_nested(attr, mac_attr, rem)
11904 memcpy(func->srf_macs[i++].addr, nla_data(attr),
11905 sizeof(*func->srf_macs));
11909 if (tb[NL80211_NAN_FUNC_TX_MATCH_FILTER]) {
11910 err = handle_nan_filter(tb[NL80211_NAN_FUNC_TX_MATCH_FILTER],
11916 if (tb[NL80211_NAN_FUNC_RX_MATCH_FILTER]) {
11917 err = handle_nan_filter(tb[NL80211_NAN_FUNC_RX_MATCH_FILTER],
11923 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11929 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11930 NL80211_CMD_ADD_NAN_FUNCTION);
11931 /* This can't really happen - we just allocated 4KB */
11932 if (WARN_ON(!hdr)) {
11937 err = rdev_add_nan_func(rdev, wdev, func);
11940 cfg80211_free_nan_func(func);
11945 /* propagate the instance id and cookie to userspace */
11946 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, func->cookie,
11948 goto nla_put_failure;
11950 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
11952 goto nla_put_failure;
11954 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID,
11955 func->instance_id))
11956 goto nla_put_failure;
11958 nla_nest_end(msg, func_attr);
11960 genlmsg_end(msg, hdr);
11961 return genlmsg_reply(msg, info);
11968 static int nl80211_nan_del_func(struct sk_buff *skb,
11969 struct genl_info *info)
11971 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11972 struct wireless_dev *wdev = info->user_ptr[1];
11975 if (wdev->iftype != NL80211_IFTYPE_NAN)
11976 return -EOPNOTSUPP;
11978 if (!wdev_running(wdev))
11981 if (!info->attrs[NL80211_ATTR_COOKIE])
11984 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
11986 rdev_del_nan_func(rdev, wdev, cookie);
11991 static int nl80211_nan_change_config(struct sk_buff *skb,
11992 struct genl_info *info)
11994 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11995 struct wireless_dev *wdev = info->user_ptr[1];
11996 struct cfg80211_nan_conf conf = {};
11999 if (wdev->iftype != NL80211_IFTYPE_NAN)
12000 return -EOPNOTSUPP;
12002 if (!wdev_running(wdev))
12005 if (info->attrs[NL80211_ATTR_NAN_MASTER_PREF]) {
12007 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12008 if (conf.master_pref <= 1 || conf.master_pref == 255)
12011 changed |= CFG80211_NAN_CONF_CHANGED_PREF;
12014 if (info->attrs[NL80211_ATTR_BANDS]) {
12015 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12017 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12018 return -EOPNOTSUPP;
12020 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12023 conf.bands = bands;
12024 changed |= CFG80211_NAN_CONF_CHANGED_BANDS;
12030 return rdev_nan_change_conf(rdev, wdev, &conf, changed);
12033 void cfg80211_nan_match(struct wireless_dev *wdev,
12034 struct cfg80211_nan_match_params *match, gfp_t gfp)
12036 struct wiphy *wiphy = wdev->wiphy;
12037 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12038 struct nlattr *match_attr, *local_func_attr, *peer_func_attr;
12039 struct sk_buff *msg;
12042 if (WARN_ON(!match->inst_id || !match->peer_inst_id || !match->addr))
12045 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12049 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NAN_MATCH);
12055 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12056 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12057 wdev->netdev->ifindex)) ||
12058 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12060 goto nla_put_failure;
12062 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, match->cookie,
12063 NL80211_ATTR_PAD) ||
12064 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, match->addr))
12065 goto nla_put_failure;
12067 match_attr = nla_nest_start(msg, NL80211_ATTR_NAN_MATCH);
12069 goto nla_put_failure;
12071 local_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_LOCAL);
12072 if (!local_func_attr)
12073 goto nla_put_failure;
12075 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->inst_id))
12076 goto nla_put_failure;
12078 nla_nest_end(msg, local_func_attr);
12080 peer_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_PEER);
12081 if (!peer_func_attr)
12082 goto nla_put_failure;
12084 if (nla_put_u8(msg, NL80211_NAN_FUNC_TYPE, match->type) ||
12085 nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->peer_inst_id))
12086 goto nla_put_failure;
12088 if (match->info && match->info_len &&
12089 nla_put(msg, NL80211_NAN_FUNC_SERVICE_INFO, match->info_len,
12091 goto nla_put_failure;
12093 nla_nest_end(msg, peer_func_attr);
12094 nla_nest_end(msg, match_attr);
12095 genlmsg_end(msg, hdr);
12097 if (!wdev->owner_nlportid)
12098 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12099 msg, 0, NL80211_MCGRP_NAN, gfp);
12101 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12102 wdev->owner_nlportid);
12109 EXPORT_SYMBOL(cfg80211_nan_match);
12111 void cfg80211_nan_func_terminated(struct wireless_dev *wdev,
12113 enum nl80211_nan_func_term_reason reason,
12114 u64 cookie, gfp_t gfp)
12116 struct wiphy *wiphy = wdev->wiphy;
12117 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12118 struct sk_buff *msg;
12119 struct nlattr *func_attr;
12122 if (WARN_ON(!inst_id))
12125 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12129 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_NAN_FUNCTION);
12135 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12136 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12137 wdev->netdev->ifindex)) ||
12138 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12140 goto nla_put_failure;
12142 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12144 goto nla_put_failure;
12146 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
12148 goto nla_put_failure;
12150 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, inst_id) ||
12151 nla_put_u8(msg, NL80211_NAN_FUNC_TERM_REASON, reason))
12152 goto nla_put_failure;
12154 nla_nest_end(msg, func_attr);
12155 genlmsg_end(msg, hdr);
12157 if (!wdev->owner_nlportid)
12158 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12159 msg, 0, NL80211_MCGRP_NAN, gfp);
12161 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12162 wdev->owner_nlportid);
12169 EXPORT_SYMBOL(cfg80211_nan_func_terminated);
12171 static int nl80211_get_protocol_features(struct sk_buff *skb,
12172 struct genl_info *info)
12175 struct sk_buff *msg;
12177 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12181 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12182 NL80211_CMD_GET_PROTOCOL_FEATURES);
12184 goto nla_put_failure;
12186 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
12187 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
12188 goto nla_put_failure;
12190 genlmsg_end(msg, hdr);
12191 return genlmsg_reply(msg, info);
12198 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
12200 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12201 struct cfg80211_update_ft_ies_params ft_params;
12202 struct net_device *dev = info->user_ptr[1];
12204 if (!rdev->ops->update_ft_ies)
12205 return -EOPNOTSUPP;
12207 if (!info->attrs[NL80211_ATTR_MDID] ||
12208 !info->attrs[NL80211_ATTR_IE] ||
12209 !is_valid_ie_attr(info->attrs[NL80211_ATTR_IE]))
12212 memset(&ft_params, 0, sizeof(ft_params));
12213 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
12214 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
12215 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
12217 return rdev_update_ft_ies(rdev, dev, &ft_params);
12220 static int nl80211_crit_protocol_start(struct sk_buff *skb,
12221 struct genl_info *info)
12223 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12224 struct wireless_dev *wdev = info->user_ptr[1];
12225 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
12229 if (!rdev->ops->crit_proto_start)
12230 return -EOPNOTSUPP;
12232 if (WARN_ON(!rdev->ops->crit_proto_stop))
12235 if (rdev->crit_proto_nlportid)
12238 /* determine protocol if provided */
12239 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
12240 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
12242 if (proto >= NUM_NL80211_CRIT_PROTO)
12245 /* timeout must be provided */
12246 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
12250 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
12252 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
12255 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
12257 rdev->crit_proto_nlportid = info->snd_portid;
12262 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
12263 struct genl_info *info)
12265 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12266 struct wireless_dev *wdev = info->user_ptr[1];
12268 if (!rdev->ops->crit_proto_stop)
12269 return -EOPNOTSUPP;
12271 if (rdev->crit_proto_nlportid) {
12272 rdev->crit_proto_nlportid = 0;
12273 rdev_crit_proto_stop(rdev, wdev);
12278 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
12280 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12281 struct wireless_dev *wdev =
12282 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
12286 if (!rdev->wiphy.vendor_commands)
12287 return -EOPNOTSUPP;
12289 if (IS_ERR(wdev)) {
12290 err = PTR_ERR(wdev);
12291 if (err != -EINVAL)
12294 } else if (wdev->wiphy != &rdev->wiphy) {
12298 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
12299 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
12302 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
12303 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
12304 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
12305 const struct wiphy_vendor_command *vcmd;
12309 vcmd = &rdev->wiphy.vendor_commands[i];
12311 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12314 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12315 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12318 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12322 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12323 if (!wdev_running(wdev))
12328 return -EOPNOTSUPP;
12333 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
12334 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12335 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12338 rdev->cur_cmd_info = info;
12339 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
12341 rdev->cur_cmd_info = NULL;
12345 return -EOPNOTSUPP;
12348 static int nl80211_prepare_vendor_dump(struct sk_buff *skb,
12349 struct netlink_callback *cb,
12350 struct cfg80211_registered_device **rdev,
12351 struct wireless_dev **wdev)
12353 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
12359 unsigned int data_len = 0;
12362 /* subtract the 1 again here */
12363 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
12364 struct wireless_dev *tmp;
12368 *rdev = wiphy_to_rdev(wiphy);
12372 list_for_each_entry(tmp, &wiphy->wdev_list, list) {
12373 if (tmp->identifier == cb->args[1] - 1) {
12380 /* keep rtnl locked in successful case */
12384 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, attrbuf,
12385 nl80211_fam.maxattr, nl80211_policy, NULL);
12389 if (!attrbuf[NL80211_ATTR_VENDOR_ID] ||
12390 !attrbuf[NL80211_ATTR_VENDOR_SUBCMD])
12393 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk), attrbuf);
12397 *rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
12399 return PTR_ERR(*rdev);
12401 vid = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_ID]);
12402 subcmd = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_SUBCMD]);
12404 for (i = 0; i < (*rdev)->wiphy.n_vendor_commands; i++) {
12405 const struct wiphy_vendor_command *vcmd;
12407 vcmd = &(*rdev)->wiphy.vendor_commands[i];
12409 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12413 return -EOPNOTSUPP;
12420 return -EOPNOTSUPP;
12422 if (attrbuf[NL80211_ATTR_VENDOR_DATA]) {
12423 data = nla_data(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12424 data_len = nla_len(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12427 /* 0 is the first index - add 1 to parse only once */
12428 cb->args[0] = (*rdev)->wiphy_idx + 1;
12429 /* add 1 to know if it was NULL */
12430 cb->args[1] = *wdev ? (*wdev)->identifier + 1 : 0;
12431 cb->args[2] = vcmd_idx;
12432 cb->args[3] = (unsigned long)data;
12433 cb->args[4] = data_len;
12435 /* keep rtnl locked in successful case */
12439 static int nl80211_vendor_cmd_dump(struct sk_buff *skb,
12440 struct netlink_callback *cb)
12442 struct cfg80211_registered_device *rdev;
12443 struct wireless_dev *wdev;
12444 unsigned int vcmd_idx;
12445 const struct wiphy_vendor_command *vcmd;
12449 struct nlattr *vendor_data;
12452 err = nl80211_prepare_vendor_dump(skb, cb, &rdev, &wdev);
12456 vcmd_idx = cb->args[2];
12457 data = (void *)cb->args[3];
12458 data_len = cb->args[4];
12459 vcmd = &rdev->wiphy.vendor_commands[vcmd_idx];
12461 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12462 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12467 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12473 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12474 if (!wdev_running(wdev)) {
12482 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
12483 cb->nlh->nlmsg_seq, NLM_F_MULTI,
12484 NL80211_CMD_VENDOR);
12488 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12489 (wdev && nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
12491 NL80211_ATTR_PAD))) {
12492 genlmsg_cancel(skb, hdr);
12496 vendor_data = nla_nest_start(skb, NL80211_ATTR_VENDOR_DATA);
12497 if (!vendor_data) {
12498 genlmsg_cancel(skb, hdr);
12502 err = vcmd->dumpit(&rdev->wiphy, wdev, skb, data, data_len,
12503 (unsigned long *)&cb->args[5]);
12504 nla_nest_end(skb, vendor_data);
12506 if (err == -ENOBUFS || err == -ENOENT) {
12507 genlmsg_cancel(skb, hdr);
12510 genlmsg_cancel(skb, hdr);
12514 genlmsg_end(skb, hdr);
12523 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
12524 enum nl80211_commands cmd,
12525 enum nl80211_attrs attr,
12528 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12530 if (WARN_ON(!rdev->cur_cmd_info))
12533 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
12534 rdev->cur_cmd_info->snd_portid,
12535 rdev->cur_cmd_info->snd_seq,
12536 cmd, attr, NULL, GFP_KERNEL);
12538 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
12540 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
12542 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
12543 void *hdr = ((void **)skb->cb)[1];
12544 struct nlattr *data = ((void **)skb->cb)[2];
12546 /* clear CB data for netlink core to own from now on */
12547 memset(skb->cb, 0, sizeof(skb->cb));
12549 if (WARN_ON(!rdev->cur_cmd_info)) {
12554 nla_nest_end(skb, data);
12555 genlmsg_end(skb, hdr);
12556 return genlmsg_reply(skb, rdev->cur_cmd_info);
12558 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
12560 static int nl80211_set_qos_map(struct sk_buff *skb,
12561 struct genl_info *info)
12563 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12564 struct cfg80211_qos_map *qos_map = NULL;
12565 struct net_device *dev = info->user_ptr[1];
12566 u8 *pos, len, num_des, des_len, des;
12569 if (!rdev->ops->set_qos_map)
12570 return -EOPNOTSUPP;
12572 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
12573 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
12574 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
12576 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
12577 len > IEEE80211_QOS_MAP_LEN_MAX)
12580 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
12584 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
12586 des_len = num_des *
12587 sizeof(struct cfg80211_dscp_exception);
12588 memcpy(qos_map->dscp_exception, pos, des_len);
12589 qos_map->num_des = num_des;
12590 for (des = 0; des < num_des; des++) {
12591 if (qos_map->dscp_exception[des].up > 7) {
12598 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
12601 wdev_lock(dev->ieee80211_ptr);
12602 ret = nl80211_key_allowed(dev->ieee80211_ptr);
12604 ret = rdev_set_qos_map(rdev, dev, qos_map);
12605 wdev_unlock(dev->ieee80211_ptr);
12611 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
12613 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12614 struct net_device *dev = info->user_ptr[1];
12615 struct wireless_dev *wdev = dev->ieee80211_ptr;
12618 u16 admitted_time = 0;
12621 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
12622 return -EOPNOTSUPP;
12624 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
12625 !info->attrs[NL80211_ATTR_USER_PRIO])
12628 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12629 if (tsid >= IEEE80211_NUM_TIDS)
12632 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
12633 if (up >= IEEE80211_NUM_UPS)
12636 /* WMM uses TIDs 0-7 even for TSPEC */
12637 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
12638 /* TODO: handle 802.11 TSPEC/admission control
12639 * need more attributes for that (e.g. BA session requirement);
12640 * change the WMM adminssion test above to allow both then
12645 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
12647 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
12649 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
12650 if (!admitted_time)
12655 switch (wdev->iftype) {
12656 case NL80211_IFTYPE_STATION:
12657 case NL80211_IFTYPE_P2P_CLIENT:
12658 if (wdev->current_bss)
12667 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
12674 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
12676 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12677 struct net_device *dev = info->user_ptr[1];
12678 struct wireless_dev *wdev = dev->ieee80211_ptr;
12683 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
12686 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12687 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
12690 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
12696 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
12697 struct genl_info *info)
12699 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12700 struct net_device *dev = info->user_ptr[1];
12701 struct wireless_dev *wdev = dev->ieee80211_ptr;
12702 struct cfg80211_chan_def chandef = {};
12707 if (!rdev->ops->tdls_channel_switch ||
12708 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
12709 return -EOPNOTSUPP;
12711 switch (dev->ieee80211_ptr->iftype) {
12712 case NL80211_IFTYPE_STATION:
12713 case NL80211_IFTYPE_P2P_CLIENT:
12716 return -EOPNOTSUPP;
12719 if (!info->attrs[NL80211_ATTR_MAC] ||
12720 !info->attrs[NL80211_ATTR_OPER_CLASS])
12723 err = nl80211_parse_chandef(rdev, info, &chandef);
12728 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
12729 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
12730 * specification is not defined for them.
12732 if (chandef.chan->band == NL80211_BAND_2GHZ &&
12733 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
12734 chandef.width != NL80211_CHAN_WIDTH_20)
12737 /* we will be active on the TDLS link */
12738 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
12742 /* don't allow switching to DFS channels */
12743 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
12746 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
12747 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
12750 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
12756 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
12757 struct genl_info *info)
12759 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12760 struct net_device *dev = info->user_ptr[1];
12761 struct wireless_dev *wdev = dev->ieee80211_ptr;
12764 if (!rdev->ops->tdls_channel_switch ||
12765 !rdev->ops->tdls_cancel_channel_switch ||
12766 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
12767 return -EOPNOTSUPP;
12769 switch (dev->ieee80211_ptr->iftype) {
12770 case NL80211_IFTYPE_STATION:
12771 case NL80211_IFTYPE_P2P_CLIENT:
12774 return -EOPNOTSUPP;
12777 if (!info->attrs[NL80211_ATTR_MAC])
12780 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
12783 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
12789 static int nl80211_set_multicast_to_unicast(struct sk_buff *skb,
12790 struct genl_info *info)
12792 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12793 struct net_device *dev = info->user_ptr[1];
12794 struct wireless_dev *wdev = dev->ieee80211_ptr;
12795 const struct nlattr *nla;
12798 if (!rdev->ops->set_multicast_to_unicast)
12799 return -EOPNOTSUPP;
12801 if (wdev->iftype != NL80211_IFTYPE_AP &&
12802 wdev->iftype != NL80211_IFTYPE_P2P_GO)
12803 return -EOPNOTSUPP;
12805 nla = info->attrs[NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED];
12806 enabled = nla_get_flag(nla);
12808 return rdev_set_multicast_to_unicast(rdev, dev, enabled);
12811 static int nl80211_set_pmk(struct sk_buff *skb, struct genl_info *info)
12813 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12814 struct net_device *dev = info->user_ptr[1];
12815 struct wireless_dev *wdev = dev->ieee80211_ptr;
12816 struct cfg80211_pmk_conf pmk_conf = {};
12819 if (wdev->iftype != NL80211_IFTYPE_STATION &&
12820 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
12821 return -EOPNOTSUPP;
12823 if (!wiphy_ext_feature_isset(&rdev->wiphy,
12824 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
12825 return -EOPNOTSUPP;
12827 if (!info->attrs[NL80211_ATTR_MAC] || !info->attrs[NL80211_ATTR_PMK])
12831 if (!wdev->current_bss) {
12836 pmk_conf.aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
12837 if (memcmp(pmk_conf.aa, wdev->current_bss->pub.bssid, ETH_ALEN)) {
12842 pmk_conf.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
12843 pmk_conf.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
12844 if (pmk_conf.pmk_len != WLAN_PMK_LEN &&
12845 pmk_conf.pmk_len != WLAN_PMK_LEN_SUITE_B_192) {
12850 if (info->attrs[NL80211_ATTR_PMKR0_NAME]) {
12851 int r0_name_len = nla_len(info->attrs[NL80211_ATTR_PMKR0_NAME]);
12853 if (r0_name_len != WLAN_PMK_NAME_LEN) {
12858 pmk_conf.pmk_r0_name =
12859 nla_data(info->attrs[NL80211_ATTR_PMKR0_NAME]);
12862 ret = rdev_set_pmk(rdev, dev, &pmk_conf);
12868 static int nl80211_del_pmk(struct sk_buff *skb, struct genl_info *info)
12870 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12871 struct net_device *dev = info->user_ptr[1];
12872 struct wireless_dev *wdev = dev->ieee80211_ptr;
12876 if (wdev->iftype != NL80211_IFTYPE_STATION &&
12877 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
12878 return -EOPNOTSUPP;
12880 if (!wiphy_ext_feature_isset(&rdev->wiphy,
12881 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
12882 return -EOPNOTSUPP;
12884 if (!info->attrs[NL80211_ATTR_MAC])
12888 aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
12889 ret = rdev_del_pmk(rdev, dev, aa);
12895 static int nl80211_external_auth(struct sk_buff *skb, struct genl_info *info)
12897 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12898 struct net_device *dev = info->user_ptr[1];
12899 struct cfg80211_external_auth_params params;
12901 if (!rdev->ops->external_auth)
12902 return -EOPNOTSUPP;
12904 if (!info->attrs[NL80211_ATTR_SSID])
12907 if (!info->attrs[NL80211_ATTR_BSSID])
12910 if (!info->attrs[NL80211_ATTR_STATUS_CODE])
12913 memset(¶ms, 0, sizeof(params));
12915 params.ssid.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
12916 if (params.ssid.ssid_len == 0 ||
12917 params.ssid.ssid_len > IEEE80211_MAX_SSID_LEN)
12919 memcpy(params.ssid.ssid, nla_data(info->attrs[NL80211_ATTR_SSID]),
12920 params.ssid.ssid_len);
12922 memcpy(params.bssid, nla_data(info->attrs[NL80211_ATTR_BSSID]),
12925 params.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
12927 return rdev_external_auth(rdev, dev, ¶ms);
12930 static int nl80211_tx_control_port(struct sk_buff *skb, struct genl_info *info)
12932 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12933 struct net_device *dev = info->user_ptr[1];
12934 struct wireless_dev *wdev = dev->ieee80211_ptr;
12942 if (!wiphy_ext_feature_isset(&rdev->wiphy,
12943 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
12944 return -EOPNOTSUPP;
12946 if (!rdev->ops->tx_control_port)
12947 return -EOPNOTSUPP;
12949 if (!info->attrs[NL80211_ATTR_FRAME] ||
12950 !info->attrs[NL80211_ATTR_MAC] ||
12951 !info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
12952 GENL_SET_ERR_MSG(info, "Frame, MAC or ethertype missing");
12958 switch (wdev->iftype) {
12959 case NL80211_IFTYPE_AP:
12960 case NL80211_IFTYPE_P2P_GO:
12961 case NL80211_IFTYPE_MESH_POINT:
12963 case NL80211_IFTYPE_ADHOC:
12964 case NL80211_IFTYPE_STATION:
12965 case NL80211_IFTYPE_P2P_CLIENT:
12966 if (wdev->current_bss)
12977 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
12978 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
12979 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
12980 proto = nla_get_u16(info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
12982 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT]);
12984 return rdev_tx_control_port(rdev, dev, buf, len,
12985 dest, cpu_to_be16(proto), noencrypt);
12992 #define NL80211_FLAG_NEED_WIPHY 0x01
12993 #define NL80211_FLAG_NEED_NETDEV 0x02
12994 #define NL80211_FLAG_NEED_RTNL 0x04
12995 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
12996 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
12997 NL80211_FLAG_CHECK_NETDEV_UP)
12998 #define NL80211_FLAG_NEED_WDEV 0x10
12999 /* If a netdev is associated, it must be UP, P2P must be started */
13000 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
13001 NL80211_FLAG_CHECK_NETDEV_UP)
13002 #define NL80211_FLAG_CLEAR_SKB 0x20
13004 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
13005 struct genl_info *info)
13007 struct cfg80211_registered_device *rdev;
13008 struct wireless_dev *wdev;
13009 struct net_device *dev;
13010 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
13015 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
13016 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
13017 if (IS_ERR(rdev)) {
13020 return PTR_ERR(rdev);
13022 info->user_ptr[0] = rdev;
13023 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
13024 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13027 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
13029 if (IS_ERR(wdev)) {
13032 return PTR_ERR(wdev);
13035 dev = wdev->netdev;
13036 rdev = wiphy_to_rdev(wdev->wiphy);
13038 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
13045 info->user_ptr[1] = dev;
13047 info->user_ptr[1] = wdev;
13050 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
13051 !wdev_running(wdev)) {
13060 info->user_ptr[0] = rdev;
13066 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
13067 struct genl_info *info)
13069 if (info->user_ptr[1]) {
13070 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13071 struct wireless_dev *wdev = info->user_ptr[1];
13074 dev_put(wdev->netdev);
13076 dev_put(info->user_ptr[1]);
13080 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
13083 /* If needed, clear the netlink message payload from the SKB
13084 * as it might contain key data that shouldn't stick around on
13085 * the heap after the SKB is freed. The netlink message header
13086 * is still needed for further processing, so leave it intact.
13088 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
13089 struct nlmsghdr *nlh = nlmsg_hdr(skb);
13091 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
13095 static const struct genl_ops nl80211_ops[] = {
13097 .cmd = NL80211_CMD_GET_WIPHY,
13098 .doit = nl80211_get_wiphy,
13099 .dumpit = nl80211_dump_wiphy,
13100 .done = nl80211_dump_wiphy_done,
13101 .policy = nl80211_policy,
13102 /* can be retrieved by unprivileged users */
13103 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13104 NL80211_FLAG_NEED_RTNL,
13107 .cmd = NL80211_CMD_SET_WIPHY,
13108 .doit = nl80211_set_wiphy,
13109 .policy = nl80211_policy,
13110 .flags = GENL_UNS_ADMIN_PERM,
13111 .internal_flags = NL80211_FLAG_NEED_RTNL,
13114 .cmd = NL80211_CMD_GET_INTERFACE,
13115 .doit = nl80211_get_interface,
13116 .dumpit = nl80211_dump_interface,
13117 .policy = nl80211_policy,
13118 /* can be retrieved by unprivileged users */
13119 .internal_flags = NL80211_FLAG_NEED_WDEV |
13120 NL80211_FLAG_NEED_RTNL,
13123 .cmd = NL80211_CMD_SET_INTERFACE,
13124 .doit = nl80211_set_interface,
13125 .policy = nl80211_policy,
13126 .flags = GENL_UNS_ADMIN_PERM,
13127 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13128 NL80211_FLAG_NEED_RTNL,
13131 .cmd = NL80211_CMD_NEW_INTERFACE,
13132 .doit = nl80211_new_interface,
13133 .policy = nl80211_policy,
13134 .flags = GENL_UNS_ADMIN_PERM,
13135 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13136 NL80211_FLAG_NEED_RTNL,
13139 .cmd = NL80211_CMD_DEL_INTERFACE,
13140 .doit = nl80211_del_interface,
13141 .policy = nl80211_policy,
13142 .flags = GENL_UNS_ADMIN_PERM,
13143 .internal_flags = NL80211_FLAG_NEED_WDEV |
13144 NL80211_FLAG_NEED_RTNL,
13147 .cmd = NL80211_CMD_GET_KEY,
13148 .doit = nl80211_get_key,
13149 .policy = nl80211_policy,
13150 .flags = GENL_UNS_ADMIN_PERM,
13151 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13152 NL80211_FLAG_NEED_RTNL,
13155 .cmd = NL80211_CMD_SET_KEY,
13156 .doit = nl80211_set_key,
13157 .policy = nl80211_policy,
13158 .flags = GENL_UNS_ADMIN_PERM,
13159 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13160 NL80211_FLAG_NEED_RTNL |
13161 NL80211_FLAG_CLEAR_SKB,
13164 .cmd = NL80211_CMD_NEW_KEY,
13165 .doit = nl80211_new_key,
13166 .policy = nl80211_policy,
13167 .flags = GENL_UNS_ADMIN_PERM,
13168 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13169 NL80211_FLAG_NEED_RTNL |
13170 NL80211_FLAG_CLEAR_SKB,
13173 .cmd = NL80211_CMD_DEL_KEY,
13174 .doit = nl80211_del_key,
13175 .policy = nl80211_policy,
13176 .flags = GENL_UNS_ADMIN_PERM,
13177 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13178 NL80211_FLAG_NEED_RTNL,
13181 .cmd = NL80211_CMD_SET_BEACON,
13182 .policy = nl80211_policy,
13183 .flags = GENL_UNS_ADMIN_PERM,
13184 .doit = nl80211_set_beacon,
13185 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13186 NL80211_FLAG_NEED_RTNL,
13189 .cmd = NL80211_CMD_START_AP,
13190 .policy = nl80211_policy,
13191 .flags = GENL_UNS_ADMIN_PERM,
13192 .doit = nl80211_start_ap,
13193 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13194 NL80211_FLAG_NEED_RTNL,
13197 .cmd = NL80211_CMD_STOP_AP,
13198 .policy = nl80211_policy,
13199 .flags = GENL_UNS_ADMIN_PERM,
13200 .doit = nl80211_stop_ap,
13201 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13202 NL80211_FLAG_NEED_RTNL,
13205 .cmd = NL80211_CMD_GET_STATION,
13206 .doit = nl80211_get_station,
13207 .dumpit = nl80211_dump_station,
13208 .policy = nl80211_policy,
13209 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13210 NL80211_FLAG_NEED_RTNL,
13213 .cmd = NL80211_CMD_SET_STATION,
13214 .doit = nl80211_set_station,
13215 .policy = nl80211_policy,
13216 .flags = GENL_UNS_ADMIN_PERM,
13217 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13218 NL80211_FLAG_NEED_RTNL,
13221 .cmd = NL80211_CMD_NEW_STATION,
13222 .doit = nl80211_new_station,
13223 .policy = nl80211_policy,
13224 .flags = GENL_UNS_ADMIN_PERM,
13225 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13226 NL80211_FLAG_NEED_RTNL,
13229 .cmd = NL80211_CMD_DEL_STATION,
13230 .doit = nl80211_del_station,
13231 .policy = nl80211_policy,
13232 .flags = GENL_UNS_ADMIN_PERM,
13233 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13234 NL80211_FLAG_NEED_RTNL,
13237 .cmd = NL80211_CMD_GET_MPATH,
13238 .doit = nl80211_get_mpath,
13239 .dumpit = nl80211_dump_mpath,
13240 .policy = nl80211_policy,
13241 .flags = GENL_UNS_ADMIN_PERM,
13242 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13243 NL80211_FLAG_NEED_RTNL,
13246 .cmd = NL80211_CMD_GET_MPP,
13247 .doit = nl80211_get_mpp,
13248 .dumpit = nl80211_dump_mpp,
13249 .policy = nl80211_policy,
13250 .flags = GENL_UNS_ADMIN_PERM,
13251 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13252 NL80211_FLAG_NEED_RTNL,
13255 .cmd = NL80211_CMD_SET_MPATH,
13256 .doit = nl80211_set_mpath,
13257 .policy = nl80211_policy,
13258 .flags = GENL_UNS_ADMIN_PERM,
13259 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13260 NL80211_FLAG_NEED_RTNL,
13263 .cmd = NL80211_CMD_NEW_MPATH,
13264 .doit = nl80211_new_mpath,
13265 .policy = nl80211_policy,
13266 .flags = GENL_UNS_ADMIN_PERM,
13267 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13268 NL80211_FLAG_NEED_RTNL,
13271 .cmd = NL80211_CMD_DEL_MPATH,
13272 .doit = nl80211_del_mpath,
13273 .policy = nl80211_policy,
13274 .flags = GENL_UNS_ADMIN_PERM,
13275 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13276 NL80211_FLAG_NEED_RTNL,
13279 .cmd = NL80211_CMD_SET_BSS,
13280 .doit = nl80211_set_bss,
13281 .policy = nl80211_policy,
13282 .flags = GENL_UNS_ADMIN_PERM,
13283 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13284 NL80211_FLAG_NEED_RTNL,
13287 .cmd = NL80211_CMD_GET_REG,
13288 .doit = nl80211_get_reg_do,
13289 .dumpit = nl80211_get_reg_dump,
13290 .policy = nl80211_policy,
13291 .internal_flags = NL80211_FLAG_NEED_RTNL,
13292 /* can be retrieved by unprivileged users */
13294 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
13296 .cmd = NL80211_CMD_SET_REG,
13297 .doit = nl80211_set_reg,
13298 .policy = nl80211_policy,
13299 .flags = GENL_ADMIN_PERM,
13300 .internal_flags = NL80211_FLAG_NEED_RTNL,
13304 .cmd = NL80211_CMD_REQ_SET_REG,
13305 .doit = nl80211_req_set_reg,
13306 .policy = nl80211_policy,
13307 .flags = GENL_ADMIN_PERM,
13310 .cmd = NL80211_CMD_RELOAD_REGDB,
13311 .doit = nl80211_reload_regdb,
13312 .policy = nl80211_policy,
13313 .flags = GENL_ADMIN_PERM,
13316 .cmd = NL80211_CMD_GET_MESH_CONFIG,
13317 .doit = nl80211_get_mesh_config,
13318 .policy = nl80211_policy,
13319 /* can be retrieved by unprivileged users */
13320 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13321 NL80211_FLAG_NEED_RTNL,
13324 .cmd = NL80211_CMD_SET_MESH_CONFIG,
13325 .doit = nl80211_update_mesh_config,
13326 .policy = nl80211_policy,
13327 .flags = GENL_UNS_ADMIN_PERM,
13328 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13329 NL80211_FLAG_NEED_RTNL,
13332 .cmd = NL80211_CMD_TRIGGER_SCAN,
13333 .doit = nl80211_trigger_scan,
13334 .policy = nl80211_policy,
13335 .flags = GENL_UNS_ADMIN_PERM,
13336 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13337 NL80211_FLAG_NEED_RTNL,
13340 .cmd = NL80211_CMD_ABORT_SCAN,
13341 .doit = nl80211_abort_scan,
13342 .policy = nl80211_policy,
13343 .flags = GENL_UNS_ADMIN_PERM,
13344 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13345 NL80211_FLAG_NEED_RTNL,
13348 .cmd = NL80211_CMD_GET_SCAN,
13349 .policy = nl80211_policy,
13350 .dumpit = nl80211_dump_scan,
13353 .cmd = NL80211_CMD_START_SCHED_SCAN,
13354 .doit = nl80211_start_sched_scan,
13355 .policy = nl80211_policy,
13356 .flags = GENL_UNS_ADMIN_PERM,
13357 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13358 NL80211_FLAG_NEED_RTNL,
13361 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
13362 .doit = nl80211_stop_sched_scan,
13363 .policy = nl80211_policy,
13364 .flags = GENL_UNS_ADMIN_PERM,
13365 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13366 NL80211_FLAG_NEED_RTNL,
13369 .cmd = NL80211_CMD_AUTHENTICATE,
13370 .doit = nl80211_authenticate,
13371 .policy = nl80211_policy,
13372 .flags = GENL_UNS_ADMIN_PERM,
13373 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13374 NL80211_FLAG_NEED_RTNL |
13375 NL80211_FLAG_CLEAR_SKB,
13378 .cmd = NL80211_CMD_ASSOCIATE,
13379 .doit = nl80211_associate,
13380 .policy = nl80211_policy,
13381 .flags = GENL_UNS_ADMIN_PERM,
13382 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13383 NL80211_FLAG_NEED_RTNL,
13386 .cmd = NL80211_CMD_DEAUTHENTICATE,
13387 .doit = nl80211_deauthenticate,
13388 .policy = nl80211_policy,
13389 .flags = GENL_UNS_ADMIN_PERM,
13390 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13391 NL80211_FLAG_NEED_RTNL,
13394 .cmd = NL80211_CMD_DISASSOCIATE,
13395 .doit = nl80211_disassociate,
13396 .policy = nl80211_policy,
13397 .flags = GENL_UNS_ADMIN_PERM,
13398 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13399 NL80211_FLAG_NEED_RTNL,
13402 .cmd = NL80211_CMD_JOIN_IBSS,
13403 .doit = nl80211_join_ibss,
13404 .policy = nl80211_policy,
13405 .flags = GENL_UNS_ADMIN_PERM,
13406 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13407 NL80211_FLAG_NEED_RTNL,
13410 .cmd = NL80211_CMD_LEAVE_IBSS,
13411 .doit = nl80211_leave_ibss,
13412 .policy = nl80211_policy,
13413 .flags = GENL_UNS_ADMIN_PERM,
13414 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13415 NL80211_FLAG_NEED_RTNL,
13417 #ifdef CONFIG_NL80211_TESTMODE
13419 .cmd = NL80211_CMD_TESTMODE,
13420 .doit = nl80211_testmode_do,
13421 .dumpit = nl80211_testmode_dump,
13422 .policy = nl80211_policy,
13423 .flags = GENL_UNS_ADMIN_PERM,
13424 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13425 NL80211_FLAG_NEED_RTNL,
13429 .cmd = NL80211_CMD_CONNECT,
13430 .doit = nl80211_connect,
13431 .policy = nl80211_policy,
13432 .flags = GENL_UNS_ADMIN_PERM,
13433 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13434 NL80211_FLAG_NEED_RTNL,
13437 .cmd = NL80211_CMD_UPDATE_CONNECT_PARAMS,
13438 .doit = nl80211_update_connect_params,
13439 .policy = nl80211_policy,
13440 .flags = GENL_ADMIN_PERM,
13441 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13442 NL80211_FLAG_NEED_RTNL,
13445 .cmd = NL80211_CMD_DISCONNECT,
13446 .doit = nl80211_disconnect,
13447 .policy = nl80211_policy,
13448 .flags = GENL_UNS_ADMIN_PERM,
13449 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13450 NL80211_FLAG_NEED_RTNL,
13453 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
13454 .doit = nl80211_wiphy_netns,
13455 .policy = nl80211_policy,
13456 .flags = GENL_UNS_ADMIN_PERM,
13457 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13458 NL80211_FLAG_NEED_RTNL,
13461 .cmd = NL80211_CMD_GET_SURVEY,
13462 .policy = nl80211_policy,
13463 .dumpit = nl80211_dump_survey,
13466 .cmd = NL80211_CMD_SET_PMKSA,
13467 .doit = nl80211_setdel_pmksa,
13468 .policy = nl80211_policy,
13469 .flags = GENL_UNS_ADMIN_PERM,
13470 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13471 NL80211_FLAG_NEED_RTNL,
13474 .cmd = NL80211_CMD_DEL_PMKSA,
13475 .doit = nl80211_setdel_pmksa,
13476 .policy = nl80211_policy,
13477 .flags = GENL_UNS_ADMIN_PERM,
13478 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13479 NL80211_FLAG_NEED_RTNL,
13482 .cmd = NL80211_CMD_FLUSH_PMKSA,
13483 .doit = nl80211_flush_pmksa,
13484 .policy = nl80211_policy,
13485 .flags = GENL_UNS_ADMIN_PERM,
13486 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13487 NL80211_FLAG_NEED_RTNL,
13490 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
13491 .doit = nl80211_remain_on_channel,
13492 .policy = nl80211_policy,
13493 .flags = GENL_UNS_ADMIN_PERM,
13494 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13495 NL80211_FLAG_NEED_RTNL,
13498 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
13499 .doit = nl80211_cancel_remain_on_channel,
13500 .policy = nl80211_policy,
13501 .flags = GENL_UNS_ADMIN_PERM,
13502 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13503 NL80211_FLAG_NEED_RTNL,
13506 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
13507 .doit = nl80211_set_tx_bitrate_mask,
13508 .policy = nl80211_policy,
13509 .flags = GENL_UNS_ADMIN_PERM,
13510 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13511 NL80211_FLAG_NEED_RTNL,
13514 .cmd = NL80211_CMD_REGISTER_FRAME,
13515 .doit = nl80211_register_mgmt,
13516 .policy = nl80211_policy,
13517 .flags = GENL_UNS_ADMIN_PERM,
13518 .internal_flags = NL80211_FLAG_NEED_WDEV |
13519 NL80211_FLAG_NEED_RTNL,
13522 .cmd = NL80211_CMD_FRAME,
13523 .doit = nl80211_tx_mgmt,
13524 .policy = nl80211_policy,
13525 .flags = GENL_UNS_ADMIN_PERM,
13526 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13527 NL80211_FLAG_NEED_RTNL,
13530 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
13531 .doit = nl80211_tx_mgmt_cancel_wait,
13532 .policy = nl80211_policy,
13533 .flags = GENL_UNS_ADMIN_PERM,
13534 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13535 NL80211_FLAG_NEED_RTNL,
13538 .cmd = NL80211_CMD_SET_POWER_SAVE,
13539 .doit = nl80211_set_power_save,
13540 .policy = nl80211_policy,
13541 .flags = GENL_UNS_ADMIN_PERM,
13542 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13543 NL80211_FLAG_NEED_RTNL,
13546 .cmd = NL80211_CMD_GET_POWER_SAVE,
13547 .doit = nl80211_get_power_save,
13548 .policy = nl80211_policy,
13549 /* can be retrieved by unprivileged users */
13550 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13551 NL80211_FLAG_NEED_RTNL,
13554 .cmd = NL80211_CMD_SET_CQM,
13555 .doit = nl80211_set_cqm,
13556 .policy = nl80211_policy,
13557 .flags = GENL_UNS_ADMIN_PERM,
13558 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13559 NL80211_FLAG_NEED_RTNL,
13562 .cmd = NL80211_CMD_SET_CHANNEL,
13563 .doit = nl80211_set_channel,
13564 .policy = nl80211_policy,
13565 .flags = GENL_UNS_ADMIN_PERM,
13566 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13567 NL80211_FLAG_NEED_RTNL,
13570 .cmd = NL80211_CMD_SET_WDS_PEER,
13571 .doit = nl80211_set_wds_peer,
13572 .policy = nl80211_policy,
13573 .flags = GENL_UNS_ADMIN_PERM,
13574 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13575 NL80211_FLAG_NEED_RTNL,
13578 .cmd = NL80211_CMD_JOIN_MESH,
13579 .doit = nl80211_join_mesh,
13580 .policy = nl80211_policy,
13581 .flags = GENL_UNS_ADMIN_PERM,
13582 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13583 NL80211_FLAG_NEED_RTNL,
13586 .cmd = NL80211_CMD_LEAVE_MESH,
13587 .doit = nl80211_leave_mesh,
13588 .policy = nl80211_policy,
13589 .flags = GENL_UNS_ADMIN_PERM,
13590 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13591 NL80211_FLAG_NEED_RTNL,
13594 .cmd = NL80211_CMD_JOIN_OCB,
13595 .doit = nl80211_join_ocb,
13596 .policy = nl80211_policy,
13597 .flags = GENL_UNS_ADMIN_PERM,
13598 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13599 NL80211_FLAG_NEED_RTNL,
13602 .cmd = NL80211_CMD_LEAVE_OCB,
13603 .doit = nl80211_leave_ocb,
13604 .policy = nl80211_policy,
13605 .flags = GENL_UNS_ADMIN_PERM,
13606 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13607 NL80211_FLAG_NEED_RTNL,
13611 .cmd = NL80211_CMD_GET_WOWLAN,
13612 .doit = nl80211_get_wowlan,
13613 .policy = nl80211_policy,
13614 /* can be retrieved by unprivileged users */
13615 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13616 NL80211_FLAG_NEED_RTNL,
13619 .cmd = NL80211_CMD_SET_WOWLAN,
13620 .doit = nl80211_set_wowlan,
13621 .policy = nl80211_policy,
13622 .flags = GENL_UNS_ADMIN_PERM,
13623 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13624 NL80211_FLAG_NEED_RTNL,
13628 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
13629 .doit = nl80211_set_rekey_data,
13630 .policy = nl80211_policy,
13631 .flags = GENL_UNS_ADMIN_PERM,
13632 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13633 NL80211_FLAG_NEED_RTNL |
13634 NL80211_FLAG_CLEAR_SKB,
13637 .cmd = NL80211_CMD_TDLS_MGMT,
13638 .doit = nl80211_tdls_mgmt,
13639 .policy = nl80211_policy,
13640 .flags = GENL_UNS_ADMIN_PERM,
13641 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13642 NL80211_FLAG_NEED_RTNL,
13645 .cmd = NL80211_CMD_TDLS_OPER,
13646 .doit = nl80211_tdls_oper,
13647 .policy = nl80211_policy,
13648 .flags = GENL_UNS_ADMIN_PERM,
13649 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13650 NL80211_FLAG_NEED_RTNL,
13653 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
13654 .doit = nl80211_register_unexpected_frame,
13655 .policy = nl80211_policy,
13656 .flags = GENL_UNS_ADMIN_PERM,
13657 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13658 NL80211_FLAG_NEED_RTNL,
13661 .cmd = NL80211_CMD_PROBE_CLIENT,
13662 .doit = nl80211_probe_client,
13663 .policy = nl80211_policy,
13664 .flags = GENL_UNS_ADMIN_PERM,
13665 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13666 NL80211_FLAG_NEED_RTNL,
13669 .cmd = NL80211_CMD_REGISTER_BEACONS,
13670 .doit = nl80211_register_beacons,
13671 .policy = nl80211_policy,
13672 .flags = GENL_UNS_ADMIN_PERM,
13673 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13674 NL80211_FLAG_NEED_RTNL,
13677 .cmd = NL80211_CMD_SET_NOACK_MAP,
13678 .doit = nl80211_set_noack_map,
13679 .policy = nl80211_policy,
13680 .flags = GENL_UNS_ADMIN_PERM,
13681 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13682 NL80211_FLAG_NEED_RTNL,
13685 .cmd = NL80211_CMD_START_P2P_DEVICE,
13686 .doit = nl80211_start_p2p_device,
13687 .policy = nl80211_policy,
13688 .flags = GENL_UNS_ADMIN_PERM,
13689 .internal_flags = NL80211_FLAG_NEED_WDEV |
13690 NL80211_FLAG_NEED_RTNL,
13693 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
13694 .doit = nl80211_stop_p2p_device,
13695 .policy = nl80211_policy,
13696 .flags = GENL_UNS_ADMIN_PERM,
13697 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13698 NL80211_FLAG_NEED_RTNL,
13701 .cmd = NL80211_CMD_START_NAN,
13702 .doit = nl80211_start_nan,
13703 .policy = nl80211_policy,
13704 .flags = GENL_ADMIN_PERM,
13705 .internal_flags = NL80211_FLAG_NEED_WDEV |
13706 NL80211_FLAG_NEED_RTNL,
13709 .cmd = NL80211_CMD_STOP_NAN,
13710 .doit = nl80211_stop_nan,
13711 .policy = nl80211_policy,
13712 .flags = GENL_ADMIN_PERM,
13713 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13714 NL80211_FLAG_NEED_RTNL,
13717 .cmd = NL80211_CMD_ADD_NAN_FUNCTION,
13718 .doit = nl80211_nan_add_func,
13719 .policy = nl80211_policy,
13720 .flags = GENL_ADMIN_PERM,
13721 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13722 NL80211_FLAG_NEED_RTNL,
13725 .cmd = NL80211_CMD_DEL_NAN_FUNCTION,
13726 .doit = nl80211_nan_del_func,
13727 .policy = nl80211_policy,
13728 .flags = GENL_ADMIN_PERM,
13729 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13730 NL80211_FLAG_NEED_RTNL,
13733 .cmd = NL80211_CMD_CHANGE_NAN_CONFIG,
13734 .doit = nl80211_nan_change_config,
13735 .policy = nl80211_policy,
13736 .flags = GENL_ADMIN_PERM,
13737 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13738 NL80211_FLAG_NEED_RTNL,
13741 .cmd = NL80211_CMD_SET_MCAST_RATE,
13742 .doit = nl80211_set_mcast_rate,
13743 .policy = nl80211_policy,
13744 .flags = GENL_UNS_ADMIN_PERM,
13745 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13746 NL80211_FLAG_NEED_RTNL,
13749 .cmd = NL80211_CMD_SET_MAC_ACL,
13750 .doit = nl80211_set_mac_acl,
13751 .policy = nl80211_policy,
13752 .flags = GENL_UNS_ADMIN_PERM,
13753 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13754 NL80211_FLAG_NEED_RTNL,
13757 .cmd = NL80211_CMD_RADAR_DETECT,
13758 .doit = nl80211_start_radar_detection,
13759 .policy = nl80211_policy,
13760 .flags = GENL_UNS_ADMIN_PERM,
13761 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13762 NL80211_FLAG_NEED_RTNL,
13765 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
13766 .doit = nl80211_get_protocol_features,
13767 .policy = nl80211_policy,
13770 .cmd = NL80211_CMD_UPDATE_FT_IES,
13771 .doit = nl80211_update_ft_ies,
13772 .policy = nl80211_policy,
13773 .flags = GENL_UNS_ADMIN_PERM,
13774 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13775 NL80211_FLAG_NEED_RTNL,
13778 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
13779 .doit = nl80211_crit_protocol_start,
13780 .policy = nl80211_policy,
13781 .flags = GENL_UNS_ADMIN_PERM,
13782 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13783 NL80211_FLAG_NEED_RTNL,
13786 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
13787 .doit = nl80211_crit_protocol_stop,
13788 .policy = nl80211_policy,
13789 .flags = GENL_UNS_ADMIN_PERM,
13790 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13791 NL80211_FLAG_NEED_RTNL,
13794 .cmd = NL80211_CMD_GET_COALESCE,
13795 .doit = nl80211_get_coalesce,
13796 .policy = nl80211_policy,
13797 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13798 NL80211_FLAG_NEED_RTNL,
13801 .cmd = NL80211_CMD_SET_COALESCE,
13802 .doit = nl80211_set_coalesce,
13803 .policy = nl80211_policy,
13804 .flags = GENL_UNS_ADMIN_PERM,
13805 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13806 NL80211_FLAG_NEED_RTNL,
13809 .cmd = NL80211_CMD_CHANNEL_SWITCH,
13810 .doit = nl80211_channel_switch,
13811 .policy = nl80211_policy,
13812 .flags = GENL_UNS_ADMIN_PERM,
13813 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13814 NL80211_FLAG_NEED_RTNL,
13817 .cmd = NL80211_CMD_VENDOR,
13818 .doit = nl80211_vendor_cmd,
13819 .dumpit = nl80211_vendor_cmd_dump,
13820 .policy = nl80211_policy,
13821 .flags = GENL_UNS_ADMIN_PERM,
13822 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13823 NL80211_FLAG_NEED_RTNL,
13826 .cmd = NL80211_CMD_SET_QOS_MAP,
13827 .doit = nl80211_set_qos_map,
13828 .policy = nl80211_policy,
13829 .flags = GENL_UNS_ADMIN_PERM,
13830 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13831 NL80211_FLAG_NEED_RTNL,
13834 .cmd = NL80211_CMD_ADD_TX_TS,
13835 .doit = nl80211_add_tx_ts,
13836 .policy = nl80211_policy,
13837 .flags = GENL_UNS_ADMIN_PERM,
13838 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13839 NL80211_FLAG_NEED_RTNL,
13842 .cmd = NL80211_CMD_DEL_TX_TS,
13843 .doit = nl80211_del_tx_ts,
13844 .policy = nl80211_policy,
13845 .flags = GENL_UNS_ADMIN_PERM,
13846 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13847 NL80211_FLAG_NEED_RTNL,
13850 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
13851 .doit = nl80211_tdls_channel_switch,
13852 .policy = nl80211_policy,
13853 .flags = GENL_UNS_ADMIN_PERM,
13854 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13855 NL80211_FLAG_NEED_RTNL,
13858 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
13859 .doit = nl80211_tdls_cancel_channel_switch,
13860 .policy = nl80211_policy,
13861 .flags = GENL_UNS_ADMIN_PERM,
13862 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13863 NL80211_FLAG_NEED_RTNL,
13866 .cmd = NL80211_CMD_SET_MULTICAST_TO_UNICAST,
13867 .doit = nl80211_set_multicast_to_unicast,
13868 .policy = nl80211_policy,
13869 .flags = GENL_UNS_ADMIN_PERM,
13870 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13871 NL80211_FLAG_NEED_RTNL,
13874 .cmd = NL80211_CMD_SET_PMK,
13875 .doit = nl80211_set_pmk,
13876 .policy = nl80211_policy,
13877 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13878 NL80211_FLAG_NEED_RTNL,
13881 .cmd = NL80211_CMD_DEL_PMK,
13882 .doit = nl80211_del_pmk,
13883 .policy = nl80211_policy,
13884 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13885 NL80211_FLAG_NEED_RTNL,
13888 .cmd = NL80211_CMD_EXTERNAL_AUTH,
13889 .doit = nl80211_external_auth,
13890 .policy = nl80211_policy,
13891 .flags = GENL_ADMIN_PERM,
13892 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13893 NL80211_FLAG_NEED_RTNL,
13896 .cmd = NL80211_CMD_CONTROL_PORT_FRAME,
13897 .doit = nl80211_tx_control_port,
13898 .policy = nl80211_policy,
13899 .flags = GENL_UNS_ADMIN_PERM,
13900 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13901 NL80211_FLAG_NEED_RTNL,
13905 static struct genl_family nl80211_fam __ro_after_init = {
13906 .name = NL80211_GENL_NAME, /* have users key off the name instead */
13907 .hdrsize = 0, /* no private header */
13908 .version = 1, /* no particular meaning now */
13909 .maxattr = NL80211_ATTR_MAX,
13911 .pre_doit = nl80211_pre_doit,
13912 .post_doit = nl80211_post_doit,
13913 .module = THIS_MODULE,
13914 .ops = nl80211_ops,
13915 .n_ops = ARRAY_SIZE(nl80211_ops),
13916 .mcgrps = nl80211_mcgrps,
13917 .n_mcgrps = ARRAY_SIZE(nl80211_mcgrps),
13920 /* notification functions */
13922 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
13923 enum nl80211_commands cmd)
13925 struct sk_buff *msg;
13926 struct nl80211_dump_wiphy_state state = {};
13928 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
13929 cmd != NL80211_CMD_DEL_WIPHY);
13931 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13935 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
13940 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
13941 NL80211_MCGRP_CONFIG, GFP_KERNEL);
13944 void nl80211_notify_iface(struct cfg80211_registered_device *rdev,
13945 struct wireless_dev *wdev,
13946 enum nl80211_commands cmd)
13948 struct sk_buff *msg;
13950 WARN_ON(cmd != NL80211_CMD_NEW_INTERFACE &&
13951 cmd != NL80211_CMD_DEL_INTERFACE);
13953 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13957 if (nl80211_send_iface(msg, 0, 0, 0, rdev, wdev,
13958 cmd == NL80211_CMD_DEL_INTERFACE) < 0) {
13963 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
13964 NL80211_MCGRP_CONFIG, GFP_KERNEL);
13967 static int nl80211_add_scan_req(struct sk_buff *msg,
13968 struct cfg80211_registered_device *rdev)
13970 struct cfg80211_scan_request *req = rdev->scan_req;
13971 struct nlattr *nest;
13977 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
13979 goto nla_put_failure;
13980 for (i = 0; i < req->n_ssids; i++) {
13981 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
13982 goto nla_put_failure;
13984 nla_nest_end(msg, nest);
13986 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
13988 goto nla_put_failure;
13989 for (i = 0; i < req->n_channels; i++) {
13990 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
13991 goto nla_put_failure;
13993 nla_nest_end(msg, nest);
13996 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
13997 goto nla_put_failure;
14000 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
14001 goto nla_put_failure;
14003 if (req->info.scan_start_tsf &&
14004 (nla_put_u64_64bit(msg, NL80211_ATTR_SCAN_START_TIME_TSF,
14005 req->info.scan_start_tsf, NL80211_BSS_PAD) ||
14006 nla_put(msg, NL80211_ATTR_SCAN_START_TIME_TSF_BSSID, ETH_ALEN,
14007 req->info.tsf_bssid)))
14008 goto nla_put_failure;
14015 static int nl80211_prep_scan_msg(struct sk_buff *msg,
14016 struct cfg80211_registered_device *rdev,
14017 struct wireless_dev *wdev,
14018 u32 portid, u32 seq, int flags,
14023 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
14027 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14028 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14029 wdev->netdev->ifindex)) ||
14030 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14032 goto nla_put_failure;
14034 /* ignore errors and send incomplete event anyway */
14035 nl80211_add_scan_req(msg, rdev);
14037 genlmsg_end(msg, hdr);
14041 genlmsg_cancel(msg, hdr);
14046 nl80211_prep_sched_scan_msg(struct sk_buff *msg,
14047 struct cfg80211_sched_scan_request *req, u32 cmd)
14051 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14055 if (nla_put_u32(msg, NL80211_ATTR_WIPHY,
14056 wiphy_to_rdev(req->wiphy)->wiphy_idx) ||
14057 nla_put_u32(msg, NL80211_ATTR_IFINDEX, req->dev->ifindex) ||
14058 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, req->reqid,
14060 goto nla_put_failure;
14062 genlmsg_end(msg, hdr);
14066 genlmsg_cancel(msg, hdr);
14070 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
14071 struct wireless_dev *wdev)
14073 struct sk_buff *msg;
14075 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14079 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14080 NL80211_CMD_TRIGGER_SCAN) < 0) {
14085 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14086 NL80211_MCGRP_SCAN, GFP_KERNEL);
14089 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
14090 struct wireless_dev *wdev, bool aborted)
14092 struct sk_buff *msg;
14094 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14098 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14099 aborted ? NL80211_CMD_SCAN_ABORTED :
14100 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
14108 /* send message created by nl80211_build_scan_msg() */
14109 void nl80211_send_scan_msg(struct cfg80211_registered_device *rdev,
14110 struct sk_buff *msg)
14115 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14116 NL80211_MCGRP_SCAN, GFP_KERNEL);
14119 void nl80211_send_sched_scan(struct cfg80211_sched_scan_request *req, u32 cmd)
14121 struct sk_buff *msg;
14123 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14127 if (nl80211_prep_sched_scan_msg(msg, req, cmd) < 0) {
14132 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(req->wiphy), msg, 0,
14133 NL80211_MCGRP_SCAN, GFP_KERNEL);
14136 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
14137 struct regulatory_request *request)
14139 /* Userspace can always count this one always being set */
14140 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
14141 goto nla_put_failure;
14143 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
14144 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14145 NL80211_REGDOM_TYPE_WORLD))
14146 goto nla_put_failure;
14147 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
14148 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14149 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
14150 goto nla_put_failure;
14151 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
14152 request->intersect) {
14153 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14154 NL80211_REGDOM_TYPE_INTERSECTION))
14155 goto nla_put_failure;
14157 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14158 NL80211_REGDOM_TYPE_COUNTRY) ||
14159 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
14161 goto nla_put_failure;
14164 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
14165 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
14168 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
14169 goto nla_put_failure;
14172 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
14173 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
14174 goto nla_put_failure;
14184 * This can happen on global regulatory changes or device specific settings
14185 * based on custom regulatory domains.
14187 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
14188 struct regulatory_request *request)
14190 struct sk_buff *msg;
14193 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14197 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
14203 if (nl80211_reg_change_event_fill(msg, request) == false)
14204 goto nla_put_failure;
14206 genlmsg_end(msg, hdr);
14209 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14210 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14219 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
14220 struct net_device *netdev,
14221 const u8 *buf, size_t len,
14222 enum nl80211_commands cmd, gfp_t gfp,
14225 struct sk_buff *msg;
14228 msg = nlmsg_new(100 + len, gfp);
14232 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14238 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14239 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14240 nla_put(msg, NL80211_ATTR_FRAME, len, buf))
14241 goto nla_put_failure;
14243 if (uapsd_queues >= 0) {
14244 struct nlattr *nla_wmm =
14245 nla_nest_start(msg, NL80211_ATTR_STA_WME);
14247 goto nla_put_failure;
14249 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
14251 goto nla_put_failure;
14253 nla_nest_end(msg, nla_wmm);
14256 genlmsg_end(msg, hdr);
14258 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14259 NL80211_MCGRP_MLME, gfp);
14266 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
14267 struct net_device *netdev, const u8 *buf,
14268 size_t len, gfp_t gfp)
14270 nl80211_send_mlme_event(rdev, netdev, buf, len,
14271 NL80211_CMD_AUTHENTICATE, gfp, -1);
14274 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
14275 struct net_device *netdev, const u8 *buf,
14276 size_t len, gfp_t gfp, int uapsd_queues)
14278 nl80211_send_mlme_event(rdev, netdev, buf, len,
14279 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues);
14282 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
14283 struct net_device *netdev, const u8 *buf,
14284 size_t len, gfp_t gfp)
14286 nl80211_send_mlme_event(rdev, netdev, buf, len,
14287 NL80211_CMD_DEAUTHENTICATE, gfp, -1);
14290 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
14291 struct net_device *netdev, const u8 *buf,
14292 size_t len, gfp_t gfp)
14294 nl80211_send_mlme_event(rdev, netdev, buf, len,
14295 NL80211_CMD_DISASSOCIATE, gfp, -1);
14298 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
14301 struct wireless_dev *wdev = dev->ieee80211_ptr;
14302 struct wiphy *wiphy = wdev->wiphy;
14303 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14304 const struct ieee80211_mgmt *mgmt = (void *)buf;
14307 if (WARN_ON(len < 2))
14310 if (ieee80211_is_deauth(mgmt->frame_control))
14311 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
14313 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
14315 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
14316 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1);
14318 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
14320 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
14321 struct net_device *netdev, int cmd,
14322 const u8 *addr, gfp_t gfp)
14324 struct sk_buff *msg;
14327 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14331 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14337 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14338 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14339 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14340 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
14341 goto nla_put_failure;
14343 genlmsg_end(msg, hdr);
14345 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14346 NL80211_MCGRP_MLME, gfp);
14353 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
14354 struct net_device *netdev, const u8 *addr,
14357 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
14361 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
14362 struct net_device *netdev, const u8 *addr,
14365 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
14369 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
14370 struct net_device *netdev,
14371 struct cfg80211_connect_resp_params *cr,
14374 struct sk_buff *msg;
14377 msg = nlmsg_new(100 + cr->req_ie_len + cr->resp_ie_len +
14378 cr->fils.kek_len + cr->fils.pmk_len +
14379 (cr->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14383 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
14389 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14390 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14392 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, cr->bssid)) ||
14393 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE,
14394 cr->status < 0 ? WLAN_STATUS_UNSPECIFIED_FAILURE :
14397 (nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14398 nla_put_u32(msg, NL80211_ATTR_TIMEOUT_REASON,
14399 cr->timeout_reason))) ||
14401 nla_put(msg, NL80211_ATTR_REQ_IE, cr->req_ie_len, cr->req_ie)) ||
14403 nla_put(msg, NL80211_ATTR_RESP_IE, cr->resp_ie_len,
14405 (cr->fils.update_erp_next_seq_num &&
14406 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14407 cr->fils.erp_next_seq_num)) ||
14408 (cr->status == WLAN_STATUS_SUCCESS &&
14410 nla_put(msg, NL80211_ATTR_FILS_KEK, cr->fils.kek_len,
14413 nla_put(msg, NL80211_ATTR_PMK, cr->fils.pmk_len, cr->fils.pmk)) ||
14415 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, cr->fils.pmkid)))))
14416 goto nla_put_failure;
14418 genlmsg_end(msg, hdr);
14420 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14421 NL80211_MCGRP_MLME, gfp);
14428 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
14429 struct net_device *netdev,
14430 struct cfg80211_roam_info *info, gfp_t gfp)
14432 struct sk_buff *msg;
14434 const u8 *bssid = info->bss ? info->bss->bssid : info->bssid;
14436 msg = nlmsg_new(100 + info->req_ie_len + info->resp_ie_len +
14437 info->fils.kek_len + info->fils.pmk_len +
14438 (info->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14442 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
14448 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14449 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14450 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
14452 nla_put(msg, NL80211_ATTR_REQ_IE, info->req_ie_len,
14455 nla_put(msg, NL80211_ATTR_RESP_IE, info->resp_ie_len,
14457 (info->fils.update_erp_next_seq_num &&
14458 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14459 info->fils.erp_next_seq_num)) ||
14461 nla_put(msg, NL80211_ATTR_FILS_KEK, info->fils.kek_len,
14462 info->fils.kek)) ||
14464 nla_put(msg, NL80211_ATTR_PMK, info->fils.pmk_len, info->fils.pmk)) ||
14465 (info->fils.pmkid &&
14466 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, info->fils.pmkid)))
14467 goto nla_put_failure;
14469 genlmsg_end(msg, hdr);
14471 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14472 NL80211_MCGRP_MLME, gfp);
14479 void nl80211_send_port_authorized(struct cfg80211_registered_device *rdev,
14480 struct net_device *netdev, const u8 *bssid)
14482 struct sk_buff *msg;
14485 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14489 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PORT_AUTHORIZED);
14495 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14496 goto nla_put_failure;
14498 genlmsg_end(msg, hdr);
14500 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14501 NL80211_MCGRP_MLME, GFP_KERNEL);
14508 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
14509 struct net_device *netdev, u16 reason,
14510 const u8 *ie, size_t ie_len, bool from_ap)
14512 struct sk_buff *msg;
14515 msg = nlmsg_new(100 + ie_len, GFP_KERNEL);
14519 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
14525 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14526 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14528 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
14530 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
14531 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
14532 goto nla_put_failure;
14534 genlmsg_end(msg, hdr);
14536 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14537 NL80211_MCGRP_MLME, GFP_KERNEL);
14544 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
14545 struct net_device *netdev, const u8 *bssid,
14548 struct sk_buff *msg;
14551 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14555 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
14561 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14562 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14563 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14564 goto nla_put_failure;
14566 genlmsg_end(msg, hdr);
14568 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14569 NL80211_MCGRP_MLME, gfp);
14576 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
14577 const u8* ie, u8 ie_len, gfp_t gfp)
14579 struct wireless_dev *wdev = dev->ieee80211_ptr;
14580 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
14581 struct sk_buff *msg;
14584 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
14587 trace_cfg80211_notify_new_peer_candidate(dev, addr);
14589 msg = nlmsg_new(100 + ie_len, gfp);
14593 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
14599 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14600 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
14601 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
14603 nla_put(msg, NL80211_ATTR_IE, ie_len , ie)))
14604 goto nla_put_failure;
14606 genlmsg_end(msg, hdr);
14608 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14609 NL80211_MCGRP_MLME, gfp);
14615 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
14617 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
14618 struct net_device *netdev, const u8 *addr,
14619 enum nl80211_key_type key_type, int key_id,
14620 const u8 *tsc, gfp_t gfp)
14622 struct sk_buff *msg;
14625 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14629 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
14635 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14636 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14637 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
14638 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
14640 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
14641 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
14642 goto nla_put_failure;
14644 genlmsg_end(msg, hdr);
14646 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14647 NL80211_MCGRP_MLME, gfp);
14654 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
14655 struct ieee80211_channel *channel_before,
14656 struct ieee80211_channel *channel_after)
14658 struct sk_buff *msg;
14660 struct nlattr *nl_freq;
14662 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
14666 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
14673 * Since we are applying the beacon hint to a wiphy we know its
14674 * wiphy_idx is valid
14676 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
14677 goto nla_put_failure;
14680 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
14682 goto nla_put_failure;
14684 if (nl80211_msg_put_channel(msg, wiphy, channel_before, false))
14685 goto nla_put_failure;
14686 nla_nest_end(msg, nl_freq);
14689 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
14691 goto nla_put_failure;
14693 if (nl80211_msg_put_channel(msg, wiphy, channel_after, false))
14694 goto nla_put_failure;
14695 nla_nest_end(msg, nl_freq);
14697 genlmsg_end(msg, hdr);
14700 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14701 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14710 static void nl80211_send_remain_on_chan_event(
14711 int cmd, struct cfg80211_registered_device *rdev,
14712 struct wireless_dev *wdev, u64 cookie,
14713 struct ieee80211_channel *chan,
14714 unsigned int duration, gfp_t gfp)
14716 struct sk_buff *msg;
14719 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14723 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14729 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14730 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14731 wdev->netdev->ifindex)) ||
14732 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14733 NL80211_ATTR_PAD) ||
14734 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
14735 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
14736 NL80211_CHAN_NO_HT) ||
14737 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
14739 goto nla_put_failure;
14741 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
14742 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
14743 goto nla_put_failure;
14745 genlmsg_end(msg, hdr);
14747 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14748 NL80211_MCGRP_MLME, gfp);
14755 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
14756 struct ieee80211_channel *chan,
14757 unsigned int duration, gfp_t gfp)
14759 struct wiphy *wiphy = wdev->wiphy;
14760 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14762 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
14763 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
14764 rdev, wdev, cookie, chan,
14767 EXPORT_SYMBOL(cfg80211_ready_on_channel);
14769 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
14770 struct ieee80211_channel *chan,
14773 struct wiphy *wiphy = wdev->wiphy;
14774 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14776 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
14777 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
14778 rdev, wdev, cookie, chan, 0, gfp);
14780 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
14782 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
14783 struct station_info *sinfo, gfp_t gfp)
14785 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
14786 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14787 struct sk_buff *msg;
14789 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
14791 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14795 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
14796 rdev, dev, mac_addr, sinfo) < 0) {
14801 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14802 NL80211_MCGRP_MLME, gfp);
14804 EXPORT_SYMBOL(cfg80211_new_sta);
14806 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
14807 struct station_info *sinfo, gfp_t gfp)
14809 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
14810 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14811 struct sk_buff *msg;
14812 struct station_info empty_sinfo = {};
14815 sinfo = &empty_sinfo;
14817 trace_cfg80211_del_sta(dev, mac_addr);
14819 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14821 cfg80211_sinfo_release_content(sinfo);
14825 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
14826 rdev, dev, mac_addr, sinfo) < 0) {
14831 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14832 NL80211_MCGRP_MLME, gfp);
14834 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
14836 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
14837 enum nl80211_connect_failed_reason reason,
14840 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
14841 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14842 struct sk_buff *msg;
14845 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
14849 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
14855 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
14856 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
14857 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
14858 goto nla_put_failure;
14860 genlmsg_end(msg, hdr);
14862 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14863 NL80211_MCGRP_MLME, gfp);
14869 EXPORT_SYMBOL(cfg80211_conn_failed);
14871 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
14872 const u8 *addr, gfp_t gfp)
14874 struct wireless_dev *wdev = dev->ieee80211_ptr;
14875 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
14876 struct sk_buff *msg;
14878 u32 nlportid = READ_ONCE(wdev->ap_unexpected_nlportid);
14883 msg = nlmsg_new(100, gfp);
14887 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14893 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14894 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
14895 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
14896 goto nla_put_failure;
14898 genlmsg_end(msg, hdr);
14899 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
14907 bool cfg80211_rx_spurious_frame(struct net_device *dev,
14908 const u8 *addr, gfp_t gfp)
14910 struct wireless_dev *wdev = dev->ieee80211_ptr;
14913 trace_cfg80211_rx_spurious_frame(dev, addr);
14915 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
14916 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
14917 trace_cfg80211_return_bool(false);
14920 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
14922 trace_cfg80211_return_bool(ret);
14925 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
14927 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
14928 const u8 *addr, gfp_t gfp)
14930 struct wireless_dev *wdev = dev->ieee80211_ptr;
14933 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
14935 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
14936 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
14937 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
14938 trace_cfg80211_return_bool(false);
14941 ret = __nl80211_unexpected_frame(dev,
14942 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
14944 trace_cfg80211_return_bool(ret);
14947 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
14949 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
14950 struct wireless_dev *wdev, u32 nlportid,
14951 int freq, int sig_dbm,
14952 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
14954 struct net_device *netdev = wdev->netdev;
14955 struct sk_buff *msg;
14958 msg = nlmsg_new(100 + len, gfp);
14962 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
14968 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14969 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14970 netdev->ifindex)) ||
14971 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14972 NL80211_ATTR_PAD) ||
14973 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
14975 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
14976 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
14978 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
14979 goto nla_put_failure;
14981 genlmsg_end(msg, hdr);
14983 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
14990 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
14991 const u8 *buf, size_t len, bool ack, gfp_t gfp)
14993 struct wiphy *wiphy = wdev->wiphy;
14994 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14995 struct net_device *netdev = wdev->netdev;
14996 struct sk_buff *msg;
14999 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
15001 msg = nlmsg_new(100 + len, gfp);
15005 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
15011 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15012 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15013 netdev->ifindex)) ||
15014 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15015 NL80211_ATTR_PAD) ||
15016 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15017 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15018 NL80211_ATTR_PAD) ||
15019 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
15020 goto nla_put_failure;
15022 genlmsg_end(msg, hdr);
15024 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15025 NL80211_MCGRP_MLME, gfp);
15031 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
15033 static int __nl80211_rx_control_port(struct net_device *dev,
15034 struct sk_buff *skb,
15035 bool unencrypted, gfp_t gfp)
15037 struct wireless_dev *wdev = dev->ieee80211_ptr;
15038 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15039 struct ethhdr *ehdr = eth_hdr(skb);
15040 const u8 *addr = ehdr->h_source;
15041 u16 proto = be16_to_cpu(skb->protocol);
15042 struct sk_buff *msg;
15044 struct nlattr *frame;
15046 u32 nlportid = READ_ONCE(wdev->conn_owner_nlportid);
15051 msg = nlmsg_new(100 + skb->len, gfp);
15055 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONTROL_PORT_FRAME);
15061 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15062 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15063 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15064 NL80211_ATTR_PAD) ||
15065 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15066 nla_put_u16(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE, proto) ||
15067 (unencrypted && nla_put_flag(msg,
15068 NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT)))
15069 goto nla_put_failure;
15071 frame = nla_reserve(msg, NL80211_ATTR_FRAME, skb->len);
15073 goto nla_put_failure;
15075 skb_copy_bits(skb, 0, nla_data(frame), skb->len);
15076 genlmsg_end(msg, hdr);
15078 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15085 bool cfg80211_rx_control_port(struct net_device *dev,
15086 struct sk_buff *skb, bool unencrypted)
15090 trace_cfg80211_rx_control_port(dev, skb, unencrypted);
15091 ret = __nl80211_rx_control_port(dev, skb, unencrypted, GFP_ATOMIC);
15092 trace_cfg80211_return_bool(ret == 0);
15095 EXPORT_SYMBOL(cfg80211_rx_control_port);
15097 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
15098 const char *mac, gfp_t gfp)
15100 struct wireless_dev *wdev = dev->ieee80211_ptr;
15101 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15102 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15108 cb = (void **)msg->cb;
15110 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
15116 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15117 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15118 goto nla_put_failure;
15120 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15121 goto nla_put_failure;
15123 cb[1] = nla_nest_start(msg, NL80211_ATTR_CQM);
15125 goto nla_put_failure;
15135 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
15137 void **cb = (void **)msg->cb;
15138 struct cfg80211_registered_device *rdev = cb[2];
15140 nla_nest_end(msg, cb[1]);
15141 genlmsg_end(msg, cb[0]);
15143 memset(msg->cb, 0, sizeof(msg->cb));
15145 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15146 NL80211_MCGRP_MLME, gfp);
15149 void cfg80211_cqm_rssi_notify(struct net_device *dev,
15150 enum nl80211_cqm_rssi_threshold_event rssi_event,
15151 s32 rssi_level, gfp_t gfp)
15153 struct sk_buff *msg;
15154 struct wireless_dev *wdev = dev->ieee80211_ptr;
15155 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15157 trace_cfg80211_cqm_rssi_notify(dev, rssi_event, rssi_level);
15159 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
15160 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
15163 if (wdev->cqm_config) {
15164 wdev->cqm_config->last_rssi_event_value = rssi_level;
15166 cfg80211_cqm_rssi_update(rdev, dev);
15168 if (rssi_level == 0)
15169 rssi_level = wdev->cqm_config->last_rssi_event_value;
15172 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15176 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
15178 goto nla_put_failure;
15180 if (rssi_level && nla_put_s32(msg, NL80211_ATTR_CQM_RSSI_LEVEL,
15182 goto nla_put_failure;
15184 cfg80211_send_cqm(msg, gfp);
15191 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
15193 void cfg80211_cqm_txe_notify(struct net_device *dev,
15194 const u8 *peer, u32 num_packets,
15195 u32 rate, u32 intvl, gfp_t gfp)
15197 struct sk_buff *msg;
15199 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15203 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
15204 goto nla_put_failure;
15206 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
15207 goto nla_put_failure;
15209 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
15210 goto nla_put_failure;
15212 cfg80211_send_cqm(msg, gfp);
15218 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
15220 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
15221 const u8 *peer, u32 num_packets, gfp_t gfp)
15223 struct sk_buff *msg;
15225 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
15227 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15231 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
15232 goto nla_put_failure;
15234 cfg80211_send_cqm(msg, gfp);
15240 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
15242 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
15244 struct sk_buff *msg;
15246 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15250 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
15251 goto nla_put_failure;
15253 cfg80211_send_cqm(msg, gfp);
15259 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
15261 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
15262 struct net_device *netdev, const u8 *bssid,
15263 const u8 *replay_ctr, gfp_t gfp)
15265 struct sk_buff *msg;
15266 struct nlattr *rekey_attr;
15269 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15273 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
15279 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15280 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15281 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15282 goto nla_put_failure;
15284 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
15286 goto nla_put_failure;
15288 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
15289 NL80211_REPLAY_CTR_LEN, replay_ctr))
15290 goto nla_put_failure;
15292 nla_nest_end(msg, rekey_attr);
15294 genlmsg_end(msg, hdr);
15296 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15297 NL80211_MCGRP_MLME, gfp);
15304 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
15305 const u8 *replay_ctr, gfp_t gfp)
15307 struct wireless_dev *wdev = dev->ieee80211_ptr;
15308 struct wiphy *wiphy = wdev->wiphy;
15309 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15311 trace_cfg80211_gtk_rekey_notify(dev, bssid);
15312 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
15314 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
15317 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
15318 struct net_device *netdev, int index,
15319 const u8 *bssid, bool preauth, gfp_t gfp)
15321 struct sk_buff *msg;
15322 struct nlattr *attr;
15325 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15329 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
15335 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15336 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15337 goto nla_put_failure;
15339 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
15341 goto nla_put_failure;
15343 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
15344 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
15346 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
15347 goto nla_put_failure;
15349 nla_nest_end(msg, attr);
15351 genlmsg_end(msg, hdr);
15353 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15354 NL80211_MCGRP_MLME, gfp);
15361 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
15362 const u8 *bssid, bool preauth, gfp_t gfp)
15364 struct wireless_dev *wdev = dev->ieee80211_ptr;
15365 struct wiphy *wiphy = wdev->wiphy;
15366 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15368 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
15369 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
15371 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
15373 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
15374 struct net_device *netdev,
15375 struct cfg80211_chan_def *chandef,
15377 enum nl80211_commands notif,
15380 struct sk_buff *msg;
15383 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15387 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
15393 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15394 goto nla_put_failure;
15396 if (nl80211_send_chandef(msg, chandef))
15397 goto nla_put_failure;
15399 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
15400 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
15401 goto nla_put_failure;
15403 genlmsg_end(msg, hdr);
15405 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15406 NL80211_MCGRP_MLME, gfp);
15413 void cfg80211_ch_switch_notify(struct net_device *dev,
15414 struct cfg80211_chan_def *chandef)
15416 struct wireless_dev *wdev = dev->ieee80211_ptr;
15417 struct wiphy *wiphy = wdev->wiphy;
15418 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15420 ASSERT_WDEV_LOCK(wdev);
15422 trace_cfg80211_ch_switch_notify(dev, chandef);
15424 wdev->chandef = *chandef;
15425 wdev->preset_chandef = *chandef;
15426 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15427 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
15429 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
15431 void cfg80211_ch_switch_started_notify(struct net_device *dev,
15432 struct cfg80211_chan_def *chandef,
15435 struct wireless_dev *wdev = dev->ieee80211_ptr;
15436 struct wiphy *wiphy = wdev->wiphy;
15437 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15439 trace_cfg80211_ch_switch_started_notify(dev, chandef);
15441 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15442 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
15444 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
15447 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
15448 const struct cfg80211_chan_def *chandef,
15449 enum nl80211_radar_event event,
15450 struct net_device *netdev, gfp_t gfp)
15452 struct sk_buff *msg;
15455 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15459 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
15465 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15466 goto nla_put_failure;
15468 /* NOP and radar events don't need a netdev parameter */
15470 struct wireless_dev *wdev = netdev->ieee80211_ptr;
15472 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15473 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15475 goto nla_put_failure;
15478 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
15479 goto nla_put_failure;
15481 if (nl80211_send_chandef(msg, chandef))
15482 goto nla_put_failure;
15484 genlmsg_end(msg, hdr);
15486 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15487 NL80211_MCGRP_MLME, gfp);
15494 void cfg80211_sta_opmode_change_notify(struct net_device *dev, const u8 *mac,
15495 struct sta_opmode_info *sta_opmode,
15498 struct sk_buff *msg;
15499 struct wireless_dev *wdev = dev->ieee80211_ptr;
15500 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15506 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15510 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STA_OPMODE_CHANGED);
15516 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15517 goto nla_put_failure;
15519 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15520 goto nla_put_failure;
15522 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15523 goto nla_put_failure;
15525 if ((sta_opmode->changed & STA_OPMODE_SMPS_MODE_CHANGED) &&
15526 nla_put_u8(msg, NL80211_ATTR_SMPS_MODE, sta_opmode->smps_mode))
15527 goto nla_put_failure;
15529 if ((sta_opmode->changed & STA_OPMODE_MAX_BW_CHANGED) &&
15530 nla_put_u8(msg, NL80211_ATTR_CHANNEL_WIDTH, sta_opmode->bw))
15531 goto nla_put_failure;
15533 if ((sta_opmode->changed & STA_OPMODE_N_SS_CHANGED) &&
15534 nla_put_u8(msg, NL80211_ATTR_NSS, sta_opmode->rx_nss))
15535 goto nla_put_failure;
15537 genlmsg_end(msg, hdr);
15539 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15540 NL80211_MCGRP_MLME, gfp);
15547 EXPORT_SYMBOL(cfg80211_sta_opmode_change_notify);
15549 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
15550 u64 cookie, bool acked, s32 ack_signal,
15551 bool is_valid_ack_signal, gfp_t gfp)
15553 struct wireless_dev *wdev = dev->ieee80211_ptr;
15554 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15555 struct sk_buff *msg;
15558 trace_cfg80211_probe_status(dev, addr, cookie, acked);
15560 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15565 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
15571 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15572 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15573 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15574 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15575 NL80211_ATTR_PAD) ||
15576 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)) ||
15577 (is_valid_ack_signal && nla_put_s32(msg, NL80211_ATTR_ACK_SIGNAL,
15579 goto nla_put_failure;
15581 genlmsg_end(msg, hdr);
15583 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15584 NL80211_MCGRP_MLME, gfp);
15590 EXPORT_SYMBOL(cfg80211_probe_status);
15592 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
15593 const u8 *frame, size_t len,
15594 int freq, int sig_dbm)
15596 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15597 struct sk_buff *msg;
15599 struct cfg80211_beacon_registration *reg;
15601 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
15603 spin_lock_bh(&rdev->beacon_registrations_lock);
15604 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
15605 msg = nlmsg_new(len + 100, GFP_ATOMIC);
15607 spin_unlock_bh(&rdev->beacon_registrations_lock);
15611 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15613 goto nla_put_failure;
15615 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15617 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
15619 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15620 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
15621 goto nla_put_failure;
15623 genlmsg_end(msg, hdr);
15625 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
15627 spin_unlock_bh(&rdev->beacon_registrations_lock);
15631 spin_unlock_bh(&rdev->beacon_registrations_lock);
15634 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
15637 static int cfg80211_net_detect_results(struct sk_buff *msg,
15638 struct cfg80211_wowlan_wakeup *wakeup)
15640 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
15641 struct nlattr *nl_results, *nl_match, *nl_freqs;
15644 nl_results = nla_nest_start(
15645 msg, NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
15649 for (i = 0; i < nd->n_matches; i++) {
15650 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
15652 nl_match = nla_nest_start(msg, i);
15656 /* The SSID attribute is optional in nl80211, but for
15657 * simplicity reasons it's always present in the
15658 * cfg80211 structure. If a driver can't pass the
15659 * SSID, that needs to be changed. A zero length SSID
15660 * is still a valid SSID (wildcard), so it cannot be
15661 * used for this purpose.
15663 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
15664 match->ssid.ssid)) {
15665 nla_nest_cancel(msg, nl_match);
15669 if (match->n_channels) {
15670 nl_freqs = nla_nest_start(
15671 msg, NL80211_ATTR_SCAN_FREQUENCIES);
15673 nla_nest_cancel(msg, nl_match);
15677 for (j = 0; j < match->n_channels; j++) {
15678 if (nla_put_u32(msg, j, match->channels[j])) {
15679 nla_nest_cancel(msg, nl_freqs);
15680 nla_nest_cancel(msg, nl_match);
15685 nla_nest_end(msg, nl_freqs);
15688 nla_nest_end(msg, nl_match);
15692 nla_nest_end(msg, nl_results);
15696 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
15697 struct cfg80211_wowlan_wakeup *wakeup,
15700 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15701 struct sk_buff *msg;
15705 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
15708 size += wakeup->packet_present_len;
15710 msg = nlmsg_new(size, gfp);
15714 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
15718 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15719 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15723 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15724 wdev->netdev->ifindex))
15728 struct nlattr *reasons;
15730 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
15734 if (wakeup->disconnect &&
15735 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
15737 if (wakeup->magic_pkt &&
15738 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
15740 if (wakeup->gtk_rekey_failure &&
15741 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
15743 if (wakeup->eap_identity_req &&
15744 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
15746 if (wakeup->four_way_handshake &&
15747 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
15749 if (wakeup->rfkill_release &&
15750 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
15753 if (wakeup->pattern_idx >= 0 &&
15754 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
15755 wakeup->pattern_idx))
15758 if (wakeup->tcp_match &&
15759 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
15762 if (wakeup->tcp_connlost &&
15763 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
15766 if (wakeup->tcp_nomoretokens &&
15768 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
15771 if (wakeup->packet) {
15772 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
15773 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
15775 if (!wakeup->packet_80211) {
15777 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
15779 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
15782 if (wakeup->packet_len &&
15783 nla_put_u32(msg, len_attr, wakeup->packet_len))
15786 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
15791 if (wakeup->net_detect &&
15792 cfg80211_net_detect_results(msg, wakeup))
15795 nla_nest_end(msg, reasons);
15798 genlmsg_end(msg, hdr);
15800 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15801 NL80211_MCGRP_MLME, gfp);
15807 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
15810 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
15811 enum nl80211_tdls_operation oper,
15812 u16 reason_code, gfp_t gfp)
15814 struct wireless_dev *wdev = dev->ieee80211_ptr;
15815 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15816 struct sk_buff *msg;
15819 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
15822 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15826 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
15832 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15833 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15834 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
15835 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
15836 (reason_code > 0 &&
15837 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
15838 goto nla_put_failure;
15840 genlmsg_end(msg, hdr);
15842 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15843 NL80211_MCGRP_MLME, gfp);
15849 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
15851 static int nl80211_netlink_notify(struct notifier_block * nb,
15852 unsigned long state,
15855 struct netlink_notify *notify = _notify;
15856 struct cfg80211_registered_device *rdev;
15857 struct wireless_dev *wdev;
15858 struct cfg80211_beacon_registration *reg, *tmp;
15860 if (state != NETLINK_URELEASE || notify->protocol != NETLINK_GENERIC)
15861 return NOTIFY_DONE;
15865 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
15866 struct cfg80211_sched_scan_request *sched_scan_req;
15868 list_for_each_entry_rcu(sched_scan_req,
15869 &rdev->sched_scan_req_list,
15871 if (sched_scan_req->owner_nlportid == notify->portid) {
15872 sched_scan_req->nl_owner_dead = true;
15873 schedule_work(&rdev->sched_scan_stop_wk);
15877 list_for_each_entry_rcu(wdev, &rdev->wiphy.wdev_list, list) {
15878 cfg80211_mlme_unregister_socket(wdev, notify->portid);
15880 if (wdev->owner_nlportid == notify->portid) {
15881 wdev->nl_owner_dead = true;
15882 schedule_work(&rdev->destroy_work);
15883 } else if (wdev->conn_owner_nlportid == notify->portid) {
15884 schedule_work(&wdev->disconnect_wk);
15888 spin_lock_bh(&rdev->beacon_registrations_lock);
15889 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
15891 if (reg->nlportid == notify->portid) {
15892 list_del(®->list);
15897 spin_unlock_bh(&rdev->beacon_registrations_lock);
15903 * It is possible that the user space process that is controlling the
15904 * indoor setting disappeared, so notify the regulatory core.
15906 regulatory_netlink_notify(notify->portid);
15910 static struct notifier_block nl80211_netlink_notifier = {
15911 .notifier_call = nl80211_netlink_notify,
15914 void cfg80211_ft_event(struct net_device *netdev,
15915 struct cfg80211_ft_event_params *ft_event)
15917 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
15918 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15919 struct sk_buff *msg;
15922 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
15924 if (!ft_event->target_ap)
15927 msg = nlmsg_new(100 + ft_event->ies_len + ft_event->ric_ies_len,
15932 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
15936 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15937 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15938 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
15941 if (ft_event->ies &&
15942 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
15944 if (ft_event->ric_ies &&
15945 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
15946 ft_event->ric_ies))
15949 genlmsg_end(msg, hdr);
15951 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15952 NL80211_MCGRP_MLME, GFP_KERNEL);
15957 EXPORT_SYMBOL(cfg80211_ft_event);
15959 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
15961 struct cfg80211_registered_device *rdev;
15962 struct sk_buff *msg;
15966 rdev = wiphy_to_rdev(wdev->wiphy);
15967 if (!rdev->crit_proto_nlportid)
15970 nlportid = rdev->crit_proto_nlportid;
15971 rdev->crit_proto_nlportid = 0;
15973 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15977 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
15979 goto nla_put_failure;
15981 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15982 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15984 goto nla_put_failure;
15986 genlmsg_end(msg, hdr);
15988 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15994 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
15996 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
15998 struct wiphy *wiphy = wdev->wiphy;
15999 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16000 struct sk_buff *msg;
16003 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
16007 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
16011 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16012 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
16013 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16017 genlmsg_end(msg, hdr);
16019 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
16020 NL80211_MCGRP_MLME, GFP_KERNEL);
16026 int cfg80211_external_auth_request(struct net_device *dev,
16027 struct cfg80211_external_auth_params *params,
16030 struct wireless_dev *wdev = dev->ieee80211_ptr;
16031 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16032 struct sk_buff *msg;
16035 if (!wdev->conn_owner_nlportid)
16038 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16042 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_EXTERNAL_AUTH);
16044 goto nla_put_failure;
16046 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16047 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16048 nla_put_u32(msg, NL80211_ATTR_AKM_SUITES, params->key_mgmt_suite) ||
16049 nla_put_u32(msg, NL80211_ATTR_EXTERNAL_AUTH_ACTION,
16051 nla_put(msg, NL80211_ATTR_BSSID, ETH_ALEN, params->bssid) ||
16052 nla_put(msg, NL80211_ATTR_SSID, params->ssid.ssid_len,
16053 params->ssid.ssid))
16054 goto nla_put_failure;
16056 genlmsg_end(msg, hdr);
16057 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
16058 wdev->conn_owner_nlportid);
16065 EXPORT_SYMBOL(cfg80211_external_auth_request);
16067 /* initialisation/exit functions */
16069 int __init nl80211_init(void)
16073 err = genl_register_family(&nl80211_fam);
16077 err = netlink_register_notifier(&nl80211_netlink_notifier);
16083 genl_unregister_family(&nl80211_fam);
16087 void nl80211_exit(void)
16089 netlink_unregister_notifier(&nl80211_netlink_notifier);
16090 genl_unregister_family(&nl80211_fam);
projects / platform / kernel / linux-starfive.git / blob